-*- coding: utf-8 -*-
Changes with Apache 2.5.0
- *) mod_ssl: Fix possible truncation of OCSP responses when reading from the
- server. [Joe Orton]
+ *) core: Add ap_errorlog_provider to make ErrorLog logging modular. Move
+ syslog support from core to new mod_syslog. [Jan Kaluza]
- *) mod_session_dbd: Make sure that dirty flag is respected when saving
- sessions, and ensure the session ID is changed each time the session
- changes. [Takashi Sato <takashi tks.st>, Graham Leggett]
+ *) mod_proxy_fcgi: Handle reading protocol data that is split between
+ packets. [Jeff Trawick]
- *) mod_dav: Sending a MERGE request against a URI handled by mod_dav_svn with
- the source href (sent as part of the request body as XML) pointing to a
- URI that is not configured for DAV will trigger a segfault. [Ben Reser
- <ben reser.org>]
+ *) mod_proxy_fcgi: Remove 64K limit on encoded length of all envvars.
+ An individual envvar with an encoded length of more than 16K will be
+ omitted. [Jeff Trawick]
- *) mod_logio: new format-specifier %C (combined) which is the sum of received
- and sent byte counts.
- PR54015 [Christophe Jaillet]
-
- *) core: Remove apr_brigade_flatten(), buffering and duplicated code
- from the HTTP_IN filter, parse chunks in a single pass with zero copy.
- Reduce memory usage by 48 bytes per request. [Graham Leggett]
-
- *) mod_deflate: Remove assumptions as to when an EOS bucket might arrive.
- Gracefully step aside if the body size is zero. [Graham Leggett]
+ *) core: draft-ietf-httpbis-p1-messaging-23 corrections regarding
+ TE/CL conflicts. [Yann Ylavic <ylavic.dev gmail com>, Jim Jagielski]
+
+ *) mod_proxy_fcgi: Use apr_socket_timeout_get instead of hard-coded
+ 30 seconds timeout. [Jan Kaluza]
- *) 'AuthGroupFile' and 'AuthUserFile' do not accept anymore the optional
- 'standard' keyword . It was unused and not documented.
- PR54463 [Tianyin Xu <tixu cs.ucsd.edu> and Christophe Jaillet]
+ *) WinNT MPM: If ap_run_pre_connection() fails or sets c->aborted, don't
+ save the socket for reuse by the next worker as if it were an
+ APR_SO_DISCONNECTED socket. Restores 2.2 behavior. [Eric Covener]
- *) mod_proxy_http: Make the proxy-interim-response environment variable
- effective by formally overriding origin server behaviour. [Graham
- Leggett, Co-Advisor <coad measurement-factory.com>]
+ *) mod_cache: Avoid a crash with strcmp() when the hostname is not provided.
+ [Graham Leggett]
- *) core: Stop the HTTP_IN filter from attempting to write error buckets
- to the output filters, which is bogus in the proxy case. Create a
- clean mapping from APR codes to HTTP status codes, and use it where
- needed. [Graham Leggett]
+ *) mod_lua: Add rudimentary support for WebSocket interaction. This is
+ currently request-bound and only supports the WS protocol. [Daniel Gruno]
- *) mod_proxy: Ensure we don't attempt to amend a table we are iterating
- through, ensuring that all headers listed by Connection are removed.
- [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
+ *) mod_lua: Add getcookie/setcookie for reading/writing HTTP cookies
+ [Daniel Gruno]
- *) core: apachectl -S prints wildcard name-based virtual hosts twice.
- PR54948 [Eric Covener]
+ *) WinNT MPM: Don't crash during child process initialization if the
+ Listen protocol is unrecognized. [Jeff Trawick]
- *) mod_proxy: Reject invalid values for Max-Forwards. [Graham Leggett,
- Co-Advisor <coad measurement-factory.com>]
+ *) mod_lua: Add a logging hook for modifying/skipping logs. [Daniel Gruno]
- *) mod_cache: If a 304 response indicates an entity not currently cached, then
- the cache MUST disregard the response and repeat the request without the
- conditional. [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
+ *) mod_status, mod_echo: Fix the display of client addresses.
+ They were truncated to 31 characters which is not enough for IPv6 addresses.
+ PR 54848 [Bernhard Schmidt <berni birkenwald de>]
- *) mod_proxy: Fix seg-faults when using the global pool on threaded
- MPMs [Thomas Eckert <thomas.r.w.eckert gmail.com>, Jim Jagielski]
+ *) mod_lua: If the first yield() of a LuaOutputFilter returns a string, it should
+ be prefixed to the response as documented. [Eric Covener]
- *) mod_proxy: Ensure network errors detected by the proxy are returned as
- 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
- compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
- [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
+ *) mod_lua: Remove ETAG, Content-Length, and Content-MD5 when a LuaOutputFilter
+ is configured without mod_filter. [Eric Covener]
- *) mod_cache: Ensure that we don't attempt to replace a cached response
- with an older response as per RFC2616 13.12. [Graham Leggett, Co-Advisor
- <coad measurement-factory.com>]
+ *) mod_lua: Register LuaOutputFilter scripts as changing the content and
+ content-length by default, when run my mod_filter. Previously,
+ growing or shrinking a response that started with Content-Length set
+ would require mod_filter and FilterProtocol change=yes. [Eric Covnener]
- *) core, mod_cache: Ensure RFC2616 compliance in ap_meets_conditions()
- with weak validation combined with If-Range and Range headers. Break
- out explicit conditional header checks to be useable elsewhere in the
- server. Ensure weak validation RFC compliance in the byteranges filter.
- Ensure RFC validation compliance when serving cached entities. PR 16142
- [Graham Leggett, Co-Advisor <coad measurement-factory.com>]
+ *) mod_lua: Return a 500 error if a LuaHook* script doesn't return a
+ numeric return code. [Eric Covener]
- *) core: Add the ability to do explicit matching on weak and strong ETags
- as per RFC2616 Section 13.3.3. [Graham Leggett, Co-Advisor
- <coad measurement-factory.com>]
+ *) Add experimental cmake-based build system for Windows. [Jeff Trawick,
+ Tom Donovan]
- *) mod_cache: Ensure that updated responses to HEAD requests don't get
- mistakenly paired with a previously cached body. Ensure that any existing
- body is removed when a HEAD request is cached. [Graham Leggett,
- Co-Advisor <coad measurement-factory.com>]
+ *) mod_authnz_fcgi: New module to enable FastCGI authorizer
+ applications to authenticate and/or authorize clients.
+ [Jeff Trawick]
- *) mod_cache: Honour Cache-Control: no-store in a request. [Graham Leggett]
+ *) mod_auth_basic: Add AuthBasicUseDigestAlgorithm directive to
+ allow migration of passwords from digest to basic authentication.
+ [Chris Darroch]
- *) mod_cache: RFC2616 14.9.3 The s-maxage directive also implies the
- semantics of the proxy-revalidate directive. [Graham Leggett]
+ *) core: Add util_fcgi.h and associated definitions and support
+ routines for FastCGI, based largely on mod_proxy_fcgi.
+ [Jeff Trawick]
- *) mod_cache: Make sure that contradictory entity headers present in a 304
- Not Modified response are caught and cause the entity to be removed.
- [Graham Leggett]
+ *) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
+ [Jeff Trawick]
- *) mod_cache: Make sure Vary processing handles multivalued Vary headers and
- multivalued headers referred to via Vary. [Graham Leggett]
+ *) mod_unique_id: Use output of the PRNG rather than IP address and
+ pid, avoiding sleep() call and possible DNS issues at startup,
+ plus improving randomness for IPv6-only hosts.
+ [Jan Kaluza <jkaluza redhat.com>]
- *) mod_cache: When serving from cache, only the last header of a multivalued
- header was taken into account. Fixed. [Graham Leggett]
+ *) mod_authnz_ldap: Support primitive LDAP servers that do not accept
+ filters, such as "SDBM-backed LDAP" on z/OS, by allowing a special
+ filter "none" to be specified in AuthLDAPURL. [Eric Covener]
- *) mod_cache: Ignore response headers specified by no-cache=header and
- private=header as specified by RFC2616 14.9.1 What is Cacheable. Ensure
- that these headers are still processed when multiple Cache-Control
- headers are present in the response. PR 54706 [Graham Leggett,
- Yann Ylavic <ylavic.dev gmail.com>]
+ *) mod_file_cache: mod_file_cache should be able to serve files that
+ haven't had a Content-Type set via e.g. mod_mime. [Eric Covener]
- *) mod_cache: Invalidate cached entities in response to RFC2616 Section
- 13.10 Invalidation After Updates or Deletions. PR 15868 [Graham
- Leggett]
+ *) core: merge AllowEncodedSlashes from the base configuration into
+ virtual hosts. [Eric Covener]
- *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
- [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
- <alejandro.alvarez.ayllon cern.ch>]
+ *) AIX: Install DSO's with "cp" instead of "install" in instdso.sh
+ [Eric Covener]
- *) mod_dav: Do not segfault on PROPFIND with a zero length DBM.
- PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
+ *) mod_ldap: Don't keep retrying if a new LDAP connection times out.
+ [Eric Covener]
- *) mod_dav: Do not fail PROPPATCH when prop namespace is not known.
- PR 52559 [Diego Santa Cruz <diego.santaCruz spinetix.com>]
+ *) mod_deflate: permit compilation of mod_deflate against a zlib that has
+ been configured with -D Z_PREFIX, which redefines the token "deflate".
+ [Eric Covener]
- *) mod_dav: When a PROPPATCH attempts to remove a non-existent dead
- property on a resource for which there is no dead property in the same
- namespace httpd segfaults. PR 52559 [Diego Santa Cruz
- <diego.santaCruz spinetix.com>]
+ *) mod_socache_shmcb.c: Remove arbitrary restriction on shared memory size
+ previously limited to 64MB. [Jens Låås <jelaas gmail.com>]
- *) mod_dav: Ensure URI is correctly uriencoded on return. PR 54611
- [Timothy Wood <tjw omnigroup.com>]
+ *) mod_auth_digest: Use the secret when generating nonces in all cases and
+ not only when AuthName is used in .htaccess files (this change may cause
+ problems if used with round robin load balancers). Don't regenerate the
+ secret on graceful restarts. PR 54637 [Stefan Fritsch]
- *) mod_dav: Sending a If or If-Match header with an invalid ETag doesn't
- result in a 412 Precondition Failed. PR 54610 [Timothy Wood
- <tjw omnigroup.com>]
+ *) ab: Add a new -l parameter in order not to check the length of the responses.
+ This can be usefull with dynamic pages.
+ PR9945, PR27888, PR42040 [<ccikrs1 cranbrook edu>]
+
+ *) mod_logio: new format-specifier %C (combined) which is the sum of received
+ and sent byte counts.
+ PR54015 [Christophe Jaillet]
- *) mod_dav: Make sure that when we prepare an If URL for Etag comparison,
- we compare unencoded paths. PR 53910 [Timothy Wood <tjw omnigroup.com>]
+ *) core: Remove apr_brigade_flatten(), buffering and duplicated code
+ from the HTTP_IN filter, parse chunks in a single pass with zero copy.
+ Reduce memory usage by 48 bytes per request. [Graham Leggett]
- *) core, mod_ssl: Lift the restriction that prevents mod_ssl taking
- full advantage of the event MPM. Enable the ability for a module
- to reverse the sense of a poll event from a read to a write or vice
- versa. [Graham Leggett]
+ *) core: Stop the HTTP_IN filter from attempting to write error buckets
+ to the output filters, which is bogus in the proxy case. Create a
+ clean mapping from APR codes to HTTP status codes, and use it where
+ needed. [Graham Leggett]
- *) htpasswd: Add -v option to verify a password. [Stefan Fritsch]
+ *) mod_proxy: Ensure network errors detected by the proxy are returned as
+ 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
+ compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
- *) htpasswd, htdbm: Fix password generation. PR 54735. [Stefan Fritsch]
+ *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
+ [Basant Kumar Kukreja <basant.kukreja sun.com>, Alejandro Alvarez
+ <alejandro.alvarez.ayllon cern.ch>]
- *) mod_dav: Improve error handling in dav_method_put(), add new
- dav_join_error() function. PR 54145. [Ben Reser <ben reser.org>]
+ *) core, mod_ssl: Enable the ability for a module to reverse the sense of
+ a poll event from a read to a write or vice versa. This is a step on
+ the way to allow mod_ssl taking full advantage of the event MPM.
+ [Graham Leggett]
- *) mod_auth_digest: Fix crashes if shm initialization failed. [Stefan
- Fritsch]
-
*) mod_ldap: LDAP connections used for authentication were not respecting
LDAPConnectionPoolTimeout. PR 54587
*) core: Add option to add valgrind support. Use it to reduce false positive
warnings in mod_ssl. [Stefan Fritsch]
- *) mod_lua: Add bindings for apr_dbd/mod_dbd database access
- [Daniel Gruno]
-
*) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
Cache the result of the most recent password hash verification for every
keep-alive connection. This saves some expensive calculations.
*) core: Correctly parse an IPv6 literal host specification in an absolute
URL in the request line. [Stefan Fritsch]
- *) mod_ssl: add support for subjectAltName-based host name checking
- in proxy mode. PR 54030. [Kaspar Brand]
-
- *) mpm_event: Check that AsyncRequestWorkerFactor is not negative. PR 54254.
- [Jackie Zhang <jackie qq zhang gmail com>]
-
*) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
*) EventOpt MPM
*) mod_allowhandlers: New module to forbid specific handlers for specific
directories. [Stefan Fritsch]
- *) configure: Fix processing of --disable-FEATURE for various features.
- [Jeff Trawick]
-
*) mod_systemd: New module, for integration with systemd on Linux.
[Jan Kaluza <jkaluza redhat.com>]
- *) mod_cache_socache: New cache implementation backed by mod_socache
- that replaces mod_mem_cache removed from httpd v2.2. [Graham
- Leggett]
-
- *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
- to be used without patches to httpd core. [Jeff Trawick]
-
- *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
- filters in Lua [Daniel Gruno]
-
*) WinNT MPM: Store pid and generation for each thread in scoreboard
to allow tracking of threads from exiting children via mod_status
or other such mechanisms. [Jeff Trawick]
SSLProxyMachineCertificateFile/Path directives. PR 52212.
[Keith Burdis <keith burdis.org>, Joe Orton]
- *) mod_lua: Allow scripts handled by the lua-script handler to return
- a status code to the client (such as a 302 or a 500) [Daniel Gruno]
-
- *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
- rather than throwing an internal server error. [Daniel Gruno]
-
- *) mod_lua: Add functions r:flush and r:sendfile as well as additional
- request information to the request_rec structure. [Daniel Gruno]
-
- *) mod_lua: Add a server scope for Lua states, which creates a pool of
- states with managable minimum and maximum size. [Daniel Gruno]
-
- *) core: Add post_perdir_config hook.
- [Steinar Gunderson <sgunderson bigfoot.com>]
-
- *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
- URIs to Lua scripts and functions using regular expressions.
- [Daniel Gruno]
-
- *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
- caching of lua scripts. [Daniel Gruno]
-
*) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
- APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
- core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
projects / apache / blobdiff