CHANGES revision 20eead0b01d51fce0cc17d04b8f98ec38eac68ae
48c0c81cd6fabac9d3386406d97633780365b839coar -*- coding: utf-8 -*-
d9ca73cb0e701d10a94734a2ce553d9a1c906b8baaronChanges with Apache 2.5.0
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj *) mod_proxy: Add ability to configure the sticky session separator.
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj PR 53893. [<inu inusasha de>, Jim Jagielski]
bf3d1782a29630335a1df535eb395355ab1cd154jwoolley *) mod_proxy_ftp: Fix segfaults on IPv4 requests to hosts with DNS AAAA records.
bf3d1782a29630335a1df535eb395355ab1cd154jwoolley PR 40841. [Andrew Rucker Jones <arjones simultan dyndns org>,
07847078a10fe4e9229cc08adda5f421cafc0665jwoolley <ast domdv de>, Jim Jagielski]
d8028365066fca602bf35d014530a1802114378crbb *) ap_expr: Add req_novary function that allows HTTP header lookups
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe without adding the name to the Vary header. [Stefan Fritsch]
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe *) mod_ssl: Change default for SSLCompression to off, as compression
d89c116f82699294ca744125723651c554bc5925wrowe causes security issues in most setups. (The so called "CRIME" attack).
4214e98fc9045e5010e66f9a967bd6d68f40d342aaron [Stefan Fritsch]
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe *) syslog logging: Remove stray ", referer" at the end of some messages.
91cacb801f6c0215b38322f6d2fc58cbfedfecfbjerenkrantz [Jeff Trawick]
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb *) configure: Fix processing of --disable-FEATURE for various features.
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb [Jeff Trawick]
571760de5e60c0b459cb11be45507b923cd023eejwoolley *) "Iterate" directives: Report an error if no arguments are provided.
571760de5e60c0b459cb11be45507b923cd023eejwoolley [Jeff Trawick]
bcb6e1be6041dfeb549c8ea8d37f97ad4e90a0c3rbb *) htpasswd, htdbm: Optionally read passwords from stdin, as more
9bd71e35f5d26d26d23fe3a677401828e842ed72wrowe secure alternative to -b. PR 40243. [Adomas Paltanavicius <adomas
2900ab946a2d76b73a14cebfe2985d253f01c967stoddard paltanavicius gmail com>, Stefan Fritsch]
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb *) htpasswd, htdbm: Add support for bcrypt algorithm (requires
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb apr-util 1.5 or higher). PR 49288. [Stefan Fritsch]
cf6bf6c34c936e6a6fe731dbce4a5c3c8bf8e9a3gstein *) htpasswd, htdbm: Put full 48bit of entropy into salt, improve
35330e0d79ceb8027223bbb8330a381b1f989d6etrawick error handling. Add some of htpasswd's improvements to htdbm,
6f6f4a4bca281779d196acbdd5c017bb90858305trawick e.g. warn if password is truncated by crypt(). [Stefan Fritsch]
09bd86d0db1114ee23eda0a6eb76ca055877a1cftrawick *) ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output
2deb319e6b3de239f45c16a3e9e836d44f1f7108rbb to more accurately report the negotiated protocol. PR 53916.
bd929c73ef04789b7183b840d8db6e01d03a4d86rbb [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand]
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj *) mod_systemd: New module, for integration with systemd on Linux.
af4c982a7cf4515f124935f99a329744035fc699slive [Jan Kaluza <jkaluza redhat.com>]
af4c982a7cf4515f124935f99a329744035fc699slive *) core: ErrorDocument now works for requests without a Host header.
af4c982a7cf4515f124935f99a329744035fc699slive PR 48357. [Jeff Trawick]
af4c982a7cf4515f124935f99a329744035fc699slive *) --with-module: Fix failure to integrate them into some existing
af4c982a7cf4515f124935f99a329744035fc699slive module directories. PR 40097. [Jeff Trawick]
4b62424416882687387923b3130b96241503cbe0jerenkrantz *) mod_headers: New params: %l for load averages, %i for an
5ca8e11fadb6f7a8d9d0367c1800205c99d4bcd6jerenkrantz idle percentage rating of httpd, and %b for a busy percentage
5ca8e11fadb6f7a8d9d0367c1800205c99d4bcd6jerenkrantz rating. [Jim Jagielski]
dbec4658981e4f9127e8676457c28d42932be7cdtrawick *) core: New functions to obtain load parameters: ap_get_sload()
1b7e9aeb9867a1c94e24e8ae491d2dfcd0d225e3jerenkrantz and ap_get_loadavg(). [Jim Jagielski]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) mod_cache_socache: New cache implementation backed by mod_socache
f17588e04d2412bf1345783ed1d173322d728d6ftrawick that replaces mod_mem_cache removed from httpd v2.2. [Graham
f17588e04d2412bf1345783ed1d173322d728d6ftrawick *) mod_auth_form: Support the expr parser in the
f17588e04d2412bf1345783ed1d173322d728d6ftrawick AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and
f17588e04d2412bf1345783ed1d173322d728d6ftrawick AuthFormLogoutLocation directives. [Graham Leggett]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz to be used without patches to httpd core. [Jeff Trawick]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) mod_proxy: Allow for persistence of local changes (via the
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz balancer-manager) between graceful and normal restarts.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz [Jim Jagielski]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) mod_slotmem: New provider function, fgrab(), which forces an
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz allocation of a slot. [Jim Jagielski]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) mod_proxy_balancer: The nonce is only derived from the UUID iff
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz not set via the 'nonce' balancer param. [Jim Jagielski]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz filters in Lua [Daniel Gruno]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) core: Apply length limit when logging Status header values.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz [Jeff Trawick, Chris Darroch]
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz *) mod_ssl: Match wildcard SSL certificate names in proxy mode.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz PR 53006. [Joe Orton]
1af5c0e25a649bb298e25ddfa5418fa18bdcb107aaron *) WinNT MPM: Store pid and generation for each thread in scoreboard
82455c2e3b6991846fbcbf0c9e41f57dbc681217brianp to allow tracking of threads from exiting children via mod_status
82455c2e3b6991846fbcbf0c9e41f57dbc681217brianp or other such mechanisms. [Jeff Trawick]
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz *) mod_ssl: Catch missing or mismatched client cert/key pairs with
b05930e6008f69bd323abe0c10f81f40ffd27983brianp SSLProxyMachineCertificateFile/Path directives. PR 52212.
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz [Keith Burdis <keith burdis.org>, Joe Orton]
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz *) mod_lua: Allow scripts handled by the lua-script handler to return
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz a status code to the client (such as a 302 or a 500) [Daniel Gruno]
b6bff62e5e6ae86726ec0b6445227f4852da8728aaron *) mod_proxy_ajp: Fix crash in packet dump code when logging
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz with LogLevel trace7 or trace8. PR 53730. [Rainer Jung]
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz *) mod_cache: Wrong content type and character set when
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz mod_cache serves stale content because of a proxy error.
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz PR 53539. [Rainer Jung, Ruediger Pluem]
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
7a08c1a05c4f1c75e72afaabbbf8449aae0e9e70aaron rather than throwing an internal server error. [Daniel Gruno]
45740d5cd30d22f067c05b95f04f866abd7ebed8jwoolley *) mod_lua: Add functions r:flush and r:sendfile as well as additional
45740d5cd30d22f067c05b95f04f866abd7ebed8jwoolley request information to the request_rec structure. [Daniel Gruno]
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz *) mod_lua: Add a server scope for Lua states, which creates a pool of
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz states with managable minimum and maximum size. [Daniel Gruno]
45740d5cd30d22f067c05b95f04f866abd7ebed8jwoolley *) core: Add post_perdir_config hook.
45740d5cd30d22f067c05b95f04f866abd7ebed8jwoolley [Steinar Gunderson <sgunderson bigfoot.com>]
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz URIs to Lua scripts and functions using regular expressions.
ee7189b4bbce2f62ff79e8261cb28379ea84d3b9jerenkrantz [Daniel Gruno]
45740d5cd30d22f067c05b95f04f866abd7ebed8jwoolley *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
630f5fc1277582643fe0f831a4830e15127bd047jwoolley caching of lua scripts. [Daniel Gruno]
630f5fc1277582643fe0f831a4830e15127bd047jwoolley *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
630f5fc1277582643fe0f831a4830e15127bd047jwoolley - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
56b2562cb4041a21bc313fde3204beabdb758800jwoolley - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
56b2562cb4041a21bc313fde3204beabdb758800jwoolley mutexes (Mutex)
56b2562cb4041a21bc313fde3204beabdb758800jwoolley - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
56b2562cb4041a21bc313fde3204beabdb758800jwoolley - mod_ldap: shared memory cache
56b2562cb4041a21bc313fde3204beabdb758800jwoolley - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
56b2562cb4041a21bc313fde3204beabdb758800jwoolley [Jeff Trawick]
56b2562cb4041a21bc313fde3204beabdb758800jwoolley *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
b05930e6008f69bd323abe0c10f81f40ffd27983brianp *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
b05930e6008f69bd323abe0c10f81f40ffd27983brianp for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
b05930e6008f69bd323abe0c10f81f40ffd27983brianp Christophe Renou, Peter Sylvester]
15304e476fb32988bf988864ddacc5375b9a6080stoddard *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
15304e476fb32988bf988864ddacc5375b9a6080stoddard ap_pregcomp() abort if out of memory. This raises the minimum PCRE
8c8fbb8546af54582539898be704411a60058d85trawick requirement to version 6.0. PR 53284. [Stefan Fritsch]
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley *) suexec: Add --enable-suexec-capabilites support on Linux, to use
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley setuid/setgid capability bits rather than a setuid root binary.
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley [Joe Orton]
8c8fbb8546af54582539898be704411a60058d85trawick *) suexec: Add support for logging to syslog as an alternative to logging
8c8fbb8546af54582539898be704411a60058d85trawick to a file; configure --without-suexec-logfile --with-suexec-syslog.
8c8fbb8546af54582539898be704411a60058d85trawick [Joe Orton]
f9b8e29cfca92cf0a996e8ab17fa1a1f447cecc7stoddard *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
f9b8e29cfca92cf0a996e8ab17fa1a1f447cecc7stoddard [Matthew Steele <mdsteele google.com>]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) various modules, rotatelogs: Replace use of apr_file_write() with
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe apr_file_write_full() to prevent incomplete writes. PR 53131.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe be compiled by the build compiler instead of the host compiler.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe PR 51257. [Guenter Knauf]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) core: In maintainer mode, replace apr_palloc with a version that
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe initializes the allocated memory with non-zero values, except if
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) mod_policy: Add a new testing module to help server administrators
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe enforce a configurable level of protocol compliance on their
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe servers and application servers behind theirs. [Graham Leggett]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) mod_firehose: Add a new debugging module able to record traffic
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe passing through the server in such a way that connections and/or
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe requests be reconstructed and replayed. [Graham Leggett]
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe *) mod_noloris
638a9edaf48cf003cd40ac25ee8c25f572107414stoddard *) Simple MPM
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb *) mod_serf
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb [Apache 2.5.0-dev includes those bug fixes and changes with the
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb Apache 2.4.xx tree as documented below, except as noted.]
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbbChanges with Apache 2.4.x and later:
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaronChanges with Apache 2.2.x and later:
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
5d12baef135b5d3cb94745e007a1575398469724jerenkrantzChanges with Apache 2.0.x and later: