Hi, all; As a result of testing and further analysis of this release, I am calling this release dead on the vine and shall not pursue publishing it. We have -1 votes based on the recently discovered OpenSSL 1.1.1 behavior change [1].
Although this tag shall not become a release, I'd like to thank all testers and those who have put effort into getting us to this point as well as catching an error that could impact our users. I consider this a victory :-) I will follow up with another proposal to T&R when we resolve the issue. Cheers! [1] https://lists.apache.org/thread.html/cff9db75d9e281f116382f090b3079dedc2c9842192d213ae4948e15@%3Cdev.httpd.apache.org%3E -- Daniel Ruggeri On 2018/10/10 19:18:45, Daniel Ruggeri <[email protected]> wrote: > Hi, all; > Please find below the proposed release tarball and signatures: > https://dist.apache.org/repos/dist/dev/httpd/ > > I would like to call a VOTE over the next few days to release this > candidate tarball as 2.4.36: > [ ] +1: It's not just good, it's good enough! > [ ] +0: Let's have a talk. > [ ] -1: There's trouble in paradise. Here's what's wrong. > > The computed digests of the tarball up for vote are: > sha1: e40e7a879b84df860215b8a80f2a535534a1c4b4 *httpd-2.4.36.tar.gz > sha256: ef788fb7c814acb2506a8b758a1a3f91f368f97bd4e6db16e98001f468e8e288 > *httpd-2.4.36.tar.gz > > -- > Daniel Ruggeri >
