[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Alex Bligh
ubuntu at alex.org.uk
Mon Sep 8 09:14:06 UTC 2014
Robie: that attitude is quite understandable. I'm willing to do some work bisecting it, but I fear the root problem is going to be that addressed this commit:
http://svn.apache.org/viewvc?view=revision&revision=1573360
The ssl_pphrase_Handle routine is misleadingly named, and in fact is pretty much the core SSL initialisation routine for all the sites. What appears to be going wrong is one of the addresses for the callback going awry. The above commit rewrites this completely (which is an intrusive change) - the author's opinion of the previous code is evident from the commit message. As you can see, upstream's proposed fix was 'upgrade'. I don't think this will qualify as a 'minimal patch'.
As far as I can tell from playing so far, the root problem seems to be
connected to .so file loading. modphp + moddbd postgresql tickles it,
but I suspect other combinations will as well.
If it's going to be difficult to fix this against 2.4.7, would getting
2.4.10 (the Utopic version) into trusty-backports be permissible? That
way at least I'd get security updates. I can confirm this builds out of
the box with no issues.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1366174
Title:
apache2 SEGV with multiple SSL sites
To manage notifications about this bug go to:
https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions
More information about the Ubuntu-server-bugs
mailing list