covener | 1 Jan 01:31 2008
Picon

svn commit: r607787 - /httpd/httpd/branches/2.2.x/STATUS

Author: covener
Date: Mon Dec 31 16:31:00 2007
New Revision: 607787

URL: http://svn.apache.org/viewvc?rev=607787&view=rev
Log:
propose backport for LDAP_UNAVAILABLE returned with MS LDAP SDK

Modified:
    httpd/httpd/branches/2.2.x/STATUS

Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=607787&r1=607786&r2=607787&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Mon Dec 31 16:31:00 2007
 <at>  <at>  -209,6 +209,16  <at>  <at> 
       -0: niq: I dislike this patch for reasons stated on-list, but it
                delivers the functionality needed for the charset "showstopper".

+   *) mod_ldap: Try to establish a new backend LDAP connection when the
+      Microsoft LDAP client library returns LDAP_UNAVAILABLE, e.g. after the
+      LDAP server has closed the connection due to a timeout. 
+      PR 39095 [Eric Covener]
+        Trunk version of patch:
+          http://svn.apache.org/viewvc?view=rev&revision=607766
+        2.2.x
+          http://people.apache.org/~covener/2.2.x-ldap-server-down.diff
+      +1 covener
+
(Continue reading)

rpluem | 1 Jan 14:20 2008
Picon

svn commit: r607838 - /httpd/httpd/trunk/modules/dav/main/util.c

Author: rpluem
Date: Tue Jan  1 05:20:22 2008
New Revision: 607838

URL: http://svn.apache.org/viewvc?rev=607838&view=rev
Log:
* Avoid SEGFAULT as hooks->set_headers can be NULL. Furthermore do not set the
  ETag header permanently as setting it may not be desired for all responses.

Submitted by: niq, rpluem

Modified:
    httpd/httpd/trunk/modules/dav/main/util.c

Modified: httpd/httpd/trunk/modules/dav/main/util.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/dav/main/util.c?rev=607838&r1=607837&r2=607838&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/dav/main/util.c (original)
+++ httpd/httpd/trunk/modules/dav/main/util.c Tue Jan  1 05:20:22 2008
 <at>  <at>  -1467,6 +1467,8  <at>  <at> 
     dav_buffer work_buf = { 0 };
     dav_response *new_response;
     int resource_state;
+    const char *etag;
+    int set_etag = 0;

 #if DAV_DEBUG
     if (depth && response == NULL) {
 <at>  <at>  -1484,17 +1486,28  <at>  <at> 
         *response = NULL;
(Continue reading)

covener | 1 Jan 14:53 2008
Picon

svn commit: r607841 - /httpd/httpd/trunk/modules/ldap/util_ldap.c

Author: covener
Date: Tue Jan  1 05:53:03 2008
New Revision: 607841

URL: http://svn.apache.org/viewvc?rev=607841&view=rev
Log:
Review comments from Ruediger on r607766: 
  Don't allow the ldap calls to be evaluated (twice) in the macro

Modified:
    httpd/httpd/trunk/modules/ldap/util_ldap.c

Modified: httpd/httpd/trunk/modules/ldap/util_ldap.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/ldap/util_ldap.c?rev=607841&r1=607840&r2=607841&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/ldap/util_ldap.c (original)
+++ httpd/httpd/trunk/modules/ldap/util_ldap.c Tue Jan  1 05:53:03 2008
 <at>  <at>  -733,9 +733,10  <at>  <at> 
     }

     /* search for reqdn */
-    if (AP_LDAP_IS_SERVER_DOWN(result = ldap_search_ext_s(ldc->ldap, (char *)reqdn, LDAP_SCOPE_BASE,
-                                    "(objectclass=*)", NULL, 1,
-                                    NULL, NULL, NULL, APR_LDAP_SIZELIMIT, &res)))
+    result = ldap_search_ext_s(ldc->ldap, (char *)reqdn, LDAP_SCOPE_BASE,
+                               "(objectclass=*)", NULL, 1,
+                               NULL, NULL, NULL, APR_LDAP_SIZELIMIT, &res);
+    if (AP_LDAP_IS_SERVER_DOWN(result))
     {
         ldc->reason = "DN Comparison ldap_search_ext_s() "
(Continue reading)

covener | 1 Jan 14:57 2008
Picon

svn commit: r607843 - /httpd/httpd/branches/2.2.x/STATUS

Author: covener
Date: Tue Jan  1 05:57:34 2008
New Revision: 607843

URL: http://svn.apache.org/viewvc?rev=607843&view=rev
Log:
add an additional revision to backport proposal for win32 LDAP retry

Modified:
    httpd/httpd/branches/2.2.x/STATUS

Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=607843&r1=607842&r2=607843&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Tue Jan  1 05:57:34 2008
 <at>  <at>  -215,8 +215,9  <at>  <at> 
       PR 39095 [Eric Covener]
         Trunk version of patch:
           http://svn.apache.org/viewvc?view=rev&revision=607766
+          http://svn.apache.org/viewvc?rev=607841&view=rev
         2.2.x
-          http://people.apache.org/~covener/2.2.x-ldap-server-down.diff
+          http://people.apache.org/~covener/2.2.x-ldap-server-down-with607841.diff
       +1 covener

 PATCHES/ISSUES THAT ARE STALLED

niq | 1 Jan 15:12 2008
Picon

svn commit: r607850 - in /httpd/httpd/branches/2.2.x: CHANGES STATUS modules/proxy/mod_proxy_balancer.c

Author: niq
Date: Tue Jan  1 06:12:33 2008
New Revision: 607850

URL: http://svn.apache.org/viewvc?rev=607850&view=rev
Log:
* Backport CVE-2007-6422 fix (r607273, r607402).
* Update proposal for PR 38034 fix (mod_dav negoiation bug)

Modified:
    httpd/httpd/branches/2.2.x/CHANGES
    httpd/httpd/branches/2.2.x/STATUS
    httpd/httpd/branches/2.2.x/modules/proxy/mod_proxy_balancer.c

Modified: httpd/httpd/branches/2.2.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?rev=607850&r1=607849&r2=607850&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.2.x/CHANGES [utf-8] Tue Jan  1 06:12:33 2008
 <at>  <at>  -1,6 +1,10  <at>  <at> 
                                                         -*- coding: utf-8 -*-
 Changes with Apache 2.2.7

+  *) SECURITY: CVE-2007-6422 (cve.mitre.org)
+     Prevent crash in balancer manager if invalid balancer name is passed
+     as parameter. Reported by SecurityReason. [Ruediger Pluem]
+
   *) SECURITY: CVE-2007-6388 (cve.mitre.org)
      mod_status: Ensure refresh parameter is numeric to prevent
      a possible XSS attack caused by redirecting to other URLs.
(Continue reading)

niq | 1 Jan 15:21 2008
Picon

svn propchange: r607850 - svn:log

Author: niq
Revision: 607850
Modified property: svn:log

Modified: svn:log at Tue Jan  1 06:21:27 2008
------------------------------------------------------------------------------
--- svn:log (original)
+++ svn:log Tue Jan  1 06:21:27 2008
 <at>  <at>  -1,2 +1,2  <at>  <at> 
 * Backport CVE-2007-6422 fix (r607273, r607402).
-* Update proposal for PR 38034 fix (mod_dav negoiation bug)
+* Update proposal for PR 38034 fix (mod_dav negotiation bug)

fuankg | 1 Jan 15:48 2008
Picon

svn commit: r607853 - /httpd/httpd/branches/2.0.x/STATUS

Author: fuankg
Date: Tue Jan  1 06:48:51 2008
New Revision: 607853

URL: http://svn.apache.org/viewvc?rev=607853&view=rev
Log:
Cast a vote.

Modified:
    httpd/httpd/branches/2.0.x/STATUS

Modified: httpd/httpd/branches/2.0.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/STATUS?rev=607853&r1=607852&r2=607853&view=diff
==============================================================================
--- httpd/httpd/branches/2.0.x/STATUS (original)
+++ httpd/httpd/branches/2.0.x/STATUS Tue Jan  1 06:48:51 2008
 <at>  <at>  -129,7 +129,7  <at>  <at> 
        http://svn.apache.org/viewvc?rev=607282&view=rev
     Backport version for 2.0.x of patch:
        http://awe.com/e8f6ad05238f8/CVE-2007-6388-httpd-2.x.patch
-    +1: rpluem,
+    +1: rpluem, fuankg

 PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
   [ start all new proposals below, under PATCHES PROPOSED. ]

rpluem | 1 Jan 16:35 2008
Picon

svn commit: r607859 - /httpd/httpd/branches/2.2.x/STATUS

Author: rpluem
Date: Tue Jan  1 07:35:02 2008
New Revision: 607859

URL: http://svn.apache.org/viewvc?rev=607859&view=rev
Log:
* Vote, add a comment

Modified:
    httpd/httpd/branches/2.2.x/STATUS

Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=607859&r1=607858&r2=607859&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Tue Jan  1 07:35:02 2008
 <at>  <at>  -179,6 +179,8  <at>  <at> 
      http://svn.apache.org/viewvc?view=rev&revision=607472
      http://svn.apache.org/viewvc?view=rev&revision=607838
      +1: niq
+     rpluem: I am +1 once we have a confirmation from Werner that this patch fixes
+     his problem as this patch has some differences to his original patch.

   * mod_proxy_ftp: Introduce the ProxyFtpDirCharset directive, allowing
     the administrator to identify a default, or specific servers or paths
 <at>  <at>  -200,7 +202,7  <at>  <at> 
           http://svn.apache.org/viewvc?rev=607841&view=rev
         2.2.x
           http://people.apache.org/~covener/2.2.x-ldap-server-down-with607841.diff
-      +1 covener
(Continue reading)

fuankg | 1 Jan 18:23 2008
Picon

svn commit: r607873 - /httpd/httpd/trunk/modules/generators/mod_status.c

Author: fuankg
Date: Tue Jan  1 09:23:16 2008
New Revision: 607873

URL: http://svn.apache.org/viewvc?rev=607873&view=rev
Log:
Modified default refresh value to 10 secs so that its possible to correct a typo.

Modified:
    httpd/httpd/trunk/modules/generators/mod_status.c

Modified: httpd/httpd/trunk/modules/generators/mod_status.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/generators/mod_status.c?rev=607873&r1=607872&r2=607873&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/generators/mod_status.c (original)
+++ httpd/httpd/trunk/modules/generators/mod_status.c Tue Jan  1 09:23:16 2008
 <at>  <at>  -306,7 +306,7  <at>  <at> 
                     }
                     apr_table_set(r->headers_out,
                                   status_options[i].hdr_out_str,
-                                  apr_ltoa(r->pool, t < 1 ? 1 : t));
+                                  apr_ltoa(r->pool, t < 1 ? 10 : t));
                     break;
                 }
                 case STAT_OPT_NOTABLE:

fuankg | 1 Jan 18:33 2008
Picon

svn commit: r607876 - /httpd/httpd/branches/2.2.x/STATUS

Author: fuankg
Date: Tue Jan  1 09:33:41 2008
New Revision: 607876

URL: http://svn.apache.org/viewvc?rev=607876&view=rev
Log:
Added backport proposal.

Modified:
    httpd/httpd/branches/2.2.x/STATUS

Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=607876&r1=607875&r2=607876&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Tue Jan  1 09:33:41 2008
 <at>  <at>  -204,6 +204,13  <at>  <at> 
           http://people.apache.org/~covener/2.2.x-ldap-server-down-with607841.diff
       +1 covener, rpluem

+   * mod_status: Modified default refresh value to 10 secs so that its possible
+                 to correct a typo in the URL.
+      Trunk version of patch:
+         http://svn.apache.org/viewvc?view=rev&revision=607873
+      Trunk version should apply to 2.2.x.
+      +1: fuankg
+
 PATCHES/ISSUES THAT ARE STALLED

    * beos MPM: Create pmain pool and run modules' child_init hooks when
(Continue reading)


Gmane