SHA256
1
0
forked from pool/apache2

492 Commits

Author SHA256 Message Date
a31944641b Accepting request 741012 from openSUSE:Factory
revert

OBS-URL: https://build.opensuse.org/request/show/741012
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=589
2019-10-18 09:16:02 +00:00
9e5b948b68 Accepting request 739554 from home:RBrownSUSE:branches:Apache
Remove obsolete Groups tag (fate#326485)

OBS-URL: https://build.opensuse.org/request/show/739554
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=588
2019-10-17 13:29:20 +00:00
Dominique Leuenberger
1a75625901 Accepting request 735601 from Apache
- Add custom log files to logrotate according to apache2-vhost.template

In apache2-vhost.template, we recommend users to create custom logs like `/var/log/apache2/dummy-host.example.com-access_log`. But these files are not processed by logrotate and will grow fast. So I add these files to logrotate configuration. (forwarded request 735419 from guoyunhe)

OBS-URL: https://build.opensuse.org/request/show/735601
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=160
2019-10-14 10:31:01 +00:00
c5130548b5 Accepting request 735419 from home:guoyunhe:branches:Apache
- Add custom log files to logrotate according to apache2-vhost.template

In apache2-vhost.template, we recommend users to create custom logs like `/var/log/apache2/dummy-host.example.com-access_log`. But these files are not processed by logrotate and will grow fast. So I add these files to logrotate configuration.

OBS-URL: https://build.opensuse.org/request/show/735419
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=587
2019-10-07 07:27:44 +00:00
Dominique Leuenberger
3e69637ec9 Accepting request 726493 from Apache
OBS-URL: https://build.opensuse.org/request/show/726493
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=159
2019-09-07 09:25:11 +00:00
Cristian Rodríguez
237cf5d44b Accepting request 725661 from home:jengelh:branches:Apache
- Remove redundant metadata from summary.
Version is already in the Version field.

OBS-URL: https://build.opensuse.org/request/show/725661
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=586
2019-08-27 13:12:45 +00:00
Dominique Leuenberger
c11a1b0a1b Accepting request 724999 from Apache
update to 2.4.41 (forwarded request 723497 from stroeder)

OBS-URL: https://build.opensuse.org/request/show/724999
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=158
2019-08-24 16:43:03 +00:00
ab8ba3f534 Accepting request 723497 from home:stroeder:branches:Apache
update to 2.4.41

OBS-URL: https://build.opensuse.org/request/show/723497
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=585
2019-08-21 10:24:31 +00:00
Dominique Leuenberger
c709f3c2a5 Accepting request 713174 from Apache
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/713174
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=157
2019-07-08 13:01:45 +00:00
5bf56b4f63 - fix typo
- modified sources
  % apache2-README-instances.txt

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=584
2019-06-26 07:34:37 +00:00
Dominique Leuenberger
851f1336ce Accepting request 702763 from Apache
- revive apache-22-24-upgrade [bsc#1134294] (internal)
- added sources
  + apache-22-24-upgrade

OBS-URL: https://build.opensuse.org/request/show/702763
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=156
2019-05-17 21:36:22 +00:00
8a6fb40f40 - revive apache-22-24-upgrade [bsc#1134294] (internal)
- added sources
  + apache-22-24-upgrade

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=583
2019-05-13 14:51:46 +00:00
Dominique Leuenberger
c9dd8cd1f7 Accepting request 690621 from Apache
- version update to 2.4.39
  * mod_proxy/ssl: Cleanup per-request SSL configuration anytime a
    backend connection is recycled/reused to avoid a possible crash
    with some SSLProxy configurations in <Location> or <Proxy>
    context. PR 63256. [Yann Ylavic]
  * mod_ssl: Correctly restore SSL verify state after TLSv1.3 PHA
    failure. [Michael Kaufmann <mail michael-kaufmann.ch>]
  * mod_log_config: Support %{c}h for conn-hostname, %h for
    useragent_host PR 55348
  * mod_socache_redis: Support for Redis as socache storage
    provider.
  * core: new configuration option 'MergeSlashes on|off' that
    controls handling of multiple, consecutive slash ('/')
    characters in the path component of the request URL. [Eric
    Covener]
  * mod_http2: when SSL renegotiation is inhibited and a 403
    ErrorDocument is in play, the proper HTTP/2 stream reset did
    not trigger with H2_ERR_HTTP_1_1_REQUIRED. Fixed. [Michael
    Kaufmann]
  * mod_http2: new configuration directive: `H2Padding numbits` to
    control padding of HTTP/2 payload frames. 'numbits' is a number
    from 0-8, controlling the range of padding bytes added to a
    frame. The actual number added is chosen randomly per frame.
    This applies to HEADERS, DATA and PUSH_PROMISE frames equally.
    The default continues to be 0, e.g. no padding. [Stefan
    Eissing]
  * mod_http2: ripping out all the h2_req_engine internal features
    now that mod_proxy_http2 has no more need for it. Optional
    functions are still declared but no longer implemented. While
    previous mod_proxy_http2 will work with this, it is

OBS-URL: https://build.opensuse.org/request/show/690621
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=155
2019-04-04 12:12:08 +00:00
a1754b3358 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=582 2019-04-02 10:30:56 +00:00
0659e97753 - version update to 2.4.39
* mod_proxy/ssl: Cleanup per-request SSL configuration anytime a
    backend connection is recycled/reused to avoid a possible crash
    with some SSLProxy configurations in <Location> or <Proxy>
    context. PR 63256. [Yann Ylavic]
  * mod_ssl: Correctly restore SSL verify state after TLSv1.3 PHA
    failure. [Michael Kaufmann <mail michael-kaufmann.ch>]
  * mod_log_config: Support %{c}h for conn-hostname, %h for
    useragent_host PR 55348
  * mod_socache_redis: Support for Redis as socache storage
    provider.
  * core: new configuration option 'MergeSlashes on|off' that
    controls handling of multiple, consecutive slash ('/')
    characters in the path component of the request URL. [Eric
    Covener]
  * mod_http2: when SSL renegotiation is inhibited and a 403
    ErrorDocument is in play, the proper HTTP/2 stream reset did
    not trigger with H2_ERR_HTTP_1_1_REQUIRED. Fixed. [Michael
    Kaufmann]
  * mod_http2: new configuration directive: `H2Padding numbits` to
    control padding of HTTP/2 payload frames. 'numbits' is a number
    from 0-8, controlling the range of padding bytes added to a
    frame. The actual number added is chosen randomly per frame.
    This applies to HEADERS, DATA and PUSH_PROMISE frames equally.
    The default continues to be 0, e.g. no padding. [Stefan
    Eissing]
  * mod_http2: ripping out all the h2_req_engine internal features
    now that mod_proxy_http2 has no more need for it. Optional
    functions are still declared but no longer implemented. While
    previous mod_proxy_http2 will work with this, it is

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=581
2019-04-02 10:28:06 +00:00
26de03bda2 Accepting request 687044 from home:jengelh:sct
- Reduce scriptlets' hard dependency on systemd.

OBS-URL: https://build.opensuse.org/request/show/687044
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=580
2019-03-21 08:14:15 +00:00
Stephan Kulow
530adda4d1 Accepting request 679836 from Apache
- added patches
  fix https://github.com/icing/mod_h2/issues/167 [bsc#1125965]
  + apache2-mod_http2-issue-167.patch

- Replace old $RPM_* shell vars. Avoid old tar syntax.
- Tag scriptlets as explicitly requiring bash.

OBS-URL: https://build.opensuse.org/request/show/679836
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=154
2019-03-01 19:26:23 +00:00
5c322b357c OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=579 2019-02-27 14:16:50 +00:00
976a1cebc7 Wed 27 Feb 2019 01:59:17 PM UTC - pgajdos@suse.com
- added patches
  fix https://github.com/icing/mod_h2/issues/167 [bsc#1125965]
  + apache2-mod_http2-issue-167.patch

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=578
2019-02-27 14:00:04 +00:00
322ba0ecba Accepting request 678009 from home:jengelh:branches:Apache
- Replace old $RPM_* shell vars. Avoid old tar syntax.
- Tag scriptlets as explicitly requiring bash.

OBS-URL: https://build.opensuse.org/request/show/678009
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=577
2019-02-21 14:56:10 +00:00
Stephan Kulow
50f31ce00c Accepting request 667841 from Apache
- updated to 2.4.38
  * mod_ssl: Clear retry flag before aborting client-initiated renegotiation.
    PR 63052 [Joe Orton]
  * mod_negotiation: Treat LanguagePriority as case-insensitive to match
    AddLanguage behavior and HTTP specification. PR 39730 [Christophe Jaillet]
  * mod_md: incorrect behaviour when synchronizing ongoing ACME challenges
    have been fixed. [Michael Kaufmann, Stefan Eissing]
  * mod_setenvif: We can have expressions that become true if a regex pattern
    in the expression does NOT match. In this case val is NULL
    and we should just set the value for the environment variable 
    like in the pattern case. [Ruediger Pluem]
  * mod_session: Always decode session attributes early. [Hank Ibell]
  * core: Incorrect values for environment variables are substituted when
    multiple environment variables are specified in a directive. [Hank Ibell]
  * mod_rewrite: Only create the global mutex used by "RewriteMap prg:" when
    this type of map is present in the configuration.  PR62311.  
    [Hank Ibell &lt;hwibell gmail.com&gt;]
  * mod_dav: Fix invalid Location header when a resource is created by
    passing an absolute URI on the request line [Jim Jagielski]
  * mod_session_cookie: avoid duplicate Set-Cookie header in the response.
    [Emmanuel Dreyfus &lt;manu@netbsd.org&gt;, Luca Toscano]
  * mod_ssl: clear *SSL errors before loading certificates and checking
    afterwards. Otherwise errors are reported when other SSL using modules
    are in play. Fixes PR 62880. [Michael Kaufmann]
  * mod_ssl: Fix the error code returned in an error path of
    'ssl_io_filter_handshake()'. This messes-up error handling performed
    in 'ssl_io_filter_error()' [Yann Ylavic]
  * mod_ssl: Fix $HTTPS definition for "SSLEngine optional" case, and fix
    authz provider so "Require ssl" works correctly in HTTP/2.
    PR 61519, 62654.  [Joe Orton, Stefan Eissing]
  * mod_proxy: If ProxyPassReverse is used for reverse mapping of relative
    redirects, subsequent ProxyPassReverse statements, whether they are
    relative or absolute, may fail.  PR 60408.  [Peter Haworth &lt;pmh1wheel gmail.com&gt;]
  * mod_lua: Now marked as a stable module [https://s.apache.org/Xnh1] (forwarded request 667015 from mmanu84)

OBS-URL: https://build.opensuse.org/request/show/667841
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=153
2019-02-04 20:23:25 +00:00
25ee9e91e1 Accepting request 667015 from home:mmanu84:branches:Apache
- updated to 2.4.38
  * mod_ssl: Clear retry flag before aborting client-initiated renegotiation.
    PR 63052 [Joe Orton]
  * mod_negotiation: Treat LanguagePriority as case-insensitive to match
    AddLanguage behavior and HTTP specification. PR 39730 [Christophe Jaillet]
  * mod_md: incorrect behaviour when synchronizing ongoing ACME challenges
    have been fixed. [Michael Kaufmann, Stefan Eissing]
  * mod_setenvif: We can have expressions that become true if a regex pattern
    in the expression does NOT match. In this case val is NULL
    and we should just set the value for the environment variable 
    like in the pattern case. [Ruediger Pluem]
  * mod_session: Always decode session attributes early. [Hank Ibell]
  * core: Incorrect values for environment variables are substituted when
    multiple environment variables are specified in a directive. [Hank Ibell]
  * mod_rewrite: Only create the global mutex used by "RewriteMap prg:" when
    this type of map is present in the configuration.  PR62311.  
    [Hank Ibell <hwibell gmail.com>]
  * mod_dav: Fix invalid Location header when a resource is created by
    passing an absolute URI on the request line [Jim Jagielski]
  * mod_session_cookie: avoid duplicate Set-Cookie header in the response.
    [Emmanuel Dreyfus <manu@netbsd.org>, Luca Toscano]
  * mod_ssl: clear *SSL errors before loading certificates and checking
    afterwards. Otherwise errors are reported when other SSL using modules
    are in play. Fixes PR 62880. [Michael Kaufmann]
  * mod_ssl: Fix the error code returned in an error path of
    'ssl_io_filter_handshake()'. This messes-up error handling performed
    in 'ssl_io_filter_error()' [Yann Ylavic]
  * mod_ssl: Fix $HTTPS definition for "SSLEngine optional" case, and fix
    authz provider so "Require ssl" works correctly in HTTP/2.
    PR 61519, 62654.  [Joe Orton, Stefan Eissing]
  * mod_proxy: If ProxyPassReverse is used for reverse mapping of relative
    redirects, subsequent ProxyPassReverse statements, whether they are
    relative or absolute, may fail.  PR 60408.  [Peter Haworth <pmh1wheel gmail.com>]
  * mod_lua: Now marked as a stable module [https://s.apache.org/Xnh1]

OBS-URL: https://build.opensuse.org/request/show/667015
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=576
2019-01-22 17:35:29 +00:00
66fc0a512c Accepting request 666416 from home:adkorte:branches:openSUSE:Factory
- SSLProtocol use TLSv1.2 or higher

OBS-URL: https://build.opensuse.org/request/show/666416
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=575
2019-01-16 10:16:44 +00:00
Dominique Leuenberger
f33036140e Accepting request 664057 from Apache
- do not create sysconfig.d when already exists [bsc#1121086]

- use secure http sites by default in configs
- Switch to DEFAULT_SUSE Cipher suite

READ https://httpd.apache.org/docs/2.4/upgrading.html
  at https://httpd.apache.org/docs/2.4/new_features_2_4.html

OBS-URL: https://build.opensuse.org/request/show/664057
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=152
2019-01-15 12:16:19 +00:00
eae869bc96 - do not create sysconfig.d when already exists [bsc#1121086]
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=574
2019-01-09 10:32:36 +00:00
bf4d7cec8d Accepting request 663183 from home:dirkmueller:branches:Apache
- use secure http sites by default in configs
- Switch to DEFAULT_SUSE Cipher suite

READ https://httpd.apache.org/docs/2.4/upgrading.html
  at https://httpd.apache.org/docs/2.4/new_features_2_4.html

OBS-URL: https://build.opensuse.org/request/show/663183
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=573
2019-01-07 08:22:38 +00:00
Dominique Leuenberger
131180aa99 Accepting request 645904 from Apache
- the "event" MPM is fully supported since 2.4
- configure an OCSP stapling cache by default (still requires enabling
  SSLUseStapling in vhost) (forwarded request 644712 from adkorte)

OBS-URL: https://build.opensuse.org/request/show/645904
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=151
2018-11-06 14:34:28 +00:00
e86bea8079 Accepting request 644712 from home:adkorte:branches:Apache
- the "event" MPM is fully supported since 2.4
- configure an OCSP stapling cache by default (still requires enabling
  SSLUseStapling in vhost)

OBS-URL: https://build.opensuse.org/request/show/644712
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=572
2018-11-01 14:07:47 +00:00
Dominique Leuenberger
af126e9d8a Accepting request 643962 from Apache
OBS-URL: https://build.opensuse.org/request/show/643962
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=150
2018-10-29 13:14:39 +00:00
Cristian Rodríguez
cb4ffad5b8 Accepting request 643030 from home:mmanu84:branches:Apache
- updated to 2.4.37
  * mod_ssl: Fix HTTP/2 failures when using OpenSSL 1.1.1. [Rainer Jung]
  * mod_ssl: Fix crash during SSL renegotiation with OptRenegotiate set,
    when client certificates are available from the original handshake
    but were originally not verified and should get verified now.
    This is a regression in 2.4.36 (unreleased). [Ruediger Pluem]
  * mod_ssl: Correctly merge configurations that have client certificates set
    by SSLProxyMachineCertificate{File|Path}. [Ruediger Pluem]
- updated to 2.4.36
  * mod_brotli, mod_deflate: Restore the separate handling of 304 Not Modified
    responses. Regression introduced in 2.4.35.
  * mod_proxy_scgi, mod_proxy_uwsgi: improve error handling when sending the
    body of the response. [Jim Jagielski]
  * mod_http2: adding defensive code for stream EOS handling, in case the request handler
    missed to signal it the normal way (eos buckets). Addresses github issues 
    https://github.com/icing/mod_h2/issues/164, https://github.com/icing/mod_h2/issues/167
    and https://github.com/icing/mod_h2/issues/170. [Stefan Eissing] 
  * ab: Add client certificate support. [Graham Leggett]
  * ab: Disable printing temp key for OpenSSL before
    version 1.0.2. SSL_get_server_tmp_key is not available
    there. [Rainer Jung]
  * mod_ssl: Fix a regression that the configuration settings for verify mode
    and verify depth were taken from the frontend connection in case of
    connections by the proxy to the backend. PR 62769. [Ruediger Pluem]
  * MPMs: Initialize all runtime/asynchronous objects on a dedicated pool and
    before signals handling to avoid lifetime issues on restart or shutdown.
    PR 62658. [Yann Ylavic]
  * mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3.  TLSv1.3 has
    behavioural changes compared to v1.2 and earlier; client and
    configuration changes should be expected.  SSLCipherSuite is
    enhanced for TLSv1.3 ciphers, but applies at vhost level only.
    [Stefan Eissing, Yann Ylavic, Ruediger Pluem, Joe Orton]
  * mod_auth_basic: Be less tolerant when parsing the credencial. Only spaces
    should be accepted after the authorization scheme. \t are also tolerated.
    [Christophe Jaillet]
  * mod_proxy_hcheck: Fix issues with interval determination. PR 62318
    [Jim Jagielski]
  * mod_proxy_hcheck: Fix issues with TCP health checks. PR 61499
    [Dominik Stillhard <dominik.stillhard united-security-providers.ch>]
  * mod_proxy_hcheck: take balancer's SSLProxy* directives into account.
    [Jim Jagielski]
  * mod_status, mod_echo: Fix the display of client addresses.
    They were truncated to 31 characters which is not enough for IPv6 addresses.
    This is done by deprecating the use of the 'client' field and using
    the new 'client64' field in worker_score.
    PR 54848 [Bernhard Schmidt <berni birkenwald de>, Jim Jagielski]

OBS-URL: https://build.opensuse.org/request/show/643030
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=571
2018-10-23 13:02:15 +00:00
Dominique Leuenberger
dc95517e3e Accepting request 639405 from Apache
- consider also patterns in APACHE_CONF_INCLUDE_DIRS as documentation
  says (patch Juergen Gleiss)

- relink /usr/sbin/httpd after apache2-MPM uninstall [bsc#1107930c#1]
- simplify find_mpm function from script-helpers
- /usr/sbin/httpd is now created depending on preference hardcoded
  in find_mpm (script-helpers), not depending on alphabetical
  order of MPMs
- simplify spec file a bit

OBS-URL: https://build.opensuse.org/request/show/639405
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=149
2018-10-04 17:00:13 +00:00
d012117221 - allow PS decoder for build [bsc#1109976]
- build with -j1, otherwise build fails

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=570
2018-10-01 14:00:18 +00:00
Dominique Leuenberger
c27e5f5eac Accepting request 637684 from Apache
updated to 2.4.35, successfully tested on Tumbleweed x86_64 (forwarded request 637678 from stroeder)

OBS-URL: https://build.opensuse.org/request/show/637684
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=148
2018-10-01 07:06:57 +00:00
7b598b41aa - relink /usr/sbin/httpd after apache2-MPM uninstall [bsc#1107930c#1]
- simplify find_mpm function from script-helpers
- /usr/sbin/httpd is now created depending on preference hardcoded
  in find_mpm (script-helpers), not depending on alphabetical
  order of MPMs
- simplify spec file a bit

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=569
2018-09-27 11:14:35 +00:00
48a4ad5223 Accepting request 637678 from home:stroeder:branches:Apache
updated to 2.4.35, successfully tested on Tumbleweed x86_64

OBS-URL: https://build.opensuse.org/request/show/637678
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=568
2018-09-24 13:54:25 +00:00
Dominique Leuenberger
47d916c3f8 Accepting request 626658 from Apache
- updated to 2.4.34:
  *) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
     document translations. [CodeingBoy, popcorner]
  *) event: avoid possible race conditions with modules on the child pool.
     [Stefan Fritsch]
  *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
     ProxyPassReverseCookiePath directive could fail to update correctly
     'domain=' or 'path=' in the 'Set-Cookie' header.  PR 61560.
     [Christophe Jaillet]
  *) mod_ratelimit: fix behavior when proxing content. PR 62362.
     [Luca Toscano, Yann Ylavic]
  *) core: Re-allow '_' (underscore) in hostnames.
     [Eric Covener]
  *) mod_authz_core: If several parameters are used in a AuthzProviderAlias
     directive, if these parameters are not enclosed in quotation mark, only
     the first one is handled. The other ones are silently ignored.
     Add a message to warn about such a spurious configuration.
     PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
  *) mod_md: improvements and bugfixes
     - MDNotifyCmd now takes additional parameter that are passed on to the called command.
     - ACME challenges have better checks for interference with other modules
     - ACME challenges are only handled for domains managed by the module, allowing
       other ACME clients to operate for other domains in the server.
     - better libressl integration
  *) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
     PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
  *) logging: Some early logging-related startup messages could be lost
     when using syslog for the global ErrorLog. [Eric Covener]
  *) mod_cache: Handle case of an invalid Expires header value RFC compliant
     like the case of an Expires time in the past: allow to overwrite the

OBS-URL: https://build.opensuse.org/request/show/626658
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=147
2018-08-03 10:29:41 +00:00
d9e923093a OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=567 2018-07-31 08:04:14 +00:00
Dominique Leuenberger
ed03c20e83 Revert to 2.4.33 - boo#1102698
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=146
2018-07-26 07:49:39 +00:00
Dominique Leuenberger
87780bfac4 Accepting request 623132 from Apache
- updated to 2.4.34:
  *) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
     document translations. [CodeingBoy, popcorner]
  *) event: avoid possible race conditions with modules on the child pool.
     [Stefan Fritsch]
  *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
     ProxyPassReverseCookiePath directive could fail to update correctly
     'domain=' or 'path=' in the 'Set-Cookie' header.  PR 61560.
     [Christophe Jaillet]
  *) mod_ratelimit: fix behavior when proxing content. PR 62362.
     [Luca Toscano, Yann Ylavic]
  *) core: Re-allow '_' (underscore) in hostnames.
     [Eric Covener]
  *) mod_authz_core: If several parameters are used in a AuthzProviderAlias
     directive, if these parameters are not enclosed in quotation mark, only
     the first one is handled. The other ones are silently ignored.
     Add a message to warn about such a spurious configuration.
     PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
  *) mod_md: improvements and bugfixes
     - MDNotifyCmd now takes additional parameter that are passed on to the called command.
     - ACME challenges have better checks for interference with other modules
     - ACME challenges are only handled for domains managed by the module, allowing
       other ACME clients to operate for other domains in the server.
     - better libressl integration
  *) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
     PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
  *) logging: Some early logging-related startup messages could be lost
     when using syslog for the global ErrorLog. [Eric Covener]
  *) mod_cache: Handle case of an invalid Expires header value RFC compliant
     like the case of an Expires time in the past: allow to overwrite the

OBS-URL: https://build.opensuse.org/request/show/623132
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=145
2018-07-25 14:03:51 +00:00
3c89d098ac * %install: parallel install is broken
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=564
2018-07-16 13:15:03 +00:00
cb7119cf39 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=563 2018-07-16 12:42:01 +00:00
d15e98e21b - updated to 2.4.34:
*) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
     document translations. [CodeingBoy, popcorner]
  *) event: avoid possible race conditions with modules on the child pool.
     [Stefan Fritsch]
  *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
     ProxyPassReverseCookiePath directive could fail to update correctly
     'domain=' or 'path=' in the 'Set-Cookie' header.  PR 61560.
     [Christophe Jaillet]
  *) mod_ratelimit: fix behavior when proxing content. PR 62362.
     [Luca Toscano, Yann Ylavic]
  *) core: Re-allow '_' (underscore) in hostnames.
     [Eric Covener]
  *) mod_authz_core: If several parameters are used in a AuthzProviderAlias
     directive, if these parameters are not enclosed in quotation mark, only
     the first one is handled. The other ones are silently ignored.
     Add a message to warn about such a spurious configuration.
     PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
  *) mod_md: improvements and bugfixes
     - MDNotifyCmd now takes additional parameter that are passed on to the called command.
     - ACME challenges have better checks for interference with other modules
     - ACME challenges are only handled for domains managed by the module, allowing
       other ACME clients to operate for other domains in the server.
     - better libressl integration
  *) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
     PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
  *) logging: Some early logging-related startup messages could be lost
     when using syslog for the global ErrorLog. [Eric Covener]
  *) mod_cache: Handle case of an invalid Expires header value RFC compliant
     like the case of an Expires time in the past: allow to overwrite the

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=562
2018-07-16 12:08:37 +00:00
Dominique Leuenberger
0a1a022abf Accepting request 591693 from Apache
- Updated description for SSLProtocol option. [bsc#1086854]
- Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854] (forwarded request 591690 from k_mikhail)

OBS-URL: https://build.opensuse.org/request/show/591693
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=144
2018-04-23 13:24:35 +00:00
ce2b1ccf73 Accepting request 591690 from home:k_mikhail:branches:Apache
- Updated description for SSLProtocol option. [bsc#1086854]
- Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854]

OBS-URL: https://build.opensuse.org/request/show/591690
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=560
2018-03-27 15:27:01 +00:00
515530ab20 - SSLProtocol TLSv1.2 [bsc#1086854]
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=559
2018-03-26 14:17:25 +00:00
cb1b8e6df9 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=558 2018-03-26 11:27:50 +00:00
1b23d3f7a6 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=557 2018-03-26 10:50:50 +00:00
Dominique Leuenberger
83f5ae99b5 Accepting request 588443 from Apache
- Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]

OBS-URL: https://build.opensuse.org/request/show/588443
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache2?expand=0&rev=143
2018-03-26 09:52:11 +00:00
eb58d7e03f - updated to 2.4.33:
*) core: Fix request timeout logging and possible crash for error_log hooks.
     [Yann Ylavic]
  *) mod_slomem_shm: Fix failure to create balancers's slotmems in Windows MPM,
     where children processes need to attach them instead since they are owned
     by the parent process already.  [Yann Ylavic]
  *) ab: try all destination socket addresses returned by
     apr_sockaddr_info_get instead of failing on first one when not available.
     Needed for instance if localhost resolves to both ::1 and 127.0.0.1
     e.g. if both are in /etc/hosts.  [Jan Kaluza]
  *) ab: Use only one connection to determine working destination socket
     address.  [Jan Kaluza]
  *) ab: LibreSSL doesn't have or require Windows applink.c.  [Gregg L. Smith]
  *) htpasswd/htdigest: Disable support for bcrypt on EBCDIC platforms.
     apr-util's bcrypt implementation doesn't tolerate EBCDIC.  [Eric Covener]
  *) htpasswd/htdbm: report the right limit when get_password() overflows.
     [Yann Ylavic]
  *) htpasswd: Don't fail in -v mode if password file is unwritable.
     PR 61631.  [Joe Orton]
  *) htpasswd: don't point to (unused) stack memory on output
     to make static analysers happy.  PR 60634.
     [Yann Ylavic, reported by shqking and Zhenwei Zou]
  *) mod_access_compat: Fail if a comment is found in an Allow or Deny
     directive.  [Jan Kaluza]
  *) mod_authz_host: Ignore comments after "Require host", logging a
     warning, or logging an error if the line is otherwise empty.
     [Jan Kaluza, Joe Orton]
  *) rotatelogs: Fix expansion of %Z in localtime (-l) mode, and fix
     Y2K38 bug.  [Joe Orton]
  *) mod_ssl: Support SSL DN raw variable extraction without conversion

OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=555
2018-03-19 09:22:56 +00:00
cb29f1dbd9 - Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]
OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=554
2018-03-19 07:55:45 +00:00