В репозиторий добавлен Apache httpd 2.4.37 с поддержкой сжатия brotli от Google, http2 для Red Hat Enterprise Linux и CentOS. Mod_ssl собран статически с OpenSSL 1.1.1. Ссылки:
Заметим, что httpd 2.4.37 уже поддерживает TLS 1.3 при сборке с OpenSSL 1.1.1. Все новые шифры включены и работают.
TLS 1.3 final на сегодня работает только в Google Chrome 70 и Mozilla Firefox 63.
Для работы с SELinux установите следующий boolean:
setsebool -P httpd_execmem=1
Модуль brotli уже включён в базовый RPM. Всё, что нужно — настроить фильтр
AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/javascript
Helo..
I dont khow this is the correct place or not, but this is about php too, exactly php_curl running in latest apache an php. And I get the rpm from codeIT.
environment: – Centos 7 – apache2.4.35 – PHP7.2.11 – curl7.61.1
this is my link problem: https://stackoverflow.com/questions/52921617/linux-apache2-4-35-php7-2-curl-does-not-execute-in-text-result-but-in-html-does
if the response of the request is html, curl_exec show on html output, but if it is plaintext it does not print anything.
I was try run from php cli work well and from XAMPP for linux with any browser run well too (in the same environment). I found difference in phpinfo (additional dotini files) there is “php-zts” but in cli just “php”.
may be you can help or recomendation to whom.
I online in freenode ##php with nickname: alfin
Thanks a lot
-alfin-
Answered at stackoverflow, can be SELinux issue.
Since I updated from 2.4.34 to 2.4.35 & 37, my mod_write rules no longer work. I used one to redirect non-HTTPS requests to HTTPS, and it’s simply broken:
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
Not sure why. Bug?
Weird issue with PHP session_save_path with 2.4.37 and PHP 7.1.25.
Intermittently the session_save_path is empty, even though it’s defined in conf.d/php.conf
Has anyone else encountered the issue?
I also see the occasional:
[Fri Jan 11 09:39:42.273505 2019] [core:notice] [pid 326:tid 139768943454400] AH00052: child pid 25208 exit signal Segmentation fault (11)
I’m using PHP 7.1.25 from Webtatic, which used to work perfectly with Apache from CentOS 7.
Hi,
Looks like thread safety issue in PHP.
Please check that you are using event MPM and ZTS php version. Some bugs were fixed in php 7.2.
Please also note that php-fpm (running php as separate server) is recommended way to be used with new Apache versions.
Thanks for the pointers, I’ll look into it. Just finished switching from 7.1 to 7.2 on my test machine. 🙂
Just a heads up, switching from php71w to php72w seems to have fixed the problems. Thanks!
So it were ZTS bugs in 7.1.
Thank you for confirmation!
Hi,
Theres a bug on 2.4.37 – CPU stuck at 100% after SSL scan test.
https://bz.apache.org/bugzilla/show_bug.cgi?id=63052
https://community.qualys.com/thread/19027-apache-threads-stuck-at-100-after-scan
Funny thing, I came to report the very same thing. 🙂
[Tue Jan 15 15:51:07.813991 2019] [ssl:error] [pid 26721:tid 140656076875520] [client 64.41.200.104:60808] AH02042: rejecting client initiated renegotiation
[Tue Jan 15 15:51:18.182988 2019] [ssl:error] [pid 29296:tid 140656247539456] [client 64.41.200.104:38096] AH02042: rejecting client initiated renegotiation
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
26721 apache 20 0 2516960 393320 17868 S 81.1 4.8 19:49.91 httpd
29296 apache 20 0 2657356 612836 14460 S 3.6 7.5 28:58.09 httpd
Fabio, looks like Apache httpd authors plan to Tag and Release 2.4.38 with fix this Thursday. If everything will go smooth, we could expect fix by end of next week.
Made a build of unreleased yet 2.4.38. Uploaded to https://repo.codeit.guru/packages/testing/
Please note that it is on only voting stage now, this is not a release.