CHANGES revision 82632a19f2f9c346fee2b28a65920ba9737b3973
f743002678eb67b99bbc29fee116b65d9530fec0wrowe -*- coding: utf-8 -*-
80833bb9a1bf25dcf19e814438a4b311d2e1f4cffuankgChanges with Apache 2.3.0
a34684a59b60a4173c25035d0c627ef17e6dc215rpluem[ When backported to 2.2.x, remove entry from this file ]
5b88c8507d5ef6d0c4cfbc78230294968175b638minfrin *) Move the KeptBodySize directive, kept_body filters and the
86ba86bbe4d803bdc30616302300e31b90d5d8e9ylavic ap_parse_request_body function out of the http module and into a
86ba86bbe4d803bdc30616302300e31b90d5d8e9ylavic new module called mod_request, reducing the size of the core.
86ba86bbe4d803bdc30616302300e31b90d5d8e9ylavic [Graham Leggett]
5ba2c965d1a25a74c9aa69f82c45939fb3a3e91dylavic *) rotatelogs: Log the current file size and error code/description
5ba2c965d1a25a74c9aa69f82c45939fb3a3e91dylavic when failing to write to the log file. [Jeff Trawick]
925a0ae69fe5b15a1e42d2b5676b941d59766790ylavic *) mod_dbd: Handle integer configuration directive parameters with a
925a0ae69fe5b15a1e42d2b5676b941d59766790ylavic dedicated function.
d44d1d625d4165f684b75264efe945e0d642e3f8covener *) Change the directives within the mod_session* modules to be valid
d44d1d625d4165f684b75264efe945e0d642e3f8covener both inside and outside the location/directory sections, as
d44d1d625d4165f684b75264efe945e0d642e3f8covener suggested by wrowe. [Graham Leggett]
d44d1d625d4165f684b75264efe945e0d642e3f8covener *) mod_auth_form: Add a module capable of allowing end users to log
d44d1d625d4165f684b75264efe945e0d642e3f8covener in using an HTML form, storing the credentials within mod_session.
6c3b9cebb551140fbb25d58bae08b539b3802133ylavic [Graham Leggett]
6c3b9cebb551140fbb25d58bae08b539b3802133ylavic *) Add a function to the http filters that is able to parse an HTML
4f29b65ab4b547ad5dbe506e2d0ff5d12ead9247ylavic form request with the type of application/x-www-form-urlencoded.
4f29b65ab4b547ad5dbe506e2d0ff5d12ead9247ylavic [Graham Leggett]
e7a83ac97aed916dc6da9441f24d5630caad249fjailletc *) mod_session_crypto: Initialise SSL in the post config hook.
e7a83ac97aed916dc6da9441f24d5630caad249fjailletc [Ruediger Pluem, Graham Leggett]
e7a83ac97aed916dc6da9441f24d5630caad249fjailletc *) mod_session_dbd: Add a session implementation capable of storing
e7a83ac97aed916dc6da9441f24d5630caad249fjailletc session information in a SQL database via the dbd interface. Useful
e7a83ac97aed916dc6da9441f24d5630caad249fjailletc for sites where session privacy is important. [Graham Leggett]
f4c3ded5dd561f8aa9779f227fed41303c15efaaylavic *) mod_session_crypto: Add a session encoding implementation capable
f4c3ded5dd561f8aa9779f227fed41303c15efaaylavic of encrypting and decrypting sessions wherever they may be stored.
0a0df13b7f1f4f1a74fe295253d89ca3911b301aylavic Introduces a level of privacy when sessions are stored on the
0a0df13b7f1f4f1a74fe295253d89ca3911b301aylavic browser. [Graham Leggett]
0a0df13b7f1f4f1a74fe295253d89ca3911b301aylavic *) mod_session_cookie: Add a session implementation capable of storing
206ee035a75fa226ca51d6ee1f118624354803d2ylavic session information within cookies on the browser. Useful for high
206ee035a75fa226ca51d6ee1f118624354803d2ylavic volume sites where server bound sessions are too resource intensive.
206ee035a75fa226ca51d6ee1f118624354803d2ylavic [Graham Leggett]
206ee035a75fa226ca51d6ee1f118624354803d2ylavic *) mod_session: Add a generic session interface to unify the different
69301145375a889e7e37caf7cc7321ac0f91801erpluem attempts at saving persistent sessions across requests.
69301145375a889e7e37caf7cc7321ac0f91801erpluem [Graham Leggett]
506bfe33206b2fece40ef25f695af39dd4130facjkaluza *) core, authn/z: Avoid calling access control hooks for internal requests
506bfe33206b2fece40ef25f695af39dd4130facjkaluza with configurations which match those of initial request. Revert to
506bfe33206b2fece40ef25f695af39dd4130facjkaluza original behaviour (call access control hooks for internal requests
506bfe33206b2fece40ef25f695af39dd4130facjkaluza with URIs different from initial request) if any access control hooks or
78ae177952e97903c19115e0f1b0383a5ca22eb4ylavic providers are not registered as permitting this optimization.
78ae177952e97903c19115e0f1b0383a5ca22eb4ylavic Introduce wrappers for access control hook and provider registration
78ae177952e97903c19115e0f1b0383a5ca22eb4ylavic which can accept additional mode and flag data. [Chris Darroch]
78ae177952e97903c19115e0f1b0383a5ca22eb4ylavic *) http_filters: Don't spin if get an error when reading the
d58a848a016d401b965111e50ef829e1641f7834minfrin next chunk. PR 44381 [Ruediger Pluem]
d58a848a016d401b965111e50ef829e1641f7834minfrin *) mod_dav: Return "method not allowed" if the destination URI of a WebDAV
d06d6ad3304fda986f67b5ada248e9ac05848cd9ylavic copy / move operation is no DAV resource. PR 44734 [Ruediger Pluem]
d06d6ad3304fda986f67b5ada248e9ac05848cd9ylavic *) Introduced ap_expr API for expression evaluation.
33a50f7ac69bc7f9f5c35cc7f0e240ec324ae660minfrin This is adapted from mod_include, which is the first module
33a50f7ac69bc7f9f5c35cc7f0e240ec324ae660minfrin to use the new API.
2e6f4d654c96c98b761fb012fd25c5d5b1558c44sf *) mod_authz_dbd: When redirecting after successful login/logout per
2e6f4d654c96c98b761fb012fd25c5d5b1558c44sf AuthzDBDRedirectQuery, do not report authorization failure, and use
4e10eefaad0287c0c4ac2185bc3a1615092dbef8ylavic first row returned by database query instead of last row.
4e10eefaad0287c0c4ac2185bc3a1615092dbef8ylavic [Chris Darroch]
4e10eefaad0287c0c4ac2185bc3a1615092dbef8ylavic *) mod_rewrite: Initialize hash needed by ap_register_rewrite_mapfunc early
17e6c95f3b22d18acdf8380fb26a8d0e10c80767ylavic enough. PR 44641 [Daniel Lescohier <daniel.lescohier cnet.com>]
17e6c95f3b22d18acdf8380fb26a8d0e10c80767ylavic *) mod_authn_dbd: Disambiguate and tidy database authentication
17e6c95f3b22d18acdf8380fb26a8d0e10c80767ylavic error messages. PR 43210. [Chris Darroch, Phil Endecott
17e6c95f3b22d18acdf8380fb26a8d0e10c80767ylavic <spam_from_apache_bugzilla chezphil.org>]
e8bd80a4bb88199d2f9a24a50345688e52d9c116ylavic *) mod_cache: Handle If-Range correctly if the cached resource was stale.
e8bd80a4bb88199d2f9a24a50345688e52d9c116ylavic PR 44579 [Ruediger Pluem]
8c94893229334f5b79636e4ec53a992a0b9f9828ylavic *) mod_speling: remove regression from 1.3/2.0 behavior and
8c94893229334f5b79636e4ec53a992a0b9f9828ylavic drop dependency between mod_speling and AcceptPathInfo.
ac7482772673c7dab4afbf53649e07030fd57a8eylavic PR 43562 [Jose Kahan <jose w3.org>]
330e16bea8fe9cace4de90c349750c03dfb1fe64ylavic *) mod_ldap: Correctly return all requested attribute values
330e16bea8fe9cace4de90c349750c03dfb1fe64ylavic when some attributes have a null value.
330e16bea8fe9cace4de90c349750c03dfb1fe64ylavic PR 44560 [Anders Kaseorg <anders kaseorg.com>]
330e16bea8fe9cace4de90c349750c03dfb1fe64ylavic *) core: check symlink ownership if both FollowSymlinks and
330e16bea8fe9cace4de90c349750c03dfb1fe64ylavic SymlinksIfOwnerMatch are set [Nick Kew]
d7205b1a86c51c27b71a2c458dc453fd53a261c1covener *) core: fix origin checking in SymlinksIfOwnerMatch
d7205b1a86c51c27b71a2c458dc453fd53a261c1covener PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]
d7205b1a86c51c27b71a2c458dc453fd53a261c1covener *) rotatelogs: Added '-f' option to force rotatelogs to create the
44ff304057225e944e220e981d434a046d14cf06covener logfile as soon as started, and not wait until it reads the
44ff304057225e944e220e981d434a046d14cf06covener first entry. [Jim Jagielski]
44ff304057225e944e220e981d434a046d14cf06covener *) mod_proxy: Do not try a direct connection if the connection via a
291eb44b3adaf8247425286615b4f4b69fbea274minfrin remote proxy failed before and the request has a request body.
291eb44b3adaf8247425286615b4f4b69fbea274minfrin [Ruediger Pluem]
5d1ba75b8794925e67591c209085a49279791de9covener *) mod_substitute: The default is now flattening the buckets after
5d1ba75b8794925e67591c209085a49279791de9covener each substitution. This was mostly done to abide by the
5d1ba75b8794925e67591c209085a49279791de9covener Principle Of Least Astonishment. The newly added 'q' flag allows for
032982212dbcc7c3cce95bf89c503bb56e185ac7kbrand the quicker, more efficient bucket-splitting if the user so
032982212dbcc7c3cce95bf89c503bb56e185ac7kbrand desires. [Jim Jagielski]
032982212dbcc7c3cce95bf89c503bb56e185ac7kbrand *) Added 'disablereuse' option for ProxyPass which, essentially,
caad2986f81ab263f7af41467dd622dc9add17f3ylavic disables connection pooling for the backend servers.
caad2986f81ab263f7af41467dd622dc9add17f3ylavic [Jim Jagielski]
caad2986f81ab263f7af41467dd622dc9add17f3ylavic *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the
45a10d38e6051fd7bdf9d742aaae633d97ff02abjailletc 'most' set for '--enable-modules' and '--enable-shared-mods'. Include
f7317ff316c2b141feea31bddb74d5d3fa1584edjorton mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]
2165214331e4afafca4048f66f303d0253d7b001covener *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these
a34684a59b60a4173c25035d0c627ef17e6dc215rpluem contain public function declarations which are useful for
a34684a59b60a4173c25035d0c627ef17e6dc215rpluem third party module authors. PR 42431 [Dirk-Willem van Gulik].
1e2d421a36999d292042a5539971070d54aa6c63ylavic *) mod_dir, mod_negotiation: pass the output filter information
1e2d421a36999d292042a5539971070d54aa6c63ylavic to newly created sub requests; as these are later on used
fa7ed98b9dc94c5845cf845aea0a44ecacd290c9humbedooh as true requests with an internal redirect. This allows for
fa7ed98b9dc94c5845cf845aea0a44ecacd290c9humbedooh mod_cache et.al. to trap the results of the redirect.
fa7ed98b9dc94c5845cf845aea0a44ecacd290c9humbedooh [Dirk-Willem van Gulik, Ruediger Pluem]
0b67eb8568cd58bb77082703951679b42cf098actrawick *) ab: Use a 64 bit unsigned int instead of a signed long to count the
0b67eb8568cd58bb77082703951679b42cf098actrawick bytes transferred to avoid integer overflows. PR 44346 [Ruediger Pluem]
5ef3c61605a3a021ff71f488983cb0065f8e1a79covener *) mod_proxy_ajp: Do not retry request in the case that we either failed to
fb1985a97912b25ec6564c73e610a31e5fc6e25fcovener sent a part of the request body or if the request is not idempotent.
09c87c777bed1655621bb20e1c46cb6b1a63279dcovener PR 44334 [Ruediger Pluem]
6502b7b32f980cc2093bb3ebce37e5e4dc68fba4ylavic *) rotatelogs: Don't leak memory when reopening the logfile.
3060ce7f798fbda7999cd4ddf89b525d2b294185covener PR 40183 [Ruediger Pluem, Takashi Sato <serai lans-tv.com>]
c85eff31536e6bfef1537b2435564d48665435d3rpluem *) mod_ldap: Add support (taking advantage of the new APR capability)
c85eff31536e6bfef1537b2435564d48665435d3rpluem for ldap rebind callback while chasing referrals. This allows direct
c85eff31536e6bfef1537b2435564d48665435d3rpluem searches on LDAP servers (in particular MS Active Directory 2003+)
c1a63b8fad09c419c1a64f75993feb8a343a6801ylavic using referrals without the use of the global catalog.
c1a63b8fad09c419c1a64f75993feb8a343a6801ylavic PRs 26538, 40268, and 42557 [Paul J. Reder]
e6b4bd1113567627ab6bb6c6a7105e1e01a7d889jailletc *) ab: Do not try to read non existing response bodies of HEAD requests.
e6b4bd1113567627ab6bb6c6a7105e1e01a7d889jailletc PR 34275 [Takashi Sato <serai lans-tv.com>]
e466c40e1801982602ee0200c9e8b61cc148742djailletc *) Support chroot on Unix-family platforms
457468b82e59d01eba00dd9d0817309c8f5e414ejim PR 43596 [Dimitar Pashev <mitko banksoft-bg.com>]
457468b82e59d01eba00dd9d0817309c8f5e414ejim *) mod_proxy_http: Return HTTP status codes instead of apr_status_t
04983e3bd1754764eec7d6bb772fe3b0bf391771jorton values for errors encountered while forwarding the request body
04983e3bd1754764eec7d6bb772fe3b0bf391771jorton PR 44165 [Eric Covener]
15660979a30d251681463de2e0584853890082accovener *) mod_ssl: Added server name indication support (SNI, RFC 4366).
15660979a30d251681463de2e0584853890082accovener PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
15660979a30d251681463de2e0584853890082accovener can be created with test/make_sni.sh [Dirk-Willem van Gulik].
cfd9415521847b2f9394fad04fb701cfb955f503rjung *) ApacheMonitor.exe: Introduce --kill argument for use by the
cfd9415521847b2f9394fad04fb701cfb955f503rjung installer. This will permit the installation tool to remove
cfd9415521847b2f9394fad04fb701cfb955f503rjung all running instances before attempting to remove the .exe.
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe [William Rowe]
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe *) mod_proxy: Lower memory consumption for short lived connections.
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe PR 44026. [Ruediger Pluem]
8491e0600f69b0405e156ea8a419653c065c645bcovener *) mod_proxy: Keep connections to the backend persistent in the HTTPS case.
63b9f1f5880391261705f696d7d65507bbe9ace3covener [Ruediger Pluem]
63b9f1f5880391261705f696d7d65507bbe9ace3covener *) rotatelogs: Improve atomicity when using -l and cleaup code.
49dacedb6c387b786b7911082ff35121a45f414bcovener PR 44004 [Rainer Jung]
49dacedb6c387b786b7911082ff35121a45f414bcovener *) mod_ssl: Add support for OCSP validation of client certificates.
49dacedb6c387b786b7911082ff35121a45f414bcovener PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
3c990331fc6702119e4f5b8ba9eae3021aea5265jim *) mod_unique_id: Fix timestamp value in UNIQUE_ID.
3c990331fc6702119e4f5b8ba9eae3021aea5265jim PR 37064 [Kobayashi <kobayashi firstserver.co.jp>]
fc42512879dd0504532f52fe5d0d0383dda96a1eniq *) mod_serf: New module for Reverse Proxying. [Paul Querna]
fc42512879dd0504532f52fe5d0d0383dda96a1eniq *) core: Add the option to keep aside a request body up to a certain
0451df5dc50fa5d8b3e07d92ee6a92e36a1181a5niq size that would otherwise be discarded, to be consumed by filters
0451df5dc50fa5d8b3e07d92ee6a92e36a1181a5niq such as mod_include. When enabled for a directory, POST requests
0451df5dc50fa5d8b3e07d92ee6a92e36a1181a5niq to shtml files can be passed through to embedded scripts as POST
da0442c0440caef34706e2c2f3af05cb65921cc0jailletc requests, rather being downgraded to GET requests. [Graham Leggett]
da0442c0440caef34706e2c2f3af05cb65921cc0jailletc *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
06b8f183140c8e02e0974e938a05078b511d1603covener *) scoreboard: Correctly declare ap_time_process_request.
15890c9306ba98f6fc243e15a3c4778ddc7d773erpluem *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
259878293a997ff49f5ddfc53d3739cbdc25444ecovener from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
259878293a997ff49f5ddfc53d3739cbdc25444ecovener provide the unusual legacy lookup. [William Rowe]
259878293a997ff49f5ddfc53d3739cbdc25444ecovener *) mpm winnt: fix null pointer dereference
15890c9306ba98f6fc243e15a3c4778ddc7d773erpluem PR 42572 [Davi Arnaut]
b54b024c06a19926832d77d40ba35ad8c41e4d3dminfrin *) core: reinstate location walk to fix config for subrequests
b54b024c06a19926832d77d40ba35ad8c41e4d3dminfrin PR 41960 [Jose Kahan <jose w3.org>]
65967d05f839dbf27cf91d91fa79585eeae19660minfrin *) mod_log_config: Add format options for %p so that the actual local
65967d05f839dbf27cf91d91fa79585eeae19660minfrin or remote port can be logged. PR 43415. [Adam Hasselbalch Hansen
65967d05f839dbf27cf91d91fa79585eeae19660minfrin <ahh@one.com>, Ruediger Pluem, Jeff Trawick]
8152945ae46857b170cb227e79bb799f4fc7710dminfrin *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
8152945ae46857b170cb227e79bb799f4fc7710dminfrin parameters to the environment. Improve portability to
8152945ae46857b170cb227e79bb799f4fc7710dminfrin EBCDIC machines by using apr_toupper(). [Martin Kraemer]
75f5c2db254c0167a0e396254460de09b775d203trawick *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
75f5c2db254c0167a0e396254460de09b775d203trawick to authorize an authenticated user via a "require ldap-group X" directive
4f0358189bfa57b8e75bd6b94db264302a8f336amrumph where the user is not in group X, but is in a subgroup contained in X.
4f0358189bfa57b8e75bd6b94db264302a8f336amrumph PR 42891 [Paul J. Reder]
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick *) ab: Add -r option to continue after socket receive errors.
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick [Filip Hanik <devlist hanik.com>]
54d750a84a175d8e338880514d440773eb986b50covener *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
54d750a84a175d8e338880514d440773eb986b50covener for SDKs that define LDAP_NO_LIMIT to something other than -1.
54d750a84a175d8e338880514d440773eb986b50covener [David Jones <oscaremma gmail.com>]
54d750a84a175d8e338880514d440773eb986b50covener *) apxs: Enhance -q flag to print all known variables and their values
54d750a84a175d8e338880514d440773eb986b50covener when invoked without variable name(s).
54d750a84a175d8e338880514d440773eb986b50covener [William Rowe, Sander Temme]
54d750a84a175d8e338880514d440773eb986b50covener *) apxs: Eliminate run-time check for mod_so. PR 40653.
54d750a84a175d8e338880514d440773eb986b50covener [David M. Lee <dmlee crossroads.com>]
4e30ef014533a7e93c92d88306291f5e49c9692ftrawick *) beos MPM: Create pmain pool and run modules' child_init hooks when
83b50288fa7d306324bba68832011ea08f5c7832covener entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
5f066f496cd9f20a2a701255bc67d44e7cb46daetrawick [Chris Darroch]
5f066f496cd9f20a2a701255bc67d44e7cb46daetrawick *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
2e15620d724fb8e3a5be183b917359a2fd6e9468covener cleanups registered in modules' child_init hooks are performed.
2e15620d724fb8e3a5be183b917359a2fd6e9468covener [Chris Darroch]
2e15620d724fb8e3a5be183b917359a2fd6e9468covener *) mod_dbd: Stash DBD connections in request_config of initial request
1b988c41ee505962781d110a3e4c2c90f1ea0aa4covener only, or else sub-requests and internal redirections may cause
1b988c41ee505962781d110a3e4c2c90f1ea0aa4covener entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
1b988c41ee505962781d110a3e4c2c90f1ea0aa4covener *) Fix issue which could cause error messages to be written to access logs
b8efdc95bec9cf089aa1be0bfd07d46aa1137a7acovener on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
b8efdc95bec9cf089aa1be0bfd07d46aa1137a7acovener *) The LockFile directive, which specifies the location of
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd the accept() mutex lockfile, is deprecated. Instead, the
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd AcceptMutex directive now takes an optional lockfile
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd location parameter, ala SSLMutex. [Jim Jagielski]
179565be4043d7e5f9161aa75271fa0a001866d9covener *) mod_authn_dbd: Export any additional columns queried in the SQL select
179565be4043d7e5f9161aa75271fa0a001866d9covener into the environment with the name AUTHENTICATE_<COLUMN>. This brings
111436a32ba1254291e4883292fb116d15fe8f64covener mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener *) mod_dbd: Key the storage of prepared statements on the hex string
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener value of server_rec, rather than the server name, as the server name
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener may change (eg when the server name is set) at any time, causing
7b7430e701e9a31ce809da7c220bb8dfcf68c86etrawick weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
7b7430e701e9a31ce809da7c220bb8dfcf68c86etrawick *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
ccc20788c1e5fc973f36df634399c89acb70deaejerenkrantz *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
ccc20788c1e5fc973f36df634399c89acb70deaejerenkrantz the first bucket from the brigade, finds it not to be a FILE
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza bucket and barfs. The fix is to pass a bucket rather than a brigade.
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza [Niklas Edmundsson <nikke acc.umu.se>]
efe780dcf13b2b95effabf897d694d8f23feac74trawick *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin *) ap_get_server_version() has been removed. Third-party modules must
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin now use ap_get_server_banner() or ap_get_server_description().
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza [Jeff Trawick]
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza *) All MPMs: Introduce a check_config phase between pre_config and
ba050a6f942b9fa0e81ed73437588005c569655ccovener open_logs, to allow modules to review interdependent configuration
ba050a6f942b9fa0e81ed73437588005c569655ccovener directive values and adjust them while messages can still be logged
ba050a6f942b9fa0e81ed73437588005c569655ccovener to the console. Handle relevant MPM directives during this phase
ba050a6f942b9fa0e81ed73437588005c569655ccovener and format messages for both the console and the error log, as
135ddda3a989215d2bedbcf1529bfb269c3eda23niq appropriate. [Chris Darroch]
135ddda3a989215d2bedbcf1529bfb269c3eda23niq *) mod_proxy: don't URLencode tilde in path component
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh [Stijn Hoop <stijn sandcat.nl>]
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh *) mpm_winnt: Fix return values from wait_for_many_objects.
efe780dcf13b2b95effabf897d694d8f23feac74trawick The return value is index to the signaled thread in the
793214f67dede32edfd9ee96c664ead04d175cbbjfclere creted_threads array. We can not use WAIT_TIMEOUT because
cc5a4a08dc9783fcbc52ce86f11e01c281a43810minfrin his value is defined as 258, thus limiting the MaxThreads
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick to that value. [Mladen Turk]
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener to circumvent the symbolic link checks imposed by FollowSymLinks and
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza *) mod_proxy: Support environment variable interpolation in reverse
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza proxying directives. [Nick Kew]
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza *) core: Add the filename of the configuration file to the warning message
56589be3d7a3e9343370df240010c6928cc78b39jkaluza about the useless use of AllowOverride. PR 39992.
56589be3d7a3e9343370df240010c6928cc78b39jkaluza [Darryl Miles <darryl darrylmiles.org>]
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc The default is none as this is far greater debugging resolution than
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc the typical administrator is prepared to untangle. [William Rowe]
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick *) mod_disk_cache: If possible, check if the size of an object to cache is
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick within the configured boundaries before actually saving data.
4d12805e6c18253040223ea637acd6b3b3c18f60jorton [Niklas Edmundsson <nikke acc.umu.se>]
4d12805e6c18253040223ea637acd6b3b3c18f60jorton *) mod_cache: Convert all values to seconds before comparing them when
4d12805e6c18253040223ea637acd6b3b3c18f60jorton checking whether to send a Warning header for a stale response.
4d12805e6c18253040223ea637acd6b3b3c18f60jorton PR 39713. [Owen Taylor <otaylor redhat.com>]
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener *) mod_disk_cache: Delete temporary files if they cannot be renamed to their
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener final name. [Davi Arnaut <davi haxent.com.br>]
cb666b29f81df1d11d65002250153353568021fccovener *) Worker and event MPMs: Remove improper scoreboard updates which were
cb666b29f81df1d11d65002250153353568021fccovener performed in the event of a fork() failure. [Chris Darroch]
6a80c3c6f4b8ea7ba5e89402b8b779b09ce020e0covener *) Add support for fcgi:// proxies to mod_rewrite.
1c2cab00d988fc48cbe59032cf76cc0bab20d6f7covener [Markus Schiegl <ms schiegl.com>]
75a230a728338d84dcfe81edd375352f34de22d0covener *) Remove incorrect comments from scoreboard.h regarding conditional
75a230a728338d84dcfe81edd375352f34de22d0covener loading of worker_score structure with mod_status, and remove unused
75a230a728338d84dcfe81edd375352f34de22d0covener definitions relating to old life_status field.
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener [Chris Darroch <chrisd pearsoncmg.com>]
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covener *) Remove allocation of memory for unused array of lb_score pointers
63a5ea80bddcc84a462e40f402b4f330e0e05411covener in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
63a5ea80bddcc84a462e40f402b4f330e0e05411covener *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.
63a5ea80bddcc84a462e40f402b4f330e0e05411covener [Garrett Rooney, Jim Jagielski, Paul Querna]
65a4e663b82f8bce28ac22ab2edfd7502de36998sf *) Event MPM: Fill in the scoreboard's tid field. PR 38736.
65a4e663b82f8bce28ac22ab2edfd7502de36998sf [Chris Darroch <chrisd pearsoncmg.com>]
c7de1955eb0eaeabf7042902476397692672d549sf *) mod_charset_lite: Remove Content-Length when output filter can
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin invalidate it. Warn when input filter can invalidate it.
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin [Jeff Trawick]
74e7f6c55fd67b10cb400b3f6d1dc718a303d944minfrin *) Authz: Add the new module mod_authn_core that will provide common
a511a29faf2ff7ead3b67680154a624effb31aafminfrin authn directives such as 'AuthType', 'AuthName'. Move the directives
a511a29faf2ff7ead3b67680154a624effb31aafminfrin 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias
a511a29faf2ff7ead3b67680154a624effb31aafminfrin into mod_authn_core. [Brad Nicholes]
a511a29faf2ff7ead3b67680154a624effb31aafminfrin *) Authz: Move the directives 'Order', 'Allow', 'Deny' and 'Satisfy'
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin into the new module mod_access_compat which can be loaded to provide
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin support for these directives.
63921358ef93fcb41bc71d9894221ba3d7fbb87bminfrin [Brad Nicholes]
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin *) Authz: Move the 'Require' directive from the core module as well as
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
6d601599d3d65df0410eae6e573e75b2dbfb1fb4minfrin logic into the authorization processing. [Brad Nicholes]
684e0cfc200f66287a93bbd1708d1dd8a92a7eefcovener *) Authz: Add the new module mod_authz_core which acts as the
5c43d2fb853f84497b5ece2d414ef9484aa87e5fsf authorization provider vector and contains common authz
05a5a9c3e16f21566e1b61f4bd68025ce1b741ccjoes directives. [Brad Nicholes]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) Authz: Renamed mod_authz_dbm authz providers from 'group' and
26c5829347f6a355c00f1ba0301d575056b69536niq 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq host-based access control provided by mod_authz_host and invoked
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq through the 'Require' directive. [Brad Nicholes]
ef82e8fa164e0a1f8b813f7deb6b7ead96018c94niq *) Authz: Convert all of the authz modules from hook based to
413ee814748f37be168ff12407fa6dba0ceeabe6trawick provider based. [Brad Nicholes]
c12917da693bae4028a1d5a5e8224bceed8c739dsf *) mod_cache: Add CacheMinExpire directive to set the minimum time in
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf seconds to cache a document.
eafcc0ebf263d0ba69855b6e10958c4c1a2361bdsf *) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
d7ffd2da16d58b1a0de212e4d56f7aebb72bef26sf *) Fix typo in ProxyStatus syntax error message.
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf *) Asynchronous write completion for the Event MPM. [Brian Pane]
4576c1a9ef54cd1e5555ee07d016a7f559f80338sf *) Added an End-Of-Request bucket type. The logging of a request and
9811aed12bbc71783d2e544ccb5fecd193843eadsf the freeing of its pool are now done when the EOR bucket is destroyed.
9811aed12bbc71783d2e544ccb5fecd193843eadsf This has the effect of delaying the logging until right after the last
9811aed12bbc71783d2e544ccb5fecd193843eadsf of the response is sent; ap_core_output_filter() calls the access logger
88fac54d9d64f85bbdab5d7010816f4377f95bd7rjung indirectly when it destroys the EOR bucket. [Brian Pane]
bd3f5647b96d378d9c75c954e3f13582af32c643sf *) Rewrite of logresolve support utility: IPv6 addresses are now supported
bd3f5647b96d378d9c75c954e3f13582af32c643sf and the format of statistical output has changed. [Colm MacCarthaigh]
bd3f5647b96d378d9c75c954e3f13582af32c643sf *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]
2a7beea91d46beb41f043a84eaad060047ee04aafabien *) Added new connection states for handler and write completion
2a7beea91d46beb41f043a84eaad060047ee04aafabien [Brian Pane]
2a7beea91d46beb41f043a84eaad060047ee04aafabien *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csf [Justin Erenkrantz]
584a85dd4047e38d3ed3a29b6662fcc9d100ae4csf *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf allowing string-valued client certificate attributes to be used for
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")
f21e9e3d0bfb7a507ecc5bc963f2159d693503d1sf [Martin Kraemer, David Reid]
f6b9c755a0b793e8a3a3aebd327ca20a86478117sf [Apache 2.1.0-dev includes those bug fixes and changes with the
f6b9c755a0b793e8a3a3aebd327ca20a86478117sf Apache 2.2.xx tree as documented, and except as noted, below.]
132ee6ac1c26d6e8953836316ba50734eefab47bsfChanges with Apache 2.2.x and later:
85eacfc96a04547ef25aabbc06440039715084c2jorton *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
85eacfc96a04547ef25aabbc06440039715084c2jortonChanges with Apache 2.0.x and later:
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawickChanges with Apache 1.3.x and later: