if (virt->trace_enable != AP_TRACE_UNSET)
conf->trace_enable = virt->trace_enable;
- if (virt->http09_enable != AP_HTTP09_UNSET)
- conf->http09_enable = virt->http09_enable;
+ if (virt->min_http_version != AP_HTTP_VERSION_UNSET) {
+ conf->min_http_version = virt->min_http_version;
+ conf->max_http_version = virt->max_http_version;
+ }
/* no action for virt->accf_map, not allowed per-vhost */
}
static const char *set_http_protocol(cmd_parms *cmd, void *dummy,
- const char *arg1)
+ const char *arg)
{
- core_server_config *conf =
- ap_get_core_module_config(cmd->server->module_config);
+ core_server_config *conf;
+ conf = ap_get_core_module_config(cmd->server->module_config);
+ if (apr_isdigit(arg[0])) {
+ unsigned short min_major, min_minor, max_major, max_minor;
+ unsigned int min, max;
+ char ch;
- if (strcmp(arg1, "+0.9") == 0) {
- conf->http09_enable = AP_HTTP09_ENABLE;
- }
- else if (strcmp(arg1, "-0.9") == 0) {
- conf->http09_enable = AP_HTTP09_DISABLE;
+ if (sscanf(arg, "%hu.%hu-%hu.%hu%c", &min_major, &min_minor,
+ &max_major, &max_minor, &ch) == 4) {
+ }
+ else if (sscanf(arg, "%hu.%hu%c", &min_major, &min_minor, &ch) == 2) {
+ max_major = min_major;
+ max_minor = min_minor;
+ }
+ else {
+ return "Protocol version must be in format a.b or a.b-c.d";
+ }
+ if ( HTTP_VERSION(0, min_minor) >= HTTP_VERSION(1,0)
+ || HTTP_VERSION(0, max_minor) >= HTTP_VERSION(1,0)) {
+ return "HTTP minor version may not be more than 999";
+ }
+ min = HTTP_VERSION(min_major, min_minor);
+ max = HTTP_VERSION(max_major, max_minor);
+ if (min > APR_UINT16_MAX || max > APR_UINT16_MAX)
+ return "HTTP major version may not be more than 64";
+ if (min > max)
+ return "HTTP version range must be min-max";
+ /* 0 is used for "unset", so make sure the min is larger */
+ if (min < HTTP_VERSION(0,9))
+ min = HTTP_VERSION(0,9);
+ conf->min_http_version = min;
+ conf->max_http_version = max;
}
else {
- return "HttpProtocol must be one of '+0.9' and '-0.9'";
+ return "Valid arguments are a version number (e.g. '1.1')"
+ "or a version range (e.g. '1.0-9.9')";
}
-
return NULL;
}
#endif
AP_INIT_TAKE1("TraceEnable", set_trace_enable, NULL, RSRC_CONF,
"'on' (default), 'off' or 'extended' to trace request body content"),
-AP_INIT_TAKE1("HttpProtocol", set_http_protocol, NULL, RSRC_CONF,
- "'+0.9' (default) or '-0.9' to allow/deny HTTP/0.9"),
+AP_INIT_ITERATE("HttpProtocol", set_http_protocol, NULL, RSRC_CONF,
+ "Allowed HTTP version or range (e.g. '1.1', '1.0-9.9'"),
AP_INIT_ITERATE("RegisterHttpMethod", set_http_method, NULL, RSRC_CONF,
"Registers non-standard HTTP methods"),
{ NULL }
apr_size_t len;
int num_blank_lines = 0;
int max_blank_lines = r->server->limit_req_fields;
+ core_server_config *conf =
+ ap_get_core_module_config(r->server->module_config);
if (max_blank_lines <= 0) {
max_blank_lines = DEFAULT_LIMIT_REQUEST_FIELDS;
pro = ll;
len = strlen(ll);
} else {
- core_server_config *conf;
- conf = ap_get_core_module_config(r->server->module_config);
r->assbackwards = 1;
pro = "HTTP/0.9";
len = 8;
- if (conf->http09_enable == AP_HTTP09_DISABLE) {
- r->status = HTTP_VERSION_NOT_SUPPORTED;
- r->protocol = apr_pstrmemdup(r->pool, pro, len);
- r->proto_num = HTTP_VERSION(0, 9);
- ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(02401)
- "HTTP/0.9 denied by server configuration");
- return 0;
- }
}
r->protocol = apr_pstrmemdup(r->pool, pro, len);
else
r->proto_num = HTTP_VERSION(1, 0);
+ if (conf->min_http_version != AP_HTTP_VERSION_UNSET
+ && ( conf->min_http_version > r->proto_num
+ || conf->max_http_version < r->proto_num)) {
+ r->status = HTTP_VERSION_NOT_SUPPORTED;
+ if (r->proto_num == HTTP_VERSION(0, 9)) {
+ /* If we deny 0.9, send error message with 1.x */
+ r->assbackwards = 0;
+ }
+ ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(02401)
+ "HTTP/%d.%d denied by server configuration",
+ HTTP_VERSION_MAJOR(r->proto_num),
+ HTTP_VERSION_MINOR(r->proto_num));
+ return 0;
+ }
+
return 1;
}
projects / thirdparty / apache / httpd.git / commitdiff
