Changes with v1.0.0 *) Add ScepRenewal to control whether renewal is supported for the given certificate authority. [Graham Leggett] *) Remove SHA1 from GetCACaps. [Graham Leggett] *) Pass the challengePassword as a proof of possession in PkcsReq messages. [Graham Leggett] *) Accept signed renewals submitted via PkcsReq in addition to RenewalReq. [Graham Leggett] *) Update messageTypes to be consistent with RFC8894, add RenewalReq support. [Graham Leggett] Changes with v0.2.4 *) Use the AP_DECLARE_MODULE() macro so that per-module logging works properly. [Graham Leggett] *) If there is no messageData to be transmitted, the entire pkcsPKIEnvelope MUST be omitted. [Graham Leggett] *) Encrypt responses with AES instead of DES3. [Graham Leggett] *) Add a temporary signature to the certificate sign request that is passed for signing. [Graham Leggett] *) Change the order of processing PKIOPeration requests so that PKCS7 POST bodies are parsed first before interpreting a message parameter. This works around clients that send bogus message values along with POST bodies. [Graham Leggett] Changes with v0.2.3 *) Use autoconf to detect X509_REQ_set1_signature. [Graham Leggett] *) RPM spec file: build natively on Redhat, SUSE and Mageia. [Graham Leggett] Changes with v0.2.2 *) Add openssl_setter_compat.h to the distribution. [Dirk-Willem van Gulik] Changes with v0.2.1 *) Initial Redwax release. *) Minor tweak to build with OpenSSL 1.1.0-1.1.1 [Dirk-Willem van Gulik] Changes with v0.2.0 *) Add support for the expression API, and remove the obsolete CGI options. [Graham Leggett] *) Add a cleanup for the EVP key. [Graham Leggett] *) PKIOperation request bodies are no longer application/x-pki-message, be specific about application/x-www-form-urlencoded when we parse the form. Clarify the error messages returned by PKIOperation to indicate the operation being performed. [Graham Leggett] *) Honour CFLAGS during build. [Graham Leggett] *) Initial import of mod_scep. [Graham Leggett]