Commit Graph

86 Commits (29e7468d46e1ba07d67b642f2466caa7f971faad)

Author SHA1 Message Date
Glenn Strauss 598cdd0e5e [core] fix IPv6 address + port parsing (#2204) 6 years ago
Glenn Strauss 1ca52fdce3 build with libressl 6 years ago
Glenn Strauss 1812f5541a [core] lighttpd -1 handles single request on stdin socket (fixes #1584) 6 years ago
Glenn Strauss 6c35e38fe1 [network] separate addr trans from socket creation 6 years ago
Glenn Strauss 49c74fff65 [core] compile with upcoming openssl 1.1.0 release (fixes #2727) 7 years ago
Glenn Strauss 7f942ce09a remove handle_joblist hook 7 years ago
Glenn Strauss 71ed1912c7 [config] server.listen-backlog option (fixes #1825, #2116) 7 years ago
Glenn Strauss 292309f88b [core] lighttpd -tt performs preflight startup checks (fixes #411) 7 years ago
Glenn Strauss 8abd06a7ff consistent inclusion of config.h at top of files (fixes #2073) 7 years ago
Stefan Bühler 00063098c1 [ssl] support disabling ssl.verifyclient.activate in SNI callback (fixes #2531) 7 years ago
Stefan Bühler 70036ff572 [core] accept $SERVER["socket"] without port, use server.port as fallback (fixes #2204) 7 years ago
Glenn Strauss d85bdab43f [core] more careful parse of $SERVER["socket"] config str (prepare #2204) 7 years ago
Stefan Bühler c033a1966e [core] improve conditional enabling (thx Gwenlliana, #2598) 7 years ago
Stefan Bühler 566cf8decb add force_assert for more allocation results 7 years ago
Stefan Bühler 593599f14a rewrite network (write) backends 7 years ago
Stefan Bühler 6afad87d2e fix buffer, chunk and http_chunk API 8 years ago
Stefan Bühler b0a632f253 [network] fix compile break in calculation of sockaddr_un size if SUN_LEN is not defined (fixes #2609) 8 years ago
Stefan Bühler efc41b2bb1 check length of unix domain socket filenames 9 years ago
Stefan Bühler 9f2be4882d force assertion: setting FD_CLOEXEC must work (if available) 9 years ago
Stefan Bühler fba7dd6f43 fix resource leaks in error cases on config parsing and other initializations 9 years ago
Stefan Bühler bcd35cc264 remove logical dead code 9 years ago
Stefan Bühler a7396296da [network/ssl] fix build error if TLSEXT is disabled 9 years ago
Stefan Bühler c8fbc16985 [ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken) 9 years ago
Stefan Bühler 6f208cfde1 fix/silence bugs reported by ccc-analyzer (clang) 9 years ago
Stefan Bühler 1af871fcef [ssl] fix SNI handling; only use key+cert+verify-client from SNI specific config (fixes #2525, CVE-2013-4508) 9 years ago
Stefan Bühler 3ce548c8d0 remove unused members from struct server_socket 9 years ago
Stefan Bühler 93fd9ea7a4 [ssl] add option ssl.empty-fragments, defaulting to disabled (fixes #2492) 9 years ago
Stefan Bühler 6d4d2118c3 [ssl] accept ssl renegotiations if they are not disabled (fixes #2491) 9 years ago
Stefan Bühler 05858f6cf2 [ssl] Fix $HTTP["scheme"] conditional, could be "http" for ssl connections if the ssl $SERVER["socket"] conditional was nested (fixes #2501) 9 years ago
Stefan Bühler 6cdb46587c [ssl] use DH only if openssl supports it (fixes #2479) 9 years ago
Stefan Bühler c3a9948c75 network_server_init: fix double free and memleak on error (fixes #2440, thx kyprizel) 10 years ago
Stefan Bühler 35875cd515 [ssl] include more headers explicitly 11 years ago
Stefan Bühler 456d7f4790 fix compile error when ssl is not enabled 11 years ago
Stefan Bühler 0f96222e7e [ssl] add option to honor server cipher order, true by default (fixes #2364) 11 years ago
Stefan Bühler 8c482a496d remove copy/paste remainings from previous commit 11 years ago
Stefan Bühler a94bdd07df [ssl] count renegotiations to prevent client renegotiations 11 years ago
Stefan Bühler cbf1baacc9 [ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabled 11 years ago
Stefan Bühler f434d514ad Limit amount of bytes we send in one go; fixes stalling in one connection and timeouts on slow systems. 11 years ago
Stefan Bühler 55e1dc1825 [ssl/build] some minor fixes; fix compile without ssl, cleanup ssl config buffers 12 years ago
Stefan Bühler f610f894a3 ssl: Support for Diffie-Hellman and Elliptic-Curve Diffie-Hellman key exchange (fixes #2301, #2246, #2239) 12 years ago
Stefan Bühler 7e5b0fe9ab Rename fdevent_event_add to _set to reflect what the function does. Fix some handlers. 12 years ago
Stefan Bühler e23e999089 bind to IPV6-only if ipv6 address was specified (http://redmine.lighttpd.net/projects/lighttpd/wiki/IPv6-Config) 12 years ago
Stefan Bühler 4ae13c32b1 only require FDEVENT_IN bit to be set for listening connections (fixes #2227) 12 years ago
Stefan Bühler 38f2d1ddd7 cleanup fdevent code, removed linux-rtsig handler, replaced some fprintf calls 12 years ago
Stefan Bühler b3892c1410 Reset uri.authority before TLS servername handling, reset all "keep-alive" data in connection_del (fixes #2125) 13 years ago
Stefan Bühler 34fb1258e4 Fix handling return value of SSL_CTX_set_options (fixes #2157, thx mlcreech) 13 years ago
Stefan Bühler 1d5d55a484 Don't print ssl error if client didn't support TLS SNI 13 years ago
Stefan Bühler b987643307 Add SSL Client Certificate verification (#1288) 13 years ago
Stefan Bühler 97cec38a3b Fix compile error if TLS SNI isn't supported 13 years ago
Stefan Bühler 7322d53684 Fix some warnings in previous commit (TLS SNI) 13 years ago