[MINOR] http-auth: last fix was wrong I'm not sure if the fix is correct: - if (req_acl->cond) - ret = acl_exec_cond(req_acl->cond, px, s, txn, ACL_DIR_REQ); + if (!req_acl->cond) + continue; Doesn't it ignore rules with no condition attached? I think that the proper solution would be the following.

commit: 711ad9eb270c0f9151f94c667b7506733f5e3d65 [log] [tgz]
author: Krzysztof Olędzki <ole@ans.pl> Mon Feb 01 12:36:53 2010 +0100
committer: Willy Tarreau <w@1wt.eu> Mon Feb 01 12:54:32 2010 +0100
tree: b650b285b38105be91127773b451f176510476a5
parent: 9cc670f7d9b5e982cc046772c2eb080df1fb542f [diff]
diff --git a/src/proto_http.c b/src/proto_http.c
index 692bb9f..b4ec788 100644
--- a/src/proto_http.c
+++ b/src/proto_http.c

@@ -2862,13 +2862,13 @@
 			continue;
 
 		/* check condition, but only if attached */
-		if (!req_acl->cond)
-			continue;
+		if (req_acl->cond) {
+			ret = acl_exec_cond(req_acl->cond, px, s, txn, ACL_DIR_REQ);
+			ret = acl_pass(ret);
 
-		ret = acl_exec_cond(req_acl->cond, px, s, txn, ACL_DIR_REQ);
-		ret = acl_pass(ret);
-		if (req_acl->cond->pol == ACL_COND_UNLESS)
-			ret = !ret;
+			if (req_acl->cond->pol == ACL_COND_UNLESS)
+				ret = !ret;
+		}
 
 		if (ret) {
 			req_acl_final = req_acl;
commit	711ad9eb270c0f9151f94c667b7506733f5e3d65	[log] [tgz]
author	Krzysztof Olędzki <ole@ans.pl>	Mon Feb 01 12:36:53 2010 +0100
committer	Willy Tarreau <w@1wt.eu>	Mon Feb 01 12:54:32 2010 +0100
tree	b650b285b38105be91127773b451f176510476a5
parent	9cc670f7d9b5e982cc046772c2eb080df1fb542f [diff]