Commits on Sep 2, 2016
  1. [mod_gnutls/doc] more details which certificates are needed for OCSP

    Change-Id: I1f7004bf2182f8023f19c0e3d2e3f5dee4968a9b
    Stefan Bühler committed Sep 2, 2016
  2. [doc] decode HTML entities in code/markdown/textile blocks

    - simulates an implicit "<![CDATA[ ... ]]>" mode
    - if the blocks consists of a single CDATA node entities are not decoded;
      instead the CDATA content is used directly.
    Change-Id: Ifc25d4ae49518d6d219a70d5760c214cafe0ed46
    Stefan Bühler committed Sep 2, 2016
Commits on Aug 27, 2016
  1. [mod_gnutls/docs] ocsptool is the ocsp tool

    Change-Id: Iffd5e1488131c99877971e935c798a2371fe3209
    Stefan Bühler committed Aug 27, 2016
  2. [mod_gnutls] use gnutls_pem_base64_decode_alloc instead of gnutls_pem…

    …_base64_decode2 (compat name for old versions)
    Change-Id: Id07d9d38ac809b4116b04debba41cd7351ebd40b
    Stefan Bühler committed Aug 27, 2016
  3. [core] disable strict-alias warnings for libev wrappers

    Change-Id: I6bea24eb35838e91cc3c3cc6a6f94664c7446533
    Stefan Bühler committed Aug 27, 2016
  4. [mod_gnutls] add basic OCSP response stapling support

    Change-Id: I700b2afd0e0fc60ce4f864e77166e3fa2e36aaae
    Stefan Bühler committed Aug 27, 2016
  5. [mod_gnutls] use only pin callback, don't pass pin as parameter

    - also check for number of attempts instead of flags,
      the same the gnutls internal callback is doing when a
      password is passed
    Change-Id: I84f5a0c7a4e3aea6f55b7b28c2f57019128351c7
    Stefan Bühler committed Aug 27, 2016
  6. [parsers] fix unused variable warnings

    Change-Id: Ifc0210235ada102e2dbcba23e1179e87b973510f
    Stefan Bühler committed Aug 27, 2016
  7. use _DEFAULT_SOURCE instead of _BSD_SOURCE

    Change-Id: Iecd6f2b4d31cd8f64f1c7ed491650a9b2a35be28
    Stefan Bühler committed Aug 27, 2016
Commits on Dec 4, 2015
  1. [config] expect exactly one comma between list entries

    - the parser didn't require a comma before, and accepted multiple ones
    - comma at end of list still optional
    Change-Id: I4bb07ceed9aaceb43a14f7eeb5d364d6718e7acc
    stbuehler committed Oct 25, 2015
  2. [cmake] handle include directories separately

    - update cmake required version to 3.0
    - should workaround cmake CodeBlocks generator (-> qtcreator) bug with not finding the include paths
    Change-Id: I95a6741ff9fc6cc75ae62774ad53d438bfd67b90
    stbuehler committed Oct 24, 2015
  3. [pattern] fix all calls of li_pattern_eval to provide latest regex match

    Change-Id: I7aeaf908eab9da3fe24e9871f648e3fd58fddbe1
    stbuehler committed Dec 4, 2015
Commits on Aug 10, 2015
  1. use g_assert instead of g_assert_true for older glib2 versions

    Change-Id: Ie2a4e7b723d7a123f08c9c79503425b40a76a5b7
    stbuehler committed Aug 10, 2015
  2. [ssl] don't exit early when there is no data to write; otherwise EOS …

    …stream handling is not triggered
    Change-Id: Ie49fa1e7062f91c5708ae72db48c8e2144570f20
    stbuehler committed Aug 10, 2015
Commits on Aug 9, 2015
  1. ignore CMakeLists.txt.user (qtcreator)

    Change-Id: If42de6186888a301e1276c48182bd5bbb7e826bb
    stbuehler committed Aug 9, 2015
  2. [debug] provide more unique event names for waitqueues

    Change-Id: Iddf9e10b3902fbfe4fa7e97b7a172018d0d70b54
    stbuehler committed Aug 9, 2015
Commits on Aug 8, 2015
  1. [streams] improve stream handling, hopefully fixes bug with lingering…

    … backend connections
    - reset backend_source before backend_drain; first tell the backend we
      are not interested in data anymore, then force closing the outgoing
    - as backend_drain might get reopened for a Connection: upgrade, the
      backend cannot rely on backend_drain->out.is_closed, but waits for a
      disconnect (which will also release the last reference).  the same is
      done for backend_source, so a backend can just wait for both reference
      counts to drop to zero before actually closing the backend connection
      (unless it keeps the streams alive itself).
    Change-Id: Ibfe7985debd71580dbb78b985abaf946f59e3024
    stbuehler committed Aug 8, 2015
Commits on Aug 6, 2015
  1. [request parser] adapt whitespace removal from response parser, fixes…

    … bug removing last character if CR was missing
    Change-Id: Idd39363b460f1141aa2bebde187f3ca10a7bb344
    stbuehler committed Aug 6, 2015
  2. [common] format IPv6 addresses with port as [addr]:port (added the sq…

    …uare brackets)
    Change-Id: Ic5246c6cf9e1762b8e8ea4c020983289c4e071c6
    stbuehler committed Aug 6, 2015
Commits on Aug 5, 2015
  1. [automake] add missing files to dist tar

    Change-Id: I2c53b97415301931ca9530ac8d54701daef59ec8
    stbuehler committed Aug 5, 2015
  2. [common] fix out-of-bounds read in li_sockaddr_to_string

    Change-Id: I8984b6b170a43eb8c0f648c31957c5ae441cf93f
    stbuehler committed Aug 5, 2015
  3. [mod_debug] show more details for events

    Change-Id: I245cff8a95839fa961ec32a8a8b2f3da39edb777
    stbuehler committed Aug 5, 2015
Commits on Jul 11, 2015
  1. mimetypes.conf: add some new mime types, remove .dat, .sha1, .md5, up…

    …date .vcf
    - also parse lines with upper case characters
    - rerun with debian mime-support 3.58
    Change-Id: I8a6e91b8cc879158d5cd8931630a67db4d5a0dd2
    stbuehler committed Jul 11, 2015
Commits on Jun 13, 2015
  1. [lua] handle filter->vr == NULL in lua filters, handle filter->in == …

    …NULL in xsendfile
    Change-Id: I5326ce72f1b45bf0b64194e6ec8935b6261d18d2
    stbuehler committed Jun 13, 2015
Commits on Jan 25, 2015
  1. [mod_debug] debug events

    Change-Id: Ib776e950902a36f13ed766a78a92f6971310e87d
    stbuehler committed Jan 25, 2015
Commits on Jan 17, 2015
  1. track event "names" for debugging

    Change-Id: Ib8f2b589a6087de2355906a87bd2cd0c84bafcba
    stbuehler committed Jan 17, 2015
Commits on Jan 6, 2015
  1. Add systemd unit file

    Change-Id: I680ab136870a8474e4979517fe46f2c9eff8ce34
    darix committed Jan 6, 2015
Commits on Dec 22, 2014
  1. [mod_openssl] various fixes, fix error handling

    - update docs with default options
    - always set "session_id_context"
    - load all algorithms
    - cleanup error handling (abort on fatal errors, not the other way
      round, log non fatal errors in debug log-level)
    Change-Id: I2b6028bbe97a237ab94ad00d58c7773d9d3d8830
    stbuehler committed Dec 22, 2014
  2. [core] close out stream nicely on regular shutdown (fixes openssl ses…

    …sion problem)
    Change-Id: Iaac73fa64c03225751c4492b5c690094f3d6e97f
    stbuehler committed Dec 22, 2014
Commits on Nov 9, 2014
  1. [tests] use gnutls certtool to create test ca

    also supports generating ecc (ecdsa) keys and selecting a hash
    Change-Id: Iafa6557a4f0a97885a3300861b842289b73ea1de
    stbuehler committed Nov 9, 2014
  2. [mod_openssl] allow all authentication methods in default cipher string

    The details depend on the server key anyway; with the new default string
    ecdsa keys work out of the box.
    Change-Id: I7229f899ffd8dca5740767f9832980198b4f7bee
    stbuehler committed Nov 9, 2014
  3. [mod_gnutls] improve alert handling

    * print alerts with numerical value
    * show non-fatal alerts
    * use log level info for all alerts
    * use log level warning for non-fatal "unknown" errors
    Change-Id: Ibaa33743bfe809579981fdeb121955ef5c6d0ab2
    stbuehler committed Nov 9, 2014
Commits on Nov 8, 2014
  1. [doc] mod_gnutls: add comment that reusing keys in DH is not recommen…

    …ded anyway
    Change-Id: I392b2913ca5f7fdc88bf773032b27d2417211a58
    stbuehler committed Nov 8, 2014
  2. [doc] improve section about DH/DSA parameters in mod_gnutls

    Change-Id: I9665691ff3c6dbb24defc02ae3f9a2f8efe8264d
    stbuehler committed Nov 8, 2014
Commits on Nov 2, 2014
  1. [mod_gnutls] allow pemfile to accept a key-value list of a certificat…

    …e and key
    In addition, this patch adds the ability to specify a PIN,
    to be used to decrypt an encrypted key, or to login to a PKCS #11
    Change-Id: Iff36879926236d07be6baaa1736985a58c54d0cc
    nmav committed with stbuehler Oct 30, 2014