CHANGES revision a7584fbbf39ae6a78586ed038d80c31b14ce5461
0N/A -*- coding: utf-8 -*-
2362N/AChanges with Apache 2.5.0
0N/A
0N/A *) mod_proxy: Ensure we don't attempt to amend a table we are iterating
0N/A through, ensuring that all headers listed by Connection are removed.
0N/A [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
2362N/A
0N/A *) core: apachectl -S prints wildcard name-based virtual hosts twice.
2362N/A PR54948 [Eric Covener]
0N/A
0N/A *) mod_proxy: Reject invalid values for Max-Forwards. [Graham Leggett,
0N/A Co-Advisor <coad measurement-factory.com>]
0N/A
0N/A *) mod_cache: If a 304 response indicates an entity not currently cached, then
0N/A the cache MUST disregard the response and repeat the request without the
0N/A conditional. [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
0N/A
0N/A *) mod_proxy: Fix seg-faults when using the global pool on threaded
0N/A MPMs [Thomas Eckert <thomas.r.w.eckert gmail.com>, Jim Jagielski]
0N/A
2362N/A *) mod_proxy: Ensure network errors detected by the proxy are returned as
2362N/A 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
2362N/A compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
0N/A [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
0N/A
0N/A *) mod_cache: Ensure that we don't attempt to replace a cached response
2080N/A with an older response as per RFC2616 13.12. [Graham Leggett, Co-Advisor
0N/A <coad measurement-factory.com>]
0N/A
0N/A *) core, mod_cache: Ensure RFC2616 compliance in ap_meets_conditions()
0N/A with weak validation combined with If-Range and Range headers. Break
0N/A out explicit conditional header checks to be useable elsewhere in the
0N/A server. Ensure weak validation RFC compliance in the byteranges filter.
0N/A Ensure RFC validation compliance when serving cached entities. PR 16142
0N/A [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
0N/A
0N/A *) core: Add the ability to do explicit matching on weak and strong ETags
0N/A as per RFC2616 Section 13.3.3. [Graham Leggett, Co-Advisor
0N/A <coad measurement-factory.com>]
0N/A
0N/A *) mod_cache: Ensure that updated responses to HEAD requests don't get
0N/A mistakenly paired with a previously cached body. Ensure that any existing
0N/A body is removed when a HEAD request is cached. [Graham Leggett,
0N/A Co-Advisor <coad measurement-factory.com>]
0N/A
0N/A *) mod_cache: Honour Cache-Control: no-store in a request. [Graham Leggett]
2736N/A
2736N/A *) mod_cache: RFC2616 14.9.3 The s-maxage directive also implies the
0N/A semantics of the proxy-revalidate directive. [Graham Leggett]
0N/A
0N/A *) mod_cache: Make sure that contradictory entity headers present in a 304
0N/A Not Modified response are caught and cause the entity to be removed.
0N/A [Graham Leggett]
0N/A
0N/A *) mod_cache: Make sure Vary processing handles multivalued Vary headers and
0N/A multivalued headers referred to via Vary. [Graham Leggett]
0N/A
0N/A *) mod_cache: When serving from cache, only the last header of a multivalued
0N/A header was taken into account. Fixed. [Graham Leggett]
0N/A
0N/A *) mod_cache: Ignore response headers specified by no-cache=header and
0N/A private=header as specified by RFC2616 14.9.1 What is Cacheable. Ensure
0N/A that these headers are still processed when multiple Cache-Control
0N/A headers are present in the response. PR 54706 [Graham Leggett,
0N/A Yann Ylavic <ylavic.dev gmail.com>]
0N/A
0N/A *) mod_cache: Invalidate cached entities in response to RFC2616 Section
0N/A 13.10 Invalidation After Updates or Deletions. PR 15868 [Graham
0N/A Leggett]
0N/A
0N/A *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
0N/A [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
0N/A <alejandro.alvarez.ayllon cern.ch>]
0N/A
0N/A *) mod_dav: Do not segfault on PROPFIND with a zero length DBM.
0N/A PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
0N/A
0N/A *) mod_dav: Do not fail PROPPATCH when prop namespace is not known.
0N/A PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
0N/A
0N/A *) mod_dav: When a PROPPATCH attempts to remove a non-existent dead
0N/A property on a resource for which there is no dead property in the same
0N/A namespace httpd segfaults. PR 52559 [Diego Santa Cruz
0N/A <diego.santaCruz spinetix.com>]
0N/A
0N/A *) mod_dav: PROPPATCH delete (svn propdel) silently discards errors.
0N/A PR 53525 [Arwin Arni <arwin collab.net>]
0N/A
2736N/A *) mod_dav: Ensure URI is correctly uriencoded on return. PR 54611
2736N/A [Timothy Wood <tjw omnigroup.com>]
0N/A
0N/A *) mod_dav: Sending a If or If-Match header with an invalid ETag doesn't
0N/A result in a 412 Precondition Failed. PR 54610 [Timothy Wood
0N/A <tjw omnigroup.com>]
0N/A
0N/A *) mod_dav: Make sure that when we prepare an If URL for Etag comparison,
0N/A we compare unencoded paths. PR 53910 [Timothy Wood <tjw omnigroup.com>]
0N/A
0N/A *) core, mod_ssl: Lift the restriction that prevents mod_ssl taking
0N/A full advantage of the event MPM. Enable the ability for a module
0N/A to reverse the sense of a poll event from a read to a write or vice
2467N/A versa. [Graham Leggett]
0N/A
0N/A *) htpasswd: Add -v option to verify a password. [Stefan Fritsch]
0N/A
0N/A *) htpasswd, htdbm: Fix password generation. PR 54735. [Stefan Fritsch]
0N/A
0N/A *) mod_dav: Improve error handling in dav_method_put(), add new
0N/A dav_join_error() function. PR 54145. [Ben Reser <ben reser.org>]
0N/A
0N/A *) mod_auth_digest: Fix crashes if shm initialization failed. [Stefan
0N/A Fritsch]
0N/A
0N/A *) mod_ldap: LDAP connections used for authentication were not respecting
1040N/A LDAPConnectionPoolTimeout. PR 54587
0N/A
0N/A *) core: ap_rgetline_core now pulls from r->proto_input_filters.
2080N/A
0N/A *) mod_proxy_html: process parsed comments immediately.
1040N/A Fixes bug where parsed comments may be lost. [Nick Kew]
1040N/A
1040N/A *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
1040N/A
1040N/A *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
1040N/A HTML/XHTML [Nick Kew]
1040N/A
1040N/A *) core: Add option to add valgrind support. Use it to reduce false positive
1040N/A warnings in mod_ssl. [Stefan Fritsch]
0N/A
1040N/A *) mod_lua: Add bindings for apr_dbd/mod_dbd database access
1040N/A [Daniel Gruno]
1040N/A
1040N/A *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
1040N/A Cache the result of the most recent password hash verification for every
keep-alive connection. This saves some expensive calculations.
[Stefan Fritsch]
*) http: Remove support for Request-Range header sent by Navigator 2-3 and
MSIE 3. [Stefan Fritsch]
*) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
conformance or to only log the found problems. [Stefan Fritsch]
*) core: Correctly parse an IPv6 literal host specification in an absolute
URL in the request line. [Stefan Fritsch]
*) mod_ssl: add support for subjectAltName-based host name checking
in proxy mode. PR 54030. [Kaspar Brand]
*) mpm_event: Check that AsyncRequestWorkerFactor is not negative. PR 54254.
[Jackie Zhang <jackie qq zhang gmail com>]
*) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
*) EventOpt MPM
*) core: Add LogLevelOverride directive that allows to override the
loglevel for clients from certain IPs. This also works for things
like the SSL handshake where <If> LogLevel ... </If> is evaluated
too late. [Stefan Fritsch]
*) core: Add new directive Warning to issue warnings from a configuration
file. Both Warning and Error now generate a timestamped log message.
[Fabien Coelho]
*) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
variables. [Stefan Fritsch]
*) core: New directive RegisterHttpMethod for registering non-standard
HTTP methods. [Stefan Fritsch]
*) core: New directive HttpProtocol which allows to disable HTTP/0.9
support. [Stefan Fritsch]
*) mod_allowhandlers: New module to forbid specific handlers for specific
directories. [Stefan Fritsch]
*) configure: Fix processing of --disable-FEATURE for various features.
[Jeff Trawick]
*) mod_systemd: New module, for integration with systemd on Linux.
[Jan Kaluza <jkaluza redhat.com>]
*) mod_cache_socache: New cache implementation backed by mod_socache
that replaces mod_mem_cache removed from httpd v2.2. [Graham
Leggett]
*) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
to be used without patches to httpd core. [Jeff Trawick]
*) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
filters in Lua [Daniel Gruno]
*) WinNT MPM: Store pid and generation for each thread in scoreboard
to allow tracking of threads from exiting children via mod_status
or other such mechanisms. [Jeff Trawick]
*) mod_ssl: Catch missing or mismatched client cert/key pairs with
SSLProxyMachineCertificateFile/Path directives. PR 52212.
[Keith Burdis <keith burdis.org>, Joe Orton]
*) mod_lua: Allow scripts handled by the lua-script handler to return
a status code to the client (such as a 302 or a 500) [Daniel Gruno]
*) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
rather than throwing an internal server error. [Daniel Gruno]
*) mod_lua: Add functions r:flush and r:sendfile as well as additional
request information to the request_rec structure. [Daniel Gruno]
*) mod_lua: Add a server scope for Lua states, which creates a pool of
states with managable minimum and maximum size. [Daniel Gruno]
*) core: Add post_perdir_config hook.
[Steinar Gunderson <sgunderson bigfoot.com>]
*) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
URIs to Lua scripts and functions using regular expressions.
[Daniel Gruno]
*) mod_lua: Add new directive LuaCodeCache for controlling in-memory
caching of lua scripts. [Daniel Gruno]
*) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
- APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
- core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
mutexes (Mutex)
- mod_cache: thundering herd lock directory
- mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
- mod_ldap: shared memory cache
- mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
[Jeff Trawick]
*) suexec: Add --enable-suexec-capabilites support on Linux, to use
setuid/setgid capability bits rather than a setuid root binary.
[Joe Orton]
*) suexec: Add support for logging to syslog as an alternative to logging
to a file; configure --without-suexec-logfile --with-suexec-syslog.
[Joe Orton]
*) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
[Matthew Steele <mdsteele google.com>]
*) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
be compiled by the build compiler instead of the host compiler.
Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
PR 51257. [Guenter Knauf]
*) core: In maintainer mode, replace apr_palloc with a version that
initializes the allocated memory with non-zero values, except if
AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
*) mod_policy: Add a new testing module to help server administrators
enforce a configurable level of protocol compliance on their
servers and application servers behind theirs. [Graham Leggett]
*) mod_firehose: Add a new debugging module able to record traffic
passing through the server in such a way that connections and/or
requests be reconstructed and replayed. [Graham Leggett]
*) mod_noloris
*) APREQ
*) Simple MPM
*) mod_serf
[Apache 2.5.0-dev includes those bug fixes and changes with the
Apache 2.4.xx tree as documented below, except as noted.]
Changes with Apache 2.4.x and later:
*) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
Changes with Apache 2.2.x and later:
*) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
Changes with Apache 2.0.x and later:
*) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup