Cross Reference: /httpd/CHANGES

	CHANGES revision 4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1e
337fc9e235877b459e389f54daf9833bbc645439anish                                                         -*- coding: utf-8 -*-
337fc9e235877b459e389f54daf9833bbc645439anishChanges with Apache 2.5.0
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_auth_basic: Add AuthBasicUseDigestAlgorithm directive to
337fc9e235877b459e389f54daf9833bbc645439anish     allow migration of passwords from digest to basic authentication.
337fc9e235877b459e389f54daf9833bbc645439anish     [Chris Darroch]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core: Add util_fcgi.h and associated definitions and support
337fc9e235877b459e389f54daf9833bbc645439anish     routines for FastCGI, based largely on mod_proxy_fcgi.
337fc9e235877b459e389f54daf9833bbc645439anish     [Jeff Trawick]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
337fc9e235877b459e389f54daf9833bbc645439anish     [Jeff Trawick]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) ab: Fix potential buffer overflows when processing the T and X
337fc9e235877b459e389f54daf9833bbc645439anish     command-line options.  PR 55360.
337fc9e235877b459e389f54daf9833bbc645439anish     [Mike Rumph <mike.rumph oracle.com>]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_unique_id: Use output of the PRNG rather than IP address and
337fc9e235877b459e389f54daf9833bbc645439anish     pid, avoiding sleep() call and possible DNS issues at startup,
337fc9e235877b459e389f54daf9833bbc645439anish     plus improving randomness for IPv6-only hosts.
337fc9e235877b459e389f54daf9833bbc645439anish     [Jan Kaluza <jkaluza redhat.com>]
337fc9e235877b459e389f54daf9833bbc645439anish
fc51f9bbbff02dbd8c3adf640b1a184ceeb58fa5Krishna Elango  *) core: Log a message at TRACE1 when the client aborts a connection.
337fc9e235877b459e389f54daf9833bbc645439anish     [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_authnz_ldap: Support primitive LDAP servers that do not accept
337fc9e235877b459e389f54daf9833bbc645439anish     filters, such as "SDBM-backed LDAP" on z/OS, by allowing a special
337fc9e235877b459e389f54daf9833bbc645439anish     filter "none" to be specified in AuthLDAPURL. [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_file_cache: mod_file_cache should be able to serve files that
337fc9e235877b459e389f54daf9833bbc645439anish     haven't had a Content-Type set via e.g. mod_mime. [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core: merge AllowEncodedSlashes from the base configuration into
337fc9e235877b459e389f54daf9833bbc645439anish     virtual hosts. [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_headers: Add 'setifempty' command to Header and RequestHeader.
337fc9e235877b459e389f54daf9833bbc645439anish     [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) AIX: Install DSO's with "cp" instead of "install" in instdso.sh
337fc9e235877b459e389f54daf9833bbc645439anish     [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
269473047d747f7815af570197e4ef7322d3632cEvan Yan  *) mod_ldap: Retry transient LDAP connection errors when they occur
269473047d747f7815af570197e4ef7322d3632cEvan Yan     during the authorization stage.
269473047d747f7815af570197e4ef7322d3632cEvan Yan     [Eric Covener]
269473047d747f7815af570197e4ef7322d3632cEvan Yan
77f19097b42b4eadd47d2824a7a919b5275dcad0Frank Van Der Linden  *) mod_ldap: Don't keep retrying if a new LDAP connection times out.
337fc9e235877b459e389f54daf9833bbc645439anish     [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_deflate: permit compilation of mod_deflate against a zlib that has
337fc9e235877b459e389f54daf9833bbc645439anish     been configured with -D Z_PREFIX, which redefines the token "deflate".
337fc9e235877b459e389f54daf9833bbc645439anish     [Eric Covener]
337fc9e235877b459e389f54daf9833bbc645439anish
269473047d747f7815af570197e4ef7322d3632cEvan Yan  *) mod_socache_shmcb.c: Remove arbitrary restriction on shared memory size
269473047d747f7815af570197e4ef7322d3632cEvan Yan     previously limited to 64MB. [Jens Låås <jelaas gmail.com>]
269473047d747f7815af570197e4ef7322d3632cEvan Yan
269473047d747f7815af570197e4ef7322d3632cEvan Yan  *) mod_auth_digest: Use the secret when generating nonces in all cases and
fc51f9bbbff02dbd8c3adf640b1a184ceeb58fa5Krishna Elango     not only when AuthName is used in .htaccess files (this change may cause
337fc9e235877b459e389f54daf9833bbc645439anish     problems if used with round robin load balancers). Don't regenerate the
337fc9e235877b459e389f54daf9833bbc645439anish     secret on graceful restarts. PR 54637  [Stefan Fritsch]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) ab: Add a new -l parameter in order not to check the length of the responses.
337fc9e235877b459e389f54daf9833bbc645439anish     This can be usefull with dynamic pages.
337fc9e235877b459e389f54daf9833bbc645439anish     PR9945, PR27888, PR42040 [<ccikrs1 cranbrook edu>]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_logio: new format-specifier %C (combined) which is the sum of received
337fc9e235877b459e389f54daf9833bbc645439anish     and sent byte counts.
337fc9e235877b459e389f54daf9833bbc645439anish     PR54015 [Christophe Jaillet]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core: Remove apr_brigade_flatten(), buffering and duplicated code
337fc9e235877b459e389f54daf9833bbc645439anish     from the HTTP_IN filter, parse chunks in a single pass with zero copy.
337fc9e235877b459e389f54daf9833bbc645439anish     Reduce memory usage by 48 bytes per request. [Graham Leggett]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core: Stop the HTTP_IN filter from attempting to write error buckets
337fc9e235877b459e389f54daf9833bbc645439anish     to the output filters, which is bogus in the proxy case. Create a
337fc9e235877b459e389f54daf9833bbc645439anish     clean mapping from APR codes to HTTP status codes, and use it where
337fc9e235877b459e389f54daf9833bbc645439anish     needed. [Graham Leggett]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_proxy: Ensure network errors detected by the proxy are returned as
337fc9e235877b459e389f54daf9833bbc645439anish     504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
337fc9e235877b459e389f54daf9833bbc645439anish     compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
337fc9e235877b459e389f54daf9833bbc645439anish     [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
337fc9e235877b459e389f54daf9833bbc645439anish     <alejandro.alvarez.ayllon cern.ch>]
337fc9e235877b459e389f54daf9833bbc645439anish
337fc9e235877b459e389f54daf9833bbc645439anish  *) core, mod_ssl: Enable the ability for a module to reverse the sense of
337fc9e235877b459e389f54daf9833bbc645439anish     a poll event from a read to a write or vice versa. This is a step on
337fc9e235877b459e389f54daf9833bbc645439anish     the way to allow mod_ssl taking full advantage of the event MPM.
337fc9e235877b459e389f54daf9833bbc645439anish     [Graham Leggett]

  *) mod_ldap: LDAP connections used for authentication were not respecting
     LDAPConnectionPoolTimeout.  PR 54587

  *) core: ap_rgetline_core now pulls from r->proto_input_filters.

  *) mod_proxy_html: process parsed comments immediately.
     Fixes bug where parsed comments may be lost. [Nick Kew]

  *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]

  *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
     HTML/XHTML [Nick Kew]

  *) core: Add option to add valgrind support. Use it to reduce false positive
     warnings in mod_ssl. [Stefan Fritsch]

  *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
     Cache the result of the most recent password hash verification for every
     keep-alive connection. This saves some expensive calculations.
     [Stefan Fritsch]

  *) http: Remove support for Request-Range header sent by Navigator 2-3 and
     MSIE 3. [Stefan Fritsch]

  *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
     conformance or to only log the found problems. [Stefan Fritsch]

  *) core: Correctly parse an IPv6 literal host specification in an absolute
     URL in the request line. [Stefan Fritsch]

  *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]

  *) EventOpt MPM

  *) core: Add LogLevelOverride directive that allows to override the
     loglevel for clients from certain IPs. This also works for things
     like the SSL handshake where <If> LogLevel ... </If> is evaluated
     too late. [Stefan Fritsch]

  *) core: Add new directive Warning to issue warnings from a configuration
     file. Both Warning and Error now generate a timestamped log message.
     [Fabien Coelho]

  *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
     variables. [Stefan Fritsch]

  *) core: New directive RegisterHttpMethod for registering non-standard
     HTTP methods. [Stefan Fritsch]

  *) core: New directive HttpProtocol which allows to disable HTTP/0.9
     support. [Stefan Fritsch]

  *) mod_allowhandlers: New module to forbid specific handlers for specific
     directories. [Stefan Fritsch]

  *) mod_systemd: New module, for integration with systemd on Linux.
     [Jan Kaluza <jkaluza redhat.com>]

  *) core: Add pre_htaccess hook, allowing mpm-itk
     to be used without patches to httpd core.  [Jeff Trawick]

  *) WinNT MPM: Store pid and generation for each thread in scoreboard
     to allow tracking of threads from exiting children via mod_status
     or other such mechanisms.  [Jeff Trawick]

  *) mod_ssl: Catch missing or mismatched client cert/key pairs with
     SSLProxyMachineCertificateFile/Path directives.  PR 52212.
     [Keith Burdis <keith burdis.org>, Joe Orton]

  *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
     - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
     - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
       mutexes (Mutex)
     - mod_cache: thundering herd lock directory
     - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
     - mod_ldap: shared memory cache
     - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
     [Jeff Trawick]

  *) suexec: Add --enable-suexec-capabilites support on Linux, to use
     setuid/setgid capability bits rather than a setuid root binary.
     [Joe Orton]

  *) suexec: Add support for logging to syslog as an alternative to logging
     to a file; configure --without-suexec-logfile --with-suexec-syslog.
     [Joe Orton]

  *) mod_ssl: Add support for TLS Next Protocol Negotiation.  PR 52210.
     [Matthew Steele <mdsteele google.com>]

  *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
     be compiled by the build compiler instead of the host compiler.
     Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
     PR 51257. [Guenter Knauf]

  *) core: In maintainer mode, replace apr_palloc with a version that
     initializes the allocated memory with non-zero values, except if
     AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]

  *) mod_policy: Add a new testing module to help server administrators
     enforce a configurable level of protocol compliance on their
     servers and application servers behind theirs. [Graham Leggett]

  *) mod_firehose: Add a new debugging module able to record traffic
     passing through the server in such a way that connections and/or
     requests be reconstructed and replayed. [Graham Leggett]

  *) mod_noloris

  *) APREQ

  *) Simple MPM

  *) mod_serf

  [Apache 2.5.0-dev includes those bug fixes and changes with the
   Apache 2.4.xx tree as documented below, except as noted.]

Changes with Apache 2.4.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup

Changes with Apache 2.2.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup

Changes with Apache 2.0.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup