cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
141,661 Commits 1 Branch 0 Tags
Commit Graph

108 Commits

Author SHA1 Message Date
sthen
457db7ecae update to apache-httpd 2.4.41 2019-08-13 21:14:11 +00:00
sthen
77f7cc9c61 replace simple PERMIT_PACKAGE_CDROM=Yes with PERMIT_PACKAGE=Yes 2019-07-12 20:49:33 +00:00
sthen
0bd5085b40 enable mod_authnz_fcgi in Apache httpd, requested by Bartosz Kuźma 2019-06-16 21:08:56 +00:00
sthen
b2b83fc9e5 backport Apache httpd fix affecting file uploads, they were broken in 2.4.39 
unless the admin specifies an explicit RequestReadTimeout.  ok naddy@

https://bz.apache.org/bugzilla/show_bug.cgi?id=63325
https://svn.apache.org/viewvc?view=revision&revision=1857129
 2019-04-08 23:25:23 +00:00
sthen
1a9f1b917c bump REVISION in -current apache-httpd to ensure that the packages for 
6.5 (which have a subpackage restructuring) have higher version numbers
than -stable
 2019-04-02 09:27:46 +00:00
sthen
3eb075f84a uodate to apache httpd 2.4.39 - important security fixes 
https://httpd.apache.org/security/vulnerabilities_24.html#2.4.39
 2019-04-02 08:17:08 +00:00
sthen
71e15dc80c merge apache-httpd-common and apache-httpd, there is no need to split 
the files now that the openbsd-patched apache-httpd is no more
 2019-03-28 12:38:15 +00:00
sthen
8b8803a6cd move the REVISION line where it's more likely to be seen next time 2019-03-28 11:46:55 +00:00
solene
7c5d99a082 Update to apache-httpd-2.4.38 
ok giovanni@
 2019-03-28 11:10:23 +00:00
sthen
118219e296 - add libressl patch needed to unbreak startup with ssl enabled 
(SSL_CTX_set_post_handshake_auth), problem reported by Helmut Kiessling

- remove no-longer-needed chunk of the patch
 2018-11-01 18:05:01 +00:00
sthen
dbf1b8ec50 update to apache-httpd-2.4.37 2018-10-24 13:23:59 +00:00
sthen
e202ec2bda security update to apache httpd 2.4.35, ok giovanni@ 
Since we no longer have Apache 1.x there's no point renaming most of the
installed files any more, only the ones that conflict with base (httpd and
htpasswd), which avoids some tiresome hand merges that are needed in the
manpages for most updates. Courtesy symlinks added for now so that the
'xxx2' variants still work.
 2018-10-01 15:21:24 +00:00
sthen
89f03cf7b9 security update to apache-httpd 2.4.33 2018-03-29 19:30:53 +00:00
sthen
314981266b fix, now we havef DH_set0_pqg, BIO_set_init, BIO_get_data, BIO_set_data 
(code in same ifdef also wants #define BN_get_*_prime_*, BIO_get_shutdown,
BIO_set_shutdown, DH_bits)
 2018-02-18 21:02:45 +00:00
sthen
6d5abb6039 regen patches, no change 2018-02-18 20:38:15 +00:00
jsing
ada1b018a3 LibreSSL has had SSL_CTX_set_{min,max}_proto_version() for a while now, 
so we do not gain much from carrying this diff in ports.

ok sthen@
 2018-02-14 16:06:54 +00:00
sthen
91cf9fde33 update to apache-httpd 2.4.29, from David CARLIER (slightly overdue commit!) 2018-01-12 22:11:41 +00:00
rpe
9a8b5ccd06 Change the shebang line from /bin/sh to /bin/ksh in all ports rc.d 
daemon scripts and bump subpackages that contain the *.rc scripts.

discussed with and OK aja@
OK tb
 2018-01-11 19:27:01 +00:00
sthen
bf566a6424 patch apache httpd CVE-2017-9798, backported from upstream's branches/2.4.x 
This is a use after free error that causes a corrupted Allow header to
be constructed in response to HTTP OPTIONS requests. It can leak pieces
of arbitrary memory from the server process that may contain secrets.
The memory pieces change after multiple requests, so for a vulnerable
host an arbitrary number of memory chunks can be leaked.

The bug appears if a webmaster tries to use the "Limit" directive with
an invalid HTTP method.
 2017-09-18 19:25:38 +00:00
sthen
7b49e4d578 update to httpd-2.4.27 2017-07-14 17:14:33 +00:00
sthen
debe999b71 additional patch for ab with earlier libressl (SSL_CTX_set_*_proto_version), 
not needed for -current, but easier to keep in sync for -stable if it's here
 2017-07-14 17:10:46 +00:00
sthen
15b9c75021 oops, reinstate a line i dropped by mistake 2017-07-14 17:06:51 +00:00
sthen
68720c1949 security update to apache-httpd-2.4.26, from David CARLIER with minor tweaks from me 
(2.4.27 to follow)
 2017-07-14 17:04:12 +00:00
sthen
ac9028ac6d update to apache-httpd-2.4.25 
CVE-2016-8740 CVE-2016-5387 CVE-2016-2161 CVE-2016-0736 CVE-2016-8743
 2017-03-17 07:36:35 +00:00
sthen
17b134e289 update to apache-httpd 2.4.23, ok ajacoutot 2016-07-05 14:32:16 +00:00
ajacoutot
af8bf723fa Properly bump REVISION. 
spotted by Markus Lude
 2016-06-22 18:52:16 +00:00
ajacoutot
687d5ed71b So, mod_perl will reset $0 to argv[0] which will break the rc.d script 
functionality. So let's use apachectl2 for start and stop, disable rc_reload
(which should have been done anyway) and relax the default pexp (workaround).

breakage reported by Michael Lechtermann
ok sthen@
 2016-06-22 08:27:07 +00:00
sthen
e758dcc5d4 replace apache-httpd-openbsd, keeping -common separate for now to avoid pain 
with PLISTs
 2016-04-28 18:22:17 +00:00
sthen
b7da9d14d0 http2 works here now, so enable it 2016-04-28 08:51:35 +00:00
ajacoutot
8ced2ebf85 Update to apache-httpd-2.4.20. 2016-04-28 08:40:42 +00:00
naddy
2c4204cf62 remove SHARED_ONLY from simple ports that use the gettext or libiconv module 2016-03-18 21:38:22 +00:00
sthen
3e6f016f25 Disable Apache httpd's mod_http2.so for now, as reported by 
Pedro de Oliveira it isn't working on OpenBSD yet.
 2016-01-15 23:40:02 +00:00
ajacoutot
4edf8e6414 Don't sample /var/www/conf/modules.samples/, let webapps do that. 
Optionaly include /var/www/conf/modules/*.conf instead of /etc/apache2/modules/*.conf,
this allows the usual MESSAGE linking from modules.samples/ to modules/ to work
out-of-the-box.

ok sthen@
 2015-12-30 09:59:31 +00:00
ajacoutot
811225a15d Update to apache-httpd-2.4.18. 2015-12-23 14:51:55 +00:00
sthen
94b3768d61 As found by ajacoutot, nghttp2 was getting picked up by httpd's autoconf; 
make it an explicit dependency and package mod_http2.
 2015-12-01 16:45:30 +00:00
sthen
f4a0b2a055 update to apache-httpd-2.4.17, and add scaffolding to use the same type of 
modules.sample mechanism as apache-httpd-openbsd
 2015-10-27 18:18:17 +00:00
claudio
3fc98fa5b9 Make sure mod_cgi and mod_cgid are built and installed. Depending if apache 
is prefork or threaded one or the other needs to be used to allow CGI handling.
For fast cgi mod_proxy_fcgi should be used.
OK sthen@ tested by Alessandro DE LAURENZIS
 2015-10-24 12:17:50 +00:00
sthen
ecf118bf1c fix miscommit that removed @rcscript (thanks, update-plist!) 2015-09-13 12:37:49 +00:00
sthen
9843dd1bd1 Move to improved version of no_ssl3 patch for apache-httpd, thanks to 
Kaspar Brand (https://bz.apache.org/bugzilla/show_bug.cgi?id=58349)
- small tweak from Kaspar's patch for 2.4 backport.
 2015-09-13 12:31:45 +00:00
ajacoutot
1c3749f791 Do not pick up gawk. 2015-09-10 10:30:04 +00:00
jca
805dbb689d Guard use of SSLv3*method. Die if SSLv3 forced in conf but unavail. 
Fixes "undefined symbol" errors at dlopen time.

Reported by Pedro de Oliveira, ok sthen@
 2015-09-07 06:32:04 +00:00
ajacoutot
09eb14f688 Don't own /var/www/htdocs/, it's part of mtree. 
Don't ship the empty example logs directory.
 2015-07-18 20:01:13 +00:00
sthen
0b10ec0e46 cope with sslv3 being disabled 2015-07-18 04:59:42 +00:00
sthen
90cbc28af4 adjust @pkgpath depending on flavour, so updates for apache-httpd--ldap work 
correctly. (in reality this wasn't a big problem as we don't build the ldap
flavoured version in bulk builds anyway, due to dependence on conflicting
versions of apr-util).
 2015-07-18 01:11:40 +00:00
ajacoutot
533ae8b9ab Update to apache-httpd-2.4.16. 
ok sthen@
 2015-07-18 00:55:09 +00:00
ajacoutot
5ecb9c4fa0 Cleanup. 2015-07-18 00:33:53 +00:00
ajacoutot
31c647ab8a Move default document root to /var/www to be able to switch between web 
servers easily; idea from stsp@
Split the package into -main and -common (which holds common files for
apache 1 and 2).

discussed with stsp@ sthen@
ok stsp@
 2015-07-17 23:57:58 +00:00
ajacoutot
349bd79515 Change the default user to "www". 
This makes it easier to switch from one web server to the other.

discussed with stsp@ sthen@
ok sthen@
 2015-07-17 19:52:06 +00:00
stsp
b016c6702e Update www/apache-httpd to 2.4.12. 
Manual configuration updates might be required, see
http://httpd.apache.org/docs/2.4/upgrading.html
MPMs can now be loaded at runtime. The default config keeps using 'prefork'.
Based on an initial diff by claudio@
ok sthen@ ajacoutot@
 2015-05-15 08:08:03 +00:00
naddy
6bb8d0674b Drop USE_GROFF from ports where the formatting differences are acceptable 
or mandoc provides the more useful output.
 2015-02-16 22:57:07 +00:00