rjung in httpd

Fix was backported in r1709121 and will be part

of 2.4.41.

Vote, promote.




Update links to APR/APU svn to recent stable branches.

Test whether TLSv13 works and only then hard

code use of TLSv12. In all other cases stick to

defaults. This ensures, that old client versions

that do not support TLSv12 still work.

Followup to r1858849.


Perl https client only shows the 403 when TLS 1.3

is used (PHA?).

For older TLS versions, the client instead shows

status 500, although the web server logs a 403.

Rearrange long mod_md CHANGES entry in an attempt

to give it a better structure. I hope I got it right.

Also dropped misleading reference to missing mod_ssl


Propose with essay.

Unfortunately -Wcomment can only be influenced

using a diagnostics pragma starting with GCC 4.6.

Follow up to r1864438 and r1864435:

Use the right pragma syntax also in the second file.

Add another patch to fix the new use of pragma.

Still under test.

Use the right pragma syntax.

Follow-up to r1864435.

Note some progress, not yet rady vor vote.

The GCC flag "-Wno-error=comment" introduced by r1855446

and r1850745 are only known since GCC 4.2. Since it gets

set unconditionally, this breaks compilation with old GCC

even when not using maintainer mode.

Make the fix for maintainer mode more specific by using

a version dependent pragma in the relevant two C files

only switching off error status for comment warnings.

Add CHANGES for r1864005

(backport of r1856829 from trunk).

Add CHANGES for r1864000

(backport of r1853560 from trunk).

mod_proxy_hcheck: mod_proxy_hcheck: mute "run from watchdog" message.

This is way too verbose (every 100ms) to be logged at any LogLevel.

Backport of r1853992 from trunk.

Proposed by: rjung

Backported by: rjung

Reviewed by: rjung, jailletc36, jim

core: fix crash when running with apr lib build with APR_POOL_DEBUG.

Observed with huge config and mod_security using long config lines.

Backport of r1863179 from trunk.

Proposed by: rjung

Backported by: rjung

Reviewed by: rjung, icing, jim



Fix crashes when running with debug APR (APR_POOL_DEBUG),

because all pools have NULL allocators then.

This workaround is probably not very efficient,

but is only used when we do APR_POOL_DEBUG

and efficiency shouldn't be a big concern then.


Remove obsolete comment.

React on comment. Add another patch to proposal.


Add two proxy VHosts, that forward via https and

use SSLProxyMachine* directives inside <Proxy>


Such use was broken as a regression in 2.4.39

but should be fixed soon via backports of

PR 63430.

    • ?