~ubuntu-branches/ubuntu/quantal/apt-cacher-ng/quantal-backports

Committer: Bazaar Package Importer
Author(s): Eduard Bloch
Date: 2011-08-01 23:40:11 UTC
mfrom: (1.1.29 upstream) (29.1.13 sid)
Revision ID: james.westby@ubuntu.com-20110801234011-2ouft5pay71773vs

Tags: 0.6.4-1

http://bugs.debian.org/628995

http://bugs.debian.org/616091

* New upstream version
  + fixes potential pipeline freeze (closes: #628995)
  + supports "soft" blacklisting of bad hosts when important files are
    missing (see keyfile in documentation, closes: #616091)

files added:
GNUmakefile

INSTALL.solaris

conf/debrep.hooks

conf/delconfirm.html

dbgen/checkdebmirrors.sh

debian/po/pt_BR.po

deprecated

deprecated/.depend

deprecated/checkenv.sh

deprecated/oldmakefile

doc/html/distinstructions.html

include/acsyscap.h.in

include/cleaner.h

include/mirror.h

source/cleaner.cc

source/mirror.cc

files removed:
.depend

Makefile

checkenv.sh

client/acbuf.cc

client/acbuf.h

client/aclogger.h

client/config.h

client/meta.h

files modified:
CMakeLists.txt

ChangeLog

INSTALL

README

TODO

VERSION

client/client.cc

conf/acng.conf

conf/archlx_mirrors

conf/backends_ubuntu.default

conf/cygwin_mirrors

conf/deb_mirrors.gz

conf/debvol_mirrors.gz

conf/maint.html

conf/report.html

conf/style.css

conf/ubuntu_mirrors

dbgen/debsplit.pl

dbgen/sig-debian

dbgen/sig-ubuntu

debian/README.Debian

debian/apt-cacher-ng.init

debian/apt-cacher-ng.logrotate

debian/apt-cacher-ng.postinst

debian/changelog

debian/control

debian/po/cs.po

debian/po/de.po

debian/po/es.po

debian/po/eu.po

debian/po/fi.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/ja.po

debian/po/pt.po

debian/po/ru.po

debian/po/sv.po

debian/po/vi.po

debian/rules

distkill.pl

doc/README

doc/apt-cacher-ng.pdf

doc/html/Intro.html

doc/html/bugs.html

doc/html/config-serv.html

doc/html/config-servquick.html

doc/html/cont.html

doc/html/howtos.html

doc/html/index.html

doc/html/maint.html

doc/html/secure.html

doc/html/troublefaq.html

doc/html/usage.html

doc/src/README.but

fs/httpfs.cc

include/acbuf.h

include/acfg.h

include/aclogger.h

include/bgtask.h

include/caddrinfo.h

include/config.h

include/csmapping.h

include/debug.h

include/dlcon.h

include/dljob.h

include/expiration.h

include/fileio.h

include/fileitem.h

include/header.h

include/job.h

include/lockable.h

include/maintenance.h

include/meta.h

include/pkgimport.h

include/showinfo.h

include/sockio.h

include/tcpconnect.h

source/acbuf.cc

source/acfg.cc

source/acfg_defaults.cc

source/aclogger.cc

source/apt-cacher.cc

source/bgtask.cc

source/caddrinfo.cc

source/conn.cc

source/conserver.cc

source/dlcon.cc

source/dljob.cc

source/expiration.cc

source/fileitem.cc

source/filereader.cc

source/header.cc

source/job.cc

source/lockable.cc

source/maintenance.cc

source/meta.cc

source/pkgimport.cc

source/showinfo.cc

source/tcpconnect.cc

Show diffs side-by-side

added added

removed removed

source/showinfo.cc

#include "meta.h"

#include "acfg.h"

#include "filereader.h"

#include "fileio.h"

using namespace MYSTD;

{

}

/// Not used, Run is overriden instead

void tStaticFileSend::Action(const MYSTD::string & src)

void tStaticFileSend::ModContents(mstring & contents, cmstring &cmd)

{

StrSubst(contents, "$SERVERIP", GetHostname());

StrSubst(contents, "$SERVERPORT", acfg::port.c_str());

StrSubst(contents, "$REPAGE", SZPATHSEPUNIX + acfg::reportpage);

tSS footer;

_AddFooter(footer);

StrSubst(contents, "$FOOTER", footer);

if (contents.find("@") != stmiss)

{

char buf[1024];

// ok, needs a set of advanced variables

gethostname(buf, _countof(buf));

StrSubst(contents, "@H", buf);

if (acfg::exfailabort)

StrSubst(contents, "@A", "checked");

if (contents.find("@T") != stmiss)

{

StrSubst(contents, "@T", cmd.find("doCount") != stmiss

? aclog::GetStatReport()

: szReportButton);

}

void tStaticFileSend::Run(const string &cmd)

{

LOGSTART2("tStaticFileSend::Run", cmd);

tSS buf(1023);

string contents;

filereader fr;

if(!fr.OpenFile(acfg::confdir+SZPATHSEP+m_sFileName))

else

{

contents.assign(fr.GetBuffer(), fr.GetSize());

StrSubst(contents, "$SERVERIP", GetHostname());

StrSubst(contents, "$SERVERPORT", acfg::port.c_str());

StrSubst(contents, "$REPAGE", SZPATHSEPUNIX + acfg::reportpage);

tSS footer;

_AddFooter(footer);

StrSubst(contents, "$FOOTER", footer);

if(contents.find("@") != stmiss)

{

// ok, needs a set of advanced variables

gethostname(buf.wptr(), buf.freecapa());

StrSubst(contents, "@H",buf.rptr());

if(acfg::exfailabort)

StrSubst(contents, "@A", "checked");

if(contents.find("@T") != stmiss)

{

StrSubst(contents, "@T",

cmd.find("doCount")!=stmiss ? aclog::GetStatReport() : szReportButton);

}

ModContents(contents, cmd);

}

buf.clear();

tSS buf(1023);

buf << "HTTP/1.1 " << (m_sHttpCode ? m_sHttpCode : "200")

<< " OK\r\nConnection: close\r\nContent-Type: "

<< (m_sMimeType?m_sMimeType:"text/html")

SendRawData(buf.rptr(), buf.size(), MSG_MORE);

SendRawData(contents.data(), contents.length(), 0);

}

void tDeleter::ModContents(mstring & contents, cmstring &cmd)

{

#define BADCHARS "<>\"'|\t"

tStrPos qpos=cmd.find("?");

if(cmd.find_first_of(BADCHARS)!=stmiss // what the f..., XSS attempt?

|| qpos==stmiss)

{

contents.clear();

return;

}

tStrVec toks, files;

bool bConfirmMode(stmiss==cmd.find("doDeleteYes"));

tSS sHidParms;

Tokenize(cmd.substr(qpos+1), "&", toks);

for(tStrVecIterConst it=toks.begin(); it!=toks.end(); it++)

{

char *sep(0);

if(startsWithSz(*it, "kf")

100

&& strtoul(it->c_str()+2, &sep, 10)>0

101

&& sep && '=' == *sep)

102

{

103

files.push_back(UrlDecode(sep+1));

104

}

105

}

106

107

// do stricter path checks and prepare the query page data

108

109

unsigned int lfd(1);

110

for(tStrVecIterConst it=files.begin(); it!=files.end(); it++)

111

{

112

if(it->find_first_of(BADCHARS)!=stmiss // what the f..., XSS attempt?

113

|| stmiss != it->find("..") )

114

{

115

contents.clear();

116

return;

117

}

118

if(bConfirmMode)

119

{

120

sHidParms << "<input type=\"hidden\" name=\"kf" << ++lfd << "\" value=\""

121

<< *it <<"\">\n";

122

}

123

else

124

{

125

sHidParms<<"Deleting " << *it<<"<br>\n";

126

::unlink((acfg::cacheDirSlash+*it).c_str());

127

::unlink((acfg::cacheDirSlash+*it+".head").c_str());

128

}

129

130

}

131

StrSubst(contents, "$COUNT", ltos(files.size()));

132

StrSubst(contents, "$STUFF", sHidParms);

133

134

if(!bConfirmMode)

135

{

136

StrSubst(contents, "$VISACTION", "visible");

137

StrSubst(contents, "$VISQUESTION", "hidden");

138

}

139

else // just confirm

140

{

141

StrSubst(contents, "$VISACTION", "hidden");

142

StrSubst(contents, "$VISQUESTION", "visible");

143

}

144

}

145

Older »