summaryrefslogtreecommitdiff
path: root/www/apache2
AgeCommit message (Collapse)AuthorFilesLines
2002-11-19As per discussion in pkg/18854, remove support for apache_start.conf asjlam1-19/+19
the precedence of the contents of this file changes depending on whether it's started at boot time or started manually, and it's not really necessary to add the extra complexity since it's valid (and easier) to just set apache_start in /etc/rc.conf. Also make the script more verbose.
2002-11-19Fix this to match the reality of which headers and libraries are installedjlam1-3/+4
by apache2.
2002-10-18Use the newer method for converting a build to a full dependency.jlam1-4/+3
2002-10-17Added buildlink2.mkmartti1-0/+33
2002-10-14Only set apache_start to "start" if it's not already set.lukem1-3/+3
Previously, if apache_start was set in /etc/rc.conf and /etc/rc.d/apache was loaded as part of the /etc/rc start sequence, apache_start's value would be overridden by "apache_start=start" in this script, because /etc/rc.conf would have already been loaded and load_rc_config() would not reload it again. This problem would not have been seen if /etc/rc.d/apache was started manually, or /etc/rc.conf.d/apache or @PKG_SYSCONFDIR@/apache_start.conf was used to set apache_start. (I am using /etc/rc.conf, and was wondering why apache wasn't starting with ssl support at boot, but worked after a manual restart...)
2002-10-04upgrade to 2.0.43.itojun3-19/+62
Changes with Apache 2.0.43 *) SECURITY: [CAN-2002-0840] HTML-escape the address produced by ap_server_signature() against this cross-site scripting vulnerability exposed by the directive 'UseCanonicalName Off'. Also HTML-escape the SERVER_NAME environment variable for CGI and SSI requests. It's safe to escape as only the '<', '>', and '&' characters are affected, which won't appear in a valid hostname. Reported by Matthew Murphy <mattmurphy@kc.rr.com>. [Brian Pane] *) Fix a core dump in mod_cache when it attemtped to store uncopyable buckets. This happened, for instance, when a file to be cached contained SSI tags to execute a CGI script (passed as a pipe bucket). [Paul J. Reder] *) Ensure that output already available is flushed to the network when the content-length filter realizes that no new output will be available for a while. This helps some streaming CGIs as well as some other dynamically-generated content. [Jeff Trawick] *) Fix a mutex problem in mod_ssl session cache support which could lead to an infinite loop. PR 12705 [amund.elstad@ergo.no (Amund Elstad), Jeff Trawick] *) SECURITY: Allow POST requests and CGI scripts to work when DAV is enabled on the location. [Ryan Bloom] *) Allow the UserDir directive to accept a list of directories. This matches what Apache 1.3 does. Also add documentation for this feature. [Jay Ball <jay@veggiespam.com>] *) New Module: mod_logio. adds the ability to log bytes sent and received. [Bojan Smojver <bojan@rexursive.com>] *) SuExec needs to use the same default directory as the rest of server, namely /usr/local/apache2. [SangBeom han <sbhan@os.korea.ac.kr>] *) Get mod_auth_ldap to retry connections on LDAP_SERVER_DOWN. [Thomas Bennett <thomas.bennett@eds.com>, Graham Leggett] *) Make sure the contents of the WWW-Authenticate header is passed on a 4xx error by proxy. Previously all headers were dropped, resulting in the browser being unable to authenticate. [Dr Richard Reiner <rreiner@fscinternet.com>, Richard Danielli <rdanielli@fscinternet.com>, Graham Wiseman <gwiseman@fscinternet.com>, David Henderson <dhenderson@fscinternet.com>] *) Make mod_cache's CacheMaxStreamingBuffer directive work properly for virtual hosts that override server-wide mod_cache setttings. [Matthieu Estrade <estrade-m@ifrance.com>] *) Add -p option to apxs to allow programs to be compiled with apxs. [Justin Erenkrantz]
2002-10-02upgrade to 2.0.42.itojun3-26/+124
--- Changes with Apache 2.0.42 *) mod_dav: Check for versioning hooks before using them. [Greg Stein] Changes with Apache 2.0.41 *) The protocol version (eg: HTTP/1.1) in the request line parsing is now case insensitive. [Jim Jagielski] *) Allow AddOutputFilterByType to add multiple filters per directive. [Justin Erenkrantz] *) Remove warnings with Sun's Forte compiler. [Justin Erenkrantz] *) Fixed mod_disk_cache's generation of 304s [Kris Verbeeck <Kris.Verbeeck@ubizen.com>] *) Add support for using fnmatch patterns in the final path segment of an Include statement (eg.. include /foo/bar/*.conf). and remove the noise on stderr during config dir processing. [Joe Orton <jorton@redhat.com>] *) mod_cache: cache_storage.c. Add the hostname and any request args to the key generated for caching. This provides a unique key for each virtual host and for each request with unique args. [Paul J. Reder, args code provided by Kris Verbeeck] *) mod_cache: Do not cache responses to GET requests with query URLs if the origin server does not explicitly provide an Expires header on the response (RFC 2616 Section 13.9) [Kris Verbeeck krisv@be.ubizen.com] *) Fix memory leak in core_output_filter. [Justin Erenkrantz] *) Update OpenSSL detection to work on Darwin. [Sander Temme <sctemme@covalent.net>] *) Update the xslt and css to give the documentation a more modern style. [André Malo <nd@perlig.de>, Gernot Winkler <greh@o3media.de>] *) Fix some bucket memory leaks in the chunking code [Joe Schaefer <joe+apache@sunstarsys.com>] *) Add ModMimeUsePathInfo directive. [Justin Erenkrantz] *) mod_cache: added support for caching streamed responses (proxy, CGI, etc) with optional CacheMaxStreamingBuffer setting [Brian Pane] *) Add image/x-icon to httpd.conf PR 10993. [Ian Holsman, Peter Bieringer <pb@bieringer.de>] *) Fix FileETags none operation. PR 12207. [Justin Erenkrantz, Andrew Ho <andrew@tellme.com>] *) Restored the experimental leader/followers MPM to working condition and converted its thread synchronization from mutexes to atomic CAS. [Brian Pane] *) Fix Logic on non-html file removal in mod_deflate [Kris Verbeeck <Kris.Verbeeck@ubizen.com>] *) Fix "ab -g"'s truncated year: the last digit was cut off. [Leon Brocard <acme@astray.com>] *) mod_rewrite can now sets cookies in err_headers, uses the correct expiry date, and can now set the path as well PR 12132,12181,12172. [Ian Holsman / Rob Cromwell <apachechangelog@robcromwell.com>] *) The content-length filter no longer tries to buffer up the entire output of a long-running request before sending anything to the client. [Brian Pane] *) Win32: Lower the default stack size from 1MB to 256K. This will allow around 8000 threads to be started per child process. 'EDITBIN /STACK:size apache.exe' can be used to change this value directly in the apache.exe executable. [Bill Stoddard] *) Win32: Implement ThreadLimit directive in the Windows MPM. [Bill Stoddard] *) Remove CacheOn config directive since it is set but never checked. No sense wasting cycles on unused code. Besides, the only truly bug free code is deleted code. :) [Paul J. Reder] *) BufferLogs are now run-time enabled, and the log_config now has 2 new callbacks to allow a 3rd party module to actually do the writing of the log file [Ian Holsman] *) Correct ISAPIReadAheadBuffer to default to 49152, per mod_isapi docs. [André Malo, Astrid Keßler <kess@kess-net.de>] *) Fix Segfault in mod_cache. [Kris Verbeeck <Kris.Verbeeck@ubizen.com>] *) Fix a null pointer dereference in the merge_env_dir_configs function of the mod_env module. PR 11791 [Paul J. Reder] *) New option to ServerTokens 'maj[or]'. Only show the major version Also Surfaced this directive in the standard config (default FULL) [Ian Holsman] *) Change mod_rewrite to use apr-util's dbm support for dbm rewrite maps. The dbm type (e.g., ndbm, gdbm) can be specified on the RewriteMap directive. PR 10644 [Jeff Trawick] *) Fixed mod_rewrite's RewriteMap prg: support so that request/response pairs will no longer get out of sync with each other. PR 9534 [Cliff Woolley] *) Fixes required to get quoted and escaped command args working in mod_ext_filter. PR 11793 [Paul J. Reder] *) mod-proxy: handle proxied responses with no status lines [JD Silvester <jsilves@uwo.ca>, Brett Huttley <brett@huttley.net>] *) Fix bug where environment or command line arguments containing non-ASCII-7 characters would cause the Win32 child process creation to fail. PR 11854 [William Rowe] *) Bug #11213.. make module loading error messages more informative [Ian Darwin <Ian779@darwinsys.com>] *) thread safety & proxy-ftp [Alexey Panchenko alexey@liwest.ru, Ian Holsman] *) mod_disk_cache works much better. This module should still be considered experimental. [Eric Prud'hommeaux] *) Performance improvement for keepalive requests: when setting aside a small file for potential concatenation with the next response on the connection, set aside the file descriptor rather than copying the file into the heap. [Brian Pane]
2002-09-20* shlibtool is not there, so don't LIBTOOL_OVERRIDE itjlam1-3/+4
* Copy the real libtool, not the libtool buildlink2 wrapper, to ${PREFIX}/share/httpd/build. This fixes pkg/18349 by YAMAMOTO Takashi <yamt@mwd.biglobe.ne.jp>.
2002-09-20Make these scripts more portable by taking advantage of automatic rc.dgrant1-2/+2
script handling and using @RCD_SCRIPTS_SHELL@. as discussed with jlam.
2002-09-19Take advantage of the auto-generation and installation of rc.d scripts.jlam1-5/+1
2002-08-29Updated apache to 2.0.40martti7-59/+110
* SECURITY: [CAN-2002-0661] Close a very significant security hole that applies only to the Win32, OS2 and Netware platforms. Unix was not affected, Cygwin may be affected. Certain URIs will bypass security and allow users to invoke or access any file depending on the system configuration. Without upgrading, a single .conf change will close the vulnerability. Add the following directive in the global server httpd.conf context before any other Alias or Redirect directives; RedirectMatch 400 "\\\.\." Reported by Auriemma Luigi <bugtest@sitoverde.com>. [Brad Nicholes] * SECURITY: Close a path-revealing exposure in multiview type map negotiation (such as the default error documents) where the module would report the full path of the typemapped .var file when multiple documents or no documents could be served based on the mime negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>. [CAN-2002-0654] [William Rowe] * SECURITY: Close a path-revealing exposure in cgi/cgid when we fail to invoke a script. The modules would report "couldn't create child process /path-to-script/script.pl" revealing the full path of the script. Reported by Jim Race <jrace@qualys.com>. [CAN-2002-0654] [Bill Stoddard] * More bug fixes (see the CHANGES file)
2002-08-25Merge packages from the buildlink2 branch back into the main trunk thatjlam11-23/+21
have been converted to USE_BUILDLINK2.
2002-07-30Update apache packages with some common changes:wiz1-19/+16
Give Apache a user and group by default, not only with suexec. The variables for this have changed from APACHE_SUEXEC_USER and APACHE_SUEXEC_GROUP to APACHE_USER and APACHE_GROUP. Mention 'Apache' in COMMENT. Use variables for the version number instead of copying it around. Bump PKGREVISION. For apache{,6}: Change paths to /var/httpd instead of /var/spool/httpd. Honour STRIPFLAG. Add --without-confadjust as configure argument. Enable the 'define' module. For apache: Enable proxy module on NOPIC platforms. Some of these changes are based on pkg/17469 by Greg A. Woods, some on comments by Johnny Lam. Reviewed by Johnny Lam.
2002-07-07Provide the common rc.d directive "reload" as an alias for "apachectl graceful",tv1-2/+10
which reloads the server without killing transfers in progress.
2002-06-18upgrade to 2.0.39, which should correct chunk encoding security issue.itojun10-228/+188
Changes with Apache 2.0.39 *) Fixed a build problem in htpasswd.c on Win32. [Guenter Knauf <eflash@gmx.net>, Cliff Woolley] Changes with Apache 2.0.38 *) Rewrite htpasswd to use APR. The removes the annoying warning about tmpnam being unsafe. [Ryan Bloom] *) We must set the MIME-type for .shtml files to text/html if we want them to be parsed for SSI tags. Add the config for that to the default config file so that it is easier to enable .shtml parsing. [Dave Dyer <ddyer@real-me.net>] *) Fixed a problem with 'make install' on ReliantUnix. [Jean-frederic Clere <jfrederic.clere@fujitsu-siemens.com>] *) Make the default_handler catch all requests that aren't served by another handler. This also gets us to return a 404 if a directory is requested, there is no DirectoryIndex, and mod_autoindex isn't loaded. [Justin Erenkrantz] *) Fixed the handling of nested if-statements in shtml files. PR 9866 [Brian Pane] *) Allow 'make install DESTDIR=/path'. This allows packagers to install into a directory different from the one that was configured. This also mirrors the root= feature from 1.3. We cannot use prefix=, because both APR and APR-util resolve their installation paths at configuration time. This means that there is no variable prefix to replace. [Andreas Hasenack <andreas@netbank.com.br>] *) AIX 4.3.2 and above: Define SINGLE_LISTEN_UNSERIALIZED_ACCEPT. These levels of AIX don't have a thundering herd problem with accept(). [Jeff Trawick] *) prefork MPM: Ignore mutex errors during graceful restart. For certain types of mutexes (particularly SysV semaphores), we should expect to occasionally fail to obtain or release the mutex during restart processing. [Jeff Trawick] *) Fix install-bindist.sh so that it finds any perl instead of just early perl 5.x versions. This is consistent with a build/install from source, and it allows the perl scripts installed by a bindist to work on systems with perl 5.6. [Jeff Trawick] *) Fix apxs so that the makefile created by "apxs -g" works on AIX and Tru64 (and probably some other platforms). [Jeff Trawick] *) Allow CGI scripts to return their Content-Length. This also fixes a hang on HEAD requests seen on certain platforms (such as FreeBSD). [Justin Erenkrantz] *) Added log rotation based on file size to the RotateLog support utility. [Brad Nicholes] *) Fix some casting in mod_rewrite which broke random maps. PR 9770 [Allan Edwards, Greg Ames, Jeff Trawick] Changes with Apache 2.0.37 *) allow POST method over SSL when per-directory client cert authentication is used with 'SSLOptions +OptRenegotiate' enabled and a client cert was found in the ssl session cache. *) 'SSLOptions +OptRengotiate' will use client cert in from the ssl session cache when there is no cert chain in the cache. prior to the fix this situation would result in a FORBIDDEN response and error message "Cannot find peer certificate chain" [Doug MacEachern] *) ap_finalize_sub_req_protocol() shouldn't send an EOS bucket if one was already sent. PR 9644 [Jeff Trawick] *) Fix the display of the default name for the mime types config file. PR 9729 [Matthew Brecknell <mbrecknell@orchestream.com>] *) Fix the working directory *for WinNT/2K/XP services only* to change to the Apache directory (one level above the location of Apache.exe, in the case that Apache.exe resides in bin/.) Solves the case of ServerRoot /foo paths where /foo was not on the same drive as /winnt/system32. [William Rowe] *) Make 2.0's "AcceptMutex" startup message now "completely" match how 1.3 does it. [Jim Jagielski] *) Implement a fixed size memory cache using a priority queue [Ian Holsman] *) Fix apxs to allow "apxs -q installbuilddir" and to allow querying certain other variables from config_vars.mk. PR 9316 [Jeff Trawick] *) Added the "detached" attribute to the cgi_exec_info_t internals so that Win32 and Netware won't create a new window or console for each CGI invoked. PR 8387 [Brad Nicholes, William Rowe] *) Consolidated the command line parameters and attributes that are manipulated by the optional function ap_cgi_build_command() in mod_cgi into a single structure. [Brad Nicholes] *) Get rid of uninitialized value errors with "apxs -q" on certain variables. [Stas Bekman <stas@stason.org>] *) Fix apxs to allow it to work when the build directory is somewhere besides server-root/build. PR 8453 [Jeff Trawick and a host of others] *) Allow ap_discard_request_body to be called multiple times in the same request. Essentially, ap_http_filter keeps track of whether it has sent an EOS bucket up the stack, if so, it will only ever send an EOS bucket for this request. [Ryan Bloom, Justin Erenkrantz, Greg Stein] *) Remove all special mod_ssl URIs. This also fixes the bug where redirecting (.*) will allow an SSL protected page to be viewed without SSL. [Ryan Bloom] *) Fix the binary build install script so that the build logic created by "apxs -g" will work when the user has a binary build. [Jeff Trawick] *) Allow instdso.sh to work with full paths to the shared module. [Justin Erenkrantz] *) NetWare: Enabled CGI functionality and added mod_cgi as a built in module for NetWare [Brad Nicholes] *) Changed cgi and piped log behavior to accept 65536 characters on Win32 (matching Linux) before deadlocking between outputing client stdin, slurping the output from stdout and then the stderr stream. PR 8179 [William Rowe] *) Fixed Win32 wintty.exe support to assure the window title is valid. Elimiates possible gpfault or garbage title without the -t option. [William Rowe] *) Rewrite mod_cgi, mod_cgid, and mod_proxy input handling to use brigades and input filters. [Justin Erenkrantz] *) Allow ap_http_filter (HTTP_IN) to return EOS when there is no request body. [Justin Erenkrantz] *) NetWare: Piping log entries through RotateLogs using the CustomLogs directive is finally supported now that we have the pipes and spawning functionality working. [Brad Nicholes] *) Detect overflow when reading the hex bytes forming a chunk line. [Aaron Bannert] *) Allow RewriteMap prg:'s to take command-line arguments. PR 8464. [James Tait <JTait@wyrddreams.demon.co.uk>] *) Correctly return 413 when an invalid chunk size is given on input. Also modify ap_discard_request_body to not do anything on sub-requests or when the connection will be dropped. [Justin Erenkrantz] *) Fix the TIME_* SSL var lookups to be threadsafe. PR 9469. [Cliff Woolley] *) Ensure that apr_brigade_write() flushes in all of the cases that it should to avoid conditions in some modules that could cause large amounts of data to be buffered. [Cliff Woolley] *) Fix problem where mod_cache/mod_disk_cache was incorrectly stripping the content_type from cached responses. [Bill Stoddard] *) apachectl passes through any httpd options. Note: apachectl should be used in preference to httpd since it ensures that any appropriate environment variables have been set up. [Jeff Trawick] *) Fix the combination of mod_cgid, mod_setuexec, and mod_userdir. PR 7810 [Colm MacCarthaigh <colmmacc@redbrick.dcu.ie>] *) Fix suexec execution of CGI scripts from mod_include. PR 7791, 8291 [Colm MacCarthaigh <colmmacc@redbrick.dcu.ie>] *) Fix segfaults at startup on some platforms when mod_auth_digest, mod_suexec, or mod_ssl were used as DSO's due to the way they were tracking the current init phase since DSO's get completely unloaded and reloaded between phases. PR 9413. [Tsuyoshi Sasamoto <nazonazo@super.win.ne.jp>, Brad Nicholes] *) Fix mod_include's handling of regular expressions in "<!--#if" directives [Julius Gawlas <julius_gawlas@hp.com>] *) Fix the worker MPM deadlock problem [Brian Pane] *) Modify the module documentation to allow for translations. [Yoshiki Hayashi, Joshua Slive] *) Fix a file permissions problem which prevented mod_disk_cache from working on Unix. [Jeff Trawick] *) Add "-k start|restart|graceful|stop" support to httpd for the Unix MPMs. These have semantics very similar to the old apachectl commands of the same name. [Justin Erenkrantz, Jeff Trawick] *) Make sure that the runtime dir is created by make install. PR 9233. [Jeff Trawick] *) Fix an unusual set of ./configure arguments that could cause mod_http to be built as a DSO, which it currently doesn't support. PR 9244. [Cliff Woolley, Robin Johnson <robbat2@orbis-terrarum.net>] *) Win32: Fix bug in apr_sendfile() that caused incorrect operation of the %X, %b and %B logformat options. PR 8253, 8996. [Bill Stoddard] *) If content-encoding is already present, do not run deflate (PR 9222) [Kazuhisa ASADA <kaz@asada.sytes.net>] *) The APLOG_NOERRNO flag to ap_log_[r]error() is now deprecated. It is currently ignored and it will be removed in a future release of Apache. [Jeff Trawick] *) Removed documentation references to the no-longer-supported "make certificate" feature of mod_ssl for Apache 1.3.x. Test certificates, if truly desired, can be generated using openssl commands. PR 8724. [Cliff Woolley] *) Remove SSLLog and SSLLogLevel directives in favor of having mod_ssl use the standard ErrorLog directives. [Justin Erenkrantz] *) OS/390: LIBPATH no longer has to be manually uncommented in envvars to get apachectl to set up httpd properly. [Jeff Trawick] *) mod_isapi: All mod_isapi directives, excluding ISAPICacheFile, may now be specified to the <File/Directory > container, rather than by vhost. [William Rowe] *) mod_isapi: Experimental support for faux async support for ISAPI modules. [William Rowe] *) mod_isapi: Major refactoring of the code to rely on apr internals rather than MS APIs (using our own mod_isapi.h headers for ISAPI symbol definitions.) [William Rowe] *) mod_isapi: Fixed the return string length from GetServerVariable callback, it was not including the trailing null in the consumed buffer size. This was particularly bad for Delphi 6.0 users. PR 8934 [Sebastian Hantsch <sebastian.hantsch@gmx.de>] *) Fixed Win32 builds for Microsoft VisualStudio 7.0 (.net). [William Rowe] *) Make apxs look in the correct directory for envvars. It was broken when sbindir != bindir. PR 8869 [Andreas Sundström <sunkan@zappa.cx>] *) Fix mod_deflate corruption when using multiple buckets. PR 9014. [Asada Kazuhisa <kaz@asada.sytes.net>] *) Performance enhancements for access logger when using default timestamp formatting [Brian Pane] *) Added EnableMMAP config directive to enable the server administrator to disable memory-mapping of delivered files on a per-directory basis. [Brian Pane] *) Performance enhancements for mod_setenvif [Brian Pane] *) Fix a mod_ssl build problem on OS/390. [Jeff Trawick] *) Fixed If-Modified-Since on Win32, which would give false positives because of the sub-second resolution of file timestamps on that platform. [Cliff Woolley] *) Reverse the hook ordering for mod_userdir and mod_alias so that Alias/ScriptAlias will override Userdir. PR 8841 [Joshua Slive] *) Move mod_deflate out of experimental and into filters. [Justin Erenkrantz] *) Get proxy CONNECT basically working. [Jeff Trawick] *) Fix mod_rewrite hang when APR uses SysV Semaphores and RewriteLogLevel is set to anything other than 0. PR: 8143 [Aaron Bannert, Cliff Woolley] *) Fix byterange requests from returning 416 when using dynamic data (such as filters like mod_include). [Justin Erenkrantz] *) Allow mod_rewrite's set of "int:" internal RewriteMap functions to be extended by third-party modules via an optional function. [Tahiry Ramanamampanoharana <nomentsoa@hotmail.com>, Cliff Woolley] *) Fix mod_include expression parser's handling of unquoted strings followed immediately by a closing paren. PR 8462. [Brian Pane] *) Remove autom4te.cache in 'make distclean'. [Thom May <thom@planetarytramp.net>] *) Fix generated httpd.conf to respect layout for LoadModule lines. PR 8170. [Thom May <thom@planetarytramp.net>] *) Win32: During a graceful restart, threads in the new process were accessing scoreboard slots still in use by active threads in the the old process. [Bill Stoddard]
2002-06-18use /dev/urandom, not /dev/random, for random number source.itojun3-1/+60
(if you don't have Pentium 4, httpd will need more than 1 minutes to start up)
2002-06-01Add german mirror to master site list.tron1-1/+2
2002-06-01upgrade to 2.0.36. (this is still a leaf package so it shouldn't affect others)itojun7-264/+48
Changes with Apache 2.0.36 *) Close sockets on worker MPM when doing a graceless restart. [Aaron Bannert] *) Reverted a minor optimization in mod_ssl.c that used the vhost ID as the session id context rather that a MD5 hash of that vhost ID, because it caused very long vhost id's to be unusable with mod_ssl. PR 8572. [Cliff Woolley] *) Fix the link to the description of the CoredumpDirectory directive in the server-wide document. PR 8643. [Jeff Trawick] *) Fixed SHMCB session caching. [Aaron Bannert, Cliff Woolley] *) Synced with remaining changes from mod_ssl 2.8.8-1.3.24: - Avoid SIGBUS on sparc machines with SHMCB session caches - Allow whitespace between the pipe and the name of the program in SSLLog "| /path/to/program". [Cliff Woolley] *) Introduce mod_ext_filter and mod_deflate experimental modules to the Win32 build (zlib sources must be in srclib\zlib.) [William Rowe] *) Changes to the worker MPM's queue management and thread synchronization code to reduce mutex contention [Brian Pane] *) Don't install *.in configuration files since we already install *-std.conf files. [Aaron Bannert] *) Many improvements to the threadpool MPM. [Aaron Bannert] *) Fix subreqs that are promoted via fast_redirect from having invalid frec->r structures. This would cause subtle errors later on in request processing such as seen in PR 7966. [Justin Erenkrantz] *) More efficient pool recycling logic for the worker MPM [Brian Pane] *) Modify the worker MPM to not accept() new connections until there is an available worker thread. This prevents queued connections from starving for processing time while long-running connections were hogging all the available threads. [Aaron Bannert] *) Convert the worker MPM's fdqueue from a LIFO back into a FIFO. [Aaron Bannert] *) Get basic HTTP proxy working on EBCDIC machines. [Jeff Trawick] *) Allow mod_unique_id to work on systems with no IPv4 address corresponding to their host name. [Jeff Trawick] *) Fix suexec behavior with user directories. PR 7810. [Colm <colmmacc@redbrick.dcu.ie>] *) Reject a blank UserDir directive since it is ambiguous. PR 8472. [Justin Erenkrantz] *) Make mod_mime use case-insensitive matching when examining extensions on all platforms. PR 8223. [Justin Erenkrantz] *) Add an intelligent error message should no proxy submodules be valid to handle a request. PR 8407 [Graham Leggett] *) Major improvements in concurrent processing for AB by enabling non-blocking connect()s and preventing APR from doing blocking read()s. Also implement fatal error checking for apr_recv(). [Aaron Bannert] *) Fix Win32 NTFS Junctions (symlinks). PR 8014 [William Rowe] *) Fix Win32 'short name' aliases in httpd.conf directives. PR 8009 [William Rowe] *) Fix generation of default httpd.conf when the layout paths are disjoint. PR 7979, 8227. [Justin Erenkrantz] *) Swap downgrade-1.0 and force-response-1.0 conditional checks so that downgraded responses can have force-response. PR 8357. [Justin Erenkrantz] *) Fix perchild MPM so that it can be configured with the move to the experimental directory. [Scott Lamb <slamb@slamb.org>] *) Fix perchild MPM so that it uses ap_gname2id for groups instead of ap_uname2id. [Scott Lamb <slamb@slamb.org>] *) Fix AcceptPathInfo. PR 8234 [Cliff Woolley] *) [Security] Added the APLOG_TOCLIENT flag to ap_log_rerror() to explicitly tell the server that warning messages should be sent to the client in addition to being recorded in the error log. Prior to this change, ap_log_rerror() always sent warning messages to the client. In one case, a faulty CGI script caused the server to send a warning message to the client that contained the full path to the CGI script. This could be considered a minor security exposure. [Bill Stoddard] *) mod_autoindex output when SuppressRules was specified would omit the first carriage return so the first item in the list would appear to the right of the column headings instead of underneath them. PR 8016 [David Shane Holden <dpejesh@yahoo.com>] *) Moved the call to apr_mmap_dup outside the error branch so that it would actually get called. This fixes a core dump at init everytime you use the MMapFile directive. PR 8314 [Paul J. Reder] *) Trigger an error when a LoadModule directive attempts to load a module which is built-in. This is a common error when switching from a DSO build to a static build. [Jeff Trawick] *) Change instdso.sh to use libtool --install everywhere and then clean up some stray files and symlinks that libtool leaves around on some platforms. This gets subversion building properly since it needed a re-link to be performed by libtool at install time, and the old instdso.sh logic to simply cp the DSO didn't handle that requirement. [Sander Striker] *) Allow VPATH builds to succeed when configured from an empty directory. [Thom May <thom@planetarytramp.net>] *) Fix 'control reaches end of non-void function' warning in server/log.c. [Ben Collins-Sussman <sussman@collab.net>] *) Perchild MPM is now correctly deemed as experimental and is now located in server/mpm/experimental. [Justin Erenkrantz] *) Fix segfault in mod_mem_cache when garabge collecting an expired cache entry. [Bill Stoddard] *) Introduced -E startup_logfile_name option to httpd to allow admins to begin logging errors immediately. This provides Win32 users an alternative to sending startup errors to the event viewer, and allows other daemon tool authors an alternative to logging to stderr. [William Rowe] *) Fix subreqs with non-defined Content-Types being served improperly. [Justin Erenkrantz] *) Merge in latest GNU config.guess and config.sub files. PR 7818. [Justin Erenkrantz] *) Move 100 - Continue support to the HTTP_IN filter so that filters are guaranteed to support 100 - Continue logic without any intervention. [Justin Erenkrantz] *) Add HTTP chunked input trailer support. [Justin Erenkrantz] *) Rename and export get_mime_headers as ap_get_mime_headers. [Justin Erenkrantz] *) Allow empty Host: header arguments. PR 7441. [Justin Erenkrantz] *) Properly substitute sbindir as httpd's location in apachectl. PR 7840. [Andreas Hasenack <andreas@netbank.com.br>] *) Allow Win32 shebang scripts to follow the path (or omit the .exe suffix from the shebang command), and allow ScriptInterpreterSource Registry or RegistryStrict to override shebang lines, as 1.3 did. PR 8004 [William Rowe] *) worker MPM: Fix a situation where a child exited without releasing the accept mutex. Depending on the OS and mutex mechanism this could result in a hang. [Jeff Trawick] *) Update the instructions for how to get started with mod_example. [Stas Bekman] *) Fix PidFile to default to rel_runtimedir instead of rel_logfiledir. PR 7841. [Andreas Hasenack <andreas@netbank.com.br>] *) Win32: Fix problem that caused rapid performance degradation when number of connecting clients exceeded ThreadsPerChild. [Bill Stoddard] *) Fixed a segfault parsing large SSIs on non-mmap systems. [Brian Havard] *) Proxy was bombing out every second keepalive request, caused by a stray CRLF before the second response's status line. Proxy now tries to read one more line if it encounters a CRLF where it expected a status. PR 10010 [Graham Leggett] *) Deprecated the apr_lock.h API. Please see the following files for the improved thread and process locking and signaling: apr_proc_mutex.h, apr_thread_mutex.h, apr_thread_rwlock.h, apr_thread_cond.h, and apr_global_mutex.h. [Aaron Bannert] *) Change mod_status to use scoreboard accessor functions so it can be used in any MPM without having to be recompiled. [Ryan Morgan <rmorgan@covalent.net>] *) Fix parsing of some AP_DECLARE_DATA declarations so that the filter handle declarations are recognized. This fixes problems loading mod_autoindex on some platforms. [Brian Havard] *) add optional fixup hook to proxy [Daniel Lopez <daniel@covalent.net>] *) Remind the admin about the User and Group directives when we are unable to set permissions on a semaphore. PR 7812 [Jeff Trawick] *) fix possible compilation problem in ssl_engine_kernel.c. PR 7802 [Doug MacEachern] *) fix possible infinite loop in mod_ssl triggered by certain netscape clients [Doug MacEachern] *) fix ProxyPass when frontend is https and backend is http [Doug MacEachern] *) Add DASL support to mod_dav [Sung Kim <hunkim@cse.ucsc.edu>]
2002-04-16Fix up the example config files by replacing the pathnames with hier(7)jlam1-24/+28
equivalents, and adding "Listen 0.0.0.0:${port}" for port=80,443. Also move the --with-ssl configure option into the _AP_CFG_ARGS table.
2002-04-16Add the ability to specify the list of Apache modules to link staticallyjlam1-6/+32
into the httpd binary. This may be adjusted by setting APACHE_MODULES in /etc/mk.conf and defaults to ${DFLT_APACHE_MODULES}, which contains: all proxy proxy_connect proxy_ftp proxy_http ssl A complete list of which modules may be built into the Apache httpd server may be found in the Apache documentation either in the distributed tarball or on the Apache website (http://httpd.apache.org). An example for adding mod_deflate is: APACHE_MODULES= ${DFLT_APACHE_MODULES} deflate The implementation of this feature uses two tables, _AP_DEPENDS and _AP_CFG_ARGS, indexed by the module name and that specify respectively any additional dependencies or configure script options needed for building the module.
2002-04-15apache version 2 is released officially (not beta now).kei1-2/+2
2002-04-13--------------------------------------------------------------------------------jlam20-358/+375
Update www/apache2 to 2.0.35, the first stable release of Apache 2.x. Pkgsrc changes include: *) Compiling the included modules statically. Add-ons will be built dynamically. *) Match improvements to www/apache rc.d script. *) Automatically add "Listen 0.0.0.0:80" to the sample config files as the default install of NetBSD is IPv4/IPv6 and we want the default install of Apache to work out-of-the-box. *) Automatically reset the User and Group directives to match the ones for suEXEC in the config files to ease the use of suEXEC in Apache. Changes from version 2.0.32 beta include: *) Small bug fixes across the board. *) Bug fixes to the various MPMs. *) Performance improvements. *) Fixes for mod_include errors on boundary conditions *) Bug fixes for mod_proxy to prevent hangs and for RFC2616 compliance. *) Improvements to mod_dav for improved API and for RFC 3253 compliance *) Improvemants to mod_ssl to support SSL proxy and RSA SSLC 1.x/2.x *) Greatly improve mod_cache (disk/mem) [this is disabled in pkgsrc] *) New scoreboard file implementation that is readable by 3rd-party apps. *) Allow all Perchild directives to accept either numerical UID/GID or logical user/group names. *) Add support for macro expansion within the variable names in <!--#echo--> and <!--#set--> directives *) Implement SSLSessionCache shmht and shmcb. *) New directive ProxyIOBufferSize. Sets the size of the buffer used when reading from a remote HTTP server in proxy. *) Scrap CacheMaxExpireMin and CacheDefaultExpireMin. Change CacheMaxExpire and CacheDefaultExpire to use seconds rather than hours. *) New Directive SSIUndefinedEcho. to change the '(none)' echoed for a undefined variable. *) Introduce PassPhraseDialog "|/path/to/pipe" mechanism to mod_ssl. *) New Directive for mod_proxy: ProxyRemoteMatch. *) Fix IPv6 name-based virtual hosts. *) Introduce AddOutputFilterByType directive.
2002-03-06Have a default value for apache_start so it doesn't need to be specifiedjlam1-1/+3
in /etc/rc.conf.
2002-03-06Note the workaround mentioned in pkg/15570 to listen on IPv4 addresses asjlam1-0/+9
well as on IPv6 addresses. This closes pkg/15570.
2002-03-06Find the pkgsrc-installed expat libraries.jlam2-1/+23
XXX This patch will go away once the changes to buildlink to handle libtool XXX archives properly are committed.
2002-03-06Add the scripts to the build target so that they are created and installedjlam2-6/+8
properly.
2002-03-05Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous versionjlam15-556/+818
include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-05Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.jlam12-0/+1038