Skip to content
  1. Jan 16, 2019
  2. Jan 15, 2019
  3. Dec 18, 2018
  4. Dec 15, 2018
  5. Dec 11, 2018
  6. Nov 23, 2018
  7. Nov 09, 2018
  8. Nov 07, 2018
  9. Oct 18, 2018
  10. Oct 17, 2018
  11. Oct 10, 2018
  12. Oct 09, 2018
  13. Sep 25, 2018
  14. Sep 21, 2018
  15. Sep 19, 2018
    • Jim Jagielski's avatar
      Merge r1749402, r1656549, r1840776, r1800126, r1817131, r1834226 from trunk: · 8a4e7e56
      Jim Jagielski authored
      Style only
      
      Be more consistent:
         - add space between (if|while) and \(
         - place of 'break ' statement
      
      Fix cut and paste typo in error message + remove empty lines to be consistent
      
      follow-up to r1656549.
      
      Instead of logging a password (which is not a good practice), clarify the associated message
      
      * Silence compiler warning
      
      Be less tolerant when parsing the credencial for Basic authorization. Only spaces  should be accepted after the authorization scheme. \t are also tolerated.
      
      The current code accepts \v and \f as well.
      
      The same behavior is already used in 'ap_get_basic_auth_pw()' which is mostly the same function as 'get_basic_auth()'.
      
      Function used as 'apr_reslist_destructor' when calling 'apr_reslist_create()' should have the following prototype:
      
      apr_status_t (*apr_reslist_destructor)(void *resource, void *params, apr_pool_t *pool);
      Submitted by: jailletc36, rpluem, jailletc36, jailletc36
      Reviewed by: jailletc36, minfrin, jim
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1841329 13f79535-47bb-0310-9956-ffa450edef68
      8a4e7e56
  16. Sep 18, 2018
  17. Sep 11, 2018
  18. Sep 05, 2018
    • Stefan Eissing's avatar
      On the tlsv1.3-for-2.4.x branch: · d5943f3e
      Stefan Eissing authored
      Merged 1827912,1827924,1827992,1828222,1828720,1828723,1833588,1833589,1839920,1839946 from trunk
      
        *) mod_ssl: add experimental support for TLSv1.3 (tested with OpenSSL v1.1.1-pre9. 
           SSL(Proxy)CipherSuite now has an optional first parameter for the protocol the ciphers are for.
           Directive "SSLVerifyClient" now triggers certificate retrieval from the client.
           Verifying the client fails exactly the same for HTTP/2 connections for all SSL protocols,
           as this would need to trigger the master connection thread - which we do not support
           right now.
           Renegotiation of ciphers is intentionally ignored for TLSv1.3 connections. "SSLCipherSuite"
           does not allow to specify TLSv1.3 ciphers in a directory context (because it cannot work) and
           TLSv1.2 or lower ciphers are not relevant for 1.3, as cipher suites are completely separate.
           Sites which make use of such TLSv1.2 feature need to evaluate carefully if or how they 
           can match their needs onto the TLSv1.3 protocol.
           [Yann Ylavic, Stefan Eissing]
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/tlsv1.3-for-2.4.x@1840120 13f79535-47bb-0310-9956-ffa450edef68
      d5943f3e