This service will be undergoing maintenance at 00:00 UTC, 2016-09-28. It is expected to last about 1 hours
Bug 240022 - Mod_proxy_http ProxyErrorOverride eating cookies
Mod_proxy_http ProxyErrorOverride eating cookies
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: httpd (Show other bugs)
4.5
All Linux
high Severity medium
: ---
: ---
Assigned To: Joe Orton
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2007-05-14 10:06 EDT by Martin Poole
Modified: 2010-10-22 10:57 EDT (History)
2 users (show)

See Also:
Fixed In Version: RHSA-2007-0747
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2007-11-15 10:06:26 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:


Attachments (Terms of Use)
Backport of upstream fix for proxyoverride problem (2.82 KB, patch)
2007-05-14 10:06 EDT, Martin Poole
no flags Details | Diff


External Trackers
Tracker ID Priority Status Summary Last Updated
Apache Bugzilla 39245 None None None Never

  None (edit)
Description Martin Poole 2007-05-14 10:06:08 EDT
Description of problem:
Set-Cookie headers are not forwarded to the user client when the status code is
3xx and the ProxyErrorOverride directive is set to "on". It seems to be the
issue described in:

http://issues.apache.org/bugzilla/show_bug.cgi?id=39245

Version-Release number of selected component (if applicable):

httpd-2.0.52-32

How reproducible:


Steps to Reproduce:
1.
2.
3.
  
Actual results:


Expected results:


Additional info:
Comment 1 Martin Poole 2007-05-14 10:06:10 EDT
Created attachment 154646 [details]
Backport of upstream fix for proxyoverride problem
Comment 2 Joe Orton 2007-05-14 10:17:46 EDT
That's not the fix which was used upstream, nor one we would adopt.  The correct
patch to use is as:

http://svn.apache.org/viewvc?view=rev&rev=527969
Comment 11 Rainer Traut 2007-07-03 02:40:32 EDT
I see the same in a reverse proxy config in front of Lotus Domino. Setting
ProxyErrorOverride to 'on' will prevent users from logging in.
Will this fix be integrated in EL4's apache?
Comment 12 Joe Orton 2007-07-03 04:28:00 EDT
Rainer: the fix for this is scheduled to be included in the 4.6 update.  If you
need packages which include the fix sooner, please contact Red Hat Support
(https://www.redhat.com/apps/support/)
Comment 15 Jan Lieskovsky 2007-08-07 06:22:28 EDT
For BZ#240022 -- this time both triples are at the expected place:

Latest httpd packages (httpd-2.0.52-38.ent.i386):

1, @i386-4as-bos bug244639]# bash runtest.sh
Stopping httpd:                                            [FAILED]
Starting httpd:                                            [  OK  ]
HTTP/1.1 201 From the CGI Script
Date: Tue, 07 Aug 2007 10:04:24 GMT
Server: Apache/2.0.52 (Red Hat)
Content-Type: text/plain; charset=UTF-8
Connection: close
Transfer-Encoding: chunked

origin
HTTP/1.1 302 From the CGI Script
Date: Tue, 07 Aug 2007 10:04:24 GMT
Server: Apache/2.0.52 (Red Hat)
Content-Type: text/plain; charset=UTF-8
Connection: close
Transfer-Encoding: chunked

origin
HTTP/1.1 400 At the Proxy
Date: Tue, 07 Aug 2007 10:04:24 GMT
Server: Apache/2.0.52 (Red Hat)
Content-Length: 10
Connection: close
Content-Type: text/plain; charset=UTF-8

proxy-400
HTTP/1.1 500 At the Proxy
Date: Tue, 07 Aug 2007 10:04:24 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: text/plain; charset=UTF-8

proxy-500
origin
origin
proxy-400
HTTP/1.1 400 At the Proxy
proxy-500
HTTP/1.1 500 At the Proxy
Stopping httpd:                                            [  OK  ]
PASS 0

-> PASS
Comment 17 errata-xmlrpc 2007-11-15 10:06:26 EST
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2007-0747.html

Note You need to log in before you can comment on or make changes to this bug.