-*- coding: utf-8 -*-
Changes with Apache 2.4.66
+ *) mod_ssl: Add SSLVHostSNIPolicy directive to control the virtual
+ host compatibility policy. PR 69743. [Joe Orton]
+
+ *) mod_md: update to version 2.6.2
+ - Fix error retry delay calculation to not already doubling the wait
+ on the first error.
+
+ *) mod_md: update to version 2.6.1
+ - Increasing default `MDRetryDelay` to 30 seconds to generate less bursty
+ traffic on errored renewals for the ACME CA. This leads to error retries
+ of 30s, 1 minute, 2, 4, etc. up to daily attempts.
+ - Checking that configuring `MDRetryDelay` will result in a positive
+ duration. A delay of 0 is not accepted.
+ - Fix a bug in checking Content-Type of responses from the ACME server.
+ - Added ACME ARI support (rfc9773) to the module. Enabled by default. New
+ directive "MDRenewViaARI on|off" for controlling this.
+ - Removing tailscale support. It has not been working for a long time
+ as the company decided to change their APIs. Away with the dead code,
+ documentation and tests.
+ - Fixed a compilation issue with pre-industrial versions of libcurl.
+
Changes with Apache 2.4.65
*) SECURITY: CVE-2025-54090: Apache HTTP Server: 'RewriteCond expr'
2.4.x patch: svn merge -c 1927792 ^/httpd/httpd/trunk .
+1: icing, rpluem, jorton
- *) various: Update DOCTYPE tags in server-generated HTML to 4.01
- Trunk version of patch:
- https://svn.apache.org/r1873397
- Backport version for 2.4.x of patch:
- https://patch-diff.githubusercontent.com/raw/apache/httpd/pull/553.diff
- Can be applied via apply_backport_pr.sh 553
- +1: rpluem, jorton, covener
-
*) mpm_common: Add new ListenTCPDeferAccept directive that allows to specify
the value set for the TCP_DEFER_ACCEPT socket option on listen sockets.
Trunk version of patch:
+++ /dev/null
- *) mod_md: update to version 2.6.1
- - Increasing default `MDRetryDelay` to 30 seconds to generate less bursty
- traffic on errored renewals for the ACME CA. This leads to error retries
- of 30s, 1 minute, 2, 4, etc. up to daily attempts.
- - Checking that configuring `MDRetryDelay` will result in a positive
- duration. A delay of 0 is not accepted.
- - Fix a bug in checking Content-Type of responses from the ACME server.
- - Added ACME ARI support (rfc9773) to the module. Enabled by default. New
- directive "MDRenewViaARI on|off" for controlling this.
- - Removing tailscale support. It has not been working for a long time
- as the company decided to change their APIs. Away with the dead code,
- documentation and tests.
- - Fixed a compilation issue with pre-industrial versions of libcurl.
+++ /dev/null
- *) mod_md: update to version 2.6.2
- - Fix error retry delay calculation to not already doubling the wait
- on the first error.
+++ /dev/null
- *) mod_ssl: Add SSLVHostSNIPolicy directive to control the virtual
- host compatibility policy. PR 69743. [Joe Orton]
-
-<html><body><h1>It works!</h1></body></html>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+<html>
+<head>
+<title>It works! Apache httpd</title>
+</head>
+<body>
+<p>It works!</p>
+</body>
+</html>
#define DOCTYPE_HTML_4_0F "<!DOCTYPE HTML PUBLIC \"-//W3C//" \
"DTD HTML 4.0 Frameset//EN\"\n" \
"\"http://www.w3.org/TR/REC-html40/frameset.dtd\">\n"
+/** HTML 4.01 Doctype */
+#define DOCTYPE_HTML_4_01 "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">\n"
+/** HTML 5 Doctype */
+#define DOCTYPE_HTML_5 "<!DOCTYPE html>\n"
/** XHTML 1.0 Strict Doctype */
#define DOCTYPE_XHTML_1_0S "<!DOCTYPE html PUBLIC \"-//W3C//" \
"DTD XHTML 1.0 Strict//EN\"\n" \
* Now send our actual output. Since we tagged this as being
* "text/html", we need to embed any HTML.
*/
- ap_rputs(DOCTYPE_HTML_3_2, r);
+ ap_rputs(DOCTYPE_HTML_4_01, r);
ap_rputs("<HTML>\n", r);
ap_rputs(" <HEAD>\n", r);
ap_rputs(" <TITLE>mod_example_hooks Module Content-Handler Output\n", r);
" <head>\n <title>Index of ", title,
"</title>\n", NULL);
} else {
- ap_rvputs(r, DOCTYPE_HTML_3_2,
+ ap_rvputs(r, DOCTYPE_HTML_4_01,
"<html>\n <head>\n"
" <title>Index of ", title,
"</title>\n", NULL);
ap_get_loadavg(&t);
if (!short_report) {
- ap_rputs(DOCTYPE_HTML_3_2
+ ap_rputs(DOCTYPE_HTML_4_01
"<html><head>\n"
"<title>Apache Status</title>\n"
"</head><body>\n"
*/
ap_rvputs_proto_in_ascii(r,
- DOCTYPE_HTML_2_0
+ DOCTYPE_HTML_4_01
"<html><head>\n<title>", title,
"</title>\n</head><body>\n<h1>", h1, "</h1>\n",
NULL);
if (r->header_only)
return OK;
- ap_rputs(DOCTYPE_HTML_3_2
+ ap_rputs(DOCTYPE_HTML_4_01
"<html><head><title>LDAP Cache Information</title></head>\n", r);
ap_rputs("<body bgcolor='#ffffff'><h1 align=center>LDAP Cache Information"
"</h1>\n", r);
{
ap_set_content_type_ex(r, "text/html; charset=ISO-8859-1", 1);
- ap_rvputs(r, DOCTYPE_HTML_3_2, "<html><head>\n<title>Menu for ",
+ ap_rvputs(r, DOCTYPE_HTML_4_01, "<html><head>\n<title>Menu for ",
ap_escape_html(r->pool, r->uri),
"</title>\n</head><body>\n", NULL);
}
else {
ap_set_content_type(r, "text/html; charset=ISO-8859-1");
- ap_rputs(DOCTYPE_HTML_3_2
+ ap_rputs(DOCTYPE_HTML_4_01
"<html><head><title>Balancer Manager</title>\n", r);
ap_rputs("<style type='text/css'>\n"
"table {\n"
/* print "ftp://host/" */
escpath = ap_escape_html(p, path);
- str = apr_psprintf(p, DOCTYPE_HTML_3_2
+ str = apr_psprintf(p, DOCTYPE_HTML_4_01
"<html>\n <head>\n <title>%s%s%s</title>\n"
"<base href=\"%s%s%s\">\n"
" </head>\n"
projects / thirdparty / apache / httpd.git / commitdiff
