Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
Hello list,
sorry guys. i think i have lost overview. Has this resulted in a public
patch?
Thanks,
Hajo
Am 23.12.2016 um 13:18 schrieb Konstantin Kolinko:
BCC: Steffen
I did quick tests to verify whether shutdown issues are related to
mod_proxy. They are not related.
2016-12-23 15:01 GMT+03:00 Konstantin Kolinko :
2. Oddities at shutdown that I also mentioned are still there.
I mean the following:
- On Windows 7 (running as service, complex configuration):
"AH00431: Parent: Forcing termination of child process" log message
I do not see such message in old logs from 2.4.23.
Maybe the process is still broken, although it did not crash?
Quick test:
1) Start server service, Stop server service (No HTTPS requests served)
No issue.
[Fri Dec 23 15:06:22.542629 2016] [mpm_winnt:notice] [pid 2636:tid
364] AH00422: Parent: Received shutdown signal -- Shutting down the
server.
[Fri Dec 23 15:06:24.570633 2016] [mpm_winnt:notice] [pid 3996:tid
256] AH00364: Child: All worker threads have exited.
[Fri Dec 23 15:06:24.648633 2016] [mpm_winnt:notice] [pid 2636:tid
364] AH00430: Parent: Child process 3996 exited successfully.
2) Start server service, Request a static page (root page of the
site), Stop server service.
The child process does not stop, is terminated forcedly.
[Fri Dec 23 15:07:02.353899 2016] [mpm_winnt:notice] [pid 3084:tid
364] AH00422: Parent: Received shutdown signal -- Shutting down the
server.
[Fri Dec 23 15:07:32.368352 2016] [mpm_winnt:notice] [pid 3084:tid
364] AH00431: Parent: Forcing termination of child process 5564
So this issue is real, but it is not related to mod_proxy.
- On Windows 10 (running as console, simple configuration example - GitHub):
Before I hit Ctrl+C the error.log file is as follows:
(I added additional line breaks to separate lines that are wrapped in e-mail.)
...
After I hit Ctrl+C in HTTPD console window, it becomes:
(I added additional line breaks to separate lines that are wrapped in e-mail.)
...
The "Apache server interrupted..." line appears in the middle of the
file, overwriting some of existing text.
Quick test:
1) Start server service, Stop server service (No HTTPS requests served)
This issue is observed.
("Apache server interrupted..." line appears in the middle of the file).
So this oddity is real, but it is not related to mod_proxy, not
related to processing of HTTP requests.
Maybe this is not a real issue, just an oddity.
Best regards,
Konstantin Kolinko
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
Hi Hajo, On Mon, Jan 2, 2017 at 11:54 AM, Hajo Locke wrote: > > sorry guys. i think i have lost overview. Has this resulted in a public > patch? This patch: http://svn.apache.org/r1775775 Regards, Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
On Mon, Jan 2, 2017 at 12:41 PM, Yann Ylavic wrote: > Hi Hajo, > > On Mon, Jan 2, 2017 at 11:54 AM, Hajo Locke wrote: >> >> sorry guys. i think i have lost overview. Has this resulted in a public >> patch? > > This patch: http://svn.apache.org/r1775775 Or here as plaintext: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/proxy_util.c?r1=1775775&r2=1775774&pathrev=1775775&view=patch > > Regards, > Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
Hi Hajo,
Am 02.01.2017 um 11:54 schrieb Hajo Locke:
Hello list,
sorry guys. i think i have lost overview. Has this resulted in a public
patch?
The fix in trunk (2.5) is
http://svn.apache.org/viewvc?view=revision&revision=1775775
It is proposed for backport to 2.4 but has not yet been applied there.
ApacheLounge has provided fixed binaries for Windows including the
suggested fix. See the discussion at
https://www.apachelounge.com/viewtopic.php?p=34723
Regards,
Rainer
Thanks,
Hajo
Am 23.12.2016 um 13:18 schrieb Konstantin Kolinko:
BCC: Steffen
I did quick tests to verify whether shutdown issues are related to
mod_proxy. They are not related.
2016-12-23 15:01 GMT+03:00 Konstantin Kolinko :
2. Oddities at shutdown that I also mentioned are still there.
I mean the following:
- On Windows 7 (running as service, complex configuration):
"AH00431: Parent: Forcing termination of child process" log message
I do not see such message in old logs from 2.4.23.
Maybe the process is still broken, although it did not crash?
Quick test:
1) Start server service, Stop server service (No HTTPS requests served)
No issue.
[Fri Dec 23 15:06:22.542629 2016] [mpm_winnt:notice] [pid 2636:tid
364] AH00422: Parent: Received shutdown signal -- Shutting down the
server.
[Fri Dec 23 15:06:24.570633 2016] [mpm_winnt:notice] [pid 3996:tid
256] AH00364: Child: All worker threads have exited.
[Fri Dec 23 15:06:24.648633 2016] [mpm_winnt:notice] [pid 2636:tid
364] AH00430: Parent: Child process 3996 exited successfully.
2) Start server service, Request a static page (root page of the
site), Stop server service.
The child process does not stop, is terminated forcedly.
[Fri Dec 23 15:07:02.353899 2016] [mpm_winnt:notice] [pid 3084:tid
364] AH00422: Parent: Received shutdown signal -- Shutting down the
server.
[Fri Dec 23 15:07:32.368352 2016] [mpm_winnt:notice] [pid 3084:tid
364] AH00431: Parent: Forcing termination of child process 5564
So this issue is real, but it is not related to mod_proxy.
- On Windows 10 (running as console, simple configuration example -
GitHub):
Before I hit Ctrl+C the error.log file is as follows:
(I added additional line breaks to separate lines that are wrapped in
e-mail.)
...
After I hit Ctrl+C in HTTPD console window, it becomes:
(I added additional line breaks to separate lines that are wrapped in
e-mail.)
...
The "Apache server interrupted..." line appears in the middle of the
file, overwriting some of existing text.
Quick test:
1) Start server service, Stop server service (No HTTPS requests served)
This issue is observed.
("Apache server interrupted..." line appears in the middle of the file).
So this oddity is real, but it is not related to mod_proxy, not
related to processing of HTTP requests.
Maybe this is not a real issue, just an oddity.
Best regards,
Konstantin Kolinko
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
On Mon, Jan 2, 2017 at 12:43 PM, Yann Ylavic wrote: > On Mon, Jan 2, 2017 at 12:41 PM, Yann Ylavic wrote: >> Hi Hajo, >> >> On Mon, Jan 2, 2017 at 11:54 AM, Hajo Locke wrote: >>> >>> sorry guys. i think i have lost overview. Has this resulted in a public >>> patch? >> >> This patch: http://svn.apache.org/r1775775 > > Or here as plaintext: > http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/proxy_util.c?r1=1775775&r2=1775774&pathrev=1775775&view=patch Also, it seems that new ApacheLounge binaries include this fix: http://www.apachelounge.com/viewtopic.php?p=34723 > >> >> Regards, >> Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)
Hello, Am 02.01.2017 um 12:47 schrieb Yann Ylavic: On Mon, Jan 2, 2017 at 12:43 PM, Yann Ylavic wrote: On Mon, Jan 2, 2017 at 12:41 PM, Yann Ylavic wrote: Hi Hajo, On Mon, Jan 2, 2017 at 11:54 AM, Hajo Locke wrote: sorry guys. i think i have lost overview. Has this resulted in a public patch? This patch: http://svn.apache.org/r1775775 Or here as plaintext: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/proxy_util.c?r1=1775775&r2=1775774&pathrev=1775775&view=patch Also, it seems that new ApacheLounge binaries include this fix: http://www.apachelounge.com/viewtopic.php?p=34723 thank you all for your help. I think i got it now. I included the patch in my build-process. Regards, Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org Thanks, Hajo - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Re: pf 2017
Thank you for verify that a reverse proxy can accomplish what I'd like
accomplished. I have the proxy subdomain redirects turned off (under WHM
>> Tweak Settings) because there's no way to generate an SSL cert using
Let's Encrypt for the various cPanel subdomains when they're turned on.
cPanel supports auto-SSL now and perhaps that will generate SSL certs for
the various cPanel subdomains, but last time I checked, it didn't.
Anyway, thanks for the response.
Ken
On Sun, Jan 1, 2017 at 11:22 PM, Yehuda Katz wrote:
> Reverse proxy is the way to do it. Looking at one of my cPanel servers, it
> looks like that might be set up by default (or at least an option to turn
> it on). I have this config:
> ([P] in the RewriteRule means reverse proxy)
>
>
> # CPANEL/WHM/WEBMAIL/WEBDISK PROXY SUBDOMAINS
>
>
> ServerName server.example.com
>
> ServerAlias cpanel.* whm.* webmail.* webdisk.* cpcalendars.*
> cpcontacts.*
>
> DocumentRoot /usr/local/apache/htdocs
> ServerAdmin hostmas...@server.example.com
>
> suPHP_UserGroup nobody nobody
>
>
>
> SecRuleEngine Off
>
>
> RewriteEngine On
>
> SSLEngine on
> SSLProxyEngine On
> SSLProxyVerify none
> # Setting to Off for backwards-compatibility
> # Read for more info: http://httpd.apache.org/docs/
> 2.4/mod/mod_ssl.html#sslproxycheckpeercn
> SSLProxyCheckPeerCN Off
> SSLProxyCheckPeerName Off
> SSLProxyCheckPeerExpire Off
> SSLCertificateFile /var/cpanel/ssl/cpanel/mycpanel.pem
> SSLCertificateKeyFile /var/cpanel/ssl/cpanel/mycpanel.pem
> SSLCertificateChainFile /var/cpanel/ssl/cpanel/mycpanel.pem
>
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^cpanel.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2083/$1 [P]
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^webmail.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2096/$1 [P]
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^whm.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2087/$1 [P]
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^webdisk.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2078/$1 [P]
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^cpcalendars.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2080/$1 [P]
>
> RewriteCond %{HTTP_HOST} !^server.example.com$
> RewriteCond %{HTTP_HOST} ^cpcontacts.
> RewriteCond %{HTTPS} on
> RewriteRule ^/(.*) https://127.0.0.1:2080/$1 [P]
>
> UseCanonicalName Off
>
>
>
> On Sun, Jan 1, 2017 at 10:20 PM, Spork Schivago
> wrote:
>
>> Yehuda, I understand that when I make changes in the Apache config,
>> because I'm using cPanel, I have to do it just right. I know how to make
>> changes so they don't get overwritten. I'd still like to know though if
>> reverse proxies is what I'm looking for. Perhaps the Apache mailing list
>> wasn't the best place to ask. Please ignore the part about cPanel all
>> together.
>>
>> If I wanted to hide the port number from visitors so when they went to
>> something like mydomain.com:2083, it'd show subdomain.mydomain.com
>> instead, do you think I could accomplish that using a reverse proxy? Is
>> there any other ways to accomplish this that anyone knows of? Thank you!
>>
>> Ken
>>
>> On Sun, Jan 1, 2017 at 10:01 PM, Yehuda Katz wrote:
>>
>>> I would suggest looking on the cPanel documentation and forums. When you
>>> make changes in cPanel it generally overwrites the entire Apache config, so
>>> you need to be careful.
>>>
>>> - Y
>>>
>>> Sent from a device with a very small keyboard and hyperactive
>>> autocorrect.
>>>
>>> On Jan 1, 2017 4:07 PM, "Spork Schivago"
>>> wrote:
>>>
I'd like to add that I agree with Stormy. I don't think I've ever
gotten spam, except for this one time. That's why I was a bit curious
about it. I didn't click the post because I wasn't sure what it was. At
first, I thought it was maybe a video related to Apache, but when I hovered
over it, I saw something about infected mushrooms and figured it'd be best
not to click. Anyway, thanks for verifying what it was for me and happy
New Year's to everyone else.
I do have an Apache related question that I'd like to ask. I have a
domain and I rent a VPS from Linode. I have bought a cPanel license and
use Let's Encrypt free SSL certificates. For reasons I'd rather not get
into at this time (unless you guys really want to know why), I have created
a script to generate the SSL certificates and install them. I have
manually setup subdomains, cpanel.mydomain.com, whm.myd
