Ce contenu n'est pas disponible dans la langue sélectionnée.
Chapter 1. Red Hat Software Collections 3.8
This chapter serves as an overview of the Red Hat Software Collections 3.8 content set. It provides a list of components and their descriptions, sums up changes in this version, documents relevant compatibility information, and lists known issues.
1.1. About Red Hat Software Collections
For certain applications, more recent versions of some software components are often needed in order to use their latest new features. Red Hat Software Collections is a Red Hat offering that provides a set of dynamic programming languages, database servers, and various related packages that are either more recent than their equivalent versions included in the base Red Hat Enterprise Linux system, or are available for this system for the first time.
Red Hat Software Collections 3.8 is available for Red Hat Enterprise Linux 7. For a complete list of components that are distributed as part of Red Hat Software Collections and a brief summary of their features, see Section 1.2, “Main Features”.
Red Hat Software Collections does not replace the default system tools provided with Red Hat Enterprise Linux 7. Instead, a parallel set of tools is installed in the
/opt/ directory and can be optionally enabled per application by the user using the supplied scl utility. The default versions of Perl or PostgreSQL, for example, remain those provided by the base Red Hat Enterprise Linux system.
Note
In Red Hat Enterprise Linux 8 and Red Hat Enterprise Linux 9, similar components are provided as Application Streams.
All Red Hat Software Collections components are fully supported under Red Hat Enterprise Linux Subscription Level Agreements, are functionally complete, and are intended for production use. Important bug fix and security errata are issued to Red Hat Software Collections subscribers in a similar manner to Red Hat Enterprise Linux for at least two years from the release of each major version. In each major release stream, each version of a selected component remains backward compatible. For detailed information about length of support for individual components, refer to the Red Hat Software Collections Product Life Cycle document.
1.1.1. Red Hat Developer Toolset
Red Hat Developer Toolset is a part of Red Hat Software Collections, included as a separate Software Collection. For more information about Red Hat Developer Toolset, refer to the Red Hat Developer Toolset Release Notes and the Red Hat Developer Toolset User Guide.
1.2. Main Features
Table 1.1, “Red Hat Software Collections Components” lists components that are supported at the time of the Red Hat Software Collections 3.8 release. All Software Collections are currently supported only on Red Hat Enterprise Linux 7.
| Component | Software Collection | Description |
|---|---|---|
| Red Hat Developer Toolset 12.1 | devtoolset-12 | Red Hat Developer Toolset is designed for developers working on the Red Hat Enterprise Linux platform. It provides current versions of the GNU Compiler Collection, GNU Debugger, and other development, debugging, and performance monitoring tools. For a complete list of components, see the Red Hat Developer Toolset Components table in the Red Hat Developer Toolset User Guide. |
| Red Hat Developer Toolset 12.1 | devtoolset-12 | Red Hat Developer Toolset is designed for developers working on the Red Hat Enterprise Linux platform. It provides current versions of the GNU Compiler Collection, GNU Debugger, and other development, debugging, and performance monitoring tools. For a complete list of components, see the Red Hat Developer Toolset Components table in the Red Hat Developer Toolset User Guide. |
| Perl 5.30.1 | rh-perl530 | A release of Perl, a high-level programming language that is commonly used for system administration utilities and web programming. The rh-perl530 Software Collection provides additional utilities, scripts, and database connectors for MySQL, PostgreSQL, and SQLite. It includes the DateTime Perl module and the mod_perl Apache httpd module, which is supported only with the httpd24 Software Collection. Additionally, it provides the cpanm utility for easy installation of CPAN modules, the LWP::UserAgent module for communicating with the HTTP servers, and the LWP::Protocol::https module for securing the communication. The rh-perl530 packaging is aligned with upstream; the perl530-perl package installs also core modules, while the interpreter is provided by the perl-interpreter package. |
| PHP 7.3.33 | rh-php73 | A release of PHP 7.3 with PEAR 1.10.9, APCu 5.1.17, and the Xdebug extension. |
| Python 3.8.14 | rh-python38 | The rh-python38 Software Collection contains Python 3.8, which introduces new Python modules, such as contextvars, dataclasses, or importlib.resources, new language features, improved developer experience, and performance improvements. In addition, a set of popular extension libraries is provided, including mod_wsgi (supported only together with the httpd24 Software Collection), numpy, scipy, and the psycopg2 PostgreSQL database connector. |
| Ruby 3.0.4 | rh-ruby30 | A release of Ruby 3.0. This version provides multiple performance improvements and new features, such as Ractor, Fiber Scheduler and the RBS language. Ruby 3.0 maintains source-level backward compatibility with Ruby 2.7. |
| MariaDB 10.5.16 | rh-mariadb105 | A release of MariaDB, an alternative to MySQL for users of Red Hat Enterprise Linux. For all practical purposes, MySQL is binary compatible with MariaDB and can be replaced with it without any data conversions. This version includes various new features, MariaDB Galera Cluster upgraded to version 4, and PAM plug-in version 2.0. |
| MySQL 8.0.32 | rh-mysql80 | A release of the MySQL server, which introduces a number of new security and account management features and enhancements. |
| PostgreSQL 10.23 | rh-postgresql10 | A release of PostgreSQL, which includes a significant performance improvement and a number of new features, such as logical replication using the publish and subscribe keywords, or stronger password authentication based on the SCRAM-SHA-256 mechanism. |
| PostgreSQL 12.11 | rh-postgresql12 | A release of PostgreSQL, which provides the pgaudit extension, various enhancements to partitioning and parallelism, support for the SQL/JSON path language, and performance improvements. |
| PostgreSQL 13.7 | rh-postgresql13 | A release of PostgreSQL, which enables improved query planning and introduces various performance improvements and two new packages, pg_repack and plpython3. |
| Node.js 14.21.3 | rh-nodejs14 | A release of Node.js with V8 version 8.3, a new experimental WebAssembly System Interface (WASI), and a new experimental Async Local Storage API. |
| nginx 1.20.1 | rh-nginx120 | A release of nginx, a web and proxy server with a focus on high concurrency, performance, and low memory usage. This version supports client SSL certificate validation with OCSP and improves support for HTTP/2. |
| Apache httpd 2.4.34 | httpd24 | A release of the Apache HTTP Server (httpd), including a high performance event-based processing model, enhanced SSL module and FastCGI support. The mod_auth_kerb, mod_auth_mellon, and ModSecurity modules are also included. |
| Varnish Cache 6.0.8 | rh-varnish6 | A release of Varnish Cache, a high-performance HTTP reverse proxy. This version includes support for Unix Domain Sockets (both for clients and for back-end servers), new level of the VCL language (vcl 4.1), and improved HTTP/2 support. |
| Maven 3.6.1 | rh-maven36 | A release of Maven, a software project management and comprehension tool. This release provides various enhancements and bug fixes. |
| Git 2.27.0 | rh-git227 | A release of Git, a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is its exact copy with complete revision history. This version introduces numerous enhancements; for example, the git checkout command split into git switch and git restore, and changed behavior of the git rebase command. In addition, Git Large File Storage (LFS) has been updated to version 2.11.0. |
| Redis 6.0.16 | rh-redis6 | A release of Redis 6.0, a persistent key-value database. Redis now supports SSL on all channels, Access Control List, and REdis Serialization Protocol version 3. |
| HAProxy 1.8.24 | rh-haproxy18 | A release of HAProxy 1.8, a reliable, high-performance network load balancer for TCP and HTTP-based applications. |
| JDK Mission Control 8.0.1 | rh-jmc | This Software Collection includes JDK Mission Control (JMC), a powerful profiler for HotSpot JVMs. JMC provides an advanced set of tools for efficient and detailed analysis of extensive data collected by the JDK Flight Recorder. JMC requires JDK version 11 or later to run. Target Java applications must run with at least OpenJDK version 8 so that JMC can access JDK Flight Recorder features. The rh-jmc Software Collection requires the rh-maven36 Software Collection. |
Previously released Software Collections remain available in the same distribution channels. All Software Collections, including retired components, are listed in the Table 1.2, “All Available Software Collections”. Software Collections that are no longer supported are marked with an asterisk (
*).
See the Red Hat Software Collections Product Life Cycle document for information on the length of support for individual components. For detailed information regarding previously released components, refer to the Release Notes for earlier versions of Red Hat Software Collections.
| Component | Software Collection | Availability | Architectures supported on RHEL7 |
|---|---|---|---|
| Red Hat Developer Toolset 12 Release | |||
| Red Hat Developer Toolset 12.1 | devtoolset-12 | RHEL7 | x86_64, s390x, ppc64, ppc64le |
| Components New in Red Hat Software Collections 3.8 | |||
| Red Hat Developer Toolset 11.0 | devtoolset-11 | RHEL7 | x86_64, s390x, ppc64, ppc64le |
| nginx 1.20.1 | rh-nginx120 | RHEL7 | x86_64, s390x, ppc64le |
| Redis 6.0.16 | rh-redis6 | RHEL7 | x86_64, s390x, ppc64le |
| Components Updated in Red Hat Software Collections 3.8 | |||
| JDK Mission Control 8.0.1 | rh-jmc | RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 3.7 | |||
| Red Hat Developer Toolset 10.1 | devtoolset-10* | RHEL7 | x86_64, s390x, ppc64, ppc64le |
| MariaDB 10.5.16 | rh-mariadb105 | RHEL7 | x86_64, s390x, ppc64le |
| PostgreSQL 13.7 | rh-postgresql13 | RHEL7 | x86_64, s390x, ppc64le |
| Ruby 3.0.4 | rh-ruby30 | RHEL7 | x86_64, s390x, ppc64le |
| Ruby 2.7.8 | rh-ruby27* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Ruby 2.6.10 | rh-ruby26* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.6 | |||
| Git 2.27.0 | rh-git227 | RHEL7 | x86_64, s390x, ppc64le |
| nginx 1.18.0 | rh-nginx118* | RHEL7 | x86_64, s390x, ppc64le |
| Node.js 14.21.3 | rh-nodejs14 | RHEL7 | x86_64, s390x, ppc64le |
| Apache httpd 2.4.34 | httpd24 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| PHP 7.3.33 | rh-php73 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| HAProxy 1.8.24 | rh-haproxy18 | RHEL7 | x86_64 |
| Perl 5.30.1 | rh-perl530 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Ruby 2.5.9 | rh-ruby25* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.5 | |||
| Red Hat Developer Toolset 9.1 | devtoolset-9* | RHEL7 | x86_64, s390x, aarch64, ppc64, ppc64le |
| Python 3.8.14 | rh-python38 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Varnish Cache 6.0.8 | rh-varnish6 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Apache httpd 2.4.34 (the last update for RHEL6) | httpd24 (RHEL6)* | RHEL6 | x86_64 |
| Components Last Updated in Red Hat Software Collections 3.4 | |||
| Node.js 12.22.12 | rh-nodejs12* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| nginx 1.16.1 | rh-nginx116* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| PostgreSQL 12.11 | rh-postgresql12 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Maven 3.6.1 | rh-maven36 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.3 | |||
| Red Hat Developer Toolset 8.1 | devtoolset-8* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64, ppc64le |
| MariaDB 10.3.35 | rh-mariadb103* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Redis 5.0.5 | rh-redis5* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.2 | |||
| PHP 7.2.24 | rh-php72* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| MySQL 8.0.32 | rh-mysql80 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Node.js 10.21.0 | rh-nodejs10* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| nginx 1.14.1 | rh-nginx114* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Git 2.18.4 | rh-git218* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.1 | |||
| Red Hat Developer Toolset 7.1 | devtoolset-7* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64, ppc64le |
| Perl 5.26.3 | rh-perl526* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| MongoDB 3.6.3 | rh-mongodb36* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Varnish Cache 5.2.1 | rh-varnish5* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| PostgreSQL 10.23 | rh-postgresql10 | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| PHP 7.0.27 | rh-php70* | RHEL6, RHEL7 | x86_64 |
| MySQL 5.7.24 | rh-mysql57* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 3.0 | |||
| PHP 7.1.8 | rh-php71* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| nginx 1.12.1 | rh-nginx112* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Python 3.6.12 | rh-python36* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Maven 3.5.0 | rh-maven35* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| MariaDB 10.2.22 | rh-mariadb102* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| PostgreSQL 9.6.19 | rh-postgresql96* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| MongoDB 3.4.9 | rh-mongodb34* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Node.js 8.17.0 | rh-nodejs8* | RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Components Last Updated in Red Hat Software Collections 2.4 | |||
| Red Hat Developer Toolset 6.1 | devtoolset-6* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64, ppc64le |
| Scala 2.10.6 | rh-scala210* | RHEL7 | x86_64 |
| nginx 1.10.2 | rh-nginx110* | RHEL6, RHEL7 | x86_64 |
| Node.js 6.11.3 | rh-nodejs6* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Ruby 2.4.6 | rh-ruby24* | RHEL6, RHEL7 | x86_64 |
| Ruby on Rails 5.0.1 | rh-ror50* | RHEL6, RHEL7 | x86_64 |
| Eclipse 4.6.3 | rh-eclipse46* | RHEL7 | x86_64 |
| Python 2.7.18 | python27* | RHEL6*, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Thermostat 1.6.6 | rh-thermostat16* | RHEL6, RHEL7 | x86_64 |
| Maven 3.3.9 | rh-maven33* | RHEL6, RHEL7 | x86_64 |
| Common Java Packages | rh-java-common* | RHEL6, RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 2.3 | |||
| Git 2.9.3 | rh-git29* | RHEL6, RHEL7 | x86_64, s390x, aarch64, ppc64le |
| Redis 3.2.4 | rh-redis32* | RHEL6, RHEL7 | x86_64 |
| Perl 5.24.0 | rh-perl524* | RHEL6, RHEL7 | x86_64 |
| Python 3.5.1 | rh-python35* | RHEL6, RHEL7 | x86_64 |
| MongoDB 3.2.10 | rh-mongodb32* | RHEL6, RHEL7 | x86_64 |
| Ruby 2.3.8 | rh-ruby23* | RHEL6, RHEL7 | x86_64 |
| PHP 5.6.25 | rh-php56* | RHEL6, RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 2.2 | |||
| Red Hat Developer Toolset 4.1 | devtoolset-4* | RHEL6, RHEL7 | x86_64 |
| MariaDB 10.1.29 | rh-mariadb101* | RHEL6, RHEL7 | x86_64 |
| MongoDB 3.0.11 upgrade collection | rh-mongodb30upg* | RHEL6, RHEL7 | x86_64 |
| Node.js 4.6.2 | rh-nodejs4* | RHEL6, RHEL7 | x86_64 |
| PostgreSQL 9.5.14 | rh-postgresql95* | RHEL6, RHEL7 | x86_64 |
| Ruby on Rails 4.2.6 | rh-ror42* | RHEL6, RHEL7 | x86_64 |
| MongoDB 2.6.9 | rh-mongodb26* | RHEL6, RHEL7 | x86_64 |
| Thermostat 1.4.4 | thermostat1* | RHEL6, RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 2.1 | |||
| Varnish Cache 4.0.3 | rh-varnish4* | RHEL6, RHEL7 | x86_64 |
| nginx 1.8.1 | rh-nginx18* | RHEL6, RHEL7 | x86_64 |
| Node.js 0.10 | nodejs010* | RHEL6, RHEL7 | x86_64 |
| Maven 3.0.5 | maven30* | RHEL6, RHEL7 | x86_64 |
| V8 3.14.5.10 | v8314* | RHEL6, RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 2.0 | |||
| Red Hat Developer Toolset 3.1 | devtoolset-3* | RHEL6, RHEL7 | x86_64 |
| Perl 5.20.1 | rh-perl520* | RHEL6, RHEL7 | x86_64 |
| Python 3.4.2 | rh-python34* | RHEL6, RHEL7 | x86_64 |
| Ruby 2.2.9 | rh-ruby22* | RHEL6, RHEL7 | x86_64 |
| Ruby on Rails 4.1.5 | rh-ror41* | RHEL6, RHEL7 | x86_64 |
| MariaDB 10.0.33 | rh-mariadb100* | RHEL6, RHEL7 | x86_64 |
| MySQL 5.6.40 | rh-mysql56* | RHEL6, RHEL7 | x86_64 |
| PostgreSQL 9.4.14 | rh-postgresql94* | RHEL6, RHEL7 | x86_64 |
| Passenger 4.0.50 | rh-passenger40* | RHEL6, RHEL7 | x86_64 |
| PHP 5.4.40 | php54* | RHEL6, RHEL7 | x86_64 |
| PHP 5.5.21 | php55* | RHEL6, RHEL7 | x86_64 |
| nginx 1.6.2 | nginx16* | RHEL6, RHEL7 | x86_64 |
| DevAssistant 0.9.3 | devassist09* | RHEL6, RHEL7 | x86_64 |
| Components Last Updated in Red Hat Software Collections 1 | |||
| Git 1.9.4 | git19* | RHEL6, RHEL7 | x86_64 |
| Perl 5.16.3 | perl516* | RHEL6, RHEL7 | x86_64 |
| Python 3.3.2 | python33* | RHEL6, RHEL7 | x86_64 |
| Ruby 1.9.3 | ruby193* | RHEL6, RHEL7 | x86_64 |
| Ruby 2.0.0 | ruby200* | RHEL6, RHEL7 | x86_64 |
| Ruby on Rails 4.0.2 | ror40* | RHEL6, RHEL7 | x86_64 |
| MariaDB 5.5.53 | mariadb55* | RHEL6, RHEL7 | x86_64 |
| MongoDB 2.4.9 | mongodb24* | RHEL6, RHEL7 | x86_64 |
| MySQL 5.5.52 | mysql55* | RHEL6, RHEL7 | x86_64 |
| PostgreSQL 9.2.18 | postgresql92* | RHEL6, RHEL7 | x86_64 |
Legend:
- RHEL6 – Red Hat Enterprise Linux 6
- RHEL7 – Red Hat Enterprise Linux 7
- x86_64 – AMD and Intel 64-bit architectures
- s390x – The 64-bit IBM Z architecture
- aarch64 – The 64-bit ARM architecture
- ppc64 – IBM POWER, big endian
- ppc64le – IBM POWER, little endian
- * – Retired component; this Software Collection is no longer supported
The tables above list the latest versions available through asynchronous updates.
Note that Software Collections released in Red Hat Software Collections 2.0 and later include a
rh- prefix in their names.
Eclipse is available as a part of the Red Hat Developer Tools offering.
1.3. Changes in Red Hat Software Collections 3.8
1.3.1. Overview
Architectures
The Red Hat Software Collections offering contains packages for Red Hat Enterprise Linux 7 running on the following architectures:
- AMD and Intel 64-bit architectures
- 64-bit IBM Z
- IBM POWER, little endian
For a full list of components and their availability, see Table 1.2, “All Available Software Collections”.
New Software Collections
Red Hat Software Collections 3.8 adds the following new Software Collections:
- devtoolset-12 (available since November 2022) — see Section 1.3.2, “Changes in Red Hat Developer Toolset 12”
- devtoolset-11 — see Section 1.3.3, “Changes in Red Hat Developer Toolset 11”
- rh-nginx120 — see Section 1.3.4, “Changes in nginx”
- rh-redis6 — see Section 1.3.5, “Changes in Redis”
All new Software Collections are available only for Red Hat Enterprise Linux 7.
Updated Software Collections
The following component has been updated in Red Hat Software Collections 3.8:
- rh-jmc — see Section 1.3.6, “Changes in JDK Mission Control”
- httpd24 (asynchronous update) — see Section 1.3.7, “Changes in Apache httpd (asynchronous update)”
Red Hat Software Collections Container Images
The following container images are new in Red Hat Software Collections 3.8:
- rhscl/devtoolset-12-toolchain-rhel7 (available since November 2022)
- rhscl/devtoolset-12-perftools-rhel7 (available since November 2022)
- rhscl/nginx-120-rhel7
- rhscl/redis-6-rhel7
For more information about Red Hat Software Collections container images, see Section 3.4, “Red Hat Software Collections Container Images”.
1.3.2. Changes in Red Hat Developer Toolset 12
1.3.2.1. Changes in Red Hat Developer Toolset 12.0
The following components have been upgraded in Red Hat Developer Toolset 12.0 compared to the previous release:
- GCC to version 12.1.1
- annobin to version 10.76
- elfutils to version 0.187
- GDB to version 11.2
- strace to version 5.18
- SystemTap to version 4.7
- Valgrind to version 3.19.0
- Dyninst to version 12.1.0
In addition, a bug fix update is available for binutils.
For detailed changes in Red Hat Developer Toolset 12.0, see the Red Hat Developer Toolset User Guide.
1.3.2.2. Changes in Red Hat Developer Toolset 12.1
The following components have been upgraded in Red Hat Developer Toolset 12.1:
- GCC to version 12.2.1
- annobin to version 11.08
In addition, a security update is available for binutils.
For more information about Red Hat Developer Toolset 12.1, see the Red Hat Developer Toolset User Guide.
1.3.3. Changes in Red Hat Developer Toolset 11
The following components have been upgraded in Red Hat Developer Toolset 12.1 compared to the previous release:
- GCC to version 11.2.1
- binutils to version 2.36.1
- elfutils to version 0.185
- dwz to version 0.14
- GDB to version 10.2
- strace to version 5.13
- SystemTap to version 4.5
- Valgrind to version 3.17.0
- Dyninst to version 11.0.0
- make to version 4.3
- annobin to version 9.82
For detailed information on changes in 12.1, see the Red Hat Developer Toolset User Guide.
1.3.4. Changes in nginx
The new rh-nginx120 Software Collection introduces nginx 1.20.1, which provides a number of bug and security fixes, new features, and enhancements over version 1.18.
New features:
- nginx now supports client SSL certificate validation with Online Certificate Status Protocol (OCSP).
- nginx now supports cache clearing based on the minimum amount of free space. This support is implemented as the
min_freeparameter of theproxy_cache_pathdirective. - A new
ngx_stream_set_modulemodule has been added, which enables you to set a value for a variable.
Enhanced directives:
- Multiple new directives are now available, such as
ssl_conf_commandandssl_reject_handshake. - The
proxy_cookie_flagsdirective now supports variables.
Improved support for HTTP/2:
- The
ngx_http_v2module now includes thelingering_close,lingering_time,lingering_timeoutdirectives. - Handling connections in HTTP/2 has been aligned with HTTP/1.x. From nginx 1.20, use the
keepalive_timeoutandkeepalive_requestsdirectives instead of the removedhttp2_recv_timeout,http2_idle_timeout, andhttp2_max_requestsdirectives.
For more information regarding changes in nginx, refer to the upstream release notes.
For migration instructions, see Section 5.4, “Migrating to nginx 1.20”.
1.3.5. Changes in Redis
The new rh-redis6 Software Collection includes Redis 6.0.16. This version provides multiple enhancements and bug fixes over version 5.0.5 distributed with an earlier Red Hat Software Collections release. Notable changes over Redis 5 include:
- Redis now supports SSL on all channels.
- Redis now supports Access Control List (ACL), which defines user permissions for command calls and key pattern access.
- Redis now supports REdis Serialization Protocol version 3 (RESP3), which returns more semantical replies.
- Redis can now optionally use threads to handle I/O.
- Redis now offers server-side support for client-side caching of key values.
- The Redis active expire cycle has been improved to enable faster eviction of expired keys.
For migration and compatibility notes, see Section 5.5, “Migrating to Redis 6”.
For detailed changes in Redis, see the upstream release notes.
1.3.6. Changes in JDK Mission Control
JDK Mission Control (JMC), provided by the rh-jmc Software Collection, has been upgraded to version 8.0.1, which provides bug and security fixes.
1.3.7. Changes in Apache httpd (asynchronous update)
To fix CVE-2022-29404, the default value for the
LimitRequestBody directive in the Apache HTTP Server has been changed from 0 (unlimited) to 1 GiB with the release of the RHSA-2022:6753 advisory.
On systems where the value of
LimitRequestBody is not explicitly specified in an httpd configuration file, updating the httpd package sets LimitRequestBody to the default value of 1 GiB. As a consequence, if the total size of the HTTP request body exceeds this 1 GiB default limit, httpd returns the 413 Request Entity Too Large error code.
If the new default allowed size of an HTTP request message body is insufficient for your use case, update your httpd configuration files within the respective context (server, per-directory, per-file, or per-location) and set your preferred limit in bytes. For example, to set a new 2 GiB limit, use:
LimitRequestBody 2147483648
Systems already configured to use any explicit value for the
LimitRequestBody directive are unaffected by this change.
1.4. Compatibility Information
Red Hat Software Collections 3.8 is available for all supported releases of Red Hat Enterprise Linux 7 on AMD and Intel 64-bit architectures, 64-bit IBM Z, and IBM POWER, little endian.
Certain previously released components are available also for the 64-bit ARM architecture.
For a full list of available components, see Table 1.2, “All Available Software Collections”.
1.5. Known Issues
rh-mariadbcomponent- The rh-mariadb103 Software Collection provides the Pluggable Authentication Modules (PAM) plug-in version 1.0. The rh-mariadb105 Software Collection provides the plug-in versions 1.0 and 2.0, version 2.0 is the default. The PAM plug-in version 1.0 in MariaDB does not work. To work around this problem, use the PAM plug-in version 2.0 provided by rh-mariadb105.
rh-ruby27component, BZ#1836201- When a custom script requires the Psych YAML parser and afterwards uses the
Gem.load_yamlmethod, running the script fails with the following error message:superclass mismatch for class Mark (TypeError)
To work around this problem, add thegem 'psych'line to the script somewhere above therequire 'psych'line:... gem 'psych' ... require 'psych' Gem.load_yaml
- multiple components, BZ#1716378
- Certain files provided by the Software Collections debuginfo packages might conflict with the corresponding debuginfo package files from the base Red Hat Enterprise Linux system or from other versions of Red Hat Software Collections components. For example, the python27-python-debuginfo package files might conflict with the corresponding files from the python-debuginfo package installed on the core system. Similarly, files from the httpd24-mod_auth_mellon-debuginfo package might conflict with similar files provided by the base system mod_auth_mellon-debuginfo package. To work around this problem, uninstall the base system debuginfo package prior to installing the Software Collection debuginfo package.
rh-mysql80component, BZ#1646363- The
mysql-connector-javadatabase connector does not work with the MySQL 8.0 server. To work around this problem, use themariadb-java-clientdatabase connector from the rh-mariadb103 Software Collection. rh-mysql80component, BZ#1646158- The default character set has been changed to
utf8mb4in MySQL 8.0 but this character set is unsupported by thephp-mysqlnddatabase connector. Consequently,php-mysqlndfails to connect in the default configuration. To work around this problem, specify a known character set as a parameter of the MySQL server configuration. For example, modify the/etc/opt/rh/rh-mysql80/my.cnf.d/mysql-server.cnffile to read:[mysqld] character-set-server=utf8
httpd24component, BZ#1429006- Since httpd 2.4.27, the
mod_http2module is no longer supported with the defaultpreforkMulti-Processing Module (MPM). To enable HTTP/2 support, edit the configuration file at/opt/rh/httpd24/root/etc/httpd/conf.modules.d/00-mpm.confand switch to theeventorworkerMPM.Note that the HTTP/2 server-push feature does not work on the 64-bit ARM architecture, 64-bit IBM Z, and IBM POWER, little endian. -
httpd24component, BZ#1224763 - When using the
mod_proxy_fcgimodule with FastCGI Process Manager (PHP-FPM), httpd uses port8000for the FastCGI protocol by default instead of the correct port9000. To work around this problem, specify the correct port explicitly in configuration. httpd24component, BZ#1382706- When SELinux is enabled, the
LD_LIBRARY_PATHenvironment variable is not passed through to CGI scripts invoked by httpd. As a consequence, in some cases it is impossible to invoke executables from Software Collections enabled in the/opt/rh/httpd24/service-environmentfile from CGI scripts run by httpd. To work around this problem, setLD_LIBRARY_PATHas desired from within the CGI script. -
httpd24component - Compiling external applications against the Apache Portable Runtime (APR) and APR-util libraries from the httpd24 Software Collection is not supported. The LD_LIBRARY_PATH environment variable is not set in httpd24 because it is not required by any application in this Software Collection.
scl-utilscomponent- In Red Hat Enterprise Linux 7.5 and earlier, due to an architecture-specific macro bug in the scl-utils package, the
<collection>/root/usr/lib64/directory does not have the correct package ownership on the 64-bit ARM architecture and on IBM POWER, little endian. As a consequence, this directory is not removed when a Software Collection is uninstalled. To work around this problem, manually delete<collection>/root/usr/lib64/when removing a Software Collection. mavencomponent- When the user has installed both the Red Hat Enterprise Linux system version of maven-local package and the rh-maven*-maven-local package, XMvn, a tool used for building Java RPM packages, run from the Maven Software Collection tries to read the configuration file from the base system and fails. To work around this problem, uninstall the maven-local package from the base Red Hat Enterprise Linux system.
-
perlcomponent - It is impossible to install more than one
mod_perl.solibrary. As a consequence, it is not possible to use themod_perlmodule from more than one Perl Software Collection. -
httpd,mariadb,mysql,nodejs,perl,php,python, andrubycomponents, BZ#1072319 - When uninstalling the httpd24, rh-mariadb*, rh-mysql*, rh-nodejs*, rh-perl*, rh-php*, python27, rh-python*, or rh-ruby* packages, the order of uninstalling can be relevant due to ownership of dependent packages. As a consequence, some directories and files might not be removed properly and might remain on the system.
-
mariadb,mysqlcomponents, BZ#1194611 - Since MariaDB 10 and MySQL 5.6, the rh-mariadb*-mariadb-server and rh-mysql*-mysql-server packages no longer provide the
testdatabase by default. Although this database is not created during initialization, the grant tables are prefilled with the same values as whentestwas created by default. As a consequence, upon a later creation of thetestortest_*databases, these databases have less restricted access rights than is default for new databases.Additionally, when running benchmarks, therun-all-testsscript no longer works out of the box with example parameters. You need to create a test database before running the tests and specify the database name in the--databaseparameter. If the parameter is not specified,testis taken by default but you need to make sure thetestdatabase exists. -
mariadb,mysql,postgresqlcomponents - Red Hat Software Collections contains the MySQL 8.0, MariaDB 10.3, MariaDB 10.5, PostgreSQL 10, PostgreSQL 12, and PostgreSQL 13 database servers. The core Red Hat Enterprise Linux 7 provides earlier versions of the MariaDB and PostgreSQL databases (client library and daemon). Client libraries are also used in database connectors for dynamic languages, libraries, and so on.The client library packaged in the Red Hat Software Collections database packages in the PostgreSQL component is not supposed to be used, as it is included only for purposes of server utilities and the daemon. Users are instead expected to use the system library and the database connectors provided with the core system.A protocol, which is used between the client library and the daemon, is stable across database versions, so, for example, using the PostgreSQL 10 client library with the PostgreSQL 12 or 13 daemon works as expected.
-
mariadb,mysqlcomponents - MariaDB and MySQL do not make use of the
/opt/provider/collection/rootprefix when creating log files. Note that log files are saved in the/var/opt/provider/collection/log/directory, not in/opt/provider/collection/root/var/log/.
1.6. Other Notes
-
rh-ruby*,rh-python*,rh-php*components - Using Software Collections on a read-only NFS has several limitations.
- Ruby gems cannot be installed while the rh-ruby* Software Collection is on a read-only NFS. Consequently, for example, when the user tries to install the ab gem using the
gem install abcommand, an error message is displayed, for example:ERROR: While executing gem ... (Errno::EROFS) Read-only file system @ dir_s_mkdir - /opt/rh/rh-ruby22/root/usr/local/share/gemsThe same problem occurs when the user tries to update or install gems from an external source by running thebundle updateorbundle installcommands. - When installing Python packages on a read-only NFS using the Python Package Index (PyPI), running the
pipcommand fails with an error message similar to this:Read-only file system: '/opt/rh/rh-python34/root/usr/lib/python3.4/site-packages/ipython-3.1.0.dist-info'
- Installing packages from PHP Extension and Application Repository (PEAR) on a read-only NFS using the
pearcommand fails with the error message:Cannot install, php_dir for channel "pear.php.net" is not writeable by the current user
This is an expected behavior. -
httpdcomponent - Language modules for Apache are supported only with the Red Hat Software Collections version of Apache httpd and not with the Red Hat Enterprise Linux system versions of httpd. For example, the
mod_wsgimodule from the rh-python35 Collection can be used only with the httpd24 Collection. - all components
- Since Red Hat Software Collections 2.0, configuration files, variable data, and runtime data of individual Collections are stored in different directories than in previous versions of Red Hat Software Collections.
-
coreutils,util-linux,screencomponents - Some utilities, for example, su, login, or screen, do not export environment settings in all cases, which can lead to unexpected results. It is therefore recommended to use sudo instead of su and set the
env_keepenvironment variable in the/etc/sudoersfile. Alternatively, you can run commands in a reverse order; for example:su -l postgres -c "scl enable rh-postgresql94 psql"instead ofscl enable rh-postgresql94 bashsu -l postgres -c psqlWhen using tools like screen or login, you can use the following command to preserve the environment settings:source /opt/rh/<collection_name>/enable -
pythoncomponent - When the user tries to install more than one scldevel package from the python27 and rh-python* Software Collections, a transaction check error message is returned. This is an expected behavior because the user can install only one set of the macro files provided by the packages (
%scl_python,%scl_prefix_python). -
phpcomponent - When the user tries to install more than one scldevel package from the rh-php* Software Collections, a transaction check error message is returned. This is an expected behavior because the user can install only one set of the macro files provided by the packages (
%scl_php,%scl_prefix_php). -
rubycomponent - When the user tries to install more than one scldevel package from the rh-ruby* Software Collections, a transaction check error message is returned. This is an expected behavior because the user can install only one set of the macro files provided by the packages (
%scl_ruby,%scl_prefix_ruby). -
perlcomponent - When the user tries to install more than one scldevel package from the rh-perl* Software Collections, a transaction check error message is returned. This is an expected behavior because the user can install only one set of the macro files provided by the packages (
%scl_perl,%scl_prefix_perl). -
nginxcomponent - When the user tries to install more than one scldevel package from the rh-nginx* Software Collections, a transaction check error message is returned. This is an expected behavior because the user can install only one set of the macro files provided by the packages (
%scl_nginx,%scl_prefix_nginx). -
pythoncomponent - To mitigate the Web Cache Poisoning CVE-2021-23336 in the Python
urlliblibrary, the default separator for theurllib.parse.parse_qslandurllib.parse.parse_qsfunctions is being changed from both ampersand (&) and semicolon (;) to only an ampersand.This change has been implemented in the python27 and rh-python38 Software Collections with the release of the RHSA-2021:3252 and RHSA-2021:3254 advisories.The change of the default separator is potentially backwards incompatible, therefore Red Hat provides a way to configure the behavior in Python packages where the default separator has been changed. In addition, the affectedurllibparsing functions issue a warning if they detect that a customer's application has been affected by the change.For more information, see the Mitigation of Web Cache Poisoning in the Python urllib library (CVE-2021-23336) Knowledgebase article. -
pythoncomponent - The release of the RHSA-2021:3254 advisory introduces the following change in the rh-python38 Software Collection:To mitigate CVE-2021-29921, the Python
ipaddressmodule now rejects IPv4 addresses with leading zeros with anAddressValueError: Leading zeros are not permittederror.Customers who rely on the previous behavior can pre-process their IPv4 address inputs to strip the leading zeros off. For example:>>> def reformat_ip(address): return '.'.join(part.lstrip('0') if part != '0' else part for part in address.split('.')) >>> reformat_ip('0127.0.0.1') '127.0.0.1'To strip the leading zeros off with an explicit loop for readability, use:def reformat_ip(address): parts = [] for part in address.split('.'): if part != "0": part = part.lstrip('0') parts.append(part) return '.'.join(parts)
1.7. Deprecated Functionality
httpd24component, BZ#1434053- Previously, in an SSL/TLS configuration requiring name-based SSL virtual host selection, the
mod_sslmodule rejected requests with a400 Bad Requesterror, if the host name provided in theHost:header did not match the host name provided in a Server Name Indication (SNI) header. Such requests are no longer rejected if the configured SSL/TLS security parameters are identical between the selected virtual hosts, in-line with the behavior of upstreammod_ssl.
