<revisionlist>
<revision rev="1" vrev="23">
<srcmd5>43f2ad61481be721d4f3e5b5ba221548</srcmd5>
<version>2.2.3</version>
<time>1166634075</time>
<user>unknown</user>
</revision>
<revision rev="2" vrev="26">
<srcmd5>86dce58caa012de2e9a67eda772788f9</srcmd5>
<version>2.2.3</version>
<time>1168255579</time>
<user>unknown</user>
</revision>
<revision rev="3" vrev="1">
<srcmd5>36ba1aec590623c7ebc73682cad78e46</srcmd5>
<version>2.2.4</version>
<time>1168448796</time>
<user>unknown</user>
</revision>
<revision rev="4" vrev="3">
<srcmd5>abbfa9ab41ce28ff844c0ba69d6fe5eb</srcmd5>
<version>2.2.4</version>
<time>1168561019</time>
<user>unknown</user>
</revision>
<revision rev="5" vrev="10">
<srcmd5>ff2a0f295544e784f809cf25f947c751</srcmd5>
<version>2.2.4</version>
<time>1174349616</time>
<user>unknown</user>
</revision>
<revision rev="6" vrev="11">
<srcmd5>05cd26ed689cea744784b6e6cb88e989</srcmd5>
<version>2.2.4</version>
<time>1174386641</time>
<user>unknown</user>
</revision>
<revision rev="7" vrev="12">
<srcmd5>dd9ffbcd2f5b041399df5f9453bfb655</srcmd5>
<version>2.2.4</version>
<time>1174682452</time>
<user>unknown</user>
</revision>
<revision rev="8" vrev="14">
<srcmd5>127a5b171e98829c20289f0d77558f02</srcmd5>
<version>2.2.4</version>
<time>1175199359</time>
<user>unknown</user>
</revision>
<revision rev="9" vrev="44">
<srcmd5>792dc62919e213425d696e96dcc074a1</srcmd5>
<version>2.2.4</version>
<time>1185218840</time>
<user>unknown</user>
</revision>
<revision rev="10" vrev="57">
<srcmd5>3562dc4f38ae0f0cc791df2ad7ede3b0</srcmd5>
<version>2.2.4</version>
<time>1188228398</time>
<user>unknown</user>
</revision>
<revision rev="11" vrev="59">
<srcmd5>4ef38c3e6931945af3f579a39816929e</srcmd5>
<version>2.2.4</version>
<time>1188567379</time>
<user>unknown</user>
</revision>
<revision rev="12" vrev="61">
<srcmd5>2ac21300d747d38cfc6de06ff3620a96</srcmd5>
<version>2.2.4</version>
<time>1188836563</time>
<user>unknown</user>
</revision>
<revision rev="13" vrev="75">
<srcmd5>0e3453113614886a27a580459eeaeb7a</srcmd5>
<version>2.2.4</version>
<time>1193070327</time>
<user>unknown</user>
</revision>
<revision rev="14" vrev="88">
<srcmd5>70e702e88bbb6f1c5e77f22b37b7ca60</srcmd5>
<version>2.2.4</version>
<time>1197574332</time>
<user>unknown</user>
</revision>
<revision rev="15" vrev="89">
<srcmd5>0870be586e6bfaa1cdd325f08f817d77</srcmd5>
<version>2.2.4</version>
<time>1204810072</time>
<user>poeml</user>
<comment>test</comment>
</revision>
<revision rev="16" vrev="90">
<srcmd5>70e702e88bbb6f1c5e77f22b37b7ca60</srcmd5>
<version>2.2.4</version>
<time>1204810227</time>
<user>poeml</user>
<comment>reverse the test commit I just did</comment>
</revision>
<revision rev="17" vrev="1">
<srcmd5>e90c194f7e85597d2437738dc40e4be0</srcmd5>
<version>2.2.8</version>
<time>1205511675</time>
<user>unknown</user>
</revision>
<revision rev="18" vrev="8">
<srcmd5>ee364d07a242e3d6914dcfb5d3e05126</srcmd5>
<version>2.2.8</version>
<time>1207083731</time>
<user>unknown</user>
</revision>
<revision rev="19" vrev="13">
<srcmd5>ac2f3ed4672fae506c54be9fe46b0a4f</srcmd5>
<version>2.2.8</version>
<time>1208718217</time>
<user>unknown</user>
</revision>
<revision rev="20" vrev="24">
<srcmd5>35ca44852c3f8dee96577a12836cea9f</srcmd5>
<version>2.2.8</version>
<time>1211821545</time>
<user>unknown</user>
</revision>
<revision rev="21" vrev="49">
<srcmd5>e8fbcd98a48148701c8f00b959edacc6</srcmd5>
<version>2.2.8</version>
<time>1219620118</time>
<user>unknown</user>
</revision>
<revision rev="22" vrev="50">
<srcmd5>c1fc42b12e0e657523640c717e526dbc</srcmd5>
<version>2.2.8</version>
<time>1219881200</time>
<user>unknown</user>
</revision>
<revision rev="23" vrev="1">
<srcmd5>5bc86b26d9bd75457b87f90a11ad7e13</srcmd5>
<version>2.2.9</version>
<time>1221252439</time>
<user>unknown</user>
</revision>
<revision rev="24" vrev="4">
<srcmd5>fba744ea8d61794d47394c92f47c2c87</srcmd5>
<version>2.2.9</version>
<time>1222261164</time>
<user>unknown</user>
</revision>
<revision rev="25" vrev="5">
<srcmd5>6edc7abcd93d108f31ae2e5248bb03f2</srcmd5>
<version>2.2.9</version>
<time>1224859876</time>
<user>unknown</user>
</revision>
<revision rev="26" vrev="1">
<srcmd5>e69471ad9c3c337e42ee71eccb96ee39</srcmd5>
<version>2.2.10</version>
<time>1225709756</time>
<user>unknown</user>
</revision>
<revision rev="27" vrev="2">
<srcmd5>5b528fcce78965659996d3230a7a4470</srcmd5>
<version>2.2.10</version>
<time>1227276687</time>
<user>unknown</user>
</revision>
<revision rev="28" vrev="1">
<srcmd5>ab6db783c5d9ee546e654b534fe0dcde</srcmd5>
<version>2.2.11</version>
<time>1232750428</time>
<user>unknown</user>
</revision>
<revision rev="29" vrev="2">
<srcmd5>0971c60077299362225b5e5eb1446569</srcmd5>
<version>2.2.11</version>
<time>1235647584</time>
<user>unknown</user>
</revision>
<revision rev="30" vrev="3">
<srcmd5>a039be05814797b2cfb6e4ba62962cd1</srcmd5>
<version>2.2.11</version>
<time>1235953623</time>
<user>unknown</user>
</revision>
<revision rev="31" vrev="4">
<srcmd5>70e6a86c89fd8ed47091a1bc59ca92f5</srcmd5>
<version>2.2.11</version>
<time>1240736020</time>
<user>unknown</user>
</revision>
<revision rev="32" vrev="5">
<srcmd5>2cd336629656bd34f789c494c22a233c</srcmd5>
<version>2.2.11</version>
<time>1244564775</time>
<user>unknown</user>
</revision>
<revision rev="33" vrev="1">
<srcmd5>6a1a8ee452bf86655852687eb4289ac0</srcmd5>
<version>2.2.12</version>
<time>1248873293</time>
<user>unknown</user>
</revision>
<revision rev="34" vrev="1">
<srcmd5>e42fbae238fd9a9a1d745acbf7d26a18</srcmd5>
<version>2.2.13</version>
<time>1250865994</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 18192 from user coolo
</comment>
</revision>
<revision rev="35" vrev="3">
<srcmd5>e42fbae238fd9a9a1d745acbf7d26a18</srcmd5>
<version>2.2.13</version>
<time>1250865994</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 18192 from user coolo
</comment>
</revision>
<revision rev="36" vrev="1">
<srcmd5>9a5afc3d4815ff22ad6c92da491c6bc4</srcmd5>
<version>2.2.14</version>
<time>1263484472</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 28986 from user coolo
</comment>
</revision>
<revision rev="37" vrev="2">
<srcmd5>11fb65489e0bfc26b5f9437698c09baa</srcmd5>
<version>2.2.14</version>
<time>1267801070</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 34123 from user coolo
</comment>
<requestid>34123</requestid>
</revision>
<revision rev="38" vrev="3">
<srcmd5>75a3559921a96532f2d69351eaec7be8</srcmd5>
<version>2.2.14</version>
<time>1268922883</time>
<user>autobuild</user>
</revision>
<revision rev="39" vrev="1">
<srcmd5>5610064637beaf949296e6bcec5a6bd3</srcmd5>
<version>2.2.15</version>
<time>1268983954</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 35087 from user coolo
</comment>
<requestid>35087</requestid>
</revision>
<revision rev="40" vrev="2">
<srcmd5>15f4558b23383855bd160111cb1311df</srcmd5>
<version>2.2.15</version>
<time>1273590977</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 39666 from user draht
</comment>
<requestid>39666</requestid>
</revision>
<revision rev="41" vrev="3">
<srcmd5>0da1e417c125a75c9599f46e6fc28200</srcmd5>
<version>2.2.15</version>
<time>1273654049</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 39834 from user draht
</comment>
<requestid>39834</requestid>
</revision>
<revision rev="42" vrev="4">
<srcmd5>0da1e417c125a75c9599f46e6fc28200</srcmd5>
<version>2.2.15</version>
<time>1278667336</time>
<user>autobuild</user>
<comment>release number sync</comment>
</revision>
<revision rev="43" vrev="5">
<srcmd5>0da1e417c125a75c9599f46e6fc28200</srcmd5>
<version>2.2.15</version>
<time>1278678563</time>
<user>autobuild</user>
<comment>release number sync</comment>
</revision>
<revision rev="44" vrev="1">
<srcmd5>7175773b74ceed05909165c1fcf4893b</srcmd5>
<version>2.2.16</version>
<time>1280498097</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 44223 from user coolo
</comment>
<requestid>44223</requestid>
</revision>
<revision rev="45" vrev="2">
<srcmd5>60897e90607bef5fb7e2ae7b0747bdcd</srcmd5>
<version>2.2.16</version>
<time>1286400110</time>
<user>autobuild</user>
<comment>Copy from Apache/apache2 based on submit request 49853 from user coolo
</comment>
<requestid>49853</requestid>
</revision>
<revision rev="46" vrev="1">
<srcmd5>8732730046a630854c76aa4099e78b1f</srcmd5>
<version>2.2.17</version>
<time>1291138786</time>
<user>darix</user>
<comment>Accepted submit request 54191 from user coolo
</comment>
<requestid>54191</requestid>
</revision>
<revision rev="47" vrev="2">
<srcmd5>3b8ed7ec2d301f1152ef8750707eafab</srcmd5>
<version>2.2.17</version>
<time>1291138793</time>
<user>darix</user>
<comment>Autobuild autoformatter for 54191
</comment>
</revision>
<revision rev="48" vrev="5">
<srcmd5>3b8ed7ec2d301f1152ef8750707eafab</srcmd5>
<version>2.2.17</version>
<time>1297941524</time>
<user>autobuild</user>
<comment>11.4 source split</comment>
</revision>
<revision rev="49" vrev="6">
<srcmd5>63390b0731fd9686f89ca93e79e4baf5</srcmd5>
<version>2.2.17</version>
<time>1306504359</time>
<user>saschpe</user>
<comment>- set sane default cipher string in apache2-vhost-ssl.template
- remove useless example snakeoil certs
- remove broken mkcert script
- Tag boot script as interactive as systemd uses it
- recommend the default mpm package (bnc#670027)</comment>
<requestid>70180</requestid>
</revision>
<revision rev="50" vrev="7">
<srcmd5>a6f00271d58733c96028a9c8f8cd4793</srcmd5>
<version>2.2.17</version>
<time>1306504381</time>
<user>saschpe</user>
<comment>Autobuild autoformatter for 70180
</comment>
</revision>
<revision rev="51" vrev="1">
<srcmd5>00c0390326bc399ff6c58447009a0fe2</srcmd5>
<version>2.2.21</version>
<time>1316080694</time>
<user>saschpe</user>
<comment>- Update to 2.2.21. News therein:
* re-worked CVE-2011-3192 (byterange_filter.c) with a regression
fix. New config option: MaxRanges (PR 51748)
* multi fixes in mod_filter, mod_proxy_ajp, mod_dav_fs,
mod_alias, mod_rewrite. As always, see CHANGES file.
- added httpd-%{realver}.tar.bz2.asc to source, along with
60C5442D.key which the tarball was signed with.
- need to add %ghost /lib/systemd to satisfy distributions that
have no systemd yet.
- Add apache2-systemd-ask-pass / apache2.service / start_apache2
and modify apache2-ssl-global.conf for systemd support
(bnc#697137).
- Update to version 2.2.20, fix CVE-2011-3192
mod_deflate D.o.S.
- Fix apache PR 45076
- Use SSL_MODE_RELEASE_BUFFERS to reduce mod_ssl memory usage
- Add 2 patches from the "low hanging fruit" warnings in apache
STATUS page.
* mod_deflate: Stop compressing HEAD requests
if there is not Content-Length header
* mod_reqtimeout: Disable keep-alive after read timeout
- Remove -fno-strict-aliasing from CFLAGS, no longer needed.</comment>
<requestid>82181</requestid>
</revision>
<revision rev="52" vrev="2">
<srcmd5>0b91600301a0bfb95eb168ac9f881cb7</srcmd5>
<version>2.2.21</version>
<time>1317541671</time>
<user>lrupp</user>
<comment>- Fix systemd files packaging, %ghost is not a good idea.
- Use systemd rpm macros for openSUSE 12.1 and later. (forwarded request 85398 from fcrozat)</comment>
<requestid>85408</requestid>
</revision>
<revision rev="53" vrev="4">
<srcmd5>0b91600301a0bfb95eb168ac9f881cb7</srcmd5>
<version>2.2.21</version>
<time>1319181770</time>
<user>adrianSuSE</user>
</revision>
<revision rev="54" vrev="5">
<srcmd5>8d1d77904a20829c636ef5f910301394</srcmd5>
<version>2.2.21</version>
<time>1319550371</time>
<user>coolo</user>
<comment>2.0 turns 2.2 in Summary and Description. No other change intended.</comment>
<requestid>89271</requestid>
</revision>
<revision rev="55" vrev="6">
<srcmd5>7673b517c718e4dad64e72ee8b74d090</srcmd5>
<version>2.2.21</version>
<time>1327093585</time>
<user>coolo</user>
<comment>Fix building</comment>
<requestid>99421</requestid>
</revision>
<revision rev="56" vrev="7">
<srcmd5>f217c764753994d65eb3840cc1267955</srcmd5>
<version>2.2.21</version>
<time>1329318864</time>
<user>coolo</user>
<comment>- compile with pcre 8.30 - patch taken from apache bugzilla
- enable mod_reqtimeout by default via APACHE_MODULES in
/etc/sysconfig/apache2, configuration
/etc/apache2/mod_reqtimeout.conf .
Of course, the existing configuration remains unchanged.
- add default vhost configs
* default-vhost.conf, default-vhost-ssl.conf, README.default-vhost</comment>
<requestid>104673</requestid>
</revision>
<revision rev="57" vrev="1">
<srcmd5>4bfd9a6b8eb38225deafab5a33640155</srcmd5>
<version>2.2.22</version>
<time>1329908524</time>
<user>saschpe</user>
<comment>regular 2.2.22 update</comment>
<requestid>106392</requestid>
</revision>
<revision rev="58" vrev="2">
<srcmd5>2f3e7b76842f59cb91b08647494f9e9f</srcmd5>
<version>2.2.22</version>
<time>1333356635</time>
<user>coolo</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>111808</requestid>
</revision>
<revision rev="59" vrev="3">
<srcmd5>e2d8a60f2eb73cd20e987a54655283f9</srcmd5>
<version>2.2.22</version>
<time>1338476546</time>
<user>coolo</user>
<comment>Add patch to enable npn for mod_spdy... specially advertise this capability... (forwarded request 114975 from dimstar)</comment>
<requestid>122701</requestid>
</revision>
<revision rev="60" vrev="5">
<srcmd5>e2d8a60f2eb73cd20e987a54655283f9</srcmd5>
<version>2.2.22</version>
<time>1340183174</time>
<user>adrianSuSE</user>
<comment>branched from openSUSE:Factory</comment>
</revision>
<revision rev="61" vrev="6">
<srcmd5>0b8097f114b4e21f2eb3734023bc9623</srcmd5>
<version>2.2.22</version>
<time>1342082234</time>
<user>namtrac</user>
<comment>- modified apache2.2-mpm-itk-20090414-00.patch to fix
itk running as root. bnc#681176 / CVE-2011-1176 (forwarded request 127274 from msmeissn)</comment>
<requestid>127551</requestid>
</revision>
<revision rev="62" vrev="7">
<srcmd5>de23165a27f2b2743eff414b4e65e6cb</srcmd5>
<version>2.2.22</version>
<time>1343671873</time>
<user>coolo</user>
<comment>- gensslcert: Use 0400 permissions for generated SSL certificate files
instead of 0644 (forwarded request 128919 from saschpe)</comment>
<requestid>129084</requestid>
</revision>
<revision rev="63" vrev="1">
<srcmd5>351a4c349524985820be55ac5ed2f124</srcmd5>
<version>2.4.2</version>
<time>1344172421</time>
<user>coolo</user>
<comment>- Fix factory-auto (aka r2dbag) complains about URL.
- Provide a symlink for apxs2 new location otherwise
all buggy spec files of external modules will break. (forwarded request 129514 from elvigia)</comment>
<requestid>129515</requestid>
</revision>
<revision rev="64" vrev="8">
<srcmd5>e25c0a903f2f5190e236bb8468931e8a</srcmd5>
<version>2.2.22</version>
<time>1344330216</time>
<user>coolo</user>
<comment>revert back to rev 62</comment>
</revision>
<revision rev="65" vrev="9">
<srcmd5>0213ef40dbccbbea1a51d5316ffe696a</srcmd5>
<version>2.2.22</version>
<time>1359020593</time>
<user>coolo</user>
<comment>Fix build in Facotry - ignore the -devel branch which had the urge to move in time</comment>
<requestid>149660</requestid>
</revision>
<revision rev="66" vrev="11">
<srcmd5>0213ef40dbccbbea1a51d5316ffe696a</srcmd5>
<version>2.2.22</version>
<time>1359108655</time>
<user>adrianSuSE</user>
<comment>Split 12.3 from Factory</comment>
</revision>
<revision rev="67" vrev="1">
<srcmd5>7bed618ca46acd79dd4f9c83185c757f</srcmd5>
<version>2.4.3</version>
<time>1362732600</time>
<user>coolo</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>157654</requestid>
</revision>
<revision rev="68" vrev="1">
<srcmd5>ef939b1e647f4f7b96d4c0e4204332ec</srcmd5>
<version>2.4.4</version>
<time>1372760412</time>
<user>coolo</user>
<comment>- apache-20-22-upgrade: still no cookie, module authn_file
is ok and must not be disabled on update.
authn_core must however be enabled too. (forwarded request 179383 from elvigia)</comment>
<requestid>179384</requestid>
</revision>
<revision rev="69" vrev="1">
<srcmd5>281d17c014ce37ee322488512c9be98f</srcmd5>
<version>2.4.6</version>
<time>1375202234</time>
<user>coolo</user>
<comment>- provide and obsolete mod_macro
- upgrade: some people complain that log_config module
is not enabled by default sometimes, fix that.
- upgrade : "SSLMutex" no longer exists.
- Toogle EnableSendfile on because now apache defaults to off
due to kernel bugs. that's a silly thing to do here
as kernel bugs have to be fixed at their source, not worked around
in applications. (forwarded request 184902 from elvigia)</comment>
<requestid>184903</requestid>
</revision>
<revision rev="70" vrev="2">
<srcmd5>d3bd693a90939ff0321d5ef9195c2383</srcmd5>
<version>2.4.6</version>
<time>1375370064</time>
<user>coolo</user>
<comment>- Enable mod_proxy_html, mod_xml2enc and mod_lua (missed BuildRequires) (forwarded request 185347 from elvigia)</comment>
<requestid>185351</requestid>
</revision>
<revision rev="71" vrev="3">
<srcmd5>a7f563aa0ffcfc0647d6b89d8a540f45</srcmd5>
<version>2.4.6</version>
<time>1375627687</time>
<user>coolo</user>
<comment>- Make the default keysize in the sample gensslcerts 2048 bits to match
government recommendations. (forwarded request 185577 from msmeissn)</comment>
<requestid>185675</requestid>
</revision>
<revision rev="72" vrev="4">
<srcmd5>cd60aac03db7c797ea25177f7298f811</srcmd5>
<version>2.4.6</version>
<time>1378126529</time>
<user>coolo</user>
<comment>- Really use %requires_ge for libapr1 and libapr-util1
mentioned but not implemented in the previous commit. (forwarded request 196847 from elvigia)</comment>
<requestid>196848</requestid>
</revision>
<revision rev="73" vrev="5">
<srcmd5>49ccab5606d11c857cb69553d56cfe8c</srcmd5>
<version>2.4.6</version>
<time>1378293413</time>
<user>coolo</user>
<comment>- Also fix subtle non-obvious systemd unit confusion
we really mean -DFOREGROUND not -DNO_DETACH the latter only
inhibits the parent from forking, not quite the same as
running in well.. the foreground as required. (forwarded request 197315 from elvigia)</comment>
<requestid>197316</requestid>
</revision>
<revision rev="74" vrev="7">
<srcmd5>49ccab5606d11c857cb69553d56cfe8c</srcmd5>
<version>2.4.6</version>
<time>1379661972</time>
<user>adrianSuSE</user>
<comment>Split 13.1 from Factory</comment>
</revision>
<revision rev="75" vrev="8">
<srcmd5>4ce33eb72460c5f6ed286842f3fa789b</srcmd5>
<version>2.4.6</version>
<time>1382011061</time>
<user>scarabeus_factory</user>
<comment>Fix SUSE spelling. (forwarded request 203323 from a_jaeger)</comment>
<requestid>203415</requestid>
</revision>
<revision rev="76" vrev="9">
<srcmd5>a72dc9998a2bf7a7a9aed84906452367</srcmd5>
<version>2.4.6</version>
<time>1382616445</time>
<user>scarabeus_factory</user>
<comment>- Correct build in old distros.
- disable (revert) mod_ssl changes in the previous
commit so it does not end in factory or 13.1 yet.
- make mod_systemd static so scenarios described in
[bnc#846897] do not happen again. (forwarded request 204342 from elvigia)</comment>
<requestid>204343</requestid>
</revision>
<revision rev="77" vrev="10">
<srcmd5>fd59e7388914b0b74915de0813b1e4dd</srcmd5>
<version>2.4.6</version>
<time>1383809625</time>
<user>coolo</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>205826</requestid>
</revision>
<revision rev="78" vrev="11">
<srcmd5>d45d86386780eaaa5b1aa22428c03a43</srcmd5>
<version>2.4.6</version>
<time>1384246180</time>
<user>coolo</user>
<comment>Removed obsolete directive DefaultType bnc#848146
Changed access control to use new Require type directives (forwarded request 205788 from fdekruijf)</comment>
<requestid>206490</requestid>
</revision>
<revision rev="79" vrev="12">
<srcmd5>ba74c1ef6faeb7a625cbbe3de3e9f168</srcmd5>
<version>2.4.6</version>
<time>1384700280</time>
<user>coolo</user>
<comment>- httpd-mod_ssl_ephemeralkeyhandling.patch obsoletes
mod_ssl-2.4.x-ekh.diff this new patch is the final
form of the rework, merged for 2.4.7. (forwarded request 207095 from elvigia)</comment>
<requestid>207096</requestid>
</revision>
<revision rev="80" vrev="1">
<srcmd5>6fb8b3a1c82aa2be0420a7bf843de5c0</srcmd5>
<version>2.4.7</version>
<time>1392270782</time>
<user>coolo</user>
<comment>Correct apache2.changes, mention the drop of httpd-event-ssl.patch (forwarded request 214772 from aeneas_jaissle)</comment>
<requestid>221932</requestid>
</revision>
<revision rev="81" vrev="2">
<srcmd5>5c6450be11867bc8a13b89168dc794e5</srcmd5>
<version>2.4.7</version>
<time>1393453222</time>
<user>coolo</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>223761</requestid>
</revision>
<revision rev="82" vrev="1">
<srcmd5>4ee4a5f10e94926689a35cc0c4a8065e</srcmd5>
<version>2.4.9</version>
<time>1396291386</time>
<user>coolo</user>
<comment>- version 2.4.9
* SECURITY: CVE-2014-0098
* SECURITY: CVE-2013-6438
* multiple bugfixes and improvements to mod_ssl, mod_lua,
mod_session and core, see CHANGES for details. (forwarded request 227796 from elvigia)</comment>
<requestid>227797</requestid>
</revision>
<revision rev="83" vrev="3">
<srcmd5>4ee4a5f10e94926689a35cc0c4a8065e</srcmd5>
<version>2.4.9</version>
<time>1409300497</time>
<user>adrianSuSE</user>
<comment>Split 13.2 from Factory</comment>
</revision>
<revision rev="84" vrev="1">
<srcmd5>4db05996d4e6df844b7ab21b98da97dc</srcmd5>
<version>2.4.10</version>
<time>1412851922</time>
<user>coolo</user>
<comment>- the following unused patches were removed from the package:
* apache2-mod_ssl_npn.patch
* httpd-2.0.49-log_server_status.dif
- 700 permissions for /usr/sbin/apache2-systemd-ask-pass and
/usr/sbin/start_apache2 [bnc#851627]
- allow only TCP ports in Yast2 firewall files
- more 2.2 -> 2.4 [bnc#862058]
- ServerSignature=Off and ServerTokens=Prod by request from
security team [bnc#716495]
- fix documentation links 2.2 -> 2.4 [bnc#888163] (internal)
- Update package Summary and Description.
- version 2.4.10
* SECURITY: CVE-2014-0117 (cve.mitre.org)
* SECURITY: CVE-2014-3523 (cve.mitre.org)
* SECURITY: CVE-2014-0226 (cve.mitre.org)
* SECURITY: CVE-2014-0118 (cve.mitre.org)
* SECURITY: CVE-2014-0231 (cve.mitre.org)
* Multiple bugfixes to mod_ssl, mod_cache, mod_deflate, mod_lua
* mod_proxy_fcgi supports unix sockets.
- provide httpd.service as alias for apache2.service for
compatibility reasons (bnc#888093)
- move most ssl options to ssl-global.conf. There is usually no need</comment>
<requestid>254328</requestid>
</revision>
<revision rev="85" vrev="2">
<srcmd5>58223e6b8b9cc1256101224e722520ec</srcmd5>
<version>2.4.10</version>
<time>1413060105</time>
<user>coolo</user>
<comment>1</comment>
<requestid>254981</requestid>
</revision>
<revision rev="86" vrev="3">
<srcmd5>5facc62f00acd4404c445fc1007773ce</srcmd5>
<version>2.4.10</version>
<time>1413403121</time>
<user>coolo</user>
<comment>1</comment>
<requestid>255864</requestid>
</revision>
<revision rev="87" vrev="4">
<srcmd5>96bbd7d4c28e71dd3642abfad530d477</srcmd5>
<version>2.4.10</version>
<time>1414218741</time>
<user>coolo</user>
<comment>1</comment>
<requestid>256900</requestid>
</revision>
<revision rev="88" vrev="5">
<srcmd5>24da7f51342dfe9730375fbe75964a7b</srcmd5>
<version>2.4.10</version>
<time>1415201203</time>
<user>coolo</user>
<comment>1</comment>
<requestid>259182</requestid>
</revision>
<revision rev="89" vrev="6">
<srcmd5>7318d8d078e0d98909073c777328476e</srcmd5>
<version>2.4.10</version>
<time>1415866896</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>260912</requestid>
</revision>
<revision rev="90" vrev="7">
<srcmd5>1ecece124ea01130ece85bb5bd9fb8ca</srcmd5>
<version>2.4.10</version>
<time>1417246768</time>
<user>coolo</user>
<comment>1</comment>
<requestid>263228</requestid>
</revision>
<revision rev="91" vrev="8">
<srcmd5>7e67e15b92352314b52956f03a424e59</srcmd5>
<version>2.4.10</version>
<time>1417810054</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>263952</requestid>
</revision>
<revision rev="92" vrev="9">
<srcmd5>f4ecd18c1a9f70c4a8b8c10df58aeb56</srcmd5>
<version>2.4.10</version>
<time>1418113025</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>264360</requestid>
</revision>
<revision rev="93" vrev="10">
<srcmd5>451f2785c3b3d1e030eb645c6186ccdd</srcmd5>
<version>2.4.10</version>
<time>1419896960</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>266431</requestid>
</revision>
<revision rev="94" vrev="11">
<srcmd5>6b56ba75974f53c81cc0136a6764efae</srcmd5>
<version>2.4.10</version>
<time>1420318933</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>266862</requestid>
</revision>
<revision rev="95" vrev="12">
<srcmd5>4377f506720c298405f68e234b1d42cb</srcmd5>
<version>2.4.10</version>
<time>1420927606</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>280345</requestid>
</revision>
<revision rev="96" vrev="13">
<srcmd5>fac457f573e240a579c7cd9fbb5f0cc6</srcmd5>
<version>2.4.10</version>
<time>1421334042</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>280888</requestid>
</revision>
<revision rev="97" vrev="1">
<srcmd5>eef0f04e2bc392851d843beee08f55ba</srcmd5>
<version>2.4.11</version>
<time>1421959696</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>281538</requestid>
</revision>
<revision rev="98" vrev="2">
<srcmd5>0020f4c0ddbbfb5bc3c0f7c64c200910</srcmd5>
<version>2.4.11</version>
<time>1423214325</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>283925</requestid>
</revision>
<revision rev="99" vrev="3">
<srcmd5>df28e708302514bfc061fcb503fb2e08</srcmd5>
<version>2.4.11</version>
<time>1424432586</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>286604</requestid>
</revision>
<revision rev="100" vrev="1">
<srcmd5>fd9f54c49ef5d335ddc1b67119239b09</srcmd5>
<version>2.4.12</version>
<time>1425377437</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>288480</requestid>
</revision>
<revision rev="101" vrev="2">
<srcmd5>c8832ee8f2383914e45258ca470c8837</srcmd5>
<version>2.4.12</version>
<time>1426174696</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>290233</requestid>
</revision>
<revision rev="102" vrev="3">
<srcmd5>98e98cfadb579c779f92e289cf833560</srcmd5>
<version>2.4.12</version>
<time>1428790187</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>295249</requestid>
</revision>
<revision rev="103" vrev="4">
<srcmd5>eb229183d78b76cc3ef47308e8488f0a</srcmd5>
<version>2.4.12</version>
<time>1430903890</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>305456</requestid>
</revision>
<revision rev="104" vrev="5">
<srcmd5>3325e231139eff798b5964db685bb2b2</srcmd5>
<version>2.4.12</version>
<time>1431799643</time>
<user>coolo</user>
<comment>- add httpd-2.4.12-CVE-2015-0253.patch to fix SECURITY: CVE-2015-0253
(cve.mitre.org) core: Fix a crash introduced in with ErrorDocument
400 pointing to a local URL-path with the INCLUDES filter active,
introduced in 2.4.11. PR 57531. [Yann Ylavic]</comment>
<requestid>307348</requestid>
</revision>
<revision rev="105" vrev="6">
<srcmd5>59b3774b1117cf19486e549879c80dfa</srcmd5>
<version>2.4.12</version>
<time>1432799315</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>308683</requestid>
</revision>
<revision rev="106" vrev="7">
<srcmd5>48a59ee51ec8ce156870338a0317f928</srcmd5>
<version>2.4.12</version>
<time>1433920513</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>311298</requestid>
</revision>
<revision rev="107" vrev="8">
<srcmd5>f5d104c3a492644035473377b727ac08</srcmd5>
<version>2.4.12</version>
<time>1434550498</time>
<user>coolo</user>
<comment>1</comment>
<requestid>311733</requestid>
</revision>
<revision rev="108" vrev="9">
<srcmd5>9b228f94b6370cd0c70e07e165396d3d</srcmd5>
<version>2.4.12</version>
<time>1436887252</time>
<user>coolo</user>
<comment>1</comment>
<requestid>316598</requestid>
</revision>
<revision rev="109" vrev="10">
<srcmd5>dc1e4f7cfa4f95a4eca96d01fc00fc2a</srcmd5>
<version>2.4.12</version>
<time>1437384108</time>
<user>coolo</user>
<comment>1</comment>
<requestid>317540</requestid>
</revision>
<revision rev="110" vrev="1">
<srcmd5>e0206b7d9c264cbfa16ac8b478a3c02b</srcmd5>
<version>2.4.16</version>
<time>1437657688</time>
<user>coolo</user>
<comment>1</comment>
<requestid>317883</requestid>
</revision>
<revision rev="111" vrev="2">
<srcmd5>40ec37b3fc7eb61bdc6ae19aa251c10b</srcmd5>
<version>2.4.16</version>
<time>1438899502</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>320254</requestid>
</revision>
<revision rev="112" vrev="3">
<srcmd5>9e9b73db50c41fe6f2e6c00c95d27e34</srcmd5>
<version>2.4.16</version>
<time>1439556353</time>
<user>dimstar_suse</user>
<comment>- Fixup libdir in installed files (forwarded request 322437 from Andreas_Schwab)</comment>
<requestid>322488</requestid>
</revision>
<revision rev="113" vrev="4">
<srcmd5>c01af85a476c67fa82a0039b9a587a44</srcmd5>
<version>2.4.16</version>
<time>1445092589</time>
<user>coolo</user>
<comment>- start_apache2: reintroduce sysconfig.d, include it on
command line (not in httpd.conf) instead of individual directives
[bnc#949434] (internal), [bnc#941331] (forwarded request 338023 from pgajdos)</comment>
<requestid>338423</requestid>
</revision>
<revision rev="114" vrev="1">
<srcmd5>6f9eea777c1841011d4af8efa30f7861</srcmd5>
<version>2.4.17</version>
<time>1445860031</time>
<user>dimstar_suse</user>
<comment>- Update to 2.4.17
- Enable mod_http2/ BuildRequire nghttp2
- MPMs: Support SO_REUSEPORT to create multiple duplicated listener
records for scalability
- mod_ssl: Support compilation against libssl built with OPENSSL_NO_SSL3
- For more changes see: http://www.apache.org/dist/httpd/CHANGES_2.4.17 (forwarded request 339571 from elvigia)</comment>
<requestid>339757</requestid>
</revision>
<revision rev="115" vrev="2">
<srcmd5>92a4f8249d1eca423faf71d99bde817a</srcmd5>
<version>2.4.17</version>
<time>1446764963</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>342041</requestid>
</revision>
<revision rev="116" vrev="3">
<srcmd5>da11f69f20991dabf4a0f241b0923306</srcmd5>
<version>2.4.17</version>
<time>1446989730</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>342622</requestid>
</revision>
<revision rev="117" vrev="4">
<srcmd5>452004c39405932622b18e0e244c16ef</srcmd5>
<version>2.4.17</version>
<time>1448400599</time>
<user>coolo</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>345070</requestid>
</revision>
<revision rev="118" vrev="5">
<srcmd5>98aa7366c00dabca7f9a3ed12fa6beca</srcmd5>
<version>2.4.17</version>
<time>1449686031</time>
<user>dimstar_suse</user>
<comment>- systemd: Set TasksMax=infinity for current systemd releases.
The default limit of 512 is too small and prevents the creation of
new server processes. Apache has its own runtime/harcoded limits. (forwarded request 347820 from elvigia)</comment>
<requestid>347918</requestid>
</revision>
<revision rev="119" vrev="1">
<srcmd5>648f9f856580f9975ce53285dd30e1bd</srcmd5>
<version>2.4.18</version>
<time>1450861012</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>350216</requestid>
</revision>
<revision rev="120" vrev="1">
<srcmd5>4d6c1d59a5ca56c11035718aaba2b321</srcmd5>
<version>2.4.20</version>
<time>1460480287</time>
<user>dimstar_suse</user>
<comment>- Update to version 2.4.20 (2.4.19 was never released)
* Drop httpd-2.4.18-missing-semicolon.patch now upstream
- Big changelog available, see:
http://www.apache.org/dist/httpd/CHANGES_2.4.20 for details. (forwarded request 387252 from elvigia)</comment>
<requestid>387291</requestid>
</revision>
<revision rev="121" vrev="2">
<srcmd5>9d988911277673ea868fa472c369acba</srcmd5>
<version>2.4.20</version>
<time>1462865113</time>
<user>dimstar_suse</user>
<comment>- removed note about ulimits in sysconfig file [bsc#976711]
- do not build mod_http2 for 13.2</comment>
<requestid>393785</requestid>
</revision>
<revision rev="122" vrev="3">
<srcmd5>1ed02efd5da877b4ebd65144a39dd1db</srcmd5>
<version>2.4.20</version>
<time>1463738093</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>396009</requestid>
</revision>
<revision rev="123" vrev="4">
<srcmd5>c6de0d40f281f81fd2b13cdea24a9e26</srcmd5>
<version>2.4.20</version>
<time>1464964523</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>399633</requestid>
</revision>
<revision rev="124" vrev="1">
<srcmd5>6903381f5e66816475bff79f654c8275</srcmd5>
<version>2.4.23</version>
<time>1468869784</time>
<user>dimstar_suse</user>
<comment>1</comment>
<requestid>408555</requestid>
</revision>
<revision rev="125" vrev="2">
<srcmd5>31246b8a733ad4742d73c80ec827c95d</srcmd5>
<version>2.4.23</version>
<time>1471345380</time>
<user>dimstar_suse</user>
<comment>- Remove the omc xml config. It is useless nowdays (forwarded request 417081 from scarabeus_iv)</comment>
<requestid>417408</requestid>
</revision>
<revision rev="126" vrev="3">
<srcmd5>2adab5cf0ced58b37643266fd143271a</srcmd5>
<version>2.4.23</version>
<time>1474806515</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>429346</requestid>
</revision>
<revision rev="127" vrev="4">
<srcmd5>3284211d67b335dc70df6f6cb9212429</srcmd5>
<version>2.4.23</version>
<time>1481885647</time>
<user>dimstar_suse</user>
<comment>- fix build with new systemd
+ amended httpd-2.4.3-mod_systemd.patch
- Replace mixed indentation with predominant style.</comment>
<requestid>445398</requestid>
</revision>
<revision rev="128" vrev="1">
<srcmd5>9a294d176d41a01d8963ddf0021ae466</srcmd5>
<version>2.4.25</version>
<time>1484474576</time>
<user>dimstar_suse</user>
<comment>- Added new HTTP2 option to sysconfig to ease enabling http2
- Added new protocols.conf which is included globally
- Enable http2 also for Leap 42.2+ and SLE12_SP2+
Sorry for the shifted lines: OBS/OSC or whatever always tends to shift lines around in the spec-file and to shorten lines like "%doc %{_mandir}/man..." to "%{_mandir}/man..."
The spec's diff seems to be incomplete in the GUI (forwarded request 449682 from weberho)</comment>
<requestid>449698</requestid>
</revision>
<revision rev="129" vrev="2">
<srcmd5>0367b5208dd311a8488d10efa18ac9d8</srcmd5>
<version>2.4.25</version>
<time>1487767954</time>
<user>dimstar_suse</user>
<comment>- fix caching of forward proxy
+ httpd-cache-forward-http-proxy.patch
- Don't require insserv if we don't need it.</comment>
<requestid>459428</requestid>
</revision>
<revision rev="130" vrev="3">
<srcmd5>3ac5e28b5c81c0726f4ef0a3d42f1025</srcmd5>
<version>2.4.25</version>
<time>1488124936</time>
<user>dimstar_suse</user>
<comment>- revert an attempt to fix PR 60458
+ httpd-cache-revert-svn1773397.patch</comment>
<requestid>460042</requestid>
</revision>
<revision rev="131" vrev="4">
<srcmd5>377da377bd5f5ba2849e9eaf65db692b</srcmd5>
<version>2.4.25</version>
<time>1489178708</time>
<user>dimstar_suse</user>
<comment>- start_apache2: include individual sysconfig.d files instead of
sysconfig.d dir, include sysconfig.d/include.conf after httpd.conf
is processed [bsc#1023616]</comment>
<requestid>477566</requestid>
</revision>
<revision rev="132" vrev="5">
<srcmd5>fe8ee976a06f3db0cab947a17311bd5c</srcmd5>
<version>2.4.25</version>
<time>1490786501</time>
<user>maxlin_factory</user>
<comment> (forwarded request 481458 from kukuk)</comment>
<requestid>481459</requestid>
</revision>
<revision rev="133" vrev="6">
<srcmd5>262294032e24226b6346977bd193904b</srcmd5>
<version>2.4.25</version>
<time>1496681326</time>
<user>dimstar_suse</user>
<comment>- server-tunning.conf: MaxClients was renamed to MaxRequestWorkers
[bsc#1037731]
- gensslcert: use hostname when fqdn is too long [bsc#1035829]
- remove apache-doc and apache-example-pages obsoletes/provides</comment>
<requestid>500571</requestid>
</revision>
<revision rev="134" vrev="1">
<srcmd5>87e435e6034b961aca046e949efdbdf0</srcmd5>
<version>2.4.26</version>
<time>1498045968</time>
<user>dimstar_suse</user>
<comment>- remove /usr/bin/http2 symlink only during apache2 package
uninstall, not upgrade [bsc#1041830]
- updated to 2.4.26: This release of Apache is a security, feature,
and bug fix release. For details, see
http://httpd.apache.org/dev/dist/CHANGES_2.4.26
- refreshed patches:
. httpd-2.4.12-lua-5.2.patch
. httpd-2.4.x-fate317766-config-control-two-protocol-options.diff
- removed patches (upstreamed)
. httpd-cache-forward-http-proxy.patch
. httpd-cache-revert-svn1773397.patch</comment>
<requestid>505095</requestid>
</revision>
<revision rev="135" vrev="1">
<srcmd5>84d4d27c10b09213fc0485c55f0d05cd</srcmd5>
<version>2.4.27</version>
<time>1501406528</time>
<user>dimstar_suse</user>
<comment>- updated to 2.4.27:
*) COMPATIBILITY: mod_lua: Remove the undocumented exported 'apr_table'
global variable when using Lua 5.2 or later. This was exported as a
side effect from luaL_register, which is no longer supported as of
Lua 5.2 which deprecates pollution of the global namespace.
[Rainer Jung]
*) COMPATIBILITY: mod_http2: Disable and give warning when using Prefork.
The server will continue to run, but HTTP/2 will no longer be negotiated.
[Stefan Eissing]
*) COMPATIBILITY: mod_proxy_fcgi: Revert to 2.4.20 FCGI behavior for the
default ProxyFCGIBackendType, fixing a regression with PHP-FPM. PR 61202.
[Jacob Champion, Jim Jagielski]
*) mod_lua: Improve compatibility with Lua 5.1, 5.2 and 5.3.
PR58188, PR60831, PR61245. [Rainer Jung]
*) mod_http2: Simplify ready queue, less memory and better performance. Update
mod_http2 version to 1.10.7. [Stefan Eissing]
*) Allow single-char field names inadvertantly disallowed in 2.4.25.
PR 61220. [Yann Ylavic]
*) htpasswd / htdigest: Do not apply the strict permissions of the temporary
passwd file to a possibly existing passwd file. PR 61240. [Ruediger Pluem]
*) core: Avoid duplicate HEAD in Allow header.
This is a regression in 2.4.24 (unreleased), 2.4.25 and 2.4.26.
PR 61207. [Christophe Jaillet]
- drop upstreamed patch:
* httpd-2.4.12-lua-5.2.patch (see upstream's PR#58188 for details)
- Adjust dependencies for rename apr/apr-util packages</comment>
<requestid>510917</requestid>
</revision>
<revision rev="136" vrev="1">
<srcmd5>02b05d36bc59af10c6539d6329d472e5</srcmd5>
<version>2.4.28</version>
<time>1507628267</time>
<user>dimstar_suse</user>
<comment>- updated to 2.4.28:
*) SECURITY: CVE-2017-9798 (cve.mitre.org)
Corrupted or freed memory access. <Limit[Except]> must now be used in the
main configuration file (httpd.conf) to register HTTP methods before the
.htaccess files. [Yann Ylavic]
*) event: Avoid possible blocking in the listener thread when shutting down
connections. PR 60956. [Yann Ylavic]
*) mod_speling: Don't embed referer data in a link in error page.
PR 38923 [Nick Kew]
*) htdigest: prevent a buffer overflow when a string exceeds the allowed max
length in a password file.
[Luca Toscano, Hanno Böck <hanno hboeck de>]
*) mod_proxy: loadfactor parameter can now be a decimal number (eg: 1.25).
[Jim Jagielski]
*) mod_proxy_wstunnel: Allow upgrade to any protocol dynamically.
PR 61142.
*) mod_watchdog/mod_proxy_hcheck: Time intervals can now be spefified
down to the millisecond. Supports 'mi' (minute), 'ms' (millisecond),
's' (second) and 'hr' (hour!) time suffixes. [Jim Jagielski]
*) mod_http2: Fix for stalling when more than 32KB are written to a
suspended stream. [Stefan Eissing]
*) build: allow configuration without APR sources. [Jacob Champion]
*) mod_ssl, ab: Fix compatibility with LibreSSL. PR 61184.
[Bernard Spil <brnrd freebsd.org>, Michael Schlenker <msc contact.de>,
Yann Ylavic]
*) core/log: Support use of optional "tag" in syslog entries.
PR 60525. [Ben Rubson <ben.rubson gmail.com>, Jim Jagielski]
*) mod_proxy: Fix ProxyAddHeaders merging. [Joe Orton]
*) core: Disallow multiple Listen on the same IP:port when listener buckets
are configured (ListenCoresBucketsRatio > 0), consistently with the single</comment>
<requestid>532105</requestid>
</revision>
<revision rev="137" vrev="1">
<srcmd5>e42c1b690e216c4ada5a824410a3b5f1</srcmd5>
<version>2.4.29</version>
<time>1508769720</time>
<user>dimstar_suse</user>
<comment>- updated to 2.4.29:
*) mod_unique_id: Use output of the PRNG rather than IP address and
pid, avoiding sleep() call and possible DNS issues at startup,
plus improving randomness for IPv6-only hosts. [Jan Kaluza]
*) mod_rewrite, core: Avoid the 'Vary: Host' response header when HTTP_HOST
is used in a condition that evaluates to true. PR 58231 [Luca Toscano]
*) mod_http2: v0.10.12, removed optimization for mutex handling in bucket
beams that could lead to assertion failure in edge cases.
[Stefan Eissing]
*) mod_proxy: Fix regression for non decimal loadfactor parameter introduced
in 2.4.28. [Jim Jagielski]
*) mod_authz_dbd: fix a segmentation fault if AuthzDBDQuery is not set.
PR 61546. [Lubos Uhliarik <luhliari redhat.com>]
*) mod_rewrite: Add support for starting External Rewriting Programs
as non-root user on UNIX systems by specifying username and group
name as third argument of RewriteMap directive. [Jan Kaluza]
*) core: Rewrite the Content-Length filter to avoid excessive memory
consumption. Chunked responses will be generated in more cases
than in previous releases. PR 61222. [Joe Orton, Ruediger Pluem]
*) mod_ssl: Fix SessionTicket callback return value, which does seem to
matter with OpenSSL 1.1. [Yann Ylavic]
- gensslcert:
* set also SAN [bsc#1045159]
* drop -C argument, it was not mapped to CN actually
* consider also case when hostname does return empty string or
does not exist [bsc#1057406]
* do not consider environment ROOT variable</comment>
<requestid>535888</requestid>
</revision>
<revision rev="138" vrev="2">
<srcmd5>39f217abbf97673452abba53d6fc5354</srcmd5>
<version>2.4.29</version>
<time>1511426235</time>
<user>dimstar_suse</user>
<comment>- APACHE_MODULES now contains authn_core in default configuration
[bsc#1066661]</comment>
<requestid>543119</requestid>
</revision>
<revision rev="139" vrev="3">
<srcmd5>0d2cff1d6610c1c8ce548bf57e91086e</srcmd5>
<version>2.4.29</version>
<time>1512765986</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>548029</requestid>
</revision>
<revision rev="140" vrev="4">
<srcmd5>0676a6cdc11ae3cfea5bff3f765c789c</srcmd5>
<version>2.4.29</version>
<time>1515505072</time>
<user>dimstar_suse</user>
<comment>- build brotli module
- Do not requires w3m, only recommends it.
- do not build with nghttp2 for SLE-12-SP3
- which was split after SLE11</comment>
<requestid>561062</requestid>
</revision>
<revision rev="141" vrev="5">
<srcmd5>dffc1d0e4bab3f4337d7b211dd92a6f2</srcmd5>
<version>2.4.29</version>
<time>1517823989</time>
<user>dimstar_suse</user>
<comment>- remove NameVirtualHost from documentation [bsc#1078557]
- for older distros, still use SuSEFirewall2 [bsc#1071548c#7]
- Replace SuSEFirewall2 by firewalld (fate#323460)</comment>
<requestid>572001</requestid>
</revision>
<revision rev="142" vrev="6">
<srcmd5>0793d6ea69dd0ead96654202acec572e</srcmd5>
<version>2.4.29</version>
<time>1518596391</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>575500</requestid>
</revision>
<revision rev="143" vrev="7">
<srcmd5>84b119334920c619e0d4f485f3cbcea7</srcmd5>
<version>2.4.29</version>
<time>1522057931</time>
<user>dimstar_suse</user>
<comment>- Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]</comment>
<requestid>588443</requestid>
</revision>
<revision rev="144" vrev="1">
<srcmd5>2f2fded9a1361b01d6371d1f9ca6db8b</srcmd5>
<version>2.4.33</version>
<time>1524489875</time>
<user>dimstar_suse</user>
<comment>- Updated description for SSLProtocol option. [bsc#1086854]
- Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854] (forwarded request 591690 from k_mikhail)</comment>
<requestid>591693</requestid>
</revision>
<revision rev="145" vrev="1">
<srcmd5>dd3ca74f9b722174e316576c3ffc110f</srcmd5>
<version>2.4.34</version>
<time>1532527431</time>
<user>dimstar_suse</user>
<comment>- updated to 2.4.34:
*) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
document translations. [CodeingBoy, popcorner]
*) event: avoid possible race conditions with modules on the child pool.
[Stefan Fritsch]
*) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
ProxyPassReverseCookiePath directive could fail to update correctly
'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560.
[Christophe Jaillet]
*) mod_ratelimit: fix behavior when proxing content. PR 62362.
[Luca Toscano, Yann Ylavic]
*) core: Re-allow '_' (underscore) in hostnames.
[Eric Covener]
*) mod_authz_core: If several parameters are used in a AuthzProviderAlias
directive, if these parameters are not enclosed in quotation mark, only
the first one is handled. The other ones are silently ignored.
Add a message to warn about such a spurious configuration.
PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
*) mod_md: improvements and bugfixes
- MDNotifyCmd now takes additional parameter that are passed on to the called command.
- ACME challenges have better checks for interference with other modules
- ACME challenges are only handled for domains managed by the module, allowing
other ACME clients to operate for other domains in the server.
- better libressl integration
*) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
*) logging: Some early logging-related startup messages could be lost
when using syslog for the global ErrorLog. [Eric Covener]
*) mod_cache: Handle case of an invalid Expires header value RFC compliant
like the case of an Expires time in the past: allow to overwrite the</comment>
<requestid>623132</requestid>
</revision>
<revision rev="146" vrev="2">
<srcmd5>96a9c56d0942db822da53484217d48df</srcmd5>
<version>2.4.33</version>
<time>1532591379</time>
<user>dimstar_suse</user>
<comment>Revert to 2.4.33 - boo#1102698</comment>
</revision>
<revision rev="147" vrev="2">
<srcmd5>d433e3f346cb764178cef775f165f007</srcmd5>
<version>2.4.34</version>
<time>1533292181</time>
<user>dimstar_suse</user>
<comment>- updated to 2.4.34:
*) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
document translations. [CodeingBoy, popcorner]
*) event: avoid possible race conditions with modules on the child pool.
[Stefan Fritsch]
*) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
ProxyPassReverseCookiePath directive could fail to update correctly
'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560.
[Christophe Jaillet]
*) mod_ratelimit: fix behavior when proxing content. PR 62362.
[Luca Toscano, Yann Ylavic]
*) core: Re-allow '_' (underscore) in hostnames.
[Eric Covener]
*) mod_authz_core: If several parameters are used in a AuthzProviderAlias
directive, if these parameters are not enclosed in quotation mark, only
the first one is handled. The other ones are silently ignored.
Add a message to warn about such a spurious configuration.
PR 62469 [Hank Ibell <hwibell gmail.com>, Christophe Jaillet]
*) mod_md: improvements and bugfixes
- MDNotifyCmd now takes additional parameter that are passed on to the called command.
- ACME challenges have better checks for interference with other modules
- ACME challenges are only handled for domains managed by the module, allowing
other ACME clients to operate for other domains in the server.
- better libressl integration
*) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'.
PR 62480. [Lubos Uhliarik <luhliari redhat.com>}
*) logging: Some early logging-related startup messages could be lost
when using syslog for the global ErrorLog. [Eric Covener]
*) mod_cache: Handle case of an invalid Expires header value RFC compliant
like the case of an Expires time in the past: allow to overwrite the</comment>
<requestid>626658</requestid>
</revision>
<revision rev="148" vrev="1">
<srcmd5>142a4c36851cd90a463f915d7fa9f028</srcmd5>
<version>2.4.35</version>
<time>1538377617</time>
<user>dimstar_suse</user>
<comment>updated to 2.4.35, successfully tested on Tumbleweed x86_64 (forwarded request 637678 from stroeder)</comment>
<requestid>637684</requestid>
</revision>
<revision rev="149" vrev="2">
<srcmd5>517cde1f31ae612cde10296090b650c8</srcmd5>
<version>2.4.35</version>
<time>1538672413</time>
<user>dimstar_suse</user>
<comment>- consider also patterns in APACHE_CONF_INCLUDE_DIRS as documentation
says (patch Juergen Gleiss)
- relink /usr/sbin/httpd after apache2-MPM uninstall [bsc#1107930c#1]
- simplify find_mpm function from script-helpers
- /usr/sbin/httpd is now created depending on preference hardcoded
in find_mpm (script-helpers), not depending on alphabetical
order of MPMs
- simplify spec file a bit</comment>
<requestid>639405</requestid>
</revision>
<revision rev="150" vrev="1">
<srcmd5>a3ad36af058ed3b9b6b7224dacee4860</srcmd5>
<version>2.4.37</version>
<time>1540818879</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>643962</requestid>
</revision>
<revision rev="151" vrev="2">
<srcmd5>00e15fcc268eb576a7034af51efbaae0</srcmd5>
<version>2.4.37</version>
<time>1541514868</time>
<user>dimstar_suse</user>
<comment>- the "event" MPM is fully supported since 2.4
- configure an OCSP stapling cache by default (still requires enabling
SSLUseStapling in vhost) (forwarded request 644712 from adkorte)</comment>
<requestid>645904</requestid>
</revision>
<revision rev="152" vrev="3">
<srcmd5>42c7c7fb8d374a4e4b374f47b0e061b4</srcmd5>
<version>2.4.37</version>
<time>1547554579</time>
<user>dimstar_suse</user>
<comment>- do not create sysconfig.d when already exists [bsc#1121086]
- use secure http sites by default in configs
- Switch to DEFAULT_SUSE Cipher suite
READ https://httpd.apache.org/docs/2.4/upgrading.html
at https://httpd.apache.org/docs/2.4/new_features_2_4.html</comment>
<requestid>664057</requestid>
</revision>
<revision rev="153" vrev="1">
<srcmd5>54ec385c41fe43fb13aa32acf69b3b19</srcmd5>
<version>2.4.38</version>
<time>1549311805</time>
<user>coolo</user>
<comment>- updated to 2.4.38
* mod_ssl: Clear retry flag before aborting client-initiated renegotiation.
PR 63052 [Joe Orton]
* mod_negotiation: Treat LanguagePriority as case-insensitive to match
AddLanguage behavior and HTTP specification. PR 39730 [Christophe Jaillet]
* mod_md: incorrect behaviour when synchronizing ongoing ACME challenges
have been fixed. [Michael Kaufmann, Stefan Eissing]
* mod_setenvif: We can have expressions that become true if a regex pattern
in the expression does NOT match. In this case val is NULL
and we should just set the value for the environment variable
like in the pattern case. [Ruediger Pluem]
* mod_session: Always decode session attributes early. [Hank Ibell]
* core: Incorrect values for environment variables are substituted when
multiple environment variables are specified in a directive. [Hank Ibell]
* mod_rewrite: Only create the global mutex used by "RewriteMap prg:" when
this type of map is present in the configuration. PR62311.
[Hank Ibell &lt;hwibell gmail.com&gt;]
* mod_dav: Fix invalid Location header when a resource is created by
passing an absolute URI on the request line [Jim Jagielski]
* mod_session_cookie: avoid duplicate Set-Cookie header in the response.
[Emmanuel Dreyfus &lt;manu@netbsd.org&gt;, Luca Toscano]
* mod_ssl: clear *SSL errors before loading certificates and checking
afterwards. Otherwise errors are reported when other SSL using modules
are in play. Fixes PR 62880. [Michael Kaufmann]
* mod_ssl: Fix the error code returned in an error path of
'ssl_io_filter_handshake()'. This messes-up error handling performed
in 'ssl_io_filter_error()' [Yann Ylavic]
* mod_ssl: Fix $HTTPS definition for "SSLEngine optional" case, and fix
authz provider so "Require ssl" works correctly in HTTP/2.
PR 61519, 62654. [Joe Orton, Stefan Eissing]
* mod_proxy: If ProxyPassReverse is used for reverse mapping of relative
redirects, subsequent ProxyPassReverse statements, whether they are
relative or absolute, may fail. PR 60408. [Peter Haworth &lt;pmh1wheel gmail.com&gt;]
* mod_lua: Now marked as a stable module [https://s.apache.org/Xnh1] (forwarded request 667015 from mmanu84)</comment>
<requestid>667841</requestid>
</revision>
<revision rev="154" vrev="2">
<srcmd5>22af843a1b33c3fbc66fbedfefaf2ed5</srcmd5>
<version>2.4.38</version>
<time>1551468383</time>
<user>coolo</user>
<comment>- added patches
fix https://github.com/icing/mod_h2/issues/167 [bsc#1125965]
+ apache2-mod_http2-issue-167.patch
- Replace old $RPM_* shell vars. Avoid old tar syntax.
- Tag scriptlets as explicitly requiring bash.</comment>
<requestid>679836</requestid>
</revision>
<revision rev="155" vrev="1">
<srcmd5>77f029ebc9fd0c2299322e83a5e7bc05</srcmd5>
<version>2.4.39</version>
<time>1554379928</time>
<user>dimstar_suse</user>
<comment>- version update to 2.4.39
* mod_proxy/ssl: Cleanup per-request SSL configuration anytime a
backend connection is recycled/reused to avoid a possible crash
with some SSLProxy configurations in <Location> or <Proxy>
context. PR 63256. [Yann Ylavic]
* mod_ssl: Correctly restore SSL verify state after TLSv1.3 PHA
failure. [Michael Kaufmann <mail michael-kaufmann.ch>]
* mod_log_config: Support %{c}h for conn-hostname, %h for
useragent_host PR 55348
* mod_socache_redis: Support for Redis as socache storage
provider.
* core: new configuration option 'MergeSlashes on|off' that
controls handling of multiple, consecutive slash ('/')
characters in the path component of the request URL. [Eric
Covener]
* mod_http2: when SSL renegotiation is inhibited and a 403
ErrorDocument is in play, the proper HTTP/2 stream reset did
not trigger with H2_ERR_HTTP_1_1_REQUIRED. Fixed. [Michael
Kaufmann]
* mod_http2: new configuration directive: `H2Padding numbits` to
control padding of HTTP/2 payload frames. 'numbits' is a number
from 0-8, controlling the range of padding bytes added to a
frame. The actual number added is chosen randomly per frame.
This applies to HEADERS, DATA and PUSH_PROMISE frames equally.
The default continues to be 0, e.g. no padding. [Stefan
Eissing]
* mod_http2: ripping out all the h2_req_engine internal features
now that mod_proxy_http2 has no more need for it. Optional
functions are still declared but no longer implemented. While
previous mod_proxy_http2 will work with this, it is</comment>
<requestid>690621</requestid>
</revision>
<revision rev="156" vrev="2">
<srcmd5>745eac9119ca6f29f2f4db852d9a4d59</srcmd5>
<version>2.4.39</version>
<time>1558128982</time>
<user>dimstar_suse</user>
<comment>- revive apache-22-24-upgrade [bsc#1134294] (internal)
- added sources
+ apache-22-24-upgrade</comment>
<requestid>702763</requestid>
</revision>
<revision rev="157" vrev="3">
<srcmd5>e8d3e378bae7d6feef0fc653fc2fc9e0</srcmd5>
<version>2.4.39</version>
<time>1562590905</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>713174</requestid>
</revision>
<revision rev="158" vrev="1">
<srcmd5>2b02405d35243e9c5db8e6d42b87f683</srcmd5>
<version>2.4.41</version>
<time>1566664983</time>
<user>dimstar_suse</user>
<comment>update to 2.4.41 (forwarded request 723497 from stroeder)</comment>
<requestid>724999</requestid>
</revision>
<revision rev="159" vrev="2">
<srcmd5>ebb90e7c9aee71534a2fcd1b91e73a84</srcmd5>
<version>2.4.41</version>
<time>1567848311</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>726493</requestid>
</revision>
<revision rev="160" vrev="3">
<srcmd5>f506af21a9cee6425d68614106ecc83d</srcmd5>
<version>2.4.41</version>
<time>1571049061</time>
<user>dimstar_suse</user>
<comment>- Add custom log files to logrotate according to apache2-vhost.template
In apache2-vhost.template, we recommend users to create custom logs like `/var/log/apache2/dummy-host.example.com-access_log`. But these files are not processed by logrotate and will grow fast. So I add these files to logrotate configuration. (forwarded request 735419 from guoyunhe)</comment>
<requestid>735601</requestid>
</revision>
<revision rev="161" vrev="4">
<srcmd5>4b7653fd12385396c76f5fc884e3cc33</srcmd5>
<version>2.4.41</version>
<time>1572021499</time>
<user>dimstar_suse</user>
<comment>- load private keys and certificates from pkcs11 token [SLE-7653]
- added patches
load certificates from openssl engine
+ apache2-load-certificates-from-pkcs11.patch
load private keys from openssl engine
+ apache2-load-private-keys-from-pkcs11.patch</comment>
<requestid>741682</requestid>
</revision>
<revision rev="162" vrev="5">
<srcmd5>88b2480f063237f75191a808e0b97256</srcmd5>
<version>2.4.41</version>
<time>1573420768</time>
<user>dimstar_suse</user>
<comment>- use %license [bsc#1156171]</comment>
<requestid>746513</requestid>
</revision>
<revision rev="163" vrev="6">
<srcmd5>d3b3cc83765eab80b7eafb121a5a658d</srcmd5>
<version>2.4.41</version>
<time>1577137156</time>
<user>dimstar_suse</user>
<comment>- add openssl call to DEFAULT_SUSE comment [bsc#1159480]
- modified sources
% apache2-ssl-global.conf</comment>
<requestid>757900</requestid>
</revision>
<revision rev="164" vrev="7">
<srcmd5>7c852330b17d270cdc82068e874cbf39</srcmd5>
<version>2.4.41</version>
<time>1579792166</time>
<user>dimstar_suse</user>
<comment>- apache2-devel now provides httpd-devel [bsc#1160100]</comment>
<requestid>765787</requestid>
</revision>
<revision rev="165" vrev="8">
<srcmd5>4aed5dea31b5ab21f2ff22085d6290e1</srcmd5>
<version>2.4.41</version>
<time>1580990814</time>
<user>dimstar_suse</user>
<comment>- define DEFAULT_LISTENBACKLOG=APR_INT32_MAX. We want apache
to honour net.core.somaxconn sysctl as the mandatory limit.
the old value of 511 was never used as until v5.4-rc6 it was
clamped to 128, in current kernels the default limit is 4096.
Cannot use the apr_socket_listen(.., -1) idiom because the function
expects a positive integer argument. (forwarded request 769110 from elvigia)</comment>
<requestid>769465</requestid>
</revision>
<revision rev="166" vrev="9">
<srcmd5>ad2e659dddd9a15f06e087c0ed00e322</srcmd5>
<version>2.4.41</version>
<time>1583007580</time>
<user>dimstar_suse</user>
<comment>- use r1874196 [SLE-7653]
- modified patches
% apache2-load-private-keys-from-pkcs11.patch (upstream 2.4.x port)
- deleted patches
- apache2-load-certificates-from-pkcs11.patch (merged to above)
- require just libbrotli-devel
- build mod_proxy_http2 extension
- fix build for older distributions</comment>
<requestid>779357</requestid>
</revision>
<revision rev="167" vrev="1">
<srcmd5>b327509ddafddd9c834896d77f52450b</srcmd5>
<version>2.4.43</version>
<time>1586247921</time>
<user>dimstar_suse</user>
<comment>- declare ap_sock_disable_nagle to fix loading mod_proxy_http2
(thanks to mliska@suse.com)
- modified patches
% httpd-visibility.patch (refreshed)
- version update to 2.4.43
*) mod_ssl: Fix memory leak of OCSP stapling response. [Yann Ylavic]
*) mod_proxy_http: Fix the forwarding of requests with content body when a
balancer member is unavailable; the retry on the next member was issued
with an empty body (regression introduced in 2.4.41). PR63891.
[Yann Ylavic]
*) mod_http2: Fixes issue where mod_unique_id would generate non-unique request
identifier under load, see <https://github.com/icing/mod_h2/issues/195>.
[Michael Kaufmann, Stefan Eissing]
*) mod_proxy_hcheck: Allow healthcheck expressions to use %{Content-Type}.
PR64140. [Renier Velazco <renier.velazco upr.edu>]
*) mod_authz_groupfile: Drop AH01666 from loglevel "error" to "info".
PR64172.
*) mod_usertrack: Add CookieSameSite, CookieHTTPOnly, and CookieSecure
to allow customization of the usertrack cookie. PR64077.
[Prashant Keshvani <prashant2400 gmail.com>, Eric Covener]
*) mod_proxy_ajp: Add "secret" parameter to proxy workers to implement legacy
AJP13 authentication. PR 53098. [Dmitry A. Bakshaev <dab1818 gmail com>]
*) mpm_event: avoid possible KeepAliveTimeout off by -100 ms.
[Eric Covener, Yann Ylavic]
*) Add a config layout for OpenWRT. [Graham Leggett]
*) Add support for cross compiling to apxs. If apxs is being executed from
somewhere other than its target location, add that prefix to includes and
library directories. Without this, apxs would fail to find config_vars.mk
and exit. [Graham Leggett]</comment>
<requestid>791205</requestid>
</revision>
<revision rev="168" vrev="2">
<srcmd5>c67e116f1a1f067902edc03d0acd83ac</srcmd5>
<version>2.4.43</version>
<time>1595011599</time>
<user>dimstar_suse</user>
<comment>- fix crash in mod_proxy_uwsgi for empty values of environment
variables [bsc#1174052]
- added patches
fix https://svn.apache.org/viewvc?view=revision
+ apache2-mod_proxy_uwsgi-fix-crash.patch</comment>
<requestid>821097</requestid>
</revision>
<revision rev="169" vrev="1">
<srcmd5>f0f6ec2ed30c0a93e57fe8e2c3fe03f4</srcmd5>
<version>2.4.46</version>
<time>1597602783</time>
<user>dimstar_suse</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>826679</requestid>
</revision>
<revision rev="170" vrev="2">
<srcmd5>db149f1db97f6e0b415aa2dafa9e33bd</srcmd5>
<version>2.4.46</version>
<time>1598532129</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>829974</requestid>
</revision>
<revision rev="171" vrev="3">
<srcmd5>045eb8d9b3a287ac9c4b8df36515d9f8</srcmd5>
<version>2.4.46</version>
<time>1598983489</time>
<user>dimstar_suse</user>
<comment>- gensslcert: add -a argument to override default SAN value (forwarded request 830773 from jtomasiak)</comment>
<requestid>830804</requestid>
</revision>
<revision rev="172" vrev="4">
<srcmd5>603f39ee27a2e331e6e5d5b916bb4616</srcmd5>
<version>2.4.46</version>
<time>1600700559</time>
<user>dimstar_suse</user>
<comment>- Make use of %service_del_postun_without_restart
And stop using DISABLE_RESTART_ON_UPDATE as this interface is
obsolete. (forwarded request 835119 from fbui)</comment>
<requestid>835144</requestid>
</revision>
<revision rev="173" vrev="5">
<srcmd5>786d35ab5f8d3acb48f8a3e04170e6aa</srcmd5>
<version>2.4.46</version>
<time>1601043923</time>
<user>dimstar_suse</user>
<comment>- gensslcert: fix SAN in final cert generation (forwarded request 836062 from jtomasiak)</comment>
<requestid>836064</requestid>
</revision>
<revision rev="174" vrev="6">
<srcmd5>728a776974f0577814cd4c179709c46e</srcmd5>
<version>2.4.46</version>
<time>1603030719</time>
<user>dimstar_suse</user>
<comment>- /var/run is depracted, /run should be used instead (forwarded request 841741 from fbui)</comment>
<requestid>841747</requestid>
</revision>
<revision rev="175" vrev="7">
<srcmd5>d0555af50b9a5a886ae0e7cae115a74a</srcmd5>
<version>2.4.46</version>
<time>1607430172</time>
<user>dimstar_suse</user>
<comment>- apache2 main package recommends apache2-utils
- break some long lines in the spec as requested by review team
- maybe make spec acceptable for factory bot
- modified sources
% _multibuild
- buildrequire netcfg for tests
- remove Requires(post): firewalld hard dependency (this is already
handled by the %firewalld_reload macro)
- package reworked trough [bsc#1178478]
- modified patches
% apache2-mod_proxy_uwsgi-fix-crash.patch (refreshed)
- modified sources
% apache2-loadmodule.conf
% apache2-manual.conf
% apache2-script-helpers
% apache2@.service
% sysconfig.apache2
- deleted patches
- deprecated-scripts-arch.patch (not needed)
- httpd-2.0.54-envvars.dif (not needed)
- httpd-2.1.3alpha-layout.dif
(renamed to apache2-system-dirs-layout.patch)
- httpd-2.2.0-apxs-a2enmod.dif (not needed)
- httpd-2.4.9-bnc690734.patch
(renamed to apache2-LimitRequestFieldSize-limits-headers.patch)</comment>
<requestid>853601</requestid>
</revision>
<revision rev="176" vrev="8">
<srcmd5>a521d3d5775a406ebdd7de5f790532b2</srcmd5>
<version>2.4.46</version>
<time>1607500893</time>
<user>dimstar_suse</user>
<comment>- Require /usr/bin/which instead of which: allow usage of busybox
variant for containers.</comment>
</revision>
<revision rev="177" vrev="9">
<srcmd5>8a8efcebe7f2438c0997dd70b0b545dd</srcmd5>
<version>2.4.46</version>
<time>1607801297</time>
<user>dimstar_suse</user>
<comment>- added https://httpd.apache.org/server-status like server status
(configured by APACHE_EXTENDED_STATUS="lua")
- modified sources
% apache2-mod_status.conf
% apache2-start_apache2
% sysconfig.apache2
- actually install suse provided READMEs
- install upstream configuration example
- added sources
+ apache2-README-configuration.txt
- apxs -q PREFIX now returns /srv/www again</comment>
<requestid>854976</requestid>
</revision>
<revision rev="178" vrev="10">
<srcmd5>22541c103d53e159c6bc9c9d1b4b962b</srcmd5>
<version>2.4.46</version>
<time>1608031845</time>
<user>dimstar_suse</user>
<comment>- only include BuildRequires: apache2-{prefork,worker,event} used in test target (forwarded request 855763 from adkorte)</comment>
<requestid>855764</requestid>
</revision>
<revision rev="179" vrev="11">
<srcmd5>36a81d9e51d57f88cfb98413880f45a4</srcmd5>
<version>2.4.46</version>
<time>1608550494</time>
<user>dimstar_suse</user>
<comment>- obsolete apache2-example-page and obsolete/provide apache2-doc
[bsc#180075]</comment>
<requestid>856752</requestid>
</revision>
<revision rev="180" vrev="12">
<srcmd5>99ae57519981093dd3d794407637e959</srcmd5>
<version>2.4.46</version>
<time>1610633092</time>
<user>dimstar_suse</user>
<comment>- re-add rcapache2 symlink (was lost about 6 weeks ago) (forwarded request 862727 from cboltz)</comment>
<requestid>862803</requestid>
</revision>
<revision rev="181" vrev="13">
<srcmd5>70d64e28907c34332161e817f784f519</srcmd5>
<version>2.4.46</version>
<time>1611770227</time>
<user>dimstar_suse</user>
<comment>- added Provides: http_daemon to fix bsc#1180132 (forwarded request 865975 from stroeder)</comment>
<requestid>865992</requestid>
</revision>
<revision rev="182" vrev="14">
<srcmd5>22bfd79114d81f26ba1b85f71d5f7b2f</srcmd5>
<version>2.4.46</version>
<time>1612466623</time>
<user>dimstar_suse</user>
<comment>- Add lua54.patch to fix building with lua54
</comment>
<requestid>867750</requestid>
</revision>
<revision rev="183" vrev="1">
<srcmd5>fd03628446bd9e8626dc68d4829bd7d1</srcmd5>
<version>2.4.48</version>
<time>1622839354</time>
<user>dimstar_suse</user>
<comment>- version update to 2.4.48
Changes with Apache 2.4.48
*) mod_proxy_wstunnel: Add ProxyWebsocketFallbackToProxyHttp to opt-out the
fallback to mod_proxy_http for WebSocket upgrade and tunneling.
[Yann Ylavic]
*) mod_proxy: Fix flushing of THRESHOLD_MIN_WRITE data while tunneling.
BZ 65294. [Yann Ylavic]
*) core: Fix a regression that stripped the ETag header from 304 responses.
PR 61820 [Ruediger Pluem, Roy T. Fielding]
*) core: Adding SSL related inquiry functions to the server API.
These function are always available, even when no module providing
SSL is loaded. They provide their own "shadowing" implementation for
the optional functions of similar name that mod_ssl and impersonators
of mod_ssl provide.
This enables loading of several SSL providing modules when all but
one of them registers itself into the new hooks. Two old-style SSL
modules will not work, as they replace the others optional functions
with their own.
Modules using the old-style optional functions will continue to work
as core supplies its own versions of those.
The following has been added so far:
- ap_ssl_conn_is_ssl() to query if a connection is using SSL.
- ap_ssl_var_lookup() to query SSL related variables for a
server/connection/request.
- Hooks for 'ssl_conn_is_ssl' and 'ssl_var_lookup' where modules
providing SSL can install their own value supplying functions.
- ap_ssl_add_cert_files() to enable other modules like mod_md to provide
certificate and keys for an SSL module like mod_ssl.
- ap_ssl_add_fallback_cert_files() to enable other modules like mod_md to</comment>
<requestid>896869</requestid>
</revision>
<revision rev="184" vrev="2">
<srcmd5>c92f1a4c35ee9a9a8441926293d68600</srcmd5>
<version>2.4.48</version>
<time>1628751671</time>
<user>RBrownSUSE</user>
<comment>Automatic submission by obs-autosubmit</comment>
<requestid>911090</requestid>
</revision>
<revision rev="185" vrev="1">
<srcmd5>e19a2f870cfd1382faf995466721dc3f</srcmd5>
<version>2.4.49</version>
<time>1632251546</time>
<user>dimstar_suse</user>
<comment>- version update to 2.4.49
*) core/mod_proxy/mod_ssl:
Adding `outgoing` flag to conn_rec, indicating a connection is
initiated by the server to somewhere, in contrast to incoming
connections from clients.
Adding 'ap_ssl_bind_outgoing()` function that marks a connection
as outgoing and is used by mod_proxy instead of the previous
optional function `ssl_engine_set`. This enables other SSL
module to secure proxy connections.
The optional functions `ssl_engine_set`, `ssl_engine_disable` and
`ssl_proxy_enable` are now provided by the core to have backward
compatibility with non-httpd modules that might use them. mod_ssl
itself no longer registers these functions, but keeps them in its
header for backward compatibility.
The core provided optional function wrap any registered function
like it was done for `ssl_is_ssl`.
[Stefan Eissing]
*) mod_ssl: Support logging private key material for use with
wireshark via log file given by SSLKEYLOGFILE environment
variable. Requires OpenSSL 1.1.1. PR 63391. [Joe Orton]
*) mod_proxy: Do not canonicalize the proxied URL when both "nocanon" and
"ProxyPassInterpolateEnv On" are configured. PR 65549.
[Joel Self <joelself gmail.com>]
*) mpm_event: Fix children processes possibly not stopped on graceful
restart. PR 63169. [Joel Self <joelself gmail.com>]
*) mod_proxy: Fix a potential infinite loop when tunneling Upgrade(d)
protocols from mod_proxy_http, and a timeout triggering falsely when
using mod_proxy_wstunnel, mod_proxy_connect or mod_proxy_http with
upgrade= setting. PRs 65521 and 65519. [Yann Ylavic]
*) mod_unique_id: Reduce the time window where duplicates may be generated</comment>
<requestid>919684</requestid>
</revision>
<revision rev="186" vrev="1">
<srcmd5>8c59c15f0eebe02a9841c94d7b75fe1e</srcmd5>
<version>2.4.51</version>
<time>1633723499</time>
<user>RBrownSUSE</user>
<comment>- version update to 2.4.51
*) SECURITY: CVE-2021-42013: Path Traversal and Remote Code
Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete
fix of CVE-2021-41773) (cve.mitre.org)
*) core: Add ap_unescape_url_ex() for better decoding control, and deprecate
unused AP_NORMALIZE_DROP_PARAMETERS flag. (forwarded request 924064 from stroeder)</comment>
<requestid>924154</requestid>
</revision>
<revision rev="187" vrev="2">
<srcmd5>1726ff1fdb96273dc7b3ce82118daed7</srcmd5>
<version>2.4.51</version>
<time>1637372283</time>
<user>dimstar_suse</user>
<comment>- add section for the 'event' MPM to apache2-server-tuning.conf (forwarded request 931327 from adkorte)</comment>
<requestid>931489</requestid>
</revision>
<revision rev="188" vrev="3">
<srcmd5>af1a547b2ded1220d3ec3d769af61162</srcmd5>
<version>2.4.51</version>
<time>1637970647</time>
<user>dimstar_suse</user>
<comment>- httpd-framework updated to svn1894461
- added patches
fix reverted logic, DirectorySlash NotFound is available in trunk only
+ apache-test-DirectorySlash-NotFound-logic.patch
- do not consider php tests, they do not run anyway</comment>
<requestid>933435</requestid>
</revision>
<revision rev="189" vrev="1">
<srcmd5>0a4135c91cab5df744da15083d53e83f</srcmd5>
<version>2.4.52</version>
<time>1640108422</time>
<user>dimstar_suse</user>
<comment>changlog update for 2.4.52:
CVE-2021-44224 boo#1193943
CVE-2021-44790 boo#1193942 (forwarded request 941816 from AndreasStieger)</comment>
<requestid>941819</requestid>
</revision>
<revision rev="190" vrev="2">
<srcmd5>df045456fb461950fb6b5b854c3360ea</srcmd5>
<version>2.4.52</version>
<time>1641932243</time>
<user>dimstar_suse</user>
<comment>- Add apache2-perl-io-socket.patch: t/ssl/ocsp.t: Handle new error
message raised by IO-Socket-SSL 2.073.
Fixes build with Perl-IO-socket-SSL 2.073, as currently staged in :E (forwarded request 945399 from dimstar)</comment>
<requestid>945511</requestid>
</revision>
<revision rev="191" vrev="3">
<srcmd5>a4b571ba8d3162e3a0465108e5219623</srcmd5>
<version>2.4.52</version>
<time>1642198359</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>946161</requestid>
</revision>
<revision rev="192" vrev="4">
<srcmd5>8306c0869de010a0891d1ad986ca824f</srcmd5>
<version>2.4.52</version>
<time>1643926583</time>
<user>dimstar_suse</user>
<comment>- ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of
DEFAULT_SUSE [jsc#SLE-22561]
- set also SSLProxyCipherSuite to PROFILE=SYSTEM
- modified sources
% apache2-ssl-global.conf (forwarded request 949462 from pgajdos)</comment>
<requestid>950138</requestid>
</revision>
<revision rev="193" vrev="1">
<srcmd5>3d4e471e5521f440066aad2cdfe54062</srcmd5>
<version>2.4.53</version>
<time>1647367458</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>961736</requestid>
</revision>
<revision rev="194" vrev="1">
<srcmd5>c2d4d2878eab60e82558115465404df9</srcmd5>
<version>2.4.54</version>
<time>1655118111</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>981545</requestid>
</revision>
<revision rev="195" vrev="2">
<srcmd5>eab5cb1520f3115faaeecb492645f497</srcmd5>
<version>2.4.54</version>
<time>1656587875</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>985733</requestid>
</revision>
<revision rev="196" vrev="3">
<srcmd5>d37594ad96f01f9c182a01b6ccca7eb8</srcmd5>
<version>2.4.54</version>
<time>1663074474</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>1002993</requestid>
</revision>
<revision rev="197" vrev="4">
<srcmd5>0212c64defef78728d8fa0e9e7db2491</srcmd5>
<version>2.4.54</version>
<time>1663764109</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>1004996</requestid>
</revision>
<revision rev="198" vrev="5">
<srcmd5>113b6c9882beac6eccad4e71c22dba37</srcmd5>
<version>2.4.54</version>
<time>1664112857</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>1005552</requestid>
</revision>
<revision rev="199" vrev="6">
<srcmd5>0f67ddf63afb6b254819c461faf3c999</srcmd5>
<version>2.4.54</version>
<time>1671305769</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>1043275</requestid>
</revision>
<revision rev="200" vrev="1">
<srcmd5>04b4cbbe48e20a68178ea7930f9916af</srcmd5>
<version>2.4.55</version>
<time>1674585739</time>
<user>dimstar_suse</user>
<comment></comment>
<requestid>1060451</requestid>
</revision>
</revisionlist>