Bug#877039: marked as done (":80" is appended to socket file name)

Thu, 06 Dec 2018 05:09:56 -0800 

Your message dated Thu, 06 Dec 2018 13:05:26 +0000
with message-id <[email protected]>
and subject line Bug#877039: fixed in lighttpd 1.4.52-1
has caused the Debian Bug report #877039,
regarding ":80" is appended to socket file name
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
877039: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877039
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: lighttpd
Version: 1.4.45-1

If the server is bound to a socket in file system, three characters :80 are 
appended to the file path, breaking my reverse proxy setup.
Minimal example:

jonny@heron:/var/tmp/ltest$ lighttpd -D -f config &
[1] 30888
jonny@heron:/var/tmp/ltest$ 2017-09-28 00:26:22: (log.c.217) server started 

jonny@heron:/var/tmp/ltest$ ls
config  lighty.pid  lighty.sock:80

jonny@heron:/var/tmp/ltest$ cat config 
server.document-root = "/var/tmp/ltest/"

index-file.names = ( "index.html", "index.lighttpd.html" )

server.bind = "/var/tmp/ltest/lighty.sock"
server.errorlog = "/dev/tty"

server.pid-file = "/var/tmp/ltest/lighty.pid"

dir-listing.activate = "enable"


#  ---------- end of lighttpd config.


expected: a socket "lighty.sock" without :80

jonny@heron:~$ dpkg -s libc6 | grep ^Version
Version: 2.24-17
jonny@heron:~$ uname -a
Linux heron 4.11.0-1-amd64 #1 SMP Debian 4.11.6-1 (2017-06-19) x86_64 GNU/Linux

I think the source lines appending the port are src/network.c,
buffer_copy_buffer(b, srv->srvconf.bindhost);
buffer_append_string_len(b, CONST_STR_LEN(":"));
buffer_append_int(b, srv->srvconf.port);

I remember my setup to work some time ago (jessie or something older)

--- End Message ---
--- Begin Message --- 
Source: lighttpd
Source-Version: 1.4.52-1

We believe that the bug you reported is fixed in the latest version of
lighttpd, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Helmut Grohne <[email protected]> (supplier of updated lighttpd package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 06 Dec 2018 13:44:42 +0100
Source: lighttpd
Binary: lighttpd lighttpd-doc lighttpd-mod-mysql-vhost 
lighttpd-mod-trigger-b4-dl lighttpd-mod-cml lighttpd-mod-magnet 
lighttpd-mod-webdav lighttpd-mod-authn-gssapi lighttpd-mod-authn-ldap 
lighttpd-mod-authn-mysql lighttpd-mod-geoip
Architecture: source
Version: 1.4.52-1
Distribution: sid
Urgency: medium
Maintainer: Debian QA Group <[email protected]>
Changed-By: Helmut Grohne <[email protected]>
Description:
 lighttpd   - fast webserver with minimal memory footprint
 lighttpd-doc - documentation for lighttpd
 lighttpd-mod-authn-gssapi - GGSAPI authentication for lighttpd
 lighttpd-mod-authn-ldap - LDAP authentication for lighttpd
 lighttpd-mod-authn-mysql - MySQL authentication for lighttpd
 lighttpd-mod-cml - cache meta language module for lighttpd
 lighttpd-mod-geoip - GeoIP restrictions for lighttpd
 lighttpd-mod-magnet - control the request handling module for lighttpd
 lighttpd-mod-mysql-vhost - MySQL-based virtual host configuration for lighttpd
 lighttpd-mod-trigger-b4-dl - anti-deep-linking module for lighttpd
 lighttpd-mod-webdav - WebDAV module for lighttpd
Closes: 857255 877039 879496 913528
Changes:
 lighttpd (1.4.52-1) unstable; urgency=medium
 .
   * QA Upload.
   * New upstream release. (Closes: #879496)
     + Fix CVE-2018-19052. (Closes: #913528)
     + Don't append port to unix sockets. (Closes: #877039)
     + Refactor buffer API. (Closes: #857255)
     + Don't use AC_PATH_PROG to find pkg-config. (Addresses: #912358)
     + Drop patch fix-openssl-1.1.1.patch applied upstream.
     + Add new mod_sockproxy.so to main package.
   * Replace Build-Depends: dh-systemd with newer debhelper for lintian.
Checksums-Sha1:
 f83569abd053a4a4142bd6445a14fe5a02cfc1ca 3164 lighttpd_1.4.52-1.dsc
 d2cc3d8b4997e73b0d8bf3fd2685fc0e79650385 728668 lighttpd_1.4.52.orig.tar.xz
 2eca58e718d9567083b7aad2a1be723cf3deba19 801 lighttpd_1.4.52.orig.tar.xz.asc
 3baaa543bdf03c86d8e63ae19e062e0798d89f5d 47008 lighttpd_1.4.52-1.debian.tar.xz
 9830b4a05d827c9e72c12173650296508f0507a5 13155 
lighttpd_1.4.52-1_amd64.buildinfo
Checksums-Sha256:
 bab3dc02ee868bafed693e94c0b565cc924ebd4d0d960ca4e0d404aecb38ad27 3164 
lighttpd_1.4.52-1.dsc
 27bc0991c530b7c6335e6efff2181934d3c1a1c516f7401ea71d8302cefda764 728668 
lighttpd_1.4.52.orig.tar.xz
 fd8b589ec181f2d166fcadd71acf2e0b95c0c9ca8db96af2329d3a5a5efb2177 801 
lighttpd_1.4.52.orig.tar.xz.asc
 40ebebd86ba93933dd7eae31e4b0693a0b04299e991c51796fff18afc29cbe19 47008 
lighttpd_1.4.52-1.debian.tar.xz
 1d65294c2112cfd344926224ae6614a708206febb9fca44bbbcc58e0e23b0ccc 13155 
lighttpd_1.4.52-1_amd64.buildinfo
Files:
 b334c8de0c5073d1665513281742a4f6 3164 httpd optional lighttpd_1.4.52-1.dsc
 34f5c79137325ba31484bed1e54e66e6 728668 httpd optional 
lighttpd_1.4.52.orig.tar.xz
 14cbef98f3d645b8ca380c7f8cbd186a 801 httpd optional 
lighttpd_1.4.52.orig.tar.xz.asc
 264d0d39104a12ee68b096d394c9c111 47008 httpd optional 
lighttpd_1.4.52-1.debian.tar.xz
 e2e357134aa1f2bee22773b4163396d0 13155 httpd optional 
lighttpd_1.4.52-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=S5y/
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to