CHANGES revision a511a29faf2ff7ead3b67680154a624effb31aaf
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe -*- coding: utf-8 -*-
a601d863bd772fefc4dc82a883589d8be6a44811wroweChanges with Apache 2.5.0
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) core: Stop the HTTP_IN filter from attempting to write error buckets
a601d863bd772fefc4dc82a883589d8be6a44811wrowe to the output filters, which is bogus in the proxy case. Create a
a601d863bd772fefc4dc82a883589d8be6a44811wrowe clean mapping from APR codes to HTTP status codes, and use it where
a601d863bd772fefc4dc82a883589d8be6a44811wrowe needed. [Graham Leggett]
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) mod_proxy: Ensure we don't attempt to amend a table we are iterating
6f51bbc3054846e0c0a897d5f16ceba1726bebc6jerenkrantz through, ensuring that all headers listed by Connection are removed.
6f51bbc3054846e0c0a897d5f16ceba1726bebc6jerenkrantz [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
6f51bbc3054846e0c0a897d5f16ceba1726bebc6jerenkrantz *) core: apachectl -S prints wildcard name-based virtual hosts twice.
6f51bbc3054846e0c0a897d5f16ceba1726bebc6jerenkrantz PR54948 [Eric Covener]
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) mod_proxy: Reject invalid values for Max-Forwards. [Graham Leggett,
ff920f8ae37ba372801b67ea7c3d5bf1dfb55585dreid Co-Advisor <coad measurement-factory.com>]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_cache: If a 304 response indicates an entity not currently cached, then
ff920f8ae37ba372801b67ea7c3d5bf1dfb55585dreid the cache MUST disregard the response and repeat the request without the
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe conditional. [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_proxy: Fix seg-faults when using the global pool on threaded
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe MPMs [Thomas Eckert <thomas.r.w.eckert gmail.com>, Jim Jagielski]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_proxy: Ensure network errors detected by the proxy are returned as
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
ff920f8ae37ba372801b67ea7c3d5bf1dfb55585dreid *) mod_cache: Ensure that we don't attempt to replace a cached response
a601d863bd772fefc4dc82a883589d8be6a44811wrowe with an older response as per RFC2616 13.12. [Graham Leggett, Co-Advisor
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) core, mod_cache: Ensure RFC2616 compliance in ap_meets_conditions()
a601d863bd772fefc4dc82a883589d8be6a44811wrowe with weak validation combined with If-Range and Range headers. Break
a601d863bd772fefc4dc82a883589d8be6a44811wrowe out explicit conditional header checks to be useable elsewhere in the
a601d863bd772fefc4dc82a883589d8be6a44811wrowe server. Ensure weak validation RFC compliance in the byteranges filter.
a601d863bd772fefc4dc82a883589d8be6a44811wrowe Ensure RFC validation compliance when serving cached entities. PR 16142
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) core: Add the ability to do explicit matching on weak and strong ETags
a601d863bd772fefc4dc82a883589d8be6a44811wrowe as per RFC2616 Section 13.3.3. [Graham Leggett, Co-Advisor
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) mod_cache: Ensure that updated responses to HEAD requests don't get
a601d863bd772fefc4dc82a883589d8be6a44811wrowe mistakenly paired with a previously cached body. Ensure that any existing
a601d863bd772fefc4dc82a883589d8be6a44811wrowe body is removed when a HEAD request is cached. [Graham Leggett,
a601d863bd772fefc4dc82a883589d8be6a44811wrowe Co-Advisor <coad measurement-factory.com>]
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) mod_cache: Honour Cache-Control: no-store in a request. [Graham Leggett]
a601d863bd772fefc4dc82a883589d8be6a44811wrowe *) mod_cache: RFC2616 14.9.3 The s-maxage directive also implies the
fc9e01023a2fb7f7af9b25621ab080bbe7a95611jerenkrantz semantics of the proxy-revalidate directive. [Graham Leggett]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_cache: Make sure that contradictory entity headers present in a 304
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe Not Modified response are caught and cause the entity to be removed.
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe [Graham Leggett]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_cache: Make sure Vary processing handles multivalued Vary headers and
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe multivalued headers referred to via Vary. [Graham Leggett]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_cache: When serving from cache, only the last header of a multivalued
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe header was taken into account. Fixed. [Graham Leggett]
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe *) mod_cache: Ignore response headers specified by no-cache=header and
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe private=header as specified by RFC2616 14.9.1 What is Cacheable. Ensure
bfae8a5d3c37df19dea49b411b109198c7e84a4fbrianp that these headers are still processed when multiple Cache-Control
bfae8a5d3c37df19dea49b411b109198c7e84a4fbrianp headers are present in the response. PR 54706 [Graham Leggett,
7dfb10a15cdfd48a23a9aa5713a2deb129821761wrowe *) mod_cache: Invalidate cached entities in response to RFC2616 Section
998a0c99bc22357406f359ace2f602c5d6e376c6wrowe 13.10 Invalidation After Updates or Deletions. PR 15868 [Graham
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: Do not segfault on PROPFIND with a zero length DBM.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: Do not fail PROPPATCH when prop namespace is not known.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: When a PROPPATCH attempts to remove a non-existent dead
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein property on a resource for which there is no dead property in the same
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein namespace httpd segfaults. PR 52559 [Diego Santa Cruz
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: PROPPATCH delete (svn propdel) silently discards errors.
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe PR 53525 [Arwin Arni <arwin collab.net>]
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe *) mod_dav: Ensure URI is correctly uriencoded on return. PR 54611
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe [Timothy Wood <tjw omnigroup.com>]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: Sending a If or If-Match header with an invalid ETag doesn't
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe result in a 412 Precondition Failed. PR 54610 [Timothy Wood
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: Make sure that when we prepare an If URL for Etag comparison,
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein we compare unencoded paths. PR 53910 [Timothy Wood <tjw omnigroup.com>]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core, mod_ssl: Lift the restriction that prevents mod_ssl taking
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein full advantage of the event MPM. Enable the ability for a module
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein to reverse the sense of a poll event from a read to a write or vice
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe versa. [Graham Leggett]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) htpasswd: Add -v option to verify a password. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) htpasswd, htdbm: Fix password generation. PR 54735. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_dav: Improve error handling in dav_method_put(), add new
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe dav_join_error() function. PR 54145. [Ben Reser <ben reser.org>]
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe *) mod_auth_digest: Fix crashes if shm initialization failed. [Stefan
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe *) mod_ldap: LDAP connections used for authentication were not respecting
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe LDAPConnectionPoolTimeout. PR 54587
cdc56e100a8fa11e989d1633914502db1c8e0818wrowe *) core: ap_rgetline_core now pulls from r->proto_input_filters.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_proxy_html: process parsed comments immediately.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein Fixes bug where parsed comments may be lost. [Nick Kew]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core: Add option to add valgrind support. Use it to reduce false positive
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein warnings in mod_ssl. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_lua: Add bindings for apr_dbd/mod_dbd database access
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Daniel Gruno]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein Cache the result of the most recent password hash verification for every
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein keep-alive connection. This saves some expensive calculations.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) http: Remove support for Request-Range header sent by Navigator 2-3 and
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein MSIE 3. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein conformance or to only log the found problems. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core: Correctly parse an IPv6 literal host specification in an absolute
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein URL in the request line. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_ssl: add support for subjectAltName-based host name checking
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein in proxy mode. PR 54030. [Kaspar Brand]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mpm_event: Check that AsyncRequestWorkerFactor is not negative. PR 54254.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Jackie Zhang <jackie qq zhang gmail com>]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) EventOpt MPM
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core: Add LogLevelOverride directive that allows to override the
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein loglevel for clients from certain IPs. This also works for things
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein like the SSL handshake where <If> LogLevel ... </If> is evaluated
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein too late. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core: Add new directive Warning to issue warnings from a configuration
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein file. Both Warning and Error now generate a timestamped log message.
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein [Fabien Coelho]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein variables. [Stefan Fritsch]
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein *) core: New directive RegisterHttpMethod for registering non-standard
27ddebab333df2a3d82b0f4ea63878d1d9f38ae8gstein HTTP methods. [Stefan Fritsch]
[Jan Kaluza <jkaluza redhat.com>]
*) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
*) mod_ssl: Catch missing or mismatched client cert/key pairs with
SSLProxyMachineCertificateFile/Path directives. PR 52212.
[Keith Burdis <keith burdis.org>, Joe Orton]
[Steinar Gunderson <sgunderson bigfoot.com>]
*) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
setuid/setgid capability bits rather than a setuid root binary.
[Matthew Steele <mdsteele google.com>]
passing through the server in such a way that connections and/or
Apache 2.4.xx tree as documented below, except as noted.]
Changes with Apache 2.4.x and later:
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later: