CHANGES revision ae1981fc94adf2b231e2d0e15d2f895b2138c969
a4544a5a0e622ef69e38641f87ab1b5685e05911Phill Cunnington -*- coding: utf-8 -*-
8af80418ba1ec431c8027fa9668e5678658d3611Allan FosterChanges with Apache 2.3.7
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_ldap: Update LDAPTrustedClientCert to consistently be a per-directory
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster setting only, matching most of the documentation and examples.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 46541 [Paul Reder, Eric Covener]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_ldap: LDAPTrustedClientCert now accepts CA_DER/CA_BASE64 argument
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster types previously allowed only in LDAPTrustedGlobalCert. [Eric Covener]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_negotiation: Preserve query string over multiviews negotiation.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster This buglet was fixed for type maps in 2.2.6, but the same issue
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster affected multiviews and was overlooked.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 33112 [Joergen Thomsen <apache jth.net>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_ldap: Eliminate a potential crash with multiple LDAPTrustedClientCert
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster when some are not password-protected. [Eric Covener]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Fix startup segfault when the Mutex directive is used but no loaded
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster modules use httpd mutexes. PR 48787. [Jeff Trawick]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Proxy: get the headers right in a HEAD request with
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster ProxyErrorOverride, by checking for an overridden error
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster before not after going into a catch-all code path.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 41646. [Nick Kew, Stuart Children]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) support/rotatelogs: Support the simplest log rotation case, log
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster truncation. Useful when the log is being processed in real time
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster using a command like tail. [Graham Leggett]
6c56bf78246f18c9c14c17ef3ed65065ce178ffdTom Rumsey *) support/htcacheclean: Teach it how to write a pid file (modelled on
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott httpd's writing of a pid file) so that it becomes possible to run
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott more than one instance of htcacheclean on the same machine.
bf2a56fd7e5b3bb37378e87e32829a01402d27f0Tom Rumsey [Graham Leggett]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) Log command line on startup, so there's a record of command line
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott arguments like -f. PR 48752. [Dan Poirier]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) Introduce mod_reflector, a handler capable of reflecting POSTed
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott request bodies back within the response through the output filter
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott stack. Can be used to turn an output filter into a web service.
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott [Graham Leggett]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) mod_proxy_http: Make sure that when an ErrorDocument is served
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott from a reverse proxied URL, that the subrequest respects the status
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott of the original request. This brings the behaviour of proxy_handler
6309b849c2de831a0eaed9c27b5794bed9bd8fd1Neil Madden in line with default_handler. PR 47106. [Graham Leggett]
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott *) Support wildcards in both the directory and file components of
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott the path specified by the Include directive. [Graham Leggett]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_proxy, mod_proxy_http: Support remote https proxies
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster by using HTTP CONNECT. PR 19188.
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey [Philippe Dutrueux <lilas evidian.com>, Rainer Jung]
8af80418ba1ec431c8027fa9668e5678658d3611Allan FosterChanges with Apache 2.3.6
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) worker: Don't report server has reached MaxClients until it has.
1d407e39b7d8f68d9a2b1e178f35fab037d9835aRobert Wapshott Add message when server gets within MinSpareThreads of MaxClients.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 46996. [Dan Poirier]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_session: Session expiry was being initialised, but not updated
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster on each session save, resulting in timed out sessions when there
c64331fa7c7a38e49ed3b4194ccdffd41af0ff02Peter Major should not have been. Fixed. [Graham Leggett]
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott *) mod_log_config: Add the R option to log the handler used within the
26304a2a091af368cfc16c977bcce6d17195360aTom Rumsey request. [Christian Folini <christian.folini netnea com>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Allow fine control over the removal of Last-Modified and ETag headers
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster within the INCLUDES filter, making it possible to cache responses if
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster desired. Fix the default value of the SSIAccessEnable directive.
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Add new UnDefine directive to undefine a variable. PR 35350.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Make ap_pregsub(), used by AliasMatch and friends, use the same syntax
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey for regex backreferences as mod_rewrite and mod_include: Remove the use
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey of '&' as an alias for '$0' and allow to escape any character with a
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey backslash. PR 48351. [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_authnz_ldap: If AuthLDAPCharsetConfig is set, also convert the
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey password to UTF-8. PR 45318.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Johannes Müller <joh_m gmx.de>, Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) ab: Fix calculation of requests per second in HTML output. PR 48594.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_authnz_ldap: Failures to map a username to a DN, or to check a user
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey password now result in an informational level log entry instead of
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey warning level. [Eric Covener]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom RumseyChanges with Apache 2.3.5
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Ensure each subrequest has a shallow copy of headers_in so that the
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey parent request headers are not corrupted. Elimiates a problematic
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey optimization in the case of no request body. PR 48359
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Jake Scott, William Rowe, Ruediger Pluem]
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott *) Turn static function get_server_name_for_url() into public
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott ap_get_server_name_for_url() and use it where appropriate. This
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott fixes mod_rewrite generating invalid URLs for redirects to IPv6
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott literal addresses. [Stefan Fritsch]
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey *) mod_ldap: Introduce new config option LDAPTimeout to set the timeout
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey for LDAP operations like bind and search. [Stefan Fritsch]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_proxy, mod_proxy_ftp: Move ProxyFtpDirCharset from mod_proxy to
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott mod_proxy_ftp. [Takashi Sato]
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott *) mod_proxy, mod_proxy_connect: Move AllowCONNECT from mod_proxy to
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott mod_proxy_connect. [Takashi Sato]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_cache: Do an exact match of the keys defined by
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott CacheIgnoreURLSessionIdentifiers against the querystring instead of
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott a partial match. PR 48401.
35ab1c5bca11317474fe12bdd8d22c17cdaf2697Robert Wapshott [Dodou Wang <wangdong.08 gmail.com>, Ruediger Pluem]
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey *) mod_proxy_balancer: Fix crash in balancer-manager. [Rainer Jung]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Core HTTP: disable keepalive when the Client has sent
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster Expect: 100-continue
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott but we respond directly with a non-100 response.
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott Keepalive here led to data from clients continuing being treated as
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott a new request.
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott PR 47087 [Nick Kew]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) Core: reject NULLs in request line or request headers.
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott PR 43039 [Nick Kew]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) Core: (re)-introduce -T commandline option to suppress documentroot
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott check at startup.
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott PR 41887 [Jan van den Berg <janvdberg gmail.com>]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) mod_autoindex: support XHTML as equivalent to HTML in IndexOptions,
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott ScanHTMLTitles, ReadmeName, HeaderName
6309b849c2de831a0eaed9c27b5794bed9bd8fd1Neil Madden PR 48416 [Dmitry Bakshaev <dab18 izhnet.ru>, Nick Kew]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) Proxy: Fix ProxyPassReverse with relative URL
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott Derived (slightly erroneously) from PR 38864 [Nick Kew]
c6c8bcf74a1e796c167156af1cc1a5d95c67aceaRobert Wapshott *) mod_headers: align Header Edit with Header Set when used on Content-Type
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 48422 [Cyril Bonté <cyril.bonte free.fr>, Nick Kew>]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_headers: Enable multi-match-and-replace edit option
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell PR 47066 [Nick Kew]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_filter: enable it to act on non-200 responses.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 48377 [Nick Kew]
be367fb48c4c5a05214aab48aea9f09703b63a97Craig McDonnellChanges with Apache 2.3.4
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Replace AcceptMutex, LockFile, RewriteLock, SSLMutex, SSLStaplingMutex,
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster and WatchdogMutexPath with a single Mutex directive. Add APIs to
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster simplify setup and user customization of APR proc and global mutexes.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell (See util_mutex.h.) Build-time setting DEFAULT_LOCKFILE is no longer
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster respected; set DEFAULT_REL_RUNTIMEDIR instead. [Jeff Trawick]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) http_core: KeepAlive no longer accepts other than On|Off.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Takashi Sato]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav: Remove errno from dav_error interface. Calls to dav_new_error()
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey and dav_new_error_tag() must be adjusted to add an apr_status_t parameter.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Jeff Trawick]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_authnz_ldap: Add AuthLDAPBindAuthoritative to allow Authentication to
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster try other providers in the case of an LDAP bind failure.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 46608 [Justin Erenkrantz, Joe Schaefer, Tony Stevenson]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Build: fix --with-module to work as documented
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 43881 [Gez Saunders <gez.saunders virgin.net>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan FosterChanges with Apache 2.3.3
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) SECURITY: CVE-2009-3095 (cve.mitre.org)
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell mod_proxy_ftp: sanity check authn credentials.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Stefan Fritsch <sf fritsch.de>, Joe Orton]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) SECURITY: CVE-2009-3094 (cve.mitre.org)
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell mod_proxy_ftp: NULL pointer dereference on error paths.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Stefan Fritsch <sf fritsch.de>, Joe Orton]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_ssl: enable support for ECC keys and ECDH ciphers. Tested against
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell OpenSSL 1.0.0b3. [Vipul Gupta <vipul.gupta sun.com>, Sander Temme]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav: Include uri when logging a PUT error due to connection abort.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell PR 38149. [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav: Return 409 instead of 500 for a LOCK request if the parent
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell resource does not exist or is not a collection. PR 43465. [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav_fs: Return 409 instead of 500 for Litmus test case copy_nodestcoll
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster (a COPY request where the parent of the destination resource does not
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell exist). PR 39299. [Stefan Fritsch]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_dav_fs: Don't delete the whole file if a PUT with content-range failed.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell PR 42896. [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav_fs: Make PUT create files atomically and no longer destroy the
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell old file if the transfer aborted. PR 39815. [Paul Querna, Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dav_fs: Remove inode keyed locking as this conflicts with atomically
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell creating files. On systems with inode numbers, this is a format change of
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell the DavLockDB. The old DavLockDB must be deleted on upgrade.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_log_config: Make ${cookie}C correctly match whole cookie names
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell instead of substrings. PR 28037. [Dan Franklin <dan dan-franklin.com>,
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell Stefan Fritsch]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) vhost: A purely-numeric Host: header should not be treated as a port.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 44979 [Nick Kew]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ldap: Avoid 500 errors with "Unable to set LDAP_OPT_REFHOPLIMIT option to 5"
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey when built against openldap by using SDK LDAP_OPT_REFHOPLIMIT defaults unless
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey LDAPReferralHopLimit is explicitly configured.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Eric Covener]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_charset_lite: Honor 'CharsetOptions NoImplicitAdd'.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Eric Covener]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: Add support for OCSP Stapling. PR 43822.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Dr Stephen Henson <shenson oss-institute.org>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_socache_shmcb: Allow parens in file name if cache size is given.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster Fixes SSLSessionCache directive mis-parsing parens in pathname.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 47945. [Stefan Fritsch]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) htpasswd: Improve out of disk space handling. PR 30877. [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) htpasswd: Use MD5 hash by default on all platforms. [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_sed: Reduce memory consumption when processing very long lines.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell PR 48024 [Basant Kumar Kukreja <basant.kukreja sun.com>]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) ab: Fix segfault in case the argument for -n is a very large number.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell PR 47178. [Philipp Hagemeister <oss phihag.de>]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) Allow ProxyPreserveHost to work in <Proxy> sections. PR 34901.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Stefan Fritsch]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) configure: Fix THREADED_MPMS so that mod_cgid is enabled again
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster for worker MPM. [Takashi Sato]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_dav: Provide a mechanism to obtain the request_rec and pathname
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey from the dav_resource. [Jari Urpalainen <jari.urpalainen nokia.com>,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Brian France <brian brianfrance.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Build: Use install instead of cp if available on installing
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster modules to avoid segmentation fault. PR 47951. [hirose31 gmail.com]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_cache: correctly consider s-maxage in cacheability
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey decisions. [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_logio/core: Report more accurate byte counts in mod_status if
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey mod_logio is loaded. PR 25656. [Stefan Fritsch]
c5b669842423d36fc543ddd3ea318bbae4231ecfTom Rumsey *) mod_ldap: If LDAPSharedCacheSize is too small, try harder to purge
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey some cache entries and log a warning. Also increase the default
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell LDAPSharedCacheSize to 500000. This is a more realistic size suitable
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey for the default values of 1024 for LdapCacheEntries/LdapOpCacheEntries.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 46749. [Stefan Fritsch]
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford *) mod_rewrite: Make sure that a hostname:port isn't fully qualified if
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey the request is a CONNECT request. [Bill Zajac <billz consultla.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_cache: Teach CacheEnable and CacheDisable to work from within a
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Location section, in line with how ProxyPass works. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_reqtimeout: New module to set timeouts and minimum data rates for
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster receiving requests from the client. [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) core: Fix potential memory leaks by making sure to not destroy
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey bucket brigades that have been created by earlier filters.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) core, mod_deflate, mod_sed: Reduce memory usage by reusing bucket
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey brigades in several places. [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_cache: Fix uri_meets_conditions() so that CacheEnable will
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey match by scheme, or by a wildcarded hostname. PR 40169
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Peter Grandi <pg_asf asf.for.sabi.co.uk>, Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) suxec: Allow to log an error if exec fails by setting FD_CLOEXEC
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey on the log file instead of closing it. PR 10744. [Nicolas Rachinsky]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_mime: Make RemoveType override the info from TypesConfig.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 38330. [Stefan Fritsch]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_cache: Introduce the option to run the cache from within the
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey normal request handler, and to allow fine grained control over
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell where in the filter chain content is cached. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) core: Treat timeout reading request as 408 error, not 400.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Log 408 errors in access log as was done in Apache 1.3.x.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 39785 [Nobutaka Mantani <nobutaka nobutaka.org>,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Stefan Fritsch <sf fritsch.de>, Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: Reintroduce SSL_CLIENT_S_DN, SSL_CLIENT_I_DN, SSL_SERVER_S_DN,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey SSL_SERVER_I_DN back to the environment variables to be set by mod_ssl.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_disk_cache: don't cache incomplete responses, per RFC 2616, 13.8.
8a888dac872ea5d7dd9ce4a0739c4065d544f275Tom Rumsey PR15866. [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) ab: ab segfaults in verbose mode on https sites
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR46393. [Ryan Niebur]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_dav: Allow other modules to become providers and add resource types
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford to the DAV response. [Jari Urpalainen <jari.urpalainen nokia.com>,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Brian France <brian brianfrance.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_dav: Allow other modules to add things to the DAV or Allow headers
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey of an OPTIONS request. [Jari Urpalainen <jari.urpalainen nokia.com>,
8a888dac872ea5d7dd9ce4a0739c4065d544f275Tom Rumsey Brian France <brian brianfrance.com>]
6309b849c2de831a0eaed9c27b5794bed9bd8fd1Neil Madden *) core: Lower memory usage of core output filter.
8a888dac872ea5d7dd9ce4a0739c4065d544f275Tom Rumsey [Stefan Fritsch <sf sfritsch.de>]
8a888dac872ea5d7dd9ce4a0739c4065d544f275Tom Rumsey *) mod_mime: Detect invalid use of MultiviewsMatch inside Location and
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey LocationMatch sections. PR47754. [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_request: Make sure the KeptBodySize directive rejects values
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey that aren't valid numbers. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_session_crypto: Sanity check should the potentially encrypted
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey session cookie be too short. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_session.c: Prevent a segfault when session is added but not
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey configured. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_auth_digest: Fail server start when nonce count checking
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey is configured without shared memory, or md5-sess algorithm is
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey configured. [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_proxy_connect: The connect method doesn't work if the client is
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey connecting to the apache proxy through an ssl socket. Fixed.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR29744. [Brad Boyer, Mark Cave-Ayland, Julian Gilbey, Fabrice Durand,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey David Gence, Tim Dodge, Per Gunnar Hans, Emmanuel Elango,
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster Kevin Croft, Rudolf Cardinal]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: The error message when SSLCertificateFile is missing should
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey at least give the name or position of the problematic virtual host
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey definition. [Stefan Fritsch sf sfritsch.de]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_auth_digest: Fix null pointer when qop=none. [Dan Poirier]
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey *) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_headers: generalise the envclause to support expression
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey evaluation with ap_expr parser [Nick Kew]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_cache: Introduce the thundering herd lock, a mechanism to keep
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey the flood of requests at bay that strike a backend webserver as
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey a cached entity goes stale. [Graham Leggett]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_auth_digest: Fix usage of shared memory and re-enable it.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 16057 [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Preserve Port information over internal redirects
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Proxy: unable to connect to a backend is SERVICE_UNAVAILABLE,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey rather than BAD_GATEWAY or (especially) NOT_FOUND.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 46971 [evanc nortel.com]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Various modules: Do better checking of pollset operations in order to
32b36b012d0b3ab28eecb13555b3925237c2c5a9Peter Major avoid segmentation faults if they fail. PR 46467
c64331fa7c7a38e49ed3b4194ccdffd41af0ff02Peter Major [Stefan Fritsch <sf sfritsch.de>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_autoindex: Correctly create an empty cell if the description
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) ab: Fix broken error messages after resolver or connect() failures.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Jeff Trawick]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) SECURITY: CVE-2009-1890 (cve.mitre.org)
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Fix a potential Denial-of-Service attack against mod_proxy in a
bf2a56fd7e5b3bb37378e87e32829a01402d27f0Tom Rumsey reverse proxy configuration, where a remote attacker can force a
bf2a56fd7e5b3bb37378e87e32829a01402d27f0Tom Rumsey proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
bf2a56fd7e5b3bb37378e87e32829a01402d27f0Tom Rumsey *) SECURITY: CVE-2009-1191 (cve.mitre.org)
bf2a56fd7e5b3bb37378e87e32829a01402d27f0Tom Rumsey mod_proxy_ajp: Avoid delivering content from a previous request which
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey failed to send a request body. PR 46949 [Ruediger Pluem]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) htdbm: Fix possible buffer overflow if dbm database has very
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey long values. PR 30586 [Dan Poirier]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) core: Return APR_EOF if request body is shorter than the length announced
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey by the client. PR 33098 [ Stefan Fritsch <sf sfritsch.de>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_suexec: correctly set suexec_enabled when httpd is run by a
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey non-root user and may have insufficient permissions.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 42175 [Jim Radford <radford blackbean.org>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey type. PR 45107. [Michael Ströder <michael stroeder.com>,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_proxy_http: fix case sensitivity checking transfer encoding
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_alias: ensure Redirect issues a valid URL.
a90aba9cbcbb8e7fe95e45590d853959efe0d354Tom Rumsey PR 44020 [HÃ¥kon Stordahl <hakon stordahl.org>]
95cd88252d8ce7d506cf8b1dccdc4d531de5dab6Tom Rumsey *) mod_dir: add FallbackResource directive, to enable admin to specify
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey an action to happen when a URL maps to no file, without resorting
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell to ErrorDocument or mod_rewrite. PR 47184 [Nick Kew]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_cgid: Do not leak the listening Unix socket file descriptor to the
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey CGI process. PR 47335 [Kornél Pál <kornelpal gmail.com>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_rewrite: Remove locking for writing to the rewritelog.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 46942 [Dan Poirier <poirier pobox.com>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_alias: check sanity in Redirect arguments.
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford *) mod_proxy_http: fix Host: header for literal IPv6 addresses.
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford *) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford defined session identifiers encoded in the URL when caching.
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford [Ruediger Pluem]
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford *) mod_rewrite: Fix the error string returned by RewriteRule.
d552ef9965b495ec6fa5f89b12ad638ad4cc87f4Tony Bamford RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster argument of RewriteRule was not started with "[" or not ended with "]".
4e28a378d7cafffd7988c4c3783c820db42ffb9dAndrew Forrest PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) Windows: Fix usage message.
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell [Rainer Jung]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) apachectl: When passing through arguments to httpd in
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster non-SysV mode, use the "$@" syntax to preserve arguments.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster [Eric Covener]
786bac66d599daf6355e45e64da84c846a857552Craig McDonnell *) mod_dbd: add DBDInitSQL directive to enable SQL statements to
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster be run when a connection is opened. PR 46827
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster [Marko Kevac <mkevac gmail.com>]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_cgid: Improve handling of long AF_UNIX socket names (ScriptSock).
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster PR 47037. [Jeff Trawick]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster protocol. [Mladen Turk]
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster *) mod_proxy_ajp: Forward remote port information by default.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster [Rainer Jung]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Allow MPMs to be loaded dynamically, as with most other modules. Use
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey --enable-mpms-shared={list|"all"} to enable. This required changes to
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey the MPM interfaces. Removed: mpm.h, mpm_default.h (as an installed
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey header), APACHE_MPM_DIR, MPM_NAME, ap_threads_per_child,
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey ap_max_daemons_limit, ap_my_generation, etc. ap_mpm_query() can't be
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey called until after the register-hooks phase. [Jeff Trawick]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey to enable stricter checking of remote server certificates.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Ruediger Pluem]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) ab: Fix a 100% CPU loop on platforms where a failed non-blocking connect
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey returns EINPROGRESS and a subsequent poll() returns only POLLERR.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey Observed on HP-UX. [Eric Covener]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Remove broken support for BeOS, OS/2, TPF, and even older platforms such
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey as A/UX, Next, and Tandem. [Jeff Trawick]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_proxy_ftp: Add ProxyFtpListOnWildcard directive to allow files with
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey globbing characters to be retrieved instead of converted into a
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey directory listing. PR 46789 [Dan Poirier <poirier pobox.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) Provide ap_retained_data_create()/ap_retained_data_get() for preservation
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey of module state across unload/load. [Jeff Trawick]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_substitute: Fix a memory leak. PR 44948
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Dan Poirier <poirier pobox.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom RumseyChanges with Apache 2.3.2
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_mime_magic: Fix detection of compressed content. [Rainer Jung]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey HTML injections and HTTP response splitting. PR 46837.
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey [Geoff Keating <geoffk apple.com>]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_ssl: add support for type-safe STACK constructs in OpenSSL
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey development HEAD. PR 45521. [Kaspar Brand, Sander Temme]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) ab: Fix maintenance of the pollset to resolve EALREADY errors
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey with kqueue (BSD/OS X) and excessive CPU with event ports (Solaris).
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey PR 44584. Use APR_POLLSET_NOCOPY for better performance with some
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey pollset implementations. [Jeff Trawick]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_disk_cache: The module now turns off sendfile support if
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey 'EnableSendfile off' is defined globally. [Lars Eilebrecht]
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey *) mod_deflate: Adjust content metadata before bailing out on 304
a19a421277791c670d5a4ebcd6d7af7de159d271Tom Rumsey responses so that the metadata does not differ from 200 response.
8af80418ba1ec431c8027fa9668e5678658d3611Allan Foster [Roy T. Fielding]
a media type has not been configured via mime.types, AddType,
[Ryan Phillips <ryan-apache trolocsis.com>]
[<tlhackque yahoo.com>]
*) prefork: Fix child process hang during graceful restart/stop in
*) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
times out before returning status line/headers.
PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>]
[Theo Schlossnagle <jesus omniti.com>, Paul Querna]
modules/proxy/balancers [Jim Jagielski]
privileges and Unix user/group IDs [Nick Kew]
logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
*) unixd: turn existing code into a module, and turn the set user/group
Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
*) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
*) Export and install the mod_rewrite.h header to ensure the optional
*) New module mod_sed: filter Request/Response bodies through sed
null value. [David Shane Holden <dpejesh apache.org>]
*) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
*) configure: Don't reject libtool 2.x
overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
PR 44799 [Christian Wenz <christian wenz.org>]
both inside and outside the location/directory sections, as
form request with the type of application/x-www-form-urlencoded.
*) mod_authz_dbd: When redirecting after successful login/logout per
PR 44560 [Anders Kaseorg <anders kaseorg.com>]
mod_cache et.al. to trap the results of the redirect.
PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
can be created with test/make_sni.sh [Dirk-Willem van Gulik].
*) ApacheMonitor.exe: Introduce --kill argument for use by the
*) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
[David Jones <oscaremma gmail.com>]
[David M. Lee <dmlee crossroads.com>]
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: