[Bug 1264674] Re: nginx segfault when adding add_header in configuration

[Thomas Ward]

** Description changed:

+ [Impact]
+ 
+ There is a segmentation fault bug in the nginx-auth-pam module that
+ exists for nginx-extras.  It usually happens when you are adding a
+ header via the nginx configuration option `add_header`, however this is
+ actually a bug in the nginx-auth-pam module.
+ 
+ [Test Case]
+ 
+ Use `add_header Via "1.1 keys.example.org:80 (nginx)";` or similar Via
+ header with a proxy_pass while using nginx-extras.  This typically will
+ end up with a segmentation fault.
+ 
+ Using the attached debdiff, which applies an upstream fix for this, you
+ will not encounter a segmentation fault.
+ 
+ (A more detailed test case is unavailable, however there are example
+ configurations and situations where this can trigger on the Debian bug)
+ 
+ [Regression Potential]
+ 
+ According to the upstream commit:
+ 
+ "ngx_module_t commands array should end with a ngx_null_command."
+ 
+ There should be no regression risk for this as the module is supposed to
+ end with the command, but previously did not.
+ 
+ [Other Info]
+  
+ This was test-built inside Saucy sbuild chroots for i386 and amd64 without incident by myself.
+ 
+ [Original Description]
+ 
  Please see bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721702
  would be nice if we can update nginx in saucy, so this bug no longer
  persists!

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1264674

Title:
  nginx segfault when adding add_header in configuration

Status in “nginx” package in Ubuntu:
  Fix Released
Status in “nginx” source package in Saucy:
  Triaged
Status in “nginx” package in Debian:
  Fix Released

Bug description:
  [Impact]

  There is a segmentation fault bug in the nginx-auth-pam module that
  exists for nginx-extras.  It usually happens when you are adding a
  header via the nginx configuration option `add_header`, however this
  is actually a bug in the nginx-auth-pam module.

  [Test Case]

  Use `add_header Via "1.1 keys.example.org:80 (nginx)";` or similar Via
  header with a proxy_pass while using nginx-extras.  This typically
  will end up with a segmentation fault.

  Using the attached debdiff, which applies an upstream fix for this,
  you will not encounter a segmentation fault.

  (A more detailed test case is unavailable, however there are example
  configurations and situations where this can trigger on the Debian
  bug)

  [Regression Potential]

  According to the upstream commit:

  "ngx_module_t commands array should end with a ngx_null_command."

  There should be no regression risk for this as the module is supposed
  to end with the command, but previously did not.

  [Other Info]
   
  This was test-built inside Saucy sbuild chroots for i386 and amd64 without incident by myself.

  [Original Description]

  Please see bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721702
  would be nice if we can update nginx in saucy, so this bug no longer
  persists!

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1264674/+subscriptions