From: Eric Covener Date: Tue, 10 Jan 2023 13:22:51 +0000 (+0000) Subject: make update-changes X-Git-Tag: 2.4.55-rc1-candidate~2 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=19852d84200f3dda5d413ca5e2aa18fb6b8ee889;p=thirdparty%2Fapache%2Fhttpd.git make update-changes [skip ci] git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1906544 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/CHANGES b/CHANGES index f5ec9b556d1..c58c6fef04c 100644 --- a/CHANGES +++ b/CHANGES @@ -1,6 +1,63 @@ -*- coding: utf-8 -*- Changes with Apache 2.4.55 + *) mod_dav: Open the lock database read-only when possible. + PR 36636 [Wilson Felipe , manu] + + *) mod_proxy_http2: apply the standard httpd content type handling + to responses from the backend, as other proxy modules do. Fixes PR 66391. + Thanks to Jérôme Billiras for providing the patch. + [Stefan Eissing] + + *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981 + [Basant Kumar Kukreja , Alejandro Alvarez + ] + + *) mod_proxy_hcheck: Honor worker timeout settings. [Yann Ylavic] + + *) mod_http2: version 2.0.10 of the module, synchronizing changes + with the gitgub version. This is a partial rewrite of how connections + and streams are handled. + - an APR pollset and pipes (where supported) are used to monitor + the main connection and react to IO for request/response handling. + This replaces the stuttered timed waits of earlier versions. + - H2SerializeHeaders directive still exists, but has no longer an effect. + - Clients that seemingly misbehave still get less resources allocated, + but ongoing requests are no longer disrupted. + - Fixed an issue since 1.15.24 that "Server" headers in proxied requests + were overwritten instead of preserved. [PR by @daum3ns] + - A regression in v1.15.24 was fixed that could lead to httpd child + processes not being terminated on a graceful reload or when reaching + MaxConnectionsPerChild. When unprocessed h2 requests were queued at + the time, these could stall. See #212. + - Improved information displayed in 'server-status' for H2 connections when + Extended Status is enabled. Now one can see the last request that IO + operations happened on and transferred IO stats are updated as well. + - When reaching server limits, such as MaxRequestsPerChild, the HTTP/2 connection + send a GOAWAY frame much too early on new connections, leading to invalid + protocol state and a client failing the request. See PR65731 at + . + The module now initializes the HTTP/2 protocol correctly and allows the + client to submit one request before the shutdown via a GOAWAY frame + is being announced. + - :scheme pseudo-header values, not matching the + connection scheme, are forwarded via absolute uris to the + http protocol processing to preserve semantics of the request. + Checks on combinations of pseudo-headers values/absence + have been added as described in RFC 7540. Fixes #230. + - A bug that prevented trailers (e.g. HEADER frame at the end) to be + generated in certain cases was fixed. See #233 where it prevented + gRPC responses to be properly generated. + - Request and response header values are automatically stripped of leading + and trialing space/tab characters. This is equivalent behaviour to what + Apache httpd's http/1.1 parser does. + The checks for this in nghttp2 v1.50.0+ are disabled. + - Extensive testing in production done by Alessandro Bianchi (@alexskynet) + on the v2.0.x versions for stability. Many thanks! + *) mod_proxy_http2: fixed #235 by no longer forwarding 'Host:' header when + request ':authority' is known. Improved test case that did not catch that + the previous 'fix' was incorrect. + *) mod_proxy_hcheck: hcmethod now allows for HTTP/1.1 requests using GET11, HEAD11 and/or OPTIONS11. [Jim Jagielski] diff --git a/changes-entries/DAVReadOnly_in_dav_method_propfind.txt b/changes-entries/DAVReadOnly_in_dav_method_propfind.txt deleted file mode 100644 index b018ae89503..00000000000 --- a/changes-entries/DAVReadOnly_in_dav_method_propfind.txt +++ /dev/null @@ -1,2 +0,0 @@ - *) mod_dav: Open the lock database read-only when possible. - PR 36636 [Wilson Felipe , manu] diff --git a/changes-entries/h2_proxy_content_type.txt b/changes-entries/h2_proxy_content_type.txt deleted file mode 100644 index d35f7c2ea71..00000000000 --- a/changes-entries/h2_proxy_content_type.txt +++ /dev/null @@ -1,4 +0,0 @@ - *) mod_proxy_http2: apply the standard httpd content type handling - to responses from the backend, as other proxy modules do. Fixes PR 66391. - Thanks to Jérôme Billiras for providing the patch. - [Stefan Eissing] \ No newline at end of file diff --git a/changes-entries/hc_timeouts.txt b/changes-entries/hc_timeouts.txt deleted file mode 100644 index 50992bf40ae..00000000000 --- a/changes-entries/hc_timeouts.txt +++ /dev/null @@ -1 +0,0 @@ - *) mod_proxy_hcheck: Honor worker timeout settings. [Yann Ylavic] \ No newline at end of file diff --git a/changes-entries/http2_v2.txt b/changes-entries/http2_v2.txt deleted file mode 100644 index d8261b3c0b3..00000000000 --- a/changes-entries/http2_v2.txt +++ /dev/null @@ -1,43 +0,0 @@ - *) mod_http2: version 2.0.10 of the module, synchronizing changes - with the gitgub version. This is a partial rewrite of how connections - and streams are handled. - - an APR pollset and pipes (where supported) are used to monitor - the main connection and react to IO for request/response handling. - This replaces the stuttered timed waits of earlier versions. - - H2SerializeHeaders directive still exists, but has no longer an effect. - - Clients that seemingly misbehave still get less resources allocated, - but ongoing requests are no longer disrupted. - - Fixed an issue since 1.15.24 that "Server" headers in proxied requests - were overwritten instead of preserved. [PR by @daum3ns] - - A regression in v1.15.24 was fixed that could lead to httpd child - processes not being terminated on a graceful reload or when reaching - MaxConnectionsPerChild. When unprocessed h2 requests were queued at - the time, these could stall. See #212. - - Improved information displayed in 'server-status' for H2 connections when - Extended Status is enabled. Now one can see the last request that IO - operations happened on and transferred IO stats are updated as well. - - When reaching server limits, such as MaxRequestsPerChild, the HTTP/2 connection - send a GOAWAY frame much too early on new connections, leading to invalid - protocol state and a client failing the request. See PR65731 at - . - The module now initializes the HTTP/2 protocol correctly and allows the - client to submit one request before the shutdown via a GOAWAY frame - is being announced. - - :scheme pseudo-header values, not matching the - connection scheme, are forwarded via absolute uris to the - http protocol processing to preserve semantics of the request. - Checks on combinations of pseudo-headers values/absence - have been added as described in RFC 7540. Fixes #230. - - A bug that prevented trailers (e.g. HEADER frame at the end) to be - generated in certain cases was fixed. See #233 where it prevented - gRPC responses to be properly generated. - - Request and response header values are automatically stripped of leading - and trialing space/tab characters. This is equivalent behaviour to what - Apache httpd's http/1.1 parser does. - The checks for this in nghttp2 v1.50.0+ are disabled. - - Extensive testing in production done by Alessandro Bianchi (@alexskynet) - on the v2.0.x versions for stability. Many thanks! - - *) mod_proxy_http2: fixed #235 by no longer forwarding 'Host:' header when - request ':authority' is known. Improved test case that did not catch that - the previous 'fix' was incorrect. diff --git a/changes-entries/pr35981.txt b/changes-entries/pr35981.txt deleted file mode 100644 index 9b0fe98088d..00000000000 --- a/changes-entries/pr35981.txt +++ /dev/null @@ -1,3 +0,0 @@ - *) mod_dav: mod_dav overrides dav_fs response on PUT failure. PR 35981 - [Basant Kumar Kukreja , Alejandro Alvarez - ]