Re: svn commit: r32075 - /dev/httpd/ /release/httpd/

[Daniel Ruggeri]

Hi, Cristophe;
   Thanks for the extra eye. Fortunately, this is expected behavior. 
Since the announcement goes out on some future date, the date is fixed 
up later in the announce.sh script.

--
Daniel Ruggeri

On 2019-01-21 13:22, Marion & Christophe JAILLET wrote:
Fixed in r32079.

I hope I did it right.

CJ

Le 21/01/2019 à 17:48, Marion et Christophe JAILLET a écrit :

 

s/September/January/

in the announcement (html and txt)

 

CJ

 

 

Message du 21/01/19 16:03
De : drugg...@apache.org
A : c...@httpd.apache.org
Copie à :
Objet : svn commit: r32075 - /dev/httpd/ /release/httpd/

Author: druggeri
Date: Mon Jan 21 15:03:33 2019
New Revision: 32075

Log:
Push 2.4.38 up to the release directory

Added:
release/httpd/CHANGES_2.4.38
- copied unchanged from r32074, dev/httpd/CHANGES_2.4.38
release/httpd/httpd-2.4.38.tar.bz2
- copied unchanged from r32074, dev/httpd/httpd-2.4.38.tar.bz2
release/httpd/httpd-2.4.38.tar.bz2.asc
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.bz2.asc
release/httpd/httpd-2.4.38.tar.bz2.md5
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.bz2.md5
release/httpd/httpd-2.4.38.tar.bz2.sha1
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.bz2.sha1
release/httpd/httpd-2.4.38.tar.bz2.sha256
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.bz2.sha256
release/httpd/httpd-2.4.38.tar.gz
- copied unchanged from r32074, dev/httpd/httpd-2.4.38.tar.gz
release/httpd/httpd-2.4.38.tar.gz.asc
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.gz.asc
release/httpd/httpd-2.4.38.tar.gz.md5
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.gz.md5
release/httpd/httpd-2.4.38.tar.gz.sha1
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.gz.sha1
release/httpd/httpd-2.4.38.tar.gz.sha256
- copied unchanged from r32074,
dev/httpd/httpd-2.4.38.tar.gz.sha256
Removed:
dev/httpd/CHANGES_2.4
dev/httpd/CHANGES_2.4.38
dev/httpd/httpd-2.4.38-deps.tar.bz2
dev/httpd/httpd-2.4.38-deps.tar.bz2.asc
dev/httpd/httpd-2.4.38-deps.tar.bz2.md5
dev/httpd/httpd-2.4.38-deps.tar.bz2.sha1
dev/httpd/httpd-2.4.38-deps.tar.bz2.sha256
dev/httpd/httpd-2.4.38-deps.tar.gz
dev/httpd/httpd-2.4.38-deps.tar.gz.asc
dev/httpd/httpd-2.4.38-deps.tar.gz.md5
dev/httpd/httpd-2.4.38-deps.tar.gz.sha1
dev/httpd/httpd-2.4.38-deps.tar.gz.sha256
dev/httpd/httpd-2.4.38.tar.bz2
dev/httpd/httpd-2.4.38.tar.bz2.asc
dev/httpd/httpd-2.4.38.tar.bz2.md5
dev/httpd/httpd-2.4.38.tar.bz2.sha1
dev/httpd/httpd-2.4.38.tar.bz2.sha256
dev/httpd/httpd-2.4.38.tar.gz
dev/httpd/httpd-2.4.38.tar.gz.asc
dev/httpd/httpd-2.4.38.tar.gz.md5
dev/httpd/httpd-2.4.38.tar.gz.sha1
dev/httpd/httpd-2.4.38.tar.gz.sha256
Modified:
release/httpd/Announcement2.4.html
release/httpd/Announcement2.4.txt
release/httpd/CHANGES_2.4

Modified: release/httpd/Announcement2.4.html



==============================================================================
--- release/httpd/Announcement2.4.html (original)
+++ release/httpd/Announcement2.4.html Mon Jan 21 15:03:33 2019
@@ -49,15 +49,15 @@

 


- Apache HTTP Server 2.4.37 Released
+ Apache HTTP Server 2.4.38 Released




- October 23, 2018
+ September 21, 2018




The Apache Software Foundation and the Apache HTTP Server
Project are
pleased to announce [1]
- the release of version 2.4.37 of the Apache
+ the release of version 2.4.38 of the Apache
HTTP Server ("Apache"). This version of Apache is our latest GA
release of the new generation 2.4.x branch of Apache HTTPD and
represents fifteen years of innovation by the project, and is
@@ -69,7 +69,7 @@
encourage users of all prior versions to upgrade.




- Apache HTTP Server 2.4.37 is available for download from:
+ Apache HTTP Server 2.4.38 is available for download from:


@@ -77,7 +77,7 @@




Please see the CHANGES_2.4 [2] file, linked from the download
page, for a
- full list of changes. A condensed list, CHANGES_2.4.37 [3]
includes only
+ full list of changes. A condensed list, CHANGES_2.4.38 [4]
includes only
those changes introduced since the prior 2.4 release. A summary
of all
of the security vulnerabilities addressed in this and earlier
releases
is available:

Modified: release/httpd/Announcement2.4.txt



==============================================================================
--- release/httpd/Announcement2.4.txt (original)
+++ release/httpd/Announcement2.4.txt Mon Jan 21 15:03:33 2019
@@ -1,9 +1,9 @@
- Apache HTTP Server 2.4.37 Released
+ Apache HTTP Server 2.4.38 Released

- October 23, 2018
+ September 21, 2018

The Apache Software Foundation and the Apache HTTP Server
Project
- are pleased to announce the release of version 2.4.37 of the
Apache
+ are pleased to announce the release of version 2.4.38 of the
Apache
HTTP Server ("Apache"). This version of Apache is our latest GA
release of the new generation 2.4.x branch of Apache HTTPD and
represents fifteen years of innovation by the project, and is
@@ -13,7 +13,7 @@
We consider this release to be the best version of Apache
available, and
encourage users of all prior versions to upgrade.

- Apache HTTP Server 2.4.37 is available for download from:
+ Apache HTTP Server 2.4.38 is available for download from:

http://httpd.apache.org/download.cgi [5]

@@ -24,7 +24,7 @@
http://httpd.apache.org/docs/trunk/new_features_2_4.html [6]

Please see the CHANGES_2.4 file, linked from the download page,
for a
- full list of changes. A condensed list, CHANGES_2.4.37
includes only
+ full list of changes. A condensed list, CHANGES_2.4.38
includes only
those changes introduced since the prior 2.4 release. A summary
of all
of the security vulnerabilities addressed in this and earlier
releases
is available:

Modified: release/httpd/CHANGES_2.4



==============================================================================
--- release/httpd/CHANGES_2.4 (original)
+++ release/httpd/CHANGES_2.4 Mon Jan 21 15:03:33 2019
@@ -1,4 +1,53 @@
-*- coding: utf-8 -*-
+Changes with Apache 2.4.38
+
+ *) mod_ssl: Clear retry flag before aborting client-initiated
renegotiation.
+ PR 63052 [Joe Orton]
+
+ *) mod_negotiation: Treat LanguagePriority as
case-insensitive to match
+ AddLanguage behavior and HTTP specification. PR 39730
[Christophe Jaillet]
+
+ *) mod_md: incorrect behaviour when synchronizing ongoing
ACME challenges
+ have been fixed. [Michael Kaufmann, Stefan Eissing]
+
+ *) mod_setenvif: We can have expressions that become true if
a regex pattern
+ in the expression does NOT match. In this case val is NULL
+ and we should just set the value for the environment variable

+ like in the pattern case. [Ruediger Pluem]
+
+ *) mod_session: Always decode session attributes early. [Hank
Ibell]
+
+ *) core: Incorrect values for environment variables are
substituted when
+ multiple environment variables are specified in a directive.
[Hank Ibell]
+
+ *) mod_rewrite: Only create the global mutex used by
"RewriteMap prg:" when
+ this type of map is present in the configuration. PR62311.
+ [Hank Ibell ]
+
+ *) mod_dav: Fix invalid Location header when a resource is
created by
+ passing an absolute URI on the request line [Jim Jagielski]
+
+ *) mod_session_cookie: avoid duplicate Set-Cookie header in
the response.
+ [Emmanuel Dreyfus <m...@netbsd.org>, Luca Toscano]
+
+ *) mod_ssl: clear *SSL errors before loading certificates and
checking
+ afterwards. Otherwise errors are reported when other SSL
using modules
+ are in play. Fixes PR 62880. [Michael Kaufmann]
+
+ *) mod_ssl: Fix the error code returned in an error path of
+ 'ssl_io_filter_handshake()'. This messes-up error handling
performed
+ in 'ssl_io_filter_error()' [Yann Ylavic]
+
+ *) mod_ssl: Fix $HTTPS definition for "SSLEngine optional"
case, and fix
+ authz provider so "Require ssl" works correctly in HTTP/2.
+ PR 61519, 62654. [Joe Orton, Stefan Eissing]
+
+ *) mod_proxy: If ProxyPassReverse is used for reverse mapping
of relative
+ redirects, subsequent ProxyPassReverse statements, whether
they are
+ relative or absolute, may fail. PR 60408. [Peter Haworth ]
+
+ *) mod_lua: Now marked as a stable module
[https://s.apache.org/Xnh1 [7]]
+
Changes with Apache 2.4.37

*) mod_ssl: Fix HTTP/2 failures when using OpenSSL 1.1.1.
[Rainer Jung]
@@ -19,12 +68,17 @@ Changes with Apache 2.4.36
*) mod_proxy_scgi, mod_proxy_uwsgi: improve error handling when
sending the
body of the response. [Jim Jagielski]

+ *) mpm_event: Stop issuing AH00484 "server reached
MaxRequestWorkers..." when
+ there are still idle threads available. When there are less
idle threads than
+ MinSpareThreads, issue new one-time message AH10159. Matches
worker MPM.
+ [Eric Covener]
+
*) mod_http2: adding defensive code for stream EOS handling, in
case the request handler
missed to signal it the normal way (eos buckets). Addresses
github issues
https://github.com/icing/mod_h2/issues/164 [8],
https://github.com/icing/mod_h2/issues/167 [9]
and https://github.com/icing/mod_h2/issues/170 [10]. [Stefan
Eissing]

- *) ab: Add client certificate support. [Graham Leggett]
+ *) ab: Add client certificate support. PR 55774. [Graham
Leggett]

*) ab: Disable printing temp key for OpenSSL before
version 1.0.2. SSL_get_server_tmp_key is not available





Links:
------
[1] https://www.apache.org/dist/httpd/Announcement2.4.html
[2] http://webmail.primary.net/CHANGES_2.4
[3] http://webmail.primary.net/CHANGES_2.4.37
[4] http://webmail.primary.net/CHANGES_2.4.38
[5] http://httpd.apache.org/download.cgi
[6] http://httpd.apache.org/docs/trunk/new_features_2_4.html
[7] https://s.apache.org/Xnh1
[8] https://github.com/icing/mod_h2/issues/164
[9] https://github.com/icing/mod_h2/issues/167
[10] https://github.com/icing/mod_h2/issues/170