-APACHE 2.0 STATUS: -*-text-*-
-Last modified at [$Date: 2002/02/06 02:08:46 $]
+APACHE 2.0 STATUS: -*-text-*-
+Last modified at [$Date: 2002/03/26 20:35:50 $]
Release:
- 2.0.32 : in development
- 2.0.31 : rolled Feburary 1, 2002.
+ 2.0.34 : tagged March 26, 2002.
+ 2.0.33 : tagged March 6, 2002. not released.
+ 2.0.32 : released Feburary 16, 2002 as beta.
+ 2.0.31 : rolled Feburary 1, 2002. not released.
2.0.30 : tagged January 8, 2002. not rolled.
2.0.29 : tagged November 27, 2001. not rolled.
- 2.0.28 : released November 13, 2001
+ 2.0.28 : released November 13, 2001 as beta.
2.0.27 : rolled November 6, 2001
2.0.26 : tagged October 16, 2001. not rolled.
2.0.25 : rolled August 29, 2001
* docs/STATUS
-RELEASE SHOWSTOPPERS:
- * 31 BETA STATUS:
- running on Daedalus since 02-Feb-2002 7:58 PST (need 3 days)
- Compiles on : AIX 4.3, Solaris, FreeBSD 3.4 & 4.5, Win32,
- Linux 2.2 & 2.4, HPUX
- Broken on: Win32 [no error logging within service, other bugs]
- for beta
- +1 : Jeff Trawick, Aaron, Jim
- +0 : Lars
- -0 : OtherBill
- -1 : BillS, Ian, gregames, Justin, BrianP
- bumps since original tag:
- * mod-dir patch
- * scoreboard x2 : 1 to fix gracefull restarts
- 1 to fix netware
- * win32/locks.c : to fix mod_rewrite on win32
-
- problems with v31:
- * libtool/binbuild on AIX -- possible addition of patched
- binbuild.sh to 31-beta roll
- +1: Ian, Justin
- +0:
- -1:
- Jeff says: We can't do anything about libtool since AIX
- needs a version that won't work on some
- platforms. Handle this in the README.
- The binbuild issue isn't AIX. It is
- something that could happen anywhere that
- the binbuild-er has their own expat.
- Handle this by patching binbuild.sh for a
- beta roll or putting a patch in the README for
- use by people who want to do binbuild but
- have expat installed locally.
- gregames: why can't we roll a second tarball with the
- appropriate libtool version? doesn't
- Darwin need it as well as AIX?
-
- * erroneous check in an AP_DEBUG_ASSERT() call. Only happens
- in maintainer mode. Fixed in modules/http/http_protocol.c
- revision 1.391. Add item in release notes:
- +1: Justin, Cliff, Aaron, BillS, Jim, trawick
- +0:
- -1:
-
- * seg faults in core_input_filter when the client goes away
- before any POST body bytes are received.
- Jeff committed a fix with server/core.c revision 1.144.
-
- * FirstBill reports problem [re]starting as-a-service, shared
- score is suspect. OtherBill is investigating... has found
- . created restart and shutdown events, only restart
- survived initialization on XP, although breaking into
- the debugger interferes with reproducing the bug.
- Perhaps in FirstBill's example _restart didn't survive.
- . Scoreboard appears irrelevant to the problem.
- . This looks like handle corruption in NT/XP
- . Args are not initialied correctly when the -k install
- is given.
- OtherBill will not create Win32 binaries due to this bug.
-
- * mod_auth_dbm can't open a Berkely DB password file on Unix
- Justin postulates that this might be related to the fact
- that mod_auth_dbm wasn't using apr-util. See
- modules/aaa/mod_auth_dbm.c revision 1.42 and
- module/aaa/config.m4 revision 1.54.
-
- * Madhu reports that the worker MPM doesn't shutdown nicely
- after a stress test.
-
- * mod_autoindex displays the wrong icon for subdirectories
- on Unix
-
- * anon shared memory not allocating enough
- (fix is apr/shm/unix/shm.c 1.14)
-
- * ap_directory_walk skips some per-dir config merge functions
- if there is no "<Directory />" block in the configuration
- Message-ID: <m3itbdiijq.fsf@rdu163-40-092.nc.rr.com>
- * That is very unlikely, merges are additive. Much more likely,
- the default SetOutputFilter default or merge is borked.
- Unless it's the code that permits 'null' merges, per module.
- Still, it's probably in SetOutputFilter's behavior.
- * BrianP notes: directory_walk's handling of trailing slashes
- appears to be the cause: http://www.apachelabs.org/apache-mbox/200112.mbox/%3c3C1CF721.1090300@pacbell.net%3e
-
- * Test suite failures:
+CURRENT RELEASE NOTES:
+
+ * 34 status: Let's get all API changes and showstoppers in this one.
+ Please.
+
+FINAL RELEASE SHOWSTOPPERS:
+
+ * API changes planned for 2.0 that should happen before the
+ GA release:
+ * Free lists for bucket allocation
+
+ * We do not properly substitute the prefix-variables in the configuration
+ scripts or generated-configs. (i.e. if sysconfdir is etc,
+ httpd-std.conf points to conf.)
+ Aaron says: This is not a showstopper, these problems have existed
+ for as long as I can remember. It would be nice to fix
+ them but they are not new.
+ Not a showstopper: Jeff, Aaron, BillS, gregames
+
+CURRENT VOTES:
+
+ * Should we always build [support*] binaries statically unless otherwise
+ indicated?
+ Message-ID: <20020129210006.B23512@Lithium.MeepZor.Com>
+
+ +1: Ken, *wrowe [they are PITAs on OSX]
+ -1: Justin, Ian
+
+ * If the parent process dies, should the remaining child processes
+ "gracefully" self-terminate. Or maybe we should make it a runtime
+ option, or have a concept of 2 parent processes (one being a
+ "hot spare").
+ See: Message-ID: <3C58232C.FE91F19F@Golux.Com>
+
+ Self-destruct: Ken, Martin
+ Not self-destruct: BrianP, Ian, Cliff, BillS
+ Make it runtime configurable: Aaron, Jim, Justin
+ Have 2 parents: +1: Jim
+ -1: Justin, wrowe [for 2.0]
+ +0: Martin (while standing by, could it do
+ something useful?)
+
+ * Make the worker MPM the default MPM for threaded Unix boxes.
+ +1: Justin, Ian, Cliff
+ -0: Aaron (premature decision, needs more discussion), Lars
+
+RELEASE NON-SHOWSTOPPERS BUT WOULD BE REAL NICE TO WRAP THESE UP:
+
+ * If any request gets through ap_process_request_internal() and is
+ scheduled to be served by the core handler, without a flag that this
+ r->filename was tested by dir/file_walk, we need to 500 at the very
+ end of the ap_process_request_internal() processing so sub_req-esters
+ know this request cannot be run. This provides authors of older
+ modules better compatibility, while still improving the security and
+ robustness of 2.0.
+
+ Status: still need to decide where this goes, OtherBill comments...
+ Message-ID: <065701c14526$495203b0$96c0b0d0@roweclan.net>
+ [Deleted comments regarding the ap_run_handler phase, as irrelevant
+ as BillS points out that "common case will be caught in
+ default_handler already (with the r->finfo.filetype == 0 check)"
+ and the issue is detecting this -before- we try to run the req.]
+
+ gregames says: can this happen somehow without a broken module
+ being involved? If not, why waste cycles trying to defend against
+ potential broken modules? It seems futile.
+ wrowe counters: no, it shouldn't happen unless the module is broken.
+ But the right answer is to fail the request up-front in dir/file
+ walk if the path was entirely invalid; and we can't do that either
+ or we break modules that are unwilling to hook map_to_storage.
+
+ * Rewrite core_output_filter. It is nearly impossible to support
+ it with predictable results as it is implemented now.
+
+ * Convert all instances of the old apr_lock_t type to the new
+ types.
+ Status: Aaron has converted all but the perchild MPM to
+ use the new lock API. Since perchild has been put
+ on the back burner, this is no longer a showstopper.
+ Aaron will patch perchild as soon as it becomes
+ buildable again.
+
+ * With AP_MODE_EXHAUSTIVE in the core, it is finally clear to me
+ how the Perchild MPM should be re-written. It hasn't worked
+ correctly since filters were added because it wasn't possible to
+ get the content that had already been written and the socket at
+ the same time. This mode lets us do that, so the MPM can be
+ fixed.
+
+ * htpasswd blindly processes the file you give it, and does no
+ sanity checking before totally corrupting whatever file it was
+ you thought you had. It should check the input file and bail
+ if it finds non-comment lines that do not contain exactly 1
+ ':' character.
+ Message-ID: <20020217150457.A31632@clove.org>
+
+ * Can a static httpd be built reliably?
+ Message-ID: <20020207142751.T31582@clove.org>
+
+ * [Ken] Test suite failures:
o worker is also failing some of the 'cgi' subtests
(see <URL:http://Source-Zone.Org/Apache/regression/>):
Justin says: "Worker should be fine and passes httpd-test here.
think it's a perl or a httpd-test problem."
Not a showstopper: Justin
- * If any request gets to the core handler, without a flag that this
- r->filename was tested by dir/file_walk, we need to 500 at the very
- end of the ap_process_request_internal() processing. This provides
- authors of older modules better compatibility, while still improving
- the security and robustness of 2.0.
- Status: still need to decide where this goes, OtherBill comments...
- Message-ID: <065701c14526$495203b0$96c0b0d0@roweclan.net>
- we need to look at halting this in the 'default handler' case,
- and that implies pushing the 'handler election' into the request
- internal processing phase from the run request phase.
-
+ * Usage of APR_BRIGADE_NORMALIZE in core_input_filter should be
+ removed if possible.
+ Message-ID: <Pine.LNX.4.33.0201202232430.318-100000@deepthought.cs.virginia.edu>
+
* There is a bug in how we sort some hooks, at least the pre-config
hook. The first time we call the hooks, they are in the correct
order, but the second time, we don't sort them correctly. Currently,
autoconf or m4?"
Not a showstopper: Justin, BrianP, trawick, gregames
- * Convert all instances of the old apr_lock_t type to the new
- types (once they are fully supported in APR).
- Status: Aaron is working on converting INTRAPROCESS
- to apr_thread_mutex_t types. Full replacements for
- LOCKALL and CROSS_PROCESS are not yet complete on all
- platforms, and should only be used in MPMs like worker
- with limited OS exposure.
- BrianP asks: "Is this really a showstopper?"
- IanH says: "If we don't do it before we go live we will have 2
- different API's to support in APR"
-
- * A binbuild installation picks up the right libraries when
- running apachectl because we set the appropriate environment
- variable, but ab, htpasswd, etc. don't know how to pick up apr,
- apr-util, etc.
- Message-ID: <20020116000226.GA15991@ebuilt.com>
- Justin says: "You could always build all of the binaries
- statically if you don't want to let libtool
- handle it. At most, I don't consider this a
- a release showstopper as it is a packaging issue."
- Ken sez: "Showstopper because, until it's the default, it
- violates the P of LA. Binaries will give strange
- errors and not run if moved."
- Status: Aaron volunteers: I'll commit a patch to allow all
- the support binaries to be built statically against
- libapr/libaprutil/etc and then enable it in binbuild.
- gregames says: what about httpd? yeah, it works at the moment
- if you use apachectl. But I've already heard
- complaints about not being able to execute
- httpd directly.
-
-RELEASE NON-SHOWSTOPPERS BUT WOULD BE REAL NICE TO WRAP THESE UP:
-
* The Add...Filter and Set...Filter directives do not allow the
administrator to order filters, beyond the order of filename (mime)
extensions. It isn't clear if Set...Filter(s) should be inserted
Not a showstopper: justin, wrowe, trawick, stoddard, Jim, Ian, Aaron,
gregames
- * Should we always build binaries statically unless otherwise
- indicated?
- Message-ID: <20020129210006.B23512@Lithium.MeepZor.Com>
-
- +1: gregames
- -1: Justin, Ian
-
- * If the parent process dies, should the remaining child processes
- "gracefully" self-terminate. Or maybe we should make it a runtime
- option, or have a concept of 2 parent processes (one being a
- "hot spare").
- See: Message-ID: <3C58232C.FE91F19F@Golux.Com>
-
- Self-destruct: Ken, Martin
- Not self-destruct: BrianP, Ian, Cliff, BillS
- Make it runtime configurable: Aaron, Jim, Justin
- Have 2 parents: +1: Jim
- -1: Justin
- +0: Martin (while standing by, could it do
- something useful?)
- look at accept() error handling first: gregames
-
- * Make some modifications to the scoreboard creation routines,
- prefer anonymous shared memory, and allow a configuration
- directive to override the defaults.
- Message-ID: <20020130080804.C16977@clove.org>
- Status: Aaron volunteers
-
* Get perchild to work on platforms other than Linux. This
will require a portable mechanism to pass data and file/socket
descriptors between vhost child groups. An API was proposed
on dev@apr:
Message-ID: <20020111115006.K1529@clove.org>
- Vote: Is a non-portable perchild going to hold up a GA release?
- Yes: Ken
- No: Aaron, Justin, trawick, stoddard, Jim, Ian, BrianP, gregames
-
- * Recent changes to ap_rgetline may have broken EBCDIC boxes.
- Message-ID: <20020122072605.GF28051@ebuilt.com>
- Justin says: "I don't have an EBCDIC box to test on. A potential
- solution is to split out ap_rgetline into two
- functions as described in this message."
- gregames says: I see the breakage now, and volunteer to fix it
- when things calm down a little. It looks OK when
- there are complete lines and no mime continuations.
-
- * Modify the worker MPM so that it doesn't need to create and
- destroy a pool for each request--possibly by adopting a
- leader/follower model in which each worker owns a persistent
- ptrans pool (like the prefork MPM) and the workers take
- turns acting as listeners...this approach might also help
- reduce context-switching
* CGI single-byte reads
BrianP suggests that this is caused by the ap_scan_script_header_err()
routine, which will do single-byte reads until it finds the end
of the header, at which point it constructs a pipe-bucket (buffered)
to read from.
-
Proposed solution in:
Message-ID: <3C36ADAF.60601@cnet.com>
+ Update 3/23/2002: solution implemented for mod_cgi, mod_cgid remains
+ to be fixed
* Try to get libtool inter-library dependency code working on AIX.
-
Message-ID: <cm3n10lx555.fsf@rdu163-40-092.nc.rr.com>
Justin says: If we get it working on AIX, we can enable this
lost. This might be an APR issue with how it deals with
the child_init hook (i.e. the fcntl lock needs to be resynced).
More examination and analysis is required.
- Status: This has also been reported on Cygwin.
-
- Message-ID: <3C2CC514.8EF3BED1@wapme-systems.de> (cygnus)
+ Status: This has also been reported on Cygwin.
+ Message-ID: <3C2CC514.8EF3BED1@wapme-systems.de> (cygnus)
Justin says: So, FreeBSD-CURRENT and Cywin have the same
problem. Yum. If another platform has this
Reasons include sole-function servers that need to die if
an external dependency (e.g., a database) fails, et cetera.
Perhaps something in the (ever more abused) scoreboard?
- rbb: I don't believe the scoreboard is the correct mechanism
- for this. We already have a pipe that goes between parent
- and child for graceful shutdown events, along with an API that
- can be used to send a message down that pipe. In threaded MPMs,
- it is easy enough to make that one pipe be used for graceful
- and graceless events, and it is also easy to open that pipe
- to both parent and child for writing. Then we just need to figure
- out how to do graceless on non-threaded MPMs.
-
- * revamp the input filter behavior, per discussions since
- February (and especially at the hackathon last
- April). Specifically, ap_get_brigade will return a brigade with
- *up to* a specific number of bytes, or a "line" of data. The
- read may be blocking or nonblocking. ap_getline() will be
- refactored into apr_brigade_getline(), and then DECHUNK can use
- f->next (ap_getline will always read "top of input stack"). Also
- fix the bug where request body content will end up closing the
- connection (buggering up persistent conns).
- Status: Justin is working on this as fast as he can.
- The core input filters, HTTP-related filters, mod_ssl,
- mod_proxy, and ap_[r]getline are switched to the new logic.
-
- - socket bucket and core input filter changes. see end of
- message ID (Feb 27): <20010227075326.S2297@lyra.org>
-
- - fix up ap_get_brigade() semantics, fix bug in DECHUNK /
- ap_getline. many messages (plus their threads) (Apr/May):
- Message-ID: <20010402101207.J27539@lyra.org>
- Message-ID: <3AF7F921.D2EEC41A@algroup.co.uk>
- Message-ID: <20010508190029.E18404@lyra.org>
-
- - further work with combining/tweaking the builtin filters:
- Message-ID: <20010509115445.D1374@lyra.org>
-
- - thoughts on filter modes:
- Message-ID: <021b01c14dee$09782af0$93c0b0d0@roweclan.net>
-
- - proposal for getline rewrite:
- Message-ID: <20011231104019.GD3904@ebuilt.com>
-
- - patch for getline rewrite:
- Message-ID: <20020122072605.GF28051@ebuilt.com>
-
- - Change ap_get_brigade prototype:
- Message-ID: <20020120115136.GI17601@ebuilt.com>
+ rbb: I don't believe the scoreboard is the correct mechanism
+ for this. We already have a pipe that goes between parent
+ and child for graceful shutdown events, along with an API that
+ can be used to send a message down that pipe. In threaded MPMs,
+ it is easy enough to make that one pipe be used for graceful
+ and graceless events, and it is also easy to open that pipe
+ to both parent and child for writing. Then we just need to
+ figure out how to do graceless on non-threaded MPMs.
* Allow the DocumentRoot directive within <Location > scopes? This
allows the beloved (crusty) Alias /foo/ /somepath/foo/ followed
goes down hard. FirstBill was looking at possibly tracking the
child's-child processes in the parent process.
OtherBill asks, wasn't this fixed?
- stoddard: Not fixed. Shared scoreboard might offer a good
- way for the parent to keep track of 'other child' processes
- and whack them if the child goes down.
+ stoddard: Not fixed. Shared scoreboard might offer a good
+ way for the parent to keep track of 'other child' processes
+ and whack them if the child goes down.
+ Other thoughts on walking the process chain using the NT kernel
+ have also been proposed on APR.
* Win32: Add a simple hold console open patch (wait for close or
the ESC key, with a nice message) if the server died a bad
The current porting state is summarized in modules/ssl/README. The
remaining work includes:
(1) stablizing/optimizing the SSL filter logic
- (2) Enabling the various SSL caching mechanisms (shmcb, shmht)
- (3) Enabling SSL extentions
- (4) Trying to seperate the https filter logic from mod_ssl -
+ (2) Enabling SSL extentions
+ (3) Trying to seperate the https filter logic from mod_ssl -
This is to facilitate other modules that wish to use the https
filter or the mod_ssl logic or both as required.
- Justin: mod_ssl filter logic is redone, so that should be fine.
- Madhu has submitted a patch for SSL caching - however, I
- am -0 on that patch as I *think* we could implement the
- shared memory another way that is much cleaner (i.e.
- treat shmem directly as a dbm via APR routines). Justin
- also thinks that the https filter logic may be sufficiently
- decoupled now, but isn't really sure.
* Performance & Debug: Eliminate most (and perhaps all) of the
malloc/free calls in the bucket brigade code. Need some
* Eliminate unnecessary creation of pipes in mod_cgid
- * the autoconf setup should be fixed to default to using the
- "Apache" layout from config.layout, and each variable settable
- in a layout should be overridable on the command line. Plus,
- what we do right now just doesn't seem to fully fit into how autoconf
- works, eg. AC_PREFIX_DEFAULT issues.
- Message-ID: <Pine.BSF.4.20.0104031557420.20876-100000@alive.znep.com>
-
* Combine log_child and piped_log_spawn. Clean up http_log.c.
Common logging API.
* Mass vhosting version of suEXEC.
* All DBMs suffer from confusion in support/dbmmanage (perl script) since
- the dbmmanage employs the first-matched dbm format. This is not
- necessarily the library that Apache was built with. Aught to
- rewrite dbmmanage upon installation to bin/ with the proper library
- for predictable mod_auth_dbm administration.
+ the dbmmanage employs the first-matched dbm format. This is not
+ necessarily the library that Apache was built with. Aught to
+ rewrite dbmmanage upon installation to bin/ with the proper library
+ for predictable mod_auth_dbm administration.
Questions; htdbm exists, time to kill dbmmanage, or does it remain
useful as a perl dbm management example? If we keep it,
do we address the issue above?
- * use apu_dbm in mod_auth_dbm
- Status: Greg +1 (low-priority volunteer)
- Justin says: "Seems like this is already there, so should we just
- remove the other DBM code in that file? If you want
- to use gdbm, or dbm, etc, you should tell apr-util."
- Will says: "bs - I may choose the fastest - most efficient native
- dbm implementation, for shared proc caches, ssl session
- caching, etc, but that has nothing to do with maintaining
- a userlist via dbm, which has to remain readable between
- builds/machines, etc. The use-multiple database schema
- for apr-util would let us do this with just apr, though."
- Ian says: "multi-dbm is in, but it still has ndbm support hardcoded
- is this still required? isn't ndbm supported via gdbm?"
-
-
* Integrate mod_dav.
Some additional items remaining:
- - case_preserved_filename stuff
- (use the new canonical name stuff?)
- - find a new home for ap_text(_header)
- - is it possible to remove the DAV: namespace stuff from util_xml?
+ - case_preserved_filename stuff
+ (use the new canonical name stuff?)
+ - find a new home for ap_text(_header)
+ - is it possible to remove the DAV: namespace stuff from util_xml?
* ap_core_translate() and its use by mod_mmap_static and mod_file_cache
are a bit wonky. The function should probably be exposed as a utility
for failure (Doug volunteers)
* Win32: Get Apache working on Windows 95/98. The following work
- (at least) needs to be done:
- - winnt MPM: Fix 95/98 code paths in the winnt MPM. There is some NT
- specific code that is still not in NT only code paths
- - IOL binds to APR sendfile, implemented with TransmitFile, which
- is not available on 95/98.
+ (at least) needs to be done:
- Document warning that OSR2 is required (for Crypt functions, in
rand.c, at least.) This could be resolved with an SSL library, or
randomization in APR itself.
search for libssl and libcrypto and properly add them to mod_ssl's
link flags.
- * Make the worker MPM the default MPM for threaded Unix boxes.
- +1: Justin, Jeff, Ian
- -0: Aaron (premature decision, needs more discussion), Lars
- -0: Cliff (I think the default config should be the safest possible)
-
* Fix the worker MPM to use POD to kill child processes instead
of ap_os_killpg, regardless of how they should die. (Ryan Bloom)
+ * mod_cache: handle cache_control: no_cache "field_name" to enable
+ cacheing the response w/o header "field_name"
+ See RFC2616 section 14.9.1
+
+ * Scoreboard structures could be changed in the future such that
+ proper alignment is not maintained, leading to segfaults on
+ some systems. Cliff posted a patch to deal with this issue but
+ later recanted. See this message to dev@apr.apache.org:
+ Message-ID: <Pine.LNX.4.44.0203011354090.16457-200000@deepthought
+ .cs.virginia.edu>
+
PRs that have been suspended forever waiting for someone to
put them into 'the next release':
* PR#76: general
missing call to "setlocale();"
- Status:
+ Status:
* PR#78: mod_include
Additional status for XBitHack directive
- Status:
+ Status:
* PR#362: mod_proxy
Mod_proxy doesn't allow change of error pages
- Status:
+ Status:
* PR#370: mod_env
Modified PATH environemnt variable is not passed, instead
system's is used
- Status:
+ Status:
* PR#440: mod_proxy
Proxy doesn't deliver documents if not connected
- Status:
+ Status:
* PR#534: mod_proxy
proxy converts ~name to %7Ename when name starts with a dot (.)
- Status:
+ Status:
* PR#537: mod_access
mod_access syntax allows hosts that should be restricted
- Status:
+ Status:
* PR#557: mod_auth-any
~UserHome directories are not honored in absolute pathname
requests (.htaccess)
- Status:
+ Status:
* PR#612: mod_proxy
Proxy FTP Authentication Fails
- Status:
+ Status:
* PR#623: mod_include
A smarter "Last Modified" value for SSI documents (see PR number 600)
- Status:
+ Status:
* PR#628: config
Request of "Options SymLinksIfGroupMatch"
- Status:
+ Status:
* PR#700: mod_proxy
Proxy doesn't do links right for OpenVMS files through ftp:
- Status:
+ Status:
* PR#759: mod_imap
imap should read <MAP><AREA>*</MAP> too!
- Status:
+ Status:
* PR#793: general
RLimitCPU and RLimitMEM don't apply to all children like they should
- Status:
+ Status:
* PR#921: suexec
Uses cwd before filling it in, doesn't use syslog
- Status:
+ Status:
* PR#922: config
it is useful to allow specifiction that root-owned symlinks
should always be followed
- Status:
+ Status:
* PR#980: mod_proxy
Controlling Access to Remote Proxies would be nice...
- Status:
+ Status:
* PR#994: mod_proxy
Adding authentication "on the fly" through the proxy module
- Status:
+ Status:
* PR#1004: apache-api
request_config field in request_rec is moderately bogus
- Status:
+ Status:
* PR#1028: other
DoS attacks involving memory consumption
- Status:
+ Status:
* PR#1050: mod_log-any
Logging of virtual server to error_log as well
- Status:
+ Status:
* PR#1085: mod_proxy
ProxyRemote make a dead cycle.
- Status:
+ Status:
* PR#1117: mod_auth-any
Using NIS passwd.byname dbm files with AuthDBMUserFile
- Status:
+ Status:
* PR#1120: suexec
suexec does not parse arguments to #exec cmd
- Status:
+ Status:
* PR#1145: mod_include
Allow for Last-Modified: without resorting to XBitHack
- Status:
+ Status:
* PR#1158: apache-api
improvements to child spawning API
- Status:
+ Status:
* PR#1166: mod_proxy
``nph-'' not honored (no buffering) for ProxyRemote mapping
- Status:
+ Status:
* PR#1176: mod_cgi
Apache cannot handle continuation line in headers
- Status:
+ Status:
* PR#1191: general
setlogin() is not called, causing problems with e.g. identd
- Status:
+ Status:
* PR#1204: general
regerror() exists, use it
- Status:
+ Status:
* PR#1233: apache-api
there is no way to keep per-connection per-module state
- Status:
+ Status:
* PR#1263: mod_autoexec
Add frame-safe anchor attribute to mod_autoindex links
- Status:
+ Status:
* PR#1268: suexec
CGI scripts running as Apache user: security (suexec etc.)
- Status:
+ Status:
* PR#1285: suexec
Error messages could be easier to spot in cgi.log file for suexec.c
- Status:
+ Status:
* PR#1287: mod_access
add allow,deny/deny,allow warning to mod_access
- Status:
+ Status:
* PR#1290: mod_proxy
Need to know "hit-rate" on proxy cache
- Status:
+ Status:
* PR#1358: mod_log-any
Selective url-encode of log fields (or maybe a pseudo
log_rewrite module?)
- Status:
+ Status:
* PR#1383: mod_headers
I make mod_headers to modify request headers as well as
response ones.
- Status:
+ Status:
* PR#1532: mod_proxy
Proxy transfer logging
- Status:
+ Status:
* PR#1547: mod_proxy
No HTTP_X_FORWARDED_FOR set...
- Status:
+ Status:
* PR#1567: mod_proxy
ProxyRemote proxy requests fail authentication by firewall
- Status:
+ Status:
* PR#1582: mod_rewrite
mod_rewrite forms REQUEST_URI different than mod_cgi does
- Status:
+ Status:
* PR#1677: mod_headers
mod_headers should allow mod_log_config-style formats in
header values
- Status:
+ Status:
* PR#1702: mod_proxy
mod_proxy to support persistent conns?
- Status:
+ Status:
* PR#1803: mod_include
patches to mod_include to allow for file tests
- Status:
+ Status:
* PR#1809: mod_auth-any
Suggestion for improving authentication modules and core source
code, problem with 401 and ErrorDocument
- Status:
+ Status:
* PR#1878: mod_proxy
listing of proxy cache content
- Status:
+ Status:
* PR#1905: suexec
Allow modules to set user:group for execution.
- Status:
+ Status:
* PR#2024: apache-api
adding auth_why to conn_rec
- Status:
+ Status:
* PR#2073: mod_log-any
pipelined connections are not logged correctly
- Status:
+ Status:
* PR#2074: mod_rewrite
mod_rewrite doesn't pass Proxy Throughput on internal subrequests
- Status:
+ Status:
* PR#2113: config
HTTP Server Rebuild Line Needs Changing for the better
- Status:
+ Status:
* PR#2138: mod_status
mod_status always displays 256 possible connection slots
- Status:
+ Status:
* PR#2221: documentation
Make online documentation search link back to my installation
- Status:
+ Status:
* PR#2284: general
Can not POST to ErrorDocument - Apache/1.3b6
- Status:
+ Status:
* PR#2314: mod_proxy
patterns in ProxyRemote
- Status:
+ Status:
* PR#2343: mod_status
Status module averages are for entire uptime
- Status:
+ Status:
* PR#2360: suexec
suexec for general access of user content?
- Status:
+ Status:
* PR#2396: general
Proposal for TimeZone directive
- Status:
+ Status:
* PR#2415: mod_info
/server-info doesn't check for the virtual host to list the info
- Status:
+ Status:
* PR#2421: config
problem specifying ndbm library for build ?with autoconfigure
- Status:
+ Status:
* PR#2431: general
A small addition to rotatelogs.c to improve program functionality.
- Status:
+ Status:
* PR#2446: config
AllowOverride FileInfo is too coarse
- Status:
+ Status:
* PR#2460: mod_cgi
TimeOut applies to output of CGI scripts
- Status:
+ Status:
* PR#2512: mod_access
<IfDenied> directive wanted
- Status:
+ Status:
* PR#2573: suexec
CGI's for general use still have to be run as another user
with suExec
- Status:
+ Status:
* PR#2648: general
Cache file names in Proxy module
- Status:
+ Status:
* PR#2760: config
[PATCH] User/Group for <Directory> and <Location> i.e. not only
in global and <Virtual>.
- Status:
+ Status:
* PR#2763: general
mailto tags and bundling bug report script
- Status:
+ Status:
* PR#2785: os-aix
Support for System Resource Controller
- Status:
+ Status:
* PR#2793: protocol
When will Apache support P3P? Any Plans?
- Status:
+ Status:
* PR#2873: config
Feedback/Comment on APACI
- Status:
+ Status:
* PR#2889: general
Inclusion of RPM spec file in CVS/distributions
- Status:
+ Status:
* PR#2906: general
Propose that Apache recommend $UNIQUE_ID for all "session id"
algorithms
- Status:
+ Status:
* PR#2907: config
suggestion: power up your Include directive :)
- Status:
+ Status:
* PR#3018: general
cannot limit some HTTP methods
- Status:
+ Status:
* PR#3143: apache-api
No module specific data hook for per-connection data
- Status:
+ Status:
* PR#3191: mod_negotiation
no way to set global quality-of-source (qs) coneg values
with multiviews
- Status:
+ Status:
* PR#3568: mod_proxy
Accessing URL through proxy server corrupts data.
- Status:
+ Status:
* PR#3605: mod_proxy
Some anonymous FTP URLs ask for authentication
- Status:
+ Status:
* PR#3677: general
New ErrorDocumentMatch directive
- Status:
+ Status:
* PR#4241: config
Need to be able to override shebang line to make CGI scripts
more portable.
- Status:
+ Status:
* PR#4244: config
"Files" and "FilesMatch" regexp does not recognize bang as
negation operator
- Status:
+ Status:
* PR#4448: mod_log-any
Please allow CGI env variables (QUERY_STRING, ...) to be logged
with %{}e
- Status:
+ Status:
* PR#4459: mod_include
Suggestion for better handling of Last-modified headers
- Status:
+ Status:
* PR#4490: mod_cgi
mod_cgi prevents handling of OPTIONS requests
- Status:
+ Status:
* PR#5713: os-windows
[PATCH] install as win32 service with domain account
- Status: Cannot accept password-as-arg, we should prompt the
+ Status: Cannot accept password-as-arg, we should prompt the
user when -k install/-k config with a user argument.
* PR#5993: general
AllowOverride should have a 'CheckNone' and 'AllowNone' argument
instead of only 'None'
- Status:
+ Status:
Other bugs that need fixing:
* Jon Travis's <jtravis@covalent.net> patch to deal with thread-safe
issues with inet_ntoa. See message <20001201163220.A12827@covalent.net>
- Status: This is being set aside until the IPv6 work is finished
- so that we know exactly what is required.
+ Status: This is being set aside until the IPv6 work is finished
+ so that we know exactly what is required.
* Martin Sojka <msojka@gmx.de>'s patch to add error reporting for failed
htpasswd actions due to a full /tmp volume (other programs may have
Open issues:
* Which MPMs will be included with Apache 2.0?
-