summaryrefslogtreecommitdiffstats
path: root/usr.sbin/httpd/src (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* get rid of the ConfigStart/End section used by the weird fragile apachehenning2007-02-151-36/+0
| | | | | | | | | | | | | | | | | | configure system. the mod_auth_digest module has such a section, and there (via two other indirections, of course!) -DDEV_RANDOM=/dev/arandom is added to CFLAGS. via a few more bizarre indicrections that ends up in ap_config_auto.h. Since ap_config_auto.h gets installed in /usr/lib/apache/include/ and thus might be used by 3rd party modules, we must be very careful with removing shitz there. But I kinda doubt anything relies on a define that is only there when a module marked as experimental is compiled in. since we long ago made mod_auth_digest use arc4random and do not use said DEV_RANDOM define at all any more, we don't need it ourselves. so nuke the mod_auth_digest ConfigStart/End section, which doesn't do anything else, alltogether. Since mod_auth_digest is only compiled as DSO, the define was missing on static archs, therefore breaking the build on vax an friends since espie put the pregenerated ap_config_auto.h in. ok millert deraadt
* g/c NO_DL_NEEDED, it is no longer used by os/unix/os.cmillert2007-02-141-9/+1
|
* unbreak compile on 64bit systems; no cookie for espie. ok millerthenning2007-02-132-25/+7
|
* remove prereq, by using a pre-generated include file (this one should nowespie2007-02-132-2/+86
| | | | | | | be MI since we removed stuff that was arch-dependent). The Configure script still rebuilds a copy of that file, and we check it for diffs. okay millert@
* remove varying parts from generated configure info:espie2007-02-033-104/+18
| | | | | | | | | - ap_snprintf can grab needed types from stdint.h - expat-lite can grab byte-order from system includes. no breakage in modules in the ports tree. work by me and millert@, ok miod@.
* apachectl picks up httpd_flags from rc.conf for some time now - and thathenning2007-01-301-2/+2
| | | | | | | is good! so let's do it in all cases... missed case: on restart and graceful, when apachectl figures out that no httpd is running, it tries to start one. found out the hard way by yours truly
* Spelling.krw2006-12-232-2/+2
| | | | | | 'preceeding' -> 'preceding' 'preceeds' -> 'precedes' 'preceeded' -> 'preceded'
* fix proxying on big-endian 64-bit machines, u_long is not the size ofderaadt2006-11-061-1/+1
| | | | an ip address, that's for sure; pr 5232 arjones@simultan.dyndns.org
* escape error response to unsupported Expect: header, fixesdjm2006-09-261-2/+3
| | | | CVE-2006-3918; ok cloder@
* add ProxyPreserveHost support to mod_proxy. it allows to pass the originalfgsch2006-08-013-5/+54
| | | | Host header to the backend. default off. henning@ ok.
* avoid printing the server built datehenning2006-07-283-7/+0
|
* avoid printing server built date, we set that to "unknown" anywayhenning2006-07-281-5/+1
| | | | leave the function there of course, it's part of the API
* A vulnerability has been reported in Apache HTTP Server, which potentially canhenning2006-07-281-2/+2
| | | | | | | | | be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a off-by-one error in mod_rewrite and can be exploited to cause a one-byte buffer overflow. http://secunia.com/advisories/21197/ report "Alexey E. Suslikov" <cruel@texnika.com.ua>, the obvious fix mailed in by Stuart Henderson <stu@spacehopper.org>
* set cur & max limits with MaxFOOPerChild instead of cur twicehenning2006-05-151-6/+6
| | | | From: John Wong <johnw@wonghome.net>, ok ckuethe
* Fix pr 5073, httpd/mod_ssl can leak file descriptors in thebeck2006-04-131-2/+6
| | | | | | | | | case where an ssl connection is not found in the scache dbm Reported by, and fix suggested by Darrin Chandler <darrin@puffy.asicommunications.com> testing by me, ok henning@
* dead code removalhenning2006-04-041-51/+0
|
* nuke bundled regex lib, we have and always used the OpenBSD one of coursehenning2006-04-0435-5563/+79
| | | | From: Daniel Ouellet <daniel@presscom.net>
* rip out bundled dbm, we've always used our dbmhenning2006-04-0412-2184/+0
| | | | From: Daniel Ouellet <daniel@presscom.net>
* Remove four unused functions: ap_sync_scoreboard_image, reopen_scoreboard,ray2006-03-226-43/+3
| | | | | | | | put_scoreboard_info, and update_scoreboard_global. From Daniel Ouellet, plus one line he missed. OK henning@ and otto@
* more getopt() EOF crud; adobriyan@gmailderaadt2006-03-121-1/+1
|
* allow ressource limits for child processes to be set.henning2006-02-228-5/+173
| | | | | from Chris Kuethe <chris.kuethe@gmail.com> running at UofA for months now, ok beck niallo, also tested mbalmer
* spelling in error message; ok otto@stevesk2006-02-131-2/+2
|
* Fix a few "discards qualifier" warnings. From A. Farber in PR 5114.otto2006-02-112-5/+5
| | | | ok kettenis@
* fix a cross-site scripting vulnerability in mod_imap;robert2006-01-202-1/+7
| | | | | | CVE-2005-3352 ok niallo@; henning@ no objections
* Disable the TRACE method completely. It is a security risk and is notcloder2005-11-111-5/+1
| | | | | that useful for debugging. OK henning, deraadt
* suexec.html.en was renamed, so update reference accordingly;jmc2005-09-091-8/+4
| | | | | | move the whole section to SEE ALSO, which is more appropriate anyway; from alexey e. suslikov;
* ensure that renegotiation is performed for a transition from "SSLVerifyClientniallo2005-09-081-2/+2
| | | | | | | | optional" to "SSLVerifyClient require" fixes CAN-2005-2700 ok henning@, "go for it" deraadt@
* catched->caughtmiod2005-08-141-1/+1
|
* Remove 'ab' (apache benchmark) from the tree becauserobert2005-06-282-1692/+2
| | | | | | | we don't install it, and 'ab' itself is buggy so that it will give false results. ok henning@
* $OpenBSD -> $OpenBSD$robert2005-06-207-7/+7
| | | | ok henning@
* zap usage of __LINE__ so we can do KNF without binary changes.niallo2005-06-153-5/+5
| | | | ok henning@
* setres[ug]id; ok deraadt@djm2005-05-031-3/+3
|
* ap_compat.h defines MD5Update to one thing, but now that we use functionsniallo2005-04-051-1/+0
| | | | | | | | | | | from md5.h this breaks things which use the compatibility header, such as some 3rd party modules. so simply remove this define from ap_compat.h original breakage found and reported in ports/www/mod_log_sql by naddy@ ok henning@
* KNFniallo2005-03-2830-633/+710
| | | | no binary changes.
* - More KNFniallo2005-03-282-7/+9
| | | | | | - Forgot an $OpenBSD$ no binary changes.
* one line was 81 chars long. break it up.niallo2005-03-281-2/+3
|
* clean up this code. make it conform as closely to KNF as possible withoutniallo2005-03-2816-2193/+2238
| | | | | | | introducing any binary changes. two files here have different binary output when the number of lines changes, we will finish cleaning those in another pass.
* rip out httpd's homegrown sha-1 implementation and use our own.niallo2005-03-282-208/+9
| | | | | | ok henning@, mod_ssl verified by me. From Sergey Smitienk <hunter@comsys.com.ua> via henning@
* - KNFniallo2005-03-284-682/+27
| | | | | | - remove os-aix-dso.c since we don't even compile it. no binary changes.
* rip out httpd's homegrown md5 implementation and use our own.niallo2005-03-282-247/+27
| | | | | | ok henning@, mod_ssl and digest authentication verified by me. From Sergey Smitienk <hunter@comsys.com.ua>
* - convert to getopt(3)niallo2005-03-271-15/+24
| | | | | | - add a usage() function that exits non-zero ok henning@ otto@
* use getopt() for argument list parsingrobert2005-03-251-37/+37
| | | | ok otto@ henning@
* whitespace;jmc2005-03-241-3/+3
|
* support blowfish encryption in the password files and use it by defaulthenning2005-03-242-14/+28
| | | | From: Sergey Smitienko <hunter@comsys.com.ua>, markus ok
* Write this in real C, not some bullshit GNU extension that other compilersderaadt2005-03-101-1/+3
| | | | do no understand.
* Do not leak Keynote sessions on failure. Also check snprintf returncloder2005-03-091-16/+29
| | | | | value for truncation and failure. OK hshoexer
* Check kn_init for failure.cloder2005-03-091-0/+7
| | | | OK hshoexer@, henning@
* Fix scoping error in fatal error check during passphrase/privkey handling.aaron2005-02-171-2/+2
| | | | henning@, otto@, robert@ ok
* Don't close the dbm until after we have copied the datum retrieved by theaaron2005-02-131-1/+2
| | | | | | fetch into a local buffer. Adapted from r1.10 of the same file in Apache CVS. henning@ ok
* cleanup and unifdef'ing, no change in object fileshenning2005-02-0947-5164/+56
| | | | work by Daniel Ouellet <daniel@presscom.net>
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.