Commit Graph

14427 Commits

Author SHA1 Message Date
Greg Wilkins 971bdac6b0 Issue #1546 Ignore $names in Cookies in RFC6265 compliance mode 2017-05-18 07:47:33 +02:00
Simone Bordet 14c132805e Merged branch 'jetty-9.3.x' into 'jetty-9.4.x'. 2017-05-17 15:32:48 +02:00
Simone Bordet b2481d472b Issue #523 - TLS close behaviour breaking session resumption.
Removed old test, duplicated by newer and better tests.
2017-05-17 15:32:18 +02:00
Simone Bordet 1ac103b6ce Merged branch 'jetty-9.3.x' into 'jetty-9.4.x'. 2017-05-17 13:16:21 +02:00
Simone Bordet d53af5d737 Fixes #523 - TLS close behaviour breaking session resumption.
Since requests cannot be connection delimited, don't call
sslEngine.closeInbound() on the server.

On the client, added a configuration parameter to allow missing
TLS Close Message, since many servers do that.

Introduced SslConnection.allowMissingCloseMessage so that it
throws in case of truncation attacks.
2017-05-17 13:07:21 +02:00
Jan Bartel 4eca47cdf4 Issue #1558 2017-05-17 11:21:18 +02:00
Simone Bordet 5adeee1d2b Merged branch 'jetty-9.3.x' into 'jetty-9.4.x'. 2017-05-17 10:11:57 +02:00
Simone Bordet da05582b9a Marking the parser at EOF in case of exceptions. 2017-05-17 10:11:10 +02:00
olivier lamy 8b94f2f275 correctly close ZipInputstream #1520
Signed-off-by: olivier lamy <olamy@webtide.com>
2017-05-17 10:55:11 +10:00
Simone Bordet 20e7f4881f Merged branch 'jetty-9.3.x' into 'jetty-9.4.x'. 2017-05-16 16:35:33 +02:00
Simone Bordet 1e2093c14a Merged branch 'jetty-9.2.x' into 'jetty-9.3.x'. 2017-05-16 16:34:39 +02:00
Simone Bordet f3751d7078 Issue #1556 - A timing channel in Password.java.
Fixed comparison logic, doh.
2017-05-16 16:34:04 +02:00
Simone Bordet bd2f3db69f Merged branch 'jetty-9.3.x' into 'jetty-9.4.x'. 2017-05-16 11:35:01 +02:00
Simone Bordet 1ef845556b Merged branch 'jetty-9.2.x' into 'jetty-9.3.x'. 2017-05-16 10:44:46 +02:00
Simone Bordet 042f325f1c Fixes #1556 - A timing channel in Password.java. 2017-05-16 10:41:08 +02:00
Simone Bordet b1b94d870e Code cleanups. 2017-05-16 10:25:34 +02:00
Greg Wilkins 155e3e9bcd Issue #1546 - more cookie fixes 2017-05-16 06:05:55 +02:00
Greg Wilkins 5141085fed Issue #1546 - more cookie fixes 2017-05-15 23:34:28 +02:00
Joakim Erdfelt fc6ca37c77 Updating expectations in RequestTest from changes in CookieCutter 2017-05-15 13:22:01 -07:00
Greg Wilkins 166736db55 Issue #1546 - more cookie leniency fixes 2017-05-15 21:01:15 +02:00
Joakim Erdfelt c5a0c5e761 Issue #1546 - more leniency testcase
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2017-05-15 11:04:09 -07:00
Joakim Erdfelt c95d6796d6 Merge branch 'jetty-9.4.x' of github.com:eclipse/jetty.project into jetty-9.4.x 2017-05-15 10:23:57 -07:00
Joakim Erdfelt ca4e72ca5d Issue #1553 - Guard against X509.isCertSign AIOOBE 2017-05-15 10:23:22 -07:00
Greg Wilkins 04fe477e79 Issue #1546 Fixed cookie tests 2017-05-13 16:21:06 +02:00
Greg Wilkins bdeea10a6f Issue #1546 Fixed some tests. @Ignored for now 2017-05-13 09:12:11 +02:00
Joakim Erdfelt da5a783e86 Merge remote-tracking branch 'origin/jetty-9.3.x' into jetty-9.4.x 2017-05-12 16:49:26 -07:00
Joakim Erdfelt fc2ec54c51 Fixing compact3 build on JDK8u121+ 2017-05-12 16:49:00 -07:00
Joakim Erdfelt dea2c340a4 Issue #1546 - Adding tests for CookieCutter
+ CookieCutterTest adds basic examples from RFCs
+ CookieCutter_LenientTest adds many examples of problematic
  lenient cookie parsing.
2017-05-12 16:39:33 -07:00
Joakim Erdfelt 991f9a1edb Merge remote-tracking branch 'origin/jetty-9.3.x' into jetty-9.4.x 2017-05-12 14:02:20 -07:00
Joakim Erdfelt 98d36ff0b1 Upgrading maven-source-plugin for build stability 2017-05-12 13:41:53 -07:00
Joakim Erdfelt cc9cf5c0b0 Merge remote-tracking branch 'origin/jetty-9.3.x' into jetty-9.4.x 2017-05-12 12:42:33 -07:00
Joakim Erdfelt 69c88e1e51 Merge mistake 2017-05-12 12:22:24 -07:00
Joakim Erdfelt be5bb05f12 Disabling javadoc, deploy, findbugs in /tests/
(cherry picked from commit ad1512d)
2017-05-12 12:09:39 -07:00
Joakim Erdfelt 521cc6520f Some javadoc plugin configuration updates
(cherry picked from commit 240c217)
2017-05-12 12:09:10 -07:00
Joakim Erdfelt 712b5bbcf9 Making javadoc build stage be offline instead
(cherry picked from commit c794af8)
2017-05-12 12:08:11 -07:00
Joakim Erdfelt 21194df6df Merge remote-tracking branch 'origin/jetty-9.2.x' into jetty-9.3.x 2017-05-12 10:14:52 -07:00
Joakim Erdfelt 3521c76d53 Missing license header 2017-05-12 10:14:16 -07:00
Joakim Erdfelt 9e8fa7c29f Merge remote-tracking branch 'origin/jetty-9.2.x' into jetty-9.3.x 2017-05-12 09:31:34 -07:00
Joakim Erdfelt 5e0d11cfc3 Issue #1108 - adding SslContextFactory.dump() selection details
+ Protocol selection details
+ Cipher Suites selection details

Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>

Conflicts:
	jetty-util/src/test/java/org/eclipse/jetty/util/ssl/SslContextFactoryTest.java
2017-05-12 09:29:27 -07:00
Joakim Erdfelt ad1512de13 Disabling javadoc, deploy, findbugs in /tests/ 2017-05-12 07:51:35 -07:00
Joakim Erdfelt 240c217c9d Some javadoc plugin configuration updates 2017-05-12 06:41:01 -07:00
Joakim Erdfelt c794af869e Making javadoc build stage be offline instead 2017-05-12 06:11:03 -07:00
Joakim Erdfelt 036a880f74 Revert "Disabling detection of javadoc links, only use configured ones"
This reverts commit 7b6dec43f2.
2017-05-12 06:09:20 -07:00
Greg Wilkins 04019675f6 Issue #1505 remove trailing / from jetty.home.uri 2017-05-12 10:55:35 +02:00
Greg Wilkins 06f721e3c2 Issue #1546 quotes in cookies 2017-05-12 10:38:37 +02:00
olivier lamy e9f75e81d9 PropertyUserStore should extract packed config file #1520
Signed-off-by: olivier lamy <olamy@webtide.com>
2017-05-12 14:57:46 +10:00
Joakim Erdfelt 6dd22b95d0 Merge branch 'jetty-9.4.x' of github.com:eclipse/jetty.project into jetty-9.4.x 2017-05-11 09:52:13 -07:00
Joakim Erdfelt c75e3c19d9 Issue #1516 - making WebSocket started thread pools have identifying names 2017-05-11 09:52:02 -07:00
Greg Wilkins 3c2ff283a2 work in progress #1281 2017-05-11 15:40:02 +02:00
Greg Wilkins 861432a334 Debugging #1281 2017-05-11 12:33:37 +02:00