1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
|
2021-09-24 Omar Polo <op@omarpolo.com>
* configure (VERSION): 1.7.4 tagged
* server.c (check_for_cgi): fix out-of-bound access, found with lots of help from cage, thanks!
2021-09-19 Omar Polo <op@omarpolo.com>
* sandbox.c (gmid_create_landlock_rs): [linux] use landlock on the server and logger process to reduce the fs access
* configure (VERSION): 1.7.3 tagged
2021-09-17 Omar Polo <op@omarpolo.com>
* log.c (logger_main): fix syslog logging on FreeBSD
2021-08-24 Omar Polo <op@omarpolo.com>
* gmid.c (main): don't crash on -n without -c
2021-07-29 Anna “CyberTailor”
* gmid.1: document logging, openssl key generation example, spelling/grammar and crosslinks
2021-07-27 Omar Polo <op@omarpolo.com>
* server.c (check_path): allow symlinks
2021-07-23 Omar Polo <op@omarpolo.com>
* sandbox.c: seccomp allow fstat64 (used by glibc an aarch64). Reported by pine, thanks!
2021-07-19 Omar Polo <op@omarpolo.com>
* gmid.c (setup_configless): unbreak configless mode
2021-07-13 Anna “CyberTailor”
* parse.y (yyerror): error and warning messages are prefixed with "error:" and "warning:"
(yywarn): fix off-by-one line number in warnings
2021-07-11 Omar Polo <op@omarpolo.com>
* configure (VERSION): 1.7.1 tagged
2021-07-11 Anna “CyberTailor”
* gmid.1 (common): fix misleading example in man page: macros names may not be reserved words
2021-07-10 Omar Polo <op@omarpolo.com>
* configure (VERSION): 1.7 tagged
2021-07-09 Omar Polo <op@omarpolo.com>
* parse.y (STRING): add `include' directive
(yylex): add @-macros (real macros)
2021-07-08 Omar Polo <op@omarpolo.com>
* parse.y (option): rename `mime MIME EXT' to `map MIME to-ext EXT', but retain the old `mime' for compatibility.
2021-07-06 Omar Polo <op@omarpolo.com>
* regress/gg.c (main): add -T timeout
* configure (guessing_cflags): try to preserve CFLAGS/LDFLAGS
2021-07-02 Omar Polo <op@omarpolo.com>
* sandbox.c (filter): seccomp filter reworked: now it should work on x86 and possibly other arches too!
2021-06-29 Omar Polo <op@omarpolo.com>
* parse.y (conf): don't require the strict order macro > options > servers
c-like strings: when two or more strings are next to each others, concat them
* gmid.c (main): add -D to define macros from the cmd line
* parse.y (yylex): allow to define macros in the config file
* gmid.c (main): use getopt_long, add --help as synonym of -h and -V/--version
2021-06-17 Omar Polo <op@omarpolo.com>
* gmid.1: document `log' option
2021-06-16 Omar Polo <op@omarpolo.com>
* parse.y (yylex): drop the dependency on lex by implementing
yylex by ourselves (the actual implementation is based off doas'
parse.y). This gave us various benefits, like cleaner code, \ to
break long lines, better handling of quotes etc...
2021-06-11 Omar Polo <op@omarpolo.com>
* parse.y (servopt): add `param' keyword
* fcgi.c (send_fcgi_req): send GATEWAY_INTERFACE, AUTH_TYPE,
REMOTE_USER, TLS_CLIENT_ISSUER, TLS_CLIENT_HASH, TLS_VERSION,
TLS_CIPHER, TLS_CIPHER_STRENGTH and TLS_CLIENT_NOT_BEFORE/AFTER.
(send_fcgi_req): support a custom list of params
2021-05-24 Omar Polo <op@omarpolo.com>
* gg.c: move `gg' to regress, as it's only used for the tests
2021-05-12 Omar Polo <op@omarpolo.com>
* utils.c (gen_certificate): don't add gmid as organisation when generating the certificate, and now it set the version 3, so it's compatible with java/android
2021-05-09 Omar Polo <op@omarpolo.com>
* server.c (apply_fastcgi): added fastcgi support!
2021-05-03 Omar Polo <op@omarpolo.com>
* parse.y: errors on duplicate values instead of silently using only the last value.
2021-04-30 Omar Polo <op@omarpolo.com>
* server.c (fmt_sbuf): ensure %p (path) is always absolute
* gmid.c (load_vhosts): allow ``root'' rule to be specified per-location block
2021-04-29 Omar Polo <op@omarpolo.com>
* parse.y (servopt): added ``alias'' option to define hostname aliases for a server
2021-04-28 Omar Polo <op@omarpolo.com>
* gmid.c (main): pidfile support with `-P pidfile'
2021-04-27 Omar Polo <op@omarpolo.com>
* parse.y (servopt): added ``env'' option to define environment vars for CGI scripts
* log.c (fatal): lower the log priority for fatal errors from CRIT to ERR
2021-04-25 Omar Polo <op@omarpolo.com>
* server.c (open_dir): sort the auto index alphabetically
2021-04-21 Omar Polo <op@omarpolo.com>
* mime.c (load_default_mime): use `text/x-patch' for .patch and .diff files
2021-04-14 Omar Polo <op@omarpolo.com>
* log.c (handle_imsg_log): print the datetime when logging to stderr
2021-04-13 Omar Polo <op@omarpolo.com>
* ex.c (launch_cgi): define TLS_VERSION, TLS_CIPHER and TLS_CIPHER_STRENGTH for CGI scripts
2021-04-12 Omar Polo <op@omarpolo.com>
* 1.6.1 tagged
* iri.c (path_clean): fix possible infinite loop in the IRI parsing code.
2021-03-31 Omar Polo <op@omarpolo.com>
* gmid.h (struct vhost): remove limits on the number of vhosts and location blocks
* gmid.c (mkdirs): fix recursive mkdirs for configless mode
2021-03-29 Omar Polo <op@omarpolo.com>
* Makefile (static): fixed `static' target
2021-03-29 kornellapacz @ github
* Dockerfile: add missing libevent-dev dependency, thanks!
2021-03-27 Omar Polo <op@omarpolo.com>
* gmid.h (struct client): correctly handle CGI scripts that replies with the maximum header length allowed
2021-03-20 Omar Polo <op@omarpolo.com>
* 1.6 tagged
* sandbox.c (sandbox_logger_process): add capsicum to the logger process
2021-03-19 Omar Polo <op@omarpolo.com>
* gmid.c (main): use imsg for all IPC; only the main process
listens for SIGHUP: this means that finally the config reload will
work with OpenBSD' rc (and probably other service manager too)
2021-02-22 Omar Polo <op@omarpolo.com>
* log.c (log_request): add `log on/off' to enable/disable logs per-server or per-location
2021-02-09 Omar Polo <op@omarpolo.com>
* parse.y (locopt): add `require client ca' rule to require client certs signed by a specified CA
2021-02-07 Omar Polo <op@omarpolo.com>
* ex.c (do_exec): [cgi] split the query in words if needed and add them to the argv
(launch_cgi): define TLS_CLIENT_NOT_BEFORE/NOT_AFTER in CGI scripts
* parse.y (option): added prefork option
2021-02-06 Omar Polo <op@omarpolo.com>
* parse.y (locopt): added ``block return'' and ``strip'' options
(servopt): add the ``entrypoint'' option
2021-02-05 Omar Polo <op@omarpolo.com>
* iri.c (parse_query): don't %-decode the query part. This affects the value of QUERY_STRING for CGI scripts too, since that must be %-encoded and we're currently shipping it decoded.
2021-02-04 Omar Polo <op@omarpolo.com>
* gmid.c (main): reload configuration on SIGHUP, without disconnecting the clients
2021-02-02 Omar Polo <op@omarpolo.com>
* server.c (handle_dirlist_head): print the header in the directory listing
(open_file): cgi follows globbing rules, just like location and hostname matching
2021-02-01 Omar Polo <op@omarpolo.com>
* parse.y (servopt): require absolute paths in config file
2021-01-31 Omar Polo <op@omarpolo.com>
* gmid.c (main): cgi scripts now have only std{in,out,err} open
2021-01-30 Omar Polo <op@omarpolo.com>
* 1.5 tagged
* server.c: change precedence of location rules
2021-01-29 Omar Polo <op@omarpolo.com>
* iri.c (parse_authority): accept a wider range of unicode
codepoints while parsing the host name.
2021-01-26 Omar Polo <op@omarpolo.com>
* puny.c (puny_decode): initial punycode support!
2021-01-25 Omar Polo <op@omarpolo.com>
* gmid.1: manpage improvements (example and usage)
* gmid.c (main): Dropping -C, -K, -f, changing the meaning of -d:
now it's the certificate directory. Serve the directory given as
positional argument (or the current one) when running in
config-less mode.
(gen_certificate): automatically generate a certificate
* parse.y (option): added chroot and user options
2021-01-24 Omar Polo <op@omarpolo.com>
* server.c (open_dir): add directory listing (disabled by default)
* parse.y (vhost): added support for location blocks
* server.c (send_dir): make the directory index customizable
2021-01-23 Omar Polo <op@omarpolo.com>
* gg.c (main): added gg, a barebone gemini client. used by the
regress suite
2021-01-21 Omar Polo <op@omarpolo.com>
* configure: added a configure script
* server.c (handle_handshake): glob for vhost domain
* gmid.c (log_request): logs the full IRI and the response code (even for CGI)
2021-01-19 Omar Polo <op@omarpolo.com>
* parse.y (servopt): add "lang" server option
(servopt): moving "default type" from global options to server options
* Dockerfile: add a dockerfile
2021-01-18 Omar Polo <op@omarpolo.com>
* parse.y (option): add mime and "default type" options for media types.
2021-01-17 Omar Polo <op@omarpolo.com>
* sandbox.c (sandbox): added initial seccomp(2) support
2021-01-15 Omar Polo <op@omarpolo.com>
* cgi.c (start_cgi): set SERVER_NAME to the vhost when executing CGI scripts
* parse.y (option): add ability to specify the tls versions with "protocols"
* gmid.c (handle_open_conn): ensure the port number of the request matches
* sandbox.c (sandbox): sandbox on OpenBSD (pledge/unveil, as before) and on FreeBSD (capsicum) too
* sample.conf: added sample configuration
* gmid.c (main): changed behaviour: daemon off by default
(main): changed -c in -C (cert option)
(main): changed -k in -K (key option, for consistency with -C)
(main): added -c to load a configuration
(main): certs, key and doc (-C -K and -d) doesn't have a default value anymore
(handle_handshake): add vhosts support
2021-01-13 Omar Polo <op@omarpolo.com>
* iri.c (parse_scheme): normalize scheme while parsing, so we're
RFC3986 compliant.
2021-01-11 Omar Polo <op@omarpolo.com>
* 1.4 and 1.4.1 tagged
* gmid.c (main): ipv6 disabled by default and -6 flag to enable it
(handle): reject non-gemini protocols with 53
2021-01-10 Omar Polo <op@omarpolo.com>
* gmid.c (logs): log also the port of the client
(loop): accept both ipv4 and ipv6
2020-12-26 Omar Polo <op@omarpolo.com>
* uri.c (parse_uri): IRI support
2020-12-21 Omar Polo <op@omarpolo.com>
* gmid.c (main): -d supports relative paths
2020-12-02 Omar Polo <op@omarpolo.com>
* gmid.c: logging reworked and daemonize. The -l option was
removed: now it logs on syslog if -f (foreground) is not passed.
2020-11-18 Omar Polo <op@omarpolo.com>
* 1.3.2 tagged
* gmid.c (url_after_proto): fix bug introduced in last version
regarding full URLs with explicit gemini protocol.
* 1.3.1 tagged
* gmid.c (url_after_proto): correct url parsing: accept URLs
without explicit protocol
(url_start_of_request): correct handling of relative URLs
2020-11-17 Omar Polo <op@omarpolo.com>
* gmid.c (main): add flag -p to change the port
2020-11-10 Omar Polo <op@omarpolo.com>
* ChangeLog: 1.3 tagged, fixed ChangeLog format
* gmid.c (open_file): added support for path parameters for CGI
scripts
2020-11-06 Omar Polo <op@omarpolo.com>
* gmid.1: great improvements to the documentation
* gmid.c (url_after_proto): ensure that the requested protocol is
“gemini” and not something else that’s long 6 bytes.
* gmid.c (loop): added support for cgi scripts (can handle multiple
concurrently)
2020-11-06 Omar Polo <op@venera>
* gmid.1: added option to log to a file
2020-11-05 Omar Polo <op@omarpolo.com>
* gmid.c (filetypes): add MIME type for xml files
2020-11-03 Omar Polo <op@omarpolo.com>
* 1.2 tagged
* gmid.c (main): ignore SIGPIPE
2020-10-14 Omar Polo <op@omarpolo.com>
* 1.1 tagged
* switching to mmap() based file handling
2020-10-07 Omar Polo <op@omarpolo.com>
* 1.0 tagged
|