STATUS revision d9ca73cb0e701d10a94734a2ce553d9a1c906b8b
f743002678eb67b99bbc29fee116b65d9530fec0wroweAPACHE 2.0 STATUS: -*-text-*-
80833bb9a1bf25dcf19e814438a4b311d2e1f4cffuankgLast modified at [$Date: 2002/06/19 00:31:12 $]
6736c640e65e06990ef33af71ee81fac4df4ff5fjim
20eead0b01d51fce0cc17d04b8f98ec38eac68aejimRelease:
20eead0b01d51fce0cc17d04b8f98ec38eac68aejim
20eead0b01d51fce0cc17d04b8f98ec38eac68aejim 2.0.40 : in development.
cc45ee60ddfb8380b3703455098475eb72625ca8jim 2.0.39 : rolled June 17, 2002.
20eead0b01d51fce0cc17d04b8f98ec38eac68aejim 2.0.38 : rolled June 16, 2002. not released.
cc45ee60ddfb8380b3703455098475eb72625ca8jim 2.0.37 : rolled June 11, 2002. not released.
cc45ee60ddfb8380b3703455098475eb72625ca8jim 2.0.36 : released May 6, 2002 as GA.
46e5dfe0899face9346d6711e4f2ba873d526991sf 2.0.35 : released April 5, 2002 as GA.
46e5dfe0899face9346d6711e4f2ba873d526991sf 2.0.34 : tagged March 26, 2002.
46e5dfe0899face9346d6711e4f2ba873d526991sf 2.0.33 : tagged March 6, 2002. not released.
aee831691bb9ecd96dea63d35bc8bdd21c0f0b1fsf 2.0.32 : released Feburary 16, 2002 as beta.
aee831691bb9ecd96dea63d35bc8bdd21c0f0b1fsf 2.0.31 : rolled Feburary 1, 2002. not released.
aee831691bb9ecd96dea63d35bc8bdd21c0f0b1fsf 2.0.30 : tagged January 8, 2002. not rolled.
aee831691bb9ecd96dea63d35bc8bdd21c0f0b1fsf 2.0.29 : tagged November 27, 2001. not rolled.
79ccc75d7de4e14e5add1fa73aaabda0f5d33fe6trawick 2.0.28 : released November 13, 2001 as beta.
79ccc75d7de4e14e5add1fa73aaabda0f5d33fe6trawick 2.0.27 : rolled November 6, 2001
79ccc75d7de4e14e5add1fa73aaabda0f5d33fe6trawick 2.0.26 : tagged October 16, 2001. not rolled.
fc1459657a1fde206a847f9028930725d715f8b4trawick 2.0.25 : rolled August 29, 2001
fc1459657a1fde206a847f9028930725d715f8b4trawick 2.0.24 : rolled August 18, 2001
fc1459657a1fde206a847f9028930725d715f8b4trawick 2.0.23 : rolled August 9, 2001
e758971371df73b097609b2fd62bc14ad935e096trawick 2.0.22 : rolled July 29, 2001
e758971371df73b097609b2fd62bc14ad935e096trawick 2.0.21 : rolled July 20, 2001
e758971371df73b097609b2fd62bc14ad935e096trawick 2.0.20 : rolled July 8, 2001
1dd5136d67e0164e4afd723a471b86a1b7eb1874sf 2.0.19 : rolled June 27, 2001
1dd5136d67e0164e4afd723a471b86a1b7eb1874sf 2.0.18 : rolled May 18, 2001
1dd5136d67e0164e4afd723a471b86a1b7eb1874sf 2.0.17 : rolled April 17, 2001
1dd5136d67e0164e4afd723a471b86a1b7eb1874sf 2.0.16 : rolled April 4, 2001
e39eb98e3ad3fbf5c34b2fa1d16861f95143e22esf 2.0.15 : rolled March 21, 2001
e39eb98e3ad3fbf5c34b2fa1d16861f95143e22esf 2.0.14 : rolled March 7, 2001
e39eb98e3ad3fbf5c34b2fa1d16861f95143e22esf 2.0a9 : released December 12, 2000
d6fc66efa723db8b3ee5e9fd32579bed884e4e58sf 2.0a8 : released November 20, 2000
d6fc66efa723db8b3ee5e9fd32579bed884e4e58sf 2.0a7 : released October 8, 2000
d6fc66efa723db8b3ee5e9fd32579bed884e4e58sf 2.0a6 : released August 18, 2000
d6fc66efa723db8b3ee5e9fd32579bed884e4e58sf 2.0a5 : released August 4, 2000
f00cb80197f824c3ff00dd4fdff3b2c267a519d1kbrand 2.0a4 : released June 7, 2000
f00cb80197f824c3ff00dd4fdff3b2c267a519d1kbrand 2.0a3 : released April 28, 2000
f00cb80197f824c3ff00dd4fdff3b2c267a519d1kbrand 2.0a2 : released March 31, 2000
f00cb80197f824c3ff00dd4fdff3b2c267a519d1kbrand 2.0a1 : released March 10, 2000
85eacfc96a04547ef25aabbc06440039715084c2jorton
85eacfc96a04547ef25aabbc06440039715084c2jortonPlease consult the following STATUS files for information
85eacfc96a04547ef25aabbc06440039715084c2jortonon related projects:
1d8d7e58e1d31d7b6fb7a518e09649a4dbb315e9trawick
1d8d7e58e1d31d7b6fb7a518e09649a4dbb315e9trawick * srclib/apr/STATUS
1d8d7e58e1d31d7b6fb7a518e09649a4dbb315e9trawick * srclib/apr-util/STATUS
f34da68471f256dca0ff770257c3e1f982f74cf1trawick * docs/STATUS
f34da68471f256dca0ff770257c3e1f982f74cf1trawick
f34da68471f256dca0ff770257c3e1f982f74cf1trawick
8b645fd3c950da73513b546366c7cfa7476c5c06jimCURRENT RELEASE NOTES:
8b645fd3c950da73513b546366c7cfa7476c5c06jim
8b645fd3c950da73513b546366c7cfa7476c5c06jim
8b645fd3c950da73513b546366c7cfa7476c5c06jimRELEASE SHOWSTOPPERS:
193f0bb6057d67593ed652fbf58f043def51c642jim
193f0bb6057d67593ed652fbf58f043def51c642jim
193f0bb6057d67593ed652fbf58f043def51c642jimCURRENT VOTES:
68ba377fc3b124baa759662077c48077ebadb186minfrin
68ba377fc3b124baa759662077c48077ebadb186minfrin * apachectl should revert to just being an init script and
68ba377fc3b124baa759662077c48077ebadb186minfrin httpd.sh should be the wrapper for httpd which sources envvars
68ba377fc3b124baa759662077c48077ebadb186minfrin and allows any options to be passed through
00566fb187849626180724394a21ddcd28419fb2minfrin
00566fb187849626180724394a21ddcd28419fb2minfrin +1: trawick
00566fb187849626180724394a21ddcd28419fb2minfrin
00566fb187849626180724394a21ddcd28419fb2minfrin * Should we always build [support*] binaries statically unless otherwise
d776b0a2d2889ce1d13494873368f34327a2e1bbtrawick indicated?
d776b0a2d2889ce1d13494873368f34327a2e1bbtrawick Message-ID: <20020129210006.B23512@Lithium.MeepZor.Com>
f4ca9f6f002fece336168a16355434ca966f96a9trawick
57db302f0875a6c93a79333b8941cea4c1827272jim +1: Ken, *wrowe [they are PITAs on OSX]
57db302f0875a6c93a79333b8941cea4c1827272jim -1: Justin, Ian
57db302f0875a6c93a79333b8941cea4c1827272jim
57db302f0875a6c93a79333b8941cea4c1827272jim * If the parent process dies, should the remaining child processes
92b1631880b0bf43fe8b2663a03c8571eb04e433jim "gracefully" self-terminate. Or maybe we should make it a runtime
92b1631880b0bf43fe8b2663a03c8571eb04e433jim option, or have a concept of 2 parent processes (one being a
92b1631880b0bf43fe8b2663a03c8571eb04e433jim "hot spare").
89225e8e84d38b07a8335922497997e83d872e75jim See: Message-ID: <3C58232C.FE91F19F@Golux.Com>
89225e8e84d38b07a8335922497997e83d872e75jim
89225e8e84d38b07a8335922497997e83d872e75jim Self-destruct: Ken, Martin
78f94f1d06c4e6828ce04d618221e0fcecb57849humbedooh Not self-destruct: BrianP, Ian, Cliff, BillS
78f94f1d06c4e6828ce04d618221e0fcecb57849humbedooh Make it runtime configurable: Aaron, Jim, Justin
78f94f1d06c4e6828ce04d618221e0fcecb57849humbedooh Have 2 parents: +1: Jim
f5e28c78424d2f71c61ba457009f100bba38bc68chrisd -1: Justin, wrowe [for 2.0]
f5e28c78424d2f71c61ba457009f100bba38bc68chrisd +0: Martin (while standing by, could it do
f5e28c78424d2f71c61ba457009f100bba38bc68chrisd something useful?)
f4a715f904b014060ea6237fe29481ed21f5c7d0jorton
f4a715f904b014060ea6237fe29481ed21f5c7d0jorton * Make the worker MPM the default MPM for threaded Unix boxes.
f4a715f904b014060ea6237fe29481ed21f5c7d0jorton +1: Justin, Ian, Cliff, BillS
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick +0: BrianP, Aaron (mutex contention is looking better with the
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick latest code, let's continue tuning and testing)
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick -0: Lars
536d2e7cd1fdec1255b8c3bdf41fdc714c506a54trawick
70caa242e6b90e0d6f0fabb56b8c5c2fb51717b3jortonRELEASE NON-SHOWSTOPPERS BUT WOULD BE REAL NICE TO WRAP THESE UP:
985a4368b93c3e9171a57897ad9454c8dbf4cdf6jorton
70caa242e6b90e0d6f0fabb56b8c5c2fb51717b3jorton * All handlers should always send content down even if r->header_only
70caa242e6b90e0d6f0fabb56b8c5c2fb51717b3jorton is set. If not, it means that the HEAD requests don't generate the
109e2a09790de3fb315d36d6232a14ab66c8eb0ahumbedooh same headers as a GET which is wrong.
109e2a09790de3fb315d36d6232a14ab66c8eb0ahumbedooh Is this a showstopper?
109e2a09790de3fb315d36d6232a14ab66c8eb0ahumbedooh +1: Justin
4be250c774bdac977eef29a02183ca78de29fb41rjung -1: Aaron
4be250c774bdac977eef29a02183ca78de29fb41rjung
4be250c774bdac977eef29a02183ca78de29fb41rjung * 500 returned instead of 501 if a handler other than default_handler
12b5dc9afa1844df5ac8acab98fb538432a2fa1crjung is invoked on a method with M_INVALID.
12b5dc9afa1844df5ac8acab98fb538432a2fa1crjung Message-ID: <20020613001913.J22524@apache.org>
12b5dc9afa1844df5ac8acab98fb538432a2fa1crjung Proposed patch: <20020613111913.S22524@apache.org>
12b5dc9afa1844df5ac8acab98fb538432a2fa1crjung Is this a showstopper?
74e7a30182af5e68f14ccb8d57918b22b982db8bhumbedooh +1: Justin
74e7a30182af5e68f14ccb8d57918b22b982db8bhumbedooh -1: Cliff, Aaron
74e7a30182af5e68f14ccb8d57918b22b982db8bhumbedooh
10961a2f60207cb873d889bb28b1f0ef707a4311humbedooh * Returning invalid 304 errors when filters are present. [PR 9673]
10961a2f60207cb873d889bb28b1f0ef707a4311humbedooh Message-ID: <Pine.GSO.4.44.0206061713320.3848-100000@lab26.lacfas.hec.ca>
10961a2f60207cb873d889bb28b1f0ef707a4311humbedooh <20020607135121.G19485@apache.org>
0448378b899e8df0c060360f17c0af692adf17bchumbedooh <20020610204425.B19018@lyra.org>
0448378b899e8df0c060360f17c0af692adf17bchumbedooh Proposed patch: <20020607214725.K19485@apache.org>
0448378b899e8df0c060360f17c0af692adf17bchumbedooh Status: We should set r->no_local_copy, but where can we set it?
60a765cccbd3f3b5997b65b0034220c79f78369etrawick We must set it before the handlers are run so that the
60a765cccbd3f3b5997b65b0034220c79f78369etrawick appropriate handler can call ap_meets_conditions() before
60a765cccbd3f3b5997b65b0034220c79f78369etrawick generating the data. Greg has reservations about Justin's
e7ca863b04ee2a7aea7738cadbf51ce5e6c5245dhumbedooh proposed patch. Consensus needed.
e7ca863b04ee2a7aea7738cadbf51ce5e6c5245dhumbedooh Is this a showstopper?
e7ca863b04ee2a7aea7738cadbf51ce5e6c5245dhumbedooh +1: Justin
e7ca863b04ee2a7aea7738cadbf51ce5e6c5245dhumbedooh -1: Cliff, Aaron
91654e263480f0fdc2a03d782ff23f8dad07cf79humbedooh
91814c869ca39ce45dfe147307d2a831cac6ecbehumbedooh * server pushed CGI's not working. (Is this a showstopper??)
91654e263480f0fdc2a03d782ff23f8dad07cf79humbedooh PR: 8482
79c5787b92ac5f0e1cc82393816c77a006399316trawick Message-ID: <3CE15B85.2FF45121@apache.org>
79c5787b92ac5f0e1cc82393816c77a006399316trawick
79c5787b92ac5f0e1cc82393816c77a006399316trawick * HP/UX 10.20: compile breakage in APR. Looks like it should be easy
79c5787b92ac5f0e1cc82393816c77a006399316trawick to fix, probably just some extraneous #include's that are fouling
79c5787b92ac5f0e1cc82393816c77a006399316trawick things up.
79c5787b92ac5f0e1cc82393816c77a006399316trawick PR: 9457
79c5787b92ac5f0e1cc82393816c77a006399316trawick Jeff: See my reply and patch in the PR (and previous commit to
79c5787b92ac5f0e1cc82393816c77a006399316trawick stop using "pipe" as a field name). If patch is committed, we
79c5787b92ac5f0e1cc82393816c77a006399316trawick should be okay. I'll wait to see if the user tests the patch.
12b987b969f03ef98d9175a53d849ab62f5684fecovener
12b987b969f03ef98d9175a53d849ab62f5684fecovener * exec cmd and suexec arg-passing enhancements
099c357f282d4aebf2b32264f7dce6ffc0497c37sf Status: Patches proposed
099c357f282d4aebf2b32264f7dce6ffc0497c37sf Message-ID: <20020526041748.A29148@prodigy.Redbrick.DCU.IE>
099c357f282d4aebf2b32264f7dce6ffc0497c37sf (see the "proc.patch" and "suexec-shell.patch" links in this message)
099c357f282d4aebf2b32264f7dce6ffc0497c37sf
50f8c80eb4d3989ebf3f1341aeef4d2d302af162sf * Get mod_cache/mod_mem_cache out of experimental (still some
50f8c80eb4d3989ebf3f1341aeef4d2d302af162sf work items left to complete)
4bb0a88a01fb7b494bb02a8b881b5eab0308bda6sf
50f8c80eb4d3989ebf3f1341aeef4d2d302af162sf * The 2.0.36 worker MPM graceless shutdown changes work but are
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton a bit clunky on some platforms; eg, on Linux, the loop to
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton join each worker thread seems to hang, and the parent ends up
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton killing off the child with SIGKILL. But at least it shuts down.
7b395e4e878c28a4784919cfd2e704ddd14a3390jorton
536e48c08d674acac5d44929318f2ad928edc361jorton * --enable-mods-shared="foo1 foo2" is busted on Darwin. Pier
536e48c08d674acac5d44929318f2ad928edc361jorton posted a patch (Message-ID: <B8DBBE8D.575A%pier@betaversion.org>).
e81785da447b469da66f218b3f0244aab507958djorton
e81785da447b469da66f218b3f0244aab507958djorton * We do not properly substitute the prefix-variables in the configuration
3e4e54d4e3fc0123c63d57aa84ac7ad7a8c73ff8jorton scripts or generated-configs. (i.e. if sysconfdir is etc,
3e4e54d4e3fc0123c63d57aa84ac7ad7a8c73ff8jorton httpd-std.conf points to conf.)
3e4e54d4e3fc0123c63d57aa84ac7ad7a8c73ff8jorton
459eaf0826f995b73a0dc066f59ea10d2824e72dsf * If any request gets through ap_process_request_internal() and is
459eaf0826f995b73a0dc066f59ea10d2824e72dsf scheduled to be served by the core handler, without a flag that this
459eaf0826f995b73a0dc066f59ea10d2824e72dsf r->filename was tested by dir/file_walk, we need to 500 at the very
459eaf0826f995b73a0dc066f59ea10d2824e72dsf end of the ap_process_request_internal() processing so sub_req-esters
53e9b27aba029b18be814df40bcf6f0428771d1efuankg know this request cannot be run. This provides authors of older
53e9b27aba029b18be814df40bcf6f0428771d1efuankg modules better compatibility, while still improving the security and
53e9b27aba029b18be814df40bcf6f0428771d1efuankg robustness of 2.0.
53e9b27aba029b18be814df40bcf6f0428771d1efuankg
53e9b27aba029b18be814df40bcf6f0428771d1efuankg Status: still need to decide where this goes, OtherBill comments...
6bb524f1895f30265a1431afc460977d391cb36bsf Message-ID: <065701c14526$495203b0$96c0b0d0@roweclan.net>
6bb524f1895f30265a1431afc460977d391cb36bsf [Deleted comments regarding the ap_run_handler phase, as irrelevant
ca61ccd0c306c2c72df153688ba1b49f3eceed80sf as BillS points out that "common case will be caught in
6bb524f1895f30265a1431afc460977d391cb36bsf default_handler already (with the r->finfo.filetype == 0 check)"
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin and the issue is detecting this -before- we try to run the req.]
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin gregames says: can this happen somehow without a broken module
e6dd71992459d05a676b98b7963423dc5dc1e24aminfrin being involved? If not, why waste cycles trying to defend against
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin potential broken modules? It seems futile.
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin wrowe counters: no, it shouldn't happen unless the module is broken.
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin But the right answer is to fail the request up-front in dir/file
23f1535d6a60817d2846bac0aea230ea475d7dccminfrin walk if the path was entirely invalid; and we can't do that either
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung or we break modules that are unwilling to hook map_to_storage.
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung * Rewrite core_output_filter. It is nearly impossible to support
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung it with predictable results as it is implemented now.
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung * With AP_MODE_EXHAUSTIVE in the core, it is finally clear to me
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung how the Perchild MPM should be re-written. It hasn't worked
ec7520b24cd80d34d82bbcaca153cbb23cc04bc0rjung correctly since filters were added because it wasn't possible to
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick get the content that had already been written and the socket at
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick the same time. This mode lets us do that, so the MPM can be
0827cb14e550f6f65018431c22c2c913631c8f25kbrand fixed.
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick
ae600ca541efc686b34f8b1f21bd3d0741d37674covener * htpasswd blindly processes the file you give it, and does no
6249dfa569d3b4f1f539665b979a80c6e335d93etrawick sanity checking before totally corrupting whatever file it was
cfa64348224b66dd1c9979b809406c4d15b1c137fielding you thought you had. It should check the input file and bail
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim if it finds non-comment lines that do not contain exactly 1
cfa64348224b66dd1c9979b809406c4d15b1c137fielding ':' character.
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim Message-ID: <20020217150457.A31632@clove.org>
cfa64348224b66dd1c9979b809406c4d15b1c137fielding
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim * Can a static httpd be built reliably?
cfa64348224b66dd1c9979b809406c4d15b1c137fielding Message-ID: <20020207142751.T31582@clove.org>
74499a117b3b2cd9666715a14f90c0e5d1a4ee8ajim
cfa64348224b66dd1c9979b809406c4d15b1c137fielding * [Ken] Test suite failures:
o worker is also failing some of the 'cgi' subtests
(see <URL:http://Source-Zone.Org/Apache/regression/>):
Justin says: "Worker should be fine and passes httpd-test here.
If you can provide evidence that it can be reproduced
outside of httpd-test, then it's a showstopper. I
think it's a perl or a httpd-test problem."
Not a showstopper: Justin
* Usage of APR_BRIGADE_NORMALIZE in core_input_filter should be
removed if possible.
Message-ID: <Pine.LNX.4.33.0201202232430.318-100000@deepthought.cs.virginia.edu>
* There is a bug in how we sort some hooks, at least the pre-config
hook. The first time we call the hooks, they are in the correct
order, but the second time, we don't sort them correctly. Currently,
the modules/http/config.m4 file has been renamed to
modules/http/config2.m4 to work around this problem, it should moved
back when this is fixed. rbb
Justin says: "Is this really a showstopper? This has been here
forever. What's wrong? Does this have to do with
autoconf or m4?"
Not a showstopper: Justin, BrianP, trawick, gregames
* The Add...Filter and Set...Filter directives do not allow the
administrator to order filters, beyond the order of filename (mime)
extensions. It isn't clear if Set...Filter(s) should be inserted
before or after the Add...Filter(s) which are ordered by sequence of
filename extensions. At minimum, some sort of +-[0-10] syntax seems
like the quickest fix for a 2.0 gold release.
Justin says: "Could we delay this for a point release or 2.1?"
Not a showstopper: justin, wrowe, trawick, stoddard, Jim, Ian, Aaron,
gregames
* Get perchild to work on platforms other than Linux. This
will require a portable mechanism to pass data and file/socket
descriptors between vhost child groups. An API was proposed
on dev@apr:
Message-ID: <20020111115006.K1529@clove.org>
* Try to get libtool inter-library dependency code working on AIX.
Message-ID: <cm3n10lx555.fsf@rdu163-40-092.nc.rr.com>
Justin says: If we get it working on AIX, we can enable this
on all platforms and clean up our build system
somewhat.
Jeff says: I thought I tested a patch for you sometime in
January that you were going to commit within a few
days.
* Handling of %2f in URIs. Currently both 1.3 and 2.0
completely disallow %2f in the request URI path (see
ap_unescape_url() in util.c). It's permitted and passed
through in the query string, however. Roy says the
original reason for disallowing it, from five years ago,
was to protect CGI scripts that applied PATH_INFO to
a filesystem location and which might be tricked by
..%2f..%2f(...). We *should* allow path-info of the
form 'http://foo.com/index.cgi/path/to/path%2finfo'.
Since we've revamped a lot of our processing of path
segments, it would be nice to allow this, or at least
allow it conditionally with a directive.
* FreeBSD, threads, and worker MPM. All seems to work fine
if you only have one worker process with many threads. Add
a second worker process and the accept lock seems to be
lost. This might be an APR issue with how it deals with
the child_init hook (i.e. the fcntl lock needs to be resynced).
More examination and analysis is required.
Status: This has also been reported on Cygwin.
Message-ID: <3C2CC514.8EF3BED1@wapme-systems.de> (cygnus)
Justin says: So, FreeBSD-CURRENT and Cywin have the same
problem. Yum. If another platform has this
with worker, this becomes a showstopper.
Aaron says: I spent some time disecting this and have come to
the conclusion that it is not a problem in the worker MPM
(or at least, it is not isolated to a problem in worker).
I'll list some of the problems I'm seeing in case someone
else wants to pick up where I've left off:
- Delivery of just about any signal to one of the child
processes will send it into an infinite loop as well.
- Even though the parent is spinning out of control,
at first the child or children will appear to work
properly. At times it is possible to get it into a state,
however, where a request will hang until another concurrent
request "kicks" the first, at which point the second will
hang. My theory is that this has to do with the
pthread_cond_*() implementation in FreeBSD, but it's still
possible that it is in APR.
Justin adds: Oh, FreeBSD threads are implemented entirely with
select()/poll()/longjmp(). Welcome to the nightmare.
So, that means a ktrace output also has the thread
scheduling internals in it (since it is all the same to
the kernel). Which makes it hard to distinguish between
our select() calls and their select() calls.
*bangs head on wall repeatedly* But, some of the libc_r
files have a DBG_MSG #define. This is moderately helpful
when used with -DNO_DETACH. The kernel scheduler isn't
waking up the threads on a select(). Yum. And, I bet
those decrementing select calls have to do with the
scheduler. Time to brush up on our OS fundamentals.
* There is increasing demand from module writers for an API
that will allow them to control the server � la apachectl.
Reasons include sole-function servers that need to die if
an external dependency (e.g., a database) fails, et cetera.
Perhaps something in the (ever more abused) scoreboard?
rbb: I don't believe the scoreboard is the correct mechanism
for this. We already have a pipe that goes between parent
and child for graceful shutdown events, along with an API that
can be used to send a message down that pipe. In threaded MPMs,
it is easy enough to make that one pipe be used for graceful
and graceless events, and it is also easy to open that pipe
to both parent and child for writing. Then we just need to
figure out how to do graceless on non-threaded MPMs.
* Allow the DocumentRoot directive within <Location > scopes? This
allows the beloved (crusty) Alias /foo/ /somepath/foo/ followed
by a <Directory /somepath/foo> to become simply
<Location /foo/> DocumentRoot /somefile/foo (IMHO a bit more legible
and in-your-face.) DocumentRoot unset would be accepted [and would
not permit content to be served, only virtual resources such as
server-info or server-status.
This proposed change would _not_ depricate Alias.
* Win32: Rotatelogs sometimes is not terminated when Apache
goes down hard. FirstBill was looking at possibly tracking the
child's-child processes in the parent process.
OtherBill asks, wasn't this fixed?
stoddard: Not fixed. Shared scoreboard might offer a good
way for the parent to keep track of 'other child' processes
and whack them if the child goes down.
Other thoughts on walking the process chain using the NT kernel
have also been proposed on APR.
* Win32: Add a simple hold console open patch (wait for close or
the ESC key, with a nice message) if the server died a bad
death (non-zero exit code) in console mode.
Resolution: bring forward same ugly hacks from 1.3.13-.20
This is not so simple. Any exit() from APR or other libraries
can't be caught unless we add some sort of apr_exit(rv) with
registered apr_atexit() fn's that have the return code as an
argument to the registered fn.
* Eliminate unnecessary creation of pipes in mod_cgid
* Combine log_child and piped_log_spawn. Clean up http_log.c.
Common logging API.
* Document mod_file_cache.
* Platforms that do not support fork (primarily Win32 and AS/400)
Architect start-up code that avoids initializing all the modules
in the parent process on platforms that do not support fork.
* Win32: Migrate the MPM over to use APR thread/process calls. This
would eliminate some code in the Win32 branch that essentially
duplicates what is in APR.
* There are still a number of places in the code where we are
losing error status (i.e. throwing away the error returned by a
system call and replacing it with a generic error code)
* Mass vhosting version of suEXEC.
* All DBMs suffer from confusion in support/dbmmanage (perl script) since
the dbmmanage employs the first-matched dbm format. This is not
necessarily the library that Apache was built with. Aught to
rewrite dbmmanage upon installation to bin/ with the proper library
for predictable mod_auth_dbm administration.
Questions; htdbm exists, time to kill dbmmanage, or does it remain
useful as a perl dbm management example? If we keep it,
do we address the issue above?
* Integrate mod_dav.
Some additional items remaining:
- case_preserved_filename stuff
(use the new canonical name stuff?)
- find a new home for ap_text(_header)
- is it possible to remove the DAV: namespace stuff from util_xml?
* ap_core_translate() and its use by mod_mmap_static and mod_file_cache
are a bit wonky. The function should probably be exposed as a utility
function (such as ap_translate_url2fs() or ap_validate_fs_url() or
something). Another approach would be a new hook phase after
"translate" which would allow the module to munge what the
translation has decided to do.
Status: Greg +1 (volunteers), Ryan +1
* Explore use of a post-config hook for the code in http_main.c which
calls ap_fixup_virutal_hosts(), ap_fini_vhost_config(), and
ap_sort_hooks() [to reduce the logic in main()]
* read the config tree just once, and process N times (as necessary)
* (possibly) use UUIDs in mod_unique_id and/or mod_usertrack
* (possibly) port the bug fix for PR 6942 (segv when LoadModule is put
into a VirtualHost container) to 2.0.
* shift stuff to mod_core.h
* callers of ap_run_create_request() should check the return value
for failure (Doug volunteers)
* Win32: Get Apache working on Windows 95/98. The following work
(at least) needs to be done:
- Document warning that OSR2 is required (for Crypt functions, in
rand.c, at least.) This could be resolved with an SSL library, or
randomization in APR itself.
- Bring the Win9xConHook.dll from 1.3 into 2.0 (no sense till it
actually works) and add in a splash of Win9x service code.
* Fix the worker MPM to use POD to kill child processes instead
of ap_os_killpg, regardless of how they should die. (Ryan Bloom)
* Scoreboard structures could be changed in the future such that
proper alignment is not maintained, leading to segfaults on
some systems. Cliff posted a patch to deal with this issue but
later recanted. See this message to dev@apr.apache.org:
Message-ID: <Pine.LNX.4.44.0203011354090.16457-200000@deepthought
.cs.virginia.edu>
TODO ISSUES REMAINING IN MOD_SSL:
* In order to use a DSO version of mod_ssl we have to link with
-lssl and -lcrypto. A workaround is in place right now where the
entire EXTRA_LIBS macro is being appended to the objects list, but
this is a hack. We should either revamp the APACHE_CHECK_SSL_TOOLKIT
autoconf function or come up with some other autoconf checks to
search for libssl and libcrypto and properly add them to mod_ssl's
link flags.
* SSL renegotiations in combination with POST request
* Port or dispose all code inside #if 0...#endif blocks that remain
from the porting effort.
* Do we need SSL_set_read_ahead()?
* the ssl_expr api is NOT THREAD SAFE. race conditions exist:
-in ssl_expr_comp() if SSLRequire is used in .htaccess
(ssl_expr_info is global)
-is ssl_expr_eval() if there is an error
(ssl_expr_error is global)
* SSLRequire directive (parsing of) leaks memory
* Diffie-Hellman-Parameters for temporary keys are hardcoded in
ssl_engine_dh.c, while the comment in ssl_engine_kernel.c says:
"it is suggested that keys be changed daily or every 500
transactions, and more often if possible."
* ssl_var_lookup could be rewritten to be MUCH faster
* CRL callback should be pluggable
* session cache store should be pluggable
* init functions should return status code rather than ssl_die()
* ssl_engine_pphrase.c needs to be reworked so it is generic enough
to also decrypt proxy keys
* the shmcb code should just align its memory segment rather than
jumping through all the "safe" memcpy and memset hoops
EXPERIMENTAL MODULES:
Experimental modules should eventually be be promoted to fully supported
status or removed from the repository entirely (ie, the
'experiment' failed). This section tracks what needs to happen to
get the modules promoted to fully supported status.
mod_cache/mod_mem_cache/mod_disk_cache:
* mod_cache: handle cache_control: no_cache "field_name" to enable
cacheing the response w/o header "field_name"
See RFC2616 section 14.9.1
* mod_cache: CacheEnable/CacheDisable should accept regular expressions.
* mod_cache: Fix dependency on ATOMIC operators. Need
APR_HAS_ATOMIC_* feature macros.
* mod_disk_cache: Implement garbage collection
* mod_mem_cache/mod_disk_cache: Need to be able to query cache
status (num of entries, cache object properties, etc.).
mod_status could be extended to query optional hooks defined
by modules for the purpose of reporting module status.
mod_cache (et. al.) could define optional hooks that are called
to collect status. Status should be queryable by
HTTP or SNMP?
* mod_mem_cache: garbage collection. One strategy is to simply
remove stale entries as we attempt to serve them. Another
strategy is to kick off a GC thread that traverses the cache
and preemptively remove stale entries. How to manage a
cache that is full? Do LRU GC? Other? Bueller?
* mod_mem_cache/mod_disk_cache: Complete implementing config
directives.
* Sample config for mod_cache/mod_mem_cache/mod_disk_cache for
inclusion into httpd.conf.
* mod_cache/mod_mem_cache/mod_disk_cache: Documentation.
PRs that have been suspended forever waiting for someone to
put them into 'the next release':
* documentation and Q&A
PR#2221: Make online documentation search link back to my installation
Status:
PR#2906: Propose that Apache recommend $UNIQUE_ID for all "session id"
algorithms
Status:
PR#2793: When will Apache support P3P? Any Plans?
Status:
* build
PR#2113: HTTP Server Rebuild Line Needs Changing for the better
Status:
PR#2421: problem specifying ndbm library for build ?with autoconfigure
Status:
* config
PR#76: missing call to "setlocale();"
Status:
PR#628: Request of "Options SymLinksIfGroupMatch"
Status:
PR#793: RLimitCPU and RLimitMEM don't apply to all children like they should
Status:
PR#922: it is useful to allow specifiction that root-owned symlinks
should always be followed
Status:
PR#1028: DoS attacks involving memory consumption
Status:
PR#1191: setlogin() is not called, causing problems with e.g. identd
Status:
PR#1204: regerror() exists, use it
Status:
PR#2284: Can not POST to ErrorDocument - Apache/1.3b6
Status:
PR#2396: Proposal for TimeZone directive
Status:
PR#2446: AllowOverride FileInfo is too coarse
Status:
PR#2760: [PATCH] User/Group for <Directory> and <Location> i.e. not only
in global and <Virtual>.
Status:
PR#2907: suggestion: power up your Include directive :)
Status:
PR#3018: cannot limit some HTTP methods
Status:
PR#3677: New ErrorDocumentMatch directive
Status:
PR#4244: "Files" and "FilesMatch" regexp does not recognize bang as
negation operator
Status:
PR#5993: AllowOverride should have a 'CheckNone' and 'AllowNone' argument
instead of only 'None'
Status:
* mod_access
PR#537: mod_access syntax allows hosts that should be restricted
Status:
PR#1287: add allow,deny/deny,allow warning to mod_access
Status:
PR#2512: <IfDenied> directive wanted
Status:
* mod_auth-any
PR#557: ~UserHome directories are not honored in absolute pathname
requests (.htaccess)
Status:
PR#1117: Using NIS passwd.byname dbm files with AuthDBMUserFile
Status:
PR#1809: Suggestion for improving authentication modules and core source
code, problem with 401 and ErrorDocument
Status:
* mod_autoindex
PR#1263: Add frame-safe anchor attribute to mod_autoindex links
Status:
* mod_cgi (and suexec)
PR#921: suexec Uses cwd before filling it in, doesn't use syslog
Status:
PR#1176: Apache cannot handle continuation line in headers
Status:
PR#1120: suexec does not parse arguments to #exec cmd
Status:
PR#1268: CGI scripts running as Apache user: security (suexec etc.)
Status:
PR#1285: Error messages could be easier to spot in cgi.log file for suexec.c
Status:
PR#1905: suexec - Allow modules to set user:group for execution.
Status:
PR#2360: suexec for general access of user content?
Status:
PR#2460: TimeOut applies to output of CGI scripts
Status:
PR#2573: CGI's for general use still have to be run as another user
with suExec
Status:
PR#4241: Need to be able to override shebang line to make CGI scripts
more portable.
Status:
PR#4490: mod_cgi prevents handling of OPTIONS requests
Status:
* mod_env
PR#370: Modified PATH environemnt variable is not passed, instead
system's is used
Status:
* mod_headers
PR#1383: I make mod_headers to modify request headers as well as
response ones.
Status:
PR#1677: mod_headers should allow mod_log_config-style formats in
header values
Status:
* mod_imap
PR#759: imap should read <MAP><AREA>*</MAP> too!
Status:
* mod_include
PR#78: Additional status for XBitHack directive
Status:
PR#623: A smarter "Last Modified" value for SSI documents (see PR number 600)
Status:
PR#1145: mod_include
Allow for Last-Modified: without resorting to XBitHack
Status:
PR#1803: patches to mod_include to allow for file tests
Status:
PR#4459: Suggestion for better handling of Last-modified headers
Status:
* mod_info
PR#2415: /server-info doesn't check for the virtual host to list the info
Status:
* mod_log-any
PR#1050: Logging of virtual server to error_log as well
Status:
PR#1358: Selective url-encode of log fields (or maybe a pseudo
log_rewrite module?)
Status:
PR#2073: pipelined connections are not logged correctly
Status:
PR#4448: Please allow CGI env variables (QUERY_STRING, ...) to be logged
with %{}e
Status:
* mod_negotiation
PR#3191: no way to set global quality-of-source (qs) coneg values
with multiviews
Status:
* mod_proxy
PR#362: Mod_proxy doesn't allow change of error pages
Status:
PR#440: Proxy doesn't deliver documents if not connected
Status:
PR#534: proxy converts ~name to %7Ename when name starts with a dot (.)
Status:
PR#612: Proxy FTP Authentication Fails
Status:
PR#700: Proxy doesn't do links right for OpenVMS files through ftp:
Status:
PR#980: Controlling Access to Remote Proxies would be nice...
Status:
PR#994: Adding authentication "on the fly" through the proxy module
Status:
PR#1085: ProxyRemote make a dead cycle.
Status:
PR#1166: ``nph-'' not honored (no buffering) for ProxyRemote mapping
Status:
PR#1290: Need to know "hit-rate" on proxy cache
Status:
PR#1532: Proxy transfer logging
Status:
PR#1547: No HTTP_X_FORWARDED_FOR set...
Status:
PR#1567: ProxyRemote proxy requests fail authentication by firewall
Status:
PR#1702: mod_proxy to support persistent conns?
Status:
PR#1878: listing of proxy cache content
Status:
PR#2314: patterns in ProxyRemote
Status:
PR#2648: Cache file names in Proxy module
Status:
PR#3568: Accessing URL through proxy server corrupts data.
Status:
PR#3605: Some anonymous FTP URLs ask for authentication
Status:
* mod_rewrite
PR#1582: mod_rewrite forms REQUEST_URI different than mod_cgi does
Status:
PR#2074: mod_rewrite doesn't pass Proxy Throughput on internal subrequests
Status:
* mod_status
PR#2138: mod_status always displays 256 possible connection slots
Status:
PR#2343: Status module averages are for entire uptime
Status:
* apache-api
PR#1004: request_config field in request_rec is moderately bogus
Status:
PR#1158: improvements to child spawning API
Status:
PR#1233: there is no way to keep per-connection per-module state
Status:
PR#2024: adding auth_why to conn_rec
Status:
PR#2873: Feedback/Comment on APACI
Status:
PR#3143: No module specific data hook for per-connection data
Status:
* generally odds and ends
PR#2431: A small addition to rotatelogs.c to improve program functionality.
Status:
PR#2763: mailto tags and bundling bug report script
Status:
PR#2785: os-aix Support for System Resource Controller
Status:
PR#2889: Inclusion of RPM spec file in CVS/distributions
Status:
PR#5713: os-windows [PATCH] install as win32 service with domain account
Status: Cannot accept password-as-arg, we should prompt the
user when -k install/-k config with a user argument.
Other bugs that need fixing:
* ap_discard_request should be converted to use the bucket API
directly rather than waste cycles copying buffers with the old API.
* MaxRequestsPerChild measures connections, not requests.
Until someone has a better way, we'll probably just rename it
"MaxConnectionsPerChild".
* Regex containers don't work in an intutive way
Status: No one has come up with an efficient way to fix this
behavior. Dean has suggested getting rid of regex containers
completely.
OtherBill suggests: We at least seem to agree on eliminating
the <Container ~ foo> forms, and using only
<ContainerMatch foo> semantics.
* SIGSEGV on Linux (glibc 2.1.2) isn't caught properly by a
sigwaiting thread. We need to work around this, perhaps unless
there is hope soon for a fixed glibc.
* orig_ct in the byterange/multipart handling may not be
needed. Apache 1.3 just never stashed "multipart" into
r->content_type. We should probably follow suit since the
byterange stuff doesn't want the rest of the code to see the
multipart content-type; the other code should still think it is
dealing with the <orig_ct> stuff.
Status: Greg volunteers to investigate (esp. since he was most
likely the one to break it :-)
Binaries (2.0.39):
Platform Avail. Volunteer
------------------------------------------------------------------
AIX 4.3.3 no Bill Stoddard
Mandrake 8.1 no Ryan Bloom
FreeBSD 4.1 no Ryan Bloom
i386-unknown-freebsd4.5 no Aaron Bannert
OS X 10.1.3/Darwin 5.3 no Jim Jagielski
OS X 10.1.5/Darwin 5.5 no Aaron Bannert
Solaris 8.x/sparc no Jim Jagielski
i686-pc-linux-gnu-rh70 no Aaron Bannert
i686-pc-linux-gnu-rh72 no Aaron Bannert
i386-pc-solaris2.8 no Aaron Bannert
powerpc-unknown-linux-gnu no Graham Leggett
NetWare no Brad Nicholes
Win32-x86 no William Rowe
Other features that need writing:
* Finish infrastructure in core for async MPMs
Status: post 2.0
* TODO in source -- just do an egrep on "TODO" and see what's there
Available Patches:
* Martin Sojka <msojka@gmx.de>'s patch to add error reporting for failed
htpasswd actions due to a full /tmp volume (other programs may have
similar problems?)
PR: 6475
Status:
* Mike Abbott's <mja@trudge.engr.sgi.com> patches to improve
performance
Status: These were written for 1.3, and are awaiting a port to
2.0
* Jim Winstead's <jimw@trainedmonkey.com> patch to add CookieDomain and
other small mod_usertrack features
* Dan Rench's <drench@xnet.com> patch to add allow the errmsg and timefmt
of SSI's to be modified in the config file. Patch is available in
PR6193