Bradley Nicholes [Thu, 13 Mar 2003 23:20:03 +0000 (23:20 +0000)]
Added the optional ssl_enable functions to allow mod_proxy to hook into
mod_nw_ssl on NetWare. This allows a unsecure connection to be upgraded
to a secure connection when required by mod_proxy. Also added the
directive NWSSLTrustedCerts to allow an administrator to provide a list of
certificates used to upgrade the secure connections.
Paul J. Reder [Thu, 13 Mar 2003 20:53:49 +0000 (20:53 +0000)]
I did the work, got out the vote, back-ported it, removed the vote, but forgot
to move the CHANGES entry... Darn. I've moved it to where it *should* have
been. I hope this causes less confusion than having it out of sequence would
have...
Oops. I'd forgotten to update the CHANGES file with the shmht fix.
PR: 17864
Submitted by: Andreas Leimbacher <andreasl67@yahoo.de>
Reviewed by: Madhusudan Mathihalli
Fix PR 17864, and also fixes a SEGV problem when SHMHT was used.
The porting of the code from mod_ssl 1.3.x was still incomplete, and depended
upon a complete implentation of apr_shm (hence pieces of code was #if 0'ed out).
After discussions at length on dev@apr/httpd, it is determined that
the older .dbg format symbols are not worth the interference with
generating complete .pdb symbolic debugging databases.
This patch further eliminates pdbtype:sept flags that interfere with
deciphering local symbols and type information.
After much discussion on dev@apr - it turns out that .dbg files served
a very limited purpose and their extraction interfered with the correct
extraction of the (much more useful) .pdb files. Eliminating them now.
It also turns out that without the _src.pdb files for static libraries,
one cannot build debuggable modules with any locals or type information.
We need to copy those _src.pdb files into lib/ as well.
Andre Malo [Mon, 10 Mar 2003 16:47:37 +0000 (16:47 +0000)]
fix xml errors and build the stuff
$ build validate-xml
[xmlvalidate] .../manual/misc/perf-tuning.xml:139:45: The element type "section"
must be terminated by the matching end-tag "</section>".
(actually: missing <p>)
$build validate-xml
[xmlvalidate] .../manual/misc/perf-tuning.xml:477:12: Element type "i" must be de
clared.
[xmlvalidate] .../manual/misc/perf-tuning.xml:481:54: The content of element type
"p" must match "(em|strong|code|a|br|directive|module|img|cite|q|dfn|var|transnote)".
Richard Bowen [Mon, 10 Mar 2003 04:36:44 +0000 (04:36 +0000)]
Applying patch from 2.0 branch, however, there still appears to be some
invalid xml in here, although I have been completely unable to track it
down.
This patch adds discussion of removing unneeded modules, as well as
section titles to facilitate links directly to the various sections.
Andre Malo [Sat, 8 Mar 2003 17:08:34 +0000 (17:08 +0000)]
Check also err_headers_out for an already set Content-Encoding:
gzip header. This prevents gzip compressed content from a CGI
script from being compressed once more.
Jeff Trawick [Fri, 7 Mar 2003 12:23:00 +0000 (12:23 +0000)]
clean up the invocation of APR_CHECK_APR_DEFINE()...
it no longer references the second parameter, which was
incorrectly specified with out-of-tree APR anyway
(which resulted in prefork being selected on Unix since
we didn't ever think APR had thread support)
Andre Malo [Thu, 6 Mar 2003 23:53:52 +0000 (23:53 +0000)]
Minor MMN bump:
Forward port: Escape special characters (especially control
characters) in mod_log_config to make a clear distinction between
client-supplied strings (with special characters) and server-side
strings. This was already introduced in version 1.3.25.
Added the WindowsSocketsWorkaroud directive for Windows NT/2000/XP
to work around problems with certain VPN and Firewall products that
have buggy AcceptEx implementations
Andre Malo [Sun, 2 Mar 2003 18:06:16 +0000 (18:06 +0000)]
Unescape the supplied wildcard pattern. Otherwise the pattern will
not always match as desired. In order to be correct and safe, the
pattern will be re-escaped for output.
Erik Abele [Sun, 2 Mar 2003 01:17:31 +0000 (01:17 +0000)]
Cleaned up the misc directory and busted the following
files (as proposed some weeks ago):
misc/custom_errordocs.html
misc/descriptors.html
misc/fin_wait_2.html
misc/known_client_problems.html
misc/tutorials.html
images/custom_errordocs.gif
The correspondig links were also removed. What remains
are the Japanese docs:
Andre Malo [Sat, 1 Mar 2003 18:35:50 +0000 (18:35 +0000)]
Prevent endless loops of internal redirects in mod_rewrite by
aborting after exceeding a limit of internal redirects. The
limit defaults to 10 and can be changed using the RewriteOptions
directive with the new MaxRedirects=n argument.
(The latter required some restructuring of the RewriteOptions
evaluation code).
Andre Malo [Thu, 27 Feb 2003 02:50:04 +0000 (02:50 +0000)]
Fix mod_rewrite's abs_URI handling.
- uris were partially not correctly escaped (in particular:
ldap, news, mailto)
- not all uri schemes contain an authority component (//)
- add nntp:// scheme
- don't add a query string (and drop r->args) if it's not
http or mailto scheme
- be more efficient (think so)
Stas Bekman [Tue, 25 Feb 2003 23:25:19 +0000 (23:25 +0000)]
check the return value of ap_run_pre_connection(). So if the
pre_connection phase fails (without setting c->aborted)
ap_run_process_connection is not executed.
PR:
Obtained from:
Submitted by:
Reviewed by: trawick, jim
Confirmed by Milan Kosina that this code was still broken - I realized
we weren't updating stat correctly, and shouldn't have been trying to
pass the status, but the headers instead, from WriteClient(). This way
we can actually count the bytes consumed and begin treating the rest
as body contents.
Jeff Trawick [Tue, 25 Feb 2003 14:44:42 +0000 (14:44 +0000)]
fix some const-ness problems which break the compile with the native
compiler for AIX (and probably HP-UX and Tru64 as well, since they
tend to be picky too)
Bradley Nicholes [Mon, 24 Feb 2003 23:19:30 +0000 (23:19 +0000)]
Don't try to use the LDAP cache if it has been turned off. Make sure that we
have a "curl" before trying to use it. If caching has been turned off then the
curl variable will be NULL. This fixes a problem where LDAP caching would
fault when caching was disabled.
Andre Malo [Mon, 24 Feb 2003 21:55:07 +0000 (21:55 +0000)]
This is part three.
It fixes the misunderstandings between local URL paths and local
system paths. Note that mod_rewrite handles _both_.
Fixed also some comments to make the explanations more clear.
Andre Malo [Mon, 24 Feb 2003 21:44:15 +0000 (21:44 +0000)]
This is part two.
It fixes the prefix_stat function. (which does a stat call on the first
path segment). This function was still tailored for unix systems only.
It should work on other systems as well now.
Andre Malo [Mon, 24 Feb 2003 21:34:51 +0000 (21:34 +0000)]
Well, here comes a major fix. I've splitted the patch into 3 parts
for better understanding, what I'm doing there. This is part one.
mod_rewrite appears to be very broken in several cases, especially on
non-unix systems. However, let's start with fixing the path handling, since
it's _the_ major PITA, e.g. on win32.
This part removes _unused_ code. The condition is never true, because
"A local rewrite in per-directory context" was caught much earlier.
I'd guess this piece of code was c&p accidentally...
Someone (I need to refer back) asked that we do the same skip for the
utf-8 win32 prefix when testing for shebang lines. Here's just such
a test with some bad sizeof(buffer) v.s. bytes read assumptions fixed,
and the code made generally a little more legible. Please review and
comment to consider this patch for backporting to 2.0.
Jim Jagielski [Sun, 23 Feb 2003 17:12:43 +0000 (17:12 +0000)]
Right now SSLMutex is bogus. It just uses APR_LOCK_DEFAULT no
matter what. We now allow for the full range of APR mutex
locking mechanims to be used, while maintaining backwards
compatibility.
PR: 8122
Obtained from:
Submitted by:
Reviewed by: William Rowe