Skip to content

Releases: icing/mod_md

mod_md v1.1.8

05 Jan 14:55
@icing icing
v1.1.8
bb3d9ba
Compare
Choose a tag to compare
mod_md v1.1.8
  • new configuration directive "MDBaseServer on|off" to allow/inhibit management of the base
    server domains outside VirtualHosts. By default, this is "off", e.g. mod_md will not manage
    certificates or perform https: redirections on the base server. This follows the
    principle of least surprise.
  • Fixed gcc warnings.
Assets 3
Loading

mod_md v1.1.7

02 Jan 15:38
@icing icing
v1.1.7
db80e62
Compare
Choose a tag to compare
mod_md v1.1.7
  • MDMustStaple was unable to create the necessary OpenSSL OBJ identifier on some platforms,
    possibly because this fails if the OID is already configured in openssl.cnf, see
    here.
  • Two memory leaks in cert issuer and alt-names lookup eliminated by Yann Ylavic.
  • Changing MDMustStaple triggers certificate renewal.
Assets 3
Loading

mod_md v1.1.6

27 Dec 09:51
@icing icing
v1.1.6
7ddb138
Compare
Choose a tag to compare
mod_md v1.1.6
  • Fixing a bug when code in assert() checks is not executed.
Assets 3
Loading

mod_md v1.1.5

23 Dec 15:15
@icing icing
v1.1.5
18fbd90
Compare
Choose a tag to compare
mod_md v1.1.5
  • Some attempts at code readability, increased logging level for fallback cert generation that
    was swept under the DEBUG carpet before.
  • More verbosity when not handing out certificates, e.g. mod_ssl asks, but mod_md has no
    idea what it is talking about. Some people report misbehaviour here.
  • Re-enabled support for md_get_credentials() function that was used in older mod_ssl
    patch, so that people with old patched servers get a chance to upgrade.
Assets 3
Loading

mod_md v1.1.4

20 Dec 20:25
@icing icing
v1.1.4
9a32378
Compare
Choose a tag to compare
mod_md v1.1.4
  • When ACME fails to authenticate your domain, the exact server answer is logged
    as error. This helps to find out the reason for the failed challenge, for example
    when ACME reports a 'Timeout' if it could not reach your server. Implements #70.
Assets 3
Loading

mod_md v1.1.3

20 Dec 16:47
@icing icing
v1.1.3
4620857
Compare
Choose a tag to compare
mod_md v1.1.3
  • Fixed wrong mem pool use for auto-added server names.
Assets 3
Loading

mod_md v1.1.2

20 Dec 09:54
@icing icing
v1.1.2
00f3c14
Compare
Choose a tag to compare
mod_md v1.1.2
  • The first configuration check was skipping parts that are needed, especially for new
    MDs, and crash if mod_ssl calls back "too early". Reverting that change.
Assets 3
Loading

mod_md v1.1.1

14 Dec 11:43
@icing icing
v1.1.1
091f418
Compare
Choose a tag to compare
mod_md v1.1.1
  • Fixed backward compaitbility to '<ManagedDomain' configurations, used in pre v1.1.0 versions
    to continue working. Test case added.
  • added httpd version checks to test cases that make use of 2.5.0 mod_ssl features. Tests now
    run clean against a 2.4.30 installation.
Assets 3
Loading

mod_md v1.1.0

11 Dec 13:38
@icing icing
v1.1.0
ba53858
Compare
Choose a tag to compare
mod_md v1.1.0
  • IMPORTANT: name change in configuration directives. The Apache team decided that the current
    names would confuse you, the users, and asked for a change. The old names are still working
    in this version, so you can safely upgrade.
    They will give warnings in the log and will disappear in the immediate future.
    • ManagedDomain is now MDomain
    • <ManagedDomain> is now <MDomainSet>
Assets 3
Loading

mod_md v1.0.7

08 Dec 20:54
@icing icing
v1.0.7
3fdabae
Compare
Choose a tag to compare
mod_md v1.0.7
  • acme now follows "up" link headers to retrieve issuer certificate chain. This
    will lead to shorter chains as the "up" links will stop at the cert that browsers
    trust instead of always going to the topmost root.
    See letsencrypt/boulder#3259
  • Fixed a missing argument in a debug log statement.
  • removed old EXPERIMENTAL code for defaulting to Lets Encrypt staging area.
Assets 3
Loading