CHANGES revision 58015652ffe00f004c6404a0631474f23dadc7da
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder -*- coding: utf-8 -*-
211c5fb252e0a776baad9a4857ab198659289a4aKristina SojakovaChanges with Apache 2.3.3
211c5fb252e0a776baad9a4857ab198659289a4aKristina Sojakova *) SECURITY: CVE-2009-3095 (cve.mitre.org)
211c5fb252e0a776baad9a4857ab198659289a4aKristina Sojakova mod_proxy_ftp: sanity check authn credentials.
94e2e03f6efde106de095ef4ea0ec87f74955a31Kristina Sojakova [Stefan Fritsch <sf fritsch.de>, Joe Orton]
211c5fb252e0a776baad9a4857ab198659289a4aKristina Sojakova *) SECURITY: CVE-2009-3094 (cve.mitre.org)
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder mod_proxy_ftp: NULL pointer dereference on error paths.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Stefan Fritsch <sf fritsch.de>, Joe Orton]
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova *) core, mod_deflate, mod_sed: Reduce memory usage by reusing bucket
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova brigades in several places. [Stefan Fritsch]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_cache: Fix uri_meets_conditions() so that CacheEnable will
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder match by scheme, or by a wildcarded hostname. PR 40169
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Ryan Pendergast <rpender us.ibm.com>, Graham Leggett]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) suxec: Allow to log an error if exec fails by setting FD_CLOEXEC
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder on the log file instead of closing it. PR 10744. [Nicolas Rachinsky]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_mime: Make RemoveType override the info from TypesConfig.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 38330. [Stefan Fritsch]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_cache: Introduce the option to run the cache from within the
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova normal request handler, and to allow fine grained control over
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova where in the filter chain content is cached. [Graham Leggett]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) core: Treat timeout reading request as 408 error, not 400.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova Log 408 errors in access log as was done in Apache 1.3.x.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 39785 [Nobutaka Mantani <nobutaka nobutaka.org>,
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova Stefan Fritsch <sf fritsch.de>, Dan Poirier]
0330f0fab04797f8c41bd12691825032731798a2Kristina Sojakova *) mod_ssl: Reintroduce SSL_CLIENT_S_DN, SSL_CLIENT_I_DN, SSL_SERVER_S_DN,
0330f0fab04797f8c41bd12691825032731798a2Kristina Sojakova SSL_SERVER_I_DN back to the environment variables to be set by mod_ssl.
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder [Peter Sylvester <peter.sylvester edelweb.fr>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_cache: don't cache incomplete responses, per RFC 2616, 13.8.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder PR15866. [Dan Poirier]
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova *) ab: ab segfaults in verbose mode on https sites
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova PR46393. [Ryan Niebur]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_dav: Allow other modules to become providers and add resource types
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova to the DAV response. [Jari Urpalainen <jari.urpalainen nokia.com>,
0330f0fab04797f8c41bd12691825032731798a2Kristina Sojakova Brian France <brian brianfrance.com>]
2ddc9d39235393dca2e40203dde20284db4c3deeKristina Sojakova *) mod_dav: Allow other modules to add things to the DAV or Allow headers
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova of an OPTIONS request. [Jari Urpalainen <jari.urpalainen nokia.com>,
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova Brian France <brian brianfrance.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) core: Lower memory usage of core output filter.
2ddc9d39235393dca2e40203dde20284db4c3deeKristina Sojakova [Stefan Fritsch <sf sfritsch.de>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_mime: Detect invalid use of MultiviewsMatch inside Location and
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova LocationMatch sections. PR47754. [Dan Poirier]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_request: Make sure the KeptBodySize directive rejects values
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova that aren't valid numbers. [Graham Leggett]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_session_crypto: Sanity check should the potentially encrypted
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova session cookie be too short. [Graham Leggett]
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder *) mod_session.c: Prevent a segfault when session is added but not
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova configured. [Graham Leggett]
b5702fcfbabcc2b13557bc96ed8376133420dc73Kristina Sojakova *) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_auth_digest: Fail server start when nonce count checking
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder is configured without shared memory, or md5-sess algorithm is
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder configured. [Dan Poirier]
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova *) mod_proxy_connect: The connect method doesn't work if the client is
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder connecting to the apache proxy through an ssl socket. Fixed.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder PR29744. [Brad Boyer, Mark Cave-Ayland, Julian Gilbey, Fabrice Durand,
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova David Gence, Tim Dodge, Per Gunnar Hans, Emmanuel Elango,
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder Kevin Croft, Rudolf Cardinal]
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova *) mod_ssl: The error message when SSLCertificateFile is missing should
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova at least give the name or position of the problematic virtual host
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova definition. [Stefan Fritsch sf sfritsch.de]
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova *) mod_auth_digest: Fix null pointer when qop=none. [Dan Poirier]
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova *) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_headers: generalise the envclause to support expression
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova evaluation with ap_expr parser [Nick Kew]
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova *) mod_cache: Introduce the thundering herd lock, a mechanism to keep
89dbd1f57ed4195123cdd086f14e0413c2ffac68Kristina Sojakova the flood of requests at bay that strike a backend webserver as
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder a cached entity goes stale. [Graham Leggett]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_auth_digest: Fix usage of shared memory and re-enable it.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 16057 [Dan Poirier]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Preserve Port information over internal redirects
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 35999 [Jonas Ringh <jonas.ringh cixit.se>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Proxy: unable to connect to a backend is SERVICE_UNAVAILABLE,
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova rather than BAD_GATEWAY or (especially) NOT_FOUND.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 46971 [evanc nortel.com]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Various modules: Do better checking of pollset operations in order to
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova avoid segmentation faults if they fail. PR 46467
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova [Stefan Fritsch <sf sfritsch.de>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_autoindex: Correctly create an empty cell if the description
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) ab: Fix broken error messages after resolver or connect() failures.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Jeff Trawick]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) SECURITY: CVE-2009-1890 (cve.mitre.org)
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder Fix a potential Denial-of-Service attack against mod_proxy in a
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova reverse proxy configuration, where a remote attacker can force a
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) SECURITY: CVE-2009-1191 (cve.mitre.org)
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder mod_proxy_ajp: Avoid delivering content from a previous request which
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova failed to send a request body. PR 46949 [Ruediger Pluem]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) htdbm: Fix possible buffer overflow if dbm database has very
0330f0fab04797f8c41bd12691825032731798a2Kristina Sojakova long values. PR 30586 [Dan Poirier]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) core: Return APR_EOF if request body is shorter than the length announced
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova by the client. PR 33098 [ Stefan Fritsch <sf sfritsch.de>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_suexec: correctly set suexec_enabled when httpd is run by a
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder non-root user and may have insufficient permissions.
097b7fb3f8f90e87120d30bf37a1d89fe0ddfaf0Kristina Sojakova PR 42175 [Jim Radford <radford blackbean.org>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova type. PR 45107. [Michael Ströder <michael stroeder.com>,
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova Peter Sylvester <peter.sylvester edelweb.fr>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_proxy_http: fix case sensitivity checking transfer encoding
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder PR 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_alias: ensure Redirect issues a valid URL.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 44020 [HÃ¥kon Stordahl <hakon stordahl.org>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_dir: add FallbackResource directive, to enable admin to specify
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder an action to happen when a URL maps to no file, without resorting
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova to ErrorDocument or mod_rewrite. PR 47184 [Nick Kew]
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder *) mod_cgid: Do not leak the listening Unix socket file descriptor to the
097b7fb3f8f90e87120d30bf37a1d89fe0ddfaf0Kristina Sojakova CGI process. PR 47335 [Kornél Pál <kornelpal gmail.com>]
0330f0fab04797f8c41bd12691825032731798a2Kristina Sojakova *) mod_rewrite: Remove locking for writing to the rewritelog.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 46942 [Dan Poirier <poirier pobox.com>]
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder *) mod_alias: check sanity in Redirect arguments.
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_proxy_http: fix Host: header for literal IPv6 addresses.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder *) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova defined session identifiers encoded in the URL when caching.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova [Ruediger Pluem]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_rewrite: Fix the error string returned by RewriteRule.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder argument of RewriteRule was not started with "[" or not ended with "]".
034867cd56c1b4a67fddc607eb315d8f2b1933fbChristian Maeder PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) Windows: Fix usage message.
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Rainer Jung]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) apachectl: When passing through arguments to httpd in
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova non-SysV mode, use the "$@" syntax to preserve arguments.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova [Eric Covener]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_dbd: add DBDInitSQL directive to enable SQL statements to
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova be run when a connection is opened. PR 46827
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Marko Kevac <mkevac gmail.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder PR 47037. [Jeff Trawick]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova protocol. [Mladen Turk]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) mod_proxy_ajp: Forward remote port information by default.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Allow MPMs to be loaded dynamically, as with most other modules. This
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova required changes to the MPM interfaces. Removed: mpm.h, mpm_default.h
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova (as an installed header), APACHE_MPM_DIR, MPM_NAME, ap_threads_per_child,
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova ap_max_daemons_limit, ap_my_generation, etc. ap_mpm_query() can't be
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova called until after the register-hooks phase. [Jeff Trawick]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder to enable stricter checking of remote server certificates.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova [Ruediger Pluem]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova returns EINPROGRESS and a subsequent poll() returns only POLLERR.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova Observed on HP-UX. [Eric Covener]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Remove broken support for BeOS, OS/2, TPF, and even older platforms such
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova as A/UX, Next, and Tandem. [Jeff Trawick]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_proxy_ftp: Add ProxyFtpListOnWildcard directive to allow files with
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova globbing characters to be retrieved instead of converted into a
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova directory listing. PR 46789 [Dan Poirier <poirier pobox.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) Provide ap_retained_data_create()/ap_retained_data_get() for preservation
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder of module state across unload/load. [Jeff Trawick]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_substitute: Fix a memory leak. PR 44948
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder [Dan Poirier <poirier pobox.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina SojakovaChanges with Apache 2.3.2
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_mime_magic: Fix detection of compressed content. [Rainer Jung]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova HTML injections and HTTP response splitting. PR 46837.
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova [Geoff Keating <geoffk apple.com>]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) mod_ssl: add support for type-safe STACK constructs in OpenSSL
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova development HEAD. PR 45521. [Kaspar Brand, Sander Temme]
9f8b6c20948cc102562f8ad0c39a4b5e3855b02fKristina Sojakova *) ab: Fix maintenance of the pollset to resolve EALREADY errors
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova PR 44584. Use APR_POLLSET_NOCOPY for better performance with some
63dbf3642c023a8bebbc8ca0d56f698114551c8cKristina Sojakova pollset implementations. [Jeff Trawick]
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova *) mod_disk_cache: The module now turns off sendfile support if
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova 'EnableSendfile off' is defined globally. [Lars Eilebrecht]
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova *) mod_deflate: Adjust content metadata before bailing out on 304
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova responses so that the metadata does not differ from 200 response.
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova [Roy T. Fielding]
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova *) mod_deflate: Fix creation of invalid Etag headers. We now make sure
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova that the Etag value is properly quoted when adding the gzip marker.
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova PR 39727, 45023. [Lars Eilebrecht, Roy T. Fielding]
cff5f538e6bb82f17567dcdff93291d39d74133dChristian Maeder *) Added 20x22 icons for ODF, SVG, and XML documents. PR 37185.
150dbefbeef7403ab31ecbf9c3bb56515be67cdfKristina Sojakova [Peter Harlow]
a media type has not been configured via mime.types, AddType,
[Ryan Phillips <ryan-apache trolocsis.com>]
[<tlhackque yahoo.com>]
*) prefork: Fix child process hang during graceful restart/stop in
*) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
times out before returning status line/headers.
PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
[Theo Schlossnagle <jesus omniti.com>, Paul Querna]
modules/proxy/balancers [Jim Jagielski]
privileges and Unix user/group IDs [Nick Kew]
logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
*) unixd: turn existing code into a module, and turn the set user/group
Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
*) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
*) Export and install the mod_rewrite.h header to ensure the optional
*) New module mod_sed: filter Request/Response bodies through sed
null value. [David Shane Holden <dpejesh apache.org>]
*) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
*) configure: Don't reject libtool 2.x
overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
PR 44799 [Christian Wenz <christian wenz.org>]
both inside and outside the location/directory sections, as
form request with the type of application/x-www-form-urlencoded.
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: