Cross Reference: /httpd/CHANGES

	CHANGES revision 20eead0b01d51fce0cc17d04b8f98ec38eac68ae
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin                                                         -*- coding: utf-8 -*-
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrinChanges with Apache 2.5.0
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_proxy: Add ability to configure the sticky session separator.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     PR 53893. [<inu inusasha de>, Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_proxy_ftp: Fix segfaults on IPv4 requests to hosts with DNS AAAA records.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     PR 40841. [Andrew Rucker Jones <arjones simultan dyndns org>,
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     <ast domdv de>, Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) ap_expr: Add req_novary function that allows HTTP header lookups
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     without adding the name to the Vary header. [Stefan Fritsch]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_ssl: Change default for SSLCompression to off, as compression
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     causes security issues in most setups. (The so called "CRIME" attack).
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Stefan Fritsch]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) syslog logging: Remove stray ", referer" at the end of some messages.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) configure: Fix processing of --disable-FEATURE for various features.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) "Iterate" directives: Report an error if no arguments are provided.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) htpasswd, htdbm: Optionally read passwords from stdin, as more
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     secure alternative to -b.  PR 40243. [Adomas Paltanavicius <adomas
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     paltanavicius gmail com>, Stefan Fritsch]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) htpasswd, htdbm: Add support for bcrypt algorithm (requires
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     apr-util 1.5 or higher). PR 49288. [Stefan Fritsch]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) htpasswd, htdbm: Put full 48bit of entropy into salt, improve
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     error handling. Add some of htpasswd's improvements to htdbm,
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     e.g. warn if password is truncated by crypt(). [Stefan Fritsch]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     to more accurately report the negotiated protocol. PR 53916.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_systemd: New module, for integration with systemd on Linux.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Jan Kaluza <jkaluza redhat.com>]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) core: ErrorDocument now works for requests without a Host header.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     PR 48357.  [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) --with-module: Fix failure to integrate them into some existing
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     module directories.  PR 40097.  [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_headers: New params: %l for load averages, %i for an
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     idle percentage rating of httpd, and %b for a busy percentage
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     rating. [Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) core: New functions to obtain load parameters: ap_get_sload()
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     and ap_get_loadavg(). [Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_cache_socache: New cache implementation backed by mod_socache
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     that replaces mod_mem_cache removed from httpd v2.2. [Graham
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     Leggett]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_auth_form: Support the expr parser in the
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     AuthFormLogoutLocation directives. [Graham Leggett]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     to be used without patches to httpd core.  [Jeff Trawick]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_proxy: Allow for persistence of local changes (via the
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     balancer-manager) between graceful and normal restarts.
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     [Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_slotmem: New provider function, fgrab(), which forces an
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     allocation of a slot. [Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin  *) mod_proxy_balancer: The nonce is only derived from the UUID iff
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin     not set via the 'nonce' balancer param. [Jim Jagielski]
b45c2b86612fd10c2b08965bb99e66a3c0e43480minfrin
  *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
     filters in Lua [Daniel Gruno]

  *) core: Apply length limit when logging Status header values.
     [Jeff Trawick, Chris Darroch]

  *) mod_ssl: Match wildcard SSL certificate names in proxy mode.
     PR 53006.  [Joe Orton]

  *) WinNT MPM: Store pid and generation for each thread in scoreboard
     to allow tracking of threads from exiting children via mod_status
     or other such mechanisms.  [Jeff Trawick]

  *) mod_ssl: Catch missing or mismatched client cert/key pairs with
     SSLProxyMachineCertificateFile/Path directives.  PR 52212.
     [Keith Burdis <keith burdis.org>, Joe Orton]

  *) mod_lua: Allow scripts handled by the lua-script handler to return
     a status code to the client (such as a 302 or a 500) [Daniel Gruno]

  *) mod_proxy_ajp: Fix crash in packet dump code when logging
     with LogLevel trace7 or trace8.  PR 53730.  [Rainer Jung]

  *) mod_cache: Wrong content type and character set when
     mod_cache serves stale content because of a proxy error.
     PR 53539.  [Rainer Jung, Ruediger Pluem]

  *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
     rather than throwing an internal server error. [Daniel Gruno]

  *) mod_lua: Add functions r:flush and r:sendfile as well as additional
     request information to the request_rec structure. [Daniel Gruno]

  *) mod_lua: Add a server scope for Lua states, which creates a pool of
     states with managable minimum and maximum size. [Daniel Gruno]

  *) core: Add post_perdir_config hook.
     [Steinar Gunderson <sgunderson bigfoot.com>]

  *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
     URIs to Lua scripts and functions using regular expressions.
     [Daniel Gruno]

  *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
     caching of lua scripts. [Daniel Gruno]

  *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
     - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
     - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
       mutexes (Mutex)
     - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
     - mod_ldap: shared memory cache
     - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
     [Jeff Trawick]

  *) mod_ssl: Add RFC 5878 support. [Ben Laurie]

  *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
     for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
     Christophe Renou, Peter Sylvester]

  *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory.  Make
     ap_pregcomp() abort if out of memory. This raises the minimum PCRE
     requirement to version 6.0. PR 53284. [Stefan Fritsch]

  *) suexec: Add --enable-suexec-capabilites support on Linux, to use
     setuid/setgid capability bits rather than a setuid root binary.
     [Joe Orton]

  *) suexec: Add support for logging to syslog as an alternative to logging
     to a file; configure --without-suexec-logfile --with-suexec-syslog.
     [Joe Orton]

  *) mod_ssl: Add support for TLS Next Protocol Negotiation.  PR 52210.
     [Matthew Steele <mdsteele google.com>]

  *) various modules, rotatelogs: Replace use of apr_file_write() with
     apr_file_write_full() to prevent incomplete writes. PR 53131.
     [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]

  *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
     be compiled by the build compiler instead of the host compiler.
     Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
     PR 51257. [Guenter Knauf]

  *) core: In maintainer mode, replace apr_palloc with a version that
     initializes the allocated memory with non-zero values, except if
     AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]

  *) mod_policy: Add a new testing module to help server administrators
     enforce a configurable level of protocol compliance on their
     servers and application servers behind theirs. [Graham Leggett]

  *) mod_firehose: Add a new debugging module able to record traffic
     passing through the server in such a way that connections and/or
     requests be reconstructed and replayed. [Graham Leggett]

  *) mod_noloris

  *) APREQ

  *) Simple MPM

  *) mod_serf

  [Apache 2.5.0-dev includes those bug fixes and changes with the
   Apache 2.4.xx tree as documented below, except as noted.]

Changes with Apache 2.4.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup

Changes with Apache 2.2.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup

Changes with Apache 2.0.x and later:

  *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup