apache2-2.4.51-150400.6.20.1<>,hfsp9|rFj^2r᳐rbOfl^_KŴ#rs7j/p0SZ{AbMCb@%^avS|ɲ(t!X St%Vf =+Vp?`d   5$(Abm u, $ $  ( 0   Μ9π99(:7A8Ԅ9@:=>?&@.B6CWF_GxHpIhXh Y Z[\]^51%b8uc9d9e9f9l9u9vAwxyjzt\Capache22.4.51150400.6.20.1The Apache Web ServerThis version of httpd is a major release of the 2.4 stable branch, and represents the best available version of Apache HTTP Server. New features include Loadable MPMs, major improvements to OCSP support, mod_lua, Dynamic Reverse Proxy configuration, Improved Authentication/ Authorization, FastCGI Proxy, New Expression Parser, and a Small Object Caching API. See /usr/share/doc/packages/apache2/, http://httpd.apache.org/, and http://httpd.apache.org/docs-2.4/upgrading.html.fsh01-armsrv1_ SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Web/Servershttp://httpd.apache.org/linuxaarch64 if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in apache2.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi if [ -x /usr/bin/chkstat ]; then /usr/bin/chkstat -n --set --system /usr/sbin/suexec || echo "Please check /etc/permissions.local for settings of /usr/sbin/suexec2 ." fi # wwwadmin group existed in past remove after openSUSE-13.2 out of support scope if grep -q "^wwwadmin:" /etc/group; then groupmod -n www wwwadmin 2>/dev/null ||: usermod -g www wwwrun 2>/dev/null ||: usermod -s /bin/false wwwrun 2>/dev/null ||: fi PNAME=apache2 SUBPNAME= SYSC_TEMPLATE=/usr/share/fillup-templates/sysconfig.$PNAME$SUBPNAME # If template not in new /usr/share/fillup-templates, fallback to old TEMPLATE_DIR if [ ! -f $SYSC_TEMPLATE ] ; then TEMPLATE_DIR=/var/adm/fillup-templates SYSC_TEMPLATE=$TEMPLATE_DIR/sysconfig.$PNAME$SUBPNAME fi SD_NAME="" if [ -x /bin/fillup ] ; then if [ -f $SYSC_TEMPLATE ] ; then echo "Updating /etc/sysconfig/$SD_NAME$PNAME ..." mkdir -p /etc/sysconfig/$SD_NAME touch /etc/sysconfig/$SD_NAME$PNAME /bin/fillup -q /etc/sysconfig/$SD_NAME$PNAME $SYSC_TEMPLATE fi else echo "ERROR: fillup not found. This should not happen. Please compare" echo "/etc/sysconfig/$PNAME and $TEMPLATE_DIR/sysconfig.$PNAME and" echo "update by hand." fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in apache2.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi test -f /usr/bin/firewall-cmd && firewall-cmd --reload --quiet || : exit 0 test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable apache2.target || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop apache2.target ) || : fi # removing the symlink in case of uninstall (not upgrade) [bsc#1041830] if [ "$1" = 0 ]; then for i in /usr/sbin/httpd \ /usr/share/apache2/build/config_vars.mk do test -L $i && rm $i done fi exit 0DISABLE_RESTART_ON_UPDATE='yes' test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in apache2.target ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart apache2.target ) || : fi fi if [ "$1" = 1 ]; then if [ -x /usr/bin/systemctl ]; then MODULE= if [ -z "$MODULE" ]; then # restart all instances touch /var/run/httpd.restart.flag echo 'Requesting apache restart (all instances)' else running_units=$(systemctl list-units | grep 'apache2\(@.*\)\?.service' | sed 's:\(\.service\).*:\1:') for unit in $running_units; do instance_name=$(echo $unit | sed 's:apache2@\?\(.*\).service:\1:') if HTTPD_INSTANCE="$instance_name" a2enmod -q $MODULE; then # restart only specified instance, %{apache_restart_flag}@ # means _only_ apache2.service echo "$instance_name" > /var/run/httpd.restart.flag@$instance_name echo "Requesting apache restart ($instance_name instance)" fi done fi fi fi l$X3 X"}Uaw  b7B8  X 8   8   h @  @  X @     8 X   P   H   H p  ` 0  H  x  X  @ 8 @ P   @HH@ x      0   h     H  `       ` P ` h 8 8 8 `    8   #S  2 ?x-J u8@A$ Ai%"T"&kA"D ?2%:o%(4*!6?4wE P@U+J>T('1(L'94'70.#:E5sR LC:0+$:R&S*60?/ IHM"7drz}tq~ {w|}K;[S6 N3((Lk J 4d  L4BW A ~_s`3V YV4!c    A큤A큤A큤A큤A큤AA큤A큤AA큤AAAA큤AAA큤A큤A큤A큤A큤A큤A큤AA큤A큤AAAfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsMMMMMMMMMM fsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsYfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfs[?[?[?[?[?[?[?[?[?[?[?[?[?[?[?[?[?[?`;fsMF4AN^sfsրFZFZAF#iAF#iAF#iQpPl1 PnQpPl1 AF#iAF#iAF#iAF#iAF#iAF#iAF#iAFAFAF#iAF#iAF#iAFAF#iAFAF#iAF#iAFAF#iAF#iAF#iAAF#iF#iAFAF#iAF#iAF#iAF#iAF#iAF#iAFAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iIIIIIIIIIIIIIIIIIAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAFAF#iAFAF#iAF#iAF#iAF#ifsMAFAFAFAFAFAFAFAFAFAFAFFFFFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAFAF#iAF#iAFIAF#iAF#iAF#iAF#iAF#iAF#iAF#iAF#iAFAF#iIfsfsfs^O%da^W;[fsNfsNfsN_`jfsNVWS ffsMA|A|^O%dA|fsfsfsfsfsfsfsfsfsfsfsfsfsfsfsfsPϓI|\Pϓfsfs^[?+fsfs[?+]Mv[?+fs[?+fsfsfsfsր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../mime.typeslog_server_statusa2enflaga2enmodapachectlservicesuexecapxs.1.gzapachectl.8.gzhttpd.8.gzsuexec.8.gzrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootwwwrunwwwrunrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootapache2-2.4.51-150400.6.20.1.src.rpmapacheapache2apache2(aarch-64)apache2-mod_macroapache_mmn_20120211config(apache2)http_daemonhttpdsuse_help_viewersuse_maintenance_mmn_0@  !@@@@@ @@@@@@@@@@@@@@@@@@@@@@    /bin/bash/bin/sh/bin/sh/bin/sh/bin/sh/bin/sh/bin/sh/bin/sh/etc/mime.types/usr/bin/perlapache2-MPMapache2-utilsconfig(apache2)coreutilsdiffutilsfileutilsfillupgrepgroup(www)ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libapr-1.so.0()(64bit)libapr-util1libapr1libaprutil-1.so.0()(64bit)libbrotlienc.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcrypt.so.1()(64bit)libcrypt.so.1(XCRYPT_2.0)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)liblua5.3.so.5()(64bit)libnghttp2.so.14()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libssl.so.1.1()(64bit)libssl.so.1.1(OPENSSL_1_1_0)(64bit)libssl.so.1.1(OPENSSL_1_1_1)(64bit)libxml2.so.2()(64bit)libxml2.so.2(LIBXML2_2.4.30)(64bit)libxml2.so.2(LIBXML2_2.5.2)(64bit)libxml2.so.2(LIBXML2_2.6.0)(64bit)libz.so.1()(64bit)logrotatepermissionspwdutilsrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)sedtextutilsuser(wwwrun)which2.4.51-150400.6.20.11.6.11.6.33.0.4-14.6.0-14.0-15.2-14.14.3 /usr/bin/chkstat -n --warn --system -e /usr/sbin/suexec 1>&2fj@f0@e;@d[@d @d@c@cʂ@b2@bs@b3"b1@b\@a@a@a;Ha^`P@`@`@`[_@_@_L@_2@_^%@^^V]^K^E:@^C^4^%@]]X]@]]_@]UI@]^@\\@\N\@\v{\]o@\A\?\5@\1[Ѱ@[u[ @[@[[LZ2@Z2@ZZ@Z@ZxG@ZtRZp^@Zo Z:PZ:PZ8@Z3@ZZ@ZYB@YYp@YY{Yu@YlYf@YI@YGY1S@Y@X~@XXX+X7@XtXj@XJXAb@W@WWWW|W|WF@W. [Michael Kaufmann, Stefan Eissing] * ) mod_proxy_hcheck: Allow healthcheck expressions to use %{Content-Type}. PR64140. [Renier Velazco ] * ) mod_authz_groupfile: Drop AH01666 from loglevel "error" to "info". PR64172. * ) mod_usertrack: Add CookieSameSite, CookieHTTPOnly, and CookieSecure to allow customization of the usertrack cookie. PR64077. [Prashant Keshvani , Eric Covener] * ) mod_proxy_ajp: Add "secret" parameter to proxy workers to implement legacy AJP13 authentication. PR 53098. [Dmitry A. Bakshaev ] * ) mpm_event: avoid possible KeepAliveTimeout off by -100 ms. [Eric Covener, Yann Ylavic] * ) Add a config layout for OpenWRT. [Graham Leggett] * ) Add support for cross compiling to apxs. If apxs is being executed from somewhere other than its target location, add that prefix to includes and library directories. Without this, apxs would fail to find config_vars.mk and exit. [Graham Leggett] * ) mod_ssl: Disable client verification on ACME ALPN challenges. Fixes github issue mod_md#172 (https://github.com/icing/mod_md/issues/172). [Michael Kaufmann , Stefan Eissing] * ) mod_ssl: use OPENSSL_init_ssl() to initialise OpenSSL on versions 1.1+. [Graham Leggett] * ) mod_ssl: Support use of private keys and certificates from an OpenSSL ENGINE via PKCS#11 URIs in SSLCertificateFile/KeyFile. [Anderson Sasaki , Joe Orton] * ) mod_md: - Prefer MDContactEmail directive to ServerAdmin for registration. New directive thanks to Timothe Litt (@tlhackque). - protocol check for pre-configured "tls-alpn-01" challenge has been improved. It will now check all matching virtual hosts for protocol support. Thanks to @mkauf. - Corrected a check when OCSP stapling was configured for hosts where the responsible MDomain is not clear, by Michal Karm Babacek (@Karm). - Softening the restrictions where mod_md configuration directives may appear. This should allow for use in and sections. If all possible variations lead to the configuration you wanted in the first place, is another matter. [Michael Kaufmann , Timothe Litt (@tlhackque), Michal Karm Babacek (@Karm), Stefan Eissing (@icing)] * ) test: Added continuous testing with Travis CI. This tests various scenarios on Ubuntu with the full test suite. Architectures tested: amd64, s390x, ppc64le, arm64 The tests pass successfully. [Luca Toscano, Joe Orton, Mike Rumph, and others] * ) core: Be stricter in parsing of Transfer-Encoding headers. [ZeddYu , Eric Covener] * ) mod_ssl: negotiate the TLS protocol version per name based vhost configuration, when linked with OpenSSL-1.1.1 or later. The base vhost's SSLProtocol (from the first vhost declared on the IP:port) is now only relevant if no SSLProtocol is declared for the vhost or globally, otherwise the vhost or global value apply. [Yann Ylavic] * ) mod_cgi, mod_cgid: Fix a memory leak in some error cases with large script output. PR 64096. [Joe Orton] * ) config: Speed up graceful restarts by using pre-hashed command table. PR 64066. [Giovanni Bechis , Jim Jagielski] * ) mod_systemd: New module providing integration with systemd. [Jan Kaluza] * ) mod_lua: Add r:headers_in_table, r:headers_out_table, r:err_headers_out_table, r:notes_table, r:subprocess_env_table as read-only native table alternatives that can be iterated over. [Eric Covener] * ) mod_http2: Fixed rare cases where a h2 worker could deadlock the main connection. [Yann Ylavic, Stefan Eissing] * ) mod_lua: Accept nil assignments to the exposed tables (r.subprocess_env, r.headers_out, etc) to remove the key from the table. PR63971. [Eric Covener] * ) mod_http2: Fixed interaction with mod_reqtimeout. A loaded mod_http2 was disabling the ssl handshake timeouts. Also, fixed a mistake of the last version that made `H2Direct` always `on`, regardless of configuration. Found and reported by and . [Stefan Eissing] * ) mod_http2: Multiple field length violations in the same request no longer cause several log entries to be written. [@mkauf] * ) mod_ssl: OCSP does not apply to proxy mode. PR 63679. [Lubos Uhliarik , Yann Ylavic] * ) mod_proxy_html, mod_xml2enc: Fix build issues with macOS due to r1864469 [Jim Jagielski] * ) mod_authn_socache: Increase the maximum length of strings that can be cached by the module from 100 to 256. PR 62149 [] * ) mod_proxy: Fix crash by resolving pool concurrency problems. PR 63503 [Ruediger Pluem, Eric Covener] * ) core: On Windows, fix a start-up crash if is used with a path that is not valid (For example, testing for a file on a flash drive that is not mounted) [Christophe Jaillet] * ) mod_deflate, mod_brotli: honor "Accept-Encoding: foo;q=0" as per RFC 7231; which means 'foo' is "not acceptable". PR 58158 [Chistophe Jaillet] * ) mod_md v2.2.3: - Configuring MDCAChallenges replaces any previous existing challenge configuration. It had been additive before which was not the intended behaviour. [@mkauf] - Fixing order of ACME challenges used when nothing else configured. Code now behaves as documented for `MDCAChallenges`. Fixes #156. Thanks again to @mkauf for finding this. - Fixing a potential, low memory null pointer dereference [thanks to @uhliarik]. - Fixing an incompatibility with a change in libcurl v7.66.0 that added unwanted "transfer-encoding" to POST requests. This failed in directy communication with Let's Encrypt boulder server. Thanks to @mkauf for finding and fixing. [Stefan Eissing] * ) mod_md: Adding the several new features. The module offers an implementation of OCSP Stapling that can replace fully or for a limited set of domains the existing one from mod_ssl. OCSP handling is part of mod_md's monitoring and message notifications. If can be used for sites that do not have ACME certificates. The url for a CTLog Monitor can be configured. It is used in the server-status to link to the external status page of a certicate. The MDMessageCmd is called with argument "installed" when a new certificate has been activated on server restart/reload. This allows for processing of the new certificate, for example to applications that require it in different locations or formats. [Stefan Eissing] * ) mod_proxy_balancer: Fix case-sensitive referer check related to CSRF/XSS protection. PR 63688. [Armin Abfalterer ] - deleted patches - apache2-load-private-keys-from-pkcs11.patch (upstreamed) - httpd-2.4.3-mod_systemd.patch (upstreamed)- use r1874196 [SLE-7472] [bsc#1164820c#6] - modified patches % apache2-load-private-keys-from-pkcs11.patch (upstream 2.4.x port) - deleted patches - apache2-load-certificates-from-pkcs11.patch (merged to above)- require just libbrotli-devel- build mod_proxy_http2 extension- fix build for older distributions- define DEFAULT_LISTENBACKLOG=APR_INT32_MAX. We want apache to honour net.core.somaxconn sysctl as the mandatory limit. the old value of 511 was never used as until v5.4-rc6 it was clamped to 128, in current kernels the default limit is 4096. Cannot use the apr_socket_listen(.., -1) idiom because the function expects a positive integer argument.- apache2-devel now provides httpd-devel [bsc#1160100]- add openssl call to DEFAULT_SUSE comment [bsc#1159480] - modified sources % apache2-ssl-global.conf- use %license [bsc#1156171]- load private keys and certificates from pkcs11 token [SLE-7653] - added patches load certificates from openssl engine + apache2-load-certificates-from-pkcs11.patch load private keys from openssl engine + apache2-load-private-keys-from-pkcs11.patch- Add custom log files to logrotate according to apache2-vhost.template- Remove redundant metadata from summary.- version update to 2.4.41 with security fixes: * low: Limited cross-site scripting in mod_proxy error page (CVE-2019-10092) * low: mod_rewrite potential open redirect (CVE-2019-10098) * moderate: mod_http2, read-after-free in h2 connection shutdown (CVE-2019-10082) * moderate: mod_http2, memory corruption on early pushes (CVE-2019-10081) * moderate: mod_http2, DoS attack by exhausting h2 workers. (CVE-2019-9517) * moderate: mod_remoteip: Stack buffer overflow and NULL pointer dereference (CVE-2019-10097)- fix typo - modified sources % apache2-README-instances.txt- revive apache-22-24-upgrade [bsc#1134294] (internal) - added sources + apache-22-24-upgrade- version update to 2.4.39 * mod_proxy/ssl: Cleanup per-request SSL configuration anytime a backend connection is recycled/reused to avoid a possible crash with some SSLProxy configurations in or context. PR 63256. [Yann Ylavic] * mod_ssl: Correctly restore SSL verify state after TLSv1.3 PHA failure. [Michael Kaufmann ] * mod_log_config: Support %{c}h for conn-hostname, %h for useragent_host PR 55348 * mod_socache_redis: Support for Redis as socache storage provider. * core: new configuration option 'MergeSlashes on|off' that controls handling of multiple, consecutive slash ('/') characters in the path component of the request URL. [Eric Covener] * mod_http2: when SSL renegotiation is inhibited and a 403 ErrorDocument is in play, the proper HTTP/2 stream reset did not trigger with H2_ERR_HTTP_1_1_REQUIRED. Fixed. [Michael Kaufmann] * mod_http2: new configuration directive: `H2Padding numbits` to control padding of HTTP/2 payload frames. 'numbits' is a number from 0-8, controlling the range of padding bytes added to a frame. The actual number added is chosen randomly per frame. This applies to HEADERS, DATA and PUSH_PROMISE frames equally. The default continues to be 0, e.g. no padding. [Stefan Eissing] * mod_http2: ripping out all the h2_req_engine internal features now that mod_proxy_http2 has no more need for it. Optional functions are still declared but no longer implemented. While previous mod_proxy_http2 will work with this, it is recommeneded to run the matching versions of both modules. [Stefan Eissing] * mod_proxy_http2: changed mod_proxy_http2 implementation and fixed several bugs which resolve PR63170. The proxy module does now a single h2 request on the (reused) connection and returns. [Stefan Eissing] * mod_http2/mod_proxy_http2: proxy_http2 checks correct master connection aborted status to trigger immediate shutdown of backend connections. This is now always signalled by mod_http2 when the the session is being released. proxy_http2 now only sends a PING frame to the backend when there is not already one in flight. [Stefan Eissing] * mod_proxy_http2: fixed an issue where a proxy_http2 handler entered an infinite loop when encountering certain errors on the backend connection. See . [Stefan Eissing] * mod_http2: Configuration directives H2Push and H2Upgrade can now be specified per Location/Directory, e.g. disabling PUSH for a specific set of resources. [Stefan Eissing] * mod_http2: HEAD requests to some module such as mod_cgid caused the stream to terminate improperly and cause a HTTP/2 PROTOCOL_ERROR. Fixes . [Michael Kaufmann] * http: Fix possible empty response with mod_ratelimit for HEAD requests. PR 63192. [Yann Ylavic] * mod_cache_socache: Avoid reallocations and be safe with outgoing data lifetime. [Yann Ylavic] * MPMs unix: bind the bucket number of each child to its slot number, for a more efficient per bucket maintenance. [Yann Ylavic] * mod_auth_digest: Fix a race condition. Authentication with valid credentials could be refused in case of concurrent accesses from different users. PR 63124. [Simon Kappel ] * mod_http2: enable re-use of slave connections again. Fixed slave connection keepalives counter. [Stefan Eissing] * mod_reqtimeout: Allow to configure (TLS-)handshake timeouts. PR 61310. [Yann Ylavic] * mod_proxy_wstunnel: Fix websocket proxy over UDS. PR 62932 * mod_ssl: Don't unset FIPS mode on restart unless it's forced by configuration (SSLFIPS on) and not active by default in OpenSSL. PR 63136. [Yann Ylavic] - deleted patches - apache2-mod_http2-issue-167.patch (upstreamed)- Reduce scriptlets' hard dependency on systemd.- added patches fix https://github.com/icing/mod_h2/issues/167 [bsc#1125965] + apache2-mod_http2-issue-167.patch- Replace old $RPM_* shell vars. Avoid old tar syntax. - Tag scriptlets as explicitly requiring bash.- updated to 2.4.38 * mod_ssl: Clear retry flag before aborting client-initiated renegotiation. PR 63052 [Joe Orton] * mod_negotiation: Treat LanguagePriority as case-insensitive to match AddLanguage behavior and HTTP specification. PR 39730 [Christophe Jaillet] * mod_md: incorrect behaviour when synchronizing ongoing ACME challenges have been fixed. [Michael Kaufmann, Stefan Eissing] * mod_setenvif: We can have expressions that become true if a regex pattern in the expression does NOT match. In this case val is NULL and we should just set the value for the environment variable like in the pattern case. [Ruediger Pluem] * mod_session: Always decode session attributes early. [Hank Ibell] * core: Incorrect values for environment variables are substituted when multiple environment variables are specified in a directive. [Hank Ibell] * mod_rewrite: Only create the global mutex used by "RewriteMap prg:" when this type of map is present in the configuration. PR62311. [Hank Ibell ] * mod_dav: Fix invalid Location header when a resource is created by passing an absolute URI on the request line [Jim Jagielski] * mod_session_cookie: avoid duplicate Set-Cookie header in the response. [Emmanuel Dreyfus , Luca Toscano] * mod_ssl: clear *SSL errors before loading certificates and checking afterwards. Otherwise errors are reported when other SSL using modules are in play. Fixes PR 62880. [Michael Kaufmann] * mod_ssl: Fix the error code returned in an error path of 'ssl_io_filter_handshake()'. This messes-up error handling performed in 'ssl_io_filter_error()' [Yann Ylavic] * mod_ssl: Fix $HTTPS definition for "SSLEngine optional" case, and fix authz provider so "Require ssl" works correctly in HTTP/2. PR 61519, 62654. [Joe Orton, Stefan Eissing] * mod_proxy: If ProxyPassReverse is used for reverse mapping of relative redirects, subsequent ProxyPassReverse statements, whether they are relative or absolute, may fail. PR 60408. [Peter Haworth ] * mod_lua: Now marked as a stable module [https://s.apache.org/Xnh1]- SSLProtocol use TLSv1.2 or higher- do not create sysconfig.d when already exists [bsc#1121086]- use secure http sites by default in configs - Switch to DEFAULT_SUSE Cipher suite- the "event" MPM is fully supported since 2.4 - configure an OCSP stapling cache by default (still requires enabling SSLUseStapling in vhost)- updated to 2.4.37 * mod_ssl: Fix HTTP/2 failures when using OpenSSL 1.1.1. [Rainer Jung] * mod_ssl: Fix crash during SSL renegotiation with OptRenegotiate set, when client certificates are available from the original handshake but were originally not verified and should get verified now. This is a regression in 2.4.36 (unreleased). [Ruediger Pluem] * mod_ssl: Correctly merge configurations that have client certificates set by SSLProxyMachineCertificate{File|Path}. [Ruediger Pluem] - updated to 2.4.36 * mod_brotli, mod_deflate: Restore the separate handling of 304 Not Modified responses. Regression introduced in 2.4.35. * mod_proxy_scgi, mod_proxy_uwsgi: improve error handling when sending the body of the response. [Jim Jagielski] * mod_http2: adding defensive code for stream EOS handling, in case the request handler missed to signal it the normal way (eos buckets). Addresses github issues https://github.com/icing/mod_h2/issues/164, https://github.com/icing/mod_h2/issues/167 and https://github.com/icing/mod_h2/issues/170. [Stefan Eissing] * ab: Add client certificate support. [Graham Leggett] * ab: Disable printing temp key for OpenSSL before version 1.0.2. SSL_get_server_tmp_key is not available there. [Rainer Jung] * mod_ssl: Fix a regression that the configuration settings for verify mode and verify depth were taken from the frontend connection in case of connections by the proxy to the backend. PR 62769. [Ruediger Pluem] * MPMs: Initialize all runtime/asynchronous objects on a dedicated pool and before signals handling to avoid lifetime issues on restart or shutdown. PR 62658. [Yann Ylavic] * mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has behavioural changes compared to v1.2 and earlier; client and configuration changes should be expected. SSLCipherSuite is enhanced for TLSv1.3 ciphers, but applies at vhost level only. [Stefan Eissing, Yann Ylavic, Ruediger Pluem, Joe Orton] * mod_auth_basic: Be less tolerant when parsing the credencial. Only spaces should be accepted after the authorization scheme. \t are also tolerated. [Christophe Jaillet] * mod_proxy_hcheck: Fix issues with interval determination. PR 62318 [Jim Jagielski] * mod_proxy_hcheck: Fix issues with TCP health checks. PR 61499 [Dominik Stillhard ] * mod_proxy_hcheck: take balancer's SSLProxy* directives into account. [Jim Jagielski] * mod_status, mod_echo: Fix the display of client addresses. They were truncated to 31 characters which is not enough for IPv6 addresses. This is done by deprecating the use of the 'client' field and using the new 'client64' field in worker_score. PR 54848 [Bernhard Schmidt , Jim Jagielski]- consider also patterns in APACHE_CONF_INCLUDE_DIRS as documentation says (patch Juergen Gleiss)- relink /usr/sbin/httpd after apache2-MPM uninstall [bsc#1107930c#1] - simplify find_mpm function from script-helpers - /usr/sbin/httpd is now created depending on preference hardcoded in find_mpm (script-helpers), not depending on alphabetical order of MPMs - simplify spec file a bit- updated to 2.4.35: * http: Enforce consistently no response body with both 204 and 304 statuses. * mod_status: Cumulate CPU time of exited child processes in the "cu" and "cs" values. Add CPU time of the parent process to the "c" and "s" values. * mod_proxy: Improve the balancer member data shown in mod_status when "ProxyStatus" is "On": add "busy" count and show byte counts in auto mode always in units of kilobytes. * mod_status: Add cumulated response duration time in milliseconds. * mod_status: Complete the data shown for async MPMs in "auto" mode. Added number of processes, number of stopping processes and number of busy and idle workers. * mod_ratelimit: Don't interfere with "chunked" encoding, fixing regression introduced in 2.4.34. PR 62568. * mod_proxy: Remove load order and link dependency between mod_lbmethod_* modules and mod_proxy. PR 62557. * Allow the argument to , , , , and to be quoted. This is primarily for the benefit of . * mod_watchdog: Correct some log messages. * mod_md: When the last domain name from an MD is moved to another one, that now empty MD gets moved to the store archive. PR 62572. * mod_ssl: Fix merging of SSLOCSPOverrideResponder. * mod_proxy_balancer: Restore compatibility with APR 1.4.- updated to 2.4.34: * ) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error document translations. [CodeingBoy, popcorner] * ) event: avoid possible race conditions with modules on the child pool. [Stefan Fritsch] * ) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or ProxyPassReverseCookiePath directive could fail to update correctly 'domain=' or 'path=' in the 'Set-Cookie' header. PR 61560. [Christophe Jaillet] * ) mod_ratelimit: fix behavior when proxing content. PR 62362. [Luca Toscano, Yann Ylavic] * ) core: Re-allow '_' (underscore) in hostnames. [Eric Covener] * ) mod_authz_core: If several parameters are used in a AuthzProviderAlias directive, if these parameters are not enclosed in quotation mark, only the first one is handled. The other ones are silently ignored. Add a message to warn about such a spurious configuration. PR 62469 [Hank Ibell , Christophe Jaillet] * ) mod_md: improvements and bugfixes - MDNotifyCmd now takes additional parameter that are passed on to the called command. - ACME challenges have better checks for interference with other modules - ACME challenges are only handled for domains managed by the module, allowing other ACME clients to operate for other domains in the server. - better libressl integration * ) mod_proxy_wstunnel: Add default schema ports for 'ws' and 'wss'. PR 62480. [Lubos Uhliarik } * ) logging: Some early logging-related startup messages could be lost when using syslog for the global ErrorLog. [Eric Covener] * ) mod_cache: Handle case of an invalid Expires header value RFC compliant like the case of an Expires time in the past: allow to overwrite the non-caching decision using CacheStoreExpired and respect Cache-Control "max-age" and "s-maxage". [Rainer Jung] * ) mod_xml2enc: Fix forwarding of error metadata/responses. PR 62180. [Micha Lenk , Yann Ylavic] * ) mod_proxy_http: Fix response header thrown away after the previous one was considered too large and truncated. PR 62196. [Yann Ylavic] * ) core: Add and handle AP_GETLINE_NOSPC_EOL flag for ap_getline() family of functions to consume the end of line when the buffer is exhausted. PR 62198. [Yann Ylavic] * ) mod_proxy_http: Add new worker parameter 'responsefieldsize' to allow maximum HTTP response header size to be increased past 8192 bytes. PR 62199. [Hank Ibell ] * ) mod_ssl: Extend SSLOCSPEnable with mode 'leaf' that only checks the leaf of a certificate chain. PR62112. [Ricardo Martin Camarero ] * ) http: Fix small memory leak per request when handling persistent connections. [Ruediger Pluem, Joe Orton] * ) mod_proxy_html: Fix variable interpolation and memory allocation failure in ProxyHTMLURLMap. [Ewald Dieterich ] * ) mod_remoteip: Fix RemoteIP{Trusted,Internal}ProxyList loading broken by 2.4.30. PR 62220. [Chritophe Jaillet, Yann Ylavic] * ) mod_remoteip: When overriding the useragent address from X-Forwarded-For, zero out what had been initialized as the connection-level port. PR59931. [Hank Ibell ] * ) core: In ONE_PROCESS/debug mode, cleanup everything when exiting. [Yann Ylavic] * ) mod_proxy_balancer: Add hot spare member type and corresponding flag (R). Hot spare members are used as drop-in replacements for unusable workers in the same load balancer set. This differs from hot standbys which are only used when all workers in a set are unusable. PR 61140. [Jim Riggs] * ) suexec: Add --enable-suexec-capabilites support on Linux, to use setuid/setgid capability bits rather than a setuid root binary. [Joe Orton] * ) suexec: Add support for logging to syslog as an alternative to logging to a file; use --without-suexec-logfile --with-suexec-syslog. [Joe Orton] * ) mod_ssl: Restore 2.4.29 behaviour in SSL vhost merging/enabling which broke some rare but previously-working configs. [Joe Orton] * ) core, log: improve sanity checks for the ErrorLog's syslog config, and explicitly allow only lowercase 'syslog' settings. PR 62102 [Luca Toscano, Jim Riggs, Christophe Jaillet] * ) mod_http2: accurate reporting of h2 data input/output per request via mod_logio. Fixes an issue where output sizes where counted n-times on reused slave connections. [Stefan Eissing] See github issue: https://github.com/icing/mod_h2/issues/158 * ) mod_http2: Fix unnecessary timeout waits in case streams are aborted. [Stefan Eissing] * ) mod_http2: restoring the v1.10.16 keepalive timeout behaviour of mod_http2. [Stefan Eissing] * ) mod_proxy: Do not restrict the maximum pool size for backend connections any longer by the maximum number of threads per process and use a better default if mod_http2 is loaded. [Yann Ylavic, Ruediger Pluem, Stefan Eissing, Gregg Smith] * ) mod_slotmem_shm: Add generation number to shm filename to fix races with graceful restarts. PRs 62044 and 62308. [Jim Jagielski, Yann Ylavic] * ) core: Preserve the original HTTP request method in the '%] * ) mod_remoteip: make proxy-protocol work on slave connections, e.g. in HTTP/2 requests. [Stefan Eissing] See also https://github.com/roadrunner2/mod-proxy-protocol/issues/6 * ) mod_ssl: Fix merging of proxy SSL context outside sections, regression introduced in 2.4.30. PR 62232. [Rainer Jung, Yann Ylavic] * ) mod_md: Fix compilation with OpenSSL before version 1.0.2. [Rainer Jung] * ) mod_dumpio: do nothing below log level TRACE7. [Yann Ylavic] * ) mod_remoteip: Restore compatibility with APR 1.4 (apr_sockaddr_is_wildcard). [Eric Covener] * ) core: On ECBDIC platforms, some errors related to oversized headers may be misreported or be logged as ASCII escapes. PR 62200 [Hank Ibell ] * ) mod_ssl: Fix cmake-based build. PR 62266. [Rainer Jung] * ) core: Add , and conditional section containers. [Eric Covener, Joe Orton] * %check: do not load all modules, just use default loadmodule.conf; some modules require to load another ones in advance * %install: parallel install is broken- Updated description for SSLProtocol option. [bsc#1086854]- Updated description (PCI DSS) for SSLProtocol option. [bsc#1086854]- SSLProtocol TLSv1.2 [bsc#1086854]- updated to 2.4.33: * ) core: Fix request timeout logging and possible crash for error_log hooks. [Yann Ylavic] * ) mod_slomem_shm: Fix failure to create balancers's slotmems in Windows MPM, where children processes need to attach them instead since they are owned by the parent process already. [Yann Ylavic] * ) ab: try all destination socket addresses returned by apr_sockaddr_info_get instead of failing on first one when not available. Needed for instance if localhost resolves to both ::1 and 127.0.0.1 e.g. if both are in /etc/hosts. [Jan Kaluza] * ) ab: Use only one connection to determine working destination socket address. [Jan Kaluza] * ) ab: LibreSSL doesn't have or require Windows applink.c. [Gregg L. Smith] * ) htpasswd/htdigest: Disable support for bcrypt on EBCDIC platforms. apr-util's bcrypt implementation doesn't tolerate EBCDIC. [Eric Covener] * ) htpasswd/htdbm: report the right limit when get_password() overflows. [Yann Ylavic] * ) htpasswd: Don't fail in -v mode if password file is unwritable. PR 61631. [Joe Orton] * ) htpasswd: don't point to (unused) stack memory on output to make static analysers happy. PR 60634. [Yann Ylavic, reported by shqking and Zhenwei Zou] * ) mod_access_compat: Fail if a comment is found in an Allow or Deny directive. [Jan Kaluza] * ) mod_authz_host: Ignore comments after "Require host", logging a warning, or logging an error if the line is otherwise empty. [Jan Kaluza, Joe Orton] * ) rotatelogs: Fix expansion of %Z in localtime (-l) mode, and fix Y2K38 bug. [Joe Orton] * ) mod_ssl: Support SSL DN raw variable extraction without conversion to UTF-8, using _RAW suffix on variable names. [Joe Orton] * ) ab: Fix https:// connection failures (regression in 2.4.30); fix crash generating CSV output for large -n. [Joe Orton, Jan Kaluza] * ) mod_proxy_fcgi: Add the support for mod_proxy's flushpackets and flushwait parameters. [Luca Toscano, Ruediger Pluem, Yann Ylavic] * ) mod_ldap: Avoid possible crashes, hangs, and busy loops due to improper merging of the cache lock in vhost config. PR 43164 [Eric Covener] * ) mpm_event: Do lingering close in worker(s). [Yann Ylavic] * ) mpm_queue: Put fdqueue code in common for MPMs event and worker. [Yann Ylavic] * ) mod_session: Strip Session header when SessionEnv is on. [Yann Ylavic] * ) mod_cache_socache: Fix caching of empty headers up to carriage return. [Yann Ylavic] * ) core: For consistency, ensure that read lines are NUL terminated on any error, not only on buffer full. [Yann Ylavic] * ) mod_authnz_ldap: Fix language long names detection as short name. [Yann Ylavic] * ) mod_proxy: Worker schemes and hostnames which are too large are no longer fatal errors; it is logged and the truncated values are stored. [Jim Jagielski] * ) regex: Allow to configure global/default options for regexes, like caseless matching or extended format. [Yann Ylavic] * ) mod_auth_digest: Actually use the secret when generating nonces. This change may cause problems if used with round robin load balancers. PR 54637 [Stefan Fritsch] * ) mod_proxy: Allow setting options to globally defined balancer from ProxyPass used in VirtualHost. Balancers are now merged using the new merge_balancers method which merges the balancers options. [Jan Kaluza] * ) logresolve: Fix incorrect behavior or segfault if -c flag is used Fixes: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823259 [Stefan Fritsch] * ) mod_remoteip: Add support for PROXY protocol (code donated by Cloudzilla). Add ability for PROXY protocol processing to be optional to donated code. See also: http://www.haproxy.org/download/1.5/doc/proxy-protocol.txt [Cloudzilla/roadrunner2@GitHub, Jim Jagielski, Daniel Ruggeri] * ) mod_proxy, mod_ssl: Handle SSLProxy* directives in sections, allowing per backend TLS configuration. [Yann Ylavic] * ) mod_proxy_uwsgi: Add in UWSGI proxy (sub)module. [Roberto De Ioris, Jim Jagielski] * ) mod_proxy_balancer,mod_slotmem_shm: Rework SHM reuse/deletion to not depend on the number of restarts (non-Unix systems) and preserve shared names as much as possible on configuration changes for SHMs and persisted files. PR 62044. [Yann Ylavic, Jim Jagielski] * ) mod_http2: obsolete code removed, no more events on beam pool destruction, discourage content encoders on http2-status response (where they do not work). [Stefan Eissing] * ) mpm_event: Let the listener thread do its maintenance job on resources shortage. PR 61979. [Yann Ylavic] * ) mpm_event: Wakeup the listener to re-enable listening sockets. [Yann Ylavic] * ) mod_ssl: The SSLCompression directive will now give an error if used with an OpenSSL build which does not support any compression methods. [Joe Orton] * ) mpm_event,worker: Mask signals for threads created by modules in child init, so that they don't receive (implicitely) the ones meant for the MPM. PR 62009. [Armin Abfalterer , Yann Ylavic] * ) mod_md: new experimental, module for managing domains across virtual hosts, implementing the Let's Encrypt ACMEv1 protocol to signup and renew certificates. Please read the modules documentation for further instructions on how to use it. [Stefan Eissing] * ) mod_proxy_html: skip documents shorter than 4 bytes PR 56286 [Micha Lenk ] * ) core, mpm_event: Avoid a small memory leak of the scoreboard handle, for the lifetime of the connection, each time it is processed by MPM event. [Yann Ylavic] * ) mpm_event: Update scoreboard status for KeepAlive state. [Yann Ylavic] * ) mod_ldap: Fix a case where a full LDAP cache would continually fail to purge old entries and log AH01323. PR61891. [Hendrik Harms ] * ) mpm_event: close connections not reported as handled by any module to avoid losing track of them and leaking scoreboard entries. PR 61551. [Yann Ylavic] * ) core: A signal received while stopping could have crashed the main process. PR 61558. [Yann Ylavic] * ) mod_ssl: support for mod_md added. [Stefan Eissing] * ) mod_proxy_html: process parsed comments immediately. Fixes bug (seen in the wild when used with IBM's HTTPD bundle) where parsed comments may be lost. [Nick Kew] * ) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew] * ) mod_proxy_html: fix typo-bug processing "strict" vs "transitional" HTML/XHTML. PR 56457 [Nick Kew] * ) mpm_event: avoid a very unlikely race condition between the listener and the workers when the latter fails to add a connection to the pollset. [Yann Ylavic] * ) core: silently ignore a not existent file path when IncludeOptional is used. PR 57585. [Alberto Murillo Silva , Luca Toscano] * ) mod_macro: fix usability of globally defined macros in .htaccess files. PR 57525. [Jose Kahan , Yann Ylavic] * ) mod_rewrite, core: add the Vary header when a condition evaluates to true and the related RewriteRule is used in a Directory context (triggering an internal redirect). [Luca Toscano] * ) ab: Make the TLS layer aware that the underlying socket is nonblocking, and use/handle POLLOUT where needed to avoid busy IOs and recover write errors when appropriate. [Yann Ylavic] * ) ab: Keep reading nonblocking to exhaust TCP or SSL buffers when previous read was incomplete (the SSL case can cause the next poll() to timeout since data are buffered already). PR 61301 [Luca Toscano, Yann Ylavic] * ) mod_http2: avoid unnecessary data retrieval for a trace log. Allow certain information retrievals on null bucket beams where it makes sense. [Stefan Eissing]- Replace SuSEFirewall2 by firewalld II (fate#323460) [bsc#1083492]- build mod_http2 also for 42.3- remove NameVirtualHost from documentation [bsc#1078557]- for older distros, still use SuSEFirewall2 [bsc#1071548c#7]- Replace SuSEFirewall2 by firewalld (fate#323460)- build brotli module- Do not requires w3m, only recommends it.- do not build with nghttp2 for SLE-12-SP3- which was split after SLE11- Add which and w3m as dependencies. poo#28406- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- APACHE_MODULES now contains authn_core in default configuration [bsc#1066661]- updated to 2.4.29: * ) mod_unique_id: Use output of the PRNG rather than IP address and pid, avoiding sleep() call and possible DNS issues at startup, plus improving randomness for IPv6-only hosts. [Jan Kaluza] * ) mod_rewrite, core: Avoid the 'Vary: Host' response header when HTTP_HOST is used in a condition that evaluates to true. PR 58231 [Luca Toscano] * ) mod_http2: v0.10.12, removed optimization for mutex handling in bucket beams that could lead to assertion failure in edge cases. [Stefan Eissing] * ) mod_proxy: Fix regression for non decimal loadfactor parameter introduced in 2.4.28. [Jim Jagielski] * ) mod_authz_dbd: fix a segmentation fault if AuthzDBDQuery is not set. PR 61546. [Lubos Uhliarik ] * ) mod_rewrite: Add support for starting External Rewriting Programs as non-root user on UNIX systems by specifying username and group name as third argument of RewriteMap directive. [Jan Kaluza] * ) core: Rewrite the Content-Length filter to avoid excessive memory consumption. Chunked responses will be generated in more cases than in previous releases. PR 61222. [Joe Orton, Ruediger Pluem] * ) mod_ssl: Fix SessionTicket callback return value, which does seem to matter with OpenSSL 1.1. [Yann Ylavic]- gensslcert: * set also SAN [bsc#1045159] * drop -C argument, it was not mapped to CN actually * consider also case when hostname does return empty string or does not exist [bsc#1057406] * do not consider environment ROOT variable- updated to 2.4.28: * ) SECURITY: CVE-2017-9798 (cve.mitre.org) Corrupted or freed memory access. must now be used in the main configuration file (httpd.conf) to register HTTP methods before the .htaccess files. [Yann Ylavic] * ) event: Avoid possible blocking in the listener thread when shutting down connections. PR 60956. [Yann Ylavic] * ) mod_speling: Don't embed referer data in a link in error page. PR 38923 [Nick Kew] * ) htdigest: prevent a buffer overflow when a string exceeds the allowed max length in a password file. [Luca Toscano, Hanno Böck ] * ) mod_proxy: loadfactor parameter can now be a decimal number (eg: 1.25). [Jim Jagielski] * ) mod_proxy_wstunnel: Allow upgrade to any protocol dynamically. PR 61142. * ) mod_watchdog/mod_proxy_hcheck: Time intervals can now be spefified down to the millisecond. Supports 'mi' (minute), 'ms' (millisecond), 's' (second) and 'hr' (hour!) time suffixes. [Jim Jagielski] * ) mod_http2: Fix for stalling when more than 32KB are written to a suspended stream. [Stefan Eissing] * ) build: allow configuration without APR sources. [Jacob Champion] * ) mod_ssl, ab: Fix compatibility with LibreSSL. PR 61184. [Bernard Spil , Michael Schlenker , Yann Ylavic] * ) core/log: Support use of optional "tag" in syslog entries. PR 60525. [Ben Rubson , Jim Jagielski] * ) mod_proxy: Fix ProxyAddHeaders merging. [Joe Orton] * ) core: Disallow multiple Listen on the same IP:port when listener buckets are configured (ListenCoresBucketsRatio > 0), consistently with the single bucket case (default), thus avoiding the leak of the corresponding socket descriptors on graceful restart. [Yann Ylavic] * ) event: Avoid listener periodic wake ups by using the pollset wake-ability when available. PR 57399. [Yann Ylavic, Luca Toscano] * ) mod_proxy_wstunnel: Fix detection of unresponded request which could have led to spurious HTTP 502 error messages sent on upgrade connections. PR 61283. [Yann Ylavic]- suexec binary moved to main package [bsc#1054741]- do not call and do not ship apache-22-24-upgrade [bsc#1042037]- make the package runable on non systemd systems + deprecated-scripts-arch.patch- updated to 2.4.27: * ) COMPATIBILITY: mod_lua: Remove the undocumented exported 'apr_table' global variable when using Lua 5.2 or later. This was exported as a side effect from luaL_register, which is no longer supported as of Lua 5.2 which deprecates pollution of the global namespace. [Rainer Jung] * ) COMPATIBILITY: mod_http2: Disable and give warning when using Prefork. The server will continue to run, but HTTP/2 will no longer be negotiated. [Stefan Eissing] * ) COMPATIBILITY: mod_proxy_fcgi: Revert to 2.4.20 FCGI behavior for the default ProxyFCGIBackendType, fixing a regression with PHP-FPM. PR 61202. [Jacob Champion, Jim Jagielski] * ) mod_lua: Improve compatibility with Lua 5.1, 5.2 and 5.3. PR58188, PR60831, PR61245. [Rainer Jung] * ) mod_http2: Simplify ready queue, less memory and better performance. Update mod_http2 version to 1.10.7. [Stefan Eissing] * ) Allow single-char field names inadvertantly disallowed in 2.4.25. PR 61220. [Yann Ylavic] * ) htpasswd / htdigest: Do not apply the strict permissions of the temporary passwd file to a possibly existing passwd file. PR 61240. [Ruediger Pluem] * ) core: Avoid duplicate HEAD in Allow header. This is a regression in 2.4.24 (unreleased), 2.4.25 and 2.4.26. PR 61207. [Christophe Jaillet] - drop upstreamed patch: * httpd-2.4.12-lua-5.2.patch (see upstream's PR#58188 for details)- Adjust dependencies for rename apr/apr-util packages- remove /usr/bin/http2 symlink only during apache2 package uninstall, not upgrade [bsc#1041830]- updated to 2.4.26: This release of Apache is a security, feature, and bug fix release. For details, see http://httpd.apache.org/dev/dist/CHANGES_2.4.26 - refreshed patches: . httpd-2.4.12-lua-5.2.patch . httpd-2.4.x-fate317766-config-control-two-protocol-options.diff - removed patches (upstreamed) . httpd-cache-forward-http-proxy.patch . httpd-cache-revert-svn1773397.patch- server-tunning.conf: MaxClients was renamed to MaxRequestWorkers [bsc#1037731] - gensslcert: use hostname when fqdn is too long [bsc#1035829]- remove apache-doc and apache-example-pages obsoletes/provides- PreRequire user wwwrun and group www- start_apache2: include individual sysconfig.d files instead of sysconfig.d dir, include sysconfig.d/include.conf after httpd.conf is processed [bsc#1023616]- revert an attempt to fix PR 60458 + httpd-cache-revert-svn1773397.patch- fix caching of forward proxy + httpd-cache-forward-http-proxy.patch- Don't require insserv if we don't need it.- Added new HTTP2 option to sysconfig to ease enabling http2 - Added new protocols.conf which is included globally - Enable http2 also for Leap 42.2+ and SLE12_SP2+- update to 2.4.25: fixed several security issues (CVE-2016-8740, CVE-2016-5387, CVE-2016-2161, CVE-2016-0736, CVE-2016-8743), many fixes and improvements of mod_http2 and other modules; see CHANGES for full change log - verify tarball: added httpd*.bz2.asc, apache2.keyring and remove 60C5442D.key- fix build with new systemd + amended httpd-2.4.3-mod_systemd.patch- Replace mixed indentation with predominant style.- add NotifyAccess=all to service file [bsc#980663]- Remove the omc xml config. It is useless nowdays- readd the support of multiple entries in APACHE_ACCESS_LOG [bsc#991032]- add httpd-2.4.x-fate317766-config-control-two-protocol-options.diff Introduces directives to control two protocol options: * HttpContentLengthHeadZero - allow Content-Length of 0 to be returned on HEAD * HttpExpectStrict - allow admin to control whether we must see "100-continue" [bsc#894225], [fate#317766]- version 2.4.23 * Fixes CVE-2016-4979 [bsc#987365] * mod_proxy_hcheck was missing due to upstream bug. * mod_proxy_fdpass needs explicit configure line now. * Full list of changes: http://www-eu.apache.org/dist//httpd/CHANGES_2.4.23- Remove pkgconfig(libsystemd-daemon). Nowadays pkgconfig(libsystemd) is enough and replaces all libsystemd-* libs which are obsolete.- remove Alias= from [Install] of the template service [bsc#981541c#10]- remove unneded httpd-2.4.17-debug-crash.patch- start apache services after remote-fs [bsc#978543]- removed note about ulimits in sysconfig file [bsc#976711]- do not build mod_http2 for 13.2- Update to version 2.4.20 (2.4.19 was never released) * Drop httpd-2.4.18-missing-semicolon.patch now upstream - Big changelog available, see: http://www.apache.org/dist/httpd/CHANGES_2.4.20 for details.- enable authnz_fcgi module- fix build for SLE_11_SP4: + httpd-2.4.18-missing-semicolon.patch- Update to version 2.4.18 * drop 2.4.17-protocols.patch in upstream. - Change list too long to mention here see: http://www.apache.org/dist/httpd/CHANGES_2.4.18 for details.- systemd: Set TasksMax=infinity for current systemd releases. The default limit of 512 is too small and prevents the creation of new server processes. Apache has its own runtime/harcoded limits.- fix crash when for -X + httpd-2.4.17-debug-crash.patch- add a note: FollowSymLinks or SymLinksIfOwnerMatch is neccessary for RewriteRule in given dir [bnc#955701]- restart apache once after the rpm or zypper transaction [bnc#893659] - drop some old compat code from %post- 2.4.17-protocols.patch from upstream http2 module: * master conn_rec* addition to conn_rec * improved ALPN and Upgrade handling * allowing requests for servers whose TLS configuration is compatible to the SNI server ones * disabling TLS renegotiation for slave connections- LogLevel directive into correct config file, thanks Michael Calmer for the fix [bsc#953329]- do not build mod_http2 for older distros than 13.2 for now (nghttp2 does not build there)- Include directives really into /etc/apache2/sysconfig.d/include.conf, fix from Erik Wegner [bsc#951901]- gensslcert: CN now defaults to `hostname -f` [bnc#949766] (internal), fix help [bnc#949771] (internal)- Update to 2.4.17 - Enable mod_http2/ BuildRequire nghttp2 - MPMs: Support SO_REUSEPORT to create multiple duplicated listener records for scalability - mod_ssl: Support compilation against libssl built with OPENSSL_NO_SSL3 - For more changes see: http://www.apache.org/dist/httpd/CHANGES_2.4.17- start_apache2: reintroduce sysconfig.d, include it on command line (not in httpd.conf) instead of individual directives [bnc#949434] (internal), [bnc#941331]- Fixup libdir in installed files- fix Logjam vulnerability: change SSLCipherSuite cipherstring to disable export cipher suites and deploy Ephemeral Elliptic-Curve Diffie-Hellman (ECDHE) ciphers. Adjust 'gensslcert' script to generate a strong and unique Diffie Hellman Group and append it to the server certificate file [bnc#931723], [CVE-2015-4000]- add reference upstream bug#58188 along httpd-2.4.12-lua-5.2.patch- update to 2.4.16 * changes http://www.apache.org/dist/httpd/CHANGES_2.4.16 * remove the following patches (fixed in 2.4.16) * httpd-2.4.x-mod_lua_websocket_DoS.patch * httpd-2.4.12-CVE-2015-0253.patch * update httpd-2.4.12-lua-5.2.patch- add patch: httpd-2.4.12-lua-5.2.patch * lua_dump introduced a new strip option in 5.3, set it to 0 to get the old behavior * luaL_register was deprecated in 5.2, use luaL_setfuncs and luaL_newlib instead * luaL_optint was deprecated in 5.3, use luaL_optinteger instead * lua_strlen and lua_objlen wad deprecated in 5.2, use lua_rawlen instead- change Provides: from suse_maintenance_mmn = # to suse_maintenance_mmn_#- apache2 Suggests:, not Recommends: apache2-prefork; that means for example, that `zypper in apache2-worker` will not pull apache2-prefork also - installing /usr/sbin/httpd link: * do not try to install it in '%post ' when apache2 (which includes /usr/share/apache2/script-helpers) is not installed yet (fixes installation on 11sp3) * install it in '%post' if apache2 is installed after apache2- to be sure it is there- access_compat shared also for 11sp3- apache2-implicit-pointer-decl.patch renamed to httpd-implicit-pointer-decl.patch to align with other patches names- apachectl is now wrapper to start_apache2; therefore, it honors HTTPD_INSTANCE variable, see README-instances.txt for details + httpd-apachectl.patch - httpd-2.4.10-apachectl.patch- a2enmod/a2dismod and a2enflag/a2disflag now respect HTTPD_INSTANCE= environment variable, which can be used to specify apache instance name; sysconfig file is expected at /etc/sysconfig/apache2@ (see README-instances.txt for details)- provides suse_maintenance_mmn symbol [bnc#915666] (internal)- credits to Roman Drahtmueller: * add reference to /etc/permissions.local to output of %post if setting the permissions of suexec2 fails * do not enable mod_php5 by default any longer * httpd-2.0.49-log_server_status.dif obsoleted * apache2-mod_ssl_npn.patch removed because not used * include mod_reqtimeout.conf in httpd.conf * added cgid-timeout.conf, include it in httpd.conf - fix default value APACHE_MODULES in sysconfig file - %service_* macros for apache2@.service- reenable 690734.patch, it should be upstreamed by the author (Adrian Schroeter) though + httpd-2.4.9-bnc690734.patch - httpd-2.2.x-bnc690734.patch- drop startssl from start_apache2- allow to run multiple instances of Apache on one system [fate#317786] (internal) * distributed httpd.conf no longer includes sysconfig.d, nor this directory is shipped. httpd.conf includes loadmodule.conf and global.conf which are former sysconfig.d/loadmodule.conf and sysconfig.d/global.conf for default /etc/sysconfig/apache2 global.conf and loadmodule.conf are not included when sysconfig variables could have been read by start_apache2 startup script (run with systemd services). Therefore, when starting server via /usr/sbin/httpd, sysconfig variables are not taken into account. * some not-maintained scripts are moved from /usr/share/apache2 to /usr/share/apache2/deprecated-scripts * all modules comment in sysconfig file is not generated anymore * added README-instances.txt * removed Sources: load_configuration find_mpm get_module_list get_includes find_httpd_includes apache-find-directives * added Sources: deprecated-scripts.tar.xz apache2-README-instances.txt apache2-loadmodule.conf apache2-global.conf apache2-find-directives apache2@.service apache2-script-helpers- add SSLHonorCipherOrder directive to apache2-ssl-global.conf - adopt SSLCipherSuite directive value from SLE12 - remove default-vhost-ssl.conf and default-vhost.conf from /etc/apache2. These two files are not (!) read by the configuration framework, but are named *.conf, which is misleading. The files are almost identical with the vhost templates in /etc/apache2/vhosts.d/. The two templates there do it right because they are not named *.conf and are not sourced either. apache's response with no explicit (eg. default, vanilla) configuration is contained in /etc/apache2/default-server.conf. * remove apache2-README.default-vhost as there are no default-vhost* files anymore.- apache2.service: We have to use KillMode=mixed for the graceful stop, restart to work properly.- dropped 2.0 -> 2.2 modules transition during upgrade * apache-20-22-upgrade renamed to apache-22-24-upgrade - apache-*-upgrade script is called in %posttrans now [bnc#927223]- fix find_mpm to echo mpm binary- apache2.service: Only order us after network.target and nss-lookup.target but not pull the units in. - apache2.service: SSL requires correct system time to work properly, order after time-sync.target- align filenames with upstream names (and add compat symlinks) - find_httpd2_includes renamed to find_httpd_includes- access_compat now built as shared and disabled by default - amend config to use also old syntax when access_compat is loaded - added apache2-README-access_compat.txt - added apache-find-directive script - see [bnc#896083] and its duplicates- add httpd-2.4.12-CVE-2015-0253.patch to fix SECURITY: CVE-2015-0253 (cve.mitre.org) core: Fix a crash introduced in with ErrorDocument 400 pointing to a local URL-path with the INCLUDES filter active, introduced in 2.4.11. PR 57531. [Yann Ylavic]- simplify apache2.logrotate, use sharedscripts [bnc#713581]- remove curly brackets around format sequence "%y" in `stat --format="%{y}" %{SOURCE1}` that caused an incorrect evaluation. Add escaping to proper spec-cleaner processing in the future- remove 'exit 0' from the %post section in the specfile that was placed here incorrectly and caused that the rest of the %post section couldn't be executed.- /etc/init.d/apache2 reload -> systemctl reload apache2.service in apache2.logrotate [bnc#926523]- authz_default -> authz_core in sysconfig.apache2/APACHE_MODULES [bnc#922236]- Add Requires(post) apache2 to the subpackage -worker, -event and - prefork: their respective post scriptlets execute /usr/share/apache2/get_module_list, which is shipped as part of the main package. This script has the side-effect to call find_mpm, which in turn creates the corresponding /usr/sbin/httpd2 symlink.- Patched get_module_list to ensure proper SELinux context for sysconfig.d/loadmodule.conf- Pname -> name variable reduction - Try to fix sle11 build- Version bumpt o 2.4.12: * ) mpm_winnt: Accept utf-8 (Unicode) service names and descriptions for internationalization. [William Rowe] * ) mpm_winnt: Normalize the error and status messages emitted by service.c, the service control interface for Windows. [William Rowe] * ) configure: Fix --enable-v4-mapped configuration on *BSD. PR 53824. [ olli hauer , Yann Ylavic ]- Exit cleanly on end of the post and cleanup the update detection - Remove Apache.xpm as it ain't used- Cleanup init/unit decision making and provide just systemd service on systemd systems- Deprecate realver define as it is equal to version. - Explicitely state MPM mods to ensure we don't lose some bnc#444878- Pass over spec-cleaner, there should be no actual technical change in this just reduction of lines in the spec- add httpd-2.4.x-mod_lua_websocket_DoS.patch to fix mod_lua bug where a maliciously crafted websockets PING after a script calls r:wsupgrade() can cause a child process crash [CVE-2015-0228], [bnc#918352].- httpd2.pid in rc.apache2 was wrong [bnc#898193]- httpd-2.4.3-mod_systemd.patch find libsystemd-daemon with pkg-config, this is the only correct way, in current versions sd_notify is in libsystemd and in old products in libsystemd-daemon.- remove obsolete patches * httpd-2.4.10-check_null_pointer_dereference.patch * httpd-event-deadlock.patch * httpd-2.4.x-bnc871310-CVE-2013-5704-mod_headers_chunked_requests.patch * httpd-2.4.x-bnc909715-CVE-2014-8109-mod_lua_handling_of_Require_line.patch- Apache 2.4.11 * ) SECURITY: CVE-2014-3583 (cve.mitre.org) mod_proxy_fcgi: Fix a potential crash due to buffer over-read, with response headers' size above 8K. [Yann Ylavic, Jeff Trawick] * ) SECURITY: CVE-2014-3581 (cve.mitre.org) mod_cache: Avoid a crash when Content-Type has an empty value. PR 56924. [Mark Montague , Jan Kaluza] * ) SECURITY: CVE-2014-8109 (cve.mitre.org) mod_lua: Fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments. PR57204 [Edward Lu ] * ) SECURITY: CVE-2013-5704 (cve.mitre.org) core: HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. Adds "MergeTrailers" directive to restore legacy behavior. [Edward Lu, Yann Ylavic, Joe Orton, Eric Covener] * ) mod_ssl: New directive SSLSessionTickets (On|Off). The directive controls the use of TLS session tickets (RFC 5077), default value is "On" (unchanged behavior). Session ticket creation uses a random key created during web server startup and recreated during restarts. No other key recreation mechanism is available currently. Therefore using session tickets without restarting the web server with an appropriate frequency (e.g. daily) compromises perfect forward secrecy. [Rainer Jung] * ) mod_proxy_fcgi: Provide some basic alternate options for specifying how PATH_INFO is passed to FastCGI backends by adding significance to the value of proxy-fcgi-pathinfo. PR 55329. [Eric Covener] * ) mod_proxy_fcgi: Enable UDS backends configured with SetHandler/RewriteRule to opt-in to connection reuse and other Proxy options via explicitly declared "proxy workers" (] * ) mod_proxy_fcgi: Remove proxy:balancer:// prefix from SCRIPT_FILENAME passed to fastcgi backends. [Eric Covener] * ) core: Configuration files with long lines and continuation characters are not read properly. PR 55910. [Manuel Mausz ] * ) mod_include: the 'env' function was incorrectly handled as 'getenv' if the leading 'e' was written in upper case in statements. [Christophe Jaillet] * ) split-logfile: Fix perl error: 'Can't use string ("example.org:80") as a symbol ref while "strict refs"'. PR 56329. [Holger Mauermann ] * ) mod_proxy: Prevent ProxyPassReverse from doing a substitution when the URL parameter interpolates to an empty string. PR 56603. [] * ) core: Fix -D[efined] or [d] variables lifetime accross restarts. PR 57328. [Armin Abfalterer , Yann Ylavic]. * ) mod_proxy: Preserve original request headers even if they differ from the ones to be forwarded to the backend. PR 45387. [Yann Ylavic] * ) mod_ssl: dump SSL IO/state for the write side of the connection(s), like reads (level TRACE4). [Yann Ylavic] * ) mod_proxy_fcgi: Ignore body data from backend for 304 responses. PR 57198. [Jan Kaluza] * ) mod_ssl: Do not crash when looking up SSL related variables during expression evaluation on non SSL connections. PR 57070 [Ruediger Pluem] * ) mod_proxy_ajp: Fix handling of the default port (8009) in the ProxyPass and configurations. PR 57259. [Yann Ylavic] * ) mpm_event: Avoid a possible use after free when notifying the end of connection during lingering close. PR 57268. [Eric Covener, Yann Ylavic] * ) mod_ssl: Fix recognition of OCSP stapling responses that are encoded improperly or too large. [Jeff Trawick] * ) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers. [Jeff Trawick] * ) mod_proxy_fcgi, mod_authnz_fcgi: stop reading the response and issue an error when parsing or forwarding the response fails. [Yann Ylavic] * ) mod_ssl: Fix a memory leak in case of graceful restarts with OpenSSL >= 0.9.8e PR 53435 [tadanori , Sebastian Wiedenroth ] * ) mod_proxy_connect: Don't issue AH02447 on sockets hangups, let the read determine whether it is a normal close or a real error. PR 57168. [Yann Ylavic] * ) mod_proxy_wstunnel: abort backend connection on polling error to avoid further processing. [Yann Ylavic] * ) core: Support custom ErrorDocuments for HTTP 501 and 414 status codes. PR 57167 [Edward Lu ] * ) mod_proxy_connect: Fix ProxyRemote to https:// backends on EBCDIC systems. PR 57092 [Edward Lu ] * ) mod_cache: Avoid a 304 response to an unconditional requst when an AH00752 CacheLock error occurs during cache revalidation. [Eric Covener] * ) mod_ssl: Move OCSP stapling information from a per-certificate store to a per-server hash. PR 54357, PR 56919. [Alex Bligh , Yann Ylavic, Kaspar Brand] * ) mod_cache_socache: Change average object size hint from 32 bytes to 2048 bytes. [Rainer Jung] * ) mod_cache_socache: Add cache status to server-status. [Rainer Jung] * ) event: Fix worker-listener deadlock in graceful restart. PR 56960. * ) Concat strings at compile time when possible. PR 53741. * ) mod_substitute: Restrict configuration in .htaccess to FileInfo as documented. [Rainer Jung] * ) mod_substitute: Make maximum line length configurable. [Rainer Jung] * ) mod_substitute: Fix line length limitation in case of regexp plus flatten. [Rainer Jung] * ) mod_proxy: Truncated character worker names are no longer fatal errors. PR53218. [Jim Jagielski] * ) mod_dav: Set r->status_line in dav_error_response. PR 55426. * ) mod_proxy_http, mod_cache: Avoid (unlikely) accesses to freed memory. [Yann Ylavic, Christophe Jaillet] * ) http_protocol: fix logic in ap_method_list_(add|remove) in order: - to correctly reset bits - not to modify the 'method_mask' bitfield unnecessarily [Christophe Jaillet] * ) mod_slotmem_shm: Increase log level for some originally debug messages. [Jim Jagielski] * ) mod_ldap: In 2.4.10, some LDAP searches or comparisons might be done with the wrong credentials when a backend connection is reused. [Eric Covener] * ) mod_macro: Add missing APLOGNO for some Warning log messages. [Christophe Jaillet] * ) mod_cache: Avoid sending 304 responses during failed revalidations PR56881. [Eric Covener] * ) mod_status: Honor client IP address using mod_remoteip. PR 55886. [Jim Jagielski] * ) cmake-based build for Windows: Fix incompatibility with cmake 2.8.12 and later. PR 56615. [Chuck Liu , Jeff Trawick] * ) mod_ratelimit: Drop severity of AH01455 and AH01457 (ap_pass_brigade failed) messages from ERROR to TRACE1. Other filters do not bother re-reporting failures from lower level filters. PR56832. [Eric Covener] * ) core: Avoid useless warning message when parsing a section guarded by if $(foo) is used within the section. PR 56503 [Christophe Jaillet] * ) mod_proxy_fcgi: Fix faulty logging of large amounts of stderr from the application. PR 56858. [Manuel Mausz ] * ) mod_proxy_http: Proxy responses with error status and "ProxyErrorOverride On" hang until proxy timeout. PR53420 [Rainer Jung] * ) mod_log_config: Allow three character log formats to be registered. For backwards compatibility, the first character of a three-character format must be the '^' (caret) character. [Eric Covener] * ) mod_lua: Don't quote Expires and Path values. PR 56734. [Keith Mashinter, ] * ) mod_authz_core: Allow 'es to be seen from auth stanzas under virtual hosts. PR 56870. [Eric Covener]- Redone lost patch to fix boo#859439 + service reload can cause log data to be lost with logrotate under some circumstances: remove "-t" from service reload. [bnc#859439]- Fix URL syntax in various files- fix IfModule directive around SSLSessionCache [bnc#842377c#11]- added httpd-2.4.x-bnc871310-CVE-2013-5704-mod_headers_chunked_requests.patch to fix flaw in the way mod_headers handled chunked requests. Adds "MergeTrailers" directive to restore legacy behavior [bnc#871310], [CVE-2013-5704].- added httpd-2.4.x-bnc909715-CVE-2014-8109-mod_lua_handling_of_Require_line.patch that fixes handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments [bnc#909715], [CVE-2014-8109].- fixed start at boot for ssl and encrypted key [bnc#792309]- fix shebang in start_apache2 script that contains bash-specific constructions- small improvement of ssl instructions [bnc#891813]- fix bashisms in post scripts- added httpd-2.4.10-check_null_pointer_dereference.patch to avoid a crash when Content-Type has an empty value [bnc#899836], CVE-2014-3581- httpd-event-deadlock.patch: Fix worker-listener deadlock in graceful restart.- httpd-2.1.9-apachectl.dif renamed to httpd-2.4.10-apachectl.patch and updated (fixed bashism).- drop (turned off) itk mpm spec file code as mpm-itk is now provided as a separate module, not via patch (see http://mpm-itk.sesse.net/ and [bnc#851229])- enable mod_imagemap [bnc#866366]/bin/sh/bin/sh/bin/sh/bin/shapacheapache2-mod_macromod_ssl/bin/shh01-armsrv1 1718867708  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~2.4.512.4.51-150400.6.20.12.4.51-150400.6.20.12.4.512.4.51-150400.6.20.1 1.3.291.2.12.8.16  !!!!!!!"#$apache2charset.convconf.ddefault-server.conferrors.confglobal.confhttpd.conflisten.confloadmodule.confmagicmime.typesmod_autoindex-defaults.confmod_cgid-timeout.confmod_info.confmod_log_config.confmod_mime-defaults.confmod_reqtimeout.confmod_status.confmod_userdir.confmod_usertrack.confprotocols.confserver-tuning.confssl-global.confssl.crlREADME.CRLssl.crtREADME.CRTssl.csrREADME.CSRssl.keyREADME.KEYssl.prmREADME.PRMuid.confvhosts.dvhost-ssl.templatevhost.templateapache2log_server_statuslog_server_status2firewalldservicesapache2-ssl.xmlapache2.xmlapache2.serviceapache2.targetapache2@.serviceapache2apache2-eventapache2-preforkapache2-workermod_access_compat.somod_actions.somod_alias.somod_allowmethods.somod_asis.somod_auth_basic.somod_auth_digest.somod_auth_form.somod_authn_anon.somod_authn_core.somod_authn_dbd.somod_authn_dbm.somod_authn_file.somod_authn_socache.somod_authnz_fcgi.somod_authnz_ldap.somod_authz_core.somod_authz_dbd.somod_authz_dbm.somod_authz_groupfile.somod_authz_host.somod_authz_owner.somod_authz_user.somod_autoindex.somod_brotli.somod_bucketeer.somod_buffer.somod_cache.somod_cache_disk.somod_cache_socache.somod_case_filter.somod_case_filter_in.somod_charset_lite.somod_data.somod_dav.somod_dav_fs.somod_dav_lock.somod_dbd.somod_deflate.somod_dialup.somod_dir.somod_dumpio.somod_echo.somod_env.somod_expires.somod_ext_filter.somod_file_cache.somod_filter.somod_headers.somod_heartmonitor.somod_http2.somod_imagemap.somod_include.somod_info.somod_lbmethod_bybusyness.somod_lbmethod_byrequests.somod_lbmethod_bytraffic.somod_lbmethod_heartbeat.somod_ldap.somod_log_config.somod_log_debug.somod_log_forensic.somod_logio.somod_lua.somod_macro.somod_mime.somod_mime_magic.somod_negotiation.somod_optional_fn_export.somod_optional_fn_import.somod_optional_hook_export.somod_optional_hook_import.somod_proxy.somod_proxy_ajp.somod_proxy_balancer.somod_proxy_connect.somod_proxy_express.somod_proxy_fcgi.somod_proxy_fdpass.somod_proxy_ftp.somod_proxy_hcheck.somod_proxy_html.somod_proxy_http.somod_proxy_http2.somod_proxy_scgi.somod_proxy_uwsgi.somod_proxy_wstunnel.somod_ratelimit.somod_reflector.somod_remoteip.somod_reqtimeout.somod_request.somod_rewrite.somod_sed.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.somod_setenvif.somod_slotmem_plain.somod_slotmem_shm.somod_socache_dbm.somod_socache_memcache.somod_socache_redis.somod_socache_shmcb.somod_speling.somod_ssl.somod_status.somod_substitute.somod_suexec.somod_unique_id.somod_userdir.somod_usertrack.somod_version.somod_vhost_alias.somod_watchdog.somod_xml2enc.soapache2_MMNa2disflaga2dismoda2enflaga2enmodapache2-systemd-ask-passapache2ctlapachectlenvvarsenvvars-stdhtcachecleanrcapache2start_apache2suexecsuexec2apache2apache-22-24-upgradebuilddeprecated-scriptsfind_httpd_includesfind_mpmget_includesget_module_listload_configurationerrorHTTP_BAD_GATEWAY.html.varHTTP_BAD_REQUEST.html.varHTTP_FORBIDDEN.html.varHTTP_GONE.html.varHTTP_INTERNAL_SERVER_ERROR.html.varHTTP_LENGTH_REQUIRED.html.varHTTP_METHOD_NOT_ALLOWED.html.varHTTP_NOT_FOUND.html.varHTTP_NOT_IMPLEMENTED.html.varHTTP_PRECONDITION_FAILED.html.varHTTP_REQUEST_ENTITY_TOO_LARGE.html.varHTTP_REQUEST_TIME_OUT.html.varHTTP_REQUEST_URI_TOO_LARGE.html.varHTTP_SERVICE_UNAVAILABLE.html.varHTTP_UNAUTHORIZED.html.varHTTP_UNSUPPORTED_MEDIA_TYPE.html.varHTTP_VARIANT_ALSO_VARIES.html.varREADMEcontact.html.varincludebottom.htmlspacer.htmltop.htmliconsREADMEREADME.htmla.gifa.pngalert.black.gifalert.black.pngalert.red.gifalert.red.pngapache_pb.gifapache_pb.pngapache_pb.svgapache_pb2.gifapache_pb2.pngback.gifback.pngball.gray.gifball.gray.pngball.red.gifball.red.pngbinary.gifbinary.pngbinhex.gifbinhex.pngblank.gifblank.pngbomb.gifbomb.pngbox1.gifbox1.pngbox2.gifbox2.pngbroken.gifbroken.pngburst.gifburst.pngc.gifc.pngcomp.blue.gifcomp.blue.pngcomp.gray.gifcomp.gray.pngcompressed.gifcompressed.pngcontinued.gifcontinued.pngdir.gifdir.pngdiskimg.gifdiskimg.pngdown.gifdown.pngdvi.gifdvi.pngf.giff.pngfolder.giffolder.open.giffolder.open.pngfolder.pngfolder.sec.giffolder.sec.pngforward.gifforward.pnggeneric.gifgeneric.pnggeneric.red.gifgeneric.red.pnggeneric.sec.gifgeneric.sec.pnghand.right.gifhand.right.pnghand.up.gifhand.up.pngicon.sheet.gificon.sheet.pngimage1.gifimage1.pngimage2.gifimage2.pngimage3.gifimage3.pngindex.gifindex.pnglayout.giflayout.pngleft.gifleft.pnglink.giflink.pngmovie.gifmovie.pngodf6odb.pngodf6odc.pngodf6odf.pngodf6odg.pngodf6odi.pngodf6odm.pngodf6odp.pngodf6ods.pngodf6odt.pngodf6otc.pngodf6otf.pngodf6otg.pngodf6oth.pngodf6oti.pngodf6otp.pngodf6ots.pngodf6ott.pngp.gifp.pngpatch.gifpatch.pngpdf.gifpdf.pngpie0.gifpie0.pngpie1.gifpie1.pngpie2.gifpie2.pngpie3.gifpie3.pngpie4.gifpie4.pngpie5.gifpie5.pngpie6.gifpie6.pngpie7.gifpie7.pngpie8.gifpie8.pngportal.gifportal.pngps.gifps.pngquill.gifquill.pngright.gifright.pngscrew1.gifscrew1.pngscrew2.gifscrew2.pngscript.gifscript.pngsmallback.gifback.pngbinary.gifbinary.pngbinhex.gifbinhex.pngblank.gifblank.pngbroken.gifbroken.pngburst.gifburst.pngcomp1.gifcomp1.pngcomp2.gifcomp2.pngcompressed.gifcompressed.pngcontinued.gifcontinued.pngdoc.gifdoc.pngfolder.giffolder.pngfolder2.giffolder2.pngforward.gifforward.pnggeneric.gifgeneric.pnggeneric2.gifgeneric2.pnggeneric3.gifgeneric3.pngimage.gifimage.pngimage2.gifimage2.pngindex.gifindex.pngkey.gifkey.pngmovie.gifmovie.pngpatch.gifpatch.pngps.gifps.pngrainbow.gifrainbow.pngsound.gifsound.pngsound2.gifsound2.pngtar.giftar.pngtext.giftext.pngtransfer.giftransfer.pngunknown.gifunknown.pnguu.gifuu.pngsound1.gifsound1.pngsound2.gifsound2.pngsphere1.gifsphere1.pngsphere2.gifsphere2.pngsvg.pngtar.giftar.pngtex.giftex.pngtext.giftext.pngtransfer.giftransfer.pngunknown.gifunknown.pngup.gifup.pnguu.gifuu.pnguuencoded.gifuuencoded.pngworld1.gifworld1.pngworld2.gifworld2.pngxml.pngscript-helperssysconf_addwordapache2ABOUT_APACHECHANGESINSTALLREADMEREADME-access_compat.txtREADME-instances.txtREADME.CHANGESREADME.QUICKSTARTREADME.cmakeREADME.platformsSHA1README.sha1convert-sha1.plhtpasswd-sha1.plldif-sha1.examplehttpd.conf.defaultoriginalextrahttpd-autoindex.confhttpd-dav.confhttpd-default.confhttpd-info.confhttpd-languages.confhttpd-manual.confhttpd-mpm.confhttpd-multilang-errordoc.confhttpd-ssl.confhttpd-userdir.confhttpd-vhosts.confproxy-html.confhttpd.confprintenvrobots.txttest-cgisysconfig.apache2apache2LICENSEapxs.1.gzapxs2.1.gzapache2ctl.8.gzapachectl.8.gzhtcacheclean.8.gzhttpd.8.gzhttpd2.8.gzsuexec.8.gzsuexec2.8.gzapache2apache2apache2/etc//etc/apache2//etc/apache2/ssl.crl//etc/apache2/ssl.crt//etc/apache2/ssl.csr//etc/apache2/ssl.key//etc/apache2/ssl.prm//etc/apache2/vhosts.d//etc/logrotate.d//usr/bin//usr/lib//usr/lib/firewalld//usr/lib/firewalld/services//usr/lib/systemd/system//usr/lib64//usr/lib64/apache2//usr/sbin//usr/share//usr/share/apache2//usr/share/apache2/deprecated-scripts//usr/share/apache2/error//usr/share/apache2/error/include//usr/share/apache2/icons//usr/share/apache2/icons/small//usr/share/doc/packages//usr/share/doc/packages/apache2//usr/share/doc/packages/apache2/SHA1//usr/share/doc/packages/apache2/original//usr/share/doc/packages/apache2/original/extra//usr/share/fillup-templates//usr/share/licenses//usr/share/licenses/apache2//usr/share/man/man1//usr/share/man/man8//var/cache//var/lib//var/log/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:34444/SUSE_SLE-15-SP4_Update/b74378dcbb47ad24e691ff4d4a7189e4-apache2.SUSE_SLE-15-SP4_Updatedrpmxz5aarch64-suse-linux  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}}||~|}}}}}}}}directoryASCII textmagic text file for file(1) cmd, ASCII textPerl script text executableXML 1.0 document, ASCII text, with very long linesXML 1.0 document, ASCII textELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=308d85aa19426bbbe2af5c794e3004d82148ee2e, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ae75f2d7c5b353818f853b6a2f5553dc6e156d50, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=17ceba9b86146bffd77c9ae79a567ffb67288fc0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b2b5f50e3ccf557d8c29f2ea5cb02a007cc422a7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c86b2432c25190371b44fd1303a7224c52f1e20f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c05ef2aae0f3a7be7b63a6b937c713b79fb3dc28, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0727e03ad3479ddab6b38a959dc8d171de5d30ed, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f06e31c85426e1cc8564129a6702d9339ffe6f07, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d8285f37ff058186baf832b38f20c44ab366ffe8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2c5b20321fe6c755f408d318ca8b0c5101287de5, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=74042886cfc5b44b6f918cb1163d28737c1eff03, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d94b3baf1774ae2a4eb095daa647278832125612, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5bd93281117dbfbe34015fc8a3f3de3d6e7c54be, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8a3ea2ac792aef2dae28f42a6fe69218ea56ad02, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=72886a7e3b140de0b248be74f26f98597b83a62b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=99fe19c9fa48b22fba6c0df68e311c7c7089e0d7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2c6211c7cbe9a6925e571ebc5f610674df1e9c51, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1270590e09f8b58965d94a9bc584188540931faa, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4166d311dc014ce15d8bb7506b6664302e3fbb91, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e305baad7524fd9122ad855a81eeebff9715b641, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f6a6431bc91ba28eede3adb71bd3cb561a58dd30, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=15540b71d3bedd4d0d728c0bbfd7e10e42fb7f06, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2e2dc37ea1c5eab51a4c0ab15abf3f151f60a29d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=44b737e4229df666f0176312756264fd46dc417c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=52661d4bd1d045802f10e830242f56ccd5d9d27b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=006dc75a71a3dc4f2dd2b12d9d37572fbaf5092c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=828cf2b79a1ed7eae784a355442fe2c041da7451, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b674085f5bc23b434ec8912db49f423bfd88b443, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=543814bf025a66c2912f06392be0e837a95e5e04, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=baf1461ff631f29fe9fcf0de78e3caab08aa3e54, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ec9927ccbdfea0a4607aee754949e4fa1240a265, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=bd035966896319a28ee39e841e4483ebb1b2cfff, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a5fe3882cf753fcebad45d3205d65db7eb08b6b8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=89a4eb2c838a26194b4b28fc3bd94ea84d3eb717, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7651057fa00e1b345c35142c1a7fcf30c480331a, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=98ccfbd010ebf1fcd1d6a646fae08eac6eb5e3e7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d32ff3413ce4adea2b420111e0fa025cba92c84f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7d5a3cf3a1a0c7ccba7d86cdfc20ca68e5bb19e4, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=990be9b4bf955598b707d6d85a184ff723afd09b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3b3d457a94bb1e93623ea96a1242cbd579c311d8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=dc748723ba5a356299853f35e0df50251becfcc0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=99745746ec6bf9bac88972366df3a23d5a26afe9, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=42a2ba7bd1e1ac4e7bef6c2d5fbdb1024f64abae, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=057a5f22990064d59db35bec781cbc4ebf449656, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=89de3e7fa73bd1d3e0e733db6bd3ece707d4b040, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=10419d0e7a1c15055f24f9d2a03c761321ea00dd, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=02116ebf086a06876d304d5fba781eceec1263cb, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9093ba260221082a384adecf4e937e8f61b52024, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=38df262e89353431e5bbe2f7617e4dc758635063, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5319480e3747773f3b62947db4840baed03148aa, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=26849043109eba182cab70c061417d73bc63b3ff, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7fdbf68414d55656d8480cebd89ef361ecedcfcd, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7ffa8ded45545b01ef4fcec5df23e236c147cc0f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b0a239ba48b8abad3f0cc7477abcb26bcf606480, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=985ca17afdff83daf2b3ee3246d70cdd2371e641, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e89d200f08e83b6ebaa6dbec1fd1290136abc5fa, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5f2cbd7493d775971da70e78dca168f644fbfc28, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=19ac61d696b93cce22bdbde970ef4b219cc31a6a, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=012549103cbcf05d88c78a0cee080e904dec42b5, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=479b6df8c6f931c35f5148513c7dbaabd35d7bde, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=cc163853e92113997ef92a74095515c5a8e27122, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=520f49287e8e895d488155aab202f4fa94865e82, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6b17dfa5aac31a294c752d10bb1ece0fe57c126c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b56579a6aff8e5e85bfc0570143ba6b0c399b27d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0a3bfb6c52d12c5b24513eaed1ced8bb90464fa6, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=fd2566255ea1c870662473d4c65210559e08a2cc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7487e07c2b79dfb2654cf0a8565752b93a281902, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=288541a61bbefd13894d24caf8c1ce97a5733349, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=bd4b583ecc9466cea18b90e34df18b7804c63b92, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=933ea3f409a2184a69b76ec2b48f4a4f88baf6a4, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c6678ef5543462b16091241a3581c23bb45805a1, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=76cd7d6d1452970e53eeef10deb2661503a6ed40, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=700f0bdf1afab7a3168500b085aef54b3d9b2e06, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=223b3c09d6a5bd6ac8d2b95e3dbdc6726dc8357d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b3703578c985fd1a8925f4232f94ef03e080d98e, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e36f8de8389792806759824c48f24e3a5bf5d7fa, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=60afcb980a4b257e7607b03d9f5597007d0da9fe, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=517e62e45a3cd7d9339907889c08e62304eb0e80, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1db5f2790ba5f29db4bbe2b8ea6b14e171e79337, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6f14f4bbc5e43449e59461b9aa7d142a8d5fcb1b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=517a200015ccbc394191e72e51e195654dcff603, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=040b22b5ccb470eb4585b0f576c59ef9b6b28af3, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4c626e212b711e2ed5015c7f066947098d49e955, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=757bcb97f360f9b818a6599f027007d1d62514fc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=743ec485b2c68e4dd56af265e6a700d9755ce42c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9f7e188f8218ef88317ec950043e736400d02670, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ea9c1518827ab958ac6f08b492eb388ed86069c7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=58904d207f8b107b4cc500e800de4dfbe068cb12, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c5e4fdc8cc64e3e2ef4e44faa045a67b547aaf12, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c3a40e32a724466a532f4798c5c923517acda0dc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c931c4a91313a0e3ad6f684fbadd7fd0ae83e9de, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=995fd8427bbe1aea4541ee047297c0850450c709, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=23353c2c40f7dd51cc67ed2178b48cadf472c013, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5000d628c2e1e40f3d8e2d0d27717bb5fd780c65, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2c17070c413ca96ac2e2d7fa03536e175ecdb21d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=050dfe24041b524e8b2a614e32c40df810bb4b32, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e1591b62de9560a9255fd8dbbedec34f83bc7869, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e93676314a333f887152f5f8f7af0d644f45ffb8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c34aefb3d6cc450376be1b5d3f6b1b6cb7ab5a46, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9c02bfb875603f1db85e8df21e9e04d805329571, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d4a1bc80e98fb557181aa6cd89c6ce99a2545e40, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d6a30eddf28476d74cf7796131e8a520fa2bedb0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=08e760d6b9a27e245a33a10401ba438d77c9eea8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7feb87a8148fb844b7e388d94827f68b35b8ea92, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f4ab57e7c6703d51d380a031329aa7815a7a13d4, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=82a0296a3798361feaeb478c626559990a968652, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3f98af629748eafb6dcaea07f1e8ff50e2327ebf, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=cdb94e33bca99a5103fb7474c1103f012c814160, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=600ff279c98dbc5b6b91b92b0d07a6d50e3f0c30, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=07cee817cb07769fdfd7677bb27800ee39dc6aa7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8fc3640568ab01c10d767c6e4f08584c314d90e5, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=61d24a3e11c2b97989a6509a3002617ae3740426, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=537e9107ac97775cb57e5c9724a2af1349bb68c5, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=379759d2cee646db673d0451ce9e353b42534f1f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a6b686ff1b6358a9249c1c2a101a1ca4d285a66d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=46e5f4d7f92868b98a95bd9e87aa9e2e99b8e5ca, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6b5eb1b8512e7158dc198e0671457e604c459f30, strippedPOSIX shell script, ASCII text executableBourne-Again shell script, ASCII text executableELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=1dfafaff9f2b6920ac9c3f124162088a306b7719, for GNU/Linux 3.7.0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=55d635bd5846c5a1d71bf2b2abffaeaaa84d49ff, for GNU/Linux 3.7.0, strippedexported SGML document, UTF-8 Unicode textHTML document, UTF-8 Unicode textUTF-8 Unicode textHTML document, ASCII textGIF image data, version 89a, 20 x 22PNG image data, 20 x 22, 4-bit colormap, non-interlacedGIF image data, version 89a, 260 x 30PNG image data, 260 x 30, 8-bit/color RGBA, non-interlacedSVG Scalable Vector Graphics imageGIF image data, version 89a, 261 x 30PNG image data, 261 x 30, 8-bit/color RGBA, non-interlacedPNG image data, 20 x 22, 1-bit colormap, non-interlacedPNG image data, 20 x 22, 8-bit colormap, non-interlacedPNG image data, 20 x 22, 2-bit colormap, non-interlacedGIF image data, version 89a, 27 x 22PNG image data, 27 x 22, 4-bit colormap, non-interlacedGIF image data, version 89a, 480 x 524PNG image data, 480 x 524, 8-bit colormap, non-interlacedGIF image data, version 89a, 16 x 16PNG image data, 16 x 16, 8-bit grayscale, non-interlacedPNG image data, 16 x 16, 4-bit colormap, non-interlacedPNG image data, 16 x 16, 8-bit gray+alpha, non-interlacedGIF image data, version 87a, 559 x 14PNG image data, 559 x 14, 8-bit colormap, non-interlacedtroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)  %(-27<AFLQV[`ejotz #*/49>GLQV[^adgmrw| "',16;@EJOVWXYZabhi   R RRR$RRRR$RRRR$RRRR$RRRR$RRRRR$RRRRR$RRRRR$RRRR$RRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR!R$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR-R$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRRRR#R$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR!R R$RRRRR$RRRRR$RRRRR$RRRRR$RRRR%RRR"RR$RRRRR$RRRRR$RRRRR$RRRRR$RRRR$RRR$RRR$RRR$RR%RRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRR%RR$RRR%RRR$RRRRR$RRRR+R,R*RR)R$RRRRR$RRRRR#R$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRR$RRRR$RRR%RRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR(R'RR&RR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRRR$RRRR*RR)R$RRRRRRRRRRR$RRRR%RRR$RRRRpsHv#t_/usr/share/apache2/apache-22-24-upgrade if [ -x /usr/bin/systemctl ]; then if [ -e /var/run/httpd.restart.flag ]; then /usr/bin/systemctl daemon-reload > /dev/null 2>&1 || : /usr/bin/systemctl restart apache2.target > /dev/null 2>&1 || : echo 'Restarting apache (all instances)' # all instances was restarted, removing all flags rm /var/run/httpd.restart.flag* else /usr/bin/systemctl daemon-reload > /dev/null 2>&1 || : for flag in /var/run/httpd.restart.flag@*; do if [ ! -e $flag ]; then # %{apache_restart_flag}@* have not matched anything break fi instance_name=$(cat $flag) if [ -z "$instance_name" ]; then instance_suffix="" else instance_suffix="@$instance_name" fi echo "Restarting apache ($instance_name instance)" /usr/bin/systemctl restart apache2${instance_suffix}.service > /dev/null 2>&1 || : rm /var/run/httpd.restart.flag@$instance_name done fi fi/bin/shsystemdw3mapache2-preforksystemdsystemd-sysvcompatutf-82e07374dd429dc26e0657ce6ac8a0527c51fc82a1380db9cf9d7da6220899c19?7zXZ !t/V/]"k%x.$+e&%|6pjy0bc(>QȱW,o +9*8B:j6GƆ5ӫ%X|R3!Ts{Tf2?[Ie]+HS?Ębotqe""X˃q^eI>WYSMK{i7oyl +ɧvH.Q#œܙ.Rք ɴ sw@ ދO׷l몚wE$ f 8fR`I=FXAAm &v0.1ct6$V.UaDJI^ZOp FFT{!lnAtD3A%v(BCOwyo\gڎ疈eDg{[T"t/g82ψˁ8}cOoxG0sl_`hWDzxMX֡y B U&332fvr#uؘ=oYZW&Eyc"WF;j N9$8OH{F^57'#y2^lcjj"! ۵Z 쩫Z.~if#":2w7|I.qLC{MxaCWsTwr ]t[eKx:\` (D@H/iQݕMG[kwDWDd:o,zRdg-OAΤ2ŞxEKh5]Le% 8a-ʰB8CC(0Oc2EæSU^/֐(S ݷSŴЙ.@_iYsw:U 6 |a )=6ws| ZQKq4 &.ş`I%D~0;r+yz/L-ݹ#(>e5u̹> P[R6Jd!{M4nXC%k8;K)ͺԯWKS1RQx6_C>mLґ͍ݏ;SD*>ybŤJ _HE5Wsp}XֵSہkuhV7 Ғ,AYˑ.O :5k4$޵P8uNKY9+bLDG)m``>P*DKe͛ߛh ^o$"5lOpnUSU=#sT񗚞r,Z,\lKSPLiǸpOD_ |]STX6@Xw=vvWz=LU(0ie=Z*$͘HKlQą9PV%bwr'UQf$t[sedh~o9~{_&䣪2'}dKL[C"2r6i鵎"z+:hZJ݅Ed֬(MZ ȼDu7^Dn SC3C~gx}ifƹHSg;zteD@ܟlDPϭHi/&? 7sikG"ެ_!Vzm rS.q8,{vKV핍L`[G]Υ6Os")B 'vs洟s"^19Aʫ\܁Tv`AM'$0CWe4UsatA!8jjgGX< d+Գ 6XQC!S[ U 9r պ¯ɓʠ\ rMӼBg gz[0RWw?mH`md#AU/iw<#ا('k;8Mݬ\`Ydݐ i30xc]Xص?M * d-s=@ޯ;3?'/xvh8ї!Ɗ$ŞEW|QBoR%P4He-*T>P R%1kBgepfWl;b2U1Ɖdb Op;*TbŸ ?l$TE.Ǩ3 E4`G1sCу%p"!/L^ Vو)ZKk--#>z:j9U}ӭ-ӎj!q!52w73s`jq]!~b jQϚqL W ]燇0K)1%GT)c~5 c^G_aNF0\oңMl=r6 [nB,h,=0$^Q(N'#OrR4;񘕤*(R]LM6e$9PWU{\Ÿ2&DIQ4oa^U~{WŸz6}>W#^Ѳ^<" #~6jf%d-lq/ʄI?*@YV3nP%eNt §Ͼ2ËKhÇVs%e WH7Nw|<6zGX-NQ;[eq?1|Ҩ /)`C)[zYC%čj .pV#MȓKW:`ϺWlJ 4C"w,ziUyMv˰z4bE4ܮmJ3{+yWs4p{~zB#9;#Co~MрF龘2_{ K$ʧ)"#S;oA\%pb ̐$/E:dfn.y&{2___4{q Yߑ+( cX-8jha]PzMi^(WNƉ:xNYV|R \Cc~!HPX%Nt׵V7czto_3> 6/'s )r_٤)ħK8hZ{>f[d$_V?KP$NwȸZhLmLvԋ2G8 *_h9Um=ldg< W12~"_8ץoTwdci!W/Ob⶿*ҌЇDcxˇNdGEMA q.2އellenQPg"x`q -ͳ92ߵOA=jW" o/aO{S݁.Jh>'2թpeQ-dC/Z Um{1><UZ$8Pd~xOv8x#+8P~EBSm,\\LhxR$i!e ֠Ur+޸\ TypZI=ޅIX ލAЕlѴ.NHi3e`Aִ!r>ݹy7i;l~ lc!/DޅҒқ=6!%rإBx>t3$+K\,kZWgbլPŰ-\fy;xx< IrJp둹=$y3oכ]ܑe̟)VzM@ %wR >0>+.4;cu\ :-?Xf10^dwYX[JDI>2& ʍ`Ҭ FE^-aYIjZro[k"zZKCVʄcN& lĝNkğn;tC\BR~a=$7/0Wz'zd_{+g|(ߺ%ay DL -av$AZ[i+b0lvjn4MQ|NI۸IaU="C$yBPަې(!(]S.թI~xUCJ**G42Es' 8webm~Kn6p`$᧵:e `wW@@c#^N5bxiTI{ 9/τb~:Y0VkE_ap9^T5XTXdepL^"y/;Z#f7.jPUi< TF^azb[#$ GFm>?0͈R٩wI|(S;-[&NkcԒHr /z " PBP'9|=B5p{R1eU?.]+ހa|>\SEB'Lmᔾ Qܣ j>Ee^Oa%PRPd۰3 D栐cVnh?o}d-*O,S3/5j9:&FBd Ge$h9Zy |\gҧLe!Ղ_JߎM' 'RA~8pIés 3b\:C>$9 : $ajPa,v׫m* q=ANHRC}91U}\$gPP-$; j =h1X5Ɏ<}LOf,RdVCstI>(s,в8# #HHnBj g sl蘧%_j(+Nfw鵤)~rB!ıb*|q*183&)0[Q_أl'EU &a1rϾŭ#x2= kV*Gl\!?҅ŕ;~I+^9nOcf,g 1GX0NQA2.3EoLK) S"ނŠ !R_Sc%՘SCRPq31c?D PW ACO {ͿITȕ?NƗ(,>H!*zN-T%!^ d4٣%R1$܋awSX|N 'zCAr-M(Yj}+: n j>S79/&1o`c+R\l7V+AnNոV|R'`{c˅8Z朄5Lstj@ZMdU0aVbJVY|[〢 (%I U ASm>w-;ncl{!Bچrz {}Rp=7AQkO1",@x6 , ߋj $#U㰺Y}'~m5KZ- ZUkTʓ_+~i?3݂ %.l_I<}Kny6% &T[;Z|Gu(#lؠ}+'dn0EU/,jN'}'?LLv@*l쒫k-@A3i_Kr,[3I8ßwF̈́呂H}iW\OWՂ082L^䣉- <'F&%l[26w)Nl*'nt!eA]c^;WP(F /žySy"x3tZkq9!`esT0|L81N(zZ,YNɄ[u qBbE $r34:Ba:+wͭdEDc_9{hr!q5]Hs2qf ~J.rRoyq[Pa%|+:(*,BVHTB͋ߞˉ?b˖"͠l-l[~^X>S^B aP<6D|ӄ*is|ߗ!{wk)rSxiT?E}$+ܕ٘_.Q:Gb HWfe8O]*տb,Rsc}yj|_-5څ23W&OiaO.嶐>x;[8uV=P oFYEMd/ 0ќ2aX PnVguIZT|4!mD";S2i)˓  Yx&ȩ<&t){7&r&jx\ώʓɢ .̼:"$>| "nLX",X($0t;7&H6O1+ց-b#H¦Ebɐ4̲X|ش:6χN"@Sa1|/{M 0Ɂz" /#kHI4Ok@C[HEH]O1Vkם3#F,/x0ս`ѵb63ʼ`RFUvcp\?"pw@ Ls Ճ$7֢&E]Det65u;*c'>QCȼGUlzbG"3,ODV &t1[9BFDy¤«n!O( qANVԆA>7ICϛ~PA"TIkO c|Sck㗃vV.eKsopZi%r;e)=B 5-@1D$)KEŮ}筙{ NSh}n.-Xi2ìg&T KCb˕G*zLtFEơа8^=4ׅykzfLsfcTubx.9go\=;rL<>R%eULJ3TĻB1 s'Cgug1ײϗ`JroUޡSUC_Q>k C@J0|as\b#p9{|GSA" @)5p5fc犪ǦB'[G%$nḒb` u>=LIG c?4ln:+h )*Pn(i\>}$2yF(T偡U:lq<%۬y,QJfqn\`%FYnlsH#C7^d\F|**tbXRIb8XeH=*:9ǻSόzcoa,I/8/iU1jD_4.D4=Kr,+fD) LOZbo`[RᛴlxeӅÆǣ [yҙ#_ \SB<CvceJ=u`@vZ`I Vi, pe?u%D,jx/udus."Sٍ*ϸs?R4X-(ucl ZsNObPBqKܧs:ր9?W!<]'S܁{ǖVE1 z>|7B̷-(<$I"0FpUZoնy{],Y=vĘ]:)?sWEwPc iCՕ4e+Ƚh hiWմ$E<}l,dl"lC'&("t( A\ %DS''0ʰ(_ؑX"P /(AK8{ KE{:خ,ڇYtO'P"t=5jN<Fh;]c^pr(s0`ollxt82 MPF6 '#D߲fm.V(>D>ʹ!.%X>c0͂' 3F ߗqH|5$Qi>~^AV,hE26z5+}:F Fuw BDyt{Շr:f15Q{MuHQlBA|}Ra@,N yøVM?)ȣI#Bt$g3r%.=pZj`U$0o4"rUO i @{u.\uyeHWuw9E}qdg3ԇ\hoG<J\hcrpvvbtzOJ@&п&# P2`/")_Q7{x5&-bo}ɩ4݈.p3=s;+<$H}C# PI [)VX/8\vV9Ys(ZNRRR0671tsXE.#~J6 kyVI+tAQv*w:= at ܷl6I#Q(|ߌ@B}!QU| gM.2^0 |ͭ$!,.7QKquɥgݛnE2I YSigOݛGy؂RèQHb rDw;׹$Mym2oo:n}W\XQ5q}y!EMn̗g|`I9AjC5X{YHSjK}-$)>!|iodլ2&2啯4ZOO6Ku>%y^2ZAĥ\4<(D⥲u 3y<>,,$+B8s9tX{ݒB3H`b HGЪQĜfh||% ݁CϭIe! ^!"Yě :bNi%T_ܬ@S@TV LC䍁hKS C|ȠN&gOz6vkiWBmCغ9`4B0Q *)@#$w{J=gu m}Uul} >W) 4Κ13oJ, J\l^ jhQ lHm}G cs|(r?"\e*{/!.hD"By Jt\ڢ$ӵ;持,րcufoWն=b%~;٣Д%A xFlgq5R^ ANYe;錠BvtmվV;B*X+n@8g4N92]}M ~^7?Ѕۗff ~ b]RwB@VYcpy"~#K Cx06rD2.v(&׋ =V+ALx@}\M=J[atq)Uw)"yG/dc+=EOHd9g^]6)%Z rb%7&䨠CE/zZ 73lTAup7R~tG8 *:*TAO hGIuU-ѽuOss>n.RܷpnK ϬChThS`={rGu= 6 (hJ <[vX}{W:ZTڦ꼐u n*%qx` vǀݩJcBn#klo; 3z"NT1pλU./&\O) vƥ' :廚F~Fe GS-Mr6V2e&r:ԋآ4y^x"|f }(~;g1޿o.BIë\=t,= HRT ؚ'';*ILb.7'HЅ.mN$Fign38xv>tOE Dd(f1ܱ~ۓ64wS p-'8T;,ұ_e3 'Q %sÞ /׻W,/n 'KhLް=ސ) P)3g-A44|_@/8j&H{<zig12'jG_̑~[$tXk B/vX,saY[]&sx@\9G`Ƒ]sgޤuw6[ `S`Q0RA1lDt.oc۝>]~:_1 ׊،v؀("A1yȱ|c(R:钓a~4SɂW^4rJ$"pu>IoSya=86VjړPO [(M44:'? őޡPВ UzvT[Je{1'jhVwZEb WarUXT)4mc,Z3J[\@s6V-As?-Dݺd]ghZPr E-}(|qc,jh?1nseV%\= LÃ#{z4|`"᧪ٸ+4cC ܛĄY)bHcekG{7|x4ڑ^W9&B6R;sLIĖPdkDxjWܼ,7 DP*  TnIp81Z]web_ -I#K\>C q77Pw DCў(p&{0+ ѱ7Fj%ĝE{mqjӍb~f?5C iPW{lAYb*2Zs/4ނAXz#% wF.z Ԗkd56iJ.3I݉=ѝЕHʼnQXr~}{)7Ǩ@y"a⢀v:rn<5z}ުB_M gT\r̢MѠcfpAlK-Dh,c!O91" 2DSQE`ZU̳ǛtBh)N1цk.#@NGi3l$y_}D< iB).`fǛL `B+iܲT/ U}$сдTٺٲК!Gn/K{lKx:U-nQlD iKcmRQRn%Pt_d3 &WW9Q:s`UJNߝ}Yü0PP{W;A$t/"؈sX>dX*"#]B^uTaeTS:E<%c# U*ѐ #)~"O=qUL'[>yf.3VZYܸzt˩,) RPg:@ׇ&[۟Z&D )b.‹4-m;@|59 :Ow\rmo9m5 XS{CB9KI 7%ŊJ{ M3ty++ =YIR> I Ϯb\=bD5Uw4DV@l@ ?2* v>\dVrIyv@=ބ4`%(ݢ[N"Ӭ{"iOw -՘9J6- 8K!A5͉KddW{Jt7z_v7?/G8HױɈ̊,1?k@c}[#2vٖp^wkJ3K=)ޠV)Ƙ[еL@p!S`²l~+ڼ LyJ%N{H8:7[/*wB)sJY;%.'vC@QK Im/108e,d|>R"\ȯ?WB6#S& ֈnEX0}8c|7?$w 5mTۼ3Itn?#93QH='Ԩ#D`E3㧙L''EC=#B67eJw3GB?v Kk c, %m`e |A'ժO`>r 8(!X)k,1ND͉$).1ےZ8GMf'P6N22}Vװ'ȰsׁRZ1!nF1S= YCU@anw3ОrFr\5Q'dkб~MKCiP@؜\ o&G ;U LQt7תRjKaP SoM=Eď}{1Z S'[|Zz9My52>H/޳8 S0֚ID2̌Q^ol,G(1X7t~߉Mh)Dh`rB奨^c%d(8(4F$eW5-<}YHZ !?ި=~CKϠSDՀZ F=J[%UD&>'z''`E!y/b4J${=1uT]s*9s4]cCl])}p ye-Wrsbr[uP WOg}4 8Q߂o|УC[D]䛜zVg؟6`"$Puk찴!><0#SPkt_{F,0?UF,B4gxh 9IVԚ",Qq&iC^?[RbpF~W/0n`"=+&yMC<ב9@_>5:‹aH]7ZvHk}owηcܱ'j%3Ԗ3"~v~?SPh-<*wNyP 0HZD)A! pg\>Euh i9 JUjHbGG/sa@.G='dPSDMCܽ)C@X\;Q'?dZR_QkMNa'&i#zՄ< Ob`/m*Z3n#0ǰV,6$ymoƆҊB 1_2/N6MgsG4"\!yN/G[Ŗqbm6TJ(x]`%6]-p3 'wNwzTn! ;wZSI]PgKG$75AHs’iUv"7eډ0,EIUq.v 1WrљC[Pr9_ۜr{RQuɓ6H|rTՒ~ͥYv8d2}:|*ϓ}v&z`P 2v=cL9m1[:Hb]p2Y,rB&my.vÜKjNLHRN?UIzK8Y8 sdFv&bTvѵ֓2ՎL &&r6bqZ->bc ) |]5g}3H<]S9Q;VI?SDKE?A bmdrb =2Hc ^%%f@cNON ̖"TUs$,JcGfTLq_O#&J!-V =Sax64Q m"x`VLΊ;]TLm%g燊w?Mf䝢ƸO>6ɶ\c0#j ٫km|&\Tq741fXx'xEmYPlr)Mm%7},kTO"."3ڟ`:n̪-ݚ^ Ot,)DGĻGǰ ׁiIC4*P\eΠ#jt LQUؘS v>~¤&I1uWWYX D)`q$£!L`gb .K:E݂G|d>Ó[r l2aL` Vz>M(D9v+$pUoDty#}.vO GאJ3?E\?g01%7O*.B8ɂ?՘󝺺&PZ4CVBRɐ7ܰņW['*1]#Njn.g7)N'fY# cģmO#]M] @Ĥ{d