148N/AChanges with Apache 2.5.0
148N/A *) mod_proxy: Fix memory leak or possible corruption in ProxyBlock
148N/A implementation. [Ruediger Pluem, Joe Orton]
148N/A *) mod_proxy: Check hostname from request URI against ProxyBlock list,
148N/A not forward proxy, if ProxyRemote* is configured. [Joe Orton]
148N/A *) mod_proxy_connect: Avoid DNS lookup on hostname from request URI
148N/A if ProxyRemote* is configured. PR 43697. [Joe Orton]
148N/A *) mod_lbmethod_heartbeat, mod_heartmonitor: Respect DefaultRuntimeDir/
148N/A DEFAULT_REL_RUNTIMEDIR for the heartbeat storage file. [Jeff Trawick]
148N/A *) mpm_event: Don't count connections in lingering close state when
148N/A calculating how many additional connections may be accepted.
148N/A *) mod_ssl: Add RFC 5878 support. [Ben Laurie]
148N/A *) mod_lua: Add new directive LuaAuthzProvider to allow implementing an
148N/A authorization provider in lua. [Stefan Fritsch]
148N/A *) mod_lua: Add a few missing request_rec fields. Rename remote_ip to
148N/A client_ip to match conn_rec. [Stefan Fritsch]
148N/A *) mod_lua: Change prototype of vm_construct, to work around gcc bug which
148N/A causes a segfault. PR 52779. [Dick Snippe <Dick Snippe tech omroep nl>]
148N/A *) mod_ssl: If exiting during initialization because of a fatal error,
148N/A log a message to the main error log pointing to the appropriate
148N/A virtual host error log. [Stefan Fritsch]
148N/A *) mod_ssl: Add support for TLS-SRP (Secure Remote Password key exchange
148N/A for TLS, RFC 5054). PR 51075. [Quinn Slack <sqs cs stanford edu>,
148N/A Christophe Renou, Peter Sylvester]
148N/A *) mod_ssl: Add new directive SSLCompression to disable TLS-level
148N/A compression. PR 53219. [Björn Jacke <bjoern j3e de>, Stefan Fritsch]
148N/A *) core: Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make
148N/A ap_pregcomp() abort if out of memory. This raises the minimum PCRE
148N/A requirement to version 6.0. PR 53284. [Stefan Fritsch]
148N/A *) suexec: Add --enable-suexec-capabilites support on Linux, to use
148N/A *) suexec: Add support for logging to syslog as an alternative to logging
148N/A to a file; configure --without-suexec-logfile --with-suexec-syslog.
148N/A *) mod_proxy_ajp: Reduce memory usage in case of many keep-alive requests on
148N/A one connection. PR 52275. [Naohiro Ooiwa <naohiro ooiwa miraclelinux com>]
148N/A *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
181N/A *) various modules, rotatelogs: Replace use of apr_file_write() with
148N/A apr_file_write_full() to prevent incomplete writes. PR 53131.
148N/A [Nicolas Viennot <apache viennot biz>, Stefan Fritsch]
148N/A *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
be compiled by the build compiler instead of the host compiler.
Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
PR 51257. [Guenter Knauf]
*) core: Add the port number to the vhost's name in the scoreboard.
*) core: In maintainer mode, replace apr_palloc with a version that
initializes the allocated memory with non-zero values, except if
AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
*) mod_authnz_ldap: Don't try a potentially expensive nested groups
search before exhausting all AuthLDAPGroupAttribute checks on the
current group. PR52464 [Eric Covener]
*) mod_policy: Add a new testing module to help server administrators
enforce a configurable level of protocol compliance on their
servers and application servers behind theirs. [Graham Leggett]
*) mod_firehose: Add a new debugging module able to record traffic
passing through the server in such a way that connections
and/or requests be reconstructed and replayed. [Graham Leggett]
[Apache 2.5.0-dev includes those bug fixes and changes with the
Apache
2.4.xx tree as documented below, except as noted.]
Changes with Apache
2.4.x and later:
Changes with Apache
2.2.x and later:
Changes with Apache
2.0.x and later: