Newer
Older
release A17, the child fork() must be replaced by a _rfork().
(BS2000 only) [Martin Kraemer]
*) Add the actual server_rec structure of the specific Vhost to the
scoreboard file and avoid a string copy (as well as allow some
further future enhancements). [Harrie Hazewinkel
*) Add APACI --permute-module=foo:bar option which can be used to
on-the-fly/batch permute the order of two modules (mod_foo and mod_bar)
in the Configuration[.apaci] file. Two special and important variants are
supported for the option argument: first BEGIN:foo which permutes module
mod_foo with the begin of the module list, i.e. it `moves' the module to
the begin of the list (gives it lowest priority). And second foo:END
which permutes mod_foo with the end of the module list, i.e. it `moves'
the module to the end of the list (gives it highest priority).
[Ralf S. Engelschall]
*) Fix problem with 'apache -k shutdown' and startup event
PR#3255
*) The config parser wasn't correctly noticing a missing '>'
on container start lines (e.g., it wouldn't spot
"<Directory /" as a syntax error). [Ryan Bloom <rbbloom us.ibm.com>]
PR#3279
*) Add a 'RemoveHandler' directive which will selectively remove
all handler associations for the specified file extensions.
*) Properly handle & allow "nul" and ".*/null" in AccessConfig and
ResourceConfig directives on Win32. Also add a note to the effect
of 'useless User directive ignored on Win32' to the errorlog if
a User directive is encountered on Win32.
*) Fix multiple whitespace handling in imagemaps for mod_imap which was
broken since Apache 1.3.1 where we took out compressing of multiple
spaces in ap_cfg_getline().
*) Fix Berkeley-DB/2.x support in mod_auth_db: The data structures were not
initialized correctly and the db_open() call used an invalid mode
*) PORT: DSO support for UnixWare 7
*) Merge the contents of the {srm,access}.conf-dist* files into the
httpd.conf-dist* files. The srm and access files now contain
only comments, and httpd.conf has all the combined contents in
a rational order. [Ken Coar]
*) PORT: DSO/ELF support for FreeBSD 3.0.
*) Add a "default-handler" handler that calls the default_hander()
function which is normally called for static content. This allows
you to override a specific handler. [Marc Slemko]
*) Further simplify checking for absolute paths by replacing an
hard-coded syntax check with a call to a routine we already created to
*) Log an error if we encounter a malformed "require" directive
in mod_auth if we know that we know that no other module can
deal with it. [Marc Slemko]
*) Remove ap_private_extern method of hiding conflicting symbols
on the NEXT platform because it is not correct for all versions,
and the versions for which it is correct are unknown.
10074
10075
10076
10077
10078
10079
10080
10081
10082
10083
10084
10085
10086
10087
10088
10089
10090
10091
10092
10093
10094
10095
10096
10097
10098
10099
10100
10101
10102
10103
10104
10105
10106
10107
10108
10109
10110
10111
10112
10113
*) Fix inheritance of IndexOptions NameWidth and remove unintended
restriction on +NameWidth, +IconHeight, and +IconWidth. [Ken Coar]
*) Fix per-directory config merging for cases in which a 500 error
is encountered in an .htaccess file somewhere down the tree.
[Ken Coar] PR#2409
*) Minor performance improvement to ap_escape_html(). [Roy Fielding]
*) Fixed a segmentation violation in mod_proxy when a response is
non-cachable. [Roy Fielding, traced by Doug Bloebaum]. PR#2950, 3056
Changes with Apache 1.3.3
*) Added a complete implementation of the Expect header field as
specified in rev-05 of HTTP/1.1. Disabled the 100 Continue
response when we already know the final status, which is mighty
useful for PUT responses that result in 302 or 401. [Roy Fielding]
*) Remove extra trailing whitespace from the getline results as part
of the protocol processing, which is extra nice because it works
between continuation lines, is almost no cost in the normal case
of no extra whitespace, and saves memory. [Roy Fielding]
*) Added new HTTP status codes and default response bodies from the
revised HTTP/1.1 (307, 416, 417), WebDAV (102, 207, 422, 423), and
HTTP Extension Framework (510) specifications. Did not add the
WebDAV 424 and 425 codes because they are bogus. We don't use any
of these codes yet, but they are now available to 3rd-party modules.
[Roy Fielding]
*) Fix a possible race condition between timed-out requests and the
ap_bhalfduplex select that might result in an infinite loop on
platforms that do not validate the descriptor. [Roy Fielding]
*) WIN32: Add "-k shutdown" and "-k restart" options to signal a
running Apache server [Paul Sutton]
*) Fix mod_autoindex bug where directories got a size of "0k" instead
of "-". [Martin Plechsmid <plechsmi karlin.mff.cuni.cz>, Marc Slemko]
PR#3130
*) PORT: DRS 6000 machine. [Paul Debleecker <pdebleecker jetair.be>]
*) Add the server signature text (from the core ServerSignature directive)
to the list of envariables available to scripts, SSI, and the like.
[Ken Coar]
*) PORT: Fix sys/resource.h handling for SCO 3.x platform.
*) Fallback from sysconf-based to plain HZ-based `ticks per second'
calculation in mod_status for all systems which don't have POSIX
sysconf() (like UTS 2.1) and not only for the NEXT platform.
*) Fix `require ...' directive parsing in mod_auth, mod_auth_dbm and
mod_auth_db by using ap_getword_white() (which uses ap_isspace())
instead of ap_getword(..., ' ') (which parses only according to spaces
Ralf S. Engelschall] PR#3105
*) Fix the SERVER_NAME variable under sub-request situations (where
`UseCanonicalName off' is used) like CGI's called from SSI pages or
RewriteCond variables by adopting r->hostname to sub-requests.
*) Fix stderr redirection under syslog-based error logging situation.
*) Document `ErrorLog syslog:facility' variant of error logging.
*) Fix http://localhost/ hints in top-level INSTALL document.
*) Quote paths in default configuration files. [Wilfredo Sanchez]
*) PORT: Remove extra HAVE_SYS_RESOURCE_H define for RHAPSODY since
it is now taken care of properly by the header file tests.
*) Fix problem with scripts and filehandle inheritance on Win32.
*) Win32 name canonicalisation could end up using the server's
working directory to fill in some blanks. [Ken Parzygnat
*) Correct invalid assumption by ap_sub_req_lookup_file() that all
absolute paths begin with "/" -- because they don't on Win32.
*) Add [REDIRECT_]VARIANTS environment variable to mod_speling
so that ErrorDocument 300 processors can reformat the list
if desired. [Ken Coar] PR#2859
*) Add +/- incremental prefixes to IndexOptions keywords, and
enable merging of multiple IndexOptions directives. [Ken Coar]
*) PORT: Allow GuessOS to recognize Unixware 7.0.1 [Steve Cameron
10177
10178
10179
10180
10181
10182
10183
10184
10185
10186
10187
10188
10189
10190
10191
10192
10193
*) Reconstructed the loop through multiple htaccess file names so
that missing files are not confused with unreadable files.
[Roy Fielding]
*) The ap_pfopen and ap_pfdopen routines were failing to protect the
errno on an error, which leads to one error being mistaken for
another when reading non-existent .htaccess files.
[Jim Jagielski]
*) OS/2: The new header tests get things right, need to update
ap_config.h. [Brian Havard]
*) The Perl %ENV hash will now be setup by default when using the
mod_include `perl' command [Doug MacEachern]
*) PORT: Add Pyramid DC/OSx support to configuration mechanism.
*) PORT: Fix sys/resource.h handling for Amdahl's UTS 2.1
*) Correct comment in mod_log_config.c about its internals.
*) Avoid possible line overflow in Configure: Use an awkfile to
handle the creation of modules.c [Jim Jagielski]
Changes with Apache 1.3.2
*) Fix bug in ap_remove_module(), which caused problems for dso's
who were the top_module. [Doug MacEachern]
*) Add support for Berkeley-DB/2.x (in addition to Berkeley-DB/1.x) to
mod_auth_db to both be friendly to users who wants to use this version
and to avoid problems under platforms where only version 2.x is present.
*) When using ap_log_rerror(), make the error message available to the
*ERROR_NOTES envariables by default. [Ken Coar]
*) BS2000 platform only: get rid of the nasty BS2000AuthFile.
You now must define a BS2000Account name for the server User.
This has fewer security implications than the old approach.
[Martin Kraemer]
*) Fix SHARED_CORE feature for HPUX platform: We now use extension `.sl'
instead of `.so' and `SHLIB_PATH' instead of `LD_LIBRARY_PATH' on this
platform to make the braindead HPUX linker happy. Notice, for the module
DSOs we don't have to use this, because these are loaded manually (and
not via HPUX' dld). [Ralf S. Engelschall] PR#2905, PR#2968
*) Remove 64 thread limit on Win32.
10231
10232
10233
10234
10235
10236
10237
10238
10239
10240
10241
10242
10243
10244
10245
10246
10247
10248
10249
10250
10251
10252
10253
10254
10255
10256
*) Remove redundant substitutions in top-level Makefile.tmpl.
[Ralf S. Engelschall]
*) Fix APACI's `Group' configuration adjustment - especially for Linux
platforms where `nogroup' exists in /etc/group. [Ralf S. Engelschall]
*) Make PrintPath work generically instead of having one version
strictly for OS/2. [Jim Jagielski, Brian Havard]
*) Fix the recently introduced C header file checking: We now use the C
pre-processor pass only (and no longer the complete compiler pass) to
determine whether a C header file exists or not. Because only this way
we're safe against inter-header dependencies (which caused horrible
portability problems). The only drawback is that we now have a CPP
configuration variable which has to be determined first (we do a similar
approach as GNU Autoconf does here). When all fails the user still has
the possibility to override it manually via APACI or src/Configuration.
As a fallback for the header check itself we can directly check the
existance of the file under /usr/include, too.
[Ralf S. Engelschall] PR#2777
*) PORT: Added RHAPSODY (Mac OS X Server) support. MAP_TMPFILE defined
as an alternate mechanism for mmap'd shared memory for RHAPSODY.
ap_private_extern defined to hide symbols that conflict with loaded
dynamic libraries on the NEXT and RHAPSODY platforms.
*) Delete PID file on clean shutdowns.
*) Fix mod_auth_*.html documents: NSCA -> NCSA
*) Fix INSTALL document: www.gnu.ai.mit.edu -> www.gnu.org
*) Fix dbmmanage.1 manual page.
*) Fix possible buffer overflow situation in suexec.c.
*) Add some more LIBS for the SCO5 platform which are needed for the already
used -lprot. It's actually a bug in SCO5, of course.
*) Fix documentation of ProxyPass/ProxyPassReverse according to the
10280
10281
10282
10283
10284
10285
10286
10287
10288
10289
10290
10291
10292
10293
10294
10295
10296
10297
10298
10299
10300
10301
10302
10303
10304
10305
*) Remove `-msym' option from LDFLAGS_SHLIB for the Digital UNIX (OSF/1)
platform, because it's only supported under version 4.0 and higher. But
because our GuessOS is still unaware of Digital UNIX versions and the
-msym is just to optimize the DSO statup time a little bit it's safe and
best when we leave it out now. [Ralf S. Engelschall] PR#2969
*) Fix the ap_log_error_old(), ap_log_unixerr() and ap_log_printf()
functions: First all three functions no longer fail on strings containing
"%" chars and second ap_log_printf() no longer does a double-formatting
(instead it directly passes through the message to be formatted to the
real internal formatting function). [Ralf S. Engelschall] PR#2941
*) Allow "Include" directives anywhere in the server config
files (but not .htaccess files). [Ken Coar] PR#2727
*) The proxy was refusing to serve CONNECT requests except to
port 443 (https://) and 563 (snews://). The new AllowCONNECT
directive allows the configuration of the ports to which a
CONNECT is allowed. [Sameer Parekh, Martin Kraemer]
*) mod_expires will now act on content that is not sent from a file
on disk. Previously it would never add an Expires: header to
any response that did not come from a file on disk; the only
case where it still doesn't (and can't) add one for that type of
content is if you are using a modification date based setting.
*) Problems encountered during .htaccess parsing or CGI execution
that lead to a "500 Server Error" condition now provide explanatory
text (in the *ERROR_NOTES envariable) to ErrorDocument 500 scripts.
[Ken Coar] PR#1291
*) Add NameWidth keyword to IndexOptions directive so that the
width of the filename column is customisable. [Ken Coar, Dean Gaudet]
PR#1949, 2324.
*) Recognize lowercase _and_ uppercase `uname' results under
10319
10320
10321
10322
10323
10324
10325
10326
10327
10328
10329
10330
10331
10332
10333
10334
10335
10336
10337
10338
10339
10340
10341
10342
10343
10344
10345
10346
10347
10348
10349
10350
10351
10352
10353
10354
10355
10356
10357
10358
10359
10360
10361
10362
*) As duplicate "HTTP/1.0 200 OK" lines within the header seem to be
a common problem of (mis-administrated?) IIS servers, make the apache
proxy immune to these errors (and ignore the duplicates, but log
the fact to error_log). [Martin Kraemer], after the proposal in PR#2914
*) The <IfModule and <IfDefine block starting directives now only
allow exactly one argument. Previously, the optional negation
character '!' could be separated by whitespace without a syntax
error being reported, albeit defeating the IfModule functionality
(enclosed directives would ALWAYS be executed). By using the
stricter syntax, these hard-to-track errors can be avoided.
[Martin Kraemer]
*) Simplify handling of IndexOptions in mod_autoindex -- and BTW
cause the standalone FancyIndexing directive to logically OR
into any existing IndexOptions settings rather than wiping
them out. [Ken Coar]
*) Changes in ftp proxy: make URL parsing simpler by using the
parsed_uri stuff.
+ Add display of the "current directory" in cases where it's
different from the supplied path (e.g., ftp://user@host/ lives
in /home/user, not in /, therefore clicking on "../" in the
starting directory might send us to /home/).
+ When ftp login fails, (esp. when a user name was part of the
URL already), we now return [401 Unauthorized ] to allow the
browser to pop up an authorization dialog. This makes passwords
slightly less visible (they don't appear in the regular log files)
and implements a functionality that other www proxy servers
already offered.
[Martin Kraemer]
*) Triggered by the recent "Via:" header changes, the proxy module would
dump core for replies with invalid headers (e.g., duplicate
"HTTP/1.0 200 OK" lines). These errors are now logged and the
core dump is avoided. Also, broken replies are not cached.
[Martin Kraemer] PR#2914
*) new `GprofDir' directive when compiled with -DGPROF, where gprof can
plop gmon.out profile data for each child [Doug MacEachern]
*) Use the construct ``"$@"'' instead of ``$*'' in the generated
config.status script to be immune against arguments with whitespaces.
10364
10365
10366
10367
10368
10369
10370
10371
10372
10373
10374
10375
10376
10377
10378
10379
10380
10381
*) Replace the inlined information grabbing stuff for the configuration
adjustment feature (no --without-confadjust) with calls to a new helper
script `buildinfo.sh' which is both more flexible and already proofed to
be more robust against platform differences. This mainly fixes the
recently occured ``sed: command garbled: ...'' problems.
[Ralf S. Engelschall] PR#2776, PR#2848
*) Make ab.c again pass ``gcc -Wall -Wshadow -Wpointer-arith -Wcast-align
-Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline''
without complains after we recently added the POST feature.
[Ralf S. Engelschall]
*) Renamed is_HTTP_xxx() macros to ap_is_HTTP_xxx() name. They are used inside
modules as API functions and we forgot them at the big symbol renaming.
[Ralf S. Engelschall]
*) Remove bad reference to non-existing SERVER_VERSION in mod_rewrite.html
*) Dynamically size the filename column of mod_autoindex output.
[Dean Gaudet]
*) Add the ability to do POST requests to the ab benchmarking tool.
10389
10390
10391
10392
10393
10394
10395
10396
10397
10398
10399
10400
10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
10411
10412
10413
10414
10415
10416
10417
10418
10419
10420
10421
10422
10423
10424
10425
10426
*) Bump up MAX_ENV_FLAGS in mod_rewrite.h from the too conservatice limit of
5 to 10 because there are some users out there who always have 5 to 8
variables in one RewriteRule and had to patch mod_rewrite.h for every
release. So 15 should be now more than enough, even for them. (I never
needed more than 4 in my RewriteRules ;-)
[Ralf S. Engelschall]
*) Make the proxy generate and understand Via: headers
[Martin Kraemer]
*) Change the proxy to use tables instead of array_headers for
the header lines. [Martin Kraemer]
*) Make sure the config.status file is not overridden when just
``configure --help'' is used. [Ralf S. Engelschall] PR#2844
*) Split MODULE_MAGIC_NUMBER into _MAJOR/_MINOR numbers. This should
provide a way to trace API changes that add functionality but do
not create a compatibility issue for precompiled modules, etc.
See include/ap_mmn.h for more details. [Randy Terbush]
*) Fix suexec installation under `make install root=xxx' situation.
[Ralf S. Engelschall]
*) Extend the output of the -V switch to include the paths of all
compiled-in configuration files, if they were overridden at
compile time, for least astonishment of the user.
[Martin Kraemer]
*) When READing a request in ExtendedStatus mode, the "old"
vhost, request and client information is not displayed.
[Jim Jagielski]
*) STATUS is no longer available. Full status information now
run-time configurable using the ExtendedStatus directive.
[Jim Jagielski]
Eliminate O(n^2) space DoS attacks (and other O(n^2)
cpu time attacks) in header parsing. Add ap_overlap_tables(),
a function which can be used to perform bulk update operations
on tables in a more efficient manner. [Dean Gaudet]
10432
10433
10434
10435
10436
10437
10438
10439
10440
10441
10442
10443
10444
10445
10446
10447
10448
10449
10450
10451
10452
10453
10454
10455
10456
10457
10458
10459
10460
10461
10462
10463
10464
10465
10466
10467
10468
10469
10470
10471
10472
10473
10474
10475
10476
10477
*) SECURITY: Added compile-time and configurable limits for
various aspects of reading a client request to avoid some simple
denial of service attacks, including limits on maximum request-line
size (LimitRequestLine), number of header fields (LimitRequestFields),
and size of any one header field (LimitRequestFieldsize). Also added
a configurable directive LimitRequestBody for limiting the size of the
request message body. [Roy Fielding]
*) Make status module aware of DNS and logging states, even if
STATUS not defined. [Jim Jagielski]
*) Fix a problem with the new OS/2 mutexes. [Brian Havard]
*) Enhance mod_speling so that CheckSpelling can be used in
<Directory> containers and .htaccess files. [Ken Coar]
*) API: new ap_custom_response() function for hooking into the
ErrorDocument mechanism at runtime [Doug MacEachern]
*) API: new ap_uuencode() function [Doug MacEachern]
*) API: scan_script_header_err_core() now "public" and renamed
ap_scan_script_header_err_core() [Doug MacEachern]
*) The 'status' module will now show the process pid's and their
state even without full STATUS accounting. [Jim Jagielski]
*) Restore the client IP address to the error log messages, this
was lost during the transition from 1.2 to 1.3. Add a new
function ap_log_rerror() which takes a request_rec * and
formats it appropriately. [Dean Gaudet] PR#2661
*) Cure ap_cfg_getline() of its nasty habit of compressing internal
whitespace in input lines -- including within quoted strings.
[Ken Coar]
but leading and trailing whitespace should continue to be
stripped [Martin Kraemer]
*) Cleanup of the PrintPath/PrintPathOS2 helper functions. Avoid
the ugly use of an env. variable and use command-line args for
alternate $PATH. Make more like advanced 'type's as well.
[Jim Jagielski]
*) The IRIXN32 Rule was being ignored. Configure now correctly adds
-n32 only if IRIXN32 says to. [Jim Jagielski, Alain St-Denis
10479
10480
10481
10482
10483
10484
10485
10486
10487
10488
10489
10490
10491
10492
10493
10494
10495
10496
10497
10498
10499
10500
10501
10502
10503
10504
*) Clean up a warning in mod_proxy. [Ralf S. Engelschall]
*) Renamed __EMX__ (internal define of the gcc port under OS/2) to OS2
following the same idea as "MSVC vs WIN32". Additionally the src/os/emx/
directory was renamed to src/os/os2/ for consistency.
[Brian Havard, Ralf S. Engelschall]
*) Add new Rule SHARED_CHAIN which can be used to enable linking of DSO
files (here modules) against other DSO files (here shared libraries).
This is done by determining a subset of LIBS which can be safely used for
linking the DSOs, i.e. PIC libs and shared libs. Currently the rule is
disabled for all platforms to avoid problems with this (experimental)
rule. But we provide it now for those people how ran into problems and
want to came out by forcing linking against DSOs.
[Ralf S. Engelschall] PR#2587
*) Fix suEXEC start message: Has to be of `notice' level to really get
printed together with the standard startup message because the `notice'
level is handled special inside ap_log_error() for startup messages.
[Ralf S. Engelschall] PR#2761 PR#2761 PR#2765
*) Add correct `model' MIME types from RFC2077 to mime.types file.
[Ralf S. Engelschall] PR#2732
*) Fixed examples in mod_rewrite.html document.
[Youichirou Koga <y-koga jp.FreeBSD.org>, Ralf S. Engelschall] PR#2756
*) Allow ap_read_request errors to propagate through the normal request
handling loop so that the connection can be properly closed with
lingering_close, thus avoiding a potential TCP reset that would
cause the client to miss the HTTP error response. [Roy Fielding]
*) One more portability fix for APACI shadow tree support: Swap order of awk
and sed in top-level configure script to avoid sed fails on some
platforms (for instance SunOS 4.1.3 and NCR SysV) because of the
non-newline-termined output of Awk. [Ralf S. Engelschall] PR#2729
*) PORT: NEC EWS4800 support.
*) Fix a segfault in the proxy on OS/2. [Brian Havard]
*) Fix Win32 part of ap_spawn_child() by providing a reasonable child_info
structure instead of just NULL. This fixes at least the RewriteMap
programs under Win32. [Marco De Michele <mdemichele tin.it>] PR#2483
10525
10526
10527
10528
10529
10530
10531
10532
10533
10534
10535
10536
10537
10538
10539
10540
10541
10542
10543
10544
10545
10546
10547
10548
10549
10550
10551
10552
10553
10554
10555
10556
10557
10558
10559
*) Add workaround to top-level `configure' script for brain dead
`echo' commands which interpet escape sequences per default.
[Ralf S. Engelschall] PR#2654
*) Make sure that the path to the Perl interpreter is correctly
adjusted under `make install' also for the printenv CGI script.
[Ralf S. Engelschall] PR#2595
*) Update the mod_rewrite.html document to correctly reflect the situation
of the `proxy' (`[P]') feature. [Ralf S. Engelschall] PR#2679
*) Fix `install-includes' sub-target of `install' target in top-level
Makefile.tmpl: The umask+cp approach didn't work as expected (especially
for users which extracted the distribution under 'umask 077'), so replace
it by an explicit cp+chmod approach.
[Richard Lloyd, Curt Sampson, Ralf S. Engelschall] PR#2656 PR#2626
*) Fix `distclean' and `clean' targets in src/Makefile.tmpl to have same
behavior and to cleanup correctly even under enabled SHARED_CORE rule.
[Ralf S. Engelschall]
*) Use a more straight forward and thus less problematic Sed command in
src/helper/mkdir.sh script. [Ralf S. Engelschall]
*) Make sure the `configure' scripts doesn't fail when trying to guess the
domainname of the machine and there are multiple `domainname' and
`search' entries in /etc/resolv.conf.
[Ralf S. Engelschall] PR#2710
*) Add note about the SHARED_CORE requirement on some platforms also to the
INSTALL file because a lot of users don't read htdocs/manual/dso.html
first. [Ralf S. Engelschall] PR#2701
*) Fix document "hyperlink" for dso.html in src/Configuration.tmpl
10561
10562
10563
10564
10565
10566
10567
10568
10569
10570
10571
10572
10573
10574
10575
10576
10577
10578
10579
10580
10581
10582
10583
10584
10585
10586
10587
10588
10589
10590
10591
*) Modify mod_rewrite to update the Vary response field if the URL rewriting
engine does any manipulations or decisions based upon request fields.
[Ken Coar] PR#1644
*) Document the special APACI behavior for installation paths where
``/apache'' is appended to paths under some (well defined, of course)
situations to prevent pollution of system locations with Apache files.
[Ralf S. Engelschall] PR#2660
*) Fixed problem with buffered response message not being sent for
the read_request error conditions of URI-too-long (414) and
malformed header fields (400). [Roy Fielding] PR#2646
*) Add support for the Max-Forwards: header line required by RFC2068 for
the TRACE method. This allows apache to TRACE along a chain of proxies
up to a predetermined depth. [Martin Kraemer]
*) Fix SHARED_CORE rule: The CFLAGS_SHLIB variable is no longer doubled
(compilers complained) and the .so.V.R.P filename extension was adjusted
to correctly reflect the 1.3.2 version.
[Ralf S. Engelschall] PR#2644
*) SECURITY: Plug "..." and other canonicalization holes under OS/2.
[Brian Havard]
*) PORT: implement serialized accepts for OS/2. [Brian Havard]
*) mod_include had problems with the fsize and flastmod directives
under WIN32. Fix also avoids the minor security hole of using
".." paths for fsize and flastmod.
*) Fixed some Makefile dependency problems. [Dean Gaudet]
Changes with Apache 1.3.1
*) Disable the incorrect entry for application/msword in the
mod_mime_magic "magic" file because it also matches other Office
documents. [Ralf S. Engelschall] PR#2608
*) Fix broken RANLIB handling in src/Configure (the entry from
src/Configuration.tmpl was ignored) and additionally force RANLIB to
/bin/true under HP/UX where ranlib exists but is deprecated.
[Ralf S. Engelschall] PR#2627
*) 'apachectl status' failed on some systems.
[Steve VanDevender <stevev darkwing.uoregon.edu>, Lars Eilebrecht] PR#2613
10609
10610
10611
10612
10613
10614
10615
10616
10617
10618
10619
10620
10621
10622
10623
10624
10625
10626
10627
10628
10629
10630
10631
10632
10633
10634
10635
10636
10637
10638
10639
10640
10641
10642
10643
10644
10645
10646
10647
10648
10649
10650
10651
10652
10653
10654
10655
10656
10657
10658
10659
10660
10661
10662
*) Add new flags for ap_unparse_uri_components() to make it generate
the scheme://sitepart string only, or to omit the query string.
[Martin Kraemer]
*) WIN32: Canonicalize ServerRoot before checking to see if it
is a valid directory. The failure to do this caused certain
ServerRoot settings (eg. "ServerRoot /apache") to be improperly
rejected. [Marc Slemko]
*) Global renaming of C header files to both get rid of conflicts with third
party packages and to again reach consistency:
1. conf.h -> ap_config.h
2. conf_auto.h -> ap_config_auto.h \ these are now merged
3. ap_config.h -> ap_config_auto.h / in the config process
4. compat.h -> ap_compat.h
5. apctype.h -> ap_ctype.h
Backward compatibility files for conf.h and compat.h were created.
*) mod_mmap_static will no longer take action on requests unless at
least one "mmapfile" directive is present in the configuration.
This experimental module has to do some black magic to operate
inside the current API and thus creates side-effects for other
modules under some circumstances.
[Ralf S. Engelschall]
*) Add conservative ticks around more egrep arguments in top-level configure
to avoid problems under brain-dead platforms like Digital UNIX (OSF1).
[Ralf S. Engelschall] PR#2596
*) mod_rewrite created RewriteLock files under the UID of the parent
process, thus the child processes had no write access to the files.
Now a chown() is done on the file to the uid of the children,
if applicable. [Lars Eilebrecht, Ralf S. Engelschall] PR#2341
*) Autogenerate some HAVE_XXXXX_H defines in conf_auto.h (determined via
TestCompile) instead of defining them manually in conf.h based on less
accurate platform definitions. This way we no longer have to fiddle with
OS-type and/or OS-version identifiers to discover whether a system header
file exists or not. Instead we now directly check for the existence of
those esoteric ones.
[Ralf S. Engelschall] PR#2093, PR#2361, PR#2377, PR#2434,
PR#2524, PR#2525, PR#2533, PR#2569
*) mod_setenvif (BrowserMatch* and friends) will now match a missing
field with "^$". [Ken Coar]
*) Set the RTLD_GLOBAL dlopen mode parameter to allow dynamically loaded
modules to load their own modules dynamically. This improves mod_perl
and mod_php3 when these modules are loaded dynamically into Apache.
[Rasmus Lerdorf]
*) Cache a proxied request in the event that the client cancels the
transfer, provided that the configured percentage of the file has
already been transferred. It works for HTTP transfers only. The
new configuration directive is called CacheForceCompletion.
*) Add the "<!DOCTYPE HTML" magic cookie used by modern documents (and
required by HTML 3.2 and later) to mod_mime_magic's conf/magic.
*) Fix yet another signal-based race condition involving nested timers.
Signals suck. [Dean Gaudet]
*) suexec's error messages have been clarified a little bit. [Ken Coar]
*) Clean up some, but perhaps not all, 8-bit character set problems
with config file parsing, and URL parsing. We now define
ap_isdigit(), ap_isupper(), ... which cast to an (unsigned char).
This should work on most modern unixes.
[Dean Gaudet] PR#800, 2282, 2553 (and others)
*) The "handler not found" error was issued in cases where the handler
really did exist, but was just declining to serve the request.
*) Add Dynamic Shared Object (DSO) support for SCO5 (OpenServer 5.0.x).
*) The APACI libexecdir was not extended with an "apache/" subdir
if the installation prefix didn't already contain "apache", but
it should be because the DSO files are Apache-specific. Now
libexecdir is treated the same way sysconfdir, datadir, localstatedir
and includedir are already treated.
*) The <Limit> parsing routine was incorrectly treating methods as
case-insensitive. [Ken Coar]
*) The ap_bprintf() code neglected to test if there was an error on
the connection. ap_bflush() misdiagnosed a failure as a success.
[Dean Gaudet]
*) add support for #perl arg interpolation in mod_include
[Doug MacEachern]
*) API: Name changes of table_elts to ap_table_elts, is_table_empty
to ap_is_table_empty and bgetflag to ap_bgetflag. [Ben Laurie]
*) PORT: Add UnixWare 7 support
10711
10712
10713
10714
10715
10716
10717
10718
10719
10720
10721
10722
10723
10724
10725
10726
10727
10728
*) Fix the Guess-DSO-flags-from-Perl stuff in src/Configure: "perl" was
used instead of "$PERL" which contains the correctly determined Perl
interpreter (important for instance on systems where "perl" and "perl5"
exists, like BSDI or FreeBSD, etc).
[Ralf S. Engelschall] PR#2505
*) Move the initial suEXEC-related startup message from plain
fprintf()/stderr to a delayed ap_log_error()-based one to avoid problems
when Apache is started from inetd (instead of standalone). Under this
situation startup messages on stderr lead to problems (the line is sent
to the client in front of the requested document).
[Ralf S. Engelschall] PR#871, PR#1318
*) Add a flag so ap_fnmatch() can be used for case-blind pattern matching.
[Ken Coar, Dean Gaudet]
*) WIN32: Don't collapse multiple slashes in PATH_INFO.
*) WIN32 SECURITY: Eliminate trailing "."s in path components. These are
ignored by the Windows filesystem, and so can be used to bypass security.
[Ben Laurie, Alexei Kosut].
*) We now attempt to dump core when we get SIGILL. [Jim Jagielski]
*) PORT: remove broken test for MAP_FILE in http_main.c.
10739
10740
10741
10742
10743
10744
10745
10746
10747
10748
10749
10750
10751
10752
10753
10754
10755
10756
10757
10758
10759
10760
10761
10762
10763
10764
*) PORT: Change support/apachectl to use "kill -0 $pid" to test if the
httpd is running. This should be more portable than figuring out
which of three dozen different versions of "ps" are installed.
[a cast of dozens]
*) WIN32: If we can't figure out how to execute a file in a script
directory, bail out of the request with an error message. [W G Stoddard]
*) WIN32 SECURITY: Eliminate directories consisting of three or more dots;
these are treated by Win32 as if they are ".." but are not detected by
other machinery within Apache. This is something of a kludge but
eliminates a security hole. [Manoj Kasichainula, Ben Laurie]
*) Move ap_escape_quotes() from src/ap to src/main/util.c; it uses
pools and thus pollutes libap (until the pool stuff is moved there).
[Ken Coar]
*) IndexIgnore should be case-blind on Win32 (and any other case-aware
but case-insensitive platforms). New #define for this added to conf.h
(CASE_BLIND_FILESYSTEM). [Ken Coar] PR#2455
*) Enable DSO support for OpenBSD in general, not only for 2.x, because it
also works for OpenBSD 1.x. [Ralf S. Engelschall]
*) PORT: Fix compilation problem on ARM Linux.
10766
10767
10768
10769
10770
10771
10772
10773
10774
10775
10776
10777
10778
10779
10780
10781
10782
10783
10784
10785
10786
10787
10788
10789
10790
10791
10792
10793
*) Let APACI's configure script determine some configuration parameters
(Group, Port, ServerAdmin, ServerName) via some intelligent tests to
remove some of the classical hurdles for new users when setting up
Apache. This is done per default because it is useful for the average
user. Package authors can use the --without-confadjust option to disable
these configuration adjustments.
[Ralf S. Engelschall]
*) Added an EXTRA_DEPS configuration parameter which can be used
to add an extra Makefile dependency for the httpd target, for instance
to external third-party libraries, etc.
[Ralf S. Engelschall]
*) Add <IfDefine>..</IfDefine> sections to the core module (with same spirit
as <IfModule>..</IfModule> sections) which can be used to skip or process
contained commands dependend of ``-D PARAMETER'' options on the command
line. This can be used to achieve logical conditions like <IfDefine
ReverseProxy> instead of physically ones (e.g. <IfModule mod_proxy.c>)
and thus especially can be used for conditionally loading DSO-based
modules via LoadModule, etc. [Ralf S. Engelschall]
*) PORT: clean up a warning in mod_status for OS/2. [Brian Havard]
*) Make table elements const. This may prevent obscure errors. [Ben Laurie]
*) Fix parsing of FTP `SIZE' responses in proxy module: The newline was not
truncated which forced following HTTP headers to be data in the HTTP
PR#2412, 2367
*) Portability fix for APACI shadow tree support: Swap order of awk and sed
in top-level configure script to avoid sed fails on some platforms (for
instance SunOS 4.1.3 and NCR SysV) because of the non-newline-termined
10801
10802
10803
10804
10805
10806
10807
10808
10809
10810
10811
10812
10813
10814
10815
10816
10817
10818
10819
10820
10821
10822
10823
10824
10825
10826
10827
10828
10829
10830
10831
10832
10833
10834
*) Improve performance of directory listings (mod_autoindex) by comparing
integer keys (last-modified and size) as integers rather than converting
them to strings first. Also use a set of explicit byte tests rather
than strcmp() to check for parent directory-ness of an entry. Oh, and
make sure the parent directory (if displayed) is *always* listed first
regardless of the sort key. Overall performance winnage should be good
in CPU time, instruction cache, and memory usage, particularly for large
directories. [Ken Coar]
*) Add a tiny but useful goody to APACI's configure script: The generation
of a config.status script (as GNU Autoconf does) which remembers the used
configure command and hence can be used to restore the configuration by
just re-running this script or for remembering the configuration between
releases.
[Ralf S. Engelschall]
*) Add httpd -t (test) option for running configuration syntax tests only.
If something is broken it complains and exits with a return code
non-equal to 0. This can be used manually by the user to check the Apache
configuration after editing and is also automatically used by apachectl
on (graceful) restart command to make sure Apache doesn't die on restarts
because of a configuration which is now broken since the last (re)start.
This way `apachectl restart' can be used inside cronjobs without having
to expect Apache to be falling down. Additionally the httpd -t can be run
via `apachectl configtest'.
[Ralf S. Engelschall] PR#2393
*) Minor display fix for "install" target of top-level Makefile:
the displayed installation command was incorrect although the
executed command was correct. Now they are in sync.
[Ralf S. Engelschall] PR#2402
*) Correct initialization of variable `allowed_globals' in http_main.c
*) Apache would incorrectly downcase the entire Content-Type passed from
CGIs. This affected server-push scripts and such which use
multipart/x-mixed-replace;boundary=ThisRandomString.
[Dean Gaudet] PR#2394
*) PORT: QNX update to properly guess 32-bit systems.
10844
10845
10846
10847
10848
10849
10850
10851
10852
10853
10854
10855
10856
10857
10858
10859
10860
10861
10862
*) Make sure the DSO emulation code for HPUX finds the proprietary shl_xxx()
functions which are in libdld under HPUX 9/10.
[Ralf S. Engelschall] PR#2378
*) Make sure the "install" target of the top-level Makefile doesn't break
because of a return code of 1 from an "if" (for instance under braindead
Ultrix the result code of an "if" construct is 1 if the "then" clause
didn't match). [Ralf S. Engelschall]
*) Add an additional "dummy" target to the "$(LIB)" target in generated
modules/xxx/Makefile's to avoid problems with SVR4 Make under "full-DSO"
situation (no libxxx.a built, only mod_xxx.so's) where LIB and OBJS are
empty. [Ralf S. Engelschall, Dean Gaudet, Martin Kraemer]
*) Replace two bad sprintf() calls with ap_snprintf() variants in
mod_rewrite. [Ralf S. Engelschall]
*) Fix missing usage description for MetaFiles directive.
*) mod_log_config wouldn't let vhosts use log formats defined in the
*) mod_usertrack was corrupting the client hostname. As part of the
fix, the cookie values were slightly extended to include the
fully qualified hostname of the client.
[Dean Gaudet] PR#2190, 2229, 2366
*) Fix a typo in pool debugging code. [Alvaro Martinez Echevarria]
*) mod_unique_id did not work on alpha linux (in general on any
architecture that has 64-bit time_t).
[Alvaro Martinez Echevarria]
*) PORT: Make SCO 5 (and probably 3) compile again. [Ben Laurie]
*) PORT: NCR MPRAS systems have the same bug with SIGHUP restart that
Solaris systems experience. So define WORKAROUND_SOLARIS_BUG.
*) Change "Options None" to "Options FollowSymLinks" in the
<Directory /> section of the default access.conf-dist
(and -win even though it doesn't matter there). This has better
performance, and more intuitive semantics. [Dean Gaudet]
*) PORT: Updated support for UTS 2.1.2.
*) Fix symbol export list (src/support/httpd.exp) after recent
API changes in the child spawning area.
*) Workaround for configure script and old `test' commands which do not
support the -x flag (for instance under platforms like Ultrix). This is
solved by another helper script findprg.sh which searches for Perl and
Awk like PrintPath but _via different names_.
[Ralf S. Engelschall]
*) Remove the system() call from htpasswd.c, which eliminates a system
*) PORT: Fix compilation failures on NEXTSTEP.
*) PORT: F_NDELAY is a typo, should have been FNDELAY. There's also
O_NDELAY on various systems. [Dave Dykstra <dwd bell-labs.com>] PR#2313
*) PORT: helpers/GuessOS updates for various versions for NCR SVR4.
[juerg schreiner <j.schreiner zh.ch>,
Bill Houle <Bill.Houle SanDiegoCA.NCR.COM>] PR#2310
10915
10916
10917
10918
10919
10920
10921
10922
10923
10924
10925
10926
10927
10928
10929
10930
10931
*) Fix recently introduced Win32 child spawning code in mod_rewrite.c which
was broken because of invalid ap_pstrcat() -> strcat() transformation.
[Ralf S. Engelschall]
*) Proxy Cache Fixes: account for directory sizes, fork off garbage collection
to continue in background, use predefined types (off_t, size_t, time_t),
log the current cache usage percentage at LogLevel debug
[Martin Kraemer, based on discussion between Dean Gaudet & Dirk vanGulik]
Changes with Apache 1.3.0
*) Using a type map file as a custom error document was not possible.
[Lars Eilebrecht] PR#1031
*) Avoid problems with braindead Awks by additionally searching for gawk
and nawk in APACI's configure script.
10933
10934
10935
10936
10937
10938
10939
10940
10941
10942
10943
10944
10945
10946
10947
10948
10949
*) Rename md5.h to ap_md5.h to avoid conflicts with native MD5 on
some systems. [Randy Terbush]
*) Change usage of perror()+fprintf(stderr,...) in mod_rewrite to
more proper ap_log_error() variants.
[Ralf S. Engelschall]
*) Make sure the argument for the --add-module option to APACI's configure
script is of type [path/to/]mod_xxx.c because all calculations inside
configure and src/Configure depend on this.
[Ralf S. Engelschall] PR#2307
*) Changes usage of perror/fprintf to stderr to more proper ap_log_error
in mod_mime, mod_log_referer, mod_log_agent, and mod_log_config.
[Brian Behlendorf]
*) Various OS/2 cleanups ["Brian Havard" <brianh kheldar.apana.org.au>]
*) PORT: QNX needed a #include <sys/mman.h>; and now it uses flock
serialized accept to handle multiple sockets.
*) Have NT properly set the directory for CGI scripts
(& other spawned children)
*) Propagate environment to CGI scripts correctly in Win32.
10962
10963
10964
10965
10966
10967
10968
10969
10970
10971
10972
10973
10974
10975
10976
10977
10978
10979
10980
10981
10982
10983
10984
10985
10986
10987
10988
10989
10990
10991
10992
10993
10994
10995
10996
10997
10998
10999
11000
*) Some symbol renaming:
ap_spawn_child_err became ap_spawn_child
ap_spawn_child_err_buff became ap_bspawn_child
spawn_child was obsoleted and moved to compat.h
[Brian Behlendorf]
*) Upgrade the child spawning code in mod_rewrite for the RewriteMap
programs: ap_spawn_child_err() is used and the Win32 case now uses
CreateProcess() instead of a low-level execl() (which caused problems in
the past under Win32).
[Ralf S. Engelschall]
*) A few cosmetics and trivial enhancements to APXS to make the
generated Makefile more user friendly. [Ralf S. Engelschall]
*) Proxy Fix: The proxy special failure routine ap_proxyerror()
was updated to use the normal apache error processing, thereby allowing
proxy errors to be treated by ErrorDocument's as well. For this
purpose, a new module-to-core communication variable "error-notes"
was introduced; the proxy (and possibly other modules) communicates
its error text using this variable. Its content is copied to a new
cgi-env-var REDIRECT_ERROR_NOTES for use by ErrorDocuments.
The old proxy special error routine ap_proxy_log_uerror()
was replaced by regular ap_log_error() calls, many messages were made
more informative.
[Martin Kraemer] PR#494, 1259
*) SECURITY: A possible buffer overflow in the ftp proxy was fixed.
[Martin Kraemer]
*) Transform the configure message "You need root privileges for suEXEC"
from a fatal error into a (more friendly) warning because the building
("make") of Apache we can allow, of course. Root privileges are needed
only for the installation step ("make install"). So make sure the
user is aware of this fact but let him proceed as long as he can.
[Ralf S. Engelschall] PR#2288
*) Renamed three more functions to common ap_ prefix which we missed at the