apache
diff --git a/‎docs/man/httpd.8‎
Lines changed: 21 additions & 2 deletions b/‎docs/man/httpd.8‎
Lines changed: 21 additions & 2 deletions
diff --git a/‎docs/manual/configuring.html.en.utf8‎
Lines changed: 15 additions & 10 deletions b/‎docs/manual/configuring.html.en.utf8‎
Lines changed: 15 additions & 10 deletions
diff --git a/‎docs/manual/expr.html.en.utf8‎
Lines changed: 3 additions & 1 deletion b/‎docs/manual/expr.html.en.utf8‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎docs/manual/mod/core.html.en.utf8‎
Lines changed: 18 additions & 13 deletions b/‎docs/manual/mod/core.html.en.utf8‎
Lines changed: 18 additions & 13 deletions
diff --git a/‎docs/manual/mod/mod_http2.html.en.utf8‎
Lines changed: 50 additions & 1 deletion b/‎docs/manual/mod/mod_http2.html.en.utf8‎
Lines changed: 50 additions & 1 deletion
@@ -19,7 +19,7 @@
 .el .ne 3
 .IP "\\$1" \\$2
 ..
-.TH "HTTPD" 8 "2018-09-27" "Apache HTTP Server" "httpd"
+.TH "HTTPD" 8 "2025-08-29" "Apache HTTP Server" "httpd"
 
 .SH NAME
 httpd \- Apache Hypertext Transfer Protocol Server
@@ -92,7 +92,7 @@ Show the settings as parsed from the config file (currently only shows the virtu
 Skip document root check at startup/restart\&.  
 .TP
 \fB-t\fR
-Run syntax tests for configuration files only\&. The program immediately exits after these syntax parsing tests with either a return code of 0 (Syntax OK) or return code not equal to 0 (Syntax Error)\&. If -D \fIDUMP\fR_\fIVHOSTS \fRis also set, details of the virtual host configuration will be printed\&. If -D \fIDUMP\fR_\fIMODULES \fR is set, all loaded modules will be printed\&. If -D \fIDUMP\fR_\fICERTS \fR is set and mod_ssl is used, configured SSL certificates will be printed\&. If -D \fIDUMP\fR_\fICA\fR_\fI_CERTS \fR is set and mod_ssl is used, configured SSL CA certificates and configured directories containing SSL CA certificates will be printed\&.  
+Run syntax tests for configuration files only\&. The program immediately exits after these syntax parsing tests with either a return code of 0 (Syntax OK) or return code not equal to 0 (Syntax Error)\&. This option can be combined with various \fI-D DUMP_\&.\&.\&.\fR arguments to print information about the configuration, as listed below\&.  
 .TP
 \fB-v\fR
 Print the version of \fBhttpd\fR, and then exit\&.  
@@ -117,3 +117,22 @@ The \fIname\fR of the Apache httpd service to signal\&.
 \fB-w\fR
 Keep the console window open on error so that the error message can be read\&.  
 
+.SH "DUMPING CONFIGURATION DATA"
+ 
+.PP
+The following options can be combined with \fI-t\fR to show information about the configuration:
+ 
+ 
+.TP
+\fI-D DUMP_VHOSTS\fR
+print details of the virtual host configuration\&.  
+.TP
+\fI-D DUMP_MODULES\fR
+print (human-readable) details of all loaded modules\&.  
+.TP
+\fI-D DUMP_MODULES\fR \fI-D DUMP_MODULE_DATA\fR
+print details of all loaded modules in a structured (TOML) format\&.  
+.TP
+\fI-D DUMP_CERTS\fR
+If mod_ssl is loaded, print details of configured SSL/TLS certificates\&.  
+ 
@@ -68,19 +68,24 @@ Server.</p>
     <p>httpd configuration files contain one directive per line.
     The backslash "\" may be used as the last character on a line
     to indicate that the directive continues onto the next line.
-    There must be no other characters or white space between the
-    backslash and the end of the line.</p>
+    To be interpreted as such a continuation, there must be no
+    other characters or white space between the backslash and the
+    end of the line. </p>
 
-    <p>Arguments to directives are separated by whitespace. If an
+    <p>Lines that begin with the hash character "#" are considered
+    comments, and are ignored. Comments may <strong>not</strong> be
+    included on the same line as a configuration directive, including
+    at the start of a line that has been continued as described in the
+    preceding pargraph.
+    </p>
+
+    <p> White space occurring before a directive is ignored, so
+    you may indent directives for clarity. Blank lines are also ignored.
+    Arguments to directives are separated by whitespace. If an
     argument contains spaces, you must enclose that argument in quotes.</p>
 
     <p>Directives in the configuration files are case-insensitive,
-    but arguments to directives are often case sensitive. Lines
-    that begin with the hash character "#" are considered
-    comments, and are ignored. Comments may <strong>not</strong> be
-    included on the same line as a configuration directive.
-    White space occurring before a directive is ignored, so
-    you may indent directives for clarity. Blank lines are also ignored.</p>
+    but arguments to directives are often case sensitive. </p>
 
     <p>The values of variables defined with the <code class="directive"><a href="./mod/core.html#define">Define</a></code> or of shell environment variables can
     be used in configuration file lines using the syntax
@@ -234,7 +239,7 @@ var comments_identifier = 'http://httpd.apache.org/docs/trunk/configuring.html';
     }
 })(window, document);
 //--><!]]></script></div><div id="footer">
-<p class="apache">Copyright 2023 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
+<p class="apache">Copyright 2025 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
 <p class="menu"><a href="./mod/">Modules</a> | <a href="./mod/quickreference.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="./glossary.html">Glossary</a> | <a href="./sitemap.html">Sitemap</a></p></div><script type="text/javascript"><!--//--><![CDATA[//><!--
 if (typeof(prettyPrint) !== 'undefined') {
     prettyPrint();
 
@@ -555,6 +555,8 @@ DIGIT       ::= &lt;any US-ASCII digit "0".."9"&gt;</pre>
         <td>replace(string, "from", "to") replaces all occurrences of "from"
             in the string with "to". The first parameter must not be a literal string.
             </td><td /></tr>
+<tr><td><code>escapehtml</code></td>
+        <td>Escape a HTML string</td><td /></tr>
 </table>
 
     <p>The functions marked as "restricted" in the final column are not 
@@ -740,7 +742,7 @@ var comments_identifier = 'http://httpd.apache.org/docs/trunk/expr.html';
     }
 })(window, document);
 //--><!]]></script></div><div id="footer">
-<p class="apache">Copyright 2023 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
+<p class="apache">Copyright 2025 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
 <p class="menu"><a href="./mod/">Modules</a> | <a href="./mod/quickreference.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="./glossary.html">Glossary</a> | <a href="./sitemap.html">Sitemap</a></p></div><script type="text/javascript"><!--//--><![CDATA[//><!--
 if (typeof(prettyPrint) !== 'undefined') {
     prettyPrint();
 
@@ -551,9 +551,8 @@ NoDecode option available in 2.3.12 and later.</td></tr>
          to remain <em>set</em> while allowing any others to be set.
       </p></div>
 
-      <div class="example"><p><code>
-      AllowOverride Options=Indexes,MultiViews
-      </code></p></div>
+      <pre class="prettyprint lang-config">AllowOverride Options=Indexes,MultiViews</pre>
+
       </dd>
     </dl>
 
@@ -1288,7 +1287,10 @@ version 2.3.9.</td></tr>
     By default, when the handling of a request requires no access
     to the data within a file -- for example, when delivering a
     static file -- Apache httpd uses sendfile to deliver the file contents
-    without ever reading the file if the OS supports it.</p>
+    without ever reading the file if the OS supports it. If SSL/TLS is used
+    for the connection, or if any <a href="../filter.html">output filter</a>
+    is configured which inspects or modifies the output, the sendfile mechanism
+    will not be used regardless of this configuration option.</p>
 
     <p>This sendfile mechanism avoids separate read and send operations,
     and buffer allocations. But on some platforms or within some
@@ -3051,7 +3053,7 @@ from the client</td></tr>
     <p>Example:</p>
 
     <pre class="prettyprint lang-config"># Limit of 1 MiB
-LimitXMLRequestBody 1073741824</pre>
+LimitXMLRequestBody 1048576</pre>
 
 
 
@@ -5120,13 +5122,16 @@ certain events before failing a request</td></tr>
     has been specified by this directive. The intent is to limit access to
     paths derived from untrusted inputs.</p>
 
-    <div class="example"><p><code>
-    UNCList example.com other.example.com
-    </code></p></div>
+    <pre class="prettyprint lang-config">UNCList example.com other.example.com</pre>
+
 
     <div class="warning"><h3>Security</h3>
-    <p>UNC paths accessed outside of request processing, such as during startup,
-    are not necessarily checked against the hosts configured with this directive.</p>
+        <p>The values specified by this directive are only checked by some
+        components of the server, prior to accessing filesystem paths that
+        may be inadvertently derived from untrusted inputs. </p>
+        <p> Windows systems should be isolated at the network layer from
+        making outbound SMB/NTLM calls to unexpected destinations as a
+        more comprehensive and pre-emptive measure.</p>
     </div>
 
     <div class="warning"><h3>Directive Ordering</h3>
@@ -5259,15 +5264,15 @@ port</td></tr>
       <li>Parsed port from <code>Host:</code> header</li>
       <li>Physical port (only with <code class="directive">UseCanonicalPhysicalPort</code> ON)</li>
       <li>Port provided in <code class="directive"><a href="#servername">Servername</a></code></li>
-      <li>Default port</li>
+      <li>Default port for the scheme/protocol (such as 80 or 443)</li>
      </ol>
      </dd>
      <dt><code>UseCanonicalName On</code></dt>
      <dd>
      <ol>
       <li>Port provided in <code class="directive"><a href="#servername">Servername</a></code></li>
       <li>Physical port (only with <code class="directive">UseCanonicalPhysicalPort</code> ON)</li>
-      <li>Default port</li>
+      <li>Default port for the scheme/protocol (such as 80 or 443)</li>
      </ol>
      </dd>
     </dl>
@@ -5455,7 +5460,7 @@ var comments_identifier = 'http://httpd.apache.org/docs/trunk/mod/core.html';
     }
 })(window, document);
 //--><!]]></script></div><div id="footer">
-<p class="apache">Copyright 2024 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
+<p class="apache">Copyright 2025 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
 <p class="menu"><a href="../mod/">Modules</a> | <a href="../mod/quickreference.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="../glossary.html">Glossary</a> | <a href="../sitemap.html">Sitemap</a></p></div><script type="text/javascript"><!--//--><![CDATA[//><!--
 if (typeof(prettyPrint) !== 'undefined') {
     prettyPrint();
 
@@ -81,7 +81,9 @@
 <li><img alt="" src="../images/down.gif" /> <a href="#h2earlyhint">H2EarlyHint</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2earlyhints">H2EarlyHints</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2maxdataframelen">H2MaxDataFrameLen</a></li>
+<li><img alt="" src="../images/down.gif" /> <a href="#h2maxheaderblocklen">H2MaxHeaderBlockLen</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2maxsessionstreams">H2MaxSessionStreams</a></li>
+<li><img alt="" src="../images/down.gif" /> <a href="#h2maxstreamerrors">H2MaxStreamErrors</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2maxworkeridleseconds">H2MaxWorkerIdleSeconds</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2maxworkers">H2MaxWorkers</a></li>
 <li><img alt="" src="../images/down.gif" /> <a href="#h2minworkers">H2MinWorkers</a></li>
@@ -372,6 +374,28 @@
                 response data is available, smaller frames will be sent.
             </p>
 
+</div>
+<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
+<div class="directive-section"><h2><a name="H2MaxHeaderBlockLen" id="H2MaxHeaderBlockLen">H2MaxHeaderBlockLen</a> <a name="h2maxheaderblocklen" id="h2maxheaderblocklen">Directive</a> <a title="Permanent link" href="#h2maxheaderblocklen" class="permalink">&para;</a></h2>
+<table class="directive">
+<tr><th><a href="directive-dict.html#Description">Description:</a></th><td>Maximum size of response headers</td></tr>
+<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>H2MaxHeaderBlockLen <em>n</em></code></td></tr>
+<tr><th><a href="directive-dict.html#Default">Default:</a></th><td><code>H2MaxHeaderBlockLen 0</code></td></tr>
+<tr><th><a href="directive-dict.html#Context">Context:</a></th><td>server config, virtual host</td></tr>
+<tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Extension</td></tr>
+<tr><th><a href="directive-dict.html#Module">Module:</a></th><td>mod_http2</td></tr>
+<tr><th><a href="directive-dict.html#Compatibility">Compatibility:</a></th><td>Available in version 2.5.1 and later.</td></tr>
+</table>
+            <p>
+                <code class="directive">H2MaxHeaderBlockLen</code> sets the limit
+                on the overall size of response headers. A setting of 0
+                will leave this at the default of 64 KB in nghttp2.
+            </p>
+            <p>
+                Responses with headers larger than this (adding all headers)
+                will not be processed and result in a reset of the stream.
+            </p>
+        
 </div>
 <div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
 <div class="directive-section"><h2><a name="H2MaxSessionStreams" id="H2MaxSessionStreams">H2MaxSessionStreams</a> <a name="h2maxsessionstreams" id="h2maxsessionstreams">Directive</a> <a title="Permanent link" href="#h2maxsessionstreams" class="permalink">&para;</a></h2>
@@ -391,6 +415,31 @@
             <div class="example"><h3>Example</h3><pre class="prettyprint lang-config">H2MaxSessionStreams 20</pre>
 </div>
 
+</div>
+<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
+<div class="directive-section"><h2><a name="H2MaxStreamErrors" id="H2MaxStreamErrors">H2MaxStreamErrors</a> <a name="h2maxstreamerrors" id="h2maxstreamerrors">Directive</a> <a title="Permanent link" href="#h2maxstreamerrors" class="permalink">&para;</a></h2>
+<table class="directive">
+<tr><th><a href="directive-dict.html#Description">Description:</a></th><td>Maximum amount of client caused errors to tolerate</td></tr>
+<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>H2MaxStreamErrors <em>n</em></code></td></tr>
+<tr><th><a href="directive-dict.html#Default">Default:</a></th><td><code>H2MaxStreamErrors 8</code></td></tr>
+<tr><th><a href="directive-dict.html#Context">Context:</a></th><td>server config, virtual host</td></tr>
+<tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Extension</td></tr>
+<tr><th><a href="directive-dict.html#Module">Module:</a></th><td>mod_http2</td></tr>
+<tr><th><a href="directive-dict.html#Compatibility">Compatibility:</a></th><td>Available in version 2.5.1 and later.</td></tr>
+</table>
+            <p>
+                <code class="directive">H2MaxStreamErrors</code> sets the maximum amount
+                of tolerated HTTP/2 stream errors caused by the client.
+                When exceeding this limit, the connection will be closed.
+                Stream errors are protocol violations on an individual HTTP/2
+                stream that do not necessitate a connection close by the
+                protocol specification, but can be a sign of malicious
+                activity by a client.
+            </p>
+            <p>
+                Set to 0 to tolerate faulty clients.
+            </p>
+        
 </div>
 <div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
 <div class="directive-section"><h2><a name="H2MaxWorkerIdleSeconds" id="H2MaxWorkerIdleSeconds">H2MaxWorkerIdleSeconds</a> <a name="h2maxworkeridleseconds" id="h2maxworkeridleseconds">Directive</a> <a title="Permanent link" href="#h2maxworkeridleseconds" class="permalink">&para;</a></h2>
@@ -1092,7 +1141,7 @@ var comments_identifier = 'http://httpd.apache.org/docs/trunk/mod/mod_http2.html
     }
 })(window, document);
 //--><!]]></script></div><div id="footer">
-<p class="apache">Copyright 2023 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
+<p class="apache">Copyright 2025 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p>
 <p class="menu"><a href="../mod/">Modules</a> | <a href="../mod/quickreference.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="../glossary.html">Glossary</a> | <a href="../sitemap.html">Sitemap</a></p></div><script type="text/javascript"><!--//--><![CDATA[//><!--
 if (typeof(prettyPrint) !== 'undefined') {
     prettyPrint();