Commits
- Commit:
0699137833e7cb9e377669787add963cafb545bc
- From:
- Tracey Emery <tracey@traceyemery.net>
- Date:
farewell, gotweb. you served us well. rm gotweb, ok stsp@
- Commit:
7a0564e3ba8d55d4f066d3ba0f35ff64fd6a8d60
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
enforce a per-uid connection limit in the gotd listen process
For now the limit is set at compile-time. It will become configurable
via gotd.conf soon.
ok op@
- Commit:
b1b2091b92cf99c8f0fe87488f2757f4d712e094
- From:
- Omar Polo <op@omarpolo.com>
- Date:
gotwebd: drop redundant NULL check
qs is guaranteed to be not NULL reached that point.
- Commit:
e73ab4217d50bcfc9f6a2d0a42a87a13cf72bf5d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
gotwebd: remove useless comment
should be placed further down, after BLOB and RSS are handled, but the
call to `gotweb_render_header' is successfully clear on its own.
- Commit:
77d0cae1993d80e742dbcf69ace80700ed616831
- From:
- Omar Polo <op@omarpolo.com>
- Date:
fmt
- Commit:
c602198afc6ce7d8c96397f6482e7aff4e02db41
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
gotd listen process forgot to initialize its client table siphash key
- Commit:
1a52c9bfc78a8d9769fbe735203345492730e813
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
convert gotd repo_read.c and repo_write.c to single-client
Because these processes are now started on demand per client connection
there is no need to keep track of multiple clients anymore. Also, these
processes can now exit when a disconnect event is received.
ok op, jamsek
- Commit:
7fdc3e586448ae55ae38bef76bb5a0a34538e5e6
- From:
- Mark Jamsek <mark@jamsek.dev>
- Date:
gotd: nix trailing whitespace and indentation fix
ok op@, stsp@
- Commit:
44587340e4924f8f07bf02c57a9a1c2527c2d8d4
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
remove filesystem access via bind(2) from gotd auth process
op@ pointed out a problem in my initial patch where I forgot
to call unveil(2) with a path before unveil(NULL, NULL).
ok op, jamsek
- Commit:
365cf0f34d08316d433e730a8663283029f729b3
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
move "unix" pledge promise from gotd parent to auth process
The listen process now communicates the client UID/GID to the parent,
and the auth process verifies this on behalf of the parent.
This allows us to remove the "unix" pledge promise from the parent,
removing parent access to syscalls such as listen() and accept() in
the AF_UNIX domain.
ok tracey@ op@
- Commit:
ef4e2f01b0bff14f003a72321ce0165a0df72fa1
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fix gotd authentication timeout
The authentication timeout was accidentally overriden by the request timeout.
Fix this and set both timeouts in the same place for clarity.
ok op@
- Commit:
5e25db14db9eb20ee11b68048b45b3e0f54d50eb
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
run gotd authentication in a separate child process
ok op@
- Commit:
b50a2b4639132c68255480f1c5c8785fd7cd8094
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fork gotd repo_read/repo_write children on demand
ok op, jamsek
- Commit:
898c8f8fd003d730d0490c1a5a807e4c11e30f4b
- From:
- Omar Polo <op@omarpolo.com>
- Date:
gotd: tweak error message if getpwnam fails
errno may not be set to something interesting so switch to fatalx, and
simplify the error message (knowing the failed function, which is also
wrong, doesn't buy much here.)
ok jamsek
- Commit:
9bd4acdbfe311b4b5045d0166f795ddbb5c27cbc
- From:
- Omar Polo <op@omarpolo.com>
- Date:
tweaks to request_bad.sh; no functional change
in no specific order:
- define the "aaa..." string as variable to avoid long lines (same
for the 255 "A")
- drop the comment about the "OpenBSD cmp(1) offset extension": it's
quite popular actually.
- consistently use "cmp foo.expected foo" instead of "cmp foo
foo.expected". It makes easier to copy-paste it if we want to
diff(1) the files.
- diff files when cmp(1) fails if feasible (i.e. when we're not
cmp(1) at offsets)
- use printf when the string to print contains "\n"
- add some missing blank lines between functions