Commits · 6484de724e28aa4ef4830d86c640ae760139f184 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP Apache Httpd

14 Dec, 2007 2 commits

* This change was backported. · 6484de72

Ruediger Pluem authored Dec 14, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@604321 13f79535-47bb-0310-9956-ffa450edef68

6484de72

Add a note about double quoting a multihost LDAP URL. · 1c8f2142

Bradley Nicholes authored Dec 14, 2007

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@604224 13f79535-47bb-0310-9956-ffa450edef68

1c8f2142

13 Dec, 2007 1 commit

* Those are backported. · 61d49df1

Ruediger Pluem authored Dec 13, 2007

Pointed out by: Takashi Sato <serai lans-tv.com>


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@604000 13f79535-47bb-0310-9956-ffa450edef68

61d49df1

12 Dec, 2007 3 commits

* These have been backported. · 0ee819b5

Ruediger Pluem authored Dec 12, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603738 13f79535-47bb-0310-9956-ffa450edef68

0ee819b5

* Do not register connection_cleanup as cleanup for the conn->pool. In the past · 5dcbb62e

Ruediger Pluem authored Dec 12, 2007

it was needed to register connection_cleanup as a cleanup for the frontend
connection memory pool (c->pool) to ensure that connection returns into the
connection pool if the memory pool of the frontend connection memory pool
gets destroyed / cleared. Now we ensure explicitly the connection returns
to the connection pool once we finished handling the request.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603543 13f79535-47bb-0310-9956-ffa450edef68

5dcbb62e

* Fix another memory leak related to PR 44026. Now that we keep the connection · f37b6cb3

Ruediger Pluem authored Dec 12, 2007

data structure alive in the reslist, the live time of c->pool is too long.
r->pool has the correct live time since rp dies before r.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603502 13f79535-47bb-0310-9956-ffa450edef68

f37b6cb3

11 Dec, 2007 5 commits

http_protocol: Escape request method in 405 error reporting. · a1c853b8

Jeff Trawick authored Dec 11, 2007

This has no security impact since the browser cannot be tricked
into sending arbitrary method strings.

(words from jorton)


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603346 13f79535-47bb-0310-9956-ffa450edef68

a1c853b8

Fix CVE-2007-5000: · b7881ae8

Joe Orton authored Dec 11, 2007

* modules/mappers/mod_imagemap.c (menu_header): Fix
  cross-site-scripting issue by escaping the URI, and ensure that a
  charset parameter is sent in the content-type to prevent
  autodetection by broken browsers.

Reported by: JPCERT


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603282 13f79535-47bb-0310-9956-ffa450edef68

b7881ae8

Introduce --kill argument to ApacheMonitor for use by the · 018cc6a7

William A. Rowe Jr authored Dec 11, 2007

installer. This will permit the installation tool to remove
all running instances before attempting to remove the .exe.

Note that since the introduction of CriticalSections, our
compatibility with NT 4 was destroyed, and at this point that
is no loss (there are no more security updates to NT 4 ergo
it's not an OS we want connected to the internet, anyways).
The WTS api calls require 2000 or later, but I'm not wrapping
them since nobody notices the same issue with CriticalSections.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603238 13f79535-47bb-0310-9956-ffa450edef68

018cc6a7

* Use a separate subpool to manage the data for the socket and the connection · 55e811d2

Ruediger Pluem authored Dec 11, 2007

member of the proxy_conn_rec struct as we destroy this data more frequently
than other data in the proxy_conn_rec struct like hostname and addr (at least
in the case where we have keepalive connections that timed out and were
closed by the backend).
This fixes a memory leak with short lived and broken connections.

PR: 44026

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603237 13f79535-47bb-0310-9956-ffa450edef68

55e811d2

* Do not set filter context brigade to NULL (and thus need to recreate it each · 7481b1f5

Ruediger Pluem authored Dec 11, 2007

  time) but empty it (via APR_BRIGADE_PREPEND) and reuse it. 

Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@603227 13f79535-47bb-0310-9956-ffa450edef68

7481b1f5

10 Dec, 2007 2 commits
- Document the usage of ProxyIOBufferSize to extend the default AJP message length. · eb40b709
  Mladen Turk authored Dec 10, 2007
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602806 13f79535-47bb-0310-9956-ffa450edef68
```
  eb40b709
- Use 64K as maximum allowable AJP packet size · 3635ec52
  Mladen Turk authored Dec 10, 2007
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602795 13f79535-47bb-0310-9956-ffa450edef68
```
  3635ec52
09 Dec, 2007 7 commits

* Update transformation. · 061334f1

Ruediger Pluem authored Dec 09, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602740 13f79535-47bb-0310-9956-ffa450edef68

061334f1

* mod_substitute is no longer experimental. · 405a7cc5

Ruediger Pluem authored Dec 09, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602736 13f79535-47bb-0310-9956-ffa450edef68

405a7cc5

* Do not split the brigade if the flush bucket is the last bucket in the brigade. · 7d18f313

Ruediger Pluem authored Dec 09, 2007

PR: 23567
Submitted by: Stefan Fritsch <sf sfritsch.de>
Reviewed by: rpluem


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602735 13f79535-47bb-0310-9956-ffa450edef68

7d18f313

Make that two files that hadn't noticed the movement from experimental->filters · f66c8920
William A. Rowe Jr authored Dec 09, 2007
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602710 13f79535-47bb-0310-9956-ffa450edef68
```
f66c8920
One file hadn't noted the movement -> filters from experimental · 39434a1e
William A. Rowe Jr authored Dec 09, 2007
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602709 13f79535-47bb-0310-9956-ffa450edef68
```
39434a1e

* These one have been backported. · 073d0962

Ruediger Pluem authored Dec 09, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602682 13f79535-47bb-0310-9956-ffa450edef68

073d0962

Case statements should go on their own line. (No functional change.) · 5013947f

Justin Erenkrantz authored Dec 09, 2007

* modules/http/http_filters.c
  (ap_http_filter): Put case on its own line.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602657 13f79535-47bb-0310-9956-ffa450edef68

5013947f

08 Dec, 2007 7 commits

* Enable the proxy to keep connections persistent in the HTTPS case. · a4974b25

Ruediger Pluem authored Dec 08, 2007

Basicly the persistence is created by keeping the conn_rec structure
created for our backend connection (whether http or https) in the connection
pool. This required to adjust scoreboard.c in a way that its functions can
properly deal with a NULL scoreboard handle by ignoring the call or returning
an error code.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602542 13f79535-47bb-0310-9956-ffa450edef68

a4974b25

* s/MAX_BUCKETS/AP_MAX_BUCKETS/ to avoid namespace conflicts as pointed out · 1890be30

Ruediger Pluem authored Dec 08, 2007

  by jim. No functional change.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602533 13f79535-47bb-0310-9956-ffa450edef68

1890be30

* All these changes have been backported. · 32227f47

Ruediger Pluem authored Dec 08, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602509 13f79535-47bb-0310-9956-ffa450edef68

32227f47

Alternate fix... profiling indicates that the string · 1a5f917b

Jim Jagielski authored Dec 08, 2007

termination is completely unneeded and superflous. In
which case, the original allocation size is sufficient
since nothing external worries about a NULL nor
looks for it.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602491 13f79535-47bb-0310-9956-ffa450edef68

1a5f917b

* Optimize memory behaviour of mod_substitute by · f2c9c37d

Ruediger Pluem authored Dec 08, 2007

  * Precreate all needed brigades, save them in the filter context and reuse
    them in order to avoid frequent recreations using the request pool.

  * Use a temporary pool for all the needed copy stuff and clean it up every
    time we passed the passbb brigade down the chain. We can pass the
    brigade down the chain directly after we processed one bucket from the
    original brigade as buffering is done by the network filters.

  * Use transient instead of pool buckets.

  * There are cases that lead to the exceptional situation of a very large
    passbb bucket brigade (about 1,000,000 buckets) as a result of processing
    4 MB of a file. So I add a flush bucket once I have more than
    MAX_BUCKET (1000) buckets in the brigade and pass it down the chain to get
    it send and the passbb bucket brigade cleaned up and its memory reusable
    again.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602469 13f79535-47bb-0310-9956-ffa450edef68

f2c9c37d

readability tweak · 48daf982

Jeff Trawick authored Dec 08, 2007


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602456 13f79535-47bb-0310-9956-ffa450edef68

48daf982

* If no data is available at this point of time we need to switch into the · 6fe3c0df

Ruediger Pluem authored Dec 08, 2007

BODY_CHUNK_PART state like we do several lines later in the code in the
same situation.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@602349 13f79535-47bb-0310-9956-ffa450edef68

6fe3c0df

06 Dec, 2007 2 commits

Update transformations · ce936a15

Vincent Bray authored Dec 06, 2007

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@601635 13f79535-47bb-0310-9956-ffa450edef68

ce936a15

Various language fixes. · 94283b56

Vincent Bray authored Dec 06, 2007

Submitted by Lucien Gentis <lucien.gentis lorraine.iufm.fr>


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@601634 13f79535-47bb-0310-9956-ffa450edef68

94283b56

05 Dec, 2007 2 commits

Update transformations · 42024968

Vincent Bray authored Dec 05, 2007

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@601377 13f79535-47bb-0310-9956-ffa450edef68

42024968

'Bodys' typo · 2fc8bf2a

Vincent Bray authored Dec 05, 2007

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@601365 13f79535-47bb-0310-9956-ffa450edef68

2fc8bf2a

04 Dec, 2007 1 commit

* modules/ssl/ssl_engine_kernel.c (upgrade_connection): Calling · 722777de

Joe Orton authored Dec 04, 2007

SSL_renegotiate makes no sense here; remove copied comment. No
functional change.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@601003 13f79535-47bb-0310-9956-ffa450edef68

722777de

03 Dec, 2007 8 commits

Reflow ALL of 2.x trunk STATUS to the same indention (indent 4, · d793fc3c

William A. Rowe Jr authored Dec 03, 2007

with a hanging '*')


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@600651 13f79535-47bb-0310-9956-ffa450edef68

d793fc3c

http_protocol: Escape request method in 413 error reporting. · 295ecd1d

William A. Rowe Jr authored Dec 03, 2007

Determined to be not generally exploitable, but a flaw in any case.

PR: 44014
Submitted by: Victor Stinner <victor.stinner inl.fr>




git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@600645 13f79535-47bb-0310-9956-ffa450edef68

295ecd1d

* modules/ssl/ssl_util_ocsp.c: Fix spelling mistake in comment; no · 03a284f4