summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* docs: rebuild of documentationStefan Eissing2021-12-1045-2715/+3762
| | | | | | | [skip ci] git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895756 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_tls: adding module documentation to our manuals.Stefan Eissing2021-12-101-0/+629
| | | | | | | [skip ci] git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895755 13f79535-47bb-0310-9956-ffa450edef68
* * When reaching server limits, such as MaxRequestsPerChild, the HTTP/2 ↵Stefan Eissing2021-12-094-3/+34
| | | | | | | | | | | | | | | | | connection send a GOAWAY frame much too early on new connections, leading to invalid protocol state and a client failing the request. See PR65731 at <https://bz.apache.org/bugzilla/show_bug.cgi?id=65731>. The module now initializes the HTTP/2 protocol correctly and allows the client to submit one request before the shutdown via a GOAWAY frame is being announced. No changes-entries, since this fix is proposed for backport on the 1.15.x module codebase in 2.4.x in a separate PR. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895724 13f79535-47bb-0310-9956-ffa450edef68
* * Correctly sent a 100 Continue status code when sending an interimRuediger Pluem2021-12-092-0/+6
| | | | | | | | | | response as result of an Expect: 100-Continue in the request and not the current status code of the request. PR: 65725 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895719 13f79535-47bb-0310-9956-ffa450edef68
* * Whitespace fixesRuediger Pluem2021-12-091-35/+35
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895718 13f79535-47bb-0310-9956-ffa450edef68
* * Do not change the status code after we already sent it to the client.Ruediger Pluem2021-12-092-5/+0
| | | | | | | | | Changing the status code after we sent it to the client causes a status code being logged that is different from the one sent to the client which can be confusing. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895715 13f79535-47bb-0310-9956-ffa450edef68
* As in r1877467 for mod_ssl, for OpenSSL 1.1.1+ require that OpenSSL isJoe Orton2021-12-071-0/+15
| | | | | | | | | | | configured with a suitable entropy source and don't try to seed it from getpid etc. * support/ab.c (main): Check RAND_status(). (ssl_rand_seed, ssl_rand_choosenum): Drop for OpenSSL 1.1.1+. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895659 13f79535-47bb-0310-9956-ffa450edef68
* mpm_event: Follow up to r1895553.Yann Ylavic2021-12-061-4/+10
| | | | | | | | | We can still kill processes above MaxSpareThreads at every maintenance cycle unless there is not enough headromm in the scoreboard for a graceful restart. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895630 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_http2: fixed a bug in v2.0.0 that could lead to an infiniteStefan Eissing2021-12-0615-112/+160
| | | | | | | | | | loop when clients close connections prematurely. Enhanced the scoreboard status updates on h2 connections for mod_status. 'server-status' now gives a better idea what the connection is working on. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895614 13f79535-47bb-0310-9956-ffa450edef68
* fr doc rebuild.Lucien Gentis2021-12-042-4/+13
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895577 13f79535-47bb-0310-9956-ffa450edef68
* fr doc XML file update.Lucien Gentis2021-12-041-4/+16
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895576 13f79535-47bb-0310-9956-ffa450edef68
* Revert r1895551: seems to break python tests..Yann Ylavic2021-12-031-1/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895562 13f79535-47bb-0310-9956-ffa450edef68
* * support/ab.c (main): Check apr_getopt() returned APR_EOF, fixing clangJoe Orton2021-12-031-2/+2
| | | | | | | | | warning: support/ab.c:2343:13: warning[deadcode.DeadStores]: Although the value stored to 'status' is used in the enclosing expression, the value is never actually read from 'status' git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895559 13f79535-47bb-0310-9956-ffa450edef68
* Sync CHANGES entries. [skip ci].Yann Ylavic2021-12-0315-87/+99
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895558 13f79535-47bb-0310-9956-ffa450edef68
* mpm_event: Follow up to r1894285: new MaxSpareThreads heuristics.Yann Ylavic2021-12-031-21/+15
| | | | | | | | | | | | When at MaxSpareThreads, instead of deferring the stop if we are close to active/server limit let's wait for the pending exits to complete. This way we always and accurately account for slow-to-exit processes to avoid filling up the scoreboard, whether at the limits or not. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895553 13f79535-47bb-0310-9956-ffa450edef68
* * modules/filters/mod_deflate.c (deflate_in_filter): Handle FLUSH inJoe Orton2021-12-031-29/+31
| | | | | | | | | | | the input brigade even if done inflating (ctx->done is true), but don't try to flush the inflate stream in that case. (Caught by Coverity) Github: closes #280 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895552 13f79535-47bb-0310-9956-ffa450edef68
* mpm_event: Close the listeners first for ungraceful stop too.Yann Ylavic2021-12-031-0/+1
| | | | | | | | Just like for graceful stop. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895551 13f79535-47bb-0310-9956-ffa450edef68
* mpm_event: Retain active_daemons instead of resetting it on restart.Yann Ylavic2021-12-031-14/+13
| | | | | | | | | | | | | | Since active_daemons is tracked by perform_idle_server_maintenance() and decremented when a child gets quiescing or exits, clearing it on restart is actually an off by -total_daemons (of the old gen) after the first calls to perform_idle_server_maintenance(). Let perform_idle_server_maintenance() be the only one to update active_daemons by putting it in the retained struct to keep track accross restarts. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895550 13f79535-47bb-0310-9956-ffa450edef68
* * mod_tls: remove modules.mk, should not be under version controlStefan Eissing2021-12-011-7/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895472 13f79535-47bb-0310-9956-ffa450edef68
* * test: removing the loadtest.py from test/modules/tls that requires ↵Stefan Eissing2021-12-011-882/+0
| | | | | | additional python packages. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895467 13f79535-47bb-0310-9956-ffa450edef68
* * travis: installing librustls in $PREFIX and usingStefan Eissing2021-12-011-2/+2
| | | | | | | | it from there. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895456 13f79535-47bb-0310-9956-ffa450edef68
* * test suite: add an image to test mod_tls on travisStefan Eissing2021-12-012-0/+57
| | | | | | | | | Let's see what the hamsters think of the setup I use on a local docker focal. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895451 13f79535-47bb-0310-9956-ffa450edef68
* * test: check the h2load version for test suite making useStefan Eissing2021-11-302-1/+20
| | | | | | | | of its --connect-to feature (available since 1.41.0). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895434 13f79535-47bb-0310-9956-ffa450edef68
* * test suite: adding modules/tls, the test suite for theStefan Eissing2021-11-3030-0/+2661
| | | | | | | | | new mod_tls module to be run via pytest. Integration into travis TBD. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895433 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_tls: added mod_tls from abetterinternet, donatedStefan Eissing2021-11-3025-0/+7231
| | | | | | | | | | | | | | by ISRG/Prossimo <https://github.com/abetterinternet/mod_tls>. - adds font-/backend TLS (v1.2/v1.3) via the Rust rustls crate and its rustls-ffi C binding <https://github.com/rustls/rustls-ffi>. - documentation at <https://github.com/abetterinternet/mod_tls> (adding to Apache's manual TBD) - build support for Apache httpd configure on *nix platforms, rustls is linked statically into mod_tls. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895432 13f79535-47bb-0310-9956-ffa450edef68
* allicating numbers for mod_tls. [skip ci]Stefan Eissing2021-11-301-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895431 13f79535-47bb-0310-9956-ffa450edef68
* * test: allow more flexibility in the ssl modules usedStefan Eissing2021-11-309-30/+67
| | | | | | | | | for a vhost. Adjust http2 and md test cases for working with modules other than mod_ssl. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895429 13f79535-47bb-0310-9956-ffa450edef68
* * mod_md: install the early config hook with _FIRST, so thatStefan Eissing2021-11-301-1/+1
| | | | | | | | they run before any ssl modules runs get_certificates hooks. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895428 13f79535-47bb-0310-9956-ffa450edef68
* * mod_http2: handle gracefully when SSL_PROTOCOL variable is not available.Stefan Eissing2021-11-301-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895427 13f79535-47bb-0310-9956-ffa450edef68
* * mod_http2: the new pollset implementation is disabled whenStefan Eissing2021-11-262-1/+5
| | | | | | | | compiling with an APR version less than 1.6. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895349 13f79535-47bb-0310-9956-ffa450edef68
* Revert spurious commit r1895340.Yann Ylavic2021-11-256-78/+25
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895341 13f79535-47bb-0310-9956-ffa450edef68
* Trigger ci.Yann Ylavic2021-11-256-25/+78
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895340 13f79535-47bb-0310-9956-ffa450edef68
* mod_http2: fix logic for non-proxy Server and Date response headers.Yann Ylavic2021-11-251-5/+5
| | | | | | | | | | | | First error was in r1890564 where the test for !PROXYREQ_NONE was replaced by PROXYREQ_RESPONSE (which is never the case besides the fake proxy origin request) so a mod_h2 PR tried to fix that but the logic is now incorrect. Let's finally use the same logic as ap_basic_http_header(). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895336 13f79535-47bb-0310-9956-ffa450edef68
* mod_proxy: SetEnv proxy-nohalfclose to disable half-close tunneling. PR 65662.Yann Ylavic2021-11-243-3/+20
| | | | | | | | | Some connect/wstunnel protocols might want half-close forwarding while some might not, let's provide an r->subprocess_env opt-out. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895304 13f79535-47bb-0310-9956-ffa450edef68
* * mod_md: resurrection of r1893969 after accidental overwrite in r1894610Stefan Eissing2021-11-242-7/+12
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895287 13f79535-47bb-0310-9956-ffa450edef68
* * test: updating modules/md eab test for file featureStefan Eissing2021-11-241-0/+98
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895286 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_md: values for External Account Binding (EAB) canStefan Eissing2021-11-244-7/+63
| | | | | | | | | | now also be configured to be read from a separate JSON file. This allows to keep server configuration permissions world readable without exposing secrets. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895285 13f79535-47bb-0310-9956-ffa450edef68
* * HTTP2 test image: make sure all mpms are build, so we can test event and ↵Stefan Eissing2021-11-181-1/+1
| | | | | | worker git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895147 13f79535-47bb-0310-9956-ffa450edef68
* Sync r1895107 from libapreq.Yann Ylavic2021-11-171-13/+22
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895108 13f79535-47bb-0310-9956-ffa450edef68
* Sync r1895075 from libapreq.Yann Ylavic2021-11-161-4/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895076 13f79535-47bb-0310-9956-ffa450edef68
* Sync r1895054 from libapreq.Yann Ylavic2021-11-151-3/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895055 13f79535-47bb-0310-9956-ffa450edef68
* Sync r1895020 and r1895021 from libapreq.Yann Ylavic2021-11-142-2/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895023 13f79535-47bb-0310-9956-ffa450edef68
* apreq: Sync r1894983 from libapreq.Yann Ylavic2021-11-121-7/+14
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894986 13f79535-47bb-0310-9956-ffa450edef68
* apreq: Sync r1894982 from libapreq.Yann Ylavic2021-11-121-74/+131
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894985 13f79535-47bb-0310-9956-ffa450edef68
* apreq: Sync r1894977 from libapreq.Yann Ylavic2021-11-121-86/+73
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894978 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_http2: always return an EOS bucket for requestsStefan Eissing2021-11-111-4/+4
| | | | | | | | that have no body on c2 connection input filter. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894949 13f79535-47bb-0310-9956-ffa450edef68
* apreq: Sync r1894940 from libapreq.Yann Ylavic2021-11-111-29/+27
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894941 13f79535-47bb-0310-9956-ffa450edef68
* apreq: Sync latest changes from lib apreq.Yann Ylavic2021-11-112-62/+158
| | | | | | | r1867789, r1894935 and r1894937. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894939 13f79535-47bb-0310-9956-ffa450edef68
* * testsuite: possible now to issue client certificates and the chain file ↵Stefan Eissing2021-11-107-18/+99
| | | | | | | | | | | | for them * testsuite: handling of cert+key in same file improved * testsuite: using 'stop' configuration to terminate server in case test cases leave borked test configs lying around. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894919 13f79535-47bb-0310-9956-ffa450edef68
* * test HTTP/2: also run core tests and worker mpmStefan Eissing2021-11-083-3/+140
| | | | | | | | | * test/README.pytest on how to use pytest suite and add test cases. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1894835 13f79535-47bb-0310-9956-ffa450edef68
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-19 23:03:13 +0100