subject:"Re\: Anyone working on HTTP\/2 in apache2 charm\?"

Re: Anyone working on HTTP/2 in apache2 charm?

2017-08-16 Thread Andreas Hasenack

On Wed, Aug 16, 2017 at 1:21 PM, Robin Winslow  wrote:

> Hi Robie
>
> I only noticed yesterday that HTTP/2 support graduated from experimental
> mode to "fully production ready" in Apache2 v2.4.26
> , released June 13th.
>
> Is there a likely timeline for building HTTP/2 support into the version of
> Apache2 provided with Xenial (currently at 2.4.18)?
>

https://bugs.launchpad.net/ubuntu/+source/nghttp2/+bug/1687454 is the MIR
bug to bring the nghttp2 library into main, and then apache can builddepend
on it.
-- 
Juju mailing list
Juju@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/juju

Re: Anyone working on HTTP/2 in apache2 charm?

2017-08-16 Thread Robin Winslow

Hi Robie

I only noticed yesterday that HTTP/2 support graduated from experimental
mode to "fully production ready" in Apache2 v2.4.26
, released June 13th.

Is there a likely timeline for building HTTP/2 support into the version of
Apache2 provided with Xenial (currently at 2.4.18)?

Let me know if there's anything I could do to help.

Thanks,
Robin

On Fri, May 13, 2016 at 7:10 PM Robin Winslow  wrote:

> Unfortunately what I consider the most useful feature of HTTP/2, server
> push, isn't currently included in nginx's implementation.
>
> On Fri, 13 May 2016 17:33 Robie Basak,  wrote:
>
>> Hi Mark,
>>
>> On Tue, May 10, 2016 at 07:59:02AM -0700, Mark Shuttleworth wrote:
>> > Oh, I would think we definitely want to enable http2 in Xenial by
>> > default! Jay can you take care of that?
>>
>> HTTP/2 support in Apache is still considered experimental by
>> upstream[1], so we didn't enable it in the LTS under security team
>> guidance[2]. Support is available in nginx though, as that went stable
>> in time.
>>
>> We intend to enable HTTP/2 support for Apache in an SRU as soon as
>> upstream consider it stable and no longer experimental.
>>
>> The concern is that both implementation and configuration directives may
>> change, and we can't realistically follow this in the LTS timeframe
>> without breaking production users. This in turn would compromise
>> security since upstream security patches will no longer apply and be
>> tough to backport.
>>
>> A weighing up of regression risk to users will need to influence any
>> future SRU decision to enable support, of course.
>>
>> Robie
>>
>> [1] https://httpd.apache.org/docs/2.4/mod/mod_http2.html
>> [2]
>> https://wiki.ubuntu.com/XenialXerus/ReleaseNotes#HTTP.2F2_support_in_Apache_httpd
>> --
>> Juju mailing list
>> Juju@lists.ubuntu.com
>> Modify settings or unsubscribe at:
>> https://lists.ubuntu.com/mailman/listinfo/juju
>>
>
-- 
Juju mailing list
Juju@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/juju

Re: Anyone working on HTTP/2 in apache2 charm?

2016-05-13 Thread Robin Winslow

Unfortunately what I consider the most useful feature of HTTP/2, server
push, isn't currently included in nginx's implementation.

On Fri, 13 May 2016 17:33 Robie Basak,  wrote:

> Hi Mark,
>
> On Tue, May 10, 2016 at 07:59:02AM -0700, Mark Shuttleworth wrote:
> > Oh, I would think we definitely want to enable http2 in Xenial by
> > default! Jay can you take care of that?
>
> HTTP/2 support in Apache is still considered experimental by
> upstream[1], so we didn't enable it in the LTS under security team
> guidance[2]. Support is available in nginx though, as that went stable
> in time.
>
> We intend to enable HTTP/2 support for Apache in an SRU as soon as
> upstream consider it stable and no longer experimental.
>
> The concern is that both implementation and configuration directives may
> change, and we can't realistically follow this in the LTS timeframe
> without breaking production users. This in turn would compromise
> security since upstream security patches will no longer apply and be
> tough to backport.
>
> A weighing up of regression risk to users will need to influence any
> future SRU decision to enable support, of course.
>
> Robie
>
> [1] https://httpd.apache.org/docs/2.4/mod/mod_http2.html
> [2]
> https://wiki.ubuntu.com/XenialXerus/ReleaseNotes#HTTP.2F2_support_in_Apache_httpd
> --
> Juju mailing list
> Juju@lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/juju
>
-- 
Juju mailing list
Juju@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/juju

Re: Anyone working on HTTP/2 in apache2 charm?

2016-05-13 Thread Robie Basak

Hi Mark,

On Tue, May 10, 2016 at 07:59:02AM -0700, Mark Shuttleworth wrote:
> Oh, I would think we definitely want to enable http2 in Xenial by
> default! Jay can you take care of that?

HTTP/2 support in Apache is still considered experimental by
upstream[1], so we didn't enable it in the LTS under security team
guidance[2]. Support is available in nginx though, as that went stable
in time.

We intend to enable HTTP/2 support for Apache in an SRU as soon as
upstream consider it stable and no longer experimental.

The concern is that both implementation and configuration directives may
change, and we can't realistically follow this in the LTS timeframe
without breaking production users. This in turn would compromise
security since upstream security patches will no longer apply and be
tough to backport.

A weighing up of regression risk to users will need to influence any
future SRU decision to enable support, of course.

Robie

[1] https://httpd.apache.org/docs/2.4/mod/mod_http2.html
[2] 
https://wiki.ubuntu.com/XenialXerus/ReleaseNotes#HTTP.2F2_support_in_Apache_httpd

signature.asc
Description: PGP signature
-- 
Juju mailing list
Juju@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/juju

Re: Anyone working on HTTP/2 in apache2 charm?

2016-05-09 Thread Jay Wren

tl;dr: yes, simply `juju set apache2 apt-source:ppa:ondrej/apache2` and `juju
set apache2 enable_modules=ssl,http2`

Given that the charm installs apache2 from ubuntu repos, its pretty easy to
extend the charm to allow it to enabled a PPA. I did this back in October:
http://jrwren.wrenfam.com/blog/2015/10/26/juju-makes-getting-to-http2-easier/

Sometime later that was updated to be more friendly and merged into the
apache2 trusty charm: https://jujucharms.com/apache2/trusty/20

AFAIK, Apache2 shipped in Xenial without http2 enabled for security
reasons, it is not the default for good reasons. For non-production use,
the ondrej/apache2 PPA works very well.

--
Jay Wren

On Mon, May 9, 2016 at 12:22 PM, Robin Winslow  wrote:

> I spent the weekend playing around with getting mod_http2
>  working in Apache2
> on my laptop.
>
> Although HTTP/2  is supported in the xenial
> version of nginx, Apache2 in Xenial doesn't currently
> 
> support mod_http2. To get it, you have to compile Apache yourself
>  with the --enable-http2
> option.
>
> Does anyone know of any existing work on adding HTTP/2 support to the
> Apache2 charm?
>
> If not, I may have a go at extending it myself.
>
> --
> Juju mailing list
> Juju@lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/juju
>
>
-- 
Juju mailing list
Juju@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/juju

Re: Anyone working on HTTP/2 in apache2 charm?

Re: Anyone working on HTTP/2 in apache2 charm?

Re: Anyone working on HTTP/2 in apache2 charm?

Re: Anyone working on HTTP/2 in apache2 charm?

Re: Anyone working on HTTP/2 in apache2 charm?

5 matches

Site Navigation

Mail list logo

Footer information