CHANGES revision b6b1df87b7ce62620d48526a7ab630897cdaad90
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington -*- coding: utf-8 -*-
6a6ceba6fe09c81558362f238dd727576af7108dTinderbox UserChanges with Apache 2.3.0
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews[ When backported to 2.2.x, remove entry from this file ]
ec5347e2c775f027573ce5648b910361aa926c01Automatic Updater *) core: When testing for slash-terminated configuration paths in
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington ap_location_walk(), don't look past the start of an empty string
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington such as that created by a <Location ""> directive.
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington [Chris Darroch]
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews *) core, mod_proxy: If a kept_body is present, it becomes safe for
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews subrequests to support message bodies. Make sure that safety
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews checks within the core and within the proxy are not triggered
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews when kept_body is present. This makes it possible to embed
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews proxied POST requests within mod_include. [Graham Leggett]
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington *) mod_auth_form: Make sure the input filter stack is properly set
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt up before reading the login form. Make sure the kept body filter
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt is correctly inserted to ensure the body can be read a second
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt time safely should the authn be successful. [Graham Leggett,
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt Rüdiger Pluem]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) mod_request: Insert the KEPT_BODY filter via the insert_filter
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt hook instead of during fixups. Add a safety check to ensure the
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt filters cannot be inserted more than once. [Graham Leggett,
c40265eba0c99708887d68e67901924065ba2514Brian Wellington Rüdiger Pluem]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) core: Do not allow Options ALL if not all options are allowed to be
c40265eba0c99708887d68e67901924065ba2514Brian Wellington overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) ap_cache_cacheable_headers_out() will (now) always
c40265eba0c99708887d68e67901924065ba2514Brian Wellington merge an error heaeders _before_ clearing them and _before_
c40265eba0c99708887d68e67901924065ba2514Brian Wellington merging in the actual entity headers and doing normal
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein hop-by-hop cleansing. [Dirk-Willem van Gulik].
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) cache: retire ap_cache_cacheable_hdrs_out() which was used
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein for both in- and out-put headers; and replace it by a single
141132c272ebc41da4c55d69c49810fafadbbc11Mark Andrews ap_cache_cacheable_headers() wrapped in a in- and out-put
c1a883f2e04d94e99c433b1f6cfd0c0338f4ed85Mark Andrews specific ap_cache_cacheable_headers_in()/out(). The latter
d60212e03fbef1d3dd7f7eb05c0545cc373cb9fcAutomatic Updater which will also merge error and ensure content-type. To keep
20f2d1d74b67d096f858dc70cedf9af6dcc38dc7Automatic Updater cache modules consistent with ease. This API change bumps
339d2a4d4b3b2e0be9e43afec6e84fe468edfaeeAutomatic Updater up the minor MM by one [Dirk-Willem van Gulik].
5c6b95ba1b2e35f8dd6b0a7f25aacba91fff3aa2Tinderbox User *) mod_rewrite: Allow Cookie option to set secure and HttpOnly flags.
e676a596869d8a80a644c99a848afb53d1c5975eMark Andrews PR 44799 [Christian Wenz <christian wenz.org>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Move the KeptBodySize directive, kept_body filters and the
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein ap_parse_request_body function out of the http module and into a
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein new module called mod_request, reducing the size of the core.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Graham Leggett]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_dbd: Handle integer configuration directive parameters with a
f5d30e2864e048a42c4dc1134993ae7efdb5d6c3Mark Andrews dedicated function.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Change the directives within the mod_session* modules to be valid
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein both inside and outside the location/directory sections, as
c40265eba0c99708887d68e67901924065ba2514Brian Wellington suggested by wrowe. [Graham Leggett]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_auth_form: Add a module capable of allowing end users to log
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews in using an HTML form, storing the credentials within mod_session.
c40265eba0c99708887d68e67901924065ba2514Brian Wellington [Graham Leggett]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) Add a function to the http filters that is able to parse an HTML
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt form request with the type of application/x-www-form-urlencoded.
c40265eba0c99708887d68e67901924065ba2514Brian Wellington [Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_session_crypto: Initialise SSL in the post config hook.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt [Ruediger Pluem, Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_session_dbd: Add a session implementation capable of storing
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt session information in a SQL database via the dbd interface. Useful
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt for sites where session privacy is important. [Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_session_crypto: Add a session encoding implementation capable
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt of encrypting and decrypting sessions wherever they may be stored.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt Introduces a level of privacy when sessions are stored on the
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt browser. [Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_session_cookie: Add a session implementation capable of storing
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt session information within cookies on the browser. Useful for high
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt volume sites where server bound sessions are too resource intensive.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt [Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_session: Add a generic session interface to unify the different
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt attempts at saving persistent sessions across requests.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt [Graham Leggett]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) core, authn/z: Avoid calling access control hooks for internal requests
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt with configurations which match those of initial request. Revert to
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt original behaviour (call access control hooks for internal requests
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt with URIs different from initial request) if any access control hooks or
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt providers are not registered as permitting this optimization.
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews Introduce wrappers for access control hook and provider registration
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt which can accept additional mode and flag data. [Chris Darroch]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_dav: Return "method not allowed" if the destination URI of a WebDAV
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt copy / move operation is no DAV resource. PR 44734 [Ruediger Pluem]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) Introduced ap_expr API for expression evaluation.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt This is adapted from mod_include, which is the first module
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt to use the new API.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_authz_dbd: When redirecting after successful login/logout per
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt AuthzDBDRedirectQuery, do not report authorization failure, and use
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt first row returned by database query instead of last row.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt [Chris Darroch]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_rewrite: Initialize hash needed by ap_register_rewrite_mapfunc early
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt enough. PR 44641 [Daniel Lescohier <daniel.lescohier cnet.com>]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_cache: Handle If-Range correctly if the cached resource was stale.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt PR 44579 [Ruediger Pluem]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_ldap: Correctly return all requested attribute values
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt when some attributes have a null value.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt PR 44560 [Anders Kaseorg <anders kaseorg.com>]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) core: check symlink ownership if both FollowSymlinks and
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt SymlinksIfOwnerMatch are set [Nick Kew]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) core: fix origin checking in SymlinksIfOwnerMatch
c40265eba0c99708887d68e67901924065ba2514Brian Wellington PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt *) mod_proxy: Do not try a direct connection if the connection via a
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein remote proxy failed before and the request has a request body.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Added 'disablereuse' option for ProxyPass which, essentially,
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein disables connection pooling for the backend servers.
c40265eba0c99708887d68e67901924065ba2514Brian Wellington [Jim Jagielski]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews 'most' set for '--enable-modules' and '--enable-shared-mods'. Include
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews contain public function declarations which are useful for
8b9fc7617b8f54641708c985697848e6cc10a5bbMark Andrews third party module authors. PR 42431 [Dirk-Willem van Gulik].
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_dir, mod_negotiation: pass the output filter information
728a9bec1fe3a56fedfd672e7f34d2d82631d1d7Mark Andrews to newly created sub requests; as these are later on used
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt as true requests with an internal redirect. This allows for
c40265eba0c99708887d68e67901924065ba2514Brian Wellington mod_cache et.al. to trap the results of the redirect.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt [Dirk-Willem van Gulik, Ruediger Pluem]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) mod_proxy_ajp: Do not retry request in the case that we either failed to
c40265eba0c99708887d68e67901924065ba2514Brian Wellington sent a part of the request body or if the request is not idempotent.
c40265eba0c99708887d68e67901924065ba2514Brian Wellington PR 44334 [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ldap: Add support (taking advantage of the new APR capability)
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein for ldap rebind callback while chasing referrals. This allows direct
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein searches on LDAP servers (in particular MS Active Directory 2003+)
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein using referrals without the use of the global catalog.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PRs 26538, 40268, and 42557 [Paul J. Reder]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) Support chroot on Unix-family platforms
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews PR 43596 [Dimitar Pashev <mitko banksoft-bg.com>]
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews *) mod_ssl: Added server name indication support (SNI, RFC 4366).
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews can be created with test/make_sni.sh [Dirk-Willem van Gulik].
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews *) ApacheMonitor.exe: Introduce --kill argument for use by the
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews installer. This will permit the installation tool to remove
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews all running instances before attempting to remove the .exe.
c40265eba0c99708887d68e67901924065ba2514Brian Wellington [William Rowe]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy: Lower memory consumption for short lived connections.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 44026. [Ruediger Pluem]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_proxy: Keep connections to the backend persistent in the HTTPS case.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Ruediger Pluem]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) mod_ssl: Add support for OCSP validation of client certificates.
a26ad011f382d12058478704cb5e90e6f4366d01Andreas Gustafsson PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_unique_id: Fix timestamp value in UNIQUE_ID.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein PR 37064 [Kobayashi <kobayashi firstserver.co.jp>]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_serf: New module for Reverse Proxying. [Paul Querna]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) core: Add the option to keep aside a request body up to a certain
a26ad011f382d12058478704cb5e90e6f4366d01Andreas Gustafsson size that would otherwise be discarded, to be consumed by filters
a26ad011f382d12058478704cb5e90e6f4366d01Andreas Gustafsson such as mod_include. When enabled for a directory, POST requests
7791dd06ea69d0fb2494788ad4c24d568f40bcdfMark Andrews to shtml files can be passed through to embedded scripts as POST
e9359db5e958bf05f9b9c5fe3c27d533f0f05550Mark Andrews requests, rather being downgraded to GET requests. [Graham Leggett]
7791dd06ea69d0fb2494788ad4c24d568f40bcdfMark Andrews *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt *) scoreboard: Correctly declare ap_time_process_request.
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt provide the unusual legacy lookup. [William Rowe]
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt *) mpm winnt: fix null pointer dereference
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt PR 42572 [Davi Arnaut]
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt *) core: reinstate location walk to fix config for subrequests
578e3196076b409c509c6c0a0873e7bfe54f4d61Evan Hunt PR 41960 [Jose Kahan <jose w3.org>]
7791dd06ea69d0fb2494788ad4c24d568f40bcdfMark Andrews *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein parameters to the environment. Improve portability to
7791dd06ea69d0fb2494788ad4c24d568f40bcdfMark Andrews EBCDIC machines by using apr_toupper(). [Martin Kraemer]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein to authorize an authenticated user via a "require ldap-group X" directive
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein where the user is not in group X, but is in a subgroup contained in X.
f9f11eb54be19b7deedf3978496f71d81432a5eeJeremy Reed PR 42891 [Paul J. Reder]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
c40265eba0c99708887d68e67901924065ba2514Brian Wellington *) ab: Add -r option to continue after socket receive errors.
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [Filip Hanik <devlist hanik.com>]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews for SDKs that define LDAP_NO_LIMIT to something other than -1.
561a29af8c54a216e7d30b5b4f6e0d21661654ecMark Andrews [David Jones <oscaremma gmail.com>]
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews *) apxs: Enhance -q flag to print all known variables and their values
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews when invoked without variable name(s).
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews [William Rowe, Sander Temme]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) apxs: Eliminate run-time check for mod_so. PR 40653.
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [David M. Lee <dmlee crossroads.com>]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) beos MPM: Create pmain pool and run modules' child_init hooks when
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [Chris Darroch]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews cleanups registered in modules' child_init hooks are performed.
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [Chris Darroch]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) mod_dbd: Stash DBD connections in request_config of initial request
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews only, or else sub-requests and internal redirections may cause
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) Fix issue which could cause error messages to be written to access logs
561a29af8c54a216e7d30b5b4f6e0d21661654ecMark Andrews on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) The LockFile directive, which specifies the location of
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews the accept() mutex lockfile, is deprecated. Instead, the
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews AcceptMutex directive now takes an optional lockfile
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews location parameter, ala SSLMutex. [Jim Jagielski]
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews *) mod_authn_dbd: Export any additional columns queried in the SQL select
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews into the environment with the name AUTHENTICATE_<COLUMN>. This brings
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
2c15fcdeac4c2402258867fbac24d7475ef98259Mark Andrews *) mod_dbd: Key the storage of prepared statements on the hex string
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews value of server_rec, rather than the server name, as the server name
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews may change (eg when the server name is set) at any time, causing
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews the first bucket from the brigade, finds it not to be a FILE
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews bucket and barfs. The fix is to pass a bucket rather than a brigade.
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews [Niklas Edmundsson <nikke acc.umu.se>]
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) ap_get_server_version() has been removed. Third-party modules must
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews now use ap_get_server_banner() or ap_get_server_description().
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews [Jeff Trawick]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) All MPMs: Introduce a check_config phase between pre_config and
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews open_logs, to allow modules to review interdependent configuration
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews directive values and adjust them while messages can still be logged
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews to the console. Handle relevant MPM directives during this phase
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews and format messages for both the console and the error log, as
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews appropriate. [Chris Darroch]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_proxy: don't URLencode tilde in path component
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews [Stijn Hoop <stijn sandcat.nl>]
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt *) mpm_winnt: Fix return values from wait_for_many_objects.
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt The return value is index to the signaled thread in the
c9611b45736af157e2993c6ef852e55e8e24ca83Evan Hunt creted_threads array. We can not use WAIT_TIMEOUT because
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt his value is defined as 258, thus limiting the MaxThreads
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt to that value. [Mladen Turk]
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt to circumvent the symbolic link checks imposed by FollowSymLinks and
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_proxy: Support environment variable interpolation in reverse
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews proxying directives. [Nick Kew]
2047977ce2dfcfe3a0fa2d638c3242841310fad3Mark Andrews *) core: Add the filename of the configuration file to the warning message
2047977ce2dfcfe3a0fa2d638c3242841310fad3Mark Andrews about the useless use of AllowOverride. PR 39992.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Darryl Miles <darryl darrylmiles.org>]
bfedbc02796ed51e63317ca458701da115a53285Mark Andrews *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews configures the I/O Dump of SSL traffic, when LogLevel is set to Debug.
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews The default is none as this is far greater debugging resolution than
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews the typical administrator is prepared to untangle. [William Rowe]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_disk_cache: If possible, check if the size of an object to cache is
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein within the configured boundaries before actually saving data.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Niklas Edmundsson <nikke acc.umu.se>]
2047977ce2dfcfe3a0fa2d638c3242841310fad3Mark Andrews *) mod_cache: Convert all values to seconds before comparing them when
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt checking whether to send a Warning header for a stale response.
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt PR 39713. [Owen Taylor <otaylor redhat.com>]
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt *) mod_disk_cache: Delete temporary files if they cannot be renamed to their
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt final name. [Davi Arnaut <davi haxent.com.br>]
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt *) Worker and event MPMs: Remove improper scoreboard updates which were
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt performed in the event of a fork() failure. [Chris Darroch]
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt *) Add support for fcgi:// proxies to mod_rewrite.
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt [Markus Schiegl <ms schiegl.com>]
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt *) Remove incorrect comments from scoreboard.h regarding conditional
35f6a21f5f8114542c050bfcb484b39ce513d4bdEvan Hunt loading of worker_score structure with mod_status, and remove unused
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt definitions relating to old life_status field.
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt [Chris Darroch <chrisd pearsoncmg.com>]
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt *) Remove allocation of memory for unused array of lb_score pointers
c9611b45736af157e2993c6ef852e55e8e24ca83Evan Hunt in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt *) Add mod_proxy_fcgi, a FastCGI back end for mod_proxy.
6844e3f010440a9f3eb200b3c2123a19e58a64dcEvan Hunt [Garrett Rooney, Jim Jagielski, Paul Querna]
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt *) Event MPM: Fill in the scoreboard's tid field. PR 38736.
f30785f506a522ed6a5e394af2bb13b6f883927eEvan Hunt [Chris Darroch <chrisd pearsoncmg.com>]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) mod_charset_lite: Remove Content-Length when output filter can
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews invalidate it. Warn when input filter can invalidate it.
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews [Jeff Trawick]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) Authz: Add the new module mod_authn_core that will provide common
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews authn directives such as 'AuthType', 'AuthName'. Move the directives
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews 'AuthType' and 'AuthName' out of the core module and merge mod_authz_alias
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews into mod_authn_core. [Brad Nicholes]
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews *) Authz: Move the directives 'Order', 'Allow', 'Deny' and 'Satisfy'
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews into the new module mod_access_compat which can be loaded to provide
c5223c9cb7c22620d5ee6611228673e95b48a270Mark Andrews support for these directives.
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews [Brad Nicholes]
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews *) Authz: Move the 'Require' directive from the core module as well as
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews add the directives '<SatisfyAll>', '<SatisfyOne>', '<RequireAlias>'
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews logic into the authorization processing. [Brad Nicholes]
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews *) Authz: Add the new module mod_authz_core which acts as the
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews authorization provider vector and contains common authz
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews directives. [Brad Nicholes]
dc6da18ccbb808d21f123cc6bda399b44ad11445Mark Andrews *) Authz: Renamed mod_authz_dbm authz providers from 'group' and
4d9f3f00d93fcb8743b1105e8cf82e862be220d1Mark Andrews 'file-group' to 'dbm-group' and 'dbm-file-group'. [Brad Nicholes]
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein *) Authz: Added the new authz providers 'env', 'ip', 'host', 'all' to handle
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein host-based access control provided by mod_authz_host and invoked
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein through the 'Require' directive. [Brad Nicholes]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) Authz: Convert all of the authz modules from hook based to
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews provider based. [Brad Nicholes]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) mod_cache: Add CacheMinExpire directive to set the minimum time in
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein seconds to cache a document.
268a4475065fe6a8cd7cc707820982cf5e98f430Rob Austein [Brian Akins <brian.akins turner.com>, Ruediger Pluem]
4d9f3f00d93fcb8743b1105e8cf82e862be220d1Mark Andrews *) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews *) Fix typo in ProxyStatus syntax error message.
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews [Christophe Jaillet <christophe.jaillet wanadoo.fr>]
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews *) Asynchronous write completion for the Event MPM. [Brian Pane]
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews *) Added an End-Of-Request bucket type. The logging of a request and
0f8c9b5eed7e8714ceb7d6d3675555df9c5f6350Mark Andrews the freeing of its pool are now done when the EOR bucket is destroyed.
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews This has the effect of delaying the logging until right after the last
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews of the response is sent; ap_core_output_filter() calls the access logger
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews indirectly when it destroys the EOR bucket. [Brian Pane]
d0aebc5a55b6145297d94f8aee939852357c59fcMark Andrews *) Rewrite of logresolve support utility: IPv6 addresses are now supported
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews and the format of statistical output has changed. [Colm MacCarthaigh]
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews *) Rewrite of ap_coreoutput_filter to do nonblocking writes [Brian Pane]
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews *) Added new connection states for handler and write completion
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews [Brian Pane]
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews *) mod_cgid: Refuse to work on Solaris 10 due to OS bugs. PR 34264.
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews [Justin Erenkrantz]
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews *) Teach mod_ssl to use arbitrary OIDs in an SSLRequire directive,
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews allowing string-valued client certificate attributes to be used for
3d17a3ba61a303d5c4d9867068d0fbe9f24d2988Mark Andrews access control, as in: SSLRequire "value" in OID("1.3.6.1.4.1.18060.1")
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews [Martin Kraemer, David Reid]
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews [Apache 2.1.0-dev includes those bug fixes and changes with the
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews Apache 2.2.xx tree as documented, and except as noted, below.]
a903095bf4512dae561c7f6fc7854a51bebf334aMark AndrewsChanges with Apache 2.2.x and later:
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
2dafa707cc9af9cca66d68c1d2c3af0c768c2900Mark AndrewsChanges with Apache 2.0.x and later:
a903095bf4512dae561c7f6fc7854a51bebf334aMark Andrews *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup
a903095bf4512dae561c7f6fc7854a51bebf334aMark AndrewsChanges with Apache 1.3.x and later: