CHANGES revision 33d9be77cc6f5fc8734e9c1f526b82d359955152
f743002678eb67b99bbc29fee116b65d9530fec0wrowe -*- coding: utf-8 -*-
efe780dcf13b2b95effabf897d694d8f23feac74trawickChanges with Apache 2.3.3
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh *) SECURITY: CVE-2009-1191 (cve.mitre.org)
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh mod_proxy_ajp: Avoid delivering content from a previous request which
2021e9833981f994f862e7157cb4b96cad797362trawick failed to send a request body. PR 46949 [Ruediger Pluem]
2021e9833981f994f862e7157cb4b96cad797362trawick *) mod_rewrite: Remove locking for writing to the rewritelog.
efe780dcf13b2b95effabf897d694d8f23feac74trawick PR 46942 [Dan Poirier <poirier pobox.com>]
cc5a4a08dc9783fcbc52ce86f11e01c281a43810minfrin *) mod_alias: check sanity in Redirect arguments.
aba55cd5d565f6f00a3d0e17c5724fdd3a50827ftrawick PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
aba55cd5d565f6f00a3d0e17c5724fdd3a50827ftrawick *) mod_proxy_http: fix Host: header for literal IPv6 addresses.
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick *) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
3ccfc257819b3bad063cd3ac9dd1670d5d2ae4d2kbrand defined session identifiers encoded in the URL when caching.
3ccfc257819b3bad063cd3ac9dd1670d5d2ae4d2kbrand [Ruediger Pluem]
3ccfc257819b3bad063cd3ac9dd1670d5d2ae4d2kbrand *) mod_rewrite: Fix the error string returned by RewriteRule.
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener argument of RewriteRule was not started with "[" or not ended with "]".
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza *) Windows: Fix usage message.
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza [Rainer Jung]
56589be3d7a3e9343370df240010c6928cc78b39jkaluza *) apachectl: When passing through arguments to httpd in
56589be3d7a3e9343370df240010c6928cc78b39jkaluza non-SysV mode, use the "$@" syntax to preserve arguments.
56589be3d7a3e9343370df240010c6928cc78b39jkaluza [Eric Covener]
8c4967445b49a1612b3f98c1dada65e597ecfe26trawick *) mod_dbd: add DBDInitSQL directive to enable SQL statements to
8c4967445b49a1612b3f98c1dada65e597ecfe26trawick be run when a connection is opened. PR 46827
61fefed8ce5211c31b44f3a38a6e76ca055e5780trawick [Marko Kevac <mkevac gmail.com>]
61fefed8ce5211c31b44f3a38a6e76ca055e5780trawick *) mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).
61fefed8ce5211c31b44f3a38a6e76ca055e5780trawick PR 47037. [Jeff Trawick]
6001d914962deabb83a46251001612e969bdf67ajim *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
6001d914962deabb83a46251001612e969bdf67ajim protocol. [Mladen Turk]
c4e8006db0cf457c68876d7d4c30dcc451d8cba7jkaluza *) mod_proxy_ajp: Forward remote port information by default.
c4e8006db0cf457c68876d7d4c30dcc451d8cba7jkaluza [Rainer Jung]
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener *) Allow MPMs to be loaded dynamically, as with most other modules. This
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener required changes to the MPM interfaces. Removed: mpm.h, mpm_default.h
652bacc79dd7f980249784cc8c4838e8f1de7e8acovener (as an installed header), APACHE_MPM_DIR, MPM_NAME, ap_threads_per_child,
f4db898517ccc6ef1a403630de56918286d3a47eminfrin ap_max_daemons_limit, ap_my_generation, etc. ap_mpm_query() can't be
f4db898517ccc6ef1a403630de56918286d3a47eminfrin called until after the register-hooks phase. [Jeff Trawick]
28a723b775c7666281298eab813c63ac42270f95humbedooh *) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
28a723b775c7666281298eab813c63ac42270f95humbedooh to enable stricter checking of remote server certificates.
28a723b775c7666281298eab813c63ac42270f95humbedooh [Ruediger Pluem]
067698ad30941e38ef5d7f95f1c2736c2ebc5cb9humbedooh *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
067698ad30941e38ef5d7f95f1c2736c2ebc5cb9humbedooh returns EINPROGRESS and a subsequent poll() returns only POLLERR.
7a437ce535a5fac890296402ba483c2f41bb6500trawick Observed on HP-UX. [Eric Covener]
7a437ce535a5fac890296402ba483c2f41bb6500trawick *) Remove broken support for BeOS, OS/2, TPF, and even older platforms such
d8a6de5eec06d4136839c8f7a56a6ab5acd2d3behumbedooh as A/UX, Next, and Tandem. [Jeff Trawick]
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc *) mod_proxy_ftp: Add ProxyFtpListOnWildcard directive to allow files with
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc globbing characters to be retrieved instead of converted into a
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc directory listing. PR 46789 [Dan Poirier <poirier pobox.com>]
921d32d80d8271da08f12fc374a69cb36d1d63b3covener *) Provide ap_retained_data_create()/ap_retained_data_get() for preservation
921d32d80d8271da08f12fc374a69cb36d1d63b3covener of module state across unload/load. [Jeff Trawick]
3e097af23e40c45aa32602545155f0964ab5c69dcovener *) mod_substitute: Fix a memory leak. PR 44948
3e097af23e40c45aa32602545155f0964ab5c69dcovener [Dan Poirier <poirier pobox.com>]
faea99bb676ec50ece38da6b1879aa37546483a2covenerChanges with Apache 2.3.2
faea99bb676ec50ece38da6b1879aa37546483a2covener *) mod_mime_magic: Fix detection of compressed content. [Rainer Jung]
faea99bb676ec50ece38da6b1879aa37546483a2covener *) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
344f755169e100ea8ce51e847a0bf30a13b46917covener HTML injections and HTTP response splitting. PR 46837.
344f755169e100ea8ce51e847a0bf30a13b46917covener [Geoff Keating <geoffk apple.com>]
fcd5c4e9e126e867eb270ed2d4138348cb1e46e5trawick *) mod_ssl: add support for type-safe STACK constructs in OpenSSL
fcd5c4e9e126e867eb270ed2d4138348cb1e46e5trawick development HEAD. PR 45521. [Kaspar Brand, Sander Temme]
50cfe8bbbaf4279375802531268e2bf0155215fetrawick *) ab: Fix maintenance of the pollset to resolve EALREADY errors
50cfe8bbbaf4279375802531268e2bf0155215fetrawick with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).
50cfe8bbbaf4279375802531268e2bf0155215fetrawick PR 44584. Use APR_POLLSET_NOCOPY for better performance with some
50cfe8bbbaf4279375802531268e2bf0155215fetrawick pollset implementations. [Jeff Trawick]
5cb0075c38fc868730c4981e346845dad6c7ea58chrisd *) mod_disk_cache: The module now turns off sendfile support if
5cb0075c38fc868730c4981e346845dad6c7ea58chrisd 'EnableSendfile off' is defined globally. [Lars Eilebrecht]
ffaa9771884a8664f0e6267efbe9d26b40000461trawick *) mod_deflate: Adjust content metadata before bailing out on 304
ffaa9771884a8664f0e6267efbe9d26b40000461trawick responses so that the metadata does not differ from 200 response.
ffaa9771884a8664f0e6267efbe9d26b40000461trawick [Roy T. Fielding]
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick *) mod_deflate: Fix creation of invalid Etag headers. We now make sure
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick that the Etag value is properly quoted when adding the gzip marker.
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick PR 39727, 45023. [Lars Eilebrecht, Roy T. Fielding]
4d12805e6c18253040223ea637acd6b3b3c18f60jorton *) Added 20x22 icons for ODF, SVG, and XML documents. PR 37185.
4d12805e6c18253040223ea637acd6b3b3c18f60jorton [Peter Harlow]
4d12805e6c18253040223ea637acd6b3b3c18f60jorton *) Disabled DefaultType directive and removed ap_default_type()
e5d909f2b06bd880fb3675cd49363df981caa631trawick from core. We now exclude Content-Type from responses for which
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener a media type has not been configured via mime.types, AddType,
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener ForceType, or some other mechanism. PR 13986. [Roy T. Fielding]
cb666b29f81df1d11d65002250153353568021fccovener *) mod_rewrite: Add IPV6 variable to RewriteCond
cb666b29f81df1d11d65002250153353568021fccovener [Ryan Phillips <ryan-apache trolocsis.com>]
6a80c3c6f4b8ea7ba5e89402b8b779b09ce020e0covener *) core: Enhance KeepAliveTimeout to support a value in milliseconds.
1c2cab00d988fc48cbe59032cf76cc0bab20d6f7covener PR 46275. [Takashi Sato]
75a230a728338d84dcfe81edd375352f34de22d0covener *) rotatelogs: Allow size units B, K, M, G and combination of
75a230a728338d84dcfe81edd375352f34de22d0covener time and size based rotation. [Rainer Jung]
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener *) rotatelogs: Add flag for verbose (debug) output. [Rainer Jung]
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener *) mod_ssl: Fix merging of SSLRenegBufferSize directive. PR 46508
63a5ea80bddcc84a462e40f402b4f330e0e05411covener [<tlhackque yahoo.com>]
63a5ea80bddcc84a462e40f402b4f330e0e05411covener *) core: Translate the the status line to ASCII on EBCDIC platforms in
63a5ea80bddcc84a462e40f402b4f330e0e05411covener ap_send_interim_response() and for locally generated "100 Continue"
986f3ea2c314d4d4b3b937149853a0f23f6119aaminfrin responses. [Eric Covener]
986f3ea2c314d4d4b3b937149853a0f23f6119aaminfrin *) prefork: Fix child process hang during graceful restart/stop in
65a4e663b82f8bce28ac22ab2edfd7502de36998sf configurations with multiple listening sockets. PR 42829. [Joe Orton,
65a4e663b82f8bce28ac22ab2edfd7502de36998sf Jeff Trawick]
65a4e663b82f8bce28ac22ab2edfd7502de36998sf *) mod_session_crypto: Ensure that SessionCryptoDriver can only be
c7de1955eb0eaeabf7042902476397692672d549sf set in the global scope. [Graham Leggett]
509622419be000045d461ef38fb97df778fdf81djailletc *) mod_ext_filter: We need to detect failure to startup the filter
509622419be000045d461ef38fb97df778fdf81djailletc program (a mangled response is not acceptable). Fix to detect
509622419be000045d461ef38fb97df778fdf81djailletc failure, and offer configuration option either to abort or
0b9de55d178312ec929dbe417dd61199b269991djailletc to remove the filter and continue.
0b9de55d178312ec929dbe417dd61199b269991djailletc PR 41120 [Nick Kew]
0b9de55d178312ec929dbe417dd61199b269991djailletc *) mod_session_crypto: Rewrite the session_crypto module against the
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin apr_crypto API. [Graham Leggett]
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin *) mod_auth_form: Fix a pool lifetime issue, don't remove the subrequest
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin until the main request is cleaned up. [Graham Leggett]
a511a29faf2ff7ead3b67680154a624effb31aafminfrinChanges with Apache 2.3.1
a511a29faf2ff7ead3b67680154a624effb31aafminfrin *) ap_slotmem: Add in new slot-based memory access API impl., including
a511a29faf2ff7ead3b67680154a624effb31aafminfrin 2 providers (mod_sharedmem and mod_plainmem) [Jim Jagielski,
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin Jean-Frederic Clere, Brian Akins <brian.akins turner.com>]
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin *) mod_include: support generating non-ASCII characters as entities in SSI
deec48c67d4786bc77112ffbf3a4e70b931097edminfrin PR 25202 [Nick Kew]
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin *) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin PR 25202 [Nick Kew]
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf *) mod_rewrite: fix "B" flag breakage by reverting r5589343
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
4c02bab56a528a180bbe394d8b6e6fd9c1a3ac1esf *) CGI: return 504 (Gateway timeout) rather than 500 when a script
2c487ac43b583db869e743772a7a10b278aa2bcfminfrin times out before returning status line/headers.
684e0cfc200f66287a93bbd1708d1dd8a92a7eefcovener PR 42190 [Nick Kew]
5c43d2fb853f84497b5ece2d414ef9484aa87e5fsf *) mod_cgid: fix segfault problem on solaris.
05a5a9c3e16f21566e1b61f4bd68025ce1b741ccjoes PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) mod_proxy_scgi: Added. [André Malo]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) mod_cache: Introduce 'no-cache' per-request environment variable
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq to prevent the saving of an otherwise cacheable response.
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq [Eric Covener]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq way that per-directory rewrites append the previous notion of PATH_INFO
413ee814748f37be168ff12407fa6dba0ceeabe6trawick to each substitution before evaluating subsequent rules.
c12917da693bae4028a1d5a5e8224bceed8c739dsf PR 38642 [Eric Covener]
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf *) mod_cgid: Do not add an empty argument when calling the CGI script.
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf PR 46380 [Ruediger Pluem]
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf *) scoreboard: Remove unused sb_type from process_score.
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf [Torsten Foertsch <torsten.foertsch gmx.net>, Chris Darroch]
d7ffd2da16d58b1a0de212e4d56f7aebb72bef26sf *) mod_ssl: Add SSLRenegBufferSize directive to allow changing the
d7ffd2da16d58b1a0de212e4d56f7aebb72bef26sf size of the buffer used for the request-body where necessary
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf during a per-dir renegotiation. PR 39243. [Joe Orton]
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf *) mod_proxy_fdpass: New module to pass a client connection over to a separate
9811aed12bbc71783d2e544ccb5fecd193843eadsf process that is reading from a unix daemon socket.
9811aed12bbc71783d2e544ccb5fecd193843eadsf *) mod_ssl: Improve environment variable extraction to be more
1366443dc565c33e7b449ae428bbfc4c86f33935drh efficient and to correctly handle DNs with duplicate tags.
1366443dc565c33e7b449ae428bbfc4c86f33935drh PR 45975. [Joe Orton]
88fac54d9d64f85bbdab5d7010816f4377f95bd7rjung *) Remove the obsolete serial attribute from the RPM spec file. Compile
bd3f5647b96d378d9c75c954e3f13582af32c643sf against the external pcre. Add missing binaries fcgistarter, and
bd3f5647b96d378d9c75c954e3f13582af32c643sf mod_socache* and mod_session*. [Graham Leggett]
bd3f5647b96d378d9c75c954e3f13582af32c643sfChanges with Apache 2.3.0
2a7beea91d46beb41f043a84eaad060047ee04aafabien *) mod_ratelimit: New module to do bandwidth rate limiting. [Paul Querna]
2a7beea91d46beb41f043a84eaad060047ee04aafabien *) Remove X-Pad header which was added as a work around to a bug in
2a7beea91d46beb41f043a84eaad060047ee04aafabien Netscape 2.x to 4.0b2. [Takashi Sato <takashi lans-tv.com>]
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csf *) Add DTrace Statically Defined Tracing (SDT) probes.
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csf [Theo Schlossnagle <jesus omniti.com>, Paul Querna]
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf *) mod_proxy_balancer: Move all load balancing implementations
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf as individual, self-contained mod_proxy submodules under
f6b9c755a0b793e8a3a3aebd327ca20a86478117sf modules/proxy/balancers [Jim Jagielski]
f6b9c755a0b793e8a3a3aebd327ca20a86478117sf *) Rename APIs to include ap_ prefix:
132ee6ac1c26d6e8953836316ba50734eefab47bsf find_child_by_pid -> ap_find_child_by_pid
132ee6ac1c26d6e8953836316ba50734eefab47bsf suck_in_APR -> ap_suck_in_APR
132ee6ac1c26d6e8953836316ba50734eefab47bsf sys_privileges_handlers -> ap_sys_privileges_handlers
85eacfc96a04547ef25aabbc06440039715084c2jorton unixd_accept -> ap_unixd_accept
85eacfc96a04547ef25aabbc06440039715084c2jorton unixd_config -> ap_unixd_config
85eacfc96a04547ef25aabbc06440039715084c2jorton unixd_killpg -> ap_unixd_killpg
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick unixd_set_global_mutex_perms -> ap_unixd_set_global_mutex_perms
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick unixd_set_proc_mutex_perms -> ap_unixd_set_proc_mutex_perms
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick unixd_set_rlimit -> ap_unixd_set_rlimit
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick [Paul Querna]
79c5787b92ac5f0e1cc82393816c77a006399316trawick *) core: When the ap_http_header_filter processes an error bucket, cleanup
79c5787b92ac5f0e1cc82393816c77a006399316trawick the passed brigade before returning AP_FILTER_ERROR down the filter
79c5787b92ac5f0e1cc82393816c77a006399316trawick chain. This unambiguously ensures the same error bucket isn't revisited
c967bf3bc89e8aa60dbd30d9da388e448ddc1cc4trawick [Ruediger Pluem]
79c5787b92ac5f0e1cc82393816c77a006399316trawick *) mod_lbmethod_heartbeat: New module to load balance mod_proxy workers
79c5787b92ac5f0e1cc82393816c77a006399316trawick based on heartbeats. [Paul Querna]
79c5787b92ac5f0e1cc82393816c77a006399316trawick *) mod_heartmonitor: New module to collect heartbeats, and write out a file
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton so that other modules can load balance traffic as needed. [Paul Querna]
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton *) mod_heartbeat: New module to generate multicast heartbeats to know if a
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton server is online. [Paul Querna]
536e48c08d674acac5d44929318f2ad928edc361jorton *) core: Error responses set by filters were being coerced into 500 errors,
e81785da447b469da66f218b3f0244aab507958djorton sometimes appended to the original error response. Log entry of:
e81785da447b469da66f218b3f0244aab507958djorton 'Handler for (null) returned invalid result code -3'
3e4e54d4e3fc0123c63d57aa84ac7ad7a8c73ff8jorton [Eric Covener]
3e4e54d4e3fc0123c63d57aa84ac7ad7a8c73ff8jorton *) mod_buffer: Honour the flush bucket and flush the buffer in the
53e9b27aba029b18be814df40bcf6f0428771d1efuankg input filter. Make sure that metadata buckets are written to
53e9b27aba029b18be814df40bcf6f0428771d1efuankg the buffer, not to the final brigade. [Graham Leggett]
53e9b27aba029b18be814df40bcf6f0428771d1efuankg *) mod_buffer: Optimise the buffering of heap buckets when the heap
53e9b27aba029b18be814df40bcf6f0428771d1efuankg buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,
6bb524f1895f30265a1431afc460977d391cb36bsf Ruediger Pluem]
ca61ccd0c306c2c72df153688ba1b49f3eceed80sf *) mod_buffer: Optional support for buffering of the input and output
6bb524f1895f30265a1431afc460977d391cb36bsf filter stacks. Can collapse many small buckets into fewer larger
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin buckets, and prevents excessively small chunks being sent over
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin the wire. [Graham Leggett]
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin *) mod_privileges: new module to make httpd on Solaris privileges-aware
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin and to enable different virtualhosts to run with different
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin privileges and Unix user/group IDs [Nick Kew]
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin *) mod_mem_cache: this module has been removed. [William Rowe]
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung *) authn/z: Remove mod_authn_default and mod_authz_default.
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung [Chris Darroch]
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung *) authz: Fix handling of authz configurations, make default authz
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung directives. [Chris Darroch]
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick *) mod_authn_core: Prevent crash when provider alias created to
0827cb14e550f6f65018431c22c2c913631c8f25kbrand provider which is not yet registered. [Chris Darroch]
ae600ca541efc686b34f8b1f21bd3d0741d37674covener *) mod_authn_core: Add AuthType of None to support disabling
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick authentication. [Chris Darroch]
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim *) core: Allow <Limit> and <LimitExcept> directives to nest, and
cfa64348224b66dd1c9979b809406c4d15b1c137fielding constrain their use to conform with that of other access control
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim and authorization directives. [Chris Darroch]
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim *) unixd: turn existing code into a module, and turn the set user/group
cfa64348224b66dd1c9979b809406c4d15b1c137fielding and chroot into a child_init function. [Nick Kew]
cfa64348224b66dd1c9979b809406c4d15b1c137fielding *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]
Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
*) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
*) Export and install the mod_rewrite.h header to ensure the optional
*) New module mod_sed: filter Request/Response bodies through sed
null value. [David Shane Holden <dpejesh apache.org>]
*) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
*) configure: Don't reject libtool 2.x
overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
PR 44799 [Christian Wenz <christian wenz.org>]
both inside and outside the location/directory sections, as
form request with the type of application/x-www-form-urlencoded.
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: