Fabian Keil [Sun, 8 May 2016 10:47:49 +0000 (10:47 +0000)]
pcre: Fix heap-buffer-overflow when loading invalid filter files
Found with afl-fuzz and ASAN.
Not considered a security vulnerability as filter files are trusted input.
Fabian Keil [Sun, 8 May 2016 10:47:13 +0000 (10:47 +0000)]
Rebuild HTML docs
Fabian Keil [Sun, 8 May 2016 10:46:55 +0000 (10:46 +0000)]
Turn invalid max-client-connections values into fatal errors
Use FD_SETSIZE/2 as upper limit because Privoxy needs two
sockets to serve client connections that need forwarding.
Ignore the fact that the first three file descriptors
are usually set to /dev/null, one is used for logging
and yet another file descriptor is required to load
config files.
Make an exception for _WIN32 as its select() is documented
to handle file descriptors above FD_SETSIZE just fine.
Fabian Keil [Sun, 8 May 2016 10:46:29 +0000 (10:46 +0000)]
cgi_show_client_tags(): Rename the variable that contains the client tag status
Fabian Keil [Sun, 8 May 2016 10:46:18 +0000 (10:46 +0000)]
cgi_show_client_tags(): Fix theoretical memory leak (CID #161209)
Fabian Keil [Sun, 8 May 2016 10:46:05 +0000 (10:46 +0000)]
remove_tag_for_client(): Silence a coverity warning (CID #161202)
Fabian Keil [Sun, 8 May 2016 10:45:51 +0000 (10:45 +0000)]
pcrs_compile_replacement(): Silence a coverity warning (CID #161203)
Fabian Keil [Sun, 8 May 2016 10:45:32 +0000 (10:45 +0000)]
edit_read_line(): Remove a pointless pointer check coverity complaints about (CID #161211)
Fabian Keil [Sun, 8 May 2016 10:45:18 +0000 (10:45 +0000)]
Fix detection of the Privoxy version now that https:// is used for the website
Fabian Keil [Sun, 8 May 2016 10:44:56 +0000 (10:44 +0000)]
Let test level 17 depend on FEATURE_64_BIT_TIME_T
... instead of FEATURE_PTHREAD which has no direct connection
to the time_t size.
Fabian Keil [Sun, 8 May 2016 10:44:39 +0000 (10:44 +0000)]
Add FEATURE_64_BIT_TIME_T
It's sole purpose is to make it obvious from the show-status page
whether or not dates before 1970 and after 2038 are expected to be
handled properly.
This is mainly useful for Privoxy-Regression-Test but could
also come handy when dealing with time-related support requests.
Fabian Keil [Sun, 8 May 2016 10:44:20 +0000 (10:44 +0000)]
Include tools in the generic distribution
Fabian Keil [Sun, 8 May 2016 10:44:09 +0000 (10:44 +0000)]
Let the gen-dist target work in cwds other than current
Fabian Keil [Tue, 3 May 2016 13:22:30 +0000 (13:22 +0000)]
add_help_link(): Use https:// when creating links for the user manual on the website
Fabian Keil [Tue, 3 May 2016 13:22:13 +0000 (13:22 +0000)]
Convert a couple of URLs to https://
Fabian Keil [Tue, 3 May 2016 13:21:55 +0000 (13:21 +0000)]
Convert a couple of URLs in the FAQ to https://
Fabian Keil [Tue, 3 May 2016 13:21:42 +0000 (13:21 +0000)]
Limit the names of client tags to 50 characters
Fabian Keil [Tue, 3 May 2016 13:21:24 +0000 (13:21 +0000)]
Sort find output that is used for distribution tarballs
... to get reproducible results.
Fabian Keil [Tue, 3 May 2016 13:21:08 +0000 (13:21 +0000)]
Bump copyright and change website URL to https://
Fabian Keil [Tue, 3 May 2016 13:20:58 +0000 (13:20 +0000)]
Don't add '-src' to the name of the tar ball generated by the gen-dist target
The package isn't a source distribution but a binary package.
While at it, use a variable for the name to reduce the chances
that the various references get out of sync and fix the gen-upload
target which was looking in the wrong directory.
Fabian Keil [Tue, 3 May 2016 13:20:37 +0000 (13:20 +0000)]
When complaining about missing filters, mention the filter type
Fabian Keil [Tue, 3 May 2016 13:20:20 +0000 (13:20 +0000)]
Bump copyright and use https:// for the website
Fabian Keil [Tue, 3 May 2016 13:19:56 +0000 (13:19 +0000)]
Bump copyright
Fabian Keil [Sat, 30 Apr 2016 10:28:36 +0000 (10:28 +0000)]
parse_header_time(): Explicitly check for strftime() failures when sanity-checking strptime()
Fabian Keil [Sun, 10 Apr 2016 08:09:07 +0000 (08:09 +0000)]
Add regression-tests.action to the files that are distributed
Fabian Keil [Sun, 10 Apr 2016 08:08:40 +0000 (08:08 +0000)]
Unbreak the gen-dist target
The fact that it was broken since 2002 (r1.92) seems to
indicate that it isn't used too often, but I just needed
it and was disappointed that it didn't work.
Fabian Keil [Sun, 10 Apr 2016 08:07:10 +0000 (08:07 +0000)]
Update #41: Note that txt2tags seems worth evaluating as well
Ian Silvester [Sat, 9 Apr 2016 20:58:48 +0000 (20:58 +0000)]
Add Atman Sense as a contributor
Fabian Keil [Sat, 9 Apr 2016 10:24:13 +0000 (10:24 +0000)]
Rebuild documentation
Fabian Keil [Sat, 9 Apr 2016 10:23:54 +0000 (10:23 +0000)]
Upgrade a bunch of links to SourceForge to https://
I haven't seen an announcement, but SourceForge seems to
allow https:// for unauthenticated users now.
A couple of URLs stopped working (thanks SourceForge)
and have been replaced with URLs that worked today but
may stop working tomorrow.
One link (to client specific CVS instructions) has been
removed as I did not immediately find a replacement and
after the migration to git the section will be removed
anyway.
Fabian Keil [Sat, 9 Apr 2016 10:23:17 +0000 (10:23 +0000)]
Add #149: Use poll() for socket selection
Fabian Keil [Sat, 9 Apr 2016 10:23:05 +0000 (10:23 +0000)]
Change a couple of URLs to https://
Fabian Keil [Sat, 9 Apr 2016 10:22:40 +0000 (10:22 +0000)]
Bump copyright and change website URL to https://
Fabian Keil [Sat, 9 Apr 2016 10:22:26 +0000 (10:22 +0000)]
Enable FEATURE_CLIENT_TAGS by default
... to increase the chances that users of third-party binary
packages actually get it.
While it's an experimental feature, by default no client-specific
tags are defined so the risk seems acceptable.
Fabian Keil [Fri, 8 Apr 2016 08:42:49 +0000 (08:42 +0000)]
Fix footer markup
Fabian Keil [Fri, 8 Apr 2016 08:42:00 +0000 (08:42 +0000)]
Inject valid HTML into the homepage footer
.. as it turns out images a centered by aligning them to the middle.
Fabian Keil [Fri, 8 Apr 2016 08:31:30 +0000 (08:31 +0000)]
Manually change the most recent release on the homepage to 3.0.24 again
... so I can replace the file on the website before
the next release.
Fabian Keil [Fri, 8 Apr 2016 08:31:14 +0000 (08:31 +0000)]
Regenerate indexes
Fabian Keil [Fri, 8 Apr 2016 08:31:04 +0000 (08:31 +0000)]
Center the content of the homepage footer
Fabian Keil [Fri, 8 Apr 2016 08:30:53 +0000 (08:30 +0000)]
Mention our new hosting sponsor on the homepage
Fabian Keil [Fri, 8 Apr 2016 08:30:38 +0000 (08:30 +0000)]
Rephrase onion service paragraph
... to make it more obvious that Tor is involved and that the
whole website (and not just the homepage) is available as
onion service.
Fabian Keil [Fri, 8 Apr 2016 08:30:00 +0000 (08:30 +0000)]
Streamline the "More information" section on the homepage further
... by additionally ditching the link to the 'See also' section
of the user manual. The section contains mostly links that are
directly reachable from the homepage already and the rest is
not significant enough to get a link from the homepage.
Fabian Keil [Fri, 8 Apr 2016 08:29:42 +0000 (08:29 +0000)]
Remove the link to the SourceForge "project page" from the homepage
.. to make it more likely that the trackers are reached
through the contact section of the user manual.
Fabian Keil [Fri, 8 Apr 2016 08:29:29 +0000 (08:29 +0000)]
Remove 'Privoxy is developed on SourceForge' claim from the homepage
It only existed to comply with SF's rules which are irrelevant
for the website now that it's no longer hosted at SourceForge.
Fabian Keil [Wed, 6 Apr 2016 12:39:36 +0000 (12:39 +0000)]
Update #53 to note that the website has moved already and that server rent for a year has been sponsored
Fabian Keil [Wed, 6 Apr 2016 12:39:14 +0000 (12:39 +0000)]
Update #54 and link to the status update
Fabian Keil [Wed, 6 Apr 2016 12:39:04 +0000 (12:39 +0000)]
Align ./configure --help output slightly better
Fabian Keil [Tue, 5 Apr 2016 14:15:52 +0000 (14:15 +0000)]
Regenerate documentation
Fabian Keil [Mon, 4 Apr 2016 10:56:35 +0000 (10:56 +0000)]
Update links to the client-tags CGI page
Fabian Keil [Mon, 4 Apr 2016 10:55:47 +0000 (10:55 +0000)]
Rename show-client-tags template to client-tags
The page doesn't merely show the tags but also allows to
enable or disable them. While at it, make the page title
more descriptive.
Fabian Keil [Mon, 4 Apr 2016 10:51:45 +0000 (10:51 +0000)]
Use a proper HTML form to change the state of client tags
It's semantically correct and results in actual buttons to press.
Fabian Keil [Mon, 4 Apr 2016 10:51:27 +0000 (10:51 +0000)]
mod-support-and-service: Remove comment indentation so Privoxy recognizes that it's supposed to be a comment
Fabian Keil [Mon, 4 Apr 2016 10:51:11 +0000 (10:51 +0000)]
Fix typo in CGI template comments
Fabian Keil [Mon, 4 Apr 2016 10:50:54 +0000 (10:50 +0000)]
Remove obsolete reference to Redhat spec file
Fabian Keil [Mon, 4 Apr 2016 10:50:37 +0000 (10:50 +0000)]
Fix file names in comment
Fabian Keil [Mon, 4 Apr 2016 10:50:18 +0000 (10:50 +0000)]
Remove the last remaining $Log keywords
Fabian Keil [Mon, 4 Apr 2016 10:49:18 +0000 (10:49 +0000)]
Remove genclspec.sh which has been obsolete since 2009
Fabian Keil [Mon, 4 Apr 2016 10:48:22 +0000 (10:48 +0000)]
Use https:// in the link to the team page
Fabian Keil [Sun, 3 Apr 2016 13:51:36 +0000 (13:51 +0000)]
Finally remove the obsolete PDF documentation
This should have happended in 2008 already, but as my local CVS
tree did not contain a doc/pdf directory (anymore?), I was unaware
that it had not until recently.
The good news is that the files weren't tagged since 2008 either.
Fabian Keil [Wed, 30 Mar 2016 11:15:52 +0000 (11:15 +0000)]
Disallow compilation of client-tags.c if FEATURE_CLIENT_TAGS isn't enabled
... as that shouldn't happen anymore.
Fabian Keil [Wed, 30 Mar 2016 11:15:42 +0000 (11:15 +0000)]
Only compile client-tags.c if FEATURE_CLIENT_TAGS is enabled
Previously it was also compiled if FEATURE_CLIENT_TAGS
wasn't explicitly disabled.
Reported by Lee on ijbswa-developers@.
Fabian Keil [Wed, 30 Mar 2016 11:15:02 +0000 (11:15 +0000)]
Add #148: Add a config directive to change the CGI_SITE_2_HOST
Fabian Keil [Wed, 30 Mar 2016 11:14:46 +0000 (11:14 +0000)]
Note that the templates should be adjusted if Privoxy is running as intercepting proxy without getting all requests
Fabian Keil [Wed, 30 Mar 2016 11:14:28 +0000 (11:14 +0000)]
mod-support-and-service: Add a comment about the need to sync the content
... with the blocked template.
Fabian Keil [Wed, 30 Mar 2016 11:14:15 +0000 (11:14 +0000)]
Sync the 'blocked' template with the streamlined mod-support-and-service template
Fabian Keil [Wed, 30 Mar 2016 11:14:05 +0000 (11:14 +0000)]
Rephrase the "show-client-tags" description in the CGI menu
... to make it more obvious that the page can also
be used to toggle tags.
This also unbreaks the JavaScript version of the
"blocked" page as the previous description used
an unescaped single-quote.
Fabian Keil [Wed, 30 Mar 2016 11:13:47 +0000 (11:13 +0000)]
Streamline the support-and-service template
Instead of linking to the various support trackers
(whose URLs hopefully change soon), link to the
contact section of the user manual to increase the
chances that users actually read it.
While at it, change external URLs to https://.
Fabian Keil [Wed, 30 Mar 2016 11:13:25 +0000 (11:13 +0000)]
Change HOME_PAGE_URL to https://
Fabian Keil [Sun, 27 Mar 2016 16:55:09 +0000 (16:55 +0000)]
Workaround client-tags.c being compiled when it shouldn't be
In theory the generated GNUmakefile should make sure that
the file is only compiled if FEATURE_CLIENT_TAGS is enabled,
but as Lee reported on jbswa-developers@ this currently does
not work.
Fabian Keil [Sun, 27 Mar 2016 16:54:50 +0000 (16:54 +0000)]
Unbreak loadcfg.c compilation without FEATURE_CLIENT_TAGS
Fabian Keil [Sun, 27 Mar 2016 16:54:33 +0000 (16:54 +0000)]
enable_client_specific_tag(): Log the ttl when adding client-specific tags
Fabian Keil [Sun, 27 Mar 2016 16:54:16 +0000 (16:54 +0000)]
Bump copyright
Fabian Keil [Sun, 27 Mar 2016 16:54:05 +0000 (16:54 +0000)]
Tag Range requests by default and use the tag to disable filtering
This lets download resumption and Windows updates work by default.
While this allows clients to circumvent filtering, the default
configuration never protected against malicious clients anyway.
Fabian Keil [Mon, 21 Mar 2016 12:27:16 +0000 (12:27 +0000)]
Regenerate user-manual
Fabian Keil [Mon, 21 Mar 2016 12:26:59 +0000 (12:26 +0000)]
Fix a link in the client-specific-tag documentation
Fabian Keil [Fri, 18 Mar 2016 07:48:25 +0000 (07:48 +0000)]
Rephrase a sentence on the show-client-tags page
... and add a direct link to the documentation
for the client-specific-tag directive.
Fabian Keil [Thu, 17 Mar 2016 18:21:37 +0000 (18:21 +0000)]
Regenerate user manual with recent changes
Fabian Keil [Thu, 17 Mar 2016 18:21:18 +0000 (18:21 +0000)]
Regenerate config with client-tag-lifetime example
Fabian Keil [Thu, 17 Mar 2016 18:21:09 +0000 (18:21 +0000)]
Document the client-tag-lifetime default and add an example
Fabian Keil [Thu, 17 Mar 2016 18:20:57 +0000 (18:20 +0000)]
Set the client-tag-lifetime default to 60 seconds
Fabian Keil [Thu, 17 Mar 2016 18:20:42 +0000 (18:20 +0000)]
Change the add-header{} example to set the DNT header
... and use a complete section to make copy and pasting
more convenient.
Add a comment to make it obvious that adding the
header is not recommended for obvious reasons.
Using the DNT header as example was suggested by
Leo Wzukw.
Fabian Keil [Thu, 17 Mar 2016 10:54:18 +0000 (10:54 +0000)]
Remove the recently implemented TODO list items #146, #147 and #148
Fabian Keil [Thu, 17 Mar 2016 10:43:55 +0000 (10:43 +0000)]
Rebuild documentation
Fabian Keil [Thu, 17 Mar 2016 10:43:39 +0000 (10:43 +0000)]
Regenerate config
Fabian Keil [Thu, 17 Mar 2016 10:43:29 +0000 (10:43 +0000)]
Document the client-tag-lifetime directive
Fabian Keil [Thu, 17 Mar 2016 10:43:20 +0000 (10:43 +0000)]
Document the client-specific-tag directive
Fabian Keil [Thu, 17 Mar 2016 10:43:07 +0000 (10:43 +0000)]
Document the CLIENT-TAG pattern
Fabian Keil [Thu, 17 Mar 2016 10:42:54 +0000 (10:42 +0000)]
Start referring to tags that are created based on HTTP headers as request tags
... to reduce confusion now that we also have client-specific tags.
Fabian Keil [Thu, 17 Mar 2016 10:42:27 +0000 (10:42 +0000)]
Implement client-specific tags
... which allow Privoxy admins to pre-define tags that
are set for all requests from clients that previously
opted-in through the CGI interface.
They are useful in multi-user setups where admins may
want to allow users to disable certain actions and filters
for themselves without affecting others.
In single-user setups they are useful to allow more
fine-grained toggling. For example to disable request
blocking while still crunching cookies, or to disable
experimental filters only.
This is an experimental feature, to enable it configure
with --enable-client-tags. The syntax and behaviour may
change in future versions.
Implements TODO list item #144 and #145.
Funded by a donation from Robert Klemme.
Fabian Keil [Thu, 17 Mar 2016 10:19:31 +0000 (10:19 +0000)]
Fix spelling of 'administrator' in the template comments
Fabian Keil [Thu, 17 Mar 2016 10:18:57 +0000 (10:18 +0000)]
FAQ: Spell 'liaison' correctly
Fabian Keil [Sun, 6 Mar 2016 11:32:26 +0000 (11:32 +0000)]
Add a FAQ entry for tainted sockets
Fabian Keil [Fri, 4 Mar 2016 13:22:22 +0000 (13:22 +0000)]
Bump copyright range
Fabian Keil [Fri, 4 Mar 2016 13:21:54 +0000 (13:21 +0000)]
user-manual: Provide more sections with ids
Reduces the diff noice when regenerating documentation
and results in more stable URLs.
Fabian Keil [Fri, 4 Mar 2016 13:21:33 +0000 (13:21 +0000)]
FAQ: Use more stable anchors in the generated HTML
... to reduce the diff noise.
Fabian Keil [Fri, 4 Mar 2016 13:20:35 +0000 (13:20 +0000)]
buildsource.sgml: Ignore Privoxy versions before 3.0.7
Fabian Keil [Fri, 26 Feb 2016 12:33:27 +0000 (12:33 +0000)]
Update AUTHORS
Fabian Keil [Fri, 26 Feb 2016 12:33:18 +0000 (12:33 +0000)]
FAQ: Fix wording in donation entry
Fabian Keil [Fri, 26 Feb 2016 12:33:08 +0000 (12:33 +0000)]
Add #146: Let user specify how long they want to be tagged
Fabian Keil [Fri, 26 Feb 2016 12:32:56 +0000 (12:32 +0000)]
Bump copyright range