Module name: src
Changes by: deraadt@cvs.openbsd.org 2014/08/04 00:35:10

Modified files:
usr.sbin/httpd : proc.c server_http.c httpd.h

Log message:
whitespace

Module name: src
Changes by: deraadt@cvs.openbsd.org 2014/08/04 00:35:31

Modified files:
usr.sbin/httpd : control.c

Log message:
no need for param.h

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 05:09:25

Modified files:
usr.sbin/httpd : Makefile config.c control.c httpd.c log.c
parse.y proc.c server.c server_fcgi.c
server_file.c server_http.c

Log message:
httpd doesn't support SSL/TLS yet, remove the remaining bits.
The secrect plan is to add it later using the ressl wrapper library.

Module name: www
Changes by: brett@cvs.openbsd.org 2014/08/04 05:52:21

Modified files:
. : plus.html

Log message:
plus.html for July 14-27.

Module name: src
Changes by: jasper@cvs.openbsd.org 2014/08/04 07:24:42

Modified files:
share/man/man8 : autoinstall.8

Log message:
fix small layout inconsistency

ok'd by many

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 08:49:24

Modified files:
usr.sbin/httpd : httpd.c httpd.h server_fcgi.c

Log message:
Implement PATH_INFO and add DOCUMENT_ROOT.
PATH_INFO was requested by naddy@ who successfully tested it with "cvsweb".

ok naddy@

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 09:48:01

Modified files:
lib/libressl : ressl.c

Log message:
Free the SSL context first and let the reference counting do its thing.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 09:49:28

Modified files:
usr.sbin/httpd : Makefile config.c control.c httpd.c
httpd.conf.5 httpd.h parse.y proc.c server.c
Added files:
usr.sbin/httpd : logger.c

Log message:
Add initial support for log files in /var/www/logs/. Logging with
syslog is still supported but disabled by default.

ok deraadt@

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 09:55:26

Modified files:
lib/libressl : ressl.c ressl.h

Log message:
Improve ressl_{read,write} handling of non-blocking reads/writes.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 09:57:25

Modified files:
usr.sbin/httpd : logger.c

Log message:
Print error message if the log files cannot be opened.

Module name: www
Changes by: beck@cvs.openbsd.org 2014/08/04 09:58:09

Modified files:
libressl : index.html

Log message:
Link an OpenSSL page for OpenSSL.

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 09:58:29

Modified files:
lib/libressl : ressl.c ressl_internal.h

Log message:
Provide a utility function for loading a private/public keypair.

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 10:07:25

Modified files:
lib/libressl : ressl_internal.h ressl_server.c

Log message:
Provide a function that returns a server connection context.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 10:07:59

Modified files:
etc/examples : httpd.conf
usr.sbin/httpd : parse.y

Log message:
Change grammar from "log [style]" to "log style [style]".

Module name: www
Changes by: deraadt@cvs.openbsd.org 2014/08/04 10:08:16

Modified files:
. : 56.html

Log message:
update CD list

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 10:18:42

Modified files:
lib/libressl : ressl.c ressl_internal.h ressl_server.c

Log message:
A ressl server needs different configuration from a ressl client - provide
a specific server configuration function and call this from
ressl_configure.

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 10:19:50

Modified files:
lib/libressl : ressl_server.c

Log message:
Return -1 on error (not 1).

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/04 10:34:11

Modified files:
lib/libressl : ressl.h ressl_server.c

Log message:
Implement ressl_accept_socket, which allocates a new server connection
context (if necessary) and handles the TLS/SSL handshake over the given
socket.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 11:12:44

Modified files:
usr.sbin/httpd : httpd.8 httpd.conf.5

Log message:
manpage tweaks about logging

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 11:38:12

Modified files:
usr.sbin/httpd : Makefile config.c httpd.conf.5 httpd.h parse.y
server.c

Log message:
Proxy commit for jsing@:
"Add TLS/SSL support to httpd, based on the recent ressl commits."

From jsing@
ok reyk@

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 11:43:20

Modified files:
usr.sbin/httpd : server_file.c

Log message:
Redirect to https:// if SSL/TLS is enabled.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 11:50:48

Modified files:
etc/examples : httpd.conf

Log message:
Add HTTPS server example.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 12:00:06

Modified files:
usr.sbin/httpd : config.c server_fcgi.c

Log message:
Add HTTPS = on CGI variable.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/04 12:12:15

Modified files:
usr.sbin/httpd : httpd.8 httpd.h server.c

Log message:
Temporarily move the default location of the SSL/TLS server key and
certificate from /var/www/ to /var/www/conf/. Don't get scared - this
will be changed soon! They're currently located in the chroot
directory but will be moved outside as soon as we adopted some of the
key privsep from relayd in ressl/httpd.

Module name: src
Changes by: naddy@cvs.openbsd.org 2014/08/04 14:17:09

Modified files:
etc : rc

Log message:
enable httpd; ok deraadt@

Module name: www
Changes by: deraadt@cvs.openbsd.org 2014/08/04 18:19:25

Modified files:
. : donations.html

Log message:
update donation mechanisms

Module name: www
Changes by: lteo@cvs.openbsd.org 2014/08/04 21:00:41

Modified files:
. : 56.html

Log message:
Remove mentions of the discontinued hp300, mvme68k, and mvme88k ports.

Module name: www
Changes by: deraadt@cvs.openbsd.org 2014/08/04 21:26:27

Modified files:
. : 55.html 56.html

Log message:
pretty signify key blocks

Module name: www
Changes by: deraadt@cvs.openbsd.org 2014/08/04 22:09:19

Modified files:
. : donations.html

Log message:
clarify the list

Module name: src
Changes by: jsg@cvs.openbsd.org 2014/08/05 03:24:21

Modified files:
usr.sbin/httpd : httpd.c httpd.conf.5 httpd.h parse.y

Log message:
add a config option to specify the chroot directory
ok reyk@

Module name: www
Changes by: zhuk@cvs.openbsd.org 2014/08/05 06:22:05

Modified files:
. : 56.html

Log message:
Correct KDE4 SC version.

Module name: www
Changes by: mpi@cvs.openbsd.org 2014/08/05 06:32:57

Modified files:
. : donations.html

Log message:
Peter Ljung sent me a USB 3.0 hard drive that freaks out when its
firmware puts it in "sleep mode". Thanks!

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/05 06:46:16

Modified files:
lib/libressl : ressl.c ressl.h ressl_client.c ressl_config.c
ressl_internal.h ressl_server.c ressl_util.c
ressl_verify.c

Log message:
Add $OpenBSD$ tags.

Module name: src
Changes by: deraadt@cvs.openbsd.org 2014/08/05 07:15:52

Modified files:
distrib/zaurus/ramdisk: install.md

Log message:
handle wsconsctl.conf and sysctl.conf just being examples.
from ratchov

Module name: src
Changes by: deraadt@cvs.openbsd.org 2014/08/05 08:35:47

Modified files:
usr.sbin/httpd : config.c

Log message:
spaces

Module name: src
Changes by: deraadt@cvs.openbsd.org 2014/08/05 08:36:10

Modified files:
usr.sbin/httpd : server_http.c

Log message:
retire blink because this is serious software now; ok beck

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 09:36:59

Modified files:
usr.sbin/httpd : config.c httpd.c httpd.conf.5 httpd.h logger.c
parse.y server.c

Log message:
Improve logging to allow per- server/location log files. The log
files can also be owned by root now: they're opened by the parent and
send to the logger process with fd passing. This also works with reload.

ok deraadt@

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 10:30:36

Modified files:
usr.sbin/httpd : httpd.h server_http.c

Log message:
Limit the number of (Keep-Alive) requests per connection to 100.
(Same default as in nginx and Apache).

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 10:34:03

Modified files:
sbin/iked : iked.conf.5

Log message:
Fix an example, nat-to requires to specify the "out" direction in pf rules.

From "Vigdis" via misc@
can go in deraadt@

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 10:35:37

Modified files:
usr.sbin/hostapd: hostapd.conf.5

Log message:
Fix an example: hostapd table entries have to be comma-separated.

From "Vigdis" via misc@
can go in deraadt@

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 10:46:35

Modified files:
usr.sbin/httpd : parse.y

Log message:
Add srv_conf helper variable to make the code more readable.
No functional change.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 11:03:21

Modified files:
usr.sbin/httpd : httpd.conf.5 parse.y

Log message:
Bring back the tcp/ip configuration options. This code was already
there and is from relayd. We can decide later which options should
be added or removed, but it shouldn't do any harm.

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 11:13:16

Modified files:
usr.sbin/httpd : httpd.conf.5

Log message:
Tweak the httpd.conf manpage with "sub-lists".

Module name: src
Changes by: reyk@cvs.openbsd.org 2014/08/05 12:01:11

Modified files:
etc/examples : httpd.conf
usr.sbin/httpd : config.c httpd.conf.5 httpd.h parse.y
server_http.c

Log message:
Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Module name: src
Changes by: mpi@cvs.openbsd.org 2014/08/05 14:26:15

Modified files:
sys/dev/usb : ehci.c ohci.c uhci.c

Log message:
Only check if the abort transfer is the interrupt one if the pipe is
opened with a callback.

If a driver opens an interrupt pipe without callback function, like
umct(4) does with one of its bulk in endpoints being reported as an
interrupt endpoint, then we can end up aborting a transfer which is
different from the interrupt one.

Issue reported by Roberto E. Vargas Caballero, ok deraadt@

Module name: www
Changes by: gonzalo@cvs.openbsd.org 2014/08/05 15:23:33

Modified files:
. : events.html

Log message:
Add BSDDay Argentina 2014

Module name: www
Changes by: nick@cvs.openbsd.org 2014/08/05 18:49:01

Modified files:
faq : faq11.html

Log message:
s=<a href="http://www.openbsd.org/cgi-bin/cvsweb=http://cvsweb.openbsd.org/cgi-bin/cvsweb=" rel="nofollow">http://www.openbsd.org/cgi-bin/cvsweb=http://cvsweb.openbsd.org/cgi-bin/cvsweb=</a>
(new domain for man pages). Lots more to come!

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/05 19:54:01

Modified files:
lib/libressl : ressl.c ressl.h ressl_config.c ressl_internal.h

Log message:
Add support for loading the public/private key from memory, rather than
directly from file.

Module name: src
Changes by: jsing@cvs.openbsd.org 2014/08/05 20:04:42

Modified files:
usr.sbin/httpd : config.c httpd.8 httpd.h parse.y server.c

Log message:
Load the SSL public/private keys in the parent process, then provide them
to the privsep process via imsg. This allows the keys to be moved out of
the chroot (now /etc/ssl/server.crt, /etc/ssl/private/server.key).

ok reyk@

Module name: src
Changes by: doug@cvs.openbsd.org 2014/08/05 20:31:47

Modified files:
usr.sbin/httpd : httpd.8

Log message:
Explain the options in httpd.8

ok deraadt@