freebsd-ports/www/apache22-itk-mpm/Makefile

# $FreeBSD$

# To build this port with the additional mpm-itk-perdir-regex
# patch use -DWITH_ITK_PERDIR_REGEX
#
# To build this port with the additional mpm-itk-limits
# patch use -DWITH_ITK_LIMITS
#
# Note:
# It's not possible to use both patches together
#
# For a quick description take a look into the mpm-itk* patches
# in the files directory

MASTERDIR=		${.CURDIR}/../apache22

MAINTAINER=		apache@FreeBSD.org

WITH_MPM=		itk

LATEST_LINK=		apache22-${WITH_MPM}-mpm
DESCR=			${.CURDIR}/pkg-descr

MPM_ITK_VERSION?=	20110321-01

EXTRA_PATCHES+=		${.CURDIR}/files/mpm-itk-${MPM_ITK_VERSION}

.if defined (WITH_ITK_PERDIR_REGEX) && defined (WITH_ITK_LIMITS)
IGNORE=	use only one patch option not both (WITH_ITK_PERDIR_REGEX or WITH_ITK_LIMITS)
.endif

.if defined (WITH_ITK_PERDIR_REGEX)
EXTRA_PATCHES+=		${.CURDIR}/files/mpm-itk-perdir-regex
.endif

.if defined (WITH_ITK_LIMITS)
EXTRA_PATCHES+=		${.CURDIR}/files/mpm-itk-limits
.endif

.include "${MASTERDIR}/Makefile"
Apache 2.2 with the itk MPM enabled. WWW: http://httpd.apache.org/ WWW: http://mpm-itk.sesse.net/ PR: ports/151969 Submitted by: Tom Judge <tom at tomjudge.com> 2010-12-07 20:25:08 +01:00			`# $FreeBSD$`
- update to version 2.2.24 - move mpm itk patches to itk-mpm/files dir - add sshd to REQUIRE line in the rc script to prevent boot issues in case a SSL cert is password protected [1] Changes with Apache 2.2.24 SECURITY: CVE-2012-3499 (cve.mitre.org) Various XSS flaws due to unescaped hostnames and URIs HTML output in mod_info, mod_status, mod_imagemap, mod_ldap, and mod_proxy_ftp. [Jim Jagielski, Stefan Fritsch, Niels Heinen <heinenn google com>] SECURITY: CVE-2012-4558 (cve.mitre.org) XSS in mod_proxy_balancer manager interface. [Jim Jagielski, Niels Heinen <heinenn google com>] mod_rewrite: Stop merging RewriteBase down to subdirectories unless new option 'RewriteOptions MergeBase' is configured. Merging RewriteBase was unconditionally turned on in 2.2.23. PR 53963. [Eric Covener] mod_ssl: Send the error message for speaking http to an https port using HTTP/1.0 instead of HTTP/0.9, and omit the link that may be wrong when using SNI. PR 50823. [Stefan Fritsch] mod_ssl: log revoked certificates at level INFO instead of DEBUG. PR 52162. [Stefan Fritsch] mod_proxy_ajp: Support unknown HTTP methods. PR 54416. [Rainer Jung] mod_dir: Add support for the value 'disabled' in FallbackResource. [Vincent Deffontaines] mod_ldap: Fix regression in handling "server unavailable" errors on Windows. PR 54140. [Eric Covener] mod_ssl: fix a regression with the string rendering of the "UID" RDN introduced in 2.2.15. PR 54510. [Kaspar Brand] ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output to more accurately report the negotiated protocol. PR 53916. [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand] mod_cache: Explicitly allow cache implementations to cache a 206 Partial Response if they so choose to do so. Previously an attempt to cache a 206 was arbitrarily allowed if the response contained an Expires or Cache-Control header, and arbitrarily denied if both headers were missing Currently the disk and memory cache providers do not cache 206 Partial Responses. [Graham Leggett] core: Remove unintentional APR 1.3 dependency introduced with Apache 2.2.22. [Eric Covener] core: Use a TLS 1.0 close_notify alert for internal dummy connection if the chosen listener is configured for https. [Joe Orton] mod_ssl: Add new directive SSLCompression to disable TLS-level compression. PR 53219. [1] requested by Andrew Filonov (freebsd-apache/2012-September/002962.html) with head apache@ 2013-03-02 20:31:49 +01:00
- add site for mpm-itk-perdir-regex.patch to pkg-desc - add a short note how to build with this additional patch 2011-03-31 19:03:41 +02:00			`# To build this port with the additional mpm-itk-perdir-regex`
			`# patch use -DWITH_ITK_PERDIR_REGEX`
			`#`
devel/apr1 [1] - update APR to 1.4.6 - update APR-util to 1.4.1 - remove PKGNAMESUFFIX'es www/apache-(event\|itk\|peruser\|worker)-mpm - adopt new Makefile header, adjust PKGNAMESUFFIX in apache22 masterport PKGNAME match now LATEST_LINK www/apache22 [2]-[6] - rewrite for options NG - PORTNAME s\|apache\|apache22\| - remove APR APR-util specific otions, will be checked now with help of apr/u-1-config Mk/bsd.apache.mk - rewrite for options NG - remove no longer needet make targets (show-categories, make-options-list) [1] PR: 165143 [2]-[6] PR: 130479 PR: 153406 PR: 158565 PR: 168769 PR: 167965 with hat apache@ 2012-09-02 16:31:58 +02:00			`# To build this port with the additional mpm-itk-limits`
			`# patch use -DWITH_ITK_LIMITS`
			`#`
			`# Note:`
			`# It's not possible to use both patches together`
- update to version 2.2.24 - move mpm itk patches to itk-mpm/files dir - add sshd to REQUIRE line in the rc script to prevent boot issues in case a SSL cert is password protected [1] Changes with Apache 2.2.24 SECURITY: CVE-2012-3499 (cve.mitre.org) Various XSS flaws due to unescaped hostnames and URIs HTML output in mod_info, mod_status, mod_imagemap, mod_ldap, and mod_proxy_ftp. [Jim Jagielski, Stefan Fritsch, Niels Heinen <heinenn google com>] SECURITY: CVE-2012-4558 (cve.mitre.org) XSS in mod_proxy_balancer manager interface. [Jim Jagielski, Niels Heinen <heinenn google com>] mod_rewrite: Stop merging RewriteBase down to subdirectories unless new option 'RewriteOptions MergeBase' is configured. Merging RewriteBase was unconditionally turned on in 2.2.23. PR 53963. [Eric Covener] mod_ssl: Send the error message for speaking http to an https port using HTTP/1.0 instead of HTTP/0.9, and omit the link that may be wrong when using SNI. PR 50823. [Stefan Fritsch] mod_ssl: log revoked certificates at level INFO instead of DEBUG. PR 52162. [Stefan Fritsch] mod_proxy_ajp: Support unknown HTTP methods. PR 54416. [Rainer Jung] mod_dir: Add support for the value 'disabled' in FallbackResource. [Vincent Deffontaines] mod_ldap: Fix regression in handling "server unavailable" errors on Windows. PR 54140. [Eric Covener] mod_ssl: fix a regression with the string rendering of the "UID" RDN introduced in 2.2.15. PR 54510. [Kaspar Brand] ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output to more accurately report the negotiated protocol. PR 53916. [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand] mod_cache: Explicitly allow cache implementations to cache a 206 Partial Response if they so choose to do so. Previously an attempt to cache a 206 was arbitrarily allowed if the response contained an Expires or Cache-Control header, and arbitrarily denied if both headers were missing Currently the disk and memory cache providers do not cache 206 Partial Responses. [Graham Leggett] core: Remove unintentional APR 1.3 dependency introduced with Apache 2.2.22. [Eric Covener] core: Use a TLS 1.0 close_notify alert for internal dummy connection if the chosen listener is configured for https. [Joe Orton] mod_ssl: Add new directive SSLCompression to disable TLS-level compression. PR 53219. [1] requested by Andrew Filonov (freebsd-apache/2012-September/002962.html) with head apache@ 2013-03-02 20:31:49 +01:00			`#`
- add site for mpm-itk-perdir-regex.patch to pkg-desc - add a short note how to build with this additional patch 2011-03-31 19:03:41 +02:00			`# For a quick description take a look into the mpm-itk* patches`
- allow to install apache modules activated by defining AP_MODENABLE in make.conf Requested on the mailing lists - fix patch location in help text with head apache@ 2013-03-02 20:46:37 +01:00			`# in the files directory`
Apache 2.2 with the itk MPM enabled. WWW: http://httpd.apache.org/ WWW: http://mpm-itk.sesse.net/ PR: ports/151969 Submitted by: Tom Judge <tom at tomjudge.com> 2010-12-07 20:25:08 +01:00
			`MASTERDIR= ${.CURDIR}/../apache22`

			`MAINTAINER= apache@FreeBSD.org`

			`WITH_MPM= itk`

devel/apr1 [1] - update APR to 1.4.6 - update APR-util to 1.4.1 - remove PKGNAMESUFFIX'es www/apache-(event\|itk\|peruser\|worker)-mpm - adopt new Makefile header, adjust PKGNAMESUFFIX in apache22 masterport PKGNAME match now LATEST_LINK www/apache22 [2]-[6] - rewrite for options NG - PORTNAME s\|apache\|apache22\| - remove APR APR-util specific otions, will be checked now with help of apr/u-1-config Mk/bsd.apache.mk - rewrite for options NG - remove no longer needet make targets (show-categories, make-options-list) [1] PR: 165143 [2]-[6] PR: 130479 PR: 153406 PR: 158565 PR: 168769 PR: 167965 with hat apache@ 2012-09-02 16:31:58 +02:00			`LATEST_LINK= apache22-${WITH_MPM}-mpm`
Apache 2.2 with the itk MPM enabled. WWW: http://httpd.apache.org/ WWW: http://mpm-itk.sesse.net/ PR: ports/151969 Submitted by: Tom Judge <tom at tomjudge.com> 2010-12-07 20:25:08 +01:00			`DESCR= ${.CURDIR}/pkg-descr`

- update to version 2.2.24 - move mpm itk patches to itk-mpm/files dir - add sshd to REQUIRE line in the rc script to prevent boot issues in case a SSL cert is password protected [1] Changes with Apache 2.2.24 SECURITY: CVE-2012-3499 (cve.mitre.org) Various XSS flaws due to unescaped hostnames and URIs HTML output in mod_info, mod_status, mod_imagemap, mod_ldap, and mod_proxy_ftp. [Jim Jagielski, Stefan Fritsch, Niels Heinen <heinenn google com>] SECURITY: CVE-2012-4558 (cve.mitre.org) XSS in mod_proxy_balancer manager interface. [Jim Jagielski, Niels Heinen <heinenn google com>] mod_rewrite: Stop merging RewriteBase down to subdirectories unless new option 'RewriteOptions MergeBase' is configured. Merging RewriteBase was unconditionally turned on in 2.2.23. PR 53963. [Eric Covener] mod_ssl: Send the error message for speaking http to an https port using HTTP/1.0 instead of HTTP/0.9, and omit the link that may be wrong when using SNI. PR 50823. [Stefan Fritsch] mod_ssl: log revoked certificates at level INFO instead of DEBUG. PR 52162. [Stefan Fritsch] mod_proxy_ajp: Support unknown HTTP methods. PR 54416. [Rainer Jung] mod_dir: Add support for the value 'disabled' in FallbackResource. [Vincent Deffontaines] mod_ldap: Fix regression in handling "server unavailable" errors on Windows. PR 54140. [Eric Covener] mod_ssl: fix a regression with the string rendering of the "UID" RDN introduced in 2.2.15. PR 54510. [Kaspar Brand] ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output to more accurately report the negotiated protocol. PR 53916. [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand] mod_cache: Explicitly allow cache implementations to cache a 206 Partial Response if they so choose to do so. Previously an attempt to cache a 206 was arbitrarily allowed if the response contained an Expires or Cache-Control header, and arbitrarily denied if both headers were missing Currently the disk and memory cache providers do not cache 206 Partial Responses. [Graham Leggett] core: Remove unintentional APR 1.3 dependency introduced with Apache 2.2.22. [Eric Covener] core: Use a TLS 1.0 close_notify alert for internal dummy connection if the chosen listener is configured for https. [Joe Orton] mod_ssl: Add new directive SSLCompression to disable TLS-level compression. PR 53219. [1] requested by Andrew Filonov (freebsd-apache/2012-September/002962.html) with head apache@ 2013-03-02 20:31:49 +01:00			`MPM_ITK_VERSION?= 20110321-01`

			`EXTRA_PATCHES+= ${.CURDIR}/files/mpm-itk-${MPM_ITK_VERSION}`

			`.if defined (WITH_ITK_PERDIR_REGEX) && defined (WITH_ITK_LIMITS)`
			`IGNORE= use only one patch option not both (WITH_ITK_PERDIR_REGEX or WITH_ITK_LIMITS)`
			`.endif`

			`.if defined (WITH_ITK_PERDIR_REGEX)`
			`EXTRA_PATCHES+= ${.CURDIR}/files/mpm-itk-perdir-regex`
			`.endif`

			`.if defined (WITH_ITK_LIMITS)`
			`EXTRA_PATCHES+= ${.CURDIR}/files/mpm-itk-limits`
			`.endif`

Apache 2.2 with the itk MPM enabled. WWW: http://httpd.apache.org/ WWW: http://mpm-itk.sesse.net/ PR: ports/151969 Submitted by: Tom Judge <tom at tomjudge.com> 2010-12-07 20:25:08 +01:00			`.include "${MASTERDIR}/Makefile"`