Differences

This shows you the differences between two versions of the page.

--- litespeed_wiki:changelog [2022/09/12 20:27]
Michael Alegre Added info for v6.0.12 builds [6,7]
+++ litespeed_wiki:changelog [2024/04/04 15:15] (current)
Michael Alegre Added info for v6.2.2 build 0.
@@ Line 2: / Line 2: @@
 **Note:** If a build is missing, you're always able to find it here as well: https://groups.google.com/g/litespeed-edge-users
+===== Version 6.2.2 =====
+=== Build 0 ===
+  [New Feature] Add chunked encoding support for proxying request body to backend.
+  [New Feature] Add cache vary on request header value, automatically vary on header 'X-Http-Method-Override'.
+  [New Feature] Add detection for flag file 'admin/tmp/.stay_with_lsws' used to prevent automatically switching back to Apache when encountering a licensing issue.
+  [Improvement] Apply server level log rotation setting to Modsec audit log.
+  [Improvement] Do not force URL trailing slash for requests to Node.js applications.
+  [Improvement] Make Node.js startup script compatible with older Node.js versions.
+  [Bug Fix] Address failure to switch back to Apache issue, "on-failure" restart for Systemd service is now disabled.
+===== Version 6.2.1 =====
+=== Build 2 ===
+  [Bug Fix] Address compatibility issues with older versions of nodejs.
+  [Bug Fix] Apply server level log rotation setting to modsec audit log.
+  [Bug Fix] Address a few corner cases in HTTP/3 (lsquic).
+=== Build 1 ===
+  [Bug Fix] Addressed an HTTP/3 0-RTT packet validation issue.
+=== Build 0 ===
+  [New Feature] Add hCaptcha support for reCAPTCHA validation.
+  [Improvement] Add support for .mjs nodeJS application startup file.
+  [Bug Fix] Address a crash related to SecRemoteRules handling.
+  [Bug Fix] Address a rare corner case causing HTTP/3 responses to hang.
+===== Version 6.2 =====
+=== Build 7 ===
+  [Bug Fix] Address a crash related to SecRemoteRules handling.
+=== Build 6 ===
+  [Bug Fix] Address broken auto index script introduced in build 5.
+  [Bug Fix] Address a potential HTTP/3 CPU spinning issue.
+  [Bug Fix] Address a false positive in install script that reports a port is in use.
+=== Build 5 ===
+  [Bug Fix] Do not force override LSAPI_MAX_IDLE_CHILDREN if set explicitly.
+  [Bug Fix] Address PHP 8.2 warning in directory auto index script.
+  [Bug Fix] Address an issue in handling custom status code.
+  [Bug Fix] Increase rewrite engine PCRE match limit to avoid PCRE_ERROR_MATCHLIMIT.
+  [Tuning] Add dark mode for server generated error page and directory index page.
+=== Build 4 ===
+  [Bug Fix] Fix a rare corner case in HTTP/3.
+  [Bug Fix] Fix "RewriteOptions IngoreInherit"
+  [Bug Fix] enable suEXEC for PHP 8.3 by default.
+=== Build 3 ===
+  [Bug Fix] Fix no-abort for CGI script.
+  [Bug Fix] Fix Redirect 410 handling.
+  [Bug Fix] Fix python application with long vhost name.
+  [Bug Fix] Fix CPU spinning caused by HTTP/3 corner case.
+=== Build 2 ===
+  [Bug Fix] Fix HTTP/3 session resumption bug introduced in 6.2 Build 1.
+=== Build 1 ===
+  [Security] Disable HTTP/2 when detecting a rapid reset attack.
+  [Improvement] Override server level per client connection soft limit with vhost level limit.
+  [Tuning] Limit pipe logger buffer size to 1MB.
+  [Bug Fix] Fix RackRunner.rb bug introduced in 6.1.2 build 8.
+  [Bug Fix] Fix minor mod_security issues.
+=== Build 0 ===
+  [New Feature] Update HTTP/3 implementation to support QUICv2 protocol.
+  [New Feature] mod_security engine now has an option to use RE2 instead PCRE regex engine.
+  [New Feature] Add vhost level max request body length and max dynamic response length configurations.
+  [New Feature] Add vhost level dedicated PHP handler configuration option.
+  [New Feature] Add support for rewrite flags "BNP", "backrefnoplus", "BCTLS", and "BNE".
+  [Improvement] Improve reCAPTCHA custom error page handling to avoid expensive dynamic processing.
+  [Improvement] Add missing access log format following Apache spec.
+  [Improvement] Enhance Apache expression support with dynamic regular expression matching.
+  [Improvement] Apache expression support in RewriteCond.
+  [Improvement] Virtual host level reCAPTCHA trigger by concurrent connections.
+  [Security] More strict request header validation.
+  [Bug Fix] Fix a compatibility issue with Rack version >3.0 for Ruby applications.
+  [Bug Fix] Allow use of stdout/stderr as log file names.
+  [Bug Fix] Address large request header compatibility issue with PHP-FPM.
+  [Tuning] Add PHP 8.3 support.
+  [Tuning] Lift default virtual memory limit for external applications.
+  [Bug Fix] Minor bug fixes to cache engine, mod_security engine, and request handling.
+===== Version 6.1.2 =====
+=== Build 8 ===
+  [New Feature] Add support for rewrite flags "BNP", "backrefnoplus", "BCTLS", and "BNE".
+  [Bug Fix] Fix cp_switch_ws.sh switch back to Apache failure.
+  [Bug Fix] Fix a compatibility issue with Rack version >3.0 for Ruby applications.
+  [Bug Fix] Allow use of stdout/stderr as log file names.
+  [Bug Fix] Fix a mod_security engine Multi-thread race condition.
+=== Build 7 ===
+  [Bug Fix] Address a bug in expression parser introduced in build 5.
+=== Build 6 ===
+  [Bug Fix] Address a bug in RewriteCond expression parser.
+  [Bug Fix] Address a bug in SSI engine.
+=== Build 5 ===
+  [Improvement] Enhance Apache expression support with dynamic regular expression matching.
+  [Improvement] Apache expression support in RewriteCond.
+  [Improvement] Virtual host level reCAPTCHA trigger by concurrent connections.
+  [Bug Fix] Fix FreeBSD + ZFS crash due to unsupported posix_fallocate() syscall.
+  [Tuning] Add PHP 8.3 support.
+  [Tuning] Tweak graceful restart to avoid being killed by systemd during service restart.
+=== Build 4 ===
+  [Security] Properly handle multiple HOST headers.
+  [Tuning] Lift default virtual memory limit for external applications.
+  [Improvement] Add "wordpress_logged_in_*" session cookie detection.
+  [Bug Fix] Address two rare crashes relating to ESI handling.
+=== Build 3 ===
+  [Improvement] Improve reCAPTCHA custom error page handling to avoid expensive dynamic processing.
+  [Bug Fix] Address broken Plesk feature "deny access to the site".
+  [Bug Fix] Improve install script to now automatically install missing dependencies.
+=== Build 2 ===
+  [Security] Address request header smuggling over HTTP/2 and HTTP/3.
+  [Bug Fix] Address broken FastCGI POST for large request body, introduced in 6.1.2 build 1.
+=== Build 1 ===
+  [New Feature] Add vhost level max request body length and max dynamic response length configurations.
+  [New Feature] Add vhost level dedicated PHP handler configuration option.
+  [Improvement] Install necessary ruby-lsapi gem package for alt-ruby 3.1+.
+  [Bug Fix] Address large request header compatibility issue with PHP-FPM.
+  [Bug Fix] Address a false positive for per client soft limit blocking.
+=== Build 0 ===
+  [Improvement] Allow total header sizes > 64KB.
+  [Improvement] Add support for websocket upgrade using <LocationMatch> and ProxyPassMatch (used by Plesk).
+  [Improvement] Add support for Unix domain socket proxy target address (used by DirectAdmin).
+  [Bug Fix] Address a corner case in LSAPI 304 response handling.
+  [Bug Fix] Address unique ID duplication in mod_security audit log.
+  [Bug Fix] Address a corner case in mod_security request header matching.
+  [Bug Fix] Address a license key verification issue during server reboot.
+  [Bug Fix] Update ls-qpack to address a corner case.
+  [Bug Fix] Address a request header parser corner case for a look-alike header.
+  [Bug Fix] Address broken mailman support for Plesk
+  [Bug Fix] Address two corner cases in layer 4 proxy.
+  [Bug Fix] Address an issue with proxy forwarding to the Plesk admin panel.
+  [Tuning] Better handling of buggy HTTP/2 clients with poor flow control implementations.
+===== Version 6.1.1 =====
+=== Build 0 ===
+  [New Feature] Add SSL strict SNI mode option to fail SSL connections when there is no vhost level SSL certificate.
+  [New Feature] Add a vhost level AllowBlockedUrl option to allow blocked URL passthrough.
+  [Improvement] Add support for unix domain socket for redis dynamic vhost.
+  [Improvement] Update WebAdmin Console login to use BCRYPT password hash.
+  [Improvement] Add support for "Require local" configuration directive.
+  [Bug Fix] Avoid blocking on socket read for internal fetcher.
+  [Bug Fix] Address broken "RewriteOption inherit" corner case.
+  [Bug Fix] Address duplicate unique ID field in mod_security audit log.
+  [Bug Fix] Address a python application frequent restart issue.
+  [Bug Fix] Address a python application upload hang issue.
+  [Bug Fix] Fix SecRemoteRules certificate verification failure.
+  [Bug Fix] Fix broken sub-directory password protection configuration for Plesk WordPress toolkit.
+  [Bug Fix] Address an issue switching apache/lsws systemd unit file for Plesk.
+  [Bug Fix] Address an issue with Plesk watchdog monitoring httpd service.
 ===== Version 6.1 =====
-=== RC1 ===
+=== Build 6 ===
+  [Bug Fix] Adjust unix domain socket address length for PHP suEXEC handler.
+=== Build 5 ===
+  [Bug Fix] Address a python application upload hanging issue.
+  [Bug Fix] Fix SecRemoteRules certificate verification failure.
+  [Bug Fix] Fix broken sub-directory password protection configuration for Plesk WordPress toolkit.
+=== Build 4 ===
+  [Bug Fix] Address a crash when handling .htaccess updates.
+=== Build 3 ===
+  [Bug Fix] Address an issue switching apache/lsws systemd unit file for Plesk.
+  [Bug Fix] Address an issue with Plesk watchdog monitoring httpd service.
+=== Build 2 ===
+  [Improvement] ARM64 (aarch64) package is now available.
+  [Improvement] Update WebAdmin Console login to use BCRYPT password hash.
+  [Bug Fix] Update php3_mode and php4_mode for DirectAdmin panel in script cp_switch_lsws.sh.
+=== Build 1 ===
+  [Improvement] Add support for "Require local" configuration directive.
+  [Bug Fix] Avoid blocking on socket read for internal fetcher.
+  [Bug Fix] Address broken "RewriteOption inherit" corner case.
+  [Bug Fix] Update lsquic to v3.3.1 to address a corner case hang caused by flow control congestion.
+=== Build 0 ===
+  [New Feature] Add PROXY protocol support.
+  [New Feature] Add custom response status code support.
+  [New Feature] Apply OOMScoreAdjust for lsws service to avoid being OOM killed.
+  [New Feature] Trigger reCAPTCHA through mod_security engine via an environment variable.
+  [Improvement] Inherit .htaccess belonging to parent context.
+  [Improvement] Make SSI environment available to included CGIs/scripts.
+  [Improvement] Add conditional access logging using Expression.
+  [Improvement] Configurable reCAPTCHA timeout.
+  [Improvement] Add "DisableForwardedIpBan" Apache style configuration directive to avoid blocking IPs forwarded by front-end proxies.
+  [Improvement] Enhance 'disableCgiOverride' to cover options +ExecCGI and +Include.
+  [Improvement] Add Apache style configurations "LogKeepDays" and "LogCompressArchive".
+  [Improvement] Escape multiline STDERR messages.
+  [Improvement] Detect update failures in lsup.sh.
+  [Improvement] Improve WebAdmin Console realtime stats with a new JavaScript library.
+  [Bug Fix] Set "HOME" environment for CGI/External apps when possible.
+  [Bug Fix] Fix connection timeout false-positives for active HTTP3 connections.
+  [Bug Fix] Fix domain limited licensing for Plesk servers.
+  [Bug Fix] Update lsquic to v3.3.0 .
+  [Tuning] Disable TLSv1.1 by default.
+===== Version 6.1RC3 =====
+=== Build 0 ===
+  [New Feature] Add custom response status code support.
+  [New Feature] Apply OOMScoreAdjust for lsws service to avoid having the server killed when low on memory.
+  [Improvement] Escape multiline STDERR messages.
+  [Improvement] Add "DisableForwardedIpBan" Apache style configuration directive to avoid blocking IPs forwarded by front-end proxies.
+  [Bug Fix] Address a few corner cases in HTTP/3 implementation.
+  [Bug Fix] Address an HTTP/2 decoder bug.
+  [Bug Fix] Include all bug fixes applied to 6.0.12 stable releases.
+===== Version 6.1RC2 =====
+=== Build 0 ===
+  [New Feature] PROXY protocol support.
+  [Improvement] Make SSI environment available to included CGIs/scripts.
+  [Improvement] Enhance 'disableCgiOverride' to cover options +ExecCGI and +Include.
+  [Improvement] Better handling of content-type with charset.
+  [Improvement] Add "x-frame-options" header for reCAPTCHA page.
+  [Bug Fix] Inherit .htaccess belonging to parent context.
+  [Bug Fix] Address bad target URL with native proxy configuration for '/' context.
+  [Bug Fix] Avoid installing Ruby Rack 3.0 gem to avoid compatibility issues.
+  [Bug Fix] Avoid using IPv6 mapped IPv4 addresses for HTTP/3 connections.
+  [Bug Fix] Address memory leak in QUIC SHM.
+===== Version 6.1RC1 =====
+=== Build 1 ===
+  [New Feature] Add "LSPHP_ProcessGroup unmanaged" mode to support php-fpm like services for Apache vhost.
+  [Bug Fix] Address an HTTP/2 header value compliance corner case that caused broken curl HTTP/2 connections.
+  [Improvement] Add support for alt-python 3.10.
+  [Bug Fix] Address HTTP/3 corner cases with lsquic v3.1.4 update.
+=== Build 0 ===
   [New Feature] Trigger reCAPTCHA through mod_security engine via an environment variable.
   [Improvement] Add parent context .htaccess inheritance.
@@ Line 16: / Line 226: @@
 ===== Version 6.0.12 =====
+=== Build 13 ===
+  [Bug Fix] Detect and ignore truncated log file path for DirectAdmin.
+  [Bug Fix] Fix broken server switching script for cPanel + Ubuntu.
+  [Bug Fix] Do not count Plesk internal Virtual Hosts against license domain limit.
+  [Bug Fix] Fix broken connection timeout for HTTP/3 connections.
+=== Build 12 ===
+  [Bug Fix] Address default charset issue for static files. (Introduced in v6.0.12 build 4)
+  [Bug Fix] Address a mod_security corner case.
+=== Build 11 ===
+  [Improvement] Add support for PHP 8.2 handler auto-detection.
+  [Bug Fix] Address broken lowercase transformation for certain mod_security variables.
+=== Build 10 ===
+  [Bug Fix] Properly handle "%{local}p" access log format.
+  [Bug Fix] Handle white spaces when detecting existing header values.
+  [Bug Fix] Fix broken "Trusted" IP configuration in .htaccess.
+  [Improvement] Add "x-frame-options" header for reCAPTCHA page.
+  [Improvement] Make SSI environment available to included CGIs/scripts.
+  [Bug Fix] Address crash in parsing bad rewrite map data.
+  [Bug Fix] Address memory leak in QUIC SHM.
+=== Build 9 ===
+  [Bug Fix] Address a response header bug introduced in build 8 that causes errors serving from cached page.
+=== Build 8 ===
+  [Bug Fix] Address malformed HTTP/1.1 response header caused by header value modification operations introduced in build 7.
+  [Bug Fix] Address bad target URL with native proxy configuration for '/' context.
+  [Bug Fix] Avoid installing Ruby Rack 3.0 gem (compatibility issues).
+  [Bug Fix] Avoid using IPv6 mapped IPv4 addresses for HTTP/3 connections.
 === Build 7 ===
   [Bug Fix]  Address an HTTP/2 header value compliance corner case that caused broken curl HTTP/2 connections.
@@ Line 323: / Line 559: @@
   [Improvement] Revamp of SSL Multi-Cert support.
   [Bug Fix] All applicable bug fixes from 5.4.X releases.
-=== RC3 ===
+===== Version 6.0RC3 =====
+=== Build 0 ===
   [New Feature] Support external application configuration using domain name for target address.
   [New Feature] HTTP/3 draft 32 support.
@@ Line 331: / Line 569: @@
   [Improvement] Better support for various ModSecurity variables.
   [Improvement] Fix various HTTP/3 congestion control corner cases to maximize throughput.
-=== RC2 ===
+===== Version 6.0RC2 =====
+=== Build 0 ===
   [New Feature] ModSecurity scan response body support.
   [New Feature] HTTP/3 draft 31 support.
@@ Line 337: / Line 577: @@
   [Major Improvement] ModSecurity persistent collection SHM storage.
   [Major Improvement] Revamp of SSL Multi-Cert support.
-=== RC1 ===
+===== Version 6.0RC1 =====
+=== Build 0 ===
   [Major New Feature] Apache 2.4 conditional context <If> <Ifelse> <Else> support.
   [Major New Feature] Asynchronous mod_security engine.
@@ Line 905: / Line 1147: @@
   [New Feature] HTTPS certificate compression, reducing the size of HTTPS handshake exchange data.
   [Improvement] Improved HTTP/2 stream prioritization for a better user browsing experience.
-=== RC4 ===
+===== Version 5.4RC4 =====
+=== Build 0 ===
   [New Feature] Support for SO_REUSEPORT for multi-worker license.
   [New Feature] HTTPS/QUIC handshake offloading.
@@ Line 912: / Line 1156: @@
   [New Feature] Support for Google QUIC 046.
   [New Feature] Experimental IETF QUIC draft-20.
-=== RC3 ===
+===== Version 5.4RC3 =====
+=== Build 0 ===
   [Major New Feature] Dynamic Virtual Host configuration through REDIS backend.
   [Major Improvement] Greatly improved HTTP/2 performance -- up to 7x faster than previous implementations.
   [Bug fix] Improved QUIC engine performance and stability.
   [Bug fix] All bug fixes and enhancements on 5.3.x branch included.
-=== RC2 ===
+===== Version 5.4RC2 =====
+=== Build 0 ===
   [Major New Feature] Dynamic virtual hosting through rewrite rules.
   [Improvement] Improved HTTP/2 performance.
@@ Line 923: / Line 1171: @@
   [Bug fix] All applicable bug fixes from the 5.3 branch.
   [Bug fix] Fixed a few server crash bugs.
-=== RC1 ===
+===== Version 5.4RC1 =====
+=== Build 0 ===
   [New Feature] Recaptcha verification for DDoS attack mitigation.
   [New Feature] Support for Ruby/Python/Nodejs applications in native configuration.