Revisions of apache2
Dominique Leuenberger (dimstar_suse)
accepted
request 639405
from
Petr Gajdos (pgajdos)
(revision 149)
- consider also patterns in APACHE_CONF_INCLUDE_DIRS as documentation says (patch Juergen Gleiss) - relink /usr/sbin/httpd after apache2-MPM uninstall [bsc#1107930c#1] - simplify find_mpm function from script-helpers - /usr/sbin/httpd is now created depending on preference hardcoded in find_mpm (script-helpers), not depending on alphabetical order of MPMs - simplify spec file a bit
Dominique Leuenberger (dimstar_suse)
accepted
request 637684
from
Petr Gajdos (pgajdos)
(revision 148)
updated to 2.4.35, successfully tested on Tumbleweed x86_64 (forwarded request 637678 from stroeder)
Dominique Leuenberger (dimstar_suse)
accepted
request 626658
from
Petr Gajdos (pgajdos)
(revision 147)
- updated to 2.4.34: *) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error document translations. [CodeingBoy, popcorner] *) event: avoid possible race conditions with modules on the child pool. [Stefan Fritsch] *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or ProxyPassReverseCookiePath directive could fail to update correctly 'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560. [Christophe Jaillet] *) mod_ratelimit: fix behavior when proxing content. PR 62362. [Luca Toscano, Yann Ylavic] *) core: Re-allow '_' (underscore) in hostnames. [Eric Covener] *) mod_authz_core: If several parameters are used in a AuthzProviderAlias directive, if these parameters are not enclosed in quotation mark, only the first one is handled. The other ones are silently ignored. Add a message to warn about such a spurious configuration. PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet] *) mod_md: improvements and bugfixes - MDNotifyCmd now takes additional parameter that are passed on to the called command. - ACME challenges have better checks for interference with other modules - ACME challenges are only handled for domains managed by the module, allowing other ACME clients to operate for other domains in the server. - better libressl integration *) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'. PR 62480. [Lubos Uhliarik <luhliari redhat.com>} *) logging: Some early logging-related startup messages could be lost when using syslog for the global ErrorLog. [Eric Covener] *) mod_cache: Handle case of an invalid Expires header value RFC compliant like the case of an Expires time in the past: allow to overwrite the
Dominique Leuenberger (dimstar_suse)
committed
(revision 146)
Revert to 2.4.33 - boo#1102698
Dominique Leuenberger (dimstar_suse)
accepted
request 623132
from
Petr Gajdos (pgajdos)
(revision 145)
- updated to 2.4.34: *) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error document translations. [CodeingBoy, popcorner] *) event: avoid possible race conditions with modules on the child pool. [Stefan Fritsch] *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or ProxyPassReverseCookiePath directive could fail to update correctly 'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560. [Christophe Jaillet] *) mod_ratelimit: fix behavior when proxing content. PR 62362. [Luca Toscano, Yann Ylavic] *) core: Re-allow '_' (underscore) in hostnames. [Eric Covener] *) mod_authz_core: If several parameters are used in a AuthzProviderAlias directive, if these parameters are not enclosed in quotation mark, only the first one is handled. The other ones are silently ignored. Add a message to warn about such a spurious configuration. PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet] *) mod_md: improvements and bugfixes - MDNotifyCmd now takes additional parameter that are passed on to the called command. - ACME challenges have better checks for interference with other modules - ACME challenges are only handled for domains managed by the module, allowing other ACME clients to operate for other domains in the server. - better libressl integration *) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'. PR 62480. [Lubos Uhliarik <luhliari redhat.com>} *) logging: Some early logging-related startup messages could be lost when using syslog for the global ErrorLog. [Eric Covener] *) mod_cache: Handle case of an invalid Expires header value RFC compliant like the case of an Expires time in the past: allow to overwrite the
Dominique Leuenberger (dimstar_suse)
accepted
request 591693
from
Petr Gajdos (pgajdos)
(revision 144)
- Updated description for SSLProtocol option. [bsc#1086854] - Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854] (forwarded request 591690 from k_mikhail)
Dominique Leuenberger (dimstar_suse)
accepted
request 588443
from
Petr Gajdos (pgajdos)
(revision 143)
- Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]
Dominique Leuenberger (dimstar_suse)
accepted
request 575500
from
Factory Maintainer (factory-maintainer)
(revision 142)
Automatic submission by obs-autosubmit
Dominique Leuenberger (dimstar_suse)
accepted
request 572001
from
Petr Gajdos (pgajdos)
(revision 141)
- remove NameVirtualHost from documentation [bsc#1078557] - for older distros, still use SuSEFirewall2 [bsc#1071548c#7] - Replace SuSEFirewall2 by firewalld (fate#323460)
Dominique Leuenberger (dimstar_suse)
accepted
request 561062
from
Petr Gajdos (pgajdos)
(revision 140)
- build brotli module - Do not requires w3m, only recommends it. - do not build with nghttp2 for SLE-12-SP3 - which was split after SLE11
Dominique Leuenberger (dimstar_suse)
accepted
request 548029
from
Factory Maintainer (factory-maintainer)
(revision 139)
Automatic submission by obs-autosubmit
Dominique Leuenberger (dimstar_suse)
accepted
request 543119
from
Petr Gajdos (pgajdos)
(revision 138)
- APACHE_MODULES now contains authn_core in default configuration [bsc#1066661]
Dominique Leuenberger (dimstar_suse)
accepted
request 535888
from
Petr Gajdos (pgajdos)
(revision 137)
- updated to 2.4.29: *) mod_unique_id: Use output of the PRNG rather than IP address and pid, avoiding sleep() call and possible DNS issues at startup, plus improving randomness for IPv6-only hosts. [Jan Kaluza] *) mod_rewrite, core: Avoid the 'Vary: Host' response header when HTTP_HOST is used in a condition that evaluates to true. PR 58231 [Luca Toscano] *) mod_http2: v0.10.12, removed optimization for mutex handling in bucket beams that could lead to assertion failure in edge cases. [Stefan Eissing] *) mod_proxy: Fix regression for non decimal loadfactor parameter introduced in 2.4.28. [Jim Jagielski] *) mod_authz_dbd: fix a segmentation fault if AuthzDBDQuery is not set. PR 61546. [Lubos Uhliarik <luhliari redhat.com>] *) mod_rewrite: Add support for starting External Rewriting Programs as non-root user on UNIX systems by specifying username and group name as third argument of RewriteMap directive. [Jan Kaluza] *) core: Rewrite the Content-Length filter to avoid excessive memory consumption. Chunked responses will be generated in more cases than in previous releases. PR 61222. [Joe Orton, Ruediger Pluem] *) mod_ssl: Fix SessionTicket callback return value, which does seem to matter with OpenSSL 1.1. [Yann Ylavic] - gensslcert: * set also SAN [bsc#1045159] * drop -C argument, it was not mapped to CN actually * consider also case when hostname does return empty string or does not exist [bsc#1057406] * do not consider environment ROOT variable
Dominique Leuenberger (dimstar_suse)
accepted
request 532105
from
Petr Gajdos (pgajdos)
(revision 136)
- updated to 2.4.28: *) SECURITY: CVE-2017-9798 (cve.mitre.org) Corrupted or freed memory access. <Limit[Except]> must now be used in the main configuration file (httpd.conf) to register HTTP methods before the .htaccess files. [Yann Ylavic] *) event: Avoid possible blocking in the listener thread when shutting down connections. PR 60956. [Yann Ylavic] *) mod_speling: Don't embed referer data in a link in error page. PR 38923 [Nick Kew] *) htdigest: prevent a buffer overflow when a string exceeds the allowed max length in a password file. [Luca Toscano, Hanno Böck <hanno hboeck de>] *) mod_proxy: loadfactor parameter can now be a decimal number (eg: 1.25). [Jim Jagielski] *) mod_proxy_wstunnel: Allow upgrade to any protocol dynamically. PR 61142. *) mod_watchdog/mod_proxy_hcheck: Time intervals can now be spefified down to the millisecond. Supports 'mi' (minute), 'ms' (millisecond), 's' (second) and 'hr' (hour!) time suffixes. [Jim Jagielski] *) mod_http2: Fix for stalling when more than 32KB are written to a suspended stream. [Stefan Eissing] *) build: allow configuration without APR sources. [Jacob Champion] *) mod_ssl, ab: Fix compatibility with LibreSSL. PR 61184. [Bernard Spil <brnrd freebsd.org>, Michael Schlenker <msc contact.de>, Yann Ylavic] *) core/log: Support use of optional "tag" in syslog entries. PR 60525. [Ben Rubson <ben.rubson gmail.com>, Jim Jagielski] *) mod_proxy: Fix ProxyAddHeaders merging. [Joe Orton] *) core: Disallow multiple Listen on the same IP:port when listener buckets are configured (ListenCoresBucketsRatio > 0), consistently with the single
Dominique Leuenberger (dimstar_suse)
accepted
request 510917
from
Petr Gajdos (pgajdos)
(revision 135)
- updated to 2.4.27: *) COMPATIBILITY: mod_lua: Remove the undocumented exported 'apr_table' global variable when using Lua 5.2 or later. This was exported as a side effect from luaL_register, which is no longer supported as of Lua 5.2 which deprecates pollution of the global namespace. [Rainer Jung] *) COMPATIBILITY: mod_http2: Disable and give warning when using Prefork. The server will continue to run, but HTTP/2 will no longer be negotiated. [Stefan Eissing] *) COMPATIBILITY: mod_proxy_fcgi: Revert to 2.4.20 FCGI behavior for the default ProxyFCGIBackendType, fixing a regression with PHP-FPM. PR 61202. [Jacob Champion, Jim Jagielski] *) mod_lua: Improve compatibility with Lua 5.1, 5.2 and 5.3. PR58188, PR60831, PR61245. [Rainer Jung] *) mod_http2: Simplify ready queue, less memory and better performance. Update mod_http2 version to 1.10.7. [Stefan Eissing] *) Allow single-char field names inadvertantly disallowed in 2.4.25. PR 61220. [Yann Ylavic] *) htpasswd / htdigest: Do not apply the strict permissions of the temporary passwd file to a possibly existing passwd file. PR 61240. [Ruediger Pluem] *) core: Avoid duplicate HEAD in Allow header. This is a regression in 2.4.24 (unreleased), 2.4.25 and 2.4.26. PR 61207. [Christophe Jaillet] - drop upstreamed patch: * httpd-2.4.12-lua-5.2.patch (see upstream's PR#58188 for details) - Adjust dependencies for rename apr/apr-util packages
Dominique Leuenberger (dimstar_suse)
accepted
request 505095
from
Petr Gajdos (pgajdos)
(revision 134)
- remove /usr/bin/http2 symlink only during apache2 package uninstall, not upgrade [bsc#1041830] - updated to 2.4.26: This release of Apache is a security, feature, and bug fix release. For details, see http://httpd.apache.org/dev/dist/CHANGES_2.4.26 - refreshed patches: . httpd-2.4.12-lua-5.2.patch . httpd-2.4.x-fate317766-config-control-two-protocol-options.diff - removed patches (upstreamed) . httpd-cache-forward-http-proxy.patch . httpd-cache-revert-svn1773397.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 500571
from
Petr Gajdos (pgajdos)
(revision 133)
- server-tunning.conf: MaxClients was renamed to MaxRequestWorkers [bsc#1037731] - gensslcert: use hostname when fqdn is too long [bsc#1035829] - remove apache-doc and apache-example-pages obsoletes/provides
Yuchen Lin (maxlin_factory)
accepted
request 481459
from
Petr Gajdos (pgajdos)
(revision 132)
(forwarded request 481458 from kukuk)
Dominique Leuenberger (dimstar_suse)
accepted
request 477566
from
Petr Gajdos (pgajdos)
(revision 131)
- start_apache2: include individual sysconfig.d files instead of sysconfig.d dir, include sysconfig.d/include.conf after httpd.conf is processed [bsc#1023616]
Dominique Leuenberger (dimstar_suse)
accepted
request 460042
from
Petr Gajdos (pgajdos)
(revision 130)
- revert an attempt to fix PR 60458 + httpd-cache-revert-svn1773397.patch
Displaying revisions 61 - 80 of 209