summaryrefslogtreecommitdiffstats
path: root/CHANGES (follow)
Commit message (Collapse)AuthorAgeFilesLines
* event: Avoid possible blocking in the listener thread when shutting downYann Ylavic2017-07-251-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | connections. PR 60956. start_lingering_close_nonblocking() now puts connections in defer_linger_chain which is emptied by any worker thread (all atomically) after its usual work, hence any possibly blocking flush and lingering close run outside the listener. The listener may create a dedicated worker if it fills defer_linger_chain or while it's not empty, calling push2worker with a NULL cs. The state machine in process_socket() is slighly modified to be able to enter with CONN_STATE_LINGER directly w/o clogging_input_filters to interfer. New abort_socket_nonblocking() allows to reset connections when nonblocking is required and we can't do much about the connection anymore, nor we want the system to linger on its own after close(). Many thanks to Stefan Priebe for his heavy testing on many event's changes! git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1802875 13f79535-47bb-0310-9956-ffa450edef68
* mod_proxy_fcgi: Add the support for mod_proxy'sLuca Toscano2017-07-161-0/+3
| | | | | | | | | | | | | | | | flushpackets and flushwait params This change was requested on the development mailing list in order to fill another gap between mod_fcgi and mod_proxy_fcgi, namely the -flush funtionality. The more evolved core trunk code would not need this feature becuse of the non-blocking writes, but it is be needed in 2.4.x. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1802040 13f79535-47bb-0310-9956-ffa450edef68
* Follow up to r1801994: CHANGES' PR reference.Yann Ylavic2017-07-151-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1801995 13f79535-47bb-0310-9956-ffa450edef68
* Follow up to r1754164: CHANGES entry.Yann Ylavic2017-07-151-0/+4
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1801994 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-07-061-2/+2
| | | | | | | | mod_http2: Simplify ready queue, less memory and better performance. Update mod_http2 version to 1.10.7. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800978 13f79535-47bb-0310-9956-ffa450edef68
* Backported.Rainer Jung2017-07-051-3/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800837 13f79535-47bb-0310-9956-ffa450edef68
* mod_lua: Improve compatibility with Lua 5.1, 5.2 and 5.3.Rainer Jung2017-07-041-0/+3
| | | | | | | | | PR58188, PR60831, PR61245. Still to solve: replace uses of luaL_register(). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800809 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-07-031-0/+3
| | | | | | | | | mod_http2: disable and give warning when mpm_prefork is encountered. The server will continue to work, but HTTP/2 will no longer be negotiated. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800689 13f79535-47bb-0310-9956-ffa450edef68
* backportedJim Jagielski2017-07-031-8/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800627 13f79535-47bb-0310-9956-ffa450edef68
* * Do not apply the strict permissions of the temporary file to a possiblyRuediger Pluem2017-07-031-0/+3
| | | | | | | | | | existing passwd file. This long standing bug was triggered by fixing a bug in APR in r1791029. PR: 61240 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800594 13f79535-47bb-0310-9956-ffa450edef68
* proxy_fcgi: remove FPM-specific logicJacob Champion2017-06-291-0/+4
| | | | | | | | | | Reverts r1780328, r1780329, and their associated followups, which incorrectly manipulated SCRIPT_NAME by default. All proxy_fcgi.t regression tests now pass. PR: 61202 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800306 13f79535-47bb-0310-9956-ffa450edef68
* Revert misguided commit r1799731.William A. Rowe Jr2017-06-261-4/+0
| | | | | | | | | | | | | | | | | | | | Discussion on-list, but any occurance of a platform-specific behavior in this code path will alter the behavior of the core code and introduce the very fingerprintable behavior this patch pretended to obscuficate. Returning 404 for /CON for example may lead to a module such as mod_speling revealing the existance of a real file named similar to /.conf, which makes this an unwise behavior. Further discussion of returning 404 for all CHR files encountered in the filepath (not URI path), which currently return 403 on all platforms, belongs on the dev list. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1799965 13f79535-47bb-0310-9956-ffa450edef68
* Add CHANGE entryChristophe Jaillet2017-06-251-0/+4
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1799786 13f79535-47bb-0310-9956-ffa450edef68
* Remove a backported entry.Christophe Jaillet2017-06-251-2/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1799785 13f79535-47bb-0310-9956-ffa450edef68
* Send a 404 response like other OSs do instead of 403 on Windows when Gregg Lewis Smith2017-06-241-0/+4
| | | | | | | | a path segment or file requested uses a reserved word so Windows cannot be fingerprinted. PR55887 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1799731 13f79535-47bb-0310-9956-ffa450edef68
* add RewriteOptions LongURLOptimizationEric Covener2017-06-161-0/+4
| | | | | | | | | | | | | | | Variable expansion in RewriteCond causes strings to be duplicated out of r->pool. If the variables are long and many conditions are evaluated, r->pool can get seriously bloated. Clear the memory used for variable expansion for each set of conditons once the set of conditions fails to match. edit: revised in 1799261 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1798938 13f79535-47bb-0310-9956-ffa450edef68
* allow quoted paths in <IfFile>Eric Covener2017-06-071-0/+4
| | | | | | | | | | | | | The boilerplate code for config sections conflicts with TAKE1 because of the trailing stuff to terminate the opening tag. Change from TAKE1 to RAW_ARGS and call ap_getword_conf() directly. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797844 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-06-061-4/+0
| | | | | | | | update after backport of mod_http2 fix. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797759 13f79535-47bb-0310-9956-ffa450edef68
* Update CHANGES after backportsLuca Toscano2017-06-061-6/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797747 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-06-061-0/+4
| | | | | | | | | mod_http2: Fix for possible CPU busy loop introduced in v1.10.3 where a stream may keep the session in continuous check for state changes that never happen. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797745 13f79535-47bb-0310-9956-ffa450edef68
* a few more backported fixesEric Covener2017-06-051-8/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797661 13f79535-47bb-0310-9956-ffa450edef68
* remove some backported itemsEric Covener2017-06-051-25/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797660 13f79535-47bb-0310-9956-ffa450edef68
* mod_mime: fix quoted pair scanningEric Covener2017-06-041-0/+2
| | | | | | | | Submitted By: ylavic CVEID: CVE-2017-7679 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1797550 13f79535-47bb-0310-9956-ffa450edef68
* these are backportedEric Covener2017-05-271-8/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1796451 13f79535-47bb-0310-9956-ffa450edef68
* ctr'ed in 1796447.Eric Covener2017-05-271-3/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1796448 13f79535-47bb-0310-9956-ffa450edef68
* PR61124: ap_parse_form_data() EBCDIC fixEric Covener2017-05-271-0/+3
| | | | | | | | | | | URL-decoding doesn't work on EBCDIC. Submitted By: Hank Ibell <hwibell gmail.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1796446 13f79535-47bb-0310-9956-ffa450edef68
* core: deprecate and replace ap_get_basic_auth_pwEric Covener2017-05-261-0/+4
| | | | | | | | | | | *) core: Deprecate ap_get_basic_auth_pw() and add ap_get_basic_auth_components(). Submitted By: Emmanuel Dreyfus <manu netbsd.org>, Jacob Champion, Eric Covener CVEID: CVE-2017-3167 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1796348 13f79535-47bb-0310-9956-ffa450edef68
* mod_ssl: fix ctx passed to ssl_io_filter_error()Eric Covener2017-05-261-0/+3
| | | | | | | | | | | Consistently pass the expected bio_filter_in_ctx_t to ssl_io_filter_error(). Submitted By: Yann Ylavic CVEID: CVE-2017-3169 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1796343 13f79535-47bb-0310-9956-ffa450edef68
* When processing a 'SetEnv' directive, warn if the environment variable name ↵Christophe Jaillet2017-05-191-0/+4
| | | | | | includes a '='. It is likely a configuration error. PR 60249 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1795635 13f79535-47bb-0310-9956-ffa450edef68
* backportedEric Covener2017-05-111-3/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1794857 13f79535-47bb-0310-9956-ffa450edef68
* remove recently backported itemsEric Covener2017-05-111-14/+0
| | | | | | | | (present in 2.4.x CHANGES) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1794853 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-05-051-4/+0
| | | | | | | | update after mod_http2 backport git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1794053 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-05-051-0/+4
| | | | | | | | | | mod_http2: fail requests without ERROR log in case we need to read interim responses and see only garbage. This can happen if proxied servers send data where none should be, e.g. a body for a HEAD request. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1794049 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-05-021-3/+0
| | | | | | | | mod_proxy_http2: update after backport git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1793533 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-05-021-0/+3
| | | | | | | | mod_proxy_http2: adding support for Reverse Proxy Request headers. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1793525 13f79535-47bb-0310-9956-ffa450edef68
* Evaluate nested If/ElseIf/Else config sectionsLuca Toscano2017-04-251-0/+3
| | | | | | | | | | | | | | | | | | | It has been reported multiple times that nested If/ElseIf/Else sections are not evaluated but silently ignored. This patch adds a simple recursion to the ap_if_walk logic in order to allow arbitrary nested configs. The overhead seems negligible compared to the actual version of the ap_if_walk, but more expert feedback is surely needed since this code gets called for every HTTP request. Tests are going to be added to t/apache/if_sections.t git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1792589 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-211-4/+0
| | | | | | | | mod_http2: update after backport git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1792212 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-211-0/+4
| | | | | | | | | | mod_http2: fixed possible deadlock that could occur when connections were terminated early with ongoing streams. Fixed possible hanger with timeout on race when connection considers itself idle. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1792195 13f79535-47bb-0310-9956-ffa450edef68
* Introduce request taint-checking concept.Nick Kew2017-04-211-0/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1792169 13f79535-47bb-0310-9956-ffa450edef68
* Add upgrade parameter to mod_proxy_wstunnel.Jean-Frederic Clere2017-04-201-0/+3
| | | | | | | | | | | | That allows to upgrade to jboss-remoting for example or to run an HTTP/1.1 backend that needs to upgrade to WebSocket. See also: https://issues.jboss.org/browse/JBCS-254 https://issues.jboss.org/browse/JBCS-291 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1792092 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-181-13/+0
| | | | | | | | update after mod_http2 backport. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1791790 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-171-0/+3
| | | | | | | | | mod_http2: MaxKeepAliveRequests now limits the number of times a slave connection gets reused. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1791669 13f79535-47bb-0310-9956-ffa450edef68
* mod_substitute: use local/native LF for splittingEric Covener2017-04-141-0/+3
| | | | | | | | | | | | | | | | | On platforms where the APR_ASCII_LF != '\n', like EBCDIC systems, strmatch or pcre patterns from the source or config will be in the native encoding, and this module will really only work on content in the native encoding. (mod_substitute runs before mod_charset_lite for a similar reason) I thought #if APR_CHARSET_EBCDIC or even #ifdef __MVS__ was overkill here. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1791400 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-141-0/+4
| | | | | | | | | mod_http2: client streams that lack the EOF flag get now forcefully closed with a RST_STREAM (NO_ERROR) when the request has been answered. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1791388 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-141-0/+6
| | | | | | | | | | | mod_http2: only when 'HttpProtocolOptions Unsafe' is configured, will control characters in response headers or trailers be forwarded to the client. Otherwise, in the default configuration, a request will eiher fail with status 500 or the stream will be reset by a RST_STREAM frame. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1791377 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-101-7/+0
| | | | | | | | update after mod_http2 backport git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1790850 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-101-1/+2
| | | | | | | | mod_proxy_http2: Reliability of reconnect handling improved. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1790826 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-051-2/+4
| | | | | | | | mod_http2: less and more granular mutex use for improved performance. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1790284 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-04-041-0/+4
| | | | | | | | | | mod_http2/mod_proxy_http2: less read attempts on bucket beams that already delivered EOS/headers. Fixed bug in re-attempting proxy request after connection error. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1790102 13f79535-47bb-0310-9956-ffa450edef68
* On the trunk:Stefan Eissing2017-03-311-19/+0
| | | | | | | | update after backport to 2.4.x git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1789740 13f79535-47bb-0310-9956-ffa450edef68