On Fri, Apr 23, 1999 at 04:14:34PM +0200, Ralf S. Engelschall wrote:
> On Fri, Apr 23, 1999, Rolf Haberrecker wrote:
>
> > [...]
> > > Then welcome to the club of people fighting against SuSE's broken NDBM
> > > library... Use --enable-rule=SSL_SDBM as a workaround.
> >
> > I'd really like to know what's going on here. I couldn't find serious
> > problems regarding the session cache when using Apache 1.3.4 or 1.3.6
> > from SuSE Linux 6.1
> >
> > Our init scripts sets the following once Apache has started up:
> >[...]
> > For some reason the db files seem to get created before Apache changes
> > it's UID to wwrun. Changing the ownership of the correspondig files
> > after startup makes it work.
>
> That they are created before the UID switch is correct and intended this way
> and mod_ssl contains actually a chown(2) call for the database files. So the
> explicit chown from the shell shouldn't be needed. Can you find out why the
> chown(2) in ssl_engine_scache.c doesn't work for you?
I've checked and mod_ssl-2.2.8 seems to do it's job here all right. It
was a previous version (probably 2.2.3 or 2.2.4) which had a problem
here. I simply didn't check when the latest release came out.
> BTW, the reason why SuSE's NDBM especially breaks for mod_ssl can be
> related to the fact that mod_ssl writes larger entries to the DB
> than other programs. Perhaps it breaks when a limit (e.g. the 1024
> bytes) are reached? It should give an error and that's what mod_ssl
> expects. But perhaps instead of an error it segfaults?
Our NDBM is the stock DBM of the glibc2.0 package. Could somebody send
me a stacktrace so we can solve this problem? Which DBM do others use
which does not show this problem ?
--
Mit freundlichen Gruessen,
Rolf Haberrecker
SuSE GmbH, Tel: +49-911-7405331
Schanzaeckerstr. 10, Fax: +49-911-7417755
90443 Nuernberg, Email: [EMAIL PROTECTED]
Germany WWW: http://www.suse.com/
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
