|
|
|
@ -4,28 +4,16 @@
|
|
|
|
|
%define mmn 20120211
|
|
|
|
|
%define mmnisa %{mmn}%{__isa_name}%{__isa_bits}
|
|
|
|
|
%define vstring %(source /etc/os-release; echo ${NAME})
|
|
|
|
|
%define bugurl %(source /etc/os-release; echo ${BUG_REPORT_URL})
|
|
|
|
|
%if 0%{?fedora} > 26 || 0%{?rhel} > 7
|
|
|
|
|
%global mpm event
|
|
|
|
|
%else
|
|
|
|
|
%global mpm prefork
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
%if 0%{?fedora} > 35 || 0%{?rhel} > 9
|
|
|
|
|
%bcond_without pcre2
|
|
|
|
|
%bcond_with pcre
|
|
|
|
|
%else
|
|
|
|
|
%bcond_with pcre2
|
|
|
|
|
%bcond_without pcre
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
# Similar issue to https://bugzilla.redhat.com/show_bug.cgi?id=2043092
|
|
|
|
|
%undefine _package_note_flags
|
|
|
|
|
|
|
|
|
|
Summary: Apache HTTP Server
|
|
|
|
|
Name: httpd
|
|
|
|
|
Version: 2.4.62
|
|
|
|
|
Release: 4%{?dist}
|
|
|
|
|
Release: 1%{?dist}
|
|
|
|
|
URL: https://httpd.apache.org/
|
|
|
|
|
Source0: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2
|
|
|
|
|
Source1: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2.asc
|
|
|
|
@ -77,60 +65,53 @@ Source48: apache-poweredby.png
|
|
|
|
|
Source49: httpd.sysusers
|
|
|
|
|
|
|
|
|
|
# build/scripts patches
|
|
|
|
|
Patch1: httpd-2.4.59-full-release.patch
|
|
|
|
|
Patch2: httpd-2.4.43-apxs.patch
|
|
|
|
|
Patch3: httpd-2.4.43-deplibs.patch
|
|
|
|
|
Patch3: httpd-2.4.59-deplibs.patch
|
|
|
|
|
# Needed for socket activation and mod_systemd patch
|
|
|
|
|
Patch19: httpd-2.4.53-detect-systemd.patch
|
|
|
|
|
# Features/functional changes
|
|
|
|
|
Patch20: httpd-2.4.48-r1842929+.patch
|
|
|
|
|
Patch21: httpd-2.4.43-mod_systemd.patch
|
|
|
|
|
Patch22: httpd-2.4.53-export.patch
|
|
|
|
|
Patch23: httpd-2.4.43-corelimit.patch
|
|
|
|
|
Patch24: httpd-2.4.54-icons.patch
|
|
|
|
|
Patch25: httpd-2.4.43-cachehardmax.patch
|
|
|
|
|
Patch26: httpd-2.4.43-socket-activation.patch
|
|
|
|
|
Patch27: httpd-2.4.43-sslciphdefault.patch
|
|
|
|
|
Patch29: httpd-2.4.43-sslprotdefault.patch
|
|
|
|
|
Patch30: httpd-2.4.43-logjournal.patch
|
|
|
|
|
Patch31: httpd-2.4.53-separate-systemd-fns.patch
|
|
|
|
|
Patch32: httpd-2.4.58-r1912477+.patch
|
|
|
|
|
Patch33: httpd-2.4.54-selinux.patch
|
|
|
|
|
Patch21: httpd-2.4.48-r1842929+.patch
|
|
|
|
|
Patch22: httpd-2.4.43-mod_systemd.patch
|
|
|
|
|
Patch23: httpd-2.4.48-export.patch
|
|
|
|
|
Patch24: httpd-2.4.43-corelimit.patch
|
|
|
|
|
Patch25: httpd-2.4.57-selinux.patch
|
|
|
|
|
Patch26: httpd-2.4.53-icons.patch
|
|
|
|
|
Patch27: httpd-2.4.43-cachehardmax.patch
|
|
|
|
|
Patch28: httpd-2.4.62-socket-activation.patch
|
|
|
|
|
Patch29: httpd-2.4.43-sslciphdefault.patch
|
|
|
|
|
Patch30: httpd-2.4.43-sslprotdefault.patch
|
|
|
|
|
Patch31: httpd-2.4.43-logjournal.patch
|
|
|
|
|
Patch32: httpd-2.4.48-proxy-ws-idle-timeout.patch
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1949606
|
|
|
|
|
Patch34: httpd-2.4.62-freebind.patch
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1947496
|
|
|
|
|
Patch35: httpd-2.4.62-proxy-ws-idle-timeout.patch
|
|
|
|
|
Patch33: httpd-2.4.62-freebind.patch
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=2065677
|
|
|
|
|
Patch34: httpd-2.4.53-separate-systemd-fns.patch
|
|
|
|
|
# https://issues.redhat.com/browse/RHEL-5071
|
|
|
|
|
Patch35: httpd-2.4.57-r1912477+.patch
|
|
|
|
|
|
|
|
|
|
# Bug fixes
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1397243
|
|
|
|
|
Patch60: httpd-2.4.43-enable-sslv3.patch
|
|
|
|
|
Patch61: httpd-2.4.59-no-engine.patch
|
|
|
|
|
Patch100: httpd-2.4.43-enable-sslv3.patch
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1932442
|
|
|
|
|
Patch101: httpd-2.4.48-full-release.patch
|
|
|
|
|
# https://bz.apache.org/bugzilla/show_bug.cgi?id=69197
|
|
|
|
|
Patch62: httpd-2.4.62-r1919325.patch
|
|
|
|
|
Patch102: httpd-2.4.62-r1919325.patch
|
|
|
|
|
|
|
|
|
|
# Security fixes
|
|
|
|
|
# Patch200: ...
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=...
|
|
|
|
|
#
|
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=
|
|
|
|
|
# Patch200: httpd-2.4.X-CVE-XXXX-YYYYY.patch
|
|
|
|
|
|
|
|
|
|
# Apache-2.0: everything
|
|
|
|
|
# BSD-3-Clause: util_pcre.c, ap_regex.h
|
|
|
|
|
# metamail AND HPND-sell-variant:: server/util_md5.c:
|
|
|
|
|
# Spencer-94: modules/metadata/mod_mime_magic.c
|
|
|
|
|
License: Apache-2.0 AND (BSD-3-Clause AND metamail AND HPND-sell-variant AND Spencer-94)
|
|
|
|
|
|
|
|
|
|
License: ASL 2.0
|
|
|
|
|
BuildRequires: gcc, autoconf, pkgconfig, findutils, xmlto
|
|
|
|
|
BuildRequires: perl-interpreter, perl-generators, systemd-devel
|
|
|
|
|
BuildRequires: zlib-devel, libselinux-devel, lua-devel, brotli-devel
|
|
|
|
|
BuildRequires: apr-devel >= 1.5.0, apr-util-devel >= 1.5.0
|
|
|
|
|
BuildRequires: openldap-devel
|
|
|
|
|
BuildRequires: systemd-rpm-macros
|
|
|
|
|
%if %{with pcre2}
|
|
|
|
|
BuildRequires: pcre2-devel
|
|
|
|
|
%endif
|
|
|
|
|
%if %{with pcre}
|
|
|
|
|
BuildRequires: pcre-devel > 5.0
|
|
|
|
|
%endif
|
|
|
|
|
BuildRequires: apr-devel >= 1.5.0, apr-util-devel >= 1.5.0, pcre-devel >= 5.0
|
|
|
|
|
BuildRequires: gnupg2
|
|
|
|
|
Requires: system-logos(httpd-logo-ng)
|
|
|
|
|
BuildRequires: systemd-rpm-macros
|
|
|
|
|
Requires: system-logos-httpd
|
|
|
|
|
Provides: webserver
|
|
|
|
|
Requires: httpd-core = 0:%{version}-%{release}
|
|
|
|
|
Recommends: mod_http2, mod_lua
|
|
|
|
@ -148,12 +129,10 @@ Provides: mod_proxy_uwsgi = %{version}-%{release}
|
|
|
|
|
Requires: /etc/mime.types
|
|
|
|
|
Requires: httpd-tools = %{version}-%{release}
|
|
|
|
|
Requires: httpd-filesystem = %{version}-%{release}
|
|
|
|
|
%if 0%{?fedora} > 39 || 0%{?rhel} > 9
|
|
|
|
|
Requires: apr-util-1(dbm)%{_isa}
|
|
|
|
|
%endif
|
|
|
|
|
Requires(pre): httpd-filesystem
|
|
|
|
|
Conflicts: apr < 1.5.0-1
|
|
|
|
|
Conflicts: httpd < 2.4.53-2
|
|
|
|
|
Conflicts: httpd < 2.4.53-3
|
|
|
|
|
Conflicts: mod_http2 < 1.15.19-3
|
|
|
|
|
Obsoletes: mod_proxy_uwsgi < 2.0.17.1-2
|
|
|
|
|
|
|
|
|
|
%description core
|
|
|
|
@ -161,8 +140,8 @@ The httpd-core package contains essential httpd binaries.
|
|
|
|
|
|
|
|
|
|
%package devel
|
|
|
|
|
Summary: Development interfaces for the Apache HTTP Server
|
|
|
|
|
Requires: apr-devel, apr-util-devel, pkgconfig, libtool
|
|
|
|
|
Requires: httpd-core = 0:%{version}-%{release}
|
|
|
|
|
Requires: apr-devel, apr-util-devel, pkgconfig
|
|
|
|
|
Requires: httpd-core = %{version}-%{release}
|
|
|
|
|
|
|
|
|
|
%description devel
|
|
|
|
|
The httpd-devel package contains the APXS binary and other files
|
|
|
|
@ -206,11 +185,9 @@ Epoch: 1
|
|
|
|
|
BuildRequires: openssl-devel
|
|
|
|
|
Requires(pre): httpd-filesystem
|
|
|
|
|
Requires: httpd-core = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
|
|
|
|
|
Requires: sscg >= 3.0.3, /usr/bin/hostname
|
|
|
|
|
Requires: sscg >= 3.0.0-7, /usr/bin/hostname
|
|
|
|
|
# Require an OpenSSL which supports PROFILE=SYSTEM
|
|
|
|
|
Conflicts: openssl-libs < 1:1.0.1h-4
|
|
|
|
|
# mod_ssl/mod_nss cannot both be loaded simultaneously
|
|
|
|
|
Conflicts: mod_nss
|
|
|
|
|
|
|
|
|
|
%description -n mod_ssl
|
|
|
|
|
The mod_ssl module provides strong cryptography for the Apache HTTP
|
|
|
|
@ -256,7 +233,31 @@ written in the Lua programming language.
|
|
|
|
|
|
|
|
|
|
%prep
|
|
|
|
|
%{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}'
|
|
|
|
|
%autosetup -p1 -S gendiff
|
|
|
|
|
%setup -q
|
|
|
|
|
%patch2 -p1 -b .apxs
|
|
|
|
|
%patch3 -p1 -b .deplibs
|
|
|
|
|
|
|
|
|
|
%patch19 -p1 -b .detectsystemd
|
|
|
|
|
|
|
|
|
|
%patch21 -p1 -b .r1842929+
|
|
|
|
|
%patch22 -p1 -b .mod_systemd
|
|
|
|
|
%patch23 -p1 -b .export
|
|
|
|
|
%patch24 -p1 -b .corelimit
|
|
|
|
|
%patch25 -p1 -b .selinux
|
|
|
|
|
%patch26 -p1 -b .icons
|
|
|
|
|
%patch27 -p1 -b .cachehardmax
|
|
|
|
|
%patch28 -p1 -b .socketactivation
|
|
|
|
|
%patch29 -p1 -b .sslciphdefault
|
|
|
|
|
%patch30 -p1 -b .sslprotdefault
|
|
|
|
|
%patch31 -p1 -b .logjournal
|
|
|
|
|
%patch32 -p1 -b .proxy-ws-idle-timeout
|
|
|
|
|
%patch33 -p1 -b .freebind
|
|
|
|
|
%patch34 -p1 -b .separatesystemd
|
|
|
|
|
%patch35 -p1 -b .r1912477+
|
|
|
|
|
|
|
|
|
|
%patch100 -p1 -b .enable-sslv3
|
|
|
|
|
%patch101 -p1 -b .full-release
|
|
|
|
|
%patch102 -p1 -b .r1919325
|
|
|
|
|
|
|
|
|
|
# Patch in the vendor string
|
|
|
|
|
sed -i '/^#define PLATFORM/s/Unix/%{vstring}/' os/unix/os.h
|
|
|
|
@ -296,16 +297,16 @@ s,@DOCROOT@,%{docroot},g
|
|
|
|
|
s,@LOGDIR@,%{_localstatedir}/log/httpd,g
|
|
|
|
|
' < $RPM_SOURCE_DIR/httpd.conf.xml \
|
|
|
|
|
> httpd.conf.xml
|
|
|
|
|
sed 's|@BUG_REPORT_URL@|%{bugurl}|g' < $RPM_SOURCE_DIR/apachectl.xml > apachectl.xml
|
|
|
|
|
|
|
|
|
|
xmlto man ./httpd.conf.xml
|
|
|
|
|
xmlto man $RPM_SOURCE_DIR/htcacheclean.service.xml
|
|
|
|
|
xmlto man $RPM_SOURCE_DIR/httpd.service.xml
|
|
|
|
|
xmlto man apachectl.xml
|
|
|
|
|
|
|
|
|
|
# apachectl.xml => apachectl.8
|
|
|
|
|
xmlto man %{SOURCE47}
|
|
|
|
|
|
|
|
|
|
: Building with MMN %{mmn}, MMN-ISA %{mmnisa}
|
|
|
|
|
: Default MPM is %{mpm}, vendor string is '%{vstring}'
|
|
|
|
|
: Regex Engine: PCRE=%{with pcre} PCRE2=%{with pcre2}
|
|
|
|
|
|
|
|
|
|
%build
|
|
|
|
|
# forcibly prevent use of bundled apr, apr-util, pcre
|
|
|
|
@ -318,7 +319,11 @@ autoheader && autoconf || exit 1
|
|
|
|
|
%{__perl} -pi -e "s:\@exp_installbuilddir\@:%{_libdir}/httpd/build:g" \
|
|
|
|
|
support/apxs.in
|
|
|
|
|
|
|
|
|
|
%set_build_flags
|
|
|
|
|
export CFLAGS=$RPM_OPT_FLAGS
|
|
|
|
|
export LDFLAGS="-Wl,-z,relro,-z,now"
|
|
|
|
|
|
|
|
|
|
# Hard-code path to links to avoid unnecessary builddep
|
|
|
|
|
export LYNX_PATH=/usr/bin/links
|
|
|
|
|
|
|
|
|
|
# Build the daemon
|
|
|
|
|
./configure \
|
|
|
|
@ -346,33 +351,22 @@ autoheader && autoconf || exit 1
|
|
|
|
|
--with-suexec-uidmin=1000 --with-suexec-gidmin=1000 \
|
|
|
|
|
--with-brotli \
|
|
|
|
|
--enable-pie \
|
|
|
|
|
%if %{with pcre2}
|
|
|
|
|
--with-pcre2=%{_bindir}/pcre2-config \
|
|
|
|
|
%endif
|
|
|
|
|
%if %{with pcre}
|
|
|
|
|
--with-pcre=%{_bindir}/pcre-config \
|
|
|
|
|
%endif
|
|
|
|
|
--with-pcre=/usr/bin/pcre-config \
|
|
|
|
|
--enable-mods-shared=all \
|
|
|
|
|
--enable-ssl --with-ssl --disable-distcache \
|
|
|
|
|
--enable-proxy --enable-proxy-fdpass \
|
|
|
|
|
--enable-cache \
|
|
|
|
|
--enable-disk-cache \
|
|
|
|
|
--enable-ldap --enable-authnz-ldap \
|
|
|
|
|
--enable-cgid --enable-cgi --enable-authnz-fcgi \
|
|
|
|
|
--enable-cgid --enable-cgi \
|
|
|
|
|
--enable-cgid-fdpassing \
|
|
|
|
|
--enable-authn-anon --enable-authn-alias \
|
|
|
|
|
--enable-authnz-fcgi \
|
|
|
|
|
--enable-systemd \
|
|
|
|
|
--disable-imagemap --disable-file-cache \
|
|
|
|
|
--disable-http2 \
|
|
|
|
|
--disable-md \
|
|
|
|
|
$*
|
|
|
|
|
|
|
|
|
|
if grep -q ac_cv_have_threadsafe_pollset=no config.log; then
|
|
|
|
|
cat config.log
|
|
|
|
|
: Failed to find thread-safe APR.
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
%make_build
|
|
|
|
|
|
|
|
|
|
%install
|
|
|
|
@ -411,9 +405,8 @@ touch -r $RPM_SOURCE_DIR/00-mpm.conf \
|
|
|
|
|
# install systemd override drop directory
|
|
|
|
|
# Web application packages can drop snippets into this location if
|
|
|
|
|
# they need ExecStart[pre|post].
|
|
|
|
|
mkdir $RPM_BUILD_ROOT%{_unitdir}/httpd.service.d \
|
|
|
|
|
$RPM_BUILD_ROOT%{_unitdir}/httpd.socket.d
|
|
|
|
|
mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/systemd/system/httpd.service.d
|
|
|
|
|
mkdir $RPM_BUILD_ROOT%{_unitdir}/httpd.service.d
|
|
|
|
|
mkdir $RPM_BUILD_ROOT%{_unitdir}/httpd.socket.d
|
|
|
|
|
|
|
|
|
|
install -m 644 -p $RPM_SOURCE_DIR/10-listen443.conf \
|
|
|
|
|
$RPM_BUILD_ROOT%{_unitdir}/httpd.socket.d/10-listen443.conf
|
|
|
|
@ -478,7 +471,6 @@ cat > $RPM_BUILD_ROOT%{_rpmconfigdir}/macros.d/macros.httpd <<EOF
|
|
|
|
|
%%_httpd_contentdir %{contentdir}
|
|
|
|
|
%%_httpd_moddir %%{_libdir}/httpd/modules
|
|
|
|
|
%%_httpd_requires Requires: httpd-mmn = %%{_httpd_mmn}
|
|
|
|
|
%%_httpd_statedir %%{_localstatedir}/lib/httpd
|
|
|
|
|
EOF
|
|
|
|
|
|
|
|
|
|
# Handle contentdir
|
|
|
|
@ -514,10 +506,9 @@ ln -s ../../pixmaps/poweredby.png \
|
|
|
|
|
$RPM_BUILD_ROOT%{contentdir}/icons/poweredby.png
|
|
|
|
|
|
|
|
|
|
# Symlink for the system logo
|
|
|
|
|
%if 0%{?rhel} >= 9
|
|
|
|
|
ln -s ../../pixmaps/system-noindex-logo.png \
|
|
|
|
|
$RPM_BUILD_ROOT%{contentdir}/icons/system_noindex_logo.png
|
|
|
|
|
%endif
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# symlinks for /etc/httpd
|
|
|
|
|
rmdir $RPM_BUILD_ROOT/etc/httpd/{state,run}
|
|
|
|
@ -581,12 +572,9 @@ sed -i '/instdso/s,top_srcdir,top_builddir,' \
|
|
|
|
|
cp -p $RPM_BUILD_ROOT%{_libdir}/httpd/build/config_vars.mk \
|
|
|
|
|
$RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor_config_vars.mk
|
|
|
|
|
|
|
|
|
|
# Sanitize CFLAGS & LIBTOOL in standard config_vars.mk
|
|
|
|
|
sed -e '/^[A-Z]*FLAGS = /s,-specs[^ ]*,,g' \
|
|
|
|
|
-e '/^LIBTOOL/s,/.*/libtool,%{_bindir}/libtool,' \
|
|
|
|
|
# Sanitize CFLAGS in standard config_vars.mk
|
|
|
|
|
sed '/^CFLAGS/s,=.*$,= -O2 -g -Wall,' \
|
|
|
|
|
-i $RPM_BUILD_ROOT%{_libdir}/httpd/build/config_vars.mk
|
|
|
|
|
diff -u $RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor_config_vars.mk \
|
|
|
|
|
$RPM_BUILD_ROOT%{_libdir}/httpd/build/config_vars.mk || true
|
|
|
|
|
|
|
|
|
|
sed 's/config_vars.mk/vendor_config_vars.mk/' \
|
|
|
|
|
$RPM_BUILD_ROOT%{_bindir}/apxs \
|
|
|
|
@ -615,6 +603,7 @@ rm -rf $RPM_BUILD_ROOT/etc/httpd/conf/{original,extra}
|
|
|
|
|
%pre filesystem
|
|
|
|
|
%sysusers_create_compat %{SOURCE49}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%post
|
|
|
|
|
%systemd_post httpd.service htcacheclean.service httpd.socket
|
|
|
|
|
|
|
|
|
@ -682,6 +671,7 @@ exit $rv
|
|
|
|
|
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/00-brotli.conf
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/00-systemd.conf
|
|
|
|
|
|
|
|
|
|
%{_libdir}/httpd/modules/mod_brotli.so
|
|
|
|
|
%{_libdir}/httpd/modules/mod_systemd.so
|
|
|
|
|
|
|
|
|
@ -691,6 +681,7 @@ exit $rv
|
|
|
|
|
%{_unitdir}/*.socket
|
|
|
|
|
|
|
|
|
|
%files core
|
|
|
|
|
|
|
|
|
|
%doc ABOUT_APACHE README CHANGES LICENSE VERSIONING NOTICE
|
|
|
|
|
%doc docs/conf/extra/*.conf
|
|
|
|
|
%doc instance.conf server-status.conf
|
|
|
|
@ -700,7 +691,6 @@ exit $rv
|
|
|
|
|
%{_sysconfdir}/httpd/state
|
|
|
|
|
%{_sysconfdir}/httpd/run
|
|
|
|
|
%dir %{_sysconfdir}/httpd/conf
|
|
|
|
|
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/httpd/conf/httpd.conf
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/httpd/conf/magic
|
|
|
|
|
|
|
|
|
@ -765,7 +755,6 @@ exit $rv
|
|
|
|
|
%attr(0700,apache,apache) %dir %{_localstatedir}/cache/httpd
|
|
|
|
|
%attr(0700,apache,apache) %dir %{_localstatedir}/cache/httpd/proxy
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%files filesystem
|
|
|
|
|
%dir %{_sysconfdir}/httpd
|
|
|
|
|
%dir %{_sysconfdir}/httpd/conf.d
|
|
|
|
@ -777,7 +766,6 @@ exit $rv
|
|
|
|
|
%dir %{contentdir}/icons
|
|
|
|
|
%attr(755,root,root) %dir %{_unitdir}/httpd.service.d
|
|
|
|
|
%attr(755,root,root) %dir %{_unitdir}/httpd.socket.d
|
|
|
|
|
%attr(755,root,root) %dir %{_sysconfdir}/systemd/system/httpd.service.d
|
|
|
|
|
%{_sysusersdir}/httpd.conf
|
|
|
|
|
|
|
|
|
|
%files tools
|
|
|
|
@ -831,239 +819,226 @@ exit $rv
|
|
|
|
|
%{_rpmconfigdir}/macros.d/macros.httpd
|
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
|
|
* Mon Aug 12 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-4
|
|
|
|
|
- Resolves: RHEL-50031 - httpd default config changes
|
|
|
|
|
|
|
|
|
|
* Thu Aug 08 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-3
|
|
|
|
|
- Resolves: RHEL-53632 - RFE: httpd, add IP_FREEBIND support for Listen
|
|
|
|
|
- Resolves: RHEL-53722 - [RFE] ProxyWebsocketIdleTimeout from
|
|
|
|
|
httpd mod_proxy_wstunnel
|
|
|
|
|
|
|
|
|
|
* Sat Aug 03 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-2
|
|
|
|
|
- Resolves: RHEL-52722 - Regression introduced by CVE-2024-38474 fix
|
|
|
|
|
|
|
|
|
|
* Fri Jul 19 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-1
|
|
|
|
|
* Sat Aug 03 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-1
|
|
|
|
|
- new version 2.4.62
|
|
|
|
|
- Resolves: RHEL-33446
|
|
|
|
|
- Resolves: RHEL-52724 - Regression introduced by CVE-2024-38474 fix
|
|
|
|
|
|
|
|
|
|
* Wed Jul 03 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.61-1
|
|
|
|
|
- new version 2.4.61
|
|
|
|
|
- Resolves: RHEL-45753 - httpd: Potential SSRF in
|
|
|
|
|
mod_rewrite (CVE-2024-39573)
|
|
|
|
|
- Resolves: RHEL-45757 - httpd: null pointer dereference in
|
|
|
|
|
mod_proxy (CVE-2024-38477)
|
|
|
|
|
- Resolves: RHEL-45776 - httpd: Improper escaping of output in
|
|
|
|
|
mod_rewrite (CVE-2024-38475)
|
|
|
|
|
- Resolves: RHEL-45791 - httpd: Encoding problem in
|
|
|
|
|
mod_proxy (CVE-2024-38473)
|
|
|
|
|
- Resolves: RHEL-45811 - httpd: Substitution encoding issue in
|
|
|
|
|
mod_rewrite (CVE-2024-38474)
|
|
|
|
|
- Resolves: RHEL-46051 - httpd: Security issues via backend applications
|
|
|
|
|
whose response headers are malicious or exploitable (CVE-2024-38476)
|
|
|
|
|
* Fri Jul 19 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.59-7
|
|
|
|
|
- Resolves: RHEL-49856: htcacheclean.service missing [Install] section
|
|
|
|
|
|
|
|
|
|
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 2.4.59-4.4
|
|
|
|
|
- Bump release for June 2024 mass rebuild
|
|
|
|
|
* Thu May 30 2024 Joe Orton <jorton@redhat.com> - 2.4.59-6
|
|
|
|
|
- mod_ssl: restore SSL_OP_NO_RENEGOTIATE support
|
|
|
|
|
Related: RHEL-14668
|
|
|
|
|
|
|
|
|
|
* Thu May 23 2024 Joe Orton <jorton@redhat.com> - 2.4.59-3.4
|
|
|
|
|
- mod_ssl: disable ENGINE support
|
|
|
|
|
Resolves: RHEL-33734
|
|
|
|
|
* Tue May 21 2024 Joe Orton <jorton@redhat.com> - 2.4.59-5
|
|
|
|
|
- mod_ssl: defer ENGINE_finish() calls to a cleanup
|
|
|
|
|
Resolves: RHEL-36755
|
|
|
|
|
|
|
|
|
|
* Fri May 17 2024 Joe Orton <jorton@redhat.com> - 2.4.59-3.2
|
|
|
|
|
- mod_ssl: use SSL_OP_NO_RENEGOTIATION
|
|
|
|
|
* Mon May 20 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.59-4
|
|
|
|
|
- Resolves: RHEL-6575 - [RFE] httpd use systemd-sysusers
|
|
|
|
|
|
|
|
|
|
* Fri May 3 2024 Joe Orton <jorton@redhat.com> - 2.4.59-3.1
|
|
|
|
|
- apachectl(8): use BUG_REPORT_URL from /etc/os-release
|
|
|
|
|
- apachectl(8): fix grammar (#2278748)
|
|
|
|
|
- httpd.service.xml(8): mention ProtectSystem= setting
|
|
|
|
|
* Wed May 08 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.59-3
|
|
|
|
|
- Related: RHEL-14668 - RFE: httpd rebase to 2.4.59
|
|
|
|
|
|
|
|
|
|
* Wed May 1 2024 Joe Orton <jorton@redhat.com> - 2.4.59-3
|
|
|
|
|
- add ServerTokens: Full-Release support
|
|
|
|
|
* Wed May 8 2024 Joe Orton <jorton@redhat.com> - 2.4.59-2
|
|
|
|
|
- Resolves: RHEL-35870 - httpd mod_cgi/cgid unification
|
|
|
|
|
|
|
|
|
|
* Mon Apr 15 2024 Joe Orton <jorton@redhat.com> - 2.4.59-2
|
|
|
|
|
- mod_ssl: add DH param handling fix (r1916863)
|
|
|
|
|
* Fri May 03 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.59-1
|
|
|
|
|
- new version 2.4.59
|
|
|
|
|
- Resolves: RHEL-14668 - RFE: httpd rebase to 2.4.59
|
|
|
|
|
- Resolves: RHEL-31856 - httpd: HTTP response splitting
|
|
|
|
|
(CVE-2023-38709)
|
|
|
|
|
- Resolves: RHEL-31859 - httpd: HTTP Response Splitting in multiple
|
|
|
|
|
modules (CVE-2024-24795)
|
|
|
|
|
|
|
|
|
|
* Fri Apr 5 2024 Joe Orton <jorton@redhat.com> - 2.4.59-1
|
|
|
|
|
- update to 2.4.59
|
|
|
|
|
* Wed Feb 7 2024 Joe Orton <jorton@redhat.com> - 2.4.57-8
|
|
|
|
|
- mod_xml2enc: fix media type handling
|
|
|
|
|
Resolves: RHEL-17686
|
|
|
|
|
- mod_dav: add DavBasePath
|
|
|
|
|
Resolves: RHEL-6600
|
|
|
|
|
|
|
|
|
|
* Thu Mar 28 2024 Joe Orton <jorton@redhat.com> - 2.4.58-8
|
|
|
|
|
- rebuild to fix changelog ordering
|
|
|
|
|
* Mon Feb 05 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-7
|
|
|
|
|
- Resolves: RHEL-14447 - httpd: mod_macro: out-of-bounds read
|
|
|
|
|
vulnerability (CVE-2023-31122)
|
|
|
|
|
|
|
|
|
|
* Thu Mar 7 2024 Rahul Sundaram <sundaram@fedoraproject.org> - 2.4.58-7
|
|
|
|
|
- Update Systemd security settings as part of https://fedoraproject.org/wiki/Changes/SystemdSecurityHardening
|
|
|
|
|
- updated httpd.service(5) (Joe Orton)
|
|
|
|
|
* Wed Oct 4 2023 Joe Orton <jorton@redhat.com> - 2.4.57-6
|
|
|
|
|
- Resolves: RHEL-5071 - mod_dav_fs: add DavLockDBType
|
|
|
|
|
- mod_dav_fs: add global mutex around lockdb interaction
|
|
|
|
|
|
|
|
|
|
* Wed Jan 24 2024 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.58-6
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
* Thu Jul 20 2023 Tomas Korbar <tkorbar@redhat.com> - 2.4.57-5
|
|
|
|
|
- Fix issue found by covscan
|
|
|
|
|
- Related: #2222001
|
|
|
|
|
|
|
|
|
|
* Sat Jan 20 2024 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.58-5
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
* Tue Jul 18 2023 Joe Orton <jorton@redhat.com> - 2.4.57-4
|
|
|
|
|
- Resolves: #2217726 - Make PROPFIND tolerant of deletion race
|
|
|
|
|
|
|
|
|
|
* Fri Jan 5 2024 Joe Orton <jorton@redhat.com> - 2.4.58-4
|
|
|
|
|
- fix OpenSSL 3.0 deprecation warnings (r1913912, r1915067)
|
|
|
|
|
- mod_ssl: move to provider API for pkcs11 support (#2253014)
|
|
|
|
|
* Tue Jul 11 2023 Tomas Korbar <tkorbar@redhat.com> - 2.4.57-3
|
|
|
|
|
- Resolves: #2222001 - mod_status lists BusyWorkers IdleWorkers keys twice
|
|
|
|
|
|
|
|
|
|
* Fri Dec 8 2023 Joe Orton <jorton@redhat.com> - 2.4.58-3
|
|
|
|
|
- mod_dav_fs: add DAVLockDBType, use global lock around lockdb
|
|
|
|
|
- fix build with libxml2 2.12
|
|
|
|
|
|
|
|
|
|
* Thu Nov 2 2023 Joe Orton <jorton@redhat.com> - 2.4.58-2
|
|
|
|
|
- add dependency on apr-util-1(dbm) so a DBM provider is present
|
|
|
|
|
|
|
|
|
|
* Fri Oct 20 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.58-1
|
|
|
|
|
- new version 2.4.58
|
|
|
|
|
|
|
|
|
|
* Fri Oct 06 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-4
|
|
|
|
|
- SPDX migration
|
|
|
|
|
|
|
|
|
|
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.57-3
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
|
|
|
|
|
|
|
|
|
|
* Wed Jul 5 2023 Joe Orton <jorton@redhat.com> - 2.4.57-2
|
|
|
|
|
- package /etc/systemd/httpd/httpd.service.d
|
|
|
|
|
- also sanitize LDFLAGS/CXXFLAGS in non-vendor config_vars.mk
|
|
|
|
|
* Fri Apr 14 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-2
|
|
|
|
|
- Resolves: #2186645 - Fix issue found by covscan in httpd package
|
|
|
|
|
- Resolves: #2173295 - Include Apache httpd module mod_authnz_fcgi
|
|
|
|
|
|
|
|
|
|
* Tue Apr 11 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-1
|
|
|
|
|
- new version 2.4.57
|
|
|
|
|
|
|
|
|
|
* Thu Mar 09 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.56-1
|
|
|
|
|
- new version 2.4.56
|
|
|
|
|
|
|
|
|
|
* Tue Mar 7 2023 Joe Orton <jorton@redhat.com> - 2.4.55-3
|
|
|
|
|
- build and load mod_authnz_fcgi
|
|
|
|
|
|
|
|
|
|
* Fri Feb 03 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.55-2
|
|
|
|
|
- rebuilt with new apr/apr-util
|
|
|
|
|
|
|
|
|
|
* Wed Jan 25 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.55-1
|
|
|
|
|
- new version 2.4.55
|
|
|
|
|
|
|
|
|
|
* Tue Jan 24 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.54-12
|
|
|
|
|
- prevent sscg writing /dhparams.pem
|
|
|
|
|
|
|
|
|
|
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.54-11
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
|
|
|
|
|
|
|
|
|
|
* Tue Dec 20 2022 Joe Orton <jorton@redhat.com> - 2.4.54-10
|
|
|
|
|
- htcacheclean.service: add [Install] section, PrivateTmp=yes,
|
|
|
|
|
Environment=LANG=C (#2149714)
|
|
|
|
|
|
|
|
|
|
* Mon Dec 19 2022 Joe Orton <jorton@redhat.com> - 2.4.54-9
|
|
|
|
|
- move SELinux context logging to mod_systemd
|
|
|
|
|
|
|
|
|
|
* Mon Dec 19 2022 Joe Orton <jorton@redhat.com> - 2.4.54-8
|
|
|
|
|
- define _httpd_statedir macro
|
|
|
|
|
|
|
|
|
|
* Wed Nov 30 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.54-7
|
|
|
|
|
- reduce AH03408 level to INFO in proxy_util.c
|
|
|
|
|
- Resolves: #2184403 - rebase httpd to 2.4.57
|
|
|
|
|
- Resolves: #2177753 - CVE-2023-25690 httpd: HTTP request splitting with
|
|
|
|
|
mod_rewrite and mod_proxy
|
|
|
|
|
|
|
|
|
|
* Mon Jan 30 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-11
|
|
|
|
|
- Resolves: #2162500 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write
|
|
|
|
|
of zero byte
|
|
|
|
|
- Resolves: #2162486 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting
|
|
|
|
|
- Resolves: #2162510 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request
|
|
|
|
|
smuggling
|
|
|
|
|
|
|
|
|
|
* Tue Jan 24 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-10
|
|
|
|
|
- Resolves: #2160667 - prevent sscg creating /dhparams.pem
|
|
|
|
|
|
|
|
|
|
* Thu Dec 08 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-9
|
|
|
|
|
- Resolves: #2143176 - Dependency from mod_http2 on httpd broken
|
|
|
|
|
|
|
|
|
|
* Tue Dec 06 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-8
|
|
|
|
|
- Resolves: #2151313 - reduce AH03408 log level from WARNING to INFO
|
|
|
|
|
|
|
|
|
|
* Wed Jul 20 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-7
|
|
|
|
|
- Resolves: #2094997 - CVE-2022-26377 httpd: mod_proxy_ajp: Possible request
|
|
|
|
|
smuggling
|
|
|
|
|
- Resolves: #2097032 - CVE-2022-28615 httpd: out-of-bounds read in
|
|
|
|
|
ap_strcmp_match()
|
|
|
|
|
- Resolves: #2098248 - CVE-2022-31813 httpd: mod_proxy: X-Forwarded-For dropped
|
|
|
|
|
by hop-by-hop mechanism
|
|
|
|
|
- Resolves: #2097016 - CVE-2022-28614 httpd: out-of-bounds read via ap_rwrite()
|
|
|
|
|
- Resolves: #2097452 - CVE-2022-29404 httpd: mod_lua: DoS in r:parsebody
|
|
|
|
|
- Resolves: #2097459 - CVE-2022-30522 httpd: mod_sed: DoS vulnerability
|
|
|
|
|
- Resolves: #2097481 - CVE-2022-30556 httpd: mod_lua: Information disclosure
|
|
|
|
|
with websockets
|
|
|
|
|
|
|
|
|
|
* Mon Jun 27 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-6
|
|
|
|
|
- Related: #2065677 - httpd minimisation for ubi-micro
|
|
|
|
|
|
|
|
|
|
* Fri Jun 24 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-5
|
|
|
|
|
- Resolves: #2098056 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()
|
|
|
|
|
|
|
|
|
|
* Thu Jun 16 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-4
|
|
|
|
|
- Resolves: #2095838 - mod_mime_magic: invalid type 0 in mconvert()
|
|
|
|
|
|
|
|
|
|
* Wed Jun 01 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-3
|
|
|
|
|
- Resolves: #2065677 - httpd minimisation for ubi-micro
|
|
|
|
|
- minimize httpd dependencies (new httpd-core package)
|
|
|
|
|
- mod_systemd and mod_brotli are now packaged in the main httpd package
|
|
|
|
|
|
|
|
|
|
* Tue May 31 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-1
|
|
|
|
|
- new version 2.4.53
|
|
|
|
|
- Resolves: #2079939 - httpd rebase to 2.4.53
|
|
|
|
|
- Resolves: #2075406 - httpd.conf uses icon bomb.gif for all files/dirs ending
|
|
|
|
|
with core
|
|
|
|
|
|
|
|
|
|
* Thu Oct 13 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.54-6
|
|
|
|
|
- Provide a sysusers.d file to get user() and group() provides (#2134430)
|
|
|
|
|
* Mon Apr 11 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-8
|
|
|
|
|
- Resolves: #2073459 - Cannot override LD_LIBARY_PATH in Apache HTTPD using
|
|
|
|
|
SetEnv or PassEnv
|
|
|
|
|
|
|
|
|
|
* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.54-5
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
|
|
|
|
|
* Mon Mar 21 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-7
|
|
|
|
|
- Resolves: #2065251 - CVE-2022-22720 httpd: HTTP request smuggling
|
|
|
|
|
vulnerability in Apache HTTP Server 2.4.52 and earlier
|
|
|
|
|
- Resolves: #2066311 - CVE-2021-44224 httpd: possible NULL dereference or SSRF
|
|
|
|
|
in forward proxy configurations
|
|
|
|
|
|
|
|
|
|
* Fri Jun 24 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.54-4
|
|
|
|
|
- fix downgrade/upgrade issues
|
|
|
|
|
- mod_ssl and other modules should depend only on httpd-core package
|
|
|
|
|
* Mon Jan 10 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-5
|
|
|
|
|
- Resolves: #2035064 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
|
|
|
|
|
when parsing multipart content
|
|
|
|
|
|
|
|
|
|
* Fri Jun 17 2022 Joe Orton <jorton@redhat.com> - 2.4.54-3
|
|
|
|
|
- update PCRE config selection
|
|
|
|
|
* Mon Dec 06 2021 Neal Gompa <ngompa@centosproject.org> - 2.4.51-4
|
|
|
|
|
- Use NAME from os-release(5) for vendor string
|
|
|
|
|
Resolves: #2029071 - httpd on CentOS identifies as RHEL
|
|
|
|
|
|
|
|
|
|
* Thu Jun 09 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.54-2
|
|
|
|
|
- new version 2.4.54
|
|
|
|
|
* Fri Dec 3 2021 Joe Orton <jorton@redhat.com> - 2.4.51-3
|
|
|
|
|
- add fixes for static analyzer issues (#1938740)
|
|
|
|
|
|
|
|
|
|
* Mon May 16 2022 Joe Orton <jorton@redhat.com> - 2.4.53-7
|
|
|
|
|
- disable package notes
|
|
|
|
|
* Mon Nov 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-2
|
|
|
|
|
- Resolves: #2005416 - httpd default configuration changes
|
|
|
|
|
|
|
|
|
|
* Fri May 13 2022 Joe Orton <jorton@redhat.com> - 2.4.53-6
|
|
|
|
|
- use %%set_build_flags macro
|
|
|
|
|
* Tue Oct 19 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-1
|
|
|
|
|
- new version 2.4.51 (#2011090)
|
|
|
|
|
|
|
|
|
|
* Thu Apr 21 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-5
|
|
|
|
|
- don't use bomb.gif icon for all files/dirs ending with core
|
|
|
|
|
* Fri Sep 17 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.49-1
|
|
|
|
|
- new version 2.4.49 (#2005339)
|
|
|
|
|
|
|
|
|
|
* Wed Apr 20 2022 Joe Orton <jorton@redhat.com> - 2.4.53-4
|
|
|
|
|
- switch to PCRE2 for new releases
|
|
|
|
|
* Wed Sep 15 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-18
|
|
|
|
|
- Resolves: #2004143 - RFE: mod_ssl: allow sending multiple CA names which
|
|
|
|
|
differ only in case
|
|
|
|
|
|
|
|
|
|
* Thu Apr 07 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-3
|
|
|
|
|
- Related: #2070517 - fix issue when mod_systemd is not loaded
|
|
|
|
|
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-17
|
|
|
|
|
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
|
|
|
|
|
Related: rhbz#1991688
|
|
|
|
|
|
|
|
|
|
* Wed Mar 30 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-2
|
|
|
|
|
- Resolves: #2070517 - Allow install httpd with smaller footprint
|
|
|
|
|
- try to minimize httpd dependencies (new httpd-core package)
|
|
|
|
|
- mod_systemd and mod_brotli are now in the main httpd package
|
|
|
|
|
* Fri Aug 06 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-16
|
|
|
|
|
- Resolves: #1956386 - Apache trademark update - new logo
|
|
|
|
|
|
|
|
|
|
* Thu Mar 17 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-1
|
|
|
|
|
- new version 2.4.53
|
|
|
|
|
- fixes CVE-2022-23943, CVE-2022-22721, CVE-2022-22720 and CVE-2022-22719
|
|
|
|
|
* Fri Aug 6 2021 Florian Weimer <fweimer@redhat.com> - 2.4.48-14
|
|
|
|
|
- Rebuild to pick up new build flags from redhat-rpm-config (#1984652)
|
|
|
|
|
|
|
|
|
|
* Tue Feb 1 2022 Joe Orton <jorton@redhat.com> - 2.4.52-5
|
|
|
|
|
- rebuild for new OpenLDAP (#2032699)
|
|
|
|
|
* Wed Jul 28 2021 Joe Orton <jorton@redhat.com> - 2.4.48-13
|
|
|
|
|
- mod_ssl: OpenSSL 3 compatibility update (#1986822)
|
|
|
|
|
|
|
|
|
|
* Mon Jan 31 2022 Joe Orton <jorton@redhat.com> - 2.4.52-4
|
|
|
|
|
- add libtool to Requires: for httpd-devel (#2048281)
|
|
|
|
|
* Thu Jul 15 2021 Joe Orton <jorton@redhat.com> - 2.4.48-12
|
|
|
|
|
- mod_ssl: add SSLKEYLOGFILE support (#1982656)
|
|
|
|
|
|
|
|
|
|
* Fri Jan 28 2022 Joe Orton <jorton@redhat.com> - 2.4.52-3
|
|
|
|
|
- use LIBTOOL=/usr/bin/libtool in the non-vendor config_vars.mk
|
|
|
|
|
* Mon Jul 12 2021 Joe Orton <jorton@redhat.com> - 2.4.48-11
|
|
|
|
|
- mod_cgid: fix doubled script timeout (#1977234)
|
|
|
|
|
|
|
|
|
|
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.52-2
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
|
|
|
|
|
* Fri Jul 9 2021 Joe Orton <jorton@redhat.com> - 2.4.48-10
|
|
|
|
|
- fix release in ServerTokens Full-Release (#1932442)
|
|
|
|
|
|
|
|
|
|
* Wed Dec 22 2021 Joe Orton <jorton@redhat.com> - 2.4.52-1
|
|
|
|
|
- update to 2.4.52
|
|
|
|
|
|
|
|
|
|
* Mon Dec 06 2021 Neal Gompa <ngompa@fedoraproject.org> - 2.4.51-3
|
|
|
|
|
- Use NAME from os-release(5) for vendor string
|
|
|
|
|
Related: #2029071 - httpd on CentOS identifies as RHEL
|
|
|
|
|
* Wed Jul 7 2021 Joe Orton <jorton@redhat.com> - 2.4.48-9
|
|
|
|
|
- use OOMPolicy=continue in httpd.service, httpd@.service (#1947475)
|
|
|
|
|
|
|
|
|
|
* Tue Oct 12 2021 Joe Orton <jorton@redhat.com> - 2.4.51-2
|
|
|
|
|
- mod_ssl: updated patch for OpenSSL 3.0 compatibility (#2007178)
|
|
|
|
|
- mod_deflate/core: add two brigade handling correctness fixes
|
|
|
|
|
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-8
|
|
|
|
|
- Resolves: #1950021 - [RFE] Update httpd directive SSLProxyMachineCertificateFile
|
|
|
|
|
to be able to handle certs without matching private key
|
|
|
|
|
|
|
|
|
|
* Thu Oct 07 2021 Patrick Uiterwijk <patrick@puiterwijk.org> - 2.4.51-1
|
|
|
|
|
- new version 2.4.51
|
|
|
|
|
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-7
|
|
|
|
|
- Resolves: #1950011 - unorderly connection close when client attempts
|
|
|
|
|
renegotiation
|
|
|
|
|
|
|
|
|
|
* Tue Oct 05 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.50-1
|
|
|
|
|
- new version 2.4.50
|
|
|
|
|
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-6
|
|
|
|
|
- Resolves: #1932442 - "ServerTokens Full-Release" support
|
|
|
|
|
|
|
|
|
|
* Wed Sep 22 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.49-3
|
|
|
|
|
- Rebuilt for CI testing
|
|
|
|
|
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-5
|
|
|
|
|
- mod_ssl: fix loading encrypted privkeys with OpenSSL 3.0 (#1976080)
|
|
|
|
|
|
|
|
|
|
* Thu Sep 16 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.49-1
|
|
|
|
|
- new version 2.4.49 (#2004776)
|
|
|
|
|
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-4
|
|
|
|
|
- add OpenSSL v3 compatibility fixes (#1975201)
|
|
|
|
|
|
|
|
|
|
* Tue Sep 14 2021 Sahana Prasad <sahana@redhat.com> - 2.4.48-8
|
|
|
|
|
- Rebuilt with OpenSSL 3.0.0
|
|
|
|
|
* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-3
|
|
|
|
|
- Rebuilt for RHEL 9 BETA for openssl 3.0
|
|
|
|
|
Related: rhbz#1971065
|
|
|
|
|
|
|
|
|
|
* Fri Aug 06 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-7
|
|
|
|
|
- add symlink to system logo for noindex test page
|
|
|
|
|
* Tue Jun 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-2
|
|
|
|
|
- Resolves: #1947099 - centralizing default index.html for httpd
|
|
|
|
|
|
|
|
|
|
* Fri Aug 6 2021 Joe Orton <jorton@redhat.com> - 2.4.48-4
|
|
|
|
|
- add OpenSSL 3.x compatibility patch
|
|
|
|
|
* Wed Jun 02 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-1
|
|
|
|
|
- new version 2.4.48
|
|
|
|
|
- Resolves: #1952817 - rebase to 2.4.48
|
|
|
|
|
|
|
|
|
|
* Thu Jul 22 2021 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.48-3
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
|
|
|
|
|
* Wed May 26 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.46-15
|
|
|
|
|
- Resolves: #1949606 - RFE: httpd, add IP_FREEBIND support for Listen
|
|
|
|
|
|
|
|
|
|
* Fri Jul 16 2021 Joe Orton <jorton@redhat.com> - 2.4.48-2
|
|
|
|
|
- mod_cgi/mod_cgid: update to unification from trunk
|
|
|
|
|
- httpd.conf: add note on care with Listen and starting at boot
|
|
|
|
|
* Wed May 19 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-14
|
|
|
|
|
- Resolves: #1949969 - httpd : mod_proxy should allow to specify
|
|
|
|
|
Proxy-Authorization in ProxyRemote directive
|
|
|
|
|
|
|
|
|
|
* Wed Jun 02 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-1
|
|
|
|
|
- new version 2.4.48
|
|
|
|
|
- Resolves: #1964746 - httpd-2.4.48 is available
|
|
|
|
|
* Thu Apr 22 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-13
|
|
|
|
|
- Resolves: #1952546 - mod_proxy_wstunnel.html is a malformed XML
|
|
|
|
|
|
|
|
|
|
* Mon May 03 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-13
|
|
|
|
|
- Related: #1934739 - Apache trademark update - new logo
|
|
|
|
|
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.46-12
|
|
|
|
|
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
|
|
|
|
|
|
|
|
|
|
* Fri Apr 9 2021 Joe Orton <jorton@redhat.com> - 2.4.46-12
|
|
|
|
|
- use OOMPolicy=continue in httpd.service, httpd@.service (#1947475)
|
|
|
|
|
* Tue Apr 13 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-11
|
|
|
|
|
- Resolves: #1947496 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel
|
|
|
|
|
|
|
|
|
|
* Wed Mar 31 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-11
|
|
|
|
|
* Wed Mar 31 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-10
|
|
|
|
|
- Resolves: #1934739 - Apache trademark update - new logo
|
|
|
|
|
|
|
|
|
|
* Tue Feb 23 2021 Joe Orton <jorton@redhat.com> - 2.4.46-10
|
|
|
|
|
- add Conflicts: with mod_nss
|
|
|
|
|
- drop use of apr_ldap_rebind (r1878890, #1847585)
|
|
|
|
|
|
|
|
|
|
* Mon Feb 01 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-9
|
|
|
|
|
- Resolves: #1914182 - RFE: CustomLog should be able to use journald
|
|
|
|
|
|
|
|
|
|