Re: user/6515: fix for pr6009 creates a new problem

Previous thread: Yüzde 51 İndirimle Artemis Marin Princess Hotel'den Brunch ve Masaj Fırsatı 49TL... by Tatilzemini.com on Wednesday, November 24, 2010 - 9:34 am. (1 message)

Next thread: system/6516: relayctl reload : command failed by Xavier Beaudouin on Thursday, November 25, 2010 - 6:53 am. (1 message)

[view original message]

From: bjorn.ketelaars

Subject: user/6515: fix for pr6009 creates a new problem

Date: Thursday, November 25, 2010 - 3:17 am

System      : OpenBSD 4.8
	Details     : OpenBSD 4.8-current (GENERIC.MP) #644: Sun Nov 21 11:19:23 MST 2010
			 deraadt@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP

	Architecture: OpenBSD.amd64
	A bug existed in mod_proxy when using httpd as as reverse proxy. httpd would send a
host-header with port 80 specified even though the request - from the client - was not specified
as hostname:80 (Bug report pr6009). The author of this report suggested a fix that was *not*
used. An alternative fix was applied.
Unfortunately this alternative fix causes a new problem: httpd sends back a host-header with the
cvs server: Diffing .
Index: proxy_http.c
===================================================================
RCS file: /cvs/src/usr.sbin/httpd/src/modules/proxy/proxy_http.c,v
retrieving revision 1.21
diff -u -r1.21 proxy_http.c
--- proxy_http.c        25 Feb 2010 07:53:07 -0000      1.21
+++ proxy_http.c        25 Nov 2010 10:02:31 -0000
@@ -367,7 +367,7 @@
                    AP_HOOK_DECLINE(DECLINED),
                    &amp;rc, r, f, desthost, destportstr, destportstr);
         if (rc == DECLINED) {
-           if (destportstr != NULL &amp;&amp; destport != DEFAULT_HTTP_PORT)
+           if (destportstr != NULL &amp;&amp; atoi(destportstr) != destport)
                ap_bvputs(f, &quot;Host: &quot;, desthost, &quot;:&quot;, destportstr, CRLF, NULL);
            else
                ap_bvputs(f, &quot;Host: &quot;, desthost, CRLF, NULL);

The above if-expression will always evaluate as false because destport != DEFAULT_HTTP_PORT
will always be evaluated as false. Reason hereof is that in line 118 of the code the variable
destport is set to DEFAULT_HTTP_PORT and never changes. What really has to be checked is the
value of destportstr in relation to destport (or DEFAULT_HTTP_PORT) - as describes in the
original fix from pr6009.
The above fix implements the same solution as the original fix using string-&gt;int conversion
instead of int-&gt;string conversion.


dmesg:
OpenBSD 4.8-current (GENERIC.MP) #644: Sun ...[ message continues ]

[view original message]

From: Björn Ketelaars

Subject: Re: user/6515: fix for pr6009 creates a new problem

Date: Tuesday, January 4, 2011 - 6:48 am

On Tue, Jan 4, 2011 at 12:11 PM, Jasper Lievisse Adriaanse


As requested by Jasper a new diff using strtonum().

Index: proxy_http.c
===================================================================
RCS file: /cvs/src/usr.sbin/httpd/src/modules/proxy/proxy_http.c,v
retrieving revision 1.21
diff -u -r1.21 proxy_http.c
--- proxy_http.c	25 Feb 2010 07:53:07 -0000	1.21
+++ proxy_http.c	4 Jan 2011 13:33:23 -0000
@@ -169,6 +169,8 @@
     int result, major, minor;
     const char *content_length;
     const char *peer;
+    int destportstrtonum;
+    const char *errstr;

     void *sconf = r-&gt;server-&gt;module_config;
     proxy_server_conf *conf =
@@ -367,7 +369,11 @@
 		    AP_HOOK_DECLINE(DECLINED),
 		    &amp;rc, r, f, desthost, destportstr, destportstr);
         if (rc == DECLINED) {
-	    if (destportstr != NULL &amp;&amp; destport != DEFAULT_HTTP_PORT)
+	    destportstrtonum = strtonum(destportstr, 0, 65535, &amp;errstr);
+	    if (errstr)
+		errx(1, &quot;The destination port is %s: %s&quot;, errstr, destportstr);
+
+	    if (destportstr != NULL &amp;&amp; destportstrtonum != destport)
 		ap_bvputs(f, &quot;Host: &quot;, desthost, &quot;:&quot;, destportstr, CRLF, NULL);
 	    else
 		ap_bvputs(f, &quot;Host: &quot;, desthost, CRLF, NULL);

[ message continues ]


linux-kernel:
swhiteho	[PATCH 42/51] [GFS2] Move inode deletion out of blocking_cb
FUJITA Tomonori	Re: [Scst-devel] Integration of SCST in the mainstream Linux kernel
Benjamin Herrenschmidt	[git pull] Please pull powerpc.git merge branch
Ingo Molnar	Re: [RFC/RFT PATCH] sched: automated per tty task groups
Vivek Goyal	Re: [PATCH v4] sched: automated per session task groups
git:
Mike Miller	git message
Junio C Hamano	Re: [PATCH] Detached HEAD (experimental)
Stefan Richter	Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Jeff King	Re: [PATCH] t7004: test that "git-tag -u" implies "-s"
A Large Angry SCM	Re: [RFC] origin link for cherry-pick and revert
linux-netdev:
Arnaldo Carvalho de Melo	Re: [PATCH 06/37] dccp: Limit feature negotiation to connection setup phase
Gerrit Renker	[PATCH 1/5] dccp: Initialisation framework for feature negotiation
David Miller	Re: 2.6.27.18: bnx2/tg3: BUG: "scheduling while atomic" trying to ifenslave a seco...
Jeff Garzik	Re: [PATCH] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM
David Miller	Re: [PATCH 2/5] dccp: Auto-load (when supported) CCID plugins for negotiation
git-commits-head:
Linux Kernel Mailing List	libata: disable ATAPI AN by default
Linux Kernel Mailing List	i915: Don't whine when pci_enable_msi() fails.
Linux Kernel Mailing List	Documentation/timers/hpet_example.c: only build on X86
Linux Kernel Mailing List	ALSA: hda - Enable beep on Realtek codecs with PCI SSID override
Linux Kernel Mailing List	kbuild: move bounds.h to include/generated
openbsd-misc:
Stuart Henderson	Re: Kuro5hin: OpenBSD Founder Theo deRaadt Has Conflict of Interest With AMD
Christian Weisgerber	Re: CARP with a single public IP address
Marco Peereboom	Re: OpenBSD culture?
"RALOVICH, Kristóf"	Re: thinkpad windows refund
Kevin	Re: uvm_mapent_alloc: out of static map entries on 4.3 i386