From: William A. Rowe Jr Date: Fri, 24 Jun 2005 16:52:23 +0000 (+0000) Subject: Just more cleanup, and re-add the /docs/STATUS removed by my prior commit X-Git-Tag: 2.0.55~147 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=afb5364a60ceb712856872a74650e4e03b53d81a;p=thirdparty%2Fapache%2Fhttpd.git Just more cleanup, and re-add the /docs/STATUS removed by my prior commit (it wasn't quite obvious enough, now it's called out.) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@201648 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/STATUS b/STATUS index 15fdac98a07..0ee94ffe268 100644 --- a/STATUS +++ b/STATUS @@ -2,7 +2,24 @@ APACHE 2.0 STATUS: -*-text-*- Last modified at [$Date$] The current version of this file can be found at: -http://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x/STATUS + + * http://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x/STATUS + +Documentation status is maintained seperately and can be found at: + + * docs/STATUS in this source tree, or + * http://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x/docs/STATUS + +Consult the following STATUS files for information on related projects: + + * http://svn.apache.org/repos/asf/apr/apr/branches/0.9.x/STATUS + * http://svn.apache.org/repos/asf/apr/apr-util/branches/0.9.x/STATUS + +Consult the trunk/ for all new development and documentation efforts: + + * http://svn.apache.org/repos/asf/httpd/httpd/trunk/STATUS + * http://svn.apache.org/repos/asf/httpd/httpd/trunk/docs/STATUS + Release history: @@ -59,13 +76,6 @@ Release history: 2.0a1 : released March 10, 2000 -Please consult the following STATUS files for information on related projects: - - * http://svn.apache.org/repos/asf/apr/apr/branches/0.9.x/STATUS - * http://svn.apache.org/repos/asf/apr/apr-util/branches/0.9.x/STATUS - * http://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x/docs/STATUS - - Contributors looking for a mission: * Just do an egrep on "TODO" or "XXX" in the source. @@ -765,50 +775,12 @@ RELEASE NON-SHOWSTOPPERS BUT WOULD BE REAL NICE TO WRAP THESE UP: Message-ID: + * ap_discard_request should be converted to use the bucket API + directly rather than waste cycles copying buffers with the old API. -TODO ISSUES REMAINING IN MOD_SSL: - - * In order to use a DSO version of mod_ssl we have to link with - -lssl and -lcrypto. A workaround is in place right now where the - entire EXTRA_LIBS macro is being appended to the objects list, but - this is a hack. We should either revamp the APACHE_CHECK_SSL_TOOLKIT - autoconf function or come up with some other autoconf checks to - search for libssl and libcrypto and properly add them to mod_ssl's - link flags. - - * SSL renegotiations in combination with POST request - - * Port or dispose all code inside #if 0...#endif blocks that remain - from the porting effort. - - * Do we need SSL_set_read_ahead()? - - * the ssl_expr api is NOT THREAD SAFE. race conditions exist: - -in ssl_expr_comp() if SSLRequire is used in .htaccess - (ssl_expr_info is global) - -is ssl_expr_eval() if there is an error - (ssl_expr_error is global) - - * SSLRequire directive (parsing of) leaks memory - - * Diffie-Hellman-Parameters for temporary keys are hardcoded in - ssl_engine_dh.c, while the comment in ssl_engine_kernel.c says: - "it is suggested that keys be changed daily or every 500 - transactions, and more often if possible." - - * ssl_var_lookup could be rewritten to be MUCH faster - - * CRL callback should be pluggable - - * session cache store should be pluggable - - * init functions should return status code rather than ssl_die() - - * ssl_engine_pphrase.c needs to be reworked so it is generic enough - to also decrypt proxy keys - - * the shmcb code should just align its memory segment rather than - jumping through all the "safe" memcpy and memset hoops + * SIGSEGV on Linux (glibc 2.1.2) isn't caught properly by a + sigwaiting thread. We need to work around this, perhaps unless + there is hope soon for a fixed glibc. EXPERIMENTAL MODULES: @@ -818,357 +790,3 @@ EXPERIMENTAL MODULES: * Fix the shared memory cache -PRs that have been suspended forever waiting for someone to -put them into 'the next release': - - * documentation and Q&A - - PR#2221: Make online documentation search link back to my installation - Status: - - PR#2906: Propose that Apache recommend $UNIQUE_ID for all "session id" - algorithms - Status: - - PR#2793: When will Apache support P3P? Any Plans? - Status: - - * build - - PR#2113: HTTP Server Rebuild Line Needs Changing for the better - Status: - - PR#2421: problem specifying ndbm library for build ?with autoconfigure - Status: - - * config - - PR#76: missing call to "setlocale();" - Status: - - PR#628: Request of "Options SymLinksIfGroupMatch" - Status: - - PR#793: RLimitCPU and RLimitMEM don't apply to all children like they should - Status: - - PR#922: it is useful to allow specifiction that root-owned symlinks - should always be followed - Status: - - PR#1028: DoS attacks involving memory consumption - Status: - - PR#1191: setlogin() is not called, causing problems with e.g. identd - Status: - - PR#1204: regerror() exists, use it - Status: - - PR#2284: Can not POST to ErrorDocument - Apache/1.3b6 - Status: - - PR#2396: Proposal for TimeZone directive - Status: - - PR#2446: AllowOverride FileInfo is too coarse - Status: - - PR#2760: [PATCH] User/Group for and i.e. not only - in global and . - Status: - - PR#2907: suggestion: power up your Include directive :) - Status: - - PR#3018: cannot limit some HTTP methods - Status: - - PR#3677: New ErrorDocumentMatch directive - Status: - - PR#4244: "Files" and "FilesMatch" regexp does not recognize bang as - negation operator - Status: - - PR#5993: AllowOverride should have a 'CheckNone' and 'AllowNone' argument - instead of only 'None' - Status: - - * mod_access - - PR#537: mod_access syntax allows hosts that should be restricted - Status: - - PR#1287: add allow,deny/deny,allow warning to mod_access - Status: - - PR#2512: directive wanted - Status: - - * mod_auth-any - - PR#557: ~UserHome directories are not honored in absolute pathname - requests (.htaccess) - Status: - - PR#1117: Using NIS passwd.byname dbm files with AuthDBMUserFile - Status: - - PR#1809: Suggestion for improving authentication modules and core source - code, problem with 401 and ErrorDocument - Status: - - * mod_autoindex - - PR#1263: Add frame-safe anchor attribute to mod_autoindex links - Status: - - * mod_cgi (and suexec) - - PR#921: suexec Uses cwd before filling it in, doesn't use syslog - Status: - - PR#1176: Apache cannot handle continuation line in headers - Status: - - PR#1120: suexec does not parse arguments to #exec cmd - Status: - - PR#1268: CGI scripts running as Apache user: security (suexec etc.) - Status: - - PR#1285: Error messages could be easier to spot in cgi.log file for suexec.c - Status: - - PR#1905: suexec - Allow modules to set user:group for execution. - Status: - - PR#2360: suexec for general access of user content? - Status: - - PR#2460: TimeOut applies to output of CGI scripts - Status: - - PR#2573: CGI's for general use still have to be run as another user - with suExec - Status: - - PR#4241: Need to be able to override shebang line to make CGI scripts - more portable. - Status: - - PR#4490: mod_cgi prevents handling of OPTIONS requests - Status: - - * mod_env - - PR#370: Modified PATH environemnt variable is not passed, instead - system's is used - Status: - - * mod_headers - - PR#1383: I make mod_headers to modify request headers as well as - response ones. - Status: - - PR#1677: mod_headers should allow mod_log_config-style formats in - header values - Status: - - * mod_imap - - PR#759: imap should read * too! - Status: - - * mod_include - - PR#78: Additional status for XBitHack directive - Status: - - PR#623: A smarter "Last Modified" value for SSI documents (see PR number 600) - Status: - - PR#1145: mod_include - Allow for Last-Modified: without resorting to XBitHack - Status: - - PR#1803: patches to mod_include to allow for file tests - Status: - - PR#4459: Suggestion for better handling of Last-modified headers - Status: - - * mod_info - - PR#2415: /server-info doesn't check for the virtual host to list the info - Status: - - * mod_log-any - - PR#1050: Logging of virtual server to error_log as well - Status: - - PR#1358: Selective url-encode of log fields (or maybe a pseudo - log_rewrite module?) - Status: - - PR#2073: pipelined connections are not logged correctly - Status: - - PR#4448: Please allow CGI env variables (QUERY_STRING, ...) to be logged - with %{}e - Status: - - * mod_negotiation - - PR#3191: no way to set global quality-of-source (qs) coneg values - with multiviews - Status: - - * mod_proxy - - PR#362: Mod_proxy doesn't allow change of error pages - Status: - - PR#440: Proxy doesn't deliver documents if not connected - Status: - - PR#534: proxy converts ~name to %7Ename when name starts with a dot (.) - Status: - - PR#612: Proxy FTP Authentication Fails - Status: - - PR#700: Proxy doesn't do links right for OpenVMS files through ftp: - Status: - - PR#980: Controlling Access to Remote Proxies would be nice... - Status: - - PR#994: Adding authentication "on the fly" through the proxy module - Status: - - PR#1085: ProxyRemote make a dead cycle. - Status: - - PR#1166: ``nph-'' not honored (no buffering) for ProxyRemote mapping - Status: - - PR#1290: Need to know "hit-rate" on proxy cache - Status: - - PR#1532: Proxy transfer logging - Status: - - PR#1547: No HTTP_X_FORWARDED_FOR set... - Status: - - PR#1567: ProxyRemote proxy requests fail authentication by firewall - Status: - - PR#1702: mod_proxy to support persistent conns? - Status: - - PR#1878: listing of proxy cache content - Status: - - PR#2314: patterns in ProxyRemote - Status: - - PR#2648: Cache file names in Proxy module - Status: - - PR#3568: Accessing URL through proxy server corrupts data. - Status: - - PR#3605: Some anonymous FTP URLs ask for authentication - Status: - - * mod_rewrite - - PR#1582: mod_rewrite forms REQUEST_URI different than mod_cgi does - Status: - - PR#2074: mod_rewrite doesn't pass Proxy Throughput on internal subrequests - Status: - - * mod_status - - PR#2138: mod_status always displays 256 possible connection slots - Status: - - PR#2343: Status module averages are for entire uptime - Status: - - * apache-api - - PR#1004: request_config field in request_rec is moderately bogus - Status: - - PR#1158: improvements to child spawning API - Status: - - PR#1233: there is no way to keep per-connection per-module state - Status: - - PR#2024: adding auth_why to conn_rec - Status: - - PR#2873: Feedback/Comment on APACI - Status: - - PR#3143: No module specific data hook for per-connection data - Status: - - * generally odds and ends - - PR#2431: A small addition to rotatelogs.c to improve program functionality. - Status: - - PR#2763: mailto tags and bundling bug report script - Status: - - PR#2785: os-aix Support for System Resource Controller - Status: - - PR#2889: Inclusion of RPM spec file in CVS/distributions - Status: - - PR#5713: os-windows [PATCH] install as win32 service with domain account - Status: Cannot accept password-as-arg, we should prompt the - user when -k install/-k config with a user argument. - - - -Other bugs that need fixing: - - * ap_discard_request should be converted to use the bucket API - directly rather than waste cycles copying buffers with the old API. - - * MaxRequestsPerChild measures connections, not requests. - Until someone has a better way, we'll probably just rename it - "MaxConnectionsPerChild". - - * Regex containers don't work in an intutive way - Status: No one has come up with an efficient way to fix this - behavior. Dean has suggested getting rid of regex containers - completely. - OtherBill suggests: We at least seem to agree on eliminating - the forms, and using only - semantics. - - * SIGSEGV on Linux (glibc 2.1.2) isn't caught properly by a - sigwaiting thread. We need to work around this, perhaps unless - there is hope soon for a fixed glibc. - - * orig_ct in the byterange/multipart handling may not be - needed. Apache 1.3 just never stashed "multipart" into - r->content_type. We should probably follow suit since the - byterange stuff doesn't want the rest of the code to see the - multipart content-type; the other code should still think it is - dealing with the stuff. - Status: Greg volunteers to investigate (esp. since he was most - likely the one to break it :-) -