CHANGES revision f963d1b8294de4a9c7c497821271ea325f243604
750f77ade4110c6b2315d6b9e9c22f643914d87drbb -*- coding: utf-8 -*-
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolleyChanges with Apache 2.3.0
750f77ade4110c6b2315d6b9e9c22f643914d87drbb[ When backported to 2.2.x, remove entry from this file ]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) mod_ssl: Added server name indication support (RFC 4366).
750f77ade4110c6b2315d6b9e9c22f643914d87drbb PR 34607. [Kaspar Brand <asfbugz velox.ch>]
d2eae30b777eb2724615852bd646f8719efe7e0etrawick *) ApacheMonitor.exe: Introduce --kill argument for use by the
750f77ade4110c6b2315d6b9e9c22f643914d87drbb installer. This will permit the installation tool to remove
750f77ade4110c6b2315d6b9e9c22f643914d87drbb all running instances before attempting to remove the .exe.
750f77ade4110c6b2315d6b9e9c22f643914d87drbb [William Rowe]
750f77ade4110c6b2315d6b9e9c22f643914d87drbb *) mod_proxy: Lower memory consumption for short lived connections.
750f77ade4110c6b2315d6b9e9c22f643914d87drbb PR 44026. [Ruediger Pluem]
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley *) mod_proxy: Keep connections to the backend persistent in the HTTPS case.
45108af9f7bc456c8e9b3bf3ea863f171e6dc9a6jwoolley [Ruediger Pluem]
3e5667f3bea0b417d0133534d960c5b86c63cf5cgstein *) rotatelogs: Improve atomicity when using -l and cleaup code.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick PR 44004 [Rainer Jung]
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme *) mod_ssl: Add support for OCSP validation of client certificates.
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme PR 41123. [Marc Stern <marc.stern approach.be>, Joe Orton]
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme *) mod_unique_id: Fix timestamp value in UNIQUE_ID.
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme PR 37064 [Kobayashi <kobayashi firstserver.co.jp>]
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme *) mod_serf: New module for Reverse Proxying. [Paul Querna]
8744b27bf2f08d2acb55f3e77231ab9b59d5d333jerenkrantz *) core: Add the option to keep aside a request body up to a certain
8744b27bf2f08d2acb55f3e77231ab9b59d5d333jerenkrantz size that would otherwise be discarded, to be consumed by filters
8744b27bf2f08d2acb55f3e77231ab9b59d5d333jerenkrantz such as mod_include. When enabled for a directory, POST requests
8744b27bf2f08d2acb55f3e77231ab9b59d5d333jerenkrantz to shtml files can be passed through to embedded scripts as POST
8744b27bf2f08d2acb55f3e77231ab9b59d5d333jerenkrantz requests, rather being downgraded to GET requests. [Graham Leggett]
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme *) mod_ssl: Fix TLS upgrade (RFC 2817) support. PR 41231. [Joe Orton]
39c36cbd2a461e4fe1bdd0a860db587d420445c7sctemme *) scoreboard: Correctly declare ap_time_process_request.
3e5667f3bea0b417d0133534d960c5b86c63cf5cgstein *) core; scoreboard: ap_get_scoreboard_worker(sbh) now takes the sbh member
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley from the connection rec, ap_get_scoreboard_worker(proc, thread) will now
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley provide the unusual legacy lookup. [William Rowe]
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley *) mpm winnt: fix null pointer dereference
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley PR 42572 [Davi Arnaut]
105475009f541187ba7a14a367547d9404c578befielding *) core: reinstate location walk to fix config for subrequests
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley PR 41960 [Jose Kahan <jose w3.org>]
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley *) mod_log_config: Add format options for %p so that the actual local
750f77ade4110c6b2315d6b9e9c22f643914d87drbb or remote port can be logged. PR 43415. [Adam Hasselbalch Hansen
205d797f9c660398724a3d4a50f96f30f282edd7sf <ahh@one.com>, Ruediger Pluem, Jeff Trawick]
750f77ade4110c6b2315d6b9e9c22f643914d87drbb *) mod_authnz_ldap, mod_authn_dbd: Tidy up the code to expose authn
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick parameters to the environment. Improve portability to
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick EBCDIC machines by using apr_toupper(). [Martin Kraemer]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_ldap, mod_authnzldap: Add support for nested groups (i.e. the ability
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick to authorize an authenticated user via a "require ldap-group X" directive
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick where the user is not in group X, but is in a subgroup contained in X.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick PR 42891 [Paul J. Reder]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_ssl: Add support for caching SSL Sessions in memcached. [Paul Querna]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) ab: Add -r option to continue after socket receive errors.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [Filip Hanik <devlist hanik.com>]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_ldap: Fix the search limit parameter to ldap_search_ext_s()
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick for SDKs that define LDAP_NO_LIMIT to something other than -1.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [David Jones <oscaremma gmail.com>]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) apxs: Enhance -q flag to print all known variables and their values
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick when invoked without variable name(s).
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [William Rowe, Sander Temme]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) apxs: Eliminate run-time check for mod_so. PR 40653.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [David M. Lee <dmlee crossroads.com>]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) beos MPM: Create pmain pool and run modules' child_init hooks when
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick entering ap_mpm_run(), then destroy pmain when exiting ap_mpm_run().
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [Chris Darroch]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) netware MPM: Destroy pmain pool when exiting ap_mpm_run() so that
d2eae30b777eb2724615852bd646f8719efe7e0etrawick cleanups registered in modules' child_init hooks are performed.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [Chris Darroch]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_dbd: Stash DBD connections in request_config of initial request
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick only, or else sub-requests and internal redirections may cause
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick entire DBD pool to be stashed in a single HTTP request. [Chris Darroch]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) Fix issue which could cause error messages to be written to access logs
d2eae30b777eb2724615852bd646f8719efe7e0etrawick on Win32. PR 40476. [Tom Donovan <Tom.Donovan acm.org>]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) The LockFile directive, which specifies the location of
d2eae30b777eb2724615852bd646f8719efe7e0etrawick the accept() mutex lockfile, is deprecated. Instead, the
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick AcceptMutex directive now takes an optional lockfile
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick location parameter, ala SSLMutex. [Jim Jagielski]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_authn_dbd: Export any additional columns queried in the SQL select
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick into the environment with the name AUTHENTICATE_<COLUMN>. This brings
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick mod_authn_dbd behaviour in line with mod_authnz_ldap. [Graham Leggett]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_dbd: Key the storage of prepared statements on the hex string
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick value of server_rec, rather than the server name, as the server name
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick may change (eg when the server name is set) at any time, causing
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick weird behaviour in modules dependent on mod_dbd. [Graham Leggett]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) mod_proxy_fcgi: Added win32 build. [Mladen Turk]
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick *) sendfile_nonblocking() takes the _brigade_ as an argument, gets
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick the first bucket from the brigade, finds it not to be a FILE
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick bucket and barfs. The fix is to pass a bucket rather than a brigade.
91ea8a85362a63522578e4d59fc6bfe37bc8df17trawick [Niklas Edmundsson <nikke acc.umu.se>]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) mod_rewrite: support rewritemap by SQL query [Nick Kew]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) ap_get_server_version() has been removed. Third-party modules must
dcddd5fb65d83e8fd29b3528304485f0d3550c3awrowe now use ap_get_server_banner() or ap_get_server_description().
d2eae30b777eb2724615852bd646f8719efe7e0etrawick [Jeff Trawick]
dcddd5fb65d83e8fd29b3528304485f0d3550c3awrowe *) All MPMs: Introduce a check_config phase between pre_config and
dcddd5fb65d83e8fd29b3528304485f0d3550c3awrowe open_logs, to allow modules to review interdependent configuration
dcddd5fb65d83e8fd29b3528304485f0d3550c3awrowe directive values and adjust them while messages can still be logged
d338102f030a59b46e760721e8d126e2dd1d7795wrowe to the console. Handle relevant MPM directives during this phase
d338102f030a59b46e760721e8d126e2dd1d7795wrowe and format messages for both the console and the error log, as
dcddd5fb65d83e8fd29b3528304485f0d3550c3awrowe appropriate. [Chris Darroch]
d338102f030a59b46e760721e8d126e2dd1d7795wrowe *) mod_proxy: don't URLencode tilde in path component
d338102f030a59b46e760721e8d126e2dd1d7795wrowe [Stijn Hoop <stijn sandcat.nl>]
d338102f030a59b46e760721e8d126e2dd1d7795wrowe *) mpm_winnt: Fix return values from wait_for_many_objects.
d338102f030a59b46e760721e8d126e2dd1d7795wrowe The return value is index to the signaled thread in the
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe creted_threads array. We can not use WAIT_TIMEOUT because
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe his value is defined as 258, thus limiting the MaxThreads
45479773295ea4d0c9167c2f3c947befb6004b19wrowe to that value. [Mladen Turk]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) core: Do not allow internal redirects like the DirectoryIndex of mod_dir
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe to circumvent the symbolic link checks imposed by FollowSymLinks and
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe SymLinksIfOwnerMatch. [Nick Kew, Ruediger Pluem, William Rowe]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) mod_proxy: Support environment variable interpolation in reverse
d2eae30b777eb2724615852bd646f8719efe7e0etrawick proxying directives. [Nick Kew]
ce4eec7f83c4bc6daba6a02eff0275a6f3878e5ewrowe *) core: Add the filename of the configuration file to the warning message
205d797f9c660398724a3d4a50f96f30f282edd7sf about the useless use of AllowOverride. PR 39992.
750f77ade4110c6b2315d6b9e9c22f643914d87drbb [Darryl Miles <darryl darrylmiles.org>]
7a6c08288f79ab1734b98afc114e52cd71f898c0jwoolley *) New SSLLogLevelDebugDump [ None (default) | IO (not bytes) | Bytes ]
[Niklas Edmundsson <nikke acc.umu.se>]
PR 39713. [Owen Taylor <otaylor redhat.com>]
final name. [Davi Arnaut <davi haxent.com.br>]
[Markus Schiegl <ms schiegl.com>]
*) Remove incorrect comments from scoreboard.h regarding conditional
[Chris Darroch <chrisd pearsoncmg.com>]
in ap_init_scoreboard(). [Chris Darroch <chrisd pearsoncmg.com>]
[Chris Darroch <chrisd pearsoncmg.com>]
and 'Reject' to mod_authz_core. The new directives introduce 'AND/OR'
*) mod_authz_dbd: SQL authz with Login/Session support [Nick Kew]
Apache 2.2.xx tree as documented, and except as noted, below.]
Changes with Apache 2.2.x and later:
Changes with Apache 2.0.x and later:
Changes with Apache 1.3.x and later: