From 7ef8ed17b4468f8030358e686f3d3db88d5d22debd49269734621f302f219bb9 Mon Sep 17 00:00:00 2001 From: David Anes Date: Thu, 11 Apr 2024 19:35:33 +0000 Subject: [PATCH] Accepting request 1165100 from home:adkorte:branches:Apache - Update to 2.4.59: *) mod_deflate: Fixes and better logging for handling various error and edge cases. [Eric Covener, Yann Ylavic, Joe Orton, Eric Norris ] *) Add CGIScriptTimeout to mod_cgi. [Eric Covener] *) mod_xml2enc: Tolerate libxml2 2.12.0 and later. PR 68610 [ttachi ] *) mod_slotmem_shm: Use ap_os_is_path_absolute() to make it portable. [Jean-Frederic Clere] *) mod_ssl: Use OpenSSL-standard functions to assemble CA name lists for SSLCACertificatePath/SSLCADNRequestPath. Names will now be consistently sorted. PR 61574. [Joe Orton] *) mod_xml2enc: Update check to accept any text/ media type or any XML media type per RFC 7303, avoiding corruption of Microsoft OOXML formats. PR 64339. [Joseph Heenan , Joe Orton] *) mod_http2: v2.0.26 with the following fixes: - Fixed `Date` header on requests upgraded from HTTP/1.1 (h2c). Fixes . - Fixed small memory leak in h2 header bucket free. Thanks to Michael Kaufmann for finding this and providing the fix. *) htcacheclean: In -a/-A mode, list all files per subdirectory rather than only one. PR 65091. [Artem Egorenkov ] *) mod_ssl: SSLProxyMachineCertificateFile/Path may reference files which include CA certificates; those CA certs are treated as if configured with SSLProxyMachineCertificateChainFile. [Joe Orton] *) htpasswd, htdbm, dbmmanage: Update help&docs to refer to "hashing", rather than "encrypting" passwords. [Michele Preziuso ] *) mod_ssl: Fix build with LibreSSL 2.0.7+. PR 64047. [Giovanni Bechis, Yann Ylavic] *) htpasswd: Add support for passwords using SHA-2. [Joe Orton, Yann Ylavic] *) core: Allow mod_env to override system environment vars. [Joe Orton] *) Allow mod_dav_fs to tolerate race conditions between PROPFIND and an operation which removes a directory/file between apr_dir_read() and apr_stat(). Current behaviour is to abort the connection which seems inferior to tolerating (and logging) the error. [Joe Orton] *) mod_ldap: HTML-escape data in the ldap-status handler. [Eric Covener, Chamal De Silva] *) mod_ssl: Disable the OpenSSL ENGINE API when OPENSSL_NO_ENGINE is set. Allow for "SSLCryptoDevice builtin" if the ENGINE API is not available, notably with OpenSSL >= 3. PR 68080. [Yann Ylavic, Joe Orton] *) mod_ssl: Improve compatibility with OpenSSL 3, fix build warnings about deprecated ENGINE_ API, honor OPENSSL_API_COMPAT setting while defaulting to compatibitily with version 1.1.1 (including ENGINEs / SSLCryptoDevice). [Yann Ylavic] *) mod_ssl: release memory to the OS when needed. [Giovanni Bechis] *) mod_proxy: Ignore (and warn about) enablereuse=on for ProxyPassMatch when some dollar substitution (backreference) happens in the hostname or port part of the URL. [Yann Ylavic] *) mod_proxy: Allow to set a TTL for how long DNS resolutions to backend systems are cached. [Yann Ylavic] *) mod_proxy: Add optional third argument for ProxyRemote, which configures Basic authentication credentials to pass to the remote proxy. PR 37355. [Joe Orton] OBS-URL: https://build.opensuse.org/request/show/1165100 OBS-URL: https://build.opensuse.org/package/show/Apache/apache2?expand=0&rev=700 --- apache2.changes | 82 ++++++++++++++++++++++++++++++++++++++++ apache2.spec | 2 +- httpd-2.4.58.tar.bz2 | 3 -- httpd-2.4.58.tar.bz2.asc | 17 --------- httpd-2.4.59.tar.bz2 | 3 ++ httpd-2.4.59.tar.bz2.asc | 16 ++++++++ 6 files changed, 102 insertions(+), 21 deletions(-) delete mode 100644 httpd-2.4.58.tar.bz2 delete mode 100644 httpd-2.4.58.tar.bz2.asc create mode 100644 httpd-2.4.59.tar.bz2 create mode 100644 httpd-2.4.59.tar.bz2.asc diff --git a/apache2.changes b/apache2.changes index a9922b0..717ed62 100644 --- a/apache2.changes +++ b/apache2.changes @@ -1,3 +1,85 @@ +------------------------------------------------------------------- +Thu Apr 4 18:40:00 UTC 2024 - Arjen de Korte + +- Update to 2.4.59: + *) mod_deflate: Fixes and better logging for handling various + error and edge cases. [Eric Covener, Yann Ylavic, Joe Orton, + Eric Norris ] + + *) Add CGIScriptTimeout to mod_cgi. [Eric Covener] + + *) mod_xml2enc: Tolerate libxml2 2.12.0 and later. PR 68610 + [ttachi ] + + *) mod_slotmem_shm: Use ap_os_is_path_absolute() to make it portable. + [Jean-Frederic Clere] + + *) mod_ssl: Use OpenSSL-standard functions to assemble CA + name lists for SSLCACertificatePath/SSLCADNRequestPath. + Names will now be consistently sorted. PR 61574. + [Joe Orton] + + *) mod_xml2enc: Update check to accept any text/ media type + or any XML media type per RFC 7303, avoiding + corruption of Microsoft OOXML formats. PR 64339. + [Joseph Heenan , Joe Orton] + + *) mod_http2: v2.0.26 with the following fixes: + - Fixed `Date` header on requests upgraded from HTTP/1.1 (h2c). Fixes + . + - Fixed small memory leak in h2 header bucket free. Thanks to + Michael Kaufmann for finding this and providing the fix. + + *) htcacheclean: In -a/-A mode, list all files per subdirectory + rather than only one. PR 65091. + [Artem Egorenkov ] + + *) mod_ssl: SSLProxyMachineCertificateFile/Path may reference files + which include CA certificates; those CA certs are treated as if + configured with SSLProxyMachineCertificateChainFile. [Joe Orton] + + *) htpasswd, htdbm, dbmmanage: Update help&docs to refer to + "hashing", rather than "encrypting" passwords. + [Michele Preziuso ] + + *) mod_ssl: Fix build with LibreSSL 2.0.7+. PR 64047. + [Giovanni Bechis, Yann Ylavic] + + *) htpasswd: Add support for passwords using SHA-2. [Joe Orton, + Yann Ylavic] + + *) core: Allow mod_env to override system environment vars. [Joe Orton] + + *) Allow mod_dav_fs to tolerate race conditions between PROPFIND and an + operation which removes a directory/file between apr_dir_read() and + apr_stat(). Current behaviour is to abort the connection which seems + inferior to tolerating (and logging) the error. [Joe Orton] + + *) mod_ldap: HTML-escape data in the ldap-status handler. + [Eric Covener, Chamal De Silva] + + *) mod_ssl: Disable the OpenSSL ENGINE API when OPENSSL_NO_ENGINE is set. + Allow for "SSLCryptoDevice builtin" if the ENGINE API is not available, + notably with OpenSSL >= 3. PR 68080. [Yann Ylavic, Joe Orton] + + *) mod_ssl: Improve compatibility with OpenSSL 3, fix build warnings about + deprecated ENGINE_ API, honor OPENSSL_API_COMPAT setting while defaulting + to compatibitily with version 1.1.1 (including ENGINEs / SSLCryptoDevice). + [Yann Ylavic] + + *) mod_ssl: release memory to the OS when needed. [Giovanni Bechis] + + *) mod_proxy: Ignore (and warn about) enablereuse=on for ProxyPassMatch when + some dollar substitution (backreference) happens in the hostname or port + part of the URL. [Yann Ylavic] + + *) mod_proxy: Allow to set a TTL for how long DNS resolutions to backend + systems are cached. [Yann Ylavic] + + *) mod_proxy: Add optional third argument for ProxyRemote, which + configures Basic authentication credentials to pass to the remote + proxy. PR 37355. [Joe Orton] + ------------------------------------------------------------------- Tue Feb 20 10:52:29 UTC 2024 - Dominique Leuenberger diff --git a/apache2.spec b/apache2.spec index 07f40b0..b4fde88 100644 --- a/apache2.spec +++ b/apache2.spec @@ -107,7 +107,7 @@ %define build_http2 1 Name: apache2%{psuffix} -Version: 2.4.58 +Version: 2.4.59 Release: 0 Summary: The Apache HTTPD Server License: Apache-2.0 diff --git a/httpd-2.4.58.tar.bz2 b/httpd-2.4.58.tar.bz2 deleted file mode 100644 index 6c29532..0000000 --- a/httpd-2.4.58.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:fa16d72a078210a54c47dd5bef2f8b9b8a01d94909a51453956b3ec6442ea4c5 -size 7485817 diff --git a/httpd-2.4.58.tar.bz2.asc b/httpd-2.4.58.tar.bz2.asc deleted file mode 100644 index 5945b61..0000000 --- a/httpd-2.4.58.tar.bz2.asc +++ /dev/null @@ -1,17 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Comment: GPGTools - https://gpgtools.org - -iQIzBAABCgAdFiEEJvUe+agvSstD8ZA+03fJ59GUTGYFAmUtUXcACgkQ03fJ59GU -TGZJnA/+KAE23IcOsePVK93RsfY2pCXvrQWH2vRaPQOV68lMMyI9I3D7Dd6ZbOIL -kfdcuMydaOzkwAzgM9dgfC2PF5rO/8LDHtieBRfLNVjcK7ngatZLzRU+2qARk4PG -bxfnpVzpnshBTkMuQ0C3nr6mi+bXQgdbbSLXGS5SOBqckBMfkpEXzArU8PU0EQwT -u3Id+eAqWtxXtwRKz+lRNwLzmyiXc8a1YwXJh5d2ldrL+WlFA1cts+k3nR5YPzF1 -QsHLkoTuiAbXpRYHJg83AAENVxYPvwttIdthLeQtUgV6dcoiAuJzOt0/EBnUN5B3 -J+T10z4zvXN0MogTVceAFfySZ6fQrR5PXs3raepDjo/AtVH9dvSQdXhpOGtyiCI9 -4eabSL69Z7r+Nr3UzVLVYb4Uan5Z7G1UkKQNxJVJSR4mzitf1d3Fylw52ivBGnLv -OMcY1/b3Kx0m69dIiIlLPnG7UMgHwqgYcxJKomjI9opdobmpK42u8ZjOEYFoNAtk -sINfcehp83WwxdDuvpuSFNYWQXGhKONAZIyCW8lAuFWBG8oXra5osWY176OSUGTu -Ah+pM1NlbwL45r5kw+3t4L/3Hhx+dDqtI8jrQYReN/u4dBuIcqqLT1Ik2WjBuTyE -QiY/ZOzdxO7UAGYvgFyMHX+KsuqrxZKHd1JN2+TzHhEtstSICnE= -=CtTT ------END PGP SIGNATURE----- diff --git a/httpd-2.4.59.tar.bz2 b/httpd-2.4.59.tar.bz2 new file mode 100644 index 0000000..01b210f --- /dev/null +++ b/httpd-2.4.59.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:ec51501ec480284ff52f637258135d333230a7d229c3afa6f6c2f9040e321323 +size 7503198 diff --git a/httpd-2.4.59.tar.bz2.asc b/httpd-2.4.59.tar.bz2.asc new file mode 100644 index 0000000..eaba044 --- /dev/null +++ b/httpd-2.4.59.tar.bz2.asc @@ -0,0 +1,16 @@ +-----BEGIN PGP SIGNATURE----- + +iQIzBAABCgAdFiEEZbLUT+dL1ePeOsPwgngd5G1ZVPoFAmYNSicACgkQgngd5G1Z +VPq4Hw//ah2IWHUlwcCbgIGFWh7r4PlLIOQXUQaiBWrAMjpboT64kPXBA7fylxgB +vUheKnxJZY2UPoOkHN75hBxyLXZCDJ4WkKQny/992XADWOSVHE/arDX1cfnFgUQA +VrLPKVz7/UVorzx6tEqCCs8Uv3zrtmqhKFRJLRs4tdrYdzwASAl5rOllKx0vkvwv +hlED8jr3IxGTF5mwp+g0ZrvjIWM42VQYFoSXI8hdacOiF3NnIFuPDiq6WIDaJ0vZ +WpBisebo3kP1i0ykwZH+UBoDbEEKcxDVCotZmUjPu1YZ1Nti451oHKtkOSkIbl/M +KKjtpM7mPikj+JARjSBGCaUsKTS8CoB+MnGf30DCXvK+mnMoQSnW9Cn/i3c+dq9l +qVIYHsvQTVDhA6rinEJchaz/agQPW9Ilv3T+qYtzM6SsDcy1cYIwyUcCB2vABSHV +cOi9yoGvrc9HHiL0ji5Rsd+zXTdv3kbOzzkhqsnnZc38A007HFS5/jw0PIAf2tfx +N7VOzMtvgjtjtw3BxJyq3rnc/8j4RJTg/gJhw2eaqKweqUYi0V3ENj7tihYfuKEu +W2t1PzoBcD/8oy/egAgIftlB0JcvTq3r6tOuyM5yN9W1f6LpsYVil/D2kXSzDD3Y +LSqSEfLevbPx/mzLujT2febr1BZf0I1P/u6JUZfWb09KGc5TMD8= +=kE+v +-----END PGP SIGNATURE-----