The newly added checkAliasPath used the File constructor on a uri
resulting from Path's toUri, which caused an IllegalArgumentException due to
the uri having an authority component. (File's toURI and Path's toUri
differ slightly wrt. UNC paths; file:////unc vs file://unc.)
Signed-off-by: Fabian van der Veen <djyhnzo@gmail.com>
* Issue #1327 - Removing non-standard (Microsoft only) %uXXXX support
* Issue #1322 - Removing attempts at "solving" bad behavior in UrlEncoded
+ No longer captures NumberFormatException and Utf8Exception and
NotUtf8Exception for purposes of "recovering" from a bad encoding.
+ Introduces UrlEncode.decodeHexChar() and .decodeHexByte() to make
reporting of bad encoding more clear.
* Issue #1316 - throw a BadMessageException on bad parameter parsing
+ If BadMessageException is uncaught by the webapp, this will result
in an error 400 response message.
+ If an application decides to catch the BadMessageException, they can
choose to ignore the exception and do their own error reporting.
+ This piggybacks on Issue #1327 and Issue #1322
+ Upgrading to jetty-test-helper 4.0
+ Removing use of org.eclipse.jetty.toolchain.test.SimpleRequest
+ Removing use of org.eclipse.jetty.toolchain.test.http.SimpleHttpParser
+ Removing use of org.eclipse.jetty.toolchain.test.http.SimpleHttpResponse
+ Updating long since deprecated (and now removed) known quirky methods
in jetty-test-helper and the test classes.
+ The use of the SSLEngine from SslContextFactory will include
the as-configured the SSLEngine exclusions from the configuration.
The dump routines now use a fresh SSLEngine to detect the JVM
level disabled features.
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
* Issue #844 DoS Handler
First cut at implementation of Thread limiting handler for #844
* Added modules, simplified API, added IP exemptions
* fixed xml
* fixed preallocation
* simplified code
Greg Wilkins
Joakim Erdfelt
Fabian van der Veen
Simone Bordet
Jesse McConnell
dreis2211
Jan Bartel