*) mod_md: new features - supports the ACMEv2 protocol - new challenge method 'tls-alpn-01' implemented, needs mod_ssl patch to become available - supports command configuration to setup/teardown 'dns-01' challenges - supports wildcard certificates when dns challenges are configured - ACMEv2 is the new default and will be used on the next certificate renewal, unless another MDCertificateAuthority is configured - challenge type 'tls-sni-01' has been removed as CAs do not offer this any longer - a domain exposes its status at https://<domain>/.httpd/certificate-status - Managed Domains are now in Apache's 'server-status' page - A new handler 'md-status' exposes verbose status information in JSON format - new directives "MDCertificateFile" and "MDCertificateKeyFile" to configure a Managed Domain that uses static files. Auto-renewal is turned off for those. - new MDMessageCmd that is invoked on several events: 'renewed', 'expiring' and 'errored'. New 'MDWarnWindow' directive to configure when expiration warnings shall be issued. - ACMEv2 endpoints use the GET via empty POST way of accessing resources, see announcement by Let's Encrypt: https://community.letsencrypt.org/t/acme-v2-scheduled-deprecation-of-unauthenticated-resource-gets/74380
According to comment in 'magic_rsl_add' and to the way 'magic_rsl_printf' manages its buffer, I think that this memory should be apr_pstrdup'ed.
This has been like that forever, but seems broken to me.
* docs/conf/magic: Allow mod_mime_magic to return "audio/x-wav" for WAV files, and omit returning "audio/unknown" for other RIFF format files. Having a MIME type defined on a continuation line *and* the preceding top-level match breaks mod_mime_magic, which treats the second result "printed" as the MIME encoding. Neither audio/x-wav nor audio/unknown are IANA registered, though Firefox and Chrome both appear to recognize the former. Since the RIFF format can contain non-audio media, returning audio/unknown as a fallback for all RIFF files appears to be bogus anyway.