CHANGES revision d1c1b82647a997922859ec76b82e62a956078dbc
d6fa26d0adaec6c910115be34fe7a5a5f402c14fMark Andrews -*- coding: utf-8 -*-
6ea1b817e31b89a627e146fe69e23ea0a64c89ecBob HalleyChanges with Apache 2.3.0
9700e6d72c3ba0d0c567969ab97d9eff202656d4Tinderbox User[ When backported to 2.2.x, remove entry from this file ]
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User *) mod_buffer: Honour the flush bucket and flush the buffer in the
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User input filter. Make sure that metadata buckets are written to
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User the buffer, not to the final brigade. [Graham Leggett]
d6fa26d0adaec6c910115be34fe7a5a5f402c14fMark Andrews *) mod_buffer: Optimise the buffering of heap buckets when the heap
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein buckets stay exactly APR_BUCKET_BUFF_SIZE long. [Graham Leggett,
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein Ruediger Pluem]
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User *) mod_buffer: Optional support for buffering of the input and output
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein filter stacks. Can collapse many small buckets into fewer larger
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User buckets, and prevents excessively small chunks being sent over
9a5087bf58f651bfff841192aba5afd06760d6ceTinderbox User the wire. [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_privileges: new module to make httpd on Solaris privileges-aware
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User and to enable different virtualhosts to run with different
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User privileges and Unix user/group IDs [Nick Kew]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) authn/z: Remove mod_authn_default and mod_authz_default.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) authz: Fix handling of authz configurations, make default authz
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User logic replicate 2.2.x authz logic, and replace <Satisfy*>, Reject,
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User and AuthzMergeRules directives with Match, <Match*>, and AuthzMerge
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein directives. [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_authn_core: Prevent crash when provider alias created to
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User provider which is not yet registered. [Chris Darroch]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_authn_core: Add AuthType of None to support disabling
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User authentication. [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) core: Allow <Limit> and <LimitExcept> directives to nest, and
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User constrain their use to conform with that of other access control
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User and authorization directives. [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) unixd: turn existing code into a module, and turn the set user/group
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User and chroot into a child_init function. [Nick Kew]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) core: Add ap_timeout_parameter_parse to public API. [Ruediger Pluem]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_dir: Support "DirectoryIndex disabled"
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User Suggested By André Warnier <aw ice-sa.com> [Eric Covener]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ssl: Send Content-Type application/ocsp-request for POST requests to
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User OSCP responders. PR 46014 [Dr Stephen Henson <steve openssl.org>]
9700e6d72c3ba0d0c567969ab97d9eff202656d4Tinderbox User *) Export and install the mod_rewrite.h header to ensure the optional
9700e6d72c3ba0d0c567969ab97d9eff202656d4Tinderbox User rewrite_mapfunc_t and ap_register_rewrite_mapfunc functions are
9700e6d72c3ba0d0c567969ab97d9eff202656d4Tinderbox User available to third party modules. [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_authnz_ldap: don't return NULL-valued environment variables to
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User other modules. PR 39045 [Francois Pesce <francois.pesce gmail.com>]
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User *) Don't adjust case in pathname components that are not of interest
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User to mod_mime. Fixes mod_negotiation's use of such components.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 43250 [Basant Kumar Kukreja <basant.kukreja sun.com>]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) Be tolerant in what you accept - accept slightly broken
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein status lines from a backend provide they include a valid status code.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein PR 44995 [Rainer Jung <rainer.jung kippdata.de>]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) New module mod_sed: filter Request/Response bodies through sed
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_auth_form: Make sure that basic authentication is correctly
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein faked directly after login. [Graham Leggett]
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) mod_session_cookie, mod_session_dbd: Make sure cookies are set both
9fbbfb5757a1e3e86d7dea62c4e63ffc2303ca2bAutomatic Updater within the output headers and error output headers, so that the
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein session is maintained across redirects. [Graham Leggett]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_auth_form: Make sure the logged in user is populated correctly
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User after a form login. Fixes a missing REMOTE_USER variable directly
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein following a login. [Graham Leggett]
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) mod_session_cookie: Make sure that cookie attributes are correctly
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein included in the blank cookie when cookies are removed. This fixes an
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein inability to log out when using mod_auth_form. [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_autoindex: add configuration option to insert string
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein in HTML HEAD. [Nick Kew]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_session: Prevent a segfault when a CGI script sets a cookie with a
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein null value. [David Shane Holden <dpejesh apache.org>]
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) mod_headers: Prevent Header edit from processing only the first header
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein of possibly multiple headers with the same name and deleting the
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein remaining ones. PR 45333. [Ruediger Pluem]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_rewrite: Preserve the query string with [proxy,noescape]. PR 45247
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [Tom Donovan]
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User *) core, authn/z: Determine registered authn/z providers directly in
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User ap_setup_auth_internal(), which allows optional functions that just
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User wrapped ap_list_provider_names() to be removed from authn/z modules.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) authn/z: Convert common provider version strings to macros.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [Chris Darroch]
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews *) ab: Make ab.c compile on VC6. PR 45024 [Ruediger Pluem]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) configure: Don't reject libtool 2.x
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 44817 [Arfrever Frehtes Taifersar Arahesis <Arfrever.FTA gmail.com>]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) core: When testing for slash-terminated configuration paths in
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User ap_location_walk(), don't look past the start of an empty string
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews such as that created by a <Location ""> directive.
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews [Chris Darroch]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) core, mod_proxy: If a kept_body is present, it becomes safe for
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User subrequests to support message bodies. Make sure that safety
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews checks within the core and within the proxy are not triggered
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User when kept_body is present. This makes it possible to embed
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User proxied POST requests within mod_include. [Graham Leggett]
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews *) mod_auth_form: Make sure the input filter stack is properly set
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews up before reading the login form. Make sure the kept body filter
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews is correctly inserted to ensure the body can be read a second
731cc132f22dbc9e0ecd7035dce314a61076d31bAutomatic Updater time safely should the authn be successful. [Graham Leggett,
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User Ruediger Pluem]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_request: Insert the KEPT_BODY filter via the insert_filter
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User hook instead of during fixups. Add a safety check to ensure the
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User filters cannot be inserted more than once. [Graham Leggett,
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein Ruediger Pluem]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) core: Do not allow Options ALL if not all options are allowed to be
731cc132f22dbc9e0ecd7035dce314a61076d31bAutomatic Updater overwritten. PR 44262 [Michał Grzędzicki <lazy iq.pl>]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) ap_cache_cacheable_headers_out() will (now) always
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein merge an error heaeders _before_ clearing them and _before_
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User merging in the actual entity headers and doing normal
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User hop-by-hop cleansing. [Dirk-Willem van Gulik].
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) cache: retire ap_cache_cacheable_hdrs_out() which was used
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein for both in- and out-put headers; and replace it by a single
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User ap_cache_cacheable_headers() wrapped in a in- and out-put
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User specific ap_cache_cacheable_headers_in()/out(). The latter
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein which will also merge error and ensure content-type. To keep
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User cache modules consistent with ease. This API change bumps
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User up the minor MM by one [Dirk-Willem van Gulik].
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_rewrite: Allow Cookie option to set secure and HttpOnly flags.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 44799 [Christian Wenz <christian wenz.org>]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) Move the KeptBodySize directive, kept_body filters and the
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User ap_parse_request_body function out of the http module and into a
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein new module called mod_request, reducing the size of the core.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_dbd: Handle integer configuration directive parameters with a
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews dedicated function.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) Change the directives within the mod_session* modules to be valid
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews both inside and outside the location/directory sections, as
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews suggested by wrowe. [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_auth_form: Add a module capable of allowing end users to log
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User in using an HTML form, storing the credentials within mod_session.
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) Add a function to the http filters that is able to parse an HTML
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews form request with the type of application/x-www-form-urlencoded.
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews [Graham Leggett]
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews *) mod_session_crypto: Initialise SSL in the post config hook.
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews [Ruediger Pluem, Graham Leggett]
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews *) mod_session_dbd: Add a session implementation capable of storing
a1b05dea35aa30b152a47115e18bbe679d3fcf19Mark Andrews session information in a SQL database via the dbd interface. Useful
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User for sites where session privacy is important. [Graham Leggett]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_session_crypto: Add a session encoding implementation capable
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User of encrypting and decrypting sessions wherever they may be stored.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User Introduces a level of privacy when sessions are stored on the
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein browser. [Graham Leggett]
2eeb74d1cf5355dd98f6d507a10086e16bb08c4bTinderbox User *) mod_session_cookie: Add a session implementation capable of storing
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein session information within cookies on the browser. Useful for high
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein volume sites where server bound sessions are too resource intensive.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_session: Add a generic session interface to unify the different
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein attempts at saving persistent sessions across requests.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [Graham Leggett]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) core, authn/z: Avoid calling access control hooks for internal requests
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein with configurations which match those of initial request. Revert to
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein original behaviour (call access control hooks for internal requests
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User with URIs different from initial request) if any access control hooks or
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User providers are not registered as permitting this optimization.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein Introduce wrappers for access control hook and provider registration
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User which can accept additional mode and flag data. [Chris Darroch]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) Introduced ap_expr API for expression evaluation.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein This is adapted from mod_include, which is the first module
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein to use the new API.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_authz_dbd: When redirecting after successful login/logout per
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User AuthzDBDRedirectQuery, do not report authorization failure, and use
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein first row returned by database query instead of last row.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein [Chris Darroch]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_ldap: Correctly return all requested attribute values
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein when some attributes have a null value.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein PR 44560 [Anders Kaseorg <anders kaseorg.com>]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) core: check symlink ownership if both FollowSymlinks and
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User SymlinksIfOwnerMatch are set [Nick Kew]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) core: fix origin checking in SymlinksIfOwnerMatch
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) Activate mod_cache, mod_file_cache and mod_disc_cache as part of the
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein 'most' set for '--enable-modules' and '--enable-shared-mods'. Include
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein mod_mem_cache in 'all' as well. [Dirk-Willem van Gulik]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) Also install mod_so.h, mod_rewrite.h and mod_cache.h; as these
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein contain public function declarations which are useful for
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein third party module authors. PR 42431 [Dirk-Willem van Gulik].
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_dir, mod_negotiation: pass the output filter information
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein to newly created sub requests; as these are later on used
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User as true requests with an internal redirect. This allows for
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein mod_cache et.al. to trap the results of the redirect.
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein [Dirk-Willem van Gulik, Ruediger Pluem]
d71e2e0c61df16ff37c9934c371a4a60c08974f7Mark Andrews *) mod_ldap: Add support (taking advantage of the new APR capability)
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein for ldap rebind callback while chasing referrals. This allows direct
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein searches on LDAP servers (in particular MS Active Directory 2003+)
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein using referrals without the use of the global catalog.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PRs 26538, 40268, and 42557 [Paul J. Reder]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_ssl: Added server name indication support (SNI, RFC 4366).
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 34607. [Kaspar Brand <asfbugz velox.ch>]. A test configuration
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User can be created with test/make_sni.sh [Dirk-Willem van Gulik].
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) ApacheMonitor.exe: Introduce --kill argument for use by the
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein installer. This will permit the installation tool to remove
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User all running instances before attempting to remove the .exe.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [William Rowe]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ssl: Add support for OCSP validation of client certificates.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_serf: New module for Reverse Proxying. [Paul Querna]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) core: Add the option to keep aside a request body up to a certain
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User size that would otherwise be discarded, to be consumed by filters
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User such as mod_include. When enabled for a directory, POST requests
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User to shtml files can be passed through to embedded scripts as POST
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User requests, rather being downgraded to GET requests. [Graham Leggett]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) scoreboard: Correctly declare ap_time_process_request.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User provide the unusual legacy lookup. [William Rowe]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mpm winnt: fix null pointer dereference
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 42572 [Davi Arnaut]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User parameters to the environment. Improve portability to
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User EBCDIC machines by using apr_toupper(). [Martin Kraemer]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User to authorize an authenticated user via a "require ldap-group X" directive
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User where the user is not in group X, but is in a subgroup contained in X.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User PR 42891 [Paul J. Reder]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User for SDKs that define LDAP_NO_LIMIT to something other than -1.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [David Jones <oscaremma gmail.com>]
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User *) apxs: Enhance -q flag to print all known variables and their values
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User when invoked without variable name(s).
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [William Rowe, Sander Temme]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) apxs: Eliminate run-time check for mod_so. PR 40653.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User [David M. Lee <dmlee crossroads.com>]
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein *) beos MPM: Create pmain pool and run modules' child_init hooks when
60e5e10f8d2e2b0c41e8abad38cacd867caa6ab2Rob Austein entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
[Niklas Edmundsson <nikke acc.umu.se>]
[Stijn Hoop <stijn sandcat.nl>]
[Niklas Edmundsson <nikke acc.umu.se>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: