You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by dr...@apache.org on 2020/03/19 14:43:07 UTC
svn commit: r38562 [3/3] - /dev/httpd/
Added: dev/httpd/CHANGES_2.4.42
==============================================================================
--- dev/httpd/CHANGES_2.4.42 (added)
+++ dev/httpd/CHANGES_2.4.42 Thu Mar 19 14:43:07 2020
@@ -0,0 +1,147 @@
+ -*- coding: utf-8 -*-
+Changes with Apache 2.4.42
+
+ *) mod_proxy_http: Fix the forwarding of requests with content body when a
+ balancer member is unavailable; the retry on the next member was issued
+ with an empty body (regression introduced in 2.4.41). PR63891.
+ [Yann Ylavic]
+
+ *) mod_http2: Fixes issue where mod_unique_id would generate non-unique request
+ identifier under load, see <https://github.com/icing/mod_h2/issues/195>.
+ [Michael Kaufmann, Stefan Eissing]
+
+ *) mod_proxy_hcheck: Allow healthcheck expressions to use %{Content-Type}.
+ PR64140. [Renier Velazco <renier.velazco upr.edu>]
+
+ *) mod_authz_groupfile: Drop AH01666 from loglevel "error" to "info".
+ PR64172.
+
+ *) mod_usertrack: Add CookieSameSite, CookieHTTPOnly, and CookieSecure
+ to allow customization of the usertrack cookie. PR64077.
+ [Prashant Keshvani <prashant2400 gmail.com>, Eric Covener]
+
+ *) mod_proxy_ajp: Add "secret" parameter to proxy workers to implement legacy
+ AJP13 authentication. PR 53098. [Dmitry A. Bakshaev <dab1818 gmail com>]
+
+ *) mpm_event: avoid possible KeepAliveTimeout off by -100 ms.
+ [Eric Covener, Yann Ylavic]
+
+ *) Add a config layout for OpenWRT. [Graham Leggett]
+
+ *) Add support for cross compiling to apxs. If apxs is being executed from
+ somewhere other than its target location, add that prefix to includes and
+ library directories. Without this, apxs would fail to find config_vars.mk
+ and exit. [Graham Leggett]
+
+ *) mod_ssl: Disable client verification on ACME ALPN challenges. Fixes github
+ issue mod_md#172 (https://github.com/icing/mod_md/issues/172).
+ [Michael Kaufmann <mail michael-kaufmann.ch>, Stefan Eissing]
+
+ *) mod_ssl: use OPENSSL_init_ssl() to initialise OpenSSL on versions 1.1+.
+ [Graham Leggett]
+
+ *) mod_ssl: Support use of private keys and certificates from an
+ OpenSSL ENGINE via PKCS#11 URIs in SSLCertificateFile/KeyFile.
+ [Anderson Sasaki <ansasaki redhat.com>, Joe Orton]
+
+ *) mod_md:
+ - Prefer MDContactEmail directive to ServerAdmin for registration. New directive
+ thanks to Timothe Litt (@tlhackque).
+ - protocol check for pre-configured "tls-alpn-01" challenge has been improved. It will now
+ check all matching virtual hosts for protocol support. Thanks to @mkauf.
+ - Corrected a check when OCSP stapling was configured for hosts
+ where the responsible MDomain is not clear, by Michal Karm Babacek (@Karm).
+ - Softening the restrictions where mod_md configuration directives may appear. This should
+ allow for use in <If> and <Macro> sections. If all possible variations lead to the configuration
+ you wanted in the first place, is another matter.
+ [Michael Kaufmann <mail michael-kaufmann.ch>, Timothe Litt (@tlhackque),
+ Michal Karm Babacek (@Karm), Stefan Eissing (@icing)]
+
+ *) test: Added continuous testing with Travis CI.
+ This tests various scenarios on Ubuntu with the full test suite.
+ Architectures tested: amd64, s390x, ppc64le, arm64
+ The tests pass successfully.
+ [Luca Toscano, Joe Orton, Mike Rumph, and others]
+
+ *) core: Be stricter in parsing of Transfer-Encoding headers.
+ [ZeddYu <zeddyu.lu gmail.com>, Eric Covener]
+
+ *) mod_ssl: negotiate the TLS protocol version per name based vhost
+ configuration, when linked with OpenSSL-1.1.1 or later. The base vhost's
+ SSLProtocol (from the first vhost declared on the IP:port) is now only
+ relevant if no SSLProtocol is declared for the vhost or globally,
+ otherwise the vhost or global value apply. [Yann Ylavic]
+
+ *) mod_cgi, mod_cgid: Fix a memory leak in some error cases with large script
+ output. PR 64096. [Joe Orton]
+
+ *) config: Speed up graceful restarts by using pre-hashed command table. PR 64066.
+ [Giovanni Bechis <giovanni paclan.it>, Jim Jagielski]
+
+ *) mod_systemd: New module providing integration with systemd. [Jan Kaluza]
+
+ *) mod_lua: Add r:headers_in_table, r:headers_out_table, r:err_headers_out_table,
+ r:notes_table, r:subprocess_env_table as read-only native table alternatives
+ that can be iterated over. [Eric Covener]
+
+ *) mod_http2: Fixed rare cases where a h2 worker could deadlock the main connection.
+ [Yann Ylavic, Stefan Eissing]
+
+ *) mod_lua: Accept nil assignments to the exposed tables (r.subprocess_env,
+ r.headers_out, etc) to remove the key from the table. PR63971.
+ [Eric Covener]
+
+ *) mod_http2: Fixed interaction with mod_reqtimeout. A loaded mod_http2 was disabling the
+ ssl handshake timeouts. Also, fixed a mistake of the last version that made `H2Direct`
+ always `on`, regardless of configuration. Found and reported by
+ <Ar...@united-security-providers.ch> and
+ <Ma...@united-security-providers.ch>. [Stefan Eissing]
+
+ *) mod_http2: Multiple field length violations in the same request no longer cause
+ several log entries to be written. [@mkauf]
+
+ *) mod_ssl: OCSP does not apply to proxy mode. PR 63679.
+ [Lubos Uhliarik <luhliari redhat.com>, Yann Ylavic]
+
+ *) mod_proxy_html, mod_xml2enc: Fix build issues with macOS due to r1864469
+ [Jim Jagielski]
+
+ *) mod_authn_socache: Increase the maximum length of strings that can be cached by
+ the module from 100 to 256. PR 62149 [<thorsten.meinl knime.com>]
+
+ *) mod_proxy: Fix crash by resolving pool concurrency problems. PR 63503
+ [Ruediger Pluem, Eric Covener]
+
+ *) core: On Windows, fix a start-up crash if <IfFile ...> is used with a path that is not
+ valid (For example, testing for a file on a flash drive that is not mounted)
+ [Christophe Jaillet]
+
+ *) mod_deflate, mod_brotli: honor "Accept-Encoding: foo;q=0" as per RFC 7231; which
+ means 'foo' is "not acceptable". PR 58158 [Chistophe Jaillet]
+
+ *) mod_md v2.2.3:
+ - Configuring MDCAChallenges replaces any previous existing challenge configuration. It
+ had been additive before which was not the intended behaviour. [@mkauf]
+ - Fixing order of ACME challenges used when nothing else configured. Code now behaves as
+ documented for `MDCAChallenges`. Fixes #156. Thanks again to @mkauf for finding this.
+ - Fixing a potential, low memory null pointer dereference [thanks to @uhliarik].
+ - Fixing an incompatibility with a change in libcurl v7.66.0 that added unwanted
+ "transfer-encoding" to POST requests. This failed in directy communication with
+ Let's Encrypt boulder server. Thanks to @mkauf for finding and fixing. [Stefan Eissing]
+
+ *) mod_md: Adding the several new features.
+ The module offers an implementation of OCSP Stapling that can replace fully or
+ for a limited set of domains the existing one from mod_ssl. OCSP handling
+ is part of mod_md's monitoring and message notifications. If can be used
+ for sites that do not have ACME certificates.
+ The url for a CTLog Monitor can be configured. It is used in the server-status
+ to link to the external status page of a certicate.
+ The MDMessageCmd is called with argument "installed" when a new certificate
+ has been activated on server restart/reload. This allows for processing of
+ the new certificate, for example to applications that require it in different
+ locations or formats.
+ [Stefan Eissing]
+
+ *) mod_proxy_balancer: Fix case-sensitive referer check related to CSRF/XSS
+ protection. PR 63688. [Armin Abfalterer <a.abfalterer gmail.com>]
+
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2
==============================================================================
Binary file - no diff available.
Propchange: dev/httpd/httpd-2.4.42-deps.tar.bz2
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2.asc
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.bz2.asc (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.bz2.asc Thu Mar 19 14:43:07 2020
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEueghOu+4Ya81pB8smV41IhrYTf8FAl5zhOEACgkQmV41IhrY
+Tf+oWAgAqlIbYN4Vjl50Twk2Ye4efrU3DcMZL5OLL772X6k3C2lZjUiVuCpaESxE
+txyKMwpdXUPiuxrwO0r09IyGRuYqXfVVFSHRo1PKWgWalsmpB5HSMEP3PYU4v8YT
+28cT1VWe2/3JJkqlsbKydkAObnnFILkr9TREkHxYjfDSRqEaAe9UA+BawES30rGe
+HYy/1An9ESDJQthYbLIFEwD3rYy7qvC7kXUhKVw0mijbckS118kHzRCO+eOGsbca
+HFMrV+5g0bY3nDnM/BuwhTkoDaz2nvMwDJgQRbpajxuskR4sWQpnAoziT6tqwmWL
++t3hd+Mq8GYugnOTnSJgCY8Yi2VYmQ==
+=vAPb
+-----END PGP SIGNATURE-----
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2.md5
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.bz2.md5 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.bz2.md5 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+7f13508794697ff5bf6b324565ae0a25 *httpd-2.4.42-deps.tar.bz2
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2.sha1
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.bz2.sha1 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.bz2.sha1 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+0b5b45db4ebb88f52303f6c6993d4111e3bb7061 *httpd-2.4.42-deps.tar.bz2
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2.sha256
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.bz2.sha256 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.bz2.sha256 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+f5f3949d3ba4ae2f0ab19cad28a87847a9ef1337b160d2c200ee0d62fc0943f3 *httpd-2.4.42-deps.tar.bz2
Added: dev/httpd/httpd-2.4.42-deps.tar.bz2.sha512
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.bz2.sha512 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.bz2.sha512 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+c256059dfac4fd0f50ae331ee01de88e751302f91097c8a83c02d29b8da994a3c2509ae63ec87e41762e03f950f97fcea7f0b99832bdad1fe58a3b9ef921525f *httpd-2.4.42-deps.tar.bz2
Added: dev/httpd/httpd-2.4.42-deps.tar.gz
==============================================================================
Binary file - no diff available.
Propchange: dev/httpd/httpd-2.4.42-deps.tar.gz
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: dev/httpd/httpd-2.4.42-deps.tar.gz.asc
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.gz.asc (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.gz.asc Thu Mar 19 14:43:07 2020
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEueghOu+4Ya81pB8smV41IhrYTf8FAl5zhOEACgkQmV41IhrY
+Tf9TVAf/dPvoTHJ7RMu+NUCNGG9NhZAvJfxTeln74ApZErgnajacLsxFuXXr6F8b
+WDJboOGdeq4Wk+aJJUQwmx/+332l7GdPWGWeBEto61eaJ0QbIAPmoMW4wWyH5CqB
+I9UlFC5udNowPLRUCuD592BRx5k0MIB+w+FwwG4aSQpHV2Y1CWaB6V7d+wCT1vcz
+rzPhRAQjgc4pB6cWX3CDMUicdtELQh/GMaQKJCr72XOQNQSlTN1tOir/2k4xf1nl
+0cNDg2HkhpFbqB0P9v37nLB1wcvCny6r63Q8OQFO96v5v/i7t9TXChCDkiySXDhc
+s+t3ZiX/92IOum6mFH5lM1m3jTFnXQ==
+=0EKl
+-----END PGP SIGNATURE-----
Added: dev/httpd/httpd-2.4.42-deps.tar.gz.md5
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.gz.md5 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.gz.md5 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+10f9ee97c5fb1800cdeb7a053145ab18 *httpd-2.4.42-deps.tar.gz
Added: dev/httpd/httpd-2.4.42-deps.tar.gz.sha1
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.gz.sha1 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.gz.sha1 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+670697a1b10457418fe546922b6b0a14a84c794b *httpd-2.4.42-deps.tar.gz
Added: dev/httpd/httpd-2.4.42-deps.tar.gz.sha256
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.gz.sha256 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.gz.sha256 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+a86cb14d12f12ff7e69aeb2d505582c89051043c348ed40e05e8635ed17b928c *httpd-2.4.42-deps.tar.gz
Added: dev/httpd/httpd-2.4.42-deps.tar.gz.sha512
==============================================================================
--- dev/httpd/httpd-2.4.42-deps.tar.gz.sha512 (added)
+++ dev/httpd/httpd-2.4.42-deps.tar.gz.sha512 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+887db668cf5a0b8592d246b8e5ad58b4b122a5b3dcc75a5e800d99bb1c208fdda57a929f524c69c8bba24891cc3c87e5a9fb06ef350c5a25b778d0385c9f95b5 *httpd-2.4.42-deps.tar.gz
Added: dev/httpd/httpd-2.4.42.tar.bz2
==============================================================================
Binary file - no diff available.
Propchange: dev/httpd/httpd-2.4.42.tar.bz2
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: dev/httpd/httpd-2.4.42.tar.bz2.asc
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.bz2.asc (added)
+++ dev/httpd/httpd-2.4.42.tar.bz2.asc Thu Mar 19 14:43:07 2020
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEueghOu+4Ya81pB8smV41IhrYTf8FAl5zhOEACgkQmV41IhrY
+Tf83bAf8DZQG621rM5aF2zv6ngns5y+rB3YtQ8DjzAbSRBscEGy0uKkvEQruV/5w
+8o3B1mzoh/f/1rp5r6sTCKY85k9sl2RxPdyzI8wsfOfAitHuoKAOO4Xzl2vRvDWS
+YXO+rrPPelTFEiQPa08x7amlPmnXfA+32Odea6Wj4w4ai7PTNUTsXR9dSHeNLcr5
+DjX9dRH4/wmsAqBu+cS9wuL9jvrF03Zv8arL2aH4wK+3PIZBsNTuG1lUO+a9EY7t
+49w+8pm24eTBxBu3TsYQcQBJqvFOflYJhaIiroah83NDCFaQy/yiYFNZGGQVsZ87
+ECzt8x35SYG8GTqxmxjEPBZg0sczYQ==
+=nGxz
+-----END PGP SIGNATURE-----
Added: dev/httpd/httpd-2.4.42.tar.bz2.md5
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.bz2.md5 (added)
+++ dev/httpd/httpd-2.4.42.tar.bz2.md5 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+31d3dd3887da4b5e7a4059b6bb6f0070 *httpd-2.4.42.tar.bz2
Added: dev/httpd/httpd-2.4.42.tar.bz2.sha1
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.bz2.sha1 (added)
+++ dev/httpd/httpd-2.4.42.tar.bz2.sha1 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+d7935d453e40133e40ae9a38ca9d531c85133db3 *httpd-2.4.42.tar.bz2
Added: dev/httpd/httpd-2.4.42.tar.bz2.sha256
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.bz2.sha256 (added)
+++ dev/httpd/httpd-2.4.42.tar.bz2.sha256 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+e1dfdf18e616251fc0fbc6994d011f4c8a2da7e0d2703188e0b6f23c68965a90 *httpd-2.4.42.tar.bz2
Added: dev/httpd/httpd-2.4.42.tar.bz2.sha512
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.bz2.sha512 (added)
+++ dev/httpd/httpd-2.4.42.tar.bz2.sha512 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+264e72405e357b90ff2a5e8b5fb72cd19a3869faf99e4eb0cef8edbca628a71dcc835e52a52dae9c700a9cf8e7a05717215a1a3fd21af677d6d87a4afd405e23 *httpd-2.4.42.tar.bz2
Added: dev/httpd/httpd-2.4.42.tar.gz
==============================================================================
Binary file - no diff available.
Propchange: dev/httpd/httpd-2.4.42.tar.gz
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: dev/httpd/httpd-2.4.42.tar.gz.asc
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.gz.asc (added)
+++ dev/httpd/httpd-2.4.42.tar.gz.asc Thu Mar 19 14:43:07 2020
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEueghOu+4Ya81pB8smV41IhrYTf8FAl5zhNoACgkQmV41IhrY
+Tf8PDQf/VMgs8yUKUWO9EsYwX3Zm2JFa9eSp/hRogi+0LtTRYSuzvCYQPEH7glly
+YtAETZmjuOQwTZzsNg7FsuyW91PnQqgEuatxSDUyZMKSRdLCJrIpCJ2Tf8xWvCvI
+OXKiKvv7g2hu8e36ELWkyZUh398ZQaQK4HjIr1PVxqokfQwfYqJDRRG7/q8QNJ+T
+Kh1FVKKl1FGFHJmJJhKtYXp+TOV+ktc7kkLR4MxUSbRhVFlKfxt82QiyAy5In8qg
+YlKQjm49jSDRaRK9tRI6+siCkPxDnnTQe7rZGToNnxeJztMWTSrzcs7aG7+EdhFV
+5Qu0v+TvSfPQQzO43Sj6rNVOgyAiLQ==
+=zTDv
+-----END PGP SIGNATURE-----
Added: dev/httpd/httpd-2.4.42.tar.gz.md5
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.gz.md5 (added)
+++ dev/httpd/httpd-2.4.42.tar.gz.md5 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+af6c0ea1b137acd098b3bddb4cd8ec58 *httpd-2.4.42.tar.gz
Added: dev/httpd/httpd-2.4.42.tar.gz.sha1
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.gz.sha1 (added)
+++ dev/httpd/httpd-2.4.42.tar.gz.sha1 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+2e4505796dfaebcceab6ba22e5fa221e07ad488e *httpd-2.4.42.tar.gz
Added: dev/httpd/httpd-2.4.42.tar.gz.sha256
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.gz.sha256 (added)
+++ dev/httpd/httpd-2.4.42.tar.gz.sha256 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+cbac6f8211744a74f798db792b74da9f6fb5a4fbee94234cf2b01aeb9ffe57ed *httpd-2.4.42.tar.gz
Added: dev/httpd/httpd-2.4.42.tar.gz.sha512
==============================================================================
--- dev/httpd/httpd-2.4.42.tar.gz.sha512 (added)
+++ dev/httpd/httpd-2.4.42.tar.gz.sha512 Thu Mar 19 14:43:07 2020
@@ -0,0 +1 @@
+09d0f3bd9266907eea91ac9129a3c41658929b9fd88d627c1fccceaf952548d2c3ad62099b9bcd1ae4822402c1dbda90b8bfb9f64cd5eac9f84ed249faffb837 *httpd-2.4.42.tar.gz