Commits
- Commit:
818d6aeeb6295df313654e7810fd4cefb6869af5
- From:
- Omar Polo <op@omarpolo.com>
- Date:
sync changelog
- Commit:
7fa6717647863ac5c63126329c52336409712353
- From:
- Omar Polo <op@omarpolo.com>
- Date:
fmt
- Commit:
ff05125eb81e5bbf2cf05b8434d03bce584936e0
- From:
- Stephen Gregoratto <dev@sgregoratto.me>
- Via:
- omar-polo <op@omarpolo.com>
- Date:
Implement OCSP stapling support
Currently dogfooding this patch at gemini.sgregoratto.me. To test,
run the following command and look for the "OCSP response" header:
openssl s_client -connect "gemini.sgregoratto.me:1965" -status
- Commit:
387b976b99496c76d54831c44fb4c218e896c359
- From:
- Omar Polo <op@omarpolo.com>
- Date:
c->req may be NULL now
- Commit:
80444938654389aa7970aaa43c4590d63da6844d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
move bufferevent initialization early in handle_handshake
the error path needs an initialized bufferevent too, otherwise it'll
crash when trying to write the response.
This moves the initialisation early, right after the tls_handshake.
Another option would be to initialise it in do_accept, but that may be
too early.
- Commit:
33c4c3a5ba6331d7140be52dc3a4612abc07694d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
more small improvements for the quickstart
- Commit:
2ae10bb4ee41cd16a6f2abdb6196ab515818aa32
- From:
- Omar Polo <op@omarpolo.com>
- Date:
sync
- Commit:
c62a411f4f5c0a9b9ef6a1a474ee976bf5f711af
- From:
- Omar Polo <op@omarpolo.com>
- Date:
don't die on ECONNABORTED
ECONNABORTED is returned if a connections gets aborted after being
queued before the accept(2). I had some cases of
accept: Software caused connection abort
on FreeBSD, this should avoid that.
- Commit:
8af884dff41841074cadb91516c86c9ef954fe26
- From:
- Omar Polo <op@omarpolo.com>
- Date:
fix navigation links
- Commit:
7c6bf71dc840d29032eff3bd05964658bedd43fc
- From:
- Omar Polo <op@omarpolo.com>
- Date:
fix navigation links in *.gmi pages
- Commit:
fc4b58d450a46d5335ff5a2349c518e6fce42eaf
- From:
- Omar Polo <op@omarpolo.com>
- Date:
tweak the quickstart guide
- Commit:
c0f81ed39edc7b35d1b529cebcdb4bc709b38000
- From:
- Omar Polo <op@omarpolo.com>
- Date:
mention renew-certs in contrib.{gmi,html}
- Commit:
536026c565c7108d1672f2a37c4eb813b756f952
- From:
- Omar Polo <op@omarpolo.com>
- Date:
add script to automatically renew self-signed certificates
- Commit:
f0a01fc742e83b3f4736b5d64af3ab18148afc5a
- From:
- Omar Polo <op@omarpolo.com>
- Date:
two -n to dump the parsed configuration
This adds a barebone dumping of the parsed configuration. It is not
complete, but I'm interested in dumping the full path to `cert' and
`key' in order to write some scripts that can inspect the
configuration, extract the certificates and renew them when expired
automatically.
It's not easy to parse gmid configuration otherwise because the syntax
is flexible and users can use macros. Instead, the idea is to run
gmid and let it dump the configuration once it's been parsed in a
static and predictable format.
Now is possible to parse gmid configuration with, say, awk or perl.
- Commit:
5eb3fc905f5e3bd2f2d586fb1e0ceda879500b3e
- From:
- Omar Polo <op@omarpolo.com>
- Date:
don't work around a missing -Wno-unused-parameter
It's been there for a long time, and it's frankly annoying to pretend
to use parameters. Most of the time, they're there to satisfy an
interface and nothings more.