| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Reported by: lwhsu
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
PR: 253394
Reported by: many
Approved by: apache (with hat)
MFH: 2021Q1
Sponsored by: Netzkommune GmbH
Differential Revision: https://reviews.freebsd.org/D28932
Notes:
svn path=/head/; revision=568256
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Use the dists build/rules.mk method
* cleanup of left-over files from strip
PR: 252792
Submitted by: meta
Approved by: joneum (apache)
Differential Revision: https://reviews.freebsd.org/D28217
Notes:
svn path=/head/; revision=566051
|
|
|
|
|
|
|
|
|
| |
PR: 248052
Submitted by: Michael Osipov <michael osipov siemens com>
Approved by: apache (brnrd)
Notes:
svn path=/head/; revision=544279
|
|
|
|
| |
Notes:
svn path=/head/; revision=544237
|
|
|
|
|
|
|
|
|
| |
PR: 237726
Submitted by: Igor Galic <me@igalic.co>
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=542789
|
|
|
|
|
|
|
|
|
|
|
|
| |
This adds another knob to configure apache with syslog-enabled suexec
PR: 239264
Submitted by: Robert Schulze <rs@bytecamp.net>
Approved by: apache (with hat)
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=542072
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog: https://downloads.apache.org/httpd/CHANGES_2.4.43
MFH: 2020Q2
Security: b360b120-74b1-11ea-a84a-4c72b94353b5
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=530372
|
|
|
|
| |
Notes:
svn path=/head/; revision=514145
|
|
|
|
|
|
|
|
|
| |
Changelog: http://www.apache.org/dist/httpd/CHANGES_2.4.41
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=508964
|
|
|
|
| |
Notes:
svn path=/head/; revision=508913
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
as defined in Mk/bsd.default-versions.mk which has moved from GCC 8.3
to GCC 9.1 under most circumstances now after revision 507371.
This includes ports
- with USE_GCC=yes or USE_GCC=any,
- with USES=fortran,
- using Mk/bsd.octave.mk which in turn features USES=fortran, and
- with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, everything INDEX-11 shows with a dependency on lang/gcc9 now.
PR: 238330
Notes:
svn path=/head/; revision=507372
|
|
|
|
|
|
|
|
|
| |
PR: 238488
Reported by: girgen
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=503960
|
|
|
|
|
|
|
|
|
| |
This is needed to fix build of www/mod_maxminddb.
Approved by: mentors (implicit approval)
Notes:
svn path=/head/; revision=500652
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Adds mod_socache_redis feature
Changes: https://www.apache.org/dist/httpd/CHANGES_2.4.39
MFH: 2019Q2
Security: cf2105c6-551b-11e9-b95c-b499baebfeaf
Notes:
svn path=/head/; revision=497554
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
*) SECURITY: CVE-2018-17199 (cve.mitre.org)
mod_session: mod_session_cookie does not respect expiry time allowing
sessions to be reused. [Hank Ibell]
*) SECURITY: CVE-2018-17189 (cve.mitre.org)
mod_http2: fixes a DoS attack vector. By sending slow request bodies
to resources not consuming them, httpd cleanup code occupies a server
thread unnecessarily. This was changed to an immediate stream reset
which discards all stream state and incoming data. [Stefan Eissing]
*) SECURITY: CVE-2019-0190 (cve.mitre.org)
mod_ssl: Fix infinite loop triggered by a client-initiated
renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
later. PR 63052. [Joe Orton]
*) mod_ssl: Clear retry flag before aborting client-initiated renegotiation.
PR 63052 [Joe Orton]
*) mod_negotiation: Treat LanguagePriority as case-insensitive to match
AddLanguage behavior and HTTP specification. PR 39730 [Christophe Jaillet]
*) mod_md: incorrect behaviour when synchronizing ongoing ACME challenges
have been fixed. [Michael Kaufmann, Stefan Eissing]
*) mod_setenvif: We can have expressions that become true if a regex pattern
in the expression does NOT match. In this case val is NULL
and we should just set the value for the environment variable
like in the pattern case. [Ruediger Pluem]
*) mod_session: Always decode session attributes early. [Hank Ibell]
*) core: Incorrect values for environment variables are substituted when
multiple environment variables are specified in a directive. [Hank Ibell]
*) mod_rewrite: Only create the global mutex used by "RewriteMap prg:" when
this type of map is present in the configuration. PR62311.
[Hank Ibell <hwibell gmail.com>]
*) mod_dav: Fix invalid Location header when a resource is created by
passing an absolute URI on the request line [Jim Jagielski]
*) mod_session_cookie: avoid duplicate Set-Cookie header in the response.
[Emmanuel Dreyfus <manu@netbsd.org>, Luca Toscano]
*) mod_ssl: clear *SSL errors before loading certificates and checking
afterwards. Otherwise errors are reported when other SSL using modules
are in play. Fixes PR 62880. [Michael Kaufmann]
*) mod_ssl: Fix the error code returned in an error path of
'ssl_io_filter_handshake()'. This messes-up error handling performed
in 'ssl_io_filter_error()' [Yann Ylavic]
*) mod_ssl: Fix $HTTPS definition for "SSLEngine optional" case, and fix
authz provider so "Require ssl" works correctly in HTTP/2.
PR 61519, 62654. [Joe Orton, Stefan Eissing]
*) mod_proxy: If ProxyPassReverse is used for reverse mapping of relative
redirects, subsequent ProxyPassReverse statements, whether they are
relative or absolute, may fail. PR 60408. [Peter Haworth <pmh1wheel gmail.com>]
*) mod_lua: Now marked as a stable module [https://s.apache.org/Xnh1]
MFH: 2019Q1
Security: eb888ce5-1f19-11e9-be05-4c72b94353b5
Sponsored by: Netzkommune GmbH
Notes:
svn path=/head/; revision=491041
|
|
|
|
|
|
|
|
|
|
| |
Simplify some ports where DragonFlyBSD no longer needs to be special-cased.
Submitted by: rene
Reviewed by: bapt, jbeich
Differential Revision: https://reviews.freebsd.org/D17724
Notes:
svn path=/head/; revision=483807
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Adds TLSv1.3 support with security/openssl111
PR: 232687
Submitted by: Pascal Christen <pascal christen hostpoint.ch>
Reported by: Markus Kohlmeyer <rootservice gmail com>
Reviewed by: ohauer
Approved by: joneum
Differential Revision: https://reviews.freebsd.org/D17668
Notes:
svn path=/head/; revision=483139
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
*) http: Enforce consistently no response body with both 204 and 304
statuses. [Yann Ylavic]
*) mod_status: Cumulate CPU time of exited child processes in the
"cu" and "cs" values. Add CPU time of the parent process to the
"c" and "s" values.
[Rainer Jung]
*) mod_proxy: Improve the balancer member data shown in mod_status when
"ProxyStatus" is "On": add "busy" count and show byte counts in
auto mode always in units of kilobytes. [Rainer Jung]
*) mod_status: Add cumulated response duration time in milliseconds.
[Rainer Jung]
*) mod_status: Complete the data shown for async MPMs in "auto" mode.
Added number of processes, number of stopping processes and number
of busy and idle workers. [Rainer Jung]
*) mod_ratelimit: Don't interfere with "chunked" encoding, fixing regression
introduced in 2.4.34. PR 62568. [Yann Ylavic]
*) mod_proxy: Remove load order and link dependency between mod_lbmethod_*
modules and mod_proxy. PR 62557. [Ruediger Pluem, William Rowe]
*) Allow the argument to <IfFile>, <IfDefine>, <IfSection>, <IfDirective>,
and <IfModule> to be quoted. This is primarily for the benefit of
<IfFile>. [Eric Covener]
*) mod_watchdog: Correct some log messages. [Rainer Jung]
*) mod_md: When the last domain name from an MD is moved to another one,
that now empty MD gets moved to the store archive. PR 62572.
[Stefan Eissing]
*) mod_ssl: Fix merging of SSLOCSPOverrideResponder. [Jeff Trawick,
[Frank Meier <frank meier ergon.ch>]
*) mod_proxy_balancer: Restore compatibility with APR 1.4. [Joe Orton]
With hat: apache
Notes:
svn path=/head/; revision=480688
|
|
|
|
|
|
|
|
|
|
|
| |
Also various fixes related to said option.
PR: 230864
Submitted by: mat
exp-runs by: antoine
Notes:
svn path=/head/; revision=479406
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- fixes vulns in mod_http2 and mod_md
- include SSL_* options in alphabetic ordering
- Remove unneeded SSL_CFLAGS and _LDFLAGS
- Remove WITH_HTTP_PORT and WITH_SSL_PORT
- Remove trailing whitespace
- Fix build with HTTP2 but without SSL [1]
PR: 229802, 227944 [1]
With hat: apache
Approved by: brnrd (apache)
MFH: 2018Q3
Security: 8b1a50ab-8a8e-11e8-add2-b499baebfeaf
Differential Revision: https://reviews.freebsd.org/D16294
Notes:
svn path=/head/; revision=475018
|
|
|
|
| |
Notes:
svn path=/head/; revision=474734
|
|
|
|
|
|
|
|
|
|
|
| |
- Fix LOG_FORENSIC in plist while here
PR: 227868
Reported by: Jens K. Loewe <mozilla tuxproject de>
Approved by: hat (apache@)
Notes:
svn path=/head/; revision=468867
|
|
|
|
| |
Notes:
svn path=/head/; revision=465983
|
|
|
|
|
|
|
| |
- While here, fix a regression with mod_session
Notes:
svn path=/head/; revision=465982
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Remove -L/usr/lib from LDFLAGS [1]
- Remove non-working show-modules target
- Use new style patch filenames
PR: 227108 [1]
With hat: apache
Submitted by: mat [1]
Reported by: eugen [1]
MFH: 2018Q1
Notes:
svn path=/head/; revision=465978
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Add new uwsgi and md modules
- Fix LibreSSL 2.7.x builds
- Remove conflicts for non-existent ports
- There are no slave-ports
- Coalesce .if WITH_DEBUG blocks
- Use OPTIONS where possible
- Remove dead code
- Actually enable/disable modules in ALL_MODULES loop
- Add suexec warning
- Move Makefile.options to Makefile (too small)
PR: 226647
With hat: apache
Approved by: brnrd (apache)
MFH: MFH2018Q1
Security: f38187e7-2f6e-11e8-8f07-b499baebfeaf
Notes:
svn path=/head/; revision=465461
|
|
|
|
|
|
|
|
|
|
| |
- Repair my rookie mistake of earlier today
- Bump revision of dependent ports (again)
Reported by: antoine
Notes:
svn path=/head/; revision=465240
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- iconv is in base in all supported FreeBSD versions
- Fix build with MariaDB 10.2 [2]
- Bump portrevision in dependencies
PR: 226705 [1], 226026 [2]
With hat: apache
Approved by: joneum (apache)
Notes:
svn path=/head/; revision=465232
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Chase required changes in framework (bsd.sanity.mk, bsd.port.mk)
- Chase required changes in ports (version checks)
- Chase required changes in PHP ports (include bsd.apache.mk)
- exp-run by antoine, brnrd, joneum
PR: 223691 (exp-run)
Reviewed by: joneum (hat apache), mat (portmgr), antoine (portmgr)
Approved by: joneum (hat apache)
Approved by: portmgr
With hat: apache
Notes:
svn path=/head/; revision=464175
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Remove patch for CVE-2017-9798 (included upstream)
- Remove mod_ssl LibreSSL patches (included upstream)
- Fix SSL stapling patch for LibreSSL
- mod_http2 no longer experimental
PR: 222814
With hat: apache
Notes:
svn path=/head/; revision=452732
|
|
|
|
|
|
|
|
|
| |
- Bump PORTREVISION
Security: 76b085e2-9d33-11e7-9260-000c292ee6b8
Notes:
svn path=/head/; revision=450116
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Bugfix update to 2.4.27
- Fix build with LibreSSL [1]
- Add brotli compression option
- Add pkg-message for 10.3 base-ssl users
- HTTP/2 is production ready, default enable
- warn users of 10.3 for mod_http2/OpenSSL 1.0.1
[1] https://bz.apache.org/bugzilla/show_bug.cgi?id=61184
PR: 220160 [1]
Reported by: Markus Kohlmeyer <rootservice@gmail.com>
Reviewed by: ohauer (hat)
Approved by: ohauer (hat)
Differential Revision: https://reviews.freebsd.org/D11285
Notes:
svn path=/head/; revision=445603
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
MFH: 2017Q2
Security: CVE-2017-3167
Security: CVE-2017-3169
Security: CVE-2017-7659
Security: CVE-2017-7668
Security: CVE-2017-7679
With hat: portmgr
Sponsored by: Absolight
Notes:
svn path=/head/; revision=444108
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
configure.in
- bump PORTREVISON (fix changes config_vars.mk that is used to build third party modules)
PR: 215594
Submitted by: Marcelo Araujo
MFH: 2016Q4
Sponsored by: iXsystems
Notes:
svn path=/head/; revision=429588
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PR: 215457
Reported by: Apache Software Foundation
MFH: 2016Q4
Security: vid 862d6ab3-c75e-11e6-9f98-20cf30e32f6d
CVE-2016-8743
CVE-2016-2161
CVE-2016-0736
CVE-2016-8740
CVE-2016-5387
Notes:
svn path=/head/; revision=429063
|
|
|
|
|
|
|
| |
- Bump PORTREVISION for dependency change
Notes:
svn path=/head/; revision=428857
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Add patch from upstream security advisory
- Bump PORTREVISION
PR: 215096
MFH: 2016Q4
Security: cb0bf1ec-bb92-11e6-a9a5-b499baebfeaf
Security: CVE-2016-8740
Notes:
svn path=/head/; revision=427953
|
|
|
|
|
|
|
| |
Approved by: portmgr (blanket)
Notes:
svn path=/head/; revision=425421
|
|
|
|
|
|
|
|
|
|
| |
PR: 213570
Submitted by: mat
Exp-run by: antoine
Sponsored by: Absolight
Notes:
svn path=/head/; revision=424411
|
|
|
|
|
|
|
|
|
|
|
| |
No PORTREVISION bump
defaults: PROXY_BALANCER=on PROXY_HTTP2=off
PR: 210868
Submitted by: M. Macha
Notes:
svn path=/head/; revision=422343
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Add upstream patch to www/apache24
- Add upstream patch to www/apache22
- Bump PORTREVISION
Approved by: feld (ports-secteam)
MFH: 2016Q3
Security: cf0b5668-4d1b-11e6-b2ec-b499baebfeaf
Security: CVE-2016-5387
Notes:
svn path=/head/; revision=418743
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
o disable build time stamp in favor of reproducible build
o remove obsolate scoreboard/status patch
o s/USE_OPENSSL=yes/USES=ssl/
o add OPTION for two new modules:
mod_proxy_hcheck (default=on)
mod_http2_proxy (experimental => default=off)
Changelog:
http://www.apache.org/dist/httpd/CHANGES_2.4.23
MFH: 2016Q3
Notes:
svn path=/head/; revision=418091
|
|
|
|
|
|
|
| |
Approved by: portmgr blanket
Notes:
svn path=/head/; revision=415503
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- bump PORTREVISION
For details see discussion:
http://mail-archives.apache.org/mod_mbox/httpd-dev/201604.mbox/browser
Thanks to Ken J. for reporting the issue and testing the patch!
Reported by: Ken J. (on apache@ list)
Obtained from: http://home.apache.org/~ylavic/patches/scoreboard-2.4.18.diff [1]
MFH: 2016Q2
Notes:
svn path=/head/; revision=413476
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- use ${OPTION}_IMPLIES and remove some IGNORES
- turn on proxy_html and xml2enc as default [1]
[1] Often requested by users. The modules are not enabled in
the default configuration.
Full changelog for apache version 2.4.19/2.4.20:
http://www.apache.org/dist/httpd/CHANGES_2.4.20
Note: Apache httpd 2.4.19 was not released.
MFH: 2016Q2
Notes:
svn path=/head/; revision=413035
|
|
|
|
|
|
|
|
| |
With hat: portmgr
Sponsored by: Absolight
Notes:
svn path=/head/; revision=412351
|
|
|
|
|
|
|
|
|
|
| |
- improve kldstat check
- use new defined postexec, preunexec in pkg-plist
with hat apache@
Notes:
svn path=/head/; revision=406607
|