privoxy.git
9 months agoRegenerate HTML man page for the 4.0.0 release using the groff2html target
Fabian Keil [Mon, 6 Jan 2025 15:53:25 +0000 (16:53 +0100)]
Regenerate HTML man page for the 4.0.0 release using the groff2html target

9 months agoRegenerate privoxy.8 for the 4.0.0 release
Fabian Keil [Mon, 6 Jan 2025 15:46:21 +0000 (16:46 +0100)]
Regenerate privoxy.8 for the 4.0.0 release

9 months agoRegenerate config file for Privoxy 4.0.0
Fabian Keil [Mon, 6 Jan 2025 14:05:54 +0000 (15:05 +0100)]
Regenerate config file for Privoxy 4.0.0

9 months agoBump copyright
Fabian Keil [Mon, 6 Jan 2025 14:04:49 +0000 (15:04 +0100)]
Bump copyright

9 months agoBump ChangeLog copyright
Fabian Keil [Sun, 5 Jan 2025 08:32:42 +0000 (09:32 +0100)]
Bump ChangeLog copyright

9 months agoAdd ChangeLog entries for Privoxy 4.0.0
Fabian Keil [Sun, 5 Jan 2025 08:44:59 +0000 (09:44 +0100)]
Add ChangeLog entries for Privoxy 4.0.0

9 months agouagen: Bump version to 0.1.6
Fabian Keil [Sun, 5 Jan 2025 14:23:24 +0000 (15:23 +0100)]
uagen: Bump version to 0.1.6

9 months agoprivoxy-log-parser: Bump version to 0.9.6
Fabian Keil [Sun, 5 Jan 2025 14:19:23 +0000 (15:19 +0100)]
privoxy-log-parser: Bump version to 0.9.6

9 months agoBump copyright
Fabian Keil [Sun, 5 Jan 2025 09:41:16 +0000 (10:41 +0100)]
Bump copyright

9 months agouser-manual: Spell 'Tor' the standard way
Fabian Keil [Sun, 5 Jan 2025 09:41:09 +0000 (10:41 +0100)]
user-manual: Spell 'Tor' the standard way

9 months agoBump SMGL entities for 4.0.0 stable
Fabian Keil [Sun, 5 Jan 2025 08:47:58 +0000 (09:47 +0100)]
Bump SMGL entities for 4.0.0 stable

9 months agoBump copyright
Fabian Keil [Sun, 5 Jan 2025 08:29:12 +0000 (09:29 +0100)]
Bump copyright

9 months agoFAQ: Bump copyright
Fabian Keil [Sun, 5 Jan 2025 08:29:02 +0000 (09:29 +0100)]
FAQ: Bump copyright

9 months agoFAQ: Mention that Privoxy Moral Licenses are available as well
Fabian Keil [Sun, 5 Jan 2025 08:28:28 +0000 (09:28 +0100)]
FAQ: Mention that Privoxy Moral Licenses are available as well

9 months agombedtls: Add periods to a bunch of log messages
Fabian Keil [Sat, 4 Jan 2025 07:34:25 +0000 (08:34 +0100)]
mbedtls: Add periods to a bunch of log messages

9 months agoUpdate perlre perldoc URL
Fabian Keil [Sat, 4 Jan 2025 06:39:51 +0000 (07:39 +0100)]
Update perlre perldoc URL

9 months agoBump copyright
Fabian Keil [Sat, 4 Jan 2025 06:21:03 +0000 (07:21 +0100)]
Bump copyright

9 months agoUnblock adl.windows.com/
Fabian Keil [Sat, 4 Jan 2025 06:10:38 +0000 (07:10 +0100)]
Unblock adl.windows.com/

... as it is apparently required to update from Windows 10 to 11.

Reported by: Sam Varshavchik

9 months agoBump copyright
Fabian Keil [Sat, 4 Jan 2025 05:49:46 +0000 (06:49 +0100)]
Bump copyright

9 months agoconfigure: Bump SOURCE_DATE_EPOCH
Fabian Keil [Sat, 4 Jan 2025 05:50:52 +0000 (06:50 +0100)]
configure: Bump SOURCE_DATE_EPOCH

9 months agoconfigure: Bump version to 4.0.0 stable
Fabian Keil [Sat, 4 Jan 2025 05:28:08 +0000 (06:28 +0100)]
configure: Bump version to 4.0.0 stable

9 months agoBump copyright
Fabian Keil [Sat, 4 Jan 2025 05:49:17 +0000 (06:49 +0100)]
Bump copyright

9 months agoFactor out newer_privoxy_version_required() and improve the logic
Fabian Keil [Sat, 4 Jan 2025 05:48:04 +0000 (06:48 +0100)]
Factor out newer_privoxy_version_required() and improve the logic

Previously 3.0.11 was considered newer than 4.0.0.

9 months agoAdd support for mbedTLS 3.x
Fabian Keil [Wed, 9 Oct 2024 06:10:02 +0000 (08:10 +0200)]
Add support for mbedTLS 3.x

This removes a sanity check (whether issuer key and issuer certificate
match) that seems overly cautious and fails to compile with mbedTLS
3.x as the struct members are private.

We don't have an equivalent check in the OpenSSL or wolfSSL code either.

9 months agowindows build doc: note that one only needs tidy to build the docs
Lee [Wed, 1 Jan 2025 16:00:31 +0000 (11:00 -0500)]
windows build doc: note that one only needs tidy to build the docs

If you're not building the docbook stuff you don't need tidy.

9 months agowindows build doc: use the PCRE2 10.x library
Lee [Wed, 1 Jan 2025 15:58:03 +0000 (10:58 -0500)]
windows build doc: use the PCRE2 10.x library

the old 8.x PCTRE library has been unsupported for ages.

9 months agoUse the brotli 1.1.0 library
Lee [Mon, 30 Dec 2024 23:13:15 +0000 (18:13 -0500)]
Use the brotli 1.1.0 library

1.0.9 is no longer the latest & greatest

9 months agobuild with "--enable-compression" specified
Lee [Mon, 30 Dec 2024 22:54:49 +0000 (17:54 -0500)]
build with "--enable-compression" specified

I don't remember if I was asked for this to be enabled or no, but
allow Privoxy to compress buffered content it sends to the client.

9 months agoMerge branch 'master' of ssh://git.privoxy.org:23/git/privoxy
Lee [Mon, 30 Dec 2024 22:41:42 +0000 (17:41 -0500)]
Merge branch 'master' of ssh://git.privoxy.org:23/git/privoxy

10 months agoconfig: Add SOCKS 5 to the list of supported protocols
Fabian Keil [Mon, 25 Nov 2024 13:44:00 +0000 (14:44 +0100)]
config: Add SOCKS 5 to the list of supported protocols

10 months agoUnblock requests for 'adventur*.'
Fabian Keil [Fri, 11 Oct 2024 12:25:19 +0000 (14:25 +0200)]
Unblock requests for 'adventur*.'

10 months agombedTLS: Fix typo in error message
Fabian Keil [Fri, 11 Oct 2024 03:52:13 +0000 (05:52 +0200)]
mbedTLS: Fix typo in error message

12 months agoMerge branch 'master' of ssh://git.privoxy.org:23/git/privoxy
Lee [Sat, 26 Oct 2024 17:23:33 +0000 (13:23 -0400)]
Merge branch 'master' of ssh://git.privoxy.org:23/git/privoxy

12 months agoMerge debian changes from 3.0.34-6.
Roland Rosenfeld [Sat, 12 Oct 2024 15:28:22 +0000 (17:28 +0200)]
Merge debian changes from 3.0.34-6.

12 months agoconfigure.in: wolfSSL has nothing to to with LibreSSL.
Roland Rosenfeld [Sat, 12 Oct 2024 10:10:23 +0000 (12:10 +0200)]
configure.in: wolfSSL has nothing to to with LibreSSL.

additionally change Wolfssl to wolfSSL, which is their own notation.

12 months agouser-manual: fix LibreSSL URL.
Roland Rosenfeld [Sat, 12 Oct 2024 10:09:44 +0000 (12:09 +0200)]
user-manual: fix LibreSSL URL.

12 months agorebuild doc/webserver/user-manual
Roland Rosenfeld [Fri, 11 Oct 2024 15:47:19 +0000 (17:47 +0200)]
rebuild doc/webserver/user-manual

12 months agoMerge debian changes from 3.0.34-4 and 3.0.34-5.
Roland Rosenfeld [Fri, 11 Oct 2024 14:33:18 +0000 (16:33 +0200)]
Merge debian changes from 3.0.34-4 and 3.0.34-5.

12 months agoImprove wording of the HOWTOs.
Roland Rosenfeld [Fri, 11 Oct 2024 14:01:05 +0000 (16:01 +0200)]
Improve wording of the HOWTOs.

12 months agouagen: Bump BROWSER_VERSION and BROWSER_REVISION
Fabian Keil [Mon, 16 Sep 2024 10:40:42 +0000 (12:40 +0200)]
uagen: Bump BROWSER_VERSION and BROWSER_REVISION

... to match Firefox ESR 128.

12 months agonormalize_lws(): Only log the 'Reducing whitespace ...' message once per header
Fabian Keil [Sun, 8 Sep 2024 11:32:35 +0000 (13:32 +0200)]
normalize_lws(): Only log the 'Reducing whitespace ...' message once per header

12 months agoinit_error_log(): Include the reason for failures to open the log file
Fabian Keil [Fri, 6 Sep 2024 11:41:22 +0000 (13:41 +0200)]
init_error_log(): Include the reason for failures to open the log file

12 months agowolfssl: Use log_error() more often
Fabian Keil [Thu, 11 Jul 2024 17:09:51 +0000 (19:09 +0200)]
wolfssl: Use log_error() more often

log_ssl_errors() is only supposed to be used for TLS-related errors.

12 months agowolfssl ssl_(send|recv)_data(): Call wolfSSL_ERR_clear_error() before doing any work
Fabian Keil [Wed, 10 Jul 2024 13:58:37 +0000 (15:58 +0200)]
wolfssl ssl_(send|recv)_data(): Call wolfSSL_ERR_clear_error() before doing any work

Prevents logging of bogus errors like:
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: RSA key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: ECC key too small
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: error state on socket
15:53:27.932 009 Error: Sending data on socket 12 over TLS failed: Peer closed underlying transport Error
15:53:27.933 009 Error: Failed to send the modified content to the client over TLS

12 months agowolfssl ssl_store_cert(): Consistently use log_error() to log errors
Fabian Keil [Wed, 10 Jul 2024 13:36:43 +0000 (15:36 +0200)]
wolfssl ssl_store_cert(): Consistently use log_error() to log errors

Previously log_ssl_errors() was used which only works for TLS errors.

Prevents logging stale errors like:

15:10:34.153 007 Error: X509 certificate verification for www.youtube.com failed with error -161: ASN alternate name error
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: RSA key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: ECC key too small
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: ASN alternate name error
15:10:34.156 007 Error: wolfSSL_PEM_write_bio_X509() failed: ASN alternate name error
15:10:34.156 007 Error: ssl_store_cert() failed for cert 2
15:10:34.156 007 Error: Incomplete certificate information for www.youtube.com.

While at it, add periods to log messages.

12 months agoBlock requests for .amazon-adsystem.com/
Fabian Keil [Thu, 27 Jun 2024 23:13:19 +0000 (01:13 +0200)]
Block requests for .amazon-adsystem.com/

12 months agoDisable fast-redirects to duckduckgogg42xjoc72x3sjasowoarfbgcmvfimaftt6twagswzczad...
Fabian Keil [Wed, 14 Aug 2024 16:38:57 +0000 (18:38 +0200)]
Disable fast-redirects to duckduckgogg42xjoc72x3sjasowoarfbgcmvfimaftt6twagswzczad.onion/

12 months agoDisable fast-redirects for .creator-spring.com/_next/image
Fabian Keil [Wed, 14 Aug 2024 11:23:28 +0000 (13:23 +0200)]
Disable fast-redirects for .creator-spring.com/_next/image

12 months agoDisable fast redirects for accounts.bahn.de/
Fabian Keil [Mon, 10 Jun 2024 12:32:22 +0000 (14:32 +0200)]
Disable fast redirects for accounts.bahn.de/

12 months agowolfSSL shutdown_connection(): Shorten an error message
Fabian Keil [Tue, 9 Apr 2024 09:47:08 +0000 (11:47 +0200)]
wolfSSL shutdown_connection(): Shorten an error message

... to not include the return code which is always -1.

12 months agoBump copyright
Fabian Keil [Wed, 26 Jun 2024 14:40:39 +0000 (16:40 +0200)]
Bump copyright

12 months agoBump copyright
Fabian Keil [Wed, 26 Jun 2024 14:31:29 +0000 (16:31 +0200)]
Bump copyright

12 months agoBump copyright
Fabian Keil [Wed, 26 Jun 2024 14:31:06 +0000 (16:31 +0200)]
Bump copyright

12 months agoBump copyright
Fabian Keil [Wed, 26 Jun 2024 14:31:03 +0000 (16:31 +0200)]
Bump copyright

15 months agoOpenSSL generate_key(): Check EVP_RSA_gen()'s return value
Fabian Keil [Thu, 11 Jul 2024 08:21:03 +0000 (10:21 +0200)]
OpenSSL generate_key(): Check EVP_RSA_gen()'s return value

15 months agoFactor out create_hexadecimal_hash_of_host()
Fabian Keil [Wed, 26 Jun 2024 14:23:46 +0000 (16:23 +0200)]
Factor out create_hexadecimal_hash_of_host()

15 months agoUse SHA256 as hash algorithm for the certificate and key file names
Fabian Keil [Wed, 26 Jun 2024 13:23:25 +0000 (15:23 +0200)]
Use SHA256 as hash algorithm for the certificate and key file names

... instead of MD5.

The known MD5 vulnerabilities shoulnd't matter for Privoxy's use case
but it doesn't hurt to use a hash algorithm that isn't deprecated.

Sponsored by: Robert Klemme

15 months agoOpenSSL generate_key(): Use EVP_RSA_gen() when using OpenSSL 3.0 or later
Fabian Keil [Wed, 10 Jul 2024 17:39:03 +0000 (19:39 +0200)]
OpenSSL generate_key(): Use EVP_RSA_gen() when using OpenSSL 3.0 or later

Silences a bunch of deprecation warnings:

    openssl.c:1523:10: warning: 'RSA_new' is deprecated [-Wdeprecated-declarations]
     1523 |    rsa = RSA_new();
          |          ^
    /usr/local/include/openssl/rsa.h:201:1: note: 'RSA_new' has been explicitly marked deprecated here
      201 | OSSL_DEPRECATEDIN_3_0 RSA *RSA_new(void);
          | ^
    /usr/local/include/openssl/macros.h:182:49: note: expanded from macro 'OSSL_DEPRECATEDIN_3_0'
      182 | #   define OSSL_DEPRECATEDIN_3_0                OSSL_DEPRECATED(3.0)
          |                                                 ^
    /usr/local/include/openssl/macros.h:62:52: note: expanded from macro 'OSSL_DEPRECATED'
       62 | #     define OSSL_DEPRECATED(since) __attribute__((deprecated))
          |                                                    ^
    openssl.c:1540:10: warning: 'RSA_generate_key_ex' is deprecated [-Wdeprecated-declarations]
     1540 |    ret = RSA_generate_key_ex(rsa, RSA_KEYSIZE, exp, NULL);
          |          ^
    /usr/local/include/openssl/rsa.h:260:1: note: 'RSA_generate_key_ex' has been explicitly marked deprecated here
      260 | OSSL_DEPRECATEDIN_3_0 int RSA_generate_key_ex(RSA *rsa, int bits, BIGNUM *e,
          | ^
    /usr/local/include/openssl/macros.h:182:49: note: expanded from macro 'OSSL_DEPRECATEDIN_3_0'
      182 | #   define OSSL_DEPRECATEDIN_3_0                OSSL_DEPRECATED(3.0)
          |                                                 ^
    /usr/local/include/openssl/macros.h:62:52: note: expanded from macro 'OSSL_DEPRECATED'
       62 | #     define OSSL_DEPRECATED(since) __attribute__((deprecated))
          |                                                    ^
    openssl.c:1549:9: warning: 'EVP_PKEY_set1_RSA' is deprecated [-Wdeprecated-declarations]
     1549 |    if (!EVP_PKEY_set1_RSA(key, rsa))
          |         ^
    /usr/local/include/openssl/evp.h:1345:1: note: 'EVP_PKEY_set1_RSA' has been explicitly marked deprecated here
     1345 | OSSL_DEPRECATEDIN_3_0
          | ^
    /usr/local/include/openssl/macros.h:182:49: note: expanded from macro 'OSSL_DEPRECATEDIN_3_0'
      182 | #   define OSSL_DEPRECATEDIN_3_0                OSSL_DEPRECATED(3.0)
          |                                                 ^
    /usr/local/include/openssl/macros.h:62:52: note: expanded from macro 'OSSL_DEPRECATED'
       62 | #     define OSSL_DEPRECATED(since) __attribute__((deprecated))
          |                                                    ^
    openssl.c:1592:7: warning: 'RSA_free' is deprecated [-Wdeprecated-declarations]
     1592 |       RSA_free(rsa);
          |       ^
    /usr/local/include/openssl/rsa.h:293:1: note: 'RSA_free' has been explicitly marked deprecated here
      293 | OSSL_DEPRECATEDIN_3_0 void RSA_free(RSA *r);
          | ^
    /usr/local/include/openssl/macros.h:182:49: note: expanded from macro 'OSSL_DEPRECATEDIN_3_0'
      182 | #   define OSSL_DEPRECATEDIN_3_0                OSSL_DEPRECATED(3.0)
          |                                                 ^
    /usr/local/include/openssl/macros.h:62:52: note: expanded from macro 'OSSL_DEPRECATED'
       62 | #     define OSSL_DEPRECATED(since) __attribute__((deprecated))
          |                                                    ^

15 months agoAdd missing "#include <stddef.h>" to fix the build on macOS
Maxim Khon [Wed, 3 Jul 2024 13:37:28 +0000 (15:37 +0200)]
Add missing "#include <stddef.h>" to fix the build on macOS

... after 19d7684ca10f.

Prevents:
gateway.c:845:18: error: call to undeclared function 'offsetof'; ISO C99 and later do not support implicit function declarations [-Wimplicit-function-declaration]

Fixes SF#150.

16 months agoGNUmakefile.in: Shorten warning
Fabian Keil [Mon, 8 Apr 2024 13:39:07 +0000 (15:39 +0200)]
GNUmakefile.in: Shorten warning

16 months agoGNUMakefile.in: Let the install target work if no group is specified
Fabian Keil [Mon, 8 Apr 2024 13:04:03 +0000 (15:04 +0200)]
GNUMakefile.in: Let the install target work if no group is specified

16 months agoGNUMakefile.in: Set GROUP_T when installing configuration files as root
Fabrice Fontaine [Sun, 31 Mar 2024 17:23:47 +0000 (19:23 +0200)]
GNUMakefile.in: Set GROUP_T when installing configuration files as root

... and there is no privoxy user available.

Prevents the install target from failing with:

     Installing templates to /tmp/etc/templates
     id: privoxy: no such user
     ******************************************************************
      WARNING! WARNING! installing config files as root!
      It is strongly recommended to run privoxy as a non-root user,
      and to install the config files as that user and/or group!
      Please read INSTALL, and create a privoxy user and group!
     *******************************************************************
     Installing configuration files to /tmp/etc
     Installing config as config.new
     usage: install [-bCcpSsUv] [-f flags] [-g group] [-m mode] [-o owner]
                    [-M log] [-D dest] [-h hash] [-T tags]
                    [-B suffix] [-l linkflags] [-N dbdir]
                    file1 file2
            install [-bCcpSsUv] [-f flags] [-g group] [-m mode] [-o owner]
                    [-M log] [-D dest] [-h hash] [-T tags]
                    [-B suffix] [-l linkflags] [-N dbdir]
                    file1 ... fileN directory
            install -dU [-vU] [-g group] [-m mode] [-N dbdir] [-o owner]
                    [-M log] [-D dest] [-h hash] [-T tags]
                    directory ...
     gmake: *** [GNUmakefile:865: install] Error 1

16 months agowolfSSL: Downgrade a log message to LOG_LEVEL_CONNECT
Fabian Keil [Wed, 3 Apr 2024 18:46:21 +0000 (20:46 +0200)]
wolfSSL: Downgrade a log message to LOG_LEVEL_CONNECT

16 months agoBump copyright
Fabian Keil [Mon, 1 Apr 2024 19:24:40 +0000 (21:24 +0200)]
Bump copyright

16 months agoDisable fast-redirect for archive.softwareheritage.org/
Fabian Keil [Mon, 1 Apr 2024 18:46:24 +0000 (20:46 +0200)]
Disable fast-redirect for archive.softwareheritage.org/

16 months agowolfSSL: Log if wolfSSL_shutdown() succeeds after retrying
Fabian Keil [Sun, 31 Mar 2024 11:54:18 +0000 (13:54 +0200)]
wolfSSL: Log if wolfSSL_shutdown() succeeds after retrying

16 months agoprivoxy-regression-test: Bump version
Fabian Keil [Sun, 31 Mar 2024 13:48:49 +0000 (15:48 +0200)]
privoxy-regression-test: Bump version

16 months agoprivoxy-regression-test: Bump copyright
Fabian Keil [Sun, 31 Mar 2024 13:20:45 +0000 (15:20 +0200)]
privoxy-regression-test: Bump copyright

16 months agoprivoxy-regression-test: Add --curl option to use a non-default curl binary
Fabian Keil [Sun, 31 Mar 2024 13:20:21 +0000 (15:20 +0200)]
privoxy-regression-test: Add --curl option to use a non-default curl binary

16 months agoRemove obsolete parts of TODO item #1
Fabian Keil [Fri, 21 Jun 2024 16:34:10 +0000 (18:34 +0200)]
Remove obsolete parts of TODO item #1

16 months agoAdd Laurent Caumont as contributor
Fabian Keil [Mon, 10 Jun 2024 11:54:15 +0000 (13:54 +0200)]
Add Laurent Caumont as contributor

16 months agoBump copyright
Fabian Keil [Sun, 9 Jun 2024 13:22:08 +0000 (15:22 +0200)]
Bump copyright

16 months agois_untrusted_url(): Search the encrypted headers for the Referer
Fabian Keil [Sun, 9 Jun 2024 12:50:34 +0000 (14:50 +0200)]
is_untrusted_url(): Search the encrypted headers for the Referer

... when the client is using https and https inspection is enabled.

Fixes the trust mechanism for https requests.

Reported by Laurent Caumont in #1767.

16 months agois_untrusted_url(): Remove stray space
Fabian Keil [Sun, 9 Jun 2024 12:42:28 +0000 (14:42 +0200)]
is_untrusted_url(): Remove stray space

16 months agoRemove stray space
Fabian Keil [Sun, 2 Jun 2024 13:45:16 +0000 (15:45 +0200)]
Remove stray space

16 months agoRemove stray space
Fabian Keil [Sun, 2 Jun 2024 13:02:09 +0000 (15:02 +0200)]
Remove stray space

16 months agolog_error(): Add missing space and new line in fatal error message
Fabian Keil [Mon, 3 Jun 2024 14:57:34 +0000 (16:57 +0200)]
log_error(): Add missing space and new line in fatal error message

17 months agoRemove silver sponsor scrubtheweb.com
Fabian Keil [Wed, 22 May 2024 12:36:25 +0000 (14:36 +0200)]
Remove silver sponsor scrubtheweb.com

17 months agoRemove bronze sponsor vpnxpert.com
Fabian Keil [Wed, 22 May 2024 12:32:36 +0000 (14:32 +0200)]
Remove bronze sponsor vpnxpert.com

17 months agoRemove bronze sponsor moneybanker.fr
Fabian Keil [Wed, 22 May 2024 12:31:32 +0000 (14:31 +0200)]
Remove bronze sponsor moneybanker.fr

17 months agoRemove bronze sponsor www.betrugstest.com
Fabian Keil [Wed, 22 May 2024 12:30:58 +0000 (14:30 +0200)]
Remove bronze sponsor www.betrugstest.com

17 months agoBump copyright
Fabian Keil [Fri, 3 May 2024 13:50:01 +0000 (15:50 +0200)]
Bump copyright

17 months agoAdd www.proxidize.com as Bronze level sponsor
Fabian Keil [Fri, 3 May 2024 13:40:19 +0000 (15:40 +0200)]
Add www.proxidize.com as Bronze level sponsor

18 months agobump PCRE library to pcre2-10.43
Lee [Fri, 12 Apr 2024 08:46:22 +0000 (04:46 -0400)]
bump PCRE library to pcre2-10.43

18 months agowolfSSL: Use LIBWOLFSSL_VERSION_HEX to decide whether or not to use WOLFSSL_X509_V_OK
Fabian Keil [Mon, 1 Apr 2024 15:19:06 +0000 (17:19 +0200)]
wolfSSL: Use LIBWOLFSSL_VERSION_HEX to decide whether or not to use WOLFSSL_X509_V_OK

As Roland pointed out, in older wolfSSL releases X509_V_OK
is an enum so the previous commit 838bc3c0e did not work
as expected there.

18 months agowolfSSL: Unconditionally increment shutdown_attempts
Fabian Keil [Mon, 1 Apr 2024 14:41:27 +0000 (16:41 +0200)]
wolfSSL: Unconditionally increment shutdown_attempts

Previously the succeeding attempt wasn't counted.

18 months agowolfSSL: Bump MAX_SHUTDOWN_ATTEMPTS to 5 as an experiment
Fabian Keil [Mon, 1 Apr 2024 11:46:39 +0000 (13:46 +0200)]
wolfSSL: Bump MAX_SHUTDOWN_ATTEMPTS to 5 as an experiment

18 months agoprivoxy-log-parser: Highlight 'Not shutting down client connection on socket 8. The...
Fabian Keil [Mon, 1 Apr 2024 11:31:20 +0000 (13:31 +0200)]
privoxy-log-parser: Highlight 'Not shutting down client connection on socket 8. The socket is no longer alive.'

18 months agoBump copyright
Fabian Keil [Sun, 31 Mar 2024 15:50:18 +0000 (17:50 +0200)]
Bump copyright

18 months agowolfSSL: Use X509_V_OK if it's available
Fabian Keil [Sun, 31 Mar 2024 15:16:46 +0000 (17:16 +0200)]
wolfSSL: Use X509_V_OK if it's available

Older wolfSSL releases don't have WOLFSSL_X509_V_OK yet.

Reported by Roland [0].

[0]: <https://lists.privoxy.org/pipermail/privoxy-devel/2024-March/000759.html>

18 months agowolfSSL: Use variable type wc_Md5 instead of md5
Fabian Keil [Sun, 31 Mar 2024 15:04:43 +0000 (17:04 +0200)]
wolfSSL: Use variable type wc_Md5 instead of md5

As Roland reported [0] the latter may not be available.

[0] <https://lists.privoxy.org/pipermail/privoxy-devel/2024-March/000759.html>

18 months agowolfSSL: Use variable type WC_RNG instead of RNG
Fabian Keil [Sun, 31 Mar 2024 15:01:36 +0000 (17:01 +0200)]
wolfSSL: Use variable type WC_RNG instead of RNG

As Roland reported [0] the latter may not be available.

[0] <https://lists.privoxy.org/pipermail/privoxy-devel/2024-March/000759.html>

18 months agowolfSSL: Make it more obvious that Subject Alternative Name support is mandatory
Fabian Keil [Sun, 31 Mar 2024 11:50:02 +0000 (13:50 +0200)]
wolfSSL: Make it more obvious that Subject Alternative Name support is mandatory

18 months agoAdd Juliusz Sosinowicz as contributor
Fabian Keil [Sun, 31 Mar 2024 11:15:33 +0000 (13:15 +0200)]
Add Juliusz Sosinowicz as contributor

18 months agowolfSSL: Include wolfssl/openssl/pem.h
Fabian Keil [Sun, 31 Mar 2024 11:11:59 +0000 (13:11 +0200)]
wolfSSL: Include wolfssl/openssl/pem.h

Apparently this is needed on some systems including Linux Mint 21.2.

Reported by by Juliusz Sosinowicz.

18 months agowolfSSL: Use WOLFSSL_X509_V_OK instead of X509_V_OK
Fabian Keil [Sun, 31 Mar 2024 10:54:25 +0000 (12:54 +0200)]
wolfSSL: Use WOLFSSL_X509_V_OK instead of X509_V_OK

They have the same value but X509_V_OK may need
an additional header.

Reported by withoutname in #1765.

19 months agoprivoxy-log-parser: Bump copyright
Fabian Keil [Sun, 17 Mar 2024 18:00:25 +0000 (19:00 +0100)]
privoxy-log-parser: Bump copyright

19 months agoprivoxy-log-parser: Highlight 'Keeping chunk offset at 0 despite flushing 31 bytes.'
Fabian Keil [Sun, 17 Mar 2024 18:00:05 +0000 (19:00 +0100)]
privoxy-log-parser: Highlight 'Keeping chunk offset at 0 despite flushing 31 bytes.'

19 months agohandle_established_connection(): Add a period to a log message
Fabian Keil [Sun, 17 Mar 2024 17:59:35 +0000 (18:59 +0100)]
handle_established_connection(): Add a period to a log message

19 months agoAdd test scenario acl-destination-permitted
Fabian Keil [Fri, 10 Jun 2022 15:56:44 +0000 (17:56 +0200)]
Add test scenario acl-destination-permitted

Sponsored by: Privoxy project funds collected at SPI