- Dec 11, 2012
-
-
Rainer Jung authored
- Move many common code parts into separate source file. This adds some of htpasswd's recent improvements to htdbm. - Rework salt generation to use the full 48bit of entropy for MD5 Previously, it would only generate 2^32 different salts on a given platform. - Use apr_getopt(). Submitted by: sf Backport of r1395253 from trunk. Add passwd_common.c build support for Windows and Netware Submitted by: sf Backport of r1395254 from trunk. Add support for bcrypt (requires apr-util 1.5 or higher). PR: 49288 Submitted by: sf Backport of r1395255 from trunk. Optionally read passwords from stdin as more secure alternative to -b. PR: 40243 Submitted by: Adomas Paltanavicius <adomas paltanavicius gmail com>, sf Backport of r1395256 from trunk. Submitted by: Adomas Paltanavicius <adomas paltanavicius gmail com>, sf Removed __func__ usage which is c99. Submitted by: sf Backport of r1395792 from trunk. All of the above backported by: sf All of the above reviewed by: sf, gsmith, rjung fix unresolved external symbol __imp__UuidCreate error Submitted by: gsmith Backported by: gsmith Reviewed by: gsmith, rjung Backport of r1419084 from trunk. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1420084 13f79535-47bb-0310-9956-ffa450edef68
-
Rainer Jung authored
AuthFormLoginRequiredLocation, AuthFormLoginSuccessLocation and AuthFormLogoutLocation directives. mod_auth_form: Make sure 500 Internal Server Error is returned should an error occur while parsing an expression. Submitted by: minfrin Backported by: minfrin Reviewed by: minfrin, sf, rjung Backports of r1388648 and r1418721 from trunk. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1420071 13f79535-47bb-0310-9956-ffa450edef68
-
Rainer Jung authored
for TLS, RFC 5054). Including some improvements as suggested by Kaspar PR: 51075 Submitted by: Quinn Slack <sqs cs stanford edu>, Christophe Renou, Peter Sylvester Backported by: sf Reviewed by: sf, minfrin, rjung Backports of r1347980 and r1348653 form trunk. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1420057 13f79535-47bb-0310-9956-ffa450edef68
-
- Dec 09, 2012
-
-
Stefan Fritsch authored
* mod_rewrite: PR53963: Ad an opt-in RewriteOption to control merging of RewriteBase (This merge started happening in 2.4.0/2.2.23) Submitted by: covener Reviewed by: covener, minfrin, sf git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1418954 13f79535-47bb-0310-9956-ffa450edef68
-
Stefan Fritsch authored
various mods: host and URI escaping: Be sure to escape potential troubled strings add missing html escaping Submitted by: jim, sf Reviewed by: covener, minfrin, sf git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1418941 13f79535-47bb-0310-9956-ffa450edef68
-
Stefan Fritsch authored
Allow for exposure of loadavg and server load via mod_headers Might as well show 'em all Document new mod_headers params: %l, %i, %b Submitted by: jim Reviewed by: jailletc36, druggeri, minfrin git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1418937 13f79535-47bb-0310-9956-ffa450edef68
-
Stefan Fritsch authored
Make ap_regcomp() return AP_REG_ESPACE if out of memory. Make ap_pregcomp() abort if out of memory. This raises the minimum PCRE requirement to version 6.0, released in 2005. Reviewed by: jim, sf, minfrin git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1418930 13f79535-47bb-0310-9956-ffa450edef68
-
- Dec 06, 2012
-
-
Jim Jagielski authored
Allow for setting of sticky session split char... Bugz 53893 Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1417892 13f79535-47bb-0310-9956-ffa450edef68
-
- Dec 04, 2012
-
-
https://svn.apache.org/repos/asf/httpd/httpd/trunk/Eric Covener authored
mod_dumpio: Correctly log large messages + style issues PR 54179 Submitted by: Marek Wianecki Reviewed by: jailletc36, sf, druggeri git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416749 13f79535-47bb-0310-9956-ffa450edef68
-
https://svn.apache.org/repos/asf/httpd/httpd/trunk/Eric Covener authored
PR54223: 2.4 generates AH00554 when Include points to a directory with no wildcard. r931435 refactored ap_process_resource_config() so it didn't read through directories, but also changed a path non-fnmatch directories are passed through to call ap_process_resource_config(). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416747 13f79535-47bb-0310-9956-ffa450edef68
-
https://svn.apache.org/repos/asf/httpd/httpd/trunk/Eric Covener authored
PR54222: catch invalid ServerTokens args Submitted by: Jackie Zhang <jackie.qq.zhang gmail.com> Reviewed/modified by: covener Sort error message for ServerTokens by increasing verbosity. Add missing 'OS' variant. Remove some trailing whitespace. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416746 13f79535-47bb-0310-9956-ffa450edef68
-
- Dec 03, 2012
-
-
Stefan Fritsch authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416669 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
Don't log a spurious "-" if a request has been rejected before mod_log_forensic could attach its id to it. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693292 Submitted by: sf Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416584 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
mod_session_dbd: fix a segmentation fault in the function dbd_remove. The segmentation fault is caused by an uninitialized function pointer session_dbd_acquire_fn. PR 53452 formatting: space vs tab Axed C++ comments. Submitted by: jailletc36, fuankg Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416583 13f79535-47bb-0310-9956-ffa450edef68
-
Joe Orton authored
* support/rotatelogs.c (post_rotate): Really omit the second arg when invoking a post-rotate program, rather than passing an empty arg. (Fixes to code match desired&documented behaviour.) Reviewed by: jorton, jim, sf git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1416406 13f79535-47bb-0310-9956-ffa450edef68
-
- Nov 15, 2012
-
-
Jim Jagielski authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1409924 13f79535-47bb-0310-9956-ffa450edef68
-
Joe Orton authored
followup to r1348036, MSSDK's WinLdap.h uses an enum for LDAP_* status codes, so the block is not included Submitted by: covener Reviewed by: covener, trawick, igalic git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1409773 13f79535-47bb-0310-9956-ffa450edef68
-
- Nov 13, 2012
-
-
Jim Jagielski authored
only write the first len chars to syslog, as the buffer may have additional text added speculatively Submitted by: trawick Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1408743 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
"Iterate" directives: Report an error if no arguments are provided. Submitted by: trawick Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1408742 13f79535-47bb-0310-9956-ffa450edef68
-
- Oct 22, 2012
-
-
Jim Jagielski authored
Change default for SSLCompression to off, as compression causes security issues in most setups Submitted by: sf Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1400962 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
Allow forced setting of TLS1.1 and TLS1.2 protocols with the -f command-line switch, and adapt the output to more accurately report what SSL/TLS protocol was negotiated (use SSL_get_version() instead of SSL_CIPHER_get_version()). PR: 53916 Submitted by: Nicolás Pernas Maradei <nico emutex com> Reviewed/amended by: Kaspar Brand Submitted by: kbrand Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1400946 13f79535-47bb-0310-9956-ffa450edef68
-
- Oct 04, 2012
-
-
Jim Jagielski authored
core: ErrorDocument now works for requests without a Host header. PR: 48357 Submitted by: trawick Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1394035 13f79535-47bb-0310-9956-ffa450edef68
-
- Oct 03, 2012
-
-
Joe Orton authored
* server/mpm/prefork/prefork.c (child_main): Don't log errors for an apr_pollset_add() failure if a graceful-stop has been signalled. follow up to r1387633: use the right exit code depending on the error scenario Submitted by: jorton, trawick Reviewed by: trawick, minfrin, jorton git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1393382 13f79535-47bb-0310-9956-ffa450edef68
-
- Oct 02, 2012
-
-
Graham Leggett authored
trunk patch: http://svn.apache.org/viewvc?view=revision&revision=1386576 http://svn.apache.org/viewvc?view=revision&revision=1386578 2.4.x patch: trunk patch works +1: jim, druggeri, minfrin git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1393199 13f79535-47bb-0310-9956-ffa450edef68
-
Graham Leggett authored
stale content because of a proxy error. PR 53539. Correction to r1361153. trunk patch: http://svn.apache.org/viewvc?view=revision&revision=1373447 2.4.x patch: trunk patch works. +1: rjung, jim, minfrin git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1393191 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 26, 2012
-
-
Jim Jagielski authored
Fix crash in packet dump code of mod_proxy_ajp when logging with LogLevel trace7 or trace8. PR 53730 Submitted by: rjung Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1390510 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 24, 2012
-
-
Jim Jagielski authored
Revert r1371878 -- default configuration changes that drop the DNT header from IE10. See: Message-ID: <CALK=YjMGPNHBqNiad-ghzcEzxDovQgYOpjpSSyXmN=r74v43qg@mail.gmail.com> PR 53845 Keep this in, but commented out: also provide a little more background/rationale. This, hopefully, satisfies both ends of the debate: we don't "assume" that everyone who uses this browser didn't make the specific choice, but we allow for admins who care about DNT and want to either 1. Make a statement 2. Force adherence to the standard to easily do so. Submitted by: covener, jim Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1389261 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
Apply the same length limit when logging Status header values as used when logging invalid header lines. Application of a limit on logged header data suggested by Jeff Trawick. Catch up change log with r1376695. Submitted by: chrisd Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1389260 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 21, 2012
-
-
Jim Jagielski authored
Avoid the overhead of creating and grabbing a uuid for the balancer nonce if we're never going to use it. Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1388549 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
* modules/ssl/ssl_engine_io.c (ssl_io_filter_handshake): Add a wildcard common name match. PR: 53006 Submitted by: jorton Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1388547 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 18, 2012
-
-
Guenter Knauf authored
which display information about the server configuration (backport r1374428). Submitted by: trawick Reviewed/backported by: gsmith, fuankg git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1386956 13f79535-47bb-0310-9956-ffa450edef68
-
- Aug 21, 2012
-
-
Jeff Trawick authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1375509 13f79535-47bb-0310-9956-ffa450edef68
-
- Aug 17, 2012
-
-
Jim Jagielski authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374367 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374364 13f79535-47bb-0310-9956-ffa450edef68
-
Joe Orton authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374300 13f79535-47bb-0310-9956-ffa450edef68
-
Joe Orton authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374264 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
*) mod_authnz_ldap: Don't try a potentially expensive nested groups search before exhausting all AuthLDAPGroupAttribute checks on the current group. PR52464 whitespace only: shift a block refactored in r1231255 over 8 spaces. Submitted by: covener Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374256 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374253 13f79535-47bb-0310-9956-ffa450edef68
-
Jim Jagielski authored
Add new directive LuaAuthzProvider to allow implementing an authorization provider in lua There is only one global provider name space, therefore allow LuaAuthzProvider only in global scope. Remove unnecessary server config field. Submitted by: sf Reviewed/backported by: jim git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1374252 13f79535-47bb-0310-9956-ffa450edef68
-
- Aug 15, 2012
-
-
Roy T. Fielding authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1373668 13f79535-47bb-0310-9956-ffa450edef68
-