Bug report for Apache httpd-1.3 [2003/11/09]
+---+ | Bugzilla Bug ID | | +-+ | | Status: UNC=Unconfirmed NEW=New ASS=Assigned| | | OPN=ReopenedVER=Verified(Skipped Closed/Resolved) | | | +-+ | | | Severity: BLK=Blocker CRI=CriticalMAJ=Major | | | | MIN=Minor NOR=Normal ENH=Enhancement | | | | +-+ | | | | Date Posted | | | | | +--+ | | | | | Description | | | | | | | | 7741|New|Nor|2002-04-04|some directives may be placed outside of proper co| | 7982|New|Maj|2002-04-11|mod_rewrite URL string empty when passed unicoded | | 8311|Opn|Nor|2002-04-19|error in PUT directive gives confusing error messa| | 8329|New|Nor|2002-04-20|mime_magic gives 500 and no error_log on Microsoft| | 8372|Ass|Nor|2002-04-22|Threadsaftey issue in Rewrite's cache [Win32/OS2/N| | 8849|New|Nor|2002-05-07|make install errors as root on NFS shares | | 8882|New|Enh|2002-05-07|[PATCH] mod_rewrite communicates with external rew| | 9037|New|Min|2002-05-13|Slow performance when acessing an unresolved IP ad| | 9126|New|Blk|2002-05-15|68k-next-openstep v. 4.0 | | 9201|New|Maj|2002-05-17|Wrong REQUEST_URI with malformed HTTP queries | | 9726|New|Min|2002-06-09|Double quotes should be flagged as T_HTTP_TOKEN_ST| | 9894|New|Maj|2002-06-16|getline sub in support progs collides with existin| | |New|Nor|2002-06-19|Incorrect default manualdir value with layout.| |10038|New|Min|2002-06-20|ab benchmaker hangs on 10K https URLs with keepali| |10073|New|Maj|2002-06-20|upgrade from 1.3.24 to 1.3.26 breaks include direc| |10109|New|Maj|2002-06-21|problem running 1.3.26 and php on Solaris 7 / Spar| |10169|New|Nor|2002-06-24|Apache seg faults due to attempt to access out of | |10172|New|Maj|2002-06-24|Can't load libphp4.so with apache 1.3.26 + SSL 1.4| |10178|New|Maj|2002-06-24|Proxy server cuts off begining of buffer when spec| |10182|New|Nor|2002-06-24|Apache 1.3.26 and MOD_SO on OpenBSD 3.0 | |10195|New|Nor|2002-06-24|Configure script erroneously detects system Expat | |10199|New|Nor|2002-06-24|Configure can't handle directory names with unders| |10243|New|Maj|2002-06-26|CGI scripts not getting POST data | |10354|New|Nor|2002-06-30|ErrorDocument(.htaccess) fails when passed URL wit| |10470|New|Cri|2002-07-04|proxy module will not correctly serve mixed case f| |10666|New|Enh|2002-07-10|line-end comment error message missing file name | |10744|New|Nor|2002-07-12|suexec might fail to open log file| |10747|New|Maj|2002-07-12|ftp SIZE command and 'smart' ftp servers results i| |10760|New|Maj|2002-07-12|empty ftp directory listings from cached ftp direc| |10890|New|Cri|2002-07-17|if et locale is used, configure fails | |10939|New|Maj|2002-07-18|directory listing errors | |11020|New|Maj|2002-07-21|APXS only recognise tests made by ./configure | |11236|New|Min|2002-07-27|Possible Log exhaustion bug? | |11265|New|Blk|2002-07-29|mod_rewrite fails to encode special characters| |11291|New|Nor|2002-07-30|Cygwin script with long filename fails.Path separa| |11765|New|Nor|2002-08-16|.apaci.install.tmp installs in existing httpd.conf| |11986|New|Nor|2002-08-23|Restart hangs when piping logs on rotation log pro| |11993|Opn|Cri|2002-08-23|PDFs served through ProxyPass show up blank | |12074|New|Nor|2002-08-27|Compilation fails due to a _Isinf not found | |12096|New|Nor|2002-08-27|apxs does not handle binary dists installed at non| |12391|New|Maj|2002-09-07|DBM_LIB should be blank for OS X 10.2 | |12551|New|Nor|2002-09-11|mod_proxy fails to shutdown when client cancels | |12574|New|Nor|2002-09-12|Broken images comes from mod_proxy when caching ww| |12583|New|Nor|2002-09-12|First piped log process do not handle SIGTERM | |12598|New|Maj|2002-09-12|Apache hanging in Keepalive State | |13120|New|Cri|2002-09-29|CGI procs defunctioning | |13188|New|Nor|2002-10-02|does not configure correctly for hppa64-hp-hpux11.| |13274|Ass|Nor|2002-10-04|Subsequent requests are destroyed by the request e| |13486|New|Nor|2002-10-10|multiple slashes in DocumentRoot are not handled p| |13577|New|Nor|2002-10-13|mod_proxy mangles query string| |13607|Opn|Enh|2002-10-14|Catch-all enhancement for vhost_alias?|
Bug report for Apache httpd-2.0 [2003/11/09]
+---+ | Bugzilla Bug ID | | +-+ | | Status: UNC=Unconfirmed NEW=New ASS=Assigned| | | OPN=ReopenedVER=Verified(Skipped Closed/Resolved) | | | +-+ | | | Severity: BLK=Blocker CRI=CriticalMAJ=Major | | | | MIN=Minor NOR=Normal ENH=Enhancement | | | | +-+ | | | | Date Posted | | | | | +--+ | | | | | Description | | | | | | | | 7483|Ass|Enh|2002-03-26|Add FileAction directive to assign a cgi interpret| | 7862|New|Enh|2002-04-09|suexec never log a group name.| | 7882|Opn|Nor|2002-04-09|env LIBS ignored during build | | 8167|New|Min|2002-04-16|--with-module does not build MODULE_DIRS correctly| | 8483|Opn|Min|2002-04-24|apache_2.0 .msi installer breaks .log and .conf fi| | 8493|Ass|Nor|2002-04-25|mod_rewrite does not try index.html like it used t| | 8500|Ass|Cri|2002-04-25|authorization user does not logged| | 8677|Opn|Maj|2002-04-30|mod_proxy ALWAYS nukes Content-Length | | 8713|New|Min|2002-05-01|No Errorlog on PROPFIND/Depth:Infinity| | 8867|Opn|Cri|2002-05-07|exports.c generation fails when using a symlink to| | 8880|New|Enh|2002-05-07|AcceptPathInfo does not apply to DirectoryIndex fi| | 8910|New|Nor|2002-05-08|MultiviewsMatch Any does not work as expected | | 8925|New|Cri|2002-05-09|Service Install (win32 .msi/.exe) fails for port i| | 8993|Opn|Nor|2002-05-10|openssl library location(s) are hardcoded in confi| | 9046|New|Min|2002-05-13|Cleaned up PNG/MNG converted icons| | 9484|New|Enh|2002-05-29|Dynamic ServerAdmin configuration | | 9488|Opn|Nor|2002-05-29|HTTP/0.9 requests spoken on https port returns HTT| | 9513|Opn|Nor|2002-05-30|Missing start menu items | | 9656|New|Nor|2002-06-06|Support of FTP Proxy only partially documented| | 9727|New|Min|2002-06-09|Double quotes should be flagged as T_HTTP_TOKEN_ST| | 9945|New|Enh|2002-06-18|[PATCH] new funtionality for apache bench | |10114|Ass|Enh|2002-06-21|Negotiation gives no weight to order, only q value| |10154|Ass|Nor|2002-06-23|ApacheMonitor interferes with service uninstall/re| |10434|Ass|Enh|2002-07-03|mod_rewrite doesn't fill the variables as HTTPS | |10575|New|Enh|2002-07-09|no option to autoindex auth protected files/folder| |10598|Opn|Nor|2002-07-09|Apache will break down files bigger than 64KB | |10722|New|Nor|2002-07-12|ProxyPassReverse doesn't change cookie paths | |10775|Ass|Cri|2002-07-13|SCRIPT_NAME wrong value | |11000|New|Enh|2002-07-20|Mutex permission problems: configuration template | |11035|New|Min|2002-07-22|Apache adds double entries to headers generated by| |11259|New|Enh|2002-07-29|'make install' should provide a deinstaller | |11294|New|Enh|2002-07-30|desired vhost_alias option| |11331|New|Cri|2002-07-31|stale cgi process entries when using suexec | |11427|Opn|Maj|2002-08-02|Possible Memory Leak in CGI script invocation | |11475|New|Min|2002-08-05|usertrack can read Cookie2 header but spec says it| |11514|New|Maj|2002-08-07|worker MPM stalls on UnixWare 7.11| |11521|New|Nor|2002-08-07|Addition of Japanese error message | |11540|New|Nor|2002-08-07|ProxyTimeout ignored | |11580|Opn|Enh|2002-08-09|generate Content-Location headers | |11660|New|Enh|2002-08-13|a New Hebrew Translation for Test Page for Apache| |11769|New|Nor|2002-08-16|2.0.39 Bindist does not work on all versions of So| |11960|New|Maj|2002-08-23|Apache default config doesn't include uk langauge | |12033|Opn|Nor|2002-08-26|Graceful restart immidiately result in [warn] long| |12187|Opn|Blk|2002-08-30|Standard config with perchild; Apache is blocked | |12340|Opn|Nor|2002-09-05|WindowsXP proxy, child process exited with status | |12355|New|Nor|2002-09-06|SSLVerifyClient directive in location make post to| |12426|Ass|Nor|2002-09-09|mod_proxy broken under high load ?| |12625|New|Enh|2002-09-13|[PATCH] Restoration of mod_ssl compatibility env v| |12631|New|Blk|2002-09-13|integrating 3rd-party module into Apache build| |12680|New|Enh|2002-09-16|Digest authentication with integrity protection | |12885|New|Enh|2002-09-20|windows 2000 build information: mod_ssl, bison, et|
Re: cvs commit: httpd-2.0/modules/aaa mod_authn_anon.c
On Sun, Nov 09, 2003 at 06:02:26PM -, [EMAIL PROTECTED] wrote: ... +++ mod_authn_anon.c9 Nov 2003 18:02:26 - 1.4 ... -/* Is username is OK and password been filled out (if required) */ -if ((res == AUTH_USER_FOUND) ((!conf-mustemail) || strlen(sent_pw)) -/* does the password look like an email address ? */ -((!conf-verifyemail) || - ((strpbrk(@, sent_pw) != NULL) - (strpbrk(., sent_pw) != NULL { +if ( (res == AUTH_USER_FOUND) + (!conf-mustemail || *sent_pw) + ( !conf-verifyemail +|| (ap_strchr_c(sent_pw, '@') ap_strchr_c(sent_pw, '.' +{ That's a rather complicated if statement, and you removed the comment. I'd ask that you leave a comment in there to provide a human-readable version of that condition. if (conf-logemail ap_is_initial_req(r)) { ap_log_rerror(APLOG_MARK, APLOG_INFO, APR_SUCCESS, r, -Anonymous: Passwd %s Accepted, -sent_pw ? sent_pw : \'none\'); + Anonymous: Passwd %s Accepted, + sent_pw ? sent_pw : \'none\'); } Hmm. This is taking input from the request and dropping it right into the log. I don't recall what our policy is around there. Do we need to escape it in any way? (e.g. remove newlines) Cheers, -g -- Greg Stein, http://www.lyra.org/
Re: cvs commit: httpd-2.0/modules/aaa mod_authn_anon.c
* Greg Stein [EMAIL PROTECTED] wrote: snip That's a rather complicated if statement, and you removed the comment. I'd ask that you leave a comment in there to provide a human-readable version of that condition. hehe, ok. I've thought that the new version of the statement was self-explaining enough :-) if (conf-logemail ap_is_initial_req(r)) { ap_log_rerror(APLOG_MARK, APLOG_INFO, APR_SUCCESS, r, -Anonymous: Passwd %s Accepted, -sent_pw ? sent_pw : \'none\'); + Anonymous: Passwd %s Accepted, + sent_pw ? sent_pw : \'none\'); } Hmm. This is taking input from the request and dropping it right into the log. I don't recall what our policy is around there. Do we need to escape it in any way? (e.g. remove newlines) I don't recall about any policy about error logs. But we should escape it, sure -- on a more central place (i.e. core). nd
Re: module load order
I was just asked again by a user about the load order of modules. While it seems that it is now with Apache2 less important, and also ClearModuleList and AddModule are removed now with Apache2, I think it is at least still important for auth modules. So I searched the manual for any hints, specially about the fact that the last module loaded is the first module in the auth chain This is true for 1.3, but not for 2.0. For 2.0 the module order of the auth modules is undefined. They all register with the same priority at the same hook(s). The sort is done with qsort, which does not guaranty a stable ordering. It can differ from build to build, from libc to libc and from httpd.conf to httpd.conf. This is a real problem if you want to use the Auth*Authoritative directives. This problem has been solved in the 2.1 source tree by introducing the provider mechanism for auth modules. - but I couldnt find anything about that, or I'm too blind to find... also in the 1.3 manual I found nothing, even not where ClearModuleList and AddModule are documented... For the 1.3 docs I'm not sure. The original 2.0 docs do not document that, that's true :( At least one third-party book does ;). It is on my todo list to add it. Hope I'll find the time to do it soon. Kess
Re: module load order
Astrid Keßler wrote: I was just asked again by a user about the load order of modules. While it seems that it is now with Apache2 less important, and also ClearModuleList and AddModule are removed now with Apache2, I think it is at least still important for auth modules. So I searched the manual for any hints, specially about the fact that the last module loaded is the first module in the auth chain This is true for 1.3, but not for 2.0. For 2.0 the module order of the auth modules is undefined. They all register with the same priority at the same hook(s). The sort is done with qsort, which does not guaranty a stable ordering. It can differ from build to build, from libc to libc and from httpd.conf to httpd.conf. This is a real problem if you want to use the Auth*Authoritative directives. This problem has been solved in the 2.1 source tree by introducing the provider mechanism for auth modules. Perhaps my memory is failing me, but I thought the module hooks were sorted with a stable topological sort, not qsort? Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit. - Robert Woodruff
Re: module load order
* Ben Laurie [EMAIL PROTECTED] wrote: Perhaps my memory is failing me, but I thought the module hooks were sorted with a stable topological sort, not qsort? from apr_hooks.c: static TSort *prepare(apr_pool_t *p,TSortData *pItems,int nItems) { TSort *pData=apr_palloc(p,nItems*sizeof *pData); int n; qsort(pItems,nItems,sizeof *pItems,crude_order); ... Which means, hooks at the same level with no further specification are ordered randomly. nd
[PATCH] ap_get_server_revision
There's currently no API for modules to determine the unmodified server version. I'd like to introduce one (and backport to 2.0) -- see attached patch. Any objections, comments? nd diff -Nur httpd-2.1~/include/ap_mmn.h httpd-2.1/include/ap_mmn.h --- httpd-2.1~/include/ap_mmn.h +++ httpd-2.1/include/ap_mmn.h @@ -117,6 +117,7 @@ *handler * 20030821 (2.1.0-dev) bumped mod_include's entire API * 20030821.1 (2.1.0-dev) added XHTML doctypes + * 20030821.2 (2.1.0-dev) added ap_get_server_revision */ #define MODULE_MAGIC_COOKIE 0x41503230UL /* AP20 */ @@ -124,7 +125,7 @@ #ifndef MODULE_MAGIC_NUMBER_MAJOR #define MODULE_MAGIC_NUMBER_MAJOR 20030821 #endif -#define MODULE_MAGIC_NUMBER_MINOR 1 /* 0...n */ +#define MODULE_MAGIC_NUMBER_MINOR 2 /* 0...n */ /** * Determine if the server's current MODULE_MAGIC_NUMBER is at least a diff -Nur httpd-2.1~/server/core.c httpd-2.1/server/core.c --- httpd-2.1~/server/core.c +++ httpd-2.1/server/core.c @@ -2358,6 +2358,11 @@ return APR_SUCCESS; } +AP_DECLARE(const char *) ap_get_server_revision(void) +{ +return AP_SERVER_BASEREVISION; +} + AP_DECLARE(const char *) ap_get_server_version(void) { return (server_version ? server_version : AP_SERVER_BASEVERSION);
Supervise MaxClients
How can i supervise MaxClients value in execution ?, because i try to modify this value in execution Thanks
Re: Supervise MaxClients
On Mon, 10 Nov 2003, David Herrero wrote: How can i supervise MaxClients value in execution ?, because i try to modify this value in execution Sorry, but you are going to need to be much more specific about exactly what you want to do. I can't parse that sentence. What does supervise mean in this context? What do you mean by modify this value in execution? Joshua.
Re: Supervise MaxClients
I want to modify this value without restart the server, and i need view MaxClient while the server is started.
Re: Supervise MaxClients
On Mon, 10 Nov 2003, David Herrero wrote: I want to modify this value without restart the server, and i need view MaxClient while the server is started. Hmmm... I think we saw this exact question within the past week. You cannot change MaxClients without restarting the server. But you can change httpd.conf and use a graceful restart to reset the config without affecting any current connections. You can look at mod_info to see current config values. See also mod_status which will show you MaxClients and much more. Joshua.
Re: Supervise MaxClients
Oh, shute. I thought this was [EMAIL PROTECTED] Please direct your questions to the users list in the future. Joshua.