aboutsummaryrefslogtreecommitdiffstats
path: root/lib
AgeCommit message (Collapse)Author
2011-02-22inets: prevent XSS in error pagesMichael Santos
Prevent user controlled input from being interpreted as HTML in error pages by encoding the reserved HTML characters. The reserved character set should be safe for displaying data within the body of HTML pages as outlined here: http://www.owasp.org/index.php/XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet Previously, weird URLs were URI encoded in the error page. This worked quite well but the URL would be displayed in the HTML in percent encoded format. There was also a check for URIs that were already escaped (by the browser) that would fail if the browser sent an URI containing a "%", e.g.: w3m "http://localhost:8080/<b>foo</b>?%" Also encode the HTTP method and version, since it's possible they may be manipulated: <b>FOO</b> /index.html HTTP/1.0 GET /index.html <b>foo</b>/1.0 Encode the static messages to prevent characters from being interpreted as HTML such as "heavy load (>~w processes)".
2011-02-18Merge branch 'mh/file-fix_spec' into devNiclas Axelsson
* mh/file-fix_spec: Fix -spec for file:write_file/3 OTP-9067
2011-02-18Merge branch 'sverker/ets_halfword_highmem/OTP-8941' into devSverker Eriksson
* sverker/ets_halfword_highmem/OTP-8941: HALFWORD ETS Fix copyright year in some source files Fix vm crash in kernel test case seq_trace_SUITE:call remove NIF compile warning: no previous prototype for ‘nif_init’ Refuse to load NIF library on wrong VM variant (halfword/fullword) HALFWORD ETS match spec heap fragment optimization HALFWORD ETS removed eheap and improved test case t_match_spec_run HALFWORD ETS Further match spec optimization to minimize copying and garbage HALFWORD ETS db_prog_match optimization HALFWORD ETS Fix segv for match spec with several function and guards HALFWORD Make system_info mseg_alloc report both low/high mem HALFWORD Fix segv caused by erlang:halt HALFWORD Make more allocators use high mem (binary, fixed and driver) HALFWORD ETS 32-bit arch fixes and other cleanups HALFWORD ETS nicer update_element HALFWORD ETS Real matching on relative terms HALFWORD first stab at high mem alloc HALFWORD ETS relative terms Conflicts: erts/emulator/test/driver_SUITE.erl
2011-02-18Merge branch 'jp/dependencies_makefile' into devBjörn Gustavsson
* jp/dependencies_makefile: Add dependencies Makefile generation to erlc(1) and compile(3) Conflicts: lib/compiler/test/compile_SUITE.erl OTP-9065
2011-02-18Add dependencies Makefile generation to erlc(1) and compile(3)Jean-Sébastien Pédron
This is useful when a project is built with Makefiles and erlc(1) instead of EMakefiles. Tracking dependencies by hand is error-prone and it becomes painful when using external application headers like EUnit's one. A dependencies Makefile will look like this: module.beam: module.erl \ /usr/local/lib/erlang/lib/eunit-2.1.4/include/eunit.hrl \ header.hrl When included in the main Makefile, 'module' will be recompiled only when needed. GCC offers the same feature and new erlc(1) options are compatible with it. More informations at: http://wiki.github.com/dumbbell/otp/dependencies-makefile
2011-02-17Update ipv6 testcase to be skipped if no ipv6 hosts are definedLukas Larsson
2011-02-17Update ftp suite to take config from ct:get_configLukas Larsson
2011-02-17Update gethostname test cases for v6 to use the v6 hosts instead of v4Lukas Larsson
2011-02-17Rename Suite Callback to Common Test HookLukas Larsson
2011-02-17Strip ts.config of internal addresses.Lukas Larsson
2011-02-17Update ssl orber tests to be skipped if there is no ssl installedLukas Larsson
2011-02-17Update init_per_suite to skip all tests if crypto does not existLukas Larsson
2011-02-17Update so that count_children_memory is skipped on +Meamin emulatorsLukas Larsson
2011-02-17Update so that tests are skipped if odbc:connect failsLukas Larsson
2011-02-17Update init_per_testcase to kill all slaves when called.Lukas Larsson
This is to prevent testcases which fail to before to chain with the ones run after.
2011-02-17Update and add cover spec files to work with common_testLukas Larsson
2011-02-17Update all test specsLukas Larsson
2011-02-17Fix formatting for wxLukas Larsson
2011-02-17Fix formatting for toolsLukas Larsson
2011-02-17Fix formatting for syntax_toolsLukas Larsson
2011-02-17Fix formatting for stdlibLukas Larsson
2011-02-17Fix formatting for sslLukas Larsson
2011-02-17Fix formatting for runtime_toolsLukas Larsson
2011-02-17Fix formatting for reltoolLukas Larsson
2011-02-17Fix formatting for public_keyLukas Larsson
2011-02-17Fix formatting for perceptLukas Larsson
2011-02-17Fix formatting for parsetoolsLukas Larsson
2011-02-17Fix formatting for os_monLukas Larsson
2011-02-17Fix formatting for orberLukas Larsson
2011-02-17Fix formatting for odbcLukas Larsson
2011-02-17Fix formatting for observerLukas Larsson
2011-02-17Fix formatting for mnesiaLukas Larsson
2011-02-17Fix formatting and also some migration fixes for megacoLukas Larsson
2011-02-17Fix formatting for kernelLukas Larsson
2011-02-17Fix formatting for jinterfaceLukas Larsson
2011-02-17Fix formatting for invisionLukas Larsson
2011-02-17Fix formatting for inetsLukas Larsson
2011-02-17Fix formatting for icLukas Larsson
2011-02-17Fix formatting for eunitLukas Larsson
2011-02-17Fix formatting for etLukas Larsson
2011-02-17Fix formatting for erl_interfaceLukas Larsson
2011-02-17Fix formatting for edocLukas Larsson
2011-02-17Fix formatting and also some migration fixes for debuggerLukas Larsson
2011-02-17Fix formatting for cosPropertyLukas Larsson
2011-02-17Fix formatting for cosNotificationLukas Larsson
2011-02-17Fix formatting for cosFileTransferLukas Larsson
2011-02-17Fix formatting for cosTransactionsLukas Larsson
2011-02-17Fix formatting for cosTimeLukas Larsson
2011-02-17Fix formatting for cosEventDomainLukas Larsson
2011-02-17Fix formatting for cosEventLukas Larsson