www/apache
1
0
Fork 0
mirror of https://github.com/apache/httpd.git synced 2025-08-07 04:02:58 +03:00
Code Activity
34,177 Commits 62 Branches 304 Tags
trunk
Commit Graph

26 Commits

Author SHA1 Message Date
Christophe Jaillet
9a2eca1ca1 Follow-up to r1922931. 
In set_cookie_name() and set_cookie_name2(), now that the empty 'name' argument is explicitly handled, the error message in check_string() can be simplified because the cookie name can't be empty anymore when this function is called.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1926188 13f79535-47bb-0310-9956-ffa450edef68
 2025-06-06 20:12:16 +00:00
Eric Covener
75facde270 mod_session_dbd: set_cookie_name: ensure correct format 
If args is an empty string, apr_strtok will return NULL and *last will never get set which results in a SIGSEGV in apr_isspace check

Submitted by: Thomas Meyer <thomas@m3y3r.de>

Github: closes #503


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1922931 13f79535-47bb-0310-9956-ffa450edef68
 2025-01-06 19:28:35 +00:00
Yann Ylavic
a83e9b4d71 mod_session: Introduce SessionExpiryUpdateInterval which allows to 
configure the session/cookie expiry's update interval. PR 57300.

Submitted by: Paul Spangler <paul.spangler ni.com>
Reviewed/Committed by: ylavic


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1709121 13f79535-47bb-0310-9956-ffa450edef68
 2015-10-16 22:36:17 +00:00
Yann Ylavic
cd7fdfee05 mod_session_dbd: follow up to r1687021. 
Move the new pool argument of dbd_load() first as the other functions in the
module (no functional change).
Suggested by: mrumph

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1687087 13f79535-47bb-0310-9956-ffa450edef68
 2015-06-23 15:38:13 +00:00
Yann Ylavic
4aa8d59e98 mod_session_dbd: follow up to r1686122. 
DBD entries should also have request lifetime.
Proposed by: Jacob Champion <jacob.champion ni.com>
Reviewed by: ylavic

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1687021 13f79535-47bb-0310-9956-ffa450edef68
 2015-06-23 10:54:15 +00:00
Nick Kew
ed50579d80 mod_session_dbd: Request Notes should have request lifetime. 
Patch by Jacob Champion at ni.com


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1686122 13f79535-47bb-0310-9956-ffa450edef68
 2015-06-17 23:09:36 +00:00
Yann Ylavic
c1d21475a6 mod_authn_dbd, mod_authz_dbd, mod_session_dbd, mod_rewrite: Fix lifetime 
of DB lookup entries independently of the selected DB engine.  PR 46421.

Suggested by: Michel Stam <michel reverze net>
Proposed by: Steven whitson <steven.whitson gmail com>
Reviewed/Extended/Committed by: ylavic


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1679181 13f79535-47bb-0310-9956-ffa450edef68
 2015-05-13 11:34:30 +00:00
Graham Leggett
3eed634c9c CVE-2013-2249 
mod_session_dbd: Make sure that dirty flag is respected when saving 
sessions, and ensure the session ID is changed each time the session 
changes.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1488158 13f79535-47bb-0310-9956-ffa450edef68
 2013-05-31 11:13:25 +00:00
Guenter Knauf
5a6d76ec90 Axed C++ comments. 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1409170 13f79535-47bb-0310-9956-ffa450edef68
 2012-11-14 11:43:49 +00:00
Christophe Jaillet
1070bb2265 formatting: space vs tab 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1408961 13f79535-47bb-0310-9956-ffa450edef68
 2012-11-13 21:08:33 +00:00
Christophe Jaillet
b40d4dc880 mod_session_dbd: fix a segmentation fault in the function dbd_remove. 
The segmentation fault is caused by an uninitialized function pointer session_dbd_acquire_fn.
PR 53452

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1408958 13f79535-47bb-0310-9956-ffa450edef68
 2012-11-13 21:03:10 +00:00
Stefan Fritsch
92e366007c Add lots of unique tags to error log messages 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1209766 13f79535-47bb-0310-9956-ffa450edef68
 2011-12-02 23:02:04 +00:00
Graham Leggett
7d139ae671 mod_session_dbd: Use apr_status_t as a return code across the mod_session API. 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1209618 13f79535-47bb-0310-9956-ffa450edef68
 2011-12-02 18:14:52 +00:00
Stefan Fritsch
7ecccc1570 Remove some more now redundant log prefixes 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1208816 13f79535-47bb-0310-9956-ffa450edef68
 2011-11-30 21:51:51 +00:00
Stefan Fritsch
1882214e86 break some very long lines, no code change 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1063016 13f79535-47bb-0310-9956-ffa450edef68
 2011-01-24 22:12:24 +00:00
Stefan Fritsch
ebb62867fb Use the new APLOG_USE_MODULE/AP_DECLARE_MODULE macros everywhere to take 
advantage of per-module loglevels


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@951895 13f79535-47bb-0310-9956-ffa450edef68
 2010-06-06 16:59:50 +00:00
Jim Jagielski
83532ab628 Enhance ap_hook_monitor to pass along a server_rec (in 
general the ap_server_conf) and tuck away some storage
in there which may be useful as an opaque data pointer.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@818825 13f79535-47bb-0310-9956-ffa450edef68
 2009-09-25 11:59:30 +00:00
Graham Leggett
4ed2378c5e mod_session_cookie, mod_session_dbd: Make sure cookies are set both 
within the output headers and error output headers, so that the
session is maintained across redirects.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@690501 13f79535-47bb-0310-9956-ffa450edef68
 2008-08-30 13:37:52 +00:00
William A. Rowe Jr
87ae720808 You don't export registered entry points 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@664217 13f79535-47bb-0310-9956-ffa450edef68
 2008-06-07 00:46:19 +00:00
Graham Leggett
6919d5d261 Change the directives within the mod_session* modules to be valid 
both inside and outside the location/directory sections, as suggested
by wrowe.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@646304 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-09 12:39:33 +00:00
Graham Leggett
36500032fc Insert prototypes to remove compiler warnings. [Joe Orton] 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@646126 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-08 23:12:12 +00:00
Guenter Knauf
407af3b525 No var declarations in the middle of the code. 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645929 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-08 14:01:49 +00:00
Paul Querna
a324a1d72f Remove all references to CORE_PRIVATE. 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645455 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-07 10:45:43 +00:00
Graham Leggett
8ef6e5e3d9 Fix the defaults, which currently override the config instead of default the config. 
[Ruediger Pluem]


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645243 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-06 14:05:27 +00:00
Graham Leggett
07c52aab45 Optimisation: We have no need to distiguish between a Cookie and a Cookie2 when reading cookies, the 
cookie read code reads both at once. [Ruediger Pluem]


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645188 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-05 23:52:38 +00:00
Graham Leggett
5b822119d0 mod_session_dbd: Add a session implementation capable of storing 
session information in a SQL database via the dbd interface. Useful
for sites where session privacy is important.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645160 13f79535-47bb-0310-9956-ffa450edef68
 2008-04-05 18:59:40 +00:00