Re: svn commit: r956387 - in /httpd/httpd/trunk: CHANGES STATUS modules/aaa/mod_authz_core.c server/request.c
On 06/20/2010 09:15 PM, s...@apache.org wrote:
> Author: sf
> Date: Sun Jun 20 19:15:01 2010
> New Revision: 956387
>
> URL: http://svn.apache.org/viewvc?rev=956387&view=rev
> Log:
> Fix authorization by user or IP/ENV/...
> Note ap_note_auth_failure() breakage in STATUS
>
> Modified:
> httpd/httpd/trunk/CHANGES
> httpd/httpd/trunk/STATUS
> httpd/httpd/trunk/modules/aaa/mod_authz_core.c
> httpd/httpd/trunk/server/request.c
>
> Modified: httpd/httpd/trunk/server/request.c
> URL:
> http://svn.apache.org/viewvc/httpd/httpd/trunk/server/request.c?rev=956387&r1=956386&r2=956387&view=diff
> ==
> --- httpd/httpd/trunk/server/request.c (original)
> +++ httpd/httpd/trunk/server/request.c Sun Jun 20 19:15:01 2010
> @@ -201,6 +201,7 @@ AP_DECLARE(int) ap_process_request_inter
> r->ap_auth_type = r->main->ap_auth_type;
> }
> else {
> +char *failed_user = NULL;
> switch (ap_satisfies(r)) {
> case SATISFY_ALL:
> case SATISFY_NOSPEC:
> @@ -209,10 +210,21 @@ AP_DECLARE(int) ap_process_request_inter
> }
>
> if ((access_status = ap_run_check_user_id(r)) != OK) {
> -return decl_die(access_status, "check user", r);
> +if (access_status == HTTP_UNAUTHORIZED) {
> +failed_user = r->user;
> +r->user = NULL;
Question: Is this an API change? I mean can authn modules be expected to handle
r->user == NULL?
Regards
RĂ¼diger
Re: server-status-handler information leak
On 2010-06-11 at 08:39, Volker wrote: > Hi, > > while playing around with handlers, i noticed, that any user can > register the 'server-status'-handler by putting > > > SetHandler server-status > > > in an htacces-File. This can not be prevented by using a alternating > AllowOverride-directives, since 'SetHandler' is part of 'FileInfo' which > also holds ErrorDocuments, mod_rewrite, etc. > > Since the server-status-handler offers information one might not want > others to have access to (for example a massive shared hosting > environment), i created a small patch that enables a custom handlername > for the server-status-module. Just thought someone else might have use > for it. > > What this patch does: > - reserves memory for directive with parameter (AP_INIT_TAKE1) > - adds a function for creating config-records (create_modstatus_config) > - adds a function to set the handlername (set_serverstatus_handler_name) > > If the handlername is not set using the directive, it defaults to the > old 'server-status' and continues to work with the old setting. ... > Any comments, suggestions, improvements and/or critical comments are > welcome. Thanks for the problem report and patch. Since it doesn't seem that anyone has responded yet (unless I missed it), I suggest that you open a bug report and attach your patch there so it's not forgotten. I keep thinking there ought to be a better solution for this, but I can't think of one so far. Dan
Re: Reminder about an empty docs page
On 2010-06-11 at 11:07, "William A. Rowe Jr." wrote: > Who wants to take on http://httpd.apache.org/docs/trunk/upgrading.html so that > we can increase alpha adoption? > > With the sectional authnz changes, this document really needs to be > filled in. I took a first pass at it, but I think it could really use a more extensive section on how to change configurations that use the 2.2 auth directives to use the new 2.4 system.
Re: Module build defaults for trunk
On 2010-06-10 at 16:46, Stefan Fritsch wrote: > On Monday 07 June 2010, Rainer Jung wrote: >> - build "most" module set by default. >>Alternatives are: >>- all >>- few (same set as was default before the change) >>- none > > I would like to have an option for developers/testers that builds > every module that can be built with the currently installed libraries. > The attached patch adds a "reallyall" set. My auto-fu could be better > but the patch works for me (tm). Of course, I am open for better names > than reallyall. Seems to work for me. But is there any reason why we couldn't just make "all" actually build all? And I would suggest if there's not a really good reason, we should just fix "all" to do what it obviously should. That should be easy now, just delete the current "all" and rename the new "reallyall" to "all". Dan
ap_socache anomaly (Re: mod_authn_cache)
On Thu, 17 Jun 2010 00:43:55 +0200 Graham Leggett wrote: > mod_socache all the way. Question on mod_socache usage: how to use create/init/destroy? Create seems straightforward, but init/destroy are contradictory. On the one hand, they are passed a server_rec, suggesting they're per-server. On the other hand, the instance comes from "create", and the cname argument suggests it should be per-module. Grepping /trunk/ finds only the providers, no usage examples! Looking at one of the providers, the server_rec seems only to be used in ap_log_error. Is it safe to assume the server_rec won't be used for anything more? And why not take the apparent mismatch out of the API by using ap_log_perror instead? -- Nick Kew
Re: undefined symbol errors on loading a module that uses libxml2
execute a ldd for /usr/lib/libxml2.so and see if all the dependecies are satisfied. Post the entire LoadModule/LoadFile area, I'm not sure if the order matters. From: Abhinav Upadhyay To: dev@httpd.apache.org Sent: Sun, June 20, 2010 7:56:23 PM Subject: undefined symbol errors on loading a module that uses libxml2 Hello everyone! I am writing an Apache 2.2 module that uses the libxml2 API. I have compiled the module using following commands: apxs -I /usr/include/libxml2/ -c mod_xmltest.c sudo apxs -n xmltest_module -i mod_xmltest.la and used the following LoadFile directive in httpd.conf LoadFile /usr/lib/libxml2.so However on starting the server I am getting following error: httpd: Syntax error on line 432 of /usr/local/apache2/conf/httpd.conf: Cannot load /usr/local/apache2/modules/mod_hoverin.so into server: /usr/local/apache2/modules/mod_hoverin.so: undefined symbol: xmlFreeNode what could be wrong here ? Thanks and Regards Abhinav
undefined symbol errors on loading a module that uses libxml2
Hello everyone! I am writing an Apache 2.2 module that uses the libxml2 API. I have compiled the module using following commands: apxs -I /usr/include/libxml2/ -c mod_xmltest.c sudo apxs -n xmltest_module -i mod_xmltest.la and used the following LoadFile directive in httpd.conf LoadFile /usr/lib/libxml2.so However on starting the server I am getting following error: httpd: Syntax error on line 432 of /usr/local/apache2/conf/httpd.conf: Cannot load /usr/local/apache2/modules/mod_hoverin.so into server: /usr/local/apache2/modules/mod_hoverin.so: undefined symbol: xmlFreeNode what could be wrong here ? Thanks and Regards Abhinav
Bug report for Apache httpd-1.3 [2010/06/20]
+---+ | Bugzilla Bug ID | | +-+ | | Status: UNC=Unconfirmed NEW=New ASS=Assigned| | | OPN=ReopenedVER=Verified(Skipped Closed/Resolved) | | | +-+ | | | Severity: BLK=Blocker CRI=Critical REG=Regression MAJ=Major | | | | MIN=Minor NOR=NormalENH=Enhancement TRV=Trivial | | | | +-+ | | | | Date Posted | | | | | +--+ | | | | | Description | | | | | | | |10744|New|Nor|2002-07-12|suexec might fail to open log file| |10747|New|Maj|2002-07-12|ftp SIZE command and 'smart' ftp servers results i| |10760|New|Maj|2002-07-12|empty ftp directory listings from cached ftp direc| |14518|Opn|Reg|2002-11-13|QUERY_STRING parts not incorporated by mod_rewrite| |16013|Opn|Nor|2003-01-13|Fooling mod_autoindex + IndexIgnore | |16631|Inf|Min|2003-01-31|.htaccess errors logged outside the virtual host l| |17318|Inf|Cri|2003-02-23|Abend on deleting a temporary cache file if proxy | |19279|Inf|Min|2003-04-24|Invalid chmod options in solaris build| |21637|Inf|Nor|2003-07-16|Timeout causes a status code of 200 to be logged | |21777|Inf|Min|2003-07-21|mod_mime_magic doesn't handle little gif files| |21975|Opn|Nor|2003-07-29|mod_rewrite RewriteMap from external program gets | |22618|New|Maj|2003-08-21|MultiViews invalidates PATH_TRANSLATED if cgi-wrap| |25057|Inf|Maj|2003-11-27|Empty PUT access control in .htaccess overrides co| |26126|New|Nor|2004-01-14|mod_include hangs with request body | |26152|Ass|Nor|2004-01-15|Apache 1.3.29 and below directory traversal vulner| |26790|New|Maj|2004-02-09|error deleting old cache file | |29257|Opn|Nor|2004-05-27|Problem with apache-1.3.31 and mod_frontpage (dso,| |29498|New|Maj|2004-06-10|non-anonymous ftp broken in mod_proxy | |29538|Ass|Enh|2004-06-12|No facility used in ErrorLog to syslog| |30207|New|Nor|2004-07-20|Piped logs don't close read end of pipe | |30877|New|Nor|2004-08-26|htpasswd clears passwd file on Sun when /var/tmp i| |30909|New|Cri|2004-08-28|sporadic segfault resulting in broken connections | |31975|New|Nor|2004-10-29|httpd-1.3.33: buffer overflow in htpasswd if calle| |32078|New|Enh|2004-11-05|clean up some compiler warnings | |32539|New|Trv|2004-12-06|[PATCH] configure --enable-shared= brocken on SuSE| |32974|Inf|Maj|2005-01-06|Client IP not set | |33086|New|Nor|2005-01-13|unconsistency betwen 404 displayed path and server| |33495|Inf|Cri|2005-02-10|Apache crashes with "WSADuplicateSocket failed for| |33772|New|Nor|2005-02-28|inconsistency in manual and error reporting by sue| |33875|New|Enh|2005-03-07|Apache processes consuming CPU| |34108|New|Nor|2005-03-21|mod_negotiation changes mtime to mtime of Document| |34114|New|Nor|2005-03-21|Apache could interleave log entries when writing t| |34404|Inf|Blk|2005-04-11|RewriteMap prg can not handle fpout | |34571|Inf|Maj|2005-04-22|Apache 1.3.33 stops logging vhost| |34573|Inf|Maj|2005-04-22|.htaccess not working / mod_auth_mysql| |35424|New|Nor|2005-06-20|httpd disconnect in Timeout on CGI| |35439|New|Nor|2005-06-21|Problem with remove "/../" in util.c and mod_rewri| |35547|Inf|Maj|2005-06-29|Problems with libapreq 1.2 and Apache::Cookie | |3|New|Nor|2005-06-30|Can't find DBM on Debian Sarge| |36375|Opn|Nor|2005-08-26|Cannot include http_config.h from C++ file| |37166|New|Nor|2005-10-19|Under certain conditions, mod_cgi delivers an empt| |37252|New|Reg|2005-10-26|gen_test_char reject NLS string | |38989|New|Nor|2006-03-15|restart + piped logs stalls httpd for 24 minutes (| |39104|New|Enh|2006-03-25|[FR] fix build with -Wl,--as-needed | |39287|New|Nor|2006-04-12|Incorrect If-Modified-Since validation (due to syn| |39937|New|Nor|2006-06-30|Garbage output if README.html is gzipped or compre| |40224|Ver|Nor|2006-08-10|System time crashes Apache @year 2038 (win32 only?| |41279|New|Nor|2007-01-02|Apache 1.3.37 htpasswd is vulnerable to buffer ove| |42355|New|Maj|2007-05-08|Apache 1.3 permits non-rfc HTTP error code >= 600 | |43626|New|Maj|2007-10-15|r->path_info returning invalid value | |44768|New|Blk|2008-04-07|Server suddenly reverted to showing test page only| |44926|
