CHANGES revision 9f8f1913ecffb74c74e1136a1dfa5ec6ea7452fb
e59faf65ce864fe95dc00f5d52b8323cdbd0608aTimo Sirainen -*- coding: utf-8 -*-
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo SirainenChanges with Apache 2.3.0
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen[ When backported to 2.2.x, remove entry from this file ]
5314b66fca6b2cf6b749d296a30a5eb039e0e9baTimo Sirainen *) mod_auth_digest: Detect during startup when AuthDigestProvider
5bda841ca9e2ddd90702dc7e2a15326e4068066eTimo Sirainen is configured to use an incompatible provider via AuthnProviderAlias.
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen PR 45196 [Eric Covener]
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen [Tom Donovan]
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen *) mod_proxy_http: Do not forward requests with 'Expect: 100-continue' to
88b9f9eb91da632d3e941fe4276f8ace03205b25Timo Sirainen known HTTP/1.0 servers. Return 'Expectation failed' (417) instead.
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen [Ruediger Pluem]
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen *) core, authn/z: Determine registered authn/z providers directly in
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen ap_setup_auth_internal(), which allows optional functions that just
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen wrapped ap_list_provider_names() to be removed from authn/z modules.
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen [Chris Darroch]
2ce5b1d19cba4654239116a34e3ad9d5b6af8551Timo Sirainen *) authn/z: Convert common provider version strings to macros.
f90c6ff1ae3d5675abfc6ae05574924fda8dca9eTimo Sirainen [Chris Darroch]
f90c6ff1ae3d5675abfc6ae05574924fda8dca9eTimo Sirainen *) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
2ce5b1d19cba4654239116a34e3ad9d5b6af8551Timo Sirainen *) configure: Don't reject libtool 2.x
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen PR 44817 [Arfrever Frehtes Taifersar Arahesis <Arfrever.FTA gmail.com>]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) core: When testing for slash-terminated configuration paths in
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen ap_location_walk(), don't look past the start of an empty string
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen such as that created by a <Location ""> directive.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Chris Darroch]
33502e55a9bf4cafcd184ca9b114c126e420f856Timo Sirainen *) core, mod_proxy: If a kept_body is present, it becomes safe for
4ca9910d9db31a68d9d501150045cfd4bb1e2ac7Timo Sirainen subrequests to support message bodies. Make sure that safety
33502e55a9bf4cafcd184ca9b114c126e420f856Timo Sirainen checks within the core and within the proxy are not triggered
f94e1eb89b911e7bef709a25580590c3fff594acTimo Sirainen when kept_body is present. This makes it possible to embed
f94e1eb89b911e7bef709a25580590c3fff594acTimo Sirainen proxied POST requests within mod_include. [Graham Leggett]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_auth_form: Make sure the input filter stack is properly set
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen up before reading the login form. Make sure the kept body filter
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen is correctly inserted to ensure the body can be read a second
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen time safely should the authn be successful. [Graham Leggett,
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen Ruediger Pluem]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_request: Insert the KEPT_BODY filter via the insert_filter
bd49b2e35dfa08753e89bef12a694978599d0fc0Timo Sirainen hook instead of during fixups. Add a safety check to ensure the
bd49b2e35dfa08753e89bef12a694978599d0fc0Timo Sirainen filters cannot be inserted more than once. [Graham Leggett,
bd49b2e35dfa08753e89bef12a694978599d0fc0Timo Sirainen Ruediger Pluem]
bd49b2e35dfa08753e89bef12a694978599d0fc0Timo Sirainen *) core: Do not allow Options ALL if not all options are allowed to be
bd49b2e35dfa08753e89bef12a694978599d0fc0Timo Sirainen overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) ap_cache_cacheable_headers_out() will (now) always
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen merge an error heaeders _before_ clearing them and _before_
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen merging in the actual entity headers and doing normal
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen hop-by-hop cleansing. [Dirk-Willem van Gulik].
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) cache: retire ap_cache_cacheable_hdrs_out() which was used
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen for both in- and out-put headers; and replace it by a single
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen ap_cache_cacheable_headers() wrapped in a in- and out-put
88b9f9eb91da632d3e941fe4276f8ace03205b25Timo Sirainen specific ap_cache_cacheable_headers_in()/out(). The latter
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen which will also merge error and ensure content-type. To keep
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen cache modules consistent with ease. This API change bumps
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen up the minor MM by one [Dirk-Willem van Gulik].
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_rewrite: Allow Cookie option to set secure and HttpOnly flags.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen PR 44799 [Christian Wenz <christian wenz.org>]
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen *) Move the KeptBodySize directive, kept_body filters and the
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen ap_parse_request_body function out of the http module and into a
4ee00532a265bdfb38539d811fcd12d51210ac35Timo Sirainen new module called mod_request, reducing the size of the core.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Graham Leggett]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) mod_dbd: Handle integer configuration directive parameters with a
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen dedicated function.
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen *) Change the directives within the mod_session* modules to be valid
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen both inside and outside the location/directory sections, as
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen suggested by wrowe. [Graham Leggett]
de62ce819d59a529530da4b57be1b8d6dad13d6bTimo Sirainen *) mod_auth_form: Add a module capable of allowing end users to log
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen in using an HTML form, storing the credentials within mod_session.
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen [Graham Leggett]
678d0463849ba777106eb7875f27db07a5d8e3dfTimo Sirainen *) Add a function to the http filters that is able to parse an HTML
3b55c4f0e2ab51e2607556dde8d36360296b29e4Timo Sirainen form request with the type of application/x-www-form-urlencoded.
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen [Graham Leggett]
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen *) mod_session_crypto: Initialise SSL in the post config hook.
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen [Ruediger Pluem, Graham Leggett]
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen *) mod_session_dbd: Add a session implementation capable of storing
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen session information in a SQL database via the dbd interface. Useful
009d6d90b33bc7f64fa8251ac392cc87a835b833Timo Sirainen for sites where session privacy is important. [Graham Leggett]
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) mod_session_crypto: Add a session encoding implementation capable
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen of encrypting and decrypting sessions wherever they may be stored.
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen Introduces a level of privacy when sessions are stored on the
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen browser. [Graham Leggett]
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen *) mod_session_cookie: Add a session implementation capable of storing
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen session information within cookies on the browser. Useful for high
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen volume sites where server bound sessions are too resource intensive.
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen [Graham Leggett]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_session: Add a generic session interface to unify the different
2d28870ca63f2d92e315c43dced03b162afc5006Timo Sirainen attempts at saving persistent sessions across requests.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Graham Leggett]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) core, authn/z: Avoid calling access control hooks for internal requests
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen with configurations which match those of initial request. Revert to
88b9f9eb91da632d3e941fe4276f8ace03205b25Timo Sirainen original behaviour (call access control hooks for internal requests
ff057a48c1762ad9c2a87b14f0692b388bdeccc0Timo Sirainen with URIs different from initial request) if any access control hooks or
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen providers are not registered as permitting this optimization.
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen Introduce wrappers for access control hook and provider registration
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen which can accept additional mode and flag data. [Chris Darroch]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) Introduced ap_expr API for expression evaluation.
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen This is adapted from mod_include, which is the first module
c37098f8ce6d512ba41f09564d04ed25720f0a77Timo Sirainen to use the new API.
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen *) mod_authz_dbd: When redirecting after successful login/logout per
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen AuthzDBDRedirectQuery, do not report authorization failure, and use
917f556f14686178586b4b8c8184c5b52db987f1Timo Sirainen first row returned by database query instead of last row.
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen [Chris Darroch]
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen *) mod_ldap: Correctly return all requested attribute values
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen when some attributes have a null value.
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen PR 44560 [Anders Kaseorg <anders kaseorg.com>]
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen *) core: check symlink ownership if both FollowSymlinks and
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen SymlinksIfOwnerMatch are set [Nick Kew]
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) core: fix origin checking in SymlinksIfOwnerMatch
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen 'most' set for '--enable-modules' and '--enable-shared-mods'. Include
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen contain public function declarations which are useful for
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen third party module authors. PR 42431 [Dirk-Willem van Gulik].
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_dir, mod_negotiation: pass the output filter information
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen to newly created sub requests; as these are later on used
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen as true requests with an internal redirect. This allows for
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen mod_cache et.al. to trap the results of the redirect.
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen [Dirk-Willem van Gulik, Ruediger Pluem]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_ldap: Add support (taking advantage of the new APR capability)
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen for ldap rebind callback while chasing referrals. This allows direct
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen searches on LDAP servers (in particular MS Active Directory 2003+)
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen using referrals without the use of the global catalog.
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen PRs 26538, 40268, and 42557 [Paul J. Reder]
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) Support chroot on Unix-family platforms
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen PR 43596 [Dimitar Pashev <mitko banksoft-bg.com>]
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) mod_ssl: Added server name indication support (SNI, RFC 4366).
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen can be created with test/make_sni.sh [Dirk-Willem van Gulik].
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen *) ApacheMonitor.exe: Introduce --kill argument for use by the
f26ef7a3a562dc42a1e9a4dde546bd30df3241e8Timo Sirainen installer. This will permit the installation tool to remove
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen all running instances before attempting to remove the .exe.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [William Rowe]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_ssl: Add support for OCSP validation of client certificates.
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) mod_serf: New module for Reverse Proxying. [Paul Querna]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) core: Add the option to keep aside a request body up to a certain
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen size that would otherwise be discarded, to be consumed by filters
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen such as mod_include. When enabled for a directory, POST requests
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen to shtml files can be passed through to embedded scripts as POST
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen requests, rather being downgraded to GET requests. [Graham Leggett]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) scoreboard: Correctly declare ap_time_process_request.
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
c8296ac1ed68ed5c5168de545b76f9b27fc76d35Timo Sirainen from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen provide the unusual legacy lookup. [William Rowe]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) mpm winnt: fix null pointer dereference
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen PR 42572 [Davi Arnaut]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
3281669db44d09a087a203201248abbc81b3cc1aTimo Sirainen parameters to the environment. Improve portability to
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen EBCDIC machines by using apr_toupper(). [Martin Kraemer]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen to authorize an authenticated user via a "require ldap-group X" directive
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen where the user is not in group X, but is in a subgroup contained in X.
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen PR 42891 [Paul J. Reder]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen for SDKs that define LDAP_NO_LIMIT to something other than -1.
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen [David Jones <oscaremma gmail.com>]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) apxs: Enhance -q flag to print all known variables and their values
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen when invoked without variable name(s).
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen [William Rowe, Sander Temme]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) apxs: Eliminate run-time check for mod_so. PR 40653.
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen [David M. Lee <dmlee crossroads.com>]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) beos MPM: Create pmain pool and run modules' child_init hooks when
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen [Chris Darroch]
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen cleanups registered in modules' child_init hooks are performed.
2e5d624013c30633e8ded148d338ce46c321a995Timo Sirainen [Chris Darroch]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) mod_dbd: Stash DBD connections in request_config of initial request
62bf16bd8bb79e308e64110ae8d0b2a55a4c1490Timo Sirainen only, or else sub-requests and internal redirections may cause
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) Fix issue which could cause error messages to be written to access logs
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) The LockFile directive, which specifies the location of
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen the accept() mutex lockfile, is deprecated. Instead, the
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen AcceptMutex directive now takes an optional lockfile
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen location parameter, ala SSLMutex. [Jim Jagielski]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) mod_authn_dbd: Export any additional columns queried in the SQL select
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen into the environment with the name AUTHENTICATE_<COLUMN>. This brings
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen *) mod_dbd: Key the storage of prepared statements on the hex string
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen value of server_rec, rather than the server name, as the server name
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen may change (eg when the server name is set) at any time, causing
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen the first bucket from the brigade, finds it not to be a FILE
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen bucket and barfs. The fix is to pass a bucket rather than a brigade.
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen [Niklas Edmundsson <nikke acc.umu.se>]
b07cb607ae8864e7784787a9db96880db1f50e52Timo Sirainen *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen *) ap_get_server_version() has been removed. Third-party modules must
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen now use ap_get_server_banner() or ap_get_server_description().
03f4c5f3502801f5b318f464cc75313a88558805Timo Sirainen [Jeff Trawick]
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen *) All MPMs: Introduce a check_config phase between pre_config and
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen open_logs, to allow modules to review interdependent configuration
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen directive values and adjust them while messages can still be logged
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen to the console. Handle relevant MPM directives during this phase
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen and format messages for both the console and the error log, as
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen appropriate. [Chris Darroch]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_proxy: don't URLencode tilde in path component
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Stijn Hoop <stijn sandcat.nl>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mpm_winnt: Fix return values from wait_for_many_objects.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen The return value is index to the signaled thread in the
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen creted_threads array. We can not use WAIT_TIMEOUT because
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen his value is defined as 258, thus limiting the MaxThreads
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen to that value. [Mladen Turk]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen to circumvent the symbolic link checks imposed by FollowSymLinks and
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen The default is none as this is far greater debugging resolution than
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen the typical administrator is prepared to untangle. [William Rowe]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_disk_cache: If possible, check if the size of an object to cache is
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen within the configured boundaries before actually saving data.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Niklas Edmundsson <nikke acc.umu.se>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) mod_cache: Convert all values to seconds before comparing them when
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen checking whether to send a Warning header for a stale response.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen PR 39713. [Owen Taylor <otaylor redhat.com>]
39ed514f9d401b3cb589595c6a2f532050254d77Timo Sirainen *) mod_disk_cache: Delete temporary files if they cannot be renamed to their
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen final name. [Davi Arnaut <davi haxent.com.br>]
9b6eb5a72ffe61579e24c6ae4c6ce3d4e9104b95Timo Sirainen *) Worker and event MPMs: Remove improper scoreboard updates which were
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen performed in the event of a fork() failure. [Chris Darroch]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Add support for fcgi:// proxies to mod_rewrite.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Markus Schiegl <ms schiegl.com>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Remove incorrect comments from scoreboard.h regarding conditional
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen loading of worker_score structure with mod_status, and remove unused
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen definitions relating to old life_status field.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Chris Darroch <chrisd pearsoncmg.com>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Remove allocation of memory for unused array of lb_score pointers
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen [Garrett Rooney, Jim Jagielski, Paul Querna]
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen *) Event MPM: Fill in the scoreboard's tid field. PR 38736.
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen [Chris Darroch <chrisd pearsoncmg.com>]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) mod_charset_lite: Remove Content-Length when output filter can
dce232dfbb2244555299dffb3618a4724748d260Timo Sirainen invalidate it. Warn when input filter can invalidate it.
37f96554a5734557cd454691d163e602d36384b4Timo Sirainen [Jeff Trawick]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) Authz: Add the new module mod_authn_core that will provide common
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen authn directives such as 'AuthType', 'AuthName'. Move the directives
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen into mod_authn_core. [Brad Nicholes]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) Authz: Move the directives 'Order', 'Allow', 'Deny' and 'Satisfy'
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen into the new module mod_access_compat which can be loaded to provide
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen support for these directives.
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen [Brad Nicholes]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) Authz: Move the 'Require' directive from the core module as well as
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'
39ed514f9d401b3cb589595c6a2f532050254d77Timo Sirainen and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen logic into the authorization processing. [Brad Nicholes]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) Authz: Add the new module mod_authz_core which acts as the
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen authorization provider vector and contains common authz
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen directives. [Brad Nicholes]
5314b66fca6b2cf6b749d296a30a5eb039e0e9baTimo Sirainen *) Authz: Renamed mod_authz_dbm authz providers from 'group' and
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]
031d075daf75b74b286711c1b6f64c3ae70e541bTimo Sirainen *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen host-based access control provided by mod_authz_host and invoked
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen through the 'Require' directive. [Brad Nicholes]
6380f2bc729a03b328793e8ad6ba7587620fa184Timo Sirainen *) Authz: Convert all of the authz modules from hook based to
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo Sirainen provider based. [Brad Nicholes]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) mod_cache: Add CacheMinExpire directive to set the minimum time in
37f96554a5734557cd454691d163e602d36384b4Timo Sirainen seconds to cache a document.
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen [Brian Akins <brian.akins turner.com>, Ruediger Pluem]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) Fix typo in ProxyStatus syntax error message.
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen [Christophe Jaillet <christophe.jaillet wanadoo.fr>]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) Asynchronous write completion for the Event MPM. [Brian Pane]
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) Added an End-Of-Request bucket type. The logging of a request and
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen the freeing of its pool are now done when the EOR bucket is destroyed.
a6de00f8d3f65335149f6fe828fca9da6328d42aTimo Sirainen This has the effect of delaying the logging until right after the last
a6de00f8d3f65335149f6fe828fca9da6328d42aTimo Sirainen of the response is sent; ap_core_output_filter() calls the access logger
37f96554a5734557cd454691d163e602d36384b4Timo Sirainen indirectly when it destroys the EOR bucket. [Brian Pane]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) Rewrite of logresolve support utility: IPv6 addresses are now supported
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen and the format of statistical output has changed. [Colm MacCarthaigh]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) Added new connection states for handler and write completion
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen [Justin Erenkrantz]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,
b07cb607ae8864e7784787a9db96880db1f50e52Timo Sirainen allowing string-valued client certificate attributes to be used for
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen [Martin Kraemer, David Reid]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen [Apache 2.1.0-dev includes those bug fixes and changes with the
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo Sirainen Apache 2.2.xx tree as documented, and except as noted, below.]
5b6470e0e2ef4012430cdeca7d9b89c1278a0ed4Timo SirainenChanges with Apache 2.2.x and later:
8d587838c414c48a331f0b54cd7ffd97e5024abdTimo Sirainen *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
f94e1eb89b911e7bef709a25580590c3fff594acTimo SirainenChanges with Apache 2.0.x and later:
f94e1eb89b911e7bef709a25580590c3fff594acTimo Sirainen *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup
57f4445a46726a17bfe78b0964dd301a6ccb40ecTimo SirainenChanges with Apache 1.3.x and later: