op public repos

Commits

Commit:: 02be96c6ddfc34e448cccd095b4f3d0efe4de8a3
From:: Omar Polo <op@omarpolo.com>
Date:: Tue Feb 9 22:30:04 2021 UTC

add `require client ca' rule to require certs signed by a CA

Commit:: 57ec3e776e0333167134b5b186f9c72870eb228d
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Feb 8 20:50:30 2021 UTC

refactor apply_block_return move the strip and fmt logic to their own function

Commit:: df58efff26529acd6a5675d3b4044d494b138397
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Feb 8 12:46:46 2021 UTC

fix seccomp for the new event loop add/remove syscalls from the BPF filter and move sandbox() after libevent initialisation

diff | patch | tree

Commit:: abc007d2b32f597054399bd8fe72c1fbffdfb6a9
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Feb 8 10:01:45 2021 UTC

rewrite main loop using libevent

diff | patch | tree

Commit:: b63e30ff449ee1cf0091d5431f9b72cdd3b1e7e0
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Feb 7 21:47:01 2021 UTC

define TLS_CLIENT_NOT_BEFORE/NOT_AFTER in CGI scripts

diff | patch | tree

Commit:: 3077ce5bee2a492a165e88b9a60bda87c80caedc
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Feb 7 16:10:09 2021 UTC

don't fprintf

diff | patch | tree

Commit:: 3abf91b0b4a06e5d2f90e41f948e9c16478e23c7
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Feb 7 15:30:28 2021 UTC

improve logs management

diff | patch | tree

Commit:: cfb8a77fd4e7addd5486d68419bb44fd80b63e3b
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Feb 7 12:04:11 2021 UTC

handle also EAGAIN together with EWOULDBLOCK

diff | patch | tree

Commit:: e3ddf390950bf51d0c6c9cc6b931879006936e4c
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Feb 6 18:28:43 2021 UTC

add the ``entrypoint'' option

diff | patch | tree

Commit:: cd761624942ce5bd06fcf939400ed41b8166d37d
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Feb 6 17:31:03 2021 UTC

swap check in vhost_* fns it's faster (statistically speaking) to first compute if the option is set and then fnmatch than the inverse. This way we can avoid unnecessary fnmatch.

diff | patch | tree

Commit:: 6abda252e960943a302f7a945b1d008e463ea316
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Feb 6 17:22:37 2021 UTC

added ``block return'' and ``strip'' options

diff | patch | tree

Commit:: daac4a945284dd0f8baa3f35234981f7bc0426da
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Feb 6 14:36:26 2021 UTC

fix auto index precedence

diff | patch | tree

Commit:: ca21e1004303c6ccff7713813ab5238426414d8f
From:: Omar Polo <op@omarpolo.com>
Date:: Thu Feb 4 13:23:15 2021 UTC

reload configuration on SIGHUP

diff | patch | tree

Commit:: 1e3ef7ab4f803b6309fcddc11dc23ecc5f33be27
From:: Omar Polo <op@omarpolo.com>
Date:: Wed Feb 3 21:14:48 2021 UTC

use upper bound given by poll it's a waste to loop through all fds. We know the *exact* number of clients that needs attention, so use that information to limit the looping.

diff | patch | tree

Commit:: 9b8f5ed2c0c53467115b3b1d6754642d8e5e4da1
From:: Omar Polo <op@omarpolo.com>
Date:: Wed Feb 3 14:16:39 2021 UTC

revert commit 346f28eeaa205d268d1e63c7ffd86cf041f6d1e6 keep mark_nonblock in utils.c, as otherwise the build for the regress suite will fail (mark_nonblock needs fatal which is in gmid.c, and we can't link gmid.o with the regress suite...)

diff | patch | tree

More ↓