Resolves: #1932442 - "ServerTokens FullRelease" support

2021-07-01 12:56:22 +02:00 · 2021-07-01 12:56:22 +02:00 · 566c28b19e
parent f4d5942464
commit 566c28b19e
2 changed files with 53 additions and 1 deletions
--- a/httpd-2.4.48-full-release.patch
+++ b/httpd-2.4.48-full-release.patch
@ -0,0 +1,46 @@
+diff --git a/server/core.c b/server/core.c
+index c36ff26..621c82a 100644
+--- a/server/core.c
+++ b/server/core.c
+@@ -3569,6 +3569,7 @@ enum server_token_type {
+     SrvTk_MINIMAL,       /* eg: Apache/2.0.41 */
+     SrvTk_OS,            /* eg: Apache/2.0.41 (UNIX) */
+     SrvTk_FULL,          /* eg: Apache/2.0.41 (UNIX) PHP/4.2.2 FooBar/1.2b */
+    SrvTk_FULL_RELEASE,  /* eg: Apache/2.0.41 (UNIX) (Release 32.el7) PHP/4.2.2 FooBar/1.2b */ 
+     SrvTk_PRODUCT_ONLY   /* eg: Apache */
+ };
+ static enum server_token_type ap_server_tokens = SrvTk_FULL;
+@@ -3645,7 +3646,10 @@ static void set_banner(apr_pool_t *pconf)
+     else if (ap_server_tokens == SrvTk_MAJOR) {
+         ap_add_version_component(pconf, AP_SERVER_BASEPRODUCT "/" AP_SERVER_MAJORVERSION);
+     }
+-    else {
+    else if (ap_server_tokens == SrvTk_FULL_RELEASE) {
+        ap_add_version_component(pconf, AP_SERVER_BASEVERSION " (" PLATFORM ") (Release @RELEASE@)");
+    }
+    else {        
+         ap_add_version_component(pconf, AP_SERVER_BASEVERSION " (" PLATFORM ")");
+     }
+ 
+@@ -3653,7 +3657,7 @@ static void set_banner(apr_pool_t *pconf)
+      * Lock the server_banner string if we're not displaying
+      * the full set of tokens
+      */
+-    if (ap_server_tokens != SrvTk_FULL) {
+    if (ap_server_tokens != SrvTk_FULL && ap_server_tokens != SrvTk_FULL_RELEASE) {
+         banner_locked++;
+     }
+     server_description = AP_SERVER_BASEVERSION " (" PLATFORM ")";
+@@ -3686,8 +3690,11 @@ static const char *set_serv_tokens(cmd_parms *cmd, void *dummy,
+     else if (!ap_cstr_casecmp(arg, "Full")) {
+         ap_server_tokens = SrvTk_FULL;
+     }
+    else if (!strcasecmp(arg, "Full-Release")) {
+        ap_server_tokens = SrvTk_FULL_RELEASE;
+    }
+     else {
+-        return "ServerTokens takes 1 argument: 'Prod(uctOnly)', 'Major', 'Minor', 'Min(imal)', 'OS', or 'Full'";
+        return "ServerTokens takes 1 argument: 'Prod(uctOnly)', 'Major', 'Minor', 'Min(imal)', 'OS', 'Full' or 'Full-Release'";
+     }
+ 
+     return NULL;
--- a/httpd.spec
+++ b/httpd.spec
@ -13,7 +13,7 @@
 Summary: Apache HTTP Server
 Name: httpd
 Version: 2.4.48
-Release: 5%{?dist}
+Release: 6%{?dist}
 URL: https://httpd.apache.org/
 Source0: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2
 Source1: https://www.apache.org/dist/httpd/httpd-%{version}.tar.bz2.asc
@ -97,6 +97,8 @@ Patch60: httpd-2.4.43-enable-sslv3.patch
 Patch61: httpd-2.4.46-htcacheclean-dont-break.patch
 Patch62: httpd-2.4.48-r1876934.patch
 Patch63: httpd-2.4.48-sslprivkey.patch
+# https://bugzilla.redhat.com/show_bug.cgi?id=1932442
+Patch64: httpd-2.4.48-full-release.patch

 # Security fixes

@ -250,6 +252,7 @@ written in the Lua programming language.
 %patch61 -p1 -b .htcacheclean-dont-break
 %patch62 -p1 -b .r1876934
 %patch63 -p1 -b .sslprivkey
+%patch64 -p1 -b .full-release

 # Patch in the vendor string
 sed -i '/^#define PLATFORM/s/Unix/%{vstring}/' os/unix/os.h
@ -791,6 +794,9 @@ exit $rv
 %{_rpmconfigdir}/macros.d/macros.httpd

 %changelog
+* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-6
+- Resolves: #1932442 - "ServerTokens FullRelease" support
+
 * Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-5
 - mod_ssl: fix loading encrypted privkeys with OpenSSL 3.0 (#1976080)