From users-return-20079-apmail-subversion-users-archive=subversion.apache.org@subversion.apache.org Mon Nov 4 04:37:44 2013 Return-Path: X-Original-To: apmail-subversion-users-archive@minotaur.apache.org Delivered-To: apmail-subversion-users-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id AF75CCDC1 for ; Mon, 4 Nov 2013 04:37:44 +0000 (UTC) Received: (qmail 8573 invoked by uid 500); 4 Nov 2013 04:37:42 -0000 Delivered-To: apmail-subversion-users-archive@subversion.apache.org Received: (qmail 8545 invoked by uid 500); 4 Nov 2013 04:37:36 -0000 Mailing-List: contact users-help@subversion.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@subversion.apache.org Received: (qmail 8538 invoked by uid 99); 4 Nov 2013 04:37:33 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 Nov 2013 04:37:33 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of ben@reser.org designates 50.197.89.41 as permitted sender) Received: from [50.197.89.41] (HELO mail.brain.org) (50.197.89.41) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 Nov 2013 04:37:28 +0000 Received: from localhost (localhost [127.0.0.1]) by mail.brain.org (Postfix) with ESMTP id 09866179E190; Sun, 3 Nov 2013 20:37:08 -0800 (PST) X-Virus-Scanned: Debian amavisd-new at fornix.brain.org Received: from mail.brain.org ([127.0.0.1]) by localhost (fornix.brain.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HM3M-tvZJcCm; Sun, 3 Nov 2013 20:37:05 -0800 (PST) Received: from fmri.brain.org (fmri.brain.org [IPv6:2001:470:e966:5:223:dfff:fedf:433d]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.brain.org (Postfix) with ESMTPSA id 912A2179E149; Sun, 3 Nov 2013 20:37:05 -0800 (PST) Message-ID: <52772471.5080705@reser.org> Date: Sun, 03 Nov 2013 20:37:05 -0800 From: Ben Reser User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:25.0) Gecko/20100101 Thunderbird/25.0 MIME-Version: 1.0 To: Erwin Hogeweg CC: users@subversion.apache.org Subject: Re: Segmentation fault in webdav after upgrading to 1.7 on CentOS - Need new ideas References: <40B4AD60-3EEB-496B-8034-044A0A890C2A@me.com> <527487C5.7020304@reser.org> <6F46E77F-8D75-44E0-B29F-E9C0854A05E9@me.com> In-Reply-To: <6F46E77F-8D75-44E0-B29F-E9C0854A05E9@me.com> X-Enigmail-Version: 1.5.2 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org On 11/3/13 4:02 PM, Erwin Hogeweg wrote: > Thanks for the response. It looks like applying the patch solved the problem. I > am able to connect to the repo again. Pfew. Glad to help. Something roughly equivalent to that patch will be included in the next release. So you shouldn't need that patch forever. > I had to disable this mod_sec rule in order to make it work though: > > # allow request methods > #SecRule REQUEST_METHOD "!^((?:(?:POS|GE)T|OPTIONS|HEAD))$" \ > # "phase:2,t:none,log,auditlog,status:501,msg:'Method is not allowed by > policy', severity:'2',id:'960032',tag:'POLICY/METHOD_NOT_ALLOWED'" > > Do you have any thoughts (good/bad/ugly) on that? I've personally never used mod_security with Subversion so I can't make a very definitive statement regarding it. Subversion 1.8 clients use chunked http requests and older versions of mod_security didn't allow chunked http requests. So I'd at least recommend that you make sure you have a recent version of it. Other than that I don't have anything additional to add other than what Branko already told you.