https://bz.apache.org/bugzilla/show_bug.cgi?id=65419
Bug ID: 65419
Summary: Regexp parsing problem in ProxyPassMatch, Unable to
find the relavant path
Product: Apache httpd-2
Version: 2.4.48
Hardware: Other
OS: other
Status: NEW
Severity: blocker
Priority: P2
Component: mod_proxy
Assignee: bugs@httpd.apache.org
Reporter: abhishek.k.sha...@mercer.com
Target Milestone: ---
We are upgrading from apache2 2.4.46 to 2.4.48. The apche config has a
ProxyPassMatch rule which is now not working after upgrading.
Apache conf:
<VirtualHost *:443>
ServerName apache.mettl.pro
SSLProxyEngine on
ProxyPreserveHost On
SSLProtocol TLSv1.2
ProxyPassMatch ^/((es|en|de)/test/?(/.*)?) http://localhost:9090/$1
ProxyPassReverse ^/((es|en|de)/test/?(/.*)?) http://localhost:9090/$1
ProxyPass / http://localhost:9090/
ProxyPassReverse / http://localhost:9090/
ProxyRequests Off
Header always set Strict-Transport-Security "max-age=31536000;
includeSubDomains"
SSLEngine on
SSLCertificateFile /etc/ssl/certs/server.crt
SSLCertificateKeyFile /etc/ssl/private/server.key
SSLCertificateChainFile /etc/ssl/certs/server_bundle.crt
</VirtualHost>
Error_logs:
[Thu Jul 01 14:50:05.496435 2021] [ssl:info] [pid 7018:tid 139912673023744]
[client 10.10.5.223:19000] AH01964: Connection to child 400 established (server
ip-10-10-2-136.ap-south-1.compute.internal:443)
[Thu Jul 01 14:50:05.496838 2021] [ssl:debug] [pid 7018:tid 139912673023744]
ssl_engine_kernel.c(2425): [client 10.10.5.223:19000] AH02645: Server name not
provided via TLS extension (using default/first virtual host)
[Thu Jul 01 14:50:05.501883 2021] [ssl:debug] [pid 7018:tid 139912673023744]
ssl_engine_kernel.c(2257): [client 10.10.5.223:19000] AH02041: Protocol:
TLSv1.2, Cipher: ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
[Thu Jul 01 14:50:05.502714 2021] [ssl:debug] [pid 7018:tid 139912673023744]
ssl_engine_kernel.c(422): [client 10.10.5.223:19000] AH02034: Initial (No.1)
HTTPS request received for child 400 (server apache.mettl.pro:443)
[Thu Jul 01 14:50:05.502865 2021] [rewrite:trace2] [pid 7018:tid
139912673023744] mod_rewrite.c(480): [client 10.10.5.223:19000] 10.10.5.223 - -
[apache.mettl.pro/sid#7f40038feb90][rid#7f3ff422d0a0/initial] init rewrite
engine with requested uri /prelogin/ping
[Thu Jul 01 14:50:05.502879 2021] [rewrite:trace3] [pid 7018:tid
139912673023744] mod_rewrite.c(480): [client 10.10.5.223:19000] 10.10.5.223 - -
[apache.mettl.pro/sid#7f40038feb90][rid#7f3ff422d0a0/initial] applying pattern
'^(.*)$' to uri '/prelogin/ping'
[Thu Jul 01 14:50:05.502902 2021] [rewrite:trace4] [pid 7018:tid
139912673023744] mod_rewrite.c(480): [client 10.10.5.223:19000] 10.10.5.223 - -
[apache.mettl.pro/sid#7f40038feb90][rid#7f3ff422d0a0/initial] RewriteCond:
input='apache.mettl.pro' pattern='^www\\.(.*)$' [NC] => not-matched
[Thu Jul 01 14:50:05.503037 2021] [rewrite:trace1] [pid 7018:tid
139912673023744] mod_rewrite.c(480): [client 10.10.5.223:19000] 10.10.5.223 - -
[apache.mettl.pro/sid#7f40038feb90][rid#7f3ff422d0a0/initial] pass through
/prelogin/ping
[Thu Jul 01 14:50:05.503166 2021] [authz_core:debug] [pid 7018:tid
139912673023744] mod_authz_core.c(818): [client 10.10.5.223:19000] AH01626:
authorization result of Require all denied: denied
[Thu Jul 01 14:50:05.503179 2021] [authz_core:debug] [pid 7018:tid
139912673023744] mod_authz_core.c(818): [client 10.10.5.223:19000] AH01626:
authorization result of <RequireAny>: denied
[Thu Jul 01 14:50:05.503186 2021] [authz_core:error] [pid 7018:tid
139912673023744] [client 10.10.5.223:19000] AH01630: client denied by server
configuration: /var/www/html/prelogin
[Thu Jul 01 14:50:05.503212 2021] [headers:debug] [pid 7018:tid
139912673023744] mod_headers.c(891): AH01503: headers:
ap_headers_error_filter()
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
