Fabian Keil [Fri, 11 Sep 2020 12:04:30 +0000 (14:04 +0200)]
add_to_iob(): Fix format specifiers in a log message
Fabian Keil [Fri, 11 Sep 2020 12:02:49 +0000 (14:02 +0200)]
load_one_re_filterfile(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 12:01:03 +0000 (14:01 +0200)]
load_config(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:59:08 +0000 (13:59 +0200)]
prepare_csp_for_next_request(): Fix format specifiers in a log message
Fabian Keil [Fri, 11 Sep 2020 11:57:02 +0000 (13:57 +0200)]
handle_established_connection(): Fix format specifiers in log messages
Fabian Keil [Fri, 11 Sep 2020 11:53:25 +0000 (13:53 +0200)]
send_https_request(): Fix format specifiers in log messages
Fabian Keil [Fri, 11 Sep 2020 11:51:28 +0000 (13:51 +0200)]
receive_chunked_client_request_body(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:47:36 +0000 (13:47 +0200)]
send_crunch_response(): Fix format specifiers in two log messages
Fabian Keil [Fri, 11 Sep 2020 11:44:02 +0000 (13:44 +0200)]
accept_connection(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:42:15 +0000 (13:42 +0200)]
socks5_connect(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:41:04 +0000 (13:41 +0200)]
get_reusable_connection(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:40:49 +0000 (13:40 +0200)]
close_unusable_connections(): Fix format specifier in a log message
Fabian Keil [Fri, 11 Sep 2020 11:36:52 +0000 (13:36 +0200)]
remove_chunked_transfer_coding(): Use appropriate format specifiers in two log messages
Fabian Keil [Fri, 11 Sep 2020 11:34:22 +0000 (13:34 +0200)]
gif_deanimate_response(): Fix format specifiers in a log message
Fabian Keil [Fri, 11 Sep 2020 11:32:36 +0000 (13:32 +0200)]
execute_external_filter(): Fix format specifiers in two log messages
Fabian Keil [Fri, 11 Sep 2020 11:30:49 +0000 (13:30 +0200)]
pcrs_filter_response(): Fix format specifiers in a log message
Fabian Keil [Fri, 11 Sep 2020 11:25:35 +0000 (13:25 +0200)]
compress_buffer(): Fix format specifiers in log messages
Fabian Keil [Fri, 11 Sep 2020 10:02:10 +0000 (12:02 +0200)]
chat(): Remove pointless NULL-pointer check
Fabian Keil [Thu, 10 Sep 2020 16:22:13 +0000 (18:22 +0200)]
decompress_iob(): Don't leak the memory allocated by inflateInit2()
... when the buffer limit is reached or we're running out of memory.
Fabian Keil [Thu, 10 Sep 2020 09:57:40 +0000 (11:57 +0200)]
continue_https_chat(): Drop the connection if the forwarder has changed
Fabian Keil [Thu, 10 Sep 2020 13:09:11 +0000 (15:09 +0200)]
continue_https_chat(): Increment csp->server_connection.requests_sent_total
... after sending a request over a reused connection.
Fabian Keil [Tue, 8 Sep 2020 13:09:17 +0000 (15:09 +0200)]
Rename 'Pages modified' header to 'Response bodies modified'
... which is more precise as a page may consist of multiple responses.
Fabian Keil [Tue, 8 Sep 2020 13:07:24 +0000 (15:07 +0200)]
Rename 'pages_modified' variable to 'response_bodies_modified'
... which is more precise as a page may consist of multiple responses.
Fabian Keil [Mon, 17 Aug 2020 09:12:58 +0000 (11:12 +0200)]
Bump copyright
Fabian Keil [Thu, 13 Aug 2020 12:56:46 +0000 (14:56 +0200)]
Remove reference to the snprintf() fallback implementation which is gone
Fabian Keil [Thu, 13 Aug 2020 12:55:41 +0000 (14:55 +0200)]
Remove the fallback snprintf() implementation
Now that OS/2 support is gone we no longer need it.
Fabian Keil [Thu, 13 Aug 2020 12:46:35 +0000 (14:46 +0200)]
Regenerate docs after removing OS/2-specific stuff
Fabian Keil [Thu, 13 Aug 2020 12:44:08 +0000 (14:44 +0200)]
Remove OS/2 from the PACKAGERS list
Fabian Keil [Thu, 13 Aug 2020 12:42:13 +0000 (14:42 +0200)]
Remove OS/2 specific stuff from the developer manual
Fabian Keil [Thu, 13 Aug 2020 12:42:02 +0000 (14:42 +0200)]
Remove OS/2 specific stuff from the user manual
Fabian Keil [Thu, 13 Aug 2020 12:41:42 +0000 (14:41 +0200)]
Remove OS/2 from the list of supported platforms
Fabian Keil [Thu, 13 Aug 2020 12:34:05 +0000 (14:34 +0200)]
Remove OS/2 support
We haven't provided OS/2 packages in years, it complicates the code
and it depends on the fallback snprintf implementation which is GPLv2
only.
No objections from privoxy-devel@.
Fabian Keil [Thu, 13 Aug 2020 12:12:09 +0000 (14:12 +0200)]
Add www.betrugstest.com to the sponsor list again
This reverts commit
fb3f363ac720ab78b3c77f3e53554b4b9161b643
which wasn't pushed to the website.
Fabian Keil [Mon, 10 Aug 2020 17:08:26 +0000 (19:08 +0200)]
Shorten FEATURE_ZLIB description
It probably has been tested on most platforms by now.
Roland Rosenfeld [Fri, 4 Sep 2020 15:47:12 +0000 (17:47 +0200)]
Merge Debian changes from unpublished 3.0.28-4 (as of 2020-09-04)
Roland Rosenfeld [Thu, 11 Jun 2020 16:52:03 +0000 (18:52 +0200)]
Update to GIT c62254 and update all patches.
Fabian Keil [Sun, 30 Aug 2020 07:25:47 +0000 (09:25 +0200)]
cgi_show_status: Don't leak memory when no action files are specified
Sponsored by: Robert Klemme
Fabian Keil [Sun, 30 Aug 2020 07:24:48 +0000 (09:24 +0200)]
cgi_show_status: Don't leak memory when no filter files are specified
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 13:05:08 +0000 (15:05 +0200)]
chat(): Don't log process_encrypted_request() failures
.. as parse errors.
process_encrypted_request() already logs errors with
a more precise explanation.
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 08:34:40 +0000 (10:34 +0200)]
privoxy-log-parser.pl: Accept and highlight 'Data arrived in time on client socket ...'
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 08:34:00 +0000 (10:34 +0200)]
Fix style in dispatch_known_cgi()
Sponsored by: Robert Klemme
Fabian Keil [Tue, 1 Sep 2020 09:40:57 +0000 (11:40 +0200)]
Rebuild docs
Fabian Keil [Fri, 28 Aug 2020 07:57:00 +0000 (09:57 +0200)]
Add Maxim Antonov to the list of contributors
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 07:53:42 +0000 (09:53 +0200)]
Fix style in host_matches()
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 07:33:15 +0000 (09:33 +0200)]
Don't set the ssl_debug_callback() which does nothing
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 23:21:22 +0000 (01:21 +0200)]
Remove references to #54 (Git migration) which no longer exists
Fabian Keil [Thu, 27 Aug 2020 22:32:40 +0000 (00:32 +0200)]
listen_loop(): Use a dedicated variable for the pthread_create() return code
... instead of clobbering errno.
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 19:15:32 +0000 (21:15 +0200)]
Remove #18 'Add keep-alive support with +https-inspection' which is done
Fabian Keil [Wed, 26 Aug 2020 23:09:35 +0000 (01:09 +0200)]
Ditch a couple of spaces in pointer declarations
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 20:17:59 +0000 (22:17 +0200)]
create_server_ssl_connection(): Improve the error message
... that is emitted when the certificate validation fails.
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 17:07:05 +0000 (19:07 +0200)]
send_crunch_response(): Include the full URL in a log message
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 14:59:36 +0000 (16:59 +0200)]
Explicitly prevent use of FEATURE_CONNECTION_SHARING without FEATURE_CONNECTION_KEEP_ALIVE
It makes no sense and does not compile anyway.
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 14:48:07 +0000 (16:48 +0200)]
Fix build without FEATURE_CONNECTION_KEEP_ALIVE
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 13:06:07 +0000 (15:06 +0200)]
Add keep-alive support for https-inspected connections
If a connection to the server has been established it
is reused.
If the previous request was blocked and no connection to
the server is open the connection is dropped so the client
can retry on a fresh connection.
Forwarding settings are currently ignored when handling
https-inspected requests on an already established connection.
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 19:31:05 +0000 (21:31 +0200)]
ssl_send_certificate_error(): Emit CLF and CRUNCH messages
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 09:40:39 +0000 (11:40 +0200)]
Downgrade the 'Graceful termination requested' message to LOG_LEVEL_INFO
... as it isn't an error.
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 21:43:23 +0000 (23:43 +0200)]
Fix documented return code for clear_iob()
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 17:29:28 +0000 (19:29 +0200)]
Remove the unused IOB_PEEK() macro
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 15:15:22 +0000 (17:15 +0200)]
Declare get_last_url() static
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 12:53:46 +0000 (14:53 +0200)]
Fix comment typo
Sponsored by: Robert Klemme
Fabian Keil [Mon, 24 Aug 2020 10:13:36 +0000 (12:13 +0200)]
privoxy-log-parser: Let handle_loglevel_re_filter() accept the no-content message
Sponsored by: Robert Klemme
Fabian Keil [Mon, 24 Aug 2020 10:09:15 +0000 (12:09 +0200)]
decompress_iob(): Downgrade the no-content message to LOG_LEVEL_RE_FILTER
While at it, fix a typo in a comment.
Sponsored by: Robert Klemme
Fabian Keil [Tue, 1 Sep 2020 09:41:48 +0000 (11:41 +0200)]
Rebuild config file
Fabian Keil [Mon, 24 Aug 2020 10:02:03 +0000 (12:02 +0200)]
Change the suggested default-server-timeout to 5
... to match the suggested keep-alive-timeout.
Otherwise using the defaults would result in Privoxy
reducing the default-server-timeout and logging an
error message.
Sponsored by: Robert Klemme
Fabian Keil [Sun, 23 Aug 2020 12:40:45 +0000 (14:40 +0200)]
Change ca-key-file default suggestion to cakey.pem
... to match the openssl command in the previous section.
Sponsored by: Robert Klemme
Fabian Keil [Sat, 22 Aug 2020 20:35:17 +0000 (22:35 +0200)]
Block requests to .pixel.parsely.com/ as image
Fabian Keil [Sun, 23 Aug 2020 16:26:19 +0000 (18:26 +0200)]
rfc2553_connect_to(): When failing set errno later
... to reduce the chances that it gets cloberred before
the caller has a chance to read it.
Previously Privoxy could send a "Connection failure" message
instead of the "DNS failure" message.
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 13:45:08 +0000 (15:45 +0200)]
ssl_verify_callback(): Handle html_encode() failures
Sponsored by: Robert Klemme
Fabian Keil [Fri, 28 Aug 2020 08:42:02 +0000 (10:42 +0200)]
ssl_store_cert(): Fix format specifier and typo in an error message
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 13:45:50 +0000 (15:45 +0200)]
Fix error messages in generate_webpage_certificate()
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 13:22:08 +0000 (15:22 +0200)]
generate_key(): Check return code of BN_set_word()
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 12:53:19 +0000 (14:53 +0200)]
ssl_store_cert(): Fix two error messages
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 13:49:56 +0000 (15:49 +0200)]
Don't claim that ssl_store_cert() is a callback
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 13:45:47 +0000 (15:45 +0200)]
ssl_store_cert(): Handle html_encode() failures
Sponsored by: Robert Klemme
Fabian Keil [Tue, 25 Aug 2020 18:09:04 +0000 (20:09 +0200)]
ssl_send_data(): Prevent endless loop
... if BIO_write() consistently returns 0.
Sponsored by: Robert Klemme
Fabian Keil [Mon, 24 Aug 2020 13:02:52 +0000 (15:02 +0200)]
create_server_ssl_connection(): Improve the error message emitted when the handshake fails
Sponsored by: Robert Klemme
Fabian Keil [Mon, 24 Aug 2020 09:23:28 +0000 (11:23 +0200)]
create_client_ssl_connection(): Improve the error message emitted when the handshake fails
Sponsored by: Robert Klemme
Fabian Keil [Mon, 24 Aug 2020 09:13:04 +0000 (11:13 +0200)]
log_ssl_errors(): Refer to TLS/SSL errors instead of just SSL errors
Sponsored by: Robert Klemme
Fabian Keil [Fri, 21 Aug 2020 11:45:49 +0000 (13:45 +0200)]
ssl_send_certificate_error(): Fix spelling in the error message
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 21:33:29 +0000 (23:33 +0200)]
Expand Source tag
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 21:32:00 +0000 (23:32 +0200)]
Adjust Source tags
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 09:25:02 +0000 (11:25 +0200)]
ssl_store_cert(): Fix typo in an error message
Fabian Keil [Wed, 26 Aug 2020 08:31:23 +0000 (10:31 +0200)]
create_server_ssl_connection(): Mimic SSL_set1_host() if it does not exist
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 08:30:36 +0000 (10:30 +0200)]
ssl_store_cert(): Only use X509_get0_tbs_sigalg() on more recent OpenSSL versions
... so the function compiles with OpenSSL 1.0.2.
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 08:17:50 +0000 (10:17 +0200)]
Add defines for some more X509 functions
... that don't exist when using OpenSSL 1.0.2.
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 20:01:32 +0000 (22:01 +0200)]
Use X509_set_notBefore() and X509_set_notAfter()
... when compiling with OpenSSL versions earlier than 1.1.0.
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 19:31:46 +0000 (21:31 +0200)]
Remove 'const' from set_x509_ext()'s value parameter
Silences the following warning when compiling with OpenSSL 1.0.2t.
openssl.c:1213:47: warning: passing 'const char *' to parameter of type 'char *' discards qualifiers [-Wincompatible-pointer-types-discards-qualifiers]
ext = X509V3_EXT_conf_nid(NULL, &ctx, nid, value);
^~~~~
/usr/include/openssl/x509v3.h:627:43: note: passing argument to parameter 'value' here
char *value);
^
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 12:15:52 +0000 (14:15 +0200)]
Add copyright header for Vaclav and me
... as the file is based on ssl.c
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 10:59:40 +0000 (12:59 +0200)]
Fix a comment typo
Sponsored by: Robert Klemme
Fabian Keil [Thu, 27 Aug 2020 11:04:11 +0000 (13:04 +0200)]
Fix a couple of 'Parameters' comment sections
Sponsored by: Robert Klemme
Fabian Keil [Wed, 26 Aug 2020 17:35:47 +0000 (19:35 +0200)]
Remove bogus spaces in the ssl_base64_encode() prototype
Sponsored by: Robert Klemme
Fabian Keil [Tue, 1 Sep 2020 10:07:39 +0000 (12:07 +0200)]
Remove commented-out mbedTLS-specific code in the OpenSSL section
Fabian Keil [Thu, 20 Aug 2020 10:48:56 +0000 (12:48 +0200)]
Style fixes for the OpenSSL-specific code
Sponsored by: Robert Klemme
Fabian Keil [Thu, 20 Aug 2020 10:48:11 +0000 (12:48 +0200)]
Replace a stray reference to mbedtls with OpenSSL
Sponsored by: Robert Klemme
Maxim Antonov [Mon, 3 Aug 2020 11:11:37 +0000 (18:11 +0700)]
Add OpenSSL support
To enable it, configure with "--with-openssl".
This is mainly useful for platforms that ship with
OpenSSL in the base so the "special exception" from
section 3 of the GPLv2 applies.
The author (Maxim Antonov) reports about 100% more requests
per second when using OpenSSL instead of MbedTLS which the
committer could confirm. For details see:
https://sourceforge.net/p/ijbswa/patches/143/
This commit has a couple of issues that will be addressed
in follow-up commits.
Fabian Keil [Mon, 10 Aug 2020 15:55:15 +0000 (17:55 +0200)]
get_block_reason_statistics_table(): Add new lines between table rows
Sponsored by: Robert Klemme
Fabian Keil [Sun, 9 Aug 2020 10:30:38 +0000 (12:30 +0200)]
Remove references to 'pcrs-suppport' in the show-status template
It no longer exists, pcrs support has been mandatory for a while.
Fabian Keil [Sun, 9 Aug 2020 10:14:57 +0000 (12:14 +0200)]
Remove reference to 'redirect-url' in the show-status template
Fabian Keil [Sun, 9 Aug 2020 10:12:00 +0000 (12:12 +0200)]
Remove reference to 'sourceversions' in the show-status template
Fabian Keil [Fri, 7 Aug 2020 09:08:23 +0000 (11:08 +0200)]
Gather statistics for block reasons
... if FEATURE_EXTENDED_STATISTICS is enabled.
Sponsored by: Robert Klemme