You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2006/03/21 12:23:44 UTC
DO NOT REPLY [Bug 39045] New: - mod_python makes Apache crash when used with mod_auth_ldap
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
Summary: mod_python makes Apache crash when used with
mod_auth_ldap
Product: Apache httpd-2
Version: 2.0.55
Platform: All
OS/Version: Linux
Status: NEW
Severity: major
Priority: P2
Component: Other Modules
AssignedTo: bugs@httpd.apache.org
ReportedBy: emmanuel.blot@free.fr
Initial bug report:
http://projects.edgewall.com/trac/ticket/2901
Environment:
* Linux 2.6, Debian testing
* modpython (reproduced with 3.1.3 (debian) and 3.2.8 (custom build))
* python (reproduced with 2.3.5 (debian) and 2.4.2 (custom build))
* LDAP authentication support (mod_auth_ldap)
* Apache2 using the "prefork" engine
Note:
* PHP5 and MySQL were used on the server, and as I read (mailing list) that
PHP5 and ModPython may conflict is some rare cases, I disabled the PHP module in
the server config, but the same crashes kept occuring under the same conditions.
When authentication is performed (againt a LDAP directory) in a Python web
application context (Trac, see URL), the Apache server doesn't reply to the web
browser request as it dies. The Apache2 log message shows the following:
"child pid <n> exit signal Segmentation fault (11)"
The root cause seems to be the LDAP authentication module:
It defines an extra environment variable AUTHENTICATE_UID, which may takes an
invalid (null ?) value.
This value is retrieved in modpython/apache.py:build_cgi_env(req) and added to
the CGI environment variable.
When this dictionnary/hash table is duplicated using environ.duplicate() Python
call, the server thread crashes.
When the duplicate() method attempts to duplicate the value of the
AUTHENTICATE_UID key, it produces an invalid call which ends up in calling the
libc strlen() function with an invalid parameter, and eventually crashes the
current Apache thread.
The same crash occurs whenever the value (environ['AUTHENTICATE_UID']) is
accessed from the dictionnary.
Using GDB to run the Apache server, the backtrace shows the following:
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1215211840 (LWP 31344)]
0xb7a781e3 in strlen () from /lib/tls/libc.so.6
#0 0xb7a781e3 in strlen () from /lib/tls/libc.so.6
#1 0xb7777ec5 in PyString_FromString () from /usr/lib/libpython2.3.so.1.0
#2 0xb78324e9 in MpTable_New () from /usr/lib/apache2/modules/mod_python.so
#3 0xb774704a in PyObject_GetItem () from /usr/lib/libpython2.3.so.1.0
#4 0xb776f922 in PyDict_Merge () from /usr/lib/libpython2.3.so.1.0
#5 0xb776fa2d in PyDict_Update () from /usr/lib/libpython2.3.so.1.0
#6 0xb776fa64 in PyDict_Update () from /usr/lib/libpython2.3.so.1.0
#7 0xb77aa9d9 in _PyEval_SliceIndex () from /usr/lib/libpython2.3.so.1.0
#8 0xb77ab646 in PyEval_EvalCodeEx () from /usr/lib/libpython2.3.so.1.0
#9 0xb775ef5a in PyFunction_SetClosure () from /usr/lib/libpython2.3.so.1.0
#10 0xb7744bb7 in PyObject_Call () from /usr/lib/libpython2.3.so.1.0
#11 0xb774c106 in PyMethod_New () from /usr/lib/libpython2.3.so.1.0
#12 0xb7744bb7 in PyObject_Call () from /usr/lib/libpython2.3.so.1.0
#13 0xb77829ae in _PyObject_SlotCompare () from /usr/lib/libpython2.3.so.1.0
#14 0xb7780075 in PyType_IsSubtype () from /usr/lib/libpython2.3.so.1.0
#15 0xb7744bb7 in PyObject_Call () from /usr/lib/libpython2.3.so.1.0
#16 0xb77a74c1 in _PyEval_SliceIndex () from /usr/lib/libpython2.3.so.1.0
#17 0xb77aa906 in _PyEval_SliceIndex () from /usr/lib/libpython2.3.so.1.0
#18 0xb77ab646 in PyEval_EvalCodeEx () from /usr/lib/libpython2.3.so.1.0
#19 0xb775ef5a in PyFunction_SetClosure () from /usr/lib/libpython2.3.so.1.0
#20 0xb7744bb7 in PyObject_Call () from /usr/lib/libpython2.3.so.1.0
#21 0xb774c106 in PyMethod_New () from /usr/lib/libpython2.3.so.1.0
#22 0xb7744bb7 in PyObject_Call () from /usr/lib/libpython2.3.so.1.0
#23 0xb774886e in PyObject_CallMethod () from /usr/lib/libpython2.3.so.1.0
#24 0xb7837c58 in python_cleanup () from /usr/lib/apache2/modules/mod_python.so
#25 0xb7839359 in python_cleanup () from /usr/lib/apache2/modules/mod_python.so
#26 0x08079045 in ap_run_handler ()
#27 0x08079481 in ap_invoke_handler ()
#28 0x0806a558 in ap_process_request ()
#29 0x08065218 in _start ()
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
francois.pesce@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
AssignedTo|bugs@httpd.apache.org |francois.pesce@gmail.com
Status|NEW |ASSIGNED
------- Additional Comments From francois.pesce@gmail.com 2006-03-28 03:33 -------
Created an attachment (id=17997)
--> (http://issues.apache.org/bugzilla/attachment.cgi?id=17997&action=view)
Patch to avoid NULL value for env in mod_auth_ldap
If the problem comes from a NULL value in AUTHENTICATE_* environment variable,
as you said, this little patch may fix it.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
wrowe@apache.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Keywords| |PatchAvailable
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
------- Additional Comments From nick@webthing.com 2007-03-09 16:20 -------
(In reply to comment #3)
> Any update about this issue?
The bug seems to be in mod_python rather than apache (whose documentation
doesn't AFAICS promise any such environment variables).
Having said that, the patch looks fine. The drawback is, it fixes just one
instance of the underlying bug.
(this is a quick reaction to your question, and ICBW).
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
------- Additional Comments From emmanuel.blot@free.fr 2007-03-09 14:54 -------
Any update about this issue?
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
jorton@redhat.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Component|Other Modules |mod_authn_ldap
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
wrowe@apache.org changed:
What |Removed |Added
----------------------------------------------------------------------------
AssignedTo|francois.pesce@gmail.com |bugs@httpd.apache.org
Status|ASSIGNED |NEW
------- Additional Comments From wrowe@apache.org 2006-03-28 03:47 -------
Never reassign bugs off the notification lists please. Add yourself as a cc,
or simply use the additional-comment-from key to search for your own incidents :)
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 39045] - mod_python makes Apache crash when used with mod_auth_ldap
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=39045>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39045
francois.pesce@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |francois.pesce@gmail.com
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org