Commit Graph

107 Commits

Author SHA256 Message Date
Tomáš Chvátal
9c7ab77596 Accepting request 259117 from home:pgajdos:apache2
OBS-URL: https://build.opensuse.org/request/show/259117
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=415
2014-10-31 09:50:04 +00:00
Tomáš Chvátal
e906ab12cb Accepting request 258991 from home:pgajdos:apache2
OBS-URL: https://build.opensuse.org/request/show/258991
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=414
2014-10-30 14:33:56 +00:00
89a0424a96 Accepting request 256892 from home:pgajdos
- drop (turned off) itk mpm spec file code as mpm-itk is now 
  provided as a separate module, not via patch 
  (see http://mpm-itk.sesse.net/ and [bnc#851229])

OBS-URL: https://build.opensuse.org/request/show/256892
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=413
2014-10-16 13:07:28 +00:00
5700ed3d4b Accepting request 255745 from home:pgajdos
- enable mod_imagemap [bnc#866366]

OBS-URL: https://build.opensuse.org/request/show/255745
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=412
2014-10-13 16:20:07 +00:00
9c9e69c324 Accepting request 253625 from home:pgajdos
- 700 permissions for /usr/sbin/apache2-systemd-ask-pass and
  /usr/sbin/start_apache2 [bnc#851627]

OBS-URL: https://build.opensuse.org/request/show/253625
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=409
2014-10-06 12:08:39 +00:00
94c97faa9a - allow only TCP ports in Yast2 firewall files
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=408
2014-09-29 08:30:32 +00:00
4b31aea044 Accepting request 252506 from home:pgajdos
- more 2.2 -> 2.4 [bnc#862058]

OBS-URL: https://build.opensuse.org/request/show/252506
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=406
2014-09-26 15:16:44 +00:00
Cristian Rodríguez
b0906927d0 Accepting request 241778 from home:elvigia:branches:Apache
- Update package Summary and Description. 
- version 2.4.10
* SECURITY: CVE-2014-0117 (cve.mitre.org)
* SECURITY: CVE-2014-3523 (cve.mitre.org)
* SECURITY: CVE-2014-0226 (cve.mitre.org)
* SECURITY: CVE-2014-0118 (cve.mitre.org)
* SECURITY: CVE-2014-0231 (cve.mitre.org)
* Multiple bugfixes to mod_ssl, mod_cache, mod_deflate, mod_lua
* mod_proxy_fcgi supports unix sockets.

OBS-URL: https://build.opensuse.org/request/show/241778
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=404
2014-07-23 20:22:18 +00:00
Cristian Rodríguez
19a944dee7 Accepting request 227796 from home:elvigia:branches:Apache
- version 2.4.9 
* SECURITY: CVE-2014-0098
* SECURITY: CVE-2013-6438
* multiple bugfixes and improvements to mod_ssl, mod_lua,
  mod_session and core, see CHANGES for details.

OBS-URL: https://build.opensuse.org/request/show/227796
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=402
2014-03-27 16:21:35 +00:00
Cristian Rodríguez
74d7ddb780 Accepting request 208347 from home:elvigia:branches:Apache
- update to apache 2.4.7, important changes:
* This release requires both apr and apr-util 1.5.x series
  and therefore will no longer build in older released products
* mod_ssl: Improve handling of ephemeral DH and ECDH keys
 (obsoletes httpd-mod_ssl_ephemeralkeyhandling.patch)
*  event MPM: Fix possible crashes
*  mod_deflate: Improve error detection
* core: Add open_htaccess hook  in conjunction with dirwalk_stat.
* mod_rewrite: Make rewrite websocket-aware to allow proxying.
* mod_ssl: drop support for export-grade ciphers with ephemeral RSA
  keys, and unconditionally disable aNULL, eNULL and EXP ciphers
 (not overridable via SSLCipherSuite)
* see CHANGES for more details

OBS-URL: https://build.opensuse.org/request/show/208347
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=399
2013-11-25 22:26:02 +00:00
Cristian Rodríguez
8ac24cac75 Accepting request 207095 from home:elvigia:branches:Apache
- httpd-mod_ssl_ephemeralkeyhandling.patch obsoletes
 mod_ssl-2.4.x-ekh.diff this new patch is the final
  form of the rework, merged for 2.4.7.

OBS-URL: https://build.opensuse.org/request/show/207095
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=398
2013-11-16 01:22:18 +00:00
Cristian Rodríguez
4c27b7a385 Accepting request 204767 from home:elvigia:branches:Apache
- reenable mod_ssl-2.4.x-ekh.diff

OBS-URL: https://build.opensuse.org/request/show/204767
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=396
2013-10-25 00:06:51 +00:00
Cristian Rodríguez
028198afb4 Accepting request 204342 from home:elvigia:branches:Apache
- Correct build in old distros. 

- disable (revert) mod_ssl changes in the previous
  commit so it does not end in factory or 13.1 yet.

- make mod_systemd static so scenarios described in 
  [bnc#846897] do not happen again.

OBS-URL: https://build.opensuse.org/request/show/204342
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=395
2013-10-22 15:46:52 +00:00
Cristian Rodríguez
4380c6bdd7 Accepting request 204244 from home:elvigia:branches:Apache
- mod_ssl: improve ephemeral key handling in particular, support DH params
  with more than 1024 bits, and allow custom configuration.
  This patch adjust DH parameters according to the relevant RFC 
  recommendations and permanently disables the usage of "export"
  and "NULL" ciphers no matter what the user configuration is
  (mod_ssl-2.4.x-ekh.diff, to be in 2.4.7)

OBS-URL: https://build.opensuse.org/request/show/204244
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=394
2013-10-21 23:51:12 +00:00
Cristian Rodríguez
888fcaf9d4 Accepting request 197199 from home:elvigia:branches:Apache
- Ensure we only use /run and not /var/run

OBS-URL: https://build.opensuse.org/request/show/197199
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=390
2013-09-03 04:07:30 +00:00
Cristian Rodríguez
4281e40e7d Accepting request 196847 from home:elvigia:branches:Apache
- Really use %requires_ge for libapr1 and libapr-util1 
  mentioned but not implemented in the previous commit.

OBS-URL: https://build.opensuse.org/request/show/196847
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=389
2013-08-30 04:51:32 +00:00
Cristian Rodríguez
817593e1a4 Accepting request 196621 from home:elvigia:branches:Apache
OBS-URL: https://build.opensuse.org/request/show/196621
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=388
2013-08-28 08:08:21 +00:00
Cristian Rodríguez
5c9e18bb5e Accepting request 196614 from home:elvigia:branches:Apache
- Use %requires_ge for libapr1 and libapr-util1
- apache2-default-server.conf: Need to use IncludeOptional
- apache-20-22-upgrade: also load authz_core
- httpd-visibility.patch: Use compiler symbol visibility.

OBS-URL: https://build.opensuse.org/request/show/196614
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=387
2013-08-28 07:32:31 +00:00
Cristian Rodríguez
0652f52358 Accepting request 185347 from home:elvigia:branches:Apache
- Enable mod_proxy_html, mod_xml2enc and mod_lua (missed BuildRequires)

OBS-URL: https://build.opensuse.org/request/show/185347
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=385
2013-08-01 02:55:58 +00:00
Cristian Rodríguez
148df8527a Accepting request 184902 from home:elvigia:branches:Apache
- provide and obsolete mod_macro 
- upgrade: some people complain that log_config module 
 is not enabled by default sometimes, fix that.
- upgrade : "SSLMutex" no longer exists.
- Toogle EnableSendfile on because now apache defaults to off
  due to kernel bugs. that's a silly thing to do here 
  as kernel bugs have to be fixed at their source, not worked around
  in applications.

OBS-URL: https://build.opensuse.org/request/show/184902
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=384
2013-07-29 23:51:31 +00:00
Cristian Rodríguez
47f165c1bd Accepting request 184028 from home:elvigia:branches:Apache
- httpd-event-ssl.patch: from upstream 
  Lift the restriction that prevents mod_ssl taking
  full advantage of the event MPM.

OBS-URL: https://build.opensuse.org/request/show/184028
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=383
2013-07-22 22:00:14 +00:00
Cristian Rodríguez
647cfe7aba Accepting request 184014 from home:elvigia:branches:Apache
- Update to version 2.4.6
*  SECURITY: CVE-2013-1896 (cve.mitre.org)
*  SECURITY: CVE-2013-2249 (cve.mitre.org)
*  Major updates to mod_lua
*  Support for proxying websocket requests
*  Higher performant shm-based cache implementation
*  Addition of mod_macro for easier configuration management
*  As well as several exciting fixes, especially those related to RFC edge
 cases in mod_cache and mod_proxy.
- IMPORTANT : With the current packaging scheme, we can no longer
Include the ITK MPM, therefore it has been disabled. This is because
this MPM can now only be provided as a loadable module but we do
not currently build MPMs as shared modules but as independant
binaries and all helpers/startup scripts depend on that behaviour.
It will be fixed in the upcoming weeks/months.

OBS-URL: https://build.opensuse.org/request/show/184014
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=382
2013-07-22 17:04:27 +00:00
Cristian Rodríguez
6c94b60b21 Accepting request 179377 from home:elvigia:branches:Apache
- fix apache_mmn spec macro, otherwise all modules down 
  the chain will have broken dependencies

OBS-URL: https://build.opensuse.org/request/show/179377
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=380
2013-06-18 06:46:24 +00:00
Cristian Rodríguez
c386f992ca Accepting request 179374 from home:elvigia:branches:Apache
- remove After=mysql.service php-fpm.service postgresql.service 
  which were added in the previous change, those must be added
  as Before=apache2.service in the respective services.

- Include mod_systemd for more complete integration with 
  systemd, turn the service to Typé=notify as required
- Disable SSL NPN patch for now, it is required for mod_spdy
  but mod_spdy does not support apache 2.4

- apache 2.4.4 
* fix for CVE-2012-3499
* fix for the CRIME attack (disable ssl compression by default)
* many other bugfies
* build access_compat amd unixd as static modules and solve
 some other upgrade quirks (bnc#813705)

OBS-URL: https://build.opensuse.org/request/show/179374
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=379
2013-06-18 05:57:29 +00:00
Cristian Rodríguez
86ea9c10f2 Accepting request 156289 from home:mlin7442:branches:Apache
Install apache2.service accordingly (/usr/lib/systemd for 12.3 and up or /lib/systemd for older versions)

OBS-URL: https://build.opensuse.org/request/show/156289
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=378
2013-02-25 18:49:36 +00:00
Cristian Rodríguez
01f74d8ce8 Accepting request 149979 from home:elvigia:branches:Apache
-  Apache 2.4.3 
* SECURITY: CVE-2012-3502
* SECURITY: CVE-2012-2687
* mod_cache: Set content type in case we return stale content.
* lots of bugfixes see http://www.apache.org/dist/httpd/CHANGES_2.4.3

- Improve systemd unit file (tested for months)

OBS-URL: https://build.opensuse.org/request/show/149979
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=376
2013-01-28 03:33:43 +00:00
e22b74353a Accepting request 148936 from home:-miska-:branches:Apache
- - use %set_permissions instead %run_permissions (bnc#764097)

OBS-URL: https://build.opensuse.org/request/show/148936
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=375
2013-01-18 17:45:43 +00:00
Cristian Rodríguez
55a6bc22c8 Accepting request 129514 from home:elvigia:branches:Apache
- Fix factory-auto (aka r2dbag) complains about URL.
- Provide a symlink for apxs2 new location otherwise 
  all buggy spec files of external modules will break.

OBS-URL: https://build.opensuse.org/request/show/129514
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=372
2012-08-01 04:13:58 +00:00
Cristian Rodríguez
435dd9044b Accepting request 129511 from home:elvigia:branches:Apache
- BuildRequire xz explicitly, fix build in !Factory 
- Drop more old, unused patches

OBS-URL: https://build.opensuse.org/request/show/129511
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=371
2012-08-01 02:26:59 +00:00
Roman Drahtmueller
e249e1729b Accepting request 129508 from home:elvigia:branches:Apache
- Upgrade to apache 2.4.2
** ATTENTION, before installing this update YOU MUST
READ http://httpd.apache.org/docs/2.4/upgrading.html
CAREFULLY otherwise your server will most likely
fail to start due to backward incompatible changes.
* You can read the huge complete list of changes
  at http://httpd.apache.org/docs/2.4/new_features_2_4.html

OBS-URL: https://build.opensuse.org/request/show/129508
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=370
2012-08-01 01:54:19 +00:00
Factory Maintainer
a0c3c6411d Accepting request 114975 from home:dimstar
Add patch to enable npn for mod_spdy... specially advertise this capability...

OBS-URL: https://build.opensuse.org/request/show/114975
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=363
2012-05-29 09:03:52 +00:00
Roman Drahtmueller
c3a81454c7 Accepting request 110180 from home:adrianSuSE:branches:Apache
patch seems to be lost, we require it on our OBS installations

OBS-URL: https://build.opensuse.org/request/show/110180
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=361
2012-03-20 18:13:21 +00:00
Peter Poeml
8877af9243 - fix installation of (moved) man pages
- adjusted SSL template/default config for upstream changes, and added
  MaxRanges example to apache2-server-tuning.conf

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=359
2012-02-18 21:19:08 +00:00
Peter Poeml
61c26886ee update to 2.2.22
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=358
2012-02-18 16:52:29 +00:00
Factory Maintainer
120b388e44 Accepting request 103789 from home:coolo:branches:openSUSE:Factory
- compile with pcre 8.30 - patch taken from apache bugzilla

OBS-URL: https://build.opensuse.org/request/show/103789
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=356
2012-02-13 12:49:59 +00:00
Factory Maintainer
dc9fbb8810 Accepting request 102748 from home:computersalat:devel:apache
add default vhost configs

OBS-URL: https://build.opensuse.org/request/show/102748
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=355
2012-02-11 08:39:57 +00:00
Roman Drahtmueller
58cce20330 - enable mod_reqtimeout by default via APACHE_MODULES in
/etc/sysconfig/apache2, configuration 
  /etc/apache2/mod_reqtimeout.conf .
  Of course, the existing configuration remains unchanged.

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=354
2012-01-21 12:57:30 +00:00
Roman Drahtmueller
3fdc7560a6 Accepting request 96234 from home:msmeissn:branches:Apache
does not need openldap2 package, just openldap2-devel and libldap...

OBS-URL: https://build.opensuse.org/request/show/96234
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=352
2011-12-12 11:06:24 +00:00
Stephan Kulow
df135f4b2d Accepting request 94928 from home:coolo:removeautomake
add automake to buildrequires

OBS-URL: https://build.opensuse.org/request/show/94928
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=351
2011-12-02 16:41:12 +00:00
Roman Drahtmueller
8015fbf1a2 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=347 2011-10-25 11:52:32 +00:00
Roman Drahtmueller
7f6a31d85c OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=346 2011-10-25 11:49:34 +00:00
Roman Drahtmueller
2c5775e2e0 - httpd-2.2.x-CVE-2011-3368-server_protocl_c.diff fixes mod_proxy
reverse exposure via RewriteRule or ProxyPassMatch directives.
  This is CVE-2011-3368.

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=344
2011-10-07 15:12:49 +00:00
Roman Drahtmueller
1796587345 Accepting request 87076 from home:fcrozat:branches:Apache
- Ensure service_add_pre macro is correctly called for 
  openSUSE 12.1 or later.

OBS-URL: https://build.opensuse.org/request/show/87076
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=343
2011-10-07 15:06:00 +00:00
Stephan Kulow
7027e60c26 Accepting request 85398 from home:fcrozat:branches:Apache
- Fix systemd files packaging, %ghost is not a good idea.
- Use systemd rpm macros for openSUSE 12.1 and later.

OBS-URL: https://build.opensuse.org/request/show/85398
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=341
2011-09-29 09:39:43 +00:00
Roman Drahtmueller
1b392ac14c - don't create $RPM_BUILD_ROOT/etc/init.d twice in %install.
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=340
2011-09-15 11:34:45 +00:00
Roman Drahtmueller
afd986fb8f - Update to 2.2.21. News therein:
* re-worked CVE-2011-3192 (byterange_filter.c) with a regression
    fix. New config option: MaxRanges (PR 51748)
  * multi fixes in mod_filter, mod_proxy_ajp, mod_dav_fs,
    mod_alias, mod_rewrite. As always, see CHANGES file.
- added httpd-%{realver}.tar.bz2.asc to source, along with
  60C5442D.key which the tarball was signed with.

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=337
2011-09-13 23:17:22 +00:00
Roman Drahtmueller
c54ff27d1d - need to add %ghost /lib/systemd to satisfy distributions that
have no systemd yet.

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=336
2011-09-13 08:38:39 +00:00
Roman Drahtmueller
f247c8cfd7 Accepting request 81909 from home:fcrozat:systemd
- Add apache2-systemd-ask-pass / apache2.service / start_apache2
  and modify apache2-ssl-global.conf for systemd support
  (bnc#697137).

OBS-URL: https://build.opensuse.org/request/show/81909
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=335
2011-09-12 12:20:52 +00:00
Roman Drahtmueller
90508856d0 Accepting request 80399 from home:elvigia:branches:Apache
- Update to version 2.2.20, fix CVE-2011-3192 
  mod_deflate D.o.S.

-  Fix apache PR 45076 

- Use SSL_MODE_RELEASE_BUFFERS to reduce mod_ssl memory usage

- Add 2 patches from the "low hanging fruit" warnings in apache
  STATUS page.
 * mod_deflate: Stop compressing HEAD requests 
  if there is not Content-Length header 
 * mod_reqtimeout: Disable keep-alive after read timeout

- Remove -fno-strict-aliasing from CFLAGS, no longer needed.

- Allow KeepAliveTimeout to be expressed in miliseconds
  sometimes one second is too long, upstream r733557.

- When linux changes to version 3.x configure tests are gonna break.
  remove version check, assuming kernel 2.2 or later.

OBS-URL: https://build.opensuse.org/request/show/80399
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=334
2011-08-31 13:46:57 +00:00
Stephan Kulow
c1c1dc6994 merged
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=333
2011-05-30 13:40:12 +00:00