43b4c41fbb07705c9df321221ab9cb9832460407Christian Maeder -*- coding: utf-8 -*-

c63ebf815c8a874525cf18670ad74847f7fc7b26Christian MaederChanges with Apache 2.3.2

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

25cc5fbba63f84b47e389af749f55abbbde71c8cChristian Maeder *) mod_disk_cache: The module now turns off sendfile support if

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder 'EnableSendfile off' is defined globally. [Lars Eilebrecht]

43b4c41fbb07705c9df321221ab9cb9832460407Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_deflate: Adjust content metadata before bailing out on 304

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder responses so that the metadata does not differ from 200 response.

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder [Roy T. Fielding]

43b4c41fbb07705c9df321221ab9cb9832460407Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_deflate: Fix creation of invalid Etag headers. We now make sure

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder that the Etag value is properly quoted when adding the gzip marker.

f2f9df2e17e70674f0bf426ed1763c973ee4cde0Christian Maeder PR 39727, 45023. [Lars Eilebrecht, Roy T. Fielding]

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) Added 20x22 icons for ODF, SVG, and XML documents. PR 37185.

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder [Peter Harlow]

68d10d143f29fcff3c637ba24f90e983995ceae6Christian Maeder

a53841f6d6e86ac751c12a33dc8aadf53f59d977Klaus Luettich *) Disabled DefaultType directive and removed ap_default_type()

a53841f6d6e86ac751c12a33dc8aadf53f59d977Klaus Luettich from core. We now exclude Content-Type from responses for which

a53841f6d6e86ac751c12a33dc8aadf53f59d977Klaus Luettich a media type has not been configured via mime.types, AddType,

a53841f6d6e86ac751c12a33dc8aadf53f59d977Klaus Luettich ForceType, or some other mechanism. PR 13986. [Roy T. Fielding]

a737caf82de97c1907027c03e4b4509eb492b4b8Christian Maeder

68d10d143f29fcff3c637ba24f90e983995ceae6Christian Maeder *) mod_rewrite: Add IPV6 variable to RewriteCond

96646aed2ae087b942ae23f15bbe729a8f7c43d3Christian Maeder [Ryan Phillips <ryan-apache trolocsis.com>]

01e383014b555bbcf639c0ca60c5810b3eff83c0Christian Maeder

3b06e23643a9f65390cb8c1caabe83fa7e87a708Till Mossakowski *) core: Enhance KeepAliveTimeout to support a value in milliseconds.

9dac90ec2be2a72e03893095461960d483fe2fc2Christian Maeder PR 46275. [Takashi Sato]

5e5d3e82af3bc2834f8718a52d9f45da80220273Dominik Luecke

5e5d3e82af3bc2834f8718a52d9f45da80220273Dominik Luecke *) rotatelogs: Allow size units B, K, M, G and combination of

ce8b15da31cd181b7e90593cbbca98f47eda29d6Till Mossakowski time and size based rotation. [Rainer Jung]

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder *) rotatelogs: Add flag for verbose (debug) output. [Rainer Jung]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_ssl: Fix merging of SSLRenegBufferSize directive. PR 46508

a1ed34933c266ce85066acb0d7b20c90cb8eb213Christian Maeder [<tlhackque yahoo.com>]

c0c2380bced8159ff0297ece14eba948bd236471Christian Maeder

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder *) core: Translate the the status line to ASCII on EBCDIC platforms in

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder ap_send_interim_response() and for locally generated "100 Continue"

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder responses. [Eric Covener]

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder

404166b9366552e9ec5abb87a37c76ec8a815fb7Klaus Luettich *) prefork: Fix child process hang during graceful restart/stop in

b1f59a4ea7c96f4c03a4d7cfcb9c5e66871cfbbbChristian Maeder configurations with multiple listening sockets. PR 42829. [Joe Orton,

ad270004874ce1d0697fb30d7309f180553bb315Christian Maeder Jeff Trawick]

4d56f2fa72e4aec20eb827c11ed49c8cbb7014bdChristian Maeder

4cb215739e9ab13447fa21162482ebe485b47455Christian Maeder *) mod_session_crypto: Ensure that SessionCryptoDriver can only be

8ef75f1cc0437656bf622cec5ac9e8ea221da8f2Christian Maeder set in the global scope. [Graham Leggett]

404166b9366552e9ec5abb87a37c76ec8a815fb7Klaus Luettich

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_ext_filter: We need to detect failure to startup the filter

356fa49fe3e6a8398f92d13e9f920d0f093697ecChristian Maeder program (a mangled response is not acceptable). Fix to detect

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder failure, and offer configuration option either to abort or

55adfe57a4de1f36adc3e3bfc16f342e44a7d444Christian Maeder to remove the filter and continue.

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder PR 41120 [Nick Kew]

8d97ef4f234681b11bb5924bd4d03adef858d2d2Christian Maeder

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder *) mod_session_crypto: Rewrite the session_crypto module against the

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder apr_crypto API. [Graham Leggett]

e593b89bfd4952698dc37feced21cefe869d87a2Christian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_auth_form: Fix a pool lifetime issue, don't remove the subrequest

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder until the main request is cleaned up. [Graham Leggett]

7cc09dd93962a2155c34d209d1d4cd7d7b838264Christian Maeder

1aee4aaddde105264c1faf394d88e302c05094ffChristian MaederChanges with Apache 2.3.1

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

f041c9a6bda23de33a38490e35b831ae18d96b45Christian Maeder *) ap_slotmem: Add in new slot-based memory access API impl., including

7cc09dd93962a2155c34d209d1d4cd7d7b838264Christian Maeder 2 providers (mod_sharedmem and mod_plainmem) [Jim Jagielski,

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder Jean-Frederic Clere, Brian Akins <brian.akins turner.com>]

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

c3053d57f642ca507cdf79512e604437c4546cb9Christian Maeder *) mod_include: support generating non-ASCII characters as entities in SSI

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder PR 25202 [Nick Kew]

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder *) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder PR 25202 [Nick Kew]

2c9df69accd8924e7cef3bf8f686626958499c7aChristian Maeder

c2fcc35abb03cf0b4ca4b050efeb10827f38c322Christian Maeder *) mod_rewrite: fix "B" flag breakage by reverting r5589343

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]

356fa49fe3e6a8398f92d13e9f920d0f093697ecChristian Maeder

09d6f5d326545acfea43d3ffe1493c2176366475Christian Maeder *) CGI: return 504 (Gateway timeout) rather than 500 when a script

4ed0007ac9caea5b468f202521352d153481423cChristian Maeder times out before returning status line/headers.

356fa49fe3e6a8398f92d13e9f920d0f093697ecChristian Maeder PR 42190 [Nick Kew]

356fa49fe3e6a8398f92d13e9f920d0f093697ecChristian Maeder

0206ab93ef846e4e0885996d052b9b73b9dc66b0Christian Maeder *) mod_cgid: fix segfault problem on solaris.

f13d1e86e58da53680e78043e8df182eed867efbChristian Maeder PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]

b9b331bded61b8860edacac91df16ee19e465b42Christian Maeder

79e80c4b3f0ebb337d84415a50f29ccfc793e68bChristian Maeder *) mod_proxy_scgi: Added. [André Malo]

79e80c4b3f0ebb337d84415a50f29ccfc793e68bChristian Maeder

79e80c4b3f0ebb337d84415a50f29ccfc793e68bChristian Maeder *) mod_cache: Introduce 'no-cache' per-request environment variable

36f63902db2b3463faa9f59912ad106e2d5aaa24Klaus Luettich to prevent the saving of an otherwise cacheable response.

36f63902db2b3463faa9f59912ad106e2d5aaa24Klaus Luettich [Eric Covener]

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich

e39a1626bee36d6ad13a2c0014a80ef179a65bcbChristian Maeder *) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome

8cacad2a09782249243b80985f28e9387019fe40Christian Maeder way that per-directory rewrites append the previous notion of PATH_INFO

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder to each substitution before evaluating subsequent rules.

a7c27282e71cf4505026645f96d4f5cb8a284e32Christian Maeder PR 38642 [Eric Covener]

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder

8a28707e9155465c6f2236a06eac6580a65c7025Christian Maeder *) mod_cgid: Do not add an empty argument when calling the CGI script.

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich PR 46380 [Ruediger Pluem]

797ccd67cb8ae127be097cd43448801b673e3b69Christian Maeder

797ccd67cb8ae127be097cd43448801b673e3b69Christian Maeder *) scoreboard: Remove unused sb_type from process_score.

431d34c7007a787331c4e5ec997badb0f8190fc7Christian Maeder [Torsten Foertsch <torsten.foertsch gmx.net>, Chris Darroch]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

d3ae0072823e2ef0d41d4431fcc768e66489c20eChristian Maeder *) mod_ssl: Add SSLRenegBufferSize directive to allow changing the

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder size of the buffer used for the request-body where necessary

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder during a per-dir renegotiation. PR 39243. [Joe Orton]

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder *) mod_proxy_fdpass: New module to pass a client connection over to a separate

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder process that is reading from a unix daemon socket.

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder *) mod_ssl: Improve environment variable extraction to be more

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder efficient and to correctly handle DNs with duplicate tags.

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder PR 45975. [Joe Orton]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

a6db617ca58eb6a0587b6366e913107dfecb71b5Heng Jiang *) Remove the obsolete serial attribute from the RPM spec file. Compile

a6082d6cfdfbdc6a4e70430bb25638dfa4f0db9bHeng Jiang against the external pcre. Add missing binaries fcgistarter, and

a6082d6cfdfbdc6a4e70430bb25638dfa4f0db9bHeng Jiang mod_socache* and mod_session*. [Graham Leggett]

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder

9e748851c150e1022fb952bab3315e869aaf0214Christian MaederChanges with Apache 2.3.0

f1541d4a151dbd08002dbd14e7eb1d5dde253689Christian Maeder

498aa48bdb931ab50990d3b74318a5db2312186cChristian Maeder *) mod_ratelimit: New module to do bandwidth rate limiting. [Paul Querna]

f1541d4a151dbd08002dbd14e7eb1d5dde253689Christian Maeder

6dc9bc98d0854fe2e3dd3bfc4275096a0c28ee1cChristian Maeder *) Remove X-Pad header which was added as a work around to a bug in

6dc9bc98d0854fe2e3dd3bfc4275096a0c28ee1cChristian Maeder Netscape 2.x to 4.0b2. [Takashi Sato <takashi lans-tv.com>]

6dc9bc98d0854fe2e3dd3bfc4275096a0c28ee1cChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) Add DTrace Statically Defined Tracing (SDT) probes.

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder [Theo Schlossnagle <jesus omniti.com>, Paul Querna]

c0c2380bced8159ff0297ece14eba948bd236471Christian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_proxy_balancer: Move all load balancing implementations

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder as individual, self-contained mod_proxy submodules under

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder modules/proxy/balancers [Jim Jagielski]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) Rename APIs to include ap_ prefix:

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder find_child_by_pid -> ap_find_child_by_pid

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder suck_in_APR -> ap_suck_in_APR

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder sys_privileges_handlers -> ap_sys_privileges_handlers

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder unixd_accept -> ap_unixd_accept

03a6d8f77f588dc5d3dd6653797fa2362efa1751Christian Maeder unixd_config -> ap_unixd_config

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder unixd_killpg -> ap_unixd_killpg

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder unixd_set_global_mutex_perms -> ap_unixd_set_global_mutex_perms

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder unixd_set_proc_mutex_perms -> ap_unixd_set_proc_mutex_perms

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder unixd_set_rlimit -> ap_unixd_set_rlimit

a5e5b8c3e5c11177e5034ef2423813a5d28979edChristian Maeder [Paul Querna]

bc8cbf12aa172bf5673b92a9e7a0151d4aa4c315Christian Maeder

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder *) core: When the ap_http_header_filter processes an error bucket, cleanup

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder the passed brigade before returning AP_FILTER_ERROR down the filter

a5e5b8c3e5c11177e5034ef2423813a5d28979edChristian Maeder chain. This unambiguously ensures the same error bucket isn't revisited

a5e5b8c3e5c11177e5034ef2423813a5d28979edChristian Maeder [Ruediger Pluem]

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder

bc8cbf12aa172bf5673b92a9e7a0151d4aa4c315Christian Maeder *) mod_lbmethod_heartbeat: New module to load balance mod_proxy workers

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder based on heartbeats. [Paul Querna]

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder *) mod_heartmonitor: New module to collect heartbeats, and write out a file

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder so that other modules can load balance traffic as needed. [Paul Querna]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

6ff7a91875597d6e4dfaa68c79187d01473e8341Christian Maeder *) mod_heartbeat: New module to generate multicast heartbeats to know if a

6ff7a91875597d6e4dfaa68c79187d01473e8341Christian Maeder server is online. [Paul Querna]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder *) core: Error responses set by filters were being coerced into 500 errors,

4017ebc0f692820736d796af3110c3b3018c108aChristian Maeder sometimes appended to the original error response. Log entry of:

a9b59eb2ce961014974276cdae0e9df4419bd212Christian Maeder 'Handler for (null) returned invalid result code -3'

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder [Eric Covener]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder *) mod_buffer: Honour the flush bucket and flush the buffer in the

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder input filter. Make sure that metadata buckets are written to

88318aafc287e92931dceffbb943d58a9310001dChristian Maeder the buffer, not to the final brigade. [Graham Leggett]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

a3c6d8e0670bf2aa71bc8e2a3b1f45d56dd65e4cChristian Maeder *) mod_buffer: Optimise the buffering of heap buckets when the heap

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder Ruediger Pluem]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder *) mod_buffer: Optional support for buffering of the input and output

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder filter stacks. Can collapse many small buckets into fewer larger

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder buckets, and prevents excessively small chunks being sent over

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder the wire. [Graham Leggett]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder *) mod_privileges: new module to make httpd on Solaris privileges-aware

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder and to enable different virtualhosts to run with different

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder privileges and Unix user/group IDs [Nick Kew]

4017ebc0f692820736d796af3110c3b3018c108aChristian Maeder

b568982efd0997d877286faa592d81b03c8c67b8Christian Maeder *) mod_mem_cache: this module has been removed. [William Rowe]

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder

0be0db405c49906bd7057255069bf6df53395ac9Klaus Luettich *) authn/z: Remove mod_authn_default and mod_authz_default.

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder [Chris Darroch]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) authz: Fix handling of authz configurations, make default authz

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,

f2f9df2e17e70674f0bf426ed1763c973ee4cde0Christian Maeder and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder directives. [Chris Darroch]

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder *) mod_authn_core: Prevent crash when provider alias created to

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder provider which is not yet registered. [Chris Darroch]

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_authn_core: Add AuthType of None to support disabling

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder authentication. [Chris Darroch]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) core: Allow <Limit> and <LimitExcept> directives to nest, and

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder constrain their use to conform with that of other access control

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder and authorization directives. [Chris Darroch]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) unixd: turn existing code into a module, and turn the set user/group

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder and chroot into a child_init function. [Nick Kew]

ca074a78b8dcccbb8c419586787882f98d0c6163Christian Maeder

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

f1541d4a151dbd08002dbd14e7eb1d5dde253689Christian Maeder *) mod_dir: Support "DirectoryIndex disabled"

6dc9bc98d0854fe2e3dd3bfc4275096a0c28ee1cChristian Maeder Suggested By André Warnier <aw ice-sa.com> [Eric Covener]

d946c1bfdd7d58aa7c023efe864d5999eb44a61bChristian Maeder

e6d5dbbc3308f05197868806e0b860f4f53875f1Christian Maeder *) mod_ssl: Send Content-Type application/ocsp-request for POST requests to

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder

f1541d4a151dbd08002dbd14e7eb1d5dde253689Christian Maeder *) Export and install the mod_rewrite.h header to ensure the optional

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder rewrite_mapfunc_t and ap_register_rewrite_mapfunc functions are

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder available to third party modules. [Graham Leggett]

f4505a64a089693012a3f5c3b1f12a82cd7a2a5aKlaus Luettich

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_authnz_ldap: don't return NULL-valued environment variables to

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder other modules. PR 39045 [Francois Pesce <francois.pesce gmail.com>]

f4505a64a089693012a3f5c3b1f12a82cd7a2a5aKlaus Luettich

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder *) Don't adjust case in pathname components that are not of interest

13731dfbb4b6a31b35dd210e832e920065b6ac45Christian Maeder to mod_mime. Fixes mod_negotiation's use of such components.

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder PR 43250 [Basant Kumar Kukreja <basant.kukreja sun.com>]

b9b331bded61b8860edacac91df16ee19e465b42Christian Maeder

d0188a95f8da2e660fbede7dac291e2c2e9e9da8Christian Maeder *) Be tolerant in what you accept - accept slightly broken

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder status lines from a backend provide they include a valid status code.

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder PR 44995 [Rainer Jung <rainer.jung kippdata.de>]

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) New module mod_sed: filter Request/Response bodies through sed

42b12fba6830ada5057949f825fc27edf5574e5fChristian Maeder [Basant Kumar Kukreja <basant.kukreja sun.com>]

42b12fba6830ada5057949f825fc27edf5574e5fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_auth_form: Make sure that basic authentication is correctly

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder faked directly after login. [Graham Leggett]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_session_cookie, mod_session_dbd: Make sure cookies are set both

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder within the output headers and error output headers, so that the

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder session is maintained across redirects. [Graham Leggett]

93f5b72fdb9ee734caa750b43dd79bbb590dcd73Christian Maeder

93f5b72fdb9ee734caa750b43dd79bbb590dcd73Christian Maeder *) mod_auth_form: Make sure the logged in user is populated correctly

93f5b72fdb9ee734caa750b43dd79bbb590dcd73Christian Maeder after a form login. Fixes a missing REMOTE_USER variable directly

93f5b72fdb9ee734caa750b43dd79bbb590dcd73Christian Maeder following a login. [Graham Leggett]

93f5b72fdb9ee734caa750b43dd79bbb590dcd73Christian Maeder

a6db617ca58eb6a0587b6366e913107dfecb71b5Heng Jiang *) mod_session_cookie: Make sure that cookie attributes are correctly

06dd4e7c29f33f6122a910719e3bd9062256e397Andy Gimblett included in the blank cookie when cookies are removed. This fixes an

5e5d3e82af3bc2834f8718a52d9f45da80220273Dominik Luecke inability to log out when using mod_auth_form. [Graham Leggett]

5b818f10e11fc79def1fdd5c8a080d64a6438d87Christian Maeder

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers *) mod_autoindex: add configuration option to insert string

819e29dba060687cf391e444e0f6ff88c1908cc3Christian Maeder in HTML HEAD. [Nick Kew]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_session: Prevent a segfault when a CGI script sets a cookie with a

f9e0b18852b238ddb649d341194e05d7200d1bbeChristian Maeder null value. [David Shane Holden <dpejesh apache.org>]

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder *) mod_headers: Prevent Header edit from processing only the first header

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder of possibly multiple headers with the same name and deleting the

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder remaining ones. PR 45333. [Ruediger Pluem]

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder [Tom Donovan]

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder *) core, authn/z: Determine registered authn/z providers directly in

383aa66e5142365fe9b1f88b18c1da5b27cc8c04Christian Maeder ap_setup_auth_internal(), which allows optional functions that just

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder wrapped ap_list_provider_names() to be removed from authn/z modules.

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder [Chris Darroch]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

f9e0b18852b238ddb649d341194e05d7200d1bbeChristian Maeder *) authn/z: Convert common provider version strings to macros.

f9e0b18852b238ddb649d341194e05d7200d1bbeChristian Maeder [Chris Darroch]

f9e0b18852b238ddb649d341194e05d7200d1bbeChristian Maeder

819e29dba060687cf391e444e0f6ff88c1908cc3Christian Maeder *) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]

819e29dba060687cf391e444e0f6ff88c1908cc3Christian Maeder

819e29dba060687cf391e444e0f6ff88c1908cc3Christian Maeder *) configure: Don't reject libtool 2.x

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder PR 44817 [Arfrever Frehtes Taifersar Arahesis <Arfrever.FTA gmail.com>]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) core: When testing for slash-terminated configuration paths in

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder ap_location_walk(), don't look past the start of an empty string

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder such as that created by a <Location ""> directive.

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder [Chris Darroch]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) core, mod_proxy: If a kept_body is present, it becomes safe for

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder subrequests to support message bodies. Make sure that safety

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder checks within the core and within the proxy are not triggered

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder when kept_body is present. This makes it possible to embed

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder proxied POST requests within mod_include. [Graham Leggett]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

ac34194a668399bb8ef238da77c3a09e93fb253bChristian Maeder *) mod_auth_form: Make sure the input filter stack is properly set

ac34194a668399bb8ef238da77c3a09e93fb253bChristian Maeder up before reading the login form. Make sure the kept body filter

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder is correctly inserted to ensure the body can be read a second

1842453990fed8a1bd7a5ac792d7982c1d2bfcd5Christian Maeder time safely should the authn be successful. [Graham Leggett,

1842453990fed8a1bd7a5ac792d7982c1d2bfcd5Christian Maeder Ruediger Pluem]

1842453990fed8a1bd7a5ac792d7982c1d2bfcd5Christian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_request: Insert the KEPT_BODY filter via the insert_filter

986d3f255182539098a97ac86da9eeee5b7a72e3Christian Maeder hook instead of during fixups. Add a safety check to ensure the

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder filters cannot be inserted more than once. [Graham Leggett,

4561227a776bdf0ab679b19fb92f1eaaed8786f7Christian Maeder Ruediger Pluem]

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder *) core: Do not allow Options ALL if not all options are allowed to be

5ad5dffe06818a13e1632b1119fbca7881085fc1Dominik Luecke overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder *) ap_cache_cacheable_headers_out() will (now) always

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder merge an error headers _before_ clearing them and _before_

3a611630351f30bdd5b0ec4d812269b37545e5d3Dominik Luecke merging in the actual entity headers and doing normal

00ccf62b4570513e965eb156ab5916ec816c5d2bDominik Luecke hop-by-hop cleansing. [Dirk-Willem van Gulik].

05a206508bc898f87fe6ab6e069814df3c29d303Dominik Luecke

05a206508bc898f87fe6ab6e069814df3c29d303Dominik Luecke *) cache: retire ap_cache_cacheable_hdrs_out() which was used

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder for both in- and out-put headers; and replace it by a single

3b06e23643a9f65390cb8c1caabe83fa7e87a708Till Mossakowski ap_cache_cacheable_headers() wrapped in a in- and out-put

b1f59a4ea7c96f4c03a4d7cfcb9c5e66871cfbbbChristian Maeder specific ap_cache_cacheable_headers_in()/out(). The latter

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder which will also merge error and ensure content-type. To keep

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder cache modules consistent with ease. This API change bumps

0b349288edfa50fdf38fda1a14e1562d03f92574Christian Maeder up the minor MM by one [Dirk-Willem van Gulik].

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder *) mod_rewrite: Allow Cookie option to set secure and HttpOnly flags.

1b3a2f98d1cd01fc9e0591f69507e20526727559Dominik Luecke PR 44799 [Christian Wenz <christian wenz.org>]

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich

a6db617ca58eb6a0587b6366e913107dfecb71b5Heng Jiang *) Move the KeptBodySize directive, kept_body filters and the

e39a1626bee36d6ad13a2c0014a80ef179a65bcbChristian Maeder ap_parse_request_body function out of the http module and into a

abf2487c3aece95c371ea89ac64319370dcb6483Klaus Luettich new module called mod_request, reducing the size of the core.

c70ef4c3b3a62764f715510c9fd67dde3acfe454Christian Maeder [Graham Leggett]

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder *) mod_dbd: Handle integer configuration directive parameters with a

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers dedicated function.

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) Change the directives within the mod_session* modules to be valid

b9b960bc75e34658e70c4a0231dbc6a6e7373f2dChristian Maeder both inside and outside the location/directory sections, as

18a4d5cb6828f080db9c5f9551785c5151027271Christian Maeder suggested by wrowe. [Graham Leggett]

846d851fc0c2c49e949763cd3407634ba0f726c0Christian Maeder

9e748851c150e1022fb952bab3315e869aaf0214Christian Maeder *) mod_auth_form: Add a module capable of allowing end users to log

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder in using an HTML form, storing the credentials within mod_session.

fdb2d618144159395f7bf8ce3327b3c112a17dd3Till Mossakowski [Graham Leggett]

43b4c41fbb07705c9df321221ab9cb9832460407Christian Maeder

8c812cd83569e973f10cf69a342424ceabc07af9Christian Maeder *) Add a function to the http filters that is able to parse an HTML

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder form request with the type of application/x-www-form-urlencoded.

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder [Graham Leggett]

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder

70731e5459a18fc473bdc962ca94d1c12de974afChristian Maeder *) mod_session_crypto: Initialise SSL in the post config hook.

edd1b7f4720bc2eea51fa0685417e1e4f3be4915Klaus Luettich [Ruediger Pluem, Graham Leggett]

9a5fda85e9eaf0e6a18d0dd2b8535805c5135e9aDominik Luecke

63e50b4c36074d5fb9de872c4007b688b4bce534Christian Maeder *) mod_session_dbd: Add a session implementation capable of storing

bd54a9917cd87169b8e40bcc5616c537fed85815Christian Maeder session information in a SQL database via the dbd interface. Useful

be218d4b48c5447b7b08c1e323e048a0cfae2d6eHendrik Iben for sites where session privacy is important. [Graham Leggett]

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder *) mod_session_crypto: Add a session encoding implementation capable

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder of encrypting and decrypting sessions wherever they may be stored.

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder Introduces a level of privacy when sessions are stored on the

6a79849bed67264c396dddb3e9c184bdfc1a1bc9Christian Maeder browser. [Graham Leggett]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) mod_session_cookie: Add a session implementation capable of storing

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder session information within cookies on the browser. Useful for high

8d401657e07a01e10400265f508f75353a9fba4cChristian Maeder volume sites where server bound sessions are too resource intensive.

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder [Graham Leggett]

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder

6bf24e5eb644064ad650eb3fd9774483fccbf601Christian Maeder *) mod_session: Add a generic session interface to unify the different

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder attempts at saving persistent sessions across requests.

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder [Graham Leggett]

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich

e8db9a65830cf71504e33c6f441a67b4d184a3caChristian Maeder *) core, authn/z: Avoid calling access control hooks for internal requests

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder with configurations which match those of initial request. Revert to

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder original behaviour (call access control hooks for internal requests

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder with URIs different from initial request) if any access control hooks or

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder providers are not registered as permitting this optimization.

6bf24e5eb644064ad650eb3fd9774483fccbf601Christian Maeder Introduce wrappers for access control hook and provider registration

dbe752ee940baae7f9f231f29c62284bb0f90a25Christian Maeder which can accept additional mode and flag data. [Chris Darroch]

53818ced114da21321063fff307aa41c1ab31dd3Achim Mahnke

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) Introduced ap_expr API for expression evaluation.

53818ced114da21321063fff307aa41c1ab31dd3Achim Mahnke This is adapted from mod_include, which is the first module

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder to use the new API.

53818ced114da21321063fff307aa41c1ab31dd3Achim Mahnke [Nick Kew]

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_authz_dbd: When redirecting after successful login/logout per

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder AuthzDBDRedirectQuery, do not report authorization failure, and use

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich first row returned by database query instead of last row.

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder [Chris Darroch]

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder *) mod_ldap: Correctly return all requested attribute values

f443a57f2a8e0ca3daa7431b0c89a18ba52c337aChristian Maeder when some attributes have a null value.

363939beade943a02b31004cea09dec34fa8a6d9Christian Maeder PR 44560 [Anders Kaseorg <anders kaseorg.com>]

a5e5b8c3e5c11177e5034ef2423813a5d28979edChristian Maeder

857992065be4ed40a72c6296b6c0aec62ab4c5b9Christian Maeder *) core: check symlink ownership if both FollowSymlinks and

fdb2d618144159395f7bf8ce3327b3c112a17dd3Till Mossakowski SymlinksIfOwnerMatch are set [Nick Kew]

7c99e334446bb97120e30e967baeeddfdd1278deKlaus Luettich

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder *) core: fix origin checking in SymlinksIfOwnerMatch

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder 'most' set for '--enable-modules' and '--enable-shared-mods'. Include

f041c9a6bda23de33a38490e35b831ae18d96b45Christian Maeder mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder contain public function declarations which are useful for

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder third party module authors. PR 42431 [Dirk-Willem van Gulik].

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder *) mod_dir, mod_negotiation: pass the output filter information

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder to newly created sub requests; as these are later on used

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder as true requests with an internal redirect. This allows for

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder mod_cache et.al. to trap the results of the redirect.

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder [Dirk-Willem van Gulik, Ruediger Pluem]

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder *) mod_ldap: Add support (taking advantage of the new APR capability)

dcbd32289a7bdf1e6edd06c6ab0698c6a9dbf37aChristian Maeder for ldap rebind callback while chasing referrals. This allows direct

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder searches on LDAP servers (in particular MS Active Directory 2003+)

2a731d542987c87ba5ee1d8767d5cd61de8fdfc9Christian Maeder using referrals without the use of the global catalog.

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder PRs 26538, 40268, and 42557 [Paul J. Reder]

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder *) mod_ssl: Added server name indication support (SNI, RFC 4366).

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder can be created with test/make_sni.sh [Dirk-Willem van Gulik].

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

2a731d542987c87ba5ee1d8767d5cd61de8fdfc9Christian Maeder *) ApacheMonitor.exe: Introduce --kill argument for use by the

13731dfbb4b6a31b35dd210e832e920065b6ac45Christian Maeder installer. This will permit the installation tool to remove

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder all running instances before attempting to remove the .exe.

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder [William Rowe]

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder *) mod_ssl: Add support for OCSP validation of client certificates.

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]

2a731d542987c87ba5ee1d8767d5cd61de8fdfc9Christian Maeder

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder *) mod_serf: New module for Reverse Proxying. [Paul Querna]

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder *) core: Add the option to keep aside a request body up to a certain

ba3a7a915740c57c9cb3d2bec46b919fcba12692Christian Maeder size that would otherwise be discarded, to be consumed by filters

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder such as mod_include. When enabled for a directory, POST requests

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder to shtml files can be passed through to embedded scripts as POST

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder requests, rather being downgraded to GET requests. [Graham Leggett]

13731dfbb4b6a31b35dd210e832e920065b6ac45Christian Maeder

215d42ce4d6397a453d5887292bc786e8fa9c1a2Christian Maeder *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder

1aee4aaddde105264c1faf394d88e302c05094ffChristian Maeder *) scoreboard: Correctly declare ap_time_process_request.

f4a2a20e49f41b2afa657e5e64d9e349c7faa091Christian Maeder PR 43789 [Tom Donovan <Tom.Donovan acm.org>]

27785f379d6810811b4e6d23feab18845fde9a98Christian Maeder

27785f379d6810811b4e6d23feab18845fde9a98Christian Maeder *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member

b886e9e5db2098d0112cc4f70aeba232962939ddChristian Maeder from the connection rec, ap_get_scoreboard_worker(proc, thread) will now

27785f379d6810811b4e6d23feab18845fde9a98Christian Maeder provide the unusual legacy lookup. [William Rowe]

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder

2d130d212db7208777ca896a7ecad619a8944971Christian Maeder *) mpm winnt: fix null pointer dereference

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder PR 42572 [Davi Arnaut]

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder

33d042fe6a9eb27a4c48f840b80838f3e7d98e34Christian Maeder *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn

83394c6b6e6de128e71b67c9251ed7a84485d082Christian Maeder parameters to the environment. Improve portability to

fa21fba9ceb1ddf7b3efd54731a12ed8750191d8Christian Maeder EBCDIC machines by using apr_toupper(). [Martin Kraemer]

fa21fba9ceb1ddf7b3efd54731a12ed8750191d8Christian Maeder

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability

0c355dd0b739631ee472f9a656e266be27fa4e64Christian Maeder to authorize an authenticated user via a "require ldap-group X" directive

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder where the user is not in group X, but is in a subgroup contained in X.

fa21fba9ceb1ddf7b3efd54731a12ed8750191d8Christian Maeder PR 42891 [Paul J. Reder]

b49276c9f50038e0bd499ad49f7bd6444566a834Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]

b49276c9f50038e0bd499ad49f7bd6444566a834Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder for SDKs that define LDAP_NO_LIMIT to something other than -1.

c7ec85d1103173e089aa5048fd7afb2f9b505124Klaus Luettich [David Jones <oscaremma gmail.com>]

c7ec85d1103173e089aa5048fd7afb2f9b505124Klaus Luettich

c7ec85d1103173e089aa5048fd7afb2f9b505124Klaus Luettich *) apxs: Enhance -q flag to print all known variables and their values

c7ec85d1103173e089aa5048fd7afb2f9b505124Klaus Luettich when invoked without variable name(s).

c7ec85d1103173e089aa5048fd7afb2f9b505124Klaus Luettich [William Rowe, Sander Temme]

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich

a883cd4d01fe39d23219cf5333425f195be24d8bChristian Maeder *) apxs: Eliminate run-time check for mod_so. PR 40653.

5c69cef4668bbd959d721668313a779126014d1eKlaus Luettich [David M. Lee <dmlee crossroads.com>]

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich

c4ef79587a902327f36277c45a8d91d1e67bd6d5Klaus Luettich *) beos MPM: Create pmain pool and run modules' child_init hooks when

c4ef79587a902327f36277c45a8d91d1e67bd6d5Klaus Luettich entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().

c4ef79587a902327f36277c45a8d91d1e67bd6d5Klaus Luettich [Chris Darroch]

5818d884784339c1b8aa6c6d972bad4eafd36ccbKlaus Luettich

5818d884784339c1b8aa6c6d972bad4eafd36ccbKlaus Luettich *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that

c4ef79587a902327f36277c45a8d91d1e67bd6d5Klaus Luettich cleanups registered in modules' child_init hooks are performed.

c4ef79587a902327f36277c45a8d91d1e67bd6d5Klaus Luettich [Chris Darroch]

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich *) mod_dbd: Stash DBD connections in request_config of initial request

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich only, or else sub-requests and internal redirections may cause

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]

b905126bab9454b89041f92b3c50bb9efc85e427Klaus Luettich

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) Fix issue which could cause error messages to be written to access logs

33d042fe6a9eb27a4c48f840b80838f3e7d98e34Christian Maeder on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

dbe752ee940baae7f9f231f29c62284bb0f90a25Christian Maeder *) The LockFile directive, which specifies the location of

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder the accept() mutex lockfile, is deprecated. Instead, the

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder AcceptMutex directive now takes an optional lockfile

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder location parameter, ala SSLMutex. [Jim Jagielski]

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder

c1bf9cc3bc3729b0bf925be3be123cbb59bea2a6Christian Maeder *) mod_authn_dbd: Export any additional columns queried in the SQL select

c1bf9cc3bc3729b0bf925be3be123cbb59bea2a6Christian Maeder into the environment with the name AUTHENTICATE_<COLUMN>. This brings

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]

96646aed2ae087b942ae23f15bbe729a8f7c43d3Christian Maeder

96646aed2ae087b942ae23f15bbe729a8f7c43d3Christian Maeder *) mod_dbd: Key the storage of prepared statements on the hex string

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder value of server_rec, rather than the server name, as the server name

3a7788e09dd23b364a46c9488cbd1522369113dbChristian Maeder may change (eg when the server name is set) at any time, causing

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder weird behaviour in modules dependent on mod_dbd. [Graham Leggett]

ef67402074be14deb95e4ff564737d5593144130Klaus Luettich

dbe752ee940baae7f9f231f29c62284bb0f90a25Christian Maeder *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]

ef67402074be14deb95e4ff564737d5593144130Klaus Luettich

462d9dc583444aab82732e14a75610684d2dc7e9Christian Maeder *) sendfile_nonblocking() takes the _brigade_ as an argument, gets

c9e197862d9d8ef2585270dd08f5194b3aed4a9dKlaus Luettich the first bucket from the brigade, finds it not to be a FILE

e7e1ab2ac3f1fded8611bb92ae00e8f3b8c693fbKlaus Luettich bucket and barfs. The fix is to pass a bucket rather than a brigade.

ef67402074be14deb95e4ff564737d5593144130Klaus Luettich [Niklas Edmundsson <nikke acc.umu.se>]

1323eba62fc519b068f5aaec4f9d2be05ffabea9Klaus Luettich

a80c28bb8b7a23ccdf7e08d0fe216fc19cc97273Klaus Luettich *) mod_rewrite: support rewritemap by SQL query [Nick Kew]

d784803f9c752667b4fcf7393d698002bedf3f89Klaus Luettich

1323eba62fc519b068f5aaec4f9d2be05ffabea9Klaus Luettich *) ap_get_server_version() has been removed. Third-party modules must

1323eba62fc519b068f5aaec4f9d2be05ffabea9Klaus Luettich now use ap_get_server_banner() or ap_get_server_description().

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder [Jeff Trawick]

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder

462d9dc583444aab82732e14a75610684d2dc7e9Christian Maeder *) All MPMs: Introduce a check_config phase between pre_config and

5d39c60274aaa76506292d2d9e885fccd27e1eabChristian Maeder open_logs, to allow modules to review interdependent configuration

5d39c60274aaa76506292d2d9e885fccd27e1eabChristian Maeder directive values and adjust them while messages can still be logged

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder to the console. Handle relevant MPM directives during this phase

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder and format messages for both the console and the error log, as

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder appropriate. [Chris Darroch]

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder *) mod_proxy: don't URLencode tilde in path component

1f8a7f8343f7df719768d2b1d7e3077ee291a1caChristian Maeder [Stijn Hoop <stijn sandcat.nl>]

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder

aebb0b18fe5e6ba7dd7e4c66a16a905611ef7ba9Christian Maeder *) mpm_winnt: Fix return values from wait_for_many_objects.

404166b9366552e9ec5abb87a37c76ec8a815fb7Klaus Luettich The return value is index to the signaled thread in the

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder creted_threads array. We can not use WAIT_TIMEOUT because

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder his value is defined as 258, thus limiting the MaxThreads

aebb0b18fe5e6ba7dd7e4c66a16a905611ef7ba9Christian Maeder to that value. [Mladen Turk]

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder to circumvent the symbolic link checks imposed by FollowSymLinks and

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]

f2d9352f2999f82c36b4b65535d14a6a40ae5a82Christian Maeder

340706b6c0c6e3dbacdd7003e20e9cab7f9aa765Christian Maeder *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]

43bb71dfe7ec405f563864d57c1cacdaa8ce9a80Christian Maeder configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.

f2d9352f2999f82c36b4b65535d14a6a40ae5a82Christian Maeder The default is none as this is far greater debugging resolution than

340706b6c0c6e3dbacdd7003e20e9cab7f9aa765Christian Maeder the typical administrator is prepared to untangle. [William Rowe]

fdb2d618144159395f7bf8ce3327b3c112a17dd3Till Mossakowski

fa0f3519d71f719d88577b716b1579776b4a2535Christian Maeder *) mod_disk_cache: If possible, check if the size of an object to cache is

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder within the configured boundaries before actually saving data.

99afa6000472f3d291fdf9193ea19d334a58658dChristian Maeder [Niklas Edmundsson <nikke acc.umu.se>]

fa0f3519d71f719d88577b716b1579776b4a2535Christian Maeder

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder *) mod_disk_cache: Delete temporary files if they cannot be renamed to their

c22d75ec3ea1306219d1c09a5b3e8ff04f753ad6Christian Maeder final name. [Davi Arnaut <davi haxent.com.br>]

9c3edf2b283c09d33b2820696886d1ed32fcadc8Christian Maeder

c22d75ec3ea1306219d1c09a5b3e8ff04f753ad6Christian Maeder *) Worker and event MPMs: Remove improper scoreboard updates which were

63f0e65a37b95621334db9ee4ba0cd9d826f5c0fChristian Maeder performed in the event of a fork() failure. [Chris Darroch]

68b77966b2cf7bf2e340bf0fb6b9efc3e6a00467Christian Maeder

99afa6000472f3d291fdf9193ea19d334a58658dChristian Maeder *) Add support for fcgi:// proxies to mod_rewrite.

5bb7eeaca10ea76595229375f907a5a388b7c882Christian Maeder [Markus Schiegl <ms schiegl.com>]

5bb7eeaca10ea76595229375f907a5a388b7c882Christian Maeder

5bb7eeaca10ea76595229375f907a5a388b7c882Christian Maeder *) Remove incorrect comments from scoreboard.h regarding conditional

c59d1c38ef94b4fb1c8d9fda9573bc1e1d2801e7Christian Maeder loading of worker_score structure with mod_status, and remove unused

cd36bffee51c77cdadcb9f916b34fa512e311946Christian Maeder definitions relating to old life_status field.

99afa6000472f3d291fdf9193ea19d334a58658dChristian Maeder [Chris Darroch <chrisd pearsoncmg.com>]

ac0bbbcb2774629bb87986e69cf53d3402c5f575Christian Maeder

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder *) Remove allocation of memory for unused array of lb_score pointers

ddc9315cc0b1f5dd3d8f99a77f1c75064db33b48Christian Maeder in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]

ddc9315cc0b1f5dd3d8f99a77f1c75064db33b48Christian Maeder

5d522dff4d0fabf57dd476d4c3de15d354a89f62Christian Maeder *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.

5d522dff4d0fabf57dd476d4c3de15d354a89f62Christian Maeder [Garrett Rooney, Jim Jagielski, Paul Querna]

5d522dff4d0fabf57dd476d4c3de15d354a89f62Christian Maeder

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder *) Event MPM: Fill in the scoreboard's tid field. PR 38736.

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder [Chris Darroch <chrisd pearsoncmg.com>]

8410667510a76409aca9bb24ff0eda0420088274Christian Maeder

b1f59a4ea7c96f4c03a4d7cfcb9c5e66871cfbbbChristian Maeder *) mod_charset_lite: Remove Content-Length when output filter can

e62d49c0dc2893da75faad896bd135e2e9a7087bKlaus Luettich invalidate it. Warn when input filter can invalidate it.

e62d49c0dc2893da75faad896bd135e2e9a7087bKlaus Luettich [Jeff Trawick]

e62d49c0dc2893da75faad896bd135e2e9a7087bKlaus Luettich

e62d49c0dc2893da75faad896bd135e2e9a7087bKlaus Luettich *) Authz: Add the new module mod_authn_core that will provide common

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich authn directives such as 'AuthType', 'AuthName'. Move the directives

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich into mod_authn_core. [Brad Nicholes]

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich *) Authz: Move the directives 'Order', 'Allow', 'Deny' and 'Satisfy'

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich into the new module mod_access_compat which can be loaded to provide

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich support for these directives.

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich [Brad Nicholes]

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich *) Authz: Move the 'Require' directive from the core module as well as

36f63902db2b3463faa9f59912ad106e2d5aaa24Klaus Luettich add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich logic into the authorization processing. [Brad Nicholes]

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich *) Authz: Add the new module mod_authz_core which acts as the

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich authorization provider vector and contains common authz

ac43fa22d2d3f91a17674ac164cba3cf39a17795Klaus Luettich directives. [Brad Nicholes]

ac43fa22d2d3f91a17674ac164cba3cf39a17795Klaus Luettich

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers *) Authz: Renamed mod_authz_dbm authz providers from 'group' and

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle

18c1d987ce5818ecf0bfc8af3f43aed2ce86e1eaChristian Maeder host-based access control provided by mod_authz_host and invoked

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder through the 'Require' directive. [Brad Nicholes]

00ccf62b4570513e965eb156ab5916ec816c5d2bDominik Luecke

00ccf62b4570513e965eb156ab5916ec816c5d2bDominik Luecke *) Authz: Convert all of the authz modules from hook based to

00ccf62b4570513e965eb156ab5916ec816c5d2bDominik Luecke provider based. [Brad Nicholes]

05a206508bc898f87fe6ab6e069814df3c29d303Dominik Luecke

05a206508bc898f87fe6ab6e069814df3c29d303Dominik Luecke *) mod_cache: Add CacheMinExpire directive to set the minimum time in

05a206508bc898f87fe6ab6e069814df3c29d303Dominik Luecke seconds to cache a document.

b891e9ad7dd358a7df24b59bf00d51515078497cChristian Maeder [Brian Akins <brian.akins turner.com>, Ruediger Pluem]

b891e9ad7dd358a7df24b59bf00d51515078497cChristian Maeder

5ad5dffe06818a13e1632b1119fbca7881085fc1Dominik Luecke *) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

1c9a63e4f7c6879f51fe0f32154a9116f2c126dbChristian Maeder *) Fix typo in ProxyStatus syntax error message.

6fe9628743562678acf97d6730ebcfee5e9e50c2Christian Maeder [Christophe Jaillet <christophe.jaillet wanadoo.fr>]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

b891e9ad7dd358a7df24b59bf00d51515078497cChristian Maeder *) Asynchronous write completion for the Event MPM. [Brian Pane]

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) Added an End-Of-Request bucket type. The logging of a request and

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder the freeing of its pool are now done when the EOR bucket is destroyed.

fb328c4f646dd3dd78a9391c5cb58450a3dd0aa9Klaus Luettich This has the effect of delaying the logging until right after the last

3b06e23643a9f65390cb8c1caabe83fa7e87a708Till Mossakowski of the response is sent; ap_core_output_filter() calls the access logger

3b06e23643a9f65390cb8c1caabe83fa7e87a708Till Mossakowski indirectly when it destroys the EOR bucket. [Brian Pane]

3b06e23643a9f65390cb8c1caabe83fa7e87a708Till Mossakowski

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) Rewrite of logresolve support utility: IPv6 addresses are now supported

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder and the format of statistical output has changed. [Colm MacCarthaigh]

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

61fa0ac06ede811c7aad54ec4c4202346727368eChristian Maeder *) Added new connection states for handler and write completion

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder [Brian Pane]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder [Justin Erenkrantz]

d23b0cc79c0d204e6ec758dff8d0ba71c9f693f7Christian Maeder

e96a0bf4040fd789339958c01f145c5057d26db6René Wagner *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich allowing string-valued client certificate attributes to be used for

f04e8f3ff56405901be968fd4c6e9769239f1a9bKlaus Luettich access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")

abf2487c3aece95c371ea89ac64319370dcb6483Klaus Luettich [Martin Kraemer, David Reid]

81c15526a787941b48b02ae8786782f9fb578801Christian Maeder

b891e9ad7dd358a7df24b59bf00d51515078497cChristian Maeder [Apache 2.1.0-dev includes those bug fixes and changes with the

b891e9ad7dd358a7df24b59bf00d51515078497cChristian Maeder Apache 2.2.xx tree as documented, and except as noted, below.]

e39a1626bee36d6ad13a2c0014a80ef179a65bcbChristian Maeder

e39a1626bee36d6ad13a2c0014a80ef179a65bcbChristian MaederChanges with Apache 2.2.x and later:

e39a1626bee36d6ad13a2c0014a80ef179a65bcbChristian Maeder

e7757995211bd395dc79d26fe017d99375f7d2a6Christian Maeder *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup

83394c6b6e6de128e71b67c9251ed7a84485d082Christian Maeder

6dc9bc98d0854fe2e3dd3bfc4275096a0c28ee1cChristian MaederChanges with Apache 2.0.x and later:

8b0f493ae42bad8b94918cc0957f1af57096cda4Felix Reckers

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian Maeder

5191fa24c532d1f67e7a642e9aece65efb8a0975Christian MaederChanges with Apache 1.3.x and later:

3e61f574717499939bd8e0ff538ea9e7b72d4e2dKlaus Luettich

a80c28bb8b7a23ccdf7e08d0fe216fc19cc97273Klaus Luettich *) http://svn.apache.org/viewvc/httpd/httpd/branches/1.3.x/src/CHANGES?view=markup

82e29b77f0ef4cccd7ed734692c5e1e93dbbc645Christian Maeder