Re: Rapid release for security updates
Andrew Haley skrev den 2015-05-26 12:10: On 19/05/15 16:20, Kevin Kofler wrote: Martin Stransky wrote: is there any mechanism how to speed up release of critical security fixes by Fedora update system? For instance Firefox packages are released *week* after official Mozilla release which is really bad. Any idea here? The update stability policies enforced by Bodhi simply need to be repealed. This problem simply did not exist when maintainers were still trusted to be able to do their job. Or maybe we should modify them for urgent security updates rather than repeal them totally. We certainly have delays with Java security updates on Fedora. Something needs to be done, but I'm not sure exactly what. Andrew. I worked with security updates for Mandriva Linux between 2009 and 2015. I'm open for a job offer on that topic ;) -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Re: Self Introduction: Oden Eriksson
lördagen den 5 april 2014 13.18.15 skrev Paulo César Pereira de Andrade: 2014-04-03 7:50 GMT-03:00 Oden Eriksson o...@nux.se: Hello, Hi Oden, Small Linux world, isn't it ? :-) Ha ha, yeah. Been active with packaging, productization and maintaining packages for Mandriva Linux since 1999 and thought I should give it a try at fedora. First cut is this one: https://bugzilla.redhat.com/show_bug.cgi?id=1083962 And, it seems I need a sponsor here. Anyone? If nobody with MariaDB and MySQL expertise that already commented in your review request steps in, I will sponsor you. Sounds great. Actually, I work part time at SkySQL AB and this is sort of part of that scope. Cheers. Paulo -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Re: Shipping .orig files
fredagen den 4 april 2014 09.32.06 skrev Orion Poplawski: A number of rpms currently ship .orig files, which are presumably from patching the files in the spec. Would it make sense to have rpm complain about this? No, if -b is used there won't be a .orig file, unless it's named so. -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Self Introduction: Oden Eriksson
Hello, Been active with packaging, productization and maintaining packages for Mandriva Linux since 1999 and thought I should give it a try at fedora. First cut is this one: https://bugzilla.redhat.com/show_bug.cgi?id=1083962 And, it seems I need a sponsor here. Anyone? Cheers. -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Re: [Maria-developers] The Monty Program AB vendor check (rpm)
tisdagen den 28 januari 2014 11.30.01 skrev Colin Charles: On 25 Jan 2014, at 16:26, Sergei Golubchik s...@mariadb.org wrote: Hi, Oden! On Dec 03, Oden Eriksson wrote: I got assigned to look at the rpm packaging and fixed some stuff there, but got stuck at the Monty Program AB vendor check in support-files/rpm/server- prein.sh when I wanted to replace the fedora packages with in this case mariadb galera packages. Is this check absolutely nessesary? Nobody replied. Apparently nobody knows or cares :) I think it was added back in the day when we had to upgrade from the ourdelta repositories This prevents you from an easy switch from the fedora mariadb packages to the ones provided by mariadb using yum and a yum repository as provided at http://yum.mariadb.org/. Basically this check prevents me from doing any serious work with the rpm packages because you manually have to, by force deinstall any conflicting packages and then install the packages provided by us. Okay, let's remove it. I'm pretty sure they can be removed now That would be awesome. ___ Mailing list: https://launchpad.net/~maria-developers Post to : maria-developers@lists.launchpad.net Unsubscribe : https://launchpad.net/~maria-developers More help : https://help.launchpad.net/ListHelp
[Maria-developers] The Monty Program AB vendor check (rpm)
Hello, I got assigned to look at the rpm packaging and fixed some stuff there, but got stuck at the Monty Program AB vendor check in support-files/rpm/server- prein.sh when I wanted to replace the fedora packages with in this case mariadb galera packages. Is this check absolutely nessesary? This prevents you from an easy switch from the fedora mariadb packages to the ones provided by mariadb using yum and a yum repository as provided at http://yum.mariadb.org/. Basically this check prevents me from doing any serious work with the rpm packages because you manually have to, by force deinstall any conflicting packages and then install the packages provided by us. Cheers. ___ Mailing list: https://launchpad.net/~maria-developers Post to : maria-developers@lists.launchpad.net Unsubscribe : https://launchpad.net/~maria-developers More help : https://help.launchpad.net/ListHelp
[Mageia-dev] autogen.sh
Hello people. Someone was wondering why i added autogen.sh in libxslt. There is a reason for this after long time maintaining open source softwares. See it as a last known good way of using the autopoo stuff as done upstream. If autoreconf - fi should ever fail in libxslt use the provided autogen.sh file. These files tends to disappear or be moved to the upstream release managers private hard drive only, or something like that. It's simply wise to keep autogen.sh for ourselves for reference. If you don't need to use it, fine, but keep it. -- Regards // Oden Eriksson Security team manager - Mandriva CEO NUX AB
Re: [Mageia-dev] autogen.sh
onsdagen den 19 september 2012 12.34.46 skrev Guillaume Rousse: Le 19/09/2012 10:55, Oden Eriksson a écrit : Hello people. Someone was wondering why i added autogen.sh in libxslt. There is a reason for this after long time maintaining open source softwares. See it as a last known good way of using the autopoo stuff as done upstream. Just because you never understood autoconf is not an excuse to use such kind of derogative comments. If autoreconf - fi should ever fail in libxslt use the provided autogen.sh file. These files tends to disappear or be moved to the upstream release managers private hard drive only, or something like that. It's simply wise to keep autogen.sh for ourselves for reference. If you don't need to use it, fine, but keep it. Those dedicated scripts disappear because they are now obsoletes in favor of a generic solution maintained upstream. You'd better find an actual case where using the standard tool fails, whereas using such kind of ad-hoc wrapper works, before bloating packages with useless hacks. BTW, libxslt builds perfectly without ever regenerating the build system... Funny... An ignorant, patronizing and belittling responce is what I get on my first ever mail here. I really don't have time with this childish crap. -- Regards // Oden Eriksson Security team manager - Mandriva CEO NUX AB
[PHP-DEV] SVN Account Request: oden
Hello, I hereby ask for access to security related bugs with the security flag set. I was pointed here by Pierre Joye to formally request this. Thanks in advance. -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
segfault with POST
Hello. We're currenty experiencing a strange segfault in Mandriva Cooker (the development branch) with the latest apache-2.2.17, gcc-4.5.1 and all that. Compiling apache using -DDEBUG=1 -DAPR_BUCKET_DEBUG=1 -DAPR_RING_DEBUG=1 or without -fomit-frame-pointer makes the segfault go away. This seems to happen on 32bit cooker only. More info here: https://qa.mandriva.com/show_bug.cgi?id=61384 A possible related issue in WebDAV: https://qa.mandriva.com/show_bug.cgi?id=61655 Cheers. -- Regards // Oden Eriksson Security team manager - Mandriva CEO NUX AB
Re: [VOTE] httpd 2.2.12 tarballs
Available from the usual location (http://httpd.apache.org/dev/dist/) [not for distribution] are the release tarballs for httpd 2.2.12. Vote starts now and runs for ~48hrs. (it may take some time for the site to sync). Passes all tests with latest perl-framework and with apr-1.3.7 on Mandriva Linux. This email has been processed by SmoothZap - www.smoothwall.net
eta for apache 2.2.12?
Hello. Could someone please tell when apache 2.2.12 is expected to be released? Thanks in advance. This email has been processed by SmoothZap - www.smoothwall.net
Re: error: 'OPT_INCNOEXEC' undeclared
On Tue, Jun 9, 2009 at 10:55 AM, Oden Eriksson oden.eriks...@envitory.sewrote: Hello. The CVE-2009-1195 fix broke the mod_perl build: modperl_config.c:525: error: 'OPT_INCNOEXEC' undeclared (first use in this function) I saw http://svn.apache.org/viewvc?view=revrevision=779472 addresses this problem. Will this be the final official fix? 2.2.x: I hope another tiny patch gets included too ( http://people.apache.org/~trawick/mod_perl_more_compat.txt), but certainly r779472 will be in the next 2.2.x release to resolve that build failure. trunk: OPT_INCNOEXEC no longer exists. Code which needs to know whether or not SSI exec is enabled will have to be modified (new and old: some flavor of SSI is enabled if OPT_INCLUDES is on; new: exec is enabled if OPT_INC_WITH_EXEC is on; old: exec is enabled unless OPT_INCNOEXEC is on). OK. Thanks Jeff. I will then have to ship a bugfix update for the Mandriva products. I guess this also applies to Redhat and others as well. This email has been processed by SmoothZap - www.smoothwall.net
error: 'OPT_INCNOEXEC' undeclared
Hello. The CVE-2009-1195 fix broke the mod_perl build: modperl_config.c:525: error: 'OPT_INCNOEXEC' undeclared (first use in this function) I saw http://svn.apache.org/viewvc?view=revrevision=779472 addresses this problem. Will this be the final official fix? This email has been processed by SmoothZap - www.smoothwall.net
Re: test framework/mod_authany's check user id hook vs. mod_ssl's
torsdag 19 mars 2009 21:36:42 skrev Jeff Trawick: [...] I keep getting: t/modules/include...ok 46/88# Failed test 67 in t/modules/include.t at line 396 On Mandriva Linux (cooker) -- Regards // Oden Eriksson This email has been processed by SmoothZap - www.smoothwall.net
Re: test framework/mod_authany's check user id hook vs. mod_ssl's
fredag 20 mars 2009 17:09:43 skrev Plüm, Rüdiger, VF-Group: -Ursprüngliche Nachricht- Von: Oden Eriksson Gesendet: Freitag, 20. März 2009 16:53 An: dev@httpd.apache.org Betreff: Re: test framework/mod_authany's check user id hook vs. mod_ssl's torsdag 19 mars 2009 21:36:42 skrev Jeff Trawick: [...] I keep getting: t/modules/include...ok 46/88# Failed test 67 in t/modules/include.t at line 396 This has nothing to do with Jeff's changes. This is caused by r755261 which is a test case for PR 39369. This bug isn't fixed on trunk and 2.2.x. Regards Rüdiger Thanks Rüdiger, The patch by Joe Orton attached to that bugreport made that test pass for me. Sorry for being OT. -- Regards // Oden Eriksson This email has been processed by SmoothZap - www.smoothwall.net
french fixes.
Hello. I think this has come up before but I can't recall when. In Mandriva french users found some errors in the error files. I have patched apache for years for this. Please apply. -- Regards // Oden Eriksson This email has been processed by SmoothZap - www.smoothwall.net diff -Naur httpd-2.2.2.orig/docs/error/HTTP_BAD_GATEWAY.html.var httpd-2.2.2/docs/error/HTTP_BAD_GATEWAY.html.var --- httpd-2.2.2.orig/docs/error/HTTP_BAD_GATEWAY.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_BAD_GATEWAY.html.var 2006-05-12 07:26:57.628343088 +0200 @@ -74,7 +74,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Gateway incorrecte! +--!--#set var=TITLE value=Passerelle incorrecte ! --!--#include virtual=include/top.html -- Le serveur proxy a reccedil;u une reacute;ponse diff -Naur httpd-2.2.2.orig/docs/error/HTTP_BAD_REQUEST.html.var httpd-2.2.2/docs/error/HTTP_BAD_REQUEST.html.var --- httpd-2.2.2.orig/docs/error/HTTP_BAD_REQUEST.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_BAD_REQUEST.html.var 2006-05-12 07:27:26.960823575 +0200 @@ -54,7 +54,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Demande incorrecte! +--!--#set var=TITLE value=Demande incorrecte ! --!--#include virtual=include/top.html -- Votre navigateur (ou votre proxy) a envoyeacute; diff -Naur httpd-2.2.2.orig/docs/error/HTTP_FORBIDDEN.html.var httpd-2.2.2/docs/error/HTTP_FORBIDDEN.html.var --- httpd-2.2.2.orig/docs/error/HTTP_FORBIDDEN.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_FORBIDDEN.html.var 2006-05-12 07:27:54.366731971 +0200 @@ -95,7 +95,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Accegrave;s interdit! +--!--#set var=TITLE value=Accegrave;s interdit ! --!--#include virtual=include/top.html -- !--#if expr=$REDIRECT_URL = /\/$/ -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_GONE.html.var httpd-2.2.2/docs/error/HTTP_GONE.html.var --- httpd-2.2.2.orig/docs/error/HTTP_GONE.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_GONE.html.var 2006-05-12 07:28:22.403499854 +0200 @@ -107,7 +107,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Cette ressource n'existe plus! +--!--#set var=TITLE value=Cette ressource n'existe plus ! --!--#include virtual=include/top.html -- L'URL demandeacute;e n'est plus accessible sur ce serveur et il diff -Naur httpd-2.2.2.orig/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var httpd-2.2.2/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var --- httpd-2.2.2.orig/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var 2006-05-12 07:28:44.138668285 +0200 @@ -117,7 +117,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Erreur du serveur! +--!--#set var=TITLE value=Erreur du serveur ! --!--#include virtual=include/top.html -- !--#if expr=$REDIRECT_ERROR_NOTES -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_LENGTH_REQUIRED.html.var httpd-2.2.2/docs/error/HTTP_LENGTH_REQUIRED.html.var --- httpd-2.2.2.orig/docs/error/HTTP_LENGTH_REQUIRED.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_LENGTH_REQUIRED.html.var 2006-05-12 07:30:20.503245183 +0200 @@ -56,7 +56,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Longueur du contenu illeacute;gal! +--!--#set var=TITLE value=Longueur du contenu illeacute;gale ! --!--#include virtual=include/top.html -- Une requecirc;te utilisant la meacute;thode !--#echo diff -Naur httpd-2.2.2.orig/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var httpd-2.2.2/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var --- httpd-2.2.2.orig/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var 2006-05-12 07:30:43.606108660 +0200 @@ -55,7 +55,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Meacute;thode interdite! +--!--#set var=TITLE value=Meacute;thode interdite ! --!--#include virtual=include/top.html -- La meacute;thode !--#echo var=REDIRECT_REQUEST_METHOD -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_NOT_FOUND.html.var httpd-2.2.2/docs/error/HTTP_NOT_FOUND.html.var --- httpd-2.2.2.orig/docs/error/HTTP_NOT_FOUND.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_NOT_FOUND.html.var 2006-05-12 07:31:03.736632851 +0200 @@ -113,7
Re: [Nut-upsdev] RPM .spec files in NUT source tree
Den Monday 15 December 2008 09:25:33 skrev Arnaud Quette: 2008/12/14 Charles Lepple clep...@gmail.com: All, Hey there, as a side note, this point is linked to the make package target in NUT 2.4.0 Arnaud and I were discussing the *.spec files we have in the NUT source tree, and with the 2.4.0 release of NUT just around the corner, I would like to make sure we are pointing people in the right direction for NUT RPMs. I don't care much about that, sorry. Too much other stuff to maintain (over 1200 src.rpm packages...). @Oden: btw, what's your situation? I heard about rumors, that I hope are not true. Yep. It's true. I'm open to some nice job offers (productization stuff). I've been lazy or rather due to workload with submitting patches. So here it comes: nut-openssl_linkage_fix.diff http://wiki.mandriva.com/en/Underlinking nut-2.2.2-format_not_a_string_literal_and_no_format_arguments.diff http://wiki.mandriva.com/en/Development/Packaging/Problems#format_not_a_string_literal_and_no_format_arguments Cheers. -- Regards // Oden Eriksson diff -Naurp nut-2.2.2/drivers/bcmxcp.c nut-2.2.2.oden/drivers/bcmxcp.c --- nut-2.2.2/drivers/bcmxcp.c 2008-02-01 22:07:25.0 +0100 +++ nut-2.2.2.oden/drivers/bcmxcp.c 2008-12-18 10:53:18.0 +0100 @@ -894,7 +894,8 @@ void upsdrv_initinfo(void) /* Make a nice model string and tell NUT about it */ snprintfcat(pTmp, len+10, %dVA, iRating); - dstate_setinfo(ups.model, pTmp); + dstate_setinfo(ups.model, %s, pTmp); + free(pTmp); /* Display startup banner */ @@ -940,7 +941,7 @@ void upsdrv_initinfo(void) } } - dstate_setinfo(ups.serial, sValue); + dstate_setinfo(ups.serial, %s, sValue); /* Get information on UPS extended limits */ res = command_read_sequence(PW_LIMIT_BLOCK_REQ, answer); @@ -987,7 +988,7 @@ void upsdrv_updateinfo(void) bcmxcp_meter_map[iIndex].format, sValue); /* Set result */ - dstate_setinfo(bcmxcp_meter_map[iIndex].nut_entity, sValue); + dstate_setinfo(bcmxcp_meter_map[iIndex].nut_entity, %s, sValue); } } diff -Naurp nut-2.2.2/drivers/bestfcom.c nut-2.2.2.oden/drivers/bestfcom.c --- nut-2.2.2/drivers/bestfcom.c 2008-02-13 03:27:58.0 +0100 +++ nut-2.2.2.oden/drivers/bestfcom.c 2008-12-18 10:56:43.0 +0100 @@ -193,7 +193,7 @@ static int execute(const char *cmd, char ser_get_line_alert(upsfd, buf, sizeof(buf), '\012', , POLL_ALERT, alert_handler, 0, 2); - ser_send(upsfd, cmd); + ser_send(upsfd, %s, cmd); /* Give the UPS some time to chew on what we just sent */ usleep(5); diff -Naurp nut-2.2.2/drivers/gamatronic.c nut-2.2.2.oden/drivers/gamatronic.c --- nut-2.2.2/drivers/gamatronic.c 2007-09-08 17:31:37.0 +0200 +++ nut-2.2.2.oden/drivers/gamatronic.c 2008-12-18 10:57:15.0 +0100 @@ -82,7 +82,7 @@ int sec_cmd(const char mode, const char mode, command); } upsdebugx(1, PC--UPS: \%s\,msg); -ret = ser_send(upsfd,msg); +ret = ser_send(upsfd, %s, msg); upsdebugx(1, send returned: %d,ret); diff -Naurp nut-2.2.2/drivers/libhid.c nut-2.2.2.oden/drivers/libhid.c --- nut-2.2.2/drivers/libhid.c 2008-03-23 21:08:06.0 +0100 +++ nut-2.2.2.oden/drivers/libhid.c 2008-12-18 11:02:10.0 +0100 @@ -608,7 +608,7 @@ static int string_to_path(const char *st char buf[SMALLBUF]; char *token, *last; - snprintf(buf, sizeof(buf), string); + snprintf(buf, sizeof(buf), %s, string); for (token = strtok_r(buf, ., last); token != NULL; token = strtok_r(NULL, ., last)) { diff -Naurp nut-2.2.2/drivers/metasys.c nut-2.2.2.oden/drivers/metasys.c --- nut-2.2.2/drivers/metasys.c 2007-09-28 19:17:47.0 +0200 +++ nut-2.2.2.oden/drivers/metasys.c 2008-12-18 10:57:47.0 +0100 @@ -535,7 +535,7 @@ void upsdrv_initinfo(void) memcpy(serial, my_answer + 7, res - 7); /* serial number start from the 8th byte */ serial[12]=0; /* terminate string */ - dstate_setinfo(ups.serial, serial); + dstate_setinfo(ups.serial, %s, serial); /* get the ups firmware. The major number is in the 5th byte, the minor is in the 6th */ dstate_setinfo(ups.firmware, %u.%u, my_answer[5], my_answer[6]); diff -Naurp nut-2.2.2/drivers/mge-utalk.c nut-2.2.2.oden/drivers/mge-utalk.c --- nut-2.2.2/drivers/mge-utalk.c 2007-09-28 19:17:47.0 +0200 +++ nut-2.2.2.oden/drivers/mge-utalk.c 2008-12-18 11:00:38.0 +0100 @@ -398,7 +398,7 @@ void upsdrv_updateinfo(void) if ( bytes_rcvd 0 buf[0] != '?' ) { extract_info(buf, item, infostr, sizeof(infostr)); -dstate_setinfo(item-type, infostr); +dstate_setinfo(item-type, %s, infostr); upsdebugx(2, updateinfo: %s == %s, item-type, infostr); dstate_dataok(); } else { diff -Naurp nut-2.2.2/drivers/mge-xml.c nut-2.2.2.oden/drivers/mge-xml.c --- nut-2.2.2/drivers/mge-xml.c 2008-04-14 11:54:37.0 +0200 +++ nut-2.2.2.oden/drivers/mge-xml.c 2008-12-18 11:21:28.0 +0100 @@ -404,7 +404,7 @@ static char *split_date_time(const
Re: [Nut-upsdev] RPM .spec files in NUT source tree
Den Thursday 18 December 2008 13:21:05 skrev Arnaud Quette: Hi Oden, 2008/12/18 Oden Eriksson oeriks...@mandriva.com: Den Monday 15 December 2008 09:25:33 skrev Arnaud Quette: 2008/12/14 Charles Lepple clep...@gmail.com: All, Hey there, as a side note, this point is linked to the make package target in NUT 2.4.0 Arnaud and I were discussing the *.spec files we have in the NUT source tree, and with the 2.4.0 release of NUT just around the corner, I would like to make sure we are pointing people in the right direction for NUT RPMs. I don't care much about that, sorry. Too much other stuff to maintain (over 1200 src.rpm packages...). @Oden: btw, what's your situation? I heard about rumors, that I hope are not true. Yep. It's true. I'm open to some nice job offers (productization stuff). uhm, sad :-( If I hear anything interesting, I'll redirect to you (you may have another mail @?) Please use oden.eriks...@envitory.se for that, thanks. The mandriva email address won't stop working unless i tell them to nuke it. btw, I've not included you in the other thread, but do you want to stay in the team or do you want to retire? No it's ok. I've been lazy or rather due to workload with submitting patches. So here it comes: nut-openssl_linkage_fix.diff http://wiki.mandriva.com/en/Underlinking applied (I thought I've already done so though!) that remembers me that we also have some overlinking to address (reported through Debian): http://wiki.mandriva.com/en/Overlinking nut-2.2.2-format_not_a_string_literal_and_no_format_arguments.diff http://wiki.mandriva.com/en/Development/Packaging/Problems#format_not_a_s tring_literal_and_no_format_arguments Arjen has already started to do something there. @Arjen: can you please counter check the nut-2.2.2-format_not_a_string_literal_and_no_format_arguments.diff patch? thanks, Arnaud Ok, cool. Thanks. -- Regards // Oden Eriksson ___ Nut-upsdev mailing list Nut-upsdev@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/nut-upsdev
Re: [VOTE] Release Apache HTTP server 2.2.11
Den Saturday 06 December 2008 17:30:05 skrev Ruediger Pluem: Test tarballs for Apache httpd 2.2.11 are available at: http://httpd.apache.org/dev/dist/ Your votes please; +/-1 [ ] Release httpd-2.2.11 as GA Regards Rüdiger It builds fine on Mandriva. -- Regards // Oden Eriksson
Re: new modules in trunk
Den Monday 01 December 2008 09:17:24 skrev Paul Querna: I've committed a few new modules to trunk tonight: mod_ratelimit: Bandwidth Rate Limiting for Clients. mod_heartbeat: Generates Multicast heartbeat messages containing the status of the server. mod_heartmonitor: Collects these Multicast heartbeats for other modules to use. mod_lbmethod_heartbeat: Module to Load Balance mod_proxy_balancer workers using the data from the heartbeats. If people could take a closer look at mod_lbmethod_heartbeat especially, since it is completely new, and I don't really know the internals of mod_proxy that well, while the other ones are a little more battle tested. Thanks, Paul Apache 2.2.10 segfaults if either/or mod_heartbeat/mod_heartmonitor is unconfigured and/or has no access to the logs directory. Hard to say in which combination. Well..., heh..., I wanted to try this on Mandriva. When configured and has access to the logs directory it does not segfault. Just thought I should mention this despite the modules is from trunk. -- Regards // Oden Eriksson
Re: [VOTE] Release Apache HTTP server 2.2.10
Den Thursday 16 October 2008 17:20:08 skrev Sander Temme: On Oct 16, 2008, at 6:07 AM, Oden Eriksson wrote: For some unknown reason I suddenly get some failed tests on Mandriva Cooker, it worked fine 2008-10-10 (!?) I saw that on my Solaris x86 VM, but it happened across the board against 2.2.9 and the 2.2.10 rc. And, I didn't see it on either Ubuntu or my Mac so I'm blaming staleness in the Perl setup on that Solaris install. OK. Thanks. That might be the problem. -- Regards // Oden Eriksson
Re: [VOTE] Release Apache HTTP server 2.2.10
Den Friday 10 October 2008 16:36:02 skrev Jim Jagielski: For some unknown reason I suddenly get some failed tests on Mandriva Cooker, it worked fine 2008-10-10 (!?) t/modules/digestNOK 6/13# Failed test 6 in t/modules/digest.t at line 84 t/modules/digestNOK 7/13# Failed test 7 in t/modules/digest.t at line 96 t/modules/digestNOK 8/13# Failed test 8 in t/modules/digest.t at line 106 t/modules/digestNOK 11/13# Failed test 11 in t/modules/digest.t at line 141 t/modules/digestNOK 12/13# Failed test 12 in t/modules/digest.t at line 152 t/modules/digestFAILED tests 6-8, 11-12 -- Regards // Oden Eriksson
Re: Apache httpd 2.2.10 test tarballs available...
Den Wednesday 08 October 2008 13:43:18 skrev Oden Eriksson: Den Tuesday 07 October 2008 20:37:48 skrev Jim Jagielski: ... at the usual location: http://httpd.apache.org/dev/dist/ The availability of these test tarballs does not constitute an official release, however please download and test as a VOTE will be called for in the next few days regarding their release. All tests (perl-framework) passes on Mandriva Cooker/2009.0 with system apr/apr-util latest stable versions. But SNI didn't make it into 2.2.10 it seems. -- Regards // Oden Eriksson
Re: Apache httpd 2.2.10 test tarballs available...
Den Tuesday 07 October 2008 20:37:48 skrev Jim Jagielski: ... at the usual location: http://httpd.apache.org/dev/dist/ The availability of these test tarballs does not constitute an official release, however please download and test as a VOTE will be called for in the next few days regarding their release. All tests (perl-framework) passes on Mandriva Cooker/2009.0 with system apr/apr-util latest stable versions. -- Regards // Oden Eriksson
Re: Apache httpd 2.2.10 test tarballs available...
Den Wednesday 08 October 2008 19:50:06 skrev William A. Rowe, Jr.: Akins, Brian wrote: On 10/7/08 8:49 PM, William A. Rowe, Jr. [EMAIL PROTECTED] wrote: Sure sounds like this is a re-initialization of mysql, with apr and php fighting for the honors. I thought the official support of php was fastcgi only in httpd 2.2 Given the headaches he is encountering, I'd think that php-fastcgi would be the ideal solution. vhosting does not work very well with apache, without band-aids like fastcgi etc. that's a shame. -- Regards // Oden Eriksson
Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Den Thursday 28 August 2008 19:45:10 skrev Kaspar Brand: I wrote: When I added the second condition to the first if statement, I was assuming that the default for auth.verify_depth is UNSET as well. However, it's initialized to 1 (i.e. SSL_CVERIFY_OPTIONAL) Wrong, of course - this macro applies to verify_*mode* (not verify_depth). Oden, if you change the line (sc-server-auth.verify_depth != UNSET)) { to (sc-server-auth.verify_depth != SSL_CVERIFY_OPTIONAL)) { Sorry, should consequently be changed to (sc-server-auth.verify_depth != 1)) { Kaspar Yes, that seems to have fixed it. -- Regards // Oden Eriksson
Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Den Wednesday 20 August 2008 12:06:33 skrev Oden Eriksson: [...] FYI: This patch is applied in Mandriva Linux. However, the perl-framework tests barfs at: t/ssl/v2# Failed test 1 in t/ssl/v2.t at line 16 -- Regards // Oden Eriksson
Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Den Wednesday 20 August 2008 13:10:52 skrev Nick Kew: On Wed, 20 Aug 2008 12:06:33 +0200 Oden Eriksson [EMAIL PROTECTED] wrote: FYI: This patch is applied in Mandriva Linux. Any feedback? Bug reports coming from their users? No reports so far. It was requested by our users though. If you'd said Debuntu or Deadrat+family, we might infer a user community big enough to rely on (FSreasonableVO rely). Not sure about Mandriva, but it's surely better than nothing. It seems clear that users *really* want it. I'd say that adds weight to the argument for including it and taking the risk. It might be worth a --with-SNI configuration option, which would label it as an experimental feature. BTW: In mandriva Cooker (current) you can do this: [EMAIL PROTECTED] /]# LC_ALL=C urpmi apache-mod_ No package named apache-mod_ The following packages contain apache-mod_: apache-mod_activex_filter apache-mod_annodex apache-mod_anticrack apache-mod_antispam apache-mod_apparmor apache-mod_apreq apache-mod_athena apache-mod_auth_cert apache-mod_auth_form apache-mod_auth_gforge apache-mod_auth_imap apache-mod_auth_kerb apache-mod_auth_memcookie apache-mod_auth_msfix apache-mod_auth_mysql apache-mod_auth_nds apache-mod_auth_ntlm_winbind apache-mod_auth_openid apache-mod_auth_openpgp apache-mod_auth_pgsql apache-mod_auth_pubtkt apache-mod_auth_radius apache-mod_auth_remote apache-mod_auth_sdb apache-mod_auth_shadow apache-mod_auth_token apache-mod_auth_xradius apache-mod_authenticache apache-mod_authn_bugzilla apache-mod_authn_dbd apache-mod_authn_dbi apache-mod_authn_imap apache-mod_authn_nufw apache-mod_authn_sasl apache-mod_authnz_external apache-mod_authz_ldap apache-mod_authz_unixgroup apache-mod_axis2 apache-mod_backtrace apache-mod_benchmark apache-mod_bt apache-mod_but apache-mod_bw apache-mod_bwshare apache-mod_cache apache-mod_cachem apache-mod_cband apache-mod_cfg_ldap apache-mod_cguard apache-mod_chm apache-mod_chroot apache-mod_cidr apache-mod_clamav apache-mod_coredumper apache-mod_countm apache-mod_crowd apache-mod_dav apache-mod_dav_repos apache-mod_dav_svn apache-mod_dbd apache-mod_dbi_pool apache-mod_defensible apache-mod_deflate apache-mod_delay apache-mod_diagnostics apache-mod_disk_cache apache-mod_dns apache-mod_dnsbl apache-mod_dnsbl_lookup apache-mod_dnssd apache-mod_domaintree apache-mod_dontdothat apache-mod_encoding apache-mod_estraier apache-mod_evasive apache-mod_extract_forwarded apache-mod_fakessl apache-mod_fastcgi apache-mod_fcgid apache-mod_file_cache apache-mod_form apache-mod_fortress apache-mod_ftp apache-mod_ftpd apache-mod_geo apache-mod_geoip apache-mod_gnutls apache-mod_gzip_disk apache-mod_httpbl apache-mod_i18n apache-mod_ifier apache-mod_injection apache-mod_ip_count apache-mod_ipenv apache-mod_jsmin apache-mod_layout apache-mod_ldap apache-mod_ldap_userdir apache-mod_limitipconn apache-mod_line_edit apache-mod_load_average apache-mod_log_access apache-mod_log_data apache-mod_log_dbd apache-mod_log_rotate apache-mod_log_sql apache-mod_log_sqlite apache-mod_loopback apache-mod_lua apache-mod_macro apache-mod_mbox apache-mod_mem_cache apache-mod_memcache apache-mod_memcached apache-mod_memcached_cache apache-mod_mime_xattr apache-mod_mm_auth_ldap apache-mod_mono apache-mod_musicindex apache-mod_mya apache-mod_ndb apache-mod_nss apache-mod_ntlm apache-mod_parmguard apache-mod_perl apache-mod_php apache-mod_protection apache-mod_proxy apache-mod_proxy_ajp apache-mod_proxy_fcgi apache-mod_proxy_html apache-mod_proxy_xml apache-mod_pubcookie apache-mod_put apache-mod_python apache-mod_qos apache-mod_random apache-mod_replace apache-mod_roaming apache-mod_rpaf apache-mod_ruby apache-mod_ruid apache-mod_scgi apache-mod_schema apache-mod_scrmable apache-mod_security apache-mod_security2 apache-mod_sesehe apache-mod_sleep apache-mod_smbauth apache-mod_smtpd apache-mod_smtpd_rbl apache-mod_spam_die apache-mod_spin apache-mod_sqil apache-mod_ssl apache-mod_stats apache-mod_suexec apache-mod_suphp apache-mod_svn_view apache-mod_tcl apache-mod_tidy apache-mod_traf_thief apache-mod_transform apache-mod_umask apache-mod_upload apache-mod_userdir apache-mod_variety apache-mod_vdbh apache-mod_vhost_dbi apache-mod_vhost_hash_alias apache-mod_vhost_ldap apache-mod_vhost_limit apache-mod_vhost_mysql apache-mod_vhost_mysql1 apache-mod_vhost_pgsql apache-mod_vhost_sqlite3 apache-mod_vhs apache-mod_watchcat apache-mod_webfilter apache-mod_websh apache-mod_whatkilledus apache-mod_wsgi apache-mod_xhtml apache-mod_xhtml_neg apache-mod_xml2 apache-mod_xmlns apache-mod_xsendfile apache-mod_xslt2 apache-mod_xslt_filter apache-mod_ziplook apache-mod_zipread apache-mod_zrkadlo No idea about the other distros.
Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Den Tuesday 19 August 2008 08:16:08 skrev Kaspar Brand: Ruediger Pluem wrote: At the moment we have 9 entries in the CHANGES file for 2.2.10 and there are 5 more proposals in the STATUS file that are missing only one vote. I think if get these done we also have enough stuff from pure httpd point of view that warrants a release. WDYT? May I use this occasion to ask if there's still a chance of getting a backport of SNI accepted for 2.2.x? Following suggestions from Joe, I went through all relevant SSL* config directives and posted my findings in two parts on 9th/18th June: http://mail-archives.apache.org/mod_mbox/httpd-dev/200806.mbox/%3c484CBAA6. [EMAIL PROTECTED] http://mail-archives.apache.org/mod_mbox/httpd-dev/200806.mbox/%3c48592955. [EMAIL PROTECTED] The patch I posted on 18 June introduced a regression, however, so I posted an updated version on 26th June: http://mail-archives.apache.org/mod_mbox/httpd-dev/200806.mbox/%3c4863C04C. [EMAIL PROTECTED] That's the version I still consider suitable for check-in to trunk (attached again for convenience). A backport to 2.2.x is available at http://sni.velox.ch/httpd-2.2.x-sni.diff If, on the other hand, people think that SNI isn't important enough for 2.2.x, then I'd be glad to hear that as well (it doesn't make sense to repeatedly nag the list about that topic, I think). Thanks, Kaspar FYI: This patch is applied in Mandriva Linux.
Re: Additions to the Projects page
Hello. Something for http://apr.apache.org/projects.html I was looking in our repository by inspecting build requires. Here's the softwares that was using apr_memcache but now instead uses memcache from apr-util 1.3.x: http://www.outoforder.cc/projects/apache/mod_auth_xradius/ http://code.google.com/p/modmemcache/ http://code.google.com/p/modmemcachecache/ http://www.outoforder.cc/projects/apache/mod_gnutls/ http://en.opensuse.org/Build_Service/Redirector (mod_zrkadlo) Here's the ones that are using apr: http://www.kdevelop.org/ http://www.kde.org (kdevplatform4) http://kdesvn.alwins-world.de/ http://pysvn.tigris.org http://subversion.tigris.org/ (svn-javahl) http://search.cpan.org/dist/perl-Apache-SSLLookup/ http://www.compiz-fusion.org/ (emerald) http://anjuta.sourceforge.net/ http://cachem.sourceforge.net/ http://ws.apache.org/axis2/c/ http://apr.apache.org/ (tomcat-native) Here's the ones that are using apr-util: http://www.kde.org (kdevplatform4) http://subversion.tigris.org/ (svn-javahl) http://secondlife.com/ http://www.kdevelop.org/ http://www.compiz-fusion.org/ (emerald) http://anjuta.sourceforge.net/ -- Regards // Oden Eriksson
Re: [Announce] Apache Portable Runtime 1.3.0 Released
Den Monday 23 June 2008 20:31:49 skrev William A. Rowe, Jr.: Apache Portable Runtime 1.3.2 Released heh, i bet you meant 1.3.2 in the subject. -- Regards // Oden Eriksson
Re: [vote] Release apr[-util] 1.3.2
Den Tuesday 17 June 2008 15:40:06 skrev William A. Rowe, Jr.: Candidates will be up at http://apr.apache.org/dev/dist/ once the sync happens within the hour... vote away; +/-1 [ ] Release apr 1.3.2 as GA [ ] Release apr-util 1.3.2 as GA Of course 1.3.1 images were scuttled, thanks to all who tested! Windows .zip's will follow after a bit of initial response for unix. All tests passed in Cooker.
Re: Testing a fresh compilation of Apache
Den Tuesday 17 June 2008 20:48:21 skrev Sérgio Durigan Júnior: So, can you give me a hand on this problem? :-) I do it like this in Mandriva: http://svn.mandriva.com/cgi-bin/viewvc.cgi/packages/cooker/apache/current/SPECS/apache.spec?revision=218814view=markup (currently disabled due to other problems)
Re: [VOTE] Release Apache HTTP Server 2.2.9
Den Wednesday 11 June 2008 02:50:50 skrev Jim Jagielski: Test tarballs for Apache httpd 2.2.9 are available at: http://httpd.apache.org/dev/dist/ Your votes please; +/-1 [ ] Release httpd-2.2.9 as GA DO NOT begin distributing these in any manner whatsoever, please note that you can seriously mess up any user who installs these packages if they are ultimately rejected. With latest perl-framework, apr/apu I get this on Mandriva Cooker x86_64: t/apache/limits.NOK 7/10# Failed test 7 in t/apache/limits.t at line 122 t/apache/limits.NOK 9/10# Failed test 9 in t/apache/limits.t at line 122 fail #2 t/apache/limits.FAILED tests 7, 9 Failed 2/10 tests, 80.00% okay The t/apache/limits tests passes on Mandriva Linux 2008.1 though. The openssl tests passed with the fix pointed out by Rainer Jung (2.2.9 testing with OpenSSL 0.9.8h). Thanks man. Funny enough I get this as well: t/security/CVE-2008-2364NOK 2/3# Failed test 2 in t/security/CVE-2008-2364.t at line 19 t/security/CVE-2008-2364NOK 3/3# Failed test 3 in t/security/CVE-2008-2364.t at line 22 t/security/CVE-2008-2364FAILED tests 2-3 Failed 2/3 tests, 33.33% okay -- Regards // Oden Eriksson
Re: 2.2.9 testing with OpenSSL 0.9.8h
Den Wednesday 11 June 2008 02:57:13 skrev Rainer Jung: This is only an info for others who might run into the same problem: I used the httpd test suite for httpd 2.2.9 in combination with OpenSSL 0.9.8h (the recent version). The test suite calls openssl \ req -new -key keys/client_revoked.pem -out csr/client_revoked.csr \ -passin pass:httpd -passout pass:httpd -config \ conf/client_revoked.cnf at the beginning. With OpenSSL 0.9.8h this crashes (Solaris) resp. gives a malloc error (Linux). This is not an httpd bug. If one uses an older openssl (e.g. 0.9.8g) in the PATH but still runs httpd/mod_ssl with 0.9.8h, there is no SSL test failure. The corresponding OpenSSL bug is already known and fixed in CVS: http://cvs.openssl.org/chngview?cn=17196 Regards, Rainer Works for me on Mandriva Cooker, thanks man. -- Regards // Oden Eriksson
Re: SNI in 2.2.9? (Re: 2.2.9 status)
Den Wednesday 04 June 2008 14:06:22 skrev Ian G: [EMAIL PROTECTED] wrote: SNI in 2.2.9? (Re: 2.2.9 status) 61495 by: Kaspar Brand FYI. SNI is in Mandriva Linux 2008.1. -- Regards // Oden Eriksson
Re: patch for flood to deal with gcc 4
Den Friday 18 April 2008 00.24.14 skrev Guy Ferraiolo: Folks Here's the patch to get this to compile correctly with gcc 4. It's actually only 3 lines. This has been tested with the following versions: gcc version 3.4.6 20060404 (Red Hat 3.4.6-8), (RHEL4 32-bit) gcc version 4.1.1 20070105 (Red Hat 4.1.1-52) (RHEL4 64-bit) Works, thanks. There is still some warnings though: http://pastebin.se/194251 -- Regards // Oden Eriksson
Re: patch for flood to deal with gcc 4
Den Friday 18 April 2008 17.49.29 skrev Guy Ferraiolo: I believe the other warnings are from the code prior to my patch. I was somewhat shy about altering other people's code as a newbie. The fixes would be easy, anyone could do them. I felt responsible for my new code which others might not want to mess with. Guy On Fri, 2008-04-18 at 09:24 +0200, Oden Eriksson wrote: Den Friday 18 April 2008 00.24.14 skrev Guy Ferraiolo: Folks Here's the patch to get this to compile correctly with gcc 4. It's actually only 3 lines. This has been tested with the following versions: gcc version 3.4.6 20060404 (Red Hat 3.4.6-8), (RHEL4 32-bit) gcc version 4.1.1 20070105 (Red Hat 4.1.1-52) (RHEL4 64-bit) Works, thanks. There is still some warnings though: http://pastebin.se/194251 I understood that, thanks man. I merely wanted to make the person maintaining the code aware. -- Regards // Oden Eriksson
Re: [Fwd: Re: more importuning about the flood patch]
Den Monday 14 April 2008 12.32.25 skrev William A. Rowe, Jr.: Confirming; this is the patch? Bill Does not build for me (r64) on Mandriva Linux 2008.1 (x86_64): /bin/sh /usr/lib64/apr-1/build/libtool --silent --mode=compile gcc-O2 -g -pipe -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -pthread-I/usr/include/include -DLINUX=2 -D_REENTRANT -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -I/usr/include/apr-1 -I/usr/include/apr-1 -I/usr/include -I. -I/home/oden/RPM/BUILD/flood -c flood.c touch flood.lo /bin/sh /usr/lib64/apr-1/build/libtool --silent --mode=compile gcc-O2 -g -pipe -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -pthread-I/usr/include/include -DLINUX=2 -D_REENTRANT -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -I/usr/include/apr-1 -I/usr/include/apr-1 -I/usr/include -I. -I/home/oden/RPM/BUILD/flood -c flood_round_robin.c touch flood_round_robin.lo flood_round_robin.c: In function 'round_robin_profile_init': flood_round_robin.c:793: warning: comparison is always false due to limited range of data type flood_round_robin.c:793: warning: comparison is always false due to limited range of data type flood_round_robin.c:910: error: lvalue required as left operand of assignment flood_round_robin.c:920: error: lvalue required as left operand of assignment flood_round_robin.c: In function 'round_robin_postprocess': flood_round_robin.c:1086: warning: cast from pointer to integer of different size flood_round_robin.c:1086: warning: cast from pointer to integer of different size flood_round_robin.c:1097: warning: cast from pointer to integer of different size flood_round_robin.c:1097: warning: cast from pointer to integer of different size flood_round_robin.c:1236: warning: passing argument 3 of 'apr_file_write' from incompatible pointer type -- Regards // Oden Eriksson
Re: [Fwd: Re: more importuning about the flood patch]
Den Monday 14 April 2008 15.15.22 skrev Vincent van Scherpenseel: Oden Eriksson wrote: Does not build for me (r64) on Mandriva Linux 2008.1 (x86_64): snip Do you happen to compile flood using GCC 4.x? I couldn't compile flood with Guy's patch using GCC 4.1, particularly due to these two errors: flood_round_robin.c:910: error: lvalue required as left operand of assignment flood_round_robin.c:920: error: lvalue required as left operand of assignment Yes, using gcc-4.2.3 here. I think with 4.2.x lvalue became errors instead of warnings. We will soon switch to gcc 4.3.x so... Compiling using GCC 3.3 it built like a charm, only warning me about the above two lines that it's deprecated. Perhaps someone could fix this? - Vincent van Scherpenseel -- Regards // Oden Eriksson
Re: Script to create ca-bundle.crt
Den Tuesday 12 February 2008 18.57.14 skrev Guenter Knauf: Hi Oden, But this is the world of RPM packaging, a litte OT. when being OT - can you tell me something about license issues with certdata.txt ? Do you have a written permisson to import the file into CVS? Is such needed? Do you have any info on that topic? The certdata.txt file itself seems pretty straight forward when it comes to licensing. I would find it amusing to see a CA prohibiting redistribution of their stuff :) -- Regards // Oden Eriksson
Re: Script to create ca-bundle.crt
Den Tuesday 12 February 2008 17.23.27 skrev Guenter Knauf: Hi Oden, http://svn.mandriva.com/cgi-bin/viewvc.cgi/packages/cooker/rootcerts/curr ent/ from what I see this relies on the same source certdate.txt as my script; so what should be the benefit of maintaining copies of that? I wrote the script to make it easy to generate one self, and to be independent from others which might not be uptodate... and BTW. the one in this CVS repo is one version behind (1.44, Mozilla/NSS has 1.45). Guenter. I see, I must admit I didn't look at your script, sorry. In Mandriva I introduced this rootcerts package in -05 (inspired by the Microsoft naming). What's unique with this is that we can easily add CA's like cacert.org, domestic ones and such. When we build the mozilla nss libs we use the /etc/pki/tls/mozilla/certdata.txt version instead of the bundled one in the source (the CA's are hardcoded into the nss libs). Of course we also get a ca-bundle.crt containing the added CA's. But this is the world of RPM packaging, a litte OT. -- Regards // Oden Eriksson
Re: Script to create ca-bundle.crt
Den Tuesday 12 February 2008 16.18.49 skrev Guenter Knauf: Hi, I was recently hacking on a script to create ca-bundle.crt: http://curl.haxx.se/lxr/source/lib/mk-ca-bundle.pl after I had finished my script I found that Joe already hacked a very similar script 3 years ago, and offered to the OpenSSL project: http://www.mail-archive.com/[EMAIL PROTECTED]/msg16980.html unfortunately it seems that this script is only in CVS, and not distributed with AP 1.3 mod_ssl... I would like to contribute my script to httpd if there's some agreement; I have sucessfully tested my script on a couple of Linux hosts (also with older Perl 5.0005), on Win32 running ActivePerl, and on NetWare; and with OpenSSL 0.9.7 and 0.9.8 (where the OpenSSL commandline is only needed for optional text output). I've though no idea where it should live; probably in the ./test folder? Guenter. http://svn.mandriva.com/cgi-bin/viewvc.cgi/packages/cooker/rootcerts/current/ ? -- Regards // Oden Eriksson
Re: Pre-release tarballs: Apache httpd 1.3.41, 2.0.63 and 2.2.8
Den Thursday 10 January 2008 19.04.27 skrev Jim Jagielski: Pre-release tarballs of Apache HTTP Server 1.3.41, 2.0.63 and 2.2.8 are available for download and test at: http://httpd.apache.org/dev/dist/ Their availability does not constitute an official release. However, please download and test. I will be calling for a release VOTE in the next 24-48 hours, at most. 2.2.8 works fine for me and passes all tests in perl-framework (r610816) on Mandriva Linux Corporate Server 4.0, 2008.0 and Cooker.
Re: Pre-release test tarballs of httpd 1.3.40, 2.0.62 and 2.2.7 available
Den Friday 04 January 2008 21.00.46 skrev Jim Jagielski: Apache HTTP Server fans, The latest versions of all 3 variants of Apache HTTP Server (1.3.40, 2.0.62 and 2.2.7) have been tagged. The test tarballs are available for testing and feedback at the below location. Everyone is reminded that this does not constitute an official release of these tarballs yet; assuming these pass muster, the hope and intent is to release and announce early next week. All files in: http://httpd.apache.org/dev/dist/ 2.2.7 works fine for me and passes all tests in perl-framework (r609180) on Mandriva Linux Corporate Server 4.0, 2008.0 and Cooker. -- Regards // Oden Eriksson
Re: time for 1.3.40 and 2.2.7 ?
Den Friday 14 December 2007 22.09.00 skrev William A. Rowe, Jr.: William A. Rowe, Jr. wrote: There's a simple way of not-so-rudely saying ... Sorry if this came across harshly Odin, I watch those dialogs daily on php-dev, I'd hate to see httpd-dev polluted with the same volume of self interest and vitriol. Let me make sure I answered what you might have been asking... I was just curious about this. I didn't know the release procedure was such a pain. You explained it well in your previous mail, thanks. I know about the peanut gallery, I don't want to go there :-). As you may know I maintain apache and loads of third party apache modules in Mandriva Linux. I'm not authorized to vote here, for that I need to reincarnate myself as an ASF developer I guess. Keep up the good work. -- Regards // Oden Eriksson
Re: time for 1.3.40 and 2.2.7 ?
Den Friday 14 December 2007 20.24.35 skrev Jim Jagielski: On Dec 14, 2007, at 12:52 PM, William A. Rowe, Jr. wrote: Jim Jagielski wrote: Anyone opposed to us shooting for a TR early next week? If we can get a couple of security-related-but-not-really patches committed to 2.0 I'd like to see that as well. I'm offering, Sure... that would be great. Another three-for-all :) From what I can see, both 1.3 and 2.2 are backport free, so it's just 2.0 right now. It's some obsession to release more than just one? I would rather see 2.2.7 released now. I don't care at all about 1.3.x or 2.0.x. -- Regards // Oden Eriksson
Re: mod_substitute docs
Den Saturday 20 October 2007 22.59.58 skrev Vincent Bray: Hullo, I'm attempting to document this module but can't figure out what the f (flatten) flag does (bucket brigade munging makes my eyes cross). Any clues? Here's a start anyway: http://people.apache.org/~noodl/mod_substitute.xml It never made it for 2.2.x? -- Regards // Oden Eriksson
Re: [PATCH 43415] Logging remote port.
tisdagen den 18 september 2007 skrev Adam Hasselbalch Hansen: I have created a patch for httpd 2.2.6, giving the additional LogFormat directive %R, which logs the port of the host making the request. This is due to new legislation in Denmark, requiring ISPs and hosting companies to log the originating port of all traffic. Any feedback is appreciated :) FYI: This has been applied for the upcoming Mandriva 2008 release, thanks. -- Regards // Oden Eriksson
Re: [mod_spelling] Not fixing directory names in 2.2?
torsdagen den 6 september 2007 skrev Sven Köhler: Hi, i upgraded to Apache 2.2. But since that upgrade, mod_spelling does not fix misspelled directory names any more. An example: With Apache 2.0, the URL /jh/magdeburg/images/btn_home.gif was changed to /jh/magdeburg/Images/btn_home.gif With Apache 2.2, the first URL doesn't work anymore. But the URL /jh/magdeburg/images is still redirected to /jh/magdeburg/Images. So it seems, mod_spelling only checks the last URL component. Is that intentionally or a bug? And how could i get back old Apache 2.0 behaviour? IfModule mod_speling.c CheckSpelling On AcceptPathInfo On /IfModule -- Regards // Oden Eriksson
Re: [VOTE] Apache 2.2.6, 2.0.61 and 1.3.39 release candidate tarballs for review
tisdagen den 4 september 2007 skrev Jim Jagielski: Available for your testing pleasure, 3, count 'em, 3 Apache HTTP Server release candidate tarballs, located, as expected at: http://httpd.apache.org/dev/dist/ This vote will run through Sept 6, 2007 and close Sept 7, unless otherwise noted... +/-1 (x == +1) [ ]apache_1.3.39 [ ]httpd-2.0.61 [ ]httpd-2.2.6 Thanks!! 2.2.6 works for me on Mandriva Linux Cooker, Mandriva Linux Corporate Server 4, Mandriva Linux 2007.1 (x86_32 and x86_64), all tests passed with perl-framework. Good job guys! -- Regards // Oden Eriksson
2.2.5
Hello. I just wonder if someone could tell me if and official 2.2.5/2.2.6 will be released before September the 10th? That's the version freeze date for Mandriva Linux 2008. Thanks in advance. -- Regards // Oden Eriksson
Re: 2.2.5
tisdagen den 21 augusti 2007 skrev Jim Jagielski: No guarantees, but the expectation is Yes, 2.2.6 will be released way before then. We're justing waiting for some APR cleanups before I tag/roll 2.2.6 Thanks!. Sounds great! On Aug 21, 2007, at 2:13 PM, Oden Eriksson wrote: Hello. I just wonder if someone could tell me if and official 2.2.5/2.2.6 will be released before September the 10th? That's the version freeze date for Mandriva Linux 2008. Thanks in advance. -- Regards // Oden Eriksson -- Regards // Oden Eriksson
Re: [VOTE] Apache 2.2.5, 2.0.60 1.3.38 release candidate tarballs for review
lördagen den 11 augusti 2007 skrev Jim Jagielski: Available for your testing pleasure, 3, count 'em, 3 Apache HTTP Server release candidate tarballs, located, as expected at: http://httpd.apache.org/dev/dist/ This vote will run through August 14, 2007... +/-1 (x == +1) [ ]apache_1.3.28 [ ]httpd-2.0.60 [ ]httpd-2.2.5 2.2.5 works for me on latest Mandriva Cooker, and backported to Mandriva Linux Corporate Server 4, 2007.1 with x86_32 and x86_64. Even the perl-framework (latest) tests passes this time :) But for some reason and only under our build system HTTP::DAV is not found, maybe it's just some missing dependency, but I don't know which one it would be. -- Regards // Oden Eriksson
Re: [VOTE] Apache 2.2.5, 2.0.60 1.3.38 release candidate tarballs for review
torsdagen den 16 augusti 2007 skrev Plüm, Rüdiger, VF-Group: -Ursprüngliche Nachricht- Von: Oden Eriksson Gesendet: Donnerstag, 16. August 2007 13:56 An: dev@httpd.apache.org Betreff: Re: [VOTE] Apache 2.2.5, 2.0.60 1.3.38 release candidate tarballs for review But for some reason and only under our build system HTTP::DAV is not found, maybe it's just some missing dependency, but I don't know which one it would be. This could be some of the XML libaries. Try the folllowing perl script and investigate why it fails: require HTTP::DAV; my $dav = HTTP::DAV-new; Ahh, thanks! The perl-XML-Parser package was needed. Now all tests passes, except for php that isn't activated. -- Regards // Oden Eriksson
Re: patch for spurious open attempt on .../file.html/.htaccess
onsdag 13 juni 2007 skrev Allen Pulsifer: The attached patch is the final one and applies to 2.2.4? -- Regards // Oden Eriksson --- server/request.c 2006-07-12 05:38:44.0 +0200 +++ server/request.c.oden 2007-06-14 09:35:48.0 +0200 @@ -931,13 +931,21 @@ #ifdef CASE_BLIND_FILESYSTEM (filename_len = canonical_len) #endif - ((opts.opts (OPT_SYM_OWNER | OPT_SYM_LINKS)) == OPT_SYM_LINKS)) + (opts.opts OPT_SYM_LINKS) ) +{ +if ((r-path_info *r-path_info) || r-finfo.filetype == APR_DIR) { - thisinfo.filetype = APR_DIR; ++seg; continue; } +else if (r-finfo.filetype == APR_REG) +{ +thisinfo.filetype = APR_REG; +++seg; +break; +} +} /* We choose apr_stat with flag APR_FINFO_LINK here, rather that * plain apr_stat, so that we capture this path object rather than
Re: mod_slotmem
onsdag 30 augusti 2006 10:37 skrev Brian Akins: With all the talk of a generic scoreboard, here's something I whipped up that allows any other module to have some amount of memory per worker slot. We have a different module in-house at CNN which does something similar. This one is a little rough around the edges, but gives an idea of what I was thinking about doing. Care to release this and with a license? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
French error messages slightly corrected.
Hello. One of our french users named Raphaël Gertz has made some corrections to the french error messages, a patch against 2.2.2 is applied to this message. Please apply this upstream. Thanks in advance. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se diff -Naur httpd-2.2.2.orig/docs/error/HTTP_BAD_GATEWAY.html.var httpd-2.2.2/docs/error/HTTP_BAD_GATEWAY.html.var --- httpd-2.2.2.orig/docs/error/HTTP_BAD_GATEWAY.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_BAD_GATEWAY.html.var 2006-05-12 07:26:57.628343088 +0200 @@ -74,7 +74,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Gateway incorrecte! +--!--#set var=TITLE value=Passerelle incorrecte ! --!--#include virtual=include/top.html -- Le serveur proxy a reccedil;u une reacute;ponse diff -Naur httpd-2.2.2.orig/docs/error/HTTP_BAD_REQUEST.html.var httpd-2.2.2/docs/error/HTTP_BAD_REQUEST.html.var --- httpd-2.2.2.orig/docs/error/HTTP_BAD_REQUEST.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_BAD_REQUEST.html.var 2006-05-12 07:27:26.960823575 +0200 @@ -54,7 +54,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Demande incorrecte! +--!--#set var=TITLE value=Demande incorrecte ! --!--#include virtual=include/top.html -- Votre navigateur (ou votre proxy) a envoyeacute; diff -Naur httpd-2.2.2.orig/docs/error/HTTP_FORBIDDEN.html.var httpd-2.2.2/docs/error/HTTP_FORBIDDEN.html.var --- httpd-2.2.2.orig/docs/error/HTTP_FORBIDDEN.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_FORBIDDEN.html.var 2006-05-12 07:27:54.366731971 +0200 @@ -95,7 +95,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Accegrave;s interdit! +--!--#set var=TITLE value=Accegrave;s interdit ! --!--#include virtual=include/top.html -- !--#if expr=$REDIRECT_URL = /\/$/ -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_GONE.html.var httpd-2.2.2/docs/error/HTTP_GONE.html.var --- httpd-2.2.2.orig/docs/error/HTTP_GONE.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_GONE.html.var 2006-05-12 07:28:22.403499854 +0200 @@ -107,7 +107,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Cette ressource n'existe plus! +--!--#set var=TITLE value=Cette ressource n'existe plus ! --!--#include virtual=include/top.html -- L'URL demandeacute;e n'est plus accessible sur ce serveur et il diff -Naur httpd-2.2.2.orig/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var httpd-2.2.2/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var --- httpd-2.2.2.orig/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_INTERNAL_SERVER_ERROR.html.var 2006-05-12 07:28:44.138668285 +0200 @@ -117,7 +117,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Erreur du serveur! +--!--#set var=TITLE value=Erreur du serveur ! --!--#include virtual=include/top.html -- !--#if expr=$REDIRECT_ERROR_NOTES -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_LENGTH_REQUIRED.html.var httpd-2.2.2/docs/error/HTTP_LENGTH_REQUIRED.html.var --- httpd-2.2.2.orig/docs/error/HTTP_LENGTH_REQUIRED.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_LENGTH_REQUIRED.html.var 2006-05-12 07:30:20.503245183 +0200 @@ -56,7 +56,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Longueur du contenu illeacute;gal! +--!--#set var=TITLE value=Longueur du contenu illeacute;gale ! --!--#include virtual=include/top.html -- Une requecirc;te utilisant la meacute;thode !--#echo diff -Naur httpd-2.2.2.orig/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var httpd-2.2.2/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var --- httpd-2.2.2.orig/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_METHOD_NOT_ALLOWED.html.var 2006-05-12 07:30:43.606108660 +0200 @@ -55,7 +55,7 @@ Content-type: text/html; charset=ISO-8859-1 Body:--fr-- !--#set var=CONTENT_LANGUAGE value=fr ---!--#set var=TITLE value=Meacute;thode interdite! +--!--#set var=TITLE value=Meacute;thode interdite ! --!--#include virtual=include/top.html -- La meacute;thode !--#echo var=REDIRECT_REQUEST_METHOD -- diff -Naur httpd-2.2.2.orig/docs/error/HTTP_NOT_FOUND.html.var httpd-2.2.2/docs/error/HTTP_NOT_FOUND.html.var --- httpd-2.2.2.orig/docs/error/HTTP_NOT_FOUND.html.var 2005-11-13 14:22:28.0 +0100 +++ httpd-2.2.2/docs/error/HTTP_NOT_FOUND.html.var 2006-05-12 07:31:03.736632851 +0200
Re: [VOTE] 2.2.2 Candidate
lördagen den 22 april 2006 06.35 skrev Paul Querna: Please test and vote on releasing httpd 2.2.2, bundling APR and APR-Util 1.2.7. Works on Mandriva with unbundled apr and apr-util 1.2.7 and latest perl-framework (r396149). -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [VOTE] Release 2.2.1 as GA
lördagen den 1 april 2006 21.28 skrev Paul Querna: 2.2.1, embedding APR 1.2.6 and APR-Util 1.2.6, is available from: http://httpd.apache.org/dev/dist/ Please Test and Vote on releasing 2.2.1 as GA. MD5s: f330230636926d08872d84343b08fa16 httpd-2.2.1.tar.bz2 63e7f3e24adda0888a48a247b4eb5613 httpd-2.2.1.tar.gz Thanks, Paul I get these failed tests with perl-framework (r390750) on Mandriva Linux: Failed Test Stat Wstat Total Fail Failed List of Failed --- t/ssl/proxy.t 172 58 33.72% 3 8-9 12-13 16-17 20-21 24-25 28- 29 32-33 36-37 40-41 44-45 48-49 52-53 56-57 115-116 118-120 122 124 126 128 130 132 134 136 138 140 142 144 146 148 150 152 154 156 159-160 163-164 167-168 171- 172 -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [VOTE] Release 2.2.1 as GA
söndagen den 2 april 2006 00.32 skrev Ruediger Pluem: On 04/01/2006 11:24 PM, Oden Eriksson wrote: I get these failed tests with perl-framework (r390750) on Mandriva Linux: Failed Test Stat Wstat Total Fail Failed List of Failed - -- t/ssl/proxy.t 172 58 33.72% 3 8-9 12-13 16-17 20-21 24-25 28- 29 32-33 36-37 40-41 44-45 48-49 52-53 56-57 115-116 118-120 122 124 126 128 130 132 134 136 138 140 142 144 146 148 150 152 154 156 159-160 163-164 167-168 171- 172 Argh. It seems that http://svn.apache.org/viewcvs?rev=379237view=rev has not been backported. My fault not taking more care of this :-(. So I am now -1. Should I propose r379237 for backport? That fixed it for me. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: Intend to tag 2.2.1 on Friday
onsdagen den 29 mars 2006 03.59 skrev Paul Querna: I plan on tagging 2.2.1 from the 2.2.x branch on Friday evening, and start the whole release cycle thing. Cool. And the new apr 1.2.5 too? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: Intend to tag 2.2.1 on Friday
onsdagen den 29 mars 2006 15.20 skrev Graham Leggett: On Wed, March 29, 2006 1:15 pm, Oden Eriksson said: Cool. And the new apr 1.2.5 too? APR v1.2.6 has already been released. http://www.apache.org/dist/apr/Announcement1.2.html Thanks. I discovered that minutes after posting. Sorry for the noise. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
2.2.1?
Hello. I just wondered to know when you plan to release apache-2.2.1+? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [VOTE] APR-Util 1.2.5
måndagen den 20 mars 2006 20.02 skrev Paul Querna: Tarballs of APR-Util 1.2.5 are available for testing voting from: http://people.apache.org/~pquerna/dev/apr-util-1.2.5/ Seems to work fine on Mandriva Linux (apr-1.2.5 + apr-util-1.2.5 + apache-2.2.0) -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: mod_python 3.2.8 available for testing
+1 Mandriva Linux Cooker (x86_64), apache 2.2.0 mpm-prefork, python-2.4.2 Note that I applied this change: http://issues.apache.org/jira/browse/MODPYTHON-78 -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: mutex dir?
torsdagen den 16 februari 2006 22.48 skrev Jim Gallacher: Oden Eriksson wrote: tisdagen den 14 februari 2006 13.17 skrev Oden Eriksson: Hello. [...] I am no programmer, but can't you just look at how this is handled in the core mod_ssl and ldap code? That would be cheating and no fun at all! ;) Seriously though, we do often look through the source of other modules for ideas and inspiration, but the code bases are different enough that it's not a simple cut and paste. I know it may seem like we've gone off on a tangent, but I think it's better to come up with a general solution rather than creating a bunch of special cases, each of which end up with a slightly different implementation. He he he, I see. Then it wasn't just me who thought this was not a cut and paste thing. I also looked in many other third party modules to see if I could do that :) -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: mutex dir?
tisdagen den 14 februari 2006 13.17 skrev Oden Eriksson: Hello. [...] I am no programmer, but can't you just look at how this is handled in the core mod_ssl and ldap code? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
mutex dir?
Hello. In our package in Mandriva I patch mod_python.c so that the mutex stuff is put in /var/cache/httpd/mod_python/. But now with mod_python-3.2.7 plus fixes from the trunk and running the test suite it complains it cannot access /var/cache/httpd/mod_python/ (of course). So my question/request is, could you please make this directory set in the config? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: mutex dir?
tisdagen den 14 februari 2006 14.19 skrev Jim Gallacher: Oden Eriksson wrote: Hello. In our package in Mandriva I patch mod_python.c so that the mutex stuff is put in /var/cache/httpd/mod_python/. But now with mod_python-3.2.7 plus fixes from the trunk and running the test suite it complains it cannot access /var/cache/httpd/mod_python/ (of course). So my question/request is, could you please make this directory set in the config? I assume you mean as an option to configure, rather than as an Apache configuration directive? I meant as an apache configuration directive. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: servername extension and apache 2.2.0
måndagen den 6 februari 2006 18.13 skrev Peter Sylvester: Hello, I just have put together the small patch for apache 2.2.0 which allows to use the sernername extension logic in the development snapshot in order to select a different ssl context, and also to renegotiate if the vhost indicated by Host: has a different SSL_ctx (e.g. certificate). The patch also includes a little const fix due the SSL_method change. See http://www.edelweb.fr/EdelKey/files/apache-2.2.0+0.9.9+servername.patch and http://www.edelweb.fr/EdelKey/ for the background story It hasn't been accepted upstream? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: servername extension and apache 2.2.0
måndagen den 6 februari 2006 19.36 skrev Peter Sylvester: The version of this patch is not one hour old. The development snapshot is related to openssl which is also only there since a few weeks. The patch was done to validate that the openssl servername extension code can be easily used in an application. Both development teams may have opinions about the API. Oh, I must have misunderstood it. I thought it was a older patch/code. Oden Eriksson wrote: måndagen den 6 februari 2006 18.13 skrev Peter Sylvester: Hello, I just have put together the small patch for apache 2.2.0 which allows to use the sernername extension logic in the development snapshot in order to select a different ssl context, and also to renegotiate if the vhost indicated by Host: has a different SSL_ctx (e.g. certificate). The patch also includes a little const fix due the SSL_method change. See http://www.edelweb.fr/EdelKey/files/apache-2.2.0+0.9.9+servername.patch and http://www.edelweb.fr/EdelKey/ for the background story It hasn't been accepted upstream? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: mod_ssl 5s delay
söndagen den 5 februari 2006 17.30 skrev Oden Eriksson: Hello. For some reason I get a 5 seconds delay for each ssl access, I get it with 2.2.0 and 2.2.x head. I just can't figure out what is wrong. It worked fine with 2.0.x. This was because of a RTLD_DEEPBIND patch added from the fedora package. For some reason it does not work on Mandriva ;( Sorry for the noise. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
mod_ssl 5s delay
Hello. For some reason I get a 5 seconds delay for each ssl access, I get it with 2.2.0 and 2.2.x head. I just can't figure out what is wrong. It worked fine with 2.0.x. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: Problem: compiling mod_tidy with Apache 2.2
torsdagen den 19 januari 2006 16.59 skrev Steffen: Compiling on Windows and Apache 2.2.0 works with the patch. Steffen http://www.apachelounge.com - Original Message - From: Sierk Bornemann [EMAIL PROTECTED] To: dev@httpd.apache.org Sent: Thursday, January 19, 2006 3:28 PM Subject: Problem: compiling mod_tidy with Apache 2.2 Hi! I am the project maintainer of the Apache2 module mod_tidy (http://mod-tidy.sourceforge.net/), and there seems to be a problem compiling mod_tidy with Apache 2.2, because API has changed from Apache2.0 to Apache2.2: Compiler error messages: -- src/mod_tidy.c: In function 'mod_tidy_filter': src/mod_tidy.c:189: warning: implicit declaration of function 'APR_BRIGADE_FOREACH' src/mod_tidy.c:189: error: expected ';' before '{' token src/mod_tidy.c:154: warning: unused variable 'r' apxs:Error: Command failed with rc=65536 -- APR_BRIGADE_FOREACH does not longer exist, so there must be a short fix reflecting this. I have a short patch here, which compiles well under apache2.0.55 and which lets to a functionable binary under Linux (OpenSuse), but I have no possibility yet to check, if it also compiles and works with apache2.2. For convenience, I have attached the little patch as a Unix diff to this email. The source tarball of mod_tidy is available on: http://mod-tidy.sourceforge.net/src/ Is here anybody, who can help and have a look into the source and the patch or propose a better patch to solve the problem? Looks similar to my hack in Mandriva. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se --- src/mod_tidy.c 2005-11-11 01:47:57.0 +0100 +++ src/mod_tidy.c.oden 2005-12-16 02:33:27.0 +0100 @@ -186,7 +186,9 @@ cfg-tidyoptions, NULL ); } -APR_BRIGADE_FOREACH(e, bb) { +for (e = APR_BRIGADE_FIRST(bb); + e != APR_BRIGADE_SENTINEL(bb); + e = APR_BUCKET_NEXT(e)) { const char *str; apr_size_t len;
Re: [vote] 2.2.0 tarballs
torsdagen den 1 december 2005 07.54 skrev Roy T. Fielding: On Nov 30, 2005, at 10:12 PM, William A. Rowe, Jr. wrote: I'm 100% conviced next to nobody on this list has been developing and testing httpd-2.2/apr-1.2 without their own in-tree tweaks. I'm as guilty as anyone. So we've been compiling and improving the code, but the build/ install status is -worse- than httpd-2.0, ergo this is not the best version of apache now available and is -not- ready for GA. I just built from scratch using the tarball and the same options that any typical user would set: i.e., ./configure --prefix=/dist/test22 --enable-modules=all Zero problems. I don't understand what you are talking about -- developers don't run ./buildconf on the source package. Only we do that. Even after I do a I added mysql support in apr-util-1.2.2 as per INSTALL.MySQL as a conditional build switch in our rpm package, that was only possible after doing a lot of hacks. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [vote] 2.2.0 tarballs
torsdagen den 1 december 2005 16.01 skrev Nick Kew: On Thursday 01 December 2005 14:47, Oden Eriksson wrote: I added mysql support in apr-util-1.2.2 as per INSTALL.MySQL as a conditional build switch in our rpm package, that was only possible after doing a lot of hacks. Are those hacks anything we/I should know about and fix, or are they specific to your packaging? Well if you want to fix it it would be great. basically what I had to do was to install these in the apr installbuilddir (in our apr-1.2.2 binary rpm): apr_common.m4 apr_hints.m4 apr_network.m4 apr_threads.m4 find_apr.m4 gen-build.py (I'm not sure all those *.m4 files was required) After that mimic buildconf by copying them to the apr-util-1.2.2/build/ directory, followed by libtoolize --copy --force; aclocal; autoconf --force; python build/gen-build.py make. After that apr-util-1.2.2 recognized the added apr_dbd_mysql.c source. Of course this was done at rpm build time for apr-util-1.2.2. Cheers. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: buildconf against installed APR
torsdagen den 1 december 2005 21.38 skrev Sander Temme: Note the cp turds: those files are not installed along with APR, so buildconf cannot copy them over. How come I or no one else noticed this ever? Probably because these files are not cleaned up by make Because you never package it like we do. I think you only do ./configure; make; make install and are satisfied with that. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: buildconf against installed APR
torsdagen den 1 december 2005 23.56 skrev Sander Temme: On Dec 1, 2005, at 1:03 PM, Oden Eriksson wrote: torsdagen den 1 december 2005 21.38 skrev Sander Temme: Note the cp turds: those files are not installed along with APR, so buildconf cannot copy them over. How come I or no one else noticed this ever? Probably because these files are not cleaned up by make Because you never package it like we do. I think you only do ./ configure; make; make install and are satisfied with that. Oden, Can you tell us what steps you take to package httpd/apr/apr-util? I think that would tell us a little more about possible use cases for the build system. Thanks, S. Ok, will do. I publish the rpm spec files and I hope it won't be hard to understand them. Here are the spec files: http://nux.se/Cooker/SPECS/ And here are source and patches applied: http://nux.se/Cooker/SOURCES/ -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [vote] 2.2.0 tarballs
tisdagen den 29 november 2005 08.55 skrev Paul Querna: These tarballs are Identical to 2.1.10 except for two changes: * include/ap_release.h Updated to be 2.2.0-release * The root directory was changed from httpd-2.1.10 to httpd-2.2.0 Available from: http://people.apache.org/~pquerna/dev/httpd-2.2.0/ Please vote on releasing as GA/Stable. I am sorry for the confusion on whole move of 2.1.10 to 2.2.0. This entire situation is completely undefined in our VERSIONING file, and hasn't ever happened before with these versioning rules. I believe the best way to move forward for everyone is to vote on these 2.2.0 tarballs. Hopefully we can all learn from this, and come up with a better VERSIONING policy by the time we do 2.4. Thanks, Paul. Seems to work great on Mandriva Linux (Cooker) x86 and x86_64, all tests passes (with php-4.4.1 and php-5.1.1) using the perl-framework r344476. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
perl-framework + apache 2.1.9 + openssl-0.9.8a
Hello. Not so long ago I started packaging apache 2.1.x (rpm) and also run the perl-framework tests at build time in Mandriva Cooker (development branch of Mandriva Linux). Ever since I updated openssl-0.9.7i - openssl-0.9.8a some ssl tests in the perl-framework stopped working. Is this a known fact? These are the tests that fails: t/ssl/basicauth.t32 66.67% 2-3 t/ssl/env.t 28 14 50.00% 15-28 t/ssl/extlookup.t22 100.00% 1-2 t/ssl/fakeauth.t 32 66.67% 2-3 t/ssl/proxy.t 172 10 5.81% 3-7 116-120 t/ssl/require.t 52 40.00% 2 5 t/ssl/varlookup.t 72 72 100.00% 1-72 t/ssl/verify.t 31 33.33% 2 13 tests and 1 subtest skipped. Failed 8/126 test scripts, 93.65% okay. 105/2919 subtests failed, 96.40% okay. Cheers. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://li.nux.se
Re: [vote] 2.1.9 as beta
söndagen den 30 oktober 2005 05.09 skrev Paul Querna: 2.1.9-Beta is available from: http://people.apache.org/~pquerna/dev/httpd-2.1.9/ Please test and vote on releasing 2.1.9 as BETA. As a reminder, if you know of any issues you consider a SHOW STOPPER for a 2.2.0 stable release, please add them to the branches/2.2.x STATUS file. Thanks, Tested on Mandriva Linux 2006.0 x86_64, works good. I ran the perl-framework from httpd-test, latest from SVN and it only choked on a couple of php tests. t/php/arg.t, t/php/func5.t and t/php/virtual.t. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 06.42 skrev William A. Rowe, Jr.: The httpd-2.0.55 candidate, including win32 source .zip and installers*, is now available for testing at http://httpd.apache.org/dev/dist/ Please review this candidate, and when responding, indicate the precise operating system that you have tested. There's no fix for CAN-2005-2088 in this one. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 09.54 skrev Oden Eriksson: måndag 10 oktober 2005 06.42 skrev William A. Rowe, Jr.: The httpd-2.0.55 candidate, including win32 source .zip and installers*, is now available for testing at http://httpd.apache.org/dev/dist/ Please review this candidate, and when responding, indicate the precise operating system that you have tested. There's no fix for CAN-2005-2088 in this one. Duh! Too early in the morning... -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 06.42 skrev William A. Rowe, Jr.: The httpd-2.0.55 candidate, including win32 source .zip and installers*, is now available for testing at http://httpd.apache.org/dev/dist/ Please review this candidate, and when responding, indicate the precise operating system that you have tested. Thank you for your assistance! Bill * note that win32 binary installers were uploaded only at this hour, and it will take up to another two hours for the public server to resync. Thanks for your patience. I saw this: Cannot load /etc/httpd/modules/mod_cgi.so into server: /etc/httpd/modules/mod_cgi.so: undefined symbol: apr_procattr_addrspace_set And some investigations told me it requires apr 0.9.7, maybe the autotools stuff should check for this or be documented? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 16.27 skrev William A. Rowe, Jr.: Oden Eriksson wrote: And some investigations told me it requires apr 0.9.7, maybe the autotools stuff should check for this or be documented? Yup - apr 0.9.7 is part of the bundle. We can spell this out in the announce, certainly, and on the downloads page README - would that suffice? Yep. Thanks. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 16.56 skrev Brian Akins: Paul Querna wrote: Huh? It is already in 0.9.7 :) I committed it to the 0.9.x branch right after 0.9.6 was released. Thank you! I guess I didn't check the CHANGELOG closely enough. i think it's not there :) -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 17.33 skrev William A. Rowe, Jr.: Oden Eriksson wrote: i think it's not there :) Oden, just looked again, would you check your package signature? b45f16a9878e709497820565d42b00b9 httpd-2.0.55.tar.gz and ensure that you are building against the included srclib/apr/ and not against some system installed 0.9.6 version? Argh! I looked in the wrong place (wrong changelog). Sorry for the noise. Anyway, 2.0.55 works for me on my Mandriva boxes. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: [pre-release] 2.0.55 *candidate* available for testing
måndag 10 oktober 2005 17.28 skrev William A. Rowe, Jr.: Brian Akins wrote: William A. Rowe, Jr. wrote: Yup - apr 0.9.7 is part of the bundle. We can spell this out in the announce, certainly, and on the downloads page README - would that suffice? How horrible would it be to have the apr_reslist_invalidate patch applied to the bundled apr? I'm wondering if we all woke up this morning on different planets :) I must have :) -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: Release plans?
måndag 03 oktober 2005 18.35 skrev Paul Querna: Oden Eriksson wrote: Hi. I don't know if this is the right forum for this question but I found no info elsewhere. I simply wonder when 2.1.x is going to be dubbed stable? See our versioning file: http://svn.apache.org/repos/asf/httpd/httpd/trunk/VERSIONING 2.1.x will never be 'stable'. Your question should be, 'I simply wonder when 2.2.0 is going to be released?' Ahh, sorry. I meant 2.2.x There is no simple answer. Mine is simply 'soon'. The more people that test the 2.1.x betas on more sites give us more confidence in calling it 2.2.0. We want both positive and negative reports. So, my question is to you, did you test 2.1.8-beta? Did you try some of the new features? Did it work how you expected? Do you need more documentation on how to use the new features? I packed it and uploaded it into the mandriva rep the other day. I haven't tested the new features much though. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Release plans?
Hi. I don't know if this is the right forum for this question but I found no info elsewhere. I simply wonder when 2.1.x is going to be dubbed stable? -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Apache-PAR-0.30
Hi. I'm trying to build it on Mandriva Linux Cooker (development version) and are getting this in the error log: [Wed Sep 28 10:14:40 2005] [error] Can't locate Apache2.pm in @INC (@INC contains: /home/oden/RPM/BUILD/Apache-PAR-0.30/t /usr/lib/perl5/5.8.7/i386-linux /usr/lib/perl5/5.8.7 /usr/lib/perl5/site_perl/5.8.7/i386-linux /usr/lib/perl5/site_perl/5.8.7 /usr/lib/perl5/site_perl/5.8.4 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl/5.8.7/i386-linux /usr/lib/perl5/vendor_perl/5.8.7 /usr/lib/perl5/vendor_perl/5.8.6 /usr/lib/perl5/vendor_perl/5.8.6/i386-linux /usr/lib/perl5/vendor_perl/5.8.5 /usr/lib/perl5/vendor_perl/5.8.4 /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl/5.8.2 /usr/lib/perl5/vendor_perl/5.8.1 /usr/lib/perl5/vendor_perl/5.8.0 /usr/lib/perl5/vendor_perl . /home/oden/RPM/BUILD/Apache-PAR-0.30/t) at /home/oden/RPM/BUILD/Apache-PAR-0.30/t/conf/modperl_2.pl line 1. \nCompilation failed in require at (eval 2) line 1.\n [Wed Sep 28 10:14:40 2005] [error] Can't load Perl file: /home/oden/RPM/BUILD/Apache-PAR-0.30/t/conf/modperl_2.pl for server localhost.localdomain:8529, exiting... All the deps are met, latest versions. Other perl apache modules make test works. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
ETA for 2.0.55?
Hello!. I wonder what is the estimated release date for 2.0.55? Thanks in advance. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
0.9.8 beta6 on Mandriva Cooker amd64
Hello. I get these errors running the tests on Mandriva Linux Cooker, amd64: $ make test_ec [...] testing internal curves: . EC_GROUP_check() failed with curve secp224r1 . EC_GROUP_check() failed with curve secp384r1 ... EC_GROUP_check() failed with curve prime256v1 EC_GROUP_check() failed with curve wap-wsg-idm-ecid-wtls12 .. failed $ make test_ecdsa test ecdsa ../util/shlib_wrap.sh ./ecdsatest some tests from X9.62: testing prime192v1: ok testing prime239v1: ok testing c2tnb191v1: ok testing c2tnb239v1: ok testing ECDSA_sign() and ECDSA_verify() with some internal curves: secp160k1: ... ok secp160r1: ... ok secp160r2: ... ok secp192k1: ... ok secp224k1: ... ok secp224r1: failed ECDSA test failed make: *** [test_ecdsa] Error 1 $ make test_ecdh test ecdh ../util/shlib_wrap.sh ./ecdhtest Testing key generation with NIST Prime-Curve P-192 ok Testing key generation with NIST Prime-Curve P-224make: *** [test_ecdh] Error 1 System info: Linux kernel 2.6.11 glibc-2.3.4 gcc-3.4.3 All tests passes on i586 and gcc-4.0.1 Additionally I attach one patch by Andreas Hasenack andreas[at]mandriva[dot]com that is used by the Brazilian government that I kindly hope you will accept upstream. -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se --- crypto/x509v3/v3_alt.c 2005-05-11 05:45:36.0 +0200 +++ crypto/x509v3/v3_alt.c.oden 2005-07-05 15:13:32.285682900 +0200 @@ -102,11 +102,55 @@ { unsigned char *p; char oline[256], htmp[5]; + + int rc = 0; + + /* see http://www.iti.gov.br/resolucoes/RESOLU__O_13_DE_26_04_2002.PDF + * for the OID definitions and more details + * All content is ASN.1 OCTET STRING + */ + /* person related */ + const char oid_id_pf[] = 2.16.76.1.3.1; /* person identification data as follows: + * birth date: ddmm (8) + * CPF number: (11) + * PIS/PASEP number: (11) + * RG number: (11) + * RG emmitter and state: (6) + */ + const char oid_el_pf[] = 2.16.76.1.3.5; /* Electoral data: + * card number: (11) + * electoral zone: (3) + * electoral section: (4) + * city and state: (22) + */ + /* company related */ + const char oid_pj_id1[] = 2.16.76.1.3.4; /* info about the person responsible for the company's certificate: + * birth date: ddmm (8) + * CPF number: (11) + * PIS/PASEP number: (11) + * RG number: (11) + * RG emitter and state: (6) + */ + const char oid_pj_name[] = 2.16.76.1.3.2; /* Name of the person responsible for the company's certificate */ + const char oid_pj_cnpj[] = 2.16.76.1.3.3; /* CNPJ number of the company*/ + int i; switch (gen-type) { case GEN_OTHERNAME: - X509V3_add_value(othername,unsupported, ret); + rc = OBJ_obj2txt(oline, sizeof(oline), gen-d.otherName-type_id, 1); + if (rc) + if ((!strncmp(oline, oid_id_pf, sizeof(oid_id_pf))) || + (!strncmp(oline, oid_el_pf, sizeof(oid_el_pf))) || + (!strncmp(oline, oid_pj_id1, sizeof(oid_pj_id1))) || + (!strncmp(oline, oid_pj_name, sizeof(oid_pj_name))) || + (!strncmp(oline, oid_pj_cnpj, sizeof(oid_pj_cnpj +/* FIXME: is that string always null terminated? */ +X509V3_add_value(othername, gen-d.otherName-value-value.octet_string-data, ret); + else +X509V3_add_value(othername,unsupported, ret); + else + X509V3_add_value(othername,unsupported, ret); break; case GEN_X400:
Re: 2.1.5 available for testing
fredag 17 juni 2005 09.40 skrev Paul Querna: Please test and vote on releasing 2.1.5 as -alpha. Available at: http://httpd.apache.org/dev/dist/ (might take up to 2 hours for the files to appear, due to the rsync delay) MD5 (httpd-2.1.5-alpha.tar.Z) = f9dea893723fe7ddb8e9c5a4225a276b MD5 (httpd-2.1.5-alpha.tar.bz2) = 8ec926f27c2768c7cbd24f42fa22108a MD5 (httpd-2.1.5-alpha.tar.gz) = 7fdc3d61deb72b3815e137bdae282f0e Thanks, Paul +1 on Mandriva LE2005 -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: 2.0.54 release candidate tarball available for testing
tisdag 12 april 2005 09.25 skrev Sander Striker: Hi, As usual the tarballs are at: http://httpd.apache.org/dev/dist/ Please give 2.0.54 a whirl and report any problems (or successes) ;) Works for me. +1 -- Regards // Oden Eriksson Mandriva: http://www.mandriva.com NUX: http://nux.se
Re: 2.1.4 available for testing
onsdag 16 mars 2005 22.00 skrev Sander Striker: Hi all, There are some 2.1.4-alpha tarballs waiting to be tested at: http://httpd.apache.org/dev/dist/ Please report back with any problems. Thanks for testing! Sander Hmm..., I get: Starting httpd21: httpd21: Syntax error on line 241 of /etc/httpd21/conf/httpd21.conf: Cannot load /usr/lib64/apache21/mod_authnz_ldap.so into server: /usr/lib64/apache21/mod_authnz_ldap.so: undefined symbol: util_ldap_cache_getuserdn This happens on Mandrakelinux 10.1 (x86_64) and Mandrakelinux 10.2 (i586) -- Regards // Oden Eriksson
Re: 2.1.4 available for testing
torsdag 17 mars 2005 06.52 skrev Paul Querna: Oden Eriksson wrote: onsdag 16 mars 2005 22.00 skrev Sander Striker: Hi all, There are some 2.1.4-alpha tarballs waiting to be tested at: http://httpd.apache.org/dev/dist/ Please report back with any problems. Thanks for testing! Sander Hmm..., I get: Starting httpd21: httpd21: Syntax error on line 241 of /etc/httpd21/conf/httpd21.conf: Cannot load /usr/lib64/apache21/mod_authnz_ldap.so into server: /usr/lib64/apache21/mod_authnz_ldap.so: undefined symbol: util_ldap_cache_getuserdn This happens on Mandrakelinux 10.1 (x86_64) and Mandrakelinux 10.2 (i586) Change the load order in your httpd.conf. move the LoadModule for mod_ldap to before mod_authnz_ldap. Ahh! I thought that loading order was something from the past? Well, it works now. Will try some more after I have gotten some sleep... Thanks Paul. -- Regards // Oden Eriksson
Re: [Clamav-devel] clamav-milter
tisdag 22 februari 2005 14.06 skrev Tomasz Kojm: On Tue, 22 Feb 2005 13:53:01 +0100 Oden Eriksson [EMAIL PROTECTED] wrote: It doesn't even work if I set the TEMP env var to point to /var/lib/clamav/tmp. libclamav uses TMPDIR and not TEMP Ahh, of course. Maybe I shouldn't have booted windows last night... -- Regards // Oden Eriksson ___ http://lurker.clamav.net/list/clamav-devel.html