• last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Port fix for minor security issue CVE-2014-0050 multipart DoS.
    • -0
    • +6
    ./java/org/jboss/web/FileUploadMessages.java
Port patch: filter out empty subprotocol.
Remove a number of setCCL since in web they are called from the regular servlet stack.
PojoMethodMapping didn't look like the right location in the end, trying the direct superclass constructor.
Revert as the WS spec is explicit about that (will see the test result).
    • -2
    • +2
    ./java/org/apache/tomcat/websocket/WsSession.java
Use setAccessible on reflection methods, just in case. If it fails, ignore.
Try to call onError if an error occurs during onClose.
    • -0
    • +4
    ./java/org/apache/tomcat/websocket/WsSession.java
Try some fixes.
    • -2
    • +2
    ./java/org/apache/tomcat/websocket/WsSession.java
Port patch: remove useless trim.
    • -1
    • +1
    ./java/org/apache/jasper/compiler/ELParser.java
Port patch: close after IO error.
    • -1
    • +7
    ./java/org/apache/tomcat/websocket/WsSession.java
    • -0
    • +3
    ./java/org/jboss/web/WebsocketsMessages.java
Another EL parser patch (not the last one since it has to do the same as the real EL parser without being a real EL parser).
    • -20
    • +39
    ./java/org/apache/jasper/compiler/ELParser.java
Port additional fix.
    • -2
    • +2
    ./java/org/apache/jasper/compiler/ELParser.java
Port space handling fixes.
    • -48
    • +77
    ./java/org/apache/jasper/compiler/ELParser.java
Port Tomcat BZ56012: Imports now require a package
    • -10
    • +1
    ./java/org/apache/jasper/compiler/PageInfo.java
    • -1
    • +1
    ./java/org/apache/jasper/compiler/Validator.java
Port WS patch: upgrade behavior tweaks.
Name cleanup (flush became a blocking write of the remaining data).
    • -2
    • +2
    ./java/org/apache/tomcat/websocket/WsSession.java
Port patch for TC BZ56010: avoid IAE when using the constant for the default value.
Attempt another autoblocking technique. Uses a fake blocking write notification that would write all content and flush.
Oops.
Obvious cleanup: don't wrap as an IOE if already a meaningful IOE.
BZ1027272 (part 1): Attempt to set the CCL and thread binding when expiring sessions from other contexts.
Andiamo.
    • -0
    • +4
    ./java/org/jboss/web/CatalinaLogger.java
    • -0
    • +3
    ./java/org/jboss/web/CatalinaMessages.java
Port the alwaysUseSession option from Tomcat, disabled by default (as in Tomcat).
  1. … 1 more file in changeset.
Use my patch from Tomcat instead: don't do anything at all if nothing was written yet.
JBWEB-287: Add a null check because the write event should be called even if no write was made (from the Servlet spec).
Drop the broken lazy init in favor of a simple flag to indicate if websockets is used.
Port websockets patches.
    • -0
    • +3
    ./java/org/jboss/web/WebsocketsMessages.java
Port patches: Fix possible NPE on destroy. Update filter name.
Reset the (kinda new) EOF flag when restoring the request body.
Some (basic) constant cleanups and removal of old unused code.