Skip to content
GitLab
  1. 01 Nov, 2003 3 commits
  3. 30 Oct, 2003 1 commit
  5. 29 Oct, 2003 1 commit
  7. 26 Oct, 2003 1 commit
  9. 24 Oct, 2003 1 commit
  11. 23 Oct, 2003 2 commits
  13. 22 Oct, 2003 1 commit
  15. 15 Oct, 2003 2 commits
  17. 14 Oct, 2003 1 commit
  19. 11 Oct, 2003 2 commits
  21. 10 Oct, 2003 1 commit
  23. 02 Oct, 2003 1 commit
  25. 30 Sep, 2003 3 commits
  27. 29 Sep, 2003 2 commits
  29. 27 Sep, 2003 4 commits
  31. 25 Sep, 2003 1 commit
  33. 23 Sep, 2003 1 commit
    • Cliff Woolley's avatar
      The problem that this patch solves is one where cookie names are mis-identified · 86429387
      Cliff Woolley authored 
      by mod_usertrack. This is because of the use of strstr() in spot_cookie() the
original mod_usertrack.c to find the name of the cookie. strstr(), by virtue of
looking for a substring instead of an exact match, can mis-identify the cookie
"MyID" as the cookie "ID" or "My". So, if you were looking for the value of the
cookie "ID", but only the cookie "MyID" was returned by the browser,
mod_usertrack.c would return the value of the "MyID" cookie in place of the
"ID" you were looking for.

Even more seriously, because strstr is invoked before the cookie name is
separated from its cookie value, a cookie and value like
"myCookie=thisisnotIDeal" will be a false positive if you told mod_usertrack
the cookie name was ID. Furthermore, using this example, "eal" will get logged
as the value of the cookie; now that strstr has incorrectly identified the
substring "ID" as the cookie name, the following "e" (assumed to be the "="
sign) gets discarded, and the remaining content used as the value of
the cookie.

Replacing the strstr() with a more robust regex match fixes this problem.

PR:    16661
Submitted by:   Manni Wood <manniwood@planet-save.com>


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@101306 13f79535-47bb-0310-9956-ffa450edef68
      86429387
  35. 19 Sep, 2003 1 commit
  37. 17 Sep, 2003 1 commit
  39. 16 Sep, 2003 2 commits
  41. 15 Sep, 2003 1 commit
  43. 12 Sep, 2003 1 commit
    • Paul J. Reder's avatar
      · 1cc25263
      Paul J. Reder authored 
       This fixes the cache code so that responses can be cached if they have
 an Expires header but no Etag or Last-Modified headers. PR 23130.
 Submitted by: <bjorn@exoweb.net>
 Reviewed by: Paul J. Reder


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@101231 13f79535-47bb-0310-9956-ffa450edef68
      1cc25263
  45. 11 Sep, 2003 2 commits
    • Paul J. Reder's avatar
      · 21c59ded
      Paul J. Reder authored 
      Fix a couple of AIX xlc_r compiler issues in the cache code I previously
committed. [Paul J. Reder]


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@101221 13f79535-47bb-0310-9956-ffa450edef68
      21c59ded
    • Paul J. Reder's avatar
      · 5e0fe314
      Paul J. Reder authored 
        Modified the cache code to be header-location agnostic. Also
  fixed a number of other cache code bugs related to PR 15852.
  Includes a patch submitted by Sushma Rai <rsushma@novell.com>.
  This fixes mod_mem_cache but not mod_disk_cache yet so I'm not
  closing the PR since that is what they are using. [Paul J. Reder]


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@101218 13f79535-47bb-0310-9956-ffa450edef68
      5e0fe314
  47. 05 Sep, 2003 3 commits
  49. 03 Sep, 2003 1 commit