2 Changes with Apache 2.5.0
4 *) mod_dav: Make sure that when we prepare an If URL for Etag comparison,
5 we compare unencoded paths. PR 53910 [Timothy Wood <tjw omnigroup.com>]
7 *) core, mod_ssl: Lift the restriction that prevents mod_ssl taking
8 full advantage of the event MPM. Enable the ability for a module
9 to reverse the sense of a poll event from a read to a write or vice
10 versa. [Graham Leggett]
12 *) htpasswd: Add -v option to verify a password. [Stefan Fritsch]
14 *) htpasswd, htdbm: Fix password generation. PR 54735. [Stefan Fritsch]
16 *) mod_dav: Improve error handling in dav_method_put(), add new
17 dav_join_error() function. PR 54145. [Ben Reser <ben reser.org>]
19 *) mod_auth_digest: Fix crashes if shm initialization failed. [Stefan
22 *) mod_ldap: LDAP connections used for authentication were not respecting
23 LDAPConnectionPoolTimeout. PR 54587
25 *) core: ap_rgetline_core now pulls from r->proto_input_filters.
27 *) mod_proxy_html: process parsed comments immediately.
28 Fixes bug where parsed comments may be lost. [Nick Kew]
30 *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
32 *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
35 *) core: Add option to add valgrind support. Use it to reduce false positive
36 warnings in mod_ssl. [Stefan Fritsch]
38 *) mod_lua: Add bindings for apr_dbd/mod_dbd database access
41 *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
42 Cache the result of the most recent password hash verification for every
43 keep-alive connection. This saves some expensive calculations.
46 *) http: Remove support for Request-Range header sent by Navigator 2-3 and
47 MSIE 3. [Stefan Fritsch]
49 *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
50 conformance or to only log the found problems. [Stefan Fritsch]
52 *) core: Correctly parse an IPv6 literal host specification in an absolute
53 URL in the request line. [Stefan Fritsch]
55 *) mod_ssl: add support for subjectAltName-based host name checking
56 in proxy mode. PR 54030. [Kaspar Brand]
58 *) mpm_event: Check that AsyncRequestWorkerFactor is not negative. PR 54254.
59 [Jackie Zhang <jackie qq zhang gmail com>]
61 *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
65 *) core: Add LogLevelOverride directive that allows to override the
66 loglevel for clients from certain IPs. This also works for things
67 like the SSL handshake where <If> LogLevel ... </If> is evaluated
68 too late. [Stefan Fritsch]
70 *) core: Add new directive Warning to issue warnings from a configuration
71 file. Both Warning and Error now generate a timestamped log message.
74 *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
75 variables. [Stefan Fritsch]
77 *) core: New directive RegisterHttpMethod for registering non-standard
78 HTTP methods. [Stefan Fritsch]
80 *) core: New directive HttpProtocol which allows to disable HTTP/0.9
81 support. [Stefan Fritsch]
83 *) mod_allowhandlers: New module to forbid specific handlers for specific
84 directories. [Stefan Fritsch]
86 *) configure: Fix processing of --disable-FEATURE for various features.
89 *) mod_systemd: New module, for integration with systemd on Linux.
90 [Jan Kaluza <jkaluza redhat.com>]
92 *) mod_cache_socache: New cache implementation backed by mod_socache
93 that replaces mod_mem_cache removed from httpd v2.2. [Graham
96 *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
97 to be used without patches to httpd core. [Jeff Trawick]
99 *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
100 filters in Lua [Daniel Gruno]
102 *) WinNT MPM: Store pid and generation for each thread in scoreboard
103 to allow tracking of threads from exiting children via mod_status
104 or other such mechanisms. [Jeff Trawick]
106 *) mod_ssl: Catch missing or mismatched client cert/key pairs with
107 SSLProxyMachineCertificateFile/Path directives. PR 52212.
108 [Keith Burdis <keith burdis.org>, Joe Orton]
110 *) mod_lua: Allow scripts handled by the lua-script handler to return
111 a status code to the client (such as a 302 or a 500) [Daniel Gruno]
113 *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
114 rather than throwing an internal server error. [Daniel Gruno]
116 *) mod_lua: Add functions r:flush and r:sendfile as well as additional
117 request information to the request_rec structure. [Daniel Gruno]
119 *) mod_lua: Add a server scope for Lua states, which creates a pool of
120 states with managable minimum and maximum size. [Daniel Gruno]
122 *) core: Add post_perdir_config hook.
123 [Steinar Gunderson <sgunderson bigfoot.com>]
125 *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
126 URIs to Lua scripts and functions using regular expressions.
129 *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
130 caching of lua scripts. [Daniel Gruno]
132 *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
133 - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
134 - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
136 - mod_cache: thundering herd lock directory
137 - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
138 - mod_ldap: shared memory cache
139 - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
142 *) suexec: Add --enable-suexec-capabilites support on Linux, to use
143 setuid/setgid capability bits rather than a setuid root binary.
146 *) suexec: Add support for logging to syslog as an alternative to logging
147 to a file; configure --without-suexec-logfile --with-suexec-syslog.
150 *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
151 [Matthew Steele <mdsteele google.com>]
153 *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
154 be compiled by the build compiler instead of the host compiler.
155 Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
156 PR 51257. [Guenter Knauf]
158 *) core: In maintainer mode, replace apr_palloc with a version that
159 initializes the allocated memory with non-zero values, except if
160 AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
162 *) mod_policy: Add a new testing module to help server administrators
163 enforce a configurable level of protocol compliance on their
164 servers and application servers behind theirs. [Graham Leggett]
166 *) mod_firehose: Add a new debugging module able to record traffic
167 passing through the server in such a way that connections and/or
168 requests be reconstructed and replayed. [Graham Leggett]
178 [Apache 2.5.0-dev includes those bug fixes and changes with the
179 Apache 2.4.xx tree as documented below, except as noted.]
181 Changes with Apache 2.4.x and later:
183 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
185 Changes with Apache 2.2.x and later:
187 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
189 Changes with Apache 2.0.x and later:
191 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup