The CVE-2025-12543 fix requires the existence of a Host header when HTTP 1.1 is used, so setting the require-host-http11 attribute to false can no longer be supported. So deprecate the attribute and ignore its setting, except to log a WARN if it is explicitly set to false. (The default is false but we won't warn if the default is used.)