CHANGES revision 4ac05f9625e37cc421f4ea548422827b4de163d7
a8c5a86d183db25a57bf193c06b41e092ec2e151Timo Sirainen -*- coding: utf-8 -*-
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo SirainenChanges with Apache 2.3.7
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen *) mod_negotiation: Preserve query string over multiviews negotiation.
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen This buglet was fixed for type maps in 2.2.6, but the same issue
0536ccb51d41e3078c3a9fa33e509fb4b2420f95Timo Sirainen affected multiviews and was overlooked.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen PR 33112 [Joergen Thomsen <apache jth.net>]
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen *) mod_ldap: Eliminate a potential crash with multiple LDAPTrustedClientCert
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen when some are not password-protected. [Eric Covener]
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen *) Fix startup segfault when the Mutex directive is used but no loaded
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen modules use httpd mutexes. PR 48787. [Jeff Trawick]
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen *) Proxy: get the headers right in a HEAD request with
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen ProxyErrorOverride, by checking for an overridden error
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen before not after going into a catch-all code path.
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen PR 41646. [Nick Kew, Stuart Children]
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen *) support/rotatelogs: Support the simplest log rotation case, log
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen truncation. Useful when the log is being processed in real time
8cb72c59d5ea4e9e5f638d7ec840bb853f5a188eTimo Sirainen using a command like tail. [Graham Leggett]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) support/htcacheclean: Teach it how to write a pid file (modelled on
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen httpd's writing of a pid file) so that it becomes possible to run
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen more than one instance of htcacheclean on the same machine.
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen [Graham Leggett]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) Log command line on startup, so there's a record of command line
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen arguments like -f. PR 48752. [Dan Poirier]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) Introduce mod_reflector, a handler capable of reflecting POSTed
cd56a23e21f1df3f79648cf07e2f4385e2fadebbTimo Sirainen request bodies back within the response through the output filter
cd56a23e21f1df3f79648cf07e2f4385e2fadebbTimo Sirainen stack. Can be used to turn an output filter into a web service.
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen [Graham Leggett]
cd56a23e21f1df3f79648cf07e2f4385e2fadebbTimo Sirainen *) mod_proxy_http: Make sure that when an ErrorDocument is served
cd56a23e21f1df3f79648cf07e2f4385e2fadebbTimo Sirainen from a reverse proxied URL, that the subrequest respects the status
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen of the original request. This brings the behaviour of proxy_handler
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen in line with default_handler. PR 47106. [Graham Leggett]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) Support wildcards in both the directory and file components of
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen the path specified by the Include directive. [Graham Leggett]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_proxy, mod_proxy_http: Support remote https proxies
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen by using HTTP CONNECT. PR 19188.
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen [Philippe Dutrueux <lilas evidian.com>, Rainer Jung]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo SirainenChanges with Apache 2.3.6
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) worker: Don't report server has reached MaxClients until it has.
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen Add message when server gets within MinSpareThreads of MaxClients.
d5cebe7f98e63d4e2822863ef2faa4971e8b3a5dTimo Sirainen PR 46996. [Dan Poirier]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_session: Session expiry was being initialised, but not updated
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen on each session save, resulting in timed out sessions when there
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen should not have been. Fixed. [Graham Leggett]
5ac0b0bf32898c63da086ae169674ecac151a31eTimo Sirainen *) mod_log_config: Add the R option to log the handler used within the
5ac0b0bf32898c63da086ae169674ecac151a31eTimo Sirainen request. [Christian Folini <christian.folini netnea com>]
5ac0b0bf32898c63da086ae169674ecac151a31eTimo Sirainen *) Allow fine control over the removal of Last-Modified and ETag headers
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen within the INCLUDES filter, making it possible to cache responses if
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen desired. Fix the default value of the SSIAccessEnable directive.
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen [Graham Leggett]
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen *) Add new UnDefine directive to undefine a variable. PR 35350.
5ac0b0bf32898c63da086ae169674ecac151a31eTimo Sirainen [Stefan Fritsch]
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen *) Make ap_pregsub(), used by AliasMatch and friends, use the same syntax
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen for regex backreferences as mod_rewrite and mod_include: Remove the use
c28f6aa0b70af4811c9ace9114fe827c2f503455Timo Sirainen of '&' as an alias for '$0' and allow to escape any character with a
c28f6aa0b70af4811c9ace9114fe827c2f503455Timo Sirainen backslash. PR 48351. [Stefan Fritsch]
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen *) mod_authnz_ldap: If AuthLDAPCharsetConfig is set, also convert the
c28f6aa0b70af4811c9ace9114fe827c2f503455Timo Sirainen password to UTF-8. PR 45318.
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen [Johannes Müller <joh_m gmx.de>, Stefan Fritsch]
df831edaa3b3aa22e03bc5fd416a0553c5600a69Phil Carmody *) ab: Fix calculation of requests per second in HTML output. PR 48594.
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen [Stefan Fritsch]
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen *) mod_authnz_ldap: Failures to map a username to a DN, or to check a user
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen password now result in an informational level log entry instead of
1a0ece3e873e3864269ed7eaed957dc10c56d25fTimo Sirainen warning level. [Eric Covener]
c28f6aa0b70af4811c9ace9114fe827c2f503455Timo SirainenChanges with Apache 2.3.5
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) Ensure each subrequest has a shallow copy of headers_in so that the
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen parent request headers are not corrupted. Elimiates a problematic
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen optimization in the case of no request body. PR 48359
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Jake Scott, William Rowe, Ruediger Pluem]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) Turn static function get_server_name_for_url() into public
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen ap_get_server_name_for_url() and use it where appropriate. This
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen fixes mod_rewrite generating invalid URLs for redirects to IPv6
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen literal addresses. [Stefan Fritsch]
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen *) mod_ldap: Introduce new config option LDAPTimeout to set the timeout
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen for LDAP operations like bind and search. [Stefan Fritsch]
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen *) mod_proxy, mod_proxy_ftp: Move ProxyFtpDirCharset from mod_proxy to
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen mod_proxy_ftp. [Takashi Sato]
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen *) mod_proxy, mod_proxy_connect: Move AllowCONNECT from mod_proxy to
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen mod_proxy_connect. [Takashi Sato]
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen *) mod_cache: Do an exact match of the keys defined by
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen CacheIgnoreURLSessionIdentifiers against the querystring instead of
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen a partial match. PR 48401.
862ec874f9373e3e499e237d3b9f71fdf1413feeTimo Sirainen [Dodou Wang <wangdong.08 gmail.com>, Ruediger Pluem]
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen *) mod_proxy_balancer: Fix crash in balancer-manager. [Rainer Jung]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) Core HTTP: disable keepalive when the Client has sent
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen Expect: 100-continue
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen but we respond directly with a non-100 response.
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen Keepalive here led to data from clients continuing being treated as
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen a new request.
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen PR 47087 [Nick Kew]
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen *) Core: reject NULLs in request line or request headers.
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen PR 43039 [Nick Kew]
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen *) Core: (re)-introduce -T commandline option to suppress documentroot
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen check at startup.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen PR 41887 [Jan van den Berg <janvdberg gmail.com>]
0a49b316fc729e5d57268ffa63c7122ac73f994cTimo Sirainen *) mod_autoindex: support XHTML as equivalent to HTML in IndexOptions,
0a49b316fc729e5d57268ffa63c7122ac73f994cTimo Sirainen ScanHTMLTitles, ReadmeName, HeaderName
0a49b316fc729e5d57268ffa63c7122ac73f994cTimo Sirainen PR 48416 [Dmitry Bakshaev <dab18 izhnet.ru>, Nick Kew]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) Proxy: Fix ProxyPassReverse with relative URL
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen Derived (slightly erroneously) from PR 38864 [Nick Kew]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_headers: align Header Edit with Header Set when used on Content-Type
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen PR 48422 [Cyril Bonté <cyril.bonte free.fr>, Nick Kew>]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_headers: Enable multi-match-and-replace edit option
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen PR 47066 [Nick Kew]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_filter: enable it to act on non-200 responses.
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen PR 48377 [Nick Kew]
4334b9b032298defd4d3906f5357698ff016ead0Timo SirainenChanges with Apache 2.3.4
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) Replace AcceptMutex, LockFile, RewriteLock, SSLMutex, SSLStaplingMutex,
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen and WatchdogMutexPath with a single Mutex directive. Add APIs to
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen simplify setup and user customization of APR proc and global mutexes.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen (See util_mutex.h.) Build-time setting DEFAULT_LOCKFILE is no longer
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen respected; set DEFAULT_REL_RUNTIMEDIR instead. [Jeff Trawick]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) http_core: KeepAlive no longer accepts other than On|Off.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Takashi Sato]
d66ef20c30fee728899ee168c75fcc5ff8fbdac1Timo Sirainen *) mod_dav: Remove errno from dav_error interface. Calls to dav_new_error()
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen and dav_new_error_tag() must be adjusted to add an apr_status_t parameter.
d66ef20c30fee728899ee168c75fcc5ff8fbdac1Timo Sirainen [Jeff Trawick]
9e095dd6a77097356aca8216356d4d71ef1bea45Timo Sirainen *) mod_authnz_ldap: Add AuthLDAPBindAuthoritative to allow Authentication to
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen try other providers in the case of an LDAP bind failure.
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen PR 46608 [Justin Erenkrantz, Joe Schaefer, Tony Stevenson]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) Build: fix --with-module to work as documented
0892446b45c195461bb7be6599f02d97e1e2c9b2Timo Sirainen PR 43881 [Gez Saunders <gez.saunders virgin.net>]
7af4788b402346c94496095dd819f95ce03fe431Timo SirainenChanges with Apache 2.3.3
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen *) SECURITY: CVE-2009-3095 (cve.mitre.org)
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen mod_proxy_ftp: sanity check authn credentials.
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen [Stefan Fritsch <sf fritsch.de>, Joe Orton]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) SECURITY: CVE-2009-3094 (cve.mitre.org)
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen mod_proxy_ftp: NULL pointer dereference on error paths.
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen [Stefan Fritsch <sf fritsch.de>, Joe Orton]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) mod_ssl: enable support for ECC keys and ECDH ciphers. Tested against
d66ef20c30fee728899ee168c75fcc5ff8fbdac1Timo Sirainen OpenSSL 1.0.0b3. [Vipul Gupta <vipul.gupta sun.com>, Sander Temme]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) mod_dav: Include uri when logging a PUT error due to connection abort.
c24ef531ca58abad996482f5c2e8992be9ae8981Timo Sirainen PR 38149. [Stefan Fritsch]
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen *) mod_dav: Return 409 instead of 500 for a LOCK request if the parent
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen resource does not exist or is not a collection. PR 43465. [Stefan Fritsch]
0a0cd45a633112a2ae6aad801c1e6afe53ab95deTimo Sirainen *) mod_dav_fs: Return 409 instead of 500 for Litmus test case copy_nodestcoll
e4c81823af1fc43ca3f2ce9eb4af7fc8f57b13a5Timo Sirainen (a COPY request where the parent of the destination resource does not
e4c81823af1fc43ca3f2ce9eb4af7fc8f57b13a5Timo Sirainen exist). PR 39299. [Stefan Fritsch]
0892446b45c195461bb7be6599f02d97e1e2c9b2Timo Sirainen *) mod_dav_fs: Don't delete the whole file if a PUT with content-range failed.
e4c81823af1fc43ca3f2ce9eb4af7fc8f57b13a5Timo Sirainen PR 42896. [Stefan Fritsch]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_dav_fs: Make PUT create files atomically and no longer destroy the
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen old file if the transfer aborted. PR 39815. [Paul Querna, Stefan Fritsch]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_dav_fs: Remove inode keyed locking as this conflicts with atomically
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen creating files. On systems with inode numbers, this is a format change of
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen the DavLockDB. The old DavLockDB must be deleted on upgrade.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen [Stefan Fritsch]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_log_config: Make ${cookie}C correctly match whole cookie names
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen instead of substrings. PR 28037. [Dan Franklin <dan dan-franklin.com>,
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen Stefan Fritsch]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) vhost: A purely-numeric Host: header should not be treated as a port.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen PR 44979 [Nick Kew]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_ldap: Avoid 500 errors with "Unable to set LDAP_OPT_REFHOPLIMIT option to 5"
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen when built against openldap by using SDK LDAP_OPT_REFHOPLIMIT defaults unless
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen LDAPReferralHopLimit is explicitly configured.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen [Eric Covener]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_charset_lite: Honor 'CharsetOptions NoImplicitAdd'.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen [Eric Covener]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_ssl: Add support for OCSP Stapling. PR 43822.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen [Dr Stephen Henson <shenson oss-institute.org>]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_socache_shmcb: Allow parens in file name if cache size is given.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen Fixes SSLSessionCache directive mis-parsing parens in pathname.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen PR 47945. [Stefan Fritsch]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) htpasswd: Improve out of disk space handling. PR 30877. [Stefan Fritsch]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) htpasswd: Use MD5 hash by default on all platforms. [Stefan Fritsch]
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen *) mod_sed: Reduce memory consumption when processing very long lines.
61e6367a259e2473f33df42fda8ceeb3b8b48416Timo Sirainen PR 48024 [Basant Kumar Kukreja <basant.kukreja sun.com>]
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen *) ab: Fix segfault in case the argument for -n is a very large number.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen PR 47178. [Philipp Hagemeister <oss phihag.de>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) Allow ProxyPreserveHost to work in <Proxy> sections. PR 34901.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Stefan Fritsch]
20344c0e814139e3c365fbb9287478f91512089eTimo Sirainen *) configure: Fix THREADED_MPMS so that mod_cgid is enabled again
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen for worker MPM. [Takashi Sato]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_dav: Provide a mechanism to obtain the request_rec and pathname
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen from the dav_resource. [Jari Urpalainen <jari.urpalainen nokia.com>,
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen Brian France <brian brianfrance.com>]
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen *) Build: Use install instead of cp if available on installing
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen modules to avoid segmentation fault. PR 47951. [hirose31 gmail.com]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_cache: correctly consider s-maxage in cacheability
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen decisions. [Dan Poirier]
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen *) mod_logio/core: Report more accurate byte counts in mod_status if
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen mod_logio is loaded. PR 25656. [Stefan Fritsch]
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen *) mod_ldap: If LDAPSharedCacheSize is too small, try harder to purge
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen some cache entries and log a warning. Also increase the default
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen LDAPSharedCacheSize to 500000. This is a more realistic size suitable
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen for the default values of 1024 for LdapCacheEntries/LdapOpCacheEntries.
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen PR 46749. [Stefan Fritsch]
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen *) mod_rewrite: Make sure that a hostname:port isn't fully qualified if
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen the request is a CONNECT request. [Bill Zajac <billz consultla.com>]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_cache: Teach CacheEnable and CacheDisable to work from within a
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen Location section, in line with how ProxyPass works. [Graham Leggett]
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen *) mod_reqtimeout: New module to set timeouts and minimum data rates for
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen receiving requests from the client. [Stefan Fritsch]
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen *) core: Fix potential memory leaks by making sure to not destroy
c0435c854a0e7246373b9752d163095cc4fbe985Timo Sirainen bucket brigades that have been created by earlier filters.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Stefan Fritsch]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) core, mod_deflate, mod_sed: Reduce memory usage by reusing bucket
e3fc1874694a8ddba9552ec23f9952f74f33d1d5Timo Sirainen brigades in several places. [Stefan Fritsch]
601f5f14c6cde28f0e0c6ca7c5d735315d3d48dfTimo Sirainen *) mod_cache: Fix uri_meets_conditions() so that CacheEnable will
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen match by scheme, or by a wildcarded hostname. PR 40169
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen [Peter Grandi <pg_asf asf.for.sabi.co.uk>, Graham Leggett]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) suxec: Allow to log an error if exec fails by setting FD_CLOEXEC
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen on the log file instead of closing it. PR 10744. [Nicolas Rachinsky]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_mime: Make RemoveType override the info from TypesConfig.
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen PR 38330. [Stefan Fritsch]
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen *) mod_cache: Introduce the option to run the cache from within the
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen normal request handler, and to allow fine grained control over
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen where in the filter chain content is cached. [Graham Leggett]
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen *) core: Treat timeout reading request as 408 error, not 400.
c9bf63e9094761767a63ac6b189bcf60bcffdc44Timo Sirainen Log 408 errors in access log as was done in Apache 1.3.x.
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen PR 39785 [Nobutaka Mantani <nobutaka nobutaka.org>,
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen Stefan Fritsch <sf fritsch.de>, Dan Poirier]
602a0434db30d8e3292d1c161a803d96a879a74fTimo Sirainen *) mod_ssl: Reintroduce SSL_CLIENT_S_DN, SSL_CLIENT_I_DN, SSL_SERVER_S_DN,
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen SSL_SERVER_I_DN back to the environment variables to be set by mod_ssl.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Peter Sylvester <peter.sylvester edelweb.fr>]
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen *) mod_disk_cache: don't cache incomplete responses, per RFC 2616, 13.8.
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen PR15866. [Dan Poirier]
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen *) ab: ab segfaults in verbose mode on https sites
c9bf63e9094761767a63ac6b189bcf60bcffdc44Timo Sirainen PR46393. [Ryan Niebur]
c9bf63e9094761767a63ac6b189bcf60bcffdc44Timo Sirainen *) mod_dav: Allow other modules to become providers and add resource types
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen to the DAV response. [Jari Urpalainen <jari.urpalainen nokia.com>,
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen Brian France <brian brianfrance.com>]
4334b9b032298defd4d3906f5357698ff016ead0Timo Sirainen *) mod_dav: Allow other modules to add things to the DAV or Allow headers
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen of an OPTIONS request. [Jari Urpalainen <jari.urpalainen nokia.com>,
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen Brian France <brian brianfrance.com>]
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen *) core: Lower memory usage of core output filter.
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen [Stefan Fritsch <sf sfritsch.de>]
c9bf63e9094761767a63ac6b189bcf60bcffdc44Timo Sirainen *) mod_mime: Detect invalid use of MultiviewsMatch inside Location and
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen LocationMatch sections. PR47754. [Dan Poirier]
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen *) mod_request: Make sure the KeptBodySize directive rejects values
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen that aren't valid numbers. [Graham Leggett]
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen *) mod_session_crypto: Sanity check should the potentially encrypted
dd62b77c932d1b518f2a3e4bf80e36542becc256Timo Sirainen session cookie be too short. [Graham Leggett]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) mod_session.c: Prevent a segfault when session is added but not
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen configured. [Graham Leggett]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) mod_auth_digest: Fail server start when nonce count checking
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen is configured without shared memory, or md5-sess algorithm is
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen configured. [Dan Poirier]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) mod_proxy_connect: The connect method doesn't work if the client is
68a4946b12583b88fa802e52ebee45cd96056772Timo Sirainen connecting to the apache proxy through an ssl socket. Fixed.
7e1f68ad71d3485f1882142837b01f7a98ca8467Timo Sirainen PR29744. [Brad Boyer, Mark Cave-Ayland, Julian Gilbey, Fabrice Durand,
68a4946b12583b88fa802e52ebee45cd96056772Timo Sirainen David Gence, Tim Dodge, Per Gunnar Hans, Emmanuel Elango,
7e1f68ad71d3485f1882142837b01f7a98ca8467Timo Sirainen Kevin Croft, Rudolf Cardinal]
7e1f68ad71d3485f1882142837b01f7a98ca8467Timo Sirainen *) mod_ssl: The error message when SSLCertificateFile is missing should
7e1f68ad71d3485f1882142837b01f7a98ca8467Timo Sirainen at least give the name or position of the problematic virtual host
a3c197999dfe2b0c8ea38cb77cfa5e95026005c0Timo Sirainen definition. [Stefan Fritsch sf sfritsch.de]
a3c197999dfe2b0c8ea38cb77cfa5e95026005c0Timo Sirainen *) mod_auth_digest: Fix null pointer when qop=none. [Dan Poirier]
a3c197999dfe2b0c8ea38cb77cfa5e95026005c0Timo Sirainen *) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
a3c197999dfe2b0c8ea38cb77cfa5e95026005c0Timo Sirainen *) mod_headers: generalise the envclause to support expression
a3c197999dfe2b0c8ea38cb77cfa5e95026005c0Timo Sirainen evaluation with ap_expr parser [Nick Kew]
923115fd382904fa13bb09bf307bf2835b52df60Timo Sirainen *) mod_cache: Introduce the thundering herd lock, a mechanism to keep
923115fd382904fa13bb09bf307bf2835b52df60Timo Sirainen the flood of requests at bay that strike a backend webserver as
923115fd382904fa13bb09bf307bf2835b52df60Timo Sirainen a cached entity goes stale. [Graham Leggett]
923115fd382904fa13bb09bf307bf2835b52df60Timo Sirainen *) mod_auth_digest: Fix usage of shared memory and re-enable it.
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen PR 16057 [Dan Poirier]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) Preserve Port information over internal redirects
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen *) Proxy: unable to connect to a backend is SERVICE_UNAVAILABLE,
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen rather than BAD_GATEWAY or (especially) NOT_FOUND.
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen PR 46971 [evanc nortel.com]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) Various modules: Do better checking of pollset operations in order to
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen avoid segmentation faults if they fail. PR 46467
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen [Stefan Fritsch <sf sfritsch.de>]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) mod_autoindex: Correctly create an empty cell if the description
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) ab: Fix broken error messages after resolver or connect() failures.
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen [Jeff Trawick]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) SECURITY: CVE-2009-1890 (cve.mitre.org)
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen Fix a potential Denial-of-Service attack against mod_proxy in a
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen reverse proxy configuration, where a remote attacker can force a
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
8d80659e504ffb34bb0c6a633184fece35751b18Timo Sirainen *) SECURITY: CVE-2009-1191 (cve.mitre.org)
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen mod_proxy_ajp: Avoid delivering content from a previous request which
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen failed to send a request body. PR 46949 [Ruediger Pluem]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) htdbm: Fix possible buffer overflow if dbm database has very
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen long values. PR 30586 [Dan Poirier]
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen *) core: Return APR_EOF if request body is shorter than the length announced
e0c3d5460d1cc0c440cb7723c8c2eef8d0afe9b9Timo Sirainen by the client. PR 33098 [ Stefan Fritsch <sf sfritsch.de>]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_suexec: correctly set suexec_enabled when httpd is run by a
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen non-root user and may have insufficient permissions.
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen PR 42175 [Jim Radford <radford blackbean.org>]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen type. PR 45107. [Michael Ströder <michael stroeder.com>,
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_proxy_http: fix case sensitivity checking transfer encoding
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen PR 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_alias: ensure Redirect issues a valid URL.
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen PR 44020 [HÃ¥kon Stordahl <hakon stordahl.org>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_dir: add FallbackResource directive, to enable admin to specify
0611067f385a37773800225256dcd5cf6aa34212Timo Sirainen an action to happen when a URL maps to no file, without resorting
df16c7e87511fed827e6890a2a47d13ca48716deTimo Sirainen to ErrorDocument or mod_rewrite. PR 47184 [Nick Kew]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_cgid: Do not leak the listening Unix socket file descriptor to the
0611067f385a37773800225256dcd5cf6aa34212Timo Sirainen CGI process. PR 47335 [Kornél Pál <kornelpal gmail.com>]
7b42d6cbee8186195d8c5e66078043a0fa1f25c1Timo Sirainen *) mod_rewrite: Remove locking for writing to the rewritelog.
7b42d6cbee8186195d8c5e66078043a0fa1f25c1Timo Sirainen PR 46942 [Dan Poirier <poirier pobox.com>]
7b42d6cbee8186195d8c5e66078043a0fa1f25c1Timo Sirainen *) mod_alias: check sanity in Redirect arguments.
7b42d6cbee8186195d8c5e66078043a0fa1f25c1Timo Sirainen PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_proxy_http: fix Host: header for literal IPv6 addresses.
7b42d6cbee8186195d8c5e66078043a0fa1f25c1Timo Sirainen PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen defined session identifiers encoded in the URL when caching.
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen [Ruediger Pluem]
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen *) mod_rewrite: Fix the error string returned by RewriteRule.
1036ad17ac837a451f6b045cac504d3efa2edb8eTimo Sirainen RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen argument of RewriteRule was not started with "[" or not ended with "]".
1036ad17ac837a451f6b045cac504d3efa2edb8eTimo Sirainen PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
1036ad17ac837a451f6b045cac504d3efa2edb8eTimo Sirainen *) Windows: Fix usage message.
a0b6b441fc679e562e79be0fb2819ffc24ab5b74Timo Sirainen [Rainer Jung]
f20e7fbdc9bdbe8fecb9c661c9b8175f3bb78c69Timo Sirainen *) apachectl: When passing through arguments to httpd in
c0b1543512bc3e0a3a9f526056a3678a07ce32f5Timo Sirainen non-SysV mode, use the "$@" syntax to preserve arguments.
a0b6b441fc679e562e79be0fb2819ffc24ab5b74Timo Sirainen [Eric Covener]
51e1a1c280ccb461a15827f7987d09cb9708b6e3Timo Sirainen *) mod_dbd: add DBDInitSQL directive to enable SQL statements to
a0b6b441fc679e562e79be0fb2819ffc24ab5b74Timo Sirainen be run when a connection is opened. PR 46827
a0b6b441fc679e562e79be0fb2819ffc24ab5b74Timo Sirainen [Marko Kevac <mkevac gmail.com>]
1036ad17ac837a451f6b045cac504d3efa2edb8eTimo Sirainen *) mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen PR 47037. [Jeff Trawick]
89e195dfb5c4b0efd9b9f459771a4467674e5b1fTimo Sirainen *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen protocol. [Mladen Turk]
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen *) mod_proxy_ajp: Forward remote port information by default.
6f08b98ac63c25b747120d0c8f8e319b4e26ab0fTimo Sirainen [Rainer Jung]
68a4946b12583b88fa802e52ebee45cd96056772Timo Sirainen *) Allow MPMs to be loaded dynamically, as with most other modules. Use
68a4946b12583b88fa802e52ebee45cd96056772Timo Sirainen --enable-mpms-shared={list|"all"} to enable. This required changes to
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen the MPM interfaces. Removed: mpm.h, mpm_default.h (as an installed
68a4946b12583b88fa802e52ebee45cd96056772Timo Sirainen header), APACHE_MPM_DIR, MPM_NAME, ap_threads_per_child,
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen ap_max_daemons_limit, ap_my_generation, etc. ap_mpm_query() can't be
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen called until after the register-hooks phase. [Jeff Trawick]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen to enable stricter checking of remote server certificates.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Ruediger Pluem]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen returns EINPROGRESS and a subsequent poll() returns only POLLERR.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen Observed on HP-UX. [Eric Covener]
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen *) Remove broken support for BeOS, OS/2, TPF, and even older platforms such
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen as A/UX, Next, and Tandem. [Jeff Trawick]
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen *) mod_proxy_ftp: Add ProxyFtpListOnWildcard directive to allow files with
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen globbing characters to be retrieved instead of converted into a
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen directory listing. PR 46789 [Dan Poirier <poirier pobox.com>]
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen *) Provide ap_retained_data_create()/ap_retained_data_get() for preservation
3785910c303507db5f629684e6dde2cc7f83668eTimo Sirainen of module state across unload/load. [Jeff Trawick]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) mod_substitute: Fix a memory leak. PR 44948
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Dan Poirier <poirier pobox.com>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo SirainenChanges with Apache 2.3.2
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) mod_mime_magic: Fix detection of compressed content. [Rainer Jung]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen HTML injections and HTTP response splitting. PR 46837.
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen [Geoff Keating <geoffk apple.com>]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_ssl: add support for type-safe STACK constructs in OpenSSL
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen development HEAD. PR 45521. [Kaspar Brand, Sander Temme]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) ab: Fix maintenance of the pollset to resolve EALREADY errors
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen PR 44584. Use APR_POLLSET_NOCOPY for better performance with some
6ef7e31619edfaa17ed044b45861d106a86191efTimo Sirainen pollset implementations. [Jeff Trawick]
37ab3cde96bfa4bc5304c0c348fc420aec79572dTimo Sirainen *) mod_disk_cache: The module now turns off sendfile support if
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen 'EnableSendfile off' is defined globally. [Lars Eilebrecht]
37ab3cde96bfa4bc5304c0c348fc420aec79572dTimo Sirainen *) mod_deflate: Adjust content metadata before bailing out on 304
37ab3cde96bfa4bc5304c0c348fc420aec79572dTimo Sirainen responses so that the metadata does not differ from 200 response.
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen [Roy T. Fielding]
0b47e9f5e0181053b4d9ca7b426b0e5c185e820eTimo Sirainen *) mod_deflate: Fix creation of invalid Etag headers. We now make sure
0b47e9f5e0181053b4d9ca7b426b0e5c185e820eTimo Sirainen that the Etag value is properly quoted when adding the gzip marker.
abe8754852e70763e92f74caabbcc13d0917714cTimo Sirainen PR 39727, 45023. [Lars Eilebrecht, Roy T. Fielding]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) Added 20x22 icons for ODF, SVG, and XML documents. PR 37185.
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen [Peter Harlow]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) Disabled DefaultType directive and removed ap_default_type()
90b8f131849540fa374aede95edd86d47d35c09dTimo Sirainen from core. We now exclude Content-Type from responses for which
90b8f131849540fa374aede95edd86d47d35c09dTimo Sirainen a media type has not been configured via mime.types, AddType,
90b8f131849540fa374aede95edd86d47d35c09dTimo Sirainen ForceType, or some other mechanism. PR 13986. [Roy T. Fielding]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) mod_rewrite: Add IPV6 variable to RewriteCond
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen [Ryan Phillips <ryan-apache trolocsis.com>]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) core: Enhance KeepAliveTimeout to support a value in milliseconds.
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen PR 46275. [Takashi Sato]
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen *) rotatelogs: Allow size units B, K, M, G and combination of
c09f9f95db314e7482c95e502e1c56ed6c555797Timo Sirainen time and size based rotation. [Rainer Jung]
c06f4017027263cf3a08becc551f5126409e2a83Timo Sirainen *) rotatelogs: Add flag for verbose (debug) output. [Rainer Jung]
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen *) mod_ssl: Fix merging of SSLRenegBufferSize directive. PR 46508
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen *) core: Translate the the status line to ASCII on EBCDIC platforms in
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen ap_send_interim_response() and for locally generated "100 Continue"
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen responses. [Eric Covener]
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen *) prefork: Fix child process hang during graceful restart/stop in
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen configurations with multiple listening sockets. PR 42829. [Joe Orton,
904f9d5654b9c39edcdf32883e5e88771faf4d69Timo Sirainen Jeff Trawick]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen *) mod_session_crypto: Ensure that SessionCryptoDriver can only be
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen set in the global scope. [Graham Leggett]
97e62b2b36dda0acb3215667042f5c80cdee8155Timo Sirainen *) mod_ext_filter: We need to detect failure to startup the filter
97e62b2b36dda0acb3215667042f5c80cdee8155Timo Sirainen program (a mangled response is not acceptable). Fix to detect
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen failure, and offer configuration option either to abort or
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen to remove the filter and continue.
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen PR 41120 [Nick Kew]
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen *) mod_session_crypto: Rewrite the session_crypto module against the
fe363b433b8038a69b55169da9dca27892ad7d18Timo Sirainen apr_crypto API. [Graham Leggett]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen *) mod_auth_form: Fix a pool lifetime issue, don't remove the subrequest
97e62b2b36dda0acb3215667042f5c80cdee8155Timo Sirainen until the main request is cleaned up. [Graham Leggett]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo SirainenChanges with Apache 2.3.1
7d5d50dd9a8c2539d7025a69e39d34fca56daeafTimo Sirainen *) ap_slotmem: Add in new slot-based memory access API impl., including
7d5d50dd9a8c2539d7025a69e39d34fca56daeafTimo Sirainen 2 providers (mod_sharedmem and mod_plainmem) [Jim Jagielski,
7d5d50dd9a8c2539d7025a69e39d34fca56daeafTimo Sirainen Jean-Frederic Clere, Brian Akins <brian.akins turner.com>]
7d5d50dd9a8c2539d7025a69e39d34fca56daeafTimo Sirainen *) mod_include: support generating non-ASCII characters as entities in SSI
7d5d50dd9a8c2539d7025a69e39d34fca56daeafTimo Sirainen PR 25202 [Nick Kew]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen *) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
dd2df6a67f10792ce31a3666197c0b6885893a3aTimo Sirainen PR 25202 [Nick Kew]
14175321ddb88619015866978c05a27786ca4814Timo Sirainen *) mod_rewrite: fix "B" flag breakage by reverting r5589343
14175321ddb88619015866978c05a27786ca4814Timo Sirainen PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
14175321ddb88619015866978c05a27786ca4814Timo Sirainen *) CGI: return 504 (Gateway timeout) rather than 500 when a script
14175321ddb88619015866978c05a27786ca4814Timo Sirainen times out before returning status line/headers.
14175321ddb88619015866978c05a27786ca4814Timo Sirainen PR 42190 [Nick Kew]
14175321ddb88619015866978c05a27786ca4814Timo Sirainen *) mod_cgid: fix segfault problem on solaris.
14175321ddb88619015866978c05a27786ca4814Timo Sirainen PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
14175321ddb88619015866978c05a27786ca4814Timo Sirainen *) mod_proxy_scgi: Added. [André Malo]
14175321ddb88619015866978c05a27786ca4814Timo Sirainen *) mod_cache: Introduce 'no-cache' per-request environment variable
14175321ddb88619015866978c05a27786ca4814Timo Sirainen to prevent the saving of an otherwise cacheable response.
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen [Eric Covener]
439dd06aec3301e65d650f6dc1d4a1a00b356b4fTimo Sirainen *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
439dd06aec3301e65d650f6dc1d4a1a00b356b4fTimo Sirainen way that per-directory rewrites append the previous notion of PATH_INFO
439dd06aec3301e65d650f6dc1d4a1a00b356b4fTimo Sirainen to each substitution before evaluating subsequent rules.
14175321ddb88619015866978c05a27786ca4814Timo Sirainen PR 38642 [Eric Covener]
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen *) mod_cgid: Do not add an empty argument when calling the CGI script.
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen PR 46380 [Ruediger Pluem]
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen *) scoreboard: Remove unused sb_type from process_score.
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen [Torsten Foertsch <torsten.foertsch gmx.net>, Chris Darroch]
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen *) mod_ssl: Add SSLRenegBufferSize directive to allow changing the
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen size of the buffer used for the request-body where necessary
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen during a per-dir renegotiation. PR 39243. [Joe Orton]
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen *) mod_proxy_fdpass: New module to pass a client connection over to a separate
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen process that is reading from a unix daemon socket.
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen *) mod_ssl: Improve environment variable extraction to be more
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen efficient and to correctly handle DNs with duplicate tags.
c7acd38cd4ef76a0f4652f9ca659ea5e64458b52Timo Sirainen PR 45975. [Joe Orton]
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen *) Remove the obsolete serial attribute from the RPM spec file. Compile
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen against the external pcre. Add missing binaries fcgistarter, and
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen mod_socache* and mod_session*. [Graham Leggett]
282a436a74d8835edb45cc019b1c916013013fd3Timo SirainenChanges with Apache 2.3.0
dd2df6a67f10792ce31a3666197c0b6885893a3aTimo Sirainen *) mod_ratelimit: New module to do bandwidth rate limiting. [Paul Querna]
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen *) Remove X-Pad header which was added as a work around to a bug in
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen Netscape 2.x to 4.0b2. [Takashi Sato <takashi lans-tv.com>]
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen *) Add DTrace Statically Defined Tracing (SDT) probes.
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen [Theo Schlossnagle <jesus omniti.com>, Paul Querna]
282a436a74d8835edb45cc019b1c916013013fd3Timo Sirainen *) mod_proxy_balancer: Move all load balancing implementations
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen as individual, self-contained mod_proxy submodules under
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) Rename APIs to include ap_ prefix:
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen find_child_by_pid -> ap_find_child_by_pid
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen suck_in_APR -> ap_suck_in_APR
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen sys_privileges_handlers -> ap_sys_privileges_handlers
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_accept -> ap_unixd_accept
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_config -> ap_unixd_config
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_killpg -> ap_unixd_killpg
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_set_global_mutex_perms -> ap_unixd_set_global_mutex_perms
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_set_proc_mutex_perms -> ap_unixd_set_proc_mutex_perms
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen unixd_set_rlimit -> ap_unixd_set_rlimit
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen [Paul Querna]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) core: When the ap_http_header_filter processes an error bucket, cleanup
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen the passed brigade before returning AP_FILTER_ERROR down the filter
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen chain. This unambiguously ensures the same error bucket isn't revisited
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen [Ruediger Pluem]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_lbmethod_heartbeat: New module to load balance mod_proxy workers
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen based on heartbeats. [Paul Querna]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_heartmonitor: New module to collect heartbeats, and write out a file
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen so that other modules can load balance traffic as needed. [Paul Querna]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_heartbeat: New module to generate multicast heartbeats to know if a
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen server is online. [Paul Querna]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) core: Error responses set by filters were being coerced into 500 errors,
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen sometimes appended to the original error response. Log entry of:
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen 'Handler for (null) returned invalid result code -3'
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen [Eric Covener]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_buffer: Honour the flush bucket and flush the buffer in the
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen input filter. Make sure that metadata buckets are written to
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen the buffer, not to the final brigade. [Graham Leggett]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_buffer: Optimise the buffering of heap buckets when the heap
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen Ruediger Pluem]
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen *) mod_buffer: Optional support for buffering of the input and output
4c096615cb86a826fda377b87df22c579bfe5525Timo Sirainen filter stacks. Can collapse many small buckets into fewer larger
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen buckets, and prevents excessively small chunks being sent over
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen the wire. [Graham Leggett]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen *) mod_privileges: new module to make httpd on Solaris privileges-aware
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen and to enable different virtualhosts to run with different
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen privileges and Unix user/group IDs [Nick Kew]
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen *) mod_mem_cache: this module has been removed. [William Rowe]
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen *) authn/z: Remove mod_authn_default and mod_authz_default.
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen [Chris Darroch]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) authz: Fix handling of authz configurations, make default authz
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen directives. [Chris Darroch]
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen *) mod_authn_core: Prevent crash when provider alias created to
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen provider which is not yet registered. [Chris Darroch]
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen *) mod_authn_core: Add AuthType of None to support disabling
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen authentication. [Chris Darroch]
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen *) core: Allow <Limit> and <LimitExcept> directives to nest, and
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen constrain their use to conform with that of other access control
4aa7fe81503a20bc972ae625da4dd9e6996fbdbfTimo Sirainen and authorization directives. [Chris Darroch]
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen *) unixd: turn existing code into a module, and turn the set user/group
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen and chroot into a child_init function. [Nick Kew]
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen *) mod_dir: Support "DirectoryIndex disabled"
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen *) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen *) Export and install the mod_rewrite.h header to ensure the optional
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen rewrite_mapfunc_t and ap_register_rewrite_mapfunc functions are
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen available to third party modules. [Graham Leggett]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) mod_authnz_ldap: don't return NULL-valued environment variables to
66d84e6f0ae34a3cf5b8fa8e009d6caf025b6a2aTimo Sirainen other modules. PR 39045 [Francois Pesce <francois.pesce gmail.com>]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) Don't adjust case in pathname components that are not of interest
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen to mod_mime. Fixes mod_negotiation's use of such components.
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen PR 43250 [Basant Kumar Kukreja <basant.kukreja sun.com>]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) Be tolerant in what you accept - accept slightly broken
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen status lines from a backend provide they include a valid status code.
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen PR 44995 [Rainer Jung <rainer.jung kippdata.de>]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) New module mod_sed: filter Request/Response bodies through sed
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen [Basant Kumar Kukreja <basant.kukreja sun.com>]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) mod_auth_form: Make sure that basic authentication is correctly
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen faked directly after login. [Graham Leggett]
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen *) mod_session_cookie, mod_session_dbd: Make sure cookies are set both
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen within the output headers and error output headers, so that the
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen session is maintained across redirects. [Graham Leggett]
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen *) mod_auth_form: Make sure the logged in user is populated correctly
5df8396a7cbad0b38b83a86667fb3d4c223f6f7cTimo Sirainen after a form login. Fixes a missing REMOTE_USER variable directly
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen following a login. [Graham Leggett]
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen *) mod_session_cookie: Make sure that cookie attributes are correctly
5df8396a7cbad0b38b83a86667fb3d4c223f6f7cTimo Sirainen included in the blank cookie when cookies are removed. This fixes an
d5b3f66491101aba8667369586c95c615cb26ae6Timo Sirainen inability to log out when using mod_auth_form. [Graham Leggett]
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen *) mod_autoindex: add configuration option to insert string
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen in HTML HEAD. [Nick Kew]
9db5ade1c16c7f67c51004f28c28ea335755d3f0Timo Sirainen *) mod_session: Prevent a segfault when a CGI script sets a cookie with a
9db5ade1c16c7f67c51004f28c28ea335755d3f0Timo Sirainen null value. [David Shane Holden <dpejesh apache.org>]
9db5ade1c16c7f67c51004f28c28ea335755d3f0Timo Sirainen *) mod_headers: Prevent Header edit from processing only the first header
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen of possibly multiple headers with the same name and deleting the
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen remaining ones. PR 45333. [Ruediger Pluem]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen [Tom Donovan]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) core, authn/z: Determine registered authn/z providers directly in
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen ap_setup_auth_internal(), which allows optional functions that just
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen wrapped ap_list_provider_names() to be removed from authn/z modules.
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen [Chris Darroch]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) authn/z: Convert common provider version strings to macros.
01f4ee4a0243f3fe9af763e1a540cd5cff0d63f5Timo Sirainen [Chris Darroch]
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen *) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen *) configure: Don't reject libtool 2.x
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen PR 44817 [Arfrever Frehtes Taifersar Arahesis <Arfrever.FTA gmail.com>]
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen *) core: When testing for slash-terminated configuration paths in
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen ap_location_walk(), don't look past the start of an empty string
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen such as that created by a <Location ""> directive.
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen [Chris Darroch]
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen *) core, mod_proxy: If a kept_body is present, it becomes safe for
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen subrequests to support message bodies. Make sure that safety
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen checks within the core and within the proxy are not triggered
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen when kept_body is present. This makes it possible to embed
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen proxied POST requests within mod_include. [Graham Leggett]
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen *) mod_auth_form: Make sure the input filter stack is properly set
fe363b433b8038a69b55169da9dca27892ad7d18Timo Sirainen up before reading the login form. Make sure the kept body filter
9511a40d933181045343110c8101b75887062aaeTimo Sirainen is correctly inserted to ensure the body can be read a second
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen time safely should the authn be successful. [Graham Leggett,
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen Ruediger Pluem]
5f3151744f3ffa73b57391d4a237884b75423f57Timo Sirainen *) mod_request: Insert the KEPT_BODY filter via the insert_filter
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen hook instead of during fixups. Add a safety check to ensure the
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen filters cannot be inserted more than once. [Graham Leggett,
e2ce8d4a6ac5d82a906178148453e7613fab9ba0Timo Sirainen Ruediger Pluem]
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen *) core: Do not allow Options ALL if not all options are allowed to be
01e606cda5192c4254c090624a0b2ca92da6da8eTimo Sirainen overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen *) ap_cache_cacheable_headers_out() will (now) always
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen merge an error headers _before_ clearing them and _before_
032964c7cc6788188b63ae6270fc26cbd4a3ca26Timo Sirainen merging in the actual entity headers and doing normal
12a3540693ab69ec622e04d1b3b66962b8b2a3d9Timo Sirainen hop-by-hop cleansing. [Dirk-Willem van Gulik].
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen *) cache: retire ap_cache_cacheable_hdrs_out() which was used
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen for both in- and out-put headers; and replace it by a single
4b9f99761df5014c659cd87fddaf6854af428cfcTimo Sirainen ap_cache_cacheable_headers() wrapped in a in- and out-put
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen specific ap_cache_cacheable_headers_in()/out(). The latter
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen which will also merge error and ensure content-type. To keep
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen cache modules consistent with ease. This API change bumps
a94936bafd127680184da114c6a177b37ff656e5Timo Sirainen up the minor MM by one [Dirk-Willem van Gulik].
7662010b03ffe5f2a6ecf4b4eb220d1c65efea76Timo Sirainen *) mod_rewrite: Allow Cookie option to set secure and HttpOnly flags.
7ef5ca6fb59a318c821a852ae48a2edbb671d7ddTimo Sirainen PR 44799 [Christian Wenz <christian wenz.org>]
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen *) Move the KeptBodySize directive, kept_body filters and the
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen ap_parse_request_body function out of the http module and into a
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen new module called mod_request, reducing the size of the core.
07e4875d250e7a7157cd99132aafc773cf3cdf83Timo Sirainen [Graham Leggett]
252db51b6c0a605163326b3ea5d09e9936ca3b29Timo Sirainen *) mod_dbd: Handle integer configuration directive parameters with a
ecc81625167ed96c04c02aa190a1ea5baa65b474Timo Sirainen dedicated function.
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen *) Change the directives within the mod_session* modules to be valid
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen both inside and outside the location/directory sections, as
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen suggested by wrowe. [Graham Leggett]
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen *) mod_auth_form: Add a module capable of allowing end users to log
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen in using an HTML form, storing the credentials within mod_session.
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen [Graham Leggett]
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen *) Add a function to the http filters that is able to parse an HTML
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen form request with the type of application/x-www-form-urlencoded.
d14e62b7b37dc78fcc940aca25042eceb358b156Timo Sirainen [Graham Leggett]
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen *) mod_session_crypto: Initialise SSL in the post config hook.
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen [Ruediger Pluem, Graham Leggett]
0c1835a90dd1dcedaeaedd1cd91672299cbeb5beTimo Sirainen *) mod_session_dbd: Add a session implementation capable of storing
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen session information in a SQL database via the dbd interface. Useful
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen for sites where session privacy is important. [Graham Leggett]
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen *) mod_session_crypto: Add a session encoding implementation capable
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen of encrypting and decrypting sessions wherever they may be stored.
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen Introduces a level of privacy when sessions are stored on the
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen browser. [Graham Leggett]
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen *) mod_session_cookie: Add a session implementation capable of storing
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen session information within cookies on the browser. Useful for high
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen volume sites where server bound sessions are too resource intensive.
f4735bf7ec2019fdc730e9ebdb39e5a4ea580405Timo Sirainen [Graham Leggett]
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: