granicus.if.org Git - apache/log

]> granicus.if.org Git - apache/log

Rich Bowen [Mon, 19 Sep 2011 00:32:39 +0000 (00:32 +0000)]

Rebuild transformations.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172399 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Rich Bowen [Mon, 19 Sep 2011 00:19:24 +0000 (00:19 +0000)]

Nitpick - Be consistent with ending each format description with a fullstop.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172397 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Lucien Gentis [Sun, 18 Sep 2011 12:37:03 +0000 (12:37 +0000)]

Updates.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172274 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Sun, 18 Sep 2011 07:31:18 +0000 (07:31 +0000)]

Fix cut'n'paste error: ErrorLog -> ErrorLogFormat

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172208 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Rich Bowen [Sun, 18 Sep 2011 03:03:46 +0000 (03:03 +0000)]

Trying to make it slightly clearer that 'name' in these examples is a variable to be replaced.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172177 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Rich Bowen [Sun, 18 Sep 2011 02:54:33 +0000 (02:54 +0000)]

Altering the "somewhat similar" to default example to actually be the
default format.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172173 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Sat, 17 Sep 2011 17:01:15 +0000 (17:01 +0000)]

PR51371: cross-compile issues with cgi and apr_procattr_limit_*.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172019 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Daniel Ruggeri [Sat, 17 Sep 2011 16:25:17 +0000 (16:25 +0000)]

Log better information and prevent leak of an X509 structure for SSLProxyMachineCertificateChainFile

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172010 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sat, 17 Sep 2011 15:08:14 +0000 (15:08 +0000)]

* Correctly obey ServerName / ServerAlias if the Host header from the
request matches the VirtualHost address.

PR: 51709
Submitted by: Micha Lenk <micha lenk.info>
Reviewed by: rpluem

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1172002 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Guenter Knauf [Fri, 16 Sep 2011 23:20:01 +0000 (23:20 +0000)]

Fix cut'n'paste errors: APR_DECLARE -> AP_DECLARE / part2.

Submitted by: NormW <normw gknw.net>

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171850 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jeff Trawick [Fri, 16 Sep 2011 23:16:19 +0000 (23:16 +0000)]

fix spelling error in a couple of log messages

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171849 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Guenter Knauf [Fri, 16 Sep 2011 23:10:32 +0000 (23:10 +0000)]

Continue if the platform doesnt support file perms.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171847 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Fri, 16 Sep 2011 16:40:52 +0000 (16:40 +0000)]

Add comment that the check for empty brigade at the start of the function is
essential.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171655 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Fri, 16 Sep 2011 16:37:06 +0000 (16:37 +0000)]

Fix cut'n'paste errors: APR_DECLARE -> AP_DECLARE

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171652 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 21:07:32 +0000 (21:07 +0000)]

update xforms

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171274 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 21:03:59 +0000 (21:03 +0000)]

Un-deprecate AddOutputFilterByType and update docs. Its limitations have
been fixed by the move to mod_filter.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171273 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 20:49:56 +0000 (20:49 +0000)]

Implement AddOutputFilterByType by doing strcmp()s instead of creating
lots of ap_expr's. This is more efficient and fixes string escaping
issues in the old code.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171268 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 19:55:56 +0000 (19:55 +0000)]

replace non-threadsafe use of srand() and rand() with ap_random_pick()

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171251 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 19:55:27 +0000 (19:55 +0000)]

use random value as multipart range boundary to prevent leaking information
about the used MPM

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171250 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 19:54:37 +0000 (19:54 +0000)]

initialize counter with random number

PR: 45110

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171249 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 19:53:59 +0000 (19:53 +0000)]

Create wrapper API for apr_random;
use in mod_lbmethod_heartbeat and mod_serf to
- replace some needles use of apr_generate_random_bytes
- remove code duplication

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171247 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 15 Sep 2011 19:07:23 +0000 (19:07 +0000)]

- start definitive list of modules not to be included in 2.4
- mod_fcgid not a blocker
- install of beta on www.a.o done thanks to pquerna/infra

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171229 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Thu, 15 Sep 2011 12:56:34 +0000 (12:56 +0000)]

GA plan

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1171085 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Daniel Ruggeri [Wed, 14 Sep 2011 20:16:02 +0000 (20:16 +0000)]

Modify SSLProxyMachineCertificateChainFile to use X509 instead of X509_INFO and use openssl to construct the chain

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170833 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Wed, 14 Sep 2011 14:02:28 +0000 (14:02 +0000)]

Properly fill in the SSL_{CLIENT,SERVER}_V_{START,END} and
SSL_CLIENT_V_REMAIN variables for certs whose notBefore or
notAfter fields use GeneralizedTime encodings.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170631 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Wed, 14 Sep 2011 12:25:31 +0000 (12:25 +0000)]

ssl_callback_proxy_cert(): take advantage of ssl_log_cxerror()
when logging proxy client cert information

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170567 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Tue, 13 Sep 2011 20:39:44 +0000 (20:39 +0000)]

mention mod_deflate optimization; ap_expr is based on mod_ssl

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170338 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Tue, 13 Sep 2011 20:17:18 +0000 (20:17 +0000)]

Fix 'Content-Encoding: gzip' missing if the first brigade passed to
deflate_out_buffer contained zero data bytes but no EOS bucket.

Don't compress if the added headers and checksums are larger than
the data to compress (and we know the size of the data in advance).

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170330 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Tue, 13 Sep 2011 18:50:07 +0000 (18:50 +0000)]

xforms

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170297 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Tue, 13 Sep 2011 18:48:19 +0000 (18:48 +0000)]

Some more 2.4 goodness and notes

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170294 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Tue, 13 Sep 2011 18:07:29 +0000 (18:07 +0000)]

Xforms again post mod_proxy.xml update

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170275 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Tue, 13 Sep 2011 18:04:59 +0000 (18:04 +0000)]

List worker flags in a more useful manner and note Drain

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170273 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Tue, 13 Sep 2011 17:26:57 +0000 (17:26 +0000)]

Implement draining capability for proxy workers... only accept
sticky on these puppies.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1170256 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Mon, 12 Sep 2011 14:24:27 +0000 (14:24 +0000)]

Xforms changes... using SVN this time ;)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169762 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Rich Bowen [Mon, 12 Sep 2011 14:21:41 +0000 (14:21 +0000)]

Updates one of the "advanced" recipes and rewrites description.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169760 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Mon, 12 Sep 2011 14:15:53 +0000 (14:15 +0000)]

Add in MaxRangeOverlaps and MaxRangeReversals to accomodate
more control over acceptable Range headers:

See: http://trac.tools.ietf.org/wg/httpbis/trac/ticket/311

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169756 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Guenter Knauf [Mon, 12 Sep 2011 03:40:28 +0000 (03:40 +0000)]

Fixed MaxRanges config block.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169599 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

William A. Rowe Jr [Mon, 12 Sep 2011 02:14:35 +0000 (02:14 +0000)]

unixfy

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169594 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

William A. Rowe Jr [Mon, 12 Sep 2011 02:12:49 +0000 (02:12 +0000)]

RM warning text

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169593 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Lucien Gentis [Sun, 11 Sep 2011 18:43:59 +0000 (18:43 +0000)]

Updates.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1169496 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sat, 10 Sep 2011 20:37:10 +0000 (20:37 +0000)]

* Update xforms

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167603 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 17:44:37 +0000 (17:44 +0000)]

Save creation of merged until we know we will actually need and use it.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167310 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 17:44:31 +0000 (17:44 +0000)]

return some range params admins may want to control (overlaps and reversals)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167309 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 17:44:29 +0000 (17:44 +0000)]

Remove function so we can grab over core_conf elements easily

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167308 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 17:44:26 +0000 (17:44 +0000)]

Reorg so we don't need forward def...

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167307 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 16:04:03 +0000 (16:04 +0000)]

Update docco xforms

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167266 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 16:02:21 +0000 (16:02 +0000)]

Reset

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167264 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jim Jagielski [Fri, 9 Sep 2011 16:02:18 +0000 (16:02 +0000)]

No reason for the advanced def...
Open hook for other conf factors (number of overlaps, etc)...
Return some range params...

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167263 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

William A. Rowe Jr [Fri, 9 Sep 2011 13:29:18 +0000 (13:29 +0000)]

Reflect user-visible behavior change

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167156 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

William A. Rowe Jr [Fri, 9 Sep 2011 13:23:50 +0000 (13:23 +0000)]

Non-releases don't have user-visible regressions; now a contributor to the fix

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167151 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

William A. Rowe Jr [Fri, 9 Sep 2011 13:09:25 +0000 (13:09 +0000)]

What getpid()? No backport of this edit is needed.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1167147 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 18:26:54 +0000 (18:26 +0000)]

no termination of the loop in 1166823.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166839 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 17:37:46 +0000 (17:37 +0000)]

mod_ldap: Optional function uldap_ssl_supported(r) always returned false
if called from a virtual host with mod_ldap directives in it. Did not
affect mod_authnz_ldap's usage of mod_ldap. [Eric Covener]

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166823 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 13:10:22 +0000 (13:10 +0000)]

typo in comment

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166672 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 13:02:47 +0000 (13:02 +0000)]

Set Accept-Rangs: none instead of unsetting the Accept-Range header when we
have a filter that doesn't like byteranges.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166667 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 12:56:08 +0000 (12:56 +0000)]

refactor to pull setting of Accept-Ranges header into http_protocol.c which
had been copied to other handlers.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166663 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Thu, 8 Sep 2011 12:53:06 +0000 (12:53 +0000)]

The default timeout value of 10s lives in two places, the per-server config
and in this initialization. Drop the latter and check to see if a timeout
is requested in the per-server config.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166662 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jean-Frederic Clere [Thu, 8 Sep 2011 12:41:30 +0000 (12:41 +0000)]

Use HTTP_NOT_IMPLEMENTED instead of HTTP_BAD_REQUEST.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166657 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Jean-Frederic Clere [Thu, 8 Sep 2011 07:45:40 +0000 (07:45 +0000)]

AJP_EBAD_METHOD is also a bad request so return HTTP_BAD_REQUEST

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166551 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Wed, 7 Sep 2011 19:51:01 +0000 (19:51 +0000)]

add AP_ prefix to recently added DEFAULT_MAX_RANGES

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166349 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Wed, 7 Sep 2011 17:29:49 +0000 (17:29 +0000)]

take care of some MaxRanges feedback:
* allow "none" to be expressed in config
* send Accept-Ranges: none with MaxRanges none
* stop accepting confusing/ambiguous "0", start accepting "unlimited".

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166282 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Wed, 7 Sep 2011 13:47:07 +0000 (13:47 +0000)]

ssl_var_lookup_ssl_cert_dn_oneline(): properly deal with empty DNs
(BIO_read might return -1 in such a case)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1166181 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Tue, 6 Sep 2011 18:45:33 +0000 (18:45 +0000)]

bump SECURITY issue to top of in-development 2.3.15 section.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165779 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Joe Orton [Mon, 5 Sep 2011 12:59:07 +0000 (12:59 +0000)]

* modules/http/byterange_filter.c (ap_byterange_filter): Don't reveal
the pid in the boundary delimiter (part of CVE-2003-1418).

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165268 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Mon, 5 Sep 2011 08:23:01 +0000 (08:23 +0000)]

* Silence compiler warning

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165200 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Mon, 5 Sep 2011 08:13:47 +0000 (08:13 +0000)]

* Fix compiler warning by removing unused variable

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165198 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Mon, 5 Sep 2011 07:56:28 +0000 (07:56 +0000)]

update xforms

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165196 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Mon, 5 Sep 2011 07:44:23 +0000 (07:44 +0000)]

be explicit that REQUEST_URI is the path component only

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165192 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Sun, 4 Sep 2011 21:22:36 +0000 (21:22 +0000)]

be explicit that REQUEST_URI is the path component only
(like r->uri)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165114 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Sun, 4 Sep 2011 16:04:38 +0000 (16:04 +0000)]

Revert r1163833:

Send a 206 response for a "Range: bytes=0-" request, even if 200 would be
more efficient.

As discussed on list: Clients that use the 206 response to detect range
support are considered broken and should be fixed to use the Accept-Ranges
header instead.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165062 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Sun, 4 Sep 2011 16:03:38 +0000 (16:03 +0000)]

we might also see GeneralizedTimes in certs nowadays

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165060 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Sun, 4 Sep 2011 15:57:03 +0000 (15:57 +0000)]

Revamp CRL checking for client and remote servers:
- completely delegate CRL processing to OpenSSL
- introduce a new [Proxy]CARevocationCheck directive
- drop ssl_callback_SSLVerify_CRL from ssl_engine_kernel.c
- remove X509_STORE from modssl_ctx_t
- drop CRL store helper functions from ssl_util_ssl.c
- avoid sending "certificate_expired" SSL alerts to peers
when the nextUpdate field of a CRL is in the past

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1165056 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Guenter Knauf [Sat, 3 Sep 2011 13:18:09 +0000 (13:18 +0000)]

Added MaxRanges to httpd.conf.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1164861 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sat, 3 Sep 2011 09:50:21 +0000 (09:50 +0000)]

* Buckets of known length should be always splitable. So we don't need to care
about the APR_ENOTIMPL case.

Submitted by: jorton
Reviewed by: rpluem

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1164840 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Thu, 1 Sep 2011 10:25:45 +0000 (10:25 +0000)]

* Fix a regression in the CVE-2011-3192 byterange fix:
Range: bytes=-1

Resulted in the first two bytes delivered, not in the last one.

PR: 51748
Submitted by: low_priority <lowprio20 gmail.com>
Reviewed by: rpluem

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163985 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Thu, 1 Sep 2011 06:42:40 +0000 (06:42 +0000)]

Remove log message left over from debugging.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163920 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Thu, 1 Sep 2011 06:30:02 +0000 (06:30 +0000)]

* Fix error message

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163918 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Thu, 1 Sep 2011 06:25:57 +0000 (06:25 +0000)]

* Whitespace police. No functional change

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163917 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Thu, 1 Sep 2011 06:24:53 +0000 (06:24 +0000)]

* Ranges like --2 or -0 are invalid

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163916 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Wed, 31 Aug 2011 22:37:32 +0000 (22:37 +0000)]

Fix some RFC 2616 14.35.1 compliance issues:
- If there is at least one syntactically invalid byte-range-spec,
we must ignore the whole header.
- If all ranges are unsatisfiable, send 416.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163851 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Wed, 31 Aug 2011 21:37:38 +0000 (21:37 +0000)]

Send a 206 response for a "Range: bytes=0-" request, even if 200 would be more
efficient.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163833 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Tue, 30 Aug 2011 13:14:14 +0000 (13:14 +0000)]

* Silence compiler warning

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1163197 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Rich Bowen [Mon, 29 Aug 2011 18:32:36 +0000 (18:32 +0000)]

Typo correction.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162935 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Mon, 29 Aug 2011 15:49:56 +0000 (15:49 +0000)]

Remove some unused code that was included in r1162131 by accident or merge
error.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162878 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Mon, 29 Aug 2011 09:04:56 +0000 (09:04 +0000)]

* We don't need a copy of the original range as we don't change it. A pointer to it is sufficient

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162687 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Mon, 29 Aug 2011 07:51:29 +0000 (07:51 +0000)]

* Bit operators should be more efficient then the modulo operator (provided the compiler does not optimize on its own)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162669 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Mon, 29 Aug 2011 07:28:56 +0000 (07:28 +0000)]

Unset Content-Length if we call ap_pass_brigade several times

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162665 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Sun, 28 Aug 2011 20:43:14 +0000 (20:43 +0000)]

simple doc for MaxRanges.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162587 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Sun, 28 Aug 2011 20:35:07 +0000 (20:35 +0000)]

add MaxRanges directive institute a default limit of 200 (post-merge where
applicable) Ranges before returning the complete resource.

(minor mmn bump for core_dir_config addition)

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162584 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Sun, 28 Aug 2011 20:02:38 +0000 (20:02 +0000)]

Fix iteration over string

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162581 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Stefan Fritsch [Sun, 28 Aug 2011 19:45:21 +0000 (19:45 +0000)]

Every 32 ranges, pass the prepared ranges down the filter chain.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162579 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sun, 28 Aug 2011 17:52:44 +0000 (17:52 +0000)]

* Do a better estimation on how elements we should allocate:

  Preallocate the number of ranges as number of elements as this works good
  for well behaving clients which we assume to be the most cases, but do
  cut this at the arbitrary number of 100 to avoid too large preallocations.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162565 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sun, 28 Aug 2011 17:12:52 +0000 (17:12 +0000)]

* Silence compiler warning

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162560 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sun, 28 Aug 2011 17:12:14 +0000 (17:12 +0000)]

* Damm it. Missed another superflous whitespace.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162559 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sun, 28 Aug 2011 17:09:38 +0000 (17:09 +0000)]

* More style police. No functional changes

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162558 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Ruediger Pluem [Sun, 28 Aug 2011 17:08:35 +0000 (17:08 +0000)]

* Style police. No functional changes

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162556 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Sun, 28 Aug 2011 16:50:12 +0000 (16:50 +0000)]

Better safe than sorry: with OpenSSL 1.0, X509_STORE_CTX_get_current_cert()
may not always return a cert.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162553 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Kaspar Brand [Sun, 28 Aug 2011 16:34:50 +0000 (16:34 +0000)]

Fix the default OCSP responder timeout for client cert
validation - 10 µsec is a tad too aggressive.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162552 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Eric Covener [Sat, 27 Aug 2011 20:37:58 +0000 (20:37 +0000)]

merge some more adjacent ranges such as a-n,n+1-b, and
refactor/reduce the tests on the start/end positions.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162440 13f79535-47bb-0310-9956-ffa450edef68

commit | commitdiff | tree

Greg Ames [Sat, 27 Aug 2011 20:11:16 +0000 (20:11 +0000)]

reverting. got feedback that maybe we don't want to merge 4-5,1-2 into 1-5

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1162436 13f79535-47bb-0310-9956-ffa450edef68

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom