Apache httpd 2.4.37, собранный с Brotli, TLS 1.3 final (RFC 8446), OpenSSL 1.1.1, ALPN и поддержкой http2 для Red Hat Enterprise Linux и CentOS

В репозиторий добавлен Apache httpd 2.4.37 с поддержкой сжатия brotli от Google, http2 для Red Hat Enterprise Linux и CentOS. Mod_ssl собран статически с OpenSSL 1.1.1. Ссылки:

Заметим, что httpd 2.4.37 уже поддерживает TLS 1.3 при сборке с OpenSSL 1.1.1. Все новые шифры включены и работают.

TLS 1.3 final на сегодня работает только в Google Chrome 70 и Mozilla Firefox 63.

Для работы с SELinux установите следующий boolean:

setsebool -P httpd_execmem=1

Модуль brotli уже включён в базовый RPM. Всё, что нужно — настроить фильтр

AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/javascript

Apache httpd 2.4.37, собранный с Brotli, TLS 1.3 final (RFC 8446), OpenSSL 1.1.1, ALPN и поддержкой http2 для Red Hat Enterprise Linux и CentOS: 12 комментариев

  1. Helo..
    I dont khow this is the correct place or not, but this is about php too, exactly php_curl running in latest apache an php. And I get the rpm from codeIT.
    environment: — Centos 7 — apache2.4.35 — PHP7.2.11 — curl7.61.1

    this is my link problem: https://stackoverflow.com/questions/52921617/linux-apache2-4-35-php7-2-curl-does-not-execute-in-text-result-but-in-html-does

    if the response of the request is html, curl_exec show on html output, but if it is plaintext it does not print anything.

    I was try run from php cli work well and from XAMPP for linux with any browser run well too (in the same environment). I found difference in phpinfo (additional dotini files) there is «php-zts» but in cli just «php».

    may be you can help or recomendation to whom.
    I online in freenode ##php with nickname: alfin

    Thanks a lot
    -alfin-

  2. Since I updated from 2.4.34 to 2.4.35 & 37, my mod_write rules no longer work. I used one to redirect non-HTTPS requests to HTTPS, and it’s simply broken:
    RewriteEngine On
    RewriteCond %{HTTPS} !=on
    RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]

    Not sure why. Bug?

  3. Weird issue with PHP session_save_path with 2.4.37 and PHP 7.1.25.

    Intermittently the session_save_path is empty, even though it’s defined in conf.d/php.conf

    Has anyone else encountered the issue?

    I also see the occasional:

    [Fri Jan 11 09:39:42.273505 2019] [core:notice] [pid 326:tid 139768943454400] AH00052: child pid 25208 exit signal Segmentation fault (11)

    I’m using PHP 7.1.25 from Webtatic, which used to work perfectly with Apache from CentOS 7.

    1. Funny thing, I came to report the very same thing. 🙂

      [Tue Jan 15 15:51:07.813991 2019] [ssl:error] [pid 26721:tid 140656076875520] [client 64.41.200.104:60808] AH02042: rejecting client initiated renegotiation
      [Tue Jan 15 15:51:18.182988 2019] [ssl:error] [pid 29296:tid 140656247539456] [client 64.41.200.104:38096] AH02042: rejecting client initiated renegotiation

      PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
      26721 apache 20 0 2516960 393320 17868 S 81.1 4.8 19:49.91 httpd
      29296 apache 20 0 2657356 612836 14460 S 3.6 7.5 28:58.09 httpd

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *