privoxy.git
12 months agoRename privoxy.1 to privoxy.8
Fabian Keil [Wed, 20 Jan 2021 17:35:51 +0000 (18:35 +0100)]
Rename privoxy.1 to privoxy.8

Suggested by Roland.

12 months agoMove man page from man section 1 to man section 8.
Roland Rosenfeld [Mon, 21 Apr 2003 09:11:31 +0000 (11:11 +0200)]
Move man page from man section 1 to man section 8.

12 months agoprivoxy-log-parser: Fix perldoc typo
Roland Rosenfeld [Sun, 1 May 2016 12:21:22 +0000 (14:21 +0200)]
privoxy-log-parser: Fix perldoc typo

12 months agoChange wildcard_dst to short to reduce the size of struct access_control_list
Fabian Keil [Thu, 21 Jan 2021 10:48:52 +0000 (11:48 +0100)]
Change wildcard_dst to short to reduce the size of struct access_control_list

12 months agoRearrange struct client_state to reduce memory on amd64
Fabian Keil [Thu, 21 Jan 2021 10:41:47 +0000 (11:41 +0100)]
Rearrange struct client_state to reduce memory on amd64

Move content_type up and change ssl_with_server_is_opened
and ssl_with_client_is_opened to short.

12 months agoRearrange members of struct http_request to reduce padding on amd64
Fabian Keil [Thu, 21 Jan 2021 10:28:24 +0000 (11:28 +0100)]
Rearrange members of struct http_request to reduce padding on amd64

While at it, change member 'ssl' to short to save memory.

12 months agoRearrange members of struct reusable_connection
Fabian Keil [Thu, 21 Jan 2021 10:25:39 +0000 (11:25 +0100)]
Rearrange members of struct reusable_connection

... to save 4 bytes of padding on amd64.

12 months agoReorder gateway_host in struct forward_spec to save memory
Fabian Keil [Thu, 21 Jan 2021 10:22:26 +0000 (11:22 +0100)]
Reorder gateway_host in struct forward_spec to save memory

12 months agoReorder need_bind in struct configuration_spec to save memory
Fabian Keil [Thu, 21 Jan 2021 10:20:12 +0000 (11:20 +0100)]
Reorder need_bind in struct configuration_spec to save memory

12 months agoReorder dcount in the url_spec struct to save memory
Fabian Keil [Thu, 21 Jan 2021 10:13:19 +0000 (11:13 +0100)]
Reorder dcount in the url_spec struct to save memory

12 months agoOptimize debian/rules clean to restore pristine state.
Roland Rosenfeld [Wed, 20 Jan 2021 18:56:07 +0000 (19:56 +0100)]
Optimize debian/rules clean to restore pristine state.

12 months agoPrepare Debian release 3.0.30-1~pp-1.
Roland Rosenfeld [Wed, 20 Jan 2021 18:45:14 +0000 (19:45 +0100)]
Prepare Debian release 3.0.30-1~pp-1.

12 months agoRebuild HTML man page for Privoxy 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:21:20 +0000 (16:21 +0100)]
Rebuild HTML man page for Privoxy 3.0.30 stable

12 months agoRebuild privoxy.1 for Privoxy 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:20:31 +0000 (16:20 +0100)]
Rebuild privoxy.1 for Privoxy 3.0.30 stable

12 months agoRebuild docs
Fabian Keil [Wed, 20 Jan 2021 15:18:51 +0000 (16:18 +0100)]
Rebuild docs

12 months agoBump SMGL entities for 3.0.30 stable
Fabian Keil [Wed, 20 Jan 2021 15:17:54 +0000 (16:17 +0100)]
Bump SMGL entities for 3.0.30 stable

12 months agoAdd ChangeLog entries for changes from 91f9e616645 to 2ecae81f1
Fabian Keil [Wed, 20 Jan 2021 15:10:15 +0000 (16:10 +0100)]
Add ChangeLog entries for changes from 91f9e616645 to 2ecae81f1

12 months agojs-annoyances filter: Remove a duplicate pcrs command
Fabian Keil [Tue, 19 Jan 2021 19:29:34 +0000 (20:29 +0100)]
js-annoyances filter: Remove a duplicate pcrs command

12 months agossl_send_certificate_error(): Send the error message with status code 403 instead...
Fabian Keil [Mon, 18 Jan 2021 17:33:11 +0000 (18:33 +0100)]
ssl_send_certificate_error(): Send the error message with status code 403 instead of 200

12 months agoBump copyright
Fabian Keil [Mon, 18 Jan 2021 15:08:53 +0000 (16:08 +0100)]
Bump copyright

12 months agoRename slackware/rc.privoxy.orig to slackware/rc.privoxy.in
Fabian Keil [Mon, 18 Jan 2021 15:01:59 +0000 (16:01 +0100)]
Rename slackware/rc.privoxy.orig to slackware/rc.privoxy.in

... as suggested by Roland. This shold silence complaints
when building Debian packages and hopefully still works
on Slackware ...

12 months agoDeveloper manual: Optimize Debian build instructions.
Roland Rosenfeld [Tue, 19 Jan 2021 21:41:38 +0000 (22:41 +0100)]
Developer manual: Optimize Debian build instructions.

12 months agoFix typo
Fabian Keil [Tue, 19 Jan 2021 10:51:41 +0000 (11:51 +0100)]
Fix typo

12 months agoAdd #186: Privoxy should handle "OPTIONS *" requests properly
Fabian Keil [Tue, 19 Jan 2021 10:51:31 +0000 (11:51 +0100)]
Add #186: Privoxy should handle "OPTIONS *" requests properly

12 months agoFix comment typo
Fabian Keil [Tue, 19 Jan 2021 10:18:24 +0000 (11:18 +0100)]
Fix comment typo

12 months agoAdd a period to the 'Graceful termination requested' message
Fabian Keil [Tue, 19 Jan 2021 09:39:57 +0000 (10:39 +0100)]
Add a period to the 'Graceful termination requested' message

12 months agoLog a message right before exiting gracefully
Fabian Keil [Tue, 19 Jan 2021 09:10:46 +0000 (10:10 +0100)]
Log a message right before exiting gracefully

12 months agoRebuild docs
Fabian Keil [Mon, 18 Jan 2021 14:12:59 +0000 (15:12 +0100)]
Rebuild docs

12 months agoMention the imdb filter in the user-manual
Fabian Keil [Mon, 18 Jan 2021 14:10:19 +0000 (15:10 +0100)]
Mention the imdb filter in the user-manual

12 months agoMention the sourceforge filter in the user-manual
Fabian Keil [Mon, 18 Jan 2021 14:09:23 +0000 (15:09 +0100)]
Mention the sourceforge filter in the user-manual

12 months agoMention the github filter in the user-manual
Fabian Keil [Mon, 18 Jan 2021 14:08:17 +0000 (15:08 +0100)]
Mention the github filter in the user-manual

12 months agoBump copyright
Fabian Keil [Mon, 18 Jan 2021 13:37:48 +0000 (14:37 +0100)]
Bump copyright

12 months agoAdd an imdb filter
Fabian Keil [Mon, 18 Jan 2021 13:57:22 +0000 (14:57 +0100)]
Add an imdb filter

12 months agoAdd a sourceforge filter
Fabian Keil [Mon, 18 Jan 2021 13:52:58 +0000 (14:52 +0100)]
Add a sourceforge filter

... that reduces the amount of ads for proprietary software.

12 months agoAdd a github filter
Fabian Keil [Mon, 18 Jan 2021 13:49:39 +0000 (14:49 +0100)]
Add a github filter

... that removes the annoying "Sign-Up" banner and the Cookie disclaimer.

12 months agoDeclare Privoxy 3.0.30 stable
Fabian Keil [Mon, 18 Jan 2021 19:21:20 +0000 (20:21 +0100)]
Declare Privoxy 3.0.30 stable

12 months agoprivoxy-log-parser: Highlight 'Sending data on socket 33 over TLS/SSL failed: no...
Fabian Keil [Mon, 18 Jan 2021 14:01:55 +0000 (15:01 +0100)]
privoxy-log-parser: Highlight 'Sending data on socket 33 over TLS/SSL failed: no TLS/SSL errors detected'

12 months agoAdd ChangeLog entries for changes from 639c42d7ab7 to 91f9e616645
Fabian Keil [Mon, 18 Jan 2021 18:27:44 +0000 (19:27 +0100)]
Add ChangeLog entries for changes from 639c42d7ab7 to 91f9e616645

12 months agoRebuild developer manual
Fabian Keil [Mon, 18 Jan 2021 10:49:45 +0000 (11:49 +0100)]
Rebuild developer manual

12 months agodeveloper-manual: Bump copyright
Fabian Keil [Mon, 18 Jan 2021 12:45:17 +0000 (13:45 +0100)]
developer-manual: Bump copyright

12 months agodeveloper-manual: Add more build instructions for Debian
Fabian Keil [Mon, 18 Jan 2021 10:48:41 +0000 (11:48 +0100)]
developer-manual: Add more build instructions for Debian

... as submitted by Roland to privoxy-devel@ with some
markup added.

12 months agoRelocate CERT_INFO_PREFIX to ssl.c
Fabian Keil [Mon, 18 Jan 2021 03:31:09 +0000 (04:31 +0100)]
Relocate CERT_INFO_PREFIX to ssl.c

The OpenSSL code doesn't use it.

12 months agombedTLS ssl_crt_verify_info(): Ditch trailing new line
Fabian Keil [Mon, 18 Jan 2021 00:59:40 +0000 (01:59 +0100)]
mbedTLS ssl_crt_verify_info(): Ditch trailing new line

It's not needed for the certificate-error page and it
messed up the "Crunch:" message by splitting it in two.

While at it, remove the leading space which serves no
obvious purpose.

12 months agoUpdate #184: Add ETA for the wolfSSL support
Fabian Keil [Mon, 18 Jan 2021 00:11:34 +0000 (01:11 +0100)]
Update #184: Add ETA for the wolfSSL support

12 months agoAdd #185: generate_host_certificate() should only be called when necessary
Fabian Keil [Mon, 18 Jan 2021 00:10:13 +0000 (01:10 +0100)]
Add #185: generate_host_certificate() should only be called when necessary

12 months agoDisable fast-redirects for .gravater.com/
Fabian Keil [Sun, 17 Jan 2021 16:53:23 +0000 (17:53 +0100)]
Disable fast-redirects for .gravater.com/

... instead of secure.gravatar.com/.

12 months agoBump copyright
Fabian Keil [Sun, 17 Jan 2021 13:42:22 +0000 (14:42 +0100)]
Bump copyright

12 months agoenforce_sane_certificate_state(): Also deal with certificates without key
Fabian Keil [Mon, 18 Jan 2021 02:49:39 +0000 (03:49 +0100)]
enforce_sane_certificate_state(): Also deal with certificates without key

... by removing the certificate.

12 months agoFactor out enforce_sane_certificate_state()
Fabian Keil [Sat, 16 Jan 2021 13:52:55 +0000 (14:52 +0100)]
Factor out enforce_sane_certificate_state()

12 months agoOpenSSL ssl_store_cert(): Fix an error message
Fabian Keil [Fri, 15 Jan 2021 16:57:43 +0000 (17:57 +0100)]
OpenSSL ssl_store_cert(): Fix an error message

12 months agombedTLS: Rename generate_webpage_certificate() to generate_host_certificate()
Fabian Keil [Sat, 16 Jan 2021 08:12:45 +0000 (09:12 +0100)]
mbedTLS: Rename generate_webpage_certificate() to generate_host_certificate()

The generated certificate is host-specific not page-specific.

12 months agoOpenSSL: Rename generate_webpage_certificate() to generate_host_certificate()
Fabian Keil [Sat, 16 Jan 2021 08:12:00 +0000 (09:12 +0100)]
OpenSSL: Rename generate_webpage_certificate() to generate_host_certificate()

The generated certificate is host-specific not page-specific.

12 months agoOpenSSL: Save memory allocations in generate_key()
Fabian Keil [Sat, 16 Jan 2021 08:39:45 +0000 (09:39 +0100)]
OpenSSL: Save memory allocations in generate_key()

... if the key already exists.

12 months agoOpenSSL ssl_base64_encode(): Fix buffer size check
Fabian Keil [Thu, 14 Jan 2021 10:58:12 +0000 (11:58 +0100)]
OpenSSL ssl_base64_encode(): Fix buffer size check

In practice it didn't matter because Privoxy always
provides a sufficiently-sized buffer.

12 months agoOpenSSL ssl_certificate_is_invalid(): Remove a log message
Fabian Keil [Wed, 13 Jan 2021 15:24:55 +0000 (16:24 +0100)]
OpenSSL ssl_certificate_is_invalid(): Remove a log message

... if the certificate can't be read.

ssl_certificate_load() already emits an error message.

12 months agoRegenerate config file
Fabian Keil [Sat, 16 Jan 2021 19:42:11 +0000 (20:42 +0100)]
Regenerate config file

12 months agoRegenerate user-manual
Fabian Keil [Sat, 16 Jan 2021 19:41:28 +0000 (20:41 +0100)]
Regenerate user-manual

12 months agoExplicitly mention that the CA key is used to sign certificates
Fabian Keil [Sat, 16 Jan 2021 16:50:56 +0000 (17:50 +0100)]
Explicitly mention that the CA key is used to sign certificates

12 months agoprivoxy-log-parser: Properly deal with 'Certificate error' crunches
Fabian Keil [Mon, 18 Jan 2021 00:29:42 +0000 (01:29 +0100)]
privoxy-log-parser: Properly deal with 'Certificate error' crunches

Previously the error description was highlighted as 'host'.

12 months agoprivoxy-log-parser: Highlight: 'Flushed 3153 bytes of request body'
Fabian Keil [Tue, 12 Jan 2021 10:07:33 +0000 (11:07 +0100)]
privoxy-log-parser: Highlight: 'Flushed 3153 bytes of request body'

12 months agoprivoxy-log-parser: Highlight 'The last 12078 bytes of the request body have been...
Fabian Keil [Mon, 11 Jan 2021 07:48:39 +0000 (08:48 +0100)]
privoxy-log-parser: Highlight 'The last 12078 bytes of the request body have been read'

12 months agoRebuild docs
Fabian Keil [Fri, 11 Dec 2020 06:24:24 +0000 (07:24 +0100)]
Rebuild docs

12 months agoAdd Aaron Linville as contributor
Fabian Keil [Thu, 10 Dec 2020 20:14:42 +0000 (21:14 +0100)]
Add Aaron Linville as contributor

12 months agoAdd new 'allow-autocompletion' filter
Fabian Keil [Thu, 10 Dec 2020 20:10:47 +0000 (21:10 +0100)]
Add new 'allow-autocompletion' filter

... which changes autocomplete="off" to "on" on input fields to
allow autocompletion.

Requested by Jamie Zawinski in #370.
Filter based on a submission by Aaron Linville.

12 months agoGit snapshot "release".
Roland Rosenfeld [Sun, 17 Jan 2021 12:40:14 +0000 (13:40 +0100)]
Git snapshot "release".
Update all patches to new version.
39_show-status and 40_redirect-ssl are now incorporated upstream.

12 months agoMerge Debian version 3.0.29-2
Roland Rosenfeld [Sun, 17 Jan 2021 12:31:42 +0000 (13:31 +0100)]
Merge Debian version 3.0.29-2

12 months agoMerge Debian 3.0.29-1 version.
Roland Rosenfeld [Sun, 17 Jan 2021 12:28:07 +0000 (13:28 +0100)]
Merge Debian 3.0.29-1 version.

12 months agoOpenSSL ssl_recv_data(): Include the actual fd in an error message
Fabian Keil [Tue, 12 Jan 2021 08:38:50 +0000 (09:38 +0100)]
OpenSSL ssl_recv_data(): Include the actual fd in an error message

12 months agoopenssl.c: Fix comment typo
Fabian Keil [Tue, 12 Jan 2021 12:25:44 +0000 (13:25 +0100)]
openssl.c: Fix comment typo

12 months agoconfigure: Clarify comments about OpenSSL and mbedTLS support
Fabian Keil [Tue, 12 Jan 2021 07:03:28 +0000 (08:03 +0100)]
configure: Clarify comments about OpenSSL and mbedTLS support

They aren't both required, enabling either one is sufficient
to get https inspection working.

12 months agoconfigure.in: Bail out if OpenSSL and mbedTLS are enabled at the same time
Fabian Keil [Tue, 12 Jan 2021 06:46:07 +0000 (07:46 +0100)]
configure.in: Bail out if OpenSSL and mbedTLS are enabled at the same time

12 months agoconfigure.in: Remove left-over OS/2 code
Fabian Keil [Tue, 12 Jan 2021 06:43:41 +0000 (07:43 +0100)]
configure.in: Remove left-over OS/2 code

12 months agoNote that #18 is work in progress
Fabian Keil [Wed, 13 Jan 2021 08:53:51 +0000 (09:53 +0100)]
Note that #18 is work in progress

12 months agoTODO #1: Add another reference
Fabian Keil [Tue, 12 Jan 2021 05:14:59 +0000 (06:14 +0100)]
TODO #1: Add another reference

12 months agoprivoxy-log-parser: Log truncated LOG_LEVEL_CLF messages more gracefully
Fabian Keil [Mon, 11 Jan 2021 13:23:52 +0000 (14:23 +0100)]
privoxy-log-parser: Log truncated LOG_LEVEL_CLF messages more gracefully

... and note that the statistics will be inprecise.

12 months agoBlock requests to api.theadex.com/
Fabian Keil [Mon, 11 Jan 2021 12:21:40 +0000 (13:21 +0100)]
Block requests to api.theadex.com/

12 months agoBlock requests to ih.adscale.de/
Fabian Keil [Mon, 11 Jan 2021 12:13:40 +0000 (13:13 +0100)]
Block requests to ih.adscale.de/

12 months agoBlock requests to .s400.meetrics.net/
Fabian Keil [Mon, 11 Jan 2021 12:11:08 +0000 (13:11 +0100)]
Block requests to .s400.meetrics.net/

12 months agoBlock requests for pp.lp4.io/
Fabian Keil [Mon, 11 Jan 2021 12:04:46 +0000 (13:04 +0100)]
Block requests for pp.lp4.io/

12 months agoDisable fast-redirects for .ksta.de/
Fabian Keil [Mon, 11 Jan 2021 11:49:33 +0000 (12:49 +0100)]
Disable fast-redirects for .ksta.de/

12 months agoRebuild user manual
Fabian Keil [Thu, 7 Jan 2021 15:09:07 +0000 (16:09 +0100)]
Rebuild user manual

12 months agouser-manual: Bump copyright
Fabian Keil [Thu, 7 Jan 2021 15:19:55 +0000 (16:19 +0100)]
user-manual: Bump copyright

12 months agouser-manual: Note that actions aren't updated after rewrites
Fabian Keil [Fri, 8 Jan 2021 20:50:23 +0000 (21:50 +0100)]
user-manual: Note that actions aren't updated after rewrites

12 months agouser-manual: Explicitly mention that upgrading from http to https with a client-heade...
Fabian Keil [Thu, 7 Jan 2021 15:07:40 +0000 (16:07 +0100)]
user-manual: Explicitly mention that upgrading from http to https with a client-header filter is not supported

12 months agouser-manual: Note that protocol and host have to be added
Fabian Keil [Wed, 6 Jan 2021 15:51:36 +0000 (16:51 +0100)]
user-manual: Note that protocol and host have to be added

... when rewriting the destination host for https-inspected requests.

12 months agoAdd #184: Add support for wolfSSL
Fabian Keil [Fri, 8 Jan 2021 00:35:25 +0000 (01:35 +0100)]
Add #184: Add support for wolfSSL

12 months agoAdd #183: Properly deal with proxy responses that arrive in multiple pieces
Fabian Keil [Wed, 6 Jan 2021 20:49:28 +0000 (21:49 +0100)]
Add #183: Properly deal with proxy responses that arrive in multiple pieces

12 months agochange_encrypted_request_destination(): Keep the original port instead of defaulting...
Fabian Keil [Thu, 7 Jan 2021 13:13:55 +0000 (14:13 +0100)]
change_encrypted_request_destination(): Keep the original port instead of defaulting to 443

... when the rewritten request line does not contain a host and port.

12 months agofilter_header(): Break a couple of long lines
Fabian Keil [Sun, 10 Jan 2021 02:55:34 +0000 (03:55 +0100)]
filter_header(): Break a couple of long lines

12 months agoparse_client_request(): Fix status code in a LOG_LEVEL_CLF message
Fabian Keil [Sun, 10 Jan 2021 07:46:35 +0000 (08:46 +0100)]
parse_client_request(): Fix status code in a LOG_LEVEL_CLF message

12 months agochange_encrypted_request_destination(): Plug a memory leak if the rewritten request...
Fabian Keil [Thu, 7 Jan 2021 14:30:59 +0000 (15:30 +0100)]
change_encrypted_request_destination(): Plug a memory leak if the rewritten request line is invalid

12 months agoprocess_encrypted_request(): Improve error message
Fabian Keil [Thu, 7 Jan 2021 13:48:10 +0000 (14:48 +0100)]
process_encrypted_request(): Improve error message

... emitted when the rewritten request line is invalid.

While at it, emit a LOG_LEVEL_CLF message.

12 months agoprocess_encrypted_request(): Use the MESSED_UP_REQUEST_RESPONSE when the rewritten...
Fabian Keil [Thu, 7 Jan 2021 13:44:24 +0000 (14:44 +0100)]
process_encrypted_request(): Use the MESSED_UP_REQUEST_RESPONSE when the rewritten request line is invalid

12 months agochange_request_destination(): Reject rewrites from http to https
Fabian Keil [Thu, 7 Jan 2021 13:41:17 +0000 (14:41 +0100)]
change_request_destination(): Reject rewrites from http to https

... as they currently aren't supported.

Previously we would wait for the client to establish
an encrypted connection which obviously would not happen.

12 months agochat(): Use client_use_ssl(csp) instead of http->ssl
Fabian Keil [Wed, 6 Jan 2021 16:52:38 +0000 (17:52 +0100)]
chat(): Use client_use_ssl(csp) instead of http->ssl

... in a place where it is more appropriate.

Currently the difference doesn't matter, but it will
when we start supporting upgrading the protocol from
http to https behind the client's back.

12 months agoAdd Pragma header to the client-header-order example
Fabian Keil [Tue, 5 Jan 2021 17:34:38 +0000 (18:34 +0100)]
Add Pragma header to the client-header-order example

12 months agoredirect_url(): Silence a bogus use-after-free warning
Fabian Keil [Tue, 5 Jan 2021 00:03:25 +0000 (01:03 +0100)]
redirect_url(): Silence a bogus use-after-free warning

... emitted by ccc-analyzer from llvm80.

12 months agossl_store_cert(): Check BIO_get_mem_data() return code
Fabian Keil [Tue, 5 Jan 2021 00:12:04 +0000 (01:12 +0100)]
ssl_store_cert(): Check BIO_get_mem_data() return code

12 months agoenforce_header_order(): Save a couple of memory allocations
Fabian Keil [Mon, 4 Jan 2021 22:27:04 +0000 (23:27 +0100)]
enforce_header_order(): Save a couple of memory allocations

12 months agosed(): Don't call enforce_header_order() if a filter removed the request line
Fabian Keil [Tue, 5 Jan 2021 13:32:50 +0000 (14:32 +0100)]
sed(): Don't call enforce_header_order() if a filter removed the request line

... as enforce_header_order() asserts that the request line is present.

Without the request line the request will be rejected as invalid
later on anyway, so sorting the headers first is pointless.