-*- coding: utf-8 -*-
Changes with Apache 2.5.0
- *) mpm_event: Fix handling of MaxConnectionsPerChild. [Stefan Fritsch]
+ *) htpasswd, htdbm: Add support for bcrypt algorithm (requires
+ apr-util 1.5 or higher). PR 49288. [Stefan Fritsch]
- *) suexec: Add --enable-suexec-capabilites support on Linux, to use
- setuid/setgid capability bits rather than a setuid root binary.
- [Joe Orton]
+ *) htpasswd, htdbm: Put full 48bit of entropy into salt, improve
+ error handling. Add some of htpasswd's improvements to htdbm,
+ e.g. warn if password is truncated by crypt(). [Stefan Fritsch]
- *) suexec: Add support for logging to syslog as an alternative to
- logging to a file; use --without-suexec-logfile --with-suexec-syslog.
- [Joe Orton]
+ *) ab: add TLS1.1/TLS1.2 options to -f switch, and adapt output
+ to more accurately report the negotiated protocol. PR 53916.
+ [Nicolás Pernas Maradei <nico emutex com>, Kaspar Brand]
- *) mod_proxy_ajp: Reduce memory usage in case of many keep-alive requests on
- one connection. PR 52275. [Naohiro Ooiwa <naohiro ooiwa miraclelinux com>]
+ *) mod_systemd: New module, for integration with systemd on Linux.
+ [Jan Kaluza <jkaluza redhat.com>]
- *) mod_proxy: Use the the same hostname for SNI as for the HTTP request when
- forwarding to SSL backends. PR 53134.
- [Michael Weiser <michael weiser.dinsnail.net>, Ruediger Pluem]
+ *) core: ErrorDocument now works for requests without a Host header.
+ PR 48357. [Jeff Trawick]
- *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
- [Matthew Steele <mdsteele google.com>]
+ *) --with-module: Fix failure to integrate them into some existing
+ module directories. PR 40097. [Jeff Trawick]
- *) mod_so: If a filename without slashes is specified for LoadFile or
- LoadModule and the file cannot be found in the server root directory,
- try to use the standard dlopen() search path. [Stefan Fritsch]
+ *) mod_headers: New params: %l for load averages, %i for an
+ idle percentage rating of httpd, and %b for a busy percentage
+ rating. [Jim Jagielski]
- *) various modules, rotatelogs: Replace use of apr_file_write() with
- apr_file_write_full() to prevent incomplete writes. PR 53131.
- [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
+ *) core: New functions to obtain load parameters: ap_get_sload()
+ and ap_get_loadavg(). [Jim Jagielski]
- *) core: Fix segfault in logging if r->useragent_addr or c->client_addr is
- unset. [Stefan Fritsch]
+ *) mod_cache_socache: New cache implementation backed by mod_socache
+ that replaces mod_mem_cache removed from httpd v2.2. [Graham
+ Leggett]
- *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
- be compiled by the build compiler instead of the host compiler.
- Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
- PR 51257. [Guenter Knauf]
+ *) mod_auth_form: Support the expr parser in the
+ AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and
+ AuthFormLogoutLocation directives. [Graham Leggett]
+
+ *) core: Add dirwalk_stat and pre_htaccess hooks, allowing mpm-itk
+ to be used without patches to httpd core. [Jeff Trawick]
+
+ *) mod_proxy: Allow for persistence of local changes (via the
+ balancer-manager) between graceful and normal restarts.
+ [Jim Jagielski]
+
+ *) mod_slotmem: New provider function, fgrab(), which forces an
+ allocation of a slot. [Jim Jagielski]
+
+ *) mod_proxy_balancer: The nonce is only derived from the UUID iff
+ not set via the 'nonce' balancer param. [Jim Jagielski]
+
+ *) mod_lua: Add LuaInputFilter/LuaOutputFilter for creating content
+ filters in Lua [Daniel Gruno]
+
+ *) core: Apply length limit when logging Status header values.
+ [Jeff Trawick, Chris Darroch]
+
+ *) mod_ssl: Match wildcard SSL certificate names in proxy mode.
+ PR 53006. [Joe Orton]
+
+ *) WinNT MPM: Store pid and generation for each thread in scoreboard
+ to allow tracking of threads from exiting children via mod_status
+ or other such mechanisms. [Jeff Trawick]
+
+ *) mod_ssl: Catch missing or mismatched client cert/key pairs with
+ SSLProxyMachineCertificateFile/Path directives. PR 52212.
+ [Keith Burdis <keith burdis.org>, Joe Orton]
+
+ *) mod_lua: Allow scripts handled by the lua-script handler to return
+ a status code to the client (such as a 302 or a 500) [Daniel Gruno]
- *) mod_ssl: Send the error message for speaking http to an https port using
- HTTP/1.0 instead of HTTP/0.9, and omit the link that may be wrong when
- using SNI. PR 50823. [Stefan Fritsch]
+ *) mod_proxy_ajp: Fix crash in packet dump code when logging
+ with LogLevel trace7 or trace8. PR 53730. [Rainer Jung]
- *) mod_authz_core: Fix parsing of Require arguments in <AuthzProviderAlias>.
- PR 53048. [Stefan Fritsch]
+ *) mod_cache: Wrong content type and character set when
+ mod_cache serves stale content because of a proxy error.
+ PR 53539. [Rainer Jung, Ruediger Pluem]
- *) core: Fix error handling in ap_scan_script_header_err_brigade() if there
- is no EOS bucket in the brigade. Fixes segfault with mod_proxy_fcgi.
- PR 48272. [Stefan Fritsch]
+ *) mod_lua: Decline handling 'lua-script' if the file doesn't exist,
+ rather than throwing an internal server error. [Daniel Gruno]
- *) mod_proxy_fcgi: If there is an error reading the headers from the
- backend, send an error to the client. PR 52879. [Stefan Fritsch]
+ *) mod_lua: Add functions r:flush and r:sendfile as well as additional
+ request information to the request_rec structure. [Daniel Gruno]
- *) mod_rewrite: Fix RewriteCond integer checks to be parsed correctly.
- PR 53023. [Axel Reinhold <apache freakout.de>, André Malo]
+ *) mod_lua: Add a server scope for Lua states, which creates a pool of
+ states with managable minimum and maximum size. [Daniel Gruno]
- *) mod_proxy: Add the forcerecovery balancer parameter that determines if
- recovery for balancer workers is enforced. [Ruediger Pluem]
+ *) core: Add post_perdir_config hook.
+ [Steinar Gunderson <sgunderson bigfoot.com>]
- *) mod_proxy: Correctly set up reverse proxy worker. PR 52935.
- [Petter Berntsen <petterb gmail.com>]
+ *) mod_lua: Add new directive, LuaMapHandler, for dynamically mapping
+ URIs to Lua scripts and functions using regular expressions.
+ [Daniel Gruno]
- *) core: Add filesystem paths to access denied / access failed messages
- AH00035 and AH00036. [Eric Covener]
+ *) mod_lua: Add new directive LuaCodeCache for controlling in-memory
+ caching of lua scripts. [Daniel Gruno]
- *) Fix MPM DSO load failure on AIX. [Jeff Trawick]
+ *) The following now respect DefaultRuntimeDir/DEFAULT_REL_RUNTIMEDIR:
+ - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
+ - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
+ mutexes (Mutex)
+ - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
+ - mod_ldap: shared memory cache
+ - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
+ [Jeff Trawick]
- *) core: Add the port number to the vhost's name in the scoreboard.
- [Stefan Fritsch]
+ *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
- *) mpm_event: Don't do a blocking write when starting a lingering close
- from the listener thread. PR 52229. [Stefan Fritsch]
+ *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
+ for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
+ Christophe Renou, Peter Sylvester]
+
+ *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
+ ap_pregcomp() abort if out of memory. This raises the minimum PCRE
+ requirement to version 6.0. PR 53284. [Stefan Fritsch]
+
+ *) suexec: Add --enable-suexec-capabilites support on Linux, to use
+ setuid/setgid capability bits rather than a setuid root binary.
+ [Joe Orton]
+
+ *) suexec: Add support for logging to syslog as an alternative to logging
+ to a file; configure --without-suexec-logfile --with-suexec-syslog.
+ [Joe Orton]
+
+ *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
+ [Matthew Steele <mdsteele google.com>]
+
+ *) various modules, rotatelogs: Replace use of apr_file_write() with
+ apr_file_write_full() to prevent incomplete writes. PR 53131.
+ [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
+
+ *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
+ be compiled by the build compiler instead of the host compiler.
+ Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
+ PR 51257. [Guenter Knauf]
*) core: In maintainer mode, replace apr_palloc with a version that
initializes the allocated memory with non-zero values, except if
AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
- *) mod_log_config: Check during config test that directories for access logs
- exist. PR 29941. [Stefan Fritsch]
-
- *) mod_authnz_ldap: Don't try a potentially expensive nested groups
- search before exhausting all AuthLDAPGroupAttribute checks on the
- current group. PR52464 [Eric Covener]
-
*) mod_policy: Add a new testing module to help server administrators
enforce a configurable level of protocol compliance on their
servers and application servers behind theirs. [Graham Leggett]
passing through the server in such a way that connections and/or
requests be reconstructed and replayed. [Graham Leggett]
- *) Event MPM: Reduce locking by using a lock free circular queue.
-
*) mod_noloris
*) APREQ
projects / apache / blobdiff