-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
--
Eric Covener
cove...@gmail.com
Resolved now, took a todo to make sure we don't get this far in the
process if the site cannot be re-built.
On Thu, Apr 4, 2024 at 11:33 AM Eric Covener wrote:
>
> Thanks/Sorry, working on it now.
>
> On Thu, Apr 4, 2024 at 11:23 AM BUSH Steve via dev
> wrote:
you should not read, disclose, or copy it,
>
> (ii) please notify sender of your receipt by reply email and delete this
> email and all attachments,
>
> (iii) Dassault Systèmes does not accept or assume any liability or
> responsibility for any use of or reliance on this email.
>
>
> Please be informed that your personal data are processed according to our
> data privacy policy as described on our website. Should you have any
> questions related to personal data protection, please contact 3DS Data
> Protection Officer https://www.3ds.com/privacy-policy/contact/
>
>
--
Eric Covener
cove...@gmail.com
On Thu, Apr 4, 2024 at 8:12 AM Eric Covener wrote:
Proceeding with release now, thanks everyone for testing.
> FYI I plan to call this in about an hour with the following binding +1:
> covener, icing, jorton, thumbs, gbechis, jfclere, ylavic, minfrin
--
Eric Covener
cove...@gmail.com
FYI I plan to call this in about an hour with the following binding +1:
covener, icing, jorton, thumbs, gbechis, jfclere, ylavic, minfrin
--
Eric Covener
cove...@gmail.com
On Wed, Apr 3, 2024 at 3:03 PM Eric Covener wrote:
>
> On Wed, Apr 3, 2024 at 2:54 PM Rainer Jung wrote:
> >
> > Minor nit: the format of the SHA hash files has changes. Example:
> >
> > 2.4.58:
> >
> > fa16d72a078210a54c47dd5bef2f8b9b8a01d94909a51453
On Wed, Apr 3, 2024 at 2:54 PM Rainer Jung wrote:
>
> Minor nit: the format of the SHA hash files has changes. Example:
>
> 2.4.58:
>
> fa16d72a078210a54c47dd5bef2f8b9b8a01d94909a51453956b3ec6442ea4c5
> *httpd-2.4.58.tar.bz2
>
> 2.4.59:
>
> SHA2-256(httpd-2.4.59-rc1.tar.bz2)=
>
> I would like to call a SHORTENED VOTE to release
> this candidate tarball httpd-2.4.59-rc1 as 2.4.59:
my +1 (AIX/xlc/ppc64)
Only familiar t/ssl/proxy.t client auth issues with a openssl11 server
Hi all,
(After only minor embarrassment of patching tags/2.4.55 instead of 2.4.x...)
Please find below the proposed release tarball and signatures:
https://dist.apache.org/repos/dist/dev/httpd/
I would like to call a SHORTENED VOTE to release
this candidate tarball httpd-2.4.59-rc1 as 2.4.59:
On Tue, Apr 2, 2024 at 6:06 PM Rainer Jung wrote:
>
> Hi there,
>
> in preparation of the relase I am running the test framework against
> recent httpd 2.4.x head.
>
> I am seeing test failures in t/apache/pr64339.t:
>
> # testing : content-type header test for /doc.xml
> # expected:
I will be RM'ing a httpd release mid-week.
--
Eric Covener
cove...@gmail.com
I should add, this against a very divergent $bigco fork so patch may
not work well.
On Tue, Mar 12, 2024 at 11:07 AM Eric Covener wrote:
>
> below + POD wakeup
>
> Did not force the path yet where the listener is started (or fold in
> the scoreboard change )
>
> On Tue, Mar
below + POD wakeup
Did not force the path yet where the listener is started (or fold in
the scoreboard change )
On Tue, Mar 12, 2024 at 10:54 AM Eric Covener wrote:
>
> On Tue, Mar 12, 2024 at 10:30 AM Eric Covener wrote:
> >
> > On Tue, Mar 12, 2024 at 10:19 AM
On Tue, Mar 12, 2024 at 10:30 AM Eric Covener wrote:
>
> On Tue, Mar 12, 2024 at 10:19 AM Yann Ylavic wrote:
> >
> > On Tue, Mar 12, 2024 at 3:03 PM Eric Covener wrote:
> > >
> > > On Tue, Mar 12, 2024 at 8:48 AM Yann Ylavic w
On Tue, Mar 12, 2024 at 10:19 AM Yann Ylavic wrote:
>
> On Tue, Mar 12, 2024 at 3:03 PM Eric Covener wrote:
> >
> > On Tue, Mar 12, 2024 at 8:48 AM Yann Ylavic wrote:
> > >
> > > Maybe it could be:
> > > if (threads_created) {
> >
> &g
On Tue, Mar 12, 2024 at 8:48 AM Yann Ylavic wrote:
>
> On Tue, Mar 12, 2024 at 1:06 PM Eric Covener wrote:
> >
> > On Mon, Mar 11, 2024 at 8:28 PM wrote:
> > >
> > > Author: covener
> > > Date: Tue Mar 12 00:28:34 2024
> > > New Revision:
(APEXIT_CHILDSICK);
> }
Maybe this option is silly, if we are going to nearly immediately
clear pchild and call exit().
--
Eric Covener
cove...@gmail.com
On Mon, Mar 11, 2024 at 5:07 PM Eric Covener wrote:
>
> Is there a chunk of dead code below this change or am I misreading?
>
> https://svn.apache.org/viewvc/httpd/httpd/trunk/server/mpm/event/event.c?revision=1916241=markup=1916241#l2758
>
> The first thread creati
APLOGNO(03104)
> "ap_thread_create: unable to create worker
> thread");
> /* let the parent decide how bad this really is */
> +signal_threads(ST_UNGRACEFUL);
> clean_child_exit(APEXIT_CHILDSICK);
> }
> threads_created++;
>
>
--
Eric Covener
cove...@gmail.com
On Fri, Feb 16, 2024 at 9:22 AM Ruediger Pluem wrote:
>
>
>
> On 2/16/24 2:10 PM, Eric Covener wrote:
> >> Will apreq 2.18 still be released?
> >
> > I think we should, but we need someone to do the release work and 3
> > active PMC members to ap
ere, they should join
us or take it over.If there is anyone out there who wants to get more
involved, please speak up.
I count myself as a release vote of last resort only, but i don't
think we should be committing to future fixes/releases if nearly
everyone is in this category.
--
Eric Covener
c
> And because you are such a prima donna Yann
Yann is an amazing programmer and super easy to work with. Maybe it's hard
to tell from the backseat.
On Wed, Feb 14, 2024 at 11:57 PM Joe Schaefer wrote:
> Twenty years in core, with one bug to fix.
> And you couldn’t even manage without three different botched releases.
>
I think you are mixing up apreq and httpd releases here.
AIUI the apreq stuff in the core of httpd-trunk has only ever
On Wed, Feb 14, 2024 at 1:45 PM Joe Schaefer wrote:
>
> Assuming Google hasn't found any more fuzzing vulnerabilities with apreq, we
> should call the subproject done after releasing it, rolling any new efforts
> into httpd's internal copy of the codebase for the next major release of
> httpd.
I wouldn't mind move/rename to README.md
On Thu, Jan 25, 2024, 10:40 AM Joe Orton wrote:
> On Thu, Jan 25, 2024 at 08:12:24AM +0100, Ruediger Pluem wrote:
> > Tried it in r1915391 and it seems to work. Not sure if there are
> > general downsides / objections with regards to symlinks in our
> >
On Fri, Jan 12, 2024 at 3:22 AM Ruediger Pluem wrote:
>
> Recently we seem to have new types of SPAM entries in Bugzilla. Instead of
> adding the SPAM message directly they look
> more like real bug reports / comments with some context / relation to httpd
> or even the specific bug (maybe AI
> Should we do something differently here for event/async MPM? I can't
> think of a good value (min of a few different things?)
Of course this is moot when event is working correctly as the read
shouldn't block.
> if (ccfg->in_keep_alive) {
> -/* For this read, the normal keep-alive timeout must be used */
> +/* For this read[_request line()], wait for the first byte using the
> + * normal keep-alive timeout (hence don't take this expected idle
> time
> + * into
On Thu, Jan 4, 2024 at 9:04 PM Jason Pyeron wrote:
>
> I am having some issue searching Bugzilla for any issue involving
> process_regexp in mod_headers.c .
>
> It finds nothing, so I am assuming I did something wrong in my search. Will
> file bug if not already filed.
>
> We are investigating
On Mon, Oct 16, 2023 at 11:10 AM Stefan Eissing via dev
wrote:
>
> Hi all,
>
> after fixing my merge mistake in rc2 (sorry!), we go again:
>
> Please find below the proposed release tarball and signatures:
>
> https://dist.apache.org/repos/dist/dev/httpd/
>
> I would like to call a VOTE over the
On Mon, Oct 16, 2023 at 9:13 AM Joe Orton wrote:
>
> On Mon, Oct 16, 2023 at 02:54:58PM +0200, Ruediger Pluem wrote:
> > Fails for me as well. Not sure what fails for Joe such that he removed the
> > include, but if it fails in case H2_USE_WEBSOCKETS is
> > not 1 I guess we could move the
> > So a few questions:
> >
> > - Is it reasonable as a standalone additional HTTPProtocolOption to
> > decide the behavior?
> > - Thoughts on behavior change in 2.4.x?
> > - 400 as a status code?
> >
> > https://httpwg.org/specs/rfc9112.html#rfc.section.6.1.p.15
> >
> > A server MAY reject a
the
connection after responding to such a request to avoid the potential
attacks.
(this is in ap_read_request())
--
Eric Covener
cove...@gmail.com
it if
RULEFLAG_QSLAST is set */
newrule->flags |= RULEFLAG_QSLAST;
}
else {
/* avoid getting a a query string via inadvertent capture */
newrule->flags |= RULEFLAG_QSNONE;
/* trailing ? has done its job, but splitoutqueryargs will
not chop it off */
*(a2_end-1) = '\0';
}
}
else if (newrule->flags & RULEFLAG_QSDISCARD) {
if (NULL == ap_strchr(newrule->output, '?')) {
newrule->flags |= RULEFLAG_QSNONE;
}
}
close?
--
Eric Covener
cove...@gmail.com
On Wed, Jun 28, 2023 at 8:14 AM Ruediger Pluem wrote:
>
>
>
> On 6/28/23 12:38 PM, cove...@apache.org wrote:
> > Author: covener
> > Date: Wed Jun 28 10:38:27 2023
> > New Revision: 1910650
> >
> > URL: http://svn.apache.org/viewvc?rev=1910650=rev
> > Log:
> > act more like pre-r1908097 with
> I am writing to you today to ask for your help in resolving this issue.
I don't think this issue required another thread. Have you tried
https://httpd.apache.org/docs/2.4/mod/mod_unixd.html#chrootdir ?
> But r->args is encoded. Hence they need to decode anyway as there could be
> other
> encoded stuff in it or spaces that have not been taken decoded from the path.
These are applications/configurations that were functional prior to
the change though.
I don't think the risk of differing spaces
On Thu, May 18, 2023 at 6:40 AM Ruediger Pluem wrote:
>
>
>
> On 5/18/23 3:17 AM, Eric Covener wrote:
> > bump? Just was reminded by a thread on reddit (config unclear but
> > probably not non-cfgi proxy as it's a PHP app)
> >
> > If the proxy modules would
PM Eric Covener wrote:
>
> On Tue, May 9, 2023 at 3:14 PM Ruediger Pluem wrote:
> >
> >
> >
> > On 5/9/23 8:01 PM, Eric Covener wrote:
> > > On Tue, May 9, 2023 at 11:51 AM Ruediger Pluem wrote:
> > >>
> > >>
> > >>
>
On Tue, May 9, 2023 at 3:14 PM Ruediger Pluem wrote:
>
>
>
> On 5/9/23 8:01 PM, Eric Covener wrote:
> > On Tue, May 9, 2023 at 11:51 AM Ruediger Pluem wrote:
> >>
> >>
> >>
> >> On 5/9/23 4:33 PM, Yann Ylavic wrote:
> >>> On Tu
On Tue, May 9, 2023 at 11:51 AM Ruediger Pluem wrote:
>
>
>
> On 5/9/23 4:33 PM, Yann Ylavic wrote:
> > On Tue, May 9, 2023 at 2:10 PM Yann Ylavic wrote:
> >>
> >> On Tue, May 9, 2023 at 12:55 PM Ruediger Pluem wrote:
> >>>
> >>>
)
To: apache/httpd
Cc: Eric Covener , Mention
Hi @covener <https://github.com/covener>. This is impacting lots of
existing websites already.
What is the downside if BCTLS can be enabled by default with an Apache
config option, and there is a new flag to disable it in each Rewri
[x]: Move the read/write repository from Subversion to Git and
leverage the features of Github (for now Actions and PR).
On Tue, Apr 25, 2023 at 2:45 PM Graham Leggett via dev
wrote:
>
> On 25 Apr 2023, at 07:45, Ruediger Pluem wrote:
>
> 2. Switching from Subversion to Git is mostly an emotional problem for me. We
> have some closer ties to Subversion by some
> overlaps in the community and via mod_dav_svn we
On Tue, Apr 25, 2023 at 2:45 AM Ruediger Pluem wrote:
>
>
>
> On 4/12/23 2:02 PM, Yann Ylavic wrote:
> > On Wed, Apr 12, 2023 at 1:31 PM Eric Covener wrote:
> >>
> >> On Wed, Apr 12, 2023 at 6:36 AM Yann Ylavic wrote:
> >>>
> >
On Mon, Apr 17, 2023 at 10:16 AM jean-frederic clere wrote:
>
> On 4/17/23 01:00, Eric Covener wrote:
> > On Fri, Apr 14, 2023 at 11:49 AM jean-frederic clere
> > wrote:
> >>
> >> Hi,
> >>
> >> I am try to gracefully stop a child process
On Fri, Apr 14, 2023 at 11:49 AM jean-frederic clere wrote:
>
> Hi,
>
> I am try to gracefully stop a child process instead using ap_assert(0),
> is there a "clean way" to do that?
I added something like this to our distribution in IBM to address a
hairy problem with our security library.
Each
On Wed, Apr 12, 2023 at 2:52 AM Ruediger Pluem wrote:
>
>
>
> On 4/11/23 11:36 PM, cove...@apache.org wrote:
> > Author: covener
> > Date: Tue Apr 11 21:36:55 2023
> > New Revision: 1909073
> >
> > URL: http://svn.apache.org/viewvc?rev=1909073=rev
> > Log:
> > PR66563: escaping of url releated
gt; >
> > Any more ideas? Help from infra needed?
> >
> > Regards;
> > Yann.
> >
> > [1]
> > https://docs.github.com/en/actions/managing-workflow-runs/approving-workflow-runs-from-public-forks
We are chatting with Daniel about it on ASF slack.
--
Eric Covener
cove...@gmail.com
On Sun, Apr 2, 2023 at 12:10 PM Eric Covener wrote:
>
> Hi all,
>
> Please find below the proposed release tarball and signatures:
>
> https://dist.apache.org/repos/dist/dev/httpd/
>
> I would like to call a VOTE over the next few days to release
> this candida
On Sun, Apr 2, 2023 at 12:10 PM Eric Covener wrote:
>
> Hi all,
>
> Please find below the proposed release tarball and signatures:
>
> https://dist.apache.org/repos/dist/dev/httpd/
>
> I would like to call a VOTE over the next few days to release
> this candida
:
730560d4aab3699aa59716bb75858f8432a902aeab3c380b4d3e0f6813e9ae4e278d3b7fdf63a4e94c07b5100933d8684d76f6095f3d60d48ea0f1458c9ed0b4
*httpd-2.4.57-rc1.tar.gz
The SVN candidate source is found at tags/2.4.57-rc1-candidate.
--
Eric Covener
cove...@gmail.com
Primarily to pick up PR66547 and the rewrite improvements, but I also
seen an h2 crash addressed.
--
Eric Covener
cove...@gmail.com
-/* arg3: optional flags field */
> newrule->forced_mimetype = NULL;
> newrule->forced_handler = NULL;
> newrule->forced_responsecode = HTTP_MOVED_TEMPORARILY;
> @@ -3863,6 +3872,9 @@ static const char *cmd_rewriterule(cmd_p
> newrule->cookie = NULL;
> newrule->skip = 0;
> newrule->maxrounds = REWRITE_MAX_ROUNDS;
> +newrule->escapes = newrule->noescapes = NULL;
> +
> +/* arg3: optional flags field */
> if (a3 != NULL) {
> if ((err = cmd_parseflagfield(cmd->pool, newrule, a3,
>cmd_rewriterule_setflag)) != NULL) {
>
>
--
Eric Covener
cove...@gmail.com
On Mon, Mar 13, 2023 at 2:01 PM Yann Ylavic wrote:
>
> On Mon, Mar 13, 2023 at 5:48 PM Yann Ylavic wrote:
> >
> > On Mon, Mar 13, 2023 at 5:42 PM Eric Covener wrote:
> > >
> > > On Mon, Mar 13, 2023 at 12:31 PM Yann Ylavic wrote:
> > > >
>
On Mon, Mar 13, 2023 at 12:31 PM Yann Ylavic wrote:
>
> On Mon, Mar 13, 2023 at 5:25 PM Eric Covener wrote:
> >
> > On Mon, Mar 13, 2023 at 12:05 PM Yann Ylavic wrote:
> > >
> > > I could get where you want to with the attached patch (before you
On Mon, Mar 13, 2023 at 12:05 PM Yann Ylavic wrote:
>
> On Mon, Mar 13, 2023 at 4:13 PM Ruediger Pluem wrote:
> >
> > On 3/13/23 4:04 PM, Eric Covener wrote:
> > > On Mon, Mar 13, 2023 at 10:59 AM Ruediger Pluem wrote:
> > >>
> > >>
&
On Mon, Mar 13, 2023 at 10:59 AM Ruediger Pluem wrote:
>
>
>
> On 3/13/23 3:23 PM, Eric Covener wrote:
> > Yann, can you check out the failure I committed and see if it's me or
> > unintended? Everything else went pretty smooth and looks useful in a
> > bind.
&g
+my $escape_tests = have_min_apache_version("2.4.57") ? scalar(@escapes) +
> scalar(@bflags) : 0;
>
> plan tests => @map * @num + 16 + $vary_header_tests + $cookie_tests +
> $escape_tests, todo => \@todo, need_module 'rewrite';
>
> @@ -216,6 +225,15 @@ if (have_min_apache_version("2.4.57")) {
> $r = GET($url, redirect_ok => 0);
> ok t_cmp $r->code, $expect;
> }
> +foreach my $t (@bflags) {
> +my $url= $t->[0];
> +my $expect= $t->[1];
> +t_debug "Check $url for $expect\n";
> +$r = GET($url, redirect_ok => 0);
> +t_debug("rewritten query '" . $r->header("rewritten-query") . "'");
> +ok t_cmp $r->header("rewritten-query"), $expect;
> +}
> +
> }
>
>
>
>
--
Eric Covener
cove...@gmail.com
On Mon, Mar 13, 2023 at 3:26 AM Ruediger Pluem wrote:
>
>
>
> On 3/11/23 10:31 PM, cove...@apache.org wrote:
> > Author: covener
> > Date: Sat Mar 11 21:31:14 2023
> > New Revision: 1908300
> >
> > URL: http://svn.apache.org/viewvc?rev=1908300=rev
> > Log:
> > test [P] flag
> >
> > Modified:
> >
On Mon, Mar 13, 2023 at 8:31 AM Yann Ylavic wrote:
>
> On Sat, Mar 11, 2023 at 11:10 PM wrote:
> >
> > Author: covener
> > Date: Sat Mar 11 22:10:09 2023
> > New Revision: 1908301
> >
> > URL: http://svn.apache.org/viewvc?rev=1908301=rev
> > Log:
> > add [BCTLS] alternative to [B] for 2.4.56
committed two related things to trunk this afternoon:
- allow anything if redirecting and no [NE] flag
- add another [B] like flag that escapes only controls and spaces.
On Sat, Mar 11, 2023 at 2:30 PM Eric Covener wrote:
>
> Pulling up some of the checks so we can consider the flag:
Pulling up some of the checks so we can consider the flag:
http://people.apache.org/~covener/patches/rewrite-escaping.diff
(needs to be duplicated in fixups hook)
On Fri, Mar 10, 2023 at 11:57 AM Yann Ylavic wrote:
>
> On Fri, Mar 10, 2023 at 4:34 PM Eric Covener wrote:
> >
>
> Allowing a space to be sent within the proxied request target is not an
> option,
> regardless of how the user has configured the server. The CVE fix was just to
> prevent an invalid target sent from us.
This context in mod_rewrite is not specific to proxying. The CVE is
addressed in a similar
On Fri, Mar 10, 2023 at 11:57 AM Yann Ylavic wrote:
>
> On Fri, Mar 10, 2023 at 4:34 PM Eric Covener wrote:
> >
> > Saw another report on users@
> >
> > Any thoughts on something like this to just allow spaces?
> > http://people.apache.org/~covener/pat
spaces either as \%20 (path or query string) or + (query
> string) does eliminate the problem for our mappings.
>
>
>
> From: Eric Covener
> Sent: Wednesday, March 8, 2023 8:31 PM
> To: dev@httpd.apache.org
> Subject: Re: [VOTE] [VOTE] Release httpd-2.4.56-rc1 as httpd-2.4.56
On Thu, Mar 9, 2023 at 12:14 PM wrote:
>
> On 3/9/23 05:30, Eric Covener wrote:
> >
> >
> > On Wed, Mar 8, 2023 at 11:02 PM BUSH Steve > <mailto:steven.b...@3ds.com>> wrote:
> >
> > Correction!
> >
> > I used our test t
On Wed, Mar 8, 2023 at 11:02 PM BUSH Steve wrote:
> Correction!
>
> I used our test template for the rule when I e-mailed just now, but once
> it is converted to the apache httpd.conf format, the actual rule appears in
> the httpd.conf as:
>
> RewriteRule ^/zoology/animals/reset/(\d+)$
On Wed, Mar 8, 2023 at 4:57 PM BUSH Steve wrote:
> Please remember to send the release announcement to annou...@httpd.apache.org
Maybe a moderation issue? Can anyone with the proper hat help check it
out please?
eally bad, cosnider replacing the various CHANGES files
> on dist/httpd.
> + If CHANGES is really bad, consider replacing the various CHANGES files
> on dist/httpd.
>
> On vote failure or when aborting for other reasons:
> > $DEV_TOOLS/release/reset-candidate.sh version
>
>
--
Eric Covener
cove...@gmail.com
I am going to call this one early and proceed with the release. 9
binding +1 and no other votes.
fielding, covener, icing, gbechis, ylavic, jblond, jorton, steffenAL, rpluem
On Tue, Mar 7, 2023 at 3:18 AM Ruediger Pluem wrote:
>
>
>
> On 3/5/23 10:31 PM, Eric Covener wrote
On Sun, Mar 5, 2023 at 4:31 PM Eric Covener wrote:
>
> Hi all,
>
> Please find below the proposed release tarball and signatures:
>
> https://dist.apache.org/repos/dist/dev/httpd/
>
> I would like to call a VOTE over the next few days to release
> this candidate tarball
:
68b1e8c3e3436e6947c0ccfeee6fea83254560e4d43bddbc79a4206d804a6dda6662cf5734e0b2f4019ab5c1fff40141a16dd7698e8fe72b7fd343fbebd42724
*httpd-2.4.56-rc1.tar.gz
The SVN candidate source is found at tags/2.4.56-rc1-candidate.
--
Eric Covener
cove...@gmail.com
> Modified: httpd/httpd/trunk/modules/http2/mod_proxy_http2.c
> URL:
> http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/http2/mod_proxy_http2.c?rev=1907972=1907971=1907972=diff
> ==
> ---
so get all of your destabilizing fixes in while you can!
> FWICT, AsyncRequestWorkerFactor started with r1137755 as a tunable
> overcommit for the per-child queuing capacity, that is (IIUC) to favor
> queuing connections over spawning new children (preferably when
> requests can be handled without or with limited blocking).
I had internalized this
Does your config have directives from dav_fs in two overlapping sections?
On Wed, Mar 1, 2023, 4:36 AM Emmanuel Dreyfus wrote:
> Hello
>
> I am trying to add a per-directory confioguration directive to mod_dav_fs,
> but the merge_dir_config() calback is never called, and I always get the
>
On Wed, Feb 15, 2023 at 8:49 AM Joe Orton wrote:
>
> Per my previous Travis is dead, long live GitHub actions.
>
> I propose to broaden the RTC exception in 2.4.x/STATUS to allow CI
> config changes and scripts to be merged from trunk:
>
> Index: STATUS
>
On Fri, Feb 10, 2023 at 9:17 AM Emmanuel Dreyfus wrote:
>
> Hello
>
> I am ready to commit MS-WDV support for mod_dav. There are many other
> MS extensions, and I just wonder if we should prepare to configure MS
> extensions one by one or as a whole
>
> I mean, what directive makes more sense in
Server 2.4.46 and earlier (or if
> + module="mod_proxy_wstunnel">ProxyWebsocketFallbackToProxyHttp
> +from 2.4.48 and later disables mod_proxy_http
> handling), see the
> +documentation of mod_proxy_wstunnel for how to
> proxy the WebSocket
> +protocol.
> +
>
>
>
>
>
--
Eric Covener
cove...@gmail.com
> We are still very interested in contributing this module upstream and helping
> to maintain it. Please, let us know what improvements or changes would be
> needed for it to be considered ready for inclusion.
As a pessimistic PMC member not caring about WASM or these languages,
I worry that
be looked at. There seems to be a mix of "timeline"
> entries that are not consistent throughout the dir (even when accounting
> for v4.0 vs v5.0 CVE data), and those were throwing spanners into the
> build process.
>
> The CVE page should be back now, however.
>
> On 2023-01-17
Humbedooh is helping.
Note that the SVN repo is dead content, real content is in
g...@github.com:/apache/httpd-site
On Tue, Jan 17, 2023 at 11:39 AM Eric Covener wrote:
>
> I think it's
> https://svn.apache.org/repos/asf/httpd/site/trunk/content/security/cvejsontohtml.py
> it
g commit(s) were added to refs/heads/main by this push:
> > new 83e7062 publishing release httpd-2.4.55
> > 83e7062 is described below
> >
> > commit 83e7062476d4a912f20ab275137b9587d441fdf0
> > Author: Eric Covener
> > AuthorDate: Tue Jan 17 11:
Vote, passes w/ 6 binding +1 and no -1:
+1 covener, jorton, icing, ylavic, jim, gbechis
I will continue the release process tomorrow.
On Tue, Jan 10, 2023 at 8:40 AM Eric Covener wrote:
>
> Hi all,
>
> Please find below the proposed release tarball and signatures:
>
> https
-v http://localhost/games
> * Trying 127.0.0.1:80...
> * Connected to localhost (127.0.0.1) port 80 (#0)
> > GET /games HTTP/1.1
> > Host: localhost
> > User-Agent: curl/7.85.0
> > Accept: */*
> >
> * Mark bundle as not supporting multiuse
> < HTTP/1.1 301 Moved Permanently
> < Date: Thu, 12 Jan 2023 15:20:59 GMT
> < Server: Apache/2.4.54 (Fedora Linux)
> < Location: http://localhost/games/
> < Content-Length: 231
> < Content-Type: text/html; charset=iso-8859-1
> <
>
>
> 301 Moved Permanently
>
> Moved Permanently
> The document has moved href="http://localhost/games/;>here.
>
>
>
> What's going on here?
>
--
Eric Covener
cove...@gmail.com
rent child processes due to TCP queuing/scheduling (and the
> backend connection would not be reused obviously).
Looks like no as they are two one-shot curl executable calls, but
from grepping around the framework does have the easy ability to
append to the config and restart for a test.
--
Eric Covener
cove...@gmail.com
On Tue, Jan 10, 2023 at 10:17 AM Giovanni Bechis wrote:
>
> On Tue, Jan 10, 2023 at 08:40:52AM -0500, Eric Covener wrote:
> > Hi all,
> >
> > Please find below the proposed release tarball and signatures:
> >
> > https://dist.apache.org/repos/dist/dev/httpd/
On Tue, Jan 10, 2023 at 8:40 AM Eric Covener wrote:
>
> Hi all,
>
> Please find below the proposed release tarball and signatures:
>
> https://dist.apache.org/repos/dist/dev/httpd/
>
> I would like to call a VOTE over the next few days to release
> this candida
:
ca0d03b5e74078977378fe711ca3ed8cf63c109b7dbe73f2c43f7f30f7e522bbe46f93189a183b7675394d57fffb0c2526facd8d40508be984a7a8f64d18f8d6
*httpd-2.4.55-rc1.tar.gz
The SVN candidate source is found at tags/2.4.55-rc1-candidate.
--
Eric Covener
cove...@gmail.com
On Mon, Jan 9, 2023 at 10:35 AM Ruediger Pluem wrote:
>
>
>
> On 1/9/23 3:54 PM, Emmanuel Dreyfus wrote:
> > On Mon, Jan 09, 2023 at 09:37:37AM -0500, Eric Covener wrote:
> >> svn relocate http://svn.apache.org https://svn.apache.org
> >
> > That
On Mon, Jan 9, 2023 at 10:11 AM Ruediger Pluem wrote:
>
>
>
> On 1/9/23 2:16 PM, cove...@apache.org wrote:
> > Author: covener
> > Date: Mon Jan 9 13:16:50 2023
> > New Revision: 1906494
> >
> > URL: http://svn.apache.org/viewvc?rev=1906494=rev
> > Log:
> > Merge r1663123, r1670431 from trunk:
>
On Mon, Jan 9, 2023 at 9:23 AM Emmanuel Dreyfus wrote:
>
> On Mon, Jan 09, 2023 at 08:05:30AM -0500, Eric Covener wrote:
> > Yes. Most times, the person who proposed it does the final backport.
> > Sometimes, the last person to vote or someone preparing a release will
> >
On Mon, Jan 9, 2023 at 3:48 AM Emmanuel Dreyfus wrote:
>
> Hello
>
> I see in httpd/branches/2.4.x/STATUS that my DAVlockDiscovery
> contribution now has three +1 including mine. May I commit
> the change to the branch?
>
> *) mod_dav: DAVlockDiscovery option to disable WebDAV lock discovery
>
Hi all, I will be making my first attempt to RM early next week (Jan 10).
Reminder to get any backports in order before then.
--
Eric Covener
cove...@gmail.com
o truncate.
This would also replace some of the "misuse" of the confusing -n I
added that is very prickly to make intuitive without -t.
--
Eric Covener
cove...@gmail.com
in ? */
> -else if (PROXY_WORKER_IS_HCFAILED(worker)) {
> + else if (PROXY_WORKER_IS_HCFAILED(worker) ||
> PROXY_WORKER_IS_ERROR(worker)) {
> if (rv == APR_SUCCESS) {
> worker->s->pcount += 1;
> if (worker->s->pcount >= worker->s->passes) {
>
>
--
Eric Covener
cove...@gmail.com
On Tue, Nov 22, 2022 at 3:46 AM Sandeep 1. Maurya (EXT-NSB)
wrote:
> As per OpenSSL release strategy "Version 1.1.1 will be supported until
> 2023-09-11 (LTS)". Will HTTPD extend the support for OpenSSL 1.1.1 on EL8
> beyond this timeline or there any plan to update to OpenSSL 3.0
Sounds like
Hi, I someone inexplicably cross-posted this snippet to several
subreddits as helpful advice. I'd like to gut it the
scriptalias/nonscriptalias sections and just add a note about limiting
the scope that CGI is enabled
http://people.apache.org/~covener/scritpalias.diff
Does anyone see anything
:
>>
>>> Hell no. But there are consequences to treating the project as a guinea
>>> pig for httpd.
>>>
>>> On Fri, Oct 28, 2022 at 4:50 PM Eric Covener wrote:
>>>
>>>> Would you like to maintain it outside of httpd?
>>>&g
1 - 100 of 2105 matches
Mail list logo
