Author Topic: Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/l  (Read 416 times)

Offline forsec

  • Newbie
  • *
  • Posts: 7
OS: CentOS 7
web server: httpd-2.4.6-67.el7.centos.6.x86_64
perl:  perl 5, version 16, subversion 3 (v5.16.3) built for x86_64-linux-thread-multi
cwaf: Latest release: 1.181, Client agent: 2.23

After I updated cwaf ruleset and scripts to latest version yesterday,

When I run the following command today
"su -c ' /usr/local/cwaf/scripts/updater.pl' -s /bin/sh nobody"
I get infinite
"Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250."
errors.

Also when I try to connect to the port running on "su -c ' /usr/local/cwaf/scripts/standalone-gui.pl&' -s /bin/sh nobody"
It fails,
I did a strace on the standalone-gui.pl pid
I get infinite
"read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 710
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 568
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 568
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 426
read(5, "Use of uninitialized value withi"..., 8192) = 1136
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 568
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 710
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 852
read(5, "Use of uninitialized value withi"..., 8192) = 994
read(5, "Use of uninitialized value withi"..., 8192) = 994"
errors.

Anyone know what the problem is?

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 178
Hi
Please update CWAF plugin to v2.24
Regards.

Offline forsec

  • Newbie
  • *
  • Posts: 7
Hi
Please update CWAF plugin to v2.24
Regards.

As the official update script doesn't work anymore, what is the recommended way to upgrade to v2.24 in this case?
Also, please note in https://waf.comodo.com/user/cwaf_revisions there is only v.2.23 and no v2.24.

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 178
v2.24 of CWAF plugin is available now.

Offline forsec

  • Newbie
  • *
  • Posts: 7
I can't upgrade...
su -c ' /usr/local/cwaf/scripts/updater.pl' -s /bin/sh nobody
does infinite
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
...

while downloading 2.24 cwaf_client_install.sh and running causes 100% cpu, so I checked with strace and found it doing infiinite
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.

Offline sbrazhnik

  • Newbie
  • *
  • Posts: 11
Hi forsec,

To update the cwaf client please use /usr/local/cwaf/scripts/update-client.pl. In case the issue still occurs, please try to remove the client with /usr/local/cwaf/scripts/uninstall_cwaf.sh and install the latest version with from scratch.

Once done. ensure that "cat /usr/local/cwaf/etc/version.dat" results with 2.24 version. Finally, run updater.pl once the client upgrade is done.

We look forward to hearing from you.

Regards,

Offline forsec

  • Newbie
  • *
  • Posts: 7
su -c ' /usr/local/cwaf/scripts/update-client.pl' -s /bin/sh nobody
results in infinite
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
...

/usr/local/cwaf/scripts/uninstall_cwaf.sh
results also in infinite
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.

How do I do a manual delete?

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 178
Hello forsec.
Please use
/usr/local/cwaf/scripts/update-client.pl

to update client to v2.24.1

Regards.

Offline forsec

  • Newbie
  • *
  • Posts: 7
Like I replied many times, as my current client is version 2.23 with the bug.
If I run /usr/local/cwaf/scripts/update-client.pl
I get infinite:
"Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250.
Use of uninitialized value within [at]httpd_config in pattern match (m//) at /usr/local/cwaf/modules/CPAN/lib/Comodo/CWAF/WebConfig.pm line 250."

The prior version update-client.pl fails and the new version install script also fails.

Please use
/usr/local/cwaf/scripts/update-client.pl

to update client to v2.24.1

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek