-*- coding: utf-8 -*-
Changes with Apache 2.4.63
+ *) mod_md: update to version 2.4.28
+ - When the server starts, it looks for new, staged certificates to
+ activate. If the staged set of files in 'md/staging/<domain>' is messed
+ up, this could prevent further renewals to happen. Now, when the staging
+ set is present, but could not be activated due to an error, purge the
+ whole directory. [icing]
+ - Fix certificate retrieval on ACME renewal to not require a 'Location:'
+ header returned by the ACME CA. This was the way it was done in ACME
+ before it became an IETF standard. Let's Encrypt still supports this,
+ but other CAs do not. [icing]
+ - Restore compatibility with OpenSSL < 1.1. [ylavic]
+
+ *) mod_tls: removed the experimental module. It now is availble standalone
+ from https://github.com/icing/mod_tls. The rustls provided API is not
+ stable and does not align with the httpd release cycle.
+ [Stefan Eissing]
+
*) mod_rewrite: Better question mark tracking to avoid UnsafeAllow3F.
PR 69197. [Yann Ylavic, Eric Covener]
+++ /dev/null
- *) mod_md: update to version 2.4.28
- - When the server starts, it looks for new, staged certificates to
- activate. If the staged set of files in 'md/staging/<domain>' is messed
- up, this could prevent further renewals to happen. Now, when the staging
- set is present, but could not be activated due to an error, purge the
- whole directory. [icing]
- - Fix certificate retrieval on ACME renewal to not require a 'Location:'
- header returned by the ACME CA. This was the way it was done in ACME
- before it became an IETF standard. Let's Encrypt still supports this,
- but other CAs do not. [icing]
- - Restore compatibility with OpenSSL < 1.1. [ylavic]
+++ /dev/null
- *) mod_tls: removed the experimental module. It now is availble standalone
- from https://github.com/icing/mod_tls. The rustls provided API is not
- stable and does not align with the httpd release cycle.
- [Stefan Eissing]
projects / thirdparty / apache / httpd.git / commitdiff
