summaryrefslogtreecommitdiff
path: root/support/htdigest.c
Commit message (Collapse)AuthorAgeFilesLines
* htdigest: prevent buffer overflow when strings in lines are too long.Luca Toscano2017-09-111-7/+17
| | | | | | | | | Reported by: Hanno Böck PR: 61511 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1808008 13f79535-47bb-0310-9956-ffa450edef68
* * Do not apply the strict permissions of the temporary file to a possiblyRuediger Pluem2017-07-031-1/+1
| | | | | | | | | | existing passwd file. This long standing bug was triggered by fixing a bug in APR in r1791029. PR: 61240 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1800594 13f79535-47bb-0310-9956-ffa450edef68
* Remove some 'register' in variable declaration.Christophe Jaillet2014-07-141-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1610366 13f79535-47bb-0310-9956-ffa450edef68
* htdigest: Fix buffer overflow when reading digestRainer Jung2013-04-251-1/+4
| | | | | | | | | password file with very long lines. PR 54893. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1475878 13f79535-47bb-0310-9956-ffa450edef68
* Use apr_file_printf(... "%pm"...) instead of explicit call to apr_strerrorChristophe Jaillet2013-04-021-7/+4
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1463750 13f79535-47bb-0310-9956-ffa450edef68
* Fortify falsely complained that the sprintf() result was unbounded.Jeff Trawick2010-08-201-2/+2
| | | | | | | | We may as well use apr_snprintf() though, as well as comment on the available space for "::\0" (for people like me). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@987498 13f79535-47bb-0310-9956-ffa450edef68
* Actually use the whole buffer for reading.Stefan Fritsch2009-10-181-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@826528 13f79535-47bb-0310-9956-ffa450edef68
* Fix some more overflows spotted by Ruediger PluemStefan Fritsch2009-10-181-3/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@826520 13f79535-47bb-0310-9956-ffa450edef68
* detabStefan Fritsch2009-10-181-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@826507 13f79535-47bb-0310-9956-ffa450edef68
* htdigest: Fix possible overflow in command line processing. htdigest is notStefan Fritsch2009-10-181-2/+4
| | | | | | | | | | | supposed to be suid save, therefore not treated as a security issue. CVE-2005-1344 Submitted by: Adam Conrad Reviewed by: Stefan Fritsch git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@826506 13f79535-47bb-0310-9956-ffa450edef68
* update license header textRoy T. Fielding2006-07-111-6/+6
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@420983 13f79535-47bb-0310-9956-ffa450edef68
* Update the copyright year in all .c, .h and .xml filesColm MacCarthaigh2006-04-191-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@395228 13f79535-47bb-0310-9956-ffa450edef68
* No functional Change: Removing trailing whitespace. This alsoJim Jagielski2005-11-101-8/+8
| | | | | | | | means that "blank" lines consisting of just spaces or tabs are now really blank lines git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@332306 13f79535-47bb-0310-9956-ffa450edef68
* * support/htdigest.c (main): Fix permissions of created files.Joe Orton2005-02-281-2/+3
| | | | | | | PR: 33765 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@155681 13f79535-47bb-0310-9956-ffa450edef68
* Update copyright year to 2005 and standardize on current copyright owner line.Justin Erenkrantz2005-02-041-1/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@151408 13f79535-47bb-0310-9956-ffa450edef68
* Use standardized names for ISO-8859-1, see ↵Martin Kraemer2004-06-291-1/+1
| | | | | | | | | http://www.iana.org/assignments/character-sets (Using the name iso8859-1 may still work, because it is aliased in apr-iconv/ccs/charset.aliases) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@104078 13f79535-47bb-0310-9956-ffa450edef68
* Remove the OMIT_DELONCLOSE #ifdef since this should happen automatically ↵Bradley Nicholes2004-03-171-39/+2
| | | | | | | | | with the apr_temp_dir_get() function. Submitted by: Guenter Knauf <eflash@gmx.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@103007 13f79535-47bb-0310-9956-ffa450edef68
* Replace calls to fprintf() with apr_file_printf()Bradley Nicholes2004-03-171-16/+19
| | | | | | | submitted by: Guenter Knauf <eflash@gmx.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@103004 13f79535-47bb-0310-9956-ffa450edef68
* Replace tabs with spacesBradley Nicholes2004-03-171-45/+45
| | | | | | | Submitted by: Guenter Knauf <eflash@gmx.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@103003 13f79535-47bb-0310-9956-ffa450edef68
* Remove the dependance on external cp/copy commandsBradley Nicholes2004-03-171-10/+11
| | | | | | | Submitted by: Guenter Knauf <eflash@gmx.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@103002 13f79535-47bb-0310-9956-ffa450edef68
* Use apr_temp_dir_get() to get the temporary directoryBradley Nicholes2004-03-171-4/+12
| | | | | | | Submitted by: Guenter Knauf <eflash@gmx.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@102998 13f79535-47bb-0310-9956-ffa450edef68
* fix name of The Apache Software FoundationAndré Malo2004-02-091-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@102619 13f79535-47bb-0310-9956-ffa450edef68
* fix copyright dates according the first cehck inAndré Malo2004-02-081-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@102592 13f79535-47bb-0310-9956-ffa450edef68
* apply Apache License, Version 2.0André Malo2004-02-061-49/+10
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@102525 13f79535-47bb-0310-9956-ffa450edef68
* update license to 2004.André Malo2004-01-011-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@102135 13f79535-47bb-0310-9956-ffa450edef68
* Forward port a fix for a pair of potential buffer overflows in htdigest from 1.3Thom May2003-05-011-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@99680 13f79535-47bb-0310-9956-ffa450edef68
* Restore the ability of htdigest.exe to create files that containAndré Malo2003-03-051-11/+53
| | | | | | | | | | more than one user. On win32 we cannot system("copy") a file, while it's open. PR: PR 12910 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@98893 13f79535-47bb-0310-9956-ffa450edef68
* finished that boring job:André Malo2003-02-031-1/+1
| | | | | | | | | update license to 2003. Happy New Year! ;-)) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@98573 13f79535-47bb-0310-9956-ffa450edef68
* Continue the Bill Rowe apr_size_t crusade.Victor J. Orlikowski2002-07-101-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@95993 13f79535-47bb-0310-9956-ffa450edef68
* avoid colliding with getline() as defined by glibcJeff Trawick2002-05-101-2/+2
| | | | | | | (it breaks if you need to turn on _GNU_SOURCE) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@95035 13f79535-47bb-0310-9956-ffa450edef68
* Correct const'ness of argv in all support apps, and use the newWilliam A. Rowe Jr2002-04-131-8/+3
| | | | | | | | apr_app_initialize over apr_initialize for win32, and other platforms that may wish to tweak 'apr-ized' application support (e.g. Netware?) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@94633 13f79535-47bb-0310-9956-ffa450edef68
* Update our copyright for this year.Roy T. Fielding2002-03-131-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@93918 13f79535-47bb-0310-9956-ffa450edef68
* Updates to allow the utilities to run on NetWareBradley Nicholes2002-01-181-0/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@92919 13f79535-47bb-0310-9956-ffa450edef68
* Add the ability to pass flags to both apr_file_open and apr_mktemp.Ryan Bloom2002-01-081-1/+1
| | | | | | | | | The reason for this, is that it is very possible to want a temp file that isn't deleted when the file is closed. It also makes sense to have the flags in the apr_file_t if possible. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@92766 13f79535-47bb-0310-9956-ffa450edef68
* Switch from tmpnam() to apr_file_mktemp() so that gcc with a recent glibcCliff Woolley2001-10-011-14/+13
| | | | | | | | | will shut the hell up about tmpnam() being unsafe. htpasswd.c needs a similar treatment, but it won't be _quite_ as easy since htpasswd has not been completely apr-ized yet. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@91222 13f79535-47bb-0310-9956-ffa450edef68
* Silence gcc warning about rv being used when possibly uninitialized. ThatCliff Woolley2001-06-111-1/+1
| | | | | | | | can only happen if n<=1 (ie, a bad parameter value), so I figure APR_EINVAL is the correct default value. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89333 13f79535-47bb-0310-9956-ffa450edef68
* Fix look in htdigest. Reimplemented getline to work properly withBill Stoddard2001-06-101-16/+11
| | | | | | | | APR. Shuld consider adding apr_file_getline() to APR. Should also consider changing apr_file_getc() to return characters rather than apr_status. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89331 13f79535-47bb-0310-9956-ffa450edef68
* get rid of a warning for missing strXXX prototype. (I only saw thisJeff Trawick2001-05-211-0/+1
| | | | | | | on RH 7.1.) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89188 13f79535-47bb-0310-9956-ffa450edef68
* Update copyright to 2001Roy T. Fielding2001-02-161-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88184 13f79535-47bb-0310-9956-ffa450edef68
* *) include "apr_signal.h" when neededGreg Stein2001-02-111-12/+6
| | | | | | | *) some other minor include tweaks git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88081 13f79535-47bb-0310-9956-ffa450edef68
* renaming various functions for consistency sakeDoug MacEachern2001-02-081-24/+24
| | | | | | | | | | | see: http://apr.apache.org/~dougm/apr_rename.pl PR: Obtained from: Submitted by: Reviewed by: git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88019 13f79535-47bb-0310-9956-ffa450edef68
* When is a void fn(void) not a void fn(void)? It's a win32'ism, sinceWilliam A. Rowe Jr2001-01-181-1/+6
| | | | | | | | | | the APR_DECLARE (excluding _NONSTD) uses the pascal convention. Really irrelevant in a function that never needs to clean up (atexit), but the compiler complains. Possible workarounds, but that would break non-c lanaguge code from linking into apr. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87726 13f79535-47bb-0310-9956-ffa450edef68
* get rid of a bogus use of perror()Jeff Trawick2001-01-091-4/+7
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87623 13f79535-47bb-0310-9956-ffa450edef68
* All the supports now build on APR (+APRUTIL), no reliance on httpd.William A. Rowe Jr2000-12-211-3/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87501 13f79535-47bb-0310-9956-ffa450edef68
* Switch to the APR-provided APR_CHARSET_EBCDIC feature test macro.Jeff Trawick2000-12-201-9/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87460 13f79535-47bb-0310-9956-ffa450edef68
* Force all Apache functions to be linked into the executable, whether theyRyan Bloom2000-12-191-6/+6
| | | | | | | | | | | are used or not. This uses the same mechanism that is used for APR and APR-util. This may not be the correct solution, but it works, and that is what I really care about. This also renames CHARSET_EBCDIC to AP_CHARSET_EBCDIC. This is for namespace correctness, but it also makes the exports script a bit easier. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87424 13f79535-47bb-0310-9956-ffa450edef68
* *) Compensate for recent changes in the APR headers. Specifically, someGreg Stein2000-11-261-1/+8
| | | | | | | | | | | | files need to specifically include stdio.h, or a particular apr_*.h header. *) Adjust callers of apr_create_process() to deal with the extra "const" *) Add "const" to args of ap_os_create_privileged_process() git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@87080 13f79535-47bb-0310-9956-ffa450edef68
* ensure that all cpp directives start with a # in column oneTony Finch2000-10-251-1/+1
| | | | | | | PR: 6742 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@86745 13f79535-47bb-0310-9956-ffa450edef68
* A few more (last?) ap_xlate->apr_xlate changes covering stuff not completelyJeff Trawick2000-08-071-2/+2
| | | | | | | handled in the big apr rename last week. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@86020 13f79535-47bb-0310-9956-ffa450edef68
* Fix some problems with the apr conversion so that APACHE_XLATE builds workJeff Trawick2000-08-071-1/+1
| | | | | | | again. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@86018 13f79535-47bb-0310-9956-ffa450edef68
View Lorry Controller Status