CHANGES revision c4e8006db0cf457c68876d7d4c30dcc451d8cba7
f743002678eb67b99bbc29fee116b65d9530fec0wrowe -*- coding: utf-8 -*-
80833bb9a1bf25dcf19e814438a4b311d2e1f4cffuankgChanges with Apache 2.5.0
a370a774825bc89fc6b0d8e45035a590e39b0bd6minfrin *) mod_proxy_fcgi: Use apr_socket_timeout_get instead of hard-coded
a370a774825bc89fc6b0d8e45035a590e39b0bd6minfrin 30 seconds timeout. [Jan Kaluza]
194c1e226415b5f34251d249ffe2f8b96c835637minfrin *) WinNT MPM: If ap_run_pre_connection() fails or sets c->aborted, don't
b44b5b456752cb13fc552be3c43cbd1eb2556498minfrin save the socket for reuse by the next worker as if it were an
b44b5b456752cb13fc552be3c43cbd1eb2556498minfrin APR_SO_DISCONNECTED socket. Restores 2.2 behavior. [Eric Covener]
4816cd796cb9da2fb18a2d382586a926e0e9ae54minfrin *) mod_cache: Avoid a crash with strcmp() when the hostname is not provided.
4816cd796cb9da2fb18a2d382586a926e0e9ae54minfrin [Graham Leggett]
98e7b885c8e4503fabc1c17889c8fbc73a41c8b6minfrin *) mod_lua: Add rudimentary support for WebSocket interaction. This is
98e7b885c8e4503fabc1c17889c8fbc73a41c8b6minfrin currently request-bound and only supports the WS protocol. [Daniel Gruno]
194c1e226415b5f34251d249ffe2f8b96c835637minfrin *) mod_lua: Add getcookie/setcookie for reading/writing HTTP cookies
194c1e226415b5f34251d249ffe2f8b96c835637minfrin [Daniel Gruno]
0cf25f370efc889c01f7028bdfc8204b17aa4ce4minfrin *) WinNT MPM: Don't crash during child process initialization if the
0cf25f370efc889c01f7028bdfc8204b17aa4ce4minfrin Listen protocol is unrecognized. [Jeff Trawick]
5723fe6ad5f24ac85d97259f524a7c3e43a45c6dminfrin *) mod_lua: Add a logging hook for modifying/skipping logs. [Daniel Gruno]
60998c490ad3334eb07ae63b23b479ac564dec94kbrand *) mod_status, mod_echo: Fix the display of client addresses.
60998c490ad3334eb07ae63b23b479ac564dec94kbrand They were truncated to 31 characters which is not enough for IPv6 addresses.
60998c490ad3334eb07ae63b23b479ac564dec94kbrand PR 54848 [Bernhard Schmidt <berni birkenwald de>]
60998c490ad3334eb07ae63b23b479ac564dec94kbrand *) mod_lua: If the first yield() of a LuaOutputFilter returns a string, it should
b14cb517c0eb99b7c2bb8c3d40cc2bc85c277903jailletc be prefixed to the response as documented. [Eric Covener]
b14cb517c0eb99b7c2bb8c3d40cc2bc85c277903jailletc *) mod_lua: Remove ETAG, Content-Length, and Content-MD5 when a LuaOutputFilter
b14cb517c0eb99b7c2bb8c3d40cc2bc85c277903jailletc is configured without mod_filter. [Eric Covener]
b14cb517c0eb99b7c2bb8c3d40cc2bc85c277903jailletc *) mod_lua: Register LuaOutputFilter scripts as changing the content and
b14cb517c0eb99b7c2bb8c3d40cc2bc85c277903jailletc content-length by default, when run my mod_filter. Previously,
d522f82d7ada07a0cedb8dc6b71eacf3477d7188trawick growing or shrinking a response that started with Content-Length set
d522f82d7ada07a0cedb8dc6b71eacf3477d7188trawick would require mod_filter and FilterProtocol change=yes. [Eric Covnener]
1e1539a1e7d64b1af92636b81aac5aa50ee3163bminfrin *) mod_lua: Return a 500 error if a LuaHook* script doesn't return a
1e1539a1e7d64b1af92636b81aac5aa50ee3163bminfrin numeric return code. [Eric Covener]
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza *) Add experimental cmake-based build system for Windows. [Jeff Trawick,
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza Tom Donovan]
efe780dcf13b2b95effabf897d694d8f23feac74trawick *) mod_authnz_fcgi: New module to enable FastCGI authorizer
461dfe8009c65efd6ce168576ba872eac8d0ed4fcovener applications to authenticate and/or authorize clients.
461dfe8009c65efd6ce168576ba872eac8d0ed4fcovener [Jeff Trawick]
81849cd8925f6ffaf57412aaaac8a6df0d33cbb6covener *) mod_auth_basic: Add AuthBasicUseDigestAlgorithm directive to
81849cd8925f6ffaf57412aaaac8a6df0d33cbb6covener allow migration of passwords from digest to basic authentication.
81849cd8925f6ffaf57412aaaac8a6df0d33cbb6covener [Chris Darroch]
c8e4ae58e7b9eb27e5158d6980770d5064c50ba7trawick *) core: Add util_fcgi.h and associated definitions and support
c8e4ae58e7b9eb27e5158d6980770d5064c50ba7trawick routines for FastCGI, based largely on mod_proxy_fcgi.
c8e4ae58e7b9eb27e5158d6980770d5064c50ba7trawick [Jeff Trawick]
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin *) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin [Jeff Trawick]
7f6bfe455bd605a6401d2fcc9423972a24266b16jim *) mod_unique_id: Use output of the PRNG rather than IP address and
7f6bfe455bd605a6401d2fcc9423972a24266b16jim pid, avoiding sleep() call and possible DNS issues at startup,
7f6bfe455bd605a6401d2fcc9423972a24266b16jim plus improving randomness for IPv6-only hosts.
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza [Jan Kaluza <jkaluza redhat.com>]
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza *) mod_authnz_ldap: Support primitive LDAP servers that do not accept
3b995de5609b15115a0764e6979ba43071a2988fjim filters, such as "SDBM-backed LDAP" on z/OS, by allowing a special
3b995de5609b15115a0764e6979ba43071a2988fjim filter "none" to be specified in AuthLDAPURL. [Eric Covener]
ba050a6f942b9fa0e81ed73437588005c569655ccovener *) mod_file_cache: mod_file_cache should be able to serve files that
ba050a6f942b9fa0e81ed73437588005c569655ccovener haven't had a Content-Type set via e.g. mod_mime. [Eric Covener]
ba050a6f942b9fa0e81ed73437588005c569655ccovener *) core: merge AllowEncodedSlashes from the base configuration into
ba050a6f942b9fa0e81ed73437588005c569655ccovener virtual hosts. [Eric Covener]
ba050a6f942b9fa0e81ed73437588005c569655ccovener *) AIX: Install DSO's with "cp" instead of "install" in instdso.sh
135ddda3a989215d2bedbcf1529bfb269c3eda23niq [Eric Covener]
135ddda3a989215d2bedbcf1529bfb269c3eda23niq *) mod_ldap: Don't keep retrying if a new LDAP connection times out.
166b66614fb67e1b95c200433925787457657a0ajim [Eric Covener]
166b66614fb67e1b95c200433925787457657a0ajim *) mod_deflate: permit compilation of mod_deflate against a zlib that has
166b66614fb67e1b95c200433925787457657a0ajim been configured with -D Z_PREFIX, which redefines the token "deflate".
1122585e1e00bb81e9d0f054bf5c318cec23aa7dminfrin [Eric Covener]
1122585e1e00bb81e9d0f054bf5c318cec23aa7dminfrin *) mod_socache_shmcb.c: Remove arbitrary restriction on shared memory size
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh previously limited to 64MB. [Jens Låås <jelaas gmail.com>]
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh *) mod_auth_digest: Use the secret when generating nonces in all cases and
efe780dcf13b2b95effabf897d694d8f23feac74trawick not only when AuthName is used in .htaccess files (this change may cause
793214f67dede32edfd9ee96c664ead04d175cbbjfclere problems if used with round robin load balancers). Don't regenerate the
cc5a4a08dc9783fcbc52ce86f11e01c281a43810minfrin secret on graceful restarts. PR 54637 [Stefan Fritsch]
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick *) ab: Add a new -l parameter in order not to check the length of the responses.
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick This can be usefull with dynamic pages.
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener PR9945, PR27888, PR42040 [<ccikrs1 cranbrook edu>]
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener *) mod_logio: new format-specifier %C (combined) which is the sum of received
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza and sent byte counts.
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza PR54015 [Christophe Jaillet]
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza *) core: Remove apr_brigade_flatten(), buffering and duplicated code
56589be3d7a3e9343370df240010c6928cc78b39jkaluza from the HTTP_IN filter, parse chunks in a single pass with zero copy.
56589be3d7a3e9343370df240010c6928cc78b39jkaluza Reduce memory usage by 48 bytes per request. [Graham Leggett]
6001d914962deabb83a46251001612e969bdf67ajim *) core: Stop the HTTP_IN filter from attempting to write error buckets
6001d914962deabb83a46251001612e969bdf67ajim to the output filters, which is bogus in the proxy case. Create a
6001d914962deabb83a46251001612e969bdf67ajim clean mapping from APR codes to HTTP status codes, and use it where
c4e8006db0cf457c68876d7d4c30dcc451d8cba7jkaluza needed. [Graham Leggett]
c4e8006db0cf457c68876d7d4c30dcc451d8cba7jkaluza *) mod_proxy: Ensure network errors detected by the proxy are returned as
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
d8a6de5eec06d4136839c8f7a56a6ab5acd2d3behumbedooh [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc *) core, mod_ssl: Enable the ability for a module to reverse the sense of
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc a poll event from a read to a write or vice versa. This is a step on
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc the way to allow mod_ssl taking full advantage of the event MPM.
921d32d80d8271da08f12fc374a69cb36d1d63b3covener [Graham Leggett]
921d32d80d8271da08f12fc374a69cb36d1d63b3covener *) mod_ldap: LDAP connections used for authentication were not respecting
3e097af23e40c45aa32602545155f0964ab5c69dcovener LDAPConnectionPoolTimeout. PR 54587
3e097af23e40c45aa32602545155f0964ab5c69dcovener *) core: ap_rgetline_core now pulls from r->proto_input_filters.
faea99bb676ec50ece38da6b1879aa37546483a2covener *) mod_proxy_html: process parsed comments immediately.
faea99bb676ec50ece38da6b1879aa37546483a2covener Fixes bug where parsed comments may be lost. [Nick Kew]
faea99bb676ec50ece38da6b1879aa37546483a2covener *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
344f755169e100ea8ce51e847a0bf30a13b46917covener *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
50cfe8bbbaf4279375802531268e2bf0155215fetrawick *) core: Add option to add valgrind support. Use it to reduce false positive
50cfe8bbbaf4279375802531268e2bf0155215fetrawick warnings in mod_ssl. [Stefan Fritsch]
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick Cache the result of the most recent password hash verification for every
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick keep-alive connection. This saves some expensive calculations.
4d12805e6c18253040223ea637acd6b3b3c18f60jorton [Stefan Fritsch]
4d12805e6c18253040223ea637acd6b3b3c18f60jorton *) http: Remove support for Request-Range header sent by Navigator 2-3 and
4d12805e6c18253040223ea637acd6b3b3c18f60jorton MSIE 3. [Stefan Fritsch]
e5d909f2b06bd880fb3675cd49363df981caa631trawick *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener conformance or to only log the found problems. [Stefan Fritsch]
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener *) core: Correctly parse an IPv6 literal host specification in an absolute
cb666b29f81df1d11d65002250153353568021fccovener URL in the request line. [Stefan Fritsch]
cb666b29f81df1d11d65002250153353568021fccovener *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
1c2cab00d988fc48cbe59032cf76cc0bab20d6f7covener *) EventOpt MPM
75a230a728338d84dcfe81edd375352f34de22d0covener *) core: Add LogLevelOverride directive that allows to override the
75a230a728338d84dcfe81edd375352f34de22d0covener loglevel for clients from certain IPs. This also works for things
75a230a728338d84dcfe81edd375352f34de22d0covener like the SSL handshake where <If> LogLevel ... </If> is evaluated
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener too late. [Stefan Fritsch]
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener *) core: Add new directive Warning to issue warnings from a configuration
63a5ea80bddcc84a462e40f402b4f330e0e05411covener file. Both Warning and Error now generate a timestamped log message.
63a5ea80bddcc84a462e40f402b4f330e0e05411covener [Fabien Coelho]
63a5ea80bddcc84a462e40f402b4f330e0e05411covener *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
986f3ea2c314d4d4b3b937149853a0f23f6119aaminfrin variables. [Stefan Fritsch]
986f3ea2c314d4d4b3b937149853a0f23f6119aaminfrin *) core: New directive RegisterHttpMethod for registering non-standard
65a4e663b82f8bce28ac22ab2edfd7502de36998sf HTTP methods. [Stefan Fritsch]
65a4e663b82f8bce28ac22ab2edfd7502de36998sf *) core: New directive HttpProtocol which allows to disable HTTP/0.9
65a4e663b82f8bce28ac22ab2edfd7502de36998sf support. [Stefan Fritsch]
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin *) mod_allowhandlers: New module to forbid specific handlers for specific
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin directories. [Stefan Fritsch]
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin *) mod_systemd: New module, for integration with systemd on Linux.
a511a29faf2ff7ead3b67680154a624effb31aafminfrin [Jan Kaluza <jkaluza redhat.com>]
a511a29faf2ff7ead3b67680154a624effb31aafminfrin *) WinNT MPM: Store pid and generation for each thread in scoreboard
a511a29faf2ff7ead3b67680154a624effb31aafminfrin to allow tracking of threads from exiting children via mod_status
a511a29faf2ff7ead3b67680154a624effb31aafminfrin or other such mechanisms. [Jeff Trawick]
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin *) mod_ssl: Catch missing or mismatched client cert/key pairs with
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin SSLProxyMachineCertificateFile/Path directives. PR 52212.
deec48c67d4786bc77112ffbf3a4e70b931097edminfrin [Keith Burdis <keith burdis.org>, Joe Orton]
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf mutexes (Mutex)
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf - mod_cache: thundering herd lock directory
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf - mod_ldap: shared memory cache
2c487ac43b583db869e743772a7a10b278aa2bcfminfrin - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
684e0cfc200f66287a93bbd1708d1dd8a92a7eefcovener [Jeff Trawick]
5c43d2fb853f84497b5ece2d414ef9484aa87e5fsf *) suexec: Add --enable-suexec-capabilites support on Linux, to use
05a5a9c3e16f21566e1b61f4bd68025ce1b741ccjoes setuid/setgid capability bits rather than a setuid root binary.
05a5a9c3e16f21566e1b61f4bd68025ce1b741ccjoes [Joe Orton]
26c5829347f6a355c00f1ba0301d575056b69536niq *) suexec: Add support for logging to syslog as an alternative to logging
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq to a file; configure --without-suexec-logfile --with-suexec-syslog.
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq [Joe Orton]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq [Matthew Steele <mdsteele google.com>]
413ee814748f37be168ff12407fa6dba0ceeabe6trawick *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
c12917da693bae4028a1d5a5e8224bceed8c739dsf be compiled by the build compiler instead of the host compiler.
c12917da693bae4028a1d5a5e8224bceed8c739dsf Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf PR 51257. [Guenter Knauf]
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf *) core: In maintainer mode, replace apr_palloc with a version that
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf initializes the allocated memory with non-zero values, except if
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
d7ffd2da16d58b1a0de212e4d56f7aebb72bef26sf *) mod_policy: Add a new testing module to help server administrators
d7ffd2da16d58b1a0de212e4d56f7aebb72bef26sf enforce a configurable level of protocol compliance on their
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf servers and application servers behind theirs. [Graham Leggett]
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf *) mod_firehose: Add a new debugging module able to record traffic
9811aed12bbc71783d2e544ccb5fecd193843eadsf passing through the server in such a way that connections and/or
9811aed12bbc71783d2e544ccb5fecd193843eadsf requests be reconstructed and replayed. [Graham Leggett]
1366443dc565c33e7b449ae428bbfc4c86f33935drh *) mod_noloris
bd3f5647b96d378d9c75c954e3f13582af32c643sf *) Simple MPM
bd3f5647b96d378d9c75c954e3f13582af32c643sf *) mod_serf
bd3f5647b96d378d9c75c954e3f13582af32c643sf [Apache 2.5.0-dev includes those bug fixes and changes with the
2a7beea91d46beb41f043a84eaad060047ee04aafabien Apache 2.4.xx tree as documented below, except as noted.]
2a7beea91d46beb41f043a84eaad060047ee04aafabienChanges with Apache 2.4.x and later:
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csf *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csfChanges with Apache 2.2.x and later:
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
f6b9c755a0b793e8a3a3aebd327ca20a86478117sfChanges with Apache 2.0.x and later: