CHANGES revision d0cd4568592f103a454ac647f4961af293f88f4e
7076f000ea3487299a9da9318915d042aaba62c5Mark Andrews -*- coding: utf-8 -*-
7076f000ea3487299a9da9318915d042aaba62c5Mark AndrewsChanges with Apache 2.3.0
7076f000ea3487299a9da9318915d042aaba62c5Mark Andrews [Remove entries to the current 2.0 and 2.2 section below, when backported]
7076f000ea3487299a9da9318915d042aaba62c5Mark Andrews *) apxs: Enhance -q flag to print all known variables and their values
8626c376a038da969de1ee6c158957dfe638daacMark Andrews when invoked without variable name(s).
8626c376a038da969de1ee6c158957dfe638daacMark Andrews [William Rowe, Sander Temme]
c6ee5082db1e40ab64e08a540620da79996efa9cTatuya JINMEI 神明達哉 *) mod_dbd: Create memory sub-pools for each DB connection and close
222dcab0a6456c5395545e885f21b5542b7d841dTatuya JINMEI 神明達哉 DB connections in a pool cleanup function. Ensure prepared statements
c6ee5082db1e40ab64e08a540620da79996efa9cTatuya JINMEI 神明達哉 are destroyed before DB connection is closed. When using reslists,
9a6522317c97e5487cea816173f63a0e5b4e428aTatuya JINMEI 神明達哉 prevent segfaults when child processes exit, and stop memory leakage
9a6522317c97e5487cea816173f63a0e5b4e428aTatuya JINMEI 神明達哉 of ap_dbd_t structures. Avoid use of global s->process->pool, which
f5a156fa25e6d341e703782de6368fbe9e256ddeTatuya JINMEI 神明達哉 isn't destroyed by exiting child processes in most multi-process MPMs.
78ff0e94eae96f2cf8bf94454d8ff01ba280d30dMark Andrews PR 39985. [Chris Darroch, Nick Kew]
5a9efbf6bf951267e0844990f5b2cb69f5d5f01fTatuya JINMEI 神明達哉 *) apxs: Eliminate run-time check for mod_so. PR 40653.
08eadd404a59a6befcf51cb13695abee5d03456dMark Andrews [David M. Lee <dmlee crossroads.com>]
08eadd404a59a6befcf51cb13695abee5d03456dMark Andrews *) beos MPM: Create pmain pool and run modules' child_init hooks when
c55dd77de4ce71b858afb291e44577b51be8b780Mark Andrews entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
c55dd77de4ce71b858afb291e44577b51be8b780Mark Andrews [Chris Darroch]
eca38a9d43391482bfa22e2eb7b86e19be8bf461Mark Andrews *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
eca38a9d43391482bfa22e2eb7b86e19be8bf461Mark Andrews cleanups registered in modules' child_init hooks are performed.
eca38a9d43391482bfa22e2eb7b86e19be8bf461Mark Andrews [Chris Darroch]
d79296d147cd4c35784dd3efd7ed7f09d976ee61Mark Andrews *) mod_dbd: Handle error conditions in dbd_construct() properly.
4f5a43c5f084290054ddf212add7b4c2abe6edc5Tatuya JINMEI 神明達哉 Simplify ap_dbd_open() and use correct arguments to apr_dbd_error()
9a482d1fcead22ab0d639c463c77672846485f3eMark Andrews when non-threaded. Register correct cleanup data in non-threaded
46390a96dd5f15c9a0b3663bdb7791bdecec3052Mark Andrews ap_dbd_acquire() and ap_dbd_cacquire(). Clean up configuration data
9a482d1fcead22ab0d639c463c77672846485f3eMark Andrews and merge function. Use ap_log_error() wherever possible.
9a482d1fcead22ab0d639c463c77672846485f3eMark Andrews [Chris Darroch, Nick Kew]
9a482d1fcead22ab0d639c463c77672846485f3eMark Andrews *) mod_proxy_http: Handle request bodies larger than 2 GB by converting
9a482d1fcead22ab0d639c463c77672846485f3eMark Andrews the Content-Length header of the request correctly. PR 40883.
d48f9877255f41b6074777da0639b6bc2bfad388Mark Andrews [Ruediger Pluem, toadie <toadie643 gmail.com>]
d48f9877255f41b6074777da0639b6bc2bfad388Mark Andrews *) core: Do not replace a Date header set by a proxied backend server.
d48f9877255f41b6074777da0639b6bc2bfad388Mark Andrews PR 40232. [Ruediger Pluem]
5d51f534831bd648436d22e4faf203fb9abdf3d4Mark Andrews *) mod_proxy: Ensure that at least scheme://hostname[:port] matches between
5d51f534831bd648436d22e4faf203fb9abdf3d4Mark Andrews worker and URL when searching for the best fitting worker for a given URL.
a45a6ea2b03448751d7c44931e8ac7666e7cc2ceMark Andrews PR 40910. [Ruediger Pluem]
a45a6ea2b03448751d7c44931e8ac7666e7cc2ceMark Andrews *) mod_cache: Remove expired content from cache that cannot be revalidated.
a45a6ea2b03448751d7c44931e8ac7666e7cc2ceMark Andrews PR 30370. [Ruediger Pluem]
15bda409010cbf2d3e43baf10f28bae5f7b1abefMark Andrews *) mod_dbd: Stash DBD connections in request_config of initial request
b5205d860b1672c405c57004e6823af873799b42Mark Andrews only, or else sub-requests and internal redirections may cause
b5205d860b1672c405c57004e6823af873799b42Mark Andrews entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
9a1e8f1baf3e5c53d6b6bfa97d7f60cb3358e404Mark Andrews *) mod_cache: Correctly cache objects whose URL query string has been
9a1e8f1baf3e5c53d6b6bfa97d7f60cb3358e404Mark Andrews modified by mod_rewrite. PR 40805. [Ruediger Pluem]
c79e85f7d77317a9b5c34b4bb94eaf1779fc0b6eMark Andrews *) mod_proxy: Add a missing assignment in an error checking code path.
c79e85f7d77317a9b5c34b4bb94eaf1779fc0b6eMark Andrews PR 40865. [Andrew Rucker Jones <arjones simultan.dyndns.org>]
12b1bf8b14ac3b6ec4de9cae6fea10f389b5e5dbMark Andrews *) mod_mem_cache: Increase the minimum and default value for
12b1bf8b14ac3b6ec4de9cae6fea10f389b5e5dbMark Andrews MCacheMinObjectSize from 0 to 1, as a MCacheMinObjectSize of 0 does not
e22bd3c4bc0de0b96531fab5c2c944251e02e975Mark Andrews make sense and leads to a division by zero. PR 40576.
9c420baae0dce935d70df3852bc3abdfe5caf093Mark Andrews *) Fix issue which could cause error messages to be written to access logs
529035492ea0a427cc8d007cd743934d4494d9d3Mark Andrews on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
ff6bd86d5778de50cb1b4e93591e22354062ee17Mark Andrews *) The LockFile directive, which specifies the location of
11e43ff752bab2983d9328b6624bbcef613a93e1Mark Andrews the accept() mutex lockfile, is depreciated. Instead, the
444bbadb54d4a676aa4b20685d3178d7988534b3Mark Andrews AcceptMutex directive now takes an optional lockfile
444bbadb54d4a676aa4b20685d3178d7988534b3Mark Andrews location parameter, ala SSLMutex. [Jim Jagielski]
cd6d8d61b076eea02826596334a105b918393627Mark Andrews *) mod_authn_dbd: Export any additional columns queried in the SQL select
cd6d8d61b076eea02826596334a105b918393627Mark Andrews into the environment with the name AUTHENTICATE_<COLUMN>. This brings
f04809663f4ba3df0e2ef1247d67bdd6ce0157d6Mark Andrews mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
f04809663f4ba3df0e2ef1247d67bdd6ce0157d6Mark Andrews *) mod_dbd: Key the storage of prepared statements on the hex string
7d7f929274e48808b4771162d6302a99e69865d8Mark Andrews value of server_rec, rather than the server name, as the server name
7d7f929274e48808b4771162d6302a99e69865d8Mark Andrews may change (eg when the server name is set) at any time, causing
7d7f929274e48808b4771162d6302a99e69865d8Mark Andrews weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
21b76ee598c937c6736cbc7ab69684bb3332428aMark Andrews *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
21b76ee598c937c6736cbc7ab69684bb3332428aMark Andrews *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
21b76ee598c937c6736cbc7ab69684bb3332428aMark Andrews the first bucket from the brigade, finds it not to be a FILE
5c45d30402af6860e1f66f5aa7d78dff58373b27Mark Andrews bucket and barfs. The fix is to pass a bucket rather than a brigade.
5c45d30402af6860e1f66f5aa7d78dff58373b27Mark Andrews [Niklas Edmundsson <nikke acc.umu.se>]
b66ca17f2990433a3e277b50cc3c15f19cdd0771Mark Andrews *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
dc1f18f211a91735faf2771acc8438f0fbc70d4bMark Andrews *) mod_proxy: Print the correct error message for erroneous configured
dc1f18f211a91735faf2771acc8438f0fbc70d4bMark Andrews ProxyPass directives. PR 40439. [serai lans-tv.com]
dc1f18f211a91735faf2771acc8438f0fbc70d4bMark Andrews *) ap_get_server_version() has been removed. Third-party modules must
7b68fa6229f1edadac44c7ec459c9ed77a8368c8Mark Andrews now use ap_get_server_banner() or ap_get_server_description().
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews [Jeff Trawick]
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews *) All MPMs: Introduce a check_config phase between pre_config and
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews open_logs, to allow modules to review interdependent configuration
6412902ffc0d255657f54db768f30b6efa819143Mark Andrews directive values and adjust them while messages can still be logged
6412902ffc0d255657f54db768f30b6efa819143Mark Andrews to the console. Handle relevant MPM directives during this phase
6412902ffc0d255657f54db768f30b6efa819143Mark Andrews and format messages for both the console and the error log, as
6412902ffc0d255657f54db768f30b6efa819143Mark Andrews appropriate. [Chris Darroch]
6412902ffc0d255657f54db768f30b6efa819143Mark Andrews *) mod_proxy: don't URLencode tilde in path component
0d8971a4b8abed599ec9d9b7d1b51b8de8038ce2Shane Kerr [Stijn Hoop <stijn sandcat.nl>]
0d8971a4b8abed599ec9d9b7d1b51b8de8038ce2Shane Kerr *) mpm_winnt: Fix return values from wait_for_many_objects.
a8f950ff05e2e81d425a3411268cdf21f8f26b16Mark Andrews The return value is index to the signaled thread in the
a8f950ff05e2e81d425a3411268cdf21f8f26b16Mark Andrews creted_threads array. We can not use WAIT_TIMEOUT because
a8f950ff05e2e81d425a3411268cdf21f8f26b16Mark Andrews his value is defined as 258, thus limiting the MaxThreads
bc1467288a25b48446d3229fef0a19fad0cb6f2fMark Andrews to that value. [Mladen Turk]
bc1467288a25b48446d3229fef0a19fad0cb6f2fMark Andrews *) mod_cache: While serving a cached entity ensure that filters that have
6ed53e5949d9fcd9715b440015b56e5a896d63dfDavid Hankins been applied to this cached entity before saving it to the cache are not
6ed53e5949d9fcd9715b440015b56e5a896d63dfDavid Hankins applied again. PR 40090. [Ruediger Pluem]
6ed53e5949d9fcd9715b440015b56e5a896d63dfDavid Hankins *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
f19353d73186913a6e0f0f766c1f72e5f4c5e9e1Tatuya JINMEI 神明達哉 to circumvent the symbolic link checks imposed by FollowSymLinks and
f19353d73186913a6e0f0f766c1f72e5f4c5e9e1Tatuya JINMEI 神明達哉 SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
84910d09ee8244027c7031e03999bc60a3d63adbMark Andrews *) mod_proxy: Support environment variable interpolation in reverse
d2ef84e07b67e72a4bd9c729c6b8228067d17584Mark Andrews proxying directives. [Nick Kew]
d2ef84e07b67e72a4bd9c729c6b8228067d17584Mark Andrews *) core: Add the filename of the configuration file to the warning message
d2ef84e07b67e72a4bd9c729c6b8228067d17584Mark Andrews about the useless use of AllowOverride. PR 39992.
d2ef84e07b67e72a4bd9c729c6b8228067d17584Mark Andrews [Darryl Miles <darryl darrylmiles.org>]
d2ef84e07b67e72a4bd9c729c6b8228067d17584Mark Andrews *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
cfe92110ce4eaf19f7f3255d2961710879bdc9ddMark Andrews configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.
cfe92110ce4eaf19f7f3255d2961710879bdc9ddMark Andrews The default is none as this is far greater debugging resolution than
cfe92110ce4eaf19f7f3255d2961710879bdc9ddMark Andrews the typical administrator is prepared to untangle. [William Rowe]
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews *) mod_disk_cache: If possible, check if the size of an object to cache is
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews within the configured boundaries before actually saving data.
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews [Niklas Edmundsson <nikke acc.umu.se>]
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews *) mod_cache: Convert all values to seconds before comparing them when
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews checking whether to send a Warning header for a stale response.
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews PR 39713. [Owen Taylor <otaylor redhat.com>]
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews *) mod_disk_cache: Delete temporary files if they cannot be renamed to their
fe6f384b2efde528dabbf822634eedc020be67e0Mark Andrews final name. [Davi Arnaut <davi haxent.com.br>]
5929cde251d6d971fda14ac9ea927035421f6480Mark Andrews *) Worker and event MPMs: Remove improper scoreboard updates which were
5929cde251d6d971fda14ac9ea927035421f6480Mark Andrews performed in the event of a fork() failure. [Chris Darroch]
5929cde251d6d971fda14ac9ea927035421f6480Mark Andrews *) Add support for fcgi:// proxies to mod_rewrite.
1412643ba5bcc735c3731d8cebf71fd76eedec91Mark Andrews [Markus Schiegl <ms schiegl.com>]
1412643ba5bcc735c3731d8cebf71fd76eedec91Mark Andrews *) Remove incorrect comments from scoreboard.h regarding conditional
1412643ba5bcc735c3731d8cebf71fd76eedec91Mark Andrews loading of worker_score structure with mod_status, and remove unused
6de9371826bd253eb29aa3965ef03670d9d0a06dMark Andrews definitions relating to old life_status field.
6de9371826bd253eb29aa3965ef03670d9d0a06dMark Andrews [Chris Darroch <chrisd pearsoncmg.com>]
6de9371826bd253eb29aa3965ef03670d9d0a06dMark Andrews *) Remove allocation of memory for unused array of lb_score pointers
6de9371826bd253eb29aa3965ef03670d9d0a06dMark Andrews in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
daba3af103617ce4dd49bfdd0d9e07df7f22d08dMark Andrews *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.
59d84d1b077678cb77f6cbcc53d8cfa60ff69cb7Mark Andrews [Garrett Rooney, Jim Jagielski, Paul Querna]
59d84d1b077678cb77f6cbcc53d8cfa60ff69cb7Mark Andrews *) Event MPM: Fill in the scoreboard's tid field. PR 38736.
59d84d1b077678cb77f6cbcc53d8cfa60ff69cb7Mark Andrews [Chris Darroch <chrisd pearsoncmg.com>]
d76ed813a51465e5c47d521ab09ea20c06f1428dMark Andrews *) mod_charset_lite: Remove Content-Length when output filter can
d76ed813a51465e5c47d521ab09ea20c06f1428dMark Andrews invalidate it. Warn when input filter can invalidate it.
b6d199bd6a505d84093874339056d9df4d21dfbcMark Andrews [Jeff Trawick]
b6d199bd6a505d84093874339056d9df4d21dfbcMark Andrews *) mod_ssl: Fix spurious hostname mismatch warning for valid
b6d199bd6a505d84093874339056d9df4d21dfbcMark Andrews wildcard certificates. PR 37911. [Nick Burch <nick torchbox.com>]
1d7b3b6dac1a0c6c586808c2add2ca2bef80512fMark Andrews *) Authz: Add the new module mod_authn_core that will provide common
1d7b3b6dac1a0c6c586808c2add2ca2bef80512fMark Andrews authn directives such as 'AuthType', 'AuthName'. Move the directives
1d7b3b6dac1a0c6c586808c2add2ca2bef80512fMark Andrews 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias
f27eae9cfeb5b6c3c38ead6a7a0b1dd36bba691dMark Andrews into mod_authn_core. [Brad Nicholes]
f27eae9cfeb5b6c3c38ead6a7a0b1dd36bba691dMark Andrews *) Authz: Mark the directives 'Order', 'Allow', 'Deny' and 'Satisfy' as
9a8cec4995c1586d27e95f13d421e4de61a97eb5Mark Andrews deprecated and move them into the new module mod_access_compat which
9a8cec4995c1586d27e95f13d421e4de61a97eb5Mark Andrews can be loaded to provide backwards compatibility for these directives.
9a8cec4995c1586d27e95f13d421e4de61a97eb5Mark Andrews [Brad Nicholes]
25c18fded02c5df8391a333e90ea776b52bff079Mark Andrews *) Authz: Move the 'Require' directive from the core module as well as
7042126e8a10315255144989f7723f0510558928Mark Andrews add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'
7042126e8a10315255144989f7723f0510558928Mark Andrews and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
7042126e8a10315255144989f7723f0510558928Mark Andrews logic into the authorization processing. [Brad Nicholes]
5581e28ed8c05350ce6119230c223da60dafdbafMark Andrews *) Authz: Add the new module mod_authz_core which acts as the
2c4ae1d331c98beba03a337a58e9b44aec98d663Mark Andrews authorization provider vector and contains common authz
2c4ae1d331c98beba03a337a58e9b44aec98d663Mark Andrews directives. [Brad Nicholes]
45e1bd63587102c3bb361eaca42ee7b714fb3542Mark Andrews *) Authz: Renamed mod_authz_dbm authz providers from 'group' and
45e1bd63587102c3bb361eaca42ee7b714fb3542Mark Andrews 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]
c4008fdd56a8045802ed125e40a06bf1df9b7fbeMark Andrews *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle
c4008fdd56a8045802ed125e40a06bf1df9b7fbeMark Andrews host-based access control provided by mod_authz_host and invoked
c4008fdd56a8045802ed125e40a06bf1df9b7fbeMark Andrews through the 'Require' directive. [Brad Nicholes]
4f54d095945d6f60f146112d37d31815ad73eb02Mark Andrews *) Authz: Convert all of the authz modules from hook based to
4f54d095945d6f60f146112d37d31815ad73eb02Mark Andrews provider based. [Brad Nicholes]
472ce617b7c19ae38dfaa2fc9e8699e3bf9be4a8Mark Andrews *) mod_cache: Add CacheMinExpire directive to set the minimum time in
472ce617b7c19ae38dfaa2fc9e8699e3bf9be4a8Mark Andrews seconds to cache a document.
472ce617b7c19ae38dfaa2fc9e8699e3bf9be4a8Mark Andrews [Brian Akins <brian.akins turner.com>, Ruediger Pluem]
c5387e694299c41361660e54f23e89c7da3ede1dMark Andrews *) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
d00e58d4814b45c13434721b5771782e485dcb73Mark Andrews *) Fix typo in ProxyStatus syntax error message.
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews [Christophe Jaillet <christophe.jaillet wanadoo.fr>]
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews *) Asynchronous write completion for the Event MPM. [Brian Pane]
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews *) Added an End-Of-Request bucket type. The logging of a request and
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews the freeing of its pool are now done when the EOR bucket is destroyed.
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews This has the effect of delaying the logging until right after the last
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews of the response is sent; ap_core_output_filter() calls the access logger
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews indirectly when it destroys the EOR bucket. [Brian Pane]
f3a8cd3835463b47a8e3dc84cd8e7a02bcd7fee8Mark Andrews *) Rewrite of logresolve support utility: IPv6 addresses are now supported
3e9ab6efd14ad716e6815718207dac2bdef3fddfMark Andrews and the format of statistical output has changed. [Colm MacCarthaigh]
3e9ab6efd14ad716e6815718207dac2bdef3fddfMark Andrews *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]
6e373c502584f9292e964378411d296c8259026bMark Andrews *) Added new connection states for handler and write completion
6e373c502584f9292e964378411d296c8259026bMark Andrews [Brian Pane]
3bf783a6d4627266d76b0ebdc05afdccb3d06ad0Mark Andrews *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
3bf783a6d4627266d76b0ebdc05afdccb3d06ad0Mark Andrews [Justin Erenkrantz]
a37e44f107f5f60d7e84de77eb33b13139bca03fMark Andrews *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,
a37e44f107f5f60d7e84de77eb33b13139bca03fMark Andrews allowing string-valued client certificate attributes to be used for
a37e44f107f5f60d7e84de77eb33b13139bca03fMark Andrews access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")
2a35dc09d6c14f4041116766c0f7b60f41be0c9eMark Andrews [Martin Kraemer, David Reid]
2a35dc09d6c14f4041116766c0f7b60f41be0c9eMark AndrewsChanges with Apache 2.2.5
d53520b78d4a8726396efdbaa71f86f687a6f308Mark Andrews *) Unix MPMs: Catch SIGFPE so that exception hooks and CoreDumpDirectory
d53520b78d4a8726396efdbaa71f86f687a6f308Mark Andrews can work after that terminating signal.
43501e6570e9081d459fb5c1a81b73c2c53c5df0Mark Andrews [Eric Covener <covener gmail.com>]
43501e6570e9081d459fb5c1a81b73c2c53c5df0Mark Andrews *) Win32: Makefile.win will now build with MS VC 8 (Visual Studio 2005)
c2b2bd69faabd83143ffb30a132a2f20ebd9abdaMark Andrews including embedding the .manifest information into each binary.
c2b2bd69faabd83143ffb30a132a2f20ebd9abdaMark Andrews [William Rowe]
d140ae28347065500e7efb1ebe884f1606f9ac7bMark AndrewsChanges with Apache 2.2.4
d3bcf7adca7fc4a019364b0195818673448072f7Mark Andrews *) mod_isapi: Correctly present SERVER_PORT_SECURE.
d3bcf7adca7fc4a019364b0195818673448072f7Mark Andrews PR: 40573. [Matt Eaton <asf divinehawk.com>]
cf029c9369548e598379490a039cfbc2b83527eeMark Andrews *) Allow htcacheclean, httxt2dbm, and fcgistarter to link apr/apr-util
cf029c9369548e598379490a039cfbc2b83527eeMark Andrews statically like the older support programs.
c6d4f781529d2f28693546b25b2967d44ec89e60Mark Andrews [Eric Covener <covener gmail.com>]
c6d4f781529d2f28693546b25b2967d44ec89e60Mark Andrews *) core: Fix NONBLOCK status of listening sockets on restart/graceful
c9eaf357a31ea5eaeeed24f2f4e800a6ef9512e0Mark Andrews PR 37680. [Darius Davis <darius-abz free-range.com.au>]
c9eaf357a31ea5eaeeed24f2f4e800a6ef9512e0Mark Andrews *) mod_deflate: Rework inflate output and deflate output filter to fix several
3fc7753efdc33559978ce61785961b1305944077Mark Andrews issues: Incorrect handling of flush buckets, potential memory leaks,
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews excessive memory usage in inflate output filter for large compressed
3fc7753efdc33559978ce61785961b1305944077Mark Andrews content. PR 39854. [Ruediger Pluem, Nick Kew, Justin Erenkrantz]
219a8f14a864aca47c340729dfff008a5050dd26Mark Andrews *) mod_mem_cache: Memory leak fix: Unconditionally free the buffer.
219a8f14a864aca47c340729dfff008a5050dd26Mark Andrews [Davi Arnaut <davi haxent.com.br>]
d14e4f3a9916f2159de4c5995006195072e05085Mark Andrews *) Allow mod_dumpio to log at other than DEBUG levels via
d14e4f3a9916f2159de4c5995006195072e05085Mark Andrews the new DumpIOLogLevel directive. [Jim Jagielski]
fde1a334ee0d437ccbada347ff09e8ea0eaff221Mark Andrews *) rotatelogs: Improve error message for open failures. PR 39487.
a957b9ccdccf519018e06213a27e1b70b8dc4640Mark Andrews *) Better detection and clean up of ldap connection that has been
4ff0e3c8afbbbc30473701c47d75e1d7829bae3eMark Andrews terminated by the ldap server. PR 40878.
4ff0e3c8afbbbc30473701c47d75e1d7829bae3eMark Andrews [Rob Baily <rbaily servicebench com>]
9a33e2d135b0de7d2e2d768f2b9c45b2627fe4e6Mark Andrews *) mod_mem_cache: Convert mod_mem_cache to use APR memory pool functions
9a33e2d135b0de7d2e2d768f2b9c45b2627fe4e6Mark Andrews by creating a root pool for object persistence across requests. This
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews also eliminates the need for custom serialization code.
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews [Davi Arnaut <davi haxent.com.br>]
94b58e01ae98764a045e18581d7aaf05d2889e60Mark Andrews *) mod_authnz_ldap: Add an AuthLDAPRemoteUserAttribute directive. If
94b58e01ae98764a045e18581d7aaf05d2889e60Mark Andrews set, REMOTE_USER will be set to this attribute, rather than the
a687a0592bbe3a582860eb5f03725bf80d7ac1d8Mark Andrews username supplied by the user. Useful for example when you want users
a687a0592bbe3a582860eb5f03725bf80d7ac1d8Mark Andrews to log in using an email address, but need to supply a userid instead
a687a0592bbe3a582860eb5f03725bf80d7ac1d8Mark Andrews to the backend. [Graham Leggett]
a295fbb55cfed38bcf2853c60410cce52ab6cebbMark Andrews *) mod_cgi and mod_cgid: Don't use apr_status_t error return
a295fbb55cfed38bcf2853c60410cce52ab6cebbMark Andrews from input filters as HTTP return value from the handler.
6eb8591f005f3e270d9ffb23769753952d0ec286Mark Andrews PR 31579. [Nick Kew]
6eb8591f005f3e270d9ffb23769753952d0ec286Mark Andrews *) mod_cache: Eliminate a bogus error in the log when a filter returns
a1bc94109313bf4ebb6e6ff655d71d45582d2e43Mark Andrews AP_FILTER_ERROR. [Niklas Edmundsson <nikke acc.umu.se>]
a1bc94109313bf4ebb6e6ff655d71d45582d2e43Mark Andrews *) core: Fix issue which could cause piped loggers to be orphaned and never
a1bc94109313bf4ebb6e6ff655d71d45582d2e43Mark Andrews terminate after a graceful restart. PR 40651. [Joe Orton, Ruediger Pluem]
d9c4f954a1ddf7fcd5bf86bb7bbc12f669f81507Mark Andrews *) core: Fix address-in-use startup failure caused by corruption of the list
d9c4f954a1ddf7fcd5bf86bb7bbc12f669f81507Mark Andrews of listen sockets in some configurations with multiple generic Listen
6657a9e2d8c039be0bec367cae59a91d77ccaad4Mark Andrews directives. [Jeff Trawick]
6657a9e2d8c039be0bec367cae59a91d77ccaad4Mark Andrews *) mod_headers: Support regexp-based editing of HTTP headers. [Nick Kew]
118394ef2ec7cef253c55359a3d70d202ddc2fa0Mark Andrews *) mod_proxy: Add explicit flushing feature. When Servlet container sends AJP
118394ef2ec7cef253c55359a3d70d202ddc2fa0Mark Andrews body message with size 0, this means that Servlet container has asked for
118394ef2ec7cef253c55359a3d70d202ddc2fa0Mark Andrews an explicit flush. Create flush bucket in that case. This feature has been
6178552326050b16f5706ee63c931e9388d74318Mark Andrews added to the recent Tomcat versions without breaking the AJP protocol.
6178552326050b16f5706ee63c931e9388d74318Mark Andrews [Mladen Turk]
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews *) mod_proxy_balancer: Set the new environment variable BALANCER_ROUTE_CHANGED
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews if a worker with a route different from the one supplied by the client
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews had been chosen or if the client supplied no routing information for
69836f45cff130ab11a1f5a662e8bf8aaf390de2Mark Andrews a balancer with sticky sessions. [Ruediger Pluem]
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews *) mod_proxy_balancer: Add information about the route, the sticky session
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews and the worker used during a request as environment variables. PR 39806.
08c90261660649ca7d92065f6f13a61ec5a9a86dMark Andrews [Brian <brectanu gmail.com>]
f8f65e2de40b1e9874b88f392f3abeb057ce6172Mark Andrews *) mod_proxy: Don't try to use dead backend connection. PR 37770.
f8f65e2de40b1e9874b88f392f3abeb057ce6172Mark Andrews [Olivier BOEL <ob dorrboel.com>]
05d32f6b0f6590ca22136b753309f070ce769000Mark Andrews *) mod_proxy_balancer: Extract stickysession routing information contained as
05d32f6b0f6590ca22136b753309f070ce769000Mark Andrews parameter in the URL correctly. PR 40400.
05d32f6b0f6590ca22136b753309f070ce769000Mark Andrews [Ruediger Pluem, Tomokazu Harada <harada sysrdc.ns-sol.co.jp>]
2b66a51a7d72e9cc07917fb583ad528b0539d2a3Mark Andrews *) mod_proxy_ajp: Added cping/cpong support for the AJP protocol.
2b66a51a7d72e9cc07917fb583ad528b0539d2a3Mark Andrews A new worker directive ping=timeout will cause CPING packet
2b66a51a7d72e9cc07917fb583ad528b0539d2a3Mark Andrews to be send expecting CPONG packet within defined timeout.
e9733bc599f30033ffe7af69f5fca254fb59d46eMark Andrews In case the backend is too busy this will fail instead
e9733bc599f30033ffe7af69f5fca254fb59d46eMark Andrews sending the full header. [Mladen Turk]
332ed11af0e9837421160ab67619e025520a73f4Mark Andrews *) mod_cache: From RFC3986 (section 6.2.3.) if a URI contains an
332ed11af0e9837421160ab67619e025520a73f4Mark Andrews authority component and an empty path, the empty path is to be equivalent
332ed11af0e9837421160ab67619e025520a73f4Mark Andrews to "/". It explicitly cites the following four URIs as equivalents:
fabf2ee6b01ee06a0de940b83d53cf57f9f79265Mark Andrews [Davi Arnaut <davi haxent.com.br>]
1c91b0a6516319d81670da2325e2bd08a7703707Mark Andrews *) mod_cache: Don't cache requests with a expires date in the past;
1c91b0a6516319d81670da2325e2bd08a7703707Mark Andrews otherwise mod_cache will always try to cache the URL. This bug
2a90390deeff6ba07125bfb2c81ab4b582eb2777Mark Andrews might lead to numerous rename() errors on win32 if the URL was
95b484c9580d06eb2f9735a22e9841389c2859baMark Andrews previously cached. [Davi Arnaut <davi haxent.com.br>]
2a90390deeff6ba07125bfb2c81ab4b582eb2777Mark Andrews *) mod_disk_cache: Make sure that only positive integers are accepted
be2c2c29a88db96bd51f11d671ec207f0b6b0d45Mark Andrews for the CacheMaxFileSize and CacheMinFileSize parameters in the
be2c2c29a88db96bd51f11d671ec207f0b6b0d45Mark Andrews config file. PR39380. [Niklas Edmundsson <nikke acc.umu.se>]
01db0feafa67200a07ff8f81dde9029f675bbb5cMark Andrews *) core: Deal with the widespread use of apr_status_t return values
503ab4e136b843ef431f904709698231f1bc39e3Mark Andrews as HTTP status codes, as documented in PR#31759 (a bug shared by
503ab4e136b843ef431f904709698231f1bc39e3Mark Andrews the default handler, mod_cgi, mod_cgid, mod_proxy, and probably
cf224bbf7bab87bc28b12f5b30f5ca3f3e5bf604Mark Andrews others). PR31759. [Jeff Trawick, Ruediger Pluem, Joe Orton]
cf224bbf7bab87bc28b12f5b30f5ca3f3e5bf604Mark Andrews *) mod_ext_filter: Handle filter names which include capital letters.
cf224bbf7bab87bc28b12f5b30f5ca3f3e5bf604Mark Andrews PR 40323. [Jeff Trawick]
00afe78ab290fec3041731c1fac146a24f556de4Mark Andrews *) mod_isapi: Avoid double trailing slashes in HSE_REQ_MAP_URL_TO_PATH
00afe78ab290fec3041731c1fac146a24f556de4Mark Andrews support. Also corrects the slashes for Windows.
2674e1a455d4f71de09b2b60e7a8304b9a305588Mark Andrews PR 15993. [William Rowe]
2674e1a455d4f71de09b2b60e7a8304b9a305588Mark Andrews *) mod_isapi: Handle "HTTP/1.1 200 OK" style status lines correctly, the
60ab03125c137c48a6b2ed6df1d2c8657757e09dMark Andrews token parser worked while the resulting length was misinterpreted.
60ab03125c137c48a6b2ed6df1d2c8657757e09dMark Andrews PR 29098. [Brock Bland <bbland serena.com>]
60ab03125c137c48a6b2ed6df1d2c8657757e09dMark Andrews *) mod_isapi: Return 0 (failure) for more of the various ap_pass_brigade
60ab03125c137c48a6b2ed6df1d2c8657757e09dMark Andrews attempts to stream the response at the client. Log these as well.
60ab03125c137c48a6b2ed6df1d2c8657757e09dMark Andrews PR 30022, 40470. [William Rowe, Matt Eaton <asf divinehawk.com>]
405ae948cc01c5fb9fee511ce32de86f8077e01bMark Andrews *) mod_isapi: Ensure we walk through all the methods the developer may have
405ae948cc01c5fb9fee511ce32de86f8077e01bMark Andrews employed to report their HTTP status result code.
57e4191a112bf57a1eab6d37212df2531b6f8a16Mark Andrews PR 16637 30033 28089. [Matt Lewandowsky <matt iamcode.net>, William Rowe]
faa4af28cff84d7ac45c1da98e40c00f65a24aa3Mark Andrews *) mod_echo: Fix precedence problem in if statement. PR 40658.
faa4af28cff84d7ac45c1da98e40c00f65a24aa3Mark Andrews [Larry Cipriani <lvc lucent.com>]
faa4af28cff84d7ac45c1da98e40c00f65a24aa3Mark Andrews *) mod_mime_magic: Fix precedence problem in if statement. PR 40656.
faa4af28cff84d7ac45c1da98e40c00f65a24aa3Mark Andrews [Larry Cipriani <lvc lucent.com>]
eba8a27e55258ee4470d7c3caa6bb3a335b9731eMark Andrews *) The full server version information is now included in the error log at
203629e729b756601646c639c0dbfb267030a617Mark Andrews startup as well as server status reports, irrespective of the setting
8af4e7aa4e2a6fe84bf4ebe09ca1d4ef1d8ab593Mark Andrews of the ServerTokens directive. ap_get_server_version() is now
8af4e7aa4e2a6fe84bf4ebe09ca1d4ef1d8ab593Mark Andrews deprecated, and is replaced by ap_get_server_banner() and
d08c5dfcd4d1f69004c1382ffc00cc1848dcd1a3Mark Andrews ap_get_server_description(). [Jeff Trawick]
982a2cfef37a39842ff53dc2e00b947c554fa78eTatuya JINMEI 神明達哉 *) mod_proxy_balancer: Workers can now be defined as part of
16ee4fe11bad616a76c79e9f626a7e04a88ef4abMark Andrews a balancer cluster "set" in which members of a lower-numbered set
16ee4fe11bad616a76c79e9f626a7e04a88ef4abMark Andrews are preferred over higher numbered ones. [Jim Jagielski]
16ee4fe11bad616a76c79e9f626a7e04a88ef4abMark Andrews *) mod_proxy_balancer: Workers can now be defined as "hot standby" which
a5b66bf342440688739d7207e437bf743e8b7ac0Mark Andrews will only be used if all other workers are unusable (eg: in
a5b66bf342440688739d7207e437bf743e8b7ac0Mark Andrews error or disabled). Also, the balancer-manager displays the election
982e072a5000bfc072aee8b34f64112cf54369a5Mark Andrews count and I/O counts of all workers. [Jim Jagielski]
982e072a5000bfc072aee8b34f64112cf54369a5Mark Andrews *) mod_proxy_ajp: Close connection to backend if reading of request body
e24089c5c33f31a39cea0123765165fa31308343Tatuya JINMEI 神明達哉 fails. PR 40310. [Ian Abel <ianabel mxtelecom.com>]
6f3c2ee187d690f96ffef3ba5a6c2e112bb3798cMark Andrews *) mod_proxy_balancer: Retry worker chosen by route / redirect worker if
6f3c2ee187d690f96ffef3ba5a6c2e112bb3798cMark Andrews it is in error state before sending "Service Temporarily Unavailable".
9547d3e03bb082d73aeabb497b60632ebfdc78a6Mark Andrews PR 38962. [Christian Boitel <cboitel lfdj.com>]
9de05727e334336ceb0abcca404d770abd23b876Mark AndrewsChanges with Apache 2.2.3
7c61d798f54f7c19f87d46a0df775e0e58fe7d30Mark Andrews *) SECURITY: CVE-2006-3747 (cve.mitre.org)
7c61d798f54f7c19f87d46a0df775e0e58fe7d30Mark Andrews mod_rewrite: Fix an off-by-one security problem in the ldap scheme
e23932d3c8c154cff3fea0ecff64e26c6ac6f5d8Mark Andrews handling. For some RewriteRules this could lead to a pointer being
e23932d3c8c154cff3fea0ecff64e26c6ac6f5d8Mark Andrews written out of bounds. Reported by Mark Dowd of McAfee.
72160d9b51d902a7cf18de84953bc651941f73c2Mark Andrews *) mod_authn_alias: Add a check to make sure that the base provider and the
885e60828681cecd17bccbe5ceff8f4e75ef4c5cMark Andrews alias names are different and also that the alias has not been registered
8ec056723666c71a499880ffa415661f37ffd08eMark Andrews before. PR 40051. [Brad Nicholes]
037b732f88edc943f3141e0342dc993156e3abf3Mark Andrews *) mod_authnz_ldap: Fix a problem with invalid auth error detection for LDAP
80a609bf44ee09766aeb9ae02cfbf7f9fe86dd83Mark Andrews client SDKs that don't support the LDAP_SECURITY_ERROR macro. PR 39529.
80a609bf44ee09766aeb9ae02cfbf7f9fe86dd83Mark Andrews [Ray Price <dohrayme yahoo.com>, Josh Fenlason <jfenlason ptc.com>]
b89095ba15e9163f2bacc46239d8f69d1a2b9ad3Tatuya JINMEI 神明達哉 *) mod_cache: Do not overwrite the Content-Type in the cache, for
b89095ba15e9163f2bacc46239d8f69d1a2b9ad3Tatuya JINMEI 神明達哉 successfully revalidated cached objects. PR 39647. [Ruediger Pluem]
bd5c8a564b21781fe6b608fe6a75c2e7152200acTatuya JINMEI 神明達哉 *) mod_speling: Add directive to deal with case corrections only
85708f9aabbfe31fc648c90258ae18ce0edc3488Mark Andrews and ignore other misspellings [Olivier Thereaux <ot w3.org>]
49732e4d6008d7d99dfce596a17e17aa13425502Mark Andrews *) mod_dbd: Fix dependence on virtualhost configuration in
49732e4d6008d7d99dfce596a17e17aa13425502Mark Andrews defining prepared statements (possible segfault at startup
49732e4d6008d7d99dfce596a17e17aa13425502Mark Andrews in user modules such as mod_authn_dbd). [Nick Kew]
cae2cb086244dfb883739edbe79e34756079f70eMark Andrews *) Add optional 'scheme://' prefix to ServerName directive,
cf0bcc2c80ca99f1e6e53dcdd0eba03fe70723dfMark Andrews allowing correct determination of the canonical server URL
cf0bcc2c80ca99f1e6e53dcdd0eba03fe70723dfMark Andrews for use behind a proxy or offload device handling SSL; fixing
0da29be670f6fa5b2a6320d9d843bc8b802c153aMark Andrews redirect generation in those cases. PR 33398. [Sander Temme]
0da29be670f6fa5b2a6320d9d843bc8b802c153aMark Andrews *) Added server_scheme field to server_rec for above. Minor MMN bump.
0da29be670f6fa5b2a6320d9d843bc8b802c153aMark Andrews [Sander Temme]
03e200df5dc283f24a6a349f0b31d3eab26da893Mark Andrews *) mod_cache: Make caching of reverse SSL proxies possible again. PR 39593.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews [Ruediger Pluem, Joe Orton]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) Worker MPM: On graceless shutdown or restart, send signals to
74f261bd2b7846d8e730ca3a1b28d6503de5c74aMark Andrews each worker thread to wake them up if they're polling on a
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews Keep-Alive connection. PR 38737. [Chris Darroch]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) worker and event MPMs: fix excessive forking if fork() or child_init
5be3685b0e57677c0cc03113099cb8f99f9a070bMark Andrews take a long time. PR 39275.
5be3685b0e57677c0cc03113099cb8f99f9a070bMark Andrews [Greg Ames, Jeff Trawick, Chris Darroch <chrisd pearsoncmg.com> ]
715361d0c3800e5ad886e5df971936ce6cd1ca89Mark Andrews *) configure: Add "--with-included-apr" flag to force use of the
715361d0c3800e5ad886e5df971936ce6cd1ca89Mark Andrews bundled version of APR at build time. [Joe Orton]
715361d0c3800e5ad886e5df971936ce6cd1ca89Mark Andrews *) Respect GracefulShutdownTimeout in the worker and event MPMs.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews [Chris Darroch, Garrett Rooney]
3d711f2f75cb9a9ddcbf1fca9b2de192e75340e6Mark Andrews *) mod_mem_cache: Set content type correctly when delivering data from
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews cache. PR 39266. [Ruediger Pluem]
a268fec7f54a89a0772a91da0511c8eae09e6157Mark Andrews *) mod_autoindex: Fix filename escaping with FancyIndexing disabled.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews PR 38910. [Robby Griffin <rmg terc.edu>]
4e1d3e67cdc76609bad5f0310ac48de10b442b9fMark Andrews *) mod_charset_lite: Bypass translation when the source and dest charsets
4e1d3e67cdc76609bad5f0310ac48de10b442b9fMark Andrews are the same. [Jeff Trawick]
539f477cd03db1ac173bcb5257da136283e57849Mark AndrewsChanges with Apache 2.2.2
6b79e960e6ba2991aeb02a6c39af255ab7f06d99Mark Andrews *) mod_deflate: Allow mod_deflate to handle internal redirects.
6b79e960e6ba2991aeb02a6c39af255ab7f06d99Mark Andrews [Brian J. France <list firehawksystems.com>]
6b79e960e6ba2991aeb02a6c39af255ab7f06d99Mark Andrews *) mod_proxy_balancer: Initialize members of a balancer correctly.
6b79e960e6ba2991aeb02a6c39af255ab7f06d99Mark Andrews PR 38227. [James A. Robinson <jim.robinson stanford.edu>]
74a14c4eb8518a9cc31cb5a918547a93d0c0e838Mark Andrews *) mod_proxy: Do not release connections from connection pool twice.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews PR 38793. [Ruediger Pluem, matthias <mk-asf gigacodes.de>]
261a6a1f7d95eaf0cd882f3123dcfd775517a54fMark Andrews *) core: Prevent reading uninitialized memory while reading a line of
261a6a1f7d95eaf0cd882f3123dcfd775517a54fMark Andrews protocol input. PR 39282. [Davi Arnaut <davi haxent.com.br>]
261a6a1f7d95eaf0cd882f3123dcfd775517a54fMark Andrews *) mod_dbd: Update defaults, improve error reporting.
261a6a1f7d95eaf0cd882f3123dcfd775517a54fMark Andrews [Chris Darroch <chrisd pearsoncmg com>, Nick Kew]
7c678cfe0bd477ded2995b9490d72edf7bc76a84Mark Andrews *) mod_dbd: Create own pool and mutex to avoid problem use of
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews process pool in request processing.
a20e888bde4b307050d76e09266b2fb49f03bc30Mark Andrews [Chris Darroch <chrisd pearsoncmg com>]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) HTML-escape the Expect error message. Not classed as security as
f4f0eedb8916a824124cf56d4c3f18eb6c77b42eMark Andrews an attacker has no way to influence the Expect header a victim will
f4f0eedb8916a824124cf56d4c3f18eb6c77b42eMark Andrews send to a target site. Reported by Thiago Zaninotti
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews <thiango nstalker.com>. [Mark Cox]
611ec5dd43d31fd6385f1a94c2f0865375f452b4Mark Andrews *) htdbm: Fix crash processing -d option in 64-bit mode on HP-UX.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews [Jeff Trawick]
01b8bc018d83e757b0578723977b0a71e1e626f8Mark Andrews *) htdbm: Warn the user when adding a plaintext password on a platform
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews where it wouldn't work with the server (i.e., anywhere that has
8abe06b25d245ab2955d81525bfe6bd29b80908eMark Andrews crypt()). [Jeff Trawick]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_proxy: don't reuse a connection that may be to the wrong backend
7755f5932a3e59d0c6a2506cc94519de92b91ca6Mark Andrews PR 39253 [Ruediger Pluem]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) Default handler: Don't return output filter apr_status_t values.
b5ad6dfea4cc3e7d1d322ac99f1e5a31096837c4Mark Andrews PR 31759. [Jeff Trawick, Ruediger Pluem, Joe Orton]
6e9efadbea9febb0494e713e54dfea6f7ef70383Mark AndrewsChanges with Apache 2.2.1
aa0f0779d1ea7150991c3e6eec1cc532086c13fdMark Andrews *) SECURITY: CVE-2005-3357 (cve.mitre.org)
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews mod_ssl: Fix a possible crash during access control checks if a
18d0b5e54be891a1aa938c165b6d439859121ec8Mark Andrews non-SSL request is processed for an SSL vhost (such as the
18d0b5e54be891a1aa938c165b6d439859121ec8Mark Andrews "HTTP request received on SSL port" error message when an 400
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews ErrorDocument is configured, or if using "SSLEngine optional").
0563d476dea35a60a59857cc8bd26ef276d78799Mark Andrews PR 37791. [Rüdiger Plüm, Joe Orton]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) SECURITY: CVE-2005-3352 (cve.mitre.org)
b2f160f266005ceaed77a3f575109f74cd13d548Mark Andrews mod_imagemap: Escape untrusted referer header before outputting
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews in HTML to avoid potential cross-site scripting. Change also
0bb7c66ef8e3e8740cbac4a4de607060dfc4d6c8Mark Andrews made to ap_escape_html so we escape quotes. Reported by JPCERT.
2b3e34f03675d6c71a654fe2094f3b9c063a70eaMark Andrews *) mod_proxy_ajp: Flushing of the output after each AJP chunk is now
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews configurable at runtime via the 'flushpackets' and 'flushwait' worker
7216566bd596f8fbc98eafd5e9359ec7fa92c8b8Mark Andrews params. Minor MMN bump. [Jim Jagielski]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_proxy: Fix incorrect usage of local and shared worker init.
42b37d29c7709ce5bfe0110d07f1ec163be220d2Mark Andrews PR 38403. [Jim Jagielski]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_isapi: Fix compiler errors on Unix platforms.
42b37d29c7709ce5bfe0110d07f1ec163be220d2Mark Andrews [William Rowe]
7c386b0c3194aa18089c6fa2e9856b576ec99c81Mark Andrews *) mod_proxy_http: Send HTTP Keep-Alive Headers. PR 38524.
7c386b0c3194aa18089c6fa2e9856b576ec99c81Mark Andrews [Rüdiger Plüm, Joe Orton]
fd780f3d47179d68ba2d4661fb9cac9ce1e74928Mark Andrews *) mod_disk_cache: Return the correct error codes from bucket read
fd780f3d47179d68ba2d4661fb9cac9ce1e74928Mark Andrews failures, instead of APR_EGENERAL.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) Add APR/APR-Util Compiled and Runtime Version numbers to the
2bef3713093349af52ba61eaab07adf3207da873Mark Andrews output of 'httpd -V'. [William Rowe]
bcf369e513a1cc2209e2a987f5772afa79813540Mark Andrews *) http: If a connection is aborted while waiting for a chunked line,
bcf369e513a1cc2209e2a987f5772afa79813540Mark Andrews flag the connection as errored out. [Justin Erenkrantz]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) core: Reject invalid Expect header immediately. PR 38123.
016c0a82f1ce3fe4d362d7c9cf8de4377ffaf5a9Mark Andrews [Ruediger Pluem]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_proxy: Fix KeepAlives not being allowed and set to
9b80f3a7c739a99b498a37a711a51b6a88df3a78Mark Andrews backend servers. PR 38602. [Ruediger Pluem, Jim Jagielski]
9b80f3a7c739a99b498a37a711a51b6a88df3a78Mark Andrews *) mod_proxy: If we get an error reading the upstream response,
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews close the connection. [Justin Erenkrantz, Roy T. Fielding,
83a56f1e4f2d11fa895ceff4342fff7157910036Mark Andrews Jim Jagielski, Ruediger Pluem]
83a56f1e4f2d11fa895ceff4342fff7157910036Mark Andrews *) mod_proxy_ajp: Support common headers of the AJP protocol in responses.
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews PR 38340. [Aleksey Pesternikov <apesternikov yahoo.com>]
d4d68515d23668cfe804ab2a174a7e427decedd8Mark Andrews *) mod_proxy_balancer: Do not overwrite the status of initialized workers and
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews respect the configured status of uninitilized workers when creating a new
e8e62bb7829e88fc56360f7edc021dc8493a8704Mark Andrews child process. [Ruediger Pluem]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_proxy_ajp: Crosscheck the length of the body chunk with the length of
e7fb847ed570dd8c1bcdacabb3d69bd81feb79aeMark Andrews the ajp message to prevent mod_proxy_ajp from reading beyond the buffer
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews boundaries and thus revealing possibly sensitive memory contents to the
ab9871e71eac6b33ce92a0ad26dc50d0ff241e3bMark Andrews client. [Ruediger Pluem]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) Ensure that the proper status line is written to the client, fixing
ab9871e71eac6b33ce92a0ad26dc50d0ff241e3bMark Andrews incorrect status lines caused by filters which modify r->status without
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews resetting r->status_line, such as the built-in byterange filter.
2c6f9101f99cc663074376a5cc1d954d33bdbe36Mark Andrews [Jeff Trawick]
116e6b4257e3efceca3e82af1e695579129af93dMark Andrews *) mod_speling: Stop crashing with certain non-file requests. [Jeff Trawick]
539f477cd03db1ac173bcb5257da136283e57849Mark Andrews *) mod_cache: Make caching of reverse proxies possible again. PR 38017.
116e6b4257e3efceca3e82af1e695579129af93dMark Andrews [Ruediger Pluem]
1c153afce556ff3c687986fb7c4a0b0a7f5e7cd8Mark Andrews *) Modify apr[util] .h detection to avoid breakage on VPATH builds
1c153afce556ff3c687986fb7c4a0b0a7f5e7cd8Mark Andrews using Solaris make (amoung others) and avoid breakage in ./buildconf
81bdad57bd2c0c4b9a0684fe6e222ba95da625ecMark Andrews when srclib/apr[-util] are symlinks rather than directories proper.
116e6b4257e3efceca3e82af1e695579129af93dMark Andrews [William Rowe]
a5768d889b4e139e78f2b1d9433f3e9f8d225ff4Mark Andrews *) Chunk filter: Fix chunk filter to create correct chunks in the case that
3d247992c4a500caa7703edaee68612e545af602Mark Andrews a flush bucket is surrounded by data buckets. [Ruediger Pluem]
5c08d19fb17f0684e6424b94910cef61cec7592fMark Andrews *) Fix syntax error in httpd.h with strict compilers. PR 38740.
3d247992c4a500caa7703edaee68612e545af602Mark Andrews [Per Olausson <pao darkheim.freeserve.co.uk>]
5c08d19fb17f0684e6424b94910cef61cec7592fMark Andrews *) Preserve the Content-Length header for a proxied HEAD response.
9eca2b9b95df456545e1bc298c8337400aa24e8eMark Andrews PR 18757. [Greg Ames]
9eca2b9b95df456545e1bc298c8337400aa24e8eMark Andrews *) Fix recursive ErrorDocument handling. PR 36090.
cd5f6549b33bf2481538b77934d69313f452ff4bMark Andrews [Chris Darroch <chrisd pearsoncmg.com>]
05331ce161276d879711342fadbc6144af7f5ba6Mark Andrews *) Don't hang on error return from post_read_request. PR37790 [Nick Kew]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) Fix off-by-one error in proxy_balancer. PR37753
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [Kazuhiro Osawa <ko yappo ne jp>]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark AndrewsChanges with Apache 2.2.0
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) mod_negotiation: Minor performance tweak by reusing already calculated
2fa0485e9e969dd42dd10339354d7949db46111aMark Andrews [Ruediger Pluem, Christophe Jaillet <christophe.jaillet wanadoo.fr>]
7d5b32acb1898844afa19123d07483b46edac7cbMark Andrews *) Remove support for 'On' and 'Off' for AuthBasicProvider and
7d5b32acb1898844afa19123d07483b46edac7cbMark Andrews AuthDigestProvider. [Joshua Slive, Justin Erenkrantz]
ef67e6d8fa86d98a2c0defc43b624434324d9ce7Mark Andrews *) Add in new UseCanonicalPhysicalPort directive, which controls
841fc0fd70881499b62f15e35980dd14b905ba45Mark Andrews whether or not Apache will ever use the actual physical port
e5a5c60a5e690ee9858c9e3facba189b8646f0b7Mark Andrews when constructing the canonical port number. [Jim Jagielski]
e5a5c60a5e690ee9858c9e3facba189b8646f0b7Mark Andrews *) mod_dav: Fix a null pointer dereference in an error code path during the
16b9ee24b96a1c1d21d809e88238091c4afa25c9Mark Andrews handling of MKCOL.
16b9ee24b96a1c1d21d809e88238091c4afa25c9Mark Andrews [Ruediger Pluem, Ghassan Misherghi <ghassanm ucdavis.edu>]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) Fix DESTDIR=... installation when using bundled copy of APR.
da53179d1055c75e64dc2c9623b38cb2b8629eb6Mark Andrews *) mod_proxy_balancer: When finding best worker, use case insensitive
da53179d1055c75e64dc2c9623b38cb2b8629eb6Mark Andrews match for scheme and host, but case sensitive for the rest of
da53179d1055c75e64dc2c9623b38cb2b8629eb6Mark Andrews the path. [Jim Jagielski, Ruediger Pluem]
b4028939fdffc92cf659764deb9c6e3c805cc948Mark AndrewsChanges with Apache 2.1.9
b4028939fdffc92cf659764deb9c6e3c805cc948Mark Andrews *) Add mod_authn_dbd (SQL-based authentication) [Nick Kew]
9840a0767d02f6c6b9d1f73d54e0cab2e8192a93Mark Andrews *) mod_proxy_ajp: Do not spool the entire response from AJP backend before
9840a0767d02f6c6b9d1f73d54e0cab2e8192a93Mark Andrews sending it up the filter chain. PR37100. [Ruediger Pluem]
57ed0bab5b92f66af3dc3b86081bd42ab8d4ba09Rob Austein *) mod_cache: Create new filters CACHE_OUT_SUBREQ / CACHE_SAVE_SUBREQ which
57ed0bab5b92f66af3dc3b86081bd42ab8d4ba09Rob Austein only differ by the type from CACHE_OUT / CACHE_SAVE to ensure that
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein subrequests to non local resources work again. [Ruediger Pluem]
1cb73c69f76c8c2c66b767a8b9ad04f3988cf6a9Mark Andrews *) mod_proxy: Do not lowercase the entire worker name of a BalancerMember
1cb73c69f76c8c2c66b767a8b9ad04f3988cf6a9Mark Andrews since this breaks case sensitive URI's. PR36906. [Ruediger Pluem]
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews *) core: AddOutputFilterByType is ignored for proxied requests. PR31226.
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews [Joe Orton, Ruediger Pluem]
f754fa97bc698cc251d227173a95e4d39a88ac01Mark Andrews *) mod_proxy_http: Prevent data corruption of POST request bodies when
a8f1c013b0fdc405ca4b5ec8316d3c9e3ad9d31bMark Andrews client accesses proxied resources with SSL. PR37145.
40a547174fb7d14f74bc375f076c8c390498f68eMark Andrews [Ruediger Pluem, William Rowe]
a8f1c013b0fdc405ca4b5ec8316d3c9e3ad9d31bMark Andrews *) mod_proxy_balancer: BalancerManager and proxies correctly handle
959fb01017fa83578e7c8776ed3baba3076a2409Mark Andrews member workers with paths. PR36816. [Ruediger Pluem, Jim Jagielski]
959fb01017fa83578e7c8776ed3baba3076a2409Mark Andrews *) mod_log_config: %{hextid}P will log the thread id in hex with APR
d73541ea2eebe01cafc5ff1b2ba4b9a8f75237b1Mark Andrews versions 1.2.0 or higher. [Jeff Trawick]
d73541ea2eebe01cafc5ff1b2ba4b9a8f75237b1Mark Andrews *) httpd.exe/apachectl -V: display the DYNAMIC_MODULE_LIMIT setting, as
46cb442c5c53f16ece23bfe7f7f7bf44f78b0e46Mark Andrews in 1.3. [Jeff Trawick]
0f222d322b25373c4ef59d7c79f265b082ee98cdMark Andrews *) Support dbd connections tied to the conn_rec [Nick Kew]
0f222d322b25373c4ef59d7c79f265b082ee98cdMark Andrews *) Move mod_dbd to /modules/database/ [Nick Kew]
0f222d322b25373c4ef59d7c79f265b082ee98cdMark Andrews *) Move mod_filter and mod_charset_lite to /modules/filters/ [Nick Kew]
ae4f85dde3abb7d4afef9e869a83783cbf0aa29cMark Andrews *) Fix mod_dbd's config [Brian J. France <list firehawksystems.com>]
ae4f85dde3abb7d4afef9e869a83783cbf0aa29cMark Andrews *) mod_proxy_ajp: mod_proxy_ajp sends empty SSL attributes for non SSL
ae4f85dde3abb7d4afef9e869a83783cbf0aa29cMark Andrews connections. PR36883.
2132a56b5c6628925838165ae0640e55e3f36188Mark Andrews [William Barker <william.barker wilshire.com>, Ruediger Pluem]
b514e0cd0e7959a98dd59665553c8a3635ada10eMark Andrews *) Elimiated the NET_TIME filter, restructuring the timeout logic.
b514e0cd0e7959a98dd59665553c8a3635ada10eMark Andrews This provides a working mod_echo on all platforms, and ensures any
30884083d4149a8ff838b84dac1ad55c86948da8Mark Andrews custom protocol module is at least given an initial timeout value
d9ec2891475b8ed894a524a83370cfce30328569Mark Andrews based on the <VirtualHost > context's Timeout directive.
6e8a8077faf96d8da0b6cf738913f5f1f86e4008Mark Andrews [William Rowe]
5cb7e15551f502ab6948689cf3bc7dac6b56571eMark Andrews *) mod_proxy: Run the request_status hook also if there are no free workers
5cb7e15551f502ab6948689cf3bc7dac6b56571eMark Andrews or all workers are in error state.
bb99a72b219ad4f1daa80c636883ab485174c9a6Mark Andrews [Ruediger Pluem, Brian Akins <brian.akins turner.com>]
5a6874e4ed544186ccb8519765be8c3a1804e033Mark Andrews *) mod_proxy_balancer: mod_proxy_balancer does not handle sticky sessions
3b4405aba93729eead9f8f006d426f24fc4c3d78Mark Andrews with tomcat correctly. PR36507. [Ruediger Pluem]
2ab6dfca4b7432de4fb7da4cd21ee0e02a695c01Mark Andrews *) mod_proxy_connect: Fix high CPU loop on systems like UnixWare which
c553b3308e34edfaddbec57b3308bbbe362ef715Mark Andrews trigger POLL_ERR or POLL_HUP on a terminated connection. PR 36951.
c553b3308e34edfaddbec57b3308bbbe362ef715Mark Andrews [Jeff Trawick, Ruediger Pluem]
24efdccd68d157b400bf68926798bc8f3f71c24cMark Andrews *) SECURITY: CVE-2005-2970 (cve.mitre.org)
a5bb4ad5dbd08f9178e807b1e55cb449b69d8173Mark Andrews worker MPM: Fix a memory leak which can occur after an aborted
a5bb4ad5dbd08f9178e807b1e55cb449b69d8173Mark Andrews connection in some limited circumstances. [Greg Ames]
5e5b467e8c8abda496b7896241a46b05256cd22cMark Andrews *) Doxygen fixup [Neale Ranns <neale ranns.org>, Ian Holsman]
713ad87a7f95d06f4bb3e0b92b91172cbebd6c68Mark Andrews *) mod_cache/mod_dir: Correct a subrequest lookup bug which was preventing
713ad87a7f95d06f4bb3e0b92b91172cbebd6c68Mark Andrews mod_dir from serving indexes correctly with mod_cache enabled.
cb2d565b507027f9e5664fa7e167bb24faa7c8fbMark Andrews [Colm MacCarthaigh]
4f21f7feaff27d5356827e39a4537a60a5e4054cMark AndrewsChanges with Apache 2.1.8
1439214380abcc123e27a42d43a23ba441209ebeMark Andrews *) Fix lingering close implementation to match 1.3.x behaviour.
1439214380abcc123e27a42d43a23ba441209ebeMark Andrews PR 35292. [Joe Orton]
7d9b632906c756b215d65a3a08d77fe022807c2dMark Andrews *) mod_ssl: Support limited buffering of request bodies to allow
7d9b632906c756b215d65a3a08d77fe022807c2dMark Andrews per-location renegotiation to proceed. PR 12355. [Joe Orton]
5d3083c4b5b11dfb653b15fd0eeb8e0cc9b175e0Mark Andrews *) Fix regression since 2.0.x in AllowOverride Options handling.
52188225731669cd571984c45a1407a55c74ee78Mark Andrews PR 35330. [kabe <kabe sra-tohoku.co.jp>]
52188225731669cd571984c45a1407a55c74ee78Mark Andrews *) mod_ssl: Fix memory leak in ssl_util_algotypeof().
52188225731669cd571984c45a1407a55c74ee78Mark Andrews PR 25659. [David Blake <dblake hp com>, Martin Kraemer]
3cbc87c31f76262980d54ddbcdda7875be37b684Mark Andrews *) prefork, worker and event MPMs: Support a graceful-stop procedure:
bc29bb9062ab804cd79f4a1f8f366af8a040b636Mark Andrews Server will wait until existing requests are finished or until
bc29bb9062ab804cd79f4a1f8f366af8a040b636Mark Andrews "GracefulShutdownTimeout" number of seconds before exiting.
bc29bb9062ab804cd79f4a1f8f366af8a040b636Mark Andrews [Colm MacCarthaigh, Ken Coar, Bill Stoddard]
5a4854e226ce5eca99bcfb5557b36ea210bb25bcMark Andrews *) prefork, worker and event MPMs: Prevent children from holding open
5a4854e226ce5eca99bcfb5557b36ea210bb25bcMark Andrews listening ports upon graceful restart or stop. PR 28167.
b101c1e9989d0a010a3146ad823e168d15cb10c7Mark Andrews [Colm MacCarthaigh, Brian Pinkerton <bp thinkpink.com>]
989d7b844bdf2d804fda57b9b53a4eff3a6bea91Mark Andrews *) SECURITY: CVE-2005-2700 (cve.mitre.org)
989d7b844bdf2d804fda57b9b53a4eff3a6bea91Mark Andrews mod_ssl: Fix a security issue where "SSLVerifyClient" was not
d5af5bb38b9b2626b97626569adde258c8f6b808Mark Andrews enforced in per-location context if "SSLVerifyClient optional"
6d7007e807241ae0a32de8db8d3bf434626026eaMark Andrews was configured in the vhost configuration. [Joe Orton]
c941e32d221fbb0cb760e3bc24c7f221c0cf8b97Mark Andrews *) mod_ssl: Catch parse errors from misconfigured or malformed
c941e32d221fbb0cb760e3bc24c7f221c0cf8b97Mark Andrews CRLs. PR 36438. [Joe Orton]
77b101ced9801cdb226919784bfc1aa0650ace6aMark Andrews *) mod_proxy/mod_proxy_balancer: lbmethods now implemented as
77b101ced9801cdb226919784bfc1aa0650ace6aMark Andrews providers. Prevent problems when no Vhost containers were
e174044290953a2499f574e35cc9c22ba126a303Mark Andrews configured with proxy balancers. [Jim Jagielski]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) New provider function to list all available provider names in a
e174044290953a2499f574e35cc9c22ba126a303Mark Andrews specific group and version (ap_list_provider_names). [Jim Jagielski]
e174044290953a2499f574e35cc9c22ba126a303Mark Andrews *) mod_cache: Enhance CacheEnable/CacheDisable to control caching on a
e174044290953a2499f574e35cc9c22ba126a303Mark Andrews per-protocol, per-host and per-path basis. Intended for proxy
e174044290953a2499f574e35cc9c22ba126a303Mark Andrews configurations. [Colm MacCarthaigh]
4f082b58b17ce39087930d5affc2ada90ef386e6Mark Andrews *) mod_disk_cache: Canonicalise the storage key, for improved hit/miss
4f082b58b17ce39087930d5affc2ada90ef386e6Mark Andrews ratio. [Colm MacCarthaigh]
0da70bc50a320a3bb16aa7cecb2727fed2c0683cMark Andrews *) mod_cgid: Append .PID to the script socket filename and remove the
0da70bc50a320a3bb16aa7cecb2727fed2c0683cMark Andrews script socket on exit. [Colm MacCarthaigh, Jim Jagielski]
686bcdcb4c63e8dd9bbe9607265061a4d3934bbcMark Andrews *) mod_cgid: run the get_suexec_identity hook within the request-handler
4423c99613db1399dbb5c51e86ef0d351a1418c2Mark Andrews instead of within cgid. PR 36410. [Colm MacCarthaigh]
5597be9bb88de138dfec9fa9176708443813925eTatuya JINMEI 神明達哉 *) Linux 2.0: remove support for threaded MPM's due to linuxthreads use
5597be9bb88de138dfec9fa9176708443813925eTatuya JINMEI 神明達哉 of SIGUSR1 clashing with graceful restart signal. [Colm MacCarthaigh]
5597be9bb88de138dfec9fa9176708443813925eTatuya JINMEI 神明達哉Changes with Apache 2.1.7
5597be9bb88de138dfec9fa9176708443813925eTatuya JINMEI 神明達哉 *) SECURITY: CVE-2005-2491 (cve.mitre.org):
5cf023372424c1a59fda4a994e3c85c08c26e2f1Tatuya JINMEI 神明達哉 Fix integer overflows in PCRE in quantifier parsing which could
fde0a3f89b9c42e9e4ef9aaf8e044e6b18c4978cMark Andrews be triggered by a local user through use of a carefully-crafted
fde0a3f89b9c42e9e4ef9aaf8e044e6b18c4978cMark Andrews regex in an .htaccess file. [Philip Hazel]
39c7fc7e00af20144b94ef332943f62c1b3a622fMark Andrews *) mod_proxy/mod_proxy_balancer: Provide a simple, functional
39c7fc7e00af20144b94ef332943f62c1b3a622fMark Andrews interface to add additional balancer lb selection methods
073dfc245fd921958b1ccd869ed3471f828cf283Mark Andrews without requiring code changes to mod_proxy/mod_proxy_balancer;
9738408dcbd4c1f7eb2b105c83388608fafd7808Mark Andrews these can be implemented via sub-modules now. [Jim Jagielski]
9738408dcbd4c1f7eb2b105c83388608fafd7808Mark Andrews *) mod_cache: Fix incorrectly served 304 responses when expired cache
65d64acb51b0655f04b165c8045d1aed556489abMark Andrews entity is valid, but cache is unwritable and headers cannot be
e9aca33f362d017fe0d5f7b729bce646038cf1eeMark Andrews updated. [Colm MacCarthaigh <colm stdlib.net>]
28e36fcc1eea8b5283aa33d3a6d21d42df8fdaf2Mark Andrews *) mod_cache: Remove entities from the cache when re-validation
5cf146c586f69af7c65e4a4f612ae3ef6c9cf8deMark Andrews receives a 404 or other content-no-longer-present error.
8a713ca49ddddb36e432d4717800f9258a5c2ea9Mark Andrews *) mod_disk_cache: Properly remove files from cache when needed.
0ad024cc4272894e877e3a7896f80a2892bc703cMark Andrews *) mod_disk_cache: Support htcacheclean removing directories.
0ad024cc4272894e877e3a7896f80a2892bc703cMark Andrews [Andreas Steinmetz]
f93d6e86ded924cb23d80a6d45a4c830b57984ddMark Andrews *) htcacheclean: Add -t option to remove empty directories.
0ad024cc4272894e877e3a7896f80a2892bc703cMark Andrews [Colm MacCarthaigh <colm stdlib.net>]
f93d6e86ded924cb23d80a6d45a4c830b57984ddMark Andrews *) Remove the base href tag from mod_proxy_ftp, as it breaks relative
e50b75e36ca79f84e2c9b2a12f6e28cbf22aaa83Mark Andrews links for clients not using an Authorization header. [Graham Leggett,
e50b75e36ca79f84e2c9b2a12f6e28cbf22aaa83Mark Andrews Jon Snow <jsnow27 gatesec.net>]
70ba825728dc64439801981a1abe7f1e28182698Mark Andrews *) mod_cache: Restore the HTTP status of cached responses.
797944723c8de672430cc59c11bf4eeacd913649Mark Andrews [Hansjoerg Pehofer <hansjoerg.pehofer uibk.ac.at>]
28b65e6d0a03704f4faee88ebf5105addfa57968Mark Andrews *) mod_cache: Store varied contents all in the same prefix for a varied URI.
8cd830d7c806cac681b057e0c0185f29992fa35fMark Andrews [Paul Querna]
4296c5480dde48ea555f5916be8612e173f1edebMark Andrews *) mod_cache: Run the CACHE_SAVE and CACHE_OUT Filters after other content
4296c5480dde48ea555f5916be8612e173f1edebMark Andrews filters. [Paul Querna]
164e2a6f83cc3172bc9ba0c97a326a5eca80bc18Mark Andrews *) mod_negotiation: Correctly report 404 instead of 403 for missing files.
164e2a6f83cc3172bc9ba0c97a326a5eca80bc18Mark Andrews [Paul Querna]
e90994e3f358bdc6fe03005da08567c807a14c1dMark Andrews *) new hook (request_status) that gets ran in proxy_handler just before
e90994e3f358bdc6fe03005da08567c807a14c1dMark Andrews the final return. This gives modules an opportunity to do something
7087b3dc9298e85909df7a10f83bbd0588310f0cMark Andrews based on the proxy status. (minor MMN bump)
4844ed026a9b5a91044e76399cee80a6514cbf0dMark Andrews [Brian Akins <bakins turner.com>, Ian Holsman]
db2649bad98fc08054feb1a1ed234d8b9b011ea8Mark Andrews *) Add additional SSLSessionCache option, 'nonenotnull', which is
ad5bc22a819190839bdcc4d102d023782dc23660Mark Andrews similar to 'none' (disabling any external shared cache) but forces
ad5bc22a819190839bdcc4d102d023782dc23660Mark Andrews OpenSSL to provide a non-null session ID. [Jim Jagielski]
7502c6600645f120434d84d0ce3df7c3585cfe43Mark Andrews *) Add httxt2dbm to support/ for creating RewriteMap DBM Files.
82572925f8942b599667bf47f22403f5dfd79ab9Mark Andrews [Paul Querna]
b326d7e3a3a50eb65dd06db007d2fddc62606bbfMark Andrews *) Add SSL_COMPRESS_METHOD variable (included in +StdEnvVars) to note
c0a1ebb1adecc5da1f1ad6f9b06a2b4356d2b135Mark Andrews the negotiated compression. [Georg v. Zezschwitz <gvz 2scale.de>]
508f61f8d699c46f962b682f388e54b446a7194dMark Andrews *) Fixed complaints about unpackaged files within the RPM build
4834c6a7f0054b8f4a8a267d60ef78204521e39eMark Andrews after changes to the config files. [Graham Leggett]
4c47c184b98a5ec1b303281959c1f3b0db85d733Mark Andrews *) Fix shutdown for the Worker MPM when an Accept Filter is used. Instead of
48f929d315bafeeffe0a37082ab4c9661a928c39Mark Andrews just closing the socket, a HTTP request is made, to make sure the child is
48f929d315bafeeffe0a37082ab4c9661a928c39Mark Andrews always awakened. [Paul Querna]
93f429295a682f44940c8f4e2b05773c50da4e7dMark AndrewsChanges with Apache 2.1.6
c04f4437ff8b2aba326e5099eae0cacb7de6f74bMark Andrews *) Fix htdbm password validation for records which included comments.
494576ce20cfd98d74955698cf8f7b37dce2f740Mark Andrews [Eric Covener <covener gmail.com>]
494576ce20cfd98d74955698cf8f7b37dce2f740Mark Andrews *) mod_cgid: Fix buffer overflow processing ScriptSock directive.
a36db48f57a59d82af0cf8cfecbdb7620aa3cc47Mark Andrews [Steve Kemp <steve steve.org.uk>]
a36db48f57a59d82af0cf8cfecbdb7620aa3cc47Mark AndrewsChanges with Apache 2.1.5
531f6c355bde4b280d1dea749dd1bcdf6b2f8701Mark Andrews *) mod_ssl: Setting the Protocol to 'https' can replace the use of the
531f6c355bde4b280d1dea749dd1bcdf6b2f8701Mark Andrews 'SSLEngine on' command. [Paul Querna]
3ea6d4dc33482a752553c59ed94bcecd23d254b0Mark Andrews *) core: Refactor the mapping of Accept Filters to Sockets. Add the
6e1141e6e83b3907b8b187d97932f30fa82470efMark Andrews AcceptFilter and Protocol directives to aid in mapping filter types.
6e1141e6e83b3907b8b187d97932f30fa82470efMark Andrews Extend the Listen directive to optionally take a protocol name.
6e1141e6e83b3907b8b187d97932f30fa82470efMark Andrews [Paul Querna]
e954ec198e535f8a7e17d72241233f825b0df6a6Mark Andrews *) mod_disk_cache: Support storing multiple variations of one URL. PR 35211.
e954ec198e535f8a7e17d72241233f825b0df6a6Mark Andrews [Paul Querna]
aceae69c7f3e76e8842de178851928619c65b61cMark Andrews *) mod_disk_cache: Atomically create the header data file. [Paul Querna]
aceae69c7f3e76e8842de178851928619c65b61cMark Andrews *) mod_cache: Fix 'Vary: *' behavior to be RFC compliant. PR 16125.
aceae69c7f3e76e8842de178851928619c65b61cMark Andrews [Paul Querna]
113598f67787f0ed0dcfe23b26d1e5d93256c0acMark Andrews *) mod_cache: Rename 'generate_name' to 'ap_cache_generate_name'.
113598f67787f0ed0dcfe23b26d1e5d93256c0acMark Andrews [Paul Querna]
dba1bc96f6f4fbbb48ab7b041964d44242731b17Mark Andrews *) mod_mime_magic: Handle CRLF-format magic files so that it works with
b68fe6c0fbfee1dc0659661993de5c6727b66c76Mark Andrews the default installation on Windows. [Jeff Trawick]
136e739d0d7267a8ce72468233fa795359db62faMark Andrews *) core: Allow multiple modules to register interest in a single
7c8662961e2876e22e34c96d41dad0cd70e3ce4cMark Andrews configuration command. [Paul Querna]
beb92a43a7451981fad54c98c809d50c1b16c1e9Mark Andrews *) authn_provider_alias: Adds the configuration block tag
beb92a43a7451981fad54c98c809d50c1b16c1e9Mark Andrews <AuthnProviderAlias baseProvider Alias>
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews Authentication directives contained within this block can be
85bba08193debe026883d2d6bebbb0f7a01d7ba7Mark Andrews referenced as a new authProvider using the AuthBasicProvider or
85bba08193debe026883d2d6bebbb0f7a01d7ba7Mark Andrews AuthDigestProvider directive. These directives will be merged in to
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews the per_dir configuration just before the base provider is called.
5173d52b3eb9715259a2890614f869c6baeb18e1Mark Andrews [Brad Nicholes]
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews *) ap_getword_conf: Fix backslashes at the end of configuration directives.
82ecc9cd96239649dfeb0a16e31c3b978d0d266aMark Andrews PR 34834. [Timo Viipuri <viipuri dlc.fi>]
a10ae596379471b0dc76ebd8025d91bf2b90bafcMark Andrews *) mod_dbd: New additions: mod_dbd.c, mod_dbd.h, mod_dbd.xml
a10ae596379471b0dc76ebd8025d91bf2b90bafcMark Andrews Provide module hooks for apr_dbd; optimise for httpd
09ba9eacebdffc689da9851ce3bd932aedd1deddMark Andrews threaded and non-threaded arch [Nick Kew]
d5f13fecca944fc7229dac3215581cebec3ac314Mark Andrews *) ab: SSL support rewritten, improved, and enabled if SSL is enabled
c202b9f4dd7438252d77a4dd8936b7a051431a0bMark Andrews during the build; -f and -Z arguments added to specify SSL protocol
d844741f5516bce45f8897435342731edb2307cbMark Andrews options. [Masaoki Kobayashi <masaoki techfirm.co.jp>]
53e8e0e27a3db745548a7989639b91d16f841c1fMark Andrews *) mod_info: Show the Quick Handler [Paul Querna]
d0c827c9c6a21a0708d97314406ff34d79bed5d8Mark Andrews *) mod_ldap: Add the directive LDAPVerifyServerCert to specify
6f691d4893bb29cd6658b75860d93797f091da0dMark Andrews whether to force verification of the server certificate when
6f691d4893bb29cd6658b75860d93797f091da0dMark Andrews establishing an SSL connection to the LDAP server.
6f691d4893bb29cd6658b75860d93797f091da0dMark Andrews [Brad Nicholes]
3d75a3aef3c26c1957f393e4626177484f53a9d4Mark Andrews *) mod_proxy: Run mod_rewrite before mod_proxy in the translate_name
3d75a3aef3c26c1957f393e4626177484f53a9d4Mark Andrews hook. [Paul Querna]
4e259c5a2321e994708fb1fe04cd4da30aa3b612Mark Andrews *) Add AP_INIT_TAKE_ARGV for configuration commands. (minor MMN bump)
4e259c5a2321e994708fb1fe04cd4da30aa3b612Mark Andrews [Paul Querna]
fcdef14f4a82138fe835a5c3a20d5667e6f4a26cMark Andrews *) ap_get_local_host() rewritten for APR. [Jim Jagielski]
e94754428d472bdde2cba0efdd549bac2e87b98bMark Andrews *) Add the ap_vhost_iterate_given_conn function to expose the information
e94754428d472bdde2cba0efdd549bac2e87b98bMark Andrews used in Name Based Virtual Hosting. (minor MMN bump)
23f2338819fd1a38a828b417eb05be95207e76e2Mark Andrews [Paul Querna]
a53259c4cc558f86dd008eccc60cc89b6734a03cMark Andrews *) Remove the never working ap_method_list_do and ap_method_list_vdo.
a8be540f55786eb9db43ae52bcc891529602c850Mark Andrews [Paul Querna]
a8be540f55786eb9db43ae52bcc891529602c850Mark Andrews *) Added makefile and doc for building mod_ssl on the NetWare
4c8df3b2e8858e97debfe3fb771fe03f22b04d1eMark Andrews platform. [Guenter Knauf, Brad Nicholes]
6c52944ef2281095d1c317a45ea013b8f3cfa135Mark Andrews *) mod_deflate: Merge the Vary header, isntead of Setting it. Fixes
72379d863a3bb135e7da36e344b731a59b8c3e33Mark Andrews applications that send the Vary Header themselves, and also apply
77fad835c56b118faf77a69af618d0bca7a16aacMark Andrews mod_deflate as an output filter. [Paul Querna]
e021f388dfc2ac024a103def34818af73e7e869fMark Andrews *) Change the default (when not present in the config file) setting
dd95acdbce0e2a2775391709cdfca0a9eda7e8f7Mark Andrews for UseCanonicalName to Off.
dd95acdbce0e2a2775391709cdfca0a9eda7e8f7Mark Andrews [Joshua Slive]
71e7ac828e9f4f2b124455b00c3d11560aa5d4c1Mark Andrews *) mod_userdir: The module no longer does any remapping unless the
71e7ac828e9f4f2b124455b00c3d11560aa5d4c1Mark Andrews UserDir directive is present in the config file.
1e6d80a391137b26e7250e72f6b28eb92c2b9952Mark Andrews [Joshua Slive]
892c9a8817a454fbac32b099eb55af453b19ce86Mark Andrews *) Massively simplify the distributed httpd.conf by removing
af4b677e0de9c4ce67a5187039681a58f73b86eaMark Andrews many features and many directives that are at their default
3aca8e5bf3740bbcc3bb13dde242d7cc369abb27Mark Andrews setting. Add a selection of example config excerpts for adding
f34970d390482ceea61bd4d5bcd6ead7828157daMark Andrews extra features in the conf/extra/ directory. Install the
4d86cda3d7eb31578c9088c51a26643d43799533Mark Andrews distributed config and the extra config examples in the
cbfce73e8e020c1d08c7be7b48a849d8333eb9bfMark Andrews conf/original/ directory during make install.
84a5b69f0029952e33c96695f0a7d26c2bb8f7ccMark Andrews [Joshua Slive, Justin Erenkrantz]
e9e869569a92c4b1d5339d3bfb22232e5b401db1Mark Andrews *) NetWare: Reposition mod_asis, mod_actions, mod_cgi, mod_imagemap,
73fb13fe97cf2f1d93d5e2ea56583fdb2f40b6f3Mark Andrews mod_userdir and mod_autoindex as shared modules rather than
73fb13fe97cf2f1d93d5e2ea56583fdb2f40b6f3Mark Andrews built-in modules within the NetWare build.
6f1ad0fc645250c240f21a9201e8cdb0f263c218Mark Andrews [Brad Nicholes]
e3d982f4a8e8a974231042ff4303ed8e82dfbdf9Mark Andrews *) Rename mod_imap to mod_imagemap.
e3d982f4a8e8a974231042ff4303ed8e82dfbdf9Mark Andrews [Paul Querna]
e743a2b3b729df76956e903ac6a3dc3d6eea6df6Mark Andrews *) util_ldap: Eliminate the load ordering of mod_ldap and mod_authnz_ldap
e743a2b3b729df76956e903ac6a3dc3d6eea6df6Mark Andrews by changing the mod_ldap exported functions to optional functions.
e743a2b3b729df76956e903ac6a3dc3d6eea6df6Mark Andrews [Brad Nicholes]
a79348a6db5eb8a5ea69c3989727418ad5a8f224Mark AndrewsChanges with Apache 2.1.4
a79348a6db5eb8a5ea69c3989727418ad5a8f224Mark Andrews *) Don't let a subrequest inherit headers describing the original request's
fed3d5c2fc3fa8e1547e8b5c28c01f1095e17e5fMark Andrews body. [Greg Ames]
2651dcdf758ed1db3379d7004067fb46d308ed1cMark Andrews *) Fix Windows CompContext buff size miscalculation
2651dcdf758ed1db3379d7004067fb46d308ed1cMark Andrews [Allan Edwards]
21094b43a2dc4e1f569a9ed894f5369470cd1a7fMark Andrews *) Add ReceiveBufferSize directive to control the TCP receive buffer.
21094b43a2dc4e1f569a9ed894f5369470cd1a7fMark Andrews [Eric Covener <covener gmail.com>]
81e6a5849d61c2e710d628cf9a7b7282eaa88c46Mark Andrews *) mod_proxy: Add proxy-sendextracrlf option to send an extra CRLF at the
81e6a5849d61c2e710d628cf9a7b7282eaa88c46Mark Andrews end of the request body to work with really old HTTP servers.
4181218570e915959dd203c18f8cf4a03dca5d68Mark Andrews [Justin Erenkrantz]
4181218570e915959dd203c18f8cf4a03dca5d68Mark Andrews *) util_ldap: Keep track of the number of attributes retrieved from
cd0a7c71c0edd9540a7e917a2389a3ad0accc835Mark Andrews LDAP so that all the values can be properly cached even if the
ad98a8699371c9c449982fbbd8ceda91ad745f2aMark Andrews value is NULL. PR 33901 [Brad Nicholes]
c1807114ce574896694e3f449c73b098fe91730fMark Andrews *) mod_cache: Fix error where incoming Cache-Control would be ignored.
c1807114ce574896694e3f449c73b098fe91730fMark Andrews [Justin Erenkrantz]
0066165079c7d85033f4b623153e404df31b9c75Mark Andrews *) mod_cache: Correctly handle originally conditional requests.
276f1d9a380affd06e5fd9a29c30d0ebd433ed36Mark Andrews [Sander Striker]
276f1d9a380affd06e5fd9a29c30d0ebd433ed36Mark Andrews *) mod_disk_cache: Correctly update cached headers on revalidated responses.
055597532db52233e80f617b8b015e8caadcb577Mark Andrews [Sander Striker, Justin Erenkrantz]
61a4d5e7d86f3abcd63aa9254900a0cee3444215Mark Andrews *) worker MPM/mod_status: Support per-worker tracking of pid and
61a4d5e7d86f3abcd63aa9254900a0cee3444215Mark Andrews generation in the scoreboard so that mod_status can accurately
61a4d5e7d86f3abcd63aa9254900a0cee3444215Mark Andrews represent workers in processes which are gracefully terminating.
055597532db52233e80f617b8b015e8caadcb577Mark Andrews (major MMN bump)
055597532db52233e80f617b8b015e8caadcb577Mark Andrews [Jeff Trawick]
055597532db52233e80f617b8b015e8caadcb577Mark Andrews *) Correctly export all mod_dav public functions.
055597532db52233e80f617b8b015e8caadcb577Mark Andrews [Branko Čibej <brane xbc.nu>]
6cdae8730d5a287c30987516c6f99962d4e8e6beMark AndrewsChanges with Apache 2.1.3
40e7c805a8f38ad9b20dd6c688496fc09fc971c2Mark Andrews *) mod_ssl: Add ssl_ext_lookup optional function for accessing
40e7c805a8f38ad9b20dd6c688496fc09fc971c2Mark Andrews certificate extensions. [David Reid, Joe Orton]
40e7c805a8f38ad9b20dd6c688496fc09fc971c2Mark Andrews *) Add support for use of an external PCRE library; pass the
40e7c805a8f38ad9b20dd6c688496fc09fc971c2Mark Andrews --with-pcre flag to configure. PR 27550. [Joe Orton,
40e7c805a8f38ad9b20dd6c688496fc09fc971c2Mark Andrews Andres Salomon <dilinger voxel.net>]
073bd4c4bcc2f2597521578dc6ae0f49a065626cMark Andrews *) Renamed regex interfaces to be namespace-safe, and moved from
073bd4c4bcc2f2597521578dc6ae0f49a065626cMark Andrews pcreposix.h header to ap_regex.h: regex_t->ap_regex_t,
af5273ceab514c55ddcd7ebaed5d598150b6b8faMark Andrews regmatch_t->ap_regmatch_t; REG_*->AP_REG_*; functions
073bd4c4bcc2f2597521578dc6ae0f49a065626cMark Andrews reg*->ap_reg*. PR 27550. [Andres Salomon <dilinger voxel.net>,
3c20ae76389dd7bd2fbbb5145f51fe7f72f97f14Mark Andrews *) Only recompile buildmark.c when we have to relink httpd.
3c20ae76389dd7bd2fbbb5145f51fe7f72f97f14Mark Andrews [Justin Erenkrantz]
2d2e0fff8e168012bc34a40ee24476eddab901ecMark Andrews *) mod_cache: Fix up handling of revalidated responses.
2d2e0fff8e168012bc34a40ee24476eddab901ecMark Andrews [Justin Erenkrantz]
314cac23654229f5df93af0c41231fd3c2187621Mark Andrews *) mod_disk_cache: Properly load cached ETag from on-disk structures.
314cac23654229f5df93af0c41231fd3c2187621Mark Andrews [Justin Erenkrantz]
c42ab597c433e2410473b5daef8a70f12263cfc1Mark Andrews *) mod_authnz_ldap: Added an optional second parameter to AuthLDAPURL
c42ab597c433e2410473b5daef8a70f12263cfc1Mark Andrews to allow it to override the connection type set in mod_ldap. This
2c329da87c5c886e7f4468c69a9e6323121068cbMark Andrews parameter can be set to NONE, SSL or TLS | STARTTLS.
2c329da87c5c886e7f4468c69a9e6323121068cbMark Andrews [Brad Nicholes]
31affb2ca39c483670ba71042ce4c984ac257232Mark Andrews *) Fix --with-apr=/usr and/or --with-apr-util=/usr. PR 29740.
31affb2ca39c483670ba71042ce4c984ac257232Mark Andrews [Max Bowsher <maxb ukf.net>]
43fe2897fc80bbec2115310ca79d432a252f3ea4Mark Andrews *) mod_proxy: Fix ProxyRemoteMatch directive. PR 33170.
43fe2897fc80bbec2115310ca79d432a252f3ea4Mark Andrews [Rici Lake <rici ricilake.net>]
43fe2897fc80bbec2115310ca79d432a252f3ea4Mark Andrews *) mod_proxy: Fix ap_proxy_canonenc API.
43fe2897fc80bbec2115310ca79d432a252f3ea4Mark Andrews PR 32459. [Jim Jagielski]
0553f5554f2ecfa137565b83378f566edc8fe6abMark Andrews *) mod_cache: Add CacheStorePrivate and CacheStoreNoStore directive.
50a3801fa7845d1d345af76a379434f54fd6a84bMark Andrews [Justin Erenkrantz]
50a3801fa7845d1d345af76a379434f54fd6a84bMark Andrews *) Add --enable-pie flag to configure, to build httpd as a Position
0553f5554f2ecfa137565b83378f566edc8fe6abMark Andrews Independent Executable where supported (GCC/binutils).
fb827ed6df9a473770fb69a75a455b4ad0d14f52Mark Andrews *) proxy_balancer: Add in load-balancing via weighted traffic
ca155b13211202a6195b5a0f085aff06075c4300Mark Andrews byte count. [Jim Jagielski]
31a71adf14d106260127079f6ea26bea600163e9Mark Andrews *) mod_disk_cache: Cache r->err_headers_out headers. This allows CGI
4b030f887e5e51c00dac499682d0b5b870ece45bMark Andrews scripts to be properly cached. [Justin Erenkrantz, Sander Striker]
110fbe3a1315b38f1491546d82937a01c40f5fdbMark Andrews *) mod_ldap: Updated to use the new apr-util v1.1 apr_ldap_*_option()
561863ed947f18c8bfcaa631ad83a6bee3b7200bMark Andrews API for the setting of server and client SSL certificates. Replaced
3b9a0696f99c40222e50ddae4d0dd9611737c1daMark Andrews LDAPTrustedCA directive with LDAPTrustedGlobalCert and
3b9a0696f99c40222e50ddae4d0dd9611737c1daMark Andrews LDAPTrustedClientCert directives to correctly support global certs
12e8e73d76f78649cb61ba161eb51faf851ddb4aMark Andrews (CA certs / Netware client certs) and per connection client certs
12e8e73d76f78649cb61ba161eb51faf851ddb4aMark Andrews as supported by Netware, OpenLDAP and Netscape/Mozilla.
7a1cba6262f099aa5ecf9ed4db9c0345489653ccMark Andrews [Graham Leggett]
12e8e73d76f78649cb61ba161eb51faf851ddb4aMark Andrews *) mod_cache: Remove unimplemented CacheForceCompletion directive.
bce2d35b4879d7878e339a9c60db9364508e38fdMark Andrews [Justin Erenkrantz]
51f99a878d7449a4280b2a8db4c84acb3735f259Mark Andrews *) support/check_forensic: Fix temp file usage
bff602d4acc7e3facc28b8931538b77d53681f15Mark Andrews [Javier Fernandez-Sanguino Pen~a <jfs computer.org>]
51f99a878d7449a4280b2a8db4c84acb3735f259Mark Andrews *) mod_ssl: Add SSLCADNRequestFile and SSLCADNRequestPath directives
bff602d4acc7e3facc28b8931538b77d53681f15Mark Andrews which can be used to configure a specific list of CA names to send
51f99a878d7449a4280b2a8db4c84acb3735f259Mark Andrews in a client certificate request. PR 32848.
bff602d4acc7e3facc28b8931538b77d53681f15Mark Andrews *) --with-module can now take more than one module to be statically
86c3e4bb9663719cfa16e493a145c4ff0d6f745fMark Andrews linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,...
86c3e4bb9663719cfa16e493a145c4ff0d6f745fMark Andrews If the <modtype>-subdirectory doesn't exist it will be created and
86c3e4bb9663719cfa16e493a145c4ff0d6f745fMark Andrews populated with a standard Makefile.in. [Erik Abele]
4ab6d6464f5490a30acf1e292c7f3f26dc99d6dbMark Andrews *) Remove some compiler warnings within the LDAP modules [Graham Leggett]
722ebc3a47ffd2ac8f0b1a231dbd0cfd485ea2ffMark Andrews *) Add a build script to create a solaris package. [Graham Leggett]
41be71bae48846d9525be6f71e19944e34748e26Mark Andrews *) ap_http_scheme() replaced with ap_http_method() - this function
3f79a8b6f1b50f8e1bc2f274bcfe91d6af74f161Mark Andrews returns the scheme (http v.s. https).
3f79a8b6f1b50f8e1bc2f274bcfe91d6af74f161Mark Andrews [William Rowe]
3f79a8b6f1b50f8e1bc2f274bcfe91d6af74f161Mark Andrews *) mod_proxy: Fix a request corruption problem and a buffering problem
c93003b0a6c063c15495f66300a1822481728fcaMark Andrews which sometimes prevented proxy-sendchunks from working.
c93003b0a6c063c15495f66300a1822481728fcaMark Andrews [Jeff Trawick]
4f32995bf6af48ab410b6d14b160348f5ffe0556Mark Andrews *) Fix the RPM spec file so that an RPM build now works. An RPM
a4743d3d26c4dde69b80fd69bca83e0c28063425Mark Andrews build now requires system installations of APR and APR-util.
a4743d3d26c4dde69b80fd69bca83e0c28063425Mark Andrews [Graham Leggett]
ac86cff0d7ff2108cd7ace66697e2de104735496Mark Andrews *) Significantly simplify the load balancer scheduling algorithm
2a71a21346ce6a098b7daf98358d5bdced8e6eb6Mark Andrews for the proxy BalancerMember weighting. loadfactors (lbfactors)
2a71a21346ce6a098b7daf98358d5bdced8e6eb6Mark Andrews are now normalized with respect to each other. [Jim Jagielski]
23ac30603a7639bea1d331537634b079b046b122Mark Andrews *) mod_dumpio: Added to the available module suite; it is an
a90cf89180ae8d9dfd281288cdc75940e46bfdd0Mark Andrews I/O logging/dumping module. Placed in the (new) debug module
d6fe7ba94969ee51a3f4298a735fbc6e11691ad8Mark Andrews subdirectory. mod_bucketeer moved to that directory as well.
d6fe7ba94969ee51a3f4298a735fbc6e11691ad8Mark Andrews [Jim Jagielski]
d6fe7ba94969ee51a3f4298a735fbc6e11691ad8Mark Andrews *) core: Add support for APR_TCP_DEFER_ACCEPT to defer accepting
fa901545edc8bb62969121e14199d533a40d0b61Tatuya JINMEI 神明達哉 of a connection until data is available.
9cc53f2a0819301c2de7ab93197eee11e8a365e7Mark Andrews [Paul Querna]
68ae0f83c00d9e06693f5b138a0ced5a6ceccc5cMark AndrewsChanges with Apache 2.1.2
326449ec24b069f5ef59c8e282ae22a50aa27049Mark Andrews *) mod_proxy: Respect errors reported by pre_connection hooks.
207f0a15bb486d8dc27cf5ff963fac6068ee2972Mark Andrews [Jeff Trawick]
16a68807e13caea3183a41a5292f1b3f48b81a26Mark Andrews *) core: Error out on sections that are missing an argument instead of
16a68807e13caea3183a41a5292f1b3f48b81a26Mark Andrews silently consuming the section. PR 25460.
16a68807e13caea3183a41a5292f1b3f48b81a26Mark Andrews [Geoffrey Young, Paul Querna]
ed18f744963c431ff76489aa01ec6fc9fac137fbMark Andrews *) mod_cache/mod_mem_cache/mod_disk_cache: Move out of experimental.
825fccf631aa71cfbb8bfcf4e2009ca21de28f36Mark Andrews *) Upgraded PCRE to version 5.0. [Brian Pane]
5639d60b40db2051eb7e737d86635c621ffbfa12Mark Andrews *) mod_cgid: Catch configuration problem where two web server instances
d0deea590e6e175c77f9b5f972fea3fc7a63577aMark Andrews share same ServerRoot but admin forgot to use ScriptSock.
689023771c563d8660e45d439a207e06e96de28fMark Andrews [Jeff Trawick]
fb2c34419d268d36acb222e08e6f789b45a81306Mark Andrews *) mod_cgi: Ensure that all stderr is logged for a script which returns
fb2c34419d268d36acb222e08e6f789b45a81306Mark Andrews a Location header to generate a non-local redirect. PR 20111.
30b41c205cec69f7bde2d9afb16557b6c1e7a531Mark Andrews *) Added the Event MPM to more efficiently handle clients during a
3a1d86e8f51c953c2407e112e15b47328b6ee4feMark Andrews Keep Alive request.
09b24007634d53673fa4a1468416d4e9ee232b7aMark Andrews [Paul Querna, Greg Ames]
455bb19b5dbf5dce6e625349acf5018fc4823adbTatuya JINMEI 神明達哉Changes with Apache 2.1.1
455bb19b5dbf5dce6e625349acf5018fc4823adbTatuya JINMEI 神明達哉 *) mod_proxy_http: Stream content better - always flush buffered data to
455bb19b5dbf5dce6e625349acf5018fc4823adbTatuya JINMEI 神明達哉 the client before blocking waiting for new data. PR 19954.
5e4346a4f9f9ed474d20a4ff05f1bbcb47f9342dMark Andrews *) mod_ssl: Add support for command-line option "-t -DDUMP_CERTS" which
5e4346a4f9f9ed474d20a4ff05f1bbcb47f9342dMark Andrews will dump the filenames of all configured SSL certificates to stdout.
e37dff26c6bb6e2ffbba7b089ca3599d5e3e04fbMark Andrews *) mod_disk_cache: Remove a bunch of non-implemented garbage collection
b712879fcb6d584bb16b3f39ec1fb6ee176e4a03Mark Andrews and cache size directives that are now available through htcacheclean.
b712879fcb6d584bb16b3f39ec1fb6ee176e4a03Mark Andrews [Justin Erenkrantz]
f697150aefb5d64e5bed4111aa2596a268ee8848Mark Andrews *) Add htcacheclean to support/ for assistance with mod_disk_cache.
f697150aefb5d64e5bed4111aa2596a268ee8848Mark Andrews [Andreas Steinmetz]
9baab4b1a8a5a54c04e47742c7b48311d5575a87Mark Andrews *) mod_authnz_ldap: Added the directive "Requires ldap-filter" that
c5826852e6c789f59b301f8197e65a1dd4e09a44Mark Andrews allows the module to authorize a user based on a complex LDAP
c5826852e6c789f59b301f8197e65a1dd4e09a44Mark Andrews search filter. [Brad Nicholes]
c0d2891f6e08fcf5379dfb9a1bf8fbbb63f1952aMark Andrews *) mod_usertrack: Run the fixups hook before other modules.
c426fddf168a3cdfc1c4c162365d440c89148ae4Mark Andrews PR 29755. [Paul Querna]
cb75f7ce19e11e3dfedee5a50a331bf53cd2c36bMark Andrews *) Allow mod_authnz_ldap authorization functionality to be used
1a6204b6f26677cad76ea5644dc0624aac49b451Mark Andrews without requiring the user to also be authenticated through
1a6204b6f26677cad76ea5644dc0624aac49b451Mark Andrews mod_authnz_ldap. This allows other authentication modules to
1a6204b6f26677cad76ea5644dc0624aac49b451Mark Andrews take advantage of LDAP authorization only [PR 28253]
9f7d51ee3290e2a064d71016a6bd555b47134a7cMark Andrews [Jari Ahonen jah progress.com, Brad Nicholes]
d8c2b1787119de43dd6b7e3927ff193ed5df682fMark Andrews *) Log the client IP address when an error occurs disabling nagle on a
d8c2b1787119de43dd6b7e3927ff193ed5df682fMark Andrews connection, but log at a severity of debug since this error
8bcfe7952124a7aab5ae9fbb9420417b5be12721Mark Andrews generally means that the connection was dropped before data was
8bcfe7952124a7aab5ae9fbb9420417b5be12721Mark Andrews sent. Log the client IP address when reporting errors in the core
8bcfe7952124a7aab5ae9fbb9420417b5be12721Mark Andrews output filter. [Jeff Trawick]
fbdadf789f3057a5c90ebc026dbf2d174022bd28Rob Austein *) core: Add a warning message if the request line read fails.
1672cff96d0b02badab6f94524e10285dde851fcMark Andrews [Paul Querna]
e9f33cdca0565d049941117d30e4c37ab3c5e990Mark Andrews *) mod_rewrite: Removed the MaxRedirects option in favor of the
cf6b36171770dc14b6572003b4e8aeaa22536dd4Mark Andrews core LimitInternalRecursion directive. [André Malo]
9105a6a730bfb8472c48230629c5a0aebb88c422Mark Andrews *) mod_info: Added listing of the Request Hooks and added more build
9105a6a730bfb8472c48230629c5a0aebb88c422Mark Andrews information like 'httpd -V' contains. Changed output to XHTML.
c5a84548b24ffac37d0154d8f2f4fea36a3aeb23Mark Andrews [Paul Querna]
9aa7706900e2451fcd6e44ffe4a45b042ec34cf3Mark Andrews *) mod_info: Rewrote config tree walk using a recursive function.
7b78f6665635ed85118352c97ff5a25f5bb242f7Mark Andrews Added ?config option. Added printout of config filename and line numbers.
c4f9e613e12f03795bee18cf2ca8e6a9d39d6468Mark Andrews [Rici Lake <rici ricilake.net>, Paul Querna]
e30e7913c9f0978ae60b4e4572034a4b9ffb46deMark Andrews *) mod_proxy: Fix type error that prevents proxy-sendchunks from working.
e30e7913c9f0978ae60b4e4572034a4b9ffb46deMark Andrews [Justin Erenkrantz]
65356eb978747c5e68d4c6b3909642cebb8479f8Mark Andrews *) mod_proxy: Fix data corruption by properly setting aside buckets.
e8346a529a2777d1867e0bbb3440279cbddbd808Mark Andrews [Justin Erenkrantz]
7de69feda2f66658ce66a8700d64ffb88d47bb6aMark Andrews *) mod_proxy: If a request has a blank body and has a 0 Content-Length
7de69feda2f66658ce66a8700d64ffb88d47bb6aMark Andrews headers, pass that to the proxy. [Justin Erenkrantz]
49210da3fb6a9268725b2a7db864ade531e5d403Mark Andrews *) Recognize QSA flag in mod_rewrite again.
49210da3fb6a9268725b2a7db864ade531e5d403Mark Andrews [Jan Kratochvil <rcpt-dev.AT.httpd.apache.org jankratochvil.net>]
49210da3fb6a9268725b2a7db864ade531e5d403Mark Andrews *) Restructured mod_auth_ldap to fit the new authentication model.
49210da3fb6a9268725b2a7db864ade531e5d403Mark Andrews The module is now called authnz_ldap and has been moved out of
bb3e43000807197e776407fd8d524a87dcc17a10Mark Andrews the modules/experimental area and into modules/aaa with the other
5b4a9ac6bfba91acd3ba976e75b14ee065d6f95eMark Andrews auth modules. Both the authn_ldap provider and the authz_ldap
5b4a9ac6bfba91acd3ba976e75b14ee065d6f95eMark Andrews handler are contained within the authnz_ldap module. The
5b4a9ac6bfba91acd3ba976e75b14ee065d6f95eMark Andrews authz_ldap handler introduces 3 new "requires" values for handling
b0196673ab41b4f17e1c45fba160f3ea2623a06fMark Andrews authorization. These handlers are ldap-user, ldap-group and
b0196673ab41b4f17e1c45fba160f3ea2623a06fMark Andrews ldap-dn. [Brad Nicholes]
40fe5e7ac29b695438528c190140fec27d8d1018Mark Andrews *) Fix some compiler warnings in proxy
40fe5e7ac29b695438528c190140fec27d8d1018Mark Andrews [Geoffrey Young <geoff@modperlcookbook.org>]
d562cb04df022606af43c7bee3111e4d17cbe4b2Mark Andrews *) mod_ssl: Add SSL_CLIENT_V_REMAIN variable, representing the
1d8abe0521c8e084dfcdd821173c10e0b416aeb3Mark Andrews number of days until the client cert expires. [Joe Orton]
1d8abe0521c8e084dfcdd821173c10e0b416aeb3Mark Andrews *) Add test_config hook, run only if httpd is invoked using -t.
18afcb70285f2204b1586c351dd4af0a01d33f75Mark Andrews *) Improve error handling for corrupted pid files. [Jeff Trawick]
18afcb70285f2204b1586c351dd4af0a01d33f75Mark Andrews *) mod_proxy.c and proxy_util.c: Enable compiling on 2.0-HEAD
18afcb70285f2204b1586c351dd4af0a01d33f75Mark Andrews (for backwards compatibility):
18afcb70285f2204b1586c351dd4af0a01d33f75Mark Andrews Avoids mod_ssl.h (not included in 2.0-HEAD) and
32c7aa3dd18d57979990574ddb008437b59c2428Rob Austein use apr_socket_create_ex for 0.9.x
32c7aa3dd18d57979990574ddb008437b59c2428Rob Austein [Mladen Turk]
358043e40fd0c1fe312e25c28a771aafc3bd7b79Mark Andrews *) Added proxy_ajp.c module for proxy support to ajp:// backends.
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews [Jean Frederic Clere]
bb50eb10edbfa31f53699304d6838716d700b85bMark Andrews *) Fixes the build of proxy on Windows. Since the proxy_module is declared
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews as extern using AP_MODULE_DECLARE_DATA that expands to dllexport, there
7389e8330d62a059b8923fb8ca6f933caeb559d9Mark Andrews is a LNK2001 error when building proxy_http. [Mladen Turk]
a5e055b9d8bc42b0e29d88960ed2a5c531fa5acbRob Austein *) Remove LDAP toolkit specific code from util_ldap and mod_auth_ldap.
a5e055b9d8bc42b0e29d88960ed2a5c531fa5acbRob Austein [Graham Leggett]
a46445468bb39318ad2a4291ace371a8c4ff9ac6Mark Andrews *) Remove deprecated/removed APR_STATUS_IS_SUCCESS(). [Justin Erenkrantz]
e794f1ef072b4453c4af64717429729bcf3a6a69Mark Andrews *) perchild MPM: Fix thread safety problem in the use of longjmp().
5f059eef4360bc6c35a38241deb2561884dd9001Mark Andrews [Tsuyoshi SASAMOTO <nazonazo super.win.ne.jp>]
e180037bc15a98cac0b91ffcf464e9c96918294bMark Andrews *) Add load balancer support to the scoreboard in preparation for
eeac8cfcd3ad738b435ad82fcd5c6387da643f90Mark Andrews load balancing support in mod_proxy. [Mladen Turk]
99ba7fc5ff50823248155f4f2954ece0271b4354Mark Andrews *) mod_nw_ssl: Added the directive NWSSLUpgradeable to mod_nw_ssl to
d1ef96c5fb81b1edbede4228480848b58e48799eMark Andrews allow a non-secure connection to be upgraded to secure connections
cc3aafe737334d444781f8a34ffaf459e075bb9aMark Andrews [Brad Nicholes]
cc3aafe737334d444781f8a34ffaf459e075bb9aMark Andrews *) core: Add Options= syntax to AllowOverride to specify which options
cc3aafe737334d444781f8a34ffaf459e075bb9aMark Andrews may be overridden in .htaccess files. PR 29310.
cc3aafe737334d444781f8a34ffaf459e075bb9aMark Andrews [Tom Alsberg <alsbergt cs.huji.ac.il>, Paul Querna]
cc3aafe737334d444781f8a34ffaf459e075bb9aMark Andrews *) ab: Handle long URLs with an error instead of an buffer overflow.
68fb0934fd5e2f8f95a2f43e26b1208f7cbc4307Mark Andrews PR 28204. [Erik Weide <erik.weidel mplus-technologies.de>, Paul Querna]
68fb0934fd5e2f8f95a2f43e26b1208f7cbc4307Mark Andrews *) mod_so, core: Add new command line options to print all loaded
68fb0934fd5e2f8f95a2f43e26b1208f7cbc4307Mark Andrews modules. '-t -D DUMP_MODULES' and '-M' will show all static
68fb0934fd5e2f8f95a2f43e26b1208f7cbc4307Mark Andrews and shared modules as loaded from the configuration file.
3386e927950e1bacd2ae7bfdc03ee17885bd9993Mark Andrews [Paul Querna]
c80b5ef256d9c289c403bc90e0fbee3699552808Mark Andrews *) mod_autoindex: Add ShowForbidden to IndexOptions to list files
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews that are not shown because the subrequest returned 401 or 403.
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews PR 10575. [Paul Querna]
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews *) mod_headers: implement "Early" processing option in post_read_request
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews to enable Header and RequestHeader directives to be used to set up
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews testcases for pre-fixups request phases [Nick Kew]
23fdb6a5a3d3d0e427682b68eea9553d2d326ad4Mark Andrews *) mod_proxy: multiple bugfixes, principally support cookies in
b8694095f0109e23d9aaa3e84f840829b014c417Mark Andrews ProxyPassReverse, and don't canonicalise URL passed to backend.
e6c95fe56b0491b533f2ca5a3ed8e8e9f74f4fd2Mark Andrews Documentation correspondingly updated. [Nick Kew <nick webthing.com>]
e6c95fe56b0491b533f2ca5a3ed8e8e9f74f4fd2Mark Andrews *) mod_deflate: support gzip flags in inflate_out_filter
e6c95fe56b0491b533f2ca5a3ed8e8e9f74f4fd2Mark Andrews [Nick Kew <nick webthing.com>]
1c52f228e9e2d8784273b7af76794031e480e5e8Mark Andrews *) Drop the ErrorHeader directive which turned out to be a misnomer.
ea0b0c283be744d8b5810927b9981a9afe2f900dMark Andrews Instead there's a new optional flag for the Header directive
c315e5cfead876251ee4ff5600ee67303b2729a4Mark Andrews ('always'), which keeps the former ErrorHeader functionality.
c315e5cfead876251ee4ff5600ee67303b2729a4Mark Andrews [André Malo]
c956fbfbbd536407a2f0ef8f138c27729d31744dMark Andrews *) mod_deflate: Don't deflate responses with zero length
e5477896ce19a38c3b45e93c144e075565b79e9cMark Andrews e.g. proxied 304's [Allan Edwards]
e5477896ce19a38c3b45e93c144e075565b79e9cMark Andrews *) <IfModule> now recognizes the module identifier in addition to the
c52d94fa4b7eaf8b7be9dfda15f9fc2c01041d51Mark Andrews file name. PR 29003. [Edward Rudd <eddie omegaware.com>, André Malo]
f66cd386cf4d0cc65b28cbaeaf540353406393a8Mark Andrews *) mod_ssl: Add "SSLHonorCipherOrder" directive to enable the
e94cf7074d8ac30820a715211ae914387996cca9Mark Andrews OpenSSL 0.9.7 flag which uses the server's cipher order rather
7e2c0c16d6e03058650f536a5b43cb21598ec91fMark Andrews than the client's. PR 28665.
7e2c0c16d6e03058650f536a5b43cb21598ec91fMark Andrews [Jim Schneider <jschneid netilla.com>]
6ecbd11029fa201b5f273f4ef016617dc35206aeMark Andrews *) mod_ssl: Drop support for the CompatEnvVars argument to
6ecbd11029fa201b5f273f4ef016617dc35206aeMark Andrews SSLOptions, which was never actually implemented in 2.0.
8d5b4ce1eb7914205c6433d6575f6d11cd7a9509Mark Andrews *) Fix bug in mod_deflate that unconditionally sent deflate'd output
8d5b4ce1eb7914205c6433d6575f6d11cd7a9509Mark Andrews even when Accept-Encoding is not present. [Justin Erenkrantz]
c0707105f60934d59321c2fccbc254f9e31ff28aMark Andrews *) Pass environment variables through to piped loggers and start
c0707105f60934d59321c2fccbc254f9e31ff28aMark Andrews them via the shell, resolving regressions since 1.3. PR 28815
50e45d74340656422b21a5513f2d7138dfe24b7aMark Andrews [Ken Coar, Jeff Trawick]
be00eb0795d2def3452de0da2adde74e7eda6982Mark Andrews *) External rewrite map responses are no longer limited to 2048
be00eb0795d2def3452de0da2adde74e7eda6982Mark Andrews bytes. [André Malo]
2cd8fa3ef9b168429dcf76603e7b95c58317dd28Mark Andrews *) Proxy server was deleting cookies that Apache had already
2cd8fa3ef9b168429dcf76603e7b95c58317dd28Mark Andrews assigned if the origin server had set any cookies. PR 27023.
5ba04ba7a99371afcd4d988854ee71bffdb20df4Mark Andrews [Jim Jagielski]
5ba04ba7a99371afcd4d988854ee71bffdb20df4Mark Andrews *) Removed old and unmaintained ap_add_named_module API and changed
f6f0bf7d4bb135ba1a421520076a47a61b6870fcMark Andrews the following APIs to return an error instead of hard exiting:
f6f0bf7d4bb135ba1a421520076a47a61b6870fcMark Andrews ap_add_module, ap_add_loaded_module, ap_setup_prelinked_modules,
4e681da26da4fff442b3ae24b0da2de1f240c43cMark Andrews and ap_process_resource_config. [André Malo]
4e681da26da4fff442b3ae24b0da2de1f240c43cMark Andrews *) mod_headers: Allow %% in header values to represent a literal %.
4e681da26da4fff442b3ae24b0da2de1f240c43cMark Andrews [André Malo]
4499c6cd5e376c59e06cd0be61f3620a1336bc5fMark Andrews *) mod_headers: Allow env clauses also for 'echo' and 'unset' actions.
4a6f552617fe422ad90826e48c2a3446e3a2574bMark Andrews [André Malo]
1195e2e1f2853df56d7ec69d2e01a99d44e4d61dMark Andrews *) mod_headers: Allow 'echo' also for ErrorHeaders. [André Malo]
392cd518b3aff35c0396f84884cd51680edd68a1Mark Andrews *) mod_deflate: New option for DEFLATE output file (force-gzip),
392cd518b3aff35c0396f84884cd51680edd68a1Mark Andrews new output filter 'INFLATE' for uncompressing responses.
74def1c9c1880480bb62eb881e8a7ce28f9f7a20Mark Andrews [Nick Kew <Nick at WebThing dot com>, Ian Holsman]
5efa612be0471cc4e133b795db3dd3addf18ba6cMark Andrews *) Added new module mod_version, which provides version dependent
da059d6dd4035c1f4736e7978065c4d51893b136Mark Andrews configuration containers. [André Malo]
78ef0ebab3a4039f8efc8afdb7ee4b936ffc34caMark Andrews *) mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o
78ef0ebab3a4039f8efc8afdb7ee4b936ffc34caMark Andrews format is used. PR 27787. [André Malo]
d9147148dde80db2ce3390ded26333d106d3c10bTatuya JINMEI 神明達哉 *) Allow Digest providers to return AUTH_DENIED to propagate a 401
ec3f1d35170225c74d11c27bb184e250d150b209Tatuya JINMEI 神明達哉 status and terminate the provider chain prior to checking the password.
ec3f1d35170225c74d11c27bb184e250d150b209Tatuya JINMEI 神明達哉 [Geoffrey Young]
71839e2a424a904a60429a380ee7685464022e4bMark Andrews *) mod_cgid: Don't allow Scriptsock to be specified inside VirtualHost;
71839e2a424a904a60429a380ee7685464022e4bMark Andrews Don't place script socket inside default server root instead of
578f588228f5e04ccf648b6ae596f396ad6a22c9Mark Andrews actual server root. PR 27886. [Jeff Trawick]
578f588228f5e04ccf648b6ae596f396ad6a22c9Mark Andrews *) mod_proxy: Fix handling of non-200 success status codes when
e0199985cfe68e8556cf0060ad8f7effbcdc5628Mark Andrews "ProxyErrorOverride On" is configured. PR 20183.
e0199985cfe68e8556cf0060ad8f7effbcdc5628Mark Andrews [Marcus Janson <marcus.janson tre.se>, Joe Orton]
38e8022ace865803bdd609c9763cd7d7ba2818dcMark Andrews *) Threaded MPMs for Unix and Win32: Add support for ThreadStackSize
445acbbea8bd5143749e97a8ff247a808321aa6cMark Andrews directive (previously NetWare-only) to override default thread
8407fbc61d73caa766c0689558525d0a76296c86Mark Andrews stack size for threads which handle client connections. Required
8407fbc61d73caa766c0689558525d0a76296c86Mark Andrews for some third-party modules on platforms with small default
08b40678f36df355db8e7b84fa4e74f726dd2b3eMark Andrews thread stack size. [Jeff Trawick]
08b40678f36df355db8e7b84fa4e74f726dd2b3eMark Andrews *) minor mod_auth_basic and mod_auth_digest sync. mod_auth_basic
b9625d9be5d89015b75cc7c25088a8d1a3bb7655Mark Andrews now populates r->user with the (possibly unauthenticated) user,
cc32d38366fa680fc29f9fb17bd3ebe515835445Mark Andrews and mod_auth_digest returns 500 when a provider returns
cc32d38366fa680fc29f9fb17bd3ebe515835445Mark Andrews AUTH_GENERAL_ERROR.
267a22597fc1c5ffd81532ec1afad36b729f6cb4Tatuya JINMEI 神明達哉 [Geoffrey Young]
cc32d38366fa680fc29f9fb17bd3ebe515835445Mark Andrews *) The whole codebase was relicensed and is now available under
267a22597fc1c5ffd81532ec1afad36b729f6cb4Tatuya JINMEI 神明達哉 the Apache License, Version 2.0 (http://www.apache.org/licenses).
3dc3d557be91d59317b34fc5a9ae79b1925d5878Mark Andrews [Apache Software Foundation]
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews *) Delete some make-generated files in the server directory during
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews "make clean" processing. PR 26552. [Jeff Trawick]
86548554f6180bbe051c8cd8f03c93fc9b6a7825Mark Andrews *) Add core version query function (ap_get_server_revision) and
86548554f6180bbe051c8cd8f03c93fc9b6a7825Mark Andrews accompanying ap_version_t structure (minor MMN bump).
86548554f6180bbe051c8cd8f03c93fc9b6a7825Mark Andrews [André Malo]
5ed76fa7ea83d3ce7a33d365aa3b84410c3b8773Mark Andrews *) mod_rewrite: EOLs sent by external rewritemaps are now consumed
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews as whole. That way, on systems with more than one EOL character
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews rewritemap programs no longer need to switch stdout to binary
ad3b537a241f40bbb3fdc4de252881c42645021bMark Andrews mode. PR 25635. [André Malo]
b21b49a1d43dbc44d2b15674ce03a13562165566Mark Andrews *) mod_rewrite: Introduce the ability to force a content handler via
b21b49a1d43dbc44d2b15674ce03a13562165566Mark Andrews the [handler=...] flag. [André Malo]
de6ceebf98bedee0b1e1e81d078befbd728b801cMark Andrews *) mod_rewrite: Introduce the RewriteCond -x check, which returns
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews true if the pattern is a file with execution permissions.
349f684cf175422918d10e91e7bee747c18ae840Mark Andrews [André Malo]
ed6e3610e3e56aac554dc93cad461a0016e961f9Mark Andrews *) mod_rewrite: Allow proxying and RewriteRules in directory context
1cf54d1966b3de8f6593e9e80eae9a80a1c011adMark Andrews for subrequests. PR 14648, 15114. [André Malo]
c3c72c1033b9d085b1a1fe74a9e3efb6db724ce2Mark Andrews *) mod_rewrite: Allow setting of any valid HTTP response code.
b4fe7caac90b28629d207b40a77862e2535f925cMark Andrews PR 25917. [André Malo]
a0a19510c03e6004fd11ec278745d499751cd081Mark Andrews *) mod_rewrite: Cookie creation now works locale independent.
c2ec022f5784a2ff844f7d062c2022197dc4ad09Mark Andrews [André Malo]
c2ec022f5784a2ff844f7d062c2022197dc4ad09Mark Andrews *) mod_ssl: Add support for distributed session cache using 'distcache'.
46ed893dd0c8096d2bcbf31e6dcf79b2786e7b7fMark Andrews [Geoff Thorpe <geoff geoffthorpe.net>]
1ae75c1024eb0475c2be352b8707772e16332ad0Mark Andrews *) mod_dav: Disallow requests with an unescaped hash character in
1ae75c1024eb0475c2be352b8707772e16332ad0Mark Andrews the Request-URI. PR 21779. [Amit Athavale <amit_athavale lycos.com>]
ed76ec2056f92ae846b260ccfb4f93e3b3f6bdebMark Andrews *) mod_proxy with ProxyErrorOverride On in a reverse-proxy configuration
ed76ec2056f92ae846b260ccfb4f93e3b3f6bdebMark Andrews attaches a body to the 302 response and a wrong Content-Length header.
ed76ec2056f92ae846b260ccfb4f93e3b3f6bdebMark Andrews PR: 22951 [Ermanno Scaglione scaglione ..at.. starnetone.de]
ea17e969771f19485dc7ab2f731d641128a9ee3bMark Andrews *) Bring ErrorHeader concept forward from 1.3, so that response
ea17e969771f19485dc7ab2f731d641128a9ee3bMark Andrews header fields can be set for return even on errors or external
5eb0659963ec2aa5158425b39620ec1b30c83c7bMark Andrews redirects. [Ken Coar]
5eb0659963ec2aa5158425b39620ec1b30c83c7bMark Andrews *) Fix <Limit> and <LimitExcept> parsing to require a closing '>'
7952b2b43e880b18e63613805f71fd3e8624bb44Mark Andrews in the initial container. PR 25414.
6fac7ff1f9ec9c3873d3b55c5079fa79aba1f146Mark Andrews [Geoffrey Young <geoff apache.org>]
e1f638a7141a4c1364e4ca45025241c9e2fecf74Mark Andrews *) Clean up httpd -V output: Instead of displaying the MPM source
4995dba770c1f5f421cf22a2e9e138586a153765Mark Andrews directory, display the MPM name and some MPM properties.
4995dba770c1f5f421cf22a2e9e138586a153765Mark Andrews [Geoffrey Young <geoff apache.org>]
4995dba770c1f5f421cf22a2e9e138586a153765Mark Andrews *) mod_ssl/mod_status: Re-enable support for output of SSL session
b39213ce599dc433c6f99144c97ca3d562f40344Mark Andrews cache information in server-status page. [Joe Orton]
154bd87b5c9d603329dd691b822525c6885f21d4Mark Andrews *) mod_ssl: Remove the shmht session cache, shmcb should be used
8862388bcb44f634cbfc3e69f11ff4cb76590a4bMark Andrews instead. [Joe Orton]
6ec0f98cf6e88aeba1615763fdec253bf391f22eMark Andrews *) mod_logio: Account for some bytes handed to the network layer prior to
80cc19dc262cead5a8af41838ebfae5a6e587605Mark Andrews dropped connections. [Jeff Trawick]
80cc19dc262cead5a8af41838ebfae5a6e587605Mark Andrews *) mod_autoindex: new directive IndexStyleSheet
d4e1933abc4bfa3d42dcc2f093c81816a317dde6Mark Andrews [Tyler Riddle <triddle_1999 yahoo.com>, Paul Querna <chip force-elite.com>]
8d414d155953f89a4eff40f16878438a8c9228f3Mark Andrews *) Fix uninitialized gprof directory name in prefork MPM. PR 24450.
7c82b7ae3f3006e20d00529a15372d6cba133c20Mark Andrews *) Log an error when requests for URIs which fail to map to a valid
8d414d155953f89a4eff40f16878438a8c9228f3Mark Andrews filesystem name are rejected with 403. [Jeff Trawick]
7c82b7ae3f3006e20d00529a15372d6cba133c20Mark Andrews *) Switch to APR 1.0 API.
7d4a465de03b26bf9f5ef131d03253b8f6afc169Mark Andrews *) Major overhaul of mod_include's filter parser. The new parser code
6e3bc2e0f715e2f3ddbfc10811303f39cce37fc6Mark Andrews is expected to be more robust and should catch all of the edge cases
39e5cab80a2abc95ca034ac79ea3f973fc66f5b3Mark Andrews that were not handled by the previous one. This includes a binary
0b9af9eb37f624033652f6cc463262474ee13344Mark Andrews incompatible change of mod_include's external API. [André Malo]
3b1fce680f1dbe9467cd3b0ab3138ea52d5a976fMark Andrews *) mod_rewrite: Allow forced mimetypes [T=...] to get expanded.
3b1fce680f1dbe9467cd3b0ab3138ea52d5a976fMark Andrews PR 14223. [André Malo]
0822cc50657c972c6a5ee29cba9506847c7ea7c2Mark Andrews *) mod_rewrite: Fix LA-U and LA-F lookups in directory context. Previously
0822cc50657c972c6a5ee29cba9506847c7ea7c2Mark Andrews the current rewrite state was just used as lookup path, which lead to
bdb609f5874056f6f1cd212ebf8700132e683fe5Mark Andrews strange and often useless results. Related to PR 8493. [André Malo]
c5cde9d5a70c921da901a23845e740ccc7a8c4e4Mark Andrews *) Change Listen directive to bind to all addresses when a hostname is
bae21f249ead77e442a025b9b18d90e21ebf72ceMark Andrews not specified. [Justin Erenkrantz]
a3a09ca2497e925a9f0ba76f1525c6c60e5d5094Mark Andrews *) Correct failure with Listen directives on machines with IPv6 enabled.
7f5a3cea4e93ad683b13ebef8a6589afd97fb762Mark Andrews [Colm MacCárthaigh <colm stdlib.net>, Justin Erenkrantz]
9c3df90dd3767bcc14c4028fb3d81b26d056e821Mark Andrews *) Fix a link failure in mod_ssl when the OpenSSL libraries contain
9c3df90dd3767bcc14c4028fb3d81b26d056e821Mark Andrews the ENGINE functions but the engine header files are missing.
50105afc551903541608b11851d73278b23579a3Mark Andrews [Cliff Woolley]
1285fa26e632e3b386435b730b47b5ff1a03e553Mark Andrews *) mod_rewrite: RewriteRules in server context using the force
1285fa26e632e3b386435b730b47b5ff1a03e553Mark Andrews type feature [T=...] no longer disable MultiViews. [André Malo]
5a680f4170ba77be1e31cf1fc40ab43856919078Mark Andrews *) mod_rewrite: Allow piped rewrite logs to be relative to ServerRoot.
ad35e0aec9dae18ee31e760beab1602f7eb4ef05Mark Andrews [André Malo]
2047977ce2dfcfe3a0fa2d638c3242841310fad3Mark Andrews *) mod_authz_groupfile: Strip trailing spaces of group names. This
8c5d451ea2898586c00932efeb5123b41afc9650Mark Andrews hopefully saves some hours of searching for typos. PR 12863.
9c8fb5f756d99a4ecba95df9a00757384f3b71b7Mark Andrews [André Malo]
fa7ee558e0536a94bfdb154a7c7ba298535459c4Mark Andrews *) mod_actions: Propagate the handler name to the action script via
d81018ac98b287438248cd0e3a1c230eb40b0b55Mark Andrews the REDIRECT_HANDLER environment variable. [André Malo]
1d7cbe71b99ea0e883a4cf8af8a91bba04a3597eMark Andrews *) mod_actions: Introduce the "virtual" modifier to the Action directive,
7436bb66c610c039ca3dec12aac5024037898910Mark Andrews which allows the use of handlers for virtual locations. PR 8431.
c569a0e4d518bf30be1b2ba9cc3592fe470e9822Mark Andrews [André Malo]
e9964e7db4467722300c0d7d52ec1d7a51a784c1Mark Andrews *) mod_speling: Recognize AcceptPathInfo setting for the particular
89783da064f4f9bf2e82d2b3941ddeffe2a8c30dMark Andrews location. Default is to reject path information. PR 21059.
50105afc551903541608b11851d73278b23579a3Mark Andrews [André Malo]
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) mod_ext_filter: Add the ability to filter request bodies.
a03848252fa85734ca75beae3d0b01bb503c0a8bMark Andrews *) Fix some broken log messages in WinNT MPM.
22fa4e3206c2048cabaf75a3ae21132fd5542848Mark Andrews *) prefork MPM: Use the right permissions for the directory created
3ad4e307b64bcf8baa984e10a4e7549dbeaea31dMark Andrews for gprof support. [Jim Carlson <jcarlson jnous.com>]
3f08fb69eb3b5f6eaa3c57160dff0998e1569283Mark Andrews *) Fix a compile failure with recent OpenSSL and picky compilers
9ce4318edbab0b50f21df9ce28beb6fde71943ecMark Andrews (e.g., OpenSSL 0.9.7a and xlc_r on AIX). [Jeff Trawick]
91c79af4755df2d892511512e0fc886639518a92Mark Andrews *) OpenSSL headers should be included as "openssl/ssl.h", and not rely on
bf74532c942054bccc3df5227009ce52063a9dafMark Andrews the INCLUDE path to be defined properly.
80c5a37ddcb42239f6b7d16b66ca0426ca6ffe2cMark Andrews PR 11310. [Geoff Thorpe <geoff geoffthorpe.net>]
821644d49b73b49f2abc5463bc53a3132f612478Mark Andrews *) Modify APACHE_CHECK_SSL_TOOLKIT to detect SSL-C. [Madhusudan Mathihalli]
821644d49b73b49f2abc5463bc53a3132f612478Mark Andrews *) Replace the APACHE_CHECK_SSL_TOOLKIT method with a cleaner one, using
74cb99072c4b0ebd2ccafcfa284288fa760f7a1aMark Andrews autoconf tools (AC_CHECK_HEADER, AC_CHECK_LIB etc).
74cb99072c4b0ebd2ccafcfa284288fa760f7a1aMark Andrews [Geoff Thorpe <geoff geoffthorpe.net>]
902aebfb5ad7c735f74f700da288dc4519b83123Mark Andrews *) change directive name from 'compressionlevel' to 'deflatecompressionlevel'
22cd704fca51434f7aba193fd94d3291cc94ba2bMark Andrews [Ian Holsman, André Malo]
0e4f7c9d4e1a4bb66f0702e9f9975c392a15918bMark Andrews *) mod_negotiation: quality values are now parsed independent from
7554feaef6057f5ea2926076900ac7634b911456Mark Andrews the current locale. level values are now really parsed as integers.
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews PR 17564. [André Malo]
aa20b1b625dc406e1d9c3ff95d2a4af432e119faMark Andrews *) Extend mod_negotiation to evaluate the environment variables
aa20b1b625dc406e1d9c3ff95d2a4af432e119faMark Andrews no-gzip and gzip-only-text/html the same way as mod_deflate does.
aa20b1b625dc406e1d9c3ff95d2a4af432e119faMark Andrews [André Malo]
c4b8c7555d4abcfa4706c0551b00d71554250936Mark Andrews *) mod_rewrite: Fix some problems reporting errors with mapping
c4b8c7555d4abcfa4706c0551b00d71554250936Mark Andrews programs (RewriteMap prg:/something). [Jeff Trawick]
c4b8c7555d4abcfa4706c0551b00d71554250936Mark Andrews *) Return 413 if chunk-ext-header is too long rather than reading from
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews the truncated line. PR 15857. [Justin Erenkrantz]
f7e94169a9814c8e7d2ac8ac62bf0ccafb5a2cb6Mark Andrews *) Allow restart of httpd to occur even with syntax errors in the config
f7e94169a9814c8e7d2ac8ac62bf0ccafb5a2cb6Mark Andrews file. PR 16813. [Justin Erenkrantz]
774c3a62d9adca187b44fe90919bb409a43a2f2aMark Andrews *) Use APR_LAYOUT instead of APACHE_LAYOUT in configure. PR 15679.
774c3a62d9adca187b44fe90919bb409a43a2f2aMark Andrews [Justin Erenkrantz]
807d4a4c54ab9a328afeb5f69dc680ffbcb384c8Tatuya JINMEI 神明達哉 *) Remove files on 'make distclean' that should be. PR 15592.
1f058fb7d18d43e26ab0c9e8ce2ff6615740186aMark Andrews [Justin Erenkrantz]
1f058fb7d18d43e26ab0c9e8ce2ff6615740186aMark Andrews *) Allow apachectl to perform status with links and elinks as well.
6bd3b1fdb3915931ac158b2126fae35711bd0b26Mark Andrews [Justin Erenkrantz]
f8dfdef682c54f61cacebfb31260f3d6ba4ea54aMark Andrews *) mod_log_config change optional hook to return previous handler
f8dfdef682c54f61cacebfb31260f3d6ba4ea54aMark Andrews [Ian Holsman]
f8dfdef682c54f61cacebfb31260f3d6ba4ea54aMark Andrews *) Forward port of mod_actions' ability to handle arbitrary methods
b3d3e578410209d849efb59c9ea4925ca5c9ca68Mark Andrews with the Script directive. [André Malo]
ea40cebe2b51bd2b3c228ac6d08a3cfeca17960aMark Andrews *) Let suexec send a message to stderr, if it failed or its policy
96c973a6a96f10c93ede4c66964ceae47535a07aMark Andrews was violated. This message appears in the error log and allows
96c973a6a96f10c93ede4c66964ceae47535a07aMark Andrews for easier debugging. PR 5381, 7638, 8255, 10773. [André Malo]
9cf0970f43a41fe78a78d878f1d45c65f0b733d3Mark Andrews *) Modify buildconf to copy all required files into httpd's tree.
9cf0970f43a41fe78a78d878f1d45c65f0b733d3Mark Andrews [Thom May <thom planetarytramp.net>]
ad430189fb0028e41ae722f6e3c465b4bdd47af1Mark Andrews *) Allow mod_dav to do weak entity comparison functions.
ad430189fb0028e41ae722f6e3c465b4bdd47af1Mark Andrews [Justin Erenkrantz]
90c4900d5cf1a1b556ae4c1de6338b2e7475ee55Mark Andrews *) Move RFC 1413 ident requests from core to new module mod_ident.
b857ba993de91a3863de92db6462afdbec47d993Mark Andrews [André Malo]
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews *) Add mod_authz_owner - a forward port of "Require file-owner"
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews and "Require file-group", which was already present in version
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews 1.3.21. [André Malo]
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews *) Add mod_dav_lock - a generic subset of the DAV locking implementation.
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews [Justin Erenkrantz]
35541328a8c18ba1f984300dfe30ec8713c90031Mark Andrews *) Replace some of the mutex locking in the worker MPM with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews atomic operations for higher concurrency. [Brian Pane]
1f1b47a2ba565f96a97981e8447f80eba6854887Mark Andrews *) Allow 'make depend' to work with non-GCC compilers.
6ec7bd9c691cf7b7a1d4f507e89f2b7cb22a12dcMark Andrews [Justin Erenkrantz]
61fb42c4ef45d88e115bd769c30c4f36b461870bMark Andrews *) If an httpd.conf has commented out AddModule directives,
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews apxs -i -a will add an un-commented AddModule directive for
9cc75a3e5b0b54c5015e3f73a4a64d273560d5e3Mark Andrews the new module, which breaks the config.
9cc75a3e5b0b54c5015e3f73a4a64d273560d5e3Mark Andrews PR: 11212 [Joe Orton]
94d1015e65882e0f0c527abb0e8f66a609f46cb8Mark Andrews *) Fix mod_proxy handling of filtered input bodies. [Justin Erenkrantz]
f0e57c23e01731ed9e7f2dae585e6c643e590111Mark Andrews *) Move the check of the Expect request header field after the hook
f0e57c23e01731ed9e7f2dae585e6c643e590111Mark Andrews for ap_post_read_request, since that is the only opportunity for
dbbcb98a7069e5b79c5100b3c9cc3f3e5704d14eMark Andrews modules to handle Expect extensions. [Justin Erenkrantz]
c52ae25dd70636c673d4a299859137a1c8ba611aMark Andrews *) Rewrite of aaa modules to an authn/authz model.
6286983c506433d642b23e64845c50be30f2a7f6Mark Andrews [Dirk-Willem van Gulik, Justin Erenkrantz]
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews [Apache 2.1.0-dev includes those bug fixes and changes with the
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews Apache 2.0.xx tree as documented, and except as noted, below.]
f470686d921e6aa26726109226310a42ad8a44f3Mark AndrewsChanges with Apache 2.0.56
fd447061627e77db3ccf2536e14134e50647b9beMark Andrews *) SECURITY: CVE-2005-3357 (cve.mitre.org)
fd447061627e77db3ccf2536e14134e50647b9beMark Andrews mod_ssl: Fix a possible crash during access control checks if a
fd447061627e77db3ccf2536e14134e50647b9beMark Andrews non-SSL request is processed for an SSL vhost (such as the
9f1bca36e43f076ab49d8de51301cb3c2dc04995Mark Andrews "HTTP request received on SSL port" error message when an 400
9f1bca36e43f076ab49d8de51301cb3c2dc04995Mark Andrews ErrorDocument is configured, or if using "SSLEngine optional").
9f1bca36e43f076ab49d8de51301cb3c2dc04995Mark Andrews PR 37791. [Rüdiger Plüm, Joe Orton]
0e0d2891c08b70886f811d627bfb91a0c5e07dfcMark Andrews *) SECURITY: CVE-2005-3352 (cve.mitre.org)
0e0d2891c08b70886f811d627bfb91a0c5e07dfcMark Andrews mod_imap: Escape untrusted referer header before outputting in HTML
0e0d2891c08b70886f811d627bfb91a0c5e07dfcMark Andrews to avoid potential cross-site scripting. Change also made to
7052e191ce63fdf063a977695718ff426a27628eMark Andrews ap_escape_html so we escape quotes. Reported by JPCERT.
7052e191ce63fdf063a977695718ff426a27628eMark Andrews *) mod_speling: Stop crashing with certain non-file requests.
6f3e68a8dbad508b815f42a0250122ca5e58972eMark Andrews [Jeff Trawick]
62bdc6103b8245b812eef9faabee8e644afcc25fMark Andrews *) keep the Content-Length header for a HEAD with no response body.
185fd227381269568e193147a98f292210a16f2cMark Andrews PR 18757 [Greg Ames]
d5ad558234adfef1b847b534dd7b4c6302cc5ea3Mark Andrews *) Modify apr[util] .h detection to avoid breakage on VPATH builds
d5ad558234adfef1b847b534dd7b4c6302cc5ea3Mark Andrews using Solaris make (amoung others) and avoid breakage in ./buildconf
ce75d8bec3e93ef9fbd4a235f14f99483b3f238fMark Andrews when srclib/apr[-util] are symlinks rather than directories proper.
62700b67eb8abb7d13f9c3c1bc4b60a1477d35d8Mark Andrews [William Rowe]
f853c77478af94109291ea93f800444b949be558Mark Andrews *) Avoid server-driven negotiation when a CGI script has emitted an
cdb6532e86a8f3d3d563b6da8c333bdf377d51ddMark Andrews explicit "Status:" header. PR 38070. [Nick Kew]
7ad4d54f29c315cbcb241ca5fc12ba1e0744358bMark Andrews *) mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews format is used. PR 27787. [André Malo]
5e41884b4a1871eb83e66f0d68ca4d04bbbc857eMark Andrews *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
5e41884b4a1871eb83e66f0d68ca4d04bbbc857eMark Andrews [Justin Erenkrantz]
93a90ddd6b588a381b6894974a2d48727f19d42bMark Andrews *) mod_cache: Correctly handle responses with a 301 status. PR 37347.
93a90ddd6b588a381b6894974a2d48727f19d42bMark Andrews [Paul Querna]
eabf7ff29a88c578619fdc0d307f9e0bad0d6ce8Mark Andrews *) mod_proxy_http: Prevent data corruption of POST request bodies when
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews client accesses proxied resources with SSL. PR 37145.
30b89a5ad95b5775abf6cce8ecc84a061babf76dMark Andrews [Ruediger Pluem, William Rowe]
6342df69b05f2f62d060fd4affdf536e51504084Mark Andrews *) Elimiated the NET_TIME filter, restructuring the timeout logic.
6342df69b05f2f62d060fd4affdf536e51504084Mark Andrews This provides a working mod_echo on all platforms, and ensures any
6342df69b05f2f62d060fd4affdf536e51504084Mark Andrews custom protocol module is at least given an initial timeout value
5caf500beeb91b96a2bb2fd55080141569aead97Mark Andrews based on the <VirtualHost > context's Timeout directive.
881702c9c0079cd48a45054fd90d043f3a8b7e11Mark Andrews [William Rowe]
012dedf87438043ff00d4deec8b488eec2be2a1cMark Andrews *) mod_ssl: Correct issue where mod_ssl does not pick up the
6f808593181c16d5a7625cb527a5755872f9680cMark Andrews ssl-unclean-shutdown setting when configured. PR 34452. [Joe Orton]
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) Document the ReceiveBufferSize change done in r157583 [Murray
1576cde466a8de10e84f9887ec073ebaf5973aefMark Andrews Nesbitt <murray@cpan.org>]
e407562a75eb93073bb72089cced150d7ffe4d4fTatuya JINMEI 神明達哉 *) mod_deflate: Merge the Vary header, instead of Setting it. Fixes
e407562a75eb93073bb72089cced150d7ffe4d4fTatuya JINMEI 神明達哉 applications that send the Vary Header themselves. PR 37559.
6da7c87a77ecfd9ccce36f96b4ccd20e1b9cccf1Tatuya JINMEI 神明達哉 *) mod_dav: Fix a null pointer dereference in an error code path during the
582b6dc68b2defc1d8795df8f1da31bd1825c30bTatuya JINMEI 神明達哉 handling of MKCOL. [Ghassan Misherghi <ghassanm ucdavis.edu>]
d0eb2cc33c5db3366a16b1cb0abcca6ec7c8ee3cTatuya JINMEI 神明達哉 *) mod_mime_magic: Handle CRLF-format magic files so that it works with
d0eb2cc33c5db3366a16b1cb0abcca6ec7c8ee3cTatuya JINMEI 神明達哉 the default installation on Windows. [Jeff Trawick]
d0eb2cc33c5db3366a16b1cb0abcca6ec7c8ee3cTatuya JINMEI 神明達哉 *) Write message to error log if AuthGroupFile cannot be opened.
668767dc6471dfed4741869c8dd20af8e9ace3cdTatuya JINMEI 神明達哉 PR 37566. [Rüdiger Plüm]
bb030ee88e51488a464146dfce4db74d16e05a0cMark Andrews *) Add ReceiveBufferSize directive to control the TCP receive buffer.
634d053dfe806ee6a3d9ed5c2bda7f68ba410de4Tatuya JINMEI 神明達哉 [Eric Covener <covener gmail.com>]
b6d52ee5bea1b9d9074698e693b49ce96edff47bMark Andrews *) mod_cache: Fix 'Vary: *' behavior to be RFC compliant. PR 16125.
b6d52ee5bea1b9d9074698e693b49ce96edff47bMark Andrews [Paul Querna]
b657d7db3b73701430b7d1fa17e9c016fd859088Mark Andrews *) Remove the base href tag from proxy_ftp, as it breaks relative
b657d7db3b73701430b7d1fa17e9c016fd859088Mark Andrews links for clients not using an Authorization header. [Graham Leggett,
8d42bb315ce6745e5631eda4eac59d3b981e58c6Mark Andrews Jon Snow <jsnow27 gatesec.net>]
8d42bb315ce6745e5631eda4eac59d3b981e58c6Mark Andrews *) http_request.c: Add missing va_end call. [André Malo]
4efe32b8bb512ac03a139b77f008600c5a3624eaMark Andrews *) Add httxt2dbm to support/ for creating RewriteMap DBM Files.
4efe32b8bb512ac03a139b77f008600c5a3624eaMark Andrews [Paul Querna]
89639a5e13cace9166bf14931b9e1ce9dc8c47a3Mark Andrews *) support/check_forensic: Fix temp file usage
94be8e357c37c843027e899bb277a314ea828a4cMark Andrews [Javier Fernandez-Sanguino Pen~a <jfs computer.org>]
94be8e357c37c843027e899bb277a314ea828a4cMark Andrews *) Chunk filter: Fix chunk filter to create correct chunks in the case that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a flush bucket is surrounded by data buckets. [Ruediger Pluem]
49fcdcd940274fedcb9cf943f0ee8144369527fdMark Andrews *) mod_cgi(d): Remove block on OPTIONS method so that scripts can
49fcdcd940274fedcb9cf943f0ee8144369527fdMark Andrews respond to OPTIONS directly rather than via server default.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Roy Fielding] PR 15242
93d6dfaf66258337985427c86181f01fc51f0bb4Mark Andrews *) Added new module mod_version, which provides version dependent
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configuration containers. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add core version query function (ap_get_server_revision) and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews accompanying ap_version_t structure (minor MMN bump).
1160ecfd146301ff0d053ed054e5276f33f28b4eMark Andrews [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.55
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) SECURITY: CVE-2005-2088 (cve.mitre.org)
73d74334741756eab4a9afd8d3c4e7c08da9a844Mark Andrews proxy: Correctly handle the Transfer-Encoding and Content-Length
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers. Discard the request Content-Length whenever T-E: chunked
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is used, always passing one of either C-L or T-E: chunked whenever
baee883e378402698eeb7326538a7d432c8350d1Mark Andrews the request includes a request body. Resolves an entire class of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews proxy HTTP Request Splitting/Spoofing attacks. [William Rowe]
0b1da8124c817270f5dfe46cd0211b993c931a91Mark Andrews *) Added TraceEnable [on|off|extended] per-server directive to alter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the behavior of the TRACE method. This addresses a flaw in proxy
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews conformance to RFC 2616 - previously the proxy server would accept
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a TRACE request body although the RFC prohibited it. The default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews remains 'TraceEnable on'. [William Rowe]
0b1da8124c817270f5dfe46cd0211b993c931a91Mark Andrews *) Add ap_log_cerror() for logging messages associated with particular
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews client connections. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct mod_cgid's argv[0] so that the full path can be delved by the
da34d92aeee25dedd6affd69623dc7d0aba2cc23Mark Andrews invoked cgi application, to conform to the behavior of mod_cgi.
da34d92aeee25dedd6affd69623dc7d0aba2cc23Mark Andrews *) mod_include: Fix possible environment variable corruption when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews using nested includes. PR 12655. [Joe Orton]
da34d92aeee25dedd6affd69623dc7d0aba2cc23Mark Andrews *) Support the suppress-error-charset setting, as with Apache 1.3.x.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 31274. [Jeff Trawick]
20d90a37532b92b0471c56fb583d6b2ddc32caa6Mark Andrews *) EBCDIC: Handle chunked input from client or, with proxy, origin
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server. [Jeff Trawick]
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) Fix bad globbing comparison which could result in getting
4607e7a9b8dfb1b41c70e51c2b603daaf22cf302Mark Andrews a directory listing when a file was requested. PR 34512.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [sean <infamous41md hotmail.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix core dump if mod_auth_ldap's mod_auth_ldap_auth_checker()
c528ef03d9cdfd7eed4fe6b93563dd599bbb25b0Mark Andrews was called even if mod_auth_ldap_check_user_id() was not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (or if it didn't succeed) for non-authoritative cases.
f58233ec6c8b5866083bbaf5083ac9ade6bebe3aMark Andrews [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2005-2728 (cve.mitre.org)
c282d16311ce06b6bcb594be716cde4ad5c40af9Mark Andrews Fix cases where the byterange filter would buffer responses
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews into memory. PR 29962. [Joe Orton]
1b5a72829324a0d2fa327a270caea8fd02ae8779Mark Andrews *) mod_proxy: Fix over-eager handling of '%' for reverse proxies.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 15207. [Jim Jagielski]
5e9f6125246cec57771bcdeefed03153d41c23fdMark Andrews *) mod_ldap: Fix various shared memory cache handling bugs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 34209. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a file descriptor leak when starting piped loggers. PR 33748.
1e107b3d7b54de5022c3328423164e533afcc15eMark Andrews *) mod_ldap: Avoid segfaults when opening connections if using a version
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of OpenLDAP older than 2.2.21. PR 34618. [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix build with OpenSSL 0.9.8. PR 35757. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2005-2088 (cve.mitre.org)
17a14e451df80b3d82278e5c925682ade3263dbcMark Andrews core: If a request contains both Transfer-Encoding and Content-Length
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers, remove the Content-Length, mitigating some HTTP Request
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Splitting/Spoofing attacks. [Paul Querna, Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) proxy HTTP: If a response contains both Transfer-Encoding and a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Content-Length, remove the Content-Length and don't reuse the
c282d16311ce06b6bcb594be716cde4ad5c40af9Mark Andrews connection, mitigating some HTTP Response Splitting attacks.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
f488b1c311f2fc09ae8e45f7893185e608b17edeMark Andrews *) Prevent hangs of child processes when writing to piped loggers at
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the time of graceful restart. PR 26467. [Jeff Trawick]
4bb16c5856e5c6b05ac43c60f9f9376641bdcccfMark Andrews *) SECURITY: CVE-2005-1268 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ssl: Fix off-by-one overflow whilst printing CRL information
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews at "LogLevel debug" which could be triggered if configured
c676c1b4978bfe2d00bdf5085fd44544067f9de4Mark Andrews to use a "malicious" CRL. PR 35081. [Marc Stern <mstern csc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_userdir: Fix possible memory corruption issue. PR 34588.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [David Leonard <dleonard vintela.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker mpm: don't take down the whole server for a transient
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews thread creation failure. PR 34514 [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: use buffered I/O to improve performance with large
743ffc91bdd462be6f91b3bab8f440c6a69f0770Mark Andrews RewriteMap txt: files. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) proxy HTTP: Rework the handling of request bodies to handle
743ffc91bdd462be6f91b3bab8f440c6a69f0770Mark Andrews chunked input and input filters which modify content length, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews avoid spooling arbitrary-sized request bodies in memory.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 15859. [Jeff Trawick]
072e21c2bbf0907706b18a4a3857913e79d380fbMark AndrewsChanges with Apache 2.0.54
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: Add CacheIgnoreHeaders directive. PR 30399.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ldap: Added the directive LDAPConnectionTimeout to configure
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the ldap socket connection timeout value.
72ddc4cef9c6a6de53aae530dea1ddbb90631131Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correctly export all mod_dav public functions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Branko Čibej <brane xbc.nu>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a build script to create a solaris package. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker MPM: Fix a problem which could cause httpd processes to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews remain active after shutdown. [Jeff Trawick]
072e21c2bbf0907706b18a4a3857913e79d380fbMark Andrews *) Unix MPMs: Shut down the server more quickly when child processes are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews slow to exit. [Joe Orton, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove formatting characters from ap_log_error() calls. These
9c1eb2279d715188bf631d98d103f6f81a3c76fbMark Andrews were escaped as fallout from CVE-2003-0020.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Eric Covener <ecovener gmail.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: If SSLUsername is used, set r->user earlier. PR 31418.
f95231835fdcd8d5f58486c9f9993602f27fe157Mark Andrews [David Reid]
21f1794606dce19928cf455029e173321f166380Mark Andrews *) htdigest: Fix permissions of created files. PR 33765. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) core_input_filter: Move buckets to a persistent brigade instead of
0cb25226fba18befbe40156c93845f2fc9bf3524Mark Andrews creating a new brigade. This stop a memory leak when proxying a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Streaming Media Server. PR 33382. [Paul Querna]
2610933abd985bdea28801c35d740d2cab2f137aMark Andrews *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hiccups from additional path information passed in non-utf-8 format.
7a857bdb6828e75eec5a7080e4670ce199875922Mark Andrews [Richard Donkin <rd9 donkin.org]
fc87397df60d3c5e5d9900ff5ac82da29fe1dbb7Mark AndrewsChanges with Apache 2.0.53
a22f967b7e3589dab640d2cc65fd202d077a9d90Mark Andrews *) Fix --with-apr=/usr and/or --with-apr-util=/usr. PR 29740.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Max Bowsher <maxb ukf.net>]
1a4d687359d89ff3b3e4e3f7acc4b6b8d8c982e9Mark Andrews *) mod_proxy: Fix ProxyRemoteMatch directive. PR 33170.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Rici Lake <rici ricilake.net>]
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews *) mod_proxy: Respect errors reported by pre_connection hooks.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) --with-module can now take more than one module to be statically
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,...
f5af519ab547bc80c51387529103e4e852a1171eMark Andrews If the <modtype>-subdirectory doesn't exist it will be created and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews populated with a standard Makefile.in. [Erik Abele]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the RPM spec file so that an RPM build now works. An RPM
b0c2141b236832664119c9c7c647359b0c7fead4Mark Andrews build now requires system installations of APR and APR-util.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Remove some arbitrary moving around of binaries - the RPM now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews maps to the ASF build of httpd.
182a34004c7c48e2c1626f3ce7e787f413955126Mark Andrews [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dumpio, an I/O logging/dumping module, added to the
603658ea65b34c4b57f154b1e2412b4f01866b6bMark Andrews modules/expermimental subdirectory. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_auth_ldap: Handle the inconsistent way in which the MS LDAP
163547c0c064251e97c74538c5ede3232b3f0ffaMark Andrews library handles special characters. PR 24437. [Jess Holle]
8ff31bab2f51b171a8eab3a0b8415c64529e116eMark Andrews *) Win32 MPM: Correct typo in debugging output. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) conf: Remove AddDefaultCharset from the default configuration because
07a849ba02aba7e8e869bc82c360fcc4b27eb009Mark Andrews setting a site-wide default does more harm than good. PR 23421.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Roy Fielding]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add charset to example CGI scripts. [Roy Fielding]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: fail quickly if SSL connection is aborted rather than
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews making many doomed ap_pass_brigade calls. PR 32699. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove compiled-in upper limit on LimitRequestFieldSize.
2fd63cf561135572339d4e2ff0c06695e3dcf1baMark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Start keeping track of time-taken-to-process-request again for
8ca42f6318be756354b70260050132545aa680d3Mark Andrews mod_status if ExtendedStatus is enabled. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_proxy: Handle client-aborted connections correctly. PR 32443.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Janne Hietamäki, Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix handling of files >2Gb on all platforms (or builds) where
7ec0f55f1542d8bb9475bbe93e911d7520f043caMark Andrews apr_off_t is larger than apr_size_t. PR 28898. [Joe Orton]
4cb69e7c919cc43b16852016588af714bc421da3Mark Andrews *) mod_include: Fix bug which could truncate variable expansions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of N*64 characters by one byte. PR 32985. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct handling of certain bucket types in ap_save_brigade, fixing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews possible segfaults in mod_cgi with #include virtual. PR 31247.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow for the use of --with-module=foo:bar where the ./modules/foo
0c2509b0b9f9e455fa9d347d08f6ba9abd86d418Mark Andrews directory is local only. Assumes, of course, that the required
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews files are in ./modules/foo, but makes it easier to statically
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews build/log "external" modules. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that
80b782f356f0692c11b4e52e8dd46ec41704e5a2Mark Andrews ldap authorization only modules have access to the util_ldap
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user cache without having to require ldap authentication as well.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 31898. [Jari Ahonen jah progress.com, Brad Nicholes]
6a2f7bba6f4df137ab3f781fe07b0b88e72e0b19Mark Andrews *) mod_auth_ldap: Added the directive "Requires ldap-attribute" that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allows the module to only authorize a user if the attribute value
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specified matches the value of the user object. PR 31913
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Morgan <rmorgan pobox.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0942 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fix for memory consumption DoS in handling of MIME folded request
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0885 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be
53cf67186506f9557aaf2149898dd76715803db2Mark Andrews bypassed during an SSL renegotiation. PR 31505.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fail at startup rather than segfault at runtime if a
53cf67186506f9557aaf2149898dd76715803db2Mark Andrews client cert is configured with an encrypted private key.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 24030. [Joe Orton]
888bb8bf68ba1a2b032a64122efd9125a9155ad7Mark Andrews *) apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". PR 31448
b312748a11d27fe387984973ba79975a9d6863c4Mark Andrews *) mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: CacheDisable will only disable the URLs it was meant to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews disable, not all caching. PR 31128.
b312748a11d27fe387984973ba79975a9d6863c4Mark Andrews [Edward Rudd <eddie omegaware.com>, Paul Querna]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale
b312748a11d27fe387984973ba79975a9d6863c4Mark Andrews cache responses. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Handle per-location rules when r->filename is unset.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Previously this would segfault or simply not match as expected,
ee84964a7d29ae88769f67326a65256731769ea7Mark Andrews depending on the platform. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Fix 0 bytes write into random memory position.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 31036. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_disk_cache: Do not store aborted content. PR 21492.
c3ea698877cdde327f2bf6a8e97347798fead2d4Mark Andrews *) mod_disk_cache: Correctly store cached content type. PR 30278.
c3ea698877cdde327f2bf6a8e97347798fead2d4Mark Andrews *) mod_ldap: prevent the possiblity of an infinite loop in the LDAP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews statistics display. PR 29216. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ldap: fix a bogus error message to tell the user which file
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is causing a potential problem with the LDAP shared memory cache.
c3ea698877cdde327f2bf6a8e97347798fead2d4Mark Andrews PR 31431 [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-1834 (cve.mitre.org)
9368d7df838f58cd32922b526775ca730bc633cfMark Andrews mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the re-linking issue when purging elements from the LDAP cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 24801. [Jess Holle <jessh ptc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz]
22a9cd54c072545d13788ceead759911fe8cfe34Mark Andrews *) Fix Expires handling in mod_cache. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Alter mod_expires to run at a different filter priority to allow
21ba6c18e4ccc73933af5cf28701a5cc3b7963ecMark Andrews proper Expires storage by mod_cache. [Justin Erenkrantz]
266296414d0ed79980c6d3144a587b42324a50ffMark AndrewsChanges with Apache 2.0.52
c960dffe35970da729219b72f2e41350d3b64c35Mark Andrews *) Use HTML 2.0 <hr> for error pages. PR 30732 [André Malo]
5da49e379c79fbd597cf0d47e7697b65991f761fMark Andrews *) Fix the global mutex crash when the global mutex is never allocated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews due to disabled/empty caches. [Jess Holle <jessh ptc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault in the LDAP cache when it is configured switched
59f51f864c752d2e4bf8d1ad94404ada0c9aa6e9Mark Andrews off. [Jess Holle <jessh ptc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0811 (cve.mitre.org)
a207a2835e37de52e11d4c143c0425e749409c46Mark Andrews Fix merging of the Satisfy directive, which was applied to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the surrounding context and could allow access despite configured
03760eeb542cc5e91193eec478cae022df4bcc58Mark Andrews authentication. PR 31315. [Rici Lake <rici ricilake.net>]
838d608e6f37038f2fb43980a7a9d6b6a490db36Mark Andrews *) Fix the handling of URIs containing %2F when AllowEncodedSlashes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is enabled. Previously, such urls would still be rejected.
64cc9c8818db2552cbdd77f1050e890ffa5a17d8Mark Andrews [Jeff Trawick, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_mem_cache: Fixed race condition causing segfault because of memory being
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews freed twice, or reused after being freed.
0f09ef5a50ef09eaed8e6630b4004d5143d6b52cMark Andrews [J. Clar, W. Stoddard, G. Ames]
0f09ef5a50ef09eaed8e6630b4004d5143d6b52cMark Andrews *) Add -l option to rotatelogs to let it use local time rather than
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews UTC. PR 24417. [Ken Coar, Uli Zappe <uli ritual.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_log_config: Fix a bug which prevented request completion time
9bd478a5e6df956a79bbdb5c182d5b44763786ceMark Andrews from being logged for I_INSIST_ON_EXTRA_CYCLES_FOR_CLF_COMPLIANCE
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews processing. PR 29696. [Alois Treindl <alois astro.ch>]
421e4cf66e4cba0b0751a34a9c027e39fe0474f9Mark AndrewsChanges with Apache 2.0.51
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0786 (cve.mitre.org)
b0c15bd9792112fb47f6d956e580e4369e92f4e7Mark Andrews Fix an input validation issue in apr-util which could be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews triggered by malformed IPv6 literal addresses. [Joe Orton]
b0c15bd9792112fb47f6d956e580e4369e92f4e7Mark Andrews *) SECURITY: CVE-2004-0747 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fix buffer overflow in expansion of environment variables in
bf7f253e306d0ced8ae24d7a0598773950da11f4Mark Andrews configuration file parsing. [André Malo]
95b484c9580d06eb2f9735a22e9841389c2859baMark Andrews *) SECURITY: CVE-2004-0809 (cve.mitre.org)
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews mod_dav_fs: Fix a segfault in the handling of an indirect lock
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews refresh. PR 31183. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_include no longer checks for recursion, because that's done
5f89a1ee9e0fe64211d050db5d3e7a5ea282c282Mark Andrews in the core. This allows for careful usage of recursive SSI.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
ff2ef33a84550fa5dbd9e8fdcd82a33288f053adMark Andrews *) Fix memory leak in the cache handling of mod_rewrite. PR 27862.
12ff7274fe2ea531ecca6a71fb9f7e1ae92da389Mark Andrews [chunyan sheng <shengperson yahoo.com>, André Malo]
9d3ad53203f1ac49f9e876dbbcaca18656eb3e19Mark Andrews *) Include directives no longer refuse to process symlinks on
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews directories. Instead there's now a maximum nesting level
767fd19da4b699aae46959d834f53af0e1166e80Mark Andrews of included directories (128 as distributed). This is configurable
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews at compile time using the -DAP_MAX_INCLUDE_DIR_DEPTH switch.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 28492. [André Malo]
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) Win32: apache -k start|restart|install|config can leave stranded
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews piped logger processes (eg, rotatelogs.exe) due to improper
5b76a09697bfc76f5acefd65d5b37b1214d271a8Mark Andrews server shutdown on these code paths.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0751 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ssl: Fix a segfault in the SSL input filter which could be
93e353425a81da7793dde3776f4caca658f57c11Mark Andrews triggered if using "speculative" mode, for instance by a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews proxy request to an SSL server. PR 30134. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Add %{SSL:...} and %{HTTPS} variable lookups.
49a940dc68b30d9e4f9e1bd3c0503d8b90bb1726Mark Andrews PR 30464. [Joe Orton, Madhusudan Mathihalli]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Add new 'ssl_is_https' optional function. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent CGI script output which includes a Content-Range header
59ab128c972622f5aeafe3229966dcba73b62243Mark Andrews from being passed through the byterange filter. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Satisfy directives now can be influenced by a surrounding <Limit>
90295f915c883d1aeeda856f518584d4219a704aMark Andrews container. PR 14726. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite now officially supports RewriteRules in <Proxy> sections.
1c75ea91cdb49dac65f0f592ddbf66bfdfc4a2d7Mark Andrews PR 27985. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_disk_cache: Implement binary format for on-disk header files.
142d155dd68fd601dc38c6b6f7c35f2798ec24caMark Andrews [Brian Akins <bakins web.turner.com>, Justin Erenkrantz]
99776003811a413457a2c35a808ad860df877d24Mark Andrews *) mod_disk_cache: Optimize network performance of disk cache subsystem by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allowing zero-copy (sendfile) writes and other miscellaneous fixes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache, mod_disk_cache, mod_mem_cache: Refactor cache modules, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews switch to the provider API instead of hooks. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex: Don't truncate the directory listing if a stat()
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews call fails (for instance on a >2Gb file). PR 17357.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Makefile fix: httpd is linked against LIBS given to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 'make' invocation. PR 7882. [Joe Orton]
52fc1457e44c476a81ec9dee6a664958cb64b8e2Mark Andrews *) WinNT MPM: Fix a broken log message at termination. PR 28063.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Eider Oliveira <eider bol.com.br>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent Win32 pool corruption at startup [Allan Edwards]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Add "SSLUserName" directive to set r->user based on a
757bf8a1e5d85806c648d7a6267da8d49a8ab822Tatuya JINMEI 神明達哉 chosen SSL environment variable. PR 20957.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Martin v. Loewis <martin v.loewis.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) suexec: Pass the SERVER_SIGNATURE envvar through to CGIs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Zvi Har'El <rl math.technion.ac.il>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) apachectl: Fix a problem finding envvars if sbindir != bindir.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 30723. [Friedrich Haubensak <hsk imb-jena.de>]
af2be1a46813e228cb9d71230d3f41222fdb69baTatuya JINMEI 神明達哉 *) mod_ssl: Build on RHEL 3. PR 18989. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0748 (cve.mitre.org)
2945ac15af547df0268e449252902ead599e2451Mark Andrews mod_ssl: Fix a potential infinite loop. PR 29964. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Avoid startup failure after unclean shutdown if using shmcb.
285761cf91626976e211f69d9678c138b25f8629Tatuya JINMEI 神明達哉 PR 18989. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_userdir: Ensure that the userdir identity is used for
ca70688bf60b4f50c4e3ec7d40567341c9962fafMark Andrews suexec userdir access in a virtual host which has suexec configured.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 18156. [Joshua Slive]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite no longer confuses the RewriteMap caches if
8b0ee8448bec37bf1e771363dccce7c0e73eb1a7Mark Andrews different maps defined in different virtual hosts use the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews same map name. PR 26462. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_setenvif: Remove "support" for Remote_User variable which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews never worked at all. PR 25725. [André Malo]
a9ae9d743c7f85bec44e95b1f62c7a2a114a2fd6Mark Andrews *) Backport from 2.1 / Regression from 1.3: mod_headers now knows
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews again the functionality of the ErrorHeader directive. But instead
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews using this misnomer additional flags to the Header directive were
75ace6601e66840436f52e61353ee0d400577b55Mark Andrews introduced ("always" and "onsuccess", defaulting to the latter).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 28657. [André Malo]
75ace6601e66840436f52e61353ee0d400577b55Mark Andrews *) Use the higher performing 'httpready' Accept Filter on all platforms
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews except FreeBSD < 4.1.1. [Paul Querna]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_usertrack: Escape the cookie name before pasting into the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews regexp. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Extend the SetEnvIf directive to capture subexpressions of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews matched value. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Recursive Include directives no longer crash. The server stops
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews including configuration files after a certain nesting level (128
550085fed1d0af54ba5b2f588898afec158195deMark Andrews as distributed). This is configurable at compile time using the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews -DAP_MAX_INCLUDE_DEPTH switch. PR 28370. [André Malo]
f411c2e81cbfcf89ee073a0e31ac902a42fc8f22Mark Andrews *) mod_dir: the trailing-slash behaviour is now configurable using the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DirectorySlash directive. [André Malo]
ab2ac96c4e71dc803e47c35592044e116f61aca5Tatuya JINMEI 神明達哉 *) Allow proxying of resources that are invoked via DirectoryIndex.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 14648, 15112, 29961. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) util_ldap: Switched the lock types on the shared memory cache
3bdf879a5301bce17e0a955585eb3decc541ba79Mark Andrews from thread reader/writer locks to global mutexes in order to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews provide cross process cache protection. [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) util_ldap: Reworked the cache locking scheme to eliminate duplicate
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews cache entries in the credentials cache due to race conditions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) util_ldap: Enhanced the util_ldap cache-info display to show more
6b25d2f7f7a1125508f8d225a8fef94e1db83555Mark Andrews detail about the contents and current state of the cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b6309ed962c4988a314d61742c4fbc4935467d68Mark Andrews *) Enable the option to support anonymous shared memory in mod_ldap.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This makes the cache work on Linux again. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enable special ErrorDocument value 'default' which restores the
bd3946db298667e769804b2e978df2d6dcd85e29Mark Andrews canned server response for the scope of the directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Geoffrey Young, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) work around MSIE Digest auth bug - if AuthDigestEnableQueryStringHack
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is set in r->subprocess_env allow mismatched query strings to pass.
8689f943a4859a8f68344236a1dcb81299a98347Mark Andrews PR 27758. [Paul Querna, Geoffrey Young]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Accept URLs for the ServerAdmin directive. If the supplied
2434ccfde7efa30b6fedf4630e5036eeb5d647d0Mark Andrews argument is not recognized as an URL, assume it's a mail address.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 28174. [André Malo, Paul Querna]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) initialize server arrays prior to calling ap_setup_prelinked_modules
5bd76af084edfdcd1cb4db9453ac781d32dde6f7Mark Andrews so that static modules can push Defines values when registering
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hooks just like DSO modules can ["Philippe M. Chiasson" <gozer cpan.org>]
8bcb0f297b50e80e3c7aab1a41b94d937acf4dc0Mark Andrews *) Small fix to allow reverse proxying to an ftp server. Previously
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an attempt to do this would try and connect to 0.0.0.0, regardless
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of the server specified. PR 24922
7f32428506d55083fe5ac9aa515294bdef7c6e27Mark Andrews [Pascal Terjan <pterjan@linuxfr.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add the NOTICE file to the rpm spec file in compliance with the
5c10f54fe38795cbd3d5cf22e3fbd1d22b8226e4Mark Andrews Apache v2.0 license. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) RPM spec file changes: changed default dependancy to link to db4
a6211a2f234767a015a6a30b85d5da087fa907f1Mark Andrews instead of db3. Fixed complaints about unpackaged files.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.50
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0493 (cve.mitre.org)
e72d4d8929fec51153e4fd0d1cf632cd59335495Mark Andrews Close a denial of service vulnerability identified by Georgi
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Guninski which could lead to memory exhaustion with certain
0ae34c3f6222ece01e0f710c7c0311f5cf9d9c0fMark Andrews input data. [Jeff Trawick]
6c6673405c7e29c1d91d07b326d0fe1d7b52e478Mark Andrews *) mod_cgi: Handle output on stderr during script execution on Unix
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews platforms; preventing deadlock when stderr output fills pipe buffer.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Also fixes case where stderr from nph- scripts could be lost.
bb6936058eb88eadff030462a347c10895c61a9aMark Andrews PR 22030, 18348. [Joe Orton, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_alias now emits a warning if it detects overlapping *Alias*
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directives. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite no longer turns forward proxy requests into reverse proxy
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews requests. PR 28125 [ast domdv.de, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews exported on Win32 and Netware as well (minor MMN bump). PR 28523.
1aed0905a50ff8d2bdc4d253b38ae24afe3bab1cDanny Mayer [Edward Rudd <eddie omegaware.com>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Restore the ability to disable the use of AcceptEx on Win9x systems
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews automatically (broken in 2.0.49). PR 28529. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) <VirtualHost myhost> now applies to all IP addresses for myhost
3cea35d9159b36eac43d32082a0b98f2cd82fc2eDanny Mayer instead of just the first one reported by the resolver. This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews corrects a regression since 1.3. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) util_ldap: allow relative paths for LDAPTrustedCA to be resolved
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews against ServerRoot PR#26602 [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0488 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (trusted) client certificate subject DN which exceeds 6K in length.
1431917c7cddbac7442cb910e83cb058fea59fb5Mark Andrews *) mod_dav_fs: Fix MKCOL response for missing parent collections, which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews caused issues for the Eclipse WebDAV extension.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 29034. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_deflate: Fix memory consumption (which was proportional to the
012a2b979e011b13ba0d291c279dc65a167c039eMark Andrews response size). PR 29318. [Joe Orton]
f6ff00810196d0c0973f62c7917b9975011fa45aMark Andrews *) mod_ssl: Log the errors returned on failure to load or initialize
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a crypto accelerator engine. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow RequestHeader directives to be conditional. PR 27951.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Vincent Deffontaines <vincent gryzor.com>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow LimitRequestBody to be reset to unlimited. PR 29106
fa4e1438016331502e6d665588021aa7ffef8cc2Mark Andrews [André Malo]
f0471ca4b7bca6e907130ec84e36cf69f2b79a5aMark Andrews *) Fix a bunch of cases where the return code of the regex compiler
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was not checked properly. This affects: mod_setenvif, mod_usertrack,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_proxy, mod_proxy_ftp and core. PR 28218. [André Malo]
638fe804a524ee0c028863c0301b999c79de7651Mark Andrews *) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews small cache sizes. PR 27751. [Geoff Thorpe <geoff geoffthorpe.net>]
9db3d9d14e2f3641d696dadc59c40c52b6f888bcMark Andrews *) Remove 2Gb log file size restriction on some 32-bit platforms.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 13511. [Joe Orton]
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews *) mod_logio no longer removes the EOS bucket. PR 27928.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bojan Smojver <bojan rexursive.com>]
0b75a2dd3bd81a69e2d68fe446cacb46be04c1f1Mark Andrews *) htpasswd no longer refuses to process files that contain empty
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews lines. [André Malo]
c54c1eaf26d5a7fc123c4af3712353156a766df1Mark Andrews *) Regression from 1.3: At startup, suexec now will be checked for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews availability, the setuid bit and user root. The works only if
0d993c02babc1e00516272783b310e83bb292d5cMark Andrews httpd is compiled with the shipped APR version (0.9.5).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 28287. [André Malo]
4d9f3f00d93fcb8743b1105e8cf82e862be220d1Mark Andrews *) Unix MPMs: Stop dropping connections when the file descriptor
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is at least FD_SETSIZE. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix handling of IPv6 numeric strings in mod_proxy. [Jeff Trawick]
86f6b92e35c7bdb5fc1fd1021af75b981863313eMark Andrews *) mod_isapi: send_response_header() failed to copy status string's
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews last character. PR 20619. [Jesse Pelton <jsp pkc.com>]
25276bd1ecb372b82c9235648e5defab0655dcd5Mark Andrews *) Fix a segfault when requests for shared memory fails and returns
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews NULL. Fix a segfault caused by a lack of bounds checking on the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cache. PR 24801. [Graham Leggett]
320d6ee24ea59c0dbcb2c08038586ef03c6a191dMark Andrews *) Throw an error message if an attempt is made to use the LDAPTrustedCA
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews or LDAPTrustedCAType directives in a VirtualHost. PR 26390
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a potential segfault if the bind password in the LDAP cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is NULL. PR 28250. [Jari Ahonen <jah progress.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Quotes cannot be used around require group and require dn
0f8f42a09eb102fa88e4d2caacdafbeda931f94cMark Andrews directives, update the documentation to reflect this. Also add
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews quotes around the dn and group within debug messages, to make it
8d77066ba0feb1353a7c85f929c365c5103f3976Mark Andrews more obvious why authentication is failing if quotes are used in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews error. PR 19304. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The Microsoft LDAP SDK escapes filters for us, stop util_ldap
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from escaping filters twice when the backslash character is used.
3e7b37e01ba3efc873486140734fd24788092a30Mark Andrews PR 24437. [Jess Holle <jessh ptc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Overhaul handling of LDAP error conditions, so that the util_ldap_*
54532c54130de8f374465bb23d5576fc3257ea96Mark Andrews functions leave the connections in a sane state after errors have
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134,
020f7361a49c5b1cda91927cf8206c1283fc7496Mark Andrews 27271 [Graham Leggett]
1c0927d8a091effcf9b2dc5baa533927c113bd5cMark Andrews *) mod_ldap calls ldap_simple_bind_s() to validate the user
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews credentials. If the bind fails, the connection is left
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in an unbound state. Make sure that the ldap connection
446ff1959cc3e963778c8770204b72c9e7c7df5aMark Andrews record is updated to show that the connection is no longer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bound. [Brad Nicholes]
70f8c70cdd3ca68edcf9d448eb508abf3697719aMark Andrews *) Ensure that lines in the request which are too long are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews properly terminated before logging.
33c538015323f4576679e427088372eea614feebMark Andrews [Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>]
ac65e45126dda424b5cc9d2865b353dc0ec23e1eMark Andrews *) Update the bind credentials for the cached LDAP connection to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews reflect the last bind. This prevents util_ldap from creating
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews unnecessary connections rather than reusing cached connections.
0423090da198f31ac615cd3a8f7d83aada32d5b3Mark Andrews [Brad Nicholes]
d9e0458a890c49f977fdcf9d995681f546f7c427Mark Andrews *) mod_isapi: GetServerVariable returned improperly terminated header
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews fields given "ALL_HTTP" or "ALL_RAW". PR 20656.
de4976142190ae84ed3e4099f3e0fc07781748a3Mark Andrews [Jesse Pelton <jsp pkc.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews size. PR 20617. [Jesse Pelton <jsp pkc.com>]
0b09763c354ec91fb352b6b4cea383bd0195b2d8Mark Andrews *) mod_dav: Fix a problem that could cause crashes when manipulating
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews locks on some platforms. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_headers no longer crashes if an empty header value should
e0fa16fe191d619d2cd05a039067414409329878Mark Andrews be added. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault in mod_expires, which occured under certain
93da96c1cfd5f3c47169855867dd18db00c8a386Mark Andrews circumstances. PR 28047. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) htpasswd: use apr_temp_dir_get() and general cleanup
7d389c324cc032475f9d219a12ab84bacbd7fbaaMark Andrews [Guenter Knauf <eflash gmx.net>, Thom May]
cd9bfe5b256a3e84ba090e8fcb5de0d6c50974aeMark Andrews *) mod_ssl: Fix memory leak in session cache handling. PR 26562
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix potential segfaults when performing SSL shutdown from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a pool cleanup. PR 27945. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add forensic logging module (mod_log_forensic).
e2cf63c5df79eb7c8b86b6278289883fa760cda5Mark Andrews [Ben Laurie]
c3184b4e2a1f238f4615d36fee79df82b1711344Mark Andrews *) logresolve: Allow size of log line buffer to be overridden at
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews build time (MAXLINE). PR 27793. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the comment delimiter in htdbm so that it correctly parses the
9b7c023fe6dc88ba1e69ace1f7c3ade40c6475f9Mark Andrews username comment. Also add a terminate function to allow NetWare
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to pause the output before the screen is destroyed.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Guenter Knauf <eflash gmx.net>, Brad Nicholes]
0a1fa37641b59c56d02f5390917a49e4987f0f75Mark Andrews *) Fix crash when Apache was started with no Listen directives.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Michael Corcoran <mcorcoran warpsolutions.com>]
c61ec97ae0b859914ee26e213fe792f86a157990Mark Andrews *) core_output_filter: Fix bug that could result in sending
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews garbage over the network when module handlers construct
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bucket brigades containing multiple file buckets all referencing
49f7d1585e0e4f1ffa1667391dd7ae1c4d3d4e81Mark Andrews the same open file descriptor. [Bojan Smojver]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix memory corruption problem with ap_custom_response() function.
0b1af13f680a865521105a77ee192024b5af33c4Mark Andrews The core per-dir config would later point to request pool data
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that would be reused for different purposes on different requests.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe]
945cb085b859dbfc6a883813dda03c83e06995d3Mark Andrews *) Win32: Tweak worker thread accounting routines to eliminate
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server hang when number of Listen directives in httpd.conf
5ed4b0d4452967d9b3aaf7a22a2956a6ee67a614Mark Andrews is greater than or equal to the setting of ThreadsPerChild.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.49
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0174 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fix starvation issue on listening sockets where a short-lived
a483e67c4cdcbfc29ddc62b5a2d0d99b1c542fadMark Andrews connection on a rarely-accessed listening socket will cause a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews child to hold the accept mutex and block out new connections until
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews another connection arrives on that rarely-accessed listening socket.
d73de275987d29627dc11d5bd4a22874a29f7874Mark Andrews With Apache 2.x there is no performance concern about enabling the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews logic for platforms which don't need it, so it is enabled everywhere
8f9664521724eefc39728c092d0bc6be527e1496Mark Andrews except for Win32. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgid: Fix storage corruption caused by use of incorrect pool.
da091cda77fa951e682119c3df84f60a62bed702Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: find_read_listeners was not correctly handling multiple
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews listeners on the Win32DisableAcceptEx path. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug in mod_usertrack when no CookieName is set. PR 24483.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Manni Wood <manniwood planet-save.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some piped log problems: bogus "piped log program '(null)'
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews failed" messages during restart and problem with the logger
c8aa2c83113229a59069cbd05c735896f51b886bMark Andrews respawning again after Apache is stopped. PR 21648, PR 24805.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
a1edcd1b8d430650d85ec0962cd32efde76a71fbMark Andrews *) Fixed file extensions for real media files and removed rpm extension
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from mime.types. PR 26079. [Allan Sandfeld <kde carewolf.com>]
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews *) Remove compile-time length limit on request strings. Length is
7c23b791f4ae8f0c4c2982a91d13c0ecb15ee798Mark Andrews now enforced solely with the LimitRequestLine config directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Send the Close Alert message to the peer before closing
8989de1059c6292fc43ce507df4991224af2d789Mark Andrews the SSL session. PR 27428. [Madhusudan Mathihalli, Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2004-0113 (cve.mitre.org)
acc8b7ac3d16538bf223545bbf71899b9accaebbMark Andrews mod_ssl: Fix a memory leak in plain-HTTP-on-SSL-port handling.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 27106. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix bug in passphrase handling which could cause spurious
b9efcf0a377381b29960137e54ecaf4db85a35c8Mark Andrews failures in SSL functions later. PR 21160. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_log_config: Fix corruption of buffered logs with threaded
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPMs. PR 25520. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_include's expression parser to recognize strings correctly
e396939d492e6afa8e31a8dc11d7317c9e62f15fMark Andrews even if they start with an escaped token. [André Malo]
9549a96654ead15b264c9159d48eb485e4f9db55Mark Andrews *) Add fatal exception hook for use by diagnostic modules. The hook
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is only available if the --enable-exception-hook configure parm
3d822d111c00e70830dc163a5298196a1e7db29fMark Andrews is used and the EnableExceptionHook directive has been set to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "on". [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod_auth_digest to work with sub-requests with different
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews methods than the original request. PR 25040.
4c83dd7f22b19c75afdd311684f6ba0faa24e8d8Mark Andrews [Josh Dady <jpd indecisive.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix "Expected </Foo>> but saw </Foo>" errors in nested,
5f4098e478ae913cdc1bb8851599b8f2431050d3Mark Andrews argumentless containers.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ["Philippe M. Chiasson" <gozer cpan.org>]
57e0f58b3fd4cb49a57200c8af9cb58d984d871aMark Andrews *) mod_auth_ldap: Fix some segfaults in the cache logic. PR 18756.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Matthieu Estrade <apache moresecurity.org>, Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgid: Restart the cgid daemon if it crashes. PR 19849
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Glenn Nielsen <glenn apache.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The whole codebase was relicensed and is now available under
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the Apache License, Version 2.0 (http://www.apache.org/licenses).
0cd36f1d15caf6622ec3128544d4238ad180a300Mark Andrews [Apache Software Foundation]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed cache-removal order in mod_mem_cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jean-Jacques Clar, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_setenvif: Fix the regex optimizer, which under circumstances
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews treated the supplied regex as literal string. PR 24219.
29f5bb81e2d1d72fc6e44c87404bd4598a34df94Mark Andrews [André Malo]
ddc592d128cdde85ada64efbda95981c10c4c03cMark Andrews *) ap_mpm.h: Fix include guard of ap_mpm.h to reference mpm
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews instead of mmn. [André Malo]
88c2b83cc548a217cc92a2bf75ca1ef1d4237d4fMark Andrews *) mod_rewrite: Catch an edge case, where strange subsequent RewriteRules
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews could lead to a 400 (Bad Request) response. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Keep focus of ITERATE and ITERATE2 on the current module when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the module chooses to return DECLINE_CMD for the directive.
c7c1bf7dc167ff164193bc04f33a22109e4c0829Mark Andrews PR 22299. [Geoffrey Young <geoff apache.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add support for IMT minor-type wildcards (e.g., text/*) to
9e205a3c51e68d19a7ed03244d45b14b3e0d69afMark Andrews ExpiresByType. PR#7991 [Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault in mod_mem_cache cache_insert() due to cache size
e823642ec0c167af8f7db01c96ba0279165a61f3Mark Andrews becoming negative. PR: 21285, 21287
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard, Massimo Torquati, Jean-Jacques Clar]
93e6ebcd0a0f044ba2add424c265b5e0bb4c8afdMark Andrews *) core.c: If large file support is enabled, allow any file that is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews greater than AP_MAX_SENDFILE to be split into multiple buckets.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This allows Apache to send files that are greater than 2gig.
8ac1acc30d0f405222ffa7b2b93131d9d4e18599Mark Andrews Otherwise we run into 32/64 bit type mismatches in the file size.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) proxy_http fix: mod_proxy hangs when both KeepAlive and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ProxyErrorOverride are enabled, and a non-200 response without a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews body is generated by the backend server. (e.g.: a client makes a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request containing the "If-Modified-Since" and "If-None-Match"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers, to which the backend server respond with status 304.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Wiseman <gwiseman fscinternet.com>, Richard Reiner]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav: Reject requests which include an unescaped fragment in the
a04a323f9a1ebd4766fc577e11bf3c22bdaf5516Mark Andrews Request-URI. PR 21779. [Amit Athavale <amit_athavale lycos.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Build array of allowed methods with proper dimensions, fixing
dd0228908543562781a4c0d8773ae87d4c530633Mark Andrews possible memory corruption. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix potential segfault on lookup of SSL_SESSION_ID.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 15057. [Otmar Lendl <lendl nic.at>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix streaming output from an nph- CGI script. PR 21944
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_usertrack no longer inspects the Cookie2 header for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the cookie name. PR 11475. [Chris Darrochi <chrisd pearsoncmg.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_usertrack no longer overwrites other cookies.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 26002. [Scott Moore <apache nopdesign.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker MPM: fix stack overlay bug that could cause the parent
c311ed52d45334e182a093efad827fe4cbe7e686Mark Andrews process to crash. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Add Win32DisableAcceptEx directive. This Windows
79a6a33184abff1999ba13b10922ccb34a2758a5Mark Andrews NT/2000/CP directive is useful to work around bugs in some
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews third party layered service providers like virus scanners,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews VPN and firewall products, that do not properly handle
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews WinSock 2 APIs. Use this directive if your server is issuing
5d26560e2b93e1aa0334931ec6ccb6045c3581fcMark Andrews AcceptEx failed messages.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Allan Edwards, Bill Rowe, Bill Stoddard, Jeff Trawick]
2b1c71b134eb92f2e297a56f778838e42f41c880Mark Andrews *) Make REMOTE_PORT variable available in mod_rewrite.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 25772. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a long delay with CGI requests and keepalive connections on
d6fbfd28ea82e425740de903ddc67f7d9e9f82e7Mark Andrews AIX. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex: Add 'XHTML' option in order to allow switching between
7791dd06ea69d0fb2494788ad4c24d568f40bcdfMark Andrews HTML 3.2 and XHTML 1.0 output. PR 23747. [André Malo]
091b098b49a4f84f459abd46451955a18abd6d40Mark Andrews *) Add XHTML Document Type Definitions to httpd.h (minor MMN bump).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
7d3458a972a902740eb142044655aba6c6ffb9acMark Andrews *) mod_ssl: Advertise SSL library version as determined at run-time rather
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews than at compile-time. PR 23956. [Eric Seidel <seidel apple.com>]
7c441b7f4afdedb6e5a99f113a4f926a005fa950Mark Andrews *) mod_ssl: Fix segfault on a non-SSL request if the 'c' log
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews format code is used. PR 22741. [Gary E. Miller <gem rellim.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix build with parallel make. PR 24643. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: In external rewrite maps lookup keys containing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a newline now cause a lookup failure. PR 14453.
7f20fd8ebb0cabc8f935381d958f8371990c9212Mark Andrews [Cedric Gavage <cedric.gavage unixtech.be>, André Malo]
8695d7b357789bedff63e5b19c5ab25cd58fcd4bMark Andrews *) Backport major overhaul of mod_include's filter parser from 2.1.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The new parser code is expected to be more robust and should
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews catch all of the edge cases that were not handled by the previous one.
f76c4ebaf586a693521f018fbc617c292c1555d7Mark Andrews The 2.1 external API changes were hidden by a wrapper which is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews expected to keep the API backwards compatible. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a hook (insert_error_filter) to allow filters to re-insert
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews themselves during processing of error responses. Enable mod_expires
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to use the new hook to include Expires headers in valid error
81e302788a444b81231a7cda721548a020ae5660Brian Wellington responses. This addresses an RFC violation. It fixes PRs 19794,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 24884, and 25123. [Paul J. Reder]
c00a1eb423623442aff428336bb55590f79013bbMark Andrews *) Add Polish translation of error messages. PR 25101.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Tomasz Kepczynski <tomek jot23.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add AP_MPMQ_MPM_STATE function code for ap_mpm_query. (Not yet
d972fa317829804a692e46a34b6f27a33f861d9dMark Andrews supported for BeOS or OS/2 MPMs.) [Jeff Trawick, Brad Nicholes,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add mod_status hook to allow modules to add to the mod_status
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews report. [Joe Orton]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix htdbm to generate comment fields in DBM files correctly.
03fae7ef2173cdf32918853b047d95d9046574ccMark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav: Use bucket brigades when reading PUT data. This avoids
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews problems if the data stream is modified by an input filter. PR 22104.
ad611e746d6fdcbb9e67da361a3a039c226a9236Mark Andrews [Tim Robbins <tim robbins.dropbear.id.au>, André Malo]
603d1d1e20fbffc986b3aec93379bb4f6ac37afcMark Andrews *) Fix RewriteBase directive to not add double slashes. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve 'configure --help' output for some modules. [Astrid Keßler]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct UseCanonicalName Off to properly check incoming port number.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix slow graceful restarts with prefork MPM. [Joe Orton]
1fb264ed3aa861a67d7bab9aeb5aea5836e03c14Mark Andrews *) Fix a problem with namespace mappings being dropped in mod_dav_fs;
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if any property values were set which defined namespaces these
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews came out mangled in the PROPFIND response. PR 11637.
608c703d1231e0b1f291637ca5361b773afcdbf1Mark Andrews [Amit Athavale <amit_athavale persistent.co.in>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav: Return a WWW-auth header for MOVE/COPY requests where
feb8ae093115b36ac061e23d0227ea06f51950a3Mark Andrews the destination resource gives a 401. PR 15571. [Joe Orton]
27151990b2b48f027f7f01972fe8e0dfa1df52d3Mark Andrews *) SECURITY: CVE-2003-0020 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Escape arbitrary data before writing into the errorlog. Unescaped
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews errorlogs are still possible using the compile time switch
95b604c5e972a5e9eb713bf45cf0b2d9b98da27eMark Andrews "-DAP_UNSAFE_ERROR_LOG_UNESCAPED". [Geoffrey Young, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex / core: Don't fail to show filenames containing
2211bec6a0626b681fdf5a8e4406555ef76ddf70Mark Andrews special characters like '%'. PR 13598. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_status: Report total CPU time accurately when using a threaded
fcb2ecdb52a594a5c0d07c2e98e67c14708c16dfMark Andrews MPM. PR 23795. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix memory leak in handling of request bodies during reverse
3561e645d77448b20b1676680b08c76d559e5335Mark Andrews proxy operations. PR 24991. [Larry Toppi <larry.toppi citrix.com>]
b9c80c8bddbb88384d7baef297a873b5f8715e49Mark Andrews *) Win32 MPM: Implement MaxMemFree to enable setting an upper
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews limit on the amount of storage used by the bucket brigades
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in each server thread. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modified the cache code to be header-location agnostic. Also
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews fixed a number of other cache code bugs related to PR 15852.
27269e9dd45b619160f90db1a0f6b2b3f6f4bbb8Mark Andrews Includes a patch submitted by Sushma Rai <rsushma novell.com>.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This fixes mod_mem_cache but not mod_disk_cache yet so I'm not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews closing the PR since that is what they are using. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) complain via error_log when mod_include's INCLUDES filter is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews enabled, but the relevant Options flag allowing the filter to run
84ef147b1fa0aed15cade55478ed647d15f7b094Mark Andrews for the specific resource wasn't set, so that the filter won't
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews silently get skipped. next remove itself, so the warning will be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews logged only once [Stas Bekman, Jeff Trawick, Bill Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_info: HTML escape configuration information so it displays
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews correctly. PR 24232. [Thom May]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Restore the ability to add a description for directories that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews don't contain an index file. (Broken in 2.0.48) [André Malo]
986be654feec852eb9da0d15599f18d0035e569bMark Andrews *) Fix a problem with the display of empty variables ("SetEnv foo") in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_include. PR 24734 [Markus Julen <mj zermatt.net>]
c26c65b7a0d036e78bfc73f3e7e0817adb0365c0Mark Andrews *) mod_log_config: Log the minutes component of the timezone correctly.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 23642. [Hong-Gunn Chew <hgbug gunnet.org>]
43733a83ed92359555c0dcc766e04216ba858309Mark Andrews *) mod_proxy: Fix cases where an invalid status-line could be sent
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to the client. PR 23998. [Joe Orton]
bda64555f62216c3e785338f372a7ad9b79c197cMark Andrews *) mod_ssl: Fix segfaults at startup if other modules which use OpenSSL
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews are also loaded. [Joe Orton]
39c2b741427eedafe5054909773c2e121c078b72Mark Andrews *) mod_ssl: Use human-readable OpenSSL error strings in logs; use
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews thread-safe interface for retrieving error strings. [Joe Orton]
de36c606c52ad51e5abca6e42faf655937e5ed10Mark Andrews *) mod_expires: Initialize ExpiresDefault to NULL instead of "" to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews avoid reporting an Internal Server error if it is used without
23cb957a81a51a9656917ea98d0ae56b7abdcaccMark Andrews having been set in the httpd.conf file. PR: 23748, 24459
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo, Liam Quinn <liam htmlhelp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex: Don't omit the <tr> start tag if the SuppressIcon
28d8b4118da7abed531ca09136a6d1402837d721Mark Andrews option is set. PR 21668. [Jesse Tie-Ten-Quee <highos highos.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_include no longer allows an ETag header on 304 responses.
d6c0627d1e4d841eac9576427f2d4a0cf9a47e2cMark Andrews PR 19355. [Geoffrey Young <geoff apache.org>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) EBCDIC: Convert header fields to ASCII before sending (broken
5d7b81d2a49d237ff5e73fdc4bd3394a3ee29392Mark Andrews since 2.0.44). [Martin Kraemer]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the inability to log errors like exec failure in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ext_filter/mod_cgi script children. This was broken after
8f63de30293716a22054e7db47f27e81bab545c5Mark Andrews such children stopped inheriting the error log handle.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
caa8797a00ccb1a02f1690dda5b4aeda9a1db5a7Mark Andrews *) Fix mod_info to use the real config file name, not the default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config file name. [Aryeh Katz <aryeh secured-services.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Set the scoreboard state to indicate logging prior to running
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews logging hooks so that server-status will show 'L' for hung loggers
f3222d48cc3d81706d198faa00dea9720eb0768dMark Andrews instead of 'W'. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.48
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0789 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_cgid: Resolve some mishandling of the AF_UNIX socket used to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews communicate with the cgid daemon and the CGI script.
0062c1ddfe0b2f0a4e206a5d460d8e7d58e29b80Brian Wellington [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0542 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fix buffer overflows in mod_alias and mod_rewrite which occurred
48b0f5ff87f0a5a138129bcd855fd72908491321Andreas Gustafsson if one configured a regular expression with more than 9 captures.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
cde7dfea4c1267a2b526114f4ea80fe9db1fc557Brian Wellington *) mod_include: fix segfault which occured if the filename was not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews set, for example, when processing some error conditions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 23836. [Brian Akins <bakins web.turner.com>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix the config parser to support <Foo>..</Foo> containers (no
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews arguments in the opening tag) supported by httpd 1.3. Without
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews this change mod_perl 2.0's <Perl> sections are broken.
2ca2e1a1ceec59a40f977f01ba8e8f4c0424c484Brian Wellington ["Philippe M. Chiasson" <gozer cpan.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgid: fix a hash table corruption problem which could
84185d19c7a9ef1ac23cc6236c8773697d4efeb1Brian Wellington result in the wrong script being cleaned up at the end of a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request. [Jeff Trawick]
683f10428e292811317df38fa324f242abbf7384Mark Andrews *) Update httpd-*.conf to be clearer in describing the connection
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews between AddType and AddEncoding for defining the meaning of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews compressed file extensions. [Roy Fielding]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Don't die silently when failing to open RewriteLogs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 23416. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Fix mod_rewrite's support of the [P] option to send
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews rewritten request using "proxy:". The code was adding multiple "proxy:"
852fa3b2e32719d094f3ad6513238841ae1f078bMark Andrews fields in the rewritten URI. PR: 13946.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Eider Oliveira <eider bol.com.br>]
8569ab045a4cf6ecd1b5a3354ddb1c93ef34ea57Brian Wellington *) cache_util: Fix ap_check_cache_freshness to check max_age, smax_age, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews expires as directed in RFC 2616. [Thomas Castelle <tcastelle generali.fr>]
a5c077e40c784cf9e25c95a1ab94db2faab04ae9Brian Wellington *) Ensure that ssl-std.conf is generated at configure time, and switch
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to using the expanded config variables to work the same as
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix segfaults after renegotiation failure. PR 21370
97527fc03cdb061759e2c9529c670ac1c190ef84Brian Wellington *) mod_autoindex: If a directory contains a file listed in the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DirectoryIndex directive, the folder icon is no longer replaced
e1c2a8b9c120bcfc2f56e866ca3069b8a90c38dbMark Andrews by the icon of that file. PR 9587.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [David Shane Holden <dpejesh yahoo.com>]
b7064914ca566fdd67cf0fe7e82d586cbb596470Mark Andrews *) Fixed mod_usertrack to not get false positive matches on the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user-tracking cookie's name. PR 16661.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Manni Wood <manniwood planet-save.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: Fix the cache code so that responses can be cached
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if they have an Expires header but no Etag or Last-Modified
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers. PR 23130.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_log_config: Fix %b log format to write really "-" when 0 bytes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews were sent (e.g. with 304 or 204 response codes). [Astrid Keßler]
d073663cb45bef2fff5f9a43b9b6006edfc52483Mark Andrews *) Modify ap_get_client_block() to note if it has seen EOS.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
cad61731f8e960d9d99034a2a6eaafe1069c405cMark Andrews *) Fix a bug, where mod_deflate sometimes unconditionally compressed the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews content if the Accept-Encoding header contained only other tokens than
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "gzip" (such as "deflate"). PR 21523. [Joe Orton, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Avoid an infinite recursion, which occured if the name of an included
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config file or directory contained a wildcard character. PR 22194.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix a problem setting variables that represent the
adbb11147cd5d97d140485fa37e85e66e15cf594Mark Andrews client certificate chain. PR 21371 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Unix: Handle permissions settings for flock-based mutexes in
9ab461a6ffed2ae2fe0380c30b69052db7473405Mark Andrews unixd_set_global|proc_mutex_perms(). Allow the functions to be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews called for any type of mutex. PR 20312 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ab: Work over non-loopback on Unix again. PR 21495. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a misleading message from the some of the threaded MPMs when
da5d1cf1b1aa29ae53a0427be49291b04bd60549Mark Andrews MaxClients has to be lowered due to the setting of ServerLimit.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
66291de2060a1569de3fe9c5f0c1225448868f7aMark Andrews *) Lower the severity of the "listener thread didn't exit" message
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to debug, as it is of interest only to developers. PR 9011
6c06bc591a830023e5e7a41cc4b37978b98c0c51Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) MPMs: The bucket brigades subsystem now honors the MaxMemFree setting.
c36f45e354c0d5b6ab9f821bfe315d0ce9d95a29Mark Andrews [Cliff Woolley, Jean-Jacques Clar]
9cec4ca6cac428a46c6d64197c64831dcc02f506Andreas Gustafsson *) Install config.nice into the build/ directory to make
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews minor version upgrades easier. [Joshua Slive]
23fb770906bf1fd98210f16ad660078274242963Mark Andrews *) Fix mod_deflate so that it does not call deflate() without checking
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews first whether it has something to deflate. (Currently this causes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews deflate to generate a fatal error according to the zlib spec.)
0cb27602e5690baa9ab61c7c1430e507536adca7Brian Wellington PR 22259. [Stas Bekman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl: Fix FakeBasicAuth for subrequest. Log an error when an
ff1b064f5e2bf19c8e25f8927d23df5714e666edMark Andrews identity spoof is encountered.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Sander Striker]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Ignore RewriteRules in .htaccess files if the directory
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews containing the .htaccess file is requested without a trailing slash.
880723fb130841459d45695b387651cacd6c9bb8Mark Andrews PR 20195. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ab: Overlong credentials given via command line no longer clobber
8f44fd4f8d5cefc227ab0fe59cbcbc3979fbc9caAndreas Gustafsson the buffer. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_deflate: Don't attempt to hold all of the response until we're
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews done. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Assure that we block properly when reading input bodies with SSL.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 19242. [David Deaves <David.Deaves dd.id.au>, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update mime.types to include latest IANA and W3C types. [Roy Fielding]
cf300e03de3df3ff422db922520bf07c686c86daMark Andrews *) mod_ext_filter: Set additional environment variables for use by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the external filter. PR 20944. [Andrew Ho, Jeff Trawick]
9ac8796f1653d89af589753a3e42c694f35ddd8aMark Andrews *) Fix buildconf errors when libtool version changes. [Jeff Trawick]
242bba8991b030b7764f0bdca3922d75c34ea51eAndreas Gustafsson *) Remember an authenticated user during internal redirects if the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirection target is not access protected and pass it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to scripts using the REDIRECT_REMOTE_USER environment variable.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 10678, 11602. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_include: Fix a trio of bugs that would cause various unusual
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews sequences of parsed bytes to omit portions of the output stream.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 21095. [Ron Park <ronald.park cnet.com>, André Malo, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the header token parsing code to allow LWS between the
02bdc23f8e3ca0f710e0a40daa15941ab1db6bb2Mark Andrews token word and the ':' seperator. [PR 16520]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Kris Verbeeck <kris.verbeeck advalvas.be>, Nicel KM <mnicel yahoo.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Eliminate creation of a temporary table in ap_get_mime_headers_core()
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Joe Schaefer <joe+gmane sunstarsys.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added FreeBSD directory layout. PR 21100.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Sander Holthaus <info orangexl.com>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix NULL-pointer issue in ab when parsing an incomplete or non-HTTP
0cfa2fb26df42f781eca8c4c856d2d0165055bebMark Andrews response. PR 21085. [Glenn Nielsen <glenn apache.org>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Perform child initialization on the rewrite log lock.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This fixes a log corruption issue when flock-based serialization
06a949d2ce8d4b4cbfbf4e7a0335316520aafa46Andreas Gustafsson is used (e.g., FreeBSD). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Don't respect the Server header field as set by modules and CGIs.
0b81e99ddfb01746e667797dedc291fc550d14d3Brian Wellington As with 1.3, for proxy requests any such field is from the origin
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server; otherwise it will have our server info as controlled by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the ServerTokens directive. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.47
8771fbe4a2cee7bebd785a486824833d741c7315Brian Wellington *) SECURITY: CVE-2003-0192 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fixed a bug whereby certain sequences of per-directory
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews renegotiations and the SSLCipherSuite directive being used to
b541c10d0442d9804d94567a97956cec3bd2912dBrian Wellington upgrade from a weak ciphersuite to a strong one could result in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the weak ciphersuite being used in place of the strong one.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ben Laurie]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0253 (cve.mitre.org)
c01237c6bc5ec25063b4aae1799fe4de01a7455bAndreas Gustafsson Fixed a bug in prefork MPM causing temporary denial of service
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when accept() on a rarely accessed port returns certain errors.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Reported by Saheed Akhtar <S.Akhtar talis.com>. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0254 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fixed a bug in ftp proxy causing denial of service when target
6c8abf481df85a67c3f32f5f107b554d3ff5a3edMark Andrews host is IPv6 but proxy server can't create IPv6 socket. Fixed by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the reporter. [Yoshioka Tsuneo <tsuneo.yoshioka f-secure.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY [VU#379828] Prevent the server from crashing when entering
1e4bfff1855795853648f507422b96fc8fecbff1Mark Andrews infinite loops. The new LimitInternalRecursion directive configures
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews limits of subsequent internal redirects and nested subrequests, after
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews which the request will be aborted. PR 19753 (and probably others).
6b31d9c56874d3bd58b420cbe6cd64be502dbe08Andreas Gustafsson [William Rowe, Jeff Trawick, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) core_output_filter: don't split the brigade after a FLUSH bucket if
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews it's the last bucket. This prevents creating unneccessary empty
ee80f4506479e189ca1320eb87ac89188c5a7848Mark Andrews brigades which may not be destroyed until the end of a keepalive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add support for "streamy" PROPFIND responses.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ben Collins-Sussman <sussman collab.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgid: Eliminate a double-close of a socket. This resolves
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews various operational problems in a threaded MPM, since on the
4072dfb9b865c82c24a72e734d54da51a20dfc1eMark Andrews second attempt to close the socket, the same descriptor was
a8fb98aff8a186bf80fa4e48cc3e99a42939dd0aMark Andrews often already in use by another thread for another purpose.
92094d44a2d0cb2b1be58a87299903ba7c436a0cAndreas Gustafsson [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_negotiation: Introduce "prefer-language" environment variable,
d1abb8bb020aacd1ce0da65c2d5d8f7c96ebd52aMark Andrews which allows to influence the negotiation process on request basis
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to prefer a certain language. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make mod_expires' ExpiresByType work properly, including for
b4aeceec736cd16d4c4e98f519c8df79b15fbe45Andreas Gustafsson dynamically-generated documents. [Ken Coar, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.46
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0245 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fixed a bug causing apr_pvsprintf() to crash by sending an overly
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews long string. This can be triggered remotely through mod_dav,
b6b9d8b8434e4eaab74b69cd14fcacf448055ca5Brian Wellington mod_ssl, and other mechanisms.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Reported by David Endler <DEndler iDefense.com>. [Joe Orton]
31f6e44dcaad33d66d607e3a919d4aa59cdbaec5Andreas Gustafsson *) SECURITY: CVE-2003-0189 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fixed a denial-of-service vulnerability affecting basic
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews authentication on Unix platforms related to thread-safety in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_password_validate().
6d6529b5e5ab7223fa2560ebe144bcb82517cef3Mark Andrews Reported by John Hughes <john.hughes entegrity.com>.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix for mod_dav. Call the 'can_be_activity' callback, if provided,
0b07b9482c00060d1ddd551a5dcb8cecbe2c1f65Mark Andrews when a MKACTIVITY request comes in.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ben Collins-Sussman <sussman collab.net>]
c0fe9b0d1b01a9a0883977a362ce4128723a56d6Mark Andrews *) Perform run-time query in apxs for apr and apr-util's includes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) run libtool from the apr install directory (in case that is different
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from the apache install directory) [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) configure.in: Play nice with libtool-1.5. [Wilfredo Sanchez]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) If mod_mime_magic does not know the content-type, do not attempt to
ac1a59e95cfd035f38222e739affd43eafa9eeefMark Andrews guess. PR 16908. [Andrew Gapon <agapon telcordia.com>]
58930ca9802e772afe9f5ccb30f236d201cf60e0Danny Mayer *) ssl session caching(shmht) : Fix a SEGV problem with SHMHT session
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews caching. PR 17864.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Andreas Leimbacher <andreasl67 yahoo.de>, Madhusudan Mathihalli]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a delete flag to htpasswd.
7c014c5bf41dc38802e8889c0a9110204eb1a552Andreas Gustafsson *) Fix mod_rewrite's handling of absolute URIs. The escaping routines
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews now work scheme dependent and the query string will only be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews appended if supported by the particular scheme. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add another check for already compressed content in mod_deflate.
3e42bdfdc901b6b921b02028bd51ca2af8e84adcMark Andrews PR 19913. [Tsuyoshi SASAMOTO <nazonazo super.win.ne.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixes for VPATH builds; copying special.mk and any future .mk files
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from the source tree as well as the build tree (now creates a usable
b20eef7ab022dd984e2e9c12f6a7edf35661d3b0Mark Andrews configuration for apxs), and eliminated redundant -I'nclude paths.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Code fixes, constness corrections and ssl_toolkit_compat.h updates
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for SSLC and OpenSSL toolkit compatibility. Still work remains to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be done to cripple features based on the limitations of RSA's binary
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews distribution of their SSL-C toolkit.
ea01b618d981e58f85071a40550bc7f7565d4509Andreas Gustafsson [William Rowe, Madhusudan Mathihalli, Jeff Trawick]
80dd46d7aab16c42a8c1acf6156c95406a9f20a4Mark Andrews *) Linux 2.4+: If Apache is started as root and you code
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews CoreDumpDirectory, coredumps are enabled via the prctl() syscall.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ap_get_mime_headers_core: allocate space for the trailing null
78bf1ca89505820ed7b03be4bf0c0b53b557f3cdAndreas Gustafsson when folding is in effect.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 18170 [Peter Mayne <PeterMayne SPAM_SUX.ap.spherion.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix --enable-mods-shared=most and other variants. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_log_config: Add the ability to log the id of the thread
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews processing the request via new %P formats. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Use appropriate language codes for Czech (cs) and Traditional Chinese
a89d1aea0cce6a28a3751cd508db67e38d307a5eDanny Mayer (zh-tw) in default config files. PR 9427. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_auth_ldap: Use generic whitespace character class when parsing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "require" directives, instead of literal spaces only. PR 17135.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Hook mod_rewrite's type checker before mod_mime's one. That way the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews RewriteRule [T=...] Flag should work as expected now. PR 19626.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) htpasswd: Check the processed file on validity. If a line is not empty
712bf9b0cc4ed34f4bf33b437f8b0e45853b93ceMark Andrews and not a comment, it must contain at least one colon. Otherwise exit
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews with error code 7. [Kris Verbeeck <Kris.Verbeeck ubizen.com>, Thom May]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem that caused httpd to be linked with incorrect flags
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on some platforms when mod_so was enabled by default, breaking
72499be79fbb68140bd31e0e4ded18a70a5b523bMark Andrews DSOs on AIX. PR 19012 [Jeff Trawick]
90c5477ca11a94b0e7d8071181d69544e1ab9be9Mark Andrews *) By default, use the same CC and CPP with which APR was built.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The user can override with CC and CPP environment variables.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix ap_construct_url() so that it surrounds IPv6 literal address
f3e4c3d6c536973bae92611402ba55277069eba2Mark Andrews strings with []. This fixes certain types of redirection.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 19207. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) forward port of buffer overflow fixes for htdigest. [Thom May]
ca033e166ca9f9dc7bf010065a93af668a09fd44Mark Andrews *) Added AllowEncodedSlashes directive to permit control of whether
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the server will accept encoded slashes ('%2f') in the URI path.
f9321a16fb8dce8999a43a6d4008c54845305401Mark Andrews Default condition is off (the historical behaviour). This permits
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews environments in which the path-info needs to contain encoded
c8bedec446212b07511ded85ba04a9a3d5965ba8Mark Andrews slashes. PR 543, 2389, 3581, 3589, 5687, 7066, 7865, 14639. [Ken Coar]
7a104af70fb3071e7949c4e0e585af18ab362db5Mark Andrews *) When using Redirect in directory context, append requested query
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews string if there's no one supplied by configuration. PR 10961.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
923de3bb9cf4d619de206544975986a22b18196fMark Andrews *) Unescape the supplied wildcard pattern in mod_autoindex. Otherwise
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the pattern will not always match as desired. PR 12596.
2359261a252b339f3cef046cefa10ee1e1d4564dMark Andrews [André Malo]
769cd7d5dd677434c3dfa27cbfdd8cb76296fcdcMark Andrews *) mod_autoindex now emits and accepts modern query string parameter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews delimiters (;). Thus column headers no longer contain unescaped
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ampersands. PR 10880 [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enable ap_sock_disable_nagle for Windows. This along with the
11931cc68d6c8139f507a724e7ca9814eed8b552Mark Andrews addition of APR_TCP_NODELAY_INHERITED to apr.hw will cause Nagle
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to be disabled for Windows. [Allan Edwards]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct a mis-correlation between mpm_common.c and mpm_common.h;
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This patch reverts us to pre-2.0.46 behavior, using the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_sock_disable_nagle noop macro, because ap_sock_disable_nagle
d91d025deffd075db2507d44fab04b79920b3e91Mark Andrews was never compiled on Win32. [Allan Edwards, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a build problem with passing unsupported --enable-layout
985b4f1c8653c6dfaa46652c412838850c0ffb1cMark Andrews args to apr and apr-util. This broke binbuild.sh as well as
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user-specified layout parameters. PR 18649 [Justin Erenkrantz,
1d556695ef3c7918ba5061d7d846122d60f5f6c5Mark Andrews Jeff Trawick]
e9ca87459a20f5e6721b9bd0b28c95fc3d6b843cMark Andrews *) If a Date response header was already set in the headers array,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews this value was ignored in favour of the current time. This meant
ca690f98020f75758bc26f4b5ef1ccf0472a27c3Mark Andrews that Date headers on proxied requests where rewritten when they
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews should not have been. PR: 14376 [Graham Leggett]
137a1f98e3862577ae9ccbb6b735ef63a51c456eMark Andrews *) Add code to buildconf that produces an httpd.spec file from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews httpd.spec.in, using build/get-version.sh from APR.
5cd7e9d4db393c314dd1a761c52d2cb3a4da9b72Andreas Gustafsson [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a segfault when multiple ProxyBlock directives were used.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR: 19023 [Sami Tikka <sami.tikka f-secure.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0134 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews OS2: Fix a Denial of Service vulnerability identified and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews reported by Robert Howard <rihoward rawbw.com> that where device
65775fe205e8ac935313c42062c75460e0bc1514Andreas Gustafsson names faulted the running OS2 worker process. The fix is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews actually in APR 0.9.4. [Brian Havard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0083 (cve.mitre.org)
17b687ef360ba8c07201dc6511a3c975cc1bb2a8Andreas Gustafsson Forward port: Escape special characters (especially control
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews characters) in mod_log_config to make a clear distinction between
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews client-supplied strings (with special characters) and server-side
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews strings. This was already introduced in version 1.3.25.
998358fa900393378c70ad598c2b2e67385089d4Mark Andrews [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_deflate: Check also err_headers_out for an already set
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Content-Encoding: gzip header. This prevents gzip compressed content
bc508906db43dda7eab0988348dd0ae3f3023a9bMark Andrews from a CGI script from being compressed once more. PR 17797.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
b352902413608d0eb310c4bb45412fa45734afbcAndreas GustafssonChanges with Apache 2.0.45
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix possible segfaults under obscure error conditions within the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cgid daemon. [Jeff Trawick, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2003-0132 (cve.mitre.org)
72e8c079c4c6dc66d565cf89ebf6feb5fa2dea33Mark Andrews Close a Denial of Service vulnerability identified by David
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Endler <DEndler iDefense.com> on all platforms. An unlimited
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stream of newlines were acceptable between requests where each
c8ab83c08e5227b5146295a9ef4a96d61b066b67Andreas Gustafsson <lf> would allocate an 80 byte buffer, leading very quickly to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews memory exahustion. [Brian Pane]
4e57d3ff7d92abdef4b0b6aebc23a9dfae2ba040Andreas Gustafsson *) Added an rpm build script.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett, Joe Orton <jorton redhat.com>]
081cff0c33514a5dc63ab794fc199c07377ab756Mark Andrews *) Simpler, faster code path for request header scanning [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: Eliminated leaks of several file descriptors to child
d352f188cb9e3820054b7451384a3d910619b4a1Andreas Gustafsson processes, such as CGI scripts. This fix depends on the APR library
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews release 0.9.2 or later (0.9.3 was distributed with the httpd
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews source tarball for Apache 2.0.45.) PR 17206
3d38596530c389610494e6a6ba70d9f5dc9717c5Andreas Gustafsson [Christian Kratzer <ck cksoft.de>, Bjoern A. Zeeb <bz zabbadoz.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix path handling of mod_rewrite, especially on non-unix systems.
a7cb695600c3c14ac12676f0fb1e179690c5883cMark Andrews There was some confusion between local paths and URL paths.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 12902. [André Malo]
b19619260fbd447b0fe3e709b2cc8ae38f27ec3fMark Andrews *) Prevent endless loops of internal redirects in mod_rewrite by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews aborting after exceeding a limit of internal redirects. The
1500a4fe5da9475d5918b27b566a1278ec6b54ebAndreas Gustafsson limit defaults to 10 and can be changed using the RewriteOptions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive. PR 17462. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Avoid busy wait (consuming all the CPU idle cycles) when
c615c2ddce6c08e5a26d9ca61742a20fa8dc1938Mark Andrews all worker threads are busy.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Igor Nazarenko <igor_nazarenko hotmail.com>]
31d3464c0c0a35236c7924f698c5a8a66a9ed534Mark Andrews *) Keep the subrequest filter in place when a subrequest is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirected. PR 15423. [Jeff Trawick]
2f6d1483f665d86501049199b9698554da0eacb0Mark Andrews *) you can now specify the compression level for mod_deflate.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman, Stephen Pierzchala <stephen pierzchala.com>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Michael Schroepl <Michael.Schroepl telekurs.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_deflate: Extend the DeflateFilterNote directive to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allow accurate logging of the filter's in- and outstream.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow SSLMutex to select/use the full range of APR locking
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mechanisms available to it. Also, fix the bug that SSLMutex uses
4574714ad44ba97f53425fe8d21b7ecb00ac83b9Andreas Gustafsson APR_LOCK_DEFAULT no matter what. PR 8122 [Jim Jagielski,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Martin Kutschker <martin.t.kutschker blackbox.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Restore the ability of htdigest.exe to create files that contain
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews more than one user. PR 12910. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve binary compatibility of the core between debug (aka
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews maintainer-mode) and a non-debug compile.
cf70df7d0e24401a358f0b9c1a616ad0e8c783a6Mark Andrews [Sander Striker]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_usertrack: don't set the cookie in subrequests. This works
9234d92d4e274791eff42cc4ea5766ed7a281b17Mark Andrews around the problem that cookies were set twice during fast internal
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirects. PR 13211. [André Malo]
0cf9ce19cc05a60f85ec610106a983fe806ebb77Andreas Gustafsson *) mod_autoindex no longer forgets output format and enabled version
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews sort in linked column headers. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Use .sv instead of .se as extension for Swedish documents in the
2ba574f329c14376d26d7c0f22c89d7a978a2625Mark Andrews default configuration. PR 12877. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Updated mod_ldap and mod_auth_ldap to support the Novell LDAP SDK SSL
3c3fe072252aecffae43e6349125663c315b092dAndreas Gustafsson and standardized the LDAP SSL support across the various LDAP SDKs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Isolated the SSL functionality to mod_ldap rather than speading it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews across mod_auth_ldap and mod_ldap. Also added LDAPTrustedCA
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and LDAPTrustedCAType directives to mod_ldap to allow for a more
05a4a299b599195ca6ede9395b245956a8c3a790Mark Andrews common method of specifying the SSL certificate.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dave Ward, Brad Nicholes]
3ad07fa335d40330cd1859da42e67f2457443990Andreas Gustafsson *) Fixed mod_ssl's SSLCertificateChain initialization to no longer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews skip the first cert of the chain by default. This misbehavior
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was introduced in 2.0.34. PR 14560 [Madhusudan Mathihalli]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgi, mod_cgid, mod_ext_filter: Log errors when scripts cannot
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be started on Unix because of such problems as bad permissions,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bad shebang line, etc. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix 64-bit problem in mod_ssl input logic.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix potential memory leaks in mod_deflate on malformed data. PR 16046.
62a3dbe63e833f2eaf613393399ea4667d8de28dAndreas Gustafsson [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rewrite ap_xml_parse_input to use bucket brigades. PR 16134.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
9bdb01e6c382e897572791b12190472955994d87Mark Andrews *) Fix segfault which occurred when a section in an included
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configuration file was not closed. PR 17093. [André Malo]
e69b9ffb0f8b4d1117a682908c9143ebe3efcd6bAndreas Gustafsson *) Enhance the behavior of mod_isapi's WriteClient() callback to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews provide better emulation for isapi modules that presume that the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews first WriteClient() call may send status and headers. An example
a77ad145d0109081c5da6ac40a2303369db89735Andreas Gustafsson of WriteClient() abuse is the foxisapi module, which relies on
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that assumpion and now works. [William Rowe, Milan Kosina]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Check the return value of ap_run_pre_connection(). So if the
61d5bfc06be978ea962b1c64309894ac80351771Mark Andrews pre_connection phase fails (without setting c->aborted)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_run_process_connection is not executed. [Stas Bekman]
ada9b8ab20b81716c7ff1f4f3365929b2f7c8ff8Mark Andrews *) Fixed a problem with mod_ldap which caused it to fault when caching
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was disabled. Needed to make sure that the code did not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews attempt to use the cache if it didn't exist. Also fixed some memory
1beaa9e45738ad18cb7cae55aea95a1b16a14f94Andreas Gustafsson leaks which were due to not releasing LDAP resources on error
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews conditions. [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Hook mod_proxy's fixup before mod_rewrite's fixup, so that by
bb60abb44549428414cd55a022f2b8cc4488f7adAndreas Gustafsson mod_rewrite proxied URLs will not be escaped accidentally by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_proxy's fixup. PR 16368 [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) While processing filters on internal redirects, remember seen EOS
024face21cdfbfc7a862a3be061e6780533ef755Andreas Gustafsson buckets also in the request structure of the redirect issuer(s). This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews prevents filters (such as mod_deflate) from adding garbage to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews response. PR 14451. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) suexec: Be more pedantic when cleaning environment. Clean it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews immediately after startup. PR 2790, 10449.
f953788d75c7df2db43907c68da18ed75c235dd3Andreas Gustafsson [Jeff Stewart <jws purdue.edu>, André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix apxs to insert LoadModule directives only outside of sections.
fbdde79262a4ba2bdf4bfae61167026b3220488aAndreas Gustafsson PR 8712, 9012. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix suexec compile error under SUNOS4, where strerror() doesn't
fbdde79262a4ba2bdf4bfae61167026b3220488aAndreas Gustafsson exist. PR 5913, 9977.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix If header parsing when a non-mod_dav lock token is passed to it.
3fc4c1434d7ac377c720640e2e925a3af567cccbMark Andrews PR 16452. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_auth_digest no longer tries to guess AuthDigestDomain, if it's
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not specified. Now it assumes "/" as already documented. PR 16937.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Try to log an error if a piped log program fails. Try to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews restart a piped log program in more failure situations. Fix an
5f7516bee5ace9542701f23fc7723a3e3196802aMark Andrews existing problem with error handling in piped_log_spawn(). Use
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews new APR apr_proc_create() features to prevent Apache from starting
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on Unix* in most cases where a piped log program can be started,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and add log messages for the other situations. *Other platforms
2e24e82fc3551e3228bcacaa7c45cb61daa49195Mark Andrews already failed Apache initialization if a piped log program
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews couldn't be started. PR 15761 [Jeff Trawick]
d5169236b7260d447e672db8256fdd7c70f5ee1dMark Andrews *) Fix mod_cern_meta to not create empty metafiles when the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews metafile searched for does not exist. PR 12353
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Owen Rees <owen_rees hp.com>]
df7596a03eea7f1c2df89bd63d3bd4b73f274565Mark Andrews *) Introduce debugging symbols for Win32 release builds, both .pdb
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and .dbg files (older debuggers and Dr. Watson-type utilities
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on WinNT or Win9x don't support the newer .pdb flavor.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Allen Edwards, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug where 'Satisfy Any' without an AuthType lost all MIME
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews information (and more). Related to PR 9076. [André Malo]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_file_cache: fix segfault serving mmaped cached files.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b923e278535b4e8d264998a85a6ae1eb4b3aa4c6Andreas Gustafsson *) mod_file_cache: fixed a segfault when multiple MMapFile directives
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews were used. PR 16313. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a nasty segfault in mmap_bucket_setaside() caused by passing
769ef0b7bdc9520dd62d2f440ea36bc020e88934Andreas Gustafsson an incompatible pointer type to mmap_bucket_destroy(void*).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Gerard Eviston <geviston bigpond.net.au>]
9e46f410e716f73abb345be215ccb4c61782b718Andreas Gustafsson *) Enable the -n name parameter on NetWare to allow the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews administrator to rename the Apache console screen
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed piped access logs on Win32 by disabling OTHER_CHILD
b09f4e054cbe67b93a5ff62d511ee25945038943Mark Andrews support by default in APR. More development is required
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to deploy OTHER_CHILD on Win32. [William Rowe]
40dd9cb8cc240c33d820fe79f176ed51e4c06a1aMark Andrews *) Use saner default config values for suexec. PR 15713.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_rewrite: Allow "RewriteEngine Off" even if no "Options FollowSymlinks"
96ea98af241ef00395f4e61de7e2dacfd9941afcMark Andrews (or SymlinksIfOwnermatch) is set. PR 12395. [André Malo]
54c4aa0f62aebeb01b6861ee068c1044433fe8feMark Andrews *) apxs: Include any special APR ld flags when linking the DSO.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This resolves problems on AIX when building a DSO with apxs+gcc.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added character set support to mod_auth_LDAP to allow it to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews convert extended characters used in the user ID to UTF-8
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews before authenticating against the LDAP directory. The new
846474d5a6aa21cebb3e94243a11faa5c20200bfAndreas Gustafsson directive AuthLDAPCharsetConfig is used to specify the config
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews file that contains the character set conversion table.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
7655e78c366cc0d25e24e2a96ba58e04a96042faAndreas Gustafsson *) Don't remove the Content-Length from responses in mod_proxy
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR: 8677 [Brian Pane]
6859033d425170380bcfac4809257bc6e9b60383Andreas Gustafsson *) Ensure LDAP version is set to v3 on every bind. PR 14235.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Sergey A. Lipnevich <sergeyli pisem.net>]
f558da602e8b74ed181d9189f20bf32dfa6d8723Brian Wellington *) Fix mod_ldap to open an existing shared memory file should one
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews already exist. PR 12757. [Scooter Morris <scooter gene.com>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the ulimit command used by apachectl on Tru64. PR 13609.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Joseph Senulis <Joseph.Senulis dnr.state.wi.us>, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the ulimit command used by apachectl on AIX so that it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews works in all locales. [Jeff Trawick]
808b909f27c30d36b27efb5aa5ef2d18f83b6d4bAndreas Gustafsson *) mod_ext_filter: Fix a problem building argument lists which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews occasionally caused exec to fail. PR 15491. [Jeff Trawick]
640923da589bc5b8492ac407ef89ea1ee9a1c358Andreas GustafssonChanges with Apache 2.0.44
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex: Bring forward the IndexOptions IgnoreCase option
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from Apache 1.3. PR 14276
d9e690eb71bde3c748208733ba40a34e9d0ba29dAndreas Gustafsson [David Shane Holden <dpejesh yahoo.com>, William Rowe]
1299e93989afbe1fee0739811b05fd1641ea14aeAndreas Gustafsson *) mod_mime: Workaround to prevent a segfault if r->filename=NULL
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Reorder the definitions for mod_ldap and mod_auth_ldap within
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config.m4 to make sure the parent mod_ldap is defined first.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This ensures that mod_ldap comes before mod_auth_ldap in the
0bd1b2fbfed4aa489e9d5fcbc7f48acb96ba7248Mark Andrews httpd.conf file, which is necessary for mod_auth_ldap to load.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 14256 [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the building of cgi command lines when the query string
1de63e34f163b7a4708a6ad1779f93ae7636b92eAndreas Gustafsson contains '='. PR 13914 [Ville Skyttä <ville.skytta iki.fi>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rename CacheMaxStreamingBuffer to MCacheMaxStreamingBuffer. Move
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews implementation of MCacheMaxStreamingBuffer from mod_cache to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_mem_cache. MCacheMaxStreamingBuffer now defaults to the
28cf7340b9c82fc62ca1a1782cb1bd7b0de11aebAndreas Gustafsson lesser of 100,000 bytes or MCacheMaxCacheObjectSize. This should
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews eliminate the need for explicitly coding MCacheMaxStreamingBuffer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in most configurations. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: Fix PR 15113, a core dump in cache_in_filter when
feb1f6a4ac42988558ecb8dc5dc0c974ec1f0509Brian Wellington a redirect occurs. The code was passing a format string and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews integer to apr_pstrcat. Changed to apr_psprintf.
d1a6976967d6cfd93f5a8d80878215691ac8fe74Mark Andrews [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Replace APU_HAS_LDAPSSL_CLIENT_INIT with APU_HAS_LDAP_NETSCAPE_SSL
5e4c83cfec3f267ea8f22fbb535c61434c94d43cDanny Mayer as set by apr-util in util_ldap.c. This should allow mod_ldap
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to work with the Netscape/Mozilla LDAP library. [Øyvin Sømme
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews <somme oslo.westerngeco.slb.com>, Graham Leggett]
e6f17474cb43a138bf7fc9ad30c6b3a2847cb7a7Mark Andrews *) Fix critical bug in new --enable-v4-mapped configure option
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews implementation which broke IPv4 listening sockets on some
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews systems. [hiroyuki hanai <hanai imgsrc.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_setenvif: Fix BrowserMatchNoCase support for non-regex
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews patterns [André Malo <nd perlig.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add version string to provider API. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) build: './configure && make' now works without an in-tree
36e37042c6c9252cdf6eb99bd71ccb6e6c43ba6dBrian Wellington apr and apr-util. [Wilfredo Sanchez]
98e231525fda817d393ef0c529b50bfc08cebe47Mark Andrews *) mod_negotiation: Set the appropriate mime response headers
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (Content-Type, charset, Content-Language and Content-Encoding)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for negotated type-map "Body:" responses (such as the error
d4196128b31d511c8513edacc70dea7e8d0c053aMark Andrews pages.) [André Malo <nd perlig.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_log_config: Allow '%%' escaping in CustomLog format
56d69016f4fae2eda4d39c92fe13595251aaadd3Mark Andrews strings to insert a literal, single '%'.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo <nd perlig.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex: AddDescription directives for directories
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews now work as in Apache 1.3, where no trailing '/' is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specified on the directory name. Previously, the trailing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews '/' *had* to be specified, which was incompatible with
e60b3717f0e6f28d6fb2c5124ffb3bd31cc3a746Mark Andrews Apache 1.3. PR 7990 [Jeff Trawick]
3d8ab44d14f3de797b8454fc2edb7421a6bfc874Andreas Gustafsson *) Fix for PR 14556. The expiry calculations in mod_cache were
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews trying to perform "now + ((date - lastmod) * factor)" where
3426f7118c92cab8714a7fddc9e721ff09554447Andreas Gustafsson date == lastmod resulting in "now + 0". The code now follows
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the else path (using the default expiration) if date is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews equal to lastmod. [Sergey <rx armstrike.com>, Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Use AP_DECLARE in the debug versions of ap_strXXX in case the
64a5004a66accd190bfd5ddf115667726537be50Andreas Gustafsson default calling convention is not the same as the one used by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews AP_DECLARE. [Juan Rivera <Juan.Rivera citrix.com>]
64a5004a66accd190bfd5ddf115667726537be50Andreas Gustafsson *) mod_cache: Don't cache response header fields designated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as hop-by-hop headers in HTTP/1.1 (RFC 2616 Section 13.5.1).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Estrade Matthieu <estrade-m ifrance.com>, Brian Pane]
b1ae7a591a4b99a26036e919b87247b65abfcd77Mark Andrews *) mod_cgid: Handle environment variables containing newlines.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 14550 [Piotr Czejkowski <apache czarny.eu.org>, Jeff
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move mod_ext_filter out of experimental and into filters.
cab0ee644db604d56b45ec39429d505d635da347Andreas Gustafsson [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a memory leak in mod_deflate with dynamic content.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 14321 [Ken Franken <kfranken decisionmark.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add --[enable|disable]-v4-mapped configure option to control
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews whether or not Apache expects to handle IPv4 connections
6dbc6fae496db1f584c055e63bcd7afd332fe8f6Andreas Gustafsson on IPv6 listening sockets. Either setting will work on
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews systems with the IPV6_V6ONLY socket option. --enable-v4-mapped
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews must be used on systems that always allow IPv4 connections on
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews IPv6 listening sockets. PR 14037 (Bugzilla), PR 7492 (Gnats)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) This fixes a problem where the underlying cache code
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews indicated that there was one more element on the cache
3f543c371fff724d1fb05eb564f732476e946b5bBrian Wellington than there actually was. This happened since element 0
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews exists but is not used. This code allocates the correct
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews number of useable elements and reports the number of
847169dab2d0496df1d66842b2cce67c66bf9680Andreas Gustafsson actually used elements. The previous code only allowed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MCacheMaxObjectCount-1 objects to be stored in the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cache. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_setenvif: Add SERVER_ADDR special keyword to allow
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews envariable setting according to the server IP address
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews which received the request. [Ken Coar]
e8d86192fc424f49e43df9cee439ca5c793e6000Mark Andrews *) mod_cgid: Terminate CGI scripts when the client connection
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews drops. PR 8388 [Jeff Trawick]
bae5d9fcb4616005fbc861e327b0a48b7bd4d89aMark Andrews *) Rearrange OpenSSL engine initialization to support RAND
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirection on crypto accelerator.
98a5dc52bf668b093cda7901c057f7b54e18a2fcAndreas Gustafsson [Frederic DONNAT <frederic.donnat zencod.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Always emit Vary header if mod_deflate is involved in the
98a5dc52bf668b093cda7901c057f7b54e18a2fcAndreas Gustafsson request. [André Malo <nd perlig.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_isapi: Stop unsetting the 'empty' query string result with
98a5dc52bf668b093cda7901c057f7b54e18a2fcAndreas Gustafsson a NULL argument in ecb->lpszQueryString, eliminating segfaults
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for some ISAPI modules. PR 14399
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_isapi: Fix an issue where the HSE_REQ_DONE_WITH_SESSION
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews notification is received before the HttpExtensionProc() returns
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HSE_STATUS_PENDING. This only affected isapi .dll's configured
6668eca26bf3123750afda48b69991bd29d83807Mark Andrews with the ISAPIFakeAsync on directive. PR 11918
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [John DeSetto <jdesetto radiantsystems.com>, William Rowe]
06a960c681566a163af5b9a655cf36023075ddcbMark Andrews *) mod_isapi: Fix the issue where all results from mod_isapi would
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews run through the core die handler resulting in invalid responses
cad3210bb95057a37aaed20bc8a1542e0534422cAndreas Gustafsson or access log entries. PR 10216 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improves the user friendliness of the CacheRoot processing
cad3210bb95057a37aaed20bc8a1542e0534422cAndreas Gustafsson over my last pass. This version avoids the pool allocations
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews but doesn't avoid all of the runtime checks. It no longer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews terminates during post-config processing. An error is logged
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews once per worker, indicating that the CacheRoot needs to be set.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul J. Reder]
afeded2289de8d193b072da2b44a2d580cc235c1Danny Mayer *) Fix a bug where we keep files open until the end of a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews keepalive connection, which can result in:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (24)Too many open files: file permissions deny server access
afeded2289de8d193b072da2b44a2d580cc235c1Danny Mayer especially on threaded servers. [Greg Ames, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug in which mod_proxy sent an invalid Content-Length
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when a proxied URL was invoked as a server-side include within
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a page generated in response to a form POST. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added code to process min and max file size directives and to
aa9a67adeb48069f5c2e5d8936a8ed5aac7d6ad7Andreas Gustafsson init the expirychk flag in mod_disk_cache. Added a clarifying
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews comment to cache_util. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The value emitted by ServerSignature now mimics the Server HTTP
73ac1894ea64bc50aff7406872d0e9c5df6d9cf6Mark Andrews header as controlled by ServerTokens. [Francis Daly <deva daoine.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Gracefully handly retry situations in the SSL input filter,
330b421487d7c3a5e699472fe889aa633772057fMark Andrews by following the SSL libraries' retry semantics.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Terminate CGI scripts when the client connection drops. This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews fix only applies to some normal paths in mod_cgi. mod_cgid
2c0b26955ee32fcee1757ec1be5a8caf8fe695a6Mark Andrews is still busted. PR 8388 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug where 416 "Range not satisfiable" was being
2449f41e75d3b3f1c0ec3f05b1603fd8f80d8ae0Mark Andrews returned for content that should have been redirected.
6f7660093e70d3a7c80738b681ac0f5c1b661c00Mark Andrews *) Fix memory leak in mod_ssl from internal SSL library allocations
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews within SSL_get_peer_certificate and X509_get_pubkey.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Zvi Har'El <rl math.technion.ac.il>
1fdbadc594a49b423052ea342dac74ff1a36089dMark Andrews Madhusudan Mathihalli <madhusudan_mathihalli hp.com>].
a1898260ad19d02e88ab76c1855d33c67add9defMark Andrews *) mod_ssl uses free() inappropriately in several places, to free
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews memory which has been previously allocated inside OpenSSL.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Such memory should be freed with OPENSSL_free(), not with free().
c0b6c1a5ab50722793cb99b0d8a1e9e910c146a5Andreas Gustafsson [Nadav Har'El <nyh math.technion.ac.il>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Madhusudan Mathihalli <madhusudan_mathihalli hp.com>].
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Emit a message to the error log when we return 404 because
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the URI contained '%2f'. (This was previously nastily silent
d16b4e8ba885a45933dc6a46f340b76811d60c74Andreas Gustafsson and difficult to debug.) [Ken Coar]
de9833be77ef92c17b35c02d138a0ad8df34dd91Mark Andrews *) Fix streaming output from an nph- CGI script. CGI:IRC now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews works. PR 8482 [Jeff Trawick]
4e400cb7a2edd25af98ebc25fcbb5b36ca08f9a0Mark Andrews *) More accurate logging of bytes sent in mod_logio when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the client terminates the connection before the response
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is completely sent [Bojan Smojver <bojan rexursive.com>]
ec5a06ccf7b15f07d20fd872c3dc1ab8f82f2ceaMark Andrews *) Fix some problems in the perchild MPM.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jonas Eriksson <jonas webkonsulterna.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the CacheRoot processing to check for a required
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews value at config time. This saves a lot of wasted processing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if the mod_disk_cache module is loaded but no CacheRoot
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was provided. This fix also adds code to log an error
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and avoid useless pallocs and procesing when the computed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cache file name cannot be opened. This also updates the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews docs accordingly. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce the EnableSendfile directive, allowing users of NFS
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews shares to disable sendfile mechanics when they either fail
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews outright or provide intermitantly corrupted data. PR
0a532842050020a1b0577c65f91f38bd022daa78Andreas Gustafsson [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Resolve the error "An operation was attempted on something
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that is not a socket. : winnt_accept: AcceptEx failed.
23a020bc1312fc35e7c4ea36df846c550cb13634Andreas Gustafsson Attempting to recover." for users of various firewall and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews anti-virus software on Windows. PR 8325 [William Rowe]
ab3eaa20e9a7e56208408563c79b4f8ac01d5e84Andreas Gustafsson *) Add the ProxyBadHeader directive, which gives the admin some
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews control on how mod_proxy should handle bogus HTTP headers from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews proxied servers. This allows 2.0 to "emulate" 1.3's behavior if
e1a153c3f095e217eea29958950fea36e54862ceAndreas Gustafsson desired. [Jim Jagielski]
7250c1a2616761395bdb9ae7cd1ba43f20d3edc4Andreas Gustafsson *) Change the LDAP modules to export their symbols correctly
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews during a Windows build. Add dsp files for Windows. Update
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews README.ldap file for Windows build instructions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance improvements for the code that generates HTTP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews response headers [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add -S as a synonym for -t -DDUMP_VHOSTS.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug with dbm rewrite maps which caused the wrong value to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be used when the key was not found in the dbm. PR 13204
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem with streaming script output and mod_cgid.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add ap_register_provider/ap_lookup_provider API.
a5b9c2b208b51b039c8f4006cddf3d37dd781561Brian Wellington [John K. Sterling <john sterls.com>, Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.43
2da0b7dfbd02fab454b8ba60f1fdb7e2a5cbd2dbMark Andrews *) SECURITY: CVE-2002-0840 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HTML-escape the address produced by ap_server_signature() against
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews this cross-site scripting vulnerability exposed by the directive
1cb6e8cbe41afade950837319e04da4ccf8649e0Brian Wellington 'UseCanonicalName Off'. Also HTML-escape the SERVER_NAME
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews environment variable for CGI and SSI requests. It's safe to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews escape as only the '<', '>', and '&' characters are affected,
6443201354efa09f16ada26dab99e9b7f8271521Andreas Gustafsson which won't appear in a valid hostname. Reported by Matthew
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Murphy <mattmurphy kc.rr.com>. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a core dump in mod_cache when it attemtped to store uncopyable
e980502db40155234b4e8d320b748b34dbaba3a2Brian Wellington buckets. This happened, for instance, when a file to be cached
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews contained SSI tags to execute a CGI script (passed as a pipe
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bucket). [Paul J. Reder]
ecd1addb86319bacc6c0bff2c68373619eebbffcMark Andrews *) Ensure that output already available is flushed to the network
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when the content-length filter realizes that no new output will
ea20115e347264b9bc1c686d6dfc1b5af3a5516bAndreas Gustafsson be available for a while. This helps some streaming CGIs as
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews well as some other dynamically-generated content. [Jeff Trawick]
bddfe77128b0f16af263ff149db40f0d885f43d0Mark Andrews *) Fix a mutex problem in mod_ssl session cache support which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews could lead to an infinite loop. PR 12705
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Amund Elstad <amund.elstad ergo.no>, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2002-1156 (cve.mitre.org)
aa0dc8d920a1f79626c3564408db9c5c9a5319a7Andreas Gustafsson Fix the exposure of CGI source when a POST request is sent to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a location where both DAV and CGI are enabled. [Ryan Bloom]
35db8a8eda6a889675138eb125d366c8851f68a5Andreas Gustafsson *) Allow the UserDir directive to accept a list of directories.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This matches what Apache 1.3 does. Also add documentation for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews this feature. [Jay Ball <jay veggiespam.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Module: mod_logio. adds the ability to log bytes sent and
5e88852b94830bf71e37dc700d568cb35e2e6f7eAndreas Gustafsson received. [Bojan Smojver <bojan rexursive.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SuExec needs to use the same default directory as the rest of
22815444822da17fab82d4ab115da6e055ea1754Brian Wellington [SangBeom han <sbhan os.korea.ac.kr>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get mod_auth_ldap to retry connections on LDAP_SERVER_DOWN.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thomas Bennett <thomas.bennett eds.com>, Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make sure the contents of the WWW-Authenticate header is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews passed on a 4xx error by proxy. Previously all headers
bd6504aa9aa16a912412fbe010046aaf4bf23621Brian Wellington were dropped, resulting in the browser being unable to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews authenticate. [Dr Richard Reiner <rreiner fscinternet.com>,
bd6504aa9aa16a912412fbe010046aaf4bf23621Brian Wellington Richard Danielli <rdanielli fscinternet.com>, Graham Wiseman
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews <gwiseman fscinternet.com>, David Henderson
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make mod_cache's CacheMaxStreamingBuffer directive work
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews properly for virtual hosts that override server-wide mod_cache
1e289d3cca5cdd01dda650fa6e4c1de1aa8b4196Andreas Gustafsson setttings. [Matthieu Estrade <estrade-m ifrance.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add -p option to apxs to allow programs to be compiled with apxs.
c54210716ee55b55e22d8dad56fd696a641fc98dBob Halley [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.42
3fcf6b956f47405750724bd84e1b2290b61c9186Brian Wellington *) SECURITY: CVE-2002-1593 (cve.mitre.org) [CERT VU#406121]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_dav: Check for versioning hooks before using them.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.41
96ed62425310854fd6f6f06bfb7651b3e4c17ee7Andreas Gustafsson *) The protocol version (eg: HTTP/1.1) in the request line parsing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is now case insensitive. [Jim Jagielski]
96ed62425310854fd6f6f06bfb7651b3e4c17ee7Andreas Gustafsson *) Allow AddOutputFilterByType to add multiple filters per directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
5733d25b06b46067b3751d10436d82aef09cd705Brian Wellington *) Remove warnings with Sun's Forte compiler. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed mod_disk_cache's generation of 304s
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add support for using fnmatch patterns in the final path
debff476ad3512687a354499c25d2793e2009acdBrian Wellington segment of an Include statement (eg.. include /foo/bar/*.conf).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and remove the noise on stderr during config dir processing.
eb6e3b04169a766d2b968bcc978191605c2ef24cAndreas Gustafsson [Joe Orton <jorton redhat.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: cache_storage.c. Add the hostname and any request
7d8c3693d0426b56750b14d80c47df5e42fc75e4Andreas Gustafsson args to the key generated for caching. This provides a unique
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews key for each virtual host and for each request with unique
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews args. [Paul J. Reder, args code provided by Kris Verbeeck]
fed846067d265db1037483d81d01f3651c8a3f28Brian Wellington *) mod_cache: Do not cache responses to GET requests with query
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews URLs if the origin server does not explicitly provide an
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Expires header on the response (RFC 2616 Section 13.9)
a26ad011f382d12058478704cb5e90e6f4366d01Andreas Gustafsson [Kris Verbeeck <krisv be.ubizen.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix memory leak in core_output_filter. [Justin Erenkrantz]
7d8c3693d0426b56750b14d80c47df5e42fc75e4Andreas Gustafsson *) Update OpenSSL detection to work on Darwin.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Sander Temme <sctemme covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the xslt and css to give the documentation a more
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo <nd perlig.de>, Gernot Winkler <greh o3media.de>]
07c336a9a85791dff886b1e28514589a25d9b720Andreas Gustafsson *) Fix some bucket memory leaks in the chunking code
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Joe Schaefer <joe+apache sunstarsys.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add ModMimeUsePathInfo directive. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cache: added support for caching streamed responses (proxy,
712fa28946312882a60b0c6a913914d3e8c69867Mark Andrews CGI, etc) with optional CacheMaxStreamingBuffer setting [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman, Peter Bieringer <pb bieringer.de>]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) Fix FileETags none operation. PR 12207.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz, Andrew Ho <andrew tellme.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Restored the experimental leader/followers MPM to working
9bfa90768ab83ea5a8571c98d3774377da4bdcbeDavid Lawrence condition and converted its thread synchronization from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mutexes to atomic CAS. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix Logic on non-html file removal in mod_deflate
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix "ab -g"'s truncated year: the last digit was cut off.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Leon Brocard <acme astray.com>]
6a7a69e9f764812872ec2db775be2ac8bb073102Andreas Gustafsson *) mod_rewrite can now sets cookies in err_headers, uses the correct
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews expiry date, and can now set the path as well
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 12132,12181,12172.
0a9a3d8c6daf9ffcfb62dbe366e26f521cbb9736Brian Wellington [Ian Holsman / Rob Cromwell <apachechangelog robcromwell.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The content-length filter no longer tries to buffer up
34d5676aac483e00e16056a6834a27b52bed42f0Brian Wellington the entire output of a long-running request before sending
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews anything to the client. [Brian Pane]
1d9ab721315555ac75e7d4f57585323909283688Andreas Gustafsson *) Win32: Lower the default stack size from 1MB to 256K. This will
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allow around 8000 threads to be started per child process.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 'EDITBIN /STACK:size apache.exe' can be used to change this
ef8d97818f0d30a4e09db97af695f504b311372cMark Andrews value directly in the apache.exe executable.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Implement ThreadLimit directive in the Windows MPM.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove CacheOn config directive since it is set but never checked.
519f8475ff8218e3981ae2b249eb1403da7c52f6Andreas Gustafsson No sense wasting cycles on unused code. Besides, the only truly
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bug free code is deleted code. :) [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) BufferLogs are now run-time enabled, and the log_config now has 2 new
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews callbacks to allow a 3rd party module to actually do the writing of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews log file [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct ISAPIReadAheadBuffer to default to 49152, per mod_isapi docs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [André Malo, Astrid Keßler <kess kess-net.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix Segfault in mod_cache. [Kris Verbeeck <Kris.Verbeeck ubizen.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a null pointer dereference in the merge_env_dir_configs
6112718b0dbb01ffbfd3fabc61e30c7e4485b0a7David Lawrence function of the mod_env module. PR 11791
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New option to ServerTokens 'maj[or]'. Only show the major version
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Also Surfaced this directive in the standard config (default FULL)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change mod_rewrite to use apr-util's dbm support for dbm rewrite
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews maps. The dbm type (e.g., ndbm, gdbm) can be specified on the
6c35e4dd17e6562a6b4d106cbf1d824b9f529356David Lawrence RewriteMap directive. PR 10644 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed mod_rewrite's RewriteMap prg: support so that request/response
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews pairs will no longer get out of sync with each other. PR 9534
504f7802d4c9b43db4820f496c4d00e078effa18David Lawrence [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixes required to get quoted and escaped command args working in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ext_filter. PR 11793 [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod-proxy: handle proxied responses with no status lines
841179549b6433e782c164a562eb3422f603533dAndreas Gustafsson [JD Silvester <jsilves uwo.ca>, Brett Huttley <brett huttley.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug where environment or command line arguments containing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews non-ASCII-7 characters would cause the Win32 child process creation
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to fail. PR 11854 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Bug #11213.. make module loading error messages more informative
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Darwin <Ian779 darwinsys.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) thread safety & proxy-ftp [Alexey Panchenko <alexey liwest.ru>, Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_disk_cache works much better. This module should still
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be considered experimental. [Eric Prud'hommeaux]
6c6a6c9f5e2b3c6fd72263eac155e4feddb77316Brian Wellington *) Performance improvement for keepalive requests: when setting
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews aside a small file for potential concatenation with the next
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews response on the connection, set aside the file descriptor rather
2445d14b1a95132a473aa30076d0ce1762027e76Mark Andrews than copying the file into the heap. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modified version check on openssl so that it finds the executable
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews first and then performs a check of the version, only warning the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user if they chose, or we selected, an old version of OpenSSL.
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews This change also allows the code to work for non-openssl libraries
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews selected via the --with-ssl=dir option, which can override the
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews automated library check in any case. [Roy Fielding]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark AndrewsChanges with Apache 2.0.40
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) SECURITY: CVE-2002-0661 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Close a very significant security hole that
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews applies only to the Win32, OS2 and Netware platforms. Unix was not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews affected, Cygwin may be affected. Certain URIs will bypass security
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews and allow users to invoke or access any file depending on the system
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configuration. Without upgrading, a single .conf change will close
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews the vulnerability. Add the following directive in the global server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews httpd.conf context before any other Alias or Redirect directives;
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews RedirectMatch 400 "\\\.\."
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Reported by Auriemma Luigi <bugtest sitoverde.com>.
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews [Brad Nicholes]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) SECURITY: CVE-2002-0654 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Close a path-revealing exposure in multiview type
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews map negotiation (such as the default error documents) where the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews module would report the full path of the typemapped .var file when
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews multiple documents or no documents could be served based on the mime
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews negotiation. Reported by Auriemma Luigi <bugtest sitoverde.com>.
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews [William Rowe]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) SECURITY: CVE-2002-0654 (cve.mitre.org)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Close a path-revealing exposure in cgi/cgid when we
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews fail to invoke a script. The modules would report "couldn't create
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews child process /path-to-script/script.pl" revealing the full path
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews of the script. Reported by Jim Race <jrace qualys.com>.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Set aside the apr-iconv and apr_xlate() features for the Win32
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews build of 2.0.40 so development can be completed. A patch, from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews <http://www.apache.org/dist/httpd/patches/apply_to_2.0.40/>
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews will be available for those that wish to work with apr-iconv.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix proxy so that it is possible to access ftp: URLs via a proxy
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews chain. [Peter Van Biesen <peter.vanbiesen vlafo.be>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod-deflate now checks to make sure that 'gzip-only-text/html' is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews set to 1, so we can exclude things from the general case with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews browsermatch. [Ian Holsman, Andre Schild <A.Schild aarboard.ch>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Accept multiple leading /'s for requests within the DocumentRoot.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 10946 [William Rowe, David Shane Holden <dpejesh yahoo.com>]
af0be81b2f6ea700dd882d3b18468c7815bd5ef2Andreas Gustafsson *) Solved the reports of .pdf byterange failures on Win32 alone.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews APR's sendfile for the win32 platform collapses header and trailer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews buffers into a single buffer. However, we destroyed the pointers
ed0e1ae6bc3df39389a24d72cf544b2437bf8340Andreas Gustafsson to the header buffer if a trailer buffer was present. PR 10781
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ext_filter: Add the ability to enable or disable a filter via
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an environment variable. Add the ability to register a filter of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews type other than AP_FTYPE_RESOURCE. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Restore the ability to specify host names on Listen directives.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 11030. [Jeff Trawick, David Shane Holden <dpejesh yahoo.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) When deciding on the default address family for listening sockets,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews make sure we can actually bind to an AF_INET6 socket before
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews deciding that we should default to AF_INET6. This fixes a startup
dccd7f8459d811141fde04d4a307b9b695cf58b1David Lawrence problem on certain levels of OpenUNIX. PR 10235. [Jeff Trawick]
dccd7f8459d811141fde04d4a307b9b695cf58b1David Lawrence *) Replace usage of atol() to parse strings when we might want a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews larger-than-long value with apr_atoll(), which returns long long.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This allows HTTPD to deal with larger files correctly.
dccd7f8459d811141fde04d4a307b9b695cf58b1David Lawrence [Shantonu Sen <ssen apple.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ext_filter: Ignore any content-type parameters when checking if
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the response should be filtered. Previously, "intype=text/html"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews wouldn't match something like "text/html;charset=8859_1".
dccd7f8459d811141fde04d4a307b9b695cf58b1David Lawrence [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ext_filter: Set up environment variables for external programs.
03f91269f5453bcbd924910ef85a8f8496cf2661Mark Andrews [Craig Sebenik <craig netapp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modified the HTTP_IN filter to immediately append the EOS (end of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stream) bucket for C-L POST bodies, saving a roundtrip and allowing
afb0a628efd8ecf40f66f6b8d0711bca62be2a9aMark Andrews the caller to determine that no content remains without prefetching
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews additional POST body. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get proxy ftp to work over IPv6. [Shoichi Sakane <sakane kame.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Look for OpenSSL libraries in /usr/lib64. [Peter Poeml <poeml suse.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update SuSE layout. [Peter Poeml <poeml suse.de>]
3042b3e2711d00b7fd9ffbf51443ad761d30427fMark Andrews *) Changes to the internationalized error documents:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Comment them out in the default config file to make the default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews install as simple as possible; Correct the english 500 error to
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence be more understandable; Add a Swedish translation.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thomas Sjogren <thomas northernsecurity.net>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Erik Abele <erik codefaktor.de>, Rich Bowen, Joshua Slive]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Increase the limit on file descriptors per process in apachectl.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a dependency error when building ApacheMonitor, so that Win32
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and MSVC now trust that the project is current (when it is).
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence [James Cox <imajes php.net>]
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence *) mod_ext_filter: don't segfault if content-type is not set. PR 10617.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Arthur P. Smith <apsmith aps.org>, Jeff Trawick]
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence *) APR-Util Renames pending have been completed [Thom May]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance improvements for the code that reads request
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews headers (ap_rgetline_core() and related functions) [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a new directive: MaxMemFree. MaxMemFree makes it possible
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to configure the maximum amount of memory the allocators will
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hold on to for reuse. Anything over the MaxMemFree threshold
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence will be free()d. This directive is useful when uncommon large
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews peaks occur in memory usage. It should _not_ be used to mask
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews defective modules' memory use. [Sander Striker]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed the Content-Length filter so that HTTP/1.0 requests to CGI
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews scripts would not result in a truncated response.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom, Justin Erenkrantz, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a filter_init parameter to the filter registration functions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews so that a filter can execute arbitrary code before the handlers
adcd8c93196ad0a3516252d80597c3c52472ffb2David Lawrence are invoked. This resolves a problem where mod_include requests
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews would incorrectly return a 304. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a long-standing bug in 2.0, CGI scripts were being called
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews with relative paths instead of absolute paths. Apache 1.3 used
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews absolute paths for everything except for SuExec, this brings back
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that standard. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix infinite loop due to two HTTP_IN filters being present for
5455f30a7532738d750252c00e649890c694ee30Brian Wellington internally redirected requests. PR 10146. [Justin Erenkrantz]
e2fd12f3a020ca8c5de168a44fb72e339cdaa3e9Brian Wellington *) Switch conn_rec->keepalive to an enumeration rather than a bitfield.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
cf74d05a50e342e5b3870005c04ae5ed8013ab3eBrian Wellington *) Fix mod_ext_filter to look in the main server for filter definitions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when running in a vhost if the filter definition is not found in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the vhost. PR 10147 [Jeff Trawick]
2ae4dd0dbd50b3159476537c60ccdc8b64364356Mark Andrews *) Support WinNT CGI invocation through ScriptInterpreterSource
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 'registry' for script interpreter paths and names with non-ascii
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews characters in the executable filepath. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Support the -w flag on to keep the Win32 console open on error.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Normalize the hostname value in the request_rec to all-lowercase
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Perry Harrington <pedward webcom.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix WinNT cgi 500 errors when QUERY_ARGS or other strings include
5ce23ccf3f324dc90ab9b4426b1da6284b0e2abfAndreas Gustafsson extended characters (non US-ASCII) in non-utf8 format. This brings
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Win32 back into CGI/1.1 compliance, and leaves charset decoding up
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to the cgi application itself. [William Rowe]
508d17362c2c43ddf95ddc87ae6a8c5f32f35323Andreas Gustafsson *) Major overhaul of mod_dav, mod_dav_fs and the experimental/cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules to bring them up to the current apr/apr-util APIs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault in mod_mem_cache most frequently observed when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews serving the same file to multiple clients on an MP machine.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
e7a4f58d55042cbc981a70b5071aaea46b9ebf7fAndreas Gustafsson *) mod_rewrite can now set cookies (RewriteRule (.*) - [CO=name:$1:.domain])
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Degenhardt <bmd mp3.com>, Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix perchild to work with apachectl by adding -k support to perchild.
5fdc9aaf401f6816df65d0e9cf701872f345c558Andreas Gustafsson PR 10074 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a silly htpasswd.c logic error that incorrectly reported that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews both -c and -n had been used. PR 9989 [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a mod_include error case in which no HTTP response was sent
50097b38c075be55a73bb3737d091c503c70061dBrian Wellington to the client if an shtml document contained an unterminated SSI
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve ap_get_client_block implementation by using APR-util brigade
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews helper functions and relying on current filter assumptions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
fd5847ef0954117d5f905dbbfb68f1e67e4f285fAndreas GustafssonChanges with Apache 2.0.39
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a build problem in htpasswd.c on Win32.
82e991b8ed4e0ed3b010d191e0cadfd60226c2d9Andreas Gustafsson [Guenter Knauf <eflash gmx.net>, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.38
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rewrite htpasswd to use APR. The removes the annoying warning about
69d44b2f5ac8e35bdb0b80aeb304f5cb62197892Mark Andrews tmpnam being unsafe. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) We must set the MIME-type for .shtml files to text/html if we want them
3242899a56da9c245956979d5be9c92b2cf0ee24Andreas Gustafsson to be parsed for SSI tags. Add the config for that to the default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config file so that it is easier to enable .shtml parsing.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dave Dyer <ddyer real-me.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a problem with 'make install' on ReliantUnix.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jean-frederic Clere <jfrederic.clere fujitsu-siemens.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make the default_handler catch all requests that aren't served by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews another handler. This also gets us to return a 404 if a directory
76477bd0e0a8f150f06f45c347d286b782cfa679Brian Wellington is requested, there is no DirectoryIndex, and mod_autoindex isn't
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews loaded. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed the handling of nested if-statements in shtml files.
e491ef29043ae77d3d78fb7a59328f143fcf70feAndreas Gustafsson PR 9866 [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow 'make install DESTDIR=/path'. This allows packagers to install
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews into a directory different from the one that was configured. This
1a286a6613d385b443030a8c932e40ac9e9c301fBob Halley also mirrors the root= feature from 1.3. We cannot use prefix=,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews because both APR and APR-util resolve their installation paths at
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configuration time. This means that there is no variable prefix
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to replace. [Andreas Hasenack <andreas netbank.com.br>]
3242899a56da9c245956979d5be9c92b2cf0ee24Andreas Gustafsson *) AIX 4.3.2 and above: Define SINGLE_LISTEN_UNSERIALIZED_ACCEPT.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews These levels of AIX don't have a thundering herd problem with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews accept(). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) prefork MPM: Ignore mutex errors during graceful restart. For
de8717a7218a4f034144ad7b8755ad43e3fd45c9David Lawrence certain types of mutexes (particularly SysV semaphores), we
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews should expect to occasionally fail to obtain or release the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mutex during restart processing. [Jeff Trawick]
6f115bdb61672871bd822bdcd09cb1a3aad38aa0David Lawrence *) Fix install-bindist.sh so that it finds any perl instead of just
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews early perl 5.x versions. This is consistent with a build/install
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from source, and it allows the perl scripts installed by a bindist
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to work on systems with perl 5.6. [Jeff Trawick]
5e194abb5b548524e5c0fd2bb4627ec698b75e2bAndreas Gustafsson *) Fix apxs so that the makefile created by "apxs -g" works on AIX and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Tru64 (and probably some other platforms). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow CGI scripts to return their Content-Length. This also fixes a
5e194abb5b548524e5c0fd2bb4627ec698b75e2bAndreas Gustafsson hang on HEAD requests seen on certain platforms (such as FreeBSD).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
09ae77ca30eb17ee32d3f7720ca796a72259cde6Andreas Gustafsson *) Added log rotation based on file size to the RotateLog support
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews utility. [Brad Nicholes]
cedd0ab1e812ec7cf05d57c3e602db41b79f0a2aAndreas Gustafsson *) Fix some casting in mod_rewrite which broke random maps.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 9770 [Allan Edwards, Greg Ames, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.37
ac6afcd0caf72aaa2a537e0003de30b363b4a68bBrian Wellington *) allow POST method over SSL when per-directory client cert
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews authentication is used with 'SSLOptions +OptRenegotiate' enabled
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and a client cert was found in the ssl session cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) 'SSLOptions +OptRengotiate' will use client cert in from the ssl
2b7a77a68e27fc7991a857d403cb34b2ae90fc0bMark Andrews session cache when there is no cert chain in the cache. prior to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the fix this situation would result in a FORBIDDEN response and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews error message "Cannot find peer certificate chain"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ap_finalize_sub_req_protocol() shouldn't send an EOS bucket if
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews one was already sent. PR 9644 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the display of the default name for the mime types config
aed6a8ed2e706404ccca0f31faf110fd6efd34e6Andreas Gustafsson file. PR 9729 [Matthew Brecknell <mbrecknell orchestream.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the working directory *for WinNT/2K/XP services only* to
f8b3c627949bd4bc2f6aafb3dab2f56e3aa9ba06Brian Wellington change to the Apache directory (one level above the location
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of Apache.exe, in the case that Apache.exe resides in bin/.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Solves the case of ServerRoot /foo paths where /foo was not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on the same drive as /winnt/system32. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make 2.0's "AcceptMutex" startup message now "completely"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews match how 1.3 does it. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Implement a fixed size memory cache using a priority queue
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix apxs to allow "apxs -q installbuilddir" and to allow
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews querying certain other variables from config_vars.mk. PR 9316
70d08aea0a693c6ca62c2f7bb33bfddf9e427601Brian Wellington [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added the "detached" attribute to the cgi_exec_info_t internals
907620b5e0d898da324192cbbe5a5b518f55d175Bob Halley so that Win32 and Netware won't create a new window or console
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for each CGI invoked. PR 8387
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Consolidated the command line parameters and attributes that are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews manipulated by the optional function ap_cgi_build_command() in
9027e1bcf1b245226e3053a75d16c5351d7e60caDavid Lawrence mod_cgi into a single structure.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
9027e1bcf1b245226e3053a75d16c5351d7e60caDavid Lawrence *) Get rid of uninitialized value errors with "apxs -q" on certain
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews variables. [Stas Bekman <stas stason.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix apxs to allow it to work when the build directory is somewhere
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick and a host of others]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow ap_discard_request_body to be called multiple times in the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews same request. Essentially, ap_http_filter keeps track of whether
c0968380c4fb0b8196aafb8de225531bd847bb6dBrian Wellington it has sent an EOS bucket up the stack, if so, it will only ever
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews send an EOS bucket for this request.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom, Justin Erenkrantz, Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove all special mod_ssl URIs. This also fixes the bug where
1d92d8a2456b23842a649b6104c60a9d6ea25333Brian Wellington redirecting (.*) will allow an SSL protected page to be viewed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews without SSL. [Ryan Bloom]
b879ed05f4fb8209add6c19a509c984b6c8b3a98Andreas Gustafsson *) Fix the binary build install script so that the build logic
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews created by "apxs -g" will work when the user has a binary
b52a5b063050f209b0f47379178a1e7ae7404624Andreas Gustafsson build. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow instdso.sh to work with full paths to the shared module.
34613b2e39478a83076f6a626a4b855cebb19533Andreas Gustafsson [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) NetWare: Enabled CGI functionality and added mod_cgi as a built
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in module for NetWare [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Changed cgi and piped log behavior to accept 65536 characters
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on Win32 (matching Linux) before deadlocking between outputing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews client stdin, slurping the output from stdout and then the stderr
3bd8e7cf1c082cd1021e5a6cae1cf21911217858Brian Wellington stream. PR 8179 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed Win32 wintty.exe support to assure the window title is valid.
b8a85202af814468421a6541b4c935bd14773c53Brian Wellington Elimiates possible gpfault or garbage title without the -t option.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b879ed05f4fb8209add6c19a509c984b6c8b3a98Andreas Gustafsson *) Rewrite mod_cgi, mod_cgid, and mod_proxy input handling to use
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews brigades and input filters. [Justin Erenkrantz]
4c03e69ab845f703c1ffa3b7772938ca98cce44dAndreas Gustafsson *) Allow ap_http_filter (HTTP_IN) to return EOS when there is no request
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews body. [Justin Erenkrantz]
b0390aab30438a13f533cccae9389945214b1421Brian Wellington *) NetWare: Piping log entries through RotateLogs using the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews CustomLogs directive is finally supported now that we have
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the pipes and spawning functionality working.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: CVE-2002-0392 (cve.mitre.org) [CERT VU#944335]
4c03e69ab845f703c1ffa3b7772938ca98cce44dAndreas Gustafsson Detect overflow when reading the hex bytes forming a chunk line.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
225a66da7ea2671a3e4db3cc4337f97ff67be647Brian Wellington *) Allow RewriteMap prg:'s to take command-line arguments. PR 8464.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [James Tait <JTait wyrddreams.demon.co.uk>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correctly return 413 when an invalid chunk size is given on
279de54fe3a0ac10b64762b18a4569c07b15d742Andreas Gustafsson input. Also modify ap_discard_request_body to not do anything
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on sub-requests or when the connection will be dropped.
279de54fe3a0ac10b64762b18a4569c07b15d742Andreas Gustafsson [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the TIME_* SSL var lookups to be threadsafe. PR 9469.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Ensure that apr_brigade_write() flushes in all of the cases that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews it should to avoid conditions in some modules that could cause
55b62439233d930152690b9eba97b06d9dc13d23Mark Andrews large amounts of data to be buffered. [Cliff Woolley]
123a3dddc94534d3a6c6f81c118a5b63dc5994c3Andreas Gustafsson *) Fix problem where mod_cache/mod_disk_cache was incorrectly
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stripping the content_type from cached responses.
590233519e14f3cf49840a93d2648d5560dd957eDavid Lawrence [Bill Stoddard]
590233519e14f3cf49840a93d2648d5560dd957eDavid Lawrence *) apachectl passes through any httpd options. Note: apachectl
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews should be used in preference to httpd since it ensures that any
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews appropriate environment variables have been set up.
123a3dddc94534d3a6c6f81c118a5b63dc5994c3Andreas Gustafsson [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the combination of mod_cgid, mod_setuexec, and mod_userdir.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 7810 [Colm MacCarthaigh <colmmacc redbrick.dcu.ie>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix suexec execution of CGI scripts from mod_include.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 7791, 8291 [Colm MacCarthaigh <colmmacc redbrick.dcu.ie>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfaults at startup on some platforms when mod_auth_digest,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_suexec, or mod_ssl were used as DSO's due to the way they
9ac7076ebad044afb15e9e2687e3696868778538Mark Andrews were tracking the current init phase since DSO's get completely
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews unloaded and reloaded between phases. PR 9413.
7c058f1c384ebdba74231111f9358cf08109a5dbBob Halley [Tsuyoshi Sasamoto <nazonazo super.win.ne.jp>, Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_include's handling of regular expressions in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "<!--#if" directives [Julius Gawlas <julius_gawlas hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the worker MPM deadlock problem [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify the module documentation to allow for translations.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Yoshiki Hayashi, Joshua Slive]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a file permissions problem which prevented mod_disk_cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from working on Unix. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add "-k start|restart|graceful|stop" support to httpd for the Unix
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPMs. These have semantics very similar to the old apachectl
dc2e09d48b49d96a0572a971180718f680140cf0Andreas Gustafsson commands of the same name. [Justin Erenkrantz, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make sure that the runtime dir is created by make install.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 9233. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix an unusual set of ./configure arguments that could cause
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_http to be built as a DSO, which it currently doesn't
90c099e88e9f16bfee9edee3ac1a51fc98843772Brian Wellington support. PR 9244.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cliff Woolley, Robin Johnson <robbat2 orbis-terrarum.net>]
620de5a4b1f23dc9b4ec30d30c0607ff389be0daBob Halley *) Win32: Fix bug in apr_sendfile() that caused incorrect operation
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of the %X, %b and %B logformat options. PR 8253, 8996.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) If content-encoding is already present, do not run deflate (PR 9222)
d1cc210d2091916df6f9858fae20a1c760f3b257Andreas Gustafsson [Kazuhisa ASADA <kaz asada.sytes.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The APLOG_NOERRNO flag to ap_log_[r]error() is now deprecated.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews It is currently ignored and it will be removed in a future release
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of Apache. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Removed documentation references to the no-longer-supported
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "make certificate" feature of mod_ssl for Apache 1.3.x. Test
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews certificates, if truly desired, can be generated using openssl
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews commands. PR 8724. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove SSLLog and SSLLogLevel directives in favor of having
a93cf7e83be621d3d68f51e37121a47a70a6757bMark Andrews mod_ssl use the standard ErrorLog directives. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) OS/390: LIBPATH no longer has to be manually uncommented in
c05eeed3c915d55a4949f5c2ce8700a0b0f9381bAndreas Gustafsson envvars to get apachectl to set up httpd properly. [Jeff Trawick]
c05eeed3c915d55a4949f5c2ce8700a0b0f9381bAndreas Gustafsson *) mod_isapi: All mod_isapi directives, excluding ISAPICacheFile,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews may now be specified to the <File/Directory > container, rather
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews than by vhost. [William Rowe]
3bb043a8b8b15eece3794ec31ad0ccab103a1c21Brian Wellington *) mod_isapi: Experimental support for faux async support for ISAPI
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_isapi: Major refactoring of the code to rely on apr internals
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews rather than MS APIs (using our own mod_isapi.h headers for ISAPI
df0f58959ed82a2a43ca8d816ce9592541df9f2fMark Andrews symbol definitions.) [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_isapi: Fixed the return string length from GetServerVariable
903e9d41ef730f098d38da9588f2824f37b7d73cMark Andrews callback, it was not including the trailing null in the consumed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews buffer size. This was particularly bad for Delphi 6.0 users.
f4b5a0f43481026ea27bd96e3584ca0e92542f0dBob Halley PR 8934 [Sebastian Hantsch <sebastian.hantsch gmx.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed Win32 builds for Microsoft VisualStudio 7.0 (.net).
6211baaa66d7cac28a21b6426681e597ff04ca9eAndreas Gustafsson [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make apxs look in the correct directory for envvars. It was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews broken when sbindir != bindir. PR 8869
6211baaa66d7cac28a21b6426681e597ff04ca9eAndreas Gustafsson [Andreas Sundström <sunkan zappa.cx>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_deflate corruption when using multiple buckets. PR 9014.
ea544b0511a66bc5f3700d56a72dcd808fdf22e8Brian Wellington [Asada Kazuhisa <kaz asada.sytes.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance enhancements for access logger when using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews default timestamp formatting [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added EnableMMAP config directive to enable the server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews administrator to disable memory-mapping of delivered files
c8d185ad5827bf2cf9982075e3336f680759a260Andreas Gustafsson on a per-directory basis. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance enhancements for mod_setenvif [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a mod_ssl build problem on OS/390. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed If-Modified-Since on Win32, which would give false positives
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews because of the sub-second resolution of file timestamps on that
c8d185ad5827bf2cf9982075e3336f680759a260Andreas Gustafsson platform. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Reverse the hook ordering for mod_userdir and mod_alias so
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that Alias/ScriptAlias will override Userdir. PR 8841
22cafd0ece9c8d22a1218f000afdbceda21fe8afBrian Wellington [Joshua Slive]
2cb74c5bc52ef415a771fafe0bf504eab609feadBrian Wellington *) Move mod_deflate out of experimental and into filters.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get proxy CONNECT basically working. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_rewrite hang when APR uses SysV Semaphores and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews RewriteLogLevel is set to anything other than 0. PR: 8143
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix byterange requests from returning 416 when using dynamic data
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (such as filters like mod_include). [Justin Erenkrantz]
02940eaf0f732c28c0b39ed114a3803074a80138Andreas Gustafsson *) Allow mod_rewrite's set of "int:" internal RewriteMap functions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to be extended by third-party modules via an optional function.
02940eaf0f732c28c0b39ed114a3803074a80138Andreas Gustafsson [Tahiry Ramanamampanoharana <nomentsoa hotmail.com>, Cliff Woolley]
9a7d163f6f305d48771b4c56d8d18efc6dfc8fc3Mark Andrews *) Fix mod_include expression parser's handling of unquoted strings
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews followed immediately by a closing paren. PR 8462. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove autom4te.cache in 'make distclean'.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thom May <thom planetarytramp.net>]
aa23a35d81a9618a40c4a9b44be48009553e4777Andreas Gustafsson *) Fix generated httpd.conf to respect layout for LoadModule lines.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 8170. [Thom May <thom planetarytramp.net>]
22457624d3e63e7cd255b4083cb435c16caea26dBob Halley *) Win32: During a graceful restart, threads in the new process
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews were accessing scoreboard slots still in use by active threads in
91425b5e7204b05165e2c5b244f3dad502f9627dBrian Wellington the old process. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.36
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some minor formatting issues with ab. Part of this is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in reference to PR 8544, the rest I noticed while testing
b18a5b6730dcb062cf7f47c6b3cb909030b58f36Brian Wellington the PR fix. [Paul J. Reder]
7e361074bc8a2df7a0891a7040eea02ca3a5e286Andreas Gustafsson *) Fix a case where an invalid pass phrase is entered and an
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews error message is given, but the prompt is not shown again.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This left the user in an ambiguous state. PR 8320 [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Close sockets on worker MPM when doing a graceless restart.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Reverted a minor optimization in mod_ssl.c that used the vhost ID
9e560b59a722d06a62b5aed761e71fec72638a7cBrian Wellington as the session id context rather that a MD5 hash of that vhost ID,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews because it caused very long vhost id's to be unusable with mod_ssl.
f91dc72b422479b5a0caf1fe54c4054d25ae6055Brian Wellington PR 8572. [Cliff Woolley]
7e361074bc8a2df7a0891a7040eea02ca3a5e286Andreas Gustafsson *) Fix the link to the description of the CoredumpDirectory
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive in the server-wide document. PR 8643. [Jeff Trawick]
d6b3d06db7ce3b9229dc30cc0e3a72ba2603da28Bob Halley *) Fixed SHMCB session caching. [Aaron Bannert, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Synced with remaining changes from mod_ssl 2.8.8-1.3.24:
8e68489885e744ab48907414b4199c36858c27ddMark Andrews - Avoid SIGBUS on sparc machines with SHMCB session caches
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews - Allow whitespace between the pipe and the name of the
c17c59662f0969a5e52e8b7529cbde1a7c746095Andreas Gustafsson program in SSLLog "| /path/to/program". [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce mod_ext_filter and mod_deflate experimental modules
c17c59662f0969a5e52e8b7529cbde1a7c746095Andreas Gustafsson to the Win32 build (zlib sources must be in srclib\zlib.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
651421a5db8a9edf39c76fd8cf859409eb8c373bAndreas Gustafsson *) Changes to the worker MPM's queue management and thread
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews synchronization code to reduce mutex contention [Brian Pane]
651421a5db8a9edf39c76fd8cf859409eb8c373bAndreas Gustafsson *) Don't install *.in configuration files since we already install
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *-std.conf files. [Aaron Bannert]
7427490a67b9547242b57c255254f7e146127c48Bob Halley *) Many improvements to the threadpool MPM. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix subreqs that are promoted via fast_redirect from having invalid
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews frec->r structures. This would cause subtle errors later on in
dfa0badebe5a8260281228d94dbe28e4314a9df6Andreas Gustafsson request processing such as seen in PR 7966. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) More efficient pool recycling logic for the worker MPM [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify the worker MPM to not accept() new connections until
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews there is an available worker thread. This prevents queued
2d0627005d48b7657fa11792c123466b4f974b61Mark Andrews connections from starving for processing time while long-running
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews connections were hogging all the available threads. [Aaron Bannert]
80ddc8b22bf2ede60038393be5cad9da99d3f03fAndreas Gustafsson *) Convert the worker MPM's fdqueue from a LIFO back into a FIFO.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
94baac869a70b529a24ff23d8dc899faa5d4fdc4Brian Wellington *) Get basic HTTP proxy working on EBCDIC machines. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod_unique_id to work on systems with no IPv4 address
1ac2c28488fb5de80b3ce9aac3500d215cb61728Brian Wellington corresponding to their host name. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix suexec behavior with user directories. PR 7810.
a12d9cfa59b5981c52e1aaafedf652d5128f3448Brian Wellington [Colm <colmmacc redbrick.dcu.ie>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Reject a blank UserDir directive since it is ambiguous. PR 8472.
702a69f04a89422968ef8fc6fc271fac058e03efBrian Wellington [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make mod_mime use case-insensitive matching when examining
0f537d1c63f643924355ff9ca2cf72c547101aa4Brian Wellington extensions on all platforms. PR 8223. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add an intelligent error message should no proxy submodules be
9ee323b64bc9dcd73f9a0a0e69a31475026721daAndreas Gustafsson valid to handle a request. PR 8407 [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Major improvements in concurrent processing for AB by enabling
c27148868266dd718b6677c794b3e6dca53c3bdcAndreas Gustafsson non-blocking connect()s and preventing APR from doing blocking
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews read()s. Also implement fatal error checking for apr_recv().
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
f8a44ed40032e034883019ac556f3bb732491a32Mark Andrews *) Fix Win32 NTFS Junctions (symlinks). PR 8014 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix Win32 'short name' aliases in httpd.conf directives.
07d6480b684d3745e645f35a8b95dae9bda982a3Mark Andrews PR 8009 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix generation of default httpd.conf when the layout paths are
634784cb66a1c9ddee0c448f71580f024c8fe40bAndreas Gustafsson disjoint. PR 7979, 8227. [Justin Erenkrantz]
ea6709ec8a66e3ffef9c9466613df499567c57f8Brian Wellington *) Swap downgrade-1.0 and force-response-1.0 conditional checks so
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that downgraded responses can have force-response. PR 8357.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix perchild MPM so that it can be configured with the move to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews experimental directory. [Scott Lamb <slamb slamb.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix perchild MPM so that it uses ap_gname2id for groups instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_uname2id. [Scott Lamb <slamb slamb.org>]
49576ae7a481415d5e815ff59b71c76203259619Andreas Gustafsson *) Fix AcceptPathInfo. PR 8234 [Cliff Woolley]
e8af4e152413190e5553c2fb3074a1cc689c6cefAndreas Gustafsson *) SECURITY: CVE-2002-1592 (cve.mitre.org) [CERT VU#165803]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Added the APLOG_TOCLIENT flag to ap_log_rerror() to
4d30acbac52fcb20a4f0ab4f8508f24861386fe7Brian Wellington explicitly tell the server that warning messages should be sent
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to the client in addition to being recorded in the error log.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Prior to this change, ap_log_rerror() always sent warning
131d5feb05fce60143bc17dab73df20753d9301fBrian Wellington messages to the client. In one case, a faulty CGI script caused
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the server to send a warning message to the client that contained
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the full path to the CGI script. This could be considered a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews minor security exposure. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex output when SuppressRules was specified would
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews omit the first carriage return so the first item in the list
187a97287e626b2f2e9774479e145dfbf1eba66cBrian Wellington would appear to the right of the column headings instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews underneath them. PR 8016 [David Shane Holden <dpejesh yahoo.com>]
7ed2d93fa4e12e0ceaa0c7c0da3a89e7a5d78296Andreas Gustafsson *) Moved the call to apr_mmap_dup outside the error branch so
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that it would actually get called. This fixes a core dump
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews at init everytime you use the MMapFile directive. PR 8314
1ec527b71267747cc3ae4d9849aa4f6362c78ea9Brian Wellington [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Trigger an error when a LoadModule directive attempts to
703e1c0bb66f3cd3d300358ca0c1fdf3cb5fb1c5Brian Wellington load a module which is built-in. This is a common error when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews switching from a DSO build to a static build. [Jeff Trawick]
7ed2d93fa4e12e0ceaa0c7c0da3a89e7a5d78296Andreas Gustafsson *) Change instdso.sh to use libtool --install everywhere and then
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews clean up some stray files and symlinks that libtool leaves around
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on some platforms. This gets subversion building properly since
14bb9cccae74676e25ae145dc14a3681cc3022b9Mark Andrews it needed a re-link to be performed by libtool at install time,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and the old instdso.sh logic to simply cp the DSO didn't handle
01b8865b1462ba219c90cf6c00f1bf0fdf780d9bBrian Wellington that requirement. [Sander Striker]
fcc3c131e03cb7e844eaecf74d4f9b7fd38c8398Andreas Gustafsson *) Allow VPATH builds to succeed when configured from an empty
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directory. [Thom May <thom planetarytramp.net>]
6d3e8dffb447b9a961360f7f4fd77b0bdb81de76Andreas Gustafsson *) Fix 'control reaches end of non-void function' warning in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server/log.c. [Ben Collins-Sussman <sussman collab.net>]
7017ede939a5d3e7f2dc113061887a9e81fe8627Brian Wellington *) Perchild MPM is now correctly deemed as experimental and is now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews located in server/mpm/experimental. [Justin Erenkrantz]
66921d6dd259c4486a07aba19eee2b8349698575Brian Wellington *) Fix segfault in mod_mem_cache when garabge collecting an expired
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cache entry. [Bill Stoddard]
b65fc651b8aaab5d0fb9b8f6ef583d699d14a113Mark Andrews *) Introduced -E startup_logfile_name option to httpd to allow admins
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to begin logging errors immediately. This provides Win32 users
2728a98ee4104b2fb30f273893a7f354e20002b5Mark Andrews an alternative to sending startup errors to the event viewer, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allows other daemon tool authors an alternative to logging to stderr.
be387fd057ee54ae5d84904e69587d6e29bd3950Mark Andrews [William Rowe]
d72269740049af28b091ba81d68a067c88f53547Mark Andrews *) Fix subreqs with non-defined Content-Types being served improperly.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Merge in latest GNU config.guess and config.sub files. PR 7818.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move 100 - Continue support to the HTTP_IN filter so that filters
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews are guaranteed to support 100 - Continue logic without any
ff7f1dc0393cfc8a033be7e94aa56cd57c97d174Andreas Gustafsson intervention. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add HTTP chunked input trailer support. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rename and export get_mime_headers as ap_get_mime_headers.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow empty Host: header arguments. PR 7441. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Properly substitute sbindir as httpd's location in apachectl. PR 7840.
9b0c4bf7003db929fe00a345fc96fb97677d29e0Brian Wellington [Andreas Hasenack <andreas netbank.com.br>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow Win32 shebang scripts to follow the path (or omit the .exe
576f85e5fdb8805307f318db79dfc0d19e390d1aAndreas Gustafsson suffix from the shebang command), and allow ScriptInterpreterSource
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Registry or RegistryStrict to override shebang lines, as 1.3 did.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 8004 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker MPM: Fix a situation where a child exited without releasing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the accept mutex. Depending on the OS and mutex mechanism this
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews could result in a hang. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the instructions for how to get started with mod_example.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Stas Bekman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix PidFile to default to rel_runtimedir instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews rel_logfiledir. PR 7841. [Andreas Hasenack <andreas netbank.com.br>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Fix problem that caused rapid performance degradation
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when number of connecting clients exceeded ThreadsPerChild.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a segfault parsing large SSIs on non-mmap systems.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Havard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Proxy was bombing out every second keepalive request, caused by a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stray CRLF before the second response's status line. Proxy now
d119051ef75d5a88d28c13fb0a7c6d6757a4e9b5Brian Wellington tries to read one more line if it encounters a CRLF where it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews expected a status. PR 10010 [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Deprecated the apr_lock.h API. Please see the following files
9b0e404e5fc71a2bd4fba8a66296477f815af7d5Brian Wellington for the improved thread and process locking and signaling:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_proc_mutex.h, apr_thread_mutex.h, apr_thread_rwlock.h,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_thread_cond.h, and apr_global_mutex.h. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change mod_status to use scoreboard accessor functions so it can
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be used in any MPM without having to be recompiled.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix parsing of some AP_DECLARE_DATA declarations so that the filter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews handle declarations are recognized. This fixes problems loading
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_autoindex on some platforms. [Brian Havard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) add optional fixup hook to proxy [Daniel Lopez <daniel covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remind the admin about the User and Group directives when we are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews unable to set permissions on a semaphore. PR 7812 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix possible compilation problem in ssl_engine_kernel.c. PR 7802
148af05e15f5d7ae3b076231617369fdaf57d26dAndreas Gustafsson [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix possible infinite loop in mod_ssl triggered by certain
d31498a54482c8d5d934875d3fdeaa621c962d6fBrian Wellington netscape clients [Doug MacEachern]
a2a7eaf89cd68acdb16177bb05701107ceab52b9Brian Wellington *) fix ProxyPass when frontend is https and backend is http
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add DASL support to mod_dav
54ce9b2e29aafe1cb5f898a0983fb66e450e9559Brian Wellington [Sung Kim <hunkim cse.ucsc.edu>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.35
7357590beef5f671cfdd4ec4304e5210adfb0d8aBrian Wellington *) mod_rewrite: updated to use the new APR global mutex type.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixes for mod_include errors on boundary conditions in which
8dd5237a27e2e824d18f835dc711573aeb23a173Mark Andrews "<!--#" occurs at the very end of a bucket
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul Reder, Brian Pane]
3b5102fc018a29e52befde5991844843c7b70786Michael Sawyer *) worker, prefork, perchild, beos MPMs: Add -DFOREGROUND switch to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cause the Apache parent process to run in the foreground (similar to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews -DNO_DETACH except that it doesn't switch session ids).
3b5102fc018a29e52befde5991844843c7b70786Michael Sawyer [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added support for Posix semaphore mutex locking (AcceptMutex posixsem)
f7e900edbc368275aa7cec7ebec0986e45aeadd7Mark Andrews for those platforms that support it. If using the default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews implementation, this is between pthread and sysvsem in priority.
ec772e873bd7f24418049b5b1b5d7c44ff781356Brian Wellington This implies it's the new default for Darwin. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) AIX: Fix the syntax for setting the LDR_CNTRL and AIXTHREAD_SCOPE
abfbf760f3bc2a6744b0249a31ca5153234b49e8Brian Wellington environment variables in the envvars file. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker MPM: Don't create a listener thread until we have a worker
75768d5fa2c6c5c441b849ca4efa649a7c2a9e88Bob Halley thread. Otherwise, in situations where we'll have to wait a while
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to take over scoreboard slots from a previous generation, we'll be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews accepting connections we can't process yet. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow worker MPM to build on systems without pthread_kill().
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Pier Fumagalli, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent ap_add_output_filters_by_type from being called in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_set_content_type if the content-type hasn't changed.
fa280ff02ad0c29616a0c3a22ef02cbb3f6db7efDavid Lawrence [Justin Erenkrantz]
22dbaf9ad8065127fd93eff0f239fd9c548d18b6Andreas Gustafsson *) Performance: implemented the bucket allocator made possible by the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews API change in 2.0.34. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Don't allow initialization to succeed if we can't get a socket
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews corresponding to one of the Listen statements. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.34
fa280ff02ad0c29616a0c3a22ef02cbb3f6db7efDavid Lawrence *) Allow all Perchild directives to accept either numerical UID/GID
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews or logical user/group names. [Scott Lamb <slamb slamb.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make Perchild compile cleanly and serve pages again. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) implement ssl proxy to support ProxyPass / https:// and the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews SSLProxy* directives [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update mod_cgid to not do single-byte socket reads for CGI headers
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Made AB's use of the Host: header rfc2616 compliant
a110543bb4d2e53caa40f83c2b45786a1efe63efAndreas Gustafsson by Taisuke Yamada <tai iij.ad.jp> [Dirk-Willem van Gulik].
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The old, legacy (and unused) code in which the scoreboard was totally
ef9f9001fca9445ef315b1e76a66fc84fef6fdc6Andreas Gustafsson and completely contained in a file (SCOREBOARD_FILE) has been
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews removed. This does not affect scoreboards which are *mapped* to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews files using named-shared-memory. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change bucket brigades API to allow a "bucket allocator" to be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews passed in at certain points. This allows us to implement freelists
86b8c485762daa54a96d033110f6f41ea96e5213David Lawrence so that we can stop using malloc/free so frequently.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cliff Woolley, Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add support for macro expansion within the variable names in
125a916d1a0c01f139ced5736145703df28d07cfDavid Lawrence <!--#echo--> and <!--#set--> directives [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some mod_include segfaults [Cliff Woolley, Brian Pane, Brad Nicholes]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the "RedHat" Layout to match Red Hat Linux version 7. PR BZ-7422
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) add compat layer to support RSA SSLC 1.x and 2.x in mod_ssl
02e38214502c3a946cdfe87e16525747617a1150Brian Wellington [Jon Travis, John Barbee, William Rowe, Ryan Bloom, Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a new parameter to the quick_handler hook to instruct
f8da2d95835c5216570a45e9000f740321503ae3David Lawrence quick handlers to optionally do a lookup rather than actually
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews serve content. This is the first of several changes required fix
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews several problems with how quick handlers work with subrequests.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) worker MPM: Get MaxRequestsPerChild to work again. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) [APR-related] The ordering of the default accept mutex method has
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews been changed to better match what's done in Apache 1.3. The ordering
a110543bb4d2e53caa40f83c2b45786a1efe63efAndreas Gustafsson is now (highest to lowest): pthread -> sysvsem -> fcntl -> flock.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jim Jagielski]
bd5f2ac1880f5f2e96b291378c3dff296fc011f1Mark Andrews *) Ensure that the build/ directory is created when using VPATH.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add some popular types to the mime magic file. PR 7730.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Linus Walleij <triad df.lth.se>, Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove the single-byte socket reads for CGI headers [Brian Pane]
7d33e8996948523e0180bc7e28a93d534d878dccAndreas Gustafsson *) When a proxied site was being served, Apache was replacing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the original site Server header with it's own, which is not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allowed by RFC2616. Fixed. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a mod_cgid problem that left daemon processes stranded
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in some server restart scenarios. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added exp_foo and rel_foo variables to config_vars.mk for
736aab3076e9bec708cec073f5cf8e6c4b588886Brian Wellington all Apache and Autoconf path variables (like --sysconfdir,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --sbindir, etc). exp_foo is the "expanded" version, which means
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that all internal variable references have been interpolated.
bb1cf189bb9fd9059cf13b785d15b0e50c0be8fbAndreas Gustafsson rel_foo is the same as $exp_foo, only relative to $prefix if they
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews share a common path. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some restart/terminate problems in the worker MPM. Don't
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews drop connections during graceful restart. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the header merging behaviour in proxy, as some headers
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (like Set-Cookie) cannot be unmerged due to stray commas in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews dates. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Be more vocal about what AcceptMutex values we allow, to make
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews us closer to how 1.3 does it. [Jim Jagielski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get nph- CGI scripts working again. PRs 8902, 8907, 9983
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
acc63b06d9e4e2137950dabddcccd17d8b336ca0Olafur Gudmundsson *) Upgraded PCRE library to latest version 3.9 [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add accessor function to set r->content_type. From now on,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_rset_content_type() should be used to set r->content_type.
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews This change is required to properly implement the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews AddOutputFilterByType configuration directive.
c8fc692fa1445ccfc39b68902546cdfc7ee30d3eBrian Wellington [Bill Stoddard, Sander Striker, Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add new M_FOO symbols for the WebDAV/DeltaV methods specified by
f19771c55d7e7d5bb38160e710185e6e61749d16Andreas Gustafsson RFC 3253. Improved the method name/number mapping functions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) remove sock_enable_linger from connection.c [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix for virtual host processing where the requested hostname
f1d427043e94371cdf1f21b3cbd65917adbcff25Andreas Gustafsson has a '.' at the end (PR 9187) [Ryan Cruse <ryan estara.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav's APIs for REPORT response handling was changed so that
10e22ebcc3629be94d37bf408157e2c5ee5740e0Andreas Gustafsson providers can generate the content directly into the output filter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stack, rather than buffering the response into memory. [Greg Stein]
6c29053a20f7614167bafa4388c666644a095349Andreas Gustafsson *) Fix a hang condition with graceful restart and prefork MPM
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in the situation where MaxClients is very high but
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews much fewer servers are actually started at the time of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews restart. [Jeff Trawick]
3d509f54ac6bbcc19de5aa6d1ce37e001821dc7bDavid Lawrence *) Small performance fixes for mod_include [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance improvement for the error logger [Brian Pane]
a59ed6543bbc13e7c784d6badce7b757c2620e28David Lawrence *) Change configure so that Solaris 8 and above have
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews SINGLE_LISTEN_UNSERIALIZED_ACCEPT defined by default.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews according to sun people solaris 8+ doesn't have a thundering
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews herd problem [Ian Holsman]
10e6498d6d7b2cfd8d822788d817fc9a3e0b0c3aDavid Lawrence *) Allow URIs specifying CGI scripts to include '/' at the end
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (e.g., /cgi-bin/printenv/) on AIX and Solaris (and other OSs
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews which ignore '/' at the end of the names of non-directories).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 10138 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) implement SSLSessionCache shmht and shmcb based on apr_rmm and
bf00f50cf43a43a999b5ab054cab652f7775dce6Brian Wellington apr_shm. [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix apxs -g handling. Move config_vars.mk from the top build
253f774e358dba38742a484426a4cadf4f248817Brian Wellington directory to the build directory. PR 10163 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some mod_include problems which broke evaluation of some
2de31518c3da27092120b40fc373cecf600d64e6Brian Wellington expressions. PR 10108 [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the calculation of request time in mod_status. [Stas Bekman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the calculation of thread_num in the worker score structure.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Stas Bekman]
10e22ebcc3629be94d37bf408157e2c5ee5740e0Andreas Gustafsson *) Use apr_atomic operations in managing the mod_mem_cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cache_objects for SMP scalability. (see USE_ATOMICS
2732332fe53d00592109ef69c0075fcc2ad09db9Brian Wellington preprocessor directive in mod_file_cache)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
8fa78d9ad5f5ab6c69d1d52b00b1ffcdf1bd5bebMichael Sawyer *) Add filehandle caching to mod_mem_cache. (see CACHE_FD
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews preprocessor directive in mod_file_cache)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Implement prototype mod_disk_cache for use with mod_cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a missing manualdir entry in the Debian config.layout.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Stop installing libtool for APR and tell APR where it should place
3c7ce471aa8a1a9c5bc0ca9e41f406bdc9f0b2aeAndreas Gustafsson its copy of libtool (via our installbuildpath layout variable).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New directive ProxyIOBufferSize. Sets the size of the buffer used
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when reading from a remote HTTP server in proxy. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify receive/send loop in proxy_http and proxy_ftp so that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews should it be necessary, the remote server socket is closed before
c9d7e543d0da2996d1cc52d3c5920141df49a4ecBrian Wellington transmitting the last buffer (set by ProxyIOBufferSize) to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews client. This prevents the backend server from being forced to hang
6dbf9cbe6a39a00de910ef843b9f864abf68bc40Brian Wellington around while the last few bytes are transmitted to a slow client.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fix the case where no error checking was performed on the final
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews brigade in the loop. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Scrap CacheMaxExpireMin and CacheDefaultExpireMin. Change
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews CacheMaxExpire and CacheDefaultExpire to use seconds rather than
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hours. [Graham Leggett, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Directive SSIUndefinedEcho. to change the '(none)' echoed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for a undefined variable. [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Proxy HTTP and CONNECT: Keep trying other addresses from the DNS
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when we can't get a socket in the specified address family. We may
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews have gotten back an IPv6 address first and yet our system is not
4d5c668a91c6e5a26653031dd137292bfc03da52Andreas Gustafsson configured to allow IPv6 sockets. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Be more careful about recursively removing CVS directories. Make
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews sure that we aren't cd'ing to their home directory first. PR: 9993
f437f6ffae28f88334cf47ce8f948cbf40331ffaAndreas Gustafsson [Aaron Bannert, James LewisMoss <dres lewismoss.net>]
704d6eeab1d8d6a2aeb99c37fa5a97322d9340fcBrian Wellington *) Add a missing errordir entry in the Debian config.layout. PR: 10067
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dirk-Jan Faber <dirk-jan selwerd.nl>, Aaron Bannert,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rename the filter ordering priorities. The recent filtering fixes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews have showcased problems with their usage. Therefore, we need to
4d5c668a91c6e5a26653031dd137292bfc03da52Andreas Gustafsson rename them to increase the clarity. (CONTENT->RESOURCE,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HTTP_HEADER->CONTENT_SET/PROTOCOL) [Justin Erenkrantz]
9c566a852f31c3a5d0b9d6eaf11463114339c01dAndreas GustafssonChanges with Apache 2.0.33
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem in the new --enable-layout functionality where
9c566a852f31c3a5d0b9d6eaf11463114339c01dAndreas Gustafsson it wouldn't allow overrides from variables like --prefix,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --bindir, etc. [Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug in the core input filter for AP_MODE_EXHAUSTIVE. It
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews no longer hangs around waiting for the socket to close before
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews returning exhaustive data. [Aaron Bannert]
4c08b67a5f01eda472a9dfee4c73dbbac49c0065Mark Andrews *) rename apr_exploded_time_t to apr_time_exp_t (as per renames pending)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Thom May <thom planetarytramp.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change mod_ssl to always do a full startup/teardown on restarts.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews this allows mod_ssl to be added to a server that is already
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews running and makes it possible to add/change certs/keys after the
1addbb84718fdb7635459ed05f060be086e88f35Andreas Gustafsson server has been started. [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce PassPhraseDialog "|/path/to/pipe" mechanism to mod_ssl.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This pipe must be a bidirectional 'console' style relay, which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_ssl prints all prompts to the pipe's stdin, and reads the
d3be9a9c6ef76a5d7671b0962785ca025b153d2bAndreas Gustafsson passphrases from the pipe's stdout. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug where --sysconfdir and --localstatedir were being
e9fce1415f8be4cd38d528950c92c481bd105254Mark Andrews ignored. [Thom May <thom planetarytramp.net>, Aaron Bannert]
59e1a928bc4253b91ead0f7c46be7d3984cb3016Bob Halley *) Fix --enable-layout to work again. Caution: When specifying
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --enable-layout, common arguments like --prefix, --exec-prefix,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews etc. will be ignored and the settings from the layout will be
90cd33e0baf23574a88a4c967afec8b95a1801deAndreas Gustafsson used instead. [Thom May <thom planetarytramp.net>, Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR 9124, 9873, 9885
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Directive for mod_proxy: ProxyRemoteMatch. This provides
517950ae99fa271b034a5cfec1c9fbb62696f975Mark Andrews regex pattern matching for the determination of which requests
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to use the remote proxy for. [Jim Jagielski]
dfd7798d8b870abf03795d8095297a4b982ab6e9Mark Andrews *) Fix CustomLog bytes-sent with HTTP 0.9. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent Apache from ignoring SIGHUP due to some lingering 1.3
19ff7edc1a6388085193f5487e1599f45aa62648Mark Andrews cruft in piped logs and rewritemap child processes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
8a0ff6c15cb20c903f9e16a3d5c2cab603478bc3Mark Andrews *) All instances of apr_lock_t have been removed and converted
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to one of the following new lock APIs: apr_thread_mutex.h,
a6dbd6b6604e27ae3c7190de20dbcaaa6e5a1fd8Andreas Gustafsson apr_proc_mutex.h, or apr_global_mutex.h. No new code should
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews use the apr_lock.h API, as the old API will soon be deprecated.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Merged in changes to mod_ssl up through 2.8.7-1.3.23.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ralf S. Engelschall, Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod-include: make it handle flush'es and fix the 'false-alarm'
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz, Brian Pane, Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) ap_get_*_filter_handle() functions to allow 3rd party modules
a6dbd6b6604e27ae3c7190de20dbcaaa6e5a1fd8Andreas Gustafsson to lookup filter handles so they can bypass the filter name
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews lookup when adding filters to a request (via ap_add_*_filter_handle())
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix for multiple file buckets on Win32, where the first file
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bucket would cause the immediate closure of the socket on any
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews non-keepalive requests. [Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Correct Win32 failure of mmap of a segment beyond start of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews file; fixes large SSL and similar transfers. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Implement apr_proc_detach changes and allow -DNO_DETACH in the
ba6fd2580863759baedd9c47153602b19006a324Andreas Gustafsson multi-process mode to not "daemonize" while detaching from the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews controlling terminal. This is necessary for Apache to work with
ba6fd2580863759baedd9c47153602b19006a324Andreas Gustafsson process-management tools like AIX's "System Resource Controller"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as well as Dan Bernstein's "daemontools".
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jos Backus <josb cncdsl.com>, Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Convert mod_auth_digest to use the new apr_global_mutex_t
850d70818503ca1b0f98c9c70b16b51e789fd705Andreas Gustafsson type. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix bug in mod-include where it wouldn't send a unmatched
dd16d9d9e77c2d906ee5ffa3dd9f71cacfbcb081Brian Wellington part if it was at the end of a bucket [Ian Holsman]
d3a86da2e8f09e2c3f55721aae537b9cacc7e537Andreas Gustafsson *) worker MPM: Improve logging of errors with the interface between
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the listener thread and worker threads. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Some browsers ignore cookies that have been merged into a
850d70818503ca1b0f98c9c70b16b51e789fd705Andreas Gustafsson single Set-Cookie header. Set-Cookie and Set-Cookie2 headers
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews are now unmerged in the http proxy before being sent to the
3c82f274bd880a33fdaf211af4fe8f6b3d6ca556David Lawrence client. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem with proxy where each entry of a duplicated
3c82f274bd880a33fdaf211af4fe8f6b3d6ca556David Lawrence header such as Set-Cookie would overwrite and obliterate the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews previous value of the header, resulting in multiple header
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews values (like cookies) going missing.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett, Joshua Slive]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add the server-limit and thread-limit values to the scoreboard
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for the sake of third-party applications.
3c82f274bd880a33fdaf211af4fe8f6b3d6ca556David Lawrence [Adam Sussman <myddryn vishnu.vidya.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault when proxy recieves an invalid HTTP response [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) OS/390: Get make install to properly copy DSO modules.
78d78f05d91205cbde33ca87d24b8d13aa2d8d66Brian Wellington [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Fix bug in mod_status with displaying "Restart Time"
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and "Server uptime".
5afc10d6d8278c9ab34b9f6c82ef7bb3bfefd0efAndreas Gustafsson [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix IPv6 name-based virtual hosts. [Jeff Trawick]
3f01dde0bd24561fc3a6c2f7e259a58af4457a86Brian Wellington *) Introduce AddOutputFilterByType directive. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix DEBUG_CGI support in mod_cgi. PR 9670, 9671.
626b221f7113479a0709f0bb0a8193c0ab0dcf84Andreas Gustafsson [David MacKenzie <djm pix.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix incorrect check for script_in in mod_cgi. PR 9669.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [David MacKenzie <djm pix.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault and display error when SSLMutex file can not be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews created. [Adam Sussman <myddryn vishnu.vidya.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add reference counting to mod_mem_cache cache objects to
ebfcb6cf66283096ebda1503b6cc042ce86b6bedBrian Wellington better manage removing objects from the cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the verbage on the ScoreBoardFile in our default configs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Also change the default to be commented out (unspecified) so we
dffdc24ffd76ef3d8c8141671e89fb39428fef06Brian Wellington get anonymous shared memory by default. [Aaron Bannert]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) Implement new ScoreBoardFile directive logic. This affects how
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews we create the scoreboard's shared memory segment. If the directive
17442ccc2b2e9c3b3bfc337f0fdfad6186fbb123Mark Andrews is present, a name-based segment is created. If the directive is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not present, first an anonymous segment is created, and if that
61b0df9eb522f13aef13cc2704728e799cbc251aMichael Sawyer fails, a name-based segment is created from a file of the name
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DEFAULT_SCOREBOARD. This gives third-party applications the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ability to access our scoreboard. [Aaron Bannert]
369bb68c2c7709c7fd8b0d6c1d1f8abc6422a7e2Michael Sawyer *) Allow mod_deflate to work with non-GET requests and properly send
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Content-Lengths. [Sander Striker <striker apache.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix ap_directory_merge() to correctly merge configs when there is
3dcb97b199693012d12e978b8f577a339e434361Andreas Gustafsson no <Directory /> block. [Justin Erenkrantz, William Rowe]
4ec1a96d90784f70380bdec66f8a0bd6718a5b71Mark Andrews *) Remove spurious debug messsages that are normal under HTTP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews keep-alive logic. [Jeff Trawick, Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug in mod_cgid that would prevent proper shutdown death
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of the cgid process. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add signal handling back in to the worker MPM for the one_process
0fc89c4ee660e825ac66774f2d4912cfc396386aMark Andrews (-X, -DDEBUG, -DONE_PROCESS) case. [Aaron Bannert]
e21d199dca95aff5d50f133d6b064309e209af00Brian Wellington *) Performance: Reuse per-connection transaction pools in the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews worker MPM, rather than destroying and recreating them. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove all signals from the worker MPM's child process. Instead,
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews the parent uses the Pipe of Death for all communication with the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews child processes. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.32
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_negotiation: ForceLanguagePriority now uses 'Prefer' as the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews default if the directive is not specified. This mirrors older
6ef15459b8fd3fc8b5672da4ad72c19a755dbe45Mark Andrews behavior without changes to the httpd.conf. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: solve the win32 service problems in 2.0.31-alpha, by fixing
b65f2ab14abb4b6ef906d7d02064fba158f07b1eDavid Lawrence the service, mpm and logging code, and bugs in apr_file_open_stderr
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and apr_file_dup2 functions. Win2K/XP services have no handles
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews associated for stdin/out/err, which caused unpredictable behavior
b65f2ab14abb4b6ef906d7d02064fba158f07b1eDavid Lawrence in the prior release. [William Rowe, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: simplify the Application Event Log messages, since there isn't
c03bb27f0675a6e60ceea66b451548e8481bc05cMark Andrews likely to be 'more information in the error log' before an error log
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews has been opened. [William Rowe]
c03bb27f0675a6e60ceea66b451548e8481bc05cMark Andrews *) Win32: substantial cleanup to the mpm_winnt code for legibility and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to follow the program flow of other MPMs. [Ryan Bloom, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: apache -k shutdown now behaves like apache -k stop.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix prefork to not kill the parent if a child hits a resource shortage
051706a29a73416fbae116952dd6b6bdda765538Mark Andrews on accept(). [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix seg faults that occur when what should be the httpd request line
4b6d5b2312d1482cc406fe58fa3269dd7a915b3fMark Andrews starts with \r\n followed by garbage. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow statically linked support binaries with the new
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --enable-static-support flag, and enable this behavior in
29c818c7d40fc8898b062903ec703851328a4deaMark Andrews the binbuild script. Also add a new --enable-static-htdbm
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews flag. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod_autoindex to serve symlinks if permitted and attempt to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews do only one stat() call when generating the directory listings.
28b7844ee93231da831ba3c090e1677bb1be5f18Andreas Gustafsson [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix resolve_symlink to save the original symlink name if known.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
37d1c8ee546ae89720c3e17e57ee3a05e9cdc7b9Brian Wellington *) Be a bit more sane with regard to CanonicalNames. If the user has
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specified they want to use the CanonicalName, but they have not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configured a port with the ServerName, then use the same port that
28b7844ee93231da831ba3c090e1677bb1be5f18Andreas Gustafsson the original request used. [Ryan Bloom and Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) In core_input_filter, check for an empty brigade after
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews APR_BRIGADE_NORMALIZE(). Otherwise, we can get segfaults if a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews client says it will post some data but we get FIN before any
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews data arrives. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Not being able to bind to the socket is a fatal error. We should
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews print an error to the console, and return a non-zero status code.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews With these changes, all of the Unix MPMs do that correctly.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) suexec: Allow HTTPS and SSL_* environment variables to be passed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews through to CGI scripts. PR 9163
f90fe7c8b9a3eef8968fac74905e868c8ab583a3Brian Wellington [Brian Reid <breid customlogic.com>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Zvi Har'El <rl math.technion.ac.il>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) binbuild.sh: Make sure that we use the expat from our source
190fbe9738bd0c1b9b13732bb8bd56b2b7c71640David Lawrence tree so that there aren't any surprises on the target machine.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_cgid: Add retry logic for when the daemon can't fork fast
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews enough to keep up with new requests. Start using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HTTP_SERVER_UNAVAILABLE instead of HTTP_INTERNAL_SERVER_ERROR
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when we can't talk to the daemon. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) apxs: LTFLAGS envvar can override default libtool options. Try
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "LTFLAGS=' ' apxs -c mod_foo.c" to see what libtool does under
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the covers. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The Location: response header field, used for external
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirect, *must* be an absoluteURI. The Redirect directive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews tested for that, but RedirectMatch didn't -- it would allow
c40085afa75a5eae732ec1198384dd5cb24400b6Bob Halley almost anything through. Now it will try to turn an abs_path
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews into an absoluteURI, but it will correctly varf like Redirect
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if the final redirection target isn't an absoluteURI. [Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.31
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Create the scoreboard (in the parent) in a global pool context,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews so it survives graceful restarts. This fixes a SEGV during
b38ebe307cb2411535c79afd441870a99cc50eddMark Andrews graceful restarts. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a timeout option to the proxy code 'ProxyTimeout'
c2e0aac879097f81bcd31e3d09660a71e70c5fb0Michael Sawyer [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) FTP directory listings are now always retrieved in ASCII mode.
588b63e1a86fb707172830e14897da624ed380edMark Andrews The FTP proxy properly escapes URI's and HTML in the generated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews listing, and escapes the path components when talking to the FTP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server. It is now possible to browse the root directory by using
bb17aa91c14de959b191a200df61afb6a68f110fBrian Wellington a url like: ftp://user@host/%2f/ (ported from apache_1.3.24)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Also, the last path component may contain wildcard characters
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews '*' and '?', and if they do, a directory listing is created instead
452d75b18f9d050086964fa39c326cf388517396Mark Andrews of a file retrieval. Example: ftp://user@host/httpd/server/*.c
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Martin Kraemer]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added single-listener unserialized accept support to the
6850cdd4497424c9d42ade487edfde9fb9a47de9Brian Wellington worker MPM [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Directive for mod_proxy: 'ProxyPreserveHost'. This passes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the incoming host header through to the proxied server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Directive Option for ProxyPass. It now can block a location
6c87cf19970a9eef43c1e38227cd23b3a2f6151aMark Andrews from being proxied [Jukka Pihl <jukka.pihl entirem.com>]
7869b99dc815e3b863351b8095d1b71b3f583541Brian Wellington *) Don't let the default handler try to serve a raw directory. At
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews best you get gibberish. Much worse things can happen depending
df1e829dde71ab960545453e4ae439ae601d5a9eMark Andrews on the OS. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the pre_config hook to return a value. Modules can now emit
df1e829dde71ab960545453e4ae439ae601d5a9eMark Andrews an error message and then cause the server to quit gracefully during
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews startup. This required a bump to the MMN. [Aaron Bannert]
fb04db11ee6aad3ac3e023ab89b5f9d8a4d5674dMichael Sawyer *) Fix some unix socket descriptor leaks in the handler side of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_cgid (the part that runs in the server process). Whack a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews silly "close(-1)" in the handler too. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the pre_mpm hook to return a value, so that scoreboard
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews init errors percolate up to code that knows how to exit
fb04db11ee6aad3ac3e023ab89b5f9d8a4d5674dMichael Sawyer cleanly. This required a bump to the MMN. [Jeff Trawick]
fb04db11ee6aad3ac3e023ab89b5f9d8a4d5674dMichael Sawyer *) Add the socket back to the conn_rec and remove the create_connection
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hook. The create_connection hook had a design flaw that did not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allow creating connections based on vhost info. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed PATH_INFO and QUERY_STRING from mod_negotiation results.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Resolves the common case of using negotation to resolve the request
e65fe7af00935a0a81d4b0b0ed51c7f6c89f5c3bAndreas Gustafsson /script/foo for /script.cgi/foo. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added new functions ap_add_(input|output)_filter_handle to
4bb3a1a63d7943564f30bf9efd312283141439a2Andreas Gustafsson allow modules to bypass the usual filter name lookup when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews adding hard-coded filters to a request [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) caching should now work on subrequests (still very experimental)
e2b52099918681498136fc82df192d256cc3cdd3Brian Wellington [Ian Holsman]
389ec663f262cc219e986d6600eec9707ef2cb24Brian Wellington *) The Win32 mpm_winnt now has a shared scoreboard. [William Rowe]
e549eb1242b69ee050440e7205a5633cb56199b3Mark Andrews *) Change ap_get_brigade prototype to use apr_off_t instead of apr_off_t*.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Refactor ap_rgetline so that it does not use an internal brigade.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Change ap_rgetline's prototype to return errors. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove mod_auth_db. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Do not install unnecessary pcre headers like config.h and internal.h.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Joe Orton <joe manyfish.co.uk>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change in quick_hanlder behavior for subrequests. it now passes DONE
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (as it does for a normal request). quick_handled sub-requests now work
ff7e6f2791cc5ad7c5f401a184b88343fde5ec3cAndreas Gustafsson in mod-include [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change SUBREQ_CORE so that it is a 'HTTP_HEADER' filter instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 'CONTENT' one, as it needs to run AFTER all content headers
2bebe117bf96d7e24df4d703d6488d61a5179bcaMark Andrews *) Rename BeOS MPM directive RequestsPerThread to MaxRequestsPerThread.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Lars Eilebrecht]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Split out blocking from the mode in the input filters.
3f123dcc2fe5d2cd08ca91b732741d86a4036906Brian Wellington [Justin Erenkrantz]
16ea60d0dbbaf1206f4800cb16744ef568fd7be8Michael Sawyer *) Fix a segfault in mod_include. [Justin Erenkrantz, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Cause Win32 to capture all child-worker process errors in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Apache to the main server error log, until the child can
85b23709431b1a84924fe2844f5cf657d1689eefMichael Sawyer open its own error logs. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) HPUX 11.*: Do not kill the child process when accept()
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews returns ENOBUFS on HPUX 11.*. (ported from th 1.3 patch)
d15f51c600ed29b2dc379c433fb226c3a13ac0bbAndreas Gustafsson [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem in the parsing of the <Proxy foo> directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
aa2c453d3c6e416b56b29247bedd9a0af2721e93Mark Andrews *) rewrite of mod_ssl input filter for better performance and less
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews memory usage [Doug MacEachern]
e412ae947df6de858883564b8676a9650df70d9aMark Andrews *) allow quick_handler to be run on subrequests. [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav now asks its provider to place content directly into the
07a926724c0a91d85b85a94441938d0094e88cffMark Andrews filter stack when handling a GET request. The mod_dav/provider
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews API has changed, so providers need to be updated. [Greg Stein]
07a926724c0a91d85b85a94441938d0094e88cffMark Andrews *) Clear the output socket descriptor in unixd_accept() to make sure
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews we don't supply a bogus socket to the caller if the accept fails.
90023730de34721b8cd8f3b5d059a28b7a65cf04Andreas Gustafsson This caused problems with the worker MPM, which tried to process
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the returned socket if it was non-NULL. [Brian Pane]
922e6a3c2ac4ef900dd9dc99f0cc137f18372583Andreas Gustafsson *) Move a check for an empty brigade to the start of core input filter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to avoid segfaults. [Justin Erenkrantz, Jeff Trawick]
280747fa7c1d4597d47f7be8ec5fb7c8980c1952Andreas Gustafsson *) Add FileETag directive to allow configurable control of what
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews data are used to form ETag values for file-based URIs. MMN
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bumped to 20020111 because of fields added to the end of
27d725f2b0f8d176d4625dc8b2ed71269b25c9a7Andreas Gustafsson the core_dir_config structure. [Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault in mod_rewrite's logging code caused by passing the
337ca1838428c52bca3c72288342ce3dee550a04Andreas Gustafsson wrong config to ap_get_remote_host(). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod_cgid to work from a binary distribution install by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews using 755 for the permissions on the log directory instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 750. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a segfault that happened during graceful shutdown (or when
6b0ce7d29fac9df84ed34aa2d4634e754aec750dAndreas Gustafsson the httpd ran out of file descriptors) with the worker MPM [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Split all Win32 modules [excluding the core components mod_core,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_so, mod_win32 and the winnt mpm] into individual loadable
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules, so the administrator may individually disable the former
c89ac488df58cf6a37918cd00236eedf015830f8Andreas Gustafsson compiled-in modules by simply commenting out their LoadModule
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directives. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Saved Win32 module authors and porters many future headaches, by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews duplicating the appropriate .h files such as os.h into the include
c89ac488df58cf6a37918cd00236eedf015830f8Andreas Gustafsson directory, including in the build tree. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_ssl adjustments to help with using toolkits other than OpenSSL:
46a7e707fee6d7ba6ca6dae200ff6e0230f4d2f1Brian Wellington Use SSL functions/macros instead of directly dereferencing SSL
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews structures wherever possible.
9d3ef72b37c7d23ce3aaaaa5cd0434b4e5ed5c12Mark Andrews Add type-casts for the cases where functions return a generic pointer.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Add $SSL/include to configure search path.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Moved several pointers out of the shared Scoreboard so it is
c50a002bd1e36d13e95d74b43ed4a2b5d6fdcec3Mark Andrews more portable, and will present the vhost name across server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews generation restarts. [William Rowe]
c50a002bd1e36d13e95d74b43ed4a2b5d6fdcec3Mark Andrews *) Fix SSLPassPhraseDialog exec: and SSLRandomSeed exec:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Doug MacEachern]
c50a002bd1e36d13e95d74b43ed4a2b5d6fdcec3Mark AndrewsChanges with Apache 2.0.30
07a46d6dca37ef96b6e9c1fc0c2789983d91819cAndreas Gustafsson *) Fix the main bug for FreeBSD and threaded MPM's. There are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews still issues (see STATUS) but at least the server will now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews run without crashing the machine.
051beeafa6547440da17985665b31952b85ede56Brian Wellington [David Reid, Aaron Bannert, Justin Erenkrantz]
cd73a1c823bc9feea603803a96a9e5f5da8bf33dMichael Sawyer *) Fix a typo in mod_deflate's m4 config section.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [albert chin <china thewrittenword.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a couple of mod_proxy problems forwarding HTTP connections
6d85ebc2d2ccbb8ef01c3ac1659686d3c2be0377Brian Wellington and handling CONNECT:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (1) PR #9190 Proxy failed to connect to IPv6 hosts.
b0796437d493ca2e083ab0ff02acf0dc0c8ad2a3David Lawrence (2) Proxy failed to connect when the first IP address returned by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the resolver was unreachable but a secondary IP address was.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
98b8d49c0c0bbace27966eed5811bc81255ce297Brian Wellington *) Fix the module identifer as shown in the docs for various core
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules (e.g., the identifer for mod_log_config was previously
e42c402595802edceafbd3e5338dda011fbbcdb6Michael Sawyer listed as config_log_module). PR #9338
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [James Watson <ap2bug sowega.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix LimitRequestBody directive by placing it in the HTTP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews filter. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_proxy seg fault when the proxied server returns
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an HTTP/0.9 response or a bogus status line.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Adam Sussman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent mod_proxy from truncating one character off the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews end of the status line returned from the proxied server.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Adam Sussman, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Eliminate loop in ap_proxy_string_read().
2868291ab5d4deba4d61c110f92dc397807702c7Mark Andrews [Adam Sussman, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Provide $0..$9 results from mod_include regex parsing.
be1d71fd17c92b0acee36ba43ebe4daa498e8014Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod-include to look for alternate start & end tags [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduced the ForceLanguagePriority directive, to prevent
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases,
afd2f40b3cff8c3c307155bdc27e5b60e9115545Andreas Gustafsson when using Multiviews. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem which prevented mod_cgid and suexec from working
c605f30cd7d540243509c86cf31b01bdd4fe19feMark Andrews together reliably [Greg Ames]
c605f30cd7d540243509c86cf31b01bdd4fe19feMark Andrews *) Remove the call to exit() from within mod_auth_digest's post_config
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews phase. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a problem in mod_auth_digest that could potentially cause
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews problems with initialized static data on a system that uses DSOs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
d03bffc40e68ddb63d278946fd9f7f1ad784f5bcMichael Sawyer *) Fix a segfault in the worker MPM that could happen during
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews child process exits. [Brian Pane, Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow mod_auth_dbm to handle multiple DBM types [Ian Holsman]
91ac60fe11b3ebd095c5fed0db343b2c9a97e646Mark Andrews *) Fix matching of vhosts by ip address so we find IPv4
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews vhost address when target address is v4-mapped form of
83d2840b6f1a5ec898e441be148ddd3211f11583Bob Halley that address. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) More performance tweaks to the BNDM string-search algorithm
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews used to find "<!--#" tokens in mod_include [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Miscellaneous small performance fixes: optimized away various
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews string copy operations and removed large temp buffers from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the stack [Brian Pane]
a405a53d536521e6c93f47485aacd7c1a1ffb29eAndreas Gustafsson *) Fixed startup segfault that occurred when a VirtualHost
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive had a port but no address [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow htdbm to work with multiple DBM types [Ian Holsman]
53df51bf458da9b04074b6b62b5639c926a751e4Andreas Gustafsson *) Win32: Made change to apr_sendfile() to return APR_ENOTIMPL
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if oslevel < WINNT. This should fix several problems reported
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Against 2.0.28 on Windows 98 [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Fix bug that could cause CGI scripts with QUERY_STRINGS
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to fail. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change core code to allow an MPM to set hard thread/server
056141f2878d1046306ef0ba035263a00de57f98Mark Andrews limits at startup. prefork, worker, and perchild MPMs now have
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directives to set these limits. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: The async AcceptEx() event should be autoreset upon
4440f995911810aaa98d8985ac1a8192095879f2Michael Graff successful completion of a wait (WaitForSingleObject). This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews eliminates a number of spurious
72c815ed1780b9039b9ad0d31faf68b3b5c05637Andreas Gustafsson setsockopt(SO_UPDATE_ACCEPT_CONTEXT) failed." messages.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move any load library path environment variables out of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apachectl and into a separate environment variable file which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews can be more easily tailored by the admin. The environment
b7e031d5173476224027407d8e23eaa7557fc396Andreas Gustafsson variable file as built by Apache may have additional system-
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specific settings. For example, on OS/390 we tailor the heap
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews settings to allow lots of threads. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Use the new APR pool code to reduce pool-related lock
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews contention in the worker MPM. [Sander Striker]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The POD no longer assumes the child is listening on 127.0.0.1
7ec4367f3d578170a9495ff3c851b248c1656f08Andreas Gustafsson and now pulls the first hostname in the list of listeners to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews perform the dummy connect on. This fixes a bug when the user
2c9c7c5bb5975a18925c30aeb33a26094902f1c1Andreas Gustafsson had configured the Listen directive for an IP other than
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 127.0.0.1. This would result in undead children and error
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews messages such as "Connection refused: connect to listener".
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert]
4440f995911810aaa98d8985ac1a8192095879f2Michael Graff *) The worker MPM now respects the LockFile setting, needed to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews avoid locking problems with NFS. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfault when worker MPM receives SIGHUP.
4440f995911810aaa98d8985ac1a8192095879f2Michael Graff [Ian Holsman, Aaron Bannert, Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug that could potentially prevent the perchild MPM from
4440f995911810aaa98d8985ac1a8192095879f2Michael Graff working with more than one vhost/uid. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change make install and apxs -i processing of DSO modules to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews perform special handling on platforms where libtool doesn't install
abaec24086f0cc3d7c0994ca9d2247b40eb6aaedBrian Wellington mod_foo.so. This fixes some wonkiness on HP-UX, Tru64, and AIX
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews which prevented standard LoadModule statements from working.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
3ad16d4c3a5029662d4ec804f7644739d011d03dBob Halley *) Whenever mod_so is enabled (not just when there are DSOs for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews our modules), do whatever special magic is required for compiling/
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews loading third-party modules. This allows third-party DSOs to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews be used on an AIX build when there were no built-in modules
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews built as DSOs. (This should help on OS/390 and BeOS as well.)
32b2cdf212de957e3f9b0efca59f098ed4fb42deBrian Wellington [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow apxs to be used to build DSOs on AIX without requiring the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user to hard-code the list of import files. (This should help
b42a7e9d80e293a5104d9de6ddabd29676918aa5Andreas Gustafsson on OS/390 and BeOS as well.) [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Resolved segfault in mod_isapi when configuring with ISAPICacheFile.
7f52817a92d74be0d970c33b204f8f13309eece5Andreas Gustafsson PR 8563, 8919 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get binary builds working when libapr and libaprutil are built
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews shared [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get shared builds of libapr and libaprutil, as well as Apache DSOs,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews working on AIX. [Aaron Bannert, Dick Dunbar <RLDunbar pacbell.net>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Gary Hook <ghook us.ibm.com>, Victor Orlikowski, Jeff Trawick]
1fc26319b5d69d19a7a31c8d0ab1afc2beef0c41Andreas Gustafsson *) Fix the handling of SSI directives in which the ">" of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews terminating "-->" is the last byte in a file [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add back in the "suEXEC mechanism enabled (wrapper: /path/to/suexec)"
7da0286b540515c82ea83163d6cba59a64fa3eddMichael Graff message that we had back in apache-1.3 and still have scattered
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews throughout our docs. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent the Win32 port from continuing after encountering an
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews error in the command line args to apache. [William Rowe]
c4ec2c3190175705df255aa3d5e842a96137a5a1Andreas Gustafsson *) On a error in the proxy, make it write a line to the error log
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Various mod_ssl performance improvements [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.29
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add buffering in core_output_filter to ensure that long
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews lists of small buckets don't cause small packet writes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane, Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the installation target to make sure that the manual is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews installed in the correct location.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Yoshifumi Hiramatsu <hiramatu boreas.dti.ne.jp> and
4187398298c1916f409b44e0457f60e551f5ea1bAndreas Gustafsson Gomez Henri <hgomez slib.fr>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the cmd command for mod_include. When we are processing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a cmd command, we do not want to use the r->filename to set
4b809ba3464c9fb6bb08e9153b9286a8f8a37b01Brian Wellington the command name. The command comes from the SSI tag. To do this,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews I added a variable to the function that builds the command line
a69cebac84ec223b908e056678fa7c1181785b20Andreas Gustafsson in mod_cgi. This allows the include_cmd function to specify
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the command line itself. [Ryan Bloom]
7d8d82cee0910a0252e1c37bace732e996789772Andreas Gustafsson *) Change open_logs hook to return a value, allowing you
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to flag a error while opening logs
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman, Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change post_config hook to return a value, allowing you
37a8fbab3a1fe6d513b767118cba7515152c2b9bBrian Wellington to flag a error post config
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow SUEXEC_BIN (the path to the suexec binary that is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hard-coded into the server) to be specified to the configure
7d8d82cee0910a0252e1c37bace732e996789772Andreas Gustafsson script by the --with-suexec-bin parameter. [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segv in worker MPM following accept on pipe-of-death
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add mod_deflate to experimental.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman, Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Bail out at configure time if an invalid MPM was specified.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [jean-frederic clere <jfrederic.clere fujitsu-siemens.com>]
9139e153da3ffa88457d3e035e2f0132c63a4a71Andreas Gustafsson *) Prevent segv in ap_note_basic_auth_failure() when no AuthName is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configured [John Sterling <sterling covalent.net>]
30e6ea9dedbe0738f9729833b1b59042dbebc4dfBrian Wellington *) Fix apxs to use sbindir. [Henri Gomez <hgomez slib.fr>]
1aae88078f409b39c24e2313ffdd767ed29ac787Brian Wellington *) Fix a problem with IPv6 vhosts. PR #8118 [Jeff Trawick]
17a28c1f02c5093b207a3b64201aa9e71df78ebaAndreas Gustafsson *) Optimization for the BNDM string-search function in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_include. [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed the behavior of the XBitHack directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Taketo Kabe <kabe sra-tohoku.co.jp>, Cliff Woolley] PR#8804
87075c90f668f4c2f7a709a6bd32bb8e013ae73dBrian Wellington *) The threaded MPM for Unix has been removed. Use the worker
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPM instead. [various]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) APR-ize the resolver logic in mod_unique_id. This fixes a bug
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in logging the error from a failed DNS lookup. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added the missing macros AP_INIT_TAKE13 and AP_INIT_TAKE123.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get mod_cgid killed when a MPM exits due to a fatal error.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a file descriptor leak in mod_include. When we include a
735fb4ffa6a76413f85101d7d625a4776d6ee6cdAndreas Gustafsson file, we use a sub-request, but we didn't destroy the sub-request
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews immediately, instead we waited until the original request was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews done. This patch closes the sub-request as soon as the data is
c05eb51a1b9ebd156b9fec957d60c2579c968468Mark Andrews done being generated. [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow modules that add sockets to the ap_listeners list to
a3365e361f0066609d250005e2b1082cb2ba35fdAndreas Gustafsson define the function that should be used to accept on that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews socket. Each MPM can define their own function to use for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the accept function with the MPM_ACCEPT_FUNC macro. This
e32394a2ac3466a2235f79ee32c247a11be42a8dAndreas Gustafsson also abstracts out all of the Unix accept error handling
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews logic, which has become out of synch across Unix MPMs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug which would cause the response headers to be omitted
031f9084fc1ca8b258c151f428677e7226556ad0Mark Andrews when sending a negotiated ErrorDocument because the required
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews filters were attached to the wrong request_rec.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [John Sterling <sterling covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove commas from the end of the macros that define
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directives that are used by MPMs. Prior to this patch,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews you would use these macros without commas, which was unlike
44215b932d4f0ce5257d794cb6f76b9282455eb1Mark Andrews the macros for any other directives. Now, the caller provides
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the comma rather than the macro providing it. This makes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the macros look more like the rest of the directives.
44215b932d4f0ce5257d794cb6f76b9282455eb1Mark Andrews [Ryan Bloom and Cliff Woolley]
eea2865feca4ea56facd2ef6e7226386a3604f65Andreas Gustafsson *) Add 'redirect-carefully' environment option to disable sending
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews redirects under special circumstances. This is helpful for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Microsoft's WebFolders when accessing a directory resource via
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DAV methods. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Begin to abstract out the underlying transport layer.
6d8568cb45240974da0ee1b653b28e3fdfffe93eAndreas Gustafsson The first step is to remove the socket from the conn_rec,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the server now lives in a context that is passed to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews core's input and output filters. This forces us to be very
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews careful when adding calls that use the socket directly,
6d3f954c572db02159deedd444373161fda47a88Brian Wellington because the socket isn't available in most locations.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Really reset the MaxClients value in worker and threaded
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when the configured value is not a multiple of the number
ea419adc4eca4c3e44f2c282035b5dce6b795fe2Andreas Gustafsson of threads per child. We said we did previously but we
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews forgot to. [Jeff Trawick]
eea2865feca4ea56facd2ef6e7226386a3604f65Andreas Gustafsson *) Add Debian layout. [Daniel Stone <daniel sfarc.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) If shared modules are requested and mod_so is not available,
886b96ebfd555cfeaf37ae46fc08421a41c61392Andreas Gustafsson produce a fatal config-time error. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve http2env's performance by cutting the work it has to
674f1cfb1d7dfa92e52db950dbe80e60ef8f5cddBrian Wellington do. [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) use new 'apr_hash_merge' function in mod_mime (performance fix)
da76a8046e01e1c1c2e6f75772afb2c4f202cc25Brian Wellington [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.28
cd7ffa4c1286a48c10056632be3fb0b64c575c35Brian Wellington *) Fix infinite loop in mod_cgid.c.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dale Ghent <daleg elemental.org>, Brian Pane <bpane pacbell.net>]
0cff88818a96197995c3533f6cbfb1a0efc06db0Brian Wellington *) When no port is given in a "ServerName host" directive, the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server_rec->port is now set to zero, not 80. That allows for
5bba7216f3263dc49dd4db2ac64b6203a9e2b180Andreas Gustafsson run-time deduction of the correct server port (depending on
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews SSL/plain, and depending also on the current setting of
e06aebbe7b5b3128f99b16d6756a074b4de28d37Mark Andrews UseCanonicalName). This change makes redirections
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews work, even with https:// connections. As in Apache-1.3, the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews connection's actual port number is never used, only the ServerName
40b1b44ed65b9655a135fc867ed9f0374c247ad4Andreas Gustafsson setting or the client's Host: setting. Documentation updated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to reflect the change. [Martin Kraemer]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a '%{note-name}e' argument to mod-headers, which works in
ab8668fb583a92df0698f5cdac7e7b12ead614aaBrian Wellington the same way as mod_log_confg. [Ian Holsman]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the spelling of the AP_MPMQ_MIN_SPARE_DAEMONS and
575db903aabb08137a757d1c60ebb0d286ecff56Andreas Gustafsson AP_MPMQ_MAX_REQUESTS_DAEMON macros in ap_mpm.h and all standard
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPMs. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce htdbm, a user management utility for db/dbm authorization
575db903aabb08137a757d1c60ebb0d286ecff56Andreas Gustafsson databases. [Mladen Turk <mturk mappingsoft.com>]
a4c55a3d0813e00e3d7846cc9736110c61d0a2baAndreas Gustafsson *) Optimize usage of strlen and strcat in ap_directory_walk.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.27
91614f2bc498ef7eea22e449c91951f4598c8223Andreas Gustafsson *) Introduce an Apache mod_ssl initial configuration template
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (ssl.conf, generated from ssl-std.conf). [Ralf S. Engelschall]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed a memory leak in the getline parsing code that could
512661edd7d51c8c179cce89a855df6cec2fcdcdMark Andrews be triggered by arbitrarily large header lines. Requests
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from the core input filter for single lines are now limited
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to HUGE_STRING_LEN (8192 bytes). [Aaron Bannert]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a truncation bug in how we print the port on the Via: header.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The routine that prints the Via: header now takes a length for
385a9cb48a70b329e507c39d043fa9a44c659913James Brister the port string. [Zvi Har'El <rl math.technion.ac.il>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Some syntax errors in mod_mime_magic's magic file can result
bd77de5fcaea4dcf2f0250ded32adfccd3a38256Brian Wellington in a 500 error, which previously was unlogged. Now we log the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews error. [Jeff Trawick]
48674819ebf9176b5d5582ae851e485c324c1159Michael Sawyer *) Add the support/checkgid helper app, which checks the run-time
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews validity of group identifiers usable in the Group directive.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Various --enable-so options have been fixed: --enable-so is
9594482ba300a4d694162fa62ba636c7dd00d3b6Brian Wellington treated as "static"; explicit --enable-so=shared issues an error;
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and explicit --enable-so fails with error on systems without
47ddde42728034854444cf17e278cebaea06f666Michael Graff APR_HAS_DSO. [Aaron Bannert]
5613bf7de9760875da9f5fbc6ffcd93e0af967ffMark Andrews *) Fix a segfault in the core input filter when the client socket
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews gets disconnected unexpectedly. [Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix the reporting for child processes that die. This removes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews all of the non-portable W* macros from Apache.
c5944292e9ebee4a39fe939b9a16fe5596808556David Lawrence [Jeff Trawick and Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Track and display "Parent Server Generation:" in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_status output. The generation will be bumped at
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server graceful restart, when the child process exits
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews by hitting MaxRequestsPerChild or if the child
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews process exits abnormally. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Fix problem where MaxRequestsPerChild directive was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not being picked up in favor of the default. Enable
36e0c379080343a0272dc076b7d7795ded04ee1dBrian Wellington the parent to start up a new child process immediately upon
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the old child starting shutdown.
529a6b5224d751504027293a766a4c8b81241869Brian Wellington [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix some bungling of the remote port in rfc1413.c so that
862a026a7d752fbc8b376df6f7a9080d7c778b49Brian Wellington IdentityCheck retrieves the proper user id instead of failing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and thus always returning "nobody."
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduced thread saftey for mod_rewrite's internal cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Simplified mod_env's directives to behave as most directives are
c34bdef6bd197a04990e52469ad68481532dd35aAndreas Gustafsson expected, in that UnsetEnv will not unset a SetEnv and PassEnv
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive following that UnsetEnv within the same container.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Also provides a runtime startup warning if a PassEnv configured
dc2c974dcf954a0a238d1afb886c445d06b1aa8bBrian Wellington environment value is undefined. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The worker MPM is now completely ported to APR's new lock API. It
a32738e3e4ed9619c8ace22cd119e6769176b22cAndreas Gustafsson uses native APR types for thread mutexes, cross-process mutexes,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and condition variables. [Aaron Bannert]
6dc130c7c95107748fff5f767161c2bb742f9f87Brian Wellington *) Sync up documentation to remove all references to the now deprecated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Port directive. [Justin Erenkrantz]
49855f0856a0f6f9fed80af88faddf38f3e74eefAndreas Gustafsson *) Moved all ldap modules from the core to httpd-ldap sub-project
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Exit when we can't listen on any of the configured ports. This
dc2c974dcf954a0a238d1afb886c445d06b1aa8bBrian Wellington is the same behavior as 1.3, and it avoids having the MPMs to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews deal with bogus ap_listen_rec structures. [Jeff Trawick]
d4ab9cd94f0fe0cf24ba36d21240215ae648c8d5James Brister *) Cleanup the proxy code that creates a request to the origin
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews server. This change adds an optional hook, which allows modules
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to gain control while the request is created if the proxy module
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is loaded. The purpose of this hook is to allow modules to add
080a4fe83c3ad208073bffbce1a2af8fe444214fMichael Sawyer input and/or output filters to the request to the origin. While
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews I was at it, I made the core use this hook, so that proxy request
36007b707f28f36864e8d76f11379b22e9737538Michael Sawyer creation uses some of the code from the core. This can still be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews greatly improved, but this is a good start. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.26
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Port the MaxClients changes from the worker MPM to the threaded
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPM. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_proxy so that it handles chunked transfer-encoding and works
9bef4575d71a084edf59ac681e53e35ae1b72166Andreas Gustafsson with the new input filtering system. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce the MultiviewsMatch directive, to allow the operator
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to be flexible in recognizing Handlers and Filters filename
87f4c7933fd2962cca3b9b7e046327f3c6306b84Andreas Gustafsson extensions as part of the Multiviews matching logic, strict with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MultiviewsMatch NegotiatedOnly to accept only filename extentions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that designate negotiated parameters, (content type, charset, etc.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews or MultiviewsAll for the 1.3 behavior of matching any files, even
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews if they have unregistered extensions. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed the configure script to add a LoadModule directive to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the default httpd.conf for any module that was compiled
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as a DSO. [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) rewrite mod_ssl input filtering to work with the new input filtering
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews system. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) prefork: Don't segfault when we are able to listen on some but
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not all of the configured ports. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Build mod_so even if no core modules are built shared.
dae5ce6ddb0a3c425865d3b6f0f13c4126eacc17Andreas Gustafsson [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce ap_directory_walk rewrite (with further optimizations
9a8fea7bc8fb79ff1d31f0a2ba3c9694041c6f3aAndreas Gustafsson required) to adapt to the ap_process_request_internal() changes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Optimized so subrequests and redirects now reuse previous section
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews merges, until we mismatch with the original directory_walk, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews precomputed r->finfo results will cause directory_walk to skip
663841abe0bb1cc8040e552597ef721c35b799e5Brian Wellington the most expensive phases of the function. [William Rowe]
c49e3222b0912479015161e8b54a67a1abf9a0ffAndreas Gustafsson *) Allow ApacheMonitor to connect to and control Apache on other
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews WinNT/2K machines. [Mladen Turk <mturk mappingsoft.com>]
bf68c5151b5c4f7d6b2783584434e61045a88d7fAndreas Gustafsson *) Remove the Port directive. In it's place, the Listen directive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is now a required directive, which tells Apache what port to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews listen on. The ServerName directive has also been extended
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to accept an optional port. If the port is specified to the
178f73169a27ac031f58863ae12cdb33dc15f6c4Brian Wellington ServerName, the server will report that port whenever it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews reports the port that it is listening on. This change was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews made to ease configuration errors that stem from having a Port
9c4cba349f52bb8176c3858b2b5b340f13603802Brian Wellington directive, and a Listen directive. In that situation, the server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews would only listen to the port specified by the Listen command,
64024eaa4d029b0bd090c435b8b02b45eef5cd89Andreas Gustafsson which caused a lot of confusion to users. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added mod_mime_magic, mod_unique_id and mod_vhost_alias to the Win32
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews build, as loadable modules. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix --enable-mods-shared processing. If most is specified,
8d51d9e67e1e5dcf10203c4147ece519c7daa57dMark Andrews then all modules that can be compiled as shared modules are.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the mime.types file to map video/vnd.mpegurl to mxu
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and add commonly used audio/x-mpegurl for m3u extensions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Heiko Recktenwald <uzs106 uni-bonn.de>, Lars Eilebrecht]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Eliminate the depreciated r->content_language, in favor of the array
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews r->content_languages introduced many years ago. Module authors must
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews substantially overhaul their modules, so this needs to be upgraded
9bf765ab3a5203b854d32266e6162e547791383cDavid Lawrence if the module still relied on backwards-brokeness. [William Rowe]
f4d9f465cd29963a99554bbe2936509ea3568c89James Brister *) Allow configure help strings to work with autoconf 2.50+ and 2.13.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz]
adade77942b069127a7094df419b3ad39dafb385James Brister *) Rewrite the input filtering mechanisms to consolidate and reorganize
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews code. In short, core_input_filter does something now and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_http_filter is now only concerned with HTTP. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the Win32 build to re-absorb mod_proxy and family.
ce8d0fffea20fe03fd0f075263f529ad55f82aacAndreas Gustafsson [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Resolved the build failure on Win32 using MSVC 5.0 (without the
ea01648cb950b8d4b5625a8a91a4c1c019dec885Andreas Gustafsson current SDK.) [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Some style changes to the code that does ProxyErrorOverride. Fixed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config merge behaviour. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow support programs to be compiled against a static version
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of libapr. This allows the smaller support programs to be
7d7bd1b4f0270691f434d37b1052259a13185663Andreas Gustafsson relocated. [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Update the mime.types file to the registered media types as
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of 2001-09-25, and add mapping for xsl extension [Mark Cox]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix MaxClients in the Worker MPM, so that it specifies the maximum
81f11a70588c6929d1aefd529b940efb70747fc2Andreas Gustafsson number of clients that can connect at the same time, instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specifying the maximum number of child processes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Switch proc_pthread AcceptMutex configuration directive to pthread to
04d58db32739157df6c44e3f37ecb83816fd3f75Andreas Gustafsson be consistent with 1.3. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Cache apr_explode_localtime() value for 15 seconds.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane <bpane pacbell.net>]
5096958739769958dd7a6b69356bf41260033873David Lawrence *) Fix mod_include to not return ETag or Last-Modified headers.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman <ianh cnet.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix worker MPM's scoreboard logic. [Aaron Bannert <aaron clove.org>]
84f4e4a656926a795f3bae40b2a6308bebb48b49David Lawrence *) Eliminate the wasteful run-time conversion of method names from strings
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to numbers in places where the methods are known at compile time.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Turn the worker MPM's queue into a LIFO. This may
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews improve cache-hit performance under some conditions.
89e57b472d87a37aa6c49a5544d1d1dfe9617f5dDavid Lawrence [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Switch back to SIGUSR1 for graceful restarts on all platforms that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews support it. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Cleanup the worker MPM. We no longer re-use transaction
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews pools. This incurs less overhead than shuffling the pools
d1e971ba027a8d320cc87a02a71158970bd03308Mark Andrews around so that they can be re-used. Remove one of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews queue's condition variables. We just redefined the API to
475c936d4cd0fb83700eb3e022aaecc5626b9b4fJames Brister state that you can't try to add more stuff than you allocated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews segments for. [Aaron Bannert <aaron clove.org>]
d8c8722f28ca439b9ca46f109e2804a7eb33a1acBrian Wellington *) Fix SSL VPATH builds [Cody Sherr <csherr covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed persistent connections when a request contains a body.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_dav uses a new API to speak to the backend provider for dead
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews property management. [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove the Win32 script-processing exception from mod_cgi, and
a4b496f2abd35b0f27761385c8679de1f5714b0dBrian Wellington roll build_command_line/build_argv_list into a unified, overrideable
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_cgi_build_command optional function. [William Rowe]
952e9025b0ecd20e6c7f7852551e36bb9677f713James Brister *) Rewrite find_start_sequence to use a better search algorithm
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to find the start tag. [Justin Erenkrantz]
952e9025b0ecd20e6c7f7852551e36bb9677f713James Brister *) Fix a seg fault in mod_include. When we are generating an
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews internal redirect, we must set r->uri to "", not a bogus
952e9025b0ecd20e6c7f7852551e36bb9677f713James Brister string, and not NULL. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Optimized location_walk, so subrequests, redirects and second passes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews now reuse previous section merges on a <Location > by <Location >
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews basis, until we mismatch with the original location_walk.
de8e189332e884db065b921f84e3ee4922ad10e3David Lawrence [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Back out the 1.45 change to util_script.c. This change made
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews us set the environment variable REQUEST_URI to the redirected
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews URI, instead of the originally requested URI.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Taketo Kabe <kabe sra-tohoku.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make mod_include do lazy evaluation of potentially expensive to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews compute variables. [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix logging of bytes sent for HEAD requests. %b and %B should
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews log either - or 0, before this patch, they were both logging
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the file size. [Taketo Kabe <kabe sra-tohoku.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make mod_include check for BYTE_CHECK_THRESHOLD per bucket rather
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews than per character. [Brian Pane <bpane pacbell.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Normalize the primary request, redirects and sub-requests to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews run the same ap_process_request_internal for consistency in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews robustness, behavior and security. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault with mod_include when r->path_info is not set
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (which is the case with mod_proxy). [Ian Holsman <ianh cnet.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add -X functionality back. This indicates to all MPMs and any other
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews part of Apache that it should run in "debug" mode. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Some initial support for the cygwin platform [prefork only].
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This is not to be confused with support for the WinNT/Win32
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews platform, which is the recommended configuration for native
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Win32 users. The cygwin platform support is recommended for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cygwin platform users. [Stipe Tolj <tolj wapme-systems.de>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Changed syntax of Set{Input|Output}Filter. The list of filters
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews must be semicolon delimited (if more than one filter is given.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The Set{Input|Output}Filter directive now overrides a parent
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews container's directive (e.g. SetInputFilter in <Directory /web/foo>
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews will override any SetInputFilter directive in <Directory /web>.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This new syntax is more consistent with Add{Input|Output}Filter
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directives defined in mod_mime. Also cures a bug in prior releases
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews where the Set{Input|Output}Filter directive would corrupt the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews global configuration if the multiple directives were nested.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Cured what's ailed mime for quite some time. If an AddSomething
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was given in the configuration (Language, Charset, Handler or
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Encoding) Apache would set the content type as given by AddType,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews but refused to check the mime.types file if AddType wasn't given
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for that specific extension. Setting the AddHandler for .html
202991557a4b7e8d3df7725d84f0fcae90dbaee6David Lawrence without setting the AddType text/html html would cause Apache to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews use the default content type. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added some bulletproofing to memory allocation in the LDAP cache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews code. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.25
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move the installed /manual directory out of the /htdocs/ tree, so
428b78e56dc10ea220fadfed11242ceb1d51d0e3Andreas Gustafsson that it can be kept more independently from the remaining document
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews root. The "Alias /manual ..." already allowed for easy projection
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews into existing private document trees. [Martin Kraemer]
b719a598e77aada962b3a05cb00179dc929d3939Andreas Gustafsson *) Add specified user attributes to the environment when using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews mod_auth_ldap. This allows you to use mod_include to embed specified
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews user attributes in a page like so:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Hello <!--#echo var="AUTHENTICATE_CN"-->, how are you?
428b78e56dc10ea220fadfed11242ceb1d51d0e3Andreas Gustafsson [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a performance problem with the worker MPM. We now create
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews transaction pools once, and re-use them for each connection.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modfied mod_mime to prevent mod_negotation from serving a multiview
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of a 'handler' or 'filter', so that any filename extension that does
323b6387ce2575627427859b8668e7f27f090c4cMark Andrews not contribute to the negotiated metadata can't be served without
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an explicit request. E.g., if the .Z extension is associated with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an unzip filter, the user request somefile.Z.html, mod_negotiation
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews won't serve it. It can serve somefile.Z.html when somefile.Z is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews requested, since the .Z extension is explictly requested, if the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews .html extension is associated with ContentType text/html.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce the AddInputFilter filter[;filter...] ext [ext...]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and corresponding AddOutputFilter syntax, to insert one or more
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews filters by mod_mime filename extension processing.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a growing connection pool in core_output_filter() for
e44d56866bd609e066380cbef414e6ce11a08976Andreas Gustafsson keepalive requests. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Moved split_and_pass_pretag_buckets back to being a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews macro at Ryans's request. Removed the return from it
84c4c99c9e2cf14fb9ef6f6815a9fdb824475423Michael Sawyer by setting and returning a return code instead. Updated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the code to check the return code from the macro and
f204bdd8e6703ff0ef1adf0a2c407202418a936dDavid Lawrence do the right thing. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault when a numeric value was received for Host:.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a function ap_remove_input_filter. This is to match
f204bdd8e6703ff0ef1adf0a2c407202418a936dDavid Lawrence up with ap_remove_output_filter. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Clean up location_walk, so that this step performs a minimum
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews amount of redundant effort (it must be run twice, but it will no
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews longer reparse all <Location > blocks when the request uri
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews hadn't changed.) [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Eliminate proxy: (and all other 'special') processing from the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_directory_walk() phase. Modules that want to use special
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews walk logic should refer to the mod_proxy map_to_location example,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews with it's proxy_walk and proxysection implementation. This makes
13c32cb589e571e9204dbb091e145809288c9c21David Lawrence either directory_walk flavor much more legible, since that phase
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews only runs against real <Directory > blocks.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
822f118444dcaddaf977bc73e958b2f755e4ddfdAndreas Gustafsson *) SECURITY: Fix a security problem in mod_include which would allow
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an SSI document to be passed to the client unparsed.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cliff Woolley, Brian Pane]
822f118444dcaddaf977bc73e958b2f755e4ddfdAndreas Gustafsson *) Introduce the map_to_storage hook, which allows modules to bypass
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the directory_walk and file_walk for non-file requests. TRACE
8775909be9fc67180fc480115716f88174e74471James Brister shortcut moved to http_protocol.c as APR_HOOK_MIDDLE, and the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directory_walk/file_walk happen as APR_HOOK_VERY_LAST in core.c.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add the ability for mod_include to add the INCLUDES filter
a797a75953e21b514427d188bf5d5051419c10adBrian Wellington if the file is configured for the server-parsed handler.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This makes the configuration for .shtml files much easier
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to understand, and allows mod_include to honor Apache 1.3
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews config files. Based on Doug MacEachern's patch to PHP
17d91fddb33cc6e0bf2dfacf7156bb1ebba197d8David Lawrence to do the same thing. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) force OpenSSL to ignore process local-caching and to always
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews get/set/delete sessions using mod_ssl's callbacks
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>,
a38e5f0695a8ddf0b3cbb70b5a172a5c6dce994bDavid Lawrence Geoff Thorpe <geoff geoffthorpe.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make the worker MPM shutdown and restart cleanly. This also
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cleans up some race conditions, and gets the worker using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews pools more cleanly. [Aaron Bannert <aaron clove.org>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Implement CRYPTO_set_locking_callback() in terms of apr_lock
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix for mod_include. Ryan's patch to check error
abeb505bb6c1400dde1a40d0bff7b3a435666e1cMark Andrews codes put a return in the wrong place. Also, the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews include handler return code wasn't being checked.
57b3597444bc8716459f0fb3022b2c12f4eee2aeAndreas Gustafsson I don't like macros with returns, so I converted
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews SPLIT_AND_PASS_PRETAG_BUCKETS into a function.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul J. Reder <rederpj raleigh.ibm.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) fix segv in mod_mime if no AddTypes are configured
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [John Sterling <sterling covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enable ssl client authentication at SSL_accept time
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Madhusudan Mathihalli <madhusudan_mathihalli hp.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault in mod_include when the original request has no
b3157263ee12a5792737f09b708d3fc65ca99e01Andreas Gustafsson associated filename (e.g., we're filtering the error document for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a bad URI). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a storage leak (a strdup() call) in mod_mime_magic. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The prefork and OS/2 MPMs are overwriting the pid file when a second copy
b90d3f516fd62514ff0b06a6ee0311d7ab5fbbb4Brian Wellington of httpd is started and shuts down due to socket conflict. Moving the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews call to ap_log_pid solves the problem.
b35a009df86b4aa3793e87602c95af2a503ec0eeMark Andrews *) Changed the late-1.3 log_config substitution %c to %X, to log the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews status of the closed connection, as it conflicts with the far more
7bb1e299e133de5d530aa4cb545f4130aabf5235Andreas Gustafsson common, historical ssl logging directive %...{var}c. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added the common error/ tree to the build/install targets
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (similar to the common icons/ tree) for the multi-language error
482b9dae17bc5dc4e51b78d3c5b1a18c7c1adae9Andreas Gustafsson messages that Lars committed earlier. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added a multi process, multi threaded OS/2 MPM mpmt_os2. [Brian Havard]
34ea3c6fd940a8514b5ec609491f823263a735c7Michael Sawyer *) Added a default commented-out mod_ldap and mod_auth_ldap
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews configuration to httpd-std.conf and httpd-win.conf
3c671ac666de8a7dcd7bd02afa20968da0b85bbdMark Andrews [Graham Leggett]
3c671ac666de8a7dcd7bd02afa20968da0b85bbdMark Andrews *) Added documentation for mod_ldap and mod_auth_ldap.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enabled negative caching on attribute comparisons in the LDAP cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Fixed a problem where the default cache TTL was set in milliseconds
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not microseconds causing the cache to time out almost immediately.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett]
58c42ee18c186b2151ced62f64aa4ca23cff4a1dJames Brister *) Fixed all the #if APR_HAS_SHARED_MEMORY checks within the LDAP
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews module code to follow APR. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed LDAP cleanup on graceful restarts. LDAP connections are now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cleaned up when the connection pool pool is cleaned up.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett]
5dc6a24e8b6808f03e7a9bc6530d646ebba927dbMark Andrews *) Fix a minor issue with Jeff Trawick's mod_include
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews patch. Without this patch, the code will just allocate
242dfd9cc6901a5e02dae94acdecdb91e78ea07cMark Andrews more bytes in get_combined_directive than are needed.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added the LDAP authentication module mod_auth_ldap.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dave Carrigan <dave rudedog.org>, Graham Leggett]
0d5d8e2bbf2c0c129f0416f24758a0925ce12be8James Brister *) Added the LDAP cache and connection pooling module mod_ldap.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dave Carrigan <dave rudedog.org>, Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix --enable-modules=all breakage with mod_auth_db and mod_auth_digest
99f3a24e69edbb19e4fe7f2fb0a72c478f8c3cafJames Brister by allowing a module to disable itself if its prerequisites are not
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews met. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.24
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a couple of issues in mod_include when the tag appeared at
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews offsets near 8192 in the file being parsed. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix an assertion failure in mod_ssl when the keepalive timeout is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews reached. [Jeff Trawick]
aa79283a0d97d5d77d3c17bcb1756035eabe647aAndreas Gustafsson *) Numerous improvements to the Win32 build system. Introduced command line
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews builds without requiring .mak files for MSVC 6.0 and later versions.
0bfcec250f9705a1211d0374f0fc1049960de84bMark Andrews Improved .dsp file compatibility for both Visual Studio 5.0 and 6.0 users.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b5f24a6988e04710bee0281b03b7e168358ac868Andreas Gustafsson *) Assorted corrections and improvements to the winnt_mpm startup code. Better
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews reporting of uninstalled services and other error conditions, and changed the
379bd2c19cec393f56a2e9c42cc87fc8213a1b62James Brister default service name to Apache2. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Numerous improvements to the Win32 ApacheMonitor utility, including winnt_mpm
379bd2c19cec393f56a2e9c42cc87fc8213a1b62James Brister compatibility with existing Apache 1.3 Win32 Apache management utilites.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Mladen Turk <mturk mappingsoft.com>, William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed the segfaults in mod_mime introduced by hash tables in 2.0.20.
c24265935e70d17279153b3cde43e3f6c3527577Andreas Gustafsson [William Rowe, Greg Ames]
bedfa169b4cc5511b34c0c4a54c5b8aae364babeJames Brister *) Rounded out the mod_mime Add/Remove pairs by adding RemoveLanguage
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and RemoveCharset directives. [William Rowe]
bedfa169b4cc5511b34c0c4a54c5b8aae364babeJames Brister *) The Unix MPMs other than perchild now allow child server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews processes to use the accept mutex when starting as root and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews using SysV sems for the accept mutex. Previously, this
d85552c450141012e7cbeaacc77fb9575b0bb4cbJames Brister combination would lead to fatal errors in the child server
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews processes. perchild can't use SysV sems because of security
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews issues. [Jeff Trawick, Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added Win32 revision stamp resources to all http binaries
adf82221858138f295bce732e86dcac34645692eJames Brister (including modules/ and support/ tools.) PR7322 [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix ap_rvprintf to support more than 4K of data at one time.
f3b52d9fe5e7e851adecad4eec8952cceda47592Brian Wellington [Cody Sherr <csherr covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) We have always used the obsolete/deprecated Netscape syntax
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews for our tracking cookies; now the CookieStyle directive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allows the Webmaster to choose the Netscape, RFC2109, or
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews RFC2965 format. The new CookieDomain directive allows the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews setting of the cookie's Domain= attribute, too. PR #s 5006,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 5023, 5920, 6140 [Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Tweak server/Makefile so that the rules for generating exports.c
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews are compatible with make utilities which don't expand wildcards
71a4339351de0d8233d61025a667ec4dc3e0f868James Brister in a dependency list (e.g., OS/390 make, certain levels of GNU
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews make). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Install the SSL headers. [John Sterling <sterling covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Begin to sanitize the MPM configuration directives. Now, all
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MPMs use the same functions for all common MPM directives. This
a6733246eafeb43755ce6d7ec3627ac4209cbccbMark Andrews should make it easier to catch all bugs in these directives once.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cody Sherr <csherr covalent.net>]
36bcb04af27e050ddc04b2ff37dbeafc84538fd4Brian Wellington *) Close a major resource leak. Every time we had issued a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews graceful restart, we leaked a socket descriptor.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
ed71ea51c6ecb5d7d659b6e6a20f6b3f5c2678c6David Lawrence *) Fix a problem with the new method code. We need to cast
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the 1 to an apr_int64_t or it will be treated as a 32-bit
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews integer, and it will wrap after being shifted 32 times.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cody Sherr <csherr covalent.net> and Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a bug in mod_expires. Previous to this patch, if you
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews told mod_expires to add 604800 seconds to the last-modified
9c11326b18c69b9b2fd6102d80fbd568ae6bd31eAndreas Gustafsson time, it actually added 604800 usec's to the last-modified time,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews so that when looking at the response it looked like nothing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews had been done. The root of the problem was that we always compute
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews time in usec's, but we ask users to input sec's. This means we
c78dc8b001ba46ef1edb784635c3ba7b3e4456ceJames Brister need to convert to usec's before using those values.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The worker MPM now handles shutdown and restart requests. It
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews definitely isn't perfect, but we do stop the servers correctly.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The biggest problem right now is that SIGHUP causes the server to
d5399cc351a549db957185993b320a3bffa40e41James Brister just die. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.23
40f349ad1f2f0a63ef2784b8affcd44dc660b39cJames Brister *) Use the prefork MPM by default on Unix. [various]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Added a systray icon monitor application for Win32.
ac3b769801d794993e9eb6065b2f7144ffcfc9acMark Andrews [Mladen Turk <mturk mappingsoft.com>]
69b691c9624f31e59b8d128ada902a82127c15a3James Brister *) mod_rewrite: Fix the line ending on some non-Unix systems for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews messages written to the rewrite log.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Richard Labennett <rlabenn us.ibm.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) All mod_autoindex query parsing is now quietly quashed with the
dba20696eb808075d849e5a4cc8d854555869fb2Brian Wellington IndexOption IgnoreClient. The IndexOption SuppressColumnSorting
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews still drops the column sort <a href>'s for the column headers, but
98c2f9a11185b8a5dd601798990612beb6d1578eJames Brister IgnoreClient is required to ignore these Query options entirely.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduced new mod_autoindex query argument parsing for F=[0|1|2]
98c2f9a11185b8a5dd601798990612beb6d1578eJames Brister to allow the client to select plain, FancyIndexing or HTMLTable
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews formatting, V=[0|1] to inhibit or enable version sorting, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews P=pattern to return only specific files. The old Query Arguments
705cb05a187558959d20ec2c31e06de8e96f61b2David Lawrence were reorganized as C=f for sorting column 'f' (same N, D, S, or M
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as before), and O=A|D for ordering ascending or descending.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fixed an error in mod_include's directive parsing routines which
a3c0a79b61edfd6a021c080d4b368c9c962fcad6Andreas Gustafsson caused #if, #elif, and #else expressions containing backslashes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to be improperly evaluated. [Cliff Woolley]
0b056755b2f423ba5f6adac8f7851d78f7d11437David Lawrence *) Introduced new mod_autoindex IndexOptions flags: SuppressIcon to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews drop the icon column, SuppressRules to drop the <hr> elements,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and HTMLTable to create rudimentary HTML table listings (implies
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews FancyIndexing). [William Rowe]
174a4f7b80af7f7a33cd9a098c13af23e5ec2a28David Lawrence *) Re-introduced the mod_autoindex IndexOptions flag TrackModified
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews from Apache 1.3.15. This is needed for two reasons, first, given
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews multiple machines within a server farm, ETags and Last-Modified
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stamps won't correspond from machine to machine, and second, many
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Unixes don't capture changes to the date or time stamp of existing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews files, since these don't modify the dirent itself. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Re-introduced the mod_autoindex IndexOptions flag FoldersFirst
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and DirectoryWidth options from Apache 1.3.10.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe, Ken Coar]
0640343258a99230c62e39dfbbe1505e3a970ee8Andreas Gustafsson *) Eliminated FancyIndexing directive, deprecated early in Apache
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews 1.3 by the IndexOptions FancyIndexing syntax. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_autoindex now excludes any file names that would result in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an error, other than a success or redirect. Also optimized
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the parent directory, always included except in the URI '/'.
d98c74e2ec5b96bd22aa4ed6d893e8993787493bMichael Graff [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Refactored mod_negotiation and mod_mime to help mod_dir accept
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews negotiated index pages, and prevent the server from defaulting
d03d4524993ecf5da72694907cb8581eadbe5c4dBrian Wellington to an autoindex of the directory. mod_negotiation will now die
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews with a 500 Internal Error if it could match some filenames
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (e.g. for mod_dir) but none can be served. mod_negotation now
75f6c57d9544aa77a3b1a04587b4702c07343c90Brian Wellington refuses to serve any file with an extention that mod_mime doesn't
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews recognize, and wasn't part of the request. [William Rowe]
f34984369fbc87f6cc5c5d1059303377a1724d79James Brister *) Eliminate mod_cgi's handling of .exe files without the .exe file
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews extension. This is already handled by multiviews, if the admin
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews wishes to AddHandler .exe or define a content type handler and
7cd4c3ddd1baf5f2b204562fdba3da37c716cc78Andreas Gustafsson associate .exe files with that content type. Multiviews must be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews enabled to allow these to be served. [William Rowe]
76a191c4202a4839e4ce598ec91f0c0d12f630aaAndreas Gustafsson *) Speed up the server's response to a spike in incoming workload
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews or restarts by assigning empty scoreboard slots to new processes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews when they are available. [Greg Ames]
fef059dcec0f7f83b09b9ce30b91b21a51d9c481Andreas Gustafsson *) Add a handler to mod_includes.c. This handler is designed to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews implement the XbitHack directive. This can't be done with a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews fixup, because we need to check the content-type, which is
5f80c1428b9b7235fc9c1c80aa505457c3043504Brian Wellington only available in the handler phase. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make the includes filter check return codes from filters lower in
af602636644fdfaabc331bd926b0aabb9432e152Brian Wellington the filter chain. If a lower level filter returns an error, then
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the request needs to stop immediately. This allows mod_include to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews stop parsing data once a lower filter recognizes an error.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add the ability to extend the methods that Apache understands
b3aaa872e12e5c8658271bde8e4dd85d015e823fAndreas Gustafsson and have those methods <limit>able in the httpd.conf. It uses
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the same bit mask/shifted offset as the original HTTP methods
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews such as M_GET or M_POST, but expands the total bits from an int to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews an ap_int64_t to handle more bits for new request methods than
389f2ccc2f5f00a11a14114d40492f7ac8249fa7Olafur Gudmundsson an int provides. [Cody Sherr <csherr covalent.net>]
6deb631b20b7e212d9a350759e472fa60f9e92e4David Lawrence *) Fix broken mod_mime behavior in merging its arguments. Possible
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cause of unexplicable crashes introduced in 2.0.20. [William Rowe]
b1d234eb75e2804e09d89178a76df39c321db51bBrian Wellington *) Solve many mod_ssl porting issues (too many to detail) with
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews help from the whole team, but most notably [Ralf S. Engelschall,
a9bc95f22ef2dd4a12e79be99412c9f18b814a5dBrian Wellington Madhusudan Mathihalli <madhusudan_mathihalli hp.com>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Doug MacEachern, William Rowe, Cliff Woolley]
3c8e458ed2118828b13f35ca6fcc409da66c2869David Lawrence *) More stall fixes for the threaded & worker mpm's.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Make mod_status output more accurate. Don't
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews count workers in processes which aren't actively
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews serving requests. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Get SSI exec cgi tag working. [Bill Stoddard]
7ffc4c63ac8841d127c2d77c8716cc0dc483badcDavid Lawrence *) Add a single listener/multiple worker MPM. This MPM is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews definately not fully correct, but it allows us to solve many
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of the problems that exist in the threaded MPM. This is a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modified version of the threaded MPM. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve content generation throughout Apache, providing closer
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews compliance with HTML 3.2, HTML 4.01 Transitional and XHTML 1.0
20b20b23948b90cb2f7d7f402da99d09f837efd0David Lawrence Transitional specifications. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.22
a89b06a49cc61cdce2ce0ea0f62b514998fa16d9Andreas Gustafsson *) Fix a problem where the threaded MPM stalls after restarts or
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews segfaults. Also prevent multiple active processes from using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the same scoreboard slot. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Apache/Win32 now fills in the service description with Apache's
7e9bfde7951c4e35bcbd0d3439790cc823a6794cAndreas Gustafsson server version string, including loaded and advertised modules.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improved support for the Win32 build, to recover gracefully from
4c9406964425ecc33fac38bb093e236b43b449e6Andreas Gustafsson missing apr or apr-util directories or the awk interpreter,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews create the proper cgi-bin examples, including a test-cgi.bat, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews fix the perl shebang line for printenv.pl, when installing from
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the build environment. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a segfault in threaded.c caused by passing uninitialized
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_thread_t * to apr_thread_join(). [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Use new APR number conversion functions to reduce CPU consumption
533131b93b69c4534b5f1f9138b59211670e6e6dMichael Graff when setting the content length, and in mod_log_config.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Pane]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix problem reported by Taketo Kabe <kabe sra-tohoku.co.jp>
533131b93b69c4534b5f1f9138b59211670e6e6dMichael Graff where HEAD response headers were being repeated twice for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews files greater than 32K bytes (4*AP_MIN_BYTES_TO_WRITE). This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews problem in the http_header filter was exposed by the recent rewrite
73abbeb5823a9b3e01b05a8878db915eb6beccdaAndreas Gustafsson of the content_length filter. [Taketo Kabe, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix seg faults in mod_status with ExtendedStatus enabled, after
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews restarts. A garbage pointer to a vhost's server_rec from the
538971e27d45861c937331f52b0e96d3a5157d8eAndreas Gustafsson previous generation was being left around under certain
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews conditions. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a cosmetic problem with mod_include. Non-existant SSI vars
c50936eb40263b65ebf6afe4e6556e2dc67c10e4Brian Wellington used to appear as '(none', without the closing paren.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Günter Knauf <eflash gmx.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Improve the exports generating awk script. In the past, we had
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews work around problems in the awk script by avoiding some #if and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews #ifdefs. This has bitten us many times in generating the exports.c
dc97fe4ed08488d314ab5bc8e99ed839542cf411David Lawrence file. This improvement allows corrects the header file parsing.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Sander Striker <striker apache.org>]
95be83b467e2384d414693982318a5c06cccf1d7Andreas GustafssonChanges with Apache 2.0.21
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Resolve the Win32 htpasswd bug, where a file that existed would be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews overwritten, regardless of the -c flag.
95be83b467e2384d414693982318a5c06cccf1d7Andreas Gustafsson [William Rowe, Mladen Turk <mladen.turk mail.inet.hr>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Introduce connection sub-pools into ab. Truncating the lifetime
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of these allocations means that ab no longer perpetually grows
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews its working set, running out of memory on large request attempts.
95be83b467e2384d414693982318a5c06cccf1d7Andreas Gustafsson [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make scoreboard creation a hook. This allows management
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules to have access to the scoreboard at the time that it is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews created, and at every restart request.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Cody Sherr <csherr covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Changed AP_MPMQ_MAX_DAEMONS to refer to MaxClients and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews added an AP_MPMQ_MAX_DAEMON_USED to refer to the highest
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews daemon index actually used in the scoreboard. I also
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews updated the pertinent calls. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Prevent listening sockets from being inherited by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the Apache child process, CGI scripts, rotatelog process
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews etc. If the Apache child process segfaults, any processes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that the child started are not reaped. Prior to this fix,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews these processes inherited the listening sockets which sometimes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews prevented the restarted Apache child process from accepting
52b784e2a662038b833e4f9ad7bff881faf52a85Andreas Gustafsson connections (ie, the server would hang).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
edb8ffbbf3e4b3c16a10fdd45720d97706e6bf50Mark Andrews *) Provide vhost and request strings when ExtendedStatus is on.
59abb512d344bfa09012cc11b7d814966f035da4Mark Andrews *) Fix some issues with the pod and prefork: check the pod *after*
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews processing a connection so that a server processing a time-
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews consuming request bails out as soon as practical; when the
600cfa2ba4c50017581b6c14e3a688a82ecebbe0David Lawrence parent process wakes up a server process via connect(), use an
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews APR timeout on the connect() so that we don't hang for a long
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews time if there aren't server processes around to do accept().
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick, Greg Ames]
a120694df8156f76eb629e4d686d3729362e3c90David Lawrence *) Performance improvement to mod_mime.c. find_ct() in mod_mime,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews spends a lot of time in apr_table_get calls. Using the default
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews httpd.conf, the tables for languages and charsets are somewhat
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews large, so the time spent scanning them on each request is
a120694df8156f76eb629e4d686d3729362e3c90David Lawrence significant. Replacing the tables with hash tables provides
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a nice speedup. [Brian Pane <bpane pacbell.net>]
fcba8f29fedd5a29651579e22c96413b4f37cab9Brian Wellington *) Add two functions to allow modules to access random parts of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews scoreboard. This allows modules compiled for one MPM to access the
f6afa4ac95f3a6c86c61c0b122cd0dc6f957649bBrian Wellington scoreboard, even if it the server was compiled for another MPM.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Harrie Hazewinkel <harrie covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.20
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix problem in content-length filter where the filter would
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews buffer all the output from a CGI before sending any bytes
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames Brister down the filter stack to the network. This problem would cause
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews significant memory consumption if the CGIs generated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews lots of bytes. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get non-blocking CGI pipe reads working with the bucket brigades.
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames Brister [Bill Stoddard]
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames Brister *) Fix seg fault on Windows when serving files cached with mod_file_cache.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
40f53fa8d9c6a4fc38c0014495e7a42b08f52481David Lawrence *) Fix a bug in the threaded MPM that would cause it to kill off all
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews workers immediately after starting if the number of workers started
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames Brister was above a certain threshold. [Ryan Bloom, Bill Stoddard]
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames BristerChanges with Apache 2.0.19
cde7793c7fb83adecf1a60bfc76cde6d1d7db0ebJames Brister *) Fix problem with threaded MPM. The problem was that if each child
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews process was busy serving a single long-lived request and the server
527ea00c176abc167a6daf978e06f52c7e70aa06Andreas Gustafsson was sent a graceful restart signal, the server would stop serving
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews requests. This would happen because each child process would wait to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews die until the last thread was done, and the parent wouldn't spawn any
f7d85bae58428b91fde90f87c1e9ef89897acf2eAndreas Gustafsson new children until a process died. Now, the parent looks at the fact
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that the children are dying gracefully, and starts new children.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Those new children only start enough threads to compliment the number
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of threads in the other child process that shares the same spot in
ec7493d8d1966a3dc5f5306fc0a96519e0de6dceAndreas Gustafsson the scoreboard. In this way, we make sure to never go over
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MaxClients. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) modified mod_negotiation and mod_autoindex to speed up by almost a
bd36d3014e8a82d217ed1c88cdb4c717a25fee09Andreas Gustafsson factor of two on apr_dir_read()-enhanced platforms, such as Win32
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and OS2, by calling ap_sub_request_lookup_dirent() with the results
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews already provided by apr_dir_read(). [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) mod_file_cache is now more robust to filtering and serves requests
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews slightly more efficiently. [Cliff Woolley]
8adf1b9e749ca303ea8a8ffb29b5101ecbe2ecf6Mark Andrews *) Fix problem handling FLUSH bucket in the chunked encoding filter.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Module was calling ap_rwrite() followed by ap_rflush() but the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews served content was not being displayed in the browser. Inspection
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of the output stream revealed that the first data chunk was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews missing the trailing CRLF required by the RFC. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) apxs no longer generates ap_send_http_header() in the example handler
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix an ab problem which could cause a divide-by-zero exception
c052487cdf42c83bb0fa8e4c0ed135e801ac1e90Mark Andrews with certain invocations (e.g., ab -k -c 6 -n 100 localhost/).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman <ianh cnet.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Solve case-insensitive platforms' confusion about negotiated
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews filenames, allowing files of differnt case to match in choosing
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the document to serve. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix brokenness when ThreadsPerChild is higher than the built-in
ff8d15be4e6096329fe6ae8217d0adcabd08c94bOlafur Gudmundsson limit. We left ap_threads_per_child at the higher value which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews led to segfaults when doing certain scoreboard operations.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix seg faults and/or missing output from mod_include. The
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews default_handler was using the subrequest pool for files and
6a13d6f3c687d463a2a88f696a5193a5651612baAndreas Gustafsson MMAPs, even though the associated APR structures typically
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews live longer than the subrequest. [Greg Ames]
996f4a8bc34cb0203ce6a40ff82bca8bf32423ccAndreas Gustafsson *) Extend mod_setenvif to support specifying regular expressions
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews on the SetEnvIf (and SetEnvIfNoCase) directive attribute field.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Example: SetEnvIf ^TS* [a-z].* HAVE_TS
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews will cause HAVE_TS to be set if any of the request headers begins
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews with "TS" and has a value that begins with any character in the
6a13d6f3c687d463a2a88f696a5193a5651612baAndreas Gustafsson set [a-z]. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) httpd children now re-bind themselves to a random CPU on
47b26abe77184f9bedc68e36bdad03332cf67570David Lawrence multiprocessor systems on AIX via bindprocessor() in 2.0.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Victor J. Orlikowski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix htdigest. It would go into a loop in getline when adding
17d0495c338ca6273cc1e1e3fd9354ab785a9ae9Mark Andrews a second user. [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32 platforms now fully support mod_userdir options. [Will Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Automatically generate httpd.exp for AIX.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DSOs now work again on AIX in 2.0
e06abf2270cc397e6a1ab8e25055e9c05f256beeJames Brister [Victor J. Orlikowski]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a new request hook, error_log. This phase allows modules
e06abf2270cc397e6a1ab8e25055e9c05f256beeJames Brister to act on the error log string _after_ it has been written
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to the error log. The goal for this hook is to allow monitoring
e411a986b94276c28e6a971f9c3b61d45c635456James Brister modules to send the error string to the monitoring agent.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify mod_echo to make it use filters for input and output.
c6ce77b4dccb15297f78de9e0c00d40f40ce8aa4Mark Andrews [Ryan Morgan <rmorgan covalent.net>]
1d7172079ddd7aaad66a135a814d0013c6503837Andreas Gustafsson *) Extend mod_headers to support conditional driven Header
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews add, append and set. Use SetEnvIf to set an envar and conditionally
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews add/append/set headers based on this envar thusly:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews SetEnvIf TSMyHeader value HAVE_TSMyHeader
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Header add MyHeader "%t %D" env=HAVE_TSMyHeader
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews If the request contains header "TSMyHeader: value" then header
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MyHeader: "t=xxxxxxxxxx D=yyyy" will be sent on the response.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Extend mod_headers to support using format specifiers on Header
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews add, append and set header values. Two format specifiers are supported:
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews %t - reports, in UTC microseconds since the epoch, when the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request was received.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews %D - reports the time, in microseconds, between when the request was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews received and the response sent.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Header add MyHeader "This request served in %D microseconds. %t"
e2cf9c2db3fd484d160d3b7850f5e4d9c19945faJames Brister results in a header being added to the response that looks like this:
e2cf9c2db3fd484d160d3b7850f5e4d9c19945faJames Brister MyHeader: This request served in D=5438 microseconds. t=991424704447256
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix reset_filter(). We need to be careful how we remove filters.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews If we set r->output_filters to NULL, we also have to reset the
36357e4304862fb47e9fae03c704cb6720310c45James Brister connection's filters. [John Sterling]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Optimise reset_filter() in http_protocol.c. [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a check to ap_die() to make sure the filter stack is sane and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews contains the correct basic filters when an error occurs. This fixes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a problem where headers are not being sent on error. [John Sterling]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) New Header directive 'echo' option. "Header echo regex" will
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews cause any headers received on the request that match regex to be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews echoed to (included in) the response headers.
b09983678f5d116d3c8387aaeab4f2dc4deb0454David Lawrence [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) include/ap_compat.h tested and set APR_COMPAT_H instead of AP_COMPAT_H.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This prevented the inclusion of apr_compat.h. PR #7773
4be63b1fd8c18dbeca1648d6cf22fa14f057a469David Lawrence [Oleg Broytmann <phd phd.pp.ru>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Moved util_uri to the apr-util library. This required a bunch of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_name changes for the uri utility functions. [Justin Erenkrantz]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move the addition of default AP_HTTP_HTTP_HEADER filters to the
b99d080717fdd741961d736581270d37bad8bec0David Lawrence insert_filter phase so that other filters are not bypassed by default.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett]
97f75286ada13a1b06a424607e638bde5ebfb3caAndreas Gustafsson *) Reimplement mod_headers as an output filter. mod_headers can now
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews add custom headers to inbound requests using the RequestHeader directive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and to responses using the same old Header directive. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.18
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix command-line processing so that if a bad argument is specified
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Apache will exit. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the make targets and rules to be consistent in all of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Apache-owned source trees. [Roy Fielding]
54a2e7e8a21ee765f41bd995101995613bff9e8cDavid Lawrence *) Fix processing of the TRACE method. Previously we passed bogus
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews parms to form_header_field() and it overlaid some vhost structures,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews resulting in a segfault in check_hostalias().
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Ames, Jeff Trawick]
027212247d59c05452abb7a8b253efe52d14459eDavid Lawrence *) Win32: Add support for reliable piped logs. If the logging process
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews goes down, Apache will automatically restart it. This function has
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews been part of Apache on Unix/Linux/BSD since the early v1.3 releases.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Do not start piped log processes during the config file
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews preflight. This change also circumvents a problem on
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Windows where the rotatelog processes created during preflight
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews was not getting cleaned up properly.
344e909ce9c59422a70105aba498e68b2d42623bDavid Lawrence [Bill Stoddard]
738922ba7bb10b206f6f54931aed068e3dcb950dDavid Lawrence *) add "Request Phase Participation" info to mod_info
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Doug MacEachern]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make first phase changes to the scoreboard data structures in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews preparation for the rewriting of the scoreboard per my posted
9c4f33b6718407e94d50dbfb4977e16d3f83de9dDavid Lawrence design notes. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix httpd's definition of LTFLAGS to be consistent with that of apr
c403d3f7d6cb17406e9be03a330ed5cf91619abcDavid Lawrence and apr-util, allow it to be overridden by the configure command-line
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (default="--silent") and introduce LT_LDFLAGS to replace what we were
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews formerly abusing as LTFLAGS. [Roy Fielding]
a0f6cda5fd9f2fcc4154bb63628f849b639a40caAndreas Gustafsson *) Clean up the reporting of incorrect closing container tags.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Barrie Slaymaker <barries slaysys.com>]
dc91d010dbd848ab3a11815e5a3d109662a38b0cDavid Lawrence *) Simplify the configure process by moving all libtool stuff to APR
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and moving hints.m4 inline. [Roy Fielding]
e3b3a046bf653d39cb5b92534a6a36fce1702d20Bob Halley *) Add the AP_DECLARE()/AP_CORE_DECLARE macros on the return types
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of functions used by mod_proxy for export in the DLL
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ian Holsman <IanH cnet.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Prevent a hang when a cgi handled by mod_cgid tries to read a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request body from its stdin but no reqest body is being written to
904463e94cafd59c8284f472ea8f58f1f311b8cbDavid Lawrence the cgi. [Jeff Trawick]
bf6f755a74e24441e96a110b3c8d11cfe2ed0da7David Lawrence *) mod_log_config: %c connection status incorrectly logged
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as "-" (non-keepalive) when MaxKeepAliveRequests is set to 0.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
1a7f6c3898266854db100fb2cb36418d650de8e7Brian Wellington *) Get mod_cern_meta working under Windows
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Create Files, and thus MMAPs, out of the request pool, not the
56433595bb938c21fd3b07a0f7c565d942bb8780David Lawrence connection pool. This solves a small resource leak that had us
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not closing files until a connection was closed. In order to do
fc9e755ba340607d76c7de897ee2d985d3b24505David Lawrence this, at the end of the core_output_filter, we loop through the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews brigade and convert any data we have into a single HEAP bucket
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that we know will survive clearing the request_rec.
7896e45912df15d07eb99f885b9d9c15ad5f3f68David Lawrence [Ryan Bloom, Justin Erenkrantz <jerenkrantz ebuilt.com>,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Cliff Woolley]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Completely revamp configure so that it preserves the standard make
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews variables CPPFLAGS, CFLAGS, CXXFLAGS, LDFLAGS and LIBS by moving
32eddfc189108fa93e31761e13150594c7a79d2bDavid Lawrence the configure additions to EXTRA_* variables. Also, allow the user
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to specify NOTEST_* values for all of the above, which eliminates the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews need for THREAD_CPPFLAGS, THREAD_CFLAGS, and OPTIM. Fix the setting
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews of INCLUDES and EXTRA_INCLUDES. Check flags as they are added to
b8dd48ecf83142f6ee7238cbd68fec455e527fc8Mark Andrews avoid pointless duplications. Fix the order in which flags are given
95b484c9580d06eb2f9735a22e9841389c2859baMark Andrews on the compile and link lines. Remove obsolete macros APR_DOEXTRA,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews AC_ADD_LIBRARY, AC_CHECK_DEFINE, APACHE_PASSTHRU, and APACHE_ONCE.
68e4926b2262571e004b4be00b905ec776c01d9cMichael Graff Added APR_SAVE_THE_ENVIRONMENT and APR_RESTORE_THE_ENVIRONMENT macros.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Renamed AC_TYPE_RLIM_T macro to APACHE_TYPE_RLIM_T. [Roy Fielding]
40f53fa8d9c6a4fc38c0014495e7a42b08f52481David Lawrence *) Get mod_tls to compile/work better on Windows. PR #7612
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix shutdown/restart hangs in the threaded MPM.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick, Greg Ames, Ryan Bloom]
61e9c1cdbe29683bb2db388e4fc6a6fd59315cefDavid Lawrence *) Removed the keptalive boolean from conn_rec because it is now only
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews used by a single routine and can be replaced by a local variable.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Stein, Ryan Bloom, Roy Fielding]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Patch prefork to put enough of the signal processing back in so that
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews signals are all handled properly now. The previous patch fixed the
2cc1d2536d5834fbe20281068b8bd34dd1ee5337David Lawrence deadlock race condition, but broke the user directed signal handling.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This fixes it to work the way it did before my previous prefork patch
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (primarily, SIGTERM is now working).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change how input filters decide how much data is returned to the
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence higher filter. We used to use a field in the conn_rec, with this
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews change, we use an argument to ap_get_brigade to determine how much
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence data is retrieved. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix seg fault at start-up introduced by Ryan's change to enable
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence modules to specify their own logging tags. mod_log_config
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews registers an optional function, ap_register_log_handler().
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews ap_register_log_handler() was being called by http_core before
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence the directive hash table was created. This patch creates the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews directive hash table before ap_register_log_handler() is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews registered as an optional function.
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence [jean-frederic clere <jfrederic.clere fujitsu-siemens.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add ap_set_int_slot() function
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [John K. Sterling <sterling covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Under certain circumstances, Apache did not supply the
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence right response headers when requiring authentication.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Gertjan van Wingerde <Gertjan.van.Wingerde cmg.nl>] PR#7114
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews (This is a port of the change that went into Apache 1.3.19.)
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow modules to specify their own logging tags. This basically
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews allows a module to tell mod_log_config that when %x is encountered
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence a specific function should be called. Currently, x can be any single
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews character. It may be more useful to make this a string at some point.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.17
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) If a higher-level filter handles the byterange aspects of a
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request, then the byterange filter should not try to redo the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews work. The most common case of this happening, is a byterange
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request going through the proxy, and the origin server handles
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the byterange request. The proxy should ignore it.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett <minfrin sharp.fm>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Changed the threaded mpm to have child_main join to each of the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews worker threads to make sure the kids are all gone before child_main
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews exits after a signal (cleanup from perform_idle_server_maintenance).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This is an extension of Ryans recent commit to make the child_main
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the signal thread.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add more options to the ap_mpm_query function. This also allows MPMs to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews report if their threads are dynamic or static. Finally, this also
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews implements a new API, ap_show_mpm, which returns the MPM that was
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews required into the core. [Harrie Hazewinkel <harrie covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Do not install the binaries from the support directory twice.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [jun-ichiro hagino <itojun iijlab.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) The ap_f* functions should flush data to the filter that is passed
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in, not the filter after the one passed in.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Morgan <rmorgan covalent.net>]
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence *) Make ab work again by changing its native types to apr types and formats.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Justin Erenkrantz <jerenkrantz ebuilt.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move the byterange filter and all of the supporting functions back
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to the HTTP module. The byterange filter turned out to be very
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HTTP specific, and it belongs in the HTTP module. [Greg Stein]
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence *) Make clean, distclean, and extraclean consistently according to the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Gnu makefile guidelines. [Justin Erenkrantz <jerenkrantz ebuilt.com>]
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence *) Fix errors in the renaming of the apr_threadattr_detach_xxx functions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This may have been causing problems stopping processes in the threaded
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence mpm's. [Greg Ames]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix content-length in mod_negotiation to a long int representation.
16a107c904a30a687a08efec86a26a2f9398d2edAndreas Gustafsson [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove BindAddress from the default config file.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Allow module authors to add a module to their Apache build using
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --with-module, without re-running buildconf. The syntax is:
3e6b98586e823544344bcbbcad825d3d4485de59David Lawrence --with-module=module_type:/path/to/module.c
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews The configure script will copy the module.c file to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews modules/module_type, and it will be added to the relevant Makefiles.
947bd6c648bd29bc226971324de1b30230a56a22David Lawrence currently, this only works for static modules. [Ryan Bloom]
878363c06b3d42f8fa4acca0c4aec9252b7844d9David Lawrence *) Changes required to make prefork clean up idle children properly.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews There was a window during which a starting worker deadlocks when
cc5547dbcb04bdc498cf050c6104a1974f68c6eaAndreas Gustafsson an idle cleanup arrives before it completes init. Apache then keeps
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews trying to cleanup the same deadlocked worker forever (until higher
b8957f3496b6a900df9ca263864a47dbb1cb8978David Lawrence pids come along, but it still will never reduce below the deadlocked
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews pid). Thus the number of children would not reduce to the correct
c7f22f83aac9e61dafee191cad040e9c42652cc8David Lawrence idle level. [Paul J. Reder]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.16
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the default installation directory to /usr/local/apache2,
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as now defined by the "Apache" layout in config.layout. [Marc Slemko]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) OS/2: Added support for building loadable modules as OS/2 DLLs.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Brian Havard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get MaxRequestsPerChild working with the Windows MPM.
38feb01f1b0a3ac65897ae63c22c27c72e8cfda1David Lawrence [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make generic hooks to work, with mod_generic_hook_import/export
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews experimental modules. [Ben Laurie, Will Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix segfaults for configuration file syntax errors such as
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews "<Directory>" followed by "</Directory" and
5b27fa26dd1288f61de9ace6f4ec56be63858048David Lawrence "<Directory>" followed by "</Directoryz>". [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Cleanup the --enable-layout option of configure. This makes
32d7adf5ee52c5a86122ee3d9e35a894fc5ed0a6Bob Halley us use a consistent location for the config.layout file, and it
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews makes configure more portable.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [jun-ichiro hagino <itojun iijlab.net>]
32d7adf5ee52c5a86122ee3d9e35a894fc5ed0a6Bob Halley *) Changes to 'ab'; fixed int overrun's, added statistics, output in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews csv/gnuplot format, rudimentary ssl support and various other tweaks
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to make results more true to what is measured. The upshot of this it
32d7adf5ee52c5a86122ee3d9e35a894fc5ed0a6Bob Halley turns out that 'ab' has often underreported the true performance of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apache. Often by a order of magnitude :-) See talk/paper of Sander
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Temme at April ApacheCon 2001 for details.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dirk-Willem van Gulik]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Clean up mod_cgid's temporary request pool. Besides fixing a
cc43f2461d2b7da80105cf6d1b96bda4e93303cdDavid Lawrence storage leak this ensures that some unnecessary pipes are closed.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Performance: Add quick_handler hook. This hook is called at the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews very beginning of the request processing before location_walk,
7ce81e15fa98db5b13fba06d54526e8679ac064cDavid Lawrence translate_name, etc. This hook is useful for URI keyed content
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews caches like Mike Abbott's Quick Shortcut Cache.
8fedfa7b45989d3c1715e414637bc1a96331fd14David Lawrence [Bill Stoddard]
7da5c63dc0eaeec88aaf67b7aeee43ab0b0125baDavid Lawrence *) top_module global variable renamed to ap_top_module [Perl]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move ap_set_last_modified to the core. This is a potentially
7da5c63dc0eaeec88aaf67b7aeee43ab0b0125baDavid Lawrence controversial change, because this is kind of HTTP specific. However
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews many protocols should be able to take advantage of this kind of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews information. I expect that headers will need one more layer of
32eeec855957c3dd38f0d6c98ca79b67a71300b6Brian Wellington indirection for multi-protocol work, but this is a small step in
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the right direction. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enable mod_status by default. This matches what Apache 1.3 does.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ed Korthof]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a ScriptSock directive to the default config file. This is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews only enabled when mod_cgid is used.
8b7304a34c751e519ede7d00b77f1f962c0a37e4David Lawrence [Taketo Kabe <kabe sra-tohoku.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.15
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Untangled the buildconf script and eliminated the need for build's
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews aclocal.m4, generated_lists, build.mk, build2.mk, and a host of other
cabcfd3e90a647c7bab3c5cc3ef7b36f49830787David Lawrence libtool muck that is now under srclib/apr/build. [Roy Fielding]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Win32: Don't accept more connections than we have worker threads
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix bug in the Unix threaded.c MPM that allowed child processes
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews to fork() new child processes.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: Fix a major security problem with double-reverse lookup
e4e183af576855f4ccc9fc28084ffe095aaa5b55Andreas Gustafsson checking. Previously, a client connecting over IPv4 would not be
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews matched properly when the server had an IPv6 listening socket.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR #7407 [Taketo Kabe <kiabe sra-tohoku.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Change the way the beos MPM handles polling to allow it to stop and
195da2b26542b85d60308b2af35ea9966df9c3bbMichael Graff restart. Problem was the sockets being polled were being reset by
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the select call, so once it had accepted a connection it was no
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews longer listening on the UDP socket we use for shutdown instructions.
e9a9ae4fc627f24cb960a3008f2723ba9a55b274Brian Wellington APR needs to be altered, patch on it's way. [David Reid]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Empty out the brigade shared by ap_getline()/ap_get_client_block()
d1bdeae7bb7a0642170d5476c2fd901db3028143Andreas Gustafsson on error exit from ap_getline(). Some other code got upset because
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the wrong data was in the brigade. [Greg Ames, Jeff Trawick]
d111a46c88adda33a93839f4934e127b6147d87dBob Halley *) Handle ap_discard_request_body() being called more than once.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Greg Ames, Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get rid of an inadvertent close of file descriptor 2 in
9e53cbca72767d0c91962b7a01650ea07d7398ddMark Andrews mod_mime_magic. [Greg Ames, Jeff Trawick]
9e53cbca72767d0c91962b7a01650ea07d7398ddMark Andrews *) Add a hook, create_request. This hook allows modules to modify
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews a request while it is being created. This hook is called for all
2d0c5f1eada2015324cb89c11c7c5c11cccb493fAndreas Gustafsson request_rec's, main request, sub request, and internal redirect.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews When this hook is called, the r->main, r->prev, r->next
3bb3b7ac462a90c2b8b1fb783324d800e2ba748cMichael Graff pointers have been set, so modules can determine what kind of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews request this is. [Ryan Bloom]
b5fff54fe9335b20c02d749831fc0eaeda97198fBrian Wellington *) Cleanup the build process a bit more. The Apache configure
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews script no longer creates its own helper scripts, it just
15a0ed30600ea88fe1227233155586f0c3c6cc34Bob Halley [jean-frederic clere <jfrederic.clere fujitsu-siemens.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Stop the forced downgrade of the connection to HTTP/1.0 for
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews proxy requests. [Graham Leggett]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Avoid using sscanf to determine the HTTP protocol number in
b5fff54fe9335b20c02d749831fc0eaeda97198fBrian Wellington the common case because sscanf is a performance hog. From
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Mike Abbot's Accelerating Apache patch number 6.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Mike Abbot <mja trudge.engr.sgi.com>, Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) SECURITY: Fix a security exposure in mod_access. Previously when
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews IPv6 listening sockets were used, allow/deny-from-IPv4-address rules
3ae757933270e8298a6c1c5f9dfd30a4d852972cAndreas Gustafsson were not evaluated properly (PR #7407). Also, add the ability to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews specify IPv6 address strings with optional prefix length on Allow
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and Deny. [Jeff Trawick]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Enhance rotatelogs so that a UTC offset can be specified, and
b61bbad878d0ac563a093525aa826cdba0fd43bfMark Andrews the logfile name can be formatted using strftime(3). (Brought
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews forward from 1.3.) [Ken Coar]
4716e94840921878b26e493576f84afe4fe08752Mark Andrews *) Reimplement the Windows MPM (mpm_winnt.c) to eliminate calling
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DuplicateHandle on an IOCompletionPort (a practice which
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews MS "discourages"). The new model does not rely on associating
622af581bd08a61d12c70f80b1d40d0d9c8a1fa3David Lawrence the completion port with the listening sockets, thus the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews completion port can be completely managed within the child
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews process. A dedicated thread accepts connections off the network,
b4b032ab5a3d0e96e7c752e232e3050e8806b8cbBob Halley then calls PostQueuedCompletionStatus() to wake up worker
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews threads blocked on the completion port.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Bill Stoddard]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Bring forward the --suexec-umask option which allows the
3886e748a4086b813e3453232a742903762fedadBob Halley builder to preset the umask for suexec processes. [Ken Coar]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a -V flag to suexec, which causes it to display the
3886e748a4086b813e3453232a742903762fedadBob Halley compile-time settings with which it was built. (Only
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews usable by root or the AP_HTTPD_USER username.) [Ken Coar]
b4b032ab5a3d0e96e7c752e232e3050e8806b8cbBob Halley *) Mod_include should always unset the content-length if the file is
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews going to be passed through send_parsed_content. There is no to
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews determine if the content will change before actually scanning the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews entire content. It is far safer to just remove the C-L as long
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews as we are scanning it. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make sure Apache sends WWW-Authenticate during a reverse proxy
ce0004744d2c232581af53cbc6201f4ec4cf1f1cBrian Wellington request and not Proxy-Authenticate.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Graham Leggett <minfrin sharp.fm>]
ce0004744d2c232581af53cbc6201f4ec4cf1f1cBrian WellingtonChanges with Apache 2.0.14
134ba0e08a0ae9a564a8d8628fc633377d3fc239Bob Halley *) Fix content-length computation. We ONLY compute a content-length if
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews We are not in a 1.1 request and we cannot chunk, and this is a keepalive
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews or we already have all the data. [Ryan Bloom]
134ba0e08a0ae9a564a8d8628fc633377d3fc239Bob Halley *) Report unbounded containers in the config file. Previously, a typo
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews in the </container> directive could result in the rest of the config
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews file being silently ignored, with undesired defaults used.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jeff Trawick]
8426878e988859184706f36e2229e24e77b80aa4Andreas Gustafsson *) Make the old_write filter use the ap_f* functions for the buffering.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
0f7045b0c437b158c61c195c319d2762882ece83Andreas Gustafsson *) Move more code from the http module into the core server. This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is core code, basically the default handler, the default input
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews and output filters, and all of the core configuration directives.
7c0e50b5623a6ffc9e3986e129f8ca6bae9aabfaBrian Wellington All of this code is required in order for the server to work, with or
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews without HTTP. The server is closer to working without the HTTP
a25310fd1dce652cdebba2b3dbc5d38cc3706745Andreas Gustafsson module, although there is still more to do. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a number of SGI compile warnings throughout the server. Fix some
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews bad parameters to apr_bucket_read(). Fix a bad statement in
42712a426dd62518ca7c36982867e5622f7265e7Michael Graff ap_method_in_list(). For the mod_rewrite cache use apr_time_t
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews consistently; we were mixing apr_time_t and time_t in invalid ways
e6a6c0a5d6393d3a7f75b486f16e4ef15c4857bbDavid Lawrence before. In load_file(), call apr_dso_error() instead of
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews apr_strerror() so that we get a more specific string on some platforms.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews PR #6980 [Jeff Trawick]
11a898e05092e8477fbfe1a245c1c5871a846638Andreas Gustafsson *) Allow modules to query the MPM about it's execution profile. This
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews query API can and should be extended in the future, but for now,
5d4f11b265c396d71ec2162a632e620425481a9eDavid Lawrence max_daemons, and threading or forking is a very good start.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jon Travis <jtravis covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify mod_include to send blocks of data no larger than 9k.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Without this, mod_include will wait until the whole file is parsed,
0bcb1d4d630f8d7547ee62870e1b059827cc1c8aDavid Lawrence or the first tag is found to send any data to the client.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Paul J. Reder <rederpj raleigh.ibm.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix mod_info, so that <Directory> and <Location> directives are
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews not displayed twice when displaying the current configuration.
ce3be21d63d1e06b222ecb66b4eae909b4658d53James Brister [Ryan Morgan <rmorgan covalent.net>]
ce3be21d63d1e06b222ecb66b4eae909b4658d53James Brister *) Add config directives to override DEFAULT_ERROR_MSG and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews DEFAULT_TIME_FORMAT. This was sent in as PR 6193.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Dan Rench <drench xnet.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Get mod_info building and loading on Win32. [William Rowe]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Begin to move protocol independant functions out of mod_http. The goal
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews is to have only functions that are HTTP specific in the http directory.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.13
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Don't assume that there will always be multiple calls to the byterange
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews filter. It is possible that we will need to do byteranges with only
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews one call to the filter. [Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move the error_bucket definition from the http module to the
bf062442eeef2fe404d728891b1317b01fbb7908Andreas Gustafsson core server. Every protocol will need this ability, not just
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews HTTP. [Ryan Bloom]
bf062442eeef2fe404d728891b1317b01fbb7908Andreas GustafssonChanges with Apache 2.0.12
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Modify mod_file_cache to save pre-formatted strings for
bf062442eeef2fe404d728891b1317b01fbb7908Andreas Gustafsson content-length and last-modified headers for performance.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Mike Abbot <mja trudge.engr.sgi.com>]
404e3e4738e97d5dff48fab1e76839e963cb16a6Brian Wellington *) Namespace protect IOBUFSIZ since it is exposed in the API.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jon Travis <jtravis covalent.net>]
d9cc295339982d8d86075ab4285cc700d354e2eeBob Halley *) Use "Basic" authentication instead of "basic" in ab, as the spec
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews says we should. [Andre Breiler <andre.breiler rd.bbc.co.uk>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Fix a seg fault in mod_userdir.c. We used to use the pw structure
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews without ever filling it out. This fixes PR 7271.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Taketo Kabe <kabe sra-tohoku.co.jp> and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Cliff Woolley <cliffwoolley yahoo.com>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add a couple of GCC attribute tags to printf style functions.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Jon Travis <jtravis covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Add the correct language tag for interoperation with the Taiwanese
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews versions of MSIE and Netscape. [Clive Lin <clive CirX.ORG>] PR#7142
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Migrate the perchild MPM to use the new apr signal child, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews APR thread functions. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Close one copy of the CGI's stdout before creating the new process.
be768c2e952c34438025999125f984995a2c675fBob Halley The CGI will still have stdout, because we have already dup'ed it.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews This keeps Apache from waiting forever to send the results of a CGI
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews process that has forked a long-lived child process.
da6affdf7dd677a636155e4a41f6de416a2d815bBob Halley [Taketo Kabe <kabe sra-tohoku.co.jp>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove the rest of the pthreads functions from the threaded MPM.
da6affdf7dd677a636155e4a41f6de416a2d815bBob Halley This requires the APR support for a signal thread that was just
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews added. [Ryan Bloom]
be768c2e952c34438025999125f984995a2c675fBob Halley *) Make mod_dir use a fixup for sending a redirect to the browser.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews Before this, we were using a handler, which doesn't make much
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews sense, because the handler wasn't generating any data, it would
01e320c4fb51c802e9fe86c192fbebf4229ca918Bob Halley either return a redirect error code, or DECLINED. This fits the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews current hooks better. [Ryan Morgan <rmorgan covalent.net>]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Make the threaded MPM use APR threads instead of pthreads.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
01e320c4fb51c802e9fe86c192fbebf4229ca918Bob Halley *) Get mod_tls to the point where it actually appears to work in all cases.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ben Laurie]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) implement --enable-modules and --enable-mods-shared for "all" and
dd6132005a5c48dea642c2ed0507bf472c8ee9bbJames Brister "most". [Greg Stein]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Move the threaded MPM to use APR locks instead of pthread locks.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rename mpmt_pthread to threaded. This is more in line with the
3f46e84f9ff264cac8c07c2136a507827afb2760James Brister fact that mpmt_pthread shouldn't be using pthreads directly, and
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews it is a smaller name that doesn't tie into anything.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Rename the module structures so that the exported symbol matches
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews the file name, and it is easier to automate the installation
99b80297d416ebb722b2515023c51b3aacdc1fb9Bob Halley process (generating LoadModule directives from the module filenames).
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Martin Kraemer]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove the coalesce filter. With the ap_f* functions, this filter
fdb12d38d325efba64581bdee7fac188466fff55Bob Halley is no longer needed. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark AndrewsChanges with Apache 2.0.11
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Remove the dexter MPM. Perchild is the same basic idea, but it has the
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews added feature of allowing a uid/gid per child process. If no
43a5758df763a04d907a8b406e89a96f5c207a9cBrian Wellington uid/gid is specified, then Perchild behaves exactly like dexter.
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews [Ryan Bloom]
c73aafe6016ed1a7a6972681148cedf6a48a21bcBrian Wellington *) Get perchild building again. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Don't disable threads just because we are using the prefork MPM.
99b80297d416ebb722b2515023c51b3aacdc1fb9Bob Halley If somebody wants to compile without threads, they must now add
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews --disable-threads to the configure command line. [Ryan Bloom]
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews *) Begin to move the calls to update_child_status into common code, so
b39bfc630dc222fb73c21a00bcba47c4f9e38f20Mark Andrews that each individual MPM does not need to update the scoreboard itself.
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence *) Allow mod_tls to compile under Unix boxes where openssl has been
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence installed to the system include files.
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence [Gomez Henri <new-httpd slib.fr>]
9151d6e15cb9c639a3dca083d7f6e9094f6b89caDavid Lawrence *) Cleanup the mod_tls configure process. This should remove any need
*) Add a very early prototype of SSL support (in mod_tls.c). It is
vital that you read modules/tls/README before attempting to build
to #ifdef it. [Cliff Woolley <cliffwoolley yahoo.com>]
[Paul J. Reder <rederpj raleigh.ibm.com>]
*) Correct a typo in httpd.conf.
[Kunihiro Tanaka <tanaka apache.or.jp>] PR#7154
PR#7170 [Danek Duvall <dduvall eng.sun.com>]
*) Adopt apr user/group name features for mod_rewrite. Eliminates some
'extra' stat's for user/group since they should never occur, and now
Win32/OS2 exceptions without hiccuping. [William Rowe]
*) Modify the apr_stat/lstat/getfileinfo calls within apache to use
*) Move initgroupgs, ap_uname2id and ap_gname2id from util.c to
mpm_common.c. These functions are only valid on some platforms,
*) Update highperformance.conf to work with either prefork or
i.e. syntax like %{LA-U:REMOTE_USER}, and also fix the parsing of
Host: header. PR#7079 [Alexey Toptygin <alexeyt wam.umd.edu>]
hints.m4) of various compilation flags (eg: CFLAGS). Also,
*) Allow the buildconf process to find the config.m4 files in the correct
the changes in Apache 2.0 [Cliff Woolley <cliffwoolley yahoo.com>]
such as apache_2.0a9.tar.gz on FreeBSD again. [Ryan Bloom]
[Cliff Woolley <cliffwoolley yahoo.com>]
server root from the Apache.exe path.
loadable modules, dynamic libs are all named libfoo.dll, and the
makefile.win populates the include, lib and libexec directories.
numeric address strings (e.g., "Listen [fe80::1]:8080").
*) Get the functions in server/linked into the server, regardless of
be loadable into the server. Our new build/install mechanism expects
to build + install on Win32. Makefile.win now rewrites @@ServerRoot@
and installs the conf, htdocs and htdocs/manual directories.
[Paul J. Reder <rederpj raleigh.ibm.com>]
time, and that list is then used to generate the exports.c file.
[Sander van Zoest <sander covalent.net>]
*) Added lib/aputil/ as a placeholder for utility functions which are not
[Paul Reder <rederpj raleigh.ibm.com>]
rotatelogs.c code, and no longer churn log processes for this
[B. W. Fitzpatrick <fitz red-bean.com>]
hostname resolution/address string parsing and building
[Markus Gyger <mgyger itr.ch>]
*) Mod_info.c has now been ported to Apache 2.0. As a part of this
[Ryan Morgan <rmorgan covalent.net>]
[Branko Čibej <brane xbc.nu>]
[Shuichi Kitaguchi <ki hh.iij4u.or.jp>]
*) APR read/write functions and bucket read functions now operate
code in mod_log_config.c
*) In the Apache/Win32 console window, accept Ctrl+C to stop the
since we don't compute digests of filtered (e.g., translated)
*) Update the mime.types file to the registered media types as
*) Namespace protect some macros declared in ap_config.h
[Tomas Ögren <stric ing.umu.se>]
[Cliff Woolley <cliffwoolley yahoo.com>]
*) Add support for /, //, //servername and //server/sharename
*) Fix another bug in the send_the_file() read/write loop. A partial
*) Reimplement core_output_filter to buffer/save bucket brigades
[Mike Abbott <mja sgi.com>]
*) send_the_file now falls back to a read/write loop on platforms that
*) APR now has UUID generation/formatting/parsing support.
-add rules for cross-compiling in rules.mk. Okay, rule to check for
-add missing "AR=@AR@" to severaly Makefile.in's
[Rüdiger Kuhlmann <Tadu gmx.de>]
[Rüdiger Kuhlmann <Tadu gmx.de>]
*) Fix building on BSD/OS using its native make. The build system
hook in http_core.c. This removes the need to add the filter in
*) SECURITY: CVE-2000-0913 (cve.mitre.org)
update allows the user to clear or preserve pw/groups/comment.
<IfModule mod_kilroy.c>
<IfModule mod_lovejoy.c>
*) Fix some compile warnings in mod_mmap_static.c
[Mike Abbott <mja sgi.com>]
*) APRVARS.in no longer overwrites the EXTRA_LIBS variable.
[Mike Abbott <mja sgi.com>]
*) Fix compile break on some platforms for mod_mime_magic.c
[John K. Sterling <sterling covalent.net>]
PR #5872 (1.3) [Jun Kuriyama <kuriyama imgsrc.co.jp>]
platforms to hints.m4, which contains (or should contain)
*) Add tables with non-string/binary values to APR.
[Rob Simonson <simo us.ibm.com>]
configuration file started with an IfModule/IfDefine container,
[Gregory Nicholls <gnicholls level8.com>]
[Gregory Nicholls <gnicholls level8.com>]
code was being returned. [Gregory Nicholls <gnicholls level8.com>]
not terminated with cr/lf sequences in Win32. [William Rowe]
*) Move all strings functions in APR to src/lib/apr/strings and create
apr_strings.h for the prototypes. [Ryan Bloom]
*) Clean out obsolete names (from httpd.h) for the HTTP Status Codes
*) Update the lib/expat-lite/ library (bring forward changes from
[Dave Hill <ddhill zk3.dec.com>]
timeouts (i.e, if a timeout was specified, the pipe reverted to
3x the rate of Apache 1.3.(e.g, Apache 1.3 will serve 400 rps
compiled-in limits (e.g., ThreadsPerChild, MaxClients, StartTreads).
[Tyler J. Brooks <tylerjbrooks home.com>, Jeff Trawick]
*) SECURITY: CVE-2000-1204 (cve.mitre.org)
and a user makes a request like http://www.example.com//cgi-bin/cgi
as reported in <news:960999105.344321 ernani.logica.co.uk>
*) Yet another update to saferead/halfduplex stuff -- need to ensure
to the configured User/Group (like other httpd processes)
if the len was negative. Use <sys/un.h> for struct sockaddr_un
doesn't seem to have a problem but /bin/sh on Solaris does.
ContentDigest enabled and we can't/don't mmap the file.
related bugs, and changed shmem/locking to use apr API. Shared-mem
would be errors generating ap_config_auto.h later in the configure
*) Organize http_main.c as independent code, such that no code or
[William Rowe, Jan Just Keijser <KEIJSERJJ logica.com>]
[Ask Bjoern Hansen <ask valueclick.com>]
[Paul Reder <rederpj raleigh.ibm.com>]
in 1.3's ebcdic.c. [Jeff Trawick]
buffer if the implementation knows how to use it (i.e., if L_tmpnam
*) Configure creates config.nice now containing your configure
options. Syntax: ./config.nice [--more-options]
*) Fix mm's memcpy/memset macros, pointer arithmetic was broken.
[Tim Costello <timcostello ozemail.com.au>]
[Chia-liang Kao <clkao CirX.ORG>]
*) The ab program in the src/support directory is now portable using
*) Finished move of ap_md5 routines to apr_md5. Removed ap_md5.h.
Apache.dsw created to bring together all the pieces. Create new file
os/win32/BaseAddr.ref to define module base addresses (to prevent
*) More FAQs and answers from comp.infosystems.www.servers.unix.
[Joshua Slive <slive finance.commerce.ubc.ca>]
in the field. [William Rowe <wrowe lnd.com>]
[William Rowe <wrowe lnd.com>]
[William Rowe <wrowe lnd.com>]
[Brian Martin <bmartin penguincomputing.com>]
fix up from Apache 1.3. #include'ing "ap_mpm.h" fixes up an
[William Rowe <wrowe lnd.com>]
[William Rowe <wrowe lnd.com>]
[William Rowe <wrowe lnd.com>]
we can use ReadFileScatter and WriteFileGather in readwrite.c.
[Allan Edwards <ake raleigh.ibm.com>]
[Brian Martin <bmartin penguincomputing.com>]
fixes to mod_so.c.
[Joshua Slive <slive finance.commerce.ubc.ca>]
[Jon Travis <jtravis covalent.net>]
[Paul Reder <rederpj raleigh.ibm.com>]
[Allan Edwards <ake raleigh.ibm.com>]
[William Rowe <wrowe lnd.com>]
[William Rowe <wrowe lnd.com>]
Makefile.win includes the same user interface as the old
[William Rowe <wrowe lnd.com>] PR#3715
[Allen Prescott <allen clanprescott.com>]
[Jeff Trawick <trawick us.ibm.com>]
*) Put in Korean and Norwegian index.html pages (2.0 and 1.3)
config file. E.g. 'ServerAdmin ${POSTMASTER}'. As commited
it does this on a line by line basis; i.e. if the envvar
ErrorDocument XXX /local/uri
ErrorDocument XXX http://valid/url
*) Changed 'CacheNegotiatedDocs' from its present/not-present
done with --with-module=/path/to/module. Modules can only be added
[Jeff Trawick <trawick us.ibm.com>]
*) Enable Apache to use sendfile/TransmitFile API
*) Make file I/O and network I/O writev/sendv APIs consistent.
bytes_read/bytes_written is always valid (never -1). Plus
some fixes to buff.c to correct problems introduced by the
*) port mod_rewrite to 2.0. [Paul J. Reder <rederpj raleigh.ibm.com>]
[Paul Reder <rederpj raleigh.ibm.com>]
[John Zedlewski <zedlwski Princeton.EDU>]
*) buff.c has been converted to no longer use errno.
[Dilip Khandekar <dilip cup.hp.com>]
automatically for developers from src/Configure.
*) Fixed building of src/support/htpasswd.c
*) Moved mod_auth_digest.c from experimental to standard. [Roy Fielding]
for a wildcard handler. [Dirk <dirkm teleport.com>, Roy Fielding]
*) Support line-continuation feature in config.option file and
*) Implement WINNT Win32 MPM from original Win32 code in http_main.c
(per default used the config.option file).
*) MPM BEOS port. [David Reid <abb37 dial.pipex.com>]
calling order to be specified on a per-hook/per-module basis.
*) os/unix/unixd.[ch]: detach, setuid, setgid, stuff which will be common
*) mpm_prefork: throw away all the alarm/timeout crud; and clean up the
of alloc.c for now. [Dean Gaudet]
based on IP/port. [Ben Laurie]
["Michael H. Voase" <mvoase midcoast.com.au>]
*) I/O layering and BUFF revamp. See docs/buff.txt. [Dean Gaudet]
docs/initial_blurb.txt. [Dean Gaudet]
[James Morris <jmorris intercode.com.au>]
an absolute path to the ./libexec directory where the libhttp.ep file
routines are now called ap_base64* and are 'plain' (i.e., no
pool access or anything clever). Inside util.c the routines acting
*) Fixed assumption of absolute paths in binbuild.sh. [Tony Finch]
src/support/httpd.exp. [Bill Stoddard, Randy Terbush]
*) Make ap_sha1.c compile for EBCDIC platforms: replace remaining LONG
[Tom Vaughan <tvaughan aventail.com>, Roy Fielding]
*) PORT: Improved compilation and DSO support on Sequent DYNIX/ptx.
[Ian Turner <iant sequent.com>] PR#4735
*) Local struct mmap in http_core.c conflicted with system structure
*) Added updated mod_digest as modules/experimental/mod_auth_digest.
[Ronald Tschalär <ronald innovation.ch>]
up across restarts. [David Harris <dharris drh.net>]
*) CIDR addresses such as a.b.c.d/24 where d != 0 weren't handled
["Paul J. Reder" <rederpj raleigh.ibm.com>] PR#4770
*) RewriteLock/RewriteMap didn't work properly with virtual hosts.
[Dmitry Khrustalev <dima bog.msu.su>] PR#3874
*) PORT: Support for compaq/tandem/com.
Netscape servers. See support/SHA1 for more information.
Caused the separation of ap_md5.c into md5, sha1 and a general
ap_checkpass.c with just a validate_passwd routine. Added a
couple of flags to support/htpasswd. Some reuse of the to64()
[Dirk-Willem van Gulik, Clinton Wong <clintdw netcom.com>]
with ASCII/EBCDIC conversions in "ident" query.
[David McCreedy <McCreedy us.ibm.com>]
are combined, and duplicate tokens (e.g., "Vary: host, host" or
*) Portability changes for BeOS. [David Reid <abb37 dial.pipex.com>]
[Bill Stoddard <stoddard raleigh.ibm.com>]
[Roy Fielding, Joe Orton <jeo101 york.ac.uk>] PR#4499, PR#3806
install the DSO; useful for editing httpd.conf with apxs. Fix
create duplicate LoadModule/AddModule entries; apxs can now be
used to re- enable/disable a module. [Wilfredo Sanchez]
Win 95 users may need to update their TCP/IP stack to pick up
Winsock 2. (See http://www.microsoft.com/windows95/downloads/)
[Bill Stoddard <stoddard raleigh.ibm.com>]
error.log when CGI scripts fail. This makes Apache on Win32
[Bill Stoddard <stoddard raleigh.ibm.com>]
*) Fix `make r' test procedure in src/regex/: ap_isprint was not found.
*) Add DSO support for DGUX 4.x using gcc. Tested on x86 platforms.
[Randy Terbush <randy covalent.net>]
*) Add the new mass-vhost module (mod_vhost_alias.c) developed and
used by Demon Internet, Ltd. [Tony Finch <fanf demon.net>]
[Rasmus Lerdorf <rasmus raleigh.ibm.com>]
[Bill Stoddard <stoddard raleigh.ibm.com>]
parent/child process management code.
[Bill Stoddard <stoddard raleigh.ibm.com>]
[John Giannandrea <jg meer.net>] PR#4122
*) Fix ndbm.h include problems with brain-dead glibc >= 2.1 which
has ndbm.h in a non-standard db1/ subdir. PR#4431, PR#4528
[Henri Gomez <gomez slib.fr>, Ralf S. Engelschall]
*) Determine AP_BYTE_ORDER for ap_config_auto.h and already
content-types are "text/html;parameters". PR#4524 [Ken Coar]
*void. When the OS/platform/compiler supports quads, ap_snprintf()
[Aidan Cully <aidan panix.com>] PR#4456
*) Add RULE_EXPAT, the src/lib/ directory structure, and a modified copy
library. [Jens-Uwe Mager <jum helios.de>, Ralf S. Engelschall]
(e.g., HTTP/0.9 or HTTP/1.1) of the request. [Ken Coar]
[Ralf S. Engelschall, Rex Dieter <rdieter math.unl.edu>] PR#3997
[Jan Gallo <gallo pvt.sk>] PR#3690, PR#4373
*) Switch to /bin/sh5 in APACI on Ultrix and friends to avoid problems with
their brain-dead /bin/sh. [Ralf S. Engelschall] PR#4372
[Todd Vierling <tv pobox.com>] PR#4310
[Petr Lampa <lampa fee.vutbr.cz>] PR#4366, 679
[Raymond S Brand <rsbx rsbx.net>, Ken Coar] PR#1574, 3026, 3529,
the struct stat. [Ed Korthof <ed bitmechanic.com>]
[Salvador Ortiz Garcia <sog msg.com.mx>]
[Rob Saccoccio <robs InfiniteTechnology.com>] PR#2579
*) mod_include's fsize/flastmod should allow only relative paths, just
like "include file". [Jaroslav Benkovsky <benkovsk pha.pvt.cz>]
*) Add iconsdir, htdocsdir, and cgidir to config.layout.
*) Fix minor but annoying bug with the test for Configuration.tmpl
in unix/os.c, and don't install the dyld error handlers, which
*) Add functionality to the install-bindist.sh script created by
binbuild.sh to use tar when copying distribution files to the
install-bindist.sh now detects the local perl5 path to install
[Randy Terbush, Covalent Technologies, <randy covalent.net>]
src/modules/proxy_util.c where a NULL filepointer and
[Graham Leggett <minfrin sharp.fm>,
Tim Costello <tjcostel socs.uts.edu.au>] PR#3178
[Graham Leggett <minfrin sharp.fm>]
have assurance about how string manipulators (e.g., tr) will
[Ken Coar, Dmitry Khrustalev <dima zippy.machaon.ru>] PR#4118
[Raymond S Brand <rsbx rsbx.net>]
[Raymond S Brand <rsbx rsbx.net>] PR#4248
*) Add "opt" (SysV-style) layout to config.layout. [Raymond S Brand
<rsbx rsbx.net>]
[Yitzchak Scott-Thoennes <sthoenna efn.org>, Ralf S. Engelschall] PR#4269
[Joe Moenich <moenich us.ibm.com>]
*) Fix number of bytes copied by read_connection() in src/support/ab.c
[Jim Cox <jc superlink.net>] PR#4271
[Bob Finch <bob nas.com>]
[Paul Sutton <paul awe.com>]
*) Make sure RewriteLock can be used only in the global context, (i.e.
<mariav icgeb.trieste.it>] PR#4260
uncompress/gzip, but those tools sometimes do not produce
[Marcin Cieslak <saper system.pl>] PR#4097
line. [<inkling firstnethou.com>] PR#3770
redirects. [Jose KAHAN <kahan w3.org>] PR#3910, 3806, 3575
[Jacques Distler <distler golem.ph.utexas.edu>] PR#4130
*) PORT: deal with UTS compiler error in http_protocol.c
[Dave Dykstra <dwd bell-labs.com>] PR#4189
*) Add ap_vrprintf() function. [John Tobey <jtobey banta-im.com>] PR#4246
by "Peter 'Luna' Altberg <peter altberg.nu>" and PR#3422
[Peter 'Luna' Altberg <peter altberg.nu>, Ronald Tschalär]
binary (e.g., image file) in the first place.
[David McCreedy <mccreedy us.ibm.com>]
*) support/htpasswd now permits the password to be specified on the
apache -n apache1 -i -f c:/httpd.conf
Installs apache as service 'apache1' and associates c:/httpd.conf
Installs apache as service 'apache2'. httpd.conf is located under
the default server root (/apache/conf/httpd.conf).
apache -n apache3 -i -d c:/program files/apache
c:/program files/apache.
*) Correct the signed/unsigned character handling for the MD5 routines;
*) OS/2: Rework CGI handling to use spawn*() instead of fork/exec, achieving
*) proxy ftp: instead of using the hardwired string "text/plain" as
<Directory proxy:ftp://some.host>
DefaultType gargle/blurb
*) Be more smart in APACI's configure script when determining the UID/GID
the number of fork()s from one/request to just the odd one an hour.
*) Added proxy, auth and header support to src/support/ab.c. Added a
README file to src/support/
*) Fix sed-substitutions in `make install': path elements like `httpd/conf'
(for instance from an APACI configure --sysconfdir=/etc/httpd/conf
*) PORT: Add support for FreeBSD 4.x [Ralf S. Engelschall]
[Ronald Tschalär <ronald innovation.ch>] PR#3411
the reboot prompt (which is only given if MSVCRT.DLL system
*) WIN32: Apache.exe now contains an icon. [Paul Sutton]
*) Using APACI, the main config file (usually httpd.conf) was
<wsanchez apple.com>]
[Ryan Bloom <rbb raleigh.ibm.com>]
[Dean Gaudet, Jeff Lewis <lewis stanford.edu>] PR#3872
*) Move the directive `ExtendedStatus' in httpd.conf-dist-win _after_ the
DSO/DLL section because it's a directive from mod_status and isn't
[Martin POESCHL <mpoeschl gmx.net>] PR#3936
option more clear. [Jan Wolter <janc wwnet.net>] PR#3995
[John Tobey <jtobey banta-im.com>] PR#3983
against libap.a and use its ap_snprintf() instead of sprintf() to avoid
*) Add Apple's Mac OS X Server Layout "Rhapsody" to config.layout.
*) Add cgidir, htdocsdir, iconsdir variables to Makefile.tmpl in order
[Michael van Elst <mlelstv serpens.swb.de>, Lars Eilebrecht] PR#3160
*) Use proper pid_t type for saving PIDs in alloc.c. [John Bley]
%v). Useful for mass vhosting. [Tony Finch <dot dotat.at>]
more reliable logs with multiline entries. [Tony Finch <dot dotat.at>]
*) Fixed a few compiler nits. [John Bley <jbb6 acpub.duke.edu>]
in http_core.c. [John Bley, Roy Fielding]
calls. [John Bley <jbb6 acpub.duke.edu>, Jim Jagielski]
[Brian Havard <brianh kheldar.apana.org.au>]
[Joshua Slive <slive finance.commerce.ubc.ca>] PR#2497
*) src/support/: The ApacheBench benchmark program was overhauled by
[David N. Welton <davidw prosa.it>]
*) Added -S option to install.sh so that options can be passed to
the test case of no modules being selected. [<chaz reliant.com>]
is *not* given in the argument list; i.e., the logical negation
*) Win32: Add global symbols missing from ApacheCore.def. [Carl Olsen]
to util.c for parsing an HTTP header field value to extract the next
code different from 500. This allows the proxy to, e.g., return
and no Accept-Language. [James Treacy <treacy debian.org>] PR#3299, 3688
as "com.name" to be served. [Paul Sutton] PR#3769.
make subtasking easier on the OSD/POSIX mainframe environment.
*) Make NDBM file suffix determination for mod_rewrite more accurate, i.e.
[Ryan Bloom <rbb Raleigh.IBM.Com>]
impossible to exploit.) [Rick Perry <perry ece.vill.edu>]
*) Let src/Configure be aware of CFLAGS options starting with plus
signs as it's the case for the HP/UX compiler.
[Doug Yatcilla <yatcilda umdnj.edu>] PR#3681
and this makes its functions available to things in src/support.
*) WIN32: Created new makefiles Makefile_win32.txt (normal build)
and Makefile_win32_debug.txt (debug build) that work on Win95.
nmake /f Makefile_win32.txt # compiles normal build
nmake /f Makefile_win32.txt install # compiles and installs
nmake /f Makefile_win32.txt clean # removes compiled junk
nmake /f Makefile_win32_debug.txt # compiles debug build
nmake /f Makefile_win32_debug.txt install
nmake /f Makefile_win32_debug.txt clean
for FreeBSD 3.0). [Todd Vierling <tv pobox.com>] PR#2462
*) Small fix for mod_env.html: The module was documented as to be _not_
Apache per default. [Sim Harbert <sim mindspring.com>] PR#3572
*) Instead of fixing a bug in the generation procedure for config.status (a
making sure the src/support/ tools are _forced_ to be build last (they
*) Fix installation procedure: Now that os-inline.c is actually used (a
recently fixed bug prevented this) we need to also install os-include.c
`escape' and `unescape' were added which can be used to escape/unescape
to/from hex-encodings in URLs parts (this is especially useful in
*) Major overhaul of mod_negotiation.c, part 2.
- added ap_array_pstrcat() to alloc.c for efficient concatenation
*) Major overhaul of mod_negotiation.c, part 1.
revision (draft-ietf-http-v11-spec-rev-06.txt).
e.g. no feature negotiation). Removed old experimental version.
negotiation results are consistent across backup/restores and mirrors
*) RFC2396 allows the syntax http://host:/path (with no port number)
[David Kristol <dmk bell-labs.com>] PR#3530
*) When modules update/modify the file name in the configfile_t structure,
[Fabien Coelho <coelho cri.ensmp.fr>] PR#3573
CASE_BLIND_FILESYSTEM. [Brian Havard <brianh kheldar.apana.org.au>]
*) The hashbang emulation code in ap_execve.c would interpret
#!/hashbang/scripts correctly, but failed to fall back to a
*) PORT: Added the Cyberguard V2 port [Richard Stagg <stagg lentil.org>]
and another was incorrect. [Mark Anderson <mda discerning.com>] PR#3553
wasn't defined. [Rick Franchuk <rickf transpect.net>]
o fixed auto-suffix handling now that config.layout exists.
config.layout and every path now can be marked this way (not only the
SINGLE_LISTEN_UNSERIALIZED_ACCEPT to NetBSD/OpenBSD section
of ap_config.h to allow serialized accept for multiport listens.
*) PORT: Fixed a misplaced #endif for NetBSD/OpenBSD section
of ap_config.h that would skip several defines if DEFAULT_GROUP
strcasecmp, so allow it in ap_config.h. [Amiel Lee Yee] PR#3247
*) Fix ordering of definitions in ap_config.h so that ap_inline is
[Tom Serkowski <tks bsdi.com>] PR#3453
*) Make generation of src/Configuration.apaci more robust: It failed to
another (e.g. cgi vs. fastcgi). We now check for mod_XXX, libXXX and even
*) In src/Configure remove the SERVER_SUBVERSION support (already deprecated
[Ralf S. Engelschall, Wilfredo Sanchez <wsanchez apple.com>]
[Paul Ausbeck <paula alumni.cse.ucsc.edu>, Paul Sutton] PR#3447
*) Allow special options -Wc,xxx and -Wl,xxx on APXS compile/link command.
IS to the compiler/linker command. [Ralf S. Engelschall]
config.layout. Custom layouts are possible by using FILE:ID as the
The config.layout file consists of <Layout ID>..</Layout> sections
extension (e.g., .fr, .de) can be labelled as being some other
*) mod_include.c:handle_perl() now properly tests for OPT_INCNOEXEC
rather than OPT_INCLUDES [Rainer Schoepf <schoepf uni-mainz.de>]
[Ronald Tschalär <ronald innovation.ch>] PR#3409
[Martin Plechsmid <plechsmi karlin.mff.cuni.cz>] PR#1987
[Andrew Pimlott <pimlott math.harvard.edu>] PR#3340
[David MacKenzie <djm uu.net>] PR#3394
*) Updated mime.types to reflect current Internet media types
Improved mod_actions.c so that it can use any of the methods
defined in httpd.h. Added ap_method_number_of(method) for
*) PORT: Add a port to the TPF OS. [Joe Moenich <moenich us.ibm.com> and
*) Fix problems with handling of UNC names (e.g., \\host\path)
on Win32. [Ken Parzygnat <kparz us.ibm.com>]
robust, and works. [Ken Parzygnat <kparz us.ibm.com>]
[Manoj Kasichainula, Ken Parzygnat <kparz us.ibm.com>]
*) Move a typedef to fix compile problems on Linux with 1.x kernels.
*) http_config.c would respond with 501 (Method Not Implemented) if a
should have been a 500 response. Likewise, mod_proxy.c would responsd
on-the-fly/batch permute the order of two modules (mod_foo and mod_bar)
mod_foo with the begin of the module list, i.e. it `moves' the module to
which permutes mod_foo with the end of the module list, i.e. it `moves'
synchronisation (Win32). [Ken Parzygnat <kparz raleigh.ibm.com>]
on container start lines (e.g., it wouldn't spot
"<Directory /" as a syntax error). [Ryan Bloom <rbbloom us.ibm.com>]
[Ryan Bloom <rbbloom us.ibm.com>] PR#1799.
[Ken Parzygnat <kparz raleigh.ibm.com>] PR#2078, 2303.
[Ivan Richwalski <ivan seppuku.net>] PR#3249
*) Fix Berkeley-DB/2.x support in mod_auth_db: The data structures were not
parameter. [Ron Klatchko <ron ckm.ucsf.edu>] PR#3171
[Ralf S. Engelschall, Ron Record <rr sco.com>]
httpd.conf-dist* files. The srm and access files now contain
only comments, and httpd.conf has all the combined contents in
*) PORT: DSO/ELF support for FreeBSD 3.0.
[Ralf S. Engelschall, Dirk Froemberg <ibex physik.TU-Berlin.DE>]
do this. [Ken Parzygnat <kparz raleigh.ibm.com>] PR#2976, 3074
[Wilfredo Sanchez <wsanchez apple.com>]
of "-". [Martin Plechsmid <plechsmi karlin.mff.cuni.cz>, Marc Slemko]
*) PORT: DRS 6000 machine. [Paul Debleecker <pdebleecker jetair.be>]
[M. Laak <maert proinv.ee>] PR#3108
[Dave Dykstra <dwd bell-labs.com>] PR#3055
but not tabs). [James Morris <jmorris intercode.com.au>,
[James Grinter <jrg blodwen.demon.co.uk>] PR#3111
[Youichirou Koga <y-koga jp.FreeBSD.org>] PR#3095
[Youichirou Koga <y-koga jp.FreeBSD.org>] PR#3096
*) Fix http://localhost/ hints in top-level INSTALL document.
[Rob Jenson <robjen spotch.com>, Ralf S. Engelschall] PR#3088
[Wilfredo Sanchez <wsanchez apple.com>]
[Ken Parzygnat <kparz raleigh.ibm.com>] PR#2884, 2910
<kparz raleigh.ibm.com>] PR#3001
[Ken Parzygnat <kparz raleigh.ibm.com>] PR#2976, 3074
ap_config.h. [Brian Havard]
*) PORT: Add Pyramid DC/OSx support to configuration mechanism.
[Earle Ake <akee wpdiss1.wpafb.af.mil>]
*) PORT: Fix sys/resource.h handling for Amdahl's UTS 2.1
[Dave Dykstra <dwd bell-labs.com>] PR#3054
*) Correct comment in mod_log_config.c about its internals.
[Elf Sternberg <elf halcyon.com>]
handle the creation of modules.c [Jim Jagielski]
and to avoid problems under platforms where only version 2.x is present.
[Dan Jacobowitz <drow false.org>, Ralf S. Engelschall]
[Bill Stoddard <stoddard raleigh.ibm.com>]
*) Remove redundant substitutions in top-level Makefile.tmpl.
platforms where `nogroup' exists in /etc/group. [Ralf S. Engelschall]
the possibility to override it manually via APACI or src/Configuration.
existance of the file under /usr/include, too.
[Wilfredo Sanchez <wsanchez apple.com>]
[Charles Randall <crandall matchlogic.com>] PR#2947
[Youichirou Koga <y-koga jp.FreeBSD.org>] PR#2991
[Karl Berry <karl gnu.org>] PR#2994
[Youichirou Koga <y-koga jp.FreeBSD.org>] PR#2992
*) Fix possible buffer overflow situation in suexec.c.
[Jeff Stewart <jws purdue.edu>] PR#2790
[Ronald Record <rr sco.com>] PR#2533
*) Fix documentation of ProxyPass/ProxyPassReverse according to the
trailing slash problem. [Jon Drukman <jsd gamespot.com>] PR#2933
[Marc Slemko, Paul Phillips <paulp go2net.com>]
SCO OpenServer. [David Coelho <drc ppt.com>]
in /home/user, not in /, therefore clicking on "../" in the
dump core for replies with invalid headers (e.g., duplicate
plop gmon.out profile data for each child [Doug MacEachern]
config.status script to be immune against arguments with whitespaces.
[Yves Arrouye <yves apple.com>] PR#2866
script `buildinfo.sh' which is both more flexible and already proofed to
*) Make ab.c again pass ``gcc -Wall -Wshadow -Wpointer-arith -Wcast-align
*) Remove bad reference to non-existing SERVER_VERSION in mod_rewrite.html
[Youichirou Koga <y-koga jp.FreeBSD.ORG>] PR#2895
[Kurt Sussman <kls best.com>] PR#2871
*) Bump up MAX_ENV_FLAGS in mod_rewrite.h from the too conservatice limit of
variables in one RewriteRule and had to patch mod_rewrite.h for every
*) Make sure the config.status file is not overridden when just
See include/ap_mmn.h for more details. [Randy Terbush]
*) SECURITY: CVE-1999-1199 (cve.mitre.org)
*) Cleanup of the PrintPath/PrintPathOS2 helper functions. Avoid
following the same idea as "MSVC vs WIN32". Additionally the src/os/emx/
directory was renamed to src/os/os2/ for consistency.
linking the DSOs, i.e. PIC libs and shared libs. Currently the rule is
*) Add correct `model' MIME types from RFC2077 to mime.types file.
*) Fixed examples in mod_rewrite.html document.
[Youichirou Koga <y-koga jp.FreeBSD.org>, Ralf S. Engelschall] PR#2756
[MATSUURA Takanori <t-matsuu protein.osaka-u.ac.jp>]
programs under Win32. [Marco De Michele <mdemichele tin.it>] PR#2483
*) Update the mod_rewrite.html document to correctly reflect the situation
Makefile.tmpl: The umask+cp approach didn't work as expected (especially
*) Fix `distclean' and `clean' targets in src/Makefile.tmpl to have same
src/helper/mkdir.sh script. [Ralf S. Engelschall]
`search' entries in /etc/resolv.conf.
INSTALL file because a lot of users don't read htdocs/manual/dso.html
(compilers complained) and the .so.V.R.P filename extension was adjusted
[Manoj Kasichainula <manojk raleigh.ibm.com>] PR#2355
*) Disable the incorrect entry for application/msword in the
*) Fix broken RANLIB handling in src/Configure (the entry from
src/Configuration.tmpl was ignored) and additionally force RANLIB to
[Steve VanDevender <stevev darkwing.uoregon.edu>, Lars Eilebrecht] PR#2613
*) Autogenerate some HAVE_XXXXX_H defines in conf_auto.h (determined via
TestCompile) instead of defining them manually in conf.h based on less
OS-type and/or OS-version identifiers to discover whether a system header
[Glen Parker <glenebob nwlink.com>] PR#2277
required by HTML 3.2 and later) to mod_mime_magic's conf/magic.
[Anna Shergold <anna inext.co.uk>]
[John Van Essen <jve gamers.org>] PR#2529
*) Add Dynamic Shared Object (DSO) support for SCO5 (OpenServer 5.0.x).
[Ronald Record <rr sco.com>] PR#2533
[Charles Levert <charles comm.polymtl.ca>] PR#2551
[Vadim Kostoglodoff <vadim olly.ru>] PR#2463
*) Fix the Guess-DSO-flags-from-Perl stuff in src/Configure: "perl" was
[Ben Laurie, Bill Stoddard <wgstodda us.ibm.com>] PR#2274
*) PORT: remove broken test for MAP_FILE in http_main.c.
[Wilfredo Sanchez <wsanchez apple.com>]
*) PORT: Change support/apachectl to use "kill -0 $pid" to test if the
but case-insensitive platforms). New #define for this added to conf.h
*) Enable DSO support for OpenBSD in general, not only for 2.x, because it
also works for OpenBSD 1.x. [Ralf S. Engelschall]
[Sam Kington <sam illuminated.co.uk>] PR#2443
reponse. [Ralf S. Engelschall, Charles Fu <ccwf bacchus.com>]
output of Awk. [Bill Houle <bhoule sandiegoca.ncr.com>] PR#2435
of a config.status script (as GNU Autoconf does) which remembers the used
*) Correct initialization of variable `allowed_globals' in http_main.c
[Justin Bradford <justin ukans.edu>] PR#2400
multipart/x-mixed-replace;boundary=ThisRandomString.
[Sean Boudreau <seanb qnx.com>] PR#2390
modules/xxx/Makefile's to avoid problems with SVR4 Make under "full-DSO"
[David MacKenzie <djm va.pubnix.com>] PR#2384
main server. [Christof Damian <damian mediaconsult.com>] PR#2090
[Klaus Weber <kweber chephren.germany.ncr.com>] PR#1973
<Directory /> section of the default access.conf-dist
[Dave Dykstra <dwd bell-labs.com>] PR#2320
*) Fix symbol export list (src/support/httpd.exp) after recent
[Jens-Uwe Mager <jum helios.de>]
solved by another helper script findprg.sh which searches for Perl and
*) Remove the system() call from htpasswd.c, which eliminates a system
[Rex Dieter <rdieter math.unl.edu>] PR#2293, 2316
O_NDELAY on various systems. [Dave Dykstra <dwd bell-labs.com>] PR#2313
*) PORT: helpers/GuessOS updates for various versions for NCR SVR4.
*) Fix recently introduced Win32 child spawning code in mod_rewrite.c which
[Dave Dykstra <dwd bell-labs.com>, Ralf S. Engelschall] PR#2319
configure and src/Configure depend on this.
*) Changes usage of perror/fprintf to stderr to more proper ap_log_error
*) Various OS/2 cleanups ["Brian Havard" <brianh kheldar.apana.org.au>]
*) PORT: QNX needed a #include <sys/mman.h>; and now it uses flock
[Rob Saccoccio <robs InfiniteTechnology.com>] PR#2295, 2296
[W G Stoddard <wgstodda us.ibm.com>]
[W G Stoddard <wgstodda us.ibm.com>] PR#2294
spawn_child was obsoleted and moved to compat.h
memory. [Rob Saccoccio <robs InfiniteTechnology.com>] PR#2252
*) Fix src/support/httpd.exp (DSO export file which is currently only
``RewriteRule ^myscript$ - [T=application/x-httpd-cgi]'' This was often
*) Fix discrepancy in proxy_ftp.c which was causing failures when
[Rick Ohnemus <rick ecompcon.com>]
*) Improve RFC1413 support. [Bob Beck <beck bofh.ucs.ualberta.ca>]
[Ben Laurie and Bill Stoddard <wgstodda us.ibm.com>] PR#1129, 1607
[Ernst Kloppenburg <kloppen isr.uni-stuttgart.de>] PR#2094
*) Support for the NCR MP/RAS 3.0
[John Withers <withers semi.kcsc.mwr.irs.gov>]
*) The LDFLAGS_SHLIB_EXPORT variable of src/Configuration[.tmpl] was
not retrieved in src/Configure and thus was not useable.
- SUBDIRS is now generated in src/Makefile only and not in
Makefile.config because it is a local define for this location.
- update the "depend" targets in Makefile.tmpl files to use $(OSDIR), too.
- replaced SHLIB_OBJS/SHLIBS_OBJ consistently with OBJS_PIC because OBJS
- replaced ugly xx-so.o/xx.so-o hack with a clean and consistent usage
of xxx.lo as GNU libtool does with its PIC objects
- reduce local complexity in modules Makefile.tmpl by moving the last
*) WIN32: Make Win32 work again after the /dev/null DoS fix.
*) When opening "configuration" files (like httpd.conf, htaccess
and htpasswd), Apache will not allow them to be non-/dev/null
necessary. Long-term fix is to either serialize the chdir/spawn combo
htdocs/manual/suexec.html document before using the suexec-related
and htdocs/manual/suexec.html documents.
UID/GID and safe PATH, too.
- overhauled mkshadow.sh script: now its more IFS-safe and approx. twice
*) Add a note to httpd.conf-dist that apache will on some systems fail
and not the original statically list from modules.c
confusion with the next point and reduces the Makefile.tmpl complexity
6. The modules.c generation was extended to now contain two
of loading/linking (we use load=link+load & link=activate instead of
*) Fix the generated mod_xxx.c from "apxs -g -f xxx" after the
*) Add a comment to mod_example.c showing the format of a FLAG command
places in the code (e.g. DATE_GMT). PR#1551
zone information in their tm struct. [Paul Eggert <eggert twinsun.com>]
*) get/set_module_config are trivial enough to be better off inline. Worth
*) Fix off-by-one error in ap_proxy_date_canon() in proxy_util.c
*) Fix debug log messages for BS2000/OSD: instead of logging the whole
[Michael Anderson's <mka redes.int.com.mx>]
*) Make sure the referer_log and agent_log entries in the default httpd.conf
*) WIN32: Make roots of filesystems (e.g. c:/) work. [Ben Laurie]
from mod_so.c to Configure because first it needs $PLAT etc. and second
[Jaromir Dolecek <dolecek ics.muni.cz>] PR#2165
[Jaromir Dolecek <dolecek ics.muni.cz>, Ralf S. Engelschall] PR#2158
AIX variants should work fine, too. Even AIX 3.x should work). This is
which we put into a os/unix/os-dso-aix.c file.
*) Fix two bugs in select() handling in http_main.c.
side-effect this reduces some subdir fiddling in configure+Makefile.tmpl.
"make root=/tmp/apache install" for rolling the package without bristling
*) Workaround braindead AWK's when generating ap_config.h: The split() and
*) Fix DEBUG_CGI situation in mod_cgi.c [David MacKenzie] PR#2114
*) Make sure that "make install" doesn't overwrite the `mime.types' and
*) PORT: Dynamic Shared Object (DSO) support for OpenBSD 2.x
variables) to avoid side-effects in "src/Configure" when the user
*) Provide backward compatibility from some old src/Configuration.tmpl
*) NeXT required strdup() in support/logresolve.c
[Francisco Tomei <fatomei sandburg.unm.edu>] PR#2082
*) PORT: Added HP-UX 11 patches [Jeff Earickson <jaearick colby.edu>]
ap_snprintf, and ap_psprintf). See include/ap.h for docs.
*) Because /usr/local/apache is the default prefix the ``configure
to `char *' under OSF1 and FreeBSD 2.x where it is defined this way
*) PORT: Make sure some AWK's don't fail in src/Configure with "string too
long" errors when generating the MODULES entry for src/Makefile
*) Make sure src/Configure doesn't complain about the old directory
/usr/local/etc/httpd/ when APACI is used. [Lars Eilebrecht]
*) Adding DSO support for the HP/UX platform by emulating the dlopen-style
interface via the similar but proprietary HP/UX shl_xxx-style system
APACI Makefile.tmpl "install" target more robust for sensible UnixWare
- Apache provided general functions (e.g., ap_cpystrn)
- Public API functions (e.g., palloc, bgets)
cross-object usage) but should be (e.g., new_connection)
For backward source compatibility a new header file named compat.h was
dummy.so file (containing dummy references to all global symbols) the
Placing the Apache core code itself into a DSO library named libhttpd.so.
where we perhaps exploit this libhttpd.so mechanism for providing nifty
inside the src subtree (i.e. for non-APACI users). Following GNU Makefile
[Todd Eigenschink <eigenstr mixi.net>] PR#2045
to the mak/dsp files. [Alexei Kosut]
*) Add documentation file and src/Configuration.tmpl entry for the
*) Now src/Configure uses a fallback strategy for the shared object support
and installation of the support tools from the src/support/ area.
dynamic shared object (DSO) mechanism [mod_so.c]. The trick here is that
Apache C header files (PREFIX/include) and the new APXS tool
(SBINDIR/apxs). The intend is to provide a handy tool for third-party
modules, from trivial ones (single mod_foo.c) to complex ones (like PHP3
*) Modify the log directives in httpd.conf-dist files to use CustomLog
script and a corresponding top-level "Makefile.tmpl" file. The goal is
the old src/Configure stuff in batch and additionally installs the
routines. Use this to replace http_bprintf.c. Add new routines
is necessary on at least Solaris where the /etc/rc?.d scripts
[Rein Tollevik <reint sys.sol.no>] PR#2009
[Rein Tollevik <reint sys.sol.no>] PR#2010
[Jürgen Keil <jk tools.de>] PR#2000
http://.../cgi-bin/...?http%3A%2F%2F... references) [Martin Kraemer]
[Tim Costello <tjcostel socs.uts.edu.au>] PR#1890
the mod_proxy.html and corrected the hyperlink to it in the
new_features_1.3.html document. [Ralf S. Engelschall] PR#1348
*) Fix a bug in the src/helpers/fp2rp script and make it a little bit
*) Add the new ApacheBench program "ab" to src/support/: This is derived
*) src/include/ap_config.h now wraps it's #define's with #ifndef/#endif's
*) [PORT] For A/UX change the OS-#define for -DAUX to -DAUX3.
the ugly export kludge, makes the one-liner file mod_mime.h obsolete, and
*) util.c cleanup and speedup. [Dean Gaudet]
[Dmitry Khrustalev <dima bog.msu.su>]
TZ variable. [Jay Soffian <jay cimedia.com>] PR#1888
[Siegmund Stirnweiss <siegst kat.ina.de>] PR#1900
[Tony Finch <fanf demon.net>] PR#1925
modules as shared objects. Especially Solaris 2.x, SunOS 4.1, IRIX and
*) The Configure script now generates src/include/ap_config.h which
[Joel Truher <truher wired.com>]
"http://host" url is treated as if a similar "Host:" header had been
supplied. This change was made to support future HTTP/1.x protocols
*) API: Cleanup of code in http_vhost.c, and remove vhost matching
[Chia-liang Kao <clkao cirx.org>] PR#1531
[Konstantin Morshnev <moko design.ru>] PR#1771
address. [Todd Eigenschink <eigenstr mixi.net>] PR#1885
*) API: A new source module main/util_uri.c; It contains a routine
user; /* user name, as in http://user:passwd@host:port/ */
password; /* password, as in http://user:passwd@host:port/ */
a username can contain when trying to expand it via /etc/passwd.
Jay Soffian <jay cimedia.com>] PR#1631
*) Hide Proxy-Authorization from CGI/SSI/etc just like Authorization is
<luomat peak.org>]
<ache nagual.pp.ru> and Jim] PR#1450
Alvaro Martinez Echevarria <alvaro lander.es>]
[Charles Fu <ccwf klab.caltech.edu>] PR#1847
directive. [Enrik Berkhan <enrik inka.de>] PR#1816
[Lauri Jesmin <jesmin ut.ee>] PR#1701
*) Source file dependencies in Makefile.tmpl files throughout the
htdocs/manual/known_client_problems.html are in the default
(like mod_dld for Win32). This replaces mod_dld.c. Use SharedModule
[Michael Douglass <mikedoug texas.net>, Dean Gaudet]
header files are in the src/include directory. The -Imain -Iap
and mod_rewrite) have not been moved to src/include; nor have
calls that use too small an initial guess, see alloc.c.
[Mark Andrew Heinrich <heinrich tinderbox.Stanford.EDU>]
because the key/value is a constant, or the value has been built
Note that it is easy to get code subtly wrong if you pass a key/value
safe thing to do is to pass key/values which are in the pool of
i.e. if the table is part of a subrequest, a value from the main
usage, enabled by defining POOL_DEBUG. See alloc.c for more details.
[Dmitry Khrustalev <dima bog.msu.su>, Dean Gaudet]
[Martin Kraemer, with code from Peter Wemm <peter zeus.dialix.oz.au>
*) API: "typedef array_header table" removed from alloc.h, folks should
HAVE_MMAP/SHMGET #defines strictly are informational that the
Unixware 1.x appears to have the same SIGHUP bug as solaris does with
[Tom Hughes <thh cyberscience.com>] PR#1082, PR#1282, PR#1499, PR#1553
*) PORT: A/UX can handle single-listen accepts without mutex
[Paul Eggert <eggert twinsun.com>] PR#1343
*) suexec errors now include the errno/description. [Marc Slemko] PR#1543
[Keith Severson <keith sssd.navy.mil>] PR#1613
[Keith Severson <keith sssd.navy.mil>] PR#1614
*) Some const declarations in mod_imap.c that were added for debugging
*) The src/main/*.h header files have had #ifndef wrappers added to
multiple paths (e.g., in .c files as well as other .h files).
src/ap/ap.h, to ease their use in non-httpd applications. [Ken Coar]
but before the header file contents. [John Van Essen <jve gamers.org>]
set with SetEnv/BrowserMatch and similar directives.
was found. Noticed by <robinton amtrash.comlink.de> (Soeren Ziehe)
[Soeren Ziehe <robinton amtrash.comlink.de>, Martin Kraemer]
(the Siemens BS2000/OSD family) in the POSIX subsystem
Located in libap.a. [Jim Jagielski]
[Stephen Scheck <sscheck infonex.net>, Ben Laurie] PR#1604
alloc.c (affects win32 only). [Ben Hyde]
[Ben Reser <breser regnow.com>] PR#1366
[Gregory A Lundberg <lundberg vr.net>]
server itself (like the src/support tools). [Ken Coar]
[Igor Tatarinov <tatarino prairie.NoDak.edu>]
It also wouldn't handle "AddIconByType (TXT,/icons/text.gif text/*"
htdocs/manual/misc/known_client_problems.html#257th-byte) can happen
[<malcolm mgdev.demon.co.uk>] PR#1378
set errno. [Igor Tatarinov <tatarino prairie.NoDak.edu>]
*) WIN32: Cure file leak in CGIs. [Peter Tillemans <pti net4all.be>] PR#1523
[Frank Faubert <frank sane.com>]
can be used by items in src/support among other things.
(e.g., <Directory>) where they're invalid. [Martin Kraemer]
for fgetc() and fgets() on SunOS 4.x. [Martin Kraemer, Ben Hyde]
read the file. [Ben Hyde <bhyde gensym.com>]
the display. [Ken Coar, suggested by Brian Tiemann <btman pacific.net>]
*) PORT: Update the LynxOS port. [Marius Groeger <mag sysgo.de>]
[David Chambers <davidc flosun.salk.edu>] PR#1294
[M.D.Parker] PR#1352
*) Inherit a bugfix to fnmatch.c from FreeBSD sources.
[Андрей Чернов <ache nagual.pp.ru>] PR#1311
sources as Unix now. [Brian Havard <brianh kheldar.apana.org.au>]
[Paul Eggert <eggert twinsun.com>] PR#1342
*) A mild SIGTERM/SIGALRM race condition was eliminated.
*) Warn user that default path has changed if /usr/local/etc/httpd
*) PORT: On AIX 1.x files can't be named '@', fix the proxy cache
[David Schuler <schuld btv.ibm.com>] PR#1317
Document this a bit more in src/PORTING. [Dean Gaudet] PR#467
*) WIN32: Make index.html and friends work under Win95. [Ben Laurie]
[John Line <jml4 cam.ac.uk>] PR#1321
*) Default pathname has been changed everywhere to /usr/local/apache
[Sameer <sameer c2.net>]
[David Bronder <David-Bronder uiowa.edu>] PR#849
[David Schuler <schuld btv.ibm.com>] PR#1267
[Philippe Vanhaesendonck <pvanhaes be.oracle.com>,
Omar Del Rio <al112263 academ01.lag.itesm.mx>] PR#482, 1246
[Chris Craft <ccraft cncc.cc.co.us>] PR#977
*) PORT: UnixWare 2.x requires -lgen for syslog.
[Hans Snijder <hs meganet.nl>] PR#1249
["Pavel Yakovlev (Paul McHacker)" <hac tomcat.olly.ru>]
*) New support tool: src/support/split-logfile, a sample Perl script which
*) Makefile.tmpl was not using $CFLAGS in the link phase.
*) Add debugging code to alloc.c. Defining ALLOC_DEBUG provides a
Purify. See main/alloc.c for more details. [Dean Gaudet]
be used for whatever reason is appropriate (i.e. format() warnings
gcc >= 2.7.x (so that we have fewer support issues with older
Also removed the auto-generated link to www.apache.org that was the
*) suexec.c wouldn't build without -DLOG_EXEC. [Jason A. Dour]
this is a bug. ["Paul B. Henson" <henson intranet.csupomona.edu>]
[Rick Franchuk <rickf transpect.net>] PR#1107, 987, 588
*) Fixed error in proxy_util.c when looping through multiple host IP
buffered writes -- that is, it will buffer up to PIPE_BUF (i.e. 4k)
*) API: New register_other_child() API (see http_main.h) which allows
*) API: New piped_log API (see http_log.h) which implements piped logs,
Some things (like RewriteMaps) were checked/performed even if they
*) Removal of mod_auth_msql.c from the distribution. There are many
http://modules.apache.org/ It would be nice to offer a generic
Makefile on the fly based on Makefile.tmpl and Configuration.
Encore's UMAX V: Arieh Markel <amarkel encore.com>
Acorn RISCiX: Stephen Borrill <sborrill xemplar.co.uk>
*) support/httpd_monitor is no longer distributed because the
the headers/contents of the request. It does not run during subrequests
USE_xxx_SERIALIZED_ACCEPT in conf.h. xxx is FCNTL for fcntl(),
- Linux 2.x uses flock instead of fcntl
- Solaris 2.x uses pthreads
*) PORT: The semantics of accept/select make it very desirable to use
Modules can be dropped into modules/extra, or in their own
modules/standard. All other source code is in main. OS-specific
match "/home/a/andrew/public_html", now it only matches things
[Dean Gaudet, Dave Hankins <dhankins sugarat.net>]
/dev/tty, etc.)
[Jason Venner <jason idiom.com>] PR#667
and cidr syntax (i.e. 10.1.0.0/16). PR#762
Apache would omit the chunk header/footer on the next block. Cleaned
e.g. when max_requests_per_child is reached, etc.
[Alexander L Jones <alex systems-options.co.uk>] PR#732
*) PORT: QNX mmap() support for faster/more reliable scoreboard handling.
[Igor N Kovalenko <infoh mail.wplus.net>] PR#683
setting. The define MAX_SPAWN_RATE can be used to raise/lower
in a language that by default does buffering (e.g. perl) this
*) PORT: Allow for use of n32bit libraries under IRIX 6.x
[derived from patch from Jeff Hayes <jhayes aw.sgi.com>]
*) PORT: Linux: Attempt to detect glibc based systems and include crypt.h
*) PORT: QNX doesn't have initgroups() which support/suexec.c uses.
[Igor N Kovalenko <infoh mail.wplus.net>]
[Kenichi Hori <ken d2.bs1.fc.nec.co.jp>] PR#815
rect /url.hrm 10 20 30 40
["Chris O'Byrne" <obyrne iol.ie>] PR#807
["Darren O'Shaughnessy" <darren aaii.oz.au>] PR#846
the output of mod_info. ["Lou D. Langholtz" <ldl usi.utah.edu>]
braindead SunOS 4.1.x, allow env variables to be set even on rules with
i.e. now mod_rewrite no longer has a shared copyright. Instead is is
See http_config.h for more details. [Dean Gaudet]
LoadModule/LoadFile directives. Note that module DLLs must be
Module autoindex_module mod_autoindex.o
*) popendir/pclosedir created to properly protect directory scanning.
["Lou D. Langholtz" <ldl usi.utah.edu>]
command. [Ian Kluft <ikluft cisco.com>]
*) Makefile.nt added - to build all the bits from the command line:
nmake -f Makefile.nt
httpd.h. [Dean Gaudet]
the SFIO library calls sfread/sfwrite if B_SFIO is defined at
work however.) [Alexander Spohr <aspohr netmatic.com>] PR#444
*) Turn off chunked encoding after sending terminating chunk/footer
[Stanley Gambarin <gambarin OpenMarket.com>]
[Ben Laurie and Ambarish Malpani <ambarish valicert.com>]
*) SECURITY: When a client connects to a particular port/addr, and
*) Support virtual hosts with wildcard port and/or multiple ports
properly. [Ed Korthof <ed organic.com>]
and mod_include.c. [Dean Gaudet]
[Mark Andrew Heinrich <heinrich tinderbox.Stanford.EDU>]
<sscheck infonex.net>, Ben Laurie] PR#1604
cases. [Ben Reser <breser regnow.com>] PR#1366
Also removed the auto-generated link to www.apache.org that was the
htdocs/manual/misc/known_client_problems.html#257th-byte) can happen
*) #ifdef wrap a few #defines in httpd.h to make life easier on
*) Fix MPE compilation error in mod_usertrack.c. [Mark Bixby]
should consider comparing against src/modules/standard/mod_include.c
Michal Zalewski <lcamtuf boss.staszic.waw.pl> for reporting
[Brian Slesinsky <bslesins wired.com>] PR#1139
[Jay Bloodworth <jay pathways.sde.state.sc.us>]
*) suexec.c wouldn't build without -DLOG_EXEC. [Jason A. Dour]
this is a bug. ["Paul B. Henson" <henson intranet.csupomona.edu>]
[Rick Franchuk <rickf transpect.net>] PR#1107
minus WIN32/NT stuff, but plus copyright removement.
[Kenichi Hori <ken d2.bs1.fc.nec.co.jp>] PR#815
an HTTP/0.9 server. [Kenichi Hori <ken d2.bs1.fc.nec.co.jp>] PR#813,814
[Skip Montanaro <skip calendar.com>, Marc Slemko] PR#797
under Solaris 2.x (up through 2.5.1). It has been fixed.
lockfile in any location. It previously defaulted to /usr/tmp/htlock.
*) Add a placeholder in modules/Makefile to avoid errors with certain
*) USE_FLOCK_SERIALIZED_ACCEPT is now default for FreeBSD, A/UX, and
redirect flag, e.g. R=permanent, the permanent status was lost.
[Lawrence Rosenman <ler lerctr.org>] PR#511
*) PORT: NonStop-UX [Joachim Schmitz <schmitz_joachim tandem.com>] PR#327
[David DeSimone <fox convex.com>] PR#399
["P. Alejandro Lopez-Valencia" <alejolo ideam.gov.co>] PR#388
*) PORT: Support for Maxion/OS SVR4.2 Real Time Unix. [no name given] PR#383
*) PORT: fix problem compiling http_bprintf.c with gcc under SCO
*) Fixed open timestamp fd in proxy_cache.c [Chuck Murcko]
change submitted by Jozsef Hollosi <hollosi sbcm.com>.
directive and the DEFAULT_TYPE symbol in httpd.h. Changed the value
of DEFAULT_TYPE to match the documented default (text/plain).
*) In mod_proxy.c, check return values for proxy_host2addr() when reading
the connection (e.g., when user presses Stop). Apache will now stop
*) Rearrange Configuration.tmpl so that mod_rewrite has higher priority
htdocs/manual/stopping.html for details on stopping and
*) The default handler now logs invalid methods or URIs (i.e. PUT on an
buffer or write inside buff.c or fread'ing from a CGI's output,
*) Use /bin/sh5 on ULTRIX. [P. Alejandro Lopez-Valencia] PR#369
*) Add UnixWare compile/install instructions. [Chuck Murcko]
*) Add macro for memmove to conf.h for SUNOS4. [Marc Slemko]
*) More signed/unsigned port fixes. [Dean Gaudet]
*) suexec.c doesn't close the log file, allowing CGIs to continue writing
*) Improved generation of modules/Makefile to be more generic for
*) Fixed overlaying of request/sub-request notes and headers in
when nalloc==0. [Kai Risku <krisku tf.hut.fi> and Roy Fielding]
*) changed status check mask in proxy_http.c from "HTTP/#.# ### *" to
- Changed send_dir() to remove user/passwd from displayed URL.
[Marc Slemko, reported by Onno Witvliet <onno tc.hsa.nl>]
select/accept and keep-alive requests, fixed several bugs regarding
[Ben Laurie, reported by <geddis tesserae.com>]
*) Tweak byteserving code (e.g. serving PDF files) to work around
Emit Content-Length header when sending multipart/byteranges.
*) Port to HI-UX/WE2. [Nick Maclaren]
[Mark Bixby <markb cccd.edu>]
regex/regcomp.c since that file also used a NEXT define.
*) Portability Fix: NeXT lacks unistd.h so we wrap it's inclusion
*) Remove mod_fastcgi.c from the distribution. This module appears
continue to be easily available at http://www.fastcgi.com/
*) Fixed bug in modules/Makefile that wouldn't allow building in more
- execution restricted to UID/GID > 100
*) Replace references to make in Makefile.tmpl with $(MAKE).
*) Add ProxyBlock directive w/IP address caching. Add IP address
[<mgyger itr.ch>, Adrian Filipi-Martin]
[Roy Fielding, after useful PR from <adrian virginia.edu>]
*) Remove requirement for ResourceConfig/AccessConfig if not using
2. initgroups() on Linux 2.0.x clobbers gr->grid.
*) Reset timeout while reading via get_client_block() in mod_cgi.c
*) Add the ability to pass different Makefile.tmpl files to Configure
*) proxy_http.c bugfixes: [Chuck Murcko]
1) fixes possible NULL pointer reference w/NoCache
*) mod_include.c bugfixes:
3) Patch to fix compiler warnings [<perrot lal.in2p3.fr>]
[Ben Yoshino <ben wiliki.eng.hawaii.edu>]
*) Added definitions for S_IWGRP and S_IWOTH to conf.h [Ben Laurie]
http_protocol.c [Roy Fielding]
*) Replaced use of index() in mod_expires.c with more appropriate
*) In helpers/CutRule, replaced "cut" invocation with "awk" invocation
*) Updated helpers/GuessOS for ...
SCO UnixWare 2.1.1 (requires a separate set of #defines in conf.h)
and fixed something in helpers/PrintPath [Ben Laurie]
*) Not listed. See <http://www.apache.org/docs/new_features_1_2.html>
*) mod_env now turned on by default in Configuration.tmpl.
c) Leading colons were stripped from passwords [<osm interguide.com>]
d) Another fix to multi-method Limit problem [<jk tools.de>]
b) truncated hostnames/ip address in the logs
*) Not listed. See <http://www.apache.org/docs/new_features_1_1.html>
*) Internal redirects which occur in mod_dir.c now preserve the
*) Fix for POSIX compliance in waiting for processes in alloc.c.
which works similar to PidFile (in httpd.conf) [Rob Hartill]
*) Include sys/resource.h in the correct place for SunOS4 [Sameer Parekh]
*) the pstrcat call in mod_cookies.c didn't have an ending NULL,
*) Add strerror function to util.c for SunOS4 [Randy Terbush]
*) patch to get Apache compiled on UnixWare 2.x, recommended as
a temporary measure, pending rewrite of rfc931.c. [Chuck Murcko]
*) past changes to http_config.c to only use the
*) Remove uses of MAX_STRING_LEN/HUGE_STRING_LEN from several routines.
and the server provider uses relative links; as file.html
*) Not listed. See <http://www.apache.org/docs/new_features_1_0.html>
*) Fixed potential FILE* leak in http_main.c [Ben Laurie]
*) Eliminated some bogus Linux-only #defines in conf.h [Aram Mirzadeh]
*) Nuked bogus #define in httpd.h [David Robinson]
*) gcc -Wall no longer complains about an unused variable when util.c
*) Rationalize handling of BSD in conf.h and elsewhere [Randy Terbush,
*) Suppress -Wall warning by casting const away in util.c [Aram Mirzadeh]
subprocesses, including the SIGTERM/pause/SIGKILL routine, until
causing certain extremely marginal cases (e.g., ScriptAlias of a
*particular* index.html file) to fail. [David Robinson]
*) Cleaned up compiler warning from mod_access.c [Robert Thau]
*) Cleaned up comments in mod_cgi.c [Robert Thau]
"/path/to/some/link/" follows the link. [Thau, Fielding]
*) Doesn't reset DirectoryIndex to 'index.html' when
*) Clarified init code and nuked bogus warning in mod_access.c
*) Corrected several directives in sample srm.conf
*) Fixed ScriptAlias/Alias interaction by moving ScriptAlias handling to
mod_alias.c, merging it almost completely with handling of Alias, and
using a special file created for the purpose in /usr/tmp, and
which try to print out the last-modified date). [Eric Hagberg/Robert
*) <!--exec cgi="/some/uri/here"--> always treats the item named by the
*) POST to CGI works on A/UX [Jim Jagielski]
it seems to work well enough without it (even in a 10 hits/sec
workout), and the overhead for the locking under A/UX is
*) Fixed portability problems with mod_cookies.c [Cliff Skolnick]
*) Further de-Berklize mod_cookies.c; change the bogus #include. [Brian
Behlendorf/Eric Hagberg]
*) More improvements to default Configuration for A/UX [Jim Jagielski]
*) SunOS lib-function prototypes in conf.h conditionalized on __GNUC__,
*) Scoreboard file (/tmp/htstatus.*) no longer publically writable.
properly. (One-line fix to http_protocol.c).
*) Corrected cgi-src/Makefile entry for new imagemap script. [Alexei Kosut]
*) Nuked Shambhala name from src/README; had already cleaned it out
*) Set config file locations properly if not set in httpd.conf
*) Fixed mod_imap.c --- relative paths with base_uri referer don't
be nice if mod_dir.c was robust enough to handle that, but for now,
/tmp/htstatus.*, on which each process has an independent file
*) Moved FCNTL_SERIALIZED_ACCEPT defines into conf.h (that's what
*) Incidental code cleanups in http_main.c --- stop dragging
*) Fixed auth_name-related typos in http_core.c [Brian Behlendorf]
Also, fixed auth typo in http_protocol.c unmasked by this fix.
*) Reordered modules in modules.c so that Redirect takes priority
the same SIGTERM/pause/SIGKILL routine used to ding an errant CGI
*) Fixed silly typo in http_main.c which was suddenly fatal in HP-UX.
*) mod_core.c --- default_type returns DEFAULT_TYPE (the compile-time
memory area every time). Fix is in mod_dir.c. [Paul Sutton]
*) Changes to http_main.c --- root server no longer plays silly
*) mod_dir.c bug fixes: ReadmeName and HeaderName
*) http_request.c now calls unescape_url() more places where it
*) Generalized cleanup interface in alloc.c --- any function can be
registered with alloc.c as a cleanup for a resource pool;
*) More changes in alloc.c --- new cleanup_for_exec() function,
registered with the alloc.c machinery before the server exec()s a
*) Fixed basic thinkos in mod_dbm_auth.c [rst, reported by Mark Cox]
in alloc.c [rst]