[Bug 28657] mod_negotiation should not store Content-Location header as an error header

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=28657

--- Comment #146 from Follower Hike  ---
mod_negotiation adds a Content-Location header
https://followerhike.com/buy-instagram-followers/

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64339] mod_proxy_html changing docx header / file content, leading to corrupt documents

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64339

--- Comment #1 from Karlo  ---
Was able to cleanly reproduce:

1) New VM "loadbalancer", default centos7 install, yum install httpd
mod_proxy_html, config:

# tail -n 18 conf/httpd.conf 

ProxyHTMLEnable On
ProxyHTMLInterp On
ProxyPreserveHost Off
ProxyPass/ http://10.0.60.188:80/
ProxyPassReverse / http://10.0.60.188:80/
ProxyHTMLURLMap http://10.0.60.188:80/ /
DocumentRoot /defaultdir/

# Supplemental configuration
#
# Load config files in the "/etc/httpd/conf.d" directory, if any.
IncludeOptional conf.d/*.conf

2) Install vm "webserver", on 10.0.60.188, default install (yum install httpd).
Add a OpenOffice generated newdoc.docx file to /var/www/html/newdoc.docx . Make
copy newdoc.XXX [!!]
3) Request files  http://loadbalancer/newdoc.docx 
http://loadbalancer/newdoc.XXX
4) Notice headers are different:


[desktop]$ wget http://10.0.60.189/newdoc.docx
[desktop]$ wget http://10.0.60.189/newdoc.XXX
[desktop]$ xxd newdoc.docx | head -n3
: 504b 0304 1400 0808 0800 c2b1 c29c c28a  PK..
0010: 5000      000b   P...
0020: 005f 7265 6c73 2f2e 7265 6c73 c2ad c292  ._rels/.rels
[desktop]$ xxd newdoc.XXX | head -n3
: 504b 0304 1400 0808 0800 b19c 8a50   PK...P..
0010:      0b00  5f72  .._r
0020: 656c 732f 2e72 656c 73ad 924d 4b03 410c  els/.rels..MK.A.
[desktop]$ file * 
newdoc.docx: Zip archive data, at least v2.0 to extract
newdoc.XXX:  Microsoft Word 2007+

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64339] mod_proxy_html changing docx header / file content, leading to corrupt documents

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64339

Karlo  changed:

   What|Removed |Added

 CC||karlo_bzapache@luiten.famil
   ||y

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64339] New: mod_proxy_html changing docx header / file content, leading to corrupt documents

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64339

Bug ID: 64339
   Summary: mod_proxy_html changing docx header / file content,
leading to corrupt documents
   Product: Apache httpd-2
   Version: 2.4.6
  Hardware: PC
OS: Linux
Status: NEW
  Severity: major
  Priority: P2
 Component: mod_proxy_html
  Assignee: bugs@httpd.apache.org
  Reporter: karlo_bzapache@luiten.family
  Target Milestone: ---

Have been banging my head against the wall for hours. Seems like mod_proxy_html
changes the header of a docx file served by the proxy, based on extension. I am
serving nextcloud over a proxy (vm serving nextcloud over http, load balancer
doing httpS, both apache)

Broken:
$ curl -s "https://cloud.domain.nl/oowriter.docx; | xxd | head -n2
: 504b 0304 1400 0808 0800 66c2 92c2 8a50  PKfP
0010:       0b00   
(Identified by `file` as "oowriter.docx.1: Zip archive data, at least v2.0 to
extract")

Working, same file, just different extension:
$ curl -s "https://cloud.domain.nl/oowriter.XXX; | xxd | head -n2
: 504b 0304 1400 0808 0800 6692 8a50   PKf..P..
0010:      0b00  5f72  .._r
(identified by `file` as "oowriter.XXX: Microsoft Word 2007+")

That is the gist of it. My setup:

[ User ] -- https --> [ Load balancer ]  -- http --> [ Nextcloud VM ]

Load balancer is Apache/2.4.6 (CentOS) , running on CentOS 7.7.1908
Nextcloud VM is Apache/2.4.6 (CentOS) (same)

Load balancer host config:

--


SSLEngine off
ServerAdmin webmas...@domain.nl
ServerName cloud.domain.nl
#ServerAlias www.domain.nl
DocumentRoot "/var/www/html/"
ErrorLog "/var/log/httpd/error_cloud_domain_nl.log"
CustomLog /var/log/httpd/access_cloud_domain_nl.log combined
SSLCertificateFile /etc/letsencrypt/live/cloud.domain.nl/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/cloud.domain.nl/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateChainFile /etc/letsencrypt/live/cloud.domain.nl/chain.pem

ProxyHTMLEnable On
ProxyHTMLInterp On
ProxyPreserveHost Off
ProxyPass/ http://10.0.40.3:80/
ProxyPassReverse / http://10.0.40.3:80/
ProxyHTMLURLMap http://10.0.40.3:80/ /


  RewriteEngine on
  RewriteRule ^/\.well-known/host-meta /public.php?service=host-meta [QSA,L]
  RewriteRule ^/\.well-known/host-meta\.json /public.php?service=host-meta-json
[QSA,L]
  RewriteRule ^/\.well-known/webfinger /public.php?service=webfinger [QSA,L]
  RewriteRule ^/\.well-known/carddav /remote.php/dav/ [R=301,L]
  RewriteRule ^/\.well-known/caldav /remote.php/dav/ [R=301,L]





--


For the NextCloud, this is just nextcloud being served from /var/www/html
(default document root). Serving http. Nothing special.

Now the question is what changes my docx file in transit, where does it happen,
why does it happen, and how do I fix it.

Help appreciated. Thx

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64337] libcurl dependency version specified incorrectly for mod_md

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64337

--- Comment #2 from Alexander Gerasimov  ---
I don't see any features that require 7.29+.
Builds and works like a charm.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64338] New: Expose balancer member state to origin server

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64338

Bug ID: 64338
   Summary: Expose balancer member state to origin server
   Product: Apache httpd-2
   Version: 2.5-HEAD
  Hardware: All
OS: All
Status: NEW
  Severity: enhancement
  Priority: P2
 Component: mod_proxy_balancer
  Assignee: bugs@httpd.apache.org
  Reporter: ch...@christopherschultz.net
  Target Milestone: ---

In preparation to migrate from mod_jk to mod_proxy_http, I looked for a way to
detect worker state in order to detect whether a node had been disabled and
should be draining.

mod_jk does this by sending a value which can be checked by the Java
application in the request's "JK_LB_ACTIVATION" attribute.

I don't see anything like this in mod_proxy_balancer, and it would be of great
help to have it.

>From [1] it looks like mod_proxy_ajp will forward any environment variable
called AJP_* through the connection as a request attribute (slight different
than a request parameter or request a header), but I'd prefer to use
mod_proxy_http so that leaves basically headers as an option for transport.

I could use "Header set X-lb-activation-state ${state}e", but the worker state
isn't available for this kind of thing.

It sounds "simple" to me to add this, but I have no idea what I'm talking
about. If this value were available via environment variable, I'd be able to
build similar capabilities with the other existing building-blocks to achieve
feature-parity with mod_jk.


[1]
https://lists.apache.org/thread.html/rfa741b0b2d0a53a9a4ae4bca26eaaccb57280392224348381e080376%40%3Cusers.tomcat.apache.org%3E

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64337] libcurl dependency version specified incorrectly for mod_md

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64337

--- Comment #1 from Giovanni Bechis  ---
I am using that patch in CentOS7 with Letsencrypt integration and OCSP
Stapling, is there any feature that requires libcurl-7.50+ ?

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64337] libcurl dependency version specified incorrectly for mod_md

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64337

Alexander Gerasimov  changed:

   What|Removed |Added

   Keywords||PatchAvailable

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64337] New: libcurl dependency version specified incorrectly for mod_md

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64337

Bug ID: 64337
   Summary: libcurl dependency version specified incorrectly for
mod_md
   Product: Apache httpd-2
   Version: 2.4-HEAD
  Hardware: All
OS: All
Status: NEW
  Severity: normal
  Priority: P2
 Component: mod_md
  Assignee: bugs@httpd.apache.org
  Reporter: x...@ua.fm
  Target Milestone: ---

Created attachment 37167
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=37167=edit
Proposed fix: allows mod_md to be compiled against libcurl 7.29

libcurl dependency version fix: mod_md builds and works fine against libcurl
7.29, so EL7 (CentOS 7, RHEL 7) is really supported.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 45187] Long File name requests gives FORBIDDEN response

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=45187

Giovanni Bechis  changed:

   What|Removed |Added

  Attachment #37165|0   |1
is obsolete||

--- Comment #40 from Giovanni Bechis  ---
Created attachment 37166
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=37166=edit
return 404 on long filenames

stat(2) return ENAMETOOLONG if filename is longer than MAX_PATH

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 45187] Long File name requests gives FORBIDDEN response

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=45187

Giovanni Bechis  changed:

   What|Removed |Added

  Attachment #36987|0   |1
is obsolete||

--- Comment #39 from Giovanni Bechis  ---
Created attachment 37165
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=37165=edit
return 404 on too long filenames

fixed comment and add correct log error number

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64331] Env var H2_STREAM_ID & H2_STREAM_TAG not available anymore through apr_table 'r->subprocess_env'

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64331

Christophe JAILLET  changed:

   What|Removed |Added

 Resolution|--- |DUPLICATE
 Status|NEW |RESOLVED

--- Comment #1 from Christophe JAILLET  ---


*** This bug has been marked as a duplicate of bug 64330 ***

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64329] Env var H2_STREAM_ID & H2_STREAM_TAG not available anymore through apr_table 'r->subprocess_env'

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64329

Christophe JAILLET  changed:

   What|Removed |Added

 Status|NEW |RESOLVED
 Resolution|--- |DUPLICATE

--- Comment #1 from Christophe JAILLET  ---


*** This bug has been marked as a duplicate of bug 64330 ***

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64330] Env var H2_STREAM_ID & H2_STREAM_TAG not available anymore through apr_table 'r->subprocess_env'

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64330

--- Comment #1 from Christophe JAILLET  ---
*** Bug 64329 has been marked as a duplicate of this bug. ***

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 64330] Env var H2_STREAM_ID & H2_STREAM_TAG not available anymore through apr_table 'r->subprocess_env'

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=64330

--- Comment #2 from Christophe JAILLET  ---
*** Bug 64331 has been marked as a duplicate of this bug. ***

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

[Bug 45187] Long File name requests gives FORBIDDEN response

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=45187

--- Comment #38 from Giovanni Bechis  ---
I opened a bz in apr: https://bz.apache.org/bugzilla/show_bug.cgi?id=64170
waiting for somebody to commit the apr patch, then I can commit the httpd piece
of the diff.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org