Skip to content
  1. May 07, 2014
  2. Apr 20, 2014
  3. Apr 18, 2014
    • Jim Jagielski's avatar
      Merge r1588427 from trunk: · 2b189730
      Jim Jagielski authored
      Also clear the error queue before calling SSL_CTX_use_certificate[_chain]_file
      (workaround for OpenSSL versions before 0.9.8h, see
      https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=1513).
      
      PR 56410.
      
      Submitted by: kbrand
      Reviewed/backported by: jim
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1588496 13f79535-47bb-0310-9956-ffa450edef68
      2b189730
    • Jim Jagielski's avatar
      Merge r1587036, r1587040, r1587053, r1587654 from trunk: · fa6d270c
      Jim Jagielski authored
        *) mod_proxy_wstunnel: Don't pool backend websockets connections,
           because we need to handshake every time. PR 55890.
           [Eric Covener]
      
      
      
      actually remove mod_reqtimeout, since the util_filter functions involved
      only manipulate c->input_filters no matter what we pass. We need to make
      copies of c->input_filters after, not before, it skips over reqtimeout.
      
      Note: reqtimeout doesn't really interfere today with normal operation,
      but this is misleading/confusing when dealing with other
      wstunnel issues.
      
      
      
      cleanup wstunnel error handling
      
      Submitted By: covener, ylavic, Edward Lu
      Commited By: covener
      
      
      
      followup to r1587036.
      
      if backend->close is set too early, proxy_util.c will close it right 
      away and then blow away the field.
      
      Submitted by: covener
      Reviewed/backported by: jim
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1588495 13f79535-47bb-0310-9956-ffa450edef68
      fa6d270c
    • Kaspar Brand's avatar
      Merge r1585090 from trunk: · 33843d58
      Kaspar Brand authored
      Bring SNI behavior into better conformance with RFC 6066:
      
      - no longer send a warning-level unrecognized_name(112) alert
        when no matching vhost is found (PR 56241)
      
      - at startup, only issue warnings about IP/port conflicts and name-based
        SSL vhosts when running with an OpenSSL without TLS extension support
        (almost 5 years after SNI was added to 2.2.x, the
        "[...] only work for clients with TLS server name indication support"
        warning feels obsolete)
      
      Proposed by: kbrand
      Reviewed by: jorton, ylavic
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1588424 13f79535-47bb-0310-9956-ffa450edef68
      33843d58
  4. Apr 17, 2014
  5. Apr 16, 2014
    • Jeff Trawick's avatar
      Merged... · 24e8776d
      Jeff Trawick authored
      Merged /httpd/httpd/trunk:r1515403,1515411,1515420,1517175,1521909,1526647,1541181,1578762,1585054,1585072,1588054
      
      mod_authnz_fcgi: New module to enable FastCGI authorizer
      applications to authenticate and/or authorize clients.
      
      Submitted by: trawick, jailletc36, gsmith
      Approved by: trawick, jim, gsmith
      
      (Thanks gsmith for the Windows build bits!)
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1588064 13f79535-47bb-0310-9956-ffa450edef68
      24e8776d
  6. Apr 15, 2014
  7. Apr 03, 2014
  8. Mar 31, 2014
  9. Mar 29, 2014
  10. Mar 27, 2014
  11. Mar 18, 2014
  12. Mar 13, 2014
  13. Mar 11, 2014
  14. Mar 10, 2014