Changeset 8ac7c0d in mod_gnutls for test


Ignore:
Timestamp:
Feb 11, 2016, 2:48:07 PM (3 years ago)
Author:
Thomas Klute <thomas2.klute@…>
Branches:
debian/master, debian/stretch-backports, jessie-backports, master, upstream
Children:
a038290
Parents:
7aeabcb
git-author:
Thomas Klute <thomas2.klute@…> (02/11/16 14:21:17)
git-committer:
Thomas Klute <thomas2.klute@…> (02/11/16 14:48:07)
Message:

Register "ssl_is_https" function for compatibility with mod_rewrite

mod_rewrite calls this function to fill its %{HTTPS} special variable,
and not providing it meant that conditions like

RewriteCond? "%{HTTPS}" "off"

would match HTTPS connections using mod_gnutls. When used to redirect
clients from HTTP to HTTPS connections, this could lead to redirection
loops as reported in Debian bug #514005 [1]. In addition to
registering the function this commit also adds a test chase that
checks if an HTTP to HTTPS redirection works.

[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514005

Location:
test
Files:
2 added
3 edited

Legend:

Unmodified
Added
Removed
  • test/Makefile.am

    r7aeabcb r8ac7c0d  
    2828        test-23_TLS_reverse_proxy_mismatched_priorities.bash \
    2929        test-24_pkcs11_cert.bash \
    30         test-25_Disable_TLS_1.0.bash
     30        test-25_Disable_TLS_1.0.bash \
     31        test-26_HTTPS_server_var.bash
    3132
    3233TESTS = $(dist_check_SCRIPTS)
  • test/README

    r7aeabcb r8ac7c0d  
    9494request based on the files described above. Note that some tests take
    9595additional steps, e.g. starting another server to act as proxy
    96 backend, and there is no technical requirement to use "runtests".
     96backend, and at least one does not use "runtests" at all.
    9797
    9898By default (if "unshare" is available and has the permissions required
  • test/tests/Makefile.am

    r7aeabcb r8ac7c0d  
    2525        23_TLS_reverse_proxy_mismatched_priorities/apache.conf 23_TLS_reverse_proxy_mismatched_priorities/backend.conf 23_TLS_reverse_proxy_mismatched_priorities/gnutls-cli.args 23_TLS_reverse_proxy_mismatched_priorities/input 23_TLS_reverse_proxy_mismatched_priorities/output \
    2626        24_pkcs11_cert/apache.conf 24_pkcs11_cert/gnutls-cli.args 24_pkcs11_cert/input 24_pkcs11_cert/output \
    27         25_Disable_TLS_1.0/apache.conf 25_Disable_TLS_1.0/fail.client 25_Disable_TLS_1.0/gnutls-cli.args 25_Disable_TLS_1.0/input
     27        25_Disable_TLS_1.0/apache.conf 25_Disable_TLS_1.0/fail.client 25_Disable_TLS_1.0/gnutls-cli.args 25_Disable_TLS_1.0/input \
     28        26_HTTPS_server_var/apache.conf
Note: See TracChangeset for help on using the changeset viewer.