Hello community, here is the log from the commit of package apache2 for openSUSE:Factory checked in at 2019-04-04 14:12:08 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/apache2 (Old) and /work/SRC/openSUSE:Factory/.apache2.new.3908 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "apache2" Thu Apr 4 14:12:08 2019 rev:155 rq:690621 version:2.4.39 Changes: -------- --- /work/SRC/openSUSE:Factory/apache2/apache2.changes 2019-03-01 20:26:24.678054918 +0100 +++ /work/SRC/openSUSE:Factory/.apache2.new.3908/apache2.changes 2019-04-04 14:12:11.701292827 +0200 @@ -1,0 +2,86 @@ +Tue Apr 2 10:26:21 UTC 2019 - [email protected] + +- version update to 2.4.39 + * mod_proxy/ssl: Cleanup per-request SSL configuration anytime a + backend connection is recycled/reused to avoid a possible crash + with some SSLProxy configurations in <Location> or <Proxy> + context. PR 63256. [Yann Ylavic] + * mod_ssl: Correctly restore SSL verify state after TLSv1.3 PHA + failure. [Michael Kaufmann <mail michael-kaufmann.ch>] + * mod_log_config: Support %{c}h for conn-hostname, %h for + useragent_host PR 55348 + * mod_socache_redis: Support for Redis as socache storage + provider. + * core: new configuration option 'MergeSlashes on|off' that + controls handling of multiple, consecutive slash ('/') + characters in the path component of the request URL. [Eric + Covener] + * mod_http2: when SSL renegotiation is inhibited and a 403 + ErrorDocument is in play, the proper HTTP/2 stream reset did + not trigger with H2_ERR_HTTP_1_1_REQUIRED. Fixed. [Michael + Kaufmann] + * mod_http2: new configuration directive: `H2Padding numbits` to + control padding of HTTP/2 payload frames. 'numbits' is a number + from 0-8, controlling the range of padding bytes added to a + frame. The actual number added is chosen randomly per frame. + This applies to HEADERS, DATA and PUSH_PROMISE frames equally. + The default continues to be 0, e.g. no padding. [Stefan + Eissing] + * mod_http2: ripping out all the h2_req_engine internal features + now that mod_proxy_http2 has no more need for it. Optional + functions are still declared but no longer implemented. While + previous mod_proxy_http2 will work with this, it is + recommeneded to run the matching versions of both modules. + [Stefan Eissing] + * mod_proxy_http2: changed mod_proxy_http2 implementation and + fixed several bugs which resolve PR63170. The proxy module does + now a single h2 request on the (reused) connection and returns. + [Stefan Eissing] + * mod_http2/mod_proxy_http2: proxy_http2 checks correct master + connection aborted status to trigger immediate shutdown of + backend connections. This is now always signalled by mod_http2 + when the the session is being released. proxy_http2 now only + sends a PING frame to the backend when there is not already one + in flight. [Stefan Eissing] + * mod_proxy_http2: fixed an issue where a proxy_http2 handler + entered an infinite loop when encountering certain errors on + the backend connection. See + <https://bz.apache.org/bugzilla/show_bug.cgi?id=63170>. [Stefan + Eissing] + * mod_http2: Configuration directives H2Push and H2Upgrade can + now be specified per Location/Directory, e.g. disabling PUSH + for a specific set of resources. [Stefan Eissing] + * mod_http2: HEAD requests to some module such as mod_cgid caused + the stream to terminate improperly and cause a HTTP/2 + PROTOCOL_ERROR. Fixes + <https://github.com/icing/mod_h2/issues/167>. [Michael + Kaufmann] + * http: Fix possible empty response with mod_ratelimit for HEAD + requests. PR 63192. [Yann Ylavic] + * mod_cache_socache: Avoid reallocations and be safe with + outgoing data lifetime. [Yann Ylavic] + * MPMs unix: bind the bucket number of each child to its slot + number, for a more efficient per bucket maintenance. [Yann + Ylavic] + * mod_auth_digest: Fix a race condition. Authentication with + valid credentials could be refused in case of concurrent + accesses from different users. PR 63124. [Simon Kappel + <simon.kappel axis.com>] + * mod_http2: enable re-use of slave connections again. Fixed + slave connection keepalives counter. [Stefan Eissing] + * mod_reqtimeout: Allow to configure (TLS-)handshake timeouts. PR + 61310. [Yann Ylavic] + * mod_proxy_wstunnel: Fix websocket proxy over UDS. PR 62932 + <pavel dcmsys.com> + * mod_ssl: Don't unset FIPS mode on restart unless it's forced by + configuration (SSLFIPS on) and not active by default in + OpenSSL. PR 63136. [Yann Ylavic] +- deleted patches + - apache2-mod_http2-issue-167.patch (upstreamed) + +------------------------------------------------------------------- +Mon Mar 18 21:44:17 UTC 2019 - Jan Engelhardt <[email protected]> + +- Reduce scriptlets' hard dependency on systemd. + +------------------------------------------------------------------- Old: ---- apache2-mod_http2-issue-167.patch httpd-2.4.38.tar.bz2 httpd-2.4.38.tar.bz2.asc New: ---- httpd-2.4.39.tar.bz2 httpd-2.4.39.tar.bz2.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ apache2.spec ++++++ --- /var/tmp/diff_new_pack.U6tAcQ/_old 2019-04-04 14:12:21.181297380 +0200 +++ /var/tmp/diff_new_pack.U6tAcQ/_new 2019-04-04 14:12:21.185297382 +0200 @@ -65,7 +65,7 @@ %define build_http2 0 %endif Name: apache2 -Version: 2.4.38 +Version: 2.4.39 Release: 0 Summary: The Apache Web Server Version 2.4 License: Apache-2.0 @@ -145,8 +145,6 @@ # PATCH-FEATURE-UPSTREAM [email protected] -- backport of HttpContentLengthHeadZero and HttpExpectStrict Patch115: httpd-2.4.x-fate317766-config-control-two-protocol-options.diff Patch116: deprecated-scripts-arch.patch -# fix https://github.com/icing/mod_h2/issues/167 [bsc#1125965] -Patch117: apache2-mod_http2-issue-167.patch BuildRequires: apache-rpm-macros-control BuildRequires: apr-util-devel #Since 2.4.7 the event MPM requires apr 1.5.0 or later. @@ -205,15 +203,18 @@ Obsoletes: apache < 1.3.29 Obsoletes: mod_ssl < 2.8.16 BuildRoot: %{_tmppath}/%{name}-%{version}-build -%{?systemd_requires} %if 0%{?suse_version} >= 1210 BuildRequires: pkgconfig BuildRequires: pkgconfig(libsystemd) BuildRequires: pkgconfig(systemd) %endif +%if 0%{?suse_version} >= 1310 +BuildRequires: systemd-rpm-macros +%endif %if 0%{?build_http2} BuildRequires: pkgconfig(libnghttp2) >= 1.2.1 %endif +%{?systemd_ordering} %description This version of httpd is a major release of the 2.4 stable branch, @@ -336,7 +337,6 @@ %if 0%{?suse_version} == 1110 %patch116 -p1 %endif -%patch117 -p1 cat %{_sourcedir}/SUSE-NOTICE >> NOTICE # install READMEs a=$(basename %{SOURCE22}) @@ -993,6 +993,7 @@ %{_libdir}/%{name}-prefork/mod_slotmem_shm.so %{_libdir}/%{name}-prefork/mod_socache_dbm.so %{_libdir}/%{name}-prefork/mod_socache_memcache.so +%{_libdir}/%{name}-prefork/mod_socache_redis.so %{_libdir}/%{name}-prefork/mod_socache_shmcb.so %{_libdir}/%{name}-prefork/mod_speling.so %{_libdir}/%{name}-prefork/mod_ssl.so @@ -1120,6 +1121,7 @@ %{_libdir}/%{name}-worker/mod_slotmem_shm.so %{_libdir}/%{name}-worker/mod_socache_dbm.so %{_libdir}/%{name}-worker/mod_socache_memcache.so +%{_libdir}/%{name}-worker/mod_socache_redis.so %{_libdir}/%{name}-worker/mod_socache_shmcb.so %{_libdir}/%{name}-worker/mod_speling.so %{_libdir}/%{name}-worker/mod_ssl.so @@ -1247,6 +1249,7 @@ %{_libdir}/%{name}-event/mod_slotmem_shm.so %{_libdir}/%{name}-event/mod_socache_dbm.so %{_libdir}/%{name}-event/mod_socache_memcache.so +%{_libdir}/%{name}-event/mod_socache_redis.so %{_libdir}/%{name}-event/mod_socache_shmcb.so %{_libdir}/%{name}-event/mod_speling.so %{_libdir}/%{name}-event/mod_ssl.so ++++++ httpd-2.4.38.tar.bz2 -> httpd-2.4.39.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/apache2/httpd-2.4.38.tar.bz2 /work/SRC/openSUSE:Factory/.apache2.new.3908/httpd-2.4.39.tar.bz2 differ: char 11, line 1
