Skip to content
  1. Oct 23, 2016
  2. Oct 22, 2016
  3. Oct 21, 2016
  4. Oct 20, 2016
  5. Oct 18, 2016
  6. Oct 17, 2016
  7. Oct 16, 2016
  8. Oct 15, 2016
  9. Oct 14, 2016
    • William A. Rowe Jr's avatar
      · 7454dbad
      William A. Rowe Jr authored
      Dropped the never-released ap_has_cntrls() as it had very limited 
      and inefficient application at that, added ap_scan_vchar_obstext()
      to accomplish a similar purpose.
      
      Dropped HttpProtocolOptions StrictURL option, this will be better
      handled in the future with a specific directive and perhaps multiple
      levels of scrutiny, use ap_scan_vchar_obstext() to simply ensure there
      are no control characters or whitespace within the URI.
      
      Changed the scanning of the response header table by check_headers()
      to follow the same rulesets as reading request headers. Disallow any
      CTL character within a response header value, and any CTL or whitespace
      in response header field name, even in strict mode.
      
      Apply HttpProtocolOptions Strict to chunk header parsing, invalid
      whitespace is invalid, line termination must follow CRLF convention.
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1764961 13f79535-47bb-0310-9956-ffa450edef68
      7454dbad
  10. Oct 11, 2016
  11. Oct 10, 2016
  12. Oct 09, 2016
  13. Oct 08, 2016