-*- coding: utf-8 -*-
Changes with Apache 2.5.0
- *) mod_authn_socache: Support optional initialization arguments for
- socache providers. [Chris Darroch]
+ *) mod_rewrite: Rename the handler that does per-directory internal
+ redirects to "rewrite-redirect-handler" from "redirect-handler" so
+ it is less ambiguous and less likely to be reused. [Eric Covener]
- *) mod_session: Reset the max-age on session save. PR 47476. [Alexey
- Varlamov <alexey.v.varlamov gmail com>]
+ *) mod_dir: Don't search for a DirectoryIndex or DirectorySlash on a URL
+ that was just rewritten by mod_rewrite. PR53929. [Eric Covener]
- *) mod_session: After parsing the value of the header specified by the
- SessionHeader directive, remove the value from the response. PR 55279.
- [Graham Leggett]
+ *) mod_dir: Add DirectoryCheckHandler to allow a 2.2-like behavior, skipping
+ execution when a handler is already set. PR53929. [Eric Covener]
- *) mod_auth_form: Make sure the optional functions are loaded even when
- the AuthFormProvider isn't specified. [Graham Leggett]
+ *) mod_rewrite: Protect against looping with the [N] flag by enforcing a
+ default limit of 10000 iterations, and allowing each rule to change its
+ limit. [Eric Covener]
+
+ *) mod_ssl: Fix config merging of SSLOCSPEnable and SSLOCSPOverrideResponder.
+ [Jeff Trawick]
+
+ *) Add HttpContentLengthHeadZero and HttpExpectStrict directives.
+ [Yehuda Sadeh <yehuda inktank com>, Justin Erenkrantz]
+
+ *) core: Support named groups and backreferences within the LocationMatch,
+ DirectoryMatch, FilesMatch and ProxyMatch directives. [Graham Leggett]
+
+ *) mod_ssl: Remove the hardcoded algorithm-type dependency for the
+ SSLCertificateFile and SSLCertificateKeyFile directives, to enable
+ future algorithm agility, and deprecate the SSLCertificateChainFile
+ directive (obsoleted by SSLCertificateFile). [Kaspar Brand]
+
+ *) FreeBSD: Disable IPv4-mapped listening sockets by default for versions
+ 5+ instead of just for FreeBSD 5. PR 53824. [Jeff Trawick]
+
+ *) mod_auth_form: Add a debug message when the fields on a form are not
+ recognised. [Graham Leggett]
+
+ *) mod_ssl: Add -t -DDUMP_CA_CERTS option which dumps the filenames of all
+ configured SSL CA certificates to stdout the same way as DUMP_CERTS does.
+ [Jan Kaluza]
+
+ *) mod_headers: Allow the "value" parameter of Header and RequestHeader to
+ contain an ap_expr expression if prefixed with "expr=". [Eric Covener]
+
+ *) Add suspend_connection and resume_connection hooks to notify modules
+ when the thread/connection relationship changes. (Currently implemented
+ only for the Event MPM; should be implemented for all async MPMs.)
+ [Jeff Trawick]
+
+ *) mod_ssl: Don't flush when an EOS is received. Prepares mod_ssl
+ to support write completion. [Graham Leggett]
+
+ *) prefork: Fix long delays when doing a graceful restart.
+ PR 54852 [Jim Jagielski, Arkadiusz Miskiewicz <arekm maven pl>]
- *) core: Don't truncate output when sending is interrupted by a signal,
- such as from an exiting CGI process. PR 55643. [Jeff Trawick]
+ *) core: Add parse_errorlog_arg callback to ap_errorlog_provider
+ to allow providers to check the ErrorLog argument. [Jan Kaluza]
+
+ *) core: Detect incomplete body in HTTP input filter and return
+ APR_INCOMPLETE. PR 55475 [Yann Ylavic <ylavic dev gmail com>]
+
+ *) mod_cgid: Use the servers Timeout for each read from a CGI script,
+ allow override with new CGIDRequestTimeout directive. PR43494
+ [Eric Covener, Toshikuni Fukaya <toshikuni-fukaya cybozu co jp>]
*) core: Add missing Reason-Phrase in HTTP response headers.
PR 54946. [Rainer Jung]
- *) mod_rewrite: Make rewrite websocket aware to allow proxying.
- PR 55598. [Chris Harris <chris.harris kitware com>]
+ *) core: ensure any abnormal exit is reported to stderr if it's a tty.
+ PR 55670 [Nick Kew]
- *) mod_ssl: Improve handling of ephemeral DH and ECDH keys by
- allowing custom parameters to be configured via SSLCertificateFile,
- and by adding standardized DH parameters for 1024/2048/3072/4096 bits.
- Unless custom parameters are configured, the standardized parameters
- are applied based on the certificate's RSA/DSA key size. [Kaspar Brand]
+ *) mod_proxy: Added support for unix domain sockets as the
+ backend server endpoint [Jim Jagielski, Blaise Tarr
+ <blaise tarr gmail com>]
- *) mod_ssl, configure: Require OpenSSL 0.9.8a or later. [Kaspar Brand]
+ *) mod_auth_form: Make sure the optional functions are loaded even when
+ the AuthFormProvider isn't specified. [Graham Leggett]
*) mod_lua: Let the Inter-VM get/set functions work with a global
shared memory pool instead of a per-process pool. [Daniel Gruno]
- *) WinNT MPM: Exit the child if the parent process crashes or is terminated.
- [Oracle Corporation]
-
*) ldap: Support ldaps when using the Microsoft LDAP SDK.
PR 54626. [Jean-Frederic Clere]
*) mod_proxy: Add ap_connection_reusable() for checking if a connection
is reusable as of this point in processing. [Jeff Trawick]
- *) mod_ssl: drop support for export-grade ciphers with ephemeral RSA
- keys, and unconditionally disable aNULL, eNULL and EXP ciphers
- (not overridable via SSLCipherSuite). [Kaspar Brand]
-
*) mod_authnz_ldap: Change default value of AuthLDAPMaxSubGroupDepth to 0
to avoid performance problems when subgroups aren't in use. [Eric Covener]
*) core: Add ap_errorlog_provider to make ErrorLog logging modular. Move
syslog support from core to new mod_syslog. [Jan Kaluza]
- *) mod_proxy_fcgi: Handle reading protocol data that is split between
- packets. [Jeff Trawick]
-
- *) mod_proxy_fcgi: Remove 64K limit on encoded length of all envvars.
- An individual envvar with an encoded length of more than 16K will be
- omitted. [Jeff Trawick]
-
*) core: draft-ietf-httpbis-p1-messaging-23 corrections regarding
TE/CL conflicts. [Yann Ylavic <ylavic.dev gmail com>, Jim Jagielski]
save the socket for reuse by the next worker as if it were an
APR_SO_DISCONNECTED socket. Restores 2.2 behavior. [Eric Covener]
- *) mod_cache: Avoid a crash with strcmp() when the hostname is not provided.
- [Graham Leggett]
-
- *) mod_lua: Add rudimentary support for WebSocket interaction. This is
- currently request-bound and only supports the WS protocol. [Daniel Gruno]
-
- *) mod_lua: Add getcookie/setcookie for reading/writing HTTP cookies
- [Daniel Gruno]
-
- *) WinNT MPM: Don't crash during child process initialization if the
- Listen protocol is unrecognized. [Jeff Trawick]
-
*) mod_lua: Add a logging hook for modifying/skipping logs. [Daniel Gruno]
*) mod_status, mod_echo: Fix the display of client addresses.
*) mod_lua: Register LuaOutputFilter scripts as changing the content and
content-length by default, when run my mod_filter. Previously,
growing or shrinking a response that started with Content-Length set
- would require mod_filter and FilterProtocol change=yes. [Eric Covnener]
+ would require mod_filter and FilterProtocol change=yes. [Eric Covener]
*) mod_lua: Return a 500 error if a LuaHook* script doesn't return a
numeric return code. [Eric Covener]
- *) Add experimental cmake-based build system for Windows. [Jeff Trawick,
- Tom Donovan]
-
*) mod_authnz_fcgi: New module to enable FastCGI authorizer
applications to authenticate and/or authorize clients.
[Jeff Trawick]
- *) core: Add util_fcgi.h and associated definitions and support
- routines for FastCGI, based largely on mod_proxy_fcgi.
- [Jeff Trawick]
-
*) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
[Jeff Trawick]
*) core: Correctly parse an IPv6 literal host specification in an absolute
URL in the request line. [Stefan Fritsch]
- *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
-
*) EventOpt MPM
*) core: Add LogLevelOverride directive that allows to override the
projects / apache / blobdiff