0e3136
%define contentdir %{_datadir}/httpd
0e3136
%define docroot /var/www
0e3136
%define suexec_caller apache
0e3136
%define mmn 20120211
0e3136
%define mmnisa %{mmn}%{__isa_name}%{__isa_bits}
1eaa30
%define vstring %(source /etc/os-release; echo ${NAME})
0e3136
%if 0%{?fedora} > 26 || 0%{?rhel} > 7
0e3136
%global mpm event
0e3136
%else
0e3136
%global mpm prefork
0e3136
%endif
0e3136
0e3136
Summary: Apache HTTP Server
0e3136
Name: httpd
a42d0f
Version: 2.4.51
1eaa30
Release: 4%{?dist}
0e3136
URL: https://httpd.apache.org/
0e3136
Source0: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2
0e3136
Source1: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2.asc
0e3136
# gpg key file downloaded and verified by luhliarik
0e3136
# https://httpd.apache.org/dev/verification.html
0e3136
Source2: https://dist.apache.org/repos/dist/release/httpd/KEYS
0e3136
Source3: httpd.logrotate
0e3136
Source4: instance.conf
0e3136
Source5: httpd-ssl-pass-dialog
0e3136
Source6: httpd.tmpfiles
0e3136
Source7: httpd.service
0e3136
Source8: action-graceful.sh
0e3136
Source9: action-configtest.sh
0e3136
Source10: server-status.conf
0e3136
Source11: httpd.conf
0e3136
Source12: 00-base.conf
0e3136
Source13: 00-mpm.conf
0e3136
Source14: 00-lua.conf
0e3136
Source15: 01-cgi.conf
0e3136
Source16: 00-dav.conf
0e3136
Source17: 00-proxy.conf
0e3136
Source18: 00-ssl.conf
0e3136
Source19: 01-ldap.conf
0e3136
Source20: 00-proxyhtml.conf
0e3136
Source21: userdir.conf
0e3136
Source22: ssl.conf
0e3136
Source23: welcome.conf
0e3136
Source24: manual.conf
0e3136
Source25: 00-systemd.conf
0e3136
Source26: 01-session.conf
0e3136
Source27: 10-listen443.conf
0e3136
Source28: httpd.socket
0e3136
Source29: 00-optional.conf
0e3136
Source30: README.confd
0e3136
Source31: README.confmod
0e3136
Source32: httpd.service.xml
0e3136
Source33: htcacheclean.service.xml
0e3136
Source34: httpd.conf.xml
0e3136
Source40: htcacheclean.service
0e3136
Source41: htcacheclean.sysconf
0e3136
Source42: httpd-init.service
0e3136
Source43: httpd-ssl-gencerts
0e3136
Source44: httpd@.service
0e3136
Source45: config.layout
0e3136
Source46: apachectl.sh
0e3136
Source47: apachectl.xml
0e3136
Source48: apache-poweredby.png
0e3136
0e3136
# build/scripts patches
0e3136
Patch2: httpd-2.4.43-apxs.patch
0e3136
Patch3: httpd-2.4.43-deplibs.patch
0e3136
# Needed for socket activation and mod_systemd patch
0e3136
Patch19: httpd-2.4.43-detect-systemd.patch
0e3136
# Features/functional changes
0e3136
Patch21: httpd-2.4.48-r1842929+.patch
0e3136
Patch22: httpd-2.4.43-mod_systemd.patch
0e3136
Patch23: httpd-2.4.48-export.patch
0e3136
Patch24: httpd-2.4.43-corelimit.patch
0e3136
Patch25: httpd-2.4.43-selinux.patch
0e3136
Patch26: httpd-2.4.43-gettid.patch
0e3136
Patch27: httpd-2.4.43-icons.patch
0e3136
Patch30: httpd-2.4.43-cachehardmax.patch
0e3136
Patch34: httpd-2.4.43-socket-activation.patch
0e3136
Patch38: httpd-2.4.43-sslciphdefault.patch
0e3136
Patch39: httpd-2.4.43-sslprotdefault.patch
0e3136
Patch40: httpd-2.4.43-r1861269.patch
0e3136
Patch41: httpd-2.4.43-r1861793+.patch
0e3136
Patch42: httpd-2.4.48-r1828172+.patch
0e3136
Patch45: httpd-2.4.43-logjournal.patch
0e3136
Patch46: httpd-2.4.48-proxy-ws-idle-timeout.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1949969
0e3136
Patch47: httpd-2.4.43-pr37355.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1949606
0e3136
Patch48: httpd-2.4.46-freebind.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1950021
0e3136
Patch49: httpd-2.4.48-ssl-proxy-chains.patch
a42d0f
# https://bugzilla.redhat.com/show_bug.cgi?id=2004143
a42d0f
Patch50: httpd-2.4.48-r1825120.patch
0e3136
0e3136
0e3136
# Bug fixes
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1397243
0e3136
Patch60: httpd-2.4.43-enable-sslv3.patch
0e3136
Patch61: httpd-2.4.46-htcacheclean-dont-break.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1986822
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1976080
a42d0f
Patch62: httpd-2.4.51-openssl3.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1932442
0e3136
Patch64: httpd-2.4.48-full-release.patch
0e3136
# https://bugzilla.redhat.com/show_bug.cgi?id=1950011
a42d0f
Patch65: httpd-2.4.51-r1877397.patch
1eaa30
# https://bugzilla.redhat.com/show_bug.cgi?id=1938740
1eaa30
Patch66: httpd-2.4.51-r1892413+.patch
0e3136
0e3136
# Security fixes
0e3136
0e3136
License: ASL 2.0
0e3136
BuildRequires: gcc, autoconf, pkgconfig, findutils, xmlto
0e3136
BuildRequires: perl-interpreter, perl-generators, systemd-devel
0e3136
BuildRequires: zlib-devel, libselinux-devel, lua-devel, brotli-devel
0e3136
BuildRequires: apr-devel >= 1.5.0, apr-util-devel >= 1.5.0, pcre-devel >= 5.0
0e3136
BuildRequires: gnupg2
0e3136
Requires: /etc/mime.types, system-logos-httpd
0e3136
Provides: webserver
0e3136
Provides: mod_dav = %{version}-%{release}, httpd-suexec = %{version}-%{release}
0e3136
Provides: httpd-mmn = %{mmn}, httpd-mmn = %{mmnisa}
0e3136
Requires: httpd-tools = %{version}-%{release}
0e3136
Requires: httpd-filesystem = %{version}-%{release}
0e3136
Recommends: mod_http2, mod_lua
0e3136
Requires(pre): httpd-filesystem
0e3136
Requires(preun): systemd-units
0e3136
Requires(postun): systemd-units
0e3136
Requires(post): systemd-units
0e3136
Conflicts: apr < 1.5.0-1
0e3136
Provides: mod_proxy_uwsgi = %{version}-%{release}
0e3136
Obsoletes: mod_proxy_uwsgi < 2.0.17.1-2
0e3136
0e3136
%description
0e3136
The Apache HTTP Server is a powerful, efficient, and extensible
0e3136
web server.
0e3136
0e3136
%package devel
0e3136
Summary: Development interfaces for the Apache HTTP Server
0e3136
Requires: apr-devel, apr-util-devel, pkgconfig
0e3136
Requires: httpd = %{version}-%{release}
0e3136
0e3136
%description devel
0e3136
The httpd-devel package contains the APXS binary and other files
0e3136
that you need to build Dynamic Shared Objects (DSOs) for the
0e3136
Apache HTTP Server.
0e3136
0e3136
If you are installing the Apache HTTP Server and you want to be
0e3136
able to compile or develop additional modules for Apache, you need
0e3136
to install this package.
0e3136
0e3136
%package manual
0e3136
Summary: Documentation for the Apache HTTP Server
0e3136
Requires: httpd = %{version}-%{release}
0e3136
BuildArch: noarch
0e3136
0e3136
%description manual
0e3136
The httpd-manual package contains the complete manual and
0e3136
reference guide for the Apache HTTP Server. The information can
0e3136
also be found at https://httpd.apache.org/docs/2.4/.
0e3136
0e3136
%package filesystem
0e3136
Summary: The basic directory layout for the Apache HTTP Server
0e3136
BuildArch: noarch
0e3136
Requires(pre): /usr/sbin/useradd
0e3136
0e3136
%description filesystem
0e3136
The httpd-filesystem package contains the basic directory layout
0e3136
for the Apache HTTP Server including the correct permissions
0e3136
for the directories.
0e3136
0e3136
%package tools
0e3136
Summary: Tools for use with the Apache HTTP Server
0e3136
0e3136
%description tools
0e3136
The httpd-tools package contains tools which can be used with 
0e3136
the Apache HTTP Server.
0e3136
0e3136
%package -n mod_ssl
0e3136
Summary: SSL/TLS module for the Apache HTTP Server
0e3136
Epoch: 1
0e3136
BuildRequires: openssl-devel
0e3136
Requires(pre): httpd-filesystem
0e3136
Requires: httpd = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
0e3136
Requires: sscg >= 2.2.0, /usr/bin/hostname
0e3136
# Require an OpenSSL which supports PROFILE=SYSTEM
0e3136
Conflicts: openssl-libs < 1:1.0.1h-4
0e3136
0e3136
%description -n mod_ssl
0e3136
The mod_ssl module provides strong cryptography for the Apache HTTP
0e3136
server via the Secure Sockets Layer (SSL) and Transport Layer
0e3136
Security (TLS) protocols.
0e3136
0e3136
%package -n mod_proxy_html
0e3136
Summary: HTML and XML content filters for the Apache HTTP Server
0e3136
Requires: httpd = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
0e3136
BuildRequires: libxml2-devel
0e3136
BuildRequires: make
0e3136
Epoch: 1
0e3136
Obsoletes: mod_proxy_html < 1:2.4.1-2
0e3136
0e3136
%description -n mod_proxy_html
0e3136
The mod_proxy_html and mod_xml2enc modules provide filters which can
0e3136
transform and modify HTML and XML content.
0e3136
0e3136
%package -n mod_ldap
0e3136
Summary: LDAP authentication modules for the Apache HTTP Server
0e3136
Requires: httpd = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
0e3136
Requires: apr-util-ldap
0e3136
0e3136
%description -n mod_ldap
0e3136
The mod_ldap and mod_authnz_ldap modules add support for LDAP
0e3136
authentication to the Apache HTTP Server.
0e3136
0e3136
%package -n mod_session
0e3136
Summary: Session interface for the Apache HTTP Server
0e3136
Requires: httpd = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
0e3136
0e3136
%description -n mod_session
0e3136
The mod_session module and associated backends provide an abstract
0e3136
interface for storing and accessing per-user session data.
0e3136
0e3136
%package -n mod_lua
0e3136
Summary: Lua scripting support for the Apache HTTP Server
0e3136
Requires: httpd = 0:%{version}-%{release}, httpd-mmn = %{mmnisa}
0e3136
0e3136
%description -n mod_lua
0e3136
The mod_lua module allows the server to be extended with scripts
0e3136
written in the Lua programming language.
0e3136
0e3136
%prep
0e3136
%{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}'
0e3136
%setup -q
0e3136
%patch2 -p1 -b .apxs
0e3136
%patch3 -p1 -b .deplibs
0e3136
0e3136
%patch19 -p1 -b .detectsystemd
0e3136
0e3136
%patch21 -p1 -b .r1842929+
0e3136
%patch22 -p1 -b .mod_systemd
0e3136
%patch23 -p1 -b .export
0e3136
%patch24 -p1 -b .corelimit
0e3136
%patch25 -p1 -b .selinux
0e3136
%patch26 -p1 -b .gettid
0e3136
%patch27 -p1 -b .icons
0e3136
%patch30 -p1 -b .cachehardmax
0e3136
%patch34 -p1 -b .socketactivation
0e3136
%patch38 -p1 -b .sslciphdefault
0e3136
%patch39 -p1 -b .sslprotdefault
0e3136
%patch40 -p1 -b .r1861269
0e3136
%patch41 -p1 -b .r1861793+
0e3136
%patch42 -p1 -b .r1828172+
0e3136
%patch45 -p1 -b .logjournal
0e3136
%patch46 -p1 -b .proxy-ws-idle-timeout
0e3136
%patch47 -p1 -b .pr37355
0e3136
%patch48 -p1 -b .freebind
0e3136
%patch49 -p1 -b .ssl-proxy-chains
a42d0f
%patch50 -p1 -b .r1825120
0e3136
0e3136
%patch60 -p1 -b .enable-sslv3
0e3136
%patch61 -p1 -b .htcacheclean-dont-break
0e3136
%patch62 -p1 -b .r1876934
0e3136
%patch64 -p1 -b .full-release
0e3136
%patch65 -p1 -b .r1877397
1eaa30
%patch66 -p1 -b .r1892413+
0e3136
0e3136
# Patch in the vendor string
0e3136
sed -i '/^#define PLATFORM/s/Unix/%{vstring}/' os/unix/os.h
0e3136
sed -i 's/@RELEASE@/%{release}/' server/core.c
0e3136
0e3136
# Prevent use of setcap in "install-suexec-caps" target.
0e3136
sed -i '/suexec/s,setcap ,echo Skipping setcap for ,' Makefile.in
0e3136
0e3136
# Example conf for instances
0e3136
cp $RPM_SOURCE_DIR/instance.conf .
0e3136
sed < $RPM_SOURCE_DIR/httpd.conf >> instance.conf '
0e3136
0,/^ServerRoot/d;
0e3136
/# Supplemental configuration/,$d
0e3136
/^ *CustomLog .logs/s,logs/,logs/${HTTPD_INSTANCE}_,
0e3136
/^ *ErrorLog .logs/s,logs/,logs/${HTTPD_INSTANCE}_,
0e3136
'
0e3136
touch -r $RPM_SOURCE_DIR/instance.conf instance.conf
0e3136
cp -p $RPM_SOURCE_DIR/server-status.conf server-status.conf
0e3136
0e3136
# Safety check: prevent build if defined MMN does not equal upstream MMN.
0e3136
vmmn=`echo MODULE_MAGIC_NUMBER_MAJOR | cpp -include include/ap_mmn.h | sed -n '/^2/p'`
0e3136
if test "x${vmmn}" != "x%{mmn}"; then
0e3136
   : Error: Upstream MMN is now ${vmmn}, packaged MMN is %{mmn}
0e3136
   : Update the mmn macro and rebuild.
0e3136
   exit 1
0e3136
fi
0e3136
0e3136
# A new logo which comes together with a new test page
0e3136
cp %{SOURCE48} ./docs/icons/apache_pb3.png
0e3136
0e3136
# Provide default layout
0e3136
cp $RPM_SOURCE_DIR/config.layout .
0e3136
0e3136
sed '
0e3136
s,@MPM@,%{mpm},g
0e3136
s,@DOCROOT@,%{docroot},g
0e3136
s,@LOGDIR@,%{_localstatedir}/log/httpd,g
0e3136
' < $RPM_SOURCE_DIR/httpd.conf.xml \
0e3136
    > httpd.conf.xml
0e3136
0e3136
xmlto man ./httpd.conf.xml
0e3136
xmlto man $RPM_SOURCE_DIR/htcacheclean.service.xml
0e3136
xmlto man $RPM_SOURCE_DIR/httpd.service.xml
0e3136
0e3136
# apachectl.xml => apachectl.8
0e3136
xmlto man %{SOURCE47}
0e3136
0e3136
: Building with MMN %{mmn}, MMN-ISA %{mmnisa}
0e3136
: Default MPM is %{mpm}, vendor string is '%{vstring}'
0e3136
0e3136
%build
0e3136
# forcibly prevent use of bundled apr, apr-util, pcre
0e3136
rm -rf srclib/{apr,apr-util,pcre}
0e3136
0e3136
# regenerate configure scripts
0e3136
autoheader && autoconf || exit 1
0e3136
0e3136
# Before configure; fix location of build dir in generated apxs
0e3136
%{__perl} -pi -e "s:\@exp_installbuilddir\@:%{_libdir}/httpd/build:g" \
0e3136
        support/apxs.in
0e3136
0e3136
export CFLAGS=$RPM_OPT_FLAGS
0e3136
export LDFLAGS="-Wl,-z,relro,-z,now"
0e3136
0e3136
# Hard-code path to links to avoid unnecessary builddep
0e3136
export LYNX_PATH=/usr/bin/links
0e3136
0e3136
# Build the daemon
0e3136
./configure \
0e3136
        --prefix=%{_sysconfdir}/httpd \
0e3136
        --exec-prefix=%{_prefix} \
0e3136
        --bindir=%{_bindir} \
0e3136
        --sbindir=%{_sbindir} \
0e3136
        --mandir=%{_mandir} \
0e3136
        --libdir=%{_libdir} \
0e3136
        --sysconfdir=%{_sysconfdir}/httpd/conf \
0e3136
        --includedir=%{_includedir}/httpd \
0e3136
        --libexecdir=%{_libdir}/httpd/modules \
0e3136
        --datadir=%{contentdir} \
0e3136
        --enable-layout=Fedora \
0e3136
        --with-installbuilddir=%{_libdir}/httpd/build \
0e3136
        --enable-mpms-shared=all \
0e3136
        --with-apr=%{_prefix} --with-apr-util=%{_prefix} \
0e3136
        --enable-suexec --with-suexec \
0e3136
        --enable-suexec-capabilities \
0e3136
        --with-suexec-caller=%{suexec_caller} \
0e3136
        --with-suexec-docroot=%{docroot} \
0e3136
        --without-suexec-logfile \
0e3136
        --with-suexec-syslog \
0e3136
        --with-suexec-bin=%{_sbindir}/suexec \
0e3136
        --with-suexec-uidmin=1000 --with-suexec-gidmin=1000 \
0e3136
        --with-brotli \
0e3136
        --enable-pie \
0e3136
        --with-pcre \
0e3136
        --enable-mods-shared=all \
0e3136
        --enable-ssl --with-ssl --disable-distcache \
0e3136
        --enable-proxy --enable-proxy-fdpass \
0e3136
        --enable-cache \
0e3136
        --enable-disk-cache \
0e3136
        --enable-ldap --enable-authnz-ldap \
0e3136
        --enable-cgid --enable-cgi \
0e3136
        --enable-cgid-fdpassing \
0e3136
        --enable-authn-anon --enable-authn-alias \
0e3136
        --enable-systemd \
0e3136
        --disable-imagemap --disable-file-cache \
0e3136
        --disable-http2 \
0e3136
        --disable-md \
0e3136
        $*
0e3136
%make_build
0e3136
0e3136
%install
0e3136
rm -rf $RPM_BUILD_ROOT
0e3136
0e3136
%make_install
0e3136
0e3136
# Install systemd service files
0e3136
mkdir -p $RPM_BUILD_ROOT%{_unitdir}
0e3136
for s in httpd.service htcacheclean.service httpd.socket \
0e3136
         httpd@.service httpd-init.service; do
0e3136
  install -p -m 644 $RPM_SOURCE_DIR/${s} \
0e3136
                    $RPM_BUILD_ROOT%{_unitdir}/${s}
0e3136
done
0e3136
0e3136
# install conf file/directory
0e3136
mkdir $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.d \
0e3136
      $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d
0e3136
install -m 644 $RPM_SOURCE_DIR/README.confd \
0e3136
    $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.d/README
0e3136
install -m 644 $RPM_SOURCE_DIR/README.confmod \
0e3136
    $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/README
0e3136
for f in 00-base.conf 00-mpm.conf 00-lua.conf 01-cgi.conf 00-dav.conf \
0e3136
         00-proxy.conf 00-ssl.conf 01-ldap.conf 00-proxyhtml.conf \
0e3136
         01-ldap.conf 00-systemd.conf 01-session.conf 00-optional.conf; do
0e3136
  install -m 644 -p $RPM_SOURCE_DIR/$f \
0e3136
        $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/$f
0e3136
done
0e3136
0e3136
sed -i '/^#LoadModule mpm_%{mpm}_module /s/^#//' \
0e3136
     $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/00-mpm.conf
0e3136
touch -r $RPM_SOURCE_DIR/00-mpm.conf \
0e3136
     $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/00-mpm.conf
0e3136
0e3136
# install systemd override drop directory
0e3136
# Web application packages can drop snippets into this location if
0e3136
# they need ExecStart[pre|post].
0e3136
mkdir $RPM_BUILD_ROOT%{_unitdir}/httpd.service.d
0e3136
mkdir $RPM_BUILD_ROOT%{_unitdir}/httpd.socket.d
0e3136
0e3136
install -m 644 -p $RPM_SOURCE_DIR/10-listen443.conf \
0e3136
      $RPM_BUILD_ROOT%{_unitdir}/httpd.socket.d/10-listen443.conf
0e3136
0e3136
for f in welcome.conf ssl.conf manual.conf userdir.conf; do
0e3136
  install -m 644 -p $RPM_SOURCE_DIR/$f \
0e3136
        $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.d/$f
0e3136
done
0e3136
0e3136
# Split-out extra config shipped as default in conf.d:
0e3136
for f in autoindex; do
0e3136
  install -m 644 docs/conf/extra/httpd-${f}.conf \
0e3136
        $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.d/${f}.conf
0e3136
done
0e3136
0e3136
# Extra config trimmed:
0e3136
rm -v docs/conf/extra/httpd-{ssl,userdir}.conf
0e3136
0e3136
rm $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf/*.conf
0e3136
install -m 644 -p $RPM_SOURCE_DIR/httpd.conf \
0e3136
   $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf/httpd.conf
0e3136
0e3136
mkdir $RPM_BUILD_ROOT%{_sysconfdir}/sysconfig
0e3136
install -m 644 -p $RPM_SOURCE_DIR/htcacheclean.sysconf \
0e3136
   $RPM_BUILD_ROOT%{_sysconfdir}/sysconfig/htcacheclean
0e3136
0e3136
# tmpfiles.d configuration
0e3136
mkdir -p $RPM_BUILD_ROOT%{_prefix}/lib/tmpfiles.d 
0e3136
install -m 644 -p $RPM_SOURCE_DIR/httpd.tmpfiles \
0e3136
   $RPM_BUILD_ROOT%{_prefix}/lib/tmpfiles.d/httpd.conf
0e3136
0e3136
# Other directories
0e3136
mkdir -p $RPM_BUILD_ROOT%{_localstatedir}/lib/httpd \
0e3136
         $RPM_BUILD_ROOT/run/httpd/htcacheclean
0e3136
0e3136
# Substitute in defaults which are usually done (badly) by "make install"
0e3136
sed -i \
0e3136
   "/^DavLockDB/d;
0e3136
    s,@@ServerRoot@@/user.passwd,/etc/httpd/conf/user.passwd,;
0e3136
    s,@@ServerRoot@@/docs,%{docroot},;
0e3136
    s,@@ServerRoot@@,%{docroot},;
0e3136
    s,@@Port@@,80,;" \
0e3136
    docs/conf/extra/*.conf
0e3136
0e3136
# Set correct path for httpd binary in apachectl script
0e3136
sed 's,@HTTPDBIN@,%{_sbindir}/httpd,g' $RPM_SOURCE_DIR/apachectl.sh \
0e3136
    > apachectl.sh
0e3136
0e3136
# Create cache directory
0e3136
mkdir -p $RPM_BUILD_ROOT%{_localstatedir}/cache/httpd \
0e3136
         $RPM_BUILD_ROOT%{_localstatedir}/cache/httpd/proxy \
0e3136
         $RPM_BUILD_ROOT%{_localstatedir}/cache/httpd/ssl
0e3136
0e3136
# Make the MMN accessible to module packages
0e3136
echo %{mmnisa} > $RPM_BUILD_ROOT%{_includedir}/httpd/.mmn
0e3136
mkdir -p $RPM_BUILD_ROOT%{_rpmconfigdir}/macros.d
0e3136
cat > $RPM_BUILD_ROOT%{_rpmconfigdir}/macros.d/macros.httpd <
0e3136
%%_httpd_mmn %{mmnisa}
0e3136
%%_httpd_apxs %%{_libdir}/httpd/build/vendor-apxs
0e3136
%%_httpd_modconfdir %%{_sysconfdir}/httpd/conf.modules.d
0e3136
%%_httpd_confdir %%{_sysconfdir}/httpd/conf.d
0e3136
%%_httpd_contentdir %{contentdir}
0e3136
%%_httpd_moddir %%{_libdir}/httpd/modules
0e3136
%%_httpd_requires Requires: httpd-mmn = %%{_httpd_mmn}
0e3136
EOF
0e3136
0e3136
# Handle contentdir
0e3136
mkdir $RPM_BUILD_ROOT%{contentdir}/noindex \
0e3136
      $RPM_BUILD_ROOT%{contentdir}/server-status
0e3136
ln -s ../../testpage/index.html \
0e3136
      $RPM_BUILD_ROOT%{contentdir}/noindex/index.html
0e3136
install -m 644 -p docs/server-status/* \
0e3136
        $RPM_BUILD_ROOT%{contentdir}/server-status
0e3136
rm -rf %{contentdir}/htdocs
0e3136
0e3136
# remove manual sources
0e3136
find $RPM_BUILD_ROOT%{contentdir}/manual \( \
0e3136
    -name \*.xml -o -name \*.xml.* -o -name \*.ent -o -name \*.xsl -o -name \*.dtd \
0e3136
    \) -print0 | xargs -0 rm -f
0e3136
0e3136
# Strip the manual down just to English and replace the typemaps with flat files:
0e3136
set +x
0e3136
for f in `find $RPM_BUILD_ROOT%{contentdir}/manual -name \*.html -type f`; do
0e3136
   if test -f ${f}.en; then
0e3136
      cp ${f}.en ${f}
0e3136
      rm ${f}.*
0e3136
   fi
0e3136
done
0e3136
set -x
0e3136
0e3136
# Clean Document Root
0e3136
rm -v $RPM_BUILD_ROOT%{docroot}/html/*.html \
0e3136
      $RPM_BUILD_ROOT%{docroot}/cgi-bin/*
0e3136
0e3136
# Symlink for the powered-by-$DISTRO image:
0e3136
ln -s ../../pixmaps/poweredby.png \
0e3136
        $RPM_BUILD_ROOT%{contentdir}/icons/poweredby.png
0e3136
0e3136
# Symlink for the system logo
0e3136
ln -s ../../pixmaps/system-noindex-logo.png \
0e3136
        $RPM_BUILD_ROOT%{contentdir}/icons/system_noindex_logo.png
0e3136
0e3136
0e3136
# symlinks for /etc/httpd
0e3136
rmdir $RPM_BUILD_ROOT/etc/httpd/{state,run}
0e3136
ln -s ../..%{_localstatedir}/log/httpd $RPM_BUILD_ROOT/etc/httpd/logs
0e3136
ln -s ../..%{_localstatedir}/lib/httpd $RPM_BUILD_ROOT/etc/httpd/state
0e3136
ln -s /run/httpd $RPM_BUILD_ROOT/etc/httpd/run
0e3136
ln -s ../..%{_libdir}/httpd/modules $RPM_BUILD_ROOT/etc/httpd/modules
0e3136
0e3136
# install http-ssl-pass-dialog
0e3136
mkdir -p $RPM_BUILD_ROOT%{_libexecdir}
0e3136
install -m755 $RPM_SOURCE_DIR/httpd-ssl-pass-dialog \
0e3136
        $RPM_BUILD_ROOT%{_libexecdir}/httpd-ssl-pass-dialog
0e3136
0e3136
# install http-ssl-gencerts
0e3136
install -m755 $RPM_SOURCE_DIR/httpd-ssl-gencerts \
0e3136
        $RPM_BUILD_ROOT%{_libexecdir}/httpd-ssl-gencerts
0e3136
0e3136
# Install scripts
0e3136
install -m 755 apachectl.sh $RPM_BUILD_ROOT%{_sbindir}/apachectl
0e3136
touch -r $RPM_SOURCE_DIR/apachectl.sh $RPM_BUILD_ROOT%{_sbindir}/apachectl
0e3136
mkdir -p $RPM_BUILD_ROOT%{_libexecdir}/initscripts/legacy-actions/httpd
0e3136
for f in graceful configtest; do
0e3136
    install -p -m 755 $RPM_SOURCE_DIR/action-${f}.sh \
0e3136
            $RPM_BUILD_ROOT%{_libexecdir}/initscripts/legacy-actions/httpd/${f}
0e3136
done
0e3136
0e3136
# Install logrotate config
0e3136
mkdir -p $RPM_BUILD_ROOT/etc/logrotate.d
0e3136
install -m 644 -p $RPM_SOURCE_DIR/httpd.logrotate \
0e3136
        $RPM_BUILD_ROOT/etc/logrotate.d/httpd
0e3136
0e3136
# Install man pages
0e3136
install -d $RPM_BUILD_ROOT%{_mandir}/man8 $RPM_BUILD_ROOT%{_mandir}/man5
0e3136
install -m 644 -p httpd.service.8 httpd-init.service.8 httpd.socket.8 \
0e3136
        httpd@.service.8 htcacheclean.service.8 apachectl.8 \
0e3136
        $RPM_BUILD_ROOT%{_mandir}/man8
0e3136
install -m 644 -p httpd.conf.5 \
0e3136
        $RPM_BUILD_ROOT%{_mandir}/man5
0e3136
0e3136
# fix man page paths
0e3136
sed -e "s|/usr/local/apache2/conf/httpd.conf|/etc/httpd/conf/httpd.conf|" \
0e3136
    -e "s|/usr/local/apache2/conf/mime.types|/etc/mime.types|" \
0e3136
    -e "s|/usr/local/apache2/conf/magic|/etc/httpd/conf/magic|" \
0e3136
    -e "s|/usr/local/apache2/logs/error_log|/var/log/httpd/error_log|" \
0e3136
    -e "s|/usr/local/apache2/logs/access_log|/var/log/httpd/access_log|" \
0e3136
    -e "s|/usr/local/apache2/logs/httpd.pid|/run/httpd/httpd.pid|" \
0e3136
    -e "s|/usr/local/apache2|/etc/httpd|" < docs/man/httpd.8 \
0e3136
  > $RPM_BUILD_ROOT%{_mandir}/man8/httpd.8
0e3136
0e3136
# Make ap_config_layout.h libdir-agnostic
0e3136
sed -i '/.*DEFAULT_..._LIBEXECDIR/d;/DEFAULT_..._INSTALLBUILDDIR/d' \
0e3136
    $RPM_BUILD_ROOT%{_includedir}/httpd/ap_config_layout.h
0e3136
0e3136
# Fix path to instdso in special.mk
0e3136
sed -i '/instdso/s,top_srcdir,top_builddir,' \
0e3136
    $RPM_BUILD_ROOT%{_libdir}/httpd/build/special.mk
0e3136
0e3136
# vendor-apxs uses an unsanitized config_vars.mk which may
0e3136
# have dependencies on redhat-rpm-config.  apxs uses the
0e3136
# config_vars.mk with a sanitized config_vars.mk
0e3136
cp -p $RPM_BUILD_ROOT%{_libdir}/httpd/build/config_vars.mk \
0e3136
      $RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor_config_vars.mk
0e3136
0e3136
# Sanitize CFLAGS in standard config_vars.mk
0e3136
sed '/^CFLAGS/s,=.*$,= -O2 -g -Wall,' \
0e3136
    -i $RPM_BUILD_ROOT%{_libdir}/httpd/build/config_vars.mk
0e3136
0e3136
sed 's/config_vars.mk/vendor_config_vars.mk/' \
0e3136
    $RPM_BUILD_ROOT%{_bindir}/apxs \
0e3136
    > $RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor-apxs
0e3136
touch -r $RPM_BUILD_ROOT%{_bindir}/apxs \
0e3136
      $RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor-apxs
0e3136
chmod 755 $RPM_BUILD_ROOT%{_libdir}/httpd/build/vendor-apxs
0e3136
0e3136
# Remove unpackaged files
0e3136
rm -vf \
0e3136
      $RPM_BUILD_ROOT%{_libdir}/*.exp \
0e3136
      $RPM_BUILD_ROOT/etc/httpd/conf/mime.types \
0e3136
      $RPM_BUILD_ROOT%{_libdir}/httpd/modules/*.exp \
0e3136
      $RPM_BUILD_ROOT%{_libdir}/httpd/build/config.nice \
0e3136
      $RPM_BUILD_ROOT%{_bindir}/{ap?-config,dbmmanage} \
0e3136
      $RPM_BUILD_ROOT%{_sbindir}/{checkgid,envvars*} \
0e3136
      $RPM_BUILD_ROOT%{contentdir}/htdocs/* \
0e3136
      $RPM_BUILD_ROOT%{_mandir}/man1/dbmmanage.* \
0e3136
      $RPM_BUILD_ROOT%{contentdir}/cgi-bin/*
0e3136
0e3136
rm -rf $RPM_BUILD_ROOT/etc/httpd/conf/{original,extra}
0e3136
0e3136
%pre filesystem
0e3136
getent group apache >/dev/null || groupadd -g 48 -r apache
0e3136
getent passwd apache >/dev/null || \
0e3136
  useradd -r -u 48 -g apache -s /sbin/nologin \
0e3136
    -d %{contentdir} -c "Apache" apache
0e3136
exit 0
0e3136
0e3136
%post
0e3136
%systemd_post httpd.service htcacheclean.service httpd.socket
0e3136
0e3136
%preun
0e3136
%systemd_preun httpd.service htcacheclean.service httpd.socket
0e3136
0e3136
%postun
0e3136
%systemd_postun httpd.service htcacheclean.service httpd.socket
0e3136
0e3136
%posttrans
0e3136
test -f /etc/sysconfig/httpd-disable-posttrans || \
0e3136
  /bin/systemctl try-restart --no-block httpd.service htcacheclean.service >/dev/null 2>&1 || :
0e3136
0e3136
%check
0e3136
make -C server exports.o
0e3136
nm --defined httpd > exports-actual.list
0e3136
set +x
0e3136
rv=0
0e3136
nm --defined-only server/exports.o | \
0e3136
  sed -n '/ap_hack_/{s/.* ap_hack_//;/^ap[ru]/d;p;}' | \
0e3136
  while read sym; do
0e3136
    if ! grep -q " "$sym\$ exports-actual.list; then
0e3136
     echo ERROR: Symbol $sym missing in httpd exports
0e3136
     rv=1
0e3136
    fi
0e3136
  done
0e3136
if [ $rv -eq 0 ]; then
0e3136
  echo PASS: Symbol export list verified.
0e3136
fi
0e3136
# Check the built modules are all PIC
0e3136
if readelf -d $RPM_BUILD_ROOT%{_libdir}/httpd/modules/*.so | grep TEXTREL; then
0e3136
   echo FAIL: Modules contain non-relocatable code
0e3136
   rv=1
0e3136
else
0e3136
   echo PASS: No non-relocatable code in module builds
0e3136
fi
0e3136
# Ensure every mod_* that's built is loaded.
0e3136
for f in $RPM_BUILD_ROOT%{_libdir}/httpd/modules/*.so; do
0e3136
  m=${f##*/}
0e3136
  if ! grep -q $m $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/*.conf; then
0e3136
    echo FAIL: Module $m not configured.  Disable it, or load it.
0e3136
    rv=1
0e3136
   else
0e3136
    echo PASS: Module $m is configured and loaded.
0e3136
  fi
0e3136
done
0e3136
# Ensure every loaded mod_* is actually built
0e3136
mods=`grep -h ^LoadModule $RPM_BUILD_ROOT%{_sysconfdir}/httpd/conf.modules.d/*.conf | sed 's,.*modules/,,'`
0e3136
for m in $mods; do
0e3136
  f=$RPM_BUILD_ROOT%{_libdir}/httpd/modules/${m}
0e3136
  if ! test -x $f; then
0e3136
    echo FAIL: Module $m is configured but not built.
0e3136
    rv=1
0e3136
  else
0e3136
    echo PASS: Loaded module $m is installed.
0e3136
  fi
0e3136
done
0e3136
set -x
0e3136
exit $rv
0e3136
0e3136
%files
0e3136
0e3136
%doc ABOUT_APACHE README CHANGES LICENSE VERSIONING NOTICE
0e3136
%doc docs/conf/extra/*.conf
0e3136
%doc instance.conf server-status.conf
0e3136
0e3136
%{_sysconfdir}/httpd/modules
0e3136
%{_sysconfdir}/httpd/logs
0e3136
%{_sysconfdir}/httpd/state
0e3136
%{_sysconfdir}/httpd/run
0e3136
%dir %{_sysconfdir}/httpd/conf
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf/httpd.conf
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf/magic
0e3136
0e3136
%config(noreplace) %{_sysconfdir}/logrotate.d/httpd
0e3136
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.d/*.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.d/ssl.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.d/manual.conf
0e3136
0e3136
%dir %{_sysconfdir}/httpd/conf.modules.d
0e3136
%{_sysconfdir}/httpd/conf.modules.d/README
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/*.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.modules.d/00-ssl.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.modules.d/00-proxyhtml.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.modules.d/00-lua.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.modules.d/01-ldap.conf
0e3136
%exclude %{_sysconfdir}/httpd/conf.modules.d/01-session.conf
0e3136
0e3136
%config(noreplace) %{_sysconfdir}/sysconfig/htcacheclean
0e3136
%{_prefix}/lib/tmpfiles.d/httpd.conf
0e3136
0e3136
%dir %{_libexecdir}/initscripts/legacy-actions/httpd
0e3136
%{_libexecdir}/initscripts/legacy-actions/httpd/*
0e3136
0e3136
%{_sbindir}/ht*
0e3136
%{_sbindir}/fcgistarter
0e3136
%{_sbindir}/apachectl
0e3136
%{_sbindir}/rotatelogs
0e3136
%caps(cap_setuid,cap_setgid+pe) %attr(510,root,%{suexec_caller}) %{_sbindir}/suexec
0e3136
0e3136
%dir %{_libdir}/httpd
0e3136
%dir %{_libdir}/httpd/modules
0e3136
%{_libdir}/httpd/modules/mod*.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_auth_form.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_ssl.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_*ldap.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_proxy_html.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_xml2enc.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_session*.so
0e3136
%exclude %{_libdir}/httpd/modules/mod_lua.so
0e3136
0e3136
%dir %{contentdir}/error
0e3136
%dir %{contentdir}/error/include
0e3136
%dir %{contentdir}/noindex
0e3136
%dir %{contentdir}/server-status
0e3136
%{contentdir}/icons/*
0e3136
%{contentdir}/error/README
0e3136
%{contentdir}/error/*.var
0e3136
%{contentdir}/error/include/*.html
0e3136
%{contentdir}/noindex/index.html
0e3136
%{contentdir}/server-status/*
0e3136
0e3136
%attr(0710,root,apache) %dir /run/httpd
0e3136
%attr(0700,apache,apache) %dir /run/httpd/htcacheclean
0e3136
%attr(0700,root,root) %dir %{_localstatedir}/log/httpd
0e3136
%attr(0700,apache,apache) %dir %{_localstatedir}/lib/httpd
0e3136
%attr(0700,apache,apache) %dir %{_localstatedir}/cache/httpd
0e3136
%attr(0700,apache,apache) %dir %{_localstatedir}/cache/httpd/proxy
0e3136
0e3136
%{_mandir}/man8/*
0e3136
%{_mandir}/man5/*
0e3136
%exclude %{_mandir}/man8/httpd-init.*
0e3136
0e3136
%{_unitdir}/httpd.service
0e3136
%{_unitdir}/httpd@.service
0e3136
%{_unitdir}/htcacheclean.service
0e3136
%{_unitdir}/*.socket
0e3136
0e3136
%files filesystem
0e3136
%dir %{_sysconfdir}/httpd
0e3136
%dir %{_sysconfdir}/httpd/conf.d
0e3136
%{_sysconfdir}/httpd/conf.d/README
0e3136
%dir %{docroot}
0e3136
%dir %{docroot}/cgi-bin
0e3136
%dir %{docroot}/html
0e3136
%dir %{contentdir}
0e3136
%dir %{contentdir}/icons
0e3136
%attr(755,root,root) %dir %{_unitdir}/httpd.service.d
0e3136
%attr(755,root,root) %dir %{_unitdir}/httpd.socket.d
0e3136
0e3136
%files tools
0e3136
%{_bindir}/*
0e3136
%{_mandir}/man1/*
0e3136
%doc LICENSE NOTICE
0e3136
%exclude %{_bindir}/apxs
0e3136
%exclude %{_mandir}/man1/apxs.1*
0e3136
0e3136
%files manual
0e3136
%{contentdir}/manual
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.d/manual.conf
0e3136
0e3136
%files -n mod_ssl
0e3136
%{_libdir}/httpd/modules/mod_ssl.so
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/00-ssl.conf
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.d/ssl.conf
0e3136
%attr(0700,apache,root) %dir %{_localstatedir}/cache/httpd/ssl
0e3136
%{_unitdir}/httpd-init.service
0e3136
%{_libexecdir}/httpd-ssl-pass-dialog
0e3136
%{_libexecdir}/httpd-ssl-gencerts
0e3136
%{_unitdir}/httpd.socket.d/10-listen443.conf
0e3136
%{_mandir}/man8/httpd-init.*
0e3136
0e3136
%files -n mod_proxy_html
0e3136
%{_libdir}/httpd/modules/mod_proxy_html.so
0e3136
%{_libdir}/httpd/modules/mod_xml2enc.so
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/00-proxyhtml.conf
0e3136
0e3136
%files -n mod_ldap
0e3136
%{_libdir}/httpd/modules/mod_*ldap.so
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/01-ldap.conf
0e3136
0e3136
%files -n mod_session
0e3136
%{_libdir}/httpd/modules/mod_session*.so
0e3136
%{_libdir}/httpd/modules/mod_auth_form.so
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/01-session.conf
0e3136
0e3136
%files -n mod_lua
0e3136
%{_libdir}/httpd/modules/mod_lua.so
0e3136
%config(noreplace) %{_sysconfdir}/httpd/conf.modules.d/00-lua.conf
0e3136
0e3136
%files devel
0e3136
%{_includedir}/httpd
0e3136
%{_bindir}/apxs
0e3136
%{_mandir}/man1/apxs.1*
0e3136
%dir %{_libdir}/httpd/build
0e3136
%{_libdir}/httpd/build/*.mk
0e3136
%{_libdir}/httpd/build/*.sh
0e3136
%{_libdir}/httpd/build/vendor-apxs
0e3136
%{_rpmconfigdir}/macros.d/macros.httpd
0e3136
0e3136
%changelog
1eaa30
* Mon Dec 06 2021 Neal Gompa <ngompa@centosproject.org> - 2.4.51-4
1eaa30
- Use NAME from os-release(5) for vendor string
1eaa30
  Resolves: #2029071 - httpd on CentOS identifies as RHEL
1eaa30
1eaa30
* Fri Dec  3 2021 Joe Orton <jorton@redhat.com> - 2.4.51-3
1eaa30
- add fixes for static analyzer issues (#1938740)
1eaa30
a42d0f
* Mon Nov 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-2
a42d0f
- Resolves: #2005416 - httpd default configuration changes
a42d0f
a42d0f
* Tue Oct 19 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-1
a42d0f
- new version 2.4.51 (#2011090)
a42d0f
a42d0f
* Fri Sep 17 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.49-1
a42d0f
- new version 2.4.49 (#2005339)
a42d0f
a42d0f
* Wed Sep 15 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-18
a42d0f
- Resolves: #2004143 - RFE: mod_ssl: allow sending multiple CA names which
a42d0f
  differ only in case
a42d0f
0e3136
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-17
0e3136
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
0e3136
  Related: rhbz#1991688
0e3136
0e3136
* Fri Aug 06 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-16
0e3136
- Resolves: #1956386 - Apache trademark update - new logo
0e3136
0e3136
* Fri Aug  6 2021 Florian Weimer <fweimer@redhat.com> - 2.4.48-14
0e3136
- Rebuild to pick up new build flags from redhat-rpm-config (#1984652)
0e3136
0e3136
* Wed Jul 28 2021 Joe Orton <jorton@redhat.com> - 2.4.48-13
0e3136
- mod_ssl: OpenSSL 3 compatibility update (#1986822)
0e3136
0e3136
* Thu Jul 15 2021 Joe Orton <jorton@redhat.com> - 2.4.48-12
0e3136
- mod_ssl: add SSLKEYLOGFILE support (#1982656)
0e3136
0e3136
* Mon Jul 12 2021 Joe Orton <jorton@redhat.com> - 2.4.48-11
0e3136
- mod_cgid: fix doubled script timeout (#1977234)
0e3136
0e3136
* Fri Jul  9 2021 Joe Orton <jorton@redhat.com> - 2.4.48-10
0e3136
- fix release in ServerTokens Full-Release (#1932442)
0e3136
0e3136
* Wed Jul  7 2021 Joe Orton <jorton@redhat.com> - 2.4.48-9
0e3136
- use OOMPolicy=continue in httpd.service, httpd@.service (#1947475)
0e3136
0e3136
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-8
0e3136
- Resolves: #1950021 - [RFE] Update httpd directive SSLProxyMachineCertificateFile
0e3136
  to be able to handle certs without matching private key
0e3136
0e3136
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-7
0e3136
- Resolves: #1950011 - unorderly connection close when client attempts
0e3136
  renegotiation
0e3136
0e3136
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-6
0e3136
- Resolves: #1932442 - "ServerTokens Full-Release" support
0e3136
0e3136
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-5
0e3136
- mod_ssl: fix loading encrypted privkeys with OpenSSL 3.0 (#1976080)
0e3136
0e3136
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-4
0e3136
- add OpenSSL v3 compatibility fixes (#1975201)
0e3136
0e3136
* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-3
0e3136
- Rebuilt for RHEL 9 BETA for openssl 3.0
0e3136
  Related: rhbz#1971065
0e3136
0e3136
* Tue Jun 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-2
0e3136
- Resolves: #1947099 - centralizing default index.html for httpd
0e3136
0e3136
* Wed Jun 02 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-1
0e3136
- new version 2.4.48
0e3136
- Resolves: #1952817 - rebase to 2.4.48
0e3136
0e3136
* Wed May 26 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.46-15
0e3136
- Resolves: #1949606 - RFE: httpd, add IP_FREEBIND support for Listen
0e3136
0e3136
* Wed May 19 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-14
0e3136
- Resolves: #1949969 - httpd : mod_proxy should allow to specify
0e3136
  Proxy-Authorization in ProxyRemote directive 
0e3136
0e3136
* Thu Apr 22 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-13
0e3136
- Resolves: #1952546 - mod_proxy_wstunnel.html is a malformed XML
0e3136
0e3136
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.46-12
0e3136
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
0e3136
0e3136
* Tue Apr 13 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-11
0e3136
- Resolves: #1947496 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel
0e3136
0e3136
* Wed Mar 31 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-10
0e3136
- Resolves: #1934739 - Apache trademark update - new logo
0e3136
0e3136
* Mon Feb 01 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-9
0e3136
- Resolves: #1914182 - RFE: CustomLog should be able to use journald
0e3136
0e3136
* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.46-8
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
0e3136
0e3136
* Wed Jan 20 2021 Artem Egorenkov <aegorenk@redhat.com> - 2.4.46-7
0e3136
- prevent htcacheclean from while break when first file processed
0e3136
0e3136
* Thu Dec 17 2020 Joe Orton <jorton@redhat.com> - 2.4.46-6
0e3136
- move mod_lua to a subpackage
0e3136
- Recommends: both mod_lua and mod_http2
0e3136
0e3136
* Fri Nov  6 2020 Joe Orton <jorton@redhat.com> - 2.4.46-5
0e3136
- add %%_httpd_requires to macros
0e3136
0e3136
* Thu Aug 27 2020 Joe Orton <jorton@redhat.com> - 2.4.46-4
0e3136
- use make macros (Tom Stellard)
0e3136
0e3136
* Thu Aug 27 2020 Joe Orton <jorton@redhat.com> - 2.4.46-3
0e3136
- strip /usr/bin/apxs CFLAGS further
0e3136
0e3136
* Thu Aug 27 2020 Joe Orton <jorton@redhat.com> - 2.4.46-2
0e3136
- sanitize CFLAGS used by /usr/bin/apxs by default (#1873020)
0e3136
- add $libdir/httpd/build/vendor-apxs which exposes full CFLAGS
0e3136
- redefine _httpd_apxs RPM macro to use vendor-apxs
0e3136
0e3136
* Tue Aug 25 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-1
0e3136
- new version 2.4.46
0e3136
- remove obsolete parts of this spec file
0e3136
- fix systemd detection patch
0e3136
0e3136
* Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.43-7
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
0e3136
0e3136
* Thu Jul 09 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.43-6
0e3136
- fix macro in mod_lua for lua 4.5
0e3136
0e3136
* Thu Jul 09 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.43-5
0e3136
- Remove %ghosted /etc/sysconfig/httpd file (#1850082)
0e3136
0e3136
* Tue Jul  7 2020 Joe Orton <jorton@redhat.com> - 2.4.43-4
0e3136
- use gettid() directly and use it for built-in ErrorLogFormat
0e3136
0e3136
* Fri Apr 17 2020 Joe Orton <jorton@redhat.com> - 2.4.43-3
0e3136
- mod_ssl: updated coalescing filter to improve TLS efficiency
0e3136
0e3136
* Fri Apr 17 2020 Joe Orton <jorton@redhat.com> - 2.4.43-2
0e3136
- mod_ssl: fix leak in OCSP stapling code (PR 63687, r1876548)
0e3136
- mod_systemd: restore descriptive startup logging
0e3136
0e3136
* Tue Mar 31 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.43-1
0e3136
- new version 2.4.43 (#1819023)
0e3136
0e3136
* Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.41-13
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
0e3136
0e3136
* Mon Jan 20 2020 Joe Orton <jorton@redhat.com> - 2.4.41-12
0e3136
- mod_systemd: fix timeouts on reload w/ExtendedStatus off (#1590877)
0e3136
0e3136
* Mon Jan  6 2020 Joe Orton <jorton@redhat.com> - 2.4.41-11
0e3136
- apachectl(8): update authors
0e3136
0e3136
* Sat Dec  7 2019 FeRD (Frank Dana) <ferdnyc@gmail.com> - 2.4.41-10
0e3136
- apachectl: Add man page for Fedora version
0e3136
0e3136
* Thu Nov 21 2019 Joe Orton <jorton@redhat.com> - 2.4.41-9
0e3136
- mod_ssl: fix request body buffering w/TLSv1.3 PHA (#1775146)
0e3136
0e3136
* Wed Nov 13 2019 Joe Orton <jorton@redhat.com> - 2.4.41-8
0e3136
- apachectl: in graceful/graceful-stop, only signal main process (#1758798)
0e3136
0e3136
* Mon Nov 11 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.41-7
0e3136
- add automatic source tarball signature verification in %prep section
0e3136
0e3136
* Fri Oct  4 2019 Joe Orton <jorton@redhat.com> - 2.4.41-6
0e3136
- mod_cgid/mod_cgi: further upstream consolidation patches
0e3136
0e3136
* Thu Oct  3 2019 Joe Orton <jorton@redhat.com> - 2.4.41-5
0e3136
- mod_proxy_balancer: fix balancer-manager XSRF check (PR 63688)
0e3136
0e3136
* Wed Oct  2 2019 Joe Orton <jorton@redhat.com> - 2.4.41-4
0e3136
- mod_cgid: possible stdout timeout handling fix (#1757683)
0e3136
0e3136
* Wed Sep 25 2019 Joe Orton <jorton@redhat.com> - 2.4.41-3
0e3136
- mod_ssl: restore dependency on /usr/bin/hostname (#1135118)
0e3136
0e3136
* Thu Sep 19 2019 Stephen Gallagher <sgallagh@redhat.com> - 2.4.41-2
0e3136
- Use testpage from system-logos-httpd for proper branding
0e3136
0e3136
* Thu Aug 15 2019 Joe Orton <jorton@redhat.com> - 2.4.41-1
0e3136
- update to 2.4.41
0e3136
0e3136
* Thu Jul 25 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.39-13
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
0e3136
0e3136
* Tue Jul 23 2019 Joe Orton <jorton@redhat.com> - 2.4.39-12
0e3136
- drop /var/lib/dav directory, since mod_dav_fs uses statedir
0e3136
0e3136
* Wed Jul 17 2019 Joe Orton <jorton@redhat.com> - 2.4.39-11
0e3136
- mod_cgid: use fd passing to fix script stderr handling (#1591157)
0e3136
0e3136
* Mon Jul  8 2019 Joe Orton <jorton@redhat.com> - 2.4.39-10
0e3136
- htpasswd: add SHA-256/512 support
0e3136
- apachectl: restore -V/-v/-t support (#1727434)
0e3136
0e3136
* Fri Jun 21 2019 Joe Orton <jorton@redhat.com> - 2.4.39-9
0e3136
- create instance-specific StateDir in httpd@.service, instance.conf
0e3136
0e3136
* Thu Jun 20 2019 Joe Orton <jorton@redhat.com> - 2.4.39-8
0e3136
- remove superfluous ap_hack_ symbols from httpd binary
0e3136
- more verbose %%check section
0e3136
0e3136
* Thu Jun 13 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.39-7
0e3136
- remove bundled mod_md module
0e3136
0e3136
* Thu Jun 13 2019 Joe Orton <jorton@redhat.com> - 2.4.39-6
0e3136
- mod_ssl: fix "httpd -L" (etc) before httpd-init.service runs
0e3136
0e3136
* Wed Jun 12 2019 Joe Orton <jorton@redhat.com> - 2.4.39-5
0e3136
- fixes for StateDir directive (upstream r1857731, r1857731)
0e3136
0e3136
* Thu May 02 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.39-4
0e3136
- httpd dependency on initscripts is unspecified (#1705188)
0e3136
0e3136
* Tue Apr  9 2019 Joe Orton <jorton@redhat.com> - 2.4.39-3
0e3136
- fix statedir symlink to point to /var/lib/httpd (#1697662)
0e3136
- mod_reqtimeout: fix default values regression (PR 63325)
0e3136
0e3136
* Tue Apr 02 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.39-2
0e3136
- update to 2.4.39
0e3136
0e3136
* Thu Feb 28 2019 Joe Orton <jorton@redhat.com> - 2.4.38-6
0e3136
- apachectl: cleanup and replace script wholesale (#1641237)
0e3136
 * drop "apachectl fullstatus" support
0e3136
 * run systemctl with --no-pager option
0e3136
 * implement graceful&graceful-stop by signal directly
0e3136
- run "httpd -t" from legacy action script
0e3136
0e3136
* Tue Feb 05 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.38-5
0e3136
- segmentation fault fix (FIPS)
0e3136
0e3136
* Tue Feb  5 2019 Joe Orton <jorton@redhat.com> - 2.4.38-4
0e3136
- use serverroot-relative statedir, rundir by default
0e3136
0e3136
* Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.38-3
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
0e3136
0e3136
* Wed Jan 23 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.38-2
0e3136
- new version 2.4.38 (#1668125)
0e3136
0e3136
* Mon Jan 14 2019 Björn Esser <besser82@fedoraproject.org> - 2.4.37-6
0e3136
- Rebuilt for libcrypt.so.2 (#1666033)
0e3136
0e3136
* Thu Nov 22 2018 Luboš Uhliarik <luhliari@redhat.com> - 2.4.37-5
0e3136
- Resolves: #1652678 - TLS connection allowed while all protocols are forbidden
0e3136
0e3136
* Thu Nov  8 2018 Joe Orton <jorton@redhat.com> - 2.4.37-4
0e3136
- add httpd.conf(5) (#1611361)
0e3136
0e3136
* Wed Nov 07 2018 Luboš Uhliarik <luhliari@redhat.com> - 2.4.37-3
0e3136
- Resolves: #1647241 - fix apachectl script
0e3136
0e3136
* Wed Oct 31 2018 Joe Orton <jorton@redhat.com> - 2.4.37-2
0e3136
- add DefaultStateDir/ap_state_dir_relative()
0e3136
- mod_dav_fs: use state dir for default DAVLockDB
0e3136
- mod_md: use state dir for default MDStoreDir
0e3136
0e3136
* Wed Oct 31 2018 Joe Orton <jorton@redhat.com> - 2.4.37-1
0e3136
- update to 2.4.37
0e3136
0e3136
* Wed Oct 31 2018 Joe Orton <jorton@redhat.com> - 2.4.34-11
0e3136
- add htcacheclean.service(8) man page
0e3136
0e3136
* Fri Sep 28 2018 Joe Orton <jorton@redhat.com> - 2.4.34-10
0e3136
- apachectl: don't read /etc/sysconfig/httpd
0e3136
0e3136
* Tue Sep 25 2018 Joe Orton <jorton@redhat.com> - 2.4.34-9
0e3136
- fix build if OpenSSL built w/o SSLv3 support
0e3136
0e3136
* Fri Sep 21 2018 Joe Orton <jorton@redhat.com> - 2.4.34-8
0e3136
- comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in
0e3136
  default configuration; now follow OpenSSL system default (#1468322)
0e3136
0e3136
* Fri Sep 21 2018 Joe Orton <jorton@redhat.com> - 2.4.34-7
0e3136
- mod_ssl: follow OpenSSL protocol defaults if SSLProtocol
0e3136
  is not configured (Rob Crittenden, #1618371)
0e3136
0e3136
* Tue Aug 28 2018 Luboš Uhliarik <luhliari@redhat.com> - 2.4.34-6
0e3136
- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All"
0e3136
  configuration (#1624777)
0e3136
0e3136
* Tue Aug 21 2018 Joe Orton <jorton@redhat.com> - 2.4.34-5
0e3136
- mod_ssl: further TLSv1.3 fix (#1619389)
0e3136
0e3136
* Mon Aug 13 2018 Joe Orton <jorton@redhat.com> - 2.4.34-4
0e3136
- mod_ssl: backport TLSv1.3 support changes from upstream (#1615059)
0e3136
0e3136
* Fri Jul 20 2018 Joe Orton <jorton@redhat.com> - 2.4.34-3
0e3136
- mod_ssl: fix OCSP regression (upstream r1555631)
0e3136
0e3136
* Wed Jul 18 2018 Joe Orton <jorton@redhat.com> - 2.4.34-2
0e3136
- update Obsoletes for mod_proxy_uswgi (#1599113)
0e3136
0e3136
* Wed Jul 18 2018 Joe Orton <jorton@redhat.com> - 2.4.34-1
0e3136
- update to 2.4.34 (#1601160)
0e3136
0e3136
* Mon Jul 16 2018 Joe Orton <jorton@redhat.com> - 2.4.33-10
0e3136
- don't block on service try-restart in posttrans scriptlet
0e3136
- add Lua-based /server-status example page to docs
0e3136
- obsoletes: and provides: for mod_proxy_uswgi (#1599113)
0e3136
0e3136
* Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.33-9
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
0e3136
0e3136
* Fri Jul  6 2018 Joe Orton <jorton@redhat.com> - 2.4.33-8
0e3136
- add per-request memory leak fix (upstream r1833014)
0e3136
0e3136
* Fri Jul  6 2018 Joe Orton <jorton@redhat.com> - 2.4.33-7
0e3136
- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki)
0e3136
0e3136
* Tue Jun 12 2018 Joe Orton <jorton@redhat.com> - 2.4.33-6
0e3136
- mod_systemd: show bound ports in status and log to journal
0e3136
  at startup.
0e3136
0e3136
* Thu Apr 19 2018 Joe Orton <jorton@redhat.com> - 2.4.33-5
0e3136
- add httpd@.service; update httpd.service(8) and add new stub
0e3136
0e3136
* Mon Apr 16 2018 Joe Orton <jorton@redhat.com> - 2.4.33-4
0e3136
- mod_md: change hard-coded default MdStoreDir to state/md (#1563846)
0e3136
0e3136
* Thu Apr 12 2018 Joe Orton <jorton@redhat.com> - 2.4.33-3
0e3136
- mod_ssl: drop implicit 'SSLEngine on' for vhost w/o certs (#1564537)
0e3136
0e3136
* Fri Mar 30 2018 Adam Williamson <awilliam@redhat.com> - 2.4.33-2
0e3136
- Exclude mod_md config file from main package (#1562413)
0e3136
0e3136
* Wed Mar 28 2018 Joe Orton <jorton@redhat.com> - 2.4.33-1
0e3136
- rebase to 2.4.33 (#1560174)
0e3136
- add mod_md subpackage; load mod_proxy_uwsgi by default
0e3136
0e3136
* Mon Mar 05 2018 Jitka Plesnikova <jplesnik@redhat.com> - 2.4.29-8
0e3136
- Rebuilt with brotli 1.0.3
0e3136
0e3136
* Mon Feb 26 2018 Joe Orton <jorton@redhat.com> - 2.4.29-7
0e3136
- simplify liblua detection in configure
0e3136
0e3136
* Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.29-6
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
0e3136
0e3136
* Sat Jan 27 2018 Joe Orton <jorton@redhat.com> - 2.4.29-5
0e3136
- link mod_lua against -lcrypt (#1538992)
0e3136
0e3136
* Fri Jan 26 2018 Paul Howarth <paul@city-fan.org> - 2.4.29-4
0e3136
- Rebuild with updated flags to work around compiler issues on i686
0e3136
  (#1538648, #1538693)
0e3136
0e3136
* Sat Jan 20 2018 Björn Esser <besser82@fedoraproject.org> - 2.4.29-3
0e3136
- Rebuilt for switch to libxcrypt
0e3136
0e3136
* Thu Nov 23 2017 Joe Orton <jorton@redhat.com> - 2.4.29-2
0e3136
- build and load mod_brotli
0e3136
0e3136
* Wed Oct 25 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.29-1
0e3136
- new version 2.4.29
0e3136
0e3136
* Tue Oct 10 2017 Joe Orton <jorton@redhat.com> - 2.4.28-3
0e3136
- drop obsolete Obsoletes
0e3136
- update docs, Summary
0e3136
- trim %%changelog
0e3136
0e3136
* Tue Oct 10 2017 Patrick Uiterwijk <patrick@puiterwijk.org> - 2.4.28-2
0e3136
- Backport patch for fixing ticket key usage
0e3136
0e3136
* Fri Oct 06 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.28-1
0e3136
- new version 2.4.28
0e3136
0e3136
* Tue Oct  3 2017 Joe Orton <jorton@redhat.com> - 2.4.27-14
0e3136
- add notes on enabling httpd_graceful_shutdown boolean for prefork
0e3136
0e3136
* Fri Sep 22 2017 Joe Orton <jorton@redhat.com> - 2.4.27-13
0e3136
- drop Requires(post) for mod_ssl
0e3136
0e3136
* Fri Sep 22 2017 Joe Orton <jorton@redhat.com> - 2.4.27-12
0e3136
- better error handling in httpd-ssl-gencerts (#1494556)
0e3136
0e3136
* Thu Sep 21 2017 Stephen Gallagher <sgallagh@redhat.com> - 2.4.27-11
0e3136
- Require sscg 2.2.0 for creating service and CA certificates together
0e3136
0e3136
* Thu Sep 21 2017 Jeroen van Meeuwen <kanarip@fedoraproject.org> - 2.4.27-10
0e3136
- Address CVE-2017-9798 by applying patch from upstream (#1490344)
0e3136
0e3136
* Thu Sep 21 2017 Joe Orton <jorton@redhat.com> - 2.4.27-9
0e3136
- use sscg defaults; append CA cert to generated cert
0e3136
- document httpd-init.service in httpd-init.service(8)
0e3136
0e3136
* Wed Sep 20 2017 Stephen Gallagher <sgallagh@redhat.com> - 2.4.27-8.1
0e3136
- Generate SSL certificates on service start, not %%posttrans
0e3136
0e3136
* Tue Sep 19 2017 Joe Orton <jorton@redhat.com> - 2.4.27-8
0e3136
- move httpd.service.d, httpd.socket.d dirs to -filesystem
0e3136
0e3136
* Wed Sep 13 2017 Joe Orton <jorton@redhat.com> - 2.4.27-7
0e3136
- add new content-length filter (upstream PR 61222)
0e3136
0e3136
* Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.27-6
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
0e3136
0e3136
* Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.27-5
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
0e3136
0e3136
* Tue Jul 18 2017 Joe Orton <jorton@redhat.com> - 2.4.27-4
0e3136
- update mod_systemd (r1802251)
0e3136
0e3136
* Mon Jul 17 2017 Joe Orton <jorton@redhat.com> - 2.4.27-3
0e3136
- switch to event by default for Fedora 27 and later (#1471708)
0e3136
0e3136
* Wed Jul 12 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.27-2
0e3136
- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig
0e3136
0e3136
* Mon Jul 10 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.27-1
0e3136
- new version 2.4.27
0e3136
0e3136
* Fri Jun 30 2017 Joe Orton <jorton@redhat.com> - 2.4.26-2
0e3136
- mod_proxy_fcgi: fix further regressions (PR 61202)
0e3136
0e3136
* Mon Jun 19 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.26-1
0e3136
- new version 2.4.26
0e3136
0e3136
* Mon Jun  5 2017 Joe Orton <jorton@redhat.com> - 2.4.25-10
0e3136
- move unit man pages to section 8, add as Documentation= in units
0e3136
0e3136
* Fri May 19 2017 Joe Orton <jorton@redhat.com> - 2.4.25-9
0e3136
- add httpd.service(5) and httpd.socket(5) man pages
0e3136
0e3136
* Tue May 16 2017 Joe Orton <jorton@redhat.com> - 2.4.25-8
0e3136
- require mod_http2, now packaged separately
0e3136
0e3136
* Wed Mar 29 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.25-7
0e3136
- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp:
0e3136
  patch to set worker secret passed to tomcat
0e3136
0e3136
* Tue Mar 28 2017 Luboš Uhliarik <luhliari@redhat.com> - 2.4.25-6
0e3136
- Resolves: #1434916 - httpd.service: Failed with result timeout
0e3136
0e3136
* Fri Mar 24 2017 Joe Orton <jorton@redhat.com> - 2.4.25-5
0e3136
- link only httpd, not support/* against -lselinux -lsystemd
0e3136
0e3136
* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.25-4
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
0e3136
0e3136
* Thu Jan 12 2017 Joe Orton <jorton@redhat.com> - 2.4.25-3
0e3136
- mod_watchdog: restrict thread lifetime (#1410883)
0e3136
0e3136
* Thu Dec 22 2016 Luboš Uhliarik <luhliari@redhat.com> - 2.4.25-2
0e3136
- Resolves: #1358875 - require nghttp2 >= 1.5.0
0e3136
0e3136
* Thu Dec 22 2016 Luboš Uhliarik <luhliari@redhat.com> - 2.4.25-1
0e3136
- new version 2.4.25
0e3136
0e3136
* Mon Dec 05 2016 Luboš Uhliarik <luhliari@redhat.com> - 2.4.23-7
0e3136
- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of
0e3136
  LimitRequestFields directive in mod_http2
0e3136
0e3136
* Mon Nov 14 2016 Joe Orton <jorton@redhat.com> - 2.4.23-6
0e3136
- fix build with OpenSSL 1.1 (#1392900)
0e3136
- fix typos in ssl.conf (josef randinger, #1379407)
0e3136
0e3136
* Wed Nov  2 2016 Joe Orton <jorton@redhat.com> - 2.4.23-5
0e3136
- no longer package /etc/sysconfig/httpd
0e3136
- synch ssl.conf with upstream
0e3136
0e3136
* Mon Jul 18 2016 Joe Orton <jorton@redhat.com> - 2.4.23-4
0e3136
- add security fix for CVE-2016-5387
0e3136
0e3136
* Thu Jul  7 2016 Joe Orton <jorton@redhat.com> - 2.4.23-3
0e3136
- load mod_watchdog by default (#1353582)
0e3136
0e3136
* Thu Jul  7 2016 Joe Orton <jorton@redhat.com> - 2.4.23-2
0e3136
- restore build of mod_proxy_fdpass (#1325883)
0e3136
- improve check tests to catch configured-but-not-built modules
0e3136
0e3136
* Thu Jul  7 2016 Joe Orton <jorton@redhat.com> - 2.4.23-1
0e3136
- update to 2.4.23 (#1325883, #1353203)
0e3136
- load mod_proxy_hcheck
0e3136
- recommend use of "systemctl edit" in httpd.service
0e3136
0e3136
* Thu Apr  7 2016 Joe Orton <jorton@redhat.com> - 2.4.18-6
0e3136
- have "apachectl graceful" start httpd if not running, per man page
0e3136
0e3136
* Wed Apr  6 2016 Joe Orton <jorton@redhat.com> - 2.4.18-5
0e3136
- use redirects for lang-specific /manual/ URLs
0e3136
0e3136
* Fri Mar 18 2016 Joe Orton <jorton@redhat.com> - 2.4.18-4
0e3136
- fix welcome page HTML validity (Ville Skyttä)
0e3136
0e3136
* Fri Mar 18 2016 Joe Orton <jorton@redhat.com> - 2.4.18-3
0e3136
- remove httpd pre script (duplicate of httpd-filesystem's)
0e3136
- in httpd-filesystem pre script, create group/user iff non-existent
0e3136
0e3136
* Wed Feb 03 2016 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.18-2
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
0e3136
0e3136
* Mon Dec 14 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.18-1
0e3136
- update to new version 2.4.18
0e3136
0e3136
* Wed Dec  9 2015 Joe Orton <jorton@redhat.com> - 2.4.17-4
0e3136
- re-enable mod_asis due to popular demand (#1284315)
0e3136
0e3136
* Mon Oct 26 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.17-3
0e3136
- fix crash when using -X argument (#1272234)
0e3136
0e3136
* Wed Oct 14 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.17-2
0e3136
- rebase socket activation patch to 2.4.17
0e3136
0e3136
* Tue Oct 13 2015 Joe Orton <jorton@redhat.com> - 2.4.17-1
0e3136
- update to 2.4.17 (#1271224)
0e3136
- build, load mod_http2
0e3136
- don't build mod_asis, mod_file_cache
0e3136
- load mod_cache_socache, mod_proxy_wstunnel by default
0e3136
- check every built mod_* is configured
0e3136
- synch ssl.conf with upstream; disable SSLv3 by default
0e3136
0e3136
* Wed Jul 15 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-4
0e3136
- update to 2.4.16
0e3136
0e3136
* Tue Jul  7 2015 Joe Orton <jorton@redhat.com> - 2.4.12-3
0e3136
- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars
0e3136
0e3136
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.12-2
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
0e3136
0e3136
* Fri Mar 27 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-1
0e3136
- update to 2.4.12
0e3136
0e3136
* Tue Mar 24 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-17
0e3136
- fix compilation with lua-5.3
0e3136
0e3136
* Tue Mar 24 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-16
0e3136
- remove filter for auto-provides of httpd modules, it is not needed since F20
0e3136
0e3136
* Wed Dec 17 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-15
0e3136
- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704)
0e3136
- mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)
0e3136
- mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583)
0e3136
- mod_lua: fix handling of the Require line when a LuaAuthzProvider is used
0e3136
  in multiple Require directives with different arguments (CVE-2014-8109)
0e3136
0e3136
* Tue Oct 14 2014 Joe Orton <jorton@redhat.com> - 2.4.10-14
0e3136
- require apr-util 1.5.x
0e3136
0e3136
* Thu Sep 18 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-13
0e3136
- use NoDelay and DeferAcceptSec in httpd.socket
0e3136
0e3136
* Mon Sep 08 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-12
0e3136
- increase suexec minimum acceptable uid/gid to 1000 (#1136391)
0e3136
0e3136
* Wed Sep 03 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-11
0e3136
- fix hostname requirement and conflict with openssl-libs
0e3136
0e3136
* Mon Sep 01 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-10
0e3136
- use KillMode=mixed in httpd.service (#1135122)
0e3136
0e3136
* Fri Aug 29 2014 Joe Orton <jorton@redhat.com> - 2.4.10-9
0e3136
- set vstring based on /etc/os-release (Pat Riehecky, #1114539)
0e3136
0e3136
* Fri Aug 29 2014 Joe Orton <jorton@redhat.com> - 2.4.10-8
0e3136
- pull in httpd-filesystem as Requires(pre) (#1128328)
0e3136
- fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348)
0e3136
- require hostname for mod_ssl post script (#1135118)
0e3136
0e3136
* Fri Aug 22 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-7
0e3136
- mod_systemd: updated to the latest version
0e3136
- use -lsystemd instead of -lsystemd-daemon (#1125084)
0e3136
- fix possible crash in SIGINT handling (#958934)
0e3136
0e3136
* Thu Aug 21 2014 Joe Orton <jorton@redhat.com> - 2.4.10-6
0e3136
- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119)
0e3136
- switch default ssl.conf to use PROFILE=SYSTEM (#1109119)
0e3136
0e3136
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.10-5
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
0e3136
0e3136
* Fri Aug 15 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-4
0e3136
- add /usr/bin/useradd dependency to -filesystem requires
0e3136
0e3136
* Thu Aug 14 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-3
0e3136
- fix creating apache user in pre script (#1128328)
0e3136
0e3136
* Thu Jul 31 2014 Joe Orton <jorton@redhat.com> - 2.4.10-2
0e3136
- enable mod_request by default for mod_auth_form
0e3136
- move disabled-by-default modules from 00-base.conf to 00-optional.conf
0e3136
0e3136
* Mon Jul 21 2014 Joe Orton <jorton@redhat.com> - 2.4.10-1
0e3136
- update to 2.4.10
0e3136
- expand variables in docdir example configs
0e3136
0e3136
* Tue Jul 08 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-8
0e3136
- add support for systemd socket activation (#1111648)
0e3136
0e3136
* Mon Jul 07 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-7
0e3136
- remove conf.modules.d from httpd-filesystem subpackage (#1081453)
0e3136
0e3136
* Mon Jul 07 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-6
0e3136
- add httpd-filesystem subpackage (#1081453)
0e3136
0e3136
* Fri Jun 20 2014 Joe Orton <jorton@redhat.com> - 2.4.9-5
0e3136
- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)
0e3136
0e3136
* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.9-4
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
0e3136
0e3136
* Fri Mar 28 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-3
0e3136
- add support for SetHandler + proxy (#1078970)
0e3136
0e3136
* Thu Mar 27 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-2
0e3136
- move macros from /etc/rpm to macros.d (#1074277)
0e3136
- remove unused patches
0e3136
0e3136
* Mon Mar 17 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.9-1
0e3136
- update to 2.4.9
0e3136
0e3136
* Fri Feb 28 2014 Joe Orton <jorton@redhat.com> - 2.4.7-6
0e3136
- use 2048-bit RSA key with SHA-256 signature in dummy certificate
0e3136
0e3136
* Fri Feb 28 2014 Stephen Gallagher <sgallagh@redhat.com> 2.4.7-5
0e3136
- Create drop directory for systemd snippets
0e3136
0e3136
* Thu Feb 27 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.7-4
0e3136
- remove provides of old MMN, because it contained double-dash (#1068851)
0e3136
0e3136
* Thu Feb 20 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.7-3
0e3136
- fix graceful restart using legacy actions
0e3136
0e3136
* Thu Dec 12 2013 Joe Orton <jorton@redhat.com> - 2.4.7-2
0e3136
- conflict with pre-1.5.0 APR
0e3136
- fix sslsninotreq patch
0e3136
0e3136
* Wed Nov 27 2013 Joe Orton <jorton@redhat.com> - 2.4.7-1
0e3136
- update to 2.4.7 (#1034071)
0e3136
0e3136
* Fri Nov 22 2013 Joe Orton <jorton@redhat.com> - 2.4.6-10
0e3136
- switch to requiring system-logos-httpd (#1031288)
0e3136
0e3136
* Tue Nov 12 2013 Joe Orton <jorton@redhat.com> - 2.4.6-9
0e3136
- change mmnisa to drop "-" altogether
0e3136
0e3136
* Tue Nov 12 2013 Joe Orton <jorton@redhat.com> - 2.4.6-8
0e3136
- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide
0e3136
  for transition
0e3136
0e3136
* Fri Nov  1 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-7
0e3136
- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg
0e3136
0e3136
* Thu Oct 31 2013 Joe Orton <jorton@redhat.com> - 2.4.6-6
0e3136
- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)
0e3136
0e3136
* Thu Oct 24 2013 Jan kaluza <jkaluza@redhat.com> - 2.4.6-5
0e3136
- systemd: send SIGWINCH signal without httpd -k in ExecStop
0e3136
0e3136
* Mon Oct 21 2013 Joe Orton <jorton@redhat.com> - 2.4.6-4
0e3136
- load mod_macro by default (#998452)
0e3136
- add README to conf.modules.d
0e3136
- mod_proxy_http: add possible fix for threading issues (r1534321)
0e3136
- core: add fix for truncated output with CGI scripts (r1530793)
0e3136
0e3136
* Thu Oct 10 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-3
0e3136
- require fedora-logos-httpd (#1009162)
0e3136
0e3136
* Wed Jul 31 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-2
0e3136
- revert fix for dumping vhosts twice
0e3136
0e3136
* Mon Jul 22 2013 Joe Orton <jorton@redhat.com> - 2.4.6-1
0e3136
- update to 2.4.6
0e3136
- mod_ssl: use revised NPN API (r1487772)
0e3136
0e3136
* Thu Jul 11 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-12
0e3136
- mod_unique_id: replace use of hostname + pid with PRNG output (#976666)
0e3136
- apxs: mention -p option in manpage
0e3136
0e3136
* Tue Jul  2 2013 Joe Orton <jorton@redhat.com> - 2.4.4-11
0e3136
- add patch for aarch64 (Dennis Gilmore, #925558)
0e3136
0e3136
* Mon Jul  1 2013 Joe Orton <jorton@redhat.com> - 2.4.4-10
0e3136
- remove duplicate apxs man page from httpd-tools
0e3136
0e3136
* Mon Jun 17 2013 Joe Orton <jorton@redhat.com> - 2.4.4-9
0e3136
- remove zombie dbmmanage script
0e3136
0e3136
* Fri May 31 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-8
0e3136
- return 400 Bad Request on malformed Host header
0e3136
0e3136
* Fri May 24 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-7
0e3136
- ignore /etc/sysconfig/httpd and document systemd way of setting env variables
0e3136
  in this file
0e3136
0e3136
* Mon May 20 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-6
0e3136
- htpasswd/htdbm: fix hash generation bug (#956344)
0e3136
- do not dump vhosts twice in httpd -S output (#928761)
0e3136
- mod_cache: fix potential crash caused by uninitialized variable (#954109)
0e3136
0e3136
* Thu Apr 18 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-5
0e3136
- execute systemctl reload as result of apachectl graceful
0e3136
- mod_ssl: ignore SNI hints unless required by config
0e3136
- mod_cache: forward-port CacheMaxExpire "hard" option
0e3136
- mod_ssl: fall back on another module's proxy hook if mod_ssl proxy
0e3136
  is not configured.
0e3136
0e3136
* Tue Apr 16 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-4
0e3136
- fix service file to not send SIGTERM after ExecStop (#906321, #912288)
0e3136
0e3136
* Tue Mar 26 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-3
0e3136
- protect MIMEMagicFile with IfModule (#893949)
0e3136
0e3136
* Tue Feb 26 2013 Joe Orton <jorton@redhat.com> - 2.4.4-2
0e3136
- really package mod_auth_form in mod_session (#915438)
0e3136
0e3136
* Tue Feb 26 2013 Joe Orton <jorton@redhat.com> - 2.4.4-1
0e3136
- update to 2.4.4
0e3136
- fix duplicate ownership of mod_session config (#914901)
0e3136
0e3136
* Fri Feb 22 2013 Joe Orton <jorton@redhat.com> - 2.4.3-17
0e3136
- add mod_session subpackage, move mod_auth_form there (#894500)
0e3136
0e3136
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.3-16
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
0e3136
0e3136
* Tue Jan  8 2013 Joe Orton <jorton@redhat.com> - 2.4.3-15
0e3136
- add systemd service for htcacheclean
0e3136
0e3136
* Tue Nov 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-14
0e3136
- drop patch for r1344712
0e3136
0e3136
* Tue Nov 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-13
0e3136
- filter mod_*.so auto-provides (thanks to rcollet)
0e3136
- pull in syslog logging fix from upstream (r1344712)
0e3136
0e3136
* Fri Oct 26 2012 Joe Orton <jorton@redhat.com> - 2.4.3-12
0e3136
- rebuild to pick up new apr-util-ldap
0e3136
0e3136
* Tue Oct 23 2012 Joe Orton <jorton@redhat.com> - 2.4.3-11
0e3136
- rebuild
0e3136
0e3136
* Wed Oct  3 2012 Joe Orton <jorton@redhat.com> - 2.4.3-10
0e3136
- pull upstream patch r1392850 in addition to r1387633
0e3136
0e3136
* Mon Oct  1 2012 Joe Orton <jorton@redhat.com> - 2.4.3-9
0e3136
- define PLATFORM in os.h using vendor string
0e3136
0e3136
* Mon Oct  1 2012 Joe Orton <jorton@redhat.com> - 2.4.3-8
0e3136
- use systemd script unconditionally (#850149)
0e3136
0e3136
* Mon Oct  1 2012 Joe Orton <jorton@redhat.com> - 2.4.3-7
0e3136
- use systemd scriptlets if available (#850149)
0e3136
- don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists
0e3136
0e3136
* Mon Oct 01 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.3-6
0e3136
- use systemctl from apachectl (#842736)
0e3136
0e3136
* Wed Sep 19 2012 Joe Orton <jorton@redhat.com> - 2.4.3-5
0e3136
- fix some error log spam with graceful-stop (r1387633)
0e3136
- minor mod_systemd tweaks
0e3136
0e3136
* Thu Sep 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-4
0e3136
- use IncludeOptional for conf.d/*.conf inclusion
0e3136
0e3136
* Fri Sep 07 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.3-3
0e3136
- adding mod_systemd to integrate with systemd better
0e3136
0e3136
* Tue Aug 21 2012 Joe Orton <jorton@redhat.com> - 2.4.3-2
0e3136
- mod_ssl: add check for proxy keypair match (upstream r1374214)
0e3136
0e3136
* Tue Aug 21 2012 Joe Orton <jorton@redhat.com> - 2.4.3-1
0e3136
- update to 2.4.3 (#849883)
0e3136
- own the docroot (#848121)
0e3136
0e3136
* Mon Aug  6 2012 Joe Orton <jorton@redhat.com> - 2.4.2-23
0e3136
- add mod_proxy fixes from upstream (r1366693, r1365604)
0e3136
0e3136
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.2-22
0e3136
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
0e3136
0e3136
* Fri Jul  6 2012 Joe Orton <jorton@redhat.com> - 2.4.2-21
0e3136
- drop explicit version requirement on initscripts
0e3136
0e3136
* Thu Jul  5 2012 Joe Orton <jorton@redhat.com> - 2.4.2-20
0e3136
- mod_ext_filter: fix error_log warnings
0e3136
0e3136
* Mon Jul  2 2012 Joe Orton <jorton@redhat.com> - 2.4.2-19
0e3136
- support "configtest" and "graceful" as initscripts "legacy actions"
0e3136
0e3136
* Fri Jun  8 2012 Joe Orton <jorton@redhat.com> - 2.4.2-18
0e3136
- avoid use of "core" GIF for a "core" directory (#168776)
0e3136
- drop use of "syslog.target" in systemd unit file
0e3136
0e3136
* Thu Jun  7 2012 Joe Orton <jorton@redhat.com> - 2.4.2-17
0e3136
- use _unitdir for systemd unit file
0e3136
- use /run in unit file, ssl.conf
0e3136
0e3136
* Thu Jun  7 2012 Joe Orton <jorton@redhat.com> - 2.4.2-16
0e3136
- mod_ssl: fix NPN patch merge
0e3136
0e3136
* Wed Jun  6 2012 Joe Orton <jorton@redhat.com> - 2.4.2-15
0e3136
- move tmpfiles.d fragment into /usr/lib per new guidelines
0e3136
- package /run/httpd not /var/run/httpd
0e3136
- set runtimedir to /run/httpd likewise
0e3136
0e3136
* Wed Jun  6 2012 Joe Orton <jorton@redhat.com> - 2.4.2-14
0e3136
- fix htdbm/htpasswd crash on crypt() failure (#818684)
0e3136
0e3136
* Wed Jun  6 2012 Joe Orton <jorton@redhat.com> - 2.4.2-13
0e3136
- pull fix for NPN patch from upstream (r1345599)
0e3136
0e3136
* Thu May 31 2012 Joe Orton <jorton@redhat.com> - 2.4.2-12
0e3136
- update suexec patch to use LOG_AUTHPRIV facility
0e3136
0e3136
* Thu May 24 2012 Joe Orton <jorton@redhat.com> - 2.4.2-11
0e3136
- really fix autoindex.conf (thanks to remi@)
0e3136
0e3136
* Thu May 24 2012 Joe Orton <jorton@redhat.com> - 2.4.2-10
0e3136
- fix autoindex.conf to allow symlink to poweredby.png
0e3136
0e3136
* Wed May 23 2012 Joe Orton <jorton@redhat.com> - 2.4.2-9
0e3136
- suexec: use upstream version of patch for capability bit support
0e3136
0e3136
* Wed May 23 2012 Joe Orton <jorton@redhat.com> - 2.4.2-8
0e3136
- suexec: use syslog rather than suexec.log, drop dac_override capability
0e3136
0e3136
* Tue May  1 2012 Joe Orton <jorton@redhat.com> - 2.4.2-7
0e3136
- mod_ssl: add TLS NPN support (r1332643, #809599)
0e3136
0e3136
* Tue May  1 2012 Joe Orton <jorton@redhat.com> - 2.4.2-6
0e3136
- add BR on APR >= 1.4.0
0e3136
0e3136
* Fri Apr 27 2012 Joe Orton <jorton@redhat.com> - 2.4.2-5
0e3136
- use systemctl from logrotate (#221073)
0e3136
0e3136
* Fri Apr 27 2012 Joe Orton <jorton@redhat.com> - 2.4.2-4
0e3136
- pull from upstream:
0e3136
  * use TLS close_notify alert for dummy_connection (r1326980+)
0e3136
  * cleanup symbol exports (r1327036+)
0e3136
0e3136
* Fri Apr 20 2012 Joe Orton <jorton@redhat.com> - 2.4.2-3
0e3136
- really fix restart
0e3136
0e3136
* Fri Apr 20 2012 Joe Orton <jorton@redhat.com> - 2.4.2-2
0e3136
- tweak default ssl.conf
0e3136
- fix restart handling (#814645)
0e3136
- use graceful restart by default
0e3136
0e3136
* Wed Apr 18 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.2-1
0e3136
- update to 2.4.2
0e3136
0e3136
* Fri Mar 23 2012 Joe Orton <jorton@redhat.com> - 2.4.1-6
0e3136
- fix macros
0e3136
0e3136
* Fri Mar 23 2012 Joe Orton <jorton@redhat.com> - 2.4.1-5
0e3136
- add _httpd_moddir to macros
0e3136
0e3136
* Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-4
0e3136
- fix symlink for poweredby.png
0e3136
- fix manual.conf
0e3136
0e3136
* Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-3
0e3136
- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc)
0e3136
- move mod_ldap, mod_authnz_ldap to mod_ldap subpackage
0e3136
0e3136
* Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-2
0e3136
- clean docroot better
0e3136
- ship proxy, ssl directories within /var/cache/httpd
0e3136
- default config:
0e3136
 * unrestricted access to (only) /var/www
0e3136
 * remove (commented) Mutex, MaxRanges, ScriptSock
0e3136
 * split autoindex config to conf.d/autoindex.conf
0e3136
- ship additional example configs in docdir
0e3136
0e3136
* Tue Mar  6 2012 Joe Orton <jorton@redhat.com> - 2.4.1-1
0e3136
- update to 2.4.1
0e3136
- adopt upstream default httpd.conf (almost verbatim)
0e3136
- split all LoadModules to conf.modules.d/*.conf
0e3136
- include conf.d/*.conf at end of httpd.conf
0e3136
- trim %%changelog