Packages repository for Red Hat Enterprise Linux и CentOS

CodeIT
is software development company (including web-based solutions). Therefore, we regularly need actual server software versions with support for advanced contemporary features. For example, NGINX and Apache httpd, built for industrial distributions with HTTP/2 and brotli compression support. But, we were not able to find ready-to-use packages. That’s why we built our own repository for RHEL/CentOS distributions and you are welcome to use it:

Version Supported architectures
6.x x86_64 (deprecated since 12.2020)
7.x x86_64

To enable automatic packages update for Linux, please be sure to configure yum repository for RHEL/CentOS distributions.

Ready-to-use binary packages

To configure yum repository for RHEL/CentOS, please download repo file for EL6 or EL7 to /etc/yum.repos.d/ directory. Please consider the following shell command that will determine system version and download proper file: cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el`rpm -q --qf "%{VERSION}" $(rpm -q --whatprovides redhat-release)`.repo If you want to see the list of available packages, you can view the repository. Please also note that some packages in our repository rely on libraries can be found in EPEL repository (some of them are apr-util and libnghttp for Apache httpd). So, the easiest way to use our builds of  Apache HTTPd is to add EPEL repository, if you still do not have it: yum install -y epel-release

Pre-Built Packages for Mainline version

To configure yum repository for RHEL/CentOS, please download repo file for EL6 or EL7 to /etc/yum.repos.d/ directory. Please consider the following shell command that will determine system version and download proper file: cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.mainline.el`rpm -q --qf "%{VERSION}" $(rpm -q --whatprovides redhat-release)`.repo If you want to see the list of available packages, you can view the mainline-repository.

Why should I use this repository?

Here we will publish the latest version of nginx (from “mainline” and “stable” branches). Why these builds are better than official ones?

    • We built them statically against OpenSSL 1.1.1+ that contains support for ALPN (features http2 negotiation at the stage of TLS connection establishment) and TLS 1.3 RFC 8446. It is important for us, since May 2016 Google Chrome cancels NPN support. Those who have not ALPN, remain with plain HTTP/1.1 over SSL without http2.
    • Content compression support using brotli built via plug ngx_brotli + libbrotli (built as a separate package).

We’re now watching the version openssl, nginx and we regularly update our buils on regular basis. In the future we plan to expand the list of software products, please check our blog regularly. Of course, SRPMs are available in the repository. Initial version is built against OpenSSL 1.0.2h. Packages in the repository are signed with our GPG-key, our public key is here.

105 thoughts on “Packages repository for Red Hat Enterprise Linux и CentOS”

  1. On
    Distributor ID: RedHatEnterpriseServer
    Description: Red Hat Enterprise Linux Server release 6.10 (Santiago)
    Release: 6.10
    Codename: Santiago

    I get this error when trying to add the repo

    # cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el`rpm -q –qf “%{VERSION}” $(rpm -q –whatprovides redhat-release)`.repo
    –2019-07-29 16:19:24– https://repo.codeit.guru/codeit.el6Server.repo
    Resolving repo.codeit.guru… 144.76.75.30, 2a01:4f8:191:9348::5
    Connecting to repo.codeit.guru|144.76.75.30|:443… connected.
    HTTP request sent, awaiting response… 404 Not Found
    2019-07-29 16:19:24 ERROR 404: Not Found.

    1. Hello,

      Please run:
      cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el6.repo

      Could you also provide us with output for the following commands:


      rpm -q --whatprovides redhat-release
      rpm -q --qf "%{VERSION}" $(rpm -q --whatprovides redhat-release)

      Thank you!

        1. Tim,

          I checked and see that CentOS 8 already has Apache httpd 2.4.37 with big count of patches. mod_brotli and mod_http2 are included, OpenSSL 1.1.1 is now part of system in CentOS/RHEL 8.

          What exactly do you expect from CodeIT builds in this case?

          1. Not the original poster, but I sought after a more current version of mod_md which supports wildcard ACME – sadly this requires apache 2.4.41 and I hoped not to have to build everything myself.

  2. Is there no changes. I followed the above procedure, actually, I’m looking for a change on this.
    Please support me.

    HTTP/1.1 200 OK
    Date: Tue, 03 Sep 2019 11:45:54 GMT
    Server: Apache/2.4.41 (codeit) PHP/7.2.22
    Last-Modified: Tue, 03 Sep 2019 11:29:11 GMT
    ETag: “1d-591a465c41698”
    Accept-Ranges: bytes
    Content-Length: 29
    Content-Type: text/html; charset=UTF-8

  3. Hi,

    For some reason using your repo is now creating a dependancy to install nginx as a new package because of the following:

    nginx x86_64 1:1.16.1-1.el7.codeit CodeIT 3.5 M
    replacing libbrotli.x86_64 1:1.0.6-1.codeit.el7

  4. Hi

    I am trying to run “yum update httpd” but failing in dependency.

    The following commands:
    rpm -q –whatprovides redhat-release
    rpm -q –qf “%{VERSION}” $(rpm -q –whatprovides redhat-release)

    Gives results as :redhat-release-server-7.6-4.el7.x86_64 and 7.6

    What to do to upgrade Apache beyong 2.4.16. Right now I have 2.4.6

    Achintya

  5. Hi Alexander,

    Would you be looking at including the mod_MD module in a future release by any chance?

    many thanks

    Ade

  6. #cat /etc/yum.repos.d/codeit.el7.repo
    [CodeIT]
    name=CodeIT repo
    baseurl=https://repo.codeit.guru/packages/centos/7/$basearch
    enabled=1
    gpgkey=https://repo.codeit.guru/RPM-GPG-KEY-codeit
    gpgcheck=1
    #yum update httpd*

    Dependencies Resolved

    =============================================================================
    Package Arch Version Repository Size
    =============================================================================
    Updating:
    apr x86_64 1.5.2-1.el7.codeit CodeIT 111 k
    httpd x86_64 2.4.41-4.codeit.el7 CodeIT 1.4 M
    httpd-tools x86_64 2.4.41-4.codeit.el7 CodeIT 1.3 M
    Installing for dependencies:
    httpd-filesystem noarch 2.4.41-4.codeit.el7 CodeIT 27 k
    libnghttp2 x86_64 1.31.1-2.el7 epel 67 k
    mod_http2 x86_64 1.15.3-1.codeit CodeIT 208 k

    Transaction Summary
    =============================================================================
    Install ( 3 Dependent packages)
    Upgrade 3 Packages

    Total download size: 3.0 M
    # rpm -qa | grep httpd
    httpd-tools-2.4.6-90.el7.centos.x86_64
    httpd-2.4.6-90.el7.centos.x86_64
    httpd-itk-2.4.7.04-2.el7.x86_64
    Соотвественно:

    AssignUserId p603 p603-www


    и
    LoadModule mpm_itk_module modules/mod_mpm_itk.so

    После yum update
    Апач не стартует.
    В логах:
    [Wed Feb 05 13:10:21.337262 2020] [suexec:notice] [pid 1203:tid 140542650091712] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
    [Wed Feb 05 13:10:21.337376 2020] [mpm_itk:crit] [pid 1203:tid 140542650091712] mpm-itk cannot use threaded MPMs; please use prefork.

    Помогло откатить пакеты httpd на те которые не из вашего репозитория.
    Я так понимаю что httpd-itk-2.4.7.04-2.el7.x86_64 с httpd-2.4.41-4.codeit.el7.x86_64.rpm не работает.
    У вас в репозитории httpd-itk нет.

    1. Добрый день, Ярослав.
      Да, именно так, для вас новости плохие.
      Мы не поддерживаем mpm itk, а только делаем аналог «родного» httpd с патчами Redhat/Fedora для CentOS 6/7.

      Но всё же попробуйте поменять mpm на prefork в своём конфиге. Мы не тестировали это никогда.

      1. как временное решение:
        # cat codeit.el7.repo
        [CodeIT]
        name=CodeIT repo
        baseurl=https://repo.codeit.guru/packages/centos/7/$basearch
        enabled=1
        gpgkey=https://repo.codeit.guru/RPM-GPG-KEY-codeit
        gpgcheck=1
        exclude=httpd*

  7. NGINX 1.17.7 mainline built against OpenSSL 1.1.1d with TLS 1.3 Final (RFC 8446) and brotli for Red Hat Enterprise Linux and CentOS

    brotli compression is not working …. (content-encoding: gzip)
    TLS 1.3 work fine …

    Install on:
    Linux l 3.10.0-1062.12.1.el7.x86_64
    brotli-1.0.7-5.el7.x86_64 (from epel)
    nginx.conf:
    brotli_static on;
    brotli_comp_level 6;
    brotli_types *;

    please help …

  8. Hi,

    First of all thanks for your builds, during few years I’ve been using your repot to have my webservers updated.

    I’m writting this coment to request adding LUA Support for your nginx, that would enable using your builds with a lot of external third-party integrations.

    Regards,

  9. Hello and thanks for the compilation here.
    I would like to build the packages from the src.rpm myself and have a few questions about it:
    – are certain options used when building openssl or is it just a simple “./config && make”?
    – apr-util needs mariadb-connector-c-devel for building – is it possible to use the package from CentOS 8?

    Thanks!

  10. Hello Alexander & all,

    as you might have noticed, today there has been a release of nginx-1.18.0 stable version.

    Since I have nginx repo somehow forgotten in my list, my webserver got upgraded via yum update and since that nginx stopped working. I fixed the configuration reflecting changes in nginx directives for version 1.18 and got it back functional. But only after I have done that, noted my website is no longer running TLS 1.3

    Having realized this, found out that official nginx repo contains a build compiled still against an ancient OpenSSL version:

    [root@server ~]# nginx -V
    nginx version: nginx/1.18.0
    built by gcc 4.8.5 20150623 (Red Hat 4.8.5-39) (GCC)
    built with OpenSSL 1.0.2k-fips 26 Jan 2017
    TLS SNI support enabled

    which is obviously the reason TLS 1.3 not working for me now.

    Will you be creating your CodeIT package built with OpenSSL 1.1.1d or later version for the new nginx anytime soon? I would not like to go back older nginx versions at this point since my configuration seems to work well enough, but it would be great to have your package from CodeIT repository instead.

    Thank you in advance,

    Daniel.

      1. Hello Alexander,

        great news. Yeah OpenSSL 1.1.1g version was also out yesterday, right..

        Do I have the right repository for RHEL7 where to expect it then? 🙂

        I have currently codeit.el7.repo :

        [CodeIT]
        name=CodeIT repo
        baseurl=https://repo.codeit.guru/packages/centos/7/$basearch
        enabled=1
        gpgkey=https://repo.codeit.guru/RPM-GPG-KEY-codeit
        gpgcheck=1

        Thank you,

        Daniel.

  11. Hello.
    I have been using httpd from CodeIT and it’s working well on all of my CentOS 7 machines but recently noticed that apachectl fullstatus option it’s not available anymore any suggestions why?
    Thanks.

      1. Hi Alexander, some time ago you fixed the problem in this post (https://community.letsencrypt.org/t/the-apache-plugin-is-not-working/102520/24)… it is happening again after the httpd updated the version to httpd-2.4.43-5.codeit.el7.x86_64. Could you help us again?

        The error is
        [root@server ~]# certbot –apache
        Saving debug log to /var/log/letsencrypt/letsencrypt.log
        Error in checking parameter list:
        The apache plugin is not working; there may be problems with your existing configuration.
        The error was: MisconfigurationError(‘Apache is unable to check whether or not the module is loaded because Apache is misconfigured.’,)

        Thank you!
        Carlos Daniluski

          1. Hello, CentOS7 user here
            Either the apache 2.4.43-6 or mod_ssl recent versions appear a little skewed, here’s the results I get on an attempted update.
            The error with latest mod_ssl stating “”nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-6.codeit.el7.x86_64” I believe I have traced to wrong location, certainly on CentOS7 it appears to live at /bin/hostname. I’ve never had any symlinks between the two?

            which hostname
            /bin/hostname

            Thanks for your work in providing later httpd and mod_ssl binaries to the CentOS community!

            R

            dnf update
            Extra Packages for Enterprise Linux 7 – x86_64 0.0 B/s | 0 B 00:00
            CentOS-7 – Updates 0.0 B/s | 0 B 00:00
            CodeIT repo 0.0 B/s | 0 B 00:00
            CentOS-7 – Base 0.0 B/s | 0 B 00:00
            CentOS-7 – Plus 0.0 B/s | 0 B 00:00
            CentOS-7 – Extras 0.0 B/s | 0 B 00:00
            Dependencies resolved.

            Problem 1: cannot install the best update candidate for package mod_ssl-1:2.4.43-2.codeit.el7.x86_64
            – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-6.codeit.el7.x86_64
            Problem 2: problem with installed package mod_ssl-1:2.4.43-2.codeit.el7.x86_64
            – package mod_ssl-1:2.4.43-2.codeit.el7.x86_64 requires httpd = 2.4.43-2.codeit.el7, but none of the providers can be installed
            – cannot install both httpd-2.4.43-6.codeit.el7.x86_64 and httpd-2.4.43-2.codeit.el7.x86_64
            – cannot install the best update candidate for package httpd-2.4.43-2.codeit.el7.x86_64
            – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-4.codeit.el7.x86_64
            – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-5.codeit.el7.x86_64
            – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-6.codeit.el7.x86_64
            =====================================================================================================================================================
            Package Arch Version Repository Size
            =====================================================================================================================================================
            Skipping packages with conflicts:
            (add ‘–best –allowerasing’ to command line to force their upgrade):
            httpd x86_64 2.4.43-6.codeit.el7 CodeIT 1.4 M
            Skipping packages with broken dependencies:
            mod_ssl x86_64 1:2.4.43-4.codeit.el7 CodeIT 121 k
            mod_ssl x86_64 1:2.4.43-5.codeit.el7 CodeIT 121 k
            mod_ssl x86_64 1:2.4.43-6.codeit.el7 CodeIT 121 k

            Transaction Summary
            =====================================================================================================================================================
            Skip 4 Packages

            Nothing to do.
            Complete!

          2. Hello Rob,

            Please try to reinstall or update “hostname-3.13-3” or fix your yum/rpm databases.
            I see that at least hostname-3.13-3.el7_7.1.x86_64 from the Updates CentOS 7 repo has /usr/bin/hostname.

  12. Hi Alexander, thanks for quick reply and for suggestions which I’ve double-checked.
    However, your suggestion prompted me to look deeper and compare operational server with vanilla build. Turns out “which hostname” on a vanilla machine yields the “correct” /usr/bin/hostname.

    Traced to inconsistent PATH settings set in csh.login, in turn traced this to setup-2.8-x.rpm
    The misbehaving server would appear to have the CentOS “cr” repo enabled. This increments the base setup-2.8.71-10.el7.noarch to setup-2.8.71-11.el7.noarch.

    One change is a difference in /etc/csh.login which is defining a completely different PATH variable than system default – csh.login in later version has a setenv PATH statement which is placing /bin before /usr/bin and therefore resulting in the error reported.

    This is clearly self-inflicted on our test box, apologies for taking up your time, thanks for reviewing.

    For anyone else experiencing same issues, be very wary of the CentOS7 “cr” repo!

  13. Hi Alexander, the plot thickens…
    I’m going to backtrack on that. Seems the pathnames were a redherring. I have just built a virgin CentOS7 machine, applied the EPEL repo to it, carried out a full update then added the CodeIT CentOS7 repo.
    Here’s my results.

    It will quite happily install an earlier version of mod_ssl but not latest from CodeIT repo. To my little brain, it would appear something is actually amiss with mod_ssl package?
    Grateful for any ideas

    Cheers
    Rob

    [root@tdtst01 yum.repos.d]# echo $PATH
    /usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin
    [root@tdtst01 yum.repos.d]# which hostname
    /bin/hostname
    [root@tdtst01 yum.repos.d]# dnf install httpd mod_ssl
    Last metadata expiration check: 0:06:57 ago on Mon 27 Apr 2020 14:05:30 UTC.
    Dependencies resolved.

    Problem: cannot install the best candidate for the job
    – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-6.codeit.el7.x86_64
    =====================================================================================================================================================
    Package Arch Version Repository Size
    =====================================================================================================================================================
    Installing:
    httpd x86_64 2.4.43-2.codeit.el7 CodeIT 1.4 M
    mod_ssl x86_64 1:2.4.43-2.codeit.el7 CodeIT 1.3 M
    Installing dependencies:
    brotli x86_64 1.0.7-5.el7 epel 318 k
    libnghttp2 x86_64 1.31.1-2.el7 epel 67 k
    sscg x86_64 2.6.1-1.el7 epel 60 k
    libtalloc x86_64 2.1.16-1.el7 cr 33 k
    libpath_utils x86_64 0.2.1-32.el7 base 28 k
    mailcap noarch 2.1.41-2.el7 base 31 k
    apr x86_64 1.7.0-2.el7 CodeIT 122 k
    apr-util x86_64 1.6.1-6.el7 CodeIT 98 k
    httpd-filesystem noarch 2.4.43-2.codeit.el7 CodeIT 27 k
    httpd-tools x86_64 2.4.43-2.codeit.el7 CodeIT 1.3 M
    mod_http2 x86_64 1.15.7-1.codeit CodeIT 208 k
    Skipping packages with broken dependencies:
    mod_ssl x86_64 1:2.4.43-6.codeit.el7 CodeIT 121 k

    Transaction Summary
    =====================================================================================================================================================
    Install 13 Packages
    Skip 1 Package

    Total download size: 5.0 M
    Installed size: 14 M
    Is this ok [y/N]:

    1. Hi Rob,

      Just try to update to the latest hostname package, as I suggested earlier.

      yum upgrade hostname

      hostname-3.13-3.el7_7.1.x86_64 from the Updates CentOS 7 repo should work fine for you.

  14. Hi Alexander,
    Once again this side bad, and for complete disclosure the issue is with YUM vs DNF.
    Turns out that on the test box yum had been swapped for dnf in the extras repo.
    Interestingly yum behaves where dnf does not. dnf DOES behave if wanting to install previous version of mod_ssl. I have never delved into rpm specifications, so cannot answer why one works and the other doesnt.

    yum install httpd mod_ssl

    –> Finished Dependency Resolution

    Dependencies Resolved

    =====================================================================================================================================================
    Package Arch Version Repository Size
    =====================================================================================================================================================
    Installing:
    httpd x86_64 2.4.43-6.codeit.el7 CodeIT 1.4 M
    mod_ssl x86_64 1:2.4.43-6.codeit.el7 CodeIT 121 k
    Installing for dependencies:
    apr x86_64 1.7.0-2.el7 CodeIT 122 k
    apr-util x86_64 1.6.1-6.el7 CodeIT 98 k
    brotli x86_64 1.0.7-5.el7 epel 318 k
    httpd-filesystem noarch 2.4.43-6.codeit.el7 CodeIT 29 k
    httpd-tools x86_64 2.4.43-6.codeit.el7 CodeIT 94 k
    libnghttp2 x86_64 1.31.1-2.el7 epel 67 k
    libpath_utils x86_64 0.2.1-32.el7 base 28 k
    libtalloc x86_64 2.1.16-1.el7 base 33 k
    mailcap noarch 2.1.41-2.el7 base 31 k
    mod_http2 x86_64 1.15.7-1.codeit CodeIT 208 k
    openssl111-libs x86_64 1.1.1g-2.codeit.el7 CodeIT 1.4 M
    sscg x86_64 2.6.1-1.el7 epel 60 k

    Transaction Summary
    =====================================================================================================================================================
    Install 2 Packages (+12 Dependent packages)

    # dnf install httpd mod_ssl
    Last metadata expiration check: 0:04:04 ago on Mon 27 Apr 2020 15:30:34 UTC.
    Dependencies resolved.

    Problem: cannot install the best candidate for the job
    – nothing provides /usr/bin/hostname needed by mod_ssl-1:2.4.43-6.codeit.el7.x86_64
    =====================================================================================================================================================
    Package Arch Version Repository Size
    =====================================================================================================================================================
    Installing:
    httpd x86_64 2.4.43-2.codeit.el7 CodeIT 1.4 M
    mod_ssl x86_64 1:2.4.43-2.codeit.el7 CodeIT 1.3 M
    Installing dependencies:
    brotli x86_64 1.0.7-5.el7 epel 318 k
    libnghttp2 x86_64 1.31.1-2.el7 epel 67 k
    sscg x86_64 2.6.1-1.el7 epel 60 k
    libpath_utils x86_64 0.2.1-32.el7 base 28 k
    libtalloc x86_64 2.1.16-1.el7 base 33 k
    mailcap noarch 2.1.41-2.el7 base 31 k
    apr x86_64 1.7.0-2.el7 CodeIT 122 k
    apr-util x86_64 1.6.1-6.el7 CodeIT 98 k
    httpd-filesystem noarch 2.4.43-2.codeit.el7 CodeIT 27 k
    httpd-tools x86_64 2.4.43-2.codeit.el7 CodeIT 1.3 M
    mod_http2 x86_64 1.15.7-1.codeit CodeIT 208 k
    Skipping packages with broken dependencies:
    mod_ssl x86_64 1:2.4.43-6.codeit.el7 CodeIT 121 k

    Transaction Summary
    =====================================================================================================================================================
    Install 13 Packages
    Skip 1 Package

    Thanks for your attention and apologies for taking your time!

      1. Hi Alexander, revisiting this
        Please review https://bugzilla.redhat.com/show_bug.cgi?id=1645638 which kind of shows the same issue – unresolved dependencies with /usr/bin/hostname. The suggestion is that the rpm package is wrong.

        A “dnf deplist ” gives the dependency and provider.
        For mod_ssl-1:2.4.43-6.codeit.el7.x86_64, this gives an unresolved dependency of /usr/bin/hostname

        By contrast dnf deplist mod_ssl-1:2.4.43-2.codeit.el7.x86_64 shows no such dependency requirement which suggests why it works.

        Apparently the correct approach is to remove the invalid dependency from the package. Either YUM or DNF will then operate correctly. It is not unreasonble to expect either system-provided package manager to work.

        Per previous – could I ask you to look again at the package?
        Thanks for your work
        Kindest regards
        Rob

        1. Hello Rob,

          Actually I think that problem is somewhere in the dnf database, as /usr/bin/hostname is registered as “provided” in the most recent “hostname” package. If I manually update it to the latest version, I do not see any problems with this dependency anymore.

          Anyway, to support dnf and avoid cases with non-updated OS we released a fix for this case, please test with testing repository and reply if it worked for you.

          https://repo.codeit.guru/packages/testing/x86_64/ – httpd-2.4.43-7

          1. Hey Alexander, thanks for looking at that
            TLDR: it worked cheers!

            The OS is up to date cannot understand your notes above.

            I looked at the link you gave, although a repodata folder’s in there I didn’t see any reference to a “testing” .repo available so I put my own, in order that either yum or, in this case, dnf could resolve all depedencies. Maybe I’m being thick and missed any published repo file.

            [CodeITtest]
            name=CodeIT test repo
            baseurl=https://repo.codeit.guru/packages/testing/x86_64/
            enabled=1

            dnf update
            =====================================================================================================================================================
            Package Arch Version Repository Size
            =====================================================================================================================================================
            Upgrading:
            httpd x86_64 2.4.43-7.codeit.el7 CodeITtest 1.4 M
            httpd-devel x86_64 2.4.43-7.codeit.el7 CodeITtest 213 k
            httpd-filesystem noarch 2.4.43-7.codeit.el7 CodeITtest 29 k
            httpd-tools x86_64 2.4.43-7.codeit.el7 CodeITtest 94 k
            mod_ssl x86_64 1:2.4.43-7.codeit.el7 CodeITtest 122 k

            Transaction Summary
            =====================================================================================================================================================
            Upgrade 5 Packages

            Total download size: 1.8 M
            Is this ok [y/N]: y

            No complaints about dependencies, clean upgrade and all sorted
            Thanks for your work!
            Kindest regards
            Rob

  15. Hello Alexander,
    The command
    rpm -q –whatprovides redhat-release
    It gives me the following version:
    redhat-release-server-7.8-2.el7.x86_64

    Do you not have a repository for this version?

    –2020-05-06 17: 24: 17– https://repo.codeit.guru/codeit.el7.8.repo
    Resolving repo.codeit.guru (repo.codeit.guru) … 144.76.75.67, 2a01: 4f8: 191: 9348 :: 6
    Connecting to repo.codeit.guru (repo.codeit.guru) | 144.76.75.67 |: 443 … connected.
    HTTP request sent, awaiting response … 404 Not Found
    2020-05-06 17:24:17 ERROR 404: Not Found.

  16. Hello Alexander,
    I already had it configured, I have reconfigured it but yum info httpd
    it shows me the following:

    Loaded plugins: product-id, search-disabled-repos, subscription-manager
    Installed Packages
    Name : httpd
    Arch : x86_64
    Version : 2.4.6
    Release : 93.el7
    Size : 3.7 M
    Repo : installed
    From repo : rhel-7-server-rpms
    Summary : Apache HTTP Server
    URL : http://httpd.apache.org/
    License : ASL 2.0
    Description : The Apache HTTP Server is a powerful, efficient, and extensible

    I need to update apache to version.

    Thanks for your help.

  17. Hello,
    please, could you build a separate package which includes support for Virtualmin?
    That is, enough to point to /home for suexec docroot, then you could explain to create a local repo and yum replace httpd –replace-with=your package

    Please, let me know, ok? thank you very much

  18. Installed the latest from codeIT and can’t access the Apache main page on port 80:

    HTTP/1.1 403 Forbidden
    Connection: Keep-Alive
    Content-Length: 318
    Content-Type: text/html; charset=iso-8859-1
    Date: Wed, 26 Aug 2020 22:09:41 GMT
    Keep-Alive: timeout=5, max=100
    Server: Apache/2.4.46 (codeit)

    403 Forbidden

    Forbidden
    You don’t have permission to access this resource.
    Additionally, a 403 Forbidden
    error was encountered while trying to use an ErrorDocument to handle the request.

  19. Buenos días, podrían ayudarme a resolver este error de PERMISO DENEGADO:

    [groot@srvtickets ~]$ cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el`rpm -q –qf “%{VERSION}” $(rpm -q –whatprovides redhat-release)`.repo –2020-11-11 11:38:55– https://repo.codeit.guru/codeit.el7.repo
    Resolviendo repo.codeit.guru (repo.codeit.guru)… 144.76.75.67, 2a01:4f8:191:9348::6
    Conectando con repo.codeit.guru (repo.codeit.guru)[144.76.75.67]:443… conectado.
    Petición HTTP enviada, esperando respuesta… 200 OK
    Longitud: 159 [application/octet-stream]
    codeit.el7.repo: Permiso denegado

    No se puede escribir a “codeit.el7.repo” (Conseguido).

  20. Buenos días, podrían ayudarme a resolver este error de PERMISO DENEGADO:

    [groot@srvtickets ~]$ cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el`rpm -q –qf “%{VERSION}” $(rpm -q –whatprovides redhat-release)`.repo –2020-11-11 11:38:55– https://repo.codeit.guru/codeit.el7.repo
    Resolviendo repo.codeit.guru (repo.codeit.guru)… 144.76.75.67, 2a01:4f8:191:9348::6
    Conectando con repo.codeit.guru (repo.codeit.guru)[144.76.75.67]:443… conectado.
    Petición HTTP enviada, esperando respuesta… 200 OK
    Longitud: 159 [application/octet-stream]
    codeit.el7.repo: Permiso denegado

    No se puede escribir a “codeit.el7.repo” (Conseguido).

  21. Hello,

    I still using HTTP/1 on my Centos 7 server with Magento 2.

    How can I upgrade to HTTP/2 ?

    Thanks a lot for answering

    1. Hello,

      We do not provide support for upgrading the installations. Usually, this is easy: just upgrade the httpd package and mod_ssl with our ones, check that ssl.conf contains ciphers list and http2 protocol enabled (default sample already has everything to test it).

      However, if you are not familiar with the Apache httpd settings, please try first to play with upgrading in the test environment or hire system administrator/devops who has experience with these httpd settings.

  22. Hello,

    I see that there are no nginx 1.19.x packages available in CentOS 7 Mainline repo.

    Will you be adding 1.19.x packages to the Mainline repo any time soon?

    Thank you for all your efforts!

    Please let us know!
    Cheers

  23. Hello,

    I would like to know whether CodeIT mainline CentOS 7 repo will provide nginx-1.19.x builds.

    Currently, I don’t see any 1.19.x packages available. Please let me know.

    Thank you for all your kind and great work with modern package builds for CentOS!

    (Note: I posted a similar question a few days ago, but I don’t see it here!)

    Cheers,
    Nick

  24. When I run cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el7.repo, I get:

    –2021-01-12 15:20:51– https://repo.codeit.guru/codeit.el7.repo
    Resolving repo.codeit.guru (repo.codeit.guru)… 144.76.75.67, 2a01:4f8:191:9348::6
    Connecting to repo.codeit.guru (repo.codeit.guru)|144.76.75.67|:443… connected.
    HTTP request sent, awaiting response… 200 OK
    Length: 159 [application/octet-stream]
    codeit.el7.repo: Permission denied
    Cannot write to ‘codeit.el7.repo’ (Success).

    Is something down at the moment? Thanks!

  25. After installing codeit.el7.repo I updated httpd packages on CentOS 7 to latest version (2.4.46). Apache restarts and works fine, but ionCube will not load anymore. ionCube works from CLI, but not in Apache. No error messages in the logs. Apache displays a message that ionCube PHP Loader is not installed. It most certainly is, I triple-checked, the file’s there, it’s defined in php.ini, paths are fine – and it WORKED before installing this repo and updating httpd.

    I’ve googled for the issue and the only suggestion that comes up is that it’s an SElinux issue. Well, on this box SElinux has been disabled from day one (don’t ask, it’s a special requirement for the app running on this machine).

    Any idea how to get ionCube to load with the version of httpd installed from the codeit.el7.repo repo?

  26. Error: Package: mod_http2-1.15.23-1.codeit.x86_64 (CodeIT)
    Requires: libnghttp2 >= 1.21.1
    Error: Package: 1:mod_ssl-2.4.48-1.codeit.el7.x86_64 (CodeIT)
    Requires: sscg >= 2.2.0
    Error: Package: mod_http2-1.15.23-1.codeit.x86_64 (CodeIT)
    Requires: libnghttp2.so.14()(64bit)
    You could try using –skip-broken to work around the problem
    You could try running: rpm -Va –nofiles –nodigest

    i can see this error msg when i upgrade httpd and connected with
    cd /etc/yum.repos.d && wget https://repo.codeit.guru/codeit.el7.repo

  27. After upgrading everything (yum update -y; reboot) on a CentOS 7 server which uses Apache, I’m getting this:

    $ /usr/sbin/apachectl configtest
    httpd: Syntax error on line 1 of /etc/httpd/conf/httpd.conf:
    Syntax error on line 63 of /etc/httpd/conf.modules.d/000-web-base.conf:
    Cannot load modules/mod_http2.so into server: /etc/httpd/modules/mod_http2.so:
    undefined symbol: EVP_MD_CTX_new

    I have Apache from CodeIT’s repository.
    Do you know what the error above means? It works if I simply remove the “mod_http2” module, but this obviously isn’t ideal as I won’t benefit from HTTP2.

    Server Version: Apache/2.4.48 (codeit) OpenSSL/1.1.1l
    Server MPM: event
    Server Built: May 26 2021 11:40:06

    openssl:

    # openssl version
    OpenSSL 1.0.2k-fips 26 Jan 2017

    While Apache says:

    OpenSSL/1.1.1l
    So something doesn’t seem to be right!

    1. I resolved by downgrading to previous version:

      # yum downgrade mod_http2-1.15.23

      Removed:
      mod_http2.x86_64 0:1.15.24-1.codeit

      Installed:
      mod_http2.x86_64 0:1.15.23-1.codeit

      Complete!

      # /usr/sbin/apachectl configtest
      Syntax OK

      # systemctl restart httpd

      (full restart is required rather than graceful reload, otherwise we’ll get “exit signal Segmentation fault (11)”)

      1. Hey! Nice one.

        Any idea if my issue with “mod_http2” may be resolved on a newer version of mod_http2?
        (the one I reported a few days ago above)

        Thanks! Good day.

        1. Hey Nuno,

          We do not experience similar issues. Probably you have concurrent openssl 1.1.x library installed somewhere in your system?
          The easiest way is to provide steps to reproduce the issue on newly installed CentOS 7.

          1. CentOS itself has “OpenSSL 1.0.2k-fips” installed, but Apache’s mod_http2 (from CodeIT) seems to require “OpenSSL/1.1.1l”.

            My understanding is that Apache itself has its own “OpenSSL/1.1.1l” bundled?
            How can I made “mod_http2” use that one instead?

            And any idea why the previous version works, but just the latest version doesn’t?

            Thanks much!

          2. Of course 1.0.2 bundled with CentOS is OK, but you can have any other openssl 1.1.x libraries installed (e.g. openssl11-libs from epel). We never tested mod_ssl and mod_http2 with epel openssl11-libs.

            Please also try to update our openssl111-libs package to the latest version. It’s not bundled now: it’s a separate package.

            I have the idea why latest version is broken for you: apache httpd developers did an extremely massive rework in the latest version to avoid deprecation warnings and switch to using OpenSSL EVP_* API to avoid deprecation warnings with OpenSSL 3.0. Thus, new APIs are in use and probably they are not available in your library version.

          3. Thanks!

            Seems “openssl11-libs” finds epel,
            “openssl111-libs” finds CodeIT.
            Only “openssl111-libs” says “installed”.

            But “mod_http2” doesn’t seem to find it… and I have no idea how I can make it use “openssl111” 🙂

            # yum info openssl11-libs
            Loaded plugins: changelog, copr, fastestmirror, langpacks
            Loading mirror speeds from cached hostfile
            * base: mirror.phx1.us.spryservers.net
            * epel: d2lzkl7pfhq30w.cloudfront.net
            * extras: mirrors.sonic.net
            * remi: mirror.bebout.net
            * remi-safe: mirror.bebout.net
            * rpmfusion-free-updates: muug.ca
            * updates: mirrors.ocf.berkeley.edu
            Available Packages
            Name : openssl11-libs
            Arch : x86_64
            Epoch : 1
            Version : 1.1.1g
            Release : 3.el7
            Size : 1.5 M
            Repo : epel/x86_64
            Summary : A general purpose cryptography library with TLS implementation
            URL : http://www.openssl.org/
            License : OpenSSL and ASL 2.0
            Description : OpenSSL is a toolkit for supporting cryptography. The openssl11-libs
            : package contains the libraries that are used by various applications which
            : support cryptographic algorithms and protocols.

            # yum info openssl111-libs
            Loaded plugins: changelog, copr, fastestmirror, langpacks
            Loading mirror speeds from cached hostfile
            * base: mirror.phx1.us.spryservers.net
            * epel: d2lzkl7pfhq30w.cloudfront.net
            * extras: mirrors.sonic.net
            * remi: mirror.bebout.net
            * remi-safe: mirror.bebout.net
            * rpmfusion-free-updates: muug.ca
            * updates: mirrors.ocf.berkeley.edu
            Installed Packages
            Name : openssl111-libs
            Arch : x86_64
            Version : 1.1.1l
            Release : 1.codeit.el7
            Size : 3.5 M
            Repo : installed
            From repo : CodeIT
            Summary : A general purpose cryptography library with TLS implementation
            URL : http://www.openssl.org/
            License : OpenSSL
            Description : OpenSSL is a toolkit for supporting cryptography. The openssl-libs
            : package contains the libraries that are used by various applications which
            : support cryptographic algorithms and protocols.

          4. Seems to say installed, anyway!

            But the “Name” field doesn’t include the “L”:

            # yum info openssl111-libs-1.1.1l
            Loaded plugins: changelog, copr, fastestmirror, langpacks
            Loading mirror speeds from cached hostfile
            * base: mirror.phx1.us.spryservers.net
            * epel: d2lzkl7pfhq30w.cloudfront.net
            * extras: mirrors.sonic.net
            * remi: mirror.bebout.net
            * remi-safe: mirror.bebout.net
            * rpmfusion-free-updates: muug.ca
            * updates: mirrors.ocf.berkeley.edu
            Installed Packages
            Name : openssl111-libs
            Arch : x86_64
            Version : 1.1.1l
            Release : 1.codeit.el7
            Size : 3.5 M
            Repo : installed
            From repo : CodeIT
            Summary : A general purpose cryptography library with TLS implementation
            URL : http://www.openssl.org/
            License : OpenSSL
            Description : OpenSSL is a toolkit for supporting cryptography. The openssl-libs
            : package contains the libraries that are used by various
            : applications which support cryptographic algorithms and protocols.

          5. The setup seems to be correct. Are you able to install the same distribution with “minimal” setup to the empty VM and install httpd from CodeIT repo to try to reproduce the problem?

  28. Any chance to package pagespeed as a module too? Would pair really well with http/2 and brotli support.
    Cheers and thanks for your great work!

  29. dnf update
    Última comprobación de caducidad de metadatos hecha hace 0:00:36, el vie 01 oct 2021 15:49:14 CEST.
    Dependencias resueltas.

    Problema: package nginx-1:1.16.1-1.el7.codeit.x86_64 requires libbrotlienc.so.1()(64bit), but none of the providers can be installed
    – package nginx-1:1.16.1-1.el7.codeit.x86_64 obsoletes libbrotli provided by libbrotli-1.0.9-1.codeit.el7.x86_64
    – cannot install both brotli-1.0.7-5.el7.x86_64 and brotli-1.0.9-1.codeit.el7.x86_64
    – cannot install the best update candidate for package libbrotli-1.0.9-1.codeit.el7.x86_64
    – cannot install the best update candidate for package brotli-1.0.9-1.codeit.el7.x86_64
    =============================================================================================================================================================================================
    Paquete Arquitectura Versión Repositorio Tamaño
    =============================================================================================================================================================================================
    Descartando paquetes con conflictos:
    (añada ‘–best –allowerasing’ a la linea de comandos para forzar su actualización):
    brotli x86_64 1.0.7-5.el7 epel 318 k
    Descartando paquetes con conflictos en las dependencias:
    nginx x86_64 1:1.16.1-1.el7.codeit CodeIT 3.5 M

    Resumen de la transacción
    =============================================================================================================================================================================================
    Descartar 2 Paquetes

    Nada por hacer.
    ¡Listo!

      1. I have not installed nginx, but apache

        # yum list installed | grep CodeIT
        apr.x86_64 1.7.0-2.el7 @CodeIT
        apr-devel.x86_64 1.7.0-2.el7 @CodeIT
        apr-util.x86_64 1.6.1-6.el7 @CodeIT
        apr-util-devel.x86_64 1.6.1-6.el7 @CodeIT
        brotli.x86_64 1.0.9-1.codeit.el7 @CodeIT
        httpd.x86_64 2.4.49-1.codeit.el7 @CodeIT
        httpd-filesystem.noarch 2.4.49-1.codeit.el7 @CodeIT
        httpd-tools.x86_64 2.4.49-1.codeit.el7 @CodeIT
        libbrotli.x86_64 1.0.9-1.codeit.el7 @CodeIT
        mc.x86_64 1:4.8.27-1.codeit.el7 @CodeIT
        mod_http2.x86_64 1.15.24-1.codeit @CodeIT
        mod_ssl.x86_64 1:2.4.49-1.codeit.el7 @CodeIT
        openssl111-libs.x86_64 1.1.1l-1.codeit.el7 @CodeIT
        # yum list installed | grep nginx
        none

        # yum list installed | grep epel
        certbot.noarch 1.11.0-1.el7 @epel
        epel-release.noarch 7-14 @epel
        htop.x86_64 2.2.0-3.el7 @epel
        jq.x86_64 1.6-2.el7 @epel
        libdb4.x86_64 4.8.30-13.el7 @epel
        libdb4-utils.x86_64 4.8.30-13.el7 @epel
        libmspack.x86_64 0.7-0.1.alpha.el7 @epel
        libnghttp2.x86_64 1.33.0-1.1.el7 @epel
        oniguruma.x86_64 6.8.2-1.el7 @epel
        python-ndg_httpsclient.noarch 0.3.2-1.el7 @epel
        python-requests-toolbelt.noarch 0.8.0-3.el7 @epel
        python-zope-component.noarch 1:4.1.0-5.el7 @epel
        python-zope-event.noarch 4.0.3-2.el7 @epel
        python2-acme.noarch 1.11.0-1.el7 @epel
        python2-certbot.noarch 1.11.0-1.el7 @epel
        python2-configargparse.noarch 0.11.0-2.el7 @epel
        python2-dialog.noarch 3.3.0-6.el7 @epel
        python2-distro.noarch 1.2.0-3.el7 @epel
        python2-future.noarch 0.18.2-2.el7 @epel
        python2-josepy.noarch 1.3.0-2.el7 @epel
        python2-mock.noarch 1.0.1-10.el7 @epel
        python2-parsedatetime.noarch 2.4-6.el7 @epel
        python2-pip.noarch 8.1.2-14.el7 @epel
        python2-psutil.x86_64 5.6.7-1.el7 @epel
        python2-pyrfc3339.noarch 1.1-3.el7 @epel
        python2-six.noarch 1.9.0-0.el7 @epel
        sscg.x86_64 2.6.1-1.el7 @epel

  30. I have problem on dnf update

    Problema: package nginx-1:1.16.1-1.el7.codeit.x86_64 requires libbrotlienc.so.1()(64bit), but none of the providers can be installed
    – package nginx-1:1.16.1-1.el7.codeit.x86_64 obsoletes libbrotli provided by libbrotli-1.0.9-1.codeit.el7.x86_64
    – cannot install both brotli-1.0.7-5.el7.x86_64 and brotli-1.0.9-1.codeit.el7.x86_64
    – cannot install the best update candidate for package libbrotli-1.0.9-1.codeit.el7.x86_64
    – cannot install the best update candidate for package brotli-1.0.9-1.codeit.el7.x86_64
    ===========================================================================================================================================================
    Paquete Arquitectura Versión Repositorio
    ===========================================================================================================================================================
    Descartando paquetes con conflictos:
    (añada ‘–best –allowerasing’ a la linea de comandos para forzar su actualización):
    brotli x86_64 1.0.7-5.el7 epel
    Descartando paquetes con conflictos en las dependencias:
    nginx x86_64 1:1.16.1-1.el7.codeit CodeIT

    Resumen de la transacción
    ===========================================================================================================================================================

        1. Just a heads up – I’m having dependency issues with mod_http2 the 2.4.50 build on centos 7.9 but 2.4.49 works fine:

          Cannot load modules/mod_http2.so into server: /etc/httpd/modules/mod_http2.so: undefined symbol: EVP_MD_CTX_new

  31. It seems that there is something wrong with mod_http2:
    [root@localhost ~]# rpm -q –requires mod_http2
    config(mod_http2) = 1.15.24-1.codeit
    httpd-mmn = 20120211×8664
    libc.so.6()(64bit)
    libc.so.6(GLIBC_2.14)(64bit)
    libc.so.6(GLIBC_2.2.5)(64bit)
    libc.so.6(GLIBC_2.3)(64bit)
    libcrypto.so.10()(64bit)
    libcrypto.so.10(libcrypto.so.10)(64bit)
    libnghttp2 >= 1.21.1
    libnghttp2.so.14()(64bit)
    rpmlib(CompressedFileNames) <= 3.0.4-1
    rpmlib(FileDigests) <= 4.6.0-1
    rpmlib(PayloadFilesHavePrefix) <= 4.0-1
    rtld(GNU_HASH)
    rpmlib(PayloadIsXz) <= 5.2-1

    Which is wrong, because mod_httpd2 should require libcrypto.so.1.1, which is provided by openssl111-libs.

      1. Looks like mod_http2-1.15.24-2 works. I manage httpd with puppet, so choosing the load order of modules would be a challenge. Thank you very much!

Leave a Reply

Your email address will not be published. Required fields are marked *