Remove redundant check (already performed the line before)

mod_session_crypto: Make sure we try to initialise twice, so we don't succeed in configtest but fail on restart.

Add exec: callout support for mod_session_crypto

Use %pm available since apr 1.3 instead of an extra call to apr_strerror

mod_session_crypto: Protect ourselves against underlying libraries who fail to load without providing an error message of their own.

Add lots of unique tags to error log messages

mod_session: Use apr_status_t as a return code across the mod_session API, clarify where we ignore errors and why.

mod_session_crypto: Fix a pool lifetime problem when reading from SessionCryptoPassphraseFile.

Remove some more now redundant log prefixes

mod_session_crypto: Add a SessionCryptoPassphraseFile directive so that the administrator can hide the keys from the configuration.

Remove unused variables.

Remove spurious parsing of the cipher parameter.

mod_session_crypto: Refactor to support the new apr_crypto API.

Fix build with recent apr_crypto API change

mod_session_crypto: Use the apr v2.0 crypto interface, which has been backported to apr-util v1.4.

Remove the references to apr_crypto_t where apr_crypto_block_t is already present.

Add API protection against the deprecated v1.4 apr_crypto API.

Reorder the parameters as per the updated apr v2.0 apr_crypto API.

Use namespace protection on mode and type constants.

Use ap_state_query() to fix many modules that were not correctly initializing if they were not active during server startup but got enabled later during a graceful restart (in which case they need to do all work during a single config run).

break some very long lines, no code change

Fixed compile-time error message. We test for APU, thus the error statement should tell same; APR and APU are independent before APR 2.0.

Use the new APLOG_USE_MODULE/AP_DECLARE_MODULE macros everywhere to take advantage of per-module loglevels

Work around crypto API incompatibilities. The API in APR 2 is different from the API in APU 1.4/1.5.

use separate #error message when APR[-Util] is of a valid version but wasn't built with crypto support

Correctly reference the apr_crypto_t context as a context and not a factory, using the new name apr_crypto_make.

mod_session_crypto: Sanity check should the potentially encrypted session cookie be too short.

mod_session_crypto: Ensure that SessionCryptoDriver can only be set in the global scope.

mod_session_crypto: Rewrite the session_crypto module against the apr_crypto API.

Insert prototypes to remove compiler warnings. [Joe Orton]

Remove all references to CORE_PRIVATE.

mod_session_crypto: Initialise SSL in the post config hook.

Fix the defaults, which currently override the config instead of default the config. [Ruediger Pluem]

Remove an unnecessary config structure lookup during encrypt and decrypt. [Ruediger Pluem]

Clarify the operation of the SessionCryptoPassphrase directive as raised by rpluem. When SessionCryptoCertificateFile is set, asymmetrical encryption will be used, and SessionCryptoPassphrase will be interpreted as the passphrase protecting the private key. When SessionCryptoCertificateFile is not set, symmetrical encryption is used, and SessionCryptoPassphrase will contain the key to use. Make sure that the engine parameter is properly passed into the crypto functions, and fix a missing cleanup on an error case.

mod_session_crypto: Add a session encoding implementation capable of encrypting and decrypting sessions wherever they may be stored. Introduces a level of privacy when sessions are stored on the browser.