CHANGES revision 099c357f282d4aebf2b32264f7dce6ffc0497c37
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk -*- coding: utf-8 -*-
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenkChanges with Apache 2.5.0
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk Christophe Renou, Peter Sylvester]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) htdbm, htpasswd: Don't crash if crypt() fails (e.g. with FIPS enabled).
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Paul Wouters <pwouters redhat.com>, Joe Orton]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_ssl: Add new directive SSLCompression to disable TLS-level
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk compression. PR 53219. [Björn Jacke <bjoern j3e de>, Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk ap_pregcomp() abort if out of memory. This raises the minimum PCRE
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk requirement to version 6.0. PR 53284. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) apxs: Use LDFLAGS from config_vars.mk in addition to CFLAGS and CPPFLAGS.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mpm_event: Fix handling of MaxConnectionsPerChild. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) suexec: Add --enable-suexec-capabilites support on Linux, to use
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk setuid/setgid capability bits rather than a setuid root binary.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) suexec: Add support for logging to syslog as an alternative to logging
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk to a file; configure --without-suexec-logfile --with-suexec-syslog.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_proxy_ajp: Reduce memory usage in case of many keep-alive requests on
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk one connection. PR 52275. [Naohiro Ooiwa <naohiro ooiwa miraclelinux com>]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_proxy: Use the the same hostname for SNI as for the HTTP request when
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk forwarding to SSL backends. PR 53134.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Michael Weiser <michael weiser.dinsnail.net>, Ruediger Pluem]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Matthew Steele <mdsteele google.com>]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_so: If a filename without slashes is specified for LoadFile or
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk LoadModule and the file cannot be found in the server root directory,
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk try to use the standard dlopen() search path. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) various modules, rotatelogs: Replace use of apr_file_write() with
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk apr_file_write_full() to prevent incomplete writes. PR 53131.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: Fix segfault in logging if r->useragent_addr or c->client_addr is
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk unset. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk be compiled by the build compiler instead of the host compiler.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk PR 51257. [Guenter Knauf]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_ssl: Send the error message for speaking http to an https port using
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk HTTP/1.0 instead of HTTP/0.9, and omit the link that may be wrong when
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk using SNI. PR 50823. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_authz_core: Fix parsing of Require arguments in <AuthzProviderAlias>.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk PR 53048. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: Fix error handling in ap_scan_script_header_err_brigade() if there
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk is no EOS bucket in the brigade. Fixes segfault with mod_proxy_fcgi.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk PR 48272. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_proxy_fcgi: If there is an error reading the headers from the
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk backend, send an error to the client. PR 52879. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_rewrite: Fix RewriteCond integer checks to be parsed correctly.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk PR 53023. [Axel Reinhold <apache freakout.de>, André Malo]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_proxy: Add the forcerecovery balancer parameter that determines if
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk recovery for balancer workers is enforced. [Ruediger Pluem]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_proxy: Correctly set up reverse proxy worker. PR 52935.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Petter Berntsen <petterb gmail.com>]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: Add filesystem paths to access denied / access failed messages
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk AH00035 and AH00036. [Eric Covener]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) Fix MPM DSO load failure on AIX. [Jeff Trawick]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: Add the port number to the vhost's name in the scoreboard.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mpm_event: Don't do a blocking write when starting a lingering close
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk from the listener thread. PR 52229. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) core: In maintainer mode, replace apr_palloc with a version that
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk initializes the allocated memory with non-zero values, except if
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_log_config: Check during config test that directories for access logs
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk exist. PR 29941. [Stefan Fritsch]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_authnz_ldap: Don't try a potentially expensive nested groups
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk search before exhausting all AuthLDAPGroupAttribute checks on the
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk current group. PR52464 [Eric Covener]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_policy: Add a new testing module to help server administrators
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk enforce a configurable level of protocol compliance on their
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk servers and application servers behind theirs. [Graham Leggett]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_firehose: Add a new debugging module able to record traffic
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk passing through the server in such a way that connections and/or
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk requests be reconstructed and replayed. [Graham Leggett]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) Event MPM: Reduce locking by using a lock free circular queue.
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) mod_noloris
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) Simple MPM
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk [Apache 2.5.0-dev includes those bug fixes and changes with the
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk Apache 2.4.xx tree as documented below, except as noted.]
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenkChanges with Apache 2.4.x and later:
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenkChanges with Apache 2.2.x and later:
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenk *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
4b8d88eb610aa1e0bb6ec632f792744b3d6b5f22jeff.schenkChanges with Apache 2.0.x and later: