Revisions of apache2
Dominique Leuenberger (dimstar_suse)
accepted
request 637684
from
Petr Gajdos (pgajdos)
(revision 148)
updated to 2.4.35, successfully tested on Tumbleweed x86_64 (forwarded request 637678 from stroeder)
Dominique Leuenberger (dimstar_suse)
accepted
request 626658
from
Petr Gajdos (pgajdos)
(revision 147)
- updated to 2.4.34:
*) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
document translations. [CodeingBoy, popcorner]
*) event: avoid possible race conditions with modules on the child pool.
[Stefan Fritsch]
*) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
ProxyPassReverseCookiePath directive could fail to update correctly
'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560.
[Christophe Jaillet]
*) mod_ratelimit: fix behavior when proxing content. PR 62362.
[Luca Toscano, Yann Ylavic]
*) core: Re-allow '_' (underscore) in hostnames.
[Eric Covener]
*) mod_authz_core: If several parameters are used in a AuthzProviderAlias
directive, if these parameters are not enclosed in quotation mark, only
the first one is handled. The other ones are silently ignored.
Add a message to warn about such a spurious configuration.
PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
*) mod_md: improvements and bugfixes
- MDNotifyCmd now takes additional parameter that are passed on to the called command.
- ACME challenges have better checks for interference with other modules
- ACME challenges are only handled for domains managed by the module, allowing
other ACME clients to operate for other domains in the server.
- better libressl integration
*) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
*) logging: Some early logging-related startup messages could be lost
when using syslog for the global ErrorLog. [Eric Covener]
*) mod_cache: Handle case of an invalid Expires header value RFC compliant
like the case of an Expires time in the past: allow to overwrite the
Dominique Leuenberger (dimstar_suse)
accepted
request 623132
from
Petr Gajdos (pgajdos)
(revision 145)
- updated to 2.4.34:
*) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
document translations. [CodeingBoy, popcorner]
*) event: avoid possible race conditions with modules on the child pool.
[Stefan Fritsch]
*) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
ProxyPassReverseCookiePath directive could fail to update correctly
'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560.
[Christophe Jaillet]
*) mod_ratelimit: fix behavior when proxing content. PR 62362.
[Luca Toscano, Yann Ylavic]
*) core: Re-allow '_' (underscore) in hostnames.
[Eric Covener]
*) mod_authz_core: If several parameters are used in a AuthzProviderAlias
directive, if these parameters are not enclosed in quotation mark, only
the first one is handled. The other ones are silently ignored.
Add a message to warn about such a spurious configuration.
PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
*) mod_md: improvements and bugfixes
- MDNotifyCmd now takes additional parameter that are passed on to the called command.
- ACME challenges have better checks for interference with other modules
- ACME challenges are only handled for domains managed by the module, allowing
other ACME clients to operate for other domains in the server.
- better libressl integration
*) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
*) logging: Some early logging-related startup messages could be lost
when using syslog for the global ErrorLog. [Eric Covener]
*) mod_cache: Handle case of an invalid Expires header value RFC compliant
like the case of an Expires time in the past: allow to overwrite the
Dominique Leuenberger (dimstar_suse)
accepted
request 591693
from
Petr Gajdos (pgajdos)
(revision 144)
- Updated description for SSLProtocol option. [bsc#1086854] - Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854] (forwarded request 591690 from k_mikhail)
Dominique Leuenberger (dimstar_suse)
accepted
request 588443
from
Petr Gajdos (pgajdos)
(revision 143)
- Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]
Dominique Leuenberger (dimstar_suse)
accepted
request 575500
from
Factory Maintainer (factory-maintainer)
(revision 142)
Automatic submission by obs-autosubmit
Dominique Leuenberger (dimstar_suse)
accepted
request 572001
from
Petr Gajdos (pgajdos)
(revision 141)
- remove NameVirtualHost from documentation [bsc#1078557] - for older distros, still use SuSEFirewall2 [bsc#1071548c#7] - Replace SuSEFirewall2 by firewalld (fate#323460)
Dominique Leuenberger (dimstar_suse)
accepted
request 561062
from
Petr Gajdos (pgajdos)
(revision 140)
- build brotli module - Do not requires w3m, only recommends it. - do not build with nghttp2 for SLE-12-SP3 - which was split after SLE11
Dominique Leuenberger (dimstar_suse)
accepted
request 548029
from
Factory Maintainer (factory-maintainer)
(revision 139)
Automatic submission by obs-autosubmit
Dominique Leuenberger (dimstar_suse)
accepted
request 543119
from
Petr Gajdos (pgajdos)
(revision 138)
- APACHE_MODULES now contains authn_core in default configuration [bsc#1066661]
Dominique Leuenberger (dimstar_suse)
accepted
request 535888
from
Petr Gajdos (pgajdos)
(revision 137)
- updated to 2.4.29:
*) mod_unique_id: Use output of the PRNG rather than IP address and
pid, avoiding sleep() call and possible DNS issues at startup,
plus improving randomness for IPv6-only hosts. [Jan Kaluza]
*) mod_rewrite, core: Avoid the 'Vary: Host' response header when HTTP_HOST
is used in a condition that evaluates to true. PR 58231 [Luca Toscano]
*) mod_http2: v0.10.12, removed optimization for mutex handling in bucket
beams that could lead to assertion failure in edge cases.
[Stefan Eissing]
*) mod_proxy: Fix regression for non decimal loadfactor parameter introduced
in 2.4.28. [Jim Jagielski]
*) mod_authz_dbd: fix a segmentation fault if AuthzDBDQuery is not set.
PR 61546. [Lubos Uhliarik <luhliari redhat.com>]
*) mod_rewrite: Add support for starting External Rewriting Programs
as non-root user on UNIX systems by specifying username and group
name as third argument of RewriteMap directive. [Jan Kaluza]
*) core: Rewrite the Content-Length filter to avoid excessive memory
consumption. Chunked responses will be generated in more cases
than in previous releases. PR 61222. [Joe Orton, Ruediger Pluem]
*) mod_ssl: Fix SessionTicket callback return value, which does seem to
matter with OpenSSL 1.1. [Yann Ylavic]
- gensslcert:
* set also SAN [bsc#1045159]
* drop -C argument, it was not mapped to CN actually
* consider also case when hostname does return empty string or
does not exist [bsc#1057406]
* do not consider environment ROOT variable
Dominique Leuenberger (dimstar_suse)
accepted
request 532105
from
Petr Gajdos (pgajdos)
(revision 136)
- updated to 2.4.28:
*) SECURITY: CVE-2017-9798 (cve.mitre.org)
Corrupted or freed memory access. <Limit[Except]> must now be used in the
main configuration file (httpd.conf) to register HTTP methods before the
.htaccess files. [Yann Ylavic]
*) event: Avoid possible blocking in the listener thread when shutting down
connections. PR 60956. [Yann Ylavic]
*) mod_speling: Don't embed referer data in a link in error page.
PR 38923 [Nick Kew]
*) htdigest: prevent a buffer overflow when a string exceeds the allowed max
length in a password file.
[Luca Toscano, Hanno Böck <hanno hboeck de>]
*) mod_proxy: loadfactor parameter can now be a decimal number (eg: 1.25).
[Jim Jagielski]
*) mod_proxy_wstunnel: Allow upgrade to any protocol dynamically.
PR 61142.
*) mod_watchdog/mod_proxy_hcheck: Time intervals can now be spefified
down to the millisecond. Supports 'mi' (minute), 'ms' (millisecond),
's' (second) and 'hr' (hour!) time suffixes. [Jim Jagielski]
*) mod_http2: Fix for stalling when more than 32KB are written to a
suspended stream. [Stefan Eissing]
*) build: allow configuration without APR sources. [Jacob Champion]
*) mod_ssl, ab: Fix compatibility with LibreSSL. PR 61184.
[Bernard Spil <brnrd freebsd.org>, Michael Schlenker <msc contact.de>,
Yann Ylavic]
*) core/log: Support use of optional "tag" in syslog entries.
PR 60525. [Ben Rubson <ben.rubson gmail.com>, Jim Jagielski]
*) mod_proxy: Fix ProxyAddHeaders merging. [Joe Orton]
*) core: Disallow multiple Listen on the same IP:port when listener buckets
are configured (ListenCoresBucketsRatio > 0), consistently with the single
Dominique Leuenberger (dimstar_suse)
accepted
request 510917
from
Petr Gajdos (pgajdos)
(revision 135)
- updated to 2.4.27:
*) COMPATIBILITY: mod_lua: Remove the undocumented exported 'apr_table'
global variable when using Lua 5.2 or later. This was exported as a
side effect from luaL_register, which is no longer supported as of
Lua 5.2 which deprecates pollution of the global namespace.
[Rainer Jung]
*) COMPATIBILITY: mod_http2: Disable and give warning when using Prefork.
The server will continue to run, but HTTP/2 will no longer be negotiated.
[Stefan Eissing]
*) COMPATIBILITY: mod_proxy_fcgi: Revert to 2.4.20 FCGI behavior for the
default ProxyFCGIBackendType, fixing a regression with PHP-FPM. PR 61202.
[Jacob Champion, Jim Jagielski]
*) mod_lua: Improve compatibility with Lua 5.1, 5.2 and 5.3.
PR58188, PR60831, PR61245. [Rainer Jung]
*) mod_http2: Simplify ready queue, less memory and better performance. Update
mod_http2 version to 1.10.7. [Stefan Eissing]
*) Allow single-char field names inadvertantly disallowed in 2.4.25.
PR 61220. [Yann Ylavic]
*) htpasswd / htdigest: Do not apply the strict permissions of the temporary
passwd file to a possibly existing passwd file. PR 61240. [Ruediger Pluem]
*) core: Avoid duplicate HEAD in Allow header.
This is a regression in 2.4.24 (unreleased), 2.4.25 and 2.4.26.
PR 61207. [Christophe Jaillet]
- drop upstreamed patch:
* httpd-2.4.12-lua-5.2.patch (see upstream's PR#58188 for details)
- Adjust dependencies for rename apr/apr-util packages
Dominique Leuenberger (dimstar_suse)
accepted
request 505095
from
Petr Gajdos (pgajdos)
(revision 134)
- remove /usr/bin/http2 symlink only during apache2 package uninstall, not upgrade [bsc#1041830] - updated to 2.4.26: This release of Apache is a security, feature, and bug fix release. For details, see http://httpd.apache.org/dev/dist/CHANGES_2.4.26 - refreshed patches: . httpd-2.4.12-lua-5.2.patch . httpd-2.4.x-fate317766-config-control-two-protocol-options.diff - removed patches (upstreamed) . httpd-cache-forward-http-proxy.patch . httpd-cache-revert-svn1773397.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 500571
from
Petr Gajdos (pgajdos)
(revision 133)
- server-tunning.conf: MaxClients was renamed to MaxRequestWorkers [bsc#1037731] - gensslcert: use hostname when fqdn is too long [bsc#1035829] - remove apache-doc and apache-example-pages obsoletes/provides
Yuchen Lin (maxlin_factory)
accepted
request 481459
from
Petr Gajdos (pgajdos)
(revision 132)
(forwarded request 481458 from kukuk)
Dominique Leuenberger (dimstar_suse)
accepted
request 477566
from
Petr Gajdos (pgajdos)
(revision 131)
- start_apache2: include individual sysconfig.d files instead of sysconfig.d dir, include sysconfig.d/include.conf after httpd.conf is processed [bsc#1023616]
Dominique Leuenberger (dimstar_suse)
accepted
request 460042
from
Petr Gajdos (pgajdos)
(revision 130)
- revert an attempt to fix PR 60458 + httpd-cache-revert-svn1773397.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 459428
from
Petr Gajdos (pgajdos)
(revision 129)
- fix caching of forward proxy + httpd-cache-forward-http-proxy.patch - Don't require insserv if we don't need it.
Displaying revisions 61 - 80 of 208
