0N/A -*- coding: utf-8 -*-
0N/A *) mod_auth_basic: Add AuthBasicUseDigestAlgorithm directive to
0N/A allow migration of passwords from digest to basic authentication.
2362N/A routines for FastCGI, based largely on mod_proxy_fcgi.
0N/A *) core: Add ap_log_data(), ap_log_rdata(), etc. for logging buffers.
0N/A *) ab: Fix potential buffer overflows when processing the T and X
0N/A command-line options. PR 55360.
0N/A *) mod_unique_id: Use output of the PRNG rather than IP address and
0N/A pid, avoiding sleep() call and possible DNS issues at startup,
2362N/A plus improving randomness for IPv6-only hosts.
0N/A *) core: Log a message at TRACE1 when the client aborts a connection.
0N/A *) mod_authnz_ldap: Support primitive LDAP servers that do not accept
0N/A filters, such as "SDBM-backed LDAP" on
z/OS, by allowing a special
0N/A filter "none" to be specified in AuthLDAPURL. [Eric Covener]
0N/A *) mod_file_cache: mod_file_cache should be able to serve files that
0N/A haven't had a Content-Type set via
e.g. mod_mime. [Eric Covener]
0N/A *) core: merge AllowEncodedSlashes from the base configuration into
0N/A virtual hosts. [Eric Covener]
0N/A *) mod_headers: Add 'setifempty' command to Header and RequestHeader.
0N/A *) AIX: Install DSO's with "cp" instead of "install" in
instdso.sh 0N/A *) mod_ldap: Retry transient LDAP connection errors when they occur
0N/A during the authorization stage.
0N/A *) mod_ldap: Don't keep retrying if a new LDAP connection times out.
0N/A *) mod_deflate: permit compilation of mod_deflate against a zlib that has
0N/A been configured with -D Z_PREFIX, which redefines the token "deflate".
0N/A *) mod_auth_digest: Use the secret when generating nonces in all cases and
0N/A not only when AuthName is used in .htaccess files (this change may cause
0N/A problems if used with round robin load balancers). Don't regenerate the
0N/A secret on graceful restarts. PR 54637 [Stefan Fritsch]
0N/A *) ab: Add a new -l parameter in order not to check the length of the responses.
0N/A This can be usefull with dynamic pages.
0N/A PR9945, PR27888, PR42040 [<ccikrs1 cranbrook edu>]
0N/A *) mod_logio: new format-specifier %C (combined) which is the sum of received
0N/A and sent byte counts.
0N/A PR54015 [Christophe Jaillet]
0N/A *) core: Remove apr_brigade_flatten(), buffering and duplicated code
0N/A from the HTTP_IN filter, parse chunks in a single pass with zero copy.
0N/A Reduce memory usage by 48 bytes per request. [Graham Leggett]
0N/A *) core: Stop the HTTP_IN filter from attempting to write error buckets
0N/A to the output filters, which is bogus in the proxy case. Create a
0N/A clean mapping from APR codes to HTTP status codes, and use it where
0N/A needed. [Graham Leggett]
0N/A *) mod_proxy: Ensure network errors detected by the proxy are returned as
0N/A 504 Gateway Timout as opposed to 502 Bad Gateway, in order to be
0N/A compliant with RFC2616 14.9.4 Cache Revalidation and Reload Controls.
0N/A *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981
0N/A *) core, mod_ssl: Enable the ability for a module to reverse the sense of
0N/A a poll event from a read to a write or vice versa. This is a step on
0N/A the way to allow mod_ssl taking full advantage of the event MPM.
0N/A *) mod_ldap: LDAP connections used for authentication were not respecting
0N/A LDAPConnectionPoolTimeout. PR 54587
0N/A *) core: ap_rgetline_core now pulls from r->proto_input_filters.
0N/A *) mod_proxy_html: process parsed comments immediately.
0N/A Fixes bug where parsed comments may be lost. [Nick Kew]
0N/A *) mod_proxy_html: introduce doctype for HTML 5 [Nick Kew]
0N/A *) mod_proxy_html: fix typo-bug processing "strict" vs "transitional"
0N/A *) core: Add option to add valgrind support. Use it to reduce false positive
0N/A warnings in mod_ssl. [Stefan Fritsch]
0N/A *) mod_authn_file, mod_authn_dbd, mod_authn_dbm, mod_authn_socache:
0N/A Cache the result of the most recent password hash verification for every
0N/A keep-alive connection. This saves some expensive calculations.
0N/A *) http: Remove support for Request-Range header sent by Navigator 2-3 and
0N/A MSIE 3. [Stefan Fritsch]
0N/A *) core, http: Extend HttpProtocol with an option to enforce stricter HTTP
0N/A conformance or to only log the found problems. [Stefan Fritsch]
0N/A *) core: Correctly parse an IPv6 literal host specification in an absolute
0N/A URL in the request line. [Stefan Fritsch]
0N/A *) mod_ssl: Add support for OpenSSL configuration commands [Stephen Henson]
0N/A *) core: Add LogLevelOverride directive that allows to override the
0N/A loglevel for clients from certain IPs. This also works for things
0N/A like the SSL handshake where <If> LogLevel ... </If> is evaluated
0N/A too late. [Stefan Fritsch]
0N/A *) core: Add new directive Warning to issue warnings from a configuration
0N/A file. Both Warning and Error now generate a timestamped log message.
0N/A *) ap_expr: Add SERVER_PROTOCOL_VERSION, ..._MAJOR, and ..._MINOR
0N/A variables. [Stefan Fritsch]
0N/A *) core: New directive RegisterHttpMethod for registering non-standard
0N/A HTTP methods. [Stefan Fritsch]
0N/A *) core: New directive HttpProtocol which allows to disable HTTP/0.9
0N/A support. [Stefan Fritsch]
0N/A *) mod_allowhandlers: New module to forbid specific handlers for specific
0N/A directories. [Stefan Fritsch]
0N/A *) mod_systemd: New module, for integration with systemd on Linux.
0N/A *) core: Add pre_htaccess hook, allowing mpm-itk
0N/A to be used without patches to httpd core. [Jeff Trawick]
0N/A *) WinNT MPM: Store pid and generation for each thread in scoreboard
0N/A to allow tracking of threads from exiting children via mod_status
0N/A or other such mechanisms. [Jeff Trawick]
0N/A *) mod_ssl: Catch missing or mismatched client
cert/key pairs with
0N/A - APIs: ap_log_pid(), ap_remove_pid, ap_read_pid()
0N/A - core: the scoreboard (ScoreBoardFile), pid file (PidFile), and
0N/A - mod_cache: thundering herd lock directory
0N/A - mod_lbmethod_heartbeat, mod_heartmonitor: heartbeat storage file
0N/A - mod_ldap: shared memory cache
0N/A - mod_socache_shmcb, mod_socache_dbm: shared memory or dbm for cache
0N/A *) suexec: Add --enable-suexec-capabilites support on Linux, to use
0N/A *) suexec: Add support for logging to syslog as an alternative to logging
0N/A to a file; configure --without-suexec-logfile --with-suexec-syslog.
0N/A *) mod_ssl: Add support for TLS Next Protocol Negotiation. PR 52210.
0N/A *) cross-compile: allow to provide CC_FOR_BUILD so that gen_test_char will
0N/A be compiled by the build compiler instead of the host compiler.
0N/A Also set CC_FOR_BUILD to 'cc' when cross-compilation is detected.
0N/A PR 51257. [Guenter Knauf]
0N/A *) core: In maintainer mode, replace apr_palloc with a version that
0N/A initializes the allocated memory with non-zero values, except if
0N/A AP_DEBUG_NO_ALLOC_POISON is defined. [Stefan Fritsch]
0N/A *) mod_policy: Add a new testing module to help server administrators
0N/A enforce a configurable level of protocol compliance on their
0N/A servers and application servers behind theirs. [Graham Leggett]
0N/A *) mod_firehose: Add a new debugging module able to record traffic
0N/A passing through the server in such a way that connections
and/or 0N/A requests be reconstructed and replayed. [Graham Leggett]
0N/A [Apache 2.5.0-dev includes those bug fixes and changes with the
0N/A Apache
2.4.xx tree as documented below, except as noted.]