Return-Path: 
 <cvs-return-20353-apmail-httpd-cvs-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-cvs-archive@www.apache.org
Received: (qmail 97871 invoked from network); 11 Oct 2004 16:11:44 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur-2.apache.org with SMTP; 11 Oct 2004 16:11:44 -0000
Received: (qmail 16283 invoked by uid 500); 11 Oct 2004 16:11:42 -0000
Delivered-To: apmail-httpd-cvs-archive@httpd.apache.org
Received: (qmail 16206 invoked by uid 500); 11 Oct 2004 16:11:41 -0000
Mailing-List: contact cvs-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@httpd.apache.org
list-help: <mailto:cvs-help@httpd.apache.org>
list-unsubscribe: <mailto:cvs-unsubscribe@httpd.apache.org>
list-post: <mailto:cvs@httpd.apache.org>
Delivered-To: mailing list cvs@httpd.apache.org
Received: (qmail 16180 invoked by uid 500); 11 Oct 2004 16:11:40 -0000
Delivered-To: apmail-httpd-2.0-cvs@apache.org
Received: (qmail 16173 invoked by uid 99); 11 Oct 2004 16:11:40 -0000
X-ASF-Spam-Status: No, hits=-10.0 required=10.0
	tests=ALL_TRUSTED,NO_REAL_NAME
X-Spam-Check-By: apache.org
Received: from [209.237.227.194] (HELO minotaur.apache.org) (209.237.227.194)
  by apache.org (qpsmtpd/0.28) with SMTP; Mon, 11 Oct 2004 09:11:39 -0700
Received: (qmail 97804 invoked by uid 1582); 11 Oct 2004 16:11:38 -0000
Date: 11 Oct 2004 16:11:38 -0000
Message-ID: <20041011161138.97803.qmail@minotaur.apache.org>
From: jorton@apache.org
To: httpd-2.0-cvs@apache.org
Subject: cvs commit: httpd-2.0 STATUS
X-Virus-Checked: Checked
X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N

jorton      2004/10/11 09:11:38

  Modified:    .        Tag: APACHE_2_0_BRANCH STATUS
  Log:
  A couple of mod_ssl bugs.
  
  Revision  Changes    Path
  No                   revision
  No                   revision
  1.751.2.1109 +16 -1     httpd-2.0/STATUS
  
  Index: STATUS
  ===================================================================
  RCS file: /home/cvs/httpd-2.0/STATUS,v
  retrieving revision 1.751.2.1108
  retrieving revision 1.751.2.1109
  diff -d -w -u -r1.751.2.1108 -r1.751.2.1109
  --- STATUS	10 Oct 2004 22:06:40 -0000	1.751.2.1108
  +++ STATUS	11 Oct 2004 16:11:37 -0000	1.751.2.1109
  @@ -75,6 +75,20 @@
     [ please place file names and revisions from HEAD here, so it is easy to
       identify exactly what the proposed changes are! ]
   
  +    *) mod_ssl: Fix and prevent an SSLCipherSuite bypass by resuming a
  +       session during a renegotiation.
  +       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_kernel.c?r1=1.110&r2=1.111
  +       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_init.c?r1=1.128&r2=1.129
  +       PR: 31505
  +       +1: jorton
  +
  +    *) mod_ssl: Fail to configure when an SSL proxy is configured with
  +       incomplete client cert keypair, rather than segfaulting at
  +       runtime.
  +       http://cvs.apache.org/viewcvs/httpd-2.0/modules/ssl/ssl_engine_init.c.diff?r1=1.118&r2=1.119
  +       PR: 24030
  +       +1: jorton
  +
       *) Allow for the use of --with-module=foo:bar where the ./modules/foo
          directory is a local addition to the ./modules directory.
          Assumes, of course, that the required files are in ./modules/foo,
  @@ -110,6 +124,7 @@
            http://cvs.apache.org/viewcvs.cgi/httpd-2.0/server/util_filter.c?r1=1.100&r2=1.101
          PR: 31247
          jerenkrantz comments: This needs the final patch posted to dev@httpd?
  +       jorton replies: it does indeed, hang on...
          +1: jorton
   
       *) Correctly store cache content type. PR 30278