1117N/A[ When backported to
2.2.x, remove entry from this file ]
1117N/A *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
1117N/A *) scoreboard: Correctly declare ap_time_process_request.
1117N/A *) mod_ldap: Give callers a reference to data copied into the request
1117N/A pool instead of references directly into the cache
1117N/A *) mod_ldap: Stop passing a reference to pconf around for
1117N/A (limited) use during request processing, avoiding possible
1117N/A memory corruption and crashes. [Eric Covener]
1117N/A *) mod_status: Add SeeRequestTail directive, which determines if
1117N/A ExtendedStatus displays the 1st 63 characters of the request
1117N/A or the last 63. Useful for those requests with large string
1117N/A lengths and which only vary with the last several characters.
1117N/A *) mod_proxy: add "nocanon" keyword to ProxyPass, to suppress
1117N/A URI-canonicalisation in a reverse proxy.
1117N/A *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
1117N/A from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
1117N/A provide the unusual legacy lookup. [William Rowe]
1117N/A *) mpm winnt: fix null pointer dereference
1117N/A *) mod_proxy_http: Correctly forward unexpected interim (HTTP 1xx)
1117N/A responses from the backend according to RFC2616. But make it
1117N/A configurable in case something breaks on it.
1117N/A *) mod_deflate: Don't leave a strong ETag in place while transforming
1117N/A *) core: reinstate location walk to fix config for subrequests
1117N/A *) mod_log_config: Add format options for %p so that the actual local
1117N/A or remote port can be logged. PR 43415. [Adam Hasselbalch Hansen
1117N/A <ahh@one.com>, Ruediger Pluem, Jeff Trawick]
1117N/A *) mod_rewrite: Add the novary flag to RewriteCond.
1117N/A *) mod_include: Add an "if" directive syntax to test whether an URL
1117N/A is accessible, and if so, conditionally display content. This
1117N/A allows a webmaster to hide a link to a private page when the user
1117N/A has no access to that page. [Graham Leggett]
1117N/A *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
1117N/A parameters to the environment. Improve portability to
1117N/A EBCDIC machines by using apr_toupper(). [Martin Kraemer]
1117N/A *) mod_ldap, mod_authnzldap: Add support for nested groups (
i.e. the ability
1117N/A to authorize an authenticated user via a "require ldap-group X" directive
1117N/A where the user is not in group X, but is in a subgroup contained in X.
1117N/A *) Event MPM: Add support for running under mod_ssl, by reverting to the
1117N/A Worker MPM behaviors, when run under an input filter that buffers
1117N/A its own data. [Paul Querna]
1117N/A *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
1117N/A *) mod_substitute: Added a new experimental output filter, which
1117N/A performs inline response content pattern matching (including
1117N/A regex) and substitution. [Jim Jagielski]
1117N/A *) core: Change etag generation to produce identical results on
1117N/A 32-bit and 64-bit platforms. PR 40064. [Joe Orton]
1117N/A *) ab: Add -r option to continue after socket receive errors.
1117N/A *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
1117N/A for SDKs that define LDAP_NO_LIMIT to something other than -1.
1117N/A *) mod_dbd: Introduce configuration groups to allow inheritance by virtual
1117N/A hosts of database configurations from the main server. Determine the
1117N/A minimal set of distinct configurations and share connection pools
1117N/A whenever possible. Allow virtual hosts to override inherited SQL
1117N/A statements. PR 41302. [Chris Darroch]
1117N/A *) core: Fix broken chunk filtering that causes all non blocking reads to be
1117N/A converted into blocking reads. PR 41056. [Jean-Frederic Clere, Jim Jagielski]
1117N/A *) apxs: Enhance -q flag to print all known variables and their values
1117N/A when invoked without variable name(s).
1117N/A [William Rowe, Sander Temme]
1117N/A *) apxs: Eliminate run-time check for mod_so. PR 40653.
1117N/A *) beos MPM: Create pmain pool and run modules' child_init hooks when
1117N/A entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
1117N/A *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
1117N/A cleanups registered in modules' child_init hooks are performed.
1117N/A *) mod_dbd: Stash DBD connections in request_config of initial request
1117N/A only, or else sub-requests and internal redirections may cause
1117N/A entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
1117N/A *) Fix issue which could cause error messages to be written to access logs
1117N/A *) The LockFile directive, which specifies the location of
1117N/A the accept() mutex lockfile, is deprecated. Instead, the
1117N/A AcceptMutex directive now takes an optional lockfile
1117N/A location parameter, ala SSLMutex. [Jim Jagielski]
1117N/A *) mod_authn_dbd: Export any additional columns queried in the SQL select
1117N/A into the environment with the name AUTHENTICATE_<COLUMN>. This brings
1117N/A mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
1117N/A *) mod_dbd: Key the storage of prepared statements on the hex string
1117N/A value of server_rec, rather than the server name, as the server name
1117N/A may change (eg when the server name is set) at any time, causing
1117N/A weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
1117N/A *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
1117N/A *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
1117N/A the first bucket from the brigade, finds it not to be a FILE
1117N/A bucket and barfs. The fix is to pass a bucket rather than a brigade.
1117N/A *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
1117N/A *) ap_get_server_version() has been removed. Third-party modules must
1117N/A now use ap_get_server_banner() or ap_get_server_description().
1117N/A *) All MPMs: Introduce a check_config phase between pre_config and
1117N/A open_logs, to allow modules to review interdependent configuration
1117N/A directive values and adjust them while messages can still be logged
1117N/A to the console. Handle relevant MPM directives during this phase
1117N/A and format messages for both the console and the error log, as
1117N/A appropriate. [Chris Darroch]
1117N/A *) mod_proxy: don't URLencode tilde in path component
1117N/A *) mpm_winnt: Fix return values from wait_for_many_objects.
1117N/A The return value is index to the signaled thread in the
1117N/A creted_threads array. We can not use WAIT_TIMEOUT because
1117N/A his value is defined as 258, thus limiting the MaxThreads
1117N/A to that value. [Mladen Turk]
1117N/A *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
1117N/A to circumvent the symbolic link checks imposed by FollowSymLinks and
1117N/A SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
1117N/A *) mod_proxy: Support environment variable interpolation in reverse
1117N/A proxying directives. [Nick Kew]
1117N/A *) core: Add the filename of the configuration file to the warning message
1117N/A about the useless use of AllowOverride. PR 39992.
1117N/A *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
1117N/A configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.
1117N/A The default is none as this is far greater debugging resolution than
1117N/A the typical administrator is prepared to untangle. [William Rowe]
1117N/A *) mod_disk_cache: If possible, check if the size of an object to cache is
1117N/A within the configured boundaries before actually saving data.
1117N/A *) mod_cache: Convert all values to seconds before comparing them when
1117N/A checking whether to send a Warning header for a stale response.
1117N/A *) mod_disk_cache: Delete temporary files if they cannot be renamed to their
1117N/A *) Worker and event MPMs: Remove improper scoreboard updates which were
1117N/A performed in the event of a fork() failure. [Chris Darroch]
1117N/A *) Add support for fcgi:// proxies to mod_rewrite.
1117N/A loading of worker_score structure with mod_status, and remove unused
1117N/A definitions relating to old life_status field.
1117N/A *) Remove allocation of memory for unused array of lb_score pointers
1117N/A *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.
1117N/A [Garrett Rooney, Jim Jagielski, Paul Querna]
1117N/A *) Event MPM: Fill in the scoreboard's tid field. PR 38736.
1117N/A *) mod_charset_lite: Remove Content-Length when output filter can
1117N/A invalidate it. Warn when input filter can invalidate it.
1117N/A *) Authz: Add the new module mod_authn_core that will provide common
1117N/A authn directives such as 'AuthType', 'AuthName'. Move the directives
1117N/A 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias
1117N/A into mod_authn_core. [Brad Nicholes]
1117N/A *) Authz: Move the directives 'Order', 'Allow', 'Deny' and 'Satisfy'
1117N/A into the new module mod_access_compat which can be loaded to provide
1117N/A support for these directives.
1117N/A *) Authz: Move the 'Require' directive from the core module as well as
1117N/A add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'
1117N/A and 'Reject' to mod_authz_core. The new directives introduce '
AND/OR'
1117N/A logic into the authorization processing. [Brad Nicholes]
1117N/A *) Authz: Add the new module mod_authz_core which acts as the
1117N/A authorization provider vector and contains common authz
1117N/A directives. [Brad Nicholes]
1117N/A *) Authz: Renamed mod_authz_dbm authz providers from 'group' and
1117N/A 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]
1117N/A *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle
1117N/A host-based access control provided by mod_authz_host and invoked
1117N/A through the 'Require' directive. [Brad Nicholes]
1117N/A *) Authz: Convert all of the authz modules from hook based to
1117N/A provider based. [Brad Nicholes]
1117N/A *) mod_cache: Add CacheMinExpire directive to set the minimum time in
1117N/A seconds to cache a document.
1117N/A *) Fix typo in ProxyStatus syntax error message.
1117N/A *) Asynchronous write completion for the Event MPM. [Brian Pane]
1117N/A *) Added an End-Of-Request bucket type. The logging of a request and
1117N/A the freeing of its pool are now done when the EOR bucket is destroyed.
1117N/A This has the effect of delaying the logging until right after the last
1117N/A of the response is sent; ap_core_output_filter() calls the access logger
1117N/A indirectly when it destroys the EOR bucket. [Brian Pane]
1117N/A *) Rewrite of logresolve support utility: IPv6 addresses are now supported
1117N/A and the format of statistical output has changed. [Colm MacCarthaigh]
1117N/A *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]
1117N/A *) Added new connection states for handler and write completion
1117N/A *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
1117N/A *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,
1117N/A allowing string-valued client certificate attributes to be used for
1117N/A access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")
1117N/A [Martin Kraemer, David Reid]
1117N/A [Apache 2.1.0-dev includes those bug fixes and changes with the
1117N/A Apache
2.2.xx tree as documented, and except as noted, below.]