Commits · 7e2cd6c76092bc44e3de4d7bcbd7457b925c8558 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP Apache Httpd

Jul 24, 2010
- remove CHANGES entry of change reverted as part of r964156 · 7e2cd6c7
  Stefan Fritsch authored Jul 24, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@978938 13f79535-47bb-0310-9956-ffa450edef68
```
  7e2cd6c7
- Merge mod_dir fixups to avoid possible ordering issues noted by trawick · c26d5ac0
  Nick Kew authored Jul 24, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@978903 13f79535-47bb-0310-9956-ffa450edef68
```
  c26d5ac0
Jul 23, 2010

expose subprocess_env on lua request object · 7b62ce61

Brian McCallister authored Jul 23, 2010

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@967143 13f79535-47bb-0310-9956-ffa450edef68

7b62ce61

r966869 required mmn bump · 88745a45

Nick Kew authored Jul 23, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966997 13f79535-47bb-0310-9956-ffa450edef68

88745a45

Jul 22, 2010

Removed obsolete include paths from NetWare makefiles. · f10bed11

Guenter Knauf authored Jul 22, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966904 13f79535-47bb-0310-9956-ffa450edef68

f10bed11

Use temp_pool not pool for a string that's a temp · d83d6a32

Nick Kew authored Jul 22, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966892 13f79535-47bb-0310-9956-ffa450edef68

d83d6a32

Update documentation for AddOutputFilterByType move · 6853c526

Nick Kew authored Jul 22, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966890 13f79535-47bb-0310-9956-ffa450edef68

6853c526

Support multiple names in reimplemented AddOutputFilterByType · 5f33037a

Nick Kew authored Jul 22, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966881 13f79535-47bb-0310-9956-ffa450edef68

5f33037a

Move AddOutputFilterByType implementation from core to mod_filter. · 4f9a6491
Nick Kew authored Jul 22, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966869 13f79535-47bb-0310-9956-ffa450edef68
```
4f9a6491
Removed compiler switch -relax_pointers since no longer needed. · 4a008909
Guenter Knauf authored Jul 22, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966808 13f79535-47bb-0310-9956-ffa450edef68
```
4a008909

Jul 21, 2010

CVE-2010-1452: Fix handling of missing path segments in the parsed URI structure. · da187a4b

Paul Querna authored Jul 21, 2010

If a specially crafted request was sent, it is possible to crash mod_dav, 
mod_cache or mod_session, as they accessed a field that is set to NULL
by the URI parser, assuming that it always put in a valid string.

PR: 49246
Submitted by: Mark Drayton
Patch by: Jeff Trawick


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966348 13f79535-47bb-0310-9956-ffa450edef68

da187a4b

Rebuild new example. · 74c25cb2

Richard Bowen authored Jul 21, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966347 13f79535-47bb-0310-9956-ffa450edef68

74c25cb2

Fixes a non-working example in the int RewriteMap section. · 63203579

Richard Bowen authored Jul 21, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966346 13f79535-47bb-0310-9956-ffa450edef68

63203579

Update SSL cipher suite and add example for SSLHonorCipherOrder. · b5346589
Rainer Jung authored Jul 21, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966160 13f79535-47bb-0310-9956-ffa450edef68
```
b5346589

Fix omission in r894036 noted by rpluem. · 793a6041

Nick Kew authored Jul 21, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966059 13f79535-47bb-0310-9956-ffa450edef68

793a6041

Jul 20, 2010

Fix up some SSL configuration, per issue #49484. IE6 had a hotfix released · 9da40b08

Greg Stein authored Jul 20, 2010

for this problem quite a while back (see kb 921090), so restrict the
modified behavior to the old/unsupported browsers.

* docs/conf/extra/http-ssl.conf.in:
  (): tighten up the regex to only select old MSIE browsers for the
    downgrade in http behavior. this allows IE6 to run much faster.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@966055 13f79535-47bb-0310-9956-ffa450edef68

9da40b08

Fix processing of long chunk extensions · a08f27d2

Nick Kew authored Jul 20, 2010

PR 49474


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965824 13f79535-47bb-0310-9956-ffa450edef68

a08f27d2

Replace "back-slash" with "backslash" in docs. · 16036016

Rainer Jung authored Jul 20, 2010

I kept "back slash" when explicitely used in
comparison with "forward slash".


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965792 13f79535-47bb-0310-9956-ffa450edef68

16036016

Trivial spelling fix so I can close · 70bcaf76

Nick Kew authored Jul 20, 2010

PR 44195


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965712 13f79535-47bb-0310-9956-ffa450edef68

70bcaf76

Don't risk segfault in authz if r->user is not set · a5abf28d

Nick Kew authored Jul 20, 2010

PR 42995


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965709 13f79535-47bb-0310-9956-ffa450edef68

a5abf28d

Jul 19, 2010

Enable SetEnv to set PATH · 6b10a3a3

Nick Kew authored Jul 19, 2010

PR 43906


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965679 13f79535-47bb-0310-9956-ffa450edef68

6b10a3a3

mod_include: recognise "text/html; parameters" as text/html · e648036f

Nick Kew authored Jul 19, 2010

PR 49616
diagnosed by Andrey Chernov


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965582 13f79535-47bb-0310-9956-ffa450edef68

e648036f

Add ap_find_module_short_name() to quickly get the module short name · feb3d3aa

Stefan Fritsch authored Jul 19, 2010

(i.e. symbol name with trailing "_module" removed) from the module_index.
To be used for logging.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965408 13f79535-47bb-0310-9956-ffa450edef68

feb3d3aa

Added mod_authn_socache to NetWare build. · a1cedb1f

Guenter Knauf authored Jul 19, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965329 13f79535-47bb-0310-9956-ffa450edef68

a1cedb1f

Jul 18, 2010

Added http_config.h to make APLOG_USE_MODULE macro visible. · 23195805
Guenter Knauf authored Jul 18, 2010
```
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965325 13f79535-47bb-0310-9956-ffa450edef68
```
23195805

Added casts to make strict compilers happy. · fef5e83d

Guenter Knauf authored Jul 18, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965314 13f79535-47bb-0310-9956-ffa450edef68

fef5e83d

fixed const for d2i_ASN1_type_bytes() usage. · ab449d7e

Guenter Knauf authored Jul 18, 2010

Not sure if 0.9.8 is correct, but checked that 0.9.7m doesnt have const.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965311 13f79535-47bb-0310-9956-ffa450edef68

ab449d7e

note some work in progress · 99f9552a

Stefan Fritsch authored Jul 18, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965241 13f79535-47bb-0310-9956-ffa450edef68

99f9552a

Jul 17, 2010

Updates. · b58b2453

Lucien Gentis authored Jul 17, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@965096 13f79535-47bb-0310-9956-ffa450edef68

b58b2453

Jul 15, 2010

note prelim plan · d8895e01

Jim Jagielski authored Jul 15, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964408 13f79535-47bb-0310-9956-ffa450edef68

d8895e01

Jul 14, 2010

Add CHANGES entry for r964156 · 4219e278

Stefan Fritsch authored Jul 14, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964173 13f79535-47bb-0310-9956-ffa450edef68

4219e278

Add some open issues · 500d95c9

Stefan Fritsch authored Jul 14, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964171 13f79535-47bb-0310-9956-ffa450edef68

500d95c9

fix log messages · 31c70e1e

Stefan Fritsch authored Jul 14, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964161 13f79535-47bb-0310-9956-ffa450edef68

31c70e1e

The approach for allowing authorization by user or IP introduced in r956387, · cf618538

Stefan Fritsch authored Jul 14, 2010

etc. causes problems because the authentication module calls
note_*_auth_failure if authentication fails. This is inappropriate if access is
later allowed because of the IP.

So, instead of calling the auth_checker hook even if authentication failed, we
introduce a new access_checker_ex hook that runs between the access_checker and
the check_user_id hooks. If an access_checker_ex functions returns OK, the
request will be allowed without authentication.

To make use of this, change mod_authz_core to walk the require blocks in the
access_checker_ex phase and deny/allow the request if the authz result does not
depend on an authenticated user. To distinguish a real AUTHZ_DENIED from an
authz provider from an authz provider needing an authenticated user, the latter
must return the new AUTHZ_DENIED_NO_USER code.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964156 13f79535-47bb-0310-9956-ffa450edef68

cf618538

Allow for modules to keep track of worker slot · d5bb8744

Jim Jagielski authored Jul 14, 2010

numbers themselves if they want, by allowing for
worker create/alloc functions to take a slot number id.
Done via _wid() variants of 3 proxy funcs.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964089 13f79535-47bb-0310-9956-ffa450edef68

d5bb8744

Jul 13, 2010

- add some trace logging · 493b3b34

Stefan Fritsch authored Jul 13, 2010

- move comment to correct location
- redirect temporarily instead of permanently to avoid potential problems
  with browser caches


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@963860 13f79535-47bb-0310-9956-ffa450edef68

493b3b34

Jul 11, 2010

whitespace only · b7afa08e

Eric Covener authored Jul 11, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@963084 13f79535-47bb-0310-9956-ffa450edef68

b7afa08e

Improve trace logging of sent response: · cf199a1d

Stefan Fritsch authored Jul 11, 2010

- log response status
- log Date and Server headers


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@963057 13f79535-47bb-0310-9956-ffa450edef68

cf199a1d

follow up to r930125 · b27a24f3

Jeff Trawick authored Jul 11, 2010

change log message when forcing worker into error state:
* APLOG_ERR instead of unsuppressible APLOG_NOTICE
* follow formatting of existing proxy messages more closely


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@962972 13f79535-47bb-0310-9956-ffa450edef68

b27a24f3

generated docs · c68811e3

Jeff Trawick authored Jul 11, 2010


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@962961 13f79535-47bb-0310-9956-ffa450edef68

c68811e3