[NOTE that x.{odd}.z versions are strictly Alpha/Beta releases,
while x.{even}.z versions are Stable/GA releases.]
- 2.4.24 : In development.
+ 2.4.26 : In development.
+ 2.4.25 : Tagged on December 16, 2016. Released on December 21, 2016.
+ 2.4.24 : Tagged on December 16, 2016, not released.
2.4.23 : Tagged on June 30, 2016. Released on July 05, 2016.
2.4.22 : Tagged on June 20, 2016, not released.
2.4.21 : Tagged on June 16, 2016, not released.
RELEASE SHOWSTOPPERS:
+ *) PR 60576: 2.4.21 broke PHP-FPM with the patch to strip the bogus "proxy://"
+ prefix from SCRIPT_FILENAME. We need to revert to the previous behavior
+ ASAP to avoid any further hurdles with FCGI implementations while we figure
+ this out.
+
+ *) PR 60071: Child httpd processes crash with Segmentation fault
+ trunk patch: http://svn.apache.org/r1779573
+ http://svn.apache.org/r1779574
+ http://svn.apache.org/r1779623
+ 2.4.x patch: trunk works
+ +1: jim
+
+ *) PR60458: Rip out this regression or fix (TBD)
PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
[ start all new proposals below, under PATCHES PROPOSED. ]
- *) Propose we apr_pstrdup constant r->protocol assignments, and always fail
- entirely invalid protocols (expecting these are part two of a URL with
- embedded raw SP characters), without considering 'strict'-ness.
- Backports: r1773159 through merge branch commit r1773161
- Trunk patch:
- https://svn.apache.org/r1773159
- 2.4.x patch:
- https://svn.apache.org/r1773161
- +1: wrowe, jim, ylavic
-
- *) With oddball whitespace now disallowed, strictness makes no difference
- in the two cases of field content handling. Noted by rpluem.
- Backports: r1773162 through merge branch commit r1773163
- Trunk patch:
- https://svn.apache.org/r1773162
- 2.4.x patch:
- https://svn.apache.org/r1773163
- +1: wrowe, jim, ylavic
-
- *) core: Drop Content-Length header and message-body from HTTP 204 responses.
- Trunk patch: http://svn.apache.org/r1773346
- 2.4.x patch: trunk works modulo CHANGES
- +1: elukey, wrowe, ylavic
+
PATCHES PROPOSED TO BACKPORT FROM TRUNK:
http://svn.apache.org/r1740998
http://svn.apache.org/r1742697
http://svn.apache.org/r1756976
- 2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-r1740928_and_co.patch
+ http://svn.apache.org/r1781313
+ 2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-r1740928_and_co-v3.patch
+1: ylavic
- *) mod_socache_memcache: Provide memcache STATs to mod_status
- trunk patch: http://svn.apache.org/r1768245
- trunk patch: http://svn.apache.org/r1770828
+ *) event: close a race condition where we might re-enable listeners while they
+ are already or about to be closed.
+ trunk patch: http://svn.apache.org/r1774541
2.4.x patch: trunk works
- +1: jim
+ +1: ylavic, jim
- *) mod_ratelimit: Allow for initial burst of data before we start
- throttling: PR 60145
- trunk patches:
- https://svn.apache.org/r1770951
- 2.4.x patch: trunk works modulo CHANGES and next-number
- +1: jim, ylavic
- jailletc36: compatibility note missing in the XML file
- jim: Will address during commit
-
- *) Fix potential looping in new check_headers() due to new pattern of
- ap_die() from http header filter. Also, remove the bad headers explicitly.
- Trunk patch: https://svn.apache.org/r1773293
- 2.4.x patch: trunk works
- +1: covener, jim
- -1: wrowe
- covener: This is not ideal but the looping/OOM is bad.
- jim: with the understanding that more work post release
- wrowe: *IIUC* If we are transmitting the discarded body to the client,
- and switching the code to 500, this isn't really a salvagable
- resolution. Two alternatives suggested to the list a few days ago.
- ylavic: how about r1773761?
+ *) mod_proxy_fcgi: Return HTTP 504 rather than 503 in case of proxy timeout.
+ trunk patch: http://svn.apache.org/r1775858
+ 2.4 patch: trunk works (modulo CHANGES)
+ +1: elukey
+
+ *) mod_remoteip: Add PROXY protocol support
+ trunk patch: http://svn.apache.org/r1776575
+ http://svn.apache.org/r1776578 (doc fix)
+ http://svn.apache.org/r1776627 (shortened name + doc fix)
+ http://svn.apache.org/r1776674 (attribution moved to CHANGES)
+ http://svn.apache.org/r1776740 (attribution updated in mod_remotip.c)
+ 2.4 patch (includes CHANGES):
+ http://people.apache.org/~druggeri/patches/RemoteIPProxyProtocol.2.4.x.patch
+ +1: druggeri, jim
+ ±0: jorton, not reviewed but please include r1781030 too
+
+ *) mod_brotli: Backport of mod_brotli filter
+ trunk patch: http://svn.apache.org/r1761714
+ http://svn.apache.org/r1762512
+ http://svn.apache.org/r1762515
+ http://svn.apache.org/r1771791
+ http://svn.apache.org/r1779077
+ 2.4.x patch: http://home.apache.org/~jim/patches/brotli-2.4.patch
+ +1: jim, jorton,
+
+ *) mod_auth_digest: Use anonymous shm by default, fall back on name-based
+ trunk patch: http://svn.apache.org/r1684636
+ 2.4.x patch: trunk works (needs CHANGES, ref PR 54622)
+ +1: jorton, ylavic
+
+ *) mod_ssl: work around leaks on (graceful) restart.
+ trunk patch: http://svn.apache.org/r1781187
+ http://svn.apache.org/r1781190
+ http://svn.apache.org/r1781312
+ 2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-mod_ssl-restart_leaks-v2.patch
+ +1: ylavic
+
+ *) mod_proxy_hcheck: Ensure thread-safety when concurrent healthchecks are
+ in use (ProxyHCTPsize > 0). PR 60071.
+ trunk patch: http://svn.apache.org/r1779573
+ 2.4.x patch: trunk works (modulo CHANGES)
+ +1: ylavic
+
+ *) mod_proxy_hcheck: Don't validate timed out responses.
+ trunk patch: http://svn.apache.org/r1779574
+ http://svn.apache.org/r1779623
+ 2.4.x patch: trunk works *after r1779573 above* (modulo CHANGES)
+ +1: ylavic
PATCHES/ISSUES THAT ARE BEING WORKED
(& also, making the structure change with apr-util version
means it breaks binary compat across an apr-util upgrade?)
- * mod_auth_digest: Reduce severity from NOTICE to DEBUG this
- once-per-restart msg (I guess the concern was that the RNG
- could block after this message)
-
- AH01757: generating secret for digest authentication ...
+ * Support PCRE2 (10.x) in place of PCRE (8.x).
+ Submitted by: wrowe, Petr Pisar [ppisar redhat.com]
+ trunk patches:
+ http://svn.apache.org/r1773454
+ http://svn.apache.org/r1773741
+ http://svn.apache.org/r1773742
+ http://svn.apache.org/r1773839
+ http://svn.apache.org/r1773870
+ http://svn.apache.org/r1773882
+ wrowe notes that the current code is too inefficient, owing to the fact
+ that the ovector is a required allocation and is no longer allocated on
+ the stack, by design. The correct fix is an apr userdata allocation on
+ the appropriate pool, which would be thread-safe, but the actual API of
+ ap_regexec[_len]() offers us no pool. We cannot associate that pool with
+ the ap_regex_t, because a single regex may be used by many threads in
+ parallel and is not thread-safe beyond initialization.
+ So the only fix allowing us to use PCRE 10 in httpd 2.4 would be to write
+ this as a thread safe storage buffer for the majority of cases (<10 $args)
+ and we don't have a portable tls mechanism to do so.
- trunk patch: This was fixed in trunk as a trivial part of http://svn.apache.org/r1492395
- 2.4.x patch: Just change the loglevel to DEBUG.
- +1 covener
PATCHES/ISSUES THAT ARE STALLED
projects / apache / blobdiff