90508856d0
- Update to version 2.2.20, fix CVE-2011-3192 mod_deflate D.o.S. - Fix apache PR 45076 - Use SSL_MODE_RELEASE_BUFFERS to reduce mod_ssl memory usage - Add 2 patches from the "low hanging fruit" warnings in apache STATUS page. * mod_deflate: Stop compressing HEAD requests if there is not Content-Length header * mod_reqtimeout: Disable keep-alive after read timeout - Remove -fno-strict-aliasing from CFLAGS, no longer needed. - Allow KeepAliveTimeout to be expressed in miliseconds sometimes one second is too long, upstream r733557. - When linux changes to version 3.x configure tests are gonna break. remove version check, assuming kernel 2.2 or later. OBS-URL: https://build.opensuse.org/request/show/80399 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=334
14 lines
356 B
Diff
14 lines
356 B
Diff
--- modules/ssl/ssl_engine_init.c.orig
|
|
+++ modules/ssl/ssl_engine_init.c
|
|
@@ -482,7 +482,9 @@ static void ssl_init_ctx_protocol(server
|
|
}
|
|
|
|
mctx->ssl_ctx = ctx;
|
|
-
|
|
+#ifdef SSL_MODE_RELEASE_BUFFERS
|
|
+ SSL_CTX_set_mode(ctx, SSL_MODE_RELEASE_BUFFERS);
|
|
+#endif
|
|
SSL_CTX_set_options(ctx, SSL_OP_ALL);
|
|
|
|
if (!(protocol & SSL_PROTOCOL_SSLV2)) {
|