X-Git-Url: https://granicus.if.org/sourcecode?a=blobdiff_plain;f=STATUS;h=0c29705066a5be80ef2fad4648fd7e9e9f504ec4;hb=b357ff511fcd2bde5ac542d0c1277c85531987e2;hp=6088a5a1476a9756cc0d17ea643cbe029ff69749;hpb=74a87e85165ca72597172ad1504a162419db71ac;p=apache

diff --git a/STATUS b/STATUS
index 6088a5a147..0c29705066 100644
--- a/STATUS
+++ b/STATUS
@@ -34,8 +34,9 @@ Release history:
     [NOTE that x.{odd}.z versions are strictly Alpha/Beta releases,
           while x.{even}.z versions are Stable/GA releases.]
 
-    2.4.25  : In development.
-    2.4.24  : Tagged on December 16, 2016.
+    2.4.26  : In development.
+    2.4.25  : Tagged on December 16, 2016. Released on December 21, 2016.
+    2.4.24  : Tagged on December 16, 2016, not released.
     2.4.23  : Tagged on June 30, 2016. Released on July 05, 2016.
     2.4.22  : Tagged on June 20, 2016, not released.
     2.4.21  : Tagged on June 16, 2016, not released.
@@ -114,11 +115,26 @@ CURRENT RELEASE NOTES:
 
 RELEASE SHOWSTOPPERS:
 
+  *) PR 60576: 2.4.21 broke PHP-FPM with the patch to strip the bogus "proxy://"
+     prefix from SCRIPT_FILENAME. We need to revert to the previous behavior
+     ASAP to avoid any further hurdles with FCGI implementations while we figure
+     this out.
+
+  *) PR 60071: Child httpd processes crash with Segmentation fault
+     trunk patch: http://svn.apache.org/r1779573
+                  http://svn.apache.org/r1779574
+                  http://svn.apache.org/r1779623
+     2.4.x patch: trunk works
+     +1: jim
+
+  *) PR60458: Rip out this regression or fix (TBD)
 
 PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
   [ start all new proposals below, under PATCHES PROPOSED. ]
 
 
+
+
 PATCHES PROPOSED TO BACKPORT FROM TRUNK:
   [ New proposals should be added at the end of the list ]
 
@@ -131,7 +147,8 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
                   http://svn.apache.org/r1740998
                   http://svn.apache.org/r1742697
                   http://svn.apache.org/r1756976
-     2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-r1740928_and_co.patch
+                  http://svn.apache.org/r1781313
+     2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-r1740928_and_co-v3.patch
      +1: ylavic
 
   *) event: close a race condition where we might re-enable listeners while they
@@ -140,28 +157,54 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
      2.4.x patch: trunk works
      +1: ylavic, jim
 
-  *) mod_socache_memcache: Use correct format pattern, "%lu" is wrong for
-     apr_uint64_t on some platforms.
-     Followup to r1649491 (trunk) resp. r1774016 (2.4.x).
-     trunk patch: http://svn.apache.org/r1774602
-     2.4.x patch: trunk works
-     +1: rjung, jim
+  *) mod_proxy_fcgi: Return HTTP 504 rather than 503 in case of proxy timeout.
+     trunk patch: http://svn.apache.org/r1775858
+     2.4 patch: trunk works (modulo CHANGES)
+     +1: elukey
 
-  *) mod_socache_memcache: Add ../generators to include path for Windows
-     build. It now needs mod_status.h.
-     Untested but exactly analogous to what works for
-     mod_socache_shmcb and others.
-     trunk patch: http://svn.apache.org/r1774609
-     2.4.x patch: trunk works
-     +1: rjung, jim
+  *) mod_remoteip: Add PROXY protocol support
+     trunk patch: http://svn.apache.org/r1776575
+                  http://svn.apache.org/r1776578 (doc fix)
+                  http://svn.apache.org/r1776627 (shortened name + doc fix)
+                  http://svn.apache.org/r1776674 (attribution moved to CHANGES)
+                  http://svn.apache.org/r1776740 (attribution updated in mod_remotip.c)
+     2.4 patch (includes CHANGES):
+                  http://people.apache.org/~druggeri/patches/RemoteIPProxyProtocol.2.4.x.patch
+     +1: druggeri, jim
+     Â±0: jorton, not reviewed but please include r1781030 too
+
+  *) mod_brotli: Backport of mod_brotli filter
+     trunk patch: http://svn.apache.org/r1761714
+                  http://svn.apache.org/r1762512
+                  http://svn.apache.org/r1762515
+                  http://svn.apache.org/r1771791
+                  http://svn.apache.org/r1779077
+     2.4.x patch: http://home.apache.org/~jim/patches/brotli-2.4.patch
+     +1: jim, jorton,
+
+  *) mod_auth_digest: Use anonymous shm by default, fall back on name-based
+     trunk patch: http://svn.apache.org/r1684636
+     2.4.x patch: trunk works (needs CHANGES, ref PR 54622)
+     +1: jorton, ylavic
+
+  *) mod_ssl: work around leaks on (graceful) restart.
+     trunk patch: http://svn.apache.org/r1781187
+                  http://svn.apache.org/r1781190
+                  http://svn.apache.org/r1781312
+     2.4.x patch: http://home.apache.org/~ylavic/patches/httpd-2.4.x-mod_ssl-restart_leaks-v2.patch
+     +1: ylavic
 
-  *) APR_HAVE_foo is checked via #if, not #ifdef (since it should always be
-     defined, to either 0 or 1).
-     This fixes a compile error on Windows introduced by r1702948.
-     as well as straightens up two long-time glitches.
-     trunk patch: http://svn.apache.org/r1706595
-     2.4.x patch: trunk works
-     +1: rjung
+  *) mod_proxy_hcheck: Ensure thread-safety when concurrent healthchecks are
+     in use (ProxyHCTPsize > 0).  PR 60071.
+     trunk patch: http://svn.apache.org/r1779573
+     2.4.x patch: trunk works (modulo CHANGES)
+     +1: ylavic
+
+  *) mod_proxy_hcheck: Don't validate timed out responses.
+     trunk patch: http://svn.apache.org/r1779574
+                  http://svn.apache.org/r1779623
+     2.4.x patch: trunk works *after r1779573 above* (modulo CHANGES)
+     +1: ylavic
 
 
 PATCHES/ISSUES THAT ARE BEING WORKED
@@ -255,15 +298,26 @@ PATCHES/ISSUES THAT ARE BEING WORKED
          (& also, making the structure change with apr-util version
          means it breaks binary compat across an apr-util upgrade?)
 
-  * mod_auth_digest: Reduce severity from NOTICE to DEBUG this 
-    once-per-restart msg (I guess the concern was that the RNG
-    could block after this message)
-
-      AH01757: generating secret for digest authentication ...
+   * Support PCRE2 (10.x) in place of PCRE (8.x).
+     Submitted by: wrowe, Petr Pisar [ppisar redhat.com]
+     trunk patches:
+         http://svn.apache.org/r1773454
+         http://svn.apache.org/r1773741
+         http://svn.apache.org/r1773742
+         http://svn.apache.org/r1773839
+         http://svn.apache.org/r1773870
+         http://svn.apache.org/r1773882
+     wrowe notes that the current code is too inefficient, owing to the fact
+     that the ovector is a required allocation and is no longer allocated on
+     the stack, by design. The correct fix is an apr userdata allocation on
+     the appropriate pool, which would be thread-safe, but the actual API of
+     ap_regexec[_len]() offers us no pool. We cannot associate that pool with
+     the ap_regex_t, because a single regex may be used by many threads in
+     parallel and is not thread-safe beyond initialization.
+     So the only fix allowing us to use PCRE 10 in httpd 2.4 would be to write
+     this as a thread safe storage buffer for the majority of cases (<10 $args)
+     and we don't have a portable tls mechanism to do so.
 
-    trunk patch: This was fixed in trunk as a trivial part of http://svn.apache.org/r1492395
-    2.4.x patch: Just change the loglevel to DEBUG.
-    +1 covener
 
 PATCHES/ISSUES THAT ARE STALLED