httpd-test-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jor...@apache.org
Subject svn commit: r233494 - in /httpd/test/trunk/perl-framework/t: htdocs/security/CAN-2005-2491/ htdocs/security/CAN-2005-2491/one/ htdocs/security/CAN-2005-2491/two/ security/
Date Fri, 19 Aug 2005 16:01:03 GMT
Author: jorton
Date: Fri Aug 19 09:00:56 2005
New Revision: 233494

URL: http://svn.apache.org/viewcvs?rev=233494&view=rev
Log:
Add test case for CAN-2005-2491, PCRE integer overflow in
quantifier parsing.

Added:
    httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/
    httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/
    httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/.htaccess
    httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/
    httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/.htaccess
    httpd/test/trunk/perl-framework/t/security/CAN-2005-2491.t

Added: httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/.htaccess
URL: http://svn.apache.org/viewcvs/httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/.htaccess?rev=233494&view=auto
==============================================================================
--- httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/.htaccess (added)
+++ httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/one/.htaccess Fri Aug
19 09:00:56 2005
@@ -0,0 +1 @@
+RewriteRule a{111111111111111111} /index.html

Added: httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/.htaccess
URL: http://svn.apache.org/viewcvs/httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/.htaccess?rev=233494&view=auto
==============================================================================
--- httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/.htaccess (added)
+++ httpd/test/trunk/perl-framework/t/htdocs/security/CAN-2005-2491/two/.htaccess Fri Aug
19 09:00:56 2005
@@ -0,0 +1 @@
+RewriteRule a{1,11111111111111111111} /index.html

Added: httpd/test/trunk/perl-framework/t/security/CAN-2005-2491.t
URL: http://svn.apache.org/viewcvs/httpd/test/trunk/perl-framework/t/security/CAN-2005-2491.t?rev=233494&view=auto
==============================================================================
--- httpd/test/trunk/perl-framework/t/security/CAN-2005-2491.t (added)
+++ httpd/test/trunk/perl-framework/t/security/CAN-2005-2491.t Fri Aug 19 09:00:56 2005
@@ -0,0 +1,21 @@
+use strict;
+use warnings FATAL => 'all';
+
+use Apache::Test;
+use Apache::TestUtil;
+use Apache::TestRequest;
+
+plan tests => 2 * 2;
+
+foreach my $dir ("one/", "two/") {
+    my $r = GET("/security/CAN-2005-2491/" . $dir);
+
+    # LWP will generate the annoying fake-500 response if the server
+    # segfaults before generating its own 500 response; check
+    # the response message explicitly to rule that out.
+
+    ok t_cmp($r->message, 'Internal Server Error',
+             'check that server did not segfault');
+
+    ok t_cmp($r->code, 500, "check for 500 response error");
+}



Mime
View raw message