Bug#702929: apache2: dh_apache2 postinst code needs to reload more
Package: apache2
Version: 2.4.4-2
Severity: normal
The default dh_apache2 postinst code ends up calling:
case "$CMD" in
enconf|enmod|ensite)
local a2query_ret=0
a2query $check_switch "$CONF" > /dev/null 2>&1 || a2query_ret=$?
if [ "$a2query_ret" -eq 0 ] ; then
# configuration is already enabled
apache2_msg "info" "apache2_invoke $CONF: No action required"
return 0
and similarly apache2_needs_action only acts on fresh installs. This
means that if one upgrades a module package, Apache is never reloaded
so far as I can see. That in turn means that the new module code is
never loaded into Apache, which seems like a serious problem (consider a
security update, for example).
Am I missing something? It feels like something in the default postinst
action for a package upgrade should at some point end up reloading Apache
to load the new module code, even if nothing has changed about the
configuration.
-- Package-specific info:
Enabled MPM: prefork
List of enabled modules:
authz_user (enabled by site administrator)
authn_core (enabled by site administrator)
authz_groupfile (enabled by site administrator)
access_compat (enabled by site administrator)
webauthldap (enabled by site administrator)
socache_shmcb (enabled by site administrator)
cgi (enabled by site administrator)
setenvif (enabled by site administrator)
webkdc (enabled by site administrator)
mpm_prefork (enabled by site administrator)
ssl (enabled by site administrator)
autoindex (enabled by site administrator)
dir (enabled by site administrator)
alias (enabled by site administrator)
mime (enabled by site administrator)
webauth (enabled by site administrator)
authz_core (enabled by site administrator)
List of enabled configurations:
localized-error-pages.conf (enabled by maintainer script)
ssl.conf (enabled by site administrator)
other-vhosts-access-log.conf (enabled by maintainer script)
webauth.conf (enabled by site administrator)
serve-cgi-bin.conf (enabled by maintainer script)
webkdc.conf (enabled by site administrator)
charset.conf (enabled by maintainer script)
roundup.conf (enabled by site administrator)
security.conf (enabled by maintainer script)
shibboleth.conf (enabled by site administrator)
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-4-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages apache2 depends on:
ii apache2-bin 2.4.4-2
ii apache2-data 2.4.4-2
ii lsb-base 4.1+Debian8
ii mime-support 3.52-1
ii perl 5.14.2-20
ii procps 1:3.3.3-2
Versions of packages apache2 recommends:
ii ssl-cert 1.0.32
Versions of packages apache2 suggests:
pn apache2-doc <none>
pn apache2-suexec-pristine | apache2-suexec-custom <none>
ii apache2-utils 2.2.22-13
ii chromium [www-browser] 25.0.1364.160-1
ii elinks [www-browser] 0.12~pre5-9
ii iceweasel [www-browser] 10.0.12esr-1
ii links [www-browser] 2.7-1
ii lynx-cur [www-browser] 2.8.8dev.12-2
ii w3m [www-browser] 0.5.3-8
Versions of packages apache2-bin depends on:
ii libapr1 1.4.6-3
ii libaprutil1 1.4.1-3
ii libaprutil1-dbd-mysql 1.4.1-3
ii libaprutil1-dbd-sqlite3 1.4.1-3
ii libaprutil1-ldap 1.4.1-3
ii libc6 2.13-38
ii libldap-2.4-2 2.4.31-1
ii liblua5.1-0 5.1.5-4
ii libpcre3 1:8.30-5
ii libssl1.0.0 1.0.1e-1
ii libxml2 2.8.0+dfsg1-7+nmu1
ii perl 5.14.2-20
ii zlib1g 1:1.2.7.dfsg-13
Versions of packages apache2-bin suggests:
pn apache2-doc <none>
pn apache2-suexec-pristine | apache2-suexec-custom <none>
ii chromium [www-browser] 25.0.1364.160-1
ii elinks [www-browser] 0.12~pre5-9
ii iceweasel [www-browser] 10.0.12esr-1
ii links [www-browser] 2.7-1
ii lynx-cur [www-browser] 2.8.8dev.12-2
ii w3m [www-browser] 0.5.3-8
Versions of packages apache2 is related to:
ii apache2 2.4.4-2
ii apache2-bin 2.4.4-2
-- no debconf information
Reply to: