* modules/http/http_protocol.c (ap_byterange_filter): Refuse to
byterange any response which may require the consumption of arbitrary
amounts of memory.

PR: 29962
Reviewed by: jorton, trawick, niq


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@239378 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@239377 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@239264 13f79535-47bb-0310-9956-ffa450edef68

committed by Noirin Plunkett


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@239259 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@239218 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@234169 13f79535-47bb-0310-9956-ffa450edef68

move previously-accepted patch to appropriate section

let me plug a single-line patch:
  http://svn.apache.org/viewcvs?rev=178262&view=rev

(the surrounding function is the same in 2.0.x but that 
function is in a different file between branches, so the 
patch won't apply directly)



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@234035 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@233461 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@233357 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@233302 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231420 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231059 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231049 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231048 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231045 13f79535-47bb-0310-9956-ffa450edef68

which protects against bad stuff when mod_auth_ldap's check_user_id
hook doesn't complete or isn't called, but auth_checker is.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231033 13f79535-47bb-0310-9956-ffa450edef68

* modules/ldap/util_ldap.c (util_ldap_child_init): Don't segfault if
the cache has been disabled (when _cache_lock == NULL).
(util_ldap_post_config): Set mutex permissions if necessary.

Reviewed by: jorton, minfrin, wrowe


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@231006 13f79535-47bb-0310-9956-ffa450edef68

  Another patch, reviewed.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230773 13f79535-47bb-0310-9956-ffa450edef68

  A few other small patches; which serve only to make the httpd-2.0.x
  code entirely comparable to httpd-trunk.  This comparison calls out
  exactly what's changed "on purpose" with our proxy API, and what 
  patches have been applied to trunk which aren't backported.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230746 13f79535-47bb-0310-9956-ffa450edef68

  promote a patch to accepted, vote another

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230731 13f79535-47bb-0310-9956-ffa450edef68

  Remove the earlier discussion.  If folks want to play hand-me-a-rock, then
  here's a rockslide of 20 small rocks.  Votes please, let's fix these bugs
  already after 3 months of public disclosure..


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230730 13f79535-47bb-0310-9956-ffa450edef68

  Revert my commits 230595/230592, restoring Jeff's commit 171205.

  Taking this all to branches/proxy-reqbody-2.0.x/ for discussion.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230701 13f79535-47bb-0310-9956-ffa450edef68

  Prevent commits to httpd/ from recursing into repos/asf/apr, and 
  clean up ?zlib ?openssl svn output for win32 users who bury such 
  things into srclib/.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230699 13f79535-47bb-0310-9956-ffa450edef68

  Clarify after the revert of the original backport; a number of
  concerns addressed to hopefully sync mod_proxy_http.c to trunk
  for request handling.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230595 13f79535-47bb-0310-9956-ffa450edef68

  As much as it pains me, seriously, it seems that reviewing the re-backport
  of this code was too illegible for review, so it seems we will need to
  re-review a fresh backport from httpd trunk.  

  Vetoed this patch as it does not follow RFC 2616.  Specifically;

   * it does not respect the T-E over the C-L header

   * it introduces edge cases that allow the administrator to override the
     C-L T-E elections, without enough information to prevent splitting the
     request body due to misaligned C-L's

   * it does not attempt to determine if there is a 'small request body'
     to prefer a legitimate C-L when that option might be available to us

  A revised patch combining Jeff's efforts and mine is available at:

    http://people.apache.org/~wrowe/httpd-2.0.54-proxy-request.patch

  for review, which can be applied to httpd-2.0.54 and now, branches/2.0.x,
  which addresses all of the issues cited above.

  Note that I do not consider the correction of protocol.c to strip the C-L
  where T-E is present to fulfill the need for a correct implementation
  in proxy_http.c; modules have too much flexibility to modify the headers
  before they hit this logic in the proxy request body handling.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230592 13f79535-47bb-0310-9956-ffa450edef68

* modules/ldap/util_ldap_cache.c (util_ldap_cache_init): Use the
actual available size of the shm segment not the requested size.
Ensure the requested size is aligned.  Check errors from apr_rmm_init.

Reviewed by: jorton, minfrin, bnicholes


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230474 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230472 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@230455 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227521 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227435 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227423 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227422 13f79535-47bb-0310-9956-ffa450edef68

Translation into Spanish of the Authentication, Authorization and Access Control tutorial.
Translation made by Gustavo Nerea (informatica.gustavo @ gmail.com)
Translation reviewed by Jesus Blanco (blanco @ bitrock.com)



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227421 13f79535-47bb-0310-9956-ffa450edef68

* modules/ldap/util_ldap_cache_mgr.c (util_ald_cache_insert): Fix a
cache corruption case: ensure that there is room in the cache for a
copy of the payload before inserting the node.

PR: 34209
Reviewed by: jorton, bnicholes, minfrin


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227332 13f79535-47bb-0310-9956-ffa450edef68

* server/log.c (piped_log_spawn): Return the APR error code,
as expected by piped_log_maintenance (and fixing "Unknown
error" messages in error path there).
(ap_open_piped_log): Expect an APR error code.

* server/log.c (ap_open_piped_log): Remove errno handling.

* server/log.c (piped_log_spawn): Don't leak an fd for each
invocation.

Reviewed by: jorton, trawick, wrowe


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227329 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227269 13f79535-47bb-0310-9956-ffa450edef68

connection timeout on the connection, not globally, avoiding segfaults
in older version of OpenLDAP (ITS #3487).

Submitted by: Brad Nicholes
Reviewed by: jorton, wrowe


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227253 13f79535-47bb-0310-9956-ffa450edef68

- propose two more mod_ldap fixes


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227213 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@227040 13f79535-47bb-0310-9956-ffa450edef68

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@225786 13f79535-47bb-0310-9956-ffa450edef68