CHANGES revision 5c5e7695fc1e44bebba6b339494a2df4e69b86fc
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington -*- coding: utf-8 -*-
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsChanges with Apache 2.3.0
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington[ When backported to 2.2.x, remove entry from this file ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews *) http_filters: Don't spin if get an error when reading the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews next chunk. PR 44381 [Ruediger Pluem]
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) mod_dav: Return "method not allowed" if the destination URI of a WebDAV
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt copy / move operation is no DAV resource. PR 44734 [Ruediger Pluem]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) Introduced ap_expr API for expression evaluation.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt This is adapted from mod_include, which is the first module
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt to use the new API.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_authz_dbd: When redirecting after successful login/logout per
94bd918b63001277f1b28ae4581645f8a835688fBob Halley AuthzDBDRedirectQuery, do not report authorization failure, and use
94bd918b63001277f1b28ae4581645f8a835688fBob Halley first row returned by database query instead of last row.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Chris Darroch]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_rewrite: Initialize hash needed by ap_register_rewrite_mapfunc early
94bd918b63001277f1b28ae4581645f8a835688fBob Halley enough. PR 44641 [Daniel Lescohier <daniel.lescohier cnet.com>]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_authn_dbd: Disambiguate and tidy database authentication
94bd918b63001277f1b28ae4581645f8a835688fBob Halley error messages. PR 43210. [Chris Darroch, Phil Endecott
94bd918b63001277f1b28ae4581645f8a835688fBob Halley <spam_from_apache_bugzilla chezphil.org>]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_cache: Handle If-Range correctly if the cached resource was stale.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley PR 44579 [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_speling: remove regression from 1.3/2.0 behavior and
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein drop dependency between mod_speling and AcceptPathInfo.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 43562 [Jose Kahan <jose w3.org>]
cfa2326b5c96a3a4c720262e077b2baf9fc27970Tinderbox User *) mod_ldap: Correctly return all requested attribute values
938440694b33cd752e9e4b71a526368b4811c177Tinderbox User when some attributes have a null value.
19c7b1a0293498a3e36692c59646ed6e15ffc8d0Tinderbox User PR 44560 [Anders Kaseorg <anders kaseorg.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) core: check symlink ownership if both FollowSymlinks and
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein SymlinksIfOwnerMatch are set [Nick Kew]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) core: fix origin checking in SymlinksIfOwnerMatch
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) rotatelogs: Added '-f' option to force rotatelogs to create the
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein logfile as soon as started, and not wait until it reads the
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein first entry. [Jim Jagielski]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_proxy: Do not try a direct connection if the connection via a
94bd918b63001277f1b28ae4581645f8a835688fBob Halley remote proxy failed before and the request has a request body.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Ruediger Pluem]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_substitute: The default is now flattening the buckets after
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt each substitution. This was mostly done to abide by the
30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews Principle Of Least Astonishment. The newly added 'q' flag allows for
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein the quicker, more efficient bucket-splitting if the user so
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein desires. [Jim Jagielski]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Added 'disablereuse' option for ProxyPass which, essentially,
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein disables connection pooling for the backend servers.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Jim Jagielski]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein 'most' set for '--enable-modules' and '--enable-shared-mods'. Include
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein contain public function declarations which are useful for
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein third party module authors. PR 42431 [Dirk-Willem van Gulik].
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_dir, mod_negotiation: pass the output filter information
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein to newly created sub requests; as these are later on used
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein as true requests with an internal redirect. This allows for
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein mod_cache et.al. to trap the results of the redirect.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Dirk-Willem van Gulik, Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) ab: Use a 64 bit unsigned int instead of a signed long to count the
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein bytes transferred to avoid integer overflows. PR 44346 [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy_ajp: Do not retry request in the case that we either failed to
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein sent a part of the request body or if the request is not idempotent.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 44334 [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) ProxyPassReverse is now balancer aware. [Jim Jagielski]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) rotatelogs: Don't leak memory when reopening the logfile.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 40183 [Ruediger Pluem, Takashi Sato <serai lans-tv.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ldap: Add support (taking advantage of the new APR capability)
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein for ldap rebind callback while chasing referrals. This allows direct
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein searches on LDAP servers (in particular MS Active Directory 2003+)
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein using referrals without the use of the global catalog.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PRs 26538, 40268, and 42557 [Paul J. Reder]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) ab: Do not try to read non existing response bodies of HEAD requests.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 34275 [Takashi Sato <serai lans-tv.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Support chroot on Unix-family platforms
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 43596 [Dimitar Pashev <mitko banksoft-bg.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy_http: Return HTTP status codes instead of apr_status_t
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein values for errors encountered while forwarding the request body
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 44165 [Eric Covener]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ssl: Added server name indication support (SNI, RFC 4366).
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein can be created with test/make_sni.sh [Dirk-Willem van Gulik].
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) ApacheMonitor.exe: Introduce --kill argument for use by the
8b9fc7617b8f54641708c985697848e6cc10a5bbMark Andrews installer. This will permit the installation tool to remove
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein all running instances before attempting to remove the .exe.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [William Rowe]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy: Lower memory consumption for short lived connections.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 44026. [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy: Keep connections to the backend persistent in the HTTPS case.
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt [Ruediger Pluem]
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt *) rotatelogs: Improve atomicity when using -l and cleaup code.
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt PR 44004 [Rainer Jung]
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt *) mod_ssl: Add support for OCSP validation of client certificates.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_unique_id: Fix timestamp value in UNIQUE_ID.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 37064 [Kobayashi <kobayashi firstserver.co.jp>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_serf: New module for Reverse Proxying. [Paul Querna]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) core: Add the option to keep aside a request body up to a certain
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein size that would otherwise be discarded, to be consumed by filters
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein such as mod_include. When enabled for a directory, POST requests
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein to shtml files can be passed through to embedded scripts as POST
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein requests, rather being downgraded to GET requests. [Graham Leggett]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) scoreboard: Correctly declare ap_time_process_request.
30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
94bd918b63001277f1b28ae4581645f8a835688fBob Halley from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein provide the unusual legacy lookup. [William Rowe]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mpm winnt: fix null pointer dereference
94bd918b63001277f1b28ae4581645f8a835688fBob Halley PR 42572 [Davi Arnaut]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) core: reinstate location walk to fix config for subrequests
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 41960 [Jose Kahan <jose w3.org>]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_log_config: Add format options for %p so that the actual local
94bd918b63001277f1b28ae4581645f8a835688fBob Halley or remote port can be logged. PR 43415. [Adam Hasselbalch Hansen
94bd918b63001277f1b28ae4581645f8a835688fBob Halley <ahh@one.com>, Ruediger Pluem, Jeff Trawick]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein parameters to the environment. Improve portability to
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews EBCDIC machines by using apr_toupper(). [Martin Kraemer]
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews to authorize an authenticated user via a "require ldap-group X" directive
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein where the user is not in group X, but is in a subgroup contained in X.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 42891 [Paul J. Reder]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews *) ab: Add -r option to continue after socket receive errors.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Filip Hanik <devlist hanik.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein for SDKs that define LDAP_NO_LIMIT to something other than -1.
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews [David Jones <oscaremma gmail.com>]
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews *) apxs: Enhance -q flag to print all known variables and their values
561a29af8c54a216e7d30b5b4f6e0d21661654ecMark Andrews when invoked without variable name(s).
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [William Rowe, Sander Temme]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) apxs: Eliminate run-time check for mod_so. PR 40653.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [David M. Lee <dmlee crossroads.com>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) beos MPM: Create pmain pool and run modules' child_init hooks when
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Chris Darroch]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt cleanups registered in modules' child_init hooks are performed.
4eb998928b9aef0ceda42d7529980d658138698aEvan Hunt [Chris Darroch]
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews *) mod_dbd: Stash DBD connections in request_config of initial request
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein only, or else sub-requests and internal redirections may cause
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) Fix issue which could cause error messages to be written to access logs
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) The LockFile directive, which specifies the location of
94bd918b63001277f1b28ae4581645f8a835688fBob Halley the accept() mutex lockfile, is deprecated. Instead, the
94bd918b63001277f1b28ae4581645f8a835688fBob Halley AcceptMutex directive now takes an optional lockfile
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein location parameter, ala SSLMutex. [Jim Jagielski]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_authn_dbd: Export any additional columns queried in the SQL select
561a29af8c54a216e7d30b5b4f6e0d21661654ecMark Andrews into the environment with the name AUTHENTICATE_<COLUMN>. This brings
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_dbd: Key the storage of prepared statements on the hex string
94bd918b63001277f1b28ae4581645f8a835688fBob Halley value of server_rec, rather than the server name, as the server name
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein may change (eg when the server name is set) at any time, causing
94bd918b63001277f1b28ae4581645f8a835688fBob Halley weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt the first bucket from the brigade, finds it not to be a FILE
30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews bucket and barfs. The fix is to pass a bucket rather than a brigade.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Niklas Edmundsson <nikke acc.umu.se>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) ap_get_server_version() has been removed. Third-party modules must
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein now use ap_get_server_banner() or ap_get_server_description().
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Jeff Trawick]
94bd918b63001277f1b28ae4581645f8a835688fBob Halley *) All MPMs: Introduce a check_config phase between pre_config and
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt open_logs, to allow modules to review interdependent configuration
30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews directive values and adjust them while messages can still be logged
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein to the console. Handle relevant MPM directives during this phase
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein and format messages for both the console and the error log, as
94bd918b63001277f1b28ae4581645f8a835688fBob Halley appropriate. [Chris Darroch]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy: don't URLencode tilde in path component
94bd918b63001277f1b28ae4581645f8a835688fBob Halley [Stijn Hoop <stijn sandcat.nl>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mpm_winnt: Fix return values from wait_for_many_objects.
94bd918b63001277f1b28ae4581645f8a835688fBob Halley The return value is index to the signaled thread in the
94bd918b63001277f1b28ae4581645f8a835688fBob Halley creted_threads array. We can not use WAIT_TIMEOUT because
94bd918b63001277f1b28ae4581645f8a835688fBob Halley his value is defined as 258, thus limiting the MaxThreads
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt to that value. [Mladen Turk]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
[Darryl Miles <darryl darrylmiles.org>]
[Niklas Edmundsson <nikke acc.umu.se>]
PR 39713. [Owen Taylor <otaylor redhat.com>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: