flood STATUS: -*-text-*-
Last modified at [$Date: 2002/09/06 10:24:42 $]
Release:
1.0: Released July 23, 2002
milestone-03: Tagged January 16, 2002
ASF-transfer: Released July 17, 2001
milestone-02: Tagged August 13,
httpd-test/perl-framework STATUS: -*-text-*-
Last modified at [$Date: 2002/03/09 05:22:48 $]
Stuff to do:
* finish the t/TEST exit code issue (ORed with 0x2C if
framework failed)
* change existing tests that frob the DocumentRoot (e.g.,
Hi,
Apologies for posting it here, but haven't got any
response in [EMAIL PROTECTED]
I am using APR library on Linux system where it uses
SystemV type locking mechanism. I am seeing a problem
with inter process locking- apr_proc_mutex_XXX
functions.
I want to create a inter process lock to
Date: Wed, 26 Mar 2003 15:30:53 -0500
From: Brass, Phil (ISS Atlanta) [EMAIL PROTECTED]
OK, so given that Date and Last-Modified are required response headers
and everybody pretty much hates the idea of removing them, and that
removing the Server header amounts to nothing more than security by
William A. Rowe, Jr. wrote:
Finally an answer I can contribute to from Win32's perspective ;-)
We extract the version into all compiled binaries by invoking build/win32ver.awk,
with a command such as;
awk -f ./build/win32/win32ver.awk libhttpd.dll Apache HTTP Server Core ./include/ap_release.h
From: Martin Kutschker [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 27, 2003 10:13 AM
Date: Wed, 26 Mar 2003 15:30:53 -0500
From: Brass, Phil (ISS Atlanta) [EMAIL PROTECTED]
Removing the server header won't hurt.
Perhaps you could try to make the ordering od the added headers quasi
[EMAIL PROTECTED] wrote:
nd 2003/03/26 17:10:59
Modified:.Tag: APACHE_2_0_BRANCH STATUS
Log:
I consider these important enough to treat them as showstoppers.
RELEASE SHOWSTOPPERS:
+* Forward port: Escape special characters (especially control
+
Here is a dump of the cgi_req_t (64-bit Solaris):-
0x7770: 0x0001 0x 0x 0x04d1
0x7780: 0x 0x 0x 0x
0x7790: 0x 0x 0x 0x0051
0x77a0: 0x
Martin Kutschker wrote:
Removing the server header won't hurt.
Removing the server header is a protocol viloation, and serves no purpose.
Regards,
Graham
--
-
[EMAIL PROTECTED] There's a moon
over
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under high load,
we're seeing lots of connection refused to the cgi daemon in the error log.
Am I right in saying mod_cgid forks new processes as they're required?
Would a pre-forking cgi daemon be worth implementing?
cheers,
Steve
use mod_cgid from HEAD an example...
mod_cgid.c: In function `cgid_server':
mod_cgid.c:694: warning: cast from pointer to integer of different size
mod_cgid.c:767: warning: cast to pointer from integer of different size
mod_cgid.c: In function `close_unix_socket':
mod_cgid.c:1048: warning: cast
can somebody confirm my results?
apxs -c mod_foo.c
first breakage is due to libtool referenced from wrong directory (apxs
looks for libtool in apache's installbuilddir instead of apr's)
once that is fixed, now only Apache includes are found so still nothing
will compile since we need to find
* Jeff Trawick ([EMAIL PROTECTED]) wrote :
can somebody confirm my results?
apxs -c mod_foo.c
first breakage is due to libtool referenced from wrong directory (apxs
looks for libtool in apache's installbuilddir instead of apr's)
once that is fixed, now only Apache includes are found so
Steve Sabljak wrote:
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under high load,
we're seeing lots of connection refused to the cgi daemon in the error log.
Am I right in saying mod_cgid forks new processes as they're required?
Would a pre-forking cgi daemon be worth
Steve Sabljak wrote:
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under high load,
we're seeing lots of connection refused to the cgi daemon in the error log.
Am I right in saying mod_cgid forks new processes as they're required?
Would a pre-forking cgi daemon be worth
Hi Ian,
I'm aware of fastcgi and mod_{php,perl}. We currently run some pure cgis
with apache 1.3.27 under high load and have found apache 2.0.43's pure cgi
serving
ability not able to match apache 1's under the same load. Over time we will
be moving
the last few remaining pure cgi's to
Hi all,
When I build HEAD of httpd v2.0 like below, ./configure bombs out
claiming a lack of random number support in APR. Can anyone else confirm
this or is it just me?
./configure -C --prefix=/etc/httpd --exec-prefix=/usr --bindir=/usr/bin
--sbindir=/usr/sbin --mandir=/usr/share/man
Jeff Trawick wrote:
Steve Sabljak wrote:
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under
high load,
we're seeing lots of connection refused to the cgi daemon in the error
log.
a couple of alternative ideas that might be simpler to implement:
a) multiple cgid daemons
each
* Jeff Trawick wrote:
+* Forward port: Escape special characters (especially control
+ characters) in mod_log_config to make a clear distinction between
+ client-supplied strings (with special characters) and server-side
+ strings. This was already introduced in
At 11:01 PM +0100 3/26/03, Andre Schild wrote:
But currently we are at the stage that the SSLMutex passes a NULL
filename in for the mutexname and assumes the apr will generate
something.
It's more correct to say that it assumes APR does the right thing, which
it does. Under Win32 it creates an
Graham Leggett wrote:
When I build HEAD of httpd v2.0 like below, ./configure bombs out
claiming a lack of random number support in APR. Can anyone else confirm
this or is it just me?
checking whether to enable mod_auth_digest... checking dependencies
You need APR random support to use
Jeff Trawick wrote:
Steve Sabljak wrote:
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under
high load,
we're seeing lots of connection refused to the cgi daemon in the error
log.
I think this begs for some scalability testing. I'll be happy to do it when I
get back from AZ/UT
But currently we are at the stage that the SSLMutex passes a NULL
filename in for the mutexname and assumes the apr will generate
something.
It's more correct to say that it assumes APR does the right thing,
which
it does. Under Win32 it creates an unnamed mutex ala the mpm.
The creation is OK so
At 02:03 AM 3/27/2003, Rohan Nandode wrote:
Hi,
Apologies for posting it here, but haven't got any
response in [EMAIL PROTECTED]
I am using APR library on Linux system where it uses
SystemV type locking mechanism. I am seeing a problem
with inter process locking- apr_proc_mutex_XXX
At 03:29 AM 3/27/2003, Graham Leggett wrote:
William A. Rowe, Jr. wrote:
Finally an answer I can contribute to from Win32's perspective ;-)
We extract the version into all compiled binaries by invoking build/win32ver.awk,
with a command such as;
awk -f ./build/win32/win32ver.awk libhttpd.dll
At 08:25 AM 3/27/2003, Jeff Trawick wrote:
b) mod_cgi as a backup
load both modules into the server, with mod_cgid getting the first shot
FWIW ... after accidently loading both into the server, ScriptLog wasn't
respected breaking the regressions. Probably a bug in the config parser.
But these
Moving this discussion over to [EMAIL PROTECTED] reply there ;-)
At 11:28 AM 3/27/2003, Jim Jagielski wrote:
William A. Rowe, Jr. wrote:
3. failing that, we have a bug in APR_LOCK_POSIX that the fname passed
is ignored, so a random one is invented, but a patch at line 129 of
On Thursday, March 27, 2003, at 01:36 AM, Sander Striker wrote:
People, why, oh why, do we need to muck with the Server header? Who
cares? Attacks will
be run regardless of Server headers (and if not, they will as soon as
we start removing them).
So, in the end, what good does it do?
I
- Original Message -
From: Graham Leggett
Martin Kutschker wrote:
Removing the server header won't hurt.
Removing the server header is a protocol viloation, and serves no purpose.
How is it a protocol violation? I can't find anywhere in the HTTP 1.1
protocol where it says the
At 11:48 AM -0600 3/27/03, William A. Rowe, Jr. wrote:
Moving this discussion over to [EMAIL PROTECTED] reply there ;-)
Comments?? :)
Index: locks/unix/proc_mutex.c
===
RCS file: /home/cvs/apr/locks/unix/proc_mutex.c,v
retrieving
* Thom May ([EMAIL PROTECTED]) wrote :
* Jeff Trawick ([EMAIL PROTECTED]) wrote :
can somebody confirm my results?
apxs -c mod_foo.c
first breakage is due to libtool referenced from wrong directory (apxs
looks for libtool in apache's installbuilddir instead of apr's)
once that
* William A. Rowe, Jr. wrote:
At 05:42 AM 3/27/2003, Jeff Trawick wrote:
[EMAIL PROTECTED] wrote:
nd 2003/03/26 17:10:59
Modified:.Tag: APACHE_2_0_BRANCH STATUS
Log:
I consider these important enough to treat them as showstoppers.
RELEASE SHOWSTOPPERS:
+*
Yea - I would appreciate if we supply a platform-agostic mutex name,
such as logs/ssl_mutex, that we end up with the mutex named
/logs/ssl_mutex. If we believe that posix will trip over logs/ (it might
just exist already) then perhaps;
1. we fold away non-root slashes if they are prohibited (it
Andre, this can be fixed with the attached patch for several cases,
I believe.
First, cvs up to the latest apr library sources, because I've fixed the
proc_mutex (and therefore the global_mutex) to;
1. use the res_name_from_filename folding function - this assures we
quietly accept slashes
[How did that happen??? Again, with a patch.]
Andre, this can be fixed with the attached patch for several cases,
I believe.
First, cvs up to the latest apr library sources, because I've fixed the
proc_mutex (and therefore the global_mutex) to;
1. use the res_name_from_filename folding function
At 01:36 PM 3/27/2003, Sander Striker wrote:
From: Thom May [mailto:[EMAIL PROTECTED]
Ok, so sander and I were just discussing the creation of an httpd-config
script, analogous to apr-config etc, which apxs or module developers could
just call at need.
Apxs could then shed a lot of code
* Ian Holsman ([EMAIL PROTECTED]) wrote :
Sander Striker wrote:
From: Thom May [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 27, 2003 8:17 PM
Just chiming in... Currently we have a dependency on perl to figure out
stuff like include dirs etc, which is a bit silly. httpd-config could be
1. does anyone know of a tool which can replay http traffic caught via tcpdump,
and possibly
change the hostname/ip# of the host.
2. I heard mention of a module which logs post-data (and works in apache2) can
anyone remember the
name.
TIA
Ian
[EMAIL PROTECTED] wrote:
gregames2003/03/27 12:34:56
Modified:server protocol.c
Log:
ap_rgetline_core: set the number of bytes read copied into the caller's
buffer when returning APR_ENOSPC. This prevents seg faults in
ap_get_mime_headers_core in an error path which handles
Jeff Trawick wrote:
[EMAIL PROTECTED] wrote:
gregames2003/03/27 12:34:56
Modified:server protocol.c
Log:
ap_rgetline_core: set the number of bytes read copied into the
caller's
buffer when returning APR_ENOSPC. This prevents seg faults in
ap_get_mime_headers_core in an
On Thursday, March 27, 2003, at 12:55 PM, Ian Holsman wrote:
1. does anyone know of a tool which can replay http traffic caught via
tcpdump, and possibly
change the hostname/ip# of the host.
tcptrace (www.tcptrace.org I think) can take tcpdump output
and produce a file for each direction of
On Thu, 27 Mar 2003, Steve Sabljak wrote:
Currently with apache 2.0.43 (64 bit, Solaris 8, worker mpm), under high load,
we're seeing lots of connection refused to the cgi daemon in the error log.
I exprienced the same on Sol9 when I moved to 2.0.44 a week ago (not
under very high load,
Greg Ames wrote:
Jeff Trawick wrote:
[EMAIL PROTECTED] wrote:
gregames2003/03/27 12:34:56
Modified:server protocol.c
Log:
ap_rgetline_core: set the number of bytes read copied into the
caller's
buffer when returning APR_ENOSPC. This prevents seg faults in
At 04:08 PM 3/27/2003, you wrote:
Greg Ames wrote:
Jeff Trawick wrote:
[EMAIL PROTECTED] wrote:
gregames2003/03/27 12:34:56
Modified:server protocol.c
Log:
ap_rgetline_core: set the number of bytes read copied into the caller's
buffer when returning APR_ENOSPC. This prevents
We do have a problem across platforms;
we skip the code in the ssl_cmd_SSLMutex after the first go around.
The old code used mc-pPool as a permanent pool for the szMutexFile,
but my previous patch used cfg-pool. So this new patch uses the
full-blown cmd-server-process-pool so the pstrdup'ed name
[EMAIL PROTECTED] wrote:
This patch allows SSLMutex default:logs/ssl_mutex syntax. It also
removes the mod_ssl historical '.pid' suffixes - that isn't how Apache2
specifies files.
LockFile (for AcceptMutex) still appends .pid
--
Cool beans... Some comments:
-else if (strcEQ(arg, sysvsem)) {
-mc-nMutexMode = SSL_MUTEXMODE_USED;
+else if (!strcasecmp(meth, sysvsem) file) {
We should not require that sysvsem lists a file..
#endif
-#if APR_HAS_FLOCK_SERIALIZE || APR_HAS_FCNTL_SERIALIZE
At 06:25 PM 3/27/2003, you wrote:
Cool beans... Some comments:
-else if (strcEQ(arg, sysvsem)) {
+else if (!strcasecmp(meth, sysvsem) file) {
We should not require that sysvsem lists a file..
Agreed.
#if APR_HAS_FLOCK_SERIALIZE
+else if (!strcasecmp(meth, file) file)
At 06:12 PM 3/27/2003, you wrote:
[EMAIL PROTECTED] wrote:
This patch allows SSLMutex default:logs/ssl_mutex syntax. It also
removes the mod_ssl historical '.pid' suffixes - that isn't how Apache2
specifies files.
LockFile (for AcceptMutex) still appends .pid
Hmmm. Not an
William A. Rowe, Jr. wrote:
At 06:12 PM 3/27/2003, you wrote:
[EMAIL PROTECTED] wrote:
This patch allows SSLMutex default:logs/ssl_mutex syntax. It also
removes the mod_ssl historical '.pid' suffixes - that isn't how Apache2
specifies files.
LockFile (for
My thoughts,
1. The naming is absolutely necessary if other, non-fork()'d, processes
wish to find and use these resources; easily.
2. Using some sort of namespace identifier, such as your proposed ApR
is definitely attractive for diagnostic purposes.
3. The whole 14 character b/s with POSIX is
At 07:11 PM 3/27/2003, Jim Jagielski wrote:
William A. Rowe, Jr. wrote:
At 06:12 PM 3/27/2003, you wrote:
[EMAIL PROTECTED] wrote:
This patch allows SSLMutex default:logs/ssl_mutex syntax. It also
removes the mod_ssl historical '.pid' suffixes - that isn't how Apache2
Based on observations of broken SSLMutex behavior on Win32,
and some other protocol.c based-bugs, we have now created what
we hope is the final release candidate tag, WROWE_2_0_45_RC2.
See the previous message for detailed instructions.
Help is appreciated in testing this tag prior to our rolling
At 11:27 PM 3/27/2003, William A. Rowe, Jr. wrote:
Based on observations of broken SSLMutex behavior on Win32,
and some other protocol.c based-bugs, we have now created what
we hope is the final release candidate tag, WROWE_2_0_45_RC2.
Apologies that I wasn't specific, this tag includes the
Folks, is anyone else seeing a problem with the missing file
special.mk? It doesn't seem to be dropped into the target
tree, but we call for it in apxs.
Patch anyone?
Bill
To all whom it may concern,
I realize that some, or all, of this may have been addressed time and
time again, but I would like to query the current contributors and
direction setters at large and present. Yes, this is only one
micro-facet of industry problems, but it is also one which is
At 02:20 PM 3/27/2003, William A. Rowe, Jr. wrote:
[How did that happen??? Again, with a patch.]
Ok, regressions on win32...
Starting sans-DSSL, so that the default ssl.conf is not loaded;
[Thu Mar 27 14:48:16 2003] [warn] Init: Session Cache is not configured [hint:
SSLSessionCache]
Ick, now
At 01:25 AM 3/28/2003, Spinka, Kristofer wrote:
I realize that some, or all, of this may have been addressed time and
time again, but I would like to query the current contributors and
direction setters at large and present. Yes, this is only one
micro-facet of industry problems, but it is also
6. Documentation.
Apparently you are entirely unaware of the [EMAIL PROTECTED] team,
and the fact that Apache's documentation is generally regarded as one
of the better sets of open source docs?
http://httpd.apache.org/docs-project/
I was referring to documentation for developers, is
59 matches
Mail list logo