[an error occurred while processing this directive] [APACHE DOCUMENTATION]

Apacheの既知のバグ

最新のバグ追跡のためのリソースと情報はApacheバグデータベースです。 全ての既知のバグはそこにあります。 以下は、リリースした時点で非常に顕著であるバグの概要です。

参照: 互換性ノート


バージョン 1.2

  1. hard_timeout() がユーザの不正なロジックをリクエストで読み取り、 keepalive接続の際に、初期のリクエストが1200のデフォルト"timeout"秒 間読み、"KeepAliveTimeout"秒待たされてしまう。
  2. mod_infoの出力は設定されている正しい内容を表示しません。
  3. .htaccessファイルの中の不正なコマンドがセグメンテーション フォルトを発生させるかもしれません。
  4. AIX上でコンパイルすると、http_bprintf.c における問題がまだある かも知れません。 もし誰かがこれを確認/否定できれば、感謝されるでしょう。

バージョン 1.1.1

  1. "123.hotwired.com" のようなホスト名は不正です。 まだfind_allowdenyが正確にそれらを扱えません。 これは既知のバグとするべきです。 これを修正する際は注意してください。 なぜなら、isalpha()のチェックを削除することにより セキュリティホールができます。 もし、ユーザが"allow from 2.2.2"を設定した時、 DNSマップ "1.1.1.1.in-addr.arpa IN PTR 2.2.2."を考慮してください。 この時は、1.1.1.1を許可してしまいます。 (-DMAXIMUM_DNSでないなら) −− 悪い人が二重の逆引きを知っていて、IPアドレスだけによる allow/deny記述を無効にしようとするので良くありません。 − リポート:Dean Gaudet、1.2で修正。

Version 1.1.0

  1. mod_auth_msql misbehaviors. Grab a newer version from the modules distribution directory. -fixed in 1.1
  2. Hanging on Netscape 2.0-3.0b4 on MSWindows (3.1 and 95) - we investigated pretty seriously, and as best we can tell this is a Netscape bug, and was fixed in 3.0b5. Please read our lab report.

Version 1.1b2 (beta)

  1. SunOS has trouble compiling mod_status.c . It'll be fixed before 1.1 is released.
  2. CGI which spawn background processes may fail to return immediately. No fix exists yet.
  3. mod_dir appears to have problems when the DocumentRoot has a trailing slash.

Version 1.1b1 (beta)

  1. The logfile can sometimes contain only part of a host address. This occurs if the Cookie module is compiled in and enabled.

Version 0.8.16 (beta)

  1. (Feature) You cannot use relative pathnames for the -f or -d flags to httpd.

  2. .asis files cannot be used for content-negotiation.

Version 0.8.13 (beta)

  1. AddDescription doesn't seem to work (a fix is imminent)

Version 0.8.11 (beta)

  1. http_main.c function accept_mutex_init() horrible bug, lock_fname should be defined larger, e.g.
    char lock_fname[30];

    Ooops.

  2. There's a bug with NeXT. Restarting the server causes an infinite loop. A fix has been provided by a user and should be included in a future update.

Version 0.8.10 (beta)

  1. Server side includes which include CGI output can have unbareable delays on some platforms. We're looking into a fix.

  2. NCSA 1.3 and beyond allow wildcards in <Directory> tags; e.g. <Directory /home/*/public_html> - Apache doesn't (yet), but we have a patch coming real soon now

  3. Buggy scripts can cause server misbehavior on Solaris at least.

  4. Some of the default directives in srm.conf-dist are outdated

  5. Descriptions of args to AddIcon and AddAlt are wrong in command table.

  6. DirectoryIndex sometimes gets spuriously reset to the default value.

  7. ErrorDocument is a little shakey, " Some text %s doesn't agree with the documentation.

  8. All Aliases are checked before any ScriptAliases --- the fully compatible behavior would be to check both in one pass, in the order in which they occur in srm.conf.

Version 0.8.8 (beta)

  1. There's a known compilation problem with NeXT. Knock out the 2nd argument to setjmp when your compiler complains.

  2. exec cgi="" produces reasonable malformed header responses when used to invoke non-CGI scripts.
    The NCSA code ignores the missing header. (bad idea)
    Solution: write CGI to the CGI spec or use exec cmd="" instead.

    We might add virtual support to exec cmd to make up for this difference.

  3. A scoreboard file for process management is currently created in /tmp. We now find this to be a bad idea, and have plans to move it into the /logs directory along with other files created by Apache.

    If you have any /tmp cleaning scritps (e.g. from crontab), you should have them ignore the scoreboard file, which is named /tmp/htstatus.XXXXXXX. If the scoreboard file is damaged, Apache can become very confused (a SIGHUP repairs the damage). Furthermore, not having a /tmp at all can cause disastrous results, as there's no error checking yet.

  4. Putting authorization information (like AuthName and AuthType) into a <Directory> directive without a "requires" field in the <Limit> directive can result in a core dump.

  5. AddIcon is broken. The fix is to change
    { "AddIcon", add_icon, BY_TYPE, DIR_CMD_PERMS, ITERATE2,
    to
    { "AddIcon", add_icon, BY_PATH, DIR_CMD_PERMS, ITERATE2,

    in mod_dir.c

  6. Under IRIX, the "Group" directive in httpd.conf needs to be a valid group name (i.e. "nogroup") not the numeric group ID. The distribution httpd.conf, and earlier ones, had the default Group be "#-1", which was causing silent exits at startup.

  7. Server push as regular CGI's don't work - actually, any normal CGI script that outputs additional attributes to the Content-type line (separated by a semicolon) gets that extra information chopped off, which means that the line Content-type: multipart/x-mixed-replace; boundary=ThisRandomString gets munged to just Content-type: multipart/x-mixed-replace, which means it doesn't know what the boundary is, and fails. You can get around this until 0.8.9 by making the CGI script a "No Parsed Header" script by prefixing the name of the script with a "nph-", but then you have to be responsible for correct HTTP headers. If the server-push animation is a constant, unchanging stream that terminates at some point, you could also put that stream into a whole file and use the .asis file extension functionality.

  8. ErrorDocument is a little shakey, " Some text %s doesn't agree with the documentation.


Version 0.6.4

  1. As with NCSA 1.3 (and 1.4 ?), some HEAD requests on directories without an index.html fail to be logged... harmless.
  2. Typo in Virtual Host #defines (accidentally defined #VIRUAL_HOST"). 0.6.4b fixes this.

Version 0.6.2 (first beta)

  1. Apache error_log might show httpd: caught SIGBUS, dumping core after a successful redirect. We hope to fix this in 0.6.3

  2. If you see a lot of messages such as,

    access to /something: failed for foo.bar.com, reason: no multi in this directory
    in your error log, don't panic !. It means "File not found", and we will fix it sooner or later.

  3. WARNING: Apache logs all URLs redirected from and to. This isn't bug, it's deliberate, but you should be aware of it. It's a recognition of the fact that the Common Log File format doesn't have any place to log the real object that was returned for the internally redirected request. This will be changed soon.

  4. BSDI problems: One of the test machines (Hyperreal) has noticed "flocks" of child processes sucking up large amounts of resources when moderately hit (on a Pentium 90 running 1.1 serving ~2 hits/second). Killing and restarting the daemon helps this disappear - it's being investigated, it might be a kernel bug, but then every server developer likes to say that. Let us know how well it works for you if you are using BSDI and have a high number of hits.


検索文字
The English original manual is here.

Index Home