CHANGES revision 8e5473283d39355bc2596504d1b26bafa497d1dc
7f007e36bec06aba6b3a0f84a64f2abf99edfcd8gstein -*- coding: utf-8 -*-
c517528fe4c49a6c5a1e1c66e79544092d39e15fjerenkrantzChanges with Apache 2.5.0
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj *) mod_socache_shmcb: Correct counting of expirations for status display.
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj Expirations happening during retrieval were not counted. [Rainer Jung]
694514f7e6e99917e084943e3a05950b3c7c106ajerenkrantz *) mod_proxy_balancer: Correctly encode user provided data in management
4214e98fc9045e5010e66f9a967bd6d68f40d342aaron interface. PR 56532 [Maksymilian, <max cert.cx>]
4a257be29f8aeab984fe5622fa69e0b2aab204d7jerenkrantz *) mod_proxy_wstunnel: Fix the use of SSL connections with the "wss:"
91cacb801f6c0215b38322f6d2fc58cbfedfecfbjerenkrantz scheme. PR55320. [Alex Liu <alex.leo.ca gmail.com>]
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb *) core: Add ap_mpm_resume_suspended() API to allow a suspended connection
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb to resume. PR56333
ab71b233b3a36489e44a7b061c48293be0b17788jwoolley [Artem <artemciy gmail.com>, Edward Lu <Chaosed0 gmail.com>]
571760de5e60c0b459cb11be45507b923cd023eejwoolley *) core: Add ap_mpm_register_socket_callback_timeout() API. [Eric Covener]
bcb6e1be6041dfeb549c8ea8d37f97ad4e90a0c3rbb *) mod_proxy_wstunnel: Honor ProxyWebsocketIdleTimeout in asynchronous
9bd71e35f5d26d26d23fe3a677401828e842ed72wrowe processing mode. [Eric Covener]
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb *) mod_proxy_fcgi: Fix occasional high CPU when handling request bodies.
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb [Jeff Trawick]
b876b7bcf0ce3d232da723246d709e8dbbfe8762rbb *) mod_proxy_fcgi: Support iobuffersize parameter. [Jeff Trawick]
35330e0d79ceb8027223bbb8330a381b1f989d6etrawick *) mod_cache: Preserve non-cacheable headers forwarded from an origin 304
6f6f4a4bca281779d196acbdd5c017bb90858305trawick response. PR 55547. [Yann Ylavic]
09bd86d0db1114ee23eda0a6eb76ca055877a1cftrawick *) mod_cache: Don't add cached/revalidated entity headers to a 304 response.
2deb319e6b3de239f45c16a3e9e836d44f1f7108rbb PR 55547. [Yann Ylavic]
70f6f32765cfaadd6da8de6f0fea97ddd72d8fadmanoj *) mod_cache: Retry unconditional request with the full URL (including the
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj query-string) when the origin server's 304 response does not match the
af4c982a7cf4515f124935f99a329744035fc699slive conditions used to revalidate the stale entry. [Yann Ylavic].
af4c982a7cf4515f124935f99a329744035fc699slive *) mod_authnz_ldap: Fail explicitly when the filter is too long. Remove
af4c982a7cf4515f124935f99a329744035fc699slive unnecessary apr_pstrdup() and strlen(). [Graham Leggett]
af4c982a7cf4515f124935f99a329744035fc699slive *) Add the ldap-search option to mod_authnz_ldap, allowing authorization
af4c982a7cf4515f124935f99a329744035fc699slive to be based on arbitrary expressions that do not include the username.
10270f6f94b2069d0d357805c140a9897449b9ccianh [Graham Leggett]
10270f6f94b2069d0d357805c140a9897449b9ccianh *) Add the ldap function to the expression API, allowing LDAP filters and
10270f6f94b2069d0d357805c140a9897449b9ccianh distinguished names based on expressions to be escaped correctly to
4e3b83f6caecb85d4c139a440254cfa2f98e8960ianh guard against LDAP injection. [Graham Leggett]
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe *) Add module mod_ssl_ct, which provides an implementation of Certificate
10270f6f94b2069d0d357805c140a9897449b9ccianh Transparency (RFC 6962) for httpd. [Jeff Trawick]
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick *) mod_proxy: Preserve original request headers even if they differ
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe from the ones to be forwarded to the backend. PR 45387.
d38e33002f76ab3418cf3bc72930137e58206465jerenkrantz [Yann Ylavic]
10270f6f94b2069d0d357805c140a9897449b9ccianh *) mod_proxy: When ping/pong is configured for a worker, don't send or
10270f6f94b2069d0d357805c140a9897449b9ccianh forward "100 Continue" (interim) response to the client if it does
10270f6f94b2069d0d357805c140a9897449b9ccianh not expect one. [Yann Ylavic]
10270f6f94b2069d0d357805c140a9897449b9ccianh *) mod_remoteip: Prevent an external proxy from presenting an internal
10270f6f94b2069d0d357805c140a9897449b9ccianh proxy. PR 55962. [Mike Rumph]
10270f6f94b2069d0d357805c140a9897449b9ccianh *) mod_ssl: Add hooks to allow other modules to perform processing at
58e0ed3d1f052d695078b1d2a61c19246776eab5jerenkrantz several stages of initialization and connection handling. See
10270f6f94b2069d0d357805c140a9897449b9ccianh mod_ssl_openssl.h. [Jeff Trawick]
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick *) mod_proxy_wstunnel: Avoid sending error responses down an upgraded
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick websockets connection as it is being close down. [Eric Covener]
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick *) mod_proxy_wstunnel: Allow the administrator to cap the amount
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick of time a synchronous websockets connection stays idle with
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick ProxyWebsocketIdleTimeout. [Eric Covener]
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick *) mod_proxy_wstunnel: Change to opt-in for asynchronous support, adding
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick directives ProxyWebsocketAsync and ProxyWebsocketAsyncDelay.
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick [Eric Covener]
5c99bd08a9f1f96f37da0239d3365a0025531711gregames *) mod_proxy_wstunnel: Stop leaking websockets backend connections under
5c99bd08a9f1f96f37da0239d3365a0025531711gregames event MPM (trunk-only). [Eric Covener]
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz *) mod_proxy_wstunnel: Don't issue AH02447 and log a 500 on routine
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz hangups from websockets origin servers. PR 56299
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz [Yann Ylavic, Edward Lu <Chaosed0 gmail com>, Eric Covener]
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz *) mod_proxy_wstunnel: Don't pool backend websockets connections,
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz because we need to handshake every time. PR 55890.
41ce8eb0053365f3ce1a774ba4239fc9e4fae072wrowe [Eric Covener]
5c99bd08a9f1f96f37da0239d3365a0025531711gregames *) mod_proxy_http: Add detach_backend hook (potentially usable
022f844fee7ce2beb3eb5626c69aa27261863fc5jerenkrantz in other proxy scheme handlers). [Jeff Trawick]
0b55e6ee8a8472b443ad03a7ccf9e9dd27db0d83jerenkrantz *) mod_deflate: Add DeflateAlterETag to control how the ETag
067e6fbc95594b0edea4ed21eab04b538e2da60cjerenkrantz is modified. The 'NoChange' parameter mimics 2.2.x behavior.
5c99bd08a9f1f96f37da0239d3365a0025531711gregames PR 45023, PR 39727. [Eric Covener]
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe *) mod_rewrite: Add 'BNF' (backreferences-no-plus) flag to RewriteRule to
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe allow spaces in backreferences to be encoded as %20 instead of '+'.
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe [Eric Covener]
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe *) mod_rewrite: Support an optional list of characters to escape in the
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe argument for the 'B' (escape backreferences) flag. [Eric Covener]
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick *) mod_ssl: Add SSLOCSPUseRequestNonce directive to control whether or not
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe OCSP requests should use a nonce to be checked against the responder's
cbd842f948c0ffda90ec0803f0fefc0d7630131cwrowe one. PR 56233. [ Yann Ylavic ]
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick *) mod_dir: Default to 2.2-like behavior and skip execution when method is
7558016fa8f4776e989f9d9de7694dcb87077bfejerenkrantz neither GET nor POST, such as for DAV requests. PR 54914. [Chris Darroch]
7558016fa8f4776e989f9d9de7694dcb87077bfejerenkrantz *) mod_rewrite: Rename the handler that does per-directory internal
bc23c0b7fdc3f41c1159bcc1254a04a996d6f985jerenkrantz redirects to "rewrite-redirect-handler" from "redirect-handler" so
bc23c0b7fdc3f41c1159bcc1254a04a996d6f985jerenkrantz it is less ambiguous and less likely to be reused. [Eric Covener]
bc23c0b7fdc3f41c1159bcc1254a04a996d6f985jerenkrantz *) mod_rewrite: Protect against looping with the [N] flag by enforcing a
5c99bd08a9f1f96f37da0239d3365a0025531711gregames default limit of 10000 iterations, and allowing each rule to change its
6d6d1bf27fbc05343e916eae8fc418d07fd97787ianh limit. [Eric Covener]
4e3b83f6caecb85d4c139a440254cfa2f98e8960ianh *) mod_ssl: Fix config merging of SSLOCSPEnable and SSLOCSPOverrideResponder.
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames [Jeff Trawick]
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames *) Add HttpContentLengthHeadZero and HttpExpectStrict directives.
c749d9bab4568a670ed96bd27d0ff69a585499e3ianh [Yehuda Sadeh <yehuda inktank com>, Justin Erenkrantz]
c749d9bab4568a670ed96bd27d0ff69a585499e3ianh *) FreeBSD: Disable IPv4-mapped listening sockets by default for versions
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick 5+ instead of just for FreeBSD 5. PR 53824. [Jeff Trawick]
c517528fe4c49a6c5a1e1c66e79544092d39e15fjerenkrantz *) mod_auth_form: Add a debug message when the fields on a form are not
a52f762ccd7e77d720ee341b0ddc203b4fb900ecjerenkrantz recognised. [Graham Leggett]
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick *) mod_ssl: Add -t -DDUMP_CA_CERTS option which dumps the filenames of all
b24a7ff8bc1f07fc6757eb2ac5f3dbf135ebfec2trawick configured SSL CA certificates to stdout the same way as DUMP_CERTS does.
c00273b9c51c617ede471e9cb95c22420f1227fbbrianp [Jan Kaluza]
c00273b9c51c617ede471e9cb95c22420f1227fbbrianp *) mod_ssl: Don't flush when an EOS is received. Prepares mod_ssl
6758b07b4b79f898b0f56375016cea7da0bfb495wrowe to support write completion. [Graham Leggett]
6758b07b4b79f898b0f56375016cea7da0bfb495wrowe *) core: Add parse_errorlog_arg callback to ap_errorlog_provider
6758b07b4b79f898b0f56375016cea7da0bfb495wrowe to allow providers to check the ErrorLog argument. [Jan Kaluza]
020fe2135763b51ac6221adcc51c3fb6509e7a95brianp *) mod_cgid: Use the servers Timeout for each read from a CGI script,
c00273b9c51c617ede471e9cb95c22420f1227fbbrianp allow override with new CGIDRequestTimeout directive. PR43494
54e1babd5a5a56c576eeeace54110150769cc916coar [Eric Covener, Toshikuni Fukaya <toshikuni-fukaya cybozu co jp>]
54e1babd5a5a56c576eeeace54110150769cc916coar *) core: Add missing Reason-Phrase in HTTP response headers.
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz PR 54946. [Rainer Jung]
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz *) core: ensure any abnormal exit is reported to stderr if it's a tty.
77304e37d675303eef0355fc3bb9a12bb506547ajerenkrantz PR 55670 [Nick Kew]
54e1babd5a5a56c576eeeace54110150769cc916coar *) mod_lua: Let the Inter-VM get/set functions work with a global
7fe18c15b669db9d191859695901dc4fcf3829dawrowe shared memory pool instead of a per-process pool. [Daniel Gruno]
7fe18c15b669db9d191859695901dc4fcf3829dawrowe *) ldap: Support ldaps when using the Microsoft LDAP SDK.
b84f66c93f820824b1d5455181f55598b766319cwrowe PR 54626. [Jean-Frederic Clere]
976501adbc040220270f7d1d77c4b8373033be69wrowe *) mod_proxy: Add ap_connection_reusable() for checking if a connection
976501adbc040220270f7d1d77c4b8373033be69wrowe is reusable as of this point in processing. [Jeff Trawick]
976501adbc040220270f7d1d77c4b8373033be69wrowe *) mod_authnz_ldap: Change default value of AuthLDAPMaxSubGroupDepth to 0
976501adbc040220270f7d1d77c4b8373033be69wrowe to avoid performance problems when subgroups aren't in use. [Eric Covener]
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz *) mod_syslog: New module implementing syslog ap_error_log provider.
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz Previously, this code was part of core, now it's in separate module.
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz [Jan Kaluza]
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz *) core: Add ap_errorlog_provider to make ErrorLog logging modular. Move
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz syslog support from core to new mod_syslog. [Jan Kaluza]
020fe2135763b51ac6221adcc51c3fb6509e7a95brianp *) WinNT MPM: If ap_run_pre_connection() fails or sets c->aborted, don't
6d968aa80a4524cc08ccf1925c47580165058318ianh save the socket for reuse by the next worker as if it were an
6d968aa80a4524cc08ccf1925c47580165058318ianh APR_SO_DISCONNECTED socket. Restores 2.2 behavior. [Eric Covener]
108db76823f2261a33aaa3621af6a1e54db17a69trawick *) mod_status, mod_echo: Fix the display of client addresses.
108db76823f2261a33aaa3621af6a1e54db17a69trawick They were truncated to 31 characters which is not enough for IPv6 addresses.
108db76823f2261a33aaa3621af6a1e54db17a69trawick PR 54848 [Bernhard Schmidt <berni birkenwald de>]
aea283240d4222da5426169a68e307872d240044jerenkrantz *) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
a9a0f66fee736c72861cb2819b67b7784896a37cjerenkrantz [Jeff Trawick]
a9a0f66fee736c72861cb2819b67b7784896a37cjerenkrantz *) mod_unique_id: Use output of the PRNG rather than IP address and
a9a0f66fee736c72861cb2819b67b7784896a37cjerenkrantz pid, avoiding sleep() call and possible DNS issues at startup,
427af37b52c0ce1d8c85c9966f41d2b055e652facoar plus improving randomness for IPv6-only hosts.
427af37b52c0ce1d8c85c9966f41d2b055e652facoar [Jan Kaluza <jkaluza redhat.com>]
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) mod_authnz_ldap: Support primitive LDAP servers that do not accept
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron filters, such as "SDBM-backed LDAP" on z/OS, by allowing a special
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron filter "none" to be specified in AuthLDAPURL. [Eric Covener]
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames *) mod_file_cache: mod_file_cache should be able to serve files that
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames haven't had a Content-Type set via e.g. mod_mime. [Eric Covener]
108db76823f2261a33aaa3621af6a1e54db17a69trawick *) core: merge AllowEncodedSlashes from the base configuration into
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz virtual hosts. [Eric Covener]
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz *) AIX: Install DSO's with "cp" instead of "install" in instdso.sh
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz [Eric Covener]
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz *) mod_ldap: Don't keep retrying if a new LDAP connection times out.
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz [Eric Covener]
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz *) mod_deflate: permit compilation of mod_deflate against a zlib that has
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz been configured with -D Z_PREFIX, which redefines the token "deflate".
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz [Eric Covener]
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz *) mod_socache_shmcb.c: Remove arbitrary restriction on shared memory size
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz previously limited to 64MB. [Jens Låås <jelaas gmail.com>]
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz *) mod_auth_digest: Use the secret when generating nonces in all cases and
b865daaa4ef731a7066ee6d97e2aae36c7743939jerenkrantz not only when AuthName is used in .htaccess files (this change may cause
dc098c7ce5d36179c504d09fc722d190683d0262aaron problems if used with round robin load balancers). Don't regenerate the
dc098c7ce5d36179c504d09fc722d190683d0262aaron secret on graceful restarts. PR 54637 [Stefan Fritsch]
dc098c7ce5d36179c504d09fc722d190683d0262aaron *) core: Remove apr_brigade_flatten(), buffering and duplicated code
dc098c7ce5d36179c504d09fc722d190683d0262aaron from the HTTP_IN filter, parse chunks in a single pass with zero copy.
dc098c7ce5d36179c504d09fc722d190683d0262aaron Reduce memory usage by 48 bytes per request. [Graham Leggett]
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames *) core: Stop the HTTP_IN filter from attempting to write error buckets
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames to the output filters, which is bogus in the proxy case. Create a
dc098c7ce5d36179c504d09fc722d190683d0262aaron clean mapping from APR codes to HTTP status codes, and use it where
1832c015282e23772f5518059eea4b54a9d142cfjerenkrantz needed. [Graham Leggett]
1832c015282e23772f5518059eea4b54a9d142cfjerenkrantz *) mod_proxy: Ensure network errors detected by the proxy are returned as
1832c015282e23772f5518059eea4b54a9d142cfjerenkrantz 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
f9a32fe0b51a7fb40aa8208217f7301e9c0fcf76gregames compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
1832c015282e23772f5518059eea4b54a9d142cfjerenkrantz *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
00452612306ed39e3b0ae309928994ca180b1927jerenkrantz [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
af16c97c97e41b96cce9b10c80277532aea8e414jim *) core, mod_ssl: Enable the ability for a module to reverse the sense of
af16c97c97e41b96cce9b10c80277532aea8e414jim a poll event from a read to a write or vice versa. This is a step on
af16c97c97e41b96cce9b10c80277532aea8e414jim the way to allow mod_ssl taking full advantage of the event MPM.
ba6a3870d5bdfbcf3654173182d2280b15289abamartin [Graham Leggett]
85b118ad1fe17b9e15de2979bf3adec0850a8284aaron *) mod_ldap: LDAP connections used for authentication were not respecting
7cf837ace79f9a34ce674894f8f3cd58f9964b0ejerenkrantz LDAPConnectionPoolTimeout. PR 54587
ba6a3870d5bdfbcf3654173182d2280b15289abamartin *) core: ap_rgetline_core now pulls from r->proto_input_filters.
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames *) mod_proxy_html: process parsed comments immediately.
00452612306ed39e3b0ae309928994ca180b1927jerenkrantz Fixes bug where parsed comments may be lost. [Nick Kew]
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) core: Add option to add valgrind support. Use it to reduce false positive
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron warnings in mod_ssl. [Stefan Fritsch]
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron Cache the result of the most recent password hash verification for every
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron keep-alive connection. This saves some expensive calculations.
427af37b52c0ce1d8c85c9966f41d2b055e652facoar [Stefan Fritsch]
0bcb1fe39dfaacf9745b6633f5cc9ebc8e2596caaaron *) http: Remove support for Request-Range header sent by Navigator 2-3 and
02adcc4a00e718d4ee5f8567af789f64e713febdjerenkrantz MSIE 3. [Stefan Fritsch]
02adcc4a00e718d4ee5f8567af789f64e713febdjerenkrantz *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
02adcc4a00e718d4ee5f8567af789f64e713febdjerenkrantz conformance or to only log the found problems. [Stefan Fritsch]
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames *) core: Correctly parse an IPv6 literal host specification in an absolute
364dfd4527e6ce37b828a42e2c0bbdf9ba19a9b8gregames URL in the request line. [Stefan Fritsch]
02adcc4a00e718d4ee5f8567af789f64e713febdjerenkrantz *) EventOpt MPM
3a335d38ae042442923b87dce21b274a52e7e400brianp *) core: Add LogLevelOverride directive that allows to override the
3a335d38ae042442923b87dce21b274a52e7e400brianp loglevel for clients from certain IPs. This also works for things
3a335d38ae042442923b87dce21b274a52e7e400brianp like the SSL handshake where <If> LogLevel ... </If> is evaluated
3a335d38ae042442923b87dce21b274a52e7e400brianp too late. [Stefan Fritsch]
3a335d38ae042442923b87dce21b274a52e7e400brianp *) core: Add new directive Warning to issue warnings from a configuration
262bfa74293f7bc2049b4cd525875c8775711ca2aaron file. Both Warning and Error now generate a timestamped log message.
262bfa74293f7bc2049b4cd525875c8775711ca2aaron [Fabien Coelho]
262bfa74293f7bc2049b4cd525875c8775711ca2aaron *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
262bfa74293f7bc2049b4cd525875c8775711ca2aaron variables. [Stefan Fritsch]
262bfa74293f7bc2049b4cd525875c8775711ca2aaron *) core: New directive RegisterHttpMethod for registering non-standard
262bfa74293f7bc2049b4cd525875c8775711ca2aaron HTTP methods. [Stefan Fritsch]
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz *) core: New directive HttpProtocol which allows to disable HTTP/0.9
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz support. [Stefan Fritsch]
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz *) mod_allowhandlers: New module to forbid specific handlers for specific
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz directories. [Stefan Fritsch]
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz *) mod_systemd: New module, for integration with systemd on Linux.
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick [Jan Kaluza <jkaluza redhat.com>]
ff42f83cbf31893bcde9712332a8e5ee970f6a74trawick *) WinNT MPM: Store pid and generation for each thread in scoreboard
33f5961d34a8b5390cebad0543b3ebe67830e5d7jerenkrantz to allow tracking of threads from exiting children via mod_status
54e1babd5a5a56c576eeeace54110150769cc916coar or other such mechanisms. [Jeff Trawick]
54e1babd5a5a56c576eeeace54110150769cc916coar *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
54e1babd5a5a56c576eeeace54110150769cc916coar - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
54e1babd5a5a56c576eeeace54110150769cc916coar - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
54e1babd5a5a56c576eeeace54110150769cc916coar mutexes (Mutex)
54e1babd5a5a56c576eeeace54110150769cc916coar - mod_cache: thundering herd lock directory
54e1babd5a5a56c576eeeace54110150769cc916coar - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
54e1babd5a5a56c576eeeace54110150769cc916coar - mod_ldap: shared memory cache
54e1babd5a5a56c576eeeace54110150769cc916coar - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
54e1babd5a5a56c576eeeace54110150769cc916coar [Jeff Trawick]
54e1babd5a5a56c576eeeace54110150769cc916coar *) suexec: Add --enable-suexec-capabilites support on Linux, to use
949aa7bba7f804faa8e6b08cad42a98fc0255d85jerenkrantz setuid/setgid capability bits rather than a setuid root binary.
949aa7bba7f804faa8e6b08cad42a98fc0255d85jerenkrantz *) suexec: Add support for logging to syslog as an alternative to logging
949aa7bba7f804faa8e6b08cad42a98fc0255d85jerenkrantz to a file; configure --without-suexec-logfile --with-suexec-syslog.
07021d9f405849228b859d9fb4b877f20e4fbba3jerenkrantz *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
07021d9f405849228b859d9fb4b877f20e4fbba3jerenkrantz [Matthew Steele <mdsteele google.com>]
07021d9f405849228b859d9fb4b877f20e4fbba3jerenkrantz *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
07021d9f405849228b859d9fb4b877f20e4fbba3jerenkrantz be compiled by the build compiler instead of the host compiler.
07021d9f405849228b859d9fb4b877f20e4fbba3jerenkrantz Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
f126ee03179eb54308118f1ec3de5a7b461685d8aaron PR 51257. [Guenter Knauf]
f126ee03179eb54308118f1ec3de5a7b461685d8aaron *) core: In maintainer mode, replace apr_palloc with a version that
f126ee03179eb54308118f1ec3de5a7b461685d8aaron initializes the allocated memory with non-zero values, except if
f126ee03179eb54308118f1ec3de5a7b461685d8aaron AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
f126ee03179eb54308118f1ec3de5a7b461685d8aaron *) mod_policy: Add a new testing module to help server administrators
f126ee03179eb54308118f1ec3de5a7b461685d8aaron enforce a configurable level of protocol compliance on their
f126ee03179eb54308118f1ec3de5a7b461685d8aaron servers and application servers behind theirs. [Graham Leggett]
f126ee03179eb54308118f1ec3de5a7b461685d8aaron *) mod_firehose: Add a new debugging module able to record traffic
f126ee03179eb54308118f1ec3de5a7b461685d8aaron passing through the server in such a way that connections and/or
f126ee03179eb54308118f1ec3de5a7b461685d8aaron requests be reconstructed and replayed. [Graham Leggett]
f126ee03179eb54308118f1ec3de5a7b461685d8aaron *) mod_noloris
109faf633e12ab0bbdd602c7addc795cce59e8addreid *) Simple MPM
109faf633e12ab0bbdd602c7addc795cce59e8addreid *) mod_serf
109faf633e12ab0bbdd602c7addc795cce59e8addreid [Apache 2.5.0-dev includes those bug fixes and changes with the
109faf633e12ab0bbdd602c7addc795cce59e8addreid Apache 2.4.xx tree as documented below, except as noted.]
109faf633e12ab0bbdd602c7addc795cce59e8addreidChanges with Apache 2.4.x and later:
109faf633e12ab0bbdd602c7addc795cce59e8addreid *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
4ca13a5e126946272f02637e268a8e09193c553ecoarChanges with Apache 2.2.x and later:
4ca13a5e126946272f02637e268a8e09193c553ecoar *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
4ca13a5e126946272f02637e268a8e09193c553ecoarChanges with Apache 2.0.x and later: