apache 2.0.35 rpm in dist area
I've got no replies about my proposal to add the apache 2.0.35 rpm into apache download area. http://ftp.falsehope.com/home/gomez/apache2/ i386 and PowerPC available - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: Apache 2.0.35 Linux RPM available
No problem... I may ask you to generate some RPM for jakarta-tomcat connectors (mod_jk for examples) ;) take a look at the source rpm at : http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1/rpms/ tomcat-mod-3.3.1-1.src.rpm http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.3/rpms/ tomcat-connectors-1.0-1.4.0.2.src.rpm - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Graham Leggett [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, April 10, 2002 5:08 PM >To: [EMAIL PROTECTED] >Subject: Re: Apache 2.0.35 Linux RPM available > > >GOMEZ Henri wrote: > >> could I upload them to falsehope next to my i386 rpms ? > >If you need any other RPMs done, just shout. > >Regards, >Graham >-- >- >[EMAIL PROTECTED] "There's a moon > over Bourbon Street > tonight..."
RE: Apache 2.0.35 Linux RPM available
could I upload them to falsehope next to my i386 rpms ? - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Graham Leggett [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, April 10, 2002 3:20 PM >To: [EMAIL PROTECTED] >Subject: Re: Apache 2.0.35 Linux RPM available > > >GOMEZ Henri wrote: > >> here it is ;) > >This one works lekker. :) > >The RPMs can be picked up from http://chandler.sharp.fm/. > >Regards, >Graham >-- >- >[EMAIL PROTECTED] "There's a moon > over Bourbon Street > tonight..."
Apache 2.0.35 Linux RPM release 2 available
This second release of RPM fix a problem in build where libapr.so didn't get installed properly in buildroot/usr/lib. http://ftp.falsehope.com/home/gomez/apache2/ apache2-2.0.35-2.src.rpm apache2-2.0.35-2.i386.rpm apache2-devel-2.0.35-2.i386.rpm apache2-manual-2.0.35-2.i386.rpm - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: Apache 2.0.35 Linux RPM available
here it is ;) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Graham Leggett [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, April 10, 2002 12:05 PM >To: [EMAIL PROTECTED] >Subject: Re: Apache 2.0.35 Linux RPM available > > >GOMEZ Henri wrote: > >> you should have something similar for gpg since recent >> rpm from redhat use gpg. >> >> http://dan.yosemite.ca.us/rpm-signing-howto.html > >Thanks! This seems to have everything I need. > >> BTW, the patch could be used but i prefer correct my make >> install and add libdir in command line. >> >> I'll send updated .spec in minutes ;) > >Cool - will wait for it. > >Regards, >Graham >-- >- >[EMAIL PROTECTED] "There's a moon > over Bourbon Street > tonight..." apache2-2.0.35.spec Description: apache2-2.0.35.spec
RE: Apache 2.0.35 Linux RPM available
>> you should have (for pgp, gpg must be similar) >> >> %_signature pgp >> %_pgp_path /root/.pgp >> %_pgp_name yourpgp@youradress > >This is for pgp, not gnupg (which is what I am using). The RPM website >is a bit thin on details, and I could find nothing about this >in the rpm >manual. Does gnupg have a pgp compatibility mode? Also could find >nothing about this in the gnupg manual... :( you should have something similar for gpg since recent rpm from redhat use gpg. http://dan.yosemite.ca.us/rpm-signing-howto.html ==> %_signature gpg %_gpg_path ~/.gnupg %_gpg_name "Dan Anderson <[EMAIL PROTECTED]>" %vendor: Dan E. Anderson http://dan.drydog.com/ %packager Dan E. Anderson http://dan.drydog.com/ %distribution Dan E. Anderson http://dan.drydog.com/ Regards. BTW, the patch could be used but i prefer correct my make install and add libdir in command line. I'll send updated .spec in minutes ;)
RE: Apache 2.0.35 Linux RPM available
excellent, i'll add the patch and updload a second RPM
release.
I hope this patch will be included in next Apache 2.0 release
-
Henri Gomez ___[_]
EMAIL : [EMAIL PROTECTED](. .)
PGP KEY : 697ECEDD...oOOo..(_)..oOOo...
PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
>-Original Message-
>From: Andreas Hasenack [mailto:[EMAIL PROTECTED]]
>Sent: Tuesday, April 09, 2002 10:47 PM
>To: [EMAIL PROTECTED]
>Subject: Re: Apache 2.0.35 Linux RPM available
>
>
>Em Tue, Apr 09, 2002 at 09:57:44PM +0200, Graham Leggett escreveu:
>> When I try and build the RPM as a non-root user, the install
>part of the
>> build bombs out like so. Seems that libapr is being copied
>into /usr/lib
>> instead of /var/tmp/apache2-35-root/usr/lib.
>
>I added a destdir patch to
>http://nagoya.apache.org/bugzilla/show_bug.cgi?id=7803
>if anyone is interested.
>
>(i.e., just issue "make DESTDIR=%{buildroot} install" in the spec)
>
>
RE: Apache 2.0.35 Linux RPM available
>The ppc RPM builds fine, good >but I cannot get the signing >procedure to work: >looks like rpm does not work with gpg: could you take a look at your $HOME/.rpmmacros you should have (for pgp, gpg must be similar) %_signature pgp %_pgp_path /root/.pgp %_pgp_name yourpgp@youradress >[root@jessica minfrin]# rpm -vv --sign --rebuild >apache2-2.0.35-1.src.rpm >Enter pass phrase: >usage: gpg [options] [filename] >Pass phrase check failed > >Any clues on fixing this? > >Regards, >Graham >-- >- >[EMAIL PROTECTED] "There's a moon > over Bourbon Street > tonight..."
RE: Apache 2.0.35 Linux RPM available
Yes, thanks It could be usefull to know the distribution you use to build it. BTW, I'll be happy to see if the reports on this ppc built ;) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Graham Leggett [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, April 09, 2002 11:44 AM >To: [EMAIL PROTECTED] >Subject: Re: Apache 2.0.35 Linux RPM available > > >GOMEZ Henri wrote: > >> It would be fine if these RPMs could be uploaded to apache dist dir >> to make them available to rpm users. Since the source rpm is included >> it will be easy to rebuild binary rpms on others platform >(ppc/sparc/ia64) >> and others distributions whatever kernel or glibc are in use. > >I can contribute a ppc.rpm - will make it available later >today and send >the URL to you, if it's useful. > >Regards, >Graham >-- >- >[EMAIL PROTECTED] "There's a moon > over Bourbon Street > tonight..."
Apache 2.0.35 Linux RPM available
Hi to all, You could find the Apache 2.0.35 rpm for Linux at : http://ftp.falsehope.com/home/gomez/apache2/ apache2-2.0.35-1.src.rpm apache2-2.0.35-1.i386.rpm apache2-devel-2.0.35-1.i386.rpm apache2-manual-2.0.35-1.i386.rpm There are signed with my PGP key (the same used for jakartas RPMs). The rpm is built on Redhat 6.2 Linux Box but should run on all Redhat 7.x and others i386 distributions like Mandrake or Suse. Particularity : - the apache2 rpm could coexist with standard apache 1.3 rpm found on major linux distributions, which could be very usefull for sites wanting to evaluate it before switching from 1.3 to 2.0 - To avoid conflict with apache 1.3 server, it listen on port 8092 and 8093 for SSL but it could be changed in /etc/httpd2/conf/httpd2.conf and /etc/httpd2/conf/ssl.conf. - DocumentRoot is on /var/www2/html, error files in /var/www2/error, manual in /var/www2/manual, icons in /var/www2/icons, cgi in /var/www2/cgi-bin - Configuration live in /etc/httpd2/conf/ and a dummy 'SnakeOil' server SSL cert is installed to make test of mod_ssl. - the RPM follow general policies with installation of services, and will install httpd2 via chkconfig but won't make it automatically started. You should use ntsysv or tools on your distribution to make it automatically started. After installation after rpm -Uvh, you should start manually the httpd2 service via : /sbin/service httpd2 start or on old distro /etc/rc.d/init.d/httpd2 start It would be fine if these RPMs could be uploaded to apache dist dir to make them available to rpm users. Since the source rpm is included it will be easy to rebuild binary rpms on others platform (ppc/sparc/ia64) and others distributions whatever kernel or glibc are in use. Regards - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: 2.0.35 binaries for Linux boxes
When trying to use shmcb I've got : mod_ssl cannot allocate shared memory error It works fine with dbm Any idea ? >-Original Message- >From: GOMEZ Henri >Sent: Monday, April 08, 2002 6:08 PM >To: [EMAIL PROTECTED] >Subject: RE: 2.0.35 binaries for Linux boxes > > >>> I agree that many site put everything under ServerRoot, >>> but when you specify in config.layout that DocumentRoot >>> goes under /var/www2/html, you don't want to see the final >>> httpd.conf under /etc/httpd2/var/www2/html >> >>Yeah... Ok... >> >>That's why I said to use "@exp_dir@" instead of >>"@@ServerRoot@@[EMAIL PROTECTED]@"... Try replacing those values in your >>httpd.conf.in, and rerun ./config.status, and tell me if it >>works (since I >>was the one who made that part of the change)... > >Arg so it was you ;) > >For now, I 'cowardly' made major replacement in httpd.conf.in via >sed to be sure my RPM will works on my Redhat 6.2 and 7.2 and will try >the @exp_...dir@ later, may be tomorrow... > >so should I replace for example ? > >@@ServerRoot@@/@rel_logfiledir@ => @exp_logfiledir@ > >
RE: 2.0.35 binaries for Linux boxes
>> I agree that many site put everything under ServerRoot, >> but when you specify in config.layout that DocumentRoot >> goes under /var/www2/html, you don't want to see the final >> httpd.conf under /etc/httpd2/var/www2/html > >Yeah... Ok... > >That's why I said to use "@exp_dir@" instead of >"@@ServerRoot@@[EMAIL PROTECTED]@"... Try replacing those values in your >httpd.conf.in, and rerun ./config.status, and tell me if it >works (since I >was the one who made that part of the change)... Arg so it was you ;) For now, I 'cowardly' made major replacement in httpd.conf.in via sed to be sure my RPM will works on my Redhat 6.2 and 7.2 and will try the @exp_...dir@ later, may be tomorrow... so should I replace for example ? @@ServerRoot@@/@rel_logfiledir@ => @exp_logfiledir@
RE: 2.0.35 binaries for Linux boxes
Nota also in the 1.3.24 Makefile.tmpl,
the usefull vars :
conf_user, conf_group, conf_serveradmin, conf_servername
-
Henri Gomez ___[_]
EMAIL : [EMAIL PROTECTED](. .)
PGP KEY : 697ECEDD...oOOo..(_)..oOOo...
PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
>-Original Message-
>From: GOMEZ Henri
>Sent: Monday, April 08, 2002 3:23 PM
>To: [EMAIL PROTECTED]
>Subject: RE: 2.0.35 binaries for Linux boxes
>
>
>Hi Pier,
>
>I agree that many site put everything under ServerRoot,
>but when you specify in config.layout that DocumentRoot
>goes under /var/www2/html, you don't want to see the final
>httpd.conf under /etc/httpd2/var/www2/html
>
>FHS is very clear on where to deploy such datas and split
>configuration, binaries, datas and logs...
>
>That's a real problem today for ALL RPM distributions,
>not only Linux but also the OpenPKG which is solaris/bsd based.
>
>The only solution is to patch httpd-std.conf.in but it's allways
>bad to patch like this, making it a pain at each release.
>
>BTW, in Apache 1.3, Makefile.tmpl there is a second pass at
>install time which replace @@ServerRoot@@
>
>===>
>
> cat $(TOP)/conf/$${conf}-dist ) |\
> sed -e '/# LoadModule/r $(TOP)/$(SRC)/.apaci.install.conf' \
>-e 's;@@ServerRoot@@/htdocs/manual;$(manualdir);' \
>-e 's;@@ServerRoot@@/htdocs;$(htdocsdir);' \
>-e 's;@@ServerRoot@@/icons;$(iconsdir);' \
>-e 's;@@ServerRoot@@/cgi-bin;$(cgidir);' \
>-e 's;@@ServerRoot@@/proxy;$(proxycachedir);' \
>-e 's;@@ServerRoot@@;$(prefix);g' \
>-e 's;httpd\.conf;$(TARGET).conf;' \
>-e 's;logs/accept\.lock;$(runtimedir)/$(TARGET).lock;' \
>-e
>'s;logs/apache_runtime_status;$(runtimedir)/$(TARGET).scoreboard;' \
>-e 's;logs/httpd\.pid;$(runtimedir)/$(TARGET).pid;' \
>-e
>"s;logs/access_log;$(logfiledir)/$${target_prefix}access_log;" \
>-e
>"s;logs/error_log;$(logfiledir)/$${target_prefix}error_log;" \
>-e
>"s;logs/referer_log;$(logfiledir)/$${target_prefix}referer_log;" \
>-e
>"s;logs/agent_log;$(logfiledir)/$${target_prefix}agent_log;" \
>-e 's;conf/magic;$(sysconfdir)/magic;' \
>-e 's;conf/mime\.types;$(sysconfdir)/mime.types;' \
>-e 's;User nobody;User $(conf_user);' \
>-e 's;Group #-1;Group $(conf_group);' \
>-e 's;Group "#-1";Group $(conf_group);' \
>-e 's;Port 80;Port $(conf_port);' \
>-e 's;ServerAdmin [EMAIL PROTECTED];ServerAdmin
>$(conf_serveradmin);' \
>-e 's;ServerName new.host.name;ServerName
>$(conf_servername);' \
>> $(TOP)/$(SRC)/.apaci.install.tmp && \
>
>
><===
>
>
>-
>Henri Gomez ___[_]
>EMAIL : [EMAIL PROTECTED](. .)
>PGP KEY : 697ECEDD...oOOo..(_)..oOOo...
>PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
>
>
>
>>-Original Message-
>>From: Pier Fumagalli [mailto:[EMAIL PROTECTED]]
>>Sent: Monday, April 08, 2002 2:56 PM
>>To: [EMAIL PROTECTED]
>>Subject: Re: 2.0.35 binaries for Linux boxes
>>
>>
>>GOMEZ Henri <[EMAIL PROTECTED]> wrote:
>>
>>> -
>>> +
>>
>>Those will screw up the whole httpd.conf in some cases... You
>>should really
>>use "@exp_..dir@"...
>>
>>Pier
>>
>>
>
RE: 2.0.35 binaries for Linux boxes
Hi Pier,
I agree that many site put everything under ServerRoot,
but when you specify in config.layout that DocumentRoot
goes under /var/www2/html, you don't want to see the final
httpd.conf under /etc/httpd2/var/www2/html
FHS is very clear on where to deploy such datas and split
configuration, binaries, datas and logs...
That's a real problem today for ALL RPM distributions,
not only Linux but also the OpenPKG which is solaris/bsd based.
The only solution is to patch httpd-std.conf.in but it's allways
bad to patch like this, making it a pain at each release.
BTW, in Apache 1.3, Makefile.tmpl there is a second pass at
install time which replace @@ServerRoot@@
===>
cat $(TOP)/conf/$${conf}-dist ) |\
sed -e '/# LoadModule/r $(TOP)/$(SRC)/.apaci.install.conf' \
-e 's;@@ServerRoot@@/htdocs/manual;$(manualdir);' \
-e 's;@@ServerRoot@@/htdocs;$(htdocsdir);' \
-e 's;@@ServerRoot@@/icons;$(iconsdir);' \
-e 's;@@ServerRoot@@/cgi-bin;$(cgidir);' \
-e 's;@@ServerRoot@@/proxy;$(proxycachedir);' \
-e 's;@@ServerRoot@@;$(prefix);g' \
-e 's;httpd\.conf;$(TARGET).conf;' \
-e 's;logs/accept\.lock;$(runtimedir)/$(TARGET).lock;' \
-e 's;logs/apache_runtime_status;$(runtimedir)/$(TARGET).scoreboard;' \
-e 's;logs/httpd\.pid;$(runtimedir)/$(TARGET).pid;' \
-e "s;logs/access_log;$(logfiledir)/$${target_prefix}access_log;" \
-e "s;logs/error_log;$(logfiledir)/$${target_prefix}error_log;" \
-e "s;logs/referer_log;$(logfiledir)/$${target_prefix}referer_log;" \
-e "s;logs/agent_log;$(logfiledir)/$${target_prefix}agent_log;" \
-e 's;conf/magic;$(sysconfdir)/magic;' \
-e 's;conf/mime\.types;$(sysconfdir)/mime.types;' \
-e 's;User nobody;User $(conf_user);' \
-e 's;Group #-1;Group $(conf_group);' \
-e 's;Group "#-1";Group $(conf_group);' \
-e 's;Port 80;Port $(conf_port);' \
-e 's;ServerAdmin [EMAIL PROTECTED];ServerAdmin $(conf_serveradmin);' \
-e 's;ServerName new.host.name;ServerName $(conf_servername);' \
> $(TOP)/$(SRC)/.apaci.install.tmp && \
<===
-
Henri Gomez ___[_]
EMAIL : [EMAIL PROTECTED](. .)
PGP KEY : 697ECEDD...oOOo..(_)..oOOo...
PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
>-Original Message-
>From: Pier Fumagalli [mailto:[EMAIL PROTECTED]]
>Sent: Monday, April 08, 2002 2:56 PM
>To: [EMAIL PROTECTED]
>Subject: Re: 2.0.35 binaries for Linux boxes
>
>
>GOMEZ Henri <[EMAIL PROTECTED]> wrote:
>
>> -
>> +
>
>Those will screw up the whole httpd.conf in some cases... You
>should really
>use "@exp_..dir@"...
>
>Pier
>
>
RE: 2.0.35 binaries for Linux boxes
The story continue : 1) Pidfile is located in http.conf into @rel_logfiledir@ instead of @rel_runtimedir@ (following fhs) so we got PidFile /var/log/httpd2/httpd2.pid instead of PidFile /var/run/httpd2.pid as recommanded by FHS (and used by RH/MDK distros) 2) Redhat Linux (and maybe others), require User and Group set (ie) User apache2 Group apache2 Could we add in configure a --with-user and --with-group flag to set them ? In httpd-std.conf.in it could became User @rel_user@ Group @rel_group@ Final point, I've got ServerRoot in /etc/httpd2 and DocumentRoot in /var/www2/html via layout.config So I finish with DocumentRoot /etc/httpd2/var/www2/html instead of just DocumentRoot /var/www2/html Could we avoid having @ServerRoot@ appended to @rel_htdocsdir@ ? Ditto for error when @rel_errordir@ is created from layout.config and for @rel_manualdir@ Regards ===> --- docs/conf/httpd-std.conf.in Thu Apr 4 11:15:43 2002 +++ docs/conf/httpd-std.conf.in.new Mon Apr 8 14:46:02 2002 @@ -78,7 +78,7 @@ # identification number when it starts. # -PidFile @rel_logfiledir@/httpd.pid +PidFile @rel_runtimedir@/httpd.pid # @@ -250,8 +250,8 @@ # when the value of (unsigned)Group is above 6; # don't use Group #-1 on these systems! # -User nobody -Group #-1 +User @rel_user@ +Group @rel_group@ @@ -290,7 +290,7 @@ # documents. By default, all requests are taken from this directory, but # symbolic links and aliases may be used to point to other locations. # -DocumentRoot "@@ServerRoot@@/@rel_htdocsdir@" +DocumentRoot "@rel_htdocsdir@" # # Each directory to which Apache has access can be configured with respect @@ -315,7 +315,7 @@ # # This should be changed to whatever you set DocumentRoot to. # - + # # Possible values for the Options directive are "None", "All", @@ -513,9 +513,9 @@ # the manual, even if you choose to move your DocumentRoot. You may comment # this out if you do not care for the documentation. # -Alias /manual "@@ServerRoot@@/@rel_manualdir@" +Alias /manual "@rel_manualdir@" - + Options Indexes FollowSymLinks MultiViews AllowOverride None Order allow,deny @@ -860,9 +860,9 @@ -Alias /error/ "@@ServerRoot@@/@rel_errordir@/" +Alias /error/ "@rel_errordir@/" - + AllowOverride None Options IncludesNoExec AddOutputFilter Includes html
2.0.35 binaries for Linux boxes
Hi to all, I've worked on Apache 2.0 rpms for sometimes now, just take a look here : http://ftp.falsehope.com/home/gomez/apache2/ BTW, I'm working now on 2.0.35 rpm, which coexist with standard Apache 1.3 on Redhat 6.x/7.x, mainly by using /etc/httpd2/conf dir, /var/log/httpd2, listening on port 8092 Will you be interested in this rpm which will ease the installation and use for all Redhat users, (but Suse/Mandrake may use it also). These distro users prefer the RPM packaging ;) Regards - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
mod_ldap for Apache 2.0
Did there is a plan to add mod_ldap to Apache 2.0 ? For now I only see documentation. Regards
RE: Some patches to start supporting AS/400 (iSeries)
>GOMEZ Henri <[EMAIL PROTECTED]> writes: > >> What about the patches sent by IBM iSeries folks ? >> Could you send them back to the list to let iSeries >> developpers take a look at them ? > >They aren't my patches... I don't feel free to redistribute. I >imagine that you'll have to get them from the iSeries folks (or >hopefully get some updated ones). That's why I send a mail to the list, knowing IBM people are tracking it. I hope someone could also forward the request to apr list ;) I CCed this email to RCHAPACH in Rochester which is the only IBM Fellow who reply to my post about iSeries Patches. Regards
RE: Some patches to start supporting AS/400 (iSeries)
What about the patches sent by IBM iSeries folks ? Could you send them back to the list to let iSeries developpers take a look at them ? Thanks - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Jeff Trawick [mailto:[EMAIL PROTECTED]] >Sent: Monday, November 19, 2001 2:02 PM >To: [EMAIL PROTECTED] >Subject: Re: Some patches to start supporting AS/400 (iSeries) > > >"Gomez Henri" <[EMAIL PROTECTED]> writes: > >> The account [EMAIL PROTECTED] is a generic accound which let > >the use of that account isn't a problem... we just wondered who sent >the patch :) > >> What do you think of the patches ? I know that IBM allready >> do the Apache 2.0 port from Apache 2.0beta18, and it works >> fine on AS/400, but since the IBM fellows port was not donated >> to ASF, to be included in standard distro, I decided to spend >> a little time to works on that port. > >they're small, and that's nice... they looked weird in the mail >client I was using though... > >as far as the AS/400 folks... they have sent their changes to folks >in my department at IBM (who are more in the mainstream Apache >development)... frankly, I found it far too much to digest at once >and have been too lazy^H^H^H^Hbusy to do anything with it > >also, they've posted some fixes to dev@[apr|httpd].apache.org... > >> Yes it's stupid to duplicate works but I'd like to have the >> original Apache 2.0 on my iSeries from the main source and >> repository, and not just to respect the OSS spirit of ASF. >> But, may be, some of you could try some lobbying on IBM officials >> and managers to commit the AS/400 patches back to original CVS >> for both APR and Apache 2.0 > >I don't think any lobbying is necessary. They know it is in their >best interest. But note that their code base is a lot older, with >many things changed since then. Also, their goal was to get a stable, >tested product out in a particular timeframe, not go through the >political+technical minefield of getting patches committed. The >results are surely different. > >If you've made good progress towards getting current code ported to >AS/400, and you can post it in bite-sized chunks for us to understand, >then let's concentrate on that. > >As I mentioned before, I'm curious about how far along you are. If >you are at the state of APR recognizing that it is AS/400 but nothing >works, then I personally won't spend any time looking at the patches >until you're further along. Others may take a different approach. > >I hope this doesn't sound like any sort of gauntlet. If we weren't >interested in your work we wouldn't have bothered commenting on your >post. > >Thanks, >-- >Jeff Trawick | [EMAIL PROTECTED] | PGP public key at web site: > http://www.geocities.com/SiliconValley/Park/9289/ > Born in Roswell... married an alien... >
RE: Apache 2.0.27 and 2.0.28 RPM available
>We (as the Apache Group) can't make the assumption that every >OS knows what they are doing. What you guys should probably do >is *always* run ./buildconf to ensure that your libtool version >overrides whatever one we distribute. We're going to try to make >the decision that is best across all platforms - which is to >recommend using the one we provide in the release tarball. In your >situations (both you and Henri), your libtool is known to be >better - so, just do ./buildconf and it'll magically be identical >to the one you have in your path. =) I'm just rebuilding my RPM with the ./buildconf and but it fail, nota that my Redhat 6.2 box use libtool 1.3.4 : Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.76092 + umask 022 + cd /usr/src/redhat/BUILD + cd httpd-2_0_28 + cat + ./buildconf rebuilding srclib/apr/configure buildconf: checking installation... buildconf: autoconf version 2.13 (ok) buildconf: libtool version 1.3.4 (ok) Copying libtool helper files ... Creating include/arch/unix/apr_private.h.in ... Creating configure ... rebuilding srclib/apr-util/configure Creating include/private/apu_config.h ... Creating configure ... Invoking xml/expat/buildconf.sh ... Incorporating /usr/share/aclocal/libtool.m4 into aclocal.m4 ... Copying libtool helper files ... Putting files in AC_CONFIG_AUX_DIR, `conftools'. Creating config.h.in ... Creating configure ... rebuilding srclib/pcre/configure rebuilding include/ap_config_auto.h.in rebuilding configure + CFLAGS=-O2 -m486 -fno-strength-reduce + ./configure --with-program-name=httpd2 --with-port=8092 --with-mpm=threaded --prefix=/etc/httpd2 --exec-prefix=/usr --bindir=/usr/sbin --sbindir=/usr/sbin --libexecdir=/usr/lib/apache2 --mandir=/usr/man --localstatedir=/var --sysconfdir=/etc/httpd2/conf --datadir=/var/www2 --includedir=/usr/include/apache2 --enable-layout=RedHat6 --enable-modules=all --enable-mods-shared=all --enable-ssl --enable-so --with-ssl=/usr/include/ creating cache ./config.cache checking host system type... i686-pc-linux-gnu checking target system type... i686-pc-linux-gnu checking build system type... i686-pc-linux-gnu ... /usr/src/redhat/BUILD/httpd-2_0_28/include/ap_config_auto.h:158: warning: `SERVER_CONFIG_FILE' redefined /usr/src/redhat/BUILD/httpd-2_0_28/include/ap_config_auto.h:152: warning: this is the location of the previous definition /bin/sh /usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr/libtool --silent --mode=compile gcc -pthread -DNO_DBM_REWRITEMAP -O2 -m486 -fno-strength-reduce -DLINUX=2 -D_REENTRANT -D_XOPEN_SOURCE=500 -D_BSD_SOURCE -D_SVID_SOURCE -I/usr/include/db1 -DAP_HAVE_DESIGNATED_INITIALIZER -I. -I/usr/src/redhat/BUILD/httpd-2_0_28/os/unix -I/usr/src/redhat/BUILD/httpd-2_0_28/server/mpm/threaded -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/http -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/proxy -I/usr/src/redhat/BUILD/httpd-2_0_28/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr-util/include -I/usr/include/openssl -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/dav/main -c ssl_util_ssl.c && touch ssl_util_ssl.slo In file included from /usr/src/redhat/BUILD/httpd-2_0_28/include/ap_config.h:270, from /usr/src/redhat/BUILD/httpd-2_0_28/include/httpd.h:72, from mod_ssl.h:93, from ssl_util_ssl.c:60: /usr/src/redhat/BUILD/httpd-2_0_28/include/ap_config_auto.h:158: warning: `SERVER_CONFIG_FILE' redefined /usr/src/redhat/BUILD/httpd-2_0_28/include/ap_config_auto.h:152: warning: this is the location of the previous definition /bin/sh /usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr/libtool --silent --mode=compile gcc -pthread -DNO_DBM_REWRITEMAP -O2 -m486 -fno-strength-reduce -DLINUX=2 -D_REENTRANT -D_XOPEN_SOURCE=500 -D_BSD_SOURCE -D_SVID_SOURCE -I/usr/include/db1 -DAP_HAVE_DESIGNATED_INITIALIZER -I. -I/usr/src/redhat/BUILD/httpd-2_0_28/os/unix -I/usr/src/redhat/BUILD/httpd-2_0_28/server/mpm/threaded -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/http -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/proxy -I/usr/src/redhat/BUILD/httpd-2_0_28/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr-util/include -I/usr/include/openssl -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/dav/main -c ssl_util_table.c && touch ssl_util_table.slo /bin/sh /usr/src/redhat/BUILD/httpd-2_0_28/shlibtool --silent --mode=link gcc -pthread -DNO_DBM_REWRITEMAP -O2 -m486 -fno-strength-reduce -DLINUX=2 -D_REENTRANT -D_XOPEN_SOURCE=500 -D_BSD_SOURCE -D_SVID_SOURCE -I/usr/include/db1 -DAP_HAVE_DESIGNATED_INITIALIZER -I. -I/usr/src/redhat/BUILD/httpd-2_0_28/os/unix -I/usr/src/redhat/BUILD/httpd-2_0_28/server/mpm/threaded -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/http -I/usr/src/redhat/BUILD/httpd-2_0_28/modules/proxy -I/usr/src/redhat/BUILD/httpd-2_0_28/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr/include -I/usr/src/redhat/BUILD/httpd-2_0_28/srclib/apr-util/inc
RE: SSL and certficates script
Excellent works I'll be happy to see it included in Apache 2.0 distribution. With a few html/cgi stuff, it could be also used even by 'newbies' - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1) >[mailto:[EMAIL PROTECTED]] >Sent: Friday, November 23, 2001 12:17 AM >To: MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1); 'Gomez Henri' >Cc: '[EMAIL PROTECTED]' >Subject: RE: SSL and certficates script > > >Okay.. here's a more refined version of the script - including >features for >client / ca certificate generation.. I've tried to keep it simple and >modular - pl. let me know if you have any feedback.. > >-Madhu > >-Original Message- >From: Gomez Henri [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, November 21, 2001 3:30 PM >To: MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1) >Cc: '[EMAIL PROTECTED]' >Subject: RE: SSL and certficates script > > >En réponse à "MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1)" ><[EMAIL PROTECTED]>: > >> The script is pretty similar to what we had for Apache >1.3.x.. You can >> get >> the usage details by "./mkcert.sh --help".. Pl. do let me know if the >> Usage >> details provided are not sufficient - I'll try to put in more details >> there.. > >I just want to say that this script is a SUPERB tool and everything >is present to have the graal of SSL certs. > >We need a tool to generate : > >1) a custom CA cert >2) custom server certs signed with that CA >3) client (browser) certs signed all with that CA > >What will give Apache 2.0 a decent simple "PKI" and which will >be very usefull for small companies... > > >> The creation of a self-signed CA and a certificate are both linked >> together >> - it can be created by "./mkcert.sh --custom" or "./mkcert.sh >> --type=custom".. >> >> Did you want to just create the self-signed CA certificate only, and >> NOT >> the >> server certificate ?.. If yes, then it's not possible with >the current >> script.. I'm trying to make it more modular, so that you can have a >> mix-n-match of the functions.. >> Also, I've changed the layout of the files to a certain extent - the >> .csr >> files now go into the conf/ssl.crt/ directory itself -if this is not >> okay, I >> can change it back to go to conf/ssl.csr/ > >The scripts I sent previously included code to generate the client >cert (PKCS12 format). I feel you have now everything to give AP2.0 >its own little Cert Agency :) > >Hope you could do that for us :) > > >- >Henri Gomez ___[_] >EMAIL : [EMAIL PROTECTED](. .) >PGP KEY : 697ECEDD...oOOo..(_)..oOOo... >PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 > >
RE: Apache 2.0.27 and 2.0.28 RPM available
>> What's the problem with libtool allready present on the >> system ? > >As I mentioned to Daniel, it may not be GNU libtool. For RH and >Debian, it will be. For other platforms, it may a) not even be >GNU libtool, or b) not even be in the PATH at all (everything but >Linux). Yes, if you take a look a tomcat-dev for JTC, you'll see that I couldn't build mod_webapp for Apache 2.0 with Apache 2.0 libtool, but I could with GNU libtool. I could send you many logs of mod_jk/mod_webapp built with system libtool and apache 2.0 generated libtool. Also I could attach the generated libtool. >> Which make me think about including APR, EXPAT and all >> in Apache 2.0. >> >> Latest release (2.0.28beta) make apr, expat as shared libs. >> Could we imagine configuring and building Apache 2.0 with >> apr/expat as external shared libs ie : >> >> --with-apr-lib= >> --with-apr-include= >> >> --with-expat-lib= >> --with-expat-include= >> >> Could we also imagine to have expat.h and apr_*.h in >> expat and apr include dir ??? > >I think the proper thing is trying to get proper layout >support into APR and APR-util. And, we can also do that with >expat as well and contribute back to them (Greg Stein has commit >access to expat and can help facilitate contributions back to >expat). > >I absolutely disagree with your patch for J-T-C about this. >But, I'm not a committer there, so I am impotent. =) With that patch, I could make web_app start compiling on a system where apr is not installed under $prefix. I strongly believe in APR and I saw not reason why we should have APR installed alone on system, and to follow FHS it should live under /usr/lib/libapr* and /usr/include/apr/apr_*.h. Dito for Expat... >> I attached my spec file and also patch to make Apache 2.0 Beta28 >> more FHS compliant > >Can you contribute stuff to the layout to help this? > >Furthermore, most of the stuff in your patch has already been >committed (except for the apachectl fix which is awful to get >right). Madhu submitted a change to ssl-std.conf to do the same >thing as your HAVE_SSL change, but instead relies on the standard >SSL define (which apachectl passes in with -DSSL). -- justin Nice, does it means that I won't have to also add my defines in ap_config.h ?
RE: Apache 2.0.27 and 2.0.28 RPM available
>> sysconfdir is not respected, as the conf file is defined in >configure.in >> to be conf/$progname.conf. > >IMHO, --prefix is generally implied as the default binary path. >--sysconfdir is where we should place config files. But, I >know we aren't handling that correctly. But, our config >layout has always been a bit messy. What do you mean by prefix as default binary path ? execprefix is for executable, sysconfdir for config, but what's binary path ?
RE: Apache 2.0.27 and 2.0.28 RPM available
>> For PIDFILE, you meant @runtimedir@, didn't you? But, it has >> the same problem as @sbindir@. > >Yep. > >> I also won't change httpd-std.conf as we want them to explicitly >> run apachectl startssl which defines SSL (what you'd really want to >> change is ssl-std.conf anyway not httpd-std.conf - that check there >> is right - if you change define SSL to define HAVE_SSL you have the >> right idea). FWIW, I think it should be enabled if it is compiled >> in, but no one else agrees with me. =) >> >> > >> - update apxs to let user use it's own installed >> > >libtool instead of >> > >>the one in $prefix/build. >> > > >> > >Check. >> >> No. We want to be picky with our libtool version - the version we >> built with (i.e. in build/) is the one want to use with >> apxs-enabled builds. > >Why's this? Apache / APR want to use their own libtool. What's the problem with libtool allready present on the system ? Which make me think about including APR, EXPAT and all in Apache 2.0. Latest release (2.0.28beta) make apr, expat as shared libs. Could we imagine configuring and building Apache 2.0 with apr/expat as external shared libs ie : --with-apr-lib= --with-apr-include= --with-expat-lib= --with-expat-include= Could we also imagine to have expat.h and apr_*.h in expat and apr include dir ??? Just to follow the future life of APR which will be more than just Apache 2.0 sub-lib >> > FYI, here is a part of what should be patched or change >via perl to make >> > apache 2 fit better on FHS from my spec file : >> >> >> I have no clue what this is. =) Please explain. > >A .spec file is what is used to build an RPM. Its format is fairly >self-explanatory, if (IMHO) on some very, very potent crack. > >> > I've got some questions for Apache2 developpers : >> > >> > What prefix represent, a basedir for conf, or binary, >> > or data ? >> >> I would say binary, but it is all relative to the layout. > >My ServerRoot is /etc/apache2, but almost nothing uses that. Mine is /etc/httpd2 Here is also my httpd2 -V Server version: Apache/2.0.28 Server built: Nov 22 2001 23:18:49 Server's Module Magic Number: 20011002:0 Server compiled with -D APACHE_MPM_DIR="server/mpm/threaded" -D APR_FILE_BASED_SHM -D APR_HAS_MMAP -D APR_HAVE_IPV6 -D APR_USE_FCNTL_SERIALIZE -D APR_USE_PTHREAD_SERIALIZE -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D APR_HAS_OTHER_CHILD -D AP_HAVE_RELIABLE_PIPED_LOGS -D HTTPD_ROOT="/etc/httpd2" -D SUEXEC_BIN="/usr/sbin/suexec2" -D DEFAULT_PIDLOG="/var/run/httpd2.pid" -D DEFAULT_SCOREBOARD="/var/run/httpd2.apache_runtime_status" -D DEFAULT_LOCKFILE="/var/run/httpd2.accept.lock" -D DEFAULT_ERRORLOG="/var/log/httpd2/error_log" -D SERVER_CONFIG_FILE="/etc/httpd2/conf/httpd2.conf" >> > Should I set $prefix to /etc/httpd2 instead of /usr ? >> >> I don't think so. > >Er, crap. ;) What ? >> We *should* respect sysconfdir - then all of config stuff goes >> into /etc/httpd2. I guess you could make a case that build is >> part of the sysconfdir, but I'm not so sure - none of it is >> user-configurable. It's a different beast. -- justin > >sysconfdir is not respected, as the conf file is defined in >configure.in >to be conf/$progname.conf. Mine live now in /etc/httpd2/conf/ I attached my spec file and also patch to make Apache 2.0 Beta28 more FHS compliant apache2-2.0-beta28.spec Description: Binary data apache-2_0_28-beta.patch Description: Binary data
install didn't respect manualdir
I saw a little problem in Makefile.in which didn't install
correctly manual dir, it use prefix/manual instead of manualdir :
Here is the fix :
--- Makefile.in.origThu Nov 22 00:36:09 2001
+++ Makefile.in Thu Nov 22 00:37:01 2001
@@ -95,8 +95,8 @@
@echo Installing HTML documents
@test -d $(htdocsdir) || $(MKINSTALLDIRS) $(htdocsdir)
@test -d $(htdocs-srcdir) && (cd $(htdocs-srcdir) && cp -rp * $(htdocsdir))
-
@test -d $(prefix)/manual || $(MKINSTALLDIRS) $(prefix)/manual
-
@test -d $(top_srcdir)/docs/manual && (cd $(top_srcdir)/docs/manual && cp -rp *
$(prefix)/manual)
+
@test -d $(manualdir) || $(MKINSTALLDIRS) $(manualdir)
+
@test -d $(top_srcdir)/docs/manual && (cd $(top_srcdir)/docs/manual && cp -rp *
$(manualdir))
@(cd $(htdocsdir) && find . -name "CVS" -print | xargs rm -rf {} \;)
Regards
-
Henri Gomez ___[_]
EMAIL : [EMAIL PROTECTED](. .)
PGP KEY : 697ECEDD...oOOo..(_)..oOOo...
PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: SSL and certficates script
En réponse à "MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1)" <[EMAIL PROTECTED]>: > The script is pretty similar to what we had for Apache 1.3.x.. You can > get > the usage details by "./mkcert.sh --help".. Pl. do let me know if the > Usage > details provided are not sufficient - I'll try to put in more details > there.. I just want to say that this script is a SUPERB tool and everything is present to have the graal of SSL certs. We need a tool to generate : 1) a custom CA cert 2) custom server certs signed with that CA 3) client (browser) certs signed all with that CA What will give Apache 2.0 a decent simple "PKI" and which will be very usefull for small companies... > The creation of a self-signed CA and a certificate are both linked > together > - it can be created by "./mkcert.sh --custom" or "./mkcert.sh > --type=custom".. > > Did you want to just create the self-signed CA certificate only, and > NOT > the > server certificate ?.. If yes, then it's not possible with the current > script.. I'm trying to make it more modular, so that you can have a > mix-n-match of the functions.. > Also, I've changed the layout of the files to a certain extent - the > .csr > files now go into the conf/ssl.crt/ directory itself -if this is not > okay, I > can change it back to go to conf/ssl.csr/ The scripts I sent previously included code to generate the client cert (PKCS12 format). I feel you have now everything to give AP2.0 its own little Cert Agency :) Hope you could do that for us :) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: SSL and certficates script
Good, How did we use this script to create the self-signed CA ? - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1) >[mailto:[EMAIL PROTECTED]] >Sent: Wednesday, November 21, 2001 6:04 AM >To: '[EMAIL PROTECTED]' >Subject: RE: SSL and certficates script > > >If anybody is (still) interested, here's a much >legible/modular version of >the same script.. > >-Madhu > > >-Original Message- >From: Aaron Bannert [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, November 20, 2001 4:17 PM >To: [EMAIL PROTECTED] >Subject: Re: SSL and certficates script > > >On Tue, Nov 20, 2001 at 07:00:34PM -0500, MATHIHALLI,MADHUSUDAN >(HP-Cupertino,ex1) wrote: >> Okay, here it comes.. Pl. do let me know if you have >any problems. > >Hi Madhu, > >Sorry for giving you such a hard time today. :) Your work is >appreciated. > >Would you mind reposting with either MIME-type text/plain or >just posting >the patch inline? > >Thanks, >aaron > > >
RE: Apache 2.0.27 and 2.0.28 RPM available
>I've committed the change to use @sbindir@ in apxs. Good ! >apachectl is a much harder beast as we have to get rid of the >$(exec_prefix) crap in config_vars.mk (sbindir=$(exec_prefix)/bin - >we can't have the ()s in there). For some reason, I think that is >what the Debian folks posted as a sed script. Daniel? I don't >have the time to do this right now. >For PIDFILE, you meant @runtimedir@, didn't you? But, it has >the same problem as @sbindir@. Could we assume work in progress ? >I also won't change httpd-std.conf as we want them to explicitly >run apachectl startssl which defines SSL (what you'd really want to >change is ssl-std.conf anyway not httpd-std.conf - that check there >is right - if you change define SSL to define HAVE_SSL you have the >right idea). FWIW, I think it should be enabled if it is compiled >in, but no one else agrees with me. =) The redhat httpd.init is interesting and automatically detect modules in /usr/lib/apache/ and add the -DHAVE_XXX at httpd. Just attached for review :) Having SSL automatically started with no certificate or dummy one, could be a problem, and I understand your friends in that case :) >> >> - update apxs to let user use it's own installed >> >libtool instead of >> >>the one in $prefix/build. >> > >> >Check. > >No. We want to be picky with our libtool version - the version we >built with (i.e. in build/) is the one want to use with >apxs-enabled builds. The problem is with $prefix. Everything works fine when you have everything under /usr/local/apache2 for example but when you try to follow FHS (FreeBSD, Linux), you're stucked. Should $prefix/build be under /etc/httpd2/, /usr/lib/apache2/, or /usr/share/apache2/ ? Since it include exec and config, I feel it should be in /usr/share/apache2/ but I'd like to see other FHS gurus opinion > >Commented on this yesterday. I don't like this. gre >> >> - have httpd-std.conf supporting datadir and config.layout. >> >>For example, htdocs location in conf file, still >> >didn't follow what >> >> has >> >>been set in config.layout. >> > >> >Hm, I just have a very minimalistic apache2.conf that I distribute, >> >users can make changes in httpd.conf (simplifies packaging). >> >> Do you put your own copy of apache2.conf (we're using httpd2.conf) or >> do you put a patched version from distro ? The latest release expand >> nicely with @@LoadModule@@, and I'd like if they could add a >@@AddModule@@ >> to make works. > >Can you please give an example of what you want? The @@LoadModule@@ is expended with all LoadModule xxx, it will be fine to have @@AddModule@@ which will expend : ClearModuleList AddModule mod_vhost_alias.c AddModule mod_env.c AddModule mod_log_config.c Not deprecated in Apache 2.0 ? >> >> The general goal is to try to have Apache 2.0 more >FHS compliant >> >> without having >> >> to make huge patchs (or perl replace) at each release ;) >> > >> >Well, my package manages to fit into Debian FHS, and only has >> >11 patches >> >all up. >> >> FYI, here is a part of what should be patched or change via >perl to make >> apache 2 fit better on FHS from my spec file : > > >I have no clue what this is. =) Please explain. perl is just used to change the httpd.conf/ssl.conf to match FHSied DocumentRoot (/var/www2/error/, /var/www2/cgi/, /var/www2/html/, /var/www2/manual/) >> I've got some questions for Apache2 developpers : >> >> What prefix represent, a basedir for conf, or binary, >> or data ? > >I would say binary, but it is all relative to the layout. > >> Should I set $prefix to /etc/httpd2 instead of /usr ? > >I don't think so. > >> If may fit better with my layout where ALL config, >> and particulary the one for build subdir live in /etc/httpd2/ > >We *should* respect sysconfdir - then all of config stuff goes >into /etc/httpd2. I guess you could make a case that build is >part of the sysconfdir, but I'm not so sure - none of it is >user-configurable. It's a different beast. -- justin As I said our friends Pier and JF Clere included $prefix/config_var.mk in mod_jk and mod_webapp and I was wondering if it's needed or required. When you have prefix = /usr and config_var.mk in /etc/httpd2/build make process failed I attached also the configure.in from mod_jk :) httpd2.init Description: Binary data configure.in Description: Binary data
RE: SSL and certficates script
For those interested, here are mine derived from my jonama project (http://www.multimania.com/jonama/) jmca => create a CA cert and then could be used to create user certs jgenscrt => create server certs with the CA previously created by jmca. Regards - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Eric Hubert [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, November 20, 2001 8:31 AM >To: [EMAIL PROTECTED] >Subject: RE: SSL and certficates script > > >Hi Madhu! > >Sorry for the late reply. Could you please post your script! >I'm very interested. > >[...] >> script directly. I have a script which does similar stuff >[i'd modified >> Ralf's script to do some customizations] - I can post it if >anybody is >> interested.. > jgenscrt Description: Binary data jmca Description: Binary data
RE: Reporting on Patches of FreeBSD ports (fwd)
>On Mon, Nov 19, 2001 at 09:58:49PM +0100, GOMEZ Henri wrote: >> - It could be fine also to add --with-ssl-port > >I'd rather see them set the SSL port manually, but that's >me. Other people? the idea is primary for packaging but make sense since therfe is a --with-port. Just to be consistent. >> - config_vars.mk is installed under $prefix/build >> whereas I'd like to put it on /usr/lib/apache2 >> (which could be libexecdir). >> apxs could be extended to report config_vars.mk >> path via a query like : apxs -q CONFIG_VARS.MK > >Why? It is strictly a build thing (i.e. it is a >Makefile fragment). Yes, but mod_jk/mod_webapp include it in all their makefile and cause me problems. Question, should we include config_vars.mk in a module build Makefile ? >> I'm +1000 with httpd installed on sbindir instead >> of bindir, which is a general policy for unix daemons. > >AFAICT, httpd is installed to the sbindir - just that >the default layout has sbindir == bindir. =) Yes, but the apachectl is using HTTPD='@prefix@/bin/@progname@' instead of HTTPD='@sbindir@/@progname@' Also in apachectl, @prefix@/logs/@progname@.pid, instead of @runtimedir@@progname@.pid as it was it Apache 1.3. Fortunatly these should be easy to fix :) >I think the biggest complaint so far is that we don't >have --with-layout support. Any volunteers? > >If you guys are building packages, please just submit >your patches that you applied to the tree in as clean >a manner as possible. We can wade through them (much >like what we did with Daniel's Debian patches). -- justin Sent :)
RE: Apache 2.0.27 and 2.0.28 RPM available
>Comparing with my Debian packages, the patches from which I will post
>after my exam:
Hope you'll be successfull :)
>On Mon, Nov 19, 2001 at 01:40:55PM +0100, GOMEZ Henri wrote:
>> BTW: From my RPM works I detect many stuff which could (should)
>> be added :
>>
>> - Modify apachectl and apxs to use @sbindir@/@progname@ instead
>>of @prefix@/bin/@progname@. A security concert on
>many distrib
>>(ie Redhat which use /usr/sbin for httpd)
>
>Check.
Ditto, but borred...
>> - update apxs to let user use it's own installed
>libtool instead of
>>the one in $prefix/build.
>
>Check.
>
>> - add a --with-ssl-port as we have --with-port
>
>Nope, could you please send this to dev@httpd?
Requirement sent yesterday.
>> - have httpd-std.conf supporting datadir and config.layout.
>>For example, htdocs location in conf file, still
>didn't follow what
>> has
>>been set in config.layout.
>
>Hm, I just have a very minimalistic apache2.conf that I distribute,
>users can make changes in httpd.conf (simplifies packaging).
Do you put your own copy of apache2.conf (we're using httpd2.conf) or
do you put a patched version from distro ? The latest release expand
nicely with @@LoadModule@@, and I'd like if they could add a @@AddModule@@
to make works.
>> The general goal is to try to have Apache 2.0 more FHS compliant
>> without having
>> to make huge patchs (or perl replace) at each release ;)
>
>Well, my package manages to fit into Debian FHS, and only has
>11 patches
>all up.
FYI, here is a part of what should be patched or change via perl to make
apache 2 fit better on FHS from my spec file :
# patch apachectl to make it follow sbindir for binaries
%patch1
# patch apxs2 to make it follow sbindir for binaries and config.mk in
/usr/lib/apache2
%patch2
# patch httpd-conf to replace by
%patch3
# set ssl port to 8093
perl -pi -e "s|443|%{ssllport}|g;" docs/conf/ssl-std.conf
# replace by provided by init script
perl -pi -e "s|||g;" docs/conf/ssl-std.conf
# comment ServerName in ssl
perl -pi -e "s|ServerName|#ServerName|g;" docs/conf/ssl-std.conf
# change logs/ to /var/log/httpd2/
perl -pi -e "s|logs/|%{logdir}/|g;" docs/conf/httpd-std.conf
perl -pi -e "s|logs/|%{logdir}/|g;" docs/conf/ssl-std.conf
# change conf in ssl conf
perl -pi -e "s|\@\@\ServerRoot\@\@/conf/|%{confdir}/|g;"
docs/conf/ssl-std.conf
# change conf/ to /etc/httpd2/conf/
perl -pi -e "s|conf/|%{confdir}/|g;" docs/conf/httpd-std.conf
# set @@ServerRoot@@/htdocs to /var/www2/html
perl -pi -e "s|\@\@\ServerRoot\@\@/htdocs|%{contentdir}/html|g;"
docs/conf/httpd-std.conf
perl -pi -e "s|\@\@\ServerRoot\@\@/htdocs|%{contentdir}/html|g;"
docs/conf/ssl-std.conf
# set @@ServerRoot@@/ to /var/www2/
perl -pi -e "s|\@\@\ServerRoot\@\@/|%{contentdir}/|g;"
docs/conf/httpd-std.conf
perl -pi -e "s|\@\@\ServerRoot\@\@/|%{contentdir}/|g;"
docs/conf/ssl-std.conf
# set @@ServerRoot@@ to /usr
perl -pi -e "s|\@\@\ServerRoot\@\@|/usr|g;" docs/conf/httpd-std.conf
# change userid from nobody to apache2
perl -pi -e "s|nobody|%{name}|g;" docs/conf/httpd-std.conf
CFLAGS="$RPM_OPT_FLAGS" ./configure \
--with-program-name=httpd2 \
--with-port=8092 \
--with-mpm=threaded \
--prefix=%{_prefix} \
--exec-prefix=%{_prefix} \
--bindir=%{_sbindir} \
--sbindir=%{_sbindir} \
--libexecdir=%{_libdir}/%{name} \
--mandir=%{_mandir} \
--localstatedir=%{_localstatedir} \
--sysconfdir=%{_sysconfdir}/%{pname}/conf \
--datadir=%{contentdir} \
--includedir=%{_includedir}/%{name} \
--enable-layout=RedHat6 \
--enable-modules=all \
--enable-mods-shared=all \
--enable-ssl \
--enable-so \
--with-ssl=/usr/include/
# quick patches to fix httpd.conf and cgisock locations
perl -pi -e 's|conf/httpd2.conf|%{_sysconfdir}/%{pname}/conf/httpd2.conf|g'
include/ap_config_auto.h
perl -pi -e 's|logs/cgisock|%{_var}/log/%{pname}/cgisock|g'
./modules/generators/mod_cgid.c
cat >> include/ap_config_auto.h <> include/ap_config_auto.h < config
/etc/httpd2/build => make config (damn't I just so this one,
I'll remove
/usr/lib/apache2/config_vars.mk !!!)
/etc/httpd2/conf/ssl.crl
/etc/httpd2/conf/ssl.crt
/etc/httpd2/conf/ssl.csr
/etc/httpd2/conf/ssl.key
/etc/httpd2/conf/ssl.pem => ssl stuff (preloaded with Snake Oil dummy cert
since the
make cert is still not present in
distro)
/var/www2/manual=> manual pages
/var/www2/error => error pages
/var/w
RE: Reporting on Patches of FreeBSD ports (fwd)
I saw we have similar same problems. I'm working on Apache 2.0 RPM (on Redhat boxes) http://ftp.falsehope.com/home/gomez/apache2/ So I try to have it more 'FHS' compatible, and so it's a pain since many parts in conf/build process still assume that everything is under $prefix. Some others points : - It could be fine also to add --with-ssl-port - config_vars.mk is installed under $prefix/build whereas I'd like to put it on /usr/lib/apache2 (which could be libexecdir). apxs could be extended to report config_vars.mk path via a query like : apxs -q CONFIG_VARS.MK I'm +1000 with httpd installed on sbindir instead of bindir, which is a general policy for unix daemons. >From: Hye Shik Chang <[EMAIL PROTECTED]> >Reply-To: [EMAIL PROTECTED] >To: [EMAIL PROTECTED] >Subject: Reporting on Patches of FreeBSD ports > >Hello! > > I'm FreeBSD port maintainer of Apache2. > I heard that some apache developers want to get a upstream from > package distribution maintainers. > > This is local patch list of apache 2.0.28 port: > > . config.layout > - Apache2's configure script can't handle external layout file. > (apache13 can handle custom layoutfile with >--with-layout=file:layout) > . Makefile.in > - It uses hardcoded path instead of $libexecdir on making >http-std.conf. > - and, uses hardcoded path on Installing manual, too. > - Somebody want not to install manual. Can't it be optional? > . configure > - building & installing srclib/apr and srclib/apr-util is earlier > than loading layout. therefore, apr and apr-util ignores layout. > - DEFAULT_ERRORLOG, SERVER_CONFIG_FILE, AP_TYPES_CONFIG_FILE and > DOCUMENT_LOCATION doesn't uses hardcoded path instead of >layout path. > . docs/conf/httpd-std.conf, ssl-std.conf > - doesn't templates layout on many lines. > . support/apachectl.in > - PIDFILE ignores runtimedir on layout > - HTTPD ignores sbindir on layout > > You can see FreeBSD ports patch on http://fallin.lv/distfiles/apache2.0.28-port.tar.gz Cheers! :) -- Hye-Shik
Apache 2.0.28 and config_vars.ml
Hi to all, I'm trying to rebuild jk and webapp from jakarta-tomcat-connectors and notice that the Makefile we try to include config_vars.mk, which is awaited under $prefix/build/. Problem, it fit well for Apache 2.0 using default packaging (ie all under /usr/local/apache) but fail when we have it installed under another directory, ie /usr/lib/apache2 (see my latest RPM), to make it more FHS compatible. Question: Did modules need to include config_vars.mk in there makefile and if so could we imagine get that file path via APXS ? APXS -q CONFIG_VAR_MK - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: Some patches to start supporting AS/400 (iSeries)
>Just to let you know, we are working to get patches back into >ASF, but as >Jeff mentioned in another post, we opted to get a stable >product first. Something I could understand as iSeries user :) >We >are also at work trying to keep up with the latest tarballs. That's why I found important to add such patches to general CVS as soon as they are available ;) >But, we are >also interested in the patches you submitted. I'll take a >look as well... Certainly nothing you didn't have allready, notice I selected icc (gnutools compiler wrapper) as default CC and not your internal CMVC ;) Suggestions : 1) Resend to the list the patches you applied to beta18, to let iSeries developpers around (don't tell me I'm alone :), take a look at them 2) Send first APR (build/OS spec )patches and then the Apache 2.0's. Regards from someone who was a Rochester in CTC, just one month ago :)
RE: Some patches to start supporting AS/400 (iSeries)
>the use of that account isn't a problem... we just wondered who sent >the patch :) ;) it's just me >> What do you think of the patches ? I know that IBM allready >> do the Apache 2.0 port from Apache 2.0beta18, and it works >> fine on AS/400, but since the IBM fellows port was not donated >> to ASF, to be included in standard distro, I decided to spend >> a little time to works on that port. > >they're small, and that's nice... they looked weird in the mail >client I was using though... It's the preliminary part, some adds needed to have autoconf recognise AS/400 - OS/400. >as far as the AS/400 folks... they have sent their changes to folks >in my department at IBM (who are more in the mainstream Apache >development)... frankly, I found it far too much to digest at once >and have been too lazy^H^H^H^Hbusy to do anything with it I'll be interested getting a copy of it, just to avoid me spending many times on closed road. >also, they've posted some fixes to dev@[apr|httpd].apache.org... > >> Yes it's stupid to duplicate works but I'd like to have the >> original Apache 2.0 on my iSeries from the main source and >> repository, and not just to respect the OSS spirit of ASF. >> But, may be, some of you could try some lobbying on IBM officials >> and managers to commit the AS/400 patches back to original CVS >> for both APR and Apache 2.0 > >I don't think any lobbying is necessary. They know it is in their >best interest. But note that their code base is a lot older, with >many things changed since then. Also, their goal was to get a stable, >tested product out in a particular timeframe, not go through the >political+technical minefield of getting patches committed. The >results are surely different. The global goal is to be able to rebuild Apache 2.0 from tarball to any decent AS/400, and IBM have done some good works by porting some GNU tools, like gmake and the icc (CRTCMOD compiler wrapper). >If you've made good progress towards getting current code ported to >AS/400, and you can post it in bite-sized chunks for us to understand, >then let's concentrate on that. As I said I'm in preliminary stage, having configure part working and continue as time permit. And yes, I'll be interested in having access to patches provided by Rochester Folks (Hi Ho Minnesota friends). >As I mentioned before, I'm curious about how far along you are. If >you are at the state of APR recognizing that it is AS/400 but nothing >works, then I personally won't spend any time looking at the patches >until you're further along. Others may take a different approach. Porting on AS/400 is not so easy (a really different system for a Unix child) and there is still lack of many usefull tool (like autoconf) but with gnutools port, it's possible. >I hope this doesn't sound like any sort of gauntlet. If we weren't >interested in your work we wouldn't have bothered commenting on your >post. Thanks for your support, I'll continue on it and tell you regulary the progress :) I saw your interest, and I'm more than happy.
RE: Some patches to start supporting AS/400 (iSeries)
Ok, let clarify :) I'm commiter on tomcat project, works on mod_jk and allready sent many patches and contributions to Apache 2.0 (ie: apxs fix to build with multiples source files) The account [EMAIL PROTECTED] is a generic accound which let us (SLIB developpers) follow the [EMAIL PROTECTED], and have it handled directly by our exchange mail server. I also used that M$ Exchange Trick to reduce the volume of emails I receive each days (I allready many Apache list for example tomcat-dev, cvs). That trick let me follow mod_ssl, new-httpd, openssl, ...) What do you think of the patches ? I know that IBM allready do the Apache 2.0 port from Apache 2.0beta18, and it works fine on AS/400, but since the IBM fellows port was not donated to ASF, to be included in standard distro, I decided to spend a little time to works on that port. Yes it's stupid to duplicate works but I'd like to have the original Apache 2.0 on my iSeries from the main source and repository, and not just to respect the OSS spirit of ASF. But, may be, some of you could try some lobbying on IBM officials and managers to commit the AS/400 patches back to original CVS for both APR and Apache 2.0 - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Jeff Trawick [mailto:[EMAIL PROTECTED]] >Sent: Saturday, November 17, 2001 2:32 PM >To: [EMAIL PROTECTED] >Cc: [EMAIL PROTECTED] >Subject: Re: Some patches to start supporting AS/400 (iSeries) > > >"httpd user" <[EMAIL PROTECTED]> writes: > >> Hi to all, >> >> I've got some patchs to start the AS/400 (IBM iSeries) port >of APR and Apache 2.0. >> I hope you'll be interested to include it :) > >For my benefit, and perhaps the benefit of others... > >. who are you (your e-mail looks familiar) >. if you post patches as attachments, can you set the mime type to > text/plain? >. if a patch is for srclib/apr or srclib/apr-util, please post it to > [EMAIL PROTECTED] >. give us an idea of the amount of work required to get it to work on > iSeries (just for curiosity) > >-- >Jeff Trawick | [EMAIL PROTECTED] | PGP public key at web site: > http://www.geocities.com/SiliconValley/Park/9289/ > Born in Roswell... married an alien... >
Apache 2.0.27 and 2.0.28 RPM available
Ok, now I'm subscribed I could announce, more easily, some works related to Apache 2.0. Apaceh 2.0.27 alpha and 2.0.28 beta are available at : http://ftp.falsehope.com/home/gomez/apache2/ To have them installable on a Linux boxes, together with good-old Apache 1.3.x, executable, config, directories have been renamed and listen port changed (8092 and 8093 for SSL). config live in : /etc/httpd2/conf/ rotate : /etc/logrotate.d/httpd2 init stuff : /etc/rc.d/init.d/httpd2 modules in : /usr/lib/apache2/ manuals in /usr/man/man1 & /usr/man/man8 and file renamed to name2 : ie: apxs = apxs2 Documents in : /var/www2/html/ /var/www2/icons/ /var/www2/error/ exec in : /usr/sbin/ . BTW: From my RPM works I detect many stuff which could (should) be added : - Modify apachectl and apxs to use @sbindir@/@progname@ instead of @prefix@/bin/@progname@. A security concert on many distrib (ie Redhat which use /usr/sbin for httpd) - update apxs to let user use it's own installed libtool instead of the one in $prefix/build. - add a --with-ssl-port as we have --with-port - have httpd-std.conf supporting datadir and config.layout. For example, htdocs location in conf file, still didn't follow what has been set in config.layout. - same thing for logs dir 'logs/*' , runtime files (access_log, error_log, cgi_sock...) The general goal is to try to have Apache 2.0 more FHS compliant without having to make huge patchs (or perl replace) at each release ;) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
RE: Some patches to start supporting AS/400 (iSeries)
I'm subscribed now :) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED](. .) PGP KEY : 697ECEDD...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Gomez Henri [mailto:[EMAIL PROTECTED]] >Sent: Monday, November 19, 2001 1:11 PM >To: [EMAIL PROTECTED] >Subject: Re: Some patches to start supporting AS/400 (iSeries) > > >>>Ryan Bloom wrote: >>> >>> I don't see why we can't. The code needs to be reviewed >>> whether the code is submitted with a name or not. > >>Rodent of Unusual Size [[EMAIL PROTECTED]] wrote: >> >>One word: liability. Two more: patent infringement. >>I think we need some evidence of good faith that the >>code isn't encumbered, or else it can't get any closer >>than the contrib directory. The accountability of a >>reasonable submitter name is far from perfect, but not >>as far as that of an anonymous one. :-) > >Ok, I understand, but do you means I'll have to subscribe >directly to [EMAIL PROTECTED] in order to propose >some patches ? > >It make sense to follow [EMAIL PROTECTED] when you're >a regular developper and contributor (commiter), but I don't >fit in that category today and really have concern on reducing >the number of emails I could reasonnabily handle each days. > >But if it's mandatory, not problem, I'll subscribe to dev list > > >- >Henri Gomez ___[_] >EMAIL : [EMAIL PROTECTED] (. .) >PGP KEY : 697ECEDD ...oOOo..(_)..oOOo... >PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >
Re: Some patches to start supporting AS/400 (iSeries)
>>Ryan Bloom wrote: >> >> I don't see why we can't. The code needs to be reviewed >> whether the code is submitted with a name or not. >Rodent of Unusual Size [[EMAIL PROTECTED]] wrote: > >One word: liability. Two more: patent infringement. >I think we need some evidence of good faith that the >code isn't encumbered, or else it can't get any closer >than the contrib directory. The accountability of a >reasonable submitter name is far from perfect, but not >as far as that of an anonymous one. :-) Ok, I understand, but do you means I'll have to subscribe directly to [EMAIL PROTECTED] in order to propose some patches ? It make sense to follow [EMAIL PROTECTED] when you're a regular developper and contributor (commiter), but I don't fit in that category today and really have concern on reducing the number of emails I could reasonnabily handle each days. But if it's mandatory, not problem, I'll subscribe to dev list - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED] (. .) PGP KEY : 697ECEDD ...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
Re: Some patches to start supporting AS/400 (iSeries)
Ok, let clarify :) I'm commiter on tomcat project, works on mod_jk and allready sent many patches and contributions to Apache 2.0 (ie: apxs fix to build with multiples source files) The account [EMAIL PROTECTED] is a generic accound which let us (SLIB developpers) follow the [EMAIL PROTECTED], and have it handled directly by our exchange mail server. I also used that M$ Exchange Trick to reduce the volume of emails I receive each days (I allready many Apache list for example tomcat-dev, cvs). That trick let me follow mod_ssl, new-httpd, openssl, ...) What do you think of the patches ? I know that IBM allready do the Apache 2.0 port from Apache 2.0beta18, and it works fine on AS/400, but since the IBM fellows port was not donated to ASF, to be included in standard distro, I decided to spend a little time to works on that port. Yes it's stupid to duplicate works but I'd like to have the original Apache 2.0 on my iSeries from the main source and repository, and not just to respect the OSS spirit of ASF. But, may be, some of you could try some lobbying on IBM officials and managers to commit the AS/400 patches back to original CVS for both APR and Apache 2.0 - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED] (. .) PGP KEY : 697ECEDD ...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 >-Original Message- >From: Jeff Trawick [mailto:[EMAIL PROTECTED]] >Sent: Saturday, November 17, 2001 2:32 PM >To: [EMAIL PROTECTED] >Cc: [EMAIL PROTECTED] >Subject: Re: Some patches to start supporting AS/400 (iSeries) > > >"httpd user" <[EMAIL PROTECTED]> writes: > >> Hi to all, >> >> I've got some patchs to start the AS/400 (IBM iSeries) port >of APR and Apache 2.0. >> I hope you'll be interested to include it :) > >For my benefit, and perhaps the benefit of others... > >. who are you (your e-mail looks familiar) >. if you post patches as attachments, can you set the mime type to > text/plain? >. if a patch is for srclib/apr or srclib/apr-util, please post it to > [EMAIL PROTECTED] >. give us an idea of the amount of work required to get it to work on > iSeries (just for curiosity) > >-- >Jeff Trawick | [EMAIL PROTECTED] | PGP public key at web site: > http://www.geocities.com/SiliconValley/Park/9289/ > Born in Roswell... married an alien... >
SSL and certficates script
Did the server certificate creation shell script, from mod_ssl, will be included in future release of Apache 2.0 ? Regards
RE: 2.0.28 and mod_jk
>This may not be the appropriate list for this topic - but I was >wondering if anybody has been trying to bring up mod_jk (with Tomcat 3.3b2) >with Apache ?.. I get the following SEGV - any clues into what may be >happening ?.. mod_jk for Apache 2.0 is fully supported but no more live on tomcat-3.3 cvs. All effort on mod_jk in now on jk you could find in jakarta-tomcat-connectors cvs. Could you test with that version and report to tomcat-dev instead with [JTC] on subject ? Regards
Re: New proxy hook
>>Daniel Lopez at [EMAIL PROTECTED] wrote: >> I understand your concern with easy configuration. What I am advocating is >> adding all those features but still use HTTP as the transport (like >> subversion does for cvs). This eliminates the need to develop and maintain >> your own protocol, allows you to take advantage of things like SSL and any >> improvements that you make to reverse proxy, like load balancing, can be >> used by other modules or setups with any backend server, not only tomcat. >Pier wrote >And you keep missing my point when I say that you can already do that with >Tomcat 4.x, and WARP/WebApp are an addition to that method in terms of >performance and ease of use... We already have and use the functionality >provided by an HTTP-based reverse proxy (TC4.0/4.1, Tomcat HTTP/1.1 >connector and mod_proxy in Apache), but we need more :) Hi Pier and Daniel, Some points here : Using reverse-proxy seems to be 'à la mode' since I've been told that the latest WebSphere use today such relaying instead of it's own previous protocol. BTW, using it's own protocol between a webserver and a servlet engine has some advantage : 1) HTTP is pretty verbose and text based, and dialog could be speeded-up by make it more 'binary' (stuff done by mod_jk/ajp13-ajp14 and mod_webapp/warp) 2) There is thing which lies to servlet world which didn't feet well in HTTP, for example forwarding serialised session data from servlet engine to webserver for future reuse (mod_jk/ajp14 W.I.P) 3) We must be clear here, HTTP protocol, Apache HTTP server and Servlet API didn't match very well often (welcome files, mime mappings, etc) it's a nightmare to support all web.xml features ;) 4) mod_jk support Session Afinity, ie is able to forward all request to a known tomcat, in a tomcat farm, by taking a look at SessionId. A mandatory stuff for load-balancing configuration. But it's still nice to have more features in mod_proxy ;)
IBM iSeries (AS/400) using Apache 2.0 and Tomcat
Apache 2.0.18 is present in iSeries (AS/400) http://www-1.ibm.com/servers/eserver/iseries/software/http/services/apache.h tm And they use tomcat also http://www-1.ibm.com/servers/eserver/iseries/software/http/services/tomcat.h tml And to link the both they use mod_jk (ajp12/ajp13/jni) ;) - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED] (. .) PGP KEY : 697ECEDD ...oOOo..(_)..oOOo... PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
Re: cvs commit: httpd-2.0 STATUS
>> Some people believe his veto is illegitimate -- that there is no technical >> reason for vetoing the inclusion into modules/experimental. >Ryan wrote: >I have removed my veto. Although, I would point out that illegitimate veto >or not, nobody in this group has ever gotten away with going through a veto. >The only reason I have removed my veto is that it really looks like everybody >was about to ignore it anyway. This whole thing just leaves me with a bad >taste in my mouth. All I keep thinking, is that we are trying to spite RC by >adding a different GZ module. As a mod_gzip user, I was first happy to see it included in Apache 2.0 distro, but Ryan got very valid arguments, one being that the core should be tiny, fast and bug free. The argument for having modules included in release is that if they are outside, they are invisible, but on the contrary having the modules outside core, will help modules writers be more reactive. A clean solution could be to add a page (on site and in distro) listing all known external modules, functionnalities provided and of course their home page. Apache 1.3 used to have a contrib tar.gz, it may be also another alternative. I'm strongly for small core and +1 with Ryan here. Regards
RE: why not post mod_gzip 2.0? (was: Re: [PATCH] Add mod_gz to httpd-2.0)
>> Why won't you post mod_gzip 2.0 *today*? >Because Apache 2.x is not STABLE, not In BETA and the API set is not yet >FROZEN... When it is, we will release mod_gzip as a third party module, >which we will support and maintain. There is actually many alpha release, and many of then are more than beta quality. IBM team started from a apache 2.0.18-beta to have their Apache 2.0 port for iSeries. If you have a module INSIDE Apache you'll have more chance to have some decision in API changes. >In the meantime use mod_gz. Frankly if mod_gz is included in apache core, it will be the de-facto reference, and chance to have mod_gzip used will low
re: why not post mod_gzip 2.0? (was: Re: [PATCH] Add mod_gz to httpd-2.0)
>You and Kevin never answered my simple question: >Why won't you post mod_gzip 2.0 *today*? Kevin, the best way to have mod_gzip in Apache 2.0 is to make it available. You knows i'm using it on Apache 1.3 for many times and be more than happy to see such an excellent works on 2.0 :)
Re: [PATCH] Add mod_gz to httpd-2.0
>Hi Henri... >This is Kevin Kiley. >It isn't necessary to ask Jean or Mark about leaks in ZLIB with >regards to mod_gzip or add any 'warnings' because mod_gzip >does NOT USE ZLIB. Hi Kevin, happy to see you there :))) You're right, now the gzip code in included in mod_gzip.c and didn't rely anymore on the zlib external lib. And I didn't even noticed :( Question, when did you included the gzip code in mod_gzip ? I remember I've to add -lz -lm when compiling in early age of mod-gzip >There are no 'leaks' of any kind in mod_gzip >and since it uses its own context-based control deck for all compression >tasks it is 100% thread-safe. true... Your suggestion is a good one but it would only apply to things that actually use ZLIB such as Ian's 2.0 filtering demo. > >And Tomcat 4.x :) > >Pier May be APR team could use you code to make it available to others modules or apps :!!! Thanks Kevin, I also updated my mod_gzip RPM :
Re: [PATCH] Add mod_gz to httpd-2.0
>"Ryan Bloom" <[EMAIL PROTECTED]> wrote: >> If you want to use gzip, then zip your data before putting it on-line. That >> doesn't help generated pages, but perl can already do gzip, as can PHP. Let me expose my mod_gzip user experience. I'm using it for more that 9 months on Apache 1.3 servers and never had any problems with it. It's really a great piece of code and all my end users are more than happy to get their stuff quicker. What about asking Jean-loup Gailly and Mark Adler about the leaks in zlib library, and possible fixes ? In case of severe problem, you could still add a warning to mod_gzip potential users. >And Tomcat 4.x :) >Pier Hello, Pier, happy to see your here also. Compression is a time consuming task and I'd rather like to see it handled by native code instead of java code. Of course the same thing is true for Crypto operation, and that's why I was more than happy to see mod_ssl contributed to Apache 2.0 :)))
Apache 2.0 on IBM iSeries (AS/400)
Hi, I'm working on Linux and also AS/400 (yes there is Unix hackers using that exotic OS) Since OS/400 release V5R1, Apache 2.0 is included :))) Reported as Apache 2.0.18 (beta ?) It's very pleasant to reuse httpd.conf on AS/400. Did you know if it the same code base and if the IBM teams (iSeries) back port some stuff to the ORIGINAL code base. Did they also use APR ? I know that there is Big Blue gurus around which should (could ?) answer to that questions :)) Some pointers for people interested : http://www-1.ibm.com/servers/eserver/iseries/software/http/services/apache.h tm http://www-3.ibm.com/services/learning/community/as400/itso2/CP02.pdf Regards. PS: More Apache goodies used, a Tomcat is also used and communicate with Apache via mod_jk and jni (something I know well as Tomcat commiter)
recommanded configure for 2.0.24 ?
Also what's the recommanded ./configure params on Linux boxes ? I'm using the following which may be a little longer ./configure \ --with-mpm=threaded \ --enable-so \ --enable-env=shared \ --enable-setenvif=shared \ --enable-unique_id=shared \ --enable-mime=shared \ --enable-mime_magic=shared \ --enable-negotiation=shared \ --enable-alias=shared \ --enable-rewrite=shared \ --enable-userdir=shared \ --enable-speling=shared \ --enable-dir=shared \ --enable-autoindex=shared \ --enable-access=shared \ --enable-auth=shared \ --enable-auth_anon=shared \ --enable-auth_db=shared \ --enable-auth_dbm=shared \ --enable-auth_digest=shared \ --enable-headers=shared \ --enable-cern_meta=shared \ --enable-expires=shared \ --enable-asis=shared \ --enable-include=shared \ --enable-cgi=shared \ --enable-cgid=shared \ --enable-actions=shared \ --enable-status=shared \ --enable-info=shared \ --enable-log_config=shared \ --enable-usertrack=shared \ --enable-imap=shared \ --enable-mmap_static=shared \ --enable-dav=shared \ --enable-dav-fs=shared \ --enable-vhost-alias=shared \ --enable-echo=shared \ --enable-cache=shared \ --enable-suexec=shared \ --enable-ssl=shared \ --with-ssl=/usr May be the following is more recommanded ? ./configure \ --with-mpm=threaded \ --enable-so \ --enable-module=all \ --enable-mods-shared=all \ --enable-so \ --enable-ssl --with-ssl=/usr/include/ Thanks for your advice, AP 2.0 gurus
2.0.24 and ssl and perchild
The problem I related previously appears only when using --with-mpm=perchild No problem with threaded or worker ===> ssl_engine_rand.c: In function `ssl_rand_seed': ssl_engine_rand.c:154: `ap_scoreboard_image' undeclared (first use in this function) ssl_engine_rand.c:154: (Each undeclared identifier is reported only once ssl_engine_rand.c:154: for each function it appears in.) ssl_engine_rand.c:155: `SCOREBOARD_SIZE' undeclared (first use in this function) make[4]: *** [ssl_engine_rand.slo] Error 1 make[4]: Leaving directory `/usr/src/redhat/BUILD/httpd-2_0_24/modules/ssl' make[3]: *** [shared-build-recursive] Error 1 make[3]: Leaving directory `/usr/src/redhat/BUILD/httpd-2_0_24/modules/ssl' make[2]: *** [shared-build-recursive] Error 1 make[2]: Leaving directory `/usr/src/redhat/BUILD/httpd-2_0_24/modules' make[1]: *** [shared-build-recursive] Error 1 make[1]: Leaving directory `/usr/src/redhat/BUILD/httpd-2_0_24' make: *** [all-recursive] Error 1 Bad exit status from /var/tmp/rpm-tmp.81533 (%build) < Any idea ?
Re: recommanded configure for 2.0.24 ?
>On Sun, Aug 26, 2001 at 02:06:53AM +0200, Gomez Henri wrote: >> May be the following is more recommanded ? >> >> ./configure \ >> --with-mpm=threaded \ >> --enable-so \ >> --enable-module=all \ >> --enable-mods-shared=all \ >> --enable-so \ >> --enable-ssl --with-ssl=/usr/include/ > >Yes, I'd recommend this one as it is much cleaner. =-) > >Maybe --enable-mods-shared=most as it will disable modules that >aren't supported on your platform (all will stop if it finds a module >that can't be built). I wouldn't specify the --with-mpm as this >allows us to specify the MPM. Our default is prefork for a good >reason. =-) -- justin Yes, on Linux prefork is selected by default. threaded seems to works fine, but perchild is no more useable since mod_ssl failed to build. Using prefork mode on Linux make Apache 2.0 equivalent to Apache 1.3 ? No more threads in that case ? I've got a question for you gurus, I'm working on mod_jk, tomcat connector, and I must make some task ONLY one time, regardless of MPM used (threading, forked, mixed). What strategy could I use ?
RE: recommanded configure for 2.0.24 ?
Yup.. I use the second one - except that the second "enable-so" is not required.. Yes, it's a stupid copy/paste. Did someone try mod_ssl 3.0a and could I use the same Directive than if Apache 1.3 ?
