CHANGES revision ad98610a7a84dfe5c967bf48470c0ef9788eab75
f743002678eb67b99bbc29fee116b65d9530fec0wrowe -*- coding: utf-8 -*-
80833bb9a1bf25dcf19e814438a4b311d2e1f4cffuankgChanges with Apache 2.5.0
fb1985a97912b25ec6564c73e610a31e5fc6e25fcovener *) core: Fail startup if the argument to ServerTokens is unrecognized.
cf8b985ec0a63b15a1c8f2990d96009a11e0d68ecovener *) mod_log_forensic: Don't log a spurious "-" if a request has been rejected
cf8b985ec0a63b15a1c8f2990d96009a11e0d68ecovener before mod_log_forensic could attach its id to it. [Stefan Fritsch]
6bbcfe3fb8489d6e87770d37d97b7a5cd4fabceeylavic *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
6bbcfe3fb8489d6e87770d37d97b7a5cd4fabceeylavic variables. [Stefan Fritsch]
6bbcfe3fb8489d6e87770d37d97b7a5cd4fabceeylavic *) mod_rewrite: Stop mergeing RewriteBase down to subdirectories
420f251223a59477a211837382d0622efd42a6bdylavic unless new option 'RewriteOptions MergeBase' is configured.
420f251223a59477a211837382d0622efd42a6bdylavic PR 53963. [Eric Covener]
6502b7b32f980cc2093bb3ebce37e5e4dc68fba4ylavic *) mod_session_dbd: fix a segmentation fault in the function dbd_remove.
6502b7b32f980cc2093bb3ebce37e5e4dc68fba4ylavic PR 53452. [<rebanerebane gmail com>, Reimo Rebane]
c85eff31536e6bfef1537b2435564d48665435d3rpluem *) core: New directive RegisterHttpMethod for registering non-standard
c85eff31536e6bfef1537b2435564d48665435d3rpluem HTTP methods. [Stefan Fritsch]
c85eff31536e6bfef1537b2435564d48665435d3rpluem *) mod_xml2enc: Fix problems with charset conversion altering the
c2051ade794269f23194ec06842dc225d082763arpluem Content-Length. [Micha Lenk <micha lenk info>]
c2051ade794269f23194ec06842dc225d082763arpluem *) core: New directive HttpProtocol which allows to disable HTTP/0.9
c1a63b8fad09c419c1a64f75993feb8a343a6801ylavic support. [Stefan Fritsch]
c1a63b8fad09c419c1a64f75993feb8a343a6801ylavic *) mod_allowhandlers: New module to forbid specific handlers for specific
e6b4bd1113567627ab6bb6c6a7105e1e01a7d889jailletc directories. [Stefan Fritsch]
e466c40e1801982602ee0200c9e8b61cc148742djailletc *) core: Be more correct about rejecting directives that cannot work in <If>
e466c40e1801982602ee0200c9e8b61cc148742djailletc sections. [Stefan Fritsch]
457468b82e59d01eba00dd9d0817309c8f5e414ejim *) core: Fix directives like LogLevel that need to know if they are invoked
457468b82e59d01eba00dd9d0817309c8f5e414ejim at virtual host context or in Directory/Files/Location/If sections to
04983e3bd1754764eec7d6bb772fe3b0bf391771jorton work properly in If sections that are not in a Directory/Files/Location.
04983e3bd1754764eec7d6bb772fe3b0bf391771jorton [Stefan Fritsch]
15660979a30d251681463de2e0584853890082accovener *) mod_cache_disk: Resolve errors while revalidating disk-cached files on
15660979a30d251681463de2e0584853890082accovener Windows ("...rename tempfile to datafile failed..."). PR 38827
15660979a30d251681463de2e0584853890082accovener [Eric Covener]
cfd9415521847b2f9394fad04fb701cfb955f503rjung *) mod_proxy: Add ability to configure the sticky session separator.
cfd9415521847b2f9394fad04fb701cfb955f503rjung PR 53893. [<inu inusasha de>, Jim Jagielski]
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe *) mod_proxy_ftp: Fix segfaults on IPv4 requests to hosts with DNS AAAA records.
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe PR 40841. [Andrew Rucker Jones <arjones simultan dyndns org>,
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe <ast domdv de>, Jim Jagielski]
28c31fb73c1264bd1d0ff932573677030b024c7dwrowe *) ap_expr: Add req_novary function that allows HTTP header lookups
8491e0600f69b0405e156ea8a419653c065c645bcovener without adding the name to the Vary header. [Stefan Fritsch]
63b9f1f5880391261705f696d7d65507bbe9ace3covener *) mod_ssl: Change default for SSLCompression to off, as compression
63b9f1f5880391261705f696d7d65507bbe9ace3covener causes security issues in most setups. (The so called "CRIME" attack).
87a26948305eab2bab8a4fb3f2a21f6725055790covener [Stefan Fritsch]
87a26948305eab2bab8a4fb3f2a21f6725055790covener *) syslog logging: Remove stray ", referer" at the end of some messages.
4efd27d2bd53a819a194f8a942f8881c1927755eylavic [Jeff Trawick]
4efd27d2bd53a819a194f8a942f8881c1927755eylavic *) configure: Fix processing of --disable-FEATURE for various features.
4efd27d2bd53a819a194f8a942f8881c1927755eylavic [Jeff Trawick]
983528026996668ea295be95aedb9c7a346af470ylavic *) "Iterate" directives: Report an error if no arguments are provided.
983528026996668ea295be95aedb9c7a346af470ylavic [Jeff Trawick]
249ab52ef73a2b33446ae07904e3526b57251411ylavic *) htpasswd, htdbm: Optionally read passwords from stdin, as more
249ab52ef73a2b33446ae07904e3526b57251411ylavic secure alternative to -b. PR 40243. [Adomas Paltanavicius <adomas
1f0836d4b1a203c7b375daae691beb95f6036205ylavic paltanavicius gmail com>, Stefan Fritsch]
1f0836d4b1a203c7b375daae691beb95f6036205ylavic *) htpasswd, htdbm: Add support for bcrypt algorithm (requires
3b11e6ec1c5273d6a8968460db650e7ca99c49c0ylavic apr-util 1.5 or higher). PR 49288. [Stefan Fritsch]
3b11e6ec1c5273d6a8968460db650e7ca99c49c0ylavic *) htpasswd, htdbm: Put full 48bit of entropy into salt, improve
01402a0fbec8bd11f6c10d8ef9c9cceac68bb787ylavic error handling. Add some of htpasswd's improvements to htdbm,
01402a0fbec8bd11f6c10d8ef9c9cceac68bb787ylavic e.g. warn if password is truncated by crypt(). [Stefan Fritsch]
49dacedb6c387b786b7911082ff35121a45f414bcovener *) ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output
49dacedb6c387b786b7911082ff35121a45f414bcovener to more accurately report the negotiated protocol. PR 53916.
49dacedb6c387b786b7911082ff35121a45f414bcovener [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand]
3c990331fc6702119e4f5b8ba9eae3021aea5265jim *) mod_systemd: New module, for integration with systemd on Linux.
3c990331fc6702119e4f5b8ba9eae3021aea5265jim [Jan Kaluza <jkaluza redhat.com>]
3c990331fc6702119e4f5b8ba9eae3021aea5265jim *) core: ErrorDocument now works for requests without a Host header.
fc42512879dd0504532f52fe5d0d0383dda96a1eniq PR 48357. [Jeff Trawick]
fc42512879dd0504532f52fe5d0d0383dda96a1eniq *) --with-module: Fix failure to integrate them into some existing
0451df5dc50fa5d8b3e07d92ee6a92e36a1181a5niq module directories. PR 40097. [Jeff Trawick]
0451df5dc50fa5d8b3e07d92ee6a92e36a1181a5niq *) mod_headers: New params: %l for load averages, %i for an
da0442c0440caef34706e2c2f3af05cb65921cc0jailletc idle percentage rating of httpd, and %b for a busy percentage
983528026996668ea295be95aedb9c7a346af470ylavic rating. [Jim Jagielski]
da0442c0440caef34706e2c2f3af05cb65921cc0jailletc *) core: New functions to obtain load parameters: ap_get_sload()
06b8f183140c8e02e0974e938a05078b511d1603covener and ap_get_loadavg(). [Jim Jagielski]
06b8f183140c8e02e0974e938a05078b511d1603covener *) mod_cache_socache: New cache implementation backed by mod_socache
15890c9306ba98f6fc243e15a3c4778ddc7d773erpluem that replaces mod_mem_cache removed from httpd v2.2. [Graham
259878293a997ff49f5ddfc53d3739cbdc25444ecovener *) mod_auth_form: Support the expr parser in the
259878293a997ff49f5ddfc53d3739cbdc25444ecovener AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and
15890c9306ba98f6fc243e15a3c4778ddc7d773erpluem AuthFormLogoutLocation directives. [Graham Leggett]
b54b024c06a19926832d77d40ba35ad8c41e4d3dminfrin *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
b54b024c06a19926832d77d40ba35ad8c41e4d3dminfrin to be used without patches to httpd core. [Jeff Trawick]
65967d05f839dbf27cf91d91fa79585eeae19660minfrin *) mod_proxy: Allow for persistence of local changes (via the
65967d05f839dbf27cf91d91fa79585eeae19660minfrin balancer-manager) between graceful and normal restarts.
65967d05f839dbf27cf91d91fa79585eeae19660minfrin [Jim Jagielski]
8152945ae46857b170cb227e79bb799f4fc7710dminfrin *) mod_slotmem: New provider function, fgrab(), which forces an
8152945ae46857b170cb227e79bb799f4fc7710dminfrin allocation of a slot. [Jim Jagielski]
75f5c2db254c0167a0e396254460de09b775d203trawick *) mod_proxy_balancer: The nonce is only derived from the UUID iff
75f5c2db254c0167a0e396254460de09b775d203trawick not set via the 'nonce' balancer param. [Jim Jagielski]
11f1871b90149f8af3bf4e884dcc404436686967ylavic *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
11f1871b90149f8af3bf4e884dcc404436686967ylavic filters in Lua [Daniel Gruno]
11f1871b90149f8af3bf4e884dcc404436686967ylavic *) core: Apply length limit when logging Status header values.
4f0358189bfa57b8e75bd6b94db264302a8f336amrumph [Jeff Trawick, Chris Darroch]
4f0358189bfa57b8e75bd6b94db264302a8f336amrumph *) mod_ssl: Match wildcard SSL certificate names in proxy mode.
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick PR 53006. [Joe Orton]
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick *) WinNT MPM: Store pid and generation for each thread in scoreboard
5716f9c6daa92dde5f2f9d11ed63f7c9549c223atrawick to allow tracking of threads from exiting children via mod_status
54d750a84a175d8e338880514d440773eb986b50covener or other such mechanisms. [Jeff Trawick]
54d750a84a175d8e338880514d440773eb986b50covener *) mod_ssl: Catch missing or mismatched client cert/key pairs with
54d750a84a175d8e338880514d440773eb986b50covener SSLProxyMachineCertificateFile/Path directives. PR 52212.
54d750a84a175d8e338880514d440773eb986b50covener [Keith Burdis <keith burdis.org>, Joe Orton]
54d750a84a175d8e338880514d440773eb986b50covener *) mod_lua: Allow scripts handled by the lua-script handler to return
54d750a84a175d8e338880514d440773eb986b50covener a status code to the client (such as a 302 or a 500) [Daniel Gruno]
54d750a84a175d8e338880514d440773eb986b50covener *) mod_proxy_ajp: Fix crash in packet dump code when logging
54d750a84a175d8e338880514d440773eb986b50covener with LogLevel trace7 or trace8. PR 53730. [Rainer Jung]
4e30ef014533a7e93c92d88306291f5e49c9692ftrawick *) mod_cache: Wrong content type and character set when
83b50288fa7d306324bba68832011ea08f5c7832covener mod_cache serves stale content because of a proxy error.
5f066f496cd9f20a2a701255bc67d44e7cb46daetrawick PR 53539. [Rainer Jung, Ruediger Pluem]
5f066f496cd9f20a2a701255bc67d44e7cb46daetrawick *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
2e15620d724fb8e3a5be183b917359a2fd6e9468covener rather than throwing an internal server error. [Daniel Gruno]
2e15620d724fb8e3a5be183b917359a2fd6e9468covener *) mod_lua: Add functions r:flush and r:sendfile as well as additional
2e15620d724fb8e3a5be183b917359a2fd6e9468covener request information to the request_rec structure. [Daniel Gruno]
1b988c41ee505962781d110a3e4c2c90f1ea0aa4covener *) mod_lua: Add a server scope for Lua states, which creates a pool of
1b988c41ee505962781d110a3e4c2c90f1ea0aa4covener states with managable minimum and maximum size. [Daniel Gruno]
b8efdc95bec9cf089aa1be0bfd07d46aa1137a7acovener *) core: Add post_perdir_config hook.
b8efdc95bec9cf089aa1be0bfd07d46aa1137a7acovener [Steinar Gunderson <sgunderson bigfoot.com>]
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd URIs to Lua scripts and functions using regular expressions.
f06e7c4b1bce6b6491e5de0b7998d3f5696b293dchrisd [Daniel Gruno]
179565be4043d7e5f9161aa75271fa0a001866d9covener *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
179565be4043d7e5f9161aa75271fa0a001866d9covener caching of lua scripts. [Daniel Gruno]
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
fce4949fb0b309a5744afcd503c6ed2d35621ee2covener mutexes (Mutex)
7b7430e701e9a31ce809da7c220bb8dfcf68c86etrawick - mod_cache: thundering herd lock directory
7b7430e701e9a31ce809da7c220bb8dfcf68c86etrawick - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
7b7430e701e9a31ce809da7c220bb8dfcf68c86etrawick - mod_ldap: shared memory cache
ccc20788c1e5fc973f36df634399c89acb70deaejerenkrantz - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
ccc20788c1e5fc973f36df634399c89acb70deaejerenkrantz [Jeff Trawick]
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
273e512f20f262e5e2aa8e0e83371d1929fb76adjkaluza *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
efe780dcf13b2b95effabf897d694d8f23feac74trawick for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin Christophe Renou, Peter Sylvester]
fe83f60b41477b14a37edcfcd1f7f5c5a1ebfe44minfrin *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza ap_pregcomp() abort if out of memory. This raises the minimum PCRE
993d1261a278d7322bccef219101220b7b4fb8c5jkaluza requirement to version 6.0. PR 53284. [Stefan Fritsch]
ba050a6f942b9fa0e81ed73437588005c569655ccovener *) suexec: Add --enable-suexec-capabilites support on Linux, to use
ba050a6f942b9fa0e81ed73437588005c569655ccovener setuid/setgid capability bits rather than a setuid root binary.
ba050a6f942b9fa0e81ed73437588005c569655ccovener [Joe Orton]
135ddda3a989215d2bedbcf1529bfb269c3eda23niq *) suexec: Add support for logging to syslog as an alternative to logging
135ddda3a989215d2bedbcf1529bfb269c3eda23niq to a file; configure --without-suexec-logfile --with-suexec-syslog.
135ddda3a989215d2bedbcf1529bfb269c3eda23niq [Joe Orton]
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
001a44c352f89c9ec332ffd3e0a6927dcd19432chumbedooh [Matthew Steele <mdsteele google.com>]
793214f67dede32edfd9ee96c664ead04d175cbbjfclere *) various modules, rotatelogs: Replace use of apr_file_write() with
cc5a4a08dc9783fcbc52ce86f11e01c281a43810minfrin apr_file_write_full() to prevent incomplete writes. PR 53131.
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
33124689065ade0dfc8c54d8ebb734f9439cb89btrawick *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener be compiled by the build compiler instead of the host compiler.
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
9b0076ddd1103e5fa9c1f9bafde4b06ce244fbaecovener PR 51257. [Guenter Knauf]
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza *) core: In maintainer mode, replace apr_palloc with a version that
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza initializes the allocated memory with non-zero values, except if
249d09d51808cb7981af99762c3b3736ca126cd5jkaluza AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
56589be3d7a3e9343370df240010c6928cc78b39jkaluza *) mod_policy: Add a new testing module to help server administrators
56589be3d7a3e9343370df240010c6928cc78b39jkaluza enforce a configurable level of protocol compliance on their
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc servers and application servers behind theirs. [Graham Leggett]
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc *) mod_firehose: Add a new debugging module able to record traffic
77ca16c5676da23155311e13cee61e7eaba9fa3ejailletc passing through the server in such a way that connections and/or
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick requests be reconstructed and replayed. [Graham Leggett]
f87299dab99bc04b51a6b8cad51b6795db862c0atrawick *) mod_noloris
4d12805e6c18253040223ea637acd6b3b3c18f60jorton *) Simple MPM
e5d909f2b06bd880fb3675cd49363df981caa631trawick *) mod_serf
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener [Apache 2.5.0-dev includes those bug fixes and changes with the
a4df2cd1e1391575a327c2a90ba4315f805a0a78covener Apache 2.4.xx tree as documented below, except as noted.]
cb666b29f81df1d11d65002250153353568021fccovenerChanges with Apache 2.4.x and later:
6a80c3c6f4b8ea7ba5e89402b8b779b09ce020e0covener *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
6a80c3c6f4b8ea7ba5e89402b8b779b09ce020e0covenerChanges with Apache 2.2.x and later:
75a230a728338d84dcfe81edd375352f34de22d0covener *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
1f50dc34ae069adeed20b2986e5ffdefa5c410e0covenerChanges with Apache 2.0.x and later: