From d419a21682a1db1fe4274dbd798b646240c3d637 Mon Sep 17 00:00:00 2001
From: brectanus <brectanus@9017d574-64ec-4062-9424-5e00b32a252b>
Date: Fri, 15 Aug 2008 20:25:27 +0000
Subject: [PATCH] Update CHANGES. Sync up docs.

---
 CHANGES                               | 12 ++++++++++--
 doc/modsecurity2-apache-reference.xml | 28 ++++++++++++++++++++++++---
 2 files changed, 35 insertions(+), 5 deletions(-)

diff --git a/CHANGES b/CHANGES
index 25868aa8..e83c35f3 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,7 +1,15 @@
 31 Jul 2008 - trunk
-=======
+-------------------
 
- * Implement cssDecode.
+ * Allow for disabling request body limit checks in phase:1.
+
+ * Added transformations for processing parity for legacy protocols ported
+   to HTTP(S): t:parityEven7bit, t:parityOdd7bit, t:parityZero7bit
+
+ * Added t:cssDecode transformation to decode CSS escapes.
+
+ * Now log XML parsing/validation warnings and errors to be in the debug log
+   at levels 3 and 4, respectivly.
 
  * Persistent counter updates are now atomic.
 
diff --git a/doc/modsecurity2-apache-reference.xml b/doc/modsecurity2-apache-reference.xml
index 55d6c0dd..289c3c72 100644
--- a/doc/modsecurity2-apache-reference.xml
+++ b/doc/modsecurity2-apache-reference.xml
@@ -4,7 +4,7 @@
   Manual</title>
 
   <articleinfo>
-    <releaseinfo>Version 2.6.0-trunk (July 31, 2008)</releaseinfo>
+    <releaseinfo>Version 2.6.0-trunk (August 15, 2008)</releaseinfo>
 
     <copyright>
       <year>2004-2008</year>
@@ -3853,6 +3853,28 @@ SecRule <emphasis>XML:/xq:employees/employee/name/text()</emphasis> Fred \
       to forward slashes.</para>
     </section>
 
+    <section>
+      <title><literal>parityEven7bit</literal></title>
+
+      <para>This function calculates even parity of 7-bit data replacing
+      the 8th bit of each target byte with the calculated parity bit.</para>
+    </section>
+
+    <section>
+      <title><literal>parityOdd7bit</literal></title>
+
+      <para>This function calculates odd parity of 7-bit data replacing
+      the 8th bit of each target byte with the calculated parity bit.</para>
+    </section>
+
+    <section>
+      <title><literal>parityZero7bit</literal></title>
+
+      <para>This function calculates zero parity of 7-bit data replacing
+      the 8th bit of each target byte with a zero parity bit which allows
+      inspection of even/odd parity 7bit data as ASCII7 data.</para>
+    </section>
+
     <section>
       <title><literal>removeNulls</literal></title>
 
@@ -5469,7 +5491,7 @@ SecRule REQUEST_HEADERS:Ip-Address "!<emphasis>@streq %{TX.1}</emphasis>"</progr
 SecRule REQUEST_HEADERS:Content-Type ^text/xml$ \
     phase:1,t:lowercase,nolog,pass,ctl:requestBodyProcessor=XML
 SecRule REQBODY_PROCESSOR "!^XML$" nolog,pass,skipAfter:12345
-SecRule XML "<emphasis>@validateDTD /path/to/apache2/conf/xml.dtd</emphasis>,id:12345"</programlisting>
+SecRule XML "<emphasis>@validateDTD /path/to/apache2/conf/xml.dtd</emphasis>" "deny,id:12345"</programlisting>
     </section>
 
     <section>
@@ -5484,7 +5506,7 @@ SecRule XML "<emphasis>@validateDTD /path/to/apache2/conf/xml.dtd</emphasis>,id:
 SecRule REQUEST_HEADERS:Content-Type ^text/xml$ \
     phase:1,t:lowercase,nolog,pass,ctl:requestBodyProcessor=XML
 SecRule REQBODY_PROCESSOR "!^XML$" nolog,pass,skipAfter:12345
-SecRule XML "<emphasis>@validateSchema /path/to/apache2/conf/xml.xsd</emphasis>,id:12345"</programlisting>
+SecRule XML "<emphasis>@validateSchema /path/to/apache2/conf/xml.xsd</emphasis>" "deny,id:12345"</programlisting>
 
       <para>This operator requires request body to be processed as XML.</para>
     </section>