Bug 56872

Summary: Small request bodies bypass DeflateInflateLimitRequestBody
Product: Apache httpd-2 Reporter: Edward Lu <Chaosed0>
Component: mod_deflateAssignee: Apache HTTPD Bugs Mailing List <bugs>
Status: RESOLVED FIXED    
Severity: normal CC: covener
Priority: P2 Keywords: FixedInTrunk, PatchAvailable
Version: 2.5-HEAD   
Target Milestone: ---   
Hardware: PC   
OS: Linux   
Attachments: Fix small files bypassing DeflateInflateLimitRequestBody
Fix small files bypassing DeflateInflateLimitRequestBody

Description Edward Lu 2014-08-19 20:05:06 UTC 
Created attachment 31931 [details]
Fix small files bypassing DeflateInflateLimitRequestBody

If DeflateInflateLimitRequestBody (or LimitRequestBody) is specified with a value under 8192 and a deflated request body above that limit but below 8192 is passed in, the request is accepted. For example, if "LimitRequestBody 2048" is specified, and a gzipped 8000-byte file is used in the request body, the server will not complain.
Comment 1 Edward Lu 2014-08-20 13:11:14 UTC 
Created attachment 31934 [details]
Fix small files bypassing DeflateInflateLimitRequestBody

Removed one more line than I should have
Comment 2 Christophe JAILLET 2015-02-19 19:45:35 UTC 
Applied in trunk r1619383
Comment 3 Yann Ylavic 2015-02-25 16:02:20 UTC 
Backport proposed in r1662248.
Comment 4 Christophe JAILLET 2015-06-25 06:04:02 UTC 
This is part of the (unreleased) 2.4.13
backport in r1669555