Checkout Tools
  • last updated 3 hours ago
Constraints: committers
Constraints: files
Constraints: dates

Changeset 1875467 is being indexed.

Match Travis jobs for 2.4.x by tag as well as branch.

Ignore failures for s390x which is flaky in apt-get again.

Merge r1872732, r1872777, r1874128, r1874190, r1874256, r1874542, r1874716, r1874720, r1874775, r1875465 from trunk:

Non-x86 testing seems reasonably reliable; note some known failures


Add Travis job with --enable-mods-static=reallyall.

Back off a little when svn export is timing out.

Add Travis job which runs under UBSan ("Undefined Behaviour Sanitizer").

mod_http2 disabled for now until

is merged.

Add gcc 9 job, enable enhanced malloc debugging for pool-debug job.

Add an i386 build using a multilib packages and "gcc -m32".

(All other Travis builds are 64-bit arches currently)

Switch to using httpd-tests git repo.

Fix travis config validation warnings.

Update docs. The expr_string.t failure has not been seen since

the workaround was added AFAICT. The async filter bug

is still breaking the tests regularly. [skip ci].

Add simple test for apxs to catch regression in r1872042.

Add simple test for apxs to catch regression in r1872042.

* Vote and promote
vote [skip ci]

add absent /modules/http2/*.o to .gitignore

gets my GH sandbox clean

add git-svn generated .gitignore

Submitted By: Renier Velazco <renier.velazco>

Committed By: covener

Github: closes #101

propose apxs fix

[skip ci]

fix apxs for non-destdir builds

subtr(...,0, -1) chops off a character and leaves relative path.

(you will need to re-run configure)

Post 2.4.42 tag updates
Tag HEAD of 2.4.x as 2.4.42
Get ready to tag httpd 2.4.42
  1. … 31 more files in changeset.
Typo, Thanks Ruediger Pluem <>

* modules/ssl/ssl_util_stapling.c (stapling_check_response) Don't send

out an OCSP response that can't be parsed.

If the crypto/ASN library can't parse a response as 'basic OCSP'

even if it leads with a OCSP successful status, then don't pass it

to the client. There is nothing to say at all it isn't just garbage.

And if other types of messages are standardized they can be added.

PR: 60182

Obtained from:

Submitted by: <>

Reviewed by: rpluem

* modules/ssl/ssl_util_stapling.c (stapling_check_response) Don't stop

Certificate Revoked messages.

Certificate Revoked Responder messages don't belong to 'error' class.

When the server receives one, it MUST be passed on to the client.

And stored for the normal period of basic responses.

Also don't log an error each time it is retrieved from cache,

only once when it is retrieved from the OCSP responder.

PR: 60182

Obtained from:

Submitted by: <>

Reviewed by: rpluem

* CHANGES for r1875353. [skip ci]
* modules/proxy/mod_proxy_http.c (ap_proxy_http_process_response): Clear any

possible returned buckets in the brigade in the error case. As we want to

close the connection anyway there is no sensible content we could still

sent and hence doing the needed life time transformation of the buckets

would be a waste.

PR: 64234

Add sha512

* server/log.c (ap_log_pid): Use more traditional C style in httpd for

exception-handling. No functional change.

I, for one, had *no idea* markmail was still a thing.

oops, left the menu link is long long gone.

Adds mod_perl to the 'Related Projects' list.

Adds Traffic Control to the 'related projects' list.

Update 5 year old messaging
* server/log.c (ap_log_pid): Use a temporary file, then rename once

successfully written; also add error checking. Avoids startup

failures if a previous httpd invocation crashed while writing the


Submitted by: Nicolas Carrier <carrier.nicolas0>, jorton

Github: closes #100, closes #69

PR: 63140

* acinclude.m4 (APACHE_CHECK_SYSTEMD): Remove redundant test.

Submitted by: Pascal Terjan <pterjan>

PR: 57631


remove backported [skip ci]

Merge r1874323 from trunk:

mod_ssl: follow up to r1861950: allow for OPENSSL_init_ssl() without autoconf.

For systems with no autoconf (eg. Windows), still check for and use

OPENSSL_init_ssl() based on OpenSSL version >= 1.1.0.

Usual LibreSSL gotcha, exclude LIBRESSL_VERSION_NUMBER from this new heuristic

since autoconf is likely available in this case.