Skip to content
  1. Jul 15, 2014
  2. Jul 14, 2014
  3. Jul 12, 2014
    • Jeff Trawick's avatar
      Merge r1597349,1598107,1603915,1605827,1605829 from trunk: · 4bb992d5
      Jeff Trawick authored
      mod_ssl: Fix tmp DH parameter leak, adjust selection to prefer
      larger keys and support up to 8192-bit keys.
      
      Submitted by: rpluem, jorton
      Reviewed by: ylavic, kbrand
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1610014 13f79535-47bb-0310-9956-ffa450edef68
      4bb992d5
    • Jeff Trawick's avatar
      Merge r1602338 from trunk: · 8b956c42
      Jeff Trawick authored
      Fix PR 56480: PROPFIND walker doesn't encode hrefs properly
      
      Reverts r1529559 partially (specifically the dav_xml_escape_uri) bit.
      Reverts r1531505 entirely.
      
      * modules/dav/main/mod_dav.c
        (dav_xml_escape_uri): Revert the piece of r1529559 that removes the URI
          escaping from this function.
      
      * modules/dav/main/props.c
        (dav_do_prop_subreq): Escape the URI before doing a sub request with it.
          This resolves some properties like getcontenttype from failing to be
          returned for files that contain characters that require encoding in their
          path.
      
      * modules/dav/main/mod_dav.h
        (dav_resource): Note the inconsistency in the documentation.
      
      * modules/dav/fs/repos.c
        (dav_fs_get_resource): Don't use the unparsed_uri to set the uri field of
          the resource.  This is the correct fix for the double encoding in mod_dav_fs
          that led to the dav_xml_escape_uri() change and r1531505.
        (dav_fs_walker, dav_fs_append_uri): Revert r1531505 changes.
      
      Submitted by: breser
      Reviewed by: ylavic, covener
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1610013 13f79535-47bb-0310-9956-ffa450edef68
      8b956c42
  4. Jul 08, 2014
  5. Jun 26, 2014
  6. Jun 25, 2014
  7. Jun 21, 2014
    • Yann Ylavic's avatar
      Merge r1572092 from trunk: · b28d15c9
      Yann Ylavic authored
      mod_deflate: fix decompression of files larger than 4GB. According to RFC1952,
      Input SIZE (compLen) contains the size of the original input data modulo 2^32.
      
      PR: 56062
      Submitted by: Lukas Bezdicka
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1604460 13f79535-47bb-0310-9956-ffa450edef68
      b28d15c9
    • Yann Ylavic's avatar
      Merge r1572655, r1572663, r1572668, r1572669, r1572670, r1572671, r1573224,... · e14a33bd
      Yann Ylavic authored
      Merge r1572655, r1572663, r1572668, r1572669, r1572670, r1572671, r1573224, r1586745, r1587594, r1587639, r1590509 from trunk.
      
      
      Commit 1 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Handle Zlib header buffering in the inflate output filter :
      - add the new deflate_ctx_t fields needed to re-enter the Zlib header parsing,
      - introduce the new consume_zlib_flags() function to parse/consume the ZLib flags (will be used by the other filters too),
      - use it to handle incomplete header in the output filter (deflate).
      
      This alone fixes PR 55666, but the issue remains for PR 46146 (inflate/deflate input filters), hence the following patches.
      
      
      Commit 2 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Handle Zlib header buffering in the inflate input filter :
      - loop until all the header is received,
      - handle non blocking reads returning empty brigade,
      - fix a double ap_get_brigade() when an EOS brigade is encountered while reading the header,
      - in that case and no data was received so far, don't return an error but SUCCESS with the EOS, otherwise fail,
      - don't remove the Content-Length and Content-MD5 headers until some data is read.
      
      Still does not handle Zlib flags for now, next commits.
      
      
      Commit 3 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Handle Zlib validation bytes buffering (CRC + length) in the inflate input filter :
      - use validation_buffer and validation_length as state,
      - loop until all the bytes are received.
      
      
      Commit 4 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Handle non blocking reads which would block in the inflate input filter (not an error).
      
      
      Commit 5 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Handle Zlib flags in the inflate input filter as in the output filter, using consume_zlib_flags().
      
      
      Commit 6 on 6 to fix reentrance (incomplete Zlib header or validation bytes) in mod_deflate's output and input filters.
      PR 46146 (patches from duplicated PR 55666)
      
      Ignore empty buckets and split buckets longer than INT_MAX (since zlib uses 32-bit ints only) in all filters.
      
      
      mod_deflate: when consuming zlibs flags, APR_INCOMPLETE implies no more bytes available.
      
      
      mod_deflate: update empty log tags.
      
      
      mod_deflate: Delay INFLATE input filter's self removal until all the buffered
                   buckets are out (including EOS). PR 46146.
      
      
      mod_deflate: Don't return gzip-ed data when reading FLUSH bucket in INFLATE
                   input filter, forward the FLUSH but keep reading should EOS/more
                   follow (should not happen, but mod_deflate won't fix it).
      
      
      mod_deflate: follow up to r1587639.
      Don't break the looped brigade when moving the FLUSH bucket to the returned bb
      and continue reading.
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1604458 13f79535-47bb-0310-9956-ffa450edef68
      e14a33bd
    • Jeff Trawick's avatar
      Merge r1573626 from trunk: · 826997dd
      Jeff Trawick authored
      mod_proxy: Allow reverse-proxy to be set via explicit handler.
      
      Submitted by: ryo takatsuki <ryotakatsuki gmail com>
      Reviewed by: ylavic, jim, mrumph
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1604378 13f79535-47bb-0310-9956-ffa450edef68
      826997dd
    • Jeff Trawick's avatar
      Merge r1601076 from trunk: · 9542b00d
      Jeff Trawick authored
      ab: support custom HTTP method with -m argument.
      
      PR: 56604
      Submitted by: Roman Jurkov <winfinit gmail.com>
      Reviewed by: ylavic, trawick, covener
      
      (r1601680 and r1601700 not reflected in mergeinfo due to
      a collision with an unrelated trunk change)
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1604373 13f79535-47bb-0310-9956-ffa450edef68
      9542b00d
    • Daniel Gruno's avatar
    • Daniel Gruno's avatar
      mod_lua: Sync 2.4.x with trunk (more or less); Backport a fix and some code harmonization: · 5d518594
      Daniel Gruno authored
      - IVM changed to use shm
      - More verbose error logging (no functional change)
      - Miscellaneous refactoring that was in trunk but not in 2.4.x (no functional change as such)
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1604339 13f79535-47bb-0310-9956-ffa450edef68
      5d518594
  8. Jun 17, 2014
    • Jim Jagielski's avatar
      Merge r1572905, r1595305, r1597182, r1586827, r1534892, r1563193, r1597639 from trunk: · db4b2bfa
      Jim Jagielski authored
      core: avoid a double apr_time_now() call on the first succeeding read.
      
      * Correctly escape user provided data.
      
      PR: 56532
      Submitted by: Maksymilian <max cert.cx>
      Reviewed by: rpluem
      
      
      Save a few bytes of memory. This can be done in temp_pool.
      
      Fix layout
      
      don't pass uninitialized rv passed to ap_log_rerror()
        (rv wasn't interesting / follow an existing example)
      
      stop throwing away a pointer on the heap
      
      (clang scan-build)
      
      
      add the URI to DEBUG message 00765 (and drop an exclamation point):
      
        Cache provider's store_body failed!
      
      
      
      Doxygen fix + reorg to match how other header files are built
      Submitted by: ylavic, rpluem, jailletc36, jailletc36, trawick, covener, jailletc36
      Reviewed/backported by: jim
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1603141 13f79535-47bb-0310-9956-ffa450edef68
      db4b2bfa
  9. Jun 10, 2014