Skip to content
  1. Oct 15, 2016
  2. Oct 14, 2016
    • William A. Rowe Jr's avatar
      · 7454dbad
      William A. Rowe Jr authored
      Dropped the never-released ap_has_cntrls() as it had very limited 
      and inefficient application at that, added ap_scan_vchar_obstext()
      to accomplish a similar purpose.
      
      Dropped HttpProtocolOptions StrictURL option, this will be better
      handled in the future with a specific directive and perhaps multiple
      levels of scrutiny, use ap_scan_vchar_obstext() to simply ensure there
      are no control characters or whitespace within the URI.
      
      Changed the scanning of the response header table by check_headers()
      to follow the same rulesets as reading request headers. Disallow any
      CTL character within a response header value, and any CTL or whitespace
      in response header field name, even in strict mode.
      
      Apply HttpProtocolOptions Strict to chunk header parsing, invalid
      whitespace is invalid, line termination must follow CRLF convention.
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1764961 13f79535-47bb-0310-9956-ffa450edef68
      7454dbad
  3. Oct 11, 2016
  4. Oct 10, 2016
  5. Oct 09, 2016
  6. Oct 08, 2016
  7. Oct 07, 2016
  8. Oct 06, 2016
  9. Oct 04, 2016
  10. Oct 03, 2016
  11. Oct 01, 2016
  12. Sep 29, 2016
  13. Sep 28, 2016
  14. Sep 27, 2016