Newer
Older
*) Make mod_cgid work with SuExec. [Ryan Bloom]
*) Adopt apr user/group name features for mod_rewrite. Eliminates some
'extra' stat's for user/group since they should never occur, and now
resolves the SCRIPT_USER and SCRIPT_GROUP, including on WinNT NTFS
volumes. [William Rowe]
*) Adopt apr features to simplify mod_includes. This changes the
behavior of the USER_NAME variable, unknown uid's are now reported
as USER_NAME="<unknown>" rather than the old user#000 result.
WinNT now resolves USER_NAME on NTFS volumes. [William Rowe]
*) Adopt apr features for simplifing mod_userdir, and accept the new
Win32/OS2 exceptions without hiccuping. [William Rowe]
*) Replace configure --with-optim option by using and saving the
environment variable OPTIM instead. This is needed because configure
options do not support multiple flags separated by spaces.
[Roy Fielding]
*) Fix some byterange handling. If we get a byte range that looks like
"-999999" where that is past the end of the file, we should return
a PARTIAL CONTENT status code, and return the whole file as one big
byterange. This matches the 1.3 handling now. [Ryan Bloom]
*) Make the error bucket a real meta-data bucket. This means that the
bucket length is 0, and a read returns NULL data. If one of these
buckets is passed down after the headers are sent, this data will
just be ignored. [Greg Stein]
*) The prefork MPM wasn't killing child processes correctly if a restart
signal was received while the process was serving a request. The child
process would become the equivalent of a second parent process. If
we break out of the accept loop, then we need to do die after cleaning
up after ourselves. [Ryan Bloom]
*) Change the Prefork MPM to use SIGWINCH instead of SIGUSR1 for graceful
restarts. [Ryan Bloom]
*) Modify the apr_stat/lstat/getfileinfo calls within apache to use
the most optimal APR_FINFO_wanted bits. This spares Win32 from
performing very expensive owner, group and permission lookups
and allows the server to function until these apr_finfo_t fields
are implemented under Win32. [William Rowe]
*) Support for typedsafe optional functions - that is functions exported by
optional modules, which, therefore, may or may not be present, depending
on configuration. See the experimental modules mod_optional_fn_{ex,im}port
for sample code. [Ben Laurie]
*) filters can now report an HTTP error to the server. This is done
by sending a brigade where the first bucket is an error_bucket.
This bucket is a simple bucket that stores an HTTP error and
a string. Currently the string is not used, but it may be needed
to output an error log. The http_header_filter will find this
bucket, and output the error text, and then return
AP_FILTER_ERROR, which informs the server that the error web page
has already been sent. [Ryan Bloom]
*) If we get an error, then we should remove all filters except for
those critical to serving a web page. This fixes a bug, where
error pages were going through the byterange filter, even though
that made no sense. [Ryan Bloom]
*) Relax the syntax checking of Host: headers in order to support
iDNS. PR#6635 [Tony Finch]
*) Cleanup the byterange filter to use the apr_brigade_partition
and apr_bucket_copy functions. This removes a lot of very messy
code, and hopefully makes this filter more stable.
[Ryan Bloom]
*) Remove AddModule and ClearModuleList directives. Both of these
directives were used to ensure that modules could be enabled
in the correct order. That requirement is now gone, because
we use hooks to ensure that modules are in the correct order.
[Ryan Bloom]
*) When SuExec is specified, we need to add it to the list of
targets to be built. If we don't, then any changes to the
configuration won't affect SuExec, unless 'make suexec' is
specifically run. [Ryan Bloom]
*) Cleaned out open_file from mod_file_cache, as apr now accepts
the APR_XTHREAD argument to open a file for consumption by
parallel threads on win32. [William Rowe]
*) Correct a bug in determining when we follow symlinks. The code
expected a stat -1 result, not an apr_status_t positive error.
Also check if the APR_FINFO_USER fields are valid before we
follow the link. [William Rowe]
*) Move initgroupgs, ap_uname2id and ap_gname2id from util.c to
mpm_common.c. These functions are only valid on some platforms,
so they should not be in the main-line code. [Ryan Bloom]
*) Remove ap_chdir_file(). This function is not thread-safe,
and nobody is currently using it. [Ryan Bloom]
*) Do not try to run make depend if there are no .c files in the
current directory, doing so makes `make depend` fail.
[Ryan Bloom]
*) Update highperformance.conf to work with either prefork or
pthreads mpms. [Greg Ames]
*) Stop checking to see if this is a pipelined request if we know
for a fact that it isn't. Basically, if r->connection->keepalive == 0.
This keeps us from making an extra read call when serving a 1.0
request. [Ryan Bloom and Greg Stein]
*) Fix the handling of variable expansion look-ahead in mod_rewrite,
i.e. syntax like %{LA-U:REMOTE_USER}, and also fix the parsing of
more complicated nested RewriteMap lookups. PR#7087 [Tony Finch]
*) Fix the RFC number mentioned when complaining about a missing
*) Fix an endless loop in ab which occurred when ab was posting
and the server dropped the connection unexpectedly.
[Jeff Trawick]
*) Fix a segfault while handling request bodies in ap_http_filter().
This problem has been seen with mod_dav usage as well as with
requests where the body was just being discarded. [Jeff Trawick]
*) Some adjustment on the handling and automatic setting (via
hints.m4) of various compilation flags (eg: CFLAGS). Also,
add the capability to specify flags (NOTEST_CFLAGS and
NOTEST_LDFLAGS) which are used to compile Apache, but
not used during the configuration process. Useful for
flags like "-Werror". [Jim Jagielski]
*) Stop using environment variables to force debug mode or
no detach. We now use the -D command line argument to
specify the correct mode. -DONE_PROCESS and -DNO_DETACH.
*) Change handlers to use hooks. [Ben Laurie]
*) Stop returning copies of filenames from both apr_file_t and
apr_dir_t. We pstrdup the filenames that we store in the
actual structures, so we don't need to pstrdup the strings again.
[Ryan Bloom]
*) mod_cgi: Fix some problems where the wrong error value was being
traced. [Jeff Trawick]
*) EBCDIC: Fix some missing ASCII conversion on some protocol data.
[Jeff Trawick]
*) Add generic hooks. [Ben Laurie]
*) Use a real pool to dup the error log descriptor. [Ryan Bloom]
*) Fix a segfault caused by mod_ext_filter when the external filter
program does not exist. [Jeff Trawick]
*) Fix an output truncation error when on an HTTP >= 1.0 request an
object of size between DEFAULT_BUCKET_SIZE and AP_MIN_BYTES_TO_WRITE
was served through mod_charset_lite (or anything else that would
create a transient bucket in this size range). ap_bucket_make_heap()
silently failed (fixed), transient_setaside() discovered it, but
ap_save_brigade() ignored it (fixed). [Jeff Trawick]
*) Ignore \r\n or \n when using PEEK mode for input filters. The problem
is that some browsers send extra lines at the end of POST requests, and
we don't want to delay sending data back to the user just because the
browser isn't well behaved. [Ryan Bloom]
*) Get SuEXEC working again. We can't send absolute paths to suExec
because it refuses to execute those programs. SuEXEC also wasn't
always recognizing configuration changes made using the autoconf
setup. [Ryan Bloom]
*) Allow the buildconf process to find the config.m4 files in the correct
order. Basically, we can now name config.m4 files as config\d\d.m4,
and we will sort them correctly when inserting them into the build
process. [Ryan Bloom]
*) Get mod_cgid to use apr calls for creating the actual CGI process.
This also allows mod_cgid to use ap_os_create_priviledged_process,
thus allowing for SuExec execution from mod_cgid. Currently, we do
not support everything that standard SuExec supports, but at least
it works minimally now. [Ryan Bloom]
*) Allow SuExec to be configured from the ./configure command line.
[Ryan Bloom]
*) Update some of the docs in README and INSTALL to reflect some of
the changes in Apache 2.0 [Cliff Woolley <cliffwoolley yahoo.com>]
*) If we get EAGAIN returned from the call to apr_sendfile, then we
need to call sendfile again. This gets us serving large files
such as apache_2.0a9.tar.gz on FreeBSD again. [Ryan Bloom]
*) Get the support programs building cleanly again.
*) The Apache/Win32 Apache.exe and dll's now live in bin. The
current directory logic now backs up over bin/ to determine the
server root from the Apache.exe path.
*) Apache/Win32 now follows the standard conventions of mod_foo.so
loadable modules, dynamic libs are all named libfoo.dll, and the
makefile.win populates the include, lib and libexec directories.
*) Apache is now IPv6-capable. On systems where APR supports IPv6,
Apache gets IPv6 listening sockets by default. Additionally, the
Listen, NameVirtualHost, and <VirtualHost> directives support IPv6
numeric address strings (e.g., "Listen [fe80::1]:8080").
[Jeff Trawick]
*) Modify the install directory layout. Modules are now installed in
modules/. Shared libraries should be installed in libraries/, but
we don't have any of those on Unix yet. All install directories
are modifyable at configure time. [Ryan Bloom]
*) Install all header files in the same directory on Unix. [Ryan Bloom]
*) Get the functions in server/linked into the server, regardless of
which modules linked into the server. This uses the same hack
for Apache that we use for APR and apr-util to ensure all of the
necessary functions are linked. As a part of thise, the CHARSET_EBCDIC
was renamed to AP_CHARSET_EBCDIC for namespace protection, and to make
the scripts a bit easier.
[Ryan Bloom]
*) Rework the RFC1413 handling to make it thread-safe, use a timeout
on the query, and remove IPv4 dependencies. [Jeff Trawick]
*) Get all of the auth modules to the point that they will install and
be loadable into the server. Our new build/install mechanism expects
that all modules will have a common name format. The auth modules
didn't use that format, so we didn't install them properly.
[Ryan Bloom]
*) API routines ap_pgethostbyname() and ap_pduphostent() are no longer
available. Use apr_getaddrinfo() instead. [Jeff Trawick]
*) Get "NameVirtualHost *" working in 2.0. [Ryan Bloom]
*) Return HTTP_RANGE_NOT_SATISFIABLE if the every range requested starts
after the end of the response. [Ryan Bloom]
*) Get byterange requests working with responses that do not have a
content-length. Because of the way byterange requests work, we have to
have all of the data before we can actually do the byterange, so we
can compute the content-length in the byterange filter.
[Ryan Bloom]
*) Get exe CGI's working again on Windows.
[Allan Edwards]
*) Get mod_cgid and mod_rewrite to work as DSOs by changing the way
they keep track of whether or not their post config hook has been
called before. Instead of a static variable (which is replaced when
the DSO is loaded a second time), use userdata in the process pool.
[Jeff Trawick]
Changes with Apache 2.0a9
*) Win32 now requires perl to complete the final install step for users
to build + install on Win32. Makefile.win now rewrites @@ServerRoot@
and installs the conf, htdocs and htdocs/manual directories.
[William Rowe]
*) Make mod_include use a hash table to associate directive tags with
functions. This allows modules to implement their own SSI tags easily.
The idea is simple enough, a module can insert it's own tag and function
combination into a hash table provided by mod_include. While mod_include
parses an SSI file, when it encounters a tag in the file, it does a
hash lookup to find the function that implements that tag, and passes
all of the relevant data to the function. That function is then
responsible for processing the tag and handing the remaining data back
to mod_include for further processing.
*) Get rid of ap_new_apr_connection(). ap_new_connection() now has
fewer parameters: the local and remote socket addresses were removed
from the parameter list because all required information is available
via the APR socket. [Jeff Trawick]
5285
5286
5287
5288
5289
5290
5291
5292
5293
5294
5295
5296
5297
5298
5299
5300
5301
5302
5303
5304
5305
5306
5307
*) Distribution directory structure reorganized to reflect a
normal source distribution with external install targets.
[Roy Fielding]
*) The MPMs that need multiple segments of shared memory now create
two apr_shmem_t variables, one for each shared memory allocation.
the problem is that we can't determine how much memory will be required
for shared memory allocations once we try to allocate more than one
variable. The MM code automatically aligns the shared memory allocations,
so we end up needing to pad the amount of shared memory we want based
on how many variables will be allocated out of the shared memory segment.
It is just easier to create a second apr_shmem_t variable, and two
shmem memory blocks.
[Ryan Bloom]
*) Cleanup the export list a bit. This creates a single unified list of
functions exported by APR. The export list is generated at configure
time, and that list is then used to generate the exports.c file.
Because of the way the export list is generated, we only export those
functions that are valid on the platform we are building on.
[Ryan Bloom]
*) Enable logging the cookie with mod_log_config
*) Fix a segfault in mod_info when it reaches the end of the configuration.
[Jeff Trawick]
*) Added lib/aputil/ as a placeholder for utility functions which are not
specific to the Apache HTTP Server (but do not make sense with APR).
The first utility is "apu_dbm": a set of functions to work with DBM
files. This first version can be compiled for SDBM or GDBM databases.
[Greg Stein]
*) Complete re-write of mod_include. This makes mod_include a filter that
uses buckets directly. This has now served the FAQ correctly.
5322
5323
5324
5325
5326
5327
5328
5329
5330
5331
5332
5333
5334
5335
5336
5337
5338
5339
5340
5341
5342
5343
5344
5345
5346
5347
5348
5349
5350
5351
5352
5353
5354
5355
5356
5357
5358
5359
5360
5361
5362
5363
5364
5365
5366
*) Allow modules to specify the first filter in a sub_request when
making the sub_request. This keeps modules from having to change the
output_filter immediately after creating the sub-request, and therefore
skip the sub_req_output_filter. [Ryan Bloom]
*) Update ab to accept URLs with IPv6 literal address strings (in the
format described in RFC 2732), and to build Host header fields in
the same format. This allows IPv6 literal address strings to be
used with ab. This support has been tested against Apache 1.3 with
the KAME patch, but Apache 2.0 does not yet work with this format
of the Host header field. [Jeff Trawick]
*) Accomodate an out-of-space condition in the piped logs and the
rotatelogs.c code, and no longer churn log processes for this
condition. [Victor J. Orlikowski]
*) Add support for partial writes with apr_sendfile() to core_output_filter.
[Greg Ames]
Changes with Apache 2.0a8
*) Add a directive to mod_mime so that filters can be associated with
a given mime-type.
[Ryan Bloom]
*) Get multi-views working again. We were setting the path_info
field incorrectly if we couldn't find the specified file.
[Ryan Bloom]
*) Fix 304 processing. The core should never try to send the headers
down the filter stack. Always, just setup the table in the request
record, and let the header filter convert it to data that is ready
for the network.
[Ryan Bloom]
*) More fixes for the proxy. There are still bugs in the proxy code,
but this has now proxied www.yahoo.com and www.ntrnet.net (my ISP)
successfully.
[Ryan Bloom]
*) Fix params for apr_getaddrinfo() call in connect proxy handler.
[Chuck Murcko]
*) APR: Add new apr_getopt_long function to handle long options.
5368
5369
5370
5371
5372
5373
5374
5375
5376
5377
5378
5379
5380
5381
5382
5383
5384
5385
5386
5387
5388
5389
5390
5391
5392
5393
5394
5395
5396
5397
5398
5399
5400
5401
5402
5403
5404
5405
5406
*) APR: Change apr_connect() to take apr_sockaddr_t instead of hostname.
Add generic apr_create_socket(). Add apr_getaddrinfo() for doing
hostname resolution/address string parsing and building
apr_sockaddr_t. Add apr_get_sockaddr() for getting the address
of one of the apr_sockaddr_t structures for a socket. Change
apr_bind() to take apr_sockaddr_t. [David Reid and Jeff Trawick]
*) Remove the BUFF from the HTTP proxy. This is still a bit ugly, but
I have proxied pages with it, cleanup will commence soon.
[Ryan Bloom]
*) Make the proxy work with filters. This isn't perfect, because we
aren't dealing with the headers properly. [Ryan Bloom]
*) Do not send a content-length iff the C-L is 0 and this is a head
request. [Ryan Bloom]
*) Make cgi-bin work as a regular directory when using mod_vhost_alias
with no VirtualScriptAlias directives. PR#6829 [Tony Finch]
*) Remove BUFF from the PROXY connect handling. [Ryan Bloom]
*) Get the default_handler to stop trying to deal with HEAD requests.
The idea is to let the content-length filter compute the C-L before
we try to send the data. If we can get the C-L correctly, then we
should send it in the HEAD response.
[Ryan Bloom]
*) The Header filter can now determine if a body should be sent based
on r->header_only. The general idea of this is that if we delay
deciding to send the body, then we might be able to compute the
content-length correctly, which will help caching proxies to cache
our data better. Any handler that doesn't want to try to compute
the content-length can just send an EOS bucket without data and
everything will just work.
[Ryan Bloom]
*) Add the referer to the error log if one is available.
*) Mod_info.c has now been ported to Apache 2.0. As a part of this
change, the root of the configuration tree has been exposed to modules
as ap_conftree.
5413
5414
5415
5416
5417
5418
5419
5420
5421
5422
5423
5424
5425
5426
5427
5428
5429
5430
5431
5432
5433
5434
5435
5436
5437
5438
5439
*) Get the core_output_filter to use the bucket interface directly.
This keeps us from calling the content-length filter multiple times
for a simple static request.
[Ryan Bloom]
*) We are sending the content-type correctly now.
[Ryan Bloom and Will Rowe]
*) APR on FreeBSD: Fix a bug in apr_sendfile() which caused us to report
a bogus bytes-sent value when the only thing being sent was trailers
and writev() returned an error (or EAGAIN). [Jeff Trawick]
*) Get SINGLE_LISTEN_UNSERIALIZED_ACCEPT working again. This uses the
hints file to determine which platforms define
SINGLE_LISTEN_UNSERIALIZED_ACCEPT.
[Ryan Bloom]
*) APR: add apr_get_home_directory() [Jeff Trawick]
*) Initial import of 1.3-current mod_proxy. [Chuck Murcko]
*) Not all platforms have INADDR_NONE defined by default. Apache
used to make this check and define INADDR_NONE if appropriate,
but APR needs the check too, and I suspect other applications will
as well. APR now defines APR_INADDR_NONE, which is always a valid
value on all platforms.
*) Destroy the pthread mutex in lock_intra_cleanup() for PR#6824.
5444
5445
5446
5447
5448
5449
5450
5451
5452
5453
5454
5455
5456
5457
5458
5459
5460
5461
5462
5463
5464
5465
5466
5467
5468
5469
5470
5471
5472
5473
5474
5475
5476
5477
5478
5479
5480
5481
5482
5483
5484
5485
5486
5487
5488
5489
5490
5491
5492
5493
5494
5495
5496
5497
5498
5499
5500
5501
5502
5503
5504
5505
5506
5507
5508
5509
5510
5511
5512
5513
5514
5515
5516
5517
5518
5519
5520
5521
5522
5523
*) Relax the syntax checking of Host: headers in order to support
iDNS. PR#6635 [Tony Finch]
*) When reading from file buckets we convert to an MMAP if it makes
sense. This also simplifies the default handler because the
default handler no longer needs to try to create MMAPs.
[Ryan Bloom]
*) BUFF has been removed from the main server. The BUFF code will remain
in the code until it has been purged from the proxy module as well.
[Ryan Bloom]
*) Byteranges have been completely re-written to be a filter. This
has been tested, and I believe it is working correctly, but it could
doesn't work for the Adobe Acrobat plug-in. The output almost matches
the output from 1.3, the only difference being that 1.3 includes
a content-length in the response, and this does not.
[Ryan Bloom]
*) APR read/write functions and bucket read functions now operate
on unsigned integers, instead of signed ones. It doesn't make
any sense to use signed ints, because we return the error codes,
so if we have an error we should report 0 bytes read or written.
[Ryan Bloom]
*) Always compute the content length, whether it is sent or not.
The reason for this, is that it allows us to correctly report
the bytes_sent when logging the request. This also simplifies
content-length filter a bit, and fixes the actual byte-reporing
code in mod_log_config.c
[Ryan Bloom]
*) Remove AP_END_OF_BRIGADE definition. This does not signify what
it says, because it was only used by EOS and FLUSH buckets. Since
neither of those are required at the end of a brigade, this was
really signifying FLUSH_THE_DATA, but that can be determined better
by checking AP_BUCKET_IS_EOS() or AP_BUCKET_IS_FLUSH. EOS and FLUSH
buckets now return a length of 0, which is actually the amount of data
read, so they make more sense.
[Ryan Bloom]
*) Allow the core_output_filter to save some data past the end of a
request. If we get an EOS bucket, we only send the data if it
makes sense to send it. This allows us to pipeline request
responses. As a part of this, we also need to allocate mmap
buckets out of the connection pool, not the request pool. This
allows the mmap to outlive the request.
[Ryan Bloom]
*) Make blocking and non-blocking bucket reads work correctly for
sockets and pipes. These are the only bucket types that should
have non-blocking reads, because the other bucket types should
ALWAYS be able to return something immediately.
[Ryan Bloom]
*) In the Apache/Win32 console window, accept Ctrl+C to stop the
server, but use Ctrl+Break to initiate a graceful restart
instead of duplicating behavior. [John Sterling]
*) Patch mod_autoindex to set the Last-Modified header based on
the directory's mtime, and add the ETag header. [William Rowe]
*) Merge the 1.3 patch to add support for logging query string in
such a way that "%m %U%q %H" is the same as "%r".
[Bill Stoddard]
*) Port three log methods from mod_log_config 1.3 to 2.0:
CLF compliant '-' byte count, method and protocol.
[Bill Stoddard]
*) Add a new LogFormat directive, %c, that will log connection
status at the end of the response as follows:
'X' - connection aborted before the response completed.
'+' - connection may be kept-alive by the server.
'-' - connection will be closed by the server.
[Bill Stoddard]
*) Expand APR for WinNT to fully accept and return utf-8 encoded
Unicode file names and paths for Win32, and tag the Content-Type
from mod_autoindex to reflect that charset if the feature
5525
5526
5527
5528
5529
5530
5531
5532
5533
5534
5535
5536
5537
5538
5539
5540
5541
5542
5543
5544
5545
5546
5547
5548
5549
5550
5551
5552
5553
5554
5555
5556
5557
5558
5559
5560
5561
5562
5563
5564
5565
5566
5567
5568
5569
5570
5571
5572
5573
5574
5575
5576
5577
macro APR_HAS_UNICODE_FS is true. [William Rowe]
*) Compute the content length (and add appropriate header field) for
the response when no content length is available and we can't use
chunked encoding. [Jeff Trawick]
*) Changed ap_discard_request_body() to use REQUEST_CHUNKED_DECHUNK,
so that content input filters get dechunked data when using
the default handler. Also removed REQUEST_CHUNKED_PASS.
[Sascha Schumann]
*) Add mod_ext_filter as an experimental module. This module allows
the administrator to use external programs as filters. Currently,
only filtering of output is supported. [Jeff Trawick]
*) Most Apache functions work on EBCDIC machines again, as protocol
data is now translated (again). [Jeff Trawick]
*) Introduce ap_xlate_proto_{to|from}_ascii() to clean up some of
the EBCDIC support. They are noops on ASCII machines, so this
type of translation doesn't have to be surrounded by #ifdef
CHARSET_EBCDIC. [Jeff Trawick]
*) Fix mod_include. tag commands work again, and the server will
send the FAQ again. This also allows mod_include to set aside
buckets that include partial buckets.
[Ryan Bloom and David Reid]
*) Add suexec support back. [Manoj Kasichainula]
*) Lingering close now uses the socket directly instead of using
BUFF. This has been tested, but since all we can tell is that it
doesn't fail, this needs to be really hacked on.
[Ryan Bloom]
*) Allow filters to modify headers and have those headers be sent to
the client. The idea is that we have an http_header filter that
actually sends the headers to the network. This removes the need
for the BUFF to send headers.
[Ryan Bloom]
*) Charset translation: mod_charset_lite handles translation of
request bodies. Get rid of the xlate version of ap_md5_digest()
since we don't compute digests of filtered (e.g., translated)
response bodies this way anymore. (Note that we don't do it at
all at the present; somebody needs to write a filter to do so.)
[Jeff Trawick]
*) Input filters and ap_get_brigade() now have a input mode parameter
(blocking, non-blocking, peek) instead of a length parameter.
[hackathon]
*) Update the mime.types file to the registered media types as
Tony Finch]
*) Namespace protect some macros declared in ap_config.h
[Ryan Bloom]
*) Support HTTP header line folding with input filtering.
[Greg Ames]
*) Mod_include works again. This should still be re-written, but at
least now we can serve an SHTML page again.
[Ryan Bloom]
*) Begin to remove BUFF from the core. Currently, we keep a pointer
to both the BUFF and the socket in the conn_rec. Functions that
want to use the BUFF can, functions that want to use the socket,
can. They point to the same place.
[Ryan Bloom]
*) apr_psprintf doesn't understand %lld as a format. Make it %ld.
5599
5600
5601
5602
5603
5604
5605
5606
5607
5608
5609
5610
5611
5612
5613
5614
5615
5616
5617
5618
5619
5620
*) APR pipes on Unix and Win32 are now cleaned up automatically when the
associated pool goes away. (APR pipes on OS/2 were already had this
logic.) This resolvs a fatal file descriptor leak with CGIs.
[Jeff Trawick]
*) The final line of the config file was not being read if there was
no \n at the end of it. This was caused by apr_fgets returning
APR_EOF even though we had read valid data. This is solved by
making cfg_getline check the buff that was returned from apr_fgets.
If apr_fgets return APR_EOF, but there was data in the buf, then we
return the buf, otherwise we return NULL.
[Ryan Bloom]
*) Piped logs work again in the 2.0 series.
[Ryan Bloom]
*) Restore functionality broken by the mod_rewrite security fix:
rewrite map lookup keys and default values are now expanded
so that the lookup can depend on the requested URI etc.
PR #6671 [Tony Finch]
*) SECURITY: Tighten up the syntax checking of Host: headers to fix a
5622
5623
5624
5625
5626
5627
5628
5629
5630
5631
5632
5633
5634
5635
5636
5637
5638
5639
5640
5641
5642
5643
5644
5645
5646
5647
security bug in some mass virtual hosting configurations
that can allow a remote attacker to retrieve some files
on the system that should be inaccessible. [Tony Finch]
*) Add a pool bucket type. This bucket is used for data allocated out
of a pool. If the pool is cleaned before the bucket is destroyed, then
the data is converted to a heap bucket, allowing it to survive the
death of the pool.
[Ryan Bloom]
*) Add a flush bucket. This allows modules to signal that the filters
should all flush whatever data they currently have. There is no way
to actually force them to do this, so if a filter ignores this bucket,
that's life, but at least we can try with this.
[Ryan Bloom]
*) Add an output filter for sub-requests. This filter just strips the
EOS bucket so that we don't confuse the main request's core output
filter by sending multiple EOS buckets. This change also makes sub
requests start to send EOS buckets when they are finished.
[Ryan Bloom]
*) Make ap_bucket_(read|destroy|split|setaside) into macros. Also
makes ap_bucket_destroy a return void, which is okay because it
used to always return APR_SUCCESS, and nobody ever checked its
return value anyway.
5649
5650
5651
5652
5653
5654
5655
5656
5657
5658
5659
5660
5661
5662
5663
5664
5665
5666
5667
5668
5669
5670
5671
5672
5673
5674
5675
5676
5677
5678
5679
5680
5681
5682
5683
5684
5685
5686
5687
5688
5689
5690
5691
5692
5693
5694
5695
5696
5697
5698
5699
5700
5701
5702
5703
5704
5705
5706
5707
5708
5709
5710
5711
5712
5713
5714
5715
*) Remove the index into the bucket-type table from the buckets
structure. This has now been replaced with a pointer to the
bucket_type. Also add some macros to test the bucket-type.
[Ryan Bloom]
*) Renamed all MODULE_EXPORT symbols to AP_MODULE_DECLARE and all symbols
for CORE_EXPORT to AP_CORE_DECLARE (namespace protecting the wrapper)
and retitled API_EXPORT as AP_DECLARE and APR_EXPORT as APR_DECLARE.
All _VAR_ flavors changes to _DATA to be absolutely clear.
[William Rowe]
*) Add support for /, //, //servername and //server/sharename
parsing of <Directory> blocks under Win32 and OS2.
[Tim Costello, William Rowe, Brian Harvard]
*) Remove the function pointers from the ap_bucket type. They have been
replaced with a global table. Modules are allowed to register bucket
types and use then use those buckets.
[Ryan Bloom]
*) mod_cgid: In the handler, shut down the Unix socket (only for write)
once we finish writing the request body to the cgi child process;
otherwise, the client doesn't hit EOF on stdin. Small request bodies
worked without this change (for reasons I don't understand), but large
ones didn't. [Jeff Trawick]
*) Remove file bucket specific information from the ap_bucket type.
This has been moved to a file_bucket specific type that hangs off
the data pointer in the ap_bucket type.
[Ryan Bloom]
*) Input filtering now has a third argument. This is the amount of data
to read from lower filters. This argument can be -1, 0, or a positive
number. -1 means give me all the data you have, I'll deal with it and
let you know if I need more. 0 means give me one line and one line
only. A positive number means I want no more than this much data.
Currently, only 0 and a positive number are implemented. This allows
us to remove the remaining field from the conn_rec structure, which
has also been done.
[Ryan Bloom]
*) Big cleanup of the input filtering. The goal is that http_filter
understands two conditions, headers and body. It knows where it is
based on c->remaining. If c->remaining is 0, then we are in headers,
and http_filter returns a line at a time. If it is not 0, then we are
in body, and http_filter returns raw data, but only up to c->remaining
bytes. It can return less, but never more.
[Greg Ames, Ryan Bloom, Jeff Trawick]
*) mod_cgi: Write all of the request body to the child, not just what
the kernel would accept on the first write. [Jeff Trawick]
*) Back out the change that moved the brigade from the core_output_filters
ctx to the conn_rec. Since all requests over a given connection
go through the same core_output_filter, the ctx pointer has the
correct lifetime.
[Ryan Bloom]
*) Fix another bug in the send_the_file() read/write loop. A partial
send by apr_send would cause unsent data in the read buffer to
get clobbered. Complete making send_the_file handle partial
writes to the network.
[Bill Stoddard]
*) Fix a couple of type fixes to allow compilation on AIX again
5717
5718
5719
5720
5721
5722
5723
5724
5725
5726
5727
5728
5729
5730
5731
5732
5733
5734
5735
5736
5737
5738
5739
5740
5741
5742
5743
5744
5745
5746
5747
5748
5749
5750
*) Fix bug in send_the_file() which causes offset to be ignored
if there are no headers to send.
[Bill Stoddard]
*) Handle APR_ENOTIMPL returned from apr_sendfile in the core
filter. Useful for supporting Windows 9* with a binary
compiled on Windows NT.
[Bill Stoddard]
Changes with Apache 2.0a7
*) Reimplement core_output_filter to buffer/save bucket brigades
across multiple calls to the core_filter. The brigade will be
sent when either MIN_BYTES_TO_SEND or MAX_IOVEC_TO_WRITE
thresholds are hit or the EOS bucket is received.
[Bill Stoddard]
*) Create experimental filter (buffer_filter) that coalesces bytes
into one large buffer before invoking the next filter in the
chain. This filter is particularly useful with the current
implementation of mod_autoindex when it inserted above the
chunk_filter. mod_autoindex generates a lot of brigades that
containing buckets holding just a few bytes each. The
buffer_filter coalesces these buckets into a single large bucket.
[Bill Stoddard]
*) Add apr_sendfile() support into the core_output_filter.
[Bill Stoddard]
*) Add apr_sendv() support into the core_output_filter.
[Bill Stoddard]
*) Fix mod_log_config so that it compiles cleanly with BUFFERED_LOGS
5752
5753
5754
5755
5756
5757
5758
5759
5760
5761
5762
5763
5764
5765
5766
5767
5768
5769
5770
5771
5772
5773
5774
5775
5776
5777
5778
5779
5780
5781
5782
5783
5784
5785
5786
5787
5788
5789
5790
5791
5792
5793
5794
5795
5796
5797
5798
5799
5800
5801
5802
5803
5804
5805
*) Remove ap_send_fb. This is no longer used in Apache, and it doesn't
make much sense, because Apache uses buckets instead of BUFFs now.
[Ryan Bloom]
*) send_the_file now falls back to a read/write loop on platforms that
do not have sendfile.
[Ryan Bloom and Brian Havard]
*) Install apachectl correctly, and substitute the proper values so
that it works again. [Ryan Bloom]
*) Better(??) handle platforms that lack sendfile().
[Jim Jagielski]
*) APR now has UUID generation/formatting/parsing support.
[Greg Stein]
*) Begin the http_filter. This is an input filter that understands
the absolute basic amount required to parse an HTTP Request. The
goal is to be able to split headers from request body before passing
the data back to the other filters.
[Ryan Bloom]
*) Bring forward from 1.3.13 the config directory implementation
[Jim Jagielski]
*) install apxs if it is created
[Ryan Bloom]
*) Added APR_IS_STATUS_condition test macros to eliminate canonical error
conversions. [William Rowe]
*) Now that we have ap_add_input_filter(), rename ap_add_filter() to
ap_add_output_filter(). [Jeff Trawick]
*) Multiple build and configuration fixes
Build process:
-add datadir and localstatedir substitutions
-fix layout name
-fix logfilename misspelling
-fix evaluation of installation dir variables and
-replace $foobar by $(foobar) to be usefull in the makefile
Cross compile:
-add rules for cross-compiling in rules.mk. Okay, rule to check for
$CC_FOR_BUILD is still missing
-use CHECK_TOOL instead of CHECK_PROG for ranlib
-add missing "AR=@AR@" to severaly Makefile.in's
-cache result for "struct rlimit"
-compile all helper programs with native and cross compiler
and use the native version to generate header file
*) Prepare our autoconf setup for autoconf 2.14a and for cross-
compiling.
5811
5812
5813
5814
5815
5816
5817
5818
5819
5820
5821
5822
5823
5824
5825
5826
5827
5828
5829
5830
5831
5832
5833
5834
5835
5836
5837
5838
5839
5840
5841
5842
5843
5844
5845
5846
5847
5848
5849
5850
5851
5852
5853
5854
5855
5856
5857
5858
5859
5860
5861
5862
5863
5864
5865
5866
5867
5868
5869
5870
5871
5872
5873
5874
5875
5876
5877
5878
5879
*) Fix a bug where a client which only sends \n to delimit header
lines (netcat) gets a strange looking HTTP_NOT_IMPLEMENTED
message. Start working on ebcdic co-existance with input
filtering.
[William Rowe, Greg Ames]
*) If mod_so is enabled in the server always create libexec, even
if there are no modules installed in this directory. This is a
requirement for APXS to work correctly.
[Ryan Bloom]
*) Connection oriented output filters are now stored in the
conn_rec instead of the request_rec. This allows us to add the
output filter in the pre-connection phase instead of the
post_read_request phase, which keeps us from trying to write an
error page before we have a filter to write to the network.
[Ryan Bloom, Jeff Trawick, and Greg Ames]
*) Cleaning up an mmap bucket no longer deletes the mmap. An
mmap can be used across multiple buckets (default_handler with
byte ranges, mod_file_cache, mod_mmap_static), so cleanup of
the mmap itself can't be associated with the bucket.
[Jeff Trawick]
*) Add .dll caching directive ISAPICacheFile to mod_isapi.
[William Rowe]
*) Radical surgery to improve mod_isapi support under Win32.
Includes a number of newer ServerSupportFunction calls, support
for ReadClient (in order to retrieve POSTs greater than 48KB),
and general bug fixes to more reliably load ISAPI .dll's and
prevent leaking handle resources. Note: There are still
discrepancies between IIS's and Apache's ServerVariables, and
async calls are still not supported. Additional warnings are
logged to facilitate debugging of unsupported ISAPI calls.
[William Rowe]
*) Add input filtering to Apache. The basic idea for the input
filters is the same as the ideas for output filters. The biggest
difference is that instead of calling ap_pass_brigade, ap_get_brigade
should be called, and the order of execution for the filter itself is
different. When writing an output filter, a brigade is passed in,
and filters operate directly on that brigade, when done, they call
ap_pass_brigade. Input filters are the exact opposite. Because input
is not a push operation, filters first call ap_get_brigade. When this
function returns, the input filter will be left with a valid brigade.
The input filter should then operate on the brigade, and return.
[Ryan Bloom]
*) Fix building on BSD/OS using its native make. The build system
falls back to the BSD .include directive on that host platform.
[Sascha Schumann]
*) Expand dbmmanage to allow -d -m -s -p options for Crypt, MD5,
SHA1 and plaintext password encodings. Make feature tests a
bit more flexible. [William Rowe]
*) Charset translation: mod_charset_lite handles output content
translation in a filter. mod_charset_lite no longer ignores
subrequests. A bunch of cruft related to BUFF's support for
translating request and response bodies was removed.
[Jeff Trawick]
*) Move the addition of the CORE filter to the post_read_request
hook in http_core.c. This removes the need to add the filter in
multiple places and allows for an SSL module to be added much
simpler. [Ryan Bloom]
*) SECURITY [CVE-2000-0913] (cve.mitre.org):
Fix a security problem that affects certain configurations of
5882
5883
5884
5885
5886
5887
5888
5889
5890
5891
5892
5893
5894
5895
5896
5897
5898
5899
5900
5901
5902
5903
5904
5905
5906
5907
5908
5909
5910
5911
5912
5913
5914
5915
5916
5917
5918
5919
5920
5921
5922
5923
5924
5925
5926
5927
5928
5929
5930
5931
5932
5933
5934
5935
5936
5937
5938
5939
5940
5941
5942
5943
5944
5945
5946
5947
5948
5949
5950
5951
5952
5953
5954
5955
5956
5957
5958
5959
5960
5961
5962
5963
5964
5965
5966
5967
5968
mod_rewrite. If the result of a RewriteRule is a filename that
contains expansion specifiers, especially regexp backreferences
$0..$9 and %0..%9, then it may be possible for an attacker to
access any file on the web server. [Tony Finch]
*) Fix a bug where errors that are detected during early request parsing
don't produce visible HTTP error messages at the browser, because
the core_filter wasn't present. [Greg Ames]
*) Provide apr_socklen_t as a portability aid.
[Victor J. Orlikowski]
*) Overhaul of dbmmanage to allow a groups arg (as in Apache 1.2)
as well as a comment arg to the add, adduser and update cmds.
update allows the user to clear or preserve pw/groups/comment.
Fixed a bug in dbmmanage that prevented the check option from
parsing a password followed by :group... text. Corrected the
seed calcualation for Win32 systems, and added -lsdbm support.
[William Rowe]
*) Configured mod_auth_dbm to compile with sdbmlib under Win32.
[William Rowe]
*) Avoid a segfault when parsing .htaccess files. An
uninitialized tree pointer was passed to ap_build_config().
[Jeff Trawick]
*) Change the way that inet_addr & inet_network are checked for
in APR's configure process to allow BeOS BONE to correctly
find them. With this change BeOS BONE now builds from source
with no problems. [David Reid]
*) Fix a bug in apr_create_process() for Unix. The NULL signifying
the end of the parameters to execve() was stored in the wrong
location, overlaying the storage beyond the newargs[] array and
also passing uninitialized storage to execve(), which would
sometimes fail with EFAULT. [Jeff Trawick]
*) Fix a bug parsing configuration file containers. With a sequence
like this in the config file
<IfModule mod_kilroy.c>
any stuff
</IfModule>
<IfModule mod_lovejoy.c>
(blank line)
any stuff
</IfModule>
the second container would be terminated at the blank line due to
sediment in the buffer from reading the prior </IfModule> and an
error message would be generated for the real </IfModule> for the
second container. Also due to this problem, any two characters
could be used for "</" in the close of a container.
[Jeff Trawick]
*) ap_add_filter prototype changed to remove the ctx pointer. The
pointer still remains in the filter structure, but it can not be
a part of the ap_add_filter prototype. The reason is that when
the core uses AddFilter to add a filter to the stack it doesn't
know how to allocate the ctx pointer, or even how much memory should
be allocated. The filters will have to be responsible for allocating
the ctx memory when they need it.
[Ryan Bloom]
*) Add an AddFilter directive. This directive takes a list of filters
that should be activated for the requested resource.
[Ryan Bloom]
*) apr_snprintf(): Get quad format strings working on OS/390 (and perhaps
some other platforms). [Jeff Trawick]
*) Modify mod_include to be a filter. Currently, it has only been tested
on actual files, but it should work for CGI scripts too.
[Ryan Bloom]
*) apr_putc(), apr_puts() for Unix: handle buffered files and interrupted
writes. apr_flush() for Unix: handle interrupted writes.
[Jeff Trawick]
*) NameVirtualHost can now take "*" as an argument instead of
an IP address. This allows you to create a purely name-based
virtual hosting server that does not have any IP addresses in
the configuration file and which ignores the local address
of any connections. PR #5595, PR #4455 [Tony Finch]
*) Fix some compile warnings in mod_mmap_static.c
*) Fix chunking problem with CGI scripts. The general problem was that
the CGI modules were adding an EOS bucket and then the core added an
EOS bucket. The chunking filter finalizes the chunked response when it
encounters an EOS bucket. Because two EOS buckets were sent, we
finalized the response twice. The fix is to make sure we only send one
EOS, by utilizing a flag in the request_rec.
[Ryan Bloom]
*) apr_put_os_file() now sets up the unget byte appropriately on Unix
and Win32. Previously, the first read from an apr_file_t set up via
apr_put_os_file() would return a '\0'. [Jeff Trawick]
*) Mod_cgid now creates a single element bucket brigade, with a pipe
bucket, instead of using BUFF's and ap_r*.
[Ryan Bloom]
*) APRVARS.in no longer overwrites the EXTRA_LIBS variable.
*) Remove ap_bopenf from buff code. This required modifying the file_cache
code to use APR file's directly instead of going through BUFFs.
[Ryan Bloom]
*) Fix compile break on some platforms for mod_mime_magic.c
*) Fix merging of AddDefaultCharset directive.
*) Minor revamp of the rlimit sections of code. We now test