Hello,
I'm PHP-FPM maintainer. We got actually report about this as well so just
went through this.
On Sat, Aug 3, 2024 at 7:35 PM Eric Covener wrote:
> On Fri, Aug 2, 2024 at 12:19 PM Yann Ylavic wrote:
> >
> > On Fri, Aug 2, 2024 at 3:26 PM Eric Covener wrote:
> > >
> > > On Fri, Aug 2,
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
On Fri, Aug 2, 2024 at 12:19 PM Yann Ylavic wrote:
>
> On Fri, Aug 2, 2024 at 3:26 PM Eric Covener wrote:
> >
> > On Fri, Aug 2, 2024 at 9:10 AM Yann Ylavic wrote:
> > >
> > > On Fri, Aug 2, 2024 at 1:06 PM Eric Covener wrote:
> > > >
> > > > > Yeah, if not under DocumentRoot I don't see how
On Fri, Aug 2, 2024 at 3:26 PM Eric Covener wrote:
>
> On Fri, Aug 2, 2024 at 9:10 AM Yann Ylavic wrote:
> >
> > On Fri, Aug 2, 2024 at 1:06 PM Eric Covener wrote:
> > >
> > > > Yeah, if not under DocumentRoot I don't see how ProxyPass could work,
> > > > but SetHandler should since it's
On Fri, Aug 2, 2024 at 9:10 AM Yann Ylavic wrote:
>
> On Fri, Aug 2, 2024 at 1:06 PM Eric Covener wrote:
> >
> > > Yeah, if not under DocumentRoot I don't see how ProxyPass could work,
> > > but SetHandler should since it's following the whole request
> > > processing to resolve the filesystem
On Fri, Aug 2, 2024 at 3:10 PM Yann Ylavic wrote:
>
> On Fri, Aug 2, 2024 at 1:06 PM Eric Covener wrote:
> >
> > > Yeah, if not under DocumentRoot I don't see how ProxyPass could work,
> > > but SetHandler should since it's following the whole request
> > > processing to resolve the filesystem
On Fri, Aug 2, 2024 at 1:06 PM Eric Covener wrote:
>
> > Yeah, if not under DocumentRoot I don't see how ProxyPass could work,
> > but SetHandler should since it's following the whole request
> > processing to resolve the filesystem r->filename?
>
> In the examples I am seeing spot-checking
> Yeah, if not under DocumentRoot I don't see how ProxyPass could work,
> but SetHandler should since it's following the whole request
> processing to resolve the filesystem r->filename?
In the examples I am seeing spot-checking google results, people who
use ProxyPass + FPM hard-code the
On Fri, Aug 2, 2024 at 11:33 AM Yann Ylavic wrote:
>
> On Fri, Aug 2, 2024 at 6:02 AM Eric Covener wrote:
> >
> > On Thu, Aug 1, 2024 at 9:22 PM Yann Ylavic wrote:
> > > >
> > > > For this how about this attached patch?
> > > > With it I can get the correct env vars (I think), and since we'd
On Fri, Aug 2, 2024 at 6:02 AM Eric Covener wrote:
>
> On Thu, Aug 1, 2024 at 9:22 PM Yann Ylavic wrote:
> > >
> > > For this how about this attached patch?
> > > With it I can get the correct env vars (I think), and since we'd not
> > > send a "proxy:" SCRIPT_FILENAME anymore, php-fpm would not
e2dbc23f5a5
applies).
>
> So this sounds reasonable to me without upsetting the fragile link
> between php-fpm and proxy_fcgi.
>
> > > But it's going to be an endless issue if we can't fix or align
> > > ProxyPass and SetHandler because of workarounds there, we have to
>
to be the real decoded paths?
> >
> > So I did this in r1919629.
> >
> > >
> > > But it's going to be an endless issue if we can't fix or align
> > > ProxyPass and SetHandler because of workarounds there, we have to
> > > remain bug co
hp-fpm and proxy_fcgi.
> > But it's going to be an endless issue if we can't fix or align
> > ProxyPass and SetHandler because of workarounds there, we have to
> > remain bug compatible..
I wonder does ProxyPass just not work with php-fpm and these
spaces/utf-8 scenarios?
&g
t's going to be an endless issue if we can't fix or align
> > ProxyPass and SetHandler because of workarounds there, we have to
> > remain bug compatible..
>
> For this how about this attached patch?
> With it I can get the correct env vars (I think), and since we'd not
> send
GENERIC" we don't send the "proxy:scheme://host" part and
> SCRIPT_NAME/FILENAME are supposed to be the real decoded paths?
So I did this in r1919629.
>
> But it's going to be an endless issue if we can't fix or align
> ProxyPass and SetHandler because of workarounds there,
ilename with ProxyPass, and
come back to my previous patch which skipped it only for SetHandler?
Possibly FCGI_MAY_BE_FPM() only too because for "ProxyFCGIBackendType
GENERIC" we don't send the "proxy:scheme://host" part and
SCRIPT_NAME/FILENAME are supposed to be the real decoded paths?
But it's going to be an endless issue if we can't fix or align
ProxyPass and SetHandler because of workarounds there, we have to
remain bug compatible.. At some point we'll have to coordinate with
them to remove that "apache_was_there"..
On Thu, Aug 1, 2024 at 2:47 PM Yann Ylavic wrote:
>
> On Thu, Aug 1, 2024 at 7:57 PM Eric Covener wrote:
> >
> > On Thu, Aug 1, 2024 at 1:37 PM Yann Ylavic wrote:
> > >
> > > On Thu, Aug 1, 2024 at 5:51 PM Eric Covener wrote:
> > > >
> > > > But does it leave the splitting problem with decoded
On Thu, Aug 1, 2024 at 7:57 PM Eric Covener wrote:
>
> On Thu, Aug 1, 2024 at 1:37 PM Yann Ylavic wrote:
> >
> > On Thu, Aug 1, 2024 at 5:51 PM Eric Covener wrote:
> > >
> > > But does it leave the splitting problem with decoded %3F?
> >
> > Yeah but I'm not sure that it's _our_ problem, a
On Thu, Aug 1, 2024 at 1:37 PM Yann Ylavic wrote:
>
> On Thu, Aug 1, 2024 at 5:51 PM Eric Covener wrote:
> >
> > But does it leave the splitting problem with decoded %3F?
>
> Yeah but I'm not sure that it's _our_ problem, a "proxy:" r->filename
> does never contain the query-string in the first
On Thu, Aug 1, 2024 at 5:51 PM Eric Covener wrote:
>
> But does it leave the splitting problem with decoded %3F?
Yeah but I'm not sure that it's _our_ problem, a "proxy:" r->filename
does never contain the query-string in the first place, so any '?' in
there (hence in SCRIPT_FILENAME) is part of
the spec) I wonder if
> > > proxy_fcgi_canon() should not encode at all, or maybe only when
> > > FCGI_MAY_BE_FPM() (so to have an opt-out)?
> >
> > > And like in the above patch forbid controls still but not space/tab, WDYT?
> >
> > Based on the bug and the
Pass, but I don't
> > see why they should be different in this regard..
> >
> > If SCRIPT_FILENAME should be decoded (per the spec) I wonder if
> > proxy_fcgi_canon() should not encode at all, or maybe only when
> > FCGI_MAY_BE_FPM() (so to have an opt-out)?
>
> > An
> proxy_fcgi_canon() should not encode at all, or maybe only when
> FCGI_MAY_BE_FPM() (so to have an opt-out)?
> And like in the above patch forbid controls still but not space/tab, WDYT?
Based on the bug and the japanese path, maybe set the bar even lower
and just ratchet it all the way back to the character we know is
problematic?
On Wed, Jul 31, 2024 at 6:57 PM wrote:
>
> https://bz.apache.org/bugzilla/show_bug.cgi?id=69235
>
> --- Comment #2 from Yann Ylavic ---
> Created attachment 39832
> --> https://bz.apache.org/bugzilla/attachment.cgi?id=39832=edit
> mod_proxy fixup after mod_rewrite's
What could be the issue
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
On Wed, Jul 17, 2024 at 6:22 PM wrote:
>
> https://bz.apache.org/bugzilla/show_bug.cgi?id=69203
>
> --- Comment #6 from Yann Ylavic ---
> Created attachment 39817
> --> https://bz.apache.org/bugzilla/attachment.cgi?id=39817=edit
> Proxy FCGI nocanon from SetHandler
I'm not sure how we should
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
On 4/8/24 1:47 PM, Eric Covener wrote:
> Any concerns with documenting the ap_trust_cgilike_cl variable in e.g.
> https://httpd.apache.org/docs/2.4/env.html ?
Not from my side.
Regards
Rüdiger
Any concerns with documenting the ap_trust_cgilike_cl variable in e.g.
https://httpd.apache.org/docs/2.4/env.html ?
-- Forwarded message -
From:
Date: Sun, Apr 7, 2024 at 5:49 PM
Subject: [Bug 68872] New: xmlhttprequest.onprogress behavior changed
after updated to 2.4.59
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
On Mon, Jan 8, 2024 at 5:54 PM Ruediger Pluem wrote:
>
> On 1/8/24 1:37 PM, Yann Ylavic wrote:
> >
> > As noted in v2 we have an issue here by "losing" the beginning of the
> > value on recursion:
> > /* XXX: recursing by using AP_REG_NOTBOL (because we are not at
> > ^
> >
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
On 1/8/24 1:37 PM, Yann Ylavic wrote:
> On Mon, Jan 8, 2024 at 10:49 AM Ruediger Pluem wrote:
>>
>> On 1/5/24 3:08 PM, Yann Ylavic wrote:
>>>
>>> process_regexp.diff
>>>
>>> Index: modules/metadata/mod_headers.c
>>> ===
>>> ---
On Mon, Jan 8, 2024 at 10:49 AM Ruediger Pluem wrote:
>
> On 1/5/24 3:08 PM, Yann Ylavic wrote:
> >
> > process_regexp.diff
> >
> > Index: modules/metadata/mod_headers.c
> > ===
> > --- modules/metadata/mod_headers.c(revision
t;>
>>> It finds nothing, so I am assuming I did something wrong in my search. Will
>>> file bug if not already filed.
>>>
>>> We are investigating an infinite loop (stack overflow) issue, caused by
>>> "securing" a system.
>>>
>>&
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
ue searching Bugzilla for any issue involving
> > > process_regexp in
> mod_headers.c .
> > >
> > > It finds nothing, so I am assuming I did something wrong in my search.
> > > Will file bug if not
> already filed.
> > >
> > > We are investigati
g I did something wrong in my search. Will
> > file bug if not already filed.
> >
> > We are investigating an infinite loop (stack overflow) issue, caused by
> > "securing" a system.
> >
> > ZZZ-STIG-SV-214288r881493_rule.conf:Header always edit* S
On Thu, Jan 4, 2024 at 9:04 PM Jason Pyeron wrote:
>
> I am having some issue searching Bugzilla for any issue involving
> process_regexp in mod_headers.c .
>
> It finds nothing, so I am assuming I did something wrong in my search. Will
> file bug if not already filed.
>
&
I am having some issue searching Bugzilla for any issue involving
process_regexp in mod_headers.c .
It finds nothing, so I am assuming I did something wrong in my search. Will
file bug if not already filed.
We are investigating an infinite loop (stack overflow) issue, caused by
"sec
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
1 - 100 of 2772 matches
Mail list logo