Commits


remove the last tentacles of the hidden `span' fcgi feature


make the various strings in the config fixed-length will help in future restructuring to have fixed-size objects.


remove stale comment


retire fcgi' prog field spawning programs was a hidden feature used only for testing. It's gross and when got removed, I forgot to remove the field as well.


properly initialize the TAILQs at vhost creation


drop cgi vestiges from the struct host The `env' list is no longer used since CGI scripts were removed


retire the deprecated `mime' and `map' config options


make the mime types fixed-sized too


make config fields `chroot' and `user' fixed-size


optionally disable the sandbox on some systems The FreeBSD and Linux' sandbox can't deal with `fastcgi' and `proxy' configuration rules: new sockets needs to be opened and it's either impossible (the former) or a huge pain in the arse (the latter). The sandbox is still always used in case only static files are served.


get rid of the CGI support I really want to get rid of the `executor' process hack for CGI scripts and its escalation to allow fastcgi and proxying to work on non-OpenBSD. This drops the CGI support and the `executor' process entirely and is the first step towards gmid 2.0. It also allows to have more secure defaults. On non-OpenBSD systems this means that the sandbox will be deactivated as soon as fastcgi or proxying are used: you can't open sockets under FreeBSD' capsicum(4) and I don't want to go thru the pain of making it work under linux' seccomp/landlock. Patches are always welcome however. For folks using CGI scripts (hey, I'm one of you!) not all hope is lost: fcgiwrap or OpenBSD' slowcgi(8) are ways to run CGI scripts as they were FastCGI applications. fixes for the documentation and to the non-OpenBSD sandboxes will follow.


don't load the built-in list when using `types'


allow add_mime to fail add_mime nows allocate dinamically copies of the passed strings, so that we can actually free what we parse from the config file. This matters a lot especially with lengthy `types' block: strings that reach the internal mapping are never free'd, so every manual addition is leaked.


print a deprecation message for the map rule


const-ify some tables matches found with % grep -R '=[ ]*{' . | fgrep -v const