[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#702929: apache2: dh_apache2 postinst code needs to reload more

Package: apache2
Version: 2.4.4-2
Severity: normal

The default dh_apache2 postinst code ends up calling:

case "$CMD" in
    enconf|enmod|ensite)
        local a2query_ret=0
        a2query $check_switch "$CONF" > /dev/null 2>&1 || a2query_ret=$?
        if [ "$a2query_ret" -eq 0 ] ; then
            # configuration is already enabled
            apache2_msg "info" "apache2_invoke $CONF: No action required"
            return 0

and similarly apache2_needs_action only acts on fresh installs.  This
means that if one upgrades a module package, Apache is never reloaded
so far as I can see.  That in turn means that the new module code is
never loaded into Apache, which seems like a serious problem (consider a
security update, for example).

Am I missing something?  It feels like something in the default postinst
action for a package upgrade should at some point end up reloading Apache
to load the new module code, even if nothing has changed about the
configuration.

-- Package-specific info:
Enabled MPM: prefork
List of enabled modules:
  authz_user (enabled by site administrator)
   authn_core (enabled by site administrator)
   authz_groupfile (enabled by site administrator)
   access_compat (enabled by site administrator)
   webauthldap (enabled by site administrator)
   socache_shmcb (enabled by site administrator)
   cgi (enabled by site administrator)
   setenvif (enabled by site administrator)
   webkdc (enabled by site administrator)
   mpm_prefork (enabled by site administrator)
   ssl (enabled by site administrator)
   autoindex (enabled by site administrator)
   dir (enabled by site administrator)
   alias (enabled by site administrator)
   mime (enabled by site administrator)
   webauth (enabled by site administrator)
   authz_core (enabled by site administrator)
List of enabled configurations:
  localized-error-pages.conf (enabled by maintainer script)
   ssl.conf (enabled by site administrator)
   other-vhosts-access-log.conf (enabled by maintainer script)
   webauth.conf (enabled by site administrator)
   serve-cgi-bin.conf (enabled by maintainer script)
   webkdc.conf (enabled by site administrator)
   charset.conf (enabled by maintainer script)
   roundup.conf (enabled by site administrator)
   security.conf (enabled by maintainer script)
   shibboleth.conf (enabled by site administrator)

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 3.2.0-4-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages apache2 depends on:
ii  apache2-bin   2.4.4-2
ii  apache2-data  2.4.4-2
ii  lsb-base      4.1+Debian8
ii  mime-support  3.52-1
ii  perl          5.14.2-20
ii  procps        1:3.3.3-2

Versions of packages apache2 recommends:
ii  ssl-cert  1.0.32

Versions of packages apache2 suggests:
pn  apache2-doc                                      <none>
pn  apache2-suexec-pristine | apache2-suexec-custom  <none>
ii  apache2-utils                                    2.2.22-13
ii  chromium [www-browser]                           25.0.1364.160-1
ii  elinks [www-browser]                             0.12~pre5-9
ii  iceweasel [www-browser]                          10.0.12esr-1
ii  links [www-browser]                              2.7-1
ii  lynx-cur [www-browser]                           2.8.8dev.12-2
ii  w3m [www-browser]                                0.5.3-8

Versions of packages apache2-bin depends on:
ii  libapr1                  1.4.6-3
ii  libaprutil1              1.4.1-3
ii  libaprutil1-dbd-mysql    1.4.1-3
ii  libaprutil1-dbd-sqlite3  1.4.1-3
ii  libaprutil1-ldap         1.4.1-3
ii  libc6                    2.13-38
ii  libldap-2.4-2            2.4.31-1
ii  liblua5.1-0              5.1.5-4
ii  libpcre3                 1:8.30-5
ii  libssl1.0.0              1.0.1e-1
ii  libxml2                  2.8.0+dfsg1-7+nmu1
ii  perl                     5.14.2-20
ii  zlib1g                   1:1.2.7.dfsg-13

Versions of packages apache2-bin suggests:
pn  apache2-doc                                      <none>
pn  apache2-suexec-pristine | apache2-suexec-custom  <none>
ii  chromium [www-browser]                           25.0.1364.160-1
ii  elinks [www-browser]                             0.12~pre5-9
ii  iceweasel [www-browser]                          10.0.12esr-1
ii  links [www-browser]                              2.7-1
ii  lynx-cur [www-browser]                           2.8.8dev.12-2
ii  w3m [www-browser]                                0.5.3-8

Versions of packages apache2 is related to:
ii  apache2      2.4.4-2
ii  apache2-bin  2.4.4-2

-- no debconf information
Reply to: