CHANGES revision a5cce34e21a5b472f3806b4526043887bcb7e9ea
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton -*- coding: utf-8 -*-
ef5650b61a8e35f3cc93ec07e73efc17ea329894jortonChanges with Apache 2.3.1
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton[ When backported to 2.2.x, remove entry from this file ]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_slotmem: Add in new slot-based memory access API module, including
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton 2 providers (mod_sharedmem and mod_plainmem) [Jim Jagielski,
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton Jean-Frederic Clere, Brian Akins <brian.akins turner.com>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_include: support generating non-ASCII characters as entities in SSI
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 25202 [Nick Kew]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 25202 [Nick Kew]
e0bcd6c507b25ed3baad4d48b489a1875cbb77c2fielding *) mod_rewrite: fix "B" flag breakage by reverting r5589343
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) CGI: return 504 (Gateway timeout) rather than 500 when a script
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton times out before returning status line/headers.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 42190 [Nick Kew]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_cgid: fix segfault problem on solaris.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_proxy_scgi: Added. [André Malo]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_cache: Introduce 'no-cache' per-request environment variable
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton to prevent the saving of an otherwise cacheable response.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Eric Covener]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton way that per-directory rewrites append the previous notion of PATH_INFO
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton to each substitution before evaluating subsequent rules.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR38642 [Eric Covener]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_cgid: Do not add an empty argument when calling the CGI script.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 46380 [Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) scoreboard: Remove unused sb_type from process_score.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Torsten Foertsch <torsten.foertsch gmx.net>, Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_ssl: Add SSLRenegBufferSize directive to allow changing the
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton size of the buffer used for the request-body where necessary
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton during a per-dir renegotiation. PR 39243. [Joe Orton]
d855e4fa188301da111dc804efe422317d1873eewrowe *) mod_proxy_fdpass: New module to pass a client connection over to a separate
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton process that is reading from a unix daemon socket.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_ssl: Improve environment variable extraction to be more
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton efficient and to correctly handle DNs with duplicate tags.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 45975. [Joe Orton]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) Remove the obsolete serial attribute from the RPM spec file. Compile
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton against the external pcre. Add missing binaries fcgistarter, and
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton mod_socache* and mod_session*. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jortonChanges with Apache 2.3.0
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_ratelimit: New module to do bandwidth rate limiting. [Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) Remove X-Pad header which was added as a work around to a bug in
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton Netscape 2.x to 4.0b2. [Takashi Sato <takashi lans-tv.com>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) Add DTrace Statically Defined Tracing (SDT) probes.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Theo Schlossnagle <jesus omniti.com>, Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_proxy_balancer: Move all load balancing implementations
e8f95a682820a599fe41b22977010636be5c2717jim as individual, self-contained mod_proxy submodules under
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) Rename APIs to include ap_ prefix:
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton find_child_by_pid -> ap_find_child_by_pid
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton suck_in_APR -> ap_suck_in_APR
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton sys_privileges_handlers -> ap_sys_privileges_handlers
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_accept -> ap_unixd_accept
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_config -> ap_unixd_config
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_killpg -> ap_unixd_killpg
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_set_global_mutex_perms -> ap_unixd_set_global_mutex_perms
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_set_proc_mutex_perms -> ap_unixd_set_proc_mutex_perms
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton unixd_set_rlimit -> ap_unixd_set_rlimit
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: When the ap_http_header_filter processes an error bucket, cleanup
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton the passed brigade before returning AP_FILTER_ERROR down the filter
9a37020aa9d95f544c35ad8f8f9a6d64ca0b4255jorton chain. This unambiguously ensures the same error bucket isn't revisited
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Ruediger Pluem]
1017d9c4dfb131d49ac4cf84eb60635670279b00sf *) mod_lbmethod_heartbeat: New module to load balance mod_proxy workers
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton based on heartbeats. [Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_heartmonitor: New module to collect heartbeats, and write out a file
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton so that other modules can load balance traffic as needed. [Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_heartbeat: New module to generate multicast heartbeats to know if a
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton server is online. [Paul Querna]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: Error responses set by filters were being coerced into 500 errors,
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton sometimes appended to the original error response. Log entry of:
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton 'Handler for (null) returned invalid result code -3'
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Eric Covener]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_buffer: Honour the flush bucket and flush the buffer in the
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton input filter. Make sure that metadata buckets are written to
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton the buffer, not to the final brigade. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_buffer: Optimise the buffering of heap buckets when the heap
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_buffer: Optional support for buffering of the input and output
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton filter stacks. Can collapse many small buckets into fewer larger
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton buckets, and prevents excessively small chunks being sent over
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton the wire. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_privileges: new module to make httpd on Solaris privileges-aware
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton and to enable different virtualhosts to run with different
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton privileges and Unix user/group IDs [Nick Kew]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) authn/z: Remove mod_authn_default and mod_authz_default.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) authz: Fix handling of authz configurations, make default authz
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton directives. [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_authn_core: Prevent crash when provider alias created to
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton provider which is not yet registered. [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_authn_core: Add AuthType of None to support disabling
ac45a43afbf38aa4a91c1402c6beef6ef8a2696dniq authentication. [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: Allow <Limit> and <LimitExcept> directives to nest, and
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton constrain their use to conform with that of other access control
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton and authorization directives. [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) unixd: turn existing code into a module, and turn the set user/group
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton and chroot into a child_init function. [Nick Kew]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_dir: Support "DirectoryIndex disabled"
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) Export and install the mod_rewrite.h header to ensure the optional
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton rewrite_mapfunc_t and ap_register_rewrite_mapfunc functions are
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton available to third party modules. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_authnz_ldap: don't return NULL-valued environment variables to
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton other modules. PR 39045 [Francois Pesce <francois.pesce gmail.com>]
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton *) Don't adjust case in pathname components that are not of interest
876167dba234e2c7065895c87b77a8c57bdcf754sf to mod_mime. Fixes mod_negotiation's use of such components.
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton PR 43250 [Basant Kumar Kukreja <basant.kukreja sun.com>]
876167dba234e2c7065895c87b77a8c57bdcf754sf *) Be tolerant in what you accept - accept slightly broken
876167dba234e2c7065895c87b77a8c57bdcf754sf status lines from a backend provide they include a valid status code.
876167dba234e2c7065895c87b77a8c57bdcf754sf *) New module mod_sed: filter Request/Response bodies through sed
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_auth_form: Make sure that basic authentication is correctly
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton faked directly after login. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_session_cookie, mod_session_dbd: Make sure cookies are set both
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton within the output headers and error output headers, so that the
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton session is maintained across redirects. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_auth_form: Make sure the logged in user is populated correctly
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton after a form login. Fixes a missing REMOTE_USER variable directly
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton following a login. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_session_cookie: Make sure that cookie attributes are correctly
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton included in the blank cookie when cookies are removed. This fixes an
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton inability to log out when using mod_auth_form. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_autoindex: add configuration option to insert string
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton in HTML HEAD. [Nick Kew]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_session: Prevent a segfault when a CGI script sets a cookie with a
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton null value. [David Shane Holden <dpejesh apache.org>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_headers: Prevent Header edit from processing only the first header
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton of possibly multiple headers with the same name and deleting the
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton remaining ones. PR 45333. [Ruediger Pluem]
876167dba234e2c7065895c87b77a8c57bdcf754sf *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Tom Donovan]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core, authn/z: Determine registered authn/z providers directly in
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton ap_setup_auth_internal(), which allows optional functions that just
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton wrapped ap_list_provider_names() to be removed from authn/z modules.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Chris Darroch]
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton *) authn/z: Convert common provider version strings to macros.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) configure: Don't reject libtool 2.x
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton PR 44817 [Arfrever Frehtes Taifersar Arahesis <Arfrever.FTA gmail.com>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: When testing for slash-terminated configuration paths in
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton ap_location_walk(), don't look past the start of an empty string
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton such as that created by a <Location ""> directive.
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton [Chris Darroch]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core, mod_proxy: If a kept_body is present, it becomes safe for
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton subrequests to support message bodies. Make sure that safety
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton checks within the core and within the proxy are not triggered
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton when kept_body is present. This makes it possible to embed
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton proxied POST requests within mod_include. [Graham Leggett]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_auth_form: Make sure the input filter stack is properly set
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton up before reading the login form. Make sure the kept body filter
7ccf6233faef3a87d07f27f4183ef0cf1c77c1ddjorton is correctly inserted to ensure the body can be read a second
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton time safely should the authn be successful. [Graham Leggett,
7ccf6233faef3a87d07f27f4183ef0cf1c77c1ddjorton Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) mod_request: Insert the KEPT_BODY filter via the insert_filter
7ccf6233faef3a87d07f27f4183ef0cf1c77c1ddjorton hook instead of during fixups. Add a safety check to ensure the
7ccf6233faef3a87d07f27f4183ef0cf1c77c1ddjorton filters cannot be inserted more than once. [Graham Leggett,
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton Ruediger Pluem]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) core: Do not allow Options ALL if not all options are allowed to be
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton *) ap_cache_cacheable_headers_out() will (now) always
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton merge an error heaeders _before_ clearing them and _before_
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton merging in the actual entity headers and doing normal
PR 44799 [Christian Wenz <christian wenz.org>]
both inside and outside the location/directory sections, as
form request with the type of application/x-www-form-urlencoded.
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: