[Apache-SVN] Log of /httpd/httpd/trunk/CHANGES

Revision 884313 - (view) (annotate) - [select for diffs]
Modified Wed Nov 25 22:35:45 2009 UTC (37 hours, 54 minutes ago) by pquerna
File length: 42458 byte(s)
Diff to previous 883540 (colored)

sync to CHANGES to 2.3.4/2.3.5

Revision 883540 - (view) (annotate) - [select for diffs]
Modified Mon Nov 23 23:17:51 2009 UTC (3 days, 13 hours ago) by trawick
File length: 42410 byte(s)
Diff to previous 883082 (colored)

Replace AcceptMutex, LockFile, RewriteLock, SSLMutex, SSLStaplingMutex,
and WatchdogMutexPath with a single Mutex directive.  Add APIs to
simplify setup and user customization of APR proc and global mutexes.  
(See util_mutex.h.)  Build-time setting DEFAULT_LOCKFILE is no longer
respected; set DEFAULT_REL_RUNTIMEDIR instead.

Some existing modules, such as mod_ldap and mod_auth_digest gain 
configurability for their mutexes.

Revision 883082 - (view) (annotate) - [select for diffs]
Modified Sun Nov 22 14:30:50 2009 UTC (4 days, 21 hours ago) by takashi
File length: 42041 byte(s)
Diff to previous 882274 (colored)

KeepAlive no longer accepts other than On|Off.

Revision 882274 - (view) (annotate) - [select for diffs]
Modified Thu Nov 19 20:09:27 2009 UTC (7 days, 16 hours ago) by trawick
File length: 41957 byte(s)
Diff to previous 881808 (colored)

Remove errno from dav_error interface.  Calls to dav_new_error()
and dav_new_error_tag() must be adjusted to add an apr_status_t parameter.

Reviewed by: jorton

Revision 881808 - (view) (annotate) - [select for diffs]
Modified Wed Nov 18 15:49:48 2009 UTC (8 days, 20 hours ago) by covener
File length: 41777 byte(s)
Diff to previous 880801 (colored)

Add AuthLDAPBindAuthoritative to allow other authentication providers a chance
to run when mod_authnz_ldap finds a user but can't verify their password.

Submitted By: Justin Erenkrantz, Joe Schaefer, Tony Stevenson

Revision 880801 - (view) (annotate) - [select for diffs]
Modified Mon Nov 16 15:37:12 2009 UTC (10 days, 20 hours ago) by niq
File length: 41571 byte(s)
Diff to previous 880794 (colored)

Logging in to bugzilla gives me the bug reporter's details
to record correctly in CHANGES.

Revision 880794 - (view) (annotate) - [select for diffs]
Modified Mon Nov 16 15:24:34 2009 UTC (10 days, 21 hours ago) by niq
File length: 41551 byte(s)
Diff to previous 835095 (colored)

Build: fix --with-module to work as documented
PR 43881
Submitted: Gez Saunders
Reviewed: Nick Kew

Revision 835095 - (view) (annotate) - [select for diffs]
Modified Wed Nov 11 22:07:16 2009 UTC (2 weeks, 1 day ago) by sf
File length: 41463 byte(s)
Diff to previous 834568 (colored)

fix CHANGES entries: mod_dav_fs -> mod_dav

Revision 834533 - (view) (annotate) - [select for diffs]
Modified Tue Nov 10 16:32:57 2009 UTC (2 weeks, 2 days ago) by sf
File length: 41468 byte(s)
Diff to previous 834440 (colored)

Revert removal of the key_type byte in the lock key. There is no need to break
the format on systems without inodes.

Revision 834440 - (view) (annotate) - [select for diffs]
Modified Tue Nov 10 11:50:28 2009 UTC (2 weeks, 3 days ago) by trawick
File length: 41432 byte(s)
Diff to previous 834378 (colored)

fix e-mail address format

Revision 834378 - (view) (annotate) - [select for diffs]
Modified Tue Nov 10 07:55:13 2009 UTC (2 weeks, 3 days ago) by sctemme
File length: 41430 byte(s)
Diff to previous 834245 (colored)

enable support for ECC keys and ECDH ciphers.  Tested against
OpenSSL 1.0.0b3.  [Vipul Gupta vipul.gupta sun.com, Sander Temme]

Revision 834245 - (view) (annotate) - [select for diffs]
Modified Mon Nov 9 21:32:10 2009 UTC (2 weeks, 3 days ago) by sf
File length: 41277 byte(s)
Diff to previous 834230 (colored)

mod_dav_fs: Include uri when logging a PUT error due to connection abort.

PR: 38149

Revision 834230 - (view) (annotate) - [select for diffs]
Modified Mon Nov 9 21:04:28 2009 UTC (2 weeks, 3 days ago) by sf
File length: 41165 byte(s)
Diff to previous 834107 (colored)

Return 409 instead of 500 for a LOCK request if the parent resource does not
exist or is not a collection.

PR: 43465

Revision 834107 - (view) (annotate) - [select for diffs]
Modified Mon Nov 9 15:28:59 2009 UTC (2 weeks, 3 days ago) by sf
File length: 41008 byte(s)
Diff to previous 834062 (colored)

There is a bug report for r834073, therefore add a CHANGES entry.

Fix litmus warning: According to RFC2518, COPY to non-existant collection
should give 409 CONFLICT.

PR: 39299

Revision 834062 - (view) (annotate) - [select for diffs]
Modified Mon Nov 9 13:50:21 2009 UTC (2 weeks, 3 days ago) by sf
File length: 40812 byte(s)
Diff to previous 834049 (colored)

Don't delete the whole file if a PUT with content-range failed.

PR: 42896

Revision 834049 - (view) (annotate) - [select for diffs]
Modified Mon Nov 9 13:14:07 2009 UTC (2 weeks, 3 days ago) by sf
File length: 40698 byte(s)
Diff to previous 833738 (colored)

Make PUT with DAV_MODE_WRITE_TRUNC create a temporary file first and, when the
transfer has been completed successfully, move it over the old file.

Since this would break inode keyed locking, switch to filename keyed locking
exclusively.

PR: 39815
Submitted by: Paul Querna, Stefan Fritsch

Revision 833738 - (view) (annotate) - [select for diffs]
Modified Sat Nov 7 19:19:10 2009 UTC (2 weeks, 5 days ago) by sf
File length: 40333 byte(s)
Diff to previous 833322 (colored)

mod_log_config: Make ${cookie}C correctly match whole cookie names
instead of substrings.

PR: 28037
Submitted by: Dan Franklin <dan dan-franklin.com>, Stefan Fritsch

Revision 832434 - (view) (annotate) - [select for diffs]
Modified Tue Nov 3 14:36:48 2009 UTC (3 weeks, 2 days ago) by trawick
File length: 40161 byte(s)
Diff to previous 832172 (colored)

Change the configure-based MPM build mechanism to support building
an MPM as a shared shared or dynamic module, primarily using the
APACHE_MPM_MODULE() function.

--enable-mpms-shared now builds/installs the MPMs as dynamic modules.
(But no LoadModule directives are added.)

Revision 832172 - (view) (annotate) - [select for diffs]
Modified Mon Nov 2 22:51:45 2009 UTC (3 weeks, 3 days ago) by niq
File length: 40106 byte(s)
Diff to previous 831542 (colored)

Vhosts: treating a pure-numeric Host header as a port is nonsense.
PR 44979

Revision 831542 - (view) (annotate) - [select for diffs]
Modified Sat Oct 31 14:02:04 2009 UTC (3 weeks, 5 days ago) by covener
File length: 40005 byte(s)
Diff to previous 829664 (colored)

Stop trying to set the referral HOP limit on each connection since most SDKs don't seem
to do anything with it, and causes an error on released openldap levels.  

Also moves/remove some macros internal to mod_ldap out of the public header for a major bump.

Reported against APR in PR47501, but httpd shouldn't be asking for the option
by default.

Revision 829664 - (view) (annotate) - [select for diffs]
Modified Sun Oct 25 22:06:18 2009 UTC (4 weeks, 4 days ago) by covener
File length: 39763 byte(s)
Diff to previous 829619 (colored)

CharsetOptions NoImplicitAdd wasn't referenced during insert_filter callback.

Doc: Correct defaults, charset_lite inserts itself by as soon as you tell it about
input and output character sets.

Revision 829619 - (view) (annotate) - [select for diffs]
Modified Sun Oct 25 17:21:10 2009 UTC (4 weeks, 4 days ago) by jorton
File length: 39681 byte(s)
Diff to previous 829362 (colored)

Add support for OCSP "stapling":

* modules/ssl/ssl_util_stapling.c: New file.

* modules/ssl/config.m4, modules/ssl/mod_ssl.dsp: Build it.

* modules/ssl/ssl_toolkit_compat.h: Define HAVE_OCSP_STAPLING if
  OpenSSL is of suitable version (>= 0.9.8g) and capability (TLS
  extension support enabled).

* modules/ssl/mod_ssl.c: Add config directives.

* modules/ssl/ssl_private.h: Add prototypes for new functions.
  (SSLModConfigRec): Add fields for stapling socache instance and
  associated mutex.
  (modssl_ctx_t): Add config fields for stapling.

* modules/ssl/ssl_engine_init.c (ssl_init_Module, ssl_init_Child):
  Call the stapling initialization functions.

* modules/ssl/ssl_engine_config.c: Add config hooks.

* modules/ssl/ssl_scache.c: Create, initialize and destroy the socache
  instance for OCSP responses.

Submitted by: Dr Stephen Henson <shenson oss-institute.org>

Revision 829362 - (view) (annotate) - [select for diffs]
Modified Sat Oct 24 13:29:03 2009 UTC (4 weeks, 5 days ago) by sf
File length: 39569 byte(s)
Diff to previous 829185 (colored)

Only allow parens in filename if cachesize is given. Return error otherwise
to catch missing parens.

Revision 829185 - (view) (annotate) - [select for diffs]
Modified Fri Oct 23 19:27:32 2009 UTC (4 weeks, 6 days ago) by sf
File length: 39577 byte(s)
Diff to previous 826822 (colored)

Only parse cache size in parens at the end of the string. Fixes SSLSessionCache
directive mis-parsing parens in pathname.

PR: 47945

Revision 826822 - (view) (annotate) - [select for diffs]
Modified Mon Oct 19 21:41:31 2009 UTC (5 weeks, 3 days ago) by sf
File length: 39393 byte(s)
Diff to previous 826805 (colored)

htpasswd: Improve out of disk space handling

PR: 30877

Revision 826805 - (view) (annotate) - [select for diffs]
Modified Mon Oct 19 20:53:04 2009 UTC (5 weeks, 3 days ago) by sf
File length: 39314 byte(s)
Diff to previous 826772 (colored)

Change the default algorithm for htpasswd to MD5 on all platforms. Crypt
with its 8 character limit is not useful anymore.

Revision 826772 - (view) (annotate) - [select for diffs]
Modified Mon Oct 19 19:22:55 2009 UTC (5 weeks, 3 days ago) by rpluem
File length: 39239 byte(s)
Diff to previous 826497 (colored)

* Reduce memory consumption when processing very long lines by at least
  doubleing the size of the new buffer each time.

PR: 48024
Submitted by: Basant Kumar Kukreja <basant.kukreja sun.com>
Reviewed by: rpluem

Revision 826497 - (view) (annotate) - [select for diffs]
Modified Sun Oct 18 19:02:20 2009 UTC (5 weeks, 4 days ago) by sf
File length: 39103 byte(s)
Diff to previous 824072 (colored)

ab: Fix segfault in case the argument for -n is a very large number.

PR: 47178
Submitted by: Philipp Hagemeister <oss phihag.de>
Reviewed by: Stefan Fritsch

Revision 824072 - (view) (annotate) - [select for diffs]
Modified Sun Oct 11 13:38:51 2009 UTC (6 weeks, 4 days ago) by sf
File length: 38975 byte(s)
Diff to previous 823794 (colored)

Allow ProxyPreserveHost to work in <Proxy> sections

PR: 34901

Revision 823794 - (view) (annotate) - [select for diffs]
Modified Sat Oct 10 05:32:37 2009 UTC (6 weeks, 6 days ago) by takashi
File length: 38884 byte(s)
Diff to previous 823703 (colored)

configure: Fix THREADED_MPMS so that mod_cgid is
enabled again for worker MPM.

Revision 823703 - (view) (annotate) - [select for diffs]
Modified Fri Oct 9 21:41:31 2009 UTC (6 weeks, 6 days ago) by minfrin
File length: 38778 byte(s)
Diff to previous 823618 (colored)

mod_dav: Provide a mechanism to obtain the request_rec and pathname
from the dav_resource.
Submitted by: Jari Urpalainen <jari.urpalainen nokia.com>,
              Brian France <brian brianfrance.com>

Revision 823618 - (view) (annotate) - [select for diffs]
Modified Fri Oct 9 17:10:43 2009 UTC (6 weeks, 6 days ago) by takashi
File length: 38587 byte(s)
Diff to previous 823613 (colored)

Add PR number for r823613.

Revision 823613 - (view) (annotate) - [select for diffs]
Modified Fri Oct 9 16:57:20 2009 UTC (6 weeks, 6 days ago) by takashi
File length: 38578 byte(s)
Diff to previous 823536 (colored)

Build: Use install instead of cp if available on
installing modules to avoid segfault.

Submitted by: <hirose31 gmail.com>
PR: 47951

Revision 823536 - (view) (annotate) - [select for diffs]
Modified Fri Oct 9 12:58:09 2009 UTC (6 weeks, 6 days ago) by poirier
File length: 38448 byte(s)
Diff to previous 823337 (colored)

mod_cache: add Cache-control: s-maxage to cacheability decisions per RFC 2616.

Revision 823337 - (view) (annotate) - [select for diffs]
Modified Thu Oct 8 21:42:13 2009 UTC (7 weeks ago) by sf
File length: 38356 byte(s)
Diff to previous 822881 (colored)

mod_logio: introduce new optional function ap_logio_get_last_bytes to get
total byte count of last request.

core: Use ap_logio_get_last_bytes to report more accurate byte counts in
mod_status if mod_logio is loaded. Without mod_logio, don't increment
counts for HEAD requests.

PR: 25656

Revision 822870 - (view) (annotate) - [select for diffs]
Modified Wed Oct 7 19:35:09 2009 UTC (7 weeks, 1 day ago) by sf
File length: 38437 byte(s)
Diff to previous 822458 (colored)

Update comments in util_filter.h about bucket and brigade ownership to reflect
current practice and the advice from manual/developer/output-filters.xml.

Submitted by: Rici Lake <rici ricilake.net>
Reviewed by: Stefan Fritsch, Joe Orton

Revision 822458 - (view) (annotate) - [select for diffs]
Modified Tue Oct 6 19:39:38 2009 UTC (7 weeks, 2 days ago) by sf
File length: 38231 byte(s)
Diff to previous 822004 (colored)

Work around broken cache management in mod_ldap: If LDAPSharedCacheSize is too
small, try to free some memory by purging the cache and log a warning.

Also increase the default LDAPSharedCacheSize to 500000. This is a more
realistic size suitable for the default values of 1024 for LdapCacheEntries and
LdapOpCacheEntries.

PR: 46749

Revision 822004 - (view) (annotate) - [select for diffs]
Modified Mon Oct 5 20:56:48 2009 UTC (7 weeks, 3 days ago) by minfrin
File length: 37905 byte(s)
Diff to previous 821993 (colored)

mod_rewrite: Make sure that a hostname:port isn't fully qualified if
the request is a CONNECT request.
Submitted by: Bill Zajac <billz consultla.com>

Revision 821993 - (view) (annotate) - [select for diffs]
Modified Mon Oct 5 20:27:19 2009 UTC (7 weeks, 3 days ago) by minfrin
File length: 37756 byte(s)
Diff to previous 821763 (colored)

mod_cache: Teach CacheEnable and CacheDisable to work from within a
Location section, in line with how ProxyPass works.

Revision 821763 - (view) (annotate) - [select for diffs]
Modified Mon Oct 5 12:13:20 2009 UTC (7 weeks, 4 days ago) by poirier
File length: 37608 byte(s)
Diff to previous 821591 (colored)

Back out r818492 which prevented all caching of incomplete responses.
Instead move the check to mod_disk_cache.  This leaves cache implementations
the flexibility to implement caching of incomplete responses.
PR: 15866

Revision 821591 - (view) (annotate) - [select for diffs]
Modified Sun Oct 4 19:39:38 2009 UTC (7 weeks, 4 days ago) by sf
File length: 37603 byte(s)
Diff to previous 821542 (colored)

Add mod_reqtimeout: New module to set timeouts and minimum data rates for
receiving requests from the client.

Revision 821542 - (view) (annotate) - [select for diffs]
Modified Sun Oct 4 13:54:01 2009 UTC (7 weeks, 4 days ago) by minfrin
File length: 37469 byte(s)
Diff to previous 821477 (colored)

Correct the attribution in CHANGES.

Revision 821477 - (view) (annotate) - [select for diffs]
Modified Sun Oct 4 08:08:50 2009 UTC (7 weeks, 5 days ago) by sf
File length: 37465 byte(s)
Diff to previous 821471 (colored)

Make sure to not destroy bucket brigades that have been created by earlier
filters. Otherwise the pool cleanups would be removed causing potential memory
leaks later on.

Revision 821471 - (view) (annotate) - [select for diffs]
Modified Sun Oct 4 07:37:28 2009 UTC (7 weeks, 5 days ago) by sf
File length: 37310 byte(s)
Diff to previous 821333 (colored)

core, mod_deflate, mod_sed: Reduce memory usage by reusing bucket
brigades in several places

Revision 821333 - (view) (annotate) - [select for diffs]
Modified Sat Oct 3 14:54:00 2009 UTC (7 weeks, 5 days ago) by minfrin
File length: 37188 byte(s)
Diff to previous 821321 (colored)

mod_cache: Fix uri_meets_conditions() so that CacheEnable will
match by scheme, or by a wildcarded hostname.
PR: 40169
Submitted by: Peter Grandi <pg_asf asf.for.sabi.co.uk>
Reviewed by: Graham Leggett

Revision 821321 - (view) (annotate) - [select for diffs]
Modified Sat Oct 3 13:46:48 2009 UTC (7 weeks, 5 days ago) by sf
File length: 36999 byte(s)
Diff to previous 821298 (colored)

suexec: Allow to log an error if exec fails by setting FD_CLOEXEC
on the log file instead of closing it.

PR: 10744
Submitted by: Nicolas Rachinsky
Reviewed by: Stefan Fritsch

Revision 821298 - (view) (annotate) - [select for diffs]
Modified Sat Oct 3 12:13:41 2009 UTC (7 weeks, 6 days ago) by sf
File length: 36854 byte(s)
Diff to previous 821202 (colored)

Make RemoveType override the info from TypesConfig

Revision 821202 - (view) (annotate) - [select for diffs]
Modified Fri Oct 2 23:47:37 2009 UTC (7 weeks, 6 days ago) by minfrin
File length: 36754 byte(s)
Diff to previous 820760 (colored)

mod_cache: Introduce the option to run the cache from within the
normal request handler, and to allow fine grained control over
where in the filter chain content is cached.

Revision 820760 - (view) (annotate) - [select for diffs]
Modified Thu Oct 1 19:28:36 2009 UTC (8 weeks ago) by poirier
File length: 36548 byte(s)
Diff to previous 820401 (colored)

core: Treat timeout reading request as 408 error, not 400.
Log 408 errors in access log as was done in Apache 1.3.x.

PR: 39785
Submitted by: Nobutaka Mantani, Stefan Fritsch
Reviewed and added to by: Dan Poirier

Revision 820401 - (view) (annotate) - [select for diffs]
Modified Wed Sep 30 19:19:10 2009 UTC (8 weeks, 1 day ago) by rpluem
File length: 36312 byte(s)
Diff to previous 818492 (colored)

* Fix a regression from r724717 by reintroducing SSL_CLIENT_S_DN,
  SSL_CLIENT_I_DN, SSL_SERVER_S_DN, SSL_SERVER_I_DN back to the environment
  variables to be set by mod_ssl.

Submitted by: Peter Sylvester <peter.sylvester edelweb.fr>
Reviewed by: rpluem

Revision 818492 - (view) (annotate) - [select for diffs]
Modified Thu Sep 24 14:25:19 2009 UTC (2 months ago) by poirier
File length: 36105 byte(s)
Diff to previous 818204 (colored)

mod_cache: don't cache incomplete responses, per RFC 2616, 13.8.

PR: 15866

Revision 818204 - (view) (annotate) - [select for diffs]
Modified Wed Sep 23 18:57:07 2009 UTC (2 months ago) by poirier
File length: 36005 byte(s)
Diff to previous 816893 (colored)

Fix a segfault in ab when run in verbose mode using https.

PR: 46393
Submitted by: Stefan Fritsch <sf sfritsch.de>, Ryan Niebur
Reviewed by: poirier

Revision 816893 - (view) (annotate) - [select for diffs]
Modified Sat Sep 19 11:20:24 2009 UTC (2 months, 1 week ago) by minfrin
File length: 35922 byte(s)
Diff to previous 815502 (colored)

mod_dav: Allow other modules to become providers and add resource types
to the DAV response.
Submitted by: Jari Urpalainen <jari.urpalainen nokia.com>, Brian France <brian brianfrance.com>

Revision 815502 - (view) (annotate) - [select for diffs]
Modified Tue Sep 15 21:41:05 2009 UTC (2 months, 1 week ago) by niq
File length: 35729 byte(s)
Diff to previous 815380 (colored)

Change Fallback to FallbackResource after extensive discussion with
wrowe and DrBacchus.

Revision 815380 - (view) (annotate) - [select for diffs]
Modified Tue Sep 15 16:10:21 2009 UTC (2 months, 1 week ago) by niq
File length: 35721 byte(s)
Diff to previous 814866 (colored)

Change "DefaultHandler" to "Fallback" as discussed on list and
today on IRC, in the hope that everyone will be satisfied.
PR: 47184 + subsequent veto of original directive name

Revision 814866 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 21:30:32 2009 UTC (2 months, 1 week ago) by rpluem
File length: 35727 byte(s)
Diff to previous 814860 (colored)

* Follow the standard CHANGES format for security changes.

Revision 814860 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 21:21:33 2009 UTC (2 months, 1 week ago) by minfrin
File length: 35665 byte(s)
Diff to previous 814850 (colored)

Correct attribution for mod_dav options provider interface.

Revision 814850 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 20:55:40 2009 UTC (2 months, 1 week ago) by minfrin
File length: 35615 byte(s)
Diff to previous 814832 (colored)

Add attribution and CVE notices.

Revision 814832 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 20:31:18 2009 UTC (2 months, 1 week ago) by minfrin
File length: 35374 byte(s)
Diff to previous 814807 (colored)

mod_dav: Allow other modules to add things to the DAV or Allow headers
of an OPTIONS request.
Submitted by: Brian France <brian brianfrance.com>

Revision 814807 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 19:46:36 2009 UTC (2 months, 1 week ago) by rpluem
File length: 35230 byte(s)
Diff to previous 814728 (colored)

* Lower memory usage by reusing the brigade instead of constantly
  recerating one.

Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem

Revision 814728 - (view) (annotate) - [select for diffs]
Modified Mon Sep 14 16:32:30 2009 UTC (2 months, 1 week ago) by poirier
File length: 35137 byte(s)
Diff to previous 814337 (colored)

mod_mime: detect invalid use of MultiviewsMatch inside Location and
LocationMatch sections.  Document that such usage is not valid.
PR47754.

Revision 814337 - (view) (annotate) - [select for diffs]
Modified Sun Sep 13 16:35:40 2009 UTC (2 months, 1 week ago) by minfrin
File length: 35010 byte(s)
Diff to previous 814334 (colored)

mod_request: Make sure the KeptBodySize directive rejects values
that aren't valid numbers.

Revision 814334 - (view) (annotate) - [select for diffs]
Modified Sun Sep 13 16:04:13 2009 UTC (2 months, 2 weeks ago) by minfrin
File length: 34890 byte(s)
Diff to previous 814327 (colored)

mod_session_crypto: Sanity check should the potentially encrypted
session cookie be too short.

Revision 814327 - (view) (annotate) - [select for diffs]
Modified Sun Sep 13 14:59:28 2009 UTC (2 months, 2 weeks ago) by minfrin
File length: 34767 byte(s)
Diff to previous 814091 (colored)

mod_session.c: Prevent a segfault when session is added but not
configured.

Revision 814091 - (view) (annotate) - [select for diffs]
Modified Fri Sep 11 23:57:48 2009 UTC (2 months, 2 weeks ago) by minfrin
File length: 34663 byte(s)
Diff to previous 813396 (colored)

htcacheclean: 19 ways to fail, 1 error message. Fixed.

Revision 813396 - (view) (annotate) - [select for diffs]
Modified Thu Sep 10 12:12:58 2009 UTC (2 months, 2 weeks ago) by poirier
File length: 34585 byte(s)
Diff to previous 813376 (colored)

Fail server startup when mod_auth_digest is unable to
provide the security checks configured.

Revision 813178 - (view) (annotate) - [select for diffs]
Modified Wed Sep 9 23:56:29 2009 UTC (2 months, 2 weeks ago) by minfrin
File length: 34652 byte(s)
Diff to previous 813105 (colored)

mod_proxy_connect: The connect method doesn't work if the client is 
connecting to the apache proxy through an ssl socket. Fixed.
PR: 29744.
Submitted by: Brad Boyer, Mark Cave-Ayland, Julian Gilbey, Fabrice Durand,
David Gence, Tim Dodge, Per Gunnar Hans, Emmanuel Elango, Kevin Croft,
Rudolf Cardinal

Revision 813105 - (view) (annotate) - [select for diffs]
Modified Wed Sep 9 20:35:05 2009 UTC (2 months, 2 weeks ago) by minfrin
File length: 34338 byte(s)
Diff to previous 812934 (colored)

mod_ssl: The error message when SSLCertificateFile is missing should at
least give the name or position of the problematic virtual host definition.
[Stefan Fritsch sf sfritsch.de]

Revision 812934 - (view) (annotate) - [select for diffs]
Modified Wed Sep 9 13:04:34 2009 UTC (2 months, 2 weeks ago) by poirier
File length: 34142 byte(s)
Diff to previous 811806 (colored)

mod_auth_digest: When qop is none, client doesn't send nonce count,
but module was segfaulting trying to check the nonce count anyway.

Revision 811806 - (view) (annotate) - [select for diffs]
Modified Sun Sep 6 11:03:14 2009 UTC (2 months, 3 weeks ago) by minfrin
File length: 34073 byte(s)
Diff to previous 808965 (colored)

Add support for HTTP PUT to ab.
Submiited by: Jeff Barnes <jbarnesweb yahoo.com>

Revision 808965 - (view) (annotate) - [select for diffs]
Modified Fri Aug 28 17:37:12 2009 UTC (2 months, 4 weeks ago) by jim
File length: 33998 byte(s)
Diff to previous 808895 (colored)

And additional ServerTokens improvement...

Revision 808895 - (view) (annotate) - [select for diffs]
Modified Fri Aug 28 14:31:00 2009 UTC (2 months, 4 weeks ago) by jim
File length: 33905 byte(s)
Diff to previous 808240 (colored)

OK, might as well finish this... Allow ServerTokens Off

Revision 808240 - (view) (annotate) - [select for diffs]
Modified Thu Aug 27 01:02:42 2009 UTC (3 months ago) by niq
File length: 33766 byte(s)
Diff to previous 808212 (colored)

mod_headers: generalise the envclause to support conditional
header rules via ap_expr.

Revision 808212 - (view) (annotate) - [select for diffs]
Modified Wed Aug 26 22:46:35 2009 UTC (3 months ago) by minfrin
File length: 33653 byte(s)
Diff to previous 808150 (colored)

mod_cache: Introduce the thundering herd lock, a mechanism to keep
the flood of requests at bay that strike a backend webserver as
a cached entity goes stale.

Revision 808150 - (view) (annotate) - [select for diffs]
Modified Wed Aug 26 18:29:49 2009 UTC (3 months ago) by poirier
File length: 33461 byte(s)
Diff to previous 807015 (colored)

Fix shm, rmm, and lock problems.

PR: 16057

Revision 807015 - (view) (annotate) - [select for diffs]
Modified Sun Aug 23 20:30:47 2009 UTC (3 months ago) by niq
File length: 33365 byte(s)
Diff to previous 806920 (colored)

Preserve port over internal redirection
PR#35999
A four-year-old buglet!

Revision 806920 - (view) (annotate) - [select for diffs]
Modified Sun Aug 23 02:00:43 2009 UTC (3 months ago) by niq
File length: 33258 byte(s)
Diff to previous 804764 (colored)

Return consistent error status for proxy unable to connect
PR 46971

Revision 804764 - (view) (annotate) - [select for diffs]
Modified Sun Aug 16 20:29:47 2009 UTC (3 months, 1 week ago) by rpluem
File length: 33101 byte(s)
Diff to previous 803704 (colored)

* Do better checking of pollset operations in various places to avoid segfaults.

PR: 46467
Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem

Revision 803704 - (view) (annotate) - [select for diffs]
Modified Wed Aug 12 20:42:48 2009 UTC (3 months, 2 weeks ago) by rpluem
File length: 32932 byte(s)
Diff to previous 798943 (colored)

* Correctly create an empty cell if the description for a file is missing.

PR: 47682
Submitted by: Peter Poeml <poeml suse.de>
Reviewed by: rpluem

Revision 798943 - (view) (annotate) - [select for diffs]
Modified Wed Jul 29 15:15:38 2009 UTC (3 months, 4 weeks ago) by trawick
File length: 32794 byte(s)
Diff to previous 797563 (colored)

ab: Fix broken error messages after resolver or connect() failures.

The APR error code was truncated because ab used an incorrect data
type.

Revision 797563 - (view) (annotate) - [select for diffs]
Modified Fri Jul 24 17:15:29 2009 UTC (4 months ago) by poirier
File length: 32700 byte(s)
Diff to previous 792409 (colored)

htdbm: Fix possible buffer overflow if dbm database has very
long values.  PR 30586 [Dan Poirier]

PR 30586
Reported by: Ulf Harnhammar, Swedish IT Incident Centre

Revision 792409 - (view) (annotate) - [select for diffs]
Modified Thu Jul 9 06:28:54 2009 UTC (4 months, 2 weeks ago) by rpluem
File length: 32591 byte(s)
Diff to previous 791337 (colored)

* Return APR_EOF if request body is shorter than the length announced by the
  client.

PR: 33098
Submitted by: Stefan Fritsch <sf sfritsch.de>

Revision 791337 - (view) (annotate) - [select for diffs]
Modified Sun Jul 5 23:10:30 2009 UTC (4 months, 3 weeks ago) by niq
File length: 32448 byte(s)
Diff to previous 790587 (colored)

Correctly set suexec_enabled when httpd is run by non-root
PR 42175

Revision 790587 - (view) (annotate) - [select for diffs]
Modified Thu Jul 2 13:41:18 2009 UTC (4 months, 3 weeks ago) by jorton
File length: 32268 byte(s)
Diff to previous 787683 (colored)

Security fix for CVE-2009-1890:

* modules/proxy/mod_proxy_http.c (stream_reqbody_cl): Specify the base
  passed to apr_strtoff, and validate the Content-Length in the same
  way the HTTP_IN filter does.  If the number of bytes streamed
  exceeds the expected body length, bail out of the loop.

Thanks to: Toadie <toadie643 gmail.com> for reporting and diagnosis of
	this issue.
Submitted by: niq, jorton

Revision 787683 - (view) (annotate) - [select for diffs]
Modified Tue Jun 23 14:10:06 2009 UTC (5 months ago) by jorton
File length: 32006 byte(s)
Diff to previous 785661 (colored)

* modules/ssl/ssl_engine_vars.c (ssl_var_lookup_ssl_cert_dn_rec): Map
  the _UID variable to NID_userId, where defined by OpenSSL.

PR: 45107
Submitted by: Michael Ströder <michael stroeder.com>,
     Peter Sylvester <peter.sylvester edelweb.fr>

Revision 785661 - (view) (annotate) - [select for diffs]
Modified Wed Jun 17 15:21:21 2009 UTC (5 months, 1 week ago) by niq
File length: 31817 byte(s)
Diff to previous 785575 (colored)

mod_proxy_http: fix case sensitivity checking transfer encoding
PR 47383 [Ryuzo Yamamoto]

Revision 785575 - (view) (annotate) - [select for diffs]
Modified Wed Jun 17 12:45:21 2009 UTC (5 months, 1 week ago) by niq
File length: 31689 byte(s)
Diff to previous 785425 (colored)

mod_alias: Ensure Redirect issues a valid URL
PR 44020
Patch by Håkon Stordahl

Revision 785425 - (view) (annotate) - [select for diffs]
Modified Tue Jun 16 21:57:25 2009 UTC (5 months, 1 week ago) by niq
File length: 31583 byte(s)
Diff to previous 783740 (colored)

Add DefaultHandler directive to mod_dir.
PR 47184

Revision 783740 - (view) (annotate) - [select for diffs]
Modified Thu Jun 11 12:32:59 2009 UTC (5 months, 2 weeks ago) by rpluem
File length: 31381 byte(s)
Diff to previous 783734 (colored)

* Close the listening Unix socket of the mod_cgid daemon in the CGI scripts.

PR: 47335
Submitted by: Kornél Pál <kornelpal gmail.com>
Reviewed by: rpluem

Revision 783734 - (view) (annotate) - [select for diffs]
Modified Thu Jun 11 12:19:44 2009 UTC (5 months, 2 weeks ago) by rpluem
File length: 31241 byte(s)
Diff to previous 780648 (colored)

* Remove locking for writing to the rewritelog. There seems to be no reason
  why locking is required here.
  See also: http://marc.info/?l=apache-httpd-dev&m=124282193217344&w=2

PR: 46942
Submitted by:  Dan Poirier <poirier pobox.com>
Reviewed by: rpluem

Revision 780648 - (view) (annotate) - [select for diffs]
Modified Mon Jun 1 13:37:59 2009 UTC (5 months, 3 weeks ago) by jim
File length: 31127 byte(s)
Diff to previous 778942 (colored)

Fix error with arg counting

Revision 778942 - (view) (annotate) - [select for diffs]
Modified Wed May 27 00:58:41 2009 UTC (6 months ago) by niq
File length: 31112 byte(s)
Diff to previous 778531 (colored)

mod_alias: Enforce sanity in args to Redirect
PR 44729

Revision 778531 - (view) (annotate) - [select for diffs]
Modified Mon May 25 23:19:16 2009 UTC (6 months ago) by niq
File length: 31008 byte(s)
Diff to previous 777042 (colored)

Fix IPv6 literal addresses passed to a proxied backend.
PR 47177
Patch by Carlos Garcia Braschi

Revision 777042 - (view) (annotate) - [select for diffs]
Modified Thu May 21 10:42:54 2009 UTC (6 months, 1 week ago) by rpluem
File length: 30881 byte(s)
Diff to previous 776325 (colored)

* Add CacheIgnoreURLSessionIdentifiers directive to ignore
  defined session identifiers encoded in the URL when caching.

Revision 776325 - (view) (annotate) - [select for diffs]
Modified Tue May 19 14:24:31 2009 UTC (6 months, 1 week ago) by takashi
File length: 30719 byte(s)
Diff to previous 774888 (colored)

Fix the error string returned by RewriteRule. RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd argument of RewriteRule was not started with "[" or not ended with "]".

PR: 45082
Submitted by: Vitaly Polonetsky <m_vitaly topixoft.com>

Revision 774888 - (view) (annotate) - [select for diffs]
Modified Thu May 14 19:21:57 2009 UTC (6 months, 2 weeks ago) by rjung
File length: 30445 byte(s)
Diff to previous 774755 (colored)

Revert second part of r774755.

Revision 774755 - (view) (annotate) - [select for diffs]
Modified Thu May 14 12:59:25 2009 UTC (6 months, 2 weeks ago) by rjung
File length: 30532 byte(s)
Diff to previous 772356 (colored)

Allow relative pathnames for piped loggers in ErrorLog.

Revision 772356 - (view) (annotate) - [select for diffs]
Modified Wed May 6 16:53:55 2009 UTC (6 months, 3 weeks ago) by rjung
File length: 30445 byte(s)
Diff to previous 767994 (colored)

Fix usage message on the Windows platform.
- do not include graceful commands and duplicate
  start|restart|stop
- add ServerRoot to the parameters encapsulated by "-n"

Revision 767994 - (view) (annotate) - [select for diffs]
Modified Thu Apr 23 17:45:41 2009 UTC (7 months ago) by covener
File length: 30392 byte(s)
Diff to previous 767089 (colored)

Pass the $@ array and not the flattened version of it in non-SysV mode:

$ bash -x bin/apachectl -t -c "foo bar"
before: +bin/httpd -t -c foo bar
after:  +bin/httpd -t -c 'foo bar'

Revision 767089 - (view) (annotate) - [select for diffs]
Modified Tue Apr 21 09:44:43 2009 UTC (7 months, 1 week ago) by mjc
File length: 30249 byte(s)
Diff to previous 766938 (colored)

Use CVE-2009-1191 for this issue.  We would only
share a CVE name where the flaw was due to a
shared code base, and this isn't the case for
the mod_jk CVE-2008-5519 issue.

Revision 766938 - (view) (annotate) - [select for diffs]
Modified Tue Apr 21 01:29:15 2009 UTC (7 months, 1 week ago) by niq
File length: 30249 byte(s)
Diff to previous 765725 (colored)

mod_dbd: add DBDInitSQL command.  PR 46827
Patch by Marko Kevac.

Revision 765725 - (view) (annotate) - [select for diffs]
Modified Thu Apr 16 19:23:45 2009 UTC (7 months, 1 week ago) by trawick
File length: 30092 byte(s)
Diff to previous 764239 (colored)

mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).

Dynamically allocate the AF_UNIX sockaddr based on the required filename size.
For some platforms (e.g., Solaris, OS X, FreeBSD), this allows longer
socket filenames to be used.

When the name is too long, the failure reporting is more consistent and a 
socket with truncated pathname is not left stranded.  The user still needs
to use ScriptSock to specify a shorter name.

An extra unlink() failure message may be generated when attempting to clean 
up the socket after a daemon initialization error; the message is surpressed 
for ENOTENT, but not for ENAMETOOLONG.

PR: 47037

Revision 764239 - (view) (annotate) - [select for diffs]
Modified Sat Apr 11 19:49:12 2009 UTC (7 months, 2 weeks ago) by rpluem
File length: 29983 byte(s)
Diff to previous 763885 (colored)

* Check more strictly that the backend follows the AJP protocol.

Submitted by: mturk

Revision 763394 - (view) (annotate) - [select for diffs]
Modified Wed Apr 8 21:06:46 2009 UTC (7 months, 2 weeks ago) by rpluem
File length: 29835 byte(s)
Diff to previous 761329 (colored)

* Avoid delivering content from a previous request which failed to send a request
  body by closing the connection to the backend in this case instead of reusing it.

CVE: CVE-2008-5519
PR: 46949
Reviewed by: jim, wrowe

Revision 761329 - (view) (annotate) - [select for diffs]
Modified Thu Apr 2 15:49:29 2009 UTC (7 months, 3 weeks ago) by rjung
File length: 29697 byte(s)
Diff to previous 761246 (colored)

The remote port information was forgotten from the builtin
data of the AJP 13 protocol.  Since the servlet spec allows
to retrieve it via getRemotePort(), we provide the port to
the Tomcat connector as an additional request attribute.
Modern/future Tomcat versions know how to retrieve
the remote port from the attribute AJP_REMOTE_PORT.

See:
https://issues.apache.org/bugzilla/show_bug.cgi?id=41263
http://svn.eu.apache.org/viewvc?view=rev&revision=756926
http://svn.eu.apache.org/viewvc?view=rev&revision=757223

Revision 761246 - (view) (annotate) - [select for diffs]
Modified Thu Apr 2 11:00:14 2009 UTC (7 months, 3 weeks ago) by trawick
File length: 29613 byte(s)
Diff to previous 760866 (colored)

document the key API considerations related to the changes for loadable MPMs, and give 
unbundled modules an MMN to check for

Revision 760866 - (view) (annotate) - [select for diffs]
Modified Wed Apr 1 12:07:47 2009 UTC (7 months, 3 weeks ago) by rpluem
File length: 29239 byte(s)
Diff to previous 760379 (colored)

* Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives to enable
  stricter checking of remote server certificates.

  (docs/manual/mod/mod_ssl.xml)
    Documentation of SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN.

  (modules/proxy/mod_proxy_http.c)
    Set the hostname of the request URL as note on the connection.

  (modules/ssl/ssl_private.h)
    Add proxy_ssl_check_peer_expire and proxy_ssl_check_peer_cn fields to
    the SSLSrvConfigRec.

  (modules/ssl/ssl_engine_config.c)
    Directives stuff for SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN.

  (modules/ssl/ssl_engine_io.c)
    Check whether the remote servers certificate is expired / if there is a
    mismatch between the requested hostanme and the remote server certificates
    CN field.
    Be able to parse ASN1 times.

  (modules/ssl/mod_ssl.c)
    Directives stuff for SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN.

Revision 760379 - (view) (annotate) - [select for diffs]
Modified Tue Mar 31 09:32:14 2009 UTC (7 months, 4 weeks ago) by niq
File length: 29075 byte(s)
Diff to previous 760167 (colored)

http://marc.info/?l=apache-httpd-dev&m=123845333914309&w=2

Revision 760167 - (view) (annotate) - [select for diffs]
Modified Mon Mar 30 20:49:10 2009 UTC (7 months, 4 weeks ago) by niq
File length: 29183 byte(s)
Diff to previous 759946 (colored)

HTTPD script support
When a script returns a no-body response code, pretend it was a HEAD
request so as to drop any body the script might erroneously generate.

Revision 759946 - (view) (annotate) - [select for diffs]
Modified Mon Mar 30 12:43:09 2009 UTC (7 months, 4 weeks ago) by trawick
File length: 29075 byte(s)
Diff to previous 759832 (colored)

edit CHANGES for r759924

Revision 759832 - (view) (annotate) - [select for diffs]
Modified Mon Mar 30 02:19:02 2009 UTC (7 months, 4 weeks ago) by covener
File length: 29072 byte(s)
Diff to previous 759681 (colored)

  *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
     returns EINPROGRESS and a subsequent poll() returns only POLLERR.
     Observed on HP-UX.

Revision 759681 - (view) (annotate) - [select for diffs]
Modified Sun Mar 29 13:58:46 2009 UTC (7 months, 4 weeks ago) by trawick
File length: 28882 byte(s)
Diff to previous 759046 (colored)

fix mispelled module name (helps look for applicable fixes)

Revision 759046 - (view) (annotate) - [select for diffs]
Modified Fri Mar 27 08:07:29 2009 UTC (8 months ago) by trawick
File length: 28882 byte(s)
Diff to previous 758626 (colored)

start an entry to list the axed platforms

Revision 758626 - (view) (annotate) - [select for diffs]
Modified Thu Mar 26 13:25:25 2009 UTC (8 months ago) by covener
File length: 28755 byte(s)
Diff to previous 758173 (colored)

Add mod_proxy_ftp directives ProxyFtpListOnWildcard and ProxyFtpEscapeWildcards
to allow filenames with globbing characters to be retrieved instead of
presented in a directory listing.

Submitted by: Dan Poirier <poirier pobox.com>
Reviewed by: covener

Revision 758173 - (view) (annotate) - [select for diffs]
Modified Wed Mar 25 08:30:18 2009 UTC (8 months ago) by trawick
File length: 28539 byte(s)
Diff to previous 757741 (colored)

Provide ap_set_retained_data()/ap_get_retained_data() for preservation
of module state across unload/load.

The existing idiom used by modules to associate userdata with pglobal
doesn't work in the earliest phases of module execution.

(This does expose pglobal as an implementation detail, but it would be great 
to unexpose it if at all possible (but modules already have access to pglobal
at almost all stages of execution anyway).)

Revision 757741 - (view) (annotate) - [select for diffs]
Modified Tue Mar 24 11:30:47 2009 UTC (8 months ago) by rpluem
File length: 28405 byte(s)
Diff to previous 757429 (colored)

* Fix a memory leak by freeing the memory consumed by the bucket.

PR: 44948
Submitted by: Dan Poirier <poirier pobox.com>
Reviewed by: rpluem

Revision 752812 - (view) (annotate) - [select for diffs]
Modified Thu Mar 12 09:29:53 2009 UTC (8 months, 2 weeks ago) by rpluem
File length: 28215 byte(s)
Diff to previous 750108 (colored)

* Escape pathes of filenames in 406 responses to avoid HTML injections and
  HTTP response splitting.

PR: 46837
Submitted by: Geoff Keating <geoffk apple.com>
Reviewed by: rpluem

Revision 750108 - (view) (annotate) - [select for diffs]
Modified Wed Mar 4 19:13:07 2009 UTC (8 months, 3 weeks ago) by trawick
File length: 28038 byte(s)
Diff to previous 749467 (colored)

Use APR_POLLSET_NOCOPY for better performance with some pollset implementations.

Revision 749467 - (view) (annotate) - [select for diffs]
Modified Mon Mar 2 23:18:43 2009 UTC (8 months, 3 weeks ago) by sctemme
File length: 27951 byte(s)
Diff to previous 749466 (colored)

Note PR for OpenSSL type-safe STACK fix in CHANGES

Revision 749466 - (view) (annotate) - [select for diffs]
Modified Mon Mar 2 23:17:53 2009 UTC (8 months, 3 weeks ago) by sctemme
File length: 27939 byte(s)
Diff to previous 749441 (colored)

Clean up more compiler emits.  Add CHANGES entry, credit Kasper for the OpenSSL STACK fix

Revision 749441 - (view) (annotate) - [select for diffs]
Modified Mon Mar 2 21:25:50 2009 UTC (8 months, 3 weeks ago) by trawick
File length: 27818 byte(s)
Diff to previous 749438 (colored)

fix CHANGES entry for r749438

the ab issue was with EALREADY, not EINPROGRESS

Revision 749438 - (view) (annotate) - [select for diffs]
Modified Mon Mar 2 21:17:43 2009 UTC (8 months, 3 weeks ago) by trawick
File length: 27821 byte(s)
Diff to previous 746541 (colored)

ab: Fix maintenance of the pollset to resolve EINPROGRESS errors 
with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).

The apr_pollset API requires that a socket be removed from
the pollset whenever there is a change to the requested events.
The socket must also be removed when it is closed.  This wasn't
completely implemented.

PR: 44584

Revision 746541 - (view) (annotate) - [select for diffs]
Modified Sat Feb 21 17:07:01 2009 UTC (9 months ago) by lars
File length: 27644 byte(s)
Diff to previous 743814 (colored)

fix mod_disk_cache to support EnableSendfile.

Revision 743814 - (view) (annotate) - [select for diffs]
Modified Thu Feb 12 17:43:39 2009 UTC (9 months, 2 weeks ago) by fielding
File length: 27512 byte(s)
Diff to previous 741951 (colored)

Adjust content metadata on deflate/inflate response before bailing out
on a 304 response so that the metadata does not differ from 200 response.

Revision 741951 - (view) (annotate) - [select for diffs]
Modified Sat Feb 7 20:03:37 2009 UTC (9 months, 2 weeks ago) by covener
File length: 27325 byte(s)
Diff to previous 740149 (colored)

backported CHANGES entries are meaningful while we're rolling 2.3.x alphas.

Revision 740149 - (view) (annotate) - [select for diffs]
Modified Mon Feb 2 23:20:37 2009 UTC (9 months, 3 weeks ago) by lars
File length: 27383 byte(s)
Diff to previous 739690 (colored)

mod_deflate: Fix creation of invalid Etag headers. We now make sure
that the Etag value is properly quoted when adding the gzip marker.
PR 39727.

Revision 739677 - (view) (annotate) - [select for diffs]
Modified Sun Feb 1 01:41:33 2009 UTC (9 months, 3 weeks ago) by fielding
File length: 27149 byte(s)
Diff to previous 739382 (colored)

20x22 icons for ODF, SVG, and XML documents.

Submitted by: Peter Harlow (CLA on file)
PR: 37185

Revision 739382 - (view) (annotate) - [select for diffs]
Modified Fri Jan 30 19:12:51 2009 UTC (9 months, 3 weeks ago) by fielding
File length: 27063 byte(s)
Diff to previous 737973 (colored)

Disabled DefaultType directive and removed ap_default_type()
from core.  We now exclude Content-Type from responses for which
a media type has not been configured via mime.types, AddType,
ForceType, or some other mechanism.  MMN major bump to NZ time.

PR: 13986

Revision 737973 - (view) (annotate) - [select for diffs]
Modified Tue Jan 27 02:12:37 2009 UTC (10 months ago) by pquerna
File length: 26794 byte(s)
Diff to previous 735365 (colored)

Add IPv6 variable to mod_rewrite.
Submitted by: Ryan Phillips <ryan-apache trolocsis.com>

Revision 735365 - (view) (annotate) - [select for diffs]
Modified Sun Jan 18 00:47:00 2009 UTC (10 months, 1 week ago) by rjung
File length: 26695 byte(s)
Diff to previous 735056 (colored)

Remove some more mod_mem_cache relics from
trunk and add removal to CHANGES.

The module has been removed in r711470.

Revision 735056 - (view) (annotate) - [select for diffs]
Modified Fri Jan 16 17:04:37 2009 UTC (10 months, 1 week ago) by rjung
File length: 26630 byte(s)
Diff to previous 734896 (colored)

Undo changelog change.
Addon to r734973.

Revision 734896 - (view) (annotate) - [select for diffs]
Modified Fri Jan 16 02:46:44 2009 UTC (10 months, 1 week ago) by rederpj
File length: 26749 byte(s)
Diff to previous 733699 (colored)

Remove backported entry.

Revision 733699 - (view) (annotate) - [select for diffs]
Modified Mon Jan 12 11:40:19 2009 UTC (10 months, 2 weeks ago) by rpluem
File length: 26878 byte(s)
Diff to previous 733557 (colored)

* This one was backported

Revision 733557 - (view) (annotate) - [select for diffs]
Modified Mon Jan 12 00:52:26 2009 UTC (10 months, 2 weeks ago) by takashi
File length: 27018 byte(s)
Diff to previous 733531 (colored)

Enhance KeepAliveTimeout to support a value in milliseconds.
PR: 46275

Revision 733531 - (view) (annotate) - [select for diffs]
Modified Sun Jan 11 22:45:53 2009 UTC (10 months, 2 weeks ago) by rjung
File length: 26917 byte(s)
Diff to previous 733520 (colored)

Allow size units B, K, M, G and combination of
time and size based rotation for rotatelogs.

Revision 733520 - (view) (annotate) - [select for diffs]
Modified Sun Jan 11 21:26:13 2009 UTC (10 months, 2 weeks ago) by rjung
File length: 26805 byte(s)
Diff to previous 733493 (colored)

rotatelogs: Add flag for verbose (debug) output.

Revision 733493 - (view) (annotate) - [select for diffs]
Modified Sun Jan 11 17:36:07 2009 UTC (10 months, 2 weeks ago) by rjung
File length: 26737 byte(s)
Diff to previous 733465 (colored)

Allow to trigger rotatelogs log file rotation from
using HUP and INT signals to the rotatelogs process.

This is helpful, when log activity is low, but you want
rotatelogs to close the open log files.

SIGHUP triggers checking the rules given during startup,
SIGINT forces rotate independently form those rules.

When the signal triggers a rotation, the open file
is closed immediately. The new file is opened when
new log data arrives, or in case "-f" was given it
is opened immediately.

Based on my patch in BZ 44427.

Note on Windows: The new functionality is undefined when
SIGHUP or SIGINT are not available. Does the use case
make sense on Windows? If so, which signals should we use?

Revision 733465 - (view) (annotate) - [select for diffs]
Modified Sun Jan 11 12:58:08 2009 UTC (10 months, 2 weeks ago) by rpluem
File length: 26618 byte(s)
Diff to previous 733218 (colored)

* Correctly merge SSLRenegBufferSize directive.

PR: 46508
Submitted by: <tlhackque yahoo.com>
Reviewed by: rpluem

Revision 733218 - (view) (annotate) - [select for diffs]
Modified Sat Jan 10 01:30:29 2009 UTC (10 months, 2 weeks ago) by covener
File length: 26523 byte(s)
Diff to previous 733134 (colored)

simplifications per niq's review comments

Revision 733134 - (view) (annotate) - [select for diffs]
Modified Fri Jan 9 19:48:43 2009 UTC (10 months, 2 weeks ago) by covener
File length: 26652 byte(s)
Diff to previous 732912 (colored)

EBCDIC fix for ap_send_interim_response()

Revision 732912 - (view) (annotate) - [select for diffs]
Modified Fri Jan 9 02:32:12 2009 UTC (10 months, 2 weeks ago) by rederpj
File length: 26457 byte(s)
Diff to previous 732832 (colored)

 mod_authnz_ldap: Reduce number of initialization debug messages and make
 information more clear. PR 46342 [Dan Poirier]

Revision 732832 - (view) (annotate) - [select for diffs]
Modified Thu Jan 8 21:40:59 2009 UTC (10 months, 2 weeks ago) by covener
File length: 26327 byte(s)
Diff to previous 732451 (colored)

Translate locally generated "100-Continue" message to
ASCII on EBCDIC systems.

Revision 732451 - (view) (annotate) - [select for diffs]
Modified Wed Jan 7 20:00:56 2009 UTC (10 months, 2 weeks ago) by trawick
File length: 26217 byte(s)
Diff to previous 732414 (colored)

prefork: Fix child process hang during graceful restart/stop in
configurations with multiple listening sockets.

PR: 42829
Submitted by: Joe Orton, with some tweaking and testing from me

Revision 732414 - (view) (annotate) - [select for diffs]
Modified Wed Jan 7 18:22:07 2009 UTC (10 months, 2 weeks ago) by trawick
File length: 26054 byte(s)
Diff to previous 731377 (colored)

As jorton discovered, recent Linux kernels have a new tunable
setting for epoll that will trip up many prefork users.  Write
a log message instead of crashing.

PR: 46467

As rpluem notes, some Apache doc is in order.

Revision 731377 - (view) (annotate) - [select for diffs]
Modified Sun Jan 4 22:29:05 2009 UTC (10 months, 3 weeks ago) by minfrin
File length: 25914 byte(s)
Diff to previous 731358 (colored)

mod_session_crypto: Ensure that SessionCryptoDriver can only be
set in the global scope.

Revision 731358 - (view) (annotate) - [select for diffs]
Modified Sun Jan 4 20:52:41 2009 UTC (10 months, 3 weeks ago) by niq
File length: 25799 byte(s)
Diff to previous 731088 (colored)

Fix mod_ext_filter to detect failure to start the external program,
and add configuration option to abort or continue.
PR 41120

Revision 731088 - (view) (annotate) - [select for diffs]
Modified Sat Jan 3 21:09:47 2009 UTC (10 months, 3 weeks ago) by minfrin
File length: 25537 byte(s)
Diff to previous 731000 (colored)

mod_session_crypto: Rewrite the session_crypto module against the
apr_crypto API.

Revision 731000 - (view) (annotate) - [select for diffs]
Modified Sat Jan 3 14:59:18 2009 UTC (10 months, 3 weeks ago) by minfrin
File length: 25429 byte(s)
Diff to previous 730927 (colored)

mod_auth_form: Fix a pool lifetime issue, don't remove the subrequest
until the main request is cleaned up.

Revision 730597 - (view) (annotate) - [select for diffs]
Modified Thu Jan 1 20:17:56 2009 UTC (10 months, 3 weeks ago) by jim
File length: 25268 byte(s)
Diff to previous 730424 (colored)

Transition mod_slotmem to ap_slotmem... just monkeying
with the locations, etc. now... adding getter/setter
will be over the weekend and post-2.3.1 but I figured
at least do this beforehand...

I love trunk :)

Revision 730296 - (view) (annotate) - [select for diffs]
Modified Wed Dec 31 02:27:24 2008 UTC (10 months, 3 weeks ago) by niq
File length: 25066 byte(s)
Diff to previous 730274 (colored)

Add support for escaping all non-ascii chars to ap_escape_html, and use
it to fix PR#25202: encoding="entity" doesn't work as advertised in
mod_include.
For backport, this'll need an ABI-preserving version that'll be
a minor MMN bump.  But if we do that in /trunk/, it'll never change.

Revision 730274 - (view) (annotate) - [select for diffs]
Modified Wed Dec 31 00:08:00 2008 UTC (10 months, 3 weeks ago) by niq
File length: 24861 byte(s)
Diff to previous 729586 (colored)

Fix mod_rewrite "B" flag breakage by reverting r589343
PR#45529

Revision 729586 - (view) (annotate) - [select for diffs]
Modified Sat Dec 27 03:53:32 2008 UTC (11 months ago) by niq
File length: 24745 byte(s)
Diff to previous 729579 (colored)

CGI: return 504 (Gateway timeout) rather than 500 when a script
times out before returning status line/headers.
PR 42190

Revision 729579 - (view) (annotate) - [select for diffs]
Modified Sat Dec 27 02:13:47 2008 UTC (11 months ago) by niq
File length: 24600 byte(s)
Diff to previous 729538 (colored)

PR#39332: fix for segfault problem with mod_cgid on Solaris
Patch by Masaoki Kobayashi

Revision 729538 - (view) (annotate) - [select for diffs]
Modified Fri Dec 26 21:41:48 2008 UTC (11 months ago) by nd
File length: 24494 byte(s)
Diff to previous 729316 (colored)

add mod_proxy_scgi, as announced a long time ago

Revision 729316 - (view) (annotate) - [select for diffs]
Modified Wed Dec 24 15:03:33 2008 UTC (11 months ago) by covener
File length: 24452 byte(s)
Diff to previous 728015 (colored)

look for 'no-cache' in subprocess_env to prevent the saving
of an otherwise cacheable response.

Revision 728015 - (view) (annotate) - [select for diffs]
Modified Fri Dec 19 12:59:52 2008 UTC (11 months, 1 week ago) by covener
File length: 24301 byte(s)
Diff to previous 727774 (colored)

 *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
    way that per-directory rewrites append the previous notion of PATH_INFO
    to each substitution before evaluating subsequent rules.
    PR38642 [Eric Covener]

Revision 727774 - (view) (annotate) - [select for diffs]
Modified Thu Dec 18 17:31:28 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24059 byte(s)
Diff to previous 727770 (colored)

Removing entry now that it is backported.

Revision 727770 - (view) (annotate) - [select for diffs]
Modified Thu Dec 18 17:23:26 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24269 byte(s)
Diff to previous 727768 (colored)

Remove entry now that it is backported.

Revision 727768 - (view) (annotate) - [select for diffs]
Modified Thu Dec 18 17:15:24 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24440 byte(s)
Diff to previous 727634 (colored)

Remove entry now that it is backported.

Revision 727634 - (view) (annotate) - [select for diffs]
Modified Thu Dec 18 04:22:10 2008 UTC (11 months, 1 week ago) by rpluem
File length: 24557 byte(s)
Diff to previous 727602 (colored)

* This one is now backported.

Revision 727602 - (view) (annotate) - [select for diffs]
Modified Thu Dec 18 00:25:44 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24705 byte(s)
Diff to previous 727477 (colored)

Removing entry that was backported.

Revision 727477 - (view) (annotate) - [select for diffs]
Modified Wed Dec 17 19:20:50 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24879 byte(s)
Diff to previous 727452 (colored)

Set Listen protocol to "https" if port is set to 443 and no proto is specified
    (as documented but not implemented). PR 46066  [Dan Poirier <poirier pobox.com>]

Revision 727452 - (view) (annotate) - [select for diffs]
Modified Wed Dec 17 18:03:09 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24708 byte(s)
Diff to previous 727053 (colored)

Output -M and -S dumps (modules and vhosts) to stdout instead of stderr.

Revision 727053 - (view) (annotate) - [select for diffs]
Modified Tue Dec 16 14:08:19 2008 UTC (11 months, 1 week ago) by rederpj
File length: 24560 byte(s)
Diff to previous 726796 (colored)

*) mod_ldap: Avoid a segfault when result->rc is checked in uldap_connection_init
   when result is NULL. This could happen if LDAP initialization failed.
   PR 45994.  [Dan Poirier <poirier pobox.com>]

Revision 726796 - (view) (annotate) - [select for diffs]
Modified Mon Dec 15 20:45:29 2008 UTC (11 months, 1 week ago) by rpluem
File length: 24350 byte(s)
Diff to previous 726636 (colored)

* Correctly save Content-Encoding of cachable entity.

PR: 46401
Submitted by: Dan Poirier <poirier pobox.com>
Reviewed by: rpluem

Revision 726636 - (view) (annotate) - [select for diffs]
Modified Mon Dec 15 07:47:30 2008 UTC (11 months, 1 week ago) by rpluem
File length: 24233 byte(s)
Diff to previous 726120 (colored)

* Do not add an empty argument if we do not have any args for the script.
  Fixes a regression from r682475.

PR: 46380

Revision 726120 - (view) (annotate) - [select for diffs]
Modified Fri Dec 12 21:12:01 2008 UTC (11 months, 2 weeks ago) by chrisd
File length: 24131 byte(s)
Diff to previous 726109 (colored)

From r726118: remove unused sb_type member from process_score
structure and do major MMN bump.

Revision 726109 - (view) (annotate) - [select for diffs]
Modified Fri Dec 12 20:20:40 2008 UTC (11 months, 2 weeks ago) by jorton
File length: 24005 byte(s)
Diff to previous 725940 (colored)

mod_ssl: Make the size of the per-dir-reneg request-body buffer
configurable, by popular demand:

* modules/ssl/ssl_private.h: Define DEFAULT_RENEG_BUFFER_SIZE.
  (SSLDirConfigRec): Add nRenegBufferSize field.

* modules/ssl/ssl_engine_config.c (ssl_cmd_SSLRenegBufferSize): New
  function.
  (ssl_config_perdir_create, ssl_config_perdir_merge): Handle
  nRenegBufferSize.

* modules/ssl/ssl_engine_io.c (ssl_io_buffer_fill): Take max buffer
  size as an argument rather than compile-time constant.

* modules/ssl/ssl_engine_kernel.c (ssl_hook_Access): Pass
  nRenegBufferSize to ssl_io_buffer_fill.

* modules/ssl/mod_ssl.c (ssl_config_cmds): Add SSLRenegBufferSize.

PR: 39243

Revision 725940 - (view) (annotate) - [select for diffs]
Modified Fri Dec 12 08:04:47 2008 UTC (11 months, 2 weeks ago) by pquerna
File length: 23806 byte(s)
Diff to previous 724717 (colored)

Add a new mod_proxy_fdpass module to pass a client connection off to a separate daemon.

Revision 724717 - (view) (annotate) - [select for diffs]
Modified Tue Dec 9 14:41:21 2008 UTC (11 months, 2 weeks ago) by jorton
File length: 23668 byte(s)
Diff to previous 724162 (colored)

Improve mod_ssl's environment variable extraction to correctly handle
DNs with duplicate tags:

* modules/ssl/ssl_engine_vars.c:
  Augment the ssl_var_lookup_ssl_cert_dn_rec table with a flag
  to indicate whether RDNs of the given NID should be extracted
  to the environment.
  (extract_dn, modssl_var_extract_dns): New functions.

* modules/ssl/ssl_private.h (modssl_var_extract_dns): Add prototype.

* modules/ssl/ssl_engine_kernel.c: Remove SSL_*_DN_ from the list
  of variables to insert into the environment.
  (ssl_hook_Fixup): Use modssl_var_extract_dns to insert the
  SSL_*_DN_ variables efficiently and accurately, handling
  certs with duplicate RDN tags correctly.

PR: 45875

Revision 724162 - (view) (annotate) - [select for diffs]
Modified Sun Dec 7 17:47:53 2008 UTC (11 months, 2 weeks ago) by minfrin
File length: 23510 byte(s)
Diff to previous 724093 (colored)

Remove the obsolete serial attribute from the RPM spec file. Compile
against the external pcre. Add missing binaries fcgistarter, and
mod_socache* and mod_session*.

Revision 724093 - (view) (annotate) - [select for diffs]
Modified Sun Dec 7 06:33:02 2008 UTC (11 months, 2 weeks ago) by pquerna
File length: 23285 byte(s)
Diff to previous 723682 (colored)

When an expires or cache-control header are sent, the RFC does allow us to cache normally non-cacheable response statuses.
Submitted by: Alex Polvi <alex polvi.net>

Revision 723682 - (view) (annotate) - [select for diffs]
Modified Fri Dec 5 09:26:11 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 23110 byte(s)
Diff to previous 723585 (colored)

Add a note that the ratelimit module was added

Revision 723585 - (view) (annotate) - [select for diffs]
Modified Fri Dec 5 05:10:13 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 23033 byte(s)
Diff to previous 723578 (colored)

Remove X-Pad work around.

Submitted by: Takashi Sato <takashi lans-tv.com>

Revision 723578 - (view) (annotate) - [select for diffs]
Modified Fri Dec 5 04:21:27 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 22896 byte(s)
Diff to previous 723079 (colored)

Note the dtrace stuff in CHANGES.

Revision 723068 - (view) (annotate) - [select for diffs]
Modified Wed Dec 3 20:57:18 2008 UTC (11 months, 3 weeks ago) by jim
File length: 22782 byte(s)
Diff to previous 722399 (colored)

Note mod_proxy_balancer changes...

Revision 722399 - (view) (annotate) - [select for diffs]
Modified Tue Dec 2 08:13:36 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 22609 byte(s)
Diff to previous 722081 (colored)

API Cleanup in preperation for 2.4.x, make sure all exported functions or variables contain an ap_ prefix.

Revision 722081 - (view) (annotate) - [select for diffs]
Modified Mon Dec 1 14:31:51 2008 UTC (11 months, 3 weeks ago) by covener
File length: 22091 byte(s)
Diff to previous 721987 (colored)

To be safe, consume the entire brigade after processing an error bucket in
the HTTP output filter.

Submitted by: Rudeiger Pluem
Reviewed by: niq, covener

Revision 721987 - (view) (annotate) - [select for diffs]
Modified Mon Dec 1 07:25:11 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 21840 byte(s)
Diff to previous 721952 (colored)

Add a new module to read in the heartbeat file and do load balancing for
mod_proxy based upon it.

Revision 721952 - (view) (annotate) - [select for diffs]
Modified Mon Dec 1 02:55:14 2008 UTC (11 months, 3 weeks ago) by pquerna
File length: 21725 byte(s)
Diff to previous 721679 (colored)

Add two new modules  to handle load balancing across multiple apache servers 
within the same datacenter.

mod_heartbeat generates multicast status messages with the current number of 
clients connected, but the formated can easily be extended to include other 
things.

mod_heartmonitor collects these messages into a static file, which then can be 
used for other modules to make load balancing decisions on.

This module was originally written at Joost by Sander Striker, Justin 
Erenkrantz, and myself.  We have been given permission by our employer to 
contribute this module.

Revision 721679 - (view) (annotate) - [select for diffs]
Modified Sat Nov 29 13:09:36 2008 UTC (11 months, 4 weeks ago) by covener
File length: 21453 byte(s)
Diff to previous 721678 (colored)

allow ap_invoke_handler() to pass-through AP_FILTER_ERROR as if it were 
a reserved status code (OK/DECLINED/SUSPENDED). Prevents ap_die() from
seeing a 500 error when the http header filter has already taken
care of the proper error response

Revision 721678 - (view) (annotate) - [select for diffs]
Modified Sat Nov 29 12:59:50 2008 UTC (11 months, 4 weeks ago) by covener
File length: 21225 byte(s)
Diff to previous 721034 (colored)

correct syntax of DirectoryIndex feature, CHANGES only

Revision 718132 - (view) (annotate) - [select for diffs]
Modified Sun Nov 16 22:41:53 2008 UTC (12 months, 1 week ago) by minfrin
File length: 21702 byte(s)
Diff to previous 718125 (colored)

mod_buffer: Honour the flush bucket and flush the buffer in the
input filter. Make sure that metadata buckets are written to
the buffer, not to the final brigade.

Revision 718125 - (view) (annotate) - [select for diffs]
Modified Sun Nov 16 22:23:25 2008 UTC (12 months, 1 week ago) by minfrin
File length: 21506 byte(s)
Diff to previous 717867 (colored)

mod_buffer: Optimise the buffering of heap buckets when the heap
buckets stay exactly APR_BUCKET_BUFF_SIZE long.

Revision 717867 - (view) (annotate) - [select for diffs]
Modified Sat Nov 15 15:49:28 2008 UTC (12 months, 1 week ago) by minfrin
File length: 21344 byte(s)
Diff to previous 714274 (colored)

mod_buffer: Optional support for buffering of the input and output
filter stacks. Can collapse many small buckets into fewer larger
buckets, and prevents excessively small chunks being sent over
the wire.

Revision 714274 - (view) (annotate) - [select for diffs]
Modified Sat Nov 15 14:26:54 2008 UTC (12 months, 1 week ago) by rpluem
File length: 21101 byte(s)
Diff to previous 714049 (colored)

* This one is now backported.

Revision 714049 - (view) (annotate) - [select for diffs]
Modified Fri Nov 14 15:57:50 2008 UTC (12 months, 1 week ago) by niq
File length: 21223 byte(s)
Diff to previous 713152 (colored)

Add mod_privileges to CHANGES

Revision 712837 - (view) (annotate) - [select for diffs]
Modified Mon Nov 10 21:16:41 2008 UTC (12 months, 2 weeks ago) by rpluem
File length: 21820 byte(s)
Diff to previous 712515 (colored)

* Adjust changes entry to what is really done to fix it.

Revision 712515 - (view) (annotate) - [select for diffs]
Modified Sun Nov 9 17:03:29 2008 UTC (12 months, 2 weeks ago) by tdonovan
File length: 21798 byte(s)
Diff to previous 711993 (colored)

Always build odbc on Windows - backported from trunk to 2.2.x 
trunk: r704771 & r704883
2.2.x: r712514

Revision 711993 - (view) (annotate) - [select for diffs]
Modified Thu Nov 6 22:23:21 2008 UTC (12 months, 2 weeks ago) by rpluem
File length: 21933 byte(s)
Diff to previous 709914 (colored)

* Correctly set SSL_LIBS during openssl detection if pkgconfig is not available.

PR: 46018

Revision 709914 - (view) (annotate) - [select for diffs]
Modified Sun Nov 2 19:43:51 2008 UTC (12 months, 3 weeks ago) by rpluem
File length: 21810 byte(s)
Diff to previous 709839 (colored)

* r708902 fixes PR39774 and thus is worth a CHANGES entry.

Revision 709839 - (view) (annotate) - [select for diffs]
Modified Sun Nov 2 04:21:48 2008 UTC (12 months, 3 weeks ago) by chrisd
File length: 21702 byte(s)
Diff to previous 709838 (colored)

Remove mod_authn_default and mod_authz_default.

Note: I've attempted to work through the Windows and Netware build files,
but if those with such systems could repair any damage, that would be
appreciated.

Revision 709838 - (view) (annotate) - [select for diffs]
Modified Sun Nov 2 04:01:32 2008 UTC (12 months, 3 weeks ago) by chrisd
File length: 21618 byte(s)
Diff to previous 709666 (colored)

Fix handling of authz configurations, make default authz logic replicate
2.2.x authz logic and support existing configurations (including .htaccess
files), and replace <Satisfy*>, Reject, and AuthzMergeRules directives
with Match, <Match*>, and AuthzMerge directives.

Revision 709666 - (view) (annotate) - [select for diffs]
Modified Sat Nov 1 10:23:09 2008 UTC (12 months, 3 weeks ago) by rpluem
File length: 21369 byte(s)
Diff to previous 709563 (colored)

* Use distinct char pointers for sending and receiving buffers to avoid
  destroying the pointer to the sending buffer in the ajp message if
  data is received from the backend before all data is sent to the
  backend.

PR: 45911

Revision 709563 - (view) (annotate) - [select for diffs]
Modified Fri Oct 31 20:49:42 2008 UTC (12 months, 3 weeks ago) by chrisd
File length: 21247 byte(s)
Diff to previous 709553 (colored)

Note crash fix in mod_authn_core.c from r709553.

Revision 709553 - (view) (annotate) - [select for diffs]
Modified Fri Oct 31 20:18:07 2008 UTC (12 months, 3 weeks ago) by chrisd
File length: 21120 byte(s)
Diff to previous 709551 (colored)

Add AuthType of None to support disabling authentication.
Prevent crash when provider alias created to provider which is not
yet registered.
Migrate remaining functionality of mod_authn_default to mod_authn_core.

Revision 709551 - (view) (annotate) - [select for diffs]
Modified Fri Oct 31 20:10:07 2008 UTC (12 months, 3 weeks ago) by chrisd
File length: 21018 byte(s)
Diff to previous 708935 (colored)

Allow <Limit> and <LimitExcept> directives to nest, and
constrain their use to conform with that of other access control
and authorization directives.

Revision 708935 - (view) (annotate) - [select for diffs]
Modified Wed Oct 29 16:41:10 2008 UTC (12 months, 4 weeks ago) by niq
File length: 20828 byte(s)
Diff to previous 707023 (colored)

Introduce modules/system, and mod_unixd.c

mod_unixd.c is only os/unix/unixd.c, turned into a module.
(or more accurately, an ugly hack).  Work in progress, and the
old unixd will have to go once the module build stuff is in place.

This re-introduces some of the unixd stuff (set user, group and chroot)
to mpm_simple, and should work equally well with existing MPMs.
It also paves the way for alternative privilege management schemes,
which can be implemented in alternative modules: this´ll be
necessary to run mpm_simple on non-unix-family platforms, and
of interest for alternative Unix implementations.  By relegating
everything to a child_init hook, we can mix-and-match, though
weĺl need to add a regime that prevents just going right ahead
with nothing and running as root.

Round tuits permitting, we should be able to simplify unixd.h too,
and look towards eliminating it.

Revision 707022 - (view) (annotate) - [select for diffs]
Modified Wed Oct 22 10:23:52 2008 UTC (13 months ago) by rpluem
File length: 20916 byte(s)
Diff to previous 706921 (colored)

* Move ap_timeout_parameter_parse from mod_proxy.c to server/util.c and thus
  make it part of the public API.

Revision 706921 - (view) (annotate) - [select for diffs]
Modified Wed Oct 22 09:34:21 2008 UTC (13 months ago) by rpluem
File length: 20841 byte(s)
Diff to previous 706001 (colored)

* Improve the way to detect whether buckets in the filter chain need to be
  flushed by using the main requests bytes_count field instead of the
  subrequest field.

* Do not reset conn->need_flush. This prevents SegFaults from not flushing
  buckets in the filter chain.

PR: 45792

Revision 706001 - (view) (annotate) - [select for diffs]
Modified Sun Oct 19 12:35:42 2008 UTC (13 months, 1 week ago) by covener
File length: 20708 byte(s)
Diff to previous 705074 (colored)

  *) mod_dir: Support "DirectoryIndex None"
     Suggested By André Warnier <aw ice-sa.com> [Eric Covener]

Revision 705005 - (view) (annotate) - [select for diffs]
Modified Wed Oct 15 19:43:51 2008 UTC (13 months, 1 week ago) by rpluem
File length: 20695 byte(s)
Diff to previous 704917 (colored)

* Add the possibility to set the worker parameters connectiontimeout and ping
  in milliseconds and the parameter acquire in seconds.
  Add the new currently static function ap_timeout_parameter_parse that
  should become a general utility function once its API is hammered out.

Revision 704917 - (view) (annotate) - [select for diffs]
Modified Wed Oct 15 13:40:56 2008 UTC (13 months, 1 week ago) by rpluem
File length: 20563 byte(s)
Diff to previous 704845 (colored)

* Send Content-Type application/ocsp-request for POST requests to OSCP
  responders.

PR: 46014
Submitted by: Dr Stephen Henson <steve openssl.org>
Reviewed by: rpluem

Revision 704845 - (view) (annotate) - [select for diffs]
Modified Wed Oct 15 10:09:33 2008 UTC (13 months, 1 week ago) by minfrin
File length: 20413 byte(s)
Diff to previous 704771 (colored)

Minor bump when exporting mod_rewrite.h

Revision 704771 - (view) (annotate) - [select for diffs]
Modified Wed Oct 15 03:14:11 2008 UTC (13 months, 1 week ago) by tdonovan
File length: 20215 byte(s)
Diff to previous 704753 (colored)

Always build the odbc dbd driver on winodws, to be consistent with the apr-util default

Revision 704753 - (view) (annotate) - [select for diffs]
Modified Wed Oct 15 00:53:39 2008 UTC (13 months, 1 week ago) by rpluem
File length: 20080 byte(s)
Diff to previous 703998 (colored)

* Revert r703998.
  The call to apr_socket_timeout_set before apr_socket_connect already sets the
  socket to non-blocking mode because the timeout of the socket is -1 after creation. A further
  call to apr_socket_timeout_set (after the connect call does not do this, because the old
  and the new timeout are >=0). The further code expects the socket to be in non-blocking
  mode, otherwise we have regressions with ssl. This can be notified by running t/ssl/proxy
  on 2.2.x which runs much much slower with the patch applied. This does not happen
  on trunk because the socket is set back to non blocking by the core output filter
  (async write completion).

Revision 703998 - (view) (annotate) - [select for diffs]
Modified Mon Oct 13 10:06:28 2008 UTC (13 months, 2 weeks ago) by rpluem
File length: 20251 byte(s)
Diff to previous 702867 (colored)

* Make the connection timeout to backends work by temporarily setting the
  socket to non blocking mode.

Submitted by: Matt Stevenson <mavricknzwork yahoo.com>
Reviewed by: rpluem

Revision 702867 - (view) (annotate) - [select for diffs]
Modified Wed Oct 8 13:32:07 2008 UTC (13 months, 2 weeks ago) by rpluem
File length: 20080 byte(s)
Diff to previous 702506 (colored)

* Recheck again if idle workers are still available when we are signaled that
  they are. This is needed since it can happen that we are signaled by a
  worker thread that went idle but received a context switch before it could
  tell us. If it does signal us later once it is on CPU again there might be
  no idle worker left. See
  https://issues.apache.org/bugzilla/show_bug.cgi?id=45605#c4

PR: 45605
Submitted by: Denis Ustimenko <denusk gmail.com>
Reviewed by: rpluem

Revision 702506 - (view) (annotate) - [select for diffs]
Modified Tue Oct 7 15:04:13 2008 UTC (13 months, 2 weeks ago) by jim
File length: 19862 byte(s)
Diff to previous 697093 (colored)

backported 2.2.10 - r702502

Revision 697093 - (view) (annotate) - [select for diffs]
Modified Fri Sep 19 13:43:48 2008 UTC (14 months, 1 week ago) by jim
File length: 20084 byte(s)
Diff to previous 696761 (colored)

Allow for the smax param to be 0, so that all connections
are available to be dropped, should they be idle long
enough.
PR 43371

Revision 696614 - (view) (annotate) - [select for diffs]
Modified Thu Sep 18 09:35:30 2008 UTC (14 months, 1 week ago) by mturk
File length: 19963 byte(s)
Diff to previous 696417 (colored)

Always send body (zero size at least) whenever C-L is present in the request

Revision 693577 - (view) (annotate) - [select for diffs]
Modified Tue Sep 9 19:58:12 2008 UTC (14 months, 2 weeks ago) by rpluem
File length: 20292 byte(s)
Diff to previous 693328 (colored)

* Use send_bucket_downstream to send data down the chain instead of creating
  a brigade each time.

PR: 45687
Submitted by: Dan Poirier <poirier pobox.com>
Reviewed by: rpluem

Revision 693328 - (view) (annotate) - [select for diffs]
Modified Tue Sep 9 00:52:03 2008 UTC (14 months, 2 weeks ago) by niq
File length: 20153 byte(s)
Diff to previous 693141 (colored)

mod_authnz_ldap: avoid returning NULL env vars
PR 39045

Revision 693141 - (view) (annotate) - [select for diffs]
Modified Mon Sep 8 15:52:59 2008 UTC (14 months, 2 weeks ago) by niq
File length: 20006 byte(s)
Diff to previous 693121 (colored)

mod_mime: don't adjust case in filename components we don't use
PR 43250, patch by Basant Kumar Kukreja

Revision 693120 - (view) (annotate) - [select for diffs]
Modified Mon Sep 8 14:52:21 2008 UTC (14 months, 2 weeks ago) by jim
File length: 19804 byte(s)
Diff to previous 693108 (colored)

Add in useful feature. %k which logs the keepalives
value.
PR: 45762
        Dan Poirier <poirier@pobox.com>

Revision 693108 - (view) (annotate) - [select for diffs]
Modified Mon Sep 8 14:20:11 2008 UTC (14 months, 2 weeks ago) by niq
File length: 19639 byte(s)
Diff to previous 691418 (colored)

Relax checks on HTTP Response status line from a backend.
PR#44995 - Rainer Jung

Revision 691418 - (view) (annotate) - [select for diffs]
Modified Tue Sep 2 23:01:47 2008 UTC (14 months, 3 weeks ago) by niq
File length: 19449 byte(s)
Diff to previous 690506 (colored)

Commit mod_sed: enable filtering of HTTP Requests and Responses through sed

Revision 690506 - (view) (annotate) - [select for diffs]
Modified Sat Aug 30 13:48:47 2008 UTC (14 months, 4 weeks ago) by minfrin
File length: 19327 byte(s)
Diff to previous 690501 (colored)

mod_auth_form: Make sure that basic authentication is correctly
faked directly after login.

Revision 690501 - (view) (annotate) - [select for diffs]
Modified Sat Aug 30 13:37:52 2008 UTC (14 months, 4 weeks ago) by minfrin
File length: 19207 byte(s)
Diff to previous 690493 (colored)

mod_session_cookie, mod_session_dbd: Make sure cookies are set both
within the output headers and error output headers, so that the
session is maintained across redirects.

Revision 690493 - (view) (annotate) - [select for diffs]
Modified Sat Aug 30 11:11:21 2008 UTC (14 months, 4 weeks ago) by minfrin
File length: 19002 byte(s)
Diff to previous 690400 (colored)

mod_auth_form: Make sure the logged in user is populated correctly
after a form login. Fixes a missing REMOTE_USER variable directly
following a login.

Revision 690400 - (view) (annotate) - [select for diffs]
Modified Fri Aug 29 21:49:27 2008 UTC (14 months, 4 weeks ago) by minfrin
File length: 18817 byte(s)
Diff to previous 689261 (colored)

mod_session_cookie: Make sure that cookie attributes are correctly
included in the blank cookie when cookies are removed. This fixes an
inability to log out when using mod_auth_form.

Revision 689261 - (view) (annotate) - [select for diffs]
Modified Tue Aug 26 22:10:06 2008 UTC (15 months ago) by niq
File length: 18601 byte(s)
Diff to previous 687550 (colored)

Add option to insert something in autoindex head.

Revision 687550 - (view) (annotate) - [select for diffs]
Modified Thu Aug 21 04:20:21 2008 UTC (15 months, 1 week ago) by sctemme
File length: 18508 byte(s)
Diff to previous 686404 (colored)

Implement dynamic mutex callbacks for the benefit of OpenSSL.

Revision 686397 - (view) (annotate) - [select for diffs]
Modified Fri Aug 15 22:13:31 2008 UTC (15 months, 1 week ago) by jim
File length: 18581 byte(s)
Diff to previous 685155 (colored)

Backported to 2.2.x as of 686396

Revision 685155 - (view) (annotate) - [select for diffs]
Modified Tue Aug 12 14:00:38 2008 UTC (15 months, 2 weeks ago) by trawick
File length: 18980 byte(s)
Diff to previous 684351 (colored)

note fixer of dav fs fix

Revision 684351 - (view) (annotate) - [select for diffs]
Modified Sat Aug 9 21:33:09 2008 UTC (15 months, 2 weeks ago) by rpluem
File length: 18969 byte(s)
Diff to previous 684341 (colored)

* Introduce environment variable proxy-initial-not-pooled to avoid reusing
  pooled connections if the client connection is an initial connection.
  This avoids the "proxy: error reading status line from remote server"
  error caused by the race condition that the backend server closed the
  connection after the connection check on our side and before our data
  reached the backend. Yes, this downgrades performance, especially with
  HTTP/1.0 clients. Hence it is configurable and off by default.

PR: 37770

Revision 684341 - (view) (annotate) - [select for diffs]
Modified Sat Aug 9 20:52:46 2008 UTC (15 months, 2 weeks ago) by rpluem
File length: 18767 byte(s)
Diff to previous 683626 (colored)

* Add the possibility to set a separate connection timeout for backend
  workers.

PR: 45445
Submitted by: rahul <rahul sun.com>
Reviewed by: rpluem

Revision 683626 - (view) (annotate) - [select for diffs]
Modified Thu Aug 7 15:12:00 2008 UTC (15 months, 2 weeks ago) by trawick
File length: 18559 byte(s)
Diff to previous 682389 (colored)

mod_dav_fs: Retrieve minimal system information about directory 
entries when walking a DAV fs, resolving a performance degradation on
Windows.

PR: 45464

Revision 682389 - (view) (annotate) - [select for diffs]
Modified Mon Aug 4 13:49:07 2008 UTC (15 months, 3 weeks ago) by covener
File length: 18371 byte(s)
Diff to previous 678949 (colored)

  *) mod_cgid: Pass along empty command line arguments from an ISINDEX
     query that has consecutive '+' characters in the QUERY_STRING,
     matching the behavior of mod_cgi.

Revision 678949 - (view) (annotate) - [select for diffs]
Modified Tue Jul 22 23:53:23 2008 UTC (16 months ago) by covener
File length: 18171 byte(s)
Diff to previous 678947 (colored)

propogate a NULL get_realm_hash() implementation from AuthnProviderAlias back
to mod_auth_digest.  PR 45196

Revision 678947 - (view) (annotate) - [select for diffs]
Modified Tue Jul 22 23:49:51 2008 UTC (16 months ago) by covener
File length: 18000 byte(s)
Diff to previous 678160 (colored)

revert r672639 which lacked a necessary major bump, add a major MMN bump
to account for the short-lived API addition/removal.

Revision 678160 - (view) (annotate) - [select for diffs]
Modified Sat Jul 19 14:00:23 2008 UTC (16 months, 1 week ago) by rpluem
File length: 18174 byte(s)
Diff to previous 674000 (colored)

* Prevent a segfault when a CGI script sets a cookie with a null value.

Submitted by: David Shane Holden <dpejesh apache.org>
Reviewed by: rpluem

Revision 674000 - (view) (annotate) - [select for diffs]
Modified Fri Jul 4 10:54:36 2008 UTC (16 months, 3 weeks ago) by rpluem
File length: 18039 byte(s)
Diff to previous 672639 (colored)

* Prevent Header edit from processing only the first header it should
  edit and deleting the remaining ones by iterating over all headers
  with the same name.

PR: 45333

Revision 672639 - (view) (annotate) - [select for diffs]
Modified Sun Jun 29 16:42:43 2008 UTC (16 months, 4 weeks ago) by covener
File length: 17842 byte(s)
Diff to previous 670061 (colored)

mod_auth_digest: Detect during startup when AuthDigestProvider
is configured to use an incompatible provider via AuthnProviderAlias.
PR 45196

Revision 670061 - (view) (annotate) - [select for diffs]
Modified Fri Jun 20 21:12:34 2008 UTC (17 months, 1 week ago) by tdonovan
File length: 17668 byte(s)
Diff to previous 666291 (colored)

After r649840, mod_proxy_http will no longer append a query string from r->args if "no-canon".

Moved the NOESCAPE test down after PATH_INFO, and preserve the query string in r->filename if  
NOESCAPE (which implies "no-canon")

Previously this was only done for CONNECT requests, where (r->uri == r->unparsed_uri)
see mod_proxy:proxy_detect

Revision 666154 - (view) (annotate) - [select for diffs]
Modified Tue Jun 10 15:30:00 2008 UTC (17 months, 2 weeks ago) by jim
File length: 17854 byte(s)
Diff to previous 664706 (colored)

Patch for CVE-2008-2364...

Revision 664535 - (view) (annotate) - [select for diffs]
Modified Sun Jun 8 18:13:35 2008 UTC (17 months, 2 weeks ago) by trawick
File length: 17746 byte(s)
Diff to previous 663515 (colored)

core: Fix address-in-use startup failure on some platforms caused
by attempting to set up an IPv4 listener which overlaps with an 
existing IPv6 listener.

The failure occurred on the second pass of the open-logs hook in
a configuration such as the following:

  Listen 8080
  Listen 0.0.0.0:8081
  Listen [::]:8081

During the first pass, the two port 8081 listen recs were 
adjacent and existing logic prevented binding to 0.0.0.0:8081.
On the second pass, they were not adjacent and we then tried
to bind to 0.0.0.0:8081, leading to failure on some platforms
(seen on SLES 9 and Ubuntu 7.10, not seen on many other Unix-ish
platforms).

Leave a note about other unhandled configurations.

Revision 662579 - (view) (annotate) - [select for diffs]
Modified Mon Jun 2 21:31:04 2008 UTC (17 months, 3 weeks ago) by rpluem
File length: 17722 byte(s)
Diff to previous 662576 (colored)

* Another one that is now backported.

Revision 662576 - (view) (annotate) - [select for diffs]
Modified Mon Jun 2 21:29:39 2008 UTC (17 months, 3 weeks ago) by rpluem
File length: 17830 byte(s)
Diff to previous 661666 (colored)

* These are now backported

Revision 661666 - (view) (annotate) - [select for diffs]
Modified Fri May 30 11:49:31 2008 UTC (17 months, 4 weeks ago) by jorton
File length: 18119 byte(s)
Diff to previous 661506 (colored)

Prevent CSRF attacks against the balancer-manager (CVE-2007-6420)

* modules/proxy/mod_proxy_balancer.c (balancer_init): New function.
  (balancer_handler): Place a nonce in the form output, and check that
  the submitted form data includes that nonce.
  (ap_proxy_balancer_register_hook): Register the new post_config hook.

Revision 661506 - (view) (annotate) - [select for diffs]
Modified Thu May 29 22:19:17 2008 UTC (17 months, 4 weeks ago) by rpluem
File length: 17969 byte(s)
Diff to previous 660757 (colored)

* According to RFC 2616 8.2.3 we are not allowed to forward an
  Expect: 100-continue to an HTTP/1.0 server. Instead we MUST return
  a HTTP_EXPECTATION_FAILED.

Revision 660729 - (view) (annotate) - [select for diffs]
Modified Tue May 27 21:44:26 2008 UTC (18 months ago) by covener
File length: 18014 byte(s)
Diff to previous 660697 (colored)

backported to 2.2.x in r660728

Revision 659160 - (view) (annotate) - [select for diffs]
Modified Thu May 22 17:01:14 2008 UTC (18 months ago) by chrisd
File length: 19855 byte(s)
Diff to previous 658492 (colored)

Determine registered authn/z providers directly in ap_setup_auth_internal(),
which allows optional functions that just wrapped ap_list_provider_names()
to be removed from authn/z modules.

This change requires modules/aaa/mod_auth.h to be included into
server/request.c, which necessitates a minor change to configure.in for
Unix platforms.

I'm unable to tell whether a similar change is necessary for Windows and
NetWare builds or not.  Could developers with access to those platforms
please test and make any needed configuration or build alterations?  Thanks!

Revision 658492 - (view) (annotate) - [select for diffs]
Modified Tue May 20 23:54:44 2008 UTC (18 months, 1 week ago) by chrisd
File length: 19615 byte(s)
Diff to previous 658046 (colored)

fix missing committer name

Revision 658046 - (view) (annotate) - [select for diffs]
Modified Mon May 19 23:53:05 2008 UTC (18 months, 1 week ago) by chrisd
File length: 19594 byte(s)
Diff to previous 657933 (colored)

Convert common provider version strings ("0") to
AUTHN/Z_PROVIDER_VERSION macros defined in mod_auth.h.

Revision 657933 - (view) (annotate) - [select for diffs]
Modified Mon May 19 19:30:15 2008 UTC (18 months, 1 week ago) by rpluem
File length: 19528 byte(s)
Diff to previous 657447 (colored)

* Only send 100-continue if the status code so far indicates success.

PR: 43711

Revision 657447 - (view) (annotate) - [select for diffs]
Modified Sat May 17 19:52:10 2008 UTC (18 months, 1 week ago) by rpluem
File length: 19438 byte(s)
Diff to previous 657433 (colored)

* These are now backported

Revision 657433 - (view) (annotate) - [select for diffs]
Modified Sat May 17 19:32:01 2008 UTC (18 months, 1 week ago) by rpluem
File length: 19642 byte(s)
Diff to previous 657354 (colored)

* Include <limits.h> earlier if available since INT_MAX is defined there on
  Windows and we need INT_MAX already for the definition of MAX_REQUESTS.

PR: 45024

Revision 657354 - (view) (annotate) - [select for diffs]
Modified Sat May 17 13:34:58 2008 UTC (18 months, 1 week ago) by niq
File length: 19579 byte(s)
Diff to previous 656002 (colored)

configure: Don't reject libtool 2.x
PR 44817

Revision 655714 - (view) (annotate) - [select for diffs]
Modified Tue May 13 02:51:06 2008 UTC (18 months, 2 weeks ago) by fielding
File length: 19728 byte(s)
Diff to previous 655711 (colored)

gen_test_char: add double-quote to the list of T_HTTP_TOKEN_STOP.

PR: 9727
Submitted by: Ville Skytt <ville.skytta iki.fi>

Revision 655711 - (view) (annotate) - [select for diffs]
Modified Tue May 13 02:21:33 2008 UTC (18 months, 2 weeks ago) by fielding
File length: 19607 byte(s)
Diff to previous 655654 (colored)

When group is given as a numeric gid, validate it by looking up the
actual group name such that the name can be used in log entries.

PR: 7862
Submitted by: <y-koga apache.or.jp>, Leif W <warp-9.9 usa.net>

Revision 655654 - (view) (annotate) - [select for diffs]
Modified Mon May 12 21:24:26 2008 UTC (18 months, 2 weeks ago) by fielding
File length: 19391 byte(s)
Diff to previous 655637 (colored)

Improve client performance by clearing connection pool instead
of destroying it.

PR 40054
Submitted by: Brad Roberts <braddr puremagic.com>

Revision 655637 - (view) (annotate) - [select for diffs]
Modified Mon May 12 20:53:13 2008 UTC (18 months, 2 weeks ago) by fielding
File length: 19248 byte(s)
Diff to previous 655542 (colored)

Don't stop sending a request if EAGAIN is returned, which will only
happen if both the write and subsequent wait are returning EAGAIN,
and count posted bytes correctly when the initial write of a request
is not complete.

PR 10038, 38861, 39679
Submitted by: Patrick McManus <mcmanus datapower.com> (in 2003)
              Stefan Fleiter <stefan.fleiter web.de>  (in 2006)
              and Davanum Srinivas (in 2006).  Committed patch
              contains parts of all three, tweaked by Roy (2008).

Revision 655214 - (view) (annotate) - [select for diffs]
Modified Sun May 11 00:36:27 2008 UTC (18 months, 2 weeks ago) by fielding
File length: 18952 byte(s)
Diff to previous 655015 (colored)

Overhaul ab.c stats collection and reporting to avoid integer
truncation and time divisions within the test loop, retain
native time resolution until output, remove unused data,
avoid structure copies, consistently round milliseconds, and
generally avoid losing accuracy of calculation due to type casts.

Incidentally fixes output bug on gnuplot (seconds were being
output as microseconds).  It would make more sense to output
gnuplot stats as microseconds after the start of test, but
this change returns us to consistency with pre-apr versions of ab.

PR: 44878, 44931.

Revision 655015 - (view) (annotate) - [select for diffs]
Modified Sat May 10 06:19:03 2008 UTC (18 months, 2 weeks ago) by rpluem
File length: 18606 byte(s)
Diff to previous 654998 (colored)

* Unify the spelling of my name in changelog entries. Long time ago I decided
  to transliterate the ü with ue.

Revision 654998 - (view) (annotate) - [select for diffs]
Modified Sat May 10 00:49:03 2008 UTC (18 months, 2 weeks ago) by chrisd
File length: 18606 byte(s)
Diff to previous 654968 (colored)

When testing for slash-terminated configuration paths in
ap_location_walk(), don't look past the start of an empty string
such as that created by a <Location ""> directive.

Revision 654968 - (view) (annotate) - [select for diffs]
Modified Fri May 9 22:40:01 2008 UTC (18 months, 2 weeks ago) by minfrin
File length: 18390 byte(s)
Diff to previous 654958 (colored)

core, mod_proxy: If a kept_body is present, it becomes safe for
subrequests to support message bodies. Make sure that safety
checks within the core and within the proxy are not triggered
when kept_body is present. This makes it possible to embed
proxied POST requests within mod_include.

Revision 654958 - (view) (annotate) - [select for diffs]
Modified Fri May 9 22:15:37 2008 UTC (18 months, 2 weeks ago) by minfrin
File length: 18059 byte(s)
Diff to previous 654952 (colored)

mod_auth_form: Make sure the input filter stack is properly set
up before reading the login form. Make sure the kept body filter
is correctly inserted to ensure the body can be read a second
time safely should the authn be successful. [Graham Leggett,
Ruediger Pluem]

Revision 654952 - (view) (annotate) - [select for diffs]
Modified Fri May 9 21:59:02 2008 UTC (18 months, 2 weeks ago) by minfrin
File length: 17765 byte(s)
Diff to previous 654812 (colored)

mod_request: Insert the KEPT_BODY filter via the insert_filter
hook instead of during fixups. Add a safety check to ensure the
filters cannot be inserted more than once. [Graham Leggett,
Ruediger Pluem]

Revision 654504 - (view) (annotate) - [select for diffs]
Modified Thu May 8 12:20:13 2008 UTC (18 months, 2 weeks ago) by trawick
File length: 18600 byte(s)
Diff to previous 654352 (colored)

fix OS name for searchability

Revision 654352 - (view) (annotate) - [select for diffs]
Modified Thu May 8 00:35:52 2008 UTC (18 months, 2 weeks ago) by covener
File length: 18599 byte(s)
Diff to previous 654332 (colored)

backported to 2.2.x in r654348

Revision 654332 - (view) (annotate) - [select for diffs]
Modified Thu May 8 00:09:53 2008 UTC (18 months, 3 weeks ago) by covener
File length: 18795 byte(s)
Diff to previous 654232 (colored)

*) mod_cgid: Explicitly set permissions of the socket (ScriptSock) shared by
   mod_cgid and request processing threads, for OS'es such as HPUX and AIX
   that do not use umask for AF_UNIX socket permissions.
   [Eric Covener, Jeff Trawick]

Revision 654232 - (view) (annotate) - [select for diffs]
Modified Wed May 7 19:38:50 2008 UTC (18 months, 3 weeks ago) by trawick
File length: 18545 byte(s)
Diff to previous 653773 (colored)

mod_cgid: Don't try to restart the daemon if it fails to initialize the socket.
It won't get any better without intervention, and it will fork() until some
sort of intervention.

Revision 653773 - (view) (annotate) - [select for diffs]
Modified Tue May 6 13:38:42 2008 UTC (18 months, 3 weeks ago) by jim
File length: 18439 byte(s)
Diff to previous 652885 (colored)

Backported to 2.2.x in r653772

Revision 652885 - (view) (annotate) - [select for diffs]
Modified Fri May 2 20:04:34 2008 UTC (18 months, 3 weeks ago) by rpluem
File length: 18608 byte(s)
Diff to previous 649460 (colored)

* Do not allow all options of ALL to be set when only a few of them are
  allowed.

PR: 44262
Submitted by: Michał Grzędzicki <lazy iq.pl>
Reviewed by: rpluem

Revision 649460 - (view) (annotate) - [select for diffs]
Modified Fri Apr 18 11:05:25 2008 UTC (19 months, 1 week ago) by dirkx
File length: 18471 byte(s)
Diff to previous 649162 (colored)

Centralize the error-header collapsing done when sending out cached replies. Mark the change in CHANGES as it may have unforseen fall out and/or may need to be reverted or done more subtle.

Revision 649162 - (view) (annotate) - [select for diffs]
Modified Thu Apr 17 16:03:13 2008 UTC (19 months, 1 week ago) by dirkx
File length: 18238 byte(s)
Diff to previous 649121 (colored)

Currently each of the caching module includes logic to implement
the hop-by-hop rules of rfc 2616 along with the entity response
rules. To make sure that they stay in sync; and to make it easier
to add (http) caching modules - this change moves them all into
one place (cache_util) and exposes a in-bound and out-bound
version to operate on the headers.

In short: we retire ap_cache_cacheable_hdrs_out() which was used
for both in- and out-put headers; and replace it by a single
ap_cache_cacheable_headers() which understands the hop-by-hop
rules. And then wrap this into an in- and out-put specific 
ap_cache_cacheable_headers_in()/out() which we can teach things
about entity responses and so on.. The latter which will also 
merge error and ensure content-type. 

This API change bumps up the minor MM by one.

Revision 649121 - (view) (annotate) - [select for diffs]
Modified Thu Apr 17 14:12:13 2008 UTC (19 months, 1 week ago) by jim
File length: 17798 byte(s)
Diff to previous 647395 (colored)

All backported to 2.2.9-dev now

Revision 647395 - (view) (annotate) - [select for diffs]
Modified Sat Apr 12 08:44:36 2008 UTC (19 months, 2 weeks ago) by rpluem
File length: 18646 byte(s)
Diff to previous 647263 (colored)

* Allow Cookie option to set secure and HttpOnly flags

PR: 44799
Submitted by: Christian Wenz <christian wenz.org>
Reviewed by: rpluem

Revision 647263 - (view) (annotate) - [select for diffs]
Modified Fri Apr 11 18:41:53 2008 UTC (19 months, 2 weeks ago) by minfrin
File length: 18521 byte(s)
Diff to previous 646845 (colored)

Move the KeptBodySize directive, kept_body filters and the
ap_parse_request_body function out of the http module and into a
new module called mod_request, reducing the size of the core.

Revision 646845 - (view) (annotate) - [select for diffs]
Modified Thu Apr 10 15:33:05 2008 UTC (19 months, 2 weeks ago) by trawick
File length: 18297 byte(s)
Diff to previous 646453 (colored)

rotatelogs: Log the current file size and error code/description
when failing to write to the log file. 

Sometimes users have a hard time believing that their little log
file was really big enough to reach quota/filesystem/other limit
back at the time of the error.

Revision 646453 - (view) (annotate) - [select for diffs]
Modified Wed Apr 9 18:01:53 2008 UTC (19 months, 2 weeks ago) by chrisd
File length: 18166 byte(s)
Diff to previous 646304 (colored)

Handle integer configuration directive parameters with a dedicated
function, akin to dbd_param_flag().  Only needed when APR_HAS_THREADS.

Revision 646304 - (view) (annotate) - [select for diffs]
Modified Wed Apr 9 12:39:33 2008 UTC (19 months, 2 weeks ago) by minfrin
File length: 18069 byte(s)
Diff to previous 646285 (colored)

Change the directives within the mod_session* modules to be valid
both inside and outside the location/directory sections, as suggested
by wrowe.

Revision 646285 - (view) (annotate) - [select for diffs]
Modified Wed Apr 9 11:46:46 2008 UTC (19 months, 2 weeks ago) by minfrin
File length: 17890 byte(s)
Diff to previous 646281 (colored)

mod_auth_form: Add a module capable of allowing end users to log
in using an HTML form, storing the credentials within mod_session.

Revision 646281 - (view) (annotate) - [select for diffs]
Modified Wed Apr 9 11:39:58 2008 UTC (19 months, 2 weeks ago) by minfrin
File length: 17725 byte(s)
Diff to previous 645570 (colored)

Add a function to the http filters that is able to parse an HTML
form request with the type of application/x-www-form-urlencoded.

Revision 645244 - (view) (annotate) - [select for diffs]
Modified Sun Apr 6 14:23:35 2008 UTC (19 months, 3 weeks ago) by minfrin
File length: 17624 byte(s)
Diff to previous 645160 (colored)

mod_session_crypto: Initialise SSL in the post config hook.

Revision 645160 - (view) (annotate) - [select for diffs]
Modified Sat Apr 5 18:59:40 2008 UTC (19 months, 3 weeks ago) by minfrin
File length: 17520 byte(s)
Diff to previous 644751 (colored)

mod_session_dbd: Add a session implementation capable of storing
session information in a SQL database via the dbd interface. Useful
for sites where session privacy is important.

Revision 644751 - (view) (annotate) - [select for diffs]
Modified Fri Apr 4 16:11:31 2008 UTC (19 months, 3 weeks ago) by minfrin
File length: 17308 byte(s)
Diff to previous 644748 (colored)

mod_session_crypto: Add a session encoding implementation capable
of encrypting and decrypting sessions wherever they may be stored.
Introduces a level of privacy when sessions are stored on the
browser.

Revision 644748 - (view) (annotate) - [select for diffs]
Modified Fri Apr 4 16:02:22 2008 UTC (19 months, 3 weeks ago) by minfrin
File length: 17066 byte(s)
Diff to previous 644746 (colored)

mod_session_cookie: Add a session implementation capable of storing
session information within cookies on the browser. Useful for high
volume sites where server bound sessions are too resource intensive.

Revision 644746 - (view) (annotate) - [select for diffs]
Modified Fri Apr 4 15:58:15 2008 UTC (19 months, 3 weeks ago) by minfrin
File length: 16824 byte(s)
Diff to previous 644525 (colored)

mod_session: Add a generic session interface to unify the different
attempts at saving persistent sessions across requests.

Revision 644525 - (view) (annotate) - [select for diffs]
Modified Thu Apr 3 21:51:07 2008 UTC (19 months, 3 weeks ago) by chrisd
File length: 16667 byte(s)
Diff to previous 644391 (colored)

Avoid calling access control hooks for internal requests with
configurations which match those of the initial request.  Revert to
the original behaviour (call access control hooks for internal requests
with URIs different from the initial request) if any access control hooks
or providers are not registered as permitting this optimization.
Introduce wrappers for access control hook and provider registration
which can accept additional mode and flag data.

The configuration walk optimizations were originally proposed a while
ago (see http://marc.info/?l=apache-httpd-dev&m=116536713506234&w=2);
they have been used since then in production systems and appear to be
stable and effective.  They permit certain combinations of modules
and clients to function efficiently, especially when a deeply recursive
series of internal requests, such as those generated by certain WebDAV
requests, are all subject to the identical authentication and authorization
directives.

The major change from the original proposal is a cleaner mechanism for
detecting modules which may expect the old behaviour.  This has been
tested successfully with Subversion's mod_authz_svn, which specifically
requires the old behaviour when performing path-based authorization based
against its own private access control configuration files.

Revision 644050 - (view) (annotate) - [select for diffs]
Modified Wed Apr 2 20:55:16 2008 UTC (19 months, 3 weeks ago) by rpluem
File length: 16046 byte(s)
Diff to previous 642559 (colored)

* Prevent a segfault if the destination URI of a copy / move operation is
  not under DAV control. Return 405 (Method not allowed) instead.

PR: 44734

Revision 642559 - (view) (annotate) - [select for diffs]
Modified Sat Mar 29 17:18:21 2008 UTC (19 months, 4 weeks ago) by niq
File length: 15895 byte(s)
Diff to previous 642558 (colored)

Update mod_include to use ap_expr API

Revision 642558 - (view) (annotate) - [select for diffs]
Modified Sat Mar 29 17:13:28 2008 UTC (19 months, 4 weeks ago) by niq
File length: 15789 byte(s)
Diff to previous 640932 (colored)

Introduce ap_expr expression parser API

Revision 640932 - (view) (annotate) - [select for diffs]
Modified Tue Mar 25 18:21:32 2008 UTC (20 months ago) by chrisd
File length: 15733 byte(s)
Diff to previous 639465 (colored)

Return AUTHZ_GRANTED not AUTHZ_DENIED when redirecting after
successful login/logout.  Use redirection URL from first row returned
by DB query, in the same manner as that used by mod_authn_dbd when
querying for a single record.

Revision 639465 - (view) (annotate) - [select for diffs]
Modified Thu Mar 20 21:26:22 2008 UTC (20 months, 1 week ago) by rpluem
File length: 15504 byte(s)
Diff to previous 639417 (colored)

* Initialize hash needed by ap_register_rewrite_mapfunc early enough.

PR: 44641
Submitted by: Daniel Lescohier <daniel.lescohier cnet.com>
Reviewed by: rpluem, niq, wrowe, jim

Revision 639417 - (view) (annotate) - [select for diffs]
Modified Thu Mar 20 19:21:21 2008 UTC (20 months, 1 week ago) by chrisd
File length: 15356 byte(s)
Diff to previous 637903 (colored)

*) mod_authn_dbd: Disambiguate and tidy database authentication
   error messages.  PR 43210, committed in r639079.

Revision 637168 - (view) (annotate) - [select for diffs]
Modified Fri Mar 14 17:18:48 2008 UTC (20 months, 2 weeks ago) by covener
File length: 15321 byte(s)
Diff to previous 636386 (colored)

backported in r637167

Revision 636386 - (view) (annotate) - [select for diffs]
Modified Wed Mar 12 16:07:46 2008 UTC (20 months, 2 weeks ago) by rpluem
File length: 15461 byte(s)
Diff to previous 635953 (colored)

* Restore the original request headers if the cached resource was stale, as they
  may be needed by further output filters like the byterange filter to make the
  correct decisions.

PR: 44579

Revision 635953 - (view) (annotate) - [select for diffs]
Modified Tue Mar 11 14:39:14 2008 UTC (20 months, 2 weeks ago) by jim
File length: 15353 byte(s)
Diff to previous 634821 (colored)

PR 43562.
fix regression in mod_speling behavior from 1.3/2.0
and, basically, incorrect behavior from what is
expected as well as dependency on AcceptPathInfo.

Revision 634821 - (view) (annotate) - [select for diffs]
Modified Fri Mar 7 21:02:41 2008 UTC (20 months, 3 weeks ago) by covener
File length: 15189 byte(s)
Diff to previous 633887 (colored)

* mod_ldap: Correctly return all requested attribute values
when some attributes have a null value.

PR: 44560 
Submitted by: Anders Kaseorg <anders kaseorg.com>
Reviewed by: covener

Revision 632947 - (view) (annotate) - [select for diffs]
Modified Mon Mar 3 06:13:59 2008 UTC (20 months, 3 weeks ago) by niq
File length: 15307 byte(s)
Diff to previous 632749 (colored)

core: fix SymlinksIfOwnerMatch checking:
  (1) Fix Origin checking (PR 36783 - Robert L Mathews)
  (2) Check ownership if both FollowSymlinks and SymlinksIfOwnerMatch are set

Revision 632749 - (view) (annotate) - [select for diffs]
Modified Sun Mar 2 12:35:33 2008 UTC (20 months, 3 weeks ago) by rpluem
File length: 15074 byte(s)
Diff to previous 632730 (colored)

* If the cached entity contained Cache-Control: no-cache, treat it as stale
  causing revalidation.

PR: 44511

Revision 632730 - (view) (annotate) - [select for diffs]
Modified Sun Mar 2 09:58:56 2008 UTC (20 months, 3 weeks ago) by nikke
File length: 14934 byte(s)
Diff to previous 632355 (colored)

mod_rewrite: Check all files used by DBM maps for freshness, mod_rewrite
didn't pick up on updated sdbm maps due to this.
PR41190 [Niklas Edmundsson]

NOTE: Only tested on httpd-2.2.8.

Revision 632355 - (view) (annotate) - [select for diffs]
Modified Fri Feb 29 15:32:38 2008 UTC (20 months, 4 weeks ago) by jim
File length: 14768 byte(s)
Diff to previous 631735 (colored)

Add in new option for rotatelogs: -f
This forces rotatelogs to create the logfile as soon
as started not as soon as it sees it's first line
of input.

Revision 631735 - (view) (annotate) - [select for diffs]
Modified Wed Feb 27 21:35:39 2008 UTC (20 months, 4 weeks ago) by rpluem
File length: 14599 byte(s)
Diff to previous 631364 (colored)

* Do not retry a direct connection if the request has a request body

Revision 630348 - (view) (annotate) - [select for diffs]
Modified Fri Feb 22 22:58:42 2008 UTC (21 months ago) by rpluem
File length: 14888 byte(s)
Diff to previous 630335 (colored)

* Second part of fix for PR 44402:

  - Fix the same race condition in event MPM.
  - Slightly optimize code in worker MPM by removing the need for an additional
    dereference operation.
  - Do some word smithing on the CHANGES entry.

PR: 44402
Submitted by: Basant Kumar Kukreja <basant.kukreja sun.com>
Reviewed by: rpluem

Revision 630335 - (view) (annotate) - [select for diffs]
Modified Fri Feb 22 22:17:42 2008 UTC (21 months ago) by niq
File length: 14830 byte(s)
Diff to previous 629985 (colored)

Worker MPM: fix race condition
PR44402: reported and fixed by Basant Kumar Kukreja

Revision 629915 - (view) (annotate) - [select for diffs]
Modified Thu Feb 21 18:43:24 2008 UTC (21 months ago) by covener
File length: 14916 byte(s)
Diff to previous 629879 (colored)

rename mod_charset_lite CharsetOption ForceAllMimeTypes to
TranslateAllMimeTypes (only about 18 hours old)

Revision 629615 - (view) (annotate) - [select for diffs]
Modified Wed Feb 20 21:17:17 2008 UTC (21 months ago) by covener
File length: 14912 byte(s)
Diff to previous 629456 (colored)

  *) mod_charset_lite: Add ForceAllMimeTypes sub-option to
     CharsetOptions, allowing the administrator to skip the
     mimetype checking that precedes translation.
     PR 44458 [Eric Covener]

Revision 629456 - (view) (annotate) - [select for diffs]
Modified Wed Feb 20 13:44:22 2008 UTC (21 months, 1 week ago) by rpluem
File length: 14711 byte(s)
Diff to previous 628644 (colored)

* Set aside buckets that remain unprocessed in the filter context for the
  next filter pass.

PR: 44447
Submitted by: Harald Niesche <harald brokenerror.de>
Reviewed by: rpluem

Revision 628644 - (view) (annotate) - [select for diffs]
Modified Mon Feb 18 08:35:44 2008 UTC (21 months, 1 week ago) by niq
File length: 14569 byte(s)
Diff to previous 627819 (colored)

http_filters: Don't send 100-continue when 4xx is due
PR 43711
Reported & tested by Ragini Bisraya
Patch by Chetan Reddy
Reviewed: niq

Revision 627819 - (view) (annotate) - [select for diffs]
Modified Thu Feb 14 18:13:23 2008 UTC (21 months, 1 week ago) by jim
File length: 14454 byte(s)
Diff to previous 627764 (colored)

Assuming this sticks, explain why this was considered
a Good Idea.

Revision 627764 - (view) (annotate) - [select for diffs]
Modified Thu Feb 14 14:48:13 2008 UTC (21 months, 1 week ago) by jim
File length: 14379 byte(s)
Diff to previous 627728 (colored)

Change default of mod_substitute to flattening...
Via current discussion on dev@httpd

Revision 627728 - (view) (annotate) - [select for diffs]
Modified Thu Feb 14 12:55:57 2008 UTC (21 months, 1 week ago) by jim
File length: 14154 byte(s)
Diff to previous 627082 (colored)

Add in mod_jk's disablereuse analog for mod_proxy.

Revision 627082 - (view) (annotate) - [select for diffs]
Modified Tue Feb 12 20:27:01 2008 UTC (21 months, 2 weeks ago) by rpluem
File length: 14007 byte(s)
Diff to previous 620630 (colored)

* This change is backported.

Revision 620630 - (view) (annotate) - [select for diffs]
Modified Mon Feb 11 22:06:42 2008 UTC (21 months, 2 weeks ago) by dirkx
File length: 14180 byte(s)
Diff to previous 620530 (colored)

Addition of a test script which creates a Sample/test configuration for installations
that wants to support SNI. Primarily done as a lot of web developers find the creation
of certificates hard - and do not want to go to the expense of sourcing a handful
from a well-known CA just for testing and experimenting.

Also update the CHANGES log with the word 'SNI' as to make googling it easier.

Revision 620530 - (view) (annotate) - [select for diffs]
Modified Mon Feb 11 17:21:05 2008 UTC (21 months, 2 weeks ago) by dirkx
File length: 14086 byte(s)
Diff to previous 620153 (colored)

Turn the cache module into first class citizens (well the disk_cache
and file cache that is).

This makes the delta between 'all' and 'most'

mod_cern_meta.c
mod_log_forensic.c
mod_mime_magic.c
mod_unique_id.c
mod_usertrack.c
mod_version.c
mod_mem_cache.c

And keeps disabled in all and most the modules for:
	
authnz_ldap
bucketeer
echo
example_hooks
case_filter
case_filter_in
example_ipc
charset_lite
cgid
ldap
optional_hook_export
optional_hook_import
optional_fn_import
optional_fn_export

As well as mod_ssl which is intentionally not part of MOST and All.

Revision 620153 - (view) (annotate) - [select for diffs]
Modified Sat Feb 9 16:52:47 2008 UTC (21 months, 2 weeks ago) by dirkx
File length: 13874 byte(s)
Diff to previous 620135 (colored)

Add PR for header install

Revision 620135 - (view) (annotate) - [select for diffs]
Modified Sat Feb 9 15:12:52 2008 UTC (21 months, 2 weeks ago) by dirkx
File length: 13864 byte(s)
Diff to previous 620133 (colored)

Also install the so, rewrite and cache header files.

Revision 620133 - (view) (annotate) - [select for diffs]
Modified Sat Feb 9 15:04:57 2008 UTC (21 months, 2 weeks ago) by dirkx
File length: 13675 byte(s)
Diff to previous 617890 (colored)

Sub-requests are created and used with two purposes; sometimes
simply to 'see' what a request would do; as to fill out an SSI,
validate access or similar - and is then discarded. And sometimes
as the precursor to becoming the actual request; e.g. when mod_dir
checks if an /index.html can be served for a '/'.

In the latter case it is important to preserve the output filters
'for real'; whereas in the first case they have to be reset to
purely the minimal proto filters (if at all). This patch instates
the output filters in 3 cases where sub-requests are/may in fact
be used as the real request later on.

This is a relatively risky change (which should not be back-ported 
without further discussion) and may break caches in combination 
with internal redirects/vary/negotiation in subtle ways.

See the thread starting at [1] and in particular the general 
concerns of rpluem at [2] with respect to sub requests 
and (fast_)internal redirects possibly needing a more 
thorough overhaul.

1: http://mail-archives.apache.org/mod_mbox/httpd-dev/200802.mbox/ajax/%3c335D1A4B-25E2-4FF1-8CDF-5010A7FBD293@webweaving.org%3e
2: http://mail-archives.apache.org/mod_mbox/httpd-dev/200802.mbox/%3c47ACE1D4.4060702@apache.org%3e

Revision 617890 - (view) (annotate) - [select for diffs]
Modified Sat Feb 2 20:36:18 2008 UTC (21 months, 3 weeks ago) by rpluem
File length: 13375 byte(s)
Diff to previous 617822 (colored)

* Use a 64 bit unsigned int instead of a signed long to count the bytes
  transferred to avoid integer overflows.

PR: 44346

Revision 617822 - (view) (annotate) - [select for diffs]
Modified Sat Feb 2 16:35:40 2008 UTC (21 months, 3 weeks ago) by rpluem
File length: 13224 byte(s)
Diff to previous 616517 (colored)

* Do not retry a request in the case that we either failed to sent a part of the
  request body or if the request is not idempotent.

PR: 44334

Revision 616517 - (view) (annotate) - [select for diffs]
Modified Tue Jan 29 20:55:38 2008 UTC (21 months, 4 weeks ago) by rpluem
File length: 13040 byte(s)
Diff to previous 616335 (colored)

* Fix processing of chunked responses if Connection: Transfer-Encoding is
  set in the response of the proxied system.

PR: 44311

Revision 616335 - (view) (annotate) - [select for diffs]
Modified Tue Jan 29 14:26:20 2008 UTC (21 months, 4 weeks ago) by jim
File length: 12867 byte(s)
Diff to previous 615901 (colored)

Now let things like

   ProxyPassReverse /foo balancer://bar

work "as expected" :) :)

Revision 615901 - (view) (annotate) - [select for diffs]
Modified Mon Jan 28 14:51:14 2008 UTC (21 months, 4 weeks ago) by rpluem
File length: 12805 byte(s)
Diff to previous 614607 (colored)

* Don't leak memory when reopening the logfile.

PR: 40183
Submitted by: rpluem, Takashi Sato <serai lans-tv.com>
Reviewed by: rpluem

Revision 612954 - (view) (annotate) - [select for diffs]
Modified Thu Jan 17 20:01:55 2008 UTC (22 months, 1 week ago) by rpluem
File length: 12348 byte(s)
Diff to previous 611483 (colored)

* Do not try to read non existing response bodies of HEAD requests.

PR: 34275
Submitted by: Takashi Sato <serai lans-tv.com>
Reviewed by: rpluem

Revision 611483 - (view) (annotate) - [select for diffs]
Modified Sat Jan 12 21:16:27 2008 UTC (22 months, 2 weeks ago) by niq
File length: 12223 byte(s)
Diff to previous 611475 (colored)

Support chroot on unix-family platforms
PR 43596 (Dimitar Pashev)

Revision 611475 - (view) (annotate) - [select for diffs]
Modified Sat Jan 12 20:33:57 2008 UTC (22 months, 2 weeks ago) by niq
File length: 12122 byte(s)
Diff to previous 611466 (colored)

Don't add bogus duplicate Content-Language header entries.
PR 11035

Revision 611466 - (view) (annotate) - [select for diffs]
Modified Sat Jan 12 19:32:24 2008 UTC (22 months, 2 weeks ago) by niq
File length: 12037 byte(s)
Diff to previous 611292 (colored)

mod_proxy_ftp: Fix base for directory listings.
PR 27834

Revision 611292 - (view) (annotate) - [select for diffs]
Modified Fri Jan 11 20:30:23 2008 UTC (22 months, 2 weeks ago) by covener
File length: 12050 byte(s)
Diff to previous 611199 (colored)

  *) mod_proxy_http: Return HTTP status codes instead of apr_status_t
     values for errors encountered while forwarding the request body
     PR 44165 [Eric Covener]

See also PR 31759 / r448711

Revision 611199 - (view) (annotate) - [select for diffs]
Modified Fri Jan 11 15:07:53 2008 UTC (22 months, 2 weeks ago) by covener
File length: 11881 byte(s)
Diff to previous 611134 (colored)

*) mod_logio: Provide optional function to allow modules to adjust the
   bytes_in count [Eric Covener]

Practical example: alternate SSL implementation that lives 
beyond the filters (IOL)

Revision 611134 - (view) (annotate) - [select for diffs]
Modified Fri Jan 11 10:52:09 2008 UTC (22 months, 2 weeks ago) by niq
File length: 11766 byte(s)
Diff to previous 609114 (colored)

mod_rewrite: Don't canonicalise URLs with [P,NE]
PR 43319

Revision 609114 - (view) (annotate) - [select for diffs]
Modified Sat Jan 5 09:45:51 2008 UTC (22 months, 3 weeks ago) by rpluem
File length: 11679 byte(s)
Diff to previous 608063 (colored)

* These are now backported.

Revision 608063 - (view) (annotate) - [select for diffs]
Modified Wed Jan 2 09:50:56 2008 UTC (22 months, 3 weeks ago) by rpluem
File length: 12444 byte(s)
Diff to previous 607930 (colored)

* These are now backported.

Revision 607766 - (view) (annotate) - [select for diffs]
Modified Mon Dec 31 19:20:25 2007 UTC (22 months, 3 weeks ago) by covener
File length: 13579 byte(s)
Diff to previous 607638 (colored)

When using the MS SDK, re-establish LDAP backend connections on a
return code of LDAP_UNAVAILABLE as if it were LDAP_SERVER_DOWN.

With this SDK, LDAP_UNAVAIALBLE is returned when the socket had been closed 
between LDAP API calls.

PR 39095

Revision 607638 - (view) (annotate) - [select for diffs]
Modified Mon Dec 31 01:13:43 2007 UTC (22 months, 4 weeks ago) by wrowe
File length: 13340 byte(s)
Diff to previous 607466 (colored)

Introduce the ProxyFtpDirCharset directive, allowing the administrator
to identify a default, or specific servers or paths which list their
contents in other-than ISO-8859-1 charset (e.g. utf-8).

Submitted by: Ruediger Pluem

Revision 607466 - (view) (annotate) - [select for diffs]
Modified Sat Dec 29 19:38:51 2007 UTC (22 months, 4 weeks ago) by niq
File length: 13111 byte(s)
Diff to previous 607437 (colored)

mod_dav: Fix evaluation of If-Match * and If-None-Match * conditionals.
PR 38034
Patch by Paritosh Shah
Explanation by Werner Baumann

Revision 607437 - (view) (annotate) - [select for diffs]
Modified Sat Dec 29 16:06:19 2007 UTC (22 months, 4 weeks ago) by rpluem
File length: 12977 byte(s)
Diff to previous 607403 (colored)

* Adjust etag generation to produce identical results on 32-bit and 64-bit
  platforms and avoid a regression with conditional PUT's on lock and etag.

  Add a warning to the documentation of FileETAG that changes of the ETAG
  format can cause conditionals to fail on mod_dav_fs provided backends.

PR: 44152
Submitted by: Michael Clark <michael metaparadigm.com>
Reviewed by: rpluem

Revision 607403 - (view) (annotate) - [select for diffs]
Modified Sat Dec 29 09:26:42 2007 UTC (22 months, 4 weeks ago) by rpluem
File length: 12731 byte(s)
Diff to previous 607402 (colored)

* Added missing CVE number

Revision 607402 - (view) (annotate) - [select for diffs]
Modified Sat Dec 29 09:25:16 2007 UTC (22 months, 4 weeks ago) by rpluem
File length: 12686 byte(s)
Diff to previous 607282 (colored)

* Added missing CVE number

Revision 607282 - (view) (annotate) - [select for diffs]
Modified Fri Dec 28 16:29:40 2007 UTC (23 months ago) by rpluem
File length: 12641 byte(s)
Diff to previous 607276 (colored)

* Ensure refresh parameter is numeric to prevent a possible XSS attack caused
  by redirecting to other URLs. Reported by SecurityReason.

Submitted by: Mark Cox, Joe Orton
Reviewed by: security@httpd.apache.org

Revision 607276 - (view) (annotate) - [select for diffs]
Modified Fri Dec 28 16:01:52 2007 UTC (23 months ago) by rpluem
File length: 12410 byte(s)
Diff to previous 607275 (colored)

* Fix CHANGES wording for r606693.

Revision 607275 - (view) (annotate) - [select for diffs]
Modified Fri Dec 28 15:57:36 2007 UTC (23 months ago) by rpluem
File length: 12864 byte(s)
Diff to previous 607273 (colored)

* Correctly escape the worker route and the worker redirect string in the HTML
  output of the balancer manager.

Reported by SecurityReason.

Revision 607273 - (view) (annotate) - [select for diffs]
Modified Fri Dec 28 15:53:45 2007 UTC (23 months ago) by rpluem
File length: 12674 byte(s)
Diff to previous 607219 (colored)

* Prevent crash in balancer manager if invalid balancer name is passed as
  parameter.

Revision 607219 - (view) (annotate) - [select for diffs]
Modified Fri Dec 28 12:03:20 2007 UTC (23 months ago) by niq
File length: 12535 byte(s)
Diff to previous 606693 (colored)

PR 39727: Fixup ETag handling in mod deflate (updated following extensive
discussion on-list).
This is not a full-and-final fix, because we don't ourselves do anything
useful with these ETags.  But at least we're no longer screwing up clients.

Revision 606693 - (view) (annotate) - [select for diffs]
Modified Mon Dec 24 11:45:22 2007 UTC (23 months ago) by rpluem
File length: 12521 byte(s)
Diff to previous 606190 (colored)

* Set character set for HTML outputs generated by mod_ldap,
  mod_proxy_balancer, mod_proxy_ftp, mod_info, mod_dav without a character
  set to ISO-8859-1.

Submitted by: jorton

Revision 606190 - (view) (annotate) - [select for diffs]
Modified Fri Dec 21 13:16:21 2007 UTC (23 months, 1 week ago) by fuankg
File length: 11794 byte(s)
Diff to previous 604321 (colored)

Added server name indication (RFC 4366) support (PR 34607).
Submitted by: Kaspar Brand <asfbugz velox.ch>

Revision 604321 - (view) (annotate) - [select for diffs]
Modified Fri Dec 14 22:36:44 2007 UTC (23 months, 1 week ago) by rpluem
File length: 11681 byte(s)
Diff to previous 604000 (colored)

* This change was backported.

Revision 604000 - (view) (annotate) - [select for diffs]
Modified Thu Dec 13 19:39:05 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 11877 byte(s)
Diff to previous 603738 (colored)

* Those are backported.

Pointed out by: Takashi Sato <serai lans-tv.com>

Revision 603738 - (view) (annotate) - [select for diffs]
Modified Wed Dec 12 20:56:15 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12688 byte(s)
Diff to previous 603346 (colored)

* These have been backported.

Revision 603346 - (view) (annotate) - [select for diffs]
Modified Tue Dec 11 20:08:12 2007 UTC (23 months, 2 weeks ago) by trawick
File length: 13195 byte(s)
Diff to previous 603238 (colored)

http_protocol: Escape request method in 405 error reporting.
This has no security impact since the browser cannot be tricked
into sending arbitrary method strings.

(words from jorton)

Revision 603238 - (view) (annotate) - [select for diffs]
Modified Tue Dec 11 13:32:40 2007 UTC (23 months, 2 weeks ago) by wrowe
File length: 12999 byte(s)
Diff to previous 603237 (colored)

Introduce --kill argument to ApacheMonitor for use by the
installer.  This will permit the installation tool to remove
all running instances before attempting to remove the .exe.

Note that since the introduction of CriticalSections, our
compatibility with NT 4 was destroyed, and at this point that
is no loss (there are no more security updates to NT 4 ergo
it's not an OS we want connected to the internet, anyways).
The WTS api calls require 2000 or later, but I'm not wrapping
them since nobody notices the same issue with CriticalSections.

Revision 603237 - (view) (annotate) - [select for diffs]
Modified Tue Dec 11 13:27:21 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12782 byte(s)
Diff to previous 603227 (colored)

* Use a separate subpool to manage the data for the socket and the connection
  member of the proxy_conn_rec struct as we destroy this data more frequently
  than other data in the proxy_conn_rec struct like hostname and addr (at least
  in the case where we have keepalive connections that timed out and were
  closed by the backend).
  This fixes a memory leak with short lived and broken connections.

PR: 44026

Revision 603227 - (view) (annotate) - [select for diffs]
Modified Tue Dec 11 12:48:39 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12679 byte(s)
Diff to previous 602795 (colored)

* Do not set filter context brigade to NULL (and thus need to recreate it each
  time) but empty it (via APR_BRIGADE_PREPEND) and reuse it. 

Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem

Revision 602795 - (view) (annotate) - [select for diffs]
Modified Mon Dec 10 07:35:52 2007 UTC (23 months, 2 weeks ago) by mturk
File length: 12506 byte(s)
Diff to previous 602735 (colored)

Use 64K as maximum allowable AJP packet size

Revision 602735 - (view) (annotate) - [select for diffs]
Modified Sun Dec 9 22:03:10 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12352 byte(s)
Diff to previous 602682 (colored)

* Do not split the brigade if the flush bucket is the last bucket in the brigade.

PR: 23567
Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem

Revision 602682 - (view) (annotate) - [select for diffs]
Modified Sun Dec 9 15:13:11 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12172 byte(s)
Diff to previous 602542 (colored)

* These one have been backported.

Revision 602542 - (view) (annotate) - [select for diffs]
Modified Sat Dec 8 20:10:29 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12594 byte(s)
Diff to previous 602509 (colored)

* Enable the proxy to keep connections persistent in the HTTPS case.

  Basicly the persistence is created by keeping the conn_rec structure
  created for our backend connection (whether http or https) in the connection
  pool. This required to adjust scoreboard.c in a way that its functions can
  properly deal with a NULL scoreboard handle by ignoring the call or returning
  an error code.

Revision 602509 - (view) (annotate) - [select for diffs]
Modified Sat Dec 8 16:59:27 2007 UTC (23 months, 2 weeks ago) by rpluem
File length: 12493 byte(s)
Diff to previous 600645 (colored)

* All these changes have been backported.

Revision 600645 - (view) (annotate) - [select for diffs]
Modified Mon Dec 3 19:45:48 2007 UTC (23 months, 3 weeks ago) by wrowe
File length: 13299 byte(s)
Diff to previous 600154 (colored)

http_protocol: Escape request method in 413 error reporting.
Determined to be not generally exploitable, but a flaw in any case.

PR: 44014
Submitted by: Victor Stinner <victor.stinner inl.fr>

Revision 600154 - (view) (annotate) - [select for diffs]
Modified Sat Dec 1 16:14:21 2007 UTC (23 months, 3 weeks ago) by rpluem
File length: 13104 byte(s)
Diff to previous 599393 (colored)

- when using "-l" reduce two consecutive calls to apr_time_now() to one.
  This will not change the logic if no "-l" gets used, and it will spare
  one call to apr_time_now() in case "-l" gets used and more important
  it gives the code better atomicity, because in fact between the two calls
  there is a slight change of jumping oder the DST boundary

- for historic reasons the same code block is used two times with a
  slightly different way of transforming apr_time_t to int
  (once division by APR_USEC_PER_SEC, once call to apr_time_sec()),
  so let's unify it.

- finally move the block into a function, because it gets used already
  two times.

PR: 44004
Submitted by: Rainer Jung <rainer.jung kippdata.de>
Reviewed by: rpluem

Revision 599393 - (view) (annotate) - [select for diffs]
Modified Thu Nov 29 11:50:11 2007 UTC (23 months, 4 weeks ago) by niq
File length: 13009 byte(s)
Diff to previous 599385 (colored)

Since we don't support chained filters, and can't expect to while the
filter_init problem remains, we should make it clear to users at startup time.

Revision 599385 - (view) (annotate) - [select for diffs]
Modified Thu Nov 29 11:18:40 2007 UTC (23 months, 4 weeks ago) by jorton
File length: 12993 byte(s)
Diff to previous 598299 (colored)

mod_ssl: Add support for OCSP validation of client certificates:

* modules/ssl/ssl_engine_config.c (modssl_ctx_init,
  modssl_ctx_cfg_merge): Initialize and merge OCSP config options.
  (ssl_cmd_SSLOCSPOverrideResponder, ssl_cmd_SSLOCSPDefaultResponder,
  ssl_cmd_SSLOCSPEnable): Add functions.

* modules/ssl/mod_ssl.c (ssl_config_cmds): Add config options.

* modules/ssl/ssl_private.h: Add prototypes, config options to
  modssl_ctx_t.

* modules/ssl/ssl_util_ocsp.c: New file, utility interface for
  dispatching OCSP requests.

* modules/ssl/ssl_engine_ocsp.c: New file, interface for performing
  OCSP validation.

* modules/ssl/ssl_engine_kernel.c (ssl_callback_SSLVerify): Perform
  OCSP validation if configured, and the cert is so-far verified to be
  trusted.  Fail if OCSP validation is configured an the optional-no-ca 
  check tripped.

* modules/ssl/config.m4: Check for OCSP support, build new files.

* modules/ssl/mod_ssl.dsp: Build new files.

* modules/ssl/ssl_toolkit_compat.h: Include headers for OCSP
  interfaces.

PR: 41123
Submitted by: Marc Stern <marc.stern approach.be>, Joe Orton
Reviewed by: Steve Henson <steve openssl.org>

Revision 598299 - (view) (annotate) - [select for diffs]
Modified Mon Nov 26 14:56:12 2007 UTC (2 years ago) by niq
File length: 12857 byte(s)
Diff to previous 598274 (colored)

mod_filter: don't segfault on (unsupported) chained FilterProviders.
PR 43956

Revision 596796 - (view) (annotate) - [select for diffs]
Modified Tue Nov 20 19:38:13 2007 UTC (2 years ago) by trawick
File length: 12925 byte(s)
Diff to previous 596713 (colored)

Allow local timestamps to be used when rotating based on file size.

IOW, accept and respect either -l or UTC offset when rotating
based on file size.

Revision 596698 - (view) (annotate) - [select for diffs]
Modified Tue Nov 20 14:46:52 2007 UTC (2 years ago) by trawick
File length: 13435 byte(s)
Diff to previous 596448 (colored)

improve command-line parsing

example invocations now flagged as invalid:
  specifying UTC offset with size-based rotation
  specifying -l with size-based rotation
  specifying both -l and UTC offset

range checking of integer parameters not attempted; basic data type issues may need
to be addressed first such as the use of unsigned int for max file size

Revision 596448 - (view) (annotate) - [select for diffs]
Modified Mon Nov 19 21:08:19 2007 UTC (2 years ago) by rpluem
File length: 13336 byte(s)
Diff to previous 595676 (colored)

* Convert request time to seconds before before storing it in unique_id_rec
  struct.

PR: 37064
Submitted by: Kobayashi <kobayashi firstserver.co.jp>
Reviewed by: rpluem

Revision 595672 - (view) (annotate) - [select for diffs]
Modified Fri Nov 16 14:20:03 2007 UTC (2 years ago) by niq
File length: 13383 byte(s)
Diff to previous 595666 (colored)

Deal with unrecognised Transfer-Encoding headers.
PR#43882 (Björn Höhrmann)

Revision 594839 - (view) (annotate) - [select for diffs]
Modified Wed Nov 14 11:53:30 2007 UTC (2 years ago) by trawick
File length: 13664 byte(s)
Diff to previous 594425 (colored)

core: Avoid some unexpected connection closes by telling the client
that the connection is not persistent if the MPM process handling
the request is already exiting when the response header is built.

Revision 594425 - (view) (annotate) - [select for diffs]
Modified Tue Nov 13 04:20:50 2007 UTC (2 years ago) by pquerna
File length: 13427 byte(s)
Diff to previous 593816 (colored)

Add mod_serf, a reverse proxy module, which uses serf[1] as its http client library.

To enable, pass something like this to configure:
   --enable-serf --with-serf=/usr/local/serf/0.1.2
To try it out, put something like this in your httpd.conf:
<Location />
    SerfPass http://httpd.apache.org/
</Location>

LocationMatch and all related directives can also be used, magical eh?

[1] - http://code.google.com/p/serf/

Revision 593816 - (view) (annotate) - [select for diffs]
Modified Sat Nov 10 22:15:34 2007 UTC (2 years ago) by rpluem
File length: 13364 byte(s)
Diff to previous 593177 (colored)

* Generate valid XHTML output by adding the xhtml namespace.

PR: 43649
Submitted by: Jose Kahan <jose w3.org>
Reviewed by: rpluem

Revision 593177 - (view) (annotate) - [select for diffs]
Modified Thu Nov 8 14:55:14 2007 UTC (2 years ago) by trawick
File length: 13243 byte(s)
Diff to previous 592951 (colored)

remove trunk CHANGES entry for item backported to 2.2.x

     mod_charset_lite: Don't crash when the request has no associated
     filename.

Revision 592951 - (view) (annotate) - [select for diffs]
Modified Wed Nov 7 23:31:03 2007 UTC (2 years ago) by minfrin
File length: 13345 byte(s)
Diff to previous 592694 (colored)

core: Add the option to keep aside a request body up to a certain
size that would otherwise be discarded, to be consumed by filters
such as mod_include. When enabled for a directory, POST requests
to shtml files can be passed through to embedded scripts as POST
requests, rather being downgraded to GET requests.

Revision 592694 - (view) (annotate) - [select for diffs]
Modified Wed Nov 7 10:53:18 2007 UTC (2 years ago) by trawick
File length: 12989 byte(s)
Diff to previous 592446 (colored)

mod_charset_lite: Don't crash when the request has no associated
filename.

(r->filename unset)

Revision 592446 - (view) (annotate) - [select for diffs]
Modified Tue Nov 6 15:02:32 2007 UTC (2 years ago) by jorton
File length: 12887 byte(s)
Diff to previous 591760 (colored)

mod_ssl: Fix forever-broken TLS upgrade support; perform the upgrade
in the post_read_request hook rather than in a filter, and fix the
filter insertion issue:

* modules/ssl/ssl_engine_kernel.c (upgrade_connection): New function,
mostly moved from ssl_io_filter_Upgrade.
(ssl_hook_ReadReq): Call upgrade_connection to upgrade to TLS if
required.

* modules/ssl/ssl_engine_io.c (ssl_io_filter_Upgrade): Remove
function.
(ssl_io_input_add_filter, ssl_io_filter_init): Take a request_rec
pointer and pass to ap_add_*_filter to ensure the filter chain
is modified correctly; remove it from the filter afterwards.
(ssl_io_filter_register): Drop UPGRADE_FILTER registration.

* modules/ssl/mod_ssl.c (ssl_init_ssl_connection): Take a request_rec
pointer, pass to ssl_io_filter_init.
(ssl_hook_pre_connection): Pass NULL request_rec pointer to above.
(ssl_hook_Insert_Filter): Remove function.
(ssl_register_hooks): Drop insert_filter hook.

* modules/ssl/ssl_private.h: Update prototypes.

PR: 41231

Revision 591760 - (view) (annotate) - [select for diffs]
Modified Sun Nov 4 11:20:11 2007 UTC (2 years ago) by rpluem
File length: 12812 byte(s)
Diff to previous 591499 (colored)

* Use the same declaration for ap_time_process_request as in the header file.

PR: 43789
Submitted by: Tom Donovan <Tom.Donovan acm.org>
Reviewed by: rpluem

Revision 591499 - (view) (annotate) - [select for diffs]
Modified Fri Nov 2 22:33:36 2007 UTC (2 years ago) by covener
File length: 12705 byte(s)
Diff to previous 591488 (colored)

spurious 401s with message "DN has not been defined" when cache expiration happens in another thread

PR 43786

Revision 591488 - (view) (annotate) - [select for diffs]
Modified Fri Nov 2 21:58:57 2007 UTC (2 years ago) by covener
File length: 12543 byte(s)
Diff to previous 590641 (colored)

fix pool misuse around mod_ldap's connection cache, previously pconf 
could be used during request processing

(the apr_ldap_foo only need a pool for temporary data anyway)

Revision 590641 - (view) (annotate) - [select for diffs]
Modified Wed Oct 31 12:19:54 2007 UTC (2 years ago) by jim
File length: 12365 byte(s)
Diff to previous 589619 (colored)

Add in SeeRequestTail directive, to handle the shortcoming
of only storing 63 bytes of the request, when the requests
are longer than that and only vary towards the end; eg:

   GET /disk1/storage/apache/htdocs/images/image-store1/food/fruits/seeded/apples.jpg
   GET /disk1/storage/apache/htdocs/images/image-store1/food/fruits/seeded/pears.jpg
   GET /disk1/storage/apache/htdocs/images/image-store1/food/fruits/seeded/plums.jpg

Revision 589619 - (view) (annotate) - [select for diffs]
Modified Mon Oct 29 13:14:51 2007 UTC (2 years ago) by jim
File length: 12078 byte(s)
Diff to previous 589177 (colored)

As of r589618, these have been backported

Revision 589177 - (view) (annotate) - [select for diffs]
Modified Sat Oct 27 18:51:23 2007 UTC (2 years, 1 month ago) by niq
File length: 12427 byte(s)
Diff to previous 588791 (colored)

Fix possible crash at startup in case of nonexistent DocumentRoot.
PR#39722

Revision 588791 - (view) (annotate) - [select for diffs]
Modified Fri Oct 26 23:07:22 2007 UTC (2 years, 1 month ago) by niq
File length: 12287 byte(s)
Diff to previous 587771 (colored)

mod_proxy: add "nocanon" keyword to ProxyPass, to suppress
URI-canonicalisation in a reverse proxy.
PR 41798

Revision 587771 - (view) (annotate) - [select for diffs]
Modified Wed Oct 24 03:56:50 2007 UTC (2 years, 1 month ago) by wrowe
File length: 12343 byte(s)
Diff to previous 587770 (colored)

Actually re-fix Christian's recommendation, someone previously caught this.

Revision 587770 - (view) (annotate) - [select for diffs]
Modified Wed Oct 24 03:50:24 2007 UTC (2 years, 1 month ago) by wrowe
File length: 12424 byte(s)
Diff to previous 583947 (colored)

MMN major bump required; this API is altogether inconsistent, transparent
types should be opaque, opaque types should be transparent.

Solve one aspect, follow the _by_indexes() example for ap_get_scoreboard_worker
family of functions, and the primary one will now accept the abstracted conn_rec
value of sbh to find that connections slot.

Revision 583947 - (view) (annotate) - [select for diffs]
Modified Thu Oct 11 20:52:07 2007 UTC (2 years, 1 month ago) by covener
File length: 12130 byte(s)
Diff to previous 583156 (colored)

revert r581660 , fixed instead in APR trunk/r583421 1.2.x/r583860

Revision 583002 - (view) (annotate) - [select for diffs]
Modified Mon Oct 8 23:47:35 2007 UTC (2 years, 1 month ago) by niq
File length: 12496 byte(s)
Diff to previous 582953 (colored)

mod_proxy_http: Don't unescape/escape forward proxied URLs.  Just check them.
PR 42592

also add fix to PR42572 to CHANGES (from r563487/r563489)

Revision 582953 - (view) (annotate) - [select for diffs]
Modified Mon Oct 8 20:27:15 2007 UTC (2 years, 1 month ago) by rpluem
File length: 12322 byte(s)
Diff to previous 582808 (colored)

* This one was already backported

Revision 582802 - (view) (annotate) - [select for diffs]
Modified Mon Oct 8 12:40:04 2007 UTC (2 years, 1 month ago) by jim
File length: 12482 byte(s)
Diff to previous 582795 (colored)

Remove backported changed which have been
forgotten to be removed...

Revision 582631 - (view) (annotate) - [select for diffs]
Modified Sun Oct 7 13:43:26 2007 UTC (2 years, 1 month ago) by niq
File length: 12888 byte(s)
Diff to previous 581660 (colored)

mod_proxy_http: Correctly forward unexpected interim (HTTP 1xx) responses.
PR 16518

Revision 581660 - (view) (annotate) - [select for diffs]
Modified Wed Oct 3 17:17:24 2007 UTC (2 years, 1 month ago) by covener
File length: 12676 byte(s)
Diff to previous 581198 (colored)

mod_ext_filter: Prevent a  hang on Windows when the filter
input data is pipelined 
PR 29901

Revision 581198 - (view) (annotate) - [select for diffs]
Modified Tue Oct 2 11:48:03 2007 UTC (2 years, 1 month ago) by niq
File length: 12552 byte(s)
Diff to previous 581117 (colored)

mod_deflate: Don't leave a strong ETag in place while transforming the entity.
PR 39727

Comment: Another user just subscribed to this bug.
We need a fix more than we need an inconclusive discussion!

Revision 581117 - (view) (annotate) - [select for diffs]
Modified Tue Oct 2 00:39:43 2007 UTC (2 years, 1 month ago) by niq
File length: 12437 byte(s)
Diff to previous 580782 (colored)

Default to NOT setting Max-Forwards in violation of RFC2616
Leave old behaviour as a configuration option (ProxyMaxForwards)
PR 16137

Revision 580782 - (view) (annotate) - [select for diffs]
Modified Sun Sep 30 20:44:06 2007 UTC (2 years, 1 month ago) by niq
File length: 12252 byte(s)
Diff to previous 580598 (colored)

Proxy: remove Warning headers with wrong date
PR 16138

Revision 580598 - (view) (annotate) - [select for diffs]
Modified Sat Sep 29 15:43:08 2007 UTC (2 years, 1 month ago) by niq
File length: 12166 byte(s)
Diff to previous 580466 (colored)

mod_deflate: initialise inflate-out filter correctly when the
first brigade contains no data buckets.
PR 43512

Revision 580466 - (view) (annotate) - [select for diffs]
Modified Fri Sep 28 19:30:37 2007 UTC (2 years, 1 month ago) by niq
File length: 12028 byte(s)
Diff to previous 580457 (colored)

Fix keepalive to proxy backend
PR 43472

Links to HEAD:	(view) (annotate)
Sticky Revision: