CHANGES revision 10abdcbd7b30d957d15c61ea8100ba97a627ac95
4d237bbe075b1d2c19428cd954d721d65b31f67cwrowe -*- coding: utf-8 -*-
1a5f954324f2584984fc9cee7a7a8ebe8ef39aeajimChanges with Apache 2.3.3
4cf58054a85830c67dc23890ee613f62e1f7bdc8minfrin *) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
4cf58054a85830c67dc23890ee613f62e1f7bdc8minfrin *) ServerTokens now accepts 'Off' which disables sending of
4cf58054a85830c67dc23890ee613f62e1f7bdc8minfrin Server: header and sets SERVER_SOFTWARE to empty. It also accepts
4cf58054a85830c67dc23890ee613f62e1f7bdc8minfrin 'Set' which allows the user to specify any string as the Server:
4cf58054a85830c67dc23890ee613f62e1f7bdc8minfrin name. [Jim Jagielski]
caaa32f2d2e3b28063c745c2632d3979da7f8326minfrin *) mod_headers: generalise the envclause to support expression
caaa32f2d2e3b28063c745c2632d3979da7f8326minfrin evaluation with ap_expr parser [Nick Kew]
caaa32f2d2e3b28063c745c2632d3979da7f8326minfrin *) mod_cache: Introduce the thundering herd lock, a mechanism to keep
caaa32f2d2e3b28063c745c2632d3979da7f8326minfrin the flood of requests at bay that strike a backend webserver as
e02cb8f5090d904c054633ff33dfd1111e16e404minfrin a cached entity goes stale. [Graham Leggett]
e02cb8f5090d904c054633ff33dfd1111e16e404minfrin *) mod_auth_digest: Fix usage of shared memory and re-enable it.
e02cb8f5090d904c054633ff33dfd1111e16e404minfrin PR 16057 [Dan Poirier]
8a3e2ef19ddfb8addcccdc61da0d1442695a8280rpluem *) Preserve Port information over internal redirects
213e520edc00641400771fc8f90b37a967a2d9ebdirkx *) Proxy: unable to connect to a backend is SERVICE_UNAVAILABLE,
213e520edc00641400771fc8f90b37a967a2d9ebdirkx rather than BAD_GATEWAY or (especially) NOT_FOUND.
213e520edc00641400771fc8f90b37a967a2d9ebdirkx PR 46971 [evanc nortel.com]
213e520edc00641400771fc8f90b37a967a2d9ebdirkx *) Various modules: Do better checking of pollset operations in order to
a449830d5caa5b9900fe64cc383658b3641f9810dirkx avoid segmentation faults if they fail. PR 46467
a449830d5caa5b9900fe64cc383658b3641f9810dirkx [Stefan Fritsch <sf sfritsch.de>]
a449830d5caa5b9900fe64cc383658b3641f9810dirkx *) mod_autoindex: Correctly create an empty cell if the description
a449830d5caa5b9900fe64cc383658b3641f9810dirkx for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
a449830d5caa5b9900fe64cc383658b3641f9810dirkx *) ab: Fix broken error messages after resolver or connect() failures.
a449830d5caa5b9900fe64cc383658b3641f9810dirkx [Jeff Trawick]
06d3a46db9574ad55b65fed36b856fee72bd71a7rpluem *) SECURITY: CVE-2009-1890 (cve.mitre.org)
06d3a46db9574ad55b65fed36b856fee72bd71a7rpluem Fix a potential Denial-of-Service attack against mod_proxy in a
82632a19f2f9c346fee2b28a65920ba9737b3973minfrin reverse proxy configuration, where a remote attacker can force a
82632a19f2f9c346fee2b28a65920ba9737b3973minfrin proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
82632a19f2f9c346fee2b28a65920ba9737b3973minfrin *) SECURITY: CVE-2009-1191 (cve.mitre.org)
82632a19f2f9c346fee2b28a65920ba9737b3973minfrin mod_proxy_ajp: Avoid delivering content from a previous request which
0481ff0599c9e3c0c7ad5c1930939dcdac908582chrisd failed to send a request body. PR 46949 [Ruediger Pluem]
0481ff0599c9e3c0c7ad5c1930939dcdac908582chrisd *) htdbm: Fix possible buffer overflow if dbm database has very
835d676191444a46d695171e8760d55a66c60fecminfrin long values. PR 30586 [Dan Poirier]
835d676191444a46d695171e8760d55a66c60fecminfrin *) core: Return APR_EOF if request body is shorter than the length announced
835d676191444a46d695171e8760d55a66c60fecminfrin by the client. PR 33098 [ Stefan Fritsch <sf sfritsch.de>]
723f9f463f1922eaef3d24d00cb289e10daa73ffminfrin *) mod_suexec: correctly set suexec_enabled when httpd is run by a
723f9f463f1922eaef3d24d00cb289e10daa73ffminfrin non-root user and may have insufficient permissions.
723f9f463f1922eaef3d24d00cb289e10daa73ffminfrin PR 42175 [Jim Radford <radford blackbean.org>]
c2213b3a46a2666e2e7606ceec509cc4978f187fminfrin *) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
c2213b3a46a2666e2e7606ceec509cc4978f187fminfrin type. PR 45107. [Michael Ströder <michael stroeder.com>,
d4562e99f620170ce0bedddc16887b900b34913bminfrin *) mod_proxy_http: fix case sensitivity checking transfer encoding
d4562e99f620170ce0bedddc16887b900b34913bminfrin PR 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
fd279fe992f7171dc3f6d4d40d6db5bb74f2d96eminfrin *) mod_alias: ensure Redirect issues a valid URL.
fd279fe992f7171dc3f6d4d40d6db5bb74f2d96eminfrin PR 44020 [Håkon Stordahl <hakon stordahl.org>]
fed63d1b62cc7e56aad77b70ee5b5cc7f5c6aademinfrin *) mod_dir: add DefaultHandler directive, to enable admin to specify
fed63d1b62cc7e56aad77b70ee5b5cc7f5c6aademinfrin an action to happen when a URL maps to no file, without resorting
fed63d1b62cc7e56aad77b70ee5b5cc7f5c6aademinfrin to ErrorDocument or mod_rewrite. PR 47184 [Nick Kew]
fed63d1b62cc7e56aad77b70ee5b5cc7f5c6aademinfrin *) mod_cgid: Do not leak the listening Unix socket file descriptor to the
abe0d0e38b9705f21a13ac8748bce1e3ed35e488minfrin CGI process. PR 47335 [Kornél Pál <kornelpal gmail.com>]
abe0d0e38b9705f21a13ac8748bce1e3ed35e488minfrin *) mod_rewrite: Remove locking for writing to the rewritelog.
abe0d0e38b9705f21a13ac8748bce1e3ed35e488minfrin PR 46942 [Dan Poirier <poirier pobox.com>]
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin *) mod_alias: check sanity in Redirect arguments.
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin *) mod_proxy_http: fix Host: header for literal IPv6 addresses.
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd *) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd defined session identifiers encoded in the URL when caching.
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd [Ruediger Pluem]
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd *) mod_rewrite: Fix the error string returned by RewriteRule.
a72211e92bab814bfa28ee086ca9b2a1a6095c92chrisd RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
4228aba3de67f3d9cce68f7a915d5435faa43adarpluem argument of RewriteRule was not started with "[" or not ended with "]".
4228aba3de67f3d9cce68f7a915d5435faa43adarpluem PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
78a20a6e7ad3a0229900ee54c7d11a65f647b663niq *) Windows: Fix usage message.
9582ad6e149d28b118d4e8571101ecb6f85e0191niq [Rainer Jung]
9582ad6e149d28b118d4e8571101ecb6f85e0191niq *) apachectl: When passing through arguments to httpd in
78a20a6e7ad3a0229900ee54c7d11a65f647b663niq non-SysV mode, use the "$@" syntax to preserve arguments.
d56bacbfefa5aa883ce5162a115747372fc38d13chrisd [Eric Covener]
d56bacbfefa5aa883ce5162a115747372fc38d13chrisd *) mod_dbd: add DBDInitSQL directive to enable SQL statements to
d56bacbfefa5aa883ce5162a115747372fc38d13chrisd be run when a connection is opened. PR 46827
d56bacbfefa5aa883ce5162a115747372fc38d13chrisd [Marko Kevac <mkevac gmail.com>]
e1a26e8050bf62459a7ef1c5064b714811767417rpluem *) mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).
e1a26e8050bf62459a7ef1c5064b714811767417rpluem PR 47037. [Jeff Trawick]
53feccc94b923e12db1df6f7069676590097ba2frpluem *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
53feccc94b923e12db1df6f7069676590097ba2frpluem protocol. [Mladen Turk]
d64dd2fd4516c2b1b664c5e59c0628d9aff26984covener *) mod_proxy_ajp: Forward remote port information by default.
d64dd2fd4516c2b1b664c5e59c0628d9aff26984covener [Rainer Jung]
1e911973bcb9df6701a4c16c037771ecf25ade13niq *) Allow MPMs to be loaded dynamically, as with most other modules. This
1e911973bcb9df6701a4c16c037771ecf25ade13niq required changes to the MPM interfaces. Removed: mpm.h, mpm_default.h
1e911973bcb9df6701a4c16c037771ecf25ade13niq (as an installed header), APACHE_MPM_DIR, MPM_NAME, ap_threads_per_child,
1e911973bcb9df6701a4c16c037771ecf25ade13niq ap_max_daemons_limit, ap_my_generation, etc. ap_mpm_query() can't be
1e911973bcb9df6701a4c16c037771ecf25ade13niq called until after the register-hooks phase. [Jeff Trawick]
5fbd1e97905738791e7359ccbc9b02e913948d2erpluem *) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
5fbd1e97905738791e7359ccbc9b02e913948d2erpluem to enable stricter checking of remote server certificates.
5fbd1e97905738791e7359ccbc9b02e913948d2erpluem [Ruediger Pluem]
b842b65e0618c5535233b197f03dc917d184adb3jim *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
b842b65e0618c5535233b197f03dc917d184adb3jim returns EINPROGRESS and a subsequent poll() returns only POLLERR.
b842b65e0618c5535233b197f03dc917d184adb3jim Observed on HP-UX. [Eric Covener]
e47d58d5d983426584c8d16416c50f5c58070746dirkx *) Remove broken support for BeOS, OS/2, TPF, and even older platforms such
e47d58d5d983426584c8d16416c50f5c58070746dirkx as A/UX, Next, and Tandem. [Jeff Trawick]
e47d58d5d983426584c8d16416c50f5c58070746dirkx *) mod_proxy_ftp: Add ProxyFtpListOnWildcard directive to allow files with
33aad3911b15cb5d523075f7df829274fe298a13dirkx globbing characters to be retrieved instead of converted into a
33aad3911b15cb5d523075f7df829274fe298a13dirkx directory listing. PR 46789 [Dan Poirier <poirier pobox.com>]
33aad3911b15cb5d523075f7df829274fe298a13dirkx *) Provide ap_retained_data_create()/ap_retained_data_get() for preservation
433dcb1fbaae82d36634f5120bff71a04296904ddirkx of module state across unload/load. [Jeff Trawick]
433dcb1fbaae82d36634f5120bff71a04296904ddirkx *) mod_substitute: Fix a memory leak. PR 44948
433dcb1fbaae82d36634f5120bff71a04296904ddirkx [Dan Poirier <poirier pobox.com>]
433dcb1fbaae82d36634f5120bff71a04296904ddirkxChanges with Apache 2.3.2
edb2ad8387e30473e5be09714189441ef94d7f29rpluem *) mod_mime_magic: Fix detection of compressed content. [Rainer Jung]
edb2ad8387e30473e5be09714189441ef94d7f29rpluem *) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
d7fcc79b0bee660d71b0cccfe9bbc2765ee6420erederpj HTML injections and HTTP response splitting. PR 46837.
d7fcc79b0bee660d71b0cccfe9bbc2765ee6420erederpj [Geoff Keating <geoffk apple.com>]
d7fcc79b0bee660d71b0cccfe9bbc2765ee6420erederpj *) mod_ssl: add support for type-safe STACK constructs in OpenSSL
d7fcc79b0bee660d71b0cccfe9bbc2765ee6420erederpj development HEAD. PR 45521. [Kaspar Brand, Sander Temme]
cb9999606fbbda475b7b40e164699731521e9eb1niq *) ab: Fix maintenance of the pollset to resolve EALREADY errors
cb9999606fbbda475b7b40e164699731521e9eb1niq with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).
cb9999606fbbda475b7b40e164699731521e9eb1niq PR 44584. Use APR_POLLSET_NOCOPY for better performance with some
c002c44ee5c7e7258f4ba5c162461c24a0c179c2dirkx pollset implementations. [Jeff Trawick]
c002c44ee5c7e7258f4ba5c162461c24a0c179c2dirkx *) mod_disk_cache: The module now turns off sendfile support if
40beb03c240a9c60805388592f1005d9bf9d2362fuankg 'EnableSendfile off' is defined globally. [Lars Eilebrecht]
65cb7f00eca6689c8a89dc809359991ade1285bcwrowe *) mod_deflate: Adjust content metadata before bailing out on 304
65cb7f00eca6689c8a89dc809359991ade1285bcwrowe responses so that the metadata does not differ from 200 response.
65cb7f00eca6689c8a89dc809359991ade1285bcwrowe [Roy T. Fielding]
475311484e1d0f01d41e0f48bfecf1f4bca2ff07rpluem *) mod_deflate: Fix creation of invalid Etag headers. We now make sure
475311484e1d0f01d41e0f48bfecf1f4bca2ff07rpluem that the Etag value is properly quoted when adding the gzip marker.
475311484e1d0f01d41e0f48bfecf1f4bca2ff07rpluem PR 39727, 45023. [Lars Eilebrecht, Roy T. Fielding]
ef79eba84348e4f8c99402de06afa2237a856049rpluem *) Added 20x22 icons for ODF, SVG, and XML documents. PR 37185.
ef79eba84348e4f8c99402de06afa2237a856049rpluem [Peter Harlow]
39c7699ec0799d394d3f67145d4a12ed82f587b8jorton *) Disabled DefaultType directive and removed ap_default_type()
39c7699ec0799d394d3f67145d4a12ed82f587b8jorton from core. We now exclude Content-Type from responses for which
3511969853863eeb6e80018afe63831e5bf81447rpluem a media type has not been configured via mime.types, AddType,
3511969853863eeb6e80018afe63831e5bf81447rpluem ForceType, or some other mechanism. PR 13986. [Roy T. Fielding]
c6d33447e28403a90ad817dba4df75fae785be28pquerna *) mod_rewrite: Add IPV6 variable to RewriteCond
c6d33447e28403a90ad817dba4df75fae785be28pquerna [Ryan Phillips <ryan-apache trolocsis.com>]
439ccf2a084e1da566548931c585cbcc3a9e7f4cminfrin *) core: Enhance KeepAliveTimeout to support a value in milliseconds.
439ccf2a084e1da566548931c585cbcc3a9e7f4cminfrin PR 46275. [Takashi Sato]
439ccf2a084e1da566548931c585cbcc3a9e7f4cminfrin *) rotatelogs: Allow size units B, K, M, G and combination of
439ccf2a084e1da566548931c585cbcc3a9e7f4cminfrin time and size based rotation. [Rainer Jung]
4ede070ca63bd4c48045e35a7192582769770290jorton *) rotatelogs: Add flag for verbose (debug) output. [Rainer Jung]
795c9499a77c25695bcb9710ed67bbe51492e181rpluem *) mod_ssl: Fix merging of SSLRenegBufferSize directive. PR 46508
795c9499a77c25695bcb9710ed67bbe51492e181rpluem [<tlhackque yahoo.com>]
a72ba68ecbbc61e4b513e50d6000245c33f753dcwrowe *) core: Translate the the status line to ASCII on EBCDIC platforms in
7a079e0cd696baca90ac43e325f64582e2945c68wrowe ap_send_interim_response() and for locally generated "100 Continue"
a72ba68ecbbc61e4b513e50d6000245c33f753dcwrowe responses. [Eric Covener]
62c53a0dab4c85bfc6a5ab9abfb1b269d9f7458dniq *) prefork: Fix child process hang during graceful restart/stop in
62c53a0dab4c85bfc6a5ab9abfb1b269d9f7458dniq configurations with multiple listening sockets. PR 42829. [Joe Orton,
11a0edf478ca9c59d80bf73491d89cf019259feeniq Jeff Trawick]
11a0edf478ca9c59d80bf73491d89cf019259feeniq *) mod_session_crypto: Ensure that SessionCryptoDriver can only be
ecc1538af1c08282fc2773d2eb3f1a54251862f9minfrin set in the global scope. [Graham Leggett]
ecc1538af1c08282fc2773d2eb3f1a54251862f9minfrin *) mod_ext_filter: We need to detect failure to startup the filter
ecc1538af1c08282fc2773d2eb3f1a54251862f9minfrin program (a mangled response is not acceptable). Fix to detect
3f5585f7f4a7d74f2f94ec729ea8c1879d419e35rederpj failure, and offer configuration option either to abort or
3f5585f7f4a7d74f2f94ec729ea8c1879d419e35rederpj to remove the filter and continue.
3f5585f7f4a7d74f2f94ec729ea8c1879d419e35rederpj PR 41120 [Nick Kew]
3f5585f7f4a7d74f2f94ec729ea8c1879d419e35rederpj *) mod_session_crypto: Rewrite the session_crypto module against the
e4b96ba15dc8b2b27d251d53e29b86da32cd5066pquerna apr_crypto API. [Graham Leggett]
81bd9331da3bd0f53255d52b1475480ff3a4b395trawick *) mod_auth_form: Fix a pool lifetime issue, don't remove the subrequest
81bd9331da3bd0f53255d52b1475480ff3a4b395trawick until the main request is cleaned up. [Graham Leggett]
cd3bbd6d2df78d6c75e5d159a81ef8bdd5f70df9trawickChanges with Apache 2.3.1
cd3bbd6d2df78d6c75e5d159a81ef8bdd5f70df9trawick *) ap_slotmem: Add in new slot-based memory access API impl., including
cd3bbd6d2df78d6c75e5d159a81ef8bdd5f70df9trawick 2 providers (mod_sharedmem and mod_plainmem) [Jim Jagielski,
108ebbb87b2a46f4416ec507824471a483c39fe1sctemme Jean-Frederic Clere, Brian Akins <brian.akins turner.com>]
108ebbb87b2a46f4416ec507824471a483c39fe1sctemme *) mod_include: support generating non-ASCII characters as entities in SSI
108ebbb87b2a46f4416ec507824471a483c39fe1sctemme PR 25202 [Nick Kew]
7abe34dd5a20fc8fde09dca9116b88e6ddfd55ddjorton *) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
7abe34dd5a20fc8fde09dca9116b88e6ddfd55ddjorton PR 25202 [Nick Kew]
10d486b9267800c5e376c22f6c0d45dc2ae86f67chrisd *) mod_rewrite: fix "B" flag breakage by reverting r5589343
10d486b9267800c5e376c22f6c0d45dc2ae86f67chrisd PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
3e155218733389e7b1ea3a9ffd0aea533fd929cechrisd *) CGI: return 504 (Gateway timeout) rather than 500 when a script
3e155218733389e7b1ea3a9ffd0aea533fd929cechrisd times out before returning status line/headers.
3e155218733389e7b1ea3a9ffd0aea533fd929cechrisd PR 42190 [Nick Kew]
dd6199828976e6c7850ca6abd7a1ceba99e9ed16chrisd *) mod_cgid: fix segfault problem on solaris.
dd6199828976e6c7850ca6abd7a1ceba99e9ed16chrisd PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
dd6199828976e6c7850ca6abd7a1ceba99e9ed16chrisd *) mod_proxy_scgi: Added. [André Malo]
ab43b4a17b2ac31ccb1cf280be8c42a8a314cecbjorton *) mod_cache: Introduce 'no-cache' per-request environment variable
ab43b4a17b2ac31ccb1cf280be8c42a8a314cecbjorton to prevent the saving of an otherwise cacheable response.
67139e2d50d1e11558d87f7042f61cb04bb0d1d2jim [Eric Covener]
67139e2d50d1e11558d87f7042f61cb04bb0d1d2jim *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
67139e2d50d1e11558d87f7042f61cb04bb0d1d2jim way that per-directory rewrites append the previous notion of PATH_INFO
67139e2d50d1e11558d87f7042f61cb04bb0d1d2jim to each substitution before evaluating subsequent rules.
a4ab95921be8ce5de50913cd6505d41b672eb375minfrin PR 38642 [Eric Covener]
a4ab95921be8ce5de50913cd6505d41b672eb375minfrin *) mod_cgid: Do not add an empty argument when calling the CGI script.
a4ab95921be8ce5de50913cd6505d41b672eb375minfrin PR 46380 [Ruediger Pluem]
e605dd6afa940f799c873ffeaa5e25fa4ea9a2c8minfrin *) scoreboard: Remove unused sb_type from process_score.
e605dd6afa940f799c873ffeaa5e25fa4ea9a2c8minfrin [Torsten Foertsch <torsten.foertsch gmx.net>, Chris Darroch]
e605dd6afa940f799c873ffeaa5e25fa4ea9a2c8minfrin *) mod_ssl: Add SSLRenegBufferSize directive to allow changing the
50c06405bc48121db2913925549407fd3e79bcedmturk size of the buffer used for the request-body where necessary
50c06405bc48121db2913925549407fd3e79bcedmturk during a per-dir renegotiation. PR 39243. [Joe Orton]
dec02391360e503cd3437d16bed765dc653b9de5minfrin *) mod_proxy_fdpass: New module to pass a client connection over to a separate
dec02391360e503cd3437d16bed765dc653b9de5minfrin process that is reading from a unix daemon socket.
dec02391360e503cd3437d16bed765dc653b9de5minfrin *) mod_ssl: Improve environment variable extraction to be more
1b27a3a26f18191db7ecb4d536cb121ba9520a8eniq efficient and to correctly handle DNs with duplicate tags.
1b27a3a26f18191db7ecb4d536cb121ba9520a8eniq PR 45975. [Joe Orton]
686ce4eade942e515b1725d0c9751da36b759a6ctrawick *) Remove the obsolete serial attribute from the RPM spec file. Compile
686ce4eade942e515b1725d0c9751da36b759a6ctrawick against the external pcre. Add missing binaries fcgistarter, and
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick mod_socache* and mod_session*. [Graham Leggett]
4bd465052c4a0c8d41e573ee7a90c312d980355fchrisdChanges with Apache 2.3.0
4bd465052c4a0c8d41e573ee7a90c312d980355fchrisd *) mod_ratelimit: New module to do bandwidth rate limiting. [Paul Querna]
4bd465052c4a0c8d41e573ee7a90c312d980355fchrisd *) Remove X-Pad header which was added as a work around to a bug in
4bd465052c4a0c8d41e573ee7a90c312d980355fchrisd Netscape 2.x to 4.0b2. [Takashi Sato <takashi lans-tv.com>]
27b38d4191d5f638165e2a77ec6e6f567bd7784dniq *) Add DTrace Statically Defined Tracing (SDT) probes.
27b38d4191d5f638165e2a77ec6e6f567bd7784dniq [Theo Schlossnagle <jesus omniti.com>, Paul Querna]
a87e2a23083aa62229307482afbb3b802a0c2105mturk *) mod_proxy_balancer: Move all load balancing implementations
a87e2a23083aa62229307482afbb3b802a0c2105mturk as individual, self-contained mod_proxy submodules under
a87e2a23083aa62229307482afbb3b802a0c2105mturk modules/proxy/balancers [Jim Jagielski]
a87e2a23083aa62229307482afbb3b802a0c2105mturk *) Rename APIs to include ap_ prefix:
8fd638698262130d00458b2c95548f6f94875847rpluem find_child_by_pid -> ap_find_child_by_pid
534611d341a1a48b93c7a1fd5e333dbd261527d3rpluem suck_in_APR -> ap_suck_in_APR
534611d341a1a48b93c7a1fd5e333dbd261527d3rpluem sys_privileges_handlers -> ap_sys_privileges_handlers
534611d341a1a48b93c7a1fd5e333dbd261527d3rpluem unixd_accept -> ap_unixd_accept
e99dfd55d29a7b4209b814efc7270d0b74ccee74niq unixd_config -> ap_unixd_config
c3c8103039e36494987aff50451896459826a361rpluem unixd_killpg -> ap_unixd_killpg
e99dfd55d29a7b4209b814efc7270d0b74ccee74niq unixd_set_global_mutex_perms -> ap_unixd_set_global_mutex_perms
127aef4ce9f7b6b32a95c5ed9a93b796d18755e6rpluem unixd_set_proc_mutex_perms -> ap_unixd_set_proc_mutex_perms
127aef4ce9f7b6b32a95c5ed9a93b796d18755e6rpluem unixd_set_rlimit -> ap_unixd_set_rlimit
127aef4ce9f7b6b32a95c5ed9a93b796d18755e6rpluem [Paul Querna]
79d4b708d021714647aab8b138ae671ed24765cewrowe *) core: When the ap_http_header_filter processes an error bucket, cleanup
79d4b708d021714647aab8b138ae671ed24765cewrowe the passed brigade before returning AP_FILTER_ERROR down the filter
79d4b708d021714647aab8b138ae671ed24765cewrowe chain. This unambiguously ensures the same error bucket isn't revisited
79d4b708d021714647aab8b138ae671ed24765cewrowe [Ruediger Pluem]
88d0e50f16b21d4d0af0a48da7ad28fb5991834crpluem *) mod_lbmethod_heartbeat: New module to load balance mod_proxy workers
88d0e50f16b21d4d0af0a48da7ad28fb5991834crpluem based on heartbeats. [Paul Querna]
88d0e50f16b21d4d0af0a48da7ad28fb5991834crpluem *) mod_heartmonitor: New module to collect heartbeats, and write out a file
15264721069299ec26493e21d56bf8ff7faf6f0drpluem so that other modules can load balance traffic as needed. [Paul Querna]
15264721069299ec26493e21d56bf8ff7faf6f0drpluem *) mod_heartbeat: New module to generate multicast heartbeats to know if a
11e1b16b907afb7de0678e28fe4849d9029e2df8rpluem server is online. [Paul Querna]
25a81ea1bca1c89cda713c4d23660e487b1488a0rpluem *) core: Error responses set by filters were being coerced into 500 errors,
25a81ea1bca1c89cda713c4d23660e487b1488a0rpluem sometimes appended to the original error response. Log entry of:
48fa058fe468025347930610ac2473094fa0f4e4chrisd 'Handler for (null) returned invalid result code -3'
48fa058fe468025347930610ac2473094fa0f4e4chrisd [Eric Covener]
3ec4328f079d8867cc323155e59678ad9437914frooneg *) mod_buffer: Honour the flush bucket and flush the buffer in the
3ec4328f079d8867cc323155e59678ad9437914frooneg input filter. Make sure that metadata buckets are written to
3ec4328f079d8867cc323155e59678ad9437914frooneg the buffer, not to the final brigade. [Graham Leggett]
de0d0b50c96fae59c28e09fed61b0d15cfa4147bchrisd *) mod_buffer: Optimise the buffering of heap buckets when the heap
de0d0b50c96fae59c28e09fed61b0d15cfa4147bchrisd buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,
de0d0b50c96fae59c28e09fed61b0d15cfa4147bchrisd Ruediger Pluem]
de0d0b50c96fae59c28e09fed61b0d15cfa4147bchrisd *) mod_buffer: Optional support for buffering of the input and output
de0d0b50c96fae59c28e09fed61b0d15cfa4147bchrisd filter stacks. Can collapse many small buckets into fewer larger
cd59ac5e8f739afbdcd523c649550f7dce1709ceniq buckets, and prevents excessively small chunks being sent over
db78659055df54243bca678c35bd2ce7e31a9237rooneg the wire. [Graham Leggett]
db78659055df54243bca678c35bd2ce7e31a9237rooneg *) mod_privileges: new module to make httpd on Solaris privileges-aware
95817edd05387a5276f51fcd5db79fc21b89b55brooneg and to enable different virtualhosts to run with different
95817edd05387a5276f51fcd5db79fc21b89b55brooneg privileges and Unix user/group IDs [Nick Kew]
63689d77e084e36b8194fb6df5adfc0344965e01trawick *) mod_mem_cache: this module has been removed. [William Rowe]
63689d77e084e36b8194fb6df5adfc0344965e01trawick *) authn/z: Remove mod_authn_default and mod_authz_default.
63689d77e084e36b8194fb6df5adfc0344965e01trawick [Chris Darroch]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) authz: Fix handling of authz configurations, make default authz
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge
a1a615ca49b162d71d88089210395c9a9cfeb539rpluem directives. [Chris Darroch]
8b67b9d3ce40755d1b58971198a02b2749d8e13dbnicholes *) mod_authn_core: Prevent crash when provider alias created to
8b67b9d3ce40755d1b58971198a02b2749d8e13dbnicholes provider which is not yet registered. [Chris Darroch]
a1a615ca49b162d71d88089210395c9a9cfeb539rpluem *) mod_authn_core: Add AuthType of None to support disabling
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes authentication. [Chris Darroch]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) core: Allow <Limit> and <LimitExcept> directives to nest, and
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes constrain their use to conform with that of other access control
a1a615ca49b162d71d88089210395c9a9cfeb539rpluem and authorization directives. [Chris Darroch]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) unixd: turn existing code into a module, and turn the set user/group
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes and chroot into a child_init function. [Nick Kew]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) mod_dir: Support "DirectoryIndex disabled"
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
69c36bbae91de0e99a682aaae9d6fa61fceb2771bnicholes *) Export and install the mod_rewrite.h header to ensure the optional
a1a615ca49b162d71d88089210395c9a9cfeb539rpluem rewrite_mapfunc_t and ap_register_rewrite_mapfunc functions are
1b0dce86d7fc8a5aa4c89b05255be26e508c615crpluem available to third party modules. [Graham Leggett]
1b0dce86d7fc8a5aa4c89b05255be26e508c615crpluem *) mod_authnz_ldap: don't return NULL-valued environment variables to
1b0dce86d7fc8a5aa4c89b05255be26e508c615crpluem other modules. PR 39045 [Francois Pesce <francois.pesce gmail.com>]
edc5389f50ce4153e6192740f3c7a188c8cf8d67niq *) Don't adjust case in pathname components that are not of interest
6c05afd314b4ddd545d63b4ff5de822cc30eec79trawick to mod_mime. Fixes mod_negotiation's use of such components.
6c05afd314b4ddd545d63b4ff5de822cc30eec79trawick PR 43250 [Basant Kumar Kukreja <basant.kukreja sun.com>]
13cd67e9c1dacbd6b9f040bda337c725cedd98f3brianp *) Be tolerant in what you accept - accept slightly broken
13cd67e9c1dacbd6b9f040bda337c725cedd98f3brianp status lines from a backend provide they include a valid status code.
a623efbff95aab78da9e030524b0fa69b054f6d0brianp *) New module mod_sed: filter Request/Response bodies through sed
a623efbff95aab78da9e030524b0fa69b054f6d0brianp *) mod_auth_form: Make sure that basic authentication is correctly
0b4b04d8621478ba59f0a6ba2950ddc02ab92b58colm faked directly after login. [Graham Leggett]
0b4b04d8621478ba59f0a6ba2950ddc02ab92b58colm *) mod_session_cookie, mod_session_dbd: Make sure cookies are set both
2f1bb5376c5c4022383bb729679ca751dd75a2eabrianp within the output headers and error output headers, so that the
2f1bb5376c5c4022383bb729679ca751dd75a2eabrianp session is maintained across redirects. [Graham Leggett]
ad862ab5716726a2d72a292ba1dfb29566c86153brianp *) mod_auth_form: Make sure the logged in user is populated correctly
ad862ab5716726a2d72a292ba1dfb29566c86153brianp after a form login. Fixes a missing REMOTE_USER variable directly
17d53ea32c4968e47733f1c2c063ae07d280efd6jerenkrantz following a login. [Graham Leggett]
17d53ea32c4968e47733f1c2c063ae07d280efd6jerenkrantz *) mod_session_cookie: Make sure that cookie attributes are correctly
2d5532b13110a8d85653da92e97795b09cc25cc2trawick included in the blank cookie when cookies are removed. This fixes an
b38565306421ff53e9f7499bc728d6df5cec294dpquerna inability to log out when using mod_auth_form. [Graham Leggett]
b38565306421ff53e9f7499bc728d6df5cec294dpquerna *) mod_autoindex: add configuration option to insert string
b38565306421ff53e9f7499bc728d6df5cec294dpquerna in HTML HEAD. [Nick Kew]
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim *) mod_session: Prevent a segfault when a CGI script sets a cookie with a
cfa64348224b66dd1c9979b809406c4d15b1c137fielding null value. [David Shane Holden <dpejesh apache.org>]
cfa64348224b66dd1c9979b809406c4d15b1c137fielding *) mod_headers: Prevent Header edit from processing only the first header
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim of possibly multiple headers with the same name and deleting the
cfa64348224b66dd1c9979b809406c4d15b1c137fielding remaining ones. PR 45333. [Ruediger Pluem]
cfa64348224b66dd1c9979b809406c4d15b1c137fielding *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim [Tom Donovan]
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim *) core, authn/z: Determine registered authn/z providers directly in
cfa64348224b66dd1c9979b809406c4d15b1c137fielding ap_setup_auth_internal(), which allows optional functions that just
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim wrapped ap_list_provider_names() to be removed from authn/z modules.
*) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
*) configure: Don't reject libtool 2.x
overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
PR 44799 [Christian Wenz <christian wenz.org>]
both inside and outside the location/directory sections, as
form request with the type of application/x-www-form-urlencoded.
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: