It has been a long time since the last release again, and again we have many bug fixes - and some small new features, check the following summary or the complete list below.

There have been fixes for ssl (SNI handling and the SSL_CTX_set_options fix) and mod_cgi and mod_proxy (response handling).

There is a new fdevent handler “libev”; “linux-rtsig” got removed.

And we bind now IPv6 sockets to IPv6 only in almost all cases (we disable “dual-stack”), see IPv6-Config for details.


Changes from 1.4.26

  • Fix handling return value of SSL_CTX_set_options (fixes #2157, thx mlcreech)
  • Fix mod_proxy HUP handling (send final chunk, fix usage counter)
  • mod_proxy: close connection on write error (fixes #2114)
  • Check uri instead of physical path for directory redirect
  • Fix detecting git repository (fixes #2173, thx ncopa)
  • [mod_compress] Fix segfault when etags are disabled (fixes #2169)
  • Reset uri.authority before TLS servername handling, reset all “keep-alive” data in connection_del (fixes #2125)
  • Print double quotes properly when dumping config file (fixes #1806)
  • Include IP addresses on error log on password failures (fixes #2191)
  • Fix stalls while reading from ssl sockets (fixes #2197)
  • Fix etag formatting on boxes with 32-bit longs
  • Fix two compiler warnings
  • mod_accesslog: fix %p for ipv6 sockets (fixes #2228, thx jo.henke)
  • mod_fastcgi: Send 502 “Bad Gateway” if we couldn’t open the file for X-Sendfile (fixes #2226)
  • mod_staticfile: add debug output if we ignore a file with static-file.exclude-extensions (fixes #2215)
  • mod_cgi: fix race condition leaving response not forwarded to client (fixes #2217)
  • mod_accesslog: Fix var declarations mixed in source (fixes #2233)
  • mod_status: Add version to status page (fixes #2219)
  • mod_accesslog: optimize accesslog_append_escaped (fixes #2236, thx crypt)
  • openssl: silence annoying error messages for errno==0 (fixes #2213)
  • array.c: improve array_get_unused_element to check data type; fix mem leak if unused_element didn’t find a matching entry (fixes #2145)
  • add check to stop loading plugins twice
  • cleanup fdevent code, removed linux-rtsig handler, replaced some fprintf calls
  • only require FDEVENT_IN bit to be set for listening connections (fixes #2227)
  • add libev fdevent handler: server.event-handler = “libev”
  • mod_proxy: return response as soon as it is available (fixes #2196)
  • don’t overwrite global server.force-lowercase-filenames setting (fixes #2042)
  • bind to IPV6-only if ipv6 address was specified (