https://bz.apache.org/bugzilla/show_bug.cgi?id=62543
Rich Bowen <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|NEW |RESOLVED --- Comment #1 from Rich Bowen <[email protected]> --- Documented that http/1.1 is always implicitly available and cannot be excluded by omitting it from the Protocols directive. The ALPN callback in mod_ssl (ssl_callback_alpn_select) falls back to ap_get_protocol() -- which defaults to http/1.1 -- whenever ap_select_protocol() finds no match in the configured protocols. The base HTTP/1.1 request processing also runs unconditionally without checking ap_is_allowed_protocol(). The Protocols directive controls which additional protocols (such as h2) are available for negotiation, and their preference order when used with ProtocolsHonorOrder. It does not and cannot exclude http/1.1. Fixed in r1933770 (trunk), r1933771 (2.4). -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
