2 Changes with Apache 2.5.0
4 *) core: Add LogLevelOverride directive that allows to override the
5 loglevel for clients from certain IPs. This also works for things
6 like the SSL handshake where <If> LogLevel ... </If> is evaluated
7 too late. [Stefan Fritsch]
9 *) core: Add new directive Warning to issue warnings from a configuration
10 file. Both Warning and Error now generate a timestamped log message.
13 *) mod_status: Print out list of times since a Vhost was last used.
16 *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
17 variables. [Stefan Fritsch]
19 *) core: New directive RegisterHttpMethod for registering non-standard
20 HTTP methods. [Stefan Fritsch]
22 *) mod_xml2enc: Fix problems with charset conversion altering the
23 Content-Length. [Micha Lenk <micha lenk info>]
25 *) core: New directive HttpProtocol which allows to disable HTTP/0.9
26 support. [Stefan Fritsch]
28 *) mod_allowhandlers: New module to forbid specific handlers for specific
29 directories. [Stefan Fritsch]
31 *) core: Be more correct about rejecting directives that cannot work in <If>
32 sections. [Stefan Fritsch]
34 *) core: Fix directives like LogLevel that need to know if they are invoked
35 at virtual host context or in Directory/Files/Location/If sections to
36 work properly in If sections that are not in a Directory/Files/Location.
39 *) mod_cache_disk: Resolve errors while revalidating disk-cached files on
40 Windows ("...rename tempfile to datafile failed..."). PR 38827
43 *) mod_proxy_ftp: Fix segfaults on IPv4 requests to hosts with DNS AAAA records.
44 PR 40841. [Andrew Rucker Jones <arjones simultan dyndns org>,
45 <ast domdv de>, Jim Jagielski]
47 *) ap_expr: Add req_novary function that allows HTTP header lookups
48 without adding the name to the Vary header. [Stefan Fritsch]
50 *) configure: Fix processing of --disable-FEATURE for various features.
53 *) htpasswd, htdbm: Optionally read passwords from stdin, as more
54 secure alternative to -b. PR 40243. [Adomas Paltanavicius <adomas
55 paltanavicius gmail com>, Stefan Fritsch]
57 *) htpasswd, htdbm: Add support for bcrypt algorithm (requires
58 apr-util 1.5 or higher). PR 49288. [Stefan Fritsch]
60 *) htpasswd, htdbm: Put full 48bit of entropy into salt, improve
61 error handling. Add some of htpasswd's improvements to htdbm,
62 e.g. warn if password is truncated by crypt(). [Stefan Fritsch]
64 *) mod_systemd: New module, for integration with systemd on Linux.
65 [Jan Kaluza <jkaluza redhat.com>]
67 *) --with-module: Fix failure to integrate them into some existing
68 module directories. PR 40097. [Jeff Trawick]
70 *) mod_cache_socache: New cache implementation backed by mod_socache
71 that replaces mod_mem_cache removed from httpd v2.2. [Graham
74 *) mod_auth_form: Support the expr parser in the
75 AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and
76 AuthFormLogoutLocation directives. [Graham Leggett]
78 *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
79 to be used without patches to httpd core. [Jeff Trawick]
81 *) mod_proxy: Allow for persistence of local changes (via the
82 balancer-manager) between graceful and normal restarts.
85 *) mod_slotmem: New provider function, fgrab(), which forces an
86 allocation of a slot. [Jim Jagielski]
88 *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
89 filters in Lua [Daniel Gruno]
91 *) WinNT MPM: Store pid and generation for each thread in scoreboard
92 to allow tracking of threads from exiting children via mod_status
93 or other such mechanisms. [Jeff Trawick]
95 *) mod_ssl: Catch missing or mismatched client cert/key pairs with
96 SSLProxyMachineCertificateFile/Path directives. PR 52212.
97 [Keith Burdis <keith burdis.org>, Joe Orton]
99 *) mod_lua: Allow scripts handled by the lua-script handler to return
100 a status code to the client (such as a 302 or a 500) [Daniel Gruno]
102 *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
103 rather than throwing an internal server error. [Daniel Gruno]
105 *) mod_lua: Add functions r:flush and r:sendfile as well as additional
106 request information to the request_rec structure. [Daniel Gruno]
108 *) mod_lua: Add a server scope for Lua states, which creates a pool of
109 states with managable minimum and maximum size. [Daniel Gruno]
111 *) core: Add post_perdir_config hook.
112 [Steinar Gunderson <sgunderson bigfoot.com>]
114 *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
115 URIs to Lua scripts and functions using regular expressions.
118 *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
119 caching of lua scripts. [Daniel Gruno]
121 *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
122 - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
123 - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
125 - mod_cache: thundering herd lock directory
126 - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
127 - mod_ldap: shared memory cache
128 - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
131 *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
133 *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
134 for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
135 Christophe Renou, Peter Sylvester]
137 *) suexec: Add --enable-suexec-capabilites support on Linux, to use
138 setuid/setgid capability bits rather than a setuid root binary.
141 *) suexec: Add support for logging to syslog as an alternative to logging
142 to a file; configure --without-suexec-logfile --with-suexec-syslog.
145 *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
146 [Matthew Steele <mdsteele google.com>]
148 *) various modules, rotatelogs: Replace use of apr_file_write() with
149 apr_file_write_full() to prevent incomplete writes. PR 53131.
150 [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
152 *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
153 be compiled by the build compiler instead of the host compiler.
154 Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
155 PR 51257. [Guenter Knauf]
157 *) core: In maintainer mode, replace apr_palloc with a version that
158 initializes the allocated memory with non-zero values, except if
159 AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
161 *) mod_policy: Add a new testing module to help server administrators
162 enforce a configurable level of protocol compliance on their
163 servers and application servers behind theirs. [Graham Leggett]
165 *) mod_firehose: Add a new debugging module able to record traffic
166 passing through the server in such a way that connections and/or
167 requests be reconstructed and replayed. [Graham Leggett]
177 [Apache 2.5.0-dev includes those bug fixes and changes with the
178 Apache 2.4.xx tree as documented below, except as noted.]
180 Changes with Apache 2.4.x and later:
182 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup
184 Changes with Apache 2.2.x and later:
186 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?view=markup
188 Changes with Apache 2.0.x and later:
190 *) http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/CHANGES?view=markup