Bug#1114639: apache2: 000-default.conf CustomLog declaration overriding all subsequently loaded vhosts in 2.4.65
Package: apache2
Version: 2.4.65-1~deb12u1
Severity: important
X-Debbugs-Cc: cajunman4life@gmail.com
Dear Maintainer,
I installed the update for apache2 on Debian 12 (to 2.4.65) yesterday a bit after 4pm central US time. After this, the file /var/log/apache2/other_vhosts_access.log stopped logging the domain of the virtual host at the start of the line. I did not notice that until this morning when some scripts I made to split the log file by domain started spitting out a ton of IP addresses rather than domain names.
After digging around some, on a whim I went in to /etc/apache2/sites-enabled/000-default.conf and commented out the CustomLog line and reloaded apache2, after which time the domain name was again being put on the log entry in /var/log/apache2/other_vhosts_access.log.
In /etc/apache2/conf-enabled/other-vhosts-access-log.conf, I have the following declaration:
CustomLog ${APACHE_LOG_DIR}/other_vhosts_access.log vhost_combined
In /etc/apache2/sites-enabled/000-default.conf, the following CustomLog was set (this is the default in the distribution as observed by https://salsa.debian.org/apache-team/apache2/-/blob/bookworm-security/debian/config-dir/sites-available/000-default.conf?ref_type=heads):
CustomLog ${APACHE_LOG_DIR}/access.log combined
Despite this being set for an entirely different log file, it appears to have been overriding my settings for vhost_combined for all virtual hosts loaded after 000-default.conf. This seems to be a regression in apache2 in some way.
I fixed my logging issue by commenting out the CustomLog line in 000-default.conf.
-- Package-specific info:
-- System Information:
Debian Release: 12.12
APT prefers oldstable-updates
APT policy: (500, 'oldstable-updates'), (500, 'oldstable-security'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.1.0-39-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages apache2 depends on:
ii apache2-bin 2.4.65-1~deb12u1
ii apache2-data 2.4.65-1~deb12u1
ii apache2-utils 2.4.65-1~deb12u1
ii init-system-helpers 1.65.2+deb12u1
ii lsb-base 11.6
ii media-types 10.0.0
ii perl 5.36.0-7+deb12u3
ii procps 2:4.0.2-3
ii sysvinit-utils [lsb-base] 3.06-4
Versions of packages apache2 recommends:
ii ssl-cert 1.1.2
Versions of packages apache2 suggests:
pn apache2-doc <none>
ii apache2-suexec-custom 2.4.65-1~deb12u1
ii lynx [www-browser] 2.9.0dev.12-1
ii w3m [www-browser] 0.5.3+git20230121-2
Versions of packages apache2-bin depends on:
ii libapr1 1.7.2-3+deb12u1
ii libaprutil1 1.6.3-1
ii libaprutil1-dbd-sqlite3 1.6.3-1
ii libaprutil1-ldap 1.6.3-1
ii libbrotli1 1.0.9-2+b6
ii libc6 2.36-9+deb12u13
ii libcrypt1 1:4.4.33-2
ii libcurl4 7.88.1-10+deb12u14
ii libjansson4 2.14-2
ii libldap-2.5-0 2.5.13+dfsg-5
ii liblua5.3-0 5.3.6-2
ii libnghttp2-14 1.52.0-1+deb12u2
ii libpcre2-8-0 10.42-1
ii libssl3 3.0.17-1~deb12u2
ii libxml2 2.9.14+dfsg-1.3~deb12u4
ii perl 5.36.0-7+deb12u3
ii zlib1g 1:1.2.13.dfsg-1
Versions of packages apache2-bin suggests:
pn apache2-doc <none>
ii apache2-suexec-custom 2.4.65-1~deb12u1
ii lynx [www-browser] 2.9.0dev.12-1
ii w3m [www-browser] 0.5.3+git20230121-2
Versions of packages apache2 is related to:
ii apache2 2.4.65-1~deb12u1
ii apache2-bin 2.4.65-1~deb12u1
-- Configuration Files:
/etc/apache2/apache2.conf changed [not included]
/etc/apache2/conf-available/security.conf changed [not included]
/etc/apache2/mods-available/alias.conf changed [not included]
/etc/apache2/mods-available/autoindex.conf changed [not included]
/etc/apache2/mods-available/status.conf changed [not included]
/etc/apache2/sites-available/000-default.conf changed [not included]
/etc/apache2/sites-available/default-ssl.conf changed [not included]
/etc/logrotate.d/apache2 changed [not included]
-- no debconf information
Reply to: