Merge r1688274 from trunk.

author Yann Ylavic <ylavic@apache.org>

Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)

committer Yann Ylavic <ylavic@apache.org>

Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)
author Yann Ylavic <ylavic@apache.org>
Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)
committer Yann Ylavic <ylavic@apache.org>
Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)
diff --git a/CHANGES b/CHANGES

index 75052ab0d494cf153885e58fd51eb4257de8e96c..8b2edbe1bc5c761c6b9f96741c4164a15782a6be 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -8,6 +8,9 @@ Changes with Apache 2.2.30
       Limit accepted chunk-size to 2^63-1 and be strict about chunk-ext
       authorized characters.  [Graham Leggett, Yann Ylavic]
  
+  *) http: Fix LimitRequestBody checks when there is no more bytes to read.
+     [Michael Kaufmann <mail michael-kaufmann.ch>]
+
    *) core: Allow spaces after chunk-size for compatibility with implementations
       using a pre-filled buffer.  [Yann Ylavic, Jeff Trawick]
  
diff --git a/STATUS b/STATUS

index 5dc592b10d106d438b4d20d8f184e4955880a711..27f2a7cf81d728ce8da6252a3cfcdf57475f8351 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -97,14 +97,6 @@ CURRENT RELEASE NOTES:
  
  RELEASE SHOWSTOPPERS:
  
-  *) http: Fix LimitRequestBody checks when there is no more bytes to read.
-     [Michael Kaufmann <mail michael-kaufmann.ch>]
-     trunk patch: http://svn.apache.org/r1688274
-     2.2.x patch: http://people.apache.org/~ylavic/httpd-2.2.x-fix_LimitRequestBody.patch
-                  (modulo CHANGES, patch needed because of bail_out_on_error
-                   and APLOGNO)
-     +1: ylavic, mrumph, wrowe
-
  
  PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
    [ start all new proposals below, under PATCHES PROPOSED. ]
diff --git a/modules/http/http_filters.c b/modules/http/http_filters.c

index 94cac96f8192d42d6af21fd0d4adfd57024d7f0b..13181fec2eb5c7571a0565f809376fb990940388 100644 (file)
--- a/modules/http/http_filters.c
+++ b/modules/http/http_filters.c
@@ -320,7 +320,6 @@ apr_status_t ap_http_filter(ap_filter_t *f, apr_bucket_brigade *b,
      apr_bucket *e;
      http_ctx_t *ctx = f->ctx;
      apr_status_t rv;
-    apr_off_t totalread;
      int http_error = HTTP_REQUEST_ENTITY_TOO_LARGE;
      apr_bucket_brigade *bb;
      int again;
@@ -556,6 +555,7 @@ apr_status_t ap_http_filter(ap_filter_t *f, apr_bucket_brigade *b,
                  readbytes = ctx->remaining;
              }
              if (readbytes > 0) {
+                apr_off_t totalread;
  
                  rv = ap_get_brigade(f->next, b, mode, block, readbytes);
  
@@ -598,6 +598,24 @@ apr_status_t ap_http_filter(ap_filter_t *f, apr_bucket_brigade *b,
                      }
                  }
  
+                /* We have a limit in effect. */
+                if (ctx->limit) {
+                    /* FIXME: Note that we might get slightly confused on
+                     * chunked inputs as we'd need to compensate for the chunk
+                     * lengths which may not really count.  This seems to be up
+                     * for interpretation.
+                     */
+                    ctx->limit_used += totalread;
+                    if (ctx->limit < ctx->limit_used) {
+                        ap_log_rerror(APLOG_MARK, APLOG_INFO, 0, f->r,
+                                      "Read content length of "
+                                      "%" APR_OFF_T_FMT " is larger than the "
+                                      "configured limit of %" APR_OFF_T_FMT,
+                                      ctx->limit_used, ctx->limit);
+                        return bail_out_on_error(ctx, f,
+                                                 HTTP_REQUEST_ENTITY_TOO_LARGE);
+                    }
+                }
              }
  
              /* If we have no more bytes remaining on a C-L request,
@@ -609,21 +627,6 @@ apr_status_t ap_http_filter(ap_filter_t *f, apr_bucket_brigade *b,
                  ctx->eos_sent = 1;
              }
  
-            /* We have a limit in effect. */
-            if (ctx->limit) {
-                /* FIXME: Note that we might get slightly confused on chunked inputs
-                 * as we'd need to compensate for the chunk lengths which may not
-                 * really count.  This seems to be up for interpretation.  */
-                ctx->limit_used += totalread;
-                if (ctx->limit < ctx->limit_used) {
-                    ap_log_rerror(APLOG_MARK, APLOG_INFO, 0, f->r,
-                                  "Read content-length of %" APR_OFF_T_FMT
-                                  " is larger than the configured limit"
-                                  " of %" APR_OFF_T_FMT, ctx->limit_used, ctx->limit);
-                    return bail_out_on_error(ctx, f, HTTP_REQUEST_ENTITY_TOO_LARGE);
-                }
-            }
-
              break;
          }
          case BODY_CHUNK_TRAILER: {
author	Yann Ylavic <ylavic@apache.org>
	Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)
committer	Yann Ylavic <ylavic@apache.org>
	Fri, 3 Jul 2015 00:32:25 +0000 (00:32 +0000)
CHANGES		patch \| blob \| blame \| history
STATUS		patch \| blob \| blame \| history
modules/http/http_filters.c		patch \| blob \| blame \| history