httpd

Checkout Tools
  • last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates

Changeset 1651089 is being indexed.

r1651088 for eventopt

Update conn_rec.id when a new thread begins working on a connection, because

the old thread may work on a new connection and assign the same ID in parallel.

Submitted By: Michael Thorpe

Committed By: covener

Merge r1626978 from trunk:

mod_cgi: log cgi script stderr to ScriptLog, use APLOGNO for log_scripterror

errors.

Submitted by: jkaluza

Reviewed/backported by: jim

Merge r1626978 from trunk:

mod_cgi: log cgi script stderr to ScriptLog, use APLOGNO for log_scripterror

errors.

Submitted by: jkaluza

Reviewed/backported by: jim

Merge r1512819, r1513461 (part of it), r1565777, r1643538 from trunk:

* core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.

Submitted by: Jeff Trawick

Reviewed/backported by: jim

Merge r1643825 from trunk:

* core: Fix -D[efined] or <Define>[d] variables lifetime accross restarts.

PR 57328.

Submitted-by: Armin Abfalterer <a.abfalterer gmail.com>

Reviewed/Committed-by: ylavic

Submitted by: ylavic

Reviewed/backported by: jim

Merge r1588527 from trunk:

mod_proxy: Preserve original request headers even if they differ

from the ones to be forwarded to the backend. PR 45387.

Submitted by: ylavic

Reviewed/backported by: jim

Merge r1598946, r1602989 from trunk:

Fix computation of the size of 'struct sockaddr_un' when passed to 'connect()'.

Use the same logic as the one in ' in 'proxy_util.c'.

mod_proxy: Don't limit the size of the connectable Unix Domain Socket paths.

Since connect() to UDS path is used at several places, introduce

ap_proxy_connect_uds() in proxy_util.

Submitted by: jailletc36, ylavic

Reviewed/backported by: jim

Merge r1601291, r1601630 from trunk:

mod_proxy: Shutdown (eg. SSL close notify) the backend connection

before closing.

mod_proxy: follow up to r1601291.

Since deferred_write_pool is needed by the core_output_filter and is a subpool

of the connection, shutdown in a pre_cleanup of the connection's pool to avoid

a freed memory access (SEGV).

Reported By: takashi

Submitted by: ylavic

Reviewed/backported by: jim

Merge r1601919, r1650061 from trunk:

mod_ssl: dump SSL IO/state for the write side of the connection(s), like reads.

mod_ssl: follow up to r1601919.

Likewise when set from SNI callback.

Submitted by: ylavic

Reviewed/backported by: jim

Merge r1601184, r1601274, r1601185 from trunk:

mod_ssl: Ensure that the SSL close notify alert is flushed to the client.

PR54998.

Submitted By: Tim Kosse <tim.kosse filezilla-project.org>, ylavic

Committed By: ylavic

mod_ssl: SSL_smart_shutdown(): follow up to r1601184.

Use SSL_get_wbio() to comply with OPENSSL_NO_SSL_INTERN.

Stop SSL shutdown loop when flush fails.

mpm_event[opt]: Send the SSL close notify alert when the KeepAliveTimeout

expires. PR54998.

Submitted by: ylavic

Reviewed/backported by: jim

vote/promote

vote, promote

Rebuild.

XML update.

Merge r1640495, r1644031 from trunk

* mod_proxy_fcgi: Ignore body data from backend for 304 responses. PR 57198.

Submitted by: jkaluza

Reviewed by: jkaluza, ylavic, covener

Backported by: jailletc36

Merge r1630947, r1645670 from trunk

* mod_ssl: Check if we are having an SSL connection before looking up SSL

related variables during expression evaluation to avoid a crash.

If not return NULL as ssl_var_lookup_ssl does by default. PR 57070

Submitted by: rpluem

Reviewed by: jailletc36, ylavic, covener

Backported by: jailletc36

Merge r1644503 from trunk

* mod_proxy_ajp: Fix handling of the default port (8009) in the

ProxyPass and <Proxy> configurations. PR 57259.

Submitted by: ylavic

Reviewed by: ylavic, jim, covener

Backported by: jailletc36

Propose
* modules/dav/main/config.m4: Remove long-redundant expat reference.

Add copy and paste typo fix to proposal.

Xforms.

Fix copy and paste error in docs of new feature.

Promote.

Add some easy votes.

Propose.

Xforms.

  1. … 6 more files in changeset.
Add SSLSessionTickets (on|off).

It controls the use of TLS session tickets

(RFC 5077). Default is unchanged (on).

Using session tickets without restarting

the web server with an appropriate frequency

(e.g. daily) compromises perfect forward

secrecy.

As long as we do not have a nice key management

there should be a way to deactivate session

tickets.

save some bytes per Christophe's review.

Update mod_ssl's IO/state dump proposal.