2 Changes with Apache 2.5.0
4 *) core: Be less strict when checking whether Content-Type is set to
5 "application/x-www-form-urlencoded" when parsing POST data,
6 or we risk losing data with an appended charset. PR 53698
7 [Petter Berntsen <petterb gmail.com>]
9 *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
10 rather than throwing an internal server error. [Daniel Gruno]
12 *) mod_lua: Add functions r:flush and r:sendfile as well as additional
13 request information to the request_rec structure. [Daniel Gruno]
15 *) mod_lua: Add a server scope for Lua states, which creates a pool of
16 states with managable minimum and maximum size. [Daniel Gruno]
18 *) core: Add post_perdir_config hook.
19 [Steinar Gunderson <sgunderson bigfoot.com>]
21 *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
22 URIs to Lua scripts and functions using regular expressions.
25 *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
26 caching of lua scripts. [Daniel Gruno]
28 *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
30 *) mod_lua: Add new directive LuaAuthzProvider to allow implementing an
31 authorization provider in lua. [Stefan Fritsch]
33 *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
34 for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
35 Christophe Renou, Peter Sylvester]
37 *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
38 ap_pregcomp() abort if out of memory. This raises the minimum PCRE
39 requirement to version 6.0. PR 53284. [Stefan Fritsch]
41 *) suexec: Add --enable-suexec-capabilites support on Linux, to use
42 setuid/setgid capability bits rather than a setuid root binary.
45 *) suexec: Add support for logging to syslog as an alternative to logging
46 to a file; configure --without-suexec-logfile --with-suexec-syslog.
49 *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
50 [Matthew Steele <mdsteele google.com>]
52 *) various modules, rotatelogs: Replace use of apr_file_write() with
53 apr_file_write_full() to prevent incomplete writes. PR 53131.
54 [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
56 *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
57 be compiled by the build compiler instead of the host compiler.
58 Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
59 PR 51257. [Guenter Knauf]
61 *) core: In maintainer mode, replace apr_palloc with a version that
62 initializes the allocated memory with non-zero values, except if
63 AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
65 *) mod_authnz_ldap: Don't try a potentially expensive nested groups
66 search before exhausting all AuthLDAPGroupAttribute checks on the
67 current group. PR52464 [Eric Covener]
69 *) mod_policy: Add a new testing module to help server administrators
70 enforce a configurable level of protocol compliance on their
71 servers and application servers behind theirs. [Graham Leggett]
73 *) mod_firehose: Add a new debugging module able to record traffic
74 passing through the server in such a way that connections and/or
75 requests be reconstructed and replayed. [Graham Leggett]
85 [Apache 2.5.0-dev includes those bug fixes and changes with the
86 Apache 2.4.xx tree as documented below, except as noted.]
88 Changes with Apache 2.4.x and later:
90 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
92 Changes with Apache 2.2.x and later:
94 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
96 Changes with Apache 2.0.x and later:
98 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup