Fabian Keil [Thu, 4 Feb 2021 15:43:35 +0000 (16:43 +0100)]
Add CVEs for security issues fixed in 3.0.31
Fabian Keil [Tue, 2 Feb 2021 11:13:39 +0000 (12:13 +0100)]
handle_established_connection(): Add parentheses to clarify an expression
Suggested by: David Binderman
Fabian Keil [Tue, 2 Feb 2021 10:22:03 +0000 (11:22 +0100)]
Add CVEs for security issues fixed in 3.0.29
Fabian Keil [Mon, 1 Feb 2021 12:14:16 +0000 (13:14 +0100)]
continue_https_chat(): Explicitly unset CSP_FLAG_CLIENT_CONNECTION_KEEP_ALIVE
... if process_encrypted_request() fails.
This makes it more obvious that the connection will not be reused.
Previously serve() relied on CSP_FLAG_SERVER_CONTENT_LENGTH_SET
and CSP_FLAG_CHUNKED being unset.
Inspired by a patch from Joshua Rogers.
Fabian Keil [Fri, 29 Jan 2021 11:16:22 +0000 (12:16 +0100)]
decompress_iob(): Improve a comment
Fabian Keil [Thu, 28 Jan 2021 20:10:28 +0000 (21:10 +0100)]
decompress_iob(): Add periods to a couple of log messages
Fabian Keil [Thu, 28 Jan 2021 10:58:07 +0000 (11:58 +0100)]
developer-manual: Add pushing the created tag to the release steps
Fabian Keil [Tue, 26 Jan 2021 09:28:48 +0000 (10:28 +0100)]
cgi_send_user_manual(): Also reject requests if the user-manual
... directive specifies a https:// URL.
Previously Privoxy would try and fail to open a local file.
Fabian Keil [Wed, 3 Feb 2021 10:10:34 +0000 (11:10 +0100)]
Rebuild HTML man page for 3.0.32 UNRELEASED
Fabian Keil [Wed, 3 Feb 2021 10:09:51 +0000 (11:09 +0100)]
Rebuild man page for 3.0.32 UNRELEASED
Fabian Keil [Wed, 3 Feb 2021 10:09:17 +0000 (11:09 +0100)]
Rebuild docs for 3.0.32 UNRELEASED
Fabian Keil [Wed, 3 Feb 2021 10:05:46 +0000 (11:05 +0100)]
Bump SMGL entities for 3.0.32 UNRELEASED
Fabian Keil [Tue, 2 Feb 2021 10:59:05 +0000 (11:59 +0100)]
Bump version to 3.0.32 UNRELEASED
Fabian Keil [Sun, 31 Jan 2021 09:40:31 +0000 (10:40 +0100)]
Update RSS feed for the 3.0.31 releases
Roland Rosenfeld [Sat, 30 Jan 2021 21:04:14 +0000 (22:04 +0100)]
Debian: Merge 3.0.31 release and prepare 3.0.32 GIT snapshot.
Roland Rosenfeld [Sat, 30 Jan 2021 21:05:02 +0000 (22:05 +0100)]
debian/copyright updated to new version.
Lee [Sat, 30 Jan 2021 19:13:16 +0000 (14:13 -0500)]
remember to configure the locally installed docs in config.txt
Fabian Keil [Sat, 30 Jan 2021 16:58:12 +0000 (17:58 +0100)]
Regenerate config file for 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:56:52 +0000 (17:56 +0100)]
Regenerate HTML man page
Fabian Keil [Sat, 30 Jan 2021 16:54:34 +0000 (17:54 +0100)]
Rebuild man page for 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:46:55 +0000 (17:46 +0100)]
Update announcement for Privoxy 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:34:42 +0000 (17:34 +0100)]
Rebuild docs for 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:36:42 +0000 (17:36 +0100)]
Bump SMGL entities for 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:33:19 +0000 (17:33 +0100)]
Add Joshua Rogers as contributor
Fabian Keil [Sat, 30 Jan 2021 16:31:33 +0000 (17:31 +0100)]
Import changes for Privoxy 3.0.31 stable
Fabian Keil [Sat, 30 Jan 2021 16:10:55 +0000 (17:10 +0100)]
Add ChangeLog entries for 3.0.31 stable
Fabian Keil [Thu, 28 Jan 2021 17:02:56 +0000 (18:02 +0100)]
decompress_iob(): Fix a memory leak
... when decompression fails "unexpectedly".
OVE-
20210128-0001.
Fabian Keil [Thu, 28 Jan 2021 15:26:45 +0000 (16:26 +0100)]
decompress_iob(): Fix detection of insufficient data
Instead of checking the size of the iob we have to
check the size of the actual data.
Previously Privoxy could try to work on uninitialized data.
Fabian Keil [Sat, 30 Jan 2021 14:04:17 +0000 (15:04 +0100)]
parse_cgi_parameters(): Make sure the maximum number of segments is large enough
... for ssplit() to succeed.
Prevents an assertion from getting triggered. OVE-
20210130-0001.
Reported by: Joshua Rogers (Opera)
Fabian Keil [Sat, 30 Jan 2021 16:02:48 +0000 (17:02 +0100)]
Bump version to 3.0.31 stable
Roland Rosenfeld [Fri, 29 Jan 2021 16:50:02 +0000 (17:50 +0100)]
Debian: Support nodoc build option.
Roland Rosenfeld [Fri, 29 Jan 2021 16:49:28 +0000 (17:49 +0100)]
debian/source/lintian-overrides: Remove unused override.
Roland Rosenfeld [Thu, 28 Jan 2021 20:56:00 +0000 (21:56 +0100)]
Fix debian version number.
Fabian Keil [Thu, 28 Jan 2021 10:35:49 +0000 (11:35 +0100)]
Rebuild config file
Fabian Keil [Thu, 28 Jan 2021 10:34:51 +0000 (11:34 +0100)]
Add missing actionsfile directive
Fabian Keil [Wed, 27 Jan 2021 16:43:04 +0000 (17:43 +0100)]
windows: Enable extended statistics and pcre host patterns
... when configuring.
No objections from: Lee
Fabian Keil [Tue, 26 Jan 2021 08:08:51 +0000 (09:08 +0100)]
Rebuild HTML man page
Fabian Keil [Tue, 26 Jan 2021 08:08:02 +0000 (09:08 +0100)]
Rebuild man page
Fabian Keil [Tue, 26 Jan 2021 08:06:58 +0000 (09:06 +0100)]
Rebuild docs
Fabian Keil [Tue, 26 Jan 2021 08:05:45 +0000 (09:05 +0100)]
Add two new ChangeLog entries
Fabian Keil [Tue, 26 Jan 2021 08:02:54 +0000 (09:02 +0100)]
announcement: Add two new ChangeLog entries
Fabian Keil [Tue, 26 Jan 2021 08:00:52 +0000 (09:00 +0100)]
Add two more ChangeLog entries
Fabian Keil [Tue, 26 Jan 2021 06:57:38 +0000 (07:57 +0100)]
Bump copyright
Fabian Keil [Tue, 26 Jan 2021 06:29:37 +0000 (07:29 +0100)]
Let the uninstall target remove the config file if DESTDIR is set
... and properly announce the deletion of the configuration files.
Apparently I broke this in 2008 (
cc77d4eec4).
Fabian Keil [Tue, 26 Jan 2021 06:21:15 +0000 (07:21 +0100)]
Update MAN_DEST to use man section 8
Fabian Keil [Mon, 25 Jan 2021 20:33:01 +0000 (21:33 +0100)]
Fix a regression test
Even with FEATURE_GRACEFUL_TERMINATION enabled the request
for http://p.p/die will result in status code 403 as no
trusted Referer is set.
Fabian Keil [Mon, 25 Jan 2021 17:55:06 +0000 (18:55 +0100)]
Only compile ssl_release() when FEATURE_GRACEFUL_TERMINATION is enabled
Fabian Keil [Mon, 25 Jan 2021 15:56:29 +0000 (16:56 +0100)]
Fix build with LibreSSL 3.3.1
Fabian Keil [Mon, 25 Jan 2021 13:35:13 +0000 (14:35 +0100)]
announcement: Add Windows 10 to the list of supported operating systems
Fabian Keil [Mon, 25 Jan 2021 13:34:13 +0000 (14:34 +0100)]
announcement: Use the participate and donate redirect links
Fabian Keil [Mon, 25 Jan 2021 13:32:50 +0000 (14:32 +0100)]
Update announcement for 3.0.30 stable
Fabian Keil [Mon, 25 Jan 2021 13:17:17 +0000 (14:17 +0100)]
Rebuild user manual with changes for 3.0.30 stable
Fabian Keil [Mon, 25 Jan 2021 13:16:56 +0000 (14:16 +0100)]
Import changes for 3.0.30 stable
Fabian Keil [Mon, 25 Jan 2021 13:11:27 +0000 (14:11 +0100)]
Polish ChangeLog entries for 3.0.30 stable
Fabian Keil [Sun, 24 Jan 2021 11:26:57 +0000 (12:26 +0100)]
privoxy-regression-test: Bump copyright
Fabian Keil [Sun, 24 Jan 2021 11:25:54 +0000 (12:25 +0100)]
privoxy-regression-test: Add a --check-bad-ssl option
... that can be used to verify that Privoxy detects
certificate problems when accessing the test sites
from badssl.com.
Fabian Keil [Sun, 24 Jan 2021 11:00:45 +0000 (12:00 +0100)]
ssl_send_certificate_error(): Update the LOG_LEVEL_CLF message to use status code 403
Follow-up for
f048c3c93d1.
Fabian Keil [Sat, 23 Jan 2021 18:37:20 +0000 (19:37 +0100)]
Minor ChangeLog improvements
Fabian Keil [Sat, 23 Jan 2021 15:55:25 +0000 (16:55 +0100)]
Add ChangeLog entries for changes from
2ecae81f1 to
ee191563e8
Fabian Keil [Sat, 23 Jan 2021 13:41:07 +0000 (14:41 +0100)]
privoxy-log-parser: Highlight: 'Chunk size 291 exceeds buffered data left. Already digested 69894 of 69957 buffered bytes.'
Fabian Keil [Sat, 23 Jan 2021 13:08:12 +0000 (14:08 +0100)]
privoxy-log-parser: Highlight: "filtering request body from client 127.0.0.1 (size 958) with 'null-filter' produced 0 hits (new size 958)."
Fabian Keil [Sat, 23 Jan 2021 13:00:10 +0000 (14:00 +0100)]
pcrs_filter_impl(): Improve wording of a log message
Fabian Keil [Sat, 23 Jan 2021 12:55:07 +0000 (13:55 +0100)]
receive_chunked_client_request_body(): Fix language of an error message
Fabian Keil [Fri, 22 Jan 2021 12:23:07 +0000 (13:23 +0100)]
Block requests for trc-events.taboola.com/
Fabian Keil [Fri, 22 Jan 2021 12:02:50 +0000 (13:02 +0100)]
listen_loop(): Split long line in two
Fabian Keil [Fri, 22 Jan 2021 12:01:35 +0000 (13:01 +0100)]
listen_loop(): Delay the call to ssl_release()
... and only release the TLS backend resources if there
are no active connections left.
Prevents crashes when exiting "gracefully" at the wrong time.
Fabian Keil [Fri, 22 Jan 2021 11:58:46 +0000 (12:58 +0100)]
sig_handler(): Split a long line in two
Fabian Keil [Fri, 22 Jan 2021 10:12:40 +0000 (11:12 +0100)]
privoxy-log-parser: Highlight "Client tag 'forward-directly' matches"
Fabian Keil [Fri, 22 Jan 2021 10:11:41 +0000 (11:11 +0100)]
privoxy-log-parser: Higlight "Enlisting tag 'forward-directly' for client 127.0.0.1."
Fabian Keil [Fri, 22 Jan 2021 10:17:50 +0000 (11:17 +0100)]
Add periods to a couple of tagging-related log messages
Fabian Keil [Fri, 22 Jan 2021 08:15:01 +0000 (09:15 +0100)]
Fix documented error code of host_to_hash()
Fabian Keil [Fri, 22 Jan 2021 08:13:14 +0000 (09:13 +0100)]
MbedTLS: Use mbedtls_md5_ret() instead of mbedtls_md5()
As Roland pointed out the latter has been deprecated
years ago and causes a warning on Debian GNU/Linux.
Fabian Keil [Thu, 21 Jan 2021 14:05:08 +0000 (15:05 +0100)]
Let the crude-parental filter provide a short reason when blocking
While at it, add new lines at the end of the block page.
Roland Rosenfeld [Thu, 21 Jan 2021 17:52:20 +0000 (18:52 +0100)]
15_mansection8 and 35_man-spelling are now incorporated upstream.
Fabian Keil [Wed, 20 Jan 2021 17:54:44 +0000 (18:54 +0100)]
Add #187: There should be a convenient way to see the versions of the libraries Privoxy is using
Fabian Keil [Wed, 20 Jan 2021 17:44:34 +0000 (18:44 +0100)]
Regenerate developer manual with the updated man page reference
Fabian Keil [Wed, 20 Jan 2021 17:43:33 +0000 (18:43 +0100)]
privoxy-regression-test: Update Privoxy man page reference now that the section is 8
Fabian Keil [Wed, 20 Jan 2021 17:43:16 +0000 (18:43 +0100)]
uagen: Update Privoxy man page reference now that the section is 8
Fabian Keil [Wed, 20 Jan 2021 17:43:07 +0000 (18:43 +0100)]
privoxy-log-parser: Update Privoxy man page reference now that the section is 8
Fabian Keil [Wed, 20 Jan 2021 17:41:23 +0000 (18:41 +0100)]
p-authors.sgml: Update man page section which has been changed to 8
Fabian Keil [Wed, 20 Jan 2021 17:41:07 +0000 (18:41 +0100)]
developer-manual: Update man page section which has been changed to 8
Fabian Keil [Wed, 20 Jan 2021 17:35:51 +0000 (18:35 +0100)]
Rename privoxy.1 to privoxy.8
Suggested by Roland.
Roland Rosenfeld [Mon, 21 Apr 2003 09:11:31 +0000 (11:11 +0200)]
Move man page from man section 1 to man section 8.
Roland Rosenfeld [Sun, 1 May 2016 12:21:22 +0000 (14:21 +0200)]
privoxy-log-parser: Fix perldoc typo
Fabian Keil [Thu, 21 Jan 2021 10:48:52 +0000 (11:48 +0100)]
Change wildcard_dst to short to reduce the size of struct access_control_list
Fabian Keil [Thu, 21 Jan 2021 10:41:47 +0000 (11:41 +0100)]
Rearrange struct client_state to reduce memory on amd64
Move content_type up and change ssl_with_server_is_opened
and ssl_with_client_is_opened to short.
Fabian Keil [Thu, 21 Jan 2021 10:28:24 +0000 (11:28 +0100)]
Rearrange members of struct http_request to reduce padding on amd64
While at it, change member 'ssl' to short to save memory.
Fabian Keil [Thu, 21 Jan 2021 10:25:39 +0000 (11:25 +0100)]
Rearrange members of struct reusable_connection
... to save 4 bytes of padding on amd64.
Fabian Keil [Thu, 21 Jan 2021 10:22:26 +0000 (11:22 +0100)]
Reorder gateway_host in struct forward_spec to save memory
Fabian Keil [Thu, 21 Jan 2021 10:20:12 +0000 (11:20 +0100)]
Reorder need_bind in struct configuration_spec to save memory
Fabian Keil [Thu, 21 Jan 2021 10:13:19 +0000 (11:13 +0100)]
Reorder dcount in the url_spec struct to save memory
Roland Rosenfeld [Wed, 20 Jan 2021 18:56:07 +0000 (19:56 +0100)]
Optimize debian/rules clean to restore pristine state.
Roland Rosenfeld [Wed, 20 Jan 2021 18:45:14 +0000 (19:45 +0100)]
Prepare Debian release 3.0.30-1~pp-1.
Fabian Keil [Wed, 20 Jan 2021 15:21:20 +0000 (16:21 +0100)]
Rebuild HTML man page for Privoxy 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:20:31 +0000 (16:20 +0100)]
Rebuild privoxy.1 for Privoxy 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:18:51 +0000 (16:18 +0100)]
Rebuild docs
Fabian Keil [Wed, 20 Jan 2021 15:17:54 +0000 (16:17 +0100)]
Bump SMGL entities for 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:10:15 +0000 (16:10 +0100)]
Add ChangeLog entries for changes from
91f9e616645 to
2ecae81f1
Fabian Keil [Tue, 19 Jan 2021 19:29:34 +0000 (20:29 +0100)]
js-annoyances filter: Remove a duplicate pcrs command
Fabian Keil [Mon, 18 Jan 2021 17:33:11 +0000 (18:33 +0100)]
ssl_send_certificate_error(): Send the error message with status code 403 instead of 200