From: Yann Ylavic Date: Fri, 31 Mar 2023 15:11:00 +0000 (+0000) Subject: Sync CHANGES. X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=f375a726ebe77a0fdd3efafd9a5195ad2767241a;p=thirdparty%2Fapache%2Fhttpd.git Sync CHANGES. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1908867 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/CHANGES b/CHANGES index e09c05ea5f0..79775ef3f1e 100644 --- a/CHANGES +++ b/CHANGES @@ -1,6 +1,42 @@ -*- coding: utf-8 -*- Changes with Apache 2.5.1 + *) mod_http2: fixed a crash during connection termination. See PR 66539. + [Stefan Eissing] + + *) mod_mime: Do not match the extention against possible query string + parameters in case ProxyPass was used with the nocanon option. + [Ruediger Pluem] + + *) mod_proxy: In case that AllowEncodedSlashes is set to NoDecode do not + double encode encoded slashes in the URL sent by the reverse proxy to the + backend. [Ruediger Pluem] + + *) mod_rewrite: Add BCTLS flag similar to B, but only escaping the characters + checked by 2.4.56 in the query string. [Eric Covener] + + *) mod_md: + - Enabling ED25519 support and certificate transparency information when + building with libressl v3.5.0 and newer. Thanks to Giovanni Bechis. + - MDChallengeDns01 can now be configured for individual domains. + Thanks to Jérôme Billiras (@bilhackmac) for the initial PR. + - Fixed a bug found by Jérôme Billiras (@bilhackmac) that caused the challenge + teardown not being invoked as it should. + [Stefan Eissing] + + *) core: Add formats %{z} and %{strftime-format} to ErrorLogFormat, and make + sure that if the format is configured early enough it applies to every log + line. PR 62161. [Yann Ylavic] + + *) mod_proxy: Check before forwarding that a nocanon path has not been + rewritten with spaces during processing. [Yann Ylavic] + + *) mod_rewrite: Re-allow some proxy and redirect substitutions flagged as + 403 errors in 2.4.56. [Eric Covener] + + *) mod_rewrite: Fix a 2.4.56 regression for substitutions ending + in a question mark. [Eric Covener] + *) Add a SSL_SHARED_CIPHER environment variable with the list of client/server permitted ciphers. [Dirk-Willem van Gulik] diff --git a/changes-entries/errorlogformat.txt b/changes-entries/errorlogformat.txt deleted file mode 100644 index 1c2a308cced..00000000000 --- a/changes-entries/errorlogformat.txt +++ /dev/null @@ -1,4 +0,0 @@ - *) core: Add formats %{z} and %{strftime-format} to ErrorLogFormat, and make - sure that if the format is configured early enough it applies to every log - line. PR 62161. [Yann Ylavic] - diff --git a/changes-entries/http2_pr66539.txt b/changes-entries/http2_pr66539.txt deleted file mode 100644 index 73433300c39..00000000000 --- a/changes-entries/http2_pr66539.txt +++ /dev/null @@ -1,2 +0,0 @@ - *) mod_http2: fixed a crash during connection termination. See PR 66539. - [Stefan Eissing] diff --git a/changes-entries/md_v2.4.21.txt b/changes-entries/md_v2.4.21.txt deleted file mode 100644 index 2a3faa886ce..00000000000 --- a/changes-entries/md_v2.4.21.txt +++ /dev/null @@ -1,8 +0,0 @@ - *) mod_md: - - Enabling ED25519 support and certificate transparency information when - building with libressl v3.5.0 and newer. Thanks to Giovanni Bechis. - - MDChallengeDns01 can now be configured for individual domains. - Thanks to Jérôme Billiras (@bilhackmac) for the initial PR. - - Fixed a bug found by Jérôme Billiras (@bilhackmac) that caused the challenge - teardown not being invoked as it should. - [Stefan Eissing] \ No newline at end of file diff --git a/changes-entries/mod_mime_nocanon.txt b/changes-entries/mod_mime_nocanon.txt deleted file mode 100644 index 8ebf1a9b011..00000000000 --- a/changes-entries/mod_mime_nocanon.txt +++ /dev/null @@ -1,4 +0,0 @@ - - *) mod_mime: Do not match the extention against possible query string - parameters in case ProxyPass was used with the nocanon option. - [Ruediger Pluem] diff --git a/changes-entries/nodoubleencodeencodedslash.txt b/changes-entries/nodoubleencodeencodedslash.txt deleted file mode 100644 index bbe47a53640..00000000000 --- a/changes-entries/nodoubleencodeencodedslash.txt +++ /dev/null @@ -1,4 +0,0 @@ - - *) mod_proxy: In case that AllowEncodedSlashes is set to NoDecode do not - double encode encoded slashes in the URL sent by the reverse proxy to the - backend. [Ruediger Pluem] diff --git a/changes-entries/proxy_check_path.txt b/changes-entries/proxy_check_path.txt deleted file mode 100644 index f753e3a6bd3..00000000000 --- a/changes-entries/proxy_check_path.txt +++ /dev/null @@ -1,3 +0,0 @@ - *) mod_proxy: Check before forwarding that a nocanon path has not been - rewritten with spaces during processing. [Yann Ylavic] - diff --git a/changes-entries/rewrite-bctls b/changes-entries/rewrite-bctls deleted file mode 100644 index 2d567c9a2fb..00000000000 --- a/changes-entries/rewrite-bctls +++ /dev/null @@ -1,3 +0,0 @@ - *) mod_rewrite: Add BCTLS flag similar to B, but only escaping the characters - checked by 2.4.56 in the query string. [Eric Covener] - diff --git a/changes-entries/rewrite-escape.diff b/changes-entries/rewrite-escape.diff deleted file mode 100644 index 691adaba057..00000000000 --- a/changes-entries/rewrite-escape.diff +++ /dev/null @@ -1,3 +0,0 @@ - *) mod_rewrite: Re-allow some proxy and redirect substitutions flagged as - 403 errors in 2.4.56. [Eric Covener] - diff --git a/changes-entries/rewrite-qsd-regression.diff b/changes-entries/rewrite-qsd-regression.diff deleted file mode 100644 index 0e4fe1ac09b..00000000000 --- a/changes-entries/rewrite-qsd-regression.diff +++ /dev/null @@ -1,3 +0,0 @@ - *) mod_rewrite: Fix a 2.4.56 regression for substitutions ending - in a question mark. [Eric Covener] -