]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ad46b26) | patch
Merge r1772812, r1772813 from trunk:
authorJim Jagielski <jim@apache.org>
Tue, 6 Dec 2016 17:37:38 +0000 (17:37 +0000)
committerJim Jagielski <jim@apache.org>
Tue, 6 Dec 2016 17:37:38 +0000 (17:37 +0000)
commit22be17155f1c9eeb14d5453fcadc169abf6da665
treedcafb9e5341ac244967af5311b103038d83311b8tree
parentad46b260f572f8432090b7f39ee5a6c15aaead3ecommit | diff
Merge r1772812, r1772813 from trunk:

mod_session_crypto: Authenticate the session data/cookie with a MAC (SipHash)
to prevent deciphering or tampering with a padding oracle attack.

mod_session_crypto: follow up to r1772812: CHANGES entry.
Submitted by: ylavic
Reviewed/backported by: jim

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1772925 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
STATUS diff | blob | blame | history
modules/session/mod_session_crypto.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git