From 2e43b7767721781355233b72439cb20b01b81a25 Mon Sep 17 00:00:00 2001 From: Roland Rosenfeld Date: Sat, 25 May 2002 19:17:36 +0000 Subject: [PATCH] Disable edit-actions and remote-toggle in config file by default (Closes: #148125). --- .gitignore | 26 + AUTHORS | 49 + ChangeLog | 227 + GNUmakefile.in | 1408 +++ Junkbuster Status.URL | Bin 56 -> 0 bytes LICENSE | 346 + Makefile | 70 + Makefile.in | 281 - PACKAGERS | 28 + README | 244 + acconfig.h | 344 +- aclfile | 102 - actionlist.h | 170 + actions.c | 1653 ++++ actions.h | 158 + amiga.c | 75 +- amiga.h | 79 +- blocklist | 1060 --- cgi.c | 2166 +++++ cgi.h | 245 + cgiedit.c | 4710 ++++++++++ cgiedit.h | 154 + cgisimple.c | 1416 +++ cgisimple.h | 149 + config | 1141 ++- config.guess | 1314 +++ config.h | 195 - config.h.in | 194 - config.sub | 1410 +++ configure.in | 1153 ++- contrib.sh | 4035 +++++++++ cookiefile | 67 - cygwin.h | 22 +- deanimate.c | 504 ++ deanimate.h | 102 + debian/changelog | 44 + debian/control | 23 + debian/copyright | 49 + debian/dirs | 4 + debian/doc-base.developer | 12 + debian/doc-base.faq | 11 + debian/doc-base.user | 10 + debian/docs | 8 + debian/init.d | 59 + debian/logrotate | 21 + debian/manpages | 1 + debian/postinst | 55 + debian/postrm | 44 + debian/rules | 119 + default.action | 547 ++ default.filter | 357 + doc/.gitignore | 2 + doc/changes.txt | 991 --- doc/gpl.html | 1123 ++- doc/ijbfaq.html | 3186 ------- doc/ijbman.html | 920 -- doc/obsolete/fb.gif | Bin 0 -> 76 bytes doc/obsolete/ijbfaq.html | 1999 +++++ doc/obsolete/ijbman.html | 708 ++ doc/obsolete/top.gif | Bin 0 -> 138 bytes doc/pcrs.3 | 479 ++ doc/pdf/.gitignore | 6 + doc/pdf/privoxy-developer-manual.pdf | Bin 0 -> 208098 bytes doc/pdf/privoxy-faq.pdf | Bin 0 -> 121402 bytes doc/pdf/privoxy-user-manual.pdf | Bin 0 -> 427682 bytes doc/source/.gitignore | 6 + doc/source/announce.sgml | 109 + doc/source/authors.sgml | 67 + doc/source/buildsource.sgml | 111 + doc/source/contacting.sgml | 119 + doc/source/copyright.sgml | 47 + doc/source/developer-manual.sgml | 2977 +++++++ doc/source/faq.sgml | 1779 ++++ doc/source/history.sgml | 72 + doc/source/ldp.dsl.in | 416 + doc/source/license.sgml | 71 + doc/source/newfeatures.sgml | 130 + doc/source/p-authors.sgml | 88 + doc/source/privoxy-man-page.sgml | 422 + doc/source/privoxy.sgml | 42 + doc/source/readme.sgml | 244 + doc/source/seealso.sgml | 107 + doc/source/supported.sgml | 45 + doc/source/user-manual.sgml | 7581 +++++++++++++++++ doc/source/webserver/index.sgml | 287 + doc/text/developer-manual.txt | 2143 +++++ doc/text/faq.txt | 1022 +++ doc/text/user-manual.txt | 4396 ++++++++++ .../.gitignore} | 0 doc/webserver/.htaccess | 26 + doc/webserver/README.txt | 9 + doc/webserver/actions/index.php | 303 + doc/webserver/actions/results/.htaccess | 11 + .../actions/results/actions-feedback.txt | 0 doc/webserver/actions/step2.php | 518 ++ doc/webserver/actions/step3.php | 345 + doc/webserver/actions/testdrive.action | 164 + doc/webserver/config/.htaccess | 34 + doc/webserver/config/index.php | 63 + doc/webserver/default_page.php | 69 + doc/webserver/developer-manual/coding.html | 2266 +++++ doc/webserver/developer-manual/contact.html | 309 + doc/webserver/developer-manual/copyright.html | 296 + doc/webserver/developer-manual/cvs.html | 301 + .../developer-manual/documentation.html | 838 ++ doc/webserver/developer-manual/index.html | 668 ++ .../developer-manual/introduction.html | 184 + .../developer-manual/newrelease.html | 1667 ++++ .../developer-manual/quickstart.html | 150 + doc/webserver/developer-manual/seealso.html | 385 + doc/webserver/developer-manual/testing.html | 249 + .../developer-manual/webserver-update.html | 239 + doc/webserver/faq/configuration.html | 808 ++ doc/webserver/faq/contact.html | 309 + doc/webserver/faq/copyright.html | 301 + doc/webserver/faq/general.html | 677 ++ doc/webserver/faq/index.html | 682 ++ doc/webserver/faq/installation.html | 375 + doc/webserver/faq/misc.html | 911 ++ doc/webserver/faq/trouble.html | 306 + doc/webserver/images/files-in-use.jpg | Bin 0 -> 16587 bytes doc/webserver/images/proxy_setup.jpg | Bin 0 -> 33275 bytes doc/webserver/index.html | 344 + doc/webserver/man-page/privoxy-man-page.html | 391 + doc/webserver/p_doc.css | 63 + doc/webserver/p_feedback.css | 9 + doc/webserver/p_web.css | 11 + doc/webserver/privoxy.css | 69 + doc/webserver/redirect.php | 112 + doc/webserver/robots.txt | 17 + doc/webserver/submit/confirmad.php | 58 + doc/webserver/submit/index.php | 207 + doc/webserver/team/01stefanw.jpg | Bin 0 -> 10327 bytes doc/webserver/team/01stefanw_t.jpg | Bin 0 -> 1896 bytes doc/webserver/team/02jon.jpg | Bin 0 -> 85888 bytes doc/webserver/team/02jon_t.jpg | Bin 0 -> 2039 bytes doc/webserver/team/03andreas.jpg | Bin 0 -> 42354 bytes doc/webserver/team/03andreas_t.jpg | Bin 0 -> 1894 bytes doc/webserver/team/04rodney.jpg | Bin 0 -> 57055 bytes doc/webserver/team/04rodney_t.jpg | Bin 0 -> 2138 bytes doc/webserver/team/05david.jpg | Bin 0 -> 62834 bytes doc/webserver/team/05david_t.jpg | Bin 0 -> 3950 bytes doc/webserver/team/05member.jpg | Bin 0 -> 932 bytes doc/webserver/team/05member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/06member.jpg | Bin 0 -> 932 bytes doc/webserver/team/06member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/07member.jpg | Bin 0 -> 932 bytes doc/webserver/team/07member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/08member.jpg | Bin 0 -> 932 bytes doc/webserver/team/08member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/09member.jpg | Bin 0 -> 932 bytes doc/webserver/team/09member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/10member.jpg | Bin 0 -> 932 bytes doc/webserver/team/10member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/11member.jpg | Bin 0 -> 932 bytes doc/webserver/team/11member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/12member.jpg | Bin 0 -> 932 bytes doc/webserver/team/12member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/13member.jpg | Bin 0 -> 932 bytes doc/webserver/team/13member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/14member.jpg | Bin 0 -> 932 bytes doc/webserver/team/14member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/15member.jpg | Bin 0 -> 932 bytes doc/webserver/team/15member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/16member.jpg | Bin 0 -> 932 bytes doc/webserver/team/16member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/17member.jpg | Bin 0 -> 932 bytes doc/webserver/team/17member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/18member.jpg | Bin 0 -> 932 bytes doc/webserver/team/18member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/19member.jpg | Bin 0 -> 932 bytes doc/webserver/team/19member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/20member.jpg | Bin 0 -> 932 bytes doc/webserver/team/20member_t.jpg | Bin 0 -> 1049 bytes doc/webserver/team/index.html | 83 + doc/webserver/user-manual/actions-file.html | 4959 +++++++++++ doc/webserver/user-manual/appendix.html | 1918 +++++ doc/webserver/user-manual/config.html | 2959 +++++++ doc/webserver/user-manual/configuration.html | 481 ++ doc/webserver/user-manual/contact.html | 313 + doc/webserver/user-manual/copyright.html | 354 + doc/webserver/user-manual/filter-file.html | 772 ++ doc/webserver/user-manual/index.html | 832 ++ doc/webserver/user-manual/installation.html | 544 ++ doc/webserver/user-manual/introduction.html | 270 + doc/webserver/user-manual/quickstart.html | 807 ++ doc/webserver/user-manual/seealso.html | 396 + doc/webserver/user-manual/startup.html | 505 ++ doc/webserver/user-manual/templates.html | 290 + doc/webserver/user-manual/upgradersnote.html | 288 + encode.c | 131 +- encode.h | 29 +- errlog.c | 690 +- errlog.h | 131 +- filters.c | 2180 ++--- filters.h | 256 +- forward | 97 - gateway.c | 247 +- gateway.h | 80 +- genclspec.sh | 52 + icons/denyrule.ico | Bin 318 -> 0 bytes icons/icon1.ico | Bin 318 -> 0 bytes icons/idle.ico | Bin 318 -> 318 bytes icons/os2.ico | Bin 0 -> 2968 bytes icons/os20.ico | Bin 0 -> 498 bytes icons/os21.ico | Bin 0 -> 498 bytes icons/os22.ico | Bin 0 -> 498 bytes icons/os23.ico | Bin 0 -> 498 bytes icons/os24.ico | Bin 0 -> 498 bytes icons/os25.ico | Bin 0 -> 498 bytes icons/os26.ico | Bin 0 -> 498 bytes icons/os27.ico | Bin 0 -> 498 bytes icons/os28.ico | Bin 0 -> 498 bytes icons/{junkbust.ico => privoxy.ico} | Bin 318 -> 318 bytes imagelist | 34 - install-sh | 251 + jbsockets.c | 484 +- jbsockets.h | 79 +- jcc.c | 2093 +++-- jcc.h | 92 +- junkbstr.txt | 206 - junkbuster.1 | 871 -- junkbuster.init | 149 - junkbuster.logrotate | 22 - junkbuster.monthly | 44 - junkbuster.weekly | 21 - killpopup.c | 266 +- killpopup.h | 62 +- list.c | 1064 +++ list.h | 164 + loadcfg.c | 1914 +++-- loadcfg.h | 207 +- loaders.c | 2544 ++---- loaders.h | 212 +- miscutil.c | 1555 +++- miscutil.h | 139 +- parsers.c | 1783 ++-- parsers.h | 207 +- pcre/.gitignore | 5 + pcre/Makefile.in | 219 + pcre/RunTest.in | 148 + pcre/chartables.c | 183 - pcre/config.guess | 1121 +++ pcre/config.h | 33 +- pcre/config.in | 33 + pcre/config.sub | 1232 +++ configure => pcre/configure | 710 +- pcre/configure.in | 85 + pcre/dftables.c | 148 + pcre/dll.mk | 60 + pcre/doc/ChangeLog | 655 ++ pcre/doc/NON-UNIX-USE | 50 + pcre/doc/Tech.Notes | 243 + pcre/doc/authors | 6 + pcre/doc/copying | 46 + pcre/doc/news | 54 + pcre/doc/pcre.3 | 1810 ++++ pcre/doc/pcre.html | 2397 ++++++ pcre/doc/pcre.txt | 2125 +++++ pcre/doc/pcregrep.1 | 76 + pcre/doc/pcregrep.html | 105 + pcre/doc/pcregrep.txt | 87 + pcre/doc/pcreposix.3 | 149 + pcre/doc/pcreposix.html | 191 + pcre/doc/pcreposix.txt | 159 + pcre/doc/pcretest.txt | 246 + pcre/doc/perltest.txt | 29 + pcre/doc/readme | 270 + pcre/get.c | 227 + pcre/install | 185 + pcre/install-sh | 251 + pcre/internal.h | 381 + pcre/licence | 46 + pcre/ltconfig | 3078 +++++++ pcre/ltmain.sh | 2 +- pcre/maketables.c | 132 + pcre/pcre-config | 59 + pcre/pcre-config.in | 59 + pcre/pcre.def | 19 + pcre/pcre.h | 2 +- pcre/pcre.in | 2 +- pcre/pcregrep.c | 228 + pcre/pcreposix.c | 2 +- pcre/pcreposix.h | 88 + pcre/pcretest.c | 1225 +++ pcre/study.c | 397 + pcre/vc_dftables.dsp | 296 + pcrs.c | 869 +- pcrs.h | 167 +- popup | 44 - privoxy-rh.spec | 955 +++ privoxy-suse.spec | 456 + privoxy.1 | 304 + privoxy.init | 259 + privoxy.init.suse | 117 + privoxy.logrotate | 96 + privoxy.monthly | 84 + privoxy.weekly | 67 + project.h | 1472 +++- re_filterfile | 62 - showargs.c | 467 - showargs.h | 60 - ssplit.c | 235 +- ssplit.h | 30 +- standard.action | 138 + templates/blocked | 270 + templates/cgi-error-404 | 154 + templates/cgi-error-bad-param | 161 + templates/cgi-error-disabled | 148 + templates/cgi-error-file | 138 + templates/cgi-error-file-read-only | 145 + templates/cgi-error-modified | 162 + templates/cgi-error-parse | 175 + templates/cgi-style.css | 137 + templates/connect-failed | 159 + templates/default | 136 + templates/edit-actions-add-url-form | 202 + templates/edit-actions-for-url | 879 ++ templates/edit-actions-for-url-filter | 7 + templates/edit-actions-list | 363 + templates/edit-actions-list-button | 45 + templates/edit-actions-list-section | 114 + templates/edit-actions-list-url | 84 + templates/edit-actions-remove-url-form | 187 + templates/edit-actions-url-form | 205 + templates/mod-local-help | 12 + templates/mod-support-and-service | 22 + templates/mod-title | 4 + templates/mod-unstable-warning | 6 + templates/no-such-domain | 160 + templates/show-request | 158 + templates/show-status | 340 + templates/show-status-file | 150 + templates/show-url-info | 188 + templates/show-version | 163 + templates/toggle | 185 + templates/toggle-mini | 90 + templates/untrusted | 194 + testdrive.status | 30 + trust | 47 +- urlmatch.c | 809 ++ urlmatch.h | 97 + user.action | 32 + vc_config_pthreads.h | 479 ++ vc_config_winthreads.h | 478 ++ vc_console.dsp | 413 + vc_junkbuster.dsw | 29 - vc_junkbuster.dsp => vc_privoxy.dsp | 171 +- vc_privoxy.dsw | 59 + w32.aps | Bin 43740 -> 0 bytes w32.rc | 578 +- w32log.c | 321 +- w32log.h | 79 +- w32res.h | 160 +- w32rulesdlg.c | 532 -- w32rulesdlg.h | 63 - w32taskbar.c | 40 +- w32taskbar.h | 24 +- win32.c | 156 +- win32.h | 32 +- 360 files changed, 124763 insertions(+), 17872 deletions(-) create mode 100644 AUTHORS create mode 100644 ChangeLog create mode 100644 GNUmakefile.in delete mode 100644 Junkbuster Status.URL create mode 100644 LICENSE create mode 100644 Makefile delete mode 100644 Makefile.in create mode 100644 PACKAGERS create mode 100644 README delete mode 100644 aclfile create mode 100644 actionlist.h create mode 100644 actions.c create mode 100644 actions.h delete mode 100644 blocklist create mode 100644 cgi.c create mode 100644 cgi.h create mode 100644 cgiedit.c create mode 100644 cgiedit.h create mode 100644 cgisimple.c create mode 100644 cgisimple.h create mode 100755 config.guess delete mode 100644 config.h delete mode 100644 config.h.in create mode 100755 config.sub create mode 100755 contrib.sh delete mode 100644 cookiefile create mode 100644 deanimate.c create mode 100644 deanimate.h create mode 100644 debian/changelog create mode 100644 debian/control create mode 100644 debian/copyright create mode 100644 debian/dirs create mode 100644 debian/doc-base.developer create mode 100644 debian/doc-base.faq create mode 100644 debian/doc-base.user create mode 100644 debian/docs create mode 100644 debian/init.d create mode 100644 debian/logrotate create mode 100644 debian/manpages create mode 100644 debian/postinst create mode 100644 debian/postrm create mode 100755 debian/rules create mode 100644 default.action create mode 100644 default.filter create mode 100644 doc/.gitignore delete mode 100644 doc/changes.txt delete mode 100644 doc/ijbfaq.html delete mode 100644 doc/ijbman.html create mode 100755 doc/obsolete/fb.gif create mode 100644 doc/obsolete/ijbfaq.html create mode 100644 doc/obsolete/ijbman.html create mode 100755 doc/obsolete/top.gif create mode 100644 doc/pcrs.3 create mode 100644 doc/pdf/.gitignore create mode 100644 doc/pdf/privoxy-developer-manual.pdf create mode 100644 doc/pdf/privoxy-faq.pdf create mode 100644 doc/pdf/privoxy-user-manual.pdf create mode 100644 doc/source/.gitignore create mode 100644 doc/source/announce.sgml create mode 100644 doc/source/authors.sgml create mode 100644 doc/source/buildsource.sgml create mode 100644 doc/source/contacting.sgml create mode 100644 doc/source/copyright.sgml create mode 100644 doc/source/developer-manual.sgml create mode 100644 doc/source/faq.sgml create mode 100644 doc/source/history.sgml create mode 100644 doc/source/ldp.dsl.in create mode 100644 doc/source/license.sgml create mode 100644 doc/source/newfeatures.sgml create mode 100644 doc/source/p-authors.sgml create mode 100644 doc/source/privoxy-man-page.sgml create mode 100644 doc/source/privoxy.sgml create mode 100644 doc/source/readme.sgml create mode 100644 doc/source/seealso.sgml create mode 100644 doc/source/supported.sgml create mode 100644 doc/source/user-manual.sgml create mode 100644 doc/source/webserver/index.sgml create mode 100644 doc/text/developer-manual.txt create mode 100644 doc/text/faq.txt create mode 100644 doc/text/user-manual.txt rename doc/{USER_DOC_IS_WIDELY_OBSOLETED => webserver/.gitignore} (100%) create mode 100644 doc/webserver/.htaccess create mode 100644 doc/webserver/README.txt create mode 100755 doc/webserver/actions/index.php create mode 100644 doc/webserver/actions/results/.htaccess create mode 100644 doc/webserver/actions/results/actions-feedback.txt create mode 100644 doc/webserver/actions/step2.php create mode 100644 doc/webserver/actions/step3.php create mode 100644 doc/webserver/actions/testdrive.action create mode 100644 doc/webserver/config/.htaccess create mode 100644 doc/webserver/config/index.php create mode 100644 doc/webserver/default_page.php create mode 100644 doc/webserver/developer-manual/coding.html create mode 100644 doc/webserver/developer-manual/contact.html create mode 100644 doc/webserver/developer-manual/copyright.html create mode 100644 doc/webserver/developer-manual/cvs.html create mode 100644 doc/webserver/developer-manual/documentation.html create mode 100644 doc/webserver/developer-manual/index.html create mode 100644 doc/webserver/developer-manual/introduction.html create mode 100644 doc/webserver/developer-manual/newrelease.html create mode 100644 doc/webserver/developer-manual/quickstart.html create mode 100644 doc/webserver/developer-manual/seealso.html create mode 100644 doc/webserver/developer-manual/testing.html create mode 100644 doc/webserver/developer-manual/webserver-update.html create mode 100644 doc/webserver/faq/configuration.html create mode 100644 doc/webserver/faq/contact.html create mode 100644 doc/webserver/faq/copyright.html create mode 100644 doc/webserver/faq/general.html create mode 100644 doc/webserver/faq/index.html create mode 100644 doc/webserver/faq/installation.html create mode 100644 doc/webserver/faq/misc.html create mode 100644 doc/webserver/faq/trouble.html create mode 100644 doc/webserver/images/files-in-use.jpg create mode 100644 doc/webserver/images/proxy_setup.jpg create mode 100644 doc/webserver/index.html create mode 100644 doc/webserver/man-page/privoxy-man-page.html create mode 100644 doc/webserver/p_doc.css create mode 100644 doc/webserver/p_feedback.css create mode 100644 doc/webserver/p_web.css create mode 100644 doc/webserver/privoxy.css create mode 100755 doc/webserver/redirect.php create mode 100644 doc/webserver/robots.txt create mode 100644 doc/webserver/submit/confirmad.php create mode 100644 doc/webserver/submit/index.php create mode 100644 doc/webserver/team/01stefanw.jpg create mode 100644 doc/webserver/team/01stefanw_t.jpg create mode 100644 doc/webserver/team/02jon.jpg create mode 100644 doc/webserver/team/02jon_t.jpg create mode 100644 doc/webserver/team/03andreas.jpg create mode 100644 doc/webserver/team/03andreas_t.jpg create mode 100644 doc/webserver/team/04rodney.jpg create mode 100644 doc/webserver/team/04rodney_t.jpg create mode 100644 doc/webserver/team/05david.jpg create mode 100644 doc/webserver/team/05david_t.jpg create mode 100644 doc/webserver/team/05member.jpg create mode 100644 doc/webserver/team/05member_t.jpg create mode 100644 doc/webserver/team/06member.jpg create mode 100644 doc/webserver/team/06member_t.jpg create mode 100644 doc/webserver/team/07member.jpg create mode 100644 doc/webserver/team/07member_t.jpg create mode 100644 doc/webserver/team/08member.jpg create mode 100644 doc/webserver/team/08member_t.jpg create mode 100644 doc/webserver/team/09member.jpg create mode 100644 doc/webserver/team/09member_t.jpg create mode 100644 doc/webserver/team/10member.jpg create mode 100644 doc/webserver/team/10member_t.jpg create mode 100644 doc/webserver/team/11member.jpg create mode 100644 doc/webserver/team/11member_t.jpg create mode 100644 doc/webserver/team/12member.jpg create mode 100644 doc/webserver/team/12member_t.jpg create mode 100644 doc/webserver/team/13member.jpg create mode 100644 doc/webserver/team/13member_t.jpg create mode 100644 doc/webserver/team/14member.jpg create mode 100644 doc/webserver/team/14member_t.jpg create mode 100644 doc/webserver/team/15member.jpg create mode 100644 doc/webserver/team/15member_t.jpg create mode 100644 doc/webserver/team/16member.jpg create mode 100644 doc/webserver/team/16member_t.jpg create mode 100644 doc/webserver/team/17member.jpg create mode 100644 doc/webserver/team/17member_t.jpg create mode 100644 doc/webserver/team/18member.jpg create mode 100644 doc/webserver/team/18member_t.jpg create mode 100644 doc/webserver/team/19member.jpg create mode 100644 doc/webserver/team/19member_t.jpg create mode 100644 doc/webserver/team/20member.jpg create mode 100644 doc/webserver/team/20member_t.jpg create mode 100644 doc/webserver/team/index.html create mode 100644 doc/webserver/user-manual/actions-file.html create mode 100644 doc/webserver/user-manual/appendix.html create mode 100644 doc/webserver/user-manual/config.html create mode 100644 doc/webserver/user-manual/configuration.html create mode 100644 doc/webserver/user-manual/contact.html create mode 100644 doc/webserver/user-manual/copyright.html create mode 100644 doc/webserver/user-manual/filter-file.html create mode 100644 doc/webserver/user-manual/index.html create mode 100644 doc/webserver/user-manual/installation.html create mode 100644 doc/webserver/user-manual/introduction.html create mode 100644 doc/webserver/user-manual/quickstart.html create mode 100644 doc/webserver/user-manual/seealso.html create mode 100644 doc/webserver/user-manual/startup.html create mode 100644 doc/webserver/user-manual/templates.html create mode 100644 doc/webserver/user-manual/upgradersnote.html delete mode 100644 forward create mode 100755 genclspec.sh delete mode 100644 icons/denyrule.ico delete mode 100644 icons/icon1.ico create mode 100644 icons/os2.ico create mode 100644 icons/os20.ico create mode 100644 icons/os21.ico create mode 100644 icons/os22.ico create mode 100644 icons/os23.ico create mode 100644 icons/os24.ico create mode 100644 icons/os25.ico create mode 100644 icons/os26.ico create mode 100644 icons/os27.ico create mode 100644 icons/os28.ico rename icons/{junkbust.ico => privoxy.ico} (59%) delete mode 100644 imagelist create mode 100755 install-sh delete mode 100644 junkbstr.txt delete mode 100644 junkbuster.1 delete mode 100644 junkbuster.init delete mode 100644 junkbuster.logrotate delete mode 100644 junkbuster.monthly delete mode 100644 junkbuster.weekly create mode 100644 list.c create mode 100644 list.h create mode 100644 pcre/.gitignore create mode 100644 pcre/Makefile.in create mode 100644 pcre/RunTest.in delete mode 100644 pcre/chartables.c create mode 100644 pcre/config.guess create mode 100644 pcre/config.in create mode 100644 pcre/config.sub rename configure => pcre/configure (74%) mode change 100755 => 100644 create mode 100644 pcre/configure.in create mode 100644 pcre/dftables.c create mode 100644 pcre/dll.mk create mode 100644 pcre/doc/ChangeLog create mode 100644 pcre/doc/NON-UNIX-USE create mode 100644 pcre/doc/Tech.Notes create mode 100644 pcre/doc/authors create mode 100644 pcre/doc/copying create mode 100644 pcre/doc/news create mode 100644 pcre/doc/pcre.3 create mode 100644 pcre/doc/pcre.html create mode 100644 pcre/doc/pcre.txt create mode 100644 pcre/doc/pcregrep.1 create mode 100644 pcre/doc/pcregrep.html create mode 100644 pcre/doc/pcregrep.txt create mode 100644 pcre/doc/pcreposix.3 create mode 100644 pcre/doc/pcreposix.html create mode 100644 pcre/doc/pcreposix.txt create mode 100644 pcre/doc/pcretest.txt create mode 100644 pcre/doc/perltest.txt create mode 100644 pcre/doc/readme create mode 100644 pcre/get.c create mode 100644 pcre/install create mode 100644 pcre/install-sh create mode 100644 pcre/internal.h create mode 100644 pcre/licence create mode 100644 pcre/ltconfig create mode 100644 pcre/maketables.c create mode 100644 pcre/pcre-config create mode 100644 pcre/pcre-config.in create mode 100644 pcre/pcre.def create mode 100644 pcre/pcregrep.c create mode 100644 pcre/pcreposix.h create mode 100644 pcre/pcretest.c create mode 100644 pcre/study.c create mode 100755 pcre/vc_dftables.dsp delete mode 100644 popup create mode 100644 privoxy-rh.spec create mode 100644 privoxy-suse.spec create mode 100644 privoxy.1 create mode 100644 privoxy.init create mode 100644 privoxy.init.suse create mode 100644 privoxy.logrotate create mode 100644 privoxy.monthly create mode 100644 privoxy.weekly delete mode 100644 re_filterfile delete mode 100644 showargs.c delete mode 100644 showargs.h create mode 100644 standard.action create mode 100644 templates/blocked create mode 100644 templates/cgi-error-404 create mode 100644 templates/cgi-error-bad-param create mode 100644 templates/cgi-error-disabled create mode 100644 templates/cgi-error-file create mode 100644 templates/cgi-error-file-read-only create mode 100644 templates/cgi-error-modified create mode 100644 templates/cgi-error-parse create mode 100644 templates/cgi-style.css create mode 100644 templates/connect-failed create mode 100644 templates/default create mode 100644 templates/edit-actions-add-url-form create mode 100644 templates/edit-actions-for-url create mode 100644 templates/edit-actions-for-url-filter create mode 100644 templates/edit-actions-list create mode 100644 templates/edit-actions-list-button create mode 100644 templates/edit-actions-list-section create mode 100644 templates/edit-actions-list-url create mode 100644 templates/edit-actions-remove-url-form create mode 100644 templates/edit-actions-url-form create mode 100644 templates/mod-local-help create mode 100644 templates/mod-support-and-service create mode 100644 templates/mod-title create mode 100644 templates/mod-unstable-warning create mode 100644 templates/no-such-domain create mode 100644 templates/show-request create mode 100644 templates/show-status create mode 100644 templates/show-status-file create mode 100644 templates/show-url-info create mode 100644 templates/show-version create mode 100644 templates/toggle create mode 100644 templates/toggle-mini create mode 100644 templates/untrusted create mode 100644 testdrive.status create mode 100644 urlmatch.c create mode 100644 urlmatch.h create mode 100644 user.action create mode 100644 vc_config_pthreads.h create mode 100644 vc_config_winthreads.h create mode 100644 vc_console.dsp delete mode 100644 vc_junkbuster.dsw rename vc_junkbuster.dsp => vc_privoxy.dsp (57%) create mode 100644 vc_privoxy.dsw delete mode 100644 w32.aps delete mode 100644 w32rulesdlg.c delete mode 100644 w32rulesdlg.h diff --git a/.gitignore b/.gitignore index 40caffa8..d81f13ac 100644 --- a/.gitignore +++ b/.gitignore @@ -26,3 +26,29 @@ _$* *.ln core # CVS default ignores end +*.txt +GNUmakefile +Makefile +configure +config.cache +config.h +config.h.in +config.log +config.status +jarfile +logfile +privoxy +privoxy.exe +privoxy-cl.spec +vc_debug +vc_debug_winthr +vc_console.ncb +vc_console.opt +vc_console.plg +vc_privoxy.ncb +vc_privoxy.opt +vc_privoxy.plg +vc_release +vc_release_winthr +w32.aps +w32.res diff --git a/AUTHORS b/AUTHORS new file mode 100644 index 00000000..f6700066 --- /dev/null +++ b/AUTHORS @@ -0,0 +1,49 @@ + Authors of Privoxy v2.9.x and 3.x +=========================================================================== + +Current Project Developers: + + Jon Foster + Andreas Oesterhelt + Stefan Waldherr + + Thomas Steudten + Rodney Stromlund + +Current Project Contributors: + + Rodrigo Barbosa (RPM specfiles) + Hal Burgiss (docs) + Alexander Lazic + Gábor Lipták + Guy + Haroon Rafique + David Schmidt (OS/2, Mac OSX ports) + Joerg Strohmayer + Sarantis Paskalis + +Originally developed by: + + Junkbusters Corp. + Anonymous Coders + +Thanks to the many people who have tested Privoxy, reported bugs, or made +suggestions. These include (in alphabetical order): + + Ken Arromdee + Reiner Buehl + Andrew J. Caines + Clifford Caoile + Peter E + Aaron Hamid + Magnus Holmgren + Paul Lieverse + Roberto Ragusa + Bart Schelstraete + Darren Wiebe + +If we've missed you off this list, please let us know! + + Privoxy team. http://www.privoxy.org/ + + diff --git a/ChangeLog b/ChangeLog new file mode 100644 index 00000000..54d4e7dd --- /dev/null +++ b/ChangeLog @@ -0,0 +1,227 @@ +-------------------------------------------------------------------- +ChangeLog for Privoxy +-------------------------------------------------------------------- +*** Version 2.9.15 (current CVS) *** + +- Impose buffer limits while reading client and server headers. +- Better memory and CPU optimization. +- Add Conectiva Linux package. +- Actions files are changed to: default.action, standard.action, and + user.action. user.action is for personal/local configuration. +- Major overhaul of the CGI editor (ongoing). +- Multiple actions files can now be specified in config. +- The usual many small and miscellaneous fixes. + +*** Version 2.9.14 Beta *** + +- Fix Solaris compile problem (gateway.h and filters.h) +- Makefile fixes for Solaris, FreeBSD (?) +- Fix build failure where certain features were disabled. +- 'blocked-compact' template is removed. Various CGI improvements, + including an adaptive 'blocked' template. +- Various tweaks for actions file to get ready for stable 3.0 +- Included a 'Bookmarklet' and PHP scripts for reporting actions file + problems via web interface at privoxy.org. Accessed via internal CGIs. +- Include cgi-style.css for templates. +- #include mechansim for common text in templates +- Various other minor fixes. + +*** Version 2.9.13 Beta *** + +- *NEWS*: The project has been renamed to Privoxy! The new name is + reflected throughout (file locations, etc). +- ijb.action is now default.action. re_filterfile is now + default.filter. +- http://i.j.b/ is now http://p.p/ +- The 'logo' option for replacing ad iamges is removed now. 'Pattern' + (checkerboard) is now the default. +- RPM spec file make over. + + +*** Version 2.9.12 Beta *** + +- **READ**: The default listening PORT is NOW 8118!!! Changed from + 8000 due to conflict with NAS (Network Audio Server, whatever that + is.) +- More CGI actions editor fixes and improvements. +- Win32 command line fix ups. +- re_filterfile now has modular sections that can be activated on a + per site basis. Some new goodies there too. +- +filter now takes arguments to match FILTER sections in re_filterfile + for even more flexibility. +- Added a new image blocker option: +image-blocker{pattern}, which + displays a checkerboard patthern and scales better than the logo. +- PNG images will be used in place of GIF for JB built-in images + if configured with --enable-no-gif. +- Clean up compiler warnings (mostly). +- Improved handling of failed DNS lookups & diagnostics for failed bind + to listen socket +- Made --no-daemon mode log to tty instead of logfile. +- Various spec file and init script cleanups and improvements (Redhat and + SuSE). +- CGI Editor works on OS/2 now. +- Fix restart failure where sockets were in TIME_WAIT. +- Fixes for actions cgi editor, make sure we have right file. +- A --pidfile command line option now, in addition to --help, + --version, --no-daemon, --user and configfile. --no-daemon replaces + the former -d option and _DEBUG define. --user will drop privileges + to the specified user. +- Signal handling cleanups (*nix). +- CGI actions editor improvements and fixes. +- Error handling improvements, especially out of memory. +- Default re_filterfile fix that caused spurious IJB logos + (instead of 'blank'). +- configure.in threading fixes for Solaris. +- Various other minor fixes. + + +*** Version 2.9.11 Beta Changes *** + +- Add "session" cookie concept where cookies exist for the life +of that browser session only (ie never goes to disk). +- Checks for correct header length. +- Fix user:pass@host.domain.com auth bug. +- Better signal handling on *nix. +- Fix CFLAGS hard-coded in configure.in +- Fix threading bug re: gethostbyname() that caused random +URLs to fail in some cases. + + +*** Version 2.9.11 Alpha Changes *** + +- A web-based editor for the actions file is included (go to http://i.j.b/). +- Web-based toggle IJB on/off support. +- Cookie handling has changed - the new +no-cookies-keep feature is now the +default. +- actionsfile is renamed to ijb.action. +- junkbstr.txt is now config.txt on Win32. +- Support for running IJB as a UNIX daemon process has improved. +- Unix daemon now returns error code on failed start. +- Timestamps in logfile and jarfile now. +- Fix for the Netscape bug reintroduced in 2.9.9. +- make should now abort if gmake (GNU make) not present. +- Many other minor bugfixes +- Start a ChangeLog :) + + + +*** Version 2.9.3 pre-Alpha Changes *** + +- Amiga support (completely untested by me - I don't have an Amiga) +- "tinygif 3" support (redirects blocked images to a specified URL, so +the browser doesn't have to load and cache many copies of the same +image). +- one case where there were both local and global "referrer" variables +(yuck!) clarified by renaming the local one to "refer". +- Fixed some places where close() was used instead of close_socket(). +Thanks to Jörg Strohmayer (joergs at users.sourceforge.net) for these. +- Temporary hack to get FORCE_LOAD to work with IE. I just lowercased the +FORCE_LOAD_PREFIX. Needs fixing properly. +- Most URLs hardcoded into Junkbuster were changed to go through a script +e.g. http://ijbswa.sourceforge.net/redirect.php?v=2.9.3&to=faq +The only other URLs left are the GNU GPL: + http://www.fsf.org/copyleft/gpl.html +and the home page: + http://ijbswa.sourceforge.net/ +... and various URLs which will be intercepted by Junkbuster anyway. +TODO: Still need to do something with the URLs in Junkbuster Corp's +copyright/trademark notice on the bottom of the show-proxy-args page. +- PCRE or GNU Regex is now a #define option. + + +*** Version 2.9.2 pre-Alpha Changes *** + +- Andreas applied the latest version of the FORCE patch. + + +*** Version 2.9.1 pre-Alpha Changes *** + +- in parsers.c, fixed two #ifdef FORCE to #ifdef FORCE_LOAD +(BTW: I think FORCE is precise enough, since loading remote +data is the whole purpose of a proxy..) +- Set the FORCE_PREFIX (back) to 'IJB-FORCE-LOAD-'. While 'noijb.' +is more elegant and looks like a hostname in the URL, it doesn't +make clear to the inexperienced user that the proxy is bypassed. It +also has a higher name collision risk. +- Filled in the function header templates for my functions in +parsers.c (again). They obviously got lost in our current +patch war ;-) +- Cut the credit for the §-referrer-option from the config file, +that Stefan had placed there. +- Improved the re_filterfile + + +*** Version 2.9.0 pre-Alpha Changes *** + +- Now use PCRE, not GNU REGEX. I have not yet had chance to check the +syntax of the block/image/cookie file to ensure that they match what +is expected - however they seem to work. +- Replaced "configure" script with one generated by "autoconf". Also +use a header "config.h" (was ijbconfig.h in my previous release) for +the #defines. "config.h" is now generated with "autoheader" from +"acconfig.h" and "configure.in". (Note that to install you do not +need autoconf or autoheader - just run "./configure".) +To see command-line options, run "./configure --help". +This is my first ever autoconf script, so it has some rough edges +(how PCRE is handled is the roughest). +- Error logging code replaced with new module errlog.c, based on the +one from JunkbusterMT (but with the threading code removed). +- Most of Rodney's 0.21 and 0.21A patches applied. (Marked *). I did not +apply all of these, since I had already independently done conditional +popup file, conditional image file, and integration of popup code. +- ACL, Jar and trust files conditionally compiled. +- New source file headers. +- Various cosmetic changes. (But I have not consistently ordered the +config files - I think that's worthwhile, but it's 1am and I want to +get this released!) +- RCS tags on .h files. +- RCS tags are const char[] rather than const char *. (Saves 4 bytes +per tag ;-) +- VC++ project files renamed to vc_junkbuster.*. +- show-proxy-args now shows status of all conditionals, not just REGEX +- Various functions moved around. Most notably all the system-specific +sockets code which was spread between jcc.c, bind.c, and connect.c, +has been moved to "jbsockets.c". The non-system-specific code from +connect.c and socks4.c has been movet to "gateway.c". Also, the +config file loader and the global variables it writes to have been +moved to "loadcfg.c". (Maybe this should go into loaders.c?) +And candidate for the "worst filename ever" award is "miscutil.c", +which contains, well, miscellaneous utility functions like zalloc. +(Suggestions for a better name for this file are welcome!) +- Loaders now use a common function to read a line and skip comments, +and this function also stores the proxy_args. +- Added ./junkbuster --help (Not for Win32 GUI) +- Added ./junkbuster --version (Not for Win32 GUI) +- Win32 resources are now all marked as "U.S. English", rather than +being a mix of "U.S. English", "U.K. English" and "Irish English". +- Version number changes to 2.9.0 + + + +---------------------------------------------------------------------- +Copyright : Written by and Copyright (C) 2001 the SourceForge + Privoxy team. http://www.privoxy.org/ + + Based on the Internet Junkbuster originally written + by and Copyright (C) 1997 Anonymous Coders and + Junkbusters Corporation. http://www.junkbusters.com + + This program is free software; you can redistribute it + and/or modify it under the terms of the GNU General + Public License as published by the Free Software + Foundation; either version 2 of the License, or (at + your option) any later version. + + This program is distributed in the hope that it will + be useful, but WITHOUT ANY WARRANTY; without even the + implied warranty of MERCHANTABILITY or FITNESS FOR A + PARTICULAR PURPOSE. See the GNU General Public + License for more details. + + The GNU General Public License should be included with + this file. If not, you can view it at + http://www.gnu.org/copyleft/gpl.html + or write to the Free Software Foundation, Inc., 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA. + + diff --git a/GNUmakefile.in b/GNUmakefile.in new file mode 100644 index 00000000..2429ec18 --- /dev/null +++ b/GNUmakefile.in @@ -0,0 +1,1408 @@ +# Note: Makefile is built automatically from Makefile.in +# +# $Id: GNUmakefile.in,v 1.103 2002/05/23 23:19:00 oes Exp $ +# +# Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# + +############################################################################# +# Set make command correctly +############################################################################# +@SET_MAKE@ + +############################################################################# +# Version number (for RPM) +############################################################################# + +VERSION_MAJOR = @VERSION_MAJOR@ +VERSION_MINOR = @VERSION_MINOR@ +VERSION_POINT = @VERSION_POINT@ +CODE_STATUS = @CODE_STATUS@ +VERSION = $(VERSION_MAJOR).$(VERSION_MINOR).$(VERSION_POINT) +RPM_VERSION = $(VERSION) + + +############################################################################# +# Directories for "make install" +############################################################################# + +DEST = @prefix@ +CONFDEST = @prefix@@sysconfdir@ +SBIN_DEST = @prefix@@sbindir@ +MAN_DEST = @prefix@@mandir@ +DOK_WEB_USEM=doc/webserver/user-manual + +############################################################################# +# Build tools +############################################################################# + +PROGRAM = privoxy@EXEEXT@ +CC = @CC@ +ECHO = echo +GZIP_PROG = gzip +#INSTALL = cp -f +INSTALL = @INSTALL@ +INSTALL_P = -m 0750 -g @GROUP@ -o @USER@ -b +INSTALL_T = -m 0640 -g @GROUP@ -o @USER@ -b +INSTALL_D = -m 0750 -g @GROUP@ -o @USER@ -d +LD = @CC@ +RM = rm -f +STRIP_PROG = strip +SED = sed +CAT = cat +RPM = rpm +MV = mv +TAR = tar +LN = ln +WDUMP = @WDUMP@ -dump +JADECAT = @JADECAT@ +JADEBIN = @JADEBIN@ +DB = $(JADEBIN) $(JADECAT) -ihtml -t sgml -D.. -d ldp.dsl\#html +DB2HTML = @DB2HTML@ +MAN2HTML = @MAN2HTML@ +G2H_CMD = groff -mandoc -Thtml +TARGET_OS = @host@ +PERL = perl +DOC_DIR = doc/source +DOC_TMP = $(DOC_DIR)/tmp + + +#User Group paras +USER = @USER@ +GROUP = @GROUP@ + +# Program to do LF->CRLF +# +# The sed version should be the most portable, but it doesn't for for me, +# the other two do. FIXME. +# - Jon +#DOSFILTER = $(SED) -e $$'s,$$,\r,' +#DOSFILTER = gawk -v ORS='\r\n' '{print $0;}' +DOSFILTER = $(PERL) -p -e 's/\n/\r\n/' + +############################################################################# +# Setup for make distribution rh and suse for now +############################################################################# + +TAR_ARCH = /tmp/privoxy-$(RPM_VERSION).tar.gz +RPM_BASE = @RPM_BASE@ + +############################################################################# +# We include these files in our distributions +############################################################################# +# take care that no CVS .cvsignore or other crappy files +# are included here +# and escape every '#' in the find. doh. +CONFIG_FILES = config trust \ + default.action \ + basic.action intermediate.action advanced.action \ + default.filter \ + `find templates/ -type f | grep -v "CVS" | grep -v "\.\#" | grep -v ".*~" | grep -v ".cvsignore" | grep -v "TAGS"` + +DOC_FILES = AUTHORS LICENSE README ChangeLog \ + `find doc/text/ -type f | grep -v "CVS" | grep -v "\.\#" | grep -v ".*~" | grep -v ".cvsignore" | grep -v "TAGS"` \ + `find doc/webserver/ -name "*.html"` \ + `find doc/webserver/ -name "*.css"` \ + privoxy.1 + +############################################################################# +# Filenames and libraries +############################################################################# + +C_SRC = actions.c cgi.c cgiedit.c cgisimple.c deanimate.c encode.c \ + errlog.c filters.c gateway.c jbsockets.c jcc.c killpopup.c \ + list.c loadcfg.c loaders.c miscutil.c parsers.c ssplit.c \ + urlmatch.c + +C_OBJS = $(C_SRC:.c=.@OBJEXT@) +C_HDRS = $(C_SRC:.c=.h) project.h actionlist.h + +W32_SRC = @WIN_ONLY@w32log.c w32taskbar.c win32.c +W32_FILES = @WIN_ONLY@w32.res +W32_OBJS = @WIN_ONLY@$(W32_SRC:.c=.@OBJEXT@) $(W32_FILES) +W32_HDRS = @WIN_ONLY@w32log.h w32taskbar.h win32.h w32res.h +W32_LIB = @WIN_ONLY@-lwsock32 -lcomctl32 +W32_INIS = @WIN_ONLY@config.txt trust.txt + +PCRS_SRC = @STATIC_PCRS_ONLY@pcrs.c +PCRS_OBJS = @STATIC_PCRS_ONLY@$(PCRS_SRC:.c=.@OBJEXT@) +PCRS_HDRS = @STATIC_PCRS_ONLY@$(PCRS_SRC:.c=.h) + +PCRE_SRC = @STATIC_PCRE_ONLY@pcre/get.c pcre/maketables.c pcre/study.c pcre/pcre.c +PCRE_OBJS = @STATIC_PCRE_ONLY@$(PCRE_SRC:.c=.@OBJEXT@) +PCRE_HDRS = @STATIC_PCRE_ONLY@pcre/config.h pcre/chartables.c pcre/internal.h pcre/pcre.h + +# No REGEX (maybe because dynamically linked pcreposix): +REGEX_SRC = +@STATIC_PCRE_ONLY@REGEX_SRC = pcre/pcreposix.c + +REGEX_OBJS = $(REGEX_SRC:.c=.@OBJEXT@) +REGEX_HDRS = $(REGEX_SRC:.c=.h) + +# Dependencies introduced by #include "project.h". +PROJECT_H_DEPS = project.h $(REGEX_HDRS) $(PCRS_HDRS) @STATIC_PCRE_ONLY@pcre/pcre.h + +# Socket libraries for platforms that need them explicitly defined +SOCKET_LIB = @SOCKET_LIB@ + +# PThreads library, if needed. +PTHREAD_LIB = @PTHREAD_ONLY@@PTHREAD_LIB@ + +SRCS = $(C_SRC) $(W32_SRC) $(PCRS_SRC) $(PCRE_SRC) $(REGEX_SRC) +OBJS = $(C_OBJS) $(W32_OBJS) $(PCRS_OBJS) $(PCRE_OBJS) $(REGEX_OBJS) +HDRS = $(C_HDRS) $(W32_HDRS) $(PCRS_HDRS) $(PCRE_OBJS) $(REGEX_HDRS) +LIBS = @LIBS@ $(W32_LIB) $(SOCKET_LIB) $(PTHREAD_LIB) + + +############################################################################# +# Compiler switches +############################################################################# + +# The flag "-mno-win32" can be used by Cygwin to emulate a un?x type build. +# The flag "-mwindows -mno-cygwin" will cause Cygwin to use MingW32 for a +# Win32 GUI build. +# The flag "-pthread" is required if using Pthreads under Linux (and +# possibly other OSs). +SPECIAL_CFLAGS = @SPECIAL_CFLAGS@ + +# Add your flags here +OTHER_CFLAGS = + +CFLAGS = @CFLAGS@ @CPPFLAGS@ $(OTHER_CFLAGS) $(SPECIAL_CFLAGS) -Wall \ + @STATIC_PCRE_ONLY@ -Ipcre + +LDFLAGS = $(DEBUG_CFLAGS) $(SPECIAL_CFLAGS) + + +############################################################################# +# Build section. +# +# There should NOT be any targets above this line. +############################################################################# +all: $(PROGRAM) + + +############################################################################# +# Phony targets +############################################################################# +.PHONY: all inifiles redhat-dist redhat-upload solaris-dist suse-dist \ +suse-upload win-dist tarball-dist dok redhat-dok webserver clean clobber tags \ +install conectiva-spec conectiva-dist conectiva-upload + + +############################################################################# +# Define this explicitly because Solaris is broken! +############################################################################# +%.o: %.c + $(CC) -c $(CFLAGS) $(CPPFLAGS) $< -o $@ + + +############################################################################# +# Win32 config files +############################################################################# + +inifiles: $(W32_INIS) + +config.txt: config + $(SED) -e 's!\trustfile trust!trustfile trust.txt!' \ + -e 's!\jarfile jarfile!jarfile jar.log!' \ + -e 's!\logfile logfile!logfile privoxy.log!' \ + -e 's!#Win32-only: !!' \ + < $< | \ + $(DOSFILTER) > $@ + # LF to CRLF in default.action + $(DOSFILTER) default.action.txt && mv default.action.txt default.action + # LF to CRLF in default.filter + $(DOSFILTER) default.filter.txt && mv default.filter.txt default.filter + +trust.txt: trust + $(DOSFILTER) < $< > $@ + +re_filterfile.txt: re_filterfile + $(DOSFILTER) < $< > $@ + + +############################################################################# +# Pre-dist check: +############################################################################# +dist-check: + @if [ -d CVS ]; then \ + $(ECHO) "***************************************************"; \ + $(ECHO) "*** ***"; \ + $(ECHO) "*** WARNING ***"; \ + $(ECHO) "*** ***"; \ + $(ECHO) "*** The presence of a CVS subdirectory suggests ***"; \ + $(ECHO) "*** that you are trying to build a distribution ***"; \ + $(ECHO) "*** package based on a checked out, not an ***"; \ + $(ECHO) "*** exported copy of the source tree. Please ***"; \ + $(ECHO) "*** see \"Releasing a new version\" in the ***"; \ + $(ECHO) "*** developer manual. ***"; \ + $(ECHO) "*** ***"; \ + $(ECHO) "***************************************************"; \ + $(ECHO) "Type \"yes i am sure\" if you are sure that you"; \ + $(ECHO) -n "really want to proceed: "; \ + read answer; \ + if [ "$$answer" != "yes i am sure" ]; then exit 1; fi \ + fi; + + +############################################################################# +# RPM specifice stuff (SuSE or Redhat, ..) +############################################################################# +rpm-stuff: dist-check clean clobber + for dir in RPMS SRPMS BUILD SOURCES SPECS; do \ + if [ ! -w $(RPM_BASE)/$$dir ]; then \ + $(ECHO) "$(RPM_BASE)/$$dir is not writable for you. Maybe try as root."; \ + $(ECHO) "Or add a suitable path to .rpmmacros like."; \ + $(ECHO) "%_topdir /home/foo/rpm-build"; \ + exit 1; \ + fi; \ + done; \ + +check-release: + @if [ "$(RPM_PACKAGEV)" = "" ]; then \ + echo ; \ + echo " ERROR: NO RPM_PACKAGEV VALUE"; \ + echo " No value given for RPM_PACKAGEV. Please use:"; \ + echo " make dist-upload RPM_PACKAGEV=release"; \ + echo " where \"release\" is the release number you want to and"; \ + echo " where \"dist\" is the name of the distro (redhat or suse)"; \ + echo ; \ + echo " Ex: make redhat-upload RPM_PACKAGEV=1"; \ + echo ""; \ + echo "ATTENTION: If your distribution use a specific tag on the"; \ + echo " release field (like \"cl\" for Conectiva, and"; \ + echo " \"mdk\" for Mandrake), DO NOT put it on the value"; \ + echo " given to RPM_PACKAGEV. It will be added automaticaly."; \ + echo " Do it like you would do for a redhat package,"; \ + echo " (i.e. just the number)."; \ + echo ; \ + exit 1; \ + fi + + +############################################################################# +# Create Conectiva specfile from RedHat specfile +############################################################################# +conectiva-spec: + $(RM) privoxy-cl.spec + chmod a+x genclspec.sh + ./genclspec.sh + +############################################################################# +# Conectiva distribution for x86 +############################################################################# +conectiva-dist: rpm-stuff conectiva-spec + + $(TAR) --exclude ".cvsignore" --exclude "CVS" --exclude "privoxy-suse.spec" --exclude "privoxy-rh.spec" --exclude "PACKAGERS" -czf $(TAR_ARCH) . + $(RPM) --clean -ta $(TAR_ARCH) + if [ -f $(TAR_ARCH) ]; then $(RM) $(TAR_ARCH); fi + +conectiva-upload: check-release + make redhat-upload RPM_PACKAGEV=$(RPM_PACKAGEV)cl + +############################################################################# +# redhat distribution alpha and x86 +############################################################################# +redhat-dist: rpm-stuff + + $(TAR) --exclude ".cvsignore" --exclude "CVS" --exclude "privoxy-suse.spec" --exclude "privoxy-cl.spec" --exclude "PACKAGERS" -czf $(TAR_ARCH) . + $(RPM) --clean -ta $(TAR_ARCH) + if [ -f $(TAR_ARCH) ]; then $(RM) $(TAR_ARCH); fi + +# anonymously ncftps the rpms to sourceforge +redhat-upload: check-release + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming $(RPM_BASE)/SRPMS/privoxy-$(RPM_VERSION)-$(RPM_PACKAGEV).src.rpm +# better should use `arch` here instead of ix86 to support other platforms too + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming $(RPM_BASE)/RPMS/*/privoxy-$(RPM_VERSION)-$(RPM_PACKAGEV).*.rpm + @$(ECHO) ------------------------------------------------------- + @$(ECHO) Now goto + @$(ECHO) http://sourceforge.net/project/admin/editpackages.php?group_id=11118 + @$(ECHO) ... and release the files. + @$(ECHO) ------------------------------------------------------- + # w3m http://sourceforge.net/project/admin/editpackages.php?group_id=11118 + +############################################################################# +# suse distribution. works fine. no need to be root. +############################################################################# +suse-dist: rpm-stuff +# TMPFILE=$$(mktemp -q /tmp/$(PROGRAM).XXXXXX); \ +# if $(SED) -e 's/^\(Version:\).*/\1 $(RPM_VERSION)/g' \ +# -e 's/^\(Release:\).*/\1 $(RPM_PACKAGEV)/g' \ +# privoxy-suse.spec > $$TMPFILE ; then \ +# $(MV) -f $$TMPFILE privoxy-suse.spec; \ +# else \ +# $(ECHO) "Could not set version info in specfile."; \ +# exit 1;\ +# fi + + $(TAR) --exclude ".cvsignore" --exclude "CVS" --exclude "privoxy-rh.spec" --exclude "privoxy-cl.spec" --exclude "PACKAGERS" -czf $(TAR_ARCH) . + $(RPM) --clean -ta $(TAR_ARCH) + if [ -f $(TAR_ARCH) ]; then $(RM) $(TAR_ARCH); fi + +# anonymously ncftps the rpms to sourceforge +suse-upload: check-release + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming $(RPM_BASE)/SRPMS/privoxy-suse-$(RPM_VERSION)-$(RPM_PACKAGEV).src.rpm +# better should use `arch` here instead of ix86 to support other platforms too + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming $(RPM_BASE)/RPMS/*/privoxy-suse-$(RPM_VERSION)-$(RPM_PACKAGEV).*.rpm + @$(ECHO) ------------------------------------------------------- + @$(ECHO) Now goto + @$(ECHO) http://sourceforge.net/project/admin/editpackages.php?group_id=11118 + @$(ECHO) ... and release the files. + @$(ECHO) ------------------------------------------------------- + +# handle with care. use with root. +suse-clean: + $(RPM) -e junkbuster-suse || true + $(RM) -r /etc/junkbuster + $(RM) -r /etc/rc.d/junkbuster* + $(RM) -r /var/run/junkbuster.pid + $(RM) -r /var/log/junkbuster + $(RM) /etc/init.d/junkbuster + $(RM) /usr/sbin/junkbuster + $(RM) /usr/sbin/rcjunkbuster + $(RM) /usr/share/man/man1/junkbuster.1.gz + $(RPM) -e privoxy-suse || true + $(RM) -r /etc/privoxy + $(RM) -r /etc/rc.d/privoxy* + $(RM) -r /var/run/privoxy.pid + $(RM) -r /var/log/privoxy + $(RM) /etc/init.d/privoxy + $(RM) /usr/sbin/privoxy + $(RM) /usr/sbin/rcprivoxy + $(RM) /usr/share/man/man1/privoxy.1.gz + +############################################################################# +# generic distribution +############################################################################# +gen-dist: dist-check + @$(ECHO) "" + @$(ECHO) "You have run autoconf && autoheader && ./configure right?" + @$(ECHO) "" + $(MAKE) $(PROGRAM) + $(STRIP_PROG) $(PROGRAM) + $(LN) -s current ../privoxy-$(VERSION)-$(CODE_STATUS) +# add program + (cd .. && $(TAR) -cvhf --exclude "PACKAGERS" privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar privoxy-$(VERSION)-$(CODE_STATUS)/$(PROGRAM)) +# add config files + for foo in $(CONFIG_FILES); do \ + (cd .. && $(TAR) -uvhf --exclude "PACKAGERS" privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar privoxy-$(VERSION)-$(CODE_STATUS)/$$foo;) \ + done; +# add documentation + for foo in $(DOC_FILES); do \ + (cd .. && $(TAR) -uvhf --exclude "PACKAGERS" privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar privoxy-$(VERSION)-$(CODE_STATUS)/$$foo;) \ + done; +# and zip the archive + $(RM) ../privoxy-$(VERSION)-$(CODE_STATUS) + $(GZIP_PROG) ../privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar + @$(ECHO) Distribution with binary created. + +# anonymously ncftps the package to sourceforge +gen-upload: + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming ../privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar.gz + @$(ECHO) ------------------------------------------------------- + @$(ECHO) Now goto + @$(ECHO) http://sourceforge.net/project/admin/editpackages.php?group_id=11118 + @$(ECHO) ... and release the files. + @$(ECHO) ------------------------------------------------------- + +# use with care +gen-clean: + $(RM) privoxy-$(TARGET_OS)-$(VERSION)-$(CODE_STATUS)-src.tar* + +############################################################################# +# solaris distribution. verified on SF machines by swa. +############################################################################# +solaris-dist: gen-dist + @$(ECHO) Done. +# anonymously ncftps the package to sourceforge +solaris-upload: gen-upload + @$(ECHO) Done. +# use with care +solaris-clean: gen-clean + @$(ECHO) Done. + +############################################################################# +# hpux distribution +############################################################################# +hpux-dist: + @$(ECHO) coming soon. +hpux-upload: + @$(ECHO) coming soon. + +############################################################################# +# debian distribution +############################################################################# +debian-dist: + @$(ECHO) coming soon. +debian-upload: + @$(ECHO) coming soon. + +############################################################################# +# macosx distribution +############################################################################# +macosx-dist: + @$(ECHO) coming soon. +macosx-upload: + @$(ECHO) coming soon. + +############################################################################# +# amiga distribution +############################################################################# +amiga-dist: + @$(ECHO) coming soon. +amiga-upload: + @$(ECHO) coming soon. + +############################################################################# +# freebsd distribution. verified on SF machines by swa. +############################################################################# +freebsd-dist: gen-dist + @$(ECHO) Done. +# anonymously ncftps the package to sourceforge +freebsd-upload: gen-upload + @$(ECHO) Done. +# use with care +freebsd-clean: gen-clean + @$(ECHO) Done. + +############################################################################# +# Windows distribution +############################################################################# +win-dist: + $(ECHO) Not implemented. + + +############################################################################# +# Tarball distribution: No CVS dirs, dotfiles, debian build dir, +# (FIXME:) only parts of the static / generated docs mix in doc/webserver +############################################################################# + +tarball-dist: dist-check clean clobber + $(LN) -s current ../privoxy-$(VERSION)-$(CODE_STATUS) + + for i in `find . -type f -a -not \( -path "*/CVS*" -o -name ".*" \ + -o -path "*/debian/*" -o -path "*/actions/*" -o -name "*.php" -o -name "PACKAGERS" \)`; do \ + files="$$files privoxy-$(VERSION)-$(CODE_STATUS)/$$i"; \ + done && \ + cd .. && $(TAR) -cvhf privoxy-$(VERSION)-$(CODE_STATUS)-src.tar $$files ; \ + +# and zip the archive + $(RM) ../privoxy-$(VERSION)-$(CODE_STATUS) + $(GZIP_PROG) ../privoxy-$(VERSION)-$(CODE_STATUS)-src.tar + @$(ECHO) Tarball distribution created. + +# anonymously ncftps the tarball to sourceforge +tarball-upload: + ncftpput -u anonymous -p ijbswa-developers@lists.sourceforge.net upload.sourceforge.net /incoming ../privoxy-$(VERSION)-$(CODE_STATUS)-src.tar.gz + @$(ECHO) ------------------------------------------------------- + @$(ECHO) Now goto + @$(ECHO) http://sourceforge.net/project/admin/editpackages.php?group_id=11118 + @$(ECHO) ... and release the files. + @$(ECHO) ------------------------------------------------------- + +tarball-clean: + $(RM) ../privoxy-$(VERSION)-$(CODE_STATUS)-src.tar.gz + +############################################################################# +# +# Documentation +# +# converts doc/source/*.sgml into html, text and man pages +# +############################################################################# + +# developer manual +dok-devel: + $(RM) doc/webserver/developer-manual/*.html + $(RM) -r doc/source/developer-manual + mkdir -p doc/text doc/source/developer-manual + cd doc/source/developer-manual && $(DB) ../developer-manual.sgml && cd .. && cp developer-manual/*.html ../webserver/developer-manual/ + cd doc/source && $(DB) -V nochunks developer-manual.sgml > tmp.html && $(WDUMP) tmp.html > ../text/developer-manual.txt && $(RM) -r tmp.html developer-manual + +# user manual +dok-user: + $(RM) doc/webserver/user-manual/*.html + $(RM) -r doc/source/user-manual/ + mkdir -p doc/text doc/source/user-manual + cd doc/source/user-manual && $(DB) ../user-manual.sgml && cd .. && cp user-manual/*.html ../webserver/user-manual/ + cd doc/source && $(DB) -V nochunks user-manual.sgml > tmp.html && $(WDUMP) tmp.html > ../text/user-manual.txt && $(RM) -r tmp.html user-manual + +# faq +dok-faq: + $(RM) doc/webserver/faq/*.html + $(RM) -r doc/source/faq + mkdir -p doc/text doc/source/faq + cd doc/source/faq && $(DB) ../faq.sgml && cd .. && cp faq/*.html ../webserver/faq/ + cd doc/source && $(DB) -V nochunks faq.sgml > tmp.html && $(WDUMP) tmp.html > ../text/faq.txt && $(RM) -r tmp.html faq + +# man page +dok-man: + $(RM) doc/man/* doc/webserver/man-page/*.html +ifneq ($(MAN2HTML),false) + $(ECHO) "Privoxy Man page

NAME

" > doc/webserver/man-page/privoxy-man-page.html + man ./privoxy.1 | $(MAN2HTML) -bare >> doc/webserver/man-page/privoxy-man-page.html + $(ECHO) "" >> doc/webserver/man-page/privoxy-man-page.html +else + $(MAKE) groff2html +endif + +# readme page +dok-readme: + cd doc/source && $(DB) -V nochunks readme.sgml > tmp.html &&\ + $(WDUMP) tmp.html > ../../README && $(RM) -r tmp.html + +# webserver files +dok-webserver: + cd doc/source/webserver && $(DB)-notoc -V nochunks index.sgml > ../../webserver/index.html + $(PERL) -pi.bak -e 's/..\/p_doc.css/p_doc.css/;\ + s/<\/HEAD/\n<\/HEAD/;\ + s/<\/HEAD/\n<\/HEAD/;\ + s/\.\d\. //'\ + doc/webserver/index.html && $(RM) doc/source/webserver/*.bak + +# Main documentation target. +dok: dok-release dok-devel dok-user dok-faq dok-readme dok-webserver dok-authors + @$(ECHO) Documentation created. + +# +# an alternative to the above dok. disabled man page creation for the moment +# +redhat-dok: dok-release dok-devel dok-user dok-faq redhat-readme dok-webserver dok-authors + @$(ECHO) Documentation created. + +# For those with man2html ala RH7's. +man2html: + mkdir -p doc/webserver/man-page +ifneq ($(MAN2HTML),false) + $(MAN2HTML) privoxy.1 |grep -v "^Content-type" > tmp.html + $(PERL) -pi.bak -e 's///; s//man2html/' tmp.html + $(PERL) -pi.bak -e 's/(<\/HEAD>)/<\/HEAD>/' tmp.html +# Get rid of spurious  from conversion. (How to do this with perl?) + $(SED) -e 's///g' tmp.html > doc/webserver/man-page/privoxy-man-page.html && $(RM) tmp.* +else + $(MAKE) groff2html +endif + +# Otherwise we get plain groff conversion. +groff2html: + $(G2H_CMD) ./privoxy.1 | $(SED) -e 's@@@' > doc/webserver/man-page/privoxy-man-page.html + +## Make README +redhat-readme: + cd doc/source && $(DB) -V nochunks readme.sgml > tmp.html && $(WDUMP) \ + tmp.html > ../../README && $(RM) -r tmp.html + +## Make AUTHORS file +dok-authors: + cd doc/source && $(DB) -V nochunks authors.sgml > tmp.html && $(WDUMP) \ + tmp.html > ../../AUTHORS && $(RM) tmp.html + +# make a man page, and then (lousy) HTML version. +# Requires docbook2man (short perl script), see comments +# in privoxy-man-page.sgml. This target is not invoked from other dok targets. +# It is built separately due to dependencies on perl scripts. +man: + mkdir -p doc/source/man + cd doc/source/man && docbook2man ../privoxy-man-page.sgml &&\ + perl -pi.bak -e 's/ //; s/\[ /\[/g' privoxy.1 + cd doc/source/man && $(DB) ../privoxy-man-page.sgml &&\ + mv -f index.html privoxy-man-page.html + # This html is not used. See make man2html. + mv -f doc/source/man/privoxy.1 privoxy.1 + $(MAKE) man2html + +# Set doc entities for VERSION and CODE_STATUS in sgml docs. Toggle content +# exceptions accordingly. This needs to go before any doc building (doh). +dok-release: + @$(ECHO) Setting doc version and status to $(VERSION), $(CODE_STATUS) + @$(PERL) -pi.bak -e 's///;\ + s///' \ + doc/source/*sgml doc/source/*/*sgml + $(RM) -r doc/source/*bak doc/source/*/*bak +ifeq ($(CODE_STATUS),stable) + @$(ECHO) Setting docs to stable $(VERSION) + @$(PERL) -pi.bak -e 's///;\ + s///' \ + doc/source/*sgml doc/source/*/*sgml + $(RM) -r doc/source/*bak doc/source/*/*bak +else + @$(ECHO) Setting docs to not stable $(VERSION) + @$(PERL) -pi.bak -e 's///;\ + s///' \ + doc/source/*sgml doc/source/*/*sgml + $(RM) -r doc/source/*bak doc/source/*/*bak +endif + +dok-pdf: dok-release + $(RM) doc/pdf/*.pdf + cp -f doc/source/*.sgml doc/pdf + cp -f doc/source/*.dsl doc/pdf + cd doc/pdf && db2pdf --pdf -s ldp.dsl user-manual.sgml && mv user-manual.pdf privoxy-user-manual.pdf > /dev/null 2>&1 + cd doc/pdf && db2pdf --pdf -s ldp.dsl developer-manual.sgml && mv developer-manual.pdf privoxy-developer-manual.pdf > /dev/null 2>&1 + cd doc/pdf && db2pdf --pdf -s ldp.dsl faq.sgml && mv faq.pdf privoxy-faq.pdf > /dev/null 2>&1 + $(RM) doc/pdf/*.sgml doc/pdf/*.dsl doc/pdf/*.out doc/pdf/*.tex doc/pdf/*.log doc/pdf/*.aux + +# the layout and style with db2pdf sucks, here is an alternative +dok-pdf2: dok-release + mkdir -p doc/source/temp # this directory not in cvs + cd doc/source && $(DB) -V nochunks user-manual.sgml > temp/privoxy-user-manual.html + cd doc/source && $(DB) -V nochunks developer-manual.sgml > temp/privoxy-developer-manual.html + cd doc/source && $(DB) -V nochunks faq.sgml > temp/privoxy-faq.html +# one could use html2ps and ps2pdf. well, that does not work. htmlps produces incorrect output. + +# Create release announcement in text and html, with short and long versions. +# This is a standalone target, and must be invoked directly. +announce: dok-release + mkdir -p $(DOC_TMP) + cd $(DOC_TMP) && cp -f ../announce.sgml . && $(DB) -iannounce-big announce.sgml &&\ + mv -f index.html announce.html && $(WDUMP) announce.html > announce.txt + cd $(DOC_TMP) && $(DB) announce.sgml &&\ + mv -f index.html announce-mini.html && $(WDUMP) announce-mini.html > announce-mini.txt &&\ + mv -f *html *txt ../../.. + rm -fr $(DOC_TMP) + +############################################################################# +# +# Webserver +# +# moves dokumentation to webserver +# +############################################################################# +webserver: tidy + @$(ECHO) ------------------------------------------------------- + @$(ECHO) You have run make dok/redhat-dok before, right? + @$(ECHO) Note that this command scps all stuff to the webserver, + @$(ECHO) it will not remove obsolete documents. + @$(ECHO) ------------------------------------------------------- + + @$(ECHO) Uploading + @cd doc/webserver; \ + upload=`find . -type f -a -not \( -path "*/CVS*" -o -path "*/results*" \)`; \ + $(TAR) c $$upload | ssh ijbswa.sourceforge.net 'cd /home/groups/i/ij/ijbswa/htdocs/; tar xvm 2>&1 | grep -v timestamp' + + @$(ECHO) Fixing permissions + @ssh ijbswa.sourceforge.net 'chmod -R 775 /home/groups/i/ij/ijbswa/htdocs 2>/dev/null; true' + @ssh ijbswa.sourceforge.net 'find /home/groups/i/ij/ijbswa/htdocs/ -type f | xargs chmod 664 2>/dev/null; true' + @ssh ijbswa.sourceforge.net 'chmod 666 /home/groups/i/ij/ijbswa/htdocs/actions/results/actions-feedback.txt 2>/dev/null; true' + + +web-actions: tidy + @$(ECHO) Uploading + @cd doc/webserver/actions; \ + upload=`find . -type f -a -not \( -path "*/CVS*" -o -path "*/results*" \)`; \ + $(TAR) c $$upload | ssh ijbswa.sourceforge.net 'cd /home/groups/i/ij/ijbswa/htdocs/actions; tar xvm' + + @$(ECHO) Fixing permissions + @ssh ijbswa.sourceforge.net 'find /home/groups/i/ij/ijbswa/htdocs/actions/ -type f | xargs chmod 664 2>/dev/null' + @ssh ijbswa.sourceforge.net 'chmod 666 /home/groups/i/ij/ijbswa/htdocs/actions/results/actions-feedback.txt 2>/dev/null' + +############################################################################# +# Source file dependencies +############################################################################# + +actions.@OBJEXT@: actions.c actions.h config.h $(PROJECT_H_DEPS) errlog.h jcc.h list.h loaders.h miscutil.h actionlist.h +cgi.@OBJEXT@: cgi.c cgi.h config.h $(PROJECT_H_DEPS) cgiedit.h cgisimple.h list.h pcrs.h encode.h ssplit.h jcc.h filters.h actions.h errlog.h miscutil.h +cgiedit.@OBJEXT@: cgiedit.c cgiedit.h config.h $(PROJECT_H_DEPS) cgi.h list.h pcrs.h encode.h ssplit.h jcc.h filters.h actions.h errlog.h miscutil.h +cgisimple.@OBJEXT@: cgisimple.c cgisimple.h config.h $(PROJECT_H_DEPS) cgi.h list.h pcrs.h encode.h ssplit.h jcc.h filters.h actions.h errlog.h miscutil.h +deanimate.@OBJEXT@: deanimate.c deanimate.h config.h $(PROJECT_H_DEPS) +encode.@OBJEXT@: encode.c encode.h config.h +errlog.@OBJEXT@: errlog.c errlog.h config.h $(PROJECT_H_DEPS) @WIN_ONLY@w32log.h +filters.@OBJEXT@: filters.c filters.h config.h $(PROJECT_H_DEPS) errlog.h encode.h gateway.h jbsockets.h jcc.h loadcfg.h parsers.h ssplit.h cgi.h deanimate.h @WIN_ONLY@win32.h +gateway.@OBJEXT@: gateway.c gateway.h config.h $(PROJECT_H_DEPS) errlog.h jbsockets.h jcc.h loadcfg.h +jbsockets.@OBJEXT@: jbsockets.c jbsockets.h config.h $(PROJECT_H_DEPS) filters.h +jcc.@OBJEXT@: jcc.c jcc.h config.h $(PROJECT_H_DEPS) errlog.h filters.h gateway.h jbsockets.h killpopup.h loadcfg.h loaders.h miscutil.h parsers.h @WIN_ONLY@w32log.h win32.h cgi.h +killpopup.@OBJEXT@: killpopup.c killpopup.h config.h $(PROJECT_H_DEPS) jcc.h loadcfg.h +list.@OBJEXT@: list.c list.h config.h $(PROJECT_H_DEPS) list.h miscutil.h +loadcfg.@OBJEXT@: loadcfg.c loadcfg.h config.h $(PROJECT_H_DEPS) errlog.h filters.h gateway.h jbsockets.h jcc.h killpopup.h loaders.h miscutil.h parsers.h @WIN_ONLY@w32log.h win32.h +loaders.@OBJEXT@: loaders.c loaders.h config.h $(PROJECT_H_DEPS) errlog.h encode.h filters.h gateway.h jcc.h loadcfg.h miscutil.h parsers.h ssplit.h +miscutil.@OBJEXT@: miscutil.c miscutil.h config.h +parsers.@OBJEXT@: parsers.c parsers.h config.h $(PROJECT_H_DEPS) errlog.h encode.h filters.h jbsockets.h jcc.h loadcfg.h loaders.h miscutil.h ssplit.h +ssplit.@OBJEXT@: ssplit.c ssplit.h config.h miscutil.h +urlmatch.@OBJEXT@: urlmatch.c urlmatch.h config.h $(PROJECT_H_DEPS) errlog.h miscutil.h ssplit.h + +# GNU regex +gnu_regex.@OBJEXT@: gnu_regex.c gnu_regex.h config.h + +# PCRS +pcrs.@OBJEXT@: pcrs.c pcre/pcre.h pcrs.h + +# PCRE +pcre/get.@OBJEXT@: pcre/get.c pcre/config.h pcre/internal.h pcre/pcre.h +pcre/maketables.@OBJEXT@: pcre/maketables.c pcre/config.h pcre/internal.h pcre/pcre.h +pcre/pcre.@OBJEXT@: pcre/pcre.c pcre/config.h pcre/internal.h pcre/pcre.h pcre/chartables.c +pcre/pcreposix.@OBJEXT@: pcre/pcreposix.c pcre/config.h pcre/internal.h pcre/pcre.h pcre/pcreposix.h +pcre/study.@OBJEXT@: pcre/study.c pcre/config.h pcre/internal.h pcre/pcre.h + +# An auxiliary program makes the PCRE default character table source + +pcre/chartables.c: pcre/dftables@EXEEXT@ + pcre/dftables@EXEEXT@ >pcre/chartables.c + +pcre/dftables@EXEEXT@: pcre/dftables.c pcre/maketables.c pcre/pcre.h pcre/internal.h pcre/config.h + $(CC) -o pcre/dftables@EXEEXT@ $(CFLAGS) pcre/dftables.c + +# Win32 +w32log.@OBJEXT@: w32log.c errlog.h config.h jcc.h loadcfg.h miscutil.h pcre/pcre.h pcre/pcreposix.h pcrs.h project.h w32log.h w32taskbar.h win32.h +w32taskbar.@OBJEXT@: w32taskbar.c config.h w32log.h w32taskbar.h +win32.@OBJEXT@: win32.c config.h jcc.h loadcfg.h pcre/pcre.h pcre/pcreposix.h pcrs.h project.h w32log.h win32.h + +w32.res: w32.rc w32res.h icons/ico00001.ico icons/ico00002.ico icons/ico00003.ico icons/ico00004.ico icons/ico00005.ico icons/ico00006.ico icons/ico00007.ico icons/ico00008.ico icons/idle.ico icons/privoxy.ico config.h + windres -D__MINGW32__=0.2 -O coff -i $< -o $@ + +# AmigaOS +@AMIGAOS_ONLY@OBJS += amiga.o +@AMIGAOS_ONLY@CFLAGS += -D__AMIGAVERSION__=\"$(VERSION_MAJOR).$(VERSION_MINOR)$(VERSION_POINT)\" -D__AMIGADATE__=\"`date +%d.%m.%Y`\" -W -m68020 -noixemul -fbaserel -msmall-code +@AMIGAOS_ONLY@LDFLAGS += -m68020 -noixemul -fbaserel +@AMIGAOS_ONLY@LIBS = -lm /gg/lib/libb/libm020/libnix/swapstack.o +@AMIGAOS_ONLY@amiga.o: amiga.c amiga.h config.h + + +$(PROGRAM): $(OBJS) $(W32_FILES) + $(LD) $(LDFLAGS) -o $(PROGRAM) $(OBJS) $(LIBS) + +clean: + $(RM) a.out $(OBJS) $(W32_FILES) $(W32_INIS) $(PROGRAM) `find . -name TAGS -o -name tags` + +tidy: + $(RM) `find . -name "*~"` +# $(RM) `find . -name "#*#"` # what is this for?? + $(RM) `find . -name ".\#*"` + +clobber: tidy + $(RM) GNUmakefile configure config.h.in config.h config.cache config.status config.log logfile \ + privoxy.log core *.tar.gz *.tar privoxy-cl.spec doc/source/ldp.dsl + +# +# FIXME: What is all this? +# + $(RM) cscope.* *.pdb *.lib *.exp + +distclean: clobber + +tags: $(SRCS) $(HDRS) + etags $(SRCS) $(HDRS) + +install: all + # + # FIXME: This is a dirty hack to have an install target + # that works at least for some setups. This needs + # to be fixed! + # + $(STRIP_PROG) $(PROGRAM) + $(INSTALL) $(INSTALL_D) $(SBIN_DEST) + $(INSTALL) $(INSTALL_D) $(DEST)/user-manual + $(INSTALL) $(INSTALL_D) $(CONFDEST)/templates + $(INSTALL) $(INSTALL_D) $(DEST)/$(DOK_WEB_USEM) + $(INSTALL) $(INSTALL_P) $(PROGRAM) $(SBIN_DEST) + if [ -d "$(DOK_WEB_USEM)" ]; then $(INSTALL) $(INSTALL_T) $(DOK_WEB_USEM)/[a-z]* $(DEST)/$(DOK_WEB_USEM); fi + $(INSTALL) $(INSTALL_T) templates/[a-z]* $(CONFDEST)/templates + $(INSTALL) $(INSTALL_T) config default.action default.filter trust $(CONFDEST) + # FIXME $(ECHO) privoxy.logrotate privoxy.monthly privoxy.weekly + # FIXME: Need new manual! $(GZIP_PROG) -c privoxy.1 > $(MAN_DEST)/privoxy.1.gz + $(INSTALL) $(INSTALL_P) privoxy.init /etc/init.d/privoxy + +coffee: + @perl -e 'print pack "C*", (31,139,8,8,153,63,226,60,2,3,99,111,102,102,101,101,0,109,143,205,13,192,32,8,133,\ + 239,78,241,110,234,1,28,160,171,152,208,53,26,117,247,22,165,73,137,125,9,1,62,126,2,128,169,5,243,143,\ + 13,139,49,164,65,100,149,152,102,73,141,88,73,178,116,205,100,69,253,36,102,81,49,83,236,19,225,171,131,\ + 214,172,163,73,4,168,123,115,71,126,247,122,94,128,178,227,95,154,12,86,215,122,197,249,146,187,54,220,125,\ + 193,51,228,11,1,0,0);'|zcat + +############################################################################# + +## Local Variables: +## tab-width: 3 +## end: + +# $Log: GNUmakefile.in,v $ +# Revision 1.103 2002/05/23 23:19:00 oes +# Use dsl without TOC for the homepage +# +# Revision 1.102 2002/05/16 01:20:17 hal9 +# make announce target added. +# +# Revision 1.101 2002/05/15 12:28:46 oes +# Trying to keep Hal happy :) +# +# Revision 1.100 2002/05/08 13:48:18 hal9 +# Ooops, that trashed JB v2.0.2 comment. Fixed. +# +# Revision 1.99 2002/05/08 13:42:07 hal9 +# This fixes the numbering problem on index.html in contact info section (.1.). Using +# perl, since its way too convoluted to try to fix proper with docbook. +# +# Revision 1.98 2002/05/03 14:33:06 oes +# Replaced ldp(OK).dsl handling with generation via autoconf; handle all file exeptions to src tarball via find +# +# Revision 1.97 2002/04/27 20:27:43 swa +# no longer needed due to new +# PACKAGE_VERSION process +# +# Revision 1.96 2002/04/27 17:44:32 morcego +# - Correcting typo in my name (Rodrigo, not Rodgrigo) :-) +# - Using the RM macro everywhere rm is called (either we use, or don't) +# - Same for RPM +# +# Revision 1.95 2002/04/27 15:37:25 swa +# replacing directory in document creation process +# no longer necessary. +# +# Revision 1.94 2002/04/27 08:23:29 swa +# pdf process reviewed and cleaned up +# +# Revision 1.93 2002/04/27 04:55:53 morcego +# privoxy-cl.spec now gets removed by clobber target +# +# Revision 1.92 2002/04/27 04:53:40 morcego +# Adding --exclude "PACKAGERS" to every tar command that applies (not for +# webserver target) +# +# Revision 1.91 2002/04/27 04:44:51 morcego +# GNUmakefile.in: The tarball created on redhat-dist and suse-dist now ignore +# the PACKAGERS file, as well privoxy-cl.spec (in case it was created) +# GNUmakefile.in: New targets -> conectiva-spec, conectiva-dist and +# conectiva-upload +# genclspec.sh : New file to generate, from privoxy-rh.spec, a specfile +# for Conectiva Linux +# +# Revision 1.90 2002/04/26 17:46:53 swa +# be consistent +# +# Revision 1.89 2002/04/26 17:20:54 swa +# just produce single html files to proces them later with Destiller or somesuch. looks prettier. +# +# Revision 1.88 2002/04/25 19:13:57 morcego +# Removed RPM release number declaration on configure.in +# Changed makefile to use given value for RPM_PACKAGEV when on uploading +# targets (will produce an error, explaining who to do it, if no value +# if provided). +# +# Revision 1.87 2002/04/23 14:10:59 swa +# now create pdf documents +# +# Revision 1.86 2002/04/15 04:30:27 hal9 +# Missed two -pi.bak's on perl/cygwin problem. +# +# Revision 1.85 2002/04/14 01:05:34 hal9 +# Revert dok-webserver change for SF logo. +# +# Revision 1.84 2002/04/13 22:43:25 hal9 +# -Fix dok-webserver for SF logo (more perl). +# -Change all perl -pi to perl -pi.bak for Cygwin problem. +# +# Revision 1.83 2002/04/12 09:39:25 oes +# Excluding yet more files from tarball; making dist warning yet more scary +# +# Revision 1.82 2002/04/11 21:07:11 oes +# Excluding more files from tarball build +# +# Revision 1.81 2002/04/11 14:40:27 oes +# Fixed typo -- Thanks, Moritz! +# +# Revision 1.80 2002/04/11 12:50:00 oes +# Fixed tarball-dist target +# +# Revision 1.79 2002/04/11 06:49:28 oes +# webserver target: silenced timestamp warnings resulting from uploading westwards, made permissions fixing independant of screwed local dir permissions, suppress (false alarm) make error if not owner of feedback log +# +# Revision 1.78 2002/04/09 13:37:11 sarantis +# fix tar options typo +# +# Revision 1.77 2002/04/09 13:28:53 swa +# build suse and gen-dist with html docs +# +# Revision 1.76 2002/04/08 22:43:41 oes +# Fix: Include dotfiles in fixing webserver permissions +# +# Revision 1.75 2002/04/08 22:14:59 oes +# Silencing tar warnings in the web* targets +# +# Revision 1.74 2002/04/08 15:22:44 hal9 +# This has finishing touches for dok building. Should be ready to go. +# -The main doc build is now 'make dok', should work on Redhat too. +# -Removed man page from main doc build. It is built separately due to +# perl scripts that most aren't likely to have. +# +# Revision 1.73 2002/04/08 14:03:24 oes +# oes for al: Fix install target +# +# Revision 1.72 2002/04/08 13:42:11 oes +# Added safety check to *-dist targets; fixed permissions for feedback logfile +# +# Revision 1.71 2002/04/07 20:32:03 hal9 +# -Add meta data kludge for make dok-webserver via $(PERL). +# -Add subdirs for 'make dok-release'. +# +# Revision 1.70 2002/04/07 08:59:40 swa +# generated files. do NOT edit. +# fixed directory bug in makefile. +# +# Revision 1.69 2002/04/07 08:10:47 swa +# create some of the webserver docs +# automatically (in particular if +# those docs recycle other documentation +# fragments). Now committed webserver's +# index file. +# +# Revision 1.68 2002/04/07 07:58:11 swa +# create some of the webserver docs +# automatically (in particular if +# those docs recycle other documentation +# fragments) +# +# Revision 1.67 2002/04/07 05:31:42 hal9 +# Add 'dok-release' target: +# -Set doc entities to VERSION and CODE_STATUS during make. +# -Set doc conditional content flags (stable vs non-stable). +# A separate target for the time being but needs to be incorporated into +# dok build at some point. +# -Filter out a spurious ^G from new man page > html converion in man2html. +# +# Revision 1.66 2002/04/06 20:28:21 jongfoster +# Prettifying groff2html. +# Using GNU Make's conditional makefile feature rather than shell "if"s. +# (The shell "if"s were hiding errors) +# "perl" -> "$(PERL)" +# Spaces->tabs in a couple of places. +# +# Revision 1.65 2002/04/06 05:16:39 hal9 +# -Add 'authors' and 'man' targets for AUTHORS and man-page (WIP). +# -Both of these will soon be generated files. +# +# Revision 1.64 2002/04/04 22:14:51 oes +# No longer rely on find honoring -iname +# +# Revision 1.63 2002/04/04 21:06:22 swa +# cosmetics. +# +# Revision 1.62 2002/04/04 20:49:50 swa +# attempt to consolidate the +# different dokbook versions. +# +# Revision 1.61 2002/04/04 19:18:21 swa +# readme was leftover directory. use w3m instead +# of lynx to be consistent among developers. use +# consistent target naming. +# +# Revision 1.60 2002/04/04 12:25:41 oes +# Tidy webserver upload w/o *~ files, CVS dirs and logfiles and with proper dir and file permissions +# +# Revision 1.59 2002/04/04 08:32:45 swa +# wrong name for tarball-dist target. further fixed content of tarball dist +# +# Revision 1.58 2002/04/04 06:32:58 hal9 +# New dok targets for make readme. +# +# Revision 1.57 2002/04/04 00:36:36 gliptak +# always use pcre for matching +# +# Revision 1.56 2002/04/03 22:28:03 gliptak +# Removed references to gnu_regex +# +# Revision 1.55 2002/04/03 19:54:29 swa +# freebsd tested to work. attempt to move tarball dist target forward +# +# Revision 1.54 2002/04/03 14:54:07 oes +# Standard clean and clobber semantics II +# +# Revision 1.53 2002/04/03 14:19:16 oes +# Standard clean and clobber semantics +# +# Revision 1.52 2002/04/03 02:56:18 hal9 +# Revert previous FAQ numbering kludge. +# +# Revision 1.51 2002/04/02 13:03:56 oes +# Added fix for webserver permissions +# +# Revision 1.50 2002/04/02 03:46:24 hal9 +# Rewrite ldpOK.dsl so that sections are NOT numbered on FAQ, in an effort +# to make the Table of Contents not so 'busy' looking. SuSE needs testing :) +# +# Revision 1.49 2002/03/30 22:20:12 swa +# cd didn't work. neither did find. +# +# Revision 1.48 2002/03/30 19:04:06 swa +# people release differently. no good. +# I want to make parts of the docs only. +# +# Revision 1.47 2002/03/30 09:05:21 swa +# better packaging. better rpm building. +# tar failed on sun (no exclude there). +# +# Revision 1.46 2002/03/29 20:09:01 swa +# al's patch +# +# Revision 1.45 2002/03/29 19:45:45 swa +# for lazy swa +# +# Revision 1.44 2002/03/29 17:42:44 gliptak +# Correcting for Solaris tar limitations +# +# Revision 1.43 2002/03/29 07:40:03 swa +# fixed make webserver. doh +# +# Revision 1.42 2002/03/29 06:59:04 swa +# other users could not modify files on webserver +# +# Revision 1.41 2002/03/28 20:43:00 swa +# set make correctly +# +# Revision 1.40 2002/03/28 04:22:44 hal9 +# More on man2html stuff. +# +# Revision 1.39 2002/03/28 01:04:14 hal9 +# More man2html stuff for docs. +# +# Revision 1.38 2002/03/27 16:02:30 swa +# have a generic target +# +# Revision 1.37 2002/03/27 15:30:26 swa +# have a consistent appearance +# +# Revision 1.36 2002/03/27 14:58:08 swa +# can be used by mutilple targets +# +# Revision 1.35 2002/03/27 14:53:19 swa +# added solaris-dist +# +# Revision 1.34 2002/03/27 10:30:11 swa +# we want a html man file on the webserver +# +# Revision 1.33 2002/03/27 03:05:35 hal9 +# Added man2html target for docs (redhat-dok only for now) +# +# Revision 1.32 2002/03/26 22:29:54 swa +# we have a new homepage! +# +# Revision 1.31 2002/03/26 14:00:18 swa +# fixed make tarball, tarball-dist, tarball-clean +# +# Revision 1.30 2002/03/25 12:52:25 swa +# new targets +# +# Revision 1.29 2002/03/24 17:03:55 jongfoster +# Name change +# +# Revision 1.28 2002/03/24 16:19:48 swa +# configure needs to be generated. +# +# Revision 1.27 2002/03/24 16:13:57 swa +# generated files are a nono in cvs +# +# Revision 1.26 2002/03/24 15:36:02 swa +# did not build. +# +# Revision 1.25 2002/03/24 14:31:08 swa +# remove more crappy files. set RPM +# release version correctly. +# +# Revision 1.24 2002/03/24 14:19:55 swa +# set rpm package release in configure.in. nowhere else. +# +# Revision 1.23 2002/03/24 13:06:49 swa +# suse-clean now runs fine +# +# Revision 1.22 2002/03/24 12:56:21 swa +# name change related issues. +# +# Revision 1.21 2002/03/24 12:43:57 swa +# name change +# +# Revision 1.20 2002/03/24 11:39:17 jongfoster +# Renaming config files +# +# Revision 1.19 2002/03/22 20:53:03 morcego +# - Ongoing process to change name to JunkbusterNG +# - configure/configure.in: no change needed +# - GNUmakefile.in: +# - TAR_ARCH = /tmp/JunkbusterNG-$(RPM_VERSION).tar.gz +# - PROGRAM = jbng@EXEEXT@ +# - rh-spec now references as junkbusterng-rh.spec +# - redhat-upload: references changed to junkbusterng-* (package names) +# - tarball-dist: references changed to JunkbusterNG-distribution-* +# - tarball-src: now JunkbusterNG-* +# - install: initscript now junkbusterng.init and junkbusterng (when +# installed) +# - junkbuster-rh.spec: renamed to junkbusterng-rh.spec +# - junkbusterng.spec: +# - References to the expression ijb where changed where possible +# - New package name: junkbusterng (all in lower case, acording to +# the LSB recomendation) +# - Version changed to: 2.9.13 +# - Release: 1 +# - Added: junkbuster to obsoletes and conflicts (Not sure this is +# right. If it obsoletes, why conflict ? Have to check it later) +# - Summary changed: Stefan, please check and aprove it +# - Changes description to use the new name +# - Sed string was NOT changed. Have to wait to the manpage to +# change first +# - Keeping the user junkbuster for now. It will require some aditional +# changes on the script (scheduled for the next specfile release) +# - Added post entry to move the old logfile to the new log directory +# - Removing "chkconfig --add" entry (not good to have it automaticaly +# added to the startup list). +# - Added preun section to stop the service with the old name, as well +# as remove it from the startup list +# - Removed the chkconfig --del entry from the conditional block on +# the preun scriptlet (now handled on the %files section) +# - junkbuster.init: renamed to junkbusterng.init +# - junkbusterng.init: +# - Changed JB_BIN to jbng +# - Created JB_OBIN with the old value of JB_BIN (junkbuster), to +# be used where necessary (config dir) +# +# Aditional notes: +# - The config directory is /etc/junkbuster yet. Have to change it on the +# specfile, after it is changes on the code +# - The only files that got renamed on the cvs tree were the rh specfile and +# the init file. Some file references got changes on the makefile and on the +# rh-spec (as listed above) +# +# Revision 1.18 2002/03/21 23:00:00 swa +# want to autogenerate stuff. +# +# Revision 1.17 2002/03/19 19:30:04 morcego +# - Fixing stylesheet checking on configure. If it is found, no further checks +# should be done +# +# - configure will now check for db2html or docbook2html (should work now +# on SuSe without the docbktls package) +# +# Revision 1.16 2002/03/14 22:32:32 hal9 +# Bumped the RPM version. +# +# Revision 1.15 2002/03/08 20:00:28 swa +# some leftovers. +# +# Revision 1.14 2002/03/07 18:25:56 swa +# synced redhat and suse build process +# +# Revision 1.13 2002/03/07 17:17:56 oes +# (Hopefully) fixed for older make versions +# +# Revision 1.12 2002/03/07 15:28:27 swa +# more informative +# +# Revision 1.11 2002/03/06 14:33:18 sarantis +# Use proper temp file, not "abc". +# +# Revision 1.10 2002/03/06 14:19:35 sarantis +# Cleanup PID_FILE_PATH from redhat-dist target +# +# Revision 1.9 2002/03/05 17:31:11 morcego +# Search for docbook.dsl. Should solve portability problems for SuSe. +# +# Revision 1.8 2002/03/05 14:07:42 morcego +# configure now detects rpm topdir, and change GNUmakefile acordingly +# (based on sugestion by Sarantis Paskalis) +# +# Revision 1.7 2002/03/05 13:43:28 morcego +# Checking for text browser, so redhat-dok can work. +# +# Revision 1.6 2002/03/05 13:10:51 morcego +# Changes to implement redhat-dok (Hal Burgiss) +# Changes to make it work on other distros and out-of-the-shelf configurations +# +# Revision 1.5 2002/02/27 15:30:39 hal9 +# Reset $(RPM_PACKAGEV) to 1 (was 2) +# +# Revision 1.4 2002/01/17 21:44:04 jongfoster +# Adding urlmatch.[ch] +# +# Revision 1.3 2002/01/04 15:26:08 oes +# Added tarball-src target +# +# Revision 1.2 2001/12/30 14:07:31 steudten +# - Add signal handling (unix) +# - Add SIGHUP handler (unix) +# - Add creation of pidfile (unix) +# - Add action 'top' in rc file (RH) +# - Add entry 'SIGNALS' to manpage +# - Add exit message to logfile (unix) +# +# Revision 1.1 2001/12/01 11:22:57 jongfoster +# Renaming Makefile.in to GNUmakefile.in so that non-GNU versions of +# make break in a more obvious way. +# Adding .PHONY section. +# +# Revision 1.40 2001/12/01 00:24:11 jongfoster +# Renaming various config files +# Fixing CR->CRLF under Win32 (I hope) +# +# Revision 1.39 2001/11/06 12:07:30 steudten +# Add --clean for building rpm in target redhat-dist. +# +# Revision 1.38 2001/11/05 21:35:23 steudten +# Complete rewrite for the 'redhat-dist' target. +# Checks for writeable RPM build directories for calling user. +# So you must not be root, just set the modes to 1777 to +# build a RH package. +# Fix the upload-target to be arch independant. +# Add target for 'solaris-dist' - coming soon. +# +# Revision 1.37 2001/11/01 00:52:04 hal9 +# Redhat-upload stuff per Stefan. +# +# Revision 1.36 2001/10/31 19:26:13 swa +# automate process of uploading new releases +# to sf. +# +# Revision 1.35 2001/10/15 22:14:59 joergs +# Removed -O2 and -Wall from AmigaOS-only CFLAGS since they are now in +# the general CFLAGS already. +# +# Revision 1.34 2001/10/15 18:28:06 steudten +# remove config.cache for target clobber. +# Cleanup make dist for RH and S.u.S.E. +# +# Revision 1.33 2001/10/10 12:43:33 oes +# Added ugly hack to make install target work at least for some setups. +# +# Revision 1.32 2001/10/09 22:38:19 jongfoster +# Correcting actionsfile filename for Win32 INI build +# +# Revision 1.31 2001/09/23 10:13:48 swa +# upload process established. run make webserver and +# the documentation is moved to the webserver. documents +# are now linked correctly. +# +# Revision 1.30 2001/09/19 17:55:49 oes +# Fixed CFLAGS +# +# Revision 1.29 2001/09/16 17:34:27 jongfoster +# Removing showargs.[ch], adding cgi(simple|edit).[ch] +# Replacing $(OBJEXT) with @OBJEXT@ - this seems to be a common source +# of build problems. +# +# Revision 1.28 2001/09/13 15:19:08 swa +# we want text files as well. +# +# Revision 1.27 2001/09/13 13:11:37 steudten +# +# Replace DEBUG_CFLAGS with OTHER_CFLAGS +# +# Revision 1.26 2001/09/12 23:44:54 david__schmidt +# Mac OSX (Darwin) support added. +# +# Revision 1.25 2001/09/12 22:55:45 joergs +# AmigaOS support added. +# +# Revision 1.24 2001/09/12 17:28:59 david__schmidt +# +# OS/2 port: update autoconf'd support for the platform. +# +# Revision 1.23 2001/09/12 16:28:42 swa +# added "make dok" section to generate html pages from +# the sgml source documents. note that the we do not want +# generated stuff in cvs. +# +# Revision 1.22 2001/09/10 16:31:23 swa +# buildroot definition in the specfile fucks up the build +# process under suse. hence I moved it to the "rpm -ta" +# command +# +# Revision 1.21 2001/09/10 11:12:49 oes +# Turning on -Wall +# +# Revision 1.20 2001/08/02 22:04:29 jongfoster +# Removing some remaining references to obsolete w32rulesdlg.[ch] +# +# Revision 1.19 2001/07/30 22:14:03 jongfoster +# Removing obsolete w32rulesdlg.c and w32rulesdlg.h +# +# Revision 1.18 2001/07/29 17:09:17 jongfoster +# Major changes to build system in order to fix these bugs: +# - pthreads under Linux was broken - changed -lpthread to -pthread +# - Compiling in MinGW32 mode under CygWin now correctly detects +# which shared libraries are available +# - Solaris support (?) (Not tested under Solaris yet) +# +# Revision 1.17 2001/07/28 16:44:54 oes +# Fixed sed LF->CRLF conversion and removed deprecated files +# +# Revision 1.16 2001/07/15 19:45:33 jongfoster +# Added support for linking with POSIX threads library +# +# Revision 1.15 2001/07/13 13:48:07 oes +# - Moved STATIC #define for pcre to (ac)config.h +# - Made -Ipcre depandant on static pcre compilation to +# avoid version conflicts +# - Included compilation and depandancies for new deanimate.c +# - Made changes to the pcre/pcreposix/pcrs build process +# as required by the new library autodetection in +# configure.in +# +# Revision 1.14 2001/07/01 16:27:44 oes +# Fixed misplaced dependancy +# +# Revision 1.13 2001/06/29 13:18:36 oes +# - added depandancy of filters.o on cgi.h +# +# Revision 1.12 2001/06/12 17:15:56 swa +# fixes, because a clean build on rh6.1 was impossible. +# GZIP confuses make, %configure confuses rpm, etc. +# +# Revision 1.11 2001/06/11 11:26:35 sarantis +# RPM version should be the same as ijbswa version. The rpm release is +# specified in the specfile. +# +# Revision 1.10 2001/06/07 17:27:45 swa +# added suse build section +# +# Revision 1.9 2001/06/04 18:31:58 swa +# files are now prefixed with either `confdir' or `logdir'. +# `make redhat-dist' replaces both entries confdir and logdir +# with redhat values +# +# Revision 1.8 2001/06/04 10:44:57 swa +# `make redhatr-dist' now works. Except for the paths +# in the config file. +# +# Revision 1.7 2001/06/03 17:09:09 swa +# swa for oes: reversed my earlier change +# +# Revision 1.6 2001/06/03 17:07:27 swa +# swa for oes +# +# Revision 1.5 2001/06/03 13:57:26 swa +# compile cgi.c (for andreas' GUI) +# +# Revision 1.4 2001/05/31 21:18:45 jongfoster +# Added files actions.[ch], actionlist.h, list.[ch] to Makefile +# +# Revision 1.3 2001/05/29 20:02:48 joergs +# Changes for AmigaOS added. +# +# Revision 1.2 2001/05/17 22:23:23 oes +# - Added auto-generation of CRLFs for Win32 config files +# - Added comment-prefix to all Win32-only options in the config file +# and provided auto stripping of this prefix for the Win32 platform by make +# +# Revision 1.1.1.1 2001/05/15 13:59:00 oes +# Initial import of version 2.9.3 source tree +# +# diff --git a/Junkbuster Status.URL b/Junkbuster Status.URL deleted file mode 100644 index 6c95de6d7dd1d98bf88e8084020edb372acbfdd1..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 56 zcma#{%qvMP%1bQ?&d4t+NiHpkC|D9W#> L)J-f(FJ=G$T<;X} diff --git a/LICENSE b/LICENSE new file mode 100644 index 00000000..09aa295a --- /dev/null +++ b/LICENSE @@ -0,0 +1,346 @@ + Copyright (C) 2001, 2002 Privoxy Developers , + and licensed under the GNU General Public License. + + + GNU GENERAL PUBLIC LICENSE + Version 2, June 1991 + + Copyright (C) 1989, 1991 Free Software Foundation, Inc. + 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + Everyone is permitted to copy and distribute verbatim copies + of this license document, but changing it is not allowed. + + Preamble + + The licenses for most software are designed to take away your +freedom to share and change it. By contrast, the GNU General Public +License is intended to guarantee your freedom to share and change free +software--to make sure the software is free for all its users. This +General Public License applies to most of the Free Software +Foundation's software and to any other program whose authors commit to +using it. (Some other Free Software Foundation software is covered by +the GNU Library General Public License instead.) You can apply it to +your programs, too. + + When we speak of free software, we are referring to freedom, not +price. Our General Public Licenses are designed to make sure that you +have the freedom to distribute copies of free software (and charge for +this service if you wish), that you receive source code or can get it +if you want it, that you can change the software or use pieces of it +in new free programs; and that you know you can do these things. + + To protect your rights, we need to make restrictions that forbid +anyone to deny you these rights or to ask you to surrender the rights. +These restrictions translate to certain responsibilities for you if you +distribute copies of the software, or if you modify it. + + For example, if you distribute copies of such a program, whether +gratis or for a fee, you must give the recipients all the rights that +you have. You must make sure that they, too, receive or can get the +source code. And you must show them these terms so they know their +rights. + + We protect your rights with two steps: (1) copyright the software, and +(2) offer you this license which gives you legal permission to copy, +distribute and/or modify the software. + + Also, for each author's protection and ours, we want to make certain +that everyone understands that there is no warranty for this free +software. If the software is modified by someone else and passed on, we +want its recipients to know that what they have is not the original, so +that any problems introduced by others will not reflect on the original +authors' reputations. + + Finally, any free program is threatened constantly by software +patents. We wish to avoid the danger that redistributors of a free +program will individually obtain patent licenses, in effect making the +program proprietary. To prevent this, we have made it clear that any +patent must be licensed for everyone's free use or not licensed at all. + + The precise terms and conditions for copying, distribution and +modification follow. + + GNU GENERAL PUBLIC LICENSE + TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION + + 0. This License applies to any program or other work which contains +a notice placed by the copyright holder saying it may be distributed +under the terms of this General Public License. The "Program", below, +refers to any such program or work, and a "work based on the Program" +means either the Program or any derivative work under copyright law: +that is to say, a work containing the Program or a portion of it, +either verbatim or with modifications and/or translated into another +language. (Hereinafter, translation is included without limitation in +the term "modification".) Each licensee is addressed as "you". + +Activities other than copying, distribution and modification are not +covered by this License; they are outside its scope. The act of +running the Program is not restricted, and the output from the Program +is covered only if its contents constitute a work based on the +Program (independent of having been made by running the Program). +Whether that is true depends on what the Program does. + + 1. You may copy and distribute verbatim copies of the Program's +source code as you receive it, in any medium, provided that you +conspicuously and appropriately publish on each copy an appropriate +copyright notice and disclaimer of warranty; keep intact all the +notices that refer to this License and to the absence of any warranty; +and give any other recipients of the Program a copy of this License +along with the Program. + +You may charge a fee for the physical act of transferring a copy, and +you may at your option offer warranty protection in exchange for a fee. + + 2. You may modify your copy or copies of the Program or any portion +of it, thus forming a work based on the Program, and copy and +distribute such modifications or work under the terms of Section 1 +above, provided that you also meet all of these conditions: + + a) You must cause the modified files to carry prominent notices + stating that you changed the files and the date of any change. + + b) You must cause any work that you distribute or publish, that in + whole or in part contains or is derived from the Program or any + part thereof, to be licensed as a whole at no charge to all third + parties under the terms of this License. + + c) If the modified program normally reads commands interactively + when run, you must cause it, when started running for such + interactive use in the most ordinary way, to print or display an + announcement including an appropriate copyright notice and a + notice that there is no warranty (or else, saying that you provide + a warranty) and that users may redistribute the program under + these conditions, and telling the user how to view a copy of this + License. (Exception: if the Program itself is interactive but + does not normally print such an announcement, your work based on + the Program is not required to print an announcement.) + +These requirements apply to the modified work as a whole. If +identifiable sections of that work are not derived from the Program, +and can be reasonably considered independent and separate works in +themselves, then this License, and its terms, do not apply to those +sections when you distribute them as separate works. But when you +distribute the same sections as part of a whole which is a work based +on the Program, the distribution of the whole must be on the terms of +this License, whose permissions for other licensees extend to the +entire whole, and thus to each and every part regardless of who wrote it. + +Thus, it is not the intent of this section to claim rights or contest +your rights to work written entirely by you; rather, the intent is to +exercise the right to control the distribution of derivative or +collective works based on the Program. + +In addition, mere aggregation of another work not based on the Program +with the Program (or with a work based on the Program) on a volume of +a storage or distribution medium does not bring the other work under +the scope of this License. + + 3. You may copy and distribute the Program (or a work based on it, +under Section 2) in object code or executable form under the terms of +Sections 1 and 2 above provided that you also do one of the following: + + a) Accompany it with the complete corresponding machine-readable + source code, which must be distributed under the terms of Sections + 1 and 2 above on a medium customarily used for software interchange; or, + + b) Accompany it with a written offer, valid for at least three + years, to give any third party, for a charge no more than your + cost of physically performing source distribution, a complete + machine-readable copy of the corresponding source code, to be + distributed under the terms of Sections 1 and 2 above on a medium + customarily used for software interchange; or, + + c) Accompany it with the information you received as to the offer + to distribute corresponding source code. (This alternative is + allowed only for noncommercial distribution and only if you + received the program in object code or executable form with such + an offer, in accord with Subsection b above.) + +The source code for a work means the preferred form of the work for +making modifications to it. For an executable work, complete source +code means all the source code for all modules it contains, plus any +associated interface definition files, plus the scripts used to +control compilation and installation of the executable. However, as a +special exception, the source code distributed need not include +anything that is normally distributed (in either source or binary +form) with the major components (compiler, kernel, and so on) of the +operating system on which the executable runs, unless that component +itself accompanies the executable. + +If distribution of executable or object code is made by offering +access to copy from a designated place, then offering equivalent +access to copy the source code from the same place counts as +distribution of the source code, even though third parties are not +compelled to copy the source along with the object code. + + 4. You may not copy, modify, sublicense, or distribute the Program +except as expressly provided under this License. Any attempt +otherwise to copy, modify, sublicense or distribute the Program is +void, and will automatically terminate your rights under this License. +However, parties who have received copies, or rights, from you under +this License will not have their licenses terminated so long as such +parties remain in full compliance. + + 5. You are not required to accept this License, since you have not +signed it. However, nothing else grants you permission to modify or +distribute the Program or its derivative works. These actions are +prohibited by law if you do not accept this License. Therefore, by +modifying or distributing the Program (or any work based on the +Program), you indicate your acceptance of this License to do so, and +all its terms and conditions for copying, distributing or modifying +the Program or works based on it. + + 6. Each time you redistribute the Program (or any work based on the +Program), the recipient automatically receives a license from the +original licensor to copy, distribute or modify the Program subject to +these terms and conditions. You may not impose any further +restrictions on the recipients' exercise of the rights granted herein. +You are not responsible for enforcing compliance by third parties to +this License. + + 7. If, as a consequence of a court judgment or allegation of patent +infringement or for any other reason (not limited to patent issues), +conditions are imposed on you (whether by court order, agreement or +otherwise) that contradict the conditions of this License, they do not +excuse you from the conditions of this License. If you cannot +distribute so as to satisfy simultaneously your obligations under this +License and any other pertinent obligations, then as a consequence you +may not distribute the Program at all. For example, if a patent +license would not permit royalty-free redistribution of the Program by +all those who receive copies directly or indirectly through you, then +the only way you could satisfy both it and this License would be to +refrain entirely from distribution of the Program. + +If any portion of this section is held invalid or unenforceable under +any particular circumstance, the balance of the section is intended to +apply and the section as a whole is intended to apply in other +circumstances. + +It is not the purpose of this section to induce you to infringe any +patents or other property right claims or to contest validity of any +such claims; this section has the sole purpose of protecting the +integrity of the free software distribution system, which is +implemented by public license practices. Many people have made +generous contributions to the wide range of software distributed +through that system in reliance on consistent application of that +system; it is up to the author/donor to decide if he or she is willing +to distribute software through any other system and a licensee cannot +impose that choice. + +This section is intended to make thoroughly clear what is believed to +be a consequence of the rest of this License. + + 8. If the distribution and/or use of the Program is restricted in +certain countries either by patents or by copyrighted interfaces, the +original copyright holder who places the Program under this License +may add an explicit geographical distribution limitation excluding +those countries, so that distribution is permitted only in or among +countries not thus excluded. In such case, this License incorporates +the limitation as if written in the body of this License. + + 9. The Free Software Foundation may publish revised and/or new versions +of the General Public License from time to time. Such new versions will +be similar in spirit to the present version, but may differ in detail to +address new problems or concerns. + +Each version is given a distinguishing version number. If the Program +specifies a version number of this License which applies to it and "any +later version", you have the option of following the terms and conditions +either of that version or of any later version published by the Free +Software Foundation. If the Program does not specify a version number of +this License, you may choose any version ever published by the Free Software +Foundation. + + 10. If you wish to incorporate parts of the Program into other free +programs whose distribution conditions are different, write to the author +to ask for permission. For software which is copyrighted by the Free +Software Foundation, write to the Free Software Foundation; we sometimes +make exceptions for this. Our decision will be guided by the two goals +of preserving the free status of all derivatives of our free software and +of promoting the sharing and reuse of software generally. + + NO WARRANTY + + 11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY +FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN +OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES +PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED +OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS +TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE +PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, +REPAIR OR CORRECTION. + + 12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING +WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR +REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, +INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING +OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED +TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY +YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER +PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE +POSSIBILITY OF SUCH DAMAGES. + + END OF TERMS AND CONDITIONS + + How to Apply These Terms to Your New Programs + + If you develop a new program, and you want it to be of the greatest +possible use to the public, the best way to achieve this is to make it +free software which everyone can redistribute and change under these terms. + + To do so, attach the following notices to the program. It is safest +to attach them to the start of each source file to most effectively +convey the exclusion of warranty; and each file should have at least +the "copyright" line and a pointer to where the full notice is found. + + + Copyright (C) + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + + +Also add information on how to contact you by electronic and paper mail. + +If the program is interactive, make it output a short notice like this +when it starts in an interactive mode: + + Gnomovision version 69, Copyright (C) year name of author + Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. + This is free software, and you are welcome to redistribute it + under certain conditions; type `show c' for details. + +The hypothetical commands `show w' and `show c' should show the appropriate +parts of the General Public License. Of course, the commands you use may +be called something other than `show w' and `show c'; they could even be +mouse-clicks or menu items--whatever suits your program. + +You should also get your employer (if you work as a programmer) or your +school, if any, to sign a "copyright disclaimer" for the program, if +necessary. Here is a sample; alter the names: + + Yoyodyne, Inc., hereby disclaims all copyright interest in the program + `Gnomovision' (which makes passes at compilers) written by James Hacker. + + , 1 April 1989 + Ty Coon, President of Vice + +This General Public License does not permit incorporating your program into +proprietary programs. If your program is a subroutine library, you may +consider it more useful to permit linking proprietary applications with the +library. If this is what you want to do, use the GNU Library General +Public License instead of this License. + + diff --git a/Makefile b/Makefile new file mode 100644 index 00000000..5529111b --- /dev/null +++ b/Makefile @@ -0,0 +1,70 @@ +# $Id: Makefile,v 1.4 2002/04/09 16:38:10 oes Exp $ +# +# Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# $Log: Makefile,v $ +# Revision 1.4 2002/04/09 16:38:10 oes +# Added option to run the whole build process +# +# Revision 1.3 2002/03/26 22:29:54 swa +# we have a new homepage! +# +# Revision 1.2 2002/03/24 13:25:42 swa +# name change related issues +# +# Revision 1.1 2001/12/01 11:24:29 jongfoster +# Will display a warning if non-GNU make is used +# +# + +############################################################################# + +error: + @if [ -f GNUmakefile ]; then \ + echo "***"; \ + echo "*** You are not using the GNU version of Make - maybe it's called gmake"; \ + echo "*** or it's in a different directory?"; \ + echo "***"; \ + exit 1; \ + else \ + echo "***"; \ + echo "*** To build this program, you must run"; \ + echo "*** autoheader && autoconf && ./configure and then run GNU make."; \ + echo "***"; \ + echo -n "*** Shall I do this for you now? (y/n) "; \ + read answer; \ + if [ $$answer = "y" ]; then \ + autoheader && autoconf && ./configure && make;\ + fi; \ + fi + +.PHONY: error + +############################################################################# + +## Local Variables: +## tab-width: 3 +## end: diff --git a/Makefile.in b/Makefile.in deleted file mode 100644 index 8c670b88..00000000 --- a/Makefile.in +++ /dev/null @@ -1,281 +0,0 @@ -# Note: Makefile is built automatically from Makefile.in -# -# $Id: Makefile.in,v 1.2 2001/05/13 22:04:51 administrator Exp $ -# -# Written by and Copyright (C) 2001 the SourceForge -# IJBSWA team. http://ijbswa.sourceforge.net -# -# Based on the Internet Junkbuster originally written -# by and Copyright (C) 1997 Anonymous Coders and -# Junkbusters Corporation. http://www.junkbusters.com -# -# This program is free software; you can redistribute it -# and/or modify it under the terms of the GNU General -# Public License as published by the Free Software -# Foundation; either version 2 of the License, or (at -# your option) any later version. -# -# This program is distributed in the hope that it will -# be useful, but WITHOUT ANY WARRANTY; without even the -# implied warranty of MERCHANTABILITY or FITNESS FOR A -# PARTICULAR PURPOSE. See the GNU General Public -# License for more details. -# -# The GNU General Public License should be included with -# this file. If not, you can view it at -# http://www.gnu.org/copyleft/gpl.html -# or write to the Free Software Foundation, Inc., 59 -# Temple Place - Suite 330, Boston, MA 02111-1307, USA. -# -# $Log: Makefile.in,v $ -# - - -# define version (will be wired into the rpm.) -VERSION_MAJOR = @VERSION_MAJOR@ -VERSION_MINOR = @VERSION_MINOR@ -VERSION_POINT = @VERSION_POINT@ -VERSION = $(VERSION_MAJOR).$(VERSION_MINOR).$(VERSION_POINT) -RPM_VERSION = $(VERSION) - -# The version is currently specified in config.h, which is -# written by "configure". -# -#VERSION_CFLAGS = -DVERSION_MAJOR=$(VERSION_MAJOR) \ -# -DVERSION_MINOR=$(VERSION_MINOR) \ -# -DVERSION_POINT=$(VERSION_POINT) \ -# -DVERSION="$(VERSION)" - -# Directories for "make install" -DEST = /etc/junkbuster -SBIN_DEST = @sbindir@ -MAN_DEST = @mandir@ - -# The flag "-mno-win32" can be used by Cygwin to emulate a un?x type install. -# The flag "-mwindows -mno-cygwin" will cause Cygwin to use MingW32 for Win32 install. -CYGWIN_FLAGS = @CYGWIN_FLAGS@ - -# Need to define this in order to link PCRE statically under Win32 -# Also define under UNIX to use system PCRE headers. -PCRE_WIN_FLAGS = @STATIC_PCRE_ONLY@-DSTATIC - -# Either/Or of these next two lines -#DEBUG_CFLAGS = -g -DEBUG_CFLAGS = -O3 - -# Solaris needs a special define: -# FIXME: This is always commented out -SOLARIS_FLAGS = @SOLARIS_ONLY@-D__EXTENSIONS__=1 - -# -DSTDC_HEADERS Now in config.h -# Do we need -DHAVE_STRING ??? -CFLAGS = @CFLAGS@ @CPPFLAGS@ \ - -D__MT__=1 -D__STDC__=1 $(SOLARIS_FLAGS) -DHAVE_STRING $(DEBUG_CFLAGS) \ - -Ipcre $(CYGWIN_FLAGS) $(PCRE_WIN_FLAGS) - -PROGRAM = junkbuster@EXEEXT@ -CC = gcc -ECHO = echo -GZIP = gzip -INSTALL = cp -f -LD = gcc -OBJEXT = @OBJEXT@ -RM = rm -f -STRIP = strip - -C_SRC = encode.c errlog.c filters.c gateway.c jbsockets.c jcc.c \ - killpopup.c loadcfg.c loaders.c miscutil.c parsers.c \ - showargs.c ssplit.c - -C_OBJS = $(C_SRC:.c=.$(OBJEXT)) -C_HDRS = $(C_SRC:.c=.h) project.h - -W32_SRC = @WIN_ONLY@w32log.c w32rulesdlg.c w32taskbar.c win32.c -W32_FILES = @WIN_ONLY@w32.res -W32_OBJS = @WIN_ONLY@$(W32_SRC:.c=.$(OBJEXT)) $(W32_FILES) -W32_HDRS = @WIN_ONLY@w32log.h w32res.h w32rulesdlg.h w32taskbar.h -W32_LIB = @WIN_ONLY@-lwsock32 -lcomctl32 -W32_INIS = @WIN_ONLY@junkbstr.txt saclfile.txt sblock.txt scookie.txt \ - @WIN_ONLY@sforward.txt simage.txt spopup.txt strust.txt sregexp.txt - -PCRS_SRC = @PCRS_ONLY@pcrs.c -PCRS_OBJS = $(PCRS_SRC:.c=.$(OBJEXT)) -PCRS_HDRS = $(PCRS_SRC:.c=.h) - -PCRE_SRC = @STATIC_PCRE_ONLY@pcre/get.c pcre/maketables.c pcre/study.c pcre/pcre.c -PCRE_OBJS = @STATIC_PCRE_ONLY@$(PCRE_SRC:.c=.$(OBJEXT)) -PCRE_HDRS = @STATIC_PCRE_ONLY@pcre/config.h pcre/chartables.c pcre/internal.h pcre/pcre.h -PCRE_LIB = @LIBRARY_PCRE_ONLY@-lpcre - -# No REGEX: -@NO_REGEX_ONLY@REGEX_SRC = -# Without PCRE: -@GNU_REGEX_ONLY@REGEX_SRC = gnu_regex.c -# With PCRE: -@PCRE_REGEX_ONLY@REGEX_SRC = @STATIC_PCRE_ONLY@pcre/pcreposix.c - -REGEX_OBJS = $(REGEX_SRC:.c=.$(OBJEXT)) -REGEX_HDRS = $(REGEX_SRC:.c=.h) - -# Dependencies introduced by #include "project.h". -PROJECT_H_DEPS = project.h $(REGEX_HDRS) $(PCRS_HDRS) @STATIC_PCRE_ONLY@pcre/pcre.h - -# Only need this on Solaris -# FIXME: This is always commented out -SOCKET_LIB = @SOLARIS_ONLY@-lsocket -lnsl - -LIBS = $(PCRE_LIB) $(W32_LIB) $(SOCKET_LIB) - -SRCS = $(C_SRC) $(W32_SRC) $(PCRS_SRC) $(PCRE_SRC) $(REGEX_SRC) -OBJS = $(C_OBJS) $(W32_OBJS) $(PCRS_OBJS) $(PCRE_OBJS) $(REGEX_OBJS) -HDRS = $(C_HDRS) $(W32_HDRS) $(PCRS_HDRS) $(PCRE_OBJS) $(REGEX_HDRS) - - -# ------------------------------------------------------------------------- -# Do not change anything below this line -# And there should NOT be any targets above this line. -# ------------------------------------------------------------------------- -LDFLAGS = $(DEBUG_CFLAGS) $(CYGWIN_FLAGS) - - -all: $(PROGRAM) - - -SUFFIX = .txt:o -.SUFFIXES : .txt - -%.txt: - sed -e 's/$$//' < $< > $@ - -inifiles: $(W32_INIS) - -junkbstr.txt: config - sed -e 's!\(/etc/junkbuster\|.\)/blocklist!sblock.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/popup!spopup.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/cookiefile!scookie.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/forward!sforward.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/trust!strust.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/aclfile!sacl.txt!' \ - -e 's!\(/var/log/junkbuster\|.\)/jarfile!jar.log!' \ - -e 's!\(/var/log/junkbuster\|.\)/junkbuster\.log!junkbstr.log!' \ - -e 's!\(/etc/junkbuster\|.\)/imagelist!simage.txt!' \ - -e 's!\(/etc/junkbuster\|.\)/re_filterfile!sregexp.txt!' \ - -e 's!$$!!' \ - < $< > $@ - -saclfile.txt: aclfile -sblock.txt: blocklist -scookie.txt: cookiefile -sforward.txt: forward -simage.txt: imagelist -spopup.txt: popup -strust.txt: trust -sregexp.txt: re_filterfile - - -# ------------------------------------------------------------------------- -# -# ------------------------------------------------------------------------- -rpm-dist: - @make clean -# verify that i'm root needs to be done - cd .. && tar --exclude "ijb/CVS" -cvzf ijb.tar.gz ijb/ -# verify all version strings, FLAGS, etc. in the spec file - cat ../../SPECS/junkbuster.spec | sed 's/^Version:.*/Version: $(RPM_VERSION)/g' | sed 's/^Release:.*/Release: $(VERSION_POINT)/g' > /tmp/abc && cp -f /tmp/abc ../../SPECS/junkbuster.spec - cd ../../ && rpm -ba SPECS/junkbuster.spec - chmod -R a+r ../../RPMS - chmod -R a+r ../../SRPMS - -# ------------------------------------------------------------------------- -# -# ------------------------------------------------------------------------- -win-dist: - $(ECHO) Not implemented. - -# ------------------------------------------------------------------------- -# -# ------------------------------------------------------------------------- -tarball-dist: - @make clean - make $(PROGRAM) -# remove all objects and create the tarball with the binary - cd .. && $(RM) ijb/a.out ijb/core ijb/*.$(OBJEXT) && tar --exclude "ijb/CVS" -cvzf ../ijb-distribution-$(VERSION).tar.gz ijb/ - chmod a+r ../../ijb-distribution-$(VERSION).tar.gz - @$(ECHO) Tarball with binary created. - -# ------------------------------------------------------------------------- -# -# ------------------------------------------------------------------------- - -encode.@OBJEXT@: encode.c encode.h config.h -errlog.@OBJEXT@: errlog.c errlog.h config.h $(PROJECT_H_DEPS) @WIN_ONLY@w32log.h -filters.@OBJEXT@: filters.c filters.h config.h $(PROJECT_H_DEPS) errlog.h encode.h gateway.h jbsockets.h jcc.h loadcfg.h parsers.h showargs.h ssplit.h @WIN_ONLY@win32.h -gateway.@OBJEXT@: gateway.c gateway.h config.h $(PROJECT_H_DEPS) errlog.h jbsockets.h jcc.h loadcfg.h -jbsockets.@OBJEXT@: jbsockets.c jbsockets.h config.h $(PROJECT_H_DEPS) filters.h -jcc.@OBJEXT@: jcc.c jcc.h config.h $(PROJECT_H_DEPS) errlog.h filters.h gateway.h jbsockets.h killpopup.h loadcfg.h loaders.h miscutil.h parsers.h showargs.h @WIN_ONLY@w32log.h win32.h -killpopup.@OBJEXT@: killpopup.c killpopup.h config.h $(PROJECT_H_DEPS) jcc.h loadcfg.h -loadcfg.@OBJEXT@: loadcfg.c loadcfg.h config.h $(PROJECT_H_DEPS) errlog.h filters.h gateway.h jbsockets.h jcc.h killpopup.h loaders.h miscutil.h parsers.h showargs.h @WIN_ONLY@w32log.h win32.h -loaders.@OBJEXT@: loaders.c loaders.h config.h $(PROJECT_H_DEPS) errlog.h encode.h filters.h gateway.h jcc.h loadcfg.h miscutil.h parsers.h ssplit.h -miscutil.@OBJEXT@: miscutil.c miscutil.h config.h -parsers.@OBJEXT@: parsers.c parsers.h config.h $(PROJECT_H_DEPS) errlog.h encode.h filters.h jbsockets.h jcc.h loadcfg.h loaders.h miscutil.h showargs.h ssplit.h -showargs.@OBJEXT@: showargs.c showargs.h config.h $(PROJECT_H_DEPS) errlog.h encode.h gateway.h jcc.h loadcfg.h miscutil.h parsers.h -ssplit.@OBJEXT@: ssplit.c ssplit.h config.h miscutil.h - -# GNU regex -gnu_regex.@OBJEXT@: gnu_regex.c gnu_regex.h config.h - -# PCRS -pcrs.@OBJEXT@: pcrs.c pcre/pcre.h pcrs.h - -# PCRE -pcre/get.@OBJEXT@: pcre/get.c pcre/config.h pcre/internal.h pcre/pcre.h -pcre/maketables.@OBJEXT@: pcre/maketables.c pcre/config.h pcre/internal.h pcre/pcre.h -pcre/pcre.@OBJEXT@: pcre/pcre.c pcre/config.h pcre/internal.h pcre/pcre.h pcre/chartables.c -pcre/pcreposix.@OBJEXT@: pcre/pcreposix.c pcre/config.h pcre/internal.h pcre/pcre.h pcre/pcreposix.h -pcre/study.@OBJEXT@: pcre/study.c pcre/config.h pcre/internal.h pcre/pcre.h - -# An auxiliary program makes the PCRE default character table source - -pcre/chartables.c: pcre/dftables - pcre/dftables >pcre/chartables.c - -pcre/dftables: pcre/dftables.c pcre/maketables.c pcre/pcre.h pcre/internal.h pcre/config.h - $(CC) -o pcre/dftables $(CFLAGS) pcre/dftables.c - -# Win32 -w32log.@OBJEXT@: w32log.c errlog.h config.h jcc.h loadcfg.h miscutil.h pcre/pcre.h pcre/pcreposix.h pcrs.h project.h w32log.h w32rulesdlg.h w32taskbar.h win32.h -w32rulesdlg.@OBJEXT@: w32rulesdlg.c config.h w32rulesdlg.h win32.h -w32taskbar.@OBJEXT@: w32taskbar.c config.h w32log.h w32taskbar.h -win32.@OBJEXT@: win32.c config.h jcc.h loadcfg.h pcre/pcre.h pcre/pcreposix.h pcrs.h project.h w32log.h win32.h - -w32.res: w32.rc w32res.h icons/denyrule.ico icons/ico00001.ico icons/ico00002.ico icons/ico00003.ico icons/ico00004.ico icons/ico00005.ico icons/ico00006.ico icons/ico00007.ico icons/ico00008.ico icons/icon1.ico icons/idle.ico icons/junkbust.ico config.h - windres -D__MINGW32__=0.2 -O coff -i $< -o $@ - - -$(PROGRAM): $(OBJS) $(W32_FILES) - $(LD) $(LDFLAGS) -o $(PROGRAM) $(OBJS) $(LIBS) - -clean: - $(RM) a.out core $(OBJS) $(W32_FILES) $(W32_INIS) - -clobber: clean - $(RM) $(PROGRAM) *.pdb *.lib *.exp TAGS junkbuster.log - -tags: $(SRCS) $(HDRS) - etags $(SRCS) $(HDRS) - -install: all - $(STRIP) $(PROGRAM) - $(INSTALL) $(PROGRAM) $(SBIN_DEST) - $(INSTALL) README README.TOO README.WIN README.re_filter README.cygwin $(DEST) - $(INSTALL) aclfile blocklist config cookiefile forward imagelist \ - popup re_filterfile trust $(DEST) - # FIXME: On SuSE, these are not found. Where do they go? - $(ECHO) junkbuster.logrotate junkbuster.monthly junkbuster.weekly - $(GZIP) -c junkbuster.1 > $(MAN_DEST)/junkbuster.1.gz - $(INSTALL) junkbuster.init /sbin/init.d/junkbuster - - -## Local Variables: -## tab-width: 3 -## end: diff --git a/PACKAGERS b/PACKAGERS new file mode 100644 index 00000000..8f2beac5 --- /dev/null +++ b/PACKAGERS @@ -0,0 +1,28 @@ + + DO NOT INCLUDE THIS FILE IN ANY DISTRO !!!! + + (or users may contact these people directly, + which would like to avoid. Users should + always use the support forum or user + mailinglist). + +Responsible persons for releasing packages are ... + +Amiga .......: Jörg Strohmayer (joergs) +Conectiva ...: Rodrigo Barbosa (morcego) +Debian ......: Roland Rosenfeld (roro) +FreeBSD .....: ? +HP-UX .......: Schelstraete Bart (bart1803) +Mac OSX .....: David Schmidt (david__schmidt) +NetBSD ......: ? +OS/2 ........: David Schmidt (david__schmidt) +RedHat ......: Rodrigo Barbosa (morcego) + Karsten Hopp (kick_) + Hal Burgiss (hal9) +RedHat 6.x ..: Karsten Hopp (kick_) +Solaris .....: Schelstraete Bart (bart1803) +SuSE ........: Stephan Waldherr (swa) +Windows .....: Jon Foster (jongfoster) + Gábor Lipták (gliptak) + + diff --git a/README b/README new file mode 100644 index 00000000..705c989c --- /dev/null +++ b/README @@ -0,0 +1,244 @@ +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/doc/source/readme.sgml,v $ + * + * Purpose : README file to give a short intro. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + *********************************************************************/ + +This README is included with the development version of Privoxy 2.9.15, which +will eventually become Privoxy v3.0 (and soon we hope!). See http:// +www.privoxy.org/ for more information. The current code level is beta, and +seems stable to us :). + +------------------------------------------------------------------------------- + +Table of Contents +1. IMPORTANT CHANGES +2. INSTALL +3. RUN +4. CONFIGURATION +5. DOCUMENTATION +6. CONTACTING THE DEVELOPERS, BUG REPORTING AND FEATURE REQUESTS + + 6.1. Get Support + 6.2. Report bugs + 6.3. Request new features + 6.4. Report ads or other filter problems + 6.5. Other + +Privoxy is a web proxy with advanced filtering capabilities for protecting +privacy, filtering web page content, managing cookies, controlling access, and +removing ads, banners, pop-ups and other obnoxious Internet junk. Privoxy has a +very flexible configuration and can be customized to suit individual needs and +tastes. Privoxy has application for both stand-alone systems and multi-user +networks. + +Privoxy is based on Internet Junkbuster (tm). + +------------------------------------------------------------------------------- + +1. IMPORTANT CHANGES + +NEWS! As of 03/24/02, the name of this project has been changed from ijbswa/ +Junkbuster to Privoxy. This is reflected in many of the included files. + +WARNING! If upgrading from earlier versions of this project via RPM packages, +the new package will delete any previously installed 'Junkbuster' packages. + +IMPORTANT! READ! Configuration Change as of 17 Mar 2002: The default listening +port is now 8118 due to conflicts with port 8000 assignment. You will need to +change your browser if upgrading!!! And maybe firewall, etc. + +------------------------------------------------------------------------------- + +2. INSTALL + +To build Privoxy from source, autoconf, GNU make (gmake), and, of course, a C +compiler like gcc are required. + +When building from a source tarball (either release version or nightly CVS +tarball), first unpack the source: + + tar xzvf privoxy-2.9.15-beta-src* [.tgz or .tar.gz] + cd privoxy-2.9.15-beta + +For retrieving the current CVS sources, you'll need CVS installed. Note that +sources from CVS are development quality, and may not be stable, or well +tested. To download CVS source: + + cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co current + cd current + +This will create a directory named current/, which will contain the source +tree. + +Then, in either case, to build from unpacked tarball or CVS source: + + autoheader + autoconf + ./configure # (--help to see options) + make # (the make from gnu, gmake for *BSD) + su + make -n install # (to see where all the files will go) + make install # (to really install) + +If you have gnu make, you can have the first four steps automatically done for +you by just typing: + + make + +in the freshly downloaded or unpacked source directory. + +For more detailed instructions on how to build Redhat and SuSE RPMs, Windows +self-extracting installers, building on platforms with special requirements +etc, please consult the developer manual. + +For binary RPM installation, and other platforms, see the user-manual as well. + +------------------------------------------------------------------------------- + +3. RUN + +privoxy [--help] [--version] [--no-daemon] [--pidfile PIDFILE] [--user USER +[.GROUP]] [config_file] + +See the man page or user-manual for a brief explanation of each option. + +If no config_file is specified on the command line, Privoxy will look for a +file named 'config' in the current directory (except Win32 which will look for +'config.txt'). If no config_file is found, Privoxy will fail to start. + +Or for Red Hat: /etc/rc.d/init.d/privoxy start + +Or for SuSE: /etc/rc.d/privoxy start + +------------------------------------------------------------------------------- + +4. CONFIGURATION + +See: 'config', 'default.action', 'user.action', and 'default.filter'. +'user.action' is for personal configuration. These are all well commented. Most +of the magic is in '*.action' files. 'user.action' should be used for any +actions customizations. On Unix-like systems, these files are installed in /etc +/privoxy. On Windows, then wherever the executable itself is installed. There +are many significant changes and advances since Junkbuster v2.0.x. The +user-manual has a run down of configuration options, and examples: http:// +www.privoxy.org/user-manual/. + +Be sure to set your browser(s) for HTTP/HTTPS Proxy at :, or whatever +you specify in the config file under 'listen-address'. DEFAULT is localhost: +8118. + +The actions list can be configured via the web interface accessed via http:// +p.p/, as well other options. + +All configuration files are subject to unannounced changes during the +development process. + +------------------------------------------------------------------------------- + +5. DOCUMENTATION + +There should be documentation in the 'doc' subdirectory, but it is not +completed at this point. In particular, see the user-manual there, the faq, and +those interested in Privoxy development, should look at developer-manual. + +The most up to date source of information on the current development version, +may still be either comments in the source code, or the included configuration +files. The source and configuration files are all well commented. The main +configuration files are: 'config', 'default.action', and 'default.filter' in +the toplevel source directory. + +Included documentation may vary according to platform and packager. + +------------------------------------------------------------------------------- + +6. CONTACTING THE DEVELOPERS, BUG REPORTING AND FEATURE REQUESTS + +We value your feedback. However, to provide you with the best support, please +note the following sections. + +------------------------------------------------------------------------------- + +6.1. Get Support + +To get support, use the Sourceforge Support Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=211118 + +------------------------------------------------------------------------------- + +6.2. Report bugs + +To submit bugs, use the Sourceforge Bug Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=111118. + +Make sure that the bug has not already been submitted. Please try to verify +that it is a Privoxy bug, and not a browser or site bug first. If you are using +your own custom configuration, please try the stock configs to see if the +problem is a configuration related bug. And if not using the latest development +snapshot, please try the latest one. Or even better, CVS sources. Please be +sure to include the Privoxy version, platform, browser, any pertinent log data, +any other relevant details (please be specific) and, if possible, some way to +reproduce the bug. + +------------------------------------------------------------------------------- + +6.3. Request new features + +To submit ideas on new features, use the Sourceforge feature request forum: + + http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse. + +------------------------------------------------------------------------------- + +6.4. Report ads or other filter problems + +You can also send feedback on websites that Privoxy has problems with. Please +bookmark the following link: "Privoxy - Submit Filter Feedback". Once you surf +to a page with problems, use the bookmark to send us feedback. We will look +into the issue as soon as possible. + +New, improved default.action files will occasionally be made available based on +your feedback. These will be announced on the ijbswa-announce list. + +------------------------------------------------------------------------------- + +6.5. Other + +For any other issues, feel free to use the mailing lists: + + http://sourceforge.net/mail/?group_id=11118. + +Anyone interested in actively participating in development and related +discussions can also join the appropriate mailing list. Archives are available, +too. See the page on Sourceforge. + diff --git a/acconfig.h b/acconfig.h index edf5c08a..fa6706b5 100644 --- a/acconfig.h +++ b/acconfig.h @@ -1,8 +1,8 @@ -#ifndef _CONFIG_H -#define _CONFIG_H +#ifndef CONFIG_H_INCLUDED +#define CONFIG_H_INCLUDED /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/acconfig.h,v $ + * File : $Source: /cvsroot/ijbswa/current/acconfig.h,v $ * * Purpose : This file should be the first thing included in every * .c file. (Before even system headers). It contains @@ -11,7 +11,7 @@ * getting ludicrously long with feature defines. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -37,6 +37,168 @@ * * Revisions : * $Log: acconfig.h,v $ + * Revision 1.26 2002/04/11 11:00:21 oes + * Applied Moritz' fix for socklen_t on Solaris + * + * Revision 1.25 2002/04/06 20:38:01 jongfoster + * Renaming VC++ versions of config.h + * + * Revision 1.24 2002/04/04 00:36:36 gliptak + * always use pcre for matching + * + * Revision 1.23 2002/04/03 22:28:03 gliptak + * Removed references to gnu_regex + * + * Revision 1.22 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.21 2002/03/24 14:31:08 swa + * remove more crappy files. set RPM + * release version correctly. + * + * Revision 1.20 2002/03/24 13:46:44 swa + * name change related issue. + * + * Revision 1.19 2002/03/24 13:25:42 swa + * name change related issues + * + * Revision 1.18 2002/03/08 16:40:28 oes + * Added FEATURE_NO_GIFS + * + * Revision 1.17 2002/03/04 17:52:44 oes + * Deleted PID_FILE_PATH + * + * Revision 1.16 2002/01/10 12:36:18 oes + * Moved HAVE_*_R to acconfig.h, where they belong. + * + * Revision 1.15 2001/12/30 14:07:31 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.14 2001/10/23 21:24:09 jongfoster + * Support for FEATURE_CGI_EDIT_ACTIONS + * + * Revision 1.13 2001/10/07 15:30:41 oes + * Removed FEATURE_DENY_GZIP + * + * Revision 1.12 2001/09/13 19:56:37 jongfoster + * Reverting to revision 1.10 - previous checking was majorly broken. + * + * Revision 1.10 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.9 2001/07/29 19:08:52 jongfoster + * Changing _CONFIG_H to CONFIG_H_INCLUDED. + * Also added protection against using a MinGW32 or CygWin version of + * config.h from within MS Visual C++ + * + * Revision 1.8 2001/07/29 17:09:17 jongfoster + * Major changes to build system in order to fix these bugs: + * - pthreads under Linux was broken - changed -lpthread to -pthread + * - Compiling in MinGW32 mode under CygWin now correctly detects + * which shared libraries are available + * - Solaris support (?) (Not tested under Solaris yet) + * + * Revision 1.7 2001/07/25 22:53:59 jongfoster + * Will #error if pthreads is enabled under BeOs + * + * Revision 1.6 2001/07/15 17:54:29 jongfoster + * Renaming #define STATIC to STATIC_PCRE + * Adding new #define FEATURE_PTHREAD that will be used to enable + * POSIX threads support. + * + * Revision 1.5 2001/07/13 13:48:37 oes + * - (Fix:) Copied CODE_STATUS #define from config.h.in + * - split REGEX #define into REGEX_GNU and REGEX_PCRE + * and removed PCRE. + * (REGEX = REGEX_GNU || REGEX_PCRE per project.h) + * - Moved STATIC (for pcre) here from Makefile.in + * - Introduced STATIC_PCRS #define to allow for dynaimc linking with + * libpcrs + * - Removed PCRS #define, since pcrs is now needed for CGI anyway + * + * Revision 1.4 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.3 2001/05/26 01:26:34 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * + * Revision 1.2 2001/05/22 17:43:35 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Many minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.1.1.1 2001/05/15 13:58:45 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -63,62 +225,67 @@ #undef VERSION /* - * Regular expression matching for URLs. (Highly recommended). If this is - * not defined then you can ony use prefix matching. + * Status of the code: "alpha", "beta" or "stable". */ -#undef REGEX +#undef CODE_STATUS -/* - * Allow JunkBuster to be "disabled" so it is just a normal non-blocking - * non-anonymizing proxy. This is useful if you're trying to access a - * blocked or broken site - just change the setting in the config file - * and send a SIGHUP (UN*X), or use the handy "Disable" menu option (Windows - * GUI). +/* + * Should pcre be statically built in instead of linkling with libpcre? + * (This is determined by configure depending on the availiability of + * libpcre and user preferences). The name is ugly, but pcre needs it. + * Don't bother to change this here! Use configure instead. */ -#undef TOGGLE +#undef STATIC_PCRE -/* - * Enables arbitrary content modification regexps +/* + * Should pcrs be statically built in instead of linkling with libpcrs? + * (This is determined by configure depending on the availiability of + * libpcrs and user preferences). + * Don't bother to change this here! Use configure instead. */ -#undef PCRS +#undef STATIC_PCRS /* - * If a stream is compressed via gzip (Netscape specific I think), then - * it cannot be modified with Perl regexps. This forces it to be - * uncompressed. + * Allows the use of an ACL to control access to the proxy by IP address. */ -#undef DENY_GZIP +#undef FEATURE_ACL /* - * Enables statistics function. + * Enables the web-based configuration (actionsfile) editor. If you + * have a shared proxy, you might want to turn this off. */ -#undef STATISTICS +#undef FEATURE_CGI_EDIT_ACTIONS /* - * Bypass filtering for 1 page only + * Allows the use of jar files to capture cookies. */ -#undef FORCE_LOAD +#undef FEATURE_COOKIE_JAR /* - * Split the show-proxy-args page into a page for each config file. + * Locally redirect remote script-redirect URLs */ -#undef SPLIT_PROXY_ARGS +#undef FEATURE_FAST_REDIRECTS /* - * Kills JavaScript popups - window.open, onunload, etc. + * Bypass filtering for 1 page only */ -#undef KILLPOPUPS +#undef FEATURE_FORCE_LOAD /* - * Support for webDAV - e.g. so Microsoft Outlook can access HotMail e-mail + * Allow blocking using images as well as HTML. + * If you do not define this then everything is blocked as HTML. + * + * Note that this is required if you want to use FEATURE_IMAGE_DETECT_MSIE. */ -#undef WEBDAV +#undef FEATURE_IMAGE_BLOCKING /* * Detect image requests automatically for MSIE. Will fall back to - * other image-detection methods (i.e. USE_IMAGE_LIST) for other + * other image-detection methods (i.e. "+image" permission) for other * browsers. * + * You must also define FEATURE_IMAGE_BLOCKING to use this feature. + * * It detects the following header pair as an image request: * * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) @@ -142,37 +309,120 @@ * These limitations are due to IE making inconsistent choices * about which "Accept:" header to send. */ -#undef DETECT_MSIE_IMAGES +#undef FEATURE_IMAGE_DETECT_MSIE /* - * Use image list to detect images. - * If you do not define this then everything is treated as HTML. - * - * Whatever the setting of this value, DETECT_MSIE_IMAGES will - * override it for people using Internet Explorer. + * Kills JavaScript popups - window.open, onunload, etc. */ -#undef USE_IMAGE_LIST +#undef FEATURE_KILL_POPUPS /* - * Allows the use of ACL files to control access to the proxy by IP address. + * Use PNG instead of GIF for built-in images + */ +#undef FEATURE_NO_GIFS + +/* + * Use POSIX threads instead of native threads. + */ +#undef FEATURE_PTHREAD + +/* + * Enables statistics function. */ -#undef ACL_FILES +#undef FEATURE_STATISTICS + +/* + * Allow Privoxy to be "disabled" so it is just a normal non-blocking + * non-anonymizing proxy. This is useful if you're trying to access a + * blocked or broken site - just change the setting in the config file, + * or use the handy "Disable" menu option in the Windows GUI. + */ +#undef FEATURE_TOGGLE /* * Allows the use of trust files. */ -#undef TRUST_FILES +#undef FEATURE_TRUST /* - * Allows the use of jar files to capture cookies. + * Defined on Solaris only. Makes the system libraries thread safe. */ -#undef JAR_FILES +#undef _REENTRANT /* - * Use PCRE rather than GNU Regex + * Defined on Solaris only. Without this, many important functions are not + * defined in the system headers. + */ +#undef __EXTENSIONS__ + +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with MultiThreading?) + */ +#undef __MT__ + +/* If the (nonstandard and thread-safe) function gethostbyname_r + * is available, select which signature to use */ -#undef PCRE +#undef HAVE_GETHOSTBYNAME_R_6_ARGS +#undef HAVE_GETHOSTBYNAME_R_5_ARGS +#undef HAVE_GETHOSTBYNAME_R_3_ARGS + +/* If the (nonstandard and thread-safe) function gethostbyaddr_r + * is available, select which signature to use + */ +#undef HAVE_GETHOSTBYADDR_R_8_ARGS +#undef HAVE_GETHOSTBYADDR_R_7_ARGS +#undef HAVE_GETHOSTBYADDR_R_5_ARGS + +/* Define if you have gmtime_r and localtime_r with a signature + * of (struct time *, struct tm *) + */ +#undef HAVE_GMTIME_R +#undef HAVE_LOCALTIME_R + +/* Define to 'int' if doesn't have it. + */ +#undef socklen_t + @BOTTOM@ -#endif /* _CONFIG_H */ +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with ANSI Standard C?) + */ +#ifndef __STDC__ +#define __STDC__ 1 +#endif /* ndef __STDC__ */ + +/* + * Need to set up this define only for the Pthreads library for + * Win32, available from http://sources.redhat.com/pthreads-win32/ + */ +#if defined(FEATURE_PTHREAD) && defined(_WIN32) +#define __CLEANUP_C +#endif /* defined(FEATURE_PTHREAD) && defined(_WIN32) */ + +/* + * BEOS does not currently support POSIX threads. + * This *should* be detected by ./configure, but let's be sure. + */ +#if defined(FEATURE_PTHREAD) && defined(__BEOS__) +#error BEOS does not support pthread - please run ./configure again with "--disable-pthread" + +#endif /* defined(FEATURE_PTHREAD) && defined(__BEOS__) */ + + +/* + * It's too easy to accidentally use a Cygwin or MinGW32 version of config.h + * under VC++, and it usually gives many wierd error messages. Let's make + * the error messages understandable, by bailing out now. + */ +#ifdef _MSC_VER +#error For MS VC++, please use vc_config_winthreads.h or vc_config_pthreads.h. You can usually do this by selecting the "Build", "Clean" menu option. +#endif /* def _MSC_VER */ + +#endif /* CONFIG_H_INCLUDED */ diff --git a/aclfile b/aclfile deleted file mode 100644 index 6a265a89..00000000 --- a/aclfile +++ /dev/null @@ -1,102 +0,0 @@ -# Access Control List for the Internet Junkbuster 2.0 -# -# Copyright 1997-8 Junkbusters Corp. For distribution, modification and use -# under the GNU General Public License. These files come with NO WARRANTY. -# See http://www.junkbusters.com/ht/en/gpl.html or README file for details. -# -# Access controls are included at the request of some ISPs and systems -# administrators, and are not usually needed by individual users. -# Please note the warnings in the FAQ that this proxy is not -# intended to be a substitute for a firewall or to encourage anyone -# to defer addressing basic security weaknesses. -# For details see http://www.junkbusters.com/ht/en/ijbman.html#aclfile - -# For this file to have any effect, the line beginning "aclfile" -# must be commented in, with the name of this file following the word "aclfile" - -# If no access file is specified, the proxy talks to anyone that connects. -# If an access file is specified, the proxy talks only to IP addresses -# permitted somewhere in this file and not denied later in this file. -# -# Summary -- if using an ACL: -# -# Client must have permission to receive service -# LAST match in ACL file wins -# Default behavior is to deny service -# -# Syntax for an entry in an Access Control List is: -# -# ACTION SRC_ADDR[/SRC_MASKLEN] [ DST_ADDR[/DST_MASKLEN] ] -# -# where the fields are -# -# ACTION = "permit" | "deny" -# -# SRC_ADDR = client hostname or dotted IP address -# SRC_MASKLEN = number of bits in the subnet mask for the source -# -# DST_ADDR = server or forwarder hostname or dotted IP address -# DST_MASKLEN = number of bits in the subnet mask for the target -# -# field separator (FS) is whitespace (space or tab) -# -# IMPORTANT NOTE -# ============== -# If the junkbuster is using a forwarder or a gateway for a particular -# destination URL, the DST_ADDRR that is examined is the address of -# the forwarder or the gateway and NOT the address of the ultimate target. -# This is necessary because it may be impossible for the local -# junkbuster to determine the address of the ultimate target -# (that's often what gateways are used for). -# -# Here are a few examples to show how the ACL works: - -# localhost is OK -- no DST_ADDR implies that ALL destination addresses are OK -# permit localhost - -# a silly example to illustrate: -# -# permit any host on the class-C subnet with junkbusters to go anywhere -# -# permit www.junkbusters.com/24 -# -# except deny one particular IP address from using it at all -# -# deny ident.junkbusters.com - -# another example -# -# You can specify an explicit network address and subnet mask. -# Explicit addresses do not have to be resolved to be used. -# -# permit 207.153.200.0/24 - -# a subnet mask of 0 matches anything, so the next line permits everyone. -# -# permit 0.0.0.0/0 - -# Note: you cannot say -# -# permit .org -# -# to allow all .org domains; every IP-address listed must resolve fully. - -# An ISP may want to provide a junkbuster that is accessible by "the world" -# and yet restrict use of some of their private content to hosts on its -# internal network (i.e. its own subscribers). Say, for instance the -# ISP owns the Class-B IP address block 123.124.0.0 (a 16 bit netmask). -# This is how they could do it: - -# permit 0.0.0.0/0 0.0.0.0/0 # other clients can go anywhere -# with the following exceptions: -# -# deny 0.0.0.0/0 123.124.0.0/16 # block all external requests for -# sites on the ISP's network -# -# permit 0.0.0.0/0 www.my_isp.com # except for the ISP's main web site -# -# permit 123.124.0.0/16 0.0.0.0/0 # the ISP's clients can go anywhere - -# Note that some hostnames may be listed with multiple IP addresses; -# the primary value returned by gethostbyname() is used. -# diff --git a/actionlist.h b/actionlist.h new file mode 100644 index 00000000..34b824bc --- /dev/null +++ b/actionlist.h @@ -0,0 +1,170 @@ +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/actionlist.h,v $ + * + * Purpose : Master list of supported actions. + * Not really a header, since it generates code. + * This is included (3 times!) from actions.c + * Each time, the following macros are defined to + * suitable values beforehand: + * DEFINE_ACTION_MULTI() + * DEFINE_ACTION_STRING() + * DEFINE_ACTION_BOOL() + * DEFINE_ACTION_ALIAS + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: actionlist.h,v $ + * Revision 1.16 2002/04/24 02:15:18 oes + * Renamed actions as discussed, Aliased old action names to new ones. + * + * Revision 1.15 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.14 2002/03/24 16:32:08 jongfoster + * Removing logo option + * + * Revision 1.13 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.12 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.11 2002/03/12 01:42:49 oes + * Introduced modular filters + * + * Revision 1.10 2002/03/08 18:19:14 jongfoster + * Adding +image-blocker{pattern} option to edit interface + * + * Revision 1.9 2001/11/22 21:58:41 jongfoster + * Adding action +no-cookies-keep + * + * Revision 1.8 2001/10/10 16:42:52 oes + * Fixed a bug, Added +limit-connect string action + * + * Revision 1.7 2001/10/07 15:33:59 oes + * Introduced a +no-compression action + * Introduced a +downgrade action + * + * Revision 1.6 2001/09/16 15:47:37 jongfoster + * First version of CGI-based edit interface. This is very much a + * work-in-progress, and you can't actually use it to edit anything + * yet. You must #define FEATURE_CGI_EDIT_ACTIONS for these changes + * to have any effect. + * + * Revision 1.5 2001/07/18 12:27:03 oes + * Changed deanimate-gifs to string action + * + * Revision 1.4 2001/07/13 13:52:12 oes + * - Formatting + * - Introduced new action ACTION_DEANIMATE + * + * Revision 1.3 2001/06/07 23:03:56 jongfoster + * Added standard comment at top of file. + * + * + *********************************************************************/ + + +#if !(defined(DEFINE_ACTION_BOOL) && defined(DEFINE_ACTION_MULTI) && defined(DEFINE_ACTION_STRING)) +#error Please define lots of macros before including "actionlist.h". +#endif /* !defined(all the DEFINE_ACTION_xxx macros) */ + +#ifndef DEFINE_CGI_PARAM_RADIO +#define DEFINE_CGI_PARAM_RADIO(name, bit, index, value, is_default) +#define DEFINE_CGI_PARAM_CUSTOM(name, bit, index, default_val) +#define DEFINE_CGI_PARAM_NO_RADIO(name, bit, index, default_val) +#endif /* ndef DEFINE_CGI_PARAM_RADIO */ + +DEFINE_ACTION_MULTI ("add-header", ACTION_MULTI_ADD_HEADER) +DEFINE_ACTION_BOOL ("block", ACTION_BLOCK) +DEFINE_ACTION_BOOL ("crunch-incoming-cookies", ACTION_NO_COOKIE_SET) +DEFINE_ACTION_BOOL ("crunch-outgoing-cookies", ACTION_NO_COOKIE_READ) +DEFINE_ACTION_STRING ("deanimate-gifs", ACTION_DEANIMATE, ACTION_STRING_DEANIMATE) +DEFINE_CGI_PARAM_RADIO ("deanimate-gifs", ACTION_DEANIMATE, ACTION_STRING_DEANIMATE, "first", 0) +DEFINE_CGI_PARAM_RADIO ("deanimate-gifs", ACTION_DEANIMATE, ACTION_STRING_DEANIMATE, "last", 1) +DEFINE_ACTION_BOOL ("downgrade-http-version", ACTION_DOWNGRADE) +DEFINE_ACTION_BOOL ("fast-redirects", ACTION_FAST_REDIRECTS) +DEFINE_ACTION_MULTI ("filter", ACTION_MULTI_FILTER) +DEFINE_ACTION_BOOL ("handle-as-image", ACTION_IMAGE) +DEFINE_ACTION_BOOL ("hide-forwarded-for-headers", ACTION_HIDE_FORWARDED) +DEFINE_ACTION_STRING ("hide-from-header", ACTION_HIDE_FROM, ACTION_STRING_FROM) +DEFINE_CGI_PARAM_RADIO ("hide-from-header", ACTION_HIDE_FROM, ACTION_STRING_FROM, "block", 1) +DEFINE_CGI_PARAM_CUSTOM ("hide-from-header", ACTION_HIDE_FROM, ACTION_STRING_FROM, "spam_me_senseless@sittingduck.xyz") +DEFINE_ACTION_STRING ("hide-referer", ACTION_HIDE_REFERER, ACTION_STRING_REFERER) +DEFINE_CGI_PARAM_RADIO ("hide-referer", ACTION_HIDE_REFERER, ACTION_STRING_REFERER, "forge", 1) +DEFINE_CGI_PARAM_RADIO ("hide-referer", ACTION_HIDE_REFERER, ACTION_STRING_REFERER, "block", 0) +DEFINE_CGI_PARAM_CUSTOM ("hide-referer", ACTION_HIDE_REFERER, ACTION_STRING_REFERER, "http://www.google.com/") +DEFINE_ACTION_STRING ("hide-user-agent", ACTION_HIDE_USER_AGENT, ACTION_STRING_USER_AGENT) +DEFINE_CGI_PARAM_NO_RADIO("hide-user-agent", ACTION_HIDE_USER_AGENT, ACTION_STRING_USER_AGENT, "Privoxy/3.0 (Anonymous)") +DEFINE_ACTION_BOOL ("kill-popups", ACTION_NO_POPUPS) +DEFINE_ACTION_STRING ("limit-connect", ACTION_LIMIT_CONNECT, ACTION_STRING_LIMIT_CONNECT) +DEFINE_CGI_PARAM_NO_RADIO("limit-connect", ACTION_LIMIT_CONNECT, ACTION_STRING_LIMIT_CONNECT, "443") +DEFINE_ACTION_BOOL ("prevent-compression", ACTION_NO_COMPRESSION) +DEFINE_ACTION_BOOL ("send-vanilla-wafer", ACTION_VANILLA_WAFER) +DEFINE_ACTION_MULTI ("send-wafer", ACTION_MULTI_WAFER) +DEFINE_ACTION_BOOL ("session-cookies-only", ACTION_NO_COOKIE_KEEP) +DEFINE_ACTION_STRING ("set-image-blocker", ACTION_IMAGE_BLOCKER, ACTION_STRING_IMAGE_BLOCKER) +DEFINE_CGI_PARAM_RADIO ("set-image-blocker", ACTION_IMAGE_BLOCKER, ACTION_STRING_IMAGE_BLOCKER, "pattern", 1) +DEFINE_CGI_PARAM_RADIO ("set-image-blocker", ACTION_IMAGE_BLOCKER, ACTION_STRING_IMAGE_BLOCKER, "blank", 0) +DEFINE_CGI_PARAM_CUSTOM ("set-image-blocker", ACTION_IMAGE_BLOCKER, ACTION_STRING_IMAGE_BLOCKER, CGI_PREFIX "show-banner?type=pattern") + + +#if DEFINE_ACTION_ALIAS + +/* + * Alternative spellings + */ +DEFINE_ACTION_BOOL ("kill-popup", ACTION_NO_POPUPS) +DEFINE_ACTION_STRING ("hide-referrer", ACTION_HIDE_REFERER, ACTION_STRING_REFERER) +DEFINE_ACTION_BOOL ("prevent-keeping-cookies", ACTION_NO_COOKIE_KEEP) + +/* + * Pre-3.0 compatibility + */ +DEFINE_ACTION_BOOL ("prevent-reading-cookies", ACTION_NO_COOKIE_READ) +DEFINE_ACTION_BOOL ("prevent-setting-cookies", ACTION_NO_COOKIE_SET) +DEFINE_ACTION_BOOL ("downgrade", ACTION_DOWNGRADE) +DEFINE_ACTION_BOOL ("hide-forwarded", ACTION_HIDE_FORWARDED) +DEFINE_ACTION_STRING ("hide-from", ACTION_HIDE_FROM, ACTION_STRING_FROM) +DEFINE_ACTION_BOOL ("image", ACTION_IMAGE) +DEFINE_ACTION_STRING ("image-blocker", ACTION_IMAGE_BLOCKER, ACTION_STRING_IMAGE_BLOCKER) +DEFINE_ACTION_BOOL ("no-compression", ACTION_NO_COMPRESSION) +DEFINE_ACTION_BOOL ("no-cookies-keep", ACTION_NO_COOKIE_KEEP) +DEFINE_ACTION_BOOL ("no-cookies-read", ACTION_NO_COOKIE_READ) +DEFINE_ACTION_BOOL ("no-cookies-set", ACTION_NO_COOKIE_SET) +DEFINE_ACTION_BOOL ("no-popups", ACTION_NO_POPUPS) +#endif /* if DEFINE_ACTION_ALIAS */ + +#undef DEFINE_ACTION_MULTI +#undef DEFINE_ACTION_STRING +#undef DEFINE_ACTION_BOOL +#undef DEFINE_ACTION_ALIAS +#undef DEFINE_CGI_PARAM_CUSTOM +#undef DEFINE_CGI_PARAM_RADIO +#undef DEFINE_CGI_PARAM_NO_RADIO + diff --git a/actions.c b/actions.c new file mode 100644 index 00000000..4b31f7fe --- /dev/null +++ b/actions.c @@ -0,0 +1,1653 @@ +const char actions_rcs[] = "$Id: actions.c,v 1.31 2002/05/06 07:56:50 oes Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/actions.c,v $ + * + * Purpose : Declares functions to work with actions files + * Functions declared include: FIXME + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: actions.c,v $ + * Revision 1.31 2002/05/06 07:56:50 oes + * Made actions_to_html independent of FEATURE_CGI_EDIT_ACTIONS + * + * Revision 1.30 2002/04/30 11:14:52 oes + * Made csp the first parameter in *action_to_html + * + * Revision 1.29 2002/04/26 19:30:54 jongfoster + * - current_action_to_html(): Adding help link for the "-" form of + * one-string actions. + * - Some actions had "
-", some "
-" (note the space). + * Standardizing on no space. + * - Greatly simplifying some of the code by using string_join() + * where appropriate. + * + * Revision 1.28 2002/04/26 12:53:15 oes + * - CGI AF editor now writes action lines split into + * single lines with line continuation + * - actions_to_html now embeds each action name in + * link to chapter + * - current_action_to_text is now called current_action_to_html + * and acts like actions_to_html + * + * Revision 1.27 2002/04/24 02:10:31 oes + * - Jon's patch for multiple AFs: + * - split load_actions_file, add load_one_actions_file + * - make csp->actions_list files an array + * - remember file id with each action + * - Copy_action now frees dest action before copying + * + * Revision 1.26 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.25 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.24 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.23 2002/03/07 03:46:16 oes + * Fixed compiler warnings + * + * Revision 1.22 2002/01/21 00:27:02 jongfoster + * Allowing free_action(NULL). + * Moving the functions that #include actionlist.h to the end of the file, + * because the Visual C++ 97 debugger gets extremely confused if you try + * to debug any code that comes after them in the file. + * + * Revision 1.21 2002/01/17 20:54:44 jongfoster + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Revision 1.20 2001/11/22 21:56:49 jongfoster + * Making action_spec->flags into an unsigned long rather than just an + * unsigned int. + * Fixing a bug in the display of -add-header and -wafer + * + * Revision 1.19 2001/11/13 00:14:07 jongfoster + * Fixing stupid bug now I've figured out what || means. + * (It always returns 0 or 1, not one of it's paramaters.) + * + * Revision 1.18 2001/11/07 00:06:06 steudten + * Add line number in error output for lineparsing for + * actionsfile. + * + * Revision 1.17 2001/10/25 03:40:47 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.16 2001/10/23 21:30:30 jongfoster + * Adding error-checking to selected functions. + * + * Revision 1.15 2001/10/14 21:58:22 jongfoster + * Adding support for the CGI-based editor: + * - Exported get_actions() + * - Added new function free_alias_list() + * - Added support for {{settings}} and {{description}} blocks + * in the actions file. They are currently ignored. + * - Added restriction to only one {{alias}} block which must appear + * first in the file, to simplify the editor's rewriting rules. + * - Note that load_actions_file() is no longer used by the CGI-based + * editor, but some of the other routines in this file are. + * + * Revision 1.14 2001/09/22 16:36:59 jongfoster + * Removing unused parameter fs from read_config_line() + * + * Revision 1.13 2001/09/16 15:47:37 jongfoster + * First version of CGI-based edit interface. This is very much a + * work-in-progress, and you can't actually use it to edit anything + * yet. You must #define FEATURE_CGI_EDIT_ACTIONS for these changes + * to have any effect. + * + * Revision 1.12 2001/09/16 13:21:27 jongfoster + * Changes to use new list functions. + * + * Revision 1.11 2001/09/14 00:17:32 jongfoster + * Tidying up memory allocation. New function init_action(). + * + * Revision 1.10 2001/09/10 10:14:34 oes + * Removing unused variable + * + * Revision 1.9 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.8 2001/06/29 13:19:52 oes + * Removed logentry from cancelled commit + * + * Revision 1.7 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.6 2001/06/07 23:04:34 jongfoster + * Made get_actions() static. + * + * Revision 1.5 2001/06/03 19:11:48 oes + * adapted to new enlist_unique arg format + * + * Revision 1.4 2001/06/01 20:03:42 jongfoster + * Better memory management - current_action->strings[] now + * contains copies of the strings, not the original. + * + * Revision 1.3 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.2 2001/05/31 21:40:00 jongfoster + * Removing some commented out, obsolete blocks of code. + * + * Revision 1.1 2001/05/31 21:16:46 jongfoster + * Moved functions to process the action list into this new file. + * + * + *********************************************************************/ + + +#include "config.h" + +#include +#include +#include +#include + +#include "project.h" +#include "jcc.h" +#include "list.h" +#include "actions.h" +#include "miscutil.h" +#include "errlog.h" +#include "loaders.h" +#include "encode.h" +#include "urlmatch.h" +#include "cgi.h" + +const char actions_h_rcs[] = ACTIONS_H_VERSION; + + +/* + * We need the main list of options. + * + * First, we need a way to tell between boolean, string, and multi-string + * options. For string and multistring options, we also need to be + * able to tell the difference between a "+" and a "-". (For bools, + * the "+"/"-" information is encoded in "add" and "mask"). So we use + * an enumerated type (well, the preprocessor equivalent). Here are + * the values: + */ +#define AV_NONE 0 /* +opt -opt */ +#define AV_ADD_STRING 1 /* +stropt{string} */ +#define AV_REM_STRING 2 /* -stropt */ +#define AV_ADD_MULTI 3 /* +multiopt{string} +multiopt{string2} */ +#define AV_REM_MULTI 4 /* -multiopt{string} -multiopt */ + +/* + * We need a structure to hold the name, flag changes, + * type, and string index. + */ +struct action_name +{ + const char * name; + unsigned mask; /* a bit set to "0" = remove action */ + unsigned add; /* a bit set to "1" = add action */ + int takes_value; /* an AV_... constant */ + int index; /* index into strings[] or multi[] */ +}; + +/* + * And with those building blocks in place, here's the array. + */ +static const struct action_name action_names[] = +{ + /* + * Well actually there's no data here - it's in actionlist.h + * This keeps it together to make it easy to change. + * + * Here's the macros used to format it: + */ +#define DEFINE_ACTION_MULTI(name,index) \ + { "+" name, ACTION_MASK_ALL, 0, AV_ADD_MULTI, index }, \ + { "-" name, ACTION_MASK_ALL, 0, AV_REM_MULTI, index }, +#define DEFINE_ACTION_STRING(name,flag,index) \ + { "+" name, ACTION_MASK_ALL, flag, AV_ADD_STRING, index }, \ + { "-" name, ~flag, 0, AV_REM_STRING, index }, +#define DEFINE_ACTION_BOOL(name,flag) \ + { "+" name, ACTION_MASK_ALL, flag }, \ + { "-" name, ~flag, 0 }, +#define DEFINE_ACTION_ALIAS 1 /* Want aliases please */ + +#include "actionlist.h" + +#undef DEFINE_ACTION_MULTI +#undef DEFINE_ACTION_STRING +#undef DEFINE_ACTION_BOOL +#undef DEFINE_ACTION_ALIAS + + { NULL, 0, 0 } /* End marker */ +}; + + +static int load_one_actions_file(struct client_state *csp, int fileid); + + +/********************************************************************* + * + * Function : merge_actions + * + * Description : Merge two actions together. + * Similar to "dest += src". + * + * Parameters : + * 1 : dest = Actions to modify. + * 2 : src = Action to add. + * + * Returns : JB_ERR_OK or JB_ERR_MEMORY + * + *********************************************************************/ +jb_err merge_actions (struct action_spec *dest, + const struct action_spec *src) +{ + int i; + jb_err err; + + dest->mask &= src->mask; + dest->add &= src->mask; + dest->add |= src->add; + + for (i = 0; i < ACTION_STRING_COUNT; i++) + { + char * str = src->string[i]; + if (str) + { + freez(dest->string[i]); + dest->string[i] = strdup(str); + if (NULL == dest->string[i]) + { + return JB_ERR_MEMORY; + } + } + } + + for (i = 0; i < ACTION_MULTI_COUNT; i++) + { + if (src->multi_remove_all[i]) + { + /* Remove everything from dest */ + list_remove_all(dest->multi_remove[i]); + dest->multi_remove_all[i] = 1; + + err = list_duplicate(dest->multi_add[i], src->multi_add[i]); + } + else if (dest->multi_remove_all[i]) + { + /* + * dest already removes everything, so we only need to worry + * about what we add. + */ + list_remove_list(dest->multi_add[i], src->multi_remove[i]); + err = list_append_list_unique(dest->multi_add[i], src->multi_add[i]); + } + else + { + /* No "remove all"s to worry about. */ + list_remove_list(dest->multi_add[i], src->multi_remove[i]); + err = list_append_list_unique(dest->multi_remove[i], src->multi_remove[i]); + if (!err) err = list_append_list_unique(dest->multi_add[i], src->multi_add[i]); + } + + if (err) + { + return err; + } + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : copy_action + * + * Description : Copy an action_specs. + * Similar to "dest = src". + * + * Parameters : + * 1 : dest = Destination of copy. + * 2 : src = Source for copy. + * + * Returns : N/A + * + *********************************************************************/ +jb_err copy_action (struct action_spec *dest, + const struct action_spec *src) +{ + int i; + jb_err err = JB_ERR_OK; + + free_action(dest); + memset(dest, '\0', sizeof(*dest)); + + dest->mask = src->mask; + dest->add = src->add; + + for (i = 0; i < ACTION_STRING_COUNT; i++) + { + char * str = src->string[i]; + if (str) + { + str = strdup(str); + if (!str) + { + return JB_ERR_MEMORY; + } + dest->string[i] = str; + } + } + + for (i = 0; i < ACTION_MULTI_COUNT; i++) + { + dest->multi_remove_all[i] = src->multi_remove_all[i]; + err = list_duplicate(dest->multi_remove[i], src->multi_remove[i]); + if (err) + { + return err; + } + err = list_duplicate(dest->multi_add[i], src->multi_add[i]); + if (err) + { + return err; + } + } + return err; +} + + +/********************************************************************* + * + * Function : free_action + * + * Description : Destroy an action_spec. Frees memory used by it, + * except for the memory used by the struct action_spec + * itself. + * + * Parameters : + * 1 : src = Source to free. + * + * Returns : N/A + * + *********************************************************************/ +void free_action (struct action_spec *src) +{ + int i; + + if (src == NULL) + { + return; + } + + for (i = 0; i < ACTION_STRING_COUNT; i++) + { + freez(src->string[i]); + } + + for (i = 0; i < ACTION_MULTI_COUNT; i++) + { + destroy_list(src->multi_remove[i]); + destroy_list(src->multi_add[i]); + } + + memset(src, '\0', sizeof(*src)); +} + + +/********************************************************************* + * + * Function : get_action_token + * + * Description : Parses a line for the first action. + * Modifies it's input array, doesn't allocate memory. + * e.g. given: + * *line=" +abc{def} -ghi " + * Returns: + * *line=" -ghi " + * *name="+abc" + * *value="def" + * + * Parameters : + * 1 : line = [in] The line containing the action. + * [out] Start of next action on line, or + * NULL if we reached the end of line before + * we found an action. + * 2 : name = [out] Start of action name, null + * terminated. NULL on EOL + * 3 : value = [out] Start of action value, null + * terminated. NULL if none or EOL. + * + * Returns : JB_ERR_OK => Ok + * JB_ERR_PARSE => Mismatched {} (line was trashed anyway) + * + *********************************************************************/ +jb_err get_action_token(char **line, char **name, char **value) +{ + char * str = *line; + char ch; + + /* set default returns */ + *line = NULL; + *name = NULL; + *value = NULL; + + /* Eat any leading whitespace */ + while ((*str == ' ') || (*str == '\t')) + { + str++; + } + + if (*str == '\0') + { + return 0; + } + + if (*str == '{') + { + /* null name, just value is prohibited */ + return JB_ERR_PARSE; + } + + *name = str; + + /* parse option */ + while (((ch = *str) != '\0') && + (ch != ' ') && (ch != '\t') && (ch != '{')) + { + if (ch == '}') + { + /* error, '}' without '{' */ + return JB_ERR_PARSE; + } + str++; + } + *str = '\0'; + + if (ch != '{') + { + /* no value */ + if (ch == '\0') + { + /* EOL - be careful not to run off buffer */ + *line = str; + } + else + { + /* More to parse next time. */ + *line = str + 1; + } + return JB_ERR_OK; + } + + str++; + *value = str; + + str = strchr(str, '}'); + if (str == NULL) + { + /* error */ + *value = NULL; + return JB_ERR_PARSE; + } + + /* got value */ + *str = '\0'; + *line = str + 1; + + chomp(*value); + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : get_actions + * + * Description : Parses a list of actions. + * + * Parameters : + * 1 : line = The string containing the actions. + * Will be written to by this function. + * 2 : alias_list = Custom alias list, or NULL for none. + * 3 : cur_action = Where to store the action. Caller + * allocates memory. + * + * Returns : JB_ERR_OK => Ok + * JB_ERR_PARSE => Parse error (line was trashed anyway) + * nonzero => Out of memory (line was trashed anyway) + * + *********************************************************************/ +jb_err get_actions(char *line, + struct action_alias * alias_list, + struct action_spec *cur_action) +{ + jb_err err; + init_action(cur_action); + cur_action->mask = ACTION_MASK_ALL; + + while (line) + { + char * option = NULL; + char * value = NULL; + + err = get_action_token(&line, &option, &value); + if (err) + { + return err; + } + + if (option) + { + /* handle option in 'option' */ + + /* Check for standard action name */ + const struct action_name * action = action_names; + + while ( (action->name != NULL) && (0 != strcmpic(action->name, option)) ) + { + action++; + } + if (action->name != NULL) + { + /* Found it */ + cur_action->mask &= action->mask; + cur_action->add &= action->mask; + cur_action->add |= action->add; + + switch (action->takes_value) + { + case AV_NONE: + /* ignore any option. */ + break; + case AV_ADD_STRING: + { + /* add single string. */ + + if ((value == NULL) || (*value == '\0')) + { + return JB_ERR_PARSE; + } + /* FIXME: should validate option string here */ + freez (cur_action->string[action->index]); + cur_action->string[action->index] = strdup(value); + if (NULL == cur_action->string[action->index]) + { + return JB_ERR_MEMORY; + } + break; + } + case AV_REM_STRING: + { + /* remove single string. */ + + freez (cur_action->string[action->index]); + break; + } + case AV_ADD_MULTI: + { + /* append multi string. */ + + struct list * remove_p = cur_action->multi_remove[action->index]; + struct list * add_p = cur_action->multi_add[action->index]; + + if ((value == NULL) || (*value == '\0')) + { + return JB_ERR_PARSE; + } + + list_remove_item(remove_p, value); + err = enlist_unique(add_p, value, 0); + if (err) + { + return err; + } + break; + } + case AV_REM_MULTI: + { + /* remove multi string. */ + + struct list * remove_p = cur_action->multi_remove[action->index]; + struct list * add_p = cur_action->multi_add[action->index]; + + if ( (value == NULL) || (*value == '\0') + || ((*value == '*') && (value[1] == '\0')) ) + { + /* + * no option, or option == "*". + * + * Remove *ALL*. + */ + list_remove_all(remove_p); + list_remove_all(add_p); + cur_action->multi_remove_all[action->index] = 1; + } + else + { + /* Valid option - remove only 1 option */ + + if ( !cur_action->multi_remove_all[action->index] ) + { + /* there isn't a catch-all in the remove list already */ + err = enlist_unique(remove_p, value, 0); + if (err) + { + return err; + } + } + list_remove_item(add_p, value); + } + break; + } + default: + /* Shouldn't get here unless there's memory corruption. */ + assert(0); + return JB_ERR_PARSE; + } + } + else + { + /* try user aliases. */ + const struct action_alias * alias = alias_list; + + while ( (alias != NULL) && (0 != strcmpic(alias->name, option)) ) + { + alias = alias->next; + } + if (alias != NULL) + { + /* Found it */ + merge_actions(cur_action, alias->action); + } + else + { + /* Bad action name */ + return JB_ERR_PARSE; + } + } + } + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : init_current_action + * + * Description : Zero out an action. + * + * Parameters : + * 1 : dest = An uninitialized current_action_spec. + * + * Returns : N/A + * + *********************************************************************/ +void init_current_action (struct current_action_spec *dest) +{ + memset(dest, '\0', sizeof(*dest)); + + dest->flags = ACTION_MOST_COMPATIBLE; +} + + +/********************************************************************* + * + * Function : init_action + * + * Description : Zero out an action. + * + * Parameters : + * 1 : dest = An uninitialized action_spec. + * + * Returns : N/A + * + *********************************************************************/ +void init_action (struct action_spec *dest) +{ + memset(dest, '\0', sizeof(*dest)); +} + + +/********************************************************************* + * + * Function : merge_current_action + * + * Description : Merge two actions together. + * Similar to "dest += src". + * Differences between this and merge_actions() + * is that this one doesn't allocate memory for + * strings (so "src" better be in memory for at least + * as long as "dest" is, and you'd better free + * "dest" using "free_current_action"). + * Also, there is no mask or remove lists in dest. + * (If we're applying it to a URL, we don't need them) + * + * Parameters : + * 1 : dest = Current actions, to modify. + * 2 : src = Action to add. + * + * Returns 0 : no error + * !=0 : error, probably JB_ERR_MEMORY. + * + *********************************************************************/ +jb_err merge_current_action (struct current_action_spec *dest, + const struct action_spec *src) +{ + int i; + jb_err err = JB_ERR_OK; + + dest->flags &= src->mask; + dest->flags |= src->add; + + for (i = 0; i < ACTION_STRING_COUNT; i++) + { + char * str = src->string[i]; + if (str) + { + str = strdup(str); + if (!str) + { + return JB_ERR_MEMORY; + } + freez(dest->string[i]); + dest->string[i] = str; + } + } + + for (i = 0; i < ACTION_MULTI_COUNT; i++) + { + if (src->multi_remove_all[i]) + { + /* Remove everything from dest, then add src->multi_add */ + err = list_duplicate(dest->multi[i], src->multi_add[i]); + if (err) + { + return err; + } + } + else + { + list_remove_list(dest->multi[i], src->multi_remove[i]); + err = list_append_list_unique(dest->multi[i], src->multi_add[i]); + if (err) + { + return err; + } + } + } + return err; +} + + +/********************************************************************* + * + * Function : free_current_action + * + * Description : Free memory used by a current_action_spec. + * Does not free the current_action_spec itself. + * + * Parameters : + * 1 : src = Source to free. + * + * Returns : N/A + * + *********************************************************************/ +void free_current_action (struct current_action_spec *src) +{ + int i; + + for (i = 0; i < ACTION_STRING_COUNT; i++) + { + freez(src->string[i]); + } + + for (i = 0; i < ACTION_MULTI_COUNT; i++) + { + destroy_list(src->multi[i]); + } + + memset(src, '\0', sizeof(*src)); +} + + +static struct file_list *current_actions_file[MAX_ACTION_FILES] = { + NULL, NULL, NULL, NULL, NULL, + NULL, NULL, NULL, NULL, NULL +}; + + +#ifdef FEATURE_GRACEFUL_TERMINATION +/********************************************************************* + * + * Function : unload_current_actions_file + * + * Description : Unloads current actions file - reset to state at + * beginning of program. + * + * Parameters : None + * + * Returns : N/A + * + *********************************************************************/ +void unload_current_actions_file(void) +{ + if (current_actions_file) + { + current_actions_file->unloader = unload_actions_file; + current_actions_file = NULL; + } +} +#endif /* FEATURE_GRACEFUL_TERMINATION */ + + +/********************************************************************* + * + * Function : unload_actions_file + * + * Description : Unloads an actions module. + * + * Parameters : + * 1 : file_data = the data structure associated with the + * actions file. + * + * Returns : N/A + * + *********************************************************************/ +void unload_actions_file(void *file_data) +{ + struct url_actions * next; + struct url_actions * cur = (struct url_actions *)file_data; + while (cur != NULL) + { + next = cur->next; + free_url_spec(cur->url); + free_action(cur->action); + freez(cur); + cur = next; + } + +} + + +/********************************************************************* + * + * Function : free_alias_list + * + * Description : Free memory used by a list of aliases. + * + * Parameters : + * 1 : alias_list = Linked list to free. + * + * Returns : N/A + * + *********************************************************************/ +void free_alias_list(struct action_alias *alias_list) +{ + while (alias_list != NULL) + { + struct action_alias * next = alias_list->next; + alias_list->next = NULL; + freez(alias_list->name); + free_action(alias_list->action); + free(alias_list); + alias_list = next; + } +} + + +/********************************************************************* + * + * Function : load_actions_file + * + * Description : Read and parse all the action files and add to files + * list. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * + * Returns : 0 => Ok, everything else is an error. + * + *********************************************************************/ +int load_actions_file(struct client_state *csp) +{ + int i; + int result; + + for (i = 0; i < MAX_ACTION_FILES; i++) + { + if (csp->config->actions_file[i]) + { + result = load_one_actions_file(csp, i); + if (result) + { + return result; + } + } + else if (current_actions_file[i]) + { + current_actions_file[i]->unloader = unload_actions_file; + current_actions_file[i] = NULL; + } + } + + return 0; +} + +/********************************************************************* + * + * Function : load_one_actions_file + * + * Description : Read and parse a action file and add to files + * list. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : fileid = File index to load. + * + * Returns : 0 => Ok, everything else is an error. + * + *********************************************************************/ +static int load_one_actions_file(struct client_state *csp, int fileid) +{ + + /* + * Parser mode. + * Note: Keep these in the order they occur in the file, they are + * sometimes tested with <= + */ +#define MODE_START_OF_FILE 1 +#define MODE_SETTINGS 2 +#define MODE_DESCRIPTION 3 +#define MODE_ALIAS 4 +#define MODE_ACTIONS 5 + + int mode = MODE_START_OF_FILE; + + FILE *fp; + struct url_actions *last_perm; + struct url_actions *perm; + char buf[BUFFER_SIZE]; + struct file_list *fs; + struct action_spec * cur_action = NULL; + int cur_action_used = 0; + struct action_alias * alias_list = NULL; + unsigned long linenum = 0; + + if (!check_file_changed(current_actions_file[fileid], csp->config->actions_file[fileid], &fs)) + { + /* No need to load */ + csp->actions_list[fileid] = current_actions_file[fileid]; + return 0; + } + if (!fs) + { + log_error(LOG_LEVEL_FATAL, "can't load actions file '%s': error finding file: %E", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + + fs->f = last_perm = (struct url_actions *)zalloc(sizeof(*last_perm)); + if (last_perm == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't load actions file '%s': out of memory!", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + + if ((fp = fopen(csp->config->actions_file[fileid], "r")) == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't load actions file '%s': error opening file: %E", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + + while (read_config_line(buf, sizeof(buf), fp, &linenum) != NULL) + { + if (*buf == '{') + { + /* It's a header block */ + if (buf[1] == '{') + { + /* It's {{settings}} or {{alias}} */ + int len = strlen(buf); + char * start = buf + 2; + char * end = buf + len - 1; + if ((len < 5) || (*end-- != '}') || (*end-- != '}')) + { + /* too short */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid line (%lu): %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + + /* Trim leading and trailing whitespace. */ + end[1] = '\0'; + chomp(start); + + if (*start == '\0') + { + /* too short */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid line (%lu): {{ }}", + csp->config->actions_file[fileid], linenum); + return 1; /* never get here */ + } + + /* + * An actionsfile can optionally contain the following blocks. + * They *MUST* be in this order, to simplify processing: + * + * {{settings}} + * name=value... + * + * {{description}} + * ...free text, format TBD, but no line may start with a '{'... + * + * {{alias}} + * name=actions... + * + * The actual actions must be *after* these special blocks. + * None of these special blocks may be repeated. + * + */ + if (0 == strcmpic(start, "settings")) + { + /* it's a {{settings}} block */ + if (mode >= MODE_SETTINGS) + { + /* {{settings}} must be first thing in file and must only + * appear once. + */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': line %lu: {{settings}} must only appear once, and it must be before anything else.", + csp->config->actions_file[fileid], linenum); + } + mode = MODE_SETTINGS; + } + else if (0 == strcmpic(start, "description")) + { + /* it's a {{description}} block */ + if (mode >= MODE_DESCRIPTION) + { + /* {{description}} is a singleton and only {{settings}} may proceed it + */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': line %lu: {{description}} must only appear once, and only a {{settings}} block may be above it.", + csp->config->actions_file[fileid], linenum); + } + mode = MODE_DESCRIPTION; + } + else if (0 == strcmpic(start, "alias")) + { + /* it's an {{alias}} block */ + if (mode >= MODE_ALIAS) + { + /* {{alias}} must be first thing in file, possibly after + * {{settings}} and {{description}} + * + * {{alias}} must only appear once. + * + * Note that these are new restrictions introduced in + * v2.9.10 in order to make actionsfile editing simpler. + * (Otherwise, reordering actionsfile entries without + * completely rewriting the file becomes non-trivial) + */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': line %lu: {{alias}} must only appear once, and it must be before all actions.", + csp->config->actions_file[fileid], linenum); + } + mode = MODE_ALIAS; + } + else + { + /* invalid {{something}} block */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid line (%lu): {{%s}}", + csp->config->actions_file[fileid], linenum, start); + return 1; /* never get here */ + } + } + else + { + /* It's an actions block */ + + char actions_buf[BUFFER_SIZE]; + char * end; + + /* set mode */ + mode = MODE_ACTIONS; + + /* free old action */ + if (cur_action) + { + if (!cur_action_used) + { + free_action(cur_action); + free(cur_action); + } + cur_action = NULL; + } + cur_action_used = 0; + cur_action = (struct action_spec *)zalloc(sizeof(*cur_action)); + if (cur_action == NULL) + { + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': out of memory", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + init_action(cur_action); + + /* trim { */ + strcpy(actions_buf, buf + 1); + + /* check we have a trailing } and then trim it */ + end = actions_buf + strlen(actions_buf) - 1; + if (*end != '}') + { + /* No closing } */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid line (%lu): %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + *end = '\0'; + + /* trim any whitespace immediately inside {} */ + chomp(actions_buf); + + if (get_actions(actions_buf, alias_list, cur_action)) + { + /* error */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid line (%lu): %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + } + } + else if (mode == MODE_SETTINGS) + { + /* + * Part of the {{settings}} block. + * Ignore for now, but we may want to read & check permissions + * when we go multi-user. + */ + } + else if (mode == MODE_DESCRIPTION) + { + /* + * Part of the {{description}} block. + * Ignore for now. + */ + } + else if (mode == MODE_ALIAS) + { + /* + * define an alias + */ + char actions_buf[BUFFER_SIZE]; + struct action_alias * new_alias; + + char * start = strchr(buf, '='); + char * end = start; + + if ((start == NULL) || (start == buf)) + { + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid alias line (%lu): %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + + if ((new_alias = zalloc(sizeof(*new_alias))) == NULL) + { + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': out of memory!", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + + /* Eat any the whitespace before the '=' */ + end--; + while ((*end == ' ') || (*end == '\t')) + { + /* + * we already know we must have at least 1 non-ws char + * at start of buf - no need to check + */ + end--; + } + end[1] = '\0'; + + /* Eat any the whitespace after the '=' */ + start++; + while ((*start == ' ') || (*start == '\t')) + { + start++; + } + if (*start == '\0') + { + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid alias line (%lu): %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + + new_alias->name = strdup(buf); + + strcpy(actions_buf, start); + + if (get_actions(actions_buf, alias_list, new_alias->action)) + { + /* error */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': invalid alias line (%lu): %s = %s", + csp->config->actions_file[fileid], linenum, buf, start); + return 1; /* never get here */ + } + + /* add to list */ + new_alias->next = alias_list; + alias_list = new_alias; + } + else if (mode == MODE_ACTIONS) + { + /* it's a URL pattern */ + + /* allocate a new node */ + if ((perm = zalloc(sizeof(*perm))) == NULL) + { + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': out of memory!", + csp->config->actions_file[fileid]); + return 1; /* never get here */ + } + + /* Save flags */ + copy_action (perm->action, cur_action); + + /* Save the URL pattern */ + if (create_url_spec(perm->url, buf)) + { + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': line %lu: cannot create URL pattern from: %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + + /* add it to the list */ + last_perm->next = perm; + last_perm = perm; + } + else if (mode == MODE_START_OF_FILE) + { + /* oops - please have a {} line as 1st line in file. */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': first needed line (%lu) is invalid: %s", + csp->config->actions_file[fileid], linenum, buf); + return 1; /* never get here */ + } + else + { + /* How did we get here? This is impossible! */ + fclose(fp); + log_error(LOG_LEVEL_FATAL, + "can't load actions file '%s': INTERNAL ERROR - mode = %d", + csp->config->actions_file[fileid], mode); + return 1; /* never get here */ + } + } + + fclose(fp); + + free_action(cur_action); + + free_alias_list(alias_list); + + /* the old one is now obsolete */ + if (current_actions_file[fileid]) + { + current_actions_file[fileid]->unloader = unload_actions_file; + } + + fs->next = files->next; + files->next = fs; + current_actions_file[fileid] = fs; + + csp->actions_list[fileid] = fs; + + return(0); + +} + + +/********************************************************************* + * + * Function : actions_to_text + * + * Description : Converts a actionsfile entry from the internal + * structurt into a text line. The output is split + * into one line for each action with line continuation. + * + * Parameters : + * 1 : action = The action to format. + * + * Returns : A string. Caller must free it. + * NULL on out-of-memory error. + * + *********************************************************************/ +char * actions_to_text(struct action_spec *action) +{ + unsigned mask = action->mask; + unsigned add = action->add; + char * result = strdup(""); + struct list_entry * lst; + + /* sanity - prevents "-feature +feature" */ + mask |= add; + + +#define DEFINE_ACTION_BOOL(__name, __bit) \ + if (!(mask & __bit)) \ + { \ + string_append(&result, " -" __name " \\\n"); \ + } \ + else if (add & __bit) \ + { \ + string_append(&result, " +" __name " \\\n"); \ + } + +#define DEFINE_ACTION_STRING(__name, __bit, __index) \ + if (!(mask & __bit)) \ + { \ + string_append(&result, " -" __name " \\\n"); \ + } \ + else if (add & __bit) \ + { \ + string_append(&result, " +" __name "{"); \ + string_append(&result, action->string[__index]); \ + string_append(&result, "} \\\n"); \ + } + +#define DEFINE_ACTION_MULTI(__name, __index) \ + if (action->multi_remove_all[__index]) \ + { \ + string_append(&result, " -" __name " \\\n"); \ + } \ + else \ + { \ + lst = action->multi_remove[__index]->first; \ + while (lst) \ + { \ + string_append(&result, " -" __name "{"); \ + string_append(&result, lst->str); \ + string_append(&result, "} \\\n"); \ + lst = lst->next; \ + } \ + } \ + lst = action->multi_add[__index]->first; \ + while (lst) \ + { \ + string_append(&result, " +" __name "{"); \ + string_append(&result, lst->str); \ + string_append(&result, "} \\\n"); \ + lst = lst->next; \ + } + +#define DEFINE_ACTION_ALIAS 0 /* No aliases for output */ + +#include "actionlist.h" + +#undef DEFINE_ACTION_MULTI +#undef DEFINE_ACTION_STRING +#undef DEFINE_ACTION_BOOL +#undef DEFINE_ACTION_ALIAS + + return result; +} + + +/********************************************************************* + * + * Function : actions_to_html + * + * Description : Converts a actionsfile entry from numeric form + * ("mask" and "add") to a
-seperated HTML string + * in which each action is linked to its chapter in + * the user manual. + * + * Parameters : + * 1 : csp = Client state (for config) + * 2 : action = Action spec to be converted + * + * Returns : A string. Caller must free it. + * NULL on out-of-memory error. + * + *********************************************************************/ +char * actions_to_html(struct client_state *csp, + struct action_spec *action) +{ + unsigned mask = action->mask; + unsigned add = action->add; + char * result = strdup(""); + struct list_entry * lst; + + /* sanity - prevents "-feature +feature" */ + mask |= add; + + +#define DEFINE_ACTION_BOOL(__name, __bit) \ + if (!(mask & __bit)) \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } \ + else if (add & __bit) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } + +#define DEFINE_ACTION_STRING(__name, __bit, __index) \ + if (!(mask & __bit)) \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } \ + else if (add & __bit) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + string_append(&result, "{"); \ + string_join(&result, html_encode(action->string[__index])); \ + string_append(&result, "}"); \ + } + +#define DEFINE_ACTION_MULTI(__name, __index) \ + if (action->multi_remove_all[__index]) \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } \ + else \ + { \ + lst = action->multi_remove[__index]->first; \ + while (lst) \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + string_append(&result, "{"); \ + string_join(&result, html_encode(lst->str)); \ + string_append(&result, "}"); \ + lst = lst->next; \ + } \ + } \ + lst = action->multi_add[__index]->first; \ + while (lst) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + string_append(&result, "{"); \ + string_join(&result, html_encode(lst->str)); \ + string_append(&result, "}"); \ + lst = lst->next; \ + } + +#define DEFINE_ACTION_ALIAS 0 /* No aliases for output */ + +#include "actionlist.h" + +#undef DEFINE_ACTION_MULTI +#undef DEFINE_ACTION_STRING +#undef DEFINE_ACTION_BOOL +#undef DEFINE_ACTION_ALIAS + + /* trim leading
*/ + if (result && *result) + { + char * s = result; + result = strdup(result + 5); + free(s); + } + + return result; +} + + +/********************************************************************* + * + * Function : current_actions_to_html + * + * Description : Converts a curren action spec to a
seperated HTML + * text in which each action is linked to its chapter in + * the user manual. + * + * Parameters : + * 1 : csp = Client state (for config) + * 2 : action = Current action spec to be converted + * + * Returns : A string. Caller must free it. + * NULL on out-of-memory error. + * + *********************************************************************/ +char *current_action_to_html(struct client_state *csp, + struct current_action_spec *action) +{ + unsigned long flags = action->flags; + char * result = strdup(""); + struct list_entry * lst; + +#define DEFINE_ACTION_BOOL(__name, __bit) \ + if (flags & __bit) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } \ + else \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } + +#define DEFINE_ACTION_STRING(__name, __bit, __index) \ + if (flags & __bit) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + string_append(&result, "{"); \ + string_join(&result, html_encode(action->string[__index])); \ + string_append(&result, "}"); \ + } \ + else \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } + +#define DEFINE_ACTION_MULTI(__name, __index) \ + lst = action->multi[__index]->first; \ + if (lst == NULL) \ + { \ + string_append(&result, "\n
-"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + } \ + else \ + { \ + while (lst) \ + { \ + string_append(&result, "\n
+"); \ + string_join(&result, add_help_link(__name, csp->config)); \ + string_append(&result, "{"); \ + string_join(&result, html_encode(lst->str)); \ + string_append(&result, "}"); \ + lst = lst->next; \ + } \ + } + +#define DEFINE_ACTION_ALIAS 0 /* No aliases for output */ + +#include "actionlist.h" + +#undef DEFINE_ACTION_MULTI +#undef DEFINE_ACTION_STRING +#undef DEFINE_ACTION_BOOL +#undef DEFINE_ACTION_ALIAS + + return result; +} diff --git a/actions.h b/actions.h new file mode 100644 index 00000000..f4365f0e --- /dev/null +++ b/actions.h @@ -0,0 +1,158 @@ +#ifndef ACTIONS_H_INCLUDED +#define ACTIONS_H_INCLUDED +#define ACTIONS_H_VERSION "$Id: actions.h,v 1.11 2002/04/30 11:14:52 oes Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/actions.h,v $ + * + * Purpose : Declares functions to work with actions files + * Functions declared include: FIXME + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: actions.h,v $ + * Revision 1.11 2002/04/30 11:14:52 oes + * Made csp the first parameter in *action_to_html + * + * Revision 1.10 2002/04/26 12:53:33 oes + * - actions_to_html signature change + * - current_action_to_text: renamed to current_action_to_html + * and signature change + * + * Revision 1.9 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.8 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.7 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.6 2001/10/23 21:30:30 jongfoster + * Adding error-checking to selected functions. + * + * Revision 1.5 2001/10/14 21:58:22 jongfoster + * Adding support for the CGI-based editor: + * - Exported get_actions() + * - Added new function free_alias_list() + * - Added support for {{settings}} and {{description}} blocks + * in the actions file. They are currently ignored. + * - Added restriction to only one {{alias}} block which must appear + * first in the file, to simplify the editor's rewriting rules. + * - Note that load_actions_file() is no longer used by the CGI-based + * editor, but some of the other routines in this file are. + * + * Revision 1.4 2001/09/16 15:47:37 jongfoster + * First version of CGI-based edit interface. This is very much a + * work-in-progress, and you can't actually use it to edit anything + * yet. You must #define FEATURE_CGI_EDIT_ACTIONS for these changes + * to have any effect. + * + * Revision 1.3 2001/09/14 00:17:32 jongfoster + * Tidying up memory allocation. New function init_action(). + * + * Revision 1.2 2001/07/29 19:01:11 jongfoster + * Changed _FILENAME_H to FILENAME_H_INCLUDED. + * Added forward declarations for needed structures. + * + * Revision 1.1 2001/05/31 21:16:46 jongfoster + * Moved functions to process the action list into this new file. + * + * + *********************************************************************/ + + +#ifdef __cplusplus +extern "C" { +#endif + + +struct action_spec; +struct current_action_spec; +struct client_state; + + + +/* This structure is used to hold user-defined aliases */ +struct action_alias +{ + const char * name; + struct action_spec action[1]; + struct action_alias * next; +}; + + +extern jb_err get_actions (char *line, + struct action_alias * alias_list, + struct action_spec *cur_action); +extern void free_alias_list(struct action_alias *alias_list); + +extern void init_action(struct action_spec *dest); +extern void free_action(struct action_spec *src); +extern jb_err merge_actions (struct action_spec *dest, + const struct action_spec *src); +extern jb_err copy_action (struct action_spec *dest, + const struct action_spec *src); +extern char * actions_to_text (struct action_spec *action); +extern char * actions_to_html (struct client_state *csp, + struct action_spec *action); +extern void init_current_action (struct current_action_spec *dest); +extern void free_current_action (struct current_action_spec *src); +extern jb_err merge_current_action (struct current_action_spec *dest, + const struct action_spec *src); +extern char * current_action_to_html(struct client_state *csp, + struct current_action_spec *action); + +extern jb_err get_action_token(char **line, char **name, char **value); +extern void unload_actions_file(void *file_data); +extern int load_actions_file(struct client_state *csp); + +#ifdef FEATURE_GRACEFUL_TERMINATION +void unload_current_actions_file(void); +#endif + + +/* Revision control strings from this header and associated .c file */ +extern const char actions_rcs[]; +extern const char actions_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef ACTIONS_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ + diff --git a/amiga.c b/amiga.c index cd228986..493a00eb 100644 --- a/amiga.c +++ b/amiga.c @@ -1,12 +1,12 @@ -const char amiga_rcs[] = "$Id: amiga.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char amiga_rcs[] = "$Id: amiga.c,v 1.8 2002/03/25 19:32:15 joergs Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/jcc.c,v $ + * File : $Source: /cvsroot/ijbswa/current/amiga.c,v $ * * Purpose : Amiga-specific declarations. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General @@ -27,7 +27,52 @@ const char amiga_rcs[] = "$Id: amiga.c,v 1.1 2001/05/13 21:57:06 administrator E * Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * Revisions : - * $Log: jcc.c,v $ + * $Log: amiga.c,v $ + * Revision 1.8 2002/03/25 19:32:15 joergs + * Name in version string changed from junkbuster to Privoxy. + * + * Revision 1.7 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.6 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.5 2002/03/03 09:18:03 joergs + * Made jumbjuster work on AmigaOS again. + * + * Revision 1.4 2001/10/07 15:35:13 oes + * Replaced 6 boolean members of csp with one bitmap (csp->flags) + * + * Revision 1.3 2001/09/12 22:54:51 joergs + * Stacksize of main thread increased. + * + * Revision 1.2 2001/05/23 00:13:58 joergs + * AmigaOS support fixed. + * + * Revision 1.1.1.1 2001/05/15 13:58:46 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -39,12 +84,12 @@ const char amiga_rcs[] = "$Id: amiga.c,v 1.1 2001/05/13 21:57:06 administrator E #include #include -#include "amiga.h" +#include "project.h" -chonst char amiga_h_rcs[] = AMIGA_H_VERSION; +const char amiga_h_rcs[] = AMIGA_H_VERSION; -unsigned long __stack = 20*1024; -/* static char ver[] = "$VER: junkbuster " __AMIGAVERSION__ " (" __AMIGADATE__ ")"; */ +unsigned long __stack = 100*1024; +static char ver[] = "$VER: Privoxy " __AMIGAVERSION__ " (" __AMIGADATE__ ")"; struct Task *main_task = NULL; int childs = 0; @@ -64,29 +109,32 @@ __saveds ULONG server_thread(void) { SetErrnoPtr(&(UserData.eno),sizeof(int)); local_csp->cfd=ObtainSocket(local_csp->cfd, AF_INET, SOCK_STREAM, 0); - if(-1!=local_csp->cfd) + if(JB_INVALID_SOCKET!=local_csp->cfd) { Signal(main_task,SIGF_SINGLE); serve((struct client_state *) local_csp); } else { - local_csp->active = 0; + local_csp->flags &= ~CSP_FLAG_ACTIVE; Signal(main_task,SIGF_SINGLE); } CloseLibrary(SocketBase); } else { - local_csp->active = 0; + local_csp->flags &= ~CSP_FLAG_ACTIVE; Signal(main_task,SIGF_SINGLE); } childs--; return 0; } +static BPTR olddir; + void amiga_exit(void) { if(SocketBase) { CloseLibrary(SocketBase); } + CurrentDir(olddir); } static struct SignalSemaphore memsem; @@ -114,12 +162,13 @@ void InitAmiga(void) InitSemaphore(&memsem); memsemptr = &memsem; + olddir=CurrentDir(GetProgramDir()); atexit(amiga_exit); } #ifdef __GNUC__ #ifdef libnix -/* multitaskingsafe libnix replacements */ +/* multithreadingsafe libnix replacements */ static void *memPool=NULL; void *malloc (size_t s) @@ -228,7 +277,7 @@ ADD2EXIT(__memCleanUp,-50); #error No libnix and no ixemul!? #endif /* libnix */ #else -#error Only GCC is supported, multitasking safe malloc/free required. +#error Only GCC is supported, multithreading safe malloc/free required. #endif /* __GNUC__ */ #endif /* def AMIGA */ diff --git a/amiga.h b/amiga.h index 6f132d0b..580dc32d 100644 --- a/amiga.h +++ b/amiga.h @@ -1,15 +1,15 @@ #ifdef AMIGA -#ifndef _AMIGA_H -#define _AMIGA_H -#define AMIGA_H_VERSION "$Id: amiga.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef AMIGA_H_INCLUDED +#define AMIGA_H_INCLUDED +#define AMIGA_H_VERSION "$Id: amiga.h,v 1.8 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/amiga.h,v $ + * File : $Source: /cvsroot/ijbswa/current/amiga.h,v $ * * Purpose : Amiga-specific declarations. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General @@ -30,7 +30,33 @@ * Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * Revisions : - * $Log: jcc.h,v $ + * $Log: amiga.h,v $ + * Revision 1.8 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.7 2002/03/03 09:18:03 joergs + * Made jumbjuster work on AmigaOS again. + * + * Revision 1.6 2001/10/13 12:46:08 joergs + * Added #undef EINTR to avoid warnings + * + * Revision 1.5 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.4 2001/05/29 20:05:06 joergs + * Fixed exit() macro not exiting if called before InitAmiga() + * (junkbuster --help and --version). + * + * Revision 1.3 2001/05/25 21:53:27 jongfoster + * Fixing indentation + * + * Revision 1.2 2001/05/23 00:13:58 joergs + * AmigaOS support fixed. + * + * Revision 1.1.1.1 2001/05/15 13:58:46 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -43,6 +69,8 @@ #include #undef __NOLIBBASE__ +#define __CONSTLIBBASEDECL__ const +#define DEVICES_TIMER_H #include #include #include @@ -50,8 +78,8 @@ struct UserData { - struct Library *sb; - int eno; + struct Library *sb; + int eno; }; #define SocketBase ((struct Library *)(((struct UserData *)(FindTask(NULL)->tc_UserData))->sb)) @@ -67,22 +95,29 @@ void amiga_exit(void); void __memCleanUp(void); __saveds ULONG server_thread(void); -#define exit(x)\ -{\ - if(main_task)\ - {\ - if(main_task == FindTask(NULL))\ - {\ - while(childs) Delay(10*TICKS_PER_SECOND); exit(x);\ - } else {\ - CloseLibrary(SocketBase);\ - childs--;\ - RemTask(NULL);\ - }\ - }\ +#define exit(x) \ +{ \ + if(main_task) \ + { \ + if(main_task == FindTask(NULL)) \ + { \ + while(childs) Delay(10*TICKS_PER_SECOND); exit(x); \ + } \ + else \ + { \ + CloseLibrary(SocketBase); \ + childs--; \ + RemTask(NULL); \ + } \ + } \ + else \ + { \ + exit(x); \ + } \ } +#undef EINTR #define EINTR 0 -#endif /* ndef _AMIGA_H */ +#endif /* ndef AMIGA_H_INCLUDED */ #endif /* def AMIGA */ diff --git a/blocklist b/blocklist deleted file mode 100644 index 7b48f3af..00000000 --- a/blocklist +++ /dev/null @@ -1,1060 +0,0 @@ -# -# This is /etc/junkbuster/blocklist which was put here by a junkbuster rpm -# -# $Id: blocklist,v 1.3 2000/09/17 07:29:18 swa Exp $ -# -# Last modified on Mon Sep 25 20:41:50 2000 (CEST) -# -# -------------------------------------------------------------------------- -# -# Newest version is always available from -# -# http://www.waldherr.org/blocklist -# -# Read http://www.waldherr.org/junkbuster/update.shtml on how to keep -# this file up-to-date. -# -# This list is Copyright (c) Stefan Waldherr . -# -# No distribution of this list without acknowledgement of the author(s). -# No selling of thist list without prior written agreement. -# -# -------------------------------------------------------------------------- -# -# Contributors are listed in the Hall Of Fame at -# -# http://www.waldherr.org/junkbuster/hof.shtml -# -# PS: I know that there are a ton of redundant regexps in this -# file, but I haven't had time to fix them. Any help -# appreciated. -# -# -------------------------------------------------------------------------- -# -# For more detail, see http://www.junkbusters.com/ht/en/ijbfaq.html#blocking -# -# -------------------------------------------------------------------------- -# -# Empty lines and lines beginning with a `#' are ignored. -# The following line should be included to block use of telnet (port 23) -:23 - -# -------------------------------------------------------------------------- -# -# generic paths -# -# -------------------------------------------------------------------------- - -/*.*/(.*[-_.])?ads?[0-9]?(/|[-_.].*|\.(gif|jpe?g)) -/*.*/(.*[-_.])?count(er)?(\.cgi|\.dll|\.exe|[?/]) -/*.*/(ng)?adclient\.cgi -/*.*/(plain|live|rotate)[-_.]?ads?/ - -/*.*/(sponsor)s?[0-9]?/ -###/*.*/(sponsor|banner)s?[0-9]?/ -###/*.*/.*banner([-_]?[a-z0-9]+)?\.(gif|jpg) - -/*.*/_?(plain|live)?ads?(-banners)?/ -/*.*/abanners/ -/*.*/ad(sdna_image|gifs?)/ -/*.*/ad(server|stream|juggler)\.(cgi|pl|dll|exe) -/*.*/adbanners/ -/*.*/adserver -/*.*/adstream\.cgi -/*.*/adv((er)?ts?|ertis(ing|ements?))?/ -/*.*/anzei(gen)?/? -/*.*/ban[-_]cgi/ -/*.*/banner_?ads/ -/*.*/banner_?anzeigen -/*.*/bannerimage/ -/*.*/banners?/ -/*.*/banners?\.cgi/ -/*.*/cgi-bin/centralad/getimage -/*.*/images/addver\.gif -/*.*/images/advert\.gif -/*.*/images/marketing/.*\.(gif|jpe?g) -/*.*/place-ads -/*.*/popupads/ -/*.*/promobar.* -/*.*/publicite/ -/*.*/randomads/.*\.(gif|jpe?g) -/*.*/reklama/.*\.(gif|jpe?g) -/*.*/reklame/.*\.(gif|jpe?g) -/*.*/reklaam/.*\.(gif|jpe?g) -/*.*/siteads/ -/*.*/sponsor.*\.gif -/*.*/sponsors?[0-9]?/ -/*.*/ucbandeimg/ -/*.*/werb\..* -/*.*/werbebanner/ -/*.*/werbung/.*\.(gif|jpe?g) -/.*/adv\. # www.telegraaf.nl -/.*/advert[0-9]+\.jpg -/.*bann\.gif -/Media/Images/Adds/ -/_banner/ -/ad_images/ -/adgenius/ -/adimages/ -/*.*/ads/ -/*.*/ads\\ -/viewad/ -/adserve/ -/adverts/ -/annonser?/ -/bando/ -/bannerad/ -/bannerfarm/ -/bin/getimage.cgi/...\?AD -/bin/nph-oma.count/ct/default.shtml -/bin/nph-oma.count/ix/default.html -/cgi-bin/getimage.cgi/....\?GROUP= -/cgi-bin/nph-load -/cgi-bin/webad.dll/ad -/cwmail/acc\.gif -/cwmail/amzn-bm1\.gif -/db_area/banrgifs/ -/gif/teasere/ -/grafikk/annonse/ -/graphics/defaultAd/ -/grf/annonif -/htmlad/ -/image\.ng/AdType -/image\.ng/transactionID -/images/.*/.*_anim\.gif # alvin brattli -/ip_img/.*\.(gif|jpe?g) -/marketpl*/ -/minibanners/ -/netscapeworld/nw-ad/ -/promotions/houseads/ -/rotads/ -/rotateads/ -/rotations/ -/torget/jobline/.*\.gif -/viewad/ -/werbung/ -/worldnet/ad\.cgi -/zhp/auktion/img/ -/cgi-bin/nph-adclick.exe/ -/*.*/Image/BannerAdvertising/ -/*.*/ad-bin/ -/*.*/adlib/server\.cgi -/*.*/gsa_bs/gsa_bs.cmdl -/autoads/ -/anz/pics/ - -# for our finnish friends, by Kai Puolamaki -/*.*/mainos/*.*/.*\.gif -/*.*/mainos/*.*/.*\.jpe?g - -# more from a finnish friend Petri Haapio -cgi.tietovalta.fi -keltaisetsivut.fi/web/img/\.*gif -haku.net/pics/pana\.*gif -www.fi/guvat/\.*gif -/*.*/(.*[-_.].*)?maino(kset|nta|s).*(/|\.(gif|html?|jpe?g|png)) -/*.*/(ilm(oitus)?|kampanja)(hallinta|kuvat?)(/|\.(gif|html?|jpe?g|png)) - -# and even more from a finnish friend Hannu Napari -194.251.243.50/cgi-bin/banner - -www.dime.net/ad -www.iltalehti.fi/ad -www.iltalehti.fi/ilmkuvat -www.mtv3.fi/mainoskuvat - -# -/*.*/adfinity -/*.*/[?]adserv -/*.*/bizgrphx/ -/*.*/smallad2\.gif -/*.*/ana2ad\.gif -/*.*/adimg/ -/*.*/.*counter\.pl -/*.*/spin_html/ -/*.*/images/topics/topicgimp\.gif -discovery.com/.*banner_id -/*.*/.*bannr\.gif -cruel.com/images/ -idrink.com/frm_bottom.htm -/*.*/.*pb_ihtml\.gif -/*.*/ph-ad.*\.focalink\.com -/cgi-bin/adjuggler - -/we_ba/ # hausfrauenseite.de *bwhahahaaaaa* - -# ms sucks ! -/.*(ms)?backoff(ice)?.*\.(gif|jpe?g) -/.*(/ie4|/ie3|msie|sqlbans|powrbybo|activex|backoffice|explorer|netnow|getpoint|ntbutton|hmlink).*\.(gif|jpe?g) -/.*activex.*(gif|jpe?g) -/.*explorer?.(gif|jpe?g) -/.*freeie\.(gif|jpe?g) -/.*/ie_?(buttonlogo|static?|anim.*)?\.(gif|jpe?g) -/.*ie_sm\.(gif|jpe?g) -/.*msie(30)?\.(gif|jpe?g) -/.*msnlogo\.(gif|jpe?g) -/.*office97_ad1\.(gif|jpe?g) -/.*pbbobansm\.(gif|jpe?g) -/.*powrbybo\.(gif|jpe?g) -/.*sqlbans\.(gif|jpe?g) -/.*exc_ms\.gif -/.*ie4get_animated\.gif -/.*ie4_animated\.gif -/.*n_iemap\.gif -/.*ieget\.gif -/.*logo_msnhm_* -/.*mcsp2\.gif -/.*msn2\.gif -/.*add_active\.gif -/.*n_msnmap\.gif -/.*Ad00\.gif -/.*s_msn\.gif -/.*addchannel\.gif -/.*adddesktop\.gif -/.*/ns4\.gif -/.*/v3sban\.gif -/.*/?FPCreated\.gif -/.*/opera35\.gif -/.*/opera13\.gif -/.*/opera_b\.gif -/.*/ie_horiz\.gif -/.*/ie_logo\.gif - -# ... and even more! -/.*/favicon\.ico - -# generally useless information and promo stuff (commented out) -#/*.*/(counter|getpcbutton|BuiltByNOF|netscape|hotmail|vcr(rated)?|rsaci(rated)?|freeloader|cache_now(_anim)?|apache_pb|now_(anim_)?button|ie_?(buttonlogo|static?|.*ani.*)?)\.(gif|jpe?g) - -/*.*/images/na/us/brand/ -/*.*/advantage\.(gif|jpg) -/*.*/advanbar\.(gif|jpg) -/*.*/advanbtn\.(gif|jpg) -/*.*/biznetsmall\.(gif|jpg) -/*.*/utopiad\.(gif|jpg) -/*.*/epipo\.(gif|jpg) -/*.*/amazon([a-zA-Z0-9]+)\.(gif|jpg) -/*.*/bnlogo.(gif|jpg) -/*.*/buynow([a-zA-Z0-9]+)\.(gif|jpg) - -/p/d/publicid - - -# for the dutch folks by a dutch friend gertjan@west.nl -/*.*/Advertenties/ -/.*./Adverteerders/ -netdirect.nl/nd_servlet/___ - -# -------------------------------------------------------------------------- -# -# specific servers -# -# -------------------------------------------------------------------------- - -# the next two lines work -12.16.1.10/web_GIF -12.16.1.10/~web_ani -193.158.37.3/cgi-bin/impact -193.210.156.114 -193.98.1.160/img -194.221.183.222/mailsentlu -194.221.183.223 -194.221.183.224 -194.221.183.225 -194.221.183.226 -194.221.183.227 -194.231.79.38 -195.124.124.56 -195.27.70.69 -195.30.94.21 -195.63.104.222//inbox -195.63.104.222//log # www.weltbild.de -195.63.104.222//meld -195.63.104.222//menu -195.63.104.222/folderlu -195.63.104.222/folderru -195.63.104.222/inbox -195.63.104.222/loginlu -195.63.104.222/loginmu -195.63.104.222/loginru -195.63.104.222/logoutlu -195.63.104.222/logoutmu -195.63.104.222/logoutru -195.63.104.61//inbox -195.63.104.61//log # www.weltbild.de -195.63.104.61//meld -195.63.104.61//menu -195.63.104.61/inbox -195.63.104.61/loginlu -195.63.104.61/loginmu -195.63.104.61/loginru -195.63.104.61/logoutlu -195.63.104.61/logoutmu -195.63.104.61/logoutru -199.78.52.10 -1st-fuss.com -204.253.46.71:1977 -204.94.67.40/wc/ -205.153.208.93 -205.216.163.62 -205.217.103.58:1977 -206.165.5.162/images/gcanim\.gif -206.221.254.181:80 -206.50.219.33 -207.137.96.35 -207.159.129.131/abacus -207.159.135.72 -207.82.250.9 -207.87.15.234 -207.87.27.10/tool/includes/gifs/ -208.156.39.142 -208.156.39.144 -208.156.60.230 -208.156.60.234 -208.156.60.235 -209.1.112.252/adgraph/ -209.1.135.142:1971 -209.1.135.144:1971 -209.132.97.164/IMG/ -209.185.222.45 -209.185.222.60 -209.185.253.199 -209.207.224.220/servfu.pl -209.207.224.222/servfu.pl -209.239.37.214/cgi-pilotfaq/getimage\.cgi -209.297.224.220 -209.75.21.6 -209.85.89.183/cgi-bin/cycle\?host -212.63.155.122/(banner|concret|softwareclub) -216.15.157.34 -216.27.61.150 -216.49.10.236/web1000/ -247media.com -62.144.115.12/dk/ -ICDirect.com/cgi-bin -Shannon.Austria.Eu.net/\.cgi/ -WebSiteSponsor.de -207.181.220.145 -213.165.64.42 - -# -# generic hosts (probably most effective) -# -ad*.*.* -ad*.*.*.* -*.ads.*.* -banner*.*.* -banner*.*.*.* - -*.admaximize.com -*.imgis.com -/*.*/*preferences.com* -1ad.prolinks.de -adwisdom.com -akamaitech.net/.*/Banners/ -altavista.telia.com/av/pix/sponsors/ -amazon.com/g/associates/logos/ -annonce.insite.dk -asinglesplace.com/asplink\.gif -athand.com/rotation -automatiseringgids.nl/gfx/advertenties/ -#avenuea.com/Banners/ -avenuea.com/view/ -badservant.guj.de -befriends.net/personals/matchmaking\.jpg -bizad.nikkeibp.co.jp -bs.gsanet.com/gsa_bs/ -cash-for-clicks.de -cda.at/customer/ -cgicounter.puretec.de/cgi-bin/ -ciec.org/images/countdown\.gif -classic.adlink.de/cgi-bin/accipiter/adserver.exe -click..wisewire.com -clickhere.egroups.com/img/ -imagine-inc.com -commonwealth.riddler.com/Commonwealth/bin/statdeploy\?[0-9]+ -customad.cnn.com -dagbladet.no/ann-gif -deja.com/jump/ -digits.com/wc/ -dino.mainz.ibm.de -dn.adzerver.com/image.ad -ds.austriaonline.at -emap.admedia.net -etrade.com/promo/ -eur.yimg.com/a/ -eur.a1.yimg.com/eur.yimg.com/a/ -us.a1.yimg.com/us.yimg.com/a/ -eurosponsor.de -fastcounter.linkexchange.com -flycast.com -focalink.com/SmartBanner -freepage.de/cgi-bin/feets/freepage_ext/.*/rw_banner -freespace.virgin.net/andy.drake -futurecard.com/images/ -gaia.occ.com/click.* -globaltrack.com -globaltrak.net -go.com/cimages\?SEEK_ -gp.dejanews.com/gtplacer -gtp.dejanews.com/gtplacer -deja.com/gifs/onsale/ -hitbox.com -home.miningco.com/event.ng/.*AdID -hurra.de -hyperbanner.net -icount.com/.*count -image*.narrative.com/news/.*\.(gif|jpe?g) -image.click2net.com -image.linkexchange.com -images.nytimes.com -images.yahoo.com/adv/ -images.yahoo.com/promotions/ -imageserv.adtech.de -img.web.de -impartner.de/cgi-bin -informer2.comdirect.de:6004/cd/banner2 -infoseek.go.com/cimages -ins.at/asp/images/ -kaufwas.com/cgi-bin/zentralbanner\.cgi -leader.linkexchange.com -link4ads.com -link4link.com -linktrader.com/cgi-bin/ -logiclink.nl/cgi-bin/ -lucky.theonion.com/cgi-bin/oniondirectin\.cgi -lucky.theonion.com/cgi-bin/onionimp\.cgi -lucky.theonion.com/cgi-bin/onionimpin\.cgi -m.doubleclick.net -mailorderbrides.com/mlbrd2\.gif -media.priceline.com -mediaplex.com -members.sexroulette.com -messenger.netscape.com -miningco.com/zadz/ -# movielink became moviefone -moviefone.com/.*banner -moviefone.com/.*newbutton -moviefone.com/.*ad\.gif -moviefone.com/.*mmail -moviefone.com/.*poster\.gif -moviefone.com/.*btyb -moviefone.com/.*h_guy -moviefone.com/.*h_showtick -moviefone.com/.*h_aML -moviefone.com/.*/m_ -moviefone.com/.*/icon_ -moviefone.com/.*/NF_.*back -moviefone.com/.*/h_.*gif -moviefone.com/media/imagelinks -moviefone.com/media/imagelinks/MF.(ad|sponsor) -moviefone.com/media/art -mqgraphics.mapquest.com/graphics/Advertisements/ -netgravity.* -newads.cmpnet.com -news.com/cgi-bin/acc_clickthru -ngadcenter.net -ngserve.pcworld.com/adgifs/ -nol.at:81 -nrsite.com -nytsyn.com/gifs -offers.egroups.com -pagecount.com -ph-ad.*\.focalink.com -preferences.com -promotions.yahoo.com/ -pub.nomade.fr -qsound.com/tracker/tracker.exe -resource-marketing.com/tb/ -revenue.infi.net -rtl.de/homepage/wb/images/ -schnellsuche.de/images/* -shout-ads.com/cgibin/shout.php3 -sjmercury.com/advert/ -smartclicks.com/.*/smart(img|banner|host|bar|site) -smh.com.au/adproof/ -spinbox1.filez.com -static.wired.com/advertising/ -swiftad.com -sysdoc.pair.com/cgi-sys/cgiwrap/sysdoc/sponsor\.gif -t-online.de/home/040255162-001/* -taz.de/taz/anz/ -tcsads.tcs.co.at -teleauskunft.de/commercial/ -thecounter.com/id -tm.intervu.net -tvguide.com/rbitmaps/ -ubl.com/graphics/ -ubl.com/images/ -ultra.multimania.com -ultra1.socomm.net -uproar.com -us.yimg.com/a/ -us.yimg.com/promotions/ -valueclick.com -valueclick.net -victory.cnn.com -videoserver.kpix.com -washingtonpost.com/wp-adv/ -webconnect.net/cgi-bin/webconnect.dll -webcounter.goweb.de -webserv.vnunet.com/ip_img/.*ban -werbung.pro-sieben.de/cgi-bin -whatis.com/cgi-bin/getimage.exe/ -www..bigyellow.com/......mat.* -www.adclub.net -www.addme.com/link8\.gif -www.aftonbladet.se/annons -www.americanpassage.com/ -www.angelfire.com/in/twistriot/images/wish4\.gif -www.bizlink.ru/cgi-bin/irads\.cgi -www.blacklightmedia.com/adlemur -www.bluesnews.com/flameq\.gif -www.bluesnews.com/images/ad[0-9]+\.gif -www.bluesnews.com/images/gcanim3\.gif -www.bluesnews.com/images/throbber2\.gif -www.bluesnews.com/miscimages/fragbutton\.gif -www.businessweek.com/sponsors/ -www.canoe.ca/AdsCanoe/ -www.cdnow.com/MN/client.banners -www.clickagents.com -www.clickthrough.ca -www.clicmoi.com/cgi-bin/pub\.exe -www.dailycal.org/graphics/adbanner-ab\.gif -www.detelefoongids.com/pic/[0-9]* -www.dhd.de/CGI/werbepic -www.dsf.de/cgi-bin/site_newiac.adpos -www.firsttarget.com/cgi-bin/klicklog.cgi -www.forbes.com/forbes/gifs/ads -www.forbes.com/tool/includes/gifs/ -www.fxweb.holowww.com/.*\.cgi -www.geocities.com/TimesSquare/Zone/5267/ -www.goto.com/images-promoters/ -www.handelsblatt.de/hbad -www.hotlinks.de/cgi-bin/barimage\.cgi -www.infoseek.com/cimages -www.infoworld.com/pageone/gif -www.isys.net/customer/images -www.javaworld.com/javaworld/jw-ad -www.kron.com/place-ads/ -www.leo.org/leoclick/ -www.linkexchange.ru/cgi-bin/erle\.cgi -www.linkstation.de/cgi-bin/zeige -www.linux.org/graphic/miniature/ -www.linux.org/graphic/square/ -www.linux.org/graphic/standard/ -www.luncha.se/annonsering -www.mediashower.com -www.ml.org/gfx/spon/icom/ -www.ml.org/gfx/spon/wmv -www.musicblvd.com/mb2/graphics/netgravity/ -nedstat.nl/cgi-bin/ -www.news.com/Midas/Images/ -www.newscientist.com/houseads -www.nextcard.com/affiliates/ -www.nikkeibp.asiabiztech.com/image/NAIS4\.gif -www.nordlys.no/imaker/.*/.*/.*/.....\.gif # alvin brattli -www.nordlys.no/imaker/.*/.*/.*/..003 # alvin brattli -www.oanda.com/server/banner -omdispatch.co.uk -www.oneandonlynetwork.com -www.page2page.de/cgi-bin/ -www.prnet.de/.*/bannerschnippel/.*\.(gif|jpe?g) -www.promptsoftware.com/marketing/ -#www.reklama.ru/cgi-bin/banners/ -www.riddler.com/sponsors/ -www.rle.ru/cgi-bin/erle\.cgi -www.rock.com/images/affiliates/search_black\.gif -www.rtl.de/search/.*kunde -#www.search.com/Banners -www.sfgate.com/place-ads/ -www.shareware.com/midas/images/borders-btn\.gif -#www.sjmercury.com/products/marcom/banners/ -www.smartclicks.com:81 -www.sol.dk/graphics/portalmenu -www.sponsornetz.de/jump/show.exe -www.sponsorpool.net -www.sunworld.com/sunworldonline/icons/adinfo.sm\.gif -www.swwwap.com/cgi-bin/ -www.taz.de/~taz/anz/ -www.telecom.at/icons/.*film\.(gif|jpe?g) -www.theonion.com/bin/ -www.topsponsor.de/cgi-bin/show.exe -www.ugo.net -www.ugu.com/images/EJ\.gif -www.warzone.com/pics/banner/ -www.warzone.com/wzfb/ads.cgi -www.webpeep.com -www.websitepromote.com/partner/img/ -www.winjey.com/onlinewerbung/*\.gif -www.wishing.com/webaudit -www.www-pool.de/cgi-bin/banner-pool -www2.blol.com/agrJRU\.gif -www3.exn.net:80 -yahoo.com/CategoryID=0 -yahoo.de/adv/images -~cpan.valueclick.com -~www.hitbox.com - -#swa -www.bannerland.de/click.exe -*.cyberclick.net -*.eu-adcenter.net/ -www.web-stat.com -www.slate.com/snav/ -www.slate.com/redirect/ -www.slate.com/articleimages/ -usads.imdb.com -www.forbes.com/tool/images/frontend/ -www.zserver.com -www.spinbox.com -pathfinder.com/shopping/marketplace/images/ -/*.*/adbanner* -/*.*/adgraphic* -static.wired.com/images -perso.estat.com/cgi-bin/perso/ -dinoadserver1.roka.net -fooladclient*.fool.com -affiliate.aol.com/static/ -cybereps.com:8000 -iadnet.com -orientserve.com -wvolante.com -findcommerce.com -smartage.com - -# www.sunday-times.co.uk -www.sunday-times.co.uk/standing/newsint/ticker - -# Für Germany.Net-User: Germany.Net (fast) banner- u. grafikfrei! -germany.net/gebu-frei\.gif -germany.net/bilder/menue/leiste\.gif -germany.net/bilder/gn_logos/* -germany.net/bilder/90x90/* -germany.net/banner-homepage/* -germany.net/downloadshop/* -germany.net/bilder/action/promopoly/germanynet/basisdienste/hilfe/* - -# Block as much of GeoCities as possible -# All geocities-owned images -www.geocities.com/images -www.geocities.com/MemberBanners/live/ -pic.geocities.com/images -# And the popup (it still pops up, but does not eat up precious bandwidth) -#www.geocities.com/ad_container/pop.html # already fixed by other regexp - -# from corion@informatik.uni-frankfurt.de -sam.songline.com/@ -img.getstats.com/ -#ads.xmonitor.net/xadengine.cgi # fixed by above regexp -# Also block the japanese geocities popups -www.geocities.co.jp/images -# Also block the come.to, surf.to etc. popups -v3.come.to/pop.asp - -# Also block the xoom stuff. -xb.xoom.com -home.talkcity.com/homepopup.html.* - -# Max Maischein again ... -# Halflife.net uses WON banners -# Banners from Freeserve -#banner.freeservers.com/cgi-bin/fs_adbar # fixed by above regexp -# And those nasty va-popups ! -/.*/?va_banner.html -# And an all-around hit against advert*.jpg -/.*/advert[0-9]+\.jpg -# And yet another Internet Explorer gif ... -/.*/ie_horiz\.gif -# Some uninteresting buttons I think... -mircx.com/images/buttons/ -services.mircx.com/.*\.gif -# Ooops - UserFriendly (Iambe) has a banner that gets eaten ... -~www.userfriendly.org/images/banners/banner_dp_heart\.gif -# Easyspace - yet another "free disk space" provider with banner popups -www.easyspace.com/(fpub)?banner.html -www.easyspace.com/100\.gif -# Some russian banner exchanges -banner.ricor.ru/cgi-bin/banner.pl -#www.bizlink.ru/cgi-bin/irads.cgi # already fixed by other regexp -stx9.sextracker.com/stx/send/ -# And even more of geocities : -www.geocities.com/pictures/ -# Gaah - www.angelfire.com - another webspace provider with popups -angelfire.com/sys/download.html -# Gamasutra.com uses this ad provider -sally.songline.com/@ - -# Eule.de (search engine) -# maybe images.eule.de as a whole... -www.eule.de/cgi-bin/ -images.eule.de/comdirect\.gif -images.eule.de/wp\.gif -aladin.de/125_1\.gif -images.eule.de/neu/books\.gif - -# -------------------------------------------------------------------------- -# -# some images -# -# -------------------------------------------------------------------------- - -# some images on cnn's website just suck! -/.*cnnstore\.gif -/.*book.search\.gif -/.*cnnpostopinionhome.\.gif -/.*custom_feature\.gif -/.*explore.anim.*gif -/.*infoseek\.gif -/.*pathnet.warner\.gif -/.*images/cnnfn_infoseek\.gif -/.*images/pathfinder_btn2\.gif -/.*img/gen/fosz_front_em_abc\.gif -/.*img/promos/bnsearch\.gif -/.*navbars/nav_partner_logos\.gif -/BarnesandNoble/images/bn.recommend.box.* -/digitaljam/images/digital_ban\.gif -/hotstories/companies/images/companies_banner\.gif -/markets/images/markets_banner\.gif -/ows-img/bnoble\.gif -/ows-img/nb_Infoseek\.gif -cnn.com/images/custom/totale\.gif -cnn.com/images/lotd/custom.wheels\.gif -cnn.com/images/.*/by/main.12\.gif -cnn.com/images/.*/find115\.gif -cnn.com/.*/free.email.120\.gif -cnnfn.com/images/left_banner\.gif -focus.de/A/AF/AFL/ -www.cnn.com/images/.*/bn/books\.gif -www.cnn.com/images/.*/pointcast\.gif -www.cnn.com/images/.*/fusa\.gif -cnn.com/images/.*/start120\.gif -images.cnn.com/SHOP/ -/.*by/main\.gif -/.*gutter117\.gif -/.*barnes_logo\.gif -# the / indicates the beginning of the path (and no longer the FQDN) -/.*nbclogo\.gif -/.*microdell\.gif -/.*secureit\.gif - -g.deja.com/gifs/(q|us)west_120x120\.gif - -# -/gif/buttons/banner_.* -/gif/buttons/cd_shop_.* -/gif/cd_shop/cd_shop_ani_.* - -#altavista -/av/gifs/av_map\.gif -/av/gifs/av_logo\.gif -/av/gifs/new/ns\.gif -altavista.com/i/valsdc3\.gif -jump.altavista.com/gn_sf - -# tucows -tucows.*.*/images/locallogo\.gif -#tucows.dsuper.net/images/locallogo\.gif - -# -mt_freshmeat\.jpg - -# simpliemu.hypermart.net/frames.html -go2net.com/mgic/adpopup -go2net.com/metaspy/images/exposed\.gif -go2net.com/metaspy/images/ms_un\.gif - -# -www.cebu-usa.com/cwbanim1\.gif -www.cebu-usa.com/Connection\.jpg -www.cebu-usa.com/phonead\.gif -www.cebu-usa.com/ban3\.jpg -www.cebu-usa.com/tlban\.gif -www.cebu-usa.com/apwlogo1\.gif -www.cebu-usa.com/rose\.gif - -# fnet -www.fnet.de/img/geldboerselogo\.jpg - -# hirsch@mathcs.emory.edu -/images/getareal2\.gif - -www.assalom.com/aziza/logos/cniaffil\.gif -www.assalom.com/aziza/logos/4starrl1\.gif -www.phantomstar.com/images/media/m1\.gif - -# -wahlstreet.de/MediaW\$/tsponline\.gif -wahlstreet.de/MediaW\$/dzii156x60\.gif -wahlstreet.de/MediaW\$/etban156x60_2_opt2\.gif - -# linuxtoday.com -/pics/gotlx1\.gif -/pics/getareal1\.gif -/pics/amzn-b5\.gif -/ltbs/cgi-bin/click.cgi -linuxtoday.com/ltbs/pics/ - -# Geocities popups -/ad[-_]container/ -/include/watermark/v2/ - -# Reinier Bikker -# Banner.xxLINK.nl/ - -# Mark Lutz -/.*/*werb.*\.(gif|jpe?g) # hope that's not to restrictive - -#Free Yellow thing at bottom of pages (HereticPC) -www.freeyellow.com/images/powerlink5a\.gif -www.freeyellow.com/images/powerlink5b\.gif -www.freeyellow.com/images/powerlink5c\.gif -www.freeyellow.com/images/powerlink5d\.gif -www.freeyellow.com/images/powerlink5e\.gif - -#HereticPC -www.eads.com/images/refbutton\.gif -www.fortunecity.com/console2/newnav/* -www.goldetc.net/search\.gif -www.cris.com/~Lzrdking/carpix/cars3-le\.gif -www.justfreestuff.com/scott\.gif -www.cyberthrill.com/entrance\.gif -secure.pec.net/images/pec69ani\.gif -www.new-direction.com/avviva\.gif -internetmarketingcenter\.gif -www.new-direction.com/wp-linkexchange-loop\.gif -www.new-direction.com/windough\.gif -www.digitalwork.com/universal_images/affiliate/dw_le_3\.gif -service.bfast.com/bfast/click/* -www.new-direction.com/magiclearning\.gif -www.new-direction.com/mailloop\.gif - -www.free-banners.com/images/hitslogo\.gif -rob.simplenet.com/dyndns/fortune5\.gif -nasdaq-amex.com/images/bn_ticker\.gif - -# -# navilor@hotmail.com -# -# -# wayne@staff.msen.com -# -a*.*.*.yimg.com/([0-9]*|\/)*us.yimg.com/* -ad.doubleclick.net -www.dnps.com/ads -www.realtop50.com/cgi-bin/ad -~a*.*.*.yimg.com/([0-9]|\/)*us.yimg.com/i/* - -# -www.yacht.de/images/(my_ani|eissingani|chartertrans|fum|schnupper|fysshop|garmin)\.gif -www.sponsorweb.de/web-sponsor/nt-bin/show.exe - -# -# Club-internet pops up a complain if you refuse cookie (still pops up...) -perso.club-internet.fr/html/Popup/popup_frame_nocookie.html -perso.club-internet.fr/pagesperso/popup_nocookie.html - -gmx.net/images/newsbanner/ -cash4banner.de - -quicken.lexware.de/images/us7-468x60.gif -/img/special/chatpromo\.gif -www.travelocity.com/images/promos/ - -# wonder that that does... -p01.com/1x1.dyn - -/*.*/phpAds/viewbanner.php -/*.*/phpAds/phpads.php - -www.linux-magazin.de/banner -comtrack.comclick.com -click-fr.com -iac-online.de/filler - -media.interadnet.com -stat.www.fi/cgi-bin -/cgi/banners.cgi -ads-digi.sol.no -fp.buy.com -disneystoreaffiliates.com - -powerwork.mobile.de/cgi-bin/getimage\.cgi - - - -#################################################### -# Jon's addition: -# -# Register ads -#www.theregister.co.uk/media/155\.gif -www.theregister.dealtime.co.uk/BannerIn/ -#www.theregister.co.uk/media/SearchDomainRed\.gif -#www.theregister.co.uk/media/ByDomainbusterRed\.gif -#www.theregister.co.uk/media/454\.gif -#www.theregister.co.uk/media/461\.gif -#www.theregister.co.uk/media/dealtime-lh\.gif -# Ad target: -www.domainbuster.com/cgi-bin/domainbuster/dpro\.pl - -#www.theregister.co.uk/media/.*\.swf -#www.theregister.co.uk/media/.*\.js - -# get agressive: -www.theregister.co.uk/media/ - -# Dilbert: -www.dilbert.com/comics/dilbert/images/.*_140x800.*\.gif - -# stattrack.com -# Uses URL: http://www.stattrack.com/cgi-bin/stats/image.cgi -/cgi-bin/stats/ -# And loads JavaScript from http://www.stattrack.com/stats/code -www.stattrack.com/stats/ - -#GeoCities crap -##geo.yahoo.com/serv -##visit.geocities.com/visit.gif -*.*.*.yimg.com/*/www.geocities.com/js_source -#http://us.toto.geo.yahoo.com/toto?s=76001086 -##*.toto.geo.yahoo.com - -# Nuke GeoCities rubbish -*.*.geo.yahoo.com -*.geo.yahoo.com -geo.yahoo.com -visit.geocities.com -*.*.*.yimg.com/.*/www.geocities.com/ - -#http://counter16.bravenet.com/counter.php -counter*.*.* - -#http://stat.cybermonitor.com/7emezone_p?1707_USdvd -stat*.*.* - -#http://members.tripod.com/adm/popup/..... -members.tripod.com/adm/popup/ - -#This is the worst ad idea ever! Bye bye! -#count.exitexchange.com/exit/1100661 -#count.exitexchange.com/clients/navbar.html -#(used in http://skyhivisuals.tripod.com/malfunctions_.htm) -exitexchange.com - -#SourceForge ads. -sfads.osdn.com - -#Crap trapping sites -webhideout.com - -#################################################### - - - -# -# some regexps are simply too aggressive ... -# -# equalizer to /*.*(.*[-_.])?ads?[0-9]?(/|[-_.].*|.(gif|jpe?g)) -# or other regexps -# -# -~adamwhone.co.uk -~adsl.tin.it -~stsci.edu -~tgs.com -~sun.com -~povray.org -~admin.*.* -~admin.*.*.* -~ad.siemens.de # SIEMENS Automation & Drives -~add-url.altavista.com -~adis.on.ca -~address*.*.* -~address*.*.*.* -~add*.*.* -~add*.*.*.* -~adu*.*.* -~adu*.*.*.* -~advice.*.* -~advice.*.*.* - -# univ. don't advertise, do they :-) -~*.*.edu -~*.*.*.edu -~www.ugu.com/sui/ugu/adv -~adfa.edu.au -~adsl*.*.* - -~clubs.yahoo.com/clubs -~edit.my.yahoo.com/config/show_identity -~www.ix.de/newsticker/data/ad -~www.heise.de/newsticker/data/ad -~www.careernet.de/anzeige -~www.careernet.de/bewerber/stellenanzeigen -~www.baumgartner.de/stellenmarkt/anzeigen -~www.dspartner.de/Anzeigen -~www.aws-jobs.de/Anzeigen -~www.jobware.de/.*/anzeigen/ -~www.jobworld.de/bilder/ -~www.cnn.com/TECH/computing/.*/internet.ads/ -~www.financial.de/shop/ -~gnn.de/.*\.html -~www.auktionen.de - -~194.221.152.2/phptelefontmp -~harvard.edu/images/banner/ - -~adswww.harvard.edu -~www.dhd.de/CGI/anzeigen/ - -~ads.web.de/web/ -~img.web.de/web/img/ - -~www.segel.de/menu/bilder/anzeigen\.gif -~www.corel.com/graphics/banners/ -~www.software.ibm.com/ad/ -~www.omg.org/docs/ad/ - -~sperrmuell.de/scripts/anzeigen -www.freenet.de/index.html -www.01019freenet.de/index.html -~www.freenet.de/freenet/ -~www.01019freenet.de/freenet/ -~webfactory.de/anzeigen.php -~www.cdmag.com -~www.internatif.org/bortzmeyer/debian/sponsor/ -~hp.com - -~www.software.hosting.ibm.com/ad/ -~www.ibm.com/software/ad/ -~brickshelf.com - -~www.debian.org/Pics/banner-blue\.gif -~www.linux.de/pics/Nachrichten_banner\.gif -~www.werbekurier.de - -~finder.shopping.yahoo.com/shop/ -~national.com/pf -~mozilla.org -~eidos.de -~e-sheep.com -~punkassgear.com -~mozilla.org -~mozillazine.org -~adbusters.org -~annoy.com -~consumer-direct.com -~www.iez-auktion.de -~ibm.com -~sgi.com - -# my banking stuff => no ads. last regexp for fast access :-) -~comdirekt.de -~comdirect.de -~teledata.de - - -~msdn.microsoft.com - -# do not forget newline at the end of this file!!! - diff --git a/cgi.c b/cgi.c new file mode 100644 index 00000000..4a523b21 --- /dev/null +++ b/cgi.c @@ -0,0 +1,2166 @@ +const char cgi_rcs[] = "$Id: cgi.c,v 1.69 2002/05/14 21:28:40 oes Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/cgi.c,v $ + * + * Purpose : Declares functions to intercept request, generate + * html or gif answers, and to compose HTTP resonses. + * This only contains the framework functions, the + * actual handler functions are declared elsewhere. + * + * Functions declared include: + * + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: cgi.c,v $ + * Revision 1.69 2002/05/14 21:28:40 oes + * - Fixed add_help_link to link to the (now split) actions + * part of the config chapter + * - Renamed helplink export to actions-help-prefix + * + * Revision 1.68 2002/05/12 21:36:29 jongfoster + * Correcting function comments + * + * Revision 1.67 2002/04/30 12:02:07 oes + * Nit: updated a comment + * + * Revision 1.66 2002/04/26 18:32:57 jongfoster + * Fixing a memory leak on error + * + * Revision 1.65 2002/04/26 12:53:51 oes + * - New function add_help_link + * - default_exports now exports links to the user manual + * and a prefix for links into the config chapter + * + * Revision 1.64 2002/04/24 02:17:21 oes + * - Better descriptions for CGIs + * - Hide edit-actions, more shortcuts + * - Moved get_char_param, get_string_param and get_number_param here + * from cgiedit.c + * + * Revision 1.63 2002/04/15 19:06:43 jongfoster + * Typos + * + * Revision 1.62 2002/04/10 19:59:46 jongfoster + * Fixes to #include in templates: + * - Didn't close main file if loading an included template fails. + * - I'm paranoid and want to disallow "#include /etc/passwd". + * + * Revision 1.61 2002/04/10 13:37:48 oes + * Made templates modular: template_load now recursive with max depth 1 + * + * Revision 1.60 2002/04/08 20:50:25 swa + * fixed JB spelling + * + * Revision 1.59 2002/04/05 15:51:51 oes + * - added send-stylesheet CGI + * - bugfix: error-pages now get correct request protocol + * - fixed + * - kludged CGI descriptions and menu not to break JS syntax + * + * Revision 1.58 2002/03/29 03:33:13 david__schmidt + * Fix Mac OSX compiler warnings + * + * Revision 1.57 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.56 2002/03/24 17:50:46 jongfoster + * Fixing compile error if actions file editor disabled + * + * Revision 1.55 2002/03/24 16:55:06 oes + * Making GIF checkerboard transparent + * + * Revision 1.54 2002/03/24 16:18:15 jongfoster + * Removing old logo + * + * Revision 1.53 2002/03/24 16:06:00 oes + * Correct transparency for checkerboard PNG. Thanks, Magnus! + * + * Revision 1.52 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.51 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.50 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.49 2002/03/13 00:27:04 jongfoster + * Killing warnings + * + * Revision 1.48 2002/03/08 17:47:07 jongfoster + * Adding comments + * + * Revision 1.47 2002/03/08 16:41:33 oes + * Added GIF images again + * + * Revision 1.46 2002/03/07 03:48:38 oes + * - Changed built-in images from GIF to PNG + * (with regard to Unisys patent issue) + * - Added a 4x4 pattern PNG which is less intrusive + * than the logo but also clearly marks the deleted banners + * + * Revision 1.45 2002/03/06 22:54:35 jongfoster + * Automated function-comment nitpicking. + * + * Revision 1.44 2002/03/05 22:43:45 david__schmidt + * - Better error reporting on OS/2 + * - Fix double-slash comment (oops) + * + * Revision 1.43 2002/03/05 21:33:45 david__schmidt + * - Re-enable OS/2 building after new parms were added + * - Fix false out of memory report when resolving CGI templates when no IP + * address is available of failed attempt (a la no such domain) + * + * Revision 1.42 2002/01/21 00:33:20 jongfoster + * Replacing strsav() with the safer string_append() or string_join(). + * Adding map_block_keep() to save a few bytes in the edit-actions-list HTML. + * Adding missing html_encode() to error message generators. + * Adding edit-actions-section-swap and many "shortcuts" to the list of CGIs. + * + * Revision 1.41 2002/01/17 20:56:22 jongfoster + * Replacing hard references to the URL of the config interface + * with #defines from project.h + * + * Revision 1.40 2002/01/09 14:26:46 oes + * Added support for thread-safe gmtime_r call. + * + * Revision 1.39 2001/11/16 00:48:13 jongfoster + * Fixing a compiler warning + * + * Revision 1.38 2001/11/13 00:31:21 jongfoster + * - Adding new CGIs for use by non-JavaScript browsers: + * edit-actions-url-form + * edit-actions-add-url-form + * edit-actions-remove-url-form + * - Fixing make_menu()'s HTML generation - it now quotes the href parameter. + * - Fixing || bug. + * + * Revision 1.37 2001/11/01 14:28:47 david__schmidt + * Show enablement/disablement status in almost all templates. + * There is a little trickiness here: apparent recursive resolution of + * @if-enabled-then@ caused the toggle template to show status out-of-phase with + * the actual enablement status. So a similar construct, + * @if-enabled-display-then@, is used to resolve the status display on non-'toggle' + * templates. + * + * Revision 1.36 2001/10/26 17:33:27 oes + * marginal bugfix + * + * Revision 1.35 2001/10/23 21:48:19 jongfoster + * Cleaning up error handling in CGI functions - they now send back + * a HTML error page and should never cause a FATAL error. (Fixes one + * potential source of "denial of service" attacks). + * + * CGI actions file editor that works and is actually useful. + * + * Ability to toggle Junkbuster remotely using a CGI call. + * + * You can turn off both the above features in the main configuration + * file, e.g. if you are running a multi-user proxy. + * + * Revision 1.34 2001/10/18 22:22:09 david__schmidt + * Only show "Local support" on templates conditionally: + * - if either 'admin-address' or 'proxy-info-url' are uncommented in config + * - if not, no Local support section appears + * + * Revision 1.33 2001/10/14 22:28:41 jongfoster + * Fixing stupid typo. + * + * Revision 1.32 2001/10/14 22:20:18 jongfoster + * - Changes to CGI dispatching method to match CGI names exactly, + * rather than doing a prefix match. + * - No longer need to count the length of the CGI handler names by hand. + * - Adding new handler for 404 error when disptching a CGI, if none of + * the handlers match. + * - Adding new handlers for CGI actionsfile editor. + * + * Revision 1.31 2001/10/10 10:56:39 oes + * Failiure to load template now fatal. Before, the user got a hard-to-understand assertion failure from cgi.c + * + * Revision 1.30 2001/10/02 15:30:57 oes + * Introduced show-request cgi + * + * Revision 1.29 2001/09/20 15:47:44 steudten + * + * Fix BUG: Modify int size to size_t size in fill_template() + * - removes big trouble on machines where sizeof(int) != sizeof(size_t). + * + * Revision 1.28 2001/09/19 18:00:37 oes + * - Deletef time() FIXME (Can't fail under Linux either, if + * the argument is guaranteed to be in out address space, + * which it is.) + * - Fixed comments + * - Pointer notation cosmetics + * - Fixed a minor bug in template_fill(): Failiure of + * pcrs_execute() now secure. + * + * Revision 1.27 2001/09/16 17:08:54 jongfoster + * Moving simple CGI functions from cgi.c to new file cgisimple.c + * + * Revision 1.26 2001/09/16 15:47:37 jongfoster + * First version of CGI-based edit interface. This is very much a + * work-in-progress, and you can't actually use it to edit anything + * yet. You must #define FEATURE_CGI_EDIT_ACTIONS for these changes + * to have any effect. + * + * Revision 1.25 2001/09/16 15:02:35 jongfoster + * Adding i.j.b/robots.txt. + * Inlining add_stats() since it's only ever called from one place. + * + * Revision 1.24 2001/09/16 11:38:01 jongfoster + * Splitting fill_template() into 2 functions: + * template_load() loads the file + * template_fill() performs the PCRS regexps. + * This is because the CGI edit interface has a "table row" + * template which is used many times in the page - this + * change means it's only loaded from disk once. + * + * Revision 1.23 2001/09/16 11:16:05 jongfoster + * Better error handling in dispatch_cgi() and parse_cgi_parameters() + * + * Revision 1.22 2001/09/16 11:00:10 jongfoster + * New function alloc_http_response, for symmetry with free_http_response + * + * Revision 1.21 2001/09/13 23:53:03 jongfoster + * Support for both static and dynamically generated CGI pages. + * Correctly setting Last-Modified: and Expires: HTTP headers. + * + * Revision 1.20 2001/09/13 23:40:36 jongfoster + * (Cosmetic only) Indentation correction + * + * Revision 1.19 2001/09/13 23:31:25 jongfoster + * Moving image data to cgi.c rather than cgi.h. + * + * Revision 1.18 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.17 2001/08/05 15:57:38 oes + * Adapted finish_http_response to new list_to_text + * + * Revision 1.16 2001/08/01 21:33:18 jongfoster + * Changes to fill_template() that reduce memory usage without having + * an impact on performance. I also renamed some variables so as not + * to clash with the C++ keywords "new" and "template". + * + * Revision 1.15 2001/08/01 21:19:22 jongfoster + * Moving file version information to a separate CGI page. + * + * Revision 1.14 2001/08/01 00:19:03 jongfoster + * New function: map_conditional() for an if-then-else syntax. + * Changing to use new version of show_defines() + * + * Revision 1.13 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.12 2001/07/29 18:47:05 jongfoster + * Adding missing #include "loadcfg.h" + * + * Revision 1.11 2001/07/18 17:24:37 oes + * Changed to conform to new pcrs interface + * + * Revision 1.10 2001/07/13 13:53:13 oes + * Removed all #ifdef PCRS and related code + * + * Revision 1.9 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.8 2001/06/29 13:21:46 oes + * - Cosmetics: renamed and reordered functions, variables, + * texts, improved comments etc + * + * - Removed ij_untrusted_url() The relevant + * info is now part of the "untrusted" page, + * which is generated by filters.c:trust_url() + * + * - Generators of content now call finish_http_response() + * themselves, making jcc.c:chat() a little less + * cluttered + * + * - Removed obsolete "Pragma: no-cache" from our headers + * + * - http_responses now know their head length + * + * - fill_template now uses the new interface to pcrs, so that + * - long jobs (like whole files) no longer have to be assembled + * in a fixed size buffer + * - the new T (trivial) option is used, and the replacement may + * contain Perl syntax backrefs without confusing pcrs + * + * - Introduced default_exports() which generates a set of exports + * common to all CGIs and other content generators + * + * - Introduced convenience function map_block_killer() + * + * - Introduced convenience function make_menu() + * + * - Introduced CGI-like function error_response() which generates + * the "No such domain" and "Connect failed" messages using the + * CGI platform + * + * - cgi_show_url_info: + * - adapted to new CGI features + * - form and answers now generated from same template + * - http:// prefix in URL now OK + * + * - cgi_show_status: + * - adapted to new CGI features + * - no longer uses csp->init_proxy_args + * + * - cgi_default: + * - moved menu generation to make_menu() + * + * - add_stats now writes single export map entries instead + * of a fixed string + * + * - Moved redirect_url() to filters.c + * + * - Fixed mem leak in free_http_response(), map_block_killer(), + * + * - Removed logentry from cancelled commit + * + * Revision 1.7 2001/06/09 10:51:58 jongfoster + * Changing "show URL info" handler to new style. + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.6 2001/06/07 23:05:19 jongfoster + * Removing code related to old forward and ACL files. + * + * Revision 1.5 2001/06/05 19:59:16 jongfoster + * Fixing multiline character string (a GCC-only "feature"), and snprintf (it's _snprintf under VC++). + * + * Revision 1.4 2001/06/04 10:41:52 swa + * show version string of cgi.h and cgi.c + * + * Revision 1.3 2001/06/03 19:12:16 oes + * introduced new cgi handling + * + * No revisions before 1.3 + * + **********************************************************************/ + + +#include "config.h" + +#include +#include +#include +#include +#include +#include +#include + +#ifdef _WIN32 +#define snprintf _snprintf +#endif /* def _WIN32 */ + +#include "project.h" +#include "cgi.h" +#include "list.h" +#include "encode.h" +#include "ssplit.h" +#include "errlog.h" +#include "miscutil.h" +#include "cgisimple.h" +#ifdef FEATURE_CGI_EDIT_ACTIONS +#include "cgiedit.h" +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ +#include "loadcfg.h" +/* loadcfg.h is for g_bToggleIJB only */ + +const char cgi_h_rcs[] = CGI_H_VERSION; + +/* + * List of CGI functions: name, handler, description + * Note: Do NOT use single quotes in the description; + * this will break the dynamic "blocked" template! + */ +static const struct cgi_dispatcher cgi_dispatchers[] = { + { "", + cgi_default, + "Privoxy main page" }, +#ifdef FEATURE_GRACEFUL_TERMINATION + { "die", + cgi_die, + "Shut down - Do not deploy this build in a production environment, " + "this is a one click Denial Of Service attack!!!" }, +#endif + { "show-status", + cgi_show_status, + "View & change the current configuration" }, + { "show-version", + cgi_show_version, + "View the source code version numbers" }, + { "show-request", + cgi_show_request, + "View the request headers." }, + { "show-url-info", + cgi_show_url_info, + "Look up which actions apply to a URL and why" }, +#ifdef FEATURE_CGI_EDIT_ACTIONS + { "toggle", + cgi_toggle, + "Toggle Privoxy on or off" }, + + { "edit-actions", /* Edit the actions list */ + cgi_edit_actions, + NULL }, + { "eaa", /* Shortcut for edit-actions-add-url-form */ + cgi_edit_actions_add_url_form, + NULL }, + { "eau", /* Shortcut for edit-actions-url-form */ + cgi_edit_actions_url_form, + NULL }, + { "ear", /* Shortcut for edit-actions-remove-url-form */ + cgi_edit_actions_remove_url_form, + NULL }, + { "eafu", /* Shortcut for edit-actions-for-url */ + cgi_edit_actions_for_url, + NULL }, + { "eas", /* Shortcut for edit-actions-submit */ + cgi_edit_actions_submit, + NULL }, + { "easa", /* Shortcut for edit-actions-section-add */ + cgi_edit_actions_section_add, + NULL }, + { "easr", /* Shortcut for edit-actions-section-remove */ + cgi_edit_actions_section_remove, + NULL }, + { "eass", /* Shortcut for edit-actions-section-swap */ + cgi_edit_actions_section_swap, + NULL }, + { "edit-actions-for-url", + cgi_edit_actions_for_url, + NULL /* Edit the actions for (a) specified URL(s) */ }, + { "edit-actions-list", + cgi_edit_actions_list, + NULL /* Edit the actions list */ }, + { "edit-actions-submit", + cgi_edit_actions_submit, + NULL /* Change the actions for (a) specified URL(s) */ }, + { "edit-actions-url", + cgi_edit_actions_url, + NULL /* Change a URL pattern in the actionsfile */ }, + { "edit-actions-url-form", + cgi_edit_actions_url_form, + NULL /* Form to change a URL pattern in the actionsfile */ }, + { "edit-actions-add-url", + cgi_edit_actions_add_url, + NULL /* Add a URL pattern to the actionsfile */ }, + { "edit-actions-add-url-form", + cgi_edit_actions_add_url_form, + NULL /* Form to add a URL pattern to the actionsfile */ }, + { "edit-actions-remove-url", + cgi_edit_actions_remove_url, + NULL /* Remove a URL pattern from the actionsfile */ }, + { "edit-actions-remove-url-form", + cgi_edit_actions_remove_url_form, + NULL /* Form to remove a URL pattern from the actionsfile */ }, + { "edit-actions-section-add", + cgi_edit_actions_section_add, + NULL /* Remove a section from the actionsfile */ }, + { "edit-actions-section-remove", + cgi_edit_actions_section_remove, + NULL /* Remove a section from the actionsfile */ }, + { "edit-actions-section-swap", + cgi_edit_actions_section_swap, + NULL /* Swap two sections in the actionsfile */ }, +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ + { "robots.txt", + cgi_robots_txt, + NULL /* Sends a robots.txt file to tell robots to go away. */ }, + { "send-banner", + cgi_send_banner, + NULL /* Send a built-in image */ }, + { "send-stylesheet", + cgi_send_stylesheet, + NULL /* Send templates/cgi-style.css */ }, + { "t", + cgi_transparent_image, + NULL /* Send a transparent image (short name) */ }, + { NULL, /* NULL Indicates end of list and default page */ + cgi_error_404, + NULL /* Unknown CGI page */ } +}; + + +/* + * Bulit-in images for ad replacement + * + * Hint: You can encode your own images like this: + * cat your-image | perl -e 'while (read STDIN, $c, 1) { printf("\\%.3o", unpack("C", $c)); }' + */ + +#ifdef FEATURE_NO_GIFS + +/* + * Checkerboard pattern, as a PNG. + */ +const char image_pattern_data[] = + "\211\120\116\107\015\012\032\012\000\000\000\015\111\110\104" + "\122\000\000\000\004\000\000\000\004\010\002\000\000\000\046" + "\223\011\051\000\000\000\006\142\113\107\104\000\310\000\310" + "\000\310\052\045\225\037\000\000\000\032\111\104\101\124\170" + "\332\143\070\161\342\304\377\377\377\041\044\003\234\165\342" + "\304\011\006\234\062\000\125\200\052\251\125\174\360\223\000" + "\000\000\000\111\105\116\104\256\102\140\202"; + +/* + * 1x1 transparant PNG. + */ +const char image_blank_data[] = + "\211\120\116\107\015\012\032\012\000\000\000\015\111\110\104\122" + "\000\000\000\004\000\000\000\004\010\006\000\000\000\251\361\236" + "\176\000\000\000\007\164\111\115\105\007\322\003\013\020\073\070" + "\013\025\036\203\000\000\000\011\160\110\131\163\000\000\013\022" + "\000\000\013\022\001\322\335\176\374\000\000\000\004\147\101\115" + "\101\000\000\261\217\013\374\141\005\000\000\000\033\111\104\101" + "\124\170\332\143\070\161\342\304\207\377\377\377\347\302\150\006" + "\144\016\210\146\040\250\002\000\042\305\065\221\270\027\131\110" + "\000\000\000\000\111\105\116\104\256\102\140\202"; +#else + +/* + * Checkerboard pattern, as a GIF. + */ +const char image_pattern_data[] = + "\107\111\106\070\071\141\004\000\004\000\200\000\000\310\310" + "\310\377\377\377\041\376\016\111\040\167\141\163\040\141\040" + "\142\141\156\156\145\162\000\041\371\004\001\012\000\001\000" + "\054\000\000\000\000\004\000\004\000\000\002\005\104\174\147" + "\270\005\000\073"; + +/* + * 1x1 transparant GIF. + */ +const char image_blank_data[] = + "GIF89a\001\000\001\000\200\000\000\377\377\377\000\000" + "\000!\371\004\001\000\000\000\000,\000\000\000\000\001" + "\000\001\000\000\002\002D\001\000;"; +#endif + +const size_t image_pattern_length = sizeof(image_pattern_data) - 1; +const size_t image_blank_length = sizeof(image_blank_data) - 1; + + +static struct http_response cgi_error_memory_response[1]; + +static struct http_response *dispatch_known_cgi(struct client_state * csp, + const char * path); +static struct map *parse_cgi_parameters(char *argstring); + + +/********************************************************************* + * + * Function : dispatch_cgi + * + * Description : Checks if a request URL has either the magical + * hostname CGI_SITE_1_HOST (usually http://p.p/) or + * matches CGI_SITE_2_HOST CGI_SITE_2_PATH (usually + * http://config.privoxy.org/). If so, it passes + * the (rest of the) path onto dispatch_known_cgi, which + * calls the relevant CGI handler function. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * + * Returns : http_response if match, NULL if nonmatch or handler fail + * + *********************************************************************/ +struct http_response *dispatch_cgi(struct client_state *csp) +{ + const char *host = csp->http->host; + const char *path = csp->http->path; + + /* + * Should we intercept ? + */ + + /* Note: "example.com" and "example.com." are equivalent hostnames. */ + + /* Either the host matches CGI_SITE_1_HOST ..*/ + if ( ( (0 == strcmpic(host, CGI_SITE_1_HOST)) + || (0 == strcmpic(host, CGI_SITE_1_HOST "."))) + && (path[0] == '/') ) + { + /* ..then the path will all be for us. Remove leading '/' */ + path++; + } + /* Or it's the host part CGI_SITE_2_HOST, and the path CGI_SITE_2_PATH */ + else if ( ( (0 == strcmpic(host, CGI_SITE_2_HOST )) + || (0 == strcmpic(host, CGI_SITE_2_HOST ".")) ) + && (0 == strncmpic(path, CGI_SITE_2_PATH, strlen(CGI_SITE_2_PATH))) ) + { + /* take everything following CGI_SITE_2_PATH */ + path += strlen(CGI_SITE_2_PATH); + if (*path == '/') + { + /* skip the forward slash after CGI_SITE_2_PATH */ + path++; + } + else if (*path != '\0') + { + /* + * wierdness: URL is /configXXX, where XXX is some string + * Do *NOT* intercept. + */ + return NULL; + } + } + else + { + /* Not a CGI */ + return NULL; + } + + /* + * This is a CGI call. + */ + + return dispatch_known_cgi(csp, path); +} + + +/********************************************************************* + * + * Function : dispatch_known_cgi + * + * Description : Processes a CGI once dispatch_cgi has determined that + * it matches one of the magic prefixes. Parses the path + * as a cgi name plus query string, prepares a map that + * maps CGI parameter names to their values, initializes + * the http_response struct, and calls the relevant CGI + * handler function. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : path = Path of CGI, with the CGI prefix removed. + * Should not have a leading "/". + * + * Returns : http_response, or NULL on handler failure or out of + * memory. + * + *********************************************************************/ +static struct http_response *dispatch_known_cgi(struct client_state * csp, + const char * path) +{ + const struct cgi_dispatcher *d; + struct map *param_list; + struct http_response *rsp; + char *query_args_start; + char *path_copy; + jb_err err; + + if (NULL == (path_copy = strdup(path))) + { + return cgi_error_memory(); + } + + query_args_start = path_copy; + while (*query_args_start && *query_args_start != '?') + { + query_args_start++; + } + if (*query_args_start == '?') + { + *query_args_start++ = '\0'; + } + + if (NULL == (param_list = parse_cgi_parameters(query_args_start))) + { + free(path_copy); + return cgi_error_memory(); + } + + + /* + * At this point: + * path_copy = CGI call name + * param_list = CGI params, as map + */ + + /* Get mem for response or fail*/ + if (NULL == (rsp = alloc_http_response())) + { + free(path_copy); + free_map(param_list); + return cgi_error_memory(); + } + + log_error(LOG_LEVEL_GPC, "%s%s cgi call", csp->http->hostport, csp->http->path); + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 200 3", + csp->ip_addr_str, csp->http->cmd); + + /* Find and start the right CGI function*/ + d = cgi_dispatchers; + for (;;) + { + if ((d->name == NULL) || (strcmp(path_copy, d->name) == 0)) + { + err = (d->handler)(csp, rsp, param_list); + free(path_copy); + free_map(param_list); + if (err == JB_ERR_CGI_PARAMS) + { + err = cgi_error_bad_param(csp, rsp); + } + if (err && (err != JB_ERR_MEMORY)) + { + /* Unexpected error! Shouldn't get here */ + log_error(LOG_LEVEL_ERROR, "Unexpected CGI error %d in top-level handler. Please file a bug report!", err); + err = cgi_error_unknown(csp, rsp, err); + } + if (!err) + { + /* It worked */ + return finish_http_response(rsp); + } + else + { + /* Error in handler, probably out-of-memory */ + free_http_response(rsp); + return cgi_error_memory(); + } + } + d++; + } +} + + +/********************************************************************* + * + * Function : parse_cgi_parameters + * + * Description : Parse a URL-encoded argument string into name/value + * pairs and store them in a struct map list. + * + * Parameters : + * 1 : argstring = string to be parsed. Will be trashed. + * + * Returns : pointer to param list, or NULL if out of memory. + * + *********************************************************************/ +static struct map *parse_cgi_parameters(char *argstring) +{ + char *p; + char *vector[BUFFER_SIZE]; + int pairs, i; + struct map *cgi_params; + + if (NULL == (cgi_params = new_map())) + { + return NULL; + } + + pairs = ssplit(argstring, "&", vector, SZ(vector), 1, 1); + + for (i = 0; i < pairs; i++) + { + if ((NULL != (p = strchr(vector[i], '='))) && (*(p+1) != '\0')) + { + *p = '\0'; + if (map(cgi_params, url_decode(vector[i]), 0, url_decode(++p), 0)) + { + free_map(cgi_params); + return NULL; + } + } + } + + return cgi_params; + +} + + +/********************************************************************* + * + * Function : get_char_param + * + * Description : Get a single-character parameter passed to a CGI + * function. + * + * Parameters : + * 1 : parameters = map of cgi parameters + * 2 : param_name = The name of the parameter to read + * + * Returns : Uppercase character on success, '\0' on error. + * + *********************************************************************/ +char get_char_param(const struct map *parameters, + const char *param_name) +{ + char ch; + + assert(parameters); + assert(param_name); + + ch = *(lookup(parameters, param_name)); + if ((ch >= 'a') && (ch <= 'z')) + { + ch = ch - 'a' + 'A'; + } + + return ch; +} + + +/********************************************************************* + * + * Function : get_string_param + * + * Description : Get a string paramater, to be used as an + * ACTION_STRING or ACTION_MULTI paramater. + * Validates the input to prevent stupid/malicious + * users from corrupting their action file. + * + * Parameters : + * 1 : parameters = map of cgi parameters + * 2 : param_name = The name of the parameter to read + * 3 : pparam = destination for paramater. Allocated as + * part of the map "parameters", so don't free it. + * Set to NULL if not specified. + * + * Returns : JB_ERR_OK on success, or if the paramater + * was not specified. + * JB_ERR_MEMORY on out-of-memory. + * JB_ERR_CGI_PARAMS if the paramater is not valid. + * + *********************************************************************/ +jb_err get_string_param(const struct map *parameters, + const char *param_name, + const char **pparam) +{ + const char *param; + const char *s; + char ch; + + assert(parameters); + assert(param_name); + assert(pparam); + + *pparam = NULL; + + param = lookup(parameters, param_name); + if (!*param) + { + return JB_ERR_OK; + } + + if (strlen(param) >= CGI_PARAM_LEN_MAX) + { + /* + * Too long. + * + * Note that the length limit is arbitrary, it just seems + * sensible to limit it to *something*. There's no + * technical reason for any limit at all. + */ + return JB_ERR_CGI_PARAMS; + } + + /* Check every character to see if it's legal */ + s = param; + while ((ch = *s++) != '\0') + { + if ( ((unsigned char)ch < (unsigned char)' ') + || (ch == '}') ) + { + /* Probable hack attempt, or user accidentally used '}'. */ + return JB_ERR_CGI_PARAMS; + } + } + + /* Success */ + *pparam = param; + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : get_number_param + * + * Description : Get a non-negative integer from the parameters + * passed to a CGI function. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : parameters = map of cgi parameters + * 3 : name = Name of CGI parameter to read + * 4 : pvalue = destination for value. + * Set to -1 on error. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the parameter was not specified + * or is not valid. + * + *********************************************************************/ +jb_err get_number_param(struct client_state *csp, + const struct map *parameters, + char *name, + unsigned *pvalue) +{ + const char *param; + char ch; + unsigned value; + + assert(csp); + assert(parameters); + assert(name); + assert(pvalue); + + *pvalue = 0; + + param = lookup(parameters, name); + if (!*param) + { + return JB_ERR_CGI_PARAMS; + } + + /* We don't use atoi because I want to check this carefully... */ + + value = 0; + while ((ch = *param++) != '\0') + { + if ((ch < '0') || (ch > '9')) + { + return JB_ERR_CGI_PARAMS; + } + + ch -= '0'; + + /* Note: + * + * defines UINT_MAX + * + * (UINT_MAX - ch) / 10 is the largest number that + * can be safely multiplied by 10 then have ch added. + */ + if (value > ((UINT_MAX - (unsigned)ch) / 10U)) + { + return JB_ERR_CGI_PARAMS; + } + + value = value * 10 + ch; + } + + /* Success */ + *pvalue = value; + + return JB_ERR_OK; + +} + + +/********************************************************************* + * + * Function : error_response + * + * Description : returns an http_response that explains the reason + * why a request failed. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : templatename = Which template should be used for the answer + * 3 : sys_err = system error number + * + * Returns : A http_response. If we run out of memory, this + * will be cgi_error_memory(). + * + *********************************************************************/ +struct http_response *error_response(struct client_state *csp, + const char *templatename, + int sys_err) +{ + jb_err err; + struct http_response *rsp; + struct map * exports = default_exports(csp, NULL); + if (exports == NULL) + { + return cgi_error_memory(); + } + + if (NULL == (rsp = alloc_http_response())) + { + free_map(exports); + return cgi_error_memory(); + } + + err = map(exports, "host", 1, html_encode(csp->http->host), 0); + if (!err) err = map(exports, "hostport", 1, html_encode(csp->http->hostport), 0); + if (!err) err = map(exports, "path", 1, html_encode(csp->http->path), 0); + if (!err) err = map(exports, "error", 1, html_encode_and_free_original(safe_strerror(sys_err)), 0); + if (!err) err = map(exports, "protocol", 1, csp->http->ssl ? "https://" : "http://", 1); + if (!err) + { + err = map(exports, "host-ip", 1, html_encode(csp->http->host_ip_addr_str), 0); + if (err) + { + /* Some failures, like "404 no such domain", don't have an IP address. */ + err = map(exports, "host-ip", 1, html_encode(csp->http->host), 0); + } + } + + + if (err) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + + if (!strcmp(templatename, "no-such-domain")) + { + rsp->status = strdup("404 No such domain"); + if (rsp->status == NULL) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + } + else if (!strcmp(templatename, "connect-failed")) + { + rsp->status = strdup("503 Connect failed"); + if (rsp->status == NULL) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + } + + err = template_fill_for_cgi(csp, templatename, exports, rsp); + if (err) + { + free_http_response(rsp); + return cgi_error_memory(); + } + + return finish_http_response(rsp); +} + + +/********************************************************************* + * + * Function : cgi_init_error_messages + * + * Description : Call at the start of the program to initialize + * the error message used by cgi_error_memory(). + * + * Parameters : N/A + * + * Returns : N/A + * + *********************************************************************/ +void cgi_init_error_messages(void) +{ + memset(cgi_error_memory_response, '\0', sizeof(*cgi_error_memory_response)); + cgi_error_memory_response->head = + "HTTP/1.0 500 Internal Privoxy Error\r\n" + "Content-Type: text/html\r\n" + "\r\n"; + cgi_error_memory_response->body = + "\r\n" + "500 Internal Privoxy Error\r\n" + "\r\n" + "

500 Internal Privoxy Error

\r\n" + "

Privoxy ran out of memory while processing your request.

\r\n" + "

Please contact your proxy administrator, or try again later

\r\n" + "\r\n" + "\r\n"; + + cgi_error_memory_response->head_length = + strlen(cgi_error_memory_response->head); + cgi_error_memory_response->content_length = + strlen(cgi_error_memory_response->body); +} + + +/********************************************************************* + * + * Function : cgi_error_memory + * + * Description : Called if a CGI function runs out of memory. + * Returns a statically-allocated error response. + * + * Parameters : N/A + * + * Returns : http_response data structure for output. This is + * statically allocated, for obvious reasons. + * + *********************************************************************/ +struct http_response *cgi_error_memory(void) +{ + /* assert that it's been initialized. */ + assert(cgi_error_memory_response->head); + + return cgi_error_memory_response; +} + + +/********************************************************************* + * + * Function : cgi_error_no_template + * + * Description : Almost-CGI function that is called if a template + * cannot be loaded. Note this is not a true CGI, + * it takes a template name rather than a map of + * parameters. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : template_name = Name of template that could not + * be loaded. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err cgi_error_no_template(struct client_state *csp, + struct http_response *rsp, + const char *template_name) +{ + static const char status[] = + "500 Internal Privoxy Error"; + static const char body_prefix[] = + "\r\n" + "500 Internal Privoxy Error\r\n" + "\r\n" + "

500 Internal Privoxy Error

\r\n" + "

Privoxy encountered an error while processing your request:

\r\n" + "

Could not load template file "; + static const char body_suffix[] = + " or one of it's included components.

\r\n" + "

Please contact your proxy administrator.

\r\n" + "

If you are the proxy administrator, please put the required file(s)" + "in the (confdir)/templates directory. The " + "location of the (confdir) directory " + "is specified in the main Privoxy config " + "file. (It's typically the Privoxy install directory" +#ifndef _WIN32 + ", or /etc/privoxy/" +#endif /* ndef _WIN32 */ + ").

\r\n" + "\r\n" + "\r\n"; + + assert(csp); + assert(rsp); + assert(template_name); + + /* Reset rsp, if needed */ + freez(rsp->status); + freez(rsp->head); + freez(rsp->body); + rsp->content_length = 0; + rsp->head_length = 0; + rsp->is_static = 0; + + rsp->body = malloc(strlen(body_prefix) + strlen(template_name) + strlen(body_suffix) + 1); + if (rsp->body == NULL) + { + return JB_ERR_MEMORY; + } + strcpy(rsp->body, body_prefix); + strcat(rsp->body, template_name); + strcat(rsp->body, body_suffix); + + rsp->status = strdup(status); + if (rsp->body == NULL) + { + return JB_ERR_MEMORY; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : cgi_error_unknown + * + * Description : Almost-CGI function that is called if an unexpected + * error occurs in the top-level CGI dispatcher. + * In this context, "unexpected" means "anything other + * than JB_ERR_MEMORY or JB_ERR_CGI_PARAMS" - CGIs are + * expected to handle all other errors internally, + * since they can give more relavent error messages + * that way. + * + * Note this is not a true CGI, it takes an error + * code rather than a map of parameters. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : error_to_report = Error code to report. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err cgi_error_unknown(struct client_state *csp, + struct http_response *rsp, + jb_err error_to_report) +{ + static const char status[] = + "500 Internal Privoxy Error"; + static const char body_prefix[] = + "\r\n" + "500 Internal Privoxy Error\r\n" + "\r\n" + "

500 Internal Privoxy Error

\r\n" + "

Privoxy encountered an error while processing your request:

\r\n" + "

Unexpected internal error: "; + static const char body_suffix[] = + "

\r\n" + "

Please " + "" + "file a bug report.

\r\n" + "\r\n" + "\r\n"; + char errnumbuf[30]; + assert(csp); + assert(rsp); + + /* Reset rsp, if needed */ + freez(rsp->status); + freez(rsp->head); + freez(rsp->body); + rsp->content_length = 0; + rsp->head_length = 0; + rsp->is_static = 0; + + sprintf(errnumbuf, "%d", error_to_report); + + rsp->body = malloc(strlen(body_prefix) + strlen(errnumbuf) + strlen(body_suffix) + 1); + if (rsp->body == NULL) + { + return JB_ERR_MEMORY; + } + strcpy(rsp->body, body_prefix); + strcat(rsp->body, errnumbuf); + strcat(rsp->body, body_suffix); + + rsp->status = strdup(status); + if (rsp->body == NULL) + { + return JB_ERR_MEMORY; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : cgi_error_bad_param + * + * Description : CGI function that is called if the parameters + * (query string) for a CGI were wrong. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * + * CGI Parameters : none + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err cgi_error_bad_param(struct client_state *csp, + struct http_response *rsp) +{ + struct map *exports; + + assert(csp); + assert(rsp); + + if (NULL == (exports = default_exports(csp, NULL))) + { + return JB_ERR_MEMORY; + } + + return template_fill_for_cgi(csp, "cgi-error-bad-param", exports, rsp); +} + + +/********************************************************************* + * + * Function : add_help_link + * + * Description : Produce a copy of the string given as item, + * embedded in an HTML link to its corresponding + * section (item name in uppercase) in the actions + * chapter of the user manual, (whose URL is given in + * the config and defaults to our web site). + * + * FIXME: I currently only work for actions, and would + * like to be generalized for other topics. + * + * Parameters : + * 1 : item = item (will NOT be free()d.) + * It is assumed to be HTML-safe. + * 2 : config = The current configuration. + * + * Returns : String with item embedded in link, or NULL on + * out-of-memory + * + *********************************************************************/ +char *add_help_link(const char *item, + struct configuration_spec *config) +{ + char *result; + + if (!item) return NULL; + + result = strdup("usermanual); + string_append(&result, ACTIONS_HELP_PREFIX); + string_join (&result, string_toupper(item)); + string_append(&result, "\">"); + string_append(&result, item); + string_append(&result, " "); + + return result; +} + + +/********************************************************************* + * + * Function : get_http_time + * + * Description : Get the time in a format suitable for use in a + * HTTP header - e.g.: + * "Sun, 06 Nov 1994 08:49:37 GMT" + * + * Parameters : + * 1 : time_offset = Time returned will be current time + * plus this number of seconds. + * 2 : buf = Destination for result. Must be long enough + * to hold 29 characters plus a trailing zero. + * + * Returns : N/A + * + *********************************************************************/ +void get_http_time(int time_offset, char *buf) +{ + static const char day_names[7][4] = + { "Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat" }; + static const char month_names[12][4] = + { "Jan", "Feb", "Mar", "Apr", "May", "Jun", + "Jul", "Aug", "Sep", "Oct", "Nov", "Dec" }; + + struct tm *t; + time_t current_time; + + assert(buf); + + time(¤t_time); /* get current time */ + + current_time += time_offset; + + /* get and save the gmt */ + { +#ifdef HAVE_GMTIME_R + struct tm dummy; + t = gmtime_r(¤t_time, &dummy); +#else + t = gmtime(¤t_time); +#endif + } + + /* Format: "Sun, 06 Nov 1994 08:49:37 GMT" */ + snprintf(buf, 30, + "%s, %02d %s %4d %02d:%02d:%02d GMT", + day_names[t->tm_wday], + t->tm_mday, + month_names[t->tm_mon], + t->tm_year + 1900, + t->tm_hour, + t->tm_min, + t->tm_sec + ); + +} + + +/********************************************************************* + * + * Function : finish_http_response + * + * Description : Fill in the missing headers in an http response, + * and flatten the headers to an http head. + * + * Parameters : + * 1 : rsp = pointer to http_response to be processed + * + * Returns : A http_response, usually the rsp parameter. + * On error, free()s rsp and returns cgi_error_memory() + * + *********************************************************************/ +struct http_response *finish_http_response(struct http_response *rsp) +{ + char buf[BUFFER_SIZE]; + jb_err err; + + /* Special case - do NOT change this statically allocated response, + * which is ready for output anyway. + */ + if (rsp == cgi_error_memory_response) + { + return rsp; + } + + /* + * Fill in the HTTP Status + */ + sprintf(buf, "HTTP/1.0 %s", rsp->status ? rsp->status : "200 OK"); + err = enlist_first(rsp->headers, buf); + + /* + * Set the Content-Length + */ + if (rsp->content_length == 0) + { + rsp->content_length = rsp->body ? strlen(rsp->body) : 0; + } + if (!err) + { + sprintf(buf, "Content-Length: %d", (int)rsp->content_length); + err = enlist(rsp->headers, buf); + } + + /* + * Fill in the default headers: + * + * Content-Type: default to text/html if not already specified. + * Date: set to current date/time. + * Last-Modified: set to date/time the page was last changed. + * Expires: set to date/time page next needs reloading. + * Cache-Control: set to "no-cache" if applicable. + * + * See http://www.w3.org/Protocols/rfc2068/rfc2068 + */ + if (!err) err = enlist_unique(rsp->headers, "Content-Type: text/html", 13); + + if (rsp->is_static) + { + /* + * Set Expires to about 10 min into the future so it'll get reloaded + * occasionally, e.g. if Privoxy gets upgraded. + */ + + if (!err) + { + get_http_time(0, buf); + err = enlist_unique_header(rsp->headers, "Date", buf); + } + + /* Some date in the past. */ + if (!err) err = enlist_unique_header(rsp->headers, "Last-Modified", "Sat, 17 Jun 2000 12:00:00 GMT"); + + if (!err) + { + get_http_time(10 * 60, buf); /* 10 * 60sec = 10 minutes */ + err = enlist_unique_header(rsp->headers, "Expires", buf); + } + } + else + { + /* + * Compliant browsers should not cache this due to the "Cache-Control" + * setting. However, to be certain, we also set both "Last-Modified" + * and "Expires" to the current time. + */ + if (!err) err = enlist_unique_header(rsp->headers, "Cache-Control", "no-cache"); + + get_http_time(0, buf); + if (!err) err = enlist_unique_header(rsp->headers, "Date", buf); + if (!err) err = enlist_unique_header(rsp->headers, "Last-Modified", buf); + if (!err) err = enlist_unique_header(rsp->headers, "Expires", buf); + } + + + /* + * Write the head + */ + if (err || (NULL == (rsp->head = list_to_text(rsp->headers)))) + { + free_http_response(rsp); + return cgi_error_memory(); + } + rsp->head_length = strlen(rsp->head); + + return rsp; + +} + + +/********************************************************************* + * + * Function : alloc_http_response + * + * Description : Allocates a new http_response structure. + * + * Parameters : N/A + * + * Returns : pointer to a new http_response, or NULL. + * + *********************************************************************/ +struct http_response *alloc_http_response(void) +{ + return (struct http_response *) zalloc(sizeof(struct http_response)); + +} + + +/********************************************************************* + * + * Function : free_http_response + * + * Description : Free the memory occupied by an http_response + * and its depandant structures. + * + * Parameters : + * 1 : rsp = pointer to http_response to be freed + * + * Returns : N/A + * + *********************************************************************/ +void free_http_response(struct http_response *rsp) +{ + /* + * Must special case cgi_error_memory_response, which is never freed. + */ + if (rsp && (rsp != cgi_error_memory_response)) + { + freez(rsp->status); + freez(rsp->head); + freez(rsp->body); + destroy_list(rsp->headers); + free(rsp); + } + +} + + +/********************************************************************* + * + * Function : template_load + * + * Description : CGI support function that loads a given HTML + * template from the confdir, ignoring comment + * lines and following #include statements up to + * a depth of 1. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : template_ptr = Destination for pointer to loaded + * template text. + * 3 : templatename = name of the HTML template to be used + * 4 : recursive = Flag set if this function calls itself + * following an #include statament + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * JB_ERR_FILE if the template file cannot be read + * + *********************************************************************/ +jb_err template_load(struct client_state *csp, char **template_ptr, + const char *templatename, int recursive) +{ + jb_err err; + char *templates_dir_path; + char *full_path; + char *file_buffer; + char *included_module; + const char *p; + FILE *fp; + char buf[BUFFER_SIZE]; + + assert(csp); + assert(template_ptr); + assert(templatename); + + *template_ptr = NULL; + + /* Validate template name. Paranoia. */ + for (p = templatename; *p != 0; p++) + { + if ( ((*p < 'a') || (*p > 'z')) + && ((*p < 'A') || (*p > 'Z')) + && ((*p < '0') || (*p > '9')) + && (*p != '-') + && (*p != '.')) + { + /* Illegal character */ + return JB_ERR_FILE; + } + } + + /* Generate full path */ + + templates_dir_path = make_path(csp->config->confdir, "templates"); + if (templates_dir_path == NULL) + { + return JB_ERR_MEMORY; + } + + full_path = make_path(templates_dir_path, templatename); + free(templates_dir_path); + if (full_path == NULL) + { + return JB_ERR_MEMORY; + } + + /* Allocate buffer */ + + file_buffer = strdup(""); + if (file_buffer == NULL) + { + free(full_path); + return JB_ERR_MEMORY; + } + + /* Open template file */ + + if (NULL == (fp = fopen(full_path, "r"))) + { + log_error(LOG_LEVEL_ERROR, "Cannot open template file %s: %E", full_path); + free(full_path); + free(file_buffer); + return JB_ERR_FILE; + } + free(full_path); + + /* + * Read the file, ignoring comments, and honoring #include + * statements, unless we're already called recursively. + * + * FIXME: The comment handling could break with lines >BUFFER_SIZE long. + * This is unlikely in practise. + */ + while (fgets(buf, BUFFER_SIZE, fp)) + { + if (!recursive && !strncmp(buf, "#include ", 9)) + { + if (JB_ERR_OK != (err = template_load(csp, &included_module, chomp(buf + 9), 1))) + { + free(file_buffer); + fclose(fp); + return err; + } + + if (string_join(&file_buffer, included_module)) + { + fclose(fp); + return JB_ERR_MEMORY; + } + + continue; + } + + /* skip lines starting with '#' */ + if (*buf == '#') + { + continue; + } + + if (string_append(&file_buffer, buf)) + { + fclose(fp); + return JB_ERR_MEMORY; + } + } + fclose(fp); + + *template_ptr = file_buffer; + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : template_fill + * + * Description : CGI support function that fills in a pre-loaded + * HTML template by replacing @name@ with value using + * pcrs, for each item in the output map. + * + * Note that a leading '$' charachter in the export map's + * values will be stripped and toggle on backreference + * interpretation. + * + * Parameters : + * 1 : template_ptr = IN: Template to be filled out. + * Will be free()d. + * OUT: Filled out template. + * Caller must free(). + * 2 : exports = map with fill in symbol -> name pairs + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error + * + *********************************************************************/ +jb_err template_fill(char **template_ptr, const struct map *exports) +{ + struct map_entry *m; + pcrs_job *job; + char buf[BUFFER_SIZE]; + char *tmp_out_buffer; + char *file_buffer; + size_t size; + int error; + const char *flags; + + assert(template_ptr); + assert(*template_ptr); + assert(exports); + + file_buffer = *template_ptr; + size = strlen(file_buffer) + 1; + + /* + * Assemble pcrs joblist from exports map + */ + for (m = exports->first; m != NULL; m = m->next) + { + if (*m->name == '$') + { + /* + * First character of name is '$', so remove this flag + * character and allow backreferences ($1 etc) in the + * "replace with" text. + */ + snprintf(buf, BUFFER_SIZE, "%s", m->name + 1); + flags = "sigU"; + } + else + { + /* + * Treat the "replace with" text as a literal string - + * no quoting needed, no backreferences allowed. + * ("Trivial" ['T'] flag). + */ + flags = "sigTU"; + + /* Enclose name in @@ */ + snprintf(buf, BUFFER_SIZE, "@%s@", m->name); + } + + + log_error(LOG_LEVEL_CGI, "Substituting: s/%s/%s/%s", buf, m->value, flags); + + /* Make and run job. */ + job = pcrs_compile(buf, m->value, flags, &error); + if (job == NULL) + { + if (error == PCRS_ERR_NOMEM) + { + free(file_buffer); + *template_ptr = NULL; + return JB_ERR_MEMORY; + } + else + { + log_error(LOG_LEVEL_ERROR, "Error compiling template fill job %s: %d", m->name, error); + /* Hope it wasn't important and silently ignore the invalid job */ + } + } + else + { + pcrs_execute(job, file_buffer, size, &tmp_out_buffer, &size); + free(file_buffer); + pcrs_free_job(job); + if (NULL == tmp_out_buffer) + { + *template_ptr = NULL; + return JB_ERR_MEMORY; + } + file_buffer = tmp_out_buffer; + } + } + + /* + * Return + */ + *template_ptr = file_buffer; + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : template_fill_for_cgi + * + * Description : CGI support function that loads a HTML template + * and fills it in. Handles file-not-found errors + * by sending a HTML error message. For convenience, + * this function also frees the passed "exports" map. + * + * Parameters : + * 1 : csp = Client state + * 2 : templatename = name of the HTML template to be used + * 3 : exports = map with fill in symbol -> name pairs. + * Will be freed by this function. + * 4 : rsp = Response structure to fill in. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error + * + *********************************************************************/ +jb_err template_fill_for_cgi(struct client_state *csp, + const char *templatename, + struct map *exports, + struct http_response *rsp) +{ + jb_err err; + + assert(csp); + assert(templatename); + assert(exports); + assert(rsp); + + err = template_load(csp, &rsp->body, templatename, 0); + if (err == JB_ERR_FILE) + { + free_map(exports); + return cgi_error_no_template(csp, rsp, templatename); + } + else if (err) + { + free_map(exports); + return err; /* JB_ERR_MEMORY */ + } + err = template_fill(&rsp->body, exports); + free_map(exports); + return err; +} + + +/********************************************************************* + * + * Function : default_exports + * + * Description : returns a struct map list that contains exports + * which are common to all CGI functions. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : caller = name of CGI who calls us and which should + * be excluded from the generated menu. May be + * NULL. + * Returns : NULL if no memory, else a new map. Caller frees. + * + *********************************************************************/ +struct map *default_exports(const struct client_state *csp, const char *caller) +{ + char buf[20]; + jb_err err; + struct map * exports; + int local_help_exists = 0; + + assert(csp); + + exports = new_map(); + if (exports == NULL) + { + return NULL; + } + + err = map(exports, "version", 1, html_encode(VERSION), 0); + if (!err) err = map(exports, "my-ip-address", 1, html_encode(csp->my_ip_addr_str ? csp->my_ip_addr_str : "unknown"), 0); + if (!err) err = map(exports, "my-hostname", 1, html_encode(csp->my_hostname ? csp->my_hostname : "unknown"), 0); + if (!err) err = map(exports, "homepage", 1, html_encode(HOME_PAGE_URL), 0); + if (!err) err = map(exports, "default-cgi", 1, html_encode(CGI_PREFIX), 0); + if (!err) err = map(exports, "menu", 1, make_menu(caller), 0); + if (!err) err = map(exports, "code-status", 1, CODE_STATUS, 1); + if (!err) err = map(exports, "user-manual", 1, csp->config->usermanual ,1); + if (!err) err = map(exports, "actions-help-prefix", 1, ACTIONS_HELP_PREFIX ,1); + if (!err) err = map_conditional(exports, "enabled-display", g_bToggleIJB); + + snprintf(buf, 20, "%d", csp->config->hport); + if (!err) err = map(exports, "my-port", 1, buf, 1); + + if(!strcmp(CODE_STATUS, "stable")) + { + if (!err) err = map_block_killer(exports, "unstable"); + } + + if (csp->config->admin_address != NULL) + { + if (!err) err = map(exports, "admin-address", 1, html_encode(csp->config->admin_address), 0); + local_help_exists = 1; + } + else + { + if (!err) err = map_block_killer(exports, "have-adminaddr-info"); + } + + if (csp->config->proxy_info_url != NULL) + { + if (!err) err = map(exports, "proxy-info-url", 1, html_encode(csp->config->proxy_info_url), 0); + local_help_exists = 1; + } + else + { + if (!err) err = map_block_killer(exports, "have-proxy-info"); + } + + if (local_help_exists == 0) + { + if (!err) err = map_block_killer(exports, "have-help-info"); + } + + if (err) + { + free_map(exports); + return NULL; + } + + return exports; +} + + +/********************************************************************* + * + * Function : map_block_killer + * + * Description : Convenience function. + * Adds a "killer" for the conditional HTML-template + * block , i.e. a substitution of the regex + * "if--start.*if--end" to the given + * export list. + * + * Parameters : + * 1 : exports = map to extend + * 2 : name = name of conditional block + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err map_block_killer(struct map *exports, const char *name) +{ + char buf[1000]; /* Will do, since the names are hardwired */ + + assert(exports); + assert(name); + assert(strlen(name) < 490); + + snprintf(buf, 1000, "if-%s-start.*if-%s-end", name, name); + return map(exports, buf, 1, "", 1); +} + + +/********************************************************************* + * + * Function : map_block_keep + * + * Description : Convenience function. Removes the markers used + * by map-block-killer, to save a few bytes. + * i.e. removes "@if--start@" and "@if--end@" + * + * Parameters : + * 1 : exports = map to extend + * 2 : name = name of conditional block + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err map_block_keep(struct map *exports, const char *name) +{ + jb_err err; + char buf[500]; /* Will do, since the names are hardwired */ + + assert(exports); + assert(name); + assert(strlen(name) < 490); + + snprintf(buf, 500, "if-%s-start", name); + err = map(exports, buf, 1, "", 1); + + if (err) + { + return err; + } + + snprintf(buf, 500, "if-%s-end", name); + return map(exports, buf, 1, "", 1); +} + + +/********************************************************************* + * + * Function : map_conditional + * + * Description : Convenience function. + * Adds an "if-then-else" for the conditional HTML-template + * block , i.e. a substitution of the form: + * @if--then@ + * True text + * @else-not-@ + * False text + * @endif-@ + * + * The control structure and one of the alternatives + * will be hidden. + * + * Parameters : + * 1 : exports = map to extend + * 2 : name = name of conditional block + * 3 : choose_first = nonzero for first, zero for second. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err map_conditional(struct map *exports, const char *name, int choose_first) +{ + char buf[1000]; /* Will do, since the names are hardwired */ + jb_err err; + + assert(exports); + assert(name); + assert(strlen(name) < 480); + + snprintf(buf, 1000, (choose_first + ? "else-not-%s@.*@endif-%s" + : "if-%s-then@.*@else-not-%s"), + name, name); + + err = map(exports, buf, 1, "", 1); + if (err) + { + return err; + } + + snprintf(buf, 1000, (choose_first ? "if-%s-then" : "endif-%s"), name); + return map(exports, buf, 1, "", 1); +} + + +/********************************************************************* + * + * Function : make_menu + * + * Description : Returns an HTML-formatted menu of the available + * unhidden CGIs, excluding the one given in + * + * Parameters : self = name of CGI to leave out, can be NULL for + * complete listing. + * + * Returns : menu string, or NULL on out-of-memory error. + * + *********************************************************************/ +char *make_menu(const char *self) +{ + const struct cgi_dispatcher *d; + char *result = strdup(""); + + if (self == NULL) + { + self = "NO-SUCH-CGI!"; + } + + /* List available unhidden CGI's and export as "other-cgis" */ + for (d = cgi_dispatchers; d->name; d++) + { + if (d->description && strcmp(d->name, self)) + { + string_append(&result, "
  • name); + string_append(&result, "\">"); + string_append(&result, d->description); + string_append(&result, "
    • "); + } + } + + return result; +} + + +/********************************************************************* + * + * Function : dump_map + * + * Description : HTML-dump a map for debugging (as table) + * + * Parameters : + * 1 : the_map = map to dump + * + * Returns : string with HTML + * + *********************************************************************/ +char *dump_map(const struct map *the_map) +{ + struct map_entry *cur_entry; + char *ret = strdup(""); + + string_append(&ret, "\n"); + + for (cur_entry = the_map->first; + (cur_entry != NULL) && (ret != NULL); + cur_entry = cur_entry->next) + { + string_append(&ret, "\n"); + } + + string_append(&ret, "
    "); + string_join (&ret, html_encode(cur_entry->name)); + string_append(&ret, ""); + string_join (&ret, html_encode(cur_entry->value)); + string_append(&ret, "
    \n"); + return ret; +} + + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/cgi.h b/cgi.h new file mode 100644 index 00000000..39c6938d --- /dev/null +++ b/cgi.h @@ -0,0 +1,245 @@ +#ifndef CGI_H_INCLUDED +#define CGI_H_INCLUDED +#define CGI_H_VERSION "$Id: cgi.h,v 1.28 2002/04/26 12:54:03 oes Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/cgi.h,v $ + * + * Purpose : Declares functions to intercept request, generate + * html or gif answers, and to compose HTTP resonses. + * + * Functions declared include: + * + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: cgi.h,v $ + * Revision 1.28 2002/04/26 12:54:03 oes + * New function add_help_link + * + * Revision 1.27 2002/04/24 02:16:51 oes + * Moved get_char_param, get_string_param and get_number_param here from cgiedit.c + * + * Revision 1.26 2002/04/10 13:38:35 oes + * load_template signature changed + * + * Revision 1.25 2002/04/08 20:50:25 swa + * fixed JB spelling + * + * Revision 1.24 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.23 2002/03/24 16:18:15 jongfoster + * Removing old logo + * + * Revision 1.22 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.21 2002/03/07 03:48:38 oes + * - Changed built-in images from GIF to PNG + * (with regard to Unisys patent issue) + * - Added a 4x4 pattern PNG which is less intrusive + * than the logo but also clearly marks the deleted banners + * + * Revision 1.20 2002/03/04 17:53:22 oes + * Fixed compiled warning + * + * Revision 1.19 2002/01/21 00:33:52 jongfoster + * Adding map_block_keep() to save a few bytes in the edit-actions-list HTML. + * + * Revision 1.18 2001/11/16 00:46:31 jongfoster + * Fixing compiler warnings + * + * Revision 1.17 2001/10/23 21:48:19 jongfoster + * Cleaning up error handling in CGI functions - they now send back + * a HTML error page and should never cause a FATAL error. (Fixes one + * potential source of "denial of service" attacks). + * + * CGI actions file editor that works and is actually useful. + * + * Ability to toggle Junkbuster remotely using a CGI call. + * + * You can turn off both the above features in the main configuration + * file, e.g. if you are running a multi-user proxy. + * + * Revision 1.16 2001/09/16 17:08:54 jongfoster + * Moving simple CGI functions from cgi.c to new file cgisimple.c + * + * Revision 1.15 2001/09/16 15:02:35 jongfoster + * Adding i.j.b/robots.txt. + * Inlining add_stats() since it's only ever called from one place. + * + * Revision 1.14 2001/09/16 11:38:02 jongfoster + * Splitting fill_template() into 2 functions: + * template_load() loads the file + * template_fill() performs the PCRS regexps. + * This is because the CGI edit interface has a "table row" + * template which is used many times in the page - this + * change means it's only loaded from disk once. + * + * Revision 1.13 2001/09/16 11:00:10 jongfoster + * New function alloc_http_response, for symmetry with free_http_response + * + * Revision 1.12 2001/09/13 23:31:25 jongfoster + * Moving image data to cgi.c rather than cgi.h. + * + * Revision 1.11 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.10 2001/08/01 21:19:22 jongfoster + * Moving file version information to a separate CGI page. + * + * Revision 1.9 2001/08/01 00:17:54 jongfoster + * Adding prototype for map_conditional + * + * Revision 1.8 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.7 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.6 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.5 2001/06/29 13:22:44 oes + * - Cleaned up + * - Added new functions: default_exports(), make_menu(), + * error_response() etc, ranamed others and changed + * param and return types. + * - Removed HTTP/HTML snipplets + * - Removed logentry from cancelled commit + * + * Revision 1.4 2001/06/09 10:50:58 jongfoster + * Changing "show URL info" handler to new style. + * Adding "extern" to some function prototypes. + * + * Revision 1.3 2001/06/03 19:12:16 oes + * introduced new cgi handling + * + * No revisions before 1.3 + * + **********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + +/* + * Main dispatch function + */ +extern struct http_response *dispatch_cgi(struct client_state *csp); + +/* Not exactly a CGI */ +extern struct http_response * error_response(struct client_state *csp, + const char *templatename, + int err); + +/* + * CGI support functions + */ +extern struct http_response * alloc_http_response(void); +extern void free_http_response(struct http_response *rsp); + +extern struct http_response *finish_http_response(struct http_response *rsp); + +extern struct map * default_exports(const struct client_state *csp, const char *caller); + +extern jb_err map_block_killer (struct map *exports, const char *name); +extern jb_err map_block_keep (struct map *exports, const char *name); +extern jb_err map_conditional (struct map *exports, const char *name, int choose_first); + +extern jb_err template_load(struct client_state *csp, char ** template_ptr, + const char *templatename, int recursive); +extern jb_err template_fill(char ** template_ptr, const struct map *exports); +extern jb_err template_fill_for_cgi(struct client_state *csp, + const char *templatename, + struct map *exports, + struct http_response *rsp); + +extern void cgi_init_error_messages(void); +extern struct http_response *cgi_error_memory(void); +extern jb_err cgi_error_no_template(struct client_state *csp, + struct http_response *rsp, + const char *template_name); +extern jb_err cgi_error_bad_param(struct client_state *csp, + struct http_response *rsp); +jb_err cgi_error_unknown(struct client_state *csp, + struct http_response *rsp, + jb_err error_to_report); + +extern jb_err get_number_param(struct client_state *csp, + const struct map *parameters, + char *name, + unsigned *pvalue); +extern jb_err get_string_param(const struct map *parameters, + const char *param_name, + const char **pparam); +extern char get_char_param(const struct map *parameters, + const char *param_name); + +/* + * Text generators + */ +extern void get_http_time(int time_offset, char * buf); +extern char *add_help_link(const char *item, struct configuration_spec *config); +extern char *make_menu(const char *self); +extern char *dump_map(const struct map *the_map); + +/* + * Ad replacement images + */ +extern const char image_pattern_data[]; +extern const size_t image_pattern_length; +extern const char image_blank_data[]; +extern const size_t image_blank_length; + +/* Revision control strings from this header and associated .c file */ +extern const char cgi_rcs[]; +extern const char cgi_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef CGI_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/cgiedit.c b/cgiedit.c new file mode 100644 index 00000000..0f0e46d3 --- /dev/null +++ b/cgiedit.c @@ -0,0 +1,4710 @@ +const char cgiedit_rcs[] = "$Id: cgiedit.c,v 1.40 2002/05/19 11:34:35 jongfoster Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/cgiedit.c,v $ + * + * Purpose : CGI-based actionsfile editor. + * + * Functions declared include: cgi_edit_* + * + * NOTE: The CGIs in this file use parameter names + * such as "f" and "s" which are really *BAD* choices. + * However, I'm trying to save bytes in the + * edit-actions-list HTML page - the standard actions + * file generated a 550kbyte page, which is ridiculous. + * + * Stick to the short names in this file for consistency. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: cgiedit.c,v $ + * Revision 1.40 2002/05/19 11:34:35 jongfoster + * Handling read-only actions files better - report the actual + * error, not "Out of memory"! + * + * Bug report: + * http://sourceforge.net/tracker/index.php?func=detail + * &aid=557905&group_id=11118&atid=111118 + * + * Revision 1.39 2002/05/12 21:39:15 jongfoster + * - Adding Doxygen-style comments to structures and #defines. + * - Correcting function comments + * + * Revision 1.38 2002/05/03 23:00:38 jongfoster + * Support for templates for "standard actions" buttons. + * See bug #549871 + * + * Revision 1.37 2002/04/30 11:14:52 oes + * Made csp the first parameter in *action_to_html + * + * Revision 1.36 2002/04/26 21:53:30 jongfoster + * Fixing a memory leak. (Near, but not caused by, my earlier commit). + * + * Revision 1.35 2002/04/26 21:50:02 jongfoster + * Honouring default exports in edit-actions-for-url-filter template. + * + * Revision 1.34 2002/04/26 12:54:17 oes + * Adaptions to changes in actions.c + * + * Revision 1.33 2002/04/24 02:17:47 oes + * - Moved get_char_param, get_string_param and get_number_param to cgi.c + * - Comments + * - Activated Jon's code for editing multiple AFs + * - cgi_edit_list_actions now provides context-sensitive + * help, looks up all action sets from standard.action and + * makes buttons for them in the catchall section + * - cgi_edit_action_submit now honors a p parameter, looks up + * the corresponding action set, and sets the catchall pattern's + * actions accordingly. + * + * Revision 1.32 2002/04/19 16:55:31 jongfoster + * Fixing newline problems. If we do our own text file newline + * mangling, we don't want the library to do any, so we need to + * open the files in *binary* mode. + * + * Revision 1.31 2002/04/18 19:21:08 jongfoster + * Added code to detect "conventional" action files, that start + * with a set of actions for all URLs (the pattern "/"). + * These are special-cased in the "edit-actions-list" CGI, so + * that a special UI can be written for them. + * + * Revision 1.30 2002/04/10 13:38:35 oes + * load_template signature changed + * + * Revision 1.29 2002/04/08 16:59:08 oes + * Fixed comment + * + * Revision 1.28 2002/03/27 12:30:29 oes + * Deleted unsused variable + * + * Revision 1.27 2002/03/26 23:06:04 jongfoster + * Removing duplicate @ifs on the toggle page + * + * Revision 1.26 2002/03/26 22:59:17 jongfoster + * Fixing /toggle to display status consistently. + * + * Revision 1.25 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.24 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.23 2002/03/24 13:32:41 swa + * name change related issues + * + * Revision 1.22 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.21 2002/03/22 18:02:48 jongfoster + * Fixing remote toggle + * + * Revision 1.20 2002/03/16 20:28:34 oes + * Added descriptions to the filters so users will know what they select in the cgi editor + * + * Revision 1.19 2002/03/16 18:38:14 jongfoster + * Stopping stupid or malicious users from breaking the actions + * file using the web-based editor. + * + * Revision 1.18 2002/03/16 14:57:44 jongfoster + * Full support for enabling/disabling modular filters. + * + * Revision 1.17 2002/03/16 14:26:42 jongfoster + * First version of modular filters support - READ ONLY! + * Fixing a double-free bug in the out-of-memory handling in map_radio(). + * + * Revision 1.16 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.15 2002/03/06 22:54:35 jongfoster + * Automated function-comment nitpicking. + * + * Revision 1.14 2002/03/05 00:24:51 jongfoster + * Patch to always edit the current actions file. + * + * Revision 1.13 2002/03/04 02:07:59 david__schmidt + * Enable web editing of actions file on OS/2 (it had been broken all this time!) + * + * Revision 1.12 2002/03/03 09:18:03 joergs + * Made jumbjuster work on AmigaOS again. + * + * Revision 1.11 2002/01/23 01:03:31 jongfoster + * Fixing gcc [CygWin] compiler warnings + * + * Revision 1.10 2002/01/23 00:22:59 jongfoster + * Adding new function cgi_edit_actions_section_swap(), to reorder + * the actions file. + * + * Adding get_url_spec_param() to get a validated URL pattern. + * + * Moving edit_read_line() out of this file and into loaders.c. + * + * Adding missing html_encode() to many CGI functions. + * + * Moving the functions that #include actionlist.h to the end of the file, + * because the Visual C++ 97 debugger gets extremely confused if you try + * to debug any code that comes after them in the file. + * + * Major optimizations in cgi_edit_actions_list() to reduce the size of + * the generated HTML (down 40% from 550k to 304k), with major side-effects + * throughout the editor and templates. In particular, the length of the + * URLs throughout the editor has been drastically reduced, by cutting + * paramater names down to 1 character and CGI names down to 3-4 + * characters, by removing all non-essential CGI paramaters even at the + * expense of having to re-read the actions file for the most trivial + * page, and by using relative rather than absolute URLs. This means + * that this (typical example): + * + * + * + * is now this: + * + * + * + * Revision 1.9 2002/01/17 20:56:22 jongfoster + * Replacing hard references to the URL of the config interface + * with #defines from project.h + * + * Revision 1.8 2001/11/30 23:35:51 jongfoster + * Renaming actionsfile to ijb.action + * + * Revision 1.7 2001/11/13 00:28:24 jongfoster + * - Renaming parameters from edit-actions-for-url so that they only + * contain legal JavaScript characters. If we wanted to write + * JavaScript that worked with Netscape 4, this is nessacery. + * (Note that at the moment the JavaScript doesn't actually work + * with Netscape 4, but now this is purely a template issue, not + * one affecting code). + * - Adding new CGIs for use by non-JavaScript browsers: + * edit-actions-url-form + * edit-actions-add-url-form + * edit-actions-remove-url-form + * - Fixing || bug. + * + * Revision 1.6 2001/10/29 03:48:09 david__schmidt + * OS/2 native needed a snprintf() routine. Added one to miscutil, brackedted + * by and __OS2__ ifdef. + * + * Revision 1.5 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.4 2001/10/23 21:48:19 jongfoster + * Cleaning up error handling in CGI functions - they now send back + * a HTML error page and should never cause a FATAL error. (Fixes one + * potential source of "denial of service" attacks). + * + * CGI actions file editor that works and is actually useful. + * + * Ability to toggle JunkBuster remotely using a CGI call. + * + * You can turn off both the above features in the main configuration + * file, e.g. if you are running a multi-user proxy. + * + * Revision 1.3 2001/10/14 22:12:49 jongfoster + * New version of CGI-based actionsfile editor. + * Major changes, including: + * - Completely new file parser and file output routines + * - edit-actions CGI renamed edit-actions-for-url + * - All CGIs now need a filename parameter, except for... + * - New CGI edit-actions which doesn't need a filename, + * to allow you to start the editor up. + * - edit-actions-submit now works, and now automatically + * redirects you back to the main edit-actions-list handler. + * + * Revision 1.2 2001/09/16 17:05:14 jongfoster + * Removing unused #include showarg.h + * + * Revision 1.1 2001/09/16 15:47:37 jongfoster + * First version of CGI-based edit interface. This is very much a + * work-in-progress, and you can't actually use it to edit anything + * yet. You must #define FEATURE_CGI_EDIT_ACTIONS for these changes + * to have any effect. + * + * + **********************************************************************/ + + +#include "config.h" + +/* + * FIXME: Following includes copied from cgi.c - which are actually needed? + */ + +#include +#include +#include +#include +#include +#include +#include + +#ifdef _WIN32 +#define snprintf _snprintf +#endif /* def _WIN32 */ + +#include "project.h" +#include "cgi.h" +#include "cgiedit.h" +#include "cgisimple.h" +#include "list.h" +#include "encode.h" +#include "actions.h" +#include "miscutil.h" +#include "errlog.h" +#include "loaders.h" +#include "loadcfg.h" +/* loadcfg.h is for g_bToggleIJB only */ +#include "urlmatch.h" + +const char cgiedit_h_rcs[] = CGIEDIT_H_VERSION; + + +#ifdef FEATURE_CGI_EDIT_ACTIONS + +/** + * A line in an editable_file. + */ +struct file_line +{ + /** Next entry in the linked list */ + struct file_line * next; + + /** The raw data, to write out if this line is unmodified. */ + char * raw; + + /** Comments and/or whitespace to put before this line if it's modified + and then written out. */ + char * prefix; + + /** The actual data, as a string. Line continuation and comment removal + are performed on the data read from file before it's stored here, so + it will be a single line of data. */ + char * unprocessed; + + /** The type of data on this line. One of the FILE_LINE_xxx constants. */ + int type; + + /** The actual data, processed into some sensible data type. */ + union + { + + /** An action specification. */ + struct action_spec action[1]; + + /** A name=value pair. */ + struct + { + + /** The name in the name=value pair. */ + char * name; + + /** The value in the name=value pair, as a string. */ + char * svalue; + + /** The value in the name=value pair, as an integer. */ + int ivalue; + + } setting; + + /* Add more data types here... e.g. + + + struct url_spec url[1]; + + struct + { + struct action_spec action[1]; + const char * name; + } alias; + + */ + + } data; + +}; + +/** This file_line has not been processed yet. */ +#define FILE_LINE_UNPROCESSED 1 + +/** This file_line is blank. Can only appear at the end of a file, due to + the way the parser works. */ +#define FILE_LINE_BLANK 2 + +/** This file_line says {{alias}}. */ +#define FILE_LINE_ALIAS_HEADER 3 + +/** This file_line defines an alias. */ +#define FILE_LINE_ALIAS_ENTRY 4 + +/** This file_line defines an {action}. */ +#define FILE_LINE_ACTION 5 + +/** This file_line specifies a URL pattern. */ +#define FILE_LINE_URL 6 + +/** This file_line says {{settings}}. */ +#define FILE_LINE_SETTINGS_HEADER 7 + +/** This file_line is in a {{settings}} block. */ +#define FILE_LINE_SETTINGS_ENTRY 8 + +/** This file_line says {{description}}. */ +#define FILE_LINE_DESCRIPTION_HEADER 9 + +/** This file_line is in a {{description}} block. */ +#define FILE_LINE_DESCRIPTION_ENTRY 10 + + +/** + * A configuration file, in a format that can be edited and written back to + * disk. + */ +struct editable_file +{ + struct file_line * lines; /**< The contents of the file. A linked list of lines. */ + const char * filename; /**< Full pathname - e.g. "/etc/privoxy/wibble.action". */ + const char * identifier; /**< Filename stub - e.g. "wibble". Use for CGI param. */ + /**< Pre-encoded with url_encode() for ease of use. */ + const char * version_str; /**< Last modification time, as a string. For CGI param. */ + /**< Can be used in URL without using url_param(). */ + unsigned version; /**< Last modification time - prevents chaos with + the browser's "back" button. Note that this is a + time_t cast to an unsigned. When comparing, always + cast the time_t to an unsigned, and *NOT* vice-versa. + This may lose the top few bits, but they're not + significant anyway. */ + int newline; /**< Newline convention - one of the NEWLINE_xxx constants. + Note that changing this after the file has been + read in will cause a mess. */ + struct file_line * parse_error; /**< On parse error, this is the offending line. */ + const char * parse_error_text; /**< On parse error, this is the problem. + (Statically allocated) */ +}; + +/* FIXME: Following non-static functions should be prototyped in .h or made static */ + +/* Functions to read and write arbitrary config files */ +jb_err edit_read_file(struct client_state *csp, + const struct map *parameters, + int require_version, + const char *suffix, + struct editable_file **pfile); +jb_err edit_write_file(struct editable_file * file); +void edit_free_file(struct editable_file * file); + +/* Functions to read and write actions files */ +jb_err edit_parse_actions_file(struct editable_file * file); +jb_err edit_read_actions_file(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters, + int require_version, + struct editable_file **pfile); + +/* Error handlers */ +jb_err cgi_error_modified(struct client_state *csp, + struct http_response *rsp, + const char *filename); +jb_err cgi_error_parse(struct client_state *csp, + struct http_response *rsp, + struct editable_file *file); +jb_err cgi_error_file(struct client_state *csp, + struct http_response *rsp, + const char *filename); +jb_err cgi_error_file_read_only(struct client_state *csp, + struct http_response *rsp, + const char *filename); +jb_err cgi_error_disabled(struct client_state *csp, + struct http_response *rsp); + +/* Internal arbitrary config file support functions */ +static jb_err edit_read_file_lines(FILE *fp, struct file_line ** pfile, int *newline); +static void edit_free_file_lines(struct file_line * first_line); + +/* Internal actions file support functions */ +static int match_actions_file_header_line(const char * line, const char * name); +static jb_err split_line_on_equals(const char * line, char ** pname, char ** pvalue); + +/* Internal parameter parsing functions */ +static jb_err get_file_name_param(struct client_state *csp, + const struct map *parameters, + const char *param_name, + const char *suffix, + char **pfilename, + const char **pparam); + +static jb_err get_url_spec_param(struct client_state *csp, + const struct map *parameters, + const char *name, + char **pvalue); + + +/* Internal actionsfile <==> HTML conversion functions */ +static jb_err map_radio(struct map * exports, + const char * optionname, + const char * values, + int value); +static jb_err actions_to_radio(struct map * exports, + const struct action_spec *action); +static jb_err actions_from_radio(const struct map * parameters, + struct action_spec *action); + + +static jb_err map_copy_parameter_html(struct map *out, + const struct map *in, + const char *name); +#if 0 /* unused function */ +static jb_err map_copy_parameter_url(struct map *out, + const struct map *in, + const char *name); +#endif /* unused function */ + +/* Internal convenience functions */ +static char *section_target(const unsigned sectionid); + +/********************************************************************* + * + * Function : section_target + * + * Description : Given an unsigned (section id) n, produce a dynamically + * allocated string of the form #l, for use in link + * targets. + * + * Parameters : + * 1 : sectionid = start line number of section + * + * Returns : String with link target, or NULL if out of + * memory + * + *********************************************************************/ +static char *section_target(const unsigned sectionid) +{ + char buf[30]; + + snprintf(buf, 30, "#l%d", sectionid); + return(strdup(buf)); + +} + + +/********************************************************************* + * + * Function : map_copy_parameter_html + * + * Description : Copy a CGI parameter from one map to another, HTML + * encoding it. + * + * Parameters : + * 1 : out = target map + * 2 : in = source map + * 3 : name = name of cgi parameter to copy + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the parameter doesn't exist + * in the source map + * + *********************************************************************/ +static jb_err map_copy_parameter_html(struct map *out, + const struct map *in, + const char *name) +{ + const char * value; + jb_err err; + + assert(out); + assert(in); + assert(name); + + value = lookup(in, name); + err = map(out, name, 1, html_encode(value), 0); + + if (err) + { + /* Out of memory */ + return err; + } + else if (*value == '\0') + { + return JB_ERR_CGI_PARAMS; + } + else + { + return JB_ERR_OK; + } +} + + +#if 0 /* unused function */ +/********************************************************************* + * + * Function : map_copy_parameter_url + * + * Description : Copy a CGI parameter from one map to another, URL + * encoding it. + * + * Parameters : + * 1 : out = target map + * 2 : in = source map + * 3 : name = name of cgi parameter to copy + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the parameter doesn't exist + * in the source map + * + *********************************************************************/ +static jb_err map_copy_parameter_url(struct map *out, + const struct map *in, + const char *name) +{ + const char * value; + jb_err err; + + assert(out); + assert(in); + assert(name); + + value = lookup(in, name); + err = map(out, name, 1, url_encode(value), 0); + + if (err) + { + /* Out of memory */ + return err; + } + else if (*value == '\0') + { + return JB_ERR_CGI_PARAMS; + } + else + { + return JB_ERR_OK; + } +} +#endif /* 0 - unused function */ + +/********************************************************************* + * + * Function : cgi_edit_actions_url_form + * + * Description : CGI function that displays a form for + * edit-actions-url + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : parameters = map of cgi parameters + * + * CGI Parameters + * f : (filename) Identifies the file to edit + * v : (version) File's last-modified time + * p : (pattern) Line number of pattern to edit + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the CGI parameters are not + * specified or not valid. + * + *********************************************************************/ +jb_err cgi_edit_actions_url_form(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters) +{ + struct map * exports; + unsigned patternid; + struct editable_file * file; + struct file_line * cur_line; + unsigned line_number; + unsigned section_start_line_number = 0; + jb_err err; + + assert(csp); + assert(rsp); + assert(parameters); + + if (0 == (csp->config->feature_flags & RUNTIME_FEATURE_CGI_EDIT_ACTIONS)) + { + return cgi_error_disabled(csp, rsp); + } + + err = get_number_param(csp, parameters, "p", &patternid); + if (err) + { + return err; + } + + err = edit_read_actions_file(csp, rsp, parameters, 1, &file); + if (err) + { + /* No filename specified, can't read file, modified, or out of memory. */ + return (err == JB_ERR_FILE ? JB_ERR_OK : err); + } + + cur_line = file->lines; + + for (line_number = 1; (cur_line != NULL) && (line_number < patternid); line_number++) + { + if (cur_line->type == FILE_LINE_ACTION) + { + section_start_line_number = line_number; + } + cur_line = cur_line->next; + } + + if ( (cur_line == NULL) + || (line_number != patternid) + || (patternid < 1) + || (cur_line->type != FILE_LINE_URL)) + { + /* Invalid "patternid" parameter */ + edit_free_file(file); + return JB_ERR_CGI_PARAMS; + } + + if (NULL == (exports = default_exports(csp, NULL))) + { + edit_free_file(file); + return JB_ERR_MEMORY; + } + + err = map(exports, "f", 1, file->identifier, 1); + if (!err) err = map(exports, "v", 1, file->version_str, 1); + if (!err) err = map(exports, "p", 1, url_encode(lookup(parameters, "p")), 0); + if (!err) err = map(exports, "u", 1, html_encode(cur_line->unprocessed), 0); + if (!err) err = map(exports, "jumptarget", 1, section_target(section_start_line_number), 0); + + edit_free_file(file); + + if (err) + { + free_map(exports); + return err; + } + + return template_fill_for_cgi(csp, "edit-actions-url-form", exports, rsp); +} + + +/********************************************************************* + * + * Function : cgi_edit_actions_add_url_form + * + * Description : CGI function that displays a form for + * edit-actions-url + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : parameters = map of cgi parameters + * + * CGI Parameters : + * f : (filename) Identifies the file to edit + * v : (version) File's last-modified time + * s : (section) Line number of section to edit + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the CGI parameters are not + * specified or not valid. + * + *********************************************************************/ +jb_err cgi_edit_actions_add_url_form(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters) +{ + struct map *exports; + jb_err err; + + assert(csp); + assert(rsp); + assert(parameters); + + if (0 == (csp->config->feature_flags & RUNTIME_FEATURE_CGI_EDIT_ACTIONS)) + { + return cgi_error_disabled(csp, rsp); + } + + if (NULL == (exports = default_exports(csp, NULL))) + { + return JB_ERR_MEMORY; + } + + err = map_copy_parameter_html(exports, parameters, "f"); + if (!err) err = map_copy_parameter_html(exports, parameters, "v"); + if (!err) err = map_copy_parameter_html(exports, parameters, "s"); + + if (err) + { + free_map(exports); + return err; + } + + return template_fill_for_cgi(csp, "edit-actions-add-url-form", exports, rsp); +} + + +/********************************************************************* + * + * Function : cgi_edit_actions_remove_url_form + * + * Description : CGI function that displays a form for + * edit-actions-url + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : parameters = map of cgi parameters + * + * CGI Parameters : + * f : (filename) Identifies the file to edit + * v : (version) File's last-modified time + * p : (pattern) Line number of pattern to edit + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the CGI parameters are not + * specified or not valid. + * + *********************************************************************/ +jb_err cgi_edit_actions_remove_url_form(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters) +{ + struct map * exports; + unsigned patternid; + struct editable_file * file; + struct file_line * cur_line; + unsigned line_number; + unsigned section_start_line_number = 0; + jb_err err; + + assert(csp); + assert(rsp); + assert(parameters); + + if (0 == (csp->config->feature_flags & RUNTIME_FEATURE_CGI_EDIT_ACTIONS)) + { + return cgi_error_disabled(csp, rsp); + } + + err = get_number_param(csp, parameters, "p", &patternid); + if (err) + { + return err; + } + + err = edit_read_actions_file(csp, rsp, parameters, 1, &file); + if (err) + { + /* No filename specified, can't read file, modified, or out of memory. */ + return (err == JB_ERR_FILE ? JB_ERR_OK : err); + } + + cur_line = file->lines; + + for (line_number = 1; (cur_line != NULL) && (line_number < patternid); line_number++) + { + if (cur_line->type == FILE_LINE_ACTION) + { + section_start_line_number = line_number; + } + cur_line = cur_line->next; + } + + if ( (cur_line == NULL) + || (line_number != patternid) + || (patternid < 1) + || (cur_line->type != FILE_LINE_URL)) + { + /* Invalid "patternid" parameter */ + edit_free_file(file); + return JB_ERR_CGI_PARAMS; + } + + if (NULL == (exports = default_exports(csp, NULL))) + { + edit_free_file(file); + return JB_ERR_MEMORY; + } + + err = map(exports, "f", 1, file->identifier, 1); + if (!err) err = map(exports, "v", 1, file->version_str, 1); + if (!err) err = map(exports, "p", 1, url_encode(lookup(parameters, "p")), 0); + if (!err) err = map(exports, "u", 1, html_encode(cur_line->unprocessed), 0); + if (!err) err = map(exports, "jumptarget", 1, section_target(section_start_line_number), 0); + + edit_free_file(file); + + if (err) + { + free_map(exports); + return err; + } + + return template_fill_for_cgi(csp, "edit-actions-remove-url-form", exports, rsp); +} + + +/********************************************************************* + * + * Function : edit_write_file + * + * Description : Write a complete file to disk. + * + * Parameters : + * 1 : file = File to write. + * + * Returns : JB_ERR_OK on success + * JB_ERR_FILE on error writing to file. + * JB_ERR_MEMORY on out of memory + * + *********************************************************************/ +jb_err edit_write_file(struct editable_file * file) +{ + FILE * fp; + struct file_line * cur_line; + struct stat statbuf[1]; + char version_buf[22]; /* 22 = ceil(log10(2^64)) + 2 = max number of + digits in time_t, assuming this is a 64-bit + machine, plus null terminator, plus one + for paranoia */ + + assert(file); + assert(file->filename); + + if (NULL == (fp = fopen(file->filename, "wb"))) + { + return JB_ERR_FILE; + } + + cur_line = file->lines; + while (cur_line != NULL) + { + if (cur_line->raw) + { + if (fputs(cur_line->raw, fp) < 0) + { + fclose(fp); + return JB_ERR_FILE; + } + } + else + { + if (cur_line->prefix) + { + if (fputs(cur_line->prefix, fp) < 0) + { + fclose(fp); + return JB_ERR_FILE; + } + } + if (cur_line->unprocessed) + { + + if (NULL != strchr(cur_line->unprocessed, '#')) + { + /* Must quote '#' characters */ + int numhash = 0; + int len; + char * src; + char * dest; + char * str; + + /* Count number of # characters, so we know length of output string */ + src = cur_line->unprocessed; + while (NULL != (src = strchr(src, '#'))) + { + numhash++; + src++; + } + assert(numhash > 0); + + /* Allocate new memory for string */ + len = strlen(cur_line->unprocessed); + if (NULL == (str = malloc((size_t) len + 1 + numhash))) + { + /* Uh oh, just trashed file! */ + fclose(fp); + return JB_ERR_MEMORY; + } + + /* Loop through string from end */ + src = cur_line->unprocessed + len; + dest = str + len + numhash; + for ( ; len >= 0; len--) + { + if ((*dest-- = *src--) == '#') + { + *dest-- = '\\'; + numhash--; + assert(numhash >= 0); + } + } + assert(numhash == 0); + assert(src + 1 == cur_line->unprocessed); + assert(dest + 1 == str); + + if (fputs(str, fp) < 0) + { + free(str); + fclose(fp); + return JB_ERR_FILE; + } + + free(str); + } + else + { + /* Can write without quoting '#' characters. */ + if (fputs(cur_line->unprocessed, fp) < 0) + { + fclose(fp); + return JB_ERR_FILE; + } + } + if (fputs(NEWLINE(file->newline), fp) < 0) + { + fclose(fp); + return JB_ERR_FILE; + } + } + else + { + /* FIXME: Write data from file->data->whatever */ + assert(0); + } + } + cur_line = cur_line->next; + } + + fclose(fp); + + + /* Update the version stamp in the file structure, since we just + * wrote to the file & changed it's date. + */ + if (stat(file->filename, statbuf) < 0) + { + /* Error, probably file not found. */ + return JB_ERR_FILE; + } + file->version = (unsigned)statbuf->st_mtime; + + /* Correct file->version_str */ + freez(file->version_str); + snprintf(version_buf, 22, "%u", file->version); + version_buf[21] = '\0'; + file->version_str = strdup(version_buf); + if (version_buf == NULL) + { + return JB_ERR_MEMORY; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : edit_free_file + * + * Description : Free a complete file in memory. + * + * Parameters : + * 1 : file = Data structure to free. + * + * Returns : N/A + * + *********************************************************************/ +void edit_free_file(struct editable_file * file) +{ + if (!file) + { + /* Silently ignore NULL pointer */ + return; + } + + edit_free_file_lines(file->lines); + freez(file->filename); + freez(file->identifier); + freez(file->version_str); + file->version = 0; + file->parse_error_text = NULL; /* Statically allocated */ + file->parse_error = NULL; + + free(file); +} + + +/********************************************************************* + * + * Function : edit_free_file_lines + * + * Description : Free an entire linked list of file lines. + * + * Parameters : + * 1 : first_line = Data structure to free. + * + * Returns : N/A + * + *********************************************************************/ +static void edit_free_file_lines(struct file_line * first_line) +{ + struct file_line * next_line; + + while (first_line != NULL) + { + next_line = first_line->next; + first_line->next = NULL; + freez(first_line->raw); + freez(first_line->prefix); + freez(first_line->unprocessed); + switch(first_line->type) + { + case 0: /* special case if memory zeroed */ + case FILE_LINE_UNPROCESSED: + case FILE_LINE_BLANK: + case FILE_LINE_ALIAS_HEADER: + case FILE_LINE_SETTINGS_HEADER: + case FILE_LINE_DESCRIPTION_HEADER: + case FILE_LINE_DESCRIPTION_ENTRY: + case FILE_LINE_ALIAS_ENTRY: + case FILE_LINE_URL: + /* No data is stored for these */ + break; + + case FILE_LINE_ACTION: + free_action(first_line->data.action); + break; + + case FILE_LINE_SETTINGS_ENTRY: + freez(first_line->data.setting.name); + freez(first_line->data.setting.svalue); + break; + default: + /* Should never happen */ + assert(0); + break; + } + first_line->type = 0; /* paranoia */ + free(first_line); + first_line = next_line; + } +} + + +/********************************************************************* + * + * Function : match_actions_file_header_line + * + * Description : Match an actions file {{header}} line + * + * Parameters : + * 1 : line = String from file + * 2 : name = Header to match against + * + * Returns : 0 iff they match. + * + *********************************************************************/ +static int match_actions_file_header_line(const char * line, const char * name) +{ + size_t len; + + assert(line); + assert(name); + + /* Look for "{{" */ + if ((line[0] != '{') || (line[1] != '{')) + { + return 1; + } + line += 2; + + /* Look for optional whitespace */ + while ( (*line == ' ') || (*line == '\t') ) + { + line++; + } + + /* Look for the specified name (case-insensitive) */ + len = strlen(name); + if (0 != strncmpic(line, name, len)) + { + return 1; + } + line += len; + + /* Look for optional whitespace */ + while ( (*line == ' ') || (*line == '\t') ) + { + line++; + } + + /* Look for "}}" and end of string*/ + if ((line[0] != '}') || (line[1] != '}') || (line[2] != '\0')) + { + return 1; + } + + /* It matched!! */ + return 0; +} + + +/********************************************************************* + * + * Function : match_actions_file_header_line + * + * Description : Match an actions file {{header}} line + * + * Parameters : + * 1 : line = String from file. Must not start with + * whitespace (else infinite loop!) + * 2 : pname = Destination for name + * 2 : pvalue = Destination for value + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_PARSE if there's no "=" sign, or if there's + * nothing before the "=" sign (but empty + * values *after* the "=" sign are legal). + * + *********************************************************************/ +static jb_err split_line_on_equals(const char * line, char ** pname, char ** pvalue) +{ + const char * name_end; + const char * value_start; + size_t name_len; + + assert(line); + assert(pname); + assert(pvalue); + assert(*line != ' '); + assert(*line != '\t'); + + *pname = NULL; + *pvalue = NULL; + + value_start = strchr(line, '='); + if ((value_start == NULL) || (value_start == line)) + { + return JB_ERR_PARSE; + } + + name_end = value_start - 1; + + /* Eat any whitespace before the '=' */ + while ((*name_end == ' ') || (*name_end == '\t')) + { + /* + * we already know we must have at least 1 non-ws char + * at start of buf - no need to check + */ + name_end--; + } + + name_len = name_end - line + 1; /* Length excluding \0 */ + if (NULL == (*pname = (char *) malloc(name_len + 1))) + { + return JB_ERR_MEMORY; + } + strncpy(*pname, line, name_len); + (*pname)[name_len] = '\0'; + + /* Eat any the whitespace after the '=' */ + value_start++; + while ((*value_start == ' ') || (*value_start == '\t')) + { + value_start++; + } + + if (NULL == (*pvalue = strdup(value_start))) + { + free(*pname); + *pname = NULL; + return JB_ERR_MEMORY; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : edit_parse_actions_file + * + * Description : Parse an actions file in memory. + * + * Passed linked list must have the "data" member + * zeroed, and must contain valid "next" and + * "unprocessed" fields. The "raw" and "prefix" + * fields are ignored, and "type" is just overwritten. + * + * Note that on error the file may have been + * partially parsed. + * + * Parameters : + * 1 : file = Actions file to be parsed in-place. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_PARSE on error + * + *********************************************************************/ +jb_err edit_parse_actions_file(struct editable_file * file) +{ + struct file_line * cur_line; + size_t len; + const char * text; /* Text from a line */ + char * name; /* For lines of the form name=value */ + char * value; /* For lines of the form name=value */ + struct action_alias * alias_list = NULL; + jb_err err = JB_ERR_OK; + + /* alias_list contains the aliases defined in this file. + * It might be better to use the "file_line.data" fields + * in the relavent places instead. + */ + + cur_line = file->lines; + + /* A note about blank line support: Blank lines should only + * ever occur as the last line in the file. This function + * is more forgiving than that - FILE_LINE_BLANK can occur + * anywhere. + */ + + /* Skip leading blanks. Should only happen if file is + * empty (which is valid, but pointless). + */ + while ( (cur_line != NULL) + && (cur_line->unprocessed[0] == '\0') ) + { + /* Blank line */ + cur_line->type = FILE_LINE_BLANK; + cur_line = cur_line->next; + } + + if ( (cur_line != NULL) + && (cur_line->unprocessed[0] != '{') ) + { + /* File doesn't start with a header */ + file->parse_error = cur_line; + file->parse_error_text = "First (non-comment) line of the file must contain a header."; + return JB_ERR_PARSE; + } + + if ( (cur_line != NULL) && (0 == + match_actions_file_header_line(cur_line->unprocessed, "settings") ) ) + { + cur_line->type = FILE_LINE_SETTINGS_HEADER; + + cur_line = cur_line->next; + while ((cur_line != NULL) && (cur_line->unprocessed[0] != '{')) + { + if (cur_line->unprocessed[0]) + { + cur_line->type = FILE_LINE_SETTINGS_ENTRY; + + err = split_line_on_equals(cur_line->unprocessed, + &cur_line->data.setting.name, + &cur_line->data.setting.svalue); + if (err == JB_ERR_MEMORY) + { + return err; + } + else if (err != JB_ERR_OK) + { + /* Line does not contain a name=value pair */ + file->parse_error = cur_line; + file->parse_error_text = "Expected a name=value pair on this {{description}} line, but couldn't find one."; + return JB_ERR_PARSE; + } + } + else + { + cur_line->type = FILE_LINE_BLANK; + } + cur_line = cur_line->next; + } + } + + if ( (cur_line != NULL) && (0 == + match_actions_file_header_line(cur_line->unprocessed, "description") ) ) + { + cur_line->type = FILE_LINE_DESCRIPTION_HEADER; + + cur_line = cur_line->next; + while ((cur_line != NULL) && (cur_line->unprocessed[0] != '{')) + { + if (cur_line->unprocessed[0]) + { + cur_line->type = FILE_LINE_DESCRIPTION_ENTRY; + } + else + { + cur_line->type = FILE_LINE_BLANK; + } + cur_line = cur_line->next; + } + } + + if ( (cur_line != NULL) && (0 == + match_actions_file_header_line(cur_line->unprocessed, "alias") ) ) + { + cur_line->type = FILE_LINE_ALIAS_HEADER; + + cur_line = cur_line->next; + while ((cur_line != NULL) && (cur_line->unprocessed[0] != '{')) + { + if (cur_line->unprocessed[0]) + { + /* define an alias */ + struct action_alias * new_alias; + + cur_line->type = FILE_LINE_ALIAS_ENTRY; + + err = split_line_on_equals(cur_line->unprocessed, &name, &value); + if (err == JB_ERR_MEMORY) + { + return err; + } + else if (err != JB_ERR_OK) + { + /* Line does not contain a name=value pair */ + file->parse_error = cur_line; + file->parse_error_text = "Expected a name=value pair on this {{alias}} line, but couldn't find one."; + return JB_ERR_PARSE; + } + + if ((new_alias = zalloc(sizeof(*new_alias))) == NULL) + { + /* Out of memory */ + free(name); + free(value); + free_alias_list(alias_list); + return JB_ERR_MEMORY; + } + + err = get_actions(value, alias_list, new_alias->action); + if (err) + { + /* Invalid action or out of memory */ + free(name); + free(value); + free(new_alias); + free_alias_list(alias_list); + if (err == JB_ERR_MEMORY) + { + return err; + } + else + { + /* Line does not contain a name=value pair */ + file->parse_error = cur_line; + file->parse_error_text = "This alias does not specify a valid set of actions."; + return JB_ERR_PARSE; + } + } + + free(value); + + new_alias->name = name; + + /* add to list */ + new_alias->next = alias_list; + alias_list = new_alias; + } + else + { + cur_line->type = FILE_LINE_BLANK; + } + cur_line = cur_line->next; + } + } + + /* Header done, process the main part of the file */ + while (cur_line != NULL) + { + /* At this point, (cur_line->unprocessed[0] == '{') */ + assert(cur_line->unprocessed[0] == '{'); + text = cur_line->unprocessed + 1; + len = strlen(text) - 1; + if (text[len] != '}') + { + /* No closing } on header */ + free_alias_list(alias_list); + file->parse_error = cur_line; + file->parse_error_text = "Headers starting with '{' must have a " + "closing bracket ('}'). Headers starting with two brackets ('{{') " + "must close with two brackets ('}}')."; + return JB_ERR_PARSE; + } + + if (text[0] == '{') + { + /* An invalid {{ header. */ + free_alias_list(alias_list); + file->parse_error = cur_line; + file->parse_error_text = "Unknown or unexpected two-bracket header. " + "Please remember that the system (two-bracket) headers must " + "appear in the order {{settings}}, {{description}}, {{alias}}, " + "and must appear before any actions (one-bracket) headers. " + "Also note that system headers may not be repeated."; + return JB_ERR_PARSE; + } + + while ( (*text == ' ') || (*text == '\t') ) + { + text++; + len--; + } + while ( (len > 0) + && ( (text[len - 1] == ' ') + || (text[len - 1] == '\t') ) ) + { + len--; + } + + cur_line->type = FILE_LINE_ACTION; + + /* Remove {} and make copy */ + if (NULL == (value = (char *) malloc(len + 1))) + { + /* Out of memory */ + free_alias_list(alias_list); + return JB_ERR_MEMORY; + } + strncpy(value, text, len); + value[len] = '\0'; + + /* Get actions */ + err = get_actions(value, alias_list, cur_line->data.action); + if (err) + { + /* Invalid action or out of memory */ + free(value); + free_alias_list(alias_list); + if (err == JB_ERR_MEMORY) + { + return err; + } + else + { + /* Line does not contain a name=value pair */ + file->parse_error = cur_line; + file->parse_error_text = "This header does not specify a valid set of actions."; + return JB_ERR_PARSE; + } + } + + /* Done with string - it was clobbered anyway */ + free(value); + + /* Process next line */ + cur_line = cur_line->next; + + /* Loop processing URL patterns */ + while ((cur_line != NULL) && (cur_line->unprocessed[0] != '{')) + { + if (cur_line->unprocessed[0]) + { + /* Could parse URL here, but this isn't currently needed */ + + cur_line->type = FILE_LINE_URL; + } + else + { + cur_line->type = FILE_LINE_BLANK; + } + cur_line = cur_line->next; + } + } /* End main while(cur_line != NULL) loop */ + + free_alias_list(alias_list); + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : edit_read_file_lines + * + * Description : Read all the lines of a file into memory. + * Handles whitespace, comments and line continuation. + * + * Parameters : + * 1 : fp = File to read from. On return, this will be + * at EOF but it will not have been closed. + * 2 : pfile = Destination for a linked list of file_lines. + * Will be set to NULL on error. + * 3 : newline = How to handle newlines. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * + *********************************************************************/ +jb_err edit_read_file_lines(FILE *fp, struct file_line ** pfile, int *newline) +{ + struct file_line * first_line; /* Keep for return value or to free */ + struct file_line * cur_line; /* Current line */ + struct file_line * prev_line; /* Entry with prev_line->next = cur_line */ + jb_err rval; + + assert(fp); + assert(pfile); + + *pfile = NULL; + + cur_line = first_line = zalloc(sizeof(struct file_line)); + if (cur_line == NULL) + { + return JB_ERR_MEMORY; + } + + cur_line->type = FILE_LINE_UNPROCESSED; + + rval = edit_read_line(fp, &cur_line->raw, &cur_line->prefix, &cur_line->unprocessed, newline, NULL); + if (rval) + { + /* Out of memory or empty file. */ + /* Note that empty file is not an error we propogate up */ + free(cur_line); + return ((rval == JB_ERR_FILE) ? JB_ERR_OK : rval); + } + + do + { + prev_line = cur_line; + cur_line = prev_line->next = zalloc(sizeof(struct file_line)); + if (cur_line == NULL) + { + /* Out of memory */ + edit_free_file_lines(first_line); + return JB_ERR_MEMORY; + } + + cur_line->type = FILE_LINE_UNPROCESSED; + + rval = edit_read_line(fp, &cur_line->raw, &cur_line->prefix, &cur_line->unprocessed, newline, NULL); + if ((rval != JB_ERR_OK) && (rval != JB_ERR_FILE)) + { + /* Out of memory */ + edit_free_file_lines(first_line); + return JB_ERR_MEMORY; + } + + } + while (rval != JB_ERR_FILE); + + /* EOF */ + + /* We allocated one too many - free it */ + prev_line->next = NULL; + free(cur_line); + + *pfile = first_line; + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : edit_read_file + * + * Description : Read a complete file into memory. + * Handles CGI parameter parsing. If requested, also + * checks the file's modification timestamp. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : parameters = map of cgi parameters. + * 3 : require_version = true to check "ver" parameter. + * 4 : suffix = File extension, e.g. ".action". + * 5 : pfile = Destination for the file. Will be set + * to NULL on error. + * + * CGI Parameters : + * filename : The name of the file to read, without the + * path or ".action" extension. + * ver : (Only if require_version is nonzero) + * Timestamp of the actions file. If wrong, this + * function fails with JB_ERR_MODIFIED. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if "filename" was not specified + * or is not valid. + * JB_ERR_FILE if the file cannot be opened or + * contains no data + * JB_ERR_MODIFIED if version checking was requested and + * failed - the file was modified outside + * of this CGI editor instance. + * + *********************************************************************/ +jb_err edit_read_file(struct client_state *csp, + const struct map *parameters, + int require_version, + const char *suffix, + struct editable_file **pfile) +{ + struct file_line * lines; + FILE * fp; + jb_err err; + char * filename; + const char * identifier; + struct editable_file * file; + unsigned version = 0; + struct stat statbuf[1]; + char version_buf[22]; + int newline = NEWLINE_UNKNOWN; + + assert(csp); + assert(parameters); + assert(pfile); + + *pfile = NULL; + + err = get_file_name_param(csp, parameters, "f", suffix, + &filename, &identifier); + if (err) + { + return err; + } + + if (stat(filename, statbuf) < 0) + { + /* Error, probably file not found. */ + free(filename); + return JB_ERR_FILE; + } + version = (unsigned) statbuf->st_mtime; + + if (require_version) + { + unsigned specified_version; + err = get_number_param(csp, parameters, "v", &specified_version); + if (err) + { + free(filename); + return err; + } + + if (version != specified_version) + { + return JB_ERR_MODIFIED; + } + } + + if (NULL == (fp = fopen(filename,"rb"))) + { + free(filename); + return JB_ERR_FILE; + } + + err = edit_read_file_lines(fp, &lines, &newline); + + fclose(fp); + + if (err) + { + free(filename); + return err; + } + + file = (struct editable_file *) zalloc(sizeof(*file)); + if (err) + { + free(filename); + edit_free_file_lines(lines); + return err; + } + + file->lines = lines; + file->newline = newline; + file->filename = filename; + file->version = version; + file->identifier = url_encode(identifier); + + if (file->identifier == NULL) + { + edit_free_file(file); + return JB_ERR_MEMORY; + } + + /* Correct file->version_str */ + freez(file->version_str); + snprintf(version_buf, 22, "%u", file->version); + version_buf[21] = '\0'; + file->version_str = strdup(version_buf); + if (version_buf == NULL) + { + edit_free_file(file); + return JB_ERR_MEMORY; + } + + *pfile = file; + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : edit_read_actions_file + * + * Description : Read a complete actions file into memory. + * Handles CGI parameter parsing. If requested, also + * checks the file's modification timestamp. + * + * If this function detects an error in the categories + * JB_ERR_FILE, JB_ERR_MODIFIED, or JB_ERR_PARSE, + * then it handles it by filling in the specified + * response structure and returning JB_ERR_FILE. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = HTTP response. Only filled in on error. + * 2 : parameters = map of cgi parameters. + * 3 : require_version = true to check "ver" parameter. + * 4 : pfile = Destination for the file. Will be set + * to NULL on error. + * + * CGI Parameters : + * filename : The name of the actions file to read, without the + * path or ".action" extension. + * ver : (Only if require_version is nonzero) + * Timestamp of the actions file. If wrong, this + * function fails with JB_ERR_MODIFIED. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if "filename" was not specified + * or is not valid. + * JB_ERR_FILE if the file does not contain valid data, + * or if file cannot be opened or + * contains no data, or if version + * checking was requested and failed. + * + *********************************************************************/ +jb_err edit_read_actions_file(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters, + int require_version, + struct editable_file **pfile) +{ + jb_err err; + struct editable_file *file; + + assert(csp); + assert(parameters); + assert(pfile); + + *pfile = NULL; + + err = edit_read_file(csp, parameters, require_version, ".action", &file); + if (err) + { + /* Try to handle if possible */ + if (err == JB_ERR_FILE) + { + err = cgi_error_file(csp, rsp, lookup(parameters, "f")); + } + else if (err == JB_ERR_MODIFIED) + { + err = cgi_error_modified(csp, rsp, lookup(parameters, "f")); + } + if (err == JB_ERR_OK) + { + /* + * Signal to higher-level CGI code that there was a problem but we + * handled it, they should just return JB_ERR_OK. + */ + err = JB_ERR_FILE; + } + return err; + } + + err = edit_parse_actions_file(file); + if (err) + { + if (err == JB_ERR_PARSE) + { + err = cgi_error_parse(csp, rsp, file); + if (err == JB_ERR_OK) + { + /* + * Signal to higher-level CGI code that there was a problem but we + * handled it, they should just return JB_ERR_OK. + */ + err = JB_ERR_FILE; + } + } + edit_free_file(file); + return err; + } + + *pfile = file; + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : get_file_name_param + * + * Description : Get the name of the file to edit from the parameters + * passed to a CGI function. This function handles + * security checks such as blocking urls containing + * "/" or ".", prepending the config file directory, + * and adding the specified suffix. + * + * (This is an essential security check, otherwise + * users may be able to pass "../../../etc/passwd" + * and overwrite the password file [linux], "prn:" + * and print random data [Windows], etc...) + * + * This function only allows filenames contining the + * characters '-', '_', 'A'-'Z', 'a'-'z', and '0'-'9'. + * That's probably too restrictive but at least it's + * secure. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : parameters = map of cgi parameters + * 3 : param_name = The name of the parameter to read + * 4 : suffix = File extension, e.g. ".actions" + * 5 : pfilename = destination for full filename. Caller + * free()s. Set to NULL on error. + * 6 : pparam = destination for partial filename, + * suitable for use in another URL. Allocated as part + * of the map "parameters", so don't free it. + * Set to NULL if not specified. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if "filename" was not specified + * or is not valid. + * + *********************************************************************/ +static jb_err get_file_name_param(struct client_state *csp, + const struct map *parameters, + const char *param_name, + const char *suffix, + char **pfilename, + const char **pparam) +{ + const char *param; + const char *s; + char *name; + char *fullpath; + char ch; + int len; + + assert(csp); + assert(parameters); + assert(suffix); + assert(pfilename); + assert(pparam); + + *pfilename = NULL; + *pparam = NULL; + + param = lookup(parameters, param_name); + if (!*param) + { + return JB_ERR_CGI_PARAMS; + } + + *pparam = param; + + len = strlen(param); + if (len >= FILENAME_MAX) + { + /* Too long. */ + return JB_ERR_CGI_PARAMS; + } + + /* Check every character to see if it's legal */ + s = param; + while ((ch = *s++) != '\0') + { + if ( ((ch < 'A') || (ch > 'Z')) + && ((ch < 'a') || (ch > 'z')) + && ((ch < '0') || (ch > '9')) + && (ch != '-') + && (ch != '_') ) + { + /* Probable hack attempt. */ + return JB_ERR_CGI_PARAMS; + } + } + + /* Append extension */ + name = malloc(len + strlen(suffix) + 1); + if (name == NULL) + { + return JB_ERR_MEMORY; + } + strcpy(name, param); + strcpy(name + len, suffix); + + /* Prepend path */ + fullpath = make_path(csp->config->confdir, name); + free(name); + + if (fullpath == NULL) + { + return JB_ERR_MEMORY; + } + + /* Success */ + *pfilename = fullpath; + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : get_url_spec_param + * + * Description : Get a URL pattern from the parameters + * passed to a CGI function. Removes leading/trailing + * spaces and validates it. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : parameters = map of cgi parameters + * 3 : name = Name of CGI parameter to read + * 4 : pvalue = destination for value. Will be malloc()'d. + * Set to NULL on error. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory + * JB_ERR_CGI_PARAMS if the parameter was not specified + * or is not valid. + * + *********************************************************************/ +static jb_err get_url_spec_param(struct client_state *csp, + const struct map *parameters, + const char *name, + char **pvalue) +{ + const char *orig_param; + char *param; + char *s; + struct url_spec compiled[1]; + jb_err err; + + assert(csp); + assert(parameters); + assert(name); + assert(pvalue); + + *pvalue = NULL; + + orig_param = lookup(parameters, name); + if (!*orig_param) + { + return JB_ERR_CGI_PARAMS; + } + + /* Copy and trim whitespace */ + param = strdup(orig_param); + if (param == NULL) + { + return JB_ERR_MEMORY; + } + chomp(param); + + /* Must be non-empty, and can't allow 1st character to be '{' */ + if (param[0] == '\0' || param[0] == '{') + { + free(param); + return JB_ERR_CGI_PARAMS; + } + + /* Check for embedded newlines */ + for (s = param; *s != '\0'; s++) + { + if ((*s == '\r') || (*s == '\n')) + { + free(param); + return JB_ERR_CGI_PARAMS; + } + } + + /* Check that regex is valid */ + s = strdup(param); + if (s == NULL) + { + free(param); + return JB_ERR_MEMORY; + } + err = create_url_spec(compiled, s); + free(s); + if (err) + { + free(param); + return (err == JB_ERR_MEMORY) ? JB_ERR_MEMORY : JB_ERR_CGI_PARAMS; + } + free_url_spec(compiled); + + if (param[strlen(param) - 1] == '\\') + { + /* + * Must protect trailing '\\' from becoming line continuation character. + * Two methods: 1) If it's a domain only, add a trailing '/'. + * 2) For path, add the do-nothing PCRE expression (?:) to the end + */ + if (strchr(param, '/') == NULL) + { + err = string_append(¶m, "/"); + } + else + { + err = string_append(¶m, "(?:)"); + } + if (err) + { + return err; + } + + /* Check that the modified regex is valid */ + s = strdup(param); + if (s == NULL) + { + free(param); + return JB_ERR_MEMORY; + } + err = create_url_spec(compiled, s); + free(s); + if (err) + { + free(param); + return (err == JB_ERR_MEMORY) ? JB_ERR_MEMORY : JB_ERR_CGI_PARAMS; + } + free_url_spec(compiled); + } + + *pvalue = param; + return JB_ERR_OK; +} + +/********************************************************************* + * + * Function : map_radio + * + * Description : Map a set of radio button values. E.g. if you have + * 3 radio buttons, declare them as: + * View ", i); + if (!err) err = string_append(&s, buf); + + if (NULL == strstr(csp->actions_list[i]->filename, "standard.action") && NULL != csp->config->actions_file_short[i]) + { + snprintf(buf, 100, "Edit", csp->config->actions_file_short[i]); + if (!err) err = string_append(&s, buf); + } + + if (!err) err = string_append(&s, "\n"); + } + } + if (*s != '\0') + { + if (!err) err = map(exports, "actions-filenames", 1, s, 0); + } + else + { + if (!err) err = map(exports, "actions-filenames", 1, "None specified", 1); + } + + if (csp->rlist) + { + if (!err) err = map(exports, "re-filter-filename", 1, html_encode(csp->rlist->filename), 0); + } + else + { + if (!err) err = map(exports, "re-filter-filename", 1, "None specified", 1); + if (!err) err = map_block_killer(exports, "have-filterfile"); + } + +#ifdef FEATURE_TRUST + if (csp->tlist) + { + if (!err) err = map(exports, "trust-filename", 1, html_encode(csp->tlist->filename), 0); + } + else + { + if (!err) err = map(exports, "trust-filename", 1, "None specified", 1); + if (!err) err = map_block_killer(exports, "have-trustfile"); + } +#else + if (!err) err = map_block_killer(exports, "trust-support"); +#endif /* ndef FEATURE_TRUST */ + + if (err) + { + free_map(exports); + return JB_ERR_MEMORY; + } + + return template_fill_for_cgi(csp, "show-status", exports, rsp); +} + + +/********************************************************************* + * + * Function : cgi_show_url_info + * + * Description : CGI function that determines and shows which actions + * Privoxy will perform for a given url, and which + * matches starting from the defaults have lead to that. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : parameters = map of cgi parameters + * + * CGI Parameters : + * url : The url whose actions are to be determined. + * If url is unset, the url-given conditional will be + * set, so that all but the form can be suppressed in + * the template. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err cgi_show_url_info(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters) +{ + char *url_param; + struct map *exports; + char buf[150]; + + assert(csp); + assert(rsp); + assert(parameters); + + if (NULL == (exports = default_exports(csp, "show-url-info"))) + { + return JB_ERR_MEMORY; + } + + /* + * Get the url= parameter (if present) and remove any leading/trailing spaces. + */ + url_param = strdup(lookup(parameters, "url")); + if (url_param == NULL) + { + free_map(exports); + return JB_ERR_MEMORY; + } + chomp(url_param); + + /* + * Handle prefixes. 4 possibilities: + * 1) "http://" or "https://" prefix present and followed by URL - OK + * 2) Only the "http://" or "https://" part is present, no URL - change + * to empty string so it will be detected later as "no URL". + * 3) Parameter specified but doesn't contain "http(s?)://" - add a + * "http://" prefix. + * 4) Parameter not specified or is empty string - let this fall through + * for now, next block of code will handle it. + */ + if (0 == strncmp(url_param, "http://", 7)) + { + if (url_param[7] == '\0') + { + /* + * Empty URL (just prefix). + * Make it totally empty so it's caught by the next if() + */ + url_param[0] = '\0'; + } + } + else if (0 == strncmp(url_param, "https://", 8)) + { + if (url_param[8] == '\0') + { + /* + * Empty URL (just prefix). + * Make it totally empty so it's caught by the next if() + */ + url_param[0] = '\0'; + } + } + else if (url_param[0] != '\0') + { + /* + * Unknown prefix - assume http:// + */ + char * url_param_prefixed = malloc(7 + 1 + strlen(url_param)); + if (NULL == url_param_prefixed) + { + free(url_param); + free_map(exports); + return JB_ERR_MEMORY; + } + strcpy(url_param_prefixed, "http://"); + strcpy(url_param_prefixed + 7, url_param); + free(url_param); + url_param = url_param_prefixed; + } + + + if (url_param[0] == '\0') + { + /* URL paramater not specified, display query form only. */ + free(url_param); + if (map_block_killer(exports, "url-given") + || map(exports, "url", 1, "", 1)) + { + free_map(exports); + return JB_ERR_MEMORY; + } + } + else + { + /* Given a URL, so query it. */ + jb_err err; + char *matches; + char *s; + int hits = 0; + struct file_list *fl; + struct url_actions *b; + struct http_request url_to_query[1]; + struct current_action_spec action[1]; + int i; + + if (map(exports, "url", 1, html_encode(url_param), 0)) + { + free(url_param); + free_map(exports); + return JB_ERR_MEMORY; + } + + init_current_action(action); + + if (map(exports, "default", 1, current_action_to_html(csp, action), 0)) + { + free_current_action(action); + free(url_param); + free_map(exports); + return JB_ERR_MEMORY; + } + + err = parse_http_url(url_param, url_to_query, csp); + + free(url_param); + + if (err == JB_ERR_MEMORY) + { + free_current_action(action); + free_map(exports); + return JB_ERR_MEMORY; + } + else if (err) + { + /* Invalid URL */ + + err = map(exports, "matches", 1, "[Invalid URL specified!]" , 1); + if (!err) err = map(exports, "final", 1, lookup(exports, "default"), 1); + + free_current_action(action); + + if (err) + { + free_map(exports); + return JB_ERR_MEMORY; + } + + return template_fill_for_cgi(csp, "show-url-info", exports, rsp); + } + + /* + * We have a warning about SSL paths. Hide it for insecure sites. + */ + if (!url_to_query->ssl) + { + if (map_block_killer(exports, "https")) + { + free_current_action(action); + free_map(exports); + return JB_ERR_MEMORY; + } + } + + matches = strdup(""); + + for (i = 0; i < MAX_ACTION_FILES; i++) + { + if (NULL == csp->config->actions_file_short[i] + || !strcmp(csp->config->actions_file_short[i], "standard")) continue; + + b = NULL; + hits = 1; + if ((fl = csp->actions_list[i]) != NULL) + { + if ((b = fl->f) != NULL) + { + /* FIXME: Hardcoded HTML! */ + string_append(&matches, "\n"); + + hits = 0; + b = b->next; + } + } + + for (; (b != NULL) && (matches != NULL); b = b->next) + { + if (url_match(b->url, url_to_query)) + { + string_append(&matches, "\n"); + + if (merge_current_action(action, b->action)) + { + freez(matches); + free_http_request(url_to_query); + free_current_action(action); + free_map(exports); + return JB_ERR_MEMORY; + } + hits++; + } + } + + if (!hits) + { + string_append(&matches, "\n"); + } + } + string_append(&matches, "
    In file: "); + string_join (&matches, html_encode(csp->config->actions_file_short[i])); + snprintf(buf, 150, ".action ", i); + string_append(&matches, buf); + string_append(&matches, "View config->actions_file_short[i])); + string_append(&matches, "\">Edit
    {"); + string_join (&matches, actions_to_html(csp, b->action)); + string_append(&matches, " }
    \n"); + string_join (&matches, html_encode(b->url->spec)); + string_append(&matches, "
    (no matches in this file)
    \n"); + + free_http_request(url_to_query); + + if (matches == NULL) + { + free_current_action(action); + free_map(exports); + return JB_ERR_MEMORY; + } + + if (map(exports, "matches", 1, matches , 0)) + { + free_current_action(action); + free_map(exports); + return JB_ERR_MEMORY; + } + + s = current_action_to_html(csp, action); + + free_current_action(action); + + if (map(exports, "final", 1, s, 0)) + { + free_map(exports); + return JB_ERR_MEMORY; + } + } + + return template_fill_for_cgi(csp, "show-url-info", exports, rsp); +} + + +/********************************************************************* + * + * Function : cgi_robots_txt + * + * Description : CGI function to return "/robots.txt". + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : rsp = http_response data structure for output + * 3 : parameters = map of cgi parameters + * + * CGI Parameters : None + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err cgi_robots_txt(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters) +{ + char buf[100]; + jb_err err; + + rsp->body = strdup( + "# This is the Privoxy control interface.\n" + "# It isn't very useful to index it, and you're likely to break stuff.\n" + "# So go away!\n" + "\n" + "User-agent: *\n" + "Disallow: /\n" + "\n"); + if (rsp->body == NULL) + { + return JB_ERR_MEMORY; + } + + err = enlist_unique(rsp->headers, "Content-Type: text/plain", 13); + + rsp->is_static = 1; + + get_http_time(7 * 24 * 60 * 60, buf); /* 7 days into future */ + if (!err) err = enlist_unique_header(rsp->headers, "Expires", buf); + + return (err ? JB_ERR_MEMORY : JB_ERR_OK); +} + + +/********************************************************************* + * + * Function : show_defines + * + * Description : Add to a map the state od all conditional #defines + * used when building + * + * Parameters : + * 1 : exports = map to extend + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +static jb_err show_defines(struct map *exports) +{ + jb_err err = JB_ERR_OK; + +#ifdef FEATURE_ACL + if (!err) err = map_conditional(exports, "FEATURE_ACL", 1); +#else /* ifndef FEATURE_ACL */ + if (!err) err = map_conditional(exports, "FEATURE_ACL", 0); +#endif /* ndef FEATURE_ACL */ + +#ifdef FEATURE_CGI_EDIT_ACTIONS + if (!err) err = map_conditional(exports, "FEATURE_CGI_EDIT_ACTIONS", 1); +#else /* ifndef FEATURE_COOKIE_JAR */ + if (!err) err = map_conditional(exports, "FEATURE_CGI_EDIT_ACTIONS", 0); +#endif /* ndef FEATURE_COOKIE_JAR */ + +#ifdef FEATURE_COOKIE_JAR + if (!err) err = map_conditional(exports, "FEATURE_COOKIE_JAR", 1); +#else /* ifndef FEATURE_COOKIE_JAR */ + if (!err) err = map_conditional(exports, "FEATURE_COOKIE_JAR", 0); +#endif /* ndef FEATURE_COOKIE_JAR */ + +#ifdef FEATURE_FAST_REDIRECTS + if (!err) err = map_conditional(exports, "FEATURE_FAST_REDIRECTS", 1); +#else /* ifndef FEATURE_FAST_REDIRECTS */ + if (!err) err = map_conditional(exports, "FEATURE_FAST_REDIRECTS", 0); +#endif /* ndef FEATURE_FAST_REDIRECTS */ + +#ifdef FEATURE_FORCE_LOAD + if (!err) err = map_conditional(exports, "FEATURE_FORCE_LOAD", 1); + if (!err) err = map(exports, "FORCE_PREFIX", 1, FORCE_PREFIX, 1); +#else /* ifndef FEATURE_FORCE_LOAD */ + if (!err) err = map_conditional(exports, "FEATURE_FORCE_LOAD", 0); + if (!err) err = map(exports, "FORCE_PREFIX", 1, "(none - disabled)", 1); +#endif /* ndef FEATURE_FORCE_LOAD */ + +#ifdef FEATURE_IMAGE_BLOCKING + if (!err) err = map_conditional(exports, "FEATURE_IMAGE_BLOCKING", 1); +#else /* ifndef FEATURE_IMAGE_BLOCKING */ + if (!err) err = map_conditional(exports, "FEATURE_IMAGE_BLOCKING", 0); +#endif /* ndef FEATURE_IMAGE_BLOCKING */ + +#ifdef FEATURE_IMAGE_DETECT_MSIE + if (!err) err = map_conditional(exports, "FEATURE_IMAGE_DETECT_MSIE", 1); +#else /* ifndef FEATURE_IMAGE_DETECT_MSIE */ + if (!err) err = map_conditional(exports, "FEATURE_IMAGE_DETECT_MSIE", 0); +#endif /* ndef FEATURE_IMAGE_DETECT_MSIE */ + +#ifdef FEATURE_KILL_POPUPS + if (!err) err = map_conditional(exports, "FEATURE_KILL_POPUPS", 1); +#else /* ifndef FEATURE_KILL_POPUPS */ + if (!err) err = map_conditional(exports, "FEATURE_KILL_POPUPS", 0); +#endif /* ndef FEATURE_KILL_POPUPS */ + +#ifdef FEATURE_NO_GIFS + if (!err) err = map_conditional(exports, "FEATURE_NO_GIFS", 1); +#else /* ifndef FEATURE_NO_GIFS */ + if (!err) err = map_conditional(exports, "FEATURE_NO_GIFS", 0); +#endif /* ndef FEATURE_NO_GIFS */ + +#ifdef FEATURE_PTHREAD + if (!err) err = map_conditional(exports, "FEATURE_PTHREAD", 1); +#else /* ifndef FEATURE_PTHREAD */ + if (!err) err = map_conditional(exports, "FEATURE_PTHREAD", 0); +#endif /* ndef FEATURE_PTHREAD */ + +#ifdef FEATURE_STATISTICS + if (!err) err = map_conditional(exports, "FEATURE_STATISTICS", 1); +#else /* ifndef FEATURE_STATISTICS */ + if (!err) err = map_conditional(exports, "FEATURE_STATISTICS", 0); +#endif /* ndef FEATURE_STATISTICS */ + +#ifdef FEATURE_TOGGLE + if (!err) err = map_conditional(exports, "FEATURE_TOGGLE", 1); +#else /* ifndef FEATURE_TOGGLE */ + if (!err) err = map_conditional(exports, "FEATURE_TOGGLE", 0); +#endif /* ndef FEATURE_TOGGLE */ + +#ifdef FEATURE_TRUST + if (!err) err = map_conditional(exports, "FEATURE_TRUST", 1); +#else /* ifndef FEATURE_TRUST */ + if (!err) err = map_conditional(exports, "FEATURE_TRUST", 0); +#endif /* ndef FEATURE_TRUST */ + +#ifdef STATIC_PCRE + if (!err) err = map_conditional(exports, "STATIC_PCRE", 1); +#else /* ifndef STATIC_PCRE */ + if (!err) err = map_conditional(exports, "STATIC_PCRE", 0); +#endif /* ndef STATIC_PCRE */ + +#ifdef STATIC_PCRS + if (!err) err = map_conditional(exports, "STATIC_PCRS", 1); +#else /* ifndef STATIC_PCRS */ + if (!err) err = map_conditional(exports, "STATIC_PCRS", 0); +#endif /* ndef STATIC_PCRS */ + + return err; +} + + +/********************************************************************* + * + * Function : show_rcs + * + * Description : Create a string with the rcs info for all sourcefiles + * + * Parameters : None + * + * Returns : A string, or NULL on out-of-memory. + * + *********************************************************************/ +static char *show_rcs(void) +{ + char *result = strdup(""); + char buf[BUFFER_SIZE]; + + /* Instead of including *all* dot h's in the project (thus creating a + * tremendous amount of dependencies), I will concede to declaring them + * as extern's. This forces the developer to add to this list, but oh well. + */ + +#define SHOW_RCS(__x) \ + { \ + extern const char __x[]; \ + sprintf(buf, "%s\n", __x); \ + string_append(&result, buf); \ + } + + /* In alphabetical order */ + SHOW_RCS(actions_h_rcs) + SHOW_RCS(actions_rcs) +#ifdef AMIGA + SHOW_RCS(amiga_h_rcs) + SHOW_RCS(amiga_rcs) +#endif /* def AMIGA */ + SHOW_RCS(cgi_h_rcs) + SHOW_RCS(cgi_rcs) +#ifdef FEATURE_CGI_EDIT_ACTIONS + SHOW_RCS(cgiedit_h_rcs) + SHOW_RCS(cgiedit_rcs) +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ + SHOW_RCS(cgisimple_h_rcs) + SHOW_RCS(cgisimple_rcs) +#ifdef __MINGW32__ + SHOW_RCS(cygwin_h_rcs) +#endif + SHOW_RCS(deanimate_h_rcs) + SHOW_RCS(deanimate_rcs) + SHOW_RCS(encode_h_rcs) + SHOW_RCS(encode_rcs) + SHOW_RCS(errlog_h_rcs) + SHOW_RCS(errlog_rcs) + SHOW_RCS(filters_h_rcs) + SHOW_RCS(filters_rcs) + SHOW_RCS(gateway_h_rcs) + SHOW_RCS(gateway_rcs) + SHOW_RCS(jbsockets_h_rcs) + SHOW_RCS(jbsockets_rcs) + SHOW_RCS(jcc_h_rcs) + SHOW_RCS(jcc_rcs) +#ifdef FEATURE_KILL_POPUPS + SHOW_RCS(killpopup_h_rcs) + SHOW_RCS(killpopup_rcs) +#endif /* def FEATURE_KILL_POPUPS */ + SHOW_RCS(list_h_rcs) + SHOW_RCS(list_rcs) + SHOW_RCS(loadcfg_h_rcs) + SHOW_RCS(loadcfg_rcs) + SHOW_RCS(loaders_h_rcs) + SHOW_RCS(loaders_rcs) + SHOW_RCS(miscutil_h_rcs) + SHOW_RCS(miscutil_rcs) + SHOW_RCS(parsers_h_rcs) + SHOW_RCS(parsers_rcs) + SHOW_RCS(pcrs_rcs) + SHOW_RCS(pcrs_h_rcs) + SHOW_RCS(project_h_rcs) + SHOW_RCS(ssplit_h_rcs) + SHOW_RCS(ssplit_rcs) + SHOW_RCS(urlmatch_h_rcs) + SHOW_RCS(urlmatch_rcs) +#ifdef _WIN32 +#ifndef _WIN_CONSOLE + SHOW_RCS(w32log_h_rcs) + SHOW_RCS(w32log_rcs) + SHOW_RCS(w32res_h_rcs) + SHOW_RCS(w32taskbar_h_rcs) + SHOW_RCS(w32taskbar_rcs) +#endif /* ndef _WIN_CONSOLE */ + SHOW_RCS(win32_h_rcs) + SHOW_RCS(win32_rcs) +#endif /* def _WIN32 */ + +#undef SHOW_RCS + + return result; + +} + + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/cgisimple.h b/cgisimple.h new file mode 100644 index 00000000..88501d7f --- /dev/null +++ b/cgisimple.h @@ -0,0 +1,149 @@ +#ifndef CGISIMPLE_H_INCLUDED +#define CGISIMPLE_H_INCLUDED +#define CGISIMPLE_H_VERSION "$Id: cgisimple.h,v 1.10 2002/03/26 22:29:54 swa Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/cgisimple.h,v $ + * + * Purpose : Declares functions to intercept request, generate + * html or gif answers, and to compose HTTP resonses. + * + * Functions declared include: + * + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: cgisimple.h,v $ + * Revision 1.10 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.9 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.8 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.7 2002/03/08 16:43:59 oes + * Renamed cgi_transparent_png to cgi_transparent_image + * + * Revision 1.6 2002/03/07 03:48:59 oes + * - Changed built-in images from GIF to PNG + * (with regard to Unisys patent issue) + * + * Revision 1.5 2002/01/22 23:26:03 jongfoster + * Adding cgi_transparent_gif() for http://i.j.b/t + * + * Revision 1.4 2001/10/23 21:48:19 jongfoster + * Cleaning up error handling in CGI functions - they now send back + * a HTML error page and should never cause a FATAL error. (Fixes one + * potential source of "denial of service" attacks). + * + * CGI actions file editor that works and is actually useful. + * + * Ability to toggle JunkBuster remotely using a CGI call. + * + * You can turn off both the above features in the main configuration + * file, e.g. if you are running a multi-user proxy. + * + * Revision 1.3 2001/10/14 22:00:32 jongfoster + * Adding support for a 404 error when an invalid CGI page is requested. + * + * Revision 1.2 2001/10/02 15:31:20 oes + * Introduced show-request cgi + * + * Revision 1.1 2001/09/16 17:08:54 jongfoster + * Moving simple CGI functions from cgi.c to new file cgisimple.c + * + * + **********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + +/* + * CGI functions + */ +extern jb_err cgi_default (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_error_404 (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_robots_txt (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_send_banner (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_show_status (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_show_url_info(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_show_version (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_show_request (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_transparent_image (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +extern jb_err cgi_send_stylesheet(struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); + +#ifdef FEATURE_GRACEFUL_TERMINATION +extern jb_err cgi_die (struct client_state *csp, + struct http_response *rsp, + const struct map *parameters); +#endif + +/* Revision control strings from this header and associated .c file */ +extern const char cgisimple_rcs[]; +extern const char cgisimple_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef CGISIMPLE_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/config b/config index 3ba741b3..173b3300 100644 --- a/config +++ b/config @@ -1,207 +1,1026 @@ -# Sample Configuration file for the Internet Junkbuster 2.0 +# Sample Configuration file for Privoxy +# +# $Id: config,v 1.38 2002/05/03 03:59:25 hal9 Exp $ +# +################################################################### +# # +# Table of Contents # +# # +# I. INTRODUCTION # +# II. FORMAT OF THE CONFIGURATION FILE # +# # +# 1. CONFIGURATION AND LOG FILE LOCATIONS # +# 2. LOCAL SET-UP DOCUMENTATION # +# 3. DEBUGGING # +# 4. ACCESS CONTROL AND SECURITY # +# 5. FORWARDING # +# 6. WINDOWS GUI OPTIONS # +# # +################################################################### +# I. INTRODUCTION +# =============== # -# $Id: config,v 1.2 2001/04/30 03:05:11 rodney Exp $ +# This file holds the Privoxy configuration. If you modify this +# file, you will need to send a couple of requests to the proxy +# before any changes take effect. +# +# When starting Privoxy on Unix systems, give the name of this +# file as an argument. On Windows systems, Privoxy will look for +# this file with the name 'config.txt' in the same directory where +# Privoxy is installed. # +# II. FORMAT OF THE CONFIGURATION FILE +# ==================================== +# +# Configuration lines consist of an initial keyword followed by a list +# of values, all separated by whitespace (any number of spaces or +# tabs). For example, +# +# actionsfile default.action +# +# Indicates that the actionsfile is named 'default.action'. +# +# The '#' indicates a comment. Any part of a line following a '#' is +# ignored, except if the '#' is preceded by a '\'. # +# Thus, by placing a # at the start of an existing configuration line, +# you can make it a comment and it will be treated as if it weren't there. +# This is called "commenting out" an option and can be useful. # -# Copyright 1997-8 Junkbusters Corp. For distribution, modification and use -# under the GNU General Public License. These files come with NO WARRANTY. -# See http://www.junkbusters.com/ht/en/gpl.html or README file for details. +# Note that commenting out and option and leaving it at its default +# are two completely different things! Most options behave very +# differently when unset. See the the "Effect if unset" explanation +# in each option's description for details. +# +# Long lines can be continued on the next line by using a `\' as +# the last character. # -# When starting the proxy, give the name of this file as an argument. -# Any changes made to this file are *not* automatically loaded; you have -# to stop and restart the proxy. -# For information see http://www.junkbusters.com/ht/en/ijbman.html -# or the documentation that came with the release +# 1. CONFIGURATION AND LOG FILE LOCATIONS +# ======================================= +# +# Privoxy can (and normally does) use a number of other files for +# additional configuration and logging. This section of the +# configuration file tells Privoxy where to find those other files. +# +# The user running Privoxy, must have read permission for all +# configuration files, and write permission to any files that would +# be modified, such as log files. -# Lines beginning with a # character are comments; they are ignored. -# Many example lines are provided here commented out +# 1.1. user-manual +# ================ +# +# Specifies: +# +# Location of the Privoxy User Manual. +# +# Type of value: +# +# A fully qualified URI +# +# Default value: +# +# http://www.privoxy.org/user-manual/ +# +# Effect if unset: +# +# The default will be used. +# +# Notes: +# +# The User Manual is used for help hints from some of the internal +# CGI pages. It is normally packaged with the binary distributions, +# and would make more sense to have this pointed at a locally +# installed copy. +# +# A more useful example (Unix): +# +# user-manual file:///usr/share/doc/privoxy-2.9.14/user-manual/ +# +# +-----------------------------------------------------------------+ +# | Warning | +# |-----------------------------------------------------------------| +# |If this option is defined, it must come first! It is needed | +# |before the rest of config is read. | +# +-----------------------------------------------------------------+ +# +# +#user-manual http://www.privoxy.org/user-manual/ -# the blockfile contains patterns to be blocked by the proxy -blockfile ./blocklist # comments are OK here, too +# 1.2. confdir +# ============ +# +# Specifies: +# +# The directory where the other configuration files are located +# +# Type of value: +# +# Path name +# +# Default value: +# +# /etc/privoxy (Unix) or Privoxy installation dir (Windows) +# +# Effect if unset: +# +# Mandatory +# +# Notes: +# +# No trailing "/", please +# +# When development goes modular and multi-user, the blocker, +# filter, and per-user config will be stored in subdirectories of +# "confdir". For now, the configuration directory structure is +# flat, except for confdir/templates, where the HTML templates for +# CGI output reside (e.g. Privoxy's 404 error page). +# +confdir . -# the imagefile contains patterns to detect blocked images -imagefile ./imagelist -# the popfile contains patterns of servers where javascript popups are disabled +# 1.3. logdir +# =========== +# +# Specifies: +# +# The directory where all logging takes place (i.e. where logfile +# and jarfile are located) +# +# Type of value: +# +# Path name +# +# Default value: +# +# /var/log/privoxy (Unix) or Privoxy installation dir (Windows) +# +# Effect if unset: +# +# Mandatory +# +# Notes: +# +# No trailing "/", please # -# if the next line is not commented out, all javascript popups from the sites -# that match the patterns in popup will be blocked -# popupfile ./popup +logdir . -# File containing content modification rules -#re_filterfile ./re_filterfile -# Uncomment to filter *all* traffic. Default is to -# filter only if we wouldn't send a cookie either. +# 1.4. actionsfile +# ================ +# +# Specifies: +# +# The actions file to use +# +# Type of value: +# +# File name, relative to confdir, without the .action (Unix) +# or .action.txt (Windows) extension. +# +# Default values: +# standard # Internal purpose, recommended +# default # Main actions file +# user # User customizations +# +# Effect if unset: +# +# No action is taken at all. Simple neutral proxying. +# +# Notes: +# Multiple actionsfile lines are OK and are in fact recommended! # -#re_filter_all +# The default values include standard.action, which is used for +# internal purposes and should be loaded, default.action, which +# is the "main" actions file maintained by the developers, and +# user.action, where you can make your personal additions. +# +# There is no point in using Privoxy without an actions file. +# +actionsfile standard # Internal purpose, recommended +actionsfile default # Main actions file +actionsfile user # User customizations -# the cookiefile contains patterns to specify the cookie management policy -# -cookiefile ./cookiefile +# 1.5. filterfile +# =============== +# +# Specifies: +# +# The filter file to use +# +# Type of value: +# +# File name, relative to confdir +# +# Default value: +# +# default.filter (Unix) or default.filter.txt (Windows) +# +# Effect if unset: +# +# No textual content filtering takes place, i.e. all +filter{name} +# actions in the actions file are turned off +# +# Notes: +# +# The "default.filter" file contains content modification rules +# that use "regular expressions". These rules permit powerful +# changes on the content of Web pages, e.g., you could disable your +# favorite JavaScript annoyances, re-write the actual displayed +# text, or just have some fun replacing "Microsoft" with +# "MicroSuck" wherever it appears on a Web page. +# +filterfile default.filter -# the logfile is where all logging and error messages are written -# -logfile ./junkbuster.log -# the jarfile is where cookies can be stored -# -#jarfile ./jarfile +# 1.6. logfile +# ============ +# +# Specifies: +# +# The log file to use +# +# Type of value: +# +# File name, relative to logdir +# +# Default value: +# +# logfile (Unix) or privoxy.log (Windows) +# +# Effect if unset: +# +# No log file is used, all log messages go to the console +# (stderr). +# +# Notes: +# +# The windows version will additionally log to the console. +# +# The logfile is where all logging and error messages are written. +# The level of detail and number of messages are set with the debug +# option (see below). The logfile can be useful for tracking down a +# problem with Privoxy (e.g., it's not blocking an ad you think it +# should block) but in most cases you probably will never look at +# it. +# +# Your logfile will grow indefinitely, and you will probably want +# to periodically remove it. On Unix systems, you can do this with +# a cron job (see "man cron"). For Red Hat, a logrotate script has +# been included. +# +# On SuSE Linux systems, you can place a line like +# "/var/log/privoxy.* +1024k 644 nobody.nogroup" in /etc/logfiles, +# with the effect that cron.daily will automatically archive, gzip, +# and empty the log, when it exceeds 1M size. +# +# Any log files must be writable by whatever user Privoxy is being +# run as (default on UNIX, user id is "privoxy"). +# +logfile logfile -# the forwardfile defines domain-specific routing -# -#forwardfile ./forward -# file which lists and into which trusted domains are written -# -#trustfile ./trust -# files specify locations of "for information about trusted referers, see.." -# multiple trust_info_url lines are OK -# -# trust_info_url http://internet.junkbuster.com/ -# trust_info_url http://www.yoursite.com/our_trust_policy.html -# +# 1.7. jarfile +# ============ +# +# Specifies: +# +# The file to store intercepted cookies in +# +# Type of value: +# +# File name, relative to logdir +# +# Default value: +# +# jarfile (Unix) or privoxy.jar (Windows) +# +# Effect if unset: +# +# Intercepted cookies are not stored at all. +# +# Notes: +# +# The jarfile may grow to ridiculous sizes over time. +# +jarfile jarfile -# The access control list file can be used to restrict IP addresses -# that are permitted to use the proxy (see warnings in the FAQ). -# -#aclfile ./aclfile -# add an "X-Forwarded-For:" specification to each request header -# -#add-forwarded-header +# 1.8. trustfile +# ============== +# +# Specifies: +# +# The trust file to use +# +# Type of value: +# +# File name, relative to confdir +# +# Default value: +# +# Unset (commented out). When activated: trust (Unix) or trust.txt +# (Windows) +# +# Effect if unset: +# +# The whole trust mechanism is turned off. +# +# Notes: +# +# The trust mechanism is an experimental feature for building +# white-lists and should be used with care. It is NOT recommended +# for the casual user. +# +# If you specify a trust file, Privoxy will only allow access to +# sites that are named in the trustfile. You can also mark sites as +# trusted referrers (with +), with the effect that access to +# untrusted sites will be granted, if a link from a trusted +# referrer was used. The link target will then be added to the +# "trustfile". Possible applications include limiting Internet +# access for children. +# +# If you use + operator in the trust file, it may grow considerably +# over time. +# +#trustfile trust -# if logging cookies into a jarfile, and no other wafers were -# explicity set, then by default a vanilla wafer is sent with -# each request. -# -# setting 'suppress-vanilla-wafer' stops this vanilla wafer from -# being sent. -# -suppress-vanilla-wafer -# add these wafers to each request header -# multiple wafer lines are OK +# 2. LOCAL SET-UP DOCUMENTATION +# ============================= +# +# If you intend to operate Privoxy for more users that just yourself, +# it might be a good idea to let them know how to reach you, what you +# block and why you do that, your policies etc. +# # -#wafer NOTE=Like most people, I want my browsing to be anonymous. -#wafer WARNING=Please do not attempt to track me. +# 2.1. trust-info-url +# =================== +# +# Specifies: +# +# A URL to be displayed in the error page that users will see if +# access to an untrusted page is denied. +# +# Type of value: +# +# URL +# +# Default value: +# +# Two example URL are provided +# +# Effect if unset: +# +# No links are displayed on the "untrusted" error page. +# +# Notes: +# +# The value of this option only matters if the experimental trust +# mechanism has been activated. (See trustfile above.) +# +# If you use the trust mechanism, it is a good idea to write up +# some on-line documentation about your trust policy and to specify +# the URL(s) here. Use multiple times for multiple URLs. +# +# The URL(s) should be added to the trustfile as well, so users +# don't end up locked out from the information on why they were +# locked out in the first place! +# +trust-info-url http://www.example.com/why_we_block.html +trust-info-url http://www.example.com/what_we_allow.html -# Anything can be added to the request headers. Please don't litter. -# multiple add-header lines are OK + +# 2.2. admin-address +# ================== +# +# Specifies: +# +# An email address to reach the proxy administrator. +# +# Type of value: +# +# Email address +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# No email address is displayed on error pages and the CGI user +# interface. +# +# Notes: +# +# Highly recommended for multi-user installations. +# +# If both admin-address and proxy-info-url are unset, the whole +# "Local Privoxy Support" box on all generated pages will not be +# shown. # -#add-header Forwarded: by http://stay-out-of-my-backyard.net -#add-header Forwarded: by http://pro-privacy-isp.net -#add-header Proxy-Connection: Keep-Alive +#admin-address privoxy-admin@example.com -# listen-address specifies where the Junkbuster will listen for connections -# Specifying a port is optional; if unspecified the defaults is 8000. -# Before Version 2.0.2 the default was to bind to all IP addresses (INADDR_ANY) -# This has been restricted to localhost to avoid unintended security breaches. -# To open the proxy to all, uncomment the following line: -#listen-address :8000 -# other example usage: -#listen-address 124.207.250.245:8080 -# to explicitly state what is now the default: -#listen-address localhost -# or equivalently: -listen-address 127.0.0.1:8000 -# user-agent specifies treatment of the "User-Agent:" (and "UA-*:") header(s) -# default: Forge the "User-Agent:" -# 'text' : Always send as the "User-Agent:" -# . : Pass the "User-Agent:" unchanged -# @ : Pass the "User-Agent:" if the server is in the cookie file, -# forge the "User-Agent:" otherwise -#user-agent @ +# 2.3. proxy-info-url +# =================== +# +# Specifies: +# +# A URL to documentation about the local Privoxy setup, +# configuration or policies. +# +# Type of value: +# +# URL +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# No link to local documentation is displayed on error pages and +# the CGI user interface. +# +# Notes: +# +# If both admin-address and proxy-info-url are unset, the whole +# "Local Privoxy Support" box on all generated pages will not be +# shown. +# +# This URL shouldn't be blocked ;-) +# +#proxy-info-url http://www.example.com/proxy-service.html -# note: Russian browsers may be confused if user agent misidentifies -# the operating system (Mac vs Windows); see FAQ -user-agent . -# referer specifies treatment of the "Referer:" header -# New option by "Andreas S. Oesterhelt" -# -# default: Kill the referrer-header from the client -# 'text' : Always send as the referrer -# . : Pass the referrer unchanged -# @ : Pass the referrer if the server is in the cookie file, -# kill the referrer otherwise -# § : Pass the referrer if the server is in the cookie file, -# send a forged referrer that points to the root-diretory URL -# of the current request otherwise -referer § +# 3. DEBUGGING +# ============ +# +# These options are mainly useful when tracing a problem. Note that you +# might also want to invoke Privoxy with the --no-daemon command line +# option when debugging. +# +# +# 3.1. debug +# ========== +# +# Specifies: +# +# Key values that determine what information gets logged. +# +# Type of value: +# +# Integer values +# +# Default value: +# +# 12289 (i.e.: URLs plus warnings and errors) +# +# Effect if unset: +# +# Nothing gets logged. +# +# Notes: +# +# The available debug levels are: +# +# debug 1 # show each GET/POST/CONNECT request +# debug 2 # show each connection status +# debug 4 # show I/O status +# debug 8 # show header parsing +# debug 16 # log all data into the logfile +# debug 32 # debug force feature +# debug 64 # debug regular expression filter +# debug 128 # debug fast redirects +# debug 256 # debug GIF de-animation +# debug 512 # Common Log Format +# debug 1024 # debug kill pop-ups +# debug 4096 # Startup banner and warnings +# debug 8192 # Non-fatal errors +# +# +# To select multiple debug levels, you can either add them or use +# multiple debug lines. +# +# A debug level of 1 is informative because it will show you each +# request as it happens. 1, 4096 and 8192 are highly recommended so +# that you will notice when things go wrong. The other levels are +# probably only of interest if you are hunting down a specific +# problem. They can produce a hell of an output (especially 16). +# +# The reporting of fatal errors (i.e. ones which crash Privoxy) is +# always on and cannot be disabled. +# +# If you want to use CLF (Common Log Format), you should set "debug +# 512" ONLY and not enable anything else. +# +debug 1 # show each GET/POST/CONNECT request +debug 4096 # Startup banner and warnings +debug 8192 # Errors - *we highly recommended enabling this* -# from specifies value to be subsituted if browser provides a "From:" header -# -#from spam-me-senseless@sittingduck.net -# tinygif allows you to change the appearance of blocked images -# -# tinygif 0 # Show a "broken icon" -# tinygif 1 # Show a GIF of one transparent pixel -# tinygif 2 # Show a GIF with the word "JUNKBUSTER" -tinygif 2 -# tinygif 3 http://localhost/1x1.gif # Temporary redirect to this URL +# 3.2. single-threaded +# ==================== +# +# Specifies: +# +# Whether to run only one server thread +# +# Type of value: +# +# None +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# Multi-threaded (or, where unavailable: forked) operation, i.e. +# the ability to serve multiple requests simultaneously. +# +# Notes: +# +# This option is only there for debug purposes and you should never +# need to use it. It will drastically reduce performance. +# +#single-threaded -# Andrew added -# The following can be used to suppress display of the block lists when the -# page http://x.x/show-proxy-args is displayed. With a long block list this -# accelerates loading of the configuration page and also hides the contents of -# the block lists (for whatever reason). Maintainers of junkbuster proxies for -# multiple use can specify a message for any use who wants to know what is in -# these files. -# -#suppress-blocklists Contact sysadmin@example.com for details. -# suppress-blocklists -# debug sets the level of debugging information to log in the logfile -# -# debug 1 # GPC = show each GET/POST/CONNECT request -# debug 2 # CONN = show each connection status -# debug 4 # IO = show I/O status -# debug 8 # HDR = show header parsing -# debug 16 # LOG = log all data into the logfile -# debug 32 # FRC = debug force feature -# debug 64 # REF = debug regular expression filter -# -# multiple "debug" directives, are OK - they're logical-OR'd together -# -#debug 15 # same as setting the first 4 listed above -debug 1 -#debug 255 - -# single-threaded operation (i.e. disallows multiple threads or processes) -# This is most often used for debugging because it keeps the -# debugging output "in order" for easy reading. -# -#single-threaded +# 4. ACCESS CONTROL AND SECURITY +# ============================== +# +# This section of the config file controls the security-relevant +# aspects of Privoxy's configuration. +# +# +# 4.1. listen-address +# =================== +# +# Specifies: +# +# The IP address and TCP port on which Privoxy will listen for +# client requests. +# +# Type of value: +# +# [IP-Address]:Port +# +# Default value: +# +# 127.0.0.1:8118 +# +# Effect if unset: +# +# Bind to 127.0.0.1 (localhost), port 8118. This is suitable and +# recommended for home users who run Privoxy on the same machine as +# their browser. +# +# Notes: +# +# You will need to configure your browser(s) to this proxy address +# and port. +# +# If you already have another service running on port 8118, or if +# you want to serve requests from other machines (e.g. on your +# local network) as well, you will need to override the default. +# +# If you leave out the IP address, Privoxy will bind to all +# interfaces (addresses) on your machine and may become reachable +# from the Internet. In that case, consider using access control +# lists (acl's) (see "ACLs" below), or a firewall. +# +# Example: +# +# Suppose you are running Privoxy on a machine which has the +# address 192.168.0.1 on your local private network (192.168.0.0) +# and has another outside connection with a different address. You +# want it to serve requests from inside only: +# +# listen-address 192.168.0.1:8118 +# +listen-address 127.0.0.1:8118 -# Toggle flag. 0 => disabled, anything else (ie. 1) => enabled + +# 4.2. toggle +# =========== +# +# Specifies: +# +# Initial state of "toggle" status +# +# Type of value: +# +# 1 or 0 +# +# Default value: +# +# 1 +# +# Effect if unset: +# +# Act as if toggled on +# +# Notes: +# +# If set to 0, Privoxy will start in "toggled off" mode, i.e. +# behave like a normal, content-neutral proxy. See +# enable-remote-toggle below. This is not really useful anymore, +# since toggling is much easier via the web interface then via +# editing the conf file. +# +# The windows version will only display the toggle icon in the +# system tray if this option is present. +# +# toggle 1 -# Win32 GUI specific options. Moved here from ijbw32.ini -# in hopes of keep all of our config settings together. +# 4.3. enable-remote-toggle +# ========================= +# +# Specifies: +# +# Whether or not the web-based toggle feature may be used +# +# Type of value: +# +# 0 or 1 +# +# Default value: +# +# 1 +# +# Effect if unset: +# +# The web-based toggle feature is disabled. +# +# Notes: +# +# When toggled off, Privoxy acts like a normal, content-neutral +# proxy, i.e. it acts as if none of the actions applied to any +# URL. +# +# For the time being, access to the toggle feature can not be +# controlled separately by "ACLs" or HTTP authentication, so that +# everybody who can access Privoxy (see "ACLs" and listen-address +# above) can toggle it for all users. So this option is not +# recommended for multi-user environments with untrusted users. +# +# Note that you must have compiled Privoxy with support for this +# feature, otherwise this option has no effect. +# +enable-remote-toggle 1 + + +# 4.4. enable-edit-actions +# ======================== +# +# Specifies: +# +# Whether or not the web-based actions file editor may be used +# +# Type of value: +# +# 0 or 1 +# +# Default value: +# +# 1 +# +# Effect if unset: +# +# The web-based actions file editor is disabled. +# +# Notes: +# +# For the time being, access to the editor can not be controlled +# separately by "ACLs" or HTTP authentication, so that everybody +# who can access Privoxy (see "ACLs" and listen-address above) can +# modify its configuration for all users. So this option is not +# recommended for multi-user environments with untrusted users. +# +# Note that you must have compiled Privoxy with support for this +# feature, otherwise this option has no effect. +# +enable-edit-actions 1 + + +# 4.5. ACLs: permit-access and deny-access +# ======================================== +# +# Specifies: +# +# Who can access what. +# +# Type of value: +# +# src_addr[/src_masklen] [dst_addr[/dst_masklen]] +# +# Where src_addr and dst_addr are IP addresses in dotted decimal +# notation or valid DNS names, and src_masklen and dst_masklen are +# subnet masks in CIDR notation, i.e. integer values from 2 to 32 +# representing the length (in bits) of the network address. The +# masks and the whole destination part are optional. +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# Don't restrict access further than implied by listen-address +# +# Notes: +# +# Access controls are included at the request of ISPs and systems +# administrators, and are not usually needed by individual users. +# For a typical home user, it will normally suffice to ensure that +# Privoxy only listens on the localhost or internal (home) network +# address by means of the listen-address option. +# +# Please see the warnings in the FAQ that this proxy is not +# intended to be a substitute for a firewall or to encourage anyone +# to defer addressing basic security weaknesses. +# +# Multiple ACL lines are OK. If any ACLs are specified, then the +# Privoxy talks only to IP addresses that match at least one +# permit-access line and don't match any subsequent deny-access +# line. In other words, the last match wins, with the default being +# deny-access. +# +# If Privoxy is using a forwarder (see forward below) for a +# particular destination URL, the dst_addr that is examined is the +# address of the forwarder and NOT the address of the ultimate +# target. This is necessary because it may be impossible for the +# local Privoxy to determine the IP address of the ultimate target +# (that's often what gateways are used for). +# +# You should prefer using IP addresses over DNS names, because the +# address lookups take time. All DNS names must resolve! You can +# not use domain patterns like "*.org" or partial domain names. If +# a DNS name resolves to multiple IP addresses, only the first one +# is used. +# +# Denying access to particular sites by ACL may have undesired side +# effects if the site in question is hosted on a machine which also +# hosts other sites. +# +# Examples: +# +# Explicitly define the default behavior if no ACL and +# listen-address are set: "localhost" is OK. The absence of a +# dst_addr implies that all destination addresses are OK: +# +# permit-access localhost +# +# +# Allow any host on the same class C subnet as www.privoxy.org +# access to nothing but www.example.com: +# +# permit-access www.privoxy.org/24 www.example.com/32 +# +# +# Allow access from any host on the 26-bit subnet 192.168.45.64 to +# anywhere, with the exception that 192.168.45.73 may not access +# www.dirty-stuff.example.com: +# +# permit-access 192.168.45.64/26 +# deny-access 192.168.45.73 www.dirty-stuff.example.com +# + -activity-animation 1 -log-messages 1 -log-highlight-messages 1 -log-buffer-size 1 -log-max-lines 200 -log-font-name Comic Sans MS -log-font-size 8 -show-on-task-bar 0 -close-button-minimizes 1 +# 4.6. buffer-limit +# ================= +# +# Specifies: +# +# Maximum size of the buffer for content filtering. +# +# Type of value: +# +# Size in Kbytes +# +# Default value: +# +# 4096 +# +# Effect if unset: +# +# Use a 4MB (4096 KB) limit. +# +# Notes: +# +# For content filtering, i.e. the +filter and +deanimate-gif +# actions, it is necessary that Privoxy buffers the entire document +# body. This can be potentially dangerous, since a server could +# just keep sending data indefinitely and wait for your RAM to +# exhaust -- with nasty consequences. Hence this option. +# +# When a document buffer size reaches the buffer-limit, it is +# flushed to the client unfiltered and no further attempt to filter +# the rest of the document is made. Remember that there may be +# multiple threads running, which might require up to buffer-limit +# Kbytes each, unless you have enabled "single-threaded" above. +# +buffer-limit 4096 -# hide-console is used only on Win32 console mode. It instructs -# the Internet Junkbuster to disconnect from and hide the -# command console. + +# 5. FORWARDING +# ============= +# +# This feature allows routing of HTTP requests through a chain of +# multiple proxies. It can be used to better protect privacy and +# confidentiality when accessing specific domains by routing requests +# to those domains through an anonymous public proxy (see e.g. +# http://www.multiproxy.org/anon_list.htm) Or to use a caching proxy to +# speed up browsing. Or chaining to a parent proxy may be necessary +# because the machine that Privoxy runs on has no direct Internet +# access. +# +# Also specified here are SOCKS proxies. Privoxy supports the SOCKS 4 +# and SOCKS 4A protocols. +# + + +# 5.1. forward +# ============ # -#hide-console +# Specifies: +# +# To which parent HTTP proxy specific requests should be routed. +# +# Type of value: +# +# target_domain[:port] http_parent[:port] +# +# Where target_domain is a domain name pattern (see the chapter on +# domain matching in the actions file), http_parent is the address +# of the parent HTTP proxy as an IP addresses in dotted decimal +# notation or as a valid DNS name (or "." to denote "no +# forwarding", and the optional port parameters are TCP ports, i.e. +# integer values from 1 to 64535 +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# Don't use parent HTTP proxies. +# +# Notes: +# +# If http_parent is ".", then requests are not forwarded to another +# HTTP proxy but are made directly to the web servers. +# +# Multiple lines are OK, they are checked in sequence, and the last +# match wins. +# +# Examples: +# +# Everything goes to an example anonymizing proxy, except SSL on +# port 443 (which it doesn't handle): +# +# forward .* anon-proxy.example.org:8080 +# forward :443 . +# +# +# Everything goes to our example ISP's caching proxy, except for +# requests to that ISP's sites: +# +# forward .*. caching-proxy.example-isp.net:8000 +# forward .example-isp.net . +# + + +# 5.2. forward-socks4 and forward-socks4a +# ======================================= +# +# Specifies: +# +# Through which SOCKS proxy (and to which parent HTTP proxy) +# specific requests should be routed. +# +# Type of value: +# +# target_domain[:port] socks_proxy[:port] http_parent[:port] +# +# Where target_domain is a domain name pattern (see the chapter on +# domain matching in the actions file), http_parent and socks_proxy +# are IP addresses in dotted decimal notation or valid DNS names +# (http_parent may be "." to denote "no HTTP forwarding"), and the +# optional port parameters are TCP ports, i.e. integer values from +# 1 to 64535 +# +# Default value: +# +# Unset +# +# Effect if unset: +# +# Don't use SOCKS proxies. +# +# Notes: +# +# Multiple lines are OK, they are checked in sequence, and the last +# match wins. +# +# The difference between forward-socks4 and forward-socks4a is that +# in the SOCKS 4A protocol, the DNS resolution of the target +# hostname happens on the SOCKS server, while in SOCKS 4 it happens +# locally. +# +# If http_parent is ".", then requests are not forwarded to another +# HTTP proxy but are made (HTTP-wise) directly to the web servers, +# albeit through a SOCKS proxy. +# +# Examples: +# +# From the company example.com, direct connections are made to all +# "internal" domains, but everything outbound goes through their +# ISP's proxy by way of example.com's corporate SOCKS 4A gateway to +# the Internet. +# +# forward-socks4a .*. socks-gw.example.com:1080 www-cache.example-isp.net:8080 +# forward .example.com . +# +# +# A rule that uses a SOCKS 4 gateway for all destinations but no +# HTTP parent looks like this: +# +# forward-socks4 .*. socks-gw.example.com:1080 . +# +# See the user manual for more advanced examples. +# + + +# 6. WINDOWS GUI OPTIONS +# ====================== +# +# Privoxy has a number of options specific to the Windows GUI +# interface: +# +# If "activity-animation" is set to 1, the Privoxy icon will animate +# when "Privoxy" is active. To turn off, set to 0. +# +#activity-animation 1 +# If "log-messages" is set to 1, Privoxy will log messages to the +# console window: +# +#log-messages 1 + +# If "log-buffer-size" is set to 1, the size of the log buffer, i.e. +# the amount of memory used for the log messages displayed in the +# console window, will be limited to "log-max-lines" (see below). +# +# Warning: Setting this to 0 will result in the buffer to grow +# infinitely and eat up all your memory! +# +#log-buffer-size 1 +# log-max-lines is the maximum number of lines held in the log buffer. +# See above. +# +#log-max-lines 200 + +# If "log-highlight-messages" is set to 1, Privoxy will highlight +# portions of the log messages with a bold-faced font: +# +#log-highlight-messages 1 +# + +# The font used in the console window: +# +#log-font-name Comic Sans MS +# + +# Font size used in the console window: +# +#log-font-size 8 +# + +# "show-on-task-bar" controls whether or not Privoxy will appear as a +# button on the Task bar when minimized: +# +#show-on-task-bar 0 +# + +# If "close-button-minimizes" is set to 1, the Windows close button +# will minimize Privoxy instead of closing the program (close with the +# exit option on the File menu). +# +#close-button-minimizes 1 +# + +# The "hide-console" option is specific to the MS-Win console version +# of Privoxy. If this option is used, Privoxy will disconnect from and +# hide the command console. +# +#hide-console +# diff --git a/config.guess b/config.guess new file mode 100755 index 00000000..cd430f6d --- /dev/null +++ b/config.guess @@ -0,0 +1,1314 @@ +#! /bin/sh +# Attempt to guess a canonical system name. +# Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +# Free Software Foundation, Inc. + +timestamp='2001-08-21' + +# This file is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# Written by Per Bothner . +# Please send patches to . +# +# This script attempts to guess a canonical system name similar to +# config.sub. If it succeeds, it prints the system name on stdout, and +# exits with 0. Otherwise, it exits with 1. +# +# The plan is that this can be called by configure scripts if you +# don't specify an explicit build system type. + +me=`echo "$0" | sed -e 's,.*/,,'` + +usage="\ +Usage: $0 [OPTION] + +Output the configuration name of the system \`$me' is run on. + +Operation modes: + -h, --help print this help, then exit + -t, --time-stamp print date of last modification, then exit + -v, --version print version number, then exit + +Report bugs and patches to ." + +version="\ +GNU config.guess ($timestamp) + +Originally written by Per Bothner. +Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +Free Software Foundation, Inc. + +This is free software; see the source for copying conditions. There is NO +warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." + +help=" +Try \`$me --help' for more information." + +# Parse command line +while test $# -gt 0 ; do + case $1 in + --time-stamp | --time* | -t ) + echo "$timestamp" ; exit 0 ;; + --version | -v ) + echo "$version" ; exit 0 ;; + --help | --h* | -h ) + echo "$usage"; exit 0 ;; + -- ) # Stop option processing + shift; break ;; + - ) # Use stdin as input. + break ;; + -* ) + echo "$me: invalid option $1$help" >&2 + exit 1 ;; + * ) + break ;; + esac +done + +if test $# != 0; then + echo "$me: too many arguments$help" >&2 + exit 1 +fi + + +dummy=dummy-$$ +trap 'rm -f $dummy.c $dummy.o $dummy.rel $dummy; exit 1' 1 2 15 + +# CC_FOR_BUILD -- compiler used by this script. +# Historically, `CC_FOR_BUILD' used to be named `HOST_CC'. We still +# use `HOST_CC' if defined, but it is deprecated. + +set_cc_for_build='case $CC_FOR_BUILD,$HOST_CC,$CC in + ,,) echo "int dummy(){}" > $dummy.c ; + for c in cc gcc c89 ; do + ($c $dummy.c -c -o $dummy.o) >/dev/null 2>&1 ; + if test $? = 0 ; then + CC_FOR_BUILD="$c"; break ; + fi ; + done ; + rm -f $dummy.c $dummy.o $dummy.rel ; + if test x"$CC_FOR_BUILD" = x ; then + CC_FOR_BUILD=no_compiler_found ; + fi + ;; + ,,*) CC_FOR_BUILD=$CC ;; + ,*,*) CC_FOR_BUILD=$HOST_CC ;; +esac' + +# This is needed to find uname on a Pyramid OSx when run in the BSD universe. +# (ghazi@noc.rutgers.edu 1994-08-24) +if (test -f /.attbin/uname) >/dev/null 2>&1 ; then + PATH=$PATH:/.attbin ; export PATH +fi + +UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown +UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown +UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown +UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown + +# Note: order is significant - the case branches are not exclusive. + +case "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" in + *:NetBSD:*:*) + # Netbsd (nbsd) targets should (where applicable) match one or + # more of the tupples: *-*-netbsdelf*, *-*-netbsdaout*, + # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently + # switched to ELF, *-*-netbsd* would select the old + # object file format. This provides both forward + # compatibility and a consistent mechanism for selecting the + # object file format. + # Determine the machine/vendor (is the vendor relevant). + case "${UNAME_MACHINE}" in + amiga) machine=m68k-unknown ;; + arm32) machine=arm-unknown ;; + atari*) machine=m68k-atari ;; + sun3*) machine=m68k-sun ;; + mac68k) machine=m68k-apple ;; + macppc) machine=powerpc-apple ;; + hp3[0-9][05]) machine=m68k-hp ;; + ibmrt|romp-ibm) machine=romp-ibm ;; + *) machine=${UNAME_MACHINE}-unknown ;; + esac + # The Operating System including object format, if it has switched + # to ELF recently, or will in the future. + case "${UNAME_MACHINE}" in + i386|sparc|amiga|arm*|hp300|mvme68k|vax|atari|luna68k|mac68k|news68k|next68k|pc532|sun3*|x68k) + eval $set_cc_for_build + if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ + | grep __ELF__ >/dev/null + then + # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). + # Return netbsd for either. FIX? + os=netbsd + else + os=netbsdelf + fi + ;; + *) + os=netbsd + ;; + esac + # The OS release + release=`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` + # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: + # contains redundant information, the shorter form: + # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. + echo "${machine}-${os}${release}" + exit 0 ;; + alpha:OSF1:*:*) + if test $UNAME_RELEASE = "V4.0"; then + UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` + fi + # A Vn.n version is a released version. + # A Tn.n version is a released field test version. + # A Xn.n version is an unreleased experimental baselevel. + # 1.2 uses "1.2" for uname -r. + cat <$dummy.s + .data +\$Lformat: + .byte 37,100,45,37,120,10,0 # "%d-%x\n" + + .text + .globl main + .align 4 + .ent main +main: + .frame \$30,16,\$26,0 + ldgp \$29,0(\$27) + .prologue 1 + .long 0x47e03d80 # implver \$0 + lda \$2,-1 + .long 0x47e20c21 # amask \$2,\$1 + lda \$16,\$Lformat + mov \$0,\$17 + not \$1,\$18 + jsr \$26,printf + ldgp \$29,0(\$26) + mov 0,\$16 + jsr \$26,exit + .end main +EOF + eval $set_cc_for_build + $CC_FOR_BUILD $dummy.s -o $dummy 2>/dev/null + if test "$?" = 0 ; then + case `./$dummy` in + 0-0) + UNAME_MACHINE="alpha" + ;; + 1-0) + UNAME_MACHINE="alphaev5" + ;; + 1-1) + UNAME_MACHINE="alphaev56" + ;; + 1-101) + UNAME_MACHINE="alphapca56" + ;; + 2-303) + UNAME_MACHINE="alphaev6" + ;; + 2-307) + UNAME_MACHINE="alphaev67" + ;; + 2-1307) + UNAME_MACHINE="alphaev68" + ;; + esac + fi + rm -f $dummy.s $dummy + echo ${UNAME_MACHINE}-dec-osf`echo ${UNAME_RELEASE} | sed -e 's/^[VTX]//' | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` + exit 0 ;; + Alpha\ *:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # Should we change UNAME_MACHINE based on the output of uname instead + # of the specific Alpha model? + echo alpha-pc-interix + exit 0 ;; + 21064:Windows_NT:50:3) + echo alpha-dec-winnt3.5 + exit 0 ;; + Amiga*:UNIX_System_V:4.0:*) + echo m68k-unknown-sysv4 + exit 0;; + amiga:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + *:[Aa]miga[Oo][Ss]:*:*) + echo ${UNAME_MACHINE}-unknown-amigaos + exit 0 ;; + arc64:OpenBSD:*:*) + echo mips64el-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + arc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + hkmips:OpenBSD:*:*) + echo mips-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + pmax:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + sgi:OpenBSD:*:*) + echo mips-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + wgrisc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + *:OS/390:*:*) + echo i370-ibm-openedition + exit 0 ;; + arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) + echo arm-acorn-riscix${UNAME_RELEASE} + exit 0;; + SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) + echo hppa1.1-hitachi-hiuxmpp + exit 0;; + Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) + # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. + if test "`(/bin/universe) 2>/dev/null`" = att ; then + echo pyramid-pyramid-sysv3 + else + echo pyramid-pyramid-bsd + fi + exit 0 ;; + NILE*:*:*:dcosx) + echo pyramid-pyramid-svr4 + exit 0 ;; + sun4H:SunOS:5.*:*) + echo sparc-hal-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) + echo sparc-sun-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + i86pc:SunOS:5.*:*) + echo i386-pc-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:6*:*) + # According to config.sub, this is the proper way to canonicalize + # SunOS6. Hard to guess exactly what SunOS6 will be like, but + # it's likely to be more like Solaris than SunOS4. + echo sparc-sun-solaris3`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:*:*) + case "`/usr/bin/arch -k`" in + Series*|S4*) + UNAME_RELEASE=`uname -v` + ;; + esac + # Japanese Language versions have a version number like `4.1.3-JL'. + echo sparc-sun-sunos`echo ${UNAME_RELEASE}|sed -e 's/-/_/'` + exit 0 ;; + sun3*:SunOS:*:*) + echo m68k-sun-sunos${UNAME_RELEASE} + exit 0 ;; + sun*:*:4.2BSD:*) + UNAME_RELEASE=`(head -1 /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` + test "x${UNAME_RELEASE}" = "x" && UNAME_RELEASE=3 + case "`/bin/arch`" in + sun3) + echo m68k-sun-sunos${UNAME_RELEASE} + ;; + sun4) + echo sparc-sun-sunos${UNAME_RELEASE} + ;; + esac + exit 0 ;; + aushp:SunOS:*:*) + echo sparc-auspex-sunos${UNAME_RELEASE} + exit 0 ;; + sparc*:NetBSD:*) + echo `uname -p`-unknown-netbsd${UNAME_RELEASE} + exit 0 ;; + atari*:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + # The situation for MiNT is a little confusing. The machine name + # can be virtually everything (everything which is not + # "atarist" or "atariste" at least should have a processor + # > m68000). The system name ranges from "MiNT" over "FreeMiNT" + # to the lowercase version "mint" (or "freemint"). Finally + # the system name "TOS" denotes a system which is actually not + # MiNT. But MiNT is downward compatible to TOS, so this should + # be no problem. + atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) + echo m68k-milan-mint${UNAME_RELEASE} + exit 0 ;; + hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) + echo m68k-hades-mint${UNAME_RELEASE} + exit 0 ;; + *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) + echo m68k-unknown-mint${UNAME_RELEASE} + exit 0 ;; + sun3*:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mac68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme88k:OpenBSD:*:*) + echo m88k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + powerpc:machten:*:*) + echo powerpc-apple-machten${UNAME_RELEASE} + exit 0 ;; + RISC*:Mach:*:*) + echo mips-dec-mach_bsd4.3 + exit 0 ;; + RISC*:ULTRIX:*:*) + echo mips-dec-ultrix${UNAME_RELEASE} + exit 0 ;; + VAX*:ULTRIX*:*:*) + echo vax-dec-ultrix${UNAME_RELEASE} + exit 0 ;; + 2020:CLIX:*:* | 2430:CLIX:*:*) + echo clipper-intergraph-clix${UNAME_RELEASE} + exit 0 ;; + mips:*:*:UMIPS | mips:*:*:RISCos) + sed 's/^ //' << EOF >$dummy.c +#ifdef __cplusplus +#include /* for printf() prototype */ + int main (int argc, char *argv[]) { +#else + int main (argc, argv) int argc; char *argv[]; { +#endif + #if defined (host_mips) && defined (MIPSEB) + #if defined (SYSTYPE_SYSV) + printf ("mips-mips-riscos%ssysv\n", argv[1]); exit (0); + #endif + #if defined (SYSTYPE_SVR4) + printf ("mips-mips-riscos%ssvr4\n", argv[1]); exit (0); + #endif + #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) + printf ("mips-mips-riscos%sbsd\n", argv[1]); exit (0); + #endif + #endif + exit (-1); + } +EOF + eval $set_cc_for_build + $CC_FOR_BUILD $dummy.c -o $dummy \ + && ./$dummy `echo "${UNAME_RELEASE}" | sed -n 's/\([0-9]*\).*/\1/p'` \ + && rm -f $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo mips-mips-riscos${UNAME_RELEASE} + exit 0 ;; + Motorola:PowerMAX_OS:*:*) + echo powerpc-motorola-powermax + exit 0 ;; + Night_Hawk:Power_UNIX:*:*) + echo powerpc-harris-powerunix + exit 0 ;; + m88k:CX/UX:7*:*) + echo m88k-harris-cxux7 + exit 0 ;; + m88k:*:4*:R4*) + echo m88k-motorola-sysv4 + exit 0 ;; + m88k:*:3*:R3*) + echo m88k-motorola-sysv3 + exit 0 ;; + AViiON:dgux:*:*) + # DG/UX returns AViiON for all architectures + UNAME_PROCESSOR=`/usr/bin/uname -p` + if [ $UNAME_PROCESSOR = mc88100 ] || [ $UNAME_PROCESSOR = mc88110 ] + then + if [ ${TARGET_BINARY_INTERFACE}x = m88kdguxelfx ] || \ + [ ${TARGET_BINARY_INTERFACE}x = x ] + then + echo m88k-dg-dgux${UNAME_RELEASE} + else + echo m88k-dg-dguxbcs${UNAME_RELEASE} + fi + else + echo i586-dg-dgux${UNAME_RELEASE} + fi + exit 0 ;; + M88*:DolphinOS:*:*) # DolphinOS (SVR3) + echo m88k-dolphin-sysv3 + exit 0 ;; + M88*:*:R3*:*) + # Delta 88k system running SVR3 + echo m88k-motorola-sysv3 + exit 0 ;; + XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) + echo m88k-tektronix-sysv3 + exit 0 ;; + Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) + echo m68k-tektronix-bsd + exit 0 ;; + *:IRIX*:*:*) + echo mips-sgi-irix`echo ${UNAME_RELEASE}|sed -e 's/-/_/g'` + exit 0 ;; + ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. + echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id + exit 0 ;; # Note that: echo "'`uname -s`'" gives 'AIX ' + i*86:AIX:*:*) + echo i386-ibm-aix + exit 0 ;; + ia64:AIX:*:*) + if [ -x /usr/bin/oslevel ] ; then + IBM_REV=`/usr/bin/oslevel` + else + IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} + fi + echo ${UNAME_MACHINE}-ibm-aix${IBM_REV} + exit 0 ;; + *:AIX:2:3) + if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then + sed 's/^ //' << EOF >$dummy.c + #include + + main() + { + if (!__power_pc()) + exit(1); + puts("powerpc-ibm-aix3.2.5"); + exit(0); + } +EOF + eval $set_cc_for_build + $CC_FOR_BUILD $dummy.c -o $dummy && ./$dummy && rm -f $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo rs6000-ibm-aix3.2.5 + elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then + echo rs6000-ibm-aix3.2.4 + else + echo rs6000-ibm-aix3.2 + fi + exit 0 ;; + *:AIX:*:[45]) + IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | head -1 | awk '{ print $1 }'` + if /usr/sbin/lsattr -El ${IBM_CPU_ID} | grep ' POWER' >/dev/null 2>&1; then + IBM_ARCH=rs6000 + else + IBM_ARCH=powerpc + fi + if [ -x /usr/bin/oslevel ] ; then + IBM_REV=`/usr/bin/oslevel` + else + IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} + fi + echo ${IBM_ARCH}-ibm-aix${IBM_REV} + exit 0 ;; + *:AIX:*:*) + echo rs6000-ibm-aix + exit 0 ;; + ibmrt:4.4BSD:*|romp-ibm:BSD:*) + echo romp-ibm-bsd4.4 + exit 0 ;; + ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and + echo romp-ibm-bsd${UNAME_RELEASE} # 4.3 with uname added to + exit 0 ;; # report: romp-ibm BSD 4.3 + *:BOSX:*:*) + echo rs6000-bull-bosx + exit 0 ;; + DPX/2?00:B.O.S.:*:*) + echo m68k-bull-sysv3 + exit 0 ;; + 9000/[34]??:4.3bsd:1.*:*) + echo m68k-hp-bsd + exit 0 ;; + hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) + echo m68k-hp-bsd4.4 + exit 0 ;; + 9000/[34678]??:HP-UX:*:*) + HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` + case "${UNAME_MACHINE}" in + 9000/31? ) HP_ARCH=m68000 ;; + 9000/[34]?? ) HP_ARCH=m68k ;; + 9000/[678][0-9][0-9]) + case "${HPUX_REV}" in + 11.[0-9][0-9]) + if [ -x /usr/bin/getconf ]; then + sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` + sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` + case "${sc_cpu_version}" in + 523) HP_ARCH="hppa1.0" ;; # CPU_PA_RISC1_0 + 528) HP_ARCH="hppa1.1" ;; # CPU_PA_RISC1_1 + 532) # CPU_PA_RISC2_0 + case "${sc_kernel_bits}" in + 32) HP_ARCH="hppa2.0n" ;; + 64) HP_ARCH="hppa2.0w" ;; + esac ;; + esac + fi ;; + esac + if [ "${HP_ARCH}" = "" ]; then + sed 's/^ //' << EOF >$dummy.c + + #define _HPUX_SOURCE + #include + #include + + int main () + { + #if defined(_SC_KERNEL_BITS) + long bits = sysconf(_SC_KERNEL_BITS); + #endif + long cpu = sysconf (_SC_CPU_VERSION); + + switch (cpu) + { + case CPU_PA_RISC1_0: puts ("hppa1.0"); break; + case CPU_PA_RISC1_1: puts ("hppa1.1"); break; + case CPU_PA_RISC2_0: + #if defined(_SC_KERNEL_BITS) + switch (bits) + { + case 64: puts ("hppa2.0w"); break; + case 32: puts ("hppa2.0n"); break; + default: puts ("hppa2.0"); break; + } break; + #else /* !defined(_SC_KERNEL_BITS) */ + puts ("hppa2.0"); break; + #endif + default: puts ("hppa1.0"); break; + } + exit (0); + } +EOF + eval $set_cc_for_build + (CCOPTS= $CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null ) && HP_ARCH=`./$dummy` + if test -z "$HP_ARCH"; then HP_ARCH=hppa; fi + rm -f $dummy.c $dummy + fi ;; + esac + echo ${HP_ARCH}-hp-hpux${HPUX_REV} + exit 0 ;; + ia64:HP-UX:*:*) + HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` + echo ia64-hp-hpux${HPUX_REV} + exit 0 ;; + 3050*:HI-UX:*:*) + sed 's/^ //' << EOF >$dummy.c + #include + int + main () + { + long cpu = sysconf (_SC_CPU_VERSION); + /* The order matters, because CPU_IS_HP_MC68K erroneously returns + true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct + results, however. */ + if (CPU_IS_PA_RISC (cpu)) + { + switch (cpu) + { + case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; + case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; + case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; + default: puts ("hppa-hitachi-hiuxwe2"); break; + } + } + else if (CPU_IS_HP_MC68K (cpu)) + puts ("m68k-hitachi-hiuxwe2"); + else puts ("unknown-hitachi-hiuxwe2"); + exit (0); + } +EOF + eval $set_cc_for_build + $CC_FOR_BUILD $dummy.c -o $dummy && ./$dummy && rm -f $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo unknown-hitachi-hiuxwe2 + exit 0 ;; + 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:* ) + echo hppa1.1-hp-bsd + exit 0 ;; + 9000/8??:4.3bsd:*:*) + echo hppa1.0-hp-bsd + exit 0 ;; + *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) + echo hppa1.0-hp-mpeix + exit 0 ;; + hp7??:OSF1:*:* | hp8?[79]:OSF1:*:* ) + echo hppa1.1-hp-osf + exit 0 ;; + hp8??:OSF1:*:*) + echo hppa1.0-hp-osf + exit 0 ;; + i*86:OSF1:*:*) + if [ -x /usr/sbin/sysversion ] ; then + echo ${UNAME_MACHINE}-unknown-osf1mk + else + echo ${UNAME_MACHINE}-unknown-osf1 + fi + exit 0 ;; + parisc*:Lites*:*:*) + echo hppa1.1-hp-lites + exit 0 ;; + hppa*:OpenBSD:*:*) + echo hppa-unknown-openbsd + exit 0 ;; + C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) + echo c1-convex-bsd + exit 0 ;; + C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) + if getsysinfo -f scalar_acc + then echo c32-convex-bsd + else echo c2-convex-bsd + fi + exit 0 ;; + C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) + echo c34-convex-bsd + exit 0 ;; + C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) + echo c38-convex-bsd + exit 0 ;; + C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) + echo c4-convex-bsd + exit 0 ;; + CRAY*X-MP:*:*:*) + echo xmp-cray-unicos + exit 0 ;; + CRAY*Y-MP:*:*:*) + echo ymp-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*[A-Z]90:*:*:*) + echo ${UNAME_MACHINE}-cray-unicos${UNAME_RELEASE} \ + | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ + -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ + -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*TS:*:*:*) + echo t90-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*T3D:*:*:*) + echo alpha-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*T3E:*:*:*) + echo alphaev5-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*SV1:*:*:*) + echo sv1-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY-2:*:*:*) + echo cray2-cray-unicos + exit 0 ;; + F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) + FUJITSU_PROC=`uname -m | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` + FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` + FUJITSU_REL=`echo ${UNAME_RELEASE} | sed -e 's/ /_/'` + echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" + exit 0 ;; + hp300:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) + echo ${UNAME_MACHINE}-pc-bsdi${UNAME_RELEASE} + exit 0 ;; + sparc*:BSD/OS:*:*) + echo sparc-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:BSD/OS:*:*) + echo ${UNAME_MACHINE}-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:FreeBSD:*:*) + echo ${UNAME_MACHINE}-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` + exit 0 ;; + *:OpenBSD:*:*) + echo ${UNAME_MACHINE}-unknown-openbsd`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` + exit 0 ;; + i*:CYGWIN*:*) + echo ${UNAME_MACHINE}-pc-cygwin + exit 0 ;; + i*:MINGW*:*) + echo ${UNAME_MACHINE}-pc-mingw32 + exit 0 ;; + i*:PW*:*) + echo ${UNAME_MACHINE}-pc-pw32 + exit 0 ;; + i*:Windows_NT*:* | Pentium*:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # It also conflicts with pre-2.0 versions of AT&T UWIN. Should we + # UNAME_MACHINE based on the output of uname instead of i386? + echo i386-pc-interix + exit 0 ;; + i*:UWIN*:*) + echo ${UNAME_MACHINE}-pc-uwin + exit 0 ;; + p*:CYGWIN*:*) + echo powerpcle-unknown-cygwin + exit 0 ;; + prep*:SunOS:5.*:*) + echo powerpcle-unknown-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + *:GNU:*:*) + echo `echo ${UNAME_MACHINE}|sed -e 's,[-/].*$,,'`-unknown-gnu`echo ${UNAME_RELEASE}|sed -e 's,/.*$,,'` + exit 0 ;; + i*86:Minix:*:*) + echo ${UNAME_MACHINE}-pc-minix + exit 0 ;; + arm*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + ia64:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux + exit 0 ;; + m68*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + mips:Linux:*:*) + case `sed -n '/^byte/s/^.*: \(.*\) endian/\1/p' < /proc/cpuinfo` in + big) echo mips-unknown-linux-gnu && exit 0 ;; + little) echo mipsel-unknown-linux-gnu && exit 0 ;; + esac + ;; + ppc:Linux:*:*) + echo powerpc-unknown-linux-gnu + exit 0 ;; + ppc64:Linux:*:*) + echo powerpc64-unknown-linux-gnu + exit 0 ;; + alpha:Linux:*:*) + case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in + EV5) UNAME_MACHINE=alphaev5 ;; + EV56) UNAME_MACHINE=alphaev56 ;; + PCA56) UNAME_MACHINE=alphapca56 ;; + PCA57) UNAME_MACHINE=alphapca56 ;; + EV6) UNAME_MACHINE=alphaev6 ;; + EV67) UNAME_MACHINE=alphaev67 ;; + EV68*) UNAME_MACHINE=alphaev68 ;; + esac + objdump --private-headers /bin/sh | grep ld.so.1 >/dev/null + if test "$?" = 0 ; then LIBC="libc1" ; else LIBC="" ; fi + echo ${UNAME_MACHINE}-unknown-linux-gnu${LIBC} + exit 0 ;; + parisc:Linux:*:* | hppa:Linux:*:*) + # Look for CPU level + case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in + PA7*) echo hppa1.1-unknown-linux-gnu ;; + PA8*) echo hppa2.0-unknown-linux-gnu ;; + *) echo hppa-unknown-linux-gnu ;; + esac + exit 0 ;; + parisc64:Linux:*:* | hppa64:Linux:*:*) + echo hppa64-unknown-linux-gnu + exit 0 ;; + s390:Linux:*:* | s390x:Linux:*:*) + echo ${UNAME_MACHINE}-ibm-linux + exit 0 ;; + sh*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + sparc:Linux:*:* | sparc64:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + x86_64:Linux:*:*) + echo x86_64-unknown-linux-gnu + exit 0 ;; + i*86:Linux:*:*) + # The BFD linker knows what the default object file format is, so + # first see if it will tell us. cd to the root directory to prevent + # problems with other programs or directories called `ld' in the path. + ld_supported_targets=`cd /; ld --help 2>&1 \ + | sed -ne '/supported targets:/!d + s/[ ][ ]*/ /g + s/.*supported targets: *// + s/ .*// + p'` + case "$ld_supported_targets" in + elf32-i386) + TENTATIVE="${UNAME_MACHINE}-pc-linux-gnu" + ;; + a.out-i386-linux) + echo "${UNAME_MACHINE}-pc-linux-gnuaout" + exit 0 ;; + coff-i386) + echo "${UNAME_MACHINE}-pc-linux-gnucoff" + exit 0 ;; + "") + # Either a pre-BFD a.out linker (linux-gnuoldld) or + # one that does not give us useful --help. + echo "${UNAME_MACHINE}-pc-linux-gnuoldld" + exit 0 ;; + esac + # Determine whether the default compiler is a.out or elf + cat >$dummy.c < +#ifdef __cplusplus +#include /* for printf() prototype */ + int main (int argc, char *argv[]) { +#else + int main (argc, argv) int argc; char *argv[]; { +#endif +#ifdef __ELF__ +# ifdef __GLIBC__ +# if __GLIBC__ >= 2 + printf ("%s-pc-linux-gnu\n", argv[1]); +# else + printf ("%s-pc-linux-gnulibc1\n", argv[1]); +# endif +# else + printf ("%s-pc-linux-gnulibc1\n", argv[1]); +# endif +#else + printf ("%s-pc-linux-gnuaout\n", argv[1]); +#endif + return 0; +} +EOF + eval $set_cc_for_build + $CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null && ./$dummy "${UNAME_MACHINE}" && rm -f $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + test x"${TENTATIVE}" != x && echo "${TENTATIVE}" && exit 0 + ;; + i*86:DYNIX/ptx:4*:*) + # ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. + # earlier versions are messed up and put the nodename in both + # sysname and nodename. + echo i386-sequent-sysv4 + exit 0 ;; + i*86:UNIX_SV:4.2MP:2.*) + # Unixware is an offshoot of SVR4, but it has its own version + # number series starting with 2... + # I am not positive that other SVR4 systems won't match this, + # I just have to hope. -- rms. + # Use sysv4.2uw... so that sysv4* matches it. + echo ${UNAME_MACHINE}-pc-sysv4.2uw${UNAME_VERSION} + exit 0 ;; + i*86:*:4.*:* | i*86:SYSTEM_V:4.*:*) + UNAME_REL=`echo ${UNAME_RELEASE} | sed 's/\/MP$//'` + if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then + echo ${UNAME_MACHINE}-univel-sysv${UNAME_REL} + else + echo ${UNAME_MACHINE}-pc-sysv${UNAME_REL} + fi + exit 0 ;; + i*86:*:5:[78]*) + case `/bin/uname -X | grep "^Machine"` in + *486*) UNAME_MACHINE=i486 ;; + *Pentium) UNAME_MACHINE=i586 ;; + *Pent*|*Celeron) UNAME_MACHINE=i686 ;; + esac + echo ${UNAME_MACHINE}-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}${UNAME_VERSION} + exit 0 ;; + i*86:*:3.2:*) + if test -f /usr/options/cb.name; then + UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then + UNAME_REL=`(/bin/uname -X|egrep Release|sed -e 's/.*= //')` + (/bin/uname -X|egrep i80486 >/dev/null) && UNAME_MACHINE=i486 + (/bin/uname -X|egrep '^Machine.*Pentium' >/dev/null) \ + && UNAME_MACHINE=i586 + (/bin/uname -X|egrep '^Machine.*Pent ?II' >/dev/null) \ + && UNAME_MACHINE=i686 + (/bin/uname -X|egrep '^Machine.*Pentium Pro' >/dev/null) \ + && UNAME_MACHINE=i686 + echo ${UNAME_MACHINE}-pc-sco$UNAME_REL + else + echo ${UNAME_MACHINE}-pc-sysv32 + fi + exit 0 ;; + i*86:*DOS:*:*) + echo ${UNAME_MACHINE}-pc-msdosdjgpp + exit 0 ;; + pc:*:*:*) + # Left here for compatibility: + # uname -m prints for DJGPP always 'pc', but it prints nothing about + # the processor, so we play safe by assuming i386. + echo i386-pc-msdosdjgpp + exit 0 ;; + Intel:Mach:3*:*) + echo i386-pc-mach3 + exit 0 ;; + paragon:*:*:*) + echo i860-intel-osf1 + exit 0 ;; + i860:*:4.*:*) # i860-SVR4 + if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then + echo i860-stardent-sysv${UNAME_RELEASE} # Stardent Vistra i860-SVR4 + else # Add other i860-SVR4 vendors below as they are discovered. + echo i860-unknown-sysv${UNAME_RELEASE} # Unknown i860-SVR4 + fi + exit 0 ;; + mini*:CTIX:SYS*5:*) + # "miniframe" + echo m68010-convergent-sysv + exit 0 ;; + M68*:*:R3V[567]*:*) + test -r /sysV68 && echo 'm68k-motorola-sysv' && exit 0 ;; + 3[34]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 4850:*:4.0:3.0) + OS_REL='' + test -r /etc/.relid \ + && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` + /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ + && echo i486-ncr-sysv4.3${OS_REL} && exit 0 + /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ + && echo i586-ncr-sysv4.3${OS_REL} && exit 0 ;; + 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) + /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ + && echo i486-ncr-sysv4 && exit 0 ;; + m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) + echo m68k-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + mc68030:UNIX_System_V:4.*:*) + echo m68k-atari-sysv4 + exit 0 ;; + i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.0*:*) + echo i386-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + TSUNAMI:LynxOS:2.*:*) + echo sparc-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + rs6000:LynxOS:2.*:*) + echo rs6000-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.0*:*) + echo powerpc-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + SM[BE]S:UNIX_SV:*:*) + echo mips-dde-sysv${UNAME_RELEASE} + exit 0 ;; + RM*:ReliantUNIX-*:*:*) + echo mips-sni-sysv4 + exit 0 ;; + RM*:SINIX-*:*:*) + echo mips-sni-sysv4 + exit 0 ;; + *:SINIX-*:*:*) + if uname -p 2>/dev/null >/dev/null ; then + UNAME_MACHINE=`(uname -p) 2>/dev/null` + echo ${UNAME_MACHINE}-sni-sysv4 + else + echo ns32k-sni-sysv + fi + exit 0 ;; + PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort + # says + echo i586-unisys-sysv4 + exit 0 ;; + *:UNIX_System_V:4*:FTX*) + # From Gerald Hewes . + # How about differentiating between stratus architectures? -djm + echo hppa1.1-stratus-sysv4 + exit 0 ;; + *:*:*:FTX*) + # From seanf@swdc.stratus.com. + echo i860-stratus-sysv4 + exit 0 ;; + *:VOS:*:*) + # From Paul.Green@stratus.com. + echo hppa1.1-stratus-vos + exit 0 ;; + mc68*:A/UX:*:*) + echo m68k-apple-aux${UNAME_RELEASE} + exit 0 ;; + news*:NEWS-OS:6*:*) + echo mips-sony-newsos6 + exit 0 ;; + R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) + if [ -d /usr/nec ]; then + echo mips-nec-sysv${UNAME_RELEASE} + else + echo mips-unknown-sysv${UNAME_RELEASE} + fi + exit 0 ;; + BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. + echo powerpc-be-beos + exit 0 ;; + BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. + echo powerpc-apple-beos + exit 0 ;; + BePC:BeOS:*:*) # BeOS running on Intel PC compatible. + echo i586-pc-beos + exit 0 ;; + SX-4:SUPER-UX:*:*) + echo sx4-nec-superux${UNAME_RELEASE} + exit 0 ;; + SX-5:SUPER-UX:*:*) + echo sx5-nec-superux${UNAME_RELEASE} + exit 0 ;; + Power*:Rhapsody:*:*) + echo powerpc-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; + *:Rhapsody:*:*) + echo ${UNAME_MACHINE}-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; + *:Darwin:*:*) + echo `uname -p`-apple-darwin${UNAME_RELEASE} + exit 0 ;; + *:procnto*:*:* | *:QNX:[0123456789]*:*) + if test "${UNAME_MACHINE}" = "x86pc"; then + UNAME_MACHINE=pc + fi + echo `uname -p`-${UNAME_MACHINE}-nto-qnx + exit 0 ;; + *:QNX:*:4*) + echo i386-pc-qnx + exit 0 ;; + NSR-[KW]:NONSTOP_KERNEL:*:*) + echo nsr-tandem-nsk${UNAME_RELEASE} + exit 0 ;; + *:NonStop-UX:*:*) + echo mips-compaq-nonstopux + exit 0 ;; + BS2000:POSIX*:*:*) + echo bs2000-siemens-sysv + exit 0 ;; + DS/*:UNIX_System_V:*:*) + echo ${UNAME_MACHINE}-${UNAME_SYSTEM}-${UNAME_RELEASE} + exit 0 ;; + *:Plan9:*:*) + # "uname -m" is not consistent, so use $cputype instead. 386 + # is converted to i386 for consistency with other x86 + # operating systems. + if test "$cputype" = "386"; then + UNAME_MACHINE=i386 + else + UNAME_MACHINE="$cputype" + fi + echo ${UNAME_MACHINE}-unknown-plan9 + exit 0 ;; + i*86:OS/2:*:*) + # If we were able to find `uname', then EMX Unix compatibility + # is probably installed. + echo ${UNAME_MACHINE}-pc-os2-emx + exit 0 ;; + *:TOPS-10:*:*) + echo pdp10-unknown-tops10 + exit 0 ;; + *:TENEX:*:*) + echo pdp10-unknown-tenex + exit 0 ;; + KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) + echo pdp10-dec-tops20 + exit 0 ;; + XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) + echo pdp10-xkl-tops20 + exit 0 ;; + *:TOPS-20:*:*) + echo pdp10-unknown-tops20 + exit 0 ;; + *:ITS:*:*) + echo pdp10-unknown-its + exit 0 ;; + i*86:XTS-300:*:STOP) + echo ${UNAME_MACHINE}-unknown-stop + exit 0 ;; +esac + +#echo '(No uname command or uname output not recognized.)' 1>&2 +#echo "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" 1>&2 + +cat >$dummy.c < +# include +#endif +main () +{ +#if defined (sony) +#if defined (MIPSEB) + /* BFD wants "bsd" instead of "newsos". Perhaps BFD should be changed, + I don't know.... */ + printf ("mips-sony-bsd\n"); exit (0); +#else +#include + printf ("m68k-sony-newsos%s\n", +#ifdef NEWSOS4 + "4" +#else + "" +#endif + ); exit (0); +#endif +#endif + +#if defined (__arm) && defined (__acorn) && defined (__unix) + printf ("arm-acorn-riscix"); exit (0); +#endif + +#if defined (hp300) && !defined (hpux) + printf ("m68k-hp-bsd\n"); exit (0); +#endif + +#if defined (NeXT) +#if !defined (__ARCHITECTURE__) +#define __ARCHITECTURE__ "m68k" +#endif + int version; + version=`(hostinfo | sed -n 's/.*NeXT Mach \([0-9]*\).*/\1/p') 2>/dev/null`; + if (version < 4) + printf ("%s-next-nextstep%d\n", __ARCHITECTURE__, version); + else + printf ("%s-next-openstep%d\n", __ARCHITECTURE__, version); + exit (0); +#endif + +#if defined (MULTIMAX) || defined (n16) +#if defined (UMAXV) + printf ("ns32k-encore-sysv\n"); exit (0); +#else +#if defined (CMU) + printf ("ns32k-encore-mach\n"); exit (0); +#else + printf ("ns32k-encore-bsd\n"); exit (0); +#endif +#endif +#endif + +#if defined (__386BSD__) + printf ("i386-pc-bsd\n"); exit (0); +#endif + +#if defined (sequent) +#if defined (i386) + printf ("i386-sequent-dynix\n"); exit (0); +#endif +#if defined (ns32000) + printf ("ns32k-sequent-dynix\n"); exit (0); +#endif +#endif + +#if defined (_SEQUENT_) + struct utsname un; + + uname(&un); + + if (strncmp(un.version, "V2", 2) == 0) { + printf ("i386-sequent-ptx2\n"); exit (0); + } + if (strncmp(un.version, "V1", 2) == 0) { /* XXX is V1 correct? */ + printf ("i386-sequent-ptx1\n"); exit (0); + } + printf ("i386-sequent-ptx\n"); exit (0); + +#endif + +#if defined (vax) +# if !defined (ultrix) +# include +# if defined (BSD) +# if BSD == 43 + printf ("vax-dec-bsd4.3\n"); exit (0); +# else +# if BSD == 199006 + printf ("vax-dec-bsd4.3reno\n"); exit (0); +# else + printf ("vax-dec-bsd\n"); exit (0); +# endif +# endif +# else + printf ("vax-dec-bsd\n"); exit (0); +# endif +# else + printf ("vax-dec-ultrix\n"); exit (0); +# endif +#endif + +#if defined (alliant) && defined (i860) + printf ("i860-alliant-bsd\n"); exit (0); +#endif + + exit (1); +} +EOF + +eval $set_cc_for_build +$CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null && ./$dummy && rm -f $dummy.c $dummy && exit 0 +rm -f $dummy.c $dummy + +# Apollos put the system type in the environment. + +test -d /usr/apollo && { echo ${ISP}-apollo-${SYSTYPE}; exit 0; } + +# Convex versions that predate uname can use getsysinfo(1) + +if [ -x /usr/convex/getsysinfo ] +then + case `getsysinfo -f cpu_type` in + c1*) + echo c1-convex-bsd + exit 0 ;; + c2*) + if getsysinfo -f scalar_acc + then echo c32-convex-bsd + else echo c2-convex-bsd + fi + exit 0 ;; + c34*) + echo c34-convex-bsd + exit 0 ;; + c38*) + echo c38-convex-bsd + exit 0 ;; + c4*) + echo c4-convex-bsd + exit 0 ;; + esac +fi + +cat >&2 < in order to provide the needed +information to handle your system. + +config.guess timestamp = $timestamp + +uname -m = `(uname -m) 2>/dev/null || echo unknown` +uname -r = `(uname -r) 2>/dev/null || echo unknown` +uname -s = `(uname -s) 2>/dev/null || echo unknown` +uname -v = `(uname -v) 2>/dev/null || echo unknown` + +/usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null` +/bin/uname -X = `(/bin/uname -X) 2>/dev/null` + +hostinfo = `(hostinfo) 2>/dev/null` +/bin/universe = `(/bin/universe) 2>/dev/null` +/usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null` +/bin/arch = `(/bin/arch) 2>/dev/null` +/usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null` +/usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` + +UNAME_MACHINE = ${UNAME_MACHINE} +UNAME_RELEASE = ${UNAME_RELEASE} +UNAME_SYSTEM = ${UNAME_SYSTEM} +UNAME_VERSION = ${UNAME_VERSION} +EOF + +exit 1 + +# Local variables: +# eval: (add-hook 'write-file-hooks 'time-stamp) +# time-stamp-start: "timestamp='" +# time-stamp-format: "%:y-%02m-%02d" +# time-stamp-end: "'" +# End: diff --git a/config.h b/config.h deleted file mode 100644 index 4d71f86b..00000000 --- a/config.h +++ /dev/null @@ -1,195 +0,0 @@ -/* config.h. Generated automatically by configure. */ -/* config.h.in. Generated automatically from configure.in by autoheader. */ -#ifndef _CONFIG_H -#define _CONFIG_H -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/acconfig.h,v $ - * - * Purpose : This file should be the first thing included in every - * .c file. (Before even system headers). It contains - * #define statements for various features. It was - * introduced because the compile command line started - * getting ludicrously long with feature defines. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and - * Junkbusters Corporation. http://www.junkbusters.com - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: acconfig.h,v $ - * - *********************************************************************/ - - -/* Define to empty if the keyword does not work. */ -/* #undef const */ - -/* Define to `unsigned' if doesn't define. */ -/* #undef size_t */ - -/* Define if you have the ANSI C header files. */ -#define STDC_HEADERS 1 - -/* - * Version number - Major (X._._) - */ -#define VERSION_MAJOR 2 - -/* - * Version number - Minor (_.X._) - */ -#define VERSION_MINOR 9 - -/* - * Version number - Point (_._.X) - */ -#define VERSION_POINT 3 - -/* - * Version number, as a string - */ -#define VERSION "2.9.3" - -/* - * Regular expression matching for URLs. (Highly recommended). If this is - * not defined then you can ony use prefix matching. - */ -#define REGEX 1 - -/* - * Allow JunkBuster to be "disabled" so it is just a normal non-blocking - * non-anonymizing proxy. This is useful if you're trying to access a - * blocked or broken site - just change the setting in the config file - * and send a SIGHUP (UN*X), or use the handy "Disable" menu option (Windows - * GUI). - */ -#define TOGGLE 1 - -/* - * Enables arbitrary content modification regexps - */ -#define PCRS 1 - -/* - * If a stream is compressed via gzip (Netscape specific I think), then - * it cannot be modified with Perl regexps. This forces it to be - * uncompressed. - */ -#define DENY_GZIP 1 - -/* - * Enables statistics function. - */ -#define STATISTICS 1 - -/* - * Bypass filtering for 1 page only - */ -#define FORCE_LOAD 1 - -/* - * Split the show-proxy-args page into a page for each config file. - */ -#define SPLIT_PROXY_ARGS 1 - -/* - * Kills JavaScript popups - window.open, onunload, etc. - */ -#define KILLPOPUPS 1 - -/* - * Support for webDAV - e.g. so Microsoft Outlook can access HotMail e-mail - */ -#define WEBDAV 1 - -/* - * Detect image requests automatically for MSIE. Will fall back to - * other image-detection methods (i.e. USE_IMAGE_LIST) for other - * browsers. - * - * It detects the following header pair as an image request: - * - * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) - * Accept: * / * - * - * And the following as a HTML request: - * - * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) - * Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, * / * - * - * And no, I haven't got that backwards - IE is being wierd. - * - * Known limitations: - * 1) If you press shift-reload on a blocked HTML page, you get - * the image "blocked" page, not the HTML "blocked" page. - * 2) Once an image "blocked" page has been sent, viewing it - * in it's own browser window *should* bring up the HTML - * "blocked" page, but it doesn't. You need to clear the - * browser cache to get the HTML version again. - * - * These limitations are due to IE making inconsistent choices - * about which "Accept:" header to send. - */ -#define DETECT_MSIE_IMAGES 1 - -/* - * Use image list to detect images. - * If you do not define this then everything is treated as HTML. - * - * Whatever the setting of this value, DETECT_MSIE_IMAGES will - * override it for people using Internet Explorer. - */ -#define USE_IMAGE_LIST 1 - -/* - * Allows the use of ACL files to control access to the proxy by IP address. - */ -#define ACL_FILES 1 - -/* - * Allows the use of trust files. - */ -#define TRUST_FILES 1 - -/* - * Allows the use of jar files to capture cookies. - */ -#define JAR_FILES 1 - -/* - * Use PCRE rather than GNU Regex - */ -#define PCRE 1 - -/* Define if you have the bcopy function. */ -#define HAVE_BCOPY 1 - -/* Define if you have the memmove function. */ -#define HAVE_MEMMOVE 1 - -/* Define if you have the strerror function. */ -#define HAVE_STRERROR 1 - -#endif /* _CONFIG_H */ diff --git a/config.h.in b/config.h.in deleted file mode 100644 index 930ca660..00000000 --- a/config.h.in +++ /dev/null @@ -1,194 +0,0 @@ -/* config.h.in. Generated automatically from configure.in by autoheader. */ -#ifndef _CONFIG_H -#define _CONFIG_H -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/acconfig.h,v $ - * - * Purpose : This file should be the first thing included in every - * .c file. (Before even system headers). It contains - * #define statements for various features. It was - * introduced because the compile command line started - * getting ludicrously long with feature defines. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and - * Junkbusters Corporation. http://www.junkbusters.com - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: acconfig.h,v $ - * - *********************************************************************/ - - -/* Define to empty if the keyword does not work. */ -#undef const - -/* Define to `unsigned' if doesn't define. */ -#undef size_t - -/* Define if you have the ANSI C header files. */ -#undef STDC_HEADERS - -/* - * Version number - Major (X._._) - */ -#undef VERSION_MAJOR - -/* - * Version number - Minor (_.X._) - */ -#undef VERSION_MINOR - -/* - * Version number - Point (_._.X) - */ -#undef VERSION_POINT - -/* - * Version number, as a string - */ -#undef VERSION - -/* - * Regular expression matching for URLs. (Highly recommended). If this is - * not defined then you can ony use prefix matching. - */ -#undef REGEX - -/* - * Allow JunkBuster to be "disabled" so it is just a normal non-blocking - * non-anonymizing proxy. This is useful if you're trying to access a - * blocked or broken site - just change the setting in the config file - * and send a SIGHUP (UN*X), or use the handy "Disable" menu option (Windows - * GUI). - */ -#undef TOGGLE - -/* - * Enables arbitrary content modification regexps - */ -#undef PCRS - -/* - * If a stream is compressed via gzip (Netscape specific I think), then - * it cannot be modified with Perl regexps. This forces it to be - * uncompressed. - */ -#undef DENY_GZIP - -/* - * Enables statistics function. - */ -#undef STATISTICS - -/* - * Bypass filtering for 1 page only - */ -#undef FORCE_LOAD - -/* - * Split the show-proxy-args page into a page for each config file. - */ -#undef SPLIT_PROXY_ARGS - -/* - * Kills JavaScript popups - window.open, onunload, etc. - */ -#undef KILLPOPUPS - -/* - * Support for webDAV - e.g. so Microsoft Outlook can access HotMail e-mail - */ -#undef WEBDAV - -/* - * Detect image requests automatically for MSIE. Will fall back to - * other image-detection methods (i.e. USE_IMAGE_LIST) for other - * browsers. - * - * It detects the following header pair as an image request: - * - * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) - * Accept: * / * - * - * And the following as a HTML request: - * - * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) - * Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, * / * - * - * And no, I haven't got that backwards - IE is being wierd. - * - * Known limitations: - * 1) If you press shift-reload on a blocked HTML page, you get - * the image "blocked" page, not the HTML "blocked" page. - * 2) Once an image "blocked" page has been sent, viewing it - * in it's own browser window *should* bring up the HTML - * "blocked" page, but it doesn't. You need to clear the - * browser cache to get the HTML version again. - * - * These limitations are due to IE making inconsistent choices - * about which "Accept:" header to send. - */ -#undef DETECT_MSIE_IMAGES - -/* - * Use image list to detect images. - * If you do not define this then everything is treated as HTML. - * - * Whatever the setting of this value, DETECT_MSIE_IMAGES will - * override it for people using Internet Explorer. - */ -#undef USE_IMAGE_LIST - -/* - * Allows the use of ACL files to control access to the proxy by IP address. - */ -#undef ACL_FILES - -/* - * Allows the use of trust files. - */ -#undef TRUST_FILES - -/* - * Allows the use of jar files to capture cookies. - */ -#undef JAR_FILES - -/* - * Use PCRE rather than GNU Regex - */ -#undef PCRE - -/* Define if you have the bcopy function. */ -#undef HAVE_BCOPY - -/* Define if you have the memmove function. */ -#undef HAVE_MEMMOVE - -/* Define if you have the strerror function. */ -#undef HAVE_STRERROR - -#endif /* _CONFIG_H */ diff --git a/config.sub b/config.sub new file mode 100755 index 00000000..12ebc787 --- /dev/null +++ b/config.sub @@ -0,0 +1,1410 @@ +#! /bin/sh +# Configuration validation subroutine script. +# Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +# Free Software Foundation, Inc. + +timestamp='2001-08-13' + +# This file is (in principle) common to ALL GNU software. +# The presence of a machine in this file suggests that SOME GNU software +# can handle that machine. It does not imply ALL GNU software can. +# +# This file is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, +# Boston, MA 02111-1307, USA. + +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# Please send patches to . +# +# Configuration subroutine to validate and canonicalize a configuration type. +# Supply the specified configuration type as an argument. +# If it is invalid, we print an error message on stderr and exit with code 1. +# Otherwise, we print the canonical config type on stdout and succeed. + +# This file is supposed to be the same for all GNU packages +# and recognize all the CPU types, system types and aliases +# that are meaningful with *any* GNU software. +# Each package is responsible for reporting which valid configurations +# it does not support. The user should be able to distinguish +# a failure to support a valid configuration from a meaningless +# configuration. + +# The goal of this file is to map all the various variations of a given +# machine specification into a single specification in the form: +# CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM +# or in some cases, the newer four-part form: +# CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM +# It is wrong to echo any other type of specification. + +me=`echo "$0" | sed -e 's,.*/,,'` + +usage="\ +Usage: $0 [OPTION] CPU-MFR-OPSYS + $0 [OPTION] ALIAS + +Canonicalize a configuration name. + +Operation modes: + -h, --help print this help, then exit + -t, --time-stamp print date of last modification, then exit + -v, --version print version number, then exit + +Report bugs and patches to ." + +version="\ +GNU config.sub ($timestamp) + +Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +Free Software Foundation, Inc. + +This is free software; see the source for copying conditions. There is NO +warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." + +help=" +Try \`$me --help' for more information." + +# Parse command line +while test $# -gt 0 ; do + case $1 in + --time-stamp | --time* | -t ) + echo "$timestamp" ; exit 0 ;; + --version | -v ) + echo "$version" ; exit 0 ;; + --help | --h* | -h ) + echo "$usage"; exit 0 ;; + -- ) # Stop option processing + shift; break ;; + - ) # Use stdin as input. + break ;; + -* ) + echo "$me: invalid option $1$help" + exit 1 ;; + + *local*) + # First pass through any local machine types. + echo $1 + exit 0;; + + * ) + break ;; + esac +done + +case $# in + 0) echo "$me: missing argument$help" >&2 + exit 1;; + 1) ;; + *) echo "$me: too many arguments$help" >&2 + exit 1;; +esac + +# Separate what the user gave into CPU-COMPANY and OS or KERNEL-OS (if any). +# Here we must recognize all the valid KERNEL-OS combinations. +maybe_os=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\2/'` +case $maybe_os in + nto-qnx* | linux-gnu* | storm-chaos* | os2-emx* | windows32-*) + os=-$maybe_os + basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'` + ;; + *) + basic_machine=`echo $1 | sed 's/-[^-]*$//'` + if [ $basic_machine != $1 ] + then os=`echo $1 | sed 's/.*-/-/'` + else os=; fi + ;; +esac + +### Let's recognize common machines as not being operating systems so +### that things like config.sub decstation-3100 work. We also +### recognize some manufacturers as not being operating systems, so we +### can provide default operating systems below. +case $os in + -sun*os*) + # Prevent following clause from handling this invalid input. + ;; + -dec* | -mips* | -sequent* | -encore* | -pc532* | -sgi* | -sony* | \ + -att* | -7300* | -3300* | -delta* | -motorola* | -sun[234]* | \ + -unicom* | -ibm* | -next | -hp | -isi* | -apollo | -altos* | \ + -convergent* | -ncr* | -news | -32* | -3600* | -3100* | -hitachi* |\ + -c[123]* | -convex* | -sun | -crds | -omron* | -dg | -ultra | -tti* | \ + -harris | -dolphin | -highlevel | -gould | -cbm | -ns | -masscomp | \ + -apple | -axis) + os= + basic_machine=$1 + ;; + -sim | -cisco | -oki | -wec | -winbond) + os= + basic_machine=$1 + ;; + -scout) + ;; + -wrs) + os=-vxworks + basic_machine=$1 + ;; + -chorusos*) + os=-chorusos + basic_machine=$1 + ;; + -chorusrdb) + os=-chorusrdb + basic_machine=$1 + ;; + -hiux*) + os=-hiuxwe2 + ;; + -sco5) + os=-sco3.2v5 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco4) + os=-sco3.2v4 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2.[4-9]*) + os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2v[4-9]*) + # Don't forget version if it is 3.2v4 or newer. + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco*) + os=-sco3.2v2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -udk*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -isc) + os=-isc2.2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -clix*) + basic_machine=clipper-intergraph + ;; + -isc*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -lynx*) + os=-lynxos + ;; + -ptx*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-sequent/'` + ;; + -windowsnt*) + os=`echo $os | sed -e 's/windowsnt/winnt/'` + ;; + -psos*) + os=-psos + ;; + -mint | -mint[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; +esac + +# Decode aliases for certain CPU-COMPANY combinations. +case $basic_machine in + # Recognize the basic CPU types without company name. + # Some are omitted here because they have special meanings below. + 1750a | 580 \ + | a29k \ + | alpha | alphaev[4-8] | alphaev56 | alphaev6[78] | alphapca5[67] \ + | arc | arm | arm[bl]e | arme[lb] | armv[2345] | armv[345][lb] | avr \ + | c4x | clipper \ + | d10v | d30v | dsp16xx \ + | fr30 \ + | h8300 | h8500 | hppa | hppa1.[01] | hppa2.0 | hppa2.0[nw] | hppa64 \ + | i370 | i860 | i960 | ia64 \ + | m32r | m68000 | m68k | m88k | mcore \ + | mips16 | mips64 | mips64el | mips64orion | mips64orionel \ + | mips64vr4100 | mips64vr4100el | mips64vr4300 \ + | mips64vr4300el | mips64vr5000 | mips64vr5000el \ + | mipsbe | mipsel | mipsle | mipstx39 | mipstx39el \ + | mn10200 | mn10300 \ + | ns16k | ns32k \ + | openrisc \ + | pdp10 | pdp11 | pj | pjl \ + | powerpc | powerpc64 | powerpc64le | powerpcle | ppcbe \ + | pyramid \ + | s390 | s390x \ + | sh | sh[34] | sh[34]eb | shbe | shle \ + | sparc | sparc64 | sparclet | sparclite | sparcv9 | sparcv9b \ + | strongarm \ + | tahoe | thumb | tic80 | tron \ + | v850 \ + | we32k \ + | x86 | xscale \ + | z8k) + basic_machine=$basic_machine-unknown + ;; + m6811 | m68hc11 | m6812 | m68hc12) + # Motorola 68HC11/12. + basic_machine=$basic_machine-unknown + os=-none + ;; + m88110 | m680[12346]0 | m683?2 | m68360 | m5200 | v70 | w65 | z8k) + ;; + + # We use `pc' rather than `unknown' + # because (1) that's what they normally are, and + # (2) the word "unknown" tends to confuse beginning users. + i*86 | x86_64) + basic_machine=$basic_machine-pc + ;; + # Object if more than one company name word. + *-*-*) + echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 + exit 1 + ;; + # Recognize the basic CPU types with company name. + 580-* \ + | a29k-* \ + | alpha-* | alphaev[4-8]-* | alphaev56-* | alphaev6[78]-* \ + | alphapca5[67]-* | arc-* \ + | arm-* | armbe-* | armle-* | armv*-* \ + | bs2000-* \ + | c[123]* | c30-* | [cjt]90-* | c54x-* \ + | clipper-* | cray2-* | cydra-* \ + | d10v-* | d30v-* \ + | elxsi-* \ + | f30[01]-* | f700-* | fr30-* | fx80-* \ + | h8300-* | h8500-* \ + | hppa-* | hppa1.[01]-* | hppa2.0-* | hppa2.0[nw]-* | hppa64-* \ + | i*86-* | i860-* | i960-* | ia64-* \ + | m32r-* \ + | m68000-* | m680[01234]0-* | m68360-* | m683?2-* | m68k-* \ + | m88110-* | m88k-* | mcore-* \ + | mips-* | mips16-* | mips64-* | mips64el-* | mips64orion-* \ + | mips64orionel-* | mips64vr4100-* | mips64vr4100el-* \ + | mips64vr4300-* | mips64vr4300el-* | mipsbe-* | mipsel-* \ + | mipsle-* | mipstx39-* | mipstx39el-* \ + | none-* | np1-* | ns16k-* | ns32k-* \ + | orion-* \ + | pdp10-* | pdp11-* | pj-* | pjl-* | pn-* | power-* \ + | powerpc-* | powerpc64-* | powerpc64le-* | powerpcle-* | ppcbe-* \ + | pyramid-* \ + | romp-* | rs6000-* \ + | s390-* | s390x-* \ + | sh-* | sh[34]-* | sh[34]eb-* | shbe-* | shle-* \ + | sparc-* | sparc64-* | sparc86x-* | sparclite-* \ + | sparcv9-* | sparcv9b-* | strongarm-* | sv1-* \ + | t3e-* | tahoe-* | thumb-* | tic30-* | tic54x-* | tic80-* | tron-* \ + | v850-* | vax-* \ + | we32k-* \ + | x86-* | x86_64-* | xmp-* | xps100-* | xscale-* \ + | ymp-* \ + | z8k-*) + ;; + # Recognize the various machine names and aliases which stand + # for a CPU type and a company and sometimes even an OS. + 386bsd) + basic_machine=i386-unknown + os=-bsd + ;; + 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) + basic_machine=m68000-att + ;; + 3b*) + basic_machine=we32k-att + ;; + a29khif) + basic_machine=a29k-amd + os=-udi + ;; + adobe68k) + basic_machine=m68010-adobe + os=-scout + ;; + alliant | fx80) + basic_machine=fx80-alliant + ;; + altos | altos3068) + basic_machine=m68k-altos + ;; + am29k) + basic_machine=a29k-none + os=-bsd + ;; + amdahl) + basic_machine=580-amdahl + os=-sysv + ;; + amiga | amiga-*) + basic_machine=m68k-unknown + ;; + amigaos | amigados) + basic_machine=m68k-unknown + os=-amigaos + ;; + amigaunix | amix) + basic_machine=m68k-unknown + os=-sysv4 + ;; + apollo68) + basic_machine=m68k-apollo + os=-sysv + ;; + apollo68bsd) + basic_machine=m68k-apollo + os=-bsd + ;; + aux) + basic_machine=m68k-apple + os=-aux + ;; + balance) + basic_machine=ns32k-sequent + os=-dynix + ;; + convex-c1) + basic_machine=c1-convex + os=-bsd + ;; + convex-c2) + basic_machine=c2-convex + os=-bsd + ;; + convex-c32) + basic_machine=c32-convex + os=-bsd + ;; + convex-c34) + basic_machine=c34-convex + os=-bsd + ;; + convex-c38) + basic_machine=c38-convex + os=-bsd + ;; + cray | ymp) + basic_machine=ymp-cray + os=-unicos + ;; + cray2) + basic_machine=cray2-cray + os=-unicos + ;; + [cjt]90) + basic_machine=${basic_machine}-cray + os=-unicos + ;; + crds | unos) + basic_machine=m68k-crds + ;; + cris | cris-* | etrax*) + basic_machine=cris-axis + ;; + da30 | da30-*) + basic_machine=m68k-da30 + ;; + decstation | decstation-3100 | pmax | pmax-* | pmin | dec3100 | decstatn) + basic_machine=mips-dec + ;; + delta | 3300 | motorola-3300 | motorola-delta \ + | 3300-motorola | delta-motorola) + basic_machine=m68k-motorola + ;; + delta88) + basic_machine=m88k-motorola + os=-sysv3 + ;; + dpx20 | dpx20-*) + basic_machine=rs6000-bull + os=-bosx + ;; + dpx2* | dpx2*-bull) + basic_machine=m68k-bull + os=-sysv3 + ;; + ebmon29k) + basic_machine=a29k-amd + os=-ebmon + ;; + elxsi) + basic_machine=elxsi-elxsi + os=-bsd + ;; + encore | umax | mmax) + basic_machine=ns32k-encore + ;; + es1800 | OSE68k | ose68k | ose | OSE) + basic_machine=m68k-ericsson + os=-ose + ;; + fx2800) + basic_machine=i860-alliant + ;; + genix) + basic_machine=ns32k-ns + ;; + gmicro) + basic_machine=tron-gmicro + os=-sysv + ;; + go32) + basic_machine=i386-pc + os=-go32 + ;; + h3050r* | hiux*) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + h8300hms) + basic_machine=h8300-hitachi + os=-hms + ;; + h8300xray) + basic_machine=h8300-hitachi + os=-xray + ;; + h8500hms) + basic_machine=h8500-hitachi + os=-hms + ;; + harris) + basic_machine=m88k-harris + os=-sysv3 + ;; + hp300-*) + basic_machine=m68k-hp + ;; + hp300bsd) + basic_machine=m68k-hp + os=-bsd + ;; + hp300hpux) + basic_machine=m68k-hp + os=-hpux + ;; + hp3k9[0-9][0-9] | hp9[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k2[0-9][0-9] | hp9k31[0-9]) + basic_machine=m68000-hp + ;; + hp9k3[2-9][0-9]) + basic_machine=m68k-hp + ;; + hp9k6[0-9][0-9] | hp6[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k7[0-79][0-9] | hp7[0-79][0-9]) + basic_machine=hppa1.1-hp + ;; + hp9k78[0-9] | hp78[0-9]) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][13679] | hp8[0-9][13679]) + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][0-9] | hp8[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hppa-next) + os=-nextstep3 + ;; + hppaosf) + basic_machine=hppa1.1-hp + os=-osf + ;; + hppro) + basic_machine=hppa1.1-hp + os=-proelf + ;; + i370-ibm* | ibm*) + basic_machine=i370-ibm + ;; +# I'm not sure what "Sysv32" means. Should this be sysv3.2? + i*86v32) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv32 + ;; + i*86v4*) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv4 + ;; + i*86v) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv + ;; + i*86sol2) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-solaris2 + ;; + i386mach) + basic_machine=i386-mach + os=-mach + ;; + i386-vsta | vsta) + basic_machine=i386-unknown + os=-vsta + ;; + iris | iris4d) + basic_machine=mips-sgi + case $os in + -irix*) + ;; + *) + os=-irix4 + ;; + esac + ;; + isi68 | isi) + basic_machine=m68k-isi + os=-sysv + ;; + m88k-omron*) + basic_machine=m88k-omron + ;; + magnum | m3230) + basic_machine=mips-mips + os=-sysv + ;; + merlin) + basic_machine=ns32k-utek + os=-sysv + ;; + mingw32) + basic_machine=i386-pc + os=-mingw32 + ;; + miniframe) + basic_machine=m68000-convergent + ;; + *mint | -mint[0-9]* | *MiNT | *MiNT[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; + mipsel*-linux*) + basic_machine=mipsel-unknown + os=-linux-gnu + ;; + mips*-linux*) + basic_machine=mips-unknown + os=-linux-gnu + ;; + mips3*-*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'` + ;; + mips3*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'`-unknown + ;; + mmix*) + basic_machine=mmix-knuth + os=-mmixware + ;; + monitor) + basic_machine=m68k-rom68k + os=-coff + ;; + msdos) + basic_machine=i386-pc + os=-msdos + ;; + mvs) + basic_machine=i370-ibm + os=-mvs + ;; + ncr3000) + basic_machine=i486-ncr + os=-sysv4 + ;; + netbsd386) + basic_machine=i386-unknown + os=-netbsd + ;; + netwinder) + basic_machine=armv4l-rebel + os=-linux + ;; + news | news700 | news800 | news900) + basic_machine=m68k-sony + os=-newsos + ;; + news1000) + basic_machine=m68030-sony + os=-newsos + ;; + news-3600 | risc-news) + basic_machine=mips-sony + os=-newsos + ;; + necv70) + basic_machine=v70-nec + os=-sysv + ;; + next | m*-next ) + basic_machine=m68k-next + case $os in + -nextstep* ) + ;; + -ns2*) + os=-nextstep2 + ;; + *) + os=-nextstep3 + ;; + esac + ;; + nh3000) + basic_machine=m68k-harris + os=-cxux + ;; + nh[45]000) + basic_machine=m88k-harris + os=-cxux + ;; + nindy960) + basic_machine=i960-intel + os=-nindy + ;; + mon960) + basic_machine=i960-intel + os=-mon960 + ;; + nonstopux) + basic_machine=mips-compaq + os=-nonstopux + ;; + np1) + basic_machine=np1-gould + ;; + nsr-tandem) + basic_machine=nsr-tandem + ;; + op50n-* | op60c-*) + basic_machine=hppa1.1-oki + os=-proelf + ;; + OSE68000 | ose68000) + basic_machine=m68000-ericsson + os=-ose + ;; + os68k) + basic_machine=m68k-none + os=-os68k + ;; + pa-hitachi) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + paragon) + basic_machine=i860-intel + os=-osf + ;; + pbd) + basic_machine=sparc-tti + ;; + pbb) + basic_machine=m68k-tti + ;; + pc532 | pc532-*) + basic_machine=ns32k-pc532 + ;; + pentium | p5 | k5 | k6 | nexgen) + basic_machine=i586-pc + ;; + pentiumpro | p6 | 6x86 | athlon) + basic_machine=i686-pc + ;; + pentiumii | pentium2) + basic_machine=i686-pc + ;; + pentium-* | p5-* | k5-* | k6-* | nexgen-*) + basic_machine=i586-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumpro-* | p6-* | 6x86-* | athlon-*) + basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumii-* | pentium2-*) + basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pn) + basic_machine=pn-gould + ;; + power) basic_machine=power-ibm + ;; + ppc) basic_machine=powerpc-unknown + ;; + ppc-*) basic_machine=powerpc-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppcle | powerpclittle | ppc-le | powerpc-little) + basic_machine=powerpcle-unknown + ;; + ppcle-* | powerpclittle-*) + basic_machine=powerpcle-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppc64) basic_machine=powerpc64-unknown + ;; + ppc64-*) basic_machine=powerpc64-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppc64le | powerpc64little | ppc64-le | powerpc64-little) + basic_machine=powerpc64le-unknown + ;; + ppc64le-* | powerpc64little-*) + basic_machine=powerpc64le-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ps2) + basic_machine=i386-ibm + ;; + pw32) + basic_machine=i586-unknown + os=-pw32 + ;; + rom68k) + basic_machine=m68k-rom68k + os=-coff + ;; + rm[46]00) + basic_machine=mips-siemens + ;; + rtpc | rtpc-*) + basic_machine=romp-ibm + ;; + sa29200) + basic_machine=a29k-amd + os=-udi + ;; + sequent) + basic_machine=i386-sequent + ;; + sh) + basic_machine=sh-hitachi + os=-hms + ;; + sparclite-wrs) + basic_machine=sparclite-wrs + os=-vxworks + ;; + sps7) + basic_machine=m68k-bull + os=-sysv2 + ;; + spur) + basic_machine=spur-unknown + ;; + st2000) + basic_machine=m68k-tandem + ;; + stratus) + basic_machine=i860-stratus + os=-sysv4 + ;; + sun2) + basic_machine=m68000-sun + ;; + sun2os3) + basic_machine=m68000-sun + os=-sunos3 + ;; + sun2os4) + basic_machine=m68000-sun + os=-sunos4 + ;; + sun3os3) + basic_machine=m68k-sun + os=-sunos3 + ;; + sun3os4) + basic_machine=m68k-sun + os=-sunos4 + ;; + sun4os3) + basic_machine=sparc-sun + os=-sunos3 + ;; + sun4os4) + basic_machine=sparc-sun + os=-sunos4 + ;; + sun4sol2) + basic_machine=sparc-sun + os=-solaris2 + ;; + sun3 | sun3-*) + basic_machine=m68k-sun + ;; + sun4) + basic_machine=sparc-sun + ;; + sun386 | sun386i | roadrunner) + basic_machine=i386-sun + ;; + sv1) + basic_machine=sv1-cray + os=-unicos + ;; + symmetry) + basic_machine=i386-sequent + os=-dynix + ;; + t3e) + basic_machine=t3e-cray + os=-unicos + ;; + tic54x | c54x*) + basic_machine=tic54x-unknown + os=-coff + ;; + tx39) + basic_machine=mipstx39-unknown + ;; + tx39el) + basic_machine=mipstx39el-unknown + ;; + tower | tower-32) + basic_machine=m68k-ncr + ;; + udi29k) + basic_machine=a29k-amd + os=-udi + ;; + ultra3) + basic_machine=a29k-nyu + os=-sym1 + ;; + v810 | necv810) + basic_machine=v810-nec + os=-none + ;; + vaxv) + basic_machine=vax-dec + os=-sysv + ;; + vms) + basic_machine=vax-dec + os=-vms + ;; + vpp*|vx|vx-*) + basic_machine=f301-fujitsu + ;; + vxworks960) + basic_machine=i960-wrs + os=-vxworks + ;; + vxworks68) + basic_machine=m68k-wrs + os=-vxworks + ;; + vxworks29k) + basic_machine=a29k-wrs + os=-vxworks + ;; + w65*) + basic_machine=w65-wdc + os=-none + ;; + w89k-*) + basic_machine=hppa1.1-winbond + os=-proelf + ;; + windows32) + basic_machine=i386-pc + os=-windows32-msvcrt + ;; + xmp) + basic_machine=xmp-cray + os=-unicos + ;; + xps | xps100) + basic_machine=xps100-honeywell + ;; + z8k-*-coff) + basic_machine=z8k-unknown + os=-sim + ;; + none) + basic_machine=none-none + os=-none + ;; + +# Here we handle the default manufacturer of certain CPU types. It is in +# some cases the only manufacturer, in others, it is the most popular. + w89k) + basic_machine=hppa1.1-winbond + ;; + op50n) + basic_machine=hppa1.1-oki + ;; + op60c) + basic_machine=hppa1.1-oki + ;; + mips) + if [ x$os = x-linux-gnu ]; then + basic_machine=mips-unknown + else + basic_machine=mips-mips + fi + ;; + romp) + basic_machine=romp-ibm + ;; + rs6000) + basic_machine=rs6000-ibm + ;; + vax) + basic_machine=vax-dec + ;; + pdp10) + # there are many clones, so DEC is not a safe bet + basic_machine=pdp10-unknown + ;; + pdp11) + basic_machine=pdp11-dec + ;; + we32k) + basic_machine=we32k-att + ;; + sh3 | sh4 | sh3eb | sh4eb) + basic_machine=sh-unknown + ;; + sparc | sparcv9 | sparcv9b) + basic_machine=sparc-sun + ;; + cydra) + basic_machine=cydra-cydrome + ;; + orion) + basic_machine=orion-highlevel + ;; + orion105) + basic_machine=clipper-highlevel + ;; + mac | mpw | mac-mpw) + basic_machine=m68k-apple + ;; + pmac | pmac-mpw) + basic_machine=powerpc-apple + ;; + c4x*) + basic_machine=c4x-none + os=-coff + ;; + *-unknown) + # Make sure to match an already-canonicalized machine name. + ;; + *) + echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 + exit 1 + ;; +esac + +# Here we canonicalize certain aliases for manufacturers. +case $basic_machine in + *-digital*) + basic_machine=`echo $basic_machine | sed 's/digital.*/dec/'` + ;; + *-commodore*) + basic_machine=`echo $basic_machine | sed 's/commodore.*/cbm/'` + ;; + *) + ;; +esac + +# Decode manufacturer-specific aliases for certain operating systems. + +if [ x"$os" != x"" ] +then +case $os in + # First match some system type aliases + # that might get confused with valid system types. + # -solaris* is a basic system type, with this one exception. + -solaris1 | -solaris1.*) + os=`echo $os | sed -e 's|solaris1|sunos4|'` + ;; + -solaris) + os=-solaris2 + ;; + -svr4*) + os=-sysv4 + ;; + -unixware*) + os=-sysv4.2uw + ;; + -gnu/linux*) + os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` + ;; + # First accept the basic system types. + # The portable systems comes first. + # Each alternative MUST END IN A *, to match a version number. + # -sysv* is not here because it comes later, after sysvr4. + -gnu* | -bsd* | -mach* | -minix* | -genix* | -ultrix* | -irix* \ + | -*vms* | -sco* | -esix* | -isc* | -aix* | -sunos | -sunos[34]*\ + | -hpux* | -unos* | -osf* | -luna* | -dgux* | -solaris* | -sym* \ + | -amigaos* | -amigados* | -msdos* | -newsos* | -unicos* | -aof* \ + | -aos* \ + | -nindy* | -vxsim* | -vxworks* | -ebmon* | -hms* | -mvs* \ + | -clix* | -riscos* | -uniplus* | -iris* | -rtu* | -xenix* \ + | -hiux* | -386bsd* | -netbsd* | -openbsd* | -freebsd* | -riscix* \ + | -lynxos* | -bosx* | -nextstep* | -cxux* | -aout* | -elf* | -oabi* \ + | -ptx* | -coff* | -ecoff* | -winnt* | -domain* | -vsta* \ + | -udi* | -eabi* | -lites* | -ieee* | -go32* | -aux* \ + | -chorusos* | -chorusrdb* \ + | -cygwin* | -pe* | -psos* | -moss* | -proelf* | -rtems* \ + | -mingw32* | -linux-gnu* | -uxpv* | -beos* | -mpeix* | -udk* \ + | -interix* | -uwin* | -rhapsody* | -darwin* | -opened* \ + | -openstep* | -oskit* | -conix* | -pw32* | -nonstopux* \ + | -storm-chaos* | -tops10* | -tenex* | -tops20* | -its* \ + | -os2* | -vos*) + # Remember, each alternative MUST END IN *, to match a version number. + ;; + -qnx*) + case $basic_machine in + x86-* | i*86-*) + ;; + *) + os=-nto$os + ;; + esac + ;; + -nto*) + os=-nto-qnx + ;; + -sim | -es1800* | -hms* | -xray | -os68k* | -none* | -v88r* \ + | -windows* | -osx | -abug | -netware* | -os9* | -beos* \ + | -macos* | -mpw* | -magic* | -mmixware* | -mon960* | -lnews*) + ;; + -mac*) + os=`echo $os | sed -e 's|mac|macos|'` + ;; + -linux*) + os=`echo $os | sed -e 's|linux|linux-gnu|'` + ;; + -sunos5*) + os=`echo $os | sed -e 's|sunos5|solaris2|'` + ;; + -sunos6*) + os=`echo $os | sed -e 's|sunos6|solaris3|'` + ;; + -opened*) + os=-openedition + ;; + -wince*) + os=-wince + ;; + -osfrose*) + os=-osfrose + ;; + -osf*) + os=-osf + ;; + -utek*) + os=-bsd + ;; + -dynix*) + os=-bsd + ;; + -acis*) + os=-aos + ;; + -386bsd) + os=-bsd + ;; + -ctix* | -uts*) + os=-sysv + ;; + -ns2 ) + os=-nextstep2 + ;; + -nsk*) + os=-nsk + ;; + # Preserve the version number of sinix5. + -sinix5.*) + os=`echo $os | sed -e 's|sinix|sysv|'` + ;; + -sinix*) + os=-sysv4 + ;; + -triton*) + os=-sysv3 + ;; + -oss*) + os=-sysv3 + ;; + -svr4) + os=-sysv4 + ;; + -svr3) + os=-sysv3 + ;; + -sysvr4) + os=-sysv4 + ;; + # This must come after -sysvr4. + -sysv*) + ;; + -ose*) + os=-ose + ;; + -es1800*) + os=-ose + ;; + -xenix) + os=-xenix + ;; + -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) + os=-mint + ;; + -none) + ;; + *) + # Get rid of the `-' at the beginning of $os. + os=`echo $os | sed 's/[^-]*-//'` + echo Invalid configuration \`$1\': system \`$os\' not recognized 1>&2 + exit 1 + ;; +esac +else + +# Here we handle the default operating systems that come with various machines. +# The value should be what the vendor currently ships out the door with their +# machine or put another way, the most popular os provided with the machine. + +# Note that if you're going to try to match "-MANUFACTURER" here (say, +# "-sun"), then you have to tell the case statement up towards the top +# that MANUFACTURER isn't an operating system. Otherwise, code above +# will signal an error saying that MANUFACTURER isn't an operating +# system, and we'll never get to this point. + +case $basic_machine in + *-acorn) + os=-riscix1.2 + ;; + arm*-rebel) + os=-linux + ;; + arm*-semi) + os=-aout + ;; + pdp10-*) + os=-tops20 + ;; + pdp11-*) + os=-none + ;; + *-dec | vax-*) + os=-ultrix4.2 + ;; + m68*-apollo) + os=-domain + ;; + i386-sun) + os=-sunos4.0.2 + ;; + m68000-sun) + os=-sunos3 + # This also exists in the configure program, but was not the + # default. + # os=-sunos4 + ;; + m68*-cisco) + os=-aout + ;; + mips*-cisco) + os=-elf + ;; + mips*-*) + os=-elf + ;; + *-tti) # must be before sparc entry or we get the wrong os. + os=-sysv3 + ;; + sparc-* | *-sun) + os=-sunos4.1.1 + ;; + *-be) + os=-beos + ;; + *-ibm) + os=-aix + ;; + *-wec) + os=-proelf + ;; + *-winbond) + os=-proelf + ;; + *-oki) + os=-proelf + ;; + *-hp) + os=-hpux + ;; + *-hitachi) + os=-hiux + ;; + i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) + os=-sysv + ;; + *-cbm) + os=-amigaos + ;; + *-dg) + os=-dgux + ;; + *-dolphin) + os=-sysv3 + ;; + m68k-ccur) + os=-rtu + ;; + m88k-omron*) + os=-luna + ;; + *-next ) + os=-nextstep + ;; + *-sequent) + os=-ptx + ;; + *-crds) + os=-unos + ;; + *-ns) + os=-genix + ;; + i370-*) + os=-mvs + ;; + *-next) + os=-nextstep3 + ;; + *-gould) + os=-sysv + ;; + *-highlevel) + os=-bsd + ;; + *-encore) + os=-bsd + ;; + *-sgi) + os=-irix + ;; + *-siemens) + os=-sysv4 + ;; + *-masscomp) + os=-rtu + ;; + f30[01]-fujitsu | f700-fujitsu) + os=-uxpv + ;; + *-rom68k) + os=-coff + ;; + *-*bug) + os=-coff + ;; + *-apple) + os=-macos + ;; + *-atari*) + os=-mint + ;; + *) + os=-none + ;; +esac +fi + +# Here we handle the case where we know the os, and the CPU type, but not the +# manufacturer. We pick the logical manufacturer. +vendor=unknown +case $basic_machine in + *-unknown) + case $os in + -riscix*) + vendor=acorn + ;; + -sunos*) + vendor=sun + ;; + -aix*) + vendor=ibm + ;; + -beos*) + vendor=be + ;; + -hpux*) + vendor=hp + ;; + -mpeix*) + vendor=hp + ;; + -hiux*) + vendor=hitachi + ;; + -unos*) + vendor=crds + ;; + -dgux*) + vendor=dg + ;; + -luna*) + vendor=omron + ;; + -genix*) + vendor=ns + ;; + -mvs* | -opened*) + vendor=ibm + ;; + -ptx*) + vendor=sequent + ;; + -vxsim* | -vxworks*) + vendor=wrs + ;; + -aux*) + vendor=apple + ;; + -hms*) + vendor=hitachi + ;; + -mpw* | -macos*) + vendor=apple + ;; + -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) + vendor=atari + ;; + -vos*) + vendor=stratus + ;; + esac + basic_machine=`echo $basic_machine | sed "s/unknown/$vendor/"` + ;; +esac + +echo $basic_machine$os +exit 0 + +# Local variables: +# eval: (add-hook 'write-file-hooks 'time-stamp) +# time-stamp-start: "timestamp='" +# time-stamp-format: "%:y-%02m-%02d" +# time-stamp-end: "'" +# End: diff --git a/configure.in b/configure.in index 492d6edc..2b697f1a 100644 --- a/configure.in +++ b/configure.in @@ -1,9 +1,9 @@ dnl Process this file with autoconf to produce a configure script. dnl -dnl $Id: configure.in,v 1.2 2001/05/13 22:04:51 administrator Exp $ +dnl $Id: configure.in,v 1.67 2002/05/03 14:33:59 oes Exp $ dnl -dnl Written by and Copyright (C) 2001 the SourceForge -dnl IJBSWA team. http://ijbswa.sourceforge.net +dnl Written by and Copyright (C) 2001, 2002 the SourceForge +dnl Privoxy team. http://www.privoxy.org/ dnl dnl Based on the Internet Junkbuster originally written dnl by and Copyright (C) 1997 Anonymous Coders and @@ -28,230 +28,1079 @@ dnl or write to the Free Software Foundation, Inc., 59 dnl Temple Place - Suite 330, Boston, MA 02111-1307, USA. dnl dnl $Log: configure.in,v $ +dnl Revision 1.67 2002/05/03 14:33:59 oes +dnl Generate doc/soucre/ldp.dsl +dnl +dnl Revision 1.66 2002/05/03 00:41:56 oes +dnl Set version to 2.9.15 to comply with new versioning scheme +dnl +dnl Revision 1.65 2002/04/25 19:13:57 morcego +dnl Removed RPM release number declaration on configure.in +dnl Changed makefile to use given value for RPM_PACKAGEV when on uploading +dnl targets (will produce an error, explaining who to do it, if no value +dnl if provided). +dnl +dnl Revision 1.64 2002/04/22 16:32:31 morcego +dnl configure.in, *.spec: Bumping release to 2 (2.9.14-2) +dnl -rh.spec: uid and gid are now macros +dnl -suse.spec: Changing the header Copyright to License (Copyright is +dnl deprecable) +dnl +dnl Revision 1.63 2002/04/11 11:00:21 oes +dnl Applied Moritz' fix for socklen_t on Solaris +dnl +dnl Revision 1.62 2002/04/11 10:09:20 oes +dnl Version 2.9.14 +dnl +dnl Revision 1.61 2002/04/10 18:14:45 morcego +dnl - (privoxy-rh.spec only) Relisting template files on the %%files section +dnl - (configure.in, privoxy-rh.spec) Bumped package release to 5 +dnl +dnl Revision 1.60 2002/04/09 16:38:49 oes +dnl Added detection of missing config.h.in +dnl +dnl Revision 1.59 2002/04/06 20:23:55 jongfoster +dnl Removing unnessacery tests (C++, ranlib) +dnl +dnl Revision 1.58 2002/04/04 20:49:20 swa +dnl attempt to consolidate the +dnl different dokbook versions. +dnl +dnl Revision 1.57 2002/04/04 00:36:36 gliptak +dnl always use pcre for matching +dnl +dnl Revision 1.56 2002/04/03 22:28:03 gliptak +dnl Removed references to gnu_regex +dnl +dnl Revision 1.55 2002/04/03 03:54:38 gliptak +dnl Checking pcre version +dnl +dnl Revision 1.54 2002/04/01 00:54:24 gliptak +dnl More changes needed around regex support. +dnl +dnl Revision 1.53 2002/03/29 20:09:01 swa +dnl al's patch +dnl +dnl Revision 1.52 2002/03/29 19:51:40 gliptak +dnl Correcting compile problem with Debian +dnl +dnl Revision 1.51 2002/03/28 20:43:00 swa +dnl set make correctly +dnl +dnl Revision 1.50 2002/03/27 03:03:45 hal9 +dnl Add test for man2html +dnl +dnl Revision 1.49 2002/03/27 02:19:52 david__schmidt +dnl More Mac OSX support: +dnl - Get rid of extraneous, noisy -pthread warnings +dnl - Define unix so we get oes' unix-tagged changes +dnl +dnl Revision 1.48 2002/03/26 22:29:54 swa +dnl we have a new homepage! +dnl +dnl Revision 1.47 2002/03/26 16:41:00 hal9 +dnl Upped RPM Release to 3 (need to build new RH packages) +dnl +dnl Revision 1.46 2002/03/24 18:55:06 jongfoster +dnl Making Docbook work under Windows +dnl +dnl Revision 1.45 2002/03/24 14:19:55 swa +dnl set rpm package release in configure.in. nowhere else. +dnl +dnl Revision 1.44 2002/03/24 13:25:43 swa +dnl name change related issues +dnl +dnl Revision 1.43 2002/03/24 12:56:21 swa +dnl name change related issues. +dnl +dnl Revision 1.42 2002/03/22 18:11:37 jongfoster +dnl Bumping version number to 2.9.12 +dnl +dnl Revision 1.41 2002/03/19 19:30:04 morcego +dnl - Fixing stylesheet checking on configure. If it is found, no further checks +dnl should be done +dnl +dnl - configure will now check for db2html or docbook2html (should work now +dnl on SuSe without the docbktls package) +dnl +dnl Revision 1.40 2002/03/09 14:33:30 oes +dnl Fixing the (harmless) AC_CHECK_FILE warnings +dnl +dnl Revision 1.39 2002/03/08 16:46:13 oes +dnl Added --enable-no-gifs +dnl +dnl Revision 1.38 2002/03/08 14:13:50 morcego +dnl Fixing configure, to remove a command not found error. +dnl +dnl Revision 1.37 2002/03/08 12:58:21 oes +dnl Tiny bugfix in AC_ARG_WITH(debug) +dnl +dnl Revision 1.36 2002/03/06 23:50:36 morcego +dnl Will not test for a text browser if we are not using docbook. +dnl +dnl Revision 1.35 2002/03/06 21:55:52 morcego +dnl New configure option: --with-docbook=(yes|no|directory) +dnl Preliminary new platform detection code included. Will work with the +dnl old one for now. No use just trowing it away +dnl +dnl Revision 1.34 2002/03/06 20:57:00 morcego +dnl Fixing detection of stylesheets on SuSe. +dnl +dnl Revision 1.33 2002/03/05 17:31:11 morcego +dnl Search for docbook.dsl. Should solve portability problems for SuSe. +dnl +dnl Revision 1.32 2002/03/05 14:07:43 morcego +dnl configure now detects rpm topdir, and change GNUmakefile acordingly +dnl (based on sugestion by Sarantis Paskalis) +dnl +dnl Revision 1.31 2002/03/05 13:43:28 morcego +dnl Checking for text browser, so redhat-dok can work. +dnl +dnl Revision 1.30 2002/03/04 17:58:01 oes +dnl Deleted _DEBUG and PID_FILE_PATH +dnl +dnl Revision 1.29 2002/02/28 14:20:53 oes +dnl Fixed detection of gethost*_r functions on Solaris +dnl +dnl Revision 1.28 2002/02/27 15:02:38 oes +dnl Incremented version number +dnl +dnl Revision 1.27 2002/01/10 12:35:18 oes +dnl Added cross-compile defaults to the AC_CHECK_SIZEOF macros +dnl to silence autoconf warnings. Numbers are for Intel/Linux. +dnl Is there a better way? +dnl +dnl Revision 1.26 2002/01/09 14:29:49 oes +dnl - Added AC_CHECK_FUNC tests for the availability of +dnl gethostbyname_r, gethostbyaddr_r, gmtime_r and +dnl localtime_r, as well as AC_TRY_COMPILE tests to +dnl determine their signatures. +dnl +dnl - Fixed a bug with the init of CFLAGS that was +dnl reported by barsnick +dnl +dnl Revision 1.25 2002/01/04 15:27:18 oes +dnl Changed quoting of CODE_STATUS for use in make +dnl +dnl Revision 1.24 2001/12/30 14:07:31 steudten +dnl - Add signal handling (unix) +dnl - Add SIGHUP handler (unix) +dnl - Add creation of pidfile (unix) +dnl - Add action 'top' in rc file (RH) +dnl - Add entry 'SIGNALS' to manpage +dnl - Add exit message to logfile (unix) +dnl +dnl Revision 1.23 2001/12/09 20:24:42 david__schmidt +dnl Change from "alpha" to "beta" in configure.in +dnl +dnl Revision 1.22 2001/12/01 11:24:01 jongfoster +dnl Renaming Makefile.in to GNUmakefile.in so that non-GNU versions of +dnl make break in a more obvious way. +dnl +dnl Revision 1.21 2001/11/30 21:35:54 jongfoster +dnl Bumping version number to 2.9.10 +dnl +dnl Revision 1.20 2001/10/23 21:24:09 jongfoster +dnl Support for FEATURE_CGI_EDIT_ACTIONS +dnl +dnl Revision 1.19 2001/10/07 15:33:14 oes +dnl Removed FEATURE_DENY_GZIP +dnl Bumped up version number +dnl +dnl Revision 1.18 2001/09/13 13:10:24 steudten +dnl +dnl PreWork for Debug Interface. +dnl Add new option "--with-debug" to enable debugging (flags aso.) +dnl +dnl Revision 1.17 2001/09/12 23:44:55 david__schmidt +dnl Mac OSX (Darwin) support added. +dnl +dnl Revision 1.16 2001/09/12 22:55:45 joergs +dnl AmigaOS support added. +dnl +dnl Revision 1.15 2001/09/12 17:28:59 david__schmidt +dnl +dnl OS/2 port: update autoconf'd support for the platform. +dnl +dnl Revision 1.14 2001/07/30 22:12:11 jongfoster +dnl Fixing Solaris build (I hope) and tidying up #defines: +dnl - All feature #defines are now of the form FEATURE_xxx +dnl - Permanently turned off WIN_GUI_EDIT +dnl - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS +dnl +dnl Revision 1.13 2001/07/29 17:09:17 jongfoster +dnl Major changes to build system in order to fix these bugs: +dnl - pthreads under Linux was broken - changed -lpthread to -pthread +dnl - Compiling in MinGW32 mode under CygWin now correctly detects +dnl which shared libraries are available +dnl - Solaris support (?) (Not tested under Solaris yet) +dnl +dnl Revision 1.12 2001/07/25 19:16:27 oes +dnl Bumping version number to 2.9.8 +dnl +dnl Revision 1.11 2001/07/21 18:00:07 jongfoster +dnl Bumping version number to 2.9.7 +dnl +dnl Revision 1.10 2001/07/18 17:25:04 oes +dnl Fixed a typo +dnl +dnl Revision 1.9 2001/07/15 19:45:13 jongfoster +dnl Added support for linking with POSIX threads library +dnl +dnl Revision 1.8 2001/07/15 17:54:29 jongfoster +dnl Renaming #define STATIC to STATIC_PCRE +dnl Adding new #define FEATURE_PTHREAD that will be used to enable +dnl POSIX threads support. +dnl +dnl Revision 1.7 2001/07/13 13:58:05 oes +dnl Completely reorganized the selection scheme for +dnl pcre, pcreposix, pcrs and gnu_regex: +dnl +dnl The presence of shared pcre, pcreposix or pcrs +dnl libraried is now autodetected. Additionally, the +dnl user can enforce using the built-in static variants +dnl by specifying --disable-dynamic-(pcre|pcrs). +dnl Care is taken to avoid that pcre is dyn, while pcreposix +dnl is static, if both are used and that pcrs is static if +dnl pcrs is. +dnl +dnl The choice between pcre, gnu or no regex for actionsfile +dnl URL matching is now via +dnl --(enable|disable)-regex-matching[=(gnu|pcre|no)] with the +dnl default being pcre. +dnl +dnl Revision 1.6 2001/06/29 21:56:40 oes +dnl Version -> 2.9.5 +dnl +dnl Revision 1.5 2001/06/29 13:26:27 oes +dnl Introduced #define CODE_STATUS +dnl +dnl Revision 1.4 2001/05/29 09:50:24 jongfoster +dnl Unified blocklist/imagelist/permissionslist. +dnl File format is still under discussion, but the internal changes +dnl are (mostly) done. +dnl +dnl Also modified interceptor behaviour: +dnl - We now intercept all URLs beginning with one of the following +dnl prefixes (and *only* these prefixes): +dnl * http://i.j.b/ +dnl * http://ijbswa.sf.net/config/ +dnl * http://ijbswa.sourceforge.net/config/ +dnl - New interceptors "home page" - go to http://i.j.b/ to see it. +dnl - Internal changes so that intercepted and fast redirect pages +dnl are not replaced with an image. +dnl - Interceptors now have the option to send a binary page direct +dnl to the client. (i.e. ijb-send-banner uses this) +dnl - Implemented show-url-info interceptor. (Which is why I needed +dnl the above interceptors changes - a typical URL is +dnl "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". +dnl The previous mechanism would not have intercepted that, and +dnl if it had been intercepted then it then it would have replaced +dnl it with an image.) +dnl +dnl Revision 1.3 2001/05/22 18:46:04 oes +dnl +dnl - Enabled filtering banners by size rather than URL +dnl by adding patterns that replace all standard banner +dnl sizes with the "Junkbuster" gif to the re_filterfile +dnl +dnl - Enabled filtering WebBugs by providing a pattern +dnl which kills all 1x1 images +dnl +dnl - Added support for PCRE_UNGREEDY behaviour to pcrs, +dnl which is selected by the (nonstandard and therefore +dnl capital) letter 'U' in the option string. +dnl It causes the quantifiers to be ungreedy by default. +dnl Appending a ? turns back to greedy (!). +dnl +dnl - Added a new interceptor ijb-send-banner, which +dnl sends back the "Junkbuster" gif. Without imagelist or +dnl MSIE detection support, or if tinygif = 1, or the +dnl URL isn't recognized as an imageurl, a lame HTML +dnl explanation is sent instead. +dnl +dnl - Added new feature, which permits blocking remote +dnl script redirects and firing back a local redirect +dnl to the browser. +dnl The feature is conditionally compiled, i.e. it +dnl can be disabled with --disable-fast-redirects, +dnl plus it must be activated by a "fast-redirects" +dnl line in the config file, has its own log level +dnl and of course wants to be displayed by show-proxy-args +dnl Note: Boy, all the #ifdefs in 1001 locations and +dnl all the fumbling with configure.in and acconfig.h +dnl were *way* more work than the feature itself :-( +dnl +dnl - Because a generic redirect template was needed for +dnl this, tinygif = 3 now uses the same. +dnl +dnl - Moved GIFs, and other static HTTP response templates +dnl to project.h +dnl +dnl - Some minor fixes +dnl +dnl - Removed some >400 CRs again (Jon, you really worked +dnl a lot! ;-) +dnl +dnl Revision 1.2 2001/05/20 01:21:20 jongfoster +dnl Version 2.9.4 checkin. +dnl - Merged popupfile and cookiefile, and added control over PCRS +dnl filtering, in new "permissionsfile". +dnl - Implemented LOG_LEVEL_FATAL, so that if there is a configuration +dnl file error you now get a message box (in the Win32 GUI) rather +dnl than the program exiting with no explanation. +dnl - Made killpopup use the PCRS MIME-type checking and HTTP-header +dnl skipping. +dnl - Removed tabs from "config" +dnl - Moved duplicated url parsing code in "loaders.c" to a new funcition. +dnl - Bumped up version number. +dnl +dnl Revision 1.1.1.1 2001/05/15 13:58:50 oes +dnl Initial import of version 2.9.3 source tree +dnl dnl + + +dnl ================================================================= +dnl AutoConf Initialization +dnl ================================================================= + +AC_REVISION($Revision: 1.67 $) AC_INIT(jcc.c) -AC_CONFIG_HEADER(config.h) + +if test ! -f config.h.in; then + echo "You need to run autoheader first. " + echo -n "Shall I do this for you now? (y/n) " + read answer + if test $answer != "y"; then + exit 1 + else + autoheader + fi +fi + +AC_CONFIG_HEADER([config.h]) +AC_CANONICAL_HOST + +dodk=auto +DKPREFIX=none +AC_ARG_WITH(docbook, dnl + --with-docbook=[[yes|no|directory]] + Enable docbook documentation creation + (default = yes, for gnu and linux),[dnl +case "$with_docbook" in +yes) dodk=yes;; +no) dodk=no;; +*) + dodk=no + DKPREFIX=$withval + ;; +esac +]) +DB2HTML=false +AC_ARG_WITH(db2html, dnl + --with-db2html= + Set the location of the docbook to html converter + (default = search),[dnl +DB2HTML=$withval +]) + +dnl ================================================================= +dnl Application version number +dnl ================================================================= VERSION_MAJOR=2 VERSION_MINOR=9 -VERSION_POINT=3 +VERSION_POINT=15 +CODE_STATUS="beta" + +dnl CODE_STATUS can be "alpha", "beta", or "stable", and will be +dnl used for CGI output + +dnl ================================================================= +dnl Substitute the version numbers +dnl ================================================================= AC_SUBST(VERSION_MAJOR) AC_SUBST(VERSION_MINOR) AC_SUBST(VERSION_POINT) +AC_SUBST(CODE_STATUS) +dnl AC_DEFINE_UNQUOTED(VERSION_MAJOR,${VERSION_MAJOR}) AC_DEFINE_UNQUOTED(VERSION_MINOR,${VERSION_MINOR}) AC_DEFINE_UNQUOTED(VERSION_POINT,${VERSION_POINT}) AC_DEFINE_UNQUOTED(VERSION,"${VERSION_MAJOR}.${VERSION_MINOR}.${VERSION_POINT}") +AC_DEFINE_UNQUOTED(CODE_STATUS,"${CODE_STATUS}") -dnl Checks for programs. -dnl AC_PROG_CXX +dnl ================================================================= +dnl Checks for programs needed to build. +dnl ================================================================= AC_PROG_CC AC_PROG_CPP -dnl AC_PROG_INSTALL -dnl AC_PROG_LN_S -dnl AC_PROG_MAKE_SET -dnl RANLIB is for PCRE: -dnl AC_PROG_RANLIB +AC_PROG_INSTALL +AC_PROG_LN_S +AC_PROG_MAKE_SET -AC_MINGW32 -AC_CYGWIN -AC_EXEEXT -AC_OBJEXT +AC_CHECK_PROG(GDB,gdb,yes,no) -dnl Checks for libraries. -dnl AC_CHECK_LIB(pcre, pcre_compile) -dnl AC_CHECK_LIB(pcreposix, regcomp, pcre) +dnl ================================================================= +dnl debug, gcc and gdb support +dnl ================================================================= -dnl Checks for header files. -AC_HEADER_STDC -dnl AC_HEADER_SYS_WAIT -dnl AC_CHECK_HEADERS(fcntl.h limits.h malloc.h sys/time.h unistd.h) -dnl limits.h is for PCRE: -dnl AC_CHECK_HEADERS(limits.h) +AC_ARG_WITH(debug, + [ --with-debug Enable debug mode], + [ + if test "x$withval" != "xno" ; then + if test $ac_cv_prog_cc_g = yes; then + if test "$GCC" = yes; then + if test "$GDB"; then + CFLAGS="-ggdb" + else + CFLAGS="-g" + fi + CFLAGS="$CFLAGS -Wshadow -Wconversion" + else + CFLAGS="-g" + fi + fi + fi + ], + [ + if test "X$CFLAGS" = "X"; then # if CFLAGS are unset + if test "$GCC" = yes; then + CFLAGS="-O2" + else + CFLAGS= + fi + fi + ] +) -dnl Checks for typedefs, structures, and compiler characteristics. -AC_C_CONST -AC_TYPE_SIZE_T +AC_ARG_WITH(user, + [ --with-user=privoxy Set user under which privoxy run], + [ + if test "x$withval" != "xyes"; then + USER=$with_user; + else + AC_MSG_ERROR(We need a user if you give me this parameter) + fi + ], + [ + USER=privoxy; + ] +) +AC_SUBST(USER) -dnl Checks for library functions. -dnl AC_TYPE_SIGNAL -dnl AC_CHECK_FUNC(strstr) -dnl bcopy and memmove are for PCRE -AC_CHECK_FUNCS(strerror bcopy memmove) +AC_ARG_WITH(group, + [ --with-group=privoxy Set group for privoxy], + [ + if test "x$withval" != "xyes"; then + GROUP=$with_group; + else + AC_MSG_ERROR(We need a group if you give me this parameter) + fi + ], + [ + GROUP=privoxy; + ] +) +AC_SUBST(GROUP) +dnl ================================================================= +dnl additional gcc flags +dnl ================================================================= +dnl +if test "$GCC"; then + CFLAGS="-pipe $CFLAGS" +fi + +dnl ================================================================= dnl Build type +dnl ================================================================= +dnl +dnl Must do this first. +dnl +dnl Reason: This sets CFLAGS in order to switch the Cygwin compiler +dnl into Cygwin or MinGW32 modes. Depending on the mode selected, +dnl the compiler will use completely different sets of library +dnl and include files. +dnl +dnl ================================================================= + +AC_MINGW32 +AC_CYGWIN + +if test "$MINGW32" = "yes"; then + target_type=mingw +else + if test "$CYGWIN" = "yes"; then + target_type=cygwin + else + target_type=unix + fi +fi + +if test $dodk = auto; then + dodk=no + if test $target_type = unix; then + case "$host_os" in + linux* | gnu*) + dodk=yes + ;; + esac + fi +fi + +dnl Decide what to do based on target_type +dnl Note: PTHREAD_LIB is always set, even if pthread is disabled. +dnl This is because we don't know yet whether pthread is enabled. AC_ARG_ENABLE(mingw32, [ --enable-mingw32 Use mingw32 for a Windows GUI], [if test $enableval = yes; then - WIN_ONLY= - CYGWIN_FLAGS="-mwindows -mno-cygwin" - echo "Using mingw32 (Win32 GUI)" - else - WIN_ONLY=# - if test "$CYGWIN" = "yes"; then - CYGWIN_FLAGS="-mno-win32" - echo "Using Cygnus (Win32 command line)" - else - CYGWIN_FLAGS= - fi - fi], -[if test "$MINGW32" = "yes"; then - WIN_ONLY= - CYGWIN_FLAGS="-mwindows -mno-cygwin" - echo "Using mingw32 (Win32 GUI)" - else - WIN_ONLY=# - if test "$CYGWIN" = "yes"; then - CYGWIN_FLAGS="-mno-win32" - echo "Using Cygnus (Win32 command line)" - else - CYGWIN_FLAGS= - fi - fi]) + target_type=mingw +fi]) +if test $target_type = mingw; then + WIN_ONLY= + SPECIAL_CFLAGS="-mwindows -mno-cygwin" + PTHREAD_LIB=-lpthreadGC + echo "Using mingw32 (Win32 GUI)" +else + WIN_ONLY=# + if test $target_type = cygwin; then + SPECIAL_CFLAGS="-mno-win32" + PTHREAD_LIB= + echo "Using Cygnus (Win32 command line)" + else + SPECIAL_CFLAGS= + PTHREAD_LIB=-lpthread + fi +fi AC_SUBST(WIN_ONLY) -AC_SUBST(CYGWIN_FLAGS) -SOLARIS_ONLY=# -AC_SUBST(SOLARIS_ONLY) +dnl Checking which text html browser we have avaliable +if test $dodk != no; then + AC_CHECK_PROGS(WDUMP,w3m lynx links,false) + if test "$WDUMP" = false; then + AC_MSG_ERROR(You need some kind of text browser to continue \(w3m, lynx and links are supported\)) + fi + if test $DB2HTML = false; then + dnl We need to clean the variable, otherwise AC_CHECK_PROGS + dnl will fail + DB2HTML="" + AC_CHECK_PROGS(DB2HTML,db2html docbook2html,false) + fi +fi +AC_SUBST(WDUMP) +AC_SUBST(DB2HTML) -dnl Features +dnl If we use rpm, we need to check where %_topdir is +AC_CHECK_PROGS(RPMBIN,rpm,false) +if test $RPMBIN != false; then + RPM_BASE=`rpm --eval "%{_topdir}"` + if test "$RPM_BASE" = ""; then + RPM_BASE=/usr/src/redhat + fi +fi +AC_SUBST(RPM_BASE) -dnl Regex engine: +dnl Check for jade, so we can build the documentation +AC_CHECK_PROGS(JADEBIN,jade openjade,false) +AC_SUBST(JADEBIN) -GNU_REGEX_ONLY= -PCRE_REGEX_ONLY= -NO_REGEX_ONLY=# +dnl Check for man2html for docs. +AC_CHECK_PROGS(MAN2HTML,man2html,false) +AC_SUBST(MAN2HTML) -AC_ARG_ENABLE(regex, -[ --disable-regex Don't allow regular expressions in the blockfile], -[if test $enableval = yes; then - AC_DEFINE(REGEX) -else - NO_REGEX_ONLY= - GNU_REGEX_ONLY=# - PCRE_REGEX_ONLY=# -fi],AC_DEFINE(REGEX)) +dnl Checking for the docbook.dsl stylesheet file +dnl It is still not portable (directory slash) +JADECAT="" +if test $dodk = yes; then + if test $DKPREFIX = none; then + for i in /usr/share/sgml/docbook/dsssl-stylesheets /usr/share/sgml/docbkdsl /usr/share/sgml/docbook-dsssl; do + echo -n "checking for $i/html/docbook.dsl..." + if test -f $i/html/docbook.dsl; then + echo "yes" + DKPREFIX=$i + break + else + echo "no" + fi + done +# where are the catalogs? + for i in /usr/share/sgml/CATALOG.docbk30 /usr/share/sgml/CATALOG.docbk31; do + echo -n "checking for $i..." + if test -f $i; then + echo "yes" + JADECAT="$JADECAT -c $i" + else + echo "no" + fi + done + fi +fi +AC_SUBST(JADECAT) +AC_SUBST(DKPREFIX) -AC_ARG_ENABLE(pcre-regex, -[ --disable-pcre-regex Use old, slow GNU Regex instead of PCRE.], -[if test $enableval = yes; then - AC_DEFINE(PCRE) - GNU_REGEX_ONLY=# +dnl Save old CFLAGS so we can restore them later, then add SPECIAL_CFLAGS +old_CFLAGS_nospecial=$CFLAGS +CFLAGS="$CFLAGS $SPECIAL_CFLAGS" + +# Hack to force AutoConf to use the CFLAGS we just set +dnl Warning: This may break with a future version of Autoconf +dnl Tested with autoconf 2.13 +ac_cpp='$CPP $CPPFLAGS $SPECIAL_CFLAGS' +ac_compile='${CC-cc} -c $CFLAGS $CPPFLAGS conftest.$ac_ext 1>&5' +ac_link='${CC-cc} -o conftest${ac_exeext} $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS 1>&5' + + +dnl ================================================================= +dnl Thread support +dnl ================================================================= + +AC_CHECK_HEADER(pthread.h, [have_pthread=yes], [have_pthread=no]) + +AC_ARG_ENABLE(pthread, +[ --disable-pthread Don't use POSIX threads (pthreads)], +[if test $enableval = no; then + # Disable pthreads + have_pthread=no +fi]) + +if test $have_pthread = yes; then + PTHREAD_ONLY= + AC_DEFINE(FEATURE_PTHREAD) + echo Using POSIX threads + if test "$GCC" = "yes"; then + # Set a GCC specific switch: + if test "$target_type" = "unix"; then + ac_jgf_save_CFLAGS=$CFLAGS + CFLAGS="$CFLAGS -pthread" + AC_TRY_LINK([#include ], + [void *p = pthread_create;], + [ + # This compiler switch makes GCC on Linux thread-safe + # However, it's not supported on most other OS. + PTHREAD_LIB= + SPECIAL_CFLAGS="-pthread" + ]) + CFLAGS=$ac_jgf_save_CFLAGS + fi + fi else - PCRE_REGEX_ONLY=# -fi],[AC_DEFINE(PCRE) - GNU_REGEX_ONLY=# + PTHREAD_ONLY=# + echo Using native threads +fi + +AC_SUBST(PTHREAD_ONLY) + +dnl ================================================================= +dnl Support for thread-safe versions of gethostbyaddr, gethostbyname, +dnl gmtime and localtime +dnl ================================================================= + +dnl Next line needed to find the gethost*_r functions on Solaris +AC_CHECK_LIB(nsl, gethostbyname) + +AC_CHECK_FUNC(gethostbyaddr_r, [ + AC_MSG_CHECKING([signature of gethostbyaddr_r]) + AC_TRY_COMPILE([ +# include + ], [ + struct hostent *h, *hp; + char *a, *b; + int l, bl, t, e; + (void) gethostbyaddr_r(a, l, t, h, b, bl, &hp, &e) + ], [ + AC_DEFINE(HAVE_GETHOSTBYADDR_R_8_ARGS) + AC_MSG_RESULT([8 args]) + ], [ + AC_TRY_COMPILE([ +# include + ], [ + struct hostent *h; + char *a, *b; + int l, bl, t, e; + (void) gethostbyaddr_r(a, l, t, h, b, bl, &e) + ], [ + AC_DEFINE(HAVE_GETHOSTBYADDR_R_7_ARGS) + AC_MSG_RESULT([7 args]) + ], [ + AC_TRY_COMPILE([ +# include + ], [ + struct hostent_data *d; + struct hostent *h; + char a, + int l, t; + (void) gethostbyaddr_r(a, l, t, h, d) + ], [ + AC_DEFINE(HAVE_GETHOSTBYADDR_R_5_ARGS) + AC_MSG_RESULT([5 args]) + ], [ + AC_MSG_RESULT(unrecognised) + ]) + ]) + ]) +], [ + AC_MSG_RESULT(no) ]) -AC_SUBST(GNU_REGEX_ONLY) -AC_SUBST(PCRE_REGEX_ONLY) -AC_SUBST(NO_REGEX_ONLY) +AC_CHECK_FUNC(gethostbyname_r, [ + AC_MSG_CHECKING([signature of gethostbyname_r]) + AC_TRY_COMPILE([ +# include + ], [ + struct hostent *h, *r; + char *n, *b; + int bl, e; + (void) gethostbyname_r(n, h, b, bl, &r, &e) + ], [ + AC_DEFINE(HAVE_GETHOSTBYNAME_R_6_ARGS) + AC_MSG_RESULT([6 args]) + ], [ + AC_TRY_COMPILE([ +# include + ], [ + struct hostent *h; + char *n, *b; + int bl, e; + (void) gethostbyname_r(n, h, b, bl, &e) + ], [ + AC_DEFINE(HAVE_GETHOSTBYNAME_R_5_ARGS) + AC_MSG_RESULT([5 args]) + ], [ + AC_TRY_COMPILE([ +# include + ], [ + struct hostent_data *d; + struct hostent *h; + char *n, + (void) gethostbyname_r(n, h, d) + ], [ + AC_DEFINE(HAVE_GETHOSTBYNAME_R_3_ARGS) + AC_MSG_RESULT([3 args]) + ], [ + AC_MSG_RESULT(unrecognised) + ]) + ]) + ]) +], [ + AC_MSG_RESULT(no) +]) + +AC_CHECK_FUNC(gmtime_r, [ + AC_MSG_CHECKING([signature of gmtime_r]) + AC_TRY_COMPILE([ +# include + ], [ + struct time *t; + struct tm *tm; + (void) gmtime_r(t, tm) + ], [ + AC_MSG_RESULT(ok) + AC_DEFINE(HAVE_GMTIME_R) + ], [ + AC_MSG_RESULT(unrecognised) + ]) +], [ + AC_MSG_RESULT(no) +]) + +AC_CHECK_FUNC(localtime_r, [ + AC_MSG_CHECKING([signature of localtime_r]) + AC_TRY_COMPILE([ +# include + ], [ + struct time *t; + struct tm *tm; + (void) localtime_r(t, tm) + ], [ + AC_MSG_RESULT(ok) + AC_DEFINE(HAVE_LOCALTIME_R) + ], [ + AC_MSG_RESULT(unrecognised) + ]) +], [ + AC_MSG_RESULT(no) +]) + +dnl ================================================================= +dnl Solaris specific +dnl FIXME: Not tested on Solaris yet... +dnl ISFIXED: Have tested it on Solaris, but there are other ways to +dnl make these checks generic, e.g.: +dnl AC_CHECK_FUNC(getsockopt, , AC_CHECK_LIB(socket, getsockopt)) +dnl (Moritz Barsnick ) +dnl ================================================================= + + +SOCKET_LIB= + +case "$host" in +*-solaris*) SOCKET_LIB="-lsocket -lnsl" + AC_DEFINE(__EXTENSIONS__) + if test "$GCC" = "yes"; then + # Set a GCC specific switch: + # This compiler switch makes Solaris thread-safe + PTHREAD_LIB= + SPECIAL_CFLAGS="-pthreads" + else + # What do we do without GCC? Guess this: + SPECIAL_CFLAGS="-D_REENTRANT" + fi +;; +esac + +AC_SUBST(SOCKET_LIB) + +dnl ================================================================= +dnl Solaris problem, and others perhaps (socklen_t is undefined) +dnl ================================================================= + +AC_MSG_CHECKING([for socklen_t]) +AC_EGREP_HEADER(socklen_t, sys/socket.h, AC_MSG_RESULT([yes]), + AC_MSG_RESULT([no]) + AC_DEFINE(socklen_t,int, + [ Define to 'int' if doesn't have it. ])) + + +dnl ================================================================= +dnl OS/2 specific +dnl ================================================================= + +case "$host" in +*-os2-emx*) SOCKET_LIB=-lsocket +;; +esac + +AC_SUBST(SOCKET_LIB) +dnl ================================================================= +dnl Mac OSX specific +dnl ================================================================= + +case "$host" in +*-apple-darwin*) SPECIAL_CFLAGS="-Dunix" +;; +esac -dnl Other features: +dnl ================================================================= +dnl AmigaOS specific +dnl ================================================================= + +AMIGAOS_ONLY=# + +case "$host" in +*-amigaos) AMIGAOS_ONLY= +;; +esac + +AC_SUBST(AMIGAOS_ONLY) + +dnl ================================================================= +dnl Check for standard compiler stuff +dnl ================================================================= + +AC_EXEEXT +AC_OBJEXT +AC_HEADER_STDC +AC_HEADER_DIRENT +AC_C_CONST +AC_TYPE_SIZE_T +AC_TYPE_PID_T +AC_HEADER_TIME +AC_STRUCT_TM +AC_CHECK_SIZEOF(int, 4) +AC_CHECK_SIZEOF(char *, 4) +AC_CHECK_SIZEOF(long, 4) +AC_CHECK_SIZEOF(long long, 8) +AC_CHECK_SIZEOF(size_t, 4) + +dnl Checks for header files. +dnl AC_HEADER_SYS_WAIT +dnl AC_CHECK_HEADERS(fcntl.h limits.h malloc.h sys/time.h unistd.h) +AC_CHECK_HEADERS([OS.h arpa/inet.h errno.h fcntl.h limits.h locale.h netdb.h netinet/in.h stddef.h stdlib.h string.h sys/ioctl.h sys/socket.h sys/time.h sys/timeb.h sys/wait.h unistd.h]) + +dnl Checks for library functions. +dnl AC_TYPE_SIGNAL +dnl AC_CHECK_FUNC(strstr) +dnl bcopy and memmove are for PCRE +AC_CHECK_FUNCS([strerror bcopy memmove]) +AC_PROG_GCC_TRADITIONAL +dnl uncommenting does not work for swa. suse linux +dnl AC_FUNC_MALLOC +AC_FUNC_SETPGRP +AC_TYPE_SIGNAL +dnl uncommenting does not work for swa. suse linux +dnl AC_FUNC_STAT +AC_CHECK_FUNCS([atexit getcwd gethostbyaddr gethostbyname inet_ntoa localtime_r memchr memmove memset regcomp select setlocale socket strchr strdup strerror strftime strstr strtoul]) + + +dnl ================================================================= +dnl Checks for libraries. +dnl ================================================================= +dnl Note: Some systems may have the library but not the system header +dnl file, so we must check for both. +dnl Also check for correct version +AC_CHECK_LIB(pcre, pcre_compile, [AC_CHECK_HEADER(pcre.h, [AC_EGREP_HEADER(pcre_fullinfo, pcre.h, [have_pcre=yes], [AC_MSG_WARN([[pcre old version installed]]); have_pcre=no])], [have_pcre=no])], [have_pcre=no]) +AC_CHECK_LIB(pcreposix, regcomp, [AC_CHECK_HEADER(pcreposix.h, [AC_EGREP_HEADER(pcreposix_regerror, pcreposix.h, [AC_MSG_WARN([[pcreposix old version installed]]); have_pcreposix=no], [have_pcreposix=yes])], [have_pcreposix=no])], [have_pcreposix=no], -lpcre) +AC_CHECK_LIB(pcrs, pcrs_compile, [AC_CHECK_HEADER(pcrs.h, [have_pcrs=yes], [have_pcrs=no])], [have_pcrs=no]) + + +dnl ================================================================= +dnl Always defined +dnl ================================================================= + +AC_DEFINE(__MT__) + +dnl ================================================================= +dnl Features +dnl ================================================================= AC_ARG_ENABLE(toggle, -[ --disable-toggle Don't support temporary disable], +[ --disable-toggle Don't support temporary disable], [if test $enableval = yes; then - AC_DEFINE(TOGGLE) -fi],AC_DEFINE(TOGGLE)) + AC_DEFINE(FEATURE_TOGGLE) +fi],AC_DEFINE(FEATURE_TOGGLE)) -PCRS_ONLY= -AC_ARG_ENABLE(pcrs, -[ --disable-pcrs Don't support arbitrary content modification], +AC_ARG_ENABLE(force, +[ --disable-force Don't allow single-page disable], [if test $enableval = yes; then - AC_DEFINE(PCRS) - AC_DEFINE(DENY_GZIP) -else - PCRS_ONLY=# -fi],[AC_DEFINE(PCRS) AC_DEFINE(DENY_GZIP)]) -AC_SUBST(PCRS_ONLY) + AC_DEFINE(FEATURE_FORCE_LOAD) +fi],AC_DEFINE(FEATURE_FORCE_LOAD)) -AC_ARG_ENABLE(force, -[ --disable-force Don't allow blockfle to be bypassed], +AC_ARG_ENABLE(fast-redirects, +[ --disable-fast-redirects Don't support fast redirects], [if test $enableval = yes; then - AC_DEFINE(FORCE_LOAD) -fi],AC_DEFINE(FORCE_LOAD)) + AC_DEFINE(FEATURE_FAST_REDIRECTS) +fi], AC_DEFINE(FEATURE_FAST_REDIRECTS)) AC_ARG_ENABLE(killpopup, -[ --disable-killpopup Never block popups], +[ --disable-killpopup Never block popups], [if test $enableval = yes; then - AC_DEFINE(KILLPOPUPS) -fi],AC_DEFINE(KILLPOPUPS)) + AC_DEFINE(FEATURE_KILL_POPUPS) +fi],AC_DEFINE(FEATURE_KILL_POPUPS)) AC_ARG_ENABLE(stats, -[ --disable-stats Don't keep statistics], -[if test $enableval = yes; then - AC_DEFINE(STATISTICS) -fi],AC_DEFINE(STATISTICS)) - -AC_ARG_ENABLE(split-proxy-args, -[ --disable-split-proxy-args One big show-proxy-args page, not one per file.], -[if test $enableval = yes; then - AC_DEFINE(SPLIT_PROXY_ARGS) -fi],AC_DEFINE(SPLIT_PROXY_ARGS)) - -AC_ARG_ENABLE(webdav, -[ --disable-webdav Don't support WebDAV. This option stops MS Outlook - Express from accessing HotMail e-mail.], +[ --disable-stats Don't keep statistics], [if test $enableval = yes; then - AC_DEFINE(WEBDAV) -fi], -AC_DEFINE(WEBDAV)) + AC_DEFINE(FEATURE_STATISTICS) +fi],AC_DEFINE(FEATURE_STATISTICS)) AC_ARG_ENABLE(ie-images, -[ --disable-ie-images Don't auto-detect whether a request from MS Internet - Explorer is for an image or HTML.], +[ --disable-ie-images Don't auto-detect whether a request from MS Internet + Explorer is for an image or HTML.], [if test $enableval = yes; then - AC_DEFINE(DETECT_MSIE_IMAGES) + AC_DEFINE(FEATURE_IMAGE_DETECT_MSIE) fi], -AC_DEFINE(DETECT_MSIE_IMAGES)) +AC_DEFINE(FEATURE_IMAGE_DETECT_MSIE)) -AC_ARG_ENABLE(image-list, -[ --disable-image-list Don't try to figure out whether a request is for an - image or HTML using the imagelist - assume HTML.], +AC_ARG_ENABLE(image-blocking, +[ --disable-image-blocking Don't try to figure out whether a request is + for an image or HTML - assume HTML.], [if test $enableval = yes; then - AC_DEFINE(USE_IMAGE_LIST) + AC_DEFINE(FEATURE_IMAGE_BLOCKING) fi], -AC_DEFINE(USE_IMAGE_LIST)) +AC_DEFINE(FEATURE_IMAGE_BLOCKING)) AC_ARG_ENABLE(acl-files, -[ --disable-acl-files Prevents the use of ACL files to control access to - the proxy by IP address.], +[ --disable-acl-files Prevents the use of ACL files to control access to + the proxy by IP address.], [if test $enableval = yes; then - AC_DEFINE(ACL_FILES) + AC_DEFINE(FEATURE_ACL) fi], -AC_DEFINE(ACL_FILES)) +AC_DEFINE(FEATURE_ACL)) AC_ARG_ENABLE(trust-files, -[ --disable-trust-files Prevents the use of trust files.], +[ --disable-trust-files Prevents the use of trust files.], [if test $enableval = yes; then - AC_DEFINE(TRUST_FILES) + AC_DEFINE(FEATURE_TRUST) fi], -AC_DEFINE(TRUST_FILES)) +AC_DEFINE(FEATURE_TRUST)) AC_ARG_ENABLE(jar-files, -[ --disable-jar-files Prevents the use of jar files to capture cookies.], +[ --disable-jar-files Prevents the use of jar files to capture cookies.], [if test $enableval = yes; then - AC_DEFINE(JAR_FILES) + AC_DEFINE(FEATURE_COOKIE_JAR) fi], -AC_DEFINE(JAR_FILES)) +AC_DEFINE(FEATURE_COOKIE_JAR)) -LIBRARY_PCRE_ONLY=# -STATIC_PCRE_ONLY= -AC_ARG_ENABLE(static-pcre, -[ --disable-static-pcre Link dynamically with the pcre and pcreposix - libraries. You must build the libraries seperately.], -[if test $enableval = no; then - LIBRARY_PCRE_ONLY= - STATIC_PCRE_ONLY=# +AC_ARG_ENABLE(editor, +[ --disable-editor Prevents the use of the web-based actions file + editor and web-based temporary disable setting.], +[if test $enableval = yes; then + AC_DEFINE(FEATURE_CGI_EDIT_ACTIONS) +fi], +AC_DEFINE(FEATURE_CGI_EDIT_ACTIONS)) + +AC_ARG_ENABLE(no-gifs, +[ --enable-no-gifs Use politically correct PNG format instead of GIF + for built-in images. May not work with all browsers.], +[if test $enableval = yes; then + AC_DEFINE(FEATURE_NO_GIFS) fi]) -AC_SUBST(LIBRARY_PCRE_ONLY) + + +dnl pcre/pcrs is needed for CGI anyway, so +dnl the choice is only between static and +dnl dynamic: + +AC_ARG_ENABLE(dynamic-pcre, +[ --disable-dynamic-pcre Use the built-in, static pcre, even if + libpcre is available], +[ if test $enableval = "no"; then have_pcre=no; fi ]) + +AC_ARG_ENABLE(dynamic-pcrs, +[ --disable-dynamic-pcrs Use the built-in, static pcrs, even if + libpcrs is available], +[ if test $enableval = "no"; then have_pcrs=no; fi ]) + + +# If we have libpcre and either we also have pcreposix or +# we don't need pcreposix, then link pcre dynamically; else +# build it and link statically +# +if test $have_pcre = "yes"; then + echo "using libpcre" + pcre_dyn=yes + STATIC_PCRE_ONLY=# + LIBS="$LIBS -lpcre -lpcreposix" +else + echo "using built-in static pcre" + pcre_dyn=no + AC_DEFINE(STATIC_PCRE) + STATIC_PCRE_ONLY= +fi + +# If we have libpcrs and pcre is linked dynamically +# then also link pcrs dynamically, else build and link +# pcrs statically +# +if test $have_pcrs = "yes" -a $pcre_dyn = "yes"; then + echo "using libpcrs" + STATIC_PCRS_ONLY=# + LIBS="$LIBS -lpcrs" +else + echo "using built-in static pcrs" + AC_DEFINE(STATIC_PCRS) + STATIC_PCRS_ONLY= +fi + AC_SUBST(STATIC_PCRE_ONLY) +AC_SUBST(STATIC_PCRS_ONLY) + +dnl ================================================================= +dnl Final cleanup and output +dnl ================================================================= + +dnl Remove the SPECIAL_CFLAGS stuff from CFLAGS, and add it seperately +dnl in the Makefile +CFLAGS=$old_CFLAGS_nospecial +AC_SUBST(SPECIAL_CFLAGS) -AC_OUTPUT(Makefile) +AC_SUBST(PTHREAD_LIB) +AC_OUTPUT(GNUmakefile doc/source/ldp.dsl) diff --git a/contrib.sh b/contrib.sh new file mode 100755 index 00000000..74d5b727 --- /dev/null +++ b/contrib.sh @@ -0,0 +1,4035 @@ +#!/bin/bash + +echo "This script will create the gen_list contrib files in the current" +echo "directory. Do you wish to continue? [y/n]" + +typeset ans="n" +read ans + +if [[ ${ans} != [Yy]* ]]; then + echo "Goodbye." + exit 1 +fi + + +typeset fileList="Makefile README addr_clean.pl gen_list.c gen_list.h isa.c +isa.h main.c malloc_police.c malloc_police.h rec_char.c rec_char.h +rec_charptr.c rec_charptr.h rec_double.c rec_double.h rec_long.c +rec_long.h rec_malloc_police.c rec_malloc_police.h" + + +for i in ${fileList}; do + + echo "creating ${i}" + + #################################### + ## sed explained: + ## + ## -e "s/^\(#${i}:\)\(.*\)/\2/" + ## Find lines belonging to + ## this file and remove the + ## filename prefix. + ## + ## -e "t print" + ## Jump to label print if the + ## above s command matched + ## + ## -e "d" + ## This command is skipped + ## when the s command fails. + ## This will remove any + ## non-matching data. + ## + ## -e ":print" + ## The last thing sed does + ## is print the data. So, + ## by now, we only print + ## lines belonging to the file. + ## + #################################### + + sed -e "s/^\(#${i}:\)\(.*\)/\2/" \ + -e "t print" \ + -e "d" \ + -e ":print" \ + ${0} > ${i} + +done + +echo "done." + +exit 0 + +#Makefile:PROGRAM = test_list +#Makefile:CFLAGS = -g +#Makefile:SRC = main.c isa.c gen_list.c rec_char.c rec_charptr.c rec_double.c rec_long.c rec_malloc_police.c malloc_police.c +#Makefile:OBJS = main.o isa.o gen_list.o rec_char.o rec_charptr.o rec_double.o rec_long.o rec_malloc_police.o malloc_police.o +#Makefile: +#Makefile:all : $(PROGRAM) +#Makefile: +#Makefile:$(PROGRAM) : $(OBJS) +#Makefile: gcc $(CFLAGS) -o $(PROGRAM) $(OBJS) +#Makefile: +#Makefile:clean: +#Makefile: rm -f $(OBJS) +#Makefile: +#Makefile:clobber: clean +#Makefile: rm -f $(PROGRAM) + + +#README:This list supports: +#README: copy construction, +#README: "virtual" destruction, +#README: streaming, +#README: comparison (equal comparison currently supported). +#README: +#README:With the "object oriented" nature of the list, nodes, and records; it is +#README:easily concievable that sorted lists and hash tables could be implemented +#README:with little extra effort. +#README: +#README: +#README:Philosophical point: +#README: +#README:I am sure there is room for improvement with this design. I am +#README:submitting this as a generic doubly linked list recomendation for IJB. +#README:Whatever the "collective" decides is fine with me. +#README: +#README:This implementation uses the "naming space" of gen_list, derived_rec, +#README:construct, copy construct, stream, destruct, etc... These are open to +#README:argument. I just used what was familiar to me and others in the "OO" +#README:community. If these need changed to be adopted ... "so be it". +#README: +#README: +#README:Implementation point: +#README: +#README:I assume this is too late for a "3.0" release. As I work for an +#README:airline, the whole past summer has been hectic (not to mention the +#README:last 4 months); but things have begun to settle down and I am +#README:following the IJB lists a bit more closely. And I would like to say +#README:"HOLY CRAP!" .. you guys have accompolished a lot! Way to go. +#README: +#README:But, the adoption of a better linked list package should at least be +#README:high on the next release list (if not the current one). If you choose +#README:this submission or not, so be it. But as a "data structure" man, I +#README:think IJB's linked lists need addressing. +#README: +#README: +#README:List/Enlist note: +#README: +#README:I have noticed the list.c file. If this generic list is adopted, I +#README:think all existing functionallity could be duplicated with the +#README:"copy_contruct", "equal", and "destruct" `virtuals'. This would also +#README:eliminate and/or enhance the other manually maintained lists in IJB. +#README: +#README: +#README:Debug note: +#README: +#README:Since the generic list defined a "stream" virtual, it could be programmed +#README:that the list could print itself whenever a FATAL error occurs. A user (or +#README:programmer) could read the list and hopefully determine the cause of the +#README:abend. +#README: +#README: +#README:Potential note: +#README: +#README:Think of the possibilites of a linked list, sorted list, and/or a hash +#README:list. Think of a request to a web site that has been referenced +#README:before. If a hash list keep track of all block requests and regexp +#README:change commands, then a site could be blocked and/or modified without +#README:ever consulting the actions lists again. What a speed up! +#README: +#README:What if some of the current lists were kept in sorted lists? Then a +#README:search for a particular record could be a binary search instead of a +#README:linear search. +#README: +#README:The actions file(s) and regexp files(s) could be inserted into the +#README:list from front to back order (or visa versa) and the processing would +#README:take place in actual file order (which is more natural); rather than +#README:in reverse order (as it is today). +#README: +#README: +#README:Thank you for you time and attention to this contribution. If it is +#README:"blessed" by the group, I am available to give time to integrating +#README:this into IJB. +#README: +#README:Let me know what y'all think about this package. +#README: +#README:-- +#README:Rodney + + +#addr_clean.pl:#!/usr/bin/perl +#addr_clean.pl: +#addr_clean.pl:## ********************************************************************* +#addr_clean.pl:## * +#addr_clean.pl:## * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#addr_clean.pl:## * +#addr_clean.pl:## * Purpose : Cleans addresses out of ./test_list and replaces +#addr_clean.pl:## * them with "english" replacements. +#addr_clean.pl:## * +#addr_clean.pl:## * Usage : ./test_list | ./addr_clean.pl +#addr_clean.pl:## * +#addr_clean.pl:## * Copyright : This program is free software; you can redistribute it +#addr_clean.pl:## * and/or modify it under the terms of the GNU General +#addr_clean.pl:## * Public License as published by the Free Software +#addr_clean.pl:## * Foundation; either version 2 of the License, or (at +#addr_clean.pl:## * your option) any later version. +#addr_clean.pl:## * +#addr_clean.pl:## * This program is distributed in the hope that it will +#addr_clean.pl:## * be useful, but WITHOUT ANY WARRANTY; without even the +#addr_clean.pl:## * implied warranty of MERCHANTABILITY or FITNESS FOR A +#addr_clean.pl:## * PARTICULAR PURPOSE. See the GNU General Public +#addr_clean.pl:## * License for more details. +#addr_clean.pl:## * +#addr_clean.pl:## * The GNU General Public License should be included with +#addr_clean.pl:## * this file. If not, you can view it at +#addr_clean.pl:## * http://www.gnu.org/copyleft/gpl.html +#addr_clean.pl:## * or write to the Free Software Foundation, Inc., 59 +#addr_clean.pl:## * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#addr_clean.pl:## * +#addr_clean.pl:## **********************************************************************/ +#addr_clean.pl: +#addr_clean.pl:use strict; +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl:my $nMaxList = 0; +#addr_clean.pl:my $nMaxNode = 0; +#addr_clean.pl:my $nMaxRec = 0; +#addr_clean.pl:my %aaTranslation; +#addr_clean.pl:my $strLine; +#addr_clean.pl: +#addr_clean.pl:while ( $strLine = ) +#addr_clean.pl:{ +#addr_clean.pl: if ( $strLine =~ m!(list.*=\s*)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $2; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "list" . ++ $nMaxList; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(list.*=\s*)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl: if ( $strLine =~ m!(node.*=\s*)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $2; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "node" . ++ $nMaxNode; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(node.*=\s*)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl: if ( $strLine =~ m!(rec.*=\s*(iter_. \.\.\. )?)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $3; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "rec" . ++ $nMaxRec; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(rec.*=\s*(iter_. \.\.\. )?)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl: ## Catch the copy constuct syntax +#addr_clean.pl: +#addr_clean.pl: if ( $strLine =~ m!(list.*=>\s*)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $2; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "list" . ++ $nMaxList; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(list.*=>\s*)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl: if ( $strLine =~ m!(node.*=>\s*)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $2; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "node" . ++ $nMaxNode; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(node.*=>\s*)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: +#addr_clean.pl: if ( $strLine =~ m!(rec.*=>\s*)(0x[0-9a-f]+)! ) +#addr_clean.pl: { +#addr_clean.pl: my $str1 = $1; +#addr_clean.pl: my $str2 = $2; +#addr_clean.pl: +#addr_clean.pl: if ( ! defined $aaTranslation{$str2} ) +#addr_clean.pl: { +#addr_clean.pl: $aaTranslation{$str2} = "rec" . ++ $nMaxRec; +#addr_clean.pl: } +#addr_clean.pl: $strLine =~ s!(rec.*=>\s*)(0x[0-9a-f]+)!$str1($aaTranslation{$str2})!; +#addr_clean.pl: } +#addr_clean.pl: +#addr_clean.pl: print( $strLine ); +#addr_clean.pl: +#addr_clean.pl:} + + +#gen_list.c:const char gen_list_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#gen_list.c: * +#gen_list.c: * Purpose : To create some functions to do generic doubly linked +#gen_list.c: * list management. +#gen_list.c: * +#gen_list.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#gen_list.c: * Privoxy team. http://www.privoxy.org/ +#gen_list.c: * +#gen_list.c: * This program is free software; you can redistribute it +#gen_list.c: * and/or modify it under the terms of the GNU General +#gen_list.c: * Public License as published by the Free Software +#gen_list.c: * Foundation; either version 2 of the License, or (at +#gen_list.c: * your option) any later version. +#gen_list.c: * +#gen_list.c: * This program is distributed in the hope that it will +#gen_list.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#gen_list.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#gen_list.c: * PARTICULAR PURPOSE. See the GNU General Public +#gen_list.c: * License for more details. +#gen_list.c: * +#gen_list.c: * The GNU General Public License should be included with +#gen_list.c: * this file. If not, you can view it at +#gen_list.c: * http://www.gnu.org/copyleft/gpl.html +#gen_list.c: * or write to the Free Software Foundation, Inc., 59 +#gen_list.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#gen_list.c: * +#gen_list.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#gen_list.c: * and edit IJB, correctly. +#gen_list.c: * +#gen_list.c: * Revisions : +#gen_list.c: * $Log: contrib.sh,v $ +#gen_list.c: * Revision 1.2 2002/03/24 13:25:43 swa +#gen_list.c: * name change related issues +#gen_list.c: * +#gen_list.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#gen_list.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#gen_list.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#gen_list.c: * contrib directory and I cannot upload a tarball ... it gets +#gen_list.c: * corrupted). This script will expand all files needed to create the +#gen_list.c: * linked list modules and an example program. Please see the README. +#gen_list.c: * Feed back is welcomed. Enjoy. +#gen_list.c: * +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c: +#gen_list.c: +#gen_list.c:#include +#gen_list.c:#include +#gen_list.c:#include +#gen_list.c:#include +#gen_list.c: +#gen_list.c:#include "gen_list.h" +#gen_list.c:#include "malloc_police.h" +#gen_list.c: +#gen_list.c:const char gen_list_h_rcs[] = GEN_LIST_H_VERSION; +#gen_list.c: +#gen_list.c: +#gen_list.c:/* This is used (for the moment) to cut out all the */ +#gen_list.c:/* extra verbige of the malloc_police module. After */ +#gen_list.c:/* all, we do not want to see construct/destruct of a */ +#gen_list.c:/* class that is supposed to be "in the background". */ +#gen_list.c: +#gen_list.c:/* But it could lead to broader usage. */ +#gen_list.c: +#gen_list.c:int list_is_quiet = 0; +#gen_list.c: +#gen_list.c: +#gen_list.c:#define CALL_VT_REC_COPY_CONSTRUCT(rec) (((rec_copy_construct)(rec)->vtable[ VT_REC_COPY_CONSTRUCT ])( rec )) +#gen_list.c:#define CALL_VT_REC_DESTRUCT(rec) (((rec_destruct)(rec)->vtable[ VT_REC_DESTRUCT ])( rec )) +#gen_list.c:#define CALL_VT_REC_STREAM(rec) (((rec_stream)(rec)->vtable[ VT_REC_STREAM ])( rec )) +#gen_list.c:#define CALL_VT_REC_EQUAL(rec,eq_rec) (((rec_equal)((rec)->vtable[ VT_REC_EQUAL ]))( rec, eq_rec )) +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_rec_construct +#gen_list.c: * +#gen_list.c: * Description : Called from a derived list record class ONLY. +#gen_list.c: * This function "construct" a classs: malloc_ed, +#gen_list.c: * vtable, isa, and sizeof_rec "attributes". +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The record. If NULL, malloc is called. +#gen_list.c: * 2 : isa (prounced "is a") ... type of the record. +#gen_list.c: * 3 : Memory image size of this record. +#gen_list.c: * ... : The "virtuals" for this record. NOTE: this list +#gen_list.c: * may increase if more "virtuals" are added. +#gen_list.c: * +#gen_list.c: * Returns : A pointer to the record (either the orig record +#gen_list.c: * or the malloc_ed copy. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_rec_construct( enum GEN_LIST_ISA isa, int sizeof_rec, const t_vtable _vtable ) +#gen_list.c:{ +#gen_list.c: struct gen_list_rec *this_rec = (struct gen_list_rec *)MALLOC( sizeof_rec ); +#gen_list.c: this_rec->vtable = _vtable; +#gen_list.c: this_rec->isa = isa; +#gen_list.c: this_rec->sizeof_rec = sizeof_rec; +#gen_list.c: +#gen_list.c: return( this_rec ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_rec_copy_construct +#gen_list.c: * +#gen_list.c: * Description : Makes a copy of the current existing record. All +#gen_list.c: * inherited properties (isa, vtable, malloc_ed, ...) +#gen_list.c: * are kept in tact after the copy. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : Existing record. +#gen_list.c: * 2 : New record. +#gen_list.c: * +#gen_list.c: * Returns : The newly constructed copy record. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_rec_copy_construct( const struct gen_list_rec *this_rec ) +#gen_list.c:{ +#gen_list.c: struct gen_list_rec *copy_rec = (struct gen_list_rec *)MALLOC( this_rec->sizeof_rec ); +#gen_list.c: copy_rec->vtable = this_rec->vtable; +#gen_list.c: copy_rec->isa = this_rec->isa; +#gen_list.c: copy_rec->sizeof_rec = this_rec->sizeof_rec; +#gen_list.c: +#gen_list.c: return( copy_rec ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_rec_destruct +#gen_list.c: * +#gen_list.c: * Description : Destruct the record. Including free_ing the memory +#gen_list.c: * if applicable. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The record. +#gen_list.c: * +#gen_list.c: * Returns : NULL +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_rec_destruct( struct gen_list_rec *this_rec ) +#gen_list.c:{ +#gen_list.c: FREE( this_rec ); +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_rec_stream +#gen_list.c: * +#gen_list.c: * Description : Displays all attributes on the STDOUT stream. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The record. +#gen_list.c: * +#gen_list.c: * Returns : The record. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:const struct gen_list_rec *gen_list_rec_stream( const struct gen_list_rec *this_rec ) +#gen_list.c:{ +#gen_list.c: LIST_SHOW( printf( "\t\tstream rec isa = %s\n", isa_ra[ this_rec->isa ] ) ); +#gen_list.c: return( this_rec ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_rec_equal +#gen_list.c: * +#gen_list.c: * Description : Compares two records to see if they are equal. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : A record. +#gen_list.c: * 2 : Another record. +#gen_list.c: * +#gen_list.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:int gen_list_rec_equal( const struct gen_list_rec *this_rec, const struct gen_list_rec *eq_rec ) +#gen_list.c:{ +#gen_list.c: if ( NULL == this_rec && NULL == eq_rec ) +#gen_list.c: { +#gen_list.c: return( 1 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( ( NULL == this_rec && NULL != eq_rec ) || +#gen_list.c: ( NULL != this_rec && NULL == eq_rec ) ) +#gen_list.c: { +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( ( this_rec->isa != eq_rec->isa ) || +#gen_list.c: ( this_rec->sizeof_rec != eq_rec->sizeof_rec ) ) +#gen_list.c: { +#gen_list.c: LIST_SHOW( printf( "INFORMATION: sorry, but comparing different rec types is unsupported at this time.\n" ) ); +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( 1 ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/* *********************************************************************/ +#gen_list.c: +#gen_list.c: +#gen_list.c:struct gen_list_node +#gen_list.c:{ +#gen_list.c: /* private: */ +#gen_list.c: struct gen_list_node *next; +#gen_list.c: struct gen_list_node *prev; +#gen_list.c: +#gen_list.c: struct gen_list_rec *rec; +#gen_list.c:}; +#gen_list.c:/* public: */ +#gen_list.c:extern struct gen_list_node * gen_list_node_construct( struct gen_list_rec *_rec ); +#gen_list.c:extern struct gen_list_node * gen_list_node_copy_construct( const struct gen_list_node *this_node ); +#gen_list.c:extern struct gen_list_node * gen_list_node_destruct( struct gen_list_node *this_node ); +#gen_list.c:extern struct gen_list_node * gen_list_node_remove( struct gen_list_node *this_node ); +#gen_list.c: +#gen_list.c:extern struct gen_list_node * gen_list_node_set_next( struct gen_list_node *this_node, struct gen_list_node *_next ); +#gen_list.c:extern struct gen_list_node * gen_list_node_set_prev( struct gen_list_node *this_node, struct gen_list_node *_prev ); +#gen_list.c: +#gen_list.c:extern struct gen_list_node * gen_list_node_get_next( const struct gen_list_node *this_node ); +#gen_list.c:extern struct gen_list_node * gen_list_node_get_prev( const struct gen_list_node *this_node ); +#gen_list.c: +#gen_list.c:extern const struct gen_list_rec * gen_list_node_stream( const struct gen_list_node *this_node ); +#gen_list.c:extern int gen_list_node_equal( const struct gen_list_node *this_node, const struct gen_list_node *eq_node ); +#gen_list.c: +#gen_list.c:/* struct/class COMPLETE */ +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_construct +#gen_list.c: * +#gen_list.c: * Description : Constructs a generic list node and sets its record. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. If NULL, malloc is called. +#gen_list.c: * 2 : The nodes record contents. +#gen_list.c: * +#gen_list.c: * Returns : A pointer to the node (either the orig node +#gen_list.c: * or the malloc_ed copy. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_construct( struct gen_list_rec *_rec ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *this_node = (struct gen_list_node *)MALLOC( sizeof( struct gen_list_node ) ); +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:\tconstruct new node\t\t= %p +#gen_list.c:\tconstruct new node->rec\t= %p\n\n", (const void *)this_node, (const void *)_rec ) ); +#gen_list.c: +#gen_list.c: this_node->rec = _rec; +#gen_list.c: this_node->next = NULL; +#gen_list.c: this_node->prev = NULL; +#gen_list.c: +#gen_list.c: return( this_node ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_copy_construct +#gen_list.c: * +#gen_list.c: * Description : Makes a copy of the current node. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : Existing node. +#gen_list.c: * 2 : New node. +#gen_list.c: * +#gen_list.c: * Returns : The newly constructed copy node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_copy_construct( const struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *copy_node = (struct gen_list_node *)MALLOC( sizeof( struct gen_list_node ) ); +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\tcopy construct new node = %p => %p\n\n", (const void *)this_node, (const void *)copy_node ) ); +#gen_list.c: +#gen_list.c: copy_node->rec = CALL_VT_REC_COPY_CONSTRUCT( this_node->rec ); +#gen_list.c: copy_node->next = NULL; +#gen_list.c: copy_node->prev = NULL; +#gen_list.c: +#gen_list.c: return( copy_node ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_destruct +#gen_list.c: * +#gen_list.c: * Description : Destruct the node. Including free_ing the memory +#gen_list.c: * if applicable. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * +#gen_list.c: * Returns : NULL +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_destruct( struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:\tdestruct this_node\t\t\t= %p +#gen_list.c:\tdestruct this_node->rec\t\t= %p +#gen_list.c:\tdestruct this_node->next\t= %p +#gen_list.c:\tdestruct this_node->prev\t= %p\n\n", (const void *)this_node, (const void *)this_node->rec, (const void *)this_node->next, (const void *)this_node->prev ) ); +#gen_list.c: +#gen_list.c: if ( NULL != this_node->rec ) +#gen_list.c: { +#gen_list.c: CALL_VT_REC_DESTRUCT( this_node->rec ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: FREE( this_node ); +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_remove +#gen_list.c: * +#gen_list.c: * Description : Destruct the node. Including free_ing the memory +#gen_list.c: * if applicable. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * +#gen_list.c: * Returns : NULL +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_remove( struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:\tremove this_node\t\t\t= %p +#gen_list.c:\tremove this_node->rec\t= %p +#gen_list.c:\tremove this_node->next\t= %p +#gen_list.c:\tremove this_node->prev\t= %p\n\n", (const void *)this_node, (const void *)this_node->rec, (const void *)this_node->next, (const void *)this_node->prev ) ); +#gen_list.c: +#gen_list.c: FREE( this_node ); +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_set_next +#gen_list.c: * +#gen_list.c: * Description : Sets the next node in the list series. Used mainly +#gen_list.c: * when constructing and adding/removing nodes. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * 2 : The next node. +#gen_list.c: * +#gen_list.c: * Returns : The node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_set_next( struct gen_list_node *this_node, struct gen_list_node *_next ) +#gen_list.c:{ +#gen_list.c: this_node->next = _next; +#gen_list.c: return( this_node ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_set_prev +#gen_list.c: * +#gen_list.c: * Description : Sets the previous node in the list series. Used mainly +#gen_list.c: * when constructing and adding/removing nodes. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * 2 : The previous node. +#gen_list.c: * +#gen_list.c: * Returns : The node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_set_prev( struct gen_list_node *this_node, struct gen_list_node *_prev ) +#gen_list.c:{ +#gen_list.c: this_node->prev = _prev; +#gen_list.c: return( this_node ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_get_next +#gen_list.c: * +#gen_list.c: * Description : Gets the next node in the list series. Used mainly +#gen_list.c: * for traversing a list. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * +#gen_list.c: * Returns : The next node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_get_next( const struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: return( this_node->next ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_get_prev +#gen_list.c: * +#gen_list.c: * Description : Gets the previous node in the list series. Used mainly +#gen_list.c: * for traversing a list. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The node. +#gen_list.c: * +#gen_list.c: * Returns : The previous node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_node *gen_list_node_get_prev( const struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: return( this_node->prev ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_stream +#gen_list.c: * +#gen_list.c: * Description : Displays all attributes on the STDOUT stream, +#gen_list.c: * including the contents of the nodes record. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The record. +#gen_list.c: * +#gen_list.c: * Returns : The result of streaming the nodes record. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:const struct gen_list_rec *gen_list_node_stream( const struct gen_list_node *this_node ) +#gen_list.c:{ +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:\tstream this_node\t\t\t= %p +#gen_list.c:\tstream this_node->rec\t= %p +#gen_list.c:\tstream this_node->next\t= %p +#gen_list.c:\tstream this_node->prev\t= %p\n\n", (const void *)this_node, (const void *)this_node->rec, (const void *)this_node->next, (const void *)this_node->prev ) ); +#gen_list.c: +#gen_list.c: return( CALL_VT_REC_STREAM( this_node->rec ) ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_node_equal +#gen_list.c: * +#gen_list.c: * Description : Compares two nodes (and their records) to see if they are equal. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : A node. +#gen_list.c: * 2 : Another node. +#gen_list.c: * +#gen_list.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:int gen_list_node_equal( const struct gen_list_node *this_node, const struct gen_list_node *eq_node ) +#gen_list.c:{ +#gen_list.c: if ( NULL == this_node && NULL == eq_node ) +#gen_list.c: { +#gen_list.c: return( 1 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( ( NULL == this_node && NULL != eq_node ) || +#gen_list.c: ( NULL != this_node && NULL == eq_node ) ) +#gen_list.c: { +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( gen_list_rec_equal( this_node->rec, eq_node->rec ) ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/* *********************************************************************/ +#gen_list.c: +#gen_list.c: +#gen_list.c:/* private: */ +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_insert_node +#gen_list.c: * +#gen_list.c: * Description : Inserts a node (not a record!) into a list. This +#gen_list.c: * is (currently) only used in copy construction. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : A new node to insert into the list. +#gen_list.c: * +#gen_list.c: * Returns : The node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:const struct gen_list_node *gen_list_insert_node( struct gen_list *this_list, struct gen_list_node *node ) +#gen_list.c:{ +#gen_list.c: gen_list_node_set_next( node, NULL ); +#gen_list.c: +#gen_list.c: if ( NULL == this_list->first ) +#gen_list.c: { +#gen_list.c: this_list->first = node; +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( NULL == this_list->last ) +#gen_list.c: { +#gen_list.c: this_list->last = node; +#gen_list.c: } +#gen_list.c: else +#gen_list.c: { +#gen_list.c: gen_list_node_set_next( this_list->last, node ); +#gen_list.c: gen_list_node_set_prev( node, this_list->last ); +#gen_list.c: this_list->last = node; +#gen_list.c: } +#gen_list.c: +#gen_list.c: this_list->last = node; +#gen_list.c: +#gen_list.c: return( node ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_construct +#gen_list.c: * +#gen_list.c: * Description : Constructs a generic list. +#gen_list.c: * +#gen_list.c: * Parameters : None +#gen_list.c: * +#gen_list.c: * Returns : A pointer to the list (either the orig list +#gen_list.c: * or the malloc_ed copy. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list *gen_list_construct() +#gen_list.c:{ +#gen_list.c: struct gen_list *this_list = (struct gen_list *)MALLOC( sizeof( struct gen_list ) ); +#gen_list.c: LIST_SHOW( printf( "construct new list = %p\n\n", (const void *)this_list ) ); +#gen_list.c: +#gen_list.c: this_list->first = NULL; +#gen_list.c: this_list->last = NULL; +#gen_list.c: +#gen_list.c: return( this_list ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_copy_construct +#gen_list.c: * +#gen_list.c: * Description : Makes a copy of the current list. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : Existing list. +#gen_list.c: * 2 : New list. +#gen_list.c: * +#gen_list.c: * Returns : The newly constructed copy list. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list *gen_list_copy_construct( const struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->first; +#gen_list.c: struct gen_list *copy_list = (struct gen_list *)MALLOC( sizeof( struct gen_list ) ); +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "copy construct new list = %p => %p\n\n", (const void *)this_list, (const void *)copy_list ) ); +#gen_list.c: +#gen_list.c: copy_list->first = NULL; +#gen_list.c: copy_list->last = NULL; +#gen_list.c: +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: struct gen_list_node *copy_node = gen_list_node_copy_construct( curr ); +#gen_list.c: gen_list_insert_node( copy_list, copy_node ); +#gen_list.c: curr = gen_list_node_get_next( curr ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( copy_list ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_destruct +#gen_list.c: * +#gen_list.c: * Description : Destruct the list. Including free_ing the memory +#gen_list.c: * if applicable. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * +#gen_list.c: * Returns : NULL +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list *gen_list_destruct( struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->first; +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:destruct this_list\t\t\t= %p +#gen_list.c:destruct this_list->first\t= %p +#gen_list.c:destruct this_list->last\t= %p\n\n", (const void *)this_list, (const void *)this_list->first, (const void *)this_list->last ) ); +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: gen_list_node_destruct( curr ); +#gen_list.c: curr = next; +#gen_list.c: } +#gen_list.c: +#gen_list.c: FREE( this_list ); +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_remove_all +#gen_list.c: * +#gen_list.c: * Description : Destruct the list. Including free_ing the memory +#gen_list.c: * if applicable. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * +#gen_list.c: * Returns : NULL +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list *gen_list_remove_all( struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->first; +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:remove_all this_list\t\t\t\t= %p +#gen_list.c:remove_all this_list->first\t= %p +#gen_list.c:remove_all this_list->last\t\t= %p\n\n", (const void *)this_list, (const void *)this_list->first, (const void *)this_list->last ) ); +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: gen_list_node_remove( curr ); +#gen_list.c: curr = next; +#gen_list.c: } +#gen_list.c: +#gen_list.c: this_list->first = this_list->last = NULL; +#gen_list.c: return( this_list ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_remove +#gen_list.c: * +#gen_list.c: * Description : A record from the list and return it if found. This +#gen_list.c: * will allow a futher call to rec_destruct. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : The record to be removed. +#gen_list.c: * +#gen_list.c: * Returns : rec if found and removed, NULL otherwise. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_remove( struct gen_list *this_list, struct gen_list_rec *rec ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->first; +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:remove this_list\t\t\t= %p +#gen_list.c:remove this_list->first\t= %p +#gen_list.c:remove this_list->last\t= %p +#gen_list.c:remove rec\t\t\t\t\t= %p\n\n", (const void *)this_list, (const void *)this_list->first, (const void *)this_list->last, rec ) ); +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: /* Grab these values before the are destroyed. */ +#gen_list.c: struct gen_list_node *prev = gen_list_node_get_prev( curr ); +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: +#gen_list.c: /* Access to rec, next, prev of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: if ( curr->rec == rec ) +#gen_list.c: { +#gen_list.c: /* Destruct the node, but not the record. */ +#gen_list.c: gen_list_node_remove( curr ); +#gen_list.c: +#gen_list.c: if ( NULL == prev ) +#gen_list.c: { +#gen_list.c: /************************************************/ +#gen_list.c: /* This is the first node in the list. */ +#gen_list.c: /* Picture: */ +#gen_list.c: /* [first] ---------------------> [next] */ +#gen_list.c: /* [NULL] <---------------------- [next->prev] */ +#gen_list.c: /************************************************/ +#gen_list.c: this_list->first = next; +#gen_list.c: +#gen_list.c: if ( NULL == next ) +#gen_list.c: { +#gen_list.c: /* Since next is NULL, then this is an empty list. */ +#gen_list.c: this_list->last = NULL; +#gen_list.c: } +#gen_list.c: else +#gen_list.c: { +#gen_list.c: /* Since next is not NULL, then there is another node to make first. */ +#gen_list.c: gen_list_node_set_prev( next, NULL ); +#gen_list.c: } +#gen_list.c: } +#gen_list.c: else if ( NULL == next ) +#gen_list.c: { +#gen_list.c: /************************************************/ +#gen_list.c: /* This is the last node in the list. */ +#gen_list.c: /* Picture: */ +#gen_list.c: /* [last] ----------------------> [prev] */ +#gen_list.c: /* [prev->next] ----------------> [NULL] */ +#gen_list.c: /************************************************/ +#gen_list.c: this_list->last = prev; +#gen_list.c: +#gen_list.c: if ( NULL == prev ) +#gen_list.c: { +#gen_list.c: /* Since prev is NULL, then this is an empty list. */ +#gen_list.c: this_list->first = NULL; +#gen_list.c: } +#gen_list.c: else +#gen_list.c: { +#gen_list.c: /* Since prev is NULL, then there is another node to make last. */ +#gen_list.c: gen_list_node_set_next( prev, NULL ); +#gen_list.c: } +#gen_list.c: } +#gen_list.c: else +#gen_list.c: { +#gen_list.c: /************************************************/ +#gen_list.c: /* This is a middle node in the list. */ +#gen_list.c: /* Picture: */ +#gen_list.c: /* [prev->next] ----------------> [next] */ +#gen_list.c: /* [removing middle] */ +#gen_list.c: /* [prev] <---------------------- [next->prev] */ +#gen_list.c: /************************************************/ +#gen_list.c: gen_list_node_set_next( prev, next ); +#gen_list.c: gen_list_node_set_prev( next, prev ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( rec ); +#gen_list.c: } +#gen_list.c: curr = next; +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_get_first +#gen_list.c: * +#gen_list.c: * Description : Gets the first record in the list. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * +#gen_list.c: * Returns : The first node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_get_first( const struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: if ( NULL == this_list->first ) +#gen_list.c: { +#gen_list.c: return( NULL ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: return( this_list->first->rec ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_get_last +#gen_list.c: * +#gen_list.c: * Description : Gets the last record in the list. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * +#gen_list.c: * Returns : The last node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_get_last( const struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: if ( NULL == this_list->last ) +#gen_list.c: { +#gen_list.c: return( NULL ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: return( this_list->last->rec ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_insert +#gen_list.c: * +#gen_list.c: * Description : Inserts a record into the list. This is the +#gen_list.c: * primary API interface for inserting a record. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : A new record to insert into the list. +#gen_list.c: * +#gen_list.c: * Returns : The node. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:const struct gen_list_node *gen_list_insert( struct gen_list *this_list, struct gen_list_rec *_rec ) +#gen_list.c:{ +#gen_list.c: return( gen_list_insert_node( this_list, gen_list_node_construct( _rec ) ) ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_stream +#gen_list.c: * +#gen_list.c: * Description : Displays all attributes on the STDOUT stream, +#gen_list.c: * including the contents of the nodes. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * +#gen_list.c: * Returns : The list. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:const struct gen_list *gen_list_stream( const struct gen_list *this_list ) +#gen_list.c:{ +#gen_list.c: const struct gen_list_node *curr = this_list->first; +#gen_list.c: +#gen_list.c: LIST_SHOW( printf( "\ +#gen_list.c:stream this_list\t\t\t= %p +#gen_list.c:stream this_list->first\t= %p +#gen_list.c:stream this_list->last\t= %p\n\n", (const void *)this_list, (const void *)this_list->first, (const void *)this_list->last ) ); +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: gen_list_node_stream( curr ); +#gen_list.c: curr = next; +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( this_list ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_equal +#gen_list.c: * +#gen_list.c: * Description : Compares two lists (and their nodes) to see if they are equal. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : A list. +#gen_list.c: * 2 : Another list. +#gen_list.c: * +#gen_list.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:int gen_list_equal( const struct gen_list *this_list, const struct gen_list *eq_list ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *c1 = this_list->first; +#gen_list.c: struct gen_list_node *c2 = eq_list->first; +#gen_list.c: int eq = 1; +#gen_list.c: +#gen_list.c: if ( ( NULL == c1 && NULL != c2 ) || ( NULL != c1 && NULL == c2 ) ) +#gen_list.c: { +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: while ( ( eq ) && ( NULL != c1 ) && ( NULL != c2 ) ) +#gen_list.c: { +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: eq = CALL_VT_REC_EQUAL( c1->rec, c2->rec ); +#gen_list.c: if ( NULL != c1 ) +#gen_list.c: { +#gen_list.c: c1 = gen_list_node_get_next( c1 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( NULL != c2 ) +#gen_list.c: { +#gen_list.c: c2 = gen_list_node_get_next( c2 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( NULL == c1 && NULL == c2 ) +#gen_list.c: { +#gen_list.c: return( 1 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( eq ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_find +#gen_list.c: * +#gen_list.c: * Description : Find a record that matches the one passed to this +#gen_list.c: * function. +#gen_list.c: * NOTE: this function receives a RECORD and not a NODE. +#gen_list.c: * Some implementation issues might be easier addressed +#gen_list.c: * if a node was passed ... but for the time being, I +#gen_list.c: * would like to keep the use/programmer isolated from +#gen_list.c: * the node structure/class. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : The record to find. +#gen_list.c: * +#gen_list.c: * Returns : NULL => none found, anything else is a pointer to the record. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_find( const struct gen_list *this_list, struct gen_list_rec *rec ) +#gen_list.c:{ +#gen_list.c: const struct gen_list_node *curr = this_list->first; +#gen_list.c: int eq = 0; +#gen_list.c: +#gen_list.c: if ( NULL == curr && NULL == rec ) +#gen_list.c: { +#gen_list.c: return( (struct gen_list_rec *)1 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( ( NULL == curr && NULL != rec ) || +#gen_list.c: ( NULL != curr && NULL == rec ) ) +#gen_list.c: { +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: if ( curr->rec->isa != rec->isa ) +#gen_list.c: { +#gen_list.c: LIST_SHOW( printf( "INFORMATION: sorry, but comparing different list types is unsupported at this time.\n" ) ); +#gen_list.c: return( 0 ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: if ( NULL == curr ) +#gen_list.c: { +#gen_list.c: return( NULL ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: +#gen_list.c: while ( ( !eq ) && ( NULL != curr ) ) +#gen_list.c: { +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: +#gen_list.c: eq = CALL_VT_REC_EQUAL( curr->rec, rec ); +#gen_list.c: +#gen_list.c: if ( eq ) +#gen_list.c: { +#gen_list.c: return( curr->rec ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: curr = next; +#gen_list.c: +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_iterate +#gen_list.c: * +#gen_list.c: * Description : Pass over the list, calling "iter" for every record. +#gen_list.c: * If the "iter" function returns a non-NULL value, +#gen_list.c: * return it and stop iterating. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : The iterator function. +#gen_list.c: * +#gen_list.c: * Returns : Whatever the iterator does, or NULL if the entire +#gen_list.c: * list was processed. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_iterate( struct gen_list *this_list, rec_iterate iter ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->first; +#gen_list.c: +#gen_list.c: if ( NULL == curr ) +#gen_list.c: { +#gen_list.c: return( NULL ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: struct gen_list_node *next = gen_list_node_get_next( curr ); +#gen_list.c: struct gen_list_rec *r = iter( curr->rec ); +#gen_list.c: +#gen_list.c: if ( NULL != r ) +#gen_list.c: { +#gen_list.c: return( r ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: curr = next; +#gen_list.c: +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} +#gen_list.c: +#gen_list.c: +#gen_list.c:/********************************************************************* +#gen_list.c: * +#gen_list.c: * Function : gen_list_iterate +#gen_list.c: * +#gen_list.c: * Description : Pass over the list (in reverse order), calling "iter" +#gen_list.c: * for every record. If the "iter" function returns +#gen_list.c: * a non-NULL value, return it and stop iterating. +#gen_list.c: * +#gen_list.c: * Parameters : +#gen_list.c: * 1 : The list. +#gen_list.c: * 2 : The iterator function. +#gen_list.c: * +#gen_list.c: * Returns : Whatever the iterator does, or NULL if the entire +#gen_list.c: * list was processed. +#gen_list.c: * +#gen_list.c: *********************************************************************/ +#gen_list.c:struct gen_list_rec *gen_list_iterate_reverse( struct gen_list *this_list, rec_iterate iter ) +#gen_list.c:{ +#gen_list.c: struct gen_list_node *curr = this_list->last; +#gen_list.c: +#gen_list.c: if ( NULL == curr ) +#gen_list.c: { +#gen_list.c: return( NULL ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: while ( NULL != curr ) +#gen_list.c: { +#gen_list.c: /* Access to rec of gen_list_node is allowed since it is private to gen_list */ +#gen_list.c: struct gen_list_node *prev = gen_list_node_get_prev( curr ); +#gen_list.c: struct gen_list_rec *r = iter( curr->rec ); +#gen_list.c: +#gen_list.c: if ( NULL != r ) +#gen_list.c: { +#gen_list.c: return( r ); +#gen_list.c: } +#gen_list.c: +#gen_list.c: curr = prev; +#gen_list.c: +#gen_list.c: } +#gen_list.c: +#gen_list.c: return( NULL ); +#gen_list.c: +#gen_list.c:} + + +#gen_list.h:#ifndef GEN_LIST_H_INCLUDED +#gen_list.h:#define GEN_LIST_H_INCLUDED +#gen_list.h:#define GEN_LIST_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#gen_list.h:/********************************************************************* +#gen_list.h: * +#gen_list.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#gen_list.h: * +#gen_list.h: * Purpose : To create some functions to do generic doubly linked +#gen_list.h: * list management. +#gen_list.h: * +#gen_list.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#gen_list.h: * Privoxy team. http://www.privoxy.org/ +#gen_list.h: * +#gen_list.h: * This program is free software; you can redistribute it +#gen_list.h: * and/or modify it under the terms of the GNU General +#gen_list.h: * Public License as published by the Free Software +#gen_list.h: * Foundation; either version 2 of the License, or (at +#gen_list.h: * your option) any later version. +#gen_list.h: * +#gen_list.h: * This program is distributed in the hope that it will +#gen_list.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#gen_list.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#gen_list.h: * PARTICULAR PURPOSE. See the GNU General Public +#gen_list.h: * License for more details. +#gen_list.h: * +#gen_list.h: * The GNU General Public License should be included with +#gen_list.h: * this file. If not, you can view it at +#gen_list.h: * http://www.gnu.org/copyleft/gpl.html +#gen_list.h: * or write to the Free Software Foundation, Inc., 59 +#gen_list.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#gen_list.h: * +#gen_list.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#gen_list.h: * and edit IJB, correctly. +#gen_list.h: * +#gen_list.h: * Revisions : +#gen_list.h: * $Log: contrib.sh,v $ +#gen_list.h: * Revision 1.2 2002/03/24 13:25:43 swa +#gen_list.h: * name change related issues +#gen_list.h: * +#gen_list.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#gen_list.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#gen_list.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#gen_list.h: * contrib directory and I cannot upload a tarball ... it gets +#gen_list.h: * corrupted). This script will expand all files needed to create the +#gen_list.h: * linked list modules and an example program. Please see the README. +#gen_list.h: * Feed back is welcomed. Enjoy. +#gen_list.h: * +#gen_list.h: * +#gen_list.h: *********************************************************************/ +#gen_list.h: +#gen_list.h: +#gen_list.h:#ifdef __cplusplus +#gen_list.h:extern "C" { +#gen_list.h:#endif +#gen_list.h: +#gen_list.h:#include "isa.h" +#gen_list.h: +#gen_list.h: +#gen_list.h:extern int list_is_quiet; +#gen_list.h: +#gen_list.h:#define LIST_SHOW(stmt) if ( ! list_is_quiet ) { stmt; } +#gen_list.h: +#gen_list.h: +#gen_list.h:struct gen_list_rec; +#gen_list.h:typedef struct gen_list_rec * (*rec_copy_construct)( struct gen_list_rec *copy_rec ); +#gen_list.h:typedef struct gen_list_rec * (*rec_destruct)( struct gen_list_rec *this_rec ); +#gen_list.h:typedef const struct gen_list_rec * (*rec_stream)( const struct gen_list_rec *this_rec ); +#gen_list.h:typedef int (*rec_equal)( const struct gen_list_rec *this_rec, const struct gen_list_rec *eq_rec ); +#gen_list.h:typedef struct gen_list_rec * (*rec_iterate)( struct gen_list_rec *this_rec ); +#gen_list.h: +#gen_list.h:typedef void * (*rec_method)( void *this_rec, ... ); +#gen_list.h: +#gen_list.h: +#gen_list.h:enum VT_ENTRIES +#gen_list.h:{ +#gen_list.h: VT_REC_COPY_CONSTRUCT, +#gen_list.h: VT_REC_DESTRUCT, +#gen_list.h: VT_REC_STREAM, +#gen_list.h: VT_REC_EQUAL, +#gen_list.h: VT_REC_MAX +#gen_list.h:}; +#gen_list.h: +#gen_list.h: +#gen_list.h:typedef const rec_method *t_vtable; +#gen_list.h: +#gen_list.h: +#gen_list.h:struct gen_list_rec +#gen_list.h:{ +#gen_list.h: /* private: */ +#gen_list.h: t_vtable vtable; +#gen_list.h: enum GEN_LIST_ISA isa; +#gen_list.h: int sizeof_rec; +#gen_list.h: /* contents HERE */ +#gen_list.h:}; +#gen_list.h:/* public: */ +#gen_list.h:extern struct gen_list_rec * gen_list_rec_construct( enum GEN_LIST_ISA isa, int sizeof_rec, const t_vtable _vtable ); +#gen_list.h:extern struct gen_list_rec * gen_list_rec_copy_construct( const struct gen_list_rec *this_rec ); +#gen_list.h:extern struct gen_list_rec * gen_list_rec_destruct( struct gen_list_rec *this_rec ); +#gen_list.h:extern const struct gen_list_rec * gen_list_rec_stream( const struct gen_list_rec *this_rec ); +#gen_list.h:extern int gen_list_rec_equal( const struct gen_list_rec *this_rec, const struct gen_list_rec *eq_rec ); +#gen_list.h: +#gen_list.h:/* struct/class COMPLETE */ +#gen_list.h: +#gen_list.h: +#gen_list.h:/* *********************************************************************/ +#gen_list.h: +#gen_list.h:/* private: to gen_list */ +#gen_list.h:struct gen_list_node; +#gen_list.h: +#gen_list.h: +#gen_list.h:struct gen_list +#gen_list.h:{ +#gen_list.h: /* private: */ +#gen_list.h: struct gen_list_node *first; +#gen_list.h: struct gen_list_node *last; +#gen_list.h:}; +#gen_list.h:/* gen_list_insert_node */ +#gen_list.h: +#gen_list.h:/* public: */ +#gen_list.h:extern struct gen_list * gen_list_construct(); +#gen_list.h:extern struct gen_list * gen_list_copy_construct( const struct gen_list *this_list ); +#gen_list.h:extern struct gen_list * gen_list_destruct( struct gen_list *this_list ); +#gen_list.h:extern struct gen_list * gen_list_remove_all( struct gen_list *this_list ); +#gen_list.h:extern struct gen_list_rec * gen_list_remove( struct gen_list *this_list, struct gen_list_rec *_rec ); +#gen_list.h:extern struct gen_list_rec * gen_list_get_first( const struct gen_list *this_list ); +#gen_list.h:extern struct gen_list_rec * gen_list_get_last( const struct gen_list *this_list ); +#gen_list.h:extern const struct gen_list_node * gen_list_insert( struct gen_list *this_list, struct gen_list_rec *_rec ); +#gen_list.h:extern const struct gen_list * gen_list_stream( const struct gen_list *this_list ); +#gen_list.h:extern int gen_list_equal( const struct gen_list *this_list, const struct gen_list *eq_list ); +#gen_list.h:extern struct gen_list_rec * gen_list_find( const struct gen_list *this_list, struct gen_list_rec *rec ); +#gen_list.h:extern struct gen_list_rec * gen_list_iterate( struct gen_list *this_list, rec_iterate iter ); +#gen_list.h:/* struct/class COMPLETE */ +#gen_list.h: +#gen_list.h: +#gen_list.h:#ifdef __cplusplus +#gen_list.h:} /* extern "C" */ +#gen_list.h:#endif +#gen_list.h: +#gen_list.h:#endif /* ndef GEN_LIST_H_INCLUDED */ +#gen_list.h: +#gen_list.h:/* +#gen_list.h: Local Variables: +#gen_list.h: tab-width: 3 +#gen_list.h: end: +#gen_list.h:*/ + + +#isa.c:const char isa_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#isa.c:/********************************************************************* +#isa.c: * +#isa.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#isa.c: * +#isa.c: * Purpose : Pronounced "is a". To create "english" translations +#isa.c: * for all linked "classes". +#isa.c: * +#isa.c: * NOTE: this header file must appear once and only once +#isa.c: * per project. +#isa.c: * +#isa.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#isa.c: * Privoxy team. http://www.privoxy.org/ +#isa.c: * +#isa.c: * This program is free software; you can redistribute it +#isa.c: * and/or modify it under the terms of the GNU General +#isa.c: * Public License as published by the Free Software +#isa.c: * Foundation; either version 2 of the License, or (at +#isa.c: * your option) any later version. +#isa.c: * +#isa.c: * This program is distributed in the hope that it will +#isa.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#isa.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#isa.c: * PARTICULAR PURPOSE. See the GNU General Public +#isa.c: * License for more details. +#isa.c: * +#isa.c: * The GNU General Public License should be included with +#isa.c: * this file. If not, you can view it at +#isa.c: * http://www.gnu.org/copyleft/gpl.html +#isa.c: * or write to the Free Software Foundation, Inc., 59 +#isa.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#isa.c: * +#isa.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#isa.c: * and edit IJB, correctly. +#isa.c: * +#isa.c: * Revisions : +#isa.c: * $Log: contrib.sh,v $ +#isa.c: * Revision 1.2 2002/03/24 13:25:43 swa +#isa.c: * name change related issues +#isa.c: * +#isa.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#isa.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#isa.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#isa.c: * contrib directory and I cannot upload a tarball ... it gets +#isa.c: * corrupted). This script will expand all files needed to create the +#isa.c: * linked list modules and an example program. Please see the README. +#isa.c: * Feed back is welcomed. Enjoy. +#isa.c: * +#isa.c: * Revision 1.1 2001/11/30 21:55:51 rodney +#isa.c: * Initial revision +#isa.c: * +#isa.c: * +#isa.c: *********************************************************************/ +#isa.c: +#isa.c: +#isa.c:#include +#isa.c:#include +#isa.c:#include +#isa.c:#include +#isa.c: +#isa.c:#include "gen_list.h" +#isa.c:#include "isa.h" +#isa.c: +#isa.c:const char isa_h_rcs[] = ISA_H_VERSION; +#isa.c: +#isa.c: +#isa.c:/* Pronounce "ra" phonectically and you get "array", which this variable is. */ +#isa.c:char *isa_ra[] = +#isa.c:{ +#isa.c: "GEN_LIST_REC", +#isa.c: "REC_MALLOC_POLICE", +#isa.c: "REC_CHAR", +#isa.c: "REC_CHARPTR", +#isa.c: "REC_DOUBLE", +#isa.c: "REC_LONG", +#isa.c: NULL +#isa.c:}; + + +#isa.h:#ifndef ISA_H_INCLUDED +#isa.h:#define ISA_H_INCLUDED +#isa.h:#define ISA_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#isa.h:/********************************************************************* +#isa.h: * +#isa.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#isa.h: * +#isa.h: * Purpose : Pronounced "is a". To create "english" translations +#isa.h: * for all linked "classes". +#isa.h: * +#isa.h: * NOTE: this header file must appear once and only once +#isa.h: * per project. +#isa.h: * +#isa.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#isa.h: * Privoxy team. http://www.privoxy.org/ +#isa.h: * +#isa.h: * This program is free software; you can redistribute it +#isa.h: * and/or modify it under the terms of the GNU General +#isa.h: * Public License as published by the Free Software +#isa.h: * Foundation; either version 2 of the License, or (at +#isa.h: * your option) any later version. +#isa.h: * +#isa.h: * This program is distributed in the hope that it will +#isa.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#isa.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#isa.h: * PARTICULAR PURPOSE. See the GNU General Public +#isa.h: * License for more details. +#isa.h: * +#isa.h: * The GNU General Public License should be included with +#isa.h: * this file. If not, you can view it at +#isa.h: * http://www.gnu.org/copyleft/gpl.html +#isa.h: * or write to the Free Software Foundation, Inc., 59 +#isa.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#isa.h: * +#isa.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#isa.h: * and edit IJB, correctly. +#isa.h: * +#isa.h: * Revisions : +#isa.h: * $Log: contrib.sh,v $ +#isa.h: * Revision 1.2 2002/03/24 13:25:43 swa +#isa.h: * name change related issues +#isa.h: * +#isa.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#isa.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#isa.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#isa.h: * contrib directory and I cannot upload a tarball ... it gets +#isa.h: * corrupted). This script will expand all files needed to create the +#isa.h: * linked list modules and an example program. Please see the README. +#isa.h: * Feed back is welcomed. Enjoy. +#isa.h: * +#isa.h: * +#isa.h: *********************************************************************/ +#isa.h: +#isa.h: +#isa.h:#ifdef __cplusplus +#isa.h:extern "C" { +#isa.h:#endif +#isa.h: +#isa.h: +#isa.h:enum GEN_LIST_ISA +#isa.h:{ +#isa.h: ISA_GEN_LIST_REC, +#isa.h: ISA_MALLOC_POLICE, +#isa.h: ISA_CHAR, +#isa.h: ISA_CHARPTR, +#isa.h: ISA_DOUBLE, +#isa.h: ISA_LONG, +#isa.h: ISA_MAX +#isa.h:}; +#isa.h: +#isa.h: +#isa.h:/* Pronounce "ra" phonectically and you get "array", which this variable is. */ +#isa.h:extern char *isa_ra[]; +#isa.h: +#isa.h: +#isa.h:#ifdef __cplusplus +#isa.h:} /* extern "C" */ +#isa.h:#endif +#isa.h: +#isa.h:#endif /* ndef ISA_H_INCLUDED */ +#isa.h: +#isa.h:/* +#isa.h: Local Variables: +#isa.h: tab-width: 3 +#isa.h: end: +#isa.h:*/ + + +#main.c:const char main_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#main.c:/********************************************************************* +#main.c: * +#main.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#main.c: * +#main.c: * Purpose : To test "generic list" creation and manipulation. +#main.c: * +#main.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#main.c: * Privoxy team. http://www.privoxy.org/ +#main.c: * +#main.c: * This program is free software; you can redistribute it +#main.c: * and/or modify it under the terms of the GNU General +#main.c: * Public License as published by the Free Software +#main.c: * Foundation; either version 2 of the License, or (at +#main.c: * your option) any later version. +#main.c: * +#main.c: * This program is distributed in the hope that it will +#main.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#main.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#main.c: * PARTICULAR PURPOSE. See the GNU General Public +#main.c: * License for more details. +#main.c: * +#main.c: * The GNU General Public License should be included with +#main.c: * this file. If not, you can view it at +#main.c: * http://www.gnu.org/copyleft/gpl.html +#main.c: * or write to the Free Software Foundation, Inc., 59 +#main.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#main.c: * +#main.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#main.c: * and edit IJB, correctly. +#main.c: * +#main.c: * Note : This output assumes (per IJB standards) that tabs are +#main.c: * set to 3 characters. If you run this in a terminal, +#main.c: * you may want to run this as so: +#main.c: * >./test_list 2>&1 | expand -t3 | ./addr_clean.pl +#main.c: * This will expand the tab to 3 columns and then replace +#main.c: * "0x" style addresses with more human readable ones. +#main.c: * +#main.c: * Revisions : +#main.c: * $Log: contrib.sh,v $ +#main.c: * Revision 1.2 2002/03/24 13:25:43 swa +#main.c: * name change related issues +#main.c: * +#main.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#main.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#main.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#main.c: * contrib directory and I cannot upload a tarball ... it gets +#main.c: * corrupted). This script will expand all files needed to create the +#main.c: * linked list modules and an example program. Please see the README. +#main.c: * Feed back is welcomed. Enjoy. +#main.c: * +#main.c: * +#main.c: *********************************************************************/ +#main.c: +#main.c: +#main.c:#include +#main.c:#include +#main.c:#include +#main.c:#include +#main.c: +#main.c:#include "gen_list.h" +#main.c:#include "rec_char.h" +#main.c:#include "rec_charptr.h" +#main.c:#include "rec_double.h" +#main.c:#include "rec_long.h" +#main.c:#include "malloc_police.h" +#main.c: +#main.c: +#main.c:extern const char isa_rcs[]; +#main.c:extern const char isa_h_rcs[]; +#main.c:extern const char gen_list_rcs[]; +#main.c:extern const char gen_list_h_rcs[]; +#main.c:extern const char malloc_police_rcs[]; +#main.c:extern const char malloc_police_h_rcs[]; +#main.c:extern const char rec_charptr_rcs[]; +#main.c:extern const char rec_charptr_h_rcs[]; +#main.c:extern const char rec_long_rcs[]; +#main.c:extern const char rec_long_h_rcs[]; +#main.c:extern const char rec_double_rcs[]; +#main.c:extern const char rec_double_h_rcs[]; +#main.c:extern const char rec_char_rcs[]; +#main.c:extern const char rec_char_h_rcs[]; +#main.c:extern const char rec_malloc_police_rcs[]; +#main.c:extern const char rec_malloc_police_h_rcs[]; +#main.c:extern const char main_rcs[]; +#main.c: +#main.c: +#main.c:/********************************************************************* +#main.c: * +#main.c: * Function : my_custom_charptr_iterator_1 +#main.c: * +#main.c: * Description : This funtion is called once for every record in a +#main.c: * list. Or at least until we return non-NULL. BTW, +#main.c: * this function always returns NULL, thus it will +#main.c: * iterate over the entire list. +#main.c: * +#main.c: * Parameters : +#main.c: * 1 : The record. +#main.c: * +#main.c: * Returns : NULL +#main.c: * +#main.c: *********************************************************************/ +#main.c:struct derived_rec_charptr *my_custom_charptr_iterator_1( struct derived_rec_charptr *this_rec ) +#main.c:{ +#main.c: printf( "\ +#main.c:\t\tcharptr iterator_1 this_rec\t\t\t\t= iter_1 ... %p +#main.c:\t\tcharptr iterator_1 this_rec->contents\t= iter_1 ... %s\n\n", (const void *)this_rec, this_rec->contents ); +#main.c: return( NULL ); +#main.c: +#main.c:} +#main.c: +#main.c: +#main.c:/********************************************************************* +#main.c: * +#main.c: * Function : my_custom_charptr_iterator_2 +#main.c: * +#main.c: * Description : This funtion is called once for every record in a +#main.c: * list. Or at least until we return non-NULL. BTW, +#main.c: * this function always returns non-NULL, thus it will +#main.c: * iterate over only 1 record. +#main.c: * +#main.c: * Parameters : +#main.c: * 1 : The record. +#main.c: * +#main.c: * Returns : The record. +#main.c: * +#main.c: *********************************************************************/ +#main.c:struct derived_rec_charptr *my_custom_charptr_iterator_2( struct derived_rec_charptr *this_rec ) +#main.c:{ +#main.c: printf( "\ +#main.c:\t\tcharptr iterator_1 this_rec\t\t\t\t= iter_2 ... %p +#main.c:\t\tcharptr iterator_1 this_rec->contents\t= iter_2 ... %s\n\n", (const void *)this_rec, this_rec->contents ); +#main.c: return( this_rec ); +#main.c: +#main.c:} +#main.c: +#main.c: +#main.c:/********************************************************************* +#main.c: * +#main.c: * Function : main +#main.c: * +#main.c: * Description : Test the doubly linked list as it is so far. +#main.c: * +#main.c: * Parameters : None +#main.c: * +#main.c: * Returns : N/A +#main.c: * +#main.c: *********************************************************************/ +#main.c:int main( int argc, const char **argv ) +#main.c:{ +#main.c: struct gen_list *lcharptr; +#main.c: struct gen_list *llong; +#main.c: struct gen_list *ldouble; +#main.c: struct gen_list *lchar; +#main.c: +#main.c: struct gen_list *lcharptr_c; +#main.c: struct gen_list *llong_c; +#main.c: struct gen_list *ldouble_c; +#main.c: struct gen_list *lchar_c; +#main.c: +#main.c: struct gen_list_rec *f_rec; +#main.c: +#main.c: struct gen_list *no_own_list; +#main.c: struct gen_list_rec *no_own_rec1; +#main.c: struct gen_list_rec *no_own_rec2; +#main.c: struct gen_list_rec *no_own_rec3; +#main.c: +#main.c: printf( "\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n\n", +#main.c: gen_list_rcs, +#main.c: gen_list_h_rcs, +#main.c: isa_rcs, +#main.c: isa_h_rcs, +#main.c: malloc_police_rcs, +#main.c: malloc_police_h_rcs, +#main.c: rec_char_rcs, +#main.c: rec_char_h_rcs, +#main.c: rec_charptr_rcs, +#main.c: rec_charptr_h_rcs, +#main.c: rec_long_rcs, +#main.c: rec_long_h_rcs, +#main.c: rec_double_rcs, +#main.c: rec_double_h_rcs, +#main.c: rec_malloc_police_rcs, +#main.c: rec_malloc_police_h_rcs, +#main.c: main_rcs ); +#main.c: +#main.c: +#main.c: /* Force a memory leak to test the strdup/malloc/free police. */ +#main.c: /* NOTE: this should trigger the alphanum check of allocated memory. */ +#main.c: strcpy( MALLOC( 60 ), "Force a memory leak to test the strdup/malloc/free police." ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_construct to constuct a charptr list -- **\n" ); +#main.c: lcharptr = gen_list_construct(); +#main.c: +#main.c: gen_list_insert( lcharptr, (struct gen_list_rec *)derived_rec_charptr_construct( "Rodney Stromlund" ) ); +#main.c: gen_list_insert( lcharptr, f_rec = (struct gen_list_rec *)derived_rec_charptr_construct( "RJS" ) ); +#main.c: gen_list_insert( lcharptr, (struct gen_list_rec *)derived_rec_charptr_construct( "jammin!" ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to test streaming a charptr list -- **\n" ); +#main.c: gen_list_stream( lcharptr ); +#main.c: +#main.c: printf( "** -- Calling gen_list_find to find the 2nd charptr record -- **\n" ); +#main.c: f_rec = gen_list_find( lcharptr, f_rec ); +#main.c: printf( "Found rec = %p\n", f_rec ); +#main.c: derived_rec_charptr_stream( (const struct derived_rec_charptr *)f_rec ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_copy_construct to test copy construct the charptr list -- **\n" ); +#main.c: lcharptr_c = gen_list_copy_construct( lcharptr ); +#main.c: +#main.c: printf( "** -- Calling gen_list_equal to see if the copied list is the same as the orig -- ** +#main.c:** -- NOTE: they will NOT be because the charptr copy constructor changes the string contents -- **\n" ); +#main.c: printf( "Are these 2 equal? => %d\n\n", gen_list_equal( lcharptr, lcharptr_c ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to stream a copied charptr list -- **\n" ); +#main.c: gen_list_stream( lcharptr_c ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_construct to constuct a long list -- **\n" ); +#main.c: llong = gen_list_construct(); +#main.c: +#main.c: +#main.c: gen_list_insert( llong, no_own_rec1 = (struct gen_list_rec *)derived_rec_long_construct( 1 ) ); +#main.c: gen_list_insert( llong, no_own_rec2 = (struct gen_list_rec *)derived_rec_long_construct( 100 ) ); +#main.c: gen_list_insert( llong, no_own_rec3 = (struct gen_list_rec *)derived_rec_long_construct( 200 ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to test streaming a long list -- **\n" ); +#main.c: gen_list_stream( llong ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_copy_construct to test copy construct the long list -- **\n" ); +#main.c: llong_c = gen_list_copy_construct( llong ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to stream a copied long list -- **\n" ); +#main.c: gen_list_stream( llong_c ); +#main.c: +#main.c: printf( "** -- Calling gen_list_construct to test a no-owner long list -- **\n" ); +#main.c: no_own_list = gen_list_construct(); +#main.c: gen_list_insert( no_own_list, no_own_rec1 ); +#main.c: gen_list_insert( no_own_list, no_own_rec2 ); +#main.c: gen_list_insert( no_own_list, no_own_rec3 ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to stream a no-owner list -- **\n" ); +#main.c: gen_list_stream( no_own_list ); +#main.c: +#main.c: printf( "** -- Calling gen_list_equal to see if list and no-owner list are equal NOTE: they should be. -- **\n" ); +#main.c: printf( "Are these 2 equal? => %d\n\n", gen_list_equal( llong, no_own_list ) ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_construct to constuct a double list -- **\n" ); +#main.c: ldouble = gen_list_construct(); +#main.c: +#main.c: gen_list_insert( ldouble, (struct gen_list_rec *)derived_rec_double_construct( 3.0 ) ); +#main.c: gen_list_insert( ldouble, (struct gen_list_rec *)derived_rec_double_construct( 3.1 ) ); +#main.c: gen_list_insert( ldouble, (struct gen_list_rec *)derived_rec_double_construct( 3.14 ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to test streaming a double list -- **\n" ); +#main.c: gen_list_stream( ldouble ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_copy_construct to test copy construct the double list -- **\n" ); +#main.c: ldouble_c = gen_list_copy_construct( ldouble ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to stream a copied double list -- **\n" ); +#main.c: gen_list_stream( ldouble_c ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_construct to constuct a char list -- **\n" ); +#main.c: lchar = gen_list_construct(); +#main.c: +#main.c: gen_list_insert( lchar, (struct gen_list_rec *)derived_rec_char_construct( '1' ) ); +#main.c: gen_list_insert( lchar, (struct gen_list_rec *)derived_rec_char_construct( 'A' ) ); +#main.c: gen_list_insert( lchar, (struct gen_list_rec *)derived_rec_char_construct( 'a' ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to test streaming a char list -- **\n" ); +#main.c: gen_list_stream( lchar ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_copy_construct to test copy construct the char list -- **\n" ); +#main.c: lchar_c = gen_list_copy_construct( lchar ); +#main.c: +#main.c: printf( "** -- Calling gen_list_equal to see if the copied list is the same as the orig NOTE: they should be. -- **\n" ); +#main.c: printf( "Are these 2 equal? => %d\n\n", gen_list_equal( lchar, lchar_c ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_stream to stream a copied char list -- **\n" ); +#main.c: gen_list_stream( lchar_c ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_iterate to iterate a charptr list -- ** +#main.c:** -- NOTE: this iterator (my_custom_charptr_iterator_1) will iterate the whole list. -- **\n" ); +#main.c: gen_list_iterate( lcharptr, (rec_iterate)my_custom_charptr_iterator_1 ); +#main.c: +#main.c: printf( "** -- Calling gen_list_iterate to iterate a copied charptr list -- ** +#main.c:** -- NOTE: this iterator (my_custom_charptr_iterator_2) will return after the first iteration. -- **\n" ); +#main.c: gen_list_iterate( lcharptr_c, (rec_iterate)my_custom_charptr_iterator_2 ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_iterate_reverse to iterate a charptr list -- ** +#main.c:** -- NOTE: this iterator (my_custom_charptr_iterator_1) will iterate the whole list. -- **\n" ); +#main.c: gen_list_iterate_reverse( lcharptr, (rec_iterate)my_custom_charptr_iterator_1 ); +#main.c: +#main.c: printf( "** -- Calling gen_list_iterate_reverse to iterate a copied charptr list -- ** +#main.c:** -- NOTE: this iterator (my_custom_charptr_iterator_2) will return after the first iteration. -- **\n" ); +#main.c: gen_list_iterate_reverse( lcharptr_c, (rec_iterate)my_custom_charptr_iterator_2 ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_equal to see if 2 different typed lists are equal NOTE: they should not be. -- **\n" ); +#main.c: printf( "Are these 2 equal? => %d\n\n", gen_list_equal( lcharptr, llong ) ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_remove_all to erase a no-owner list -- **\n" ); +#main.c: no_own_list = gen_list_remove_all( no_own_list ); +#main.c: +#main.c: printf( "** -- Calling gen_list_destruct to destruct a no-owner list -- **\n" ); +#main.c: no_own_list = gen_list_destruct( no_own_list ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_remove to remove the first record of a copied charptr list -- **\n" ); +#main.c: derived_rec_charptr_destruct( (struct derived_rec_charptr *)gen_list_remove( lcharptr_c, gen_list_get_first( lcharptr_c ) ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_remove to remove the last record of a copied long list -- **\n" ); +#main.c: derived_rec_long_destruct( (struct derived_rec_long *)gen_list_remove( llong_c, gen_list_get_last( llong_c ) ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_remove to remove the middle record of an original charptr list -- **\n" ); +#main.c: derived_rec_charptr_destruct( (struct derived_rec_charptr *)gen_list_remove( lcharptr, f_rec ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_remove to remove the all 3 records of a copied char list (first to last) -- **\n" ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar_c, gen_list_get_first( lchar_c ) ) ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar_c, gen_list_get_first( lchar_c ) ) ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar_c, gen_list_get_first( lchar_c ) ) ); +#main.c: +#main.c: printf( "** -- Calling gen_list_remove to remove the all 3 records of the original char list (last to first) -- **\n" ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar, gen_list_get_last( lchar ) ) ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar, gen_list_get_last( lchar ) ) ); +#main.c: derived_rec_char_destruct( (struct derived_rec_char *)gen_list_remove( lchar, gen_list_get_last( lchar ) ) ); +#main.c: +#main.c: +#main.c: printf( "** -- Calling gen_list_destruct to destruct the original charptr list (less the middle record) -- **\n" ); +#main.c: lcharptr = gen_list_destruct( lcharptr ); +#main.c: printf( "** -- Calling gen_list_destruct to destruct the copied charptr list (less the first record) -- **\n" ); +#main.c: lcharptr_c = gen_list_destruct( lcharptr_c ); +#main.c: +#main.c: printf( "** -- Calling gen_list_destruct to destruct the original long list -- **\n" ); +#main.c: llong = gen_list_destruct( llong ); +#main.c: printf( "** -- Calling gen_list_destruct to destruct the copied long list (less the last record) -- **\n" ); +#main.c: llong_c = gen_list_destruct( llong_c ); +#main.c: +#main.c: printf( "** -- Calling gen_list_destruct to destruct the original double list -- **\n" ); +#main.c: ldouble = gen_list_destruct( ldouble ); +#main.c: printf( "** -- Calling gen_list_destruct to destruct the copied double list -- **\n" ); +#main.c: ldouble_c = gen_list_destruct( ldouble_c ); +#main.c: +#main.c: printf( "** -- Calling gen_list_destruct to destruct the original char list (less all records last to first) -- **\n" ); +#main.c: lchar = gen_list_destruct( lchar ); +#main.c: printf( "** -- Calling gen_list_destruct to destruct the copied char list (less all records first to last) -- **\n" ); +#main.c: lchar_c = gen_list_destruct( lchar_c ); +#main.c: +#main.c: +#main.c: /* Force another memory leak to test the strdup/malloc/free police. */ +#main.c: /* NOTE: this should trigger the alphanum check of allocated memory. */ +#main.c: STRDUP( "Force another memory leak to test the strdup/malloc/free police." ); +#main.c: +#main.c: /* Force a memory leak in a list and also in 2 nodes. */ +#main.c: /* NOTE: this should NOT trigger the alphanum check of allocated memory. */ +#main.c: gen_list_construct(); +#main.c: +#main.c: /* NOTE: this should trigger 1 NON check (for the node) */ +#main.c: /* followed by 1 alphanum check for the charptr string. */ +#main.c: derived_rec_charptr_construct( "Leaky charptr node." ); +#main.c: +#main.c: /* NOTE: this should NOT trigger the alphanum check of allocated memory. */ +#main.c: derived_rec_char_construct( 'Z' ); +#main.c: +#main.c: +#main.c: printf( "\ndone" ); +#main.c: return( 0 ); +#main.c: +#main.c:} +#main.c: +#main.c: +#main.c:/* +#main.c: Local Variables: +#main.c: tab-width: 3 +#main.c: end: +#main.c:*/ + + +#malloc_police.c:const char malloc_police_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#malloc_police.c: * +#malloc_police.c: * Purpose : This module uses the rec_malloc_police to build a +#malloc_police.c: * list of allocated and freed memory. When the +#malloc_police.c: * program exits, we will print a list of all memory +#malloc_police.c: * that was allocated, but never freed. This could +#malloc_police.c: * be most helpful to developers and debugers. +#malloc_police.c: * +#malloc_police.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#malloc_police.c: * Privoxy team. http://www.privoxy.org/ +#malloc_police.c: * +#malloc_police.c: * This program is free software; you can redistribute it +#malloc_police.c: * and/or modify it under the terms of the GNU General +#malloc_police.c: * Public License as published by the Free Software +#malloc_police.c: * Foundation; either version 2 of the License, or (at +#malloc_police.c: * your option) any later version. +#malloc_police.c: * +#malloc_police.c: * This program is distributed in the hope that it will +#malloc_police.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#malloc_police.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#malloc_police.c: * PARTICULAR PURPOSE. See the GNU General Public +#malloc_police.c: * License for more details. +#malloc_police.c: * +#malloc_police.c: * The GNU General Public License should be included with +#malloc_police.c: * this file. If not, you can view it at +#malloc_police.c: * http://www.gnu.org/copyleft/gpl.html +#malloc_police.c: * or write to the Free Software Foundation, Inc., 59 +#malloc_police.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#malloc_police.c: * +#malloc_police.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#malloc_police.c: * and edit IJB, correctly. +#malloc_police.c: * +#malloc_police.c: * Revisions : +#malloc_police.c: * $Log: contrib.sh,v $ +#malloc_police.c: * Revision 1.2 2002/03/24 13:25:43 swa +#malloc_police.c: * name change related issues +#malloc_police.c: * +#malloc_police.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#malloc_police.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#malloc_police.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#malloc_police.c: * contrib directory and I cannot upload a tarball ... it gets +#malloc_police.c: * corrupted). This script will expand all files needed to create the +#malloc_police.c: * linked list modules and an example program. Please see the README. +#malloc_police.c: * Feed back is welcomed. Enjoy. +#malloc_police.c: * +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:#include +#malloc_police.c:#include +#malloc_police.c:#include +#malloc_police.c:#include +#malloc_police.c:#include +#malloc_police.c: +#malloc_police.c:#include "gen_list.h" +#malloc_police.c:#include "malloc_police.h" +#malloc_police.c:#include "rec_malloc_police.h" +#malloc_police.c: +#malloc_police.c:const char malloc_police_h_rcs[] = MALLOC_POLICE_H_VERSION; +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/* When we need to allocate malloc_police records, we */ +#malloc_police.c:/* will do recursion infinately. This variable will */ +#malloc_police.c:/* stop the STRDUP, MALLOC, and FREE replacements from */ +#malloc_police.c:/* trying to log these allocations. */ +#malloc_police.c: +#malloc_police.c:char recursion_protect = 0; +#malloc_police.c: +#malloc_police.c:struct gen_list *get_police_list(); +#malloc_police.c:static char called_once = 0; +#malloc_police.c:static const char *leak_report_header = "%s****************************** MEMORY LEAK REPORT %s ******************************%s"; +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : police_list_release_iterator +#malloc_police.c: * +#malloc_police.c: * Description : Iterator for the police list. We will report +#malloc_police.c: * "leaked" memory for the developer to correct. +#malloc_police.c: * +#malloc_police.c: * Parameters : +#malloc_police.c: * 1 : The record. +#malloc_police.c: * +#malloc_police.c: * Returns : NULL +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:struct derived_rec_malloc_police *police_list_release_iterator( struct derived_rec_malloc_police *this_rec ) +#malloc_police.c:{ +#malloc_police.c: if ( ! called_once ) +#malloc_police.c: { +#malloc_police.c: called_once = 1; +#malloc_police.c: fprintf( stderr, leak_report_header, "\n\n", "BEGIN", "\n\n" ); +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: fprintf( stderr, "\ +#malloc_police.c:\t\tmalloc_police leaked memory iterator this_rec\t\t\t\t\t= %p +#malloc_police.c:\t\tmalloc_police leaked memory iterator this_rec->alloced_addr\t= %p +#malloc_police.c:\t\tmalloc_police leaked memory iterator this_rec->source_where\t= %s +#malloc_police.c:\t\tmalloc_police leaked memory iterator this_rec->sz\t\t\t\t= %ld\n", +#malloc_police.c: (const void *)this_rec, +#malloc_police.c: this_rec->alloced_addr, +#malloc_police.c: this_rec->source_where, +#malloc_police.c: this_rec->sz +#malloc_police.c: ); +#malloc_police.c: +#malloc_police.c: if ( +#malloc_police.c: this_rec->sz >= 3 && +#malloc_police.c: isalnum( ((const char *)this_rec->alloced_addr)[ 0 ] ) && +#malloc_police.c: isalnum( ((const char *)this_rec->alloced_addr)[ 1 ] ) && +#malloc_police.c: isalnum( ((const char *)this_rec->alloced_addr)[ 2 ] ) ) +#malloc_police.c: { +#malloc_police.c: /* If the memory starts with 3 alpha-numerics, +#malloc_police.c: * assume a string was allocated. This might be +#malloc_police.c: * a little dangerous for production code, but I +#malloc_police.c: * will take the risk for development payoff +#malloc_police.c: * (at least for now ...) */ +#malloc_police.c: +#malloc_police.c: fprintf( stderr, "\ +#malloc_police.c:\t\tAlpha numeric found, assuming a string was allocated\t\t\t= %s\n", +#malloc_police.c: this_rec->alloced_addr +#malloc_police.c: ); +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: fprintf( stderr, "\n" ); +#malloc_police.c: +#malloc_police.c: return( NULL ); +#malloc_police.c: +#malloc_police.c:} +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : release_police_list +#malloc_police.c: * +#malloc_police.c: * Description : Iterates the police_list and reports "leaked" memory. +#malloc_police.c: * It will then free the list itself. +#malloc_police.c: * +#malloc_police.c: * Parameters : None +#malloc_police.c: * +#malloc_police.c: * Returns : None. +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:void release_police_list() +#malloc_police.c:{ +#malloc_police.c: struct gen_list *police_list = get_police_list(); +#malloc_police.c: fflush( stdout ); +#malloc_police.c: gen_list_iterate( police_list, (rec_iterate)police_list_release_iterator ); +#malloc_police.c: +#malloc_police.c: if ( called_once ) +#malloc_police.c: { +#malloc_police.c: called_once = 0; +#malloc_police.c: fprintf( stderr, leak_report_header, "", "END", "\n" ); +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c:} +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : get_police_list +#malloc_police.c: * +#malloc_police.c: * Description : Get the police malloc/strdup/free list. Generate +#malloc_police.c: * a new one if it does not yet exist. +#malloc_police.c: * +#malloc_police.c: * Parameters : None +#malloc_police.c: * +#malloc_police.c: * Returns : The police list. +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:struct gen_list *get_police_list() +#malloc_police.c:{ +#malloc_police.c: static struct gen_list *police_list = NULL; +#malloc_police.c: +#malloc_police.c: if ( NULL == police_list ) +#malloc_police.c: { +#malloc_police.c: recursion_protect ++; +#malloc_police.c: list_is_quiet ++; +#malloc_police.c: +#malloc_police.c: police_list = gen_list_construct(); +#malloc_police.c: atexit( release_police_list ); +#malloc_police.c: +#malloc_police.c: recursion_protect --; +#malloc_police.c: list_is_quiet --; +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: return( police_list ); +#malloc_police.c: +#malloc_police.c:} +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : police_strdup +#malloc_police.c: * +#malloc_police.c: * Description : Save the results of the strdup into our linked list. +#malloc_police.c: * This will be checked against latter free(s). +#malloc_police.c: * +#malloc_police.c: * Parameters : +#malloc_police.c: * 1 : The string to be duplicated. +#malloc_police.c: * 2 : Filename where the strdup occured. +#malloc_police.c: * 3 : Line# of where the strdup occured. +#malloc_police.c: * +#malloc_police.c: * Returns : Pointer to newly allocated memory. +#malloc_police.c: * +#malloc_police.c: * NOTE : This could replace the custom strdup for __MINGW32__ +#malloc_police.c: * systems. We only need to copy the conditionally +#malloc_police.c: * compiled code here and eliminate the strdup copy. +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:char *police_strdup( const char *s, const char *filename, long lineno ) +#malloc_police.c:{ +#malloc_police.c: char *ret = strdup( s ); +#malloc_police.c: +#malloc_police.c: if ( 0 == recursion_protect ) +#malloc_police.c: { +#malloc_police.c: char buffer[ 255 ]; +#malloc_police.c: sprintf( buffer, "strdup : %s @ %ld for %ld (%s)", filename, lineno, strlen( s ) + 1, s ); +#malloc_police.c: +#malloc_police.c: recursion_protect ++; +#malloc_police.c: list_is_quiet ++; +#malloc_police.c: +#malloc_police.c: gen_list_insert( +#malloc_police.c: get_police_list(), +#malloc_police.c: (struct gen_list_rec *)derived_rec_malloc_police_construct( ret, buffer, strlen( s ) + 1 ) +#malloc_police.c: ); +#malloc_police.c: +#malloc_police.c: recursion_protect --; +#malloc_police.c: list_is_quiet --; +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: return( ret ); +#malloc_police.c: +#malloc_police.c:} +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : police_malloc +#malloc_police.c: * +#malloc_police.c: * Description : Save the results of the malloc into our linked list. +#malloc_police.c: * This will be checked against latter free(s). +#malloc_police.c: * +#malloc_police.c: * Parameters : +#malloc_police.c: * 1 : The size of the memory to be malloc(ed). +#malloc_police.c: * 2 : Filename where the malloc occured. +#malloc_police.c: * 3 : Line# of where the malloc occured. +#malloc_police.c: * +#malloc_police.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:void *police_malloc( size_t sz, const char *filename, long lineno ) +#malloc_police.c:{ +#malloc_police.c: void *ret = malloc( sz ); +#malloc_police.c: +#malloc_police.c: if ( 0 == recursion_protect ) +#malloc_police.c: { +#malloc_police.c: char buffer[ 255 ]; +#malloc_police.c: sprintf( buffer, "malloc : %s @ %ld for %ld", filename, lineno, sz ); +#malloc_police.c: +#malloc_police.c: recursion_protect ++; +#malloc_police.c: list_is_quiet ++; +#malloc_police.c: +#malloc_police.c: gen_list_insert( +#malloc_police.c: get_police_list(), +#malloc_police.c: (struct gen_list_rec *)derived_rec_malloc_police_construct( ret, buffer, sz ) +#malloc_police.c: ); +#malloc_police.c: +#malloc_police.c: recursion_protect --; +#malloc_police.c: list_is_quiet --; +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: return( ret ); +#malloc_police.c: +#malloc_police.c:} +#malloc_police.c: +#malloc_police.c: +#malloc_police.c:/********************************************************************* +#malloc_police.c: * +#malloc_police.c: * Function : police_free +#malloc_police.c: * +#malloc_police.c: * Description : Frees the memory allocation and removes the address +#malloc_police.c: * from the linked list. Anything left in this list +#malloc_police.c: * is "leaked" memory. +#malloc_police.c: * +#malloc_police.c: * Parameters : +#malloc_police.c: * 1 : Pointer to the memory to be freed. +#malloc_police.c: * 2 : Filename where the free occured. +#malloc_police.c: * 3 : Line# of where the free occured. +#malloc_police.c: * +#malloc_police.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#malloc_police.c: * +#malloc_police.c: *********************************************************************/ +#malloc_police.c:void police_free( void *ptr, const char *filename, long lineno ) +#malloc_police.c:{ +#malloc_police.c: if ( 0 == recursion_protect ) +#malloc_police.c: { +#malloc_police.c: struct derived_rec_malloc_police *rec; +#malloc_police.c: struct gen_list_rec *fRec; +#malloc_police.c: struct gen_list *l = get_police_list(); +#malloc_police.c: +#malloc_police.c: recursion_protect ++; +#malloc_police.c: list_is_quiet ++; +#malloc_police.c: +#malloc_police.c: rec = derived_rec_malloc_police_construct( ptr, "FREEING POLICE RECORD.", 23 ); +#malloc_police.c: fRec = gen_list_find( l, (struct gen_list_rec *)rec ); +#malloc_police.c: derived_rec_malloc_police_destruct( rec ); +#malloc_police.c: +#malloc_police.c: if ( NULL == fRec ) +#malloc_police.c: { +#malloc_police.c: fprintf( stderr, "\nERROR: free failed to find corresponding strdup/malloc : %s @ %ld\n", filename, lineno ); +#malloc_police.c: } +#malloc_police.c: else +#malloc_police.c: { +#malloc_police.c: derived_rec_malloc_police_destruct( (struct derived_rec_malloc_police *)gen_list_remove( l, fRec ) ); +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: recursion_protect --; +#malloc_police.c: list_is_quiet --; +#malloc_police.c: } +#malloc_police.c: +#malloc_police.c: free( ptr ); +#malloc_police.c: +#malloc_police.c:} + + +#malloc_police.h:#ifndef MALLOC_POLICE_H_INCLUDED +#malloc_police.h:#define MALLOC_POLICE_H_INCLUDED +#malloc_police.h:#define MALLOC_POLICE_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#malloc_police.h:/********************************************************************* +#malloc_police.h: * +#malloc_police.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#malloc_police.h: * +#malloc_police.h: * Purpose : This module uses the rec_malloc_police to build a +#malloc_police.h: * list of allocated and freed memory. When the +#malloc_police.h: * program exits, we will print a list of all memory +#malloc_police.h: * that was allocated, but never freed. This could +#malloc_police.h: * be most helpful to developers and debugers. +#malloc_police.h: * +#malloc_police.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#malloc_police.h: * Privoxy team. http://www.privoxy.org/ +#malloc_police.h: * +#malloc_police.h: * This program is free software; you can redistribute it +#malloc_police.h: * and/or modify it under the terms of the GNU General +#malloc_police.h: * Public License as published by the Free Software +#malloc_police.h: * Foundation; either version 2 of the License, or (at +#malloc_police.h: * your option) any later version. +#malloc_police.h: * +#malloc_police.h: * This program is distributed in the hope that it will +#malloc_police.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#malloc_police.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#malloc_police.h: * PARTICULAR PURPOSE. See the GNU General Public +#malloc_police.h: * License for more details. +#malloc_police.h: * +#malloc_police.h: * The GNU General Public License should be included with +#malloc_police.h: * this file. If not, you can view it at +#malloc_police.h: * http://www.gnu.org/copyleft/gpl.html +#malloc_police.h: * or write to the Free Software Foundation, Inc., 59 +#malloc_police.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#malloc_police.h: * +#malloc_police.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#malloc_police.h: * and edit IJB, correctly. +#malloc_police.h: * +#malloc_police.h: * Revisions : +#malloc_police.h: * $Log: contrib.sh,v $ +#malloc_police.h: * Revision 1.2 2002/03/24 13:25:43 swa +#malloc_police.h: * name change related issues +#malloc_police.h: * +#malloc_police.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#malloc_police.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#malloc_police.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#malloc_police.h: * contrib directory and I cannot upload a tarball ... it gets +#malloc_police.h: * corrupted). This script will expand all files needed to create the +#malloc_police.h: * linked list modules and an example program. Please see the README. +#malloc_police.h: * Feed back is welcomed. Enjoy. +#malloc_police.h: * +#malloc_police.h: * +#malloc_police.h: *********************************************************************/ +#malloc_police.h: +#malloc_police.h: +#malloc_police.h:#ifdef __cplusplus +#malloc_police.h:extern "C" { +#malloc_police.h:#endif +#malloc_police.h: +#malloc_police.h: +#malloc_police.h:char *police_strdup( const char *s, const char *filename, long lineno ); +#malloc_police.h:void *police_malloc( size_t sz, const char *filename, long lineno ); +#malloc_police.h:void police_free( void *ptr, const char *filename, long lineno ); +#malloc_police.h: +#malloc_police.h:#define STRDUP(s) police_strdup( s, __FILE__, __LINE__ ) +#malloc_police.h:#define MALLOC(sz) police_malloc( sz, __FILE__, __LINE__ ) +#malloc_police.h:#define FREE(ptr) police_free( ptr, __FILE__, __LINE__ ) +#malloc_police.h: +#malloc_police.h: +#malloc_police.h:#ifdef __cplusplus +#malloc_police.h:} /* extern "C" */ +#malloc_police.h:#endif +#malloc_police.h: +#malloc_police.h:#endif /* ndef MALLOC_POLICE_H_INCLUDED */ +#malloc_police.h: +#malloc_police.h:/* +#malloc_police.h: Local Variables: +#malloc_police.h: tab-width: 3 +#malloc_police.h: end: +#malloc_police.h:*/ + + +#rec_char.c:const char rec_char_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_char.c: * +#rec_char.c: * Purpose : A "derived class" of gen_list_rec. +#rec_char.c: * +#rec_char.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_char.c: * Privoxy team. http://www.privoxy.org/ +#rec_char.c: * +#rec_char.c: * This program is free software; you can redistribute it +#rec_char.c: * and/or modify it under the terms of the GNU General +#rec_char.c: * Public License as published by the Free Software +#rec_char.c: * Foundation; either version 2 of the License, or (at +#rec_char.c: * your option) any later version. +#rec_char.c: * +#rec_char.c: * This program is distributed in the hope that it will +#rec_char.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_char.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_char.c: * PARTICULAR PURPOSE. See the GNU General Public +#rec_char.c: * License for more details. +#rec_char.c: * +#rec_char.c: * The GNU General Public License should be included with +#rec_char.c: * this file. If not, you can view it at +#rec_char.c: * http://www.gnu.org/copyleft/gpl.html +#rec_char.c: * or write to the Free Software Foundation, Inc., 59 +#rec_char.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_char.c: * +#rec_char.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_char.c: * and edit IJB, correctly. +#rec_char.c: * +#rec_char.c: * Revisions : +#rec_char.c: * $Log: contrib.sh,v $ +#rec_char.c: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_char.c: * name change related issues +#rec_char.c: * +#rec_char.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_char.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_char.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_char.c: * contrib directory and I cannot upload a tarball ... it gets +#rec_char.c: * corrupted). This script will expand all files needed to create the +#rec_char.c: * linked list modules and an example program. Please see the README. +#rec_char.c: * Feed back is welcomed. Enjoy. +#rec_char.c: * +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c: +#rec_char.c: +#rec_char.c:#include +#rec_char.c:#include +#rec_char.c:#include +#rec_char.c:#include +#rec_char.c: +#rec_char.c:#include "gen_list.h" +#rec_char.c:#include "rec_char.h" +#rec_char.c: +#rec_char.c:const char rec_char_h_rcs[] = REC_CHAR_H_VERSION; +#rec_char.c: +#rec_char.c: +#rec_char.c:static const rec_method rec_char_vtable[] = +#rec_char.c:{ +#rec_char.c: (rec_method)derived_rec_char_copy_construct, +#rec_char.c: (rec_method)derived_rec_char_destruct, +#rec_char.c: (rec_method)derived_rec_char_stream, +#rec_char.c: (rec_method)derived_rec_char_equal +#rec_char.c:}; +#rec_char.c: +#rec_char.c: +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * Function : derived_rec_char_construct +#rec_char.c: * +#rec_char.c: * Description : A simple derived record class that contains 1 string. +#rec_char.c: * +#rec_char.c: * Parameters : +#rec_char.c: * 1 : The record +#rec_char.c: * 2 : The string to contain. +#rec_char.c: * +#rec_char.c: * Returns : A pointer to the constructed record. +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c:struct derived_rec_char *derived_rec_char_construct( const char _contents ) +#rec_char.c:{ +#rec_char.c: struct derived_rec_char *this_rec = (struct derived_rec_char *)gen_list_rec_construct( +#rec_char.c: ISA_CHAR, +#rec_char.c: sizeof( struct derived_rec_char ), +#rec_char.c: rec_char_vtable +#rec_char.c: ); +#rec_char.c: +#rec_char.c: this_rec->contents = _contents; +#rec_char.c: +#rec_char.c: LIST_SHOW( printf( "\ +#rec_char.c:\t\tchar construct new rec\t\t\t\t= %p +#rec_char.c:\t\tchar construct new rec contents\t= %c\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_char.c: +#rec_char.c: return( this_rec ); +#rec_char.c: +#rec_char.c:} +#rec_char.c: +#rec_char.c: +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * Function : derived_rec_char_copy_construct +#rec_char.c: * +#rec_char.c: * Description : Copies one char record to another. +#rec_char.c: * +#rec_char.c: * Parameters : +#rec_char.c: * 1 : Existing record. +#rec_char.c: * 2 : Copy record. +#rec_char.c: * +#rec_char.c: * Returns : The newly constructed copy record. +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c:struct derived_rec_char *derived_rec_char_copy_construct( const struct derived_rec_char *this_rec ) +#rec_char.c:{ +#rec_char.c: struct derived_rec_char *copy_rec = (struct derived_rec_char *)gen_list_rec_copy_construct( (struct gen_list_rec *)this_rec ); +#rec_char.c: copy_rec->contents = this_rec->contents; +#rec_char.c: +#rec_char.c: LIST_SHOW( printf( "\ +#rec_char.c:\t\tchar copy construct new gen rec\t\t\t\t= %p => %p +#rec_char.c:\t\tchar copy construct new gen rec contents\t= %c\n\n", (const void *)this_rec, (const void *)copy_rec, copy_rec->contents ) ); +#rec_char.c: +#rec_char.c: return( copy_rec ); +#rec_char.c: +#rec_char.c:} +#rec_char.c: +#rec_char.c: +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * Function : derived_rec_char_destruct +#rec_char.c: * +#rec_char.c: * Description : Destruct the char record. +#rec_char.c: * +#rec_char.c: * Parameters : +#rec_char.c: * 1 : The record. +#rec_char.c: * +#rec_char.c: * Returns : NULL +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c:struct derived_rec_char *derived_rec_char_destruct( struct derived_rec_char *this_rec ) +#rec_char.c:{ +#rec_char.c: LIST_SHOW( printf( "\ +#rec_char.c:\t\tchar destruct this_rec\t\t\t\t= %p +#rec_char.c:\t\tchar destruct this_rec->contents\t= %c\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_char.c: +#rec_char.c: this_rec->contents = '!'; +#rec_char.c: return( (struct derived_rec_char *)gen_list_rec_destruct( (struct gen_list_rec *)this_rec ) ); +#rec_char.c: +#rec_char.c:} +#rec_char.c: +#rec_char.c: +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * Function : derived_rec_char_stream +#rec_char.c: * +#rec_char.c: * Description : Displays all char attributes on the STDOUT stream. +#rec_char.c: * +#rec_char.c: * Parameters : +#rec_char.c: * 1 : The record. +#rec_char.c: * +#rec_char.c: * Returns : The record. +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c:const struct derived_rec_char *derived_rec_char_stream( const struct derived_rec_char *this_rec ) +#rec_char.c:{ +#rec_char.c: this_rec = (struct derived_rec_char *)gen_list_rec_stream( +#rec_char.c: (struct gen_list_rec *)this_rec +#rec_char.c: ); +#rec_char.c: LIST_SHOW( printf( "\ +#rec_char.c:\t\tchar stream this_rec\t\t\t\t\t= %p +#rec_char.c:\t\tchar stream this_rec->contents\t= %c\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_char.c: +#rec_char.c: return( this_rec ); +#rec_char.c: +#rec_char.c:} +#rec_char.c: +#rec_char.c: +#rec_char.c:/********************************************************************* +#rec_char.c: * +#rec_char.c: * Function : derived_rec_char_equal +#rec_char.c: * +#rec_char.c: * Description : Compares two char records to see if they are equal. +#rec_char.c: * +#rec_char.c: * Parameters : +#rec_char.c: * 1 : A record. +#rec_char.c: * 2 : Another record. +#rec_char.c: * +#rec_char.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#rec_char.c: * +#rec_char.c: *********************************************************************/ +#rec_char.c:int derived_rec_char_equal( const struct derived_rec_char *this_rec, const struct derived_rec_char *eq_rec ) +#rec_char.c:{ +#rec_char.c: if ( ! gen_list_rec_equal( (const struct gen_list_rec *)this_rec, (struct gen_list_rec *)eq_rec ) ) +#rec_char.c: { +#rec_char.c: return( 0 ); +#rec_char.c: } +#rec_char.c: return( this_rec->contents == eq_rec->contents ); +#rec_char.c: +#rec_char.c:} + + +#rec_char.h:#ifndef REC_CHAR_H_INCLUDED +#rec_char.h:#define REC_CHAR_H_INCLUDED +#rec_char.h:#define REC_CHAR_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#rec_char.h:/********************************************************************* +#rec_char.h: * +#rec_char.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_char.h: * +#rec_char.h: * Purpose : A "derived class" of gen_list_rec. +#rec_char.h: * +#rec_char.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_char.h: * Privoxy team. http://www.privoxy.org/ +#rec_char.h: * +#rec_char.h: * This program is free software; you can redistribute it +#rec_char.h: * and/or modify it under the terms of the GNU General +#rec_char.h: * Public License as published by the Free Software +#rec_char.h: * Foundation; either version 2 of the License, or (at +#rec_char.h: * your option) any later version. +#rec_char.h: * +#rec_char.h: * This program is distributed in the hope that it will +#rec_char.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_char.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_char.h: * PARTICULAR PURPOSE. See the GNU General Public +#rec_char.h: * License for more details. +#rec_char.h: * +#rec_char.h: * The GNU General Public License should be included with +#rec_char.h: * this file. If not, you can view it at +#rec_char.h: * http://www.gnu.org/copyleft/gpl.html +#rec_char.h: * or write to the Free Software Foundation, Inc., 59 +#rec_char.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_char.h: * +#rec_char.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_char.h: * and edit IJB, correctly. +#rec_char.h: * +#rec_char.h: * Revisions : +#rec_char.h: * $Log: contrib.sh,v $ +#rec_char.h: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_char.h: * name change related issues +#rec_char.h: * +#rec_char.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_char.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_char.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_char.h: * contrib directory and I cannot upload a tarball ... it gets +#rec_char.h: * corrupted). This script will expand all files needed to create the +#rec_char.h: * linked list modules and an example program. Please see the README. +#rec_char.h: * Feed back is welcomed. Enjoy. +#rec_char.h: * +#rec_char.h: * +#rec_char.h: *********************************************************************/ +#rec_char.h: +#rec_char.h: +#rec_char.h:#ifdef __cplusplus +#rec_char.h:extern "C" { +#rec_char.h:#endif +#rec_char.h: +#rec_char.h: +#rec_char.h:struct derived_rec_char +#rec_char.h:{ +#rec_char.h: /* private: */ +#rec_char.h: struct gen_list_rec parent_rec; +#rec_char.h: char contents; +#rec_char.h:}; +#rec_char.h: +#rec_char.h:/* public: */ +#rec_char.h:extern struct derived_rec_char * derived_rec_char_construct( const char _contents ); +#rec_char.h:extern struct derived_rec_char * derived_rec_char_copy_construct( const struct derived_rec_char *this_rec ); +#rec_char.h:extern struct derived_rec_char * derived_rec_char_destruct( struct derived_rec_char *this_rec ); +#rec_char.h:extern const struct derived_rec_char *derived_rec_char_stream( const struct derived_rec_char *this_rec ); +#rec_char.h:extern int derived_rec_char_equal( const struct derived_rec_char *this_rec, const struct derived_rec_char *eq_rec ); +#rec_char.h: +#rec_char.h:/* struct/class COMPLETE */ +#rec_char.h: +#rec_char.h: +#rec_char.h:#ifdef __cplusplus +#rec_char.h:} /* extern "C" */ +#rec_char.h:#endif +#rec_char.h: +#rec_char.h:#endif /* ndef REC_CHAR_H_INCLUDED */ +#rec_char.h: +#rec_char.h:/* +#rec_char.h: Local Variables: +#rec_char.h: tab-width: 3 +#rec_char.h: end: +#rec_char.h:*/ + + +#rec_charptr.c:const char rec_charptr_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_charptr.c: * +#rec_charptr.c: * Purpose : A "derived class" of gen_list_rec. +#rec_charptr.c: * +#rec_charptr.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_charptr.c: * Privoxy team. http://www.privoxy.org/ +#rec_charptr.c: * +#rec_charptr.c: * This program is free software; you can redistribute it +#rec_charptr.c: * and/or modify it under the terms of the GNU General +#rec_charptr.c: * Public License as published by the Free Software +#rec_charptr.c: * Foundation; either version 2 of the License, or (at +#rec_charptr.c: * your option) any later version. +#rec_charptr.c: * +#rec_charptr.c: * This program is distributed in the hope that it will +#rec_charptr.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_charptr.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_charptr.c: * PARTICULAR PURPOSE. See the GNU General Public +#rec_charptr.c: * License for more details. +#rec_charptr.c: * +#rec_charptr.c: * The GNU General Public License should be included with +#rec_charptr.c: * this file. If not, you can view it at +#rec_charptr.c: * http://www.gnu.org/copyleft/gpl.html +#rec_charptr.c: * or write to the Free Software Foundation, Inc., 59 +#rec_charptr.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_charptr.c: * +#rec_charptr.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_charptr.c: * and edit IJB, correctly. +#rec_charptr.c: * +#rec_charptr.c: * Revisions : +#rec_charptr.c: * $Log: contrib.sh,v $ +#rec_charptr.c: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_charptr.c: * name change related issues +#rec_charptr.c: * +#rec_charptr.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_charptr.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_charptr.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_charptr.c: * contrib directory and I cannot upload a tarball ... it gets +#rec_charptr.c: * corrupted). This script will expand all files needed to create the +#rec_charptr.c: * linked list modules and an example program. Please see the README. +#rec_charptr.c: * Feed back is welcomed. Enjoy. +#rec_charptr.c: * +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:#include +#rec_charptr.c:#include +#rec_charptr.c:#include +#rec_charptr.c:#include +#rec_charptr.c: +#rec_charptr.c:#include "gen_list.h" +#rec_charptr.c:#include "rec_charptr.h" +#rec_charptr.c:#include "malloc_police.h" +#rec_charptr.c: +#rec_charptr.c:const char rec_charptr_h_rcs[] = REC_CHARPTR_H_VERSION; +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:static const rec_method rec_charptr_vtable[] = +#rec_charptr.c:{ +#rec_charptr.c: (rec_method)derived_rec_charptr_copy_construct, +#rec_charptr.c: (rec_method)derived_rec_charptr_destruct, +#rec_charptr.c: (rec_method)derived_rec_charptr_stream, +#rec_charptr.c: (rec_method)derived_rec_charptr_equal +#rec_charptr.c:}; +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * Function : derived_rec_charptr_construct +#rec_charptr.c: * +#rec_charptr.c: * Description : A simple derived record class that contains 1 string. +#rec_charptr.c: * +#rec_charptr.c: * Parameters : +#rec_charptr.c: * 1 : The record +#rec_charptr.c: * 2 : The string to contain. +#rec_charptr.c: * +#rec_charptr.c: * Returns : A pointer to the constructed record. +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c:struct derived_rec_charptr *derived_rec_charptr_construct( const char *_contents ) +#rec_charptr.c:{ +#rec_charptr.c: struct derived_rec_charptr *this_rec = (struct derived_rec_charptr *)gen_list_rec_construct( +#rec_charptr.c: ISA_CHARPTR, +#rec_charptr.c: sizeof( struct derived_rec_charptr ), +#rec_charptr.c: rec_charptr_vtable +#rec_charptr.c: ); +#rec_charptr.c: +#rec_charptr.c: this_rec->contents = STRDUP( _contents ); +#rec_charptr.c: +#rec_charptr.c: LIST_SHOW( printf( "\ +#rec_charptr.c:\t\tcharptr construct new rec\t\t\t\t= %p +#rec_charptr.c:\t\tcharptr construct new rec contents\t= %s\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_charptr.c: +#rec_charptr.c: return( this_rec ); +#rec_charptr.c: +#rec_charptr.c:} +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * Function : derived_rec_charptr_copy_construct +#rec_charptr.c: * +#rec_charptr.c: * Description : Copies one charptr record to another. +#rec_charptr.c: * +#rec_charptr.c: * Parameters : +#rec_charptr.c: * 1 : Existing record. +#rec_charptr.c: * 2 : Copy record. +#rec_charptr.c: * +#rec_charptr.c: * Returns : The newly constructed copy record. +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c:struct derived_rec_charptr *derived_rec_charptr_copy_construct( const struct derived_rec_charptr *this_rec ) +#rec_charptr.c:{ +#rec_charptr.c: int len; +#rec_charptr.c: char *new_contents; +#rec_charptr.c: +#rec_charptr.c: struct derived_rec_charptr *copy_rec = (struct derived_rec_charptr *)gen_list_rec_copy_construct( (struct gen_list_rec *)this_rec ); +#rec_charptr.c: +#rec_charptr.c: len = strlen( this_rec->contents ); +#rec_charptr.c: len += sizeof( "COPY " ); +#rec_charptr.c: +#rec_charptr.c: copy_rec->contents = (char *)MALLOC( len ); +#rec_charptr.c: strcpy( copy_rec->contents, "COPY " ); +#rec_charptr.c: strcat( copy_rec->contents, this_rec->contents ); +#rec_charptr.c: +#rec_charptr.c: LIST_SHOW( printf( "\ +#rec_charptr.c:\t\tcharptr copy construct new gen rec\t\t\t\t= %p => %p +#rec_charptr.c:\t\tcharptr copy construct new gen rec contents\t= %s\n\n", (const void *)this_rec, (const void *)copy_rec, copy_rec->contents ) ); +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c: return( copy_rec ); +#rec_charptr.c: +#rec_charptr.c:} +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * Function : derived_rec_charptr_destruct +#rec_charptr.c: * +#rec_charptr.c: * Description : Destruct the charptr record. +#rec_charptr.c: * +#rec_charptr.c: * Parameters : +#rec_charptr.c: * 1 : The record. +#rec_charptr.c: * +#rec_charptr.c: * Returns : NULL +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c:struct derived_rec_charptr *derived_rec_charptr_destruct( struct derived_rec_charptr *this_rec ) +#rec_charptr.c:{ +#rec_charptr.c: LIST_SHOW( printf( "\ +#rec_charptr.c:\t\tcharptr destruct this_rec\t\t\t\t= %p +#rec_charptr.c:\t\tcharptr destruct this_rec->contents\t= %s\n\n", (const void *)this_rec, (const void *)this_rec->contents ) ); +#rec_charptr.c: +#rec_charptr.c: memset( this_rec->contents, '!', strlen( this_rec->contents ) ); +#rec_charptr.c: FREE( this_rec->contents ); +#rec_charptr.c: return( (struct derived_rec_charptr *)gen_list_rec_destruct( (struct gen_list_rec *)this_rec ) ); +#rec_charptr.c: +#rec_charptr.c:} +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * Function : derived_rec_charptr_stream +#rec_charptr.c: * +#rec_charptr.c: * Description : Displays all charptr attributes on the STDOUT stream. +#rec_charptr.c: * +#rec_charptr.c: * Parameters : +#rec_charptr.c: * 1 : The record. +#rec_charptr.c: * +#rec_charptr.c: * Returns : The record. +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c:const struct derived_rec_charptr *derived_rec_charptr_stream( const struct derived_rec_charptr *this_rec ) +#rec_charptr.c:{ +#rec_charptr.c: this_rec = (struct derived_rec_charptr *)gen_list_rec_stream( +#rec_charptr.c: (struct gen_list_rec *)this_rec +#rec_charptr.c: ); +#rec_charptr.c: LIST_SHOW( printf( "\ +#rec_charptr.c:\t\tcharptr stream this_rec\t\t\t\t\t= %p +#rec_charptr.c:\t\tcharptr stream this_rec->contents\t= %s\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_charptr.c: +#rec_charptr.c: return( this_rec ); +#rec_charptr.c: +#rec_charptr.c:} +#rec_charptr.c: +#rec_charptr.c: +#rec_charptr.c:/********************************************************************* +#rec_charptr.c: * +#rec_charptr.c: * Function : derived_rec_charptr_equal +#rec_charptr.c: * +#rec_charptr.c: * Description : Compares two charptr records to see if they are equal. +#rec_charptr.c: * +#rec_charptr.c: * Parameters : +#rec_charptr.c: * 1 : A record. +#rec_charptr.c: * 2 : Another record. +#rec_charptr.c: * +#rec_charptr.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#rec_charptr.c: * +#rec_charptr.c: *********************************************************************/ +#rec_charptr.c:int derived_rec_charptr_equal( const struct derived_rec_charptr *this_rec, const struct derived_rec_charptr *eq_rec ) +#rec_charptr.c:{ +#rec_charptr.c: if ( ! gen_list_rec_equal( (const struct gen_list_rec *)this_rec, (struct gen_list_rec *)eq_rec ) ) +#rec_charptr.c: { +#rec_charptr.c: return( 0 ); +#rec_charptr.c: } +#rec_charptr.c: return( 0 == strcmp( this_rec->contents, eq_rec->contents ) ); +#rec_charptr.c: +#rec_charptr.c:} + + +#rec_charptr.h:#ifndef REC_CHARPTR_H_INCLUDED +#rec_charptr.h:#define REC_CHARPTR_H_INCLUDED +#rec_charptr.h:#define REC_CHARPTR_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#rec_charptr.h:/********************************************************************* +#rec_charptr.h: * +#rec_charptr.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_charptr.h: * +#rec_charptr.h: * Purpose : A "derived class" of gen_list_rec. +#rec_charptr.h: * +#rec_charptr.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_charptr.h: * Privoxy team. http://www.privoxy.org/ +#rec_charptr.h: * +#rec_charptr.h: * This program is free software; you can redistribute it +#rec_charptr.h: * and/or modify it under the terms of the GNU General +#rec_charptr.h: * Public License as published by the Free Software +#rec_charptr.h: * Foundation; either version 2 of the License, or (at +#rec_charptr.h: * your option) any later version. +#rec_charptr.h: * +#rec_charptr.h: * This program is distributed in the hope that it will +#rec_charptr.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_charptr.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_charptr.h: * PARTICULAR PURPOSE. See the GNU General Public +#rec_charptr.h: * License for more details. +#rec_charptr.h: * +#rec_charptr.h: * The GNU General Public License should be included with +#rec_charptr.h: * this file. If not, you can view it at +#rec_charptr.h: * http://www.gnu.org/copyleft/gpl.html +#rec_charptr.h: * or write to the Free Software Foundation, Inc., 59 +#rec_charptr.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_charptr.h: * +#rec_charptr.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_charptr.h: * and edit IJB, correctly. +#rec_charptr.h: * +#rec_charptr.h: * Revisions : +#rec_charptr.h: * $Log: contrib.sh,v $ +#rec_charptr.h: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_charptr.h: * name change related issues +#rec_charptr.h: * +#rec_charptr.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_charptr.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_charptr.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_charptr.h: * contrib directory and I cannot upload a tarball ... it gets +#rec_charptr.h: * corrupted). This script will expand all files needed to create the +#rec_charptr.h: * linked list modules and an example program. Please see the README. +#rec_charptr.h: * Feed back is welcomed. Enjoy. +#rec_charptr.h: * +#rec_charptr.h: * +#rec_charptr.h: *********************************************************************/ +#rec_charptr.h: +#rec_charptr.h: +#rec_charptr.h:#ifdef __cplusplus +#rec_charptr.h:extern "C" { +#rec_charptr.h:#endif +#rec_charptr.h: +#rec_charptr.h: +#rec_charptr.h:struct derived_rec_charptr +#rec_charptr.h:{ +#rec_charptr.h: /* private: */ +#rec_charptr.h: struct gen_list_rec parent_rec; +#rec_charptr.h: char *contents; +#rec_charptr.h:}; +#rec_charptr.h: +#rec_charptr.h:/* public: */ +#rec_charptr.h:extern struct derived_rec_charptr * derived_rec_charptr_construct( const char *_contents ); +#rec_charptr.h:extern struct derived_rec_charptr * derived_rec_charptr_copy_construct( const struct derived_rec_charptr *this_rec ); +#rec_charptr.h:extern struct derived_rec_charptr * derived_rec_charptr_destruct( struct derived_rec_charptr *this_rec ); +#rec_charptr.h:extern const struct derived_rec_charptr *derived_rec_charptr_stream( const struct derived_rec_charptr *this_rec ); +#rec_charptr.h:extern int derived_rec_charptr_equal( const struct derived_rec_charptr *this_rec, const struct derived_rec_charptr *eq_rec ); +#rec_charptr.h: +#rec_charptr.h:/* struct/class COMPLETE */ +#rec_charptr.h: +#rec_charptr.h: +#rec_charptr.h:#ifdef __cplusplus +#rec_charptr.h:} /* extern "C" */ +#rec_charptr.h:#endif +#rec_charptr.h: +#rec_charptr.h:#endif /* ndef REC_CHARPTR_H_INCLUDED */ +#rec_charptr.h: +#rec_charptr.h:/* +#rec_charptr.h: Local Variables: +#rec_charptr.h: tab-width: 3 +#rec_charptr.h: end: +#rec_charptr.h:*/ + + +#rec_double.c:const char rec_double_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_double.c: * +#rec_double.c: * Purpose : A "derived class" of gen_list_rec. +#rec_double.c: * +#rec_double.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_double.c: * Privoxy team. http://www.privoxy.org/ +#rec_double.c: * +#rec_double.c: * This program is free software; you can redistribute it +#rec_double.c: * and/or modify it under the terms of the GNU General +#rec_double.c: * Public License as published by the Free Software +#rec_double.c: * Foundation; either version 2 of the License, or (at +#rec_double.c: * your option) any later version. +#rec_double.c: * +#rec_double.c: * This program is distributed in the hope that it will +#rec_double.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_double.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_double.c: * PARTICULAR PURPOSE. See the GNU General Public +#rec_double.c: * License for more details. +#rec_double.c: * +#rec_double.c: * The GNU General Public License should be included with +#rec_double.c: * this file. If not, you can view it at +#rec_double.c: * http://www.gnu.org/copyleft/gpl.html +#rec_double.c: * or write to the Free Software Foundation, Inc., 59 +#rec_double.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_double.c: * +#rec_double.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_double.c: * and edit IJB, correctly. +#rec_double.c: * +#rec_double.c: * Revisions : +#rec_double.c: * $Log: contrib.sh,v $ +#rec_double.c: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_double.c: * name change related issues +#rec_double.c: * +#rec_double.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_double.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_double.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_double.c: * contrib directory and I cannot upload a tarball ... it gets +#rec_double.c: * corrupted). This script will expand all files needed to create the +#rec_double.c: * linked list modules and an example program. Please see the README. +#rec_double.c: * Feed back is welcomed. Enjoy. +#rec_double.c: * +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c: +#rec_double.c: +#rec_double.c:#include +#rec_double.c:#include +#rec_double.c:#include +#rec_double.c:#include +#rec_double.c: +#rec_double.c:#include "gen_list.h" +#rec_double.c:#include "rec_double.h" +#rec_double.c: +#rec_double.c:const char rec_double_h_rcs[] = REC_DOUBLE_H_VERSION; +#rec_double.c: +#rec_double.c: +#rec_double.c:static const rec_method rec_double_vtable[] = +#rec_double.c:{ +#rec_double.c: (rec_method)derived_rec_double_copy_construct, +#rec_double.c: (rec_method)derived_rec_double_destruct, +#rec_double.c: (rec_method)derived_rec_double_stream, +#rec_double.c: (rec_method)derived_rec_double_equal +#rec_double.c:}; +#rec_double.c: +#rec_double.c: +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * Function : derived_rec_double_construct +#rec_double.c: * +#rec_double.c: * Description : A simple derived record class that contains 1 string. +#rec_double.c: * +#rec_double.c: * Parameters : +#rec_double.c: * 1 : The record +#rec_double.c: * 2 : The string to contain. +#rec_double.c: * +#rec_double.c: * Returns : A pointer to the constructed record. +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c:struct derived_rec_double *derived_rec_double_construct( const double _contents ) +#rec_double.c:{ +#rec_double.c: struct derived_rec_double *this_rec = (struct derived_rec_double *)gen_list_rec_construct( +#rec_double.c: ISA_DOUBLE, +#rec_double.c: sizeof( struct derived_rec_double ), +#rec_double.c: rec_double_vtable +#rec_double.c: ); +#rec_double.c: +#rec_double.c: this_rec->contents = _contents; +#rec_double.c: +#rec_double.c: LIST_SHOW( printf( "\ +#rec_double.c:\t\tdouble construct new rec\t\t\t\t= %p +#rec_double.c:\t\tdouble construct new rec contents\t= %8.2lf\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_double.c: +#rec_double.c: return( this_rec ); +#rec_double.c: +#rec_double.c:} +#rec_double.c: +#rec_double.c: +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * Function : derived_rec_double_copy_construct +#rec_double.c: * +#rec_double.c: * Description : Copies one double record to another. +#rec_double.c: * +#rec_double.c: * Parameters : +#rec_double.c: * 1 : Existing record. +#rec_double.c: * 2 : Copy record. +#rec_double.c: * +#rec_double.c: * Returns : The newly constructed copy record. +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c:struct derived_rec_double *derived_rec_double_copy_construct( const struct derived_rec_double *this_rec ) +#rec_double.c:{ +#rec_double.c: struct derived_rec_double *copy_rec = (struct derived_rec_double *)gen_list_rec_copy_construct( (struct gen_list_rec *)this_rec ); +#rec_double.c: copy_rec->contents = - this_rec->contents; +#rec_double.c: +#rec_double.c: LIST_SHOW( printf( "\ +#rec_double.c:\t\tdouble copy construct new gen rec\t\t\t\t= %p => %p +#rec_double.c:\t\tdouble copy construct new gen rec contents\t= %8.2lf\n\n", (const void *)this_rec, (const void *)copy_rec, copy_rec->contents ) ); +#rec_double.c: +#rec_double.c: return( copy_rec ); +#rec_double.c: +#rec_double.c:} +#rec_double.c: +#rec_double.c: +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * Function : derived_rec_double_destruct +#rec_double.c: * +#rec_double.c: * Description : Destruct the double record. +#rec_double.c: * +#rec_double.c: * Parameters : +#rec_double.c: * 1 : The record. +#rec_double.c: * +#rec_double.c: * Returns : NULL +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c:struct derived_rec_double *derived_rec_double_destruct( struct derived_rec_double *this_rec ) +#rec_double.c:{ +#rec_double.c: LIST_SHOW( printf( "\ +#rec_double.c:\t\tdouble destruct this_rec\t\t\t\t= %p +#rec_double.c:\t\tdouble destruct this_rec->contents\t= %8.2lf\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_double.c: +#rec_double.c: this_rec->contents = -1.1111; +#rec_double.c: return( (struct derived_rec_double *)gen_list_rec_destruct( (struct gen_list_rec *)this_rec ) ); +#rec_double.c: +#rec_double.c:} +#rec_double.c: +#rec_double.c: +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * Function : derived_rec_double_stream +#rec_double.c: * +#rec_double.c: * Description : Displays all double attributes on the STDOUT stream. +#rec_double.c: * +#rec_double.c: * Parameters : +#rec_double.c: * 1 : The record. +#rec_double.c: * +#rec_double.c: * Returns : The record. +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c:const struct derived_rec_double *derived_rec_double_stream( const struct derived_rec_double *this_rec ) +#rec_double.c:{ +#rec_double.c: this_rec = (struct derived_rec_double *)gen_list_rec_stream( +#rec_double.c: (struct gen_list_rec *)this_rec +#rec_double.c: ); +#rec_double.c: LIST_SHOW( printf( "\ +#rec_double.c:\t\tdouble stream this_rec\t\t\t\t= %p +#rec_double.c:\t\tdouble stream this_rec->contents\t= %8.2lf\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_double.c: +#rec_double.c: return( this_rec ); +#rec_double.c: +#rec_double.c:} +#rec_double.c: +#rec_double.c: +#rec_double.c:/********************************************************************* +#rec_double.c: * +#rec_double.c: * Function : derived_rec_double_equal +#rec_double.c: * +#rec_double.c: * Description : Compares two double records to see if they are equal. +#rec_double.c: * +#rec_double.c: * Parameters : +#rec_double.c: * 1 : A record. +#rec_double.c: * 2 : Another record. +#rec_double.c: * +#rec_double.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#rec_double.c: * +#rec_double.c: *********************************************************************/ +#rec_double.c:int derived_rec_double_equal( const struct derived_rec_double *this_rec, const struct derived_rec_double *eq_rec ) +#rec_double.c:{ +#rec_double.c: if ( ! gen_list_rec_equal( (const struct gen_list_rec *)this_rec, (struct gen_list_rec *)eq_rec ) ) +#rec_double.c: { +#rec_double.c: return( 0 ); +#rec_double.c: } +#rec_double.c: return( this_rec->contents == eq_rec->contents ); +#rec_double.c: +#rec_double.c:} + + +#rec_double.h:#ifndef REC_DOUBLE_H_INCLUDED +#rec_double.h:#define REC_DOUBLE_H_INCLUDED +#rec_double.h:#define REC_DOUBLE_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#rec_double.h:/********************************************************************* +#rec_double.h: * +#rec_double.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_double.h: * +#rec_double.h: * Purpose : gen_A "derived class" of gen_list_rec. +#rec_double.h: * +#rec_double.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_double.h: * Privoxy team. http://www.privoxy.org/ +#rec_double.h: * +#rec_double.h: * This program is free software; you can redistribute it +#rec_double.h: * and/or modify it under the terms of the GNU General +#rec_double.h: * Public License as published by the Free Software +#rec_double.h: * Foundation; either version 2 of the License, or (at +#rec_double.h: * your option) any later version. +#rec_double.h: * +#rec_double.h: * This program is distributed in the hope that it will +#rec_double.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_double.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_double.h: * PARTICULAR PURPOSE. See the GNU General Public +#rec_double.h: * License for more details. +#rec_double.h: * +#rec_double.h: * The GNU General Public License should be included with +#rec_double.h: * this file. If not, you can view it at +#rec_double.h: * http://www.gnu.org/copyleft/gpl.html +#rec_double.h: * or write to the Free Software Foundation, Inc., 59 +#rec_double.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_double.h: * +#rec_double.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_double.h: * and edit IJB, correctly. +#rec_double.h: * +#rec_double.h: * Revisions : +#rec_double.h: * $Log: contrib.sh,v $ +#rec_double.h: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_double.h: * name change related issues +#rec_double.h: * +#rec_double.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_double.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_double.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_double.h: * contrib directory and I cannot upload a tarball ... it gets +#rec_double.h: * corrupted). This script will expand all files needed to create the +#rec_double.h: * linked list modules and an example program. Please see the README. +#rec_double.h: * Feed back is welcomed. Enjoy. +#rec_double.h: * +#rec_double.h: * +#rec_double.h: *********************************************************************/ +#rec_double.h: +#rec_double.h: +#rec_double.h:#ifdef __cplusplus +#rec_double.h:extern "C" { +#rec_double.h:#endif +#rec_double.h: +#rec_double.h: +#rec_double.h:struct derived_rec_double +#rec_double.h:{ +#rec_double.h: /* private: */ +#rec_double.h: struct gen_list_rec parent_rec; +#rec_double.h: double contents; +#rec_double.h:}; +#rec_double.h: +#rec_double.h:/* public: */ +#rec_double.h:extern struct derived_rec_double * derived_rec_double_construct( const double _contents ); +#rec_double.h:extern struct derived_rec_double * derived_rec_double_copy_construct( const struct derived_rec_double *this_rec ); +#rec_double.h:extern struct derived_rec_double * derived_rec_double_destruct( struct derived_rec_double *this_rec ); +#rec_double.h:extern const struct derived_rec_double *derived_rec_double_stream( const struct derived_rec_double *this_rec ); +#rec_double.h:extern int derived_rec_double_equal( const struct derived_rec_double *this_rec, const struct derived_rec_double *eq_rec ); +#rec_double.h: +#rec_double.h:/* struct/class COMPLETE */ +#rec_double.h: +#rec_double.h: +#rec_double.h:#ifdef __cplusplus +#rec_double.h:} /* extern "C" */ +#rec_double.h:#endif +#rec_double.h: +#rec_double.h:#endif /* ndef REC_DOUBLE_H_INCLUDED */ +#rec_double.h: +#rec_double.h:/* +#rec_double.h: Local Variables: +#rec_double.h: tab-width: 3 +#rec_double.h: end: +#rec_double.h:*/ + + +#rec_long.c:const char rec_long_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_long.c: * +#rec_long.c: * Purpose : A "derived class" of gen_list_rec. +#rec_long.c: * +#rec_long.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_long.c: * Privoxy team. http://www.privoxy.org/ +#rec_long.c: * +#rec_long.c: * This program is free software; you can redistribute it +#rec_long.c: * and/or modify it under the terms of the GNU General +#rec_long.c: * Public License as published by the Free Software +#rec_long.c: * Foundation; either version 2 of the License, or (at +#rec_long.c: * your option) any later version. +#rec_long.c: * +#rec_long.c: * This program is distributed in the hope that it will +#rec_long.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_long.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_long.c: * PARTICULAR PURPOSE. See the GNU General Public +#rec_long.c: * License for more details. +#rec_long.c: * +#rec_long.c: * The GNU General Public License should be included with +#rec_long.c: * this file. If not, you can view it at +#rec_long.c: * http://www.gnu.org/copyleft/gpl.html +#rec_long.c: * or write to the Free Software Foundation, Inc., 59 +#rec_long.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_long.c: * +#rec_long.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_long.c: * and edit IJB, correctly. +#rec_long.c: * +#rec_long.c: * Revisions : +#rec_long.c: * $Log: contrib.sh,v $ +#rec_long.c: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_long.c: * name change related issues +#rec_long.c: * +#rec_long.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_long.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_long.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_long.c: * contrib directory and I cannot upload a tarball ... it gets +#rec_long.c: * corrupted). This script will expand all files needed to create the +#rec_long.c: * linked list modules and an example program. Please see the README. +#rec_long.c: * Feed back is welcomed. Enjoy. +#rec_long.c: * +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c: +#rec_long.c: +#rec_long.c:#include +#rec_long.c:#include +#rec_long.c:#include +#rec_long.c:#include +#rec_long.c: +#rec_long.c:#include "gen_list.h" +#rec_long.c:#include "rec_long.h" +#rec_long.c: +#rec_long.c:const char rec_long_h_rcs[] = REC_LONG_H_VERSION; +#rec_long.c: +#rec_long.c: +#rec_long.c:static const rec_method rec_long_vtable[] = +#rec_long.c:{ +#rec_long.c: (rec_method)derived_rec_long_copy_construct, +#rec_long.c: (rec_method)derived_rec_long_destruct, +#rec_long.c: (rec_method)derived_rec_long_stream, +#rec_long.c: (rec_method)derived_rec_long_equal +#rec_long.c:}; +#rec_long.c: +#rec_long.c: +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * Function : derived_rec_long_construct +#rec_long.c: * +#rec_long.c: * Description : A simple derived record class that contains 1 string. +#rec_long.c: * +#rec_long.c: * Parameters : +#rec_long.c: * 1 : The record +#rec_long.c: * 2 : The string to contain. +#rec_long.c: * +#rec_long.c: * Returns : A pointer to the constructed record. +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c:struct derived_rec_long *derived_rec_long_construct( const long _contents ) +#rec_long.c:{ +#rec_long.c: struct derived_rec_long *this_rec = (struct derived_rec_long *)gen_list_rec_construct( +#rec_long.c: ISA_LONG, +#rec_long.c: sizeof( struct derived_rec_long ), +#rec_long.c: rec_long_vtable +#rec_long.c: ); +#rec_long.c: +#rec_long.c: this_rec->contents = _contents; +#rec_long.c: +#rec_long.c: LIST_SHOW( printf( "\ +#rec_long.c:\t\tlong construct new rec\t\t\t\t= %p +#rec_long.c:\t\tlong construct new rec contents\t= %d\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_long.c: +#rec_long.c: return( this_rec ); +#rec_long.c: +#rec_long.c:} +#rec_long.c: +#rec_long.c: +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * Function : derived_rec_long_copy_construct +#rec_long.c: * +#rec_long.c: * Description : Copies one long record to another. +#rec_long.c: * +#rec_long.c: * Parameters : +#rec_long.c: * 1 : Existing record. +#rec_long.c: * 2 : Copy record. +#rec_long.c: * +#rec_long.c: * Returns : The newly constructed copy record. +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c:struct derived_rec_long *derived_rec_long_copy_construct( const struct derived_rec_long *this_rec ) +#rec_long.c:{ +#rec_long.c: struct derived_rec_long *copy_rec = (struct derived_rec_long *)gen_list_rec_copy_construct( (struct gen_list_rec *)this_rec ); +#rec_long.c: copy_rec->contents = - this_rec->contents; +#rec_long.c: +#rec_long.c: LIST_SHOW( printf( "\ +#rec_long.c:\t\tlong copy construct new gen rec\t\t\t\t= %p => %p +#rec_long.c:\t\tlong copy construct new gen rec contents\t= %d\n\n", (const void *)this_rec, (const void *)copy_rec, copy_rec->contents ) ); +#rec_long.c: +#rec_long.c: return( copy_rec ); +#rec_long.c: +#rec_long.c:} +#rec_long.c: +#rec_long.c: +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * Function : derived_rec_long_destruct +#rec_long.c: * +#rec_long.c: * Description : Destruct the long record. +#rec_long.c: * +#rec_long.c: * Parameters : +#rec_long.c: * 1 : The record. +#rec_long.c: * +#rec_long.c: * Returns : NULL +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c:struct derived_rec_long *derived_rec_long_destruct( struct derived_rec_long *this_rec ) +#rec_long.c:{ +#rec_long.c: LIST_SHOW( printf( "\ +#rec_long.c:\t\tlong destruct this_rec\t\t\t\t= %p +#rec_long.c:\t\tlong destruct this_rec->contents\t= %d\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_long.c: +#rec_long.c: this_rec->contents = -1; +#rec_long.c: return( (struct derived_rec_long *)gen_list_rec_destruct( (struct gen_list_rec *)this_rec ) ); +#rec_long.c: +#rec_long.c:} +#rec_long.c: +#rec_long.c: +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * Function : derived_rec_long_stream +#rec_long.c: * +#rec_long.c: * Description : Displays all long attributes on the STDOUT stream. +#rec_long.c: * +#rec_long.c: * Parameters : +#rec_long.c: * 1 : The record. +#rec_long.c: * +#rec_long.c: * Returns : The record. +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c:const struct derived_rec_long *derived_rec_long_stream( const struct derived_rec_long *this_rec ) +#rec_long.c:{ +#rec_long.c: this_rec = (struct derived_rec_long *)gen_list_rec_stream( +#rec_long.c: (struct gen_list_rec *)this_rec +#rec_long.c: ); +#rec_long.c: LIST_SHOW( printf( "\ +#rec_long.c:\t\tlong stream this_rec\t\t\t\t\t= %p +#rec_long.c:\t\tlong stream this_rec->contents\t= %d\n\n", (const void *)this_rec, this_rec->contents ) ); +#rec_long.c: +#rec_long.c: return( this_rec ); +#rec_long.c: +#rec_long.c:} +#rec_long.c: +#rec_long.c: +#rec_long.c:/********************************************************************* +#rec_long.c: * +#rec_long.c: * Function : derived_rec_long_equal +#rec_long.c: * +#rec_long.c: * Description : Compares two long records to see if they are equal. +#rec_long.c: * +#rec_long.c: * Parameters : +#rec_long.c: * 1 : A record. +#rec_long.c: * 2 : Another record. +#rec_long.c: * +#rec_long.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#rec_long.c: * +#rec_long.c: *********************************************************************/ +#rec_long.c:int derived_rec_long_equal( const struct derived_rec_long *this_rec, const struct derived_rec_long *eq_rec ) +#rec_long.c:{ +#rec_long.c: if ( ! gen_list_rec_equal( (const struct gen_list_rec *)this_rec, (struct gen_list_rec *)eq_rec ) ) +#rec_long.c: { +#rec_long.c: return( 0 ); +#rec_long.c: } +#rec_long.c: return( this_rec->contents == eq_rec->contents ); +#rec_long.c: +#rec_long.c:} + + +#rec_long.h:#ifndef REC_LONG_H_INCLUDED +#rec_long.h:#define REC_LONG_H_INCLUDED +#rec_long.h:#define REC_LONG_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#rec_long.h:/********************************************************************* +#rec_long.h: * +#rec_long.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_long.h: * +#rec_long.h: * Purpose : A "derived class" of gen_list_rec. +#rec_long.h: * +#rec_long.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_long.h: * Privoxy team. http://www.privoxy.org/ +#rec_long.h: * +#rec_long.h: * This program is free software; you can redistribute it +#rec_long.h: * and/or modify it under the terms of the GNU General +#rec_long.h: * Public License as published by the Free Software +#rec_long.h: * Foundation; either version 2 of the License, or (at +#rec_long.h: * your option) any later version. +#rec_long.h: * +#rec_long.h: * This program is distributed in the hope that it will +#rec_long.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_long.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_long.h: * PARTICULAR PURPOSE. See the GNU General Public +#rec_long.h: * License for more details. +#rec_long.h: * +#rec_long.h: * The GNU General Public License should be included with +#rec_long.h: * this file. If not, you can view it at +#rec_long.h: * http://www.gnu.org/copyleft/gpl.html +#rec_long.h: * or write to the Free Software Foundation, Inc., 59 +#rec_long.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_long.h: * +#rec_long.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_long.h: * and edit IJB, correctly. +#rec_long.h: * +#rec_long.h: * Revisions : +#rec_long.h: * $Log: contrib.sh,v $ +#rec_long.h: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_long.h: * name change related issues +#rec_long.h: * +#rec_long.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_long.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_long.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_long.h: * contrib directory and I cannot upload a tarball ... it gets +#rec_long.h: * corrupted). This script will expand all files needed to create the +#rec_long.h: * linked list modules and an example program. Please see the README. +#rec_long.h: * Feed back is welcomed. Enjoy. +#rec_long.h: * +#rec_long.h: * +#rec_long.h: *********************************************************************/ +#rec_long.h: +#rec_long.h: +#rec_long.h:#ifdef __cplusplus +#rec_long.h:extern "C" { +#rec_long.h:#endif +#rec_long.h: +#rec_long.h: +#rec_long.h:struct derived_rec_long +#rec_long.h:{ +#rec_long.h: /* private: */ +#rec_long.h: struct gen_list_rec parent_rec; +#rec_long.h: long contents; +#rec_long.h:}; +#rec_long.h: +#rec_long.h:/* public: */ +#rec_long.h:extern struct derived_rec_long * derived_rec_long_construct( const long _contents ); +#rec_long.h:extern struct derived_rec_long * derived_rec_long_copy_construct( const struct derived_rec_long *this_rec ); +#rec_long.h:extern struct derived_rec_long * derived_rec_long_destruct( struct derived_rec_long *this_rec ); +#rec_long.h:extern const struct derived_rec_long *derived_rec_long_stream( const struct derived_rec_long *this_rec ); +#rec_long.h:extern int derived_rec_long_equal( const struct derived_rec_long *this_rec, const struct derived_rec_long *eq_rec ); +#rec_long.h: +#rec_long.h:/* struct/class COMPLETE */ +#rec_long.h: +#rec_long.h: +#rec_long.h:#ifdef __cplusplus +#rec_long.h:} /* extern "C" */ +#rec_long.h:#endif +#rec_long.h: +#rec_long.h:#endif /* ndef REC_LONG_H_INCLUDED */ +#rec_long.h: +#rec_long.h:/* +#rec_long.h: Local Variables: +#rec_long.h: tab-width: 3 +#rec_long.h: end: +#rec_long.h:*/ + + +#rec_malloc_police.c:const char rec_malloc_police_rcs[] = "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $"; +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_malloc_police.c: * +#rec_malloc_police.c: * Purpose : A "derived class" of gen_list_rec. +#rec_malloc_police.c: * This class helps to build a list of allocated and +#rec_malloc_police.c: * freed memory. When the program exits, we will print +#rec_malloc_police.c: * a list of all memory that was allocated, but never +#rec_malloc_police.c: * freed. This could be most helpful to developers +#rec_malloc_police.c: * and debugers. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_malloc_police.c: * Privoxy team. http://www.privoxy.org/ +#rec_malloc_police.c: * +#rec_malloc_police.c: * This program is free software; you can redistribute it +#rec_malloc_police.c: * and/or modify it under the terms of the GNU General +#rec_malloc_police.c: * Public License as published by the Free Software +#rec_malloc_police.c: * Foundation; either version 2 of the License, or (at +#rec_malloc_police.c: * your option) any later version. +#rec_malloc_police.c: * +#rec_malloc_police.c: * This program is distributed in the hope that it will +#rec_malloc_police.c: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_malloc_police.c: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_malloc_police.c: * PARTICULAR PURPOSE. See the GNU General Public +#rec_malloc_police.c: * License for more details. +#rec_malloc_police.c: * +#rec_malloc_police.c: * The GNU General Public License should be included with +#rec_malloc_police.c: * this file. If not, you can view it at +#rec_malloc_police.c: * http://www.gnu.org/copyleft/gpl.html +#rec_malloc_police.c: * or write to the Free Software Foundation, Inc., 59 +#rec_malloc_police.c: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_malloc_police.c: * +#rec_malloc_police.c: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_malloc_police.c: * and edit IJB, correctly. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Revisions : +#rec_malloc_police.c: * $Log: contrib.sh,v $ +#rec_malloc_police.c: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_malloc_police.c: * name change related issues +#rec_malloc_police.c: * +#rec_malloc_police.c: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_malloc_police.c: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_malloc_police.c: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_malloc_police.c: * contrib directory and I cannot upload a tarball ... it gets +#rec_malloc_police.c: * corrupted). This script will expand all files needed to create the +#rec_malloc_police.c: * linked list modules and an example program. Please see the README. +#rec_malloc_police.c: * Feed back is welcomed. Enjoy. +#rec_malloc_police.c: * +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:#include +#rec_malloc_police.c: +#rec_malloc_police.c:#include "gen_list.h" +#rec_malloc_police.c:#include "malloc_police.h" +#rec_malloc_police.c:#include "rec_malloc_police.h" +#rec_malloc_police.c: +#rec_malloc_police.c:const char rec_malloc_police_h_rcs[] = REC_MALLOC_POLICE_H_VERSION; +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:static const rec_method rec_malloc_police_vtable[] = +#rec_malloc_police.c:{ +#rec_malloc_police.c: (rec_method)derived_rec_malloc_police_copy_construct, +#rec_malloc_police.c: (rec_method)derived_rec_malloc_police_destruct, +#rec_malloc_police.c: (rec_method)derived_rec_malloc_police_stream, +#rec_malloc_police.c: (rec_method)derived_rec_malloc_police_equal +#rec_malloc_police.c:}; +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * Function : derived_rec_malloc_police_construct +#rec_malloc_police.c: * +#rec_malloc_police.c: * Description : A simple derived record class that contains 1 string. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Parameters : +#rec_malloc_police.c: * 1 : The record +#rec_malloc_police.c: * 2 : The string to contain. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Returns : A pointer to the constructed record. +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c:struct derived_rec_malloc_police *derived_rec_malloc_police_construct( void *_alloced_addr, char *_source_where, size_t _sz ) +#rec_malloc_police.c:{ +#rec_malloc_police.c: struct derived_rec_malloc_police *this_rec; +#rec_malloc_police.c: list_is_quiet ++; +#rec_malloc_police.c: +#rec_malloc_police.c: this_rec = (struct derived_rec_malloc_police *)gen_list_rec_construct( +#rec_malloc_police.c: ISA_MALLOC_POLICE, +#rec_malloc_police.c: sizeof( struct derived_rec_malloc_police ), +#rec_malloc_police.c: rec_malloc_police_vtable +#rec_malloc_police.c: ); +#rec_malloc_police.c: +#rec_malloc_police.c: this_rec->alloced_addr = _alloced_addr; +#rec_malloc_police.c: this_rec->source_where = STRDUP( _source_where ); +#rec_malloc_police.c: this_rec->sz = _sz; +#rec_malloc_police.c: +#rec_malloc_police.c:/* LIST_SHOW( printf( "\ */ +#rec_malloc_police.c:/* \t\tmalloc_police construct new rec\t\t\t\t\t= %p */ +#rec_malloc_police.c:/* \t\tmalloc_police construct new rec alloced_addr = %p */ +#rec_malloc_police.c:/* \t\tmalloc_police construct new rec source_where = %s */ +#rec_malloc_police.c:/* \t\tmalloc_police construct new rec sz\t\t\t\t\t= %ld\n\n", */ +#rec_malloc_police.c:/* (const void *)this_rec, */ +#rec_malloc_police.c:/* this_rec->alloced_addr, */ +#rec_malloc_police.c:/* this_rec->source_where, */ +#rec_malloc_police.c:/* this_rec->sz */ +#rec_malloc_police.c:/* ) ); */ +#rec_malloc_police.c: +#rec_malloc_police.c: list_is_quiet --; +#rec_malloc_police.c: +#rec_malloc_police.c: return( this_rec ); +#rec_malloc_police.c: +#rec_malloc_police.c:} +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * Function : derived_rec_malloc_police_copy_construct +#rec_malloc_police.c: * +#rec_malloc_police.c: * Description : Copies one malloc_police record to another. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Parameters : +#rec_malloc_police.c: * 1 : Existing record. +#rec_malloc_police.c: * 2 : Copy record. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Returns : The newly constructed copy record. +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c:struct derived_rec_malloc_police *derived_rec_malloc_police_copy_construct( const struct derived_rec_malloc_police *this_rec ) +#rec_malloc_police.c:{ +#rec_malloc_police.c: int len; +#rec_malloc_police.c: char *new_contents; +#rec_malloc_police.c: struct derived_rec_malloc_police *copy_rec; +#rec_malloc_police.c: +#rec_malloc_police.c: list_is_quiet ++; +#rec_malloc_police.c: +#rec_malloc_police.c: copy_rec = (struct derived_rec_malloc_police *)gen_list_rec_copy_construct( (struct gen_list_rec *)this_rec ); +#rec_malloc_police.c: +#rec_malloc_police.c: copy_rec->alloced_addr = this_rec->alloced_addr; +#rec_malloc_police.c: copy_rec->source_where = STRDUP( this_rec->source_where ); +#rec_malloc_police.c: copy_rec->sz = this_rec->sz; +#rec_malloc_police.c: +#rec_malloc_police.c:/* LIST_SHOW( printf( "\ */ +#rec_malloc_police.c:/* \t\tmalloc_police copy construct new gen rec = %p => %p */ +#rec_malloc_police.c:/* \t\tmalloc_police copy construct new gen rec alloced_addr = %p */ +#rec_malloc_police.c:/* \t\tmalloc_police copy construct new gen rec source_where = %s */ +#rec_malloc_police.c:/* \t\tmalloc_police copy construct new gen rec sz\t\t\t\t\t= %ld\n\n", */ +#rec_malloc_police.c:/* (const void *)this_rec, (const void *)copy_rec, */ +#rec_malloc_police.c:/* copy_rec->alloced_addr, */ +#rec_malloc_police.c:/* copy_rec->source_where, */ +#rec_malloc_police.c:/* copy_rec->sz */ +#rec_malloc_police.c:/* ) ); */ +#rec_malloc_police.c: +#rec_malloc_police.c: list_is_quiet --; +#rec_malloc_police.c: +#rec_malloc_police.c: return( copy_rec ); +#rec_malloc_police.c: +#rec_malloc_police.c:} +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * Function : derived_rec_malloc_police_destruct +#rec_malloc_police.c: * +#rec_malloc_police.c: * Description : Destruct the malloc_police record. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Parameters : +#rec_malloc_police.c: * 1 : The record. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Returns : NULL +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c:struct derived_rec_malloc_police *derived_rec_malloc_police_destruct( struct derived_rec_malloc_police *this_rec ) +#rec_malloc_police.c:{ +#rec_malloc_police.c: struct derived_rec_malloc_police *d; +#rec_malloc_police.c: list_is_quiet ++; +#rec_malloc_police.c: +#rec_malloc_police.c:/* LIST_SHOW( printf( "\ */ +#rec_malloc_police.c:/* \t\tmalloc_police destruct this_rec\t\t\t\t\t\t= %p */ +#rec_malloc_police.c:/* \t\tmalloc_police destruct this_rec->alloced_addr\t= %p */ +#rec_malloc_police.c:/* \t\tmalloc_police destruct this_rec->source_where\t= %s, */ +#rec_malloc_police.c:/* \t\tmalloc_police destruct this_rec->sz\t\t\t\t\t= %ld\n\n", */ +#rec_malloc_police.c:/* (const void *)this_rec, */ +#rec_malloc_police.c:/* this_rec->alloced_addr, */ +#rec_malloc_police.c:/* this_rec->source_where, */ +#rec_malloc_police.c:/* this_rec->sz */ +#rec_malloc_police.c:/* ) ); */ +#rec_malloc_police.c: +#rec_malloc_police.c: memset( this_rec->source_where, '!', strlen( this_rec->source_where ) ); +#rec_malloc_police.c: FREE( this_rec->source_where ); +#rec_malloc_police.c: +#rec_malloc_police.c: d = (struct derived_rec_malloc_police *)gen_list_rec_destruct( (struct gen_list_rec *)this_rec ); +#rec_malloc_police.c: list_is_quiet --; +#rec_malloc_police.c: +#rec_malloc_police.c: return( d ); +#rec_malloc_police.c: +#rec_malloc_police.c:} +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * Function : derived_rec_malloc_police_stream +#rec_malloc_police.c: * +#rec_malloc_police.c: * Description : Displays all malloc_police attributes on the STDOUT stream. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Parameters : +#rec_malloc_police.c: * 1 : The record. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Returns : The record. +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c:const struct derived_rec_malloc_police *derived_rec_malloc_police_stream( const struct derived_rec_malloc_police *this_rec ) +#rec_malloc_police.c:{ +#rec_malloc_police.c: list_is_quiet ++; +#rec_malloc_police.c: +#rec_malloc_police.c: this_rec = (struct derived_rec_malloc_police *)gen_list_rec_stream( +#rec_malloc_police.c: (struct gen_list_rec *)this_rec +#rec_malloc_police.c: ); +#rec_malloc_police.c: LIST_SHOW( printf( "\ +#rec_malloc_police.c:\t\tmalloc_police stream this_rec\t\t\t\t\t= %p +#rec_malloc_police.c:\t\tmalloc_police stream this_rec->alloced_addr\t= %p +#rec_malloc_police.c:\t\tmalloc_police stream this_rec->source_where\t= %s +#rec_malloc_police.c:\t\tmalloc_police stream this_rec->sz\t\t\t\t= %ld\n\n", +#rec_malloc_police.c: (const void *)this_rec, +#rec_malloc_police.c: this_rec->alloced_addr, +#rec_malloc_police.c: this_rec->source_where, +#rec_malloc_police.c: this_rec->sz +#rec_malloc_police.c: ) ); +#rec_malloc_police.c: +#rec_malloc_police.c: list_is_quiet --; +#rec_malloc_police.c: return( this_rec ); +#rec_malloc_police.c: +#rec_malloc_police.c:} +#rec_malloc_police.c: +#rec_malloc_police.c: +#rec_malloc_police.c:/********************************************************************* +#rec_malloc_police.c: * +#rec_malloc_police.c: * Function : derived_rec_malloc_police_equal +#rec_malloc_police.c: * +#rec_malloc_police.c: * Description : Compares two malloc_police records to see if they are equal. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Parameters : +#rec_malloc_police.c: * 1 : A record. +#rec_malloc_police.c: * 2 : Another record. +#rec_malloc_police.c: * +#rec_malloc_police.c: * Returns : 0 => NOT EQUAL, anything else is EQUAL. +#rec_malloc_police.c: * +#rec_malloc_police.c: *********************************************************************/ +#rec_malloc_police.c:int derived_rec_malloc_police_equal( const struct derived_rec_malloc_police *this_rec, const struct derived_rec_malloc_police *eq_rec ) +#rec_malloc_police.c:{ +#rec_malloc_police.c: list_is_quiet ++; +#rec_malloc_police.c: +#rec_malloc_police.c: if ( ! gen_list_rec_equal( (const struct gen_list_rec *)this_rec, (struct gen_list_rec *)eq_rec ) ) +#rec_malloc_police.c: { +#rec_malloc_police.c: return( 0 ); +#rec_malloc_police.c: } +#rec_malloc_police.c: +#rec_malloc_police.c: list_is_quiet --; +#rec_malloc_police.c: return( this_rec->alloced_addr == eq_rec->alloced_addr ); +#rec_malloc_police.c: +#rec_malloc_police.c:} + + +#rec_malloc_police.h:#ifndef REC_MALLOC_POLICE_H_INCLUDED +#rec_malloc_police.h:#define REC_MALLOC_POLICE_H_INCLUDED +#rec_malloc_police.h:#define REC_MALLOC_POLICE_H_VERSION "$Id: contrib.sh,v 1.2 2002/03/24 13:25:43 swa Exp $" +#rec_malloc_police.h:/********************************************************************* +#rec_malloc_police.h: * +#rec_malloc_police.h: * File : $Source: /cvsroot/ijbswa/current/contrib.sh,v $ +#rec_malloc_police.h: * +#rec_malloc_police.h: * Purpose : A "derived class" of gen_list_rec. +#rec_malloc_police.h: * This class helps to build a list of allocated and +#rec_malloc_police.h: * freed memory. When the program exits, we will print +#rec_malloc_police.h: * a list of all memory that was allocated, but never +#rec_malloc_police.h: * freed. This could be most helpful to developers +#rec_malloc_police.h: * and debugers. +#rec_malloc_police.h: * +#rec_malloc_police.h: * Copyright : Written by and Copyright (C) 2001 the SourceForge +#rec_malloc_police.h: * Privoxy team. http://www.privoxy.org/ +#rec_malloc_police.h: * +#rec_malloc_police.h: * This program is free software; you can redistribute it +#rec_malloc_police.h: * and/or modify it under the terms of the GNU General +#rec_malloc_police.h: * Public License as published by the Free Software +#rec_malloc_police.h: * Foundation; either version 2 of the License, or (at +#rec_malloc_police.h: * your option) any later version. +#rec_malloc_police.h: * +#rec_malloc_police.h: * This program is distributed in the hope that it will +#rec_malloc_police.h: * be useful, but WITHOUT ANY WARRANTY; without even the +#rec_malloc_police.h: * implied warranty of MERCHANTABILITY or FITNESS FOR A +#rec_malloc_police.h: * PARTICULAR PURPOSE. See the GNU General Public +#rec_malloc_police.h: * License for more details. +#rec_malloc_police.h: * +#rec_malloc_police.h: * The GNU General Public License should be included with +#rec_malloc_police.h: * this file. If not, you can view it at +#rec_malloc_police.h: * http://www.gnu.org/copyleft/gpl.html +#rec_malloc_police.h: * or write to the Free Software Foundation, Inc., 59 +#rec_malloc_police.h: * Temple Place - Suite 330, Boston, MA 02111-1307, USA. +#rec_malloc_police.h: * +#rec_malloc_police.h: * VI users : Please "set tabstop=3 shiftwidth=3" to view this file, +#rec_malloc_police.h: * and edit IJB, correctly. +#rec_malloc_police.h: * +#rec_malloc_police.h: * Revisions : +#rec_malloc_police.h: * $Log: contrib.sh,v $ +#rec_malloc_police.h: * Revision 1.2 2002/03/24 13:25:43 swa +#rec_malloc_police.h: * name change related issues +#rec_malloc_police.h: * +#rec_malloc_police.h: * Revision 1.1 2001/12/07 01:54:50 iwanttokeepanon +#rec_malloc_police.h: * A contribution/recomendation to the IJBSWA group for a generic doubly +#rec_malloc_police.h: * linked list. This file is a home brew "bash tar" (I cannot create a +#rec_malloc_police.h: * contrib directory and I cannot upload a tarball ... it gets +#rec_malloc_police.h: * corrupted). This script will expand all files needed to create the +#rec_malloc_police.h: * linked list modules and an example program. Please see the README. +#rec_malloc_police.h: * Feed back is welcomed. Enjoy. +#rec_malloc_police.h: * +#rec_malloc_police.h: * +#rec_malloc_police.h: *********************************************************************/ +#rec_malloc_police.h: +#rec_malloc_police.h: +#rec_malloc_police.h:#ifdef __cplusplus +#rec_malloc_police.h:extern "C" { +#rec_malloc_police.h:#endif +#rec_malloc_police.h: +#rec_malloc_police.h: +#rec_malloc_police.h:struct derived_rec_malloc_police +#rec_malloc_police.h:{ +#rec_malloc_police.h: /* private: */ +#rec_malloc_police.h: struct gen_list_rec parent_rec; +#rec_malloc_police.h: void *alloced_addr; +#rec_malloc_police.h: char *source_where; +#rec_malloc_police.h: size_t sz; +#rec_malloc_police.h:}; +#rec_malloc_police.h: +#rec_malloc_police.h:/* public: */ +#rec_malloc_police.h:extern struct derived_rec_malloc_police * derived_rec_malloc_police_construct( void *_alloced_addr, char *_source_where, size_t _sz ); +#rec_malloc_police.h:extern struct derived_rec_malloc_police * derived_rec_malloc_police_copy_construct( const struct derived_rec_malloc_police *this_rec ); +#rec_malloc_police.h:extern struct derived_rec_malloc_police * derived_rec_malloc_police_destruct( struct derived_rec_malloc_police *this_rec ); +#rec_malloc_police.h:extern const struct derived_rec_malloc_police *derived_rec_malloc_police_stream( const struct derived_rec_malloc_police *this_rec ); +#rec_malloc_police.h:extern int derived_rec_malloc_police_equal( const struct derived_rec_malloc_police *this_rec, const struct derived_rec_malloc_police *eq_rec ); +#rec_malloc_police.h: +#rec_malloc_police.h:/* struct/class COMPLETE */ +#rec_malloc_police.h: +#rec_malloc_police.h: +#rec_malloc_police.h:#ifdef __cplusplus +#rec_malloc_police.h:} /* extern "C" */ +#rec_malloc_police.h:#endif +#rec_malloc_police.h: +#rec_malloc_police.h: +#rec_malloc_police.h:#endif /* ndef REC_MALLOC_POLICE_H_INCLUDED */ +#rec_malloc_police.h: +#rec_malloc_police.h:/* +#rec_malloc_police.h: Local Variables: +#rec_malloc_police.h: tab-width: 3 +#rec_malloc_police.h: end: +#rec_malloc_police.h:*/ + + +########################################################################### +## Description: makeInsertableFile +## Use this function to make a file suitable for insertion into this +## script. This file (x), will contain all of the files listed. +## +## Inputs : +## None +## +## Outputs : +## Return status: (0) - Everything is Okay, anything else is an error +########################################################################### + +function makeInsertableFile { + + rm -f x + + for i in ${fileList}; do + sed -e "s/^/#${i}:/" ${i} >> x + echo "" >> x + echo "" >> x + done + + return 0 + +} + + +# +#Local Variables: +#tab-width: 3 +#end: +# diff --git a/cookiefile b/cookiefile deleted file mode 100644 index f17f4b0c..00000000 --- a/cookiefile +++ /dev/null @@ -1,67 +0,0 @@ -# -# This is /etc/junkbuster/cookefile which was put here by a junkbuster rpm -# -# Last modified on Sun Jan 31 22:36:03 1999 (CEST) -# -# -------------------------------------------------------------------------- -# -# Newest version is always available from -# -# http://www.waldherr.org/cookiefile -# -# Read http://www.waldherr.org/junkbuster/update.shtml on how to keep -# this file up-to-date. -# -# For more detail, see http://www.junkbusters.com/ht/en/ijbfaq.html#cookies -# -# Empty lines and lines beginning with a # are ignored. -# To permit an entire site to set cookies, simply include its domain name: -# really-trustyworthy-people.org -# -# You can allow cookies out, but stop them coming in: -# >send-user-cookies.com -# -#>egroups.com -#>tvguide.com -#>wired.com/news/ -#americanexpress.com -#cnn.com -#www.nytimes.com -#yahoo.com -#amazon.de -#amazon.co.uk -#slashdot.org -#www.palmgear.com -#onelist.com -#freshmeat.net - -# Sites that need cookies -javasoft.com -sun.com -msdn.microsoft.com -sourceforge.net -yahoo.com -anonymizer.com - -# Experimenting -ashleycars.co.uk - -# Shopping -dabs.com -overclockers.co.uk -worldpay.com # for quietpc.com -jungle.com -scan.co.uk - -#Shopping: Micro Warehouse's site -#inmac.co.uk -#technomatic.co.uk - -# This is stupid. Without these two entries, the link from McAfee's website -# to their online UK shop gives a 500 server error. -#mcafee.com -#mcafeestoreuk.beyond.com - - - - diff --git a/cygwin.h b/cygwin.h index 4568ea82..b28dd6a0 100644 --- a/cygwin.h +++ b/cygwin.h @@ -1,16 +1,16 @@ -#ifndef _CYGWIN_H -#define _CYGWIN_H -#define CYGWIN_H_VERSION "$Id: cygwin.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef CYGWIN_H_INCLUDED +#define CYGWIN_H_INCLUDED +#define CYGWIN_H_VERSION "$Id: cygwin.h,v 1.3 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/cygwin.h,v $ + * File : $Source: /cvsroot/ijbswa/current/cygwin.h,v $ * * Purpose : The windows.h file seems to be a *tad* different, so I * will bridge the gaps here. Perhaps I should convert the * latest SDK too? Shudder, I think not. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -36,6 +36,16 @@ * * Revisions : * $Log: cygwin.h,v $ + * Revision 1.3 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.2 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.1.1.1 2001/05/15 13:58:51 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -53,7 +63,7 @@ */ #endif /* def __MINGW32__ */ -#endif /* ndef _CYGWIN_H */ +#endif /* ndef CYGWIN_H_INCLUDED */ /* diff --git a/deanimate.c b/deanimate.c new file mode 100644 index 00000000..59ed56e9 --- /dev/null +++ b/deanimate.c @@ -0,0 +1,504 @@ +const char deanimate_rcs[] = "$Id: deanimate.c,v 1.11 2002/03/26 22:29:54 swa Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/deanimate.c,v $ + * + * Purpose : Declares functions to deanimate GIF images on the fly. + * + * Functions declared include: gif_deanimate, buf_free, + * buf_copy, buf_getbyte, gif_skip_data_block, and + * gif_extract_image + * + * Copyright : Written by and Copyright (C) 2001 by the the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the GIF file format specification (see + * http://tronche.com/computer-graphics/gif/gif89a.html) + * and ideas from the Image::DeAnim Perl module by + * Ken MacFarlane, + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: deanimate.c,v $ + * Revision 1.11 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.10 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.9 2002/03/13 00:27:04 jongfoster + * Killing warnings + * + * Revision 1.8 2002/03/09 19:42:47 jongfoster + * Fixing more warnings + * + * Revision 1.7 2002/03/08 17:46:04 jongfoster + * Fixing int/size_t warnings + * + * Revision 1.6 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.5 2001/09/10 10:16:06 oes + * Silenced compiler warnings + * + * Revision 1.4 2001/07/18 12:28:49 oes + * - Added feature for extracting the first frame + * to gif_deanimate + * - Separated image buffer extension into buf_extend + * - Extended gif deanimation to GIF87a (untested!) + * - Cosmetics + * + * Revision 1.3 2001/07/15 13:57:50 jongfoster + * Adding #includes string.h and miscutil.h + * + * Revision 1.2 2001/07/13 13:46:20 oes + * Introduced GIF deanimation feature + * + * + **********************************************************************/ + + +#include "config.h" + +#include +#include + +#include "project.h" +#include "deanimate.h" +#include "miscutil.h" + +const char deanimate_h_rcs[] = DEANIMATE_H_VERSION; + +/********************************************************************* + * + * Function : buf_free + * + * Description : Safely frees a struct binbuffer + * + * Parameters : + * 1 : buf = Pointer to the binbuffer to be freed + * + * Returns : N/A + * + *********************************************************************/ +void buf_free(struct binbuffer *buf) +{ + if (buf == NULL) return; + + if (buf->buffer != NULL) + { + free(buf->buffer); + } + + free(buf); + +} + + +/********************************************************************* + * + * Function : buf_extend + * + * Description : Ensure that a given binbuffer can hold a given amount + * of bytes, by reallocating its buffer if necessary. + * Allocate new mem in chunks of 1024 bytes, so we don't + * have to realloc() too often. + * + * Parameters : + * 1 : buf = Pointer to the binbuffer + * 2 : length = Desired minimum size + * + * + * Returns : 0 on success, 1 on failiure. + * + *********************************************************************/ +int buf_extend(struct binbuffer *buf, size_t length) +{ + char *newbuf; + + if (buf->offset + length > buf->size) + { + buf->size = ((buf->size + length + (size_t)1023) & ~(size_t)1023); + newbuf = (char *)realloc(buf->buffer, buf->size); + + if (newbuf == NULL) + { + freez(buf->buffer); + return 1; + } + else + { + buf->buffer = newbuf; + return 0; + } + } + return 0; + +} + + +/********************************************************************* + * + * Function : buf_copy + * + * Description : Safely copies a given amount of bytes from one + * struct binbuffer to another, advancing the + * offsets appropriately. + * + * Parameters : + * 1 : src = Pointer to the source binbuffer + * 2 : dst = Pointer to the destination binbuffer + * 3 : length = Number of bytes to be copied + * + * Returns : 0 on success, 1 on failiure. + * + *********************************************************************/ +int buf_copy(struct binbuffer *src, struct binbuffer *dst, size_t length) +{ + + /* + * Sanity check: Can't copy more data than we have + */ + if (src->offset + length > src->size) + { + return 1; + } + + /* + * Ensure that dst can hold the new data + */ + if (buf_extend(dst, length)) + { + return 1; + } + + /* + * Now that it's safe, memcpy() the desired amount of + * data from src to dst and adjust the offsets + */ + memcpy(dst->buffer + dst->offset, src->buffer + src->offset, length); + src->offset += length; + dst->offset += length; + + return 0; + +} + + +/********************************************************************* + * + * Function : buf_getbyte + * + * Description : Safely gets a byte from a given binbuffer at a + * given offset + * + * Parameters : + * 1 : src = Pointer to the source binbuffer + * 2 : offset = Offset to the desired byte + * + * Returns : The byte on success, or 0 on failiure + * + *********************************************************************/ +unsigned char buf_getbyte(struct binbuffer *src, size_t offset) +{ + if (src->offset + offset < src->size) + { + return (unsigned char)*(src->buffer + src->offset + offset); + } + else + { + return '\0'; + } + +} + + +/********************************************************************* + * + * Function : gif_skip_data_block + * + * Description : Safely advances the offset of a given struct binbuffer + * that contains a GIF image and whose offset is + * positioned at the start of a data block, behind + * that block. + * + * Parameters : + * 1 : buf = Pointer to the binbuffer + * + * Returns : 0 on success, or 1 on failiure + * + *********************************************************************/ +int gif_skip_data_block(struct binbuffer *buf) +{ + unsigned char c; + + /* + * Data blocks are sequences of chunks, which are headed + * by a one-byte length field, with the last chunk having + * zero length. + */ + while((c = buf_getbyte(buf, 0)) != '\0') + { + if ((buf->offset += c + 1) >= buf->size - 1) + { + return 1; + } + } + buf->offset++; + + return 0; + +} + + +/********************************************************************* + * + * Function : gif_extract_image + * + * Description : Safely extracts an image data block from a given + * struct binbuffer that contains a GIF image and whose + * offset is positioned at the start of a data block + * into a given destination binbuffer. + * + * Parameters : + * 1 : src = Pointer to the source binbuffer + * 2 : dst = Pointer to the destination binbuffer + * + * Returns : 0 on success, or 1 on failiure + * + *********************************************************************/ +int gif_extract_image(struct binbuffer *src, struct binbuffer *dst) +{ + unsigned char c; + + /* + * Remember the colormap flag and copy the image head + */ + c = buf_getbyte(src, 9); + if (buf_copy(src, dst, 10)) + { + return 1; + } + + /* + * If the image has a local colormap, copy it. + */ + if (c & 0x80) + { + if (buf_copy(src, dst, (size_t) 3 * (1 << ((c & 0x07) + 1)))) + { + return 1; + } + } + if (buf_copy(src, dst, 1)) return 1; + + /* + * Copy the image chunk by chunk. + */ + while((c = buf_getbyte(src, 0)) != '\0') + { + if (buf_copy(src, dst, 1 + (size_t) c)) return 1; + } + if (buf_copy(src, dst, 1)) return 1; + + /* + * Trim and rewind the dst buffer + */ + if (NULL == (dst->buffer = (char *)realloc(dst->buffer, dst->offset))) return 1; + dst->size = dst->offset; + dst->offset = 0; + + return(0); + +} + +/********************************************************************* + * + * Function : gif_deanimate + * + * Description : Deanimate a given GIF image, i.e. given a GIF with + * an (optional) image block and an arbitrary number + * of image extension blocks, produce an output GIF with + * only one image block that contains the last image + * (extenstion) block of the original. + * Also strip Comments, Application extenstions, etc. + * + * Parameters : + * 1 : src = Pointer to the source binbuffer + * 2 : dst = Pointer to the destination binbuffer + * 3 : get_first_image = Flag: If set, get the first image + * If unset (default), get the last + * + * Returns : 0 on success, or 1 on failiure + * + *********************************************************************/ +int gif_deanimate(struct binbuffer *src, struct binbuffer *dst, int get_first_image) +{ + unsigned char c; + struct binbuffer *image; + + if (NULL == src || NULL == dst) + { + return 1; + } + + c = buf_getbyte(src, 10); + + /* + * Check & copy GIF header + */ + if (strncmp(src->buffer, "GIF89a", 6) && strncmp(src->buffer, "GIF87a", 6)) + { + return 1; + } + else + { + if (buf_copy(src, dst, 13)) + { + return 1; + } + } + + /* + * Look for global colormap and copy if found. + */ + if(c & 0x80) + { + if (buf_copy(src, dst, (size_t) 3 * (1 << ((c & 0x07) + 1)))) + { + return 1; + } + } + + /* + * Reserve a buffer for the current image block + */ + if (NULL == (image = (struct binbuffer *)zalloc(sizeof(*image)))) + { + return 1; + } + + /* + * Parse the GIF block by block and copy the relevant + * parts to dst + */ + while(src->offset < src->size) + { + switch(buf_getbyte(src, 0)) + { + /* + * End-of-GIF Marker: Append current image and return + */ + case 0x3b: + goto write; + + /* + * Image block: Extract to current image buffer. + */ + case 0x2c: + image->offset = 0; + if (gif_extract_image(src, image)) goto failed; + if (get_first_image) goto write; + continue; + + /* + * Extension block: Look at next byte and decide + */ + case 0x21: + switch (buf_getbyte(src, 1)) + { + /* + * Image extension: Copy extension header and image + * to the current image buffer + */ + case 0xf9: + image->offset = 0; + if (buf_copy(src, image, 8) || buf_getbyte(src, 0) != 0x2c) goto failed; + if (gif_extract_image(src, image)) goto failed; + if (get_first_image) goto write; + continue; + + /* + * Application extension: Skip + */ + case 0xff: + if ((src->offset += 14) >= src->size || gif_skip_data_block(src)) goto failed; + continue; + + /* + * Comment extension: Skip + */ + case 0xfe: + if ((src->offset += 2) >= src->size || gif_skip_data_block(src)) goto failed; + continue; + + /* + * Plain text extension: Skip + */ + case 0x01: + if ((src->offset += 15) >= src->size || gif_skip_data_block(src)) goto failed; + continue; + + /* + * Ooops, what type of extension is that? + */ + default: + goto failed; + + } + + /* + * Ooops, what type of block is that? + */ + default: + goto failed; + + } + } /* -END- while src */ + + /* + * Either we got here by goto, or because the GIF is + * bogus and EOF was reached before an end-of-gif marker + * was found. + */ + +failed: + buf_free(image); + return 1; + + /* + * Append the current image to dst and return + */ + +write: + if (buf_copy(image, dst, image->size)) goto failed; + if (buf_extend(dst, 1)) goto failed; + *(dst->buffer + dst->offset++) = 0x3b; + buf_free(image); + return 0; + +} + + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/deanimate.h b/deanimate.h new file mode 100644 index 00000000..ede98477 --- /dev/null +++ b/deanimate.h @@ -0,0 +1,102 @@ +#ifndef DEANIMATE_H_INCLUDED +#define DEANIMATE_H_INCLUDED +#define DEANIMATE_H_VERSION "$Id: deanimate.h,v 1.7 2002/03/24 13:25:43 swa Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/deanimate.h,v $ + * + * Purpose : Declares functions to deanimate GIF images on the fly. + * + * Functions declared include: gif_deanimate, buf_free + * + * + * Copyright : Written by and Copyright (C) 2001 Andreas S. Oesterhelt + * for the Privoxy team. http://www.privoxy.org/ + * + * Based on ideas from the Image::DeAnim Perl module by + * Ken MacFarlane, + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: deanimate.h,v $ + * Revision 1.7 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.6 2002/03/08 17:46:04 jongfoster + * Fixing int/size_t warnings + * + * Revision 1.5 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.4 2001/07/29 18:50:04 jongfoster + * Fixing "extern C" block, and renaming #define _DEANIMATE_H + * + * Revision 1.3 2001/07/18 12:29:05 oes + * Updated prototype for gif_deanimate + * + * Revision 1.2 2001/07/13 13:46:20 oes + * Introduced GIF deanimation feature + * + * + *********************************************************************/ + + +#ifdef __cplusplus +extern "C" { +#endif + +/* + * A struct that holds a buffer, a read/write offset, + * and the buffer's capacity. + */ +struct binbuffer +{ + char *buffer; + size_t offset; + size_t size; +}; + +/* + * Function prototypes + */ +extern int gif_deanimate(struct binbuffer *src, struct binbuffer *dst, int get_first_image); +extern void buf_free(struct binbuffer *buf); + +/* + * Revision control strings from this header and associated .c file + */ +extern const char deanimate_rcs[]; +extern const char deanimate_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef DEANIMATE_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/debian/changelog b/debian/changelog new file mode 100644 index 00000000..ceaf32ab --- /dev/null +++ b/debian/changelog @@ -0,0 +1,44 @@ +privoxy (2.9.15-beta-0) unstable; urgency=low + + * New upstream version. + * Use upstream docbook build mechanism now. + * Force usage of w3m -dump to convert HTML to ASCII (build depend on it). + * Exclude CVS files from dh_installdocs (when compiling from CVS). + * Add user.action and standard.action to /etc/privoxy. + + -- Roland Rosenfeld Sat, 25 May 2002 20:47:33 +0200 + +privoxy (2.9.14-beta-3) unstable; urgency=low + + * Fix typo ('[' instead of '{') in default.action (Closes: #148122). + * Disable edit-actions and remote-toggle in config file by default + (Closes: #148125). + + -- Roland Rosenfeld Sat, 25 May 2002 11:53:49 +0200 + +privoxy (2.9.14-beta-2) unstable; urgency=low + + * Fix debian/rules clean to really clean. + * Change owner of /etc/privoxy/{*.action|trust} to privoxy in postinst, + to allow modification of these files web interface (Closes: SF-552144). + + -- Roland Rosenfeld Thu, 23 May 2002 18:38:27 +0200 + +privoxy (2.9.14-beta-1) unstable; urgency=low + + * New upstream version. + + -- Roland Rosenfeld Sat, 13 Apr 2002 18:05:26 +0200 + +privoxy (2.9.13-beta-2) unstable; urgency=low + + * Create HTML and ASCII versions of the documentation using docbook now. + + -- Roland Rosenfeld Sun, 31 Mar 2002 23:53:28 +0200 + +privoxy (2.9.13-beta-1) unstable; urgency=low + + * Initial Release. + + -- Roland Rosenfeld Fri, 29 Mar 2002 11:52:03 +0100 + diff --git a/debian/control b/debian/control new file mode 100644 index 00000000..2d235d7c --- /dev/null +++ b/debian/control @@ -0,0 +1,23 @@ +Source: privoxy +Section: web +Priority: optional +Maintainer: Roland Rosenfeld +Build-Depends: debhelper (>> 3.0.0), autoconf, libpcre3-dev, docbook-utils, w3m +Standards-Version: 3.5.6 + +Package: privoxy +Architecture: any +Depends: ${shlibs:Depends}, logrotate, adduser +Description: Privacy enhancing HTTP Proxy + Privoxy is a web proxy with advanced filtering capabilities for + protecting privacy, filtering web page content, managing cookies, + controlling access, and removing ads, banners, pop-ups and other + obnoxious Internet junk. Privoxy has a very flexible configuration + and can be customized to suit individual needs and tastes. Privoxy + has application for both stand-alone systems and multi-user networks. + . + Privoxy is based on the code of the Internet Junkbuster. Junkbuster + was originally written by JunkBusters Corporation, and was released + as free open-source software under the GNU GPL. Stefan Waldherr made + many improvements, and started the SourceForge project to continue + development. Several other developers are now contributing. diff --git a/debian/copyright b/debian/copyright new file mode 100644 index 00000000..2ae2775c --- /dev/null +++ b/debian/copyright @@ -0,0 +1,49 @@ +This package was debianized by Roland Rosenfeld on +Fri, 29 Mar 2002 11:52:03 +0100. + +It was downloaded from http://privoxy.org/ and +http://sourceforge.net/project/showfiles.php?group_id=11118 + +Upstream Authors: ijbswa-developers@lists.sourceforge.net + +Current Project developers: + + Stefan Waldherr + Andreas Oesterhelt + Jon Foster + + Markus Breitenbach + Thomas Steudten + +Originally developed by: + + Junkbusters Corp. + Anonymous Coders + +Copyright: Written by and Copyright (C) 2001 the SourceForge + Privoxy team. http://ijbswa.sourceforge.net + + Based on the Internet Junkbuster originally written + by and Copyright (C) 1997 Anonymous Coders and + Junkbusters Corporation. http://www.junkbusters.com + + This program is free software; you can redistribute it + and/or modify it under the terms of the GNU General + Public License as published by the Free Software + Foundation; either version 2 of the License, or (at + your option) any later version. + + This program is distributed in the hope that it will + be useful, but WITHOUT ANY WARRANTY; without even the + implied warranty of MERCHANTABILITY or FITNESS FOR A + PARTICULAR PURPOSE. See the GNU General Public + License for more details. + + The GNU General Public License should be included with + this file. If not, you can view it at + http://www.gnu.org/copyleft/gpl.html + or write to the Free Software Foundation, Inc., 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA. + +The complete GNU General Public License can be found at +/usr/share/common-licenses/GPL diff --git a/debian/dirs b/debian/dirs new file mode 100644 index 00000000..3414d3bc --- /dev/null +++ b/debian/dirs @@ -0,0 +1,4 @@ +etc/privoxy +usr/sbin +usr/share/doc/privoxy +var/log/privoxy diff --git a/debian/doc-base.developer b/debian/doc-base.developer new file mode 100644 index 00000000..6a606b90 --- /dev/null +++ b/debian/doc-base.developer @@ -0,0 +1,12 @@ +Document: privoxy-developer +Title: Privoxy Developer Manual +Author: Privoxy Developers +Abstract: The provoxy developer manual gives the users information on + how to help the developer team. It provides guidance on coding, + testing, documentation and other issues. Privoxy is a filtering web + proxy. +Section: Apps/Net + +Format: HTML +Index: /usr/share/doc/privoxy/developer-manual/index.html +Files: /usr/share/doc/privoxy/developer-manual/*.html diff --git a/debian/doc-base.faq b/debian/doc-base.faq new file mode 100644 index 00000000..117c2a3b --- /dev/null +++ b/debian/doc-base.faq @@ -0,0 +1,11 @@ +Document: privoxy-faq +Title: Privoxy Frequently Asked Questions +Author: Privoxy Developers +Abstract: The FAQ document gives users and developers alike answers to + frequently asked questions about Privoxy. Privoxy is a filtering web + proxy. +Section: Apps/Net + +Format: HTML +Index: /usr/share/doc/privoxy/faq/index.html +Files: /usr/share/doc/privoxy/faq/*.html diff --git a/debian/doc-base.user b/debian/doc-base.user new file mode 100644 index 00000000..2a7f5e69 --- /dev/null +++ b/debian/doc-base.user @@ -0,0 +1,10 @@ +Document: privoxy-user +Title: Privoxy User Manual +Author: Privoxy Developers +Abstract: The user manual gives users information on how to install, + configure and use Privoxy. Privoxy is a filtering web proxy. +Section: Apps/Net + +Format: HTML +Index: /usr/share/doc/privoxy/user-manual/index.html +Files: /usr/share/doc/privoxy/user-manual/*.html diff --git a/debian/docs b/debian/docs new file mode 100644 index 00000000..2b0dd848 --- /dev/null +++ b/debian/docs @@ -0,0 +1,8 @@ +README +AUTHORS +doc/text/faq.txt +doc/text/user-manual.txt +doc/text/developer-manual.txt +doc/webserver/faq +doc/webserver/user-manual +doc/webserver/developer-manual diff --git a/debian/init.d b/debian/init.d new file mode 100644 index 00000000..cca3a8be --- /dev/null +++ b/debian/init.d @@ -0,0 +1,59 @@ +#! /bin/sh + +PATH=/sbin:/bin:/usr/sbin:/usr/bin +DAEMON=/usr/sbin/privoxy +NAME=privoxy +DESC="filtering proxy server" +OWNER=privoxy +CONFIGFILE=/etc/privoxy/config +PIDFILE=/var/run/$NAME.pid + +test -f $DAEMON || exit 0 + +set -e + +case "$1" in + start) + echo -n "Starting $DESC: " + $DAEMON --pidfile $PIDFILE --user $OWNER $CONFIGFILE 2>/dev/null + echo "$NAME." + ;; + stop) + echo -n "Stopping $DESC: " + start-stop-daemon --oknodo --stop --quiet --pidfile $PIDFILE \ + --exec $DAEMON + echo "$NAME." + ;; + #reload) + # + # If the daemon can reload its config files on the fly + # for example by sending it SIGHUP, do it here. + # + # If the daemon responds to changes in its config file + # directly anyway, make this a do-nothing entry. + # + # echo "Reloading $DESC configuration files." + # start-stop-daemon --stop --signal 1 --quiet --pidfile \ + # /var/run/$NAME.pid --exec $DAEMON + #;; + restart|force-reload) + # + # If the "reload" option is implemented, move the "force-reload" + # option to the "reload" entry above. If not, "force-reload" is + # just the same as "restart". + # + echo "Restarting $DESC: " + start-stop-daemon --oknodo --stop --quiet --pidfile $PIDFILE \ + --exec $DAEMON + sleep 1 + $DAEMON --pidfile $PIDFILE --user $OWNER $CONFIGFILE + ;; + *) + N=/etc/init.d/$NAME + # echo "Usage: $N {start|stop|restart|reload|force-reload}" >&2 + echo "Usage: $N {start|stop|restart|force-reload}" >&2 + exit 1 + ;; +esac + +exit 0 diff --git a/debian/logrotate b/debian/logrotate new file mode 100644 index 00000000..d230a8b0 --- /dev/null +++ b/debian/logrotate @@ -0,0 +1,21 @@ +/var/log/privoxy/logfile { + create 0640 privoxy adm + missingok + weekly + rotate 7 + compress + postrotate + touch /etc/privoxy/config + endscript +} + +/var/log/privoxy/jarfile { + create 0640 privoxy adm + missingok + weekly + rotate 7 + compress + postrotate + touch /etc/privoxy/config + endscript +} diff --git a/debian/manpages b/debian/manpages new file mode 100644 index 00000000..66709657 --- /dev/null +++ b/debian/manpages @@ -0,0 +1 @@ +privoxy.1 diff --git a/debian/postinst b/debian/postinst new file mode 100644 index 00000000..8f1028de --- /dev/null +++ b/debian/postinst @@ -0,0 +1,55 @@ +#! /bin/sh +# postinst script for privoxy +# +# see: dh_installdeb(1) + +set -e + +# summary of how this script can be called: +# * `configure' +# * `abort-upgrade' +# * `abort-remove' `in-favour' +# +# * `abort-deconfigure' `in-favour' +# `removing' +# +# for details, see http://www.debian.org/doc/debian-policy/ or +# the debian-policy package +# +# quoting from the policy: +# Any necessary prompting should almost always be confined to the +# post-installation script, and should be protected with a conditional +# so that unnecessary prompting doesn't happen if a package's +# installation fails and the `postinst' is called with `abort-upgrade', +# `abort-remove' or `abort-deconfigure'. + +case "$1" in + configure) + if ! grep -q '^privoxy:' /etc/passwd + then + adduser --system --home /etc/privoxy --ingroup nogroup \ + --disabled-password privoxy >/dev/null + fi + chown -R privoxy.adm /var/log/privoxy + chmod 750 /var/log/privoxy + chown privoxy /etc/privoxy/*.action /etc/privoxy/trust + ;; + + abort-upgrade|abort-remove|abort-deconfigure) + + ;; + + *) + echo "postinst called with unknown argument \`$1'" >&2 + exit 1 + ;; +esac + +# dh_installdeb will replace this with shell code automatically +# generated by other debhelper scripts. + +#DEBHELPER# + +exit 0 + + diff --git a/debian/postrm b/debian/postrm new file mode 100644 index 00000000..2c9e371a --- /dev/null +++ b/debian/postrm @@ -0,0 +1,44 @@ +#! /bin/sh +# postrm script for privoxy +# +# see: dh_installdeb(1) + +set -e + +# summary of how this script can be called: +# * `remove' +# * `purge' +# * `upgrade' +# * `failed-upgrade' +# * `abort-install' +# * `abort-install' +# * `abort-upgrade' +# * `disappear' overwrit>r> +# for details, see http://www.debian.org/doc/debian-policy/ or +# the debian-policy package + + +case "$1" in + purge) + echo "Removing user privoxy" + userdel privoxy || echo "WARNING: Problem removing user privoxy." + + echo "Deleting privoxy log files" + rm -rf /var/log/privoxy + ;; + + remove|upgrade|failed-upgrade|abort-install|abort-upgrade|disappear) + ;; + + *) + echo "postrm called with unknown argument \`$1'" >&2 + exit 1 + +esac + +# dh_installdeb will replace this with shell code automatically +# generated by other debhelper scripts. + +#DEBHELPER# + +exit 0 diff --git a/debian/rules b/debian/rules new file mode 100755 index 00000000..06fb8a21 --- /dev/null +++ b/debian/rules @@ -0,0 +1,119 @@ +#!/usr/bin/make -f +# Sample debian/rules that uses debhelper. +# GNU copyright 1997 to 1999 by Joey Hess. + +# Uncomment this to turn on verbose mode. +#export DH_VERBOSE=1 + +# This is the debhelper compatibility version to use. +export DH_COMPAT=3 + +# These are used for cross-compiling and for saving the configure script +# from having to guess our platform (since we know it already) +DEB_HOST_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE) +DEB_BUILD_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE) + +DEBDIR=`pwd`/debian/privoxy + +CFLAGS="-O2" +WITHDEBUG="" +ifneq (,$(findstring debug,$(DEB_BUILD_OPTIONS))) + CFLAGS += -g + WITHDEBUG="--with-debug" +endif + +configure: configure-stamp +configure-stamp: + dh_testdir + + autoheader + autoconf + env CFLAGS=$(CFLAGS) WDUMP=w3m \ + ./configure --prefix=/usr --sysconfdir=/etc \ + --mandir=/usr/share/man $(WITHDEBUG) \ + --with-docbook=/usr/share/sgml/docbook/stylesheet/dsssl/modular + + touch configure-stamp + +build: build-stamp +build-stamp: configure-stamp + dh_testdir + + $(MAKE) + $(MAKE) dok-devel dok-user dok-faq + + touch build-stamp + +clean: + dh_testdir + dh_testroot + rm -f build-stamp configure-stamp + + -$(MAKE) clean + -$(MAKE) distclean + rm -f privoxy + rm -f configure config.h GNUmakefile + rm -f doc/source/ldp.dsl + + dh_clean + +install: build + dh_testdir + dh_testroot + dh_clean -k + dh_installdirs + + install -m 0755 privoxy $(DEBDIR)/usr/sbin/privoxy + + sed -e 's/^\(\(trust\|proxy\)-info-url\|admin-address\)/#\1/' \ + -e 's/^\(enable-\(edit-actions\|remote-toggle\)\)/#\1/' \ + -e 's#^confdir \.#confdir /etc/privoxy#' \ + -e 's#^logdir \.#logdir /var/log/privoxy#' \ + < config > $(DEBDIR)/etc/privoxy/config + install -m 0644 default.action $(DEBDIR)/etc/privoxy/default.action + install -m 0644 standard.action $(DEBDIR)/etc/privoxy/standard.action + install -m 0644 user.action $(DEBDIR)/etc/privoxy/user.action + install -m 0644 default.filter $(DEBDIR)/etc/privoxy/default.filter + install -m 0644 trust $(DEBDIR)/etc/privoxy/trust + + cp -r templates $(DEBDIR)/etc/privoxy/ + rm -f $(DEBDIR)/etc/privoxy/templates/*~ + rm -rf $(DEBDIR)/etc/privoxy/templates/CVS + + +# Build architecture-independent files here. +binary-indep: build install +# We have nothing to do by default. + +# Build architecture-dependent files here. +binary-arch: build install + dh_testdir + dh_testroot +# dh_installdebconf + dh_installdocs -XCVS + dh_installexamples + dh_installmenu + dh_installlogrotate +# dh_installemacsen +# dh_installpam +# dh_installmime + dh_installinit + dh_installcron + dh_installman + dh_installinfo +# dh_undocumented + dh_installchangelogs ChangeLog + dh_link + dh_strip + dh_compress + dh_fixperms +# dh_makeshlibs + dh_installdeb +# dh_perl + dh_shlibdeps + dh_gencontrol + dh_md5sums + dh_builddeb + +binary: binary-indep binary-arch +.PHONY: build clean binary-indep binary-arch binary install configure diff --git a/default.action b/default.action new file mode 100644 index 00000000..70cd2761 --- /dev/null +++ b/default.action @@ -0,0 +1,547 @@ +###################################################################### +# +# File : $Source: /cvsroot/ijbswa/current/default.action,v $ +# +# $Id: default.action,v 1.27 2002/05/03 04:18:49 morcego Exp $ +# +# Purpose : Default actions file, see +# http://www.privoxy.org/faq/questions.html#CONFIGFILES +# +# Copyright : Written by and Copyright +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# We value your feedback. However, to provide you with the best support, +# please note: +# +# * Use the support forum to get help: +# http://sourceforge.net/tracker/?group_id=11118&atid=211118 +# * Submit feedback for this actions file only through our +# actions file feedback script: http://www.privoxy.org/actions +# * Submit bugs only through our bug forum: +# http://sourceforge.net/tracker/?group_id=11118&atid=111118 +# Make sure that the bug has not already been submitted. Please try +# to verify that it is a Privoxy bug, and not a browser or site +# bug first. If you are using your own custom configuration, please +# try the stock configs to see if the problem is a configuration +# related bug. And if not using the latest development snapshot, +# please try the latest one. Or even better, CVS sources. +# * Submit feature requests only through our feature request forum: +# http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse +# +# For any other issues, feel free to use the mailing lists: +# http://sourceforge.net/mail/?group_id=11118 +# +# Anyone interested in actively participating in development and related +# discussions can join the appropriate mailing list here: +# http://sourceforge.net/mail/?group_id=11118. Archives are available +# here too. +# +############################################################################# +# Syntax +############################################################################# +# +# To determine which actions apply to a request, the URL of the request is +# compared to all patterns in this file. Every time it matches, the list of +# applicable actions for this URL is incrementally updated. You can trace +# this process by visiting http://i.j.b/show-url-info +# +# There are 4 types of lines in this file: comments (like this line), +# actions, aliases and patterns, all of which are explained below. +# +############################################################################# +# Pattern Syntax +############################################################################# +# +# 1. On Domains and Paths +# ----------------------- +# +# Generally, a pattern has the form /, where both the +# and part are optional. If you only specify a domain part, the "/" +# can be left out: +# +# www.example.com +# is a domain-only pattern and will match any request to www.yahoo.com +# +# www.example.com/ +# means exactly the same (but is slightly less efficient) +# +# www.example.com/index.html +# matches only the document /index.html on www.example.com +# +# /index.html +# matches the document /index.html, regardless of the domain +# +# index.html +# matches nothing, since it would be interpreted as a domain name and +# there is no top-level domain called ".html". +# +# 2. Domain Syntax +# ---------------- +# +# The matching of the domain part offers some flexible options: If the +# domain starts or ends with a dot, it becomes unanchored at that end: +# +# www.example.com +# matches only www.example.com +# +# .example.com +# matches any domain that ENDS in .example.com +# +# www. +# matches any domain that STARTS with www. +# +# Additionally, there are wildcards that you can use in the domain names +# themselves. They work pretty similar to shell wildcards: "*" stands for +# zero or more arbitrary characters, "?" stands for one, and you can define +# charachter classes in square brackets and they can be freely mixed: +# +# ad*.example.com +# matches adserver.example.com, ads.example.com, etc but not sfads.example.com +# +# *ad*.example.com +# matches all of the above +# +# .?pix.com +# matches www.ipix.com, pictures.epix.com, a.b.c.d.e.upix.com etc +# +# www[1-9a-ez].example.com +# matches www1.example.com, www4.example.com, wwwd.example.com, +# wwwz.example.com etc, but not wwww.example.com +# +# You get the idea? +# +# 2. Path Syntax +# -------------- +# +# Paths are specified as regular expressions. A comprehensive discussion of +# regular expressions wouldn't fit here, but (FIXME) someone should paste +# a concise intro to the regex language here. +# +# If Privoxy was compiled with pcre support (default), Perl compatible +# regular expressions are used. See the pcre/docs/ direcory or man perlre +# (also available on http://www.perldoc.com/perl5.6/pod/perlre.html) for +# details. +# +# Please note that matching in the path is CASE INSENSITIVE by default, but +# you can switch to case sensitive by starting the pattern with the "(?-i)" +# switch: +# +# www.example.com/(?-i)PaTtErN.* +# will match only documents whose path starts with PaTtErN in exactly this +# capitalization. +# +# Partially case-sensetive and partially case-insensitive patterns are +# possible, but the rules about splitting them up are extremely complex +# - see the PCRE documentation for more information. +# +############################################################################# +# Action Syntax +############################################################################# +# +# There are 3 kinds of action: +# +# Boolean (e.g. "block"): +# +name # enable +# -name # disable +# +# Parameterized (e.g. "hide-user-agent"): +# +name{param} # enable and set parameter to "param" +# -name # disable +# +# Multi-value (e.g. "add-header", "send-wafer"): +# +name{param} # enable and add parameter "param" +# -name{param} # remove the parameter "param" +# -name # disable totally +# +# The default (if you don't specify anything in this file) is not to take +# any actions - i.e completely disabled, so Privoxy will just be a +# normal, non-blocking, non-anonymizing proxy. You must specifically +# enable the privacy and blocking features you need (although the +# provided default actions file will do that for you). +# +# Later actions always override earlier ones. For multi-valued actions, +# the actions are applied in the order they are specified. +# +############################################################################# +# Valid actions are: +############################################################################# +# +# +add-header{Name: value} +# Adds the specified HTTP header, which is not checked for validity. +# You may specify this many times to specify many headers. +# +# +block +# Block this URL +# +# +deanimate-gifs{last} +# +deanimate-gifs{first} +# Deanimate all animated GIF images, i.e. reduce them to their last +# frame. This will also shrink the images considerably. (In bytes, +# not pixels!) +# If the option "first" is given, the first frame of the animation +# is used as the replacement. If "last" is given, the last frame of +# the animation is used instead, which propably makes more sense for +# most banner animations, but also has the risk of not showing the +# entire last frame (if it is only a delta to an earlier frame). +# +# +downgrade-http-version +# Downgrade HTTP/1.1 client requests to HTTP/1.0 and downgrade the +# responses as well. Use this action for servers that use HTTP/1.1 +# protocol features that Privoxy currently can't handle yet. +# +# +fast-redirects +# Many sites, like yahoo.com, don't just link to other sites. +# Instead, they will link to some script on their own server, +# giving the destination as a parameter, which will then redirect +# you to the final target. +# +# URLs resulting from this scheme typically look like: +# http://some.place/some_script?http://some.where-else +# +# Sometimes, there are even multiple consecutive redirects encoded +# in the URL. These redirections via scripts make your web browing +# more traceable, since the server from which you follow such a link +# can see where you go to. Apart from that, valuable bandwidth and +# time is wasted, while your browser aks the server for one redirect +# after the other. Plus, it feeds the advertisers. +# +# The +fast-redirects option enables interception of these requests +# by Privoxy, who will cut off all but the last valid URL in the +# request and send a local redirect back to your browser without +# contacting the intermediate sites. +# +# +filter{name} +# Filter the website through one or more regular expression filters. +# Repeat for multiple filters. +# +# Filters predefined in the supplied re_filterfile include: +# +# html-annoyances: Get rid of particularly annoying HTML abuse +# js-annoyances: Get rid of particularly annoying JavaScript abuse +# content-cookies: Kill cookies that come in the HTML or JS content +# popups: Kill all popups in JS and HTML +# frameset-borders: Give frames a border +# webbugs: Squish WebBugs (1x1 invisible GIFs used for user tracking) +# refresh-tags: Kill automatic refresh tags (for dial-on-demand setups) +# fun: Text replacements for subversive browsing fun! +# nimda: Remove Nimda (virus) code. +# banners-by-size: Kill banners by size (very efficient!) +# shockwave-flash: Kill embedded Shockwave Flash objects +# crude-parental: Kill all web pages that contain the words "sex" or "warez" +# +# +# +hide-forwarded-for-headers +# Block any existing X-Forwarded-for header, and do not add a new one. +# +# +hide-from-header{block} +# +hide-from-header{spam@sittingduck.xqq} +# If the browser sends a "From:" header containing your e-mail address, +# either completely removes the header ("block"), or change it to the +# specified e-mail address. +# +# +hide-referer{block} +# +hide-referer{forge} +# +hide-referer{http://nowhere.com} +# Don't send the "Referer:" (sic) header to the web site. You can +# block it, forge a URL to the same server as the request (which is +# preferred because some sites will not send images otherwise) or +# set it to a constant string. +# +# +hide-referrer{...} +# Alternative spelling of +hide-referer. Has the same parameters, +# and can be freely mixed with, "+hide-referer". ("referrer" is the +# correct English spelling, however the HTTP specification has a +# bug - it requires it to be spelt "referer"). +# +# +hide-user-agent{browser-type} +# Change the "User-Agent:" header so web servers can't tell your +# browser type. (Breaks many web sites). Specify the user-agent +# value you want - e.g., to pretend to be using Netscape on Linux: +# +hide-user-agent{Mozilla (X11; I; Linux 2.0.32 i586)} +# Or to identify yourself explicitly as a Privoxy user: +# +hide-user-agent{Privoxy/1.0} +# (Don't change the version number from 1.0 - after all, why tell them?) +# +# +handle-as-image +# Treat this URL as an image. This only matters if it's also "+block"ed, +# in which case a "blocked" image can be sent rather than a HTML page. +# See +set-image-blocker{} for the control over what is actually sent. +# +# +set-image-blocker{blank} +# +set-image-blocker{pattern} +# +set-image-blocker{} with being any valid image URL +# Decides what to do with URLs that end up tagged with {+block +handle-as-image}. +# There are 4 options: +# * "-set-image-blocker" will send a HTML "blocked" page, usually +# resulting in a "broken image" icon. +# * "+set-image-blocker{blank}" will send a 1x1 transparent image +# * "+set-image-blocker{pattern}" will send a 4x4 grey/white pattern +# which is less intrusive than the logo but easier to recognize +# than the transparent one. +# * "+set-image-blocker{}" will send a HTTP temporary redirect +# to the specified image URL. +# +# +# +limit-connect{portlist} +# The CONNECT methods exists in HTTP to allow access to secure websites +# (https:// URLs) through proxies. It works very simply: The proxy +# connects to the server on the specified port, and then short-circuits +# its connections to the cliant and to the remote proxy. +# This can be a big security hole, since CONNECT-enabled proxies can +# be abused as TCP relays very easily. +# By default, i.e. in the absence of a +limit-connect action, Privoxy +# will only allow CONNECT requests to port 443, which is the standard port +# for https. +# If you want to allow CONNECT for more ports than that, or want to forbid +# CONNECT altogether, you can specify a comma separated list of ports and port +# ranges (the latter using dashes, with the minimum defaulting to 0 and max to 65K): +# +# +limit-connect{443} # This is the default and need no be specified. +# +limit-connect{80,443} # Ports 80 and 443 are OK. +# +limit-connect{-3, 7, 20-100, 500-} # Port less than 3, 7, 20 to 100, and above 500 are OK. +# +# +prevent-compression +# Prevent the website from compressing the data. Some websites do +# that, which is a problem for Privoxy, since +filter, +kill-popups +# and +gif-deanimate will not work on compressed data. Will slow down +# connections to those websites, though. +# +# +prevent-keeping-cookies +# +session-cookies-only +# If the website sets cookies, make sure they are erased when you exit +# and restart your web browser. This makes profiling cookies useless, +# but won't break sites which require cookies so that you can log in +# or for transactions. +# +# +crunch-outgoing-cookies +# Prevent the website from reading cookies +# +# +crunch-incoming-cookies +# Prevent the website from setting cookies +# +# +kill-popups +# Filter the website through a built-in filter to disable +# 1;''.concat() etc. The two alternative spellings are +# equivalent. +# +# +send-vanilla-wafer +# This action only applies if you are using a jarfile. It sends a +# cookie to every site stating that you do not accept any copyright +# on cookies sent to you, and asking them not to track you. Of +# course, this is a (relatively) unique header they could use to +# track you. +# +# +send-wafer{name=value} +# This allows you to add an arbitrary cookie. Specify it multiple +# times in order to add several cookies. +# +############################################################################# + +############################################################################# +# Settings -- Don't change. +############################################################################# +{{settings}} +############################################################################# +for-privoxy-version=3.0 + +############################################################################# +# Aliases +############################################################################# +{{alias}} +############################################################################# +# +# You can define a short form for a list of permissions - e.g., instead +# of "-crunch-incoming-cookies -crunch-outgoing-cookies -filter -fast-redirects", +# you can just write "shop". This is called an alias. +# +# Currently, an alias can contain any character except space, tab, '=', '{' +# or '}'. +# But please use only 'a'-'z', '0'-'9', '+', and '-'. +# +# Alias names are not case sensitive. +# +# Aliases beginning with '+' or '-' may be used for system permission names +# in future releases - so try to avoid alias names like this. (e.g. +# "+crunch-all-cookies" below is not a good name) +# +# Aliases must be defined before they are used. +# + +# Useful aliases ++crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies +-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies ++imageblock = +block +handle-as-image + +# Fragile sites should have the minimum changes +fragile = -block -deanimate-gifs -fast-redirects -filter -hide-referer -crunch-all-cookies -kill-popups + +# Shops should be allowed to set persistent cookies +shop = -filter -crunch-all-cookies -prevent-keeping-cookies + +# Your favourite blend of filters: +# +myfilters = +filter{html-annoyances} +filter{js-annoyances} +filter{popups}\ + +filter{webbugs} +filter{nimda} +filter{banners-by-size} #+filter{fun} +#... etc. Customize to your heart's content. +############################################################################# +# Defaults +############################################################################# +{-add-header \ + -block \ + -crunch-incoming-cookies \ + -crunch-outgoing-cookies \ + +deanimate-gifs{last} \ + -downgrade-http-version \ + -fast-redirects \ + -filter{popups} \ + -filter{fun} \ + -filter{shockwave-flash} \ + -filter{crude-prental} \ + +filter{html-annoyances} \ + +filter{js-annoyances} \ + +filter{content-cookies} \ + +filter{webbugs} \ + +filter{refresh-tags} \ + +filter{nimda} \ + +filter{banners-by-size} \ + -handle-as-image \ + +hide-forwarded-for-headers \ + +hide-from-header{block} \ + +hide-referer{forge} \ + -hide-user-agent \ + -kill-popups \ + -limit-connect \ + +prevent-compression \ + -send-vanilla-wafer \ + -send-wafer \ + +session-cookies-only \ + +set-image-blocker{pattern} \ +} +/ # Match all URLs + + +############################################################################# +# Needed for automatic feedback evaluation; Please don't delete! +############################################################################# +{+add-header{X-Actions-File-Version: 1.2} -filter -kill-popups} +.privoxy.org +.oesterhelt.org/actions + + +############################################################################# +# These sites are very complex and require +# minimal interference. +############################################################################# +{fragile} +.office.microsoft.com +.windowsupdate.microsoft.com + +############################################################################# +# Shopping sites - still want to block ads. +############################################################################# +{shop} +.quietpc.com +.worldpay.com # for quietpc.com +.jungle.com +.scan.co.uk + +############################################################################# +# These shops require pop-ups +############################################################################# +{shop -no-popups -filter{popups}} +.dabs.com +.overclockers.co.uk + +############################################################################# +# Sometimes fast-redirects catches things by mistake +############################################################################# +{-fast-redirects} +www.ukc.ac.uk/cgi-bin/wac\.cgi\? +login.yahoo.com +edit.europe.yahoo.com +.google.com +.altavista.com/.*(like|url|link):http +.altavista.com/trans.*urltext=http +.speedfind.de +.nytimes.com + +############################################################################# +# Don't filter code! +############################################################################# +{-filter} +.cvs.sourceforge.net + +############################################################################# +# These are images: +############################################################################# +{+handle-as-image} +############################################################################# +/.*\.(gif|jpe?g|png|bmp|ico)$ + +############################################################################# +{+imageblock} +############################################################################# +#BLOCK-REFERRER: http://www.cnn.com/ +#BLOCK-REFERRER: http://www.aol.com/ +ar.atwola.com + +#BLOCK-REFERRER: http://www.altavista.com/ +.ad.doubleclick.net + +.a.yimg.com/(?:(?!/i/).)*$ +.a[0-9].yimg.com/(?:(?!/i/).)*$ + +#BLOCK-REFERRER: +bs*.gsanet.com +bs*.einets.com + +#BLOCK-REFERRER: Opera browser built-in +.qkimg.net + +#BLOCK-REFERRER: http://www.tecchannel.de/index.html +#BLOCK-REFERRER: and thousands more +ad.*.doubleclick.net + +############################################################################# +# Blocklist: +############################################################################# +{+block} +############################################################################# +#BLOCK-GENERIC: +ad*. +.*ads. +banner?. +count*. + +/(?:.*/)?(ads(erver?|tream)?|.*?ads|adv(ert(s|enties|is(ing|e?ments)?)?)?|(ad)?[-_]?banner(s|ads?|farm)?)/ +/.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) +/(?:.*/)?(publicite|werbung|rekla(ma|me|am)|annonse|maino(kset|nta|s)?)/ + +#BLOCK-REFERRER: http://www.brooksbrothers.com +#BLOCK-REFERRER: http://www.autodesk.com +.hitbox.com + +############################################################################# +{-block} +############################################################################# +include.ebay.com +advogato.org +adsl. +ad[ud]*. +advice. +.edu +.ac.uk +.uni-*.de +www.ugu.com/sui/ugu/adv +.*downloads. +# So many download pages being blocked +/downloads/ +# adv for globalintersec means advanced, not advertisement +www.globalintersec.com/adv +# We all want weather forecast to work +banners.wunderground.com/banner/gizmotemp/ + diff --git a/default.filter b/default.filter new file mode 100644 index 00000000..485033a2 --- /dev/null +++ b/default.filter @@ -0,0 +1,357 @@ +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/default.filter,v $ +# +# $Id: default.filter,v 1.10 2002/04/18 10:14:19 oes Exp $ +# +# Purpose : Rules to process the content of web pages +# +# Copyright : Written by and Copyright +# Privoxy team. http://www.privoxy.org/ +# +# We value your feedback. However, to provide you with the best support, +# please note: +# +# * Use the support forum to get help: +# http://sourceforge.net/tracker/?group_id=11118&atid=211118 +# * Submit bugs only thru our bug forum: +# http://sourceforge.net/tracker/?group_id=11118&atid=111118 +# Make sure that the bug has not already been submitted. Please try +# to verify that it is a Privoxy bug, and not a browser or site +# bug first. If you are using your own custom configuration, please +# try the stock configs to see if the problem is a configuration +# related bug. And if not using the latest development snapshot, +# please try the latest one. Or even better, CVS sources. +# * Submit feature requests only thru our feature request forum: +# http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse +# +# For any other issues, feel free to use the mailing lists: +# http://sourceforge.net/mail/?group_id=11118 +# +# Anyone interested in actively participating in development and related +# discussions can join the appropriate mailing list here: +# http://sourceforge.net/mail/?group_id=11118. Archives are available +# here too. +# +################################################################################# +# +# Syntax: +# +# Filters start with a line "FILTER: name description". They are then referrable +# from the actionsfile with +filter{name} +# +# Inside the filters, write one Perl-Style substitution (job) per line. +# Jobs that precede the first FILTER: line are ignored. +# +# For Details see the pcrs manpage contained in this distribution. +# (and the perlre, perlop and pcre manpages) +# +# Note that you are free to choose the delimter as you see fit. +# +# Note2: In addidion to the Perl options gimsx, the following nonstandard +# options are supported: +# +# 'U' turns the default to ungreedy matching. Add ? to quantifiers to +# switch back to greedy. +# 'T' (trivial) prevents parsing for backreferences in the substitute. +# Use if you want to include text like '$&' in your substitute without +# quoting. +# +################################################################################# + + +################################################################################# +# +# html-annoyances: Get rid of particularly annoying HTML abuse +# +################################################################################# +FILTER: html-annoyances Get rid of particularly annoying HTML abuse + +# New browser windows (if allowed -- see no-popups filter below) should be +# resizeable and have a location and status bar +# +s/(]+)resizable=['"]?(no|0|false)['"]?(.*>)/$1resizable="1"$3/igU +s/(]+)location=['"]?(no|0)['"]?(.*>)/$1location="1"$3/igU +s/(]+)status=['"]?(no|0)['"]?(.*>)/$1status="1"$3/igU +s/(]+)scrolling=['"]?(no|0|auto)['"]?(.*>)/$1scrolling="no"$3/igU +s/(]+)menubar=['"]?(no|0)['"]?(.*>)/$1menubar="1"$3/igU + +# The tag was a crime! +# +s*|**ig + + +################################################################################# +# +# js-annoyances: Get rid of particularly annoying JavaScript abuse +# +################################################################################# +FILTER: js-annoyances Get rid of particularly annoying JavaScript abuse + +# Get rid of Javascript referrer tracking. Test page: http://www.randomoddness.com/untitled.htm +# +s|()|$1"Not Your Business!"$2|Usg + +# The status bar is for displaying link targets, not pointless blahblah +# +s/window.status\s*=\s*['"].*?['"]/dUmMy=1/ig + +# Kill OnUnload popups. Yummy. Test: http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html +# +s/()/$1never$2/iU + + +################################################################################# +# +# content-cookies: Kill cookies that come in the HTML or JS content +# +################################################################################# +FILTER: content-cookies Kill cookies that come in the HTML or JS content + +# JS cookies, like found on privacy.net: +# +s|(document\.cookie)([ \t\r\n]*=)|documenZapCooky$2|g + +# HTML cookies: +# +s|].*>||iUT + + +################################################################################## +# +# popups: Kill all popups in JS and HTML +# +################################################################################# +FILTER: popups Kill all popups in JS and HTML + +s/window\.open\s*\(/concat(/ig # JavaScript +s/([ =;])open\s*\(/$1concat(/ig # JavaScript alternative +s/target=['"]?(_blank|_new)['"]?/notarget/ig # HTML + + +################################################################################# +# +# frameset-borders: Give frames a border, make them resizable and scrollable +# +################################################################################# +FILTER: frameset-borders Give frames a border and make them resizable + +s/(]+)framespacing=['"]?(no|0)['"]?(.*>)/$1$3/igU +s/(]+)(frame)?border=['"]?(no|0)['"]?(.*>)/$1$4/igU + +s/(]+)frameborder=['"]?(no|0)['"]?(.*>)/$1$3/igU +s/(]+)noresize(.*>)/$1$2/igU +s/(]+)resizable=['"]?(no)['"]?(.*>)/$1$3/igU +s/(]+)scrolling=['"]?(no)['"]?(.*>)/$1$3/igU + +################################################################################# +# +# webbugs: Squish WebBugs (1x1 invisible GIFs used for user tracking) +# +################################################################################# +FILTER: webbugs Squish WebBugs (1x1 invisible GIFs used for user tracking) + +s/]*?(width|height)\s*=\s*['"]?1\D[^>]*?(width|height)\s*=\s*['"]?1(\D[^>]*?)?>//siUg + + +################################################################################# +# +# refresh-tags: Kill automatic refresh tags (for dial-on-demand setups) +# +################################################################################# +FILTER: refresh-tags Kill automatic refresh tags (for dial-on-demand setups) + +s/]*)['"]?>//iU +s/].*>//iU + + +################################################################################# +# +# fun: Text replacements for subversive browsing fun! +# +################################################################################# +FILTER: fun Text replacements for subversive browsing fun! + +s/microsoft(?!.com)/MicroSuck/ig + +# Buzzword Bingo (example for extended regex syntax) +# +s* industry[ -]leading \ +| cutting[ -]edge \ +| award[ -]winning # Comments are OK, too! \ +| high[ -]performance \ +| solutions[ -]based \ +| unmatched \ +| unparalleled \ +| unrivalled \ +*BINGO! \ +*igx + + +################################################################################# +# +# nimda: Remove Nimda (virus) code +# +################################################################################# +FILTER: nimda Remove Nimda (virus) code + +s%%
    WARNING: This Server is infected with Nimda!%g + +################################################################################# +# +# banners-by-size: Kill banners by size +# +################################################################################# +# +# Standard banner sizes taken from http://www.iab.net/iab_banner_standards/bannersizes.html +# +# Note: Use http://config.privoxy.org/send-banner?type=trans for a transparent 1x1 image +# Use http://config.privoxy.org/send-banner?type=pattern for a grey/white pattern image +# Use http://config.privoxy.org/send-banner?type=auto to auto-select. +# +################################################################################# +FILTER: banners-by-size Kill banners by size + +s|]*?(width=['"]?468\D)[^>]*(height=['"]?60[^>]*?)>||sig +s|]*?(width=['"]?234\D)[^>]*(height=['"]?60[^>]*?)>||sig +s|]*?(width=['"]?88\D)[^>]*(height=['"]?31[^>]*?)>||sig +s|]*?(width=['"]?120\D)[^>]*(height=['"]?90[^>]*?)>||sig +s|]*?(width=['"]?120\D)[^>]*(height=['"]?600[^>]*?)>||sig +s|]*?(width=['"]?120\D)[^>]*(height=['"]?60[^>]*?)>||sig +s|]*?(width=['"]?160\D)[^>]*(height=['"]?600[^>]*?)>||sig +s|]*?(width=['"]?125\D)[^>]*(height=['"]?125[^>]*?)>||sig +s|]*?(width=['"]?120\D)[^>]*(height=['"]?240[^>]*?)>||sig +s|]*?(width=['"]?180\D)[^>]*(height=['"]?150[^>]*?)>||sig +s|]*?(width=['"]?300\D)[^>]*(height=['"]?250[^>]*?)>||sig +s|]*?(width=['"]?250\D)[^>]*(height=['"]?250[^>]*?)>||sig +s|]*?(width=['"]?240\D)[^>]*(height=['"]?400[^>]*?)>||sig +s|]*?(width=['"]?336\D)[^>]*(height=['"]?280[^>]*?)>||sig + +# One more. (Where is 200x50 from?) +# +s|]*?(width=['"]?200\D)[^>]*(height=['"]?50[^>]*?)>||sig + + +################################################################################# +# +# shockwave-flash: Kill embedded Shockwave Flash objects +# +################################################################################# +FILTER: shockwave-flash Kill embedded Shockwave Flash objects + +s|]*application/x-shockwave-flash.*||sigU + + +################################################################################# +# +# crude-parental: Crude parental filtering? (Use along with a suitable blocklist). +# Shows how to deny access to whole page based on a keyword. +# +################################################################################# +# +# (Note: Middlesex, Sussex and Essex are counties in the UK, not rude words) +# (Note #2: Is 'sex' a rude word?!) +# +################################################################################# +FILTER: crude-parental Crude parental filtering (demo only) + +s%^.*(?Blocked

    Blocked due to possible adult content. Please see this site.

    %is +s+^.*warez.*$+No Warez

    You're not searching for illegal stuff, are you?

    +is + +############################################################################## +# +# Revisions : +# $Log: default.filter,v $ +# Revision 1.10 2002/04/18 10:14:19 oes +# renamed some filters +# +# Revision 1.9 2002/04/11 07:36:35 oes +# Generalized js-popup filter +# +# Revision 1.8 2002/04/10 17:07:21 oes +# Fixed potentially desctructive jobs, added noflash filter +# +# Revision 1.7 2002/04/09 18:34:51 oes +# Fixed HTML syntax in replacements +# +# Revision 1.6 2002/04/03 19:49:52 swa +# name change +# +# Revision 1.5 2002/03/27 15:30:26 swa +# have a consistent appearance +# +# Revision 1.4 2002/03/26 22:29:54 swa +# we have a new homepage! +# +# Revision 1.3 2002/03/24 16:08:03 jongfoster +# Fixing banners-by-size for new config URLs +# +# Revision 1.2 2002/03/24 13:02:18 swa +# name change related issues. +# +# Revision 1.1 2002/03/24 11:37:39 jongfoster +# Name change +# +# Revision 1.24 2002/03/16 20:39:54 oes +# - Added descriptions to the filters so users will know what they select in the cgi editor +# - Added content-cookies filter +# - Bugfixed many jobs (Thanks to Al for some hints) +# +# Revision 1.22 2002/03/12 13:42:50 oes +# Fixing & Optimizing REs +# +# Revision 1.21 2002/03/12 11:59:20 oes +# Beefed up Buzzword Bingo +# +# Revision 1.20 2002/03/12 01:42:50 oes +# Introduced modular filters +# +# Revision 1.19 2002/03/10 19:49:24 oes +# Added expression to kill referer tracking in JavaScripts +# +# Revision 1.18 2002/03/08 17:14:12 oes +# PNG -> image in comments +# +# Revision 1.17 2002/03/07 03:50:54 oes +# Adapted comments to new built-in images +# +# Revision 1.16 2002/02/21 00:12:19 jongfoster +# Modifying the banner regexps to use long URLS and to autodetect +# whether to show a logo or a transparent GIF, based on actionsfile +# setting. +# +# Revision 1.15 2001/12/28 23:54:20 steudten +# Fix for feature Req #495374: http-equiv problem +# +# Revision 1.14 2001/12/09 18:55:11 david__schmidt +# Updated CODE_STATUS to beta, commented out microsuck line in re_filterfile +# for 2.9.10 beta +# +# Revision 1.13 2001/10/13 13:11:20 joergs +# Fixed WebBug filter. +# +# Revision 1.12 2001/10/07 15:46:42 oes +# Followed Guy's proposal to change the document.cookie job +# +# Revision 1.11 2001/09/21 12:34:00 joergs +# Added filter to replace "Nimda" code by a warning. +# +# Revision 1.10 2001/07/20 11:04:26 oes +# Added Rodneys javascript cookie filter +# +# Revision 1.9 2001/07/13 14:03:48 oes +# Elimiated yet another bug in the banner-by-size jobs. Shame on me! +# +# Revision 1.8 2001/06/29 13:34:00 oes +# - Added explanation for U and T options +# - Added hint on image replacement by CGI call +# - Fixed bug in banner-by-size jobs +# +# Revision 1.7 2001/06/19 14:21:56 oes +# Fixed microsuck line +# +# Revision 1.6 2001/06/09 14:01:57 swa +# header. cosmetics. default: no messing ala microsuck. +# +# +# diff --git a/doc/.gitignore b/doc/.gitignore new file mode 100644 index 00000000..769562fa --- /dev/null +++ b/doc/.gitignore @@ -0,0 +1,2 @@ +man +text diff --git a/doc/changes.txt b/doc/changes.txt deleted file mode 100644 index 6aa14820..00000000 --- a/doc/changes.txt +++ /dev/null @@ -1,991 +0,0 @@ -This file contains details of the changes made to JunkBuster, in -chronological order. Scroll down to the bottom for the newest -additions! - - -***************************************************************************** -* Copied from old README * -***************************************************************************** - -README for the Internet Junkbuster Proxy (TM) Copyright 1997-8 Junkbusters Corp. - - Id: README,v 1.1 2001/04/16 21:10:38 rodney Exp - - This program is free software; you can redistribute it and/or modify it - under the terms of the GNU General Public License as published by the - Free Software Foundation; either version 2 of the License, - or (at your option) any later version. - - This program is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. - See the GNU General Public License for more details. - - You should have received a copy of the GNU General Public License - along with this program; if not, write to the Free Software - Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. - -The version of the code with this makefile is Version 2.0.2. -No CHANGES file is included here; for a history of previous versions see - http://www.junkbusters.com/ht/en/ijbdist.html#previous -This version tightens security over 2.0.1; some multi-user sites will need -to change the listen-address in the configuration file (see previous URL). - -For installation on Windows see http://www.junkbusters.com/ht/en/ijbwin.html -An executable is provided so you don't need nmake or a C compiler. - -For UNIX and other systems see the FAQ. If you just want to test it with its -defaults of simply stopping cookies and private info, all you need to do now -on most Unix systems is type make, run junkbuster & and configure your browser. - -This directory should contain the following files. The .html files are also -in http://www.junkbusters.com/ht/en/ and http://internet.junkbuster.com -You are welcome to publish copies of the .html files on your local web server, -according to the GNU General Public License. - -gpl.html GNU General Public Licence -junkbstr.exe Executable (binary) for Windows 95/NT -Makefile A very bland Makefile; Most versions of Unix except HP & Suns - compile without change. Windows requires the changes indicated. -ijbman.html Manual for the Internet Junkbuster, HTML format -junkbuster.1 Manual for the Internet Junkbuster, man macro format: - man ./junkbuster.1 # or nroff -man junkbuster.1 | more -ijbfaq.html FAQ: Frequently Asked Questions on the Internet Junkbuster - Includes installation instructions -junkbstr.ini Sample configuration file with almost all options commented out -sblock.ini Sample blockfile (which doesn't really block much, see FAQ) -scookie.ini Sample cookiefile (permits little; you decide who to trust) -saclfile.ini Sample access control file (block access to everyone) -sforward.ini Sample forwardfile (does no fowarding, no gateways, so SOCKS) -strust.ini Sample trustfile (has no trusted sites and blocks nothing) -conn.c, bind.c, encode.c, loaders.c, parsers.c, ssplit.c Various utilities -socks4.c Code for SOCKS4 and SOCKS4A gateways -jcc.c The main program -jcc.h #included declarations etc -gnu_regex.c, gnu_regex.h: Regular expression code from the FSF, not us. -win32.c A few lines of code specific to the Windows version (95 & NT) -acl.c Access controls (new in version 2.0) - doesn't replace firewalls -filters.c Strings for the presentation of messages to user - -If you find that the Internet Junkbuster improves the quality of your life -online, we hope you'll visit http://www.junkbusters.com to see how our free -services can help you bust other kinds of junk out of your life: -junk mail, spam, telemarketing, and invasions of your private data. -And please tell your friends about this free product, and help them set it up. - -If your company finds this software useful in protecting its confidential -information and making its people happier and more productive, please consider -purchasing one of our our commercial support packages: - http://www.junkbusters.com/ht/en/ijbfaq.html#commercial - -We don't advertise, so please tell others in your community about us. - -Junkbusters Corp. http://www.junkbusters.com - - -***************************************************************************** -* Copied from old README.too * -***************************************************************************** - -Id: README.TOO,v 1.1 2001/04/16 21:10:38 rodney Exp - -This is the README.TOO file for Stefan's version of the Internet -Junkbuster (from http://www.waldherr.org/junkbuster/). - - - -Installation: -------------- -Install the RPM with the usual command `rpm -Uvh foobar.rpm'. Since we -run the Junkbuster as user `nobody', cd to a directory where `nobody' -has read access (in particular NOT /root) and issue (as root) - - /etc/rc.d/init.d/junkbuster start - -This will be done automagically for you any time you boot your machine. - - - -Configuration: --------------- -To let Junkbuster take `care' of the ads, you have to setup your -browser to use the Junkbuster. - - Short instructions for the advanced user: - - Configure Netscape to use 127.0.0.1 on port 8000 as - a proxy server. - - Detailed instructions for the beginner: - - Remove Internet Explorer and install Netscape. No `real' - user would ever use MSIE. Though the Junkbuster works - with IE as well. Read - http://www.junkbusters.com/ht/en/ijbfaq.html#browser - -Check to see if the Junkbuster works correctly by surfing to - - http://127.0.0.1/show-proxy-args - -or any other place and add the text `/show-proxy-args' to the URL. -Ok? Then enjoy your ad-free surfing. - - - -Mailinglists: -------------- -In case you are interested in the Junkbuster, there are two -mailinglists (junkbuster-users and junkbuster-announce). Instructions -on how to subscribe and unsubscribe are at - - http://www.waldherr.org/junkbuster/ - -Bugs: ------ -Please fill out - - http://sourceforge.net/bugs/?func=addbug&group_id=11118 - -Patches: --------- -Please fill out - - http://sourceforge.net/patch/?func=addpatch&group_id=11118 - -Need Help? ----------- -Please fill out - - http://sourceforge.net/support/?func=addsupport&group_id=11118 - - -Comments: ---------- -I would greatly appreciate feedback for this program. Send comments to -Stefan Waldherr (in either German or English). I -prefer plain text. If you happen to see an ad which got thru the filter -PLEASE use the `contribute' form at http://www.waldherr.org/junkbuster/. - -Have fun, -Stefan. - - -***************************************************************************** -* Copied from old README.win * -***************************************************************************** - -$Id: README.WIN,v 1.1 2001/04/16 21:10:38 rodney Exp $ - -This is the README.WIN file for the Windows version of the Internet -Junkbuster (from http://www.waldherr.org/junkbuster/). - -Installation: -------------- -Congrats, since you are reading this file, you have already unzipped -the archive correctly. - -Start the Junkbuster with `junkbstr' (i.e., click on the icon in the -ijb subdirectory). If you want to start Junkbuster automatically, -make a link to the program in the `Autostart' folder. - - - -Configuration: --------------- -To let Junkbuster take `care' of the ads, you have to setup your -browser to use the Junkbuster. - - Short instructions for the advanced user: - - Configure Netscape to use 127.0.0.1 on port 8000 as - a proxy server. - - Detailed instructions for the beginner: - - Remove Internet Explorer and install Netscape. No `real' - user would ever use MSIE. Though the Junkbuster works - with IE as well. Read - http://www.junkbusters.com/ht/en/ijbfaq.html#browser - -Check to see if the Junkbuster works correctly by surfing to - - http://127.0.0.1/show-proxy-args - -or any other place and add the text `/show-proxy-args' to the URL. -Ok? Then enjoy your ad-free surfing. - - - -Mailinglists: -------------- -In case you are interested in the Junkbuster, there are two -mailinglists (junkbuster-users and junkbuster-announce). Instructions -on how to subscribe and unsubscribe are at - - http://www.waldherr.org/junkbuster/ - -Bugs: ------ -Please fill out - - http://sourceforge.net/bugs/?func=addbug&group_id=11118 - -Patches: --------- -Please fill out - - http://sourceforge.net/patch/?func=addpatch&group_id=11118 - -Need Help? ----------- -Please fill out - - http://sourceforge.net/support/?func=addsupport&group_id=11118 - -Comments: ---------- -I would greatly appreciate feedback for this program. Send comments to -Stefan Waldherr (in either German or English). I -prefer plain text. If you happen to see an ad which got thru the filter -PLEASE use the `contribute' form at http://www.waldherr.org/junkbuster/. - -Have fun, -Stefan. - - -***************************************************************************** -* Copied from old README.re_filter * -***************************************************************************** - -DISCLAIMER: - This is pre-alpha code. Using it in any other way - than just reading it is a high risk activity and - the author disclaims all liability for any damage. - - See the GNU General Public License at - http://www.gnu.org/copyleft/gpl.html for details. - - -Dear alpha-Tester, - -Thank you for trying out the experimental re_filter feature of -Junkbuster. As this is still a very early pre-release version, -and I'm neither much of an autoconf or make wizard, building -the patched junkbuster involves some manual work, that is -described below. Please also see the Request for Thoughts section, -as the whole point of this pre-release ist to collect ideas for -improvement and bug reports. - - -INSTALLATION: - - - Get and install pcre from - ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/ - Version 3.1 or any later one will do. I recommend 3.4. - It *should* install on Win32 as well, but I haven't tried - that. Don't forget to run ldconfig afterwards. - - - Now you have two options: - - A) Install pcrs as a shared library: - pcrs.c and pcrs.h are included in the (patched) ijb subdirectory. - 1.) patch Makefile < Makefile.re_shared.diff - 2.) gcc -Wall -fPIC -c pcrs.c - 3.) gcc -shared -Wl,-soname,libpcrs.so.1 -o libpcrs.so.1.0.1 pcrs.o -lc -lpcre - If this worked OK, - 4.) copy libpcrs.so.1.0.1 to /usr/local/lib - 5.) ln -s /usr/local/lib/libpcrs.1.0.1 /usr/local/lib/libpcrs.so - 6.) ldconfig (Or whatever the equivalent on your platform might be) - 7.) cp pcrs.h /usr/local/include - - OR - - B) Incorporate pcrs into the junkbuster (much easier): - Smile and relax. You're done. - - - Edit the provided re_filterfile to suit your needs and place it - with the rest of junkbusters configfiles. - - - Now junkbuster should build with a simple 'make'. - Note: Setting debug = REF in jcc.c will enable debugging - for the re_filter. - - - Include a line "re_filterfile " in your junkbuster - config file, pointing at the re_filterfile - - - (Optional:) Include a line "re_filter_all" in the config - file. This will set the Policy to filter content from all sites. - Default is to filter only from sites that you wouldn't send a - cookie either. - - - Fire up junkbuster. - -HOW IT WORKS: - - Nah, not tonight anymore ;-) - -REQUEST FOR THOUGHTS: - - - The main decision is whether to filter on-the-fly or to buffer - up the whole document and then run the filter on it. I've built - both versions and currently prefer buffering. - - The advantage of on-the-fly-filtering is obviously that the - document begins to display before it's fully loaded. The big - disadvantage is that with arbitraty content altering in place, - you don't know the size that the document will have after - altering when the Content-Length Header is to be sent. Only - option is to chew it altogether. - - Apart from preserving the ability to generate a valid Content-Length - header (which the patch currently does not yet do), buffering up - the document has some advantages from the filtering point of view: - - - Reliability. Patterns in the document cannot be ripped apart - and are reliably found. (If you look at the document fragment-wise - while it's being transmitted, you miss any pattern that spans - a fragment border) This is especially bad for patterns that do - serious HTML reformatting, as fragments are typically in the order - of 1500 bytes each. - - - Flexibility: The re_filter gives you the choice whether you want - to replace only the pattern's first occurance or replace it globally. - This becomes meningless with fragments. (Solution possible, though.) - - As the filter only processes objects of MIME type text/*, which are typically - rather small compared to binary multimedia (sic) type data, I don't think - that the disadvantage of delayed display of the first bytes is really grave. - - What do you think? - - - Is the choice between a radical (filter all) and semi-smart (filter only when - also crunching cookies) flexible enough? Should I really introduce yet another - configfile for specifying the domains to filter content from? Would anyone use - that? - - - Should I use pcre as a shared library and work out a nice installation - automagic, or should the relevant functions be incorporated in re_filter.c? - - - Even if yes, do we really want an extension that relies on an external library - like pcre? - - - Any bugs, stupid parts in the code ? - - - Cool suggestions for the re_filterfile? (PLEASE!) - - - Should character set translation along the lines of Perl's 'tr' operator - be included? - - - Is the whole feature just pathetic? - -FEEDBACK: - - A whole lot of work has gone into this feature (the pcrs code was also - just written for this) and I'd really like to know if and how you like - it. Since I'm more of a perl than C programmer (and after doing so much - string manipulation in C I'm once again glad abaout that!), I'm sure there - is much to improve. Please send any suggestions/observations/hellos to - oes@paradis.rhein.de. I would also be very glad about any assistance for - a autoconf/make procedure for prcs. - -Well, have fun! ---Andreas - - -***************************************************************************** -* Copied from old README.cygwin * -***************************************************************************** - -Id: README.cygwin,v 1.2 2001/04/29 23:16:29 rodney Exp - - -What I did: I saw too many "personalities" in IJB; so I -ran the code through a couple of regexp's and then let XEmacs -reformat the whole shebang! The results is a uniform -looking code base; aka. as if 1 person created the whole -project. - -Why I did it: (1) it is easier to maintain (2) easier for -a new person to make changes/additions (3) it *looks* more -professional (4) IMHO, it is easier to read (this is very -much a personal preference). - -What I propose: A IJB standards list be included in the -distro and all source/patch checkins be checked for -compliance. We don't need to be an arse on this point, but -submitters should make a valiant attempt to support the -standards. - -Note: do not even try to diff my code with another code -base, you will be overwhelmed. After all, the regexps did a -good bit of changing and XEmacs reformatter did a great deal -more. - -One more note: these changes include conditional compilation for -un?x (namely Linux), cygwin (un?x like compile for WIN32), and -mingw32 (WIN32 like compilation w/o VC++). Right now, all seems -fully functional except cygwin. The cygwin compile will work, -but includes code to make it single threaded. I need to debug -the fork issues, but that will have to come later. - - -Specific changes to expect: - - -1: I've majorly reworked the Makefiles. The existing Makefile was -too *spaghetti* for me! For one, I eliminated the "-I." from the -include path (ugly). Use #include "" for local directory files -and #include <> for path found files (that's basic even to c). - - -2: In accordance with #1, I changed #include "windows.h" to -#include and #include to #include -"gnu_regex.h". - - -3: As part of my standards suggestions (to come later in this -file), I added a standard comment block to every function. There -were too many functions with *no* comment and about 20 different -styles to those that did. This is an example of the block I used: -/********************************************************************* - * - * Function : block_acl - * - * Description : Block this request? - * Decide yes or no based on ACL file. - * - * Parameters : - * 1 : src = Address the browser/user agent is requesting. - * 2 : dst = The proxy or gateway address this is going to. - * 3 : csp = Current client state (buffers, headers, etc...) - * - * Returns : 0 = FALSE (don't block) and 1 = TRUE (do block) - * - *********************************************************************/ - - -4: Some files prototyped like this: - void - func(param1) - int param1; - { - } -and other like this: - void func(int param1) - { - } -I made all look like the second. - - -5: Made: - if( to be if ( - while( to be while ( - switch( to be switch ( - etc ... -The former looks too much like a function call. - - -6: Put braces on their own line and aligned under the -reserved word: - if () { - } else { - } -to be: - if () - { - } - else - { - } -The same for while, do, etc... - - -7: Casted malloc in several places, e.g.: - p = malloc(n); -to be: - p = (char *)malloc(n); -This eliminates compiler warnings. - - -8: Applied the Perl regexp patch and made it fully conditionally -compiled (-DPCRS=TRUE). - - -9: It *appears* that if MINGW32 sees a "main" function, it will -try to link it and start with main (ala console mode). Since I -need MINGW32 to find WinMain instead, I conditionally changed -"main" to "_main" (for MINGW32 only!). - - -10: Changed popup.c to be killpopup.c. This was necessary to -clean up the Makefile. Since there was an ini type file called -"popup" and "popup.c", make got confused on target names. No -other ini file has a .c file with the same name, so I hope this -isn't a big deal. Plus, it fits its config variable -(kill_all_popups) much better. - - -11: Added: - /* - Local Variables: - tab-width: 3 - end: - */ -to all .c and .h files. I use 3 character tabs and this will make -the files display correctly in Emacs editors. This is just my -default setting. Perhaps I will filter all files via "expand --t3", so not to pi$$ everyone off. Vi is capable of using 3 -character tabs, as I am sure VC++ would be. - - -12: Several places included regexp code with out "#ifdef REGEX" -which broke the ability to compile w/o regexp's. I fixed the code -and can compile w/o regexp (which I don't normally do, but now I -*can*). - - -13: In WinMain, changed: - pszLastTok = strchr(pszLastTok, ' '); -to be: - pszLastTok = strchr(pszLastTok+1, ' '); -The former causes an infinite loop with 2 or more parameters. - - -14: Added my own strdup for Cygwin, see jcc.c for why. - - -15: Added defines in the Makefile and this to jcc.h: - #define VERSION VERSION_MAJOR "." VERSION_MINOR "." VERSION_POINT -This makes "update the numbers also in jcc.h manually" unnecessary -(see your Makefile for this quote). - - -16: Split the "inifiles" target in Makefile into separate targets, -this way each file can be regenerated individually according to -the same implicit rule. - - -17: With the Makefile restructure, I can only provide for -Cygwin/gcc. Hopefully this is a bit cleaner and others can add -their compilers w/o re-spaghetting the file. I have provided -several makefiles as examples only, I do not intend for the -project to start maintaining multiple Makefiles. Perhaps some of -the platform specific Makefile code could be split out into -separate files and we could use the "include" directive to read in -the correct one. - -Better than this, let's get a configure.in guru on the project and -dynamically create the Makefiles! - - -18: In an effort to get this to market (you knew this was coming -eh?), I am going to put the standards suggestions in another file -and ship this one as is. But then, you can probably guess most of -the standards by the changes you see. - - -19: Added a really quick and dirty "install" target to the -Makefile. This needs to be cleaned up and proper directories put -in for each platform. - - --- release 1 (obsoleted) -- - - -20: Incorporated the TOGGLE and webDAV support patches into my -Cygwin patch. I added conditional compilation to both features. -I changed "extern BOOL g_bToggleIJB;" to be of type "int". This -makes jcc.h independent of "windows.h". The inclusion of such -should not (and is not) necessary for compilation on all -platforms. Besides, BOOL is really only a char or an int anyway! - - -21: Added a new ini! I modified the usual un?x type config file -to M$ type ini file for a Perl regexp compile. This was necessary -to call EditFile on the Perl regexp config file. The new ini -filename is "sregexp.ini" (naturally). I then added menu items to -edit the popup.ini and sregexp.ini files. - - -22: I made "dot h" files for all the "dot c" files. I used this -command to do the *dirty* work: - grep -e "^[A-z]" *.c | sed -e "/=/d" -e "/^[^(]*$/d" \ - -e "/^extern/d" -e "/^static/d" -e "/;$/d" - -And I made each "dot h" file be immune to multiple inclusion via -conditional compilation. Ie. the "jcc.h" file will only include -itself if _JCC_H is undefined. - -After this was done, I compiled the project source by source and -let the compiler tell me what each file was dependent on. Once I -got all the objects to compile, I included the new dependencies in -the Makefiles. - -BTW, I intend to get the Makefile to be generated by a configure -script. Whether this is a GNU "configure.in" type file or a shell -script, I do not know. All I do know is that this is a must for a -"Go/No go" type decision. We cannot proceed with the philosophy -"leave it up to the user to get it to work". - - -23: I broke out the code to load the config file from main. I put -this code into a function called load_config. I made this routine -be called from a signal "HUP". This means we can restart -junkbusters from the command line or from the daemon script via -"restart" without actually killing it and restarting it. This is -common behavior to un?x daemons (see inetd for example). I fixed -the junkbusters.init script to take advantage of this. I intend -to make a M$ menu complement to this as soon as I can. - - -24: BTW, if you have not already noticed by my postings and/or -code, I have added patches and made them all conditionally -compiled. Ie. #ifdef TOGGLE, #ifdef WEBDAV, #ifdef PCRS, etc... -I think that all extensions to IJB should be submitted in this -way. Not only can you compile IJB to be as "tight" as you want, -it also gives the user a "smorgasbord" of options to -choose from. This is quite common in the free software world (you -need look no farther than emacs to see this) and provides maximum -flexibility. - - -25: As promised, I obsoleted the "ijbw32.ini" file. I was a bit -confused by the "close-behaviour=1" entry. It seems to me that it -duplicated the "close-button-minimizes=1" entry. And (by looking -at the code) it was unused. Anyway, I eliminated the "ijbw32.ini" -file and assimilated the settings into the config file. Bye Bye -"ijbw32.ini", hello "config" (aka. don't unnecessarily duplicate -files and/or data types). - - -26: Eliminated re_filter.c. This only defined -(un)load_re_filterfile and re_process_buffer. I moved -(un)load_re_filterfile to loaders.c and re_process_buffer to -filters.c. I also modified the Makefiles to reflect this. In the -doing, I modified the loader and unloader to use the "files" -variable and moved joblist to "re_filterfile_spec" struct. I -added "plist" to the client_state so that all Perl regexp code -could find the latest parsing of the re_filterfile ini. - -This is in keeping with the IJB data structures philosophies. - - -27: Eliminated acl.c. This (as pcre) only defined -(un)load_aclfile and block_acl. I moved (un)load_aclfile to -loaders.c and block_acl to filters.c. I also modified the -Makefiles to reflect this. - - -28: Since I created "dot h" files for all the "dot c" files, I -eliminated all the "extern ...variable;" and all the "extern -...function;" statements that I could find in the "dot c" files. -Instead, I included the proper "dot h" files to do this for us. - - -29: Corrected the "install" Makefile target for un?x. I will do -the same for WIN32 targets. - - -30: Note on the "TOGGLE" patch: since I made IJB fully restartable -via a NOHUP signal; I thought the TOGGLE patch should apply to -both un?x and WIN32. Thus, I eliminated the WIN32 dependencies in -that patch and added "toggle" to the config file. Now everything -works fine for either platform. Still to come is a restart menu -command in WIN32 (See: note 23). - - -31: Just a possible programmer note, we REALLY need a generic -linked list module. Since text lists, client states, filter -files, etc... implement list creation and destruction over and -over; I suggest a generic list that can handle *any* type of list -(ala template classes in C++). If this module included an -iterator (of sorts), we could eliminate the myriad of "for ( top=x; -NULL != x->next; x=x->next )" type statements that are all over -IJB. - -After all, this was taught in the basic "Intro to Data Types" -class (for all you CS majors). - - -32: Renamed all of the .INI files to be .TXT files. I did this -because the .INI files were NOT *really* ini files; which -potentially be confusing. I used the .TXT extension to make sure -that EditFile still worked. - - -33: Removed the "initialed comments", such as "/* swa */". This -leads to less readable code (because it becomes fragmented) and -retains the "multiple personality" syndrome. Comments such as -this can always be figured out from the versioning system. Also, -these comments really should be pooled in one place : the README -files. - - -34: Perhaps we should break with the current versioning tactic of -a "tail version" and start fresh. Perhaps a new major version -release is in order? Version = 3.0.0? - - -35: Added a "Accept-Encoding: gzip" cruncher. If a stream is -compressed via gzip (Netscape specific I think), then it cannot -be modified with Perl regexps. So I added this as an option in -the Makefiles. - - -36: As promised in one of my postings, I have make a -configure-esk script to generate the Makefiles. I would still -like to have a full blown configure.in compatible system, but this -will do in the meantime. Note: this configure script covers -linux, cygwin, and mingw32. At this point I do not have VC++ to -test any of my changes. But the configure script should be -flexible enough to handle this platform. - - --- - -Please give any feedback to the ijb egroups and, if you feel you -need quicker contact, CC me at IwantToKeepAnon@yahoo.com - -Let me say once more, this has a *lot* of changes and may (aka -WILL) break a lot of existing patches. But I hope the "idea" will -catch on. Perhaps this could be made the baseline code base and -other patches added and standardized later. - -***************************************************************************** -* Date: 7 May 2001 * -* Version: ?? * -* Description: Changes for MS Visual C++ * -* Author: Jon Foster * -***************************************************************************** -(Based on Stromlund's version 0.20) - -I have made several changes to make this compile under VC++ 97, and add new -features. - -Code changes: - -1) If you disable IJB (using the TOGGLE patch) it now turns PCRS off. -2) "Missing function prototype" warnings have been corrected by adding - appropriate #include statements -3) The _DIST_URL define removed and hardcoded. There are hardcoded URLs all - over the place that need fixing - one more doesn't matter. We do really - need to come up with a long-term solution though. (Suggestion: Host a - redirector on the SourceForge web space. e.g - "http://ijbswa.sourceforge.net/redirect.php?ver=2.0.2-10&target=faq", - "http://ijbswa.sourceforge.net/redirect.php?ver=2.0.2-10&target=download", - etc. This allows us to move the pages around easily, and the SourceForge - space can be maintained by anyone who's interested, it's not tied to a - particular individual. This is similar to the approach taken by - Microsoft and Netscape in their browsers.) -4) New file ijbconfig.h is #included everywhere. This provides me with a - place to define VERSION, PCRS, etc. You can still define VERSION_xxx - on the command line, but the other defines are in the header file. - There were just too many #defines - so many that the VC++ 97 IDE - broke when I tried to define them on the command line. We probably - should fix the configure script so that it modifies this file. -5) Deleted empty file afxres.h - we needed to use the VC++ system header - file of that name. However, it's easier to just delete it and put - the relevent #defines in w32res.h. -6) New #define: NO_PROGRAM_NAME_DISPLAY uses "IJB" as the program name in - the log file instead of "H:\Documents and Settings\Administrator\My - Documents\Prog\VC\ijb2\Release\junkbuter.exe" or similar. The reason - for this should be obvious! -7) New #define: STATISTICS enables the statistics feature -8) Statistics is thread-safe, I think. However, loading up the - statistics page now counts as a blocked request. -9) New, shorter message if a setting in the config file is recognised - but unsupported by the current build. It doesn't have "WARNING:" in - front of it either. We may want to actually take this message out - and have it just silently ignore these entries. -10) New feature: #define SPLIT_PROXY_ARGS and the show-proxy-settings - page will split each file out to a seperate page. This is - because the files are quite big, and having to do 1 extra click to - get to them is no problem. This #define also disables the - suppress_blocklists feature (because I believe the original intent - of suppress_blocklists was similar?). It also saves memory by - reading the config files to generate the HTML on the fly, rather - than storing prepared HTML constantly in memory. -11) Marked global constants with "const" attribute. This has a - knock-on effect on pointers in function prototypes, so these have - also been marked const where needed. -12) Rewrote encode.c to have tables pre-initialized, so it can be - marked constant. Also split into 3 distinct functions so that - the tables (which are realy an implementation detail) are not - visible outside that file. -13) Changes to how files are reloaded when you reload the config - file. Previous method didn't free memory (or if you uncommented - the free() calls, it was not thread-safe.) It is now handled - automatically - files are reloaded whenever the filename to - read changes, or the file's timestamp changes. The code in - loaders.c which handles this test has been moved to a single - utility function. -14) killpopup changes: - * Only compiled if you #define KILLPOPUPS - * Call to filter_popups() moved from read_socket() to chat(). - * Writing 1 past end of buffer bug fixed. - * It was scanning the whole buffer even if only partially filled. - * Moved load/unload to loaders.c and changed file handling to - follow standard. -15) Auto-detect whether we want an image or HTML implemented for - Microsoft IE. :-) - There doesn't seem to be a way to tell with the latest build - of Mozilla. :-( -16) Image file code conditionally compiled. -17) Provided option (SPLIT_PROXY_ARGS) to split the show-proxy-args - page into a main page, and then a page for each config file. - This option will also save memory by loading the files when - required for display, rather than saving them in memory when - they are initially loaded. -18) Force page loading ("noijb.") patch applied. #define FORCE_LOAD - - -Packaging changes: - -1) PCRE 3.4 (less it's test and demo programs) is now included in the - pcre directory. It will be statically linked with Junkbuster. (On - win32, DLLs cause a lot of hassle - with a library this small it isn't - worth it. I don't know if it would be better to dynamically link under - UNIX?) -2) junkbustr.dsp and junkbustr.dsw VC++97 project and workspace files are - included. -3) win32build/junkbustr.exe Win32 binary is included. It should not require - any DLLs. It was compiled with all features supported. -4) All README.xyz files put together in this file. -5) Unused files (acl.c, pthread.c, ...) deleted. -6) My block & cookie files used (based on the Waldherr ones). - -Known bug: The Adobe Acrobat 4 plug-in fails when I try to view PDF files in -MSIE. Workaround: disable "web browser integration" in the Adobe Acrobat -settings. - -***************************************************************************** -* Date: 14 May 2001 (early morning) * -* Version: Reported as 2.9.0 * -* Description: Various updates * -* Author: Jon Foster * -***************************************************************************** - -1) Now use PCRE, not GNU REGEX. I have not yet had chance to check the - syntax of the block/image/cookie file to ensure that they match what - is expected - however they seem to work. -2) Replaced "configure" script with one generated by "autoconf". Also - use a header "config.h" (was ijbconfig.h in my previous release) for - the #defines. "config.h" is now generated with "autoheader" from - "acconfig.h" and "configure.in". (Note that to install you do not - need autoconf or autoheader - just run "./configure".) - To see command-line options, run "./configure --help". - This is my first ever autoconf script, so it has some rough edges - (how PCRE is handled is the roughest). -3) Error logging code replaced with new module errlog.c, based on the - one from JunkBusterMT (but with the threading code removed). -4) Most of Rodney's 0.21 and 0.21A patches applied. (Marked *). I did not - apply all of these, since I had already independently done conditional - popup file, conditional image file, and integration of popup code. -5*) ACL, Jar and trust files conditionally compiled. -6*) New source file headers. -7*) Various cosmetic changes. (But I have not consistently ordered the - config files - I think that's worthwhile, but it's 1am and I want to - get this released!) -8*) RCS tags on .h files. -9) RCS tags are const char[] rather than const char *. (Saves 4 bytes - per tag ;-) -10) VC++ project files renamed to vc_junkbuster.*. -11) show-proxy-args now shows status of all conditionals, not just REGEX -12) Various functions moved around. Most notably all the system-specific - sockets code which was spread between jcc.c, bind.c, and connect.c, - has been moved to "jbsockets.c". The non-system-specific code from - connect.c and socks4.c has been movet to "gateway.c". Also, the - config file loader and the global variables it writes to have been - moved to "loadcfg.c". (Maybe this should go into loaders.c?) - And candidate for the "worst filename ever" award is "miscutil.c", - which contains, well, miscellaneous utility functions like zalloc. - (Suggestions for a better name for this file are welcome!) -13) Loaders now use a common function to read a line and skip comments, - and this function also stores the proxy_args. -14) Added ./junkbuster --help (Not for Win32 GUI) -15) Added ./junkbuster --version (Not for Win32 GUI) -16) Win32 resources are now all marked as "U.S. English", rather than - being a mix of "U.S. English", "U.K. English" and "Irish English". -17) Version number changes to 2.9.0 - -Known bugs: -- See (1) above about blockfiles. -- Sending SIGHUP (under Red Hat Linux 7.1) causes a crash. v0.21A hangs - after a SIGHUP. This needs investigating, but pthreads support will - almost certainly help here, so it may not be worth investigating - immediately. -- Compiling with shared system pcre and pcreposix libraries is supported - via a switch to configure, but completely untested. - -Please note that there are now 2^14 == 16384 combinations of conditional -defines, and 4 major compilers (VC, Linux, mingw32, cygwin) for a total -of 65536 different builds. We cannot possibly test all of them! My -standard build is "everything on", and I've tested that on each compiler, -along with a few variants. You may uncover new bugs (probably compiler -errors) if you use an exotic combination of switches. - -***************************************************************************** -* Date: 14 May 2001 * -* Version: 2.9.1 * -* Description: Various updates * -* Author: Andreas S. Oesterhelt * -***************************************************************************** -(From his e-mail:) - - - in parsers.c, fixed two #ifdef FORCE to #ifdef FORCE_LOAD - (BTW: I think FORCE is precise enough, since loading remote - data is the whole purpose of a proxy..) - - Set the FORCE_PREFIX (back) to 'IJB-FORCE-LOAD-'. While 'noijb.' - is more elegant and looks like a hostname in the URL, it doesn't - make clear to the inexperienced user that the proxy is bypassed. It - also has a higher name collision risk. - - Filled in the function header templates for my functions in - parsers.c (again). They obviously got lost in our current - patch war ;-) - - Cut the credit for the §-referrer-option from the config file, - that Stefan had placed there. - - Improved the re_filterfile - -***************************************************************************** -* Date: 14 May 2001 * -* Version: 2.9.2 * -* Description: FORCE patch (again!) * -* Author: Andreas S. Oesterhelt * -***************************************************************************** -(These notes written by Jon) - -- Andreas applied the latest version of the FORCE patch. - -***************************************************************************** -* Date: 14 May 2001 (late afternoon) * -* Version: 2.9.3 * -* Description: Various updates * -* Author: Jon Foster * -***************************************************************************** - -1) Incorporated updates from current CVS tree, including: - - Amiga support (completely untested by me - I don't have an Amiga) - - "tinygif 3" support (redirects blocked images to a specified URL, so - the browser doesn't have to load and cache many copies of the same - image). - - one case where there were both local and global "referrer" variables - (yuck!) clarified by renaming the local one to "refer". - - Fixed some places where close() was used instead of close_socket(). - Thanks to Jörg Strohmayer (joergs at users.sourceforge.net) for these. -2) Temporary hack to get FORCE_LOAD to work with IE. I just lowercased the - FORCE_LOAD_PREFIX. Needs fixing properly. -3) Most URLs hardcoded into JunkBuster were changed to go through a script - e.g. http://ijbswa.sourceforge.net/redirect.php?v=2.9.3&to=faq - The only other URLs left are the GNU GPL: - http://www.fsf.org/copyleft/gpl.html - and the home page: - http://ijbswa.sourceforge.net/ - ... and various URLs which will be intercepted by JunkBuster anyway. - TODO: Still need to do something with the URLs in JunkBuster Corp's - copyright/trademark notice on the bottom of the show-proxy-args page. -4) PCRE or GNU Regex is now a #define option. - -***************************************************************************** -* End of file * -***************************************************************************** - diff --git a/doc/gpl.html b/doc/gpl.html index 7f0b6107..830fa2f9 100644 --- a/doc/gpl.html +++ b/doc/gpl.html @@ -1,567 +1,560 @@ - + + + - - - - - - - - - - -The GNU General Public License - - - - - - - - - -

    - -Junkbusters -

    - -
    -

    The GNU General Public License -

    -
    - -
    -

    -We did not write the GPL: the Free Software Foundation did - -

    -
    - -

    <Feedback>  -The GPL allows copying and changing of copyrighted documents -

    -

    -The Free Software Foundation -(FSF) -is a non-profit institution -that designed the GNU General Public License (GPL) to promote the -publication of free software. -The GPL is used by thousands of programmers -who want to give others the right to copy and modify -the source code of their programs. Millions of people benefit from this. -

    -We use the GPL -to allow everyone to use, copy and modify the -Internet Junkbuster -as they wish. -Companies can use it for commercial purposes, -but they are not permitted to use it in products that they claim -as their property -without negotiating a separate agreement with us beforehand. -

    -The GPL -can also be used -on documents written in human languages. -We give everyone permission to use everything on our web site under the GPL. -This means that you do not have to break copyright laws in order -to print a page or email a screen of the text to someone, for example. -Many sites do not permit you to do these things. -

    -If you have a home page, -we recommend that you consider using the GPL to -allow others the right to copy and use all the documents you create for it. -If you just mark a page as copyright, they won't even -legally be able to print it. -If you don't state you are its copyright owner, -they could change it slightly and claim it as their own property. -By marking it with both copyright and GPL notices -you allow them to copy it but not to claim -anything derived from it as their own. -

    -The GPL protects your -JUNKBUSTERS DECLARATION, -Spam Offer, -and all documents from us that you publish on your home page -or distribute to direct marketers by any other means. -By making your -DECLARATION -available to them under the GPL, you are -permitting them use to it, but never to claim it as their property, -even if they transform it. -

    -The -remainder of this page is the text of the GPL. -As legal documents go it's relatively clear, -but unfortunately it's fairly long because it has to cover -a lot of details specific to computer programs -that may not be relevant to -DECLARATIONs. -The hypertext links are ours, and should not be misinterpreted -as an indication of emphasis by the FSF. -

    -

    --- Back to Top of Page ---

    -
    -

    -Version 2, June 1991 - -

    -
    -
    -Copyright 1989, 1991 -
    -Free Software Foundation, Inc. -
    -675 Mass Ave. -
    -Cambridge, MA 02139 -
    -USA -
    -Everyone -is permitted to copy and distribute verbatim copies -of this license document, but changing it is not allowed. - -

    <Feedback>  -Preamble -

    -

    -The licenses for most software are designed to take away your -freedom to share and change it. By contrast, the GNU General Public -License is intended to guarantee your freedom to share and change free -software--to make sure the software is free for all its users. This -General Public License applies to most of the Free Software -Foundation's software and to any other program whose authors commit to -using it. (Some other Free Software Foundation software is covered by -the GNU Library General Public License instead.) You can apply it to -your programs, too. -

    -When we speak of free software, -we are referring to freedom, not -price. Our General Public Licenses are designed to make sure that you -have the freedom to distribute copies of free software (and charge for -this service if you wish), that you receive source code or can get it -if you want it, that you can change the software or use pieces of it -in new free programs; and that you know you can do these things. -

    -To protect your rights, -we need to make restrictions that forbid -anyone to deny you these rights or to ask you to surrender the rights. -These restrictions translate to certain responsibilities for you if you -distribute copies of the software, or if you modify it. -

    -For example, -if you distribute copies of such a program, whether -gratis or for a fee, you must give the recipients all the rights that -you have. You must make sure that they, too, receive or can get the -source code. And you must show them these terms so they know their -rights. -

    -We protect your rights with two steps: -(1) copyright the software, and -(2) offer you this license which gives you legal permission to copy, -distribute and/or modify the software. -

    -Also, -for each author's protection and ours, we want to make certain -that everyone understands that there is no warranty for this free -software. If the software is modified by someone else and passed on, we -want its recipients to know that what they have is not the original, so -that any problems introduced by others will not reflect on the original -authors' reputations. -

    -Finally, -any free program is threatened constantly by software -patents. We wish to avoid the danger that redistributors of a free -program will individually obtain patent licenses, in effect making the -program proprietary. To prevent this, we have made it clear that any -patent must be licensed for everyone's free use or not licensed at all. -

    -The precise terms and conditions -for copying, distribution and -modification follow. -

    - -

    <Feedback>  -GNU General Public License: Terms and Conditions for Copying, Distribution and Modification -

    -

    -O. -This License applies to any program or other work which contains -a notice placed by the copyright holder saying it may be distributed -under the terms of this General Public License. The "Program", below, -refers to any such program or work, and a "work based on the Program" -means either the Program or any derivative work under copyright law: -that is to say, a work containing the Program or a portion of it, -either verbatim or with modifications and/or translated into another -language. (Hereinafter, -translation -is included without limitation in -the term "modification".) Each licensee is addressed as "you". -

    -Activities -other than copying, distribution and modification are not covered by this License; -they are outside its scope. The act of -running the Program is not restricted, and the output from the Program -is covered only if its contents constitute a work based on the -Program (independent of having been made by running the Program). -

    -Whether that is true depends on what the Program does. -

      -
    1. -You may copy -and distribute verbatim copies of the Program's -source code as you receive it, in any medium, provided that you -conspicuously and appropriately publish on each copy an appropriate -copyright notice and disclaimer of warranty; keep intact all the -notices that refer to this License and to the absence of any warranty; -and give any other recipients of the Program a copy of this License -along with the Program. -

      -You may charge a fee -for the physical act of transferring a copy, and -you may at your option offer warranty protection in exchange for a fee. -

    2. -You may modify -your copy or copies of the Program or any portion -of it, thus forming a work based on the Program, and copy and -distribute such modifications or work under the terms of Section 1 -above, provided that you also meet all of these conditions: -
        -
      1. -You must cause -the modified files to carry prominent notices -stating that you changed the files and the date of any change. -
      2. -You must -cause any work that you distribute or publish, that in -whole or in part contains or is derived from the Program or any -part thereof, to be licensed as a whole at no charge to all third -parties under the terms of this License. -
      3. -If the modified program -normally reads commands interactively -when run, you must cause it, when started running for such -interactive use in the most ordinary way, to print or display an -announcement including an appropriate copyright notice and a -notice that there is no warranty (or else, saying that you provide -a warranty) and that users may redistribute the program under -these conditions, and telling the user how to view a copy of this -License. (Exception: if the Program itself is interactive but -does not normally print such an announcement, your work based on -the Program is not required to print an announcement.) -
      -

      -These requirements -apply to the modified work as a whole. If -identifiable sections of that work are not derived from the Program, -and can be reasonably considered independent and separate works in -themselves, then this License, and its terms, do not apply to those -sections when you distribute them as separate works. But when you -distribute the same sections as part of a whole which is a work based -on the Program, the distribution of the whole must be on the terms of -this License, whose permissions for other licensees extend to the -entire whole, and thus to each and every part regardless of who wrote it. -

      -Thus, -it is not the intent of this section to claim rights or contest -your rights to work written entirely by you; rather, the intent is to -exercise the right to control the distribution of derivative or -collective works based on the Program. -

      -In addition, -mere aggregation of another work not based on the Program -with the Program (or with a work based on the Program) on a volume of -a storage or distribution medium does not bring the other work under -the scope of this License. -

    3. -You may copy -and distribute the Program (or a work based on it, -under Section 2) in object code or executable form under the terms of -Sections 1 and 2 above provided that you also do one of the following: -
        -
      1. -Accompany it -with the complete corresponding machine-readable -source code, which must be distributed under the terms of Sections -1 and 2 above on a medium customarily used for software interchange; or, -
      2. -Accompany it with a written offer, -valid for at least three -years, to give any third party, for a charge no more than your -cost of physically performing source distribution, a complete -machine-readable copy of the corresponding source code, to be -distributed under the terms of Sections 1 and 2 above on a medium -customarily used for software interchange; or, -
      3. -Accompany it -with the information you received as to the offer -to distribute corresponding source code. (This alternative is -allowed only for noncommercial distribution and only if you -received the program in object code or executable form with such -an offer, in accord with Subsection b above.) -
      -

      -The source code -for a work means the preferred form of the work for -making modifications to it. For an executable work, complete source -code means all the source code for all modules it contains, plus any -associated interface definition files, plus the scripts used to -control compilation and installation of the executable. However, as a -special exception, the source code distributed need not include -anything that is normally distributed (in either source or binary -form) with the major components (compiler, kernel, and so on) of the -operating system on which the executable runs, unless that component -itself accompanies the executable. -

      -If distribution of executable or object code is made -by offering -access to copy from a designated place, then offering equivalent -access to copy the source code from the same place counts as -distribution of the source code, even though third parties are not -compelled to copy the source along with the object code. -

    4. -You may not copy, -modify, sublicense, or distribute the Program -except as expressly provided under this License. Any attempt -otherwise to copy, modify, sublicense or distribute the Program is -void, and will automatically terminate your rights under this License. -However, parties who have received copies, or rights, from you under -this License will not have their licenses terminated so long as such -parties remain in full compliance. -
    5. -You are not required -to accept this License, since you have not -signed it. However, nothing else grants you permission to modify or -distribute the Program or its derivative works. These actions are -prohibited by law if you do not accept this License. Therefore, by -modifying or distributing the Program (or any work based on the -Program), you indicate your acceptance of this License to do so, and -all its terms and conditions for copying, distributing or modifying -the Program or works based on it. -
    6. -Each time you redistribute -the Program (or any work based on the -Program), the recipient automatically receives a license from the -original licensor to copy, distribute or modify the Program subject to -these terms and conditions. You may not impose any further -restrictions on the recipients' exercise of the rights granted herein. -You are not responsible for enforcing compliance by third parties to -this License. -
    7. -If, as a consequence of a court judgment -or allegation of patent -infringement or for any other reason (not limited to patent issues), -conditions are imposed on you (whether by court order, agreement or -otherwise) that contradict the conditions of this License, they do not -excuse you from the conditions of this License. If you cannot -distribute so as to satisfy simultaneously your obligations under this -License and any other pertinent obligations, then as a consequence you -may not distribute the Program at all. For example, if a patent -license would not permit royalty-free redistribution of the Program by -all those who receive copies directly or indirectly through you, then -the only way you could satisfy both it and this License would be to -refrain entirely from distribution of the Program. -

      -If any portion -of this section is held invalid or unenforceable under -any particular circumstance, the balance of the section is intended to -apply and the section as a whole is intended to apply in other -circumstances. -

      -It is not the purpose -of this section to induce you to infringe any -patents or other property right claims or to contest validity of any -such claims; this section has the sole purpose of protecting the -integrity of the free software distribution system, which is -implemented by public license practices. Many people have made -generous contributions to the wide range of software distributed -through that system in reliance on consistent application of that -system; it is up to the author/donor to decide if he or she is willing -to distribute software through any other system and a licensee cannot -impose that choice. -

      -This section -is intended to make thoroughly clear what is believed to -be a consequence of the rest of this License. -

    8. -If the distribution -and/or use of the Program is restricted in -certain countries either by patents or by copyrighted interfaces, the -original copyright holder who places the Program under this License -may add an explicit geographical distribution limitation excluding -those countries, so that distribution is permitted only in or among -countries not thus excluded. In such case, this License incorporates -the limitation as if written in the body of this License. -
    9. -The Free Software Foundation -may publish revised and/or new versions -of the General Public License from time to time. Such new versions will -be similar in spirit to the present version, but may differ in detail to -address new problems or concerns. -Each version is given a distinguishing version number. If the Program -specifies a version number of this License which applies to it and "any -later version", you have the option of following the terms and conditions -either of that version or of any later version published by the Free -Software Foundation. If the Program does not specify a version number of -this License, you may choose any version ever published by the Free Software -Foundation. -
    10. -If you wish to incorporate parts -of the Program into other free -programs whose distribution conditions are different, write to the author -to ask for permission. For software which is copyrighted by the Free -Software Foundation, write to the Free Software Foundation; we sometimes -make exceptions for this. Our decision will be guided by the two goals -of preserving the free status of all derivatives of our free software and -of promoting the sharing and reuse of software generally. -

      -NO WARRANTY -

    11. -BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, -THERE IS NO WARRANTY -FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN -OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES -PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED -OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF -MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS -TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE -PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, -REPAIR OR CORRECTION. -
    12. -IN NO EVENT UNLESS REQUIRED -BY APPLICABLE LAW OR AGREED TO IN WRITING -WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR -REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, -INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING -OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED -TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY -YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER -PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE -POSSIBILITY OF SUCH DAMAGES. -
    -END OF TERMS AND CONDITIONS -

    - -

    <Feedback>  -Appendix: How to Apply These Terms to Your New Programs -

    -

    -If you develop a new program, and you want it to be of the greatest -possible use to the public, the best way to achieve this is to make it -free software which everyone can redistribute and change under these terms. -

    -To do so, -attach the following notices to the program. It is safest -to attach them to the start of each source file to most effectively -convey the exclusion of warranty; and each file should have at least -the "copyright" line and a pointer to where the full notice is found. -

    -<one line -to give the program's name and a brief idea of what it -does.> -Copyright (C) 19yy -<name of -author> -

    -This program is free software; -you can redistribute it and/or modify -it under the terms of the GNU General Public License as published by -the Free Software Foundation; either version 2 of the License, or -(at your option) any later version. -

    -This program -is distributed in the hope that it will be useful, -but WITHOUT ANY WARRANTY; without even the implied warranty of -MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -GNU General Public License for more details. -

    -You should -have received a copy of the GNU General Public License -along with this program; if not, write to the Free Software -Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. -

    -

    -Also add -information on how to contact you by electronic and paper mail. -

    -If the program is interactive, -make it output a short notice like this -when it starts in an interactive mode: -

    -Gnomovision version 69, Copyright (C) 19yy name of author -Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. -This is free software, and you are welcome to redistribute it -under certain conditions; type `show c' for details. -
    -

    -The hypothetical -commands `show w' and `show c' should show the appropriate -parts of the General Public License. Of course, the commands you use may -be called something other than `show w' and `show c'; they could even be -mouse-clicks or menu items--whatever suits your program. -

    -You should also get your employer -(if you work as a programmer) or your -school, if any, to sign a "copyright disclaimer" for the program, if -necessary. Here is a sample; alter the names: -

    -Yoyodyne, Inc., hereby disclaims all copyright interest in the program -`Gnomovision' (which makes passes at compilers) written by James Hacker. - -<signature -of -Ty Coon>, -1 April 1989 -
    -Ty Coon, President of Vice -
    -

    -This General Public License -does not permit incorporating your program into -proprietary programs. If your program is a subroutine library, you may -consider it more useful to permit linking proprietary applications with the -library. If this is what you want to do, use the GNU Library General -Public License instead of this License. -

    -

    --- Back to Top of Page ---

    - -Home - · - - - · Site Map - - · Legal - - · Privacy - - · Cookies - - · Banner Ads - - · Telemarketing - - · Mail - - · Spam - -
    - -
    - - -

    -Copyright © 1996-8 Junkbusters -® Corporation. -Copying and distribution permitted under -the GNU -General Public License. - - -1998/10/31 -http://www.junkbusters.com/ht/en/gpl.html - -

    webmaster@junkbusters.com
    -     - + + The GNU General Public License + + + + + + +

    + Website · + Manual · + FAQ · GPL

    + +

    Internet JUNKBUSTER License

    + +

    This document is out of date

    + +

    Development of Junkbuster is ongoing and this document is + no longer current. However, it may provide some assistance. If + you have problems, please use the Yahoo Groups + mailing list (which includes an archive of mail), the + SourceForge.net project page, or + see the project's home + page. Please also bear in mind that versions 2.9.x of + Junkbuster are development releases, and are not production + quality.

    + +

    The GNU General Public License

    + +

    We did not write the GPL: + the Free Software + Foundation did

    + +

    +  The GPL allows copying and changing of copyrighted + documents

    + +

    The Free Software Foundation (FSF) is a non-profit + institution that designed the GNU General Public License (GPL) + to promote the publication of free software. The GPL is used by + thousands of programmers who want to give others the right to + copy and modify the source code of their programs. Millions of + people benefit from this.

    + +

    We use the GPL to allow everyone to + use, copy and modify the Internet Junkbuster as they wish. Companies can use it for commercial + purposes, but they are not permitted to use it in products + that they claim as their property.

    + +

    The GPL can also be used on documents + written in human languages. This documentation for the Internet + Junkbuster is also under the GPL. This means that you do not + have to break copyright laws in order to print a page or email + a screen of the text to someone, for example.

    + +

    The remainder of this page is the text of + the GPL. As legal documents go it's relatively clear, but + unfortunately it's fairly long because it has to cover a lot of + details. The HTML formatting is ours, and should not be + misinterpreted as changing the license in any way.

    + +

    +

    + +

    Version 2, June 1991

    + +
    + Copyright 1989, 1991
    + Free Software Foundation, Inc.
    + 675 Mass Ave.
    + Cambridge, MA 02139
    + USA +
    + Everyone + +

    is permitted to copy and distribute verbatim copies of this + license document, but changing it is not allowed.

    + +

    *  Preamble

    + +

    The licenses for most software are designed to take away + your freedom to share and change it. By contrast, the GNU + General Public License is intended to guarantee your freedom to + share and change free software--to make sure the software is + free for all its users. This General Public License applies to + most of the Free Software Foundation's software and to any + other program whose authors commit to using it. (Some other + Free Software Foundation software is covered by the GNU Library + General Public License instead.) You can apply it to your + programs, too.

    + +

    When we speak of free software, we are + referring to freedom, not price. Our General Public Licenses + are designed to make sure that you have the freedom to + distribute copies of free software (and charge for this service + if you wish), that you receive source code or can get it if you + want it, that you can change the software or use pieces of it + in new free programs; and that you know you can do these + things.

    + +

    To protect your rights, we need to make + restrictions that forbid anyone to deny you these rights or to + ask you to surrender the rights. These restrictions translate + to certain responsibilities for you if you distribute copies of + the software, or if you modify it.

    + +

    For example, if you distribute + copies of such a program, whether gratis or for a fee, you must + give the recipients all the rights that you have. You must make + sure that they, too, receive or can get the source code. And + you must show them these terms so they know their rights.

    + +

    We protect your rights with two steps: + (1) copyright the software, and (2) offer you this license + which gives you legal permission to copy, distribute and/or + modify the software.

    + +

    Also, for each author's protection + and ours, we want to make certain that everyone understands + that there is no warranty for this free software. If the + software is modified by someone else and passed on, we want its + recipients to know that what they have is not the original, so + that any problems introduced by others will not reflect on the + original authors' reputations.

    + +

    Finally, any free program is threatened + constantly by software patents. We wish to avoid the danger + that redistributors of a free program will individually obtain + patent licenses, in effect making the program proprietary. To + prevent this, we have made it clear that any patent must be + licensed for everyone's free use or not licensed at all.

    + +

    The precise terms and conditions for + copying, distribution and modification follow.

    + +

    *  GNU General Public License: Terms + and Conditions for Copying, Distribution and Modification

    + +

    O. This License applies to any program + or other work which contains a notice placed by the copyright + holder saying it may be distributed under the terms of this + General Public License. The "Program", below, refers to any + such program or work, and a "work based on the Program" means + either the Program or any derivative work under copyright law: + that is to say, a work containing the Program or a portion of + it, either verbatim or with modifications and/or translated + into another language. (Hereinafter, translation is included + without limitation in the term "modification".) Each licensee + is addressed as "you".

    + +

    Activities other than copying, + distribution and modification are not covered by this License; + they are outside its scope. The act of running the Program is + not restricted, and the output from the Program is covered only + if its contents constitute a work based on the Program + (independent of having been made by running the Program).

    + +

    Whether that is true depends on what the + Program does.
    +

    + +
      +
    1. + You may copy and distribute verbatim + copies of the Program's source code as you receive it, in + any medium, provided that you conspicuously and + appropriately publish on each copy an appropriate copyright + notice and disclaimer of warranty; keep intact all the + notices that refer to this License and to the absence of + any warranty; and give any other recipients of the Program + a copy of this License along with the Program. + +

      You may charge a fee for the physical + act of transferring a copy, and you may at your option + offer warranty protection in exchange for a fee.

      +
      2. + +
    2. + You may modify your copy or copies of + the Program or any portion of it, thus forming a work based + on the Program, and copy and distribute such modifications + or work under the terms of Section 1 above, provided that + you also meet all of these conditions:
      + + +
        +
      1. You must cause the modified + files to carry prominent notices stating that you changed + the files and the date of any change.
        2. + +
      2. You must cause any work that + you distribute or publish, that in whole or in part + contains or is derived from the Program or any part + thereof, to be licensed as a whole at no charge to all + third parties under the terms of this License.
        3. + +
      3. If the modified program + normally reads commands interactively when run, you must + cause it, when started running for such interactive use + in the most ordinary way, to print or display an + announcement including an appropriate copyright notice + and a notice that there is no warranty (or else, saying + that you provide a warranty) and that users may + redistribute the program under these conditions, and + telling the user how to view a copy of this License. + (Exception: if the Program itself is interactive but does + not normally print such an announcement, your work based + on the Program is not required to print an + announcement.)
        4. +
      + +

      These requirements apply to the + modified work as a whole. If identifiable sections of that + work are not derived from the Program, and can be + reasonably considered independent and separate works in + themselves, then this License, and its terms, do not apply + to those sections when you distribute them as separate + works. But when you distribute the same sections as part of + a whole which is a work based on the Program, the + distribution of the whole must be on the terms of this + License, whose permissions for other licensees extend to + the entire whole, and thus to each and every part + regardless of who wrote it.

      + +

      Thus, it is not the intent of this + section to claim rights or contest your rights to work + written entirely by you; rather, the intent is to exercise + the right to control the distribution of derivative or + collective works based on the Program.

      + +

      In addition, mere aggregation + of another work not based on the Program with the Program + (or with a work based on the Program) on a volume of a + storage or distribution medium does not bring the other + work under the scope of this License.

      +
      3. + +
    3. + You may copy and distribute the + Program (or a work based on it, under Section 2) in object + code or executable form under the terms of Sections 1 and 2 + above provided that you also do one of the following:
      + + +
        +
      1. Accompany it with the complete + corresponding machine-readable source code, which must be + distributed under the terms of Sections 1 and 2 above on + a medium customarily used for software interchange; + or,
        2. + +
      2. Accompany it with a written + offer, valid for at least three years, to give any + third party, for a charge no more than your cost of + physically performing source distribution, a complete + machine-readable copy of the corresponding source code, + to be distributed under the terms of Sections 1 and 2 + above on a medium customarily used for software + interchange; or,
        3. + +
      3. Accompany it with the + information you received as to the offer to distribute + corresponding source code. (This alternative is allowed + only for noncommercial distribution and only if you + received the program in object code or executable form + with such an offer, in accord with Subsection b + above.)
        4. +
      + +

      The source code for a work means + the preferred form of the work for making modifications to + it. For an executable work, complete source code means all + the source code for all modules it contains, plus any + associated interface definition files, plus the scripts + used to control compilation and installation of the + executable. However, as a special exception, the source + code distributed need not include anything that is normally + distributed (in either source or binary form) with the + major components (compiler, kernel, and so on) of the + operating system on which the executable runs, unless that + component itself accompanies the executable.

      + +

      If distribution of executable or object + code is made by offering access to copy from a + designated place, then offering equivalent access to copy + the source code from the same place counts as distribution + of the source code, even though third parties are not + compelled to copy the source along with the object + code.

      +
      4. + +
    4. You may not copy, modify, + sublicense, or distribute the Program except as expressly + provided under this License. Any attempt otherwise to copy, + modify, sublicense or distribute the Program is void, and + will automatically terminate your rights under this License. + However, parties who have received copies, or rights, from + you under this License will not have their licenses + terminated so long as such parties remain in full + compliance.
      5. + +
    5. You are not required to accept + this License, since you have not signed it. However, nothing + else grants you permission to modify or distribute the + Program or its derivative works. These actions are prohibited + by law if you do not accept this License. Therefore, by + modifying or distributing the Program (or any work based on + the Program), you indicate your acceptance of this License to + do so, and all its terms and conditions for copying, + distributing or modifying the Program or works based on + it.
      6. + +
    6. Each time you redistribute the + Program (or any work based on the Program), the recipient + automatically receives a license from the original licensor + to copy, distribute or modify the Program subject to these + terms and conditions. You may not impose any further + restrictions on the recipients' exercise of the rights + granted herein. You are not responsible for enforcing + compliance by third parties to this License.
      7. + +
    7. + If, as a consequence of a court + judgment or allegation of patent infringement or for + any other reason (not limited to patent issues), conditions + are imposed on you (whether by court order, agreement or + otherwise) that contradict the conditions of this License, + they do not excuse you from the conditions of this License. + If you cannot distribute so as to satisfy simultaneously + your obligations under this License and any other pertinent + obligations, then as a consequence you may not distribute + the Program at all. For example, if a patent license would + not permit royalty-free redistribution of the Program by + all those who receive copies directly or indirectly through + you, then the only way you could satisfy both it and this + License would be to refrain entirely from distribution of + the Program. + +

      If any portion of this section is + held invalid or unenforceable under any particular + circumstance, the balance of the section is intended to + apply and the section as a whole is intended to apply in + other circumstances.

      + +

      It is not the purpose of this + section to induce you to infringe any patents or other + property right claims or to contest validity of any such + claims; this section has the sole purpose of protecting the + integrity of the free software distribution system, which + is implemented by public license practices. Many people + have made generous contributions to the wide range of + software distributed through that system in reliance on + consistent application of that system; it is up to the + author/donor to decide if he or she is willing to + distribute software through any other system and a licensee + cannot impose that choice.

      + +

      This section is intended to make + thoroughly clear what is believed to be a consequence of + the rest of this License.

      +
      8. + +
    8. If the distribution and/or use of the + Program is restricted in certain countries either by patents + or by copyrighted interfaces, the original copyright holder + who places the Program under this License may add an explicit + geographical distribution limitation excluding those + countries, so that distribution is permitted only in or among + countries not thus excluded. In such case, this License + incorporates the limitation as if written in the body of this + License.
      9. + +
    9. The Free Software Foundation may + publish revised and/or new versions of the General Public + License from time to time. Such new versions will be similar + in spirit to the present version, but may differ in detail to + address new problems or concerns. Each version is given a + distinguishing version number. If the Program specifies a + version number of this License which applies to it and "any + later version", you have the option of following the terms + and conditions either of that version or of any later version + published by the Free Software Foundation. If the Program + does not specify a version number of this License, you may + choose any version ever published by the Free Software + Foundation.
      10. + +
    10. + If you wish to incorporate parts + of the Program into other free programs whose distribution + conditions are different, write to the author to ask for + permission. For software which is copyrighted by the Free + Software Foundation, write to the Free Software Foundation; + we sometimes make exceptions for this. Our decision will be + guided by the two goals of preserving the free status of + all derivatives of our free software and of promoting the + sharing and reuse of software generally. + +

      NO WARRANTY

      +
      11. + +
    11. BECAUSE THE PROGRAM IS LICENSED FREE OF + CHARGE, THERE IS NO WARRANTY FOR THE PROGRAM, TO THE + EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE + STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES + PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, + EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, + THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A + PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND + PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM + PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY + SERVICING, REPAIR OR CORRECTION.
      12. + +
    12. IN NO EVENT UNLESS REQUIRED BY + APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT + HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE + THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, + INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL + DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE + PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA + BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD + PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER + PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN + ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
      13. +
    + +

    END OF TERMS AND CONDITIONS
    +
    +

    + +

    *  Appendix: How to Apply These + Terms to Your New Programs

    + +

    If you develop a new program, and you want it to be of the + greatest possible use to the public, the best way to achieve + this is to make it free software which everyone can + redistribute and change under these terms.

    + +

    To do so, attach the following notices + to the program. It is safest to attach them to the start of + each source file to most effectively convey the exclusion of + warranty; and each file should have at least the "copyright" + line and a pointer to where the full notice is found.

    + +
    + <one line to give the program's name and a brief idea of + what it does.> Copyright (C) 19yy <name of author> + +

    This program is free software; you can + redistribute it and/or modify it under the terms of the GNU + General Public License as published by the Free Software + Foundation; either version 2 of the License, or (at your + option) any later version.

    + +

    This program is distributed in the + hope that it will be useful, but WITHOUT ANY WARRANTY; + without even the implied warranty of MERCHANTABILITY or + FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public + License for more details.

    + +

    You should have received a copy of the + GNU General Public License along with this program; if not, + write to the Free Software Foundation, Inc., 675 Mass Ave, + Cambridge, MA 02139, USA.

    +
    + +

    Also add information on how to contact + you by electronic and paper mail.

    + +

    If the program is interactive, make it + output a short notice like this when it starts in an + interactive mode:

    + +
    + Gnomovision version 69, Copyright (C) 19yy name of author + Gnomovision comes with ABSOLUTELY NO WARRANTY; for details + type `show w'. This is free software, and you are welcome to + redistribute it under certain conditions; type `show c' for + details. +
    + +

    The hypothetical commands `show w' and + `show c' should show the appropriate parts of the General + Public License. Of course, the commands you use may be called + something other than `show w' and `show c'; they could even be + mouse-clicks or menu items--whatever suits your program.

    + +

    You should also get your employer + (if you work as a programmer) or your school, if any, to sign a + "copyright disclaimer" for the program, if necessary. Here is a + sample; alter the names:

    + +
    + Yoyodyne, Inc., hereby disclaims all copyright interest in + the program `Gnomovision' (which makes passes at compilers) + written by James Hacker. <signature of Ty Coon>, 1 + April 1989
    + Ty Coon, President of Vice +
    + +

    This General Public License does not + permit incorporating your program into proprietary programs. If + your program is a subroutine library, you may consider it more + useful to permit linking proprietary applications with the + library. If this is what you want to do, use the GNU Library + General Public License instead of this License.

    + +

    +

    + +

    + Website · + Manual · + FAQ · GPL

    + +

    + Copyright © 1996-8 Junkbusters ® + Corporation. Copyright © 2001 + Jon + Foster. Copying and distribution permitted under the GNU General Public License. The text of the + GNU GPL itself is copyrighted by the FSF, and may be copied but + not modified.

    + +

    + http://sourceforge.net/projects/ijbswa/

    + + diff --git a/doc/ijbfaq.html b/doc/ijbfaq.html deleted file mode 100644 index ab7e7989..00000000 --- a/doc/ijbfaq.html +++ /dev/null @@ -1,3186 +0,0 @@ - - - - - - - - - - - - -Internet Junkbuster Frequently Asked Questions - - - - - - - - - -
    -

    Internet JUNKBUSTER Frequently Asked Questions -

    -
    - -

    -Download for UNIX - - · (Download for Windows 95/NT) - - · (Other OS) - - · Configuring Browsers - - · Installation - - · For Companies - - · Blocking - - · Cookies - - · Anonymity - - · Security - - · (Technical Manual) -

    -
    -
    -

    -The Top Ten Questions - -

    -
    -
    For a list of the questions on this page (without the answers), -see our -Table of Contents. -It also contains detailed pointers into our pages -on -cookies -and on busting -junk e-mail, -junk mail -and -telemarketing calls. - -

    <Feedback>  -What is the Internet Junkbuster Proxy and what does it do for me? -

    -

    -The -Internet Junkbuster -Proxy -TM -is -free -privacy-enhancing software that can be run on your PC or by your -ISP -or company. -It blocks requests for -URLs -(typically banner ads) -that match its -blockfile. -It also deletes unauthorized -cookies -and other -unwanted identifying -header information -that is exchanged between web servers and browsers. -These headers are not normally accessible to users -(even though they may contain information that's important to your privacy), -but with the -Internet Junkbuster -you can see almost -anything you want -and control everything you're likely to need. -You -decide what's junk. -SM -Many people -publish -their blockfiles to help others get started. -

    - -

    <Feedback>  -Is there a license fee / warranty / registration form / expiration? -

    -

    -No, none of these. -It's completely free of charge. -Junkbusters -offers you the software to copy, use, modify and distribute -as you wish, forever, at -no charge -under the -GNU General Public License. -

    -It comes with -no warranty of any kind. -

    -You don't have to register, -in fact we don't even provide a way to do so: -the practice of registering software is -usually just an -excuse -to send you solicitations and -sell your name -and information about your behavior. -You are welcome to obtain and use our software as anonymously you wish. -(Your -IP -address will naturally be -disclosed -when you download it, -so if you work for a web ad company -you might want to use a service such as the -lpwa.com -when you get it. -We -never -want to be given any information that you consider private or confidential.) -

    -We are often asked why we give away a product that many -would happily pay for. -The answer is that we are determined to carry out our -mission: -to free the world from junk communications. -

    - -

    <Feedback>  -Does it run on Windows? On a Mac? On the AOL browser? -

    -

    -For the latest information on availability, see the -Distribution Information -page. -We -don't -think it will ever run on -Windows 3.1. -But you don't need to have it running on your computer -if you get your -ISP -or Systems Administrator at -work -to run it. -

    - -

    <Feedback>  -How can I get my ISP to run the Internet Junkbuster? -

    -

    -Try their sales or support department -(depending on whether you are already a customer). -You might send them email including the following -URL: -
    -   http://www.junkbusters.com/ht/en/ijbfaq.html#isps -
    -You could mention that many -other -ISPs -provide it, -and that you regard it as an important part of your decision on -where to buy Internet service. -

    - -

    <Feedback>  -Who chooses the options that control what is blocked? -

    -

    -Whoever starts the -Internet Junkbuster -chooses the options and the blockfile. -If your -ISP -runs it for you, they have to make these decision -(though -some -may give you a choice of proxies, -and a way to suggest new -URLs -to block). -If you run it on your computer, -You -decide what's junk. -SM -

    - -

    <Feedback>  -How do I download and run the program on my computer? -

    -

    -It depends on your platform. -If you are using Windows 95 or NT, -see our separate page on -installing under Windows. -If you have a C compiler and are using almost any flavor of -UNIX ® -you -download it, compile it, start it running, -and then -configure your browser. -Several precompiled packages are also available through links in our -distribution page, -which lists all available platforms. -

    -If you are using a platform for which we have no current -availability, -you are welcome to port the code. -If you do this and you would like us to consider publishing your ported version, -please -tell us. -

    - -

    <Feedback>  -How can I tell which blockfile and options are being used? -

    -

    -Just point your browser to -http://internet.junkbuster.com/cgi-bin/show-proxy-args -or to any -URL -ending in -show-proxy-args -(even if it doesn't exist). -It needn't exist because the -Internet Junkbuster 2.0 -intercepts the request, blocks it, -and returns in its place -information about itself. -Using the -URL -above is useful for checking that your browser really is -going through an -Internet Junkbuster, -because the -junkbuster.com -server returns a warning if the request actually gets to it. -Some people set the home page of their browser to such a -URL -to be sure that it is configured to use the proxy. -

    -If you wish to check the header information -your proxy is actually sending, -a visit to -http://internet.junkbuster.com/cgi-bin/show-http-headers -will give you the more relevant ones first. -You might also like to turn the proxy -off -and compare the difference. (Don't forget to turn it back on again.) -

    - -

    <Feedback>  -My browser started giving me ``server not responding'' messages -

    -

    -Once your browser is told to use a proxy such as the -Internet Junkbuster, -it thinks of it as its server for everything, -so this message means it can't talk to the proxy. -The -Internet Junkbuster -may not be running, -or you may have specified its proxy -address -incorrectly. -Check that the details you entered are correct. -If you have -telnet -you can try connecting to the appropriate port to see if the -Internet Junkbuster -is running. -If your -ISP -is running the -Internet Junkbuster, -you may want to check with them. -If you are running it yourself under -UNIX ®, -try looking at a -ps ax -to see if it is running. -The -port -specified in its options should be the same one as your -browser has configured. -

    - -

    <Feedback>  -I've got this great idea for a new feature. Who do I tell? -

    -

    -We'd be very interested to hear it, but please bear a few things in mind. -

    -

    - -

    <Feedback>  -My question isn't listed here. Who do I ask for support? -

    -

    -If you find using our free product -harder than you're used to for consumer software, -there are many -commercial alternatives -that you could consider. -

    -The answer to detailed technical questions may be answered in -manual page, -or in the source code. -Also double-check this page for an answer: -using the ``find'' feature on your browser for likely keywords may help. -Our site also has a -search -feature. -

    -Many people post requests for help and responses on -Usenet. -

    -If your -ISP -is providing -the -Internet Junkbuster -for you, -and your question is about how to use it, -check their web page before asking them. -

    -Even though we don't offer the kind of -support you might expect if you paid a lot of money for a software product, -you can still ask us. -But before you do, please consider whether -you could ask someone closer to you. -And please be patient if we're slow to reply: we -never charge consumers -for our services, -so we have to subsidize consumers with revenue from companies, -and our resources are limited. -

    -If your company or organization -would be interested in a maintenance contract -with phone and email support, -hard copy documentation and source code and pre-compiled binaries on tape -or disk, -please -ask us -for a quote. -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Configuring your browser to talk to the Internet Junkbuster - -

    -
    -
    -

    <Feedback>  -What is the proxy address of the Internet Junkbuster? -

    -

    -If you set up -the -Internet Junkbuster -to run on the computer you browse from -(rather than your -ISP's server -or some networked computer at work), -the proxy will be on -localhost -(which is the special name used by every computer on the Internet to -refer to itself) -and -the port will be -8000 -(unless you have told the -Internet Junkbuster -to -run on a different port with the -listen-address -option). -So you when -configuring your browser's proxy settings -you typically enter the word -localhost -in the two boxes next to - -HTTP -and - -Secure, -and the number -8000 -in the two boxes labelled -to the right of those boxes. -

    -If your -ISP -or company is running -the -Internet Junkbuster -for you, -they will tell you the address to use. -It will be the name of the computer it's running on -(or possibly its numeric IP address), -plus a port number. -Port 8000 is the default, so assume this number if it is not specified. -Sometimes a colon is used to glue them together, -as in -junkbuster.fictitous-pro-privacy-isp.net:8000 -but -with most browsers -you do not type the colon, -you enter the address and port number in separate boxes. -

    - -

    <Feedback>  -How do I tell the browser where to find the Internet Junkbuster? -

    -

    -All current browsers can be told the address of a proxy to use. -You enter the same information in two fields in your browser's proxy -configuration screen (see list below): one for -HTTP, -and one for the Secure Protocol (assuming your browser supports -SSL). -If you find some information already entered for your proxy, -see the -next question. -Here are the menus you go through to get to the proxy configuration settings. -(We also recommend that you -disable Java, -which is a separate operation.) -Make notes on the changes you make so you know how to undo them! -You will need to know what you did -in case you wish to -discontinue -using the proxy. -

      -
    • -For -Netscape -2.01, 2.02 and 3.0 -[Graphic Illustration]: - -Options; - -Network Preferences; - -Proxies; - -Manual Proxy Configuration View ; -enter -proxy address details -under - -HTTP -and - -Security Proxy; -click on - -OK; -click on the next - -OK. -
      -With Netscape 2.0, -follow with - -Options, - -Save Options. -
      -With Netscape 4.X series, you first have to go through - -Edit/Preferences. -[Graphic Illustration] -Then in the frame on the left, -click on triangle pointing to the right towards the word - -Advanced; -it will switch to a triangle pointing down; -and the words - -Cache, - -Proxies -and - -Disk Space -appear. -Click on - -Proxies -and the frame on the right will -display a banner saying - -Proxies Configure proxies to access the Internet. -Click the radio button labeled - -Manual proxy configuration -then click the button labeled - -View; -enter -proxy address details -under - -HTTP -and - -Security Proxy; -click on - -OK; -click on the next - -OK. -
    • -For -Internet Explorer 3.0: - -View; - -Options; - -Connections; -tick - -Connect through proxy server -box; - -Settings; -enter -proxy address details - -HTTP -Box, with port number in the second box; -same with - -Secure; -click on - -OK. -
    • -For Internet Explorer 2.0: - -View; - -Options; - -Proxy; -enter -proxy address details -click on - -OK. -
    • -On NT for MS-IE: - -Control Panel; - -Internet; - -Advanced; - -Proxy. -
    • -For MS-IE 4.0: seems to be almost the same as for -3.0, - -View; - -Internet Options; - -Connections; -tick - -Connect through proxy server -box; - -Settings; -enter -proxy address details - -HTTP -Box, with port number in the second box; -same with - -Secure; -click on - -OK. -Note that 4.0 has - -Advanced -settings to allow -HTTP -1.1 through proxies; -these must be disabled because the proxy does not currently understand -HTTP -1.1. -Please -tell us -if you see any other differences. -
    • -For NCSA Mosaic for Windows: - -Options, - -Preferences, - -Proxy; -enter -proxy address details -under - -HTTP. -
    • -For -Opera: - -Preferences, - -Proxy servers; -check the box next to HTTP; -enter the server and port number in the box on the other side; -click on - -OK. -
    • -For -Lynx, -Mosaic/X, -Grail, -and -W3O -Arena, -you can specify the proxy via environment variables -before starting the application. -This will probably be done with something like either -
      -   setenv http_proxy http://localhost:8000/ -
      -or -
      -   http_proxy=http://junkbuster.fictitous-pro-privacy-isp.net:8000/ export http_proxy -
      -depending on your shell and where the -Internet Junkbuster -lives. -
    -If your browser is not listed here, -or if you notice an error, please -tell us -the correct procedure. -

    - -

    <Feedback>  -What should I do if I find another proxy is already configured? -

    -

    -Some -ISPs -and companies require all Web traffic to go through their proxy. -In this case you would find your proxy configuration with values already set, -possibly under -Automatic Proxy Configuration -(in the case of -Netscape -and -MS-IE 3.0 -and above). -It's probably a firewall proxy between your company and the outside world, -or a -caching proxy -if you're using an -ISP. -

    -What needs to be done in this case is to -use the -forwardfile -option -to tell the -Internet Junkbuster -the address of the other proxy. -Specify a different (unused) port number -with the -listen-address -option, -and configure your browser to -use that port. -If you haven't done this kind of thing before, -it's probably best to consult your systems administrator or -ISP -about it; -check their web page first. -

    - -

    <Feedback>  -What if I want to stop using the Internet Junkbuster? -

    -

    -Just go through the same procedure you used to start your -browser using the -Internet Junkbuster, -but remove the details you put in -(or if there was something there before, restore it). -You may need to use - -Save Options -to make this change permanent. -On Netscape 3.0 you can go through - -Options; - -Network Preferences; - -Proxies -and click on - -No Proxy -to turn it off, and later click on - -Manual Proxy Configuration -if you want to start using it again. -(No need to enter the again details under - -View -as you did the -first time; -they should remain there unchanged.) -

    -This stops your browser talking to the proxy; -shutting down the proxy -is a different matter. -

    - -

    <Feedback>  -Automatic dialing isn't working any more. How do I fix it? -

    -

    -Some browsers (such as MSIE-4) can be configured to dial your -ISP -automatically when you click on a link, -but this feature gets disabled if you specify a proxy running on your -own computer -(with address -localhost -or -127.0.0.1) -because these addresses don't require dialing. -The -Internet Junkbuster -knows nothing about dialing, so it doesn't work. -To make automatic dialing work, -make up a name such as -junkbuster.ijb -and use that name in the proxy settings -instead of -localhost, -and then add the line -127.0.0.1 junkbuster.ijb -to the file -c:\windows\hosts -(if there already is a line beginning with -127.0.0.1 -just add -junkbuster.ijb -at the end of it.) -

    -This should also work Netscape Communicator 4 on -machines where IE-4 has been installed. -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Setting up the Internet Junkbuster on your local computer - -

    -
    -
    The next two sections assume you wish to compile the code -with your own C compiler. -If you just want to use the -.exe -file provided for Windows, -see the -Windows Installation page. - -

    <Feedback>  -How do I compile the code under Unix? -

    -

    -If you are running Redhat -Linux -you may prefer to use the -rpm -instead of the following procedure. -

      -
    1. -First -download the tar file -(~286k) -and -uncompress and extract the files from it with this command -
      -   uncompress -c ijb20.tar.Z | tar xf - -

      -

    2. -If your operating system is from -Sun -or -HP -examine the -Makefile -and make any changes indicated inside. -
    3. -Run -
      -
      -   make -

      -

    4. -Copy the sample configuration file -(junkbstr.ini, -previously called -sconfig.txt -and other names in earlier releases) -to some convenient place such as -/usr/local/lib/junkbuster/configfile -or whatever you choose. -The sample file has all the options commented out. -You can remove the -# -character on any that you want, but it may be better to -leave this until to later. -Run it asynchronously: -
      -
      -   junkbuster configfile & -

      -If you are running a version earlier than 2.0 you can start it with -junkbuster & -

      -

    5. -Configure your browser (described -above). -
    6. -Verify that the -Internet Junkbuster -is working (described -above). -
    7. -Decide on the options you really want, -kill -the -process -and start it again. The most popular option is -blockfile -to block ads. -A sample blockfile is provided as an illustration, -but it doesn't really stop many ads. -More comprehensive ones are available -elsewhere. -
    8. -You'll probably want to add an entry to -/etc/rc.d/rc.local -or equivalent to start it at boot time. -(Any output you specify should be redirected to a file. -And don't forget the -& -at the end to run it asynchronously or your system will seize -up after the next reboot.) -
    -

    - -

    <Feedback>  -How do I compile the code under Windows? -

    -

    -A binary is currently being supplied with the source code, -but if you prefer to compile it yourself here is the likely procedure. -Most of these steps are repeated in our checklist for -installation under Windows. -

      -
    1. -First -click here to download the zip file -called -ijb20.zip -(~208k), -then uncompress and unpack the zip archive using a tool like -WinZip. -
    2. -Now the distribution (source and sample files) -will be in a folder -called -ijb20. -Go into that folder and then edit the Makefile for -your system, -removing the comment character -(#) -in the lines related to Win32. -Then type: -
      -   nmake -
      -This should create an executable called -junkbstr.exe. -For information on issues with various compilers, see the -Distribution Information -page. -
    3. -Run the executable with the command: -
      -   junkbstr -
      -The program will produce a message -indicating that it has started and is ready to serve. -

      -(Version 2.0.1 and above uses -the file -junkbstr.ini -as the config file -if it exists and no argument was given. If you have an earlier -version or if you want it to use a different config file, -simply specify that file as the argument.) -

    4. -Configure your browser (described -above). -
    5. -Check the proxy is working (described -below). -
    6. -To have the proxy start itself automatically -when you login to Win95, -drop the ``shortcut'' to the -junkbstr -executable into the StartUp folder: -
      -   C:\Windows\Start Menu\Programs\StartUp -
      -You might want to change the shortcut's -Properties->Shortcut -to -Run: Minimized. -If you specify the -hide-console -option then the -DOS -window will vanish after it starts. -

      -WinNT users can put it into their own -StartUp folders or the Administrator -can put it into the system's global StartUp folder. -For details on how to make this a service under NT -see our -Windows page. -

    -

    - -

    <Feedback>  -How do I check that the proxy is working? -

    -

    -Pick a page from somewhere (such as your bookmarks, or just one -that your browser was pointing to) -and - -Reload -it. -If you get a message along the lines of ``server not responding, -using cached copy instead,'' see the advice -above. -If the page reloads OK, check that your browser is actually -talking to the proxy by going to -http://internet.junkbuster.com/cgi-bin/show-proxy-args -or any -URL -ending in -show-proxy-args -(as described -below, -the proxy should intercept the request.) -When you see ``Internet Junkbuster Proxy Status,'' -you'll know it's working. -

    - -

    <Feedback>  -How and why would I have this proxy chained with other proxies? -

    -

    -You may need the -forwarding -feature to ``daisy chain'' the -Internet Junkbuster -to another proxy, perhaps an -anonymizing -proxy to -conceal -your -IP -address, -or a -caching proxy -from your -ISP, -or a -firewall -proxy between your company and the outside world. -Version 2.0 -can be even configured to forward -selectively -according to the -URL -requested: -for example, connecting directly to trusted hosts, -but going through an anonymizing or firewall proxy for all other hosts. -

    -Network administrators might use it to provide -transparent access to multiple networks without -modifying browser configurations. -Most browsers also provide a way of -specifying hosts that the browser -connects to directly, bypassing the proxy. Some provide a method for -Automatic Proxy Configuration. -A well written -Internet Junkbuster -configuration can be much more flexible and powerful. -

    -An -ISP's -caching proxy -would typically be called something like -cache.your-isp.net:8080 -(as described on you -ISP's -web page); -you would put this information in your -forwardfile -as described in our manual. -Your browser would be configured to -the -Internet Junkbuster -for -HTTP -and Security Proxies as before, -but you probably want to tell it to use the caching proxy -for -FTP -and other protocols. -If your -ISP -is running -the -Internet Junkbuster -for you, -they have probably already decided whether to chain with a caching proxy. -

    - -

    <Feedback>  -How does the Internet Junkbuster work with SOCKS gateways? -

    -

    -There is support for some -gateways -in -Version 1.4 -and above. -The gateway protocol used to be specified on the command line; -it is -now specified -in the same file as -forwarding. -Note that the browser's proxy configuration must -not -specify a -SOCKS -host; -it should specify the proxy as described -above. -

    - -

    <Feedback>  -How do I configure it to be just a plain old proxy? -

    -

    -To get the proxy to do as little as possible (which means not deleting any -sensitive headers), place in your -configuration file the following three lines (each ending in a space -then a period) to stop it changing sensitive headers: -
    -   referer . -
    -   from . -
    -   user-agent . -
    -   cookiefile mycookiefile -
    -The fourth line is also needed to specify a -cookiefile -that might be called -mycookiefile -containing a single line with a -* -character, to allow all cookies through. -

    - -

    <Feedback>  -How do I shut down the proxy (to restart it)? -

    -

    -It depends on your platform. Under Windows, use - -Ctrl-Break -in the -DOS -window or -the old three-fingered salute of - -Ctrl-Alt-Delete -and select - -End Task. -Under -UNIX ® -you'll need to -kill -the -junkbuster -process. -If you don't know the process number to give to -kill, try this: -ps ax | grep junkbuster -
    -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Information for companies - -

    -
    -
    -

    <Feedback>  -What do advertising companies think of this kind of technology? -

    -

    -We've seen only a few public comments from the advertising industry on this, -other than -SEC filings. -First, the president of the Internet Advertising Bureau told -CNET -that he wasn't worried by banner blockers. -Second, after the Federal Trade Commission's -workshop -where we gave a live demonstration of our proxy before -many eminent representatives of the industry, -the -Direct Marketing Association -made the following -statement in the closing paragraphs -of their -summary comments -to the Commission. -

    -Clever shareware developers have come up with products that -can obliterate cookies and advertisements for those consumers -who have these concerns. -The Internet is a market that is so democratic and flexible -that it is easy for companies and software -developers to respond to a perceived market need. -
    -Their attitude seems to be that they would prefer that -people use technical solutions -to protect their privacy than have protections -imposed by legislation or government regulations. -So, do you perceive a market need? -Then here are some ways to flex your democratic muscles. -

    - -

    <Feedback>  -Should we provide the Internet Junkbuster for our employees? -

    -

    -That depends. Try this quick three-point test. -

      -
    1. -Do you want to spend your communications budget -on bandwidth that wastes your employees' time by forcing them to wait -for a lot of annoying distractions while they're trying to -do their jobs? -
    2. -Do you want current and potential vendors -to know quantitative details about the -software and hardware platforms -that you have? -
    3. -Do you want your competitors to be able to -track -exactly which of your -employees are checking out their web sites? -
    -If the answer to all three questions is yes, -then you probably don't have any need for this kind of product. -

    - -

    <Feedback>  -Can our company get commercial support for the software? -

    -

    -Yes, -ask us -for a quote on a maintenance contract with your choice of -phone and email support, -hard copy documentation, -source code and pre-compiled binaries on tape or disk, -and email alerting of upgrades and issues. -We also offer consulting services to help set up ``stealth browsing'' -capabilities to help reduce the footprints left while doing competitive -analysis and other Web work where confidentiality is critical. -

    - -

    <Feedback>  -I run an ISP. What issues should I consider before offering it? -

    -

    -Many -ISPs -who offer the proxy to their customers have told us that -most of their customers are -delighted with it -(although one reported that a customer complaint that without banner ads, -surfing was like reading a novel: we recommend making it optional). -Many -ISPs -like it because it reduces bandwidth requirements. -To help get you started, -here's a checklist we've developed from working with a few -ISPs. -You may think of more, -and we'd be interested if you're willing to -share them -with us. -

      -
    1. -If you get more than one request for -the -Internet Junkbuster -you may want to tell your customers on your News page that you -already -know about it and are assessing it. -
    2. -Try the software and -verify -that it performs satisfactorily. -
    3. -Determine whether your customers perceive the service as -valuable -(and therefore worth the time to set up). -We've had reports of many delighted customers. -
    4. -Assess the -level of -security -associated with the software. -If access is to be -restricted -(to just dial-in ports, for example) -how is this to be done? -
    5. -Consider -whether to expect any additional load on computing resources required, -and any change in use of bandwidth due to the blocking of large -GIFs. -
    6. -Choose the -options -you wish to provide. -
    7. -Decide whether you want -to offer a choice of configurations, such some of these four. -
        -
      1. -Banners -Blocked, -Wafer with -No-Cookie-Copyright -notice -
      2. -Cookies -not stopped -(cookiefile -with just a -* -in it), -User Agent -specified as -Lynx -
      3. -Cookies from browser -allowed, -permitting -registered services -
      4. -A proxy for -kids. -
      -If you run a -caching proxy, -decide whether the -Internet Junkbuster -will chain with it by default, -and whether to offer an alternate with no caching. -(Some -ISPs -don't, because they want to give customers an incentive to use caching -and save bandwidth.) -
    8. -Decide on a naming scheme for your -proxies. -If you're running only one -proxy on one machine, -the simplest way is to just use port 8000 on your main machine, -such as -our-isp.net. -But it would probably be safer to put an entry in your name server -and call it something like -junkbuster.our-isp.net. -If running several proxies, you could either use different ports -on the same machine, or if you have -the opportunity to distribute the load over -a few machines -you could -use different hostname aliases such as -banner.junkbuster.our-isp.net, -lynx.junkbuster.our-isp.net -and -oneway.junkbuster.our-isp.net -(corresponding to the examples in the previous point). -You may want to set up -Automatic Proxy Configuration. -
    9. -Prepare a page -explaining the -Internet Junkbuster -to your customers. -Here's are some examples from -Australia, -Germany, -Florida, -New York/New Jersey/Pennsylvania, -North Carolina, -Texas, -and -Utah. -You are welcome to copy and modify -material -from -Junkbusters -according to the -GPL. -You might want to set up a process to check this page periodically -and update it when it changes. -(A few links can probably serve as well as lot of copying however.) -A typical page would probably specify the following. -
      -
    10. -Invite a small number of technologically sophisticated -customers to beta-test the service. -
    11. -Announce general availability on your ``News'' page. -Tell us -if you would like to be included on a list of -ISPs -offering the -Internet Junkbuster. -
    -

    - -

    <Feedback>  -What's a Proxy Server Server and how can I make money as one? -

    -

    -Other organizations with web presence and some bandwidth to spare -can set up as -Proxy Server Servers - -(PS2s). -The idea here is to allow users to choose their proxy configuration, -and provide it to them on a semi-permanent basis. -Users would fill in a form specifying what options they want in -their proxy, -possibly even at a very high level, such as -``no ads'' -or ``no nudity.'' -This information is sent to a -CGI -script that -configures a proxy, starts it running, and returns its address and port number -(possibly along with configuration instructions for the browser -that the user specified.) -

    -Users -could be charged -a subscription fee, -or the service could be thrown in free in the hope of -improving customer retention for some existing business -(which is what -ISPs -are doing). -It might be possible to make money by -inserting new ads in the holes left where others were blocked, -but the original owners might object. -PS2s -could differentiate themselves -by providing frequently updated and comprehensive -blocking of ads, or of offensive material based on their own grading system. -Some content providers might do it for the chance to be the -only company that the consumer permits to set cookies. -(Identification could even be done via cookies, -but this might not be popular with the kind of user who wants a proxy.) -PS2s -might sell specific or aggregate information about their -users' browsing habits, -so the agreement with users on whether they are permitted to do this -would be important to both sides. -

    -If your organization -establishes a -Proxy Server Service -you would like publicized, -please -notify us. -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Blocking - -

    -
    -
    -

    <Feedback>  -Where can I get an example blockfile that stops most ads? -

    -

    -The sample blockfile we provide blocks almost nothing, -and we do not publish blockfiles that stop almost all banner ads. -But others have; you can find them by -asking Altavista. -You can add any part of the new file to your old one -(probably called -sblock.ini -if you haven't changed the default name in the latest version) -or your just replace it completely. -You -probably -don't need to restart the proxy. -

    -If you develop an interesting blocklist and publish it on the Web, -you might want to include the word ``junkbuster'' in it -and use the word ``blocklist'' in the file name given in the -URL -so that others can find it with the query given in the previous sentence. -

    - -

    <Feedback>  -If I see an ad I wish I hadn't, how do I stop it? -

    -

    -If your -ISP -is running the -Internet Junkbuster, -they should have a policy on whether they accept suggestions from -their customers on what to block. Consult their web page. -

    -If you are running -the -Internet Junkbuster -yourself, you have complete control over what gets through. -Just add a pattern to cover the offending -URL -to your blockfile. -Version 1.3 and later automatically rereads the blockfile when it changes, -but if you're running an earlier version you'll -have to -stop it -and restart it. -

    -To choose a pattern you'll first need to find the -URL -of the ad you want cover. -

    -Some people use the -debug -1 -option to display each -URL -in a window as the request is sent to the server. -It's then usually an easy task to pick the offending -URL -from the list of recent candidates. -

    -Alternatively, -you can use - -View Document Info -(or - -View Document Source -if your browser doesn't have that). -The - -Info -feature has the advantage of showing you the full -URL -including the host name, -which may not be specified in the source: -there you might see something like -SRC="/ads/click_here_or_die.gif" -indicating only the -path. -(The host name is assumed to be the same as the one the page came from.) -

    -But ads often -come from a different site, in which case you -might see something like -SRC="grabem.n.trackem.com/Ad/Infinitum/SpaceID=1666" -or longer. -If the company looks like a pure ad warehouse -(as in the last case), -you may want to place just its domain name in the blockfile, -which blocks all -URLs -from that site. -

    -If the ad comes from a server -that you really want some content from, -you can include enough of the path -to avoid zapping stuff you might want. -In the first example above, -/ads/ -would seem to be enough. -If you don't include the domain name, -the pattern applies to all sites, -so you don't want such patterns -to be too general: -for example -/ad -would block -/admin/salaries/ -on your company's internal site. -

    -To speed the blocking of images, some -UNIX ® -users create a -shell script called -Image: -containing a line such as -echo $1 | sed s/http:..// >> $HOME/lib/blockfile -that adds its argument to the user's blockfile. -Once an offending image has been be found using - -View Document Info -it's easy to cut-and-paste the line (or part of it) into a shell window. -The same script can be linked to a file called -Frame: -to dealing with framed documents, -and -junkbuster: -to accept the output of the -debug -option. -

    -When compiled without the -regular expressions -option, the -Internet Junkbuster -uses only very simple (and fast) matching methods. -The pattern -/banners -will not stop -/images/banners/huge.gif -getting through: you would have to include the pattern -/images/banners -or something that matches in full from the left. -So you can get what you want here, -the matcher understands -POSIX -regular expressions: -you can use -/*.*/banners -to block -and any -URL -containing -/banners -(even in the middle of the path). -(In Versions 1.1 through 1.4 -they were an option at compile time; -from Version 2.0 they have become the default.) -Regular expressions give you -many more features -than this, -but if you're not already familiar with them you probably won't -need to know anything beyond the -/*.*/ -idiom. -If you do, a -man egrep -is probably a good starting point). -

    -Don't forget the -/ -(slash) -at the beginning of the path. -If you leave it out the line will be interpreted as a domain name, -so -ad -would block all sites from Andorra -(since -.ad -is the two-letter -country code -for that principality). -

    -For a detailed technical description -of how pattern matching is done, -see the -manual. -

    - -

    <Feedback>  -How come this ad is still getting through anyway? -

    -

    -If the ad had been displayed before you included its -URL -in the blockfile, -it will probably be held in cache for some time, -so it will be displayed without the need for any request to the server. -Using the -debug -1 -option to show each -URL -as it is fetched is a good way to see exactly what is happening. -

    -If new items seem to be getting through, -check that you are -really running -the proxy with the right blockfile in the options. -Check the blockfile for -exceptions. -

    -Some sites may have different ways of inserting ads, -such as via -Java. -If you have ideas on how to block new kinds -of junk not currently covered, please -tell us. -

    - -

    <Feedback>  -How do I stop it blocking a URL that I actually want? -

    -

    -You can change the patterns so they don't cover it, -or use a simple feature in Version 1.1 and later: a line beginning with a -~ -character means that a -URL -blocked by previous patterns that matches the rest of -the line is let through. -For example, -the pattern -/ad -would block -/addasite.html -but not if followed by -~/addasite -in the blockfile. -Or suppose you want to see everything that comes from -a site you like, even if it looks like an ad: simply put -~aSiteYouLike.com -at the -end -of the blockfile. -(Order is important, because the last matching line wins.) -

    -As well as unblocking -pages that were unintentionally blocked, -this feature is useful for unblocking ads from a specific source. -This might be because you are interested in those particular ones, -or if you have an explicit agreement to accept certain ads, -such as those from a free web-based email provider. -

    - -

    <Feedback>  -Can I block sites I don't want my children to see? -

    -

    -Yes, but remember that -children who are technically sophisticated enough -to use the browsers' proxy configuration options -could of course bypass any proxy. -This kind of technology can be used as a gentle barrier to remind -or guide the child, -but nobody should expect it to replace the parent's role -in setting and enforcing standards of online behavior for their children. -

    -Some -ISPs -are starting to provide specialized proxies to protect children. -There are two basic approaches: the ``black list'' and the ``white list'' -approach. -The black list approach allows the child -to go anywhere not explicitly prohibited; the white list permits visits -only to sites explicitly designated as acceptable. -

    -It's very easy for -anyone to -compile a white list from a page of ``recommended -kids sites'' and to configure an -Internet Junkbuster -to allow access to those sites only. -If you compile with the -regex -option, -you can place a -* -(asterisk) as the first line of the blockfile (which blocks everything), -and then list -exceptions -after that. -Be careful to make the exception sufficiently broad: -for example, using -~www.uexpress.com/ups/comics/ch/ -as the exception for -Calvin and Hobbes -would block some of the graphic elements on the page; -you would probably want a wider exception such as -~www.uexpress.com/ups/ -to permit them. -

    -Version 2.0 has an experimental feature -to permit only sites mentioned in a nominated -trusted site. -This allows organizations to build lists of sites for kids to browse, -and the software automatically restricts access to those on the list. -

    -Many filtering -products -actually scan for keywords in -the text of pages they retrieve -before presenting it, -but -the -Internet Junkbuster -does not do this. -Building a perfectly reliable black list system is hard, -because it's very difficult to state -in advance -exactly -what is obscene or unsuitable. -For more info see our -links -page. -

    - -

    <Feedback>  -What do I see when a page or graphic is blocked by the proxy? -

    -

    -You usually see a broken image icon, -but it depends on several factors beyond the proxy's control. -If asked for a -URL -matching its blockfile, the proxy returns an -HTML -page containing a message identifying itself -(currently the two words ``Internet Junkbuster'') -with a status 202 (Accepted) instead of the usual 200 (OK). -(Versions 1.X returned an error 404: Forbidden, which caused -strange behavior in some cases.) -Status 202 is described in the -HTTP -RFC -as indicating that the request has been accepted but not completed, -and that it might complete successfully in the future -(in our case, if the blockfile were changed). -

    -The broken image icon is most common -because the browser is usually expecting a graphic. -But if it was expecting text, or if the page happens to be using certain -HTML -extensions -such as -layer -and your browser is a late model from Microsoft, -you may see the words ``Internet Junkbuster'' displayed as a hot link. -

    -Clicking on the link takes you to an explanation of -the pattern in the blockfile that caused the block, -so that you can edit the blockfile and go back and reload if you really -want to see what was blocked. The explanatory link is generated by -the proxy and is automatically intercepted based on its ending in -ij-blocked-url; -even though the site is specified as -http://internet.junkbuster.com -no request should actually made to that site. -If one is, it means that the proxy was been removed after it -generated the link. -

    -To summarize: -the identifying link to the blocking explanation -is usually turned into a broken image icon, -but it may be displayed on a page alone, -or they may may be restricted to the particular frame, layer or graphic area -specified in the page containing them. -The proxy has no way of knowing the context in which a -URL -will be used and cannot control how the blocking message will be rendered. -

    - -

    <Feedback>  -Why not replace blocked banners with something invisible? -

    -

    -Many users have suggested to us -that blocked banners should be replaced by a something like a -1x1 transparent -GIF -to make the page would look as if there was nothing ever there. -Apart from making it harder to catch unintended blocking, -this might also displease the owners of the page, -who could argue that such a change constitutes a copyright infringement. -We think that merely failing to allow an included graphic to be accessed -would probably not be considered an infringement: -after all this is what happens when a browser -is configured not to load images automatically. -However, we are -not -lawyers, -so anyone in doubt should take appropriate advice. -

    -In a context where the copyright issue is resolved -satisfactorily, -a proxy could simply return a status 301 or 302 and -specify a replacement -URL -in a -Location -and/or -URI -header. -An alternative would be to use inline code to return a -1 x 1 clear -GIF. -We do not publish sample code for this, -and we have no way of stopping -others -who have. -

    - -

    <Feedback>  -Why not block banners based on the dimensions of the image? -

    -

    -Many users have pointed out that most banner ads come in standard sizes, -so why not block all -GIFs -of those sizes? -This would theoretically be without fetching the object -because the dimensions are usually given in the -IMG -tag, -but it would require substantial changes in the code, -and we doubt whether it would be much more effective than a good block list. -

    - -

    <Feedback>  -What about non-graphic advertising within the pages I want? -

    -

    -The -Internet Junkbuster -deliberately -does not provide a way of automatically editing the contents of a page, -to remove textual advertising or -to repair the holes left by blocked banners. -Other packages such as -WebFilter -do. -

    -For the same reason, -it has no way of stopping a new browser -window being created, because this is done through the -target -attribute in the -<a> -and -<base> -elements, -not through headers. -Nor do we plan to add a feature to -paralyze animated -GIFs. -

    - -

    <Feedback>  -Does it block ads on the broadcasting ``push'' systems? How about pop-up ads? -

    -

    -We haven't tried it but we expect it would probably -work on image ads on push channels. -See also -adchoice. -

    -Disabling -Javascript -stops some pop-up ads. -One problem is that some advertisers throw open a new -browser window to frame the ad. The ad is easily blocked, -but the empty window remains. You can kill it easily, but this is a chore. -We don't see how to stop them other than editing the -HTML -from the parent window, which we -don't -like to do. -

    -The -TBTF -newsletter warned subscribers to push information that -in IE4, -LOGTARGET -allows -servers to determine the -URLs -viewed at their site even if accessed from cache or through a proxy. -If you use this browser see our instructions on -how to disable -this. -

    -If you find you have experience using the proxy with push, -or have any other advice about it, please -tell us. -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Cookies - -

    -
    -
    For background information on cookies see our -page describing their dangers. - -

    <Feedback>  -Might some cookies still get through? How can I stop them? -

    -

    -Yes, you should expect the occasional cookie to make it through to your browser. -We know of at least three ways this can happen; -please -tell us -if you find any others. -One way is in secure documents, which are explained -below. -

    -A -few -sites set cookies using a line such as -<META HTTP-EQUIV="Set-Cookie" CONTENT="flavor=chocolate"> -in the -HEAD -section of an -HTML -document. -Cookies can also be - -set and read -in -JavaScript. -To see if this is happening in a document, -view its source, look in the -head -for a section tagged -script language="JavaScript". -If it contains a reference to -document.cookie, -the page can manipulate your cookie file without sending any cookie headers. -The -Internet Junkbuster -does not tamper with these methods. -Fortunately they are rarely used at the moment. -If a cookie gets set, it should be stopped -by the proxy on its way back to the server when a page is requested, -but it can still be read in Javascript. -bu -

    -To prevent cookies breaking through, -always -keep -cookie alerts -turned on in your browser, -and -disable -Java and Javascript. -Making the files -hard to write -may also help. -

    - -

    <Feedback>  -Exactly how do cookies get created and stored anyway? -

    -

    -When a web site's server sends you a page it also sends -certain ``header information'' which your browser records but does not display. -One of these is a -Set-Cookie -header, which specifies the cookie information that the server wants your browser to record. -Similarly, when your browser requests a page it also sends headers, specifying -information such as the graphics formats it understands. -If a cookie has previously been set by a site that matches the -URL -it is about to request, -your browser adds a -Cookie -header quoting the previous information. -

    -For more background information on how cookies -can damage your privacy, see our -page on cookies. -For highly detailed technical information see the -RFC. -The -Internet Junkbuster -will show you all headers you use the -debug -8 -option, -or you can get a sample from our -demonstration page. -

    - -

    <Feedback>  -If cookies can't get through, will some things stop working for me? -

    -

    -Possibly. -Some personalized services including certain - -chat -rooms -require cookies. -Newspapers that require - -registration -or - -subscription -will not automatically recognize you if you don't send them the cookie they -assigned you. And there are a very small number of sites that do -strange things with cookies; they don't work for anyone that blocks -cookies by any means. -Some sites such as -Microsoft -explain that their content is so wonderfully compelling that -they will withhold it from you unless you submit to their -inserting cookies. -

    -If you want such sites to be given your cookies, -you can use the -cookiefile -option provided you are running -Version 1.2 or later -yourself. -Simply include the domain name of those sites in the -cookiefile -specified by this option. -If it still doesn't work, -the problem may be in -other headers. -

    -It's possible to let cookies out but not in, -which is enough to keep some sites happy, but not all of them: -one newspaper site seems to go into an endless frenzy -if deprived of fresh cookies. -A cookiefile containing -a single line consisting of the two characters ->* -(greater-than and star) permits server-bound cookies only. -The -* -is a -wildcard -that matches all domains. -

    -If someone else is running the -Internet Junkbuster -for you and has a version -that - -passes server-bound cookies through, -you can try editing your browser's cookie -file to contain just the ones you want, -and restart your browser. -To subscribe to a new service like this -after you have started using the -Internet Junkbuster, -you can try the following: -tell your browser to -stop using -the -Internet Junkbuster, -fill out and submit your subscription details -(allowing that web site to set a cookie), -then -reconfigure your browser to use the -Internet Junkbuster -again -(and stop more cookies being sent). -This also requires the -cookiefile -option, -and its success depends on the Web site -not wanting to change your cookies at every session. -For this reason it does not work at some major newspaper sites, for example. -But you may prefer to -look at whether other sites provide the same -or better services without demanding the opportunity -to track your behavior. -The web is a buyer's market where most prices are zero: -very few people pay -for content with money, so why should you pay with your privacy? -

    - -

    <Feedback>  -Can I control cookies on a per-site basis? -

    -

    -Yes, since version 1.2 the -Internet Junkbuster -has included advanced cookie management facilities. -Unless you specify otherwise, -cookies are discarded (``crumbled'') by the -Internet Junkbuster -whether they came from the server or the browser. -In Version 1.2 and later you can -use the -cookiefile -option -to specify when cookies are to be passed through intact. -It uses the same syntax and -matching -algorithm as the blockfile. -

    -If the -URL -matches a pattern in the -cookiefile -then cookies are let through in both the browser's request for the -URL -and in the server's response. -One-way permissions can be -specified by starting the line with the -> -or -< -character. -For example, a cookiefile consisting of the four lines -
    -   org -
    -   >send-user-cookies.org -
    -   <accept-server-cookies.org -
    -   ~block-all-cookies.org -
    -allows cookies to and from -.org -domains only, with the following exceptions: -

      -
    1. -Cookies sent from servers in the domain -send-user-cookies.org -are blocked on their way to the client, -but cookies sent by the browser to that domain are still be fed to them. -
    2. -The cookies of -accept-server-cookies.org -check in to the proxy and are passed through to the browser, -but when they come back to the proxy they never check out. -
    3. -All cookies to and from -block-all-cookies.org -are blocked. -
    -

    -If -the -junkbuster -was compiled with the regular expressions option -they may be used in paths. -Any logging to a -``cookie jar'' -is separate and not affected. -

    -It's important to give hosts you want to be able -to set cookies sufficient breadth. For example, -instead of -www.yahoo.com -use -yahoo.com -because the company uses many different hosts ending in that domain. -

    - -

    <Feedback>  -Can I make up my own fake cookies (wafers) to feed to servers? -

    -

    -Yes, -using the -wafer -option. -We coined the term -wafer -to describe cookies chosen by a user, -not the Web server. -Servers may not find wafers as tasty as the cookies -they make themselves. -But users may enjoy controlling servers' diets for various reasons, -such as the following. -

      -
    • -Users who consider cookies to -be an unwelcome intrusion and a waste -of their disk space can respond in kind. -By writing ``signature wafers'' they can -express their feelings about cookies, -in a place that the people -in charge of them are most likely to notice. -
    • -Sites running a proxy -that logs cookies to a file -(such as the -Internet Junkbuster -does with the -jarfile -option on) -may want to notify -servers that their cookies are being intercepted, -deleted or copied. -One possible reason for doing this is the uncertain copyright status -of cookie strings. -Nothing -here should be taken as legal advice: we are simply raising a question -for any interested parties to consider, -and make no representation that such measures are necessary or sufficient. -Concerned proxy sites might decide to send a wafer -(named ``NOTICE'' for example) -containing text along the lines of the following. -
      -

      -TO WHOM IT MAY CONCERN - -
      -
      -Do not send me any copyrighted information other than the -document that I am requesting or any of its necessary components. -
      -
      -In particular do not send me any cookies that -are subject to a claim of copyright by anybody. -Take notice that I refuse to be bound by any license condition -(copyright or otherwise) applying to any cookie. -       -

      -Any company that tries to argue in court that the proxy site -was breaching their copyright in the cookies would -be met with the defense that the proxy site gave that company -the opportunity to protect its copyright by simply -not sending cookies after receiving the notice. -

      -Cookies can be as long as four thousand characters, -so there's plenty of space for lawyerly verbosity, -but white space, commas, and semi-colons are -prohibited. -Spaces can be turned into underscores. -Alternatively, -a -URL -could be sent as the cookie value, -pointing to a document containing a notice, -perhaps with a suggestive value such as -
      -http://www.junkbusters.com/ht/en/ijbfaq.html#licenses_on_cookies_refused -
      -But including the notice directly would probably be preferable -because the addressee does not have to look it up. -

      -The -Internet Junkbuster 2.0 -currently sends a full notice as a -``vanilla wafer'' -if cookies are being logged to a cookie jar -and no other wafers have been specified. -It can be suppressed with the -suppress-vanilla-wafer -option, -which might be used in situations where there is an established understanding -between the proxy and all who serve it. -

    -

    -Junkbusters provides a -CGI -script that lets you -see -your wafers as they appear to servers. -

    -Wafers confuse a few fragile servers. -If this troubles you, don't use this option. -

    -Any wafers specified are sent to -all sites regardless of the cookiefile. -They are appended after any genuine cookies, -to maintain compliance with -RFC 2109 -in the event that a path was specified for a cookie. -The -RFC's provisions regarding the -$ -character -(such as the -Version -attribute) -are transparent -to the proxy; it simply quotes what was recited by the browser. -

    -If you want to send wafers only to specific sites, -you could try putting them your browser's cookie file in a format -conforming to the Netscape -specification, -and then specify in the proxy's cookiefile that cookies are to be -sent to -but not accepted from those sites, so they can't overwrite the file. -This may work with Netscape but not all other browsers. -

    - -

    <Feedback>  -Why would anyone want to save their cookies in a ``cookie jar?'' -

    -

    -We provided this capability just in case anyone wants it. -There are a few possible reasons. -

      -
    • -It's conceivable that -marketing companies might one day -buy -history files and cookie jars from consumers -in the same way that they currently pay them to fill out survey forms. -With this information they could -gather psychographic information, -see which competitors' sites the consumer has visited, -and discover what advertising is being targeted at them. -
    • -Some consumers might -employ semi-automated means of sorting through -their cookie jars, selecting which ones to place in their cookies -file for use by their browsers. -Their decisions could be based on payments offered, -privacy rating systems such as -TRUSTe -proposes, -or their own opinion of the company. -It could be done manually or with software. -
    • -Users may even start ``sharing'' cookies among themselves, -sending back cookies that servers generated for other visitors. -Servers that aren't expecting this possibility -will be misled about their visitors' identities. -Cookies could be shared among users on a single machine, -or across continents via -FTP -and anonymous remailers. -Privacy activists may promote -cookie disinformation campaigns -as a way to defend the public against abuse. -If a significant percentage of people send disinformative cookies, -user tracking via cookies may become less reliable and less used. -
    -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Anonymity - -

    -
    -
    For details -on how your identity can be revealed while you surf, -see our page on -privacy. -Once you start using -the -Internet Junkbuster -you should find that much of the information -previously indicated on that page will no longer be provided. -If the -REMOTE HOST -indicating your IP address is too close for comfort, -see our suggestions -below -on how to -conceal -your IP address. -We also recommend that you -disable JavaScript -and -Java. - -

    <Feedback>  -If I use the Internet Junkbuster, will my anonymity be guaranteed? -

    -

    -No. Your chances of remaining anonymous are improved, -but unless you are an expert on Internet security -it would be safest to assume that everything you do on the Web -can be attributed to you personally. -

    -The -Internet Junkbuster -removes various information about you, -but it's still possible that web sites can find out who you are. -Here's one way this can happen. -

    -A few browsers -disclose the user's email address -in certain situations, such as when transferring a file by -FTP. -The -Internet Junkbuster 2.0 -does not filter the -FTP -stream. -If you need this feature, or are concerned about the mail handler -of your browser disclosing your email address, -you might consider -products such as -NSClean. -

    -Browsers downloaded as binaries -could use non-standard headers to give out any information -they can have access to: see the manufacturer's license agreement. -It's impossible to anticipate and prevent every breach of privacy that -might occur. -The professionally paranoid prefer browsers available as source code, -because anticipating their behavior is easier. -

    - -

    <Feedback>  -Why should I trust my ISP or Junkbusters with my browsing data? -

    -

    -You shouldn't have to trust us, and you certainly don't have to. -We do not run the proxy as a service, -where we could observe your online behavior. -We provide source code so that everyone can see that the proxy isn't -doing anything sneaky. -

    -You are already trusting your -ISP -not to look at an awful lot of information on what you do. -They probably post a -privacy policy -on their site to reassure you. -If they run a proxy for you, using it could actually -make it slightly easier for them to monitor you, -but we doubt that any sane -ISP -would try this, -because if it were discovered customers would desert them. -

    - -

    <Feedback>  -What private information from server-bound headers is removed? -

    -

    -The -Internet Junkbuster -pounces on the following -HTTP -headers in requests to servers, -unless instructed otherwise in the options. -

      -
    • -The -FROM -header, -which a few browsers use to tell your email address to servers, -is dropped -unless the -from -option is set. -
    • -The -USER_AGENT -header -is changed to indicate that the browser is -currently Mozilla (Netscape) 3.01 Gold -with an unremarkable Macintosh configuration. -Misidentification helps resist certain -attacks. -If your browser and hardware happen to be accurately identified, -you might want to change the default. -(Earlier versions of the -Internet Junkbuster -indicated different details; -by altering them periodically we aim to hinder anyone trying to -infer -whether our proxy is present.) -If you don't like the idea -of incorrectly identifying your computer as a Mac, -set it accordingly. - -
    • -The -REFERER -header -(which indicates where the -URL -currently being requested was found) -is dropped. -A single static referer to replace all -real referers may be specified using the -referer -option. -Where no referer is provided by the browser, none is added; -the -add-header -option with arguments such as --x 'Referer: http://me.me.me' -can be used to send a bogus referer with every request. -
    -In -Version 1.4 -and later you can use the --r @ -option to selectively disclose -REFERER -and -USER_AGENT -to only those sites you nominate. -

    -Some browsers -send Referer and User-Agent information under different non-standard headers. -The -Internet Junkbuster 2.0 -stops -UA -headers, -but others may get through. -This information is also available via JavaScript, -so -disable disable -it. -Some search engines -encode the query you typed -in the -URL -that goes to advertisers to target a banner ad at you, -so you will need to block the ad as well as the referer header, -unless you want them (and anyone they might -buy data -from) -to know -everything you ever search for. -

    -If you have JavaScript enabled (the default on -most browsers) servers can use it to obtain Referer and User Agent, -as well as your plug-ins. -We recommend -disabling -JavaScript and Java. -

    -Currently no -HTTP -response headers (browser bound) -are removed, -not even the -Forwarded: -or -X-Forwarded-For: -headers. -Nor are any added, -unless requested. -We are considering a more flexible header management system for -a future version. -

    - -

    <Feedback>  -Might some things break because header information is changed? -

    -

    -Possibly. If used with a browser less advanced than Netscape 3.0 or IE-3, -indicating an advanced browser -may encourage pages containing extensions that confuse your browser. -If this becomes a problem -upgrade your browser or -use the -user-agent -option to indicate an -older browser. -In -Version 1.4 -and later you can selectively reveal your real browser -to only those sites you nominate. -

    -Because different browsers -use different encodings of Russian characters, -certain web servers convert pages on-the-fly according to the User Agent -header. Giving a User Agent with the wrong operating system or -browser manufacturer causes some Russian sites to be garbled; -Russian surfers should -change it -to something closer. -

    -Some -page access counters -work by looking at the referer; -they may fail or break when deprived. -

    -Some sites depend on getting a referer header, -such as -uclick.com, -which serves comic strips -for many newspaper sites, -including -Doonsbury -for the -Washington Post. -(If you click on that last link, you can then get to a page containing -the strip via the -same -URL -we've linked to under -Doonsbury, -but if you click on the -Doonsbury -link directly, it gives you an error message suggesting that you -use a browser that supports referers.) -In -Version 1.4 -and later you can use the --r @ -option -and place a line like ->uclick.com -in your cookiefile. -Wired News -used to use referer to decide whether to add a navigation column to -the page, but they have changed that. -

    -The weather maps of -Intellicast -have been blocked by their server when no referer or cookie is provided. -You can use the same countermeasure with a line such as ->208.194.150.32 -(or simply get your weather information -elsewhere). -

    -Some software vendors, including -Intuit -use -USER_AGENT -to decide which versions of their products to display to you. -With the -default -you get Mac versions. -

    -As a last resort if a site you need doesn't seem to be working, -the -proxy configuration -of many browsers allow you to specify - -No Proxy For -any hostname you want. -

    -We had reports that on some versions of Netscape the -What's New -feature did not work with the proxy, -but we think we fixed this in Version 2.0.1. -

    - -

    <Feedback>  -How is misidentifying my browser good for security and privacy? -

    -

    -Almost -every -major release of both leading browsers has contained -bugs that allow malicious servers to compromise your privacy and security. -Known bugs are quickly fixed, but millions of copies of the affected -software remain out there, and yours is probably one of them. -The -header -that normally identifies your browser tells such servers exactly which attacks -to use against you. -By misidentifying your browser you reduce the likelihood that they -will be able to mount a successful attack. -

    - -

    <Feedback>  -Does the Internet Junkbuster conceal my IP address? -

    -

    -Web sites get the IP address of any proxy or browser they serve pages to. -If you run the proxy on your own computer the IP address disclosed -is the same as your browser would, unless you use the -forwardfile -option is used to chain to another proxy, -in which case servers only get the last IP address in the chain. -Chaining slightly slows browsing of course, but it improves anonymity. -

    -One public proxy that you can -forward to is -lpwa.com -port 8000. -Read about its privacy-enhancing -features and the authentication procedures first, -and note that it blocks -referer -in almost all cases, -as well as some -other headers. -

    - -

    <Feedback>  -How can I set the proxy to remember my LPWA password? -

    -

    -After you log in to -LPWA -it tells your browser to send a -Proxy-authorization -header with each request. -Whenever you shut down the browser and start again with a new browser, -you need to log in again. -If you are the only person using the -Internet Junkbuster -proxy, you can avoid repeated logins to -LPWA -by telling the -Internet Junkbuster -to send the information by placing a line such as -
    -   add-header Proxy-authorization: Basic ZHVtbXk=. -
    -in the configuration file. -The exact example above -does not work -because the code -ZHVtbXk=. -is a bogus one that -LPWA -would never generate; -follow the procedure below to generate a valid one. -

      -
    1. -Restart your -Internet Junkbuster -with -debug 8 -so you can see the -headers. -
    2. -Log in to -LPWA -and go to any other site. -
    3. -Find the -Proxy-authorization -header from the debug output and paste it -after the word -add-header -into the config file. -Also change the debug value back again. -
    4. -Shut down your browser, start it up again, and -restart the proxy. Test that it works. -
    -This trick is convenient for sole users, but is not suitable when -more than one person uses the proxy, because they will all get the -same -LPWA -identity. -

    - -

    <Feedback>  -Does the Internet Junkbuster thwart identification by identd? -

    -

    -We think so, -provided you are not the user running the -proxy. -If your computer (or your -ISP's) -is running the -identd -demon, -servers can ask it for the identity of the -user making the request at time you request a page from them. -But if you're going through a proxy, -they will identify the user name associated with the proxy, not you. -A visit to -http://ident.junkbusters.com -lets you see what's happening. -This test is (quite rightly) blocked by many -firewalls; -just interrupt the transfer if you get an abnormal wait after clicking. -Running other applications -may also expose you via -identd; -the proxy of course doesn't help then. -

    - -

    <Feedback>  -Can web sites tell that I'm using the Internet Junkbuster? -

    -

    -With the default options the proxy doesn't announce itself. -Obvious indications such as -Keep-Alive -headers are -deleted, -but sites might notice that you can cancel cookies faster than -any human could possibly click on a mouse. -(If you want to provide a -plausible explanation for this, -change the User Agent header to a -cookie-free -or -cookie-crunching -browser). -

    -But when certain options -are used they could figure out something's going on, -even if they're not pushing cookies. -If you use blocking -they can tell from their logs that the graphics in their pages -are not being requested selectively. -The -add-forwarded-header -option explicitly announces to the server that a proxy is present, -and -sending them -wafers -is of course a dead giveaway. -

    -

    --- Back to Top of Page ---

    -
    -
    -

    -Security - -

    -
    -
    -

    <Feedback>  -What happens with Secure Documents (SSL, https:)? -

    -

    -If you enter a -``Secure Document Area,'' -cookies and other header information -such as User Agent and Referer -are sent encrypted, -so they cannot be filtered. -We recommend getting your browser to alert you when this happens. -(On Netscape: - -Options; - -Security; - -General; - -Show an alert before entering a secure document space.) -We also recommend adding the line -:443 -to the blockfile to stop all but sites specified in an exception -after that line from using SSL. -

    -It may be possible to filter encrypted cookies -by combining the blocking proxy with a cryptographic proxy along -the lines of -SafePassage, -but we have not tried this. -

    - -

    <Feedback>  -Will using this as my Security Proxy compromise security? -

    -

    -We're not security experts, but we don't think so. -The whole point of -SSL -is that the -contents of messages are - -encrypted -by the time -they leave the browser and the server. -Eavesdroppers (including proxies) can see where your messages are going -whether you are running a proxy or not, -but they only get to see the contents after they have been encrypted. -

    - -

    <Feedback>  -Can I restrict use of the proxy to a set of nominated IP addresses? -

    -

    -Yes, we added an -access control -file in Version 2.0. -But before you use it please consider why you want to do it. -If the reason is security, -it probably means you need a firewall. -

    -The -listen-address -option provides a way of binding the proxy to a single IP address/port. -The right way to do this is to choose a port inside your firewall, and -deny access to it to those outside the firewall. -The -Internet Junkbuster -is not a firewall proxy; -it should not be expected to solve security problems. -

    -For background information on firewalls, -see -Yahoo -or a -magazine article -or these well-known books: -Firewalls and Internet Security: Repelling the Wily Hacker -by -William R. Cheswick -and -Steven M. Bellovin -or -Building Internet Firewalls -by -D. Brent Chapman -and -Elizabeth D. Zwicky. -There's - -free Linux software -available, -and a large number of -commercial -products and services. -For an excellent security overview, primer, and compendium reference, see -Practical Unix and Internet Security -by -Simson Garfinkel -and -Gene Spafford. -

    - -

    <Feedback>  -Are there any security risks for ISPs or others who offer the proxy? -

    -

    -Yes. -As with any service offered over the Internet, -hackers can try to misuse it. -A well-run -ISP -will have professionals who are experienced at assessing and containing -these risks. -

    -It's possible to set up your machine so -that other people can have access to your proxy, -but if you lack expertise in computer security -you probably shouldn't have your computer configured to offer -this or any other service to the outside world. -

    -Hackers can attempt to gain access -to the machine by various attacks, -which we have tried to guard against but don't guarantee to thwart. -They can also use the ``anonymizing'' quality of proxies -to try to cover their tracks while hacking other computers. -For this reason we recommend preventing it being used -as an anonymous -telnet -by putting the pattern -:23 -in the blockfile (it's included as standard equipment). -(Actually the current implementation incidentally blocks telnet due to the -way headers are handled, but it's best not to rely on this.) -If you wish to block all ports except the default -HTTP -port 80, -you can put the lines -
    -   : -
    -   ~:80 -
    -at the beginning of the blockfile, but be aware that some servers -run on non-default ports (e.g. 8080). You might also want to add the line -~:443 -to allow -SSL. -

    -On -UNIX ® -systems it is neither necessary nor desirable for the proxy to run as root. -

    -Versions 2.0.1 and below may be vulnerable to remote -exploitation of a memory buffer bug; for security reasons all users -are encouraged to -upgrade. -

    -If you find any security holes in the code -please -tell us, -along with any suggestions you may have for fixing it. -However, we do not claim that we will be able to do so. -

    -We distribute this code in the hope that people -will find it useful, but we provide -no warranty -for it, -and we are not responsible for anyone's use or misuse of it. -

    -You may also want to check back periodically for updated versions of the code. -We do not -maintain a mailing list. -To get quick updates, bookmark our -Distribution Information -page. -

    -

    --- Back to Top of Page ---

    - -Home - · - - - · Site Map - - · Legal - - · Privacy - - · Cookies - - · Banner Ads - - · Telemarketing - - · Mail - - · Spam - -
    - -
    - - -

    -Copyright © 1996-8 Junkbusters -® Corporation. -Copying and distribution permitted under -the GNU -General Public License. - - -1998/10/31 -http://www.junkbusters.com/ht/en/ijbfaq.html - -

    webmaster@junkbusters.com
    -     - - diff --git a/doc/ijbman.html b/doc/ijbman.html deleted file mode 100644 index 710cddb0..00000000 --- a/doc/ijbman.html +++ /dev/null @@ -1,920 +0,0 @@ - - - - - - - - - - - - -Internet Junkbuster Technical Information - - - - - - - - - -
    -

    Internet JUNKBUSTER Technical Information -

    -
    - -

    -Options - - · Checking Options - - · Installation - - · Copyright - - · (FAQ) -

    -
    -
    -

    -Manual Page - -

    -
    -
    A copy of this page -in standard -man -macro format -is included in the -tar archive. - -

    <Feedback>  -Name -

    -

    -junkbuster -- The -Internet Junkbuster -Proxy -TM -

    - -

    <Feedback>  -Synopsis -

    -

    -junkbuster -configfile -(Version 2.0 onwards) -
    -junkbstr.exe -configfile -(Windows) -
    -junkbuster -[-a] -[-y] -[-s] -[-c] -[-v] -
    -[-u user_agent] -[-r referer] -[-t from] -
    -[-b blockfile] -[-j jarfile] -[-l logfile] -
    -[-w NAME=VALUE] -[-x Header_text] -
    -[-h [bind_host_address][:bind_port]] -
    -[-f forward_host[:port]] -[-d N] -
    -[-g gw_protocol[:[gw_host][:gw_port]]] -
    -(Version 1.4 and earlier) -

    - -

    <Feedback>  -Description -

    -

    -junkbuster -is an instrumentable proxy that filters the -HTTP -stream between -web servers and browsers. -Its main purpose is to enhance privacy. -

    -Versions before 2.0 used command-line options; -Versions from 2.0 onward use a configuration file. -The following descriptions of the options first give the older -command-line usage, then the new configfile line. -

    -In Versions 2.0.1 upwards on Windows, -a start-up message is printed and the configuration is read from the file -junkbstr.ini -if it exists and no argument was given. -

    -All files except the configfile -are checked for changes before each page is fetched, -so they may edited without restarting the proxy. -

    Options -

    -

    -b blockfile
    blockfile  blockfile
    -Block -requests to -URLs -matching any pattern given in the lines of the -blockfile. -The -junkbuster -instead returns status 202, indicating that the request has been accepted -(though not completed), -and a -message identifying itself -(though the browser may -display only a broken image icon). -(Versions before 2.0 returned an error 403 (Forbidden).) -The syntax of a pattern is -[domain][:port][/path] -(the -http:// -or -https:// -protocol part is omitted). -To decide if a pattern matches a target, the domains are compared first, -then the paths. -

    -To compare the domains, -the pattern domain and the target -domain specified in the -URL -are each broken into their components. -(Components are separated by the -. -(period) character.) -Next each of the target components -is compared with the corresponding pattern component: last with last, -next-to-last with next-to-last, and so on. -(This is called -right-anchored -matching.) -If all of the pattern components find their match in the target, -then the domains are considered a match. -Case is irrelevant when comparing domain components. -

    -A successfully -matching pattern can be an anchored substring of a target, but -not vice versa. -Thus if a pattern doesn't specify a domain, -it matches all domains. -Furthermore, when comparing two components, -the components must either match in their entirety or up to a wildcard -* -(star character) in the pattern. The wildcard feature -implements only a "prefix" match capability ("abc*" vs. "abcdefg"), -not suffix matching ("*efg" vs. "abcdefg") or -infix matching ("abc*efg" vs. "abcdefg"). -The feature is restricted to the domain component; -it is unrelated to the optional -regular expression -feature in the path -(described below). -

    -If a numeric port -is specified in the pattern domain, then the target port must -match as well. The default port in a target is port 80. -

    -If the domain and port match, -then the target -URL -path is checked for -a match against the path in the pattern. -Paths are compared with a simple case-sensitive -left-anchored substring comparison. -Once again, the pattern can be an -anchored substring of the target, but not vice versa. -A path of -/ -(slash) would match all paths. Wildcards are not considered in -path comparisons. -

    -For example, the target -URL -
    -   the.yellow-brick-road.com/TinMan/has_no_brain -
    -would be matched (and blocked) by the following patterns -
    -   yellow-brick-road.com -
    -and -
    -   Yellow*.COM -
    -and -
    -   /TinM -
    -but not -
    -   follow.the.yellow-brick-road.com -
    -or -
    -   /tinman -
    -

    -Comments in a blockfile start with a -# -(hash) character and end at a new line. -Blank lines are also ignored. -

    -Lines beginning with a -~ -(tilde) character are taken to be -exceptions: -a -URL -blocked by previous patterns that matches the rest of -the line is let through. (The last match wins.) -

    -Patterns -may contain -POSIX -regular expressions -provided the -junkbuster -was compiled with this option -(the default in Version 2.0 on). -The idiom -/*.*/ad -can then be used -to match any -URL -containing -/ad -(such as -http://nomatterwhere.com/images/advert/g3487.gif -for example). -These expressions -don't work -in the domain part. -

    -In version 1.3 and later -the blockfile and cookiefile are checked for changes before each request. -

    -w NAME=VALUE
    wafer  NAME=VALUE
    -Specifies a pair to be sent as a cookie with every request -to the server. -(Such boring cookies are called -wafers.) -This option may be called more than once to generate multiple wafers. -The original -Netscape specification -prohibited -semi-colons, commas and white space; -these characters will be -URL-encoded -if used in wafers. - - -The Path and Domain attributes are not currently supported. -

    -c cookiefile
    cookiefile  cookiefile
    -Enforce the cookie management policy specified in the -cookiefile. -If this option is not used all cookies are silently crunched, -so that users who never want cookies aren't bothered by browsers -asking whether each cookie should be accepted. -However, cookies can -still get through -via -JavaScript -and -SSL, -so alerts should be left on. -

    -In Version 1.2 and later -this option must be followed by a -filename -containing instructions on which sites are allowed to -receive and set cookies. -By default cookies are dropped in both the browser's request -and the server's response, unless the -URL -requested matches an entry in the -cookiefile. -The matching algorithm is the same as for the blockfile. -A leading -> -character allows -server-bound -cookies only; -a -< -allows only browser-bound cookies; -a -~ -character stops cookies in -both directions. -Thus a cookiefile containing a single line with the two characters ->* -will pass on all cookies to servers but not give any new ones to the browser. -

    -j jarfile
    jarfile  jarfile
    -All Set-cookie attempts by the server are -logged -to -jarfile. -If no wafer is specified, -one containing a -canned notice -(the -vanilla wafer) -is added as an alert to the server -unless the -suppress-vanilla-wafer - -option is invoked. -

    -v
    suppress-vanilla-wafer
    -Suppress the vanilla wafer. -

    -t from
    from  from
    -If the browser -discloses an email address -in the -FROM -header (most don't), -replace it with -from. -If -from -is set to -. -(the period character) -the -FROM -is passed to the server unchanged. -The default is to delete the -FROM -header. -

    -r referer
    referer  referer
    -Whenever the browser discloses the -URL -that -led to -the current request, -replace it with -referer. -If -referer -is set to -. -(period) -the -URL -is passed to the server unchanged. -In -Version 1.4 -and later, if referer is set to -@ -(at) the -URL -is sent in cases where the cookiefile -specifies that a cookie would be sent. -(No way to send bogus referers selectively is provided.) -The default is to delete Referer. -

    -Version 2.0 also accepts the spelling -referrer, -which most dictionaries consider correct. -

    -u user-agent
    user-agent  user-agent
    -Information disclosed by the browser -about itself -is replaced with the value -user-agent. -If -user-agent -is set to -. -(period) -the -User-Agent -header is passed to the server unchanged, -along with any -UA -headers produced by -MS-IE -(which would otherwise be deleted). -In -Version 1.4 -and later, if -user-agent -is set to -@ -(at) these headers are sent unchanged in cases where the cookiefile -specifies that a cookie would be sent, -otherwise only default -User-Agent -header is sent. -That default -is Mozilla/3.0 (Netscape) -with an unremarkable -Macintosh -configuration. -If used with a browser less advanced than Mozilla/3.0 or IE-3, the default -may encourage pages containing extensions that confuse the browser. - -

    -h [host][:port]
    listen-address  [host][:port]
    -If -host -is specified, -bind the -junkbuster -to that -IP -address. -If a -port -is specified, use it. -The default -port -is 8000; -the default host is -localhost. -Before Version 2.0.2, -the default was to bind to all -IP -addresses -(INADDR_ANY); -but this has been restricted to -localhost -to avoid unintended security breaches. -(To open the proxy to all, use the line -
    -   listen-address :8000 -
    -in the configuration file.) -

    -f forward_host[:port]
    forwardfile  forwardfile
    -Version 1.X required all -HTTP -requests from the client to be forwarded to the same destination. -Version 2.0 takes its routing specification from a -forwardfile, -allowing selection of the proxy (a.k.a. forwarding host) and gateway -according to the -URL. -Here is a typical line. -
    -
    -*         lpwa.com:8000      .      .
-
    -

    -Each line contains four fields: -target, -forward_to, -via_gateway_type -and -gateway. -As usual, the -last -target -domain that matches the requested -URL -wins, -and the -* -character alone matches any domain. -The target domain need not be a fully qualified -hostname; it can be a general domain such as -com -or -co.uk -or even just a port number. -For example, because -LPWA -does not handle -SSL, -the line above will typically be followed by a line such as -
    -

    -:443  .      .      .
-
    -to allow SSL transactions to proceed directly. -The cautious would also -add an entry in their blockfile to stop transactions -to port 443 for all but specified trusted sites. -

    -If the winning -forward_to -field is -. -(the dot character) the proxy connects -directly to the server given in the -URL, -otherwise it forwards to the host and port number specified. -The default port is 8000. -The -via_gateway_type -and -gateway -fields also use a dot to indicate no gateway protocol. -The gateway protocols are explained -below. -

    -The example line above in a forwardfile alone -would send everything through port 8000 at -lpwa.com -with no gateway protocol, -and is equivalent to the old --f lpwa.com:8000 -with no --g -option. -For more information see the example file provided with the distribution. -

    -Configure with care: no loop detection is performed. -When setting up chains of proxies that might loop back, try adding -Squid. -

    -g gw_protocol[:[gw_host][:gw_port]]
    -Use -gw_protocol -as the gateway protocol. -This option was introduced in Version 1.4, -but was folded into the -forwardfile -option in Version 2.0. -The default is to use no gateway protocol; -this may be explicitly specified as -direct -on the command line -or the dot character in the forwardfile. -The -SOCKS4 -protocol may be specified as -socks -or -socks4. -The -SOCKS4A -protocol is specified as -socks4a. -The -SOCKS5 -protocol is not currently supported. -The default -SOCKS -gw_port -is 1080. -

    -The user's browser should -not -be -configured -to use -SOCKS; -the proxy conducts the negotiations, not the browser. -

    -The user identification capabilities of -SOCKS4 -are deliberately not used; -the user is always identified to the -SOCKS -server as -userid=anonymous. -If the server's policy is to reject requests from -anonymous, -the proxy will not work. -Use a -debug -value of 3 -to see the status returned by the server. -

    -d N
    debug  N
    -Set debug mode. -The most common value is 1, -to -pinpoint -offensive -URLs, -so they can be added to the blockfile. -The value of -N -is a bitwise -logical-OR -of the following values: -
    -1 = URLs (show each URL requested by the browser);
    -2 = Connections (show each connection to or from the proxy);
    -4 = I/O (log I/O errors);
    -8 = Headers (as each header is scanned, show the header and what is done to it);
    -16 = Log everything (including debugging traces and the contents of the pages).
    -Multiple -debug -lines are permitted; they are logical OR-ed together. -

    -Because most browsers send several requests in parallel -the debugging output may appear intermingled, so the -single-threaded -option is recommended when using -debug -with -N -greater than 1. - -

    -y
    add-forwarded-header
    -Add -X-Forwarded-For -headers to the server-bound -HTTP -stream -indicating the client -IP -address -to the server, -in the new style of -Squid 1.1.4. -If you want the traditional -HTTP_FORWARDED -response header, add it manually with the --x -option. - -

    -x HeaderText
    add-header  HeaderText
    -Add the -HeaderText -verbatim to requests to the server. -Typical uses include -adding old-style forwarding notices such as -Forwarded: by http://pro-privacy-isp.net -and reinstating the -Proxy-Connection: Keep-Alive -header -(which the -junkbuster -deletes so as -not -to reveal its existence). -No checking is done for correctness or plausibility, -so it can be used to throw any old trash into the server-bound -HTTP -stream. -Please don't litter. - -

    -s
    single-threaded
    -Doesn't -fork() -a separate process -(or create a separate thread) -to handle each connection. -Useful when debugging to keep the process single threaded. -

    -l logfile
    logfile  logfile
    -Write all debugging data into -logfile. -The default -logfile -is the standard output. -


    aclfile  aclfile
    -Unless this option is used, the proxy talks to anyone who can connect to it, -and everyone who can has equal permissions on where they can go. -An access file allows restrictions to be placed on these two policies, -by distinguishing some -source -IP -addresses and/or -some -destination -addresses. -(If a -forwarder or a gateway -is being used, its address is considered the destination address, -not the ultimate -IP -address of the -URL -requested.) -

    -Each line of the access file begins with -either the word -permit -or -deny -followed by source and (optionally) destination addresses -to be matched against those of the -HTTP -request. -The last matching line specifies the result: if it was a -deny -line or if no line matched, -the request will be refused. -

    -A source or destination -can be specified as a single numeric -IP -address, -or with a hostname, provided that the host's name -can be resolved to a numeric address: this cannot be used to block all -.mil -domains for example, -because there is no single address associated with that domain name. -Either form may be followed by a slash and an integer -N, -specifying a subnet mask of -N -bits. -For example, -permit 207.153.200.72/24 -matches the entire Class-C subnet from -207.153.200.0 -through 207.153.200.255. -(A netmask of 255.255.255.0 corresponds to 24 bits of -ones in the netmask, as with -*_MASKLEN=24.) -A value of 16 would be used for a Class-B subnet. -A value of zero for -N -in the subnet mask length will cause any address to match; -this can be used to express a default rule. -For more information see the example file provided with the distribution. -

    -If you like these access controls -you should probably have -firewall; -they are not intended to replace one. -


    trustfile  trustfile
    -This feature is experimental, has not been fully documented and is -very subject to change. -The goal is for parents to be able to choose a page or site whose -links they regard suitable for their -young children -and for the proxy to allow access only to sites mentioned there. -To do this the proxy examines the -referer -variable on each page request to check they resulted from -a click on the ``trusted referer'' site: if so the referred site -is added to a list of trusted sites, so that the child can -then move around that site. -There are several uncertainties in this scheme that experience may be -able to iron out; check back in the months ahead. -


    trust_info_url  trust_info_url
    -When access is denied due to lack of a trusted referer, this -URL -is displayed with a message pointing the user to it for further information. -


    hide-console
    -In the Windows version only, instructs the program -to disconnect from and hide the command console after starting. -

    -a
    -(Obsolete) Accept the server's -Set-cookie -headers, passing them through to the browser. -This option was removed in Version 1.2 -and replaced by an improvement to the --c -option. -
    -

    - -

    <Feedback>  -Installation and Use -

    -

    -Browsers must be told where to find the -junkbuster -(e.g. -localhost -port 8000). -To set the -HTTP -proxy in Netscape 3.0, -go through: - -Options; - -Network Preferences; - -Proxies; - -Manual Proxy Configuration; - -View. -See the -FAQ -for other browsers. -The -Security Proxy -should also be set to the same values, -otherwise -shttp: -URLs -won't work. -

    -Note the limitations -explained in the -FAQ. -

    - -

    <Feedback>  -Checking Options -

    -

    -To allow users to -check -that a -junkbuster -is running and how it is configured, -it intercepts requests for any -URL -ending in -/show-proxy-args -and blocks it, -returning instead returns information on its -version number and -current configuration -including the contents of its blockfile. -To get an explicit warning that no -junkbuster -intervened if the proxy was not configured, -it's best to point it to a -URL -that does this, such as -http://internet.junkbuster.com/cgi-bin/show-proxy-args -on Junkbusters's website. -

    - -

    <Feedback>  -See Also -

    -

    -http://www.junkbusters.com/ht/en/ijbfaq.html -
    -http://www.junkbusters.com/ht/en/cookies.html -
    -http://internet.junkbuster.com/cgi-bin/show-proxy-args -
    -http://www.cis.ohio-state.edu/htbin/rfc/rfc2109.html -
    -http://squid.nlanr.net/Squid/ -
    -http://www-math.uni-paderborn.de/~axel/ -

    - -

    <Feedback>  -Copyright and GPL -

    -

    -Written and copyright by the Anonymous Coders and Junkbusters Corporation -and made available under the -GNU General Public License (GPL). -This software comes with -NO WARRANTY. -Internet Junkbuster -Proxy -is a -trademark -of Junkbusters Corporation. -

    -

    --- Back to Top of Page ---

    - -Home - · - - - · Site Map - - · Legal - - · Privacy - - · Cookies - - · Banner Ads - - · Telemarketing - - · Mail - - · Spam - -
    - -
    - - -

    -Copyright © 1996-8 Junkbusters -® Corporation. -Copying and distribution permitted under -the GNU -General Public License. - - -1998/10/31 -http://www.junkbusters.com/ht/en/ijbman.html - -

    webmaster@junkbusters.com
    -     - - diff --git a/doc/obsolete/fb.gif b/doc/obsolete/fb.gif new file mode 100755 index 0000000000000000000000000000000000000000..430599247c98e12514999f7c116aac2ae83324b7 GIT binary patch literal 76 zcmZ?wbhEHbsb#V;-N+Sz-ldF8@D1_o;Y>IoLN literal 0 HcmV?d00001 diff --git a/doc/obsolete/ijbfaq.html b/doc/obsolete/ijbfaq.html new file mode 100644 index 00000000..3d522479 --- /dev/null +++ b/doc/obsolete/ijbfaq.html @@ -0,0 +1,1999 @@ + + + + + + Internet Junkbuster Frequently Asked Questions + + + + + + +

    + Website · + Manual · FAQ · GPL

    + +

    Internet + JUNKBUSTER + Frequently Asked Questions

    + +

    Configuring + Browsers · + IE 5.0 · + Installation · For Companies · Blocking Ads · + Cookies · Hotmail · Children · Forwarding/Chaining + · IP + · Anonymity + · Security

    + +

    This document is out of date

    + +

    Development of JunkBuster is ongoing and this document is + no longer current. However, it may provide some assistance. If + you have problems, please use the Yahoo Groups + mailing list (which includes an archive of mail), the + SourceForge.net project page, or + see the project's home + page. Please also bear in mind that versions 2.9.x of + JunkBuster are development releases, and are not production + quality.

    + +

    The Top Ten Questions

    + +

    *  What is the Internet Junkbuster + Proxy and what does it do for me?

    + +

    The Internet Junkbuster Proxy TM + is free privacy-enhancing software that can be run on your PC + or by your ISP or company. It blocks requests for URLs + (typically banner ads) that match its blockfile. It also + deletes unauthorized cookies and other unwanted identifying + header information that is exchanged between web servers and + browsers. These headers are not normally accessible to users + (even though they may contain information that's important to + your privacy), but with the Internet Junkbuster you can see + almost anything you want and + control everything you're likely to need. Many people publish + their blockfiles to help others get started.

    + +

    *  Is there a license fee / warranty + / registration form / expiration?

    + +

    No, none of these. It's completely free of charge. + Junkbusters offers you the software to copy, use, modify and + distribute as you wish, forever, at no charge under the GNU + General Public License.

    + +

    It comes with no warranty of any + kind.

    + +

    You don't have to register, in fact + we don't even provide a way to do so: the practice of + registering software is usually just an excuse to send you + solicitations and sell your name and information about your + behavior. You are welcome to obtain and use our software as + anonymously you wish. (Your IP address will naturally be + disclosed when you download it; use anonymizing software if you + want to conceal this. We never want to be given any information + that you consider private or confidential.)

    + +

    We are often asked why we give away a + product that many would happily pay for. The answer is that we + are determined to carry out our mission: to free the world from + junk communications.

    + +

    *  Does it run on Windows? On a Mac? + On the AOL browser?

    + +

    For the latest information on availability, see the + Distribution Information page. We don't think it will ever run + on Windows 3.1. But you don't need to have it running on your + computer if you get your ISP or Systems Administrator at work + to run it.

    + +

    *  How can I get my ISP to run the + Internet Junkbuster?

    + +

    Try their sales or support department (depending on whether + you are already a customer). You might + send them email including the following URL:
    +     + http://www.junkbusters.com/ht/en/ijbfaq.html#isps
    + You could mention that many other ISPs + provide it, and that you regard it as an important part of your + decision on where to buy Internet service.

    + +

    *  Who chooses the options that + control what is blocked?

    + +

    Whoever starts the Internet Junkbuster chooses the options + and the blockfile. If your ISP runs it for you, they have to + make these decision (though some may give you a choice of + proxies, and a way to suggest new URLs to block). If you run it + on your computer, you get to choose.

    + +

    *  How do I download and run the + program on my computer?

    + +

    It depends on your platform. If you are using Windows 95 or + NT, see our separate page on installing under Windows. If you + have a C compiler and are using almost any flavor of UNIX ® + you download it, compile it, start it running, and then + configure your browser. Several precompiled packages are also + available through links in our distribution page, which lists + all available platforms.

    + +

    If you are using a platform for which we + have no current availability, you are welcome to port the code. + If you do this and you would like us to consider publishing + your ported version, please tell us.

    + +

    *  How can I tell which blockfile + and options are being used?

    + +

    Just point your browser to + http://internet.junkbuster.com/cgi-bin/show-proxy-args or to + any URL ending in show-proxy-args (even if it + doesn't exist). It needn't exist because the Internet + Junkbuster intercepts the request, blocks it, and returns in + its place information about itself. Using the URL above is + useful for checking that your browser really is going through + an Internet Junkbuster, because the junkbuster.com + server returns a warning if the request actually gets to it. + Some people set the home page of their browser to such a URL to + be sure that it is configured to use the proxy.

    + +

    If you wish to check the header + information your proxy is actually sending, a visit to + http://internet.junkbuster.com/cgi-bin/show_http_headers will + give you the more relevant ones first. You might also like to + turn the proxy off and compare the difference. (Don't forget to + turn it back on again.)

    + +

    +  My browser started giving me + ``server not responding'' messages

    + +

    Once your browser is told to use a proxy such as the + Internet Junkbuster, it thinks of it as its server for + everything, so this message means it can't talk to the proxy. + The Internet Junkbuster may not be running, or you may have + specified its proxy address incorrectly. Check that the details + you entered are correct. If you have telnet you + can try connecting to the appropriate port to see if the + Internet Junkbuster is running. If your ISP is running the + Internet Junkbuster, you may want to check with them. If you + are running it yourself under UNIX ®, try looking at a + ps ax to see if it is running. The port specified in its options should be + the same one as your browser has configured.

    + +

    *  I've got this great idea for a + new feature. Who do I tell?

    + +

    We'd be very interested to hear it, but please bear a few + things in mind.

    + +
      +
    1. Please check this FAQ to see if + we've already considered the idea, such as automatic + detection of banner ads and replacing ads with something else + such as a transparent GIF.
      2. + +
    2. Don't tell us anything you + want to keep confidential or retain some right over.
      3. + +
    3. We currently have a long wish list of + things that we may or may not do in the near future, + including a version for your favorite computer and a plug-in + version.
      4. + +
    4. If you don't want to wait you're + welcome to improve on our code, publish your version on the + Web, and tell us where to find it. Projects that are + especially welcome include a port to the Mac and extensions + for HTTP 1.1. (Meanwhile, be sure your browser is configured + not to use HTTP 1.1.)
      5. +
    + +

    *  My question isn't listed here. + Who do I ask for support?

    + +

    If you find using our free product + harder than you're used to for consumer software, there are + many commercial alternatives that you could consider.

    + +

    The answer to detailed technical questions + may be answered in manual page, or in + the source code. Also double-check this page for an answer: + using the ``find'' feature on your browser for likely keywords + may help. Our site also has a search feature.

    + +

    Many people post requests for help and + responses on Usenet.

    + +

    If your ISP is providing the Internet + Junkbuster for you, and your question is about how to use it, + check their web page before asking them.

    + +

    Even though we don't offer the kind of + support you might expect if you paid a lot of money for a + software product, you can still ask us. But before you do, + please consider whether you could ask someone closer to you. + And please be patient if we're slow to reply: we never charge + consumers for our services, so we have to subsidize consumers + with revenue from companies, and our resources are limited.

    + +

    If your company or organization would be + interested in a maintenance contract with phone and email + support, hard copy documentation and source code and + pre-compiled binaries on tape or disk, please ask us for a + quote.

    + +

    --- Back to Top of Page ---

    + +

    Configuring your browser to talk to + the Internet Junkbuster

    + +

    *  What is the proxy address of the + Internet Junkbuster?

    + +

    If you set up the Internet + Junkbuster to run on the computer you browse from (rather than + your ISP's server or some networked computer at work), the + proxy will be on localhost (which is the special + name used by every computer on the Internet to refer to itself) + and the port will be 8000 (unless you have told + the Internet Junkbuster to run on a different port with the listen-address option). + So you when configuring your browser's proxy settings you + typically enter the word localhost in the two + boxes next to HTTP and + Secure, and the number 8000 in the two boxes + labeled to the right of those boxes. The + Internet Junkbuster does not currently handle other protocols + such as Gopher, FTP, or WAIS, so leave those setting unchanged. + Nor does it handle ICQ or Instant Messenger services.

    + +

    If your ISP or company is running the + Internet Junkbuster for you, they will tell you the address to + use. It will be the name of the computer it's running on (or + possibly its numeric IP address), plus a port number. Port 8000 + is the default, so assume this number if it is not specified. + Sometimes a colon is used to glue them together, as in + junkbuster.fictitious-pro-privacy-isp.net:8000 but with + most browsers you do not type the colon, you enter the address + and port number in separate boxes.

    + +

    *  How do I tell the browser where + to find the Internet Junkbuster?

    + +

    All current browsers can be told the address of a proxy to + use. You enter the same information in two fields in your + browser's proxy configuration screen (see list below): one for + HTTP, and one for the Secure Protocol (assuming your browser + supports SSL). If you find some information already entered for + your proxy, see the next question. Here are the menus you go + through to get to the proxy configuration settings. (We also + recommend that you disable Java, which is a separate + operation.) Make notes on the changes you make so you + know how to undo them! You will need to know what you + did in case you wish to discontinue using the proxy.

    + +
      +
    1. For Netscape 2.01, 2.02 and 3.0 + [Graphic Illustration]: Options; Network Preferences; Proxies; Manual Proxy Configuration View ; enter proxy + address details under HTTP and Security Proxy; click on OK; click + on the next OK. [Return to Windows + Installation Procedure]
      + With Netscape 2.0, follow with Options, Save Options.
      + With Netscape 4.X series, you + first have to go through Edit/Preferences. + [Graphic Illustration] Then in the frame on the left, click + on triangle pointing to the right towards the word Advanced; it will switch to a triangle pointing + down; and the words Cache, + Proxies and Disk Space appear. Click on + Proxies and the frame on the right will + display a banner saying Proxies Configure + proxies to access the Internet. Click the radio button + labeled Manual proxy configuration then + click the button labeled View; enter proxy + address details under HTTP and Security Proxy; click on OK; click + on the next OK. [Return to Windows + Installation Procedure]
      2. + +
    2. For Internet Explorer 3.0 + [Graphic Illustration]: View; Options; Connections; tick Connect through proxy server box; Settings; enter proxy address details + HTTP Box, with port number in the second box; same with + Secure; click on OK. + [Return to Windows Installation Procedure]
      3. + +
    3. For Internet Explorer 2.0: View; Options; Proxy; enter proxy address details click on OK. [Return to Windows Installation + Procedure]
      4. + +
    4. On NT for MS-IE: Control + Panel; Internet; + Advanced; Proxy.
      5. + +
    5. For MS-IE 4.0: similar to 3.0: View; Internet Options; Connection; tick Access Internet using + a proxy server box; from there we have had reports of + different versions, either click on + Advanced or Settings; enter proxy + address details HTTP Box, with port number + in the second box; same with Secure; click + on OK. Note that 4.0 has + Advanced settings to allow HTTP 1.1 through proxies; + these must be disabled because the proxy does not currently + understand HTTP 1.1. Please tell us if you see any other + differences. [Return to Windows Installation Procedure]
      6. + +
    6. For MS-IE 5.0: similar to 4.0: Tools|Internet Options from the menu bar; Connections. Select either dial-up connection + or LAN (depending on how you connect to the Internet); press + Settings; and check the Use + Proxy Server box; enter proxy address details in the HTTP Box, with port number in the second box; + same with Secure; click on + OK buttons to get out. Note: You must also uncheck the HTTP 1.1 checkboxes + at the end of the Advanced options. This + seems to have been made the default in IE 5.0. [Return to + Windows Installation Procedure]
      7. + +
    7. For Netscape's level 5 browser, we + have no information. If you do, please tell us.
      8. + +
    8. For NCSA Mosaic for Windows: Options, Preferences, Proxy; enter proxy address details under HTTP.
      9. + +
    9. For Opera: + Preferences, Proxy servers; check the + box next to HTTP; enter the server and port number in the box + on the other side; click on OK.
      10. + +
    10. For Lynx, Mosaic/X, Grail, and + W3O Arena, you can specify the proxy via environment + variables before starting the application. This will probably + be done with something like either
      +    setenv http_proxy + http://localhost:8000/
      + or
      +     + http_proxy=http://junkbuster.fictitious-pro-privacy-isp.net:8000/ + export http_proxy
      + depending on your shell and where the Internet Junkbuster + lives.
      11. +
    + +

    If your browser is not listed here, or if you notice an + error, please tell us the correct procedure.

    + +

    *  What should I do if I find + another proxy is already configured?

    + +

    Some ISPs and companies require all Web traffic to go + through their proxy. In this case you would find your proxy + configuration with values already set, possibly under Automatic Proxy Configuration (in the case of + Netscape and MS-IE 3.0 and above). It's probably a firewall + proxy between your company and the outside world, or a caching proxy if you're using an ISP.

    + +

    What needs to be done in this case is to use + the forwardfile option to + tell the Internet Junkbuster the address of the other proxy. + Specify a different (unused) port number with the listen-address option, and + configure your browser to use that port. If you haven't done + this kind of thing before, it's probably best to consult your + systems administrator or ISP about it; check their web page + first.

    + +

    +  What if I want to stop using + the Internet Junkbuster?

    + +

    Just go through the same procedure you used to start your + browser using the Internet Junkbuster, but remove the details + you put in (or if there was something there before, restore + it). You may need to use Save Options to make + this change permanent. On Netscape 3.0 you can go through Options; Network Preferences; + Proxies and click on No + Proxy to turn it off, and later click on + Manual Proxy Configuration if you want to start using it + again. (No need to enter the again details under + View as you did the first time; they should remain there + unchanged.)

    + +

    This stops your browser talking to the + proxy; shutting down the proxy is a different matter.

    + +

    *  Automatic dialing isn't working + any more. How do I fix it?

    + +

    Some browsers (such as MSIE-4) can be configured to dial + your ISP automatically when you click on a link, but this + feature (called "automatically connect" or "autoconnect") gets + disabled if you specify a proxy running on your own computer + (with address localhost or 127.0.0.1) + because these addresses don't require dialing. The Internet + Junkbuster knows nothing about dialing, so it doesn't work. To + make automatic dialing work, make up a name such as + junkbuster.ijb and use that name in the proxy settings + instead of localhost, and then add the line + 127.0.0.1 junkbuster.ijb to the file + c:\windows\hosts (if there already is a line beginning + with 127.0.0.1 just add + junkbuster.ijb at the end of it.)

    + +

    This should also work Netscape + Communicator 4 on machines where IE-4 has been installed.

    + +

    --- Back to Top of Page ---

    + +

    Setting up the Internet Junkbuster on + your local computer

    + +

    The next two sections assume you wish to compile the code + with your own C compiler. If you just + want to use the .exe file provided for Windows, + see the Windows Installation page.

    + +

    *  How do I compile the code under + Unix?

    + +

    If you are running Redhat Linux you may prefer to use the + rpm instead of the following procedure.

    + +
      +
    1. First download the tar file + (~286k) and uncompress and extract the + files from it with this command
      +    uncompress -c ijb20.tar.Z | tar xf + -
      2. + +
    2. If your operating system is from Sun or + HP examine the Makefile and make any changes + indicated inside.
      3. + +
    3. Run
      +
      +    make
      4. + +
    4. + Copy the sample configuration file + (junkbstr.ini, previously called + sconfig.txt and other names in earlier releases) to + some convenient place such as + /usr/local/lib/junkbuster/configfile or whatever you + choose. The sample file has all the options commented out. + You can remove the # character on any that you + want, but it may be better to leave this until to later. + Run it asynchronously:
      +
      +    junkbuster configfile & + + +

      If you are running a version earlier than 2.0 you can + start it with junkbuster &

      +
      5. + +
    5. Configure your browser (described + above).
      6. + +
    6. Verify that the Internet Junkbuster is + working (described above).
      7. + +
    7. Decide on the options you really + want, kill the process and start it again. The + most popular option is + blockfile to block ads. A + sample blockfile is provided as an illustration, but it + doesn't really stop many ads. More comprehensive ones are + available elsewhere.
      8. + +
    8. You'll probably want to add an entry to + /etc/rc.d/rc.local or equivalent to start it at + boot time. (Any output you specify should be redirected to a + file. And don't forget the & at the end to run it + asynchronously or your system will seize up after the next + reboot.)
      9. +
    + +

    *  How do I compile the code under + Windows?

    + +

    A .exe file (binary) is supplied with the + source code, but if you prefer to compile it yourself here is + the likely procedure. Most of these steps are repeated in our + checklist for installation under Windows.

    + +
      +
    1. First click here to download the zip + file called ijb20.zip (~208k), then uncompress + and unpack the zip archive using a tool like WinZip.
      2. + +
    2. Now the distribution (source and + sample files) will be in a folder called ijb20. + Go into that folder and then edit the Makefile for your + system, removing the comment character (#) in + the lines related to Win32. Then type:
      +    nmake
      + This should create an executable called + junkbstr.exe. For information + on issues with various compilers, see the Distribution + Information page.
      3. + +
    3. + Run the executable with the + command:
      +    junkbstr
      + (Click on the icon with that name + that looks like a terminal, not like a notepad.) The + program will produce a message indicating that it has + started and is ready to serve. + +

      (Version 2.0.1 and above uses the file + junkbstr.ini as the config file if it exists + and no argument was given. If you have an earlier version + or if you want it to use a different config file, simply + specify that file as the argument.)

      +
      4. + +
    4. Configure your browser + (described above).
      5. + +
    5. Check the proxy is working (described + below).
      6. + +
    6. + To have the proxy start itself + automatically when you login to Win95, drop the + ``shortcut'' to the junkbstr executable into + the StartUp folder:
      +    C:\Windows\Start + Menu\Programs\StartUp
      + You might want to change the shortcut's + Properties->Shortcut to Run: + Minimized. If you specify the hide-console option then the + DOS window will vanish after it starts. + +

      WinNT users can put it into their own + StartUp folders or the Administrator can put it into the + system's global StartUp folder. For details on how to make + this a service under NT see our Windows page.

      +
      7. +
    + +

    *  How do I check that the proxy is + working?

    + +

    Pick a page from somewhere (such as your bookmarks, or just + one that your browser was pointing to) and + Reload it. If you get a message along the lines of ``server + not responding, using cached copy instead,'' see the advice + above. If the page reloads OK, check that your browser is + actually talking to the proxy by going to + http://internet.junkbuster.com/cgi-bin/show-proxy-args or any + URL ending in show-proxy-args (as described below, + the proxy should intercept the request.) When you see + ``Internet Junkbuster Proxy Status,'' you'll know it's + working.

    + +

    *  How and why would I have this + proxy chained with other proxies?

    + +

    You may need the + forwarding feature to ``daisy chain'' the Internet + Junkbuster to another proxy, perhaps an anonymizing proxy to + conceal your IP address, or a caching proxy from your ISP, or a + firewall proxy between your company and the outside world. + Version 2.0 and above can be even configured to forward selectively according to the + URL requested: for example, connecting directly to trusted + hosts, but going through an anonymizing or firewall proxy for + all other hosts.

    + +

    Network administrators might use + it to provide transparent access to multiple networks without + modifying browser configurations. Most + browsers also provide a way of specifying hosts that the + browser connects to directly, bypassing the proxy. Some provide + a method for Automatic Proxy Configuration. A well written + Internet Junkbuster configuration can be much more flexible and + powerful.

    + +

    An ISP's caching proxy would typically + be called something like cache.your-isp.net:8080 + (as described on you ISP's web page); you would put this + information in your + forwardfile as described in our manual. Your browser would + be configured to the Internet Junkbuster for HTTP and Security + Proxies as before, but you probably want to tell it to use the + caching proxy for FTP and other protocols. + If your ISP is running the Internet Junkbuster for you, + they have probably already decided whether to chain with a + caching proxy.

    + +

    *  How does the Internet Junkbuster + work with SOCKS gateways?

    + +

    There is support for some gateways in Version 1.4 and above. + The gateway protocol used to be specified on the command line; + it is now specified in the same file as forwarding. Note that the + browser's proxy configuration must not specify a + SOCKS host; it should specify the proxy as + described above.

    + +

    *  How do I configure it to be just + a plain old proxy?

    + +

    To get the proxy to do as little as possible (which means + not deleting any sensitive headers), place in your + configuration file the following three lines (each ending in a + space then a period) to stop it changing sensitive headers:
    +    referer .
    +    from .
    +    user-agent .
    +    cookiefile mycookiefile
    + The fourth line is also needed to specify a cookiefile that might be called + mycookiefile containing a single line with a + * character, to allow all cookies through.

    + +

    *  How do I shut down the proxy (to + restart it)?

    + +

    It depends on your platform.

    + +
      +
    1. Under Windows, you can click on the "X" + button at the top right of the DOS window (and answer Yes when Windows warns you it cannot shut down + the program automatically), or use + Ctrl-Break or the old three-fingered salute of Ctrl-Alt-Delete and select End + Task.
      2. + +
    2. Under UNIX ® you'll need to + kill the junkbuster process. If you don't know the process number to give + to kill, try this:
      +    ps ax | grep junkbuster
      3. +
    + +

    --- Back to Top of Page ---

    + +

    Information for companies

    + +

    *  What do advertising companies + think of this kind of technology?

    + +

    We've seen only a few public comments from the advertising + industry on this, other than SEC filings. First, the president + of the Internet Advertising Bureau told CNET that he wasn't + worried by banner blockers. Second, after the Federal Trade + Commission's workshop where we gave a live demonstration of our + proxy before many eminent representatives of the industry, the + Direct Marketing Association made the following statement in + the closing paragraphs of their summary comments to the + Commission.

    + +
    + Clever shareware developers have come up with products that + can obliterate cookies and advertisements for those consumers + who have these concerns. The Internet is a market that is so + democratic and flexible that it is easy for companies and + software developers to respond to a perceived market need. +
    + +

    Their attitude seems to be that they would prefer that + people use technical solutions to protect their privacy than + have protections imposed by legislation or government + regulations. So, do you perceive a market need? Then here are + some ways to flex your democratic muscles.

    + +

    +  Should we provide the + Internet Junkbuster for our employees?

    + +

    That depends. Try this quick three-point test.

    + +
      +
    1. Do you want to spend your + communications budget on bandwidth that wastes your + employees' time by forcing them to wait for a lot of annoying + distractions while they're trying to do their jobs?
      2. + +
    2. Do you want current and + potential vendors to know quantitative details about the + software and hardware platforms that you have?
      3. + +
    3. Do you want your competitors + to be able to track exactly which of your employees are + checking out their web sites?
      4. +
    + +

    If the answer to all three questions is yes, then you + probably don't have any need for this kind of product.

    + +

    +  Can our company get + commercial support for the software?

    + +

    Yes, ask us for a quote on a maintenance contract with your + choice of phone and email support, hard copy documentation, + source code and pre-compiled binaries on tape or disk, and + email alerting of upgrades and issues. We also offer consulting + services to help set up ``stealth browsing'' capabilities to + help reduce the footprints left while doing competitive + analysis and other Web work where confidentiality is + critical.

    + +

    *  I run an ISP. What issues should + I consider before offering it?

    + +

    Many ISPs who offer the proxy to their customers have told + us that most of their customers are delighted with it (although + one reported that a customer complaint that without banner ads, + surfing was like reading a novel: we recommend making it + optional). Many ISPs like it because it reduces bandwidth + requirements. To help get you started, here's a checklist we've + developed from working with a few ISPs. You may think of more, + and we'd be interested if you're willing to share them with + us.

    + +
      +
    1. If you get more than one request + for the Internet Junkbuster you may want to tell your + customers on your News page that you already know about it + and are assessing it.
      2. + +
    2. Try the software and verify that it + performs satisfactorily.
      3. + +
    3. Determine whether your customers + perceive the service as valuable (and therefore worth the + time to set up). We've had reports of many delighted + customers.
      4. + +
    4. Assess the level of security + associated with the software. If access is to be restricted + (to just dial-in ports, for example) how is this to be + done?
      5. + +
    5. Consider whether to expect any + additional load on computing resources required, and any + change in use of bandwidth due to the blocking of large + GIFs.
      6. + +
    6. Choose the + options you wish to provide.
      7. + +
    7. + Decide whether you want to offer a + choice of configurations, such some of these four. + +
        +
      1. Banners Blocked, Wafer with + No-Cookie-Copyright notice
        2. + +
      2. Cookies not stopped (cookiefile with just a + * in it), User Agent specified as Lynx
        3. + +
      3. Cookies from browser allowed, + permitting registered services
        4. + +
      4. A proxy for kids.
        5. +
      + If you run a caching proxy, decide + whether the Internet Junkbuster will chain with it by + default, and whether to offer an alternate with no caching. + (Some ISPs don't, because they want to give customers an + incentive to use caching and save bandwidth.) +
      8. + +
    8. Decide on a naming scheme for your + proxies. If you're running only one proxy on one machine, the + simplest way is to just use port 8000 on your main machine, + such as our-isp.net. But it would probably be + safer to put an entry in your name server and call it + something like junkbuster.our-isp.net. If + running several proxies, you could either use different ports + on the same machine, or if you have the opportunity to + distribute the load over a few machines you could use + different hostname aliases such as + banner.junkbuster.our-isp.net, + lynx.junkbuster.our-isp.net and + oneway.junkbuster.our-isp.net (corresponding to the + examples in the previous point). You may want to set up + Automatic Proxy Configuration.
      9. + +
    9. + Prepare a page explaining the + Internet Junkbuster to your customers. + Here's are some examples from Australia, Germany, Florida, + New York/New Jersey/Pennsylvania, North Carolina, Texas, + and Utah. You are welcome to copy and + modify material from Junkbusters according to the GPL. You + might want to set up a process to check this page + periodically and update it when it changes. (A few links + can probably serve as well as lot of copying however.) A + typical page would probably specify the following. + +
        +
      1. A brief explanation stating + what the Internet Junkbuster does, with a link to this + page.
        2. + +
      2. The addresses of the proxy or + proxies, with their port number(s).
        3. + +
      3. The options used, and how to + view the contents of the blockfile (which you can place + on your web pages, preferably in a file called + blocklist.html or + blocklist.txt).
        4. + +
      4. An indication of whether + suggestions for the blocklist are considered, and if so, + how to submit them: to a particular email address, via + web-based form, etc.
        5. + +
      5. Instructions on how to + configure a browser. You may want to include details for + only the two major browsers and leave the others to a + link.
        6. + +
      6. Procedures on how to report + problems, give feedback etc.
        7. +
      +
      10. + +
    10. Invite a small number of + technologically sophisticated customers to beta-test the + service.
      11. + +
    11. Announce general availability on + your ``News'' page. Tell us if you would like to be included + on a list of ISPs offering the Internet Junkbuster.
      12. +
    + +

    --- Back to Top of Page ---

    + +

    Blocking

    + +

    +  Where can I get an example + blockfile that stops most ads?

    + +

    The sample blockfile we provide blocks almost nothing, and + we do not publish blockfiles that stop almost all banner ads. + But others have; you can find them by asking Google. You can + add any part of the new file to your old one (probably called + sblock.ini if you haven't changed the default name + in the latest version) or your just replace it completely. You + probably don't need to restart the proxy.

    + +

    If you develop an interesting blocklist + and publish it on the Web, you might want to include the word + ``junkbuster'' in it and use the word ``blocklist'' in the file + name given in the URL so that others can find it with the query + given in the previous sentence.

    + +

    *  If I see an ad I wish I hadn't, + how do I stop it?

    + +

    If your ISP is running the Internet Junkbuster, they should + have a policy on whether they accept suggestions from their + customers on what to block. Consult their web page.

    + +

    If you are running the Internet + Junkbuster yourself, you have complete control over what gets + through. Just add a pattern to cover the offending URL to your + blockfile. Version 1.3 and later automatically rereads the + blockfile when it changes, but if you're running an earlier + version you'll have to stop it and restart it.

    + +

    To choose a pattern you'll first need + to find the URL of the ad you want cover.

    + +

    Some people use the debug 1 option to display + each URL in a window as the request is sent to the server. It's + then usually an easy task to pick the offending URL from the + list of recent candidates.

    + +

    Alternatively, you can use View Document Info (or View Document + Source if your browser doesn't have that). The Info feature has the advantage of showing you the full + URL including the host name, which may not be specified in the + source: there you might see something like + SRC="/ads/click_here_or_die.gif" indicating only the + path. (The host name is assumed to be the same + as the one the page came from.)

    + +

    But ads often come from a different + site, in which case you might see something like + SRC="grabem.n.trackem.com/Ad/Infinitum/SpaceID=1666" or + longer. If the company looks like a + pure ad warehouse (as in the last case), you may want to place + just its domain name in the blockfile, which blocks all URLs + from that site.

    + +

    If the ad comes from a server that you + really want some content from, you can include enough of the + path to avoid zapping stuff you might want. In the first + example above, /ads/ would seem to be enough. If + you don't include the domain name, the pattern applies to all + sites, so you don't want such patterns to be too general: for + example /ad would block + /admin/salaries/ on your company's internal site.

    + +

    To speed the blocking of images, some + UNIX ® users create a shell script called + Image: containing a line such as echo $1 | sed + s/http:..// >> $HOME/lib/blockfile that adds its + argument to the user's blockfile. Once an offending image has + been be found using View Document Info it's + easy to cut-and-paste the line (or part of it) into a shell + window. The same script can be linked to a file called + Frame: to dealing with framed documents, and + junkbuster: to accept the output of the debug option.

    + +

    When compiled without the + regular expressions option, the Internet Junkbuster + uses only very simple (and fast) matching methods. The pattern + /banners will not stop + /images/banners/huge.gif getting through: you would have + to include the pattern /images/banners or + something that matches in full from the left. + So you can get what you want here, the matcher understands + POSIX regular expressions: you can use + /*.*/banners to block and any URL containing + /banners (even in the middle of the path). (In Versions 1.1 through 1.4 they were an option at + compile time; from Version 2.0 they have become the default.) + Regular expressions give you many more features than this, but + if you're not already familiar with them you probably won't + need to know anything beyond the /*.*/ idiom. If + you do, a man egrep is probably a good starting + point).

    + +

    Don't forget the / (slash) + at the beginning of the path. If you leave it out the line will + be interpreted as a domain name, so ad would block + all sites from Andorra (since .ad is the + two-letter country code for that principality).

    + +

    For a detailed technical description of + how pattern matching is done, see the manual.

    + +

    *  How come this ad is still getting + through anyway?

    + +

    If the ad had been displayed before you included its URL in + the blockfile, it will probably be held in cache for some time, + so it will be displayed without the need for any request to the + server. Using the debug + 1 option to show each URL as it is fetched is a good way + to see exactly what is happening.

    + +

    If new items seem to be getting + through, check that you are really running the proxy with the + right blockfile in the options. Check the blockfile for + exceptions.

    + +

    Some sites may have different ways of + inserting ads, such as via Java. If you have ideas on how to + block new kinds of junk not currently covered, please tell + us.

    + +

    +  How do I stop it blocking a + URL that I actually want?

    + +

    You can change the patterns so they don't cover it, or use a + simple feature in Version 1.1 and later: a line beginning with + a ~ character means that a URL blocked by previous + patterns that matches the rest of the line is let through. For + example, the pattern /ad would block + /addasite.html but not if followed by + ~/addasite in the blockfile. Or suppose you want to see + everything that comes from a site you like, even if it looks + like an ad: simply put ~aSiteYouLike.com at the + end of the blockfile. (Order is important, because the + last matching line wins.)

    + +

    As well as unblocking pages that were + unintentionally blocked, this feature is useful for unblocking + ads from a specific source. This might be because you are + interested in those particular ones, or if you have an explicit + agreement to accept certain ads, such as those from a free + web-based email provider.

    + +

    If you want to find out exactly which + pattern in the blockfile a given URL matched, just click on the + words ``Internet Junkbuster'' which are displayed alone on a + page when your browser requests a blocked URL. The proxy + displays a message that pinpoints the pattern for you.

    + +

    *  Can I block sites I don't want my + children to see?

    + +

    Yes, but remember that children who are + technically sophisticated enough to use the browsers' proxy + configuration options could of course bypass any proxy. This + kind of technology can be used as a gentle barrier to remind or + guide the child, but nobody should expect it to replace the + parent's role in setting and enforcing standards of online + behavior for their children.

    + +

    Some ISPs are starting to provide + specialized proxies to protect children. There are two basic + approaches: the ``black list'' and the ``white list'' approach. + The black list approach allows the child + to go anywhere not explicitly prohibited; the white list + permits visits only to sites explicitly designated as + acceptable.

    + +

    It's very easy for anyone to compile + a white list from a page of ``recommended kids sites'' and to + configure an Internet Junkbuster to allow access to those sites + only. (If you publish such a list on the web, please tell us + its URL). Assuming your version isn't an old one without regex, + you can place a * (asterisk) as the first line of + the blockfile (which blocks everything), and then list + exceptions after that. Be careful to make the exception + sufficiently broad: for example, using + ~www.uexpress.com/ups/comics/ch/ as the exception for + Calvin and Hobbes would block some of the graphic + elements on the page; you would probably want a wider exception + such as ~www.uexpress.com/ups/ to permit them.

    + +

    Version 2.0 has an experimental feature + to permit only sites mentioned in a nominated trusted site. This allows + organizations to build lists of sites for kids to browse, and + the software automatically restricts access to those on the + list.

    + +

    Many filtering products actually scan for + keywords in the text of pages they retrieve before presenting + it, but the Internet Junkbuster does not do this. Building a + perfectly reliable black list system is hard, because it's very + difficult to state in advance exactly what is obscene or + unsuitable. For more info see our links page.

    + +

    *  What do I see when a page or + graphic is blocked by the proxy?

    + +

    You usually see a broken image icon, but it depends on + several factors beyond the proxy's control. If asked for a URL + matching its blockfile, the proxy returns an HTML page + containing a message identifying itself (currently the two + words ``Internet Junkbuster'') with a status 202 (Accepted) + instead of the usual 200 (OK). (Versions 1.X returned an error + 404: Forbidden, which caused strange behavior in some cases.) + Status 202 is described in the HTTP RFC as indicating that the + request has been accepted but not completed, and that it might + complete successfully in the future (in our case, if the + blockfile were changed).

    + +

    The broken image icon is most common + because the browser is usually expecting a graphic. But if it + was expecting text, or if the page happens to be using certain + HTML extensions such as layer and your browser is + a late model from Microsoft, you may see the words ``Internet + Junkbuster'' displayed as a hot link.

    + +

    Clicking on the link takes you to an + explanation of the pattern in the blockfile that caused the + block, so that you can edit the blockfile and go back and + reload if you really want to see what was blocked. The + explanatory link is generated by the proxy and is automatically + intercepted based on its ending in ij-blocked-url; + even though the site is specified as + http://internet.junkbuster.com no request should + actually made to that site. If one is, it means that the proxy + was been removed after it generated the link.

    + +

    To summarize: the identifying link to + the blocking explanation is usually turned into a broken image + icon, but it may be displayed on a page alone, or they may may + be restricted to the particular frame, layer or graphic area + specified in the page containing them. The proxy has no way of + knowing the context in which a URL will be used and cannot + control how the blocking message will be rendered.

    + +

    *  Why not replace blocked banners + with something invisible?

    + +

    Many users have suggested to us that + blocked banners should be replaced by a something like a 1x1 + transparent GIF to make the page would look as if there was + nothing ever there. Apart from making it harder to catch + unintended blocking, this might also displease the owners of + the page, who could argue that such a change constitutes a + copyright infringement. We think that merely failing to allow + an included graphic to be accessed would probably not be + considered an infringement: after all this is what happens when + a browser is configured not to load images automatically. + However, we are not lawyers, so anyone in doubt should take + appropriate advice.

    + +

    In a context where the copyright issue is + resolved satisfactorily, a proxy could simply return a status + 301 or 302 and specify a replacement URL in a + Location and/or URI header. An alternative + would be to use inline code to return a 1 x 1 clear GIF. We do + not publish sample code for this, and we have no way of + stopping others who have.

    + +

    *  Why not block banners based on + the dimensions of the image?

    + +

    Many users have pointed out that most banner ads come in + standard sizes, so why not block all GIFs of those sizes? This + would theoretically be without fetching the object because the + dimensions are usually given in the IMG tag, but + it would require substantial changes in the code, and we doubt + whether it would be much more effective than a good block + list.

    + +

    *  What about non-graphic + advertising within the pages I want?

    + +

    The Internet Junkbuster deliberately does not provide a way + of automatically editing the contents of a page, to remove + textual advertising or to repair the holes left by blocked + banners. Other packages such as WebFilter do.

    + +

    For the same reason, it has no way of + stopping a new browser window being created, because this is + done through the target attribute in the + <a> and <base> elements, not + through headers. Nor do we plan to add a feature to paralyze + animated GIFs.

    + +

    *  Does it block ads on the + broadcasting ``push'' systems? How about pop-up ads?

    + +

    We haven't tried it but we expect it would probably work on + image ads on push channels. See also adchoice.

    + +

    Disabling Javascript stops some pop-up + ads. One problem is that some advertisers throw open a new + browser window to frame the ad. The ad is easily blocked, but + the empty window remains. You can kill it easily, but this is a + chore. We don't see how to stop them other than editing the + HTML from the parent window, which we don't like to do.

    + +

    The TBTF newsletter warned subscribers to + push information that in IE4, LOGTARGET + allows servers to determine the URLs viewed at their site even + if accessed from cache or through a proxy. If you use this + browser see our instructions on how to disable this.

    + +

    If you find you have experience using + the proxy with push, or have any other advice about it, please + tell us.

    + +

    --- Back to Top of Page ---

    + +

    Cookies

    + +

    For background information on cookies see our page + describing their dangers.

    + +

    *  Might some cookies still + get through? How can I stop them?

    + +

    Yes, you should expect the occasional cookie to make it + through to your browser. We know of at least three ways this + can happen; please tell us if you find any others. One way is + in secure documents, which are explained below.

    + +

    A few sites set cookies using a line + such as <META HTTP-EQUIV="Set-Cookie" + CONTENT="flavor=chocolate"> in the HEAD + section of an HTML document. Cookies + can also be + + set and read in JavaScript. To see if this is happening in a + document, view its source, look in the head for a + section tagged script language="JavaScript". If it + contains a reference to document.cookie, the page + can manipulate your cookie file without sending any cookie + headers. The Internet Junkbuster does not tamper with these + methods. Fortunately they are rarely used at the moment. If a + cookie gets set, it should be stopped by the proxy on its way + back to the server when a page is requested, but it can still + be read in Javascript.

    + +

    To prevent cookies breaking through, + always keep cookie alerts turned on in your + browser, and disable Java and Javascript. Making the files hard + to write may also help.

    + +

    *  Exactly how do cookies get + created and stored anyway?

    + +

    When a web site's server sends you a page it also sends + certain ``header information'' which your browser records but + does not display. One of these is a Set-Cookie + header, which specifies the cookie information that the server + wants your browser to record. Similarly, when your browser + requests a page it also sends headers, specifying information + such as the graphics formats it understands. If a cookie has + previously been set by a site that matches the URL it is about + to request, your browser adds a Cookie header + quoting the previous information.

    + +

    For more background information on how + cookies can damage your privacy, see our page on cookies. For + highly detailed technical information see the RFC. The Internet + Junkbuster will show you all headers you use the debug 8 option, or you can + get a sample from our demonstration page.

    + +

    *  If cookies can't get through, + will some things stop working for me?

    + +

    Possibly. Some personalized services including certain + chat rooms require cookies. + Newspapers that require + + registration or + + subscription will not automatically recognize you if you don't + send them the cookie they assigned you. And there are a very + small number of sites that do strange things with cookies; they + don't work for anyone that blocks cookies by any means. Some + sites such as Microsoft explain that their content is so + wonderfully compelling that they will withhold it from you + unless you submit to their inserting cookies.

    + +

    Many free Web-based email services + require cookies. Hotmail also seems to require allowing both + msn.com and passport.com to set + cookies.

    + +

    If you want such sites to be given your + cookies, you can use the + cookiefile option provided you are running Version 1.2 or + later yourself. Simply include the domain name of those sites + in the cookiefile specified by this option. If it still + doesn't work, the problem may be in other headers.

    + +

    It's possible to let cookies out but not + in, which is enough to keep some sites happy, but not all of + them: one newspaper site seems to go into an endless frenzy if + deprived of fresh cookies. A cookiefile containing a single + line consisting of the two characters >* + (greater-than and star) permits server-bound cookies only. The + * is a wildcard + that matches all domains.

    + +

    If someone else is running the Internet + Junkbuster for you and has a version that + passes server-bound + cookies through, you can try editing your browser's cookie file + to contain just the ones you want, and restart your browser. To subscribe to a new service like this after + you have started using the Internet Junkbuster, you can try the + following: tell your browser to stop using the Internet + Junkbuster, fill out and submit your subscription details + (allowing that web site to set a cookie), then reconfigure your + browser to use the Internet Junkbuster again (and stop more + cookies being sent). This also requires the cookiefile option, and its success + depends on the Web site not wanting to change your cookies at + every session. For this reason it does not work at some major + newspaper sites, for example. But you may + prefer to look at whether other sites provide the same or + better services without demanding the opportunity to track your + behavior. The web is a buyer's market where most prices are + zero: very few people pay for content with money, so why should + you pay with your privacy?

    + +

    *  Can I control cookies on a + per-site basis?

    + +

    Yes, since version 1.2 the Internet + Junkbuster has included advanced cookie management facilities. + Unless you specify otherwise, cookies are discarded + (``crumbled'') by the Internet Junkbuster whether they came + from the server or the browser. In Version 1.2 and later you + can use the cookiefile + option to specify when cookies are to be passed through intact. + It uses the same syntax and + matching algorithm as the blockfile.

    + +

    If the URL matches a pattern in the + cookiefile then cookies are let through in both + the browser's request for the URL and in the server's response. + One-way permissions can be specified + by starting the line with the > or + < character. For example, a cookiefile consisting of + the four lines
    +    org
    +     >send-user-cookies.org
    +     + <accept-server-cookies.org
    +     ~block-all-cookies.org
    + allows cookies to and from .org domains only, + with the following exceptions:
    +

    + +
      +
    1. Cookies sent from servers in the domain + send-user-cookies.org are blocked on their way + to the client, but cookies sent by the browser to that domain + are still be fed to them.
      2. + +
    2. The cookies of + accept-server-cookies.org check in to the proxy and + are passed through to the browser, but when they come back to + the proxy they never check out.
      3. + +
    3. All cookies to and from + block-all-cookies.org are blocked.
      4. +
    + +

    If the junkbuster + was compiled with the regular expressions option they may be + used in paths. Any logging to a ``cookie jar'' is separate and + not affected.

    + +

    It's important to give hosts you want + to be able to set cookies sufficient breadth. For example, + instead of www.yahoo.com use + yahoo.com because the company uses many different hosts + ending in that domain.

    + +

    *  Can I make up my own fake cookies + (wafers) to feed to servers?

    + +

    Yes, using the wafer option. + We coined the term wafer to describe cookies + chosen by a user, not the Web server. Servers may not find + wafers as tasty as the cookies they make themselves. But users + may enjoy controlling servers' diets for various reasons, such + as the following.

    + +
      +
    1. Users who consider cookies to be + an unwelcome intrusion and a waste of their disk space can + respond in kind. By writing ``signature wafers'' they can + express their feelings about cookies, in a place that the + people in charge of them are most likely to notice.
      2. + +
    2. + Sites running a proxy that logs + cookies to a file (such as the Internet Junkbuster does + with the jarfile option + on) may want to notify servers that their cookies are being + intercepted, deleted or copied. One possible reason for + doing this is the uncertain copyright status of cookie + strings. Nothing here should be taken as legal advice: we + are simply raising a question for any interested parties to + consider, and make no representation that such measures are + necessary or sufficient. Concerned proxy sites might decide + to send a wafer (named ``NOTICE'' for example) containing + text along the lines of the following. + +
      +

      TO WHOM IT + MAY CONCERN
      +
      + Do not send me any copyrighted information other than + the document that I am requesting or any of its necessary + components.
      +
      + In particular do not send me any cookies that are + subject to a claim of copyright by anybody. Take notice + that I refuse to be bound by any license condition + (copyright or otherwise) applying to any cookie.

      +
      + Any company that tries to argue in court that the proxy + site was breaching their copyright in the cookies would be + met with the defense that the proxy site gave that company + the opportunity to protect its copyright by simply not + sending cookies after receiving the notice. + +

      Cookies can be as long as four + thousand characters, so there's plenty of space for + lawyerly verbosity, but white space, commas, and + semi-colons are prohibited. + Spaces can be turned into underscores. Alternatively, a URL + could be sent as the cookie value, pointing to a document + containing a notice, perhaps with a suggestive value such + as
      + + http://www.junkbusters.com/ht/en/ijbfaq.html#licenses_on_cookies_refused
      + + But including the notice directly would probably be + preferable because the addressee does not have to look it + up.

      + +

      The Internet Junkbuster 2.0.2 + currently sends a full notice as a ``vanilla wafer'' if + cookies are being logged to a cookie jar and no other + wafers have been specified. It can be suppressed with the + + suppress-vanilla-wafer option, which might be used in + situations where there is an established understanding + between the proxy and all who serve it.

      +
      3. +
    + +

    Junkbusters provides a CGI script that + lets you see your wafers as they appear to servers.

    + +

    Wafers confuse a few fragile + servers. Hotmail appears to be one of them. If this troubles + you, don't use this option.

    + +

    Any wafers specified are sent to + all sites regardless of the cookiefile. + They are appended after any genuine cookies, to maintain + compliance with RFC 2109 in the event that a path was specified + for a cookie. The RFC's provisions regarding the $ + character (such as the Version attribute) are + transparent to the proxy; it simply quotes what was recited by + the browser.

    + +

    If you want to send wafers only to + specific sites, you could try putting them your browser's + cookie file in a format conforming to the Netscape + specification, and then specify in the proxy's cookiefile that + cookies are to be sent to but not accepted from those sites, so + they can't overwrite the file. This may work with Netscape but + not all other browsers.

    + +

    *  Why would anyone want to save + their cookies in a ``cookie jar?''

    + +

    We provided this capability just in case anyone wants it. + There are a few possible reasons.

    + +
      +
    1. It's conceivable that marketing + companies might one day buy history files and cookie jars + from consumers in the same way that they currently pay them + to fill out survey forms. With this information they could + gather psychographic information, see which competitors' + sites the consumer has visited, and discover what advertising + is being targeted at them.
      2. + +
    2. Some consumers might employ + semi-automated means of sorting through their cookie jars, + selecting which ones to place in their cookies file for use + by their browsers. Their decisions could be based on payments + offered, privacy rating systems such as TRUSTe proposes, or + their own opinion of the company. It could be done manually + or with software. There's an Internet Draft on trust + certification of cookies.
      3. + +
    3. Users may even start ``sharing'' + cookies among themselves, sending back cookies that servers + generated for other visitors. Servers that aren't expecting + this possibility will be misled about their visitors' + identities. Cookies could be shared among users on a single + machine, or across continents via FTP and anonymous + remailers. Privacy activists may + promote cookie disinformation campaigns as a way to defend + the public against abuse. If a significant percentage of + people send disinformative cookies, user tracking via cookies + may become less reliable and less used.
      4. +
    + +

    --- Back to Top of Page ---

    + +

    Anonymity

    + +

    For details on how your identity can be revealed while you + surf, see our page on privacy. Once you start using the + Internet Junkbuster you should find that much of the + information previously indicated on that page will no longer be + provided. If the REMOTE HOST indicating your IP + address is too close for comfort, see our suggestions below on + how to conceal your IP address. We also recommend that you + disable JavaScript and Java.

    + +

    *  If I use the Internet Junkbuster, + will my anonymity be guaranteed?

    + +

    No. Your chances of remaining anonymous are improved, but + unless you are an expert on Internet security it would be + safest to assume that everything you do on the Web can be + attributed to you personally.

    + +

    The Internet Junkbuster removes various + information about you, but it's still possible that web sites + can find out who you are. Here's one way this can happen.

    + +

    A few browsers disclose the user's email + address in certain situations, such as when transferring a file + by FTP. The Internet Junkbuster 2.0.2 does not filter the FTP + stream. If you need this feature, or are concerned about the + mail handler of your browser disclosing your email address, you + might consider products such as NSClean.

    + +

    Browsers downloaded as binaries could + use non-standard headers to give out any information they can + have access to: see the manufacturer's license agreement. It's + impossible to anticipate and prevent every breach of privacy + that might occur. The professionally paranoid prefer browsers + available as source code, because anticipating their behavior + is easier.

    + +

    *  Why should I trust my ISP or + Junkbusters with my browsing data?

    + +

    You shouldn't have to trust us, and you certainly don't have + to. We do not run the proxy as a service, where we could + observe your online behavior. We provide source code so that + everyone can see that the proxy isn't doing anything + sneaky.

    + +

    You are already trusting your ISP not to + look at an awful lot of information on what you do. They + probably post a privacy policy on their site to reassure you. + If they run a proxy for you, using it could actually make it + slightly easier for them to monitor you, but we doubt that any + sane ISP would try this, because if it were discovered + customers would desert them.

    + +

    *  Can the proxy be used for logging + who looks at what?

    + +

    We don't want institutions to use this software as an + instrument of surveillance. We have deliberately not provided + options to add timestamps or records of which IP addresses + accessed which URLs. However, because we publish source code + anyone can modify it to do such things, and there is no way a + remote user can find out if this is happening. Again, you need + to be able to trust the entity providing your proxy service, + but you were probably in that position even before using a + proxy.

    + +

    *  What private information from + server-bound headers is removed?

    + +

    The Internet Junkbuster pounces on the following HTTP + headers in requests to servers, unless instructed otherwise in + the options.

    + +
      +
    1. The FROM header, which a + few browsers use to tell your email address to servers, is + dropped unless the from option + is set.
      2. + +
    2. The USER_AGENT header is changed to indicate that the browser is + currently Mozilla (Netscape) 3.01 Gold with an unremarkable + Macintosh configuration. Misidentification helps resist + certain attacks. If your browser and hardware happen to be + accurately identified, you might want to change the default. + (Earlier versions of the Internet Junkbuster indicated + different details; by altering them periodically we aim to + hinder anyone trying to infer whether our proxy is present.) + If you don't like the idea of incorrectly + identifying your computer as a Mac, set it accordingly. +
      3. + +
    3. The REFERER header + (which indicates where the URL currently being requested was + found) is dropped. A single static referer to replace all + real referers may be specified using the referer option. Where no referer is + provided by the browser, none is added; the add-header option with arguments + such as -x 'Referer: http://me.me.me' can be + used to send a bogus referer with every request.
      4. +
    + +

    In Version 1.4 and later you can use the -r @ option to selectively disclose + REFERER and USER_AGENT to only those + sites you nominate.

    + +

    Some browsers send Referer and User-Agent + information under different non-standard headers. The Internet + Junkbuster 2.0.2 stops UA headers, but others may + get through. This information is also available via JavaScript, + so disable it. Some search engines + encode the query you typed in the URL that goes to advertisers + to target a banner ad at you, so you will need to block the ad + as well as the referer header, unless you want them (and anyone + they might buy data from) to know everything you ever search + for.

    + +

    If you have JavaScript enabled (the + default on most browsers) servers can use it to obtain Referer + and User Agent, as well as your plug-ins. We recommend + disabling JavaScript and Java.

    + +

    Currently no HTTP response headers + (browser bound) are removed, not even the + Forwarded: or X-Forwarded-For: headers. Nor + are any added, unless requested. + We are considering a more flexible header management system for + a future version.

    + +

    *  Might some things break because + header information is changed?

    + +

    Possibly. If used with a browser less advanced than Netscape + 3.0 or IE-3, indicating an advanced browser may encourage pages + containing extensions that confuse your browser. If this + becomes a problem upgrade your browser or use the user-agent option to indicate an + older browser. In Version 1.4 and later you can selectively + reveal your real browser to only those sites you nominate.

    + +

    Because different browsers use + different encodings of Russian and Czech characters, certain + web servers convert pages on-the-fly according to the User + Agent header. Giving a User Agent with the wrong operating + system or browser manufacturer causes some sites in these + languages to be garbled; Surfers to Eastern European sites + should change it to something + closer.

    + +

    Some page access counters work by + looking at the referer; they may fail or break when + deprived.

    + +

    Some sites depend on getting a referer + header, such as uclick.com, which serves comic + strips for many newspaper sites, including + Doonsbury for the Washington Post. (If you + click on that last link, you can then get to a page containing + the strip via the same URL we've linked to under + Doonsbury, but if you click on the + Doonsbury link directly, it gives you an error message + suggesting that you use a browser that supports referers.) In + Version 1.4 and later you can use the -r @ option and place a line like + >uclick.com in your cookiefile. Wired News used to + use referer to decide whether to add a navigation column to the + page, but they have changed that.

    + +

    The weather maps of Intellicast + have been blocked by their server when no referer or cookie is + provided. You can use the same countermeasure with a line such + as >208.194.150.32 (or simply get your weather + information elsewhere).

    + +

    Some software vendors, including + Download.com and Intuit use USER_AGENT to decide + which versions of their products to display to you. With the + default you get Mac versions.

    + +

    As a last resort if a site you need + doesn't seem to be working, the proxy configuration of many + browsers allow you to specify No Proxy For + any hostname you want.

    + +

    We had reports that on some versions of + Netscape the What's New feature did not work with the proxy, + but we think we fixed this in Version 2.0.1.

    + +

    +  How is misidentifying my + browser good for security and privacy?

    + +

    Almost every major release of both leading browsers has + contained bugs that allow malicious servers to compromise your + privacy and security. Known bugs are quickly fixed, but + millions of copies of the affected software remain out there, + and yours is probably one of them. The header that normally + identifies your browser tells such servers exactly which + attacks to use against you. By misidentifying your browser you + reduce the likelihood that they will be able to mount a + successful attack.

    + +

    *  Does the Internet Junkbuster + conceal my IP address?

    + +

    Web sites get the IP address of any proxy or browser they + serve pages to. If you run the proxy on your own computer the + IP address disclosed is the same as your browser would, unless + you use the forwardfile + option is used to chain to another proxy, in which case servers + only get the last IP address in the chain. Chaining slightly + slows browsing of course, but it improves anonymity.

    + +

    *  Does the Internet Junkbuster + thwart identification by identd?

    + +

    We think so, provided you are not the user running the + proxy. If your computer (or your ISP's) is running the + identd demon, servers can ask it for the identity of the + user making the request at time you request a page from them. + But if you're going through a proxy, they will identify the + user name associated with the proxy, not you. A visit to + http://ident.junkbusters.com lets you see what's happening. + This test is (quite rightly) blocked by many firewalls; just + interrupt the transfer if you get an abnormal wait after + clicking. Running other applications may also expose you via + identd; the proxy of course doesn't help then.

    + +

    *  Can web sites tell that I'm using + the Internet Junkbuster?

    + +

    With the default options the proxy doesn't announce itself. + Obvious indications such as Keep-Alive headers are deleted, but sites might notice that you + can cancel cookies faster than any human could possibly click + on a mouse. (If you want to provide a plausible explanation for + this, change the User Agent header to a cookie-free or + cookie-crunching browser).

    + +

    But when certain options are used they + could figure out something's going on, even if they're not + pushing cookies. If you use blocking they can tell from their + logs that the graphics in their pages are not being requested + selectively. The + add-forwarded-header option explicitly announces to the + server that a proxy is present, and sending them wafers is of + course a dead giveaway.

    + +

    --- Back to Top of Page ---

    + +

    Security

    + +

    *  What happens with Secure + Documents (SSL, https:)?

    + +

    If you enter a ``Secure Document Area,'' cookies and other + header information such as User Agent and Referer are sent + encrypted, so they cannot be filtered. We recommend getting + your browser to alert you when this happens. (On Netscape: Options; Security; General; Show an alert before entering a + secure document space.) We also recommend adding the line + :443 to the blockfile to stop all but sites + specified in an exception after that line from using SSL.

    + +

    It may be possible to filter encrypted + cookies by combining the blocking proxy with a cryptographic + proxy along the lines of SafePassage, but we have not tried + this.

    + +

    *  Will using this as my Security + Proxy compromise security?

    + +

    We're not security experts, but we don't think so. The whole + point of SSL is that the contents of messages are + + encrypted by the time they leave the browser and the server. + Eavesdroppers (including proxies) can see where your messages + are going whether you are running a proxy or not, but they only + get to see the contents after they have been encrypted.

    + +

    *  Can I restrict use of the proxy + to a set of nominated IP addresses?

    + +

    Yes, we added an access + control file in Version 2.0. But before you use it please + consider why you want to do it. If the reason is security, it + probably means you need a firewall.

    + +

    The listen-address option provides + a way of binding the proxy to a single IP address/port. The + right way to do this is to choose a port inside your firewall, + and deny access to it to those outside the firewall. The + Internet Junkbuster is not a firewall proxy; it should not be + expected to solve security problems.

    + +

    For background information on + firewalls, see Yahoo or a magazine article or these well-known + books: Firewalls and Internet Security: Repelling the + Wily Hacker by William R. Cheswick and Steven M. + Bellovin or Building Internet Firewalls by D. + Brent Chapman and Elizabeth D. Zwicky. There's + + free Linux software available, and a large number of commercial + products and services. For an excellent security overview, + primer, and compendium reference, see Practical Unix and + Internet Security by Simson Garfinkel and Gene + Spafford.

    + +

    *  Are there any security risks for + ISPs or others who offer the proxy?

    + +

    Yes. As with any service offered over the Internet, hackers + can try to misuse it. A well-run ISP will have professionals + who are experienced at assessing and containing these + risks.

    + +

    It's possible to set up your machine + so that other people can have access to your proxy, but if you + lack expertise in computer security you probably shouldn't have + your computer configured to offer this or any other service to + the outside world.

    + +

    Hackers can attempt to gain access to + the machine by various attacks, which we have tried to guard + against but don't guarantee to thwart. They can also use the + ``anonymizing'' quality of proxies to try to cover their tracks + while hacking other computers. For this reason we recommend + preventing it being used as an anonymous telnet by + putting the pattern :23 in the blockfile (it's + included as standard equipment). (Actually the current + implementation incidentally blocks telnet due to the way + headers are handled, but it's best not to rely on this.) If you + wish to block all ports except the default HTTP port 80, you + can put the lines
    +    :
    +    ~:80
    + at the beginning of the blockfile, but be aware that some + servers run on non-default ports (e.g. 8080). You might also + want to add the line ~:443 to allow SSL.

    + +

    On UNIX ® systems it is neither + necessary nor desirable for the proxy to run as root.

    + +

    Versions 2.0.1 and below may be + vulnerable to remote exploitation of a memory buffer bug; for + security reasons all users are encouraged to upgrade.

    + +

    If you find any security holes in the + code please tell us, along with any suggestions you may have + for fixing it. However, we do not claim that we will be able to + do so.

    + +

    We distribute this code in the hope + that people will find it useful, but we provide no warranty for + it, and we are not responsible for anyone's use or misuse of + it.

    + +

    You may also want to check back + periodically for updated versions of the code. We do not + currently maintain a mailing list. To get quick updates, + bookmark our Distribution Information page.

    + +

    --- Back to Top of Page ---

    + +

    + Website · + Manual · FAQ · GPL

    + +

    + Copyright © 1996-8 Junkbusters ® + Corporation. Copyright © 2001 + Jon + Foster. Copying and distribution permitted under the GNU General Public + License.

    + +

    + http://sourceforge.net/projects/ijbswa/

    + + + diff --git a/doc/obsolete/ijbman.html b/doc/obsolete/ijbman.html new file mode 100644 index 00000000..8329e572 --- /dev/null +++ b/doc/obsolete/ijbman.html @@ -0,0 +1,708 @@ + + + + + + Internet Junkbuster Technical Information + + + + + + +

    + Website · Manual · FAQ · GPL

    + +

    Internet + JUNKBUSTER + Technical Information

    + +

    + Options · + Checking Options · Installation · Copyright · (FAQ)

    + +

    This document is out of date

    + +

    Development of JunkBuster is ongoing and this document is + no longer current. However, it may provide some assistance. If + you have problems, please use the Yahoo Groups + mailing list (which includes an archive of mail), the + SourceForge.net project page, or + see the project's home + page. Please also bear in mind that versions 2.9.x of + JunkBuster are development releases, and are not production + quality.

    + +

    Manual Page

    + +

    A copy of this page in standard man macro + format is included in the tar + archive.

    + +

    *  Name

    + +

    junkbuster - The Internet Junkbuster + Proxy + TM

    + +

    *  Synopsis

    + +

    junkbuster configfile (Unix)
    + junkbstr.exe [configfile] + (Windows)

    + +

    +  Description

    + +

    junkbuster is an instrumentable proxy + that filters the HTTP stream between web servers and browsers. + Its main purposes are to block adverts and enhance privacy.

    + +

    It is configured using a configuration + file and several files listing URL patterns.  The + configuration file must be specified on the command line.  + The Windows version will default to using the configuration + file junkbstr.ini if it exists and no argument was + given.

    + +

    All files except the main configuration + file are checked for changes before each page is fetched, so + they may edited without restarting the proxy.

    + +

    Options

    + +
    +
    blockfile   + blockfile
    + +
    +

    Block requests to + URLs matching any pattern given in the lines of the + blockfile. The junkbuster instead + returns status 202, indicating that the request has been + accepted (though not completed), and a message identifying itself (though + the browser may display only a broken image icon).  + The syntax of a pattern is + [domain][:port][/path] (the http:// or + https:// protocol part is omitted). To decide + if a pattern matches a target, the domains are compared + first, then the paths.

    + +

    To compare the domains, the + pattern domain and the target domain specified in the URL + are each broken into their components. (Components are + separated by the . (period) character.) Next + each of the target components is compared with the + corresponding pattern component: last with last, + next-to-last with next-to-last, and so on. (This is called + right-anchored matching.) If all of the + pattern components find their match in the target, then the + domains are considered a match. Case is irrelevant when + comparing domain components.

    + +

    A successfully matching pattern + can be an anchored substring of a target, but not vice + versa. Thus if a pattern doesn't specify a domain, it + matches all domains. Furthermore, + when comparing two components, the components must either + match in their entirety or up to a wildcard * + (star character) in the pattern. The wildcard feature + implements only a "prefix" match capability ("abc*" vs. + "abcdefg"), not suffix matching ("*efg" vs. "abcdefg") or + infix matching ("abc*efg" vs. "abcdefg"). The feature is + restricted to the domain component; it is unrelated to the + optional regular expression feature in the path (described below).

    + +

    If a numeric port is specified in + the pattern domain, then the target port must match as + well. The default port in a target is port 80.

    + +

    If the domain and port match, then + the target URL path is checked for a match against the path + in the pattern. Paths are compared with a simple + case-sensitive left-anchored substring comparison. Once + again, the pattern can be an anchored substring of the + target, but not vice versa. A path of / + (slash) would match all paths. Wildcards are not considered + in path comparisons.

    + +

    For example, the target URL
    +     + the.yellow-brick-road.com/TinMan/has_no_brain
    + would be matched (and blocked) by the following + patterns
    +     yellow-brick-road.com
    + and
    +    Yellow*.COM
    + and
    +    /TinM
    + but not
    +     + follow.the.yellow-brick-road.com
    + or
    +    /tinman
    +

    + +

    Comments in a blockfile start + with a # (hash) character and end at a new + line. Blank lines are also ignored.

    + +

    Lines beginning with a + ~ (tilde) character are taken to be exceptions: a URL blocked by + previous patterns that matches the rest of the line is let + through. (The last match wins.)

    + +

    Patterns may contain POSIX regular expressions provided the + junkbuster was compiled with this + option (the default in Version 2.0 on). The idiom + /*.*/ad can then be used to match any URL containing + /ad (such as + http://nomatterwhere.com/images/advert/g3487.gif for + example). These expressions don't + work in the domain part.

    + +

    In version 1.3 and later the + blockfile and cookiefile are checked for changes before + each request.

    +
    + +
    wafer   + NAME=VALUE
    + +
    +

    Specifies a pair to be sent as a cookie with every + request to the server. + (Such boring cookies are called wafers.) This option + may be called more than once to generate multiple wafers. + The original Netscape specification prohibited semi-colons, + commas and white space; these characters will be + URL-encoded if used in wafers. + + + The Path and Domain attributes are not currently + supported.

    +
    + +
    cookiefile   + cookiefile
    + +
    +

    Enforce the cookie management policy specified in the + cookiefile. If this option is not + used all cookies are silently crunched, so that users who + never want cookies aren't bothered by browsers asking + whether each cookie should be accepted. However, cookies + can still get + through via + JavaScript and SSL, so alerts should be left on.

    + +

    In Version 1.2 and later this + option must be followed by a + filename containing instructions on which sites are + allowed to receive and set cookies. By + default cookies are dropped in both the browser's request + and the server's response, unless the URL requested matches + an entry in the cookiefile. The matching algorithm + is the same as for the blockfile. A leading + > character allows server-bound cookies only; a + < allows only browser-bound cookies; a + ~ character stops cookies in both directions. Thus a + cookiefile containing a single line with the two characters + >* will pass on all cookies to servers but + not give any new ones to the browser.

    +
    + +
    jarfile   + jarfile
    + +
    +

    All Set-cookie attempts by the server are logged to jarfile. If no wafer + is specified, one containing a canned notice (the vanilla + wafer) is added as an alert to the server unless the suppress-vanilla-wafer + option is invoked.

    +
    + +
    suppress-vanilla-wafer
    + +
    +

    Suppress the vanilla wafer.

    +
    + +
    from  from
    + +
    +

    If the browser discloses an + email address in the FROM header (most + don't), replace it with from. If from is set + to . (the period character) the FROM is + passed to the server unchanged. The default is to delete + the FROM header.

    +
    + +
    referer   + referer
    + +
    +

    Whenever the browser discloses the URL that led to the current request, + replace it with referer. If referer is set to + . (period) the URL is passed to the server + unchanged. If referer is set to @ (at) the URL is + sent in cases where the cookiefile specifies that a cookie + would be sent. (No way to send bogus referers selectively + is provided.) The default is to delete Referer.

    + +

    Junkbuster also accepts the + spelling referrer, which most dictionaries + consider correct.

    +
    + +
    user-agent   + user-agent
    + +
    +

    Information disclosed by the browser about itself is replaced with the + value user-agent. If user-agent is set to + . (period) the User-Agent header is passed + to the server unchanged, along with any UA + headers produced by MS-IE (which would otherwise be + deleted). If user-agent is set to @ (at) + these headers are sent unchanged in cases where the + cookiefile specifies that a cookie would be sent, otherwise + only default User-Agent header is sent. That + default is Mozilla/3.0 (Netscape) with an unremarkable Macintosh configuration. If + used with a browser less advanced than Mozilla/3.0 or IE-3, + the default may encourage pages containing extensions that + confuse the browser.

    +
    + +
    listen-address   + [host][:port]
    + +
    +

    If host is specified, bind the + junkbuster to that IP address. If a port + is specified, use it. The default port is 8000; the default + host is localhost.

    + +

    This default host setting means that you can only + connect to the proxy from ther local computer. This is a + security measure - if you allow anyone to use the proxy, + then hackers or fraudsters could use it to help hide their + identity. It also provides a lot of protection against any + undiscovered security flaws in JunkBuster - if they can't + connect to it, then they can't attack it.

    + +

    If you change this value, we recommend you either + set the host to localhost:
    +    listen-address + localhost:8080
    + or, if you want to share a single internet + connection over your internal network, then set it to the + address of your internal ethernet card:
    +    listen-address + 10.1.1.1:8080
    + (replace 10.1.1.1 with your internal IP address), + or set up an aclfile. To + make the proxy accessible from everywhere (e.g. if you're + using an access control list or if you just don't care + about security), specify just the port number - e.g:
    +    listen-address :8000
    + (This binds the proxy to all IP addresses + (INADDR_ANY)).

    +
    + +
    forwardfile   + forwardfile
    + +
    +

    Junkbuster has a flexible syntax for forwarding HTTP + requests. This is used e.g. if you are behind a firewall + and need to connect through it, or if you want to use a + cacheing proxy to speed up your web browsing.

    + +

    Every line in the forwardfile consists of four + components, seperated by whitespace. These are:
    +
    + target   forward_to   via_gateway_type +   gateway

    + +

    target is a pattern used to select which line of + the forwardfile is used. "*" is the most + commonly used value, and matches every URL. As usual, the + last matching target wins. (If no pattern matches, a + direct connection will be used)

    + +

    forward_to specifies the HTTP proxy server to + use, or "." for none. This is used to connect + to a cacheing proxy such as Squid, and for most types of + firewall. The port number defaults to 8000 if it is not + specified.

    + +

    Here is a typical line.

    +
    +*         lpwa.com:8000      .      .
+
    + +

    The target domain need not be a fully qualified + hostname; it can be a general domain such as + com or co.uk or even just a port + number. For example, because LPWA does not handle SSL, the line above will + typically be followed by a line such as

    +
    +:443    .      .      .
+
    + +

    to allow SSL transactions to proceed directly. The + cautious would also add an entry in their blockfile to stop + transactions to port 443 for all but specified trusted + sites.

    + +

    Configure with care: no loop + detection is performed. When setting up chains of proxies + that might loop back, try adding + Squid.

    + +

    via_gateway_type and gateway are used to + support SOCKS proxies. Some firewalls provide this type of + proxy. If you do not not want to use a SOCKS proxy, specify + both of these fields as ".".

    + +

    Note that + JunkBuster is a SOCKS client, not a SOCKS + server. The user's browser should not be configured to use + SOCKS; the proxy conducts the negotiations, not the + browser.

    + +

    The SOCKS4 protocol may be specified by + setting via_gateway_type to socks or + socks4. The SOCKS4A protocol is + specified as socks4a. The SOCKS5 + protocol is not currently supported.

    + +

    gateway should be the host and port of the SOCKS + server. If you just specify a hostname, then the port + number defaults to 1080.

    + +

    The user identification capabilities of + SOCKS4 are deliberately not used; the user is always + identified to the SOCKS server as + userid=anonymous. If the server's policy is to + reject requests from anonymous, the proxy will + not work. Use a debug value of 3 to see + the status returned by the server.

    + +

    If you specify both a HTTP proxy (with + forward_to) and a SOCKS proxy (with gateway) + then the SOCKS proxy is used to connect to the HTTP proxy. + If you just specify a SOCKS proxy, it is used to connect + directly to the websites.

    +
    + +
    debug  N
    + +
    +

    Set debug mode. The most common value is 1, to pinpoint offensive URLs, so they + can be added to the blockfile. The value of N is a + bitwise logical-OR of the following values:
    + 1 = URLs (show each URL requested by the browser);
    + 2 = Connections (show each connection to or from the + proxy);
    + 4 = I/O (log I/O errors);
    + 8 = Headers (as each header is scanned, show the header + and what is done to it);
    + 16 = Log everything (including debugging traces and the + contents of the pages).
    + 32 = Record accesses in Common Log Format, as used by most + web and proxy servers.

    + +

    Multiple debug lines are + permitted; they are logical OR-ed together.

    + +

    Because most browsers send several + requests in parallel the debugging output may appear + intermingled, so the + single-threaded option is recommended when using debug with N greater than 1. +

    +
    + +
    add-forwarded-header
    + +
    +

    Add X-Forwarded-For headers to the + server-bound HTTP stream indicating the client IP address + to the server, in the new + style of Squid 1.1.4. If you want the + traditional HTTP_FORWARDED response header, + add it manually with the -x option. This + also allows other X-Forwarded-For headers to + be transmitted - usually they are discarded.

    +
    + +
    add-header   + HeaderText
    + +
    +

    Add the HeaderText verbatim to requests to the + server. Typical uses include adding old-style forwarding + notices such as Forwarded: by + http://pro-privacy-isp.net and reinstating the + Proxy-Connection: Keep-Alive header (which the + junkbuster deletes so as not to reveal its existence). No + checking is done for correctness or plausibility, so it can + be used to throw any old trash into the server-bound HTTP + stream. Please don't litter. +

    +
    + +
    single-threaded
    + +
    +

    Doesn't fork() a separate process (or + create a separate thread) to handle each connection. Useful + when debugging to keep the process single threaded.

    +
    + +
    logfile   + logfile
    + +
    +

    Write all debugging data into logfile. The + default logfile is the standard output.

    +
    + +

    + aclfile   + aclfile
    + +
    +

    Unless this option is used, the proxy talks to anyone + who can connect to it, and everyone who can has equal + permissions on where they can go. An access file allows + restrictions to be placed on these two policies, by + distinguishing some source IP addresses + and/or some destination addresses. (If a + forwarder or a gateway is being + used, its address is considered the destination address, + not the ultimate IP address of the URL requested.)

    + +

    Each line of the access file begins + with either the word permit or + deny followed by source and (optionally) destination + addresses to be matched against those of the HTTP request. + The last matching line specifies the result: if it was a + deny line or if no line matched, the request + will be refused.

    + +

    A source or destination can be + specified as a single numeric IP address, or with a + hostname, provided that the host's name can be resolved to + a numeric address: this cannot be used to block all + .mil domains for example, because there is no single + address associated with that domain name. Either form may + be followed by a slash and an integer N, + specifying a subnet mask of N bits. For + example, permit 207.153.200.72/24 matches the + entire Class-C subnet from 207.153.200.0 through + 207.153.200.255. (A netmask of 255.255.255.0 corresponds to + 24 bits of ones in the netmask, as with + *_MASKLEN=24.) A value of 16 would be used for a + Class-B subnet. A value of zero for N in the + subnet mask length will cause any address to match; this + can be used to express a default rule. For more information + see the example file provided with the distribution.

    + +

    If you like these access controls + you should probably have + firewall; they are not intended to replace one.

    +
    + +

    + trustfile   + trustfile
    + +
    +

    This feature is experimental, has not been fully + documented and is very subject to change. The goal is for + parents to be able to choose a page or site whose links + they regard suitable for their young children and for the proxy + to allow access only to sites mentioned there. To do this + the proxy examines the referer variable + on each page request to check they resulted from a click on + the ``trusted referer'' site: if so the referred site is + added to a list of trusted sites, so that the child can + then move around that site. There are several uncertainties + in this scheme that experience may be able to iron out; + check back in the months ahead.

    +
    + +

    + + trust_info_url   + trust_info_url
    + +
    +

    When access is denied due to lack of a trusted referer, + this URL is displayed with a message pointing the user to + it for further information.

    +
    + +

    + hide-console
    + +
    +

    In the Windows command-line version only, instructs the + program to disconnect from and hide the command console + after starting.

    +
    +
    + +

    *  Installation and Use

    + +

    Browsers must be told where to find the + junkbuster (e.g. localhost port 8000). + To set the HTTP proxy in Netscape 3.0, go through: Options; Network Preferences; Proxies; Manual Proxy + Configuration; View. See the FAQ for other browsers. The Security Proxy should also be set to + the same values, otherwise shttp: URLs won't + work.

    + +

    Note the limitations explained in + the FAQ.

    + +

    *  Checking Options

    + +

    To allow users to check that + a junkbuster is running and how it is + configured, it intercepts requests for any URL ending in + /show-proxy-args and blocks it, returning instead + returns information on its version number and current + configuration including the contents of its blockfile. To get + an explicit warning that no junkbuster + intervened if the proxy was not configured, it's best to point + it to a URL that does this, such as + http://internet.junkbuster.com/cgi-bin/show-proxy-args on + Junkbusters's website.

    + +

    *  See Also

    + +

    + http://www.junkbusters.com/ht/en/ijbfaq.html
    + + http://www.junkbusters.com/ht/en/cookies.html
    + + http://internet.junkbuster.com/cgi-bin/show-proxy-args
    + http://www.cis.ohio-state.edu/htbin/rfc/rfc2109.html
    + + http://squid.nlanr.net/Squid/
    + + + http://www-math.uni-paderborn.de/~axel/

    + +

    +  Copyright and GPL

    + +

    Written and copyright by the Anonymous Coders and + Junkbusters Corporation and made available under the GNU General Public License (GPL). This software + comes with NO WARRANTY. Internet + Junkbuster Proxy is a + trademark of Junkbusters Corporation.

    + +

    --- Back to Top of Page ---

    + +

    + Website · Manual · FAQ · GPL

    + +

    + Copyright © 1996-8 Junkbusters ® + Corporation. Copyright © 2001 + Jon + Foster. Copying and distribution permitted under the GNU General Public + License.

    + +

    + http://sourceforge.net/projects/ijbswa/

    + + + diff --git a/doc/obsolete/top.gif b/doc/obsolete/top.gif new file mode 100755 index 0000000000000000000000000000000000000000..8380083dbfca09861fb9c1dcc7182cffeadb5748 GIT binary patch literal 138 zcmZ?wbhEHb{Kde}u#kb_|Ns9CKoW=<7!-f9FoI|u5CM{RV2W<(UwQg1|Kd4YZgm%n z?E1~$_Q+$}v(9C&esQilee9FZ^>4k;tG>Vc$G>E6+lB=nJAAaJpIP>qQ`Bww71@nl mXV-POuKUi-*M0oSrk_22tFOQL7Qx+r`uUe#f9>=c7_0$B!9h&` literal 0 HcmV?d00001 diff --git a/doc/pcrs.3 b/doc/pcrs.3 new file mode 100644 index 00000000..2a96d5a0 --- /dev/null +++ b/doc/pcrs.3 @@ -0,0 +1,479 @@ +.\" Copyright (c) 2001 Andreas S. Oesterhelt +.\" +.\" This is free documentation; you can redistribute it and/or +.\" modify it under the terms of the GNU General Public License as +.\" published by the Free Software Foundation; either version 2 of +.\" the License, or (at your option) any later version. +.\" +.\" The GNU General Public License's references to "object code" +.\" and "executables" are to be interpreted as the output of any +.\" document formatting or typesetting system, including +.\" intermediate and printed output. +.\" +.\" This manual is distributed in the hope that it will be useful, +.\" but WITHOUT ANY WARRANTY; without even the implied warranty of +.\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +.\" GNU General Public License for more details. +.\" +.\" You should have received a copy of the GNU General Public +.\" License along with this manual; if not, write to the Free +.\" Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, +.\" MA 02111, USA. +.\" +.TH PCRS 3 "4 March 2002" "pcrs-0.0.1" +.SH NAME +pcrs - Perl-compatible regular substitution. +.SH SYNOPSIS +.br +.B "#include " +.PP +.br +.BI "pcrs_job *pcrs_compile(const char *" pattern "," +.ti +5n +.BI "const char *" substitute ", const char *" options , +.ti +5n +.BI "int *" errptr ); +.PP +.br +.BI "pcrs_job *pcrs_compile_command(const char *" command , +.ti +5n +.BI "int *" errptr ); +.PP +.br +.BI "int pcrs_execute(pcrs_job *" job ", char *" subject , +.ti +5n +.BI "int " subject_length ", char **" result , +.ti +5n +.BI "int *" result_length ); +.PP +.br +.BI "int pcrs_execute_list (pcrs_job *" joblist ", char *" subject , +.ti +5n +.BI "int " subject_length ", char **" result , +.ti +5n +.BI "int *" result_length ); +.PP +.br +.BI "pcrs_job *pcrs_free_job(pcrs_job *" job ); +.PP +.br +.BI "void pcrs_free_joblist(pcrs_job *" joblist ); +.PP +.br +.BI "char *pcrs_strerror(int " err ); +.PP +.br + +.SH DESCRIPTION + +The +.SM PCRS +library is a supplement to the +.SB PCRE(3) +library that implements +.RB "regular expression based substitution, like provided by " Perl(1) "'s 's'" +operator. It uses the same syntax and semantics as Perl 5, with just a few +differences (see below). + +In a first step, the information on a substitution, i.e. the pattern, the +substitute and the options are compiled from Perl syntax to an internal form +.RB "called " pcrs_job " by using either the " pcrs_compile() " or " +.BR pcrs_compile_command() " functions." + +Once the job is compiled, it can be used on subjects, which are arbitrary +memory areas containing string or binary data, by calling +.BR pcrs_execute() ". Jobs can be chained to joblists and whole" +.RB "joblists can be applied to a subject using " pcrs_execute_list() . + +There are also convenience functions for freeing the jobs and for errno-to-string +.RB "conversion, namely " pcrs_free_job() ", " pcrs_free_joblist() " and " +.BR pcrs_strerror() . + +.SH COMPILING JOBS + +.RB "The function " pcrs_compile() " is called to compile a " pcrs_job +.RI "from a " pattern ", " substitute " and " options " string." +.RB "The resulting " "pcrs_job" " structure is dynamically allocated and it" +.RB "is the caller's responsibility to call " "pcrs_free_job()" " when it's no longer needed." + +.BR "pcrs_compile_command()" " is a convenience wrapper function that parses a Perl" +.IR "command" " of the form" +.BI "s/" "pattern" "/" "substitute" "/[" "options" "]" +.RB "into its components and then calls " "pcrs_compile()" ". As in Perl, you" +.RB "are not bound to the '" "/" "' character: Whatever" +.RB "follows the '" "s" "' will be used as the delimiter. Patterns or substitutes" +that contain the delimiter need to quote it: +\fBs/th\\/is/th\\/at/\fR +.RB "will replace " "th/is" " by " "th/at" " and can be written more simply as" +.BR "s|th/is|th/at|" "." + +.IR "pattern" ", " "substitute" ", " "options" " and " "command" " must be" +.RI "zero-terminated C strings. " "substitute" " and " "options" " may be" +.BR "NULL" ", in which case they are treated like the empty string." + +.SS "Return value and diagnostics" +On success, both functions return a pointer to the compiled job. +.RB "On failure, " "NULL" +.RI "is returned. In that case, the pcrs error code is written to *" "err" "." + +.SS Patterns +.RI "For the syntax of the " "pattern" ", see the " +.BR "PCRE(3)" " manual page." + +.SS Substitutes +.RI "The " "substitute" " uses" +.RB "Perl syntax as documented in the " "perlre(1)" " manual page, with" +some exceptions: + +Most notably and evidently, since +.SM PCRS +is not Perl, variable interpolation or Perl command substitution won't work. +Special variables that do get interpolated, are: +.TP +.B "$1, $2, ..., $n" +Like in Perl, these variables refer to what the nth capturing subpattern +in the pattern matched. +.TP +.B "$& and $0" +.RB "refer to the whole match. Note that " "$0" " is deprecated in recent" +Perl versions and now refers to the program name. +.TP +.B "$+" +refers to what the last capturing subpattern matched. +.TP +.BR "$` and $'" " (backtick and tick)" +.RI "refer to the areas of the " "subject" " before and after the match, respectively." +.RB "Note that, like in Perl, the " "unmodified" " subject is used, even" +if a global substitution previously matched. + +.PP +Perl4-style references to subpattern matches of the form +\fB\\1, \\2, ...\fR +.RB "which only exist in Perl5 for backwards compatibility, are " "not" +supported. + +Also, since the substitute is a double-quoted string in Perl, you +might expect all Perl syntax for special characters to apply. In fact, +only the following are supported: + +.TP +\fB\\n\fR +newline (0x0a) +.TP +\fB\\r\fR +carriage return (0x0d) +.TP +\fB\\t\fR +horizontal tab (0x09) +.TP +\fB\\f\fR +form feed (0x0c) +.TP +\fB\\b\fR +backspace (0x08) +.TP +\fB\\a\fR +alarm, bell (0x07) +.TP +\fB\\e\fR +escape (0x1b) +.TP +\fB\\0\fR +binary zero (0x00) + +.SS "Options" +.RB "The options " "gmisx" " are supported. " "e" " is not, since it would" +.RB "require a Perl interpreter and neither is " o ", because the pattern +is explicitly compiled, anyway. Additionally, +.SM PCRS +.RB "honors the options " "U" " and " "T" "." +Where +.SM PCRE +.RB "options are mentioned below, refer to " PCRE(3) " for the subtle differences" +to Perl behaviour. + +.TP +.B g +.RB "Replace " all " instances of" +.IR pattern " in " subject , +not just the first one. + +.TP +.B i +.RI "Match the " pattern " without respect to case. This translates to" +.SM PCRE_CASELESS. + +.TP +.B m +.RI "Treat the " subject " as consisting of multiple lines, i.e." +.RB ' ^ "' matches immediately after, and '" $ "' immediately before each newline." +Translates to +.SM PCRE_MULTILINE. + +.TP +.B s +.RI "Treat the " subject " as consisting of one single line, i.e." +.RB "let the scope of the '" . "' metacharacter include newlines." +Translates to +.SM PCRE_DOTALL. + +.TP +.B x +.RI "Allow extended regular expression syntax in the " pattern "," +.RB "enabling whitespace and comments in complex patterns." +Translates to +.SM PCRE_EXTENDED. + +.TP +.B U +.RB "Switch the default behaviour of the '" * "' and '" + "' quantifiers" +.RB "to ungreedy. Note that appending a '" ? "' switches back to greedy(!)." +.RB "The explicit in-pattern switches " (?U) " and " (?-U) " remain unaffected." +Translates to +.SM PCRE_UNGREEDY. + +.TP +.B T +.RI "Consider the " substitute " trivial, i.e. do not interpret any references" +or special character escape sequences in the substitute. Handy for large +user-supplied substitutes, which would otherwise have to be examined and properly +quoted. + +.PP +Unsupported options are silently ignored. + +.SH EXECUTING JOBS + +.RI "Calling " pcrs_execute() " produces a modified copy of the " subject ", in which" +.RB "the first (or all, if the '" g "' option was given when compiling the job)" +.RI "occurance(s) of the job's " pattern " in the " subject " is replaced by the job's" +.IR substitute . + +.RI "The first " subject_length " bytes following " subject " are processed, so" +.RI "a " subject_length " that exceeds the actual " subject " is dangerous." +Note that if you want to get your zero-terminated C strings back including their +.RI "termination, you must let " subject_length " include the binary zero, i.e." +set it to +.BI strlen( subject ") + 1." + +.RI "The " subject " itself is left untouched, and the " *result " is dynamically" +.RB "allocated, so it is the caller's responsibility to " free() " it when it's" +no longer needed. + +.RI "The result's length is written to " *result_length "." + +.RB "If the job matched, the " PCRS_SUCCESS " flag in" +.IB job ->flags +is set. + +.SS Return value and diagnostics + +.RB "On success, " pcrs_execute() " returns the number of substitutions that" +were made, which is limited to 0 or 1 for non-global searches. +.RI "On failure, a negative error code is returned and " result " is set" +.RB "to " NULL . + +.SH FREEING JOBS +.RB "It is not sufficient to call " free() " on a " pcrs_job ", because it " +contains pointers to other dynamically allocated structures. +.RB "Use " pcrs_free_job() " instead. It is safe to pass " NULL " pointers " +.RB "(or pointers to invalid " pcrs_job "s that contain " NULL " pointers" +.RB "to dependant structures) to " pcrs_free_job() "." + +.SS Return value +.RB "The value of the job's " next " pointer." + + +.SH CHAINING JOBS + +.SM PCRS +.RB "supports to some extent the chaining of multiple " pcrs_job " structures by" +.RB "means of their " next " member." + +Chaining the jobs is up to you, but once you have built a linked list of jobs, +.RI "you can execute a whole " joblist " on a given subject by" +.RB "a single call to " pcrs_execute_list() ", which will sequentially traverse" +.RB "the linked list until it reaches a " NULL " pointer, and call " pcrs_execute() +.RI "for each job it encounters, feeding the " result " and " result_length " of each" +.RI "call into the next as the " subject " and " subject_length ". As in the single" +.RI "job case, the original " subject " remains untouched, but all interim " result "s" +.RB "are of course " free() "d. The return value is the accumulated number of matches" +.RI "for all jobs in the " joblist "." +.RI "Note that while this is handy, it reduces the diagnostic value of " err ", since " +you won't know which job failed. + +.RI "In analogy, you can free all jobs in a given " joblist " by calling" +.BR pcrs_free_joblist() . + +.SH QUOTING +The quote character is (surprise!) '\fB\\\fR'. It quotes the delimiter in a +.IR command ", the" +.RB ' $ "' in a" +.IR substitute ", and, of course, itself. Note that the" +.RB ' $ "' doesn't need to be quoted if it isn't followed by " [0-9+'`&] "." + +.RI "For quoting in the " pattern ", please refer to" +.BR PCRE(3) . + +.SH DIAGNOSTICS + +.RB "When " compiling " a job either via the " pcrs_compile() " or " pcrs_compile_command() +.RB "functions, you know that something went wrong when you are returned a " NULL " pointer." +.RI "In that case, or in the event of non-fatal warnings, the integer pointed to by " err +contains a nonzero error code, which is either a passed-through +.SM PCRE +error code or one generated by +.SM PCRS. +Under normal circumstances, it can take the following values: +.TP +.B PCRE_ERROR_NOMEMORY +While compiling the pattern, +.SM PCRE +ran out of memory. +.TP +.B PCRS_ERR_NOMEM +While compiling the job, +.SM PCRS +ran out of memory. +.TP +.B PCRS_ERR_CMDSYNTAX +.BR pcrs_compile_command() " didn't find four tokens while parsing the" +.IR command . +.TP +.B PCRS_ERR_STUDY +A +.SM PCRE +.RB "error occured while studying the compiled pattern. Since " pcre_study() +only provides textual diagnostic information, the details are lost. +.TP +.B PCRS_WARN_BADREF +.RI "The " substitute " contains a reference to a capturing subpattern that" +.RI "has a higher index than the number of capturing subpatterns in the " pattern +or that exceeds the current hard limit of 33 (See LIMITATIONS below). As in Perl, +this is non-fatal and results in substitutions with the empty string. + +.PP +.RB "When " executing " jobs via " pcrs_execute() " or " pcrs_execute_list() "," +.RI "a negative return code indicates an error. In that case, *" result +.RB "is " NULL ". Possible error codes are:" +.TP +.B PCRE_ERROR_NOMEMORY +While matching the pattern, +.SM PCRE +ran out of memory. This can only happen if there are more than 33 backrefrences +.RI "in the " pattern "(!)" +.BR and " memory is too tight to extend storage for more." +.TP +.B PCRS_ERR_NOMEM +While executing the job, +.SM PCRS +ran out of memory. +.TP +.B PCRS_ERR_BADJOB +.RB "The " pcrs_job "* passed to " pcrs_execute " was NULL, or the" +.RB "job is bogus (it contains " NULL " pointers to the compiled +pattern, extra, or substitute). + +.PP +If you see any other +.SM PCRE +error code passed through, you've either messed with the compiled job +or found a bug in +.SM PCRS. +Please send me an email. + +.RB "Ah, and don't look for " PCRE_ERROR_NOMATCH ", since this" +is not an error in the context of +.SM PCRS. +.RI "Should there be no match, an exact copy of the " subject " is" +.RI "found at *" result " and the return code is 0 (matches)." + +All error codes can be translated into human readable text by means +.RB "of the " pcrs_strerror() " function." + + +.SH EXAMPLE +A trivial command-line test program for +.SM PCRS +might look like: + +.nf +#include +#include + +int main(int Argc, char **Argv) +{ + pcrs_job *job; + char *result; + size_t newsize; + int err; + + if (Argc != 3) + { + fprintf(stderr, "Usage: %s s/pattern/substitute/[options] subject\\n", Argv[0]); + return 1; + } + + if (NULL == (job = pcrs_compile_command(Argv[1], &err))) + { + fprintf(stderr, "%s: compile error: %s (%d).\\n", Argv[0], pcrs_strerror(err), err); + } + + if (0 > (err = pcrs_execute(job, Argv[2], strlen(Argv[2]) + 1, &result, &newsize))) + { + fprintf(stderr, "%s: Exec error: %s (%d).\\n", Argv[0], pcrs_strerror(err), err); + } + else + { + printf("Result: *%s*\\n", result); + free(result); + } + + pcrs_free_job(job); + return(err < 0); + +} + +.fi + + +.SH LIMITATIONS +The number of matches that a global job can have is only limited by the +available memory. An initial storage for 40 matches is reserved, which +is dynamically resized by the factor 1.6 whenever it is exhausted. + +The number of capturing subpatterns is currently limited to 33, which +is a Bad Thing[tm]. It should be dynamically expanded until it reaches the +.SM PCRE +limit of 99. + +All of the above values can be adjusted in the "Capacity" section +.RB "of " pcrs.h "." + +The Perl-style escape sequences for special characters \\\fInnn\fR, +\\x\fInn\fR, and \\c\fIX\fR are currently unsupported. + +.SH BUGS +This library has only been tested in the context of one application +and should be considered high risk. + +.SH HISTORY +.SM PCRS +was originally written for the Internet Junkbuster project +(http://sourceforge.net/projects/ijbswa/). + +.SH SEE ALSO +.B PCRE(3), perl(1), perlre(1) + +.SH AUTHOR + +.SM PCRS +is Copyright 2000, 2001 by Andreas Oesterhelt and is +licensed under the terms of the GNU Lesser General Public License (LGPL), +version 2.1, which should be included in this distribution, with the exception +that the permission to replace that license with the GNU General Public +License (GPL) given in section 3 is restricted to version 2 of the GPL. + +If it is missing from this distribution, the LGPL can be obtained from +http://www.gnu.org/licenses/lgpl.html or by mail: Write to the Free Software +Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. diff --git a/doc/pdf/.gitignore b/doc/pdf/.gitignore new file mode 100644 index 00000000..76701ee8 --- /dev/null +++ b/doc/pdf/.gitignore @@ -0,0 +1,6 @@ +*.sgml +*.dsl +*.out +*.tex +*.log +*.aux diff --git a/doc/pdf/privoxy-developer-manual.pdf b/doc/pdf/privoxy-developer-manual.pdf new file mode 100644 index 0000000000000000000000000000000000000000..2575a0bd6f88296a285e5b1c78fd926ae546613d GIT binary patch literal 208098 zcmb?k2|SeD_pi57X`zj@FqNXkGW*z*Y?YmaY#}Mx$*x5bp%7(BArg{3dnL)1BxFxQ z63QCF|2{L%%*#+e?|;VU^M1VK-sd~#Irp4%&pqdRcPk#2;z9DF7*Pm*g!!qnjKabQ zJ{1I?w7IG|g6}Xw3kiO&j6m>7nb;t-5u&1uMrMZ4-{DDrj}R7S0M&IxhUyr32r*y;CnM?Xkyx-m+e2xoy=bwc&%{Wh`c1gw=Q;DmwVLd zhIJoalw@vSv+gS5PLQ6Cz)>ruHeqR5@nq(!tFn?Vbk`k_*0_{)aM;y5p|Q295G7nB za6N5e(#1F6hI*CpCKVQuI3X6?wdf4e_ig^_Yc%mEC%L z&eqQft9QK4`M%c$dv;~MeoK#$zumjk3t_c7LS6=MKD>x~UAU|kyZ5SRg8zn*b*+iI zOx`Wu*frBPt-f$mk=wT_@tN6nO#%G3#2ZqXg-tH2qf0+NUE*~d-xGa$;z({- zhg290jvM{Bd&^*Pb=zjQqK&+2Nta|9ZZdJ*wDyUzDQ_9M&HLK=^6I<-&x}dEmey;l z$MVvzT)-;yO>zP74Iz?|B*<$-JTq!DGY|dPu3ksr@*g>x})k~VT9mQ)HgO_{#0>>}Fi$@|6c!B^gKboM;2&SA5F7+dv)yI7uv)$e>JOq zTcmeUuI$(`)jcBXZ({~~q}T4nC%=+(FJqY5^B`>#a4 z>EEQZj#J;#++j@CzQ3xEOV@3^&!|ipzvn=6+pP!}+|-X$PNw(HmM+0=PCrUo^SxL{ z?U*)8*XJ!~ifA5wG3HjuUe4Nx=IvdS;6!lFYfX1)9tjmE$TcQ)RrRsG%`D6BZfNuiixq!1 z(eL*-^1f#^s~cv_`NfO9%T3twesL5uT*?wL@`2+A}xf4VDI`t6x>A|}FYoITm z6DDV%uUAJTps!uEeiDOP#U>hixa`7WGC6Q-N+mHh5uvZe{R2luy;Bgf0fk&|eAD0c zg`SyCJ|9$II)1j9sdcpZ$MA$L+Ap=f-C^6?Y~6@HvtwoTtiu*sffe7>F4$^hPWGaG zQY3FaEct1@<_f16i}=W%sZm4oPemj03ho}@t5c%J^EUK9Qf(WE(0pEU9p3_dT~$bM zJ5(`vwDITlo^0vhjP|&Py~0d(OsE9YVlJNW;`Z#3E8dQTXVZgzg)f+f)iO=S%_fIN z_68R9DMiNZ?s;V2Zykxzc=zt>*!np$6Gg%pL6X8oQQ`wbM#bXygqN~g( zuRfO$)0v&qUpvSusc7iE_e99)J@25eUx+K@k;(6&UvN8 z+@x2h^o#h$&Om5GM)M>)TqA3=H7)&9kz12NRr(`0{xC8cn_%riiS80h6MNZ*nQDY6_SfC8Ppp^1WaUa zugCYrERWGL+HO*&*dt`3*`Zo=i*G>-u50+Q2~&?}upYIn9Vfgv+ z=CA6`)5kwg_6?+%O%%#rcTn^w`DyHTg&?NZar+o~2yxZTtBYV|ikVd$?W)VOD>#w1 z;=O$v2J6OSvS z5E`5TM~B-!+Xj8hJ8iOYI|UojE-U>aS>mW4RVQ?XoSV3FC!ZH;%b(B_a@lM?{+Yj} zEi_wG=f*kX=BU#ei5_a{a=NlvDyMGPVoF)7^+sHc+a}HnF@bikdS@U@g?Sy;m2?$nwMZ=;%!Tr|f-cYOpq(&sw zCmH9EIxP_|9hc#+Lrm0rMQN&s>S;0lJ-<k;v&}K zA%psZuWMMhVOR4qSr$$ui~u4^MkhAs`8lr{z5rnRS1XCa?3Ac-ekO!4Z1?Ytb`os#??7sB2oM->08jxpg_ zb4^S~t!(_hbo`1G?ueb6>_&cE^Cy|ISpu7-itsbs?&qb;v!?~+PKuv1VfM*$ZZ)51 z`(z6Au)?A#y`5L9Fj%d+HYX}AEL>!}SvTLeGPyiQphy~d0x~;GtGf@pMC@H-G8mlx z$5-tW?%DF@pZe}7-p`hoz7LugY+oCs4Qyu3kBXS2@$r=Wmiu4pUw-V2Y<%+eT74!-4g-IbVwx>XO{+U|4ag9Jbg0Vk=$>+4Viac6}~kD!BN?Dcnb zbtM5px_cB}mwnN-DXhzAbh{U=qh{PZZf+cJ#%`R-6>&c4b>&T)=EqN7E8O`|r(WWg zr&$*&SDhYO=-n>MY#b03UA@yS+`C;To4ABst*Ilcem__3iA@ZglNt4GA74#=iR>;e ztVq>nir6lCvTpcWx4lu0&hf^{=Fp#l_NimNzRRusSxj#B%IlqySI+eua-A6DhJ6kB z{lan2%TcZd&Ye!IXp5B4&Z!aIuBuZwUK3L{V_8lfESV+aZZmIjtFMCOK?$jV-x*V>SX|jsB$YL0zh)@sTd>2%J}$>m z*7g^V8-xok_1WJYY_s2OV>;QAQI=nC{y3*QezK;@tdS$lJvb-!qwzi#iI|9l6 z0W&icu88d|2yxq+B_4EBEI$}l|30^xB}rLFZFKm#XNKH&k9i> zdOG6Eo8`7hv1^5s?xnZ=Y5#-+!_{KB%u&p(Cp4ow^lZ&<-D=V7$!Ld-hsQn?7Y#g3 z6VE_Nkxav3lF25A;neQNqw~tWYY_#L4!<;*oBL$9Nw=%U*I4|p2WoJ(S=Bgx+yWuL zk)dPfy_csuCOACX(`BJ){~YGw`o@@F@98k`eyQGQ=U}6C?*Nlm^qnms8yfZU+8WMnm!mN57=(U{}B zIl_62pPi4xH9thU?R&{^!Q`?8F!#%pb~P>-pOe_fcbBP^ zC%)z^`lOMYm69JG=aTniJjMkx(&ww*nHd@y>Utrzme45TL`c5)bQQnsNvBxIXZ>t^ zNU z(XVR2{M?9&>)Bn>qs{lzie%3zu_h%T8C=KoLBs)RV%b#`t-kqDXtN8pyUSr?QR>-r zk&_Z$7nq*O#7cDpl}tojXnP3l>;9|<9Od%sye}kInNBrHrM5@fk6LUyR>P~_IB0pZ zM%VYoJ+DZNC#y>Qr=nB(o5CO){CcZ4QSHe_Yo?zVdnan^HoER@(Uin!Pv5w~s9&fH z{zZpf4PHHdJWJ|I#nYq5HQzp|)z)RoIlaByO#U*b?y>IbopqK60mycrc#7y|?4>$+ z3p%pOye(ILjjee0aj9+z3tr3YRgJ zd+IJm)@d#oI6{=+Y!Pl0C9YX#Qx)|x^@wc8@#RsamTKP%c)txl;~jCytjB=$RNYlq z_TFlwX4pz2(-r0SQX`!`bN^(ru6gjJ#c#>HlWIMWIYha%>DruI8g<(of$+8C;NM)nMM# zeqF?=mQ&cd_SZ;2jCj_w+i#|q99~oXdroGGnEN26rceTCa&8I-B~-`>n0b>^#5BsR z>=c%mn_=YpZ|NyMaWgY>knGYz;Gi^ZUf76H;M0;E|4NV5o#W)UFGB0!o2q{$#i0;E|4NV6dMNz)+tN%J82 zNfROYNi!k&NmC*DNpm6jNs}Q#who#N$xoUN$q&y5XT*@CBp}EI!t){F`H=8@NO(RZ zJRcIC4++nQgy%!S_)suD6g(eD$q}Cq@^Pf^@O&tEJ`_A33Z4%I&xeNRL&Ni-;rY<; zd}w$+G&~;~o(~Prhlb}v!}DR_`7rQ&7O z3syIZC^LYSpBE>9T8QYB)MO=&s;G)9t5ORNQVd$4Q3OYVMiCr6utCa73pTRGp>Vud zU_OxqBrguE1RNU6i@^#kL~attRj369tsGiFQ3M8~qDYJuR76)n3o43+A8VtGez+e zs0BuA{7n%UjEW*Kno!Z|2*~CP_;#qY0*MEr0=pY55E+WFFh8JhSXN$|T3XNsh%V{{ z1EWZbR$#Q+fAW&V2!JgL*bE@?7$7Mu0t-0;^n!K+DoAQ+(aY+SK~bbd3n+S-dJF;V z?LbZi31SNX5P<<@JcI?=E)^8Dpy*}i$(YE3q5%^zHA9Q4BhkRPgG>tstUWx)M1XY% zGzx_PMO?fBsD-&iG?k!;i6UA+k*yUO6h%<9fTG#3lO=^if?W{?fx_Z}W+4$69Qcl3 zm`Y)&B}Fg0j)6f@Bt;7-TFp8|r!XMB1JXPw0T5<^Tp|XG1p&l@_C+dKYDv*-)6tO0 zL?bXTD2k+L0Y$StC+id%?7TscfWl#jK?4SZ;^oI<7ZPHr;HV`86iLwlij*d&#d=bfAK2=n zAOi)q72t3Ig9NJ)zpxmAI{qZ(>}dgoC5s9MMG+NEsA#t701cE|MT6)74bBx%pwJit z^640UG%v{JEJ&*asI-c7o;kx@}(MH4D|S#>ms+A)w-M}mrKumaHnU`65<7AYY4 z=Lm~lcAX51EG!yf(aW-<@z7=&L<=A{C;(|19@L*B7ZxobsY7)T{?od%ftMi}7DZaL z!J?OSM+0XJq6Cm?fKFr(Xy6XfxCQN*Rgl!-I_aE{F6$6RMG+QFu!zT&w7??UcQnYy z0JS2X2obqq1IAt6-&_Lorf*uOCP*{+=T3G0Sq>kL7 z9RQ8#7_!lVVNs+-8!Wn+c;J@788ixLmH^0Np^;F+Z(*?mk~(-t5{nb)qFE$V6j{-R zie3gD+6v-MWIQ;q zMx!wx%mQZ>1h6Kt3k)3Q#P7tK7FuADtveYOMOd`KqL+1tHqLk`VgM$BADrl*@MvEA z!j7(0kaHq+niIhji^b@oS|n5ySr?3=EHW&z zuxNxuFZ&K1q9Q@PCmOgL0w|6~f&>>oW?@+e)SLjGSiMUZX~D24(xMF(y(~NuoHQXp z?Km3bxWRHng8UX(mJ3s@IWau3w3#l#f>BX~MH4Jyr8OH`<1TXTYV zVp%+0qy@vGNQ*XDG#hz1h)05A6rfrtECDP)1f+4mH7-b2=s6)gv1NcRvLb<^h>A8; zbhGeCkQoIQ9)$tPKhTDNM1p0xFn5Ta6TuVPDd-|A7!^fWG@+uGeHXy-V!+x%^Mk-0 z1n{662WZ&>Wi=;&C$^fcOi+AMU>}ME zZ5q%&EQl5gMeM*MKMLlBf*KdV4F8+WjY14{KX`J}>-_6Wzd!wLztJhvNv3hJ;F=J_ z%quVS{7xY=6g389tWv9W#r$Oj;tX*EJFd42b1PP->>6;0w~_twdHkh#?l{-BFKVhm zMdECw+&*Pj3Ii(JuSC@-E%q-m@R=Np#=jq)s+SI zfnS!Zsc!0iQO(-r_PP6Ofs=-+)Z{f;_R;+K*kNaaN&c84Zi|9nNN@3ATbq^h3BK{^ z!67lx>5=ZDsY8zx=k1NZk>zVFy3LDGZ9(7Xp zJBO5YmBl(WwG?9o$wwIx&&F>1zP-ionG!8%zuEs$>8SbkmFEZFRJ#U^zU{2;%+Z(_ zHWGW4*XAsEkG&V;r|PgV18IKv=2fN^p-95~1RF4!(iRAdH6CL=;`?35Z`XCcp6#+D z-?p!G8ujI@I-UO}fn%Vhzg?+WnBO%2#y8fk$z8?)MuX4WERv^u629f#sc6&iw;ncXXOG?{wyk#dn5wm|A-gt~(VZO=GwEgC<-VkYWmjk)7j3>rYQ`m6CtF7 z@$-vy6RdFVzT4jXDFwCfy|}U6{;TL>V&}W)L2oj>(EbXM_a}`JHEZOz^tP(pN$2vp z$J3zma(Pecp@90Kui`=>XY(C|E1kUC>z(VTK3(fRrNJa!Q6E|FJ(Bslx~4KSSY$tg zl8m6jvfJH0^2;0+S3{f!_Ub%Tyb45yDzokZ)n`+Vdna@wN*jArTFYaY#`WKw@#`5$sTrs-$wSxd{Nk{&OR`RLpUJ&!ge1fZK-Cb=?M#$h zR#Iwj;jnRIzgX_0k0-n0nYaoaocJ_Fn#$S6^CG^0moMxrYQoikXPtN}&0JBrwsHT( zR6FG=`+8sAki_YxvXQD1d(D22jb7Z*M(XmGI18SeP{(*I6R823tdzAv)@CC?((bn# zcfFMN2q^jf!&~faK^m97!nMJlLuUrgb{+S&adAwy9#Ie3#NoU;w;-M<^%gm@qLKLl z$OK{iu1qakO^Y`^^w#Iosew~(!GmrI79V;4WXVNL}aWww<2=hwmYj!jDVM(Rzix5Fkloj-@JJ;q9 zw@mB&dhF6O>8Ir6Jz!#J7iVs+MJ7=ZmrxiT(GCTXzXP|{Ahc{nxDp@pF1v|c;0T4m3b=E$e&xmGK-5WWYn_yg4N`uunFC1CQB!l0rSe3 zYs1b0+Z3j2h4~XJubsuUZhI@0wA{)yIqRvLy>J+NjTYB|9@jTc)9idftm?n(+PtVUsB1HTG+~>+qYEp zl~T(NjmcNWtk4Ud&12-iibwBO&%PVS9a)nqyxJk~ba0q?yxoPH=29z$;-l3IESslu zQhz?uNqU|2QS|Z)L@9%0o$ZvOjw32L+vihjPe9Y%B@m;+gRFR}sj0|lNCa17udwFl zSLJ?j2>5;E{H2}=i`2f1=f6`jo-^k;wDz8I5M-0j3}OhW3vhh)@jP?FW9~pB^(%To zy^X&gwSo8hXT~TBE0aO_wC(HPUHy*bZtT0YCM83IBCG42v#OO;4V9Xfc}HEg%->uY(v zhN#WFFv`(5NP&BRyYHTA;GT!_Yl~E<=Oh^&61Pq#LrCV6z?9LBy0^ELUm{BVALmVl ze0Q0&O+8*3P+$N1Xwd`_VadKvF&L+QY8{86CaBt}LUktE&=#e+U*zG%qR*+@zgoZt`d-pTyoXn?G+J zMz%bK9En_e z$qbDIf}}jDKU%vtsLTKM`OF5t!ot(-v0Mdxt9O@05%y-+wI>WERQ-wwoR4V)gCVmv zz9cSDYjp;%-W)5#El-*r*di58r&$uk8zYC$=+xm4dE{Iwo1NXsKqZZi;C_dz6_@v(B>wSC zYNC0lcK|J(Y(=_eZniy(NUdrzuyWZsX5eaW*Ga`|B#5j7={Df?ZkgdnY z?UNH4%RI~4$1CD}gzDBWj~7!j(ym+IE^fhdi(=SkqokrT;>hXLTqXQaUGo$0R-9UV zKLVvqg8KR%G&D;%APr7oPS$Gi=oSol=cqs>x`=qWkRvCUxMWW z9+|a^9kyM?7eDFV3gC$+E`dX@*JLS2r9_ zOERwR_+jCY+)^be)bL1$&*Vee1G&>+XYh0MbVpRuTVEWyRNi>7qwk2U-?(f`{I#-F z2eH+TtV=4U`V({xunIY>@qe`0=73+|Vc8&;A09Zj8Yt@6PY#_(8eWI36I>FkeQxnZ z-%#`BKNkL8zvj+i^Ooa{reghEmi^z)SjtN4Rn@H99BDt{s>vs@ z5I+wL8es72i|R}qTs){1%4C1r_c>;~x`C|%U+tKe`?{<%l(nnO^n=jkr5!rGPfBwF zjox5Z5N#X9KoDQg+_w>ND52j;^F)fVxuRW3+S9f(Ri@>gy>%Uy&1SARjeF*&)%tBj zokZgl>_R;TOl=oQ28)%+Z6Xp3{T!L&(#VqN^ySsFjj!G}Fyb|&(8U^_ITBQ)v?AOW zl~o0J$Vp^M{q@vbg|l80pfe>I)22%uH3R#x2`rLnjzQOU_`N^S+$^4+bLH`Q^+`v& z@w1|$f-U8WA-*9#{l(rLrc-Ax7^Uyr!g+;PPx+)EXI!?=^yU6x*}igUAE=Bj8-rW5MtyrTf9q_zTGwna$voPyHYKsS(@6ES2`jgPIc7+4dY4b* zW)h3p%&p&iRltF6BI#hE2Q6(2zF2~K@o~rAPN0F zJReL@gn|i*K%qTp986FI)%+6YfeDIGFhLOtCMZG?3v$4GFhLQDSaSmX4C8|dicl~? z5eg-6Lq0rrY=xI2md?#d110H6wKCzg6X=Tqc9>)n6L}9X2L(ipBLurLcye6 zGYOkWx;uNx{5QrXa*YZO5a*yE-XT!_M1Tl%K)VMx$Y0n&6Ll>CX(`bHi=5>q!y+ed zX@mtymKIp#69F73nQ+0_t2BCN1h>0+Jb~1r|kGFf59+XoCfyE*J`V`PVPO32no(u5(xMF(-K;z~e#SwEEf^L>TC~BUmzBqY zhye#;Srp(TzyZ631zjK51(si6s7ne^bZd|y!y-$IMp*Q+@>t-SaexvQ1E`H~AkxG_ zD{`Uq64X@%q^$!zbc+m&A}yL=(XC4civueWFw&y2I6z+lqy-u*z{*^h-J-56AZ@JZ zA}tseMOw7MqL-D&0@n<+Y!k~cz%C05Dqe95q?y3XiRJ0mB}0Zqkrr*RXtwfj6*U&P zW&&_!Xb?Oj!QLDTtUVsJu$EEGoLHW2T{2`?6lu{0i&iTS%8ejqUn~lI2Z<4g!wdWe z=+1yk6j+c;RFzawolD|H%39E6F~ZO&0;3%o&BmUrVxV0B3DPnUks}_Y4FEwLXkS~< z<{Fk7kK!?LYC>cb-TG#*Fg}Xt=!1`L4Kx_g*nk9S6(lI-!hs@IET~%KUl_d?S$@ir ziVAa>kx3~rdMF?Q?3W(%ZCA<7{@`~|Gu!g>MaCDoNBk4cKF zQ1d&IGKh2$AB>JHKKh`emxsUrE^dGf$POYS0u(#I%>(L~g+w36C6!eGmASl{+#&FP zRIDhZj4NH_2P34&k8TKQ^&8~;A_j{F6g+@k6j)_`kjcaV=a0cIXyO{!7Neqx7 z9%MpLP{R{g%^1)$3Rd-hl%=ww9JM8+TNe)*Aw`aKLrAkXfg5@-pzR3tnILv~w;WPA6VGeI8=z5`-DTEPHWJouJG`Lq{rOL1nfT$Z6|2K1D)0&$3g(yEtmyGH#20Z zE-QanL4B?)>E&V2FiMIn>4}nVokD29hadpX%b}|^z<(g80Lb$ec74kXSss==Bs+Jv zN4L%)GDwOj=?Rivo(2uw&I9%EftE0kWFTh#7Iv&NLy&Uf5(+9OsC^CH8jHvnDS`yq zNqS+Vm$yL!=68Nj*#WI?KtN4Ag9WSoKYDB_Wl70HDu?Gtl3pH%jFKWra8gV^lyvht zAj2d8@~WUv3DAfFokRo1n1!AC&rnJkMYXvqNv~ZD8iq&_B>f=L&EEj>RVV`iibOz4 z5#n+JTrvx*2ACm5aXDFO@j3cPH*W)Dq==Dz80Wc<@IO}UzUIG7{^i=&_|HBcw=?ZU|}iGH_xR1+rsM8k_hXqUHe^9{z=ya8f>E zo`g2B%#1GLgTax-M;CB3`xUa}Ko$b37lSTb0ELSvs90rTg#_YKs*=io$mY;~#~;ig z2_;D&cof;u2_LPl1kT2ST1H-eaOQ*r`xq#?0kw%>FSsDDtPUKpq%z1W@~9~u7FV5< zlOvt6eBK0vYvVSE%3(g`2E+y`_Fg#s7I zKur7s#P6VhmVZIV0c0(dk`z}}Q=Vi0XulZ{79klTMTEff(Fr20UW9z8LcGBfl*2$Y zj9BPKPvDF}8U26JLh-|Mm5^SW5i&fo1nC5iR_8&H9$;R>fTSt;nquhgSU?K=U!5$d66{X}&TLcE3cLGbjY)2ejc34Iv=qT^NnOgo2`mvaGbs z90yGMm4W2d3vr$O8~@P-8@-$d61qnjbQ>W-`4}Kw0_-kO<>Z1~F!0oKN{)zqBXrR> z7#Bs~Xv9S~X94Jh@E|h{94xN@c&SK`)575vl%WQ<%cH5+C&)R_=g1h8^bm1TShBRo=0wsg7nXvF1w$TfOZ@V=cQ~erD!%Z8MwXY%VY#@B5VFq_f(g(%$-4@#ON4 z>w8gL-b=CynZj1PPu$xeS^sQQrFgAtn%lNfm%NsX(QleJJP_MDtf5pJ7ke+hl1XCF zLiksUE3-)N5H926Nbo>e5rm3lz{@i;ct+V$oE-%rx%;}f!t?c~A0a;2M zi428$6Swi2505_7RsD*LI$!x#wP)m=g~QOp7|H9cY&om;osdqC)6{&s!~Z+?c{WEL zKWq@A;|>$qx8prKd`EnZQt=JHE#K+y7l=a=!h^U!W+f(NTpBQ}U2W4gj^6OkB3lDK zkIC)94cxJ245v(Z`$Ph+UFqr@7GGV3xFAwG>0a~YMD^8)^p&i~6}Orga&JD*tpC(( z`*hHiH3+K#mCuHk97oqJ(X@D6dB)!Ff!YzdJ&}Ua!f!uie}6M(dNGGhZcUqlGJ6S! zOi9T4$s>|tlSU_N2i6ua#O-musIr0KggEnC-Cs%vnk0J~lnj{<3-Q@p<_|Kpi0?*N zgn#hC+(z8}ZK9W@Iwn4Jc+1jnaja1qKUQ9H6<*40IM&mn<}&8tYtO%OgmcN_oUu0h zFS<NhVq~~E{7y^kj~0_N zZp)KIgnUn(dAL0N%rUkS*5nFSK|8la7LQ}&H72Kgc&el2D-IW2l8XDn_GRez@Z~#a zxLoT(I0vL~0o{o{cRt`3Wyw^oE8k(U{;@P}#ptmu%J0p@wW7J-wdqwK_sYFJ{?qJA z2S3}QD3wKmM;P60v8V%j>WXT?2O1 z-+ZPQAgwf@!Jzo@oBe$&>{i|MaEvsDKy##f2QDObgbv$eH zo+3HKn*#lUef4E82Sy+ID0tWX5uujl-IW^r*0#T^gN*wk2$k{+J7bfy_R5w= z<3Fua_bk-NssAkXe7Cz?#3RK1i*;r!_b|6u(o~Ms)aS1F=f3`jXE!eFU3Av{A;*Mo z&$8^%N{*|A`P+)F5?-s9DxBkX6z`0djlRIUDP)JdrrXx+djTo;QM=)Y4whDoqc&p0#7SouKb#z$#O82k5M9{h0XiGLW6 z(^#lag1?PO|InJXhWi&?kM_XSkBoRfQMY416gp77!&c5(r^@W@*ypzERdTmW9rkQ7 zyK{HNrw_N#2r3AFz8JIqNPjlp6qp_Z-Ja4(0Agl-8W2UnOc zeVr^OWB2a*?!gDsUAI>oAA4M1+rjn39sOC6M=h8UZ4>!R?CmnYDAB{ z(?SRNsM<57MXD}4Sp97)?Rf~YLLqxdg!?L!!5MwX5-Nf&E;}WS3k18YS5~%{mz9z zW!5DJYM75!Dc`jDW`98`;YFDH56qI(#;-d%-W=I|2)|vWXZK$7hbvUW2r@Tz)^!bE z)QeGc(XQnExOEwytut#`|MJ2C2g$+Z2^+SkZR=v(zO=$8Ms1$}UuP8St-R3<7887t zy&6_dg`w&x4_;l@cxN;yZjq4w>Dro6heuAerz#v5<61u*&sg)-nVd1h+5_CZeF)xyVTvC@Jri8wy#agdy_y0buxj8tp;I*v2o_N1o_?uZ+K| zy3zYcmuPscgI6pxa5s0AbG>o`f6d4OboF z3c1~n{!~1oVs4C!{HnXCdGn5_IqVIj7zPARjDWg;KxS`16KM*_;nckB4Wx)@7JCDl zL~`(7*&9Sf5danh0X?h72!wzn919EqXYT0!Fct?6&Y@e&&1_9gXSLn~e$!d8=X?(a zbzUIPkDF)k%#+GLJ^4?AXWa%(Js4tY$AJ_C4l4kftmi&?)~(Idg8|Jgs1g7j+J74S zH-SMnV&TEfDL9a>1@|A$^XQoYG4-Rt6Y-$L9|!JYhnNni#XYOn^iN~?`N4jA9%%zm z|MOLWySzYI=zN1`ZWpPa4COwEO+(NXJ7B9o4I2dt{QmN2Kn2YYbZ<9;tD|(#8ltJL&m8^a7L{14?vofCORAga0Nl@`FK#FLa5Kt~RdM4&-B1-kWe?&!a*3vdA%IG=%vO+dLfNE*!@{Ws-?IQBtz^&dwQxoG}} zl0a7~@`EJP+$S&KMMI?7XmG4Mcktg929&x$gMLrwoD>Hv*4)txSQvnK20VJc!GBY3 zsFD;^bwii*0FO5J!GBXwD3ON(>7_pnp2d1Vt)cMBfO^EB%NXZ8nMg16r&k4|hRo4? z77&=`zi2mf|AN@B41s(C=9u<(C`{T3!rl9brhOVH5h>PZa>c8n2`BQ^Q zKrhKWga4*u`{5Ktgp9~pp zKomqhc2?W`A2bZ~W&p||>XD>KjI3WX(qS_Q%4cN8KuIBl65=X{?$m*~sK5^(??~cb z`tQW$pk8{0mXb4OpfnjgXCWE0bLNeu>y`~53l2@b-@mEWs|>&7WK(u>c=Vf|*Jr&W zc^JJ;%5Duf8I*J5vzwc-?nYg^rV-qk)rUFLo5BUq)}1?YEj}^vU0y1w^vu)3U6@PL zu*2He@}jwpNb%{btOgq=s$NQnC$Rk1pK!Kr7w}%X`$6W%zMAawQ<)vb9{alasgYh36+Or$-Q0T=TZQbD!U{ z618;I_g$4t6NjF?k+3+qkuQn6QuD2e?YmJvzqs62Z~ZMMzj)x3Wq6~Hg>JnNIO)lS`C+`6rSH)ZaTtQLB_EcWka^b*c@#Ki)7LU{t{v zQj*TF_xRl+=~BL-j;^54L@hJB@)H^jx5HG!5H6D;$1fMWt1}-N4`6gz-?74{ZA5sZ z^hLW*QHYh}7W)0X3j-4B@_l}r1_ z$N#Zfmi}ts0+&T;Aj{>vH@8Pk(l%)iw$`nwsYI~vet7N0`eZ5Pmc=@+3Ovl0wXTb) zEWiKZW|)QJBab_l$G12~CpkB&Nj-a6RB-j&FYYHdZ4L_E?aN(M^gv#;|Lz^;Lp74+ zs+HNzn}W7({U^ETx-1V@YUL%*7iB_c`;MN@;yS7&u5s>^@%hN=Pw$U!llk_NbBq4q z&bGqxkD9{Ew(5^2w7vZDl;_oBfdH$km!eMYTY2)Kh@t$O2Cgw($4cpUb*rs@`?9Du zjmrBUsOmc+sG1@#X}7J^x<%Sm`g@;TNOQ>`B6oa1Z?|9CPbJUsqSJ*MjfRHirZS3> zuU_ZgXzQp@h`T@L$L`_w)0}C|xgNKddHKzmY9sAypUGQ^ag{E{gl&3d5wc4q=+&wf z`&pO2&#H^z|GA_{+9TRFuQ27f|L(9yCz#pu&R*KPN^{+m#nmfH%$#SV$_}Y^r((G2ad8+thcz%}4a9^TB5~_zW=;5i~{+P?_->qUr zu6VRhu=1y(r@@8_#I?mvgE?_1efMoljStfAwk$g6u_@B1g^ z(WAkg%dfhk_=hyuHq^iV7F#Xb8{X5ewt`F0olnXP`|*>jb%RxupBVzK)Q zU#i%;|4xuKitzYmv54)gvT_G!=98`5b#mU9zl_xO`8Ouo+B3w|MqSldsc4m_*ZNdh zta?Ohywj)=^XXbqUj8O8bj(R{pZL+OflKwjZc4L0DBk=gpw6hyXSMcT3#CWzZ~EA{ zF}X%*A=QR8vk zu9yF*J3HMyKJcx1c*yW${mR}Fw8aGXb)JvG`w8C^8tXVjn@bJajm~STc#62kIu$QI zvuX4b-}z+i*yTsdQO28a;?X$$hs*GHqfepIBTRYws-liKp%?RZTY9cq#Ck>JsnCyZ z<4srJRC3&Uz+a!brN-%UO;4n*$H&Xk3_&IJ+qKr>MQ(awJRVmh7gPlY-ybMit!r@O zCFghNU0e+Y#)rx!l-6H}*{1xdSgAX%XNC3ywksz$zh1k9d&%UbRHZ4x)Ruw05}ap! z@9)kYzh9R>jfk>6C+O2uyB@Ju%ph|ha`&g@X&5CHd7NM{#xB3l+?plMoMmgZ4^IE} z!CS||_NyJg^|m43;NreCm%%uWum0-~zYr%}+{aO~YEM!9K#JMHiqd22&6ZW!sQRGl zdQ_3?zuh^3Ut~4Sv@iUkyVMQ~glLGzBY#UpU73|D1nGO#{Fwpqi8yZ~KZ*F|% zrMKed8zzyNauIu4atoSu@?9o;MYD*vQENZXYrSgz3*wQ=d$6D!hBmt&*-Wf}5IuGQcY zQz9#5`F5->j}I&Nbl8P^Fek!k` z_T{Sq+v&h}N>{%A+_9$QL6=VDJ?uXg{8#hTn_t@tCm@5+{U14g={55|YAt(mI(4N( z@vCHY&SOow@;qCDY`-w3?~9OpO%93Ntab3rh+)ovsw%z*Ze0c1s zlQHEMQ6?`CN5zZrGGEcB^to^S&OdS4c~j_J!NSE2Y4 z9Ce-{V$suW%R)o-HVU*{bSZYpT|RkM;%dyPXKe@lO9w2p&7cL{wWpJ|u)CUki^V%lmj zE*EFO?&gY}-7@DBZzYG=Y2SMoW4$JB4<|Zd#rM0) zbJKssfD8nRjDQgoO-cU|*(u54o6Y*cwv^zg|m zEDlcqLHazKUn1)&`Sbqa!8ovIhv+=##@f_-iE@Q!Y@!Zif!{k3b z8l;xM#hddCrruo4d^8g3$p9NoEJ%3p0|;{-J&V%g508czw+QoOOhF!DMtDy>nDS__ z6GVcn@Z3jJZ((NwhqqK%FqnV7Z99?c_D^q%@@Qhs&^#M5B17(YQyvYo~Q(v|pH0C0?PdM1v42%i@TLKkz#ktxt7Dj2V4xuU?}Ptl2cfLG0LX;>=_7;X z{%8F}f}OO-wZ09_AR<9uS>jM1cp!@VMga4*wWZ2+91CsmPC;v^$Fu>gqpbIg< zcienta8?T(HE!~wiS%sqWPFJQcYiWuXh2254>TOgu;YO_oD2MKYK8$_5opk3@#oQh zQ!_MpO#;x>^Z)}?jym_*e^WE~2no6jeO~KNWS#%>#|GDL0}c7}=)b8MEODsW43y2z z#XYOH=nt<8I#vdfoAa4xHT_VJg-*P1z+)f*0)hDy1$?AG8#6L&EOe|qkD|np%EaGdD40m``mwt9W1eX=JA>GGnpx z(a$fRG&+W6$P6Cz;l5s<#a(z;+kD!idAhN12h%mQM68Lf*CLjO9bpq4LdKtygnw1) z7755!8{Qt@yE4y4O;sVcX64jC#RlEh73c^TVY0Tz?o18u8hRg1j=8V3-9)jm#-192%lguTK8smzO zm$rM3TRC-(FaB-#`6Z*MW|(?#Oz)XQwee)uaT^ndYWcfLU!Jb~JbY#ReTu)*3s;fN zFRNL8s1eq>y*PN#L7chc;Qov4flD=_Ma2EKFa7>f`;x+E{<;fk9kKeKq&a0zxwPY3 z^Tr1!>iVaia&9c*Tziu_F@66QM7_M~`zl0*ts1w%_A{~PpPySk&5sb@c&1cRg<~wv zob5$U2D9vuT<&W1N>#m6Pc_5GSN(X2xvA7DC$jgd$=THf{9C=QZFilH-(|$koTzm` zjxm{MSqsCCk_Q{z*-LWI=&f6?>!AT|0{t*}NUA6N>m$QuVIMdcJbsL&>>ZJ_j?L!| zEo_^_o3|3SC2n5E4pQ)6)7SPE$J7mEHVD~9-4-@;{*`q(Fsk=XT&beJkNmzCxm5A3 zk&(UHZdG?>dQ=n?zPhf(beB7~w&c4=Z0t3btc!o;gS7NH#$svn*tq#)s@(to?YU_I91RjGtb8j;iLT_qbSEd^{MW!@HaB%<>wo4Nfhq zN7xVO21%i8e|@Y9_+{vRvewI>`gly!+VGwwkH5cBe3R%~vz=`+K4K~FID^-XyqIsR zcywy?hMLNL#PS$l>tRdM-Mj8r{#KZ{#`-q+x$;w6dwF4^tF;&-%;DoC8J z03!}kZrLoX-9;MmN441e;Dr_~Csh`Bw!qC|`1j1zOj zyQjIlPy3TKI*0#>u9cD4J(^yaDA)Q{#DM#RwykOUx1^Np5@xB~9|ZkqTgM#!sjTF0 zcYnURy_A!|cj*1)?BSIO&cln#t?x8+J-@$3&3VUC++!yW0UZG!K zP&=v7h~qh38qbuL9r(RFg-KfHm_KvdE4ktvf0yAArQsvLqk40-9NJIE@(Ma)!(OTe zq&lzK^x2Z7I_>b#iZ?;$9e7Ug*cao)BOiptKNh<~FbN%Z&-R{L`Y>B7dMoy|vc7@W zPKyuMg*-r1>U@QLxf(D^T;<8cmwdLOhKq;{TKeMF~mjb*<7@Ex+bnuLm-xqKN$&jR$GO_k2*V8xBVguQesb;=a90$M}}mi?t#UsCfY}J*mQe1 zU&oB8RBG+9Smdj(=o!1@hjQf7o0AE=LY?SEQ|q>zkhmuxD)9^<&EoQ*`d!mfc3Bt9 zi!~ouzJ22E!nKc7?%K1om4CfWH73jd>PPk(X_ZUMj^d`WY%XZ3t1I5s3}U!&kdgb` z#9e9O6+A*FCnq*laqRAjzl;v+mt)*-$nai!eB>XOhU;rv@GDL|II8;9(fz@lkguz& zE4#Fvm80(Q7EgN~W;?TFWxG-G&%iX+$#18Pef#z{l*MFmyEvciUbbrE*5AwI)|ak3 z&Rk;}{Ubn0;&W)dtC4xH%R6KA+8}}Q1hZ4cpEUH3#hqYL{9rOo&`q6CVcG*;Jdpj!99{QHpbUPMUsG(p*#dtq-=J#?d@3om5&>XH!F; zJrl3=B3))=Df51n+XtR?!)0Fwn>FPgdFBV!Zyrz)e5d1&){$zyqOZ&6N)r@WDX;PD zhQZ6Lx|&7ZOhK857wH~9NllZW+r`=GZ+(uYiIPO0G<;vx-LEZJI%z%Owu(@n*%Q|I zY4M9nB?+v^#=5?o1B3wr{M-%M!LmX{tdS_pnb$#9JI;P8& zU7o^gsu+fkqABA|?ew>ZxmB%qt6Ac25Rb9Yw=B~SX>Qx|gk-RtE% zC1qc^^Y}iQHR1Zd9D4b^+ZrWKx9dX45yB9d729YRkfuX@5#Qu)@!*Yl3zNvUm}NgG4lJlPyKyY-P5baj5?C{f-eq_FGy;>E+l2duWKtb zFxnsbc>U{8wA)5XMP}h`=2Yi(xe6GT}8|-nbtYfQqGG7JhkEPBdB2_XPeZ@92v55WcR%ws`jZ(ZEf+OioIz7z( zl_hKZNSe1gpXQ!jLukI+F_ib6k@BfZtYTvd-{;BUWM||P^_71-RKQ!t049?`e$`i? z^OOD!SU~G5|MMNZ8%zXR*udi^zCj9?d$JyxB9LE}sfd~x@d>X%+<5(*&EEpPa za0B%l2sCv9gbpV{ogYKheuW&cXf_}}1{5eDK)xTUzH$-_lZidHZZ=?Y2hf@Q2Q*A* zc?`_~?O_Gdt*6-r$YlS%X4rNAj1D0`M=_mPH!LyynB`w!K!k~h3nWtoOAJ2_25M43 zWhtkbs)RZs+!4^IdG>0$q<5CEs+bTmvL ze{9cCscJ4DYrzGO{CGf^;T*8s?qlemDR(ZQN0}udQaT=HtmSuem42-e^lKi}Yx;#(}14%#w+P8n- zH7D=`;|0m~bN(3AdFpQ(NM*7D50w)bKg0%bwPAl8fMEL{OmjlZD?m!~bo8Ij8K8au zB*!@Zfd11tV}o+Ep|bM84+P-Bf~*`SV|471Lsct&$Or?c6gnF80|o_ip;?40)Ac4d7LLU4NI0j1_j1G zFay8m)4_kb&VK$hp{mV5 z4JZro0=NHZXxPrNW2S$t8@PdaK`N%4X8}ViOKc#uaX>Zw4_DDo%WMFjfDNR&&3UZP z4)$aF3k>9-p#xJ+9Fk+21pgU)hT{p%dV}#!IDat2PrJN-lG=g&0_7->RiEK>LREc0 z??2#MaQcV#r(s^;LI7&XCm+|JZa?5d_hX3Sso+0dem`FnpkEHS=qKzRW6GS8F#kPE z4tOcQQSkrGr2ostKU>E9n0Vl?jQNks)EP47T^hq-qY!-LEgt=}`8E{Ek{wznRC9Js zV&f4?`<{R@oDx~>RjKsLN;4Jpz1!aI49r?qgrYv_zVI#46}l65*DIemFrgmlFv=>C z-cVa@dFyP*$e2%Ri7J?%ufx@-pc9Q$IQNWo2}M9(mq~9oEGC_EE4ROlqdr1td2P?r@yJS&ZgQ!Hos8K0b-Vs)!=usVwf>G6%}FP`+3Grz1gy-9L!xj4u00!` z(M`#0jhG6d-`>hlmCqz0r&M~3u)Tk)CU5b;k05p}jq;(1F3$6`K{5L+N8eQMLhQ0*L0xzepsdna#>LnV0#k8R5U zh4+o9T=$3}^{8b!VL7JOW3wdP^D;AVIbll6`$?L%qmpD%9J|#tb3(0H);70haEf%| zoDE-4CUNP1dUe^b4D;f*LX#J4K?eqCPiG~qeC}-G#?)t8y3os~vBmKn_EW3iOZbqw zo!@4=wm_=!*#E*8Y;_VRFZmr50p+Lg+Myq+42BPRaR|2cQc>!wGZLfkPiCfK)$^FwG{$`}OxF298@BWf9>sc9)2deIU>wb3a`_+tGVp?#vtg*SN8U!?kb(VGGXn8;KV zIBi|L26QWo`@4}0h3@N>)s=D~xAYvY8~13?4aRee&_TXqUr5i@Qa&#%jENXfcgQg>*$>Ue%J zEMSTnZci;K({L{)e!&GNM zAsz}@E2*j`n$|nNl$i6jBg(c9g8g-=I$LIWFQC`75DaCb+fzP_geY;?Yek|6dRTWa*4zE<%QjHyx)I`>&|Xh)gZLF8hcsOP|IMWg{Ti}JgAQ8rJN};ck~e2A!=1e z<-PivI`OI1s=;L;`mW^q1b1|LYSlI!Lb<^xq^o@zwc424+FV}_*BH~JeWwTwOsVE% z0O2g=dy+07ieD)_NK$7xB4tLVo+jnz|*r>Y$vXm(b(+x_+3#o*gM*bJ*n zq4X)aKrN`NUME3@ql2Z1=aFcd8NR#kn}Rsf zf_5aIhKRe$DX&ztf-D zc`UN(>)H|`K4u?byhvNVS_*H1EJs4UEra{2OlL*$wl=beS!jjLD=E7643?Q37GK&6 z7#4YcW)PObEYeq>dHWS2C?r3Qyp|A+PTt2SqJftggI9Xz84&V~vf&`SGXS`27j{`cz+o)-J@Q9GU%`=K)o{7KHl_|EO?wl0*~(4I92;C^re zkpnjn0<-?mbyvLYU}ED4#C1Pv&=~*94sgP0URk# zknU9|@9^(nfXB-X9H@0Nc$LtH?R07g-Pwut`KGBCpylw<;MhW-u)(v<*x z4a9AQrGp-OU_Y15`9oX`#F>JngB}C_^uvI(2GBSQ5=g=_I*);WS_bBgLv@EwKJ8;u zjZS&b&;%E#?+Huj1howCBB8T{PP}JWLgz8?&pkt_dJqt@G$#-npZ=bI?HQ16;|2)* zCoTW!g#EG%`0BvV`6TvF2kfU|KsA<`7lhFR@FxGT>Ys+$fdP^{Y#@<0ET0qXc|j!v zctFTx1|Wg-$e+-EI%AyBp1Vm zyYYt%!87KB)oh=WT%M@fCXQd4IM`@uCh(drqIu*jgc)_aVUm2pDDq6 zfh-&JQeU~BE6&fAE;7%LYWAfwv44I>B6~14KJ^Z>RSZ+YLBggksfSTj|DJ>j2KD79 zPYvgr-#moq;xK0guH>7Gwpe=fT%^3HgSJDi8~!|vdnnhKwknuQW#FkusY{Z!wPJ1e zBU=gT*JCvv;&(J8wWLsW zGrhhM3ek%C)`~|pizV19!MaBFDY~X?4_(sQQc5r%n)m29>Z(SVhu|-&r6{JaWb|Z znxc2vV`2n@h?ny|{qh1;ciz75OGpb?80jkVU**h;bhVGNKSYC*sSDR!cF#Av#3H>f zU8kEnH`%sIGe=kS>Y7sJ6NEnNT=VMxAEi_$K~QE%*Le_B0ZLLi565`nV98F5X;%frso{@CClgoaV%2HapDB z-Pc%S_YDjZg7>^E1M?YfOn8cWe9eyPC+%g#ebpU{N*~3iH7JIUXXb&Aw68UKRI`PZ zd6nXISbvj%d-U5Zf0Ppc#@WrB4LmHGYmQNOrnm@%CPW)sKTPk{&z&a^=2E89ev(qc zZlZ)A_dI`KJ*COMnn=N7t^K({h0`5o8w&>p`=(K+E98O~Gnnz>g&!TQs7K#li!S2kPeVo1O>iW`8aeV4?YuqbH$trW6a`4p4DM)iRPa87trR%=Zz#*_P z347&U;YVbYH>p+4V~Wn{X3F-`?_8#92|ZUhv)!#e&EfEzwDXtNQW&1lHNVZqFrYyg z3}M7_b@A$K^>Ke4FF#HL5GE?>resUc?NV=VXL*`}tp>ed(XZCSiR){S|xu&f}X zD>pSQM>Nas=HH*!ik_=6dF!s&3c(WZrp{WvuDdAcht=%Zk^VtysD|o%t}QM~wGnag zTbv`LYg^8mszsSs*>-Mz5JEgK-VZ4!87F6d)}ix`Vx`o7>0Z}B!45s*Bs1y3jjNkv zS6j2L)Wea+k$By#~eIt7Tc*SbR}5RIrf-&$l)cUV|i{D$lU+PTVIpI$a_Ndtzu1(sgB43v0d)q-;-6 z%Me~BiZF0q^lirKLIwGIwSjP|S7En5Is8$iKOrXUDqmB*g z^0SIgn2ld~nripX=Pk|lp6&aAx*lYpz6F4;0HZ-dp#$Pw3~u z^T*`VN^joRED%T3$S!SdxR!*2R(GTJ;0j}E7o+4=+%Nv+YFFtsrM~j}I`~UHAdB|nJoiF2vWO;d4V^i`x@JE~f2HwREe;uH3E5u7*A$=J zm8s;#wH4n8+x;T8jcCOg+T?V|hcS$hyER{QP34L5X;@Z9eVS>z9X_T@KQ;B=ZJTdp z`aam;q+6vN|C!vtpK81fON*~-XM&x2qYfpW4Vhll>9sv)g+5Ew5K4m=Es@?xf^CFi1dy`>O41;aDQu(4F)%wYnHv!1{{tGfCj9%3*?^do6)4m|l@B2R zrQ}4U1>34}%r*y9T#n-pVAwG2chf%~7?jlm0THGH)FA)xp8pDl4bs3Y1O3_%V1Fm~ z3>#H#{jv-UbmRhy@QzJ^fF>b+w+z+M;{-Yl0j)BCmjjXt0D6s1|3w2Dt3VkZpix1k z=|J}Urz7?=2f+!|cLU4p9cvAOUG~ox%?Xug1L=kWNIQR6HFV?$)a2>tKb^6kj~mcy z1ZNZd62YJp5Wrx8UH9L>CwO|lzpI~M4&X-O29aPmQT_+RLeqjEC-{LNV0J)V69S@^!3k(No_@aApp)f*j3qnJE(nkTPg?%d_4)I0u>-#gkR$SA z+`{jy1CT{S$GP%?H2$7oEP!DFjtLvs9Rw>md+g`c)A}p;43{?a z666GF=Y(qi{%iRxd7@*vq2H25zxVC^%SQlS2lQ@MraW8r=omTZSN7-!=jROBqkeU5 zTY!#$vKI%?5lrr#=SW{4=@B$u^T#KiE%AW&PH^vSai%V8HIHe`!+7fL{i@Kz`G(jW$I}U zq>cC(q^T!02_VXQd<6A)RE|eBt`*^(-+Eqf-h3UZdc|;xw-Z2hYjB+xd|;c(R|76 zcH{0METw4AZhU_$x4@n(>3eT!_BHHcP8q2#d|7u!)8MCXd9OISS3#~ib&tx%l7#t` zq|aM$moT$n>b5`VXowjpOiPhXVt7M?a*iN(p;a!;ze}fS%HL&>bdUJ4{$mTRh^UCd17P)TA-V!*;pqUV} zfOCpjr45*!`|lHZs38c*v^`-Jei1KGr>k&^=}lf`CK;Fo*$tBuHj;YmEyQdVYB%{nIWIe^@E;IWr8RY`%{zA5qYAy8LGXzapSc$i7jem?KCw zNr|LPYf%#s_y(`l)HY4%yGUup=_+!Q%WSbWa{=SfU;~*PMMo(3DjbQIMPZnxo|k#q;JB60jCzJX^>_=LnzPf3K7{sU3fhHPAoD8H95|>Su?m=<5*I7 zS4@Uw4t$4hwRc2B?Fv{Hs;q)gtcO)JVzIyz}Mot4OW=XIl2Jilp%d{xXIpUsPE zD80^%=xpDwzNz^JLV!1!yoAD?@{#?MzMbX+xI=vJE8`LOyV#5=cPMUm>KU9HU>taZ zH0Fa#>A1DS`2l`?Ev9|?Mt4ezs4t!LYrM8)nujXvKJE(pVQufrB;M6{xHgq+whIHw zTs|mKyXw;mM}}X*I^I~<65=gqxDD*JpzwOxOOkuRCCOju9OXjRSc3C&ajM{(H=y>j z>_6vWmPq`ar5!hkL2U2VM2n%$7td#&SAOFcB zxsLHE!Q;sv7vr&bk_+&3{%`Rl)WiGt?gw0&e-?7Kc#;d2n+*nr0E!h*5;yDz9x7}7 zSIei>!?}P^^Zx)o!=51kyBjPhgjE0o+cNNZ2bB+lDi8g2)lj7%K#Bn5dBOO-pq5Vs z|Nel@)|COL`{c4=`P^X3J{=5`umA-EMQJFb{KNr+mA?i9 z1FQ!w;FX@lp5btwiv9g9|5tbFKRQcbY6o0rRXeCvw+^4-#EtzpdK9$yO{ChY#(v`N ziwo}yF|}|}@%quxaUCv{b5+>ClP}BdIdndVe*zig?`d2QkZs-J;CLr6Q__PuE4&?v zV63@p!iuOA;X1c-bz{I`E`ib9S)3QiHPQ9Fltb-Q|Mc?C3jGF#V#ecgjU~_Ex|GbDaEM(}(B+d**<+QfRi*+6Xr%DxH&Cu(@YW!R!3`;F?imN>?cm!&){MjL7$ zmDUx{Giq+!Mhl|pvr<%^2_)VjQ69M!$og(jxYLM7dnkH2DjI1->(vc$Ln_GM=M`X^L|Ex~RO8 z1X_49@iPK)rmtNny7&3bAI^M#6Wt*a6|J2p@7H(L^o}~@k-80n?&Yf=&?`AfZt2UY z<>7o#dp^iq^Gb}ddYuDRH!*po8KwH=YU|w(3_6pf0eGMAn<0vm2(3i6FG-?&lAHZY zONco(q=+Q2^7f?DTcd89zCyVfx~Qnyu^-&HsW_!zVW=%cG;%|gc^Zj{;Uf2i==6Cc zw6B+$-b4p7PeeXbhF=ojA<=Oz)(hq5S?<8Le;JE%7e4bw`irBZ`(^w=YdqpF>0Z#v z^$YRlOVEGKqzrYa{kpTqaKy=g9uZepbKyNr|IpxFVJw7~Nd59Am!_`X~Ke` zzPc18f^vIt?{2rIx*L9nE5lL#W<+BxuM%_KO$PUpmL#`viCqs1xFePRf!NwumCb6e z7vGdpiEYLjFb_4)Ta%^?ztsEE8e-CYbp>Rm#-_cGx_EqPc?+3<4iD&wZ%HFJlh|6&!_SZVUa&n0`N<6jdzhoDR zgEA;HM}3=(paPRM)Ad38S9>ft*2y^h`+L|_WYi&|)ssnmYm@bLpIKBa*}2c1^PZv~ zx-Rsd9-cuq(`&lP70%$X^!|ICYeb3H6POxsw`^$pSnA6r*Xa`d=hdsm^oo@eFgK?m9%|I&egPfL))wj6*NKGhk5?JNNWL$iP& zd?27<@C>Uy6%3Q40ksTdslk*%xnOfkU|=r5tpF1yf~uVU^>(hmc29DiLkv>yfn!k+@B_WTAugKO|VZ{XO#g|p>RjuE|n zxxt_KC%Tq@(5Kbt&AzvV`hfjLHeypevjqKU~&h>2lvG+c;4BX zR!A1(9;Ip4;FOITmr0CLVw4w`RH2(8d$>CLUb|5u)?ibdBq3V!;oKyJjb3eNW zUGHjyWu4eg>j9xC#kU!!Lao-R11!x{mm?7wuPcqDp09Hn=BD%CgmZsIWubUjO?kc7 zYL4I>lZJI9jYjM1^T^d}BclZqowyh~_G4Uz7jk^%;4sRocX4X6(Oz}=e{}R|+-+Nx z(d)qv=_S#ODrUD_9Kcw6aOjplHzAySv(rwFx0zjY?c;QG|Mi`x;ZZ)(9r*e5f zFqD&rjXH~x(bZZX#tv*@c&nYK&gI$AuCDUWqF%FL%$sghe(>=e#Z5eyBM9fGTzmBi zjT@VWWZe|_8mnKNtOg?4srH#Qtv|Lr9Ke-bVO!rVBsE`@JiPYpylgQMlT|@D&*AFK z+fW1xlWISy>2&lZN<;!)Ld+6GSKpgv1$Lwy-B-ju``mOA3|e3jnFxOVoP|ycufC&# zS~>|u)L=34ZYUe2Fdw0CydX8PmQwmNBvgpZ&b+SP$`%sdljj6jFJqg?F>Z3=S*W98 zLkNzV9;#qzI7e!RUcPf3rR@41a#fIG!EmnU(-svIH}#QpkI{l#stKH2wDRdNCc`qS#2fcli@xYiF&3KUyKbs;nx?v5Yd^)ZAPKwSeK1_OP{wpYtma9yI zFstG|YJPx!^Faz;x3iR~JCScVu*#_EXY{JLC& z@7lQql-zEezPSEw3|Wq)>CdaH=QAG13RG3wD7$UkPC@TYDMh4lfqU6EFeu73^|{h- z$}5A`Y0|@P7=iXPpi#dU(Vw&`)|$1qB;Z4g8O6VpL%u**&=c)@hb3WqR_|hnhf2ru zaNkYHr|l1-g~Kg^ZYqv!ysuNU?@u8on)sQ>&7sUA9W7tz>k?<$Dq#~_s_zUnwy-g% zCbsNzS1>z=mP<15>~$tLyxeE_atxm*5=>7XX3oFqlrh?o%6x$9u7Ri4_adJoA|&PO z&~pwZ*HMvD90i=T9nVE#WHV~TYIbJ9Y0s|h%&6+c*XW1W2)47thSm;r6zMGmVyxJU zh!KQaij(XEFFZd_vTwN|Y9`J$+g?3pyS<#B5Phx7`hz>(XRkWNJFX62GMaZt)Ueiz zM9jnTcZxsui&!MU4Vfn(Je#s}FdgPDW`~d0kp66`ASqyVe+FZ*qZ2NMxKJEuH!e5|Z=$|g^TU~_ zLVvcQLf~M@>A`j*UoYOt>HFt|7~iRs+oX-&eV1yn|9ImNK zMaT7Pd?$SK(jiqX0a1c4fMQK;rv}oX>Yw|J^7@rzov|JHXWyM?lbwk!1@QN-9<8P$ zR0PllPE(3*_I+Yb&?QPeytugF^+nX2ex$%p_wjdxPmd>KPC9HqJ_0`+HlStye-7I* zRxx-6>c=PLxWo2?$PE1H|C`ak1#z(4^MTI@WLn}BU30ksVD$O940nr=9%R{o)()Wg0g^X^ZD0XiHqdJhG_jm~Q?Lyz zpkRQI0H&nQ1>3*^3I>ETz(yiM$9Vqzft?CI!|8-7HiK;Wm`{JoMF0o_0KyR``AJ;I z`an(#2!7R1StL(s|2|tl05)ii>j$L)xWE4v5Uc@()eo%ru`XlzZ%36=Tkfq>k^|F@ zr6@B9^x#ylIH?D7hD|$ae-~^m=Ul6TAHl^*6&iAq@BW%J`os^3$csh_BiiIn#N%@k zJecis@Yvl`?Fop}*U}SH1-c)g(N?m#@bbDikWQtFNDw1ORTd_63I$MT*{>%_##aTqFe*Ic8FGUs4S+^86@x|-eS0KU01c%b z-U~52yZdm=9dEu`F)ZJ$_NHA?3h|L2N7rQRnrdSUMZB)~m}bw5I1M4y+-FPRli>M< zl@IjImo1U^Ayhm$F5$0}^4B~z-AM8Z$+}VBtQKC$xmG~Tk_4{HqGX0Um2OM&kOXjv{WnU))vUCgy z)3-(UX0hn`Ij5#6{Pq^lk6g&@ZavTEJPhyOLy?qkt;zO$tjo`}BF$y&3&9PYZg zVtL#3ikdI4sGn805VYs&e2t=A-{P8~6%8i}f!Vx9jr`1_^Q*hj+}?BfBzXn0FnqANF4=Uchirt}0|^gm;R+9=?p;qfQZ< zUC6I8KZ;CWRSkD1Hhy-TC*H&7D^2bC;kg=$NjAj#blW4{)uxcZap8@81v$&0$u^tu z1BTkqxmoRMoJm8RFIR5#RMLJr$3+xCd}PI4)sMhLNb+#tYiZa{*_XxubaynBO5P&J z*WRDxzKDpSXmRbZS1?=iOHD*qE@^f2=Y8wr$8SHH*Om-D+M(8Q#@Eu|?K^DDrz~?@ zXF>5YyF>mJXod~*Y8sVesWs?WjD|<06=Fd%*74{KE=m7mW6~~&LCJ|a5ggt9gz!m z&IBkH7&i+>M}+3-j(?5744(#u9ee<0nG32j1LolYj@w@?pALp~v_O{41ypo70QdKV zmj>JF2D)tM{AdsoB^PX~+kXSYI!j>71~Q=BAVZ*`s%d|JV1Q0KH%NQmvHII7=Zh1V z0>BPdpoHZ_gKe1;0?>3pIF!)2<9}WC>EJW`q&R_!E;k4@nd?XEc>psH zB>p%iHgn1YI~{z6(+M4S!wMn=$MvI~|8L8N>dAp{6<`_Ypj$o-dxoQpPxuXfZV#!#(j`SeT)HqO56kdd+1{UGC`8R)j|F*ArRyj_v*(_;%7|+ z@}u^4h7hP!-P(3q5;u0;$m`*AFZ#sB7E2?eg^VZ%-U~|hcko4W_ozySZrT~SGmS>{ zWPh(M&NraEbM^VO?_ft~cZbmDP9kl{LBZTZbJmSqcyh`?at(VgQ*E4$cU_m%@NDiY z^-yRqZy{XXFmb!b=4j0*p7u%W!}ExQEA{u*vmM_gmyajU3@7E61lM-^o91N1jO|GV zakW*|D|qt+XU=*qkh7F_(|Nx@4lRY6b0(}McK_IAkiccaef;W~Xc4D4_n z)6;|3y7^uZ+)-BRTX0Cg57hB^(u0GXTX`ek{1?0X*Xi(YNWL?X#ISFA9*u0KRfLFN zl^2oJe+%Viku0;Jawe7%%Oz`KE%Y0Ew-*?!)f~KaX$r`SF>20}V2%hVX}x_yM~?C; zlKABq`|dRjYCaX*X(gCwOgn)#>?@8Zf1pC*WU-m&6&jC;dyKMal&@Rf8L=s-LLxL>q{PcdiN^B zlBM-bZ;c18Xxo|8y_L6Di_1Wrs^V z^U2tzgx{Df7tv|>JZJe4RZ)eV5Fg3V#yFByQ?tm=O?=Fhl6t1!yePfJZjrb4edDjr4xLcg@v|3fQ9CA{> zHcW}UEu(}J4R#3-p3rBMy^Y1tN{~bE_@350NtxGQf8T?dv%Wgq|5?ghHx>0O6|E8} zWs|AtXC8G1%9LMb9$udmLbOb+BKm^Z8d3P-?KfgHqK^YLjN|e$7A~=Ky!yX^xQ z=M(W5uNJ^je*7kd{jwyT_d=3oz80j$Lt}80Pl59luT+FI)z{`bD#DDMBgyw47F&NR zjA(DK_L~#$L;5B%jgg3=GFl^)Dp8~Xw)(pxzPkI5 zbW?2S>S_-W^m?chhPJEA-9)&RP4s}qJAx?E-FP{dZMmg?m+_QpV_K&_j(A#%M#eu2bSD`^ES7^pz3%c$FKN=$D?h#%j4P_2J;Ng$0F}3 zpWQq8lUd_x$@Q6@RJU2NIzJ=|^ti?jba`{>emFl!#;7_vJ5tOVaZ`U5i#_N%3Ht)_ zTO6@w0XMY7{-T!+4$25J3ao^7)@VkV7t$%wLip5B$Iy4~H>V?f(aJ;qu%W3e#6DGo zJFQa~V`=WQPnU>qgiDH^W^P%?eo>Uk`t|7CEZdhvkxof4Tj}{CYu30l9Q{331j{n7{*lu z1p@&mbo|>%%V#(vKp1}t7{*luwG0Sbfpi$bN_l}n0bUc}mY;O#xsJ8!0O1oT7|6|Y zgUnOp`q9etTLko9z>s62E~i-rQaC&y%Z9)zfP-0vDns*tL=zBLmN_UGIA6RVksAb- zWey4kA~#-;%svE`W&Yp5XE>Z3Kn92nC#FpnC>_ zAZS_+_BRD+>7Btc&`=6}van#-0wI`Tc7W^63383ViqwH&p_34yd_h>d5LkvfC>Ut2 z;nrmXnhAJ-py#Az7>YWW$TQ}qf0MrVWeub+v|R;xY^v<2d#?#0z#-{@FPHx&1@l%U|_B++t|@TpQ5Wo2d8 zz3^DtCpsQq;``Uf0?PXKiMLn$;ii^cYFH)?U0OslzS~8pX3=k@zDAZwr^*T^RN9dK zbl~8VB(7|DD^nsOHKznY*qVjeTRuJYx@t1gXl=~sx|eqSlhxvi{UY?4Yg+Z`B#F7g zA0$g|A*`r3y1%zN8mgYh*u{|wM`lf2$mziv z_ib{Cl}TWfOg29&a$hiEvRIWU21&s76s}RU*+bQ>{w=#OyX9|{bJTvT@-E&h3Bz#< zv`tyrhPC)vGI)$%;$MYDlFf>(di#mlL*(XfO^6$bUnUk4<@9Iog=-a`$zWB~zs+`} zH9d-((MzU1e!V;HyHA73Q(3Iq3uJ=ly%N&}n8$SM<|inTua}mXR{5>oki*yILyElf zdH^dN5{7a+NpPogwg@fPXD z?KeCz@|QMON()Rog`HQWbS?y!8FAeq{yHp^oz)k)8_#^e%HZhS*H*XgCQXPg7@2?- zb|9L>uJ2*=I+}jIA^k#u%sBI6q2XR?ew8|1J3}Duz&E(L3|qk+AB1boy?kSAsy8k2 z=KY@bFvJm8S5dc?+1o2Vo5{<}Rr*L8*BBXapL7o0pkvMF>6^PDd>BhE^FgFK=Re*~ z@b&gnf1)rowC_J+%C;@vC+PTaw~8z^;^ocP(lzsqn`qZcdBW&Id_~BzocEUII$s{Z z)0mFqEZ=U1yYhOTY(~&?y|g9JlWLVVNH~T^IaKE0Lzb&!ySeKTnpEqZ)TgSka!Py+ z^i1%VR5B(>K8#9KdhPBo;kGbnv!%ng+-GU`q!6E6y)T68a`-X$wS)DtzH^3>!`-S3 zr}3tkS4Cx)6J^_%`xxPmyl(Mb%A28m`7*w|r{?opBw{#b8_f@ikq1<6OT8V`SMalK zWgW(^jn<^exR&6Kr4@ellX+>+)-iz1qwn?xQklMq#!hoD=sfO9gb7ntagGYFM4p6Q z{8%qtVzO9-%Sd0iqus8cWXOS4M;#tT=A2;c=b9NhL-o+~yS?9U3j}`eFR^2n(q=H5 ziT6EnPSPir*{_V><)`i(5ROpDSU!kKTXEX+XXVDvY1v+peRPO1WaQo`t-bCv$s~Va zvN3U=`_|%uCN|q7iQx9lTND>BygB54Uq}$;$UQ%>I+miXqq>n~qlc+`B|LACj*_df z4Ne`!|J-(>rH!ChNcU!UHHY4Yg+ky{0k!Vghywy+8<9Q&4N{SgwQ4gDCyS9P;oOo3 zyTe;e=Ol>dM8Zp~-(+3ypb&Dqp!(S6wLqIRM6fq2$cZF;0s`{{~dT-6? z3w8(Vo{WY5@%-XfK|AFC{VIdULMQoEkpIZ90*QrS`BnccNyUOK4dQ^BwwN3dlBgbrx$#Gy*?1j0AmC2y-sHAA+T&Vuss7s5MTxth#LdTX8UhoSg#Lk*#NTcFw1}vDi1(iJ8Ah0CyeV<@bACoQ;sK8l#~^ub_c7947O!x8z@w~ z<>ac*a5^~v`B@&|r+X57hSPaE_zb5L=$HU>jX(_l?lhkAxBxO5AeMVFFo2x!?m^!2 z>EJUQP7Y|>EXcqY2rPpS>`k!)Q z^MZ8NKwD}5dhtSKc0tC}Kwt@cV1}VmVIW5nmcDm(=viLUk2&Wcf#W~l*Izl2Q=%E* zs{VJ-%J223|Ajec3t^5G>V8$9euzh%q571oe$#da+L5E}^)TY*nw&(i+pFgJ9-2`b zA0*7aaqmdNJ5YB7dE@h=SkwVun)2bXlR12Gp3*4 zOnfVYV-{BG8>Rn_UdDxuwva-T9Nmz1qhrtNOZVLzKbkbN+;SP4q{G^8iVI(-r|j=k z`xIBq-z2`a?t1yE-ims8&ZHhz%*yN(N{ksZ%1 z$J{RYAQ{#ALmZ7wdd-ADftcz>iXwB#NBVQmN#SI5BCwasd~Y-S0*_lv5POIA22=Sh@}88G^n%dcM>NSVI_p^yVvA*8=vbY{%dkbzZLgLQ znzT?_)5?>~+q}QrZ+1w8yiwcqX)myeB^>UVn^!N69_N8c|7*5v`FuC_L9zSJ>2q}H z4xV^b=hYhA!oAAVh2r))NDgx@3tFk9A~AB1A^0WDW6|w7*`^t+jlEWi4bLiWEkt(J z+gf{%b#d}JFN-$kHhhqb3A|20<`TAf`FQcbVuzua(WNIB*XI)KKSeKpQS!GQCd!u6 z&GO1duz6S*H2+HLpjBnN!0gdjMRc52Q^sWCC%?DdU-ncOqRStc@!McX3+Jn;6A~I{ z#ZAJcPt@KxKokF(IDn+BZS%gyHL+FS{95)FHtO5N3ET%>hT1WyN7EmY%LQc)hSvBe zTf4ujn2=s<^_-Y4dZ`iAVcq3=J2KDZvPqIs+v96}gOXGEU%gceBHJ=u)218`CyEq` zyjZPW`I*{XcSXqy)h;{7$0+Mzjo%US7@VbrL97U&7!W+0cRHE_xbecv=JVim$m^rbJH{cII|Hw9+dPg{|bX z6t1lEy2`tc#@u;jL-|2TrI7fM!#k3RZ3+G=#F7s}H^L@2@eT<60ohcx?0BCi_?j(> zGX14d_?*JT*&_}c$qt{>ZSLV{MebOi>&GLt5q)Ba4(S>`Udxlh7FOmP574#+y;Y1w%Qm1*+$Yh zB;#Ii`ohf%T%daQ+C?J0CxzmoOGAWj-MXgaxH-+}$7l)+5hZMnRq9ksy}2FX6qm&a z?1LN|0VDq;&w+Q#WJJ%7j7xmT9XXyXE5uk}>!@MN8+ao(`cmtPK;p@|3Rrl8)NSpE z#>R9X*1425^P{Z!j*DLH6%Q3OtzlaoZj*EOA3~oByZ657oOh&LRLnp+7arz;!Ove8PhK*>zmJRrQVC}^aSSBN=Wgz&3 z0J-)Pdxm8r{x>kJ(+IL`=(trLkcJc3X)9ocp~EwQ8Y0N5VIvw4!yH^d#Q}u82~67l z`{6tte1?+CU6~Bn3>!A7gd!5*pVyqPldO-sY zAI-a@1rLEtY7#HU*;bl!zDiPJ(<4*#niRv&2oh_A)89@>MvLq5I0RBK_&a}o#$8{v zLx08oW7z!7W^RT0uzwHVr7BG~rtO;(%C442 z791gWm%q2=+RYGlmrNQY@*GjPFZk&2I_H7N>#!RLbWNBwdA*E%o+<@fYEcq;)5BQ$ zK^RL{X82k%aGmt>BAywdvlrkMuUYl?xs+JBI0>hTs51C-y>k%IE!K85j^h`rSh+jT=OxsLP{bYO_(_F^mUL{QIE>Ar z-xxGqY*C)$xFcVEFY@uSMe^lfdW^IOE0IQdwHBCB8~Y(oMvBXv3m;0^SgK_1xu5H| z3z;IFG;?jJR=pawIq+~OE}}Y!-cKokrS$nHg>hO)&66%kw7ZB!riuzm=M4MG(Xlye zCLF(*y|2pQ`M&x5VkJVgwP&idPJ-fnzHyqD*&+OZUVZ_#h)Vn*I_EugocU1#o8dg$ zkWZQSocCU}(7&La<(yh#Mao5gw4fzYMx{p8z*BQx#A0a-G4 zNi;Z-ioK|}4()L{Tyy+Zb0!!gCRh~mbTt_AIrs_`5L}9=8WyUxb7C)>iJw`?DM@M^ z2y)XX%Nja+>|j^FV9Z9`S})#u!QUpwXDqKVtokVzayQ+!)=i+n>-H-G?ja{yJ@%T( z$Xes8i0RkJ>3mQ~HM$Gf$R%C{QVnKhsbfss3djyM$HiZ@)zEduxT-?-@^N=IQykmj zZdwmILXpjdyZ$m^{TiDEy>0$juk6FQ`fJfYibrnFs)_kGl@={Dc-3bIY(1|_6e{?V z$(pb3y~V2FA%dX(?mQm`~*{k7zddsl50$>50DOYeuh zZQfWz9e}{iQuv2u87ZyEsSHt_;)DsaB421 zeShM?)HlgI(|Vu9$mBtVrJi*xO{KVZMcs|h4vtZ=uI?j6gg%Kk-8E^ey%(w)F?CXq z`h>Rwx-qA`(u!8izRSNi_?}Odw(<4d`pN++n^QZ=i74uy8~F!4kAs`_S4oQd7&!(s ziu&h%KNdwnM^63Uq9|@yF3~>=Ia?IP4a+401)o-ug5~ysfdQ%kklY0EU|_j@{|yY| zNq~X@t_L6rdeRMnZGi&?1LP~H$*X7{<#50|UKVpmP)<$2yKrv3wdB zHVqAG7%1TZv@wt^!^FFwV1UHL3)030fn{O-H!zHg3g39!vT*mK#Lz>6raFCVCB+5!BDywNT>^V z>&HTo|Aalm4+1)o4Pg3g5fce}rQ^dHSTXQ?}A{7_W)dY8|- zWtG(n^FBDUx2Vn|IP# zh#W&f;MCS}Jsjj(85WxoolCMkz&=o5z_-cj|4_(f?L~&`| zXfQ6e+_Qeq@&SjSdS)`L_#uVc2mPgU0U!9|KO^Qke&AOgph@u@Ke)GZZ)U!A0t1;R z?%EiF80N(e`s-e3f(Ru+hc~QU_CxUl66Y+YGV zZy5;_#{7Szy>(bsUDrJf2!fQPAYB5|eGW({0!nv>bT`r|Qi7y(h?Gb-NJ>achal1^ z-3@*R@7L#jIBb5me(%3r*I=!)_u6Z%Ip-K-npwUce$*?m^HzKX558${H->gwZ}vQD zFvU>tSrAYAF7Z8YRWhotUn4Dz>Ogr1$Kmw`m2W3BG$(3mPxYz4#gX6TWS1jvo8U#V z&S+ozsthrZQ?*C}cTZe7T(ti>t1-p&P z^(~!HRG(3#_ZF|u3r~Wi$Zof`TT%Gb%w)$wk+0HIBesf3Z5OGTchb1d;DaA?+riLvqC_Cu~a z;>;wq5O*2%GZjAj%oIB1gK%=I2WxX`E2R!)r4IAIj|d*S0V5%hO2 zRH<>*%M0RoyHl-szFLq;JdBwz&5SPnysnbEl-OtcPI^FvO+SQL3Bioyo*0*o+-9TK(KP6_Hlt4tIP1+$2am@iGxH+cVwiA zPGGAFVtwBSv-jBX@1*^x%|XC=`?lWnoy5bI@p8VVoF8?Tkz$`pead-M!Xo!^6dqaP zDdq4QSZls7h2vuwi0QfSCn@)#U+PCx9ro&jvjGJ!QD-?rhq0|)nzI^3HJ2`*n)mZs zhIxm3M$TJ}jDAmWb~oOm7J0a2N8;0x-Yd_yCt4mO*saBB+u)0ALZ#ROv~1q*2d%(whxNDYOj=? zXCv;*e{?@!)p_k<=b(W}&a_ZS8@qHw6;@_nUw0_`SEWg3{t5>I^g?%P>4!x6u4$*; zyo;*HQ3}ntzF$mkME5S{RTZaK8L<)G?3UHzFSh>rEI8i>&M0~B%z{Qdz&9REL5>_f z(46sse<|O_%k@<1=WAoWh8|)a(|zww=uk6newj>Zq%V&)jz}oGa~mNJ^*;P?lJ_}F z{uQAJVx4o>En78qKpn@2wsCr-BHjR% z<^e5p&67|4Q-{0s7|3wB{-fMK5vFUV(yzuAzh$7vtdRCf|A{RwDdT}-i(lu`<=EmM zBhEjz6T3=x13}yIfc|lrC1X}mRU`Wss|hY>c?A&oTE-f*yy9=bAZWrrAQ&R-U;)T9 zUWh&Z_kh2+X9N6ZNY4KnFjSER5DY0ATr_}#jx9jYg#W(*LzlyVu$*8>BWFNT3wm|_zLT>2*J<>tYB0eB2JA{bD4%vXN zzNSC;B(4Yl!Rlha=qeA8eTSyo0?ry@tpP*;1zpmoU-KceUr-VOY84=84{5-WuLb|X zvc4!PL0tB(K5S^NF3`xo>OuhN2@o___wT^}9ok&;z}O)9oQrzVl{EsPa{cQE1!-yt z`5FQC0q8~`fYZJf{0FP^qEQ$d0L2&t&D8}O`J&es8$jU^1nuGYS72zaE)W>v9SNke z0$p-q`dgwMkQKzA)u$jE>Hogt-?8tny6+#wz7`j1%;mOLlJ9V73J{`i)PhAih+8MC;~9f5w6{}kb+Q~Sb> zKFjR|hV8|d&s`U8=j$v~lz1r#1$i+V?mYTDtvHdKT(EYV^JvOyiK)An<^b@9l{(b(OZ%jdBgY-Y=tUfveez z8}da1a=1g-8l)}$dnNaRngSAI%!Jge;2kWV=&Wwlyq6Z<$f zF#)T)%rZ`f+GtiyHA3_{wQd7*JV!@4iD+592#kwL`c%98*mOM$0JPaQRURoie$6`v49W(V) z#?hZwykzltO|6NF@1d3Z0Og@H=xH35zCp^>hdnuk|KAy5-NH=Uf?|!Zr z7nd9FJCRg>r+@G{oZJmc`uORbM3(@er6F82a9UG{GTGQ8B#Z8w(FUm#bk1kb&7XTk`~3`_lclwtXlnX~rT(lUnNRuf=qgnX)_5k!~IT@RR0=-d#?3YNw@!BxTJNqf&Xy z(2m=a?-Vc4)=Zv&iN`_Rb?>7C!dufA@uB?YK)r4~O>^6Ho5`D6!M`zGX36R{z2fclziOxSdcmu)H$2{{M9_mbzW2#iNs zTX|#-BkGu?#ZS@hZGY2}(1!VvU3ZWCoB)AKH{&JwJ-!H1Emr3{!G>K>2B&|+oeC{^kYy36|o^fKFGxPn~e14%{CCV+y6NvH8u^j%7_tvs*)B?^}46Bj?GD zId2(EX3nW5Y|uZlBD|IO@`P>WXAP{}NI&8f)t5+0&p7uT`3U)tS^ph!T)_Ryl&c%k}3;89~aP- z$`!!K>|jVwWdJjbU*e_TMWAa2X1}O<0oYl9uH;OB28QUUF4ACEmk4xN`&VG-k}41w z67N84Xs!%=B_;;IvOyL$P(xMgP{{HKqGTpIH>}BQh)NMAQ2j*#CTPMb3p5>fsS<8d3pc&xl#HW1s_T$N{K z*U!}a4J{{#*ZgJY)8`Tr@8QG6R?$v29#Gw$7a!EVkw`{v|Gdp^`XK4?(T&?4XOAMo zsa_$zN)GE4zj<{0oshRa;b4*9)F(^2--HcGG?KuVbYW3>L(nQLoB9k^KrzyS`7f01# zDJhIa1qd-#y*@9kvZSO-N^0eq zX;lfy%8rP(Hz(^&l2+p7nq=RM;gDFS{ru8hgKOwpE$v9$RL9L5-lir`@<-IL)~3Rx z9U<0gFkQ+H<+`QThCLGRwYNV(+HI8Z>+SsK(Db^(XqK z6>KMqq8hf`P*d0^SEap%ny*tNHG6j+A@MOSf%ON+A30Q8tC!kr1#-4YwenO*9|}A^ zTNHY63VLhUHt>MZ>qk@7sgm5bt0snhl<)L*K=(%W!YhLOJ4&0XoEG`3r}3kABnh*t zsNLz);W|bUUoujDHq>Hq7At?5+*!_>-T^y36qtRZMg7ZHTs+fEpVAyJjy716MmN5Y z)Nr9Xk6dJr=mEayYWs)VPNnT}k+qs?RoySks50|}Y>`_6 z`KrHme+aBvz?gzUs*o7(4=kZ^wC9d|c?ucjobhRhDX%lnkshm#=B!U>miLvdZPUKR z(=%?C#hKJk+B;*1sfgl3yzBBA@z^<^pLkLQg(*dLg-$R;pz1kgyLLcRz-N!agCR~y zofC=KxeP0Qfd>=cvYk%U&r!C9%8aiDJ->FqUkpPww*Tm~K$jRzz(LQi{q%Cs^UKQa z&x4)|Z`un+B0oPFWL_6@0R48q|E;h1XCjwFkLwKQL01T1zkUT2_`0A6S~>(Y@^v~b z5VUmY@4(PWWq@gOU3f(Uo%_&&6u^-o27r);j91TnXhq6jfuR*CKwwTtt4g|pS z13`Oh1C0!6#LWa*-B%tL2wIZzcVOsn9%$N-^~DWf?snx)3V>y21v3GVIWKJY|Mf+& zL4s3mNNE;&fq*V)VJ@OAfPt?EL&rQoU`S}o4d4U{x}^5MZe(`I9UefY1^TUe{eLZN zwrj!AK@ZThAw8HNZAz~`uqz~I05HU|kO|=W5Ap8!*B5mi6guDm8Wj@Pf&m;WKvxLP ze*wM{?*L(0AObId`r#$V)oY@T{{$EREv>qwx%#811AM6%{y$L%__tB+zcp{FRr#lm zwGF9bwZ)7)$_q4YEqP!nF6TfR7k8KXOJvpl(4o))x*I-d{5%ULXSot($J^PsL%zr$)zBs#5Eh2!j z_~^?_!$;QM18rVaA6W5+x>%n}Ojeqn*J~R_tn#qlGK7sy=<+A^!MeFx86%z~R@S(c zH{B`5By6Htd3Zk_6(8l!K$aqQa|0ZMNRT#vG6?x@Rt+IzqmBhmorw#-P1-~5tQAAU zFAEJ6YGBE)Jqd~QTB0fe(V3cks)Yf1G%i^|!C%~G-ij~~xlmgA5x#gSXsy^_U5u|p zkU2~-Ic1zDs~WcLoJ! zK7PD8!=IYAcw_xu(^^p6n4J?T{FLk$?{;2O7z_jw9P16B74&Pm>D^Sf zBkBw-eaZV0H&wn7eIrsq{K}!cC59uY`17WyRUKl+31@+e^@m|O_ofu-gY1QyVN^na zC(Dab_`)(R!|I_Tlw^Sxo^g{@pBh3Ph*;%)H*YmggW@x(#Me1u}j^WI&mztuqk8<5M=> zlQcuW)R}>XgYi7&;Wkn^E|~P&KqK%e}K9go%&So!ozZ>$VZgPSHCxs+Jx0U zUCTRR*>~|e)w@Hyt(~P9Ew&?Y*D7{S(X3L-9k<1Jz_8Aye&J*dwka4!xoWCBuzEe8 zBQX%aoCVIYh!oBuTq#PS%qeIF@9VM6T74=syHg0_f?Bd|73wYzRS zc<3i@^1^fC>*8(Cvndybtd)N3;+3kmN&C9;YddeuLj+8+8txtoq0=LUnB!KZH}kB> zj-7S2f*Xlb3mr`mQ|4j`q;9e8FGjT$Qp(&fp2_R$lwT$*?nq`hTle}L z{)?T3kCI0(zZjJ5J+b>CtvLC`NjCT_Y4QQMM9B{i!J)33j$ti%kOmEpZ29yi1)la3 zlh3y-xqVBj=Y0j_+^eE)3n%RFZcw}5$QU(KPw4t->u7&=R5FQzlw5B{KZ>||!19&1 zY|c%8B~eyC+4u>Ssxi^`HI15*i6Y010s$?|M7L>oJeX%NboS2LU-evdMB`mCEnhwn zqwCDTTqo$&ZBP`Avndo z8h+WF<)wS3;|}@v&@+}fJ{IifHh7MfOvo52Ir*+&YmZgy2xMd@X|0vjEe|G1XV&r@ zh*=A8EmIaj*n?{2P(W?vWkCph$Y*6(& zROXVrv(V+HlfsbGQ1{cgO38$`{eNh&Hhj6EFfXh4HjRpeTfgS$7Ho^!bX+4wBbi!^ zcbzjL8t4H@^xOcNyG4g5$e8L=)v6K~^`gwTqA9Ws3t7^U)OSBiaAL)0OzPk5@NT{t z)JJ!#DQrD969^F2c}5@TQ%(01Hu(Im%$4x*pQG$o_{arj|4kwVUvdxx3?KhF7%zp7 z;9p#~|4aA?hNjy6GZCl=@S1*Q5Eks^YY-3^!bbw?IR^UGLFK=S1Ay3zW@>Js9eS4+w_1sbBb)U!C?Jd>4>D&DVhcV1=ggNKTm&l~mFvHT+vJsh zJH37wR`LbfSYaQQg-z5`>BxwWo@XI7X$uQF{kgOUPiMbGaaO zd(T+sAgb89=@OQ>iEX(x=U{aK*3n|y{lzZ-pb8N2PZpIUS$xSFsd|+g%u@26;V{B; z1<^rLh$B3G(=I{9=-JJ}O0*f=`GmgGO3|j}Pv1KpRwem5+@6@(E4^tdA5Xz*W zzVKOI5jO^{&Rjtr;}dZh9HETHL~j#{!dTbM`vLQmnWv#j zuYU-P9dnc5Eb*?Z{I0iNB*qN=as>R`n3}aDYt)d~itM*=*9lsGE_aP0=J$u(5@nV- zwXz{~MubB=(m09c&1`|vYrCVOQd&wv17hEkZdZiQXB7l`z{HxeMej0VzpGwVjgiSb zEF{M6UtlVQrylA<_9q&Pq;z{F$yDyAk8(ukdW)rlJ>ec#yTtPjJGrFyg-!Z;+Xh}R z)LTi$$UcN9G6O@H_l_zjkd|e1E50|_u?Iz%xZ`tLOOPC93a!(*wbtH_2FD@Bx~XAH zXr6C=aS(WZ%iKCT4ugKP%T$LIlyHx9{*C1_R~l8x8PVHDC6y8#n7XuaITac2te?Ex z{(N&)FOyF{+Hki?>Vn&d3b}ha-i*vf2Jw0BQA#>KjCYi}uL8kvvE>b%YQ3E^&g zwtIVfJ#CWLSud3rx?8yxjKy+hUq`>LL&l3>yPZQ4(uN!+y2k>N{g_(|KQWAq0{o9% zrHV+7$Eoy-TnE)#*&04{m@mcEx)2rmr&7E+qmnSz-}G~@Rz9GccQDPMBjD1MeODCI zQA`kuFSsz0AZ*!kYSnz}mj98`$Eu+Wd#NO)ZLKxlrY6NZ5BS4O&c3NPd=4r?Yfc+a zFp>yt^viCRdYY5!{3eL!LYoPlpiBM(}YV0nE)wR7K(-j;u< z=s`xeCbsJj3fk2QueiPLwB}6{(2JU{Wn16SJhp6M7Lt zw{zTOtX{GrM5J-R-R>DJ_3#<9Vi&^osfzC}Qvj7bbqrq!@iKU}D#3;iTeUO5`a|mD zf?^=0UmCqL(_ztZK#@$WFF}p^>-;lK!sqJ_Xq60S`Lje8KWW7Y9GEb-J7Lj737%P( zd#0`_m%y7QmbkilBg8ck!w^>6$gp`bjU}7GuzWh+{q|Efe(gI~{PR$XRqays7Lt-) zwC4hRQ>Dt**qjI*HL*N;Z@u|(`upDACGxRc*p17}JG(t@C2EKkBTX*c6#O;V(2&1G zB6#DG6~)W!fS^yTbor-S8^*l^r<}a~v|I8^{ze{8gOtNoSMKGK9^bXX3{j;N?KL_g z-OhYEcr`Zq9Z(>%LR`%L6B}J(rvS%BSN-I{f9WTGwX_C?Ci8#++?cN`tzDQ>Uk((2 zz}J-4z>q4=zk;t*=dnUM|Nc7|a{FWl;HH2t^)b7+Gy_bV>%t%bLNB^<`-B$t{1q5l z)B^}+h4?^2-u0D{e>Fz?eG|K8+MJLMu#omA0N_7(+Sh?up{t-k(}t81nIKI~0Y-+Z zj{$-qw@&~U!wY}Ge|^oI*I}Up6o9wP$pVpXLCR>*&zcpwbPF_T4oKYuQeS|^f}yoU zfY^(^Zvb^BFtqRg-+}+&tAOMhAc6bU`p1Q-{=YtJc1RubqATx}-wdrK0-E;q;6K<# zAVxD|TwA*WuQ_8+Xx>%o7pIN2egBp84yd(pA@U!OJ`q`@#4 zz|-bJZ1{fwLr1^>-^E4X&J94P21C=Sf!_1=;6GSl7oL$o=>}*vHQ>O&SXOAxJRlar z{A2}s*3e9BATY!f6v8P zdmvV9&U_@3%V;W=x;|f7y%@61!*sgGla|F!;-6Fma)5LE{;Jr$!tRE&$Ham06PB&S zcI)rA68k=zJMoQ?CL&lGElV`LV^@!LFF6!H5TkaSnJ)Tz@Wk?fW@1NV{K4Bm+!&{o zi1~ZsuFs4E1IN6yOOIfIa@@r7{1kH)DY1Q|z{(o>3HZoU|*$suWw`>sfnG zWupTh@nJwCiml!1X@{V#$A@wArojX1?!jb&2hyZU_d8X?15V)&y#38wTe~@szD(>O zz#Y(}R&Vm)1u6Tbj-%76j9rq=#9m z+{0$pJg7Ppk)8GN#WLFC+S@8d%S{u#w_X;FCM>;1)eL}%b!0r+qYy=5n)W2Vtt_xpl^v$du^!Y9 zUwlYl`eZD9gGkuamp+&*|Gb5?)y8^D+BbU9hf*O=m5wcg3xvyu+G4>}~2>f|IVXEmfw-PSY8n(ktn zXNtL^0xc*>b6%nT8t5S8Rm%&%jl zGA`Cf!ZdE}7I8u^szhL0vlShzF(M3G*IIcFDo`tls#YuZ;~zh!_3sYaGoO;USB{Qi z>dX*=7*R4}Tk!)Y{Z^OvLAphQ_}Ii=WKsK?J$XU6>t}<8+*&ls<28QBoX8 ze0&r>kptQg;NX(?(u&bf7TXOo2z>S3tkF~2S`Se38^d zNgR7`U}_nu3?G*LcEG#%L0M#Tz814NDV4+|&nn)tWE!WpLEDBV)13#pTDOOeqWg0? zC$OA$@7dlfpL12K-)& zO*I)O<$K4f5C5$_K_vP2?K)#IMEKbXW=!UZw33}|Y^TRCc!$DIh144Jl9m(Vgjk}fbvuXAf2mfgRxYbpfQ{yW~nrf(yK|B-y}0+ zR>*zjKS`KNlsDic%&)Wia)J66$L{}BpoaD_1^=4JpB1RV(5)nZz!wx{5Tr7D<=O-7 z=<-+KD@A62X+t_q16uuquN30`3Je|S0)Q{fhCmP^^p)RyC7S^RhDi2+ERw)i5(9q) zh7NRrzz`lNq#4E4XK0OJFYOKm-U3Nu>ZNGr`d8d!UDXk%j@lLgG27 z&>mo1b`Ye`I8ZtRnz;`&F#Cl>8z?IZ&D{Sx@E@#fNY^z8N%?BB4Gc}c2O9Yz7s3kg zz`)SGBmlt>z6qo&;MH#mntl%mhD6DbE{XtP=oAjXt73!nx?~4%?g2xRXqQtsK;VnU z>_Ev7XbwHlv@bNFoB(16Ff@n$Z@{d7@Mla#4pjPe&+~& z85;gUjv()U7~TQN`HT(LpEX=}%UPi3pkAzN! z^LCUkgV%b&ULpOplTEXtr3;Or!`@6L73yVN7TA*(UmJJZ@+7C*b0`CeJp3c1N;G#w zd;3uF($ZR@HioOx$F|MVUM&y`lde>-X$7|KWz8a3p568kdwCo|quZTPxfgAK5}oKl zP|Lj>Dt0!whLL>CnaLruS8sBYxZlLltJy!N!X{O5#S1&ng2qGs_=N-Qy}Wn92Z_-u z!v!-w$vj=?VT+mQds8m9GN$!qQ7g7sLU z#kgXOOMw}Clm|EHJ2lS?+vJi9PgQVFWf>C78;NOeZP|+L!ydmRABwYXg%Cql9?lqD zI@Lhq<^=3^)`H4d9D3>_@e++7Uvfb|+%Vq29l@4a;TIG(He>~1Fa5$=)aX*3ikW{ z10ecfUUFCQ{ZCsZFW?v0^4GuKO+?whL+`*^D5tq=GNy;4G3QqNw7am0QReVWd-r(! z3<)&bg;+C2i0%qXyUh$5S5diDH>Wr8p6~dM6ON?D=>k^#IpmxmZi0`&HZuBNr#sYx|7Gyy6w<5qs_4alIP%DbLc^DGp#r+%-9VJ`sqOgbm)2 ztTJ}@67CSP*;fFmx44y|w7hh+$RU+3@#P;71k+&g-zOMw7Bm!gL2Bn3SOzz);>{er zpIzOLVRwb|gKvN5`hkwf`t`6S_MKFI#9#*9u~zpIOGz@3z?_}L?u4~nZkVXyspd*U=Uw4Gn}))eooZfZAROqZ>$(vy=uEU>X2 zOV5<_7UymRB^DK*X&hL&Se+yrB^$(gp6Z*QYdIet?rs`(&t?u= z&t+~~D9h~P-&0Lj_a3IEQwx3c@P|6LwGdxEaodfx!OWu~XI>-up}Uc2L-?;h*bi#m zjep~Us-WLeCiTV{6}$Y#kDG((TDGw~y`Wl@2RmriP&3nleDkg5R%G+tQdf2?g~{Ezy!}U+47KIN zw8oj(`DO_82x51Z?+P&%wLJV$15)3Ugt5lXv=lCGkH*OMn+7pDdve{YkkH%un1jzo zm?s{CnnIoZ>D-rHOj7JD(uAYYJ(ig&B8*VoI-qNC%)IQB{H-!wnSxcFMu?takV>ji zM^K)=nGM!K>f$2lsPo*LWEF zx5q|a&}_zgwH_@>ZhW)jse!2j&-$y5JuC4T$B_KQ%YRpB(Sfe9hfpf}lX;k1JhhRy z8#$F^gC2w;=b!R_@q)nveHL7yZE86WC8?{fSJ5LYYIPUwwTsSAObM zYFxOnBVIC#^-Zzsw6~SCr(l_jVZFTLC(K81?ZVYK`nSa{gv{{2I$`i70x@tL{p)b$0(ut)+Z~pI_ z_ceF2OP8Y}3=pj#0Aq&1Se>hR; z^X*12_9TgdH#Vwv$yW0YP0cq9v_F-Q>0q+ z?5z>G9Ww7w(KuM-Pq^_myqkW`x?Ik~iC9+c+Zg58kI&?&gucH)9{L;^|Dj+2j?}7TIfmzKM`i1 zUaWa2Gl(2A30kI|Y9~zDr9ghf2%n5109)SJB!f}UIiI3&)lr_d_c7ps);bu-fcKOoca=KP{xY_CM>QKkqWEdhomdyTbaeS>D zz4=zg4^@!4+-?Zxhl#-N2c$gwVWyJGhM*AQL}(i&CR-!E7V!aHTTVSYTefL>;l&_X z3(DhZv@JL1&qZ|MI_`b)sG>!UBy551mDsnwsTWT!^!Q+qZrB^}y48-kbV6JBHNkoUFs^sN?H_*3hUmSl zrGMMe-(x|#WCUVuxuax9S>qhLKiT_a8yCAc-T6ecbK0Q5v?Qv>6y)Zy|7~>X=i$KY zt0567ewXsW^ijswpKdTM<47sqIF*8Xl`4<@bl^UAJR30;DBjqar798I-f=F1w&|Tz+nQbP?Dg`xkhyxCMvGzKJw$> zB;*GEX$fTX6Oh%GIeL>At&?u7_(1m8r1k-6c@mjVymw^^N3+yiCY@kOaD|bp*#l0C zt0z#`k1Jl%V5UF&qi#%Or$#ax8!FPAB9O3_LYmjXmnHAE$@^>nn`%+&nz$5&h zP4dza&izY81NqY*`Wpfr;ZSGcKNGop3SY-Z{Ac*zC(^&43x9SN{Bnf<{ZD_N1;3je z{F@SCNLdr2M8H8fj(wJ5&+LHFM{$3d@-d>hS-+w2K+5KRG1?1;K30$@2W`6z>#EV} z&ycwcb5)yS99q9&k9SV?&Q9yo^Y?sfAO0+AmBVQb$D76PBir9zrrNaJOHig6aqfjr zqk7F3sG>_;mz?~C$z&>nHuwYRnc64kt(7^NdtA0BI?LF1B(%2g8@@qfo{y(zsqI>3 zqR;%)Wupj#tJ{XUw$lbh-D^$YQ@p zrR1TkGk{{0t(fvZxw_iye8bB+!wd`k#lbPTz_AqyT z#7Mj{m)%~dK`itr+A}Nh^`r@Out)FStw${6kj7u0Oh!~8&R*4vd@lrI6}w+%i8q$3 z7DF_sDMqtXoU^0UM&MGJOQ%)wa7U(?ghdcDSaT|Q#wblUfEqDAk)*FauV?It0_D^?cYPkVc*_TSKRhLeo)QN)muYHoozB8L_l!vmsi6^|zDJ*$53)*eKUlmg z)CJOT$L~Qb;_@%D%SacLmW-C(dI>i(+3DD~;u+RL{jL>CPeQYGp1Vi0zqy z)WHB_=>gkqxFeKhMIUP??I%mII31>+jIdUVKH1>j3Nsh=k=r?VgWO+cUP;g4v&JVH zK!H^a=U(R1_)Sw0%xgD>gL;o6P(m;ddJ~X zOJEG(4iPEeZ{{-f+l>XseaQ@$>VIFBWsX|FBfBX#Si_x4D4fNAjwJFrGgyeDbZ^{o*2F8qi<`hnNMAEPPmiJVe%}Z(PhbqM83`pWnS`JtstLw) zHz5dv$6lH7dDmkyji|Gf=_YO4n^yF)EBt!c@b0zLE_hJU4=wED?5(5$4jUj zwlq97Vdw=I`|&LLlh3d>`B1HI`K7h4y)@o%zPD!IYU`+~kPuRhHrm;%w7X)Ns-|p7 zI>O$%RKkAbCeiJGU#B3PM)>LZBvSI){y3eProMb`(svT3qhencL~zqk@PVRU-2ZC2=EK;d^RYyM$E*;fOI3n%PVF3c>ROu0w{sWD}k(Nbt>~#~+&#ykXj6Yrzkgc6Bi&XJA^XL0l+!r zhSnMW4fukCeW|hl2!@m;fJDdK&>}@3FdO(H2)>#shv*spePlLBqYWUdN^WR{BjCso z9xn?(bCCB=QFVFrT@h#pRd4tPr^|7i4m* z5cgOvNJI)9$#O$Ca=C>5pZ-P=iUP!x^lDL;`;wj>dU5|}XfBBL6eM)LI`sc*om@0i zVS~J5)@#v!@U9_C5mL$q`qfb7`%Az2qS*x}WD&DMT4O>AU03G~eM1D;OjtRr#wGOcw{;;~24H-1L$_7A1pd#DhIFpK*tD+vYUsWym(ah5 zzR)cL_*ip8%P1~^e-C|OKnqajS=?}`w){J8 z_+{Dl2RWoJ)s+y!3f!CfnaP5mux>?ts1!>>@Fw$JA$wH9xN7l+3k})SFJdH#oQA4( zrOS2B-40yyMREV8eZok6KGR&K$Kr#xYu0=eC|g_)+KBPQ-DUJVDE%g6Qs^eCq*LW4 zE~bU8!+(6UG~&+txQ*D0aP{||1I5F+}DgFR6o##Rc}7gja*ARj~kAqO(MWf zE26NYTAC#JSx2`nFu_HK$%T`dQ{Y`y^2h&?UhMwXcKlahlNNlid(Tk6y zGl!}q_eh5*H=lecQ>gJHRpIQ%N9EQK4y#baVUT2c)3hC)-PvZZ`X+H=ZeNngIPc4f zCxXet-q98VafLcuZo2YF*|NOFbTh&!CF6n`>L=ZKg)|c%AI_W#-YqiHvZb(RsgIGw zPkBsG&Oa@(HOy?cY=i4fuw~78XyaAP;Hflp21?B<3_umV-DYr zkw@Kq3ndZ+#lXVQ7v<>A!oH`MY5s#QVJ_Og}2tTC)sSL4({XsVy;G+=aS60q5MGRev~uK)A8k-^ck2#2Xujbu-*g+v_7Hg%k;OR z^Eu-6ge@GR!bb>@u%bB7t(DYhjKp%P?PgNrUsN&`1yoWRbQD_dW23Mf%LY8qNNq4U+3gdAS_qd?;YTkW(^4hdh{f8{` zZ}$lt=1e#ArnQKiXJvYb7siSoeu@Y=|0(MtOjCO%DX*xaQo&09T_KHyQB+58HzKxs zQSYl_$sDe1Z&CLGqd{QgJwEJVvp2Wn+iqnAvpl)G-Kc4`X=(;Lu7ovkkCWWI5o3vL zk9<(7rc~A_-&IL_nT34f!5J>TvYd&y*4V6EyxxMruKD1Bx@pl=#aq!)FxJhjRCX-E zB*ywWS_$>zvfQ|IZJQ+*iO%u@^~6~126c0f@iN?F{)lGZZAH?n1RjF8r=Y>bH-KiOgrv`nV|xYxb4G`5v5$N>#fx!W&EKVdO?RA{tPq=-zY&1Th8Dv3o+_^3tqm1rJo zigHS-4a-LzeZG!RX2eDCV9Av5Y@-^A2ZQLnf^@Sbn^&5BijkZhy?SP@%AHmkgM5C% z1tO&;!-d01t+!IYiaZ)`dcagQS01&8zL@P+C5SO4D}_ud@XlchrPVd*B@^ip!dK)D zcF7pK_3sagXtbgYC-&ZYy)UU}a-beyWb-utK-Sz_w|+k2J*;hV6VsTyTKMLdLiR5( zRIn(yDK62;3Yw2I<5`d}Q|Y{VtsufHgB^^nH})sw1A+0&#sZ$*3TJ`HSt7G|lzI|4@L`A<`Y(2zQjX?3 z%$r`H_Z|0bAcuNjecW{-t~DaAPW_B~^Euu!V#^!(JenW(^+ppy1Vn=ozGMxLr!fwB z)0^1I%e|>3Uvu+6FG5ah!aB2C6BP;@GkdHOX-LaW^>g zGu#s`)VMwN0_Gd71^+SpM*FKIQJpu3Q3Mkis5~X>FPd2F78;i$hLO15J?mB6jf|?v zKXr1%iRH!-ESR!XZ0x0$h!erswGMM1AZ%9XCJTfv5JkWo)aL zQa#!lrNu>^=9d*#bmzdSc>}k$m4P!;BKVjmukAU-?&Dat0h39J6R@S1Df=6eSIh(| zJTN9MuRq#LitVZ;`|Y^ctJoB01oyYg@< zyY7uL&ypd8G8Mu(9Auu!tdb#96v|j;MH!<(<|*?$XG|m#qRcWxBtytlM1=b70wZR0g(zv|y8-`YF;GmO<3r?D}q(1ZK!x~~K<(97zdVL%Nr$TG*myHi%7 zh6cX)85o2xRd{z2B?|bTp@DKx03x4Scy~h^R5Yj}3o^Jt^`bq%`#trRXNwR3I!!1_ zV|P;;)RDIWP6TL_f&h8$XmP~uJW5nFi24xVW`1w3O?c8$&jc+ zZ%-UZ_z)1c%^(on$5OV2764_kkd>g(pL*AAGs@80V6foGgmZN8ZUSoOL&JcaRtS&^ z0?3~bZAXN6=Tf2$4T>WmDq*C8CA5>yd1WW}xN`=Lf_alzr|_0f7X=K=C?=G-Ki2DIh3d zI6xr)8;#7MhbqJ&yt@Pl3Ywo6ociGO+#9{0iSh$l0htWG7n*OkRvu;St?hz=-l`a-QE(U_fMWu3BF=zU z1s#o&RIvvG_OC1o&|3okl3xEXU4R$c!G--RXFm`F#>b0ND`$%WAqHPw{PSkrz~IyUptruG3UlkqW#5xmi8@akc`QGC{_S-|y68Zb z``_8~>On;+GrB1rnb;;*hq!O%$j3(HDXfTTbO&iejpW_tY6 zWVhVs5WDjMSk4?J{xNU#201uCs4|x?TeM`y2pEUrw0tzUt_|y-JX(K^DVaQW+3Cyc z8NHxSRI~ZRJrwU=$_BXR37l5*D4;zY>`^tW+mdRoGxVbChfXwOeoTCDc5$WSU?9!f~ zY0-=O%4Shzlb}?qGdtf2KPq->N`)GmH)y(F*^c#do%;qIB|auzPur5av_V#n*|0m!7ypflLz1gS zM`KJLCJ8U|)%QK~cDQe8!K0k>lT!LN8HqgYs-1H9MzZ}o2VDh0?&e1kw`Lohzxz<|qn)0BhzZ$vSgPv1m@&C7Y2)L8*ZeC*xO3plj3(Nq z7mk}6*v1f#Q4Hyc;Cfywt>JoOhRAxxBQ*R~NTry;_gkOCQOvvIF|N$`wP|%%*zYSA z`4G@!vn+?${0>>s8W4(>FpoWRR79kXCeCh=w6u-qLqQ~rlIk&g*YhJC3hok26r^_| zU3j^AjpEMnr6)8yq+Jg3kj4MRTA?#TN__TWb=;w_$>5aN5pX6 zF}koD+;lV)}9{!mP9awLCz(cd6zl7`^%K3($P6=-YJc6 zw+kl5ylqp3w0NI1xqZL&G9|+|^m0l?ii$3%dybBD%wH#yHNCiODsqZQ>B;ri@s4D( znMAHvvE#BIPNY*#U9PzOT~nSCZf72G+M(})T>Uwwq^Q+4A!^(-2MO5GhgVL?-1lvF8D7a>5#Wt_6tO{p z6%p$1eY`0C?ng@c(3X>G7d}N=h=sf*kl~@U;x?zqJ*!CU73FjPWb|t@Nm5}Co@ z7RQhxoa4FL>Y9!idwFYjuwIs^zPHQq`f9);IpbyJj zy_Y}mlJtZ#YxbwLrwkiq^bT*o8Kb6kA^-b?uPb>8tU=*!mtu zvg9Ey(XAG~=bzH|Ja^ z#N0(w!ZmpvMm@c-7T5AW3H&2p)+MKeD-H*+|B z)v#XUgkYnAp0+@cxIwK~8`Br<2eR?}ZO77{oyE)W`SzTw?K~MLrf1i)m}L?f8$72P zf~dhnc8#Ri>G}NX>Q^zDPhm;lt3Eq^yM1aU)ED~ENNZi{%aRXOzsy*TN5W*jL=^@nz@@#Kbm+(C<~ zEt;R6u2`yLJ!kIby);EKdSZ3-TNe8ry9Jr*doU>#ZjI$R8FkYUKN<&|zs1M1C5f}v z!iN7c5&dbExJW>iBvM^-M;pfW*xO0MOjj(QB>lBO2eXCTc-V#vHX`JD=7r=QEEvYg zZkgls?3W`Yvrmt|{%eNCu+FN~`QhowxnBB#!XlXLv`oqq=I?35d9`;4v`mYr3k;`+ z(+4~TsP#XN!hgEXq&ls=%KqpbME&N-ymnM*0nIi0!oj#3sgHh3zPs9ojZjzZEsFjP z8=Wd{5fg8)Q0y?`u=t2KX6|k|hJU5nXMkzu#q;-83RjmJJA#$9s2PaUX$o*(Q@A`IUpJ1aozLNdpS-ywO`yvf>xO7Z7$>Vm4~Ss)&Cxm zm5H>}kFoD+z5N_-Y=W4!gfUa)ciy*ah+mfGua0h9{v16o?b?B@5={3b(_&eQ?ctvx znHPiYbvBM7OrQEL^k};dtX-ELz!bi-G?($i-nn5QR7XXFzO^88mY)e(mQWa?N0IRE3|dt9*3^--3{(oO@a`1a|0jAEvjU9< zF&Gr7v%A6tDtK$h_`!bjLB%pCIk;%6CIHez5P;6v8@`LcLmhm3)j(r8UWf!6;mwL4 zJE$2{^!C(2H!B!KJ8j|ZLL=Mk3Mv{j?*sJ|VNCpc!gocVsPOHn!$A2tC_ZaAn}rOZ;JXu(P~lrsN4C|5K@|BHM(M_dzU4^T6ojKl zZXYDhqrGOkQ_1}q8GmZ7u+MjIL!I0EnmaA0)E%|#!2Ut`-^b2xaxp=!JeZ|1=5 zX>41I1|Au*&z$gP4%MFMt+8PUkVyuit3t^*M|*5x@M;21XixCI=i2tX!L-<~`#XkZUfGX%i* z^#Zmg&j+rR_yIk>`&|L>eUCRd*g1YA$F(nkP zWig_Wus1q+XPAUXH{z*7*Qimk zq)Kqgi;38zm(hftLtO7PLh6d^lr@Igif=oAZ7s7~7;A=8N_|V>SGk56s3m9T=~#A~ zzPy;|sy(m1HRWLT%GEzbX@WCvJie?1i+Czh8S+;%AHAWN^W1Q_;!XF+^X^~fLE2)T zZK|5X*zgQ$-kuu#QJPh9jl&$O>xQ^}F_YhQ&Rxx;yqTLyeUhh%=xF|FRX(#X*o{kK zGR(`wU-YcYI;x3V3w}g=zqO$_{qh@up6wUD=C8>tZVAQtEiHP(PQ*p6>Y1U}I2Mka zv~D}QQJX(noBMsK_SQs%W$ziUI`IGsLhe#e`>OAQt_nHQ5;pyEcpiOI881(ii(9Y@ zkM~q88J-rrb(=>HpJU8L{M`woEIF1gQsNuFi1Pu6vn3At$1d73)g+$I$nDW%Q1<-3 zn6?yU>~^)3xl%sr_NmM=Uh3RIBbAg^K0 z2Gp56TgZv6*!!;g(lzf3vSd}){5W`MN3XYeQzPg)L;7D{9F1d6r(3+CX4g$|d1mR* zD#p$7g)G9>!xxivvO=g2iK)?lw!1S&NlnboEwqHyn>#eG^S0XeyzJ+^RriMu9@aXQ zteI>hSMbfbO|N9NmChX<==@!*s z=aU_@&csvRAC)R+j*{}}6w>k`y}Il(weHVIog`w^gsW(#`<>Nq{X#daDOO0z=K6cX z>Ne(B&SWE_^Y;19Yi{C#?Agga;S{()W&VP^SLUW*wL3T+ESU#nsVh{m?KKvJ@78LHU-6IfuAit(VJ8 z^s5)X}nX2k0Myp&YqY1$! z)^xH5M-MNp#wK#%IXs}Hv3q;{;RCO8mqy=>5K&u4zUQ{V2q-nxJRerpe&L~_r9rzd zY1KojI0{UnSOP-YE8YgF%#KM1W(u(Pby7BQq;d*eTU^@$gMTCxYYEDEe-43?_=bQT@eqC5I5m|Kit>r zd-K89LpiTj!&dx$-cit6(5k1RceG$mEw{#9P1fcs6~xGR-QMX;u+&;$GiFF}a&_*` z$5U(ZY%=-pPT|2RWzvaLQg5VZl>T^m!_WXO@Rb7tgZ8wf@p3kc{CrssPkIZ%VU`a2 zoT3fP#Lg2VcrWeQb@1c-Xnd-i+kP_kwdq#T&bi$x33GSgeD64N^6lxw;fuu*lb4?j zWD!|j(MvwX{1)-NO{vQ`U#q9C{Kjd&w^Jsf)=tFZX|wW#Jh8R`Qgmw0kFbxtb5;10 zzAPW4KlRs#;YQCi@fi$zj=&T|at;%JF*QpEx5o?lD z3-l#XE&?|-zxD^vH%nmO<2@t!K-rj!Sd=mym*pong;QkE&vP#@J&aDZy&1`>J@sO7 zq24HI1a8{rcM&Iy^hm+nrIDBOw~n?x`uN2z+4)Xb#l6A_2WAYIZ@yf*ObY9>qR7-B z>s9~mdaJ6U7e7Bd-dG+x>96y+DNXqaZP_}}s*TGB>A$uZf9(%Nsd0b)5j>t-wv-pj z$=;Gwp8Mt6*JcMX(y;J?89CQJzBgCfT8Sc0(|hapy%^8Qc>IO8EJc8J(3F))^}2|n zDCG*GiSEu9=k$8AT7$EVY^A(r*sBpsd?Un7>cciPsg3@0e|e8@+(k5XD0wWGJ;eEG z#h;i!zs7Q1CF5(wKwe()(i6@@b%|FeYR&q;A?R06^Z8rHch({dzp{E@AHGIUxrJcfV?4pr{0f6a`FdWN z^sK@oB^c>oG9h&gzQaS4_?PmwRChgZ{p@j>kWyNhR(Bi>)GKDu2$SZge$Ofqj~Lr< z{#Y`@Q0La9Y#?8AFD2dT)yJ~j8~GMLN^$>c;bXH=G-McXpZ_qqkU8SyB21fge&f>Z zE5jU^^7!-fZeR6%D!P>ZPQ|NnzRb6Y`{=zE(o&?vhPe24w%*3!(xSrRm_+nF{{#Yt zN3?20w{&LYGF~0^%X;uq#pBZ2r^s^>48=Vxb5F(-E=YzU38PyMH?Nvl|4SWhU%nIY z0maOY|K8~j?!hQ+esp&+N}C#l|BX@Ft$_ev_svW)CLSGKJ*F*pWUt&`;E$mB(Gc)G z8;bDm&cs0-eX}^20MlMdG%)(kb=!2sc8(6`1)3-@!M*XjQ%g{X-+Fiia76hbqGiAj zqQxLPhu?+^K+6IE{2*&501`Ej^~})S=-v4xkdxmBzVF&?O&%l?fmk16^v&CRl%N;l z(FFiS!Vi&T0v;VLf`NeZg9rqwAw7Wa^n%g$9i*FqY`6c&mH0qz9mLY1MKDmq1Bn1+ z?6_M13Ayn6fCz=Gm(RO9FB2LLVn<=f=xsAG^uMh>!@|AodC_DZr{jnfq?>DyqdH(u@;0gFBUd#y`k83*!YUKZtU+e7qnFbr;dKbNKDk zf)DT>f?yBPSATa`57fus+B`l%Bt;1c-`8l7Rd{*9AqDbyp?Fa+`+bd;AIzE;WFPJg z-`8*jKz1%t)3-N#U(4eMrxdcO4j)h|3Il!?V(rkl9+b5Q56=%CkPnzH@@@+qzgw3I zz4ky(hRk||fbVO0TU!TiZg?Ry-(aYN*d3sz0igyl^vQ}FVEnIN~} zp!^JA_;wilHa`QrCFI}u?|oc%_Bv_w*Os@|`%sBRsnf+KRe>PXGrv(ug3ZlWrmaLN zd+PD8X=h3$T^^g*r8i_unik(&oZD`-F+5^tTOSUfJMsA!oA`3D_3uy)5d`~ArMZJlA~8o%bv1qv0x%IF})wNv#{Cu@4K<4ALTA)$sk}Wx}rLG--xoQRJjK?M+~P^C)F(DbJd++ z^0ZB(e|`*$r((%08RsN9;zi-N>7Q4~N>`{l7pj=jy5PO8@p$lCqaJ+2MOSXMCdESL zrs}J(yzw^%O-1?4jik0D7apWu4(6ZjpgyJe6u*J&5hts$jp^9oa{Lw<#Cnaghw=Kd zhsh&8pA8y|t4jTbEUX3B0>cgT`Wn5gqGJZmTOE7HXBc^YK(L?X$vN>^9d1U%So}A# z*tpwWW>i?I=il=mC(zb*&`G*lG{m9&tA?73K=V-WSPZsoUVCn)Qw-@sSmu>+8~Orb zB3yw>NgPBHvH7d<*`eyK-&h`n-mX%}OL{!((^x!v+>zzOtf4QVgm8_i(4mvG%Z3uY zCCBOp6IrI@b1I$$(LR_Cix)rVn(TgN{LY`CyyGKXUR@NOF6VAW%)_)7jg0Be{W1K( zEp>VE7)^NBHwVmw@P`)(S6^6BkcWEGK6e@IBR%VTAv)+hQKKcB)e+U*p@jnY&7CMr|X_VDZ3^AFQ5e<}N*`(7~_cC0X0QA?}TEQ?bABDt5gZ1&4CrPAOB zm(0&)dnC9?kIVVn{P9eB|8u<9Tro$It+eif%9C*U1-#^wX;;2zKW%zf5cKQI!tb&p z!z$*u1Y?F~UXmI)VI-x}9@=aeS*PFPsGP~mPU*-$2rN% zPUqVMuB|Q1%AZ;lm$a)>5Ruikc$D#kT-P}2he=d0ow=zDi38QA!Y&o=lbnwqd@9q= zl4hX9`w9PiNo3`k6&B&u^9hWp5xG-kb(I>@ega{{l>%X&_kVbY)pswo)o`qZk>VGv zAFrn@fpdFl>djw0omDO`eE!pE$w0O75$~_2Z;hDUVzW=HQ9l5=vWW^C)`|`lH99=0 z4wi@&j>AVONvdXk@;xzNeUX9?!(#pUYHkiOhhNLSDV-~>Pl?8lj|&T;iW3PlF!VsNO_=eV_C}c*#y%-_c6Q0k?{haGi?Qi3{NPI z_@+Ar98!|}O`_OQa*c3O}a1 znnv^0D^7{WA)-5PB|o{Fr^Xn7>sw-88k0Z0uCOSXIDLb4XwCK&G2ODJIDPx_3BgOv z7t=bM9sQLjEAQ$ja^-(iyY`@xB~9YWF!ROoS%Z}jrxm|@81&cE8O1!cXUNnqGfH7Q z-q1CCvtp;EcNeEvMe%!i-U?N1{vbj~I2I%S=xmEvl{EP!Le{UvbK#hxgT#{*#p@Gi zn6fJs=PUB6IKSGyay(^;OB7yhYjCdOvvspIsq69f=0owWePTan{f=N{Crx&JUbCqu z@Gl#uD!#E`MC6uhjm~fU=Nki}3j(08-l3R5xoU*wH~#a{+Qn~dm)<^LWi#|VIS~G# z`9GVJIhbMwe0b6P7YH~4IPSocf^Y(MXB~j~Apaoh=m=zU00{jC@J!L%7brL=6)FJf zg6vK_Kph>3K0rba$U6h^5@fWsy8{I(e9L)4ATMemBhB5p2as@NzYt+?PmJzA?an@c zhJ%bGVTk^xVCm4@=ABEo{p(H!TU<8LjV06$QoK;9DW z&TB$_dOkj2aDe;*2_qmM0mAUMlU4r}z(9=-l6(XpayNj;WTykU8LmRW`N7ulLi9`l z@O{m8JKzGB(?A*k6|bV-utE*b4-^%U@g6!i1qlb4Ss+sc-SE(3btpKpG7)67xc}1g z0ZI(nu?6(DI0O0U`0*AQai z4suq)kqMuWMu#qx+qv$@YRbZ3Yml8(phHDa{%2R1zZ1Xp#=(&RFQ5<6XOAwHgMtH& z1esh40Y@VlAmB(15mb^FNUq!&Euy_~e1KmP2ET%=<0Sx5<_O@?NQRxm!@s;sMPVFd(Rh-`DQ`LGuC$6x17su9(|7`E59;o`z&PAeR0hb_cTdH<=D}IJ#sG zYIKk!Ck#;-3!KXbF*}f_3dAr_>=3$WZs+K5Ff91ifU;a5K^rJXAZEX>-68YUfL;#t zEdt~e)OX?_+m8HL3P2=ygJ<7)V(h_j0N>!>ek?n4-;f%cZDNB*ekaWVBq`hc$H8*m zkovZN-~E3WkL|LG|E*r^tj@sWr}AXs3*|<93*KUi%A~5d1~clMtWKTF<*1Apy>6BvhIdu3rMlCB6xYR=?PVXC{bRNpbvchCdlCdCF5mWq_hqQb(p=?qx8n_}S@ybHElS<-WIJmFMSW>L~w z2Y>&omstGV*dL9sE9RONUzd*C4jrYZRt+^ulAy}1kt5^q{J@$tpKlczayR*WpT);} zhnAgE`G#Opr#s@`-k>|w%pMHG$1xn!LP-0^P0JaWxjs<#6|sGA+FPQ^W$3dFLLsN|rD=vUx4$g3VRR?yEY}HT0Q+#930} ze$pwkt0M^AIrW@}^Q3v{)_RE(so_ggqU8LEKCtv4g}E;;srnZ~Ck!;x@!aR7Q!YNx z`hHFE?LBrz7q%F7w*l?t@#H^rCq3azM$X+>g;w9BmSi2I^H{o@zkSoYAQtD=@P>r( z#hXg)uU;A1u_z>L<~s#GX1dGubdNA!|6R4J^dTtQk0|Oy`wefo8yRwo zjpu~E%7sjiLR-Qo&BA3b@W|58=~2oFFb=! z2Ss!v8pXTm-cCtd)L^uqvHm*A_y8gJ+KylRvF-cVPcsj{$*cL5B<@8)Sg-u`)OgIRa%s|gv-6V1h;W~0+;X6GyiXU!j7u`a zXuJ5kML(@mgvNs!=OjCe2fa$xa-5~lx7_;-AB@J{o_C~>k+Mk7=sdikF_&>D2;UL* z!zcZ5q#w1ZRalasDYvM4r{W=Z;;a=zu17+c_+p2?U`jl+SsT8;QckAStT+=*o)}I@ z#mpXGY4&}&ci`9aYVO#y_Gam8=^?_W8VC$aWJsPJS~-qy%t32Tu(TF_+CJrrxe;Em zu(R5gMOVJ#cx*U4^X9p_p_fCZf86D56v$;{?w!zDoG%q=@6VG+66YM~_*=V}K+rZG z`6`Y|T;|n6WY>y0DP0l68`ir$M>IUAoJo0Z;yt=}ex19xlR*yp3NWv&o3 z!glp<0wAOOr;simQf>e5DZdAeu=yoGr4jfxZ(RQ;nFO*f!M{Tz{j>i}1~ri1QzilK zHx2>^w;(WxWC-w`-R&JhjgA1ZFdXvw5KZ3>2?y8RaL9lNP2dg<2NfeAr1>CJ-T7_a zYv~XmxU^owjX}WxfB3*pvX#>5X0|wtf3wr z_~gL3gz&FGtb35r0fQq1<<^5x`XF$yc2JEx!O|bZYC*FXkhugA5&^qA!07x!$lH1- zIGRoyW$EA`lmhpLAb|*|kI zASzFRq9(i9FQ}~pbz(Nt1kf!9O;iR62WkbRd<_D=?{NtO%pa&{#KZ>*2lGM&l*m-R zeZEw1@UkOIlS(57%E!U}+{&CkPpheC;w9#&-}B;sEttY$Uv$@7j38K>^y6p9qW1h;CE|XoHzCNI zUQQ^6+x?I!X@q@DGH*2Zk?$;uZj8enb^evy*14sD1Jg?bq=L3j$_PY8Xd5yWDJrkh znov$8eT+)RyNXw4CM=}aA8TYQQT_-wJwix9PABS4uZp6h%_U+f{F8RV4u-Rh8Q3IW zKe(}o6yAsZRk98!a&{m37|Z>_nWxt&?NiUOp7Oh@CcK_jFEmOP)&})nBlMj+#Ux3V zSw=~SdN^=#?bRpqFP^!0v{?IGeZ9vqTS_d1uu~FK9P)=DUwuJfv=%GpjCR9cM2}T6i%~F_LceQ-T1&TVx`U<|xz6VH3+;-tn;r z<9v7NveVm~{Pf5(5>rGJk?Cho+nw@W=aPA-Wp!S6=zTqm*lTs+)|gH9du=UDJHrq^ z!8L~YG4*Feg`V0A_n4YQG&=>T=>m^spWzvf8@_DN_v<&AD9?+ko2wQKu}m+2w#wqa z>oU90n0!O+XLXSwDRK05Usk1S5xEY@YL0i6h&{wTjUBDKF!EKzlulUS7)_;~zpbo< zjV)A&MOb{onXoMbx85$4xb>84aeO=lJICunqn-;2iAv0P^H0Qmtj|gXtsF^wIjO$z zT8oiOG`iwGd22$<@5ZDjL9b?m#TH@&QvGn$j@<93Z}~v;G30rL>96J0M0}q+wmA%j z0wt+h6koK(bFxZWsJ^~XT735LcGs^euQRvpFGt0_`fD&xcV46Q@$Ivibc6odcGl&# zpSnE))$mk;uO!s|Dl4_cNIzNsq=7@J=r{+RH0Jkfd_GT-uv}!SD=4azK6lLv@NRtZ z(}@cuRk8MWnX32VmL_KV&PJ5++VI0%sz_mS+p%=Fvcndw?!S$vHzpO|>MqO3IK?+I z^ob{l33jZzTr0OI^S#DcH^YVIlqO9hPAzeq=7o9&G&i!a0Ul>@jxZfBN(c>KY zi=3o_MsuwRUPiBnWBT&Eb;h5QpB97DI@>7Igm2IkFyy5LU7^vhPo-$~mC`PSuSb{O zAtAYW_LKg?Ac?U^LtrKciBbo>Mfv5v8#gWz{Cus@g~!O)ar}t% zsgClI3w0j%^&`hzJPe-UBzA8gN~3-8*nd2ES$gJ>yn3Mb$Z@vVa?ESfgTaC3)afM0 zFm94!FWofhamVh}xHMSZWWPaA-)}eGlxv%DNxyR?d&Ae3{yF|DItDX7JJJ9ha+xM| zN6#3C<~WC!RAGjLul~ebKkTn_OOfumI5pu@?{}CiAund8tF8(d$fUId*kOKx;}(Ps zbp6ESD&f}1e;X~KO7XJ)rnqWd=*$PL1djK;7-gT7<($uWSO0QL{~G&&}8XDeH;%xo^}JgJ4bNWxQ7nVV})VsZ5xZHu;{UEU${U&Q3jzF925Z@NklM@;(o zR8!FrFT^)V#dOm+bM03yCIwYCbfWdV96XHWFFKz3@TVl@n}UbTf%l9bcW?B! zdlBCd((t=?R3`9iOJ<$I`ba5(PkXsvhg@H|R!}WXnv}i9H`N!~+>KsR_QZY(NhXgP zylrI%ZKz@jB|EDRt=N{FiIFi^Xpe6W8&3R7z(MkJF*Bfnr6=c6nSOU}2|j&ueAfN7 z$5MxF`lQSjR_}OQth~o>cDqo6%_4ZtgorP>T93f}LUYA;;QJeuqn zW%fu198`|n50BRJ#)LHmrqui+sz`a-~k-v__1;lV*50+RGW_zrw|$Up?B zI`&z=E!#oLpZTGryP%oOLEzvT9-@9E2%piYi=B(NJvg`%L_j5ofG#)(7<{w1E0l5u z*%WJ^M+bHQ0#_zDvf3!nmZRG}n(i3Ia^S$?K1-|v{$l|h4O_f1^7_ee+nHbjH9AZfq&h%9`@UAYHF;#wR6(F_f>^qJjdmL@0F+Nq5(c1J z+i&AQY6!?@0#zvhZvx6BKn;HoqlF>MND2K^r}q+6;2^%@R*g%mJF(3ue21a%+uPwgY?HMjsdM|73X zzO1szMt}Wlys`)9+?=2x+3MUcEANxPBD#}Jwbbt<&MHo~Fb*WB4Ovet6(*eU3K(s{ z?4flrp-*ALBJ}EHiMoX+jcXbv*8vNlArE85i%Ojfniv`nKYk^5#7n)TdEm{dcV1RE zMMsMm)k?c>I%D4JyQf=~BuF4 zL8o~2TCnG9l`(T$c|+=#+}8J{^RR0CX#?>;;NjkN=3Q0RhWEFXF|^oPH2pSjSkhBj zx+Fn##W?kORbEt+{^MCrZ>Jea+7X>`JWL9_VQiXu9cnh*+gCn2FKV9aAvrIf?O;q^ zABxR@tI4Owk$md?MB9?5K*9s3=TGa;xMh8H5k9v}bFz(1@iN+S+2a|^6Iccwd zw4)cbNNuXY-M?{d!?(7qM(fr`r8*!E23JW$~(cWYZD~ z$VOO5V*9k{jn1^P$XdpDL?awS2pMYsJnmp_mPnJ~AtCb%@XR6$vN>LJmuM)BCxF3J&I(q6>e_8GK z8#CNE9~UO^HSivdlZ|&fHRMy32-UEb_e$w^+C)5q=Un2JQ%6v0**=n|oY#9}Gorwu zTqNf7eAQ;M!d~b5)TK#jCdXp99S)_q{_H7VOU30_efXf-Y=DJRal#BiXG-iz77M*Y zq5a)G7Dj^8ua*p~aRyxs7B5q`&iv5owHR4{lQxs2&qeK1+Zt9#{#m<(o4Bt1+iblg ze-6C^b^HrQVzSw|!mq>3!QL{m(s`H4)6KpO&84uYHBTLhNtw7Qt^FL&Jj7^{7#FzVCfKL`#8scoy-VDk@EAA7 zXkVZ=>DoN*P;TI>)PT|<_PXfo=dATp*?4KsES2~o!t)!x9IF-XULxICkX-qL!AQ_i z)UA8FOw65&uk7D@}X$~q0oD#rK1-s zgoN*P-^z!kUqylc6Y?PoB|&t?1QGCV4-5srFb1`5@)#sg zAKHm@c^ML#OS+Y4ixyd*AM;^NDR>72QnKza7^=q8&inE4`Q@@ z$Z7--y=B22=5BrmW$s(sj%;TFdDNh3dj5atgIFwhTMlQ}s+*wg~LTzo1c$64s8z7mQvX=C^P=+c=(a^Hl?f|&{r zeeSo6rNq26GWU)>SYLBt)#L4pzt3fU$R(%Vim@$}P-NGHKaDnzkNz?ej{En=X=Ek3 zoWtxK-$O1MN-SuzyDW~7_i%bqrtqt1V+MA5ycS$jsGPX>{GA3BZq7!b(Q_UT-M=5g z=2!hITY7?CEm6zkTKf`_USLC>+o_Owzf>~jhH7HiLfHfF68`U z7@mAoM)D$WcvxYPbr_SxeT+2nbEBEm%Yow;QpPS5I9{?#Plzj*dQuTTa9m2c{RRIz zL(2feDGW&wy|7u|F~Koe?24y6MhVA;3_Lg=RGX|s8s01C)$bjX_sXN@u8`-f8jY)9 z{(kr&M)B2}qQ-gW%RjmTuA4;?WyMaga?bRgjn&6mQ#SF;>vYOeBy`Vj$!M_3({6uC z$1Ge>5o0iA-IsAO`ZJgD8T@;US`2aQ*tw6zY&T-G!|=|M9^yTw)_k+-ucys3qF0FZ zvfR^^B30`0mS1pA+HzQC6+Qa-80$B_MpS*jQF$*$;m?$%yx-{^v04r_u~}^n%?`KE zn!GU`WD!%;b8HJD9QrOg=F5g%eS2+YY00_3@O0$*H@Trmb)!3LGtZ|tLN{V>tkAV> zcyC~^GHEHbOC?VFloXK{{+hD6jL&wGK5Ja7>t30eu8a@4+7UX;@d_^atOPx^Ck2KJ z!P7&I$pU9GvwzS{(>31vjTN2w@)vR3i2>Qil)m>Oa-}Mmf(dVXTAn-l!9wy$poDD} zO%k?#$$j{IcJ19LH5oUnOrcA9{v#feok9iA(wV~ZZQMQ?J^z_(b0=>j;N!+((YHwN zyfsw8-(w>)-3uj{vQc8L@t>#DB4^)HKn zY%5&3Tl(`xT|?ZJ({mb;vkG}`qu&1g5%3=`v}V%B`#P+M?qU~sYHM1`+xohlP;wjQ zc4T-;r*mTZJfp*6zJa2c2~Dz?XKm=M9eaOurKZCSqa6D9ZL-qmtuL(+ z6zRBESh}1nF@Lz`Sc;+AK#^HmRGrx1?IV?Mr22ErN0s0&?YCtmg%AQMUHy>k&f|2~ z*|Vme1j^^OvWK2LT7pZMr#j3`e?_&SEzwrvwpD!4=$f$-F$JYUv_9WC9CtqM?^XJDP^Zr5k5Vdl4u zNy(SkYE?{I6EoYS1(R?pt~_)uTMZ*z`ow4b>zrvM|D}9y`*hoTtWTSI8lw@fWp12~ zOMH&!z!Q66wuonF*^%%*@(yy~2fq=rgQ#7$fC zP)IV$Gzun}-yaz%sVnYLdl=nP#U(*C%fxLw>B}?9XALUw8XF(h?5Bhu>7Vte zFsl4v=1OZDBsDcM2*i9&=8Q4X&d|qpqD@4AeSl*0Z#ApDT+i$U6UCX0(>aJ(DZ%;c zeZMlBG|0MN{2F=7Xr*9m#j{ddLg>V1oIzys@S@%8t_weIVLqO*{R3;Jgwc&}Jj+h1 zC$@a<2C5yrog(1O7{2hVy6jt!{?O!Gg_D$`C8BaxE#eBJKZoQ!qQ0nwb;vtk%}?SL zy5>Z2_}47ItYvZN1l>S?yn-rQDw7W%PtlT%VZTPih}?_i55p#3_~fOi#JO(Mu^8J$ zoxST&O5f!9)eElp(M~A#6crZf$tdo^eA%e^DO?AeX*p*M4N*962uX!djq%X0Q}$*! zq7pwfX>M1v-DI-8mnW7MTNyg1ceJd)gQr30&~c(jZz8YfT1@Rup1dyvNRRV=Acc*& zzlv}yhsROy!-CK2$2{g!zWYm0U)!C(OPQ59Ym~=pwqT zXzE`vrK!@P+7RGnnCPC!#iRO>mZPpDVx8%xa^YQL2J&FRab5?bSWT`8N3kasO;mPI ze{8W*Vawv0$8(#n5D{#L?lF!SYjaw(p}dN%Sd5U8TOQ3^f+w zO=6I>+%B;9qj(vmzWAuNpNp67A}&Fd2T=f}La=*Z*Wcscld6t=H@$XwB1%3;?X>jU z2DOJ}g<{|T`1@+I8dxyIzp6sKJ(aG8*Y9C{O}>kra-B3n;Vo@zwDXf>ra;!qukV?Z z{S=Xps(l&Eno|5N%}CSB__RK^J;|HDxV=&h$02Bz?Ry;p7`UJM=Vl#-a@n*8&9dq4 z?4nsV@3{U)ng#8a?LV_QAkD&umR*km->O8tXZ<};a%qPXhZJg}z>$p^gh8ac4<0Rc z*<4H1+3(eh7U(>8-!-8Ozdids`pE(~niIWqbfid87z9^)^`ixNw7734ew*e2;RjOx zj~0G_9(wyN-uCSIL2&?}=zxIlyLQO>)xtmy0cyDKfk#t!qb%O`>_LkK1gQ9gK0KN{ z8wCzTjUe_wFd>j>)==_p7@9sC1rGAR3{ku67&cXa#U_qDyPjjbUi!9gnZ}f!*hk>rAKq0@`U>8~96Jq!GH9oLuaB$!W0LlZZIS9z1 zMf+Mr!p=vY0fCPD;o#O{RHHAQ~6ViT>HT@ul-`8$Isug%> zkkkS4D&SCcHPERth}k2PdLa2-WXH~ZX212;z=8FHCbCeIKgfxTEE_8Xl@kI(O9DgL z_^r`5`-DJoq@X_I0VWSa);WNhJBq#>?Umae9C=(rNwHukxpQc6kOi_?y$}Y{X^?%3 z(f1t?LHn#cvfT%G(f5JxYqeYF4Ga`#KtP`MXc|0}l?PNB&|op`1K-zZx7QA&MnKkr zfuTw8P)3J=1Sn(<5x5FFgMdntNA^$IXYIg!4|r!lMh1|?KyLiLXDv9&H|1}8!}qni z?E(SdLPikseMi&ap*;K6(jhe^$j>dh*`R6gP~dPuP{#(WE)c$eR}RYT&_sABc%W4R z{I;f)_O@xPn-=01)4+?7O(JFsJqQMRbL4M^xR@*-NzCAej$_YW;g~3oX zYcWo3AK(Z>+5_;A|KDvtU?`Vs|4^=*2}1{#v*nEyt`0?nCDU4Zv z{idAmx#EIA!JA*I1p_0@3hyfr+Dc(L^PT(EJ7+;?WN7H_cT!O_#OHygWU?$=)X1Q1 z9?Q9e<-HJ19wNpzd}HQi{-VO4Iicv);OX1-Y=&c^MP8S38}i)s5G7IT6~E_xPhaHx zeCr5>%WI1s!}eZdss_FvCx`JAi@xhK7*9+4cb}nl8DQoiNQFK29DmH*aRECc`r`%0 zH{(;I_wulF7{iyfe;9pg98}UBY@YCcV?v=olJ)KOi1(c%pB=+mt_SrV;ju5fW&BGG zSHj`Sl$AQJh2@7UX%^R0$V>e$A60p}f}z0c_I1^acC~+nt3da(Yn(oUH~Z+70PB`m z0&DRPFH)zyg0*|RxDJIaRTy7*MkQ%1N68bv(6wh%I1ctz$4TP8BYGk7><=!7gq*iNL8&T#!uW^4u-vn}*55 z*N18Fy`)ZF&o_ulI_r1{3E2q z6xBYgaMZKJqIsc_?og*+p_OVEuGf3pmAW8I6{1Urk9-mlQ=lB~{5t+oDZWMY#kA`+ z;@>A&V+gDw~`wDyrH5OZ;v5t8TX9Rr*@$x zxQ$yA3x#bd&i&sQKIFO;;`gyW^N`Pn*S70aUG;V(2g^y})e^QZ6q6cF># zBnxKoyK)TM>pXu95?%v?)DcjIInb+%B5vb-aHj$cTlEe2aF+E;@j?43`n)GLK;q<)Eg%U(h zbMzFw);`;O=b^%5dPa@efp@;=kp3g%BRt&p!3gPvsw7v}QtRv43!Z`c)*BedUTgU{ z;WhfC46k?Tn!LJ|A`E9=BwmR1er1jQHAh$;S8_7jC$T#>akv?th+i?OOz7}x3e(1Z zQa+Tz^ue{BtonA<<=m2snW^D@KOWr74z!>Xk)d#HQh8YgQ%$@jXK6}V+Zp!fy~$`j zsqG_@v$J)QEBS53@~5tj2=R0!H~qe9%&Vi?NI2?X%^Ln>d~ND#lwUlYA&M{Yue7(d zCTBUONJ@xW!c(O)gT$=@yjf~`WkbRIJav|1(-leeiB~K=!s8#gbuHRu3aOkVb3XrI zdZ<+(8>_?cR3@#gWl!ox{Ktk*?!QfCsg$hFdA3J*h+P~`{*dw>lbX%|V~KZR{x`-$ zf)B0EYz^lgO}uVpc4?wib+b)S>=!pt)4h;;)a~{PX^h_-g;cJHe8D}d7+95+faRihtUQHw%8`c zea&g+Z2ho-jj_*-`G;|y#9@NrZ>t9`9b%~j{e?mV{Ri9$*lyRl<_Q^79}^ZHi~iJd zC;U^wJdUsv*XOx0^Y3o$DokCMc*r*-o8J@V)d`x^pDPvnbDx^MKH5bzj_b0yRg0E# z8?E{Y7gr1Jp~1%q4DpXL^bBNDt~~2|jn#*-Adpu-OWvt*GoR`?YXX&Mx2jr4oO!w) z0sd;nsY&HWU({U%ek6{+xkWD&^h`k8FO=B-aeni8PGaAoh2JKOPwUHDzUQBOP=V}<6*gR;oQG;GMKeiH!58sYdO2bE3EYJY`OviF-NUA znKq1+t?+}A^6S1M7*<}es4z_>QB=-v6tdy1B?s5f2Cmad-u$cw!Lx1Wuo3`GD&k+B z4MkhB2hX5r=AIhCdEgA0|f!7 zUcWcZ218SXqrkWP7-X9aI8+`#&<^bP>>vmG46^*$o}FXS}X1Ml(DxS94-i!9k5jBK?|Ca9RX=~&y2B8YI73#(5s9%0g4rx00Y@MG>Rtvo*0pRCG9UuL3V#i}{2<7Z{m>nZUr zd40&KMlaFPEC4hiBW>zCLg+CYKpnEwpO8B%V4t_dayCvk^w7)I+2#fY8{<&p()jW^ z!ffJ%GV}M!y)iy4KL?wfjAjQKJXLI2|1$q^jpn9ri}~~JTAAR+Yl>jLtjJd#C82{PD^!K;EQQ0}1u*jc9din+5y~nqmGtK_yY~~T4hZ+7~&#d~to9a)OyBe&o>t#r{7)epIKF%Z; zz0oq7V7-Em*U;)06ct%iKta%T#T5k? zWd-qtxS%d5_&^tN@rC}szdEOG?&-R)sDD3v%v9a()79P8zpn1CuKvhfmp$;%wTJ!t z@9+G;^G06((%Rqt%g5KwoKgGbKWuaAORjjy#8+=Q_=?@O?LPcPJFR}vcC&6;^TeHv z$3Fj=U*7zSFYWN`Jr|wvtQXw7?v}~z&z$-B?GNnQzv;kFyln2Nb-tfk+ zZFtT(^S=C%cRl;sm0ObQvu{|l@%Ar$ z?#_qj+;iB^`!C<~iH~3OfstK*Fz?YVyB)LV4(oS*={sL~%~3D@(eK~&$nU!@T)g?4 z`~1yi@7?v~tL{JL@q2&0?IG7*vhdBbH?DkSw|yS|@ihmp8oh7(3om-cmv&rz!pZ;C z{fz(mx5uWB|JE)yeS4Q{pWXkH*ADFd`kv*B{&aNKb>Cah-r>E=Hhz1@UCz4l^ygeZ zbgv zw|0K(+?{v()!*K5&jHUna&h;iXMJk8XOBm|vfbS~4gB<3H@|NEtL{H|?1p#V@#~Y1 z-*V5jYo<=V@zeMH)BDc(&&RH~`1rlgseSjwm%nr7mNVw>vE-(|t88=Z*RS9B@VO7% z`=$T-?V3BQJFd9~ z^T%J#yy2RO7d|pR@ksWj&wc-`D|R@1pHF;muaC~Wxp#KsjOTrFo4z@R^}X_io2Gwu z=;QDB-=XYF55MvcH|}-)`KMp-)8&8vgSS6-)fJs9=l}EPpVSOOdVwd3+*)5%?^?i5Co4?SpVDgr4 zet7++7d~U#ZN{GQ>igzB`_#)py@{^ZmP>`^6Vsv-~@M zI(qi8zj|5!&%S!f$97$I<1r`iQLR;f@!LNfal@KBAAESp>u!H+;V1X&9-F*x!{wv@ zaPRh)Kkt}j*}3odfKlQoaeBwoytiI{gosZt* zh?o8Bv5U7nckYY#y6vI!uX@FbPk-Tp`ts9{|J7YDIe*vtp7`kI%BjOw?0UpkR?Z*( z>2c@Yx$h}I9KGz?6+eFG>H~ToJLa%Cd;IR8XP)-$Z{78t2Y&ti2WE~~xa5sr_{lHF zFFyRzLw5Y|Ki@j*?mHhG_&Kl3E?uzd#$EpH(sN(6_o`>#w(H?{@3HqC=lmoZJMO)%-WXqW&zciY*!k@{Z~5-h)%R`r-C>vCcg+iK-15D_?_a&T`8s|@R(=r{_PDre{JHlmp`=mw7WK+|IIyr zoBhq4%?HGlX+B9}Vd(wGuI9>AmqEAMTa8;(9A6uD+_&RzyXK4GLc8I=Q%3fG}PrkAZ_dVKX zCp1L+g>ks=(LTG5RNEPx;mSrSdtoapG+}qU@O)k2%0?-BQTHAW27B6F7$M@qR+ZJt zwry^1I`_1TI~{!A+vU~+12tl~#WhN}>e4nl3oO>g?XssE5`Sj)R#W@Qs@|;&^6eHG z;RL*0;kv8R?l>&$g_JUP>0XppmPBW3_nt_&Gf>K1^f)Kygym~@mKOFx+GSUW`L@@~ zyTX3LpO-x>YfIU?SW)({km*uTg?7P26fxodR@g2@MQ9hrwCiah#ZzQ|%Hg6HFXwXn z+GQ_awprMAJ@tUmNan$55$u?y_rP3B< zKY8w_gRjggJT8BlTO%d!s^-=R`z}vwYvi0|_m1B? zcc<+?bK|M!+`sCY^TzJ^pZ#9&=(R)Z&V1(fI~*`^?>@U9d*L^~Gr0OcX8!H|hYs0z z$%jUc&0fCEzWbgwZ=Zd>{>6XX?u9@5(2#>t+4-{s=n z_uAw9?;W}HxC_pB)=w91eD{L;cAN9bFRr}*f}3W3d&i%?{^&uQUbWq?`Y!y#TMqdA zRj1!}!l&1KZ0FZL=dO!i@tf=Zc<^tpKjcTZ9ew6*mu>vj@R_&m^rQ24y5iukJo9ar zzxXY0+4qN!%|7plpFT0L*CTfwa@jqfID7EJm)vmXs$IAJSjR=D9yxQ}V-v^S^PSt? z@Uy+Yz4+xjU%TSfhb%sAC_ zf3x!Z@i)~!@~pY9{_d7v-*oNGNA!O6*yB%LFg1Jc$3M5~W2b!ZtAAS9Ur<``zH6K6k<99xP_R2S$vH$Qkzy9numhUxx zyPL0m@4&JPCSLwT@4T-(d%N23>mL1j$L0f%IB5UMv$p%!moD1)llT1ml;@w`b;)CW zm%R1PqyPKi1HOFSt6n+1>U&>)-+S&^x##0oKfLMmL$+Kvy=DD*XV%Z$cJ8s?e*V}0 z<(r@X#-bxfFMG#ZKY85OPrT^X12^qB_?3578pnU=yhjebdgudF8(;SLGcS7L{Xd-b z)@{%J@P|*Fe#z*Si%z-q`5&75x|1F{?lVWfchN)d|G^QR51u>u>b+0Ca^#rjY+U^F zmH+a`*IxR-^!iY=SueQt2eV$kvg6d+-S@xy3+Env_c>dxe*G)n+(g4nB9s8_wSG9sA9`eZ%j*cj0jlY&h@D+x+ZLul@4Ar)+*=*K^O`bIXtZ zuRT@V!(_&7Q~Fb65765#JIk83F`S6<`*ccw^6bG}XjeKDz}$BCL%DYQbV`5n?5*H! z_I10`@pP=U3!+pBzR7Jn?#Z*K+xTs>a|lpv=WtdDuE~F9_Exp|KPRrIJ1e#JM?MM% z#)l_HM#tC8$`*{SUfq~%j1M=aI#zbf%?=!&m>y}Y?&!=$CZ>mmha2P5+3L}3^;oug za%gyZbYeVPJ2Sp!XmV!#*wD;$wrFZ>XliXXmj5%cW@5atE}P`jIHqm=SZB6svT;%) zTR%EJGu6>q+4@U&cHHpLBwyW}|C9eeWsfzcrbZ=%{x~69y_)}!WAzx0p3Ur)x!Ib@ zAwGQK%*1qKiekqa+0=%i;YQZjI6OAAKL254)mSz@vwl@$a%yzVI3FDw8=A~EG$yTj zL+kl#YG`~UPdqugX6xuYgkF+qa+-j7^4lQ z8tX^%zf|e0apKI-7!_;`Q7pnWrmX#krnCNRUN%2lkPT#qW`|{mXA83J31T8>e;evd3H>;B704CY<3(yFf_cbL32{4Rs5NYT5!F7!=t0aqm#ok>$92h z5n5$U95vXP-R zYiOSQAN6!zfz@M;jp~)@wG%Vex%FJN*368KnWC6TO9u3M`PQ<#tIbmEchf6AnoGQD zW^Al6oiYDO=Ns$oAFDw&JvlVeSU)tmE}Kfq$+J#S$)1)<_SCXtM@AWWRDt)`TgFOn zXQ8_z6DN;nrlC^1F_b$So|)8G-IVcc3Qak&t}(s}O`dAxBhx>KI&Iiglsh@H8m%%V zQ`N^B>oug%fw74-qr*dEjCa@J$;O&d71bEY)(;J9P>wXvzJ{s04P7bp)Qsu+WUkmv zYG`<7ngKqeku$`g+_1J76RLrIbGR`=`9m5Q&0G_cBkPBzhG(cqw?aGe&XyzIjJ!y2Lkxk@{ zFq3DT$urKhWSnW{*p&as5T_9~Is3J(!GrTB=6v~{&wiR%XJz%7Rnwa`G&(XdJ7;A+ zCo(m@Ifzw+brCdNiuK3%#R_*Z^o!BS%NDoRo2pXNc^d&f*QnO1_TiAaarMyX_Xu zV5@%e3NAmDwdZLTsm(GK+Fg{^W0(2{^(wIO^~8pL@5xJVEw#6_IQp|Hs@FrTs>RoP z?GR+JqiTUH`PUxr;$Ks+QeCU1ZOA{X)T-^j4tDerI9H|j6{YuC3?FFQVjS$K<+0~l z>zcm`{ui~do`h0qdYMZ9^1gXqc{a#%Id~&U{l`zmTOq9_7qQI$qN1B2&bcR?3(>qB zjjfb-eDll&Wi$axh35+T6opsN=0bUM?ag%&EjI0-3$4GXJ{#+K9rM`iNinU5mq!f& zHXSSXC(!C_A{6IpFA9>UY4UPJcN(47Omvsgc{7Wy7_DXOV29{#qjNb#_ZXeGgXmtP zx0Y8mI`1w0-e+{)SE6g8?Q)ZSA93{fSy5W2No#kP@?T9_yNi_5Cav8q%4w6IrID`Fq&2@;`<>z{h7&nu(i93v>MkqITut-etu*r; z&1oymoI!Ki>Tdp-Mk72IvApgTt9t=te7$0&nMY-w+UjmDk~wX4x9Gh&ZPMg}Up-f` zx|vsD{=3z!fG+)R(rncfvhysKOVgc~*6f+?ytHONc3Wv%rSG=7x8%3F+bOe^-fhwp z!2Qin$s%Hj%sq!s%nRoIc-%f5R1=~ zS|Q*IrR%lA*;H^kFTAPZy?NnH74KEy#R%2Mtmbw`XNC1z&F#=Fr>*98ik8zRoSlm0 zv4?sQ7?nwrxoRcI7Dcui0x|DzDjRT`I5HM}mb)vxmA=UbBC?R9>@px>R1XZ@Sdhc4nsf zb*U|jIc|U2cs6&t9V-M4-T8z|$_lb{H~XZ5EV`PR_ecd<^h{qtA&X+-6%?{`n-_}8 z6I^uXel4Pqh0{q-i7egbeX5k*lBKx(2qjsXeJt3}b%4ACfkt<;zXciHwn3_|AWBzr z&>%^EOs!vfRkm$q8l|$ET7Zy*urEHZv7rcod0`qExV1Z_s@k5QKB7^eM@EX2s%l{& z@|%h)HaekHT)s0-K7Pv2ul12W6_+0=iBfU-az&Ktog1d2RByYqZuwMiyMu0&1S{rs zQc5rm!E(X+B$!=Vwv-ag9s)5+g4w$sq9F2QFRk^c7JIE0*K~ymeiGLujMforh2*|l7 zZx(@of(96ci6E-@3f>Z;it;cJL=|7bqX5d`3Aaa4MfGr`6jdlHo(7_d>fv}Ps%RuU zI7Jn*a7ZZ1Wzlf%ad^UH5aqH6!+RW_DjJqOjzLoJ+{pwj;{ZuN`6o3-dmLEUP7vjv z)EMn?Grl72?{O?)PfCwj-U_^O~@sXx|S&`Y_<1og(FHtU7j|z9J zs`RLE$C*lx3U{2T2z7cKX9!Rws`(Wa?$DwJ)6+_M&9y8b+PYI}6~`H3X^Zl@3XuqS zL(XPrj6pWX1QcekidL6njh()UDg=tcJ=TnMZMjR=vK{fmtoe zHC!f3Z?QqPzYN&i&k23Uj@C~_g|MSV6@p<$iz)=ejuurkE_Sr2LNM%TQAOioM?*Q} zVMmK98W%fSR3VrKTkZ)iQG{{5j(-@{qFgXxT(9FFMztsxOlAoI z|FDmt9RD=73s-gu7vl9g{$U=A@=pr!dL93;dPR9%WqI(3Us1R$4?Xg0osQKj%InHU z+?j0uZXq5H-bF$oUa#XHZ;OlaP7tc~I{slSi*msV#egLyTonE|^fQ*YOX7SdURNPk z)sYM9Sd`aQ%eSf{m)g1FaD>UrPYz?4yrR5c1!Gl*v2MXwb!$Eq;4s!LE34`-)-6k_ z>I+bHWbW3Z+6lLa7Ett^aI5MIP%KnYURPmL)r~qVR8cONu&L@eNw_;v-U-?ysX9(d zRhnBOJunE2|XjFB$!vGfLg312U^Njf?g;Z5vfMWBCa>0aDRbPN&^NMo8C?I!dQq6@_RbP$v z2&t;R8s)@ClnW-?tm>fIBNS68!CVv}RnxI%!}0=Tn^hg|u#H7|U4>L!eDahk+z}4jSd@2yG_L9hhovmat0w@ex`o#xldI}$ zQw(QOE{nja>J}b`vnZEE;8b;-#Bdhn?Jhj3Iy7Q9i*kj~wrka)5t~<(YpU?5>d>gd zi-Tl(Pk2;yWW=r&kom)D=rsRMC@I ztD=g!Vy%iQdJ=0@R8d!~RZ(671+Y*miW467ZKYJW+kTj?qFhShkpjKtG7FCsWwM}D zb2s;TWk)F-Uh$g*b1>xeRg?=Rtm!F=17o;~(~~C~q+eV2N0KM0nKaV2Hsh%9~Gk)aUSrjVsFQDyyo`kqaAF zl-E^Q)#u2CjSJ<-rJWhQCzaPgSk>pY9|o@|7fe{C*OQ8rD%{OI>{wA=S7BA3n|s)? zqP(ucsy@d*ExT9%7oXIG(dS^;E6b_R!LV1r)#qSHSY%Nyn1HL#!4QjARP&oE+`$lw zSCqFH*;sEEg=-}AIWl7Yit^@D8}&IdV%0)9GGf(=a_x}C)#sRoRV%9b6&3F0o)T7? zdMbqLbA-dH73H6l#ntEL9#*X=?*yS=&EW{ER+Lvr=vQ+%>J|Fc9FBU0e)0g$yAp!E z1t%!H=GcUd3+32^jVsCplf_kYIKsvi<$?*}^v+jN05z|HAgsXTv0v}gnl(gIBZ-|E|}1-)EVY^= z92T#rLa?fkvE~Se^MRmV~m)yyZs9CNUgMHLm2J`nOI zZ!s)o{Z!~a*089e*|CO270r${EUM54tYJ}w?qdLp@(KwVYmPY>z@l6*>dJ;vQMiz? z=GGY2u&Cy5Y8AJ}Fmgq?U_!>48(l<+2D2YmQu4z@l6h;h&=GY^W6cdP z3|moNJz-ILB5bTVSYh*ua=~Qb)f}vFV-nT; ziUjkuX;rvc^R+4Fu_$jb;bzT^I?Q8H-eM%IG&Nj9w&oTdwlc@fxXToB+POO3GEO2I zzj|W}Iw4&+VJD;y9n~Mw+fC>R>GBCaA-(17z#TW4q9A_Mo%Ou2WImGA+fMc)J}NGv z3`j^9QTPh!A_`z3T|^-)q>E?=_j4UptFj{TXYo%#RholcAj@z5U7;+be^)RoPnbet z;Vh(AKwt{#RTr8=EzWjzUOCKc`>jdlLKMA&ZLMD&Y5Rn&kS?OY71Bi% zx%fvQTPh!A_`z3T|^-)q>D(gdQ;sr2D9CMa}kBHByIj`B02(Ntm{{YV61f` zT|{9pzc%xlh>n;T?E2Lq6N}x*W?mD~K~rm+O0!g39z^#t3HE~2m*kC$S6V4fT4JwR4HZjiT=pqivEudo`@yF*|N=^_fPAzegseZsNE zKV?EVL}R5}Vi!@?EO}i-nX`DZxQN1YNSBH)apqBcSAfoMP0~bkpyuAN{punL(@E?i z3e+K8M4>vQx1wMj(nS=mL%N6pcDyTHL?Jt*i%3=uVhRxj?fm8<3fm!@znTz^*%LT(Z$4*63Luy=6oirgFZTk$VI~{HNG#)6%MUCWHfbpG;ytkeO*;TEh9`9i5?NKGU^Pi#WCiOXWd5*JlxHDYA57!$$)mi35! zb%13-Vq{Tu79mC!wbi7>$zM^b;drN`Eo%}>T2!4yiIFa%;kaTv7;vyGv0s~?G7%kM zS&QgbhdLG`Miyg-)rgTUBIQ&ZURi(GZ!WKnU-(d=9<1o|&3U`WliCnv3)9LF_%SDL>WQWMIzNNPyk>7b5_wu*5a$5mORFS1$07}?Bg zE#UymGRA)O>KRgZI>1U5D@}&8_BFo>{r(q z+01;(TM>aP&2E;_Ts+{V+L+axKgeaI+9`iu%Sefszn5jCMC@|3t(nz~n^w`}W;Nrd z<)qpve{IV0O2qu}C?h3e{uY!-e$=Drc~=@1{qY4VKL5I zo>yI&zj|bO)rz=p`L8CTTgEb9_4H0IgrP0oTuz!0j_aZ1p>6)gj*2m>8ILZ{ zn-}9En$?`YX=914CEPOZKXlo^;NZZbf&TgcMYusQZ{W}+g9BUnK1}B?S+MY^!|;MB z^nU)5qn7p0U#6Tz=>=y_|AIPPHv^nIZ~0+jyEZ%f(1HGC%LgTZE4Kf#WZB^ZgW{J9 zoKs)Ebm@{oE4ZlV{3T0|9b98P0ihf@Da_w(fY&Ug@^U)r|_XU3kK#b z?3ZK?buHNr9UK^#S6`rv#aL?j@$jX~t+YaCTYg#GKYvMGzqxVR^4pTS6x0E^<%hwg zi}gcM|CS%>OBVGHE>vGQRJZ)NtbcG`|Dr|uG1htoZMtNIzDj#8WP3pc4Ue}cF+tPJS=x&eHHJ!UPQrBeewn$w|GPgwPn#g^xt*&X@ zx7zBO#N7s|YboXyh?>j?cwOr-U+mR2xBF7BZtk8%`_(nC`!cVtS=|?TbbTx@L1XH|pB`@)b^Ney1{9m^T->2!i zt-X9ktlM<&Q&Zh$d!GgBNbCq&r}=!Bp^mt2xYiNYfwM03E(S?`V4#0deF-)3UXziat@u(0a)vI z=&;^$E*h1?fYvlLExX;V92%It)>aP9T=o9U%c8N_b81Or;JjkkP@;I{G6<%2%YNL{#s*jha^x|{xEc`AB@DkAW4zzuS9I7YD$6I9%hx}noBsM_wrrFj7WNm{ z_)j4Gh5bEWp;DA$(a^HSYdTIIonG5Pe3k}5GgfyH6=oeZBJVGGZ&XK5C55v zj!@yLEF5LaJSpYn2sV_#`Kq=s%jww0Nz34%Qk%2obZiEt?Lza(^eLy~7Eaoi_;v|m z%IP>33F&YnN_k?Xebm=!Uc065;R+-By37OcQys!HMP^Ys9VfaWFXwilT-?%99(#tN zU21b}|F={I8-iLKm3izar~SsMxy-O~x^DAgNqFY#UFLCDCFJFJHEnwiVr5mA^Wqwl zrsE-Y?Npc2!IN=N;?2cHFx5#80<|HYrjs>U=Jncp>#aPn#5T-Zc^pvMZdk&zdr1i| z_8UhsGWn8pb^u-G;c}4n2d6M$EO7Rs)l-t!?pP!|bIeS5=4Ddm(adSTakQfOHA!a? zLlT}{Y)W|MdY$mhdn@7D0dtwh9&)M&oS_69;_-Pc=90X24J6^2-)h2R)FgRP7n#qc zbQrlh8&7z4?3(cGj$OjD>j(+28pbLnvKGJPbTET_goQ}!%gKRukdnN1wJhPqxs3f< zE$5ST=CV-cv8x!;af34Q>@seWmkA^-0~0;S%zwF>DcE~ zMMoM*-ZuTg-SiY+xYMnrZaFX4pd-&NuP5p3l3v2Idjtv3{23FT`E8VWxQvIk2V#Ss zQfz2@{E0)`IABMb~ zlSQ7Lq9u9l#%{v1`%JAo=0WqHDe-X4N%cxTIO+TbblNqIa$fFDCAv#T+I7PuojDzs zd3cK_I?ge+U8OFk!*eld1JKkikCxJ5`lPlL+YVu_)e&AO7mGoQ{nGb1i%IQqj#cd1 zLOC7xED{|eXRwj9zE8&`i*nl-DSZ$Bn{@3Ws7o=MnSxiz6PXE_p^e+p_voS&OF9Y2 zklNXu+^N#$eK{{4+-bWI4J=*b0ALnnp_I3Ws-=0k^OEW_afR)gb2%?Je$zhZ26AfO zvkz+rr{%o(BPTe-X|SDQmD2%33BHgn>Ol|Ab;;NVAfjDT!QDHl?_79k+v7Xd6>&F~ zp>)B{=2`f(U2r}Nb%STYhFa?j&u-EuJiF_c@a*P7!ZQ!eGLL3X>&xmbtVsxG5bMF^ z%A|ksnzL=xqzv2eEc5UoPV^oZyST>Y$)2=-Nyp$S>o~mFZv;9Bdj*X0bZp_vXO2T< z`EV>t^o4X5JSRyP_Y^>@VCS$4qHWP~UZ(TV26$sco&{`6@>B|LLqFY|C~O8b&)nZX8OdsIiLNnX3hpYZIu zU&4!a6Z^Yiy-&b|uvb9Khp|t%1nn}H%jmMZiV4rQ^~*eVgHt`=B8-l*lXTof4?I9N z@a$q|lGpBPlzH3(4|xeS6v|+VO2;(YSFv5X<64qAFWBD9mfHR<%c4mo@N8c?NoRpp z5?)-t;l>r#p;%Yx+&Gt6CY|%(5xOLmg(XSkwb5}-l~Rl#@Lt#}phd%a3uI622x8w^ zNUCyuac2+XLmOwQ%v>uB{fpTi^7h$be7OwnnT0+Fu2LN0{(d@lvlwi*ZyW3g(peOn zQn~Pg95gzS85~S zGi_15lDrn{DB)SajFcDfg)m*AFX4stK0AG>t%odj@hK_8ZgP})7`Le&aKIM!Ji58u z9ohxeNXHEEYvopvlwtR-QeMDVqA7%ZYR&`FH3ZJ+7QLnXJ?4}!E^&knGUtxst$A5i z*fpwF9zN_Ar!3*I2utfmAc`<%u(LzC+>#6Jf(e(}VL)uuac-T3J_2)6JRsOX*n1_) zL0F3u>mZy%zzg;tF~Y+B5U~)#J_Eei1`OYz8*G7wHeiXJ&PUpoPu4SBB8WC7yf*c< zxWDCotH!e|qLan3&wY#_Gu;tn<`^RM8#j+bJ-BQT`i&dCq2IWK8}x-~HI{3^u*!8~ zYb2IyVN{ZI7JDM)g*|verA6$-TRXOk-Ciqy4t{emk@*hk_F zGR*r#`D@e8c4fXK3$X#)V5bEuNz%o!kM$R9#~w_ER1e^Vd5d@wVcvol<}Ft7>HZbR zM;6?vBpr!13$p27=y%85wWV`Nu8j8%B)UJwRD-1jE1MbJ}t!KUH(E!Z?Vl1p`s zm1NjcV7pijMdda?okQDWqo=sRj!bNWZi|+be9z*>q&&GyB|Hlykn+OZO;3ioo3rv@ zI})fPoDs0S5%3RQY*Umn9p^YkM7^Q`({avTRT%s5!q|ru_B@m<#W2QsuziTa7xlTT zH_jhS)2SUnb;Epwl@rGn0ZD=$u;mfj1=A<=C41(fT{v$HI*C79s4p%FL1sirah&iV zQFl4s3VKR7iBJzBK!keq#WMo7JA?fKFW4`HBMJLH%$C81gBR9~oR-O9x2*SlcHy|p z<0?>)nXS^$&U`MkDQBsnO}U|d0%pStHaek50%l`T2h7$McdEPWa0i=}fPJCQ;e|eD6&m_n z+oGwSvV9Qx9MsU&z1DWIBau`Ouq=Wezzg`o6d&dVf&`}f_iR1x8DF7AYj*S!9PYkAsa=$I<851{@CteI|5u95Zpw0}X-=%#0V- zJ)CODQ?@K0O%VExp%B_Y2MlRmVh5%25nnK@Lpjz6_Ac5N#wEOf_XHjccn>e?Bx{_| zejL1{^Jlz{8*9{d<`-nI#!QN&2AeKSI$xsGr zmFgNZSy=BgqQia(fotMeV2Tg&v0P32mtBTfH}>j7Ube1-{sFu3dvSl4kS<|8gEwIq zM{KJ^edgtpbQ}@*CFnCJB2m{W7%*wS5t=sCgV?g69vr<#9^N?V_rQ%5?+K$A*0Aux zUNcA0Va-X9nXu-B7xqSoxfs@4@WQ;nj$5$N*{TZj3|mlP?E+7iILdm@aaoFWoC*cZ zrqr;mAV5&8FBg-;*lJ^!;F22FQN&vem<=ziqX;z<^D3&eYDvzPB*irMhV;nbw1q zRnTXSqr&*r5ml;dm=R(8!VBXU4G-g&KsjOj!VBj@EOo=2qUCR_NA%Uj<0}73@=Z;VuuS`(b|s#-ceIOYs%L|w;8 z#}>S>MkGvX)KgSE9p{8hje5#)UOM&(rW)oWj$Ffh1TWYs#8(Zr3cO&e5a1}xAGiaD zxdL9)4VD3+{V+FDeBrdV9WUxVZ#RXuA}Ce(UYq?+w)w+a67`E^uvw7KQK)m&KP`4s zeW5EOFZu=$wKdp7@Pa*r85Znkcu^-=2!wVfUS(((jMkv1s9LBmQ+F6|oHK>G0i8i7 zF_L0B3lLD6-v}O?>OFTU0Eu#&iWhuwh=?08mL?73x6K(99$8_Zfw)|;4RF0oWnn)% z?GN4mNNrZ`e=td<^9NT;=3;B}?*n|LX1z_X}zN#5WOM>=~6FiB_6tR*~q zZz|=bd%*_?p2f2+%YutsGFH*Px#`&~ zJg&i{?W|}Bk(b(f(&lvSB3^1c!VCK#@WOtgc(Kp%1Bmr#qX(S%2i=J0rj!xRyu?e_ z25f|fb6t2Aue03F9D0R*)4^%le!Pbe+LSH9s4u}+oc=|`^m`l{27Ts=M39A$ccERd zn-WaKVzqaV%5`I*67UMYv`|L$OXGWObW%otS`XkL$cJ$obP^x5&{nu!hI(Kq2AMI= zg3K5{kr(e};dK~sBigatr)zT;54$+lqmBOIf|k}zAePn*piJj;LeED10~FJFi*&(H z8eZIEBqDIYQ_`h-wDhk%?_Aaw-sK2w%0^Av=iCGc`Ufw}DJ+G8KEq3GGfvg)rKgfC zow$6)a_uFMB%Qr{obbXKfllsH`+)Wf_5ta_y?iG4a3&{Sx+Z~VkKL7J!Ob@v=Q`pG zJVG4=eZd4y$3iDtZfPIE3;o7&FkORj(=y!i*Im${<7`x?dqKLT8SEiu_+Srl>X)vW z$Q#bp;Ds{+cwui-ynq`-i3zv?FW?48K%gkbzmivh70V#$Nw=j+)+@R7qfYF<- zLuLJ?>ri>$hrZ;5FU$+Ns2Q+?7sdjQ>w|&E+BE0}ei@CaEeWY!%g>XfyuCM3orOPiWlZaZtMlzz@;tN&+yWHLZ+GE|DwRf0Xx}^ zNcaCp7yJ_$tAI(;2Bb^(UnrMWP0~?|biGPC4ktpoa0h{O_5^oXPg$>~_`5E&6V!a zVn*1D>E-qVHe$K%oV)Nndvh^K7h)XAd`ZvB;e|UKiky)8eux+5DDG{?@x~mL zVm7;&!Iszk?$96XX{Gam%&XAOocV`z=zU1Xd1Ju3cvm023U}S8Z?q4(aB&TFL&-xK z?182@#N+8fU*M&C`a0DOHUnl@utnhoeO8E`REOXN9O9%ctZ{VhByCf8VV>ay=CCG) z7sfu;WWY&WTvHzm>KpD{5Ld&Vo+;@wu{NT7AatrjoT^1x*q2JjukMwn{RS_LL0x%F z^$Pc}pyP5G3vG`f7W3Mpok`u=#0(*{Qp_99+BltwYc*C2aXw;`Hps`cke0#fE#egp zFsVM1F6;^N{9)A7crT_CcY$D=!3$%WNK&!iSTcn^XFZeRIM+yn&B`u%dPaaOF;)pH zjj+!EFJL=6bHOfw7upI7Gt4vG_zCl%LPMtQ%uRqeR$1bNvC3ITI(O50QHMCMNHL6u zVZwT!9iBK=iR%*chPa{H1rBQicmX@PtDl~^lGk2JD~}KM!@^kQPJd_vo;?lYTo(iq zn}(K3&pPm&3HMVt<-{>E&C4_sWMSVT$ilu^7;hZAg!YSf&KT1%<`1s>Vb6_I*jQg& z5kr01UkmcFzZTkx{k51k+FZDhMqOiDFX*lgt<&~ni5S|H=O#m&)#>U4lqNy zxbH0&*H~^`tI-`{eGV_|`w$%@tfTNokL`@Tk(P^<6UHyRFxPUN9B>j|oZs*#3~hiz zP1=4~_rV^o;0zY}jmrgr$JNplU+^qT{SMh43jSu|1zQDV3Yf@^(O|#8i|vQ;nCc7L zQn5{=UoNr)9~SY#x|Z#*Fy4rN5bR=jVGQEx9L69aTZ7F2FW3wm_XL|kM?j&zxca5z zx4S}+fMhJNl8o(4r-!~|t2FI%Tn)ln64$b@MuZpkUzn!D9u&OT&QgR_W;JTcV?o^} zU9f57Mv-D2S9oJP69OkK1Is6-V~z^nV~z@K-)4@&<1Wk#@S?ux@>g14=A$rvSq_Fi zYBQ(ks&C92&k`_w!r3Ao1aSgpo&;xj>Ukf{%aW5BM=r_47rDK)&iD680+#PTYUch@S z%&;$j_imVz;l(xuIzzi~mp0Wa+^WJH(8ESy&^2waCF7F2>tPNcQb`!+3bz?_2$!dz ze=G+>A7K`Uyzwp>J!wy9mevsPQlA|*V=)HOda$LRVjU-jvF!;E7upX8m{jKOcrPCX zkLz9WIS_0;c){MqyD5%K&hA1zIJ*nF%h_Eh7ypBxSNI>q??qoB zBI!llWdk9W8+`ZiAPsR6;Biwf?Ms%cL3atpA7sXnHpq;lYN#)RD}0Y>HR@128{_6u z#4ErvkSU&l!;ARRWK%Zm>1Xy3V6lH3jGT&=mtj#VQs*UU>Lvff?c8`@U-o5 z?Fn-fydWR(D8jsji5W4Lqp_evoJ9xSB|K|778t(atP)<(Q&t~gUlb3Ps2e))Nya5t z+{6AFys*E4z#+|g56;DxrwyS+8t^yJX!SYvY5!3WRE>Z6+*`O87s;KanV{-pIg24`gp i$5&5?qyWf64w*Hjry}jGA>8Gu@T~pz8(4Datp5kHmw4;| literal 0 HcmV?d00001 diff --git a/doc/pdf/privoxy-faq.pdf b/doc/pdf/privoxy-faq.pdf new file mode 100644 index 0000000000000000000000000000000000000000..e5a458c3e4f08a61e17ac99ac066c6f65d83fb87 GIT binary patch literal 121402 zcmb?kcR^VaW*X&_*{vNjpu~1Et@u*urQ6jxgPXA4F3CUf`T+WGWzC*wnl7N=&Ll~o2It< z)?kFGj;+49zOIFyJ`EUWV{5IiV@BiH5~M0?6VAIiLds&6akmb~%j&%+{JDvhQStmAk9@$+C=IG5*jEqR!4!WBqB*&QiNKRi9GXR-pcA^#R4shPHh} zXv-n}D@XSo-S260`Ye|AouH_3()Jxe`bn_yZB)iSE=747Lr^KcCR`9XPq~ z+zS`f^XH8BlBYKczm&WU}SL$s^^;7mmdoX*t}`!5uO+Bm5G< zI%*g)61ghRe46e-hRz9u`jsknt5Kl>>^~6}6@p{ga38mOdtKsl)trZ;nb)Ulo2#cr zQ+?SrtQHWdlA?c;FS+qS%`Z;PWM+Q-yHnoj=-M@*XU;_n-Q2g!`B|){<(je9B9=}) zn?Ux8P4CZyQzNZ6n+dQ66viu^ePXuu^u}xk<%4^ye5q7DZGNnp`rsqH+eKZ&;auX; z94DWfKI$ANoT3FHZQa*2QzhgwyZK$Z#ywt{U2uT=mJ_Cgzv&(QyC21wNpaj(ZaK{B zq6G$zl!P@!ROv`Q5`QtPAh0nl7h z;quIuB(?73^AD2?_GmVA>j?T9Cd~>x)vR??^GR;bNtI1M@F|j?GZ#5~{7isv64#dx)?d2)hZ|I=Eeh zK@c|>wDG`4xDBS_WU0@_qo8A`Ps1Z-VQ#B$ZfnB^?Le^Il=N*Z?5uV5ZP?KG4`lWA zjCDjU9NDyZ!3StwK5h&Q#)iT2aq}Xu+B9GqYcQS-d34i2VN!gr1ZL^#q^?AQF%_a0DA4 z_zxxMpU8jziDH96giwNn7mtFqg|4!`Et?h~r}zmr9u<8@AlLqQ81$cXCkQq)Bpg>D z+4|eGELvYOKDA==o8r7xnnG>Lalg}Ua%*erpxDV@Tp^zFcnW0FHx zxWdFVwpNOlw!UJWV$%qgntk2EZ1p-6F;t;3cToP)(K24_2K_^44hn{HyIab2^$t$| zUT56VX)O8j{LIMH@v|)!rM6U^YZQlrJECTP_Q)UR*I-qUn)^D^H(uECb6ERS+63}hDq=Bf#Jytc*siBwCk6XT8;|a4( zKQ@^i@_lC7d5|tccIOM}cO2Ife6Zo+V-4J|b|)Ag6G_qD;@R`_n}8_)5PHJ}w}0jz z6-R&A;E`d|G#QpqE*rD7KAztnoL^~}S9#E~_vZyv zr_#TcspqJEee+Ut>XU4~EWwBzdAGEzVX5JFb{e74A;*;Ao9~W!?_)eM8^iPXYdRGj zAnPJ)t*sq?dnu>nOT>|mUugx-FM919ZqbIT9vapUIfreP#-15R4w`=67Oo$}a4-?G*}O081O<&}Y~ zw&mBbLVDeT*(B_-H#+cbX$*AnDMCsgpyw~2pD7Iy`rvKBA>k5(HPmKf=7+vio3RL%xN*Mf($47YJXI-6d%KG|^4Q_+PHkrB znOxUI>0vL8wYHpmiBYSC52Mm z_ED|9qahs10YPKW59B#u44)Sdn4QDC>NWW;$rCaSO?ap0@=QD^ z&yO}Bt;KM=(~Pn}lx>5&VesH?tKe~m>+8k#idh^we#JdGbgx^~Z^PBg3IRcbQ#O{n zwlHs~E9r7R+r7T|Xm@Q^^}bP`^h*U%k%5}nsROg>7fo_l{UgO8;UQcQ14)vd$TRCn zWC--}c(di8vvhp;Yn|7OqUk8VLKKK9RSwZ|GI zimt5R@1FRR?M+x271C&;LXsen7Lx`K!NRq}J>OWUMV(|Xv}{jvIRC9^AnHN2)RWq( z!*cJcg__6ex+V9mzviGPaI4;7OZPgVmjMNvar=B&1@)&`!ST)0MOGue-wvCGOF89% zrDl866FhsH`Ol6git6Mvm-aMDz_qjG4@wBD&HfNGzM1KIfLmrNHbp(TII$+hj0=@f zq*cP@-*vFvF9=a}?Cgk(tc2!C!^cdgyzdE19@ZxyK1YSJv1Ohv} z;G=ZieU65%vlfW$InA&1xf+AhWwxkGq4R#{_+-MXGi%dEv&?5IG!wn{dpxWN>lJjn z;QIu;iyajN3Aa|5Ala_a<6nKJ=$lI+Q#Og|M|&?S`S!e2iMgokYw@{e;C;O?d%ri! zx{&_nTVGGF?G1@N2A7zssu>wABQRo2yHcW-3yQ8a+yL+D<2Xb*p(l*9b@~Nn}#z zI;n0DR?+?1iOI_50XpF#{oOo2#MHeUmUAuz+KilA_&YmyVE3tnJx>K|gD1huJ^UW= zdsovtn_xXH%afiTUS1FuX&jYuQ&!PcFq|E#4(#Accxg|t^WOk*7(r76CU1-Ld2cG zir?quPp{#LXSo;uKed=*x^MA=j|4L>iP8;-H8&_g z*$fPooRq4k;clfC@;tccNKu=8M;yn1^R-y1JUYuzp8ku!n+>kDThARSd0Ft9-(G3c zz`gIvJ8;|VUsYse-f?%hDcsVjMmC>+h~r}x=B@jy7gemTkCUZnT+&S~g3>1~%u(M` zXb~=L?f1tUV^rFNW+ul3VQsFzuVtKJeV03tGBjot>~PF~q}Anc|N1&s)4}fF{w~&F z8_p6~6#qV)g!>WZ!VOlYC0E>4Egpw<{D=&U51qx^Ojag_9R68d4OyeD2rci&>d|jx zZj3lvn{Fx$rEV5}GxC&!<1mfHgXo7Ew-q`J{5_8C!tLyGSEhe$rBRoAhnh#2g>nzE zH`N#;b9P1^3mfQf3-S>#QMfrff2J1aZD-Q+7*XMIi9y-9lNqFNn6E)VR_6K+O z`OX>}yym8r@6F!I^R{YR6g^Txec!F=y^n5|S$qzla%aO0@aBZg>#}*7H_x|t;q<0+ zW+#fT{$ZE(R8B=)#wh=2)tD`hzdbD1`owQZtzWHnK0XO;hkLCPG96X3EwqmbRnxW} zXfOSl*D+J_U_=enH}g3){GQuR2bis+OvJ^baH-@%-tIitP$Uu{dAdq z?ZwZputGzVmm>N}!)N3Sn*x}peA$QA~e%DIf*N;Ec%2{t7a~FOt%zV?-uf&gHywBT~SPM zyknG1t@+!L#*FW`{AFfF8#?5tswH+yPAKx`pQ%VVcG&$MK?p%-g$07!DV}z#`Q27N zXOXK8HE5^md~MsGUP41Hxfd!6%=QJV&=z?=)V%lEB)m9Qi!Fqs_1g6JxgNa_byRDv z{46)(z4O*(B!^~t4UnDQewcaF0B2+5m3B5#$>_6a$M`nB>BiiDc9nS`9f$$GYNG6=!{uJ}1O!B84VKW$( zo{Ok=`0zUR5tE(YVaZWX!T0wZG~~_BwQ025y%lQu7Aw{$DyFhvG7=5exidEB!SlNv0} zm1y2*NbVR3KT>sE+&S?@^u~`2_Or(Ue=fpEcuDcEb{JRk{M??jUc&X!`pSmJlr?>t z+;h)9^k{$0Nxhx!kIaetW#zB>OTYh|a#_1-g3Q}X&XFAYs$fkE`I74@6R9c4{dI<9Oy5q?XvRXq~CVIQ8q^cn;$HE zX*y?Q`gwGxF7jXf@yA&kV&r)>|53VpjoqB@uvmD%`?~`Z9gI=|MP;t^z5_yIg8Kp{u*@7J2gGL{W7#||0OM9Hxu0ud*E6Q z3DP$E!&9aXgz}hDjlj>fc;!RFHLmSlA@47z@Z|7&#%DstglHM+Wa@?GGqZ|MKUei{ ztvUC0=CKCrOM@|>d<;HRcXP7PFmFsVR8z{jw|&8iALR{GdfVJC8oE-sWR{9CDYDU* zRQg=nTb?-cyE>~-ZZ4%Hz*$t%C1l#&plTm8i6;=}Yl2*XNHiKo^aY|J2Nu!cwWu=? z=eGLG8;HXB!f1H@H+LY9h`G51a4u@Gp&_@P5*r$F3xXdw=OP;#=X7L4<6Ql0XuP`( zgLkiC@Sy?>&RNEW!4JnkK0YNj41N~iM8y4up9O=T1%saji=PFHp9PDb1&f~ri=PFH zp9PDb1&f~ri=PFHpM?)U3m<+KKKv|v_*wYyv+&_(;ls}Y+>#I^KKv|v_*r1Q_-SCg z_<3Nw_=#Y=_?ck5_^DvL__<)b_{m_vI||JPacuunMNU`yV;bUC9 zz%#C-uM0fGSOhm3uoxP6y}@gMVd30xI0|e4G&c;11m9A&yI_m+$IBR-U!>s?!8xD* z2$>y{l#r895|QDA9M1o`*Kr$(99$?QlA8~OBmzSr`MCMOdmtYeM0;|80j}ppf$fAw z!nnbnhGSsdeBcG5QM}w}KKM!~CMThON^~K;AXXp;);zuNu;%GSCM<|E$$>RbEjX4N z3-%v^7ldDdKt&@k+?W;d7XrJGRM0LV2h%*M2$<$+_5a6&Qwro@nx_*C#f=4Qg@7Zu zfjB^eA0U>s60Q=LI&nfmNqGUWaB7MiVDrQx0GlTk*~lQFMh>!hlJNpb0aPa(4K^lF z1!x$I8;gtm{ip0YAt9oosw6=|G;)RNJkbcy=7~l=G)R?Df@&xbA>{*x3Ic)%6g-L# zY)~wEC7h<9B!5~%R$fV7ZXvTl`i&fLM7j~d5$Q$|aFi1KC=7<17nmLhB!(Le>_!w8 z1ymDiC6t4~&~Kma&TJ4yj0TOAN7 z2&{huPzT@yzzqlP3KTE+315-XF;78tc_rzE1f`EP{d7xWVd1=z6rmdd*gWCL1xB{AAh?H+V3T5i;}H(tB;*)H0t*U_ zSP{v9e~7SO7jhe=6a^97Jk=-xj%+1Cq#PWdfQ#Vc1qrx-*MNP8#;!=s!mta^3^*4z zMHr2MYMx}|pu&6H$$>>YG$3JU;8#Q8*bD&-IwUZkFo+dtR2g|O5t)F29Q$v z0D(bp!$8;$4&oX(?-7W!tmupiv;m%kBrHcMZ9s%JPdoCVQA!se(BQ}gBAMWjz>Njr zG6WigsgNtuqHqL^gkqFBClF!HQ;aNFxNs>sn}DbcAde)l(10ido+A*PMW8?wj}Nnw z1FDD^bTm+2Xs6*rxa43X>H;FRd6H288>LhM0{9rfA0XAR+`J&jia;W`;m8#!QSh~e zT!xEsQ-ov$So0(!4;HzqV4ln1KnFm?0xl%T4UXW2w&+Tj430vQ5Q|cNBLp7RJgvw> zMKP%l90*8|UVy})z>WmOf{MzJEAoHiPn?U3eq5piMOci0Z=P%v!bd6j4~OgwkZu8o zgR=neW<${`#LA-Va4atgvr$U^6JgDhjVxHW^cHg7CUIxNf#OC%L3ZGv1Q8eD?0|ut zx}u%QM`F?9l5NOAMU?zRR77Hthl)}%9}ZMDh?#-YCB#t}aDW0kb!Cxu1TShKXW=rD zC_*d(ta)OQ2a8fN9}cuN8l+VrP(VY1v?w?l1@`5NEDMmyKte4_34J20d1{ddi&9b_ z4iq&S#MY5OdV!oUI0|gbm4((3a6S@ZQOe9GqM9cbd9WxZ;(?~d;Oq$CC<7UIa0DN4 zl&$C-4m{dY$`TS%%1RRABxEC7)&m@Tz&`*d;F~8KW$@v05Xq4k^Fkk}Yz!1)2dW&T z@8OP0=#_=om6g;)R94>p5B6K65o2MH^&{0Yiz<^PK1>tt!GXn`jKymVd{kyVo zyNZ&CoU($5l7t+I&k>huO9|o;;ms3|GVsV%4Fo?L2p4mMoEW?x4G29L$kIU}SLEB4 zl~NWXVL7sO17WKYaS^FTE-p$b2N)WJ*g-x#63__-(tlwX;Mw3?(a9V^YSQBJwJE}6 z1X%OrA`2ESeViOvL{$Jof^a$zLny%WAaDXh0gbvc`(H+0L|jTvQbkIZBpDKh%W5YF z9#J36!z1K!QwkrYv;qtPJQ_F+3UY6O8x7D7xX)H}SSLEU7pB3(a3uf~AszwTJj+o6 z9L0139AqQ_Qwbbi;J`NlObFmVTah{y1yLwzV8xLr1YE5IMF@w-HcvN7U?W!>%x_qb z4~zt24Gs>We4ttd27~fqR&rnmQ2`Ng5^pW8poAhsBLJJH8o9tIr4T^+1`-eo4nznX zcsM`+2{7J@C?=(_P`$G;WB5whU0|_e7;7}(lU~zz4Ap~|s z2X-WqSkz$hB>S%QH$CU6^E}@HP11B}so}|RFp9VvN z-N(+&xfXtDD&-MGozD?J?==NlJV+SUiF#SjRnoVl|1O^e^hppZnJGxvgQ3=yREf$t>vY>yD|!9uy+Se ze>Yf{#U6g{{dl%ipmF&60vY=kFS$S4It6(A4!N=MdDr=PD);zmrSG+4PQk(bB?jlb z&e~3X5BjEJ#k|Ajv6sq#?&No;FT<`wTTA6{@41~-`+c0Xw)Sw+6Unf_)x$8qp-Gz( zq)vX=MQ;kw)k%} zSwK=;#r3)4HknjwZg*?DI20M0yBYROC&zZDsCQ0yL|U{67rSeujhge%{1(gE8(!o# z^DQB|)lfa+L4tRgZoxk+<3?|Oej(Pc?-VA~uN&d|Yk?ju?m4XApEbDM-s7e4`SvgG zO94zXaiO#k?)OhxqzucumhY%ct-oPED|)8X7(E-@ua8WaNIj2_ACYctHXli5nIlAdb?lOPKJRiWcAtWq>+wNH;FVruaU6NMa|vH$U;+bCBnx%Ez18 zUq!Z^8h!Blrk(#+t5FHN=mevDT{uPOho z5!O=>T9O|T=vc}*@>zMfQT0q(*wHo_y+DYk_k9V9MD6M|dQ{|9%5_VhZrfz8INOsO z{2h8b@XfwBXh0`Eqc@i#q(u`AxnW;uTz>c;)%-5&(J0XtuBSt?sq0EH)b^gi(zF%>|q`Cf<{;d+pp~Cf{Z~(hqx~@A6H#I=e+O4wEMxS6urR9@eo(5#6?$Ry%>lJ%wk^&Og=e?7d&TgP5*IPkz`1 zcNANP#7~R0!5+j|XQfUjwH};vi1Eq%QNi`t%OQVll`OAW+#coWpgw1$%x_|!8*gHN zrk$lBn?J0RopTt>IiVDh^~G~MY;Lf>Yi=%4_HE6z+QI=P0m01gH_!ig6TDvT{2HCf z%S&|9`@4$*kxAsTJVT~x4ipz_8+RLMnq{@Uzj>BPi1|wUoBFuNdqTFn+_fHJ-j#KO zTw9x0bo@m*!|HE$H(a^hq{Ux;q~=j?11ha1Iapd?Ug+Wh(NikBtHgM5kfNzGxKY~IwXq1X`z?}dPO=Iy~ffJpft6V5+U@#PDQY0P)sp0L;o zW5Y5%13kogOH=nCvTIzRmJmi0_1^d%GM4-PCg1|j0ADJbytE;?PDSk1uy{@gqMJr? zG*E%2Xx&fQ!k$)B*N7L@s#;>4+Q?mlpQCGrdI!o(BG>nwUvK2%#>#u?>Zfb+zqlu& z1?F4A5PNqm*>$Y=tM_15sIE{^P`k$|mJgx2uN5B|m)^k?=rS1l%FZ@DQ`9~;QN=uz z|2pd2(49U>oUkW0ocXWWBi-o?2SXbz$GnaX9C1sy)Y&xl#b@f*fJ8Yx%e+)4bS2qI zY#awkrUjDj0iR;6#|NRYft&#=qYd4@uXoom<@&qUDPG}tC^MLhjTj>7;=-m4K;60|x)?}YgXy)Iyc zW*0C*w+k4d-33T~B7C1PAEDy~@LA(NhZ8zpzzH2M;DnABa6-omIHBVOoY3(CPUv_6 zCv?1k6FOeN2^}xsgpL<*LdOdbSHQ1B=y(Aqbi9BQI$l7|66pD$QY`#W{PTiz2mJ4Z zju(G+e8AI|Xp`e#>HpU9fp|hhV}Y9nsx=4BRp71x4NiEW6vY*te9$B(AM$Gr3BG6| zEaK6JOjwjUC89xv1_BC!Bfv=-@C_Oy_QO|JW{$*=WLMxe0y!^{c%ml4nx__duqfpb zM1#5v1PFnnKq?|1NJ&A1x(tw-xFX)dEKK4D(Fm{|C_*hFtoe2#WWl189}o?SMUbF% z0RpsL;RUh>4eBuvD~o|6v6zKE2%He52(<{X=6Q=eSbrYy$&y>36axuGyg^bJ9O?-J zN-;q3?}~Vfk0dD!*Gh>Z)FQx|rxsbT$gUZjm-3(p15~Pl6huHJ5X(V>A`Fm{xH4*y z@D};ifjAQ;d9Ql#=!+U^$?n>LcJn1-&~!GZBznx3WM6$lno>QI;p68l@yY5gL(d6o5vq z)FMA*pDzY0;JS|8hlWS5AsS^vM*JXY;%Vh5|+z7P+EiF%*gI`L?F!x1*{+J$^zOz1}@l=__Go@u!trr5!O7l$b&^G(GNAj;04KV2q3(`c@R{G zgT`(v(vx7nkPwUPdO#v;5m3z&i#%B5N_?X10`Xuhl(Y#9R;Zx^3J#JGc~^9F1gR1# zpxTIpU=$Ph1ZeXFBOe;M0)Ku#0u7D;%^zW)77z)da=3;fs1=EP0@aQxt12kSE0I!< z)Xnq1`2^Q~D7Y-ag5EbDdK#2tV6~Virqa~4wqN2cB0eGsDTI$=Rf16K3na)(0#6Luhk%0t=;?q!t?2kfq#vPg-oibM^L|l;ganB5 zB%~ZfN@)wI0|sbu0&<=}azBXr10N4JsNG(P`9`E7X#x-4Uq}%O65!2KkTUSdRUbr2 zhy-=yDBzrhfr?cOaEc;9KQZKr>&YSgaTJ$`O~Qec(jr8F^Yo(>Kyq~nK>>pd72qKP zIi5fmqJVc9iG&(@txy3gXedcZo+MEskU$YBIn^VA{-77W*~ohWso%OG)4vz28?;bUdQ!GEMk{gDd=`M)8_3FS!r zuX#~$Tr7?_KOrv)G!=rT`|rG{1`TPyFZo;6^5^|#EUjGIVk(`h=fdM5li3_9!o=LS zqe;x4>S#T>NMCVpoV|d1%)x6jd0Ol~+eUwG@|Wh=aXw|8YRdO<)r^=|t7jzw^rS!Z z+GgJVpjU8OK65y{^6PpFH%Erfn+^6N(c8Es+iQP)yAAYYgwEPto&d8tW2sx>xD*=#HVLjpFOsjH&fe=^TpUxi@|bp7lT4 zmwoFMzeWt(!Jh97sr`)VV|l^_$^Ny`dd?Y`I+-4UxIA9^if6NK{?ksm)N4lEc^dN) zkHee&%?h)7>SE}cpKE1}4^(_A7r$8JSBx}x+IB6|AX6`=WU47peoAAv?5;I_?iuuR zr6-w2nP>g_O6nQh9?iTGNBJY~wm7jwK?RXx5urRdyduCcnc)Z5g1zeqllHk|Ql zOem!vgsnc1#-|uTqXw_~s_z|wtcyrNZd zX2(uiZ5rP2z9;y?o$R!Dn{0h~#$A&i3pm_AxR^-hXLi2u@6gYtJCr)LDUq$hu2C?Y zH;QI$(L=W9nn60<;e!r)iZNR>$`1}36&$FJ^_XF*5MVQcO$%Kc3RXWTXyeFGCA*zn zyW)%ImVky2r3D3E+(*JMiWX)brH^FekL#hbq8Z(}t}1f;#Zc@E!8?hxpCTFW$cw9m z?|5}^>}$-El9uqsJ$ElT31nX1hft*QvJC1r@ub1N?yA3Vlb$86K6>IXi*I~p^=5jP zbhR4m`kPYwGjDwOVVx>a`?GgYR?0dxVDz17(2iy*)#x>zHW3f*@SwMUS1jE33q7E+ z`+c_00lV!%i4S`Ubl;S{8Lj_V=6zgJ^%;V}CN|$~CUiB`2K_Hp@m9tiWowG=(y+;2 z`{&}2_2*{ez~DGlpWeEr9akItyZU6ly>mbL)>Z8{ov^o;`yrtql!$H2dy!wsZ=5VS zpNwq8^n3Qaz2p8!=(wh=X`uH;>b+veBKo-hp%bw`5JU>^I1x%L;q?X-YpF`#){8V(WUt9vpzxF z(Asn86EiIE82fH{M3nhqRYlct!HcnyLfz{hiX0cAez8i2 zlX}hNV3=yg#?1-&lb*f|jZe;pQ2-i_TuXQ{VYguFI6~B&sj^WIH{ApHz|B>UEXNJY$Yazn4MOnAY zhr|T9e{k16yqBDT-r!T*D#U*-ij!xGPA8#lw<_w;7uUVTEy%fA4qJKYdnX$<(>!>P z$n#L<`a$zntv0`ck&VGorxiKr<#Je$r0wB9oQ}+P34OtV9MM*u+NxJ2D_#1r4c&zJ zKJFpfJ>JEi6Y9( zL9MRNLYBNdXHP3me6+mO?>1VoK{hj4lNxbnUF{W*Rv&r|PLoJ4m1e2d$cHX|KI>SU ztO{)#tUbG)CR_WgO?7rQb?i2rPJZ=ybs_!NQGsKEG~18!KBMFQG_$>Zwb32A!jR|n zZa?6!lCDlR>kjhMnD7<1Fi~8v&$Aa!F6DF24`eO9k z9S64TMmk*@xG$}7Ja2R&_t?p2xjVyjT_=M4^-6Z$GOD&+&6vCCMS}ZyT!mgq|0dm; zb9vU%Z*50|x@A~xLvQc+_yci5bDZ!nyxzG)KA0WaWggJ zuE<9F_@keCPj@och_#j{1>CXw@V>*2T_x7}aa%UC;>fn0b|z!m=U2as5}>s`A=M%$ z#$BtY{CLlnkBpIXKTSnh*XuCNRlJTKGkf>z^ks4QEzF_dA67OZ=$)_C zvv_1wN3Gvkl|Yu6<( z-D)+(lr$oF7qcel)7wkiCS?M8lQ!OC=@*aO+Rtnfs@%PkMXfx=wU1udH+}N_mEgfT zLB=|llEMp&4HH}7(uV%9s4nFdKrOPWPa%pJC=H7dZ84~iefJ?-&bf5XO#?Ix1 z{c5wrJ39B$?9r1f@#z0F*Des1T3T{xu0pT#Hv4PF_f_pzrsac&ZDl+6HcPKLt8njP z8*D@^t8++@-8W`N>)xQ{)WN7zDw9Uate&0S@76mx89ym!dQ;w|u)*%=#mTGJdPFwl z|E}1hVA&}bdi9_2xxM|z?&}Ph)K-<(AHCoGlU{SuGAW?G5Wa(NtNLJ4L?6}bGDSPGD_E#Mc*1BCbu`pibmTxZrT%B!>_F7`id*FO5 z3QJ6ng8yatEt(#Mx4-^MkAmZ``T75+M?pz9kTv*cS`Yp+qMi5u3Xg-EKR`oW(99Y5 z!=RRcyr9Dv2$A550$1oBTjFGhyWWV14H(FHx~M@}%9Z;`=&`tKL63>6B(z@0I~Wb~hYlK*}5pH7U0qY=P! z0>_2%ms)rZeGA5q%`}}k4!Qca1s_cUZJZ7Ks&ERM*n$6UpN{> z?l9mig93#ukgt_==|4}>|Lfqtx+yFi46^!g?a-ho9TNCTNS6MqDtTjDB)#;qD)Y0PP#pC39n1xCX9vP12_623$K7h5g>g6 zTpqZ{;1#gw(u0>}QJ`^nK>{ZNhy*^6?Ltbh<#-gyi+|dsN3VcKq0~2U71|<8FUO;} zR1>IW2Sjkdt0chxDn4Dvqi~S@hlF}REjfBQ9tFL%xX~cyx%BAecoYV1pMpbmzhG|y z93;qb`PBcxW%%@kflkoFlcGG%*OoB!7JcVTt6hxdYANN zEytsvIU~5B4kVUCw>vE&jZn+6C~%8|BsdTuTypesEDH1-Xqx~kkCz<19FG!61_MD| z49L$RdFsC|2VMBG2u}^l3vfMlNe3^-p->xKUSQTNJ$g9~CE^B|KYT#wkuJTQ5GCRU zwjB(FBuEFZfXRT;!KJT|4qlGQh%1A9DmVy=kPcps$%xMkgc0we?`k|GLU=A%hXtg<6I$X3gOahD0&+M=aova%oVB zk30MEoB;MWp={)@r~vo{YUfV;7S!|xUktLMGHR$o;a@|65H3LAFG5{GxIpuqUu*uB zbz|*AoVQ#a(WNj}2T!ka#j;m^%dBJxYv*rTZN_SJ0%Bw^?iQzvA>rV?e{_P@vS^w zeMVDE^}z1HEh9Ac;c3_BM)NevICy^)_sq3~7M(A-ZE2D<3E!jnDJ0w>QNQYY%Cs(mK|U7_!}>zW!=omzH-=jveP0DGk2Wp zvHw8Gr*F;hwN#gzvF+uU2G%!YT9^AJE4jXuI4N-*rTrDkVy*ObW;XAf;<;KM<=4oA zbM4hM>yFe}SthYfe3v{sL=%74O0Msvz{$>Mu&2qa^aV0(jGlLB+)Tf_9h`7fzQ`wE za6%zq?-91c!kBi4U;73*gY}&3DmsI5Ec`RJ9vNXtyrg{DgRWxB_t@mEFZ{QxIv#{v zmzrL(N@p8`s_dzRTiZXFc*!{V`1!>-PRp_VM6^7N7I&%(P2*CE3*^{)Kcdy{!0`R6 zRjZ==n7hR56FlR`%}kpQZa$o{rsWFfLvX)#64%r=CZ5=!&z?#@drDsmUH9*!X{UPl zR4#z8$>ExPd!B>;g7}Vgr>zsM~?{5=RGqoxENbdjs54>zKhq&wkqwdEa-bURYNbnYj<&- zs3CT>)MMMQ5>}qZ_QD!b<{@KqW_C00?wl;vV%1JLjx!%elDMTYji1{q{cCF@*?bLm zmb6;_jDPBqY;^ckZL;Tn7R}U@%|Bz|#p<0i*Q*Z5ykUMJV6=V5y-WvRG0#mkNsh0% zN0LrNh2PC~z{*Ws=o|W)YS_2?lcmMMu|03Ehddhk;PRxy{fBX>DN;U^!|*Vj027){ zWM;tWd`0*tUz_KtyRLB{XZ61NWEpQO_WoGOyKjQ0+x0P>FAs!PSq91+(z=lH zQVjM=a#Og0l2^go&3k`nX^!jWz)s{d>JOn%feaH*M?-B+y*L_drg{8g`KN&a^IR>t z^r^|ybe`($?53a2UsSdFIef}|-<6bqgfc`{#qLq)+Ja6HdNbt`^F|fE+9l6`YLj~X zgE*Jx2iacS)zaE%Cd@lJ%#j*YdoQX+Ol^Y(mn7Pck&8w$lO_!j>Rc56HtZv#OhSq8 zv<-*9sklY&wL%%Q-$p?X!sN;}d>B2l9)p#$GoSa#%f4c!>L~Ty8^SQ@7FTR>J#ybw5)7mcLiVTGDV(CvtAV<9YI&(p1GG+gL+K()PrNaqqZq`uB=Yx zy`C$5Sf}^XT)Gs!zQd5y>FHCGW+oOk`(4e=IY)is%#30VA#WZ$vv*tP)_qU7O>R_os0)xWZUpw>)UxstkPK$85xrRg`5A9-^D`fZhN0*=7<<3=F zW65J5RqUyQ!uuFS($+AD-Ms%#MS5zaL6<^7*2{OEs%~+|FVNQ&j@mG#CHRe*ii*LH z9DQs4O?~q^Ed~8IApt)W6shd#ds*G*RGo5mp_rL8KVSJ^fb>w`*~fcTTio@a|MjzR zZq3YgjQbxcxqY)lJ$>tVecjlq9l<#!JLO?7qVBzGdy7sERcy)+I{c=WiYo2gqlAkt zW#=n*{W9ga9m=J;&YqXIXoPFu(ZQ2cSzA0>&(PlsOYJZ!YAO5jM*XYGjjICi@SEG} z&5!|VmV*1tUzkpo4vUaQ=sy-RB$U3nprW&fe#LCc|MA z=6k)YbbEOQYx&H}L28CwLaUESF?d}4mYc@7PH{|bU0}?QQ~3eP4P&&0Iu_-dz3h~E z=zf1RXKD5Pu)PXi^Wm~D?Ga&~4=2Q#vlaGF46s}~UZuLHT+q@`MrXoY^Wa#KZ%jQm zv(fb{>A#-das1@%`03mcr(ODP3ORhftK=;o{y3={r6JmAEt!(etB{#X{WIXz!_C>* zk*7SZKC5mmuK1^ez0h3A{-X24IXz9r2A_{&13RVF6elN#i;v#mKEr)R=-uakVnwTt zHkEBUK5}99vUwE;EI{xjpVU4jg}hWj$EMr)f$^%=x7Q?YymA9=L9@Q{bizMdTm^Q= z$+TwmdAgWcJZrJpvF^azQw`ihXXv#Zl5V8ZoY1?-;uyX&Y*$^_Q@WaUUb*ce13mg` zJU;{4e|PcznuulTl`J!(@t&}86HV8tyy9lG*(i8b6}wJ+Rc<8T&>l<;iQV7 z&Q{GlI_~Df7pntXKP0QKv$EaIvR<4o_;IQIdBmY9(b3zDM(yL4Oj&2!Lm%NdtGOQ!9*R1(yX_piQ1^JSbFa$|&pT0FirI8!mI7FPR)KX-zLjFe zvs49B_2@SJbMGaZKXB^ynxx%WPRs;5tK>72wquFz_70|-);gP(ciEKkwVn0s&8VBK zM{g3H68h9UcX9KSwB$4MU1R!FtU`!ePe|ezcvB9Tm^9!-I$!1ux%>aM`WB62;0?pS z;uxSaGh~YX|Kk`4aKF{UI0pVRq7D52iDO{F^_{?n$A<*XVnL%Xyay5ne7GpS71d#h zg1ky8m4($Y&>7=j5&^p&PqUT9Fu*16%M2zQC_rmloPUJm3J<9xb zz3f8R#Fe48*Ngdc{;J7dIGAvj0aq9U2k~MnF9(~rGVmEf<#Hs?{8xSRQY!8Y#1DgjIOCW*$SE1<=&kPlWfh*NX zVgFSQx^OVznNc7^8Uq?SkgmJ}1|wb~uyF8SxvEPo44fK^y{Nw`GM5+&%Bq2ncQMe* z@g``#3Y?r!5CFO+agjIm*S&`%O9SS>;8Mw#8vW=wd?Zgzsa9ZQWy;97Mo1)RWQpqv3* z=0L(>P@9IOB`*v#Oh*8JFerw`MJ5-r7T(uxHxdoPVqi-zJ$g9~h3<-jfmSlmt*e;DcnsHOW+~vfiw&WO3-EM87X*+ZUx7sg z2QFz~n=CSTISvI8A~bZT3aC}YE+Rz#N}69tG6J7K)k)BeZ=|S~<8H!WkiZQt@*kxCAn#`AvSzdg%fEZ&v8GWRi%X#c__x{q-IvK3^T`)agVx1yOMyW78UW~<*d zVAo`qICcN5-u+mq5{853Dd@K5Hrnf+>?u;m4~SGd-yXX%ei^&!8LNOmDC{^*#qX)t z4x2W+XL`ENvY#p*<&R96$=S}`7?AClbAR`z5Wn6I2Q%7X>Jc?9_ebB}DW!-e>r$p08FB8^@VOtUA zj@u>{+f-O2A`G3~Vy+cN$3%T;-}*w(J?7(T4vDn9?X%CNuf}Hds_A8aZOJK8s#$F& z8`q&H>UYcVz2o%BKy$w;^CSlc-R^5#JaTG3a!zftO%&OTM3jj4<*e`Lx%c47`P_7; zqzls496Xv>k;WtNYQ8F4EirCb_!#?{BeFv28IPV~UGBBkp_dNow3%#*YlC zC0NaJ>TSNOJ!I9-JM>1&`C%Cj(7f4nm}{SgoT5`?cZXa{UG~Su-@9`VPvSfsT;)fe z_Fj-w{QkjkeWF3TCrib~@`;W@fBW%91nYwzsQAN2QcBq0quVXNJi5jCq)ve5e$|z> zb$d5&>sEZc?WmzkuZB>)k=b;hw0%|gX7fW;)Nvj#^&9eyQ8`Z$0WUISl@;%sY!JAh zkjJ#nP-55D3;pK0v`%l!&mW$kzgEazMXMda+&Hx6MO?!D*lbqui_RQxI_jDaz^c~h zoZ0$Z;DcJqc|OkiN~(w>-ty5&O|N@bnL_X!PE~e)dxQ*Q%B^`?U^mP70fy){Or^I3UfX6ucfi( zmLg2-Pd~2ejlE_e)wVZmF650+&WsUG%P@0zhE=k{_vLja5fNkxLKO5UQ ztgf=2|2emzIc%?Xz5UH{4vY^R&&WbGp~oZrf`8 z?f8gkL-*0g4$3}=Q@q2P%vYwl&C*aJXwBf_;%(?JEp=0mEpSWk(%2CTkje&_vaO9vnDyOyK}!)BEojh zfFpOPnf+UIz`83=ij#D$$f zH=9R{b|&O^U>k~i#`?MhCFNtY*Id8E~>{zkMhb5%(;&?;2-jm%+X*5=BL{Y*JT zbN>x*QrW13asBDYsZgZJ)gM!1`4f=?J33!GnWM++a-IWWc}S( zsxLBg8;`!c!XM`G)atzL;DraFPjBayxSQv%dif*tt($qBe#};9$>X%B3xya=$G&ij ztA1y0JmQdoNjIIf71=LjBukz58rCpU*Y4oX>|(5DXY-7g_fVDDr#^{$E_Ve+)-fw-Cm%RgnyPe!V_xjb`o};3(@@61) zfD*HHXh5+vf|$sSSfoR}f{vj+4Ud?Gxvjprtqqi|1x%a29iX^;r~lajDlE(fU;%rK z2AoI!Fqa@p7KdYnPQ`_1mc_;bFBcqS;*gkxBqsDCgVEr2D-1BhNe2H_9l8)T=tYT3 zCWJcnp%y!+{Z+)da5R*j%mEIs;919RbM!dVMye}@8zRiwaIKyEZRG=VBrlEKTu zCK%vokTMUt$&ri&cijH>dq#m10O_)bg~`Q>vB*+Gm!lN{G71jbMxhsZ$smLEUrT-= zp+RF);Lrov*x;rhs5u-7rNQ}UnbFXR5~L+BF?eC({bEmy1inn@iqeG(lX&SD;cJlY z37pQP9&5;dzBFh8y^tW&mUq#l%@vFVshiM^*b6};044u(VFbt;g)icCMgS-F(t|;n z0d#jHxRM%d3E-R|U3vvl1b4qR>Da%5MhiKFKrT3VPpHL`p;z$4pgGIp5(FHNmwsa6 z!axjx{y3x$yfBaYFYbclF6IJ058&H_?kOc97s!cRdTAI2WWfRM1^zL>Bc$>NmqtZA zhc7`eaGfCNszN#z0g^|TUYYRFFyJuZT_i;nTp7L0U>HymSkQ_Dx^@Zj3z9zca+{gB zGze>;K|=}B!OLwbaC0tbS_iovKvRW9qA^gnqoto32Aad7K(Zw8wPP2F13@(=OAkgs zJ=TDdSZeTJxy(yAP3D~=fBQ^;2EhAFz{kXYuFQS%S7?FgJ^|c-GdxZho7(DIgB}2; zI=1@a|3}()$7B8d?~{>y4q1hey-8;FjI#Ni z+q*uW+-}}|e&2sR9#7}I&g=O)_jz9Dx~`|;eJcY)RPb-@>}?J2S)e)%z0}YO9WKE| z>MGqs-OS?AGh=T0{*qNvL7}@)49~oR#V2(Mi1ni{1#aME@hy)I?2TcvO2|YyM5JE8 zUXZfQ8+GF(QHWk;O`xvOE7Z8fGfw+BCSFEUSXV(|b^6gv%KjA{8nH?RTAOF)KadXx zMXQ|&Sg%&-m4;m1O*^nm+UI%yItXiT@?pv2@NXNvOfnfin7-beJ0xi~Fion)UNIiG zmE|ncUdj;VR{i9|$-aC4aA$kd)zQ366ER+!L!->jy_WFx4}r%$L^k;&*A=*&xUiRA z@II6cK2P7is7CpDyGt{(ZKfaC&-KTe`U~7Z}Q%J*SJA2AaM|?>=iu===Ho zrdgKucgtbbwD(k6=T0kkOCS{CF>a zNJ_Jq?lHoh@<9b%Tq73C)?2lH)P|;(k#cUr>Oyw6!YgvZoK8&`OjLA_s%d6<9MH){3Y$mbm%vZ-|n_BpaG96)D{LDQ_9g#76 zf^~-Dr&^e75&mWP(9mG7S(MLx)jnck60Vk#IdZJc1Afj|FD%Tli6LIox7UA8-&$ON z6FYL}Qi!X=gGfjILfaU8iO0h)8>N6b^7oz%X|rbKOR+yC;>(nlrnmw{4t+fyhVXF;M{~m`5m-wcd!c|?2)%3vJo~~prE$l(;wKCaQT|~H^ zyW)gCs<)q$V0&F1vQ1x1jKDM8!Ey-3l-+7wWSyK}`c}BTc`nx`^Ics|kcs@Do&p)0 zwCWwR1%1qG*JIHX6_^i`sU5KugbcDr;y)DQ;WnBDJ+koXhePg4=+lrcKo^>vd0VGy zS06X;m8_WW&~3>PplN3tVA1|iY|2R?>tZ(j+La-cfwwUXsyt%aB4j3}UrEq;qF&>> zE#Hg(+~m7L;i*l8Nbw9Gr~X($X1hgzm2yT5Pz?L`XVHZ;aMu zn%Vul%Xg`8=sKzk35jq5hIpX>Z{GJZJIz~^SI5+XUSO-|)wLw#>(qKpTCS{=A0Rr$ z*ZKVTcz}xR_Ec6o+9}xHB?gR!S8TC8sPsod7N&Y0Y2_o5&aY&z1^f*>DKD_GH?v6x^ z);fMt zuXlGhYhHM#)kGiBgKQ9wF?h%Cfx|cg-(hAV6@WT>1WTD8(~&nEFZeuc zvZ?YlN=AaK9+)I{-2Rk%{+Tv+$sq+?Pg{<;S=1CgtM-EL4`hF*;%WqAe-*QkUEclO zVP2=Tb-7BH?TDrRPKU(4N?q+QbGlvnZ@3wspgV_ZM_~Vm_ZxU6Xty3#i(LlyTJJWt zmJWfpOq+3brDZ!?!ex)q`aN;Y1x`m+>mQs}EQ$%Xa|jXV%Q={c zpLAix$KQ~CpD~^cDtM2vi{f#=J-kWuyM3I1_NnXjnNygG%pZLES}q%Z+DS7J zeZrE?nU!^8)m-rzX-?d9TkBPGzkvs~vxM6zYc8taW0E|JsJ!nsub1-j&WyQrv&KBw z=rb))kZfUlFI|izg54mXN=7B!Iv5}zQY1<2DU7z`=bfHKk3h!iDpxM1Wb#?ey+W8l zJ@?)RiD3br8;8o%WSQro+`PP}1t|6mv z+|B0yYW&t_w9neu=gD4R3CDebPGjzU%HCEyb+VB2!L(>QZaz$h+>+lhd$%W}n(FyOiHb;6fn~Xy#f-*m=Ded;h>UAVkx`SFNmg)VY=wS-dFC>$2!#7D^YVEN3;2w*Bmc z^wc1+w8Np%4 z@`rs%Njx(uBlPkXba8AXl+{1KT=Z4MXR>(I9m`5IWP};-Z$_%7hDg#%rTkqCk$rNH zP_x{VTl}s@qf9M*=YtB=lKJT@QA3Np;0U;Lc7r1;R>Lh~1t;;Bqtgro`~cop z{}Ix2g5&3Zk7}?9X#e!;KxI`nw6l6>d*2X1GXJ#m_-g_h=RfT|z@h0s0L%&Y%F#sr z4uIhV)!2V04LQ%l2tG}kenfryvlf6A3uqva)A5NjHMD39=D-k610XP*42C|C|2Z;5 z^v@66p?JV0CL1{3o{WY*kpCI|s}_Kmp7X=H0fknL9h>)WjUEIpu(7Pa75BSPp`#R2IK4T^;$3vJM%1^S_Z!2e(0Gep$R27}4Q2`xB-Ic!8;Q$YRe3W(PbU zet^?(f%eisD-9zWy4?J8-as&UL?{4VMggz@BfSBzbNa+Nxd8$Lq{^Vu1?hBh-e)EE zZ-Nv67GPOEZ~_qR^nrinCl{nIF02JRYbODn$N|U(%<+L{7uIVAS$F!tzv(BS%;kl_ z(&U7es~t;E&@vq`bpU#FYV?`;$q)EN0NOe|`m7uSrUMXL-ZP@lOfrCJuz^(IJi@SH zB-t^k9rT9q>urHo3g~z+P@rSBFaLA!SxLqYhJ^G|0*DO|-onU~V-2}Z8ydVeSVT|G zBj1>R`OyJjB<$d`UiI$qH4UsqVf-isrco)F@ z!8*ZV{&P2huO@NNC&P34pk5;eQ@Jw=YFjg zeo*A~cdTNf(ixxh*H%?~DFtJ5$5~_R1;aC%m@t%a^SU)0JPKbVjJwHJ8R3Ddi zjfr}#WMS3g(CCMI*^8x5EGWji_xr7q4vi0#zOzm&Jbe4*p7*HlVd?IeGF5&SQ)|mg^+Edb5}f*YKdG>O5XB46);q#Q zjCURDb0*tx45!~_erSC1_O68f{;eh!u7hfl@_40$y&5EwWb)Mcd+-a~5s$H~@;AL1 zEQzkHE_7BUq??$1duA^|P#YU7aIUaJIq$0j4ZTSemSVzk)K>&c9~L(3 zIu-k2GK;5;9oB>auf>swh_<{fDbHzr|rd#U{IVg!t{^yL*o_=$<>d2*zWStB?L(% z`YA(^lC3{gB;S3lN1{R&Jy@@G4Gu%5Z-E$^LJYnH`pk5Xhs zkGZ!Zpo3TNy(+ik^-HOIlQtTAG&af#$vTs!5FUr!r&94V*G4I3arA%scI4^iKbG-( z87iXkArfH}|553!sM>~QNV)j>J+l7slVFyrt1Zuv>3s;!C&^nw zuD-;#yFV$-KNoi%mmi-`D7t4`lOHJ_T1FSc+nJbZI$xcu&Yg9eZ;dZapPxx10HJET z{|bCYep`a+4r7Cz*lWBB9J>$&4MrO2RHfbwmwp%h6w#3z$_o!^_XScS@uUZ99Xz@g zcaU0w<;X0rOy+auAfU;$RTGK9AtwKLqN{5cpyfS4S;I6F+!E)KO+sIi_Y&?+7IUa0 z&AKD;`cHoOETq6(3vNyZ++rHsVD4|P+k)-6QNmN(S27Pp&cgXrsm1&u%8@s62 z1K%F1{qFv!;rIs{^7tj3v$icA*yq0oHBBa7jkgTgBdUoy|F%0U{9f;6lrEBqy&BRm z=cp*=3-!A;<@_5{&B8u4%0-Mff&vKxa?jIG*(ct1EPolWhOQn%?T{r*b4|&FTkL7K zik>pxBSiWa#>=nzt`rO-ZE0}VTwqwg8f?)|J@})6G>}%E7an*5FJ^w2m5H#9L{}ch z!*LSP_jEMfGR7+qP$(**T41~QvQ3nzLG#8tw!BIXPexnf)+bt5{Z=y1_dbn&iWHG; z9Qp038d_Ig$EyHQ7a!YvIca=K2Uc84n&D!^p@zhi_}+Nm?DPVkMAuF#dzyEdO(_0i zdC_I?rq_8o9g5&R*|*jZSe@<2(vUfZ9;DvWTwlnHH&^x>Uo}WGGa2JP$7REBOrgTz zntJF}{ji}^&G~IlR->GZ4ntpDBR+j%&F9IEw{4%8S1-}@j3U}~H5paPjs>OP{qd5W z*2cg~6+OG!JHJ~e+g*}yZ>p_}-27o)RqqdStzib_2XnEFiqlRBbRWG?$oC@hs&us9uPK}Q zbaXjfp6)o88r7UL+ZM)du%fK`YOcPvrX4fmk;`56%Pa21R~THqqppWJXFV7Ca4_dp zMWZf4Ja|#kY4qH3kv4-L;iQj)bv~lNn?Y$W5jy|WhmWW>_Ghzd^1^tN*Fuc^2JQ1{ zbFX!)pmaZ0k+Qsz(mIW4;@-|N|0SMKLpXwi+)zu+M3_gl22mc-Y9aOqeoeGhNQ6Zq zNhhC>N3cw$rQtl*jTOt5pl9Lnf`x0_b$4wv^1YCAQXhpgbN_4!bGjpn84|#X_{l$p zPSh@M_Fmn=D+e-(4pcq7qW!um?O2nFhXwiDDH-AFJ~IbuNenx~@c7$fm-*f}En60n z;=43rqc*jr-fNLcP;ek41g@(+;TX$waWj2<1a%`^YzxiTzD<*(RK567dSxjo_1;0^ zeVVCv6+bsp`}-KIwF?BqEPdJ%)DKvX|i8dn;wQ zp_%>*n;T6*i^#7@mu2auL)#;xmbMHI*veY#YA?Us-q8P%vS7mcG$Dg$GsAtk9rcX_ z>r3VuEX!sE)`6g!@!IzpuSCW!=@ADs?k;qk&!1V7avIPo;4It~Y7#VtkF#)+$#Z^V z#fS0wef-G5W6^_K($A16Ugw6S^%8u7_j_S35gX1{t5erb=aRK4;XS86@o2wY^xlK? zS55cU8kaK~67W1*sNXP4Rb!$SZR$pUqoo#fqP}-CoTBQ7RkR67TAt^!r>NFwfk?3V zX9}~m!%=peJ10QIf6giYfQUS7ze!wN$FBBaf{6c|dXAB}ASN#Vi;DFmhzKYl$BTr2 zCh~V6A{Qu^j#U^igHNMzLDdMbVow7gfos~o4-9Ei%Lzl11@7(tFTrO$GN7vgi6h_X z3@~Up7|e%0g~SCglr!ed0Wo9)MK=%V4!{c-a?n)*7qlMi*wE}iaRQNFaD!R{G=w-2 z4b3h(7W}Ka0nHBqx^*&^3tCGCGZ;W)d@#5+psmbV4-Ij*1l1TsDai?|D*KBx;Rd8A zNGpqz3-%WY$_*TxfUhWwV5lPY*fT@wel|$=Apnl?!!Qm6HhE_}G$%mTc>yWr^ystl z8`ANJ8$9mm(Pt(2uU8E*TjU3}i6_?#s+c_X*bsY5h)FL*?g)!XcGk3i56lTcN>0|m zT+m9iV*~#RhA0kUAYuU5JY%&XN=Y_wAHWIGp~0ZAaY5_Qj*a{q!Gw?oVX#p_bHcNR z2D=GApkhJH*(ccRW2(i2{?j*RN70k!h zj02Db*&)rw0U?YZ79s2}5|k4t(I7qgP9!L_#`D<7zord5t^v4z@=gK(ZfCqLE--CA z0N8N=?l2n+^b<6>IU^c$m<04YE((azBpVEPAK2lZ5&e7O5a1QoRtC*VJ@(WPd&eUn z5E$^m@I?j+(lbVee9Qd68W^Jfh8=xYjg~5;g$*2A^OHM;xf9qeND4zfISo}M< z^_a)TZ@Be{eef4>>q`v_h_52jclPSK8hBw64KwCyL0!!F3i$$ya5Gj{<|ifOCP5_w zQPN~Gx%ct+2`WU(By6SSB6$WS-qtjy(%I^~c@_9skYTx}tR5vd|O#kZJJ!mhGkB zS3ymyOD1nGHg}qHr&sqzE}Uz8(=$Ssh;E8hy573V%B>cMk|%XozCYQrFr058kaYER zt3Dg%Zi7$oOp75UpfnXYkhx+d>QVNX zX9$POlJX;2+YJl*5Dr!4*x+Riq`dRv@F_vHm-OIOysQ2Em9ch9jGvc{Y_4)i z&mPN6!o1j>>%)cg=K3L9_R0&i-$TA%oP7M6!e5~Sqqia zA_b+*0f80u`tIQC@!m((A<_A8#opfn4!m5x`H`FCm^0JFmcQOk8@|UXN!%mFX!#ON zOS1j)`Po)vQ&a}#yLFe^y9}xvq57md{Rtswy!324HospN}4H~((e>z+*kM9zyMJCS^+3&z0og{tyZmt3Ku;Fte zYrIaGH5J8+w;$eXk1TWRiXkztBEs3wIAwfEBp41kFnWL(lIlGEUVKqH4DBV}=9EJb zkLJKAKf6|0&zzLGTdh{x1-5I}ViOIu+?%vvigU}_=eK5BC|~WE6ybcwjH>PMdY903 z$K>%>mIq`nI6?<5+@V>MAXLMYXLYkDZSN%gIvdC7V<5N_T+7vp>*$F0vy{L1U5qC@ z-Y7z(M5g@xa6?*GQJ!vp-J6^EY2gV&S?IE6C@GW76mA|h$>(wQLPp1F=T$8wz2n`e zL&V0?1Ppjb2rH)VrKv};FG#HMul_WvO~@R@lfis8I@#q*c@FzBA&HJIl9t?~eX?LQ zZ5nFOTk2bMGtZ%y`C<9h>QdpcjEs2GaF%|Qo|OItF73_8<@O~ulWc^x5E|c?52e2o zYPEPV+t-F--urO+7>@hanNZ01|;y2(LQ8Cwk!fpdA6V*L8k z%cw&vgDJVG-?0R(eARW|nfvf#Ykqxeda~E#1?H$W$$iRJOD>n?u4fx6xhU$nYk=uS*&Q?5k&tVyd^1C4a_BH3pDazThsKsZGSVR{(*T>~+ z41UgHQSmVuJ$txz{-SLEonfKNiQ#S}o2^KB-O4UVH};7A(y#w04GE^@Ar(vrR?QDL z?e!hte06VLp}x*l^tmGXTGdN`wx=^D6AS$2R}%G1549{`bE`kpVq3UkruIGe(^Ilr zqj`JPz8ZV0Zblt8mI^`5q?D3*VW|NgcfX12F?rijc#k z^F7~i&L^$inbXl}bfW;1X5tzfwzyrYt@dZ+#sba=;{s>vZzfMH?4M(0qrQ8VMRVDT zSVc`tf%4trdFn##-FzCj<=2%c51y=GO9vpk4kd*R@zF7FR${pl=L`!>Wj!6Qf=e=n z2S{Ag0s{Se}nJSzwy{?OeU^)vfb@Kn_rNFi_py z&G$96vT^+9RZXQAh^+RP);d02`<7mRkZN;LKO}`@6q$?BT{reo2-DR1*XuK6@Q5RB zjk5ypgJbV2$a{N!uZ&xJx`QS4m6&?rPV!nt3?@ge@$JiM?y7aT7bYY+FJl)I@O!+c z6afdC#{nz;bUQxpYKO{=>y%o)_tnrB&D|B7z?zXUALW1l#G+q7d00+Qi)gJ=&dpw` zg}JrhYA79nzk(pP;(8Mjy|}gHu9@Vn1*7=P#@bCK{7?NDQPcg&ilT>P0(xpzQAXuI zwH>_z4YV?7*2vo~S+kF;=TB=)gzm$ko_>;V$f$2SQD<=vqNO{Zyu>k{k3@<3H*f{w> zM`^`-wm`xR=(3QLw(=kJS1vy2v-i1_ci<05MLK8_-&| zW9!8ZP&r7GF>X*{Q1hM| z{b!*B9nAq$tpGd*G*rlcfl*N(Q_?|4|6Vje83ra-CntWS-~EF*c5Kmp1#0^(D&wKEO-b1nkW$0IW8DFWG-lW z_pxW@0A`&aPq-jp5iGa|ptGls%mJ1eY$T9o(HyX#J%Co89(=@21fL_Mr!&OS^u&Te z)4Pw&``@F_Oi}Q%I0342`q*csC>H>#*Z@LuYBV%S``FC?J^C*)1ww-5hJ~C%6RnR8 z%>g*l{NUCJa$f=d!^tIwW?KJ`(P!G!v{?Bz^xQ4?Ku}f!cHIi_jLpCMc{_fqk{{YZGC*j z!A=VBR^W^bJNT^q=+~A4Hh&gA7!I6V&`j-P1OEz!fU2-K;=s%Aj7R2zpx5AV08zig zyvBoeAU-xUaLGJkNdt2NfNR14WB+0+gxEC0xTXNj(9W3luV-fG2c{daZb+ah-p6JQ zerv%g0YIXl+YrRo@5E*X&G9}K%?S)``N0MH>CtDV_rFG;mEOM+l>O+}1I8{4P4YfA zaV}m6_ZK|&snKWdqriLF--t&Ohdg4_douhxBF;2sQ|6t&PoBaPa*!d3~_pfkZ?qhc%zi?pg ze|*sYy}!;&jfD_kkcjl1^VU5*?;fef0t0PxWI7+Nk#y6FK^_|={1HhpnT^MS1ykWY ze9LAAmz}VhB<2Maysuolu7dBJH@b~^HFkRy!n(C8lrf6eoAf_0iY80iDb#XWpEmVk ztfTu`NBzQIr?MBV>Z_>sd(8d8wqcrabI*>2pW9aJ}N0$wWMSwa(kb2 z3|saoaK&BIl&!@n$*{iXaQKG&^XzrYxnP`7)pyS$5W|cNN(D+e zw}g1k-9XgH+24LI@HFnZM5|3rQy6Od-d2Z!KQRg|i9UJ?R$I;;ddq8{(+rfO`DplC zmM_)^8(O^Jr+LXiYf^>Y_mxG*3@za~lVwgrCO)6}+Ym7Y>^}ZwX={onn(u{4ybZix zdF+(uaBhrCjOy*!+vwxQ=*$ObG3S`hidmpeKhrzUINdPpFZH<;d6Pa)Bk?+e>Bu$2 zrGK_Ozuzt;!XKUxw|=Mian1P6{Gy@^ zYlgBF>QbJ(-jYogq+b5}F})3{Ma?61Nu!5)A2LNsMlUtGJ!fbax)|v9WUYLDIJ;2Y zY*|Ec$Wb&COBjnG$cRVa-j0k6yHB+pds0c5g8Ub{#Ay(*gcA0To#Hdia zN>8zQ6}O;_iRXZHX{!%0yEidGp^}!6{CnJ!ya0*_9_!W>%LJ>}Vq-WY)A=g0%4oHy zlnGBziCiwE!8fBHPBwZ39~^#^wN2TBpZ1{)Da+4hbd_p+JVbrJy&|W~!ngb7%d&u0 zDGHL*Wl5jzED`4lUQ-${($b2EIXGR@;?=TL^eE<=W<#{R-0WrI3< zBgcJIF4;2fTsmhf(|q5nhZ7c#f_K;1RMopCv#1H>k!db`H1or#*|0_I)Hc*RS7JtX zzU&_hZxksTsCPYq3m9;;3qZ8TC$nMv15Ytd( zTZ{DA;2;IYY_OSOi}e%Nsxnla-(X<6&rUGGA*P#wr`oHb<(1=2@T4xjjC=bX#w!`& zCBmVE_o!d$MmvJ}5jN7(^o9jLF=r*@P0{9vxYK9eoe!_LnfR9PQjmd#8r@t<#-%NSaO|B(^H^kmh z?Nh{$wlM)0fuSo`EX{4cw3({$mij;c*z-u5Lh<8Ms(XQaSsUGq_N%o$c!AYu4@$$H zPNphE#>X`H?TmQfh?m;2uP2NUmMN)okQl7i@x3b)?jq)N_4#fn*G_mJD+7_)`?)+~ z@1yAC*8y_dJNMwUI$Q_w;g;kS8#%r69i4jg4X7?zQ)i$&Ew8AMHCgZ3svZ0xACPiu~?ywmF8a(D)HSNgaTP9XlpiG zYxpu<#^|U5++up{uYa?rA4rNU8o4f4!k6Z&EN-h>q2i^r3U@=+G_+T2w2tT%!a;%p z&lL?RKa)96WPQQF%%x=$(I!brx+rr1vqq)1@1b;}it*4fvJd;Rt;w1;;Q`h;7s3m@FwLVMje`sVAB zt{Y~aSKO8!`mlv2!#Di_(p*(SVR06gbJAW*^L(<&7%ArZ3M0j@keY^ki$5WszkScc zs@w!`aD$4h<&xyrq0rSdo@)V>B2>1Y7|WLma=V!`^{U^*$we?e@qVY^7if9UJ>8rn zeEw>UZJo~Dg3rpeO5Y-`e|hQmx{J37J-GK_Eg9~I@>F+hi(!&h?PLr|qKx@&DNKR( zA_uZ4(lAk@_^6recX2hb``3y5=sMqD;DaNxV49nrf6_Xk6G||ts$%*C-Xf`Is!vC> z_#);8kEcl3j(_BvEtLdtNNx zT}tnw#U%BBP{p^0b~|Jq$nzM=OjmQa)zLfKrs3cTh3a$4$?9}dIl~MumIsLnDtA-y zcWiVpQrPr`HLa}1jAx>ew(qX!e+)0@CY3YKEz76{Mobi35RFeYU6Qa8_cyQ@;m6wSq7DEiQ8e`S;5o`=SH zirtpY(MtEthLYXY_ZIX$bE*ajFEv>yM3}LZlzY_0842(_n>g1-&&}S#4k1wG?bQ)^ z>TbQA^LDhC_jb0+^rimghv?^5qtITpX)83F&-3ed^j+r}qgTZACYkcJFX`u$=UtJL z^<$ig^A(^fi%$v-VWmsZb7Khp7-;mgOo!M7`w`cVdtN@wLv&l`za)RbVbXrR5G|{{ z#3wl7A;-mO`#?_IJ@&yBT>?Kfg{r1p!BWk<$@8XB+$oX#8<>G1oQh=Vl#=QpPfs#{m4(DrpKZoa&IocqB}MEn2-$MY{#R)!5`AC0MfCZ8%DEDt|Ot| z??W(jG&|5uLl}I(!5)a%V4S~?8CO9^AN4o@h$s&rlEAD^e|thu2nnIGLP!5P`a`;x zz%28QQ0>zu4$kR7Yz~q31K(bEh+)7d5c1UNu^bSYCIH01vjB?f$x02sf(#r}2HpnVFst~d#RLo8HJ59WecKmbwc>CtB;=62e^rt@R{sFR|9T3m?VfYbnLldBnO&pMBL7o7e`l-=p2pK z(ijPW7;66HxOHzTgGbMfxhXvNE57inR(_O@R7s*)$ze3jRA!?elTTF1Ho1q8m!EN_ zd*m3XoPSI&n=tOix!(GWgsEhe_0C87;gyJbk%2;!3SEQV*Gm)VRtK95$*if`pHr!I zt}}@YU>&S)%&*B8X{R&Er`C5jd2B`=7VM=&d2*3kzLvje6=S7tQ)zy?(}Uh)<$A7M z+@YrM8=ocRsns&M7*Pjt)4`qxKZd(2ZjXvM7uQ-g{xq!|aC+YzY~e5$jfmnFmalEQ zs)dGymQRa5G5*y7ePao$WhK4&y2f`+uEbuH(G^0mnyvv4aw#UnPNh#j*IuY275zMH zWq2HO+bvUl++onLA^M#0cPTnjVhZ(6hr!rGCJMH!<~3UY3WG?={WN}vl_pe$MX?#3LyxC0T4O1adiPSL_bEl-qpu_9k)s2$ zw71mLNYpy*4MQf&Z6fsaAJf)#=gwI_n=}u;JX72$)k$HtXMxCSlP;;1#U0`-e~Ce1 zbp57drTtsg$KS={Sj9U^%i#p^=jXqeX&C!ZPbut#^%tA;URO&)>vZ`j{y3=S(m~bh zq`7YOn~Nf-8*y*dvgMkrt{9j3z7j`w44IT0HV~(;{v;4+z4bmKm-CyngSZg!`NRAw zTNK)2+;1qw32}s15!+F_YTJF#qnc4z-_gp9og3FvCAcQQLG1gH|ArumdBWIGA5(3w z2IZHZ@!cKBW;50tuf}46GEF(D14`i3job5+sC76JQk=-mbw^n^77}&2`>>L)5mo-& zsV$GdbwSs|%AY{Gt}1e2)YY>hnVIB;>kZ&ZsWg*X?|lD?d<&}L?ax8Og z@7U63u`OsR@Wa{hS-cb17AiK@-oiz)XkUrFL$W(>GKlk@@}>~UbsjPNeC+I2?3pw^ zZUs!5&~KE2YZ2HiA3nF?CKHlSZdPKL_^ysnQnz6S7LHC}ZQU{Qq2utirK)w`GjS@! z|5*Br%&4DN|2E0~s_XbPqjgc1CZAyeesi?#L^hgLqIF}=1$^{4jwH%4N5bSCVsGWK zQMCf?t_)9>vV%IIhyca{d-sER8W*YZLI3xzdN-H7aqi@eV~D6G6W+MtVxdolW_Mv) zOU?o3IzjqSYwLtn_c;%~>&xEW4&~%@T{5i{bgj2B4s9?KrilI+gEkGg6HV>$UCsmBPc8CzDx=eTB)wdOX>S&-nm%Mhe1v}fnkC-Y z&YjB_X3Ac^c;+$Epw*O6${5mm)#A;!sMTVnCQ(T&Tv0pIIV%4X@2j+r)kQ``TI^OXwS2>i0=I-?@T{zO#|~SD}gp(`~%M z&%152cfoU2km>8WXBNzNIm-0f?xNY^S2YSsxT!5CPZnTapmG$84pg_hL4st!jfdPZ zWYonG!ss4xbKAL?bC>S!1*5N>J@@Hdt1f*DtfzlIW?*ZWfBxz{s>KiIpK>aaChOVi z3(x%!#x(Bt&C2+G9;G;S;*z13!UIzBHi0%q>bOMsMzlvSZmCR)n(Vd7x6k31`*vKp zsfj>AtiNM5Bwaa0bNMd3lZ$*1W#Z+wMUKJ3HLMG0m@Vs6^Bj*oMomTqZ3+k@Ls1S5 zOagalb!3RVsy>de=--uEZb@0$bjz~E7i3WsHt7q=D`ru$*C&1y5xN_Y{3sm`Fj|KON#3|Dc)cnpsI%$DG@QrH^jG=HeD#AWrRY*N5p;LRHL&n(K?^Z|VJT zKX7dn;|Z?U8r}%cr?`+go{{z;HX*rX*g~Sef_I6)J$@JA0VhLv4R?_wYGY>>8oKpU z-)@o_xmn^z{wbm=yX*AIty4@*``&~3&Cd?6_1d%cizx+3him*bs2aM|U#@+%k6HXkHAfQJ>Ar zy)m}q!aK;*sCt+OuScmIv;=6U`8fBM%ocqAxc`NAt!Ih2G z?}71O!^F_GGf{J1kz@vtTar+eQD_T<@J#W|2kv{gFJ0`^r;m(#|8iB$a9)MAV^rN+ zKJ90sf=^GiPO|>Yq>tEL+>b8=boiXggBq-6Nu4<12Hax>uLa+`&jOdSs&q&61zCCK3@JRTgZiZ_l0+<6FWVU_ z(-&9b_P8bFOJ6N3qpoDE1-@;!@f32r{ZwAblO(15K26r9WYlfPh~0t;Pr4M*Rr&S} z&FSinS>KW6hkd+Sv?CmDEvVX2t0-QO2;FS`Lu6NbwiC-!lDxP^4e6m#c3ml!JrKjxsN9DmnazY5f?@*50Lut0I2Q6;Tl?J2Wwz} zPMmVggf4{s9GMdwQaJ#9g9l=y2jf@|EgFM0@=>P^81g`FXxZ5R77TqZ|8v?9tr-uf z1t3@stWKfO^g5U$LrmRZ^fLgQJ*aBr&yjx}>cK5OpoN^o2O!*<+zrw2oz6gGgl0K5}a>#!>AGlG9l8{j~&#BSWsLVQ>Y#tHalK;8&r+R$*!pU?ce zB`k1N1h#S~X_!DK|L^mLke-13DvY6_%g$p%Lx>%q-sA-ME+3E~o?P#V8yh4D8+csMBOb_iPqNe?n8oSunghu5AXV|{(P!l-kbfT0r2w`K8@Yof z8XueauT+6_DdB@*A^@Sao<4DQ2xJFoQwoqBHb6B!vE(NJv}20~IAXj&@(Hm$JPGe| zpTL9ujQu@r&>5Q_?EWVQJ}b@GfgGI&z;h6{3wBrt#fd`y&!IU0SO}5ao*sQxo^gVW z8{*z~YV?_#83a?|1HTUt?*|SToGor>vM|hd4QR@2FepUOTw$28fa(UU1Wzvb-vooT zW&v<1jNr4jQAjTtz_12{EdWNr__WT7{go!{fCtG3Hu@830?jjq^~ey}F2siTWH2;( z_h**;wy6L}8aE7sVDM9R#&`8=+7QoKaJO@E;Ion&XvqO{ABZ2oJr%h2IT?J`9?A(g z)%;*lP76N95pLYh z!;a)ns7K_Lxy0hO6!9&TfKy{3V<3x6?&Lx66tW{-n<9Sh-6x3ZMc2bVI6F^2S90O> zt=^y=rhcvFQ7C)6Nx!6=e*RTqJc5w(K36?)kYO~__eG;Hg9XdFmZk2Q&7i?n+QF%y z_@%1&QszUE?c|SXdv4FawiOOedBhpwack$$?ujy6-Spqooqc2~5WkA+!NMC+U38a( zl0Mf$eCPZ=%>)Yy@opSZX2fk56Kbyt5zho>JaE{uO z99YEF-5o4f`5+R^W%<;#X7-BKH>nX!YeU1*^6plR*t80axWu-?rb&BDx$pp*DzqD3 z2%YkFQ%<@q@A1!F8uWS@PQ>z*E-6a(6ZLmRXywGFx!WwSBuY0)h_kC z*VHRksd#-|Y+b9>A&N+%Jh0eYDK;WJ39*s9fV-A9vvFMs|3+y+bZ?rws5&FlIoBSi z%Ajh~8IdQ-T*zNMubb_v|1df)CfGeJ%n)h1l9x*FKj9xte)V%mJm*YsDIOVn-~RIz z@k!&pt(HN*%Bc&QOpn6*5m*InoagZ`xFWrdILB!DR8((;rTL0CkA$d91>T_|!;F3_ zmOa-SQ(tjjWs}Qva6c_c>KU#5IEHG-NZz;-A$*9>rQN@TST*yKV5{;OHhuQ^w+6(q?8TXZWWg@$TCPwsBV!_q;!RT{Df7M?A#Afmu660+ftpW!fu+6rABD9t;L*V%PS$ za3fQ_yL-`nTk}HuJwF!^&qf!$)N;r5hvV`_rmw@Qmz$yRn@3+_P9u1RJ7&dp2we@7?PDpKvjEf;CijTI{Lff z+If|&XDnY>x(wdEpfbHfY3d{?RBKDxf}Xy=NxWT~V)%qRU>!b2k6R~qx+WoUx~hfb zYs*IzndsEV=SJz=l!x%fdT(-JRtnHnH5-bMU&c3n;TIUkp){jUBOZ?C%B3@`dfC^- zK=JaA57z{23OvBoPyV_Gv z`eAPp=_Tot*_5?6-Q1N`LE=8t`P;R|5;s&9tGeEZL{sLW42MVSI2fT7tt`JAQ#+St zMmXNum0I9iVOYArSviQ9N2VGj$2;VFN4jH10~OubS9O44su`u5bl!`*ttQ`FZ4-4M zIcEgxM(ee(N^5)vVm3-S7L0zKs@YFc#X~|1Tn`1?`(<9_rWzj;ZSGxYpCUu}xp8N%uzj2E&E$E1 zCxpjj%Pb_9FHdpcqK;Jx*fvlJCOUCWo3gUSeD_LOd3MvZ{f%5oQ1i=7789p-AMtUf z1XU{1k9LTU?W9Dn@mkEhh;zCxmmYhkZ(Ew5BsH`1*?ZM%Zran7OL*OtqaJWma=web zW=2Jr3^dO_#oW2YAhFTL%$tecg zz|pJ7k-qpYlwMaaJIp-5h-AF0KiXw_f%dcegf*9r9tO_Bpbyiq&mE3S%*hQaqVKc$ zNFJ8N+z$DHu`|fY9AIz{*-WK4FXHbVJUK@NT1&nt~D{bs(?3EK*=>e&TrVnJ7}U-mT#eColT@ z<%-QcdzQIXvMBw8!{F`cxooQ~yzPttIEo#uPvPSBjcC*RpB9=QVcd~<>faxdwuV^G zM+s-FxmpYVD#%>l?hgK}0tNnLd+zHFk3&zk7H*Cf$4u3W`g7;fLaI!7OQKzCQbaQ> z)E?H3H;gTiQU5%!wCXzdg}zQ%DJZCNj|F9)%CqZnUUj%DM&!r{Bj;e^I7I zP^b#QIki(0^I3hxcqc-g>-C5rM zxxi*6abEmpky=0E+v4gsROmD&Y+C$oS)!~;QQq0Lde|nra_9Z-iECx_EUqFOeXDlI z#<&ZA?KZg;53cNG;jNjRDm2-QOD@;OT2;AJ zl|`-#V=}@ya0RG6l+PBh)|HF8i`F|yOl?l*P;4yH|A;vcQ_#rO{E;TTEn9+o5@v8T z<75B#y>k5=Y?e}frPhs-jOckrZzz)BK3>7DMenz7xk|28<9H+BwyNh;#O=dxA^YFd z?K7XlnUY>@LKwPW#b=4(xcimL67GOad#9xF4wArIUsmsUt<`tKquN(CiTe=0GJF2m zuOdQTv3o2h++6K|!akj;n_60pDZo#eBEl%MB1`wgmo%MqNHJ6~gf@-BT8bX=9#-s4 zmG3D!x5wVPZ`q1Zpx(_|QoGTdg1T9Q&u6q9q|FuY_MrE&eAmJnCL1ap>wyUYX$bdi zt%dtH7OKWSD@}HJUhfSp+dfkF%4PmO_j1271$6D~7k()h^>2N$u6M##DFJBY4_$-@ z4o_UJm2@k^*KcS{#dR$2@p^01Sn$YPwecKPO5cjVruq@SLuZ&rwbwRSuLz06%ftDZ z<(SUlHp1JBGEdC3$0^4%%oyJ8_%+|zMaPsF_4yu)F?a4Zn&?i>ekt27eQx_)iwZ%l42XW%-&HTj~{3<93lk zU+IdJI8+`EQS~^jhkq$g*~7GcnRao-Om(o#$a-sk+o4LD$GV9~BmC9i0P^fNm+16( zf~TGfubl)!V;oeB#={R0Vh;lhPQsVJIb5i~yo>)o@Z~X98Ep9SWM3cdBPQGb3BLR- zv;GgG>}Vo?2Vb5ji(tf_=BmkkbUXd~q8kE~zzT-+_=H7{g6>^%ESLk3PIv$&c3Nv> zZfHr}vFKk#)oI<00j~K+k#X9*0dUFL$EFQ2++qh04Us1E z!;l<7t6h%;|9WOXJ^&CAj1m@FQ3op+@FD@Gb+V9z7SzFv1^5gQkHQFsMzmlg3D>E? zf0l#LZwkUpg7h}#0w!a;VBJm>z|f*NnDd6TxB-cLG8nq%|8w5I`Awka=ZDc%f*TN+ zj$>(m26F<^$x)wTfV=X;0_Op(<@D%ZFB;P9g%4<{PR#qPk$=a6XXb?kRY1$>U@aJ= zffOvF5OmuUn6co=d0+wL&|E+pB(zE{QULQM{ULckMu^u-|Gtl301)Kv?60~4CxWiPlO+U58CJWDPb)tn zHC$>ba2t%#>*i^~7h@qqmJFNrjy8!Wlj(WV+Z(p9BY(Qczge#8!>CfXzPTNW@~C|q-TzE3g_L!|+g(0n2EeqHhmy18P}9h6{3i zwBfE=mULGa)Qw!UG49l7X!TS#zhe;CK;nPfaXT{q<0p5*`nf_ahS!4yo5j(~*|L@d ze#7PV{b-_P@dzG-4c$RLBUS8izCAX>$?Mi6i_wCNJGZ{~Jy$Ssl&879ocFBE-pHu? zY9YNN;||j*jRW@cj@!mo0p$5iXkSLEjVWho%r^V$>6%d8GtG+OJHHtdn#_%HiXF*&mJkdy<+VvTXl%3E4s!~aDty)NX>YoqBhQn z>`XJqN>V&f7--!lx#q8qjmYm)ietU>oPQ?gnxIy{x2f)7`1ptHhF4OI)}gNSEgg&_ z+VLw-JKq$EuG8Hnv-ZWtHVrJ3F)0nNsS0^jE0=FQ(JzBAdG&~|}yIk&9zkF<*lG0@-6vpR5 zls8O6KR$^emgDngt0(d9zlujP#`R@fk2JRFBi*iajt2H{B8M@7&`oin#7h(Vad0ca zWjn%(lVcc5LQCtPrv&`N@i$R zaKZ}lR?@6;nRNeKC}OPLfi2dB%gr@GDWwDqFjj<1C~#@P?(V=2 z)1w^B@S9>wXNE?*46m_k@_;QPFYkW;wNd|q{kNW-x7Nwxuc>8hkNal~ zC=hko>wMjknK!F7os->RNSBf^`)(AiZaLuNrI*pw8^>&~)22=Ex}+Lc`xftV>zdKd zdGG$OZ;$@*d&<|z{*OEFEuP|Ce0%3Pi&pw+jvRlpuutV(p|^Ludlh6cIPlW-iY1)u zO-yjGEZuZrg(_`d4nMIuqRkcWUkV4LT-(yL!pb`}e}8nlYDk6bFU4n<%zQFUJL7dZ z{i|EO+J)6C@g~J0sa0$LN{7{1&$~6LRQ*l!p1sC5s5f%I$BD6p_iS5bIC}Wv<;q8T zURGp37_zWa@ZyziMlOn+w|nNC;32;bsQ34Nb&hwd^1B+(t5sofSDPm4ZLMOeH%PZg z{llZR$Cc!MWkyvyU1#^z>c#I}54io|Y*c);%_HhPEq%xD`|D1`Z=5H5&*)HnU9mf>KG^2Gi5l2<%$KB!+S+rL^s!HTAN*+ZhUAi|SMCgI zRchz8mE|@^=`xBWHr-lnR)s~`H3o)Xxzg%z2ji%mE%B+zcH_?!-t~OnT>D=ZO`rYO z@>T1u#MIBa@%PxqlWi@BhPiZp)9>ZrS)YEtKcbQP@WSx0p;ulHOFocdkutnW&iBqk zyl0NmonIGIIyz+Jhi#9&x1F-GXuc+LyiH}F8Vz%{y?cK+t8n(#kq;(sSUCFh`!VIO zY7(BO&fNZ?YlYZa%31*vx9-RcAKJ29t8YyebHYo!vo2n*Ug*f0!+RH-(4>gV`rj=t zOmBVVOmS!5-j*$Xi}!l%cXz=TpAqg+qn|mi3m-h>WZ*=fKL#e+dM;}hY%|}j!nv47 z&37ap_FuK)SkJuzC1U&pb=p5Zqy=e%|+ zQ?s6n&81h|cxpHUSN^2Gz${OrF zBrPqjQP_Fayaj7J^jLKFRjHX53hvO>nOi&Q*{+CluNIW4ab$e<^uWD4rdSz&|D(&F zR&HGqQje_mu^MFmqWjRM)#YWld|ttyE$#blO|QRoN_d?;Nm9gmOE|iZMM1;OKw_uwSC2UE^p7D*IsEo z-8z2g5szU_553*n@=WJ$VQXWrS2<91Lr}@V*@qj}t2j|#cJ{G#4;r=UIsrG8?prjb zSd&*tiOyj;St(uX1U}w-;FFETjL@6Am&H`Gy%@Qps>eachRZL_AG)pO$_2XeeSYcK z++*d}^QR)ZEWOso;d<8QEq)e|ItUGOYczkqg?;>y7oN<3OX~ z&8cVgvRH#v;Z;8GQ?L1$Hhxk++oDbnd(X=#-DK~jxkH*Q{B>`Y$OYZ2_nJ~C^GKP> zOZ|rg-s%3k`f6<9Evs5apAWmYevYcz(z%!0mdPFO zTyyJqdz|aD%Hb!%o-C=Eyt?qV!){$NGVYH5EmCK@VL{bD)-8M3Z<@1j>b!+3rh4_i zJ+sY_^cI6F=M*n?zPk11`hOLu=9GM)(EjXSy_IQmzV}*_)@qY-qf5K2ceS!IzpDI- zKJ2xjnMI+GPd}%BjVO`1$n$FVYe~t|uPq34>sD~Ey4jwzQnsff&V64Wvv2aqnmsRd zuCXpF>BZ3_If-RQ?=r3wVeQ7*_gLc)TF@)S|{D zeaURVLv-g%^0hR=&E!8H@X$!79RGdDSR+3eAQJME0T202ZsrPWu(&dJ^R(LJ_6)2? zO$yU%l5_!mzCjDDt^f6H<)!U#KuC=RmlztVQ{;DHI{ z(sCi+fQkIrq1nQ8*2l~`MSkeeq^wGh_ZjGvC?y-1S)So6<_|h8k&Q47Dls!+@`qbY znr4NuzOprUE(^=O9}G7g5u&qubQ?TBRr2$SCJj>xjS5pG+~j8FEfA#a{itQE%jhBG z{7cJL!zOL3DB6Kko%~D7mcu5cr6E&+*Kl~5>$aWzPBgQH>CQhhR~2gH#~sZUMs&;E z2`M_YmH%W(WZUCdtSydn$_0z!jQ_bX@}HDuF2UEx&pVosO=q&~gmf>u$BrK{jr_o) zNonC4HDt=-u0Vu(_#{p`A)G(qbRWD9u_-0)gVUKgB5EhkdNpZV8Z$altTmI9NI6yc zH_Zy;B`l;%j`YNh3eIXwq-B@ES2< zP5G9Vg^Nr|Q?@X@BSFtZzz*>uB0qs>S{nM7Zm^?+^T_AsO52&_63P25F$+DvZD&T8 zYUIZkO`2wf@val*j%!&Xf4;?}Fi9uPGDW@3gxfXvDSsZvJ3hFf00~g$3nS+DgTfNo zNc`2BF`1%=#P(JG|A*L2UTS6`HX#-Xuk1gc6O1%o-(9h2w()DlT1A_E=yx*3a58aR z-(zF1U+?{5RgYPbwYLvh*5E|nx)avA=A8cK{ASbu*IGUs+*%eH-+2D7tu~xZp3&C- z;L^5NYwf++V$q9#7FS-EIIHonj0KDC%w781m!0*lL}Xas@GNB9bGiDr_%8!Lwdw9r z`c|Ei4R=hqHK6+U{+};T9P;pXt&mCY6V*f7UXNOx)9i}J)42;ODYG7TyEpXFhE=Mu z*G~t2-m$>ycv78^@4LP}eDAg6Rrg_A{z@G8GWhP9m-gGQj85IrwPhjW{vItaU0OKd z^`LPtx1YX#lk`8wB-=Q*>x={pZzFz&&z z{^2PdpZFK3ez9%yy`OJpr-eD!KU}?G5!Wv+4Q!%!MK+DT`#K}*^D_Uh^+z}?UpKMg zf&OJX2fixRtGi{x_x9(ky-wBZ>UyQ=ie0mA^c<0KbzsY{YYiK>r&+8&)Z_5c;QNsu z4hC=fkdf2o;?dPUDaN@c-+pRUVu$aB7iGQACaK?kyl^2l>e$Uy7dI*gUMaT3cT1Dw z69#_vYq0V4r{~Lt{C+2);`t&Id^aqM_3!%6RA--NS8sM+6uPf%gQPX?X>+`d2N%xY zzc|zGk>~k=y-Qr17o8D)rnURa^zXeRyPbV&vH!Ee)o0+!oKh1GB;C`uXcy{sIPUG+ z!i$2s9-WvzCDeA-#Ja!KYgD*!54+{JnCPF<-f6@Lwye^c*p_iPi(+`>3+g$&2p;OZd zyL)*k=DaLb`Sz_|`}F&FE$W{b6Io@{!U|D+s-N9lFYVBtVoe^+j7xa?$DOy6U9L^- zS96P%-|42#V|G`Zc`RTxD&g+2PoC~mJgs|%7hRCv;c}!VsC#_3${$@;9tm)L?|kU3p~>8> z1wKChXgz1{iB^MdeQj3rlPZ^;;Pb5effpN>wsY?N<=1h|FAY-Y3UqAWuuYNv9^sRYzewCZPL*@`wS$4^>^4aWipT{NN3<3cc<(V*dITUKJ-qzKOM&^5Bux z_}|~`yy)_@(X;}N7E>0eia#yk_=;8g%Y!{r+{s zlS{kLYVOi`NuA*ZZ38{mPb$=XNzjLNy$jtgZBc4dg46xpv2~uDZ`S$s)6r90=Iq`4 zRF^ZSXpJP#3I7yK>|d~zrp~6gvHQ1`J+$R-i(i}g)I2oPz0W^ivtyzs_wg-zXvmU} z={Z(i-t-xzIX}ZUG&VPu?u%Y`uQ_k)@^snDi<$wSf2LZKLmb6fXMe8rL~ zw=8Ro>{_^XlRlHuotRh+-EFlQQ};!=CAzk z9_t(0XPCkNLyf&BD#U!7U3X#aoo&AFu}-U*u*IoGpVYHs`uD3`W$VU?^Bdd0>64jQ zxNZGa6-O?eT>kmxDGmD^Utv3G|FCZ-Z?sWf-ZH~te7lOn>bu^3x+>aG5?bz?lwNmqMDIQcAyy8e& zz~m!)7Y+*^(>G(S)3d(U7i&YT#~4nu%ly!^>#s@aPdYbflsPeKV2Ntoa$a}$^fQj= zGqG`}EwQ)S-`YN|=C8UJ%~o#k{?q?{srax$JKLwsHXI3y$XQ!%(wt@W9ZSETdGS(6 znO`h-xxKD2HNmlL%ckwBlwMz?RO|0EYW?!O+ml{%y+4Ofj%u=S8# zv1XeN`>i=y*6(bHZQN~zVo<%R+7ESN2R|$S_I2GSgF*)0JYDVP+P=p}?V3Bb#kzSJ zR(mULI#{xM`M9dZ-)&30HTh9o+<-%?3v|45{z>1ndy`YMby0tvKQ*z4YRJdkLoe=V z8~32XhV>ye=5J9rSDp0ArRVvn9cv}*Iq0=|@;>iDL!0bAd}MWpWREwh*I6UVp5MJ< zz0HQ?^pu$Kb$Z?Gx%*S;-^V+DpSHPFhhD7?SbaUDKT>d#&C`2JNAB{xncb=Gs6P%o zs(X0s;u+r6|G8GV*x_lfH?*oQSZcKu zmIi$4a{m5BHrOrrx*3e?P)^E19@11nrtGTr;dwo^)X_u-Fx?@rEN%wOjd=oc!Jo2e^ zn^W^Xb;yaV-u-BfbH}##rw`d3HL$}w*T+s5mG@FT+W6kwGtFRQ@4aT|vI+yTzGQYy z_&BwA=N@6&oz_Ex_Mc1G9OArgfWy|mI-VIc;p#58mO&*?PiPUI-l_7iCo|XIxLsjh z{P~XG7f*BDetOgAGda!nUazOVtqeZwdMPgIy5+nPheO7A&zf&Jt=RqbDespD>^!$6 zX8r!kQ!PCj1YWiOI`*^G>e9U)tXQKS)$yqzt=cH#>31jIrerMcw8w4Qo?(MlUitp^ zsGDE2)Yw%Fe6 zrQ&pnMH9yzyj0@r%PXrNovzhn$Ea#<8SlPczx~c_Ve@p&@$Us!2Mz7OM>E;JyA@t; z%zaT=W0DDAKAI_b&Zf~!qzL^tFDjdfX3BFPL_&Tpnu$BgWXlYp7p8?NnrSWtiw=#L zE^zV|R?_v}^tJ@vr=*LSxUh-*)k1T0YjCGK9>p_LSiZK(+qASi(%{e*o>Aos%g>*h zZ#loh@`ahXmT|QU-exw_vV8sjUlo=w|IHP~h0$h~&>Hy(QnOvoudICOZ?0WCyc&R| zHaE+-AS{0#VH1^a;U6&=D~v-|Iy2|YG+12!=a%y={1g18##0(va}g%_0Z?;;oqyq< z;4eJEfiSF@(MBNpKlVBQ!au=ZYUl#G^^u!r`RPxyea@$_op36j1uQ7QV}`@HpzWk?( zUYWroAo&;m3Erkhvvp?fmqN<%4_daf!?|SSXwgHvwusVlBPKs}YT9WWDWq2s@-O`( z?xxVKEi94>$9?V01{1rmZme^bdN;-rGKQr>81yJI9>Ud{t<^` ztn8pal`86h8BX~jkJ{0xf9$*~G1(e3+nt)9nl5a2(laIei2sO5?Vx^b5nqQhiCaI- z6#kJSwZ}D(dh9;rTlhzc)DEw8;c^S4@1pZ&UQN-+)A3Ek8c%&gbn`7N&!{&ktfV~= zyx9#EZbmpX@{D?uvi4A;N=QZirGLa^v}K3ARBXoL+88rzB7bJav}wAG76v*0(m&Fo zv;n61Vd)?01l&ifg2l?e?H_R&Uj0FTFKsxcpQWw$@~a zR@x%c3LCFKu|>44`}3&lnhHfX4@q`}1a{w#mlpZyW|+@p|m= zV$kIax)0aF=Oz8KW9sF#o4=fW_;vQ@T8chZ4Yvl=oV&Kdwng7!znuOwcSlA*HK+Q= z?;YQJxuq(imZ42*r#szehRy%5%HnB}y~V=@M_ivdd|&N)3q%|CL+*6aMI z&6JE{y(f&_v0%3SKY#wdW!>wfdI8o$UPmv=u_$+WQQ995ua!8b`=wC1RnC94e7Vo> zNZXCg+Z?Dgx_)6rp^o=-_Ium9`?f0@GjLwfO-I+BY4P#*{xbsNdavs~)GPYaoOwk% z8IP*JjM`p(-L%2RvA@kZaNDElEjOl;aC0So=vyA_EGq3?tdWEFh*T5H2cj( z$C$}|hD9`A+cC^O(Q;awvvK8nj=bga>$>`rQ?7m8^}g*pw`WH+t{2BXt=P@=MwJp} z-j}run)#{V_>oDW6K2Gu+imTA`>)Pze|_A+__@@wg>Ti3f3Lb|^TMQKEA0<7x)wDk z+;MWHQ&Ya3dvddJPR|yV-dNjMxUG29FEzmO@@yZ=)AuIr=^B4}gCWN0?r)!M(6O<# zvKmizv)ZPe)_&%>iz6#ccPT!hdb-WIn~VP`u`JuA-SMbx&DXE?Jl3{wiS!5Gi%zU| zE%-vPr_J$uJCC}a9C~`=F5QM}w-Q&4b(

    uWwfUhW0DeuQslIxbDiHk$2wPc~7jo z{qwC_b4K_3xY{Z7veM`-uZU9|36bo6|%f^t^DFcyNeFJKBZ6j zIhS@GYngWFQugm{_B;<*^?caa9z(ttsCF=WbaBgLqnDTYC(A#4e~JG39gR+^-&`Lx z;#Fk(vLwm#z7&a$NC(S~)xns1nQ?{M*RMcTi+Q84md&BCvub!QqjKcYT;Z%ySa z)z!>Dw;cD~;v98odE(lIVM|*Em2)~Bxi4c=`#Y{qFJmiYXK(*@^six`zE0V8aQ5OF zZnty7bHbKK)S8>nJK^xgQj;5|dnAXCirO1&wRUjJL5o(EegApgrN`?^&f9O>XVAqa zfd^a6>l^e>A@_bRnWYYHvwi9o@bP@-b?YK-etmKDTTGRKC95r&8>%0?YRJ{oo)=Qf z`lL)BU_b8pr6o6?mOfN;{j!JCS31r8B{XDdoY$$N^XjK9oECWd^Xc`4DsS7h`$hC7 zO{sG|oxk0zF+9D{tQOxRidShh;8m@W9YdaE&x))2^6}`_54~f0&wHLV%vN=3w&mQA zz9owu+nxS4z5VAI`&&mXpEjjOSJ(QdwttIMo}V5%CpP%Pf^z;(542l4@Log9%U7+H z0mF)nyE8ds`NMUIzHYl+V=gbfF{Dh^9mj3=o8El>F#6k+t}l;RT-)xGyt7*A>SJ1z ztMh8dx{TVR2R-=QZO;3z4_yu4+Vneoqt~9&`lMa~RUBS!d;fOYj1Q}x|K0jR_QorQ zTPag^-{_SQawoHqgB)Yblr1@zkUjt9h7x)&y>%n8qE(ZG~f2g3CFnM zaTWvhy^hoxany1B4n@SsSBX1sm#m@MJ8xTwu>?&KZ#zF|ETpkHx>#u4L0> zTYl9ZEf_ImP`l_}_lCU7*1PU@>2mJ)`O9VZu32-re|i(G&!LR!k)D1V(q?D3-rdvR z_3nv@$7j5VTYjg2yW{3E)i3YZ>s3kHZu={{kPyR&m)4UT*=#L*VQfmB;xiAl=~-f5 zNUxQaA*b)(noqOhpcfWSL*LZQuuCvqLp6}Yj;!~63 zSG;Y1JN4a=QK>}J$+e2NJe7FbY3#6}!yC8An*O({`j-psXFH~kEw=jmgWK)HTFsu= z?AxYeZ3~_~zxP)zjw>1@7)L7vAk^#_uGSzR5P9^Zm~A?5zH0N?;NfM30fu&hS|a@BC@Q=7# zBAc=V%{_BV@vHo&$_^t%kGt3*ec0Rs9$Ig|u5svYu zz%4&ydDU-z3%q|X_}y?$@L4Ysw5c z+wJepg(3nfpWLi%Y-OB|ThTnSyE|+Oo8*`hKFQzT&&KAD@B7-vtVy5MYuWMkt}|+! zd3b7m;ENd+`#&7(QSSEAX@jpf`s3lW-?PT3uVtNBU84Gco%Yjq#u*=!Gj@*ryGl=Y zW6%Cu>z~}!(kd}$U!O1I{%U-s>GzMpo;A)YqukHhkAC{O=-1UN!e`w1*yY>Jt<6V8 z1^(Kj+Wt8zMHR2Ow;S%9Je=VDTmQ2mhkhHl+-->Qw@t?*!pjcA9WjUAX9R4U-^%^Q z)xGPlFG?yB^{(=f_GNwR7#H5s^$r?+f5ys(llzp2NtyKQ)Rgc+MJsoFZ9B(aHL{y> zZJm>Gwt?#!w(MBGM)8hw##nUw?Zl$B1s8Q0)&5wylvg?R1CwVAn?5krb5_TCJF@Gy znD`pAl#M9x~-sP&T>7Dc?R z0&JQlO>DAp>#{<1y~iwHuzXwRgYKbGdr!RdJKCaz)4{qaW1QA+Z?kdbs{2o0wrbh# z(6-y&TbH?YzrDqf?Dr_S;@>AabzWoijE%oi;&NvHX=D5wCN->Lxz>H_0oP)aw>G_B z^jm#Pec8k7IxAfK3l*-gV5&u@jin!Fc{tk5vv}ONkH?qPlbNlj>YnX+yDRStfLNo`|u^xz%)?sYp``p5bB46-y9yVB@` z|BUu~oA#>VTIcA6r|FA|yjpW%-ou)$vKl|$bFZ;)l^RKDt&;Ao3`k$zxN(P_Wg_a0 znKQ<@$EXQuXVMGb-h4A{Pw!Pd7WdwEwBYJuhpcYDztrYt+xx>;`Hh}8a@xa&fitSz z-ZXyIC;hq6VSO47c)Y3TlSdc#++US=AV7b>xk#6ujV2V@TDrlUUTde#R@YA*-l+bq zoMOceUf5COeU0U*N&k4A+~WAI)Zf+izj41+wEu^yV`uKt>|J!R^q&PsPV6zV`_U?~ z{S}$*wSV5!)$RXFIr~Tci|YpX);wLWlWpDV0ls(taJN0}y>-DqL#q!SnpFB?^Ykyq zzjL+*o_+Q-JfZer`?*tN(i&8@yX?}V$i?iaD$$9@%B{+p+^$k!z@puCJ`MaD|Gw%g z`?>Z(@BjMnO4H5|?;RC2>dW)@)f)Zcbxb|Jb=t#c#~1Z*jvn-W@Q%!fM<1^~I_|x? zbJ5bthT#vkf19X0b1-0K*esuF^LhjnSpCp)b-G6vluYZDi z8ZTJ7-17Na%Dr}GkykDb)7+}ujUM@Xr^J-2y)HZY*Va!@-FL6)!0WNgo_R!s^*NXQ z`2DjQ7xz0{ax5@oUF-qRk-G8c%a&`s;9%WrO{(>HsW==rvq$9pcg~f*x2m17*_wgDi)CX;NhJ^-UYb8pjO^3n@Qno7=d3-5Mmk9OLs;@u+)~ zns2&}`C5CPw6iXZ;ZWE?VPIgh4IfC6u;MRLz9ZH&o>%3bmYpw*cSVDTWzn}^|z7Z z(#Mwjt83WqOAQ9hi8UM>F*oVe#8D^TEUCO_M@~zpBTg1s_9s5tpSC~Nshib=za1W3 z+WC0n)T-xBWZQ1g2cE0zVCUXwt$*zg?j8T!RcUqVl%p+gCRd8@wzyM5gPzAG-*ybG zGxSWGgyu_zH}dyr8n$zN$)%dnv6egD4e8LOaoWZUE{VMlly_+9T(#lzo)4|QE?WEf z{(@<}!$$x4Dl})~yKSdheyrda{%LkbL~Ks#wo}=o8$KD35>@{5qdgYAY7aje_Bw5P z?5;24w{M?%ss4sqp1oJke)np6_nKo{+zY=Dda&uL^N!m1ZQZlF zjq85se39&Ui%qxAZ7P2&W#+o6;Tg4;{`u?U7LBq`uJ}H(*q2A`c5HvSXi&!4!PZv} z7drC#Yo~)te)*;-pnB2r*}Rlbwa>=JROZ)Qf{hT?TzHl!cg-Odfr#i*^;B9#-SfOGpjwV{M{~d zEz`0|Yqs!DOjZ7ce`2cO3!B|8(aKN0m?axKMLIK^w^;4}V8Da~D?4l2;j%ZgjcF&p zy~te4_Q(;yJ?3VZM83i`!=AX_1y?qi<1qP(>%S>1Kb&hqHr?w*chcKqFOXio{kVr_dQR@q`1s>Dtv1%7y{f5e_Dtd{JMErQ$z zTzGaq^^s?pk$3fx zyS?;tJ4z;xFNhYxDJsYq93B;lXHdftii|Zx1sUS3dsy2lT0|M+gAF0pc8XwQd|*(J zAu3)G60Qh|P=v$=2E~UPqZDBYQK5mc36T+j3GoW|xQM{GFhzv;k1^C3W$3SnMb%g= z{acxxqHnAr(V&P7k4lKcM&ZA|s1yM~fw8D{p!kpY|7bhH5EmCtM9?4o6d@t_ALs~) zz(#s*aeG@uXlx)Vj!7`a8{*Jxgh3G(9T;R#7?Oe_0wcvAg8N1&q7owe8e-$ZL!(e> zL_}b$BH9oubT2Rxf5inx1&bfYhKGj5E20B2C=rGb=`Rr(7#DAd4Ug-uh>l2zQv?|! zBLfv-$+iZ~2Ll)@mi z6cvsSgNzXvgE&KExcC=!T49Ju2#i1n4S{GD#2Mm*@ehnwI4B$y?G+sqP6}s*i^5gm zrs$~Xq;OYwC_EKj3U5Vcg^$8l;iu@L=&II6NJh26V?*bvHRHV3XLPUfiUIEvPc-{~x{3G;05g!{EY={iRQYKE;j#$))PO9^C zQmt3`2ZuxQ&;=a+%p)rrJBfFLjRT?-0*4aYMS!^#K?$)WtI3LFuutDuV}CnI0RfJFd20{!VpO!1s;enhK2_PMnK*f562op!>K7lup%-rh=elO z0PZsg>@J8dF?3vl!0WLhW9LGFK?(5?@C1^aKnP`Ym?RU_1EJ0!LonJ8B*DlnWsD7u z42%m(K<^BST>2!^qeuW^iT6EhhZ`^Xfaf%O9c#6$=iJyCkpL^x`+)Mf( zw^U?8M0|L3M6$w5l*uk)(Jo@qE_sS}$t~kA{^%EGjEz!&|0AKl`bNYlXy~D20>z&L z^OOw~n+?pZB2XBHKqwzJ447>yY!C|@@)X9@iM*-^7rzM?zmc?sAZ+2e-xx3qQDSpO z@pGg2xiL?bM(KmxQo-Sg;lT!lQ5=K>v0#E&FdzP_ppA>i z>-7tdG{iM`iw}$l56V-yNjlm8R=1-uA~;XYCI|Tcx0-#7V7WY1=XG5FuQj_GA`%Vp z&`Qnabmv{QiM4wNh8p6mXlkP3tu`xMxE64P6)RKp?=L zniF2J79eU)SQ-nE&>SPoo`}vZry`<-H6eYeqFTfYpa`N`gjJjH8`UB$_wXALCdQ2D zOCn6%o*)Q>*^3I2AZkw(I6!J@PdF_@b*ibeSZ|6ms}{XGmYmjF?Zgo70VMAINVlO;eznQ#C>fT%s;M1cSa z?J-((RHvZn={FtKDP)uj5Y;K%kt9G=r;ze3KvbuY!!1Bmr;t`HKEwGBxw3jPn8JAI|PU-5zcD}5DkQ2CIpCvQ^+C)ge+@9YEC@*N5!Z)DNVdFZk{1X5-Fu1rsCxq z_)-v4Azg!N5yVYMp%5UUPButNp-whP_ClSE7C{yzRi?D35o5{=@fCttCHB+>ro3=< z8$r31pg9#&UU+4UAl7vi>Qpi1rBtC#6;oc=bw(|0Fi8?|?m?6ByFL}9Td_Qs$4R))cC*UsBy_PKrJ){LZpXC(V}}e?;`b8ON5D` zboz}5W1iDVdIf*4(-dngA(tdew(iYaIqVL(hL!|oEqNFl|98}nH?B8=%|dpjbG z>10@8f*4_F4lf!?#Yju3n1Y5$CWsM6S_-dZvM-4+rl9cx4j|UHk|<%?8Yf!_VpI~h z;lK;4geYO7hYFR9DPhOyyWF3sF{a01#|dKelWxP^b5f0@+i>83K|T2b zG1W~~DjBE4sG}05$6?e7VkDDyqGEa+Mx7vuNnz9pVx*8tq(Hhjk>so3B?Sf%Da;GC z7c?aELh<-1{l>bdrq-Dv$5A$dSohS_I#c9u1_)x^BOgc26giv$f*37o(4uCF9L@ki zY^d=eor)BRCOxQTiX0}MAVwJJK{^30eJM1@2qVp>X1bdUjFM>zSaJG^QAwIl&2%@c zI6;g`(tK*ByJ3w9VpNg_Q!{l<^ZM`KL>5!s_N1k-BPkI{T1w4SH}26Rh%pCgDSCrd z><(!uHB;U8dZL+WYkNTzu@A`;!hMfYF;Ycprn+Hb3CjJFs$~2P6HAcPRhUtNq*`D( z36i=B%Sn*LVlapVNpk>$NRZS$;#1gtkrWt2`bnA)7({}kzQQ09BoPK12#EQyuz>_I z!bruanP9^P62u52-$#5N7Ag~0ND{;dBNZb);7Y%tIk+GaVWeWzOhLm262u526{BW4 z88#3Q)5)-b1Tn%$t00k+)k%#rHB2(8%pDX`ymWD@Ft0FQ1Tj+Vg$CI0kq%HZH4O7b z5F?COOnlge`a`ONo){79L@_u~44~dI1*)Pc5#N=eVl)ooLootGjWY!bLkB3gM(P|> zpfFzqv5u3jP%{NeKA19hT1j!Jna+gyB8YXI6o;DWOjs;}SjS0msF}`$#R8Q3lRya@ z1wm6V-xpR1A2J0>$`0cZDAg~h6d`Sx##K-$QeXp+&>EwQREl`#t?(tWGgGuM8U(S9le!VFnWZlQ zD05{(N8MpM7>0o$HbUevshJLjVX&d6)+I7Y7vV-*2BC2c)4?jzMTo((-!QV`&8O5j z0Bj0NKanaD?==;ELUZCpr2-^0$3{;tG{^cwdP=+*RQOV8P8tJN+r zLAf7Nb4**qE)XR32X=uViA>l9f}}}S+oCz~qDnLlyFidcCQJcA5}8o&1WDrn1y2y8 zg>;d4`y$ms8b-Y5gdkEX;>9HbM15e+7PK=#tPkXzXqe)K1}2EnNzQ|YDJrNvf*36% zYLtF0urxFlAjT0SF-qpCLPgO}tV%Mx;#~$r7>NvBv@2GEpRkHz0QG=*u?WNw#M&m2 z(J&>cCXo?O`%{%9G8(2Np_B+>b3*Y7T$jRHpjlu_5_*UrNj*Rh5t$6ahgi@_#Ymns zOf^CC5S05Hk;2#(%7!2|U9>n6k9!lDBv0b`Z2_WjV16uV6}mWB928oBXqZzA9YPT6 z0m&MjB$d9T#&c;FWR2-$=n(pikx6!6!~9s>)=dy2lkC2D;+F^`yRTuImu5?uJM1KR z;t5^)kk%?1riKwOC5RD54gziIi)89)RG8+4x*>=WCP*dIywEB18zYRo2l0?7+9QRE zg|t{Dln8!eY7+8KkW?jZ9wtZ{O(gsfBvlDPCWzI7N|cOoAl3LuIEFy2k-H$CD-a;+ z9dlhF)dWd>g;WzH^%as!ki^oET!I*3g1|DhNgSqJb5bN?(hrp*_e9L%5g_UiQ*n@gg4hI+mD4gO z6!K4yB-)UFf>{4Zg;N@cz;Td&g4mpp{e9Vn{XMjK1_4 zQNY|5QVh7FUHpYq0m2~?Kol@xBt?J+`=nop0w#*229!(^NedufN&1W^V4_DlK*<)3 zqyp%bFJY`5+WWbAdHVVyJ|oSGgS)$%ualFTua8p)Ed3;U9349Ny7@WbGsaeq?q2OX z;Zr~OCQ@aNK3?5?o!WbOI=i{xOG)%ZtdB2sLh@R~PrCRxP~-SgD$mgFs8Sj(p!`51 zDSfH`5~eu_B9{NRM*6O~V;2`fv$EsW* z)Oaqwo0m@~prs1j-P${O`eHbk2vUA<_E*%H&k&9^-$ zm8RCyshcnjOxgisT*cX!C;&?85L)}USVu>6U;0Ft0&gF$?jW2w2mClNp^3=R8A+^laOh#Uta(ha?7*Z$v4dU3~CEB4vSTKL(+ zh=edjmpFr0LOi7f#R2ef!xd%LLPmylV;gJacUUXBh8qSLV!dMxx%rFu1ix4*yrKRaWjD)OA zbDZF`55^C|cgVBsfUH03#vOjeh8~U#+9KG50Ftdup3WqJ3M*TTrrydn_dl!vD0UTM z&2W0siu9j#R4&ezmYb$HY_N0R**+Ccb@#|e=XSy>%<7IGXp`ldLnA~^cM8XSFkVI68(R?oMA zm;yKUh$WEDGbsxk=}uD|Vs`Sm#A=_+mg#p0jmZ0fFeArTYQ%r!^NY1NIkqPCA>2bA zwhX7|%EAzF^kMx(X4bSURtWMj#S)ksd#q?V-oQ$hjJs)lc(PVLA6QXQK*Z!bWcSd@ z$`pq*8}2*YYb0+2D;SPnvE4dKgbX+b3W z&Wzs0O=$A5vegM&Vy0ywZv1z`rhx1_VbLzb>A1PH)#DR6eR|~Ua5y2Q%CtVcu!kzc z2|-91PRq>)uJa<7&g45gTU$=A+2Jlh`S>A+jME#ifV2>j)hEOiWH=o+zsMNlbP4jt zxN%0l7^jDjCr0~orfneXCYJ?NM}b?}cY0bzo8plB!qo>=%;SWl1X)=j<}bt1(Rz6s zI$HaheurIljy`0F@i-w1Nmf?a;*;ToSe*=~o_;^&tkx@iPK$ay^8g zF)a>dWf7z1a6+t1_8q-ICM$~w9*?u5z=>&D*eH$`m@q32ED=_33!u!cJ#K7SLUeJ{=UGyj|Q_$hE7dH?(B*>4ls)Q(E*wGOr9L#F1q< z9j*9eIJ()!6bE;M^P7;WN1K2qWpUXFr^B!`pxCy_cNk^P-__X)shK9YfCtCvIz2>7KF)X{ zl)|khH0$B!$mbkZiyLP>c9FPo#u|dh@w!-#>IdCB(E{t+1UV!|7-jz!Zl&&$)i!l4u?$BuvZ7 z3Moc1oUmUf!|^&1t8Tu(@K3qE>4kiG)B2#UI6lw|o7S@L=oL^x{Tl~C<{~HO@PIkJ zi$pn&ufPS|IsiD@y)bD5T9@-DkrvPKIB=Yf#jD1=jzGe;oDb}ga4jDzkiywA;3yU< zqYnm7j)Ojsk0~o3yKxUolkNUn#FiOAVd zSU1jw0>{NDz-pWw#Nh?b7XXfn0l+Kf;t@F9z}X7mI6oFA9VpUnI`+tek?SF>K6sfy zP==c$h&eZYa3jp%I30$l9zU0QAt}$4KHM3}%?E<(TpLLL=K5g^fs^+a;Sx?(vHvI^ z7x-|T|AMmyv=MJgpI%7Tkl}=#X*rHtTOoOp^Yw5_f!9rXehrIIG^aa(<75>l8#vzr z=Nq`b0Y|%tCNv}V%Ef(nlY1cs_t#koN;CA+Ep3RONhhoT8vS8`FM3-*f$dZs%kgx}BpBx}Bp1A}!akNO9$C zD3&C=%;0$ou0G_>^6m2LRd{v0Ov9XW{Qv`UIJli0&3b!otp-UoLo;vpv5ey7T+iEm z9BSa!&cN|{63c1%dJAmI=|n_=IGqR_*I(qjayk)PJDg7l95?4!U2^L(;JCOg+%RtZ zFhkt<0ms=HWYTi7037Eh!fWUJL}c1>ej;$3o&+Ua3<@}IPl-fd&M&}mwi|~wI3EO= zy`1d^j?;fQy206GxTl;=29D!rs3C6u7p^iV3;2$*5=~_vY{ltpWQlUTrqgq=O+?N3 zF@+l@Zv)$d+l;=soNmGy3x4d? zye@&t=Efd4Zk%DwIok~!xBf-Ag!AR`8PBIU#vr#xIJUv*N#J<7#Dht4U56+Qw`NB+ zHfNK8wf&3q^1)SC9q4uKkZ zf8kKdX`!W`yj|cp9g9qB&ffrz<6UeWbG!?-;?|+Sak>O&G`O(`jvISgn#y?>`Q04v zBC(s}UEnxB3>uan7dw8>0lTXl??OB{-o-MR<6Yo5Sw+O0vnjxFx)?`9`2HfNRL*}` z8F2Aagi1Ld1UQa|Akv(V3HOihFKz_j#vaH0<^Cit=;Pv2z;Qk%ygJSYfhytjIB=Yg zPFr%^7$9&fmqBF5b8#t@c>~X~@HpW% z1{0l)G#+l<4YS3|f>t=DE-Q;9Ij&tHnOF9ma70Rm6Ha!>aokv;Yn+_pED7hYVLEu- zge?|MZ{SoeM>9gw-2CF0uiXA3;h6IYf#d8xUa{fk1DcbI`C@B_<6Yo5-X#++=L6t4 zKE*j2j!%K(WECUN$tto1I9UablU1x5xflR{`5i7!2ps2I;4Ba4TL8!T7I2%m^#UTQ-1-+@1ZR7I0hZGT zgT&*6YmrR*fmC*mW}M5C%PLY%czJ`dko%a(O5E9uO`OSG>JZA6w}C7GE_R5hE$7Pv$Jqc%pOnkKjuI$kyapWS+d>k!*oY3Ulzd!( zur-|LW;E9Y??9#WIf8*rSRhIhs7*&qVN@hNTF^KIxk zTcJY&5jRH&N62LwT)^o`@F}O;k?+IxSBpI*d3{=#OF4bWoaXwg*9q4Hn(`IQ5jW>% z^5u1K*W~R2$N2}?{pED54hw3IH^91bn&H85x?N{xKNL8gcd-EG<{XPou5WNLIbOq} ziJLbpRJi_{*$>4@1>! z^zhN;^9vlOixGw6d@kTPUZX89o<8A}yU83O`-K}*tV}sQ4jdORLH;D?Zy>dn9~b!J za+#(hN%FCWB=BQ}`H;_>9w8q290A9VDO@wTEFc=o?c>1vAInVi?<(eCn#PB!*KS4x7#NO1J zUs_s3Tw6q3*dg_4Rb`7-oro{hye^{UP#D*&HG6qE-tVvRG0Pub4h=Ov``*9$czVo6 z#WNn`aGEpc?5NnGTsc)w#-t{Dso2t^2PDK}j;Vw#y?pqLsm_JlEe|Vp#K}HCArN_M zReIyVw-j6N-YWM_!DVN}bE}FDOn>qG#bB(Z{hhdte@V9TJvmZUE_HCz`pH)ecS|J9 zw%xhpB;N0n=h0NJjQ9oOpS-V(&g)lxWx+T4kqpinBx002vJMOGo3cdLKLTG=xaZT3PO$=2{?ytG53Bn^4I8%fS;$*G z>3Ma^dUdR`f~?}oYnKYdDA%nNvPMm^l3yoc^YYYirB)R#e249Dlm_B~jRE zPsr=bf32tdw42f-m@6@EP0+LA@8*GD)-B)C@O6XeUdMrk{X5<5Z=bC#5ShNUXtlp+ ztX2LqyUphvubW=BswMqZx?5Up@A}kJ6F+A>j}B-sn;E_3?xfWT5d!U_kCErNll9Lx z%-yUdGb-e~+9TJ_vu$pd-ja2#o%BM&?(errd>-eZK4-?5Ueozb36qZ7)tzcKop)QXBB}vXLc&$M4?VPE;6ee=k z`-hLl*4C!gb$-F$(;b|#^XYEM=;y^T!Kt?-M|ZTV#Gfzb`}C@h*ql=`|59h>$6moh zrVYpE?rE&cTD?`>b@Rn<;(fjAFB7!(e%&svOMdm%c}}BKPJoiO%wVc!z1bsLjW15W zvwPwD)*U_{aLt0gC2OAC5U6!HR7h}ZROp`8-})m5`Uz_CXpcd<2fgQz$jnZJbT0T4 zy%XuU?XwUO*W9(of?r(0-pU<3*^FG@Jxc(wHBb*$>x?z~7MTWn@H93}pD7c|%s`7B?{5CPIcLs1y+@ zo{A$%P(|#VY;25&TuA)43n?@rj!5IYko3P^h&(A1suJ)4B*BnnN zvIrg_LJJw7#5MQZn`v7(ifjiuH!6vU>sYwL*fr!~D9Cr2ZKH!1g+bN7j$Vxw#s_BY z2_9b^wXjydTQh2Y=6CPDK8d4uFWvUMYo?X`?(M<}(GK^_uAf_`(A^~(L7A?Se#XY^ zkr7#U7L8JuVQ0Q5(y=Y=`__bB6L%fb)u>kyYwpNj&{2-e&s05?rx)H6CtlPf+PY$* z)kF6OH3zaPRt6>#K3jP8ET0zU*;5>0AbclG;^y;$pgnP!?b+QXM^-*vH}7QF)FShJ zl~V)Fbf@jke>d2_n__&w=!4os$EL= zI75mFi{CWfCmi?nsiV`emgnF16GH4{4qQ5J-cj!oRjB#AKR>)KeaHKhFQ=*B!+lyh z!ah^NmJV2k9rg9~eG%}6{`2>F_{G;(DTYMuf@pXtAyN z+U(>R2OK7e2TP^Tm{0$SFZ{Qg=I)7cOI|a-t3kgh#_vT&l%=6>aZpUiHHWx0)}Dzr zPVoyv!vmegwu#kg>a9;I5j>l|H!e7DMC?|U@H1J4aZf={#-ri8pIO(`>jrkg{~yVA zB>5zH_q+Zx_ejBaAEiCz3wGAqbS!kM8vp)*y`15k%S>Lzha3E+HRK+amNI2R=f22E zttwjgxwODxzJm6350{eIvb}>gS@nEX0T=4|BCNXX)p6<>jTzrsrfqk+Pr7h*jeDPs zuA%6?f;Zg-#ti;B??ZpGX6?3%ede8BTVw_XE6)bzK5ou737yh&*K6H8+i?C%#}cCY zR#^mBeI9TY=Z@#xf#MHkYeELx4>&Ye8oleN^`2Loy^|o6?;9_e_Myx`J66@LAo=c! zEg{o(TxrYQpa4Hh_5R%U!;6uT>6yB=$HT)exCA5ymG)T581~x^6a+T5KF)sHbVRxB zexuB*kjE~8fj&Q->L(;6Om)&~KNECKCZRAlnV)WOk5@A8aztYYA(ssuBU1(ZnnLe} zt7rIaFA)N3AY;DrM$J9}%q0(QE<+IHQQYO@)ja<%j%n^Dtki6@hG2f5l1;Y9k zkM0-?Sj_NS*IYm5=9dhSIN70(H^f}%O`82ULGLIpsv~+{2TG?X3WPJF?emtM^}^dfdiXSL~m znK0G-cf#vK^26eULto=+BO7bIuB$9cFz9F;@2~4D9%Yu1OK-1VWW@+nfh|s!p+88l zRHf`3do3|Pui|S7lcQJC)csF?kqTDK?QGj)9QQ4&G{IPQTOJHIJza@CmLKv2LR>UU zuD*1aQndO|y4u=qac3>XdrDM=_z@MiYT&aCJ=YL@X6RrK1=v_(Bo*;^ob?)SqGtMhs41!o!^ zyIRS*SH-|tUt_n!$*cb8Lb)b4z zpCcjIu2MnUcbQf1nh*<{PU(=6)h|ix<0cC*GTt$biRMb%;jln4x?w+U$7Hp5`=T{F z?qsD(_Bgj$8_x2}$ay|J=av?Nn9pNm#GLP9YL%wJhj+eDaw=_7_SjSE-4in>x0y>^ zI<@Di!Q>q{O5FAsoY5DrE9)u*K6fC`Tf>JA5k~^)1OIRQK(fzL7wsZx*Gwz#q$)>e znP82%KHGiT%~C!0wchQkE=aRY4Q$>0qoSrJ+^0g)!To;!oltuxDKo93%i{V>H$|6u z>&$07!y9%Fldc^3_IbI{{jHAnpZXnJbw8}T9?P$`tz&g-On3DHN?QNGZF%~OsZpYj zt!$loShKZZ)-riPO|N1-`<|9$?nv6_Q;}wQ>6m%jg{sn{S{F7y$e8qpHkj`Pe8Ogh zwo6U3(<_2LM#YwNceG`fev1ssoitbX?~ojYswF|5CMN{w4spc3JnTtdRQDYf4X{e+ zc~&p}@VRb)lfG5|?#})m%XK?^ehiqGIr}g0F;U-L^t{&gy4BpMw6Bjkmznp)UTd#_ zSFd39g5e?sJsHMohdAqB9V5Ij!07AU!iqWnyw^XpI_IwYg_?U43^UB4^%K1gMJH|+ zMta!1v#a zq=yB-zb9e6$M((s&#RwHWN2^p zpc($W?|zPYWN_Zii?&JrJ-xFsC)b<5kumo9u~R0s|Ax3gqi6KPceAg4vyauaYP_-; z8Lx&>$aK3@>2FKD^7*{ZE%p@>ow8#vL^-IV**4Jq>M<$s@DV)4PzHeehnPtka7;7e1{^NcUOboMn=HCnfAjP*qvS z5n-jE?|F6dm1(g!8<*LptD^2DM@*OPe>nN)3(1kG8Up^s+1`L1>S>*4dmrexM7q1E z47?a~rob`H`^P{-L*wQ%P6}W9O25~~8QBy&zFI@ltW)Ovk}TNHow~7v6M8$B3MfM5MnMb z0=tHfbsVoaSmS4RsOy^+DWAIN#>}rvoxPIUN=r|rY};{s&29I3>+Iuk(LF_as23hS zVw(LZpoeh}SW%tlx!}EG?m1I;v|kWP`zluNejuW#WaSPohf2F0_twf+xD=D#Iysvc zFZhGEX0g~&TO8G(R2)@asdB-kB1$~(Vxy;WV$>>y9qo3@b4+g=Dl#2B>ynXz*q$pM zX{}Q4Yjo4r5AN45T07COSix|0qE69Cgdm@0#<=vNdI-@-{~Pjb!5--*jqCL)D;xC7 zGu!l>Lz4%E8p~oYlq{~8{8@}B7LgayJeuxo**eRRsFU>?a;N4dDPR7+_x0g0_n`RhqTBD$6;dOnj_NHqiM@qj!F60g6 z_BG7Z<#Rbv8AC10R6XZpajl@c$J||de&E+e(|EU!>n5paHD>IeY;|79>sw85+8C?; zyG#BUAR!#rF4`OG^uWML;JE)6&fbj6oaJA8Brd-t zV8h6~{W3;o7~I?@U2NZ+Zrah&<=1GkSv7Urr|zf=58MjUCaP@hbTHj2S%CO)bo$0Q zePB*{=w8syHr&MPjZ9`vlaX`vnahTM8#~$IFNK9BXXRAYHd=l-m7Mo^t-@T7Nsfj; zKTdMYnD-~w%eZOyqq5uS(ZpO2S$<-(AJHT{?7si=-WF=&_x&T_{{T#cFGZ(78($x3p_45O=3gv(kl0CKD?oh^Kc%&lDJ_3yT*zZqg4rdQW=Y zDW|`qqno?Wrs3qbIZ-=%qYM+giXS*_(zmP&*!XkW_0VItIdV7j>;Pm8_(>8}JTrSk zMluo1G{T7K8+xK)SpJ5LCQ1KW0!LiV&dwgvLEA+rNS;h$d*CU z3~djOwueXC!=vrt(f06Ydw8@xJlY-s#YaH#5zzJ^cSXNHB(4~rXnO>-Jp$Su0d0?f zwns$UBckmQ(e{XFdqlK7BHA7iZI6hyM?~8rqV18;_DE=ZB(yye+8zmQkA${ILfa#u z?UB&-NN9UxMtj3DY)F&Cy9V8a`Nie!_nX7&06lLhVJsrPNkm*lL|lQf&>#V+ODzjC zNZm;iaTG8m3Zx~0Zaj$!2~IK?It7O(k>Fd}PNt6ZgsG~P-ClliIeK<*$hyTU6?Gjg zjg7hrIw~6KtC6(euOukF^Y8+WOd{cEWD*k{nMA|UfOL$|A*}O)4(uF9h7Lp_5pk06 z?(t+v92NR1g)D)i&VJ#5Q?>#xyvBB#s0F zBA!IR5n*_x5Xm?anZ^xiD(c!ga;mCwBUv2MV|YQwA`XSeA`TmPNJr)c9?RtLc$@^7 z9-fBBk--895;zG7>VG9qOjAx_i<~lt`O#e&FECjwqA*!3VvG|RS9!sSCjx!owI~u2 zI0AS%0`y>T5)|mz5@gE%M5maRrW#vsrpE%jz+};h!er5jF;2uS@q&{{Cs~q;BS6=d zB;(+Ju;N9+L9Fnf>D;I&&(0*`FnK}9WD-TlBoae}JUbQCB*|0~jsSre9+vxPWP%7; z5|6`^iT{~Iq>GE`tFXIfdJKvQlPFFWl^EmX)!ndcl0qLMMTpRch!B91DbUp=@c$d1 z@(}bWZ(}!3tb7j{h03B7d#F77A*Pj*Bw;Zc{1BCblY~z)nG8MuKa;AVO<*IFJ`cjg zK2d}$GBHDlmGdDZp#@9@@HFr`G!ZfcM9}g7Glyz&3hW&6IyYdAmMB6NhuA^H%;i92 zL4v6Po<_kDU_MDE&~QZ3e~*ad)Krw^*m=av>!2W6JYorwXUBuiX2|eKf>Z+mVmBJh zpvia&(#8L?J!)&{YAGnPQ;F5YhKZ6zC8j8Obvo!AheU&}44xKGg-=LIkR`x}Q@HZs zx|+&bavK%3wAD3qI7r0G(J=9`NW=&quik}8A2<~neI1g<>xR$Uc^ zEig&c(qXeddSVO-5(EnpRIXw|29w&l+Uz49M3&gh z`W~NonBqaVCE&=w8w3Y<0$0w0!5d8SHfrdzrxNKYeN2pxfsVx- zM(}v`6)f_gBhz3lg$T}q0ts~z1O(uBxgPYybk$W9I5J_3B@j&LL-Dcr!w4U*K7+|0 zgm^dtEIi;zWE>fB8ZZzNxbwCQ^W&VuG1iN)Add--MIIL5uyP$laJvNh92nC6umDG- zK{AoT)dY^g9L(G_v<=vNE@N>G6Y@}eO!Bb8hn2%1LV5#Md+FhdBrLrVsZbe@=RRB! zqtDqi*atqwY9vnt5@ERsR&bdBSp;GQ5G%()gg5{K77^&LI3g@W5h3s+Qn;G@DyVJL z&_oteIO*egmcgVCMaQBK6Lh@#4K!9JlAyC9!=9uh%r!)au)>HZa+Ru9&`?)WQP$NO zX&DMnU+Kog_E3B*@~{GkncpCgU_T3_Rf(`*44s#VtS58jc8Mf1`B2*89k1}YY7 zyrII(Q$R{Z5{efHuqsP|)Cv*uK~%0HJjB>E^c1!9R220&NaHy@#q6jkJQi!%z~j|V zpgk2_ERF(+djbSb1c;A`5-{k|xN;MWuFAn1&yxz2HzqO`Z#*Nz$}td-#TX=mLWQ6X zijW8pnn;kin$;qliK%KR!~fXx%6NJm4i?>%iI2$~R`_^z4$MU(0^}#4pE4IR3E=o8 zXk2@TjVfB~Hb<{m!h|^nG8S>XBjed2pi4poaQ6fVH#J);CS{9=-LEi(Q#y0J|w_g5RZ5XV35S!Bo%@;IaM)jMIAAY zMI9tA1uHjh?T2g zB4iPW8A7Z)1|E7Y6+8w3PogK+k+m^0S5sHHjcO|DVsaZdLXkK}ijKa&0232L@v#`h z2p?v?1Drn zu&oK{%v=-4K^j(53ltZNGhT6F%*bghqqD%jNn%n3$@fn9e3GMW}t+ z$Uz)d4g&?qBn~@(Jo^hY;)4i)2Dxx#B1?s$6iEUUK5-SV$SJ@Ywze1~?_g6FhsUMw zAH$-%qWG8uVuTNpy1xQa5Y3`*`vd_hE>yGVyFHmtHblfq@|SWI4Yn9T`*cAo=**0* zbmB@d^}>@8KgFe_6|zm_7fMvqion?*0{Rm)|BS<@+hs*`f_-N*a^azad*?(8jt*yuzo|_UkS?%y{)5OJQ4Z!bq|S8BV1-> z*s^G!PbvjRqt<9d85~=CTU}k;XOnuKepi3b@ds`jE0-<45G~&If%?)+sI|fTw8hof z!hGS@<5b!H?sa17!Eer$W``t(G`kXe!*|SSovz?>dajB+VaM9??>i;u=axUeHkfJu zv*vhsrKe|S)I^KK!DB(1%eK2XW$b+KT}k?^*562#{TL)2GIpr^)KFoH2vmYc>EkTX zTw?Ku$~g)}=3O?yCvrPynaD01*kilF>Hy(yD@(t=uF*F_WUhPxWr{+(Ow-Dv>vkJY z+2E!v>o)du@}l7y4ntc-cE<-iLAPEXYo=MB`W~_+$jj?MsZdR#U0Lm?^zzySwQ?gV zp`QdRzP8T&_igz4LcW=*$~Od8B@yhq+IwmuueMa#Gj=quLM5lRBJv{e6M;$#NPk)u z-d^vtY#}~-<)G~rd8zs0d{2wMxKb(%>*oY5)2X<-EV;xVk#QKV%Jr)qx)xFGg3I$~ z1XkU59E_jw{HAh^uB?W;Pk+uQlM-rNSt*^MRpTvI^BLnL1pz1lil&gS#-noUeoW#p-42 zSeFSOc7*=y?LFL9+OHtHBK@N$DJ;xB(-Fk1_8!_W(=X*+$>)`R2nlQ~pke{P-V>q} zWn%kXt+V4|~C_ivjFaU8nLIqMN_1 zl}{+xt`-w)HIvwMW5I7FwKM&Sc~gD5@R_j8Xv-;23imUvtP1+&wFi6&W zCw;5_Y*e;vxDB;wDW4GF3z(T-blT$hshQ%`$j+aY`9YPg>w=BLtNZR64AzDZb~e|G z|E#yBg{isZ*DhDv6m+v*D>i2TYJq@2VTOtXKPu;ebTzi#mhri`^|_pW&P5A@^*JJQ z7w05a2v|CsT**k+{OMRBo|vKJo%U6}n=s8y*Xc}Q)CXnjjE$AK0^LV^-qKrhQ$aO3 zh66{8pCO>7^pT-xv9&uxH#hWYb*HrbHX-WdrWCgh?~t&%=}&F5>KqeaSvi@x6~tzC zyLo!Y8~OBv*Z4H#9TrsxEjCW9E_||9lCF}W@6XU7VcOhq5vJS&+us-nku;i8R<4w_ zlrF5lO$is+hji!NsLh!OaK zmqYK&ZN+5eJD1jHi2cY2N=fjtJ(O9xPU^D#3+MEdl;D%)1$9c5o(&88%kzCo4OJHS zFL{e^wia3&tW+-&5U9++`Kvn*dkPJi+c#zGJl-yjux`zzeIIPfx<)m^mG?M)U3j4K zXiQ$}g^gdV9Q`i6_=;nM+T+k6y7`z{4%enm> zB9luM2$?A76Kp&+t0=TKH?(Ji$_&3H_12ZDt^JF0Ln<{;$q_b1K-Q4l7Aj`2E=_I8 zde30pl!}${-vb^zNYuV|V(|&5i;1rny>T_2JcBYd#9&YwA4>+ zQcg6Cg7^0^^{Z5Vdr0M(z!&+vDR4qhkMNZIHZ9_YW7 z&|YaA)>8Y!$1`+!c#}rkn`K{WW_1O1l>7I{&y59TR>2PKvF?f~2S4yZ1k^;rm*X7#a|% zHnXnjMf$qzDXHu#DI<*#ZJsXoD?HX{_X=uXYL$v41nd^R`L)e^t^3ohQV$GpapRlI ziyN;e3+CS}&k`(Jb1pP7IN|joD*fSq_v~)-qJ0;Ax$f-n)zdfeqbcp5uEeO4Q!naG zG%iXVm|rKo%&PLnDMhQ6=^Q?U?d8LW;AJ;SC*g>|EzgEG4+qDeZ_SIJl^L?Oyr=W( zY?W2fH}|G&RMnnBgSR_^_h1{SEKf$)+4%Mq)u7EDWZP+ z0O|V_T-nEO?n2rPjVI&$+~!AtXtyfq>mGA_kxwJt0YZ@R1ai| zR@>ve?eohz;-m%^=*}u6IN!H7?@%bCrlo>;$6P~(;;UP`hj(H=h7=lTF9u&sTOHwg zQf(f-v}D!WqrJPWb0U?ly7)V%3z@wSRB7(-HEDEwc;Kko%jkq?lUuKa-->^}6ZMYq zq`!I`L-URqiXbCrRqLzpPv6eVb_vg$Ra0?C1fqq)slNV?yIT{LPFEz!8orFWmt$=4 zFiDo=H-|AWJ{hK*_e+JT*5A?OgU3weo>f7Tg;M3>a~oTe0|btktVk@Xk6&nSZ zYK=pbqi(+YhA0u$JRSR|LA$}!F!`wtU-DDW%j5SyB3wv|7QUI%c>G~7V$Bd3c~q&# zNtxlOnMnpG_Y{R1io{Q}5|Y|({)#W@W%u_84s2*Z$M9*jJ?a^^ge_W>9Ri;VQzP5? zA`?r?9a05f-wZP83a!#enTng3t5)-z&Fd*`4^4ESB^{zdJe}~R^>ty$F99z)#%g55k*IWhlRn)9$$7QSi zTI#Al{_uBx*uQ5_kbYI@Y`3q^YZMzD2~z?zPO^KWp?=zJM$nrOjv&W2kiJuaOU)HtpH+3Atu#P-93-lo?5l7mitd`5@7%-u%LyM$ zMKpZ94(;w57pxZYEyTaG=E^M#sX-FSy00TzFrjJD`*r21CUHG8Z&OXG0|&QG`)pw~ z%vODWjV#Q06C>=P$9X;8B$wF96>Vv5PMSquJ6zv*7PY%&p1-R0cX*Ol?2h`Z62sQ- zy9{Tv8rUxC>#M40KT;|Et?ldP`qLMBYUS#6Bczl=k49Og>^}KUvEy^OB3T2Ndr+p% zkmF*8vFK>T9MfRLtKD9_kbF8$#?q;+V?##Tce}i@qJcR<<&`nsL7ine(b@YRre;38 zrJ$_v{*~eLmBLRVQ%{4{y;wetLFT`>pYW@-w?6uI=vP__+3#8K(}7|Q1G7ANW{NdsQ}BKd~pWd7-*;$g%eW_r4`P{gUb? z`!2n+^YLI;tnpfxZH`4L6Ago%b7j{CA18fxKSDQ@q0TDb_O|kYH-lZ)XQ$@`$>|+W zTh+CGS)Bj$=zykLU0IWl4t-Ijo&KQHoJ<;=Ha9|CoI?(akywDl20sZ;pfUBZ2y|g4 zX1ZfUK`cg^VwfTptZ5=?4u0|fRT2yKM$z*m1XTA4*3;16k&LDmvO z5y(ikz>ZSJ-%;Hsq&kTHJyiFJfa*TM(m(olv^`Y!iGb=p5m4PHD0gOj57m7_wph~J zqZhuw{Xv6*@jKccs{2Ghb)N{R?h^skeL||1=-)?mp9rY#69LtIBA~iY1XTBlfa*R$ znhw1VeO^@eiGb=p5m4PHDEnl557m7lpt?^4RQCy~L#E#!)qNtMx=#dD_X(&;%J&Y%$tFRnG{h z>=^;oJtLsPXRyhE@jX=fjDTvN5m50n0;+ySK;_S%3K9K2iVw;==y*{HGy zs;kAY_2FIYzX@wGtCJ|m_6x9VWIr|RP6xR-SjFeE#zsY3NAY*7e~ezp3qmrwe$Pb6 zOy^>U5P9FcAY^d}TSSOR#SPRc5n&XdKt%-fI&PL=bTpJ|ufqD@OuS5>P0D z)IY#_K7_1fs5=08o&Ufc$6$w*?_fe>5{CgatlR||ii4@h9xr&eG?*Zeq38fQFgL7e zYk+tOJ7<{f9AN@uamFh!tXu*a96zEx3t>D?0;VKns4}1sxGJlb+o&g}uAsP4>{n+M zQ#6oM(^Tcy(NCaH7P08HOuQ^2|DW*k>_X5nkPMLk71_nKx2L*i+FuzACV4-%MuFpo}Zif?;yi+->4l@se;$raz@gFa^ zcy=F5zVJwv0GuuiDkR8fkfE4Pg2wFKrJg7B-SKFNFXDPCvsKN z3Z?8Ey%DpWBurRLx_HIK>)_AKrI29SK!oftWPCv-j0TEo-~}YPa-E=}&&d~7qdpTC zi!UB=@jTk2`wC%~4WgqBu@=k}Kud^%YzgLSa*roV&^US{R)akXi^Ud?u&^5IN#LuA z$gT$Hj1mZ4WSHY~r=jtiY!YT0LzvK5l<^LY=MkT2V~~d5NHm~9nd0%TH&9YU-e37kFy$Mzr_(?Na{%#sKv8h}_1H;x3R^q?QXJ{r=O=P@xu z6d8*pm_+wz7+1ZC~Z>NsL0IIF*0_jFXpsCtWrx%v@9O~ zU(jOZYKRajARDcr`~;T9AcG7kCkmCTz=pxCmWJAI!W%d$2%B^h6C;aJ3^8KnZXkA` zL8%XvA3@#|R1ra#m^(pOI*nS2uxvI$=f-L>0`&}Zcq|IBfrpu6f$)KbBvgnJkRgDD zS_piAMQ%n#I(>BI1UOqtonz6FUVVhg@Q6ZWF^C;R%zO(d>Px_SEzEwQPlFA@WJMCs zRmihRPJJU3VaREVLGY-|QNcp5*}{ZH6e5d7>>y(0ZJ?kFlE;X!6RfErBO^!wN>aE= zS0U0TbpFKX6Bo|@%=;OI018owWrAe#h$%>{d<$K{4u}M0M<|wqf;!k|%vGdAFCRem z6{|zE$R6;}>jSZ{MHC*3Lagv%35FoOY?0$F)PACSh~fgYM#ih3{@0)=Yu zpV}i$U+86(n9zvAWbueCOsrfC)VG4fIGs#5jSDGLh2tu?igUCX1Ok~FTT~Ra#Wd7a z4cU#7_d^Vs9h(7@MJC2Dv2ry~l?*vopb?hQDNsQT)y1%k&W*ojnkJ&U0A(&rRyhd8 zYEguVl*K6KNHKFf1R~U%!a#{A3PH6rQu_y|8UGhj!2#*~iBzoSI8gjfhsq)qd#IQ> zAqdEkBVQ5SJShExvVJ)Bf~%Nli;AkMn5Kp%hnN|1$`Up+8)UYCfMfB92|BDC5F!vt zf~q~bf;3VqBLSVByI!uXsJ>AQ%4C2-IWc`XnA~u5aIB^_Oq47RF-3`$`$3Z5B)U!w z)VIM_66B;!*h0Zg=caQxB8R-6TZnocCORgE*r3D8*&ub4MA$|FJCR`F7$o&T8wo1i zxZw_V-$=4s9({uc7LgAV7mGC>abe|1kfXt2kpy=7z$yX}G`K+Lm&}!h9<1>Fwv>&& z4+az381PuEVFZt7hk+J%(B<-Ap#)Dx&b6R_a5ZU>Q&o|JP?5vhu<{j5TrA!IA5Xw| zbrWc@8XoceU>tbZS|NeR`@)!l=Pq}{$Y_sPt47~dg^9JH@L05A1CM9Fz_d0fQ9};C z#M6+oZDElVA}cDMt4JE$GM?Sqct3KG=@C#|EZTU)#j7tsjSZ;=M@~P2ZALW6DIn^2 zT#BpeC_;fQtc!AVQ2PEnEG!Mh#$pT$Y`nSzls2RQiwwzqsPB`2eX|gIaF>Wdq}{+L za99~u^9U3dlQJH0K_40tmxHDoW9u?^qHc^0%S<~MqUr{Hk}2N?TXlxhTq9-)Yy&=}TrxB?)c* z>DA~uX8HZ>&k;v`mDdX1z0}h7s_?|K=mTcrhW&o&*QP$*Rl4BCu9s(bH5X^A7fKnW zwR*0+-~6(E*|Yr)4?iYVNNXru=yFb6tMjzI%HAy@v+Zf1RYA0Z@$U425`jU}!RkQo zlZ$;H+ihDm@HN-dspV5cyCWfV+RqPz7GFz$9xtC3r1_<%R#|*Uly7*(y^b><>jH{S zm$Vf5c&3JY$XdUsgpV#}GO}vM5Lp=M`MF=V;NLpEi@$rJMBhHmb4%~TnLG5loXzIf zT{|#I+;+QbCRLy!)xZAY5z_Z?p*#wy<&~{kn&8D~F2qWL-gcZ>0=!rncHn=?ne=9dr)BBAl38c_kseY)2!QR3DnyL%G1);|4& zOO2mkn6Yb@X8P3?!S|OJLZeS~P9{pi&cfRMpN574~A>4s_%mD=V}ql1gGbqf_}_K^#k9~qWV?RY_M7z~{W5-j4IeM|TZtFGxz*@@{ugGX5mZg$2r4Ero*`M5 zJ81f&qBf>_LDRwQbNSmsgyvlK%@NzT{eJo!e~%TV6{|DS843==U3vKq8Gt<(wv?`fNjuqG^{& zeZ{ncCVGBtIb*Af>_R`KHO_9HQh3eBz3k+)Q=4MW3|9{+ zZLlPS84t|HXDftFOYYcjcE;(0kxc>V57vfSj`X?OvLtuK5_yf@hw>WtjiN95rhNPG zO{H8Z-@Yi~i*>pSbVH5Ga39%Kem`wG3iE5+h(dv<%Bi>z*@&mR)4$HDKYi0-d;ZET zMSRUY-N7ReI83M{SO3~WXQ|gW2`bJJjS}(vZtt8`OuKN|U%dZW8I)ZfRM6h&Ks2d8 zp`$3MS4`QeYhk@)*!3gW3H|*v#Y+ZN)fwDaAhs*Jtn76WH6o&=ZhvdadV}v3`>Qq+ zE8j${R@gB&L{@obEY7sW={gKoEyM&yr$YPn{39syzs9m$>i%{;@4krSb#Yr>mA@;g zbR~sfzU))hH$Q3p-E{r7h-}w^m^*^L9rq*d7uKmO+xA!&z3F~P7axS~$Ph4N4j-P= znVMtLHxE4ZTX07?TCymwr|zc*C!2*`lvbHlta#g z;atF@@k7Fk$dvOS(sePIer`lL4~DB6Cg(w9_`v^N&Vz``ZV*w~4I(PLfh0T;Sq3; zQ{MqdL{wA$gT4ckMNlYbpGPnZ850Wsca?`f;u{(qGy47iXoO6y2V{x}yXyag)&mot zlA@fBt`>Wl0V1}6OiY)id0B#LS-O@20QGz7fxW3r=hcnV^M-g*L1>!J_bG(dsyM) zb>fZY11QjS5#c2e!+>Kg5rqfH2#~p24Oh_6G}Ka2-o&01U^rq-xI@9Q$io60R?dSA zc{(bRd4ehj2q7rom?<=_)@Y#sfxwnXVFW8!aK?ni;*3XJSosRFBpFI~kt{ltqJbnF znFibLNn9N& zYlVt(s@fXtc190+F(D0w#v+Y(XuP@vCTS3rAlhum@&gSt0};UlJa-kia+;d3T&-fj z!5XjGS7uO5MzOJ2!vGtvo`4yLAQ&ZKKOj;cApw&YG89*HN1K+SvLYvEye`ABI74x< zIO7o)W)1)lN(p>CSXqGWj}xKoqU+M=q+v1JIh1Yk5(VB%x(h7CTRH^s90CrJ88z}f+9 z&VUL#L~H>1D|h9{3Y+9q)Y%6$dcFb^gF}I_h~pI)ua1Dp7${i4Di>mL^fNy}Zvgf_ zaOXbJ9nNyq&Pd{E3Z=$g&?O@>g{3U}D!D25x;}ev3*zX9aQr90lT{0l(@os&g3iHgV zW(2>RImJKJ1Y)ty{Wxx=et|*_i0mkg+BEq%KV+ zUb>*XV)C6>J(G`1afNBG4aWQAmOPzBvrjkO}^%v-z`(Ot4O`|vMg%h4N6aGrtTvD%k$#Kl5fqvJTB)k zZR_MGXRRzO7eADECRBQ*QZKkqXYSAY?Uh%~8)?eL3yrPO^08Q{o8|g6aI)A})2es+ z3&Oq{+h<2O-E(ez_)Yp7SkjrjzNh?#nK74tZ>ZVtiX5nshDQvStqPXtTyLvHQ z&oeLi9}UpK`A1Az`t4YJ%7jlRRm&*7-^>jDidfVAIBNpVWaHcAb6%Y1?^`4;-(3_s6S0tx=Q;)Cx*B9f7o_?O;_*S8#()%lV~pwH@>>EdxFCG0{@Ra;XC|$M8bkf zJ$G3g>CE9TS?Zc&P3V$1wc+PnGp9L^uF@WrbiNCX+Z=3>hTC@(Z#hwQqH2xH4cEW6 zeA+efs-8*US@UmWO=mlmSXExc391A;McHjR_ULd~Ey2t2SXE4$&MW1-!y4Z*q6*3@ zmEMfqacsZS>#;iRH#@{kzn)3@IBDj`_mi}5ywq%Km^n5xJ}S*UaiWl0@aYb7{-`^8 z=4W4rsHN7uPBb5tlxEZUWzgiMNRCr#mCImO(B1@t*A-h!x)#t5ezLW>^U7m`vv12N zd&95arq4boR+TJXzG11-2BGWIye5kIha5E2)Zl;yLp3zke5RLlOb!f`C$4yx*?o*CP!6G&4+$Bm8Iys>g;o|@g5&&@G+ zg|RA|kc z7aI=6J1uydd#$+fulPlC-h0W$mv5ldzOi{w8=F~b=WJR&q2-50m1pJFzURvIdwWl> z+3}CM@4#KR!SI~FQ)luyZOG34VY5I|Z~tQd2`Z%%SDn(}AC%dxWt#Y{&B0@;ZttS^ zu2YYGn-#tHj-l_)le9M}P99R?6MbLaYF$Dij(_su#s-U9y)Q)q-t9~#ly;b_0xuH3Ec7gTymNjpsJI$AhJujInc6uf0?=lq!9p7Zj z#yOL++wu3F(zB&)S;1 z@{SZG2Q_!8x_M-d^^v>tm-|3Oz1#hp9}ZD9#<|M%8PzX1-TO7XNjhQAC_i$=b;-r! zvtEta6#voc{3rcj{nMR+n{y-QQ^e1Y+Gg{uD9Lc#$^E6`TPmn`rTgw>N-c4UZvVM< zfup+R9!K)n)9W9*mvsD9_RUZ|?B`+g@bzQEJ$<_7&fBwboUC5yk1_4uUbtILp>K;W zM+Tl*zMI@pGH0~q(HYsJch1Y-hcDbY(a*vtKFTER^oES%ThA-kUJ=Zdm~-bw*Pz#f zz8hoLj=5%(FYvco=S}a$f&-%;y7C{1kZ#o=J=*rXeqqkeH}6L+NPWA!9e?mh7vzK+|ud3UyHa+}uWrdM}&9f?=mIacYFbz9AmY7O!0mX+P!UUmg!qnTtq zLGSLo`Z=aA1;e{CdL6I4FxcMx*XA2?Yp<-|f4${mky5TDf8;prR6_IhRr{wrxR|)t zJW_F6%zVu{@q_=Q*~bM3ULl{2-Mc_LJUQf%Iy6{O{w4dL0r`OJgp;UR)}ou^-*FOmeU}B-*ZSCWWIG$JYsxZEO?S;$7E~P5rJSoPZyKYgUmcV)Q#Iw< zSMzkg^5s7T=zRu=%=uzD@!T0HDCuJrZP~IIkXBJj#AG+>r`fBq*?B z7E#IPym;u`lKo=XTmh+RnCD1B(hDXl>{rt(rkEDOeldDyG6+);LHmRKS|a_7gMYgi zS?L(*;$bQk>~}`ePLhyON2C$q!8vbDKThGdw+6X>OYw%`qZE%15ybi^h^557r*11`P85aLE|KB*miY}XGY35!AeNK zxprucE&H`h%&;eb3Zoszn;N#moBd)YW=QFbI1tf`B7gV5%sV4_Ac+wMqG5ZYe|Km4 z&X18`|H;76JHx;W>(nC{*sz_%zqvCJEM=to{>i$S_l1>R2{;9Wlj}bj7s@pe8HGj~ z^y$Z-{0rAG&cSlt27VtUm{3j2~yfdgDltxcjm&tz{f&-FoJ1=*tBv-@c{agymw#gA+EFZonju(s6XeWI9j zPtB9ZRL}CITd4oIEi<5qrIjSe{8kJr>{9r_K)@OHc5~- zt|&~qS^6ow;AKn4hqZyi7sPkk_}tc$*s;ECt+qbR>~>1j(O#3g>8G2Vy=v!d6%dWz zL%2Bo;g<)?rhZs4mT#ZwQa`WTm75E6l4@M{M2y{vJ19Ooe4*vmt8EJg=F~iopD^v% zCWCDPlZATAr#8${pb8tTFb@tZo>`&TvRR5hoM!oPyjYRZ_>;HQEK8r29uIErHJ`W6 zpp(xi>93j{*R{u4o$HBjPhF#Ss`v1UgoA+{yS`m~d6)mh%PO0XxChrFd^dF~m5d%V zYYns1D>{C%Lv+IK6ZglJaE*QN3bl1e-s%`$AzR1v&b*r`}A5?fYaqaP!E=uY&xlJ~s zVh9Ir_gtR(JeG33seAfg%N)s(aR%p&K3=PFdh+-CjLvtr{8wA8I2$|H{@irec(o-< z|Jp2m=1XXDm3hoECBvmNJ;J_=xzF3yfp1Y;De%gb)-X%Gd}Z)oC!f6@z2iY;!k1>9 z9VhHl$3Bd3THaahHm3ObxGRNvWxBk}X<31(Z@ynvde(aC-lgh#EqRlN z^OIw@%^Z8RDyZDN>-{qKh5y)7i%VSR8MdjUy*>R>^zYABhX)?rxiyUz@b}qfH>H-W zFkPuL7X)SA&1x<3J$kwRMvcJ*jZO*4Zx}}h<{z=2MObBft*=+n_q9yP5V|VKSfe{OTfW-y)hYH8;q(dGKAXR9@wzw>Vhdr zPsT(PiX=>_s{6Ea*%FI0n-=%jj%f*-Cba62;@#bQi7(o3n2WqV`!mWQ!K~|xc+IqN zVh=93MyO3+#nuSpDr$WRxmfGy7}B5ZQA!l ziOFAISZEG6kD*v{;;$C*% z`@QD%=3iYSvd!0al+_EWC6uVE+&oIDsL_2j=^x^;MFs87&!0)`%$}jBRFWxv;rnf@)wg1&egHb$=NI(*QHb?kUA zCEjJWea}l7Y?*H)GyA08K)P+-I%;mxDp_14$D^3qju6@B8-yUNTu`CdfR zS^vDpik4Gxmozy)l2cpOh?n-M(UZ z2XRKv2ENe)tNYa1jXs~&<7xhAfdYghDQ)XgT()(cok~bV9w91O(w#AQ3;sM{fF{t zT}`?yt(LYr9F@nmu#ZdxhDC!6>bT2c4m+j>!q5?~1@y?Fot%**7dQTG0+fDgCNmgh zzcZwUVNwTaNT~55LBPjx>tWlS*{=q94aiFU;o_kYA^XK-*u6`JTnh#2JYk11$F1qx zSbm2a4WF5BniDo#_&gHbpsED&10&p+Ep8w2T2N;ufrJ6)jk$PL$Vo_u79;1yY!ky_ zcSb6Sk@J2)xCqMbIA_Bkzx)UDgkv5cKMv)gzrFg8?+Q&}B1vlyB47tjl3<$}4hIg8 zi&PVlL3$E7!q%{Dn4c5i0sB9ul!x_*RPvrX`ZT?|Jw)8##o z!&*kZnhQ%oPFUg00l@3{!^?srOkfrb=TboLB!R9wCu3Y#83_^}BjvY9?1e1DpBb!- z27Q_YTV%+v*MZ~K!%ntje_2GxA|kq&BxGRVoKKU6?Tll;7|xG`WDDVU7t^<~{mXbj zf)Yl=&2ggslYydx2?<^^4c0~2FQ)IC`?njzgG<1JvtJ9k@_%^G=#7cU1{Kb?JZ!HH zJ6X(2p@13IpGLUvpLzxJVmN#fsrKds{l{K`Z0dsAFHnCcLNze^#lyDm{023gEDc^~ zB>Ui^LlH<|W3U&I{l@V6{y;U7$&*AhM+s262AhI7ul`e)BEnG~^aD_Sck!PFZj@~} zP907TDBC;Tun(K(=}W%KjLYAS16Na;gLw#_thE zA+GKWt08dr5nyxCFYu79rob8!$Gf8MO#N+-1a&gxlp0vwq>Zp*#)w>*7yn9*4a`-A^l5yv$rmBt;wBzEUc3p6_muX;>>~D0nAu((tJ&-_FPbm zMgJPLv4LlG`S+WxE}1s=-jq(I-df$FbEKzY7D?{~#b?;fPv2*GTKMRy56Zh27pCld zo{QTi`=R0fULj$@2DQ1@i(eGzoo>C(m#Q>qd+E|!)5<#K4@og&%m_a;N;6uWRSsVh zF>?DkwJ{=8E6-ZU+hLB_?e?}aMJYed*|>UKac%0A*;r1xA13_vQ*KxLOMIr?)Iz^l zH$F4m^ht8>`Btfq5%_EUVxt}zL4oXfl{hucnT?Ad%J6I3{+Qac>dfLTg&om;bGxgK zKWq@|o^ZdZ(>i;>yAR#vNrx839vB#9NXc_?I+9rR;hX%;WIX?!+h691y9Ql*ul`6{ zD#WO_AXxC>>s!>8CQJXo8$AYufCb}@4fLMhyzXSlvZeAHR6FYZ&rTRH-?uo(V&mki zF+1+aAB%pFb^h?-O#e3&%BCOZi`T!YvGm$|!`$NH*!d?L^{igh2`FZr&n+_-C_XzU zJ${pHW!3d7XFFHSS z@=uoqw&M5J*Cz|x$?puG*89cY#K*O3KuGmR63%*`gN2aED22&^TP@Gt*&OTp>9X9C zlbZJu8$<}|A@`I2y5ccd8=>=EetpTgCe42gM!N{@yRp*IHaAJmHnRM!>V^5F$hwdqsC#|~d&>X%*{-B2t4=w@a5a`FtF$!`fwZ#6FD zJbpbYd##U#gW}2uT4q(A7nT&vGSoY^>v4exWw!#k&E?jHM5S4yEys4<6!r*QY!c!k z9NKe1;`-zDe_L%Os=Ke*I&IHu(Oct>eD+_q^z~kSz5J+KKb$@n<;{+<-0Yc@@DMvM|4AXh%PCwZYLx+-+x?#We!Rpv%3jBj4<5T;C-NfI{QKOyW) znn=*kzr{}N-7WoO<*C~}uTCxw-6v`H&-8Z7`sg51oYdv(_Js>{5^nA{ELJdjXst#6{@eWgb~4W7HlRwBmf z-MkIgA|1v%Ur}x#j`=^*t~(IRwtc6J>_U-bWsmH~&X&DbgzRj}E;CA$BC=H!WtTmp zVPqtGWF=Bah-CGrW#&2!X9!V~>{piQwuZ7d%i?C&^QQAtKfG!nGS(>>D{rLTAM_yt5#l_Z zk@@hk2t^?N*nY0()3#Kn?b#LX{1(M$e$$Hk1dz!_ZI4l z;K?Kj zNwmNF*c~H@LA}dgH?m~y{R5uiki_zOYVZt{5@$1}iK}qAg>f*ydg%T%r&;;ePomhu z6Vwjp?q*G2dnq7%`9b^Ol!r<;xw*JKZj$#x$br_RSIK?1PafdT$ng4Q49;n7Y|qkb zA_4XGZ$#$QaX(Q%QI4w~p!i`ZS#dG=(lLRG4<>!F=O13&aAvY}z+=lDCE2MbA3VnW?rD)dKe=s!LRtnZ2*17r6+ynkh5qSorOBVZk}Rq085w1YmrERU z%7*cdB76@zPBhh=RL|@0{5tk#T4WGGq3Z9GPfqK4=wa{eqy9e>WTM~3X86r2qz9cO zll8e3^Hbt;)6~nIbl~QN16+jgfJUysf9OCM5lU1#aP#_tlphH3H=CCiRVzzdGihfp zS|f;zK!Ac3LE!TNUlw#bg_=!hm|X;vA}v2iT7&-mKM8^$UkLoo_O%SU$8Jt!Z{!-3 zK!+X-)sYE;e}RtU0^QPfLGx|iozXL7{F`zp=qAns+zvrV!2u1)wc`Q~vuXtBfyxJy zwE^*U=vTevbszxg!UtHR9e3zW^%bBr6fN~pofWqaDi6d2wp_&;lBz6E8Hnd<=j_mJw z^8syI1VnS8MekVPFvL{x0u~T;V9;=K7ck_?gIor18~~mRlz;6+@AhW$gRSC* zSTeNe-Hdd5;t0T!f%MItL+@szn;A(0fad~I_duWk2ECh+Ldj!7ATI@KDhVYJ?-(03 z4;Jn$qigj>d6ao-FECYY9=h)$UG3S z2}e$XE&~5L@@9W`xX&$WCM@j8z{0@S17_NLurMBAVc?qy1K!QTAmc`WbDIYwcM8EA zgFBeEzrQ+LRs!Bg=>6ES*_(I5?Hk5kh&Cij?Jufr`;U7f*Px5XKaXjPT!Z3_dm`7m z42_&WlpewUP_h>GMY}$rB{b@Z^3Vs5k`{B%$ea^oasxOKuj9?q2EIo1t{?B)7#1hv zB4KUmopR75$1p#eO5|OAX|*+SuI{S8my8x!{d=Z59=uAgyD@o{Ef^_lUykUpOLIxy zP)A_UH2}S|!N?+&l%%iWw?8^|vvrC1Jz18M&!YAt z?r`*Y)D`GHKU$rm?EU6~kqhBVL77D}&o7q;9!@QaGZu}xKQ^Hz=JccPs_SbjR+&Ap zY_fuBa)2j*FG~5_kA6EAPg;>5#rj{dInR1Bx?xA>KD({;@iv2liBLj37` znoO00saUgR_<7IVj6b!DUiG>g;3?l;^%?J5n8<4WXDp*~*SH6VnAs?D?*&OmGZ~1t zeqA|WGj&lRc#T09A4?uzQAk>mD(gt)BOJZ&xu%hy9(M9YxzXwt?OVMoU-n^6>1reU zz$!-BJO0G8l3p*>=jUmt=Q<1QOK(N^o~;qTdGB*oo$Jk)LWTQjZ7z$DiAV9?yM7xN z&&6RR`tuZ3cuX`qjr;8zpXOfV@MT`Pc7vkqodKUw?}@304MjNaRb$FB60fWt-lO@& za`TG&YmBHFMJw7jV+N~rp@%+o^6%$14nPd>BZ2V?n zK^Nv8pWWsHvNc0H`|BU#;-qfoBukZhse|v z@V>0~maLh0afGSWs;uoW@x~O@z)KI6dTkN|vfT2iWv6Vxm({|KK2_4wkFPuk9J|55 z;ct(lseez-Qj3J_f~s8#mTboSs_AW&BeIc8gi7`U3an`bib>}r-|1sW5NRqD=DgFv zVE=roH24I<$y)aT0xK<9=|v2!Hm~vWp-7iFVXgJZC6TgUh6Qi?3Lc8fmX@>IUXS+e z9J>q z9}P~5@10nSb+_k47lv|N2u6pb%hY4N>eLqPdGk-~8!ml)TqWM8`avZHBVD|Fe|+`NK$)gT5nl4 z$Tby{P%Y?Toyv>Rvw5W2{+-^b*aewSg0)s6Z5-I_hfT39FJH2cTBJHSN>7KYy0SKW z)!W{VA}=6}91AmOf}Oa3Oj$ubGUi5(wN+o7WT>R|J zf|)K$z6%qJQ-`HGL&s!0T!Y2!E;!$v8C{eWb-Eqki}+C-j4hCNi$(@d(kv{8|7Wt5 z6kBVDME@aaW`|2XmARcUlaB@bbDx{XY5BYhzT9?i>NL;i69Fvu^8_j~))>BPLOY!N+hAylk{5>`)-h4ln7lPIT|;3 z?6gNa-G~;!8Lk8Gv1|N)5@$4}kkd){;1)X6z8O4f)+~229E+Wx1rJL|E}YT#e6!ti zPF3lf`82(6lf<4Tth6qtq^x-4jtEIIxPManeuIBG)Z%%wSD4j{8uB%YEz zOP0ZXlVil!)yXyOCSd6+!OXPuva7o}_*l!rJ@=!gZWB|N=2@QV(iyZq^IOZR;jgh@ zJ>nyyaUs3N!uiFT&-KH#PhD|3*0X)rcq)?Z-7#(!T(!*CaB87{-CMgL#;^J`nU-?S zlrZ%W4$HjEfk7_3^vIIyLedm>3z~g3Ge{bydIe|2_}aMV>F1+9PEVOnM%d8Lc*e?J z*>|rn*!oQRnX4kppLBwgQfzKIk9%k%{Ps<$9r`-LcqBeA)4wZKuwB^f0+*Xo9JX1u zh}NX{#pI)JtLEnWY)EI$WA-!Nc&8)1;c>%^RD4y?(wK;2F+fiyMarw2@%K+#5|ZVb z@{S@c3x6hK$H0l8I&2od)3e;F6$wP9IJN;|AB~=6*!^f0% zVlgJPC<$Xjq534BVkus8gT+hQH96Nc9Gj!AyaG}Y3hF^e9*y2rFl0&isP}XvLh5_* zy&+g7+7+Hy?7D9fK9-D$^WA^C=r(t$vEoFc|CQA*O62K$Cny5vrtNc!9C@d*53T8M-Y z0yBlGm3a3i(Y0HK<)6j=FB62?YJs*wo1OhOwO=6-N#HU96=Fb)?WyUDqMEjj6lkiZ zqo|H5?F8sGu&Mvc`~X|LnV`fA6gWX?>}Gka0H{QR+WqnGt>G4!otDmyj(LCV;(wW% z0K~8WHi`$znFD2{;9+d?9Xz0VSb%3w@@wd(_BZkQ|1rBQM-x&6h4?Zah|mXb7!Oq1 zx3@k>=w|jenehLa8T34%hR~3Zq#($ng(|Zk9+U^Fz~kO)M=)S%+HgIZ{=C%x%R}V@ zJRf*D!IptEBG8@&F!Q`1TZIQi1qAo1Myn>Tct%$X{(bnH68Zn^AD~{rBcui424V1n zA4nn#L-{sPrT?BJOwr4U34q`CzrCwG;8_ACb6Th-d^6z`CX1XOwXPWs3@Nt@f->YCWDaUwGZL5=%G?A|K}ZP$ zuw*;ID0Cqb804dZCafU9h7SDq>4CamP;?H2dk|0~KG2(J=g5D*;HY4T4CetaD`?>d zN#??!Q5b2YdGi9979lA69WDCrmjiX|t;A#~z$OTn;)c`!6%`C|ecaG~qeY_-hR73# zGLpBXN8rasVGNPbd>~)~l+L0JS^>*~qq(VxVX!O!z_ooX`KhW{}1XlAL!uD*C8Op$cDSZN> z+`FuKdt~563c$pzAUbN`lPQmSYgIpAdFxk22J=iCZKLL4DF!s5t zzXDyqfeao{kw%B!i;Zm&DLd!An~iPlH`Edsv;u}%^lml=Db4VM)uKfsRaB#1Y_^96 zy)gvgUaZYp>ur}G70d&9p9rWL2pxJiE8~S29^f{hNAG54e4w_D4^SNF(R(nnZ3<_{ z<3i14M0&Tj_YCyohRNv@Kuu*t!fx3&)W=8=&b~Lh&!OAz?Sc7#mkDUjowMG}$hJoY zbY@$NT3G>i z(U?%e8z+ZVHL<4R`qpXcp*5H3uSWvM25ykIUJ+IK6y%vTHXbtDtR;GDt* z+g?wsZP2g!yL5ed4v%))?NI(FNxz@1%q?H(3R9&Y`1z_Y^@wO^#X+rlkF-8|BFPuS zc1uymD5lEH^xZF9%@um)Bt&9(BAon_i7IZ^M74$H9C7vmQAq_a?%{Z6W5+b zFA?RjzRDL@$R-hB7+|rL;&{|j)#ej-m1vwjJFv^HM$o6{a8_9gTk*0i;m<-%Y3lIj zI@-4{^*lSoWB=60I+|)wux@{E`kP@Mk)QNahox65NJRwJF0G0t8agKwl6I{;Z7w~R zle>u7D0hxF4!@_Mqb_e-pVfHU91Q#pso#JQICk^S0G-PbiD0^6x zqDL2mAt)N7AS~SBC<()9dIL#gL1nW!h@kWtc-M zC)X?;(C=yXHmR9!aLs=6^Q(8ucS=4L-g7@qlg5b;T3?!Ln&HT(NG;GQE#np`pVN`# zGh$NW{xKt@T4*eChMfKxwt#-Hh5XISpDQwh_giIHkayHX$e1b{Y8n!W2_I~q(1~-M zd0kuZGx|`HYsk}YOZQt(KdmL4h%%SYT^=bJdz{0?%Odq@U&~?`K3nL88k^%uzPhho zINK*HAA9OwegvaTBC3+^yfSuIFx!)iup^-s1?H;6ULx8@JTk5O`#bNHUlS1)*D=h{ z$W_oolpQY9dv}=Y=F>E%Oqn@Xr5O{#<%=zS35iD|wdL~L(_S8`6;#c^f30yolZ88) zY(UQ|Jn(&y{`gCoT7BLn@&>)4$WCdMJUTX}I{fI_)#9$U zBSlwKHXa4#|4a_BNQ)dfY4Y=y^H&7b)qC^S^pD4KEkuGe3iI%4jLT*zLIm<>n=L~M z%*D+<96i=>`|0wN*S`L$({9X%o>Fxy%a;rwu3JgvW2}`EektV=OY0Y6Jt5>%)=#QE zLmJpok9ju#$JB${sks;r!X9w8)?b;#2?DY)XGUtubXk~M6`MN(+ks`O)ecxHy3&+DJjZ*CuV*mv&x!}_F|`qonEve+L<&wfSx zwvo|{3W{gGzH;_X(5o~`nn>*vgRGTL7*-#iV2+dzw{ber((-E| z|DXv@cm^;1ZU1*xuNN&!-*|~s{x+4D7rGXC^DV~nqSG|kDKoX=S>Z`NBL*~Bm@C8T z$!u=LXZ2KZeRX|&lZW16H9nmjy}hXXe65<}lk2JPWD8iiW#m5EJ-j{TZ#zZQO~)#W z>qf_2uBRIqFc=*X!_{TK{%cO6?^A* zJc7$@Bs}huA*L?mS3DP_u4J{5k`s(=G>FHNhbZ%& zrxEF2Pw1*KJLO%|OibXMstDp>wr|P5y=-YV#KEXwY8Wt))%s3Qd6v z01uBJCSg?o_+H4a5*!$Wzqn!YngxKfiXO}ZL@l_%+#uFn7&y;6?nWTah91oiBm{&3 z2Z0uinve};0z(meE`zg%psODs0HCrKzV<#BZ zY503&9?(e*P}k_7s2;=LP+q7_5GapA3r2Mq{ssf)82FTs+zse52P54g0GucEyUh#S zS*VN#JsOocK^hx)(wkD_5KjlAuPy*wF!W<@KPyPf873wLBG$Wr`GL2<528u}kX{c= z@;o5KcR_Ct4Wblq$@2m`qIiF=`d`7QZo}VTUf?kBfz?7qIs9OIb{H8bHbK8-n`sds zOo1M~tDPYr1y)G21_YB~+ z=(!2Po-i~nsx&g}(3{8E&O;F7HT>(7f+$J2__n}~xZ~f(z4e$u&=d`Lw>N_y)CCHG z_z74yC{2Vpeu3SipEnO+UBL5&YFN2p7>FHI6Wp```z;K2?jsdwKvWY9mZQ;JDxh2Bme}a0kg|_3^(A3~~zKz?*8s|AGbOKhR;a!>~8+Q`^}8 zg}(T&%2^Od{L~hE0h)0GlL6N~d0PiJtBXL6#=*?ZO4iE4+0qKsRO4N8yJ%(Ri09Sc zrLXEdhB$xZL&%j3WB5mgPj0S^M zqw8sp_cC}iD(}y{--nmYPJb9MsMa)u6cR_^F{bpY*-!g&>xo3$7niP7F@I`89qk?3XP@8SztW zI;C3oeJN%}Rb@g|!igsxg$JQsN^^iw!>-X3}9~{ibej{FS@{$?n&$$}weSFPwt6pyX^9^FM zjC_i!@>NGpZCTq#s`npfeICS+8*SiZSR>Qql8g)@6FEtE0N<8#k!RLAt~C3Lset4? z={&c-^R>|}2Vxb*yo?ucu4)>Kx3ajt|Arw>Af@=piy=6TX?FjkBUuQEFtrMjTW38S zi!E2__N&w#Vtv2tFRg>0*U-Cii$mn-;`L){=WIm}Cp6GTf8m;$PLm?!k$GUgV$PZ{ zaH8&(uOnq-L2(yxlf2vUs%!(jeX|dzB)(OOFXg@Di63Vt%{pv9FjwRtc@P`-&P5{@ zN!c!D#+64BT53v~RF7v0rNk^X2m|c3r~Np4J#5*~o#n*^z_tX2%1y5a)Q; zuin$_9XN{Zp?-TYoowP7g;lUjgWy3`lT|)kZoDVYB>TH~vU-IkNnb=tM^{fHWciDj zUQ#)x+PpS?Qh!t5*y1Ygy3A01GZQUkm44+tGN#k1+<}$C>`sTWiFVy6GBWr zX-D6AedqAcrHse97pib5Y`6UEsTJN=(hGPA zQz`mgKbXE5>a7J6WLDG7raG3JeXOWX^8a;Bt(qlL_(k>d2GdzFw#UA|iSI8{e$39K z9>qeWGn#A*=BPYt@TLyDZ_or+5?QY|jsmiltuw$2rm zU-3lM2+t->MyTt$RGFD2nB6pf6(C&LH?e}#OW@MlM@R#Bgk>}pHG_e%Y?3pCd)RDHBAXOYR2 z&6}0tEO$*h2o-u-4ztNIzMgSeRL8zHTAo=@bZbTb{=)F9I0?suN_)yT0VzhEIB#)C zi#WVqU1UwDcRXYF>s_C`+U-T%x!4}F^U;oPIHowRn~DXsk~ZQ9f9h9?)6^L_PH*C5 z(Ason=EZb&fhtprmpN+^>nHvzl@t>(&$TVe=L9%^wbry}JU{R>$CkCc+^blFRI#V$ za9(=j;@#Q~B0N$ulFSVX42jYEqt!1)aMyB_$MoZFuNx2dTechi-XAW}xl@1Q&mjg5 zR6L+G@E`pN=qB{f*AUj({c|KDIlG9>@WFqdZ~c$6i`W$N+CJXF$MDZYklioPT^J~# z!CY>)r8H>8#PGP#fDwQe2YtqOd{|IDWw?Ps(KU!(zyzv53h_U?g>GOdz6KML+{=m) zAb(T{=1MJq)M5b5zyb*1C)5IeCbH(O-vpG*`qSdg&x?-n8er8?~#7d-r3u)w)T zfcqKL=!q9bodl{XMsJ#13+4yTJs(Vb3xS&T1Gi%IU=)`P3B2vHfj0_jmW{gC2q1Kb ze%jk>1|pLDFu5}bkQs;`yuD_SehHUe0O?5V0^Z6uLJQu_ytda294CI5t1Xb}*=6Ld zHSs5w8#;6H0d58lnfw$==aK0t2o&XW`BAcuap zc|qC>FUW&~{8S+rJy`_UMf7MsNE{k?dg#%+*%&{Ry8`SVJ$g4I;{l&2kZJ;6DnJy% zywa$7J4hS8^{Byn0UPc{pyur$fwvwtB(%y6lir0um9s?#|9RAC!KisVNZ@Vv9MV{V zGcwe?9V9RxBs2jEhQKf3hLIaWpyur$fwwmdoCiQjedl3w^CFz~ADU>_Zy>MP=R)2eR;jHcbKF=t} zHLvxv2^EQ9?yt{%Q_Hq^rOlq$Z+m$)EaqHl!FF7s~&m%JD30ux7mc|S9Ss6FJ+NJo` zEO~gace34PGc5etFJV?Vf09K0#>KX7AC?~q6LQ^yr(LUKa`c{Mdih>q!pkOdS$ubE zwzjESpk&zjrB}{kV4|RW9B)$h7rRnPhnE(|mn>w~)n;C;6nHAu*f;hc;HXT;IzB+c z5pvYw7^m8#qqm)$zu4%l6RDMTPYK`M_V>3xrKW|*oBify872SpE`gtNP39qTzv9zF z@uR<&%=1L0_{plSh)1^FnIIZkDY;wveGx&UUMX~Izn{y531`=Wk`vF@<35FW9sSo{ zrS(@_n603rmvz26Cu)_HV0Pgs))cpDjlP}9?E-EA(Ym_yKrEs|7)UsP-v+96LKqtAAEQ2ka7t!t+eo-s|m2ZAoZ0d5!0c*Fhag| zxL-l&{Yry%?x~extGHagw!j%S=2Pp`rc0t;MtS8k3^BeL=PEz6bx)Qr`W~G5K84`N zWP22g@21(Gg%hKnJ@etz*Nw{St8}OQH}1*v`iJ-yO(ENzt?Vvxejah_n$7nhvb$G2O3kD6o7zr}<+*7N>+K`NnNxPWSkidD zXzZE!yJ)uT)|d3$odOh>mhns#tH{`hLs%I7;=WLh9IMM0rDJ%RvYMHsR~MmsJ?Ckc zs+>KZ73EQde6`=Y4c^~|3n|PsHr`ES2AwYm7xM4A+n$$4?Da6XMM$55r8$hOPf-!^ z*!Y^!8)ZE~TuN14Yps(HBBb`kaz%Pn98@a&Fm|Kpl4#p}cY@fGA|=D!pu!Ay!f}Cl zjSCph-u2CJco_4~vTJ@w?BB=ZpMJ(fMIfIx{777?IYBtl>BA4shf|(@lAr1xSoyhT zpSh8xn|^Qf$-vTL_NS9t{o=;7HsxVj$v3NU4=g_(&oHT1esoCBw&UV^&!xwVJ}dI} z2VOJ<2VNhel(|`$%$mEwa&QDYXr%izqRThGLFMN0;nCo3ykIv4H<9oC6s`Kv-i;zk zOssj__ZmkECVjfftG*)AgCb1%^MRI9PDFIKJ9sSf`0;!{d&M=`*hjE( z_ehfz3>En)&zIZqP1~=od^~j?H%SGzvqbiW@EUJo+tkZKjU6y zT7G1^+UH=P)*+?3!AkJ?=UYaHR9DV^J}sYv0t&7%%#RCF`ZPbTln?HUenQL_o>`ie zaay2}TV@(VZ6S^!@;Ch_zXOv#=`+4qV!ljVM4{xe9e4q=`$@*Dz1?*SIa~5M3t14c zh?bGBxR>|!1S!Q%>eJgyipbs4Df}2Re&)JfQu5@|_~3?b-i1!b$%Hvyz7>J;lD6?yFlsZ(RNJJL|W`7 zj@#_l#<0U&F=Ha%zJDLm=TZJvlB;TpR!xDL_IJ6(^HTd}+joN(Nm-Z08m4=z+~pey zC>LW2UB&wPDu^e3UeCd%>w|qi)lW(_Md2HEGCuI|WGywGRERK~J~ruMKalrOY`%O%^-XRv zzna$1#r@qF*T*E?wKP>e@*CFpP~_E+exdOBEl9rKQSY?e{4cJEX2mF3Q^}>l=eU}+ zcd81Fg|t;V!|URjTE(N7`g+LeoA<|Ljgw%#y1BgX7xlzMAWiHfxjcjFv-~b)OKLMA z$u64(2sgc0OnIN9&58uDlG7x5D;Y;@hVMo4t7kBOzM-^4Uo zdl``8*%59n!k`<r2%RDy|eu$WQpqx2VBRhkm!K8GeO6Yr#%B96j&d#rgyZ5z%Fw zORWlC4=-CAB&{>h`;n==d~&#@*tvWl@MXn{%TdM`tZvl9^m3ZMqIyN;*-1<_e7Q7P zPY!TI3{*+;Nv?Qa+;}6M_~;Uq|BuMmI&(n+b&ASy`tS3}71)nsoES~jA{aLg7k#PM zb>sOlb7REQP8nt1_MszLUxZ&W_+fiA%VW(+cZgEWxo2x#|CrW)%P4O-zQ@g#Z1HK{ ztTUGeX^FCCT4-NVBP-R30a2;T63@k#I@5U0cSp=}-V@q5f6o^u{TSP)d55>B=K0s3 zr;2Y7R4tO;#*|uNv?NxzLmzrdVoW#+w^`1&Htq@@Rjl{>dk(J&u6@5maj};iZMbIxDpsQGd*fbe2`>i8-{;-^m?^HXhS-3}ag1c?DdKTMi!mHlw(Md|G7 z8)mp9Puk-=IZ@#)5js@SaTg;tm-5v~*PCL}z9%c~ZU`~^CA7R#GyW}M8>X5OJ&sqb&@0uw=1Scn_^L<8zJ9ju_f7A677=xwr!#6qo( zKU2;eKc-5-C(^*rw(SQv1R1C&-M%;<<-PD=!L9kgskN%0S+3BIs88;{q*Rrwz z4O1b>O2Dx212$9;bo2$Xy?})QxelP#PLTV*sd9&t2>7#v|7CjHX$U}_6H?CL0n-Bo z;81b^H)2nM8Pe+N%BoUY$|`a?+9<{De>V1inH`7?07?}2=b%^wDvjX<-93bWO+bBI zfPlsx>+pes!H${z?P&gg9xGI~0%ScwJp>>^K}{&cAP9n}I1gxb4fHeiGP5o90@&w@ znhEjeUD;ba0)ZM}hXX^U{y>Wr#vMha)i&SKt&u^+4Af&DD%J-%COchOR8|cM3urM= zr3n@5^TB|TB0o?_;cx7g4-GQHK=U)WNu#>{aA3fH!ZmG2pjK1Bj*J$JN|OIQG9OU1 zfU4yM0NDezU)!-^sPz;`Ljz3(u*(9wpm*Eutu2GP&GEq0V?fDu$QLOtW)@>ZY@ z^yude3c5fP2eAu!Hw%LbjX>2QsH=r2Oc+WHd{5Ai%?m{o0M!V!KjVW5dm&}MpxHA% z@KFVtyD%G$%74O`86U_-gNbcI5<}=`4e`ZLzy!<~{`f>qKt_6_`9S6|4+szPf^!ru zXoi}Aj0E1Y6R5ZqCSMS01BZUv+gPB<43aE&?iXtIG3>x-!Mhpge@2Ef6=BX2R5fU% zk+(T=@T3G`l7OL7aP(`21gHhTu0UCb@aWyllONoGpzk|+^d3wMx~?EVV&aYi0aXtg zZq+=1EQb?ihQhAsSG}c7fFAt!#Rv7Z0$Hq^-zoIy-HeP6O3DYOxtTK#Q+^G)VC*vS zEkoe}pLijdHjD`H*+;)>s1+>~cZYfO2yPzqdx$^8oK?O(&~O-=N$@vbt+4EYn?B2a zLd>&FYR~fpvBmIdqNrG&GcJ}lPCQq9*F0iTxgds440 zc)F^!^Y=aWQg^M&Y$++u#8T5U{!xW|>NH{2EXy;$sr|ebf8sDBlocrIDz1`NbY2eq7>ZdYvLE|V zpf+J~wvNQP3ukVLFtym!KF(L47>lHCdG+j0VNgBGa7WnU%lF22GaDQqJj`~V?(PEZ}ft$*Mgw*Ny z3)B8iLNS){;a6{brhBU}@h-~j;)z+UsEiJ;-~O!hw6;XVclBfMd+{s50XYoo^P#M<-D0QROtV!}rM`T9;z)0UsQ$o_Y49e5!k0MIH~9>C z)crSymG>oHy|BEH-F{`p4*$lJN!6>ZnNIWiZh_J!<%&bmR~?(~8@D^~)tqh*^&7fz z%_GHKKXV`k_ujAb@pe~u8lw!1mXGqKM+ggXep^m)yLxNnPuj z&j}R?!W%TD)nnJ+cLh|Z2+@<9M>8ML#3vD|v~m>w;HD|Z^^tEd=aGEEbPKns z%C!CJNnMlpD7F1jA&p`tZLOk*x-6P`NUdsx{eJfA#mi(``wo6N_4oqCx>Z2$+o{7w%^sa4 z=?httzSXo(-$zk#QxShs**|(5Lt7W`(?WW&LSXp8HzaFa8ZT`rt}PvxuJ=Cp^=qx_ zOj_8Sevu6AyV_%%#xD}vk9Ej0iJFl~HMN=>$p-09b-UK^X@@#gRCW!VHl=ueu7&8( zm6Nii7wns2Gw|EXYmLmsxrBtN{I8vB@fBb#`E|KQ?1WSd-EbYYCXv#d?A2FkC$FC= z*QCw2VS6=s1yi)?vfe<34bOS(aJ+SkcFLurdczfwfuhV-?^YgqTG`BDaGIRN>|YaX zcFmi(MVM4DDCCSac5(2cp@ROQ!nL3QLC8PpW2PChv7VCu2w>U(MjLJN$pcV6#&?g+Ov`EUGvkk$nW{NA1ye}0R zp(Mui_>@5bE(iCoYg`pxnjLoGc^Hne_lV5ZrYnnay4(0`Whl~qO1jAvF>?) zqxgKw?+rH^6}{(0{Rb65+5L|w>f$#7S*i+mINkmAIO7CjYEPfyij2KWyJXY1;dfWN z@o=0(Lt{ZX>f?UKrSiu$)F$h8m83cwp>#QUkNabR?*5 zT3qo^P*ZrMm0kZ2ErOSB48#5dl%`G(1*@BcwG)Z6=B(eIGqgJwT{v^b`uQ_Hsn=K6 zi0hp=4=!H{Q=Ir%$!gu5ST}I5yN&geXvr}$%iC0kj>dCl2u`rZtavms){78)(Ga{R z#jjj1G5>u!U0ZxQgt>VCsa%aU*6z z!P}7+$3*s54sr_K_OQoTKlL_3OlU*MO|Ye}Q0!{a!HGk-X_g|5GQ`;04$NihCX^r2 zdq+pBgw*BB*56{vR*UsvtV#t-7-y3oD``#8Gky5kIOnR_e$L5Hh@qJ(k7);03?38a zi0FDw@`4kVwXD+*$~A^gVT(sUHl(5Avbt!&plBGOVK~@iOvfcYe$M3VGIhP<5z*C_ z-Vm%h%hBb^@*r<_!f!okP8aIj&p-8hoi=E!HzrX|83JV{~tyc5`Pv3`C14_%LsT7 zyg-~+7rFPh7FQqKb~3791h_XUhM}^!T9cUT{~3vTcPyrYIkjW(PcCAPohz z_}&X)tR;6w&H#nU7DO#-`txx2#uN*pW}m}?(bQ=pP%9MSzzFbA;Myr6P^%1)zz|OY zX_KPs*$B$NksUH5^cHJ?uIVCTv)pX^Q34kj3A~ll2Y53;9>6foNOCf$;O&ut7Yb!d z?r{6J3;eeW1&~JG^4viw0va$1lZOP}@}30%Weimt?i?A#gGB;ERfa%(8B}TmQ-pDU zQ4{u&!CsdohI^nbkKp1zIJ>vs;pF&`# zq3l(tNhj*7x%o{*cN%Sv3{rIgUA+S<2x4*Qt!xVnbuQ$F37QF_=KUkBc{3v#obY^r zMTOyQ1yS?I~Xh08+%Z%-RY`@z*MLmHg_zGk%G-7Iu_WKcdV3=^Rg zL{0lgnl^Z^_`$Q}1@-(qFp1HEfLHw2X>Zo2!<`2pPJtfG0}fG0?|~PHFMvS#PAfsp z`bU~KgyI3$CiLjtYz)ZL0dgJC$xla2ATH2>V}QcQa7Xb7J#42MO0hg&?R$pdhM5 z2kgk;1Hcc$c&K31=sheJl;pq_U;c4vw)YwxK@OX650dZyX2Sns(LvNxaC1_dbon-o zzNhY$P~p!%@A(!%F0?6Qy$6DP(4Zw^0C5QW!@%hfr=mas&JAVp;+AyI1X{@xpW2ol zG!*9O-NU@0gm@Pz=5n2$bs*~Ipu_&OgIC&!uk$Ss+EgDqhC{dJQe(mJ_#nf*&}+O3 z#DZq|S7Sa4_A2JzNe%rTKu_(yUn198&y%0PoD82byCnI8&%)<5-Q+6vSqYAN!Pggh zZe`94hCjM+_sZPQm6Al8DHBJALyyG_mh7&3#Ht*Wy@}Zy`>3S(SMPIK3cvGe@(YC= z#fjO7B|XnivJ`1TOtn#m$Sk@YSJSj?5!x-pGM|%J@HJmEC7%p^GqGW5>ow!9_o<_1P}BynbHxPlJ|+9d)6}8L2{Reo&Ie8KlV!M@ryJr+&#ym+x|H6*}8S@&E|A|(P6Y=~4VV97&)iIQ1mm+qRPIgr$ONT?*vBd71M`w-BBL<|;0Cu}@Kb@cAww{<|wAvrBg>DO>lhV`pRuSwGz>|M`?z@}zgh z*=HN5K9w)^XIW+tbkO1l-j88Tzw@d_lpyoAtnYp1+;^YHzbOw?9yagQz#u#<`x6gq zBUJwWawm4MXcLADy~wkoj%7o&_PeAFcce4IUXum&hy6o`yM-9zJX5}RY!NW{dW4?PIFbEW8^>{{M6lKIJp!TvHbjRC(;%FrE-E|Jx2zPyqVv2nNa zlL}v=`TdN-eTQqKm26l1YD#H6$_#a#8^WwC5ISLYuX<;NNd1 zUtXd$q7~XK)kP+e{`}qcdH(+*kszfVz)gT$NZ{#!>^|UifNv!b zXInNZfEJD7DIkr#J#mPOhDlTt-0a`DePE$^sUemKFg81O3^lzDY2fWegGzMZ-oc@F zH8XJhac>em=+L{G88{61LAML^WAA2WTU*8taubE&&IHsXIpk%7v@Jof(foj6cM69wH>fLjP-qJULKkLH73 zDd2;lNAG5$(2Swr5PI|;OcWBu0D28DPiqecA=FSo0FDMlmH0$@TL0NIU?|YJwZl+Q zbL^1N+m8!u9gMafq>PAuzqhe~wSYapQ8Vn22Hu`F#6AmwH0zzy-p$H*p*EJ_nt&d? zo0&nW-QXdi2k&NOTdU>;jfdcR1VXC3|GH&=+R?yVF;HV*@LL9q3|z5y?$~ZN_MiPm z2j0WS7W6>|iS#fdBV`q$`DTH$7yk6#OvFa_!TZm&0kH=3mUk{1Nx%SgXz0!keY7B2 z4j#RmkwJ>X&_@d$de__JwwXYkreF#Hpu(VkH4~_E2$WyJEP4+HiXOZN14R$s!y$+s zyqke;Z5WVO1_}IdHns-?1wf$B40Dx4jnTrsR}gE?563#A25FJd+w%r3=b!+`j<*t3 zkqs6Mq9c58E(fZr8WMQ>-GFpNpjO^Hhu+P`HWgREnU5a5o00JXl`p6%G&=MjZ+`o& zM#H0mcME!`5G#tLVe$`+x;Ks#=}xiDk#1fU_P~)=84Q4iE{Cw@R?=I!GyXUYOF=x-}_Y7%#>9 z`&AnTIajI{bE>qOaGPJ>J|sGhw5osZH3&8dAi3YXUpA_BI9X={U$} zD`LcSNZF0QRNh)Q@`m}d*KCD(?!glJQDJxiU#h!uo_Nb7;xALCFN94=bOb5tIsPD* zx>P;zKJ!6{Qf3q8$?5CKv8luuOevS#;-4v*T9sK=+7*TuMD=THeUf`5`UsG6A!T_M zLx`x^-r@Muvf>p#w8{2i3rSJ$%T)6!&}+!Eb;7IdUMa|-WMh7lk8|gs8Ht~@95*fT z^5rw(bL=!0533Jma#?z0Nj^HteOFfRoXAjG3MpHIL>AKyt zRDBbns2GlaDUFRksP*M@t&Z;b$7kmA_@jFlG$@a=thbKZ*|)N!%&gXlG&U7K=r3}V zeWcA7Ip}=0TA+J^^}^McnDrszlNuEX(QFoj4&FuyQ^!fo8w;c#o)_&t!#Y=g;<6aM z3!P&fjb~e{I*!m4Yul#;3~T*lPR+9SF1L{>c;c%}6n@fR5p~z0)>d1_eB*asDF-_k z*Fy=1dzcfI!g&u`Gw>a;!nVmxnV)bN8Kn$aIq7HdX$r z+Nxi0Q(Pi~DdytYh_xrP zGre=Ye9N4d-ef%|#M)@0v*1@KI$!P<_Nk0*Bn>~!46Dnv_o7z(N#DywTtS5IoZ=D= z7+oXmLpY6BdJpVo_24z>%`f**crBMeNE<+t${I76Sqcb_Mn4Hl3lAArC1MFlA`oogQX9 zEld~qD~U*blKH!|ij%Cuw~3^03N?&NQBtHiM{x^H9aBc8V%=gy(~K-XUE+z*q^Jy@ zGn&wIElwl%2#jvSTE+d$o1%ia^T5>-=eS#2`FZoVe7zEf!=l{wwX*-1c%IfoZuI?r zkh1@?3)JpB8>5G3%gu?u-yozEKXTuz?c_7zK$?B~3z-7-Lq4B7#Cv95>YK5zL9ksq z**U38!v=Xug_$YpILFsxp1TIH3O{xVPTrU8b0=p|R+36_=HSeOwhnDh$AY)bnAuGn zB^*|v^ckEPov(2<6V6m@U^7rqt=^7L86Dyvkn|h~$?`exL(;4tl%uigY1lFBsGqcYtVHgl)?a0H& z!EOC`l`jhXL*~3=@b!$0H3OvsuTvMW>9=N>E3}PQxlrb)Yxg7`BIF-DDUe59?5Vn@ z*Z;c8Ll5HEbc;;WY=OlO6N z-7(hd;U`T?uzE-KIWB+x;j4}YTz2zd-9|xEH9c=0dRw=4r;z0{gTjXeaE5A4Iqj;a z2Yx-3BMflcuX>3j$7Xp2SNhuPhJ}U*`gvz4m_Av!Au^eXq5|mJ9!+51qeQBF6B1ktK~? zYX+CWMxQ9jghho>XgQ<=#t|2u!Cw35U^3Wir|SO~gT0mohQ(lGWQP5J7;F)s8G#zt zuO(DLf*+u2kPzP#h5c6si6u0Yz~MgDmThz7HI&hX834n9@dyneCE$Mr;}aT+WA|(R z`?N95UZc(7LT_vd7zP*}k%@uY2~d|~+=vW2h=rLnKClF~s0d@|^)M7@v0#e_N?_}P zV8P(9f`G|(lfc#mVSxWl8Z;S!tD`4@EeygyuiFjk2Lq-Gmu!;2E(i(>2Eiy2CPiBU zTNs1^M%xXwgn{c40!g&+I~nv6p}>U`el&LQ4fCi$b0R?Q;YRKf*wP>j!@(n3%OMp7 zVn-lt#_=+!J~Mv9LA63~)&QMw@S?GgcyNXT$+9Sn+C&1oA}EI8P<}NeZWMvI6Yv&d zzaBUjEHER3M%REZ!lh0muw_LUBd>dz$XXd_7%#)t75#7EP3&ZlFcm6Of<0xZmp%Sx zg*F?!mvCBG32apnhS_NUhPHi3&V@VlCOj0h@B!5ia9Ks@&gH+_jRbd(&|N9+$b=je zZ8uZ~00ASUmB7{pVa^&VLkfOPne4a37l(F473Eeqz3XfBwq9;+zg2TH{3A%vjljA|NU8m9RaT8k;Gb#2$~3h z2s#YA*RNL)KqoH>b0;MMKEe2hhAOxUfjA65nvkD?Tz-�c4JN$KJ$72(>f=^_*~B z99zVTG41vD8mewA0#kEb0$cEh0Y-ZYq{kJ5$%~i3*1ut**X0cO(S&w0sO3EhDCF^@ z3HcdxwIT|!_UkHroPB}d2S5Y~6poOv6b~A^d=195(JKzT6x2DweO#LXLp2b@V3g0$ z{W*RoT^||JjX;?>xN|1tqi8VL3Sn;IB(TfhU`!e9Cs3zrA#lvW9eEQw;aZpj_hMpK zzrh$9Z8q4AP@upQ&d4~I^Kg5@TBR?T5=jy`m-86t_5B||nvjR04F@M9ak#h)=W>4I z(Cc6*69VQgO#mxb4Nm#o{4g1r;}tv>SA+ zn<8eR+`Iq080*9=YAtBl1Tov8*Xs(ztGB*oRLeOh8tmeF&UE9k2jk-j5!-ul+|wm~ z>B`D-YI_;?Mm_kY_`SxMitgJ%$qA0R%;6n!-}hGfdc3KT^BS#TNed>87(PckOuuAu zw58e2xh(k4uk$g{3Ij`F@#jY~Vm(OuAG{WPc+oj2o#VSrp1RHB=0B-_41S0Y%{osvC(g>g zSPHS$Uir+l>W~-G#BJIC$$@l<>)EAdL0Q?momH2jZ+BA5GgCz`n4J?0qRgT)tdcl% zgS1FkR_t(fTT2O#Vkf74vU^K{ZS1SZXOXtIC5v^rauvIy|9qFz7$LWgu%RZ3IDKq8 z=q_dT!p`dTq=DgF?L6s07mFw}_Natb2NjDmyi>97a#T9i+Kl%GP$_9Xrh3bBkvvM5 zHpI|mM6UG3gPQqPqEI&-aii0nFXU23QP*ds%>3KNkF$8lqr&z^2~YFKJ$F^|h^dJ=#Oj)QDn6cMisop1?8i0VPNOX9T&reb zuQTpCd6L=Mu_i>MxTMHgLfg^c+Cu$ZzAqw`E>BWU3JYd07e1`3FdJc2?`A1cmsi^& z-1ekk_Yl1nGgHtb>!^k{S_WyirH+H-Vm*BW%B7B8;yS@(Xf(a$Xs*?}3oi7hGA8FvIo8l}CA_bQZ7gk! zBfE51h$QTTk80TP?_L9WXUob>-90ea~y|KA}y)?|b z_?&0fM>YLtUoZShB6A5uqj$arN7=_m}I%Pkf8EuDVoKYB(|fo9A3(hJ9CB1J5> z^^uwAzxcs)#xAmJgsJ1Wtsm)x@r=^;=ohGE11A3~QhWQ(g=$gh2^1(4wDKKODp^^G zLG6=bqFs$|Qd{bqC88IVMP5#HuKPNaU}9Iu5`Ea!COoV8s;j2syT?`Rd5L$`vg{{M z-Y?!SQ`E88`)p)I_^Mv{^-zDRW#)?W_fC&wW*>UclyMt%N_qxS@A{5zu{?+GQp?Gl zn#YMg87D(_5u=bI|6 zi#JQy!hU^gltPfl?8}`Q%5g`te{|VCNN{aGIjbXAafh!)cA>LHs%5c9{u&*d^ozJZ z_cN|v^FH)En%cu*FwyEl{e00ofeS{pwlAh#G8sIho_%4FI-gHVo$2`|BqL(f?`_c^ zpZO@QflE6B4ms_6*xvsA;aTFgpWTlrZ-$pVm*NSbxOH;u*GtW3FHM3D9$`LG%~CR5 z`^Y`3k2=5LJD#q))$Lu>EEDl(3??1MytK>njg4GIS%;nRs7` zK3`7d-)butIz9KbAX=W9WyIo#!?DzvgYE1wm9*nEd%Zeb1Xy0%p4Um=w|zzX;rZ2i z-gmV*fp7WLTFsx??|PfuTX-axT%=0&&FkM!t+=gG#{!i)i0R&PxE3)p=_iRYYu#4A z!5%RbaFj32m}o&+B-L)gqyC7;1f>_LuzStDQ?urW{{CEAdDM z#@SsYT^h<-T}b));~R zoy+}C12GgfA@SD`Oqvm212GBgl5=oid;}+yefpozE;w?*f+1Zn48bXZEvCZ&qr()u z93{4x4g-w@XAi)i;st}K>A%~(R&x$FKmtKMe(XQ9*UEa~5>FD?3M&k=*W)^Ts$vOj zffWWAEkO|lVWBuo|7Hnni4_JK(n~^uY5eGo5f+|DEefizL51;ff=cWnW*9?59kbVX zLZG2R!6;ZHup1#`prJfZh}#myi^d9QG0^KPE((5$I828;32coO1{evI*aJc;sNN_F z?$m@Wvcf>4T}2d-A+X#PI2Pb{G_>Ks1h|T$64*t2F@{C}xeruTR0MG0!f$U&tlop-``G&`}HqjCHEV7<%1Hkbty9!c4da@e$bfpm0M2**cgsjM+qe5XM0pt0~1KlGiItqiuy5)g0TNva>2*YGjLl>NzFdNdz!n_zzO(Ozm zG*O2ay$SyWq7Cqk$9*TElJxk8UVov5LA?MZObQNEV*)=I{Z4`_HE;!ryWZHh-5Bfr zU%^=9I|djDiitxa0K6j;@-g(B!QCP|`eDSzIt7A4AU>eC!TnrgC%SB!;dAO-`;IK{i27R_Wwkp z_DaRxrSsTNtaUoY-7~W#9EVzIrKni5IqW2Uw9ZA(z6h0h8s?Ue z-E^>ymu%Ht>vY%eAn*|ipT z{kKEPcAYxQr1o=yIdg)>gI-JBnl*d|o&j+_6US7#cCk-A4>p<739O#dFSnVy^~v){ zQH&3#y(G8C!`mfFpRW7*Dr|9?>gU<1nN&wR`BgWr zx^L1^p7kkDm==BL7N3Cc^m!jI(>^8oGC%1aM&d|y_((9_VY2r55A#NLygDvVk8A&W zeo6a%tL)cHLscdv6#U&aFPVh3DHb0+<(n`#5&YbU_}h0`xpAVOFPpU=dKnwASvQTm zzE*yi>_eHNka#H3_0;!lErvS;1y)I4tGWH4 z&m1VNQxAUAhVY3^-+%6{@fOQH+tm+W_LFM&G<(y-DapQcGM3RJIitt?^OyLJ1v0+f zN(`z+7pc8>)a13a-MDK-Nn$D?Vx3LT;`ktVl7~MyjOKNcXGzK=`T6&j(@md(t3*GU z&xcZkYBX-=bv7(JG@Yk@s_3$NRM#{QbBRm7K(qhXggm`_Eks5ix0v14nGAeyzO(ZE zp%_i2?GI!QwQPxL=?*8l|LINWNiyPIMcUA1#Us8yFY2i6OS&mZ<6Yz;^s0sEn7J=i zWpQ|mHK$+fpZpV&_j4L~4#?(b2x%w#dSCvvMUL~eW-hgw7OQdW*%oK7J7jwf%e24# z!c^s78)-swZX)`GL@uc!ysMG?(-1`l{BGCB4r=ir#cL-Tm=Avx&RgnG>4Y%(v{y z0wn78OIOCzaaF7BYcWp=VvBfFIseOHY1!eCi74~;;2u@E$`=wc2TJXB8|cTdk9j&A zeYi|%_VtWr=$*q%FAyFgirxpJj$cgJKW-P|-KcJUphl3o$1F{6Rh?+>OF=3shAKX} z3ts!V!o_;GQ=HiLMD)Zv8d*D*L95erWqITSPUCvZSEyB*(_SA;w+a$&PCxfcev3AB zu;A9&51HzwABturZ*2c9%;vu`SYNV>^q#1O(j?Qk`G9Bp^^cKBJza^`->MyZn2Vo1 zFjTHTQ7?)(zA`bLN!Od!b7Ie*QvTcfvKtEQO&rDUy|Yc+^46ZqocF8CM+jUtb>7okpxp73HOcJNlXofE0{jnlVN_iL*@MR~@9J7-T;+ojWdvATC5Vxofd zd6btytAc_%D&krlR&kCf~8;oe66 z{PxY$=|PBxo@qfDE7``oC8duU+#o%3kYB{tGU?6UmhX(Vk=9;wH&&Q(x!j^=1|IEM zax<58aALe`rufREQIx#l7I_wP_LZ{1(&Wd2q>Iy`&JF{lM;bEvrQ>sX)&14eK6XyI zNR8HR^9>+*tRa+hdRSMq;@Xjt?-r(2Tdm3M61q#2ZYYTRnm8m2X9ab?+7ly~H<;z~ z&^|n?rixc($9bJEg-oNf8qB|op3sT~e14Qs=F6_(7tiTVc}stvdQMtn9Jdpfb#F?s zCanZdIonH~_n)XawaRwh;ouV5a>9U4V7oE%YeR${$GldQRzz!zoAEZ2>y6I)gV?>2rWB;D+3M{#>(_K)#pdxwMN; zGIN=er>@e*?2vyZSapCw%H6BB^Uxi|kZ>WL-i%jb^d$u|ub4QiPVe7APh7sL{HV;1 z`Z#w2wQWpcMM^tG-ahg>KQE>g+`e=5;2be&21lo|nmfHpua?yOi@l1`Qbh%n7wKn+ zRwsm%-!aHs?*G|M@{(J5%wn)_ci_pF42So6C7&(sS3Wgvt3OW^S=&_7WpRVyomrpC zpY8fKo@Ka%Et>En18L}DXz?uyEy-Ow^1~Che|54@LoGMw3$B*dZmcM@9#`Gk%GO-Y z+3Rl`E^tC#J9mkL=vW8|HDS^;ceQqM2Y01VaH_qb-YAs(i5d3&O(9_w)YCTr4BT4W zgpaVrz7GF82`sV~kD3*Qt@eWh<0E@f*kV6eFdniO;`Q)P86CLc<7-jaVn58GL3Jh+ zV50G&u?tgSqW>;8Xz&Bb8JL(6`&_c|Q6WGXL`XP>uWlv^=o#?O8UeC!QJ}7y7!WH$ zop5l1U2ORohTRY$1aWsDHwyS2T(paQFxhDNx|6Ndfq)TRps?j<7()w#wL$^y03cU@ zcn$Xyi7ghv0Ha3++BFmmpM}EKuEBz#@{=&xcPMP>8U`3@zYVEsAgWskoNln!8zi>j ze^~2gLscjxV5A}_>{7TGBcs7_fs!{ELPLgRKzu!-Fkd!?YW%!v%>ea58liws;K#jUF0&G2zN4qkx3$ zzuOH~3#ep1=hYa-@G$621vT4)`Fdc81tG2( zW7eR0geXX3fbJM!q{n}QaP-a9|H|coPbRcxAZY#%l?VQa+E6?btP5)GrXTu8zyQ?R z#l1G`rWijU_TJcTY@PB0KZV}OO>ll4dWO!uV$=}lcW1;JK~-2`I$w6eAagvz+~sze zRNG$1J&6jkcZU}Hzs}m7DC@OQM^bN{+@&~no){xhHce#<^$y3{1t3;0JCmS}YxbmUo*?t8+Iqc~z zL)n)x?XzcD;77elg#X-;qss!v6!si3p}%`DY=m_8e%=Wh2LI$QIgjh5n}>g{tHk!kDD!pjz~yyY&&2##a_HwXc?R^xA!s7BFgGQ1g9O z%VhD%qTnq1OKZ({`yClYnZiCPb=keNRtYiB-O?FfuT!DNx8*yf-2LC_2l+W^_NFCB z$6R^;jkP9%C!SV-uKeqa{>$(C4# zIr*g-@gkG$12Khzw>$bS3W#c$$hl4Q-O|(yjXr$&rQeI*0=D8;FRDx?e7MA<+Q}~a z*p)?m_-JsWoQv~zc5^pn&?Wnp>df<>?5{9=@Mk_t`#K_|HFC6`Yc6{JLrH`H_YdFt zH|h1rdsEkMROdGx-hXed&i>Tx{NeXr0i~@bD8YqkO-^Zmnsk9W_I*|<6)|D~ zETv&D*m&KC^3^-kJfG)mJ2L!dgt$oZZH6V$V$MJTiO0t+AiO zrJBaudk@)p&&jA0>Z>wtH*IXp#{{TZwwFq5Td+~?@vJ>5V4chPMoEphs3V{$>MFgz zrSM0Nxrfd(yLoH^NS7onuoi(69dl%_&jsG#2re^ z+gz;nHP(w&AcjsLT0g|K-=XZ4HdpubVY15Pn~Lr~ViH3HYKXn}WZ$jdf+C+k8fDzz z<8K+|pR9elPbAyN?dEjDM=N=Qc1tIpI<2$JGamfIA>lpse0J7dcQxFjsG|7y_6l2k z6s|Ctd=_?5cWKgFphv9b`<5()pO;LE$4X8FnOUbiiaw8wv_nMlanyBBl6vqLK~C9_;D2E|L?Q(~v(Gd+S&Fp#0Y0QyRZ_4J;UZz@cT< zcf>Uz9pXPdV!#(;<0lQ4m|5RqF{E?=2Zd|@A1xjD6STP zPuTJ>Of)*g7h4O`;Ud+}H%&1#LPcjDxZX zaR=XwyFh)kq2ijjXspu-yy-xaA`W+Y$Cij;qW_r=Rnr2Y8qVO@8Zk`x`l^e9&`|;| zUdGmW!J~mR4iqNB9UAL+f(ia-Ie6kiZ~-&6(hC#5ZaKsfL4i5$;G6L_DDfCd7{o;r z^ft8VA|U2Rz%XklP`?i2fP-Z^NQ{Rl9sKakxEp8;0MgW9-V`9jA~g74B2@&`h(f@u z8}?}y%ksZqAd(OO3RIY7+xS5MX9ajP#C*W$0#Vp%F?ci(X^6tP3$|Pg9u2fSVlWCM zsOT$!MMFPuBvc^-9OrTT1-mX6{NRA-f+at&1!J&id<6!f4q=-x9RZ#hwEyFpPS{uf zK5@{v0}!gX95M<#2?B$!zoby_WfWlZaK|R-s_0dR+As-&>ls`)L3jIaaA6^A^%wlQ zgY;4%75`2ajYw}bkCh=30g0X#v+Lx9WzsH8bQJa)<`{Mv!GUkI2|q`-KB ze!K4V!l2l%2u$K9fD`mvG#o0a0Ui>z*8@{GvKIJuSuhHS0deX+5tS+()x+0vCLw8&YhW@WnkTBxE{sVkcDil8JpWyPlW^vJ@68Mb{6 z<+E2Fu*zyt8|;aR9aHSI@EbKiP4%UkI}TPJh)^-}<_Yt?V%lE(!~RX_-h`mEL;>GQ zkrk^;)OBN%){<_@10OUf_Swxzj_l{Rxs=87x}bfl7-ifTaT4#2`jY<%H| zd~#1_CiBvHQbP`ABhZbx$2G(_#lzZ{Z*GS1m7537fb5tq5P_sYT`m$(ig3O-diWZi; zvXTP^sT8H#X-l`9aUpw_pL#N3$G}1A%K95*W%5rKe2u&FbF~HgKUS6PPq0^%L;1Gp zWtd$xHrBoCXA|$wAfA?#b<=KVFZ&}_9#Ul%h1U}MN<^)C%7=TMwq+p*DB8a zOz!w(=<-{h;2QF^6 zD8EIe&)pKZbAOc6kbN#CmGqrKu3Nv(Ef3Alhl~vj#C#gX zt6qKgIJ!)Hd#PY%rMSdQGHB=g&O+XRg>ARFQZFcx1JM+U!Pg(fk~Vnbw1@ zD<%O)q9Y!gCaaZgmp@@887oKWk)G?RE~| z9b(zX-7k01|JtePk@$w_N=(-LBl&=Yg${*f@{pPuLr~b&8FWH@YS5ryIQF zTSMRCw#Z+=@c4Xc(q*5J_$=#8f!BlGDUKoGKq2DNL zjD_XEyB{r~D=T>|r>A$#i>sZIWPTHHAZVYv>s~)C7s~v}3-=!f?y~7h4Vb(7{8O3? z&--mWZ?|(wUoNr`x%PrB(2kGM?*mIr!&U1&wR@;zPx61RyC2$g?nK9-Clfk$9sMs$ zmWp_KNLfBTN%A=%VBSfmwxo|}G)%n=+G1;79x+zAFf)~vbiMPAC>2L4S3~6FK7F#i zEYa79Ont0sisX)U^^d#lR=hk*-`zT0D!}i?BluHmUd$+Xkor0sN`QxqpAE`zBq6VBq~E!IRn6PVy2C7 z^p_W(Kn8GWIG^5)`1QB}k3&40>(+}xns%51S77mQLOz&BCn^ra_%P=r z5WwSvd>i5atOw=epd<@i>#-F#nAW4CZK(Vl9y~$MLr2>L@C1Diy?P+%hicVfn~#0X zjcNQk7$Sn;x|o2qBj~qiI5c&zrr2WxI6=1snSui1z~Mxon_C!41mJNFIvXDyxSbaR zM~t;}M;Pu9`;s1h>d*-lMrQ@a-ndb(ofI~Xjh;HlQ3BO*;HJJYR>unm2Mu8uq8p69 z8J`Dfc%VQf+#822;K7_b_`kI`9SP}|U=L~78Xipi`s6`JDo`pC?zv;Dc;MlHghRrl zse(4{1U>$r^?-PVVQm3?Gfs;H4TD8s4{6v+9(d!y^$1)~EigJkpG6xFHL?|l;pzc? zGk%8v314C`iR1vj8NWk-&n#S9E&wO!cmJ#hGCv8}w+5F3g?VeBjQXazO@`=FZt;}7-HcXtr&Vb}Jo&T=x!R5seylg`tAw9%k|^YjTPm8OE~ zjMV|kx;svJ2Z^=m6#~MNLflYpD9d;1TmFo5y;e!)N=eA(Aa7Uqe!5d^VRj^RSHxZ| zs`#k7l-QU0g0mlIhB_|LJGjPk51#cLAMsex`1Bx`1uZvgjjy}j(zMS1 zm}!UTwq%LLBx?>aiXHPUsrNpZJtcYF76w7;!&nw8CNYqqJtF2@m8zIk8Y09_^D_{E%e z7tMYaSStdMMQUOkHZ_^z98im6_N+B7bIefVbhGK-DNoohQ* zGUv7IFGgHB-EjB8=nKNr^B&;6Q5V*jx@ z>ATlwi#H2n12)1c@zm4y6RyT3k;+OuK@MN`2KwYbdBj$BhJQwQ%J=k-`ArigOy2MP5R*P2;ZXw57>7FNK@m$$H8y58j8y zt=Dtg5-G?@@>@CGImr!%SD$`+E*9J}T0Nv9nH70(hsd1@BYBIwF2?47uP!_{0{3zw zl|KpWb9}J#^!w(zClx-PQXyW%57-Jr`c=07_+a(q_CBuIk<=jlHc?-3pSR7oBjcz~ z&3CC*?jQ}9>vEF$_!Oz@uir#={CdSJidpjR^X9BB19KzY3oNgLgbwbpF76EYJtW~j z#9J(+>Pn_YyS4aHJ{@rd=c`Pq)}s`vOf!!Yhw3I51HPd2EX=|cSLb&7eL3$}o_R*b zibDlyiR7YIHV@Wk2zPZ$yJ#SNi-(v+&%xSv{#FGTVl3k7a6QfC$(KEvd-_IB)f`oQ zI(U+$ypHB_)Hy^(Mq2RglNVp3c4yN>WDk$gOYE1r)?m6zmaI-B*vxURT)6N-J~hcR zZx+8dyZwf@q+AlF^juvUTI5lCxSDtD6LZvXs5!T*S{nn6X&9$>OwmPW+U&x-5cBOR zXQ;gdcQ{=L>Ik=J;Tg?vQu|^0LGV%Que0&>3&V|x+y!Q}aYQuHr=DK;tku_{{!zMh z#p3>IsrudprsxM-0$z)v%g#iaTe&66HSMMC41WX|0*WLsyVxxxJ;Oalwxmkx|3b zJrxzYioSQuPcdC5tK2nj7%@UhVwLdPn@IJZX{3z?OZgV76G_z%kzF zAos2ji%27#(qQ`!VI;q@M+ID*l;db#Q2x0ZR24GLou7WOeP+8qoky$xm+DV{oz#4}EvI5XKMc{j}@k9mBVf_85U~(A3Yux?j zISlYSpzraC{QxuexkAEpqOwZkWhez zO`zc_2o7OXAYgdx00nkq^y01C2gKo$thO)D54J2J+=ug5o{ zpo<*%4{mtu;~WND7+hZi<)G{(TA&Bs%r3Cy0L z>wtpG;1CRI(1U|C_?Ixx9y>I~7+nPP!Gnr>T_ZqZ zB(B5)SWnRN{#g$`7h*636u@uB^^lM%2OJb}UmS4A{O@lq658!yGLpdPoANv)pnaiQ z{4m24^gO7Ut`KlJe0ZGO2DqgM5&_s^Ou+cf_$>lT(}exd;^?6;Mn{4o&nUpjBLHiP z0?ULwcZ`!bz9<0{cLRbZ94v@(2>SfG(;>hshk|J|2;iG>dC;&GSPu7*#*tHD%zS-x zsQfxy_fatVrd%E>as-%bxXBZAc?8IbLI7tafZvSIgPP!gwT1iE;ApB~XAcS~0^T0Z zdV(&Ge&L0Is0wr^hQkx|THw{d?SxtJ;(_pl&>Ih}8r1BR0Dd#BCk#r-!`-ogn-)T& zqg@BkUw}Ntojf3|3Bms@9uQ@Tz=(ChgW9-wc=#{y)I`=UB|yNB(dcr6?qwqt_Me2O zO_E`-vKJ_?Y*S=dmEMV~pw2qU{F7?A#w^66(FmVIk2BRH`P&a3>yv*wpPpzN8Fswl zZb{4~rIjm^?_+)RQ_{~B&dMenZ~c<8boSh&*KEegggB1yTR~hLvwQE|ca|F4>Foa` z>#Wi^F~=M`H>=hMXRpf2sz1`RsZmxg15=c%&p!SZUy!f8{duhA>=&i9l}HPU0{>=( z>$)j29x|Vv^-@^8yRlvNv%`+U6IH!Jl;JE{kBG^Yf60n=yJjtaG#^%)38dkl{Ji6- zhg{+Ooc7}}hnoJwJ3D_abG-WL^WDz7)R4D3Q1Z6u6hED>5T{z7&ZPaMPEli?b}lW; zpBaS%bNhyBuD+nCsvYC*DOr?NwN;%REci^O>!oho@lEVfKD~77gQ5_cqJo><#Zohp zjU@dEMPezE#~PJU*V`|4kzORybNbco_hB(D^2Q5!UU!aL{6Rb<GCyFGhHx9Hh~ zNx%8COZPIG8slEIiUfw9F?FYXP$sS{c3W*xwzBmNGB39>Ysqwrf!*%5=qVyC*t_B&o?FLw9?L>brz``qd~FU#7^PU>$ust7+!7 zQ@TMnutlMTv833H?Dm8gtW9_H@%V(rKDU0#XC=KJ{-lS(c0 zE~LEjtbXetlJn}B=1t*A!D6k|=!L8KFCxlbN#$I*SU1fyu)V74s>d0AWx+6I#)j@T z>9M&Si@Xv#ZS`1x)w|aRtFC^W;Gi)?s20~#Su$#S4hR}vT~f7?xc-!fpFc-|@>ST? zv(k55a#ubdKfL9M!RWo3*v3{vv0;_y(Eds>wkvz4wc^CH1DmEDN?bpyIiBdsz4M#x z-S()1ean8Mj;P4zX(`@W=1H{Cd0f4856&v4|I$Bbe5m+>&WJ^cPQ+yU7=zk{@M}cN zg^Dbh98_5kG*r}zO_Bu|xyrWjy@6@ zbKL=^#W}maHr{LDo!x~@Q)0XcUAAmQ`<_fbJ4PHL_B*3`i^{C%rHRzRr-?TyzD!mY ze)H>yW>`@W9IkgO9<7#CIvl=2jF^coeN_}&N`-Wk5gNXbv}AfSyTK^JB-4X3=^5?C z(U1Iw;o@cSF7#LIUhLB*aX4G?e8_(2|7dH&oF0qSvN{Vx<>-6cZE^>#w$nlXxoA6ivmoi8th2(UJS3yYC=r$K-tda;z=4ZF9S}f5rDiNP&}e=dJ0E!@7O* z&$!bxR>Z=ji%?jJFPy@>Zm1x z_@-LH_!i2Jt?D%mLP5M{tC#LjAMsC8%e^=)!`5%uT+fd@u(ac&Q{pKYdh9Mh4*<{rnSb7YXW`MbZ!b^`qeciE69B^ z!0}3iK!mV~(eZVY1f%1GjvGfu#~*klLg1`SaCoS;F|ZIn9!KE>mG!{B{=+9R62=iY z!J9o zH->&|2d<591XTVAoHp=rYk;T5iJLd#ML_5(3J6tv1=Il^CvM(|Uypo2Q(I7<28QK; zIsy_{d^8-?(m=tKTLz=!1kM{rM?X6e&>l?~j+qq3QI}yXKFC2>J9QAiZ|1!d0f{KW zFbRIZe1fjGK6??6xg-onG2z_VV;H}VhDt$+!_+KDY2FDW!<4DtBM+ZU| zaX4+5Fpe}077m0i5@2({W*NZs20^z)KX_0S9n@QcVQ9cXZWDe7DP5p~%P_-l#%+<1 zUIEBLVBni_TO_1$f~gD)X1|%Q1=LXxuA&HlZ^mm8pq;HSTndmdj*H{*CvZ$GH<1I*&#Fbx~u`E|EPKv^_!w5~9YJ`CP^NaO^&<=_a!F!1Q%K@l1x z9H$Pg=zrhv5I`IUyYx8nFpR;`OAnRThbwL`ER3TM!^DG~1_g*Y0(gRs2Q}+}s(KN? z6ZE`)_Cv+k;5ag29Eli){h}aw2_lK`!wGsG5=wuErVrA`#Nd+WgmENdn8W}5)C0-` zUQCRmk%C2oTu}*Fk_dxZ#Y6Jo6*>JQc{WGpATWX=w6Y1Y7V2z5*)*+Zd^JOiI&sv+ zpZMx=gQI1_^z#o`Bp>8DicV&K2z6vh9pJdXok|SZ`t{tU^A8Kvbh7q3Yo=S9RZ4i{D@0-*fdWs-jh!x0!}1_YCgzu_bQ2#TewxZ$iVG&@50LR=-H3&bq(Kpj9lg# zT)lkRxBIaO>7F1q{U=q0CId7Urk^6OT&Q;axbcqb&*{wenxo zQleL@#NQt8XxVj6iN)n|k;szK`9R8Vrv`?2^Ivu%rdmpp9*)$vsr*dzFCzc5tf{!X z*ZOGMLP~U#8+(_)bo;cN>7kt4%2M8>K7wOA9m1qen5CQKOts!UZE>cFNUFJ-WuQBc zTQBKZ+nxfAJihvU=JTV8RTYwwp|$FToy|$ciPelmM~(+MZ~JI+`t??38-Dx!9YtOH zOFj&q?JY-6N2zke8BYA5l2b=%i_i7+?60JFdRnZsn9k8K(UN7$lo?(6H7+Y26YH-x&&WAHPhW{rZKc%oVS$)59TrJrO6*>6i2A78w5iU3YnKHt+G|RoluXkMgHK zrs~4JlRDiEwX-uW2oC%}^PpZXxa?ULC&d6)Wo<66(Riq_+hMPWE=wciHCYwi58lmp z1(=Hacx&zOZh+Mdst<(b%Z4ybaGO3&HL5EEKB>_f@E@6$Nzlzs?f6NTVlGbVOPzdnxf(skkBEUo#gDPpWhs^c_rf)>g^~LhZOsxR1#^)cR;aX|8$u#^H|rtFAR-S zH-D06q3#CB6sHxwd&1k?T4PT)a-4E>XUbJ3?t?btZGPN+kF5Hljr8=ww?%3VJ$j|W zJhOv8zg~9N7ya;Bb9W2rI0>`m>l~CRJj`D9ch3*_oE$ta$fY*PO}3-xHV<=ss59Rm z(qN>m;$iv1x8gxrVXb29N#@60{o5@@rK_}DXFepWC3oL`TlB>fm#_G{@%>Fn68={r z7@U1Je$L?eioZK4rkn@dV1Xdu|0m}`;AF)9wPurY9t3u$h4sl`!SV7HIBI9O(Z!&g zB-k@Ij@TI%4i&lpA1>Sw5J&6`3kNMdfY2Tejvc*Yz|m2N7$|N6D^!Q_4lrXlOgvEW ztci*6;&G%@82I%N5?`Y?z*k_0kQnfP<^$FRR;dp9^b#^3Jv>yI4}_bziw`a#3Cw;S zzE(UK?&yOfq=GdbbWVg9std2x0Yp=T5Z{4;M~@B_kc5r?G1_h5g@fvZ5+Ia zi7`5Q=|$HX|G=&t_SppkkG392QlLJ~FvDY$J+N@VRKbbRgmIKm7-+QdcvG4{&0aze zUKk`5LHD2p@SE{FASVGwcDQpNP9Z1^^O4Yz3COMRilM+2Fd_4yTqr=35P)yo>v22> z2`DP4X(hzn7nLp`Pb z`;N7yWrBU{z+>429Mq~2fvMjr4Bm^)z(ECXxTZz`PS9=9Z!Hq&al~N?Bm+D_zXgB2 z_OT*>C+N59YmWpxGbn=wxAp|x77YhEVPdds3r<-nj3@tZ_TbS=z!g0K?Z`H<_@Lz@ zkafUla)8)pGjOQxJK)rCUm6@e6Rh0VI;zF>3olOArW5Zp11lWWLOdkO}76E8^0(gR+ z2X(N7`sxzE6ZAc(p(9ig2wcj55FJJl1w?v;>|b{t5D9}ycyO~P=z8m48)3k9f)5rh z9Oo(*W9`vngCGqy)8X&o4jrN5;pzU-ahOu94H~UY@^lzM(LbJUE!5crPgkXHc(wNl z4aul*^$S0PN_sc<>d*YG910&kI#jqk;%QG$=kz%qb=aHJj`>f_N0vVMxX^eWb%ZRP zY(SJlTn}&4HI@_|#OGmGZiy!@s`Fn_7IO|FI^eTE=ZI;`uj~q2NQegH);q zoGWd_ANtuO#*2K{t(32Jx_-&1+I~@fb*ZSw=T7nOwjxET)#G_FNhunYmyY_DA}y|k zE&4zCz*sn6-pd*h#;yB&snF&mW$jXvFsZWgz!M4m>hA5Ymq)HnyUl%jnaoaSm~5Tz zIHLP4S*P6Rda>Ow>dUTY#5B$(zU)f^DyN)F=Z?l#$X;q++1Ij2vuz?t%ExvfmP4x+i+rwLE0DqPQeija}#=N%2V^J~{4H{L5d zbG3HSzJ^gurtw7hzKb2vcjOPAR?>N?7R4m{vCg#A_u##^ymO9!mZ znbVT;p1j(oIVj0@v#*WYpZeV6CsmgzBxUdGae7_2=SgE={b=SSwQAlUi91&+X3EbE z7E1>2DW-UJ)Y*ukenmy>9Ma>7(`RDhR>hsEo&uBF4_owiHAjCRKF&0)Jp6H)!}OiD zrRi?bZB8nZ&ONex3YFSN8Rpw>9QU97^WuOz?-S}1wpI#=bZ0@F3(C_e|-`A+) zDEY{=d|4KuT6_5mS#ZvjLr3^dGlWN#X^FYz;{;JX&G%gCty_Mp2bZacB+c7WCm9d# zX%ltPjBPpB@!H&1$J~S}uG{6dp1F(KUhcP%G<)rt=cQQ3Paff|^5o3m7gMOucbJJz zS110cEE%oa8Q+y6v893~-h!<++x>0ij_DPoWwoM(E*S34Ve`y$7I8*LZ=k9fkwd)8- zFikP*F*iI+E!*OIidhdi9wb~=OwC#PNzh}&cPIA|K$8Ybt;v3a?5=wzMF=@>iBrCw)`e@2 zyTq!lz1FfOd%zb$c3`-zF#!4S{EwTFFZNzLVKEXD){)i}Wc=tgo4~7PjYk4OZx5X$ z|75RveXmR!E9vN%#aZ(XPx+SB=ejMI5S$~~|-3O?`c5$z{@hzh{nuJ8Y!;)OFQ{>PF}I z!ns)!lm6D+gBQXr`EP zC}=rpgNy@|0|28W%Q{O!Hv(fq56U}7@IM~v6 zzr6F` zQAB$=uN9SD8m*!2-QD&>WoLkqOEK|T>E!b1w^|L`@AsD6?9CWXi7 z+O>|M5l_ZTEIZf&R^{#_sA-j#?mJbe+@8Lytiy6!@cGBfrlYFmW!mB;E;{Q> z$;w^SB_R&e{_GPe!^suD)L>dpGk5+^fnF;xKO}r0qrM#^Knjk8}aL>Eip(61$P?(_ydBg2M(%YpsEpc9RZi82xVds zc=k{kWMM$!;D_U|3>%F{KYOUcngnP{hx^vzi0CkV2jrTG1BoI5{AS)eQ6!Kt!s*BW zcSC6Q>uWCxsv4ufVIS9e91$I+_3O2=M1hJDwon+53lSRr-|FGV6LdYa`H*-NF5?Y> zqoTtwe;qCY92hD_1T%ZWp0_@G5vVjVc!n@|!mbDMJ3+;JP_7>@o}llc&4;)}IBFA= zHz&0CXgDNYh0AP*_5=bi4*J=Nfb9bbu0?QXk0YbQSbPx?DA5jFr{KpE-1VTol1M=N z3{L(E)RBaS2Qoph=_6Q?pbx7UOp-5KJYZxJnz?C0tgaer**mhAMKO3|kfU7Biz||jY z#6!J%#lRCHfG4=|iGX)j7!*GsfG6mDYpLPDzkvgTJ4v{W8}~j9(|+Le;0I8tJXrZN zB+4N0@~ z^C9s!oQ41>lL-yK4i^UUX(U{IOK{V=892z(hGKf$jR#l#vGLiVH(p_&oCkFV;P3=} z5Ar!tz^N0!6ZAb1K#PNhsf6$ZcRnDA1+s6@LIEU-!{zvcGc#{;r`5x9CNpx5VyssC>m3&3T?*S@&m zJgE3T-!dREqGa?f1EkL1RBCstUXN3+A~kWJ_@&?j)*_5YWU-Dd%zh6&(3Xnc1scy85Zh1BIxe=f?Suhx(4JKDpT6wlX<*zR>le{gV9& z#wGX27RoWY+nqAEs|}b6wE~Q~O!K3Tb>E3Z z2^Hnu<}t@pG?QK5U(8=`ewJ^?aMb%-5#Na5VfODeq&iH^pWS*LRqv)vcguQEvAt0W zyf<^2{q0JW$mif+wi^0eH1st=EI!K0t>+$6BM&gnT3So;%KgHo&yi>koh&frG*twc5EC4EK`okhJ)f(~KUwbl8q zWMwB*YAd#&gipt8+fypVHdeqzD#bqCQ9`9F*5^vJ7<6ON|6)Gv{?B#4yk{Ry+>_?Z zT>3uMN$w-f{V+T|`ds;tAHsXm zZ#gc^;JNYZ0~eG`>1MXS8H};1t5JDpnv>7f?3%l`J(1u1s@_)_rD&pnLpS1BK24uk znynl$d?9-C&h^=kNpJ2lXy^_I(nxk*$~dwst+tej^0=uZd+;Fjp7)P4k1>cF9cLA! z;<2o?B4g&9Tj3vhJZAP;zj5B;0@?M6J+fQXo@lnHkP6raGU!jI^PL@fL8Xu+9koyT zgn{Ej0WRX#oP)=rQ)SM23*71+wEN5oKjXJ zt2~-G^k>|_y5_cpYOH}N@2SST&gZk|##Noq-Hb1eN8IHfERWx(o*orbaNJDO zDw>i-SvEpla4(Ymj+U_4PxUUpt@4pXH0|7Mq&e|@?$$k5+N3j7Jc8J1-LDHfu3UdD zVxh}qW8+P38E|mS)|NbOL}BurOlZS<7NP?mDh{Vdcy-t)jq3#+`*Z(b1wx#8@3L~7 z>#HxP=gTHD_By-XTCLtn=7G|0GK>4k!eH<;XOY62f|tE2nBvP7I%SiIp2m@&wjJ_A zdV5ZozHLs)?Xi^QCO-Zu-_yt}j&-{kvp=m-v-{^Hv(AY|%c|h{vT=I z9f)Q7zHen!WF=b}sboFF%t(}xne2=rWUtJWks{e7Br-~}ii`%C4I@IbipWl7MfhE} z=saQULd*MTz^guYYl>g!B)88Z77tntC6Su1F_kumy!tdBYDlA7^sI~J^NdY2s~`8DJv?!K2&Z= z;-BZ6Hnw{;=x0vp$95(_&q3LhMI`=fb;ZeBJB!JOJaVcszlgD`(Kj@0J!Bz%)%F$F z!_+T1Ot}rRZ64Sd(#39qKI@+hg-;6~>=L(^I{YNY_UAb&ZpLRvi(foUnyUQKe=N!N zOzCX27W3}9AG~HF%l&A(ZGMR~maVUMq@x z_!$qA$qL@NBbcX9SS6Rj=Iu05qW$)J{oUx5Es`%ka>3c`-@l}*@^UdD@jq-f3WwW5 zX0w0)G~=?_sMV_0{~Mc)f>qZ3o((RaykR-K2q+oFJ)$GQH>_tD0nNKM0SDJiMDI1& z{Q_}t$o&gRXbP1LZenmiXd+)OVYYQhqeE7aSS0ZY)WhSyN5_CX02c9T2h(ZdjJ|$7 zz-%Ot2Fjex3=ge zivn^1p%*2n=f)d&e`XI}JyLlhXcW1b$%AVtQu|O)4!)VVLj%J=h^>E z9!laM)sq9N1K;dHk`eUj01Y!X#{c_Pj59v?sDG=wH^%?_R*Zv3L!T?SQQ{eYGaDxG zm<60N5*G~Kbf{?pFv$UQ z7I0idauYzo%;#|MP|sZ~SYMFt00j;R-wr5U*v#}-t4a`bzEGJvo?Qzn#0Q@rCuF+_ zh*kKfi(?xHQ7SmIUtc^R@J4Ku1CjK2Mqh(NI#nU0hM*`|)*WedQ2BzqXF{3$O^gnj zc0hg?u%9c)9sv)0eb*8OyB-S3VHY$8#)n^jc+jW^Qn12@hvnT7A0EUH@Nz(c|IJ6i z-rS$rgBK5evykw3_uTcwH?T(92#+^zLD~v559Y)J#~-&~%g2KEg9nc{@<2OMU?71P zznNcqaq!V2nP@;+C48Z?miGopM5MmG`&5^-(_U%jCG zheR4&epcfXVl4lXOaDb);w7tFq;kY@qF^v$d1w{dmdQ`NB-<_pONm?a+#;%#>w)YWaZ(BZ< z`g~y*c`uVgyrhe^Fs#G0QvKJ{aKyuT>ysPuPZ zZ*-_lng0CCvWDooaZl7OjmrTA7haZHoEZ0N&z~_m(`Adcem^^?##%>6 zOUZqkAS=wO*@9CdMy`-#cTolUfI`BVdkeAFm?NnvQ;t4kPO1q!JC*MCo_d-x`r3S7 z+X(fW{L)`re073Fw3{^i>5tFzv5yG#LRAz|)4WI-wkj10R?2VDXWok#Dc|9Pz)y{E(ZY@U5v zs=1NX3@vx0bcQL7S^JaO?wxmv-Zd+D7N6MLqEO{_qalWfWICO*&$8Y{|KN(UB4+=X z!o7NyXYosSt#Zo+`fYXfG(OL_mCoE-L8tF%z1~1S(R+L8#!hFl`mj9})sH7`PD^A@ zUq5rZ;n=?<|N9WceODlVey3p`)&pe|neWF)~f?j;pqVSgB7`t9ay%3F*7u>-m z2DYvl^~{4Y=S#wGrt=o@sDD58RyNr;r*Nn8MQ5H#v2Sc=j0+8{ghRPw71Xa%J2XC? zq1a{T)fb>gN*(*Dc9a_vMVOC{NS4SdI@xkWlUe>X=gGP(ZjA8bJ131~LV2vbIme~Q z_H!RncyD~pNYrB6ppmsq)3ytSefQ6XCAXZaq>zhj_YjDFesgg@w~=M?V}~uy8JBLV z^^LMe+N%^vh+ltdr>gE`PHk; z&l*HEC+W4gGwElqbzb5e9d1*2+ZLx9Wget8%*?^00*Y5RVW@T8^N3URk6H2wOX+_a#ho`Rrf=Rwy8DHA z|ND+dDFVS^-9etQ9PA!;pA$Xjenb%Jg&bO9N}EY7(N<$qBN7;AR*Vki$a(oGA+XYQ z>{ogA#ipwPoZGv;{g71Uajw6$KrUJLv#APHIym^ydRb|n_wsI4j>!*C?>eP(tkdwK zzg~_qN-#mKW9Vel*5f*&4l`mT0a6^Ew{PF)bsOihSxg?`i_t8y=cIWT`Z4$JbUxvH zkWJJVNyk0pU7){Hf(`@I)E)ubf?s#VwtU_7!jiK5?TlienLy}^N3YWfsb#4f>}}%A zFwflM&2(&Tgb7WUyIXMy6!)?k)b5^S=?Xt;y${=C?$I6fKt=FIyW!(l>bYxai@Nr& z_{=|>=2o8Eo>4U?Vd!@5$7JK{s)H=9J&!FO-~TyMJf7LQV;j%6=MT@euFT!)Nj&h( zyHxtBaGk&viA2-DLv8-=32VPa7&koDC=r{!W4v-V$B-qnHQgwf`VIHh0hKmTJYqJ6;|)BhtP=yw1UAOQ)NeS$uf6#Vg_kIpi5wCf zQZ7QyxbVe;Y2Ogx;NyjQVj{rt#@+hbqk#wwQl%l_@dn=7!=ph#JmhnT0N+gDZRkXR zf=S;HA07$-B-=}v_6G@#0{boU!sCtFwI@e`g~K4}ZBgKD{Pzcs2aY#r|8sPhXb$nw zK~XIREE4>+!8CJ-aNxoL)Xqq7ynE$((1DAo08+@p9D5K42gT%Aq~;VTm|hMEzS@`; zi5`Th<#5pJQ-}CLam0X!r?YVPy59u?c<^|mZjC3w1IHV65H$|*BzW+6!%hV3l~B5G zV?0bRhqHVjQ3+^Gp!VBv`Cx)MTs)9liGgLugU1_rYoCpXC?s@7+OA-BNjSrUEpD|y zVM7lH$iWKFNB<{!z;+3!Q21vD)63xuzs}T%YzW8uGYt-RtL`Bi!|{h6pk*PBOau^| zLP#FPkT(FHhliRmi-1!Q9z5RIgKP|-m$oq;R?~&EdKge10!l>i;b9c%-=FS!>;Sq9 zdJOo>TUBecRph>3;uBD+6oN1Uf$4?R5i&HPeB9uSb8 z8{z5k#@^cEf%^%v#2)G?hbMOa%pO!2fChX>!{d#;_2EG(8ah%S%pPy(t;50Z6&fjz z5AL^{nmx#iV37 z>`(|fEF_>aZtYj=J1A`M%%XrEd)$KQ)shj#K(TY%mVNW3IaK8f-^sT`f4ixq8_dQ2 zS-WSHp(wQD`IGriMLyS3UalCclNq!OQC_GG+OY+7K=6$@J$KEkt%px=r{+(6KRe^3 zzRRvQHS-lgkKtv~ZU=vJU(Q$2To&@7>Z21h=h>`d%cp7f?q2>XDpz^OWO*{D{wzPUmj0hmAf}^D?PzS+K&T5t_~90 z^o2`OkGas-7BGZ_54W~GDnEI8&Ys&=gZB1u=|`>+-k;?9NPZnx*gqqz^Mcd$9nZHO zcW==k4c#~PbPHon`K~FB8Ml_F=~DcLlg}xBJjxlc-IFQfhn}vR`m5B^6mOv|BdYH1 zS8gcp?jFB#*-vcNRf;uMM$ISVi?-Mkf{)v@@3xZ+TJQPgF+-SAb~*oC`TX8bd*rR@ z1!MiL^!v-Onyf>$sG%Xp{Bjp>F^8W2#JfmTW|? zJ4#~`bsvhH898wuWy1C8{^8pkm@eZhzGoy(zE_x}`B=enAaDQew6YpSY@_qN464p! z%XFE{%6&FA5Bi+tqqBGj)p*J$X)IzkYjUVQs^ay#d#*h^d~vc9447U`ukC0gjiIX3`!|O>}tSa+Pg5#5;KzK{x*5E3i#sZ=+g*qMqdftxhNobUf zM2+n$yZQ&RNr_K+R2}aPtFqsYxAfN}zR(%QWNgivd3TCSVddh-EL~YWl z%_4_$dTi9sa>G6EfEIE!;_hNE+xuhhk%cF}mQrAcVLi(Df zX?8!F-1+Fc&kln@Ec?5%fqIskDe_|I*F_Iwwoao>xjUaO*mx^h2WXsGI;FMi0Aq=Y z1W8i9bZ{Q`wUvr9JA-!Dp^Bu5Wn-@pOiNJv`+UmRa#)cWdtZ3X__fwbQ%u!`q2vTB zQ;~$lsTlQp+e2w}^-gQqT^QL}IFlQ%EbAlj-Aw=dcB31wc$)bbZ`;L89OPGH+BWvi zsOu$$KPswAlVc#6yG?bZVLSD^1i6XZxk>u9Ov2lIZP5P3Y_cQm6^S7F}wYE|?Hq%|7)Jl5!hO_iug&_J%8fFWrDXO`D zx=_ll(0YH*Tk81J1?LG&ZZk+=W5brdXuV4UdU#hL)Avt;`K~V>a+0JTYGu1k_QNJ`yrfrpAYrAyPQ`B|F7laq zgotQabajS7Cv~zDOS*aPJDKQ`h8h#oTgm~WvtJ513KgCzG6*ou{q73 zE>($iT|p!H#bk8JGq&@LYDGf?b2rqxlM*$a%hQp3P`r~L_x%x1wMFXe?S&SVE&Oli zeddY32h;SMemc0n?iZ0R13?A9V!$_bQQ|zoqV|?$?)MEh-Aks4@-=r1DPJAxDzG^1 zXD!JzoxAn?dEt<#pA*+bgwB>!2b1PClRS2$*fr00jhKhior+kc+@zU4HK&>JqD{zE z^V=HqHTPIgr;!H{x<(g-7oxRYRI@X0^oCq({gkL zeQg(4sJ*tRc>VsPwad;rufE3Ru}^g$Z9K%7)K0@;8%;j-GN5L0hBeLbOzlitOOMx$ z_hlLN2V4$7am`jH#=y32*PX?$@Bv6e4f(D7EfJx|Z@M{OwjmdDBf({W5Rspdy z1q#-D6$ie4THmn4IcOk{@7;srG+-(4bXZ4$zMB6XJ5U=WF{FB4(8hT)aB$y5?CpSp z>F02ser@eBAQ2&k)c+I4kRYK!XA5vmM7pWK#CM2rh#^4I4uS?l_#PcNDGGot(?Gfi z{zRhk(J=KK?(o3Z7Xxxgc<`I~Y@tGK6cQ(khN|4l0548Qi?A)`uhq#9y0%)K86E(~x&fE9owpTIU1A#Q*W6W{6qP8JQmIXw8y z#2qkK0jg)Dj|Qi^%tk-dtA^r82`Ds7`-b!MP`C>L)>IhOpCig9(J=8F4qh0joP|J! z4eH|q?G7+%2Mtrd;oyNa#;Rw=hIkkujRRkM_n_Ah$lW8oJ6O&i5e{sF5bdbZu$2G* z2;WTLg0l+p%EPLPkOl{QCZfj`^g-f@T5!M-1Nv(4OAopwBD^)6YARUJL9q_01U81_ z-76u>3o&r4+8Dl>y>iv>18Jj%`2-=Y+lFWypPfx`fjAmVoYL{Xg_vkgXbaZj+#D?k zT!8+1dF!+w=C{Q2zvY%iy07gAu=HCj6Y@0PhLOau9?A(m+nKg6Q}!Z}lW=J9R{cy{ zbMBTM_qZn=xH+Wa`{fJG&&Ci1nO#Y%_HGiNliUCO@VvsQvRcnuo}MuS+;5&{Kc#qj zNb2VVuZTm=3lc`BQ68~_ml-egcKbXze%K+bL%-i{^wZOZNx_xy>(WzM+86uL(<}7p zt#`_!W-RD_J^Z;e)Dea*+Far2=9F9EQHgaldbj6L|IBz~ z^y#5<3=6fCH6%?tV-J2!kb3++D(?K=?dgnXvd*6CHFg=ECN$=Bh}m^+hy2z2JN@rt z_MQtYv?!n`eCN+T@U-ZHwMs^jRcs5zN$J$fBJpN^!Pb1_1+Q7`SS`86^M^c=t#VBK ziAY9vSuCo1y*w02JIQY;(IB*AZxYw|m0=dopizGQv%_<2x)wv$DhYWw?gq;a7bNY|{FXMD)6MDZ`kMmWze3*Se+OXh$&a>-8BENLR zkU^Bu>v8lDMhl6?k^+PqXcTHp7v~xkp zjZE#2kM`bE;}^gXO}S?XN^5xv?P0=rK9qOcQF#P&Qat)K%fPu8Rg*go+C{Rkm<^r` zuf6<3F^?cBQ#bwV$iS>_U-7;x5%i>u?>*KkuSDeHqq ziIy|hOGll>q*zPT^r>%cPwX2A*dL~4I1&&Jm0Q>l4xoxPI(C!K_GafY3y?Fv<=T4M z$wKn7$veeybNjgMvw|wIaK-@HgoyO+WKj|epF;1*tzAC~1{QN|>w27tti~Cy z6Kg)5x%%P93(XWVW7({{Uaj)`j{|4yUoY8zyw;B@N`3HT;Pc>zS3fRIl8ac(iO3%c z>y11yE$=q?%j0~w>Xbl|{)+%Ie)gq<2{k>wG+Iu zZgpLqG>0if4m=Hc{J`73BtehoXJWy^H@73&N%TXlX4y->xVE_KCs~*t49K_8^!m2Q z7tG1{>VsjQq7(KpTacK4-c3iFA1s6~!j0kV!|#1#_0}&Wg8IWgKt)3T{6ZkJ55G4e zTqPi8^(6a$V;?ZEQj*`Z*(Cb_?l*r;9r}4ff^Wz^pkZ1z960zvMgz&yhU5Y8+1kwL z;4}?#o(R9KFgX>@=xawB?5eN@=|}@J6T^Y8{jhH+0|Zrp_$Cj$^nsldP%(l6Dh!gQ z2bhiF!>`XCB&i{W34R=e$*FK=|KISx8M6&vJP^hp6@8*%Mq)UFufKOtx`qY6-3W94 z_dy;9zCQPj%p1`#F%>c#n7JVtf1+VFVmR=%_r8(&BBUJn=VOO09HdQvOw2YkPeg+& zF&_NdvtvMd8o`DMG-cil7^tB{k@_2;VQMIxCtn|XWB9*M;fU~!%B+F54&UV0f@Z@m zR%n|~F1@yJC?GZlQIGK2 zVG=0B(Km+U4Z1(0Lng%t)HoWZfWjGl?Rx_Tr{LEWK|+Lv*_hzK*GC5-FN(<0!Hh@{ z;oxL|#LGh-a(KSC^}#{Rh$0o3qG3KHh=Xqo-^@mb0-L-jQloD)O#Xy3`r5)nid!+n zXNTF4;K0|O9g+`ldEJrsK^FC5lG(~ ztfB}9zy9c;BwY-AnFy2rH_i1w!Z#Ciz&{l#%|;k}Guxa9@CFt_N`pa^^?yga2oMZI zEl}a3!xE^7j}8nnft>&n9Pce+?e|RtSWzIgtb({&JadPPgrOgSjp3Ww=b&bPNEQsh zkp|!3YcaDidNaSQ!hjhCj5yM|;f=VpPhA)b(ud#(fbiBf6LA~bnL?KSc-DRW(SeBt z;_VBT`@{(uVMv_`-kLBtRe-jr@X2FfxlbHC3i6!*sWUuyyfFv5VFGn1Fmv5_e7sS& z{`A7&?upc05d%wp;!OX);hPFOsIe>9)L?HOYAb-})j^9d1_*uNpnydxtN6|Ntm{-a zV8y|&`aiy@f6Hb6qR2PNf8*Tv{_x*G`@1PwY=gn^=C~t20aWDc+FllokICdqG^b%=Bc)@3*sPC0VROD#pp07{s`91_r znLJW@&Dr$uIQw9w^c&H(L7fuuN!zVq;8p<@!#(V-~dZMBOy5zxsmpBcWrf zKuCZ{SlxDAK7Q|3R=NfTs2A>y8YmfxCu%si zgj_}C>}?Xdn>ynYU|c>GU`l&%>FkZm!~3$6nKKM+o{dn%n-_Lkb?1B_nYcdXL_ZuE zKHBhx({t#ZREU`o%eeFIiVxXLHa2g3%)bAU%(_3$jWV&;E;TJt5E8ngWfAM-pZLh~ zC}t$mx&79gA=2LS{vo12q(WM6ZyRXHCEuN*EEDN^D>G4w&qYRe`RR>4^(r1y(#b0v zN8{w;c)af3I@CuWaWX;XX@uj=z>Z7O^A^hti=6&39e2*xJ~fXropP;Et?c$mCHt|p zAi%1Do8$$H60KR)-ES?K zG+rtt4$cxz`$>M#Ze2!`dOLE&E^@x1I~{bq2jz(kEoKu~&bn00P;~E*gl$To+zkaf zsWSHfr)fepRFAu0CI-go-IqBU-@H90)Ff6k$9??bz(vE|3M+H^i=Fka1NQK@ zN4J+1e~}gcH5z@pMw2y!b>w^Fg+>EjCcZ6#PKjobA?en<{9_yp{5AZh#Jlw?YKccZ zv-T_|v|U-@4Xxr7c&((m|AxNO&3z|XgWVtbqg7885wuslo38r4(ZICDg-xw8OkjLE!3q^n^R$1fMiw=LzILN?XN zX$5Z?vc3Wdw6xoq{FtLfRAf10qdlY|W+_HUDRu_#E59#v z!;fuO*2Oo@yKfoVh@1HO%cAycUfFqK2iA3W;HY&}rNb^AY>H`6^tXMy6~|t&|GHyY zeWH+`C^-M!ki1_%N#lWLwJUq(721@nHO`DYGP1sLqp~85$WqEJe_Hm7$m`6wysJBt zJa^Ai1}^tlf2_8?Dd}7CENdd2;PDQL{-GyqdH1sNISq2{FY_>4vm{UI-#gT;X{|$I zsk7^PoOtv0CR>su#<6Sdt+Dgp>m|7a8?|N~PCaKg-Z4$tgWCJ+p(~3l`O%u$X@eWi zwqyo+RLsV;4+t#B=LSyp7LSox<~*O>)>0rGV}5#xh`zy#)gnE^qT-HV)Q&F{UbVzh zOH(WnI~|ke&s=$!%=@*wFt~GErNCOLcsGMvR+&^?!SykWLpG7sr6lopBH})@{v}j% zTc>AIslPdOzd7ODWO6%MgdpO^Grb^$# zcX0OYq{V}F!MQ;{?Qs?vUL~q*kwhEUM7egm^mhNpu@RLnw&t0Wk28*_Uu+s-9X|A^ zRJA;I2h+zpXIZdnZ}z>+mF=<23OP8fRU`S$`;aD=PrHFfb`W9bmM!o0$A1V^-Q&`) zl%vFc%CrfK-Ou-dU3N@*l8JZJAPfzis>4HOtN7X(V zt$Ww1Vh-OOm}dN_YJAi)?`(kK=V&j-Fr}@+Z55@lW*XP8%bE%j29ENlo;h*m1rb_r z!faoFiC8qPVR>;^V>O+->X%mz1#K$24<*a99G*%{$=B#RbWwjcC%f0JTjd@V{VF!1 zF4u5G$An+WSmMAh8B;pX%R#xm1$-DbrlWEAF0`xrlxKsH)_dTpdR-4ahP{o znx3wh-&gJ$X=dTDWa03kXQ5`aH3zJB#W?-6IPBDeaiXbq`W}=koZ2iD7JB#ViGHTj z!Oy;6KkG!db>F!nJgq92K;c}`g4#!5nOEO#7se<^&XJ*Gb*F_T(Aq-Pr+S}_oRMya zoWZn$+%7fAwy2X|;+720pGA z{(~VsJbQ8<#@y$N*9h4|MU%dFAI(`u@z+OG&O{zLrrL3y)KraLC<#ri?P<|gMHqfD zf5CE2IhEk#$igm`~1$R=vfEW&z`IlEiyHVDbT^lNXx-o1<+kS)C9(ODJvE8Wvu4HPg~`(iT5~U%-=1G;&YKb4eSN!j zXNi7NxZ(JLnQZI){VRoG56W6>92t*gwr@h1ayJt{K zZ%1dZ4PTXrLmTS&t&|9kj~+PsqVw!mg7F7Y+AYQV)EIS2o|?x53hvKVctunjKtX2F z{&7-%r=0}d4-;yt6GC)sCv&UwDi1br@Lr5El0Tfr=TX8sedkn}V_3oA$EdoDPjpY{ zg6HlUZ*8sDmM>SME-zuGIW;hm?HnV-pUFkd&Tlek&#vR7T;E!&s*$YZO?2QI4M$mS zTeYt33|o)wb7pRPxdsW!Yv=T`jo61h48uo=$V{48Duv`6;(7M=Y(3sG!D75!FqcYJ zAU1N(hdnHJTqii%K3iy1XY~Cr`ALRxl1`D*di)DTILG0nW~qRX@m)PBLm6LSQ7imU z#uq0Kvq8pp_2~VtjPGjl=l>()D=24g@8IgfX$bUTt7#N1=r7PkX7w-7l|+lv_-|SI z@BeK5qVao*tN$mIf`=WP&saEf8bYkTkTIv=F-}1xPC``*W0na-d+7Q&5{z@TkKH2Ts8w zoP2VsN^;r?+WR1}&R>f8-xL48Ol?gc3sp~Jp!*Tv#GukcsC5ib=x=Ij@+Xwk)exrk z_wDZgYt^7jyC@Jb0`)84>7Yf!0-^(=kH9tc|1vdr;&C+!H<{^&r%@2l8z%ZOux^JK zBskDM3Lz;+F(5DWuS@gaaNvCnq{5&`0OU>)G;|o4?i6Qm5mCU$LNWuuH$dgL@GCn^ zcZ!2wBMh)WHwyI^LxBGs6RWv|zbF6Sa2V5s2nR*wNDbdGFxe^279_c$PK8Kh z1x#~_3kIYj$W?C$h7p^8Ph1%E3Ia`!K$k)wa6r;|V_=d|oWUWl6j31Sz=Ma;On;BR zw(b}Zb4Ut%$jbyz$gQm#1~AfCq;5}8HzIuS-z$d)4kMZVo;xr`U9;*z35X)uVne$c zp5fP@9c1pXNIG-i;e!vp{_r3VB8KD;i&^clv%W#YA|7}W$zqcJuFtUzp;1(&(UqUL46M2m>qU!iicG5V-@10w@dt#4_S$ zgCl!|t(`CyvPVL5g32LaK!U(5V{l5@V0h4Z0AxJz!SM#(pTZI#c1B7FU{(v}H+=Ib zP@sSTyA*K9Ko(15R_o(7#G@fkV(_`)!NYj=%$yXc)L6>~Hv5w9u=o^N2l`xQgzhPo_o4Tlg%ix`HXbn;H z1a~6VnsMTDs?}meq*dY-fn4tJvlr^#P*0|M9J?CDx@&OUB8qFWo zHB;^vGpIrHK4Zx%{QjW)LzO5;ua*%_iL}xa$H8c!5ymIwe&xPj%kRgeM?Np>n;Dz@ z;rGDrT=nUt=_gK4nvMOeJ?}{STDDzfNL=Y&`8m<^lqT^=^;}i#>1wqZ3As^P=E{(Z z^G;$`R43_gk-XJ&J1j-?q5sU%xu>b07IN&%42-`zzf~eG{#r?M`tg@&`e~2br0gof zb7Z-;LpcmjCf+r8%J*R8pL<0*2hrcVHJ#}1+EA$WPUrruXZyr1(0UvSoxCkA?B;1T z8b(%p^Vp%=*R>C1KV8sEx%tyPJU5xF{kxA)hCTLD`7^oWWRa=a*K|ra4xJNwO_fiV zMp)o-_h?JRY~$CPWhc&28K3{S~&4_v6N<1ZN~T2K^+IjS^aADlfkD zV7TjAR~bXVv&XI$cBXmmdk(`KP8)c>=R-}3>!C_O6 zX(m)&jkx|xba;>YpZ-H z*p~fpP~!PP`v!%ohq)fl-tSG$4cD(SCG^c6%PS%3Y7f_?cyw^~msscyBPPAHGYyGS z*OmHt$?5LYHXC}H=PbF$P6c6q*?cKR zJ9isH61lo8nyaZ5wR(E_R13T$ceM@sUVk1{%%P7kbM=@zTAJU+L()SrwPi6@Buw^r zpUa|lC3DwD4zlLJEqYhUcvF=wC1FrhNrRSR^cNFGTc7tdKRC~p7t^wna(nrt>!U9x zDH`@%XU<6{dE`Sj*$_;0Ei~y6`Hs155_jo2ZVr=1PBY3r)Nb-Nx_Cglk0DxcPtTO- zsP*e`Rnq;skC&zc6gZy_Ohj6+X6Te$)YaE~?Bz*q+2XI=I+qvIT#@S{5n!1S@g!~!B0DES&DsYB(PVL zT*MB@I$D31$Q~f%=V>G0OV~l1IX3=$uc?6OfIVAcuCH+4M^Y9BLW)Y~?L3M>liU+B z_Sw^SAK78_iZpbm=ncmj*$0#P-U=C4@{C<97}jGc|1uION5kaJ7gzgQ?fh3M?icfs z7$YizsUP~*l58&ew?$E>EYtP2Q^dV7#;6nwOxz9=vE6CzK~sl0dl%Inp1G_R?p2;F zd?H@TUjORdGd^U+g-@)aYK+FYhY1re&eI>-${PFrNjzoy_13J^_uF>c`RR0J>@TOl zSoFBo7A&!wxyo+8>XS5nwT-0qsn$5Pi)4iN_4^}(!Nea`E7{s5($07Ws({l85Xi2G`xK2AtUkqTwb|%bx}v(+GNg` zQ&AASyMEVwCQ35poctM&x+7*)BOhPYXKWAK*2jd2QQFsh@YG=ch^4Y1X9oLKDe-Rs z7fC+#e{1EE%idM5Fyv%dkSma~mow0^n_1c>*-KmOHL0#hqQcJ6@_kBC1o~Ei{Ak&o z3thGG>H3#`FywqE&hu!k>S=Dar96Cy!+NhVrNxQH($e$`)=6o^GJ|du!PiqB%UsH@ zYH|snjXz?2?S8|jw&vDP*RF7$J`lQxmWNKqg-!0*VRb|9MJIdLBT-^4{sK2f$++9& zm}RrWMPBA`${Y5DtLS`F5%Uj}E{gc<n}`xPzP@{x?mgdOuEZ4tgx zB)@*T-#>mgLAh94_a=#cO-P_Ho8}75ykY*?NRHd$56L}EPwgUI_+?c$ROa8#b^p@0 zG+8mUmGI4F&*Wt8pF(w{I#Rhu`!A}IZyB4Ow$IV!8q&Dm%}iA|kTgda&OdED^;%8* zv-Y!)t+Y`UGm_j-KC7ZcXA1qd=h5?Li%8ynN!%Os-6|_*S0)duooQOb52~g9nUkkl z-J515i_7SHf_O3 z_k}9!qZ!4RBaxTKya=gNY5bd4jJKD@>`1vxvYaz#rF)k1*CdmW({t7_`u+SAc~{+T z&@%7sxYKs5)K;i__p!b}(nsSQWPBtcWw#QZH@Tn|e%^O+9im3rj`daXr#BM6H8Y=S zS#kJUq4b5|sq^U%yopIJO%=nJni)&C^QI9EOJJY09*IBLaQK~YQqOed9hTvk3OZSx zG0*d^A#b~;%>{&rcUJ!3VU3>lkcttAxj|NXywzz%U;NUg{@1$M_k4@sgh%~OubS)83bn_e;+`=iJDSGSmYn~Y3SPb&jk^gf&6`=lN28YG(Z0* zCZMY$5*!Ok+Y#F-0pDPJaL5b;`cJT+LADqo;{vowc!o!T{^CO5hJ^*~)x{A>3s_kP z&h*iMGlBY#;KBdjv^~QLZ#2*L0b_2o!M+s5z#^KjLSUV>i_}a}Ie3Re` z1V_URGjYIcV?(amVo08g7+8G(A{zj00+K4 zc_1bf1~*Xn=&yIEU4U|%F4isS`?fz=4$JU-NyUK|irU;_n?CP*AHth+c4etmf00s|FJ!B!vt z=xb;c2wV)31{Bme;oCFT;gAyvl935iSchlJ5rI7PA-V}{S)z!15vO+ z;KTo$qQ=3aK}rEyG(6+u4PD5M0d#`mM1d_+6u8;I79SYh<9q(~wZ&UCl0mA01RV}G@#^rv@kZYI=)fNWu?+(TR%?K~c;EyET67{T9<15`2af{d zL(RUR?tvTN@$Q-H(+8d=;z*KxXd}b(-TyayGm$3(B0vOsHP!21Ng>A)=8{zo|8J#TGv z$T$v*RGx%^S+?PfzP|Xv;FJsbn<2~|Z{!Js;vOt$Hi`$2H}rs`9JsUK#cw9|R_&>g z>J~6C&o-RLUtc}Q-5ME=H}uxw7|@3TsbebCUIfo~_h<3JcMIjwV2ckj&6~o5-%Z3M z1K#g$eewW|LOSLCzWT0T{x(Q5fYcuJh_ECBI6#4a1^tUnW)pC}u|L^_)lUaprvEFO z(57z(`uy!6Epu36Shga=9@P5!Q_Iy(;!MSpoNuJtjLDis*eD`-bkh2{{kVQsN`|EO z(w$|=FRBl2ruBW|J?Sym&7{6N zA1T(go4>H+^|KPqEB&3#rLb3LvAs*ZHB_oh$>FQzR&$nCldW;D+tktftfdy8EPtEn zEZaFIUXPx5nYOb_=De9W)gE)Qq_0s6XUvZaDL%7%96lQnB;^0Y$f1lX!RU$l99sGF zg1IHL_ABw%bg2|q3c5)7^Mif*bqhbw$$dLCD7TA8_q%pk^h)W4r)~WQ{cgTZ>gc+1 zsHfmbL`tY@-mG7p<@;N`iivuMj-l8yl$`dSN`(5_C=$4*AFH*_A3r67tx=cd60Yb*t&dddFq;NIX<$vBJ_cS?9hZKYX*5 zK-nf$!^h)C(r2}6^gA@lsM?(^<5Jl~0zF=z;>kI^KUdZ6*}=KGM||j4%=7&!`+6uB zY)$8iF2;S6@NgSxy@4rucHQJbt>V6?ubEm!&v5imw!WWLaEq{4zjYwUP4T<&=Ns*Q zw<6hxci!zfZlNLl(C!%9@l-}inMR%n^MPSWIVO+WA8*o>uu)cX>x2fI@0AkbHRYG% zlQrm=|D3_OY+~)ZOKE}1PRp#I`g|`{#r~T7^whB7T|1+8-WJt&U5vdXq``WkBC{jA zO;cqgm%r|C@q+^^KIyr;`&z5_g%X__ijeJ$?)SOI-{qMg7J}uIHLTY7`ACW*;mCb5 zC+Q&`x`;X3yry31PeJO85wpB5Zss5XZ zfNd9f`C`Y5$?*3hySu&_&s69f;&iJOQ&i#+jBM@ zli`f-FOp9mB;Q*?%6>1=qQxOjCxCT%!kww?!rO1X<5TYJGo)^c!mE&IfR&gqR=+c?J`Bs?4(TLq`1T*p{WE^s5%gn+x<*#@%vas43 zq~#FLpZs!4##6Y@l4-hER=_Jwm4hb56;*M}*+Xm6^i=*!u1w0dcoE86#k(Q{rvcT+ z16v1u=Wl7L?7x%!h3!h|gy#{G;V^O?%Fp@=sbc0dM=8b{r9V`jne(?+r>k}-O&fpS zly5qc!RxP^Y7=f{#K*p*JfP`9;I=oLCOUhL>1m60>Y2bMj(}&EJZ~6E5xs26b2-F1 zyvvbuI3gUaSA5l|?_8Ojk*L^5wZTvFyS99iIjoBv&Lo!m;C7b7shO%@?#$B+y{>wF z%Mtf|MT)!o>P|B{#X7g2oy3eXwP~i@dvo%ho}q@bRa?mwrG~N7#RH*PnWvRUtF&Bt z$*tti4P&h$Lno8e)rZa`>ehCZxwVKoI3DL%_F;Xg{9^2A|DCq_xtoO_u7}0!;CX4< ze@~6^Iz6E<=`V#hckM4F)~hRazioWDoNsKOl)gkuURfn~g<3fMK;O^N@3wB9&!kr- zY`Jgy^5uAKD|{Qhlb0nzWavkvqQ!gPogc65AKId#Zg}(MWBz@6az}3;bLqLbw>ZEN z6KV6LedO{(`oeKK;y_-#pt$o|L4|jpzB`ge9w-`mY<{@l!OY0};Wvr`?glRu zkngJp0Ps`)m)$gW_23Ww+5d%nUoF}FH|LI1$NT@oxeEh56u2deK++iSCsg<<3Y1LH zT|@-4DMhW8!chf17^4lpDy^>FCK+uktV#XvrN@P1p)N>BZUR`qwEpY3iZD7vXd_+~ zurRk)#L>ZF7qTUXA9i7y+5Zu~smX&&DqoY8Geq{|$#-lMqJ7fIBM01t7e6 z*fr^I`1;yofHqtViI&8|l(RUqUtfDXco;eK_xO;#un5S+;K6Su^e{jGEDG33_~XO0 zvpCaVTYNll*bV*f*{{Qa1Q5{`4hxgc;*9=h@qv64;>8hWk2muEEdIuL*e&(%>5Bl{ z7BO&%2U5k2#>X3bf94OaxkBJk5$2CK_|}&XNb!KA5CIO8&*Cm0F!D!%EE*cnqQXe- zYFL;b11kf%ma5`rQCeB0jI)1yTJ9Lb0TqRH{>n*R;QyXmdN z0lgvy5+Cqa2UE}Dtlj#nhcZzpkn2Uj;|)EK%U|`T!-K~gdLrQ6iGd_79z5RALjkK` zA&?H)7!Q-c;ynNQ@_}>)a3n!^e3%6Ge}r!;@_+4!Im5 z;5QR`kX@D#Qk@7Eo_+s&__eje1IN4Tt;0cUZ_orCY4Z3Z4?HwPzpbhzki^eWrUlP; zw;s88@OUE+NN2!l1<2+hwFct&t7_$SZg4dh_4n$bz-b3EXv2fY`-{82d>|bIh;4-B zTQ4*G)AJB1av`_x4d9#E^iUvukJuU+auLI~`0FnZ)K`fjrhsAAia4|X^YS*v-MGwM=M_pK5A= z*Ca!blQ0y3@L!Bgy?J4fk%HW(5#V^^7W!Vm)t?hIc?Hryq+>o@Jn{F_gE7Gg5!gU& zjNeS;K@}&^ksdyMm`5Yds|WSkV0bWn$n_2B=Nc}Z_`?2eG||=b4&c)ME0xw@pda2{OG7$+*F^X-M^6bhG7R-u>s&OOvmz9(0M~?&NhekM|0A zM5z>0#kNl=#P(g1{hpGjA?-Gvm*iFlUWGE2Kig@v->vTn$;0GWr^EXrm;*FQa@f7z zqH7P^qzIcxSW1tdQ_5p04tB71bFynHIvZ?9a(?@9KkM9WPx2nzUal_Iba#3jkuKPK zE741LE^H~%iJrMh|38s-KMd`QuY(Rfcfz_a)Uw%luTYhO6SQZe!0Gk)ix0SGRv3 zmZw@d7!VCwJO$e)Q7*G?$F#3l7<85!D88lUm?avJTfDc(Zd<=gJgTUjoK+`|$>ynj z^<;ce3ujmZU2Wbs<)5WyCqBsTV)_suvoxhF@W96Uxnx-LTMnu;>uPLcrQ0tnW97wL zZboT8_wPEFGRULEbHE3Mf5f(t7(_CXIh32$8qu^|=pj(g*>^IG7- z%!60d*uySt2|{}rnyc%$?ob8K5l|L=HrPh1ef`$%EuFWdb_Lu)?@>5e5lmDOw@X>9 z<>tBiv*GzfpDmdEYlJIS7;8vW{KZ6Fzo>2PwYJNh(q~3v&JGhjI~Q0TSox%HJKG1} zp0{k#p;9s9s*)cDPTyS`Ix(ku>(eEb6K8T89OD{K zJ@3$sAv_ph^~~>UYM0b*@fY8mN$oCHwb*`P=#;b(w)h;ZJM?jDH@UsKYpuv>scf!u zZtCG}Tfe02bKZMq`^S>5q0S(StowEp2G>=Sy%H5YNa8b5u6#YGZM=STMiUP_q-~`% zXE4jT{Ns&iRA+>0&w%LBcrxx4nr_|VvN!u{?wy_;$W7Hs+h=g;MPlTlkN&gMoWnw- z-=1nHluhx& ztDap)S4ZsDM}e2)b{w{57xFI*M{wGSe$4J*`#Lh=vQ;c9yZ7+o2l~LXyj+DgXf(0v zo*Cz3tR{^S=<1}OULW?pxt<@DB;P|B-NeY2qrlC5^_3vDQDTs;-Gckt!|+#B{p3?I z@u-pu=T!{vW;AtN+u|l8*xqIuaxiw$I?mpo=$Q0R;))+({mk5N7TCH>_UtZAe`kFA z@}OZ2<0GbsB0DYj@s8BVxY)z4-k)X9l%n6g3 z_ZKNT!^?EUhmV{)@F876zep!@tG`(KmX992I!;#k8R^Lu0_xbTeJ_m`eG=w9LUDwQ&~+~{tPa}NKR-i6B#HDwP(Jv2R#(?aFd)ab&m8)DIO ztAM%fr~v2NFFI1odkm!7ymxNXnz21vyXf8e`svQEqnW9rDy}q<%|^Z}e7=gZZ}d<7 zA|#(KqV)TC!-<5q(I9Mx`x)UM*g(b}aR+~nAfn6j25ximU(eCybzaRjVH=k1d4_cn z+96IB+tiTU$06Nv@rLG+#!~k;Q{wLy%W8^q7`LWInKxWa|CS&_^$~?)ycH3@Q!Tnk zEoYbTVX3#7`q9To&Q~AXvlPOWsh>}4LL_DM`kVF0>Bjf7ZQGK?W9HIsi07R?crGtN zjU$vM=i>bN2(coz{K`a3GneQC@vJ^dyhrJ@`Xl!qZ?@6*I~y`j^z63JazRoF{A}8WCy;KIObeP z89O37(%~|j6Inamq9agKYA`WNxLxw2xqEvfztxSLCPv-2>E|eaz4a&NRhWq^R(jl3 z`&36ML}3ieayTe^;E>DMK9YP21L>{IHO58pMu*f+g|8GlMLcUHT&S@%dOSII$t->` zB_N)ddO7X6l<4uQa4%&|WBDd~@1~)>+0L|s@z zVDrakb75CK6$;+E$2^0X{pcxh|iqVi~@|7?MH=@BRQsmIS{ z_!;-UbHtk1K6Kj8QkR?DNgB{Anrx@n_I-y*jMbUY)B^0Xx9qXgHK|q_9W6sG58r+9 zPxKXJ?bC0njD3;x@IfC_-EgY>KK2eHzdl8SLvbu8>{%ZZzwh~}sGKuBDQjaKqL!Sy z@2$YrlXrdPgLQsUwK*4i=$n-crExJ#ZIf=KX46nRtLv_v+FP%N8fh zAw6}DpbEmmte!JbbeOM|ck4Uio~PMYcRk$e^H$HC_5hv3yX)b-FK4>%I?}j0@;1F8 zAlb{PfqGDXJvl4+|Izm4;Z(KX`=UWIM5a;^lE`q5>70-xqGZlYhL8wJl0=4xqzuVW zgeZ{=MP#T9nP)O&&YVn{O8GroPH)HF=e$1O_xkL4c^mNtR}72aVT@FzZ`3JLQwqu*!lC?%91}hlFIgxvoI)sQ6E`2_~}#J2SG80 z<4os7zQ)Q#*42pZbFmOCz4YOwom8nNn_y2vL7v9$BUjrN9C~(b37zf?slWeX^OrXp zqgk5TE~KYV7NC#zPUQ`-y!&Dkeb91hsL`khvl6Q z|4(d=8&Axv#+Z={o zcRHEP{Ec&EN}2g1hCZH$_T#)-1A)Rbv`5@#?P+Iec3t z+IZ#|AL~?;9MXKV#0JXT`c(pwLXOtve*g9H@b>r0#b*-ce%^8C)Grs!stnz@v|+s1 zcLJUi{q1>ySP2Ch#6$jQB8lO}zmSunzg;=}q$otp243R-o)rB{Q3&eu@sEoLg>Qb( z20u?I24usb*foMPz4{)81SeQHBMK8O$AhE5QN+M7PVWc~-7>vt`2SW|9C>1}QbWAiLo(JNW(j1!fX)j-u^W{4CGy}QqX$|o#PCGT4vKz& zMy$l}L=6urdV*>_iOhdZmIsRUfc`xEorQW=5L-T|*MZ6(ASHBRq(q$Us12FN;r zsw~jR1C%`>j1J?a;61w)!xaW^9b!vTsLq$j;43dJXf*{9f?)3~^eG^MUNIbDK#GAf zQV4M3hdp@Pu;61s1W(lPgh0d!Dl#R4Cu(>o&=my*PHU)g3p!a5=1f21N`{)bwxS`k0_m2S_u4e=$h@wHQp64Ils8 zPr?8%AE|lW?>-!V69e$jD8L;B{h&a*4sdE9x>>~RW@Y6dSA#*KV*S1u7l zC7^`%mqZ$<3d8jlSz9F&2G3K(rC%`14&WNnFHPEdppuCm(naerrU|a|qrIfnRWE9g zvDct3N5=g;&C8=7j+{~0mWYw7I~};#z02=$a%8*Fc2deKTRB*FM~z-SL{W2KzEDWu zh;(-i=}xu}6y}oyEfEIq1f*C^_x9*gQ=GRQU=y%jZ^$2@+=*#Ea3pZNk}*lnCUDU> z_eFhVucMgQ`5N>glx`WwrC0@3E$J@WyJVhi@;+q0)7CumoX=oH$~cFf{M!Zhj;JqJ z`hsOX@9{69-Dm4^dFjnAHmRwQTA`rIG&9bDh@kcUR*%O5L{k|zgpw(<$hMpp9HXM6a z#qr$u**QAr5cQe9_Tt_={lv!bOqT7rDpAkxz0k`E*`i`E^dV|pP?QDR!W2VUzllP7 zhJ$rT!s}A4R{{E(`omj;tUstFuu~WJ^hy_PDXBM05Y5~lL7vw6$*aZ9<)&;@{;u8z z{i8>O<43=q3|>l5l-L!gG0U;=eGXf~TvX55f6g>5NO`-J_RC@SF&@bY%>0Df_1=ERy}efm0zv`)7qNfhBW!LZagc0ZJyiWV5NG0!x?%# z)fWel(66$l5i&L%Ec5RuI7xy^F z(-j}-&AxqmRJg!7=6hnmjZ%>x-(PtiG!z)PNkQ9>;+DQ!w)y6bT`7aJ@4uyVt3U5O ze8xjww#1D>ST{NHAUz-J^h*`Hv^{SQ*`x-Q3<+hkNWP?^>AA3R0j$5Zzx z!98JkcYJ^t{-7uirCZAWk!DDg1KhtIX6z}vuTHl?7V)^)AyLEo(cJ^ z-uU)cfvP9XH`}mB52!|dH27?39*-Y8c>Cis2QHSd5VKIVX2ygObNP%Nayh4IWy$1J z$8M9%j2U9<9_yS858~Nw?;8+6Me^zC{=MfM!~Cqam*0)&mNNLlX`!cUIc6kW7Qsk* zHFN*zxt487_x+#b4vY-Z$pw_K_4jQwOf)5LxLs!XN&(b^R2a}4&$-lnnC$hh-SgsQ zhr&ul8g=AOzONjZh&j&6Q~v754Ix$aO-;9WcHa&lx1km!7g>}nQk2UUuKlDXC(^jn z=rx7x9l^}~ClXZe&%HC4iBTF4i#}d)W{R%4#(LdweTA9frv%w5UCj#1Y6hO8{OKKT zCr-}{EN$Glo78e#Nr}eLVfXtN&Tsprs0wsPHcwGyzT~_@z2L!P>JzqYX!N{$NZhlS z0dlpgVY*nmy;L1ODoJl;*9An8R*Af0&o~w6h+q(IG5vb$rJ?Ma9Fa3S-8$HjrfxyWA*M zqw2Xm*%!8Cd8IjGdaAh0cgQI*=7(${(`7#G6GdCkUI^M&a+&L9bSmAzi9O2t(7MyXnfT=M2{o57Ph8V`o3gHiNP*}~bG>ly3Lk#c|D zcZ0gywCh-mDX-Tyc`o71vzcDL5^|O`GMM_SUn5j6T$4H*{KkT;+TlfkL~Ch!hiWB5 zlHi?3JC0Vnxm^AJb*4D{%J({n0*QxjTILrNkB(d!J(aS~=4Qx2sd^HFBJuMdZ*ofC z*P4r4Ak}g__NhQn(LgMHUjdH~<9hb_>I0W1RI=!YsS?~s&c1vk0FQwG{`f%=aBx>d z|A~NO@XAe)BjCTkruY$X&{+U@3I9U`9O7gw1OCzEf)tSVtm&SDYvD zf2j|Gdd!Ld-$4ktx{v}eXexb2M6I&s5v77eDw_w zZ}dO2C)BeZl5YCV;)q3z+`y#K@bRDqO%RaWpg=zX{8}szk|#rKdoKpgtu^dDupA6h^9nH-KNo-Y zEA(h6(vDOOB?cqd;=_Tw8ARwO3@2)MI4yoawiHB+Jb+_l4Qm$!b4PkDo>`oY*IA|oL8AxZ3$mG#bEfNqi0{!WciR~bSN(7FZJqW&_z%3g7 z%EN@w@Me#L1Bx;lG423k=OV&^)gZNC5Q8b3A)*DLj5bn!2FA_BgX4By2ud;`eP`CR zbD-r8ND&}~yI|B@ywO*74(c-tN`VkI9!AZ@ga4U4r~pLl-5~~}=HlUT!-Jg{MYKAY ztQjI4q?iyRm9X~dcxc?@(I7Phl>x%74kl}chhLdI8l3dVhZT&AfCvX~9OQ2yj862Z z{4;y-krzaCF<@K-yy1cVLnIJWe>w!TN&-X&PZ9aVH=>Oldl zz#<}oU!5Yr$AiZX)u0f;uTD_?uXv*7Cj`dFfcpo?F(79)VY+6p;fcY2U!if{J%La; z@PZ)|g9;Ls(;dqa+W)yc0fXmU|A~(;yUc5dk5_4)ug9 zv&!)@%gd3(G5653w{COhu#a&Xe0kBb*i9{~_M+uv8;Nue*?#BJE7ydku|h1a)d%EN z=x=0{`rfrTmXUlg)52ph3gfYhj~kr?X1;qq?X58xyCOX z0gC-0);$}i^%kVmEVPb14;g*cmMYh+%erM_Qgmh3C8ZtIgV~1!DsP-DM899~%{NTC zCz8FHMq*veI;jI6WEHwIe<^nHh8T~K^&Tj2+`_aQJ!v!JzSl`7$o+ik!1~y(uQrL? zjnso}xk_Z)ZlvAhTVgwZ;71l(bBo%R#_%06Md}F&H$oSt2A^FO_Xd7CvxJTs2-n)3Fi2)1EG-JWN@O3#0MWYeaLroHKBTB{1n zqV5WqVX_XsIC1U5F_yGl&q6G=>kacCB^DIb6qTMjGVEE_^&8(+YI0vNy+jaTxOl1uASJgMppK@%d z)Y$Cxkk#?Mr?&UI6W8wEk?fbT3QHm7Zz*wLEb*0Atzx8Rra3H*n(vMcWN12~oJn@? z7*$q9(w2sji3q!0^zyOeVUL`6T>US$omx^dp}yaK?E>olX#xJz$196HhvRZm@9enZ zSo&~UT>rekm>zY$RFC}pkz*1}S5(n(gqY_sQSeRc_f&8_0M34e7kx z_N3Xygub|`cH^~U2gXt@r{mr2H>s11txqs_ zWcN_4sK^Qrx8IOhGEJ@Y)cXeI)7=#5OhcoV#@_vWW0XT1sRefEb~z|hQPs_RJo29+ zEeuo-`zXji{-ei2?&p-D1Ak+sKe_WqrNAIJ5l)sQU){`Mi#YH3v)0KXw0D)8_61j{ zxpwEORVMIgd=}>$Fq6ExF+;u6NkW7reg6fyXQ4a&9}Jb#zdTgYsgPbGGq*5XAF;(_ zdfUSu4|CZMMWNUHcw9KH?i=1{C*-Ic9~#`|&~CGFF2i~Au9mwA)%+&+fYI)0%mBqYXcz1Uun z-C5=I&NS*Y-3%A#92*PWBAf+%1KM{mYbYfjxq15)*=@TLv-;EWvN^5YqzsdBA0M$> z_}{A?n4{e~F179M#Ho$X6}`nzdYcrWx6?Fm9i-Db*7am~Cec&)V-1O$UMM4M!S(lIGRYBI}0L=d($odz}7y~QQ{ym#D2LHss_ji?t zw!D}XI0`3F4?HX=qYZNrAQ~zWya*7(5d$AKK(+-Q4${2}7D@Pf_!S2SBAP;!Sor8L z))~^`0f7M7y~4m)XNYhNfFo7NL&xXNa>05hTbzMtJT- zt#)PcP(A>P;UU0@8ZB=2!r;N9kO+4e80QRc_9)N}PY~dU;9)n)zpWm+PC&ax1iu!; z69ye@LA5Nx@?ly?c+5=g;6(z*ggV3=c zQXB>YtEEDMg9sSt(S#5+hXn1`uzD1D_CiPzL=0XT*>W5OVe>)W9Yoy`_6|=gfFK%# z9|6}A3BD%7LxD#x400RrM+eW({ylkI_>%~psO7B$Fd?!qVmB3t|M<_|6NrL6KaI=#d2Q-mq)NRm?7w?eednXilw{2*!s234SfPwxm7Y>=jDwsf zgLOupaDJ=TNh|nft~cM`eu8x`y8x%o)|w-97SG>~HucZ6*GBepD!*?%*HHev{Pduh zNI@{`SEdTK*@1Bu&B&zarpWalxl&oWVyVYmUk6Ua} zU3{drUzK7)l4(!#xulxpx2URWp6xH$qdN59vAc!WKc{tVwB!hmJ+ft! zF0T^r)rvVEzp-$YWKOPJ+ZOX48U6r<9HUF*zNfh@A2zLfP?VXlH%B|8ARt+l$~g<2 zxZyc}ahM^$=<{Ti=56n^%gTRA>$e^&7d=SBv1Mc6yX_$|S&qpEjo!a*i#h$$yo46> zK;)>uMFqpC1-I|u(e@lymbtANlrBL(NWQS`)!CgjAVgOf9e6TUiScNVgxt-%mRdPJ zE6u40hG(eycZV-3stI^0lULqp^U=ITNj?9Tt10FNyHq&e^i59H#cYwFAnrwt+qt3X zCK_8kQ!aiXN^>we++vh zWAI+noxzQ#gv?6}dt~l8aNF0+jdlvQwcW51vJL1sENeHZ&mrR4A55_~v1Z7UU{yEN7>wcE&DkV=bk zqn|&$iko`SjeW5g4;6_Cc4w1c+TQCnH!NcBZ1(0GTe$Xubq}k?qUJWHsCvl`g~Yx$ zXe0jk-P_ROT#Hv;&YZe{dPXB7{LuAFRo5*!l&;~W;@X7^y`fuG9`3%XV!$z%dE768 z^}s{&Cq8kg2h@kq;ooki^}T%_lVa%``j%C{HsFP&P&akhxuK}UJGAGRXwK4a3qW($ zSLllO#|&>V)={X_ed03eE%2zIgvZLru-;X9AHx?4Plb&Aj+F_j;lFhDoYGS3q^6yy zH_ACJmTy8lKMD7gy1(Qs?n1%PmakyE9v0WtoD^k&hpPPEkcRD|Q$9 z_iTE~x?NE52;IOTHQ&u&nQEWTcgAR%-o9jzoOhk)0YxEqOdP}sU6N;IlyR(`qyf8WKRzdkQ^z6iN97D`NVe?t<^ZBpd zCLhtf?EYZ*iJtf|`Smlrd3z`aw(IMqc%Ki5DA}}ND5ESjSzq0jQfQ@5sdaN(fJyR~ zbB(b^jU~Z`EKjP&hEhM6-fM6E)-6J1uRZDz_X%Upup`KSX0fZpL46nB?aaz;eKd3}Dcc;@J$ll0_%4;y9Z!1A3j#7dx6ZBq6tIsv zxtpmvQpoh$P<&BM+&Tk^+HxJP5;a!Yl|8F;QNC0<-FwswY)$< zV_$|HvX>4Rcw1#kH0?}M=6!y?gjdu+QMKv*r&C5nrHdBt+C39zkBRSW(P=*8H50tq zw{~L3#_`NCgrzu{P>voL%$~jbQ9C4RzQA)6}HvNf1+pt;v`A0q%sVQ+JrZK-0lI>!6F5cA@SmWe|7|EVHg;<32$`V<`blaVPNDY zJp9V+0V^5YkC7}FMs7lc6QYG-VB{t|_@CKBofHu7*D!VyK7NHFBTN{-I<|s`U%4Yf z6`6>7pBNas2@j6jJiucW2B#bRy@S!4kl;`kG^k@U0-WfPhub_MsPY{ts0Cv;;f;<4 zC4?ZDw@gYGMN%t;lpO!vaG?Tb5hPw42F7l}8-8W)&=4&SDJX^^dg1{(G>G9sHL&2! zK?A|5v;XMk}A;5PY#*IRpJIMYBB8GKf+$cmiB$xoI0uV+gYP2gm2b!!Pw+P0- zxKVhc0HAkIO%^hZ>0>e(PY& zD7@i?mOnB;X_OEgMvTIP{}~>9vqTVMYA|9H9v-)OK=MEc@tuPaqY&XBj|1c~5H=6S zi^7BBW)G?CAh`)Jb(~e`-?3DJXyRXKP&5p}?`#CoM8DA>g14M5B#0({Qi6(i3}D;= z2Ne<{fxU3QZwCKDh+0D^5EKuCVxRx1^&#YV{By|ui3={f9BUv%^!IL9c=YC zjlTLdd$7|#%f2T%%MTsIImt6gNB6pn=LPGVB&+#>VpAF|FPp<^Qo0*BkN?=fH2R@N zfb8@bWWT3z2kBP232!-H-%Ms80|k2 z?G>IMR!R0@QPa*dv6 z-^~?diWQC)=h2J0%y5svTzlO0>lKTuo%)gDT`2`i)CKJiejKFrXZx`2ae!p&q(tvR z5B)6bh;eQB3HEWfBh*4(UzFGiVs{LUWwSo4OVXb*5Z_|7u3(*U?I!ha*=Kd{-V5Gx zq456Xha#%XgjA$xZ2?4 z=bhx?yz!m1Y2h?2Z&DLP-aa3`eaM%pDDJ*|!u)9m^)z+TIkm_0hr2IZ zn}%GKhA+y>eb`7m$nCnqHpbhX0FVrVqHMmBAz`}Gfxd@-Xm?Z|5L@x!-M%~&WiK8G+??v@|e_~v$} zWziM?&5BsX{k|Q+HZ>zuycBx(v{HMj9&%BO(+!ZP+v%uUk(f+xs*twWl44V>J90doH;k+* zRiHj0zKKpF`b^ZEw9lp=>3K8G%}<@P-+nzN`HY4lnc=?FsRWm(-Luc1a59?%d~oyn-ul$eo1uwuv=x)4LFNaim^GbSk16Teo!eOSnkFD}lrQVNQfu>*H+-0S z!Cm1r$v^W9;`zD*%F<!l;@2j&M8v`Yud~|L` zB?|5wH`-DR!oj^Gc|%-@F;oY2cqykN_#SPeUuPOXJ@=4alVpOMtJ27_bKCTwnG^>L zhv#&0fI?dv$Njyw97yGxsD-ZS3B!k{KXni&>hLQ0!+IG{^7 zwu5>ud&hegbv3&U=PhhI;>hF%UY*wfCu$QjEI&a*3 zjq{Xv$42Z`-pRe|j`Dt;8y{q_`_TUURhsGf-41g8;}l~g&svW^W~AV?x8D}*>89P} zo~Ge)WX9Ofa>EU6qyF5{{YJ$KMwRQP9%#xi9H?ZUEhAwL zh*L)S=_{5$ue;|NBuGZ0HKxK`fVuyD_nBHn-D?|fytM5f%`)H4W$!Q<ylU+;r!aywO#5u=2r{rFC%iL zhRwb4U5md;NJWZUmn2No#Q79y-1wve3LA#vyYb?G?3biCJpLJ?~taRsy^JDBM zd$I%<(@jN|SRQKOK#qv_A?w=$duA%A7+=vP@K1if-0wrb)oc2BRS=o;(uQw*v9G?^CA$wT=oi9g)f(*DF2O<2gwHg<83TQLY8N<#_%N;9tc8$6Dr8X zz$ksc_X2-(!qHDyH8CC>4f)g{%L*0rBDNUB!pe#9@GGvlD2N6Dt_6~l2)mK~y?C5& zO)&h4#VdFxwD&~duzS(p!{cTTUFwlKFkoSHNW{exgv0oZh;XQ977{rK^aEXk-2rY5 zA^2L%7786BUMaCKMkC_n3BzI6aipC`gX=g_p%fNIXha;HF#PWe0ztC@Rl%Tr1%lPW z_>7376NazF>Yz$&L8Lee7AB#GG&*58jLwJ%2W2vdT}L2>=D(kIpeZFG_*$$^1dth_ zl5hB>5=Lf3oIGLpTC8q4O{bCA&O}8FeW47+6lwgWOd-U z5J9Tv#eylVVeJIrFeW471$()55ocRFrbtHnGU4k z|E4v;&Wk_zWf~`v*}|GSBCQ^x@CqYwXt6LhA|f1|wTR4hER2kZ2mf7{35wXkX$chw zAZ$J?5cKz1y#_o{%Y$TM1;IlX1_3yzxg)~(L{0B^Q##Pv52$})un5OBJYn$n^jALe zLdycvNTvrPGve(Y4h~dkut>QcER4*E2nV54#I1*M84=OT3|yq0gHajr;5fToZZ3!r zHijfviM%$rr3->`WQ0Tw7S<0EZ}1f~sH_3v2Z;Ml^t8my9Sw=a02U$KY5=qK-zSd- z9n#Qc2=)!9n=y5 zDZ7Zp)qMS_!NyxW4h<3Jk$B@+IHBV2=Z4!mC{uz#@^4_$3y7nG$1VoMz2PR0#|c;i z`}VKM`hTP1qM^#0e;)cu$Q}F&o&0MExp!!{+O*5jLsVS0S|7EW*d9^+#paie_aEP; zD6tpkE`EI_S#g84=KX%ZzEZzD z<_$L1{gLV)b>H0|SC+iQ?m!kY-$JofsmNVyy5Zw}cdK~r+oV?c^n(M%FJ>9|Y$M+M ztei};rGy5d+BCfPlpUvFE7t3MizmrZUA6JPEPdSlo4tBAR6YHv1rM)mRndLGD<-SLTKzdi z6;*!jLURb|J?R6b3Mc&nJ?|X*+{@o?ed(~{0lmO|CX=81rqn|?6$BX7D=*rn?&_s( zpOc{8IrcI7(2NRcNbkCrX#y$i@0Gb$KGn^3_ zw$8fOJ#^xhrRlHx9VPizBQGorO|lHEc1RCQxZkIa$?2acH#bYEz`Sw`t9cPn7r)Nz zb7@5H!SYbHY!@2+!8X6X48xhZ+v^yf&G5xgU4PC?Rgs^cZq8@DG$T6CuJbz9tDPf8 zGs{gzw}U>7&D`5)Ab|bZud&UCBw4nOXz){WHPU$Y^!52%&im#ulE7tJ=x@HUv^HE= z7=7~oc9xF#&orec#m!ha#%jGEhNp22l88tj=+B7En!2Pu@cBZeYjwz0F7C-*rU!IG z2X3B!H@v7YekI@N6j7lS6^l9=%gXpRY@#&L~ zjLmNZa8^)hYzPiw3jf9OXr0W^`LfFOJV|+Rv7VN$pN=22=SVu{^7L^2-cx(`bny=6 zbKiYDF%_5YaLtQ1@SAv;M2HGm-E*5WiVbOw=#LxuC>u8qp8Xn`_KwG7eI?RNa$dnt8?(9*fyU8*fVGW+z)~evm7kL)G93-L^)BsKoa} zK0GWKF4c_gN3Dsq;^noOrq6=tL|w$g_FbBFFnamS)7NJx;SP<~9tUx*nV6}3E=-`Vf$dr2~I(f+#T1^>CXGOj~z1CRUHi60(V%22Q}3ZV!zPflD~x0ipa zetxqn)r9s-3AEjSz=2NJd>AEj<&<2eWP;>Bj*}p;iBAk%OAa*sa5E%{mjYuRJ>}pyeGMtde zAa*sY5Fd{700@cyP8eA3J=}!fS*GIzbZb2 zkH;+@6b(XcFyQXn>WeBeoRG*McD3_}5C5}zLX1%CYHHgm{0c3QAR`pJn%ahsU-8=s z5kj%6nQi!J+}=TVO+>cIYHAxIoFE|-yPBJZ56A5tK|&~YH92h+9;y=s+e-vb^uQDb zEu;m3xEB#TQOo;RJn=`rviZV<2&vfBj$u_1;6m&e^w7t zph$P^)p=KZGzbcTLmm);387boG*_Vk16K@?#F5cx!PQAueDun~L01qk1=zL$^jbdA z5Qi9&tzEtA08Z5AaNC9k0T$>~M8FeuE&qgv2;+$!l`EeaLi&zi`fIT{G!PjVL=ZIq z@V}jMLhcz<883+7TmtytVGljz4wie$RT4T%GPi9a{owvcpM`Z|>7O%Bb9yxYrzZ*MgjS z-tIH5KabflzH9OG8_$r(fl|!Tmw%MBMi*+GblsoA#PMNEN6&bW*udA2Q+&K~Znxc9 z#dptr;G&)UY1jSjgH78d4{kQYu(ynMY_rZlSwOO(Pqmkt>C&MMG7sxC?H61c62$G; zsvGCBTBqgjj{LZHEK=*uJ&$V>@2|D&HO>vM))DC&Fszy!$UG4^Nd2&I`-{eDac%1Q zo(CC~2}->`v|K#44iqt8 z6=zaDW{fFn;A(rQIlyrLbx=F+4x@Xb1+RCgzCOM9NJzp?qIB2o@1GsDx2g>Ulgi{Z zQm4jts0IHrlj2mMKO|>HeUegAMUZd1o7yDhbaF&)MBu}oU8ghBGwWUjRn3#R%SLYx zyC1}66AG_C}|rYN`$??w_5D&b}Xm zbI-k~;&W0s>mhhEh}`fI>!Gklqx@YXfx?d;ZhIWU5bmdDt6fvj$>6o_OwkP^51YAg zmG;9uSBvg6xNlRXJ62|Tz4v(nuN4pX4>7Lh$xj|`^>&W#b9?n<@9g1vtUj>SXD>#b zQB~x{R@K;a<*Ubg{LVV(^BSMl$ldSm-9ks{F81BW!%fpBY;Q-(r-so|ihTvo}rWa6$T}r0nxj&&y?H71IivOsV+4yFvBPUc>H7`X?+?c{Z@_IdeoI#5Hqc z5$6OeX;a|V4HgVKdn%k+7u<513KnE_%l0K{ePm9XlFXF;BBIZKDQ;NybhWJBnT>oD z@}{zJr((|>Kc>^I#C25?b%r~}=TL@KYtH-uv8GtnWVI4fl~+AF)x5$S)m4{n^B>6Y z5q8?`@ikDuLr-Tvs(!ZVT~*TwH=_VnJj zJ=SFQzB@lv{jrF{8>#(8-+BWqYMSp2or_ZbQNmwG(Js0#EsAQ_g&#Wf_s%jkJnlKy zO~ta&c!-Sb^cHh7&2XLhD=y9^jOQ>9!ekZc4@4x<*zg{Tt+Q)(=unU5tfW>9q@ne# zR@IL5J6CRH*8D~@hRS^4^8Kx)-==TRo%Az~x8CbaeVa0<(cPM%V_nl}wauEB*c%rQ zZI!&Q!g^USIQFg26B`emshne(hbns06E$^)CH7;&lhWsBhdyVqx)tw`xgC*tec(#X zz8x|fOsux%j7Z*jq*Ii_(Aj>;q)Vaz_)@;f+P= zP5i|c9@nevb(pM;eSVdhC_skw8Hl9o029UYF=XU?fJB+xcZLhorDOs zPG{kzb=$k784x0;IKgWQ(7*9d8ys+g|LrFbh@38;@~a}J%Rz+y7&(Q1XE>}K&d9OvBVZlkg6b7oa5Y6~#g0~<+@INly$3yB5WJMt93_1Giibofatnqhx_BHMc=kZ% z5ovUoZ;Q8gxE>*(E*833!hNjO6eaxG;Ba9AnPX9)) zEM8=}t(5hIC2X(WnZ$*E@agzrs3Rnc5 z40!Nsv07me^F~moL<_E_C*eQ0mBEF9YYoMRS5F(TN%@ZgijxiAG>V0yykGhOqI%LZGM?$>vt`lkj)$&)f+}LxRzX+AIo0zeE5P zMwl>uEk+CVMHWWrwg84FYP2hR2PsP;Nq+!1QLDqPUI^S}MG-iOXu;JCCH&pP4G$XQ zARkw&8A`}-@Z?2+m?7NmR&$i_;eTci&T27Go`HZTYIwNQ4(jAh08iBNR!%!1P|FUf z4kHXt^srpnJT&+-7!a99fD^Sm92~U5hSX0H;6x1%w|Qt$piYT+y2p z^gR6ce#P=p;B$jUeDC1N^}j6#2M57lGy*FVj85Eee@lR)K=2nR>cW4{~jG@ zcTj^D5wJ~gyT#i(0%5R!qFw)y(Fbl+e?2K&7!0*6ExU#=Sd~thJqwoZ_C($3cQ^A@ zj2ZNQ^hSOOy+514oT1!tktB(Yu1~k+29J)lPr;F2-3lbWZN-kt$GEv1*h=3AmAWiU znU(3ZP7Ee{cpX)J?f2lOljF1gL|dzI7C^WHHJ?UPRVR~Em;TfCqP z^6ETy@%g~{^sZ(tk%B~yW{aj~*4Q`w z3Yu%Z8&Qhu$k?;QcUXt-%ER6oo0)v8j*;KhM!^+zvgV~0<0qlX-1uqz-hK8GPQpKh z)puc7lT(!=z6qVUQu0#d^z6&JxP zsvoz6x^xP1LOwj`8!J4jBnhIO>iIDdUWOk827TXgU{##kqWzxb(!K~3uM?xQ~r;NFRv7ypxh*Y zTI{~B`X#Y7JLRP`bJiYeC*6DN2PMM|Nc|HFs-?$@s3(7xUO)Jxe{h4wo5RL?suyNI zrr6o+QhXK>+Dj6{%`(=ZWot-HdF*cXTTj*Qo*M@1f0!^c+K@Ofy*D}k$z7Bxsp1B2 z5vN}VYr&Bmi-F4XvZIs>eNIMPkG?3YQ8YA3F!flT9Vs_gN1ZB>jOXWgksvlMl3qE6M_r$5EJ?mXniPK)i z>XK3ET{_;;`aPQtl~S{OnQAJhIhCPtP{QZ|Ik%vLJbej`>cLL7&dxU>@F5wI{BcZb&LE?X6eI17drcB7QN0M5H||f;9)NOeB6rqXyJZ}^@|vXS5Yb9VZW0GEkkIBduf8nj@8aODXx%EKYocjVEin zQ$txwVf}S#d2tG{;IDG*PlQ8vY}sI|%hMBI@aqXfRYP2 zFp}3wk)hj^!zspof$nL05hq)KPq2*J`pX}M?A(H;J;WFrR|mT9Z_ZYh&=OaJmKcGmQ#ahBTDo^K*FhlgtJ2uXTx z^|sM%USugdZJ=dvZ(}`)P3`(UXFU=roF^v>eJYq(I69WDr#zwUvnB&AQKqliO7AMq ztv;+AWkpUAn#mR3kB$Cr@Y3l)CRqf=m7$XSCv9VX+<{^B0^5t<{bR1Ek1>Y{he&uk zSL%*!P?7U~=O11#n&!1>ZYf_fmwS^e)5*S8VLLNDYbFCv^|$XZvVGS>ukABcn+X{b z@1eN2t4HQ(KFTJaRJ)++O8F!mrun8vbOK$}E#I)+k0W{(tRLGw9^Kev(s)0h3uIYg)~yIrGX0p+>VJGi^DZ0~Sp(EdlKXNRIaZ0bLE+R5DQ@*VrN>)q}J zPSW#>g5%DN+S_@W^UG`1kDGScpR8AF49UoM3?DliG5a;e|LvE=?_1hEz6kOt)8$&{ zZTQytoo%6nwreEudef;lg|1U7T3Na3*K8xM8qPDv#~!$hGRpbsC_P0IzcYGR;NTAz zWn}!g_&e&KUit1mwn1~%Gb&^X5G>7!o zDcmwKYk9=?Z6`(k$8sijida@sx?7|^9=i^=k0h+;`mBG6a^i5FuE*)hQ{DU4yVNo) zsW7?3xQ)HqB~jWWF8%WnL(2!RQGY*4b;IjjlLd4WLi}5rHwav*W5i?&#JrYfyCz)o zaDN8VH^(n^f==xUrL?D#J~E}bOfm_sm{Un16R~wfWof==AuR{ zJfi#Czks-~z_Szk!-YlRm9Qa4bbmW6_z_*ya^>9GBf4l%nE|{WHHv@aNx@I6-RdOW` zUKmn)!xF=BKXxeCj9L~fs$3QZc(Ul z6nM?xR~{I>4i69bFw3I8MDVMxoA`K8rY;B~QAF^ouljg+-2RII2{kcrmqVEU>Z?9J z9t)`}07fxkJkhh~&-g%u4TBh9g)!`q$0v*@YJV%{3$;xbLr^^gG$f+thl4|;awMi1 zjADmBd0a{Z1nC431M91`P4M46T#!$M5FT_YCHC^*QX0#Gl?Y)fNQM%h-H12+mBkA$ z{~5UDKoXj3K!X^cAkyBUR%>dnTKmf034<6P8lmPI4fTQ|GCWEIib{jvHeo#Ra~}v7 zf=?bXJW<1g+C2$^qm{_`L@f{Z;s^t^1Q2gS+J2%3-?GRlNSzSD6FvCQVE)2j-$A)Q zIKbcs2WmMmgcDDMo!dCu0g+aqIEyfQ7*7w;^q|udiR%R-P{bbo%IHGi&_ZZo0|IYr zv0O-CR~UpTVMiv^#Eh8btyr!Qm<4b=5a2`&7dLnC+(m%jfdD6Jw>UVc-$f|j1xqJt zwK%I=CI=&QI0Sg&RtshgadL^^iCQfRkdlF%I-nJUEG&YgIvAg*)#6qUzSg3MFAa=7 zfMj-P@X>?1CByd~Mjya~<93gbJTV#tqYvQWS7r~TC6IW@U~`Ds9S#j10b))D1>B%D zm@Of7WH5Q6hKKuD5y2BRy_Js@pil6l5EN3t@I);S2S))hDWnHS)a+Ka4h8ZWVDpjS zYq2_TB!Zwm(t!cvZQwn2oY{b0VasVHxY@yY8~AvThJvn^;AV=*ZAHO&8+dTs;z9Kk zC;~xPJf618|M#FiUd6|sp#E|l#~OnA9iU?tXcfL;D(uD9S|8n$MGTj;y3$+DM4lJ5 za>xU9`e!3EH&n#(9?yO>q{YelDaNU;xb5-TT6(@IqvPxr-WJ}2l%9M{zfu_zxC1zN zOHflCExKO<46LY5ce0v_0A_25Q%rxHpe0xC!(9d069&ApmY?-9P6^p&E?z_@2UH>=A%J6Y0y_L#yuB2=9|6G#P8Hou7;Uo)3 zQj)L3bA=jM=H@Gb{fDb#F*{F$`gmygi${AGIP+-elK5VZt{l`Wv45N2YB$OnnvmZ` zC8~GWOhmi+!PJXmU&%u1ZgDV`MBQ?s*nj=_8`>+^g~Qqc$?~7v`f`*1)UJAL4Ntk5 zLGtlT^`=;Lt>pe&tmYYs&#csFZ%{nue|t?Mfs(Q6V*eMp^+%?hDVg(Luj6v2GD_)s zaJy(sq^o+o)aFHD3Rb7Vg5A}UCy#!wLcOn(e~qip^qC)%XY3Lpw5qbd$EimhHe;?< z;}-LJME=RQjUibs)&4X6dp|ZxBV~Rs4&@$^q>`!rtEG3;D|`h(DZj|nO!(N4bhv0` zTl(k3fd=ceK-pY2zlDKwD9imqPoCv#DJqb0drKT3VdVBfZ@N^VlEkVMFy$9|XKI*9 z%%Lon^mF#b5cQXdjtgQ;_q7~Hl+6dF-dVUjJ4g9;Xz%BqGm-t-85TdBYogI}ef>@M zgnkPDME^YSrOY7EB(YD&g4bemW5}4iEGvs`%9Iz2a-3$@X+z9-bxn$ZR8%YT)veFb z{I#BMUwUxozkY=xQL}la_{~zf!RNDwIVL!QG$ymzsk13J-bFCM&!e2}w#qJ>_%^{q zPuFpHCmY({byx^UIhy;pTBJk4WH-fQ#=>X(rFCgH9&x{`Ni$+1Bd}p9Xq2ePX_0`7N5EOsmc#BUdYuhl$KyFgE*Xh1&7`jfJ@( zyeF@gy^&P9Uvhz+;=LCCo*EA9##B4z#QkzwWb|S#ofM5-^vx4p+ccMW-?yoCq5Eo! zj@;Svbcprq)?X2w2RVGET@}wvF3Fym$%_|Ad!U);dEr^H1!eSyJ>%o0nzd^C zXa^Mx9KHBQKfdHtQ}qg@;@ilSXkKMt{`JI(Yh^tQ`+0@3C29@AIaiWOk>KV;^-5G22RFf{0wro|5bC=Q#0 zyVR&uXwO&27!D{FM>5Fp^Y*YO=8(omj5W`UM=;){q%2sTr*(Y=AmlD&1a}RC~?|dulqsex9HZtFEh}ZZ;6Si(% zeOG}IyHcXz3kT^;`=5MLI=^zVY9DSJi9Z%J|D>M!lP~(j#g4Y2t5*f)MlkOEA|m%+ zs|ib<G85=Far*`2=2cG^LsWkzLvM|F#v2OU$7u&a0R&ogKBl!gNbqQ6&#tw)G;;>za$ zdsX-!_9_amsEO-a8_QQFBs4@wLTECLM!|S=zn=sC%0-2s5+kG=7mP=T2nXR(5u`W~DEe9L zJt9pW3YQ@f7@;mRtDMij;W!sa1aQd^+B<-?!+h7j;VUi-)L2~BKH)vTImaaaGco+Lu4RO zrwqS!z({m>lNSOvEufkV0z?GyuuIe5i-+V4#lW%&<6$H^{PF)CPt@}Mte+736}4J5 zo521N#uK$YA*h!OFdBmFTgae^yg6&Y!|v;N`wzq{ML{%02++1g5JKZ9T;<9iA{*ZJ zue`WIAgu>-EC|+v*WrZF#}0J=0-qbCuN63mi7XyBIw-ssMf_I6Xmp5^hrX4dWfa`> zVKh2CIL>qk6u$%IzO~F9*bS1%3eb8aYPTy(CsaF+f@fp@e(JcXqXFw0i}CKfSNvbuv8{!5301I{-jtPX#0Fo7Dx2ZsiB10{74@M|$U zh`5Rcc}E2JT0YfK?L8z#g8(ObV*Yt{z{vtN83=e-nFs#rSH5=OQ$+|*)bduob||3Q zfF!t%Mo0<#ZF(!u4(huIUL2&^6SX`X9JDM%BeZ@4qZ2he+~z^dTckb#08jL|1f^eq zYYu{Jgz;Uz@HArne@6(RY~Vki23&*?I+P$Gn}D3Pv4h!BGgI3$W`HY0anZrv z%=kQoQ`?x4j3Cg?? zTk!tZyY2S(S%Ypo_N`mLj+FJau!TiuZnzkkv4EG<7un5zreBLOa>D+3*4OBr?@#pi z(>gL9cr1UnG>)6@`MX=Kb!FSB^49Nt;GAJ*C8n1) zJ>sNZzBypgN=HL_f5QzPeow_w-o3Z;j?3kf`Oz8|Z6TN5Z2sJ*^{Ce`M-I2vnvHRs z>(m+9-_6HZlba}9+*KePYHeNvU2K0c9>zT{ViuEN#V|Btn=45(`B z)}}?Jq#HyKP?}ANAR#CzpwcZU-Q6XPq?9xgN(e|vN(qV}jkI)k38;K)bL6~k_kzoN z@AvEErG_n z`k#qpb2LyqZQOawE#7ABH&r1VH?w`2u(FjosIyFa{m0ZE;&2apLOu`0(%{RO4R>*A zTv{LE%YqP!Ux<4$21}u|Uu#xc*2d&-d2g}bWi4tF>Yz(qG>B9(Dg>+LdoRc`t*<`Yh2Rpa zJiOAkl4wxu$`U1UP)Y$oNb=xJc@vQ$fQ7FbFZy@4bBq#iRr6MtJ8%hLyCurHyW2WllK!G~&w_a0ypD9pIpc?1 zP7xl1!D!2f^i0Kc3g5@XVRA~f28wcyRdq%l`M^uwvWGE69LWi!2!)~%83U5s zE%H>RIKwK|YW#2P$y7*DBQvsBZjG;@wRrF=iPBtkc zBXO&(P5kkKgpxqIP^_6@Xql6ccA_rgBEB!)r3T;7T7!nwfT?gYH{#-8nh)#Pl~d`f zg;TTd+Vg8%N?u6D{4_dTFqNfx+qU<`^w(JFUea()|5c(}eOJd0NH(}$RB2IXl8w)+ zm+2dNZ%G;ZabCqS70=c7zi72)pNxJY>3= zZeZZYpLuS;yN1#?;C(DO$_)(ux0k^UGzW2mMf3ol>kO}*3s9K>7+dhG1MTmp!H;*( z1-v=X#yG$WISv1N_gp+c9t=eMn*-`K{^!$q(wpM~5?MT8)pMXF^ECLsyN9~RV5ume zCG#}=@$LaRG+waoBA~nJEO0Uw z|F?G!gFntC0j9$a+-va5!!c%H;J**=#8ec(oH*_2kKup}BsA{i~4a~zI z!-3l#P;CV)52fX@vW{7hEM2^>8ySmvJtj&TFFJO{LB0j50weC5w@b{s%J z%mZq-aD*F})sO8KIv@mW3>ODfiR2W!|9$pQ9YS8PVi%C6I13!mDuGHm!`~RdHE_!6 z|Lz`m^-wwr2>vXF2UWyl1G4P!a5&Bl%;6nBJis$!0~0IZfTP^Nz>jy&4&2rpU}7Zz zee%?&|DB3C1%K*&d7O$lDVGAhPft1g-%rmD-1cDe$N{rI^~OAgLp3u%Umfr-Pg(un z!vii{E>JHCrm+{!O@Tffz-a=-vcsiOVBXvD&H<|dZafgHfvGc|kjeP}rsD_XaQ`@` z<4gwUk&AhjOopCf&$5zsK%|OQt=Gol7Bit-ez`r`%7g08 zhG+bni83fX*P5CG9I`^>7eDb8q2>HiXZbPCPPD{swLUWts@3#!!uu;1rJZ@>^Qv>} zqB(aiH1Z`=3pUS(-tTgWx1qwpLzd^@FcY=PP6|SJa`C~!2uWaF07MG$)|#(cV0Gun zyFocG1I^p)4Gd3yup4bUlFr8<`>8h!wmPA|ReEkL`*3LJ-s|>zm9j&N;v|%1bvK&~p>T@5qS`)M3Ox8`>bFF{lR-JZVGRl`oQKc>%b zNm5TK$9OvBdrp1^Gjj%N8i~N`yirP_K?Ai(B%E~QCoc_c8AHO!Uc4y5Ly~*y>0Kr| z<8=ca`#s4u+YwK8&dr`r6vcj5YSo8O(OZ{s-=gZ>^p<_mtjA8#tYnN`PMX<1vPQSF za#=QFwRsMYh?}y(Oh3c-g64ie316w=Pb5|`Ye_EDBZ`=Au@X`^J{lIA7y^ zTa=|8k$FC@ff$8>)}#~h;9z~Z&R0I?mJ|IiluzQsg4e#6;FBF1;Spoy=M>~h&7&qU z3$baC_FukdWzG8KUJquEZ?Zp`#IL0CpNn1}*mY4|F@&8*loA6Qqz}-Znu@%6ZFQ^f zam5sw4uc}jmFD~suN{O}k4!8{kgR`}h2L9f;4jffy>XtzSAZhExh={1u=ATxB~9%U zw#<*i#UoZxuWum|U=n?UPssdpNgYiD0j}czWMp8X^Aj>MN4MTz8JVM`!2dBL1E1A6 z+Ra%rGVoaqF!%`>8Q_x%=k9>Op<{+Y8yW!C^dFysqfZ_f90=^e8XABuxwD{8m?ceF0pO=T`@hSdFwp~W0nhUECr$JK;HN(QZm z)BAJze{&)yO!NToa52W8_}^~s2@^R0^jYkV>x79M0Q^+D`+f8$P2>Qgt5ePH`0P%a zhymbFwYy`b^i%MsS{{^N12hhvIFSQb|5VH4-~<=~031jLa)74O;OHrU8W>0M7Od56=mVp8{Gx zL3R(vPXXOM@Ua1Cd0_BU&Gz5j14(2au%209oa$M24}5IEW`6=njk8>soPfd=unzp2 zgQKUwJp1wHp#^hZ&~z9aKLrN=+i*C5Zw)UPJB9;pfD$Micyqi!vKwUgr{0(U?jCq` zY+$|G9Dp^Q@|!)r?N6L+!2!olf!Y4=+a3tmfzDZw-NT5Bo#Y}x$u&^IE&Rj7HLSuc zeth&m-G~j04G9pQPJQ;@O`kw*44gX70Y^`PSsr+^fVl&cAx^-v!!a~q;Jr-A2J}9H!OwDC0%Z%}z5_#_<+fx85`mmxjo!eo;Y=qFyg4vUJ79eC zY4GDmhpGXBURQAa24DvdT-9L27!DX>44lax|KNa&8g!}z$5B*t+++Q}&qlF|0|_O#Vuj1K#S?^$$HsuEzTLP-E_C1!gOzQ z-%oM41>2sC)&J-Ay}+`^TjqURxr0B<4@TZ9snK&w-6j5T{YyY%@}ii;Z7*JLx)dSO z@^s;t=}ra4!klux^~ZRP#){kOKOec})^5D-xryVDwCN*(K+cRlAY>bm}mx5o)dYzhFF%)HE6nOZ+Fsk zT(@f@`cP@ABV9!MD-s8V?_-e(O5MBI@81>HGq=nJlFFz`^0bBxINc6MzIw7bL8u+c zG5FEPP=1kyq^`%~7xe{Y;Ve?flY24>8eGEUAN#Zt++58@trP#I$|nNy@er%l99tyy zy2>Loem54Jg_;E)OHvdedZT9tC}xqShN9V#GcnK0ztM~@0sj6&L2M=-<*Z|UC?mx$`DiwJI{O+n$#8rav+>c=QfrM8&Al&C`D5y`KW zGJ38r@&1FA<(o?7Q3Q!$AshzevCq88sv9Kg>n{25BqAupQQt2Zm8gFjhT6?lBFCRE zb|2r>Pz(#jtHLtT>@g)pXN%djZ2Sdfc6D=Ry@&d^J;^>>JMYzUVkxBS%102gmtCvtb3_S#SQ3tRJM#ncqlx!}R+-~&Ute|5nQ9G~ zd~NM}H}4Z9qA|KIAKS)D8|;EBs^`r3fceHNiqMGnz4ByCf=qhTv@PC@LkXAD?o21; z3OzPN9V6oo`Qam!O71r*lsfqdn66WyxFg3#;3N0sQ!tD0Rm5-#5p6$zA9>xcmudMZ zB=5vG(OaQ2@qOjgcA4HFrqsN+?18G0QvRME!ZzVH#r4Mi*$TO7dGQ-Q&z&P)Rmh+2myG4$? z;VZAG_AAPU^%;yGH=xK~Q9RhbH~zTj1JyacryFsPW}^K??d|bVEpU7lE6;atdyKFt zXG+e9<|L%zM0TLwdWIR^eKj5T^;<=Z!O$zEx*C2MSkIFpcxCB>JwId{;ncpnP=0#X6#`RTbtCLw&u@?<{Ijq_gNzkHiE>Z zO*tv0lsd|31D17V>(0|`+0~2xqHw+%l1lz^jzrEcjpcAauV(s%ubR@2@WmVVa}et{ z^Tue38H(RRLQNh(q{rN%nO@-C`oQ&BAs(%3go&`=p~B|3yvlbLYItbN)Hz{Ggfk?} zo?Vf#jpq{)-dXd!_0(L=U6Pc#wVr>))IQKyVabs@0PQ-t@Yccx01<&?(cmuUSy$Z2(18<`cea%)Z; zs}{z1D!N>jr+k&?UeM#!|(FrsozPoZ(x$l zr>=}*5+gl!yM#NIkHHzyg#JZq$9|^E_q+N-FUDtUbAjI5?cFJnqDo4v`J*n*+bg~N zZHH(XP6o1Dz9S!vbq$!d8nXDYxHs;#;Y}eT@$}rNro!nN&l}TOeUuerkQ$%BSl7vO zqhZTD2y>fm#a!}=TT6CbNzrHkTGMs^guWX+1h!jTl0Ga5+xwKS_a;+hJ`0e{VU-qa z1*Xf^-e|eDK1w?Ltww|Obvs_0a+zV(iqml3TX{(6q~1a|P;~#u9H3BTFmmdAOU8SX5y)?aDBFBJop9Z@#gWpTpBuVGR_C@O@G%FW!OEebaTK z_0jFwqPB>SO$UeLIn$3p^0&w3(F^Q+oc~d=gK{_i2M~SLpusGg1~uzlYE}tq zR#9p-=pVzTae-Aq|B(%~8sw-)1jr-+JzktZJPQF7wfF!=2vpXHlZ_Af|L)uB+BjP1 zQ?p7Nni*eU6$Tn!s9En*v)(a(U{1|?o0>sb^nt`Z+55t>!Vegs{?i}Qdq5Y?9|s2Y z@cuc%Gbf$@4u-+tCpDA;ZC`%}C7^Ji*8_Cm8pm;a@4qcRFz{pd^hD`AfH!f5hvx>u z0?_#YoN#0|@a2J&JLotQPB=CjEdF|`->Co?{O@q|MCCY6I5ry${C8l%1^h8Q zK#mwLB;$l*vw^|^`79o=P8Uu%HX985_}y_qwPZjtzwB^f4GjEv^H3%rNJPg8H{=l% z4efIQVf6sh6VG5a5NNFftVR#~XwL!%2m;(-y+WPD&5C}7^iY3l>K3;)F!XpK}QS;vV!(17C4* z-~#*iZ~yBo3QUFR-z>^e;phxmlsx4z>$JN#ZeO&7dj%UG*ztya3(cuG7aUt|3_&e_ zRXyZPtb@aXP8e)i-Sca;pO@30g+{65qc?-8y}OqCNL#k#g&#Q)qcN2u&w3tK7G>Jd z+1qB^l`7w~$gm3H7mIW@)#%czF5@BQRjLhvh%L1Ke0G)Z*J%6tFC&4hakULsd+))D zuJ|Xk`bzhBN59R@n9p`UpT{?Ircmj&IZt4AZ!(R)ntr!JfXx%7Vp()9zsI{H(aNA$ z_9IyUqgCV-7wrJ%0)ylt_Kw2vXY>r6Dkid5ewB=MqaQUgwq<%(HhSnD8n&92T)AAr zyt~aE6d%rXF;dwDmCmwwNbSnQ`A<$%pNA@jm5QtP&dqfBi+rx`_NivUC0)y5u+$o$ zdnOQl`RQkd!(eyzt*4mowe?c z?zVGwOE!)Y4!q7ALf8mFuP4#{xMZkZ<2IumHK9+u9{e`!Ld9F^f!pME9%JQ*nBSYO z1vm6QZW=Aev6Ltp%Zc0(Ly=)*OufyzfsSS#i(8E0dKr!C$vfOCHaeDRiOaWw8OC$d zsJGCSztiedy*d|SbNOP4GgG*vPFg=(V8;y=^FER*ud`Yb-O2*5@!##cRfzm>I_evP zWa({&r;F!(+OJD>F@0vBea|$W;0%nDB?IVA;fwA!D zA^i$8J(7*gHUCha@Hz4rk!YqTg6D)*b1zR)U~Zu4}nV*iUQJ+e7;J2FPKI8oYmwNRxVO96jpDLes09;-oyM0d&cy44N*AK z#_pB=vb6CLz(!q*rJhO@ot~3CTrIi(A*{R+KxN+^UAIM z@8iZZv-)=J;~kL9N%{u%&ISiPt@aM&ahCh#FWJa1(?_SreP(*qPh4(zm%dN)IuuJkGt9TqX0TKl!9P z$~uoF-dOrxF*{wyCrYyk{2Pu2kiJ7C+Vjgng#1xY4Z6;Z$yfsH_XE9&oKsTJak1 z*c3UnD=k=rNi6OTjB*wG8gdO7IG2&}{=CAA8fbkdWbz#*9Xn+TVNBNOJjvVkGIk1C zX}z!L(IeiD?><>DXloA0w$oE)ro1VSwi~ihMkv8UtkBc8~&v}0a6Bke46kF6iM zMMn?w8xE-IumS&klAb9iQ1kiAD*;0TI_lg2p8(z|I;u+?f16KS9AG2xfR**2f$bSq z2RuU_u(BSMzkCKb(9^>UCaS~<$5e(n_}?c7#MwYO7|f@FBaMN=0n!*Bh(ZUDF@bYO zK~5g%mWL8K;13>-GzPjjprZ_({|Ewyb4I}y2YgznL^}xlEH=k+Qg;9+T>m8K=7Gi# zXs;y5>TvET*yaJ|5OBy~@Us{l5a$9NL13XjOb7c(CeIE8VbJs!$maj9r-D5@I}n3$ zg3&)X;n;eha3BT)w4cFNKa0@;Q!0QFwqP+399a)^b*MNF;E=;VI~-XL6b@(;ae>vr zfynR-KX*V@9UzZ@y*N0s9@y$Yf{`0Ee1qfafuVT-Ss2iz|9t5ugfRbonHPpk^KXE1 z#F05mfTAR0J;aSueV|k@=}p1oA<^06_r%HK5nuX;Z~@#z>8yD~n#-36#MlrR1|q-L z+A|{H(%lc{4{^m2V%gEzt=8~Jnyjy#MG+XDFHU^cUsp3^nbs7(`1xDg!Idw{>g9qf zrAW=q!uFClH7Dqe$0J1Qa#6pi6!n>rNk4!{rQmnBLWdN`+LEgS>6&oFV3Sn{L84qA!E z?p6?4IjsU)jKL>`K)jN>p{sX(-utQJKRV*-GwyJ+oXjg#iDg~3*5Q}fJB_uFD#8`i zJTA0|L00WGzI5DmCRZaQ660nBt6iNAs`Se7o?zd_wwtQj*ILLSahA%l$Js4kn6JMkbo)zG5W%Iwq?V|b z+t^At8I;Wafw&=7;$2(Px7ywzv5>HfW2dWaCNPMJU0o+7LH+6%Z-iPtYqT|)yrYB{ zA21&;D-nK8Ag;rQiG+tlUmS}>Yd%aUSos#|!X2C&Blm=*vzR#V(P_nAat$`9xq9ad zL4R!(4%Y*6bD-p&`L5)=j0(!M$70{Ft(SQu>p5f>@vfQrOUvWoU78t)2&7LeESk^Q z>a6+_Y=iPswZQce4tDF;`amCjYD^rSHkv@}?%lW~6WlMfaW6kCdbK82#kCjeUK_aT zCcqnafy3L0k9~&m%7ztY_O`ObGS7W9C(opt{c;|AHlMVIE)t$+*?XYVf*c#e&vp>~ zv;{SCYk6fWCjRbvpgz0SN1D)pL3>q3aw@EhZ)x!fmi3$D6|)yJ!w5>d3@;a5Es{tz znj4fILJ}* z5kyGnYY%sSVn_P)sL_M|!)ky}aJ43ShOPGnYU2mfoxWMFs_*VjCfqc%bQnn#%sJ?r3hrzV7H{3amSNvdt0K8hZ5|r{1@#RobEt#hKjrR{Gh- z2s= zrp?PTg#@dIv<@w9YxlSlDc;Sy{ypl8vTyR;`aRD;)Z0%DFFVL$e;%<(pQ?F#!sWiK`>Mk~rlaiFJ} zaL|wL!@nH#BfjH*;h+P91AvbV%!DQ&G5Ys+=V&))b2_YA z6mtq5&R6?$`@sAcfM*KiO;2>zj!geJHv9kPbihy{|8+W!^taC7bYv*0S*LU3yM1|+ z64~CfPDm2GuCK*0@WI*e?F-rdL_xhx>TkrwXt%>%UKG`){j4LnTQ6k6ktq9^T;;}% z{#E`vrI=Db27D`p-VXG{4scE>b2i*#VY-4(zsh1l$6iPdp{n%t9(JT#du+?@w5a?6 zi8=FGp{kNq&NrPkV_CZ`iz<%he6H__!YoQumK9Cwy^{;GLDR1l`IBjyEivCJ4wV?o z4)eu-nGw0o%SM(g{U!Jvn}BJ&_zFXE|076Xr$Mj~6Do z7o2!V@ThjxxW&k@>t_pW9f6eqsGQD|Y$dMCRk zLz-}pd1RsI!|j+^y(e!zn~>ZkqUnex%U}sgHAnKc%iB$v-g=gui7lW~ooh>LB&O9E zG4i478qFtvkCHnI>d`8w6^grh^8`2pd!NHdV_0=*LfJ8)+l^*KpyoptwHvdAmoJbI3JR=`=A#Nd@O^7N{_`Cp^X?rw z5vmhv%K$?7nIH@5|k2L|o(#W2_Muc_*nmsE?CU;d)!^QNa%5lC2aD3dvzE@todO(9CmKm+$VlO;W`#z@Idz*AW_9Z&BYFI{=pPDfJ*e= zj?>X${@(r>@Ni$iKk>)==R7e#2-mUzv;SlK$zM>Iu7m$?Ur-og_`hG!fBLWfX9>g* zWhrxDNDA6ctd@>8c7Qj*6_sccqB)(Q5q!1cAhF0aztVH6X-wR>hW=5BHid`PK>vEo za&b!?zSd^jXCCaU@lV%?+9EJj^124DsfP2aw-xPQOIX&PZq7lsXKIMeCHly8_2Zz~ z_wn_G6+x^gWJMB_1CMle1!mlbT@1eq3)X)27Q-F=k*Pc>UMttxW%R3m@}3eERi$x1 zW5A>yp-sQ+G+L{kOkWO{2_iy{7^@SPn)jRyLwrFM7w$Jse?q-TrlqZQ2ioO)y13lc z2d%5xE_XJ)M@VRCH78eER^0fpyV$Ds5;c^blU?{=#naXGvy17GWSnJB+wvoX#9lgX=I+8Ezf6%C^Xxzi$j zjqcx*QNgD~kVUUb(RK^HA^FZ->=0YM)3oU-4?pIIVMMl!to!tLE!%2dbiF_SJ+K1P zb?-^652RcDg8mE%qpe1D_2Jg$WV4nIvz1j%B0B|1#eFuZ>PqJp35^REs9l8v(I83WJS>RUwSJIQko_;9O?J4 zwd4XGR}^PV%xi>xe<1oWseVWavPn!$^tFRHx~13mB^gsBGrs+_;;+6%5P{Kha#}|UZqqq^zlUu6FV%|lJSNlZown!| zT@n9h75c9dqi*lo|p)?&dr+#npNLPn_q2EkTy~%YQC8DwXJ!$q<~!B^xPMf?|S*# zqObgv)quM>ZK(M|tFuxoCu1`24mq90#rSLrZk;OD?hW2oUss4V#{yN65FxD}_Xf!k z&S7`>prk(KE3g^h9D5uK`~K3j=50hf4mCG^Ix4rjz*UU?4YrshuH`T2D~*OS1y=rx>5+U*7R6 zoqdmX`7SwrZuO4Q%Eu*SX-_rlu?c&P+Esy6cK&PT#xMJ>f1C25_7X6jNOnfgtwVGk zeK8|byQSf<8@NdG+>WuSHu-AjTr!TJKkH+(NxM+l(n>3@p3Mnv;;Vi&@qD!oOYauv zHa~W2FZl&M_VN)Qk_=V2&fxTtb*|u?b3*?mbQ*q_Z7rr&J*ToET&y=gi0+Sd4TCsCN1r1gc)S28%Kb+o0?JVO zPsQy7XXxnr_LnnsB=7KlbcWywuSdH%t1|>})Bdydqq@zX@MCA-WM>9Woamp!fL$H} z2)aRaBH>dZaE)*<@FO)Rz+F3WpaQ@OJZ<~GIam;&)(PdN!Y>a`8U6F=Igd(pz&rtf zj0K%*0D^}r82*X>gSyBGTDm!s!#>VMz#abo42R1?fvyhpT!VE$a>9s<{Lg+ItN4HD zWM}KRgTN?`9s6{Es3Gvq0IUC>WUZk--4HJhn$zbu7M-G|w0heGCVWAZU1o!A+@{_i z1Zhp=g!=pBu%P)Ly?eoNyNAA8r zw7i*fC@>pG>H1irZldnX{1|;qw`%UKwEV^GyUcc4tR&BTd)8gPBB2E*if@Jm-D|@9RQ0u4d`t+AYDJx5(35=7!$yeEFKD3OwqX8zK3%@BsXn%0Lsa|83(}Xfh3acQ zPcZ17h?!uKA&Uq;5zEa+lOQ|isrohqE9{PjdvotO*A*MWR&7U&Df@n{F?XXB*Ch|r zYR&FmU;mqQKa%nkcu8A&UnsLoVFyXODb7VT`*SyJzgl%P-8ECWh!X6n(|lus1dFGr zL(!)wsbz~H;=16Yk3}jB)`c^*?fr@C1Hxh1{;WclBGU`jy#^_;;U4aWK|iHm2M@tcsLs&X)V2zP=<( z_R}F4k19VuD`u>vt^dU;PZ=i9-FZGk{t?$7-M!mfhIncEpYx?J?)433YB27Vu5KVU z`I-ikJs>lRiwkR}(GE@Hzp)#R6R3i=7J2=3u8bCabeJuyKv zC>9tdxO2IjlOcbOpl46#3#Ed+GJ(^?V9z?mT5r~*QSH4uLX=OIc3E}nKHbnt^m_5S zCYC%#_8W~QlMz2@?5_O)wr&zziGsPNFgsW)nKzuVH;N_=5g>WCFu;sYh+q;knzOhKAH6;R- z^u@661*Qh6y{(>@T;zG*iKsi$mFG~Sh{m-QlNhPl{e>8I+MKlXNKkH$Vu))}3GmE3 z^jL}`Z@JC>h(~%*b4=(`A%>6AFK-%6mXUKe#V&3}p^_6Ya5r@BN&K|kf50E?VHO~7-T6JKfS~zutK2ZsGVxH2_l?cSTkF-MYO*xYU3Em~xYQFz3couS%9 zcQMVZ5<)xp-0oQ}aXfBe#O4j8Sp5s3JY02QFJfZ!Udho18VMOXXf#(@?#fQ-5>9TZ zW@mdwzM{~=h`fg6nIu=bHyKA75^tp07pJWpkR8~hIUV~XEL5YKn%ncvu!^uyi0BQK z`zhD3Uqm}d)90&69HgZ-s5bO2dd_ZdDl*uU$8PqSHSUpHr}VBhaH1w5H8KuVTld#F zKho5m#nFD=uYp3NGHPYqU0?9hjcQI9LrF)G=gP43B5lqyp|?+Y;##b>i;!#l{3Hh^ zAKl>-l;Lzc#}$d9!1DB+=9umsBf`tbpJMJhM~>vyi;h7l&R#$g$Hl5tlsHsa_h1VtZocntc%b67hcJu~z^2rC!D+jHzoW z2H`7T8{bfjE$v+Qe=A+xE)#wAQ*qkzA@^Li&^YlsN{Ru^*;_Y0SS;>MZ#yj|lQ(qM zn2-%hWlJck%^dzhdy@k1sr~bjIr7xFc-j6fm_d$v#E#m7z&*8pzFM%J8sw;V{Qu^u z0ZzSvNC*l7Y9&+OG9lL5LIf@WC znQ@riAHxBa5>But5eQsg77QFZfdzPGPM|A|3#{4+f$PhHg#!&f(8=Vd;7_$&Xsr%9 zB>EKmsiq6z0QA9uwy0C^e|!0G`)323S!k0AU_T)59Fe6p)~}qJ?g)NpK5sjt`4-df!-J} zS}|vdjsNJW`me)e(3UDdrS5ED@^j_ZXMkoh>SI1FofI-M;=*XX>c{;E5>$5s(qs@5bdd71iS*YGv8Zs`0HT28FpET{ zjRm)A-uEw7S6zn-Rs3i%)5Pwk^_V!ktv=k*DA&}Z4QgnzGv6@{8jGpD`-?^}Nl6nY zFQ%69>hc0|9=~e-ui;-dhjv3jGLLY5JL?ylWVfAO@Lo;n57LczY59hPvJG-8AW%i$ zWcp5PXt9xG=2E2W`o4BdTK84cqUoF)fisb=cNgnfGTbDH; zVBM#>vNN#Lg1>Mp&m}L5DVJst5=?_tRhqnfX*XJz;C5?dgG6D~beedG?&|067SH4) zsxYPt!L>G3oB6jLAB3>Cs7!KuUe1eUVEwB3Lb9@`sryl!dv1COo>D<&JOPi(-1|DI zgYoRcY*Vxd+8}%pf<-yR+6e7&)Neku?6NLzHzsVclQgf58ol3+kaXFppBl)wN=@IF zcV9Q{*}DJn*8;BzrT0|mv{Ka!!P*y>aog6ZBnib?oGQM8L+W$CxK?R!Gl^&dzOM2m z>&0)NJYKTO~5O0iAT9=Qs4MOgvMLGB?j6x34DF= z7W)#G*so=>CVqV#$opta3B1nvj8hQi*0;#7zS+0$;hBdN#du18QxF-KhNVzE|HHY%|}xKJ-Tb~7Im!upOeg|~0n`=XAf-BZ)V3il50_<};h zlHGcOvF9;JzL^f`-MkPXld(#2{4@qhNO*4=KlyCp6i2U6MYQw|_u5+v`ml00FY9`5 z<0^!mwrDi7VG8mbItUjc1;aCDIwHyoTOKhg#JYVqHbEWS|}_F8xvP zbM2SZN8?Lh=!oYF79K2Ky@IFsw9~ztgvM}&Jnp)TYlsMBA%E~)l?A0x+d^jnZnI0m z6tTZw>V0p-07Q=AwSkz*1+Oi+-0MmvDI2y|C&gXO$>r^2mJKS%zi4XvUUbpP8*dU~ zRazQ$@k6i9*jt|vOI}Zze6Nv8akCdCkxq0ji;dz+_1MqvZU;O4j#xfq5sf5fPJJH@ zq7s%1t_7X*Q=J!AfVkOHS~Y~-3f9&f(<5?0(DGccX9*M75fv3a7mgE5j^m}o=I|U< zifzA;Rf?bD<4TI4D<%CLe#$EaA|HjSiRe|*H`bgVu^O^cC11Bo_{!UBvTB8zK6EPf zH9?MT#}^kj?TKZoqy2ec)wj)a&T!K4Iwt)j9|dWX+;C23NO~Y7jH0G&?S7`zMKe*4ejf`!!6<)%dWqeYO&UJe#CmJZ@a-;vOy= zT#Vy2yY}`adKzXx5yJVyhZGZ+94X%~+S*;3$x^)M_jZQwEwOlN=F8a{+Z~LBbd>ZO zQrULhOjQGxMc&d%yEnyiclmC|}$mqQSG0 zERgW{KMh}8JpUcY4!N7s>4}g~i zq2>nUA3#UZ|Dz=b6X5;XKJ(jQ;D!!`0d*MQdbVJe|DWM-?h4rIz(at|QG&p=Y=JEf z6<_57n^FqxGyf|z{&R6?XwD6U7SOrKT%aKaT+bHF^1!fnK<@)^bWg;?b#1}mfeA!M z>z;%M)P7Fe{_msb1e(4;$N2z$^jY9Q`wi$UdO)GzH2Ck}j)Mm}(Hx}h3If;k1@r93 zek#!K#s=2(1%Vmv0j(gxz&Uw=+7DncfF?Ddf(a5B1OM%mH_r(uwXgwi4j3*7v~7Xn z&tkS5K$Hhs{R5PcPg@>H`2cb$+|+H>Z?AS7}K zoJu>)=^ej2pmhp#rV9kF?+XV0``rQN2|kzw0@wEi1Lx!frUCFH79+j@oP{w?&`0q@caR_!~_kxH9(>n`tCguAt%P{l& z1YVK|wHC|x;0lBXPPQKqv|*2qi#>BO?7J*v(_($t{!}~>;g=l!ytCop;!B3@H0tH4 zCi#vy#M!n>MYxtYjw-P>G^`(s-#5**)CPOWjxFw{wHv&i7LPQZEejl7KX}-W8To!s zBkYqLm4(WqzG{+c0VjdM*fu9kd^!sIM|S;h$mru@GD!S|5DdT1-B{N9R?%+5K`22V@HCC4U`^y%D;ieK-dt2)QlI(KQ9@2Z4amaJCl6mvB+ zE}j$Lyxl~}o6g7H_-*26Z?nCqb(q6re>y_n_g8zX(op#Xaaum6{*XQQ2>q8`Ipud> zUV)JSI-_PQeb;nY;DE0q5%nKc$ER+c3)6Zgr%aMLDRjc77P`6RAhJ9l$wlgrAmVEw!n( z-leXnS7#yn88Jp9iud}Jrp>DSYYN=bf?Q+fR1C!)-|p{evqV2=4++$9&EFjIiwS88 zxI9x%hSr`~bT62V8$&!pudk_?1@jGi9B%}x0hV>6roB&Qpe40X}U_z;NV5@kF3Ed5mZ#f0lc30+Wk7p zOM=Ywa_L6X9A5M(74621JF*S zxy)fd)1Zic;UHhy%Wg*2fQIg!ma1Vt7nJ!+eptAWsHx&+TdD2jXQ@=PPwHc$ls(*S zTNAxEh2CC z`tZ8w-ZC?5-nr`Ktp{PH`Iz`s=;riMKNWM(qtGe0DY`G_j-sGGBIji_eP$g$MB9|m z|2b1r`_-G|VCgVLRT~jWiDXmi-hh%+PE?bk0ucoq?vnG>HO)<4m)_QDFW1wGD!%Fu zO;f!1BTvZAQpKtyNQpS<{CcS3KtJ((^Zl$>M7vi7o*MErSB|*K&Lq>}5%tos z&7$|2fCM?&!V^_F?V^WeF_61vW#Z46StdU?Xgsede1DVryc=`EjBSqv2STx-ps@aZ zAttQlE%TM#b%(X!^m{Lktjr!YwXKX8<+tIRH1U+SI*4R`Le7sXR$RcXkiQwd zXK8t>J+h)oi!J{CyBln}euM6Zubhks?c9_qFKyIg5XxYW##2gS{d)OD8*}S^O7cD* z)sxE7kh>k+d#s)cvYQ}5$1&OG0y~g3{7+2|hJtiL&~bDH|5cMa?yiy1*E7@+F?aY! zHxWALmIuhI@*Igi@d9FqaynM}W;TEtBYYDZ1g3B2$bUN8%~^vExGppZ2%HP(rD6xu z-h#k&p~1kRs_{I~{^z4SHJI}VH|_!k4=9rX&HAUo;YtG_yN5uXKtNm)-hqG{cLB5d z?@#zCa5&!)bagCr7QM(;Xp#0~_LB~IG z0|6xmFgunF_;rEc;lj255`X&B1I|7-a9fz+XZ4}EV5*qMJ~Y>ncH76qntKK`rU~z! zWGXy0kh++S+9NZLC^!9?_hSK`GqJN>s(MWv`MDUTa(tT_QP9uh~qL!fg}z z9{N~CLNUjsG*FTDywckR3xamLwVCaQdiP%Hhy?P!prgJ1*>iR=XF7*A;rYwYkpoV~ z?RksIUaJQ)vMw&MtP@Naqf&j73(V8Vrn9xVweR+=mYWFqBqB^o*L1&ZvvhIL%45-6 z;YL60Cno~Rde4gP_sZWD8hDM~w|NueYpU@pU4=!TivyiKyqD?xpIwR2&v>^tnPgdv z_c^&)#eyfa;eDk%53ZiT-Qn}?+TqcjUnji92Y4`*a%aC~4%pf>PjTf>%Pm`qEvp1l z8OBabsHIx08&T?e5<7&b_3ftJaaE-j{K5CRzFJ|Vd)n%Xo%as}UBS8jm$>H~NDQ+O zpNru~as-8h?zg|R_Y+p_CA$s?N|=Ag;!(@0G5yXgsDN~9b@o!rym@nyA-+SKk!f>@ zDEh5)AD1qdlvNn?Z>KGip%c88=e9r@bAN)onK|BY=laTCn^a{QR_1P%XIYl!oe#zx zR}wQvSybgce+;Swp-3pcMM94-_R5vSZ7S67jd*1=a5*PtVO52o=`v&2@aQ1#LO~u{ z09IZRR$eF}#asjN_X{GIvD#L1YsA^&^YE^`Na~&H>dXFomoP)ow8WTDL7-R&g->Ua z#U-I$5Lz`ys8;6;K2NZs@QFEahH4(Q9uS|;?Y|g z{RrYFWBPRzS~6|)&OEm%rueI@vF}N8roS%SQ8syN4a^$ zz7?Bz5!==x54P%GcRfk3BE}?$U=UikF!I;YWw&p5EcK>xNp?tHnH$bL5MMSW<+b2; zeLJM4zW>OlB0Ls?q5fJ0a&55GV!sIM$3pkdP$_O<8EKk3Iut1Q?2qM(XdD&4-gkFW z2sbwn;#YNuPQV2Pf1-!tm>tb|1?^Q}(LMM5#@z=wz-S5QI=nQxaeS0Si& zNv3Llz0z3VV2I?zPSO7!KN^A^QoaIZ&I?X!||gl~u+BI6SU*^)=TWQ!jw z97DU>TWc)5iKH%exB~fN$p3ZOo0v&gP5Z!Cv5au@P2JN8zEu>$XV;R7ocx>sttXQOL;btza=xk9&;`>E)z~le5V#7)dUI_EGiW6++X(v( zQ6wMFrB6+4#WSi86XW6RoX6l)@Rj?di|+QWJ}^zV*lhLd%PZcS^+RsRYl_lD{@EDn zG-(U+QY(H9_wgPTYwK)1qI-)fLPMR{EaBqu)PepG@zn$pBcBOYz9|3YWM9IWkB1=-^!mO^ z5PIB>)2F0mK45N28n0TYUVf0+O+M1tHY&|h5m!zUTq=-W!urUJ_jXED{!Lz{B-*D7 zR38kV;1&Hp(ylz5s_lOpDk79n3K>H(9LG5a8KMYfCR4@?ks%o}6_JEw7BbHfGLv~O zq5;WJDno^2)`Z{MF89~zY$x~m{&An4+td53wb%Zfwbyz-@8|vWN!)($Tv0#hH0rA9 zeDTeM;A5vw>xb7(cFirCQ8n)5qcrvLKbZI}@o;^(LG1f&37*x>%18G+tV`ZW=hO7` z=3FUL{RxdWdml4URO?xI&@G#%4ka;5yX_TeltHwY*O_wNHwlB0i`5UKknUZ@1j2Uw zEsq}A=$iMS7Z1dLa?d#-4b% zABw}>?NwEr=obcK!bpcOgGa3g>io&3gvpAFn^y%__^*}Q$7^QB$0dC=k3;oyz27mC z%{V?MC?J3Kw5z3$ZB-gs;jc?q<-3H)#BvtId5A>?inW7vd5*qDX*!Nq5rk(5Q`MIU zd^Tvi>PTbLAFjF}w2R5-j%G*rxNweCzkV=hh>~0%!PmUtz3or5Sl!N&89o0jBd+mL zzsq4Nlrkn%Gqkcl@ms&$4)VcE$m+r2mR&D}gMXFD5_AzQ7`oU{?mzzZ4VSmVvNw3=CDDWWpgevcLy^70lHP*R^w{)xU#REEuS`-S1T+&({W=T*!cjhRDD74@lYn|6g?Y`^P_@FYNmV z(ER`$_`9v%KR^-18sImVI~0yG>7Utb_5OiVN(u)@1Eq%mIFi8}#r_nyV8IdKCM5z6 zF=%imf^)4F!YL%hf&*t`&?gTc{7>Q?3l3O+0if9f-pjyb4{q{UWvI|u2n!Ahbk>X{ z(3`pJLB1gW|JrfzP{|4cWIOQS@h;x_IT8&u--1mT;gp_WPao(YF@V5C0}dRvl|2xx z;hR1J=s3}Uvd4q}J?e2DAMy(WnL%b0Xuk!DN^nC5C+UJcePA;u0&ttaK}#@vlV4vu z6o^}4IL|U6oC^@v;2Us|w-N%$%0K50*=gf>@#|=)w}J>C&3jw=uIMyEjV_g(Ifu>x$a2M}0W zf`dydTzdi(j{F#F?bhEM__crpEzFC@AMqP=2k#vP?$$U9_s>^)gRa=*&iijd=#Lxk z|C^)#cKzL2?HdX!sr~PTcP-hxg$r+x_Jr*~IrWakUlZ!z3`g|uMVYqW-BI7b8*4*n zL(NV}*WB0a9d#kl|LB1fjr_#nIFh$4BHiLPdzq8jt%UE|)x?BiF1_zPxQ(Y!`zZ;z zom9q@$!?~%C>U~b>QTx(-d+= z^OpnDo#i^G1orl)<48sF*j=mrzgET?GiWN~!aob`zkRyki$iNs`9}tXWD4 z6k_Gbd%eMnVuEa!22DPTJxo>MtW>hKeJ&U4Ta&x;5z#oREN^?a)tdC{tuN0V;%_jf zskvOHxOvz4hk7AVwTBA1ZO-}HUE;5K$ZncBWOdosYdoTYmWyNvBqBn3Lrh`ys?$z1)=0`nl+L7k8$H#jur1S20{zG?77e zpJ4Y_DO47Fb5C!lvf zx37HOF@@B8S#zX9<0if2n4Pj#B6sxkAr`?B;wizXu)V>vE*}~hzY0#h*@LVJo=em( ze0lG9##d6N`;12COdl|G68qg^JKggoQ21G}9cOsglR?SSUES_Q$z_g7AOPe(j zI#=H5i#o0E*4ZpT%8=SDskN^*?pnouODB698lS-Zd`1V$Jx(KCoy;#skSFuysUZ|j z%JtA&G0xoft#~XPKCU(<#6Le?_mXJI?}PBX$43T-oyVSCnvkYfa%Mf6CaA1$sr6|< zd{6c16F2JnywB40QL=bPr;`dkvY@RybBT9ac1(&zhg_fcxl>_MNQd?D!4mL%gA$ubl%mpa>Z|C)2V!owt+Uj!|b;@c^| zHL{){>1sCG>6lbuA;GcIaEd74^&L8SrCnB!1`D)9(kq)fBstEM2GJVJaa1XUZ`*4V z=duJ8{4B&I3*ODkwVa2Jfdan z^0qBJ<&0>lUeFoeQ%_5`O&{^!7AalYIB&vkR^ghmI_t=JnCofIPIbA`qZ|(2s#$lv z5HDwim;*-#&-xJL)W?tg;ENa(FW#WA$%jtZ| zhz|>x>%}>%4-+7ARQdMX3io~zk`0PD{HavJkDDdja4ClCj_2H`HlIX}`gg9oi;w>_ z7QtN8KFD*jtxd>;KD;96aM@>~B*q^OHy$+)g_?^{ecvP8mThBrD>_-RTA$&1>g5Rx zO?<(PsE;Sl5uM<6JUyJApz!^u%R#+)Qf^Wj3U9ZU6~oFWzloBcH@NTTFN@rz!s#a) zm9ve^#q`T_O^pjPtFHqnSgl0}lxC`v?zGcybG9NP??0$fqjiQd^od4%9iNOlCEX!Z zB~@#P`bVbn%Kh)_6z1K`R*uiT)O%B5&8%BA&WE8-C^$Xb=#V-5WPg+Jvu|g2@>~uq zBct7WPlsgB%$thuRdQ_ijMASG-X}R3__`!v+4<)U@~FbwCe&~D4czcEU-tJq8hQ00 zw>wvfUJG5yfWyS?iI;@IErd)aa^hVYgt`;6S1oM?4PM;1ZjiCt&h{H=Vkt+~M^cLB zUfL`DN)Jsg+iPTM-gy0vE7Imo<4=V*hsQJzRy_NZO#jWCfh|>=6LtPmR=;>okhx}8 z=>zsg{ZONnme*`=j?DS_EggDa_1Ex(FKeII>biM{ zZaQQ=#C%PZ$eo#4?rL0qGfZN#Yf|tu$rJtMpGHCP9x-Zk(R&;5XTo!XP$p9P(}Fz-ag~g2n!toRwuFX_lLQqVe6l1uHY*460Mr>Y;i!Ob0JJ zW!7J#C150aKybXqmq1vV%}67-+MtGM%2rgPp!Msn{XY(UBD-obVOQ2tbM}bE5P#$Y zw+Lnz*<4%FHoe^Xfb6t`C2`kMMTIWRKkfM{^TXs5wOgrmcXW&6DV=i@O#>rR`CJrpv!9FKtJDPH5DAdDlpB`vlEJs`|T5%Kl#MyoLj@l}f&d5#~vc zZw6lNrtN_pU2XAws;1pa`r?KRy2w=rb+Vn!QXIWmqYrP=Kkq2CdYlr^B!AU#|GjI~ z148umSH+c@4=yEI&&3qQU*qTHJRdo`rmwEbjg-JHCA|d2XXVhbf&&B=aDz8cW=x;ZP1dqd==?&wQILRcu9SMd6Zf4?doYE zh1WT$r%?y=uJNQseK^Jb>$YmOZedkSytgc`Wqk6(ehPiAm)S48r7~VNI6DgRU#%+H z6(DC#m-02^y;fp*Q`t7PlI^4Wns3Gn7#t}SO&`7XJtZwtH@ARI{ zx!1DsUsu*5*Y=z^c==svdMvN4{zz?f(xF8dvSLG)Mh0X||DP;HVQK9)AuHC79)FM( zYZ|}*k*vUx8U8byEs_-|oc3ODa5M%qNr&rNjKXQqg#};FoS=okoe?f=g~DmE_21wi z8}r8rdhJbMKRX&I&V}h3mnW>z5rE_n0h&t`(25Cw)FR9&7U$;m`|t=z+z5G& z34@-*-_x$28+figTi|Bjj=)9Dr|#yNUV!z@Qn*E zDB(lEIklp2ilE>|7XoQwLD+TM%9De_B+#P^mn1>r-dJH)9e8u_p@0?-_nia1D4r)@ zUpOR46(Zo_ICnm{(KmSGv1s4Qu!9ZL< zR(Tj0RV{84M=bRE$_WYriVZvy%);aSv8}^F0u*$>fXT9=uxiKFm^GM{+Z>KnqK*TH zgzP9FHirm4xZ5%ckd1$j8YsaG*Tw;IJN{qLcq10F(}8w31k{TT&RZCT(>Dd{y$OL* zR|Jp@L-}n1I6oa|UGU5vV#UxPTo8bhMZkoOAlSn2;RS&r7Xf6i!eFz&eebxfKd~mi z9yNeY1$ugzm|Ock|AnT2tug%Hw5@2Yuj&R(0W?%#A+|tMbm-`TZV8~7($FkVv2qmk zPF8NUeOCnESWirv#X7axTUekwh)*`Ko`0+0Z68<5viwfGj_|m5+T@rGClVp|{&L>X zcgjyn4BtK~c{BD|zX}hkWZ|(u?kw8ZIYLnTYuPu){99*$b+u6;YyDZJZv$TfM+YL2 zeW7pMP!-kTbGE5eU4}U$4l|?nrPD+fKlD0|FjS|yp6Kdp9q_C!e}o#a?KLeSJ4{|= zvpVQo>u{^`CjG?^`DJ6KcE<>f#WA0lzT}ZIl=dkNA#eI%EcI_8jisIkjORY4EL}WD zz3o`VY;3FU^ME%60i!HAGcjX(D93NKUs{}E0FLJtQ*ZTRnrw$n{ z)D+q&H8h21JU-ZI&AM1rMzyxa-M!mB+Su4=&3Hz>Z{TBV zDwp8R)G(&~p_!uLz7y2FdQQp@0yD_^;``%5<7UisXcM&`PngYG8cIGrcSWHmSJ{Q07PbyQWvV-KO@^9`v9qO>)xa;HdR*S-vwH?O{k08BJ(M-~QwT^^D8s zot`VZgFA2OTn7Fvev>2Yue5)9`>xhtI&!=2CW3<ZinsF!C9CM~r1^ZN#Y42l>f{Se;X=OOsN(bLGp1ZV zMRPcHjE7U4I_%7P6Mfy$j9WV|JMl56%@bwCYqk5#t*!XZ-jFH1{XJ}S_e!()1sRis z^k-k$d=fMEGzlG!cJ>pkYbK6THZ7mwKB>)Be7u(IX^M#Aq1wXHxy#+2Lh{9=miv)x z-r2j~gcVMgnwAhpEV7UhKj5p$=Cf0{^@!`ccl+6uZP#?ZUwm*fQ1f`{M2W%sY!qhl zd0KIUUk*QqMv$)gkG>Bh(I=T?UWSZiJmmUHtnH;bFETAFQDzY@a9L=e%NUCK{ShmKZDIJ;m)Te{8h;XAFf>EGtnLnA}Te`@S>?Fv=>*+xw6 zuGV$OSR;)*N$7)_Sy-XmMMN)G%#8x^qP;U$1Sex7_EKDME9@@4Z<>g5N+IvvG5%(sMuBrO&y(ldD$nr?i^Ef$Qnshx_Mu`}g#4D%_m%q6W`axo}Wet9ED zaWVMO{ImeNCN-A&l4^Iv0yWcw>XF%$01eG#lGu^L*Wc>r%kCM98Wpfq(jM-W{Cb8_ z)1ufsIaDNuxUi!VY3!Lq@BT>nP)X1ndFbu7!-`CVuP>=TWHM>1xf@JZg0b(dOi*yaLx>q~6 zsBaw(l5J4&e@LRz@`8#yM*2h|qut7l?M~>Or=2N#HDvc19jgmCw{vexvA1Bm?2^`O z>HAS)1h+1c?U94(l^p#6RSsE7N?-Kly+=MBNZT)}s4#ia+N<9FWzgac$q@Ai zDclm>Rnq!bTPHa`#IaV@Tcwuw%Xk^Lovi72XL*Nz?(jh4u7xHSE(TO9g}{f(%U12* zlnl{?x45mY2fEKv%#`$GOr+5nF3IQ3IDz}TP~mX#BU59+LDxI?e1#NI0cN+mWRCe1 zFF$>5+4|O$Hl`pYmUZAqYojH7s>ti)p<4P22Uw4Muus|B-c2>oKAK>km@|7{8X{%QmE>-nYLS z%CH&J9zi`MlGm7Mpj3JkZzFZo=DvHuJqmp%)}Y+(R7-mS@w>N9neRLQ0zE_LW@K-o z;nO0|c6cI`eeY8?5oRR>kNUe0=2xWrexTp)FF5|znb&oWIM^j8_far`G-Bimxp<~U z{nKsPhc8GP)^Y}%w>_+<&Cfk%PI1_&XD9!Y_V+udqUs1ZwYBA)oCvR8j%8^k&b4z2 zVbElXmo=`kIRz*zvZ;jbB{aw0iVN|HSK4gv-Q~_`G1(Vl^hI~4V4eT!EiMy_EVZ*5 z0W|XBHRSG`{#^TCcfGN$JJ+8iN!d}sG7z*9voBtw^?j!7m67MMtg6Z>vgcnMC+y(8 z!zx^iyvEMZ6`Cl^BhJJbG-6w?aK}RC*`Cr%JNI&vsJT*WW%?F3V{5vv0d~D7mjg5 zG=rP*c`c#LyB#W{;=K>IrF_%i^6pJt%$=Rii`a$i=B&)^eC}IgE8%yHHLi>PyYn{O%Vnd}@p_lLJSmOZ z#;JY;1z&h6s-vv*<&Ao$w#Jg1Z{F+9Tdx@jn%Z3zLnm4LZK5a9nZz%(Zr#4yFT$%$ z)*I0Ny6fCtUYg8TOO8IuBpd?8tc4wjzaGBtIC3)!~i8}(Oe#c`<)!$_rXgm}bnRF?Se!qoE>c%c3-4~DT?u3$sl$mG+?MZo0^Cl@zzOIGwG zSvZDX7}I?viR5Yr>)@|Q%`v_QM`C?GRJ}voWKz*;s?I2;=rUL`=c;^U{b{ghp+9Fh z=dHzU%F)uMUh4MKB?c=zOc_#hg%|H?r8euz+}xfrPW)8c*rD3Mn5SM#q`U+@IQ%r1 z_?A0CU=*55=%=qfryC91MYV)zK38GJ3F#&BV-Ir|tYjFjV1DR$PVBx?c6~-Yab9(4 zDo?oiv+Z}u+Vp4la7nL!&Yh4#M-Uv;|5fOqv6v%x((9jtEH>$dUQ0awZ=@IG@Pd7( z_-8iQ#LuR#U1*%tDJ*<5*De%JbtxPi;>-kKPr73{7(`977lbxP*FMV%H!0P{zv$q z6aX9?1?WO3xM4=$O3>kfZzbv=mKHL1f*Ji!;t6*0o5Qyfb&#q`5SFOj@Pt_NMudnb z*wHtEBXI;SuxJz#P^GvF4{?Zp-)SHhYN)vr?!w{JVZjY91gxqMaH1*{P94^NgyW5P z1V~9B0qrFOYC>R*m{A~Ofal?bfQ}Lax}M^}Zzbj-mKq8F^mt<)DF{tlh*=2OoS|Sd zD>#){aH|LWCqXek+*S*A0X$E?{*}N3#~btr!1;*)`V|P1096e4o5Lx^!kYbhS_uiI zm0%+er-FvEXVy_$Gm-49>nvN=^jtU)2Q!S;T^6>m=HOm)7l5+v2Oj35`L&d;{uIb*= zUoSnx4T3Xu#D2wxoxO9dZGta9PjYDG+qj>e_?OE}>6YmI6PC+PtwpZXykq1p+qP++ zNj&!>R9VuM#AIAgM@X^fO##h_^Qn<{#hn9147Sd$_w4q!{kRn0)RQJIQjY5G|4bq?WTZiIuZ;r-S zb*jkq=eCZBKDlW~#VbY{_;}*mX$2Pzf5mp`>Ygl1rC^JTmeOn$ZF=LjGJGLlsc0)y z`IS~~6-9qh`0?0T#78ph-3$NN%G4Weu4Oh|jBRd#Mf={GAAeu{e&a(_uw>0>-bg>8Ab$GAfD6K=D&oO>Q zwC`qKS@bFSPaa$%E8dGLib20@o-7C*lqlvnacK8NF2+>Lm_gb{ujO|-I$PL1Np8cG zH~jb{Cf4kCQN$@QDDv z{bq;yO#ChN9O?9(fr<77nzV0j^NhPRv*%S&!gr?^&dFcuMZ0_4$zk2WaVAwWij;$9 zBzuQfXuFr$Jen(z?>p`Nd$u_zo0e^MHU?QGS<$=s^@oKnD2cLqlP}$@6OYi6m{bs& zV_LeA@X$`>tC^*?kPUn=c$(dBhJ;2jnGNH6#$bC-!UbOb6UuK?IzzM~W4~ZZ#)u0B zhrJy%2$XH|UcS=rQn+FpDSaWb>x~@GzVu053VY_R(i~=%*HaR-_rA7Y@r$c>8>dRR zr}Sc?NdB~|jb+`fmiTY436qDTIMo)@cEXY8E%Bs=($5T?hY~OWaZYmI*8rZ#U+&Vg+=U}?g z<-LZ>hYy!i+NfA_m{hzeXg9E?mI`|3b-&=m`RTNz_%h3>lIn`t$jfhMKJVUjROO&} zfn{>_J&Dt2ns%KMB)k{4Q+(v7c&kp6-Zx9(QSp@uPR|Bbk?9m0SHH=f%>w@4Xllsr z-Ey`z{LVkxQ&Zm?;uVEbzNE0~RAv}1aqjr9l7^Y*1hNl!sF~54^%ots_uBUR^OvU| zB9z0pC`8!bq@IoA;P41cd#MyRO+E0PW!L`Z?79UbVlid=;TkT_#LBeiRMS0nu*px}6OZY;}AkS#R*}x*9Q;1RDtH;KZ z?@IGD7)tTqayDkTp>0kZcy2y)Z^Ek|2a1Fq^y~EXL{haW=6=3B5XuxtUb3TET{K>{ z-83Vvy_@pfwwkwm^R4uSqP#KT%Ox)Y_ydlo2Wmes{<;04*B2|jd3JQKR7F@CFg_{? zKdxd`R^5flN%*+!a@+|zRkeI(!e1oaNl%HEqAHkKiGQ+vyLbG!T|6dwue^b}hKT4< zb|Vw%q+qF?ArG@Zd9}JaiR35i`W@BgI(%gL;U(c2nG~)M^$c~~7ucVkJSfL|v&Clc z&dK}a9cQ&BZtdY{@-i$jzu0MbWtiPsr4@n)bZ!{XoIN zbakh=7n=cPi-+wY=9rI6H}zPG3Q6<21iZg@vIr@5X$mO{d|jSJoJ?U4qzgPLeo2iw zp7_S`u6%!64%+@^VXghHk2TM4-%&AI=O}VG{2V&)tnHn-!fkGqjecfFE}VXHZO~wk zA6HCvePA;m(KD~Gijkh^EQNTp5R*RD4=3Y$i`}o=9DVz^-l4m7q5rsJqMUA7mP0Vf zt?Ki(%k5v?4pjWQv5P+XS8bi$_dC@Y0sf=jBMN#$SDtoM$?6!h6Fl0UUD*6BqbWpf zT6kynY!^l<&CTT15%Rnm(fHjt2-0tcb|t9`Q4@u#{o#h%4qfM4ySjuT4O4=LXd)K( zp1pl7r*)))!C}COiD0_>8nb3Id02azn^m~g?l0-7F)^hb`x+azRC(v;bBKdxlDA{8tSnp5~2I7`ucFK0fp z;HSv{A|y{Xx_VX7x=Wm}I=;F)lf56sTYgUe+!)sb1b0@ZvTB6hZ8nO0>)vcx&W|K! zLBb35Mh^QeWlxKsLsYe659L;~cR5CN>}#iOkqEnS`mzoQuhQk^DFzjq>h0Tj)k)AR zi056u_y&_c^jWehlGfJU&CUx!pHUSow|y3OI9XFIroNk9V?{!4Vn|d*zbu`!*TR7kDQB!~Q?etSCHjxNI z{#Pdmf267DE9{T75`0x+l@=Kyq9=NNO2$N*`$w$obV%olwoq01gKW~S?L+=978m8_ z#Sc5}6hnL}ur9EQy}LM^IKFGCzm~+LLnJ}@sS8EXv$FB2pHyGZNzV`GOIB&|Gf_Qu zd^)EU8C;d|O6&SNp58pM_#GaPzdt~3BS*PkQa+JY7np>JbLSNHKFMuh+;d5Z_!)16 zJ7vh5qgR;k2|mcA$S*z8`!eSc>6?*iP1M8Pl~QAg$a$f}FXNe+4i}|4s|rvRl;NoZ z=1z}JG101Lyh_}2<_7P_!6{$d92eSEcQKjA`dYd-0>^#8P(BjZQF|uvLWi!M?W9ISdV=2J=#hl zkw-kNL~}4*P1Ut`-!=2rJld()>@XL34Ngr@i-zr@hQitCA)U{uR$b}@&(o&L4)9%D z{Y8GNTkp&pMOB0Pv_6kdye*NV&%U@mqb$@RZ+^clCwSYhMwmDDM`G`j%NH6I43L=6 zJiV}?%F&hD7SS_Rk3UJy`0jD;`<#KYIdshKWnSc1ze|s|UIvMQ%vB<ZI+j85)YYmgx&vY zZ{#&9g|5=NU%~2Y#5A3uB01PkFmz#Y6tmE&TFP(4KBRIw!1=u9C@Gx);kALLui0kb z`X(Rm8g&RbN9sCT!#3pgBZe>O$=EX;d9#O!He@f)C%gNle#*ak^h$RS_d?{e#|iaQ z8PaZzMYK8FauzVJ;nBqhH+?aedv1 zdJ@zF>MK-vce3u{W@`Vrd_b96B#?9do2kWMr90s>wg22^ursxoHU9s9%hY0UG7$gF zW^0*RK(YRDJ%&YZmZ$~F|1H4LkQXedXT>2x(KtR3aHHda|4GWg!h!e{DkO#({m&aR zJRBl(VW>bfmbVi`hy6$RpQH>d9Q1k-1dbaplgInwAQlz{N-NO7$W{oBQiAN^uz3;K z;X$qzGP8gg{!dosKf?cHW&R`lPYN0f4q1L90o?%J5D<;yYLPLTxG%R_>f2Pxvgf1Ba) z#vWuKCKrsqp#v5g)XD+dZ6rQC-c1h)lCB_Nfjv8XX%gfQiRX8-vG!{}ez@<=S~<<{*&D3c zBOuFi(2xR3c!TW)_eYQA%z*Q`5(3|71o&ZZ4#&IYf&P7KB~4J)UJ$O74~-+~!kWDx zWM2z54d}ZCrA}d{k2mrlvwabeu)~ALyXS$=1^8s(9Ut$ehXiRWXv@YkKHg1F2o&cC z0$CCsJl@ztfT}KVBn3UY!JlvzIA|Pc7xwzEHA4i=3^&K)-Sv=Qw-ff35q@rh6agLkZk(!TN2A#}Rp9E&uwF12p>p9{{++HjdB= z3%yWl`}^p4cRmCVI0=GpF7)++et|Hv#~XW4lNB^L?Bc=W zjlDIo4#@Ng0@VU!{RT5W{@7a+cmci1=6JlZ2hAVaIl)&8{03m(9{!yVoK=Lu!D4ef zj?@b4?L#=ARsmJL(Aftr_;9pVSa{&k2)Bh!c;J8 zuzH)q@dlqDL@YpJp-tgAc0)R~ z&Ea@Ix={CMNGXH|k2mx{^RcxKM|kjfcfR$|1x>2KbsJY*D+qlO@T?wWnuh^rMm%`@ z(Fe-$MZgev@OYyS1pXSif>`t1ggZ3g2(GZ+o**bFM*x}w4<2vyLC-G))D(E|c%yIq z!-IgzFkmn0IFc)@>Hi&$H~9Vz#~XXlkp(h#M1ad8Tv0qA9r4A^M(BaNo*?**;%*!` zUY%Ia4y-G{fkhB_0&I%M8+wqgR|p7m@!;`>-p2F+M*>gp;kXZCPapi^pvHxW&GGmn z4?H#`%*BJ>Qse=S1v+}*tUd-uc7-*4=&p+a-!(uI@IjsEVDP_h9Gj`1z|OJOs~BjT zz&8lvA@d|fMvHK=+a@2;MmB=1}QAJ-)l zewp3yX+9l~5|fh3Yd7x~WRz6(Z0(rr^ayW^0Q=hrL^$BRr1pIZXL#j8>6x_uMV zg~g&*&WRbT+Pl-Hp>o2=WUS1Owns&w3XFe#Tha1=IvW&pKRd2IwZ%Km(bP8n-T~^z zL1z1tiTuQgIPC4h#@;?CElEnZGNQ?^`k(19y-%WVCi6N$bbnUbUD3L})7yke1O44q$ns=ea(XY<=vgIs zr6f_-C_T(MUcHDg&?YfJg%o}i9ki^7cS;mOXSeEVF1`}3o`2;lCGSAWCDUjwsL^C! z8{;JNtit%L;?>S>3Y(VWR7ppc`q^uR9Uk8g$g1xs*b&aNsH#IGdG1N9BSEA2gxxW} zE1YRL(K(}+KBZmGt8@{}V5!=bRwOcWg3~)^&&5c4GsOfKi$%`|j6dA755N0*QnBw9 zEir9_=2t@N;}uj3nNMzYh7$DfE!1c0t1O3*W)@D(J!^It+$F6+v&R}yPipa`{9v@X zk2t9Z+Wc4T*b&wU+K2nAMQcT$5T#q1oUDDVlIQn0Bs{(L*ojKZsnKcYXVdfwNvgc5 zyVH$dOcVsA@?*L?BgW4XG5dWtseLpuov!oQIW+TTQ|-kcvPl<^=9S33Oph(2q+_4_ z4112sJ>2m?=1ZH^>kGl6D6OTWYK|19f+izl(#y|k&JF4vd`WL>RcQa@WT%LgoppHz zO(Rc~aPIaeRO*X&cDVjyiLRsF$E6fZ2nPe%`pBX}?foBdOf+ce~0*GYa>5 z3pzb{p4U}a__?#I+w;cq_uMf8M$ghbh>gVUE`$FY~Y>- zBQ|A&b6%ZS38VWJ6*z{}w8%u&eT8O-HFU1LuKQ}yaLIaVm24!-FPM|~nCbxRw9#}Q*^A*?%!Q279C!< zUKpE5Zgxg|&qRt@-(xVCimjt<$sO3U`CTkT_aOVdJIDh&U`$&DqgeUUx@donV zkD{Y@oG(h&2flYihzk+qmj9d-8C*H5w$M=;WqQ6;K>myHDTETCHbbh|t^AeKVU0Qm zUmkOrJw(m$%;{jLeCH}f-Ae~fm|X0}ts3;zLJR+YE*9&mzez53ZTI~n7rRC={ExZV zwFa_SG{xF%ww8+p`9qu&4-9->Lc9wW3^Mjd3?yTO9ZMp24`+G9Ls>g%_jdo|Mk^JK|CYu@`3x$ zA6K2<;Yg5^1JMDhSHQ6o=D3Pk>(Q`j;DUa;;Gzd|Vw>Y}j+?&^zcG7|T7w~&KovQ@ zx&IA}bJBzx84v|%xI#7zj>#X^Z)V+R4+WwYx~Jp5b=*WU+~|OwfHQ0Zv>V=_+j#Od zb`*x0!hk@+^V0tg$GPIbOddKcBjM`EpuXaGMi&G{=14$YK{-JroJBcA_Tj+;yD>B< zoCM8^!95M`2Zv*|2lwVc*K)w{z`eMw#2i$K2g~SUz=GhJ`})d5wWCmCd8h@U2q+wa8GS2Jx3*!y zaXL^={qHM}2aY%BHYN{I1Z(v5M;C)pHY_xEC7Yt6fd92y5FFgVrD^Vc-iaR=P-WcY^_7?t4Oi)m z!AiMqfdd0CANs1TmHPcgje+#aI!(4UW=t4Mn7F}=39p?Ix4?{j(V4J4SV6m^baj@7 zh)hF`?S(_{V_#Jv9rw^TrkJei?E$5dS$oor#SR=f(H5|TimS1sdeT_YW=prd)WFDi ze~Ro##kG$izgiBtPJaykz@c+A>_vlN$aB5hg>T61ihT`hT;C7heoQWZpeZ$^>3+=g z_*iqF=BJ=2)0i8n_kv=s6s@$5Ty6f^l=<_s*sba(!C{)t^LL_1bkD3h&3y@Mzo%;* z8zOM~)SRxh;a9N$)@bTF8Udp{-Pz%e5#HlzxuRNDp4XhC{AY7``?Nd`G=*1MzEdm~ zmltD6iT&}})IFogS?{6b=?p$?d9CeT&hh%!Jxh+w)p4GdWb7CYIU038)H59Ujd6}Pjn zn|4Xl)lvhl>s^7JqkiIMlQg$kEdbs0^%%9_Mo zhZKih4z%v2Il6Ro*o%A4Ou6h#>}&c=V$%4pVHqWFmOKoQPs-At(0Jq^7pD5J)o|11 zC}ccvy_>k`n?=wTiit6y;(&W|A%Gt<30Svf`+_i*xRz4zf$u z<_lGOC1+BSvb>|X)UpO6Ut|}Gcs&YZv>+ayM10h_gJxWGS53Y?q-HY}Z=jH06!4X{ z;6N>xC|_d_VTZw7fLU8b$^E9hmXkfaB$ho-_Y4z#(Ru&!fmg%3QM!eZteSVDxsD5? zDws20B&%Pi`g*^!bKtx#5g+EPdE_wdrybnah~u{F+)UoyDdelkMKPRdtT*teQB2e0 zUQUI5`WKR{m)GVm$BassAD*4Q>%`xnrR&okSsLRLsx8z%fVtbRds3$7?guwQx;%q- z1m^KVMJo~uPQnk}f(MN+w@2{2HqKHcwbU%VJj$wXk!yQh_UDN=toI&NUOR!=6)$b% zAuQJ;eS>jjno)NbGq1ZMXR6u3@JEUwNL|Jm^5>!tl7s9^?)nrRc%Bx?eU}JLL4A@W z*34IKbo>>%sqehOB$cAT3sKd@hM&`CwYIm|$mAS;lBx3Is5@1zbVQ!Au0|lyHjis* zY5mck%TgX~Pf9kb56!9S`pn^#W|Zp~wo)p&Wb8*q{kq3{yUs~@_m5>HfiBy8%P-hX ztxl2eG%~y?buU=KqI5oCtU>)=&p1hP> zi$j@+-~068q{%))Dwd@(OQI_zuO9j8-`h`BK=;e@;Z3h`f~S&%58svTn6JeoO*C4y z&J4OVle@p#mS%`3HBc3nSryY@;D4(c89uaA^)vl6&5?lU?)dG8O}{^(N2hzvKYn?J zD5id&_k>IFv&0mu3mIKsMI#+3?9Cn%oNvwyoM|6!pLxpKac9rP;kzOpmMmw8r|y0+ za!9*8W_;!)J6gv@zW}B6ae<;WKA!fDuGV*6o2h+rk_B(MJ=+z|Rv;w|k^RFcjT8DM z+)Q!7iH8q8xlwEpvMcX&X5}URz-7&;HW4HG*?KcKPKKGf(*mv*v)7m1IR@WkrPf{6 zHx`;@qn7ngpOj8XW^y$RJ<6a-$Evz0nt9Xddh+|IcXP9MA~Us-5qn*lsH_X$3ig;M z(3FT7e(djJ{Z96f##3Ef!AOSVnLzL4uoUvTenViNn!pwLyGiG-5@y_y*F_a;Vf-Vb z$o44@E;4kzOff$|cK=Gnu|Df^vCwOG;}@jfBue(nEVFZ{#!C30-I{ssn=i|Ct1{f! z=5uSZ=YCSS!F$S+gHhj-+Nb5lQuKTIj!YEhR-b#iLou1fmf%%z9I7Yz2%~&68E`gM z85DddYt`(WVk_I}bcyPTUQ=gAhVY_B8%t!_o;zsUYh9t@tC3UH*(vU)tncP#yplJ0 z<6MzrbkO@H$C>c?G=0vyJ1b=M{vC1T?|a-tjP$c1MTJb$&> z1e5^>j5X*D4D_mS7au?%;F&!Va@Ydbe9&GJ2sYvF>o~G8tnr0_{y`Xs*6`r}y!v3_ z*Kdu0(FcnM7rH=;i)Z?OhvN;s4LG>73W3Wt?hgk?HHJ0$^$WWYkj%rA@i^^`vEiV+ z08nsv;CKUXWAZ>e1Z9J8Cyyf;!ybLT)hf913In}23>1BMI@ zS5Sz-vFC!DJQ75|2%IY(2K*rLgw6Wo@xZqdb&yC}800QtmJV;!ZSb;S-xL5wUNCUH z``yOmH-~R!yF&tIR0OW33~FA5Z|VLC8zkT=1mVh>FgRK<>=*Y>*x-TVjk@))5d`Tg z&}SEB>2U11utrA$ft~>P7=k1vALtT{gGa7e68-HXEhq%UR%M(z6S@xbv$?Z0ra(Zh+OF*x>K zSd(A>%|K@j4E)mLjasOb3;MWkiWkNanqdvUF?%4BgG{+`ezL+i34bj3#_Yk52ClI* zR3C`%C-={92BHVy(SPP)u*Tk)I;g0FTv%bIjyLMorw)>M&>0H`jd!O+fNCPB8f$Yn z-k5_*5m0!*cq8s_V7$8|RDJ|yy?{IuHu)utqjJDn^uNN_u0tCe%_f}e{}Zm*ZJj~7 z77F%1`PqMI+bz$2>DjeI!xre-9$nBm>Cv8q8Q1oFl}xHgPF9706fSYmg0N3b zWd$Q$pNp@0$;o{{$jt6Ga-2UFw=%?ci<~g*^6V!ibJkd*>(w5WKfkEGt@HJK%N(65 z5JxG^f3oHvWlH0*D-V6_Bx>hI0{kaZ`-Jy@7n8_%KdqL94{STC}q8#w52aUNQ753Gper0g2w2ZF_|h<~W#- z3%@$$b2L76^~(;vJKA9u-4${>`-@Ke=;hbC(u*PgXf=A&E}xI{?erYcD_8048v)9t zoH6AAi|lSS^Mfq@%@lD@0!?`&W4_&XU`_12>^kA4Q+%j?!Ibiuzq{e9GR%kZ(Z-JD z*8ISUuOFTfeI+d;A^qxdUWlrtgj#`JL9k+C$Ejy>=id4xjUtjwO&@Rbb259G(tYG{ z56QK(bQgJTO>_3BpZQC(?#@R>G;2x@-Rv?^14Qt#kr;F`bzA}az~@Xw+G^eAyGsvS z?qeL$mV96I6)NZ5>`Sx_JC~EElgT9EC+dWxM-rQt1j{|R!?O=)Z zJDj~b@YdvZgUGr4!KIQtZ6dKsoFX9@?)8)scui6u`rWoVx)Y1X-Ws7AK`kEt7o@s+no}l7}>MePakf6 zHgM$bNN|8Qvvqwyp&&O|%})`}AAGSLhwbVTuY4aB-p_RGfSNg{#q>iOMf23^kK_ia#_M2p4SLFF2U%BOGch~Amz>VwFsf^`HRBLt_p{UdZ)cl0#>g-W?K_rO8Qsu+xh9XhG-l&aTJl+oS!2G%^Tfy-8m>viV<%Rhawm zs=zmcslU!k_Q9OYZThMFQaio@PX&cGS;jWgdnHnWS{2=dw+7-gNUHVCQP#ACVk5C3 z_B-z1A-VEGH78||&u*U$<>PqTkE%}0SB?3lZ|0-NZ-s@Js&*Q`I2^rv1U>qTbvvyP z38oPtGJi6)jeqwz>nZz-=1)USyZvW>iLj^~sI)G|%!rBcUGp(jzbpSPVPf=+#mC|0 z<=#;fGj?VrQ*K|*o)x8p^vpyF(-Q66sHH1b=RdAY?Xb$g{K~YyfgWl9soi8=%2V&y znNZLWn)RO5P&+n!yon2hpr?Z%4e>)+%oa2)Mdn5Zpq&7mS1OU7mcWFlC@ok zcy*Ph(#vk{*_0y&>C%RGF__NA<;JeY?A&sptE$J%GNRaS8=Njku}#fXc$y!rC8El& zwP$y9QGKd+PW*l=UV?K4Rs)4+i~B!o`kQX2O4=KBtTt{^+bV~!JCt2<@|UClucCd# z$BWg5>9y?#nOMA;-0lDGg4md?4j0d z8QWo@5)^o*q@h=o!cd@Jm-~+3%jRd(9Vr%MNk>kH^`N%h5f3?GkZ=HzlhU)SFdJ*J zuQI#oUc`J_wU7w=84dHum4RXJehanRM>HuYCGGXb{A|lUeV4fWF?;XrCv;leCkE2q zW^|!%63$jXjG=Pt5iok>|Nzq}%Y_QwHWZIrZ@T1Ol|FFOsibthnCxo1r6H7F2nNK~iEJ!!kVm&el zl>>!|ZD=gRsCNo zi8(8u*!C6a?RBjS=aS4~u%Ve@A9bCIwD;}g ze6Li38cR28&r#GcnLf>TFD;g+!o3>z#aYh0`TSBW=G1M292URq@-h;3{Y8UJ5i6Q2 zyODwS5x+vx{q#<6=dE`dFZ8nxI5c)|=)2dYc{XeIh_e*G%uEo|%x`>~q_iIOHXgBg zsi3bD&J%g0geO~YLVnMeln3m6Bj?nwYu*2;-+9ZI(%?D`C6$b>)^o|9tvjjZQWzs8 zM)Y#>&(NUB=Bj(nX&2K7Q2P#Uxp9p zHfkzgTvg+|u7$~JZ-33l-!c*2U!%YJ^>$T6$>D}jt1@)j@R;gF*|eed_YniK2jr>^ z+i5R+enPj)dsnxK+r9H2JAjR$yr4*r0GpR|pOHTwEH3N;muVxuxJx#42bao4gv1Fct;?tM7pD!aq7-)A;4Aj(5M^BsHsg+mn8&qmBWHT=hlM3;Fe zMBI4gdiKXA)TX^9^qMYK?6E0=+^W$P}BVPmTdG5EwhH&nf>-%(9h@+r)RqaLf ztmpFEqRyR6^K%Z&FVDUjl%@fx*crplsvXfj*N#7p_YZ8aU*$h%uA=@i**LPsuxy)@ zyInz3;p{5GX=R=om^8u$2}K4B+kZExq!HE*sDGpp)(E-(kVX(*bBPB4DO+1R zM+as-V8*{@Jg>&APbMM33}y`FIM)Ai<3Rq;gw`Nr{L*%pP0cPd>p>+#0{YDSa?Jel z%={;q^&qA~K%b0X&Fs7*_&-R00VquH2k<@sRlLA;AMgR-{scO!f`6s%Wa8+0$&8u* zjHT^GFdrbFV&+$8=09bpVaLpWl9@|dS^2c0l-lVtG8*dKQ1#L8)59r$6<%AxEv7z% zaWvIfa3C@RnjN6Y-b7F?C=6<|{p5htfjfB|WiS>T2@0M8Z;sv^j(6!cCJ*UT;hGsih3s2c zd2mmLl;1Fu$KeKkUphfBtRSFYLG!WA@Hphaf5hX^1Ha?fpB`!(4>_X4Odp3H_#M6; zI4Gc0gf*-e#xa<}dUa6OdK3_~f&Mihg9A4@-njca9EXzneexU64rI|7I6_PqM;nYa z`Hg2s0tOt;6AxMtJb|+@I@BrvPA>-)!{dQ(j1Kg%0&p%VP)Z0795UH~3Z78{;7_=^ zPhlK!FxJCw0gpHCkO;6>0Cq=61f(wESS=iNF!u0&h2s!YzrT4TXet5~%?g3I1$Id= zfrsNS^~dmk#cw6@gn+pn@aKXV9!DRHHT?R!7XrT?V9^E##~XQ&!I22q)$ri)hTazN zcw=up@}YVH&>RMC`gpgzji(0{%diyz!Z=L>u@-NwcRN%}u{j>^mbV2w-q-_`DxiV| z>V~!H{PAvjTfpOuJwecv2*ex`bjm=1D97FLaa6)s%LffF3^d%3zZ?oKcP0$1$M9@C z>u(PU(g={J1kCVwV{binpl?3Z-Vp|lH}nut&JAjZ1^k5|k2DxO-q_m$9`CjXwZRes zCrLcx;|;zo;PD0@)Ky0W98;j|AMCrw8+z+?M3C8qFq}qP7)$3274Bh$&ibo|Qimci z@^+9dz!x~{Z(b1OGZ1jDY{F|=_Ko`k&fx2CNLvr817Kb}mWu!m905$t!08$od_W!- za0jK0654-@GO(T<0i-!1K*fUxk3Vq#j>j9gNT_unNO|BHA8+7p0gpFu5x`nW080Ns znOm5bF9-z`o^1oXa*!;CTs}6%L8BCDVUuK6 ziV{eGKpIJqCMA#!iG&1F=z@TNh$w;xQj{)LA3?ED!~&v-NL54-MUWy&SEPN{T=%_Z zCno0cyzlvbzweLlIY-Ux)n>J8&6;~=7Ub+=$`^~8p^%gCSzf*XI*Ytu6}B4J-?p$+lj%W5(fB2e|R{o z%jHR%uVz|<@8@;7k+-c^ylr?58JVN*5V^KR(?1aUB@Arq+rx z_4-upetht;g*6WC{q)M3spDqUT-;ztgND6cUh;PH5y#68taUD?-qDZRZ|HgQ%>~OI z39CQx_wkc5TJMQ^G3eDPO=~`QTgj_w=c`vwh;H8E`k51lK3j3I`;=#n&8T>LMA=JC zL(V)gds^O#us1z*CoDWx`L>_Bw!iy&y~y@iQFT|;ulY-7|J8?fyf?js<9f4+wfp=q zX8QCJ@19+tDKyZN7W*J)OJfy;SyGwWxPKduP&Jd-|OI^4+!@ zLtd!AzfRnr-~S#xV%Vx5hG#yr^|kerUb=GSXkE^yu({gj`WY(&G z{ke97D{pvyXvzDh4xBZ&&%VyV3(n0t?it#@`{GVXnTK~qANXp@*qf)1+EL|;#TU=M zTzlZA??yNKar5{iHAa4WrshWr9d9>zrtF(Lw=^H~QOWu>cT5c%yWq!4Efaq@SZ`-; z?oE@orfzP2wBw&K)q*ESuYWmj{p*v{#?@N=Zg|Jx*B*cA@wPRpovK|o_twUXF6B(! zaQd}cNmr^hdF8I}yC2J|dS~>;%|Cqj<_|x3a;G-EHaff7s~hf&8``JR$>)=Lx;o#t z=I;NjUhve8ZyKCFy0G@**#kmmu8bK|xvF>PnJ-gcnX;==_p!(B=|1%S>r-3DcD-En zG5?0MFYOw!e#3#E9Q)n3bSqVF^UgPpfBNI`&^2Y+oejJ0J^g2VTDOMP7XQ?~f8>}k zPrmurh^^;a-uB3Jcj(ChNuRiOc8Hkx){a_(7d>*%IHl#0K`9$eT8$OC{cKT}b0rg{|lhf;@)QV0ov*-P=pnWZ8x1QEArcH}-^AnFA zD^V)Cbh*10-#^WfyJPC72XbDXx#iOXi+uNtO55>GnZ8wj{^Hr;P2QT`BXR4kJthtu zGji7G`Zd2#y7$b|##eZ|c5!HRqIA@cezFYg%#zD`_+x_eV zp%t7jp13yg^J^U^Y`u{9_`cxE7m^cdcW!%Mufb=cF5Yziw&n*T8VyVA5HYCC$f*~G z>>5_K(yrcV%2RD>%I3)SA5-`In2U zJ1Uo+f7k7$pHKh&n}oc#X76pbe%P?D$9+4#;hCL-w*+@j3fgdeTf)ng(khm%JGA?2 zLASj5U2=KP@TbT8IR8ea`k$}4rA3KLqi04Z9h;xB*8PR^rpBwg)!f^CaLEf-M{i9S z`LJW{p{92acq5@|#!qc(zccrVvkxvl{OHW(J$`Icp$?5XyED|Al# zm*+pwV8-_6TC^A$T>tlR18a1x75hz@)6L%PHulw&PfdGqUfzi8m&@+m z+pkId2hWuH;F)IAstoV)`>URrj;q0CkKfj(c9X%~XC}Wq?Z=_tEO|1zs{fH*Pd>H% zmYT0W_gt$bADj$2{px~p3r2ftU7GyFkTIP)(8r=u4D~4 zx##f2#bYAcju`ZI|EhicFRcG!(%lKAOI2-lvBbi)ZPO=?T>P#7r<;G7xHs+mo<}RE z?MZFB^3yLqT~xBn!CfPtIqa=8KDz1Hx8_f)6qEf(w@23vJC*h2nUqRPqK@Xi>YO{` zp_k5;{c6v^uloGeq<3uDy)*AVJtMpRnxFeze|pg70d-EjwC#Mt^u{Tr@BX#xnBdj( z_br_~rCi4Dtv^)i6TD{3D<6Dz>b+au|EgJd_B&(F)Cs%u(I5668+xGM#iv42Z%nE3 z!OAH)U02_HtYQ1Ppa1?z(rZ_9-ie&vwQIYloj=Z>`RhGHcQ$w;?CBFjBQw8fIOx8) zxdUBGpE-VHb?N$Z<}~|uO^vN{OI`l)*pD|Yf9sFmj(j%i`-4q~Jn-oEC1>}%uw%=6 z-9FvXYr?pDJ&T_Bta5sVTA?rY9Dikc(8WQ|rXR}eH?K#}=p*I(t?YUtUfz9l&eF!4Z~T1ElJ2)O{%lg(g-a>Ty2rLY^!n@% z4?g+9(04~3ANy)Ycc}&4x5hUfneot^&Sj&PHS~w>U48V+9$$@le)_3jr?mXOW77wF z{?f90#dGOjKU!*G&+{c_+rKbjXb zdEmFRAAfJ+tkaW1((j5Wo%z%#SL?aW&Ne;s%lW;BKi%?G#)R^v_76`xw{q{o`<6v~ z_j%3ZZLaN0`~9JQ8`oF8HL8E(;GHLapMKxbCUN(S>^MC6>bd1%&;O8qcI7*%PkR58 zc=h8e&B8K%yBgA-j2MxmWj&-uhj& z>z?Fa8+^Ohd93_1E5{A@wGW;2HvVW2?h&S~@KeRovN{`1JvZ*LEtdi(Du7xpTj z`rEs~VL$JW+I(02yX(1!-cBSK z-t_%-Z@9bXW?$O)M%B|Tf9X+u_4?0OmjC*hS|b#W$`#$<~!np}=zS3+|shGDm4=wyT&JvCJ#mnP$ ztFw;}Z(9VeKSh6zvt;dppW}Rtp7DS1IWFI)Enguey~WMH{j^oczoDq&|LE1@E#%(t zKP>+DdvAf_p?E$)^xXgaVXcsRLxJ)V%-oHSXa8KjkePhJ^73uL9qg9tcTtbxir-3L z-bL+Dpg1fy@p^+R*e%hxi_}-ahPt@&xNtUtxvX2laTj@UEcA|b!S?@q`M+P=3zTP& zBQ*by-{$burx^Ann7VwLk>^*uMHyUs3z^CnXx_edyCfcTQOdqTmhuHkhr&iZ6tOm3 z5>Xl9$OG$$``xx#O^pu)a()irReVeU13y!e>fLFVdO5Z{J&Xw@(4mvruOo*crjBK z>V=jYpVj`kcz(Dpv~9zn-4^%Fe=6=PWb0nA@AxhxVJO6g*;SOqxUZ10dx7#2M8k)L zEABC35K(CEeTB^33zkRw@>y2i04Oq!J^WFN8$EmJ0`Q9d#NdOwTQP%ggN9g-dy5MB zB#&bhQ{34I?@vI#RZRI}SKhxUU+l^Yb>WjfJY2AZGE{tKC+6f6(G@!IA$jf#kkh^JYK#XUTJfiK!H z-(jGZ{%|p@L2puhA^ow15;g~%!Jdl9s2&G?C`C?a}6Oqospt&xle6g#~-n*gr))Q9L zCn8@VTb=@wXZJo7Uz$RTdhJbI4gdS#g(5tsvnZPi`RZLv@o)%x2n!jE$dK-$gf;nc zSWIyN4)Fy3=i>in;c@#Fwe1SU_$x4S;uRJK>nZ$4cqqJXcu_E)$NtS1g1}dSfB7k( zfF!M-0%$k)FFplK@7yEjz8WQ-S{nQeoyDP4}0GA#<9~%m z-E_5M_-9pL9yaHJvag@-UvI(it8?zS|MfjJcJ;2hKdDofnPRnywe$H;ZL|$hZ6t)m}4TM57womKrmhleameP!LTS&?PBRB$}>{nb$| zPF*aw$91%f|IwN;J#M|Z)3OgvZi)!0vGUi*7hj3*HQ|Qubc5u3-l^%2OdS01TZ3vW z{r%;{ml`kW`+ausxm6vawk^BpyBsq4=2bgCeEr7@C%$OpdnNpdiIKJLe0*5nx)-N~ zwHvkZgAMQhHR4*;OE-Tq^RBmd%sBh}xxV8jm0SL1#?oaQ#^r9UP+{?)=|?sk4eeVo zIw|I4+b-i5-*YCh=IW3&RklA}`L30pH96+acyd*TNB6z?UiQJWRqr1CYo!_G>s61O zzGa_p+Wy?D9jb3}PCl6a`oPYOX3vX@y>rlj8A*<}e%v#8=d=Bm+>*HMyY9a4JXhVn z&AHZNU|fxQwd&4%r&q+0XFnV8$x~%&9ckb3r+EeDUuTQmZ?|P}mV+~JL8S_C+s(?mN~k4jLZ2D`WALkt&>FXIv}@B94Bb2G0Fy8pKW8yj{iRV(zS!GEp#&iPI9;Po@6FWGs=9TOJx zdiU)S&B}c8*7Q~0UW;n_U-@vud){j0r}@2?CO!Rg;-{^vhu>ZE zxn;(Yb(5y8x$BdjIWMO6?zbbk)}JR=ub%o<`FSn+tb6053Te}O)%oSp+YJted|IW| z$8U8y*6HZsBUc)18!>8Y;|I$29B{hI*y~YU9CP<&b)E7>je)<`I$Wvi>h-m^JX`n2 zJ8IRscq!xI(tFPJ8aw&VjZf8YT5HmT$_XEA9I|otEjOk1I1w?hPpOwW?D_F(gHmNL z&KtA8#+=(LN4D;E>He;_^r)FxdhCHe8pLjR{O1l0C!Bd8vHI~rD;jrt=l5!*%k@5& zc5{gtYd4j5o>|*Ee)Wx=?k8L9y7ciIKV2H~@ur}|_a?Qzy+rGivwKZyb${4Huhxqk zA6enM(yN->zWj~{&Wt&*Y4Y&;(_SB3-&LVb?K@hn9Ws3E*MB{}YuAWBPHtRzPm4O` z?{!QV@aq1xTiR9Vd0T_e#}8h7`PL>sz1sdnnOA$Y8g}rLU8$pMMMd;mzIaJuSP^pf(S$Xb^XeVgxckDx6MQ8;tM=X9ZJQ)k zt91I!uTTG)zQ5wA_mWfgpBi3c`S2!L<>M1Fx>TOB``D6kyM~o$bD-tjr^?;Fee@T- z)^tkPpY`>cp~p+-9GEx#@?Yf|U$}dB)kNpjH%m_}J+0mguixAG=%Sc}hd%9d>+-E{ zXVxqK+_%rq+xX{?Bld<(FSGyVoiCkVK6cQ@3$iLtIR4%j&-=IBT5-E8>_0W;op?E` zbc^%zdmOp%tvTiA{OR>xIo7apuiEGLM4#I9@YYLTMW1R_dC$@K=`q!Q`!weJD&s5O zwYpEv3vCXbEkCh(Q23;2qs!e}vf}we)}Gbo#QxV~gTO zx2)cL!}_0py3w>=@Uy*QAK%xornke0hue0)8n=7J*d=)xPjsvCb%Xxp5~_@QsMDrZ zQdM&n^va;+?+iK8eCY1#qk6tHWYu^5_OBSb z_ImTfn@>;d-1X}A=BFBTTi^JX5_6{RsBmb|ZD9kJwLP2Me(}EfjwdJfZ1`l%rV3pa zc{&WPePGO($*X*ew|@U^nQMopRQV%o{Far&8hF3^{P}O6YOw9?k@bSpbEYI*Tv?~V z%6A(26Bm_e-lX1bbG{z>>z<@OtKa{9%WW|w?tA!)`|nv--M?zyjw?q`e6(r9XS=6- z)qc&*S$kee>3#38?mv|3lX`1twdV$RO}Mr3#nlh*4&Tw&-{H*5Lw}w3`q4+qEouDR zkMBSEZmGe$!(O<$HEz-)ANVHcWY1|Z_v=17`5b?ZU@&!a|6yy>;={ia`U z^wa|fM!!~OVyl|IgrBF(UA%4f`sF>A58IyOp8MCD%|T5T+#5CG>Ff=Ms=jfpr@!tG zxh-z{U~2mPciIk30nzcKT^Wg3we=RL}>)}bmCQS*sZ;#{M z)1`0j)_ll;jEf6b4d0frp=XH-GhcrCntxN>11HDV+UHcTCOe|E2D@u=1DO{7c=juTbP^t1|_Q|D*2MSI9=X$l_3gIE#vu;VWb# zU9h;s9)=zAKPq3viY+kk)B@%2ygZ&OX4wCzeD&daTugb~1R6on@{h_>Um+Xm0_^|y z;)QOK`MI~RVhFYXHAYbvib5vR1zN{|BknU|Ldm;sMa6sf6$+tTpu89v!z&?Jbhkyh zW%vr2NdFIu7rIF1?|c}{<6UU>pIa|hK5^d?{er z|4&+LUm^SG0wZV7y9<%>Wp@_7NW$#4m_;k$u-q_JleZKbp;twe|2NA{^bo!x;={mt zu8{sB|Jd2wJMo4sUa>5y^+M{4{KcVkz;_y0H~a9tq=?dmY@-VdoxGgu14jR2>0;Mh zI9^WV%dzlZ6YXo^kt_7>Zh_Xrp|uS~#ES5LE??}jlPFjc1+JL##V$O1=<#GS;-D49 zeX(F?N+V26kzFr#(HV^~^xmGLKJ@qsMGh=5a;9zQ+=_eyO+Nk))E72ip}2`fw*Jq>i(PXPtK5l?!xGOatSBccU!k~(1)3Kf zaj~WU4bq9?F0@FX#9sdILl?^DSc<}`LO~M?@{T7ARNmFY;!%j}zyo!37jB`?ljg{< z{*%==E7RZ4k&UWhb{(iJ)X^*3KgjRspPreQgC`sVDNaY1-YMCrb(r-Z>)&WQ!=ICr zE=ZzZJm z%5Y@n_3!1+&Pnf^iApmvQnDQb{MqbYN`L&7laiTgWzJ6To0jVskb*(U@b|I*vVKg- z$@OQa=k#+7$jHla^v>$vKgE$YbU>OvQz}c(N_AMnFwCEw<-kZdatCKQa?`T?en+3I zylf04Sj|Zv;>f{ZWIFt8DKi}zduL@}408Pa)2+Xx(+>Z@yp#-d(4T^4!JI#bjAw9i1GV9bGU3 zDZTsoF`VdAFZ^k-YX55b*E>DEcY1d3y#9{7Ot_-w^v=q*2bbki9K9U99jOlV$I;i3 z=16xu;ppecaP)U%IBhN9&G1xK0G1M`P?fUIjvn?uLYq{wess7;5 zFpth@C?+*9oxM_W&{#$mmXyvVfAeQ#qz}kR&vB%t^zDn`vHl}7ZFQhehJT36N^V+K z9w#@+T3UVc(lfYF$WnY1fFU%{w$r1nFrAE`Qj6nWc^Mi0Tn8?!vgZB$`5*Sck(-^8 z>hGVD-OrKpw|1^yV<56b4-EACKx?WSf8&UA2v%CgJA;&$}T z%a*-5)B%Gl3}se7e`YVN@Lq&Ba^Un$Me1$P})>?I>TY1v0 zJT_Wzv!!buKZYUGYA(ylo@Hgv%2#EUok2^brVmO_^*gexLCCWT=2->v@)gX}5<{&- zY;g?2Q1f&CXd9sta5f-ZSf`(yviYK9$d92x4s#|3BTRvun9vus0Qm4ocC_(l4D#n< zzl5~N%1Djxm5~lO&KEXAUJ&|UZKkLu@{39T_dUtSz4Z>U`DXfmTy;yFaablHg?TUd zs(Nt^v`Wv;$!(dIk{#SA$Pt4Bmw)4Y2y%2xPt8rsk?E0v$Ui+{@}xR{lG%#%=k(4_ zACQ}sjl47)Ow89;ySOM9y9Rqu)!+XSs{naLPW~}zp^ae3#DDP@d|elVJh?*!QUZU8 zE=>M`Nm_w_5Ptv#_%E%`g^J}Lt2CUI^VMitH~(ePzq4i%|IL5Hpd6LP{!QNed3?|m zupByWem9KEgM#``5yR<$Dxu)e$gr7zv}C@TO$+j0?JX{c@(xn|wETaEhGV?>FT@%KYvZ#0;bAEhOP9Ou$9(_e^{XStSCQNuKvuvxoKhYi)hWT zLakrI@GQklU8NrDn zz~%%e`g8o*gZ!xtgD|tH=?GEO3z9@;kVAH3bY`EdV2|~4YTf{oG)QFetjyp#=xp6! zbTu_AGh-+i?-S&R!_m;&4^I9!nEHF=tsuk2rSwPj)@T<>PwAhYG1STtm6zeq{(FXw z6x&f8XJTIezo$m$revh|j*yE8CY;?#&uNuD#Gjgwp4&SuxKBz(j?7OVS!RFhw+t5> zc0@(U|LWW8fwd&0q-W+5IqhmCH))KyjGE9`4%z8L5I_nFby0`l|IA{J!=EgeuS2FBrO}btjBwV+R+7$Ga&9iy62{5UebO(I7kFLhqDdG47lr{*WriA?^b^!E>z_^9ikw?CTwwA<6E)vSyT z6UMEs9sXeA9Ww_md&W88;NUx6ntIE@9b-p6G2yoN>K{0pwLY)XUkh)WH|_f4e^h>< zV(<0UCiH#o#B(*@cfQ^$IClT)8;zrf^sIBF+o3yFHJI9OchH^zm2aGAHTTCqrtRF^ zc-XFo8TZEPi_34mHf`U$n1{!{Q-0A?osay|JkPUja!hbqtKUnfZc3b(;|u=D z_iCqAFWfoeq1T!oIT9Ok|B8^L;5~7FZT)@G&bAG&d*@EC_3-7%<)b%r-L-Y^3zxUe z8L~e&@8cE8eZOf|zx%_(9{t`m=tEz9zIN>PKaCwtvO@97lsKZ%mP}6q%AGz8j{*#DlEvKhE zec!T)2PeNa>$hRUYrgTezn$ymrZa-yJAd!8sD^d(9)0)4$5+2H_?KEK_j@+IJEYy0 zwg1}j?6C509c?jX*Qo1>tG^w!>b9Vr-G7`J<2ih)QKbfrD(#-%ugu32OYZc#>b=vd zcJA68YahLH;GoH6Vt=Ufocqe`PLYpJ2uV4&{khXEu9v^jY~(A6^Rw68dwpBa4~L#x zdrR#ehvJ8U&6gW{Jre$5?H`*g{2 z{abk|9SkeeF}m-);cwJCx#ar`C&PQqX*jxFkGjvCJm}6DKDA@wXO9f;(|>!(qr)oH z|KR+~FO3+RSpMvei+jI__~7!GW$(rfx@+d~tuJ=p^w+PAE=FpO+(=$8Y~|ck7g%&%8ZsW6SibogSFk<*Bb% zHLvl)zDxBkKAN`Zgn#-2%bGU5zw2jx6W1PJx%H>6rC+MNVcWj8cfAqx+@+GwuQ`x= zYqO7ITU~B2ZTb_X+BfJtb=m5bUv@i@{Cjqvmz|Stj5(Re6oLHrDtDUx_wr??XyEZX^I~78Nf%mv9W*Xs zTgVgMUpu8%yRi3Sr@23u+Ig{Sm$B_z?0V_&vCWUqY0&%Ne@-;G>U;i!z9lz4xo`f} zb_cq^-xVPf+>eogrT-3>V zrR2Ip(;NS^<>>0~`ad$WT;H^a1MQxxb1V&#>;KjNg8r{cqwxPP~kDVY`=9=9_fQd3lxpJBV5?^pXHa}c!b`G2-m<3R}Zm@l*aaSk{3{8CcB z4Eb;T5jmoN3U>R#f*dVV2DGt+H^czE%PJ^R4s_>#mva#H)6ps;rEgBK6HVhro8-?8u9IJCs%w>RB~lHprJ_N|e^a$$ zmHcnr%JW@;#a#b?L0OTU-rt`SVvSS2+9B)xuT?I}mV8wgaOfybix3cQi_qm*d?#Y* zX6CE=e_4O?cg_osctT2Fe-2hgR-UZSAV-3HambacqI?3z<*{9QD!$1`!Ngz&oJxeZ zg2?oV2y12i91bIXp`DCQlbB!g<%DU(-{;|9HtDqX04ytHC!ujVA11=Shn&Gj)N0*B zvz`L2dJDWBXHC(+Y}I<2BoR?toTKG&r;|p}y zP2HvZVNU=)pE7fS#=R_85GMX@&&`;_m&#g5c!AOGrx|uUy=2WgJY_f*`5O;|7Z66{ z-!{&XGYcDK?TSPBloD1qzU_06!>|dgKf*1yZ+y0=X+nWvM|d*H{(shZxIM99;g)6w zE$~qyaA9vIu{5x`a9UfkK+jzT+@t>6oEPl5i=JU<%EjTs9}<&RmKUCjvWLLD`i+Rl z{G~wSR;=k_dLEu1PYO0}!nLUbHjW-net{M&6e_NT0+3~EWNpZ@;K4#5Y-nNvma(-* z@rSiv@Q1Z_3(l(e;uSlqVK{dKU|FDLdp%+tt+gRTY;R@6-7dU*eFfaIi1BbC~*MYbwuw8ZCa>}(n5!kw&qyqaMIRB5ZX!FS`0$FNL%YrXg6sK z2!-~5Hm8EnUeeYC2<;yD<8=S~QYDTTmeB!flwnB89eEQ*J`7 z+LfCy)@P$B@`tfL`>YaLdW$*YQWsi!E8csu^o5q*O4LF_OK-#INoS?AeY(b3G;QE_lN;-dmD-%-#s*EH$qmeU?A|#oZge!A z7B|YRlibjplz&{ei&TSqR9`9$}F1v*s=}k^N=5! zeOc+`$Ch;@o&3-)%Sz|?FnFXzlOLK+kw&tU9=8@{aiiRN$&FkNk;a~p&YwJ;UmSFEwbnaFhIHk8~Vgo#NPZo+N3AKZot zH;7ED>B0@(eK0gS?^MJDcr#UbCnAR{!XtnJ)0NvW84K$PXpT*o)w*&UX0@)|f_bOn zF$%J@@=m-B*Yg0cxJtU72lymFT6qsAH+nvVhRaMzG*^2ph`-^AS%`PTbRApbZ@8{g z2&YU}Zc)8cPYdW8n5x`5Wv1X7ZCWE9hX;B`JPyxSp4{o_fFS)WAE=Mq>FE$kJeIE@ zc5jHd2#~Ba+t>2|A&jLyJr59WfwayQ5mw$NHTAK5Jr8i1VSeqsi*sj7oLEUNj*gxO zp+wYhJpn@9Y+p}+P$DVfvZA z-osi{xL3SKWLVNVS{`z*crV*R-sG@(@p5hz{SghBrFHCxhvAC;p0)l>-bZfrEWrJU={nOsa;s+n zj6{EE(#;QhU?i9Mtn7w zI&e#Tl^1xem4TbRlvnf*qf9H$=$LeJW8X-nJh|a>yE0agMp<5aZy~DUeHdk2bC;C- z91X>Lgg9b(?R}V4zxJLOiU1;Jb%Q5z97AeZ2-$J%vliJ*bA8Q-=gT@gOa#j#O@ z$GcHXHwYI-gbbjH9FAf}Z;w1B(!eebBYx)FH^k3;E0_2wPtTk37B@Qc#80DqK=0h- zhTdl!Yf7LJ?!zvRiF5{1DUUi8%@LAH`l4tKMHXpYHy#h@M7~R0q--xuMoZ_5^$YCBLFM)P~p{t@fq%r1Kek?Rq zG>7!XbmfN54p56c&mpZMug^oDfB zbhEO;iH|PD*Ko>|Mx6+Lh?j6lH1%P)oGPK=EfT3s&4`l~?BM`UP(l55tMKE|u29 ziMKA5)}ddP*7PKW{6t#0CH}hfG=aX7>52lxUxl1-!mUvkW1=yV;>~2UMtF58_(L3$ z$`t$|4w2Tb5N;K};0VcNT{T2oS76-`ZOzvpXX{CdH|dKOZT5h?A|%PkfdQ?)CEakmQPU|Z7l&_GGj zf&4O5Zap-dgmJeX6A-JIuAL=pyY-k5-r-Yix!E?*5G<`-Cv3a*(12Ja>3V25 z3EOTxG@OKKx2j#7glV@P8cvGIZoT?D3EOTxCS)YhBf}kG8<8fICU<&h;C)hZqudg< z-3(eS0tdt@N!LTeN!WJlp@BEAn66{%kuB)fV**~xq;**djw=*8DK@+H&~Osh&1ZMC zPF#2Eq2VO1yY&))5BIEHmlc8Ct>*#+DM{CJ!AW4pbEalA2<&dX6yTju=2vbhI7`St zd)Zphtp|aViU_wtKOR10c^yq+xm&LVPAY!gdM&_{KayV|NfvfMY=>CIRKqRAD$)jE zAXbq!+(N7(ZMcP4McT~0i&!p?U0JXxHT~8i-pqKJ`^0)~0s(}|_DsZQO zjK<6c9U-HUR_2NA2$yXdC$_uwOokN3{K`DB-K{4Lq%fu{^Tc*{fE%K@TXjH?!X&?* zH7=sNTW=MR!kDi75#8N-)I zVt3$nig4*nRc;CY9=${0xn-tn-wFR7`=dO@hElvoH9(NmnBQz#7vbNdIv12s;(=-zef)n7vbNdhYeoHWq#$BQoBbF8wBoPx{fW61CQQGTs#gu zdb}VkkL1_m1=1F2<(6{0xFOjfzyrXe#|t8|Grz8T0=@*IF!{-k9w?Bmm|ywh0pQVF z2;?cI>)c~7apalWcmR0xcyaLn@aXXZ=}JoLodge^lh(QC0pQVF2&5~fE4MrlJo?Q5 z@)XmRTOJ4=Jy0M|FXs9^@_~{Co5`fIK9n^*C@5?mha=*F{m@qsIZ{ zAIY!B0R$e>X0F@>c#mp{+yr!wYKdSk#r$S85z>jY={<~WNE?j8ThydY?`5e%+_2{Y z0u)otK7as4+KdHWOAuO*0|-#0m0KdZyk=*u6bMXAH**CMiL`P{MEB_ELPTP^@`L6e z{FvH^*PeVd`>yy85r?IfTjH}v@gE|Mq$~c*HiRf;YA0TM^osxl9OhQuiN7AzF+oIO zx{fsQS0040`%b)-urD@EgcY|tLtFJLw?tTv;y*+Zsb9Y+yNR$K#eX*u)uUgOA%ZZ! zj;)2Lde?vm!gS@2BD6-briswawo9t2x6S`@M6l}CH@ER5Cj1!1XBn^(^hH!;+!2o9-0(iOo4 zLIe6n$OKH)bxcI`stzAA0n>FY5D~qK;0UD8bnOcf(W?mVCIZT<0XFx7fPr;L1oSGN z!`76wY2S%}Ud3~~S0d?pU2qfethek1lW@i}UAZOVdG)&BCgOP&&tYoG{JJtg;!~@o^S$7ZHo0C%BK?U&*W#{73*Oc&HOqR#7D25 z^B&@(SFs)^F7s>qs19$oo7#z%*2A&nhFW8POP*ZYGrH0N@I13u_RV{Rj=eBR(cid zJ;X|{V!gl#uFYmFh<&y#r_79nb&C8R%9GY>Lu{S$q*syOL;2CGl0QyR;a-v7L;2CG zUl=?VRx0ufnBkgkxS=%Z)pGzRrqrhAfXBj0JqK`NGF{h&g`Ij1;KXFQj;)2AdJf>k zWV)^l!Op-)S=g!P0M1M1*0CdYT5qy&Y>1uK8!HwqW8u@Uy#mxw5tzOb`+Rz8czC(D z9=Tv?Ufz9r4hS<&9XBtr%6bz*a(jtIKE-)qHSitBORTZpP+)FiiS??1MGJ2F6vd@u zP*&KS0^ONvRwVG5wCRa-JMc{ifdC{`Wo|F;n)b`S!YTK%6@is)b1z#VRV|vMrZTse zd)W$kYNeA`mAOSkcd8@+d}ZrqMuD%Sl~?XF1LMs@WeOHMdc*=CM;^gp!63FD{ z-t{R)13x9Vs(ZZL%RZIw;R(WYvs-|lq?KFlWuK}ZfsjmBZn>AOn278RlAXGjyxgl+ z$U`gDs$F^K-t;Nvd$~7#iuph^X-zdaKs3@ib4Z4Q%k-Ul(+U&A*0?vV*mD-mzN#Dq z1e4knqk&+gbu1{?m{4;cL# zcIXSzsBkz4%s|wF1F}LB)M>)o_)t9mI zS=gc20>qO1io(*Fz&BVR7E=v6_$+KuOa_86-Ha@r-63sO8Q#GmZB{WbjI(6lALME^-fY>&%Fr4hCS#tzai;;$dc zB75NLH&BhK%DZ46ax3q03k0pai<|>mxfN^#t=x)S1OFxER^%Gc%B^4}Xyq2n2EM%m zmzb)&3RWVw)-G5H<2S8cRy%_sSaDf>v%tj)7^Oa*JdryiM&Q#~@XCm#YA1N)rOm74`K`XZ+H-T1eWuieV zx1uEjt=tNBf>v$?J3-srVs{F+cI%+5)@^PCe&{B zJ1CBYIh8UTG{?f+96*yBb1H%6SeSbjXmV$6I-tp&Ifp>A??&DRP43LOf!!$F z*&_>z+!@&(G`TafJ!o=gBwEnq&YUBl$(=bzK$ANoSAr&Y=Hvj)u`{w9XmV?$EzsoF z$UoSP!mT~;pvaw(M?jN1bB=%}cjg=cZE>eFM{I>Rgtg9)F5JLLOKIT-PE|?^H*iui zG^$feA?!98JNQays&EHi38jTQ_(~`(+`(5uY2gmO5=zV1!B;|QwjNkXNLEWE>>joj zm`P$Sd?ie2Vy*EXtb_cl-JBz!WoBT~uK76@=Hx&+$HJT(pe=5cTNF2rf~cKX3%5N} z8?hFK&q}lJ<{Xi|DXp7xMD`|W9cf}Qj9;}pxiLB?@g8v+fa)d~v~XU2S@2F;l; zIw#N;H_9!s8NL{%HDWW|D3m65=3GK~j+Hr=V2;hXFee3Q)^E-R(41*=Hh^aD&Dj8& z^_jB)G<$2#2GH!SIU8W^ZMCN>iFk@{-G*P{DUAG-W_#u|Kza7ZoCcuTzBvs*vwd?K zfM)yVG{72V`{pzN&G9v-0ciH$;6G^g-{3!Jiyy-u{fWY0tzq*^eWI;AZuRMnw|!sB8`GJqe*`u&}KBTs+q3bqO)qzhc(RF z^)$emmfU(8gc33FInDHqhza$W(wqy$f5dHMd9yF!wnf^Yh#U`UKL}HO_Ek>baJEk zj}P(i{uLe|iTYUAd*i8K#IIN`#chv3a8e zn^t=|wv;f#6!D=_k@ghvvBpU2Xc8gA6!9VAGTrbeVw6j{#R_Ap8C$F{(uP~CFw$lv zU`>!V++q!oHrxuts1+{;k+th-gB2mU^|Zm9lQv_CZAe;cC;q`t#2y>^^Mt`OL}{)w zJss%JgLE?%0&r?Wj5%QIdRE{EX-&@xdiQ|Vu^|4zkHoY_i7`yi3d|wPE4Rcy_?2jW zj*Xrbm_y00X9ebvv~o)XlqVdlm4G>9y3QPBM7$=i>Fm9p4)o_i{W@2~FnF4n{KPQ4 zh^#b6Th9af@1Rp=<B_BzczPbtp9kAS=iWj*JrC&5gLLJVh^MuQb`q(|yM=&yI$%_pu47B7PW_NEsvK)Q z4={?%uk{nrbYywM4%5?t{yB(yqP$xOrgsne=OA5q=M6hd?;aQ>X-)4Q^v?mUV=0KH z2!Sy|ZuKHYuVtO77qN^HX&np7fa*7lbQueHrkHu=4O{(&kuKbX>*-+m>jXN7kx@f? z=`=IzKoQR1#$qZboT(eJbV~B;(Si6Sq;+U0@P+GPf%j^dZZ?VRF*WN4lWbkD4s_2! z?PlQUo&(x!89aH#+6=dJ*Fn1BmhL)uWyVY--E}~lErUUk@_Ja%eFwA|YT5DXR)BiR zoq{plcaYl*Jl%JI0;cciwbZWA4(Dmo+IPZbxKT1mKbfw*rT7T97JKaJ-h=wIw-g`4 zjamtukUxcQ^i%3n_@+Y-XyuOrq&g9!Jo(eh0v&viU;D=^w>l9cKS$3fl0eI*gBy(D zmsf7M!5Er=3da|v$)6qv7&$4g#{ou;w9WLsrh5=-)7c?B!%@X>LlHAv;hXM4$gjPZ55MsE43sCg3aE4^ zLb{F~;TygtT0gl}KoyOHy0l=_$gK**bSFYQCFPEA9K*4x(k8U-eaMvdk@A~#!4M&LCZQ+M_SP2M#W>g3qcA})ZnFF9chtY z#!4M&L6ch*h{Jgts3R@X$!!4DDDbN5EM|rLsX!dg13_J9kxu>ssKx_9Lq8y0_OS+6 z08Rb^sKx_AU1^an`&gZ4LCZ>0=UL1;`B9M1OHDiwNmvDT$B<3ub#^(~AhH0h&umA&*`}5Y)`Vrxy`u<(5Z+dfH$SajI12 zrB@O1n}ts=BGAe$j{von#-s^%W)sqj2x6g*1rG$Z2bLuweN}x1y^26P@&pmp5l%w6Nokc|5wlai-D%f|?rMC7>>LUeXX!MA;yRI3AgGBH z@^jUw086(Z?Pyb7@N3j(eDfqnJ* zlO@31IyF=%sF4NIITebx^b^8ON~ezatfmUc&pi|vJunMXc(W`iKI_MROevS83ZPgL z!i}o8G3BInEG)cLG^d{rZV0-JiMRUU6!pv4>!(YZWYRho6rlBU9@1s(^@AE{XyK`hJ%0?&{5FU2HACK695DEY`WSYUD+i72JT`QjDXZd&l+SlywkG=v{^~? ztU>TX!#h1|KpTjmXANkxHt1Oc+RP0-Yd{-j=~)BXfB-#fKpSRd;ld5UUTJit!Cg>m zr_2i{3{B@uE8Ie{FC(dNi#Z^z^soGaclyI^zwF|)L1s*(0ZUs*|nt;}x zpfdGU1rM?(^7VvxkgqmWrk~)<;bn729Q(ws#r=#575f381sNuZixr# zyefP$UAd+FrOvCuC)1T%3lCIwmCofG8w(v2SzVOB;9g<+M)^yfSA|chU6EBp&wL|G z=}28yk&k^x~rt#AvMOXfF=*Uh6| z-AtiElZ~rxrl4iHshcTiIqcNU6tpZibu$G`ZuKHAt2wY4;Bv{_$}Km(TQ$0Hxn#P| z121ywW*SES2DG8`LP0^@Op#7*6=3P_fc!c$6co^BdwJ8}0qHtZ0yMf+;eaXJDBRNf z0kn=Sfk)j;p$OyHs?1042k@la5_r_j6#2=m0ye!LkYBmw#SVQo+!A=y%`{AqAOIwA zz!Yxv`=Oh_qfV#D&9PPa7(SNFuPcGTqfV#D&y}D64m($)5s0yf!7j0zbSqNh^Q6D8j2m z%X9ox3+(1a5xun2(Hm${41u{0oM>?9WYvasx^tlEKyI?Grv%+OkZxFq3#XJ&eKS}PVvD*R;7BKf+l|| z+|yqKwJ3i)jnwND`N^NEOW>g?^{F&Ze-Y5iA5SCnLir(odcMFXljU{%c>bUlCO^*~ z^)n4aTzSc_0z5rPq!*f>{OS1uA5Z4jrA13i`#k`tW8mY-bmfoVy3q?$A5R?hGsVXZ zj-Q?=@bQ%LdZNI`leCT>MP2y4Xno{QPZau)puF-&Q5SwNnxFjX8RFrIqn@f^qD>2k zn(*;t>pGe|anx@Wxyh|+Tpn%red7`MFDLx#L8@(3L2L<^9wF_dyFUD}g69qgd&9$dG z7D?8qF?dXq+~|2gpA@vIGsp7X4k~UKhmr>G&S-R=qTcW{yIEf-1T$%QHMwmw?>fkG*OeS1`G+p=u*Gdb2 z)|0)W)rFHNY2}aRpx|2b3xD<_0+JuiYk(q9!mYZ!f)(nR6&2sP$*n>@-InmHa?1;jypn2tPmz5XxF6GP3AuIVc)+MD zYM7S?j90G|ULG)LQ)?r)s?_%Kf}^geD9@Fk2Y{Ccj5?npT~;bu(fYU&^Z5pWe{dEKWxQq*A;`8is8gupqJ`E_mbNKuDX@663`tBv>89TV}UmO(H%=l zX?~ealrl6=5tLF|_*1vjFgj#`R{nU3sN*Tp$)Dmj9kisB)+ehCZd^*se5zwA{*v)S zDNQGTs>zoVKcL%#6Do5nw>(AEaTOLhGMYZM|M2k?QP)+ZbM*97@bT18S5~BxJ3SSA zREw!=E7HlGivE_17HTov^ITB(R9FPb-csjxueZ0g5RxS~paMQS*olGfRw4qRPOk(2x>Qp5R_`L(}13DgA@ z`N@wWwQMGr?o~LOvb1u`b3k2C5$TuQDQ^3C4yX$%(m8sH+i*6O`czbhb17*ZO{%hd zirYTozPg~obcy_^y2r<>19F+srm{+%PLZGOtGWlTa!Grt?(y-epiZbr;cTg}4~J9c zSN@3fJ{9(TM0(U>+9$H37NxEBl|Lf8x~;+{q4HaSu znKZ0V)oIgy3UP!?8b;qd)m4YKQ_z^3G^_--0WI21X$VFJMOIC?Y*@8Oq5%~Y>2@Uo zE*goE##5>whl!Y^*)vJQDUHEMvnf@EhYQ50Dx4-$8gG#XQ>q3J7jRJ}xFCnVxDYP# zsOrNRC|R}Pw3<>~IBljh;37jNYk);qnn^A8@}jjA^!|2d1!+|0&CtoJ@fOfht1Ot0 zA)}F0VLT?388LwmRea+UCd!%F5*ZPCdb>5j3Dr>xTd+s6lLRDGT}?A4jfu#Z$EvEP ziIOU+1v%9;jP^pRm8Nx&>ZEBKi;{@W85mrkRfh zHDst@RXx+hM*|wlsb#+@7+i-2KB|Lej9}G3GeWTHpK1EzHri(z{%90Kn*FHymPS9S zyrs#Hs%~lEql#NOFvHCWKm@@~FZVwqBCao>!XjXpBJ`@tBtj>o72|#utQ*mz1-o zlIA+9*JTJ`)#}Q=R!d4+?x=#7b~~!xW$a&7?!pKR4H#*UCOjHWkOn-e)@96JRqDd{ zOUfC>WNoTKS3pILIBC_Rx?PxkA*0dk!stsVdnYjLuWEH^?W2(dY0IM;U0U*}K9_bp zs?D`9%nY<(6V%i8+=+Oi!31HGC6t+0xss|%m&Q7(&_!HQNi%f{ZW$2)K{}CS#5G#& zs9u$^dF?kxu}ef2QJpI7cT}UwD7_l_kG4CiO{JxdM*S1<4WZcW{s{W1A{B;Mpv;|` zp?Fn^O7k66q0)Fq1OGATuBuOAZY8y73o^?F@MzSdic>is)VP+hcRfZhqje9o!Zw?7 z!_-KBc&m9Kg9PyIU|cPn64^XWf`fVFeB-z&Xv|as&S=lkLp`#*`sm%XxF2svpoFr82L`QGbt&wfB+ZrsVeKT8JwdYXa5&plifE}?Q^u~< zV0?^R>oEova(gf@&DLR9SXExa9;q&#Mm0TGo^GwfSgoqzgav>UGXo|U71eGsN~`KN z@lg|LMqXq@R@H0bJBg&(NXTfcs>PJMn;OeQk1QF@{EMWd>P&`RRb?hLQ<7#F6Le5T zCT^mjj2e^SR#k}!`yfd(Yf&U6s7dWv7OXI01};>RWQI?^IH)EQS16%uRbw*Xswy!VZdFy7G$n$X)M^|T zBdNtc#zfhvUIvV_s+vsN7-`@=##GfXd$_xC#kn7!$4VQ8?Q;j8UnN(j%%OwqPN4q7}RnlrnHI=kk($IEtn(Mo1 zxcx{2W^ssAqY6s~UsZJ_O_QL~w1;z%`?v^P?H zC9XJ9%nYB%IM8s~%?UoJrjk)pRZoe#iliCF1h>prI+_Tn!jc9;s;;DYkSZ&2Rgp@} zyoxE1Dk^CRq-sjsM^k8tslIF{)^!0gS2{ zam|oQ?A3v5hERqvK_FEy;w~YS88MN0RJkZ8ta@wFqDA$7h%k%$C>oiLp-g=SQfY>w zQRze~(1#uw#nflM0nz?M!_(3F#Am+$(DuZqi%}#e`vv&mI*eVaf$4C2kTf&Ua>Qy- zI@}k8G6OAYU!MU{+z^B^D?pIaXT(t2hWHGKGCHZxeCeSbhz6dc-G_#q!!4V@71nc46oz=KqK6GOx&X~PTcJCJJTP2?nyHo(w&1Eg7r zA`O8wT*=i5;a3b-A`gKyVbOZu2c#K( zMe+e@SQOC*q+wAsw+OjoSQH&BNW-G&RzaFk6crCh!=j)MNW&s_o%)Abaac8Kn-zvt zgSOF}0fBu?y`riDY3dbq5lF3k(_7S}E~{3s zR)mAH=T49a!G%oMMNk51Sd@z!NW-E)6G+3N$Vwp1>>#gt!op~PX@*|`E@UN{*jUqzfMdm=3`(>-Z{nSpND0iacYrpYW!0L=_3BMi(jq%1CMXhX^fWAj*~ zsGQVcnN|Wwv-zcw07!e*X(IsAX3>hs8fpNR76FJvrDe&4kyNeltO!J9T9sKx94bSS zC-c2r`mRpXR;X4Dv}Q$SMNBHYBvDVptkDbrA>!=5T47o>$eI?UONaQV~8WstH2w!DVIsOL4Au3B|gW~*P57MxRn)JbDMqEXj;a6^f zAkC195C+n)NYukCzILlbJv@_ZNG?o+;{0rnvW7+Cng(%`6Iq?x8E6%Y$qcF7|3Dgk zMfC>Kut?NHEG)ZK!W`Z(G9;(jm_0GXYN&=@<8095zRoF4ieimrWzz?rkW0lkc`ZRD`FeM zSDBj0hLM^fFf+4RCPY3wn_@C^=NYUPWw8bnfB-Ee4RAv+CTUnC^5K;YyCNbV0;3y} zts1O`ILxw!ML`|ZY?cYZPNSwl24<>ZQErdOYzB^!8{$3N4axlx0qhJ{(gTo&E4e{} zw7H6C*)l3ADWqk5TykQ346G7tej-}NBq3jbOb&_a6cL*c6D2>Jx+7X9N5{v>FJ=<$ zUqV_%$3)4`cB}T!5pfa85NV8{YyWEHHM>iGd@MS-b4Wy7bZmswk9ss@LPTU_NSmmL z$f!j8YL-ewWNdU?2$B-f7xcj%h=|C?BH~&`MTWGBPwW_x7#SVcI)5k3@{fp#j!3e) zWw=d9h>DAh?j)?*um{(GA10|)NKAZd z{L>PZ*|RUdMn+>e43fzY(XEleUM&{gA<-U7gPrno{9{pxk3~myL}q(4;MZi#0C+cN zvi%E&7afHqi`^qDANtUmKikX3WNsA|k=!8>D*&c81q;L{w~@KSW8ejUPwJ465TD3~ zwTXnziP5dw;5Wo3vT{d8S*s!{q;+&FG^}_K83j%-_4ag;Y>f%WPxhonMzxCQ5R=@{ zT6Fj_VRoWPz%oo0)^HOrjm2RV$_7D08pAI#zGGbLM6AG&Hp$5eAsE3VYmFKqGBT@o zNK$S}b}mNMswgThqD4$pNK|BWGU_v1#t7JUYGPDud~#Gsa(wI7+&ZQ!ts;_=LlRLo zF{-7kH3d0)jO8c09n%8^KI;dw8O@%ze#O5rKjsj#w+QMo`VjkYY*wC#777T#4iN-Ku%_POM%Nq88zuR?L``6y|?7zLD ztW1gVvH1YOv?%o^Mqw*jIAL?g68zcvUDXv#=#Ye+3;yC{5gPb!6P=VCpV%2wX=KUh zxX36VgMHFO$0a34#Kb60SreZB*N}+V=++n{bCWKRhIJ~96;UcS0(;!ZbOp-9Cxs!! z#<&702@x&Zg|vu{OK#l-wc4w=aE`=;SR~t{SU9<(K$Ve03ngQKWD@NCULZLszC&V5 z+4J^t1S5&@ksY|;QN-SdZ6gxxrDxaCE;=SABq2VbLxMDGj|CA_mPQ;_z5H&Mj=_9H z<;Qxv8-T=!n2@BXM5a>Pb-0{q8WXl}MR6Y>=>Xp7%1=(bN4(DvBa%PS!&5hqDL5VE_Q zkQntC7AgiP7Jnw$2xLSJlbVQwQVzYAIIN<{k+~Y092l_Vzva*t;yZN?iN+Zb(jid< z1DnP69io8;$q@q8=Gu@L)mpZM2EI#*ii(IyikDyPX-mR+8iLapQyme~F#;P?=G5Mn zOw=FkWs4J8dS!SIiI0oHF2qAy)?SgBCYprsWVY(FSxjmZ-x2vkk|UC^9U`PD4Gxop z-U5q~+sN2NMWSD(LV-EtGzwsJF)k89L%#FEUa#!DwX5S%!dzRdpRsM@lVmJR$7Q5K zxMj`l$I1vqZxfM>{U05H?PhLOR$3CE2)~)(VHF+XqInRRE0vWKdllyqxG)zl{w!O- z+~Ja=Ahbm!bN0=xJ8;I>TqY-Wz#$WuY@OrAtZi#kS!82v3loQzaWQtEnB|;4AleE z`XwA^xKRXHzu@>%ClBiv+^p0X-TDPWvl<9nzlgl9&uUmddF3Y~6k9)0oHi0Ie*#D5 z=(A{a16MP9q^zIhZi6_|)?&7PLNVN~ZCtm0LQil@w&B$J30=XBwm@BSqlD>K{<`D_ zph0`Ag3=pUOyticy;1vKE0^>}eXseG@L+^B>j&wMnnGDWNq0O(NV9&D?&t?`>nB!a zBx>s?>5hI%v3^2#5G*%;r)hhy+A}K`x`Uv%`Nu)-^N3rUe*i_3i72`GhZzlO%uLoq z!+hAP=NlNg-y>$Cyn=>pLACB z(j9$&-TFzogQv>#7nJVkGZV~(!P3xw)(@B+#01J;`Tx__-Sql#9d{nz-&es+0DCc^ zB~cO`7zQ$N0tCs74aXS-7-T_9S1}VsG$ zQ|9*jr)D}&X^QWmna)#Y*L!HD^OPy`9-7^Gis-+GW;##7()Z9z=PA^6AP>oE{A4m7 zd1}#ho-p61?nDPLTd5%LUwQZH_un7>@YL_(12V+ucA(2sLyZbdF4&OcQ?&QPyN4b> z?!yP{5adU0`T?6cyN&wtdo$^$Z#{nv+I{_@%558uA| z{l7o3Lual0_1Q0e@$mc~UVrNartF8`xI8#x{P^In9)I-HAKw1$^#_MEK0f!m|Ni6S zv*&;F>fNjF-~8Ld^WTt(^V)kw>EZeRe)XT{-|yWo56{j6|Le`S-udSrAAkL)ci+GM z!2{3#`L};>e9xZ$&sRS_KKsc}pBdM)=l|#R2-Xwuph_w*MEBVhc|EMC!hcB^}FxSk3avXKmGpSAHR8b(7$>6 z`0Cv}@sF>5_xLZ*{`~sgAD;ceq~7}Mvp>H2=0D8H%fEU1=G#Ag^XR!he*2vVKl|b@ zzXkupCa$shhm?Vp}%-#zXUCc0wsbN0LP!G}d( zo}=Lm^Ig~p$1d#Dy)5ixlU*_T*j@t(6&bVSg>hqF-&K~7F-rs5nEcJmSF+@Y!prXo zV~t?FVnRlH-|*1UE3ePV9N%k2gBwTEr_bS{CrEI`<|5ktoRrwSOUGYpKT)<3nU~+2 zFyoqsV9Kclx<03s+*+%NER3kWJm=DeajP!uB;Q;yQJFnHO4lfU*XLvjuiwL)dS+ZV zG7gtd-^C41U*0SBnbt#nF7zw}zxPe;+sOjG{+`Uod{=?gnwz|pQ~R>sJ!z{~%wubh zFu!y0&3aA`?>!H>Mj4Cr{RY$RtN<%(_2L)^>-SFc zsfC@S<}0SeWz)0R^XTR4xl_Zmu+!alVW;A7VW*~HVaH{E#cuQ*(dw}{)^p0cf}OhI z_1vi&TG&Y&zGABN@_Q0Yv-Yw%mwc0CcY5Kj-#gWL3p*M3S4?A|th1O^zM(23d#+xg zSa~eh?3SxEhLb0G9Sa2^^QB*9Eb<)kUHP<|ce=?rx}$5CwoE2NT~Bx2OY-d$XMH+8 z=_t{6<)j?P#N|1~(i8T&V#+-hzY;w-?uW~BI(F}KP6avE?d3VrZNgqx4Ee2jh?*T& z&E+}8v(c~Av`#Sk`kchpwI77E-Bpn85260IiG&REF$;adgh9p^?N)-*}oudS5ZLvG&rBom!pCbNVTaZ{Ui_E!*GVSe(S8>vO82_k39&oA0`q;PZW^rvv`x zP1EN-zo%2xI2bSAwJdp;g*^Eq*XI-~?R_Ib_c@wQov}$IYfeD#)8CU$8yf<0D)}$Z zA%y4=p4(@TmR&hB?XcH6doE{dH1xgavYAh^)pab|Ev)_ZoW);rn@+N8ojrGo0@v@I zihwJoeq!@ZJudgYNv}RvXRLRRGj3t0M0a7wTXw~yUN0J#vwg1XThEYiShwgL^spz4I2CGW42n-9if7n{F(@Ekw4}u|Ur4vTRM~%pyGfA?3s*N%}l|6m;<@PtJ@Sr~Kxhd<;Hz+#! zJ?3EcL&LwmdkW;QYrw6X`AX%^`q4r1UDbM7KUHm61A17-rwnV;q2tmJ9CpeiKb_l%qbX0iVj4!Rb(z-5TW(EL=jcOxuiGz*Yn(fKuHO*VU-Km@vMwSh zCzJKlcUkeLJm!j_zx8{(CDGwv@g34iPEFRQzelGzcK}{7(e&(xpz&HOzo!$zbxmPC z)1s>Jb7>1RVa@AzsVZxaR3)A6PU|`CCGu`;4ey@b0qfmUyLZL(+{suBFmscdwa)^3 zD?Chxn4D>yVIrgGyW2ieXLYU*zK*YcThE;c`g-m(En3)VQ?Rg8qj<$`d=#UyX1-iO z#ZHg1^?Rp($-+(<@)c9-y7|TnSuWWR4e&NEk&HPR((CuCH))`eymoV@1;Zm{KeiA~qoh*!V zs@AV_L*!Xg1hdyvgdjZ8cefu2HR~C;_CsT+*ioK~el=!t=Egm~WfYc}?@~LX`)HFB z-VO_21C?Hg?tb_5x?1aZy7_D@{GQul`;46OQ#F2lSMYeRAFU)Z#gLhvXb^Z8wvcJM~o7d?%wc~Gs1_EYlk6@Ae zRFLrEQA;+h$x;tpVOKi_>ATgrxEMoMI$Z78op-B;@w9CJmFG?m&dXYH4@JgHS?oId zMAz@sK3sl}gwOb>ozW9nQ9VZtn!SEJ|Ixk0^SZxur0@+b976~CCGPz-wb*nz#)S^_ zjmud01jC15;X}OW84E0DM!Y*`MkB7A8CceDMAV*}MqS}Uu<)UAQ}4BcZ8^hJ(3~PE zB3Ua~;%`J*&x~Ffd(X8dj;;cWuA*aD=_M=qyNF;vn0Ah_an|bzSGL|LihR` z$4|)ei#(Sz8<{6(Hns*8Bs^Qove4=Ht~YO|`gCqQ(4h^gW9EkGgbt|aTQ;(Ux*y#4 zTi2sTMBkv@N7s}6(mm4JZJ%jv%wmUXU0fR1Q*FyPJ<67DbRg}aV@Xa2>2VsxU+Mlvr_r)Gu_st` z8Wb6whUyrdX4J{dL*JmxgHDt6qY7mGZv0510ihvSXov@|a+RXpZ%E48dIYwc=g7Cr zjX>J_Fb#;i4R_5+sv7}Y!TkWjPvkXCIw zc1KfbT?Z`uMI*Q98?>C*F1jsuO_}F=-^Mi9{7=KTsj$491z2=UeVU_VlAv8vX*bz( z4$n<5Zl{a9)YLgV+c6K%9&={vaB5tmGid$Xvw%)B7U^)=H%{cN3rFjwaoP7>1F0l= zSHI$nS^B{~`}%@MF8D^*l-<4eR|EL?fu#y$PlT-QKSW%gY7 zD0|L)>sXr4PkbbI8WtT+4N=y>(np752}Os4#m1KQwQ~|!Q3AV*N9d{-SwXx-|AQs( zU(dbB6j;s&a>@Cip~s&C3tdU+2v1b88lDIXPb8A#@8o(24I$mGsWAJdD`XnpE+W#o zNpR}Br)kEO*0hHYzv2Sj{6IEg_KixDm>jj~=J)Cs(8WD8NgLWS3V-SO&`G=dF-cFG zuGn<@9C6)5?!zLZ9R1i8veu)E!eZAtfw3WA@vlh%N_<+@Ty#-bbW!f6@OG>zYYOW* zXZvMcsKuMV&_ufi5@m9JrBH2NCyP5icZl{-4JR?f_p3*6b|bz+}6mt5D`OM#~BrP$}z z54au6>r5kKannN1mK3>+MV@rW(mY1#yXAF`YRA{yTGnNJw4$NWpQXQ)t~gM$E-p09 z9!Vk19!bT?y4>U|NT97g^R+*d=4ub#T2a)^To4xzaPnk^OKm^Lq$? z>k+6bIt?s7-$}9VS~XXat2sK22wLan2iM%Dd&Bm7Pc8E1bufzTRR#>UZEP5WFwdQ4 zyq~V0=NK<}jv-KNpL6e~&H)x#JJ^nm!BVR=*p8LM&UFUYFw-3XHvcwPI!HjjlRp8?k1391dY%=29OjlgKU z`EF|VBnyN#V993~tmjSth@7qF$9nhN40zomx<%H7D!ORbyE5JOJopK7j$B|=OtdKP zMn?HYWYl0=kI>5ETr_c=hvSwp%eN?|$bFAR5F=wY z7Jnx!I{#qXzcHDsTc?3xvTJUzZRdF|I=V9*zpd}``mW!bbl|MZ=gH~yd;Ny*Mn9Mj z@85H1whw+h09$8;o%@WW~|?+4m;BPhBpEV=uG zZQc%xJ~`O-Z@^^8u07%!*|NuT=Z@m*TG4^CE_{sH52bTkPFsPUL*N_dilpl|rr>ms zPf>8b%lVLR@PTgLIc;{fOwpra#|>ubx9vPw&ykdqP20OPeT7*11jsD@ASsV`Uxq8u54w0@7(8fotv_|e#1vH76}}|+QWcnY1`P2 zW%VnWu%$K0bfJ6Um>7D*fJ#oaQv@yQhKb zl{Q*yK4NC)Ou*91f?;(ocDwu@EcUO48QDu%_EK~!@`!lLUOIu%H(=3YnZH?6B{f;o zDYM!1r@}bC5m;?_see$MujgJ8qjF@M3O1y6>h= zc(BY@_&0tZs!wT6sC=JaZjh`MEV?M`GO_{|Ss}8${T5WNzS6Pkn_sUG{9bChe78E6nwqXD6KBg`eVMwZd=H@^ zVxjLQzln!2y;ui}F2!o>`K4QAUFa5@kK>#npV--H$9#9yP6Y3m!GzS z`(0T^+kZ+$s!llV0Qzoq!bt(zV}|8?OuO8@N28kUb#^aSbZ_CP&=4#%Bx@vo6&dBB zaT-l@U|8qNMV58eY$#)PWz}9Quf|U}KbJLV-yUZx_3Zdn>W}8R_zy%*;)jDJex$o- z&gvH|e+Aq5B{ZZjiRB*x_F(g8qrT- z(HSPaGxV%6_~ymfZhUi6Vs@-jCeFDi;=8XJWqtGmk;T$8ckJd((?clh zLbu4e2&wnob2q~pbNa`+Q}f&ae0@$1WWFm0GJ7ene)D3ak@z62>nuH|@1{S4@tsQ! z*7#J$Y}$}+(J`wU$a9T}N`vDu|WNB+v@k9`S? z{KYonOJk-~{@&Q^tikyDcvTX^g~eA-(q^4yWJPy`WiO`;XrDn?bZ_i0w)2=AQop>`h*`bTpq`7r&WN606JG|+IcRYHNPH@>bSk8!K~=rQyX6B|hTwfQ2TRwKsG7`ets5WcOMrH{EAJ>VD_Op|j7gG{NXduVKe~l0TBD;+T4Z?Q6xXl0d2ZV&b5mb*LTw?!PhsJwBYs0K{QTKVVkWe9 z5WZ$v!q>PvOGEtp`7X7o-*tl5x{S)ucfah}Z+}*9Rsrw)-q+d77tEf1*M{WXrWc_<;k=xEjTbUECUKujA8Q`B)N>Bjc`!fvjm8m2<;q&g9qc?1e&(B6X=6Ee z_FQxoq#GS%(qr>oA-R3trk79F1uMzisEMH~=`?*eJwkE1)S3%}B}a3*i9fNZ3!v&xpNGc0nDSrIu1 ziyY+I3=K)YitK?!9~Z%hZaXY{^EFsxkLY0RT3Gl2Qz$+t{m9}QnI2{PT#~BsK}{N2 z#wRF}cc-KII!9U?h9AJf50tBQZsVBG?96U*zvbijfQ9l&zl zr1{3K;BE>Xz{1;w>B840Eoh&aVL5x>cuEsbfyKULYQ%O{&J>>qEcSwQ<=6|th|xP? z(HUsKk*m`dXUlWfNW_M)dZ|T$#g93r^FGs4mbG;OSa`80c5M3zhvxUF5&1m{68oIb z-HMy;osQD3nudMecx~hBn-uVlg%-Tdn>KBwU7^5^rMfK<6`kuVftT!&6wQt$eU9gv zsnRa9EVRqrx#i_t9g=mKPL+GUf;*WTvD)9OzAI}aIs+^^gS7g{GT6=d>MIo%4^NzH z1v?KFoqKMapqo!p58@vp1Cl?<1yJ4M#$Kfk<-Ey`EsblE5buR|mtB%r0#&8s(=a1zs=P60Mmc-t_EHdX?}zKgLRZ=b^xgEZn$*VVgs}1< z#s66sMe|t~szv7U^X5~_IH`=9qVGL7=4!v&d@1Rei91vOlDnX+qw7o;2;FnhW{>pO z+jEn;w2L?U`nK{p4R|9@4Ih<<3dJ*VwU? z*_$ypN69Kjx1bhBR`B3OR=^@FXpR{(EWQV>w47hP+j2f&IUjnr#Ro6lHoT51pR+J+ zys}41DMB0Edi(rx^+j)=er}s4^=^wyx#{O7K+s(A*~)&m^*y@wL`R23SJw9}x-u=N zw806rX-!l&@?0u$>4l@A?~3Lx8XuD>Yo#PT`@z`AelVzWR*_%dZQcV)i>^n~#&4nZ zZ0rD7>;UcDw(Y`GReK8-`DP@ESLi*KJU8ZQbYMri=ZHy?b>2z`Ke~= znGrUP{LmvgYt>%ueox1$e4}OsS%&5wuA8(!@>`!f6)bC(FM3X!Vh$xj4l9+{_Mts$X}LU zY(H3RE7gPH2h%<=>%un8UQ)w0opRGe-(^KbpOpF*+W;1M>H6BvjW2xD_)CQZo5zky z-RGJ!@lrZhXpP^y?^a%FT@-lQ;%wx#!v(G3Fy)Y(2Yd3YdEEQE#*!GH8@X=QG?C$%cx zGC);A{4}thHwtC;m%^6))s`;jO&v?W%evY$q@`H+kQCv5H+N_9e6?nPH>dPG41a$Y z^UQZKoqTr=dfu%*K5A3nZ9O867~2$9`Rjm$#)l9xmgdAr(~r&yi_QuvUD2DeznbJ_ zf9XxxU-7MskKUAXL~qL6=uLgM`namf(iOd_@7CwRI`8?VH)S4DwlijaxU2!OuzBKy z0{6SqHfnzZ7TG9j5L;5|Lv&zR{AMzLL(jAH{Vp!MXoy=SG6fcT*6J#{GEaTvB`j+y z+akI$O)B~%Ec)b-%RYm!>^W{4|BF^!(YbiXql4({*LD7)zI7!g-E&Ew*>mK)X`EXs zdOIxn0>aL*b$O&C%V5!MrP0RLRRR;94GYg6S82zbK8rNC@@!s^@N8Jl8||+&J_$9O zCZ%ueGp*NOd_mLeFSH@QdTyU-k^?m7$6hbD!c*O(`gx@kx^?A8}r@Lsr-_x-vq+; z8hjl->AT7Agr!f`V4D}ic)qXSfaT7i!M0x>M!U$nxl5O^pZGp3xtD`&nuLWWVJOO%Aqc5_UtAQ+Tq+M+eC|(>E4BMHspB z6h>U+_hjz}OaD6W%J9r{Zf6UYUXI?)U0{Rlvk&7%$?xS31VnlK6pP@dFRG{lKvJfnn(zI@q=cVaXqdrC-5d<uQ zzA;xa%iy-u;^iKOWiiuv~=3OmcgPQc(Z3;Ucu&*A~8K%Oux-1MWRdN z%%1Eyzd-i9wSC5%+CG>BtaUD7rE!VFS$lZ}p%-}t`}|6A?K(?F-1^^V68rj%_!MNH zR=&~rx4+YKu^R{L_~e0R%yJyI+&8lw|CsF9&J82VyTX#e+6Tz^Zho)*cs!SWJcC8o zlL;1`X8MeUUi9P1Ud{zHn>ILzvPW~7L7q#$TuBtQ4Okzs4PZU{LZAJv;8?zU!(-_n zeK&Pk##h^bksX?Z#Rd~83Xi2`hsVOQ&J4J$^B8q|%+&kv-7y6A9>I3pZz{y1w;SE| z6M8Orf-twet#zi@MK6YRZtaVsP#=fczsI$-`J}@Y`9X-r#?gZ=`k(Orj%B&@foElZ zS9;Dqm#mbom9o^$ce!aw2SOA38=@aOzTm7@Zzs66-`jJ^?=%oiOxHX-7dbO&^_^RC zkLFgl=+v;BEfo^cS$S1*wqW6j6W-c9)~ZBq!J<#JG!H2N_;o4 z9oJRSKp|S|JR!NzuCkcWu2PTCixitJYxT$rz3{$t--H+X4biMUKE*eAPRKB8KZPQB zH~m^Z*ZVGZ4=i?%sCeYBQqa;Q^`&D@zZTz3UM?*6-N9;K!eZMK(~*PHb0P;}(S302 zt}~S@>n9B_`#YCc?{yZM?Yp%(=NjXzm8&?jmy%)g4Pn#GBSvWrZMZ^p@d&Y<8(Jf~ z^Ly>b!^53^Jg}SnA&(?EO$y)bG|V zlde))6H>~)i9=-1v5kCJnrgl)@1gIawms(FLxj?9_>~mv?3+den+~|h;!lJ{?(4Z1 zf8t!N-SH7Bd(4WUvsOyA@~%SMzUyG-_i`r##W8)r2kV)Z`rGeX{Cp#QQvKdn@i$F7 z?!KFT8Qx6~1Ex@No=%JIj8FU{=TiJ5dnvyuv}OrHYf?G;oWRgt17e}yaGU*p&XLKx z;w~MtOs)Mc|3==$uR^=xE*Z-tz~uLme>K_T@e9BzQ|L|oZfbM=Uh=QTgstqRH+9Ua zc`{~3XR+v=)3b1oZ$ihL{-$T)-XoGbvKy9je$%s%DV`i_Sn}^-$-f^g>nyY#e##Xd z**!fA_gYQQ!cDudob%~fn0M(&d!4nJ?Kus)X_Dcl<`x^H^>cgz~rud^V8 z5&jGd9}*S1S*!YseYX4NnD2Q=h3Fn3@r+M%rM^o;-SZ&3_kPGS?_Tx}K^vaC=V1yq z@{Pu_^bQO^owkjeH^IVBxt6-7x2zw5neRGo`G)fD z@JZ>^*(0u-d;_^;kEF-uyOu9wmb#z0=?BoU)MnyxE3HX-?^x2SeXgpAe1pY*H7UIv zOL}(sJ%Ve~m3{zOXEm8wQ?&(IQ~dxk4+-vBQ)wBSo~M6Z)>MILFpp(Fs4x5XhLz-9 zbu4>brbpfl7J13F8NC>meVZP6d%iUE>>DimHa+tCu0rdzN089u^v&D*#!Sh4vBdaz zJh$VV%**D#^MB_DF%t>1gX&K(Q2D{Gp&)CeufYWq37Grxy- zW^M{+vu}83_N~2CrXsWF9G~1gXF}lp2Iv1Cvyz|8SL$l#p&CB#HvSu zpF_KrDs!XWXOHAA^tt+TWZH)|oWRfqEVh9R!|0eQRbv~#VjJkE75zXzt?0_UYw-i? zowe&LIDK-jFRb|`u<&Q1Z1+C#u4M5=?KO; zH|FxGMU!*2?50WmxpJnbmF-@?>BY6z3Krc06(n~?_&j+s6H?zif@TrfJy+juSq6(t znO3_QGmrbGT|K+@{#s`QxYw$^a^|_5Rb?VwdjrhcbJb_BO@M+SuM$$+d28IXCj@5g8_$?sHp6MvnaSfvAe zck?TKvZCLMYV=GKGZ`QLoVnr8ncEccZn~NV1H~eb^rnjbqFqMUl+B*~px@_g;n~?s zEi?OWdMjzjmb%ozB70Ov#jgwtJ(CKN)7pN7zrey@SPn=1-LE+JBkO>03Kk^bOIsT_5kc`l%;9anr_>WrcRJ zm(Yfzwa@wVwF*5`<%8YCA#^@T?v@nr*od&4b8T31&S5#{T&kV#IHuMa)QUB_GW9P$ zH(Vn=M%eB%CJ{FGQVbTk>h`FdbM0hu&SBx5(<*lJ7jBU32duOolAd!$Nx#cl%lOhyL6E8bU7_;Ovo!tE)lCdswSDX@Saea`FLpQ4 z6P_=Lbi&*F`Jm*Sc4N;E1Kduzmgzgyi_SL~a))kd5Wj*jn!x2x;O`f)$! zU7?uFOR)_#qZ00Y(~=|mHf=igzS;8Z+g!K3&w_H| zoc+17v+`UQ$wdc#uey{Rx$t&zracd>%VS5WK99`~3!l`PDtvNUv2I#}g->#2giq>W z6j>udDc_^tFl& z28#{G%@w;F7TpZ>l{Rkt#nS3a8#n%9+FH-$Opg3i%u(j}UM>R5l$jiHgO4f>>A!{m*m@!k=GG+`lYlS(54yLKy zK7$TO=79h+kKVs9Ud*n&IAZ6)36<}rm!sdSE(+W7P3efljO*_Wwq*rO>SmrxPJ-vs z8yBXiFz+T`z;n5a36^|;!8R|3PrT^7n zJqu#Oi~i;trF%I$Yd-|Q+h5@4oTZC)eK&o@VT|3q212e`s}~%%c`iM%{2qpo=Wf>d zMee*}%%mq4EO%ZFwtX$I`1xV+^AEOV9xQ(T!M4nUC2k5!?&V?@448-u-L>b-PD8(RvMq; z&HY_AarT2vywABFOxvdOjre?F>3IQ*&v&ry8}+K=OMaMl9sbNi&@dPUx>)y3Do(yD zguD5Mb`LvdDEPs1vA^Mf^j(CS=X5t**o2BQk7C}(S5Awj{AAeaQ0ZFN@fkTYYDv&Wmy*ir2by~aK4*ff3VcP!czM>SZSj@iIh~Q zR)4V42JxHy;JeN|I1h6M>${#Va^)L**LfES^}F%SIllrgdyj+?dfrl#ZY;@zQZCN( zxPDK1$@YV2LXdj~28+(ms}eg87M=sk8o>H{% + + + + + + + + + + + + +]> + +

    + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + + Announcing Privoxy + v.&p-version;, and release candidate for + v3.0 stable. + + + + &p-intro; + + + + In addition to the traditional features of Internet + Junkbuster, such as ad and banner blocking, cookie + management/protection, and HTTP header manipulation, + Privoxy + adds many enhancements, and new features in the same vein. + + + + &newfeatures; + + + + + + + + Junkbuster was originally written by Anonymous + Coders and Junkbusters Corporation, and was released as free open-source + software under the GNU GPL. Stefan Waldherr made many improvements, and + started the SourceForge project Privoxy to rekindle development. There are + now several active developers contributing. + +]]> + + + Download location: + http://sourceforge.net/projects/ijbswa/ + + + + + Home Page: + http://www.privoxy.org/ + + + + +Privoxy Developers + +
    diff --git a/doc/source/authors.sgml b/doc/source/authors.sgml new file mode 100644 index 00000000..64b6728a --- /dev/null +++ b/doc/source/authors.sgml @@ -0,0 +1,67 @@ + + + + + + + + + +]> + +
    + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + + Authors of Privoxy v2.9.x and 3.x +=========================================================================== + + + + &authors; + + + + If we've missed you off this list, please let us know! + + + + Privoxy team. http://www.privoxy.org/ + ijbswa-developers@lists.sourceforge.net + + +
    diff --git a/doc/source/buildsource.sgml b/doc/source/buildsource.sgml new file mode 100644 index 00000000..8e4ee791 --- /dev/null +++ b/doc/source/buildsource.sgml @@ -0,0 +1,111 @@ + + + + To build Privoxy from source, + autoconf, + GNU make + (gmake), and, of course, a C compiler like gcc are required. + + + + When building from a source tarball (either release version or + nightly CVS + tarball), first unpack the source: + + + + + tar xzvf privoxy-&p-version;-src* [.tgz or .tar.gz] + cd privoxy-&p-version; + + + + + For retrieving the current CVS sources, you'll need CVS installed. + Note that sources from CVS are development quality, and may not be + stable, or well tested. To download CVS source: + + + + + cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co current + cd current + + + + + This will create a directory named current/, which will + contain the source tree. + + + + Then, in either case, to build from unpacked tarball or CVS source: + + + + + autoheader + autoconf + ./configure # (--help to see options) + make # (the make from gnu, gmake for *BSD) + su + make -n install # (to see where all the files will go) + make install # (to really install) + + + + + If you have gnu make, you can have the first four steps + automatically done for you by just typing: + + + + + make + + + + + in the freshly downloaded or unpacked source directory. + + + + For more detailed instructions on how to build Redhat and SuSE RPMs, + Windows self-extracting installers, building on platforms with + special requirements etc, please consult the developer manual. + + + + + For binary RPM installation, and other platforms, see the user-manual + as well. + +]]> diff --git a/doc/source/contacting.sgml b/doc/source/contacting.sgml new file mode 100644 index 00000000..d677c139 --- /dev/null +++ b/doc/source/contacting.sgml @@ -0,0 +1,119 @@ + + + + + + + We value your feedback. In fact, we rely on it to improve + Privoxy and its configuration. + However, please note the following hints, so we can + provide you with the best support: + + +Get Support + + For casual users, our support forum at + SourceForge + is probably best suited: + http://sourceforge.net/tracker/?group_id=11118&atid=211118 + + + + All users are of course welcome to discuss their issues on the users + mailing list, where the developers also hang around. + + + + +Report Bugs + + Please report all bugs only through our + bug tracker: + http://sourceforge.net/tracker/?group_id=11118&atid=111118. + + + + Before doing so, please make sure that the bug has not already been submitted + and observe the aditional hints at the top of the submit + form. + + + + Please try to verify that it is a Privoxy bug, + and not a browser or site bug first. If unsure, + try toggling + off Privoxy, and see if the problem persists. + The appendix + of the user manual also has helpful information + on action debugging. If you are using your own custom configuration, please try + the stock configs to see if the problem is configuration related. + + + + If not using the latest version, chances are that the bug has been found + and fixed in the meantime. We would appreciate if you could take the time + to upgrade + to the latest version (or even the latest CVS snapshot) and verify + your bug, but this is not required for reporting. + + + +Request New Features + + You are welcome to submit ideas on new features or other proposals + for improvement through our feature request tracker at + http://sourceforge.net/tracker/?atid=361118&group_id=11118. + + + +Report Ads or Other Actions-Related Problems + + Please send feedback on ads that slipped through, innocent images that were blocked, + and any other problems relating to the default.action file through + our actions feedback mechanism located at + http://www.privoxy.org/actions/. + On this page, you will also find a bookmark which will take you back there from + any troubled site and even pre-fill the form! + + + + New, improved default.action files will occasionally be made + available based on your feedback. These will be announced on the ijbswa-announce + list and available from our project page. + + + +Other + +For any other issues, feel free to use the mailing lists. Technically interested users +and people who wish to contribute to the project are also welcome on the developers list! +You can find an overview of all Prixoxy-related mailing lists, +including list archives, at: +http://sourceforge.net/mail/?group_id=11118. + + diff --git a/doc/source/copyright.sgml b/doc/source/copyright.sgml new file mode 100644 index 00000000..854d0191 --- /dev/null +++ b/doc/source/copyright.sgml @@ -0,0 +1,47 @@ + + + + + + Copyright &my-copy; 2001, 2002 by Privoxy Developers developers@privoxy.org + + + + Some source code is based on code Copyright &my-copy; 1997 by Anonymous Coders + and Junkbusters, Inc. and licensed under the GNU General Public + License. + + diff --git a/doc/source/developer-manual.sgml b/doc/source/developer-manual.sgml new file mode 100644 index 00000000..5049edd9 --- /dev/null +++ b/doc/source/developer-manual.sgml @@ -0,0 +1,2977 @@ + + + + + + + + + + + + + + + + +]> + + +
    + + Privoxy Developer Manual + + + + + Copyright &my-copy; 2001, 2002 by + Privoxy Developers + + + + + $Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $ + + + + + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + + ]]> + + The developer manual provides guidance on coding, testing, packaging, documentation + and other issues of importance to those involved with + Privoxy development. It is mandatory (and helpful!) reading + for anyone who wants to join the team. + + + + + + + + + + You can find the latest version of the this manual at http://www.privoxy.org/developer-manual/. + Please see the Contact section + on how to contact the developers. + + + + + + + + + + + Introduction + + + Privoxy, as an heir to + Junkbuster, is an Open Source project + and licensed under the GPL. As such, Privoxy + development is potentially open to anyone who has the time, knowledge, + and desire to contribute in any capacity. Our goals are simply to + continue the mission, to improve Privoxy, and + to make it available to as wide an audience as possible. + + + One does not have to be a programmer to contribute. Packaging, testing, + and porting, are all important jobs as well. + + + + Quickstart to Privoxy Development + + You'll need an account on Sourceforge to support our + development. Mail your ID to the list and wait until a + project manager has added you. + + + For the time being (read, this section is under construction), please + refer to the extensive comments in the source code. + + + + + + The CVS Repository + + If you intend to help us with programming, documentation or packaging + you will need write access to our holy grail, the CVS repository. + Please read this chapter completely before accessing via CVS. + + + Access to CVS + + The project's CVS repository is hosted on + SourceForge. + Please refer to the chapters 6 and 7 in + SF's site + documentation for the technical access details for your + operating system. For historical reasons, the CVS server is + called cvs.ijbswa.sourceforge.net, the repository is + called ijbswa, and the source tree module is called + current. + + + + CVS Commit Guideline + + The source tree is the heart of every software project. Every effort must + be made to ensure that it is readable, compilable and consistent at all + times. We therefore ask anyone with CVS access to strictly adhere to the + following guidelines: + + + Never (read: never, ever) be tempted to commit + that small change without testing it thoroughly first. When we're + close to a public release, ask a fellow developer to review your + changes. + + + Your commit message should give a concise overview of what you + changed (no big details) and why you changed it + Just check previous messages for good examples. + + + Don't use the same message on multiple files, unless it equally applies to + all those files. + + + If your changes span multiple files, and the code won't recompile unless + all changes are commited (e.g. when changing the signature of a function), + then commit all files one after another, without long delays in beween. + If necessary, prepare the commit messages in advance. + + + Before changing things on CVS, make sure that your changes are in line + with the team's general consensus on what should be done (see below). + + + + + + Discussing Changes First + + We don't have a too formal policy on this, just use common sense. Hints: If it is.. + + + ..a bugfix / clean-up / cosmetic thing: shoot + + + ..a new feature that can be turned off: shoot + + + ..a clear improvement w/o side effects on other parts of the code: shoot + + + ..a matter of taste: ask the list + + + ..a major redesign of some part of the code: ask + the list + + + + + Note that near a major public release, we get a bit more cautious - if + unsure, it doesn't hurt to ask first. There is always the possibility + to submit a patch to the patches + tracker instead. + + + + + +Documentation Guidelines + + All formal documents are maintained in Docbook SGML and located in the + doc/source/* directory. You will need + Docbook, the Docbook + DTD's and the Docbook modular stylesheets (or comparable alternatives), + and either jade or + openjade (recommended) installed in order to + build docs from source. Currently there is user-manual, + FAQ, and, of + course this, the developer-manual in this format. + The README, AUTHORS + privoxy.1 (man page) files are also now maintained + as Docbook SGML. The finished files are all in the top-level source + directory are generated files! Also, index.html, the + Privoxy home page, is maintained as SGML. + DO NOT edit these directly. Edit the SGML source, or + contact someone involved in the documentation (at present Stefan and + Hal). + + + Other, less formal documents (e.g. LICENSE, + INSTALL) are maintained as plain text files in the + top-level source directory. At least for the time being. + + + Packagers are encouraged to include this documentation. For those without + the ability to build the docs locally, text versions of each are kept in + CVS. HTML versions are also now being kept in CVS under + doc/webserver/*. + + + Formal documents are built with the Makefile targets of + make dok, or alternately + make redhat-dok. If you have problems, + try both. The build process uses the document SGML sources in + doc/source/*/* to update all text files in + doc/text/ and to update all HTML + documents in doc/webserver/. + + + Documentation writers should please make sure documents build + successfully before committing to CVS, if possible. + + + How do you update the webserver (i.e. the pages on privoxy.org)? + + + + First, build the docs by running make + dok (or alternately make + redhat-dok). + + + Run make webserver which copies all + files from doc/webserver to the + sourceforge webserver via scp. + + + + + + Finished docs should be occasionally submitted to CVS + (doc/webserver/*/*.html) so that those without + the ability to build them locally, have access to them if needed. + This is especially important just prior to a new release! Please + do this after the $VERSION and + other release specific data in configure.in has been + updated (this is done just prior to a new release). + + + + +Quickstart to Docbook and SGML + + If you are not familiar with SGML, it is a markup language similar to HTML. + Actually, not a mark up language per se, but a language used to define + markup languages. In fact, HTML is an SGML application. Both will use + tags to format text and other content. SGML tags can be much + more varied, and flexible, but do much of the same kinds of things. The tags, + or elements, are definable in SGML. There is no set + standards. Since we are using + Docbook, our tags are those that are defined by + Docbook. Much of how the finish document is + rendered is determined by the stylesheets. + The stylesheets determine how each tag gets translated to HTML, or other + formats. + + + + Tags in Docbook SGML need to be always closed. If not, you + will likely generate errors. Example: <title>My + Title</title>. They are also case-insensitive, but we + strongly suggest using all lower case. This keeps compatibility with + [Docbook] XML. + + + + Our documents use sections for the most part. Sections + will be processed into HTML headers (e.g. h1 for + sect1). The Docbook stylesheets + will use these to also generate the Table of Contents for each doc. Our + TOC's are set to a depth of three. Meaning sect1, + sect2, and sect3 will have TOC + entries, but sect4 will not. Each section requires + a <title> element, and at least one + <para>. There is a limit of five section + levels in Docbook, but generally three should be sufficient for our + purposes. + + + + Some common elements that you likely will use: + + + + + + <para></para>, paragraph delimiter. Most + text needs to be within paragraph elements (there are some exceptions). + + + <emphasis></emphasis>, the stylesheets + make this italics. + + + <filename></filename>, files and directories. + + + <command></command>, command examples. + + + <literallayout></literallayout>, like + <pre>, more or less. + + + <itemizedlist></itemizedlist>, list with bullets. + + + <listitem></listitem>, member of the above. + + + <screen></screen>, screen output, implies + <literallayout>. + + + <ulink url="example.com"></ulink>, like + HTML <a> tag. + + + <quote></quote>, for, doh, quoting text. + + + + + + Look at any of the existing docs for examples of all these and more. + + + + You might also find Writing Documentation + Using DocBook - A Crash Course useful. + + + + + + <application>Privoxy</application> Documentation Style + + It will be easier if everyone follows a similar writing style. This + just makes it easier to read what someone else has written if it + is all done in a similar fashion. + + + Here it is: + + + + + + All tags should be lower case. + + + + + Tags delimiting a block of text (even small + blocks) should be on their own line. Like: + + <para> + Some text goes here. + </para> + + Tags marking individual words, or few words, should be in-line: + + Just to <emphasis>emphasize</emphasis>, some text goes here. + + + + + + Tags should be nested and step indented for block text like: (except + in-line tags) + + <para> + <itemizedlist> + <para> + <listitem> + Some text goes here in our list example. + </listitem> + </para> + </itemizedlist> + </para> + + This makes it easier to find the text amongst the tags ;-) + + + + + Use white space to separate logical divisions within a document, + like between sections. Running everything together consistently + makes it harder to read and work on. + + + + + Do not hesitate to make comments. Comments can either use the + <comment> element, or the <!-- --> style comment + familiar from HTML. (Note in Docbook v4.x <comment> is + replaced by <remark>.) + + + + + We have an international audience. Refrain from slang, or English + idiosyncrasies (too many to list :). Humor also does not translate + well sometimes. + + + + + Try to keep overall line lengths in source files to 80 characters or less + for obvious reasons. This is not always possible, with lengthy URLs for + instance. + + + + + Our documents are available in differing formats. Right now, they + are just plain text, and HTML, but PDF, and others is always a + future possibility. Be careful with URLs (<ulink>), and avoid + this mistake: + + + My favorite site is <ulink url="http://example.com">here</ulink>. + + + This will render as My favorite site is here, which is + not real helpful in a text doc. Better like this: + + + My favorite site is <ulink url="http://example.com">example.com</ulink>. + + + + + All documents should be spell checked occasionally. + aspell can check SGML with the + -H option. (ispell I think + too.) + + + + + + + + + + + + Privoxy Custom Entities + + Privoxy documentation is using + a number of customized entities to facilitate + documentation maintenance. + + + We are using a set of boilerplate files with generic text, + that is used by multiple docs. This way we can write something once, and use + it repeatedly without having to re-write the same content over and over again. + If editing such a file, keep in mind that it should be + generic. That is the purpose; so it can be used in varying + contexts without additional modifications. + + + We are also using what Docbook calls + internal entities. These are like variables in + programming. Well, sort of. For instance, we have the + p-version entity that contains the current + Privoxy version string. You are strongly + encouraged to use these where possible. Some of these obviously + require re-setting with each release (done by the Makefile). A sampling of + custom entities are listed below. See any of the main docs for examples. + + + + + + + Re- boilerplate text entities are defined like: + + + <!entity supported SYSTEM "supported.sgml"> + + + In this example, the contents of the file, + supported.sgml is available for inclusion anywhere + in the doc. To make this happen, just reference the now defined + entity: &supported; (starts with an ampersand + and ends with a semi-colon), and the contents will be dumped into + the finished doc at that point. + + + + + Commonly used internal entities: + + + + p-version: the Privoxy + version string, e.g. &p-version;. + + + p-status: the project status, either + alpha, beta, or stable. + + + p-not-stable: use to conditionally include + text in not stable releases (e.g. beta). + + + p-stable: just the opposite. + + + p-text: this doc is only generated as text. + + + + + + + There are others in various places that are defined for a specific + purpose. Read the source! + + + + + + + + + + + Coding Guidelines + + Introduction + + This set of standards is designed to make our lives easier. It is + developed with the simple goal of helping us keep the "new and improved + Privoxy" consistent and reliable. Thus making + maintenance easier and increasing chances of success of the + project. + + And that of course comes back to us as individuals. If we can + increase our development and product efficiencies then we can solve more + of the request for changes/improvements and in general feel good about + ourselves. ;-> + + + + Using Comments + + + Comment, Comment, Comment + + Explanation: + + Comment as much as possible without commenting the obvious. + For example do not comment "aVariable is equal to bVariable". + Instead explain why aVariable should be equal to the bVariable. + Just because a person can read code does not mean they will + understand why or what is being done. A reader may spend a lot + more time figuring out what is going on when a simple comment + or explanation would have prevented the extra research. Please + help your brother IJB'ers out! + + The comments will also help justify the intent of the code. + If the comment describes something different than what the code + is doing then maybe a programming error is occurring. + + Example: + +/* if page size greater than 1k ... */ +if ( PageLength() > 1024 ) +{ + ... "block" the page up ... +} + +/* if page size is small, send it in blocks */ +if ( PageLength() > 1024 ) +{ + ... "block" the page up ... +} + +This demonstrates 2 cases of "what not to do". The first is a +"syntax comment". The second is a comment that does not fit what +is actually being done. + + + + + + Use blocks for comments + + Explanation: + + Comments can help or they can clutter. They help when they + are differentiated from the code they describe. One line + comments do not offer effective separation between the comment + and the code. Block identifiers do, by surrounding the code + with a clear, definable pattern. + + Example: + +/********************************************************************* + * This will stand out clearly in your code! + *********************************************************************/ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + + +/* unfortunately, this may not */ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + + +if ( thisVariable == thatVariable ) /* this may not either */ +{ + DoSomethingVeryImportant(); +} + + Exception: + + If you are trying to add a small logic comment and do not + wish to "disrupt" the flow of the code, feel free to use a 1 + line comment which is NOT on the same line as the code. + + + + + + Keep Comments on their own line + + Explanation: + + It goes back to the question of readability. If the comment + is on the same line as the code it will be harder to read than + the comment that is on its own line. + + There are three exceptions to this rule, which should be + violated freely and often: during the definition of variables, + at the end of closing braces, when used to comment + parameters. + + Example: + +/********************************************************************* + * This will stand out clearly in your code, + * But the second example won't. + *********************************************************************/ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + +if ( thisVariable == thatVariable ) /*can you see me?*/ +{ + DoSomethingVeryImportant(); /*not easily*/ +} + + +/********************************************************************* + * But, the encouraged exceptions: + *********************************************************************/ +int urls_read = 0; /* # of urls read + rejected */ +int urls_rejected = 0; /* # of urls rejected */ + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); +} + + +short DoSomethingVeryImportant( + short firstparam, /* represents something */ + short nextparam /* represents something else */ ) +{ + ...code here... + +} /* -END- DoSomethingVeryImportant */ + + + + + Comment each logical step + + Explanation: + + Logical steps should be commented to help others follow the + intent of the written code and comments will make the code more + readable. + + If you have 25 lines of code without a comment, you should + probably go back into it to see where you forgot to put + one. + + Most "for", "while", "do", etc... loops _probably_ need a + comment. After all, these are usually major logic + containers. + + + + + + Comment All Functions Thoroughly + + Explanation: + + A reader of the code should be able to look at the comments + just prior to the beginning of a function and discern the + reason for its existence and the consequences of using it. The + reader should not have to read through the code to determine if + a given function is safe for a desired use. The proper + information thoroughly presented at the introduction of a + function not only saves time for subsequent maintenance or + debugging, it more importantly aids in code reuse by allowing a + user to determine the safety and applicability of any function + for the problem at hand. As a result of such benefits, all + functions should contain the information presented in the + addendum section of this document. + + + + + + Comment at the end of braces if the + content is more than one screen length + + Explanation: + + Each closing brace should be followed on the same line by a + comment that describes the origination of the brace if the + original brace is off of the screen, or otherwise far away from + the closing brace. This will simplify the debugging, + maintenance, and readability of the code. + + As a suggestion , use the following flags to make the + comment and its brace more readable: + + use following a closing brace: } /* -END- if() or while () + or etc... */ + + Example: + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); + ...some long list of commands... +} /* -END- if x is 1 */ + +or: + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); + ...some long list of commands... +} /* -END- if ( 1 == X ) */ + + + + + + Naming Conventions + + + + Variable Names + + Explanation: + + Use all lowercase, and separate words via an underscore + ('_'). Do not start an identifier with an underscore. (ANSI C + reserves these for use by the compiler and system headers.) Do + not use identifiers which are reserved in ANSI C++. (E.g. + template, class, true, false, ...). This is in case we ever + decide to port Privoxy to C++. + + Example: + +int ms_iis5_hack = 0; + + Instead of: + + + +int msiis5hack = 0; int msIis5Hack = 0; + + + + + + + + Function Names + + Explanation: + + Use all lowercase, and separate words via an underscore + ('_'). Do not start an identifier with an underscore. (ANSI C + reserves these for use by the compiler and system headers.) Do + not use identifiers which are reserved in ANSI C++. (E.g. + template, class, true, false, ...). This is in case we ever + decide to port Privoxy to C++. + + Example: + +int load_some_file( struct client_state *csp ) + + Instead of: + + + +int loadsomefile( struct client_state *csp ) +int loadSomeFile( struct client_state *csp ) + + + + + + + + Header file prototypes + + Explanation: + + Use a descriptive parameter name in the function prototype + in header files. Use the same parameter name in the header file + that you use in the c file. + + Example: + +(.h) extern int load_aclfile( struct client_state *csp ); +(.c) int load_aclfile( struct client_state *csp ) + + Instead of: + +(.h) extern int load_aclfile( struct client_state * ); or +(.h) extern int load_aclfile(); +(.c) int load_aclfile( struct client_state *csp ) + + + + + + + + Enumerations, and #defines + + Explanation: + + Use all capital letters, with underscores between words. Do + not start an identifier with an underscore. (ANSI C reserves + these for use by the compiler and system headers.) + + Example: + +(enumeration) : enum Boolean { FALSE, TRUE }; +(#define) : #define DEFAULT_SIZE 100; + + Note: We have a standard naming scheme for #defines + that toggle a feature in the preprocessor: FEATURE_>, where + > is a short (preferably 1 or 2 word) description. + + Example: + +#define FEATURE_FORCE 1 + +#ifdef FEATURE_FORCE +#define FORCE_PREFIX blah +#endif /* def FEATURE_FORCE */ + + + + + Constants + + Explanation: + + Spell common words out entirely (do not remove vowels). + + Use only widely-known domain acronyms and abbreviations. + Capitalize all letters of an acronym. + + Use underscore (_) to separate adjacent acronyms and + abbreviations. Never terminate a name with an underscore. + + Example: + +#define USE_IMAGE_LIST 1 + + Instead of: + + + +#define USE_IMG_LST 1 or +#define _USE_IMAGE_LIST 1 or +#define USE_IMAGE_LIST_ 1 or +#define use_image_list 1 or +#define UseImageList 1 + + + + + + + + + + Using Space + + + + Put braces on a line by themselves. + + Explanation: + + The brace needs to be on a line all by itself, not at the + end of the statement. Curly braces should line up with the + construct that they're associated with. This practice makes it + easier to identify the opening and closing braces for a + block. + + Example: + +if ( this == that ) +{ + ... +} + + Instead of: + + if ( this == that ) { ... } + + or + + if ( this == that ) { ... } + + Note: In the special case that the if-statement is + inside a loop, and it is trivial, i.e. it tests for a + condition that is obvious from the purpose of the block, + one-liners as above may optically preserve the loop structure + and make it easier to read. + + Status: developer-discretion. + + Example exception: + +while ( more lines are read ) +{ + /* Please document what is/is not a comment line here */ + if ( it's a comment ) continue; + + do_something( line ); +} + + + + + ALL control statements should have a + block + + Explanation: + + Using braces to make a block will make your code more + readable and less prone to error. All control statements should + have a block defined. + + Example: + +if ( this == that ) +{ + DoSomething(); + DoSomethingElse(); +} + + Instead of: + + if ( this == that ) DoSomething(); DoSomethingElse(); + + or + + if ( this == that ) DoSomething(); + + Note: The first example in "Instead of" will execute + in a manner other than that which the developer desired (per + indentation). Using code braces would have prevented this + "feature". The "explanation" and "exception" from the point + above also applies. + + + + + + Do not belabor/blow-up boolean + expressions + + Example: + +structure->flag = ( condition ); + + Instead of: + + if ( condition ) { structure->flag = 1; } else { + structure->flag = 0; } + + Note: The former is readable and concise. The later + is wordy and inefficient. Please assume that any developer new + to the project has at least a "good" knowledge of C/C++. (Hope + I do not offend by that last comment ... 8-) + + + + + + Use white space freely because it is + free + + Explanation: + + Make it readable. The notable exception to using white space + freely is listed in the next guideline. + + Example: + +int firstValue = 0; +int someValue = 0; +int anotherValue = 0; +int thisVariable = 0; + +if ( thisVariable == thatVariable ) + +firstValue = oldValue + ( ( someValue - anotherValue ) - whatever ) + + + + + Don't use white space around structure + operators + + Explanation: + + - structure pointer operator ( "->" ) - member operator ( + "." ) - functions and parentheses + + It is a general coding practice to put pointers, references, + and function parentheses next to names. With spaces, the + connection between the object and variable/function name is not + as clear. + + Example: + +aStruct->aMember; +aStruct.aMember; +FunctionName(); + + Instead of: aStruct -> aMember; aStruct . aMember; + FunctionName (); + + + + + + Make the last brace of a function stand + out + + Example: + +int function1( ... ) +{ + ...code... + return( retCode ); + +} /* -END- function1 */ + + +int function2( ... ) +{ +} /* -END- function2 */ + + + Instead of: + + int function1( ... ) { ...code... return( retCode ); } int + function2( ... ) { } + + Note: Use 1 blank line before the closing brace and 2 + lines afterward. This makes the end of function standout to + the most casual viewer. Although function comments help + separate functions, this is still a good coding practice. In + fact, I follow these rules when using blocks in "for", "while", + "do" loops, and long if {} statements too. After all whitespace + is free! + + Status: developer-discretion on the number of blank + lines. Enforced is the end of function comments. + + + + + + Use 3 character indentions + + Explanation: + + If some use 8 character TABs and some use 3 character TABs, + the code can look *very* ragged. So use 3 character indentions + only. If you like to use TABs, pass your code through a filter + such as "expand -t3" before checking in your code. + + Example: + +static const char * const url_code_map[256] = +{ + NULL, ... +}; + + +int function1( ... ) +{ + if ( 1 ) + { + return( ALWAYS_TRUE ); + } + else + { + return( HOW_DID_YOU_GET_HERE ); + } + + return( NEVER_GETS_HERE ); + +} + + + + + + + Initializing + + + + Initialize all variables + + Explanation: + + Do not assume that the variables declared will not be used + until after they have been assigned a value somewhere else in + the code. Remove the chance of accidentally using an unassigned + variable. + + Example: + +short anShort = 0; +float aFloat = 0; +struct *ptr = NULL; + + Note: It is much easier to debug a SIGSEGV if the + message says you are trying to access memory address 00000000 + and not 129FA012; or arrayPtr[20] causes a SIGSEV vs. + arrayPtr[0]. + + Status: developer-discretion if and only if the + variable is assigned a value "shortly after" declaration. + + + + + + Functions + + + + Name functions that return a boolean as a + question. + + Explanation: + + Value should be phrased as a question that would logically + be answered as a true or false statement + + Example: + +ShouldWeBlockThis(); +ContainsAnImage(); +IsWebPageBlank(); + + + + + Always specify a return type for a + function. + + Explanation: + + The default return for a function is an int. To avoid + ambiguity, create a return for a function when the return has a + purpose, and create a void return type if the function does not + need to return anything. + + + + + + Minimize function calls when iterating by + using variables + + Explanation: + + It is easy to write the following code, and a clear argument + can be made that the code is easy to understand: + + Example: + +for ( size_t cnt = 0; cnt < blockListLength(); cnt ++ ) +{ + .... +} + + Note: Unfortunately, this makes a function call for + each and every iteration. This increases the overhead in the + program, because the compiler has to look up the function each + time, call it, and return a value. Depending on what occurs in + the blockListLength() call, it might even be creating and + destroying structures with each iteration, even though in each + case it is comparing "cnt" to the same value, over and over. + Remember too - even a call to blockListLength() is a function + call, with the same overhead. + + Instead of using a function call during the iterations, + assign the value to a variable, and evaluate using the + variable. + + Example: + +size_t len = blockListLength(); + +for ( size_t cnt = 0; cnt < len; cnt ++ ) +{ + .... +} + + Exceptions: if the value of blockListLength() *may* + change or could *potentially* change, then you must code the + function call in the for/while loop. + + + + + + Pass and Return by Const Reference + + Explanation: + + This allows a developer to define a const pointer and call + your function. If your function does not have the const + keyword, we may not be able to use your function. Consider + strcmp, if it were defined as: extern int strcmp( char *s1, + char *s2 ); + + I could then not use it to compare argv's in main: int main( + int argc, const char *argv[] ) { strcmp( argv[0], "privoxy" + ); } + + Both these pointers are *const*! If the c runtime library + maintainers do it, we should too. + + + + + + Pass and Return by Value + + Explanation: + + Most structures cannot fit onto a normal stack entry (i.e. + they are not 4 bytes or less). Aka, a function declaration + like: int load_aclfile( struct client_state csp ) + + would not work. So, to be consistent, we should declare all + prototypes with "pass by value": int load_aclfile( struct + client_state *csp ) + + + + + + Names of include files + + Explanation: + + Your include statements should contain the file name without + a path. The path should be listed in the Makefile, using -I as + processor directive to search the indicated paths. An exception + to this would be for some proprietary software that utilizes a + partial path to distinguish their header files from system or + other header files. + + Example: + +#include <iostream.h> /* This is not a local include */ +#include "config.h" /* This IS a local include */ + + + Exception: + + + +/* This is not a local include, but requires a path element. */ +#include <sys/fileName.h> + + + + Note: Please! do not add "-I." to the Makefile + without a _very_ good reason. This duplicates the #include + "file.h" behavior. + + + + + + Provide multiple inclusion + protection + + Explanation: + + Prevents compiler and linker errors resulting from + redefinition of items. + + Wrap each header file with the following syntax to prevent + multiple inclusions of the file. Of course, replace PROJECT_H + with your file name, with "." Changed to "_", and make it + uppercase. + + Example: + +#ifndef PROJECT_H_INCLUDED +#define PROJECT_H_INCLUDED + ... +#endif /* ndef PROJECT_H_INCLUDED */ + + + + + Use `extern "C"` when appropriate + + Explanation: + + If our headers are included from C++, they must declare our + functions as `extern "C"`. This has no cost in C, but increases + the potential re-usability of our code. + + Example: + +#ifdef __cplusplus +extern "C" +{ +#endif /* def __cplusplus */ + +... function definitions here ... + +#ifdef __cplusplus +} +#endif /* def __cplusplus */ + + + + + Where Possible, Use Forward Struct + Declaration Instead of Includes + + Explanation: + + Useful in headers that include pointers to other struct's. + Modifications to excess header files may cause needless + compiles. + + Example: + +/********************************************************************* + * We're avoiding an include statement here! + *********************************************************************/ +struct file_list; +extern file_list *xyz; + + Note: If you declare "file_list xyz;" (without the + pointer), then including the proper header file is necessary. + If you only want to prototype a pointer, however, the header + file is unnecessary. + + Status: Use with discretion. + + + + + + General Coding Practices + + + + Turn on warnings + + Explanation + + Compiler warnings are meant to help you find bugs. You + should turn on as many as possible. With GCC, the switch is + "-Wall". Try and fix as many warnings as possible. + + + + + + Provide a default case for all switch + statements + + Explanation: + + What you think is guaranteed is never really guaranteed. The + value that you don't think you need to check is the one that + someday will be passed. So, to protect yourself from the + unknown, always have a default step in a switch statement. + + Example: + +switch( hash_string( cmd ) ) +{ + case hash_actions_file : + ... code ... + break; + + case hash_confdir : + ... code ... + break; + + default : + log_error( ... ); + ... anomaly code goes here ... + continue; / break; / exit( 1 ); / etc ... + +} /* end switch( hash_string( cmd ) ) */ + + Note: If you already have a default condition, you + are obviously exempt from this point. Of note, most of the + WIN32 code calls `DefWindowProc' after the switch statement. + This API call *should* be included in a default statement. + + Another Note: This is not so much a readability issue + as a robust programming issue. The "anomaly code goes here" may + be no more than a print to the STDERR stream (as in + load_config). Or it may really be an ABEND condition. + + Status: Programmer discretion is advised. + + + + + + Try to avoid falling through cases in a + switch statement. + + Explanation: + + In general, you will want to have a 'break' statement within + each 'case' of a switch statement. This allows for the code to + be more readable and understandable, and furthermore can + prevent unwanted surprises if someone else later gets creative + and moves the code around. + + The language allows you to plan the fall through from one + case statement to another simply by omitting the break + statement within the case statement. This feature does have + benefits, but should only be used in rare cases. In general, + use a break statement for each case statement. + + If you choose to allow fall through, you should comment both + the fact of the fall through and reason why you felt it was + necessary. + + + + + + Use 'long' or 'short' Instead of + 'int' + + Explanation: + + On 32-bit platforms, int usually has the range of long. On + 16-bit platforms, int has the range of short. + + Status: open-to-debate. In the case of most FSF + projects (including X/GNU-Emacs), there are typedefs to int4, + int8, int16, (or equivalence ... I forget the exact typedefs + now). Should we add these to IJB now that we have a "configure" + script? + + + + + + Don't mix size_t and other types + + Explanation: + + The type of size_t varies across platforms. Do not make + assumptions about whether it is signed or unsigned, or about + how long it is. Do not compare a size_t against another + variable of a different type (or even against a constant) + without casting one of the values. Try to avoid using size_t if + you can. + + + + + + Declare each variable and struct on its + own line. + + Explanation: + + It can be tempting to declare a series of variables all on + one line. Don't. + + Example: + +long a = 0; +long b = 0; +long c = 0; + + Instead of: + + long a, b, c; + + Explanation: - there is more room for comments on the + individual variables - easier to add new variables without + messing up the original ones - when searching on a variable to + find its type, there is less clutter to "visually" + eliminate + + Exceptions: when you want to declare a bunch of loop + variables or other trivial variables; feel free to declare them + on 1 line. You should, although, provide a good comment on + their functions. + + Status: developer-discretion. + + + + + + Use malloc/zalloc sparingly + + Explanation: + + Create a local struct (on the stack) if the variable will + live and die within the context of one function call. + + Only "malloc" a struct (on the heap) if the variable's life + will extend beyond the context of one function call. + + Example: + +If a function creates a struct and stores a pointer to it in a +list, then it should definitely be allocated via `malloc'. + + + + + The Programmer Who Uses 'malloc' is + Responsible for Ensuring 'free' + + Explanation: + + If you have to "malloc" an instance, you are responsible for + insuring that the instance is `free'd, even if the deallocation + event falls within some other programmer's code. You are also + responsible for ensuring that deletion is timely (i.e. not too + soon, not too late). This is known as "low-coupling" and is a + "good thing (tm)". You may need to offer a + free/unload/destuctor type function to accommodate this. + + Example: + +int load_re_filterfile( struct client_state *csp ) { ... } +static void unload_re_filterfile( void *f ) { ... } + + Exceptions: + + The developer cannot be expected to provide `free'ing + functions for C run-time library functions ... such as + `strdup'. + + Status: developer-discretion. The "main" use of this + standard is for allocating and freeing data structures (complex + or nested). + + + + + + Add loaders to the `file_list' structure + and in order + + Explanation: + + I have ordered all of the "blocker" file code to be in alpha + order. It is easier to add/read new blockers when you expect a + certain order. + + Note: It may appear that the alpha order is broken in + places by POPUP tests coming before PCRS tests. But since + POPUPs can also be referred to as KILLPOPUPs, it is clear that + it should come first. + + + + + + "Uncertain" new code and/or changes to + existing code, use FIXME + + Explanation: + + If you have enough confidence in new code or confidence in + your changes, but are not *quite* sure of the repercussions, + add this: + + /* FIXME: this code has a logic error on platform XYZ, * + attempting to fix */ #ifdef PLATFORM ...changed code here... + #endif + + or: + + /* FIXME: I think the original author really meant this... + */ ...changed code here... + + or: + + /* FIXME: new code that *may* break something else... */ + ...new code here... + + Note: If you make it clear that this may or may not + be a "good thing (tm)", it will be easier to identify and + include in the project (or conversely exclude from the + project). + + + + + + + Addendum: Template for files and function + comment blocks: + + Example for file comments: + +const char FILENAME_rcs[] = "$Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $"; +/********************************************************************* + * + * File : $Source$ + * + * Purpose : (Fill me in with a good description!) + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log$ + * + *********************************************************************/ + + +#include "config.h" + + ...necessary include files for us to do our work... + +const char FILENAME_h_rcs[] = FILENAME_H_VERSION; + + + Note: This declares the rcs variables that should be + added to the "show-proxy-args" page. If this is a brand new + creation by you, you are free to change the "Copyright" section + to represent the rights you wish to maintain. + + Note: The formfeed character that is present right + after the comment flower box is handy for (X|GNU)Emacs users to + skip the verbiage and get to the heart of the code (via + `forward-page' and `backward-page'). Please include it if you + can. + + Example for file header comments: + +#ifndef _FILENAME_H +#define _FILENAME_H +#define FILENAME_H_VERSION "$Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $" +/********************************************************************* + * + * File : $Source$ + * + * Purpose : (Fill me in with a good description!) + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log$ + * + *********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + + ... function headers here ... + + +/* Revision control strings from this header and associated .c file */ +extern const char FILENAME_rcs[]; +extern const char FILENAME_h_rcs[]; + + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef _FILENAME_H */ + +/* + Local Variables: + tab-width: 3 + end: +*/ + + + Example for function comments: + +/********************************************************************* + * + * Function : FUNCTION_NAME + * + * Description : (Fill me in with a good description!) + * + * parameters : + * 1 : param1 = pointer to an important thing + * 2 : x = pointer to something else + * + * Returns : 0 => Ok, everything else is an error. + * + *********************************************************************/ +int FUNCTION_NAME( void *param1, const char *x ) +{ + ... + return( 0 ); + +} + + + Note: If we all follow this practice, we should be + able to parse our code to create a "self-documenting" web + page. + + + + + + + Testing Guidelines + To be filled. + + + + Testplan for releases + + Explain release numbers. major, minor. developer releases. etc. + + + +Remove any existing rpm with rpm -e + + +Remove any file that was left over. This includes (but is not limited to) + + /var/log/privoxy + /etc/privoxy + /usr/sbin/privoxy + /etc/init.d/privoxy + /usr/doc/privoxy* + + + +Install the rpm. Any error messages? + + start,stop,status Privoxy with the specific script + (e.g. /etc/rc.d/init/privoxy stop). Reboot your machine. Does + autostart work? + Start browsing. Does Privoxy work? Logfile written? + Remove the rpm. Any error messages? All files removed? + + + + + + Test reports + +Please submit test reports only with the test form +at sourceforge. Three simple steps: + + + Select category: the distribution you test on. + Select group: the version of Privoxy that we are about to release. + Fill the Summary and Detailed Description with something + intelligent (keep it short and precise). + + + Do not mail to the mailinglist (we cannot keep track on issues there). + + + + + + + Releasing a New Version + + When we release versions of Privoxy, + our work leaves our cozy secret lab and has to work in the cold + RealWorld[tm]. Once it is released, there is no way to call it + back, so it is very important that great care is taken to ensure + that everything runs fine, and not to introduce problems in the + very last minute. + + + So when releasing a new version, please adhere exactly to the + procedure outlined in this chapter. + + + + The following programs are required to follow this process: + ncftpput (ncftp), scp, ssh (ssh), + gmake (GNU's version of make), autoconf, cvs. + + + + Version numbers + + + First you need to determine which version number the release will have. + Privoxy version numbers consist of three numbers, + separated by dots, like in X.Y.Z, where: + + + + X, the version major, is rarely ever changed. It is increased by one if + turning a development branch into stable substantially changes the functionality, + user interface or configuration syntax. Majors 1 and 2 were + Junkbuster, and 3 will be the first stable + Privoxy release. + + + + + Y, the version minor, represents the branch within the major version. + At any point in time, there are two branches being maintained: + The stable branch, with an even minor, say, 2N, in which no functionality is + being added and only bugfixes are made, and 2N+1, the development branch, in + which the further development of Privoxy takes + place. + This enables us to turn the code upside down and inside out, while at the same time + providing and maintaining a stable version. + The minor is reset to zero (and one) when the major is inrcemented. When a development + branch has matured to the point where it can be turned into stable, the old stable branch + 2N is given up (i.e. no longer maintained), the former development branch 2N+1 becomes the + new stable branch 2N+2, and a new development branch 2N+3 is opened. + + + + + Z, the point or sub version, represents a release of the software within a branch. + It is therefore incremented immediately before each code freeze. + In development branches, only the even point versions correspond to actual releases, + while the odd ones denote the evolving state of the sources on CVS in between. + It follows that Z is odd on CVS in development branches most of the time. There, it gets + increased to an even number immediately before a code freeze, and is increased to an odd + number again immediately thereafter. + This ensures that builds from CVS snapshots are easily distinguished from released versions. + The point version is reset to zero when the minor changes. + + + + + + + + + Before the Release: Freeze + + The following must be done by one of the + developers prior to each new release. + + + + + + Make sure that everybody who has worked on the code in the last + couple of days has had a chance to yell no! in case + they have pending changes/fixes in their pipelines. Announce the + freeze so that nobody will interfere with last minute changes. + + + + + Increment the version number (point from odd to even in development + branches!) in configure.in. + + + + + If default.action has changed since last + release (i.e. software release or standalone actions file release), + bump up its version info to A.B in this line: + + + + {+add-header{X-Actions-File-Version: A.B} -filter -no-popups} + + + + Then change the version info in doc/webserver/actions/index.php, + line: '$required_actions_file_version = "A.B";' + + + + + If the HTML documentation is not in sync with the SGML sources + you need to regenerate and upload it to the webserver. (If in + doubt, just do it.) See the Section "Updating the webserver" in + this manual for details. + + + + + Commit all files that were changed in the above steps! + + + + + Tag all files in CVS with the version number with + cvs tag v_X_Y_Z. + Don't use vX_Y_Z, ver_X_Y_Z, v_X.Y.Z (won't work) etc. + + + + + If the release was in a development branch, increase the point version + from even to odd (X.Y.(Z+1)) again in configure.in and + commit your change. + + + + + On the webserver, copy the user manual to a new top-level directory + called X.Y.Z. This ensures that help links from the CGI + pages, which have the version as a prefix, will go into the right version of the manual. + If this is a development branch release, also symlink X.Y.(Z-1) + to X.Y.Z and X.Y.(Z+1) to + . (i.e. dot). + + + + + + + + Building and Releasing the Packages + + Now the individual packages can be built and released. Note that for + GPL reasons the first package to be released is always the source tarball. + + + + For all types of packages, including the source tarball, + you must make sure that you build from clean sources by exporting + the right version from CVS into an empty directory:. + + + + + mkdir dist # delete or choose different name if it already exists + cd dist + cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa export -r v_X_Y_Z current + + + + + Do NOT change a single bit, including, but not limited to + version information after export from CVS. This is to make sure that + all release packages, and with them, all future bug reports, are based + on exactly the same code. + + + + Please find additional instructions for the source tarball and the + individual platform dependent binary packages below. And details + on the Sourceforge release process below that. + + + + Note on Privoxy Packaging + + Please keep these general guidelines in mind when putting together + your package. These apply to all platforms! + + + + + + Privoxy requires + write access to: all *.action files, all + logfiles, and the trust file. You will + need to determine the best way to do this for your platform. + + + + + Please include up to date documentation. At a bare minimum: + + + + LICENSE (toplevel directory) + + + + + README (toplevel directory) + + + + + AUTHORS (toplevel directory) + + + + + man page (toplevel directory, Unix-like + platforms only) + + + + + The User Manual (doc/webserver/user-manual/) + + + + + FAQ (doc/webserver/faq/) + + + + Also suggested: Developer Manual + (doc/webserver/devel-manual) and ChangeLog + (toplevel directory). FAQ and the manuals are + HTML docs. There are also text versions in + doc/text/ which could conceivably also be + included. + + + The documentation has been designed such that the manuals are linked + to each other from parallel directories, and should be packaged + that way. index.html can also be included and + can serve as a focal point for docs and other links of interest. + This should be one level up from the manuals. There are two + css stylesheets that can be included for better presentation: + p_doc.css and p_web.css. + These should be in the same directory with + index.html, (i.e. one level up from the manual + directories). + + + + + user.action is designed for local preferences. + Make sure this does not get overwritten! + + + + + Other configuration files should be installed as the new defaults, + but all previously installed configuration files should be preserved + as backups. This is just good manners :-) + + + + + Please check platform specific notes in this doc, if you haven't + done Privoxy packaging before for other platform + specific issues. Conversely, please add any notes that you know + are important for your platform (or contact one of the doc + maintainers to do this if you can't). + + + + + + + + + Source Tarball + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then do: + + + + make tarball-dist + + + + To upload the package to Sourceforge, simply issue + + + + make tarball-upload + + + + Go to the displayed URL and release the file publicly on Sourceforge. + For the change log field, use the relevant section of the + ChangeLog file. + + + + SuSE, Conectiva or Red Hat RPM + + In following text, replace dist + with either rh for Red Hat or suse for SuSE. + + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). + + + As the only exception to not changing anything after export from CVS, + now examine the file privoxy-dist.spec + and make sure that the version information and the RPM release number are + correct. The RPM release numbers for each version start at one. Hence it must + be reset to one if this is the first RPM for + dist which is built from version + X.Y.Z. Check the + file + list if unsure. Else, it must be set to the highest already available RPM + release number for that version plus one. + + + Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then do + + + + make dist-dist + + + + To upload the package to Sourceforge, simply issue + + + + make dist-upload rpm_packagerev + + + + where rpm_packagerev is the + RPM release number as determined above. + Go to the displayed URL and release the file publicly on Sourceforge. + Use the release notes and change log from the source tarball package. + + + + OS/2 + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the OS/2 Setup module: + + + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co os2setup + + + + You will need a mix of development tools. + The main compilation takes place with IBM Visual Age C++. + Some ancillary work takes place with GNU tools, available from + various sources like hobbes.nmsu.edu. + Specificially, you will need autoheader, + autoconf and sh tools. + The packaging takes place with WarpIN, available from various sources, including + its home page: xworkplace. + + + Change directory to the os2setup directory. + Edit the os2build.cmd file to set the final executable filename. + For example, + + + + installExeName='privoxyos2_setup_X.Y.Z.exe' + + + + Next, edit the IJB.wis file so the release number matches + in the PACKAGEID section: + + + + PACKAGEID="Privoxy Team\Privoxy\Privoxy Package\X\Y\Z" + + + + You're now ready to build. Run: + + + + os2build + + + + You will find the WarpIN-installable executable in the + ./files directory. Upload this anonymously to + uploads.sourceforge.net/incoming, create a release + for it, and you're done. Use the release notes and Change Log from the + source tarball package. + + + + Solaris + + Login to Sourceforge's compilefarm via ssh: + + + + ssh cf.sourceforge.net + + + + Choose the right operating system (not the Debian one). + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then run + + + + gmake solaris-dist + + + + which creates a gzip'ed tar archive. Sadly, you cannot use make + solaris-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. + + + + Windows + + You should ensure you have the latest version of Cygwin (from + http://www.cygwin.com/). + Run the following commands from within a Cygwin bash shell. + + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the Windows setup module: + + + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co winsetup + + + + Then you can build the package. This is fully automated, and is + controlled by winsetup/GNUmakefile. + All you need to do is: + + + + cd winsetup + make + + + + Now you can manually rename privoxy_setup.exe to + privoxy_setup_X_Y_Z.exe, and upload it to + SourceForge. When releasing the package on SourceForge, use the release notes + and Change Log from the source tarball package. + + + + Debian + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then, run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then do FIXME. + + + + Mac OSX + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the Mac OSX setup module: + + + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co osxsetup + + + + Then run: + + + + cd osxsetup + build + + + + This will run autoheader, autoconf and + configure as well as make. + Finally, it will copy over the necessary files to the ./osxsetup/files directory + for further processing by PackageMaker. + + + Bring up PackageMaker with the PrivoxyPackage.pmsp definition file, modify the package + name to match the release, and hit the "Create package" button. + If you specify ./Privoxy.pkg as the output package name, you can then create + the distributable zip file with the command: + + + +zip -r privoxyosx_setup_x.y.z.zip Privoxy.pkg + + + + You can then upload privoxyosx_setup_x.y.z.zip anonymously to + uploads.sourceforge.net/incoming, + create a release for it, and you're done. Use the release notes + and Change Log from the source tarball package. + + + + FreeBSD + + Login to Sourceforge's compilefarm via ssh: + + + + ssh cf.sourceforge.net + + + + Choose the right operating system. + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then run: + + + + gmake freebsd-dist + + + + which creates a gzip'ed tar archive. Sadly, you cannot use make + freebsd-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. + + + + HP-UX 11 + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then do FIXME. + + + + Amiga OS + + First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then do FIXME. + + + + AIX + + Login to Sourceforge's compilefarm via ssh: + + + + ssh cf.sourceforge.net + + + + Choose the right operating system. + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + + + + cd current + autoheader && autoconf && ./configure + + + + Then run: + + + + make aix-dist + + + + which creates a gzip'ed tar archive. Sadly, you cannot use make + aix-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. + + + + + + Uploading and Releasing Your Package + + After the package is ready, it is time to upload it + to SourceForge, and go through the release steps. The upload + is done via FTP: + + + + + + Upload to: ftp://upload.sourceforge.net/incoming + + + + + user: anonymous + + + + + password: ijbswa-developers@lists.sourceforge.net + + + + + + Or use the make targets as described above. + + + Once this done go to http://sourceforge.net/project/admin/editpackages.php?group_id=11118, + making sure you are logged in. Find your target platform in the + second column, and click Add Release. You will + then need to create a new release for your package, using the format + of $VERSION ($CODE_STATUS), e.g. &p-version; + (beta). + + + Now just follow the prompts. Be sure to add any appropriate Release + notes. You should see your freshly uploaded packages in + Step 2. Add Files To This Release. Check the + appropriate box(es). Remember at each step to hit the + Refresh/Submit buttons! You should now see your + file(s) listed in Step 3. Fill out the forms with the appropriate + information for your platform, being sure to hit Update + for each file. If anyone is monitoring your platform, check the + email box at the very bottom to notify them of + the new package. This should do it! + + + If you have made errors, or need to make changes, you can go through + essentially the same steps, but select Edit Release, + instead of Add Release. + + + + + After the Release + + When all (or: most of the) packages have been uploaded and made available, + send an email to the announce + mailing list, Subject: "Version X.Y.Z available for download". Be sure to + include the + download + location, the release notes and the change log. + + + + + + + Update the Webserver + + When updating the webserver, please follow these steps to make + sure that no broken links, incosistent contents or permission + problems will occur: + + + If you have changed anything in the documentation source SGML files, + do: + + + + make dok # (or make redkat-dok if make dok doesn't work for you) + + + + That will generate doc/webserver/user-manual, + doc/webserver/developer-manual, + doc/webserver/faq and + doc/webserver/index.html automatically. + + + If you changed the manual page source, generate + doc/webserver/man-page/privoxy-man-page.html + by running make man. (This is + a separate target due to dependencies on some obscure perl scripts. + See comments in GNUmakefile.) + + + If you want to add new files to the webserver, create them locally in + the doc/webserver/* directory (or + create new directories under doc/webserver). + + + Next, commit any changes from the above steps to CVS. All set? Then do + + + + make webserver + + + + This will do the upload to the + webserver (www.privoxy.org) and ensure all files and directories + there are group writable. + + + Please do NOT use any other means of transferring + files to the webserver to avoid permission problems. + + + + + Contacting the developers, Bug Reporting and Feature Requests + + &contacting; + + + + + +Privoxy Copyright, License and History + + + ©right; + + + +License + + &license; + + + + + +History + + &history; + + + + + + + See also + + &seealso; + + + + + + +
    diff --git a/doc/source/faq.sgml b/doc/source/faq.sgml new file mode 100644 index 00000000..e32b52df --- /dev/null +++ b/doc/source/faq.sgml @@ -0,0 +1,1779 @@ + + + + + + + + + + + + + + + + + +]> + + + +
    + +Privoxy Frequently Asked Questions + + + + + + Copyright &my-copy; 2001, 2002 by + Privoxy Developers + + + +$Id: faq.sgml,v 1.60 2002/05/22 17:17:48 oes Exp $ + + + + + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + This FAQ gives quick answers to frequently asked questions about + Privoxy + . It can't and doesn't replace the + user manual. + + + + &p-intro; + + + + You can find the latest version of the document at http://www.privoxy.org/faq/. + Please see the Contact section if you want to contact the developers. + + + + + + + + + + + +General Information + +What is this new version of <application>Privoxy</application>? + + + &history; + + + + + + +Why <quote>Privoxy</quote>? Why a name change at all? + + Privoxy is the + Privacy Enhancing Proxy. Also, its content + modification and junk suppression allow you to browse your + private edition of the web. + + + Junkbusters Corporation + continues to offer their original version of the Internet + Junkbuster, so publishing our + Junkbuster-derived software under the same name + led to confusion. + + + There are also potential legal complications from the continued use of the + Junkbuster name, which is a registered trademark of + Junkbusters Corporation. + There are, however, no objections from Junkbusters Corporation to the + Privoxy project itself, and they, in fact, still + share our ideals and goals. + + + The developers also believed that there are so many changes from the original + code, that it was time to make a clean break from the past and make + a name in their own right. + + + + +How does <application>Privoxy</application> differ +from the old <application>Junkbuster?</application> + + Privoxy picks up where + Junkbuster left off. All the old features remain. + The new Privoxy still blocks ads and banners, + still manages cookies, and still helps protect your privacy. But, these are + all enhanced, and many new features have been added, all in the same vein. + + + The configuration has changed significantly as well. This is something that + users will notice right off the bat if upgrading from + Junkbuster 2.0.x. The blocklist + cookielist, imagelist and much more has been + combined into the actions files, with a completely different + syntax. See the note to + upgraders for details. + + + Privoxy's new features include: + + + + &newfeatures; + + + + +What is a <quote>proxy</quote>? How does +<application>Privoxy</application> work? + + A web proxy is a service, based on a software such as Privoxy, + that clients (i.e. browsers) can use instead of connecting directly to the web + servers on the Internet. The clients then ask the proxy to fetch the objects + they need (web pages, images, movies etc) on their behalf, and when the proxy + has done so, it hands the results back to the client. + + + There are many reasons to use web proxies, such as security (firewalling), + efficiency (caching) and others, and there are just as many different proxies + to accommodate those needs. + + + Privoxy is a proxy that is solely focused on privacy + protection and junk elimination. Sitting between your browser(s) and the Internet, + it is in a perfect position to filter outbound personal information that your + browser is leaking, as well as inbound junk. It uses a variety of techniques to do + this, all of which are under your control via the various configuration + files and options. + + + + + +How does <application>Privoxy</application> know what is +an ad, and what is not? + + Privoxy's approach to blocking ads is twofold: + + + First, there are certain patterns in the locations (URLs) + of banner images. This applies to both the path (you wouldn't guess how many + web sites serve their banners from a directory called banners!) + and the host (blocking the big banner hosting services like doublecklick.net + already helps a lot). Privoxy takes advantage of this + fact by using URL + patterns to sort out and block the requests for banners. + + + Second, banners tend to come in certain sizes. But you + can't tell the size of an image by its URL without downloading it, and if you + do, it's too late to save bandwidth. Therefore, Privoxy + also inspects the HTML sources of web pages while they are loaded, and replaces + references to images with standard banner sizes by dummy references, so that + your browser doesn't request them anymore in the first place. + + + Both of this involves a certain amount of guesswork and is, of course, freely + configurable. + + + + +Can <application>Privoxy</application> make mistakes? +This does not sound very scientific. + + Actually, it's a black art ;-) And yes, it is always possible to have a broad + rule accidentally block or change something by mistake. There is a good chance + you may run into such a situation at some point. It is tricky writing rules to + cover every conceivable possibility, and not occasionally get false positives. + + + + But this should not be a big concern since the + Privoxy configuration is very flexible, and + includes tools to help identify these types of situations so they can be + addressed as needed, allowing you to customize your installation. + (See the Troubleshooting section below.) + + + + + +My browser does the same things as +<application>Privoxy</application>. Why should I use +<application>Privoxy</application> at all? + + Modern browsers do indeed have some of the same + functionality as Privoxy. Maybe this is + adequate for you. But Privoxy is much more + versatile and powerful, and can do a number of things that browsers just can't. + + + In addition, a proxy is good choice if you use multiple browsers, or + have a LAN with multiple computers. This way all the configuration + is in one place, and you don't have to maintain a similar configuration + for possibly many browsers. + + + + + +Is there is a license or fee? What about a +warranty? Registration? + + Privoxy is licensed under the GNU General Public License (GPL). + It is free to use, copy, modify or distribute as you wish under the terms of this + license. Please see the Copyright section for more + information on the license and copyright. Or the LICENSE file + that should be included. + + + There is no warranty of any kind, expressed, implied or otherwise. + That is something that would cost real money ;-) There is no registration either. + Privoxy really is free + in every respect! + + + + +I would like to help you, what do I do? + +Money Money Money + + We, of course, welcome donations and could use money for domain registering, + buying software to test Privoxy with, and, of course, + for regular world-wide get-togethers (hahaha). If you enjoy the software and feel + like helping us with a donation, just drop us a note. + + + +Software + + If you are a vendor of a web-related software like a browser, web server + or proxy, and would like us to ensure that Privoxy + runs smoothly with your product, you might consider supplying us with a + copy or license. We can't, however, guarantee that we will fix all potential + compatibility issues as a result. + + + +You want to work with us? + + Well, helping the team is always a good idea. We welcome new developers, + packaging gurus or documentation writers. Simply get an account on SourceForge.net + and mail your id to the developers + mailing list. Then read the Developer's Manual. + + + Once we have added you to the team, you'll have write access to the CVS repository, and + together we'll find a suitable task for you. + + + + + + + + + + +Installation + + +Which browsers are supported by <application>Privoxy</application>? + + Any browser that can be configured to use a proxy, which + should be virtually all browsers. Direct browser support is not necessary + since Privoxy runs as a separate application and + talks to the browser in the standardized HTTP protocol, just like a web server + does. + + + + +Which operating systems are supported? + +&supported; + + +Can I install + <application>Privoxy</application> over <application>Junkbuster</application>? + + We recommend you un-install Junkbuster + first to minimize conflicts and confusion. You may want to + save your old configuration files for future reference. The configuration + files and syntax have substantially changed, so you will need to manually + port your old patterns. See the note + to upgraders and installation + chapter in the user manual + for details. + + + Note: Some installers may automatically un-install + Junkbuster, if present! + + + + + +I just installed <application>Privoxy</application>. Is there anything +special I have to do now? + + + All browsers must be told to use Privoxy + as a proxy by specifying the correct proxy address and port number + in the appropriate configuration area for the browser. See below. + You should also flush your browser's memory and disk cache to get rid of any + cached junk items. + + + + + + +What is the proxy address of <application>Privoxy</application>? + + If you set up the Privoxy to run on + the computer you browse from (rather than your ISP's server or some + networked computer on a LAN), the proxy will be on 127.0.0.1 + (sometimes referred to as localhost, + which is the special name used by every computer on the Internet to refer + to itself) and the port will be 8118 (unless you have Privoxy + to run on a different port with the listen-address config option). + + + When configuring your browser's proxy settings you typically enter + the word localhost or the IP address 127.0.0.1 + in the boxes next to HTTP and Secure (HTTPS) and + then the number 8118 for port. + This tells your browser to send all web requests to Privoxy + instead of directly to the Internet. + + + Privoxy can also be used to proxy for + a Local Area Network. In this case, your would enter either the IP + address of the LAN host where Privoxy + is running, or the equivalent hostname. Port assignment would be + same as above. Note that Privoxy doesn't + listen on any LAN interfaces by default. + + + Privoxy does not currently handle + protocols such as FTP, SMTP, IM, IRC, ICQ, or other Internet + protocols. + + + + +I just installed <application>Privoxy</application>, and nothing is happening. +All the ads are there. What's wrong? + + + Did you configure your browser to use Privoxy + as a proxy? It does not sound like it. See above. You might also try flushing + the browser's caches to force a full re-reading of pages. You can verify + that Privoxy is running, and your browser + is correctly configured by entering the special URL: + http://config.privoxy.org/. + This should take you to a page titled This is Privoxy.. with + access to Privoxy's internal configuration. + If you see this, then you are good to go. If you receive a page saying + Privoxy is not running, then the browser is not set up to use + your Privoxy installation. + If you receive anything else (probably nothing at all), it could either + be that the browser is not set up correctly, or that + Privoxy is not running at all. Check the log file. + + + + + + + + + + + +Configuration + +Can I use my old config files? + + The syntax, number, and purpose of configuration files has substantially + changed from Junkbuster and earlier versions + of Privoxy. The old files, like blocklist + will not work at all. If you are upgrading from a 2.0.x version, you will + need to port your configuration data to the new format. Note that even the + pattern syntax has changed! Even configuration files from the 2.9.x versions + will need to be adapted, as configuration syntax has been very much in flow + in the 2.9.x series. + + + + +What is an <quote>actions</quote> file? + + + Actions files + are where various actions + that Privoxy might take while processing a certain + request, are configured. Typically, you would define a set of default actions + that apply to all URLs, then add exceptions to these defaults where needed. + + + + Actions can be defined on a URL pattern basis, i.e. + for single URLs, whole web sites, groups or parts thereof etc. Actions can also be + grouped together and then applied to requests matching one or more patterns. + There are many possible actions that might apply to any given site. As an example, + if you are blocking cookies as one of your default actions, but need to accept + cookies from a given site, you would need to define an exception for this + site in one of your actions files, preferably in user.action + + + + + +The <quote>actions</quote> concept confuses me. Please list +some of these <quote>actions</quote>. + + For a comprehensive discussion of the actions concept, please refer + to the actions file + chapter in the user + manual. It includes a list of all actions + and an actions + file tutorial to get you started. + + + + + +How are actions files configured? What is the easiest +way to do this? + + + Actions files are just text files in a special syntax and can be edited + with a text editor. The probably easiest way is to access + Privoxy's user interface with your web browser + at http://config.privoxy.org/ + (Shortcut: http://p.p/) and then select + View & + change the current configuration from the menu. + + + + + + +There are several different <quote>actions</quote> files. What are +the differences? + + As of Privoxy v2.9.15, three actions files + are being included, to be used for + different purposes: These are + default.action, the main actions file + which is actively maintained by the Privoxy + developers, user.action, where users are encouraged + to make their private customizations, and standard.action, + which is for internal Privoxy use only. + Please see the actions chapter + in the user manual for a more + detailed explanation. + + + + Earlier versions included three different versions of the + default.action file. The new scheme allows for + greater flexibility of local configuration, and for browser based + selection of pre-defined aggressiveness levels. + + + + +How can I make my Yahoo/Hotmail/GMX account work? + + The default configuration shouldn't impact the usability of any of these services. + It will, however, make all cookies temporary, so that your browser will forget your + login credentials in between browser sessions. If you would like not to have to log + in manually each time you access those websites, simply turn off all cookie handling + for them in the user.action file. An example for yahoo might + look like: + + + # Allow all cookies for Yahoo login: +# +{ -crunch-incoming-cookies -crunch-outgoing-cookies -session-cookies-only } +.login.yahoo.com + + + + + What's the difference between the +<quote>Cautious</quote>, <quote>Medium</quote> and <quote>Advenced</quote> defaults? + + Configuring Privoxy is not entirely trivial. To help you get + started, we provide you with three different default action packages in + the web based actions file editor at http://config.privoxy.org/show-status. + The following table shows you, which of the most important features are enabled in each + configuration: + + +Default Configurations + + + + + + + + Feature + Cautious + Intermadiate + Advanced + + + + + + + + + + + + + + Ad-blocking by URL + yes + yes + yes + + + + Ad-filtering by size + yes + yes + yes + + + + GIF de-animation + no + yes + yes + + + + Referer forging + no + yes + yes + + + + Cookie handling + none + session-only + kill + + + + Pop-up killing + no + no + yes + + + + Fast redirects + no + no + yes + + + + HTML taming + yes + yes + yes + + + + JavaScript taming + yes + yes + yes + + + + Web-bug killing + yes + yes + yes + + + + Fun text replacements + no + no + yes + + + + +
    +     + + Where the defaults are likely to break some sites, exceptions for + known popular problem sites are included, but in + general, the more aggressive your default settings are, the more + exceptions you will have to make later. See the user manual for a more + deatiled discussion. + + +     + + Why can I change the configuration +with a browser? Does that not raise security issues? + + It may seem strange that regular users can edit the config files with their + browsers, although the whole /etc/privoxy hierarchy + belongs to the user privoxy, with only 644 permissions. + + + When you use the browser-based editor, Privoxy + itself is writing to the config files. Because + Privoxy is running as the user privoxy, + it can update the config files. + + + If you run Privoxy for multiple untrusted users (e.g. in + a LAN), you will probably want to turn the web-based editor and remote toggle + features off by setting enable-edit-actions + 0 and enable-remote-toggle + 0 in the main configuration file. + + + Note that in the default configuration, only local users (i.e. those on + localhost) can connect to Privoxy, + so this is not (normally) a security problem. + + + + + +What is the <filename>default.filter</filename> file? + + The default.filter + file is where filters are defined, which can be used to modify or + remove, web page content on the fly. This applies to anything + in the page source, including HTML tags, and JavaScript. Regular expressions are used + to accomplish this. There are a number of pre-defined filters to deal with common + annoyances. The filters are only defined here, to invoke them, you need to use the + filter action. + + + + If you are familiar with regular expressions, and HTML, you can look at + the provided default.filter with a text editor and define + your own filters. This is potentially a very powerful feature, but + requires some expertise. + + + + Presently, there is no GUI editor option for this part of the configuration, + but you can disable/enable the various pre-defined filters of the included + default.filter file with the web-based actions file editor. + + + + + +How can I set up <application>Privoxy</application> to act as a proxy for my + LAN? + + By default, Privoxy only responds to requests + from 127.0.0.1 (localhost). To have it act as a server for + a network, this needs to be changed in the main configuration file. Look for + the listen-address + option, which may be commented out with a # symbol. Make sure + it is uncommented, and assign it the address of the LAN gateway interface, + and port number to use. Assuming your LAN address is 192.168.1.1 and you + wish to run Privoxy on port 8118, this line + schould look like: + + + + + listen-address 192.168.1.1:8118 + + + + Save the file, and restart Privoxy. Configure + all browsers on the network then to use this address and port number. + + + + If you run Privoxy on a LAN with untrusted users, + we recommend that you double-check the access control and security + options! + + + + + + +Instead of ads, now I get a checkerboard pattern. I don't want to see anything. + + The replacement for blocked images can be controlled with the set-image-blocker + action. You have the choice of a checkerboard pattern, a transparent 1x1 GIF + image (aka blank), or a redirect to a custom image of your choice. + Note that this choice only has effect for images which are blocked as images, i.e. + whose URLs match both a handle-as-image + and block action. + + + If you want to see nothing, then change the set-image-blocker + action to blank. This can be done by editing the + default.action file, or trough the web-based actions file editor. + + + + + +Why would anybody want to see a checkerboard pattern? + + Remember that telling which image is an ad and which + isn't, is mostly guesswork. While we hope that the standard configuration + is rather smart, it can and will make errors. The checkerboard image is visually + decent, but it shows you that and where images were blocked, which can be very + helpful in case some navigation aid or otherwise innocent image was + erraneously blocked. Some people might also enjoy seeing how many banners + they don't have to see.. + + + + + + + +I see some images being replaced by a text +instead of the checkerboard image. Why and how do I get rid of this? + + This happens when the banners are not embedded in the HTML code of the + page itself, but in separate HTML (sub)documents that are loaded into (i)frames + or (i)layers, and these external HTML documents are blocked. Being non-images + they get replaced by a substitute HTML page rather than a substitute image, + which wouldn't work out technically, since the browser expects and accepts + only HTML when it has requested an HTML document. + + + The substitute page adapts to the available space and shows itself as a + miniature two-liner if loaded into small frames, or full-blown with a + large red "BLOCKED" banner if space allows. + + + If you prefer the banners to be blocked by images, you must see to it that + the HTML documents in which they are embedded are not blocked. Clicking + the See why link offered in the substitute page will show + you which rule blocked the page. After changing the rule and un-blocking + the HTML documents, the browser will try to load the actual banner images + and the usual image blocking will (hopefully!) kick in. + + + + + +Can <application>Privoxy</application> run as a service +on Win2K/NT? + + Yes, it can run as a system service using srvany.exe. + The only catch is that this will effectively disable the + Privoxy icon (and its menu!) in the taskbar. You can have + one or the other, but not both at this time :( + + + There is a pending feature request for this functionality. See the discussion + at http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118, + for details, and a sample configuration. + + + + + + +How can I make <application>Privoxy</application> work with other +proxies like <application>Squid</application>? + + This can be done and is often useful to combine the benefits of + Privoxy with those of a caching proxy. + See the forwarding chapter + in the user manual which + describes how to do this. + + + + +Can <application>Privoxy</application> run as a <quote>transparent +</quote> proxy? + + No, Privoxy currently does not have this ability, + though it is planned for a future release. Transparent proxies require + special handling of the request headers beyond what + Privoxy is now capable of. + + + + Chaining Privoxy behind another proxy that has + this ability should work though. + See the forwarding chapter + in the user manual. As + a transparent proxy to be used for chaining we recommend Transproxy + (http://www.transproxy.nlc.net.au/). + + + + +     + + + + + + +Miscellaneous + + +How much does <application>Privoxy</application> slow my browsing down? This +has to add extra time to browsing. + + It should not slow you down any in real terms, and may actually help + speed things up since ads, banners and other junk are not being displayed. + The actual processing time required by Privoxy + itself for each page, is relatively small in the overall scheme of things, + and happens very quickly. This is typically more than offset by time saved + not downloading and rendering ad images. + + + + Filtering content via the filter or + deanimate-gifs + actions may cause a perceived slowdown, since the entire document needs to be buffered + before displaying. See below. + + + + + +I noticed considerable +delays in page requests compared to the old Junkbuster. What's wrong? + + If you use any filter action, + such as filtering banners by size, web-bugs etc, or the deanimate-gifs + action, the entire document must be loaded into memory in order for the filtering + mechanism to work, and nothing is sent to the browser during this time. + + + The loading time does not really change in real numbers, but the feeling is + different, because most browsers are able to start rendering incomplete + content, giving the user a feeling of "it works". This effect is especially + noticeable on slow dialup connections. + + + + +What are "http://config.privoxy.org/" and +"http://p.p/"? + + http://config.privoxy.org/ is the + address of Privoxy's built-in user interface, and + http://p.p/ is a shortcut for it. + + + Since Privoxy sits between your web browser and the Internet, + it can simply intercept requests for these addresses and answer them with its built-in + web server. + + + This also makes for a good test for your browser configuration: If entering the + URL http://config.privoxy.org/ + takes you to a page saying This is Privoxy.., everything is OK. + If you get a page saying Privoxy is not working instead, then + your browser didn't use Privoxy for the request, + hence it could not be intercepted, and you have accessed the real + web site at config.privoxy.org. + + + With recent versions of Privoxy (version 2.9.x and + later), the user interface features information on the run time status, the + configuration, and even a built-in editor for the actions files. + + + + Note that the built-in URLs from earlier versions of Junkbuster + / Privoxy, http://example.com/show-proxy-args and http://i.j.b/, + are no longer supported. If you still use such an old version, you should really consider + upgrading to &p-version;. + + + + + +Do you still maintain the blocklists? + + No. The patterns for blocking now reside (among other things) in the actions files, which are + actively maintained instead. See next question ... + + + +How can I submit new ads? + +Yes, absolutely! Please see the Contact section for +how to do that. Please note that you (technically) need the latest +Privoxy version for this to work. + + + + +How can I hide my IP address? + + If you run both the browser and the proxy locally, you cannot hide your IP + address with Privoxy or any other software. The + server needs to know your IP address to send the answers back to you. + + + Fortunately there are many publicly usable anonymous proxies out there, which + solve the problem by providing a further level of indirection between you and + the web server, shared by many people, and thus letting your requests "drown" + in white noise of unrelated requests as far as user tracking is concerned. + + + Most of them will, however, log your IP address and make it available to the + authorities in case you abuse that anonymity for criminal purposes. In fact + you can't even rule out that some of them only exist to *collect* information + on (those suspicious) people with a more than average preference for privacy. + + + You can find a list of anonymous public proxies at multiproxy.org and many + more through Google. A particularly interesting project is the JAP service + offered by the Technical University of Dresden (http://anon.inf.tu-dresden.de/index_en.html. + + + There is, however, even in the single-machine case the possibility to make the + server believe that your machine is in fact a shared proxy serving a whole big + LAN, and we are looking into that. + + + + +Can <application>Privoxy</application> guarantee I am anonymous? + + No. Your chances of remaining anonymous are greatly improved, but unless you + are an expert on Internet security it would be safest to assume that + everything you do on the Web can be traced back to you. + + + Privoxy can remove various information about you, + and allows you more freedom to decide which sites + you can trust, and what details you want to reveal. But it's still possible + that web sites can find out who you are. Here's one way this can happen. + + + A few browsers disclose the user's email address in certain situations, such + as when transferring a file by FTP. Privoxy + does not filter FTP. If you need this feature, or are concerned about the + mail handler of your browser disclosing your email address, you might + consider products such as NSClean. + + + Browsers available only as binaries could use non-standard headers to give + out any information they can have access to: see the manufacturer's license + agreement. It's impossible to anticipate and prevent every breach of privacy + that might occur. The professionally paranoid prefer browsers available as + source code, because anticipating their behavior is easier. Trust the source, + Luke! + + + + + +Might some things break because header information or +content is being altered? + + + Definitely. More and more sites use HTTP header content to decide what to + display and how to display it. There is many ways that this can be handled, + so having hard and fast rules, is tricky. + + + + User-Agent in particular is often used in this way to identify + the browser, and adjust content accordingly. Changing this now (at least not + further than removing the OS information) is not recommended, since so many + sites do look for it. You may get undesirable results by changing this. + + + + For instance, different browsers use different encodings of Russian and Czech + characters, certain web servers convert pages on-the-fly according to the + User Agent header. Giving a User Agent with the wrong + operating system or browser manufacturer causes some sites in these languages + to be garbled; Surfers to Eastern European sites should change it to + something closer. And then some page access counters work by looking at the + Referer header; they may fail or break if unavailable. The + weather maps of Intellicast have been blocked by their server when no + Referer or cookie is provided, is another example. (But you + can forge both headers without giving information away). There are + many other ways things can go wrong when trying to fool a web server. + + + + Similar thoughts apply to modifying JavaScript, and, to a lesser degree, + HTML elements. + + + + If you have problems with a site, you will have to adjust your configuration + accordingly. Cookies are probably the most likely adjustment that may + be required, but by no means the only one. + + + + + + +Can <application>Privoxy</application> act as a <quote>caching</quote> proxy to +speed up web browsing? + + No, it does not have this ability at all. You want something like + Squid for this. And, yes, + before you ask, Privoxy can co-exist + with other kinds of proxies like Squid. + See the forwarding + chapter in the user + manual for details. + + + + +What about as a firewall? Can <application>Privoxy</application> protect me? + + Not in the way you mean, or in the way a true firewall can. + Privoxy can help protect your privacy, but not + protect you from intrusion attempts. It is, of course, perfectly possible + and recommended to use both. + + + + + + +I have large empty spaces / a checkerboard pattern now where +ads used to be. Why? + + It would be technically possible eliminate the banners in a way that frees + their screen estate in many cases, by doing all banner blocking with filters, + i.e. eliminating the whole image references from the HTML pages instead + of letting them stay in, and blocking the resulting requests for the + banners themselves. + + + But this would consume considerable CPU resources, would likely destroy + the layout of many web pages which rely on the banners consuming a certain + amount of screen space, and would fail in other cases, where the screen space + is reserved e.g. by tables anyway. Also, making the banners disappear without + a visual trace complicates troubleshooting. + + + So we won't support this in the default configuration, but you can of course + define appropriate filters yourself. + + + + +How can <application>Privoxy</application> filter Secure (HTTPS) URLs? + + Since secure HTTP connections are encrypted SSL sessions between your browser + and the secure site, and are meant to be reliably secure, + there is little that Privoxy can do but hand the raw + gibberish data though from one end to the other unprocessed. + + + The only exception to this is blocking by host patterns, as the client needs + to tell Privoxy the name of the remote server, + so that Privoxy can establish the connection. + If that name matches a host-only pattern, the connection will be blocked. + + + As far as ad blocking is concerned, this is less of a restriction than it may + seem, since ad sources are often identifiable by the host name, and often + the banners to be placed in an encrypted page come unencrypted nonetheless + for efficiency reasons, which exposes them to the full power of + Privoxy's ad blocking. + + + + + +<application>Privoxy</application> runs as a <quote>server</quote>. How +secure is it? Do I need to take any special precautions? + + There are no known exploits that might affect + Privoxy. On Unix-like systems, + Privoxy can run as a non-privileged + user, which is how we recommend it be run. Also, by default + Privoxy only listens to requests + from localhost only. The server aspect of + Privoxy is not itself directly exposed to the + Internet in this configuration. If you want to have + Privoxy serve as a LAN proxy, this will have to + be opened up to allow for LAN requests. In this case, we'd recommend + you specify only the LAN gateway address, e.g. 192.168.1.1, in the main + Privoxy configuration file and check all access control and security + options. All LAN hosts can then use this as their proxy address + in the browser proxy configuration, but Privoxy + will not listen on any external interfaces. ACLs can be defined in addition, + and using a firewall is always good too. Better safe than sorry. + + + + + +How can I temporarily disable <application>Privoxy</application>? + + The easiest way is to access Privoxy with your + browser by using the remote toggle URL: http://config.privoxy.org/toggle. + + + + +Where can I find more information about <application>Privoxy</application> +and related issues? + + &seealso; + + + + + + + + + + + +Troubleshooting + + +I just upgraded and am getting <quote>connection refused</quote> +with every web page? + + Either Privoxy is not running, or your + browser is configured for a different port than what + Privoxy is using. + + + + The old Privoxy (and also + Junkbuster) used port 8000 by + default. This has been changed to port 8118 now, due to a conflict + with NAS (Network Audio Service), which uses port 8000. If you haven't, + you need to change your browser to the new port number, or alternately + change the listen-address + option in Privoxy's main configuration file. + + + + + +I just added a new rule, but the steenkin ad is +still getting through. How? + + If the ad had been displayed before you added its URL, it will probably be + held in the browser's cache for some time, so it will be displayed without + the need for any request to the server, and Privoxy + will not be in the picture. The best thing to do is try flushing the browser's + caches. And then try again. + + + + If this doesn't help, you probably have an error in the rule you + applied. Try pasting the full URL of the offending ad into http://config.privoxy.org/show-url-info + and see if it really matches your new rule. + + + + + +One of my favorite sites does not work with <application>Privoxy</application>. +What can I do? + + + First verify that it is indeed a Privoxy problem, + by toggling off Privoxy through http://config.privoxy.org/toggle, + and then shift-reloading the problem page (i.e. holding down the shift key + while clicking reload. Alternatively, flush your browser's disk and memory + caches). + + + + If still a problem, go to http://config.privoxy.org/show-url-info + and paste the full URL of the page in question into the prompt. See which actions + are being applied to the URL, and which matches in which actions files are + responsible for that. Now, armed with this information, go to http://config.privoxy.org/show-status + and select the appropriate actions files for editing. + + + You can now either look for a section which disables the actions that + you suspect to cause the problem and add a pattern for your site there, + or make up a completely new section for your site. In any case, the recommended + way is to disable only the prime suspect, reload the problem page, and only + if the problem persists, disable more and more actions until you have + identified the culprit. You may or may not want to turn the other actions + on again. Remember to flush your browser's caches in between any such changes! + + + Alternately, if you are comfortable with a text editor, you can accomplish + the same thing by editing the appropriate actions file. Probably the easiest + way to deal with such problems when editing by hand is to add your + site to a { fragile } section in user.action, + which is an alias that turns off most dangerous + actions, but is also likely to turn off more actions then needed, and thus lower + your privacy and protection more than necessary, + + + Troubleshooting actions is discussed in more detail in the user-manual appendix. + There is also an actions tutorial. + + + + + + + + + + + + Contacting the developers, Bug Reporting and Feature Requests + + &contacting; + + + + +Privoxy Copyright, License and History + + + ©right; + + + + Portions of this document are borrowed from the original + Junkbuster (tm) FAQ, and modified as + appropriate for Privoxy. + + + + License + + &license; + + + + + + History + + &history; + + + + + + + + + + + + + + + + + +
    diff --git a/doc/source/history.sgml b/doc/source/history.sgml new file mode 100644 index 00000000..057da5e7 --- /dev/null +++ b/doc/source/history.sgml @@ -0,0 +1,72 @@ + + + + In the beginning, there was the + Internet Junkbuster, + by Anonymous Coders and Junkbusters + Corporation. It saved many users a lot of pain in the early days of + web advertising and user tracking. + + + + But the web, its protocols and standards, and with it, the techniques for + forcing users to consume ads, give up autonomy over their browsing, and + for spying on them, kept evolving. Unfortunately, the Internet + Junkbuster did not. Version 2.0.2, published in 1998, was + (and is) the last official + release + available from Junkbusters Corporation. + Fortunately, it had been released under the GNU + GPL, which allowed further + development by others. + + + + So Stefan Waldherr started maintaining an + improved version of the + software, to which eventually a number of people contributed patches. + It could already replace banners with a transparent image, and had a first + version of pop-up killing, but it was still very closely based on the + original, with all its limitations, such as the lack of HTTP/1.1 support, + flexible per-site configuration, or content modification. The last release + from this effort was version 2.0.2-10, published in 2000. + + + + Then, some + developers + picked up the thread, and started turning the software inside out, upside down, + and then reassembled it, adding many + new + features along the way. + + + + The result of this is Privoxy, whose first + stable release, 3.0, is due in May 2002. + + diff --git a/doc/source/ldp.dsl.in b/doc/source/ldp.dsl.in new file mode 100644 index 00000000..67343f85 --- /dev/null +++ b/doc/source/ldp.dsl.in @@ -0,0 +1,416 @@ + + + +]]> + + +]]> +]> + + + + + + + + +;; ============================== +;; customize the print stylesheet +;; ============================== +;; +;; see http://docbook.sourceforge.net/projects/dsssl/doc/print.html +;; + +(define %indent-screen-lines% + ;; Indent lines in a 'Screen'? + #t) + +(define %callout-fancy-bug% + ;; Use fancy callout bugs? + #t) + +(define %chap-app-running-heads% + ;; Generate running headers and footers on chapter-level elements? + #t) + +(define %chap-app-running-head-autolabel% + ;; Put chapter labels in running heads? + #t) + +;; this is necessary because right now jadetex does not understand +;; symbolic entities, whereas things work well with numeric entities. +(declare-characteristic preserve-sdata? + "UNREGISTERED::James Clark//Characteristic::preserve-sdata?" + #f) + +;; put the legal notice in a separate file +(define %generate-legalnotice-link% + #t) + +;; use graphics in admonitions, and have their path be "stylesheet-images" +;; NO: they do not yet look very good +(define %admon-graphics-path% + "./stylesheet-images/") + +(define %admon-graphics% + #f) + +(define %funcsynopsis-decoration% + ;; make funcsynopsis look pretty + #t) + +;;(define %shade-verbatim% +;; #t) + +(define %section-autolabel% #t) + ;; For enumerated sections (1.1, 1.1.1, 1.2, etc.) + +;; HB changed TOC depth to 3 levels. +(define (toc-depth nd) + 3) + +;; HB added 03/20/02, see dbparam.dsl ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; + +(define %body-attr% + ;; REFENTRY body-attr + ;; PURP What attributes should be hung off of BODY? + ;; DESC + ;; A list of the the BODY attributes that should be generated. + ;; The format is a list of lists, each interior list contains the + ;; name and value of a BODY attribute. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + (list + (list "BGCOLOR" "#EEEEEE") + (list "TEXT" "#000000") + (list "LINK" "#0000FF") + (list "VLINK" "#840084") + (list "ALINK" "#0000FF"))) + +(define %stylesheet% + ;; REFENTRY stylesheet + ;; PURP Name of the stylesheet to use + ;; DESC + ;; The name of the stylesheet to place in the HTML LINK TAG, or '#f' to + ;; suppress the stylesheet LINK. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + "../p_doc.css") + +(define %stylesheet-type% + ;; REFENTRY stylesheet-type + ;; PURP The type of the stylesheet to use + ;; DESC + ;; The type of the stylesheet to place in the HTML LINK TAG. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + "text/css") + +(define %css-liststyle-alist% + ;; REFENTRY css-liststyle-alist + ;; PURP Map DocBook OVERRIDE and MARK attributes to CSS + ;; DESC + ;; If '%css-decoration%' is turned on then the list-style-type property of + ;; list items will be set to reflect the list item style selected in the + ;; DocBook instance. This associative list maps the style type names used + ;; in your instance to the appropriate CSS names. If no mapping exists, + ;; the name from the instance will be used. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + '(("bullet" "disc") + ("box" "square"))) + +(define %css-decoration% + ;; REFENTRY css-decoration + ;; PURP Enable CSS decoration of elements + ;; DESC + ;; If '%css-decoration%' is turned on then HTML elements produced by the + ;; stylesheet may be decorated with STYLE attributes. For example, the + ;; LI tags produced for list items may include a fragment of CSS in the + ;; STYLE attribute which sets the CSS property "list-style-type". + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + #t) + +;; swa1 + +(define %generate-part-toc% + #f) + +(define %generate-article-toc% + ;; Should a Table of Contents be produced for Articles? + ;; If true, a Table of Contents will be generated for each 'Article'. + #t) + +(define %generate-part-toc-on-titlepage% + ;; Should the Part TOC appear on the Part title page? + #f) + +;;Do you want a separate page for the title? +(define %generate-article-titlepage-on-separate-page% + #t) + +;;Do you want the article toc on the titlepage or separate? +(define %generate-article-toc-on-titlepage% + #f) + +;;Titlepage Separate? +;; This is the one that makes TOC only on first page!! hal. +(define (chunk-skip-first-element-list) + '()) + +(define %body-start-indent% + ;; Default indent of body text + 2pi) + +(define %para-indent-firstpara% + ;; First line start-indent for the first paragraph + 0pt) + +;; swa2 + +(define %para-indent% + ;; First line start-indent for paragraphs (other than the first) + 0pt) + +(define %block-start-indent% + ;; Extra start-indent for block-elements + 2pt) + +;;Define distance between paragraphs +(define %para-sep% + (/ %bf-size% 2.0)) + +;; with swa2 no effects + +;; swa3 + +;;Define distance between block elements (figures, tables, etc.). +(define %block-sep% + (* %para-sep% 1.0)) +;; (* %para-sep% 2.0)) + +(define %hyphenation% + ;; Allow automatic hyphenation? + #t) + +(define %left-margin% 5pi) +(define %right-margin% 5pi) +(define %top-margin% 5pi) +(define %bottom-margin% 5pi) +(define %footer-margin% 2pi) +(define %header-margin% 2pi) + +(define %line-spacing-factor% 1.3) + ;; Factor used to calculate leading + ;; The leading is calculated by multiplying the current font size by the + ;; '%line-spacing-factor%'. For example, if the font size is 10pt and + ;; the '%line-spacing-factor%' is 1.1, then the text will be + ;; printed "10-on-11". + +(define %head-before-factor% + ;; Factor used to calculate space above a title + ;; The space before a title is calculated by multiplying the font size + ;; used in the title by the '%head-before-factor%'. +;; 0.75) + 0.5) + +(define %head-after-factor% + ;; Factor used to calculate space below a title + ;; The space after a title is calculated by multiplying the font size used + ;; in the title by the '%head-after-factor%'. + 0.5) + +(define %input-whitespace-treatment% 'collapse) + +(define ($generate-article-lot-list$) + ;; Which Lists of Titles should be produced for Articles? + (list )) + + + + + + + + + + + +;; this is necessary because right now jadetex does not understand +;; symbolic entities, whereas things work well with numeric entities. +(declare-characteristic preserve-sdata? + "UNREGISTERED::James Clark//Characteristic::preserve-sdata?" + #f) + +;; put the legal notice in a separate file +(define %generate-legalnotice-link% + #t) + +;; use graphics in admonitions, and have their path be "stylesheet-images" +;; NO: they do not yet look very good +(define %admon-graphics-path% + "./stylesheet-images/") + +(define %admon-graphics% + #f) + +(define %funcsynopsis-decoration% + ;; make funcsynopsis look pretty + #t) + +(define %html-ext% + ".html") + +(define %generate-article-toc% + ;; Should a Table of Contents be produced for Articles? + ;; If true, a Table of Contents will be generated for each 'Article'. + #t) + +;; HB added next three statements 05/03/02. +;;Do you want a separate page for the title? +(define %generate-article-titlepage-on-separate-page% + #t) + +;;Do you want the article toc on the titlepage or separate? +(define %generate-article-toc-on-titlepage% + #t) + +;;Titlepage Separate? +;; This is the one that makes TOC only on first page!! hal. +(define (chunk-skip-first-element-list) + '()) + +(define %root-filename% + ;; The filename of the root HTML document (e.g, "index"). + "index") + +(define %generate-part-toc% + #t) + +(define %shade-verbatim% + #t) + +(define %use-id-as-filename% + ;; Use ID attributes as name for component HTML files? + #t) + +(define %graphic-default-extension% + "gif") + +(define %section-autolabel% #t) + ;; For enumerated sections (1.1, 1.1.1, 1.2, etc.) + +;; HB changed TOC depth to 3 levels. +(define (toc-depth nd) + 3) + +;; HB added 03/20/02, see dbparam.dsl ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; + +(define %body-attr% + ;; REFENTRY body-attr + ;; PURP What attributes should be hung off of BODY? + ;; DESC + ;; A list of the the BODY attributes that should be generated. + ;; The format is a list of lists, each interior list contains the + ;; name and value of a BODY attribute. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + (list + (list "BGCOLOR" "#EEEEEE") + (list "TEXT" "#000000") + (list "LINK" "#0000FF") + (list "VLINK" "#840084") + (list "ALINK" "#0000FF"))) + +(define %stylesheet% + ;; REFENTRY stylesheet + ;; PURP Name of the stylesheet to use + ;; DESC + ;; The name of the stylesheet to place in the HTML LINK TAG, or '#f' to + ;; suppress the stylesheet LINK. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + "../p_doc.css") + +(define %stylesheet-type% + ;; REFENTRY stylesheet-type + ;; PURP The type of the stylesheet to use + ;; DESC + ;; The type of the stylesheet to place in the HTML LINK TAG. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + "text/css") + +(define %css-liststyle-alist% + ;; REFENTRY css-liststyle-alist + ;; PURP Map DocBook OVERRIDE and MARK attributes to CSS + ;; DESC + ;; If '%css-decoration%' is turned on then the list-style-type property of + ;; list items will be set to reflect the list item style selected in the + ;; DocBook instance. This associative list maps the style type names used + ;; in your instance to the appropriate CSS names. If no mapping exists, + ;; the name from the instance will be used. + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + '(("bullet" "disc") + ("box" "square"))) + +(define %css-decoration% + ;; REFENTRY css-decoration + ;; PURP Enable CSS decoration of elements + ;; DESC + ;; If '%css-decoration%' is turned on then HTML elements produced by the + ;; stylesheet may be decorated with STYLE attributes. For example, the + ;; LI tags produced for list items may include a fragment of CSS in the + ;; STYLE attribute which sets the CSS property "list-style-type". + ;; /DESC + ;; AUTHOR N/A + ;; /REFENTRY + #t) + + + + + + + + + +;; =================================================== +;; Vairant without TOC for the Homepage --oes 24/05/02 +;; =================================================== + +(define %generate-article-toc% + ;; Should a Table of Contents be produced for Articles? + ;; If true, a Table of Contents will be generated for each 'Article'. + #f) + + + + + + + diff --git a/doc/source/license.sgml b/doc/source/license.sgml new file mode 100644 index 00000000..79df71cb --- /dev/null +++ b/doc/source/license.sgml @@ -0,0 +1,71 @@ + + + + Privoxy is free software; you can + redistribute it and/or modify it under the terms of the + GNU General Public + + License, version 2, as published by the Free Software Foundation. + + + + This program is distributed in the hope that it will be useful, but WITHOUT + ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for + + more details, which is available from the Free Software Foundation, Inc, 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA. + + + + You should have received a copy of the + GNU General Public License + along with this program; if not, write to the
    Free Software + Foundation, Inc. 59 Temple Place - Suite 330 + Boston, MA 02111-1307 + USA
    +     + diff --git a/doc/source/newfeatures.sgml b/doc/source/newfeatures.sgml new file mode 100644 index 00000000..65a1e073 --- /dev/null +++ b/doc/source/newfeatures.sgml @@ -0,0 +1,130 @@ + + + + + + + + + Integrated browser based configuration and control utility at http://config.privoxy.org/ + (shortcut: http://p.p/). Browser-based + tracing of rule and filter effects. Remote toggling. + + + + + + Web page content filtering (removes banners based on size, + invisible web-bugs, JavaScript and HTML annoyances, pop-up windows, etc.) + + + + + + Modularized configuration that allows for standard settings and + user settings to reside in separate files, so that installing updated + actions files won't overwrite individual user settings. + + + + + + HTTP/1.1 compliant (but not all optional 1.1 features are supported). + + + + + + Support for Perl Compatible Regular Expressions in the configuration files, and + generally a more sophisticated and flexible configuration syntax over + previous versions. + + + + + + Improved cookie management features (e.g. session based cookies). + + + + + + GIF de-animation. + + + + + + Bypass many click-tracking scripts (avoids script redirection). + + + + + + Multi-threaded (POSIX and native threads). + + + + + + User-customizable HTML templates for all proxy-generated pages (e.g. "blocked" page). + + + + + + Auto-detection and re-reading of config file changes. + + + + + + Improved signal handling, and a true daemon mode (Unix). + + + + + + Every feature now controllable on a per-site or per-location basis, configuration + more powerful and versatile over-all. + + + + + + Many smaller new features added, limitations and bugs removed, and security holes fixed. + + + + + diff --git a/doc/source/p-authors.sgml b/doc/source/p-authors.sgml new file mode 100644 index 00000000..8d1c2d5a --- /dev/null +++ b/doc/source/p-authors.sgml @@ -0,0 +1,88 @@ + + + Current Project Developers: + +]]> + + + Jon Foster + Andreas Oesterhelt + Stefan Waldherr + + Thomas Steudten + Rodney Stromlund + + + + Current Project Contributors: + + + +]]> + Rodrigo Barbosa (RPM specfiles) + Hal Burgiss (docs) + Alexander Lazic + Gábor Lipták + Guy + Haroon Rafique + David Schmidt (OS/2, Mac OSX ports) + Joerg Strohmayer + Sarantis Paskalis + + + + Originally developed by: + + + + Junkbusters Corp. + Anonymous Coders + + + + Thanks to the many people who have tested Privoxy, reported bugs, or made + suggestions. These include (in alphabetical order): + + + + Ken Arromdee + Reiner Buehl + Andrew J. Caines + Clifford Caoile + Peter E + Aaron Hamid + Magnus Holmgren + Paul Lieverse + Roberto Ragusa + Bart Schelstraete + Darren Wiebe + jwz + Michael T. Davis + +]]> diff --git a/doc/source/privoxy-man-page.sgml b/doc/source/privoxy-man-page.sgml new file mode 100644 index 00000000..026f511e --- /dev/null +++ b/doc/source/privoxy-man-page.sgml @@ -0,0 +1,422 @@ + + + + + + + + + + + + + + +]> + + + + 2002-05-14 + + + privoxy + 1 + + Privoxy &p-version; + + + + + privoxy + Privacy Enhancing Proxy + + + + + privoxy + + + + pidfile + user[.group] + configfile + (UNIX) + + + + privoxy.exe + configfile + (Windows) + + + + + +Options + + Privoxy may be invoked with the following command line + options: + + + + + --help + + + Print brief usage info and exit. + + + + + + --version + + + Print version info and exit. + + + + + + --no-daemon + + + Don't become a daemon, i.e. don't fork and become process group + leader, don't detach from controlling tty, and do all logging there. + + + + + + --pidfile pidfile + + + On startup, write the process ID to pidfile. + Delete the pidfile on exit. + Failiure to create or delete the pidfile + is non-fatal. If no --pidfile option is given, no PID file will be used. + + + + + + --user user[.group] + + + + + After (optionally) writing the PID file, assume the user ID of + user and the GID of + group, or, if the optional + group was not given, the default group of + user. Exit if the privileges are not + sufficient to do so. + + + + + + + If the configfile is not specified on the command line, + Privoxy will look for a file named + config in the current directory (except on Win32 where + it will try config.txt). If no + configfile is found, Privoxy will + fail to start. + + + + + + +Description + + &p-intro; + + + + + +Installation and Usage + + Browsers must be individually configured to use Privoxy as + a HTTP proxy. The default setting is for localhost, on port 8118 + (configurable in the main config file). To set the HTTP proxy in Netscape + and Mozilla, go through: Edit; + Preferences; Advanced; + Proxies; Manual Proxy Configuration; + View. + + + For Internet Explorer, go through: Tools; + Internet Properties; Connections; + LAN Settings. + + + The Secure (SSL) Proxy should also be set to the same values, otherwise + https: URLs will not be proxied. + + + For other browsers, check the documentation. + + + + + +Configuration + + Privoxy can be configured with the various configuration + files. The default configuration files are: config, + default.filter, and + default.action. user.action should + be used for locally defined exceptions to the default rules of + default.action These are all well commented. On Unix + and Unix-like systems, these are located in + /etc/privoxy/ by default. On Windows, OS/2 and AmigaOS, + these files are in the same directory as the Privoxy + executable. + + + The name and number of configuration files has changed from previous + versions, and is subject to change as development progresses. In fact, the + configuration itself is changed and much more sophisticated. See the + user-manual for a + complete explanation of all configuration options and general usage. + + + The actions list (ad blocks, etc) can also be configured with your + web browser at http://config.privoxy.org/. + Privoxy's configuration parameters can also be viewed at + the same page. In addition, Privoxy can be toggled on/off. + This is an internal page. + + + + + +Sample Configuration + + A brief example of what a simple default.action + configuration might look like: + + + + # Define a few useful custom aliases for later use + {{alias}} + + # Useful aliases + +crunch-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies + -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + +imageblock = +block +handle-as-image + + # Fragile sites should have the minimum changes + fragile = -block -deanimate-gifs -fast-redirects -filter \ + -hide-referer -prevent-cookies -kill-popups + + ## Turn some actions on ################################ + { \ + -add-header \ + -block \ + +deanimate-gifs{last} \ + -downgrade-http-version \ + -fast-redirects \ + +filter{html-annoyances} \ + +filter{js-annoyances} \ + +filter{content-cookies} \ + +filter{webbugs} \ + +filter{banners-by-size} \ + +hide-forwarded-for-headers \ + +hide-from-header{block} \ + +hide-referrer{forge} \ + -hide-user-agent \ + -handle-as-image \ + +set-image-blocker{pattern} \ + -limit-connect \ + +prevent-compression \ + +session-cookies-only \ + -crunch-cookies \ + -kill-popups \ + } + / # '/' Matches *all* URL patterns + + # Block, and treat these URL patterns as if they were 'images'. + # We would expect these to be ads. + {+imageblock} + .ad.doubleclick.net + .a[0-9].yimg.com/(?:(?!/i/).)*$ + ad.*.doubleclick.net + + # Block any URLs that match these patterns + {+block} + ad*. + .*ads. + banner?. + /.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) + .hitbox.com + + # Make exceptions for these harmless ones that would be + # caught by our +block patterns just above. + {-block} + adsl. + advice. + .*downloads. + + + + + Then for a user.action, we would put local, + narrowly defined exceptions: + + + + # Re-define aliases as needed here + {{alias}} + + # Useful aliases + -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + + # Set personal exceptions to the policies in default.action ####### + + # Sites where we want persistant cookies, so allow *all* cookies + {-crunch-cookies -session-cookies-only} + .redhat.com + .sun.com + .msdn.microsoft.com + + # This site breaks easily. + {-block -fast-redirects} + .forbes.com + + + + + See the comments in the configuration files themselves, or the + user-manual + for explanations of the above syntax, and other Privoxy + configuration options. + + + + + + +Files + + + /usr/sbin/privoxy + /etc/privoxy/config + /etc/privoxy/default.action + /etc/privoxy/standard.action + /etc/privoxy/user.action + /etc/privoxy/default.filter + /etc/privoxy/trust + /etc/privoxy/templates/* + /var/log/privoxy/logfile + + + + Various other files should be included, but may vary depending on platform + and build configuration. More documentation should be included in the local + documentation directory. + + + + + + +Signals + + + Privoxy terminates on the SIGINT, + SIGTERM and SIGABRT signals. Log + rotation scripts may cause a re-opening of the logfile by sending a + SIGHUP to Privoxy. Note that unlike + other daemons, Privoxy does not need to be made aware of + config file changes by SIGHUP -- it will detect them + automatically. + + + + + +Notes + + This is a &p-status; version of Privoxy. Not + all features are well tested. +]]> + + Please see the user-manual on how to contact the + developers for feature requests, reporting problems, and other questions. + + + + + +See Also + + &seealso; + + + + +Development Team + + &authors; + + + + +Copyright and License + +Copyright + + ©right; + + + +License + + &license; + + + + + diff --git a/doc/source/privoxy.sgml b/doc/source/privoxy.sgml new file mode 100644 index 00000000..8ecbcc39 --- /dev/null +++ b/doc/source/privoxy.sgml @@ -0,0 +1,42 @@ + + + + Privoxy is a web proxy with advanced filtering + capabilities for protecting privacy, filtering web page content, managing + cookies, controlling access, and removing ads, banners, pop-ups and other + obnoxious Internet junk. Privoxy has a very + flexible configuration and can be customized to suit individual needs and + tastes. Privoxy has application for both + stand-alone systems and multi-user networks. + + + + Privoxy is based on Internet + Junkbuster (tm). + diff --git a/doc/source/readme.sgml b/doc/source/readme.sgml new file mode 100644 index 00000000..0970d429 --- /dev/null +++ b/doc/source/readme.sgml @@ -0,0 +1,244 @@ + + + + + + + + + + + + +]> + +
    + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + + + + +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/doc/source/readme.sgml,v $ + * + * Purpose : README file to give a short intro. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + *********************************************************************/ + + + + + + + + This README is included with + Privoxy &p-version;. See http://www.privoxy.org/ for more information. The current code + level is &p-status;. + + + + + +&p-intro; + + + +IMPORTANT CHANGES + + NEWS! As of 03/24/02, the name of this project has been changed from + ijbswa/Junkbuster to Privoxy. This is reflected in many of the included + files. + + + WARNING! If upgrading from earlier versions of this project via RPM packages, + the new package will delete any previously installed 'Junkbuster' packages. + + + IMPORTANT! READ! Configuration Change as of 17 Mar 2002: The default listening + port is now 8118 due to conflicts with port 8000 assignment. You will need to + change your browser if upgrading!!! And maybe firewall, etc. + + + + +INSTALL + + &buildsource; + + + + +RUN + + privoxy [——help] [——version] + [——no-daemon] [——pidfile PIDFILE] [——user + USER[.GROUP]] [config_file] + + + See the man page or user-manual for a brief explanation of each option. + + + If no config_file is specified on the command line, Privoxy will look for a + file named 'config' in the current directory (except Win32 which will look + for 'config.txt'). If no config_file is found, Privoxy will fail to start. + + + Or for Red Hat: /etc/rc.d/init.d/privoxy start + + + Or for SuSE: /etc/rc.d/privoxy start + + + + +CONFIGURATION + + See: 'config', 'default.action', 'user.action', and 'default.filter'. + 'user.action' is for personal configuration. These are all well commented. + Most of the magic is in '*.action' files. 'user.action' should be + used for any actions customizations. On Unix-like systems, these files + are installed in /etc/privoxy. On Windows, then wherever the executable + itself is installed. There are many significant changes and advances since + Junkbuster v2.0.x. The user-manual has a run down of configuration options, + and examples: http://www.privoxy.org/user-manual/. + + + Be sure to set your browser(s) for HTTP/HTTPS Proxy at <IP>:<Port>, or + whatever you specify in the config file under 'listen-address'. DEFAULT is + localhost:8118. + + + The actions list can be configured via the web interface accessed via + http://p.p/, as well other options. + + + All configuration files are subject to unannounced changes during the + development process. + +]]> + + + +DOCUMENTATION + + There should be documentation in the 'doc' subdirectory. In particular, see the user-manual there, + the faq, and those interested in Privoxy development, should look at + developer-manual. + + + The source and configuration files are all well + commented. The main configuration files are: 'config', 'default.action', and + 'default.filter'. + + + + Included documentation may vary according to platform and packager. + + + + +CONTACTING THE DEVELOPERS, BUG REPORTING AND FEATURE REQUESTS + + &contacting; + + + + + + + + + + + + + +
    diff --git a/doc/source/seealso.sgml b/doc/source/seealso.sgml new file mode 100644 index 00000000..22dc127e --- /dev/null +++ b/doc/source/seealso.sgml @@ -0,0 +1,107 @@ + + + + Other references and sites of interest to Privoxy + users: + + + + + + http://www.privoxy.org/, + the Privoxy Home page. + + + + + http://www.privoxy.org/faq/, + the Privoxy FAQ. + + + + + http://sourceforge.net/projects/ijbswa/, + the Project Page for Privoxy on + SourceForge. + + + + + http://config.privoxy.org/, + the web-based user interface. Privoxy must be + running for this to work. Shortcut: http://p.p/ + + + + + http://www.privoxy.org/actions/, to submit misses to the developers. + + + + + http://www.junkbusters.com/ht/en/cookies.html, + an explanation how cookies are used to track web users. + + + + + http://www.junkbusters.com/ijb.html, + the original Internet Junkbuster. + + + + + http://www.waldherr.org/junkbuster/, + Stefan Waldherr's version of Junkbuster, from which Privoxy was + derived. + + + + + http://privacy.net/analyze/, a useful site + to check what information about you is leaked while you browse the web. + + + + + http://www.squid-cache.org/, a very popular + caching proxy, which is often used together with Privoxy. + + + + + http://www.privoxy.org/developer-manual/, + the Privoxy developer manual. + + + diff --git a/doc/source/supported.sgml b/doc/source/supported.sgml new file mode 100644 index 00000000..072b815e --- /dev/null +++ b/doc/source/supported.sgml @@ -0,0 +1,45 @@ + + + At present, Privoxy is known to run on + Windows(95, 98, ME, 2000, XP), Linux (RedHat, Suse, Debian, Conectiva), + Mac OSX, OS/2, AmigaOS, BeOS, FreeBSD, NetBSD, Solaris, and many more + flavors of Unix. + + + + But any operating system that runs TCP/IP, can conceivably take advantage of + Privoxy in a networked situation where + Privoxy would run as a server on a LAN gateway. + Then only the gateway needs to be running one of the above + operating systems. + + + + Source code is freely available, so porting to other operating systems + is always a possibility. + +]]> diff --git a/doc/source/user-manual.sgml b/doc/source/user-manual.sgml new file mode 100644 index 00000000..60ab2810 --- /dev/null +++ b/doc/source/user-manual.sgml @@ -0,0 +1,7581 @@ + + + + + + + + + + + + + + + + + + + + + + + +]> + + +
    + + +Privoxy User Manual + + + + + + Copyright &my-copy; 2001, 2002 by + Privoxy Developers + + + +$Id: user-manual.sgml,v 1.122 2002/05/24 13:24:08 oes Exp $ + + + + + + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + + The User Manual gives users information on how to + install, configure and use Privoxy. + + + + &p-intro; + + + + You can find the latest version of the User Manual at http://www.privoxy.org/user-manual/. + Please see the Contact section on how to + contact the developers. + + + + + + + + + + +Introduction + + This documentation is included with the current &p-status; version of + Privoxy, v.&p-version;soon ;-)]]>. + + + + + Since this is a &p-status; version, not all new features are well tested. This + documentation may be slightly out of sync as a result (especially with + CVS sources). And there may be bugs, though hopefully + not many! + +]]> + + +Features + + In addition to Internet Junkbuster's traditional + features of ad and banner blocking and cookie management, + Privoxy provides new features: + + + &newfeatures; + + + + + + + + + +Installation + + + Privoxy is available both in convenient pre-compiled + packages for a wide range of operating systems, and as raw source code. + For most users, we recommend using the packages, which can be downloaded from our + Privoxy Project + Page. + + + + Note: If you have a previous Junkbuster or + Privoxy installation on your system, you + will need to remove it. On some platforms, this may be done for you as part + of their installation procedure. (See below for your platform). In any case + be sure to backup your old configuration if it is valuable to + you. See the note to + upgraders section below. + + + +Binary Packages + +How to install the binary packages depends on your operating system: + + + +Red Hat, SuSE and Conectiva RPMs + + + RPMs can be installed with rpm -Uvh privoxy-&p-version;-1.rpm, + and will use /etc/privoxy for the location + of configuration files. + + + + Note that on Red Hat, Privoxy will + not be automatically started on system boot. You will + need to enable that using chkconfig, + ntsysv, or similar methods. Note that SuSE will +automatically start Privoxy in the boot process. + + + + If you have problems with failed dependencies, try rebuilding the SRC RPM: + rpm --rebuild privoxy-&p-version;-1.src.rpm. This + will use your locally installed libraries and RPM version. + + + + Also note that if you have a Junkbuster RPM installed + on your system, you need to remove it first, because the packages conflict. + Otherwise, RPM will try to remove Junkbuster + automatically, before installing Privoxy. + + + + +Debian + + DEBs can be installed with dpkg -i + privoxy_&p-version;-1.deb, and will use + /etc/privoxy for the location of configuration + files. + + + + +Windows + + + Just double-click the installer, which will guide you through + the installation process. You will find the configuration files + in the same directory as you installed Privoxy in. We do not + use the registry of Windows. + + + + +Solaris, NetBSD, FreeBSD, HP-UX + + + Create a new directory, cd to it, then unzip and + untar the archive. For the most part, you'll have to figure out where + things go. FIXME. + + + + +OS/2 + + + First, make sure that no previous installations of + Junkbuster and / or + Privoxy are left on your + system. You can do this by + + + + Then, just double-click the WarpIN self-installing archive, which will + guide you through the installation process. A shadow of the + Privoxy executable will be placed in your + startup folder so it will start automatically whenever OS/2 starts. + + + + The directory you choose to install Privoxy + into will contain all of the configuration files. + + + + +Max OSX + + Unzip the downloaded package (you can either double-click on the file + in the finder, or on the desktop if you downloaded it there). Then, + double-click on the package installer icon and follow the installation + process. + Privoxy will be installed in the subdirectory + /Applications/Privoxy.app. + Privoxy will set itself up to start + automatically on system bring-up via + /System/Library/StartupItems/Privoxy. + + + + +AmigaOS + + Copy and then unpack the lha archive to a suitable location. + All necessary files will be installed into Privoxy + directory, including all configuration and log files. To uninstall, just + remove this directory. + + + Start Privoxy (with RUN <>NIL:) in your + startnet script (AmiTCP), in + s:user-startup (RoadShow), as startup program in your + startup script (Genesis), or as startup action (Miami and MiamiDx). + Privoxy will automatically quit when you quit your + TCP/IP stack (just ignore the harmless warning your TCP/IP stack may display that + Privoxy is still running). + + + + + +Building from Source + + + The most convenient way to obtain the Privoxy sources + is to download the source tarball from our project + page. + + + + If you like to live on the bleeding edge and are not afraid of using + possibly unstable development versions, you can check out the up-to-the-minute + version directly from the + CVS repository or simply download the nightly CVS + tarball. + + + +&buildsource; + + + + + + + + + + +Note to Upgraders + + There are very significant changes from earlier + Junkbuster versions to the current + Privoxy. The number, names, syntax, and + purposes of configuration files have substantially changed. + Junkbuster 2.0.x configuration + files will not migrate, Junkbuster 2.9.x + and Privoxy configurations will need to be + ported. The functionalities of the old blockfile, + cookiefile and imagelist + are now combined into the actions + files. + default.action, is the main actions file. Local + exceptions should best be put into user.action. + + + A filter file (typically + default.filter) is new as of Privoxy + 2.9.x, and provides some of the new sophistication (explained + below). config is much the same as before. + + + If upgrading from a 2.0.x version, you will have to use the new config + files, and possibly adapt any personal rules from your older files. + When porting personal rules over from the old blockfile + to the new actions files, please note that even the pattern syntax has + changed. If upgrading from 2.9.x development versions, it is still + recommended to use the new configuration files. + + + A quick list of things to be aware of before upgrading: + + + + + + + + The default listening port is now 8118 due to a conflict with another + service (NAS). + + + + + Some installers may remove earlier versions completely. Save any + important configuration files! + + + + + Privoxy is controllable with a web browser + at the special URL: http://config.privoxy.org/ + (Shortcut: http://p.p/). Many + aspects of configuration can be done here, including temporarily disabling + Privoxy. + + + + + The primary configuration files for cookie management, ad and banner + blocking, and many other aspects of Privoxy + configuration are the actions + files. It is strongly recommended to become familiar with the new + actions concept below, before modifying these files. Locally defined rules + should go into user.action. + + + + + + + Some installers may not automatically start + Privoxy after installation. + + + + + + + + +Quickstart to Using <application>Privoxy</application> + + + + + + If upgrading, from versions before 2.9.16, please back up any configuration + files. See the Note to Upgraders Section. + + + + + + Install Privoxy. See the Installation Section below for platform specific + information. + + + + + + Advanced users and those who want to offer Privoxy + service to more than just their local machine should check the main config file, especially the security-relevant options. These are + off by default. + + + + + + Start Privoxy, if the installation program has + not done this already (may vary according to platform). See the section + Starting Privoxy. + + + + + + Set your browser to use Privoxy as HTTP and + HTTPS proxy by setting the proxy configuration for address of + 127.0.0.1 and port 8118. + (Junkbuster and earlier versions of + Privoxy used port 8000.) See the section Starting Privoxy below + for more details on this. + + + + + + Flush your browser's disk and memory caches, to remove any cached ad images. + + + + + + A default installation should provide a reasonable starting point for + most. There will undoubtedly be occasions where you will want to adjust the + configuration, but that can be dealt with as the need arises. Little + to no initial configuration is required in most cases. + + + See the Configuration section for more + configuration options, and how to customize your installation. + next section for a quick + introduction to how Privoxy blocks ads and + banners.]]> + + + + + + If you experience ads that slipped through, innocent images that are + blocked, or otherwise feel the need to fine-tune + Privoxy's behaviour, take a look at the actions files. As a quick start, you might + find the richly commented examples + helpful. You can also view and edit the actions files through the web-based user interface. The + Appendix Anatomy of an + Action has hints how to debug actions that + misbehave. + + + + + + Please see the section Contacting the + Developers on how to report bugs or problems with websites or to get + help. + + + + + + Now enjoy surfing with enhanced comfort and privacy! + + + + + + + + + + +Quickstart to Ad Blocking + + + Ad blocking is but one of Privoxy's + array of features. Many of these features are for the technically minded advanced + user. But, ad and banner blocking is surely common ground for everybody. + + + This section will provide a quick summary of ad blocking so + you can get up to speed quickly without having to read the more extensive + information provided below, though this is highly recommended. + + + First a bit of a warning ... blocking ads is much like blocking SPAM: the + more aggressive you are about it, the more likely you are to block + things that were not intended. So there is a trade off here. If you want + extreme ad free browsing, be prepared to deal with more + problem sites, and to spend more time adjusting the + configuration to solve these unintended consequences. In short, there is + not an easy way to eliminate all ads. Either take + the easy way and settle for most ads blocked with the + default configuration, or jump in and tweak it for your personal surfing + habits and preferences. + + + Secondly, a brief explanation of Privoxy's + actions. Actions in this context, are + the directives we use to tell Privoxy to perform + some task relating to HTTP transactions (i.e. web browsing). We tell + Privoxy to take some action. Each + action has a unique name and function. While there are many potential + actions in Privoxy's + arsenal, only a few are used for ad blocking. Actions, and action + configuration files, are explained in depth below. + + + Actions are specified in Privoxy's configuration, + followed by one or more URLs to which the action should apply. URLs + can actually be URL type patterns that use + wildcards so they can apply potentially to a range of similar URLs. The + actions, together with the URL patterns are called a section. + + + When you connect to a website, the full URL will either match one or more + of the sections as defined in Privoxy's configuration, + or not. If so, then Privoxy will perform the + respective actions. If not, then nothing special happens. Futhermore, web + pages may contain embedded, secondary URLs that your web browser will + use to load additional components of the page, as it parses the + original page's HTML content. An ad image for instance, is just an URL + embedded in the page somewhere. The image itself may be on the same server, + or a server somewhere else on the Internet. Complex web pages will have many + such embedded URLs. + + + + The actions we need to know about for ad blocking are: block, handle-as-image, and + set-image-blocker: + + + + + + + + block - this action stops + any contact between your browser and any URL patterns that match this + action's configuration. It can be used for blocking ads, but also anything + that is determined to be unwanted. By itself, it simply stops any + communication with the remote server and sends Privoxy's + own built-in BLOCKED page instead to let you now what has happened. + + + + + + handle-as-image - + tells Privoxy to treat this URL as an image. + Privoxy's default configuration already does this + for all common image types (e.g. GIF), but there are many situations where this + is not so easy to determine. So we'll force it in these cases. This is particularly + important for ad blocking, since only if we know that it's an image of + some kind, can we replace it with an image of our chosing, instead of the + Privoxy BLOCKED page (which would only result in + a broken image icon). There are some limitations to this + though. For instance, you can't just brute-force an image substituion for + an entire HTML page in most situations. + + + + + + set-image-blocker - tells + Privoxy what to display in place of an ad image that + has hit a block rule. For this to come into play, the URL must match a + block action somewhere in the + configuration, and, it must also match an + handle-as-image action. + + + The configuration options on what to display instead of the ad are: + + + +    pattern - a checkboard pattern, so that an ad + replacement is obvious. This is the default. + + + + +    blank - A very small empty GIF image is displayed. + This is the so-called invisible configuration option. + + + + +    http://<URL> - A redirect to any image anywhere + of the user's choosing (advanced usage). + + + + + + + + + The quickest way to adjust any of these settings is with your browser through + the special Privoxy editor at http://config.privoxy.org/show-status + (shortcut: http://p.p/show-status). This + is an internal page, and does not require Internet access. Select the + appropriate actions file, and click + Edit. It is best to put personal or + local preferences in user.action since this is not + meant to be overwritten during upgrades, and will over-ride the settings in + other files. Here you can insert new actions, and URLs for ad + blocking or other purposes, and make other adjustments to the configuration. + Privoxy will detect these changes automatically. + + + + A quick and simple step by step example: + + + + + + + + Right click on the ad image to be blocked, then select + Copy Link Location from the + pop-up menu. + + + + + Set your browser to + http://config.privoxy.org/show-status + + + + + Find user.action in the top section, and click + on Edit: + + + + +
    Actions Files in Use + + + + + + [ Screenshot of Actions Files in Use ] + + +
    +     +     + + + + You should have a section with only + block listed under + Actions:. + If not, click a Insert new section below + button, and in the new section that just appeared, click the + Edit button right under the word Actions:. + This will bring up a list of all actions. Find + block near the top, and click + in the Enabled column, then Submit + just below the list. + + + + + Now, in the block actions section, + click the Add button, and paste the URL the + browser got from Copy Link Location. + Remove the http:// at the beginning of the URL. Then, click + Submit (or + OK if in a pop-up window). + + + + + Now go back to the original page, and press SHIFT-Reload + (or flush all browser caches). The image should be gone now. + + + +     +     + + + This is a very crude and simple example. There might be good reasons to use a + wildcard pattern match to include potentially similar images from the same + site. For a more extensive explanation of patterns, and + the entire actions concept, see the Actions + section. + + + + For advanced users who want to hand edit their config files, you might want + to now go to the Actions Files Tutorial. + The ideas explained thererin also apply to the web-based editor. + + +     + +     + + + + + + +Starting <application>Privoxy</application> + + Before launching Privoxy for the first time, you + will want to configure your browser(s) to use + Privoxy as a HTTP and HTTPS proxy. The default is + 127.0.0.1 (or localhost) for the proxy address, and port 8118 (earlier versions + used port 8000). This is the one configuration step that must be done! + + + + +
    Proxy Configuration (Mozilla) + + + + + + [ Screenshot of Mozilla Proxy Configuration ] + + +
    +     + + + With Netscape (and + Mozilla), this can be set under: + + + + + + Edit + |_ + Preferences + |_ + Advanced + |_ + Proxies + |_ + HTTP Proxy + + + + For Internet Explorer: + + + + + + Tools + |_ + Internet Properties + |_ + Connections + |_ + LAN Settings + + + + Then, check Use Proxy and fill in the appropriate info + (Address: 127.0.0.1, Port: 8118). Include HTTPS (SSL), if you want HTTPS + proxy support too. + + + + After doing this, flush your browser's disk and memory caches to force a + re-reading of all pages and to get rid of any ads that may be cached. You + are now ready to start enjoying the benefits of using + Privoxy! + + + + Privoxy is typically started by specifying the + main configuration file to be used on the command line. If no configuration + file is specified on the command line, Privoxy + will look for a file named config in the current + directory. Except on Win32 where it will try config.txt. + + + +RedHat and Conectiva + + We use a script. Note that RedHat does not start Privoxy upon booting per + default. It will use the file /etc/privoxy/config as + its main configuration file. + + + + # /etc/rc.d/init.d/privoxy start + + + + + +Debian + + We use a script. Note that Debian starts Privoxy upon booting per + default. It will use the file + /etc/privoxy/config as its main configuration + file. + + + + # /etc/init.d/privoxy start + + + + + +SuSE + +We use a script. It will use the file /etc/privoxy/config +as its main configuration file. Note that SuSE starts Privoxy upon booting +your PC. + + + + # rcprivoxy start + + + + + +Windows + +Click on the Privoxy Icon to start Privoxy. If no configuration file is + specified on the command line, Privoxy will look + for a file named config.txt. Note that Windows will + automatically start Privoxy upon booting you PC. + + + + +Solaris, NetBSD, FreeBSD, HP-UX and others + +Example Unix startup command: + + + + # /usr/sbin/privoxy /etc/privoxy/config + + + + + +OS/2 + +FIXME. + + + + +MAX OSX + +FIXME. + + + + + +AmigaOS + +FIXME. + + + + + + + +Command Line Options + + Privoxy may be invoked with the following + command-line options: + + + + + + + + --version + + + Print version info and exit. Unix only. + + + + + --help + + + Print short usage info and exit. Unix only. + + + + + --no-daemon + + + Don't become a daemon, i.e. don't fork and become process group + leader, and don't detach from controlling tty. Unix only. + + + + + --pidfile FILE + + + + On startup, write the process ID to FILE. Delete the + FILE on exit. Failure to create or delete the + FILE is non-fatal. If no FILE + option is given, no PID file will be used. Unix only. + + + + + --user USER[.GROUP] + + + + After (optionally) writing the PID file, assume the user ID of + USER, and if included the GID of GROUP. Exit if the + privileges are not sufficient to do so. Unix only. + + + + + configfile + + + If no configfile is included on the command line, + Privoxy will look for a file named + config in the current directory (except on Win32 + where it will look for config.txt instead). Specify + full path to avoid confusion. If no config file is found, + Privoxy will fail to start. + + + + + + + + +     + + + + + +<application>Privoxy</application> Configuration + + All Privoxy configuration is stored + in text files. These files can be edited with a text editor. + Many important aspects of Privoxy can + also be controlled easily with a web browser. + + + + + + +Controlling <application>Privoxy</application> with Your Web Browser + + Privoxy's user interface can be reached through the special + URL http://config.privoxy.org/ + (shortcut: http://p.p/), + which is a built-in page and works without Internet access. + You will see the following section: + + + + + + +     Privoxy Menu + + + +         ▪  View & change the current configuration + + +         ▪  View the source code version numbers + + +         ▪  View the request headers. + + +         ▪  Look up which actions apply to a URL and why + + +         ▪  Toggle Privoxy on or off + + + + + + + + This should be self-explanatory. Note the first item leads to an editor for the + actions files, which is where the ad, banner, + cookie, and URL blocking magic is configured as well as other advanced features of + Privoxy. This is an easy way to adjust various + aspects of Privoxy configuration. The actions + file, and other configuration files, are explained in detail below. + + + + Toggle Privoxy On or Off is handy for sites that might + have problems with your current actions and filters. You can in fact use + it as a test to see whether it is Privoxy + causing the problem or not. Privoxy continues + to run as a proxy in this case, but all manipulation is disabled, i.e. + Privoxy acts like a normal forwarding proxy. There + is even a toggle Bookmarklet offered, so + that you can toggle Privoxy with one click from + your browser. + + + + + + + + + + + + +Configuration Files Overview + + For Unix, *BSD and Linux, all configuration files are located in + /etc/privoxy/ by default. For MS Windows, OS/2, and + AmigaOS these are all in the same directory as the + Privoxy executable. + + + + The installed defaults provide a reasonable starting point, though + some settings may be aggressive by some standards. For the time being, the + principle configuration files are: + + + + + + + + The main configuration file is named config + on Linux, Unix, BSD, OS/2, and AmigaOS and config.txt + on Windows. This is a required file. + + + + + + default.action (the main actions file) + is used to define which actions relating to banner-blocking, images, pop-ups, + content modification, cookie handling etc should be applied by default. It also defines many + exceptions (both positive and negative) from this default set of actions that enable + Privoxy to selectively eliminate the junk, and only the junk, on + as many websites as possible. + + + Multiple actions files may be defined in config. These + are processed in the order they are defined. Local customizations and locally + preferred exceptions to the default policies as defined in + default.action (which you will most probably want + to define sooner or later) are probably best applied in + user.action, where you can preserve them across + upgrades. standard.action is for + Privoxy's internal use. + + + There is also a web based editor that can be accessed from + http://config.privoxy.org/show-status + (Shortcut: http://p.p/show-status) for the + various actions files. + + + + + + default.filter (the filter + file) can be used to re-write the raw page content, including + viewable text as well as embedded HTML and JavaScript, and whatever else + lurks on any given web page. The filtering jobs are only pre-defined here; + whether to apply them or not is up to the actions files. + + + + + + + + All files use the # character to denote a + comment (the rest of the line will be ignored) and understand line continuation + through placing a backslash ("\") as the very last character + in a line. If the # is preceded by a backslash, it looses + its special function. Placing a # in front of an otherwise + valid configuration line to prevent it from being interpreted is called "commenting + out" that line. + + + + The actions files and default.filter + can use Perl style regular expressions for + maximum flexibility. + + + + After making any changes, there is no need to restart + Privoxy in order for the changes to take + effect. Privoxy detects such changes + automatically. Note, however, that it may take one or two additional + requests for the change to take effect. When changing the listening address + of Privoxy, these wake up requests + must obviously be sent to the old listening address. + + + + While under development, the configuration content is subject to change. + The below documentation may not be accurate by the time you read this. + Also, what constitutes a default setting, may change, so + please check all your configuration files on important issues. + +]]> + + + + + + + + + +The Main Configuration File + + + Again, the main configuration file is named config on + Linux/Unix/BSD and OS/2, and config.txt on Windows. + Configuration lines consist of an initial keyword followed by a list of + values, all separated by whitespace (any number of spaces or tabs). For + example: + + + + + + + confdir /etc/privoxy + + + + + + Assigns the value /etc/privoxy to the option + confdir and thus indicates that the configuration + directory is named /etc/privoxy/. + + + + All options in the config file except for confdir and + logdir are optional. Watch out in the below description + for what happens if you leave them unset. + + + + The main config file controls all aspects of Privoxy's + operation that are not location dependent (i.e. they apply universally, no matter + where you may be surfing). + + + + + + +Configuration and Log File Locations + + + Privoxy can (and normally does) use a number of + other files for additional configuration, help and logging. + This section of the configuration file tells Privoxy + where to find those other files. + + + + The user running Privoxy, must have read permission for all + configuration files, and write permission to any files that would + be modified, such as log files. + + +confdir + + + + Specifies: + + The directory where the other configuration files are located + + + + Type of value: + + Path name + + + + Default value: + + /etc/privoxy (Unix) or Privoxy installation dir (Windows) + + + + Effect if unset: + + Mandatory + + + + Notes: + + + No trailing /, please + + + When development goes modular and multi-user, the blocker, filter, and + per-user config will be stored in subdirectories of confdir. + For now, the configuration directory structure is flat, except for + confdir/templates, where the HTML templates for CGI + output reside (e.g. Privoxy's 404 error page). + + + + + + + +logdir + + + + Specifies: + + + The directory where all logging takes place (i.e. where logfile and + jarfile are located) + + + + + Type of value: + + Path name + + + + Default value: + + /var/log/privoxy (Unix) or Privoxy installation dir (Windows) + + + + Effect if unset: + + Mandatory + + + + Notes: + + + No trailing /, please + + + + + + + +actionsfile + + + + + + + + Specifies: + + + The actions file(s) to use + + + + + Type of value: + + File name, relative to confdir, without the .action suffix + + + + Default values: + + + + standard # Internal purposes, no editing recommended + + + default # Main actions file + + + user # User customizations + + + + + + Effect if unset: + + + No actions are taken at all. Simple neutral proxying. + + + + + Notes: + + + Multiple actionsfile lines are permitted, and are in fact recommended! + + + The default values include standard.action, which is used for internal + purposes and should be loaded, default.action, which is the + main actions file maintained by the developers, and + user.action, where you can make your personal additions. + + + Actions files are where all the per site and per URL configuration is done for + ad blocking, cookie management, privacy considerations, etc. + There is no point in using Privoxy without at + least one actions file. + + + + + + +filterfile + + + + Specifies: + + + The filter file to use + + + + + Type of value: + + File name, relative to confdir + + + + Default value: + + default.filter (Unix) or default.filter.txt (Windows) + + + + Effect if unset: + + + No textual content filtering takes place, i.e. all + +filter{name} + actions in the actions files are turned neutral. + + + + + Notes: + + + The filter file contains content modification + rules that use regular expressions. These rules permit + powerful changes on the content of Web pages, e.g., you could disable your favorite + JavaScript annoyances, re-write the actual displayed text, or just have some + fun replacing Microsoft with MicroSuck wherever + it appears on a Web page. + + + The + +filter{name} + actions rely on the relevant filter (name) + to be defined in the filter file! + + + A pre-defined filter file called default.filter that contains + a bunch of handy filters for common problems is included in the distribution. + See the section on the filter + action for a list. + + + + + + +logfile + + + + Specifies: + + + The log file to use + + + + + Type of value: + + File name, relative to logdir + + + + Default value: + + logfile (Unix) or privoxy.log (Windows) + + + + Effect if unset: + + + No log file is used, all log messages go to the console (stderr). + + + + + Notes: + + + The windows version will additionally log to the console. + + + The logfile is where all logging and error messages are written. The level + of detail and number of messages are set with the debug + option (see below). The logfile can be useful for tracking down a problem with + Privoxy (e.g., it's not blocking an ad you + think it should block) but in most cases you probably will never look at it. + + + Your logfile will grow indefinitely, and you will probably want to + periodically remove it. On Unix systems, you can do this with a cron job + (see man cron). For Red Hat, a logrotate + script has been included. + + + On SuSE Linux systems, you can place a line like /var/log/privoxy.* + +1024k 644 nobody.nogroup in /etc/logfiles, with + the effect that cron.daily will automatically archive, gzip, and empty the + log, when it exceeds 1M size. + + + Any log files must be writable by whatever user Privoxy + is being run as (default on UNIX, user id is privoxy). + + + + + + +jarfile + + + + Specifies: + + + The file to store intercepted cookies in + + + + + Type of value: + + File name, relative to logdir + + + + Default value: + + jarfile (Unix) or privoxy.jar (Windows) + + + + Effect if unset: + + + Intercepted cookies are not stored at all. + + + + + Notes: + + + The jarfile may grow to ridiculous sizes over time. + + + + + + +trustfile + + + Specifies: + + + The trust file to use + + + + + Type of value: + + File name, relative to confdir + + + + Default value: + + Unset (commented out). When activated: trust (Unix) or trust.txt (Windows) + + + + Effect if unset: + + + The whole trust mechanism is turned off. + + + + + Notes: + + + The trust mechanism is an experimental feature for building white-lists and should + be used with care. It is NOT recommended for the casual user. + + + If you specify a trust file, Privoxy will only allow + access to sites that are named in the trustfile. + You can also mark sites as trusted referrers (with +), with + the effect that access to untrusted sites will be granted, if a link from a + trusted referrer was used. + The link target will then be added to the trustfile. + Possible applications include limiting Internet access for children. + + + If you use + operator in the trust file, it may grow considerably over time. + + + + + + + + + + + + + + +Local Set-up Documentation + + + If you intend to operate Privoxy for more users + than just yourself, it might be a good idea to let them know how to reach + you, what you block and why you do that, your policies, etc. + + +user-manual + + + Specifies: + + + Location of the Privoxy User Manual. + + + + + Type of value: + + A fully qualified URI + + + + Default value: + + Unset + + + + Effect if unset: + + + http://www.privoxy.org/version/user-manual/ + will be used, where version is the Privoxy version. + + + + + Notes: + + + The User Manual URI is used for help links from some of the internal CGI pages. + The manual itself is normally packaged with the binary distributions, so you probably want + to set this to a locally installed copy. For multi-user setups, you could provide a copy on + a local webserver for all your users and use the corresponding URL here. + + + Examples: + + + Unix, in local filesystem: + + + user-manual  file:///usr/share/doc/privoxy-&p-version;/user-manual/ + + + Any platform, on local webserver (called local-webserver): + + + user-manual  http://local-webserver/privoxy-user-manual/ + + + + If set, this option should be the first option in the config file, because + it is used while the config file is being read. + + + + + + + +trust-info-url + + + + Specifies: + + + A URL to be displayed in the error page that users will see if access to an untrusted page is denied. + + + + + Type of value: + + URL + + + + Default value: + + Two example URL are provided + + + + Effect if unset: + + + No links are displayed on the "untrusted" error page. + + + + + Notes: + + + The value of this option only matters if the experimental trust mechanism has been + activated. (See trustfile above.) + + + If you use the trust mechanism, it is a good idea to write up some on-line + documentation about your trust policy and to specify the URL(s) here. + Use multiple times for multiple URLs. + + + The URL(s) should be added to the trustfile as well, so users don't end up + locked out from the information on why they were locked out in the first place! + + + + + + +admin-address + + + + Specifies: + + + An email address to reach the proxy administrator. + + + + + Type of value: + + Email address + + + + Default value: + + Unset + + + + Effect if unset: + + + No email address is displayed on error pages and the CGI user interface. + + + + + Notes: + + + If both admin-address and proxy-info-url + are unset, the whole "Local Privoxy Support" box on all generated pages will + not be shown. + + + + + + +proxy-info-url + + + + Specifies: + + + A URL to documentation about the local Privoxy setup, + configuration or policies. + + + + + Type of value: + + URL + + + + Default value: + + Unset + + + + Effect if unset: + + + No link to local documentation is displayed on error pages and the CGI user interface. + + + + + Notes: + + + If both admin-address and proxy-info-url + are unset, the whole "Local Privoxy Support" box on all generated pages will + not be shown. + + + This URL shouldn't be blocked ;-) + + + + + + + + + + + + +Debugging + + + These options are mainly useful when tracing a problem. + Note that you might also want to invoke + Privoxy with the --no-daemon + command line option when debugging. + + +debug + + + + Specifies: + + + Key values that determine what information gets logged to the + logfile. + + + + + Type of value: + + Integer values + + + + Default value: + + 12289 (i.e.: URLs plus informational and warning messages) + + + + Effect if unset: + + + Nothing gets logged. + + + + + Notes: + + + The available debug levels are: + + + + debug 1 # show each GET/POST/CONNECT request + debug 2 # show each connection status + debug 4 # show I/O status + debug 8 # show header parsing + debug 16 # log all data into the logfile + debug 32 # debug force feature + debug 64 # debug regular expression filter + debug 128 # debug fast redirects + debug 256 # debug GIF de-animation + debug 512 # Common Log Format + debug 1024 # debug kill pop-ups + debug 4096 # Startup banner and warnings. + debug 8192 # Non-fatal errors + + + + To select multiple debug levels, you can either add them or use + multiple debug lines. + + + A debug level of 1 is informative because it will show you each request + as it happens. 1, 4096 and 8192 are highly recommended + so that you will notice when things go wrong. The other levels are probably + only of interest if you are hunting down a specific problem. They can produce + a hell of an output (especially 16). + + + + The reporting of fatal errors (i.e. ones which crash + Privoxy) is always on and cannot be disabled. + + + If you want to use CLF (Common Log Format), you should set debug + 512 ONLY and not enable anything else. + + + + + + +single-threaded + + + + Specifies: + + + Whether to run only one server thread + + + + + Type of value: + + None + + + + Default value: + + Unset + + + + Effect if unset: + + + Multi-threaded (or, where unavailable: forked) operation, i.e. the ability to + serve multiple requests simultaneously. + + + + + Notes: + + + This option is only there for debug purposes and you should never + need to use it. It will drastically reduce performance. + + + + + + + + + + + +Access Control and Security + + + This section of the config file controls the security-relevant aspects + of Privoxy's configuration. + + +listen-address + + + + Specifies: + + + The IP address and TCP port on which Privoxy will + listen for client requests. + + + + + Type of value: + + [IP-Address]:Port + + + + + Default value: + + 127.0.0.1:8118 + + + + Effect if unset: + + + Bind to 127.0.0.1 (localhost), port 8118. This is suitable and recommended for + home users who run Privoxy on the same machine as + their browser. + + + + + Notes: + + + You will need to configure your browser(s) to this proxy address and port. + + + If you already have another service running on port 8118, or if you want to + serve requests from other machines (e.g. on your local network) as well, you + will need to override the default. + + + If you leave out the IP address, Privoxy will + bind to all interfaces (addresses) on your machine and may become reachable + from the Internet. In that case, consider using access control lists (ACL's, see below), and/or + a firewall. + + + If you open Privoxy to untrusted users, you will + also want to turn off the enable-edit-actions and + enable-remote-toggle + options! + + + + + Example: + + + Suppose you are running Privoxy on + a machine which has the address 192.168.0.1 on your local private network + (192.168.0.0) and has another outside connection with a different address. + You want it to serve requests from inside only: + + + + listen-address 192.168.0.1:8118 + + + + + + + +toggle + + + + Specifies: + + + Initial state of "toggle" status + + + + + Type of value: + + 1 or 0 + + + + Default value: + + 1 + + + + Effect if unset: + + + Act as if toggled on + + + + + Notes: + + + If set to 0, Privoxy will start in + toggled off mode, i.e. behave like a normal, content-neutral + proxy where all ad blocking, filtering, etc are disabled. See + enable-remote-toggle below. This is not really useful + anymore, since toggling is much easier via the web interface than via + editing the conf file. + + + The windows version will only display the toggle icon in the system tray + if this option is present. + + + + + + + +enable-remote-toggle + + + Specifies: + + + Whether or not the web-based toggle + feature may be used + + + + + Type of value: + + 0 or 1 + + + + Default value: + + 1 + + + + Effect if unset: + + + The web-based toggle feature is disabled. + + + + + Notes: + + + When toggled off, Privoxy acts like a normal, + content-neutral proxy, i.e. it acts as if none of the actions applied to + any URL. + + + For the time being, access to the toggle feature can not be + controlled separately by ACLs or HTTP authentication, + so that everybody who can access Privoxy (see + ACLs and listen-address above) can + toggle it for all users. So this option is not recommended + for multi-user environments with untrusted users. + + + Note that you must have compiled Privoxy with + support for this feature, otherwise this option has no effect. + + + + + + + +enable-edit-actions + + + Specifies: + + + Whether or not the web-based actions + file editor may be used + + + + + Type of value: + + 0 or 1 + + + + Default value: + + 1 + + + + Effect if unset: + + + The web-based actions file editor is disabled. + + + + + Notes: + + + For the time being, access to the editor can not be + controlled separately by ACLs or HTTP authentication, + so that everybody who can access Privoxy (see + ACLs and listen-address above) can + modify its configuration for all users. So this option is not + recommended for multi-user environments with untrusted users. + + + Note that you must have compiled Privoxy with + support for this feature, otherwise this option has no effect. + + + + + + + +ACLs: permit-access and deny-access + + + + + + Specifies: + + + Who can access what. + + + + + Type of value: + + + src_addr[/src_masklen] + [dst_addr[/dst_masklen]] + + + Where src_addr and + dst_addr are IP addresses in dotted decimal notation or valid + DNS names, and src_masklen and + dst_masklen are subnet masks in CIDR notation, i.e. integer + values from 2 to 30 representing the length (in bits) of the network address. The masks and the whole + destination part are optional. + + + + + Default value: + + Unset + + + + Effect if unset: + + + Don't restrict access further than implied by listen-address + + + + + Notes: + + + Access controls are included at the request of ISPs and systems + administrators, and are not usually needed by individual users. + For a typical home user, it will normally suffice to ensure that + Privoxy only listens on the localhost + (127.0.0.1) or internal (home) network address by means of the + listen-address + option. + + + Please see the warnings in the FAQ that this proxy is not intended to be a substitute + for a firewall or to encourage anyone to defer addressing basic security + weaknesses. + + + Multiple ACL lines are OK. + If any ACLs are specified, then the Privoxy + talks only to IP addresses that match at least one permit-access line + and don't match any subsequent deny-access line. In other words, the + last match wins, with the default being deny-access. + + + If Privoxy is using a forwarder (see forward below) + for a particular destination URL, the dst_addr + that is examined is the address of the forwarder and NOT the address + of the ultimate target. This is necessary because it may be impossible for the local + Privoxy to determine the IP address of the + ultimate target (that's often what gateways are used for). + + + You should prefer using IP addresses over DNS names, because the address lookups take + time. All DNS names must resolve! You can not use domain patterns + like *.org or partial domain names. If a DNS name resolves to multiple + IP addresses, only the first one is used. + + + Denying access to particular sites by ACL may have undesired side effects + if the site in question is hosted on a machine which also hosts other sites. + + + + + Examples: + + + Explicitly define the default behavior if no ACL and + listen-address are set: localhost + is OK. The absence of a dst_addr implies that + all destination addresses are OK: + + + + permit-access localhost + + + + Allow any host on the same class C subnet as www.privoxy.org access to + nothing but www.example.com: + + + + permit-access www.privoxy.org/24 www.example.com/32 + + + + Allow access from any host on the 26-bit subnet 192.168.45.64 to anywhere, + with the exception that 192.168.45.73 may not access www.dirty-stuff.example.com: + + + + permit-access 192.168.45.64/26 + deny-access 192.168.45.73 www.dirty-stuff.example.com + + + + + + + +buffer-limit + + + + Specifies: + + + Maximum size of the buffer for content filtering. + + + + + Type of value: + + Size in Kbytes + + + + Default value: + + 4096 + + + + Effect if unset: + + + Use a 4MB (4096 KB) limit. + + + + + Notes: + + + For content filtering, i.e. the +filter and + +deanimate-gif actions, it is necessary that + Privoxy buffers the entire document body. + This can be potentially dangerous, since a server could just keep sending + data indefinitely and wait for your RAM to exhaust -- with nasty consequences. + Hence this option. + + + When a document buffer size reaches the buffer-limit, it is + flushed to the client unfiltered and no further attempt to + filter the rest of the document is made. Remember that there may be multiple threads + running, which might require up to buffer-limit Kbytes + each, unless you have enabled single-threaded + above. + + + + + + + + + + + + + + +Forwarding + + + This feature allows routing of HTTP requests through a chain of + multiple proxies. + It can be used to better protect privacy and confidentiality when + accessing specific domains by routing requests to those domains + through an anonymous public proxy (see e.g. http://www.multiproxy.org/anon_list.htm) + Or to use a caching proxy to speed up browsing. Or chaining to a parent + proxy may be necessary because the machine that Privoxy + runs on has no direct Internet access. + + + + Also specified here are SOCKS proxies. Privoxy + supports the SOCKS 4 and SOCKS 4A protocols. + + +forward + + + Specifies: + + + To which parent HTTP proxy specific requests should be routed. + + + + + Type of value: + + + target_domain[:port] + http_parent[/port] + + + Where target_domain is a domain name pattern (see the + chapter on domain matching in the default.action file), + http_parent is the address of the parent HTTP proxy + as an IP addresses in dotted decimal notation or as a valid DNS name (or . to denote + no forwarding, and the optional + port parameters are TCP ports, i.e. integer + values from 1 to 64535 + + + + + Default value: + + Unset + + + + Effect if unset: + + + Don't use parent HTTP proxies. + + + + + Notes: + + + If http_parent is ., then requests are not + forwarded to another HTTP proxy but are made directly to the web servers. + + + Multiple lines are OK, they are checked in sequence, and the last match wins. + + + + + Examples: + + + Everything goes to an example anonymizing proxy, except SSL on port 443 (which it doesn't handle): + + + + forward .* anon-proxy.example.org:8080 + forward :443 . + + + + Everything goes to our example ISP's caching proxy, except for requests + to that ISP's sites: + + + + forward .*. caching-proxy.example-isp.net:8000 + forward .example-isp.net . + + + + + + + + +forward-socks4 and forward-socks4a + + + + + + Specifies: + + + Through which SOCKS proxy (and to which parent HTTP proxy) specific requests should be routed. + + + + + Type of value: + + + target_domain[:port] + socks_proxy[/port] + http_parent[/port] + + + Where target_domain is a domain name pattern (see the + chapter on domain matching in the default.action file), + http_parent and socks_proxy + are IP addresses in dotted decimal notation or valid DNS names (http_parent + may be . to denote no HTTP forwarding), and the optional + port parameters are TCP ports, i.e. integer values from 1 to 64535 + + + + + Default value: + + Unset + + + + Effect if unset: + + + Don't use SOCKS proxies. + + + + + Notes: + + + Multiple lines are OK, they are checked in sequence, and the last match wins. + + + The difference between forward-socks4 and forward-socks4a + is that in the SOCKS 4A protocol, the DNS resolution of the target hostname happens on the SOCKS + server, while in SOCKS 4 it happens locally. + + + If http_parent is ., then requests are not + forwarded to another HTTP proxy but are made (HTTP-wise) directly to the web servers, albeit through + a SOCKS proxy. + + + + + Examples: + + + From the company example.com, direct connections are made to all + internal domains, but everything outbound goes through + their ISP's proxy by way of example.com's corporate SOCKS 4A gateway to + the Internet. + + + + forward-socks4a .*. socks-gw.example.com:1080 www-cache.example-isp.net:8080 + forward .example.com . + + + + A rule that uses a SOCKS 4 gateway for all destinations but no HTTP parent looks like this: + + + + forward-socks4 .*. socks-gw.example.com:1080 . + + + + + + + +Advanced Forwarding Examples + + + If you have links to multiple ISPs that provide various special content + only to their subscribers, you can configure multiple Privoxies + which have connections to the respective ISPs to act as forwarders to each other, so that + your users can see the internal content of all ISPs. + + + + Assume that host-a has a PPP connection to isp-a.net. And host-b has a PPP connection to + isp-b.net. Both run Privoxy. Their forwarding + configuration can look like this: + + + + host-a: + + + + + forward .*. . + forward .isp-b.net host-b:8118 + + + + + host-b: + + + + + forward .*. . + forward .isp-a.net host-a:8118 + + + + + Now, your users can set their browser's proxy to use either + host-a or host-b and be able to browse the internal content + of both isp-a and isp-b. + + + + If you intend to chain Privoxy and + squid locally, then chain as + browser -> squid -> privoxy is the recommended way. + + + + Assuming that Privoxy and squid + run on the same box, your squid configuration could then look like this: + + + + + # Define Privoxy as parent proxy (without ICP) + cache_peer 127.0.0.1 parent 8118 7 no-query + + # Define ACL for protocol FTP + acl ftp proto FTP + + # Do not forward FTP requests to Privoxy + always_direct allow ftp + + # Forward all the rest to Privoxy + never_direct allow all + + + + You would then need to change your browser's proxy settings to squid's address and port. + Squid normally uses port 3128. If unsure consult http_port in squid.conf. + + + + + + + + + + + + +Windows GUI Options + + Privoxy has a number of options specific to the + Windows GUI interface: + + + + + If activity-animation is set to 1, the + Privoxy icon will animate when + Privoxy is active. To turn off, set to 0. + + + + + + + activity-animation 1 + + + + + + + + If log-messages is set to 1, + Privoxy will log messages to the console + window: + + + + + + + log-messages 1 + + + + + + + + If log-buffer-size is set to 1, the size of the log buffer, + i.e. the amount of memory used for the log messages displayed in the + console window, will be limited to log-max-lines (see below). + + + + Warning: Setting this to 0 will result in the buffer to grow infinitely and + eat up all your memory! + + + + + + + log-buffer-size 1 + + + + + + + + log-max-lines is the maximum number of lines held + in the log buffer. See above. + + + + + + + log-max-lines 200 + + + + + + + + If log-highlight-messages is set to 1, + Privoxy will highlight portions of the log + messages with a bold-faced font: + + + + + + + log-highlight-messages 1 + + + + + + + + The font used in the console window: + + + + + + + log-font-name Comic Sans MS + + + + + + + + Font size used in the console window: + + + + + + + log-font-size 8 + + + + + + + + show-on-task-bar controls whether or not + Privoxy will appear as a button on the Task bar + when minimized: + + + + + + + show-on-task-bar 0 + + + + + + + + If close-button-minimizes is set to 1, the Windows close + button will minimize Privoxy instead of closing + the program (close with the exit option on the File menu). + + + + + + + close-button-minimizes 1 + + + + + + + + The hide-console option is specific to the MS-Win console + version of Privoxy. If this option is used, + Privoxy will disconnect from and hide the + command console. + + + + + + + #hide-console + + + + + + + + + + + + + + +Actions Files + + + The actions files are used to define what actions + Privoxy takes for which URLs, and thus determine + how ad images, cookies and various other aspects of HTTP content and + transactions are handled, and on which sites (or even parts thereof). There + are three such files included with Privoxy (as of + version 2.9.15), with differing purposes: + + + + + + + default.action - is the primary action file + that sets the initial values for all actions. It is intended to + provide a base level of functionality for + Privoxy's array of features. So it is + a set of broad rules that should work reasonably well for users everywhere. + This is the file that the developers are keeping updated, and making + available to users. + + + + + user.action - is intended to be for local site + preferences and exceptions. As an example, if your ISP or your bank + has specific requirements, and need special handling, this kind of + thing should go here. This file will not be upgraded. + + + + + standard.action - is used by the web based editor, + to set various pre-defined sets of rules for the default actions section + in default.action. These have increasing levels of + aggressiveness and have no influence on your browsing unless + you select them explicitly in the editor. It is not recommend + to edit this file. + + + + + + + The list of actions files to be used are defined in the main configuration + file, and are processed in the order they are defined. The content of these + can all be viewed and edited from http://config.privoxy.org/show-status. + + + + An actions file typically has multiple sections. If you want to use + aliases in an actions file, you have to place the (optional) + alias section at the top of that file. + Then comes the default set of rules which will apply universally to all + sites and pages (be very careful with using such a + universal set in user.action or any other actions file after + default.action, because it will override the result + from consulting any previous file). And then below that, + exceptions to the defined universal policies. You can regard + user.action as an appendix to default.action, + with the advantage that is a separate file, which makes preserving your + personal settings across Privoxy upgrades easier. + + + + Actions can be used to block anything you want, including ads, banners, or + just some obnoxious URL that you would rather not see. Cookies can be accepted + or rejected, or accepted only during the current browser session (i.e. not + written to disk), content can be modified, JavaScripts tamed, user-tracking + fooled, and much more. See below for a complete list + of actions. + + + + +Finding the Right Mix + + Note that some actions, like cookie suppression + or script disabling, may render some sites unusable that rely on these + techniques to work properly. Finding the right mix of actions is not always easy and + certainly a matter of personal taste. In general, it can be said that the more + aggressive your default settings (in the top section of the + actions file) are, the more exceptions for trusted sites you + will have to make later. If, for example, you want to kill popup windows per + default, you'll have to make exceptions from that rule for sites that you + regularly use and that require popups for actually useful content, like maybe + your bank, favorite shop, or newspaper. + + + + We have tried to provide you with reasonable rules to start from in the + distribution actions files. But there is no general rule of thumb on these + things. There just are too many variables, and sites are constantly changing. + Sooner or later you will want to change the rules (and read this chapter again :). + + + + + +How to Edit + + The easiest way to edit the actions files is with a browser by + using our browser-based editor, which can be reached from http://config.privoxy.org/show-status. + The editor allows both fine-grained control over every single feature on a + per-URL basis, and easy choosing from wholesale sets of defaults like + Cautious, Medium or Advanced. + + + + If you prefer plain text editing to GUIs, you can of course also directly edit the + the actions files. Look at default.action which is richly + commented. + + + + + +How Actions are Applied to URLs + + Actions files are divided into sections. There are special sections, + like the alias sections which will + be discussed later. For now let's concentrate on regular sections: They have a + heading line (often split up to multiple lines for readability) which consist + of a list of actions, separated by whitespace and enclosed in curly braces. + Below that, there is a list of URL patterns, each on a separate line. + + + + To determine which actions apply to a request, the URL of the request is + compared to all patterns in each action file file. Every time it matches, the list of + applicable actions for the URL is incrementally updated, using the heading + of the section in which the pattern is located. If multiple matches for + the same URL set the same action differently, the last match wins. If not, + the effects are aggregated. E.g. a URL might match a regular section with + a heading line of { + +handle-as-image }, + then later another one with just { + +block }, resulting + in both actions to apply. + + + + You can trace this process for any given URL by visiting http://config.privoxy.org/show-url-info. + + + + More detail on this is provided in the Appendix, + Anatomy of an Action. + + + + + +Patterns + + Generally, a pattern has the form <domain>/<path>, + where both the <domain> and <path> + are optional. (This is why the pattern / matches all URLs). + + + + + www.example.com/ + + + is a domain-only pattern and will match any request to www.example.com, + regardless of which document on that server is requested. + + + + + www.example.com + + + means exactly the same. For domain-only patterns, the trailing / may + be omitted. + + + + + www.example.com/index.html + + + matches only the single document /index.html + on www.example.com. + + + + + /index.html + + + matches the document /index.html, regardless of the domain, + i.e. on any web server. + + + + + index.html + + + matches nothing, since it would be interpreted as a domain name and + there is no top-level domain called .html. + + + + + + + +The Domain Pattern + + + The matching of the domain part offers some flexible options: if the + domain starts or ends with a dot, it becomes unanchored at that end. + For example: + + + + + .example.com + + + matches any domain that ENDS in + .example.com + + + + + www. + + + matches any domain that STARTS with + www. + + + + + .example. + + + matches any domain that CONTAINS .example. + (Correctly speaking: It matches any FQDN that contains example as a domain.) + + + + + + + Additionally, there are wild-cards that you can use in the domain names + themselves. They work pretty similar to shell wild-cards: * + stands for zero or more arbitrary characters, ? stands for + any single character, you can define character classes in square + brackets and all of that can be freely mixed: + + + + + ad*.example.com + + + matches adserver.example.com, + ads.example.com, etc but not sfads.example.com + + + + + *ad*.example.com + + + matches all of the above, and then some. + + + + + .?pix.com + + + matches www.ipix.com, + pictures.epix.com, a.b.c.d.e.upix.com etc. + + + + + www[1-9a-ez].example.c* + + + matches www1.example.com, + www4.example.cc, wwwd.example.cy, + wwwz.example.com etc., but not + wwww.example.com. + + + + + + + + + + + +The Path Pattern + + + Privoxy uses Perl compatible regular expressions + (through the PCRE library) for + matching the path. + + + + There is an Appendix with a brief quick-start into regular + expressions, and full (very technical) documentation on PCRE regex syntax is available on-line + at http://www.pcre.org/man.txt. + You might also find the Perl man page on regular expressions (man perlre) + useful, which is available on-line at http://www.perldoc.com/perl5.6/pod/perlre.html. + + + + Note that the path pattern is automatically left-anchored at the /, + i.e. it matches as if it would start with a ^ (regular expression speak + for the beginning of a line). + + + + Please also note that matching in the path is CASE INSENSITIVE + by default, but you can switch to case sensitive at any point in the pattern by using the + (?-i) switch: www.example.com/(?-i)PaTtErN.* will match + only documents whose path starts with PaTtErN in + exactly this capitalization. + + + + + + + + + + + +Actions + + All actions are disabled by default, until they are explicitly enabled + somewhere in an actions file. Actions are turned on if preceded with a + +, and turned off if preceded with a -. So a + +action means do that action, e.g. + +block means please block URLs that match the + following patterns, and -block means don't + block URLs that match the following patterns, even if +block + previously applied. + + + + + Again, actions are invoked by placing them on a line, enclosed in curly braces and + separated by whitespace, like in + {+some-action -some-other-action{some-parameter}}, + followed by a list of URL patterns, one per line, to which they apply. + Together, the actions line and the following pattern lines make up a section + of the actions file. + + + + There are three classes of actions: + + + + + + + Boolean, i.e the action can only be enabled or + disabled. Syntax: + + + + +name # enable action name + -name # disable action name + + + Example: +block + + + + + + + Parameterized, where some value is required in order to enable this type of action. + Syntax: + + + + +name{param} # enable action and set parameter to param, + # overwriting parameter from previous match if necessary + -name # disable action. The parameter can be omitted + + + Note that if the URL matches multiple positive forms of a parameterized action, + the last match wins, i.e. the params from earlier matches are simply ignored. + + + Example: +hide-user-agent{ Mozilla 1.0 } + + + + + + Multi-value. These look exactly like parameterized actions, + but they behave differently: If the action applies multiple times to the + same URL, but with different parameters, all the parameters + from all matches are remembered. This is used for actions + that can be executed for the same request repeatedly, like adding multiple + headers, or filtering through multiple filters. Syntax: + + + + +name{param} # enable action and add param to the list of parameters + -name{param} # remove the parameter param from the list of parameters + # If it was the last one left, disable the action. + -name # disable this action completely and remove all parameters from the list + + + Examples: +add-header{X-Fun-Header: Some text} and + +filter{html-annoyances} + + + + + + + + If nothing is specified in any actions file, no actions are + taken. So in this case Privoxy would just be a + normal, non-blocking, non-anonymizing proxy. You must specifically enable the + privacy and blocking features you need (although the provided default actions + files will give a good starting point). + + + + Later defined actions always over-ride earlier ones. So exceptions + to any rules you make, should come in the latter part of the file (or + in a file that is processed later when using multiple actions files). For + multi-valued actions, the actions are applied in the order they are specified. + Actions files are processed in the order they are defined in + config (the default installation has three actions + files). It also quite possible for any given URL pattern to match more than + one pattern and thus more than one set of actions! + + + + + The list of valid Privoxy actions are: + + + + + + + + + + + + + +add-header + + + + Typical use: + + Confuse log analysis, custom applications + + + + + Effect: + + + Sends a user defined HTTP header to the web server. + + + + + + Type: + + + Multi-value. + + + + + Parameter: + + + Any string value is possible. Validity of the defined HTTP headers is not checked. + It is recommended that you use the X- prefix + for custom headers. + + + + + + Notes: + + + This action may be specified multiple times, in order to define multiple + headers. This is rarely needed for the typical user. If you don't know what + HTTP headers are, you definitely don't need to worry about this + one. + + + + + + Example usage: + + + +add-header{X-User-Tracking: sucks} + + + + + + + + + +block + + + + Typical use: + + Block ads or other obnoxious content + + + + + Effect: + + + Requests for URLs to which this action applies are blocked, i.e. the requests are not + forwarded to the remote server, but answered locally with a substitute page or image, + as determined by the handle-as-image + and set-image-blocker actions. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + N/A + + + + + Notes: + + + Privoxy sends a special BLOCKED page + for requests to blocked pages. This page contains links to find out why the request + was blocked, and a click-through to the blocked content (the latter only if compiled with the + force feature enabled). The BLOCKED page adapts to the available + screen space -- it displays full-blown if space allows, or miniaturized and text-only + if loaded into a small frame or window. If you are using Privoxy + right now, you can take a look at the + BLOCKED + page. + + + A very important exception occurs if both + block and handle-as-image, + apply to the same request: it will then be replaced by an image. If + set-image-blocker + (see below) also applies, the type of image will be determined by its parameter, + if not, the standard checkerboard pattern is sent. + + + It is important to understand this process, in order + to understand how Privoxy deals with + ads and other unwanted content. + + + The filter + action can perform a very similar task, by blocking + banner images and other content through rewriting the relevant URLs in the + document's HTML source, so they don't get requested in the first place. + Note that this is a totally different technique, and it's easy to confuse the two. + + + + + + Example usage (section): + + + {+block} # Block and replace with "blocked" page +.nasty-stuff.example.com + +{+block +handle-as-image} # Block and replace with image +.ad.doubleclick.net +.ads.r.us + + + + + + + + + + +crunch-incoming-cookies + + + + Typical use: + + + Prevent the web server from setting any cookies on your system + + + + + + Effect: + + + Deletes any Set-Cookie: HTTP headers from server replies. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + This action is only concerned with incoming cookies. For + outgoing cookies, use + crunch-outgoing-cookies. + Use both to disable cookies completely. + + + It makes no sense at all to use this action in conjunction + with the session-cookies-only action, + since it would prevent the session cookies from being set. + + + + + + Example usage: + + + +crunch-incoming-cookies + + + + + + + + + +crunch-outgoing-cookies + + + + Typical use: + + + Prevent the web server from reading any cookies from your system + + + + + + Effect: + + + Deletes any Cookie: HTTP headers from client requests. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + This action is only concerned with outgoing cookies. For + incoming cookies, use + crunch-incoming-cookies. + Use both to disable cookies completely. + + + It makes no sense at all to use this action in conjunction + with the session-cookies-only action, + since it would prevent the session cookies from being read. + + + + + + Example usage: + + + +crunch-outgoing-cookies + + + + + + + + + + +deanimate-gifs + + + + Typical use: + + Stop those annoying, distracting animated GIF images. + + + + + Effect: + + + De-animate GIF animations, i.e. reduce them to their first or last image. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + last or first + + + + + + Notes: + + + This will also shrink the images considerably (in bytes, not pixels!). If + the option first is given, the first frame of the animation + is used as the replacement. If last is given, the last + frame of the animation is used instead, which probably makes more sense for + most banner animations, but also has the risk of not showing the entire + last frame (if it is only a delta to an earlier frame). + + + You can safely use this action with patterns that will also match non-GIF + objects, because no attempt will be made at anything that doesn't look like + a GIF. + + + + + + Example usage: + + + +deanimate-gifs{last} + + + + + + + + +downgrade-http-version + + + + Typical use: + + Work around (very rare) problems with HTTP/1.1 + + + + + Effect: + + + Downgrades HTTP/1.1 client requests and server replies to HTTP/1.0. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + This is a left-over from the time when Privoxy + didn't support important HTTP/1.1 features well. It is left here for the + unlikely case that you experience HTTP/1.1 related problems with some server + out there. Not all (optional) HTTP/1.1 features are supported yet, so there + is a chance you might need this action. + + + + + + Example usage (section): + + + {+downgrade-http-version} +problem-host.example.com + + + + + + + + + +fast-redirects + + + + Typical use: + + Fool some click-tracking scripts and speed up indirect links + + + + + Effect: + + + Cut off all but the last valid URL from requests. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + Many sites, like yahoo.com, don't just link to other sites. Instead, they + will link to some script on their own servers, giving the destination as a + parameter, which will then redirect you to the final target. URLs + resulting from this scheme typically look like: + http://some.place/click-tracker.cgi?target=http://some.where.else. + + + Sometimes, there are even multiple consecutive redirects encoded in the + URL. These redirections via scripts make your web browsing more traceable, + since the server from which you follow such a link can see where you go + to. Apart from that, valuable bandwidth and time is wasted, while your + browser ask the server for one redirect after the other. Plus, it feeds + the advertisers. + + + This feature is currently not very smart and is scheduled for improvement. + It is likely to break some sites. You should expect to need possibly + many exceptions to this action, if it is enabled by default in + default.action. Some sites just don't work without + it. + + + + + + Example usage: + + + {+fast-redirects} + + + + + + + + + + +filter + + + + Typical use: + + Get rid of HTML and JavaScript annoyances, banner advertisements (by size), do fun text replacements, etc. + + + + + Effect: + + + Text documents, including HTML and JavaScript, to which this action applies, are filtered on-the-fly + through the specified regular expression based substitutions. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + The name of a filter, as defined in the filter file + (typically default.filter, set by the + filterfile + option in the config file) + + + + + + Notes: + + + For your convenience, there are a bunch of pre-defined filters available + in the distribution filter file that you can use. See the example below for + a list. + + + This is potentially a very powerful feature! But rolling your own + filters requires a knowledge of regular expressions and HTML. + + + Filtering requires buffering the page content, which may appear to + slow down page rendering since nothing is displayed until all content has + passed the filters. (It does not really take longer, but seems that way + since the page is not incrementally displayed.) This effect will be more + noticeable on slower connections. + + + At this time, Privoxy cannot (yet!) uncompress compressed + documents. If you want filtering to work on all documents, even those that + would normally be sent compressed, use the + prevent-compression + action in conjunction with filter. + + + Filtering can achieve some of the effects as the + block + action, i.e. it can be used to block ads and banners. + + + Feedback with suggestions for new or improved filters is particularly + welcome! + + + + + + Example usage (with filters from the distribution default.filter file): + + + + +filter{html-annoyances} # Get rid of particularly annoying HTML abuse. + + + + +filter{js-annoyances} # Get rid of particularly annoying JavaScript abuse + + + + +filter{banners-by-size} # Kill banners by size (very efficient!) + + + + +filter{content-cookies} # Kill cookies that come sneaking in the HTML or JS content + + + + +filter{popups} # Kill all popups in JS and HTML + + + + +filter{webbugs} # Squish WebBugs (1x1 invisible GIFs used for user tracking) + + + + +filter{fun} # Text replacements for subversive browsing fun! + + + + +filter{frameset-borders} # Give frames a border and make them resizeable + + + + +filter{refresh-tags} # Kill automatic refresh tags (for dial-on-demand setups) + + + + +filter{nimda} # Remove Nimda (virus) code. + + + + +filter{shockwave-flash} # Kill embedded Shockwave Flash objects + + + + +filter{crude-parental} # Kill all web pages that contain the words "sex" or "warez" + + + + + + + + + +handle-as-image + + + + Typical use: + + Mark URLs as belonging to images (so they'll be replaced by images if they get blocked) + + + + + Effect: + + + This action alone doesn't do anything noticeable. It just marks URLs as images. + If the block action also applies, + the presence or absence of this mark decides whether an HTML blocked + page, or a replacement image (as determined by the set-image-blocker action) will be sent to the + client as a substitute for the blocked content. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + The below generic example section is actually part of default.action. + It marks all URLs with well-known image file name extensions as images and should + be left intact. + + + Users will probably only want to use the handle-as-image action in conjunction with + block, to block sources of banners, whose URLs don't + reflect the file type, like in the second example section. + + + Note that you cannot treat HTML pages as images in most cases. For instance, (inline) ad + frames require an HTML page to be sent, or they won't display properly. + Forcing handle-as-image in this situation will not replace the + ad frame with an image, but lead to error messages. + + + + + + Example usage (sections): + + + # Generic image extensions: +# +{+handle-as-image} +/.*\.(gif|jpg|jpeg|png|bmp|ico)$ + +# These don't look like images, but they're banners and should be +# blocked as images: +# +{+block +handle-as-image} +some.nasty-banner-server.com/junk.cgi?output=trash + +# Banner source! Who cares if they also have non-image content? +ad.doubleclick.net + + + + + + + + + + +hide-forwarded-for-headers + + + + Typical use: + + Improve privacy by hiding the true source of the request + + + + + Effect: + + + Deletes any existing X-Forwarded-for: HTTP header from client requests, + and prevents adding a new one. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + It is fairly safe to leave this on. + + + This action is scheduled for improvement: It should be able to generate forged + X-Forwarded-for: headers using random IP addresses from a specified network, + to make successive requests from the same client look like requests from a pool of different + users sharing the same proxy. + + + + + + Example usage: + + + +hide-forwarded-for-headers + + + + + + + + + +hide-from-header + + + + Typical use: + + Keep your (old and ill) browser from telling web servers your email address + + + + + Effect: + + + Deletes any existing From: HTTP header, or replaces it with the + specified string. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + Keyword: block, or any user defined value. + + + + + + Notes: + + + The keyword block will completely remove the header + (not to be confused with the block + action). + + + Alternately, you can specify any value you prefer to be sent to the web + server. If you do, it is a matter of fairness not to use any address that + is actually used by a real person. + + + This action is rarely needed, as modern web browsers don't send + From: headers anymore. + + + + + + Example usage: + + + +hide-from-header{block} or + +hide-from-header{spam-me-senseless@sittingduck.example.com} + + + + + + + + + +hide-referrer + + + + Typical use: + + Conceal which link you followed to get to a particular site + + + + + Effect: + + + Deletes the Referer: (sic) HTTP header from the client request, + or replaces it with a forged one. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + + block to delete the header completely. + + + forge to pretend to be coming from the homepage of the server we are talking to. + + + Any other string to set a user defined referrer. + + + + + + + Notes: + + + forge is the preferred option here, since some servers will + not send images back otherwise, in an attempt to prevent their valuable + content from being embedded elsewhere (and hence, without being surrounded + by their banners). + + + hide-referer is an alternate spelling of + hide-referrer and the two can be can be freely + substituted with each other. (referrer is the + correct English spelling, however the HTTP specification has a bug - it + requires it to be spelled as referer.) + + + + + + Example usage: + + + +hide-referrer{forge} or + +hide-referrer{http://www.yahoo.com/} + + + + + + + + + +hide-user-agent + + + + Typical use: + + Conceal your type of browser and client operating system + + + + + Effect: + + + Replaces the value of the User-Agent: HTTP header + in client requests with the specified value. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + Any user-defined string. + + + + + + Notes: + + + + This breaks many web sites that depend on looking at this header in order + to customize their content for different browsers (which, by the + way, is NOT a smart way to do + that!). + + + + Using this action in multi-user setups or wherever different types of + browsers will access the same Privoxy is + not recommended. In single-user, single-browser + setups, you might use it to delete your OS version information from + the headers, because it is an invitation to exploit known bugs for your + OS. It is also occasionally useful to forge this in order to access + sites that won't let you in otherwise (though there may be a good + reason in some cases). Example of this: some MSN sites will not + let Mozilla enter, yet forging to a + Netscape 6.1 user-agent works just fine. + (Must be just a silly MS goof, I'm sure :-). + + + This action is scheduled for improvement. + + + + + + Example usage: + + + +hide-user-agent{Netscape 6.1 (X11; I; Linux 2.4.18 i686)} + + + + + + + + + +kill-popups<anchor id="kill-popup"> + + + + Typical use: + + Eliminate those annoying pop-up windows + + + + + Effect: + + + While loading the document, replace JavaScript code that opens + pop-up windows with (syntactically neutral) dummy code on the fly. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + This action is easily confused with the built-in, hardwired filter + action, but there are important differences: For kill-popups, + the document need not be buffered, so it can be incrementally rendered while + downloading. But kill-popups doesn't catch as many pop-ups as + filter{popups} + does. + + + Think of it as a fast and efficient replacement for a filter that you + can use if you don't want any filtering at all. Note that it doesn't make + sense to combine it with any filter action, + since as soon as one filter applies, + the whole document needs to be buffered anyway, which destroys the advantage of + the kill-popups action over its filter equivalent. + + + Killing all pop-ups is a dangerous business. Many shops and banks rely on + pop-ups to display forms, shopping carts etc, and killing only the unwanted pop-ups + would require artificial intelligence in Privoxy. + If the only kind of pop-ups that you want to kill are exit consoles (those + really nasty windows that appear when you close an other + one), you might want to use + filter{js-annoyances} + instead. + + + + + + + + Example usage: + + +kill-popups + + + + + + + + +limit-connect + + + + Typical use: + + Prevent abuse of Privoxy as a TCP proxy relay + + + + + Effect: + + + Specifies to which ports HTTP CONNECT requests are allowable. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + A comma-separated list of ports or port ranges (the latter using dashes, with the minimum + defaulting to 0 and the maximum to 65K). + + + + + + Notes: + + + By default, i.e. if no limit-connect action applies, + Privoxy only allows HTTP CONNECT + requests to port 443 (the standard, secure HTTPS port). Use + limit-connect if more fine-grained control is desired + for some or all destinations. + + + The CONNECT methods exists in HTTP to allow access to secure websites + (https:// URLs) through proxies. It works very simply: + the proxy connects to the server on the specified port, and then + short-circuits its connections to the client and to the remote server. + This can be a big security hole, since CONNECT-enabled proxies can be + abused as TCP relays very easily. + + + If you don't know what any of this means, there probably is no reason to + change this one, since the default is already very restrictive. + + + + + + Example usages: + + + + + + +limit-connect{443} # This is the default and need not be specified. ++limit-connect{80,443} # Ports 80 and 443 are OK. ++limit-connect{-3, 7, 20-100, 500-} # Ports less than 3, 7, 20 to 100 and above 500 are OK. ++limit-connect{-} # All ports are OK (gaping security hole!) + + + + + + + + +prevent-compression + + + + Typical use: + + + Ensure that servers send the content uncompressed, so it can be + passed through filters + + + + + + Effect: + + + Adds a header to the request that asks for uncompressed transfer. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + More and more websites send their content compressed by default, which + is generally a good idea and saves bandwidth. But for the filter, deanimate-gifs + and kill-popups actions to work, + Privoxy needs access to the uncompressed data. + Unfortunately, Privoxy can't yet(!) uncompress, filter, and + re-compress the content on the fly. So if you want to ensure that all websites, including + those that normally compress, can be filtered, you need to use this action. + + + This will slow down transfers from those websites, though. If you use any of the above-mentioned + actions, you will typically want to use prevent-compression in conjunction + with them. + + + Note that some (rare) ill-configured sites don't handle requests for uncompressed + documents correctly (they send an empty document body). If you use prevent-compression + per default, you'll have to add exceptions for those sites. See the example for how to do that. + + + + + + Example usage (sections): + + + # Set default: +# +{+prevent-compression} +/ # Match all sites + +# Make exceptions for ill sites: +# +{-prevent-compression} +www.debianhelp.org +www.pclinuxonline.com + + + + + + + + + + +send-vanilla-wafer + + + + Typical use: + + + Feed log analysis scripts with useless data. + + + + + + Effect: + + + Sends a cookie with each request stating that you do not accept any copyright + on cookies sent to you, and asking the site operator not to track you. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + The vanilla wafer is a (relatively) unique header and could conceivably be used to track you. + + + This action is rarely used and not enabled in the default configuration. + + + + + + Example usage: + + + +send-vanilla-wafer + + + + + + + + + + +send-wafer + + + + Typical use: + + + Send custom cookies or feed log analysis scripts with even more useless data. + + + + + + Effect: + + + Sends a custom, user-defined cookie with each request. + + + + + + Type: + + + Multi-value. + + + + + Parameter: + + + A string of the form name=value. + + + + + + Notes: + + + Being multi-valued, multiple instances of this action can apply to the same request, + resulting in multiple cookies being sent. + + + This action is rarely used and not enabled in the default configuration. + + + + + Example usage (section): + + + {+send-wafer{UsingPrivoxy=true}} +my-internal-testing-server.void + + + + + + + + + +session-cookies-only + + + + Typical use: + + + Allow only temporary session cookies (for the current browser session only). + + + + + + Effect: + + + Deletes the expires field from Set-Cookie: server headers. + Most browsers will not store such cookies permanently and forget them in between sessions. + + + + + + Type: + + + Boolean. + + + + + Parameter: + + + N/A + + + + + + Notes: + + + This is less strict than crunch-incoming-cookies / + crunch-outgoing-cookies and allows you to browse + websites that insist or rely on setting cookies, without compromising your privacy too badly. + + + Most browsers will not permanently store cookies that have been processed by + session-cookies-only and will forget about them between sessions. + This makes profiling cookies useless, but won't break sites which require cookies so + that you can log in for transactions. This is generally turned on for all + sites, and is the recommended setting. + + + It makes no sense at all to use session-cookies-only + together with crunch-incoming-cookies or + crunch-outgoing-cookies. If you do, cookies + will be plainly killed. + + + Note that it is up to the browser how it handles such cookies without an expires + field. If you use an exotic browser, you might want to try it out to be sure. + + + + + + Example usage: + + + +session-cookies-only + + + + + + + + + +set-image-blocker + + + + Typical use: + + Choose the replacement for blocked images + + + + + Effect: + + + This action alone doesn't do anything noticeable. If both + block and handle-as-image also + apply, i.e. if the request is to be blocked as an image, + then the parameter of this action decides what will be + sent as a replacement. + + + + + + Type: + + + Parameterized. + + + + + Parameter: + + + + + pattern to send a built-in checkerboard pattern image. The image is visually + decent, scales very well, and makes it obvious where banners were busted. + + + + + blank to send a built-in transparent image. This makes banners disappear + completely, but makes it hard to detect where Privoxy has blocked + images on a given page and complicates troubleshooting if Privoxy + has blocked innocent images, like navigation icons. + + + + + target-url to + send a redirect to target-url. You can redirect + to any image anywhere, even in your local filesystem (via file:/// URL). + + + A good application of redirects is to use special Privoxy-built-in + URLs, which send the built-in images, as target-url. + This has the same visual effect as specifying blank or pattern in + the first place, but enables your browser to cache the replacement image, instead of requesting + it over and over again. + + + + + + + + Notes: + + + The URLs for the built-in images are http://config.privoxy.org/send-banner?type=type, where type is + either blank or pattern. + + + There is a third (advanced) type, called auto. It is NOT to be + used in set-image-blocker, but meant for use from filters. + Auto will select the type of image that would have applied to the referring page, had it been an image. + + + + + + Example usage: + + + Built-in pattern: + + + +set-image-blocker{pattern} + + + Redirect to the BSD devil: + + + +set-image-blocker{http://www.freebsd.org/gifs/dae_up3.gif} + + + Redirect to the built-in pattern for better caching: + + + +set-image-blocker{http://config.privoxy.org/send-banner?type=pattern} + + + + + + + + + +Summary + + Note that many of these actions have the potential to cause a page to + misbehave, possibly even not to display at all. There are many ways + a site designer may choose to design his site, and what HTTP header + content, and other criteria, he may depend on. There is no way to have hard + and fast rules for all sites. See the Appendix for a brief example on troubleshooting + actions. + + + + + + +Aliases + + Custom actions, known to Privoxy + as aliases, can be defined by combining other actions. + These can in turn be invoked just like the built-in actions. + Currently, an alias name can contain any character except space, tab, + =, + { and }, but we strongly + recommend that you only use a to z, + 0 to 9, +, and -. + Alias names are not case sensitive, and are not required to start with a + + or - sign, since they are merely textually + expanded. + + + Aliases can be used throughout the actions file, but they must be + defined in a special section at the top of the file! + And there can only be one such section per actions file. Each actions file may + have its own alias section, and the aliases defined in it are only visible + within that file. + + + There are two main reasons to use aliases: One is to save typing for frequently + used combinations of actions, the other one is a gain in flexibility: If you + decide once how you want to handle shops by defining an alias called + shop, you can later change your policy on shops in + one place, and your changes will take effect everywhere + in the actions file where the shop alias is used. Calling aliases + by their purpose also makes your actions files more readable. + + + Currently, there is one big drawback to using aliases, though: + Privoxy's built-in web-based action file + editor honors aliases when reading the actions files, but it expands + them before writing. So the effects of your aliases are of course preserved, + but the aliases themselves are lost when you edit sections that use aliases + with it. + This is likely to change in future versions of Privoxy. + + + + Now let's define some aliases... + + + + + # Useful custom aliases we can use later. + # + # Note the (required!) section header line and that this section + # must be at the top of the actions file! + # + {{alias}} + + # These aliases just save typing later: + # (Note that some already use other aliases!) + # + +crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies + -crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + block-as-image = +block +handle-as-image + mercy-for-cookies = -crunch-all-cookies -session-cookies-only + + # These aliases define combinations of actions + # that are useful for certain types of sites: + # + fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups + shop = -crunch-all-cookies -filter{popups} -kill-popups + + # Short names for other aliases, for really lazy people ;-) + # + c0 = +crunch-all-cookies + c1 = -crunch-all-cookies + + + + ...and put them to use. These sections would appear in the lower part of an + actions file and define exceptions to the default actions (as specified further + up for the / pattern): + + + + + # These sites are either very complex or very keen on + # user data and require minimal interference to work: + # + {fragile} + .office.microsoft.com + .windowsupdate.microsoft.com + .nytimes.com + + # Shopping sites: + # Allow cookies (for setting and retrieving your customer data) + # + {shop} + .quietpc.com + .worldpay.com # for quietpc.com + .scan.co.uk + + # These shops require pop-ups: + # + {shop -kill-popups -filter{popups}} + .dabs.com + .overclockers.co.uk + + + + Aliases like shop and fragile are often used for + problem sites that require some actions to be disabled + in order to function properly. + + + + + +Actions Files Tutorial + + The above chapters have shown which actions files + there are and how they are organized, how actions are specified and applied + to URLs, how patterns work, and how to + define and use aliases. Now, let's look at an + example default.action and user.action + file and see how all these pieces come together: + + +default.action + + +Every config file should start with a short comment stating its purpose: + + + + # Sample default.action file <developers@privoxy.org> + + + +Then, since this is the default.action file, the +first section is a special section for internal use that you needn't +change or worry about: + + + + +########################################################################## +# Settings -- Don't change! For internal Privoxy use ONLY. +########################################################################## + +{{settings}} +for-privoxy-version=3.0 + + + +After that comes the (optional) alias section. We'll use the example +section from the above chapter on aliases, +that also explains why and how aliases are used: + + + + +########################################################################## +# Aliases +########################################################################## +{{alias}} + +# These aliases just save typing later: +# (Note that some already use other aliases!) +# ++crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies +-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies +block-as-image = +block +handle-as-image +mercy-for-cookies = -crunch-all-cookies -session-cookies-only + +# These aliases define combinations of actions +# that are useful for certain types of sites: +# +fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups +shop = mercy-for-cookies -filter{popups} -kill-popups + + + + Now come the regular sections, i.e. sets of actions, accompanied + by URL patterns to which they apply. Remember all actions + are disabled when matching starts, so we have to explicitly + enable the ones we want. + + + + The first regular section is probably the most important. It has only + one pattern, /, but this pattern + matches all URLs. Therefore, the + set of actions used in this default section will + be applied to all requests as a start. It can be partly or + wholly overridden by later matches further down this file, or in user.action, + but it will still be largely responsible for your overall browsing + experience. + + + + Again, at the start of matching, all actions are disabled, so there is + no real need to disable any actions here, but we will do that nonetheless, + to have a complete listing for your reference. (Remember: a + + preceding the action name enables the action, a - disables!). + Also note how this long line has been made more readable by splitting it into + multiple lines with line continuation. + + + + +########################################################################## +# "Defaults" section: +########################################################################## + { \ + -add-header \ + -block \ + -crunch-incoming-cookies \ + -crunch-outgoing-cookies \ + +deanimate-gifs \ + -downgrade-http-version \ + +fast-redirects \ + +filter{html-annoyances} \ + +filter{js-annoyances} \ + -filter{content-cookies} \ + +filter{popups} \ + +filter{webbugs} \ + -filter{refresh-tags} \ + -filter{fun} \ + +filter{nimda} \ + +filter{banners-by-size} \ + -filter{shockwave-flash} \ + -filter{crude-parental} \ + -handle-as-image \ + +hide-forwarded-for-headers \ + +hide-from-header{block} \ + +hide-referrer{forge} \ + -hide-user-agent \ + -kill-popups \ + -limit-connect \ + +prevent-compression \ + -send-vanilla-wafer \ + -send-wafer \ + +session-cookies-only \ + +set-image-blocker{pattern} \ + } + / # forward slash will match *all* potential URL patterns. + + + + The default behavior is now set. Note that some actions, like not hiding + the user agent, are part of a general policy that applies + universally and won't get any exceptions defined later. Other choices, + like not blocking (which is understandably the + default!) need exceptions, i.e. we need to specify explicitly what we + want to block in later sections. + We will also want to make exceptions from our general pop-up-killing, + and use our defined aliases for that. + + + + The first of our specialized sections is concerned with fragile + sites, i.e. sites that require minimum interference, because they are either + very complex or very keen on tracking you (and have mechanisms in place that + make them unusable for people who avoid being tracked). We will simply use + our pre-defined fragile alias instead of stating the list + of actions explicitly: + + + + +########################################################################## +# Exceptions for sites that'll break under the default action set: +########################################################################## + +# "Fragile" Use a minimum set of actions for these sites (see alias above): +# +{ fragile } +.office.microsoft.com # surprise, surprise! +.windowsupdate.microsoft.com + + + + Shopping sites are not as fragile, but they typically + require cookies to log in, and pop-up windows for shopping + carts or item details. Again, we'll use a pre-defined alias: + + + + +# Shopping sites: +# +{ shop } +.quietpc.com +.worldpay.com # for quietpc.com +.jungle.com +.scan.co.uk + + + + Then, there are sites which rely on pop-up windows (yuck!) to work. + Since we made pop-up-killing our default above, we need to make exceptions + now. Mozilla users, who + can turn on smart handling of unwanted pop-ups in their browsers, can + safely choose + -filter{popups} (and + -kill-popups) above + and hence don't need this section. Anyway, disabling an already disabled + action doesn't hurt, so we'll define our exceptions regardless of what was + chosen in the defaults section: + + + + +# These sites require pop-ups too :( +# +{ -kill-popups -filter{popups} } +.dabs.com +.overclockers.co.uk +.deutsche-bank-24.de + + + + The fast-redirects + action, which we enabled per default above, breaks some sites. So disable + it for popular sites where we know it misbehaves: + + + + +{ -fast-redirects } +login.yahoo.com +edit.*.yahoo.com +.google.com +.altavista.com/.*(like|url|link):http +.altavista.com/trans.*urltext=http +.nytimes.com + + + + It is important that Privoxy knows which + URLs belong to images, so that if they are to + be blocked, a substitute image can be sent, rather than an HTML page. + Contacting the remote site to find out is not an option, since it + would destroy the loading time advantage of banner blocking, and it + would feed the advertisers (in terms of money and + information). We can mark any URL as an image with the handle-as-image action, + and marking all URLs that end in a known image file extension is a + good start: + + + + +########################################################################## +# Images: +########################################################################## + +# Define which file types will be treated as images, in case they get +# blocked further down this file: +# +{ +handle-as-image } +/.*\.(gif|jpe?g|png|bmp|ico)$ + + + + And then there are known banner sources. They often use scripts to + generate the banners, so it won't be visible from the URL that the + request is for an image. Hence we block them and + mark them as images in one go, with the help of our + block-as-image alias defined above. (We could of + course just as well use +block + +handle-as-image here.) + Remember that the type of the replacement image is chosen by the + set-image-blocker + action. Since all URLs have matched the default section with its + +set-image-blocker{pattern} + action before, it still applies and needn't be repeated: + + + + +# Known ad generators: +# +{ block-as-image } +ar.atwola.com +.ad.doubleclick.net +.ad.*.doubleclick.net +.a.yimg.com/(?:(?!/i/).)*$ +.a[0-9].yimg.com/(?:(?!/i/).)*$ +bs*.gsanet.com +bs*.einets.com +.qkimg.net + + + + One of the most important jobs of Privoxy + is to block banners. A huge bunch of them are already blocked + by the filter{banners-by-size} + action, which we enabled above, and which deletes the references to banner + images from the pages while they are loaded, so the browser doesn't request + them anymore, and hence they don't need to be blocked here. But this naturally + doesn't catch all banners, and some people choose not to use filters, so we + need a comprehensive list of patterns for banner URLs here, and apply the + block action to them. + + + First comes a bunch of generic patterns, which do most of the work, by + matching typical domain and path name components of banners. Then comes + a list of individual patterns for specific sites, which is omitted here + to keep the example short: + + + + +########################################################################## +# Block these fine banners: +########################################################################## +{ +block } + +# Generic patterns: +# +ad*. +.*ads. +banner?. +count*. +/.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) +/(?:.*/)?(publicite|werbung|rekla(ma|me|am)|annonse|maino(kset|nta|s)?)/ + +# Site-specific patterns (abbreviated): +# +.hitbox.com + + + + You wouldn't believe how many advertisers actually call their banner + servers ads.company.com, or call the directory + in which the banners are stored simply banners. So the above + generic patterns are surprisingly effective. + + + But being very generic, they necessarily also catch URLs that we don't want + to block. The pattern .*ads. e.g. catches + nasty-ads.nasty-corp.com as intended, + but also downloads.sourcefroge.net or + adsl.some-provider.net. So here come some + well-known exceptions to the +block + section above. + + + Note that these are exceptions to exceptions from the default! Consider the URL + downloads.sourcefroge.net: Initially, all actions are deactivated, + so it wouldn't get blocked. Then comes the defaults section, which matches the + URL, but just deactivates the block + action once again. Then it matches .*ads., an exception to the + general non-blocking policy, and suddenly + +block applies. And now, it'll match + .*loads., where -block + applies, so (unless it matches again further down) it ends up + with no block action applying. + + + + +########################################################################## +# Save some innocent victims of the above generic block patterns: +########################################################################## + +# By domain: +# +{ -block } +adv[io]*. # (for advogato.org and advice.*) +adsl. # (has nothing to do with ads) +ad[ud]*. # (adult.* and add.*) +.edu # (universities don't host banners (yet!)) +.*loads. # (downloads, uploads etc) + +# By path: +# +/.*loads/ + +# Site-specific: +# +www.globalintersec.com/adv # (adv = advanced) +www.ugu.com/sui/ugu/adv + + + + Filtering source code can have nasty side effects, + so make an exception for our friends at sourceforge.net, + and all paths with cvs in them. Note that + -filter + disables all filters in one fell swoop! + + + + +# Don't filter code! +# +{ -filter } +/.*cvs +.sourceforge.net + + + + The actual default.action is of course more + comprehensive, but we hope this example made clear how it works. + + + + +user.action + + + So far we are painting with a broad brush by setting general policies, + which would be a reasonable starting point for many people. Now, + you might want to be more specific and have customized rules that + are more suitable to your personal habits and preferences. These would + be for narrowly defined situations like your ISP or your bank, and should + be placed in user.action, which is parsed after all other + actions files and hence has the last word, over-riding any previously + defined actions. user.action is also a + safe place for your personal settings, since + default.action is actively maintained by the + Privoxy developers and you'll probably want + to install updated versions from time to time. + + + + So let's look at a few examples of things that one might typically do in + user.action: + + + + + + + +# My user.action file. <fred@foobar.com> + + + + As aliases are local to the actions + file that they are defined in, you can't use the ones from + default.action, unless you repeat them here: + + + + +# (Re-)define aliases for this file: +# +{{alias}} +-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies +mercy-for-cookies = -crunch-all-cookies -session-cookies-only +fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups +shop = mercy-for-cookies -filter{popups} -kill-popups +allow-ads = -block -filter{banners-by-size} # (see below) + + + + + Say you have accounts on some sites that you visit regularly, and + you don't want to have to log in manually each time. So you'd like + to allow persistent cookies for these sites. The + mercy-for-cookies alias defined above does exactly + that, i.e. it disables crunching of cookies in any direction, and + processing of cookies to make them temporary. + + + + +{ mercy-for-cookies } +sunsolve.sun.com +slashdot.org +.yahoo.com +.msdn.microsoft.com +.redhat.com + + + + Your bank needs popups and is allergic to some filter, but you don't + know which, so you disable them all: + + + + +{ -filter -kill-popups } +.your-home-banking-site.com + + + + While browsing the web with Privoxy you + noticed some ads that sneaked through, but you were too lazy to + report them through our fine and easy feedback + system, so you have added them here: + + + + +{ +block } +www.a-popular-site.com/some/unobvious/path +another.popular.site.net/more/junk/here/ + + + + Note that, assuming the banners in the above example have regular image + extensions (most do), + +handle-as-image + need not be specified, since all URLs ending in these extensions will + already have been tagged as images in the relevant section of + default.action by now. + + + + Then you noticed that the default configuration breaks Forbes Magazine, + but you were too lazy to find out which action is the culprit, and you + were again too lazy to give feedback, so + you just used the fragile alias on the site, and + -- whoa! -- it worked: + + + + +{ fragile } +.forbes.com + + + + You like the fun text replacements in default.filter, + but it is disabled in the distributed actions file. (My colleagues on the team just + don't have a sense of humour, that's why! ;-). So you'd like to turn it on in your private, + update-safe config, once and for all: + + + + +{ +filter{fun} } +/ # For ALL sites! + + + + Note that the above is not really a good idea: There are exceptions + to the filters in default.action for things that + really shouldn't be filtered, like code on CVS->Web interfaces. Since + user.action has the last word, these exceptions + won't be valid for the fun filtering specified here. + + + + Finally, you might think about how your favourite free websites are + funded, and find that they rely on displaying banner advertisements + to survive. So you might want to specifically allow banners for those + sites that you feel provide value to you: + + + + +{ allow-ads } +.sourceforge.net +.slashdot.org +.osdn.net + + + + Note that allow-ads has been aliased to + -block + -filter{banners-by-size} + above. + + + + + + + + + + + + + +The Filter File + + + All text substitutions that can be invoked through the + filter action + must first be defined in the filter file, which is typically + called default.filter and which can be + selected through the + filterfile config + option. + + + + Typical reasons for doing such substitutions are to eliminate + common annoyances in HTML and JavaScript, such as pop-up windows, + exit consoles, crippled windows without navigation tools, the + infamous <BLINK> tag etc, to suppress images with certain + width and height attributes (standard banner sizes or web-bugs), + or just to have fun. The possibilities are endless. + + + + Filtering works on any text-based document type, including plain + text, HTML, JavaScript, CSS etc. (all text/* + MIME types). Substitutions are made at the source level, so if + you want to roll your own filters, you should be + familiar with HTML syntax. + + + + Just like the actions files, the + filter file is organized in sections, which are called filters + here. Each filter consists of a heading line, that starts with the + keyword FILTER:, followed by + the filter's name, and a short (one line) + description of what it does. Below that line + come the jobs, i.e. lines that define the actual + text substitutions. By convention, the name of a filter + should describe what the filter eliminates. The + comment is used in the web-based + user interface. + + + + Once a filter called name has been defined + in the filter file, it can be invoked by using an action of the form + +filter{name} + in any actions file. + + + + A filter header line for a filter called foo could look + like this: + + + + FILTER: foo Replace all "foo" with "bar" + + + + Below that line, and up to the next header line, come the jobs that + define what text replacements the filter executes. They are specified + in a syntax that imitates Perl's + s/// operator. If you are familiar with Perl, you + will find this to be quite intuitive, and may want to look at the + PCRS man page + for the subtle differences to Perl behaviour. Most notably, the non-standard + option letter U is supported, which turns the default + to ungreedy matching. + + + + If you are new to regular expressions, you might want to take a look at + the Appendix on regular expressions, and + see the Perl + manual for + the + s/// operator's syntax and Perl-style regular + expressions in general. + The below examples might also help to get you started. + + + + +Filter File Tutorial + + Now, let's complete our foo filter. We have already defined + the heading, but the jobs are still missing. Since all it does is to replace + foo with bar, there is only one (trivial) job + needed: + + + + s/foo/bar/ + + + + But wait! Didn't the comment say that all occurrences + of foo should be replaced? Our current job will only take + care of the first foo on each page. For global substitution, + we'll need to add the g option: + + + + s/foo/bar/g + + + + Our complete filter now looks like this: + + + FILTER: foo Replace all "foo" with "bar" +s/foo/bar/g + + + + Let's look at some real filters for more interesting examples. Here you see + a filter that protects against some common annoyances that arise from JavaScript + abuse. Let's look at its jobs one after the other: + + + + + +FILTER: js-annoyances Get rid of particularly annoying JavaScript abuse + +# Get rid of JavaScript referrer tracking. Test page: http://www.randomoddness.com/untitled.htm +# +s|(<script.*)document\.referrer(.*</script>)|$1"Not Your Business!"$2|Usg + + + + Following the header line and a comment, you see the job. Note that it uses + | as the delimiter instead of /, because + the pattern contains a forward slash, which would otherwise have to be escaped + by a backslash (\). + + + + Now, let's examine the pattern: it starts with the text <script.* + enclosed in parentheses. Since the dot matches any character, and * + means: Match an arbitrary number of the element left of myself, this + matches <script, followed by any text, i.e. + it matches the whole page, from the start of the first <script> tag. + + + + That's more than we want, but the pattern continues: document\.referrer + matches only the exact string document.referrer. The dot needed to + be escaped, i.e. preceded by a backslash, to take away its + special meaning as a joker, and make it just a regular dot. So far, the meaning is: + Match from the start of the first <script> tag in a the page, up to, and including, + the text document.referrer, if both are present + in the page (and appear in that order). + + + + But there's still more pattern to go. The next element, again enclosed in parentheses, + is .*</script>. You already know what .* + means, so the whole pattern translates to: Match from the start of the first <script> + tag in a page to the end of the last <script> tag, provided that the text + document.referrer appears somewhere in between. + + + + This is still not the whole story, since we have ignored the options and the parentheses: + The portions of the page matched by sub-patterns that are enclosed in parentheses, will be + remembered and be available through the variables $1, $2, ... in + the substitute. The U option switches to ungreedy matching, which means + that the first .* in the pattern will only eat up all + text in between <script and the first occurrence + of document.referrer, and that the second .* will + only span the text up to the first </script> + tag. Furthermore, the s option says that the match may span + multiple lines in the page, and the g option again means that the + substitution is global. + + + + So, to summarize, the pattern means: Match all scripts that contain the text + document.referrer. Remember the parts of the script from + (and including) the start tag up to (and excluding) the string + document.referrer as $1, and the part following + that string, up to and including the closing tag, as $2. + + + + Now the pattern is deciphered, but wasn't this about substituting things? So + lets look at the substitute: $1"Not Your Business!"$2 is + easy to read: The text remembered as $1, followed by + "Not Your Business!" (including + the quotation marks!), followed by the text remembered as $2. + This produces an exact copy of the original string, with the middle part + (the document.referrer) replaced by "Not Your + Business!". + + + + The whole job now reads: Replace document.referrer by + "Not Your Business!" wherever it appears inside a + <script> tag. Note that this job won't break JavaScript syntax, + since both the original and the replacement are syntactically valid + string objects. The script just won't have access to the referrer + information anymore. + + + + We'll show you two other jobs from the JavaScript taming department, but + this time only point out the constructs of special interest: + + + + +# The status bar is for displaying link targets, not pointless blahblah +# +s/window\.status\s*=\s*['"].*?['"]/dUmMy=1/ig + + + + \s stands for whitespace characters (space, tab, newline, + carriage return, form feed), so that \s* means: zero + or more whitespace. The ? in .*? + makes this matching of arbitrary text ungreedy. (Note that the U + option is not set). The ['"] construct means: a single + or a double quote. + + + + So what does this job do? It replaces assignments of single- or double-quoted + strings to the window.status object with a dummy assignment + (using a variable name that is hopefully odd enough not to conflict with + real variables in scripts). Thus, it catches many cases where e.g. pointless + descriptions are displayed in the status bar instead of the link target when + you move your mouse over links. + + + + +# Kill OnUnload popups. Yummy. Test: http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html +# +s/(<body .*)onunload(.*>)/$1never$2/iU + + + + Including the + OnUnload + event binding in the HTML DOM was a CRIME. + When I close a browser window, I want it to close and die. Basta. + This job replaces the onunload attribute in + <body> tags with the dummy word never. + Note that the i option makes the pattern matching + case-insensitive. + + + + The last example is from the fun department: + + + + +FILTER: fun Fun text replacements + +# Spice the daily news: +# +s/microsoft(?!\.com)/MicroSuck/ig + + + + Note the (?!\.com) part (a so-called negative lookahead) + in the job's pattern, which means: Don't match, if the string + .com appears directly following microsoft + in the page. This prevents links to microsoft.com from being messed, while + still replacing the word everywhere else. + + + + +# Buzzword Bingo (example for extended regex syntax) +# +s* industry[ -]leading \ +| cutting[ -]edge \ +| award[ -]winning # Comments are OK, too! \ +| high[ -]performance \ +| solutions[ -]based \ +| unmatched \ +| unparalleled \ +| unrivalled \ +*<font color="red"><b>BINGO!</b></font> \ +*igx + + + + The x option in this job turns on extended syntax, and allows for + e.g. the liberal use of (non-interpreted!) whitespace for nicer formatting. + + + + You get the idea? + + + + + + + + + + + +Templates + + All Privoxy built-in pages, i.e. error pages such as the + 404 - No Such Domain + error page, the BLOCKED + page + and all pages of its web-based + user interface, are generated from templates. + (Privoxy must be running for the above links to work as + intended.) + + + + These templates are stored in a subdirectory of the configuration + directory called templates. On unixish platforms, + this is typically + /etc/privoxy/templates/. + + + + The templates are basically normal HTML files, but with place-holders (called symbols + or exports), which Privoxy fills at run time. You can + edit the templates with a normal text editor, should you want to customize them. + (Not recommended for the casual user). Note that + just like in configuration files, lines starting with # are + ignored when the templates are filled in. + + + + The place-holders are of the form @name@, and you will + find a list of available symbols, which vary from template to template, + in the comments at the start of each file. Note that these comments are not + always accurate, and that it's probably best to look at the existing HTML + code to find out which symbols are supported and what they are filled in with. + + + + A special application of this substitution mechanism is to make whole + blocks of HTML code disappear when a specific symbol is set. We use this + for many purposes, one of them being to include the beta warning in all + our user interface (CGI) pages when Privoxy + in in an alpha or beta development stage: + + + + +<!-- @if-unstable-start --> + + ... beta warning HTML code goes here ... + +<!-- if-unstable-end@ --> + + + + If the "unstable" symbol is set, everything in between and including + @if-unstable-start and if-unstable-end@ + will disappear, leaving nothing but an empty comment: + + + + <!-- --> + + + + There's also an if-then-else construct and an #include + mechanism, but you'll sure find out if you are inclined to edit the + templates ;-) + + + + All templates refer to a style located at + http://config.privoxy.org/send-stylesheet. + This is, of course, locally served by Privoxy + and the source for it can be found and edited in the + cgi-style.css template. + + + + + + + + + + +Contacting the Developers, Bug Reporting and Feature +Requests + + + &contacting; + + + + + + + + +<application>Privoxy</application> Copyright, License and History + + + ©right; + + + +License + + &license; + + + + + + + +History + + &history; + + + +Authors + + &p-authors; + + + + + + + + + +See Also + + &seealso; + + + + + + +Appendix + + + + +Regular Expressions + + Privoxy uses Perl-style regular + expressions in its actions + files and filter file, + through the PCRE and + PCRS libraries. + + + + If you are reading this, you probably don't understand what regular + expressions are, or what they can do. So this will be a very brief + introduction only. A full explanation would require a book ;-) + + + + Regular expressions provide a language to describe patterns that can be + run against strings of characters (letter, numbers, etc), to see if they + match the string or not. The patterns are themselves (sometimes complex) + strings of literal characters, combined with wild-cards, and other special + characters, called meta-characters. The meta-characters have + special meanings and are used to build complex patterns to be matched against. + Perl Compatible Regular Expressions are an especially convenient + dialect of the regular expression language. + + + + To make a simple analogy, we do something similar when we use wild-card + characters when listing files with the dir command in DOS. + *.* matches all filenames. The special + character here is the asterisk which matches any and all characters. We can be + more specific and use ? to match just individual + characters. So dir file?.text would match + file1.txt, file2.txt, etc. We are pattern + matching, using a similar technique to regular expressions! + + + + Regular expressions do essentially the same thing, but are much, much more + powerful. There are many more special characters and ways of + building complex patterns however. Let's look at a few of the common ones, + and then some examples: + + + + + . - Matches any single character, e.g. a, + A, 4, :, or @. + + + + + + ? - The preceding character or expression is matched ZERO or ONE + times. Either/or. + + + + + + + - The preceding character or expression is matched ONE or MORE + times. + + + + + + * - The preceding character or expression is matched ZERO or MORE + times. + + + + + + \ - The escape character denotes that + the following character should be taken literally. This is used where one of the + special characters (e.g. .) needs to be taken literally and + not as a special meta-character. Example: example\.com, makes + sure the period is recognized only as a period (and not expanded to its + meta-character meaning of any single character). + + + + + + [] - Characters enclosed in brackets will be matched if + any of the enclosed characters are encountered. For instance, [0-9] + matches any numeric digit (zero through nine). As an example, we can combine + this with + to match any digit one of more times: [0-9]+. + + + + + + () - parentheses are used to group a sub-expression, + or multiple sub-expressions. + + + + + + | - The bar character works like an + or conditional statement. A match is successful if the + sub-expression on either side of | matches. As an example: + /(this|that) example/ uses grouping and the bar character + and would match either this example or that + example, and nothing else. + + + + + These are just some of the ones you are likely to use when matching URLs with + Privoxy, and is a long way from a definitive + list. This is enough to get us started with a few simple examples which may + be more illuminating: + + + + /.*/banners/.* - A simple example + that uses the common combination of . and * to + denote any character, zero or more times. In other words, any string at all. + So we start with a literal forward slash, then our regular expression pattern + (.*) another literal forward slash, the string + banners, another forward slash, and lastly another + .*. We are building + a directory path here. This will match any file with the path that has a + directory named banners in it. The .* matches + any characters, and this could conceivably be more forward slashes, so it + might expand into a much longer looking path. For example, this could match: + /eye/hate/spammers/banners/annoy_me_please.gif, or just + /banners/annoying.html, or almost an infinite number of other + possible combinations, just so it has banners in the path + somewhere. + + + + A now something a little more complex: + + + + /.*/adv((er)?ts?|ertis(ing|ements?))?/ - + We have several literal forward slashes again (/), so we are + building another expression that is a file path statement. We have another + .*, so we are matching against any conceivable sub-path, just so + it matches our expression. The only true literal that must + match our pattern is adv, together with + the forward slashes. What comes after the adv string is the + interesting part. + + + + Remember the ? means the preceding expression (either a + literal character or anything grouped with (...) in this case) + can exist or not, since this means either zero or one match. So + ((er)?ts?|ertis(ing|ements?)) is optional, as are the + individual sub-expressions: (er), + (ing|ements?), and the s. The | + means or. We have two of those. For instance, + (ing|ements?), can expand to match either ing + OR ements?. What is being done here, is an + attempt at matching as many variations of advertisement, and + similar, as possible. So this would expand to match just adv, + or advert, or adverts, or + advertising, or advertisement, or + advertisements. You get the idea. But it would not match + advertizements (with a z). We could fix that by + changing our regular expression to: + /.*/adv((er)?ts?|erti(s|z)(ing|ements?))?/, which would then match + either spelling. + + + + /.*/advert[0-9]+\.(gif|jpe?g) - Again + another path statement with forward slashes. Anything in the square brackets + [] can be matched. This is using 0-9 as a + shorthand expression to mean any digit one through nine. It is the same as + saying 0123456789. So any digit matches. The + + means one or more of the preceding expression must be included. The preceding + expression here is what is in the square brackets -- in this case, any digit + one through nine. Then, at the end, we have a grouping: (gif|jpe?g). + This includes a |, so this needs to match the expression on + either side of that bar character also. A simple gif on one side, and the other + side will in turn match either jpeg or jpg, + since the ? means the letter e is optional and + can be matched once or not at all. So we are building an expression here to + match image GIF or JPEG type image file. It must include the literal + string advert, then one or more digits, and a . + (which is now a literal, and not a special character, since it is escaped + with \), and lastly either gif, or + jpeg, or jpg. Some possible matches would + include: //advert1.jpg, + /nasty/ads/advert1234.gif, + /banners/from/hell/advert99.jpg. It would not match + advert1.gif (no leading slash), or + /adverts232.jpg (the expression does not include an + s), or /advert1.jsp (jsp is not + in the expression anywhere). + + + + We are barely scratching the surface of regular expressions here so that you + can understand the default Privoxy + configuration files, and maybe use this knowledge to customize your own + installation. There is much, much more that can be done with regular + expressions. Now that you know enough to get started, you can learn more on + your own :/ + + + + More reading on Perl Compatible Regular expressions: + http://www.perldoc.com/perl5.6/pod/perlre.html + + + + For information on regular expression based substititions and their applications + in filters, please see the filter file tutorial + in this manual. + + + + + + + + +<application>Privoxy</application>'s Internal Pages + + + Since Privoxy proxies each requested + web page, it is easy for Privoxy to + trap certain special URLs. In this way, we can talk directly to + Privoxy, and see how it is + configured, see how our rules are being applied, change these + rules and other configuration options, and even turn + Privoxy's filtering off, all with + a web browser. + + + + + The URLs listed below are the special ones that allow direct access + to Privoxy. Of course, + Privoxy must be running to access these. If + not, you will get a friendly error message. Internet access is not + necessary either. + + + + + + + + Privoxy main page: + +
    + + http://config.privoxy.org/ + +
    + + There is a shortcut: http://p.p/ (But it + doesn't provide a fallback to a real page, in case the request is not + sent through Privoxy) + +     + + + + Show information about the current configuration, including viewing and + editing of actions files: + +
    + + http://config.privoxy.org/show-status + +
    +     + + + + Show the source code version numbers: + +
    + + http://config.privoxy.org/show-version + +
    +     + + + + Show the browser's request headers: + +
    + + http://config.privoxy.org/show-request + +
    +     + + + + Show which actions apply to a URL and why: + +
    + + http://config.privoxy.org/show-url-info + +
    +     + + + + Toggle Privoxy on or off. In this case, Privoxy continues + to run, but only as a pass-through proxy, with no actions taking place: + +
    + + http://config.privoxy.org/toggle + +
    + + Short cuts. Turn off, then on: + +
    + + http://config.privoxy.org/toggle?set=disable + +
    +
    + + http://config.privoxy.org/toggle?set=enable + +
    +     + +     +     + + + These may be bookmarked for quick reference. See next. + + + + +Bookmarklets + + Below are some bookmarklets to allow you to easily access a + mini version of some of Privoxy's + special pages. They are designed for MS Internet Explorer, but should work + equally well in Netscape, Mozilla, and other browsers which support + JavaScript. They are designed to run directly from your bookmarks - not by + clicking the links below (although that should work for testing). + + + To save them, right-click the link and choose Add to Favorites + (IE) or Add Bookmark (Netscape). You will get a warning that + the bookmark may not be safe - just click OK. Then you can run the + Bookmarklet directly from your favorites/bookmarks. For even faster access, + you can put them on the Links bar (IE) or the Personal + Toolbar (Netscape), and run them with a single click. + + + + + + + + Privoxy - Enable + + + + + + Privoxy - Disable + + + + + + Privoxy - Toggle Privoxy (Toggles between enabled and disabled) + + + + + + Privoxy- View Status + + + + + + Privoxy - Submit Actions File Feedback + + + + + Privoxy - Why? + + + + + + + Credit: The site which gave us the general idea for these bookmarklets is + www.bookmarklets.com. They + have more information about bookmarklets. + + + + + +     + + + + +Chain of Events + + Let's take a quick look at the basic sequence of events when a web page is + requested by your browser and Privoxy is on duty: + + + + + + + First, your web browser requests a web page. The browser knows to send + the request to Privoxy, which will in turn, + relay the request to the remote web server after passing the following + tests: + + + + + Privoxy traps any request for its own internal CGI + pages (e.g http://p.p/) and sends the CGI page back to the browser. + + + + + Next, Privoxy checks to see if the URL + matches any +block patterns. If + so, the URL is then blocked, and the remote web server will not be contacted. + +handle-as-image + is then checked and if it does not match, an + HTML BLOCKED page is sent back. Otherwise, if it does match, + an image is returned. The type of image depends on the setting of +set-image-blocker + (blank, checkerboard pattern, or an HTTP redirect to an image elsewhere). + + + + + Untrusted URLs are blocked. If URLs are being added to the + trust file, then that is done. + + + + + If the URL pattern matches the +fast-redirects action, + it is then processed. Unwanted parts of the requested URL are stripped. + + + + + Now the rest of the client browser's request headers are processed. If any + of these match any of the relevant actions (e.g. +hide-user-agent, + etc.), headers are suppressed or forged as determined by these actions and + their parameters. + + + + + Now the web server starts sending its response back (i.e. typically a web page and related + data). + + + + + First, the server headers are read and processed to determine, among other + things, the MIME type (document type) and encoding. The headers are then + filtered as deterimed by the + +crunch-incoming-cookies, + +session-cookies-only, + and +downgrade-http-version + actions. + + + + + If the +kill-popups + action applies, and it is an HTML or JavaScript document, the popup-code in the + response is filtered on-the-fly as it is received. + + + + + If a +filter + or +deanimate-gifs + action applies (and the document type fits the action), the rest of the page is + read into memory (up to a configurable limit). Then the filter rules (from + default.filter) are processed against the buffered + content. Filters are applied in the order they are specified in the + default.filter file. Animated GIFs, if present, are + reduced to either the first or last frame, depending on the action + setting.The entire page, which is now filtered, is then sent by + Privoxy back to your browser. + + + If neither +filter + or +deanimate-gifs + matches, then Privoxy passes the raw data through + to the client browser as it becomes available. + + + + + As the browser receives the now (probably filtered) page content, it + reads and then requests any URLs that may be embedded within the page + source, e.g. ad images, stylesheets, JavaScript, other HTML documents (e.g. + frames), sounds, etc. For each of these objects, the browser issues a new + request. And each such request is in turn processed as above. Note that a + complex web page may have many such embedded URLs. + + + + + + + + + + + +Anatomy of an Action + + + The way Privoxy applies + actions and filters + to any given URL can be complex, and not always so + easy to understand what is happening. And sometimes we need to be able to + see just what Privoxy is + doing. Especially, if something Privoxy is doing + is causing us a problem inadvertently. It can be a little daunting to look at + the actions and filters files themselves, since they tend to be filled with + regular expressions whose consequences are not + always so obvious. + + + + One quick test to see if Privoxy is causing a problem + or not, is to disable it temporarily. This should be the first troubleshooting + step. See the Bookmarklets section on a quick + and easy way to do this (be sure to flush caches afterward!). + + + + Privoxy also provides the + http://config.privoxy.org/show-url-info + page that can show us very specifically how actions + are being applied to any given URL. This is a big help for troubleshooting. + + + + First, enter one URL (or partial URL) at the prompt, and then + Privoxy will tell us + how the current configuration will handle it. This will not + help with filtering effects (i.e. the +filter action) from + the default.filter file since this is handled very + differently and not so easy to trap! It also will not tell you about any other + URLs that may be embedded within the URL you are testing. For instance, images + such as ads are expressed as URLs within the raw page source of HTML pages. So + you will only get info for the actual URL that is pasted into the prompt area + -- not any sub-URLs. If you want to know about embedded URLs like ads, you + will have to dig those out of the HTML source. Use your browser's View + Page Source option for this. Or right click on the ad, and grab the + URL. + + + + Let's try an example, google.com, + and look at it one section at a time: + + + + + Matches for http://google.com: + + In file: default.action [ View ] [ Edit ] + +{-add-header + -block + -crunch-outgoing-cookies + -crunch-incoming-cookies + +deanimate-gifs{last} + -downgrade-http-version + +fast-redirects + -filter{popups} + -filter{fun} + -filter{shockwave-flash} + -filter{crude-parental} + +filter{html-annoyances} + +filter{js-annoyances} + +filter{content-cookies} + +filter{webbugs} + +filter{refresh-tags} + +filter{nimda} + +filter{banners-by-size} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + -kill-popups + -limit-connect + +prevent-compression + -send-vanilla-wafer + -send-wafer + +session-cookies-only + +set-image-blocker{pattern} } +/ + + { -session-cookies-only } + .google.com + + { -fast-redirects } + .google.com + +In file: user.action [ View ] [ Edit ] +(no matches in this file) + + + + + This tells us how we have defined our + actions, and + which ones match for our example, google.com. The first listing + is any matches for the standard.action file. No hits at + all here on standard. Then next is default, or + our default.action file. The large, multi-line listing, + is how the actions are set to match for all URLs, i.e. our default settings. + If you look at your actions file, this would be the section + just below the aliases section near the top. This will apply to + all URLs as signified by the single forward slash at the end of the listing + -- /. + + + + But we can define additional actions that would be exceptions to these general + rules, and then list specific URLs (or patterns) that these exceptions would + apply to. Last match wins. Just below this then are two explicit matches for + .google.com. The first is negating our previous cookie setting, + which was for +session-cookies-only + (i.e. not persistent). So we will allow persistent cookies for google. The + second turns off any + +fast-redirects + action, allowing this to take place unmolested. Note that there is a leading + dot here -- .google.com. This will match any hosts and + sub-domains, in the google.com domain also, such as + www.google.com. So, apparently, we have these two actions + defined somewhere in the lower part of our default.action + file, and google.com is referenced somewhere in these latter + sections. + + + + Then, for our user.action file, we again have no hits. + + + + And finally we pull it all together in the bottom section and summarize how + Privoxy is applying all its actions + to google.com: + + + + + + + Final results: + + -add-header + -block + -crunch-outgoing-cookies + -crunch-incoming-cookies + +deanimate-gifs{last} + -downgrade-http-version + -fast-redirects + -filter{popups} + -filter{fun} + -filter{shockwave-flash} + -filter{crude-parental} + +filter{html-annoyances} + +filter{js-annoyances} + +filter{content-cookies} + +filter{webbugs} + +filter{refresh-tags} + +filter{nimda} + +filter{banners-by-size} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + -kill-popups + -limit-connect + +prevent-compression + -send-vanilla-wafer + -send-wafer + -session-cookies-only + +set-image-blocker{pattern} + + + + + Notice the only difference here to the previous listing, is to + fast-redirects and session-cookies-only. + + + + Now another example, ad.doubleclick.net: + + + + + + { +block +handle-as-image } + .ad.doubleclick.net + + { +block +handle-as-image } + ad*. + + { +block +handle-as-image } + .doubleclick.net + + + + + We'll just show the interesting part here, the explicit matches. It is + matched three different times. Each as an +block +handle-as-image, + which is the expanded form of one of our aliases that had been defined as: + +imageblock. (Aliases are defined in + the first section of the actions file and typically used to combine more + than one action.) + + + + Any one of these would have done the trick and blocked this as an unwanted + image. This is unnecessarily redundant since the last case effectively + would also cover the first. No point in taking chances with these guys + though ;-) Note that if you want an ad or obnoxious + URL to be invisible, it should be defined as ad.doubleclick.net + is done here -- as both a +block + and an + +handle-as-image. + The custom alias +imageblock just simplifies the process and make + it more readable. + + + + One last example. Let's try http://www.rhapsodyk.net/adsl/HOWTO/. + This one is giving us problems. We are getting a blank page. Hmmm ... + + + + + + Matches for http://www.rhapsodyk.net/adsl/HOWTO/: + + In file: default.action [ View ] [ Edit ] + + {-add-header + -block + -crunch-incoming-cookies + -crunch-outgoing-cookies + +deanimate-gifs + -downgrade-http-version + +fast-redirects + +filter{html-annoyances} + +filter{js-annoyances} + +filter{kill-popups} + +filter{webbugs} + +filter{nimda} + +filter{banners-by-size} + +filter{hal} + +filter{fun} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + +kill-popups + +prevent-compression + -send-vanilla-wafer + -send-wafer + +session-cookies-only + +set-image-blocker{blank} } + / + + { +block +handle-as-image } + /ads + + + + + Ooops, the /adsl/ is matching /ads! But + we did not want this at all! Now we see why we get the blank page. We could + now add a new action below this that explicitly does not + block ({-block}) paths with adsl. There are + various ways to handle such exceptions. Example: + + + + + + { -block } + /adsl + + + + + Now the page displays ;-) Be sure to flush your browser's caches when + making such changes. Or, try using Shift+Reload. + + + + But now what about a situation where we get no explicit matches like + we did with: + + + + + + { +block +handle-as-image } + /ads + + + + + That actually was very telling and pointed us quickly to where the problem + was. If you don't get this kind of match, then it means one of the default + rules in the first section is causing the problem. This would require some + guesswork, and maybe a little trial and error to isolate the offending rule. + One likely cause would be one of the {+filter} actions. Try + adding the URL for the site to one of aliases that turn off +filter: + + + + + + {shop} + .quietpc.com + .worldpay.com # for quietpc.com + .jungle.com + .scan.co.uk + .forbes.com + + + + + {shop} is an alias that expands to + { -filter -session-cookies-only }. + Or you could do your own exception to negate filtering: + + + + + + + {-filter} + .forbes.com + + + + + This would probably be most appropriately put in user.action, + for local site exceptions. + + + + {fragile} is an alias that disables most actions. This can be + used as a last resort for problem sites. Remember to flush caches! If this + still does not work, you will have to go through the remaining actions one by + one to find which one(s) is causing the problem. + + + + +     + + + +
    diff --git a/doc/source/webserver/index.sgml b/doc/source/webserver/index.sgml new file mode 100644 index 00000000..d01cf4d6 --- /dev/null +++ b/doc/source/webserver/index.sgml @@ -0,0 +1,287 @@ + + + + + + + + + + + + + + +]> + + +
    + + Privoxy - Homepage + + + + + privoxy HTTP proxy privacy + popups po-ups HTML JavaScript + cleaning blocking cleaner blocker + filter proxy junk ad + advertisement banner webbugs + web-bugs werbung junkbusters + junkbuster + + + + + + + This is here to keep vim syntax file from breaking :/ + If I knew enough to fix it, I would. + PLEASE DO NOT REMOVE! HB: hal@foobox.net + + +]]> + + + &p-intro; + + + + The most recent release is &p-version; (&p-status;). + + + + + + + + +Download + + + + + Download recent releases + + + + + Download the latest CVS snapshot (source tarball) + + + + + Quickstart after installation + + + + + + +Documentation + + + + + User manual + + + + + Frequently Asked Questions + + + + + Developer Manual + + + + + Classic Man Page + + + + + + +More information + + + + + Support & Service + + + + + Copyright, License, History & Authors + + + + + List of (new) Features + + + + + The project page at SourceForge + + + + + Related links + + + + + Pictures of the Privoxy Team + + + + + + + + + + + + + + + + + + + Prixoxy is developed on: + + + + + + + + + + + + + + + + + + + + Copyright © 2001, 2002 by Privoxy Developers + + + + + + + +
    diff --git a/doc/text/developer-manual.txt b/doc/text/developer-manual.txt new file mode 100644 index 00000000..99df01d2 --- /dev/null +++ b/doc/text/developer-manual.txt @@ -0,0 +1,2143 @@ +Privoxy Developer Manual + +Copyright © 2001, 2002 by Privoxy Developers + +$Id: developer-manual.sgml,v 1.42 2002/05/05 20:26:02 hal9 Exp $ + +The developer manual gives the users information on how to help the developer +team. It provides guidance on coding, testing, documentation and other issues. + +You can find the latest version of the this manual at http://www.privoxy.org/ +developer-manual/. Please see the Contact section on how to contact the +developers. + +------------------------------------------------------------------------------- + +Table of Contents +1. Introduction + + 1.1. Quickstart to Privoxy Development + +2. The CVS Repository + + 2.1. Access to CVS + 2.2. CVS Commit Guideline + 2.3. Discussing Changes First + +3. Documentation Guidelines + + 3.1. Quickstart to Docbook and SGML + 3.2. Privoxy Documentation Style + 3.3. Privoxy Custom Entities + +4. Coding Guidelines + + 4.1. Introduction + 4.2. Using Comments + + 4.2.1. Comment, Comment, Comment + 4.2.2. Use blocks for comments + 4.2.3. Keep Comments on their own line + 4.2.4. Comment each logical step + 4.2.5. Comment All Functions Thoroughly + 4.2.6. Comment at the end of braces if the content is more than one + screen length + + 4.3. Naming Conventions + + 4.3.1. Variable Names + 4.3.2. Function Names + 4.3.3. Header file prototypes + 4.3.4. Enumerations, and #defines + 4.3.5. Constants + + 4.4. Using Space + + 4.4.1. Put braces on a line by themselves. + 4.4.2. ALL control statements should have a block + 4.4.3. Do not belabor/blow-up boolean expressions + 4.4.4. Use white space freely because it is free + 4.4.5. Don't use white space around structure operators + 4.4.6. Make the last brace of a function stand out + 4.4.7. Use 3 character indentions + + 4.5. Initializing + + 4.5.1. Initialize all variables + + 4.6. Functions + + 4.6.1. Name functions that return a boolean as a question. + 4.6.2. Always specify a return type for a function. + 4.6.3. Minimize function calls when iterating by using variables + 4.6.4. Pass and Return by Const Reference + 4.6.5. Pass and Return by Value + 4.6.6. Names of include files + 4.6.7. Provide multiple inclusion protection + 4.6.8. Use `extern "C"` when appropriate + 4.6.9. Where Possible, Use Forward Struct Declaration Instead of + Includes + + 4.7. General Coding Practices + + 4.7.1. Turn on warnings + 4.7.2. Provide a default case for all switch statements + 4.7.3. Try to avoid falling through cases in a switch statement. + 4.7.4. Use 'long' or 'short' Instead of 'int' + 4.7.5. Don't mix size_t and other types + 4.7.6. Declare each variable and struct on its own line. + 4.7.7. Use malloc/zalloc sparingly + 4.7.8. The Programmer Who Uses 'malloc' is Responsible for Ensuring + 'free' + 4.7.9. Add loaders to the `file_list' structure and in order + 4.7.10. "Uncertain" new code and/or changes to existing code, use FIXME + + 4.8. Addendum: Template for files and function comment blocks: + +5. Testing Guidelines + + 5.1. Testplan for releases + 5.2. Test reports + +6. Releasing a New Version + + 6.1. Version numbers + 6.2. Before the Release: Freeze + 6.3. Building and Releasing the Packages + + 6.3.1. Source Tarball + 6.3.2. SuSE or Red Hat RPM + 6.3.3. OS/2 + 6.3.4. Solaris + 6.3.5. Windows + 6.3.6. Debian + 6.3.7. Mac OSX + 6.3.8. FreeBSD + 6.3.9. HP-UX 11 + 6.3.10. Amiga OS + 6.3.11. AIX + + 6.4. Uploading and Releasing Your Package + 6.5. After the Release + +7. Update the Webserver +8. Contacting the developers, Bug Reporting and Feature Requests + + 8.1. Get Support + 8.2. Report bugs + 8.3. Request new features + 8.4. Report ads or other filter problems + 8.5. Other + +9. Privoxy Copyright, License and History + + 9.1. License + 9.2. History + +10. See also + +1. Introduction + +Privoxy, as an heir to Junkbuster, is an Open Source project and licensed under +the GPL. As such, Privoxy development is potentially open to anyone who has the +time, knowledge, and desire to contribute in any capacity. Our goals are simply +to continue the mission, to improve Privoxy, and to make it available to as +wide an audience as possible. + +One does not have to be a programmer to contribute. Packaging, testing, and +porting, are all important jobs as well. + +------------------------------------------------------------------------------- + +1.1. Quickstart to Privoxy Development + +You'll need an account on Sourceforge to support our development. Mail your ID +to the list and wait until a project manager has added you. + +For the time being (read, this section is under construction), please refer to +the extensive comments in the source code. + +------------------------------------------------------------------------------- + +2. The CVS Repository + +If you intend to help us with programming, documentation or packaging you will +need write access to our holy grail, the CVS repository. Please read this +chapter completely before accessing via CVS. + +------------------------------------------------------------------------------- + +2.1. Access to CVS + +The project's CVS repository is hosted on SourceForge. Please refer to the +chapters 6 and 7 in SF's site documentation for the technical access details +for your operating system. For historical reasons, the CVS server is called +cvs.ijbswa.sourceforge.net, the repository is called ijbswa, and the source +tree module is called current. + +------------------------------------------------------------------------------- + +2.2. CVS Commit Guideline + +The source tree is the heart of every software project. Every effort must be +made to ensure that it is readable, compilable and consistent at all times. We +therefore ask anyone with CVS access to strictly adhere to the following +guidelines: + + * Never (read: never, ever) be tempted to commit that small change without + testing it thoroughly first. When we're close to a public release, ask a + fellow developer to review your changes. + + * Your commit message should give a concise overview of what you changed (no + big details) and why you changed it Just check previous messages for good + examples. + + * Don't use the same message on multiple files, unless it equally applies to + all those files. + + * If your changes span multiple files, and the code won't recompile unless + all changes are commited (e.g. when changing the signature of a function), + then commit all files one after another, without long delays in beween. If + necessary, prepare the commit messages in advance. + + * Before changing things on CVS, make sure that your changes are in line with + the team's general consensus on what should be done (see below). + +------------------------------------------------------------------------------- + +2.3. Discussing Changes First + +We don't have a too formal policy on this, just use common sense. Hints: If it +is.. + + 1. ..a bugfix / clean-up / cosmetic thing: shoot + + 2. ..a new feature that can be turned off: shoot + + 3. ..a clear improvement w/o side effects on other parts of the code: shoot + + 4. ..a matter of taste: ask the list + + 5. ..a major redesign of some part of the code: ask the list + +Note that near a major public release, we get a bit more cautious - if unsure, +it doesn't hurt to ask first. There is always the possibility to submit a patch +to the patches tracker instead. + +------------------------------------------------------------------------------- + +3. Documentation Guidelines + +All formal documents are maintained in Docbook SGML and located in the doc/ +source/* directory. You will need Docbook, the Docbook DTD's and the Docbook +modular stylesheets (or comparable alternatives), and either jade or openjade +(recommended) installed in order to build docs from source. Currently there is +user-manual, FAQ, and, of course this, the developer-manual in this format. The +README, AUTHORS privoxy.1 (man page) files are also now maintained as Docbook +SGML. The finished files are all in the top-level source directory are +generated files! Also, index.html, the Privoxy home page, is maintained as +SGML. DO NOT edit these directly. Edit the SGML source, or contact someone +involved in the documentation (at present Stefan and Hal). + +Other, less formal documents (e.g. LICENSE, INSTALL) are maintained as plain +text files in the top-level source directory. At least for the time being. + +Packagers are encouraged to include this documentation. For those without the +ability to build the docs locally, text versions of each are kept in CVS. HTML +versions are also now being kept in CVS under doc/webserver/*. + +Formal documents are built with the Makefile targets of make dok, or +alternately make redhat-dok. If you have problems, try both. The build process +uses the document SGML sources in doc/source/*/* to update all text files in +doc/text/ and to update all HTML documents in doc/webserver/. + +Documentation writers should please make sure documents build successfully +before committing to CVS, if possible. + +How do you update the webserver (i.e. the pages on privoxy.org)? + + 1. First, build the docs by running make dok (or alternately make redhat-dok). + + 2. Run make webserver which copies all files from doc/webserver to the + sourceforge webserver via scp. + +Finished docs should be occasionally submitted to CVS (doc/webserver/*/*.html) +so that those without the ability to build them locally, have access to them if +needed. This is especially important just prior to a new release! Please do +this after the $VERSION and other release specific data in configure.in has +been updated (this is done just prior to a new release). + +------------------------------------------------------------------------------- + +3.1. Quickstart to Docbook and SGML + +If you are not familiar with SGML, it is a markup language similar to HTML. +Actually, not a mark up language per se, but a language used to define markup +languages. In fact, HTML is an SGML application. Both will use "tags" to format +text and other content. SGML tags can be much more varied, and flexible, but do +much of the same kinds of things. The tags, or "elements", are definable in +SGML. There is no set "standards". Since we are using Docbook, our tags are +those that are defined by Docbook. Much of how the finish document is rendered +is determined by the "stylesheets". The stylesheets determine how each tag gets +translated to HTML, or other formats. + +Tags in Docbook SGML need to be always "closed". If not, you will likely +generate errors. Example: My Title. They are also +case-insensitive, but we strongly suggest using all lower case. This keeps +compatibility with [Docbook] XML. + +Our documents use "sections" for the most part. Sections will be processed into +HTML headers (e.g. h1 for sect1). The Docbook stylesheets will use these to +also generate the Table of Contents for each doc. Our TOC's are set to a depth +of three. Meaning sect1, sect2, and sect3 will have TOC entries, but sect4 will +not. Each section requires a element, and at least one <para>. There is +a limit of five section levels in Docbook, but generally three should be +sufficient for our purposes. + +Some common elements that you likely will use: + +<para></para>, paragraph delimiter. Most text needs to be within paragraph +elements (there are some exceptions). +<emphasis></emphasis>, the stylesheets make this italics. +<filename></filename>, files and directories. +<command></command>, command examples. +<literallayout></literallayout>, like <pre>, more or less. +<itemizedlist></itemizedlist>, list with bullets. +<listitem></listitem>, member of the above. +<screen></screen>, screen output, implies <literallayout>. +<ulink url="example.com"></ulink>, like HTML <a> tag. +<quote></quote>, for, doh, quoting text. + +Look at any of the existing docs for examples of all these and more. + +You might also find "Writing Documentation Using DocBook - A Crash Course" +useful. + +------------------------------------------------------------------------------- + +3.2. Privoxy Documentation Style + +It will be easier if everyone follows a similar writing style. This just makes +it easier to read what someone else has written if it is all done in a similar +fashion. + +Here it is: + + * All tags should be lower case. + + * Tags delimiting a block of text (even small blocks) should be on their own + line. Like: + + <para> + Some text goes here. + </para> + + + Tags marking individual words, or few words, should be in-line: + + Just to <emphasis>emphasize</emphasis>, some text goes here. + + + * Tags should be nested and step indented for block text like: (except + in-line tags) + + <para> + <itemizedlist> + <para> + <listitem> + Some text goes here in our list example. + </listitem> + </para> + </itemizedlist> + </para> + + + This makes it easier to find the text amongst the tags ;-) + + * Use white space to separate logical divisions within a document, like + between sections. Running everything together consistently makes it harder + to read and work on. + + * Do not hesitate to make comments. Comments can either use the <comment> + element, or the <!-- --> style comment familiar from HTML. (Note in Docbook + v4.x <comment> is replaced by <remark>.) + + * We have an international audience. Refrain from slang, or English + idiosyncrasies (too many to list :). Humor also does not translate well + sometimes. + + * Try to keep overall line lengths in source files to 80 characters or less + for obvious reasons. This is not always possible, with lengthy URLs for + instance. + + * Our documents are available in differing formats. Right now, they are just + plain text, and HTML, but PDF, and others is always a future possibility. + Be careful with URLs (<ulink>), and avoid this mistake: + + My favorite site is <ulink url="http://example.com">here</ulink>. + + This will render as "My favorite site is here", which is not real helpful + in a text doc. Better like this: + + My favorite site is <ulink url="http://example.com">example.com</ulink>. + + * All documents should be spell checked occasionally. aspell can check SGML + with the -H option. (ispell I think too.) + +------------------------------------------------------------------------------- + +3.3. Privoxy Custom Entities + +Privoxy documentation is using a number of customized "entities" to facilitate +documentation maintenance. + +We are using a set of "boilerplate" files with generic text, that is used by +multiple docs. This way we can write something once, and use it repeatedly +without having to re-write the same content over and over again. If editing +such a file, keep in mind that it should be generic. That is the purpose; so it +can be used in varying contexts without additional modifications. + +We are also using what Docbook calls "internal entities". These are like +variables in programming. Well, sort of. For instance, we have the p-version +entity that contains the current Privoxy version string. You are strongly +encouraged to use these where possible. Some of these obviously require +re-setting with each release (done by the Makefile). A sampling of custom +entities are listed below. See any of the main docs for examples. + + * Re- "boilerplate" text entities are defined like: + + <!entity supported SYSTEM "supported.sgml"> + + In this example, the contents of the file, supported.sgml is available for + inclusion anywhere in the doc. To make this happen, just reference the now + defined entity: &supported; (starts with an ampersand and ends with a + semi-colon), and the contents will be dumped into the finished doc at that + point. + + * Commonly used "internal entities": + + p-version: the Privoxy version string, e.g. "2.9.15". + p-status: the project status, either "alpha", "beta", or "stable". + p-not-stable: use to conditionally include text in "not stable" releases + (e.g. "beta"). + p-stable: just the opposite. + p-text: this doc is only generated as text. + +There are others in various places that are defined for a specific purpose. +Read the source! + +------------------------------------------------------------------------------- + +4. Coding Guidelines + +4.1. Introduction + +This set of standards is designed to make our lives easier. It is developed +with the simple goal of helping us keep the "new and improved Privoxy" +consistent and reliable. Thus making maintenance easier and increasing chances +of success of the project. + +And that of course comes back to us as individuals. If we can increase our +development and product efficiencies then we can solve more of the request for +changes/improvements and in general feel good about ourselves. ;-> + +------------------------------------------------------------------------------- + +4.2. Using Comments + +4.2.1. Comment, Comment, Comment + +Explanation: + +Comment as much as possible without commenting the obvious. For example do not +comment "aVariable is equal to bVariable". Instead explain why aVariable should +be equal to the bVariable. Just because a person can read code does not mean +they will understand why or what is being done. A reader may spend a lot more +time figuring out what is going on when a simple comment or explanation would +have prevented the extra research. Please help your brother IJB'ers out! + +The comments will also help justify the intent of the code. If the comment +describes something different than what the code is doing then maybe a +programming error is occurring. + +Example: + +/* if page size greater than 1k ... */ +if ( PageLength() > 1024 ) +{ + ... "block" the page up ... +} + +/* if page size is small, send it in blocks */ +if ( PageLength() > 1024 ) +{ + ... "block" the page up ... +} + +This demonstrates 2 cases of "what not to do". The first is a +"syntax comment". The second is a comment that does not fit what +is actually being done. + +------------------------------------------------------------------------------- + +4.2.2. Use blocks for comments + +Explanation: + +Comments can help or they can clutter. They help when they are differentiated +from the code they describe. One line comments do not offer effective +separation between the comment and the code. Block identifiers do, by +surrounding the code with a clear, definable pattern. + +Example: + +/********************************************************************* + * This will stand out clearly in your code! + *********************************************************************/ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + + +/* unfortunately, this may not */ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + + +if ( thisVariable == thatVariable ) /* this may not either */ +{ + DoSomethingVeryImportant(); +} + +Exception: + +If you are trying to add a small logic comment and do not wish to "disrupt" the +flow of the code, feel free to use a 1 line comment which is NOT on the same +line as the code. + +------------------------------------------------------------------------------- + +4.2.3. Keep Comments on their own line + +Explanation: + +It goes back to the question of readability. If the comment is on the same line +as the code it will be harder to read than the comment that is on its own line. + +There are three exceptions to this rule, which should be violated freely and +often: during the definition of variables, at the end of closing braces, when +used to comment parameters. + +Example: + +/********************************************************************* + * This will stand out clearly in your code, + * But the second example won't. + *********************************************************************/ +if ( thisVariable == thatVariable ) +{ + DoSomethingVeryImportant(); +} + +if ( thisVariable == thatVariable ) /*can you see me?*/ +{ + DoSomethingVeryImportant(); /*not easily*/ +} + + +/********************************************************************* + * But, the encouraged exceptions: + *********************************************************************/ +int urls_read = 0; /* # of urls read + rejected */ +int urls_rejected = 0; /* # of urls rejected */ + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); +} + + +short DoSomethingVeryImportant( + short firstparam, /* represents something */ + short nextparam /* represents something else */ ) +{ + ...code here... + +} /* -END- DoSomethingVeryImportant */ + +------------------------------------------------------------------------------- + +4.2.4. Comment each logical step + +Explanation: + +Logical steps should be commented to help others follow the intent of the +written code and comments will make the code more readable. + +If you have 25 lines of code without a comment, you should probably go back +into it to see where you forgot to put one. + +Most "for", "while", "do", etc... loops _probably_ need a comment. After all, +these are usually major logic containers. + +------------------------------------------------------------------------------- + +4.2.5. Comment All Functions Thoroughly + +Explanation: + +A reader of the code should be able to look at the comments just prior to the +beginning of a function and discern the reason for its existence and the +consequences of using it. The reader should not have to read through the code +to determine if a given function is safe for a desired use. The proper +information thoroughly presented at the introduction of a function not only +saves time for subsequent maintenance or debugging, it more importantly aids in +code reuse by allowing a user to determine the safety and applicability of any +function for the problem at hand. As a result of such benefits, all functions +should contain the information presented in the addendum section of this +document. + +------------------------------------------------------------------------------- + +4.2.6. Comment at the end of braces if the content is more than one screen +length + +Explanation: + +Each closing brace should be followed on the same line by a comment that +describes the origination of the brace if the original brace is off of the +screen, or otherwise far away from the closing brace. This will simplify the +debugging, maintenance, and readability of the code. + +As a suggestion , use the following flags to make the comment and its brace +more readable: + +use following a closing brace: } /* -END- if() or while () or etc... */ + +Example: + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); + ...some long list of commands... +} /* -END- if x is 1 */ + +or: + +if ( 1 == X ) +{ + DoSomethingVeryImportant(); + ...some long list of commands... +} /* -END- if ( 1 == X ) */ + +------------------------------------------------------------------------------- + +4.3. Naming Conventions + +4.3.1. Variable Names + +Explanation: + +Use all lowercase, and separate words via an underscore ('_'). Do not start an +identifier with an underscore. (ANSI C reserves these for use by the compiler +and system headers.) Do not use identifiers which are reserved in ANSI C++. +(E.g. template, class, true, false, ...). This is in case we ever decide to +port Privoxy to C++. + +Example: + +int ms_iis5_hack = 0; + +Instead of: + +int msiis5hack = 0; int msIis5Hack = 0; + +------------------------------------------------------------------------------- + +4.3.2. Function Names + +Explanation: + +Use all lowercase, and separate words via an underscore ('_'). Do not start an +identifier with an underscore. (ANSI C reserves these for use by the compiler +and system headers.) Do not use identifiers which are reserved in ANSI C++. +(E.g. template, class, true, false, ...). This is in case we ever decide to +port Privoxy to C++. + +Example: + +int load_some_file( struct client_state *csp ) + +Instead of: + +int loadsomefile( struct client_state *csp ) +int loadSomeFile( struct client_state *csp ) + +------------------------------------------------------------------------------- + +4.3.3. Header file prototypes + +Explanation: + +Use a descriptive parameter name in the function prototype in header files. Use +the same parameter name in the header file that you use in the c file. + +Example: + +(.h) extern int load_aclfile( struct client_state *csp ); +(.c) int load_aclfile( struct client_state *csp ) + +Instead of: + +(.h) extern int load_aclfile( struct client_state * ); or +(.h) extern int load_aclfile(); +(.c) int load_aclfile( struct client_state *csp ) + +------------------------------------------------------------------------------- + +4.3.4. Enumerations, and #defines + +Explanation: + +Use all capital letters, with underscores between words. Do not start an +identifier with an underscore. (ANSI C reserves these for use by the compiler +and system headers.) + +Example: + +(enumeration) : enum Boolean { FALSE, TRUE }; +(#define) : #define DEFAULT_SIZE 100; + +Note: We have a standard naming scheme for #defines that toggle a feature in +the preprocessor: FEATURE_>, where > is a short (preferably 1 or 2 word) +description. + +Example: + +#define FEATURE_FORCE 1 + +#ifdef FEATURE_FORCE +#define FORCE_PREFIX blah +#endif /* def FEATURE_FORCE */ + +------------------------------------------------------------------------------- + +4.3.5. Constants + +Explanation: + +Spell common words out entirely (do not remove vowels). + +Use only widely-known domain acronyms and abbreviations. Capitalize all letters +of an acronym. + +Use underscore (_) to separate adjacent acronyms and abbreviations. Never +terminate a name with an underscore. + +Example: + +#define USE_IMAGE_LIST 1 + +Instead of: + +#define USE_IMG_LST 1 or +#define _USE_IMAGE_LIST 1 or +#define USE_IMAGE_LIST_ 1 or +#define use_image_list 1 or +#define UseImageList 1 + +------------------------------------------------------------------------------- + +4.4. Using Space + +4.4.1. Put braces on a line by themselves. + +Explanation: + +The brace needs to be on a line all by itself, not at the end of the statement. +Curly braces should line up with the construct that they're associated with. +This practice makes it easier to identify the opening and closing braces for a +block. + +Example: + +if ( this == that ) +{ + ... +} + +Instead of: + +if ( this == that ) { ... } + +or + +if ( this == that ) { ... } + +Note: In the special case that the if-statement is inside a loop, and it is +trivial, i.e. it tests for a condition that is obvious from the purpose of the +block, one-liners as above may optically preserve the loop structure and make +it easier to read. + +Status: developer-discretion. + +Example exception: + +while ( more lines are read ) +{ + /* Please document what is/is not a comment line here */ + if ( it's a comment ) continue; + + do_something( line ); +} + +------------------------------------------------------------------------------- + +4.4.2. ALL control statements should have a block + +Explanation: + +Using braces to make a block will make your code more readable and less prone +to error. All control statements should have a block defined. + +Example: + +if ( this == that ) +{ + DoSomething(); + DoSomethingElse(); +} + +Instead of: + +if ( this == that ) DoSomething(); DoSomethingElse(); + +or + +if ( this == that ) DoSomething(); + +Note: The first example in "Instead of" will execute in a manner other than +that which the developer desired (per indentation). Using code braces would +have prevented this "feature". The "explanation" and "exception" from the point +above also applies. + +------------------------------------------------------------------------------- + +4.4.3. Do not belabor/blow-up boolean expressions + +Example: + +structure->flag = ( condition ); + +Instead of: + +if ( condition ) { structure->flag = 1; } else { structure->flag = 0; } + +Note: The former is readable and concise. The later is wordy and inefficient. +Please assume that any developer new to the project has at least a "good" +knowledge of C/C++. (Hope I do not offend by that last comment ... 8-) + +------------------------------------------------------------------------------- + +4.4.4. Use white space freely because it is free + +Explanation: + +Make it readable. The notable exception to using white space freely is listed +in the next guideline. + +Example: + +int firstValue = 0; +int someValue = 0; +int anotherValue = 0; +int thisVariable = 0; + +if ( thisVariable == thatVariable ) + +firstValue = oldValue + ( ( someValue - anotherValue ) - whatever ) + +------------------------------------------------------------------------------- + +4.4.5. Don't use white space around structure operators + +Explanation: + +- structure pointer operator ( "->" ) - member operator ( "." ) - functions and +parentheses + +It is a general coding practice to put pointers, references, and function +parentheses next to names. With spaces, the connection between the object and +variable/function name is not as clear. + +Example: + +aStruct->aMember; +aStruct.aMember; +FunctionName(); + +Instead of: aStruct -> aMember; aStruct . aMember; FunctionName (); + +------------------------------------------------------------------------------- + +4.4.6. Make the last brace of a function stand out + +Example: + +int function1( ... ) +{ + ...code... + return( retCode ); + +} /* -END- function1 */ + + +int function2( ... ) +{ +} /* -END- function2 */ + +Instead of: + +int function1( ... ) { ...code... return( retCode ); } int function2( ... ) { } + +Note: Use 1 blank line before the closing brace and 2 lines afterward. This +makes the end of function standout to the most casual viewer. Although function +comments help separate functions, this is still a good coding practice. In +fact, I follow these rules when using blocks in "for", "while", "do" loops, and +long if {} statements too. After all whitespace is free! + +Status: developer-discretion on the number of blank lines. Enforced is the end +of function comments. + +------------------------------------------------------------------------------- + +4.4.7. Use 3 character indentions + +Explanation: + +If some use 8 character TABs and some use 3 character TABs, the code can look * +very* ragged. So use 3 character indentions only. If you like to use TABs, pass +your code through a filter such as "expand -t3" before checking in your code. + +Example: + +static const char * const url_code_map[256] = +{ + NULL, ... +}; + + +int function1( ... ) +{ + if ( 1 ) + { + return( ALWAYS_TRUE ); + } + else + { + return( HOW_DID_YOU_GET_HERE ); + } + + return( NEVER_GETS_HERE ); + +} + +------------------------------------------------------------------------------- + +4.5. Initializing + +4.5.1. Initialize all variables + +Explanation: + +Do not assume that the variables declared will not be used until after they +have been assigned a value somewhere else in the code. Remove the chance of +accidentally using an unassigned variable. + +Example: + +short anShort = 0; +float aFloat = 0; +struct *ptr = NULL; + +Note: It is much easier to debug a SIGSEGV if the message says you are trying +to access memory address 00000000 and not 129FA012; or arrayPtr[20] causes a +SIGSEV vs. arrayPtr[0]. + +Status: developer-discretion if and only if the variable is assigned a value +"shortly after" declaration. + +------------------------------------------------------------------------------- + +4.6. Functions + +4.6.1. Name functions that return a boolean as a question. + +Explanation: + +Value should be phrased as a question that would logically be answered as a +true or false statement + +Example: + +ShouldWeBlockThis(); +ContainsAnImage(); +IsWebPageBlank(); + +------------------------------------------------------------------------------- + +4.6.2. Always specify a return type for a function. + +Explanation: + +The default return for a function is an int. To avoid ambiguity, create a +return for a function when the return has a purpose, and create a void return +type if the function does not need to return anything. + +------------------------------------------------------------------------------- + +4.6.3. Minimize function calls when iterating by using variables + +Explanation: + +It is easy to write the following code, and a clear argument can be made that +the code is easy to understand: + +Example: + +for ( size_t cnt = 0; cnt < blockListLength(); cnt ++ ) +{ + .... +} + +Note: Unfortunately, this makes a function call for each and every iteration. +This increases the overhead in the program, because the compiler has to look up +the function each time, call it, and return a value. Depending on what occurs +in the blockListLength() call, it might even be creating and destroying +structures with each iteration, even though in each case it is comparing "cnt" +to the same value, over and over. Remember too - even a call to blockListLength +() is a function call, with the same overhead. + +Instead of using a function call during the iterations, assign the value to a +variable, and evaluate using the variable. + +Example: + +size_t len = blockListLength(); + +for ( size_t cnt = 0; cnt < len; cnt ++ ) +{ + .... +} + +Exceptions: if the value of blockListLength() *may* change or could * +potentially* change, then you must code the function call in the for/while +loop. + +------------------------------------------------------------------------------- + +4.6.4. Pass and Return by Const Reference + +Explanation: + +This allows a developer to define a const pointer and call your function. If +your function does not have the const keyword, we may not be able to use your +function. Consider strcmp, if it were defined as: extern int strcmp( char *s1, +char *s2 ); + +I could then not use it to compare argv's in main: int main( int argc, const +char *argv[] ) { strcmp( argv[0], "privoxy" ); } + +Both these pointers are *const*! If the c runtime library maintainers do it, we +should too. + +------------------------------------------------------------------------------- + +4.6.5. Pass and Return by Value + +Explanation: + +Most structures cannot fit onto a normal stack entry (i.e. they are not 4 bytes +or less). Aka, a function declaration like: int load_aclfile( struct +client_state csp ) + +would not work. So, to be consistent, we should declare all prototypes with +"pass by value": int load_aclfile( struct client_state *csp ) + +------------------------------------------------------------------------------- + +4.6.6. Names of include files + +Explanation: + +Your include statements should contain the file name without a path. The path +should be listed in the Makefile, using -I as processor directive to search the +indicated paths. An exception to this would be for some proprietary software +that utilizes a partial path to distinguish their header files from system or +other header files. + +Example: + +#include <iostream.h> /* This is not a local include */ +#include "config.h" /* This IS a local include */ + +Exception: + +/* This is not a local include, but requires a path element. */ +#include <sys/fileName.h> + +Note: Please! do not add "-I." to the Makefile without a _very_ good reason. +This duplicates the #include "file.h" behavior. + +------------------------------------------------------------------------------- + +4.6.7. Provide multiple inclusion protection + +Explanation: + +Prevents compiler and linker errors resulting from redefinition of items. + +Wrap each header file with the following syntax to prevent multiple inclusions +of the file. Of course, replace PROJECT_H with your file name, with "." Changed +to "_", and make it uppercase. + +Example: + +#ifndef PROJECT_H_INCLUDED +#define PROJECT_H_INCLUDED + ... +#endif /* ndef PROJECT_H_INCLUDED */ + +------------------------------------------------------------------------------- + +4.6.8. Use `extern "C"` when appropriate + +Explanation: + +If our headers are included from C++, they must declare our functions as +`extern "C"`. This has no cost in C, but increases the potential re-usability +of our code. + +Example: + +#ifdef __cplusplus +extern "C" +{ +#endif /* def __cplusplus */ + +... function definitions here ... + +#ifdef __cplusplus +} +#endif /* def __cplusplus */ + +------------------------------------------------------------------------------- + +4.6.9. Where Possible, Use Forward Struct Declaration Instead of Includes + +Explanation: + +Useful in headers that include pointers to other struct's. Modifications to +excess header files may cause needless compiles. + +Example: + +/********************************************************************* + * We're avoiding an include statement here! + *********************************************************************/ +struct file_list; +extern file_list *xyz; + +Note: If you declare "file_list xyz;" (without the pointer), then including the +proper header file is necessary. If you only want to prototype a pointer, +however, the header file is unnecessary. + +Status: Use with discretion. + +------------------------------------------------------------------------------- + +4.7. General Coding Practices + +4.7.1. Turn on warnings + +Explanation + +Compiler warnings are meant to help you find bugs. You should turn on as many +as possible. With GCC, the switch is "-Wall". Try and fix as many warnings as +possible. + +------------------------------------------------------------------------------- + +4.7.2. Provide a default case for all switch statements + +Explanation: + +What you think is guaranteed is never really guaranteed. The value that you +don't think you need to check is the one that someday will be passed. So, to +protect yourself from the unknown, always have a default step in a switch +statement. + +Example: + +switch( hash_string( cmd ) ) +{ + case hash_actions_file : + ... code ... + break; + + case hash_confdir : + ... code ... + break; + + default : + log_error( ... ); + ... anomaly code goes here ... + continue; / break; / exit( 1 ); / etc ... + +} /* end switch( hash_string( cmd ) ) */ + +Note: If you already have a default condition, you are obviously exempt from +this point. Of note, most of the WIN32 code calls `DefWindowProc' after the +switch statement. This API call *should* be included in a default statement. + +Another Note: This is not so much a readability issue as a robust programming +issue. The "anomaly code goes here" may be no more than a print to the STDERR +stream (as in load_config). Or it may really be an ABEND condition. + +Status: Programmer discretion is advised. + +------------------------------------------------------------------------------- + +4.7.3. Try to avoid falling through cases in a switch statement. + +Explanation: + +In general, you will want to have a 'break' statement within each 'case' of a +switch statement. This allows for the code to be more readable and +understandable, and furthermore can prevent unwanted surprises if someone else +later gets creative and moves the code around. + +The language allows you to plan the fall through from one case statement to +another simply by omitting the break statement within the case statement. This +feature does have benefits, but should only be used in rare cases. In general, +use a break statement for each case statement. + +If you choose to allow fall through, you should comment both the fact of the +fall through and reason why you felt it was necessary. + +------------------------------------------------------------------------------- + +4.7.4. Use 'long' or 'short' Instead of 'int' + +Explanation: + +On 32-bit platforms, int usually has the range of long. On 16-bit platforms, +int has the range of short. + +Status: open-to-debate. In the case of most FSF projects (including X/ +GNU-Emacs), there are typedefs to int4, int8, int16, (or equivalence ... I +forget the exact typedefs now). Should we add these to IJB now that we have a +"configure" script? + +------------------------------------------------------------------------------- + +4.7.5. Don't mix size_t and other types + +Explanation: + +The type of size_t varies across platforms. Do not make assumptions about +whether it is signed or unsigned, or about how long it is. Do not compare a +size_t against another variable of a different type (or even against a +constant) without casting one of the values. Try to avoid using size_t if you +can. + +------------------------------------------------------------------------------- + +4.7.6. Declare each variable and struct on its own line. + +Explanation: + +It can be tempting to declare a series of variables all on one line. Don't. + +Example: + +long a = 0; +long b = 0; +long c = 0; + +Instead of: + +long a, b, c; + +Explanation: - there is more room for comments on the individual variables - +easier to add new variables without messing up the original ones - when +searching on a variable to find its type, there is less clutter to "visually" +eliminate + +Exceptions: when you want to declare a bunch of loop variables or other trivial +variables; feel free to declare them on 1 line. You should, although, provide a +good comment on their functions. + +Status: developer-discretion. + +------------------------------------------------------------------------------- + +4.7.7. Use malloc/zalloc sparingly + +Explanation: + +Create a local struct (on the stack) if the variable will live and die within +the context of one function call. + +Only "malloc" a struct (on the heap) if the variable's life will extend beyond +the context of one function call. + +Example: + +If a function creates a struct and stores a pointer to it in a +list, then it should definitely be allocated via `malloc'. + +------------------------------------------------------------------------------- + +4.7.8. The Programmer Who Uses 'malloc' is Responsible for Ensuring 'free' + +Explanation: + +If you have to "malloc" an instance, you are responsible for insuring that the +instance is `free'd, even if the deallocation event falls within some other +programmer's code. You are also responsible for ensuring that deletion is +timely (i.e. not too soon, not too late). This is known as "low-coupling" and +is a "good thing (tm)". You may need to offer a free/unload/destuctor type +function to accommodate this. + +Example: + +int load_re_filterfile( struct client_state *csp ) { ... } +static void unload_re_filterfile( void *f ) { ... } + +Exceptions: + +The developer cannot be expected to provide `free'ing functions for C run-time +library functions ... such as `strdup'. + +Status: developer-discretion. The "main" use of this standard is for allocating +and freeing data structures (complex or nested). + +------------------------------------------------------------------------------- + +4.7.9. Add loaders to the `file_list' structure and in order + +Explanation: + +I have ordered all of the "blocker" file code to be in alpha order. It is +easier to add/read new blockers when you expect a certain order. + +Note: It may appear that the alpha order is broken in places by POPUP tests +coming before PCRS tests. But since POPUPs can also be referred to as +KILLPOPUPs, it is clear that it should come first. + +------------------------------------------------------------------------------- + +4.7.10. "Uncertain" new code and/or changes to existing code, use FIXME + +Explanation: + +If you have enough confidence in new code or confidence in your changes, but +are not *quite* sure of the repercussions, add this: + +/* FIXME: this code has a logic error on platform XYZ, * attempting to fix */ # +ifdef PLATFORM ...changed code here... #endif + +or: + +/* FIXME: I think the original author really meant this... */ ...changed code +here... + +or: + +/* FIXME: new code that *may* break something else... */ ...new code here... + +Note: If you make it clear that this may or may not be a "good thing (tm)", it +will be easier to identify and include in the project (or conversely exclude +from the project). + +------------------------------------------------------------------------------- + +4.8. Addendum: Template for files and function comment blocks: + +Example for file comments: + +const char FILENAME_rcs[] = "$Id: developer-manual.sgml,v 1.42 2002/05/05 20:26:02 hal9 Exp $"; +/********************************************************************* + * + * File : $Source$ + * + * Purpose : (Fill me in with a good description!) + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log$ + * + *********************************************************************/ + + +#include "config.h" + + ...necessary include files for us to do our work... + +const char FILENAME_h_rcs[] = FILENAME_H_VERSION; + +Note: This declares the rcs variables that should be added to the +"show-proxy-args" page. If this is a brand new creation by you, you are free to +change the "Copyright" section to represent the rights you wish to maintain. + +Note: The formfeed character that is present right after the comment flower box +is handy for (X|GNU)Emacs users to skip the verbiage and get to the heart of +the code (via `forward-page' and `backward-page'). Please include it if you +can. + +Example for file header comments: + +#ifndef _FILENAME_H +#define _FILENAME_H +#define FILENAME_H_VERSION "$Id: developer-manual.sgml,v 1.42 2002/05/05 20:26:02 hal9 Exp $" +/********************************************************************* + * + * File : $Source$ + * + * Purpose : (Fill me in with a good description!) + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log$ + * + *********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + + ... function headers here ... + + +/* Revision control strings from this header and associated .c file */ +extern const char FILENAME_rcs[]; +extern const char FILENAME_h_rcs[]; + + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef _FILENAME_H */ + +/* + Local Variables: + tab-width: 3 + end: +*/ + +Example for function comments: + +/********************************************************************* + * + * Function : FUNCTION_NAME + * + * Description : (Fill me in with a good description!) + * + * parameters : + * 1 : param1 = pointer to an important thing + * 2 : x = pointer to something else + * + * Returns : 0 => Ok, everything else is an error. + * + *********************************************************************/ +int FUNCTION_NAME( void *param1, const char *x ) +{ + ... + return( 0 ); + +} + +Note: If we all follow this practice, we should be able to parse our code to +create a "self-documenting" web page. + +------------------------------------------------------------------------------- + +5. Testing Guidelines + +To be filled. + +------------------------------------------------------------------------------- + +5.1. Testplan for releases + +Explain release numbers. major, minor. developer releases. etc. + + 1. Remove any existing rpm with rpm -e + + 2. Remove any file that was left over. This includes (but is not limited to) + + + /var/log/privoxy + + + /etc/privoxy + + + /usr/sbin/privoxy + + + /etc/init.d/privoxy + + + /usr/doc/privoxy* + + 3. Install the rpm. Any error messages? + + 4. start,stop,status Privoxy with the specific script (e.g. /etc/rc.d/init/ + privoxy stop). Reboot your machine. Does autostart work? + + 5. Start browsing. Does Privoxy work? Logfile written? + + 6. Remove the rpm. Any error messages? All files removed? + +------------------------------------------------------------------------------- + +5.2. Test reports + +Please submit test reports only with the test form at sourceforge. Three simple +steps: + + * Select category: the distribution you test on. + + * Select group: the version of Privoxy that we are about to release. + + * Fill the Summary and Detailed Description with something intelligent (keep + it short and precise). + +Do not mail to the mailinglist (we cannot keep track on issues there). + +------------------------------------------------------------------------------- + +6. Releasing a New Version + +When we release versions of Privoxy, our work leaves our cozy secret lab and +has to work in the cold RealWorld[tm]. Once it is released, there is no way to +call it back, so it is very important that great care is taken to ensure that +everything runs fine, and not to introduce problems in the very last minute. + +So when releasing a new version, please adhere exactly to the procedure +outlined in this chapter. + +The following programs are required to follow this process: ncftpput (ncftp), +scp, ssh (ssh), gmake (GNU's version of make), autoconf, cvs. + +------------------------------------------------------------------------------- + +6.1. Version numbers + +First you need to determine which version number the release will have. Privoxy +version numbers consist of three numbers, separated by dots, like in X.Y.Z, +where: + + * X, the version major, is rarely ever changed. It is increased by one if + turning a development branch into stable substantially changes the + functionality, user interface or configuration syntax. Majors 1 and 2 were + Junkbuster, and 3 will be the first stable Privoxy release. + + * Y, the version minor, represents the branch within the major version. At + any point in time, there are two branches being maintained: The stable + branch, with an even minor, say, 2N, in which no functionality is being + added and only bugfixes are made, and 2N+1, the development branch, in + which the further development of Privoxy takes place. This enables us to + turn the code upside down and inside out, while at the same time providing + and maintaining a stable version. The minor is reset to zero (and one) when + the major is inrcemented. When a development branch has matured to the + point where it can be turned into stable, the old stable branch 2N is given + up (i.e. no longer maintained), the former development branch 2N+1 becomes + the new stable branch 2N+2, and a new development branch 2N+3 is opened. + + * Z, the point or sub version, represents a release of the software within a + branch. It is therefore incremented immediately before each code freeze. In + development branches, only the even point versions correspond to actual + releases, while the odd ones denote the evolving state of the sources on + CVS in between. It follows that Z is odd on CVS in development branches + most of the time. There, it gets increased to an even number immediately + before a code freeze, and is increased to an odd number again immediately + thereafter. This ensures that builds from CVS snapshots are easily + distinguished from released versions. The point version is reset to zero + when the minor changes. + +------------------------------------------------------------------------------- + +6.2. Before the Release: Freeze + +The following must be done by one of the developers prior to each new release. + + * Make sure that everybody who has worked on the code in the last couple of + days has had a chance to yell "no!" in case they have pending changes/fixes + in their pipelines. Announce the freeze so that nobody will interfere with + last minute changes. + + * Increment the version number (point from odd to even in development + branches!) in configure.in. + + * If default.action has changed since last release (i.e. software release or + standalone actions file release), bump up its version info to A.B in this + line: + + {+add-header{X-Actions-File-Version: A.B} -filter -no-popups} + + Then change the version info in doc/webserver/actions/index.php, line: + '$required_actions_file_version = "A.B";' + + * If the HTML documentation is not in sync with the SGML sources you need to + regenerate and upload it to the webserver. (If in doubt, just do it.) See + the Section "Updating the webserver" in this manual for details. + + * Commit all files that were changed in the above steps! + + * Tag all files in CVS with the version number with "cvs tag v_X_Y_Z". Don't + use vX_Y_Z, ver_X_Y_Z, v_X.Y.Z (won't work) etc. + + * If the release was in a development branch, increase the point version from + even to odd (X.Y.(Z+1)) again in configure.in and commit your change. + + * On the webserver, copy the user manual to a new top-level directory called + X.Y.Z. This ensures that help links from the CGI pages, which have the + version as a prefix, will go into the right version of the manual. If this + is a development branch release, also symlink X.Y.(Z-1) to X.Y.Z and X.Y. + (Z+1) to . (i.e. dot). + +------------------------------------------------------------------------------- + +6.3. Building and Releasing the Packages + +Now the individual packages can be built and released. Note that for GPL +reasons the first package to be released is always the source tarball. + +For all types of packages, including the source tarball, you must make sure +that you build from clean sources by exporting the right version from CVS into +an empty directory:. + + mkdir dist # delete or choose different name if it already exists + cd dist + cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa export -r v_X_Y_Z current + +Do NOT change a single bit, including, but not limited to version information +after export from CVS. This is to make sure that all release packages, and with +them, all future bug reports, are based on exactly the same code. + +Please find additional instructions for the source tarball and the individual +platform dependent binary packages below. + +------------------------------------------------------------------------------- + +6.3.1. Source Tarball + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then do: + + make tarball-dist + +To upload the package to Sourceforge, simply issue + + make tarball-upload + +Go to the displayed URL and release the file publicly on Sourceforge. For the +change log field, use the relevant section of the ChangeLog file. + +------------------------------------------------------------------------------- + +6.3.2. SuSE or Red Hat RPM + +In following text, replace dist with either "rh" for Red Hat or "suse" for +SuSE. + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). + +As the only exception to not changing anything after export from CVS, now +examine the file privoxy-dist.spec and make sure that the version information +and the RPM release number are correct. The RPM release numbers for each +version start at one. Hence it must be reset to one if this is the first RPM +for dist which is built from version X.Y.Z. Check the file list if unsure. +Else, it must be set to the highest already available RPM release number for +that version plus one. + +Then run: + + cd current + autoheader && autoconf && ./configure + +Then do + + make dist-dist + +To upload the package to Sourceforge, simply issue + + make dist-upload rpm_packagerev + +where rpm_packagerev is the RPM release number as determined above. Go to the +displayed URL and release the file publicly on Sourceforge. Use the release +notes and change log from the source tarball package. + +------------------------------------------------------------------------------- + +6.3.3. OS/2 + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then get the OS/2 +Setup module: + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co os2setup + +You will need a mix of development tools. The main compilation takes place with +IBM Visual Age C++. Some ancillary work takes place with GNU tools, available +from various sources like hobbes.nmsu.edu. Specificially, you will need +autoheader, autoconf and sh tools. The packaging takes place with WarpIN, +available from various sources, including its home page: xworkplace. + +Change directory to the os2setup directory. Edit the os2build.cmd file to set +the final executable filename. For example, + + installExeName='privoxyos2_setup_X.Y.Z.exe' + +Next, edit the IJB.wis file so the release number matches in the PACKAGEID +section: + + PACKAGEID="Privoxy Team\Privoxy\Privoxy Package\X\Y\Z" + +You're now ready to build. Run: + + os2build + +You will find the WarpIN-installable executable in the ./files directory. +Upload this anonymously to uploads.sourceforge.net/incoming, create a release +for it, and you're done. Use the release notes and Change Log from the source +tarball package. + +------------------------------------------------------------------------------- + +6.3.4. Solaris + +Login to Sourceforge's compilefarm via ssh: + + ssh cf.sourceforge.net + +Choose the right operating system (not the Debian one). When logged in, make +sure that you have freshly exported the right version into an empty directory. +(See "Building and releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then run + + gmake solaris-dist + +which creates a gzip'ed tar archive. Sadly, you cannot use make solaris-upload +on the Sourceforge machine (no ncftpput). You now have to manually upload the +archive to Sourceforge's ftp server and release the file publicly. Use the +release notes and Change Log from the source tarball package. + +------------------------------------------------------------------------------- + +6.3.5. Windows + +You should ensure you have the latest version of Cygwin (from http:// +www.cygwin.com/). Run the following commands from within a Cygwin bash shell. + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then get the Windows +setup module: + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co winsetup + +Then you can build the package. This is fully automated, and is controlled by +winsetup/GNUmakefile. All you need to do is: + + cd winsetup + make + +Now you can manually rename privoxy_setup.exe to privoxy_setup_X_Y_Z.exe, and +upload it to SourceForge. When releasing the package on SourceForge, use the +release notes and Change Log from the source tarball package. + +------------------------------------------------------------------------------- + +6.3.6. Debian + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then, run: + + cd current + autoheader && autoconf && ./configure + +Then do FIXME. + +------------------------------------------------------------------------------- + +6.3.7. Mac OSX + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then get the Mac OSX +setup module: + + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co osxsetup + +Then run: + + cd osxsetup + build + +This will run autoheader, autoconf and configure as well as make. Finally, it +will copy over the necessary files to the ./osxsetup/files directory for +further processing by PackageMaker. + +Bring up PackageMaker with the PrivoxyPackage.pmsp definition file, modify the +package name to match the release, and hit the "Create package" button. If you +specify ./Privoxy.pkg as the output package name, you can then create the +distributable zip file with the command: + +zip -r privoxyosx_setup_x.y.z.zip Privoxy.pkg + +You can then upload privoxyosx_setup_x.y.z.zip anonymously to +uploads.sourceforge.net/incoming, create a release for it, and you're done. Use +the release notes and Change Log from the source tarball package. + +------------------------------------------------------------------------------- + +6.3.8. FreeBSD + +Login to Sourceforge's compilefarm via ssh: + + ssh cf.sourceforge.net + +Choose the right operating system. When logged in, make sure that you have +freshly exported the right version into an empty directory. (See "Building and +releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then run: + + gmake freebsd-dist + +which creates a gzip'ed tar archive. Sadly, you cannot use make freebsd-upload +on the Sourceforge machine (no ncftpput). You now have to manually upload the +archive to Sourceforge's ftp server and release the file publicly. Use the +release notes and Change Log from the source tarball package. + +------------------------------------------------------------------------------- + +6.3.9. HP-UX 11 + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then do FIXME. + +------------------------------------------------------------------------------- + +6.3.10. Amiga OS + +First, make sure that you have freshly exported the right version into an empty +directory. (See "Building and releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then do FIXME. + +------------------------------------------------------------------------------- + +6.3.11. AIX + +Login to Sourceforge's compilefarm via ssh: + + ssh cf.sourceforge.net + +Choose the right operating system. When logged in, make sure that you have +freshly exported the right version into an empty directory. (See "Building and +releasing packages" above). Then run: + + cd current + autoheader && autoconf && ./configure + +Then run: + + make aix-dist + +which creates a gzip'ed tar archive. Sadly, you cannot use make aix-upload on +the Sourceforge machine (no ncftpput). You now have to manually upload the +archive to Sourceforge's ftp server and release the file publicly. Use the +release notes and Change Log from the source tarball package. + +------------------------------------------------------------------------------- + +6.4. Uploading and Releasing Your Package + +After the package is ready, it is time to upload it to SourceForge, and go +through the release steps. The upload is done via FTP: + + * Upload to: ftp://upload.sourceforge.net/incoming + + * user: anonymous + + * password: ijbswa-developers@lists.sourceforge.net + +Once this done go to http://sourceforge.net/project/admin/editpackages.php? +group_id=11118, making sure you are logged in. Find your target platform in the +second column, and click Add Release. You will then need to create a new +release for your package, using the format of $VERSION ($CODE_STATUS), e.g. +2.9.15 (beta). + +Now just follow the prompts. Be sure to add any appropriate Release notes. You +should see your freshly uploaded packages in "Step 2. Add Files To This +Release". Check the appropriate box(es). Remember at each step to hit the +"Refresh/Submit" buttons! You should now see your file(s) listed in Step 3. +Fill out the forms with the appropriate information for your platform, being +sure to hit "Update" for each file. If anyone is monitoring your platform, +check the "email" box at the very bottom to notify them of the new package. +This should do it! + +If you have made errors, or need to make changes, you can go through +essentially the same steps, but select Edit Release, instead of Add Release. + +------------------------------------------------------------------------------- + +6.5. After the Release + +When all (or: most of the) packages have been uploaded and made available, send +an email to the announce mailing list, Subject: "Version X.Y.Z available for +download". Be sure to include the download location, the release notes and the +change log. + +------------------------------------------------------------------------------- + +7. Update the Webserver + +When updating the webserver, please follow these steps to make sure that no +broken links, incosistent contents or permission problems will occur: + +If you have changed anything in the documentation source SGML files, do: + + make dok # (or make redkat-dok if make dok doesn't work for you) + +That will generate doc/webserver/user-manual, doc/webserver/developer-manual, +doc/webserver/faq and doc/webserver/index.html automatically. + +If you changed the manual page source, generate doc/webserver/man-page/ +privoxy-man-page.html by running "make man". (This is a separate target due to +dependencies on some obscure perl scripts. See comments in GNUmakefile.) + +If you want to add new files to the webserver, create them locally in the doc/ +webserver/* directory (or create new directories under doc/webserver). + +Next, commit any changes from the above steps to CVS. All set? Then do + + make webserver + +This will do the upload to the webserver (www.privoxy.org) and ensure all files +and directories there are group writable. + +Please do NOT use any other means of transferring files to the webserver to +avoid permission problems. + +------------------------------------------------------------------------------- + +8. Contacting the developers, Bug Reporting and Feature Requests + +We value your feedback. However, to provide you with the best support, please +note the following sections. + +------------------------------------------------------------------------------- + +8.1. Get Support + +To get support, use the Sourceforge Support Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=211118 + +------------------------------------------------------------------------------- + +8.2. Report bugs + +To submit bugs, use the Sourceforge Bug Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=111118. + +Make sure that the bug has not already been submitted. Please try to verify +that it is a Privoxy bug, and not a browser or site bug first. If you are using +your own custom configuration, please try the stock configs to see if the +problem is a configuration related bug. And if not using the latest development +snapshot, please try the latest one. Or even better, CVS sources. Please be +sure to include the Privoxy version, platform, browser, any pertinent log data, +any other relevant details (please be specific) and, if possible, some way to +reproduce the bug. + +------------------------------------------------------------------------------- + +8.3. Request new features + +To submit ideas on new features, use the Sourceforge feature request forum: + + http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse. + +------------------------------------------------------------------------------- + +8.4. Report ads or other filter problems + +You can also send feedback on websites that Privoxy has problems with. Please +bookmark the following link: "Privoxy - Submit Filter Feedback". Once you surf +to a page with problems, use the bookmark to send us feedback. We will look +into the issue as soon as possible. + +New, improved default.action files will occasionally be made available based on +your feedback. These will be announced on the ijbswa-announce list. + +------------------------------------------------------------------------------- + +8.5. Other + +For any other issues, feel free to use the mailing lists: + + http://sourceforge.net/mail/?group_id=11118. + +Anyone interested in actively participating in development and related +discussions can also join the appropriate mailing list. Archives are available, +too. See the page on Sourceforge. + +------------------------------------------------------------------------------- + +9. Privoxy Copyright, License and History + +Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org> + +Some source code is based on code Copyright © 1997 by Anonymous Coders and +Junkbusters, Inc. and licensed under the GNU General Public License. + +------------------------------------------------------------------------------- + +9.1. License + +Privoxy is free software; you can redistribute it and/or modify it under the +terms of the GNU General Public License, version 2, as published by the Free +Software Foundation. + +This program is distributed in the hope that it will be useful, but WITHOUT ANY +WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A +PARTICULAR PURPOSE. See the GNU General Public License for more details, which +is available from the Free Software Foundation, Inc, 59 Temple Place - Suite +330, Boston, MA 02111-1307, USA. + +You should have received a copy of the GNU General Public License along with +this program; if not, write to the + + Free Software + Foundation, Inc. 59 Temple Place - Suite 330 + Boston, MA 02111-1307 + USA + +------------------------------------------------------------------------------- + +9.2. History + +Privoxy is evolved, and derived from, the Internet Junkbuster, with many +improvments and enhancements over the original. + +Junkbuster was originally written by Anonymous Coders and Junkbusters +Corporation, and was released as free open-source software under the GNU GPL. +Stefan Waldherr made many improvements, and started the SourceForge project +Privoxy to rekindle development. There are now several active developers +contributing. The last stable release of Junkbuster was v2.0.2, which has now +grown whiskers ;-). + +------------------------------------------------------------------------------- + +10. See also + +Other references and sites of interest to Privoxy users: + +http://www.privoxy.org/, The Privoxy Home page. + +http://sourceforge.net/projects/ijbswa, the Project Page for Privoxy on +Sourceforge. + +http://p.p/, access Privoxy from your browser. Alternately, http:// +config.privoxy.org may work in some situations where the first does not. + +http://p.p/, and select "Privoxy - Submit Filter Feedback" to submit "misses" +to the developers. + +http://www.junkbusters.com/ht/en/cookies.html + +http://www.waldherr.org/junkbuster/ + +http://privacy.net/analyze/ + +http://www.squid-cache.org/ + + + diff --git a/doc/text/faq.txt b/doc/text/faq.txt new file mode 100644 index 00000000..5c4cbeb8 --- /dev/null +++ b/doc/text/faq.txt @@ -0,0 +1,1022 @@ +Privoxy Frequently Asked Questions + +Copyright © 2001, 2002 by Privoxy Developers + +$Id: faq.sgml,v 1.57 2002/05/05 20:26:02 hal9 Exp $ + +This FAQ gives users and developers alike answers to frequently asked questions +about Privoxy . + +Privoxy is a web proxy with advanced filtering capabilities for protecting +privacy, filtering web page content, managing cookies, controlling access, and +removing ads, banners, pop-ups and other obnoxious Internet junk. Privoxy has a +very flexible configuration and can be customized to suit individual needs and +tastes. Privoxy has application for both stand-alone systems and multi-user +networks. + +Privoxy is based on Internet Junkbuster (tm). + +You can find the latest version of the document at http://www.privoxy.org/faq/. +Please see the Contact section if you want to contact the developers. + +------------------------------------------------------------------------------- + +Table of Contents +1. General Information + + 1.1. What is this new version of Privoxy? + 1.2. Why "Privoxy"? Why a name change at all? + 1.3. How does Privoxy differ from the old Junkbuster? + 1.4. What are some of the new features? + 1.5. What is a "proxy"? How does Privoxy work? + 1.6. How does Privoxy know what is an ad, and what is not? + 1.7. Can Privoxy make mistakes? This does not sound very scientific. + 1.8. My browser does the same things as Privoxy. Why should I use Privoxy + at all? + 1.9. Is there is a license or fee? What about a warranty? Registration? + 1.10. I would like to help you, what do I do? + + 1.10.1. Money Money Money + 1.10.2. You want to work with us? + +2. Installation + + 2.1. Which browsers are supported by Privoxy? + 2.2. Which operating systems are supported? + 2.3. Can I install Privoxy over Junkbuster? + 2.4. I just installed Privoxy. Is there anything special I have to do now? + 2.5. What is the proxy address of Privoxy? + 2.6. I just installed Privoxy, and nothing is happening. All the ads are + there. What's wrong? + +3. Configuration + + 3.1. Can I use my old config files? + 3.2. What is an "actions" file? + 3.3. The "actions" concept confuses me. Please list some of these + "actions". + 3.4. How are actions files configured? What is the easiest way to do this? + 3.5. There are several different "actions" files. What are the differences? + 3.6. Why can I change the configuration with a browser? Does that not raise + security issues? + 3.7. What is "default.filter"? + 3.8. How can I set up Privoxy to act as a proxy for my LAN? + 3.9. Instead of ads, now I get a checkerboard pattern. I don't want to see + anything. + 3.10. Why would anybody want to see a checkerboard pattern? + 3.11. I see large red banners on some pages that say "Blocked". Why and how + do I get rid of this? + 3.12. I cannot see all of the "Blocked" page banner. Help. + 3.13. Can Privoxy run as a service on Win2K/NT? + 3.14. How can I make Privoxy work with other proxies like Squid? + 3.15. Can Privoxy run as a "transparent" proxy? + +4. Miscellaneous + + 4.1. How much does Privoxy slow my browsing down? This has to add extra + time to browsing. + 4.2. I noticed considerable delays in page requests compared to the old + Junkbuster. What's wrong? + 4.3. What is the "http://p.p/"? + 4.4. Do you still maintain the blocklists? + 4.5. How can I submit new ads? + 4.6. How can I hide my IP address? + 4.7. Can Privoxy guarantee I am anonymous? + 4.8. Might some things break because header information is being altered? + 4.9. Can Privoxy act as a "caching" proxy to speed up web browsing? + 4.10. What about as a firewall? Can Privoxy protect me? + 4.11. The Privoxy logo that replaces ads is very blocky and ugly looking. + Can't a better font be used? + 4.12. I have large empty spaces now where ads used to be. Why? + 4.13. How can Privoxy filter Secure (HTTPS) URLs? + 4.14. Privoxy runs as a "server". How secure is it? Do I need to take any + special precautions? + 4.15. How can I temporarily disable Privoxy? + 4.16. Where can I find more information about Privoxy and related issues? + +5. Troubleshooting + + 5.1. I just upgraded and am getting "connection refused" with every web + page? + 5.2. I just added a new rule, but the steenkin ad is still getting through. + How? + 5.3. One of my favorite sites does not work with Privoxy. What can I do? + +6. Contacting the developers, Bug Reporting and Feature Requests + + 6.1. Get Support + 6.2. Report bugs + 6.3. Request new features + 6.4. Report ads or other filter problems + 6.5. Other + +7. Privoxy Copyright, License and History + + 7.1. License + 7.2. History + +1. General Information + +1.1. What is this new version of Privoxy? + +The original Internet JunkbusterTM (tm) is a copyrighted product of Junkbusters +Corporation. Development of this effort stopped some time ago as of version +2.0.2. Stefan Waldherr started the ijbswa project on Sourceforge to rekindle +development. Other developers subsequently joined with Stefan, and have since +added many new features, refinements and enhancements. The result of this +effort is Privoxy. + +Privoxy has evolved from the Junkbuster 2.0.2 code base, and has advanced +significantly at this point. + +Please see the History section for more information on the history of +Junkbuster and Privoxy. + +------------------------------------------------------------------------------- + +1.2. Why "Privoxy"? Why a name change at all? + +Privoxy is the "Privacy Enhancing Proxy". + +There are potential legal complications from the continued use of the +Junkbuster name, which is a registered trademark of Junkbusters Corporation. +And thus they "own" the rights to the name. (There are, however, no objections +from Junkbusters Corporation to the Privoxy project itself, and they, in fact, +still share our ideals and goals.) + +The developers also believed that there are so many changes from the original +code, that it was time to make a clean break from the past and make a name in +their own right, especially now with the pending release of version 3.0. + +------------------------------------------------------------------------------- + +1.3. How does Privoxy differ from the old Junkbuster? + +Privoxy picks up where Junkbuster left off. All the old features remain. The +new Privoxy still blocks ads and banners, still manages cookies, and still +helps protect your privacy. But, these are all enhanced, and many new features +have been added, all in the same vein. + +The configuration has changed significantly as well. This is something that +users will notice right off the bat if you are upgrading from Junkbuster 2.0.x. +The "blocklist" file does not exist any more. This is replaced by "actions" +files, such as default.actions. This is where most of the per site +configuration is now. + +------------------------------------------------------------------------------- + +1.4. What are some of the new features? + + * Integrated browser based configuration and control utility at http:// + config.privoxy.org/ (shortcut: http://p.p/). Browser-based tracing of rule + and filter effects. Remote toggling. + + * Web page content filtering (removes banners based on size, invisible + "web-bugs", JavaScript and HTML annoyances, pop-up windows, etc.) + + * Modularized configuration that allows for standard settings and user + settings to reside in separate files, so that installing updated actions + files won't overwrite idividual user settings. + + * HTTP/1.1 compliant (but not all optional 1.1 features are supported). + + * Support for Perl Compatible Regular Expressions in the configuration files, + and generally a more sophisticated and flexible configuration syntax over + previous versions. + + * Improved cookie management features (e.g. session based cookies). + + * GIF de-animation. + + * Bypass many click-tracking scripts (avoids script redirection). + + * Multi-threaded (POSIX and native threads). + + * User-customizable HTML templates for all proxy-generated pages (e.g. + "blocked" page). + + * Auto-detection and re-reading of config file changes. + + * Improved signal handling, and a true daemon mode (Unix). + + * Every feature now controllable on a per-site or per-location basis, + configuration more powerful and versatile over-all. + + * Many smaller new features added, limitations and bugs removed, and security + holes fixed. + +------------------------------------------------------------------------------- + +1.5. What is a "proxy"? How does Privoxy work? + +When you connect to a web site with Privoxy, you are really connecting to your +locally running version of Privoxy. Privoxy intercepts your requests for the +web page, and relays that to the "real" web site. The web site sends the HTTP +data stream back to Privoxy, where Privoxy can work its magic before it relays +this data back to your web browser. + +Since Privoxy sits between you and the WWW, it is in a position to intercept +and completely manage all web traffic and HTTP content before it gets to your +browser. Privoxy uses various programming methods to do this, all of which is +under your control via the various configuration files and options. + +There are many kinds of proxies. Privoxy best fits the "filtering proxy" +category. + +------------------------------------------------------------------------------- + +1.6. How does Privoxy know what is an ad, and what is not? + +Privoxy processes all the raw content of every web page. So it reads everything +on each page. It then compares this to the rules as set up in the configuration +files, and looks for any matches to these rules. Privoxy makes heavy use of +"regular expressions". (If you are not familiar with regular expressions, it is +explained briefly in the user manual.) Regular expressions facilitate matching +of one text string against another, using wildcards to build complex patterns. +So Privoxy will typically look for URLs and other content that match certain +key words and expressions as defined in the configuration files. For instance a +URL that contains "/banners", has a high probability of containing ad banners, +and thus would be a prime candidate to have a matching rule. + +So Privoxy will look for these kinds of obvious looking culprits. And also, +will use lists of known organizations that specialize in ads. Again, using +complex patterns to match as many potential combinations as possible since +there tend to be many, many variations used by advertisers, and new ones are +being introduced all the time. + +------------------------------------------------------------------------------- + +1.7. Can Privoxy make mistakes? This does not sound very scientific. + +Actually, it's a black art ;-) And yes, it is always possible to have a broad +rule accidentally block something by mistake. There is a good chance you may +run into such a situation at some point. It is tricky writing rules to cover +every conceivable possibility, and not occasionally get false positives. + +But this should not be a big concern since the Privoxy configuration is very +flexible, and includes tools to help identify these types of situations so they +can be addressed as needed, allowing you to customize your installation. (See +the Troubleshooting section below.) + +------------------------------------------------------------------------------- + +1.8. My browser does the same things as Privoxy. Why should I use Privoxy at +all? + +Modern browsers do indeed have some of the same functionality as Privoxy. Maybe +this is adequate for you. But Privoxy is much more versatile and powerful, and +can do a number of things that browsers just can't. + +In addition, a proxy is good choice if you use multiple browsers, or have a LAN +with multiple computers. This way all the configuration is in one place, and +you don't have to maintain a similar configuration for possibly many browsers. + +------------------------------------------------------------------------------- + +1.9. Is there is a license or fee? What about a warranty? Registration? + +Privoxy is licensed under the GNU General Public License (GPL). It is free to +use, copy, modify or distribute as you wish under the terms of this license. +Please see the Copyright section for more information on the license and +copyright. Or the LICENSE file that should be included. + +There is no warranty of any kind, expressed, implied or otherwise. That is +something that would cost real money ;-) There is no registration either. +Privoxy really is free in every respect! + +------------------------------------------------------------------------------- + +1.10. I would like to help you, what do I do? + +1.10.1. Money Money Money + +We, of course, welcome donations and use the money for domain registering, +regular world-wide get-togethers (hahaha). Anyway, we'll soon describe the +process how to donate money to the team. + +------------------------------------------------------------------------------- + +1.10.2. You want to work with us? + +Well, helping the team is always a good idea. We welcome new developers, RPM +gurus or documentation makers. Simply get an account on sourceforge.net and +mail your id to the developer mailing list. Then read the section Quickstart in +the Developer's Manual. + +Once we have added you to the team, you'll have write access to the CVS +repository, and together we'll find a suitable task for you. + +------------------------------------------------------------------------------- + +2. Installation + +2.1. Which browsers are supported by Privoxy? + +Any browser that can be configured to use a "proxy", which should be virtually +all browsers. Direct browser support is not necessary since Privoxy runs as a +separate application and just exchanges standard HTML data with your browser, +just like a web server does. + +------------------------------------------------------------------------------- + +2.2. Which operating systems are supported? + +At present, Privoxy is known to run on Windows(95, 98, ME, 2000, XP), Linux +(RedHat, Suse, Debian), Mac OSX, OS/2, AmigaOS, FreeBSD, NetBSD, BeOS, and many +more flavors of Unix. + +But any operating system that runs TCP/IP, can conceivably take advantage of +Privoxy in a networked situation where Privoxy would run as a server on a LAN +gateway. Then only the "gateway" needs to be running one of the above operating +systems. + +Source code is freely available, so porting to other operating systems, is +always a possibility. + +------------------------------------------------------------------------------- + +2.3. Can I install Privoxy over Junkbuster? + +We recommend you uninstall Junkbuster first to minimize conflicts and +confusion. You may want to save your old configuration files for future +reference. The configuration is substantially changed. + +See the user-manual for platform specific installation instructions. + +Note: Some installers may automatically uninstall Junkbuster, if present! + +------------------------------------------------------------------------------- + +2.4. I just installed Privoxy. Is there anything special I have to do now? + +All browsers must be told to use Privoxy as a proxy by specifying the correct +proxy address and port number in the appropriate configuration area for the +browser. See below. Also, you should flush your browser's memory and disk cache +to get rid of any cached items. + +------------------------------------------------------------------------------- + +2.5. What is the proxy address of Privoxy? + +If you set up the Privoxy to run on the computer you browse from (rather than +your ISP's server or some networked computer on a LAN), the proxy will be on +"localhost" (which is the special name used by every computer on the Internet +to refer to itself) and the port will be 8118 (unless you have Privoxy to run +on a different port with the listen-address config option). + +When configuring your browser's proxy settings you typically enter the word +"localhost" in the boxes next to "HTTP" and "Secure" (HTTPS) and then the +number "8118" for "port". This tells your browser to send all web requests to +Privoxy instead of directly to the Internet. + +Privoxy can also be used to proxy for a Local Area Network. In this case, your +would enter either the IP address of the LAN host where Privoxy is running, or +the equivalent hostname. Port assignment would be same as above. + +Privoxy does not currently handle protocols such as FTP, SMTP, IM, IRC, ICQ, or +other Internet protocols. + +------------------------------------------------------------------------------- + +2.6. I just installed Privoxy, and nothing is happening. All the ads are there. +What's wrong? + +Did you configure your browser to use Privoxy as a proxy? It does not sound +like it. See above. You might also try flushing the browser's caches to force a +full re-reading of pages. You can verify that Privoxy is running, and your +browser is correctly configured by entering the special URL: http://p.p/. This +should give you a banner that says "This is Privoxy" and access to Privoxy's +internal configuration. If you see this, then you are good to go. If not, the +browser or Privoxy are not set up correctly. + +------------------------------------------------------------------------------- + +3. Configuration + +3.1. Can I use my old config files? + +There are major changes to Junkbuster/ Privoxy configuration from version 2.0.x +to 2.9.x and later. Most of the older files will not work at all. This is +especially true of blocklist. If this is the case, you will need to re-enter +your old data into the new configuration structure. This is probably also a +good recommendation even if upgrading from 2.9.x to 3.x since there were many +minor changes along the way. + +------------------------------------------------------------------------------- + +3.2. What is an "actions" file? + +"actions" files are where various actions that Privoxy might take, are +configured. Typically, you would define a set of default actions that apply to +all URLs, then add exceptions to these defaults where needed. + +Actions can be defined on a per site basis, or for groups of sites. Actions can +also be grouped together and then applied to one or more sites. There are many +possible actions that might apply to any given site. As an example, if we are +blocking cookies as one of our default actions, but need to accept cookies from +a given site, we would define this in our "actions" file. + +------------------------------------------------------------------------------- + +3.3. The "actions" concept confuses me. Please list some of these "actions". + +These are all explained in the user-manual. Please refer to that. + +------------------------------------------------------------------------------- + +3.4. How are actions files configured? What is the easiest way to do this? + +The easiest way to do this, is to access Privoxy with your web browser at http: +//p.p/, and then select "View & change the current configuration" from the +selection list. You can also do this by editing the appropriate file with a +text editor. + +Please see the user-manual for a detailed explanation of these and other +configuration files, and their various options and syntax. + +------------------------------------------------------------------------------- + +3.5. There are several different "actions" files. What are the differences? + +As of Privoxy v2.9.15, three actions files are being included, to be used for +different purposes. These are default.action, standard.action, and user.action. +Please see the User Manual for an explanation of each. + +Earlier versions included three different versions default.action files. The +new scheme allows for greater flexibility of local configuration, and for +browser based configuration. + +------------------------------------------------------------------------------- + +3.6. Why can I change the configuration with a browser? Does that not raise +security issues? + +What I don't understand, is how I can browser edit the config file as a regular +user, while the whole /etc/privoxy hierarchy belongs to the user "privoxy", +with only 644 permissions. + +When you use the browser-based editor, Privoxy itself is writing to the config +files. Because Privoxy is running as the user "privoxy", it can update the +config files. + +If you don't like this, setting "enable-edit-actions 0" in the config file will +disable the browser-based editor. If you're that paranoid, you should also +consider setting "enable-remote-toggle 0" to prevent browser-based enabling/ +disabling of Privoxy. + +Note that normally only local users can connect to Privoxy, so this is not +(normally) a security problem. + +------------------------------------------------------------------------------- + +3.7. What is "default.filter"? + +The "default.filter" file is where "filters" are defined, which are used to +"filter" any web page content. By "filtering" we mean it can modify, remove, or +change anything on the page, including HTML tags, and JavaScript. Regular +expressions are used to accomplish this, and operate on a line by line basis. +This is potentially a very powerful feature, but requires some expertise. + +If you are familiar with regular expressions, and HTML, you can look at the +provided default.filter with a text editor and see some of things it can be +used for. + +Presently, there is no GUI editor option for this part of the configuration, +but you can disable/enable various sections of the included default file with +the "View & change the current configuration" from your browser. + +------------------------------------------------------------------------------- + +3.8. How can I set up Privoxy to act as a proxy for my LAN? + +By default, Privoxy only responds to requests from localhost. To have it act as +a server for a network, this needs to be changed in the main config file where +the Privoxy configuration is located. In that file is a "listen-address" +option. It may be commented out with a "#" symbol. Make sure it is uncommented, +and assign it the address of the LAN gateway interface, and port number to use: + + listen-address 192.168.1.1:8118 + +Save the file, and restart Privoxy. Configure all browsers on the network then +to use this address and port number. + +------------------------------------------------------------------------------- + +3.9. Instead of ads, now I get a checkerboard pattern. I don't want to see +anything. + +This is a configuration option for images that Privoxy is stopping. You have +the choice of a checkerboard pattern, a transparent 1x1 GIF image (aka +"blank"), or a custom URL of your choice. Note that to fit this category, the +URL must match both the "+handle-as-image" and "+block" actions. + +If you want to see nothing, then change the "+set-image-blocker" action to +"+image-blocker{blank}". This can be done from the "View & change the current +configuration" selection at http://p.p/. Or by hand editing the appropriate +actions file. This will only effect what is defined as "images" though. Also, +some URLs that generate the bright red "Blocked" banner, can be moved to the +"+set-image-blocker" section for the same reason, but there are some limits and +risks to this (see below). + +------------------------------------------------------------------------------- + +3.10. Why would anybody want to see a checkerboard pattern? + +This can be helpful for troubleshooting problems. It might also be good for +anyone new to Privoxy so that they can see if their favorite pages are +displaying correctly, and Privoxy is not inadvertently removing something +important. + +------------------------------------------------------------------------------- + +3.11. I see large red banners on some pages that say "Blocked". Why and how do +I get rid of this? + +These are URLs that match something in one of Privoxy's block actions ("+block" +). It is meant to be a warning so that you know something has been blocked and +an easy way for you to see why. These are handled differently than what has +been defined explicitly as "images" (e.g. ads that are GIF image files). +Depending on the URL itself, it is sometimes hard for Privoxy to really know +whether there is indeed an ad image there or not. And there are limitations as +to what Privoxy can do to "fool" the browser. + +For instance, if the ad is in a frame, then it is embedded in the separate HTML +page used for the frame. In this case, you cannot just substitute an aribitrary +image (like we would for a "blank" image), for an HTML page. The browser is +expecting an HTML page, and that is what it must have for frames. Such +situations can be a little trickier to deal with, and Privoxy may show the +"Blocked" page, despite your best efforts. + +If you want these to be treated as if they were images, so that they can be +made invisible, you can try moving the offending URL from the "+block" section +to the "+imageblock" section of your actions file. Just be forewarned, if any +URL is made "invisible", you may not have any inkling that something has been +removed from that page, or why. If this approach does not work, then you are +probably dealing with a frame (or "ilayer"), and the only thing that can go +there is an HTML page of some sort. + +To deal with this situation, you could modify the "block" HTML template that is +used by Privoxy to display this, and make it something more to your liking. +Currently, there is no configuration option for this. You will have to modify, +or create your own page, and use this to replace templates/blocked, which is +what Privoxy uses to display the "Blocked" page. + +Another way to deal with this is find why and where Privoxy is blocking the +frame, and diable this. Then let the "+set-image-blocker" action handle the ad +that is embedded in the frame's HTML page. + +------------------------------------------------------------------------------- + +3.12. I cannot see all of the "Blocked" page banner. Help. + +There is not enough available space to fit the entire Blocked page. Try right +clicking on the visible portion, and select "Show Frame", or equivalent. This +will usually allow you to see the entire Privoxy "Blocked" page, and from there +you can see just what is being blocked, and why. + +As of Privoxy 2.9.14, the Blocked banner page is re-sizeable, and tries to +adjust to the allotted space. There may be occassions where there just isn't +enough room to display much of anything useful though. + +------------------------------------------------------------------------------- + +3.13. Can Privoxy run as a service on Win2K/NT? + +Yes, it can run as a system service using srvany.exe. The only catch is that +this will effectively disable the Privoxy icon in the taskbar. You can have one +or the other, but not both at this time :( + +There is a pending feature request for this functionality. See thread: http:// +sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118, for +details, and a sample configuration. + +------------------------------------------------------------------------------- + +3.14. How can I make Privoxy work with other proxies like Squid? + +This can be done. See the user manual, which describes how to do this. + +------------------------------------------------------------------------------- + +3.15. Can Privoxy run as a "transparent" proxy? + +No, Privoxy currently does not have this ability, though it is planned for a +future release. Transparent proxies require special handling of the request +headers beyond what Privoxy is now capable of. + +Chaining Privoxy with another proxy that has this ability should work though. +See the user manual, which describes this, and also http:// +www.transproxy.nlc.net.au/. + +------------------------------------------------------------------------------- + +4. Miscellaneous + +4.1. How much does Privoxy slow my browsing down? This has to add extra time to +browsing. + +It should not slow you down any in real terms, and may actually help speed +things up since ads, banners and other junk are not being displayed. The actual +processing time required by Privoxy itself for each page, is relatively small +in the overall scheme of things, and happens very quickly. This is typically +more than offset by time saved not downloading and rendering ad images. + +"Filtering" via the filterfile mechanism may cause a perceived slowdown, since +the entire page is buffered before displaying. See below. + +------------------------------------------------------------------------------- + +4.2. I noticed considerable delays in page requests compared to the old +Junkbuster. What's wrong? + +The entire page content must be loaded into memory in order for the filtering +mechanism to work, and nothing is sent to the browser during this time. The +loading time does not really change in real numbers, but the feeling is +different, because most browsers are able to start rendering incomplete +content, giving the user a feeling of "it works". + +To modify the content of a page (i.e. make frames resizeable again, etc.) and +not just replace ads, Privoxy needs to download the entire page first, do its +content magic and then send the page to the browser. + +------------------------------------------------------------------------------- + +4.3. What is the "http://p.p/"? + +Since Privoxy sits between your web browser and the Internet, it can be +programmed to handle certain pages specially. + +With recent versions of Privoxy (version 2.9.x and greater), you can get some +information about Privoxy and change some settings by going to http://p.p/ or, +equivalently, http://config.privoxy.org/ (Note that p.p is far easier to type +but may not work in some configurations. With the name change to Privoxy, this +is changed from the previous http://i.j.b/ and earlier 2.9.x versions). + +These pages are not forwarded to a server on the Internet - instead they are +handled by a special web server which is built in to Privoxy. + +If you are not running Privoxy, then http://p.p/ will fail, and http:// +config.privoxy.org/ will return a web page telling you you're not running +Privoxy. + +If you have version 2.0.2, then the equivalent is http://example.com/ +show-proxy-args (but you get far less information, and you should really +consider upgrading to 2.9.15). + +------------------------------------------------------------------------------- + +4.4. Do you still maintain the blocklists? + +No, not by this name. The format of the blocklists has changed significantly in +versions 2.9.x and later. This functionality is done by the "actions" file now. +See next question ... + +------------------------------------------------------------------------------- + +4.5. How can I submit new ads? + +Please see the Contact section. + +This process does not work with earlier versions of Privoxy or Junkbuster. + +------------------------------------------------------------------------------- + +4.6. How can I hide my IP address? + +You cannot hide your IP address with Privoxy or any other software, since the +server needs to know your IP address to send the answers back to you. + +Fortunately there are many publicly usable anonymous proxies out there, which +solve the problem by providing a further level of indirection between you and +the web server, shared by many people and thus letting your requests "drown" in +white noise of unrelated requests as far as user tracking is concerned. + +Most of them will, however, log your IP address and make it available to the +authorities in case you abuse that anonymity for criminal purposes. In fact you +can't even rule out that some of them only exist to *collect* information on +(those suspicious) people with a more than average preference for privacy. + +You can find a list of anonymous public proxies at multiproxy.org and many more +through Google. + +------------------------------------------------------------------------------- + +4.7. Can Privoxy guarantee I am anonymous? + +No. Your chances of remaining anonymous are greatly improved, but unless you +are an expert on Internet security it would be safest to assume that everything +you do on the Web can be traced back to you. + +Privoxy can remove various information about you, and allows you more freedom +to decide which sites you can trust, and what details you want to reveal. But +it's still possible that web sites can find out who you are. Here's one way +this can happen. + +A few browsers disclose the user's email address in certain situations, such as +when transferring a file by FTP. Privoxy does not filter FTP. If you need this +feature, or are concerned about the mail handler of your browser disclosing +your email address, you might consider products such as NSClean. + +Browsers available only as binaries could use non-standard headers to give out +any information they can have access to: see the manufacturer's license +agreement. It's impossible to anticipate and prevent every breach of privacy +that might occur. The professionally paranoid prefer browsers available as +source code, because anticipating their behavior is easier. Trust the source, +Luke! + +------------------------------------------------------------------------------- + +4.8. Might some things break because header information is being altered? + +Definitely. More and more sites use HTTP header content to decide what to +display and how to display it. There is many ways that this can be handled, so +having hard and fast rules, is tricky. + +"USER AGENT" in particular is often used in this way to identify the browser, +and adjust content accordingly. Changing this now is not recommended, since so +many sites do look for this. You may get undesirable results by changing this. + +For instance, different browsers use different encodings of Russian and Czech +characters, certain web servers convert pages on-the-fly according to the User +Agent header. Giving a "User Agent" with the wrong operating system or browser +manufacturer causes some sites in these languages to be garbled; Surfers to +Eastern European sites should change it to something closer. And then some page +access counters work by looking at the "REFERER" header; they may fail or break +if unavailable. The weather maps of Intellicast have been blocked by their +server when no "REFERER" or cookie is provided, is another example. There are +many, many other ways things can go wrong when trying to fool a web server. + +If you have problems with a site, you will have to adjust your configuration +accordingly. Cookies are probably the most likely adjustment that may be +required, but by no means the only one. + +------------------------------------------------------------------------------- + +4.9. Can Privoxy act as a "caching" proxy to speed up web browsing? + +No, it does not have this ability at all. You want something like Squid for +this. And, yes, before you ask, Privoxy can co-exist with other kinds of +proxies like Squid. + +------------------------------------------------------------------------------- + +4.10. What about as a firewall? Can Privoxy protect me? + +Not in the way you mean, or in the way a true firewall can, or a proxy that has +this specific capability. Privoxy can help protect your privacy, but not really +protect you from intrusion attempts. + +------------------------------------------------------------------------------- + +4.11. The Privoxy logo that replaces ads is very blocky and ugly looking. Can't +a better font be used? + +This is not a font problem. The logo is an image that is created by Privoxy on +the fly. So as to not waste memory, the image is rather small. The blockiness +comes when the image is scaled to fill a largish area. There is not much to be +done about this, other than to use one of the other "imageblock" directives: +pattern, blank, or a URL of your choosing. + +Given the above problem, we have decided to remove the logo option entirely [as +of v2.9.13]. + +------------------------------------------------------------------------------- + +4.12. I have large empty spaces now where ads used to be. Why? + +It would be easy enough to just eliminate this space altogether, rather than +fill it with blank space. But, this would create problems with many pages that +use the overall size of the ad to help organize the page layout and position +the various components of the page where they were intended to be. It is best +left this way. + +------------------------------------------------------------------------------- + +4.13. How can Privoxy filter Secure (HTTPS) URLs? + +This is a limitation since HTTPS transactions are encrypted SSL sessions +between your browser and the secure site, and are meant to be reliably secure +and private. This means that all cookies and HTTP header information are also +encrypted from the time they leave your browser, to the site, and vice versa. +Privoxy does not try to unencrypt this information, so it just passes through +as is. Privoxy can still catch images and ads that are embedded in the SSL +stream though. + +------------------------------------------------------------------------------- + +4.14. Privoxy runs as a "server". How secure is it? Do I need to take any +special precautions? + +There are no known exploits that might effect Privoxy. On Unix-like systems, +Privoxy can run as a non-privileged user, which is how we recommend it be run. +Also, by default Privoxy only listens to requests from "localhost". The server +aspect of Privoxy is not itself directly exposed to the Internet in this +configuration. If you want to have Privoxy serve as a LAN proxy, this will have +to be opened up to allow for LAN requests. In this case, we'd recommend you +specify only the LAN gateway address, e.g. 192.168.1.1, in the main Privoxy +config file. All LAN hosts can then use this as their proxy address in the +browser proxy configuration. In this way, Privoxy will not listen on any +external ports. Of course, a firewall is always good too. Better safe than +sorry. + +------------------------------------------------------------------------------- + +4.15. How can I temporarily disable Privoxy? + +The easiest way is to access Privoxy with your browser by using the special +URL: http://p.p/ and select "Toggle Privoxy on or off" from that page. + +------------------------------------------------------------------------------- + +4.16. Where can I find more information about Privoxy and related issues? + +Other references and sites of interest to Privoxy users: + +http://www.privoxy.org/, The Privoxy Home page. + +http://sourceforge.net/projects/ijbswa, the Project Page for Privoxy on +Sourceforge. + +http://p.p/, access Privoxy from your browser. Alternately, http:// +config.privoxy.org may work in some situations where the first does not. + +http://p.p/, and select "Privoxy - Submit Filter Feedback" to submit "misses" +to the developers. + +http://www.junkbusters.com/ht/en/cookies.html + +http://www.waldherr.org/junkbuster/ + +http://privacy.net/analyze/ + +http://www.squid-cache.org/ + + + +------------------------------------------------------------------------------- + +5. Troubleshooting + +5.1. I just upgraded and am getting "connection refused" with every web page? + +Either Privoxy is not running, or your browser is configured for a different +port than what Privoxy is using. + +The old Privoxy (and also Junkbuster) used port 8000 by default. This has been +changed to port 8118 now, due to a conflict with NAS (Network Audio Service), +which uses port 8000. If you haven't, you need to change your browser to the +new port number, or alternately change Privoxy's "listen-address" setting in +the config file used to start Privoxy. + +------------------------------------------------------------------------------- + +5.2. I just added a new rule, but the steenkin ad is still getting through. +How? + +If the ad had been displayed before you added its URL, it will probably be held +in the browser's cache for some time, so it will be displayed without the need +for any request to the server, and Privoxy will not be in the picture. The best +thing to do is try flushing the browser's caches. And then try again. + +If this doesn't help, you probably have an error in the rule you applied. Try +pasting the full URL of the offending ad into http://config.privoxy.org/ +show-url-info and see if any actions match your new rule. + +------------------------------------------------------------------------------- + +5.3. One of my favorite sites does not work with Privoxy. What can I do? + +First verify that it is indeed a Privoxy problem, by disabling Privoxy +filtering and blocking. Go to http://p.p/ and click on "Toggle Privoxy On or +Off", then disable it. Now try that page again. It's probably a good idea to +flush the browser cache as well with Shift+Reload to flush caches. + +If still a problem, go to "Show which actions apply to a URL and why" from +http://p.p/ and paste the full URL of the page in question into the prompt. See +which actions are being applied to the URL. Now, armed with this information, +go to "View & change the current configuration". Here you should see various +sections that have various Privoxy features disabled for specific sites. Most +disabled "actions" will have a "-" (minus sign) in front of them. Some aliases +are used just to disable other actions, e.g. "shop" and "fragile", and won't +necessarily use a "+" or "-" sign. Add your problem page URL to one of these +sections that looks like it is disabling the feature that is causing the +problem. Rember to flush your browser's caches when making such changes! As a +last resort, try "fragile" which disables most actions. Now re-try the page. +There might be some trial and error involved. This is discussed in more detail +in the user-manual appendix. + +Alternately, if you are comfortable with a text editor, you can accomplish the +same thing by editing the appropriate "actions" file. + +------------------------------------------------------------------------------- + +6. Contacting the developers, Bug Reporting and Feature Requests + +We value your feedback. However, to provide you with the best support, please +note the following sections. + +------------------------------------------------------------------------------- + +6.1. Get Support + +To get support, use the Sourceforge Support Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=211118 + +------------------------------------------------------------------------------- + +6.2. Report bugs + +To submit bugs, use the Sourceforge Bug Forum: + + http://sourceforge.net/tracker/?group_id=11118&atid=111118. + +Make sure that the bug has not already been submitted. Please try to verify +that it is a Privoxy bug, and not a browser or site bug first. If you are using +your own custom configuration, please try the stock configs to see if the +problem is a configuration related bug. And if not using the latest development +snapshot, please try the latest one. Or even better, CVS sources. Please be +sure to include the Privoxy version, platform, browser, any pertinent log data, +any other relevant details (please be specific) and, if possible, some way to +reproduce the bug. + +------------------------------------------------------------------------------- + +6.3. Request new features + +To submit ideas on new features, use the Sourceforge feature request forum: + + http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse. + +------------------------------------------------------------------------------- + +6.4. Report ads or other filter problems + +You can also send feedback on websites that Privoxy has problems with. Please +bookmark the following link: "Privoxy - Submit Filter Feedback". Once you surf +to a page with problems, use the bookmark to send us feedback. We will look +into the issue as soon as possible. + +New, improved default.action files will occasionally be made available based on +your feedback. These will be announced on the ijbswa-announce list. + +------------------------------------------------------------------------------- + +6.5. Other + +For any other issues, feel free to use the mailing lists: + + http://sourceforge.net/mail/?group_id=11118. + +Anyone interested in actively participating in development and related +discussions can also join the appropriate mailing list. Archives are available, +too. See the page on Sourceforge. + +------------------------------------------------------------------------------- + +7. Privoxy Copyright, License and History + +Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org> + +Some source code is based on code Copyright © 1997 by Anonymous Coders and +Junkbusters, Inc. and licensed under the GNU General Public License. + +Portions of this document are "borrowed" from the original Junkbuster (tm) FAQ, +and modified as appropriate for Privoxy. + +------------------------------------------------------------------------------- + +7.1. License + +Privoxy is free software; you can redistribute it and/or modify it under the +terms of the GNU General Public License, version 2, as published by the Free +Software Foundation. + +This program is distributed in the hope that it will be useful, but WITHOUT ANY +WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A +PARTICULAR PURPOSE. See the GNU General Public License for more details, which +is available from the Free Software Foundation, Inc, 59 Temple Place - Suite +330, Boston, MA 02111-1307, USA. + +You should have received a copy of the GNU General Public License along with +this program; if not, write to the + + Free Software + Foundation, Inc. 59 Temple Place - Suite 330 + Boston, MA 02111-1307 + USA + +------------------------------------------------------------------------------- + +7.2. History + +Privoxy is evolved, and derived from, the Internet Junkbuster, with many +improvments and enhancements over the original. + +Junkbuster was originally written by Anonymous Coders and Junkbusters +Corporation, and was released as free open-source software under the GNU GPL. +Stefan Waldherr made many improvements, and started the SourceForge project +Privoxy to rekindle development. There are now several active developers +contributing. The last stable release of Junkbuster was v2.0.2, which has now +grown whiskers ;-). + diff --git a/doc/text/user-manual.txt b/doc/text/user-manual.txt new file mode 100644 index 00000000..e3566a08 --- /dev/null +++ b/doc/text/user-manual.txt @@ -0,0 +1,4396 @@ +Privoxy User Manual + +Copyright © 2001, 2002 by Privoxy Developers + +$Id: user-manual.sgml,v 1.117 2002/05/17 13:56:16 oes Exp $ + +The user manual gives users information on how to install, configure and use +Privoxy. + +Privoxy is a web proxy with advanced filtering capabilities for protecting +privacy, filtering web page content, managing cookies, controlling access, and +removing ads, banners, pop-ups and other obnoxious Internet junk. Privoxy has a +very flexible configuration and can be customized to suit individual needs and +tastes. Privoxy has application for both stand-alone systems and multi-user +networks. + +Privoxy is based on Internet Junkbuster (tm). + +You can find the latest version of the user manual at http://www.privoxy.org/ +user-manual/. Please see the Contact section on how to contact the developers. + +------------------------------------------------------------------------------- + +Table of Contents +1. Introduction + + 1.1. Features + +2. Installation + + 2.1. Binary Packages + + 2.1.1. Red Hat, SuSE RPMs and Conectiva + 2.1.2. Debian + 2.1.3. Windows + 2.1.4. Solaris, NetBSD, FreeBSD, HP-UX + 2.1.5. OS/2 + 2.1.6. Max OSX + 2.1.7. AmigaOS + + 2.2. Building from Source + +3. Note to Upgraders +4. Quickstart to Using Privoxy + + 4.1. Quickstart to Ad Blocking + +5. Starting Privoxy + + 5.1. RedHat, Conectiva and Debian + 5.2. SuSE + 5.3. Windows + 5.4. Solaris, NetBSD, FreeBSD, HP-UX and others + 5.5. OS/2 + 5.6. MAX OSX + 5.7. AmigaOS + 5.8. Command Line Options + +6. Privoxy Configuration + + 6.1. Controlling Privoxy with Your Web Browser + 6.2. Configuration Files Overview + +7. The Main Configuration File + + 7.1. Configuration and Log File Locations + + 7.1.1. confdir + 7.1.2. logdir + 7.1.3. actionsfile + 7.1.4. filterfile + 7.1.5. logfile + 7.1.6. jarfile + 7.1.7. trustfile + + 7.2. Local Set-up Documentation + + 7.2.1. user-manual + 7.2.2. trust-info-url + 7.2.3. admin-address + 7.2.4. proxy-info-url + + 7.3. Debugging + + 7.3.1. debug + 7.3.2. single-threaded + + 7.4. Access Control and Security + + 7.4.1. listen-address + 7.4.2. toggle + 7.4.3. enable-remote-toggle + 7.4.4. enable-edit-actions + 7.4.5. ACLs: permit-access and deny-access + 7.4.6. buffer-limit + + 7.5. Forwarding + + 7.5.1. forward + 7.5.2. forward-socks4 and forward-socks4a + 7.5.3. Advanced Forwarding Examples + + 7.6. Windows GUI Options + +8. Actions Files + + 8.1. Finding the Right Mix + 8.2. How to Edit + 8.3. How Actions are Applied to URLs + 8.4. Patterns + + 8.4.1. The Domain Pattern + 8.4.2. The Path Pattern + + 8.5. Actions + + 8.5.1. add-header + 8.5.2. block + 8.5.3. crunch-incoming-cookies + 8.5.4. crunch-outgoing-cookies + 8.5.5. deanimate-gifs + 8.5.6. downgrade-http-version + 8.5.7. fast-redirects + 8.5.8. filter + 8.5.9. handle-as-image + 8.5.10. hide-forwarded-for-headers + 8.5.11. hide-from-header + 8.5.12. hide-referrer + 8.5.13. hide-user-agent + 8.5.14. kill-popups + 8.5.15. limit-connect + 8.5.16. prevent-compression + 8.5.17. send-vanilla-wafer + 8.5.18. send-wafer + 8.5.19. session-cookies-only + 8.5.20. set-image-blocker + 8.5.21. Summary + + 8.6. Aliases + 8.7. Actions Files Tutorial + + 8.7.1. default.action + 8.7.2. user.action + +9. The Filter File + + 9.1. Filter File Tutorial + +10. Templates +11. Contacting the Developers, Bug Reporting and Feature Requests + + 11.1. Get Support + 11.2. Report Bugs + 11.3. Request New Features + 11.4. Report Ads or Other Actions-Related Problems + 11.5. Other + +12. Privoxy Copyright, License and History + + 12.1. License + 12.2. History + 12.3. Authors + +13. See Also +14. Appendix + + 14.1. Regular Expressions + 14.2. Privoxy's Internal Pages + + 14.2.1. Bookmarklets + + 14.3. Chain of Events + 14.4. Anatomy of an Action + +1. Introduction + +This documentation is included with the current beta version of Privoxy, +v.2.9.15, and is mostly complete at this point. The most up to date reference +for the time being is still the comments in the source files and in the +individual configuration files. Development of version 3.0 is currently nearing +completion, and includes many significant changes and enhancements over earlier +versions. The target release date for stable v3.0 is "soon" ;-). + +Since this is a beta version, not all new features are well tested. This +documentation may be slightly out of sync as a result (especially with CVS +sources). And there may be bugs, though hopefully not many! + +------------------------------------------------------------------------------- + +1.1. Features + +In addition to Internet Junkbuster's traditional features of ad and banner +blocking and cookie management, Privoxy provides new features, some of them +currently under development: + + * Integrated browser based configuration and control utility at http:// + config.privoxy.org/ (shortcut: http://p.p/). Browser-based tracing of rule + and filter effects. Remote toggling. + + * Web page content filtering (removes banners based on size, invisible + "web-bugs", JavaScript and HTML annoyances, pop-up windows, etc.) + + * Modularized configuration that allows for standard settings and user + settings to reside in separate files, so that installing updated actions + files won't overwrite individual user settings. + + * HTTP/1.1 compliant (but not all optional 1.1 features are supported). + + * Support for Perl Compatible Regular Expressions in the configuration files, + and generally a more sophisticated and flexible configuration syntax over + previous versions. + + * Improved cookie management features (e.g. session based cookies). + + * GIF de-animation. + + * Bypass many click-tracking scripts (avoids script redirection). + + * Multi-threaded (POSIX and native threads). + + * User-customizable HTML templates for all proxy-generated pages (e.g. + "blocked" page). + + * Auto-detection and re-reading of config file changes. + + * Improved signal handling, and a true daemon mode (Unix). + + * Every feature now controllable on a per-site or per-location basis, + configuration more powerful and versatile over-all. + + * Many smaller new features added, limitations and bugs removed, and security + holes fixed. + +------------------------------------------------------------------------------- + +2. Installation + +Privoxy is available both in convenient pre-compiled packages for a wide range +of operating systems, and as raw source code. For most users, we recommend +using the packages, which can be downloaded from our Privoxy Project Page. + +Note: If you have a previous Junkbuster or Privoxy installation on your system, +you will need to remove it. On some platforms, this may be done for you as part +of their installation procedure. (See below for your platform). In any case be +sure to backup your old configuration if it is valuable to you. See the note to +upgraders section below. + +------------------------------------------------------------------------------- + +2.1. Binary Packages + +How to install the binary packages depends on your operating system: + +------------------------------------------------------------------------------- + +2.1.1. Red Hat, SuSE RPMs and Conectiva + +RPMs can be installed with rpm -Uvh privoxy-2.9.15-1.rpm, and will use /etc/ +privoxy for the location of configuration files. + +Note that on Red Hat, Privoxy will not be automatically started on system boot. +You will need to enable that using chkconfig, ntsysv, or similar methods. Note +that SuSE will automatically start Privoxy in the boot process. + +If you have problems with failed dependencies, try rebuilding the SRC RPM: rpm +--rebuild privoxy-2.9.15-1.src.rpm;. This will use your locally installed +libraries and RPM version. + +Also note that if you have a Junkbuster RPM installed on your system, you need +to remove it first, because the packages conflict. Otherwise, RPM will try to +remove Junkbuster automatically, before installing Privoxy. + +------------------------------------------------------------------------------- + +2.1.2. Debian + +FIXME. + +------------------------------------------------------------------------------- + +2.1.3. Windows + +Just double-click the installer, which will guide you through the installation +process. You will find the configuration files in the same directory as you +installed Privoxy in. We do not use the registry of Windows. + +------------------------------------------------------------------------------- + +2.1.4. Solaris, NetBSD, FreeBSD, HP-UX + +Create a new directory, cd to it, then unzip and untar the archive. For the +most part, you'll have to figure out where things go. FIXME. + +------------------------------------------------------------------------------- + +2.1.5. OS/2 + +First, make sure that no previous installations of Junkbuster and / or Privoxy +are left on your system. You can do this by + +Then, just double-click the WarpIN self-installing archive, which will guide +you through the installation process. A shadow of the Privoxy executable will +be placed in your startup folder so it will start automatically whenever OS/2 +starts. + +The directory you choose to install Privoxy into will contain all of the +configuration files. + +------------------------------------------------------------------------------- + +2.1.6. Max OSX + +Unzip the downloaded package (you can either double-click on the file in the +finder, or on the desktop if you downloaded it there). Then, double-click on +the package installer icon and follow the installation process. Privoxy will be +installed in the subdirectory /Applications/Privoxy.app. Privoxy will set +itself up to start automatically on system bring-up via /System/Library/ +StartupItems/Privoxy. + +------------------------------------------------------------------------------- + +2.1.7. AmigaOS + +Copy and then unpack the lha archive to a suitable location. All necessary +files will be installed into Privoxy directory, including all configuration and +log files. To uninstall, just remove this directory. + +Start Privoxy (with RUN <>NIL:) in your startnet script (AmiTCP), in s: +user-startup (RoadShow), as startup program in your startup script (Genesis), +or as startup action (Miami and MiamiDx). Privoxy will automatically quit when +you quit your TCP/IP stack (just ignore the harmless warning your TCP/IP stack +may display that Privoxy is still running). + +------------------------------------------------------------------------------- + +2.2. Building from Source + +The most convenient way to obtain the Privoxy sources is to download the source +tarball from our project page. + +If you like to live on the bleeding edge and are not afraid of using possibly +unstable development versions, you can check out the up-to-the-minute version +directly from the CVS repository or simply download the nightly CVS tarball. + +To build Privoxy from source, autoconf, GNU make (gmake), and, of course, a C +compiler like gcc are required. + +When building from a source tarball (either release version or nightly CVS +tarball), first unpack the source: + + tar xzvf privoxy-2.9.15-beta-src* [.tgz or .tar.gz] + cd privoxy-2.9.15-beta + +For retrieving the current CVS sources, you'll need CVS installed. Note that +sources from CVS are development quality, and may not be stable, or well +tested. To download CVS source: + + cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login + cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co current + cd current + +This will create a directory named current/, which will contain the source +tree. + +Then, in either case, to build from unpacked tarball or CVS source: + + autoheader + autoconf + ./configure # (--help to see options) + make # (the make from gnu, gmake for *BSD) + su + make -n install # (to see where all the files will go) + make install # (to really install) + +If you have gnu make, you can have the first four steps automatically done for +you by just typing: + + make + +in the freshly downloaded or unpacked source directory. + +For more detailed instructions on how to build Redhat and SuSE RPMs, Windows +self-extracting installers, building on platforms with special requirements +etc, please consult the developer manual. + +------------------------------------------------------------------------------- + +3. Note to Upgraders + +There are very significant changes from earlier Junkbuster versions to the +current Privoxy. The number, names, syntax, and purposes of configuration files +have substantially changed. Junkbuster 2.0.x configuration files will not +migrate, Junkbuster 2.9.x and Privoxy configurations will need to be ported. +The functionalities of the old blockfile, cookiefile and imagelist are now +combined into the "actions files". default.action, is the main actions file. +Local exceptions should best be put into user.action. + +A "filter file" (typically default.filter) is new as of Privoxy 2.9.x, and +provides some of the new sophistication (explained below). config is much the +same as before. + +If upgrading from a 2.0.x version, you will have to use the new config files, +and possibly adapt any personal rules from your older files. When porting +personal rules over from the old blockfile to the new actions files, please +note that even the pattern syntax has changed. If upgrading from 2.9.x +development versions, it is still recommended to use the new configuration +files. + +A quick list of things to be aware of before upgrading: + + * The default listening port is now 8118 due to a conflict with another + service (NAS). + + * Some installers may remove earlier versions completely. Save any important + configuration files! + + * Privoxy is controllable with a web browser at the special URL: http:// + config.privoxy.org/ (Shortcut: http://p.p/). Many aspects of configuration + can be done here, including temporarily disabling Privoxy. + + * The primary configuration files for cookie management, ad and banner + blocking, and many other aspects of Privoxy configuration are the actions + files. It is strongly recommended to become familiar with the new actions + concept below, before modifying these files. Locally defined rules should + go into user.action. + + * Some installers may not automatically start Privoxy after installation. + +------------------------------------------------------------------------------- + +4. Quickstart to Using Privoxy + + * If upgrading, from versions before 2.9.16, please back up any configuration + files. See the Note to Upgraders Section. + + * Install Privoxy. See the Installation Section below for platform specific + information. + + * Advanced users and those who want to offer Privoxy service to more than + just their local machine should check the main config file, especially the + security-relevant options. These are off by default. + + * Start Privoxy, if the installation program has not done this already (may + vary according to platform). See the section Starting Privoxy. + + * Set your browser to use Privoxy as HTTP and HTTPS proxy by setting the + proxy configuration for address of 127.0.0.1 and port 8118. (Junkbuster and + earlier versions of Privoxy used port 8000.) See the section Starting + Privoxy below for more details on this. + + * Flush your browser's disk and memory caches, to remove any cached ad + images. + + * A default installation should provide a reasonable starting point for most. + There will undoubtedly be occasions where you will want to adjust the + configuration, but that can be dealt with as the need arises. Little to no + initial configuration is required in most cases. + + See the Configuration section for more configuration options, and how to + customize your installation. + + * If you experience ads that slipped through, innocent images that are + blocked, or otherwise feel the need to fine-tune Privoxy's behaviour, take + a look at the actions files. As a quick start, you might find the richly + commented examples helpful. You can also view and edit the actions files + through the web-based user interface. The Appendix "Anatomy of an Action" + has hints how to debug actions that "misbehave". + + * Please see the section Contacting the Developers on how to report bugs or + problems with websites or to get help. + + * Now enjoy surfing with enhanced comfort and privacy! + +------------------------------------------------------------------------------- + +4.1. Quickstart to Ad Blocking + +Ad blocking is but one of Privoxy's array of features. Many of these features +are for the technically minded advanced user. But, ad and banner blocking is +surely common ground for everybody. + +This section will provide a quick summary of ad blocking so you can get up to +speed quickly without having to read the more extensive information provided +below, though this is highly recommeneded. + +First a bit of a warning ... blocking ads is much like blocking SPAM: the more +aggressive you are about it, the more likely you are to block things that were +not intended. So there is a trade off here. If you want extreme ad free +browsing, be prepared to deal with more "problem" sites, and to spend more time +adjusting the configuration to solve these unintended consequences. In short, +there is not an easy way to eliminate all ads. Either take the easy way and +settle for most ads blocked with the default configuration, or jump in and +tweak it for your personal surfing habits and preferences. + +Secondly, a brief explanation of Privoxy's "actions". "Actions" in this +context, are the directives we use to tell Privoxy to perform some task +relating to HTTP transactions (i.e. web browsing). We tell Privoxy to take some +"action". Each action has a unique name and function. While there are many +potential actions in Privoxy's arsenal, only a few are used for ad blocking. +Actions, and action configuration files, are explained in depth below. + +Actions are specified in Privoxy's configuration, followed by one or more URLs +to which the action should apply. URLs can actually be URL type patterns that +use wildcards so they can apply potentially to a range of similar URLs. + +When you connect to a website, the full path of the URL will either match one +of the "actions" as defined in Privoxy's configuration, or not. If so, then +Privoxy will perform the action accordingly. If not, then nothing special +happens. Futhermore, web pages may contain embedded, secondary URLs that your +web browser will display as it parses the original page's HTML content. An ad +image for instance, is just a URL embedded in the page somewhere. The image +itself may be on the same server, or a server somewhere else on the Internet. +Complex web pages will have many such embedded URLs. + +The actions we need to know about for ad blocking are: block, handle-as-image, +and set-image-blocker: + + * block - this action stops any contact between your browser and any URL + patterns that match this action's configuration. It can be used for + blocking ads, but also anything that is determined to be unwanted. By + itself, it simply stops any communication with the remote server. If this + is the only action that matches for this particular URL, then Privoxy will + display its own BLOCKED page to let you now what has happened. + + * handle-as-image - forces Privoxy to treat this URL as if it were an image. + Privoxy knows about common image types (e.g. GIF), but there are many + situations where this does not apply. So we'll force it. This is + particularly important for ad blocking, since once we can treat it as an + image, we can make more intelligent decisisions on how to handle it. There + are some limitations to this though. For instance, you can't just force an + image substituion for an entire HTML page in most situations. + + * set-image-blocker - tells Privoxy what to display in place of an ad image + that has hit a block rule. For this to come into play, the URL must match a + block action somewhere in the configuration. And, it must also either be of + a known image type, or match an handle-as-image action. + + The configuration options on what to display instead of the ad are: + + pattern - a checkboard pattern, so that an ad replacement is obvious. + This is the default. + + blank - A very small empty GIF image is displayed. This is the so-called + "invisible" configuration option. + + http://<URL> - A redirect to any URL of the user's choosing (advanced + usage). + +The quickest way to adjust any of these settings is with your browser through +the special Privoxy editor at http://config.privoxy.org/show-status (shortcut: +http://p.p/show-status). This is an internal page, and does not require +Internet access. Select the appropriate "actions" file, and click "Edit". It is +best to put personal or local preferences in user.action since this is not +meant to be overwritten during upgrades, and will over-ride the settings in +other files. Here you can insert new "actions", and URLs for ad blocking or +other purposes, and make other adjustments to the configuration. Privoxy will +detect these changes automatically. + +A quick and simple step by step example: + + * Right click on the ad image to be blocked, then select "Copy Link Location" + from the pop-up menu. + + * Set your browser to http://config.privoxy.org/show-status + + * Find user.action in the top section, and click on "Edit": + + Figure 1. Actions Files in Use + + Screenshot of Files in Use + + * You should have an Actions section labeled +block. If not, click the "Edit" + button just under the word "Actions". This will bring up a list of all + actions. Find block near the top, and click in the "Enabled" column, then + "Submit" just below the list. + + * Now, in the +block actions section, click the "Add" button, and paste the + URL the browser got from "Copy Link Location". Remove the http:// at the + beginning of the URL. Then, click "Submit". + + * Now go back to the original page, and press SHIFT-Reload (or flush all + browser caches). The image should be gone now. + +This is a very crude and simple example. There might be good reasons to use a +wildcard pattern match to include potentially similar images from the same +site. For a more extensive explanation of "patterns", and the entire actions +concept, see the Actions section. + +For advanced users who want to hand edit their config files, you might want to +now go to the Actions Files Tutorial. + +------------------------------------------------------------------------------- + +5. Starting Privoxy + +Before launching Privoxy for the first time, you will want to configure your +browser(s) to use Privoxy as a HTTP and HTTPS proxy. The default is 127.0.0.1 +(or localhost) for the proxy address, and port 8118 (earlier versions used port +8000). This is the one configuration step that must be done! + +With Netscape (and Mozilla), this can be set under Edit -> Preferences -> +Advanced -> Proxies -> HTTP Proxy. For Internet Explorer: Tools -> Internet +Properties -> Connections -> LAN Setting. Then, check "Use Proxy" and fill in +the appropriate info (Address: 127.0.0.1, Port: 8118). Include if HTTPS proxy +support too. + +After doing this, flush your browser's disk and memory caches to force a +re-reading of all pages and to get rid of any ads that may be cached. You are +now ready to start enjoying the benefits of using Privoxy! + +Privoxy is typically started by specifying the main configuration file to be +used on the command line. If no configuration file is specified on the command +line, Privoxy will look for a file named config in the current directory. +Except on Win32 where it will try config.txt. + +------------------------------------------------------------------------------- + +5.1. RedHat, Conectiva and Debian + +We use a script. Note that RedHat does not start Privoxy upon booting per +default. It will use the file /etc/privoxy/config as its main configuration +file. FIXME: Debian?? + + # /etc/rc.d/init.d/privoxy start + +------------------------------------------------------------------------------- + +5.2. SuSE + +We use a script. It will use the file /etc/privoxy/config as its main +configuration file. Note that SuSE starts Privoxy upon booting your PC. + + # rcprivoxy start + +------------------------------------------------------------------------------- + +5.3. Windows + +Click on the Privoxy Icon to start Privoxy. If no configuration file is +specified on the command line, Privoxy will look for a file named config.txt. +Note that Windows will automatically start Privoxy upon booting you PC. + +------------------------------------------------------------------------------- + +5.4. Solaris, NetBSD, FreeBSD, HP-UX and others + +Example Unix startup command: + + # /usr/sbin/privoxy /etc/privoxy/config + +------------------------------------------------------------------------------- + +5.5. OS/2 + +FIXME. + +------------------------------------------------------------------------------- + +5.6. MAX OSX + +FIXME. + +------------------------------------------------------------------------------- + +5.7. AmigaOS + +FIXME. + +------------------------------------------------------------------------------- + +5.8. Command Line Options + +Privoxy may be invoked with the following command-line options: + + * --version + + Print version info and exit. Unix only. + + * --help + + Print short usage info and exit. Unix only. + + * --no-daemon + + Don't become a daemon, i.e. don't fork and become process group leader, and + don't detach from controlling tty. Unix only. + + * --pidfile FILE + + On startup, write the process ID to FILE. Delete the FILE on exit. Failure + to create or delete the FILE is non-fatal. If no FILE option is given, no + PID file will be used. Unix only. + + * --user USER[.GROUP] + + After (optionally) writing the PID file, assume the user ID of USER, and if + included the GID of GROUP. Exit if the privileges are not sufficient to do + so. Unix only. + + * configfile + + If no configfile is included on the command line, Privoxy will look for a + file named "config" in the current directory (except on Win32 where it will + look for "config.txt" instead). Specify full path to avoid confusion. If no + config file is found, Privoxy will fail to start. + +------------------------------------------------------------------------------- + +6. Privoxy Configuration + +All Privoxy configuration is stored in text files. These files can be edited +with a text editor. Many important aspects of Privoxy can also be controlled +easily with a web browser. + +------------------------------------------------------------------------------- + +6.1. Controlling Privoxy with Your Web Browser + +Privoxy's user interface can be reached through the special URL http:// +config.privoxy.org/ (shortcut: http://p.p/), which is a built-in page and works +without Internet access. You will see the following section: + + Privoxy Menu + ? View & change the current configuration + ? View the source code version numbers + ? View the request headers. + ? Look up which actions apply to a URL and why + ? Toggle Privoxy on or off + + +This should be self-explanatory. Note the first item leads to an editor for the +actions files, which is where the ad, banner, cookie, and URL blocking magic is +configured as well as other advanced features of Privoxy. This is an easy way +to adjust various aspects of Privoxy configuration. The actions file, and other +configuration files, are explained in detail below. + +"Toggle Privoxy On or Off" is handy for sites that might have problems with +your current actions and filters. You can in fact use it as a test to see +whether it is Privoxy causing the problem or not. Privoxy continues to run as a +proxy in this case, but all manipulation is disabled, i.e. Privoxy acts like a +normal forwarding proxy. There is even a toggle Bookmarklet offered, so that +you can toggle Privoxy with one click from your browser. + +------------------------------------------------------------------------------- + +6.2. Configuration Files Overview + +For Unix, *BSD and Linux, all configuration files are located in /etc/privoxy/ +by default. For MS Windows, OS/2, and AmigaOS these are all in the same +directory as the Privoxy executable. The name and number of configuration files +has changed from previous versions, and is subject to change as development +progresses. + +The installed defaults provide a reasonable starting point, though some +settings may be aggressive by some standards. For the time being, the principle +configuration files are: + + * The main configuration file is named config on Linux, Unix, BSD, OS/2, and + AmigaOS and config.txt on Windows. This is a required file. + + * default.action (the main actions file) is used to define which "actions" + relating to banner-blocking, images, pop-ups, content modification, cookie + handling etc should be applied by default. It also defines many exceptions + (both positive and negative) from this default set of actions that enable + Privoxy to selectively eliminate the junk, and only the junk, on as many + websites as possible. + + Multiple actions files may be defined in config. These are processed in the + order they are defined. Local customizations and locally preferred + exceptions to the default policies as defined in default.action (which you + will most probably want to define sooner or later) are probably best + applied in user.action, where you can preserve them across upgrades. + standard.action is for Privoxy's internal use. + + There is also a web based editor that can be accessed from http:// + config.privoxy.org/show-status (Shortcut: http://p.p/show-status) for the + various actions files. + + * default.filter (the filter file) can be used to re-write the raw page + content, including viewable text as well as embedded HTML and JavaScript, + and whatever else lurks on any given web page. The filtering jobs are only + pre-defined here; whether to apply them or not is up to the actions files. + +All files use the "#" character to denote a comment (the rest of the line will +be ignored) and understand line continuation through placing a backslash ("\") +as the very last character in a line. If the # is preceded by a backslash, it +looses its special function. Placing a # in front of an otherwise valid +configuration line to prevent it from being interpreted is called "commenting +out" that line. + +The actions files and default.filter can use Perl style regular expressions for +maximum flexibility. + +After making any changes, there is no need to restart Privoxy in order for the +changes to take effect. Privoxy detects such changes automatically. Note, +however, that it may take one or two additional requests for the change to take +effect. When changing the listening address of Privoxy, these "wake up" +requests must obviously be sent to the old listening address. + +While under development, the configuration content is subject to change. The +below documentation may not be accurate by the time you read this. Also, what +constitutes a "default" setting, may change, so please check all your +configuration files on important issues. + +------------------------------------------------------------------------------- + +7. The Main Configuration File + +Again, the main configuration file is named config on Linux/Unix/BSD and OS/2, +and config.txt on Windows. Configuration lines consist of an initial keyword +followed by a list of values, all separated by whitespace (any number of spaces +or tabs). For example: + + confdir /etc/privoxy + +Assigns the value /etc/privoxy to the option confdir and thus indicates that +the configuration directory is named "/etc/privoxy/". + +All options in the config file except for confdir and logdir are optional. +Watch out in the below description for what happens if you leave them unset. + +The main config file controls all aspects of Privoxy's operation that are not +location dependent (i.e. they apply universally, no matter where you may be +surfing). + +------------------------------------------------------------------------------- + +7.1. Configuration and Log File Locations + +Privoxy can (and normally does) use a number of other files for additional +configuration, help and logging. This section of the configuration file tells +Privoxy where to find those other files. + +The user running Privoxy, must have read permission for all configuration +files, and write permission to any files that would be modified, such as log +files. + +------------------------------------------------------------------------------- + +7.1.1. confdir + +Specifies: + + The directory where the other configuration files are located + +Type of value: + + Path name + +Default value: + + /etc/privoxy (Unix) or Privoxy installation dir (Windows) + +Effect if unset: + + Mandatory + +Notes: + + No trailing "/", please + + When development goes modular and multi-user, the blocker, filter, and + per-user config will be stored in subdirectories of "confdir". For now, the + configuration directory structure is flat, except for confdir/templates, + where the HTML templates for CGI output reside (e.g. Privoxy's 404 error + page). + +------------------------------------------------------------------------------- + +7.1.2. logdir + +Specifies: + + The directory where all logging takes place (i.e. where logfile and jarfile + are located) + +Type of value: + + Path name + +Default value: + + /var/log/privoxy (Unix) or Privoxy installation dir (Windows) + +Effect if unset: + + Mandatory + +Notes: + + No trailing "/", please + +------------------------------------------------------------------------------- + +7.1.3. actionsfile + +Specifies: + + The actions file(s) to use + +Type of value: + + File name, relative to confdir, without the .action suffix + +Default values: + + standard # Internal purposes, no editing recommended + + default # Main actions file + + user # User customizations + +Effect if unset: + + No actions are taken at all. Simple neutral proxying. + +Notes: + + Multiple actionsfile lines are permitted, and are in fact recommended! + + The default values include standard.action, which is used for internal + purposes and should be loaded, default.action, which is the "main" actions + file maintained by the developers, and user.action, where you can make your + personal additions. + + Actions files are where all the per site and per URL configuration is done + for ad blocking, cookie management, privacy considerations, etc. There is + no point in using Privoxy without at least one actions file. + +------------------------------------------------------------------------------- + +7.1.4. filterfile + +Specifies: + + The filter file to use + +Type of value: + + File name, relative to confdir + +Default value: + + default.filter (Unix) or default.filter.txt (Windows) + +Effect if unset: + + No textual content filtering takes place, i.e. all +filter{name} actions in + the actions files are turned neutral. + +Notes: + + The filter file contains content modification rules that use regular + expressions. These rules permit powerful changes on the content of Web + pages, e.g., you could disable your favorite JavaScript annoyances, + re-write the actual displayed text, or just have some fun replacing + "Microsoft" with "MicroSuck" wherever it appears on a Web page. + + The +filter{name} actions rely on the relevant filter (name) to be defined + in the filter file! + + A pre-defined filter file called default.filter that contains a bunch of + handy filters for common problems is included in the distribution. See the + section on the filter action for a list. + +------------------------------------------------------------------------------- + +7.1.5. logfile + +Specifies: + + The log file to use + +Type of value: + + File name, relative to logdir + +Default value: + + logfile (Unix) or privoxy.log (Windows) + +Effect if unset: + + No log file is used, all log messages go to the console (stderr). + +Notes: + + The windows version will additionally log to the console. + + The logfile is where all logging and error messages are written. The level + of detail and number of messages are set with the debug option (see below). + The logfile can be useful for tracking down a problem with Privoxy (e.g., + it's not blocking an ad you think it should block) but in most cases you + probably will never look at it. + + Your logfile will grow indefinitely, and you will probably want to + periodically remove it. On Unix systems, you can do this with a cron job + (see "man cron"). For Red Hat, a logrotate script has been included. + + On SuSE Linux systems, you can place a line like "/var/log/privoxy.* +1024k + 644 nobody.nogroup" in /etc/logfiles, with the effect that cron.daily will + automatically archive, gzip, and empty the log, when it exceeds 1M size. + + Any log files must be writable by whatever user Privoxy is being run as + (default on UNIX, user id is "privoxy"). + +------------------------------------------------------------------------------- + +7.1.6. jarfile + +Specifies: + + The file to store intercepted cookies in + +Type of value: + + File name, relative to logdir + +Default value: + + jarfile (Unix) or privoxy.jar (Windows) + +Effect if unset: + + Intercepted cookies are not stored at all. + +Notes: + + The jarfile may grow to ridiculous sizes over time. + +------------------------------------------------------------------------------- + +7.1.7. trustfile + +Specifies: + + The trust file to use + +Type of value: + + File name, relative to confdir + +Default value: + + Unset (commented out). When activated: trust (Unix) or trust.txt (Windows) + +Effect if unset: + + The whole trust mechanism is turned off. + +Notes: + + The trust mechanism is an experimental feature for building white-lists and + should be used with care. It is NOT recommended for the casual user. + + If you specify a trust file, Privoxy will only allow access to sites that + are named in the trustfile. You can also mark sites as trusted referrers + (with +), with the effect that access to untrusted sites will be granted, + if a link from a trusted referrer was used. The link target will then be + added to the "trustfile". Possible applications include limiting Internet + access for children. + + If you use + operator in the trust file, it may grow considerably over + time. + +------------------------------------------------------------------------------- + +7.2. Local Set-up Documentation + +If you intend to operate Privoxy for more users than just yourself, it might be +a good idea to let them know how to reach you, what you block and why you do +that, your policies, etc. + +------------------------------------------------------------------------------- + +7.2.1. user-manual + +Specifies: + + Location of the Privoxy User Manual. + +Type of value: + + A fully qualified URI + +Default value: + + Unset + +Effect if unset: + + http://www.privoxy.org/version/user-manual/ will be used, where version is + the Privoxy version. + +Notes: + + The User Manual URI is used for help links from some of the internal CGI + pages. The manual itself is normally packaged with the binary + distributions, so you probably want to set this to a locally installed + copy. For multi-user setups, you could provide a copy on a local webserver + for all your users and use the corresponding URL here. + + Examples: + + Unix, in local filesystem: + + user-manual file:///usr/share/doc/privoxy-2.9.15/user-manual/ + + Any platform, on local webserver (called "local-webserver"): + + user-manual http://local-webserver/privoxy-user-manual/ + + +-----------------------------------------------------------------+ + | Warning | + |-----------------------------------------------------------------| + |If set, this option should be the first option in the config | + |file, because it is used while the config file is being read. | + +-----------------------------------------------------------------+ + +------------------------------------------------------------------------------- + +7.2.2. trust-info-url + +Specifies: + + A URL to be displayed in the error page that users will see if access to an + untrusted page is denied. + +Type of value: + + URL + +Default value: + + Two example URL are provided + +Effect if unset: + + No links are displayed on the "untrusted" error page. + +Notes: + + The value of this option only matters if the experimental trust mechanism + has been activated. (See trustfile above.) + + If you use the trust mechanism, it is a good idea to write up some on-line + documentation about your trust policy and to specify the URL(s) here. Use + multiple times for multiple URLs. + + The URL(s) should be added to the trustfile as well, so users don't end up + locked out from the information on why they were locked out in the first + place! + +------------------------------------------------------------------------------- + +7.2.3. admin-address + +Specifies: + + An email address to reach the proxy administrator. + +Type of value: + + Email address + +Default value: + + Unset + +Effect if unset: + + No email address is displayed on error pages and the CGI user interface. + +Notes: + + If both admin-address and proxy-info-url are unset, the whole "Local + Privoxy Support" box on all generated pages will not be shown. + +------------------------------------------------------------------------------- + +7.2.4. proxy-info-url + +Specifies: + + A URL to documentation about the local Privoxy setup, configuration or + policies. + +Type of value: + + URL + +Default value: + + Unset + +Effect if unset: + + No link to local documentation is displayed on error pages and the CGI user + interface. + +Notes: + + If both admin-address and proxy-info-url are unset, the whole "Local + Privoxy Support" box on all generated pages will not be shown. + + This URL shouldn't be blocked ;-) + +------------------------------------------------------------------------------- + +7.3. Debugging + +These options are mainly useful when tracing a problem. Note that you might +also want to invoke Privoxy with the --no-daemon command line option when +debugging. + +------------------------------------------------------------------------------- + +7.3.1. debug + +Specifies: + + Key values that determine what information gets logged to the logfile. + +Type of value: + + Integer values + +Default value: + + 12289 (i.e.: URLs plus informational and warning messages) + +Effect if unset: + + Nothing gets logged. + +Notes: + + The available debug levels are: + + debug 1 # show each GET/POST/CONNECT request + debug 2 # show each connection status + debug 4 # show I/O status + debug 8 # show header parsing + debug 16 # log all data into the logfile + debug 32 # debug force feature + debug 64 # debug regular expression filter + debug 128 # debug fast redirects + debug 256 # debug GIF de-animation + debug 512 # Common Log Format + debug 1024 # debug kill pop-ups + debug 4096 # Startup banner and warnings. + debug 8192 # Non-fatal errors + + To select multiple debug levels, you can either add them or use multiple + debug lines. + + A debug level of 1 is informative because it will show you each request as + it happens. 1, 4096 and 8192 are highly recommended so that you will notice + when things go wrong. The other levels are probably only of interest if you + are hunting down a specific problem. They can produce a hell of an output + (especially 16). + + The reporting of fatal errors (i.e. ones which crash Privoxy) is always on + and cannot be disabled. + + If you want to use CLF (Common Log Format), you should set "debug 512" ONLY + and not enable anything else. + +------------------------------------------------------------------------------- + +7.3.2. single-threaded + +Specifies: + + Whether to run only one server thread + +Type of value: + + None + +Default value: + + Unset + +Effect if unset: + + Multi-threaded (or, where unavailable: forked) operation, i.e. the ability + to serve multiple requests simultaneously. + +Notes: + + This option is only there for debug purposes and you should never need to + use it. It will drastically reduce performance. + +------------------------------------------------------------------------------- + +7.4. Access Control and Security + +This section of the config file controls the security-relevant aspects of +Privoxy's configuration. + +------------------------------------------------------------------------------- + +7.4.1. listen-address + +Specifies: + + The IP address and TCP port on which Privoxy will listen for client + requests. + +Type of value: + + [IP-Address]:Port + +Default value: + + 127.0.0.1:8118 + +Effect if unset: + + Bind to 127.0.0.1 (localhost), port 8118. This is suitable and recommended + for home users who run Privoxy on the same machine as their browser. + +Notes: + + You will need to configure your browser(s) to this proxy address and port. + + If you already have another service running on port 8118, or if you want to + serve requests from other machines (e.g. on your local network) as well, + you will need to override the default. + + If you leave out the IP address, Privoxy will bind to all interfaces + (addresses) on your machine and may become reachable from the Internet. In + that case, consider using access control lists (ACL's) (see "ACLs" below), + or a firewall. + +Example: + + Suppose you are running Privoxy on a machine which has the address + 192.168.0.1 on your local private network (192.168.0.0) and has another + outside connection with a different address. You want it to serve requests + from inside only: + + listen-address 192.168.0.1:8118 + +------------------------------------------------------------------------------- + +7.4.2. toggle + +Specifies: + + Initial state of "toggle" status + +Type of value: + + 1 or 0 + +Default value: + + 1 + +Effect if unset: + + Act as if toggled on + +Notes: + + If set to 0, Privoxy will start in "toggled off" mode, i.e. behave like a + normal, content-neutral proxy where all ad blocking, filtering, etc are + disabled. See enable-remote-toggle below. This is not really useful + anymore, since toggling is much easier via the web interface than via + editing the conf file. + + The windows version will only display the toggle icon in the system tray if + this option is present. + +------------------------------------------------------------------------------- + +7.4.3. enable-remote-toggle + +Specifies: + + Whether or not the web-based toggle feature may be used + +Type of value: + + 0 or 1 + +Default value: + + 1 + +Effect if unset: + + The web-based toggle feature is disabled. + +Notes: + + When toggled off, Privoxy acts like a normal, content-neutral proxy, i.e. + it acts as if none of the actions applied to any URL. + + For the time being, access to the toggle feature can not be controlled + separately by "ACLs" or HTTP authentication, so that everybody who can + access Privoxy (see "ACLs" and listen-address above) can toggle it for all + users. So this option is not recommended for multi-user environments with + untrusted users. + + Note that you must have compiled Privoxy with support for this feature, + otherwise this option has no effect. + +------------------------------------------------------------------------------- + +7.4.4. enable-edit-actions + +Specifies: + + Whether or not the web-based actions file editor may be used + +Type of value: + + 0 or 1 + +Default value: + + 1 + +Effect if unset: + + The web-based actions file editor is disabled. + +Notes: + + For the time being, access to the editor can not be controlled separately + by "ACLs" or HTTP authentication, so that everybody who can access Privoxy + (see "ACLs" and listen-address above) can modify its configuration for all + users. So this option is not recommended for multi-user environments with + untrusted users. + + Note that you must have compiled Privoxy with support for this feature, + otherwise this option has no effect. + +------------------------------------------------------------------------------- + +7.4.5. ACLs: permit-access and deny-access + +Specifies: + + Who can access what. + +Type of value: + + src_addr[/src_masklen] [dst_addr[/dst_masklen]] + + Where src_addr and dst_addr are IP addresses in dotted decimal notation or + valid DNS names, and src_masklen and dst_masklen are subnet masks in CIDR + notation, i.e. integer values from 2 to 30 representing the length (in + bits) of the network address. The masks and the whole destination part are + optional. + +Default value: + + Unset + +Effect if unset: + + Don't restrict access further than implied by listen-address + +Notes: + + Access controls are included at the request of ISPs and systems + administrators, and are not usually needed by individual users. For a + typical home user, it will normally suffice to ensure that Privoxy only + listens on the localhost (127.0.0.1) or internal (home) network address by + means of the listen-address option. + + Please see the warnings in the FAQ that this proxy is not intended to be a + substitute for a firewall or to encourage anyone to defer addressing basic + security weaknesses. + + Multiple ACL lines are OK. If any ACLs are specified, then the Privoxy + talks only to IP addresses that match at least one permit-access line and + don't match any subsequent deny-access line. In other words, the last match + wins, with the default being deny-access. + + If Privoxy is using a forwarder (see forward below) for a particular + destination URL, the dst_addr that is examined is the address of the + forwarder and NOT the address of the ultimate target. This is necessary + because it may be impossible for the local Privoxy to determine the IP + address of the ultimate target (that's often what gateways are used for). + + You should prefer using IP addresses over DNS names, because the address + lookups take time. All DNS names must resolve! You can not use domain + patterns like "*.org" or partial domain names. If a DNS name resolves to + multiple IP addresses, only the first one is used. + + Denying access to particular sites by ACL may have undesired side effects + if the site in question is hosted on a machine which also hosts other + sites. + +Examples: + + Explicitly define the default behavior if no ACL and listen-address are + set: "localhost" is OK. The absence of a dst_addr implies that all + destination addresses are OK: + + permit-access localhost + + Allow any host on the same class C subnet as www.privoxy.org access to + nothing but www.example.com: + + permit-access www.privoxy.org/24 www.example.com/32 + + Allow access from any host on the 26-bit subnet 192.168.45.64 to anywhere, + with the exception that 192.168.45.73 may not access + www.dirty-stuff.example.com: + + permit-access 192.168.45.64/26 + deny-access 192.168.45.73 www.dirty-stuff.example.com + +------------------------------------------------------------------------------- + +7.4.6. buffer-limit + +Specifies: + + Maximum size of the buffer for content filtering. + +Type of value: + + Size in Kbytes + +Default value: + + 4096 + +Effect if unset: + + Use a 4MB (4096 KB) limit. + +Notes: + + For content filtering, i.e. the +filter and +deanimate-gif actions, it is + necessary that Privoxy buffers the entire document body. This can be + potentially dangerous, since a server could just keep sending data + indefinitely and wait for your RAM to exhaust -- with nasty consequences. + Hence this option. + + When a document buffer size reaches the buffer-limit, it is flushed to the + client unfiltered and no further attempt to filter the rest of the document + is made. Remember that there may be multiple threads running, which might + require up to buffer-limit Kbytes each, unless you have enabled + "single-threaded" above. + +------------------------------------------------------------------------------- + +7.5. Forwarding + +This feature allows routing of HTTP requests through a chain of multiple +proxies. It can be used to better protect privacy and confidentiality when +accessing specific domains by routing requests to those domains through an +anonymous public proxy (see e.g. http://www.multiproxy.org/anon_list.htm) Or to +use a caching proxy to speed up browsing. Or chaining to a parent proxy may be +necessary because the machine that Privoxy runs on has no direct Internet +access. + +Also specified here are SOCKS proxies. Privoxy supports the SOCKS 4 and SOCKS +4A protocols. + +------------------------------------------------------------------------------- + +7.5.1. forward + +Specifies: + + To which parent HTTP proxy specific requests should be routed. + +Type of value: + + target_domain[:port] http_parent[/port] + + Where target_domain is a domain name pattern (see the chapter on domain + matching in the default.action file), http_parent is the address of the + parent HTTP proxy as an IP addresses in dotted decimal notation or as a + valid DNS name (or "." to denote "no forwarding", and the optional port + parameters are TCP ports, i.e. integer values from 1 to 64535 + +Default value: + + Unset + +Effect if unset: + + Don't use parent HTTP proxies. + +Notes: + + If http_parent is ".", then requests are not forwarded to another HTTP + proxy but are made directly to the web servers. + + Multiple lines are OK, they are checked in sequence, and the last match + wins. + +Examples: + + Everything goes to an example anonymizing proxy, except SSL on port 443 + (which it doesn't handle): + + forward .* anon-proxy.example.org:8080 + forward :443 . + + Everything goes to our example ISP's caching proxy, except for requests to + that ISP's sites: + + forward .*. caching-proxy.example-isp.net:8000 + forward .example-isp.net . + +------------------------------------------------------------------------------- + +7.5.2. forward-socks4 and forward-socks4a + +Specifies: + + Through which SOCKS proxy (and to which parent HTTP proxy) specific + requests should be routed. + +Type of value: + + target_domain[:port] socks_proxy[/port] http_parent[/port] + + Where target_domain is a domain name pattern (see the chapter on domain + matching in the default.action file), http_parent and socks_proxy are IP + addresses in dotted decimal notation or valid DNS names (http_parent may be + "." to denote "no HTTP forwarding"), and the optional port parameters are + TCP ports, i.e. integer values from 1 to 64535 + +Default value: + + Unset + +Effect if unset: + + Don't use SOCKS proxies. + +Notes: + + Multiple lines are OK, they are checked in sequence, and the last match + wins. + + The difference between forward-socks4 and forward-socks4a is that in the + SOCKS 4A protocol, the DNS resolution of the target hostname happens on the + SOCKS server, while in SOCKS 4 it happens locally. + + If http_parent is ".", then requests are not forwarded to another HTTP + proxy but are made (HTTP-wise) directly to the web servers, albeit through + a SOCKS proxy. + +Examples: + + From the company example.com, direct connections are made to all "internal" + domains, but everything outbound goes through their ISP's proxy by way of + example.com's corporate SOCKS 4A gateway to the Internet. + + forward-socks4a .*. socks-gw.example.com:1080 www-cache.example-isp.net:8080 + forward .example.com . + + A rule that uses a SOCKS 4 gateway for all destinations but no HTTP parent + looks like this: + + forward-socks4 .*. socks-gw.example.com:1080 . + +------------------------------------------------------------------------------- + +7.5.3. Advanced Forwarding Examples + +If you have links to multiple ISPs that provide various special content only to +their subscribers, you can configure multiple Privoxies which have connections +to the respective ISPs to act as forwarders to each other, so that your users +can see the internal content of all ISPs. + +Assume that host-a has a PPP connection to isp-a.net. And host-b has a PPP +connection to isp-b.net. Both run Privoxy. Their forwarding configuration can +look like this: + +host-a: + + forward .*. . + forward .isp-b.net host-b:8118 + +host-b: + + forward .*. . + forward .isp-a.net host-a:8118 + +Now, your users can set their browser's proxy to use either host-a or host-b +and be able to browse the internal content of both isp-a and isp-b. + +If you intend to chain Privoxy and squid locally, then chain as browser -> +squid -> privoxy is the recommended way. + +Assuming that Privoxy and squid run on the same box, your squid configuration +could then look like this: + + # Define Privoxy as parent proxy (without ICP) + cache_peer 127.0.0.1 parent 8118 7 no-query + + # Define ACL for protocol FTP + acl ftp proto FTP + + # Do not forward FTP requests to Privoxy + always_direct allow ftp + + # Forward all the rest to Privoxy + never_direct allow all + +You would then need to change your browser's proxy settings to squid's address +and port. Squid normally uses port 3128. If unsure consult http_port in +squid.conf. + +------------------------------------------------------------------------------- + +7.6. Windows GUI Options + +Privoxy has a number of options specific to the Windows GUI interface: + +If "activity-animation" is set to 1, the Privoxy icon will animate when +"Privoxy" is active. To turn off, set to 0. + + activity-animation 1 + + +If "log-messages" is set to 1, Privoxy will log messages to the console window: + + log-messages 1 + + +If "log-buffer-size" is set to 1, the size of the log buffer, i.e. the amount +of memory used for the log messages displayed in the console window, will be +limited to "log-max-lines" (see below). + +Warning: Setting this to 0 will result in the buffer to grow infinitely and eat +up all your memory! + + log-buffer-size 1 + + +log-max-lines is the maximum number of lines held in the log buffer. See above. + + log-max-lines 200 + + +If "log-highlight-messages" is set to 1, Privoxy will highlight portions of the +log messages with a bold-faced font: + + log-highlight-messages 1 + + +The font used in the console window: + + log-font-name Comic Sans MS + + +Font size used in the console window: + + log-font-size 8 + + +"show-on-task-bar" controls whether or not Privoxy will appear as a button on +the Task bar when minimized: + + show-on-task-bar 0 + + +If "close-button-minimizes" is set to 1, the Windows close button will minimize +Privoxy instead of closing the program (close with the exit option on the File +menu). + + close-button-minimizes 1 + + +The "hide-console" option is specific to the MS-Win console version of Privoxy. +If this option is used, Privoxy will disconnect from and hide the command +console. + + #hide-console + + +------------------------------------------------------------------------------- + +8. Actions Files + +The actions files are used to define what actions Privoxy takes for which URLs, +and thus determine how ad images, cookies and various other aspects of HTTP +content and transactions are handled, and on which sites (or even parts +thereof). There are three such files included with Privoxy (as of version +2.9.15), with differing purposes: + + * default.action - is the primary action file that sets the initial values + for all actions. It is intended to provide a base level of functionality + for Privoxy's array of features. So it is a set of broad rules that should + work reasonably well for users everywhere. This is the file that the + developers are keeping updated, and making available to users. + + * user.action - is intended to be for local site preferences and exceptions. + As an example, if your ISP or your bank has specific requirements, and need + special handling, this kind of thing should go here. This file will not be + upgraded. + + * standard.action - is used by the web based editor, to set various + pre-defined sets of rules for the default actions section in + default.action. These have increasing levels of aggressiveness and have no + influence on your browsing unless you select them explicitly in the editor. + It is not recommend to edit this file. + +The list of actions files to be used are defined in the main configuration +file, and are processed in the order they are defined. The content of these can +all be viewed and edited from http://config.privoxy.org/show-status. + +An actions file typically has multiple sections. If you want to use "aliases" +in an actions file, you have to place the (optional) alias section at the top +of that file. Then comes the default set of rules which will apply universally +to all sites and pages (be very careful with using such a universal set in +user.action or any other actions file after default.action, because it will +override the result from consulting any previous file). And then below that, +exceptions to the defined universal policies. You can regard user.action as an +appendix to default.action, with the advantage that is a separate file, which +makes preserving your personal settings across Privoxy upgrades easier. + +Actions can be used to block anything you want, including ads, banners, or just +some obnoxious URL that you would rather not see. Cookies can be accepted or +rejected, or accepted only during the current browser session (i.e. not written +to disk), content can be modified, JavaScripts tamed, user-tracking fooled, and +much more. See below for a complete list of actions. + +------------------------------------------------------------------------------- + +8.1. Finding the Right Mix + +Note that some actions, like cookie suppression or script disabling, may render +some sites unusable that rely on these techniques to work properly. Finding the +right mix of actions is not always easy and certainly a matter of personal +taste. In general, it can be said that the more "aggressive" your default +settings (in the top section of the actions file) are, the more exceptions for +"trusted" sites you will have to make later. If, for example, you want to kill +popup windows per default, you'll have to make exceptions from that rule for +sites that you regularly use and that require popups for actually useful +content, like maybe your bank, favorite shop, or newspaper. + +We have tried to provide you with reasonable rules to start from in the +distribution actions files. But there is no general rule of thumb on these +things. There just are too many variables, and sites are constantly changing. +Sooner or later you will want to change the rules (and read this chapter again +:). + +------------------------------------------------------------------------------- + +8.2. How to Edit + +The easiest way to edit the actions files is with a browser by using our +browser-based editor, which can be reached from http://config.privoxy.org/ +show-status. The editor allows both fine-grained control over every single +feature on a per-URL basis, and easy choosing from wholesale sets of defaults +like "Cautious", "Medium" or "Advanced". + +If you prefer plain text editing to GUIs, you can of course also directly edit +the the actions files. Look at default.action which is richly commented. + +------------------------------------------------------------------------------- + +8.3. How Actions are Applied to URLs + +Actions files are divided into sections. There are special sections, like the " +alias" sections which will be discussed later. For now let's concentrate on +regular sections: They have a heading line (often split up to multiple lines +for readability) which consist of a list of actions, separated by whitespace +and enclosed in curly braces. Below that, there is a list of URL patterns, each +on a separate line. + +To determine which actions apply to a request, the URL of the request is +compared to all patterns in each action file file. Every time it matches, the +list of applicable actions for the URL is incrementally updated, using the +heading of the section in which the pattern is located. If multiple matches for +the same URL set the same action differently, the last match wins. If not, the +effects are aggregated (e.g. a URL might match both the "+handle-as-image" and +"+block" actions). + +You can trace this process for any given URL by visiting http:// +config.privoxy.org/show-url-info. + +More detail on this is provided in the Appendix, Anatomy of an Action. + +------------------------------------------------------------------------------- + +8.4. Patterns + +Generally, a pattern has the form <domain>/<path>, where both the <domain> and +<path> are optional. (This is why the pattern / matches all URLs). + +www.example.com/ + + is a domain-only pattern and will match any request to www.example.com, + regardless of which document on that server is requested. + +www.example.com + + means exactly the same. For domain-only patterns, the trailing / may be + omitted. + +www.example.com/index.html + + matches only the single document /index.html on www.example.com. + +/index.html + + matches the document /index.html, regardless of the domain, i.e. on any web + server. + +index.html + + matches nothing, since it would be interpreted as a domain name and there + is no top-level domain called .html. + +------------------------------------------------------------------------------- + +8.4.1. The Domain Pattern + +The matching of the domain part offers some flexible options: if the domain +starts or ends with a dot, it becomes unanchored at that end. For example: + +.example.com + + matches any domain that ENDS in .example.com + +www. + + matches any domain that STARTS with www. + +.example. + + matches any domain that CONTAINS .example. (Correctly speaking: It matches + any FQDN that contains example as a domain.) + +Additionally, there are wild-cards that you can use in the domain names +themselves. They work pretty similar to shell wild-cards: "*" stands for zero +or more arbitrary characters, "?" stands for any single character, you can +define character classes in square brackets and all of that can be freely +mixed: + +ad*.example.com + + matches "adserver.example.com", "ads.example.com", etc but not + "sfads.example.com" + +*ad*.example.com + + matches all of the above, and then some. + +.?pix.com + + matches www.ipix.com, pictures.epix.com, a.b.c.d.e.upix.com etc. + +www[1-9a-ez].example.c* + + matches www1.example.com, www4.example.cc, wwwd.example.cy, + wwwz.example.com etc., but not wwww.example.com. + +------------------------------------------------------------------------------- + +8.4.2. The Path Pattern + +Privoxy uses Perl compatible regular expressions (through the PCRE library) for +matching the path. + +There is an Appendix with a brief quick-start into regular expressions, and +full (very technical) documentation on PCRE regex syntax is available on-line +at http://www.pcre.org/man.txt. You might also find the Perl man page on +regular expressions (man perlre) useful, which is available on-line at http:// +www.perldoc.com/perl5.6/pod/perlre.html. + +Note that the path pattern is automatically left-anchored at the "/", i.e. it +matches as if it would start with a "^" (regular expression speak for the +beginning of a line). + +Please also note that matching in the path is case INSENSITIVE by default, but +you can switch to case sensitive at any point in the pattern by using the "(? +-i)" switch: www.example.com/(?-i)PaTtErN.* will match only documents whose +path starts with PaTtErN in exactly this capitalization. + +------------------------------------------------------------------------------- + +8.5. Actions + +All actions are disabled by default, until they are explicitly enabled +somewhere in an actions file. Actions are turned on if preceded with a "+", and +turned off if preceded with a "-". So a +action means "do that action", e.g. ++block means "please block URLs that match the following patterns", and -block +means "don't block URLs that match the following patterns, even if +block +previously applied." + +Again, actions are invoked by placing them on a line, enclosed in curly braces +and separated by whitespace, like in {+some-action -some-other-action +{some-parameter}}, followed by a list of URL patterns, one per line, to which +they apply. Together, the actions line and the following pattern lines make up +a section of the actions file. + +There are three classes of actions: + + * Boolean, i.e the action can only be "enabled" or "disabled". Syntax: + + +name # enable action name + -name # disable action name + + Example: +block + + * Parameterized, where some value is required in order to enable this type of + action. Syntax: + + +name{param} # enable action and set parameter to param, + # overwriting parameter from previous match if necessary + -name # disable action. The parameter can be omitted + + Note that if the URL matches multiple positive forms of a parameterized + action, the last match wins, i.e. the params from earlier matches are + simply ignored. + + Example: +hide-user-agent{ Mozilla 1.0 } + + * Multi-value. These look exactly like parameterized actions, but they behave + differently: If the action applies multiple times to the same URL, but with + different parameters, all the parameters from all matches are remembered. + This is used for actions that can be executed for the same request + repeatedly, like adding multiple headers, or filtering through multiple + filters. Syntax: + + +name{param} # enable action and add param to the list of parameters + -name{param} # remove the parameter param from the list of parameters + # If it was the last one left, disable the action. + -name # disable this action completely and remove all parameters from the list + + Examples: +add-header{X-Fun-Header: Some text} and +filter{html-annoyances} + +If nothing is specified in any actions file, no "actions" are taken. So in this +case Privoxy would just be a normal, non-blocking, non-anonymizing proxy. You +must specifically enable the privacy and blocking features you need (although +the provided default actions files will give a good starting point). + +Later defined actions always over-ride earlier ones. So exceptions to any rules +you make, should come in the latter part of the file (or in a file that is +processed later when using multiple actions files). For multi-valued actions, +the actions are applied in the order they are specified. Actions files are +processed in the order they are defined in config (the default installation has +three actions files). It also quite possible for any given URL pattern to match +more than one pattern and thus more than one set of actions! + +The list of valid Privoxy actions are: + +------------------------------------------------------------------------------- + +8.5.1. add-header + +Typical use: + + Confuse log analysis, custom applications + +Effect: + + Sends a user defined HTTP header to the web server. + +Type: + + Multi-value. + +Parameter: + + Any string value is possible. Validity of the defined HTTP headers is not + checked. It is recommended that you use the "X-" prefix for custom headers. + +Notes: + + This action may be specified multiple times, in order to define multiple + headers. This is rarely needed for the typical user. If you don't know what + "HTTP headers" are, you definitely don't need to worry about this one. + +Example usage: + + +add-header{X-User-Tracking: sucks} + +------------------------------------------------------------------------------- + +8.5.2. block + +Typical use: + + Block ads or other obnoxious content + +Effect: + + Requests for URLs to which this action applies are blocked, i.e. the + requests are not forwarded to the remote server, but answered locally with + a substitute page or image, as determined by the handle-as-image and + set-image-blocker actions. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + Privoxy sends a special "BLOCKED" page for requests to blocked pages. This + page contains links to find out why the request was blocked, and a + click-through to the blocked content (the latter only if compiled with the + force feature enabled). The "BLOCKED" page adapts to the available screen + space -- it displays full-blown if space allows, or miniaturized and + text-only if loaded into a small frame or window. If you are using Privoxy + right now, you can take a look at the "BLOCKED" page. + + A very important exception occurs if both block and handle-as-image, apply + to the same request: it will then be replaced by an image. If + set-image-blocker (see below) also applies, the type of image will be + determined by its parameter, if not, the standard checkerboard pattern is + sent. + + It is important to understand this process, in order to understand how + Privoxy deals with ads and other unwanted content. + + The filter action can perform a very similar task, by "blocking" banner + images and other content through rewriting the relevant URLs in the + document's HTML source, so they don't get requested in the first place. + Note that this is a totally different technique, and it's easy to confuse + the two. + +Example usage (section): + + {+block} # Block and replace with "blocked" page + .nasty-stuff.example.com + + {+block +handle-as-image} # Block and replace with image + .ad.doubleclick.net + .ads.r.us + +------------------------------------------------------------------------------- + +8.5.3. crunch-incoming-cookies + +Typical use: + + Prevent the web server from setting any cookies on your system + +Effect: + + Deletes any "Set-Cookie:" HTTP headers from server replies. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + This action is only concerned with incoming cookies. For outgoing cookies, + use crunch-outgoing-cookies. Use both to disable cookies completely. + + It makes no sense at all to use this action in conjunction with the + session-cookies-only action, since it would prevent the session cookies + from being set. + +Example usage: + + +crunch-incoming-cookies + +------------------------------------------------------------------------------- + +8.5.4. crunch-outgoing-cookies + +Typical use: + + Prevent the web server from reading any cookies from your system + +Effect: + + Deletes any "Cookie:" HTTP headers from client requests. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + This action is only concerned with outgoing cookies. For incoming cookies, + use crunch-incoming-cookies. Use both to disable cookies completely. + + It makes no sense at all to use this action in conjunction with the + session-cookies-only action, since it would prevent the session cookies + from being read. + +Example usage: + + +crunch-outgoing-cookies + +------------------------------------------------------------------------------- + +8.5.5. deanimate-gifs + +Typical use: + + Stop those annoying, distracting animated GIF images. + +Effect: + + De-animate GIF animations, i.e. reduce them to their first or last image. + +Type: + + Parameterized. + +Parameter: + + "last" or "first" + +Notes: + + This will also shrink the images considerably (in bytes, not pixels!). If + the option "first" is given, the first frame of the animation is used as + the replacement. If "last" is given, the last frame of the animation is + used instead, which probably makes more sense for most banner animations, + but also has the risk of not showing the entire last frame (if it is only a + delta to an earlier frame). + + You can safely use this action with patterns that will also match non-GIF + objects, because no attempt will be made at anything that doesn't look like + a GIF. + +Example usage: + + +deanimate-gifs{last} + +------------------------------------------------------------------------------- + +8.5.6. downgrade-http-version + +Typical use: + + Work around (very rare) problems with HTTP/1.1 + +Effect: + + Downgrades HTTP/1.1 client requests and server replies to HTTP/1.0. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + This is a left-over from the time when Privoxy didn't support important + HTTP/1.1 features well. It is left here for the unlikely case that you + experience HTTP/1.1 related problems with some server out there. Not all + (optional) HTTP/1.1 features are supported yet, so there is a chance you + might need this action. + +Example usage (section): + + {+downgrade-http-version} + problem-host.example.com + +------------------------------------------------------------------------------- + +8.5.7. fast-redirects + +Typical use: + + Fool some click-tracking scripts and speed up indirect links + +Effect: + + Cut off all but the last valid URL from requests. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + Many sites, like yahoo.com, don't just link to other sites. Instead, they + will link to some script on their own servers, giving the destination as a + parameter, which will then redirect you to the final target. URLs resulting + from this scheme typically look like: http://some.place/click-tracker.cgi? + target=http://some.where.else. + + Sometimes, there are even multiple consecutive redirects encoded in the + URL. These redirections via scripts make your web browsing more traceable, + since the server from which you follow such a link can see where you go to. + Apart from that, valuable bandwidth and time is wasted, while your browser + ask the server for one redirect after the other. Plus, it feeds the + advertisers. + + This feature is currently not very smart and is scheduled for improvement. + It is likely to break some sites. You should expect to need possibly many + exceptions to this action, if it is enabled by default in default.action. + Some sites just don't work without it. + +Example usage: + + {+fast-redirects} + +------------------------------------------------------------------------------- + +8.5.8. filter + +Typical use: + + Get rid of HTML and JavaScript annoyances, banner advertisements (by size), + do fun text replacements, etc. + +Effect: + + Text documents, including HTML and JavaScript, to which this action + applies, are filtered on-the-fly through the specified regular expression + based substitutions. + +Type: + + Parameterized. + +Parameter: + + The name of a filter, as defined in the filter file (typically + default.filter, set by the filterfile option in the config file) + +Notes: + + For your convenience, there are a bunch of pre-defined filters available in + the distribution filter file that you can use. See the example below for a + list. + + This is potentially a very powerful feature! But "rolling your own" filters + requires a knowledge of regular expressions and HTML. + + Filtering requires buffering the page content, which may appear to slow + down page rendering since nothing is displayed until all content has passed + the filters. (It does not really take longer, but seems that way since the + page is not incrementally displayed.) This effect will be more noticeable + on slower connections. + + At this time, Privoxy cannot (yet!) uncompress compressed documents. If you + want filtering to work on all documents, even those that would normally be + sent compressed, use the prevent-compression action in conjunction with + filter. + + Filtering can achieve some of the effects as the block action, i.e. it can + be used to block ads and banners. + + Feedback with suggestions for new or improved filters is particularly + welcome! + +Example usage (with filters from the distribution default.filter file): + + +filter{html-annoyances} # Get rid of particularly annoying HTML abuse. + + +filter{js-annoyances} # Get rid of particularly annoying JavaScript abuse + + +filter{banners-by-size} # Kill banners by size (very efficient!) + + +filter{content-cookies} # Kill cookies that come sneaking in the HTML or JS content + + +filter{popups} # Kill all popups in JS and HTML + + +filter{webbugs} # Squish WebBugs (1x1 invisible GIFs used for user tracking) + + +filter{fun} # Text replacements for subversive browsing fun! + + +filter{frameset-borders} # Give frames a border and make them resizeable + + +filter{refresh-tags} # Kill automatic refresh tags (for dial-on-demand setups) + + +filter{nimda} # Remove Nimda (virus) code. + + +filter{shockwave-flash} # Kill embedded Shockwave Flash objects + + +filter{crude-parental} # Kill all web pages that contain the words "sex" or "warez" + +------------------------------------------------------------------------------- + +8.5.9. handle-as-image + +Typical use: + + Mark URLs as belonging to images (so they'll be replaced by images if they + get blocked) + +Effect: + + This action alone doesn't do anything noticeable. It just marks URLs as + images. If the block action also applies, the presence or absence of this + mark decides whether an HTML "blocked" page, or a replacement image (as + determined by the set-image-blocker action) will be sent to the client as a + substitute for the blocked content. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + The below generic example section is actually part of default.action. It + marks all URLs with well-known image file name extensions as images and + should be left intact. + + Users will probably only want to use the handle-as-image action in + conjunction with block, to block sources of banners, whose URLs don't + reflect the file type, like in the second example section. + + Note that you cannot treat HTML pages as images in most cases. For + instance, (inline) ad frames require an HTML page to be sent, or they won't + display properly. Forcing handle-as-image in this situation will not + replace the ad frame with an image, but lead to error messages. + +Example usage (sections): + + # Generic image extensions: + # + {+handle-as-image} + /.*\.(gif|jpg|jpeg|png|bmp|ico)$ + + # These don't look like images, but they're banners and should be + # blocked as images: + # + {+block +handle-as-image} + some.nasty-banner-server.com/junk.cgi?output=trash + + # Banner source! Who cares if they also have non-image content? + ad.doubleclick.net + +------------------------------------------------------------------------------- + +8.5.10. hide-forwarded-for-headers + +Typical use: + + Improve privacy by hiding the true source of the request + +Effect: + + Deletes any existing "X-Forwarded-for:" HTTP header from client requests, + and prevents adding a new one. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + It is fairly safe to leave this on. + + This action is scheduled for improvement: It should be able to generate + forged "X-Forwarded-for:" headers using random IP addresses from a + specified network, to make successive requests from the same client look + like requests from a pool of different users sharing the same proxy. + +Example usage: + + +hide-forwarded-for-headers + +------------------------------------------------------------------------------- + +8.5.11. hide-from-header + +Typical use: + + Keep your (old and ill) browser from telling web servers your email address + +Effect: + + Deletes any existing "From:" HTTP header, or replaces it with the specified + string. + +Type: + + Parameterized. + +Parameter: + + Keyword: "block", or any user defined value. + +Notes: + + The keyword "block" will completely remove the header (not to be confused + with the block action). + + Alternately, you can specify any value you prefer to be sent to the web + server. If you do, it is a matter of fairness not to use any address that + is actually used by a real person. + + This action is rarely needed, as modern web browsers don't send "From:" + headers anymore. + +Example usage: + + +hide-from-header{block} + + or + + +hide-from-header{spam-me-senseless@sittingduck.example.com} + +------------------------------------------------------------------------------- + +8.5.12. hide-referrer + +Typical use: + + Conceal which link you followed to get to a particular site + +Effect: + + Deletes the "Referer:" (sic) HTTP header from the client request, or + replaces it with a forged one. + +Type: + + Parameterized. + +Parameter: + + + "block" to delete the header completely. + + + "forge" to pretend to be coming from the homepage of the server we are + talking to. + + + Any other string to set a user defined referrer. + +Notes: + + "forge" is the preferred option here, since some servers will not send + images back otherwise, in an attempt to prevent their valuable content from + being embedded elsewhere (and hence, without being surrounded by their + banners). + + hide-referer is an alternate spelling of hide-referrer and the two can be + can be freely substituted with each other. ("referrer" is the correct + English spelling, however the HTTP specification has a bug - it requires it + to be spelled as "referer".) + +Example usage: + + +hide-referrer{forge} + + or + + +hide-referrer{http://www.yahoo.com/} + +------------------------------------------------------------------------------- + +8.5.13. hide-user-agent + +Typical use: + + Conceal your type of browser and client operating system + +Effect: + + Replaces the value of the "User-Agent:" HTTP header in client requests with + the specified value. + +Type: + + Parameterized. + +Parameter: + + Any user-defined string. + +Notes: + + +-----------------------------------------------------------------+ + | Warning | + |-----------------------------------------------------------------| + |This breaks many web sites that depend on looking at this header | + |in order to customize their content for different browsers | + |(which, by the way, is NOT a smart way to do that!). | + +-----------------------------------------------------------------+ + + Using this action in multi-user setups or wherever different types of + browsers will access the same Privoxy is not recommended. In single-user, + single-browser setups, you might use it to delete your OS version + information from the headers, because it is an invitation to exploit known + bugs for your OS. It is also occasionally useful to forge this in order to + access sites that won't let you in otherwise (though there may be a good + reason in some cases). Example of this: some MSN sites will not let Mozilla + enter, yet forging to a Netscape 6.1 user-agent works just fine. (Must be + just a silly MS goof, I'm sure :-). + + This action is scheduled for improvement. + +Example usage: + + +hide-user-agent{Netscape 6.1 (X11; I; Linux 2.4.18 i686)} + +------------------------------------------------------------------------------- + +8.5.14. kill-popups + +Typical use: + + Eliminate those annoying pop-up windows + +Effect: + + While loading the document, replace JavaScript code that opens pop-up + windows with (syntactically neutral) dummy code on the fly. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + This action is easily confused with the built-in, hardwired filter action, + but there are important differences: For kill-popups, the document need not + be buffered, so it can be incrementally rendered while downloading. But + kill-popups doesn't catch as many pop-ups as filter{popups} does. + + Think of it as a fast and efficient replacement for a filter that you can + use if you don't want any filtering at all. Note that it doesn't make sense + to combine it with any filter action, since as soon as one filter applies, + the whole document needs to be buffered anyway, which destroys the + advantage of the kill-popups action over its filter equivalent. + + Killing all pop-ups is a dangerous business. Many shops and banks rely on + pop-ups to display forms, shopping carts etc, and killing only the unwanted + pop-ups would require artificial intelligence in Privoxy. If the only kind + of pop-ups that you want to kill are exit consoles (those really nasty + windows that appear when you close an other one), you might want to use + filter{js-annoyances} instead. + +Example usage: + + +kill-popups + +------------------------------------------------------------------------------- + +8.5.15. limit-connect + +Typical use: + + Prevent abuse of Privoxy as a TCP proxy relay + +Effect: + + Specifies to which ports HTTP CONNECT requests are allowable. + +Type: + + Parameterized. + +Parameter: + + A comma-separated list of ports or port ranges (the latter using dashes, + with the minimum defaulting to 0 and the maximum to 65K). + +Notes: + + By default, i.e. if no limit-connect action applies, Privoxy only allows + HTTP CONNECT requests to port 443 (the standard, secure HTTPS port). Use + limit-connect if more fine-grained control is desired for some or all + destinations. + + The CONNECT methods exists in HTTP to allow access to secure websites + ("https://" URLs) through proxies. It works very simply: the proxy connects + to the server on the specified port, and then short-circuits its + connections to the client and to the remote server. This can be a big + security hole, since CONNECT-enabled proxies can be abused as TCP relays + very easily. + + If you don't know what any of this means, there probably is no reason to + change this one, since the default is already very restrictive. + +Example usages: + + +limit-connect{443} # This is the default and need not be specified. + +limit-connect{80,443} # Ports 80 and 443 are OK. + +limit-connect{-3, 7, 20-100, 500-} # Ports less than 3, 7, 20 to 100 and above 500 are OK. + +limit-connect{-} # All ports are OK (gaping security hole!) + +------------------------------------------------------------------------------- + +8.5.16. prevent-compression + +Typical use: + + Ensure that servers send the content uncompressed, so it can be passed + through filters + +Effect: + + Adds a header to the request that asks for uncompressed transfer. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + More and more websites send their content compressed by default, which is + generally a good idea and saves bandwidth. But for the filter, + deanimate-gifs and kill-popups actions to work, Privoxy needs access to the + uncompressed data. Unfortunately, Privoxy can't yet(!) uncompress, filter, + and re-compress the content on the fly. So if you want to ensure that all + websites, including those that normally compress, can be filtered, you need + to use this action. + + This will slow down transfers from those websites, though. If you use any + of the above-mentioned actions, you will typically want to use + prevent-compression in conjunction with them. + + Note that some (rare) ill-configured sites don't handle requests for + uncompressed documents correctly (they send an empty document body). If you + use prevent-compression per default, you'll have to add exceptions for + those sites. See the example for how to do that. + +Example usage (sections): + + # Set default: + # + {+prevent-compression} + / # Match all sites + + # Make exceptions for ill sites: + # + {-prevent-compression} + www.debianhelp.org + www.pclinuxonline.com + +------------------------------------------------------------------------------- + +8.5.17. send-vanilla-wafer + +Typical use: + + Feed log analysis scripts with useless data. + +Effect: + + Sends a cookie with each request stating that you do not accept any + copyright on cookies sent to you, and asking the site operator not to track + you. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + The vanilla wafer is a (relatively) unique header and could conceivably be + used to track you. + + This action is rarely used and not enabled in the default configuration. + +Example usage: + + +send-vanilla-wafer + +------------------------------------------------------------------------------- + +8.5.18. send-wafer + +Typical use: + + Send custom cookies or feed log analysis scripts with even more useless + data. + +Effect: + + Sends a custom, user-defined cookie with each request. + +Type: + + Multi-value. + +Parameter: + + A string of the form "name=value". + +Notes: + + Being multi-valued, multiple instances of this action can apply to the same + request, resulting in multiple cookies being sent. + + This action is rarely used and not enabled in the default configuration. + +Example usage (section): + + {+send-wafer{UsingPrivoxy=true}} + my-internal-testing-server.void + +------------------------------------------------------------------------------- + +8.5.19. session-cookies-only + +Typical use: + + Allow only temporary "session" cookies (for the current browser session + only). + +Effect: + + Deletes the "expires" field from "Set-Cookie:" server headers. Most + browsers will not store such cookies permanently and forget them in between + sessions. + +Type: + + Boolean. + +Parameter: + + N/A + +Notes: + + This is less strict than crunch-incoming-cookies / crunch-outgoing-cookies + and allows you to browse websites that insist or rely on setting cookies, + without compromising your privacy too badly. + + Most browsers will not permanently store cookies that have been processed + by session-cookies-only and will forget about them between sessions. This + makes profiling cookies useless, but won't break sites which require + cookies so that you can log in for transactions. This is generally turned + on for all sites, and is the recommended setting. + + It makes no sense at all to use session-cookies-only together with + crunch-incoming-cookies or crunch-outgoing-cookies. If you do, cookies will + be plainly killed. + + Note that it is up to the browser how it handles such cookies without an + "expires" field. If you use an exotic browser, you might want to try it out + to be sure. + +Example usage: + + +session-cookies-only + +------------------------------------------------------------------------------- + +8.5.20. set-image-blocker + +Typical use: + + Choose the replacement for blocked images + +Effect: + + This action alone doesn't do anything noticeable. If both block and + handle-as-image also apply, i.e. if the request is to be blocked as an + image, then the parameter of this action decides what will be sent as a + replacement. + +Type: + + Parameterized. + +Parameter: + + + "pattern" to send a built-in checkerboard pattern image. The image is + visually decent, scales very well, and makes it obvious where banners + were busted. + + + "blank" to send a built-in transparent image. This makes banners + disappear completely, but makes it hard to detect where Privoxy has + blocked images on a given page and complicates troubleshooting if + Privoxy has blocked innocent images, like navigation icons. + + + "target-url" to send a redirect to target-url. You can redirect to any + image anywhere, even in your local filesystem (via "file:///" URL). + + A good application of redirects is to use special Privoxy-built-in + URLs, which send the built-in images, as target-url. This has the same + visual effect as specifying "blank" or "pattern" in the first place, + but enables your browser to cache the replacement image, instead of + requesting it over and over again. + +Notes: + + The URLs for the built-in images are "http://config.privoxy.org/ + send-banner?type=type", where type is either "blank" or "pattern". + + There is a third (advanced) type, called "auto". It is NOT to be used in + set-image-blocker, but meant for use from filters. Auto will select the + type of image that would have applied to the referring page, had it been an + image. + +Example usage: + + Built-in pattern: + + +set-image-blocker{pattern} + + Redirect to the BSD devil: + + +set-image-blocker{http://www.freebsd.org/gifs/dae_up3.gif} + + Redirect to the built-in pattern for better caching: + + +set-image-blocker{http://config.privoxy.org/send-banner?type=pattern} + +------------------------------------------------------------------------------- + +8.5.21. Summary + +Note that many of these actions have the potential to cause a page to +misbehave, possibly even not to display at all. There are many ways a site +designer may choose to design his site, and what HTTP header content, and other +criteria, he may depend on. There is no way to have hard and fast rules for all +sites. See the Appendix for a brief example on troubleshooting actions. + +------------------------------------------------------------------------------- + +8.6. Aliases + +Custom "actions", known to Privoxy as "aliases", can be defined by combining +other actions. These can in turn be invoked just like the built-in actions. +Currently, an alias name can contain any character except space, tab, "=", "{" +and "}", but we strongly recommend that you only use "a" to "z", "0" to "9", +"+", and "-". Alias names are not case sensitive, and are not required to start +with a "+" or "-" sign, since they are merely textually expanded. + +Aliases can be used throughout the actions file, but they must be defined in a +special section at the top of the file! And there can only be one such section +per actions file. Each actions file may have its own alias section, and the +aliases defined in it are only visible within that file. + +There are two main reasons to use aliases: One is to save typing for frequently +used combinations of actions, the other one is a gain in flexibility: If you +decide once how you want to handle shops by defining an alias called "shop", +you can later change your policy on shops in one place, and your changes will +take effect everywhere in the actions file where the "shop" alias is used. +Calling aliases by their purpose also makes your actions files more readable. + +Currently, there is one big drawback to using aliases, though: Privoxy's +built-in web-based action file editor honors aliases when reading the actions +files, but it expands them before writing. So the effects of your aliases are +of course preserved, but the aliases themselves are lost when you edit sections +that use aliases with it. This is likely to change in future versions of +Privoxy. + +Now let's define some aliases... + + # Useful custom aliases we can use later. + # + # Note the (required!) section header line and that this section + # must be at the top of the actions file! + # + {{alias}} + + # These aliases just save typing later: + # (Note that some already use other aliases!) + # + +crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies + -crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + block-as-image = +block +handle-as-image + mercy-for-cookies = -crunch-all-cookies -session-cookies-only + + # These aliases define combinations of actions + # that are useful for certain types of sites: + # + fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups + shop = -crunch-all-cookies -filter{popups} -kill-popups + + # Short names for other aliases, for really lazy people ;-) + # + c0 = +crunch-all-cookies + c1 = -crunch-all-cookies + +...and put them to use. These sections would appear in the lower part of an +actions file and define exceptions to the default actions (as specified further +up for the "/" pattern): + + # These sites are either very complex or very keen on + # user data and require minimal interference to work: + # + {fragile} + .office.microsoft.com + .windowsupdate.microsoft.com + .nytimes.com + + # Shopping sites: + # Allow cookies (for setting and retrieving your customer data) + # + {shop} + .quietpc.com + .worldpay.com # for quietpc.com + .scan.co.uk + + # These shops require pop-ups: + # + {shop -kill-popups -filter{popups}} + .dabs.com + .overclockers.co.uk + +Aliases like "shop" and "fragile" are often used for "problem" sites that +require some actions to be disabled in order to function properly. + +------------------------------------------------------------------------------- + +8.7. Actions Files Tutorial + +The above chapters have shown which actions files there are and how they are +organized, how actions are specified and applied to URLs, how patterns work, +and how to define and use aliases. Now, let's look at an example default.action +and user.action file and see how all these pieces come together: + +------------------------------------------------------------------------------- + +8.7.1. default.action + +Every config file should start with a short comment stating its purpose: + +# Sample default.action file <developers@privoxy.org> + +Then, since this is the default.action file, the first section is a special +section for internal use that you needn't change or worry about: + +########################################################################## +# Settings -- Don't change! For internal Privoxy use ONLY. +########################################################################## + +{{settings}} +for-privoxy-version=3.0 + +After that comes the (optional) alias section. We'll use the example section +from the above chapter on aliases, that also explains why and how aliases are +used: + +########################################################################## +# Aliases +########################################################################## +{{alias}} + +# These aliases just save typing later: +# (Note that some already use other aliases!) +# ++crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies +-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies +block-as-image = +block +handle-as-image +mercy-for-cookies = -crunch-all-cookies -session-cookies-only + +# These aliases define combinations of actions +# that are useful for certain types of sites: +# +fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups +shop = mercy-for-cookies -filter{popups} -kill-popups + +Now come the regular sections, i.e. sets of actions, accompanied by URL +patterns to which they apply. Remember all actions are disabled when matching +starts, so we have to explicitly enable the ones we want. + +The first regular section is probably the most important. It has only one +pattern, "/", but this pattern matches all URLs.. Therefore, the set of actions +used in this "default" section will be applied to all requests as a start. It +can be partly or wholly overridden by later matches further down this file, or +in user.action, but it will still be largely responsible for your overall +browsing experience. + +Again, at the start of matching, all actions are disabled, so there is no real +need to disable any actions here, but we will do that nonetheless, to have a +complete listing for your reference. (Remember: A "+" preceding the action name +enables the action, a "-" disables!). Also note how this long line has been +made more readable by splitting it into multiple lines with line continuation. + +########################################################################## +# "Defaults" section: +########################################################################## + { \ + -add-header \ + -block \ + -crunch-incoming-cookies \ + -crunch-outgoing-cookies \ + +deanimate-gifs \ + -downgrade-http-version \ + +fast-redirects \ + +filter{html-annoyances} \ + +filter{js-annoyances} \ + -filter{content-cookies} \ + +filter{popups} \ + +filter{webbugs} \ + -filter{refresh-tags} \ + -filter{fun} \ + +filter{nimda} \ + +filter{banners-by-size} \ + -filter{shockwave-flash} \ + -filter{crude-parental} \ + -handle-as-image \ + +hide-forwarded-for-headers \ + +hide-from-header{block} \ + +hide-referrer{forge} \ + -hide-user-agent \ + -kill-popups \ + -limit-connect \ + +prevent-compression \ + -send-vanilla-wafer \ + -send-wafer \ + +session-cookies-only \ + +set-image-blocker{pattern} \ + } + / # forward slash will match *all* potential URL patterns. + +The default behavior is now set. Note that some actions, like not hiding the +user agent, are part of a "general policy" that applies universally and won't +get any exceptions defined later. Other choices, like not blocking (which is +understandably the default!) need exceptions, i.e. we need to specify +explicitly what we want to block in later sections. We will also want to make +exceptions from our general pop-up-killing, and use our defined aliases for +that. + +The first of our specialized sections is concerned with "fragile" sites, i.e. +sites that require minimum interference, because they are either very complex +or very keen on tracking you (and have mechanisms in place that make them +unusable for people who avoid being tracked). We will simply use our +pre-defined fragile alias instead of stating the list of actions explicitly: + +########################################################################## +# Exceptions for sites that'll break under the default action set: +########################################################################## + +# "Fragile" Use a minimum set of actions for these sites (see alias above): +# +{ fragile } +.office.microsoft.com # surprise, surprise! +.windowsupdate.microsoft.com + +Shopping sites are not as fragile, but they typically require cookies to log +in, and pop-up windows for shopping carts or item details. Again, we'll use a +pre-defined alias: + +# Shopping sites: +# +{ shop } +.quietpc.com +.worldpay.com # for quietpc.com +.jungle.com +.scan.co.uk + +Then, there are sites which rely on pop-up windows (yuck!) to work. Since we +made pop-up-killing our default above, we need to make exceptions now. Mozilla +users, who can turn on smart handling of unwanted pop-ups in their browsers, +can safely choose -filter{popups} (and -kill-popups) above and hence don't need +this section. Anyway, disabling an already disabled action doesn't hurt, so +we'll define our exceptions regardless of what was chosen in the defaults +section: + +# These sites require pop-ups too :( +# +{ -kill-popups -filter{popups} } +.dabs.com +.overclockers.co.uk +.deutsche-bank-24.de + +The fast-redirects action, which we enabled per default above, breaks some +sites. So disable it for popular sites where we know it misbehaves: + +{ -fast-redirects } +login.yahoo.com +edit.*.yahoo.com +.google.com +.altavista.com/.*(like|url|link):http +.altavista.com/trans.*urltext=http +.nytimes.com + +It is important that Privoxy knows which URLs belong to images, so that if they +are to be blocked, a substitute image can be sent, rather than an HTML page. +Contacting the remote site to find out is not an option, since it would destroy +the loading time advantage of banner blocking, and it would feed the +advertisers (in terms of money and information). We can mark any URL as an +image with the handle-as-image action, and marking all URLs that end in a known +image file extension is a good start: + +########################################################################## +# Images: +########################################################################## + +# Define which file types will be treated as images, in case they get +# blocked further down this file: +# +{ +handle-as-image } +/.*\.(gif|jpe?g|png|bmp|ico)$ + +And then there are known banner sources. They often use scripts to generate the +banners, so it won't be visible from the URL that the request is for an image. +Hence we block them and mark them as images in one go, with the help of our +block-as-image alias defined above. (We could of course just as well use +block ++handle-as-image here.) Remember that the type of the replacement image is +chosen by the set-image-blocker action. Since all URLs have matched the default +section with its +set-image-blocker{pattern} action before, it still applies +and needn't be repeated: + +# Known ad generators: +# +{ block-as-image } +ar.atwola.com +.ad.doubleclick.net +.ad.*.doubleclick.net +.a.yimg.com/(?:(?!/i/).)*$ +.a[0-9].yimg.com/(?:(?!/i/).)*$ +bs*.gsanet.com +bs*.einets.com +.qkimg.net + +One of the most important jobs of Privoxy is to block banners. A huge bunch of +them are already "blocked" by the filter{banners-by-size} action, which we +enabled above, and which deletes the references to banner images from the pages +while they are loaded, so the browser doesn't request them anymore, and hence +they don't need to be blocked here. But this naturally doesn't catch all +banners, and some people choose not to use filters, so we need a comprehensive +list of patterns for banner URLs here, and apply the block action to them. + +First comes a bunch of generic patterns, which do most of the work, by matching +typical domain and path name components of banners. Then comes a list of +individual patterns for specific sites, which is omitted here to keep the +example short: + +########################################################################## +# Block these fine banners: +########################################################################## +{ +block } + +# Generic patterns: +# +ad*. +.*ads. +banner?. +count*. +/.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) +/(?:.*/)?(publicite|werbung|rekla(ma|me|am)|annonse|maino(kset|nta|s)?)/ + +# Site-specific patterns (abbreviated): +# +.hitbox.com + +You wouldn't believe how many advertisers actually call their banner servers +ads.company.com, or call the directory in which the banners are stored simply +"banners". So the above generic patterns are surprisingly effective. + +But being very generic, they necessarily also catch URLs that we don't want to +block. The pattern .*ads. e.g. catches "nasty-ads.nasty-corp.com" as intended, +but also "downloads.sourcefroge.net" or "adsl.some-provider.net." So here come +some well-known exceptions to the +block section above. + +Note that these are exceptions to exceptions from the default! Consider the URL +"downloads.sourcefroge.net": Initially, all actions are deactivated, so it +wouldn't get blocked. Then comes the defaults section, which matches the URL, +but just deactivates the block action once again. Then it matches .*ads., an +exception to the general non-blocking policy, and suddenly +block applies. And +now, it'll match .*loads., where -block applies, so (unless it matches again +further down) it ends up with no block action applying. + +########################################################################## +# Save some innocent victims of the above generic block patterns: +########################################################################## + +# By domain: +# +{ -block } +adv[io]*. # (for advogato.org and advice.*) +adsl. # (has nothing to do with ads) +ad[ud]*. # (adult.* and add.*) +.edu # (universities don't host banners (yet!)) +.*loads. # (downloads, uploads etc) + +# By path: +# +/.*loads/ + +# Site-specific: +# +www.globalintersec.com/adv # (adv = advanced) +www.ugu.com/sui/ugu/adv + +Filtering source code can have nasty side effects, so make an exception for our +friends at sourceforge.net, and all paths with "cvs" in them. Note that -filter +disables all filters in one fell swoop! + +# Don't filter code! +# +{ -filter } +/.*cvs +.sourceforge.net + +The actual default.action is of course more comprehensive, but we hope this +example made clear how it works. + +------------------------------------------------------------------------------- + +8.7.2. user.action + +So far we are painting with a broad brush by setting general policies, which +would be a reasonable starting point for many people. Now, you'd maybe want to +be more specific and have customized rules that are more suitable to your +personal habits and preferences. These would be for narrowly defined situations +like your ISP or your bank, and should be placed in user.action, which is +parsed after all other actions files and hence has the last word, over-riding +any previously defined actions. user.action is also a safe place for your +personal settings, since default.action is actively maintained by the Privoxy +developers and you'll probably want to install updated versions from time to +time. + +So let's look at a few examples of things that one might typically do in +user.action: + +# My user.action file. <fred@foobar.com> + +As aliases are local to the actions file that they are defined in, you can't +use the ones from default.action, unless you repeat them here: + +# (Re-)define aliases for this file: +# +{{alias}} +-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies +mercy-for-cookies = -crunch-all-cookies -session-cookies-only +fragile = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups +shop = mercy-for-cookies -filter{popups} -kill-popups +allow-ads = -block -filter{banners-by-size} # (see below) + +Say you have accounts on some sites that you visit regularly, and you don't +want to have to log in manually each time. So you'd like to allow persistent +cookies for these sites. The mercy-for-cookies alias defined above does exactly +that, i.e. it disables crunching of cookies in any direction, and processing of +cookies to make them temporary. + +{ mercy-for-cookies } +sunsolve.sun.com +slashdot.org +.yahoo.com +.msdn.microsoft.com +.redhat.com + +Your bank needs popups and is allergic to some filter, but you don't know +which, so you disable them all: + +{ -filter -kill-popups } +.your-home-banking-site.com + +While browsing the web with Privoxy you noticed some ads that sneaked through, +but you were too lazy to report them through our fine and easy feedback system, +so you have added them here: + +{ +block } +www.a-popular-site.com/some/unobvious/path +another.popular.site.net/more/junk/here/ + +Note that, assuming the banners in the above example have regular image +extensions (most do), +handle-as-image need not be specified, since all URLs +ending in these extensions will already have been tagged as images in the +relevant section of default.action by now. + +Then you noticed that the default configuration breaks Forbes Magazine, but you +were too lazy to find out which action is the culprit, and you were again too +lazy to give feedback, so you just used the fragile alias on the site, and -- +whoa! -- it worked: + +{ fragile } +.forbes.com + +You like the "fun" text replacements in default.filter, but it is disabled in +the distributed actions file. (My colleagues on the team just don't have a +sense of humour, that's why! ;-). So you'd like to turn it on in your private, +update-safe config, once and for all: + +{ +filter{fun} } +/ # For ALL sites! + +Note that the above is not really a good idea: There are exceptions to the +filters in default.action for things that really shouldn't be filtered, like +code on CVS->Web interfaces. Since user.action has the last word, these +exceptions won't be valid for the "fun" filtering specified here. + +Finally, you might think about how your favourite free websites are funded, and +find that they rely on displaying banner advertisements to survive. So you +might want to specifically allow banners for those sites that you feel provide +value to you: + +{ allow-ads } +.sourceforge.net +.slashdot.org +.osdn.net + +Note that allow-ads has been aliased to -block -filter{banners-by-size} above. + +------------------------------------------------------------------------------- + +9. The Filter File + +All text substitutions that can be invoked through the filter action must first +be defined in the filter file, which is typically called default.filter and +which can be selected through the filterfile config option. + +Typical reasons for doing such substitutions are to eliminate common annoyances +in HTML and JavaScript, such as pop-up windows, exit consoles, crippled windows +without navigation tools, the infamous <BLINK> tag etc, to suppress images with +certain width and height attributes (standard banner sizes or web-bugs), or +just to have fun. The possibilities are endless. + +Filtering works on any text-based document type, including plain text, HTML, +JavaScript, CSS etc. (all text/* MIME types). Substitutions are made at the +source level, so if you want to "roll your own" filters, you should be familiar +with HTML syntax. + +Just like the actions files, the filter file is organized in sections, which +are called filters here. Each filter consists of a heading line, that starts +with the keyword FILTER:, followed by the filter's name, and a short (one line) +description of what it does. Below that line come the jobs, i.e. lines that +define the actual text substitutions. By convention, the name of a filter +should describe what the filter eliminates. The comment is used in the +web-based user interface. + +Once a filter called name has been defined in the filter file, it can be +invoked by using an action of the form +filter{name} in any actions file. + +A filter header line for a filter called "foo" could look like this: + +FILTER: foo Replace all "foo" with "bar" + +Below that line, and up to the next header line, come the jobs that define what +text replacements the filter executes. They are specified in a syntax that +imitates Perl's s/// operator. If you are familiar with Perl, you will find +this to be quite intuitive, and may want to look at the PCRS man page for the +subtle differences to Perl behaviour. Most notably, the non-standard option +letter U is supported, which turns the default to ungreedy matching. + +If you are new to regular expressions, you might want to take a look at the +Appendix on regular expressions, and see the Perl manual for the s/// +operator's syntax and Perl-style regular expressions in general. The below +examples might also help to get you started. + +------------------------------------------------------------------------------- + +9.1. Filter File Tutorial + +Now, let's complete our "foo" filter. We have already defined the heading, but +the jobs are still missing. Since all it does is to replace "foo" with "bar", +there is only one (trivial) job needed: + +s/foo/bar/ + +But wait! Didn't the comment say that all occurrences of "foo" should be +replaced? Our current job will only take care of the first "foo" on each page. +For global substitution, we'll need to add the g option: + +s/foo/bar/g + +Our complete filter now looks like this: + +FILTER: foo Replace all "foo" with "bar" +s/foo/bar/g + +Let's look at some real filters for more interesting examples. Here you see a +filter that protects against some common annoyances that arise from JavaScript +abuse. Let's look at its jobs one after the other: + +FILTER: js-annoyances Get rid of particularly annoying JavaScript abuse + +# Get rid of JavaScript referrer tracking. Test page: http://www.randomoddness.com/untitled.htm +# +s|(<script.*)document\.referrer(.*</script>)|$1"Not Your Business!"$2|Usg + +Following the header line and a comment, you see the job. Note that it uses | +as the delimiter instead of /, because the pattern contains a forward slash, +which would otherwise have to be escaped by a backslash (\). + +Now, let's examine the pattern: it starts with the text <script.* enclosed in +parentheses. Since the dot matches any character, and * means: "Match an +arbitrary number of the element left of myself", this matches "<script", +followed by any text, i.e. it matches the whole page, from the start of the +first <script> tag. + +That's more than we want, but the pattern continues: document\.referrer matches +only the exact string "document.referrer". The dot needed to be escaped, i.e. +preceded by a backslash, to take away its special meaning as a joker, and make +it just a regular dot. So far, the meaning is: Match from the start of the +first <script> tag in a the page, up to, and including, the text +"document.referrer", if both are present in the page (and appear in that +order). + +But there's still more pattern to go. The next element, again enclosed in +parentheses, is .*</script>. You already know what .* means, so the whole +pattern translates to: Match from the start of the first <script> tag in a page +to the end of the last <script> tag, provided that the text "document.referrer" +appears somewhere in between. + +This is still not the whole story, since we have ignored the options and the +parentheses: The portions of the page matched by sub-patterns that are enclosed +in parentheses, will be remembered and be available through the variables $1, +$2, ... in the substitute. The U option switches to ungreedy matching, which +means that the first .* in the pattern will only "eat up" all text in between " +<script" and the first occurrence of "document.referrer", and that the second . +* will only span the text up to the first "</script>" tag. Furthermore, the s +option says that the match may span multiple lines in the page, and the g +option again means that the substitution is global. + +So, to summarize, the pattern means: Match all scripts that contain the text +"document.referrer". Remember the parts of the script from (and including) the +start tag up to (and excluding) the string "document.referrer" as $1, and the +part following that string, up to and including the closing tag, as $2. + +Now the pattern is deciphered, but wasn't this about substituting things? So +lets look at the substitute: $1"Not Your Business!"$2 is easy to read: The text +remembered as $1, followed by "Not Your Business!" (including the quotation +marks!), followed by the text remembered as $2. This produces an exact copy of +the original string, with the middle part (the "document.referrer") replaced by +"Not Your Business!". + +The whole job now reads: Replace "document.referrer" by "Not Your Business!" +wherever it appears inside a <script> tag. Note that this job won't break +JavaScript syntax, since both the original and the replacement are +syntactically valid string objects. The script just won't have access to the +referrer information anymore. + +We'll show you two other jobs from the JavaScript taming department, but this +time only point out the constructs of special interest: + +# The status bar is for displaying link targets, not pointless blahblah +# +s/window\.status\s*=\s*['"].*?['"]/dUmMy=1/ig + +\s stands for whitespace characters (space, tab, newline, carriage return, form +feed), so that \s* means: "zero or more whitespace". The ? in .*? makes this +matching of arbitrary text ungreedy. (Note that the U option is not set). The +['"] construct means: "a single or a double quote". + +So what does this job do? It replaces assignments of single- or double-quoted +strings to the "window.status" object with a dummy assignment (using a variable +name that is hopefully odd enough not to conflict with real variables in +scripts). Thus, it catches many cases where e.g. pointless descriptions are +displayed in the status bar instead of the link target when you move your mouse +over links. + +# Kill OnUnload popups. Yummy. Test: http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html +# +s/(<body .*)onunload(.*>)/$1never$2/iU + +Including the OnUnload event binding in the HTML DOM was a CRIME. When I close +a browser window, I want it to close and die. Basta. This job replaces the +"onunload" attribute in "<body>" tags with the dummy word never. Note that the +i option makes the pattern matching case-insensitive. + +The last example is from the fun department: + +FILTER: fun Fun text replacements + +# Spice the daily news: +# +s/microsoft(?!\.com)/MicroSuck/ig + +Note the (?!\.com) part (a so-called negative lookahead) in the job's pattern, +which means: Don't match, if the string ".com" appears directly following +"microsoft" in the page. This prevents links to microsoft.com from being +messed, while still replacing the word everywhere else. + +# Buzzword Bingo (example for extended regex syntax) +# +s* industry[ -]leading \ +| cutting[ -]edge \ +| award[ -]winning # Comments are OK, too! \ +| high[ -]performance \ +| solutions[ -]based \ +| unmatched \ +| unparalleled \ +| unrivalled \ +*<font color="red"><b>BINGO!</b></font> \ +*igx + +The x option in this job turns on extended syntax, and allows for e.g. the +liberal use of (non-interpreted!) whitespace for nicer formatting. + +You get the idea? + +------------------------------------------------------------------------------- + +10. Templates + +All Privoxy built-in pages, i.e. error pages such as the "404 - No Such Domain" +error page, the "BLOCKED" page and all pages of its web-based user interface, +are generated from templates. (Privoxy must be running for the above links to +work as intended) + +These templates are stored in a subdirectory of the configuration directory +called templates. On unixish platforms, this is typically /etc/privoxy/ +templates/. + +The templates are basically normal HTML files, but with place-holders (called +symbols or exports), which Privoxy fills at run time. You can edit the +templates with a normal text editor, should you want to customize them. (Not +recommended for the casual user). Note that just like in configuration files, +lines starting with # are ignored when the templates are filled in. + +The place-holders are of the form @name@, and you will find a list of available +symbols, which vary from template to template, in the comments at the start of +each file. Note that these comments are not always accurate, and that it's +probably best to look at the existing HTML code to find out which symbols are +supported and what they are filled in with. + +A special application of this substitution mechanism is to make whole blocks of +HTML code disappear when a specific symbol is set. We use this for many +purposes, one of them being to include the beta warning in all our user +interface (CGI) pages when Privoxy in in an alpha or beta development stage: + +<!-- @if-unstable-start --> + + ... beta warning HTML code goes here ... + +<!-- if-unstable-end@ --> + +If the "unstable" symbol is set, everything in between and including +@if-unstable-start and if-unstable-end@ will disappear, leaving nothing but an +empty comment: + +<!-- --> + +There's also an if-then-else construct and an #include mechanism, but you'll +sure find out if you are inclined to edit the templates ;-) + +All templates refer to a style located at http://config.privoxy.org/ +send-stylesheet. This is, of course, locally served by Privoxy and the source +for it can be found and edited in the cgi-style.css template. + +------------------------------------------------------------------------------- + +11. Contacting the Developers, Bug Reporting and Feature Requests + +We value your feedback. In fact, we rely on it to improve Privoxy and its +configuration. However, please note the following hints, so we can provide you +with the best support: + +------------------------------------------------------------------------------- + +11.1. Get Support + +For casual users, our support forum at SourceForge is probably best suited: +http://sourceforge.net/tracker/?group_id=11118&atid=211118 + +All users are of course welcome to discuss their issues on the users mailing +list, where the developers also hang around. + +------------------------------------------------------------------------------- + +11.2. Report Bugs + +Please report all bugs only through our bug tracker: http://sourceforge.net/ +tracker/?group_id=11118&atid=111118. + +Before doing so, please make sure that the bug has not already been submitted +and observe the aditional hints at the top of the submit form. + +Please try to verify that it is a Privoxy bug, and not a browser or site bug +first. If unsure, try toggling off Privoxy, and see if the problem persists. +The appendix of the user manual also has helpful information on action +debugging. If you are using your own custom configuration, please try the stock +configs to see if the problem is configuration related. + +If not using the latest version, chances are that the bug has been found and +fixed in the meantime. We would appreciate if you could take the time to +upgrade to the latest version (or even the latest CVS snapshot) and verify your +bug, but this is not required for reporting. + +------------------------------------------------------------------------------- + +11.3. Request New Features + +You are welcome to submit ideas on new features or other proposals for +improvement through our feature request tracker at http://sourceforge.net/ +tracker/?atid=361118&group_id=11118. + +------------------------------------------------------------------------------- + +11.4. Report Ads or Other Actions-Related Problems + +Please send feedback on ads that slipped through, innocent images that were +blocked, and any other problems relating to the default.action file through our +actions feedback mechanism located at http://www.privoxy.org/actions/. On this +page, you will also find a bookmark which will take you back there from any +troubled site and even pre-fill the form! + +New, improved default.action files will occasionally be made available based on +your feedback. These will be announced on the ijbswa-announce list and +available from our project page. + +------------------------------------------------------------------------------- + +11.5. Other + +For any other issues, feel free to use the mailing lists. Technically +interested users and people who wish to contribute to the project are also +welcome on the developers list! You can find an overview of all Prixoxy-related +mailing lists, including list archives, at: http://sourceforge.net/mail/? +group_id=11118. + +------------------------------------------------------------------------------- + +12. Privoxy Copyright, License and History + +Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org> + +Some source code is based on code Copyright © 1997 by Anonymous Coders and +Junkbusters, Inc. and licensed under the GNU General Public License. + +------------------------------------------------------------------------------- + +12.1. License + +Privoxy is free software; you can redistribute it and/or modify it under the +terms of the GNU General Public License, version 2, as published by the Free +Software Foundation. + +This program is distributed in the hope that it will be useful, but WITHOUT ANY +WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A +PARTICULAR PURPOSE. See the GNU General Public License for more details, which +is available from the Free Software Foundation, Inc, 59 Temple Place - Suite +330, Boston, MA 02111-1307, USA. + +You should have received a copy of the GNU General Public License along with +this program; if not, write to the + + Free Software + Foundation, Inc. 59 Temple Place - Suite 330 + Boston, MA 02111-1307 + USA + +------------------------------------------------------------------------------- + +12.2. History + +In the beginning, there was the Internet Junkbuster, by Anonymous Coders and +Junkbusters Corporation. It saved many users a lot of pain in the early days of +web advertising and user tracking. + +But the web, its protocols and standards, and with it, the techniques for +forcing users to consume ads, give up autonomy over their browsing, and for +spying on them, kept evolving. Unfortunately, the Internet Junkbuster did not. +Version 2.0.2, published in 1998, was (and is) the last official release +available from Junkbusters Corporation. Fortunately, it had been released under +the GNU GPL, which allowed further development by others. + +So Stefan Waldherr started maintaining an improved version of the software, to +which eventually a number of people contributed patches. It could already +replace banners with a transparent image, and had a first version of pop-up +killing, but it was still very closely based on the original, with all its +limitations, such as the lack of HTTP/1.1 support, flexible per-site +configuration, or content modification. The last release from this effort was +version 2.0.2-10, published in 2000. + +Then, some developers picked up the thread, and started turning the software +inside out, upside down, and then reassembled it, adding many new features +along the way. + +The result of this is Privoxy, whose first stable release, 3.0, is due in May +2002. + +------------------------------------------------------------------------------- + +12.3. Authors + +Current Project Developers: + + Jon Foster + Andreas Oesterhelt + Stefan Waldherr + + Thomas Steudten + Rodney Stromlund + +Current Project Contributors: + + Rodrigo Barbosa (RPM specfiles) + Hal Burgiss (docs) + Alexander Lazic + Gábor Lipták + Guy + Haroon Rafique + David Schmidt (OS/2, Mac OSX ports) + Joerg Strohmayer + Sarantis Paskalis + +Originally developed by: + + Junkbusters Corp. + Anonymous Coders + +Thanks to the many people who have tested Privoxy, reported bugs, or made +suggestions. These include (in alphabetical order): + + Ken Arromdee + Reiner Buehl + Andrew J. Caines + Clifford Caoile + Peter E + Aaron Hamid + Magnus Holmgren + Paul Lieverse + Roberto Ragusa + Bart Schelstraete + Darren Wiebe + +------------------------------------------------------------------------------- + +13. See Also + +Other references and sites of interest to Privoxy users: + +http://www.privoxy.org/, the Privoxy Home page. + +http://www.privoxy.org/faq/, the Privoxy FAQ. + +http://sourceforge.net/projects/ijbswa/, the Project Page for Privoxy on +SourceForge. + +http://config.privoxy.org/, the web-based user interface. Privoxy must be +running for this to work. Shortcut: http://p.p/ + +http://www.privoxy.org/actions/, to submit "misses" to the developers. + +http://www.junkbusters.com/ht/en/cookies.html, an explanation how cookies are +used to track web users. + +http://www.junkbusters.com/ijb.html, the original Internet Junkbuster. + +http://www.waldherr.org/junkbuster/, Stefan Waldherr's version of Junkbuster, +from which Privoxy was derived. + +http://privacy.net/analyze/, a useful site to check what information about you +is leaked while you browse the web. + +http://www.squid-cache.org/, a very popular caching proxy, which is often used +together with Privoxy. + +http://www.privoxy.org/developer-manual/, the Privoxy developer manual. + +------------------------------------------------------------------------------- + +14. Appendix + +14.1. Regular Expressions + +Privoxy uses Perl-style "regular expressions" in its actions files and filter +file, through the PCRE and PCRS libraries. + +If you are reading this, you probably don't understand what "regular +expressions" are, or what they can do. So this will be a very brief +introduction only. A full explanation would require a book ;-) + +Regular expressions provide a language to describe patterns that can be run +against strings of characters (letter, numbers, etc), to see if they match the +string or not. The patterns are themselves (sometimes complex) strings of +literal characters, combined with wild-cards, and other special characters, +called meta-characters. The "meta-characters" have special meanings and are +used to build complex patterns to be matched against. Perl Compatible Regular +Expressions are an especially convenient "dialect" of the regular expression +language. + +To make a simple analogy, we do something similar when we use wild-card +characters when listing files with the dir command in DOS. *.* matches all +filenames. The "special" character here is the asterisk which matches any and +all characters. We can be more specific and use ? to match just individual +characters. So "dir file?.text" would match "file1.txt", "file2.txt", etc. We +are pattern matching, using a similar technique to "regular expressions"! + +Regular expressions do essentially the same thing, but are much, much more +powerful. There are many more "special characters" and ways of building complex +patterns however. Let's look at a few of the common ones, and then some +examples: + +. - Matches any single character, e.g. "a", "A", "4", ":", or "@". + +? - The preceding character or expression is matched ZERO or ONE times. Either/ +or. + ++ - The preceding character or expression is matched ONE or MORE times. + +* - The preceding character or expression is matched ZERO or MORE times. + +\ - The "escape" character denotes that the following character should be taken +literally. This is used where one of the special characters (e.g. ".") needs to +be taken literally and not as a special meta-character. Example: "example +\.com", makes sure the period is recognized only as a period (and not expanded +to its meta-character meaning of any single character). + +[] - Characters enclosed in brackets will be matched if any of the enclosed +characters are encountered. For instance, "[0-9]" matches any numeric digit +(zero through nine). As an example, we can combine this with "+" to match any +digit one of more times: "[0-9]+". + +() - parentheses are used to group a sub-expression, or multiple +sub-expressions. + +| - The "bar" character works like an "or" conditional statement. A match is +successful if the sub-expression on either side of "|" matches. As an example: +"/(this|that) example/" uses grouping and the bar character and would match +either "this example" or "that example", and nothing else. + +These are just some of the ones you are likely to use when matching URLs with +Privoxy, and is a long way from a definitive list. This is enough to get us +started with a few simple examples which may be more illuminating: + +/.*/banners/.* - A simple example that uses the common combination of "." and " +*" to denote any character, zero or more times. In other words, any string at +all. So we start with a literal forward slash, then our regular expression +pattern (".*") another literal forward slash, the string "banners", another +forward slash, and lastly another ".*". We are building a directory path here. +This will match any file with the path that has a directory named "banners" in +it. The ".*" matches any characters, and this could conceivably be more forward +slashes, so it might expand into a much longer looking path. For example, this +could match: "/eye/hate/spammers/banners/annoy_me_please.gif", or just "/ +banners/annoying.html", or almost an infinite number of other possible +combinations, just so it has "banners" in the path somewhere. + +A now something a little more complex: + +/.*/adv((er)?ts?|ertis(ing|ements?))?/ - We have several literal forward +slashes again ("/"), so we are building another expression that is a file path +statement. We have another ".*", so we are matching against any conceivable +sub-path, just so it matches our expression. The only true literal that must +match our pattern is adv, together with the forward slashes. What comes after +the "adv" string is the interesting part. + +Remember the "?" means the preceding expression (either a literal character or +anything grouped with "(...)" in this case) can exist or not, since this means +either zero or one match. So "((er)?ts?|ertis(ing|ements?))" is optional, as +are the individual sub-expressions: "(er)", "(ing|ements?)", and the "s". The " +|" means "or". We have two of those. For instance, "(ing|ements?)", can expand +to match either "ing" OR "ements?". What is being done here, is an attempt at +matching as many variations of "advertisement", and similar, as possible. So +this would expand to match just "adv", or "advert", or "adverts", or +"advertising", or "advertisement", or "advertisements". You get the idea. But +it would not match "advertizements" (with a "z"). We could fix that by changing +our regular expression to: "/.*/adv((er)?ts?|erti(s|z)(ing|ements?))?/", which +would then match either spelling. + +/.*/advert[0-9]+\.(gif|jpe?g) - Again another path statement with forward +slashes. Anything in the square brackets "[]" can be matched. This is using +"0-9" as a shorthand expression to mean any digit one through nine. It is the +same as saying "0123456789". So any digit matches. The "+" means one or more of +the preceding expression must be included. The preceding expression here is +what is in the square brackets -- in this case, any digit one through nine. +Then, at the end, we have a grouping: "(gif|jpe?g)". This includes a "|", so +this needs to match the expression on either side of that bar character also. A +simple "gif" on one side, and the other side will in turn match either "jpeg" +or "jpg", since the "?" means the letter "e" is optional and can be matched +once or not at all. So we are building an expression here to match image GIF or +JPEG type image file. It must include the literal string "advert", then one or +more digits, and a "." (which is now a literal, and not a special character, +since it is escaped with "\"), and lastly either "gif", or "jpeg", or "jpg". +Some possible matches would include: "//advert1.jpg", "/nasty/ads/ +advert1234.gif", "/banners/from/hell/advert99.jpg". It would not match +"advert1.gif" (no leading slash), or "/adverts232.jpg" (the expression does not +include an "s"), or "/advert1.jsp" ("jsp" is not in the expression anywhere). + +We are barely scratching the surface of regular expressions here so that you +can understand the default Privoxy configuration files, and maybe use this +knowledge to customize your own installation. There is much, much more that can +be done with regular expressions. Now that you know enough to get started, you +can learn more on your own :/ + +More reading on Perl Compatible Regular expressions: http://www.perldoc.com/ +perl5.6/pod/perlre.html + +For information on regular expression based substititions and their +applications in filters, please see the filter file tutorial in this manual. + +------------------------------------------------------------------------------- + +14.2. Privoxy's Internal Pages + +Since Privoxy proxies each requested web page, it is easy for Privoxy to trap +certain special URLs. In this way, we can talk directly to Privoxy, and see how +it is configured, see how our rules are being applied, change these rules and +other configuration options, and even turn Privoxy's filtering off, all with a +web browser. + +The URLs listed below are the special ones that allow direct access to Privoxy. +Of course, Privoxy must be running to access these. If not, you will get a +friendly error message. Internet access is not necessary either. + + * Privoxy main page: + + http://config.privoxy.org/ + + There is a shortcut: http://p.p/ (But it doesn't provide a fallback to a + real page, in case the request is not sent through Privoxy) + + * Show information about the current configuration, including viewing and + editing of actions files: + + http://config.privoxy.org/show-status + + * Show the source code version numbers: + + http://config.privoxy.org/show-version + + * Show the browser's request headers: + + http://config.privoxy.org/show-request + + * Show which actions apply to a URL and why: + + http://config.privoxy.org/show-url-info + + * Toggle Privoxy on or off. In this case, "Privoxy" continues to run, but + only as a pass-through proxy, with no actions taking place: + + http://config.privoxy.org/toggle + + Short cuts. Turn off, then on: + + http://config.privoxy.org/toggle?set=disable + + http://config.privoxy.org/toggle?set=enable + +These may be bookmarked for quick reference. See next. + +------------------------------------------------------------------------------- + +14.2.1. Bookmarklets + +Below are some "bookmarklets" to allow you to easily access a "mini" version of +some of Privoxy's special pages. They are designed for MS Internet Explorer, +but should work equally well in Netscape, Mozilla, and other browsers which +support JavaScript. They are designed to run directly from your bookmarks - not +by clicking the links below (although that should work for testing). + +To save them, right-click the link and choose "Add to Favorites" (IE) or "Add +Bookmark" (Netscape). You will get a warning that the bookmark "may not be +safe" - just click OK. Then you can run the Bookmarklet directly from your +favorites/bookmarks. For even faster access, you can put them on the "Links" +bar (IE) or the "Personal Toolbar" (Netscape), and run them with a single +click. + + * Privoxy - Enable + + * Privoxy - Disable + + * Privoxy - Toggle Privoxy (Toggles between enabled and disabled) + + * Privoxy- View Status + + * Privoxy - Submit Actions File Feedback + +Credit: The site which gave us the general idea for these bookmarklets is +www.bookmarklets.com. They have more information about bookmarklets. + +------------------------------------------------------------------------------- + +14.3. Chain of Events + +Let's take a quick look at the basic sequence of events when a web page is +requested by your browser and Privoxy is on duty: + + * First, your web browser requests a web page. The browser knows to send the + request to Privoxy, which will in turn, relay the request to the remote web + server after passing the following tests: + + * Privoxy traps any request for its own internal CGI pages (e.g http://p.p/) + and sends the CGI page back to the browser. + + * Next, Privoxy checks to see if the URL matches any "+block" patterns. If + so, the URL is then blocked, and the remote web server will not be + contacted. "+handle-as-image" is then checked and if it does not match, an + HTML "BLOCKED" page is sent back. Otherwise, if it does match, an image is + returned. The type of image depends on the setting of "+set-image-blocker" + (blank, checkerboard pattern, or an HTTP redirect to an image elsewhere). + + * Untrusted URLs are blocked. If URLs are being added to the trust file, then + that is done. + + * If the URL pattern matches the "+fast-redirects" action, it is then + processed. Unwanted parts of the requested URL are stripped. + + * Now the rest of the client browser's request headers are processed. If any + of these match any of the relevant actions (e.g. "+hide-user-agent", etc.), + headers are suppressed or forged as determined by these actions and their + parameters. + + * Now the web server starts sending its response back (i.e. typically a web + page and related data). + + * First, the server headers are read and processed to determine, among other + things, the MIME type (document type) and encoding. The headers are then + filtered as deterimed by the "+crunch-incoming-cookies", + "+session-cookies-only", and "+downgrade-http-version" actions. + + * If the "+kill-popups" action applies, and it is an HTML or JavaScript + document, the popup-code in the response is filtered on-the-fly as it is + received. + + * If a "+filter" or "+deanimate-gifs" action applies (and the document type + fits the action), the rest of the page is read into memory (up to a + configurable limit). Then the filter rules (from default.filter) are + processed against the buffered content. Filters are applied in the order + they are specified in the default.filter file. Animated GIFs, if present, + are reduced to either the first or last frame, depending on the action + setting.The entire page, which is now filtered, is then sent by Privoxy + back to your browser. + + If neither "+filter" or "+deanimate-gifs" matches, then Privoxy passes the + raw data through to the client browser as it becomes available. + + * As the browser receives the now (probably filtered) page content, it reads + and then requests any URLs that may be embedded within the page source, + e.g. ad images, stylesheets, JavaScript, other HTML documents (e.g. + frames), sounds, etc. For each of these objects, the browser issues a new + request. And each such request is in turn processed as above. Note that a + complex web page may have many such embedded URLs. + +------------------------------------------------------------------------------- + +14.4. Anatomy of an Action + +The way Privoxy applies actions and filters to any given URL can be complex, +and not always so easy to understand what is happening. And sometimes we need +to be able to see just what Privoxy is doing. Especially, if something Privoxy +is doing is causing us a problem inadvertently. It can be a little daunting to +look at the actions and filters files themselves, since they tend to be filled +with regular expressions whose consequences are not always so obvious. + +One quick test to see if Privoxy is causing a problem or not, is to disable it +temporarily. This should be the first troubleshooting step. See the +Bookmarklets section on a quick and easy way to do this (be sure to flush +caches afterward!). + +Privoxy also provides the http://config.privoxy.org/show-url-info page that can +show us very specifically how actions are being applied to any given URL. This +is a big help for troubleshooting. + +First, enter one URL (or partial URL) at the prompt, and then Privoxy will tell +us how the current configuration will handle it. This will not help with +filtering effects (i.e. the "+filter" action) from the default.filter file +since this is handled very differently and not so easy to trap! It also will +not tell you about any other URLs that may be embedded within the URL you are +testing. For instance, images such as ads are expressed as URLs within the raw +page source of HTML pages. So you will only get info for the actual URL that is +pasted into the prompt area -- not any sub-URLs. If you want to know about +embedded URLs like ads, you will have to dig those out of the HTML source. Use +your browser's "View Page Source" option for this. Or right click on the ad, +and grab the URL. + +Let's try an example, google.com, and look at it one section at a time: + + Matches for http://google.com: + + In file: default.action [ View ] [ Edit ] + +{-add-header + -block + -crunch-outgoing-cookies + -crunch-incoming-cookies + +deanimate-gifs{last} + -downgrade-http-version + +fast-redirects + -filter{popups} + -filter{fun} + -filter{shockwave-flash} + -filter{crude-parental} + +filter{html-annoyances} + +filter{js-annoyances} + +filter{content-cookies} + +filter{webbugs} + +filter{refresh-tags} + +filter{nimda} + +filter{banners-by-size} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + -kill-popups + -limit-connect + +prevent-compression + -send-vanilla-wafer + -send-wafer + +session-cookies-only + +set-image-blocker{pattern} } +/ + + { -session-cookies-only } + .google.com + + { -fast-redirects } + .google.com + +In file: user.action [ View ] [ Edit ] +(no matches in this file) + +This tells us how we have defined our "actions", and which ones match for our +example, "google.com". The first listing is any matches for the standard.action +file. No hits at all here on "standard". Then next is "default", or our +default.action file. The large, multi-line listing, is how the actions are set +to match for all URLs, i.e. our default settings. If you look at your "actions" +file, this would be the section just below the "aliases" section near the top. +This will apply to all URLs as signified by the single forward slash at the end +of the listing -- "/". + +But we can define additional actions that would be exceptions to these general +rules, and then list specific URLs (or patterns) that these exceptions would +apply to. Last match wins. Just below this then are two explicit matches for +".google.com". The first is negating our previous cookie setting, which was for +"+session-cookies-only" (i.e. not persistent). So we will allow persistent +cookies for google. The second turns off any "+fast-redirects" action, allowing +this to take place unmolested. Note that there is a leading dot here -- +".google.com". This will match any hosts and sub-domains, in the google.com +domain also, such as "www.google.com". So, apparently, we have these two +actions defined somewhere in the lower part of our default.action file, and +"google.com" is referenced somewhere in these latter sections. + +Then, for our user.action file, we again have no hits. + +And finally we pull it all together in the bottom section and summarize how +Privoxy is applying all its "actions" to "google.com": + + Final results: + + -add-header + -block + -crunch-outgoing-cookies + -crunch-incoming-cookies + +deanimate-gifs{last} + -downgrade-http-version + -fast-redirects + -filter{popups} + -filter{fun} + -filter{shockwave-flash} + -filter{crude-parental} + +filter{html-annoyances} + +filter{js-annoyances} + +filter{content-cookies} + +filter{webbugs} + +filter{refresh-tags} + +filter{nimda} + +filter{banners-by-size} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + -kill-popups + -limit-connect + +prevent-compression + -send-vanilla-wafer + -send-wafer + -session-cookies-only + +set-image-blocker{pattern} + +Notice the only difference here to the previous listing, is to "fast-redirects" +and "session-cookies-only". + +Now another example, "ad.doubleclick.net": + + { +block +handle-as-image } + .ad.doubleclick.net + + { +block +handle-as-image } + ad*. + + { +block +handle-as-image } + .doubleclick.net + +We'll just show the interesting part here, the explicit matches. It is matched +three different times. Each as an "+block +handle-as-image", which is the +expanded form of one of our aliases that had been defined as: "+imageblock". ( +"Aliases" are defined in the first section of the actions file and typically +used to combine more than one action.) + +Any one of these would have done the trick and blocked this as an unwanted +image. This is unnecessarily redundant since the last case effectively would +also cover the first. No point in taking chances with these guys though ;-) +Note that if you want an ad or obnoxious URL to be invisible, it should be +defined as "ad.doubleclick.net" is done here -- as both a "+block" and an +"+handle-as-image". The custom alias "+imageblock" just simplifies the process +and make it more readable. + +One last example. Let's try "http://www.rhapsodyk.net/adsl/HOWTO/". This one is +giving us problems. We are getting a blank page. Hmmm... + + Matches for http://www.rhapsodyk.net/adsl/HOWTO/: + + In file: default.action [ View ] [ Edit ] + + {-add-header + -block + -crunch-incoming-cookies + -crunch-outgoing-cookies + +deanimate-gifs + -downgrade-http-version + +fast-redirects + +filter{html-annoyances} + +filter{js-annoyances} + +filter{kill-popups} + +filter{webbugs} + +filter{nimda} + +filter{banners-by-size} + +filter{hal} + +filter{fun} + +hide-forwarded-for-headers + +hide-from-header{block} + +hide-referer{forge} + -hide-user-agent + -handle-as-image + +kill-popups + +prevent-compression + -send-vanilla-wafer + -send-wafer + +session-cookies-only + +set-image-blocker{blank} } + / + + { +block +handle-as-image } + /ads + +Ooops, the "/adsl/" is matching "/ads"! But we did not want this at all! Now we +see why we get the blank page. We could now add a new action below this that +explicitly does not block ("{-block}") paths with "adsl". There are various +ways to handle such exceptions. Example: + + { -block } + /adsl + +Now the page displays ;-) Be sure to flush your browser's caches when making +such changes. Or, try using Shift+Reload. + +But now what about a situation where we get no explicit matches like we did +with: + + { +block +handle-as-image } + /ads + +That actually was very telling and pointed us quickly to where the problem was. +If you don't get this kind of match, then it means one of the default rules in +the first section is causing the problem. This would require some guesswork, +and maybe a little trial and error to isolate the offending rule. One likely +cause would be one of the "{+filter}" actions. Try adding the URL for the site +to one of aliases that turn off "+filter": + + {shop} + .quietpc.com + .worldpay.com # for quietpc.com + .jungle.com + .scan.co.uk + .forbes.com + +"{shop}" is an "alias" that expands to "{ -filter -session-cookies-only }". Or +you could do your own exception to negate filtering: + + {-filter} + .forbes.com + +This would probably be most appropriately put in user.action, for local site +exceptions. + +"{fragile}" is an alias that disables most actions. This can be used as a last +resort for problem sites. Remember to flush caches! If this still does not +work, you will have to go through the remaining actions one by one to find +which one(s) is causing the problem. + diff --git a/doc/USER_DOC_IS_WIDELY_OBSOLETED b/doc/webserver/.gitignore similarity index 100% rename from doc/USER_DOC_IS_WIDELY_OBSOLETED rename to doc/webserver/.gitignore diff --git a/doc/webserver/.htaccess b/doc/webserver/.htaccess new file mode 100644 index 00000000..e2c3e3db --- /dev/null +++ b/doc/webserver/.htaccess @@ -0,0 +1,26 @@ +# http://privoxy.org/.htaccess +# +# By Jon Foster +# +# Intercepts requests for these servers: +# http://ijbswa.sourceforge.net/ +# http://privoxy.com/ +# http://www.privoxy.com/ +# http://privoxy.org/ +# +# And redirects all requests to the canonical web server: +# http://www.privoxy.org/ +# +# +# Uses Apache's mod_rewrite +# See http://httpd.apache.org/docs/mod/mod_rewrite.html +# + +# Enable mod_rewrite +RewriteEngine on + + +RewriteCond %{HTTP_HOST} !^www\.privoxy\.org\.?$ [NC] +RewriteCond %{HTTP_HOST} !^$ +RewriteRule ^(.*)$ http://www\.privoxy.org/$1 [R,L] + diff --git a/doc/webserver/README.txt b/doc/webserver/README.txt new file mode 100644 index 00000000..4221e3a8 --- /dev/null +++ b/doc/webserver/README.txt @@ -0,0 +1,9 @@ +All files contained in this directory should eventually be +on the project's homepage + + ijbswa.sourceforge.net:/home/groups/i/ij/ijbswa/htdocs/ + +which is indeed http://ijbswa.sourceforge.net +and http://www.privoxy.org/. + +-Stefan, April 2002 \ No newline at end of file diff --git a/doc/webserver/actions/index.php b/doc/webserver/actions/index.php new file mode 100755 index 00000000..660f7be3 --- /dev/null +++ b/doc/webserver/actions/index.php @@ -0,0 +1,303 @@ +<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> +<html> + <!-- + + File : $Source: /cvsroot/ijbswa/current/doc/webserver/actions/index.php,v $ + + Purpose : Submit form for actions file feedback (step 1) + This file belongs in + ijbswa.sourceforge.net:/home/groups/i/ij/ijbswa/htdocs/ + + $Id: index.php,v 1.24 2002/04/28 16:56:47 swa Exp $ + + $Log: index.php,v $ + Revision 1.24 2002/04/28 16:56:47 swa + bookmarklet text + + Revision 1.23 2002/04/13 14:13:19 oes + Require exact AF version; Added hint where to go for BRs, FRs and SRs + + Revision 1.22 2002/04/11 10:11:04 oes + Actionsfile Version 1.2 + + Revision 1.21 2002/04/10 13:51:19 oes + Updated to new Bookmarklet + + Revision 1.20 2002/04/10 00:07:35 oes + Moved window sizing and positioning code to Bookmarklet + + Revision 1.19 2002/04/09 13:06:29 oes + Resize and jump to the right on load + + Revision 1.18 2002/04/08 17:03:29 oes + - Fixed problem with spaces in URLs + - Adapt to unified stylesheet + + Revision 1.17 2002/04/08 10:32:00 oes + cosmetics again + + Revision 1.16 2002/04/08 08:11:04 oes + Bumped up actions file number + + Revision 1.15 2002/04/07 17:13:08 oes + Ooops: fixing submit target url + + Revision 1.14 2002/04/07 15:10:12 oes + Restoring CVS history + + Revision 1.13 2002/04/06 15:19:35 oes + Clean-up, smarter handling of unreachable URLs + + Revision 1.12 2002/04/06 11:34:44 oes + Cosmetics + + Revision 1.11 2002/04/04 19:48:11 oes + Reactivating the scripts ,-) + + Revision 1.10 2002/04/03 19:36:04 swa + consistent look + + Revision 1.9 2002/04/02 19:32:45 oes + Adding temporary fix for missing curl support on SF (step 2 + 3 on oesterhelt.org) + + Revision 1.8 2002/04/02 08:45:22 oes + Made script location indepandant + + Revision 1.7 2002/04/02 07:21:34 oes + Using relative link for step2 + + Revision 1.6 2002/04/02 06:14:22 oes + Fixed bookmarklet + + Revision 1.5 2002/04/01 19:13:47 oes (based on 1.2) + Extended, fixed bugs, beefed up design, made IE-safe + + Revision 1.4 2002/03/30 20:44:44 swa + have consistent look and feel. part 2. + use correct urls. + + Revision 1.3 2002/03/30 19:49:34 swa + have consistent look and feel + + Revision 1.2 2002/03/30 03:35:48 oes + Updated bookmarklet + + Revision 1.1 2002/03/30 03:20:30 oes + Added Feedback mechanism for actions file + + + Copyright (C) 2002 the SourceForge Privoxy team. + http://www.privoxy.org/ + + Written by Andreas Oesterhelt + + This program is free software; you can redistribute it + and/or modify it under the terms of the GNU General + Public License as published by the Free Software + Foundation; either version 2 of the License, or (at + your option) any later version. + + This program is distributed in the hope that it will + be useful, but WITHOUT ANY WARRANTY; without even the + implied warranty of MERCHANTABILITY or FITNESS FOR A + PARTICULAR PURPOSE. See the GNU General Public + License for more details. + + The GNU General Public License should be included with + this file. If not, you can view it at + http://www.gnu.org/copyleft/gpl.html + or write to the Free Software Foundation, Inc., 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA. + + --> + + <head> + <meta http-equiv="Content-Style-Type" content="text/css"> + <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> + <meta http-equiv="Content-Script-Type" content="text/javascript"> + <link rel="stylesheet" type="text/css" href="../privoxy.css"> + <link rel="stylesheet" type="text/css" href="../p_feedback.css"> + +<?php + +/* + * Config: + */ +$required_actions_file_version = "1.2"; +$required_privoxy_version = "2.9.14"; +$actions_file_download = "http://www.privoxy.org/actions/testdrive.action"; +$submit_target = "http://www.oesterhelt.org/actions/step2.php"; + + +/* + * Debug: + */ +//phpinfo(); +//error_reporting(E_ALL); +error_reporting(E_NONE); + +/* + * Function: error_abort + * Purpose: Return an error page with $title and $message + */ +function error_abort($title, $message) +{ + if ($title == "invalid") /* shortcut */ + { + $title = "Invalid Feedback Submission"; + } + + echo (" <title>Privoxy: $title + + +
    +

    + Privoxy: $title +

    +
    +
    +
    + $message +
    +
    +

    Valid HTML 4.01 Transitional

    + + \n"); + exit; +} + + +/* + * Bookmarklet that leads here: + */ +$my_address = "http://" . $HTTP_SERVER_VARS["HTTP_HOST"] . $PHP_SELF; +$bookmarklet = "javascript:w=Math.floor(screen.width/2);h=Math.floor(screen.height*0.9);void(window.open('$my_address?url='+escape(location.href)," . + "'Feedback','screenx='+w+',width='+w+',height='+h+',scrollbars=yes,toolbar=no,location=no,directories=no,status=no,menubar=no," . + "copyhistory=no').focus());"; + +/* + * Provide default if URL unset + */ +if (!isset($url)) +{ + $url = "http://www.example.com/"; +} +else +{ + $url = strtr($url, " ", "+"); +} + +/* + * Deny feedback which is not based on our latest + * distribution: + */ +$headers = getallheaders(); + +if (!isset($headers["X-Actions-File-Version"]) || $headers["X-Actions-File-Version"] != $required_actions_file_version) +{ + + error_abort("invalid", "

    As much as we welcome your feedback, please note that + we can only accept problem reports based on: +

    +
      +
    • Privoxy version $required_privoxy_version or later
      • +
    • Actionsfile version version $required_actions_file_version
      • +
    +

    We hope you will understand that we feel unable to maintain concurrent versions of the file.

    +

    Hint: To upgrade your actions file, just right-click the above link, then save as default.action in + your Privoxy config directory +

    "); +} + +?> + + Privoxy Action List Feedback - Step 1 of 2 + + + +
    +

    + Privoxy Action List Feedback - Step 1 of 2 +

    +
    + +
    +

    + Thank you for reporting a missing or invalid action! +

    + +

    + The Privoxy team relies on your feedback to maintain an efficient actions file! +
    Please fill the below form and click to proceed to step 2. +

    + +

    + Please keep in mind that this is not the place for + support requests, +
    bug reports or + feature requests. +

    + +
    + +
    +
    + + + + + + + + + + + + + + + + + + +
    URL: + +
    Nature of the problem: + +
      + +
    +
    +
    + +
    +
    +

    Using Bookmarklets for Feedback

    +

    + To make it even easier for you, we provide a bookmarklet which will not only take you here from + any troubled page you might be surfing, but also pre-fill the form! +

    +

    + Please right-click the following link and choose "Add to Favorites" (IE) or "Add Bookmark for Link" (Netscape): + Privoxy - Submit Actions File Feedback +

    + +

    + You might get a warning that the bookmark "may not be safe" (IE) - just click OK. + For even faster access, you can put it on the "Links" bar (IE) or the "Personal Toolbar" (Netscape), + and submit feedback with a single click! +

    +
    +
    + +

    Valid HTML 4.01 Transitional

    + + + diff --git a/doc/webserver/actions/results/.htaccess b/doc/webserver/actions/results/.htaccess new file mode 100644 index 00000000..210ca5cc --- /dev/null +++ b/doc/webserver/actions/results/.htaccess @@ -0,0 +1,11 @@ +# http://privoxy.org/actions/results/.htaccess +# +# Keeps user feedback confidential by +# denying access to everybody. +# +# To view the feedback use: +# ssh ijbswa.sf.net cat /home/groups/i/ij/ijbswa/htdocs/actions/results/actions-feedback.txt +# + + Deny from all + diff --git a/doc/webserver/actions/results/actions-feedback.txt b/doc/webserver/actions/results/actions-feedback.txt new file mode 100644 index 00000000..e69de29b diff --git a/doc/webserver/actions/step2.php b/doc/webserver/actions/step2.php new file mode 100644 index 00000000..bdc08cd3 --- /dev/null +++ b/doc/webserver/actions/step2.php @@ -0,0 +1,518 @@ + + + + + + + + + + + + + +]*?src=[\'"]?(.*?)[\'" >]|i', $page, $matches); + + foreach (array_unique($matches[1]) as $image_link) + { + $result[] = link_to_absolute($url, $image_link); + } + + return count($result) ? $result : 0; +} + +/* + * Function: get_image_urls + * + * Purpose: If the page is a frameset, rerurn the image URLs from all + * its frame SRCes, else from the page itself. + */ +function get_image_urls($page, $url) +{ + + preg_match_all('|]*?src=[\'"]?(.*?)[\'" >]|i', $page, $matches); + + if (count($matches[1])) + { + foreach(array_unique($matches[1]) as $frame_link) + { + $framebuf = slurp_page(link_to_absolute($url, $frame_link)); + $result = array_merge($result, get_image_urls_sp($framebuf, link_to_absolute($url, $frame_link))); + } + } + else + { + $result = get_image_urls_sp($page, $url); + } + + return array_values(array_unique($result)); +} + + +/* + * Function: error_abort + * Purpose: Return an error page with $title and $message + */ +function error_abort($title, $message) +{ + if ($title == "invalid") /* shortcut */ + { + $title = "Invalid Feedback Submission"; + } + + echo (" Privoxy: $title + + +
    +

    + Privoxy: $title +

    +
    +
    +
    + $message +
    +
    +

    Valid HTML 4.01 Transitional

    + + \n"); + exit; +} + +/* + * Cannot start with step 2: + */ +if (!isset($referrer_url)) +{ + error_abort("invalid", "When submitting your feedback please start with + step 1."); +} + + +/* + * Cannot work on unknown problem: + */ +if (!isset($problem) || $problem == "INVALID") +{ + error_abort("invalid", "You need to select the nature of the problem in + step 1."); +} + + +/* + * If the protocol is missing from $referrer_url, prepend "http://" + */ +if (!preg_match('|^https?://|i', $referrer_url, $dummy)) +{ + $referrer_url = "http://" . $referrer_url; +} + + +/* + * Check if URL really exists and buffer its contents: + */ +if (($page = slurp_page($referrer_url)) == "FAILED") +{ + $url_confirm = " +
    +

    Confirm the URL:

    +
    +
    +

    + The URL that you entered could not be retrieved. Please make sure that +

    +

    + $referrer_url +

    +

    + is correct and publicly accssible. +

    +

    + Yes, I'm sure. +

    +
    "; +} +else +{ + $url_confirm = ""; +} + +/* + * Create description from problem code: + */ +switch($problem) +{ + case "P1": $problem_description="an advertisment was not blocked"; break; + case "P2": $problem_description="an innocent image was blocked"; break; + case "P3": $problem_description="the whole page was erraneously blocked"; break; + case "P4": $problem_description="the page needs popups but they don't work"; break; + case "P5": $problem_description="a problem occured"; break; + default: $problem_description="AN UNPROCESSABLE PROBLEM OCCURED"; +} + +?> + + Privoxy Action List Feedback - Step 2 of 2 + + + +
    +

    + Privoxy Action List Feedback - Step 2 of 2 +

    +
    + +
    + You are about to report that on + . +
    + +
    +
    +

    + + +

    + +
    + + 0) + { + /* + * Open section in
    ; Open table: + */ + echo ("
    Choose the images you want blocked from the following list:
    +
    +

    + + \n"); + /* + * Print one table row for each image found: + */ + for ($i=0; $i< $count; $i++) + { + $image_url = link_to_absolute($referrer_url, $image_urls[$i]); + + /* + * Print the row(s): + */ + echo (" + + + + + + + \n"); + } + echo ("
    + + + $image_url: + + +
    + \"banner +
    +

    + +
    + If the banner that you saw is not listed above, enter the URL here\n"); + } + else + { + echo ("
    + URL of the advertisment image:\n"); + } +} + +?> + +
    Hint: right-click the image, select "Copy image location" and paste the URL here. +
    +
    +

    + +

    +
    + +") ?> + + + +
    +

    URL of the innocent image: +
    Hint: right-click the image, select "Copy image location" and paste the URL here. +
    This may not work if the image was blocked by size or if +image-blocker is set to redirect.     +

    +
    +
    +

    + +

    +
    + +") ?> + +
    Severity:
    +
    +

    + +

    +
    + +
    + Remarks: (optional) +
    +
    +

    + +

    +
    + +
    + Your Name: (optional, public) +
    +
    +

    + +

    +
    + +
     
    +
    + +
    + +
    + +
    + +

    Valid HTML 4.01 Transitional

    + + + diff --git a/doc/webserver/actions/step3.php b/doc/webserver/actions/step3.php new file mode 100644 index 00000000..d3b60686 --- /dev/null +++ b/doc/webserver/actions/step3.php @@ -0,0 +1,345 @@ + + + + + + + + + + +Privoxy: $title + + +
    +

    + Privoxy: $title +

    +
    +
    +
    + $message +
    +
    +

    Valid HTML 4.01 Transitional

    + + \n"); + exit; +} + + +/* + * Cannot start with step 3: + */ +if (!isset($referrer_url)) +{ + error_abort("invalid", "When submitting your feedback please start with step 1."); +} + + +/* + * Cannot work on unknown problem: + */ +if (!isset($problem)) +{ + error_abort("invalid", "You need to select the nature of the problem in step 1."); +} + + +/* + * Don't accept unconfirmed URLs + */ +if (!isset($url_confirmed)) +{ + error_abort("invalid", "When submitting URLs that this script can't retrieve, you need to check \"Yes, I'm sure\" + step 2."); +} + + +/* + * Handle optional text fields: + */ +if (!isset($name) || ($name == "")) +{ + $name = "anonymous"; +} + +/* + * Assign unique ID: + */ +$item_id = date("U"); + + +/* + * Open the logfile or fail: + */ +$fp = fopen($logfile, "a"); + +if(!$fp) +{ + echo (" Internal Script Error + + +
    +

    Privoxy: Internal Script Error

    +
    +
    +
    +

    + This script was unable to open its logfile. +

    +

    + Please mail its owner! +

    +
    +
    + + "); + exit; +} + + +/* + * Write Head (type, severity, user, client-ip) + * and remarks field: + */ +fwrite($fp, "\n#FEEDBACK ID $item_id TYPE $problem SEVERITY $severity FROM $name ON $REMOTE_ADDR VERIFIED $url_confirmed TIME " . date("r") ."\n"); +if (isset($remarks)) +{ + $lines = explode("\n", $remarks); + foreach ($lines as $line) + { + fwrite($fp, "#REMARKS: $line\n"); + } +} + + +/* + * Depending on the type of problem reported, + * we need to write additional data: + */ +switch ($problem) +{ + /* + * Banner not blocked: + */ + case "P1": + fwrite($fp, "#BLOCK-REFERRER: $referrer_url\n"); + if (isset($num_images)) + { + for($i=0; $i < $num_images; $i++) + { + if (isset($block_image[$i])) + { + fwrite($fp, "#BLOCK-URL: $image_url[$i]\n"); + $trackertext .= "Block image: $image_url[$i]\n\n"; + } + } + } + if (isset($manual_image_url) && ($manual_image_url != "")) + { + fwrite($fp, "#BLOCK-URL: $manual_image_url\n"); + $trackertext .= "Block image: $manual_image_url\n\n"; + } + break; + + /* + * Innocent image blocked: + */ + case "P2": + fwrite($fp, "#UNBLOCK-REFERRER: $referrer_url\n"); + if (isset($image_url) && ($image_url != "")) + { + fwrite($fp, "#UNBLOCK-URL: $image_url\n"); + $trackertext .= "Unblock image: $image_url\n\n"; + } + break; + + /* + * All other problems: + */ + default: + fwrite($fp, "#PROBLEM-URL: $referrer_url\n"); + break; +} + +fclose($fp); + +/* + * Notify our SF tracker that new data is waiting to be + * processed + */ +switch($problem) +{ + case "P1": $category_id="412811"; $summary = "Ad not blocked "; break; + case "P2": $category_id="412810"; $summary = "Image blocked ";break; + case "P3": $category_id="412812"; $summary = "Page plocked ";break; + case "P4": $category_id="412813"; $summary = "Popups blocked ";break; + case "P5": $category_id="412814"; $summary = "Other problem ";break; + default: $category_id="412814"; $summary = "IMPOSSIBLE ";break; +} + +$summary .= "on " . $referrer_url . " (" .$item_id . ")"; +$priority = 3 * $severity; + +$details = urlencode("On " . date("r") . " new data was received from $name:\n\n" + ."URL: $referrer_url\n\n$trackertext\nRemarks:\n$remarks"); + +$postfields = ( "group_id=11118&atid=460288&func=postadd&category_id=$category_id&artifact_group_id=195890" . + "&priority=$priority&summary=$summary&details=$details" ); + +$ch = curl_init ("http://sourceforge.net/tracker/index.php"); +curl_setopt($ch, CURLOPT_HEADER, 0); +curl_setopt($ch, CURLOPT_FAILONERROR, 1); +curl_setopt($ch, CURLOPT_TIMEOUT, 20); +curl_setopt($ch, CURLOPT_POST, 1); +curl_setopt($ch, CURLOPT_POSTFIELDS, $postfields); + +ob_start(); +curl_exec($ch); +ob_end_clean(); + +curl_close ($ch); + +?> + + Privoxy Action List Feedback - Result + + + +
    +

    + Privoxy Action List Feedback - Result +

    +
    + +
    +

    + Thank you very much for taking the time to submit your feedback! +

    + +

    + The developers will review and use your submission to improve the + distribution actions file. +

    + +

    + +

    + +
    + +

    Valid HTML 4.01 Transitional

    + + + diff --git a/doc/webserver/actions/testdrive.action b/doc/webserver/actions/testdrive.action new file mode 100644 index 00000000..7e0250b0 --- /dev/null +++ b/doc/webserver/actions/testdrive.action @@ -0,0 +1,164 @@ +############################################################################# +# +# Bare-bones actions file for Privoxy pre release testdrive +# +# For information, see http://www.oesterhelt.org/testdrive +# +############################################################################# +{{alias}} +# Useful aliases ++imageblock = +block +image + +# Fragile sites should have the minimum changes +fragile = -block -deanimate-gifs -fast-redirects -filter -hide-referer -no-cookies-keep -no-popups + +# Shops should be allowed to set persistent cookies +shop = -filter -no-cookies-keep + +############################################################################# +# Defaults +############################################################################# +{\ +-add-header \ +-block \ ++deanimate-gifs{last} \ +-downgrade \ ++filter{html-annoyances} \ ++filter{content-cookies} \ ++filter{js-annoyances} \ ++filter{no-popups} \ ++filter{webbugs} \ ++filter{nimda} \ ++filter{banners-by-size} \ ++no-compression \ ++hide-forwarded \ ++hide-from{block} \ ++hide-referer{forge} \ +-hide-user-agent \ +-image \ ++image-blocker{pattern} \ ++no-cookies-keep \ +-no-cookies-read \ +-no-cookies-set \ ++no-popups \ +-vanilla-wafer \ +-wafer \ +} +/ # Match all URLs + +{+filter{noflash}} +.moorhuhn.de +[+filter{reorder}} +.oesterhelt.org + +############################################################################# +# Needed for automatic feedback evaluation; Please don't delete! +############################################################################# +{+add-header{X-Actions-File-Version: 1.2} -filter -no-popups} +.privoxy.org/actions +.oesterhelt.org/actions + + +############################################################################# +# These sites are very complex and require +# minimal interference. +############################################################################# +{fragile} +.office.microsoft.com +.windowsupdate.microsoft.com + +############################################################################# +# Shopping sites - still want to block ads. +############################################################################# +{shop} +.quietpc.com +.worldpay.com # for quietpc.com +.jungle.com +.scan.co.uk + +############################################################################# +# These shops require pop-ups +############################################################################# +{shop -no-popups -filter{no-poups}} +.dabs.com +.overclockers.co.uk + +############################################################################# +# Sometimes fast-redirects catches things by mistake +############################################################################# +{-fast-redirects} +www.ukc.ac.uk/cgi-bin/wac\.cgi\? +login.yahoo.com +edit.europe.yahoo.com +.google.com +.altavista.com/.*(like|url|link):http +.altavista.com/trans.*urltext=http +.speedfind.de +.nytimes.com + +############################################################################# +# Don't filter code! +############################################################################# +{-filter} +.cvs.sourceforge.net + +############################################################################# +# Imagelist: +############################################################################# +{+image} +############################################################################# +/.*\.(gif|jpe?g|png|bmp|ico) + +############################################################################# +{+imageblock} +############################################################################# +#BLOCK-REFERRER: http://www.cnn.com/ +#BLOCK-REFERRER: http://www.aol.com/ +ar.atwola.com + +#BLOCK-REFERRER: http://www.altavista.com/ +.ad.doubleclick.net + +#BLOCK-REFERRER: +bs*.gsanet.com +bs*.einets.com + +#BLOCK-REFERRER: Opera browser built-in +.qkimg.net + +#BLOCK-REFERRER: http://www.tecchannel.de/index.html +#BLOCK-REFERRER: and thousands more +ad.*.doubleclick.net + +############################################################################# +# Blocklist: +############################################################################# +{+block} +############################################################################# +#BLOCK-GENERIC: +ad*. +.*ads. +banner?. +count*. + +/(?:.*/)?(ads(erver?|tream)?|.*?ads|adv(ert(s|enties|is(ing|e?ments)?)?)?|(ad)?[-_]?banner(s|ads?|farm)?)/ +/.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) +/(?:.*/)?(publicite|werbung|rekla(ma|me|am)|annonse|maino(kset|nta|s)?)/ + +#BLOCK-REFERRER: http://www.brooksbrothers.com +#BLOCK-REFERRER: http://www.autodesk.com +.hitbox.com + +############################################################################# +{-block} +############################################################################# +include.ebay.com +advogato.org +adsl. +ad[ud]*. +advice. +.edu +.ac.uk +.uni-*.de +www.ugu.com/sui/ugu/adv +.*downloads. diff --git a/doc/webserver/config/.htaccess b/doc/webserver/config/.htaccess new file mode 100644 index 00000000..f7d165f0 --- /dev/null +++ b/doc/webserver/config/.htaccess @@ -0,0 +1,34 @@ +# http://ijbswa.sourceforge.net/config/.htaccess +# +# By Jon Foster +# +# Redirects any request for any file in this directory tree +# to an error page. The error page is reached through the +# URL http://www.privoxy.org/config/ and is actually in +# the file index.php +# +# Uses Apache's mod_rewrite +# See http://httpd.apache.org/docs/mod/mod_rewrite.html +# + +# Enable mod_rewrite +RewriteEngine on + +# we are reached via /config/ prefix +RewriteBase /config/ + +# The only file which really exists is index.php - allow this +RewriteCond %{HTTP_HOST} ^www\.privoxy\.org\.?$ [NC,OR] +RewriteCond %{HTTP_HOST} ^$ +RewriteRule index.php - [L] + +# Silently redirect the config dir to index.php +RewriteCond %{HTTP_HOST} ^www\.privoxy\.org\.?$ [NC,OR] +RewriteCond %{HTTP_HOST} ^$ +RewriteRule ^$ index.php [L] + +# anything else gets redirected to the config dir, and we update +# the browser's location bar. +RewriteRule ^(.*)$ http://www.privoxy.org/config/ [R,L] + + diff --git a/doc/webserver/config/index.php b/doc/webserver/config/index.php new file mode 100644 index 00000000..f7ef30ee --- /dev/null +++ b/doc/webserver/config/index.php @@ -0,0 +1,63 @@ + + + + + +Privoxy not running + + + + + +

    Privoxy isn't working

    + +

    If you were redirected to this page, it means that you aren't using +Privoxy.   Please check your browser settings.

    + +

    Until version 2.9.13, Privoxy was also known as Internet +Junkbuster. If you recently upgraded, then the web-based interface has +moved - it is now at http://config.privoxy.org/ +(Short form: p.p +[Privoxy Proxy]).

    + +

    Please see the Privoxy home page.

    + + + + diff --git a/doc/webserver/default_page.php b/doc/webserver/default_page.php new file mode 100644 index 00000000..75a4fdcc --- /dev/null +++ b/doc/webserver/default_page.php @@ -0,0 +1,69 @@ + + + +SourceForge: Welcome + + + + + + + + + + + +
       + Home | + About | + Partners | + Contact Us
    + + + + + + + + + +
    + + + VA Linux Systems +
    + + + + + + + +
    +

    +

    Welcome to http:///

    +

    We're Sorry but this Project hasn't yet uploaded their personal webpage yet.
    + Please check back soon for updates or visit SourceForge


    +
    +
    + + + + + + + +
    + All trademarks and copyrights on this page are properties of their respective owners. Forum comments are owned by the poster. The rest is copyright ©1999-2000 VA Linux Systems, Inc. +
    + + + + diff --git a/doc/webserver/developer-manual/coding.html b/doc/webserver/developer-manual/coding.html new file mode 100644 index 00000000..364af8e1 --- /dev/null +++ b/doc/webserver/developer-manual/coding.html @@ -0,0 +1,2266 @@ +Coding Guidelines
    Privoxy Developer Manual
    PrevNext

    4. Coding Guidelines

    4.1. Introduction

    This set of standards is designed to make our lives easier. It is + developed with the simple goal of helping us keep the "new and improved + Privoxy" consistent and reliable. Thus making + maintenance easier and increasing chances of success of the + project.

    And that of course comes back to us as individuals. If we can + increase our development and product efficiencies then we can solve more + of the request for changes/improvements and in general feel good about + ourselves. ;->

    4.2. Using Comments

    4.2.1. Comment, Comment, Comment

    Explanation:

    Comment as much as possible without commenting the obvious. + For example do not comment "aVariable is equal to bVariable". + Instead explain why aVariable should be equal to the bVariable. + Just because a person can read code does not mean they will + understand why or what is being done. A reader may spend a lot + more time figuring out what is going on when a simple comment + or explanation would have prevented the extra research. Please + help your brother IJB'ers out!

    The comments will also help justify the intent of the code. + If the comment describes something different than what the code + is doing then maybe a programming error is occurring.

    Example:

    /* if page size greater than 1k ... */
+if ( PageLength() > 1024 )
+{
+    ... "block" the page up ...
+}
+
+/* if page size is small, send it in blocks */
+if ( PageLength() > 1024 )
+{
+    ... "block" the page up ...
+}
+
+This demonstrates 2 cases of "what not to do".  The first is a
+"syntax comment".  The second is a comment that does not fit what
+is actually being done.

    4.2.2. Use blocks for comments

    Explanation:

    Comments can help or they can clutter. They help when they + are differentiated from the code they describe. One line + comments do not offer effective separation between the comment + and the code. Block identifiers do, by surrounding the code + with a clear, definable pattern.

    Example:

    /*********************************************************************
+ * This will stand out clearly in your code!
+ *********************************************************************/
+if ( thisVariable == thatVariable )
+{
+   DoSomethingVeryImportant();
+}
+
+
+/* unfortunately, this may not */
+if ( thisVariable == thatVariable )
+{
+   DoSomethingVeryImportant();
+}
+
+
+if ( thisVariable == thatVariable ) /* this may not either */
+{
+   DoSomethingVeryImportant();
+}

    Exception:

    If you are trying to add a small logic comment and do not + wish to "disrupt" the flow of the code, feel free to use a 1 + line comment which is NOT on the same line as the code.

    4.2.3. Keep Comments on their own line

    Explanation:

    It goes back to the question of readability. If the comment + is on the same line as the code it will be harder to read than + the comment that is on its own line.

    There are three exceptions to this rule, which should be + violated freely and often: during the definition of variables, + at the end of closing braces, when used to comment + parameters.

    Example:

    /*********************************************************************
+ * This will stand out clearly in your code,
+ * But the second example won't.
+ *********************************************************************/
+if ( thisVariable == thatVariable )
+{
+   DoSomethingVeryImportant();
+}
+
+if ( thisVariable == thatVariable ) /*can you see me?*/
+{
+   DoSomethingVeryImportant(); /*not easily*/
+}
+
+
+/*********************************************************************
+ * But, the encouraged exceptions:
+ *********************************************************************/
+int urls_read     = 0;     /* # of urls read + rejected */
+int urls_rejected = 0;     /* # of urls rejected */
+
+if ( 1 == X )
+{
+   DoSomethingVeryImportant();
+}
+
+
+short DoSomethingVeryImportant(
+   short firstparam,   /* represents something */
+   short nextparam     /* represents something else */ )
+{
+   ...code here...
+
+}   /* -END- DoSomethingVeryImportant */

    4.2.4. Comment each logical step

    Explanation:

    Logical steps should be commented to help others follow the + intent of the written code and comments will make the code more + readable.

    If you have 25 lines of code without a comment, you should + probably go back into it to see where you forgot to put + one.

    Most "for", "while", "do", etc... loops _probably_ need a + comment. After all, these are usually major logic + containers.

    4.2.5. Comment All Functions Thoroughly

    Explanation:

    A reader of the code should be able to look at the comments + just prior to the beginning of a function and discern the + reason for its existence and the consequences of using it. The + reader should not have to read through the code to determine if + a given function is safe for a desired use. The proper + information thoroughly presented at the introduction of a + function not only saves time for subsequent maintenance or + debugging, it more importantly aids in code reuse by allowing a + user to determine the safety and applicability of any function + for the problem at hand. As a result of such benefits, all + functions should contain the information presented in the + addendum section of this document.

    4.2.6. Comment at the end of braces if the + content is more than one screen length

    Explanation:

    Each closing brace should be followed on the same line by a + comment that describes the origination of the brace if the + original brace is off of the screen, or otherwise far away from + the closing brace. This will simplify the debugging, + maintenance, and readability of the code.

    As a suggestion , use the following flags to make the + comment and its brace more readable:

    use following a closing brace: } /* -END- if() or while () + or etc... */

    Example:

    if ( 1 == X )
+{
+   DoSomethingVeryImportant();
+   ...some long list of commands...
+} /* -END- if x is 1 */
+
+or:
+
+if ( 1 == X )
+{
+   DoSomethingVeryImportant();
+   ...some long list of commands...
+} /* -END- if ( 1 == X ) */

    4.3. Naming Conventions

    4.3.1. Variable Names

    Explanation:

    Use all lowercase, and separate words via an underscore + ('_'). Do not start an identifier with an underscore. (ANSI C + reserves these for use by the compiler and system headers.) Do + not use identifiers which are reserved in ANSI C++. (E.g. + template, class, true, false, ...). This is in case we ever + decide to port Privoxy to C++.

    Example:

    int ms_iis5_hack = 0;

    Instead of:

    int msiis5hack = 0; int msIis5Hack = 0;

    4.3.2. Function Names

    Explanation:

    Use all lowercase, and separate words via an underscore + ('_'). Do not start an identifier with an underscore. (ANSI C + reserves these for use by the compiler and system headers.) Do + not use identifiers which are reserved in ANSI C++. (E.g. + template, class, true, false, ...). This is in case we ever + decide to port Privoxy to C++.

    Example:

    int load_some_file( struct client_state *csp )

    Instead of:

    int loadsomefile( struct client_state *csp )
+int loadSomeFile( struct client_state *csp )

    4.3.3. Header file prototypes

    Explanation:

    Use a descriptive parameter name in the function prototype + in header files. Use the same parameter name in the header file + that you use in the c file.

    Example:

    (.h) extern int load_aclfile( struct client_state *csp );
+(.c) int load_aclfile( struct client_state *csp )

    Instead of: +
    (.h) extern int load_aclfile( struct client_state * ); or 
+(.h) extern int load_aclfile(); 
+(.c) int load_aclfile( struct client_state *csp )

    4.3.4. Enumerations, and #defines

    Explanation:

    Use all capital letters, with underscores between words. Do + not start an identifier with an underscore. (ANSI C reserves + these for use by the compiler and system headers.)

    Example:

    (enumeration) : enum Boolean { FALSE, TRUE };
+(#define) : #define DEFAULT_SIZE 100;

    Note: We have a standard naming scheme for #defines + that toggle a feature in the preprocessor: FEATURE_>, where + > is a short (preferably 1 or 2 word) description.

    Example:

    #define FEATURE_FORCE 1
+
+#ifdef FEATURE_FORCE
+#define FORCE_PREFIX blah
+#endif /* def FEATURE_FORCE */

    4.3.5. Constants

    Explanation:

    Spell common words out entirely (do not remove vowels).

    Use only widely-known domain acronyms and abbreviations. + Capitalize all letters of an acronym.

    Use underscore (_) to separate adjacent acronyms and + abbreviations. Never terminate a name with an underscore.

    Example:

    #define USE_IMAGE_LIST 1

    Instead of:

    #define USE_IMG_LST 1 or 
+#define _USE_IMAGE_LIST 1 or
+#define USE_IMAGE_LIST_ 1 or 
+#define use_image_list 1 or
+#define UseImageList 1

    4.4. Using Space

    4.4.1. Put braces on a line by themselves.

    Explanation:

    The brace needs to be on a line all by itself, not at the + end of the statement. Curly braces should line up with the + construct that they're associated with. This practice makes it + easier to identify the opening and closing braces for a + block.

    Example:

    if ( this == that )
+{
+   ...
+}

    Instead of:

    if ( this == that ) { ... }

    or

    if ( this == that ) { ... }

    Note: In the special case that the if-statement is + inside a loop, and it is trivial, i.e. it tests for a + condition that is obvious from the purpose of the block, + one-liners as above may optically preserve the loop structure + and make it easier to read.

    Status: developer-discretion.

    Example exception:

    while ( more lines are read )
+{
+   /* Please document what is/is not a comment line here */
+   if ( it's a comment ) continue;
+
+   do_something( line );
+}

    4.4.2. ALL control statements should have a + block

    Explanation:

    Using braces to make a block will make your code more + readable and less prone to error. All control statements should + have a block defined.

    Example:

    if ( this == that )
+{
+   DoSomething();
+   DoSomethingElse();
+}

    Instead of:

    if ( this == that ) DoSomething(); DoSomethingElse();

    or

    if ( this == that ) DoSomething();

    Note: The first example in "Instead of" will execute + in a manner other than that which the developer desired (per + indentation). Using code braces would have prevented this + "feature". The "explanation" and "exception" from the point + above also applies.

    4.4.3. Do not belabor/blow-up boolean + expressions

    Example:

    structure->flag = ( condition );

    Instead of:

    if ( condition ) { structure->flag = 1; } else { + structure->flag = 0; }

    Note: The former is readable and concise. The later + is wordy and inefficient. Please assume that any developer new + to the project has at least a "good" knowledge of C/C++. (Hope + I do not offend by that last comment ... 8-)

    4.4.4. Use white space freely because it is + free

    Explanation:

    Make it readable. The notable exception to using white space + freely is listed in the next guideline.

    Example:

    int firstValue   = 0;
+int someValue    = 0;
+int anotherValue = 0;
+int thisVariable = 0;
+
+if ( thisVariable == thatVariable )
+
+firstValue = oldValue + ( ( someValue - anotherValue ) - whatever )

    4.4.5. Don't use white space around structure + operators

    Explanation:

    - structure pointer operator ( "->" ) - member operator ( + "." ) - functions and parentheses

    It is a general coding practice to put pointers, references, + and function parentheses next to names. With spaces, the + connection between the object and variable/function name is not + as clear.

    Example:

    aStruct->aMember;
+aStruct.aMember;
+FunctionName();

    Instead of: aStruct -> aMember; aStruct . aMember; + FunctionName ();

    4.4.6. Make the last brace of a function stand + out

    Example:

    int function1( ... )
+{
+   ...code...
+   return( retCode );
+
+}   /* -END- function1 */
+
+
+int function2( ... )
+{
+}   /* -END- function2 */

    Instead of:

    int function1( ... ) { ...code... return( retCode ); } int + function2( ... ) { }

    Note: Use 1 blank line before the closing brace and 2 + lines afterward. This makes the end of function standout to + the most casual viewer. Although function comments help + separate functions, this is still a good coding practice. In + fact, I follow these rules when using blocks in "for", "while", + "do" loops, and long if {} statements too. After all whitespace + is free!

    Status: developer-discretion on the number of blank + lines. Enforced is the end of function comments.

    4.4.7. Use 3 character indentions

    Explanation:

    If some use 8 character TABs and some use 3 character TABs, + the code can look *very* ragged. So use 3 character indentions + only. If you like to use TABs, pass your code through a filter + such as "expand -t3" before checking in your code.

    Example:

    static const char * const url_code_map[256] =
+{
+   NULL, ...
+};
+
+
+int function1( ... )
+{
+   if ( 1 )
+   {
+      return( ALWAYS_TRUE );
+   }
+   else
+   {
+      return( HOW_DID_YOU_GET_HERE );
+   }
+
+   return( NEVER_GETS_HERE );
+
+}

    4.5. Initializing

    4.5.1. Initialize all variables

    Explanation:

    Do not assume that the variables declared will not be used + until after they have been assigned a value somewhere else in + the code. Remove the chance of accidentally using an unassigned + variable.

    Example:

    short anShort = 0;
+float aFloat  = 0;
+struct *ptr = NULL;

    Note: It is much easier to debug a SIGSEGV if the + message says you are trying to access memory address 00000000 + and not 129FA012; or arrayPtr[20] causes a SIGSEV vs. + arrayPtr[0].

    Status: developer-discretion if and only if the + variable is assigned a value "shortly after" declaration.

    4.6. Functions

    4.6.1. Name functions that return a boolean as a + question.

    Explanation:

    Value should be phrased as a question that would logically + be answered as a true or false statement

    Example:

    ShouldWeBlockThis();
+ContainsAnImage();
+IsWebPageBlank();

    4.6.2. Always specify a return type for a + function.

    Explanation:

    The default return for a function is an int. To avoid + ambiguity, create a return for a function when the return has a + purpose, and create a void return type if the function does not + need to return anything.

    4.6.3. Minimize function calls when iterating by + using variables

    Explanation:

    It is easy to write the following code, and a clear argument + can be made that the code is easy to understand:

    Example:

    for ( size_t cnt = 0; cnt < blockListLength(); cnt ++ )
+{
+   ....
+}

    Note: Unfortunately, this makes a function call for + each and every iteration. This increases the overhead in the + program, because the compiler has to look up the function each + time, call it, and return a value. Depending on what occurs in + the blockListLength() call, it might even be creating and + destroying structures with each iteration, even though in each + case it is comparing "cnt" to the same value, over and over. + Remember too - even a call to blockListLength() is a function + call, with the same overhead.

    Instead of using a function call during the iterations, + assign the value to a variable, and evaluate using the + variable.

    Example:

    size_t len = blockListLength();
+
+for ( size_t cnt = 0; cnt < len; cnt ++ )
+{
+   ....
+}

    Exceptions: if the value of blockListLength() *may* + change or could *potentially* change, then you must code the + function call in the for/while loop.

    4.6.4. Pass and Return by Const Reference

    Explanation:

    This allows a developer to define a const pointer and call + your function. If your function does not have the const + keyword, we may not be able to use your function. Consider + strcmp, if it were defined as: extern int strcmp( char *s1, + char *s2 );

    I could then not use it to compare argv's in main: int main( + int argc, const char *argv[] ) { strcmp( argv[0], "privoxy" + ); }

    Both these pointers are *const*! If the c runtime library + maintainers do it, we should too.

    4.6.5. Pass and Return by Value

    Explanation:

    Most structures cannot fit onto a normal stack entry (i.e. + they are not 4 bytes or less). Aka, a function declaration + like: int load_aclfile( struct client_state csp )

    would not work. So, to be consistent, we should declare all + prototypes with "pass by value": int load_aclfile( struct + client_state *csp )

    4.6.6. Names of include files

    Explanation:

    Your include statements should contain the file name without + a path. The path should be listed in the Makefile, using -I as + processor directive to search the indicated paths. An exception + to this would be for some proprietary software that utilizes a + partial path to distinguish their header files from system or + other header files.

    Example:

    #include <iostream.h>     /* This is not a local include */
+#include "config.h"       /* This IS a local include */

    Exception:

    /* This is not a local include, but requires a path element. */ 
+#include <sys/fileName.h>

    Note: Please! do not add "-I." to the Makefile + without a _very_ good reason. This duplicates the #include + "file.h" behavior.

    4.6.7. Provide multiple inclusion + protection

    Explanation:

    Prevents compiler and linker errors resulting from + redefinition of items.

    Wrap each header file with the following syntax to prevent + multiple inclusions of the file. Of course, replace PROJECT_H + with your file name, with "." Changed to "_", and make it + uppercase.

    Example:

    #ifndef PROJECT_H_INCLUDED
+#define PROJECT_H_INCLUDED
+ ...
+#endif /* ndef PROJECT_H_INCLUDED */

    4.6.8. Use `extern "C"` when appropriate

    Explanation:

    If our headers are included from C++, they must declare our + functions as `extern "C"`. This has no cost in C, but increases + the potential re-usability of our code.

    Example:

    #ifdef __cplusplus
+extern "C"
+{
+#endif /* def __cplusplus */
+
+... function definitions here ...
+
+#ifdef __cplusplus
+}
+#endif /* def __cplusplus */

    4.6.9. Where Possible, Use Forward Struct + Declaration Instead of Includes

    Explanation:

    Useful in headers that include pointers to other struct's. + Modifications to excess header files may cause needless + compiles.

    Example:

    /*********************************************************************
+ * We're avoiding an include statement here!
+ *********************************************************************/
+struct file_list;
+extern file_list *xyz;

    Note: If you declare "file_list xyz;" (without the + pointer), then including the proper header file is necessary. + If you only want to prototype a pointer, however, the header + file is unnecessary.

    Status: Use with discretion.

    4.7. General Coding Practices

    4.7.1. Turn on warnings

    Explanation

    Compiler warnings are meant to help you find bugs. You + should turn on as many as possible. With GCC, the switch is + "-Wall". Try and fix as many warnings as possible.

    4.7.2. Provide a default case for all switch + statements

    Explanation:

    What you think is guaranteed is never really guaranteed. The + value that you don't think you need to check is the one that + someday will be passed. So, to protect yourself from the + unknown, always have a default step in a switch statement.

    Example:

    switch( hash_string( cmd ) )
+{
+   case hash_actions_file :
+      ... code ...
+      break;
+
+   case hash_confdir :
+      ... code ...
+      break;
+
+   default :
+      log_error( ... );
+      ... anomaly code goes here ...
+      continue; / break; / exit( 1 ); / etc ...
+
+} /* end switch( hash_string( cmd ) ) */

    Note: If you already have a default condition, you + are obviously exempt from this point. Of note, most of the + WIN32 code calls `DefWindowProc' after the switch statement. + This API call *should* be included in a default statement.

    Another Note: This is not so much a readability issue + as a robust programming issue. The "anomaly code goes here" may + be no more than a print to the STDERR stream (as in + load_config). Or it may really be an ABEND condition.

    Status: Programmer discretion is advised.

    4.7.3. Try to avoid falling through cases in a + switch statement.

    Explanation:

    In general, you will want to have a 'break' statement within + each 'case' of a switch statement. This allows for the code to + be more readable and understandable, and furthermore can + prevent unwanted surprises if someone else later gets creative + and moves the code around.

    The language allows you to plan the fall through from one + case statement to another simply by omitting the break + statement within the case statement. This feature does have + benefits, but should only be used in rare cases. In general, + use a break statement for each case statement.

    If you choose to allow fall through, you should comment both + the fact of the fall through and reason why you felt it was + necessary.

    4.7.4. Use 'long' or 'short' Instead of + 'int'

    Explanation:

    On 32-bit platforms, int usually has the range of long. On + 16-bit platforms, int has the range of short.

    Status: open-to-debate. In the case of most FSF + projects (including X/GNU-Emacs), there are typedefs to int4, + int8, int16, (or equivalence ... I forget the exact typedefs + now). Should we add these to IJB now that we have a "configure" + script?

    4.7.5. Don't mix size_t and other types

    Explanation:

    The type of size_t varies across platforms. Do not make + assumptions about whether it is signed or unsigned, or about + how long it is. Do not compare a size_t against another + variable of a different type (or even against a constant) + without casting one of the values. Try to avoid using size_t if + you can.

    4.7.6. Declare each variable and struct on its + own line.

    Explanation:

    It can be tempting to declare a series of variables all on + one line. Don't.

    Example:

    long a = 0;
+long b = 0;
+long c = 0;

    Instead of:

    long a, b, c;

    Explanation: - there is more room for comments on the + individual variables - easier to add new variables without + messing up the original ones - when searching on a variable to + find its type, there is less clutter to "visually" + eliminate

    Exceptions: when you want to declare a bunch of loop + variables or other trivial variables; feel free to declare them + on 1 line. You should, although, provide a good comment on + their functions.

    Status: developer-discretion.

    4.7.7. Use malloc/zalloc sparingly

    Explanation:

    Create a local struct (on the stack) if the variable will + live and die within the context of one function call.

    Only "malloc" a struct (on the heap) if the variable's life + will extend beyond the context of one function call.

    Example:

    If a function creates a struct and stores a pointer to it in a
+list, then it should definitely be allocated via `malloc'.

    4.7.8. The Programmer Who Uses 'malloc' is + Responsible for Ensuring 'free'

    Explanation:

    If you have to "malloc" an instance, you are responsible for + insuring that the instance is `free'd, even if the deallocation + event falls within some other programmer's code. You are also + responsible for ensuring that deletion is timely (i.e. not too + soon, not too late). This is known as "low-coupling" and is a + "good thing (tm)". You may need to offer a + free/unload/destuctor type function to accommodate this.

    Example:

    int load_re_filterfile( struct client_state *csp ) { ... }
+static void unload_re_filterfile( void *f ) { ... }

    Exceptions:

    The developer cannot be expected to provide `free'ing + functions for C run-time library functions ... such as + `strdup'.

    Status: developer-discretion. The "main" use of this + standard is for allocating and freeing data structures (complex + or nested).

    4.7.9. Add loaders to the `file_list' structure + and in order

    Explanation:

    I have ordered all of the "blocker" file code to be in alpha + order. It is easier to add/read new blockers when you expect a + certain order.

    Note: It may appear that the alpha order is broken in + places by POPUP tests coming before PCRS tests. But since + POPUPs can also be referred to as KILLPOPUPs, it is clear that + it should come first.

    4.7.10. "Uncertain" new code and/or changes to + existing code, use FIXME

    Explanation:

    If you have enough confidence in new code or confidence in + your changes, but are not *quite* sure of the repercussions, + add this:

    /* FIXME: this code has a logic error on platform XYZ, * + attempting to fix */ #ifdef PLATFORM ...changed code here... + #endif

    or:

    /* FIXME: I think the original author really meant this... + */ ...changed code here...

    or:

    /* FIXME: new code that *may* break something else... */ + ...new code here...

    Note: If you make it clear that this may or may not + be a "good thing (tm)", it will be easier to identify and + include in the project (or conversely exclude from the + project).

    4.8. Addendum: Template for files and function + comment blocks:

    Example for file comments:

    const char FILENAME_rcs[] = "$Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $";
+/*********************************************************************
+ *
+ * File        :  $Source$
+ *
+ * Purpose     :  (Fill me in with a good description!)
+ *
+ * Copyright   :  Written by and Copyright (C) 2001 the SourceForge
+ *                Privoxy team. http://www.privoxy.org/
+ *
+ *                Based on the Internet Junkbuster originally written
+ *                by and Copyright (C) 1997 Anonymous Coders and
+ *                Junkbusters Corporation.  http://www.junkbusters.com
+ *
+ *                This program is free software; you can redistribute it
+ *                and/or modify it under the terms of the GNU General
+ *                Public License as published by the Free Software
+ *                Foundation; either version 2 of the License, or (at
+ *                your option) any later version.
+ *
+ *                This program is distributed in the hope that it will
+ *                be useful, but WITHOUT ANY WARRANTY; without even the
+ *                implied warranty of MERCHANTABILITY or FITNESS FOR A
+ *                PARTICULAR PURPOSE.  See the GNU General Public
+ *                License for more details.
+ *
+ *                The GNU General Public License should be included with
+ *                this file.  If not, you can view it at
+ *                http://www.gnu.org/copyleft/gpl.html
+ *                or write to the Free Software Foundation, Inc., 59
+ *                Temple Place - Suite 330, Boston, MA  02111-1307, USA.
+ *
+ * Revisions   :
+ *    $Log$
+ *
+ *********************************************************************/
+
+
+#include "config.h"
+
+   ...necessary include files for us to do our work...
+
+const char FILENAME_h_rcs[] = FILENAME_H_VERSION;

    Note: This declares the rcs variables that should be + added to the "show-proxy-args" page. If this is a brand new + creation by you, you are free to change the "Copyright" section + to represent the rights you wish to maintain.

    Note: The formfeed character that is present right + after the comment flower box is handy for (X|GNU)Emacs users to + skip the verbiage and get to the heart of the code (via + `forward-page' and `backward-page'). Please include it if you + can.

    Example for file header comments:

    #ifndef _FILENAME_H
+#define _FILENAME_H
+#define FILENAME_H_VERSION "$Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $"
+/*********************************************************************
+ *
+ * File        :  $Source$
+ *
+ * Purpose     :  (Fill me in with a good description!)
+ *
+ * Copyright   :  Written by and Copyright (C) 2001 the SourceForge
+ *                Privoxy team. http://www.privoxy.org/
+ *
+ *                Based on the Internet Junkbuster originally written
+ *                by and Copyright (C) 1997 Anonymous Coders and
+ *                Junkbusters Corporation.  http://www.junkbusters.com
+ *
+ *                This program is free software; you can redistribute it
+ *                and/or modify it under the terms of the GNU General
+ *                Public License as published by the Free Software
+ *                Foundation; either version 2 of the License, or (at
+ *                your option) any later version.
+ *
+ *                This program is distributed in the hope that it will
+ *                be useful, but WITHOUT ANY WARRANTY; without even the
+ *                implied warranty of MERCHANTABILITY or FITNESS FOR A
+ *                PARTICULAR PURPOSE.  See the GNU General Public
+ *                License for more details.
+ *
+ *                The GNU General Public License should be included with
+ *                this file.  If not, you can view it at
+ *                http://www.gnu.org/copyleft/gpl.html
+ *                or write to the Free Software Foundation, Inc., 59
+ *                Temple Place - Suite 330, Boston, MA  02111-1307, USA.
+ *
+ * Revisions   :
+ *    $Log$
+ *
+ *********************************************************************/
+
+
+#include "project.h"
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+   ... function headers here ...
+
+
+/* Revision control strings from this header and associated .c file */
+extern const char FILENAME_rcs[];
+extern const char FILENAME_h_rcs[];
+
+
+#ifdef __cplusplus
+} /* extern "C" */
+#endif
+
+#endif /* ndef _FILENAME_H */
+
+/*
+  Local Variables:
+  tab-width: 3
+  end:
+*/

    Example for function comments:

    /*********************************************************************
+ *
+ * Function    :  FUNCTION_NAME
+ *
+ * Description :  (Fill me in with a good description!)
+ *
+ * parameters  :
+ *          1  :  param1 = pointer to an important thing
+ *          2  :  x      = pointer to something else
+ *
+ * Returns     :  0 => Ok, everything else is an error.
+ *
+ *********************************************************************/
+int FUNCTION_NAME( void *param1, const char *x )
+{
+   ...
+   return( 0 );
+
+}

    Note: If we all follow this practice, we should be + able to parse our code to create a "self-documenting" web + page.

    PrevHomeNext
    Documentation Guidelines Testing Guidelines
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/contact.html b/doc/webserver/developer-manual/contact.html new file mode 100644 index 00000000..c9112352 --- /dev/null +++ b/doc/webserver/developer-manual/contact.html @@ -0,0 +1,309 @@ +Contacting the developers, Bug Reporting and Feature Requests
    Privoxy Developer Manual
    PrevNext

    8. Contacting the developers, Bug Reporting and Feature Requests

    We value your feedback. In fact, we rely on it to improve + Privoxy and its configuration. + However, please note the following hints, so we can + provide you with the best support:

    8.1. Get Support

    For casual users, our support forum at + SourceForge + is probably best suited: + http://sourceforge.net/tracker/?group_id=11118&atid=211118

    All users are of course welcome to discuss their issues on the users + mailing list, where the developers also hang around.

    8.2. Report Bugs

    Please report all bugs only through our + bug tracker: + http://sourceforge.net/tracker/?group_id=11118&atid=111118.

    Before doing so, please make sure that the bug has not already been submitted + and observe the aditional hints at the top of the submit + form.

    + Please try to verify that it is a Privoxy bug, + and not a browser or site bug first. If unsure, + try toggling + off Privoxy, and see if the problem persists. + The appendix + of the user manual also has helpful information + on action debugging. If you are using your own custom configuration, please try + the stock configs to see if the problem is configuration related.

    If not using the latest version, chances are that the bug has been found + and fixed in the meantime. We would appreciate if you could take the time + to upgrade + to the latest version (or even the latest CVS snapshot) and verify + your bug, but this is not required for reporting.

    8.3. Request New Features

    You are welcome to submit ideas on new features or other proposals + for improvement through our feature request tracker at + http://sourceforge.net/tracker/?atid=361118&group_id=11118.

    8.4. Report Ads or Other Actions-Related Problems

    Please send feedback on ads that slipped through, innocent images that were blocked, + and any other problems relating to the default.action file through + our actions feedback mechanism located at + http://www.privoxy.org/actions/. + On this page, you will also find a bookmark which will take you back there from + any troubled site and even pre-fill the form!

    New, improved default.action files will occasionally be made + available based on your feedback. These will be announced on the ijbswa-announce + list and available from our project page.

    8.5. Other

    For any other issues, feel free to use the mailing lists. Technically interested users +and people who wish to contribute to the project are also welcome on the developers list! +You can find an overview of all Prixoxy-related mailing lists, +including list archives, at: +http://sourceforge.net/mail/?group_id=11118.

    PrevHomeNext
    Update the Webserver Privoxy Copyright, License and History
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/copyright.html b/doc/webserver/developer-manual/copyright.html new file mode 100644 index 00000000..f4093413 --- /dev/null +++ b/doc/webserver/developer-manual/copyright.html @@ -0,0 +1,296 @@ +Privoxy Copyright, License and History
    Privoxy Developer Manual
    PrevNext

    9. Privoxy Copyright, License and History

    Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org>

    Some source code is based on code Copyright © 1997 by Anonymous Coders + and Junkbusters, Inc. and licensed under the GNU General Public + License.

    9.1. License

    Privoxy is free software; you can + redistribute it and/or modify it under the terms of the + GNU General Public + License, version 2, as published by the Free Software Foundation.

    This program is distributed in the hope that it will be useful, but WITHOUT + ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for + + more details, which is available from the Free Software Foundation, Inc, 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA.

    You should have received a copy of the GNU General Public License + along with this program; if not, write to the

     Free Software
    + Foundation, Inc. 59 Temple Place - Suite 330
    BostonMA 02111-1307
    USA 

    9.2. History

    In the beginning, there was the + Internet Junkbuster, + by Anonymous Coders and Junkbusters + Corporation. It saved many users a lot of pain in the early days of + web advertising and user tracking.

    But the web, its protocols and standards, and with it, the techniques for + forcing users to consume ads, give up autonomy over their browsing, and + for spying on them, kept evolving. Unfortunately, the Internet + Junkbuster did not. Version 2.0.2, published in 1998, was + (and is) the last official + release + available from Junkbusters Corporation. + Fortunately, it had been released under the GNU + GPL, which allowed further + development by others.

    So Stefan Waldherr started maintaining an + improved version of the + software, to which eventually a number of people contributed patches. + It could already replace banners with a transparent image, and had a first + version of pop-up killing, but it was still very closely based on the + original, with all its limitations, such as the lack of HTTP/1.1 support, + flexible per-site configuration, or content modification. The last release + from this effort was version 2.0.2-10, published in 2000.

    Then, some + developers + picked up the thread, and started turning the software inside out, upside down, + and then reassembled it, adding many + new + features along the way.

    The result of this is Privoxy, whose first + stable release, 3.0, is due in May 2002.

    PrevHomeNext
    Contacting the developers, Bug Reporting and Feature Requests See also
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/cvs.html b/doc/webserver/developer-manual/cvs.html new file mode 100644 index 00000000..88010541 --- /dev/null +++ b/doc/webserver/developer-manual/cvs.html @@ -0,0 +1,301 @@ +The CVS Repository
    Privoxy Developer Manual
    PrevNext

    2. The CVS Repository

    If you intend to help us with programming, documentation or packaging + you will need write access to our holy grail, the CVS repository. + Please read this chapter completely before accessing via CVS. +

    2.1. Access to CVS

    The project's CVS repository is hosted on + SourceForge. + Please refer to the chapters 6 and 7 in + SF's site + documentation for the technical access details for your + operating system. For historical reasons, the CVS server is + called cvs.ijbswa.sourceforge.net, the repository is + called ijbswa, and the source tree module is called + current. +

    2.2. CVS Commit Guideline

    The source tree is the heart of every software project. Every effort must + be made to ensure that it is readable, compilable and consistent at all + times. We therefore ask anyone with CVS access to strictly adhere to the + following guidelines: +

    • Never (read: never, ever) be tempted to commit + that small change without testing it thoroughly first. When we're + close to a public release, ask a fellow developer to review your + changes. +

    • Your commit message should give a concise overview of what you + changed (no big details) and why you changed it + Just check previous messages for good examples. +

    • Don't use the same message on multiple files, unless it equally applies to + all those files. +

    • If your changes span multiple files, and the code won't recompile unless + all changes are commited (e.g. when changing the signature of a function), + then commit all files one after another, without long delays in beween. + If necessary, prepare the commit messages in advance. +

    • Before changing things on CVS, make sure that your changes are in line + with the team's general consensus on what should be done (see below). +

    +

    2.3. Discussing Changes First

    We don't have a too formal policy on this, just use common sense. Hints: If it is.. +

    1. ..a bugfix / clean-up / cosmetic thing: shoot +

    2. ..a new feature that can be turned off: shoot +

    3. ..a clear improvement w/o side effects on other parts of the code: shoot +

    4. ..a matter of taste: ask the list +

    5. ..a major redesign of some part of the code: ask + the list +

    +

    Note that near a major public release, we get a bit more cautious - if + unsure, it doesn't hurt to ask first. There is always the possibility + to submit a patch to the patches + tracker instead. +

    PrevHomeNext
    Introduction Documentation Guidelines
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/documentation.html b/doc/webserver/developer-manual/documentation.html new file mode 100644 index 00000000..19ac418f --- /dev/null +++ b/doc/webserver/developer-manual/documentation.html @@ -0,0 +1,838 @@ +Documentation Guidelines
    Privoxy Developer Manual
    PrevNext

    3. Documentation Guidelines

    All formal documents are maintained in Docbook SGML and located in the + doc/source/* directory. You will need + Docbook, the Docbook + DTD's and the Docbook modular stylesheets (or comparable alternatives), + and either jade or + openjade (recommended) installed in order to + build docs from source. Currently there is user-manual, + FAQ, and, of + course this, the developer-manual in this format. + The README, AUTHORS + privoxy.1 (man page) files are also now maintained + as Docbook SGML. The finished files are all in the top-level source + directory are generated files! Also, index.html, the + Privoxy home page, is maintained as SGML. + DO NOT edit these directly. Edit the SGML source, or + contact someone involved in the documentation (at present Stefan and + Hal). +

    Other, less formal documents (e.g. LICENSE, + INSTALL) are maintained as plain text files in the + top-level source directory. At least for the time being. +

    Packagers are encouraged to include this documentation. For those without + the ability to build the docs locally, text versions of each are kept in + CVS. HTML versions are also now being kept in CVS under + doc/webserver/*. +

    Formal documents are built with the Makefile targets of + make dok, or alternately + make redhat-dok. If you have problems, + try both. The build process uses the document SGML sources in + doc/source/*/* to update all text files in + doc/text/ and to update all HTML + documents in doc/webserver/. +

    Documentation writers should please make sure documents build + successfully before committing to CVS, if possible. +

    How do you update the webserver (i.e. the pages on privoxy.org)? + +

    1. First, build the docs by running make + dok (or alternately make + redhat-dok). +

    2. Run make webserver which copies all + files from doc/webserver to the + sourceforge webserver via scp. +

    +

    Finished docs should be occasionally submitted to CVS + (doc/webserver/*/*.html) so that those without + the ability to build them locally, have access to them if needed. + This is especially important just prior to a new release! Please + do this after the $VERSION and + other release specific data in configure.in has been + updated (this is done just prior to a new release). +

    3.1. Quickstart to Docbook and SGML

    If you are not familiar with SGML, it is a markup language similar to HTML. + Actually, not a mark up language per se, but a language used to define + markup languages. In fact, HTML is an SGML application. Both will use + "tags" to format text and other content. SGML tags can be much + more varied, and flexible, but do much of the same kinds of things. The tags, + or "elements", are definable in SGML. There is no set + "standards". Since we are using + Docbook, our tags are those that are defined by + Docbook. Much of how the finish document is + rendered is determined by the "stylesheets". + The stylesheets determine how each tag gets translated to HTML, or other + formats.

    Tags in Docbook SGML need to be always "closed". If not, you + will likely generate errors. Example: <title>My + Title</title>. They are also case-insensitive, but we + strongly suggest using all lower case. This keeps compatibility with + [Docbook] XML.

    Our documents use "sections" for the most part. Sections + will be processed into HTML headers (e.g. h1 for + sect1). The Docbook stylesheets + will use these to also generate the Table of Contents for each doc. Our + TOC's are set to a depth of three. Meaning sect1, + sect2, and sect3 will have TOC + entries, but sect4 will not. Each section requires + a <title> element, and at least one + <para>. There is a limit of five section + levels in Docbook, but generally three should be sufficient for our + purposes.

    Some common elements that you likely will use:

    <para></para>, paragraph delimiter. Most + text needs to be within paragraph elements (there are some exceptions). +
    <emphasis></emphasis>, the stylesheets + make this italics. +
    <filename></filename>, files and directories. +
    <command></command>, command examples. +
    <literallayout></literallayout>, like + <pre>, more or less. +
    <itemizedlist></itemizedlist>, list with bullets. +
    <listitem></listitem>, member of the above. +
    <screen></screen>, screen output, implies + <literallayout>. +
    <ulink url="example.com"></ulink>, like + HTML <a> tag. +
    <quote></quote>, for, doh, quoting text. +

    Look at any of the existing docs for examples of all these and more.

    You might also find "Writing Documentation + Using DocBook - A Crash Course" useful.

    3.2. Privoxy Documentation Style

    It will be easier if everyone follows a similar writing style. This + just makes it easier to read what someone else has written if it + is all done in a similar fashion. +

    Here it is: +

    • All tags should be lower case. +

    • Tags delimiting a block of text (even small + blocks) should be on their own line. Like: +

       <para>
      +  Some text goes here.
      + </para>
      +       

      + Tags marking individual words, or few words, should be in-line: +

        Just to <emphasis>emphasize</emphasis>, some text goes here.
      +       

      +

    • Tags should be nested and step indented for block text like: (except + in-line tags) +

       <para>
      +  <itemizedlist>
      +   <para>
      +    <listitem>
      +      Some text goes here in our list example.
      +     </listitem>
      +   </para>
      +  </itemizedlist>
      + </para>
      +       

      + This makes it easier to find the text amongst the tags ;-) +

    • Use white space to separate logical divisions within a document, + like between sections. Running everything together consistently + makes it harder to read and work on. +

    • Do not hesitate to make comments. Comments can either use the + <comment> element, or the <!-- --> style comment + familiar from HTML. (Note in Docbook v4.x <comment> is + replaced by <remark>.) +

    • We have an international audience. Refrain from slang, or English + idiosyncrasies (too many to list :). Humor also does not translate + well sometimes. +

    • Try to keep overall line lengths in source files to 80 characters or less + for obvious reasons. This is not always possible, with lengthy URLs for + instance. +

    • Our documents are available in differing formats. Right now, they + are just plain text, and HTML, but PDF, and others is always a + future possibility. Be careful with URLs (<ulink>), and avoid + this mistake: +

      My favorite site is <ulink url="http://example.com">here</ulink>. +

      This will render as "My favorite site is here", which is + not real helpful in a text doc. Better like this: +

      My favorite site is <ulink url="http://example.com">example.com</ulink>. +

    • All documents should be spell checked occasionally. + aspell can check SGML with the + -H option. (ispell I think + too.) +

    +

    3.3. Privoxy Custom Entities

    Privoxy documentation is using + a number of customized "entities" to facilitate + documentation maintenance. +

    We are using a set of "boilerplate" files with generic text, + that is used by multiple docs. This way we can write something once, and use + it repeatedly without having to re-write the same content over and over again. + If editing such a file, keep in mind that it should be + generic. That is the purpose; so it can be used in varying + contexts without additional modifications. +

    We are also using what Docbook calls + "internal entities". These are like variables in + programming. Well, sort of. For instance, we have the + p-version entity that contains the current + Privoxy version string. You are strongly + encouraged to use these where possible. Some of these obviously + require re-setting with each release (done by the Makefile). A sampling of + custom entities are listed below. See any of the main docs for examples. +

    • Re- "boilerplate" text entities are defined like: +

      <!entity supported SYSTEM "supported.sgml"> +

      In this example, the contents of the file, + supported.sgml is available for inclusion anywhere + in the doc. To make this happen, just reference the now defined + entity: &supported; (starts with an ampersand + and ends with a semi-colon), and the contents will be dumped into + the finished doc at that point. +

    • Commonly used "internal entities": +

      p-version: the Privoxy + version string, e.g. "2.9.15". +
      p-status: the project status, either + "alpha", "beta", or "stable". +
      p-not-stable: use to conditionally include + text in "not stable" releases (e.g. "beta"). +
      p-stable: just the opposite. +
      p-text: this doc is only generated as text. +

    +

    There are others in various places that are defined for a specific + purpose. Read the source! +

    PrevHomeNext
    The CVS Repository Coding Guidelines
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/index.html b/doc/webserver/developer-manual/index.html new file mode 100644 index 00000000..cf386de8 --- /dev/null +++ b/doc/webserver/developer-manual/index.html @@ -0,0 +1,668 @@ +Privoxy Developer Manual

    Privoxy Developer Manual

    + + Copyright © 2001, 2002 by + Privoxy Developers + +

    $Id: developer-manual.sgml,v 1.45 2002/05/19 23:01:54 hal9 Exp $

    The developer manual gives the users information on how to help the developer + team. It provides guidance on coding, testing, documentation and other + issues. +

    You can find the latest version of the this manual at http://www.privoxy.org/developer-manual/. + Please see the Contact section + on how to contact the developers.

    Table of Contents
    1. Introduction
    1.1. Quickstart to Privoxy Development
    2. The CVS Repository
    2.1. Access to CVS
    2.2. CVS Commit Guideline
    2.3. Discussing Changes First
    3. Documentation Guidelines
    3.1. Quickstart to Docbook and SGML
    3.2. Privoxy Documentation Style
    3.3. Privoxy Custom Entities
    4. Coding Guidelines
    4.1. Introduction
    4.2. Using Comments
    4.2.1. Comment, Comment, Comment
    4.2.2. Use blocks for comments
    4.2.3. Keep Comments on their own line
    4.2.4. Comment each logical step
    4.2.5. Comment All Functions Thoroughly
    4.2.6. Comment at the end of braces if the + content is more than one screen length
    4.3. Naming Conventions
    4.3.1. Variable Names
    4.3.2. Function Names
    4.3.3. Header file prototypes
    4.3.4. Enumerations, and #defines
    4.3.5. Constants
    4.4. Using Space
    4.4.1. Put braces on a line by themselves.
    4.4.2. ALL control statements should have a + block
    4.4.3. Do not belabor/blow-up boolean + expressions
    4.4.4. Use white space freely because it is + free
    4.4.5. Don't use white space around structure + operators
    4.4.6. Make the last brace of a function stand + out
    4.4.7. Use 3 character indentions
    4.5. Initializing
    4.5.1. Initialize all variables
    4.6. Functions
    4.6.1. Name functions that return a boolean as a + question.
    4.6.2. Always specify a return type for a + function.
    4.6.3. Minimize function calls when iterating by + using variables
    4.6.4. Pass and Return by Const Reference
    4.6.5. Pass and Return by Value
    4.6.6. Names of include files
    4.6.7. Provide multiple inclusion + protection
    4.6.8. Use `extern "C"` when appropriate
    4.6.9. Where Possible, Use Forward Struct + Declaration Instead of Includes
    4.7. General Coding Practices
    4.7.1. Turn on warnings
    4.7.2. Provide a default case for all switch + statements
    4.7.3. Try to avoid falling through cases in a + switch statement.
    4.7.4. Use 'long' or 'short' Instead of + 'int'
    4.7.5. Don't mix size_t and other types
    4.7.6. Declare each variable and struct on its + own line.
    4.7.7. Use malloc/zalloc sparingly
    4.7.8. The Programmer Who Uses 'malloc' is + Responsible for Ensuring 'free'
    4.7.9. Add loaders to the `file_list' structure + and in order
    4.7.10. "Uncertain" new code and/or changes to + existing code, use FIXME
    4.8. Addendum: Template for files and function + comment blocks:
    5. Testing Guidelines
    5.1. Testplan for releases
    5.2. Test reports
    6. Releasing a New Version
    6.1. Version numbers
    6.2. Before the Release: Freeze
    6.3. Building and Releasing the Packages
    6.3.1. Note on Privoxy Packaging
    6.3.2. Source Tarball
    6.3.3. SuSE, Conectiva or Red Hat RPM
    6.3.4. OS/2
    6.3.5. Solaris
    6.3.6. Windows
    6.3.7. Debian
    6.3.8. Mac OSX
    6.3.9. FreeBSD
    6.3.10. HP-UX 11
    6.3.11. Amiga OS
    6.3.12. AIX
    6.4. Uploading and Releasing Your Package
    6.5. After the Release
    7. Update the Webserver
    8. Contacting the developers, Bug Reporting and Feature Requests
    8.1. Get Support
    8.2. Report Bugs
    8.3. Request New Features
    8.4. Report Ads or Other Actions-Related Problems
    8.5. Other
    9. Privoxy Copyright, License and History
    9.1. License
    9.2. History
    10. See also
      Next
      Introduction
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/introduction.html b/doc/webserver/developer-manual/introduction.html new file mode 100644 index 00000000..b4bcd2ba --- /dev/null +++ b/doc/webserver/developer-manual/introduction.html @@ -0,0 +1,184 @@ +Introduction
    Privoxy Developer Manual
    PrevNext

    1. Introduction

    Privoxy, as an heir to + Junkbuster, is an Open Source project + and licensed under the GPL. As such, Privoxy + development is potentially open to anyone who has the time, knowledge, + and desire to contribute in any capacity. Our goals are simply to + continue the mission, to improve Privoxy, and + to make it available to as wide an audience as possible. +

    One does not have to be a programmer to contribute. Packaging, testing, + and porting, are all important jobs as well. +

    1.1. Quickstart to Privoxy Development

    You'll need an account on Sourceforge to support our + development. Mail your ID to the list and wait until a + project manager has added you. +

    For the time being (read, this section is under construction), please + refer to the extensive comments in the source code. +

    PrevHomeNext
    Privoxy Developer Manual The CVS Repository
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/newrelease.html b/doc/webserver/developer-manual/newrelease.html new file mode 100644 index 00000000..5ff11fb5 --- /dev/null +++ b/doc/webserver/developer-manual/newrelease.html @@ -0,0 +1,1667 @@ +Releasing a New Version
    Privoxy Developer Manual
    PrevNext

    6. Releasing a New Version

    When we release versions of Privoxy, + our work leaves our cozy secret lab and has to work in the cold + RealWorld[tm]. Once it is released, there is no way to call it + back, so it is very important that great care is taken to ensure + that everything runs fine, and not to introduce problems in the + very last minute. +

    So when releasing a new version, please adhere exactly to the + procedure outlined in this chapter. +

    The following programs are required to follow this process: + ncftpput (ncftp), scp, ssh (ssh), + gmake (GNU's version of make), autoconf, cvs. +

    6.1. Version numbers

    First you need to determine which version number the release will have. + Privoxy version numbers consist of three numbers, + separated by dots, like in X.Y.Z, where: +

    • X, the version major, is rarely ever changed. It is increased by one if + turning a development branch into stable substantially changes the functionality, + user interface or configuration syntax. Majors 1 and 2 were + Junkbuster, and 3 will be the first stable + Privoxy release. +

    • Y, the version minor, represents the branch within the major version. + At any point in time, there are two branches being maintained: + The stable branch, with an even minor, say, 2N, in which no functionality is + being added and only bugfixes are made, and 2N+1, the development branch, in + which the further development of Privoxy takes + place. + This enables us to turn the code upside down and inside out, while at the same time + providing and maintaining a stable version. + The minor is reset to zero (and one) when the major is inrcemented. When a development + branch has matured to the point where it can be turned into stable, the old stable branch + 2N is given up (i.e. no longer maintained), the former development branch 2N+1 becomes the + new stable branch 2N+2, and a new development branch 2N+3 is opened. +

    • Z, the point or sub version, represents a release of the software within a branch. + It is therefore incremented immediately before each code freeze. + In development branches, only the even point versions correspond to actual releases, + while the odd ones denote the evolving state of the sources on CVS in between. + It follows that Z is odd on CVS in development branches most of the time. There, it gets + increased to an even number immediately before a code freeze, and is increased to an odd + number again immediately thereafter. + This ensures that builds from CVS snapshots are easily distinguished from released versions. + The point version is reset to zero when the minor changes. +

    +

    6.2. Before the Release: Freeze

    The following must be done by one of the + developers prior to each new release. +

    • Make sure that everybody who has worked on the code in the last + couple of days has had a chance to yell "no!" in case + they have pending changes/fixes in their pipelines. Announce the + freeze so that nobody will interfere with last minute changes. +

    • Increment the version number (point from odd to even in development + branches!) in configure.in. +

    • If default.action has changed since last + release (i.e. software release or standalone actions file release), + bump up its version info to A.B in this line: +

      + 
        {+add-header{X-Actions-File-Version: A.B} -filter -no-popups}
      +

      + Then change the version info in doc/webserver/actions/index.php, + line: '$required_actions_file_version = "A.B";' +

    • If the HTML documentation is not in sync with the SGML sources + you need to regenerate and upload it to the webserver. (If in + doubt, just do it.) See the Section "Updating the webserver" in + this manual for details. +

    • Commit all files that were changed in the above steps! +

    • Tag all files in CVS with the version number with + "cvs tag v_X_Y_Z". + Don't use vX_Y_Z, ver_X_Y_Z, v_X.Y.Z (won't work) etc. +

    • If the release was in a development branch, increase the point version + from even to odd (X.Y.(Z+1)) again in configure.in and + commit your change. +

    • On the webserver, copy the user manual to a new top-level directory + called X.Y.Z. This ensures that help links from the CGI + pages, which have the version as a prefix, will go into the right version of the manual. + If this is a development branch release, also symlink X.Y.(Z-1) + to X.Y.Z and X.Y.(Z+1) to + . (i.e. dot). +

    +

    6.3. Building and Releasing the Packages

    Now the individual packages can be built and released. Note that for + GPL reasons the first package to be released is always the source tarball. +

    For all types of packages, including the source tarball, + you must make sure that you build from clean sources by exporting + the right version from CVS into an empty directory:. + 

      mkdir dist # delete or choose different name if it already exists
+  cd dist
+  cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login
+  cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa export -r v_X_Y_Z current
    +

    Do NOT change a single bit, including, but not limited to + version information after export from CVS. This is to make sure that + all release packages, and with them, all future bug reports, are based + on exactly the same code. +

    Please find additional instructions for the source tarball and the + individual platform dependent binary packages below. And details + on the Sourceforge release process below that. +

    6.3.1. Note on Privoxy Packaging

    Please keep these general guidelines in mind when putting together + your package. These apply to all platforms! +

    • Privoxy requires + write access to: all *.action files, all + logfiles, and the trust file. You will + need to determine the best way to do this for your platform. +

    • Please include up to date documentation. At a bare minimum: +

      LICENSE (toplevel directory) +

      README (toplevel directory) +

      AUTHORS (toplevel directory) +

      man page (toplevel directory, Unix-like + platforms only) +

      The User Manual (doc/webserver/user-manual/) +

      FAQ (doc/webserver/faq/) +

      Also suggested: Developer Manual + (doc/webserver/devel-manual) and ChangeLog + (toplevel directory). FAQ and the manuals are + HTML docs. There are also text versions in + doc/text/ which could conceivably also be + included. +

      The documentation has been designed such that the manuals are linked + to each other from parallel directories, and should be packaged + that way. index.html can also be included and + can serve as a focal point for docs and other links of interest. + This should be one level up from the manuals. There are two + css stylesheets that can be included for better presentation: + p_doc.css and p_web.css. + These should be in the same directory with + index.html, (i.e. one level up from the manual + directories). +

    • user.action is designed for local preferences. + Make sure this does not get overwritten! +

    • Other configuration files should be installed as the new defaults, + but all previously installed configuration files should be preserved + as backups. This is just good manners :-) +

    • Please check platform specific notes in this doc, if you haven't + done "Privoxy" packaging before for other platform + specific issues. Conversely, please add any notes that you know + are important for your platform (or contact one of the doc + maintainers to do this if you can't). +

    +

    6.3.2. Source Tarball

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then do: + 

      make tarball-dist
    +

    To upload the package to Sourceforge, simply issue + 

      make tarball-upload
    +

    Go to the displayed URL and release the file publicly on Sourceforge. + For the change log field, use the relevant section of the + ChangeLog file. +

    6.3.3. SuSE, Conectiva or Red Hat RPM

    In following text, replace dist + with either "rh" for Red Hat or "suse" for SuSE. +

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). +

    As the only exception to not changing anything after export from CVS, + now examine the file privoxy-dist.spec + and make sure that the version information and the RPM release number are + correct. The RPM release numbers for each version start at one. Hence it must + be reset to one if this is the first RPM for + dist which is built from version + X.Y.Z. Check the + file + list if unsure. Else, it must be set to the highest already available RPM + release number for that version plus one. +

    Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then do + 

      make dist-dist
    +

    To upload the package to Sourceforge, simply issue + 

      make dist-upload rpm_packagerev
    +

    where rpm_packagerev is the + RPM release number as determined above. + Go to the displayed URL and release the file publicly on Sourceforge. + Use the release notes and change log from the source tarball package. +

    6.3.4. OS/2

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the OS/2 Setup module: + 

      cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co os2setup
    +

    You will need a mix of development tools. + The main compilation takes place with IBM Visual Age C++. + Some ancillary work takes place with GNU tools, available from + various sources like hobbes.nmsu.edu. + Specificially, you will need autoheader, + autoconf and sh tools. + The packaging takes place with WarpIN, available from various sources, including + its home page: xworkplace. +

    Change directory to the os2setup directory. + Edit the os2build.cmd file to set the final executable filename. + For example, + 

      installExeName='privoxyos2_setup_X.Y.Z.exe'
    +

    Next, edit the IJB.wis file so the release number matches + in the PACKAGEID section: + 

      PACKAGEID="Privoxy Team\Privoxy\Privoxy Package\X\Y\Z"
    +

    You're now ready to build. Run: + 

      os2build
    +

    You will find the WarpIN-installable executable in the + ./files directory. Upload this anonymously to + uploads.sourceforge.net/incoming, create a release + for it, and you're done. Use the release notes and Change Log from the + source tarball package. +

    6.3.5. Solaris

    Login to Sourceforge's compilefarm via ssh: + 

      ssh cf.sourceforge.net
    +

    Choose the right operating system (not the Debian one). + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then run + 

      gmake solaris-dist
    +

    which creates a gzip'ed tar archive. Sadly, you cannot use make + solaris-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. +

    6.3.6. Windows

    You should ensure you have the latest version of Cygwin (from + http://www.cygwin.com/). + Run the following commands from within a Cygwin bash shell. +

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the Windows setup module: + 

            cvs -z3  -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co winsetup
    +

    Then you can build the package. This is fully automated, and is + controlled by winsetup/GNUmakefile. + All you need to do is: + 

            cd winsetup
+        make
    +

    Now you can manually rename privoxy_setup.exe to + privoxy_setup_X_Y_Z.exe, and upload it to + SourceForge. When releasing the package on SourceForge, use the release notes + and Change Log from the source tarball package. +

    6.3.7. Debian

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then, run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then do FIXME. +

    6.3.8. Mac OSX

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then get the Mac OSX setup module: + 

      cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co osxsetup
    +

    Then run: + 

      cd osxsetup
+  build
    +

    This will run autoheader, autoconf and + configure as well as make. + Finally, it will copy over the necessary files to the ./osxsetup/files directory + for further processing by PackageMaker. +

    Bring up PackageMaker with the PrivoxyPackage.pmsp definition file, modify the package + name to match the release, and hit the "Create package" button. + If you specify ./Privoxy.pkg as the output package name, you can then create + the distributable zip file with the command: + 

    zip -r privoxyosx_setup_x.y.z.zip Privoxy.pkg
    +

    You can then upload privoxyosx_setup_x.y.z.zip anonymously to + uploads.sourceforge.net/incoming, + create a release for it, and you're done. Use the release notes + and Change Log from the source tarball package. +

    6.3.9. FreeBSD

    Login to Sourceforge's compilefarm via ssh: + 

      ssh cf.sourceforge.net
    +

    Choose the right operating system. + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then run: + 

      gmake freebsd-dist
    +

    which creates a gzip'ed tar archive. Sadly, you cannot use make + freebsd-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. +

    6.3.10. HP-UX 11

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then do FIXME. +

    6.3.11. Amiga OS

    First, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then do FIXME. +

    6.3.12. AIX

    Login to Sourceforge's compilefarm via ssh: + 

      ssh cf.sourceforge.net
    +

    Choose the right operating system. + When logged in, make sure that you have freshly exported the right + version into an empty directory. (See "Building and releasing + packages" above). Then run: + 

      cd current
+  autoheader && autoconf && ./configure
    +

    Then run: + 

      make aix-dist
    +

    which creates a gzip'ed tar archive. Sadly, you cannot use make + aix-upload on the Sourceforge machine (no ncftpput). You now have + to manually upload the archive to Sourceforge's ftp server and release + the file publicly. Use the release notes and Change Log from the + source tarball package. +

    6.4. Uploading and Releasing Your Package

    After the package is ready, it is time to upload it + to SourceForge, and go through the release steps. The upload + is done via FTP: +

    +

    Or use the make targets as described above. +

    Once this done go to http://sourceforge.net/project/admin/editpackages.php?group_id=11118, + making sure you are logged in. Find your target platform in the + second column, and click Add Release. You will + then need to create a new release for your package, using the format + of $VERSION ($CODE_STATUS), e.g. 2.9.15 + (beta). +

    Now just follow the prompts. Be sure to add any appropriate Release + notes. You should see your freshly uploaded packages in + "Step 2. Add Files To This Release". Check the + appropriate box(es). Remember at each step to hit the + "Refresh/Submit" buttons! You should now see your + file(s) listed in Step 3. Fill out the forms with the appropriate + information for your platform, being sure to hit "Update" + for each file. If anyone is monitoring your platform, check the + "email" box at the very bottom to notify them of + the new package. This should do it! +

    If you have made errors, or need to make changes, you can go through + essentially the same steps, but select Edit Release, + instead of Add Release. +

    6.5. After the Release

    When all (or: most of the) packages have been uploaded and made available, + send an email to the announce + mailing list, Subject: "Version X.Y.Z available for download". Be sure to + include the + download + location, the release notes and the change log. +

    PrevHomeNext
    Testing Guidelines Update the Webserver
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/quickstart.html b/doc/webserver/developer-manual/quickstart.html new file mode 100644 index 00000000..ba84f139 --- /dev/null +++ b/doc/webserver/developer-manual/quickstart.html @@ -0,0 +1,150 @@ +Quickstart to Privoxy Development
    Privoxy Developer Manual
    PrevNext

    3. Quickstart to Privoxy Development

    You'll need an account on Sourceforge to support our + development. Mail your ID to the list and wait until a + project manager has added you. +

    For the time being (read, this section is under construction), please + refer to the extensive comments in the source code. +

    PrevHomeNext
    Introduction The CVS Repository
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/seealso.html b/doc/webserver/developer-manual/seealso.html new file mode 100644 index 00000000..3c9f9e42 --- /dev/null +++ b/doc/webserver/developer-manual/seealso.html @@ -0,0 +1,385 @@ +See also
    Privoxy Developer Manual
    Prev 

    10. See also

    Other references and sites of interest to Privoxy + users:

    http://www.privoxy.org/, + the Privoxy Home page. +

    +

    http://www.privoxy.org/faq/, + the Privoxy FAQ. +

    +

    http://sourceforge.net/projects/ijbswa/, + the Project Page for Privoxy on + SourceForge. +

    +

    http://config.privoxy.org/, + the web-based user interface. Privoxy must be + running for this to work. Shortcut: http://p.p/ +

    +

    http://www.privoxy.org/actions/, to submit "misses" to the developers. +

    +

    http://www.junkbusters.com/ht/en/cookies.html, + an explanation how cookies are used to track web users. +

    +

    http://www.junkbusters.com/ijb.html, + the original Internet Junkbuster. +

    +

    http://www.waldherr.org/junkbuster/, + Stefan Waldherr's version of Junkbuster, from which Privoxy was + derived. +

    +

    http://privacy.net/analyze/, a useful site + to check what information about you is leaked while you browse the web. +

    +

    http://www.squid-cache.org/, a very popular + caching proxy, which is often used together with Privoxy. +

    +

    http://www.privoxy.org/developer-manual/, + the Privoxy developer manual. +

    PrevHome 
    Privoxy Copyright, License and History  
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/testing.html b/doc/webserver/developer-manual/testing.html new file mode 100644 index 00000000..d957a188 --- /dev/null +++ b/doc/webserver/developer-manual/testing.html @@ -0,0 +1,249 @@ +Testing Guidelines
    Privoxy Developer Manual
    PrevNext

    5. Testing Guidelines

    To be filled.

    5.1. Testplan for releases

    Explain release numbers. major, minor. developer releases. etc. + +

    1. Remove any existing rpm with rpm -e

    2. Remove any file that was left over. This includes (but is not limited to) +

      • /var/log/privoxy

      • /etc/privoxy

      • /usr/sbin/privoxy

      • /etc/init.d/privoxy

      • /usr/doc/privoxy*

    3. Install the rpm. Any error messages?

    4. start,stop,status Privoxy with the specific script + (e.g. /etc/rc.d/init/privoxy stop). Reboot your machine. Does + autostart work?

    5. Start browsing. Does Privoxy work? Logfile written?

    6. Remove the rpm. Any error messages? All files removed?

    5.2. Test reports

    Please submit test reports only with the test form +at sourceforge. Three simple steps: +

    • Select category: the distribution you test on.

    • Select group: the version of Privoxy that we are about to release.

    • Fill the Summary and Detailed Description with something + intelligent (keep it short and precise).

    + Do not mail to the mailinglist (we cannot keep track on issues there). +

    PrevHomeNext
    Coding Guidelines Releasing a New Version
    \ No newline at end of file diff --git a/doc/webserver/developer-manual/webserver-update.html b/doc/webserver/developer-manual/webserver-update.html new file mode 100644 index 00000000..5112a56d --- /dev/null +++ b/doc/webserver/developer-manual/webserver-update.html @@ -0,0 +1,239 @@ +Update the Webserver
    Privoxy Developer Manual
    PrevNext

    7. Update the Webserver

    When updating the webserver, please follow these steps to make + sure that no broken links, incosistent contents or permission + problems will occur: +

    If you have changed anything in the documentation source SGML files, + do: + 

      make dok # (or make redkat-dok if make dok doesn't work for you)
    +

    That will generate doc/webserver/user-manual, + doc/webserver/developer-manual, + doc/webserver/faq and + doc/webserver/index.html automatically. +

    If you changed the manual page source, generate + doc/webserver/man-page/privoxy-man-page.html + by running "make man". (This is + a separate target due to dependencies on some obscure perl scripts. + See comments in GNUmakefile.) +

    If you want to add new files to the webserver, create them locally in + the doc/webserver/* directory (or + create new directories under doc/webserver). +

    Next, commit any changes from the above steps to CVS. All set? Then do + 

      make webserver
    +

    This will do the upload to the + webserver (www.privoxy.org) and ensure all files and directories + there are group writable. +

    Please do NOT use any other means of transferring + files to the webserver to avoid permission problems. +

    PrevHomeNext
    Releasing a New Version Contacting the developers, Bug Reporting and Feature Requests
    \ No newline at end of file diff --git a/doc/webserver/faq/configuration.html b/doc/webserver/faq/configuration.html new file mode 100644 index 00000000..506e60b2 --- /dev/null +++ b/doc/webserver/faq/configuration.html @@ -0,0 +1,808 @@ +Configuration
    Privoxy Frequently Asked Questions
    PrevNext

    3. Configuration

    3.1. Can I use my old config files?

    There are major changes to Junkbuster/ + Privoxy configuration from version 2.0.x to + 2.9.x and later. Most of the older files will not work at all. This is + especially true of blocklist. If this is the case, you + will need to re-enter your old data into the new configuration structure. + This is probably also a good recommendation even if upgrading from 2.9.x to + 3.x since there were many minor changes along the way. +

    3.2. What is an "actions" file?

    "actions" files are where various actions that + Privoxy might take, are configured. + Typically, you would define a set of default actions that apply + to all URLs, then add exceptions to these defaults where needed.

    Actions can be defined on a per site basis, or for groups of sites. Actions + can also be grouped together and then applied to one or more sites. There + are many possible actions that might apply to any given site. As an example, + if we are blocking cookies as one of our default + actions, but need to accept cookies from a given + site, we would define this in our "actions" file.

    3.3. The "actions" concept confuses me. Please list +some of these "actions".

    These are all explained in the + user-manual. + Please refer to that.

    3.4. How are actions files configured? What is the easiest +way to do this?

    The easiest way to do this, is to access Privoxy + with your web browser at http://p.p/, + and then select + "View & change the current configuration" + from the selection list. You can also do this by editing the appropriate + file with a text editor.

    Please see the + user-manual for a + detailed explanation of these and other configuration files, and their + various options and syntax.

    3.5. There are several different "actions" files. What are +the differences?

    As of Privoxy v2.9.15, three actions files + are being included, to be used for + different purposes. These are + default.action, standard.action, + and user.action. Please see + the User Manual + for an explanation of each.

    Earlier versions included three different versions + default.action files. The new scheme allows for + greater flexibility of local configuration, and for browser based + configuration.

    3.6. Why can I change the configuration with a +browser? Does that not raise security issues?

    What I don't understand, is how I can browser edit the config file as a +regular user, while the whole /etc/privoxy hierarchy +belongs to the user "privoxy", with only 644 permissions. +

    When you use the browser-based editor, Privoxy +itself is writing to the config files. Because +Privoxy is running as the user "privoxy", it can +update the config files. +

    If you don't like this, setting "enable-edit-actions 0" in the +config file will disable the browser-based editor. If you're that paranoid, +you should also consider setting "enable-remote-toggle 0" to prevent +browser-based enabling/disabling of Privoxy. +

    Note that normally only local users can connect to +Privoxy, so this is not (normally) a security +problem. +

    3.7. What is "default.filter"?

    The "default.filter" file is where "filters" + are defined, which are used to "filter" any + web page content. By "filtering" we mean it can modify, remove, + or change anything on the page, including HTML tags, and + JavaScript. Regular expressions are used to accomplish this, and operate + on a line by line basis. This is potentially a very powerful feature, but + requires some expertise.

    If you are familiar with regular expressions, and HTML, you can look at + the provided default.filter with a text editor and see + some of things it can be used for.

    Presently, there is no GUI editor option for this part of the configuration, + but you can disable/enable various sections of the included default + file with the "View & change the current configuration" from + your browser.

    3.8. How can I set up Privoxy to act as a proxy for my + LAN?

    By default, Privoxy only responds to requests + from localhost. To have it act as a server for a network, this needs to be + changed in the main config file where the Privoxy + configuration is located. In that file is a "listen-address" + option. It may be commented out with a "#" symbol. Make sure + it is uncommented, and assign it the address of the LAN gateway interface, + and port number to use:

      listen-address  192.168.1.1:8118

    Save the file, and restart Privoxy. Configure + all browsers on the network then to use this address and port number.

    3.9. Instead of ads, now I get a checkerboard pattern. I don't want to see anything.

    This is a configuration option for images that + Privoxy is stopping. You have the choice of a + checkerboard pattern, a transparent 1x1 GIF image (aka "blank"), + or a custom URL of your choice. Note that to fit this category, the URL must + match both the "+handle-as-image" + and + "+block" actions.

    If you want to see nothing, then change the + "+set-image-blocker" + action to "+image-blocker{blank}". This can be done from the + "View & change the current configuration" selection at http://p.p/. Or by hand editing the appropriate + actions file. This will only effect what is defined as "images" + though. Also, some URLs that generate the bright red "Blocked" + banner, can be moved to the "+set-image-blocker" section for the + same reason, but there are some limits and risks to this (see below).

    3.10. Why would anybody want to see a checkerboard pattern?

    This can be helpful for troubleshooting problems. It might also be good + for anyone new to Privoxy so that they can + see if their favorite pages are displaying correctly, and + Privoxy is not inadvertently removing something + important.

    3.11. I see large red banners on some pages that say +"Blocked". Why and how do I get rid of this?

    These are URLs that match something in one of + Privoxy's block actions + ("+block"). + It is meant to be a warning so that you know something has been blocked and + an easy way for you to see why. These are handled differently than what has + been defined explicitly as "images" (e.g. ads that are GIF image + files). Depending on the URL itself, it is sometimes hard for + Privoxy to really know whether there is indeed an + ad image there or not. And there are limitations as to what + Privoxy can do to "fool" the + browser.

    For instance, if the ad is in a frame, then it is embedded in the separate + HTML page used for the frame. In this case, you cannot just substitute an + aribitrary image (like we would for a "blank" image), for an HTML + page. The browser is expecting an HTML page, and that is what it must have + for frames. Such situations can be a little trickier to deal with, and + Privoxy may show the "Blocked" page, + despite your best efforts.

    If you want these to be treated as if they were images, so that they can be + made invisible, you can try moving the offending URL from the + "+block" section to the "+imageblock" section of + your actions file. Just be forewarned, if any URL is made + "invisible", you may not have any inkling that something has + been removed from that page, or why. If this approach does not work, then you are + probably dealing with a frame (or "ilayer"), and the only thing + that can go there is an HTML page of some sort.

    To deal with this situation, you could modify the + "block" HTML template that is used by + Privoxy to display this, and make it something + more to your liking. Currently, there is no configuration option for this. + You will have to modify, or create your own page, and use this to replace + templates/blocked, which is what + Privoxy uses to display the "Blocked" + page.

    Another way to deal with this is find why and where + Privoxy is blocking the frame, and + diable this. Then let the "+set-image-blocker" action + handle the ad that is embedded in the frame's HTML page.

    3.12. I cannot see all of the "Blocked" page banner. Help.

    There is not enough available space to fit the entire Blocked page. Try right + clicking on the visible portion, and select "Show Frame", + or equivalent. This will usually allow you to see the entire Privoxy + "Blocked" page, and from there you can see just what is being + blocked, and why.

    As of Privoxy 2.9.14, the Blocked banner page is re-sizeable, and tries + to adjust to the allotted space. There may be occassions where there + just isn't enough room to display much of anything useful though.

    3.13. Can Privoxy run as a service +on Win2K/NT?

    Yes, it can run as a system service using srvany.exe. + The only catch is that this will effectively disable the + Privoxy icon in the taskbar. You can have + one or the other, but not both at this time :(

    There is a pending feature request for this functionality. See + thread: http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118, + for details, and a sample configuration.

    3.14. How can I make Privoxy work with other +proxies like Squid?

    This can be done. See the user manual, + which describes how to do this.

    3.15. Can Privoxy run as a "transparent" proxy?

    No, Privoxy currently does not have this ability, + though it is planned for a future release. Transparent proxies require + special handling of the request headers beyond what + Privoxy is now capable of.

    Chaining Privoxy with another proxy that has + this ability should work though. + See the user + manual, which describes this, and also http://www.transproxy.nlc.net.au/.

    PrevHomeNext
    Installation Miscellaneous
    \ No newline at end of file diff --git a/doc/webserver/faq/contact.html b/doc/webserver/faq/contact.html new file mode 100644 index 00000000..7c8ff51b --- /dev/null +++ b/doc/webserver/faq/contact.html @@ -0,0 +1,309 @@ +Contacting the developers, Bug Reporting and Feature Requests
    Privoxy Frequently Asked Questions
    PrevNext

    6. Contacting the developers, Bug Reporting and Feature Requests

    We value your feedback. In fact, we rely on it to improve + Privoxy and its configuration. + However, please note the following hints, so we can + provide you with the best support:

    6.1. Get Support

    For casual users, our support forum at + SourceForge + is probably best suited: + http://sourceforge.net/tracker/?group_id=11118&atid=211118

    All users are of course welcome to discuss their issues on the users + mailing list, where the developers also hang around.

    6.2. Report Bugs

    Please report all bugs only through our + bug tracker: + http://sourceforge.net/tracker/?group_id=11118&atid=111118.

    Before doing so, please make sure that the bug has not already been submitted + and observe the aditional hints at the top of the submit + form.

    + Please try to verify that it is a Privoxy bug, + and not a browser or site bug first. If unsure, + try toggling + off Privoxy, and see if the problem persists. + The appendix + of the user manual also has helpful information + on action debugging. If you are using your own custom configuration, please try + the stock configs to see if the problem is configuration related.

    If not using the latest version, chances are that the bug has been found + and fixed in the meantime. We would appreciate if you could take the time + to upgrade + to the latest version (or even the latest CVS snapshot) and verify + your bug, but this is not required for reporting.

    6.3. Request New Features

    You are welcome to submit ideas on new features or other proposals + for improvement through our feature request tracker at + http://sourceforge.net/tracker/?atid=361118&group_id=11118.

    6.4. Report Ads or Other Actions-Related Problems

    Please send feedback on ads that slipped through, innocent images that were blocked, + and any other problems relating to the default.action file through + our actions feedback mechanism located at + http://www.privoxy.org/actions/. + On this page, you will also find a bookmark which will take you back there from + any troubled site and even pre-fill the form!

    New, improved default.action files will occasionally be made + available based on your feedback. These will be announced on the ijbswa-announce + list and available from our project page.

    6.5. Other

    For any other issues, feel free to use the mailing lists. Technically interested users +and people who wish to contribute to the project are also welcome on the developers list! +You can find an overview of all Prixoxy-related mailing lists, +including list archives, at: +http://sourceforge.net/mail/?group_id=11118.

    PrevHomeNext
    Troubleshooting Privoxy Copyright, License and History
    \ No newline at end of file diff --git a/doc/webserver/faq/copyright.html b/doc/webserver/faq/copyright.html new file mode 100644 index 00000000..8a79af8e --- /dev/null +++ b/doc/webserver/faq/copyright.html @@ -0,0 +1,301 @@ +Privoxy Copyright, License and History
    Privoxy Frequently Asked Questions
    Prev 

    7. Privoxy Copyright, License and History

    Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org>

    Some source code is based on code Copyright © 1997 by Anonymous Coders + and Junkbusters, Inc. and licensed under the GNU General Public + License.

    Portions of this document are "borrowed" from the original + Junkbuster (tm) FAQ, and modified as + appropriate for Privoxy. +

    7.1. License

    Privoxy is free software; you can + redistribute it and/or modify it under the terms of the + GNU General Public + License, version 2, as published by the Free Software Foundation.

    This program is distributed in the hope that it will be useful, but WITHOUT + ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for + + more details, which is available from the Free Software Foundation, Inc, 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA.

    You should have received a copy of the GNU General Public License + along with this program; if not, write to the

     Free Software
    + Foundation, Inc. 59 Temple Place - Suite 330
    BostonMA 02111-1307
    USA 

    7.2. History

    In the beginning, there was the + Internet Junkbuster, + by Anonymous Coders and Junkbusters + Corporation. It saved many users a lot of pain in the early days of + web advertising and user tracking.

    But the web, its protocols and standards, and with it, the techniques for + forcing users to consume ads, give up autonomy over their browsing, and + for spying on them, kept evolving. Unfortunately, the Internet + Junkbuster did not. Version 2.0.2, published in 1998, was + (and is) the last official + release + available from Junkbusters Corporation. + Fortunately, it had been released under the GNU + GPL, which allowed further + development by others.

    So Stefan Waldherr started maintaining an + improved version of the + software, to which eventually a number of people contributed patches. + It could already replace banners with a transparent image, and had a first + version of pop-up killing, but it was still very closely based on the + original, with all its limitations, such as the lack of HTTP/1.1 support, + flexible per-site configuration, or content modification. The last release + from this effort was version 2.0.2-10, published in 2000.

    Then, some + developers + picked up the thread, and started turning the software inside out, upside down, + and then reassembled it, adding many + new + features along the way.

    The result of this is Privoxy, whose first + stable release, 3.0, is due in May 2002.

    PrevHome 
    Contacting the developers, Bug Reporting and Feature Requests  
    \ No newline at end of file diff --git a/doc/webserver/faq/general.html b/doc/webserver/faq/general.html new file mode 100644 index 00000000..eadcc0ff --- /dev/null +++ b/doc/webserver/faq/general.html @@ -0,0 +1,677 @@ +General Information
    Privoxy Frequently Asked Questions
    PrevNext

    1. General Information

    1.1. What is this new version of Privoxy?

    The original Internet + Junkbuster (tm) is a copyrighted product of Junkbusters Corporation. + Development of this effort stopped some time ago as of version 2.0.2. Stefan + Waldherr started the ijbswa project on Sourceforge to + rekindle development. Other developers subsequently joined with Stefan, and + have since added many new features, refinements and enhancements. The result + of this effort is Privoxy. +

    Privoxy has evolved from the + Junkbuster 2.0.2 code base, and has advanced + significantly at this point. +

    + Please see the History section for more + information on the history of Junkbuster and + Privoxy. +

    1.2. Why "Privoxy"? Why a name change at all?

    Privoxy is the + "Privacy Enhancing Proxy".

    There are potential legal complications from the continued use of the + Junkbuster name, which is a registered trademark of + Junkbusters Corporation. + And thus they "own" the rights to the name. + (There are, however, no objections from Junkbusters Corporation to the + Privoxy project itself, and they, in fact, still + share our ideals and goals.)

    The developers also believed that there are so many changes from the original + code, that it was time to make a clean break from the past and make + a name in their own right, especially now with the pending + release of version 3.0.

    1.3. How does Privoxy differ +from the old Junkbuster?

    Privoxy picks up where + Junkbuster left off. All the old features remain. + The new Privoxy still blocks ads and banners, + still manages cookies, and still helps protect your privacy. But, these are + all enhanced, and many new features have been added, all in the same vein. +

    The configuration has changed significantly as well. This is something that + users will notice right off the bat if you are upgrading from + Junkbuster 2.0.x. The "blocklist" + file does not exist any more. This is replaced by "actions" + files, such as default.actions. This is where most of + the per site configuration is now. +

    1.4. What are some of the new features?

    • Integrated browser based configuration and control utility at http://config.privoxy.org/ + (shortcut: http://p.p/). Browser-based + tracing of rule and filter effects. Remote toggling. +

    • Web page content filtering (removes banners based on size, + invisible "web-bugs", JavaScript and HTML annoyances, pop-up windows, etc.) +

    • Modularized configuration that allows for standard settings and + user settings to reside in separate files, so that installing updated + actions files won't overwrite individual user settings. +

    • HTTP/1.1 compliant (but not all optional 1.1 features are supported). +

    • Support for Perl Compatible Regular Expressions in the configuration files, and + generally a more sophisticated and flexible configuration syntax over + previous versions. +

    • Improved cookie management features (e.g. session based cookies). +

    • GIF de-animation. +

    • Bypass many click-tracking scripts (avoids script redirection). +

    • Multi-threaded (POSIX and native threads). +

    • User-customizable HTML templates for all proxy-generated pages (e.g. "blocked" page). +

    • Auto-detection and re-reading of config file changes. +

    • Improved signal handling, and a true daemon mode (Unix). +

    • Every feature now controllable on a per-site or per-location basis, configuration + more powerful and versatile over-all. +

    • Many smaller new features added, limitations and bugs removed, and security holes fixed. +

    1.5. What is a "proxy"? How does +Privoxy work?

    When you connect to a web site with Privoxy, + you are really connecting to your locally running version of + Privoxy. Privoxy + intercepts your requests for the web page, and relays that to the + "real" web site. The web site sends the HTTP data stream + back to Privoxy, where + Privoxy can work its magic before it + relays this data back to your web browser. +

    Since Privoxy sits between you and the + WWW, it is in a position to intercept and completely manage all web traffic and + HTTP content before it gets to your browser. + Privoxy uses various programming methods to do + this, all of which is under your control via the various configuration + files and options. +

    There are many kinds of proxies. Privoxy best + fits the "filtering proxy" category. +

    1.6. How does Privoxy know what is +an ad, and what is not?

    Privoxy processes all the raw content of every + web page. So it reads everything on each page. It then compares this to the + rules as set up in the configuration files, and looks for any matches to + these rules. Privoxy makes heavy use of + "regular expressions". (If you are not familiar with regular + expressions, it is explained briefly in the user manual.) Regular + expressions facilitate matching of one text string against another, using + wildcards to build complex patterns. So Privoxy + will typically look for URLs and other content that match certain key words + and expressions as defined in the configuration files. For instance a URL + that contains "/banners", has a high probability of containing + ad banners, and thus would be a prime candidate to have a matching rule.

    So Privoxy will look for these kinds of obvious + looking culprits. And also, will use lists of known organizations that + specialize in ads. Again, using complex patterns to match as many potential + combinations as possible since there tend to be many, many variations used by + advertisers, and new ones are being introduced all the time.

    1.7. Can Privoxy make mistakes? +This does not sound very scientific.

    Actually, it's a black art ;-) And yes, it is always possible to have a broad rule + accidentally block something by mistake. There is a good chance you may run + into such a situation at some point. It is tricky writing rules to cover + every conceivable possibility, and not occasionally get false positives.

    But this should not be a big concern since the + Privoxy configuration is very flexible, and + includes tools to help identify these types of situations so they can be + addressed as needed, allowing you to customize your installation. + (See the Troubleshooting section below.)

    1.8. My browser does the same things as +Privoxy. Why should I use +Privoxy at all?

    Modern browsers do indeed have some of the same + functionality as Privoxy. Maybe this is + adequate for you. But Privoxy is much more + versatile and powerful, and can do a number of things that browsers just can't. +

    In addition, a proxy is good choice if you use multiple browsers, or + have a LAN with multiple computers. This way all the configuration + is in one place, and you don't have to maintain a similar configuration + for possibly many browsers. + +

    1.9. Is there is a license or fee? What about a +warranty? Registration?

    Privoxy is licensed under the GNU General Public + License (GPL). It is free to use, copy, modify or distribute as you wish + under the terms of this license. Please see the Copyright section for more information on the + license and copyright. Or the LICENSE file + that should be included. + +

    There is no warranty of any kind, expressed, implied or otherwise. That is + something that would cost real money ;-) There is no registration either. + Privoxy really is free + in every respect! + +

    1.10. I would like to help you, what do I do?

    1.10.1. Money Money Money

    We, of course, welcome donations and use the money for domain registering, + regular world-wide get-togethers (hahaha). Anyway, we'll soon describe the + process how to donate money to the team.

    1.10.2. You want to work with us?

    Well, helping the team is always a good idea. We welcome new developers, + RPM gurus or documentation makers. Simply get an account on sourceforge.net + and mail your id to the developer mailing list. Then read the + section Quickstart in the Developer's Manual.

    Once we have added you to the team, you'll have write access to the CVS + repository, and together we'll find a suitable task for you.

    PrevHomeNext
    Privoxy Frequently Asked Questions Installation
    \ No newline at end of file diff --git a/doc/webserver/faq/index.html b/doc/webserver/faq/index.html new file mode 100644 index 00000000..b6cba2ea --- /dev/null +++ b/doc/webserver/faq/index.html @@ -0,0 +1,682 @@ +Privoxy Frequently Asked Questions

    Privoxy Frequently Asked Questions

    Copyright © 2001, 2002 by + Privoxy Developers +

    $Id: faq.sgml,v 1.59 2002/05/15 04:03:30 hal9 Exp $

    This FAQ gives users and developers alike answers to frequently asked + questions about Privoxy + . +

    Privoxy is a web proxy with advanced filtering + capabilities for protecting privacy, filtering web page content, managing + cookies, controlling access, and removing ads, banners, pop-ups and other + obnoxious Internet junk. Privoxy has a very + flexible configuration and can be customized to suit individual needs and + tastes. Privoxy has application for both + stand-alone systems and multi-user networks.

    Privoxy is based on Internet + Junkbuster (tm).

    You can find the latest version of the document at http://www.privoxy.org/faq/. + Please see the Contact section if you want to contact the developers. +

    Table of Contents
    1. General Information
    1.1. What is this new version of Privoxy?
    1.2. Why "Privoxy"? Why a name change at all?
    1.3. How does Privoxy differ +from the old Junkbuster?
    1.4. What are some of the new features?
    1.5. What is a "proxy"? How does +Privoxy work?
    1.6. How does Privoxy know what is +an ad, and what is not?
    1.7. Can Privoxy make mistakes? +This does not sound very scientific.
    1.8. My browser does the same things as +Privoxy. Why should I use +Privoxy at all?
    1.9. Is there is a license or fee? What about a +warranty? Registration?
    1.10. I would like to help you, what do I do?
    1.10.1. Money Money Money
    1.10.2. You want to work with us?
    2. Installation
    2.1. Which browsers are supported by Privoxy?
    2.2. Which operating systems are supported?
    2.3. Can I install + Privoxy over Junkbuster?
    2.4. I just installed Privoxy. Is there anything +special I have to do now?
    2.5. What is the proxy address of Privoxy?
    2.6. I just installed Privoxy, and nothing is happening. +All the ads are there. What's wrong?
    3. Configuration
    3.1. Can I use my old config files?
    3.2. What is an "actions" file?
    3.3. The "actions" concept confuses me. Please list +some of these "actions".
    3.4. How are actions files configured? What is the easiest +way to do this?
    3.5. There are several different "actions" files. What are +the differences?
    3.6. Why can I change the configuration with a +browser? Does that not raise security issues?
    3.7. What is "default.filter"?
    3.8. How can I set up Privoxy to act as a proxy for my + LAN?
    3.9. Instead of ads, now I get a checkerboard pattern. I don't want to see anything.
    3.10. Why would anybody want to see a checkerboard pattern?
    3.11. I see large red banners on some pages that say +"Blocked". Why and how do I get rid of this?
    3.12. I cannot see all of the "Blocked" page banner. Help.
    3.13. Can Privoxy run as a service +on Win2K/NT?
    3.14. How can I make Privoxy work with other +proxies like Squid?
    3.15. Can Privoxy run as a "transparent" proxy?
    4. Miscellaneous
    4.1. How much does Privoxy slow my browsing down? This +has to add extra time to browsing.
    4.2. I noticed considerable +delays in page requests compared to the old Junkbuster. What's wrong?
    4.3. What is the "http://p.p/"?
    4.4. Do you still maintain the blocklists?
    4.5. How can I submit new ads?
    4.6. How can I hide my IP address?
    4.7. Can Privoxy guarantee I am anonymous?
    4.8. Might some things break because header information is +being altered?
    4.9. Can Privoxy act as a "caching" proxy to +speed up web browsing?
    4.10. What about as a firewall? Can Privoxy protect me?
    4.11. The Privoxy logo that replaces ads is very blocky +and ugly looking. Can't a better font be used?
    4.12. I have large empty spaces now where ads used to be. +Why?
    4.13. How can Privoxy filter Secure (HTTPS) URLs?
    4.14. Privoxy runs as a "server". How +secure is it? Do I need to take any special precautions?
    4.15. How can I temporarily disable Privoxy?
    4.16. Where can I find more information about Privoxy +and related issues?
    5. Troubleshooting
    5.1. I just upgraded and am getting "connection refused" +with every web page?
    5.2. I just added a new rule, but the steenkin ad is +still getting through. How?
    5.3. One of my favorite sites does not work with Privoxy. +What can I do?
    6. Contacting the developers, Bug Reporting and Feature Requests
    6.1. Get Support
    6.2. Report Bugs
    6.3. Request New Features
    6.4. Report Ads or Other Actions-Related Problems
    6.5. Other
    7. Privoxy Copyright, License and History
    7.1. License
    7.2. History
      Next
      General Information
    \ No newline at end of file diff --git a/doc/webserver/faq/installation.html b/doc/webserver/faq/installation.html new file mode 100644 index 00000000..87fa8c7b --- /dev/null +++ b/doc/webserver/faq/installation.html @@ -0,0 +1,375 @@ +Installation
    Privoxy Frequently Asked Questions
    PrevNext

    2. Installation

    2.1. Which browsers are supported by Privoxy?

    Any browser that can be configured to use a "proxy", which + should be virtually all browsers. Direct browser support is not necessary + since Privoxy runs as a separate application and + just exchanges standard HTML data with your browser, just like a web server + does.

    2.2. Which operating systems are supported?

    At present, Privoxy is known to run on + Windows(95, 98, ME, 2000, XP), Linux (RedHat, Suse, Debian), Mac OSX, + OS/2, AmigaOS, FreeBSD, NetBSD, BeOS, and many more flavors of Unix.

    But any operating system that runs TCP/IP, can conceivably take advantage of + Privoxy in a networked situation where + Privoxy would run as a server on a LAN gateway. + Then only the "gateway" needs to be running one of the above + operating systems.

    Source code is freely available, so porting to other operating systems, + is always a possibility.

    2.3. Can I install + Privoxy over Junkbuster?

    We recommend you uninstall Junkbuster + first to minimize conflicts and confusion. You may want to + save your old configuration files for future reference. The configuration + is substantially changed. +

    See the user-manual for + platform specific installation instructions. +

    Note: Some installers may automatically uninstall + Junkbuster, if present! +

    2.4. I just installed Privoxy. Is there anything +special I have to do now?

    All browsers must be told to use Privoxy + as a proxy by specifying the correct proxy address and port number + in the appropriate configuration area for the browser. See below. + Also, you should flush your browser's memory and disk cache to get rid of any + cached items.

    2.5. What is the proxy address of Privoxy?

    If you set up the Privoxy to run on + the computer you browse from (rather than your ISP's server or some + networked computer on a LAN), the proxy will be on "localhost" + (which is the special name used by every computer on the Internet to refer + to itself) and the port will be 8118 (unless you have Privoxy to run on a different port with the + listen-address config option). +

    When configuring your browser's proxy settings you typically enter + the word "localhost" in the boxes next to "HTTP" + and "Secure" (HTTPS) and then the number "8118" + for "port". This tells your browser to send all web + requests to Privoxy instead of directly to the + Internet. +

    Privoxy can also be used to proxy for + a Local Area Network. In this case, your would enter either the IP + address of the LAN host where Privoxy + is running, or the equivalent hostname. Port assignment would be + same as above. +

    Privoxy does not currently handle + protocols such as FTP, SMTP, IM, IRC, ICQ, or other Internet + protocols. +

    2.6. I just installed Privoxy, and nothing is happening. +All the ads are there. What's wrong?

    Did you configure your browser to use Privoxy + as a proxy? It does not sound like it. See above. You might also try flushing + the browser's caches to force a full re-reading of pages. You can verify + that Privoxy is running, and your browser + is correctly configured by entering the special URL: + http://p.p/. This should give you + a banner that says "This is Privoxy" and + access to Privoxy's internal configuration. + If you see this, then you are good to go. If not, the browser or + Privoxy are not set up correctly.

    PrevHomeNext
    General Information Configuration
    \ No newline at end of file diff --git a/doc/webserver/faq/misc.html b/doc/webserver/faq/misc.html new file mode 100644 index 00000000..df6c40b2 --- /dev/null +++ b/doc/webserver/faq/misc.html @@ -0,0 +1,911 @@ +Miscellaneous
    Privoxy Frequently Asked Questions
    PrevNext

    4. Miscellaneous

    4.1. How much does Privoxy slow my browsing down? This +has to add extra time to browsing.

    It should not slow you down any in real terms, and may actually help + speed things up since ads, banners and other junk are not being displayed. + The actual processing time required by Privoxy + itself for each page, is relatively small in the overall scheme of things, + and happens very quickly. This is typically more than offset by time saved + not downloading and rendering ad images.

    "Filtering" via the filterfile + mechanism may cause a perceived slowdown, since the entire page is buffered + before displaying. See below.

    4.2. I noticed considerable +delays in page requests compared to the old Junkbuster. What's wrong?

    The entire page content must be loaded into memory in order for the filtering +mechanism to work, and nothing is sent to the browser during this time. The +loading time does not really change in real numbers, but the feeling is +different, because most browsers are able to start rendering incomplete +content, giving the user a feeling of "it works". +

    To modify the content of a page (i.e. make frames resizeable again, etc.) and + not just replace ads, Privoxy needs to download + the entire page first, do its content magic and then send the page to the + browser.

    4.3. What is the "http://p.p/"?

    Since Privoxy sits between your web browser and the Internet, it can be +programmed to handle certain pages specially.

    With recent versions of Privoxy (version 2.9.x and + greater), you can get some information about + Privoxy and change some settings by going to + http://p.p/ or, equivalently, http://config.privoxy.org/ (Note + that p.p is far easier to type but may not work in some configurations. With + the name change to Privoxy, this is changed from + the previous http://i.j.b/ and earlier 2.9.x versions).

    These pages are not forwarded to a server on the + Internet - instead they are handled by a special web server which is built in to + Privoxy.

    If you are not running Privoxy, then http://p.p/ will fail, and http://config.privoxy.org/ will + return a web page telling you you're not running + Privoxy.

    If you have version 2.0.2, then the equivalent is + http://example.com/show-proxy-args (but you get far less information, and + you should really consider upgrading to 2.9.15).

    4.4. Do you still maintain the blocklists?

    No, not by this name. The format of the blocklists has changed + significantly in versions 2.9.x and later. This functionality + is done by the "actions" file now. See next question ...

    4.5. How can I submit new ads?

    Please see the Contact section.

    This process does not work with earlier versions of Privoxy + or Junkbuster.

    4.6. How can I hide my IP address?

    You cannot hide your IP address with Privoxy or any other software, since +the server needs to know your IP address to send the answers back to you.

    Fortunately there are many publicly usable anonymous proxies out there, which +solve the problem by providing a further level of indirection between you and +the web server, shared by many people and thus letting your requests "drown" +in white noise of unrelated requests as far as user tracking is concerned.

    Most of them will, however, log your IP address and make it available to the +authorities in case you abuse that anonymity for criminal purposes. In fact +you can't even rule out that some of them only exist to *collect* information +on (those suspicious) people with a more than average preference for privacy.

    You can find a list of anonymous public proxies at multiproxy.org and many +more through Google.

    4.7. Can Privoxy guarantee I am anonymous?

    No. Your chances of remaining anonymous are greatly improved, but unless you + are an expert on Internet security it would be safest to assume that + everything you do on the Web can be traced back to you.

    Privoxy can remove various information about you, + and allows you more freedom to decide which sites + you can trust, and what details you want to reveal. But it's still possible + that web sites can find out who you are. Here's one way this can happen.

    A few browsers disclose the user's email address in certain situations, such + as when transferring a file by FTP. Privoxy + does not filter FTP. If you need this feature, or are concerned about the + mail handler of your browser disclosing your email address, you might + consider products such as NSClean.

    Browsers available only as binaries could use non-standard headers to give + out any information they can have access to: see the manufacturer's license + agreement. It's impossible to anticipate and prevent every breach of privacy + that might occur. The professionally paranoid prefer browsers available as + source code, because anticipating their behavior is easier. Trust the source, + Luke!

    4.8. Might some things break because header information is +being altered?

    Definitely. More and more sites use HTTP header content to decide what to + display and how to display it. There is many ways that this can be handled, + so having hard and fast rules, is tricky.

    "USER AGENT" in particular is often used in this way to identify + the browser, and adjust content accordingly. Changing this now is not + recommended, since so many sites do look for this. You may get undesirable + results by changing this.

    For instance, different browsers use different encodings of Russian and Czech + characters, certain web servers convert pages on-the-fly according to the + User Agent header. Giving a "User Agent" with the wrong + operating system or browser manufacturer causes some sites in these languages + to be garbled; Surfers to Eastern European sites should change it to + something closer. And then some page access counters work by looking at the + "REFERER" header; they may fail or break if unavailable. The + weather maps of Intellicast have been blocked by their server when no + "REFERER" or cookie is provided, is another example. There are + many, many other ways things can go wrong when trying to fool a web server.

    If you have problems with a site, you will have to adjust your configuration + accordingly. Cookies are probably the most likely adjustment that may + be required, but by no means the only one.

    4.9. Can Privoxy act as a "caching" proxy to +speed up web browsing?

    No, it does not have this ability at all. You want something like + Squid for this. And, yes, + before you ask, Privoxy can co-exist + with other kinds of proxies like Squid.

    4.10. What about as a firewall? Can Privoxy protect me?

    Not in the way you mean, or in the way a true firewall can, or a proxy that + has this specific capability. Privoxy can help + protect your privacy, but not really protect you from intrusion attempts.

    4.11. The Privoxy logo that replaces ads is very blocky +and ugly looking. Can't a better font be used?

    This is not a font problem. The logo is an image that is created by + Privoxy on the fly. So as to not waste + memory, the image is rather small. The blockiness comes when the + image is scaled to fill a largish area. There is not much to be done + about this, other than to use one of the other + "imageblock" directives: pattern, + blank, or a URL of your choosing.

    Given the above problem, we have decided to remove the logo option entirely +[as of v2.9.13].

    4.12. I have large empty spaces now where ads used to be. +Why?

    It would be easy enough to just eliminate this space altogether, rather than + fill it with blank space. But, this would create problems with many pages + that use the overall size of the ad to help organize the page layout and + position the various components of the page where they were intended to be. + It is best left this way.

    4.13. How can Privoxy filter Secure (HTTPS) URLs?

    This is a limitation since HTTPS transactions are encrypted SSL sessions + between your browser and the secure site, and are meant to be reliably + secure and private. This means that all cookies and HTTP + header information are also encrypted from the time they leave your browser, + to the site, and vice versa. Privoxy does not + try to unencrypt this information, so it just passes through as is. + Privoxy can still catch images and ads that + are embedded in the SSL stream though.

    4.14. Privoxy runs as a "server". How +secure is it? Do I need to take any special precautions?

    There are no known exploits that might effect + Privoxy. On Unix-like systems, + Privoxy can run as a non-privileged + user, which is how we recommend it be run. Also, by default + Privoxy only listens to requests + from "localhost". The server aspect of + Privoxy is not itself directly exposed to the + Internet in this configuration. If you want to have + Privoxy serve as a LAN proxy, this will have to + be opened up to allow for LAN requests. In this case, we'd recommend + you specify only the LAN gateway address, e.g. 192.168.1.1, in the main + Privoxy config file. All LAN hosts can then use + this as their proxy address in the browser proxy configuration. In this way, + Privoxy will not listen on any external ports. + Of course, a firewall is always good too. Better safe than sorry.

    4.15. How can I temporarily disable Privoxy?

    The easiest way is to access Privoxy with your + browser by using the special URL: http://p.p/ + and select "Toggle Privoxy on or off" from that page.

    4.16. Where can I find more information about Privoxy +and related issues?

    Other references and sites of interest to Privoxy + users:

    http://www.privoxy.org/, + the Privoxy Home page. +

    +

    http://www.privoxy.org/faq/, + the Privoxy FAQ. +

    +

    http://sourceforge.net/projects/ijbswa/, + the Project Page for Privoxy on + SourceForge. +

    +

    http://config.privoxy.org/, + the web-based user interface. Privoxy must be + running for this to work. Shortcut: http://p.p/ +

    +

    http://www.privoxy.org/actions/, to submit "misses" to the developers. +

    +

    http://www.junkbusters.com/ht/en/cookies.html, + an explanation how cookies are used to track web users. +

    +

    http://www.junkbusters.com/ijb.html, + the original Internet Junkbuster. +

    +

    http://www.waldherr.org/junkbuster/, + Stefan Waldherr's version of Junkbuster, from which Privoxy was + derived. +

    +

    http://privacy.net/analyze/, a useful site + to check what information about you is leaked while you browse the web. +

    +

    http://www.squid-cache.org/, a very popular + caching proxy, which is often used together with Privoxy. +

    +

    http://www.privoxy.org/developer-manual/, + the Privoxy developer manual. +

    PrevHomeNext
    Configuration Troubleshooting
    \ No newline at end of file diff --git a/doc/webserver/faq/trouble.html b/doc/webserver/faq/trouble.html new file mode 100644 index 00000000..59af117a --- /dev/null +++ b/doc/webserver/faq/trouble.html @@ -0,0 +1,306 @@ +Troubleshooting
    Privoxy Frequently Asked Questions
    PrevNext

    5. Troubleshooting

    5.1. I just upgraded and am getting "connection refused" +with every web page?

    Either Privoxy is not running, or your + browser is configured for a different port than what + Privoxy is using.

    The old Privoxy (and also + Junkbuster) used port 8000 by + default. This has been changed to port 8118 now, due to a conflict + with NAS (Network Audio Service), which uses port 8000. If you haven't, + you need to change your browser to the new port number, or alternately + change Privoxy's "listen-address" + setting in the config file used to start + Privoxy.

    5.2. I just added a new rule, but the steenkin ad is +still getting through. How?

    If the ad had been displayed before you added its URL, it will probably be + held in the browser's cache for some time, so it will be displayed without + the need for any request to the server, and Privoxy + will not be in the picture. The best thing to do is try flushing the browser's + caches. And then try again.

    If this doesn't help, you probably have an error in the rule you + applied. Try pasting the full URL of the offending ad into http://config.privoxy.org/show-url-info + and see if any actions match your new rule.

    5.3. One of my favorite sites does not work with Privoxy. +What can I do?

    First verify that it is indeed a Privoxy problem, + by disabling Privoxy filtering and blocking. + Go to http://p.p/ and click on + "Toggle Privoxy On or Off", then disable it. Now try that + page again. It's probably a good idea to flush the browser cache as well + with Shift+Reload to flush caches.

    If still a problem, go to "Show which actions apply to a URL and + why" from http://p.p/ and paste + the full URL of the page in question into the prompt. See which actions are + being applied to the URL. Now, armed with this information, go to + "View & change the current configuration". Here you should see various sections that have + various Privoxy features disabled for specific + sites. Most disabled "actions" will have a "-" (minus + sign) in front of them. Some aliases are used just to disable other actions, + e.g. "shop" and "fragile", and won't necessarily + use a "+" or "-" sign. Add your problem page + URL to one of these sections that looks like it is disabling the feature that + is causing the problem. Rember to flush your browser's caches when making + such changes! As a last resort, try "fragile" which + disables most actions. Now re-try the page. There might be some trial and + error involved. This is discussed in more detail in the user-manual appendix.

    Alternately, if you are comfortable with a text editor, you can accomplish + the same thing by editing the appropriate "actions" file.

    PrevHomeNext
    Miscellaneous Contacting the developers, Bug Reporting and Feature Requests
    \ No newline at end of file diff --git a/doc/webserver/images/files-in-use.jpg b/doc/webserver/images/files-in-use.jpg new file mode 100644 index 0000000000000000000000000000000000000000..207b6f7432b1830289974b77c11a473b0291265e GIT binary patch literal 16587 zcmch;1yEc|v@SdZ51!yKz(GQg!Ce9bcL;6)0tD9?9D)T2E&;-z!QB~P@ZcU?2X~j? z_BiMNpWJ#?ukJms>g}oOs@*+%t<~LMuj;k>>!;bL6#%}1jJym02?+_{`1}JrJpxE1 zT`Wu?7UneW)(|TiO)Co;S$So(rv-o{00RvT9Ss!&9UUDL6XPW|Ar3Yc7B<w|OLPvTDjblllv^zW-WPTpu} zy9CC6pEzaEGD}D#;p3OIaLuW%d6q}`9~Awg^6y%L|5g3}S33{DMt;^sfJ^`o1MGx_ z`G%PQ$D1=mdDWq1KpUCaxI$D0;1*>56IpD50dPj^?V=2q+6&|Go)Ns9c z9DUolNU1NnbTZ>B@@xFo_z8d*)ZXx$ukyQZtmF`lMDq5|0Na(Se?Q|mK1^{}XjOlH|Er;_vLk2T z(Xg#6R_<#a$P^95>xs^dpgMn50)-qfHI`B#N0qH&kqeom6($v&;VHorE*qx2|k0dP*Y((e>Eo=Gb^1uDx2LS$~2J@PG&kbq?2WQAN=y zKg)W#(9kIburoq?g%aVoZ`VFQzI3(d)G24SfE;Yda8v1$F1yoxQt`U`C?{0Rrn-N` zS>aBqDDN5a(i1sbx^nLQs$)VnSBVz?^;|3Ko3x3MmHm-$^XT(;e zHQpLEVH2Gax#c}e?~X6Sfq{;s_op9KDoIf?rwIG24vb&Q40m#EB5zLkPQVR;TS5QI z3s-QpDV2Fy)@2J8oi;h*`3i?1ApUTnt5R>3!9Zn91u&&eO_;5`~{9&letdlW` zp@aLLjm-#sUh!6s=cE>oFVt$IL&%KA^!gp+J2@d2R+et1NjEQe*qi(it2J;6NOAC! zZPnCvo;So&hi&eE0ouqY9=x*l1xZI_gf@jwmsgh> zXK;)JvLCvy`dXZ3?O{z3DFX*XY;n*fWMqF*0DpxRS@O7jPgP>wsWXtbEs-u5R5pnl zt28#D`C~RS(-;s`_XMyEpP8#jI-LIeQI1-f(cuEFg11ADT3c3cu?pCe zY(C+!?*Bxr_=JhgH(IS{FuaS}IT~&VH8gL!w3IWA@%Zz)fV5YA29R~|V;K{XIVE0} z{Dl^FD;*JfOhU@CQj){V$~h6%CF>i)PX`hOr^8v7<*o*!LWUg+VVW)s&{fJ;!jeWw z#BFrA=q*1{I@>U#TMgd26E8dPwX&=#kTYj!iTX;;X;6hU>7xE1qlugR)2oH!NO?-o z)HiT9#ha0rNRA4FeGOAYI{yCR_yBk#F?-r7eE<5fB*S@|d{UoXdta2dhr$rtJe?F&0@bC~a31@u20w62T%6brr#1mR(pF2+~XzD5|wVF;kD4MU?j-aNqs>-KMDv zo3+_3``uw=v|ytvX01L*aE=!pSGj;>K|@RXg7)7QG0ve_k1Vk9akr7dz7h+S@{cY0 zk|7y6R9D6fA30WIy508lB@E`UiR_E;Huw9joO-x8k3IiT8$p-g`_F5@LYOn zsLnO&O*KWkS~_}nHd@Q(?9DSyc37;14_d(THCT4d!USqF;Pic<2XvQoS}dOLYw_{q zZvCv;Z_qH`c!Cj8)$5Z9lZCE$IbL!CZ&WBs%Y7BGw>ucPQ%&%<3Y-9A*I(zZi zU5!Fn@mnsrqtkyVHdcR(}oXJw>!r3=XC1i8i z@&sTYSv#W6SzRJty=G=;5V8d$`r+#Bc=UTyhm}nQA-MBCCtk&Vp8daYWq;Ybu8-T1 z=-Vc0En&P(V`kYZ*r;rCBA+%vizKLz&MrtZ?xYScoBW<$Q+?@`uerBrJC!S7-6PvQ zB}agwkP|3%)k@oN+bP$q230Yp6G`itwi)rQa2Hsp(6UjLJ(ceyPStHxB(f-*-z~|G zd@*Cm2%3>wuD#6Q(sUI z94)$@>0OQ>{^2E7p5v=T{PArm%)rKit2JIg0_42^^JdV?ooRrkMqY)9>8}F2_yJlI zlX%Ny(b)wyQF&2?K<=>sM~v}VUl+feMPaMV8rM!m$nI3V;Wpz2{3T7yz(FD0vQC+(%>s>kM|*^6RSA6}v8~^%;IB?CE9ORpWGY zes-Qj>uhS;7nLILUPj|u)o?7UTV$v+w4&SSP^Ul%N{+M!iHi5%mRx2~HyRW=yl|i` zDQVEE4VfJ17z~&dGVH6#HHmdzj^6xBiWD}>{Ew&5xBbUc4EzsI@vptafA=sfuM{r( zR&WP<1)l&Ub7&t}KY}0GtHGJ4zOfdx-P>YocZ~n}7McO+?50y`*ss0Mi~Ff6HiicH ztc>cUqvB5d6zNG5>5N@p!no9J_t~5lcIk^tilWIqdW`A%0FE(-G^~EcAH1f8Ev+9@ z7{sjYynxM~J*DeF*>Id+tPbEu`fd5hy*rwI>4;Ikt|~Tns5dWM|MoUonN@e@P2hpK zKOZ0?mu5aY+(4AZ>0xV~sC5~H@)yb?rw|iSH34X-|NN(d>UY4*%QOu@ES1%OMHAd;+-q zOUI6_*XE^F7kh1Z6_0`NJUBk3ddr&KGPk@or806%oK+isW$Cf^zQEEiLQP-VyQZzX zI6eIlBw{-5<-%x>-;wO=ViE*C;coPlc!6pUqWt+QR>B$u%Fv$=h2vFP5t zVs@-W9{Fp>GLxGL@~V2O+JnA6D;B?zs{DrT=-$znr_0+GWJPw%s-lWGID6WGeq$aB zyC<$D=?e_YK!s$W3D8I>be^=0Hv8MFO?0|7Q-veq77cZ0d)FmqXH;1>SukL*(`i>` z#IaT-y;2{~*`R09_N_-Y6wB9D+K$s{HG>qv>HYb;U`M&|N|OoqEz=)j=9gabOr}{m z;ZUXh;Mlq{zu_#C3U$3Armb)fYbILg+pnB0aUn@Ecnug7{B1yySeFv5qq3Tl2MczB zNkcZBm-)R0_THT-6u63Ek$7e*Vr}^Y-M@-YKxtYY;SWwx(+f50fy4t4lRk=2OP580 zfZryE@O`J*oucAp9ULN7tygw8diZ$m!|g8$_lb~KGthsl!^uO>8BK#566Zz=B2Ci# zUBF}L3~* zwCnkYP~9E#5(~rcJdQ;%NC`s3$=Hx(vX>89Fy?vpiK$K;DZCDdORZ@6@s5m;znaYT zml@w&h=!p+O#S$eAOn@RIT7*#9h0~!gs(bubd1CRqk1A!ui;)R<|*ArG)PMa2Ti2; zAS+}!05(!A=jsMAr8briFf+k1JEkU?lt+B}ECQaiVxP%YD3GfY{id+oxBp&GSytGl zQ3k;}o{Wxe!XH14FY6|La|BC{xcC+EZQq8mRa3N5i#M_$w-~_L*lt?jfu@?Ou#eU) ze!FUTOU|v$zx@MhPJKv_sK@$ULz}N!fti1boBT5b1n%wcvOvSMV7ZQFiW+yDax*IH z$wDJew)|nXUm|StKs>CrK*O6|JJD_vB>2f!FhK=epuSADOeLt(Bz*rKORmDr9Vvbb zX@Y)LqbBn_?g`M0uP+S|m+OmX^(!Uves))aBzLQ*-*r6E?>CH(gDpm)606ixQbv>b z2YRs6>hgZ}(%DBWTu5l@cnja_|8MK$1NAbm1qbqTO=VUB7;rXYyXF0cA1tF632{iX15crA$81iLJx^ZcnlmZKd*riIHZD>Cpi{Hzw@=OG*98~vE; zXF!IqmtWn@CO)Dvizw&pRuugDII5V2)s?|@b`$Dc0@y@3OLEqdMU^!3u}|XbBR@e- zjY|`zFt_xZGJ5PD+@chF0@SLok(^SqCoA^9iu$$@yw)EQ~ApeMhLDm zGA;;Npx22JeTe8q-6&IG;FuHp!96p5VUZ_=d@g~C-`Uxkh<+8@B!Pxk(G@vVdt{Gf zkU?~upIo-@D!EVpL?%VTvj<6_2OlC-(hUO6FWaSz5b-0^1pjOutwgBwACdM>S^9pF z?FPTtvuQfc8B8>47)R&w=qnLg9H+R$|9IFx(*$l+4UbvgU(F2NKO#K+Foq!0D&%^9 z!^RoMh6#pk){`xum^ri{*FXLgegd=`R_{9ImbTu?6=o3kgFu9@#Mk`XPF2<@mpKb6 z)DzaUHR$c7Rk1Xk>7aM?Npg$SAN)Sq^f@S{EHJcSHJwNORzA3b8~m;~7)neJuU23Z zEW??+G^003i|XNq&zYg47jN)|!@b_UY&|O~fJT3$jR$S`*hh1bg(}I`k^&apw^2Q| zxP&WSb;vT{eM$%^rU$`#wloA+*6Ca*#owK@3+|?E2;>6qdEjhRv$oHU7|RRSf9WoZBl{_7?;2_AU8c%Md8#pFu^ccW@n{efji->P zF>hWFjQ~cr9ESy9ak9ALgL45waWGd10$r|$KtiCrHKh2;t^g{8$waNN7gl`4l_0Yw z*N#IqxFmzozvH%-Y=v+vXB0=(AJNR(jpf&!3{qN>0z}$Wwa`cx)J7uR8B+7B_7BR&;G6WAFwx z{%hZk1paZ1TX#Zkb`dy)^KQqn8sR(Fu8 zR;M64MK(mfcUrFxm4LMiiGnwx19dt{tHh5 z*qEl*#tkCVv4=C4o5v;d(~H7oGC?EaBZHItsTOi+9nLx5#W7Qpg^dQ0i`;ORi-V0= z>kWe4sibAGOMT5X12be_OplO{T9>&?PN*81AJy1@2bDA}49jaVgr8;ao2{pxZ%=uK%WVfIyua*!Jx|$NyIGF@6TO*T4)_FE$oMmQ z%{=4^na~_oCX(V(Ma!^LiY1XPw1E3BnnOmlJdq!Zqsgq1x;&$E_7gSgjat2Fv9T=j zSuCwQGQ7gWQ&18{1sxhOkaC2?pA*OJ$Zg%0>t^c@yXzaxTvoY|sAz4Go-Rin|pqV*Z7m;dNhRV9*A&B#<0dL#0z*W3muBeO25br5MOOas|*KkYS! z+P8N4owi-F+SmpYnJ369>ZuB^xTP2n{_Npy9qE`o@G4ECao;v;^ZV=XJg{bEiZ`g}r`*S9jWX)3((5uE^cTAJ>L%cTKSR8f($eKNaqQYb}G zJce1cmwn8XP1}I+UG-GV<0kukFub&o@H^MYwqR)tI~a;7Bu;<8FDk@};WG=K z*~a-zqrg~{-sw&d$$g&SFl_1xP$d5Zpu3?FQG5cp>9<`liEXgL6-#X8@%uIWr$xwU z;{rN5=}_Cz?I*F<+prij*>7eZ6mWEI6my>db4jImk2#F@U$e8D`n&LFW;&!%I5d=z zrHE8hM!?GikG1ygFT~*U=Xv`>o=*U)GP8{B)AWYM?%DdO$b@GntQ6!Gq2t{$p(m(X zTA0MAOh*$YOR)joaGJ~Fc%2YfHfC&A@x2$bfhS~d=ug70MRPpQLqPhit3-ozapO`} zjlpI`MTrm3n3=)Jwi!KAW&hs$Q!U?u?C5d@cu`jPcb-AkQg2dZxM`Q^^1-$b%_8mC zZ^4nZyA)^o@Rt&eJA#SS>sTKD>R1Bvp)ibRhI_tZ+KWae>77C&{{l8r8TvyJ(i6Z! z^6*}{D_NMcRbyf*BqfbZ#hZnx7JYYoTXaqB0JjM{4kq-6QxT)g*Tnh|H}bu4;awDc zK;(*p{HO-Z3)|NC7fhZxQ@Aj+o?UPZlZqC6d6`b?7U=yj9*Cm>DO??)`4j9OBG1fF zU_lkOG`-7k*eTzRjy-~g(YK!vNbgRqr*6QQn{heNXuD$0$x#&<7cX~81w%th!qHo% zH!Cuj(JhOqC@u4)flO6l6uSy`*YIEiwk+jo>~Oh|{?f}^jS!_AQ^aApiNiMoZ^zy8 z1d>nhG2)O3II7&6qY%vN9TPPhcWH+k^qOYFBvt3k>_se93Ts*oj;^o%bYS69F*Pq! zcYMkyTxf9^D4(YLR?e8j2f{-KVgh{+&+4&P8j3xNA0Q2N@ftH>6v&^TG6HBdik*Mf zY0~Ty(j4kXs|}2F9E%Q0?Ot0l&pNtdO1jr0{PeHqSElyE%LHZ`P`z zWM4nO`K;S$G4VoD<_M5U3m~OnnQ>q%EBLvFHPv#MvFsS~md3;il;n$Ctu zoMB3j(4MVKuv1aOAucPff_fTY$CW#2C}>;Xa;BltSS|EUF78}zn==zj-WlYWAlJjE z<%l=G8WJ4)fj6U~Keuxc3loL1fif1{DnI%~P4=)^+Sr-T*7Jw7(d$juxsE6y3cTvo z31ou^xt{A0qOc>^Q|{2hA`6}xXB?>umnk%KA-=dF9HjOr>AW(OZN!fD-b`me9e?ru zcb>zdCes9IRk{c=($D_C?|J8hVx(pU2STw)}xfNrBGM{>T2@L1S|EQ$FtnvWtrfgh*{VC9oK1~% zH&5Os6P8qDe>Y4jR&0IIO1(4@K&ODzzfPndCWbsc%=Kyi#< zyJ&4}ofnp|lEs?T{83wf1y5VtCfkK^2bZssTHHH-^0Q8+{<@3EQRIwLc8GBo7_FNT zJnpT|S3mI$Cu63!r&zoVmsMA|nv~mqN8+azzrMo1hlU>CyhK)8t#55s;PXM_gWKCo zBB>~_X%CONfF)2uI4GzJkTr9PGi_D=$8GOh0J8~PToGnRjdTDvQe>p> zi7NK!d=qe9-FUfe+@jXM8I{|EiEaR$$ZfEsptO8xq1Bl*FlW65WorC$>SC6j_@UYe zcnF?f*~Uu|q_5y`s*BH9&~S)e#?L8ANN1I$Ct1Of^r^k0`?<#z2<(B>9TrwjsD6q6 z`Rhi0aJ=tp)jn=#8Zu{<^#lypDE8om=p(3!YuWjQ2SOxG=}t?eT53_FN3Ns2r_^z# z*Tsv;;96x6#BLd%BwIT)A4FG7&vj1DF$3nc?V~_WZ>p@orKkxP+LM&(M0J%cwjo_J zq-Lp9tQV#Xm>}(Gr-{;8W`lVxTog^^mrY*kvGGi)ev9&PAah7YtL0r-i7~gY8gVI` zcXTg2GNc_CjIoWrk)=!Pa)As~tUZB$r}>$gyKK4I7D_5>Y&!>V%siB+egcr5sQfv? z25gg$xbiE-O?y{r~bb>&S9;zhomJ6N$AP82v9faqTyjh_K7g_+SNP>W!`*=@6 z%)4~rFr%_h6)-Q@`n-})xqDHu>+T3-J2}nL$FgE45Cmy4Dzx=DQ((%E`xB=QwMtV= zCC>MDuvO_qX4_q?c}r%zPyW)`IVyHWV*nUYI>r9oYF_3uUkJW)0}bUmnZdMCS=^|o zBxr_sR6T$vszx(ZJ|Lj*toi_t$R??}UxGefU2oqyH(?o~Efhj>-xmQP5V+20P5D!= zQ2eclx14Xxkd95j=hhsT-XoMtu(3#|Ks9o;Rq1|4-}0tY}y z;+Oz6C0y2i#t!#zs_8n++h0gHHN9)sZU~NXpC%t9$*KyjtP;*5>3NZ|t~R zMkws$BSdBV#LHV-2hKkjTa`H%L_+qipAC7vH&gnJH|Kj+)cmyEZ^8zJKL=+urk!Xmp z@xTT=HZ$DXzLava5A-eG2ep@h>?z8^HRw zvx^CEOn0e{6EW$R3FEKHSgXj;+lo+}$Uv;Uh^#=No9Uk>zb?NuFEAz}-qm+>* zizFdYY$Irg$D{*`PKVRw7q%g*>JmVDEdnlG{rPCKFsG5nzFzleFd~v>e*GYQ?nvGC zm_*rv*U=YMpdiXD z!$USf`gMRWzTCYJJbT-9QPJIzNSiM|Ue4;%>TU_OlucUi3rYzmutDtFYOcw_L?PuJ zi>qQc8}Q5YI*Jy`qLfp?Th60>rr%cMeVQ~no|dy&s(qdvU*XRDh?18v zAIyaJsK1X4hr&)|+7(bIFb5?}O>uB#h%eTPjsqwsCTQxv9R5~n(rCpv zzkLGm2HxI`zE=P6f&%5cD_0{_=E!UnM{tjWYPG88flwQl7cw;s>&IrzF3iI#iQVQ@ z(!WCUX)`~OHR{tnP-zHer2B%})*pGq(%nNbG+jG{q` z+-|%0D6IYj;2Ui_R~wZdHe0LWQ*apX{b(JO)v3y3?Ot<;&%fJ<>{?m#LA^tFTf?co zIKymWbW;PzjBf5Bb@5oljB2zWC8q8<@c%pvzj(BsPf!1`46JEGxMZ+2FJ6a^mHCdv zjrZC@)%w;z&WWXV!${q8Jx7jBQ2~1;J?=uuA5L=#$HvE@vTFMoZ~LI1+b9HAqC-gq zcH^SXkaNa$RK*Bp#v9k;a2P})O|06%nHYwt57tJGrAbnreurlcV2prd*kCy zc}B4B3uRZy6Z$tj>aR_QhEV4t$k={{BxIB^qLUqekX4!%Mj_g+eOJI zTU5-J+uVu8@KyFu=DHmlZ1haF;%w}dsOodXTeM+jGH+N?)?h-A;a4M5&|?b)I8D1e zNQCMrS4B;q|1HRdY-Iz#*g$zpMRctgs-LVT&26pQpO?#S-d5cK#?|NLx!MRwh#Rxp zy=F@asR`N0N$W+8N~o(6ghnn-uf!ijQf@Bb^dEg-`#p-zXk{4`YyD}}%GbV&*OmMH zXNxSMYLE;MZ(I`a3>@oIwN`a|HGgb?eUk9YO@B0fyKtve#iU+*ElVAc3 zv4($HN*OIk*3;BdTcRU+ocNZRCI1$5h<)OM;TzsbU$1yLLgmZKOTJbg9;T?I-wuiS zeLzXZ-_hH2X7GHT_o}sD6je8`u%>P(ADq3#Q8$F`1eQ!)MB{M#wd5A!A-t9TGXqzG zFna~Q;47+V+6tyGtbjfrugd`mv&E6jBPV&i8~f4S5yVGL7eldvOdHhH_?C9fgABnvzlCaOVyw(fmqm(5p7D_I4_t9qtb%b` zG4_{-1CIvlq{d|nCl$C0O$Z`4Jl28x)((}oZQs~+zDx{VWYS$4HoM%|fv#!}Ed_Uo zhcr3<;GU{Hj~NX-d|9*&D^XZdgfeiC#proD{;9rDzYBV-eEd~Qm6d%jv-{Uwa0aSSEqyIcwQWI|0MSFTnvi`(zHe?0+q4l5pCifsgu z-E%u6RiBHj$p<5<`0@oQc>*XDWzqmLz0K*r%JA^IWwlh*Zg2MrG&ri!CgsLy(Thl} z=+|53gcIYgErXu`V++Rjgns>E*e7kb!nRLAV}Sud6HRUXpEYj9!r4fDqYb`S%K}xcb5g3%;3)_hexas&p~oC%T%rbe z_%3kt`DA~qJkOWKaLX$CO=GUP3@%pvemw%s7|Yn^Is~y`Sql$LKeYCTo1DL0RtF#z zI9G{+(@;l(?Ul7I@8`oacvC7DEu%RtW8rT&1Xc?~@vhj4KG%C?_scrG`sU38ibyGt zDaCE*??rslwWG>`?lanKU*66!KLOkek_+!zRKE1lk<8E8Uon^XXz9GOqvU0cj8|yJ zQN|@-9QtzQ==V-ncfw0LCZyqWSO4x-gU+Nnmu2#BAjJej*DHCNBGB^J2Yaug2DdSc zj46gDSr+Ydi{6i}j!{PM_K81YB*yBS*Duj$HyZ2)zb&!D@rW0D@#{9P6VQh z62v<`W(T=&mZRfQO|MGZY?~4GE+27j<;Xo?4Bfd<@&Il+et}#-Lwz=>!NVo3IIs%;V-k_{DzPBtVc@);dYal-}D5KZ_+zlclzwA86-9pX8#1(fJn0A%#R2KH z=ToTZP3INA4x@1#e(S+FVibMhcUydQaaV4)|6qxC%1&jtw?)LEUY#HX5OBDB9L`Dx z(%4+W7SkdjT;#V+51@=17?k9l75RWQ6LjlrE3PBT6t!1vFkq5%B1?jiq9EyJH~3|4 z;}XKJ+36u)7^0bE#k7D`Oy`|;sE(ZFe>#KiJOO-JyTspM1pL)n7?{Lv1j|X8hi;!m zid&M)^^H{g=v66Xw8;Rvt1$_LR3p6BEMXx_zPh(0+Nwmtsr09UnYGSB^&pCRQ2?FK zrXAb;r#szNZLa6&eSYOzZlJ58+8KtGn{zJj(8%0nbF5-(ab^WVdi^=8ArOeLYT}C; zZIoomiih&^NL?=!4Lh+3h2S+~fujS=7Chq5UE!*qqhG!)CqzQD%36%QZiq-it~s<@ z&xF`FzI}t?wqHLiZ6#1#yiOGU_OEYsQ}JT3o)tNN={UBz+5Jv~%m@JiUC322RQFKr zcQ1+K8gtPe8EbnI*PAGbE^HD4(ny>hRWHmo$)K4IbuhCcLKgSq_3ge>xL`p(p`gV( z-QM_L(<_v_BL;D;TwX<}@F##rQG=u`t5B4Z<3n3bDXmHJ?UB(`haZUTb5bNJr0Fz~FT@P@ zVxvr|Cbud6bZJpe=VWwDf`d4@6BwJ=0p9oFL26K&mv|Nrn@#Fsa{8iRHva z4uG0mVb=UiS!?zWOWy%aj?CNWF@onP$PNXMd&n1G$&ZRxwU`L=TWxpuja8%` z>`p}PjVhV>l!oW?Dd=z>+CtX@DYzm`a!meC%yAX486!L$PbqASezZ+Ok&3-EBuP8;uXW;cUcS(VUwhia5nW60&Ii zC_X)o@c?@BZ9kmK8Ybq3uo;aBc?J^;LoQ@q-CRe|E!RxX?4n|bEL;-SF{=4mWrFQ- z!pn#52IO6A=}xTn-ooSCB(Ex%J0uyCrh~>lF4=L*N0Tcva<5w&UY;#ey^JGl*5Hpe zg<4J3GRp~}@HTa{b1aQN{1m_Pp!Gq&I5&9?SswCzTLpmZkeQ9?^?ygg>>=cgNNKR~ zOpX5w5SLdrDc^&*v)mAwPCaqOLWz~sGs0<=Z#@1Pt@an&RN)gqM~!S*(eTAmt3B>S z!BNq?ANwiIr0Os2fs)|);xBfQ@UFh%-NDqsFaF4se0@&6&d6;Q3KG9+$EGGUM~#hj zK%9yc%61S?F78nC&8}L9dSJoX6X2Cw=HR^??Q^2p?%uj9@mzCSZG4(9Jyubf z1zj*(lpTd~9R-^bc?Q)%?-#7Egf*dkj>bN{x*GaMz^W?>$E`F_enGHrx!c}bb@P$_ zP%Qa6)^=re@2x|!*O__T)#t8(9~(3^*rp}`r1TEKer+ocl^My-54wD@>+~C+ z;NBuSim0m9Tu{CBeOp)hKUU!=Gh%CuPjQu9)YWOJweK+H6?#)z&&pl^tjNxt=&#~Q zpdShA7lyGXD+(=?$vnBy18>s}8WiL%>wtHa;yuLcwU5SYDib$;-%vh}c1FAYdT=Q& zfCgVF^->!42+8RhgbLF%{v2_yb&jhX(Ozl`-6<(5TpNm&e=m^-MMrC;MN9vNViHyP ze)R7?CHyT-A}4R9$sFy(=1p<=MT1GnA-nZd7Cy!}T1LSpj5CrIic1w8UY?P!80>3S zq-$1SAyoznqiWrk$%(!)zc6_Bw=u%1n|E0;6HdIaXoO8}UP)PqqCu`JNaN#@ndjGJ zOAttK)Z04{7p+c+rHT1Dhj3BziAcs;g1$z`5Ca*Vu|PS5BNv!+cKlfVJZ~|nv9hBm zWBodMS{g15lapEtnGW&t=B6SA?$7r&oNnDO=u1wV5*ZjQfJO`!=0t=^tM+E|x~@{_ z)p8&@H37E;bLPvy5!(T7wXKl((E{@VA`zg?PGXcS3ccd%?sTPLqdhp#hhJWE6TGY#LWS3Al|DvB=3evU7a z_e|NAo29oD?ENnvc1sSs~YgN$;b zE!6*qmZqJw`g=ApnxKK_2%L$X@5YK{bz4I*%6ShA4#Ys@Qf09s@UD&iDC1J>ib+wn z1zgK?t3z5;8HkHOGoEyL?!4Z&t=7 z>akJYP1+Iw?4UrtqhpC+-!-oVt$}V;RYjn9MYtzJBywqz4CU|P%YK1n7A@0tMZ|Qg zK3PtkgbqEI5C)Y+xLh6}=^OcKvb%YG1E@?ar^K9BGx3$CVX=9h?d*j5yA~xdWLMY@ zFaqe|@_Od*qtxrOaZJmCd=-nJTjRZ2Vq8K#7rz(nGtzf>A0zfy_5~yorU%}zLnSGL zN5Fj}xBcg%Dl0!Vr;YWEJ;K$0z4$``NpC*Zb8|4R^-ULC?tN!l?DPb{nK(hv*VeKZ zL-4-$O)EV}q#QYL2HX!^S*>2PRxeU3?Jn6Cr)#itqvJX+Vk6aG4`7H9@Ik}RbsR!M z-gb$waO=IPPa*9nMYGh77a0U^RjHC0*(Kpp)#-uWz^V=Gzzw7s_uOs=(U?6K8xVw6^U(rvh~4>q(FYU^Y8gL!vzj4uts zhK#=ZN5W>*V~t`NOIdBf-0iN3ezRI=XTy%Y1Eq=Tl0)uzkx7`>%Awh&eJXPO&s`Z0 zC4-`D=eXWZK}D{4^z`iyh6zD83AUN&0#aef0D_CLD$0S%i8G<`Ek?`VsQmU1Bx%kf zrvFAI^lwPwz5N$0YF}1Ev?%1l$3zPaZtM2B6Qo zujpHKCpXLN_2ObE&o4gx&(L{xc@ZXyvMu>pZ_|QexBDF+URA=<0MB?S!@nY51D zOLd9B+&62*bRvxRJOsf>IB3$MkpztH_;gP^!s zis7LrN7dQ!n%S)v4NOSLE2|dNOh{u=dh~^Y0vgP?^O_*Y>g`AU5_9(*H)hT;(DFyy zgqbd5_ceB7?JAz%FZg?yO>C3u1$|xnw@0A`c(hNAu%b;ew zo@88sa=4%oBt{o;1PW}_JHN&4ai~9KwuC-A0s4EflNbv1Ia$LbGYgeJ0-7gatO9E8P^+zT6(>-YN|HPd63+%NyVU z1jxHj0OQk3RcbsGDZC6-<0&p5_wxbTmxr0`r&pT&rw9VT{S)9r9V~)@_xlXg`i*B< zX?(ScZNT`|It@M=+LB-K94(-CCmrDu7O?z~-j8@#rkBF0@=tdWj&Y$y_k8>R;AZ;2 N%$5BgJ_~x9`)>{ZIs5p1}- zE)f+u4K)=xB_%B*Hw!I2Cj%uVs|Xt>FQ1^GAPtMyOHqCaZUI65e;`4?z`(%5#3IAS zCgZ20q~rhJzJB!p@X-+l5nmx8&;tf^ehmO900;m?q~C1(>q16BL_$SC`~6ZI z4}gG#h=hp#4CNUz68ax-h)BrzChaUu@e0cz5UVeKWg#+BMtwoT>)Sr{U#3| z2_NtZa7?5auZLTbI;dfUtck5;MvJ1PEDjSV@A5Qk4P}Iq>gr{g?9_q7|;wzdCuaKW0Ieswfq_%0B*Y~6xYMaCM0#EiB zk#W0<9#E%}OS}lbNn>%CyErFY(9Zj)dpmD2nXJEZjQAbMFDU$?9{Y~+gTqZ45rMFt zKr~E7ArYFC8}5pxf+zoH3$1>bnt`TIjaG}>^}C?KPmIg`(?<^^kBPwlMgTey&1ku3 zxC-=}4{1D@NDQ0#tozcKCWHChOW8PIH4i@qZ2GhQ0wAgDD8*aUD;}2Bl|kfk#A*`} zNvNs%-i@X}9S+~09$*(#CxmP2XlSWk#rh z`?GbRS&#lJ9rec-lAujanyQK*st=4btpAxBy$cfDdF@v?Uy^+>(T=NVqTY<4js7Q< z(3^im3A@q3?Qh!sFHy-7Tpv_b_}wQUF`)SWC+dGD&;Ng<{vXw;iOky(LPo2w%-blT z9=Isg0B3r;Ei_g8%nsYmCK#~?GpzwZ*J1$6k%lptOZL;Pt*&DpB$QGs{CgLb%xiu4 z3P0Hao@bI`Qq_%C2t2CdzxY>5bI8uy1@}v-U1=LxJ#Ew-35GSed72%O5 zTUo`OZ=d`?-V<>N29Lrol*0C!$c&=2Pg(F3*p8{U7fJR%F%7o){Zy=VdKKoj<8I;7 z4@}xBx1-r@hDk(zV85dm@$jVWQzmct=A1{w=o}s?tSd>sX<>z%x=Kaaf6`tzU>Su& ztewM7$fRY7WtD$0N{JKFiu_5-f8#ZX{c)3$9G6q@y7vrautUoYHT)}_Q!ff(a~OO@ z#?~lzTIaL0T%MV8sIK=NwPr3?&k9H~lwZcI`uT@u76RhEy+8cxyh3#-=|ysABt%Xg z$#B_WI~p~zMZotC)8Vw;&S|FP6T;@W2EPGqnYHUZkJkX&JMfLci?CcOr%(~i9_qJ( z!!BOkC*Np0Rs>F3*K_0oeIDisd8x5R@Y52t#Ce@emtz3mOiwIoMrY4&R==tg zOLhbv7Y{1qeq6rG`=&Z0D?T?Gx zAVoRj+tH>6GCDw7mj6!Pw$m$t(GwOW2b>B$aC}&lH925d{`?&gljni=TM+&)z{A`3 z%uG5l9aJ>8U9s`Fxc!c%ZrSb}j-{UD6!}Vq6C%2wZY}m78GZq7&!3c)U_=+fh4YAH z1Lt;*CD_m7<&PW$2w zf^%Hkw)Aq7R|j9-_Zc14*BCg;~oU684Hc0VTs2XeVO`hwr}P}t}@ZXbE3sB@U+1VnH9 zYO$X!S980sJ=1i6R8GoEcmw9zN{4wy1oOtma)m%*^YfA^y6OiO(BAcsSF>Kk3*aWr zXjsgp&WPG@N21mzO}L5BW=2P&M+g6J-XxXKvVjjQm&Dn9xPoD~YTF!wC`wVJB9UbM zOH!VeC2lYnY=zjX(rqE*;xj3@1o8V383skIDW2Jg`Vj?(k(v^Ec3@{2S)9^`3?2?} zMDP^1W&lpNg`Oe1jg3*2%w-RjAI@teZY7>;dGV9-(4-`1Ha-W3nPnvE;Y^@&@8bJH z&-x1po9&>v7Y@Xb^4!t*y~GgMc-AEl=fQq5EVr)zn4MSgM~s8v~>C zg{K7s)v6v2b_ZBbL3ymOB&~U9;dGYa!tjiz@WQ=i|1SXd$08T5*KZ(sH+=ksXO1nh z>*_F=DJV_@ogpnv{e{D#IOmMMgvgO&?JiNuW?Ha%tO7D;Ofua0IYZ`wD4tTO;|NLD zX=)~wwXcwtbtI0&J=xLH0m-LPM@*Fwk_L&LG}FO2i*L$@R@EUhf{BLI+~^zU4H~;! zB*av-mCn{4GS-k6Lz~|I!D#a}Kcx!F%6c3pG>Gwq=4u6Zh2`aUqv2PwnL`PeII6Pk zPV_AwNULhf3rnl4zM&T<{qT9~$obZVsq9vd&r09=ENxnEwo?Yd50_ejx#xrIwPry+ zd!~^fkK>Ndfr$GqaAImxpf|>u-QI|fP*`_@N*iqDgc{1R`Wm}?aE_jqo*wa!TgsoG zd3?#D-|(&b6Ckv!S&;6FdqJ`P`u0J$qR-1o$z&kMI*auD91RAIw~NlaZwK3nETte+ z$osi)f;B?7v>yhy8~GLHh77^?JX}5X0LH+%ZLgOmz>B0i-E3pcgj`dXW*-5v1-rN z98(nxw9|I9zu3uDjrv$2Ng#PV=1Q_^1+`raQtlUNa|jIN)RD^uEsef8wEp7Gi0pQ_=T=m#+}$3=-W^6!I$-+|!h7p(DV;~>oQsq@vt{YkLDfCX{BQh~ zQIbW<@j=8^q;NV$5Lz9_(A)N4>{jJ5$-*L|LtPuP zr9Fhl=zRaik*SIS@k<%r5jPtgx)psJQW5=$Xicrp`HIo~KH%7`#U{8DT4%wRzXsrM z@mjOf^7zY4XYiWz^L7LVj1lUnPJ!}i5k_4uKV>2PJNVJIbq#o?q4C9GGYl~hXrZKs z;-s3M4`d*}lT)~#U@GzN!}a|)jok&7{~Ib78S?)_0i~{_$%gnvmxdytN%ed+NQnpq zGBPNjsAN&Ic(Gb8Ps>s_hD31TvolSLUx3o3#ro2xBAo0dqPhVFCvP3qWZ@1`7ddPv zd0NVo)B)J5m$sxjSVAwzTU8kA6=%)i_aq%EK-2;55DSrg#-Axq(PG)PxZC_XAVw|O z3}@t;35j5QvNy^4s3uCF?v6XIb*{1O&g_tMxo&aW3|REa9a{TSBU+o0C2^-bTGdB$ z$2^o5d)O?m4QHGmQbFHkfvsh+>5bWM6z|aXQuwT7T!S2Om82fj)q9nU1nakwgoU$x z9mqz)aczw!=t>6;v4>%#-9L#k++6Y9QZZ;9O@|E^#EU@ur+c{TTd?4_2+krO`@vI< z`b7bglUED-PHLPuZpery1|^}`F=!f-M2bNq79RCkjOnDpuRo*p(qdhWA-Ip(hRSn& z@<5N@yz#1U6ff5hs-KCqyXAVDE&v^9e`q$ZU)1zAk=#R-u#7ZZXQQ0-T3&nJ>@rHd zcE$}2nYnFGL%!6JS}yeQUAs21M2ZqUp#1Dk9!`OekARQ&$Biias~GjTd~%LwyCi9 zjic+Y1i}`1zL`dgJHCMGJwQwoz6h#LXeS2RTyo6)j8AtgR*6L!yz zVL#fn?rbAl3WM(6S&vT92;0I4gj`cbz7!n~BkRXS9FmZri@kHfnG->;h*a2iHoEv; zS)3v=?PaptS+b=LTU3tNBsWB2r6NEZ1C#Fc)PU(qZPo>4ZQXzvrzGmRj0# zV*aszFHq3MhEwA+2U0Jg_=cL<{5k0y{M^uDb5BWy!@+KRtGQl=a_e}z3P;ZoDDf;AzFi8tRtf8e?lF3}=GzQ46t>6^d z14nhj=39Z>^E33%oFtPQqYx{twJ!%X@01vM`FdLTx0PfkKU`_w1dvpRCg+Qb(dZ)6 zvsvU04W&aTf{dWSIf-(u_eu>ilrjD8G#GQb@u(r=$yBNM&rx=0Hw4-^U7x4|5?i;v zQ%+fyIb^>+LOxG|VpaJlm#g!eCEvE3@p#V`;piqHRzcncACl8~a}*$)+gkb|S=-@^ z9r?1jA81`*NtVSLE`A}ivgPC)A0EiYq#WWUmpie;dAQ0qc3&$T^?ABUN)l(qW9?5sIau3$L9!}s_DL11v884l zzpVzLC*+gv`u1IWXYUb}tdbzV)DV)6Ko1GsnHR)O_y&*DFD;bTCaiGg7W)UYzBm<+ z`9?B5>YopP*31j&2$kM){bOE!%CIu+%easIkMl7mG<+i~DamJFZv4r0FwVX*A{I1Cg4HnD4E~IY&1pEp4fWVeM$si zXcd1Ged+NFAapFGf-ICq=cBprDzr&*R)Xtt4>l6)6 zMU}NyG1y$l8&Y2Na}GlA!cRyQd8>X^8ILiY>qQ8;w2DdS6#_xS^@K-LH)V5z$>F?z1RklNh|Pk-FaVjS449r%}QRH(kCVO#@ah+P)fTa{n!k z>gBV1EKFitPX`V*CWr&3R3wDFG%T8Dn_eh8MMsL&A{l{QFy)y~!U>l9 zBqTvBh(*GmRUaEc42=ne`De3cYp|aks}KuF@Hhv02)a<&~k(tZ%FMtP*4^Erp-VVaMwWxj_0Y>Usy&Fz-RUWOt6;>Rh`Xl527P zaeElj0NZXU#QsP{kQle}IhkjMD1nh@X^1CuzY!zt`%f+ut4dRx=};C4*m7ZAkkZC< z_b6zv0)@9?2YWfgrVIRa!qG&ow$J9{K=`)8fQ)ojE$SV__!pp)fXGQY>}yqJviqP- zmnmFUgW49q(aD-dEycf}scOI~3?m0G8Y7ERH4)&P-S7Q_G@rC!wH-&Wp8f@beaQzI{5MCEBU2mqIbqm9(C@HO2 zJsp&>l!I=r75sFOY6Zn_O-ss2)(W>Xq}{!efn(CB4A0I~(rtL{kr z_EK^qhbL%2B@-JH#PD7+wgYeT;kc@#0x{ij-Z@+cf8PR?Sq^x;mhq`nsi2>+xZ0_P z=rk@aI^L~`)iG?WnQ~nNX!pNz%3ysnG_#zO^Q+-$aG+&Zes$eJeoORePR}6)_b2yI zR|L-uo=G+HQ>tIdvNSx<@FuBJAe;(&VBV{ZW+yk0_zJHNaTi724W%Lq=q3Rr=Huk^5lafdv6mF z6cmb`>f&TA4SeSuHA)Ra$E6VS8E;y6T&SOv*7g={I-11RjY^`z@Jio|0BJHx3{sA% zGs&qZK@d%_l2%sg4UeN$+=~??Mn7y)79~WNKtMrM)Fw2N?AW#O#9sRw6f^HPA=aC~W`ddVq*k2F_5>j=dc+7(v8+YGs%w$unV#GEsXj=BQMR z*-Kp>-+txEN%#&9O7z6`hL>Xb{Rn5l&D9|fQ?(dh!%^N`zlA0m7Zp`)2?{n>r%m~( zt{{FM9eykmg-)OhAiCg$m^3UeE!uFwP$$=4+VTIr$Z4ehX_Vl}C5&(0j6E(E$?v

    P~))X*4Rd2)GlZU{FngH5^hi;L+?1`q)QZv#L;%1N{H(i*W zo5(BX>MYE(UGyoRYudurzE1OXx>UZECQ3;55nPhwMRmLfFl{`jo6+y#@M)>VZ2ykn zrUQnv)G%{BY*)m>;}E?W5da4biuVG{?hrSJh^78*5_h`vB`C$0Kq2~ZsRP2A$TOpo)jMSOOEmm6}6#-7qfLy+RD7nm-PER)D%3aWJ zSqF{phkSa6lSJ%n<81An+U(VQF(TN|E#D5pH0*&FoFnHMixE9D#nYK1WAP?>4e_&y z6ln~Y9Pioj06=4`s)73lz^S4=$IEy*C(5AL;(iX5;TP$uC(y#_C`75LCw0U1ys=kg z?Av9vfiE$wArUDcw&Vi%Ub0;9YS?|FH(U^1+)D>CsAQS+fWNETn7-V)HsRv>WYqNx z2?o?%dFGHJkLf#hM(C5^UXPqCZK%e=BH03*rr%RTud?>7;KN}{=4hzn@(JQ=VsR6m zI(!R8pR0M|U6e(#uIS&PFtpG>G7vf!5Gt*Okw_Y;v95;|%c4d$`c<*BRarvB3bEan zJKIXcZ`V=ViN*f1eE($w|NB$EqtdD2|8j5qDeL`dT6Ul7_{akjYJ05Ri5*jE_Jddv zU-!_^fc`H))m0UQydP(Y6g}T`+TS=`Ebp(#5 zyAOC77~I~V0TgL_V-+Uj!n3S1u8u6`lOOWH?z{R%OqiP}ecASTMO8XoDqrJRKu9eP zAh5u-O@nrG92eZz0xIcD!@N}Oe2c_0 z+I5g~cXK{uGM^+Qwd5}I7T|ww6DuP8+E|JFfI!Z;zz>H;A#cSKC0<`yV`ykZLrctR z>9*aTTh65aZOOfwc#?)ZmGaz7*O#sr<6t{+!qir?`ZPV+m~A27JoNNzGByV`#t*DH zFRuAko)l=dcO|+bwBqJ0@jJ*W%Xb#b^4gefr0`{?hT$OFR>a*TXW1zeJ#)*lZt~2s z^jBjsHlq*tcKJORoxF-9b{6?tZxah(SR`Da{t=F2uJyL7~# z+Fu;zQ)wUT!|&r;J%R4-S1OUZA5?ybX^TTh$5a&VUSTtTwEadUnn}nRpV%meiFxE0 z<}A;TDJJ?-p3X7*$4(Mta)cpy(qjC;IPebJ@7bI$myA_1-%E4r2B$JaXB$$_+8xLB zuRbTPhKyTszKj*cWe`K#PG}lVYNX@@+9Q`c#WieKgdsy9LBTq{Uy(7{u5!$12-R%# zIqC)aEc0deQ#i%$<{DA&1IWSHtk$_S&cxPFDx|Q}S+c%$)_m@IM%bieW}I2zIaALK#%XNon3`~?`^&*HdTblOnvo#FC+EUycBER``zXDlnfU=jq|=w~W# za}(asY(C@v%L$J@{UevU?S1z3bI*psct4AA_$dzH+fqr;8?;)p{VqJ$EFLJx2KZ3Kid;{q99umElM99hGxq&iPLZu z!k9w=)@}2B88P9`BoL=y$FxrG7rzfQXb@k9>Y@qLeAFrAUkKFUUy_^j>1 z6Dj$_om^huc*Q3NC-9K(V?RRR(gi^Qt_m-WFvL6?^rlc=j z(I0CndI*HZXgOq$qfk2>(Ombhl{cA%c^JQzo~U&5H9cKyUY+M%;y|1aJl&MS?4<)*9kTY4S$2 zZ50fuWwb^8tPZsZ;h98C0G?j} z_kYn$YFGKM!hgVEQdIJ<5@EDkR9)r!v0nf<&?h$KU#0(u6J_PUM;C(v&-xppEa$-0 zgIn2oGtD3h)+}90&AkcO|C!k_2lQ_@Q8f1gVUVTDhRoNS zce;)k@A-cLmRTjdG`=WXrhx-oZT0wi@HSpf8L-a|f%cni*evG4Qf-Y|; zi-GN{QT&TwH4agc=&pw0&(Flrecd`#U%M6>n#AhGl%;U-mfINF8^UXOd@L8D2>mfh zT^hPt!$}~8Wxko>95E$MjSd0jf`UkYd56-9S6l&?Bn{Zs(@a>Rb8TMi(3o z2=@rHA0oP5EWZAoVemg$%M>0bag9Gsy!&U!xv-b@7?Xx$KfK4GN_BWPek1Sw_qyA2 zjq-3D+--l+tmd7BF`r+6pT&0^(H9MrH7N5<0a3 z^t3BJ_-+^?j9;$Om+npZ>&AC#K#sDj##xgph| zvqfr8O26X^ln%Gl5e=)FQ0_oK!eq;LnKI#>--R2c1smn9NBFbse|TWBFD#0}Ep?W7 z-iT`9pvnotD8pU4|0AgsuE?p=aYUwyCino%7P%J z8aVb|tSF11mlX#Ze+f`&%3VUK^FP|VS9g|W`IBztKP7-{!(4Z$`GEgD*1G73m@3Tw zWVDhYabPKK%qm{^s~z&O>PfyA{_=iv_h3c*AFdoJ?acQ_K0>E#?<;EO|DMZfJM@)) zWIT-+R9n0F!q5-L(v;htOhHG8Lay-2f~f~Ly%uAx{(k7 zhiI3yXQdgr0WTB8LLSf?<~>s{wagzW1D&y%B#2$IrdsqjZC%+dr-Zmj);d?ELcedq zEci@Ab5HA1uB=Ad+FDnulI_judiwgPXp{Q6?-0@7R^z?w_23+0s`*&z1a+TP!nRJt zu*FYyMfcfJj{@usM0am$O5kWhQbk4G|puq6$5_X$E06vTw-xS4q>S`kB_A zqb_od;^a(>HuaPQWDarUx3l+6qp!$KaqYsERx^z5qk*=M9JtAKU`Ys?wlP(q`Gk9i zPKw(Kv#xkUb7E`;MZ0=$W{%PO3U2QFY|(?hfM z8Y-BnuiB)Iqx7vpuZ?SUgNV2B(0!7iwfLXS1Y~3kGdO&L3B27ryLzrx9;*1pHN{yS zKG1^e;#KUn9ODd4owFcr-i;yGE^287(`Y(WocQQ6ZVg2w){u!7xub%8a$JvmDz2-v_gf{%KF3GyLhMnP&Ji3UL_RkSr%nxSMol?SwMv2@aE52N|#~#pBOg zq-oEBnjm(0gdg1aqcF|P4AGl2*It^(oJE$2G7HDrTaA9+@P>AGW+2{sM%cpc@3T); z#np#VxEvYH({&dGWm8`mht#!o{{pae)Qy>2e!|Gk4wVGi&;Y&0iQ8Ld7S-3Oi;GDHJuQ@#FiN|rIkazFiw+-2xK0>>VL?yA#Uz5y0W~B z9Y_3VBez^%Zyr;iqjg4h`2usq+Aro8pbweKOSm4mQf>V>`%~64fEuD0eOy&;R}}#v zYHk^oE{^}n=Q+9^G$axjdc^oR`wL)Qu;+$@JEgbj1=V4$`KB;qyk)@Q;^K!?O`H(x zt2Y1f`%%XU_p_jQ^{3uPS>u9|OErvp=zA)WKnbnBpc=E!DjRxsp(%qBEXVVYUTfEX zzcwj)rbcw};iKN=?AzJDUf=jcv;E!f@7MDywEz9lYSp`7Z>7TKi7p!px>D-FrP_5a zzdvg{?Rgg5Ux1jI2ix}*z~?%Y@A4X#=WbqewUw`)o{w)W`(dAD8s6$wK~fMWsgFmh zJT6DxI3a2@y-M@Uc9QIO{0j7iw)p0$e@E&~i+6;tn{P|KdQ@w3_kz<@6RAbO)XQ?B zK`1hPKKUYS^ph}=7r8Dc_}QbkSoHaE@UNcr<%ouc}>pz$Lc(=Z!A7>wZf4} zf3Gp?MQz4tVb{dpnYeU79|L9({~=q~%3Yj#6YUQ02KD)9@1{r@I}kmx_yth);y$IRHQaT7R2TDVYpq6MFwTV<}-kUG7cx%mYc0 zz=VBZoCboXI)z&+`K@3_RI{E#4pz{YNZ;yk04A*lm z8@0EzU5APW%~8wVWRUHXdMjHS@=n}Q3`Xt@bB9$MZXol^SOzG2z0vHOl9${YZX&3H zG>WR|$TFT~XN$Tmw%VBxX2W-3p(c*q=cxV6RVFOqRVVhV%q;4|`!-6s3w&YRAj1U& zpF=0r_KmxOPl7})E_#|$a@k~`nM3>sj+B<3xNv*`)LNcF=HDR% zyfI8XBlV$G!eoai4G@#ETKP=6xonR4Y8=5}29>uPS;d**2Q5m9*=*ahUtNt;j{Ov`J3`2^C_oECB|q zW_MgGxpQ@+(q6dsJ;?FcL>4WgrJ-vkLtCnM4_erQ@Z0OBT40po3k(_+*WX)d%qAJB zoLm5SU)NcemZyQO6J>5i4x!`7xSA``Lfz=r?mRINrZx;uV259q(&t$qokcSGy45|( zI2zB#EN2*BX8?0-riGxkkXKiRsvNP6kyTZ48aAPNvKBd- zROwG8|8UM@DHa)PIy_5JyyM4b4SX?D&lrdI_MPNB!AGi(sh;7X)5e8X?QY>br;HSkfcPd&+dwd=m3nEL4a#;6Zz;3SMbyaZyLnojmGVgB zI>nM+E{8!h9I;idX&uCzLPz4Qov^G77n=2jih6jA5v)RlN#^C90|myUsZC8NY?{ap zC`*i{KV0WOv zXI1R$c#)R(eiB}r8w&mYZ|+j%znG5O=ErMIj}S$CNgB8B)Bq2hbmpN+b`G+;V_4Q? zepXYpJKBR_#D#px+oWN1smFcO`OSgg@h=Q1eF z=l20J-3<@)pug%z{st{`D*kB{IMSGK<9tUO^>_9EM=*@4pkcZhR=>_CC!JE#{sD-I zPdaB>oayKPVncJhdahZ&v;@~oj1;755<;56vy(CYcDVu@&gx4rcU0m2B1VAU%m?=% zEIk_!E0q1MV!Sa~9Lu`=@)TvjZsDl%X20hfeaL&qxc8B((qasMrw9JS=d%hGU zi(i-9ISkIO~LcEU0J zZOxGIZ8deM%h95|0$h#PO>4>7 zmAjgQ?-9uHp@&a*`@G63ONlm&sjRFGyqpuz%HX?qlc0H26;WJ@wuR9*$MW(Phgrd6(UwzN2Np*jpgL73>LVcik9) zp-jj}=<2rAvN^N}Ce(P2`{Q!;h~JCm4XvJr6?m@nP3<@h_0Q-k<=Su=tx{|Vxd+UD z8@h!0VnqoSwjeH$j7qm23qfm4K9B{G3eH{*NwRJiqlzd{UeVYy)gvEs?IHM^4x*W^ z_%7=)DWEwrP*8w>kQ>Wyb2w~O9#_F;cLo@SP_R@JhgRIhxH}lQIzEX4Unm(LdI?W) zC{q{X<&bWBqq-Aw8ohaL@>XodVFA|q+Gy`kaK7E{8Rlrb93LmxRaS$1ricLKN+phNMswt2Vly1NVw!vE+{BAn~45=K4#W%6qY zw>J{Y0f=Po#EUAq_nSOLnCZog?9FT{?vIE`$*K+}Ar1qhRvTGhR-eco)(D^Z1PpB8 zXr?Yg!MYSdtQK~(?-1huBv~tlCad=(<42tgvJ7wsqMKsr#A7aGyqU}wIvC~T zjysZ0RZbApW=z#_YC=y7#^xSvFDrj}yA{S&lflaH@ow*`_cSIsZT!Sv!*7*m|Ct34owv8~= zp}u>=A$dU^LS@SDp3O0o+lI2ev%(j0d(S(m@>w)h9anxFHc66Zz8bnxE(t!94xzSu=4u=wP&uEO&c0XkQ4uK|L4xoxAxuNb--Xej9 zzH>yhN~+|na-VE)j5H>@IfNvP#l*(GIpD%_nmhO3HV2S2EccL#h_v#sYh3i>rzeX{ zTZpDq*4T|Pnmb2kV~xEB`)+7kc2x)NQqUH73Ee;=b=wu=Yu+RVL^j*uv>$_Z*NfG{ z)wqn{?8VNUGx9<*Mg+!p^$2dK>k489r3us5X{|$@u2p=d3zAp9i{KkMj+M{rK(Gsi zo(A_yej}MpfJ@}-L(Et!VR=g4ok#tc{Oycd0biqr%N z?F4GX-ZtE&{EZQlQK$R=1+`57GG4Uv|KcY#_eHqqybpt#;xU$7t`e>70>~&WV^7$f zm9grclR7==Yid7M8csIIXO)&xptF5(qd@q9IFxqh@M5`&!3JwyNKW*K2Bc~xb=Xht z{1L7a(?l-V`qhMnFbh^PpETaX6e=1=^<0?K6a3Y^QzFhNXRfRW%ldKkr>qA|j`XE1 zO8C6y+#uFezu^0{Fo&7NJTF+om0arq<;Rci2;oWY&ZGGWk!11BN!Wras~`Y zPJ&am!0rqTX9nH{eoG^1{CJc0?lZ)D7kFn?AB7GH3q={No}h?aSn@Ph&@i<*%lD4oB=P zk@@d(w?US;!*?d*q~Zi&sQ+Wsgc@Tjh<~BEZ8A2k07ug&m;0fzAbgv5w&F!ywU&o94`&3k}PVXstj=oQj+os93Z9I z*p@gHkD8OEyp%dH1i2;}1-90Fj4bbEst({Ci<+OEYftw*cG&eXxAr-}<gh7= znx8^cRcK>kLc2PzEoU3i(6%bfFVIy4bpMciyXX#F<|3NYzJ_E?$&el8TPLlK<@$k) z_lYC5=Rrt(ih8G8&e9&@XSR)kjT7TuW9_>uqe3XmbYvD){Z(ZHB}*%nvjz>Vw(ymW z*XZ7ZP?njnCc~nN*tg@uYj0ow%(;f2pc%n8VKCn8GIcaEJ`lA}fD386Fb3zQiBmAC z%ZtgAZy(RGXD;nHuBOL8L}>{D8lwT#ZH7FZO9a?a^q9>uQZh2+Y^;@sbiA`N3>NNw zNSekfBaFwO1CDq9IDYnDvQhq#C>NG0B-FeV_rXNZ0I(DGhQW}rEI{^$G+1xXSZ&+m0b4m2r3=buG^1}ga_O`5iM8Z*bf z1}yXMb=|Ce(y<~z0b;eSQfA3S0trjqt%1Xl`Xg(Jt^$gT+IR0Iq!5*vxmNF0LLsmb)EcLoJ+zh!fY~hmSqkwPICaJ?Dedm!%Xt1F;hOx8hd zpoET=RtvcnFCQLeE(r0CBGPOwYLdo5btlY{~ggg4@KD z)3-H03gZ87M8qcg{!uk!Rp94q_kYr{aL*31tSe7?;2j!W6g@L4KwAjy@=&R&&i1h1 zANZijhgRP#`vZY2HS8_EBPx!xe=XD@G@soLKAe+Q>t8~Dca^)n9k^Ri^ai7RJJ-R9 zZ#>peetvev2i65{fskAoOK1DZbzEy6aWsgzzpL^)vfr`xx>Oj783V%)!aOswI-t!_YjGK_e=#pKMfDMEA;RVISUe|&n1hWUQ2Vjc98z=H!g6Zs?xG7z|K^#m zs)?tR^3C;zxW8Y^gc>7cb~?5-hPJ|gr-X}uvSrj|%c-D4!yg`p)b^IZk)lgh+rpUG zTMw;%U+?wdegtIHKLItJEZj2+#Q9~>q}V`TE;LViqxV!NW0J5eZ{^cAbf!ir;i zub+;Q849!Hj`~FD3t%ubavUXt+yV3paF!uWjkqMs3n5!!%QiqKXqg~^wthp|g(2BG z|2``$B3xl;ZtI%Lfrwy{t zlg^>1Q{1YtRMh;VmEoGx^D|;oXG;#`Qv` z^c#yr~LFIPK{c2$3b zM5fIXz?(^$QNMcTN*khF&m{`|KB$MdyTAF$O6}mb7LTK`Q%J4~p9I^PqGO`1=AU(gK){26ua>uJCNa2)o4KNqj z4b>w>bvP=l=8R<-L5>$hn9WIV(Nl6v+J(Ph;hEkCPET#S>$S)?vRPSsh)c`_PyPN^ zjT}dRV^>Y(i%7IAeKIecaZWt}8q~5#NOmH$acH>Gh>fTFt+3M-mG>T#l|iWTxT1Yd zIM7JWgf=$EZUJ>4Lg$7PrrSwv#(rOLc*JpZ!e)N}-o)5;s&LaT@i=bMvPevZkQH28IRD{b+fnSWWI?)hcKQAJ18jt^S%%tV%5U*imZlYNeG#aD8U z<3?&=Y`REFzU+~l`y9ITDRRKpAFHT5oicRw#l5G?!ijpIb+V))t2G24sQ9C((r-1h zf4{?pXV38do@>mF%CS5qeS(7`N8>GmcNVQHtp~So=a#q5L`C@r?0hzR@<}dze!gix zDY6Z#)Q#7iej*&=lb_aRTxT3N0(Pj^*vkVF+&5l4|&dc9OJ$=-gt=C$T0xp zwZx0@N)zm<$A6EZA-%o7i-IRyXv+AIXS6Gb&tP-rb{pHDLZYFiOnB(CB85}QoByl5 z?+%J;>+)^MNRXVm8&HBsXe2dRY)O(OLz8pPSwNx5p%EG+Dw2^bp%G9r5+q2LoO2Sm z2#BE5_fzhj``wvud{g!6Rn41!s6(CIYp=7`u5$iUEkYF^#fzr%b3vB;xoeLzl z52>HwEQZIb>RWd(LQ?|;gUc-}04d#sB*L|O9!HHj8+kvnQ0uoRPi3PP_s99m5l}@! z5>HZAd-?IBTLz>QM?2z+vvc~cnn&gl$JdrPS8>_fLmS0OPknq6&DxBgM+At!d5_6f zIEpBZy!sU3;|B$?ZBF>Kzj<3e^gn4RhWLuF-VLs|&BgIt`3rm!NChEf&b+4@-TEiO zflLnGaX=3>*Rg4=TBAMTi9r>%6;|}EX*`e{H`nO4?~O|Df8G&P+eH6WVt`=`dHHYU>9Zq?V~5Lp=F~em&iz$FvEh3> zb+-6?w)I0Zh?Z%i2YM<|4@P#p$7+Uln}srUkcB%l+i#uMHBvbDNX7_R*u~)CVyQ3| z6N!Y?>z`a%I1XE{3FA$_-fBpG&4ukbXduIw^OJt#mk&X=9o5nA`Yoj64)OA#d^R7d zF)^j8n9?C!#|h=c_nV}*^dJf(#G&D5xXbMCtt21_=B^K{pH@+KXS()+q}*pBg;H-Y zV^b0U%ZG9%?ux$~BJ*7nS{ksGNDqsO=5J{SD#@))%ce7TvG4|zHI}_eczA$;#Q4z| z=a7g%=t;pL8pBHZek@MU49L-+9z9lkQJKG~y3^cH*x|-^ZzDU7kkh`PX@G8ru=Y@4 z@S1|b?XCK4yA_l@{iYGHO0+82;f!ETQam2+X!lU_4ewqCgK^Sc@7H2@pHU4uCyrAr zy*PwCwF>ZoEd{-|PO=_vxbb$s&&3jW6<)NODOqA>fo(Yc9kAAS*X3oVKl7W3;iE!t zlUb->D;u`}N4+&eQ+a6(w=pb( z%IqKxkyrY8-0WzfVl&K5f0d+#PVE<>q86w}^?)VQmw~W1J%HN|CFSy2CK@#Fx$lmB z5TsBa9quKw<4J`M;2ks9#QQKBWYzvv%7ZW&2r*AOKjVEnQbu)P%R2mJ$)+3KJR56& zGW5O$#CfOPx0#cO2g$4GV|6iNp)~w_^061arq1%Yan60am)0eGB2Znvep@@SAc*t& zL%f$_|1_53rr3R!r$Y)fL)ooW&;jgWYE8G(`3GzK;g$Q)!sv$lGCR}2!{-9lwNAXr z^VToLNd7vP>>cP0N->73?_XxIDzNf61p{|L3r61oHPp)oTRuuSTCQpatV4t$rX+`Y zJ|Zb(xSz2NHXfM#llK%Ios;ulJ*#?GWBJ7OX}z)^k#tB!U2OX^ZtKoTP*SD5ytd%j z^}RSK9zt*0s7oLSTfH~Xhq>{u*3wQwA7~BoSM~>rgI(7K_(em3WP!po-vP3@{j2kn2Fhe6Sphb*Sq9^h-5BlE)$X=CE|3m_y8hU3p#g5-y3?jZ7Y%_?;k zg#?j~ZVkR*vPWvUY4y(N{@|gjSJUk|;r8;XGv%HS(684T%RCu{L-jO^f%rfyd79dH zaR6Eq4%Qefr~H#c7yVQFs3pmyT}XWGWcp%uynJ~&XiD$!C0b9&a14znR+pxrDWUnk zoq7(`GGyxF079;;!*docq^&b`wK|NnCA29gBXql14EeXS-VaJX%&NBLk!Br;RlQ<+ zQy?8a;&kjr1O4c>Vmxe~;Z8^(T{4N_+ zi2cI$#=85buUe%yiC$*COjodvnK%xQ44GStasOf&9|&izmBB>&F>xr&pI<0!8~STi z5^ZP@p*Vt|iFn%Ll{r>+Lh{{HV@5(!90ZS3=kjBIv|sd9U6~#nlw`Z8?crTusozJT zWp5lG-I}vppB@S4mImLQ`9s(qpEQrQBk#UHr@4hh8cXUsLA5^8I2>C?VMaB@F(rlQ z#R`NYvOHm*z@C>~mpK1jD5d{}FqXnc>72=BZ`_eC>+b-R?`*K=!DRCaLVSM*E-yvV zt2#A4T5DSr#fIVGNK1ONP4hNm4{v(h%QLl;W2$xlsHVIz3DRoC#P38zKkzaj1p!Qo z(|;2eqLpf-4VJVbAz_o0C2r~NE@oxLr!_j5*mFR$q$YO1Hk}BR1#5liKC>5=W0IYFxi&iHo!1~C?T3{7IC)0QsEii%%#h~&58 z9n^~fXEB7>ka+5d&;aky<0=c#@r#*nWZ>vC08NDrr`<>XrWj&ZU8yCVSpCB?TIROS zLH88n8rc$VD~m65r4qEw3w#C16c;{E?A#$LjO+gnUiK_AInc<`M# z_RN-_(QVs9un>~MFAgPH{r8oHW@6jXmdy- zD=BR+a%0%+nI;5{?{wZB1g=bkq?o{;|J|(4*W@8gA;TIf?8EnSN!(UGli-E8e!lho zPfK1t0;VqGQiVTnV#+@LrXQx{HHs@86$vc@Jj_KPFq zEq_pD{J=Y5HV^h@p)=}0Ib=}IWWVm;& zUmCfm8@^um!gTmWgZ~)YH9|%PtJ0F3%&T9}d1!=++^#N+8|$HP z8{_G5Lh^d-s)sX=tKZdv7a@r{bos>{nOmuViGC0)R9wKwhiG!DvH>jR6{5=4R?b7o zmS32BxBYgeaNELKvH;ZRo5~)^=fPP$`8Mu53b)L86Hr=r?oV}f!W?p)ZSXzpiU+@u z?q)qlQ&*tuX1VebnHie+7(?Rmg7?%*e3?i*wpIcy%aXJ1c?dpo+7afpZc=a^oKC&1!?&_(R_zw7usK-|}qMf*^dlLw9Z=g8r#g`DNsiA!Ph3#JH zLK3wQ#r+=hSW0>`!Cn95ZU(?LvFRR$hpNS%b&!X23vu~<$zp|L{K~=Y0-5V%aGw~7 zP@sMcOgls+QoZi}INyrNwjlWG7>&5{dSoWszzC4dHFm`!b37RlDB709k+~xV*DoB{ zq+6?B46d!K4dPhFGcC*nSC?@gD671t>oC3c+FEjhFNLwtdX%3bBAH)asEs9I^~HUB zXAGFs%~<-$NcV(CyE=VhRTph|BO07&K-|*!!7}V1qs@RmaAwYkC%-d>{!|Ebbl7PxC9=~cVb*{C zCB4HvCc_}j_6fo%3RNXmAlJjnPb057E=Wm^9LGj=FjYUrImI|cNXgVLDMfOq)+m9z zewWq*w$AYN3I8-KR$~bgdyfrE@3=CJh3A@c%8m2Mh(?)^kWUET?|@H-V#&8&NVw8X z=gyFvm#r8LK#x8RDd)FMDsEA*der4}6=k>`1@~YA-fNN@H;aA+`WqQ3q^)S0m#!0J z*eTiq{)n{|ofzsNPEh!=EGlUXORlP@9G?pgH+tT1K_LwGA%Dx&(3vu%I@r}L=uEHg z*tv{axi(jyzH>uDLy;T;jJjuL-Fhh40ZmxtsV==}TS1b|)WI zx-q1*R+HtoUc+Jd!W3hH&EeXMnyCpc~1}5cxZ7uk70!8H*y@`K)W1y zf8^H{T20y`iK_24NS)a(C_KTv8RBcPe+G}Tj<6C^e)mI`|lc77u}d z%tb2cEfDz~ALx*U!pVkrB~tKan$3wg_(bfj(&DRZc8v8-2>PqB&9AJkf4=4Z$PUBn zqxJBifD&wYRxcU{aKn;O|vkoPQK6xEK3!0lV-x0wMyjF{BTvC9zM= z;!c>~(daXM2Jb2VkNHR8XB51~^6{uoy-NuWe=4~}B~xTp?5}N=v<01&g5^^eB#7?^n(l_1FRV&9xuVLe z+;2Fli|JqC6DlXAcLcC67VOoF%I?v$B5w2hkB>FjJ^OgaMl^Ibr@f~aHNMj8Y+#~A zzP>0cNHtp3ket_)C)yv~PkJQ}%h|}mUYOFq^dLZG-!$GlX;@4IC%zYA8}rP}BgnOO z-_d2G>hm*31i@w)kG6{7E1Oc5dcaB3OZasEN{ z*)VrN*~x28Qscre>DY>*(a)%Emrb|^RwhkwY)Od9dq3&&N?gBF%?x#Y&hMz z&?f-=lqm)8}Whioyd5UFPLi_C4zzoYlCPhWE&kkeIGcmP>ySBHHb1C zH`zd!d3LzRgWr3hKinGBv(~+prmgt}K9Ib5x2A zobv>_qa%Zg=AP~cz7^)2{0=mW-JK!xn(;2l>z|^I zIk@_AVm&74>PrK|JlxMRI zt&D*tsJt%a6B{Q@M-c4#Z?BL8_&Nw5Wbb=1Lsf1m>U=Bi_}v`zEhK^+Jqh+O{Vi#R z#HH__JmDsIs*Ix7#{;U%%6z%yg1tJLoZU2Y1?bXwVs0hYO9=C;*n zy{%9PHG7lpoqO8}g#O*YBc~XZ2#hZkpllLkP5KUOmX7q#mao4ey7SYG7k6+qb{ML} zqU|R+=kKp6PI`;7p_V#mf()G@L~$wWTv;!!Jt6COIV;Ihm#203s*4>-+RtcE0|aB2 zZNUcrqElU`rt0RaCdp7W?xdr^CdFjD`n{ybp(tm-jrA8}{+}a-5B~il)Z8FB|A!l? zek|8Af{?!~3$A<2^FPe5`a{{l|F!^lUc%uU!6zQG1IzA}GJi$+Kc4kHq>h+0T^kP@5Ug1XG-!+Y!_!K@lplLE1+uRv9n47@^>a@HsBE6$6T39Q-+7` z4CQQ5OC%lamPy0!Ei57@Co_U+W(&nOr0Gc7;n#|Eo3V2Oszkr~Ky_1^Sj3N=Z)$oQ z&)4I~?T5=R-AI#>zrK?f z*cV3<@WBIaaufrD;%vWpj*qVEdu3kMUi9+#GpPe;cvG6;$_M`p3ZBGx;H+|ciRyJ3 zPGU%CN@KV%nUa#RL0QepiuTiI;K&3aE}|_D!8G=wgbHZCg9L^AutfN>tT&78je_}CF3m%+u`j)Jp7X>`j@c4j6c6S}|g ziF+fUwBQU?8w2&GmcV@6DTvRNj)IB7!2xb_gthV}1AMz?)4Pq3aOdRUzf9cIpFWm;xFcec*prX&pN7;dGBr7}^*ZiO? zJ>CZM1`oB;-|AB3po;O+6|9Ma2UmiR@#Gux$Wv1c*k8!+U|4XLIr-jy$xc@uOdjsi z>ap;I*d|p$>kMr~9gQ3e_rxpmJAu)o+G@b{m)YcMf|atWExUyYfgZ*kU&LZ_KF$x& z+SYHC+Sf9iWpxckKeX?*>vQR^@l7Zd#yiHL&9HT`X!yu?ql+)f&OE6>_K-!t*_m0ecu(4`Kh^v8H@y%m(Yocl)=F*- zj){$1p&3LOg#6eZkIWb3Cj*@ko3yvjEhy=dL@eBh!DGCIUP>#I&0KK6tKJs|b6={R z@nxK)BKxIzJXP{6Z$FUNJEo~$T|sx$0E6%ob4vqd@l|7Dy;*d_KaSC)%PUFBlv!4x z`^mp);1PX+KY^@!?Fe((bHmFGWk)^Ibytc5NCTLIq|F>YnX4dYU<}hf`MA?`-MNl# z=u(Tj4)7sUzzjei@+gtMv^?`bEMBt`rMSN8Q7u%}7zFK{LTAmJs5d=DS)As}3S{$! z)2{@hiG2$_+=XpBr*&srB3urAz(RxKf`%cdFcT`h*!X96L^g;~3ZUT00xUbAsfQnH zxJ%`mxK(RDu>~_S4~?4Rc{ctP1^=%Qy%o!85^Fr% z6Vlddrz(KTl3)UZ&?)gA=8R8=6&t$tBswG!<9(aOx8PqG2fOMhh=Lk}D?j?pg*-_w zp)8J0v5IuEU_wzu8MkxE>cxt8GaJ^B1hP+$p`pB*II0fxuT$%hc=|>bnb|vEx$)2I zslT*u62!Xs?gHWC0B!~b=^)0OD_?0tNOSG#3QdLaeK_1OXVn#juMf1eEWGyTlEviI z;GD!ba&nqqpgpdj#qI^+!&{#^*kb_64F&kpf^L!n$oz8Vn7v9C)YtK?SV;IwaTn#T zwRlC<ll50uT%5Rx^OyRg-hk@e4ep6P@Gzu$S!QKrM9R)-0B4wFqRiZ6F`Z4T zV7=ga!D`D7#^;V0sj^wt))*gcIrCE;fN308F<-Z+NQ4?-DOA!(6ptqoW@SGg8PViR z6d~Ibf-q0tQ*B;kTwO`M!^ESs#iR^onF0NlI@tjbqOBanp?+YY?VKY3B_5$99Sm=} zJ2QlznDAQss9K)q182-K>st%b7uOS!nvE$D;@QZray6o7ShJp^hG3G{<#7RGs4NL3 zY@-@i|F|p^ZgAa^?c04TnvV8&lhu4;6rvNK^6re1ox;E}qe(jj87%$M3X!U2p1S~4 z=UaQyl##83dff+0ny{N8o1rsiV{GLyWEtW`t&tLd1qBbEskO6&?uxD3XNtu-nrcLr zVPW}YUgs!bGN1Y39F?G<_jc(l4rXC{@zolJO73$fjTd)9sRl6M&l{c<1+fHlzAZ>p zw}8-|-IdmQIH{)ja&K|+&ZBZp{ExlVke+wD;pDulAQ-dD;NGaaN6~u7gmfy4AfF|9 z=;NVY{1~O&|~H_Jk3Bor+PQ5*zhVfc`EEZ_+#m(_N3U zPdc2EY$QTNM7MItLz*=dzADBCU3M18y~KMmBYy(%_4z&_7kAto!k0)Q^}2p=%MIae z+83myffnffS1hCr9{CdyooVU9hzc$Dq6Gx5I9T$~r<3lJ?$>gbI*^s*1X5|K!&t{O z9m6Nzl`$#^*Wny`FsHE7!=O%OBm%!l+}{}zoL$fp*=(9Ap?8giy5eAHhk^ue+k_SL z<1IL2`g1gL;yt4B3}AYlQkQnBKD7U6&UlFkCaZX3@~W+jzhp9uu2!wY+2!70PB^Np z!bydj5w1~0c88F#gCh3#XwYL4U$i=va40ieiH7Wr-uCX41gzy z`uRs)%42@69oQlHmj~me&0Xuk`yr_DC#i z7UpaHU4<9=;Ui-(R&x&c34$n=$7>J9j1a=-XqH4EWrH*{)s<8ORR=jJY4ylw2bbSjzt*r57HbXjR0B1>>K$F_YZkd_Fl*-G=lhS+hkrZNqVr}K{* zephYLzfFB})J(+7*jON9xId{5naAT5gX|e~f4(K7wci2==UBdyoyC`BD~PRn_dl2z z6IZ`f;?I?Z39MhPGUaoQjZ-NXUN=l&{g3NE^v6W%|G2&sL-yYiY4AYa&~;rU@~U?~ zx*MpvE?V#8KNI9~%sdsXP4A$udEJ6hpN!`kEnwaDJK&z~GuLl9FRBPwZcN|dq87kj zr*gZUVVzKB+dS16K^d3B$I6|T5aE&98UJW7MDZ3Vz^13Fpx7gkSMifbc6QorNn^>vH&fQ?(SRdX~1VvtinMhuA+HGEw?Av`~s>pI!@|7 zvDQ#LQ2T2w^q+kV-uy|yf!O^?y#E){!C$Ez!c~ZS{O-2Yh1oZQr&GZO5eg=eizujG zj+Nk=KA7#q>PA~j#!Oabv>HuJq2|S;c+tC@&C%}wZ`G~e;l8#FUQ)A(4bR|^=V~XG zd%vT5|99N4+U334cR(kTqtuW{jgi=ky`EWprK-3X%gITu*tEAnySR6}<+*)>h3eJk0X#>MDdxF0sh1Sc`@Cq?Q&{=J6v9g|uYvw~DWWDJ`7x zaXJm16)|C;RoxU<;* zUnV1uO&xAyiI9v^FAOGsmq4-hgMlla&RokC zv*uCs?`$EL@65klg(zWqKFX_U03$kYMpdE9)0Ki22pV(IJ32F|DR+R=O5Xu0x93lx zKn&0~T4*j7q3C==LG9FW>(%uPygJrAZiS%4*#=o1JIN z+q(_hQ&xIGvWsCTElA^o1PIrrd`m|~-m>S5PKS`0rD`2$y#44TQD^1XO*gzNoyzO4 zZ~Trv-CBkKcaH?;OqU7y_zPu-RJHo~YshfShs}$U$D_>MBO?e{sq>33;6s%#DPO6M-!gOu*3bRu3^Cm@+A7)Uw~a)ZROHfpIZ z_!={s6kZi>B6nsF4Zj|o<|e!ni>^jWyk--z@Te~odVW+Dyz<5mUuC+Yyf93V>M1e8 zTL~1F)%|hRE^ciKv0zkpLAHHpA_Hb`dr=@-mEQ*B&g!DqB zhRA5gYw2i@v@Lz(JODm-z*2&Z%oU8Z-1G?cwSW&VEfJ3F7#?FXJ+xhqKdXE*&{a@4 zvJZ^<4tNm!Q^QNsV3zgHtuqUM;ebRlwGrUto0XTvm1goWwdp#_8_)3u9qs0C^`}p* z;I)ru`;Muo;SJ|WG$^cEDl^OM#4=NOhtcTrZEaKS%8KEq%b%-}aXg%6 zIBnhuDUUH1cc>C?e)a#3TEBkx6 z56mXY?%bG~k@GA1&GDVg;x2tU-19Y`kvQYVio=BCT0CrxZ0`Xu@$=Iz(@PJ-pLwh2%w5U=|-9<(_5VewRYyW%i2 zrByW{O@9_Gba?e%;er>NxZe1fiuFiChMe3?pQz7d&e|^C*U=YL`%lKS0~{|f{AL6f z+Pa+|=3zHp<60RrPpxUIscDQ?mIe5El6>ff;eC~EPUX=$#ix$H15!li_mQOUImFho z&Y&Qqgww-%X-i%%!NZZ2h#pA}aiUo;_xlbxK$cLPfKlIJKe1r|j@>Ub>qr-NIHW;h^N}qrrUqv;VA*0#Y zOX^y-Gn48@$FTBAf-dX$ r@o$`qc6oV-aFiI_+A{q5QzV4FecX%7{a<}M{?m`jFWtEIee&M`M**&u literal 0 HcmV?d00001 diff --git a/doc/webserver/index.html b/doc/webserver/index.html new file mode 100644 index 00000000..b13eee82 --- /dev/null +++ b/doc/webserver/index.html @@ -0,0 +1,344 @@ +Privoxy - Homepage + +

    Privoxy - Homepage

    +

    Privoxy is a web proxy with advanced filtering + capabilities for protecting privacy, filtering web page content, managing + cookies, controlling access, and removing ads, banners, pop-ups and other + obnoxious Internet junk. Privoxy has a very + flexible configuration and can be customized to suit individual needs and + tastes. Privoxy has application for both + stand-alone systems and multi-user networks.

    Privoxy is based on Internet + Junkbuster (tm).

    The most recent release is 2.9.15 (beta). +

    Prixoxy is developed on:
    + +

    Copyright © 2001, 2002 by Privoxy Developers +

    \ No newline at end of file diff --git a/doc/webserver/man-page/privoxy-man-page.html b/doc/webserver/man-page/privoxy-man-page.html new file mode 100644 index 00000000..c874d0bd --- /dev/null +++ b/doc/webserver/man-page/privoxy-man-page.html @@ -0,0 +1,391 @@ + +Manpage of PRIVOXY + +

    PRIVOXY

    +Section: (1)
    Updated: 14 May 2002
    Index +
    + +  +

    NAME

    + +privoxy - Privacy Enhancing Proxy +  +

    SYNOPSIS

    + +

    +privoxy [--help] [--version] [--no-daemon] [--pidfile pidfile] [--user user[.group]] [configfile] (UNIX) +

    +

    +privoxy.exe [configfile] (Windows) +

    +  +

    OPTIONS

    + +

    + +Privoxy may be invoked with the following command line +options: +

    +
    --help
    +Print brief usage info and exit. +
    --version
    +Print version info and exit. +
    --no-daemon
    +Don't become a daemon, i.e. don't fork and become process group +leader, don't detach from controlling tty, and do all logging there. +
    --pidfile pidfile
    +On startup, write the process ID to pidfile. +Delete the pidfile on exit. +Failiure to create or delete the pidfile +is non-fatal. If no --pidfile option is given, no PID file will be used. +
    --user user[.group]
    +After (optionally) writing the PID file, assume the user ID of +user and the GID of +group, or, if the optional +group was not given, the default group of +user. Exit if the privileges are not +sufficient to do so. +
    +

    + +If the configfile is not specified on the command line, +Privoxy will look for a file named +config in the current directory (except on Win32 where +it will try config.txt). If no +configfile is found, Privoxy will +fail to start. +  +

    DESCRIPTION

    + +

    + +Privoxy is a web proxy with advanced filtering +capabilities for protecting privacy, filtering web page content, managing +cookies, controlling access, and removing ads, banners, pop-ups and other +obnoxious Internet junk. Privoxy has a very +flexible configuration and can be customized to suit individual needs and +tastes. Privoxy has application for both +stand-alone systems and multi-user networks. +

    + +Privoxy is based on Internet +Junkbuster (tm). +  +

    INSTALLATION AND USAGE

    + +

    + +Browsers must be individually configured to use Privoxy as +a HTTP proxy. The default setting is for localhost, on port 8118 +(configurable in the main config file). To set the HTTP proxy in Netscape +and Mozilla, go through: Edit; +Preferences; Advanced; +Proxies; Manual Proxy Configuration; +View. +

    + +For Internet Explorer, go through: Tools; +Internet Properties; Connections; +LAN Settings. +

    + +The Secure (SSL) Proxy should also be set to the same values, otherwise +https: URLs will not be proxied. +

    + +For other browsers, check the documentation. +  +

    CONFIGURATION

    + +

    + +Privoxy can be configured with the various configuration +files. The default configuration files are: config, +default.filter, and +default.action. user.action should +be used for locally defined exceptions to the default rules of +default.action These are all well commented. On Unix +and Unix-like systems, these are located in +/etc/privoxy/ by default. On Windows, OS/2 and AmigaOS, +these files are in the same directory as the Privoxy +executable. +

    + +The name and number of configuration files has changed from previous +versions, and is subject to change as development progresses. In fact, the +configuration itself is changed and much more sophisticated. See the +user-manual for a +complete explanation of all configuration options and general usage. +

    + +The actions list (ad blocks, etc) can also be configured with your +web browser at http://config.privoxy.org/. +Privoxy's configuration parameters can also be viewed at +the same page. In addition, Privoxy can be toggled on/off. +This is an internal page. +  +

    SAMPLE CONFIGURATION

    + +

    + +A brief example of what a simple default.action +configuration might look like: +

    +

    + # Define a few useful custom aliases for later use
+ {{alias}}
+
+ # Useful aliases
+ +crunch-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies
+ -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies
+ +imageblock      = +block +handle-as-image
+
+ # Fragile sites should have the minimum changes
+ fragile     = -block -deanimate-gifs -fast-redirects -filter \
+               -hide-referer -prevent-cookies -kill-popups
+
+ ## Turn some actions on ################################
+ { \
+ -add-header \
+ -block \
+ +deanimate-gifs{last} \
+ -downgrade-http-version \
+ -fast-redirects \
+ +filter{html-annoyances} \
+ +filter{js-annoyances} \
+ +filter{content-cookies} \
+ +filter{webbugs} \
+ +filter{banners-by-size} \
+ +hide-forwarded-for-headers \
+ +hide-from-header{block} \
+ +hide-referrer{forge} \
+ -hide-user-agent \
+ -handle-as-image \
+ +set-image-blocker{pattern} \
+ -limit-connect \
+ +prevent-compression \
+ +session-cookies-only \
+ -crunch-cookies \
+ -kill-popups \
+ }
+ /   # '/' Matches *all* URL patterns
+ 
+ # Block, and treat these URL patterns as if they were 'images'.
+ # We would expect these to be ads.
+ {+imageblock}
+  .ad.doubleclick.net
+  .a[0-9].yimg.com/(?:(?!/i/).)*$
+  ad.*.doubleclick.net
+
+ # Block any URLs that match these patterns
+ {+block}
+  ad*.
+  .*ads.
+  banner?.
+  /.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?)
+  .hitbox.com 
+
+ # Make exceptions for these harmless ones that would be 
+ # caught by our +block patterns just above.
+ {-block}
+  adsl.
+  advice.
+  .*downloads.
+
    + +

    + +Then for a user.action, we would put local, +narrowly defined exceptions: +

    +

    + # Re-define aliases as needed here
+ {{alias}}
+
+ # Useful aliases
+ -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies
+ 
+ # Set personal exceptions to the policies in default.action #######
+
+ # Sites where we want persistant cookies, so allow *all* cookies
+ {-crunch-cookies -session-cookies-only}
+  .redhat.com
+  .sun.com
+  .msdn.microsoft.com
+ 
+ # This site breaks easily.
+ {-block -fast-redirects}
+  .forbes.com
+
    + +

    + +See the comments in the configuration files themselves, or the +user-manual +for explanations of the above syntax, and other Privoxy +configuration options. +  +

    FILES

    + +

    +

    + 
+ /usr/sbin/privoxy
+ /etc/privoxy/config
+ /etc/privoxy/default.action
+ /etc/privoxy/standard.action
+ /etc/privoxy/user.action
+ /etc/privoxy/default.filter
+ /etc/privoxy/trust
+ /etc/privoxy/templates/*
+ /var/log/privoxy/logfile
+
    + +

    + +Various other files should be included, but may vary depending on platform +and build configuration. More documentation should be included in the local +documentation directory. +  +

    SIGNALS

    + +

    + +Privoxy terminates on the SIGINT, +SIGTERM and SIGABRT signals. Log +rotation scripts may cause a re-opening of the logfile by sending a +SIGHUP to Privoxy. Note that unlike +other daemons, Privoxy does not need to be made aware of +config file changes by SIGHUP -- it will detect them +automatically. +  +

    NOTES

    + +

    + +This is a beta version of Privoxy. Not +all features are well tested. +

    + +Please see the user-manual on how to contact the +developers for feature requests, reporting problems, and other questions. +  +

    SEE ALSO

    + +

    + +Other references and sites of interest to Privoxy +users: +

    + +

    +http://www.privoxy.org/, +The Privoxy Home page. +

    +http://sourceforge.net/projects/ijbswa, +the Project Page for Privoxy on +Sourceforge. +

    +http://p.p/, access +Privoxy from your browser. Alternately, +http://config.privoxy.org +may work in some situations where the first does not. +

    +http://p.p/ to submit ``misses'' to the developers. +

    +http://www.junkbusters.com/ht/en/cookies.html +

    +http://www.waldherr.org/junkbuster/ +

    +http://privacy.net/analyze/ +

    +http://www.squid-cache.org/ +  +

    DEVELOPMENT TEAM

    + +

    +

    + Jon Foster
+ Andreas Oesterhelt
+ Stefan Waldherr
+ Thomas Steudten
+ Rodney Stromlund
+ Rodrigo Barbosa (RPM specfiles)
+ Hal Burgiss (docs)
+ Alexander Lazic
+ Gábor Lipták
+ Guy
+ Haroon Rafique
+ David Schmidt (OS/2, Mac OSX ports)
+ Joerg Strohmayer
+ Sarantis Paskalis
+
    + +  +

    COPYRIGHT AND LICENSE

    + +  +

    COPYRIGHT

    + +

    + +Copyright (C) 2001, 2002 by Privoxy Developers <developers@privoxy.org> +

    + +Some source code is based on code Copyright (C) 1997 by Anonymous Coders +and Junkbusters, Inc. and licensed under the GNU General Public +License. +  +

    LICENSE

    + +

    + +Privoxy is free software; you can +redistribute it and/or modify it under the terms of the +GNU General Public +License, version 2, as published by the Free Software Foundation. +

    + +This program is distributed in the hope that it will be useful, but WITHOUT +ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or +FITNESS FOR A PARTICULAR PURPOSE. See the +GNU General Public License for +more details, which is available from the Free Software Foundation, Inc, 59 +Temple Place - Suite 330, Boston, MA 02111-1307, USA. +

    + +You should have received a copy of the GNU General Public License +along with this program; if not, write to the Free Software +Foundation, Inc. 59 Temple Place - Suite 330 +Boston, MA 02111-1307 +USA +

    + +

    + 

    Index

    +
    +
    NAME
    +
    SYNOPSIS
    +
    OPTIONS
    +
    DESCRIPTION
    +
    INSTALLATION AND USAGE
    +
    CONFIGURATION
    +
    SAMPLE CONFIGURATION
    +
    FILES
    +
    SIGNALS
    +
    NOTES
    +
    SEE ALSO
    +
    DEVELOPMENT TEAM
    +
    COPYRIGHT AND LICENSE
    +
    +
    COPYRIGHT
    +
    LICENSE
    +
    +
    +
    +This document was created by +man2html, +using the manual pages.
    +Time: 00:10:58 GMT, May 15, 2002 + + diff --git a/doc/webserver/p_doc.css b/doc/webserver/p_doc.css new file mode 100644 index 00000000..d8e0bd97 --- /dev/null +++ b/doc/webserver/p_doc.css @@ -0,0 +1,63 @@ +/* + * CSS for Privoxy documentation + * + * $Id: privoxy.css,v 1.2 2002/04/09 11:55:20 oes Exp $ + */ + +/* + * Global fonts, colors, margins: + */ +body,td,th { font-family: arial, helvetica, sans-serif; } +body { margin: 4%; color: #000000; background-color: #eeeeee; } + +/* + * Headings hierarchy in terms of size and color: + */ +h1 { color: #4c000f; font-size: 160%; } +h2 { color: #660014; font-size: 140%; } +h3 { color: #820019; font-size: 120%; } +h4 { color: #99001d; font-size: 110%; } + +/* + * Make headings stand out: + * Indent all content in chapters, by additional 2%, + * and then pull the headings back left. + */ +div.sect1 { margin-left: 2%; } +h1,h2,h3,h4 {margin-left: -2%; } +h1.title { margin-left: 0; } + +/* + * Underlined links disturb the examples; + * Let them get darker instead of purple after visited. + */ +a { text-decoration: none; } +a:link { color: #0c29ff; } +a:visited { color: #071899; } + +/* + * Special highlighting: + * Code examples in embedded in the text flow become half-bold, + * Emphasis gets h4-red. + * Warnings get the same bg as in privoxy.css + */ +tt.literal { font-weight: 600; } +i.emphasis { color: #99001d; } +table.warning { border: 0; background-color: #ffdddd;} +span.guibutton { + white-space: nowrap; + width: auto; + padding: 2px; + background-color: #dddddd; + color: #000000; + text-decoration: none; + border-top: 1px solid #ffffff; + border-left: 1px solid #ffffff; + border-bottom: 1px solid #000000; + border-right: 1px solid #000000; +} + +/* + * Misc: + */ +ul { list-style-type: square; } diff --git a/doc/webserver/p_feedback.css b/doc/webserver/p_feedback.css new file mode 100644 index 00000000..281b047a --- /dev/null +++ b/doc/webserver/p_feedback.css @@ -0,0 +1,9 @@ +/* + * Vary the gereneral Privoxy Stlyesheet to + * meet the needs of small popups: + * + * $Id: p_feedback.css,v 1.3 2002/04/08 16:59:56 oes Exp $ + */ +body,td,th { font-size:10px; } +div.info { width: 60%; } +div.warning { width: 60%; text-align: left; } diff --git a/doc/webserver/p_web.css b/doc/webserver/p_web.css new file mode 100644 index 00000000..8eb2159a --- /dev/null +++ b/doc/webserver/p_web.css @@ -0,0 +1,11 @@ +hr { width: 95% } +body { background: #EEEEEE; } +h1, h2, h3, h4 { font-family: arial, helvetica, sans-serif } +code { color: green } +pre { margin-left: 2% } +# p { margin-left:20px } +body { margin-left:20px } +h1 { color: #404; font-size: 175%; margin-left:0px } +h2 { color: #606; margin-left:0px } +h3, h4 { color: #806; margin-left:0px } +ul { list-style-type: square } diff --git a/doc/webserver/privoxy.css b/doc/webserver/privoxy.css new file mode 100644 index 00000000..2d33e85b --- /dev/null +++ b/doc/webserver/privoxy.css @@ -0,0 +1,69 @@ +/* + * CSS for Privoxy CGI and script output + * + * $Id: $ + */ + +/* + * General rules: Font, Color, Headings, Margins, Links + */ +body,td,th { font-family: arial, helvetica, helv, sans-serif; } +body { background-color: #ffffff; color: #000000; } + +h1 { font-size: 140%; margin: 0px; } +h2 { font-size: 120%; margin: 0px; } +h3 { font-size: 110%; margin: 0px; } + +p,pre { margin-left: 15px; } +li { margin: 2px 15px; } +dl { margin: 2px 15px; } + +a:link { color: #0000dd; text-decoration: none; } +a:visited { color: #330099; text-decoration: none; } +a:active { color: #3333ff; text-decoration: none; } + +/* + * Boxen as Table elements: + */ +td.title { border: solid black 1px; background-color: #dddddd; } +td.box { border: solid black 1px; background-color: #eeeeee; } +td.info { border: solid black 1px; background-color: #ccccff; } +td.warning { border: solid black 1px; background-color: #ffdddd; } + +/* + * Special Table Boxen: for nesting, naked container and for + * the Status field in CGI Output: + */ +td.wrapbox { border: solid black 1px; padding: 5px; } +td.container { padding: 0px; } +td.status { border: solid black 1px; background-color: #ff0000; color: #ffffff; font-size: 300%; font-weight: bolder; } + +/* + * Same Boxen as
    s: + */ +div.title { border: solid black 1px; background-color: #dddddd; margin: 20px; padding: 20px; } +div.box { border: solid black 1px; background-color: #eeeeee; margin: 20px; padding: 20px; } +div.info { border: solid black 1px; background-color: #ccccff; margin: 20px; padding: 20px; } +div.warning { border: solid black 1px; background-color: #ffdddd; margin: 20px; padding: 20px; } +div.wrapbox { border: solid black 1px; margin: 20px; padding: 5px; } + + +/* + * Bold definitions in
    s, Grey BG for Table headings + */ +dt { font-weight: bold; } +th { background-color: #dddddd; } + +/* + * Special purpose paragraphs: Small for page footers, + * Important for quoting wrong or dangerous examples, + * Whiteframed for the toggle?mini=y CGI + */ +p.small { font-size: 10px; margin: 0px; } +p.important { border: solid black 1px; background-color: #ffdddd; font-weight: bold; padding: 2px; } +p.whiteframed { margin: 5px; padding: 5px; border: solid black 1px; text-align: center; background-color: #eeeeee; } + +/* + * Special red emphasis: + */ +em.warning { color: #ff0000 } diff --git a/doc/webserver/redirect.php b/doc/webserver/redirect.php new file mode 100755 index 00000000..b00fc9c5 --- /dev/null +++ b/doc/webserver/redirect.php @@ -0,0 +1,112 @@ +"; +// print "Target \"{$to}\"
    "; + + +// Please do NOT delete any of these redirects. Even if you take them +// out of Privoxy, they may be in use by older releases. + +// Note 2: Should *not* include #target part in these URLs. +// (It works with MS IE, but is not valid HTTP.) +//http://ijbswa.sourceforge.net/user-manual/configuration.html +switch($to) +{ + case "faq": + // Used by 2.9.0+ +// header ("Location: http://www.junkbusters.com/ht/en/ijb2faq.html"); + header ("Location: http://www.privoxy.org/faq/"); + exit; + case "option": + // Used by 2.9.0+ + // Config file options + // called as redirect.php?v=X.X.X&to=option#optionname +// header ("Location: http://www.junkbusters.com/ht/en/ijb2man.html"); + header ("Location: http://www.privoxy.org/user-manual/configuration.html"); + exit; + case "win": + // Used by 2.9.0+ on WIN32 +// header ("Location: http://www.junkbusters.com/ht/en/ijbwin.html"); + header ("Location: http://www.privoxy.org/user-manual/configuration.html"); + exit; +// case "home": +// // Currently hard-wired into the code. +// header ("Location: http://ijbswa.sourceforge.net/"); +// exit; +// case "gpl": +// // Currently hard-wired into the code. +// header ("Location: http://www.fsf.org/copyleft/gpl.html"); +// exit; + default: + header ("Location: http://www.privoxy.org/"); + exit; +} + +exit; +?> diff --git a/doc/webserver/robots.txt b/doc/webserver/robots.txt new file mode 100644 index 00000000..a9941dbd --- /dev/null +++ b/doc/webserver/robots.txt @@ -0,0 +1,17 @@ +# This is the Privoxy web site. +# +# If the robot is connecting through Privoxy, then the +# control interface is at /config. It isn't very useful +# to index it, and you're likely to break stuff. So go away! +# +# Even if you're not connected through Privoxy, the +# one "Privoxy is not working" page there is not very +# interesting. + +User-agent: * +Disallow: /config/ +Disallow: /actions/ +Disallow: /submit/ + + + diff --git a/doc/webserver/submit/confirmad.php b/doc/webserver/submit/confirmad.php new file mode 100644 index 00000000..cfd1eaeb --- /dev/null +++ b/doc/webserver/submit/confirmad.php @@ -0,0 +1,58 @@ + + + + Privoxy|Confirm ad submission + + + +

    Privoxy Feedback

    + +

    Confirm Ad Submission

    + +

    We have detemined that ...

    + + + + + \ No newline at end of file diff --git a/doc/webserver/submit/index.php b/doc/webserver/submit/index.php new file mode 100644 index 00000000..47a76739 --- /dev/null +++ b/doc/webserver/submit/index.php @@ -0,0 +1,207 @@ + + + + Privoxy|Submit + + + +

    Privoxy Feedback

    + +

    Compared to bug +reports or feature +requests, this page is intended to optimize the blocking behavior +of Privoxy. Therefor we need your feedback.

    If you have +observed and advertisement, that was not blocked or an image that was +incorrectly blocked, please use the forms below to report this.

    + +

    New Advertisement

    + + + + + 0) + $np = $ip; + else + $np = $REMOTE_ADDR; + if ($np != $ip) + $count += 1; + rewind ($fp); + fputs ($fp,substr($np." ",0,15).$count); + fclose ($fp); + echo $count; +} +else { + $fp = fopen($cfile,"w"); + $np = $REMOTE_ADDR; + $count = "1"; + fputs ($fp,substr($np." ",0,15).$count); + fclose ($fp); + echo $count; +} +?> + + +

    +

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    Your name: + +optional
    Your email address: + +optional
    Website, where I observed an ad: + +Please change, if necessary
    How annoying is the ad: + +Please select one
    Privoxy Version: + +Automatically determined
    Action File: + +Automatically determined
    Action File Version: + +Automatically determined
    Remarks: + +Please change, if necessary
    + + +
    +
    +

    + +

    Incorrect blocking

    +

    We soon present a form where you can submit websites, where the +default action file was too agressive.

    + +

    Misc

    +

    Bla bla bla

    + + + + + \ No newline at end of file diff --git a/doc/webserver/team/01stefanw.jpg b/doc/webserver/team/01stefanw.jpg new file mode 100644 index 0000000000000000000000000000000000000000..920dece278889d6ffea634f7608e63f6088f25d9 GIT binary patch literal 10327 zcmb8VWmFW-8#cVelG3msxv+F89ZRDuAdPeg(k|WINJ&abcZ0ChE*(lL!qVW1lt`_> z4;KW4$NxF+dCz%1KKGpYbYFLTnVD;@nfulI?*M9T4J{1-9v&XR@!tU4ZvfN*M1(*h zAR!SEkcgO=h=h!qjEt0&jGmI}0W~8%6B8pn2*k|B!@Vyv_rm}h61-?UFaaJH0G|erfClgW1Ar9( zzytoT+yCG20Qdy|`Xwg$=ar`h;1S{x5d53?KmvT?f8c*!8bTna7_F)y5gnJkk9bTL zJ%pG+t)gAR=p~Ojh+EP(cK+;N>_a>N!T*)`U-17j|8sHC{40q6&;9}azq)w%Gz6Tq zVuY%6T!!NI_v?TM1pgp31T+9;z@KpM6g-;V757O#N;=pc{Uppkdy8h;j+!867h2B9 zPY4qTR3X#HlkitnExD<=Qo9G_#Hf-8!E_fN5Lc=_qq-4Z%(M(NoLpmKU9dY%*OBLdmI==3TnQA9F%lE z8=94ukOHOMt#$$qC#0baRQsdJMa&Nn5!_?haHLp&fMls?+oD5OkBv{^k-Y6b=;?*U z#;IzJc_;2sXQ%qdXkw$+0K2N{y_%dVLFbv+Y&`DFXYs=|7|v-;@m9kYlp6X8*OL$x zFT{(}tTeuKIuU9$$A}})=NM=D^BCu#A- zJ=!$0lk!8g-lRkfy$9V#{vJJ6&n#Ennmurc`rss?dn8?8b${(r`S*;)uv=nt)N3#pFI=xm%Dm{zH!WbrPh+^D|?_^a*_z*bwbfs!0JJyqB2HR&Wx@0g0t zl;=tI{Evr7@T=YRAfsVEQ-94~Xt{HGtt+3mAc)efT#oBrUzF5G;wvOSZAX2Ttm`Ju z8UXr`D`ub55cni`?*4LXG5Uoeqt6=?kOimssK{yZV7P}XF!cC^aM|_Ng6${@^2$x25asb>b{SW z#_=o`-WsFqlT8%yK^Vmr*YAM5DT_3p@3b}4LjyqBTOOBmnzrPE?Mvm+toAnF`I}0r z?6eGwNbGv|J-`vhsMYEX*WxiQ62#eSd?>ONtw7ZfzSD7o_;zdxZO$Z<7GD~7=~$|Z z#Csu#CB0Od&)P7cQ^St4)TrgYQ2ZRvPuX9{C~pKFQkhFlTPbpTI>r?m_b6~Iu0IbY zku>rn0j1>?X6W}F?1S1NI7Wx!jzK#Oh^a7{4kGqW z^rw!fF)e;-X6FfoVapRFuI*MB(2in>Ht(|;$ymK zpFWarv3M+fbtL@_V_K~7-$yVa@$L?=BAenp#5D4~NP0 zHb&pD%^&V@C7OPeMj`S|H|lruE4t(4>ph!x_2)ZC1Q~Zx!!e_+TAkeuwDM-kZ(m79 zTNZj2AIB_iof)-A#A)Hj<_T-r3O{ar%kqpeNRueh4zw(q3mxPlu<6DKWmmWIiYS>O z6Y=R2b+dZ9fInpibEYPFKDN4^nhrjyR$>#Ut=(soJ(_V?unl7|1utM|4*dd^pDp|R zg|LtuVTQD4^{ZKgpSH)CZ0YYNUNuelK9+|Z;jh>0;?ctr4tn!zT|Oj#_IEnD^+pNz z^CGmpD@II2=Xb2%e6D=1make=8%z4;cO;1WjOm-@Ns^g>c@iz@2U_VLhP@~*ruAquBA~ZOIm?R@rEEs zdSFeCn;20wd+;{;&@eW)nl^Afn~;83^J&)_02|JmlRk-4jmBp93xF5#eE^m<3JJ4d z?`Cc3Cc}Gx-uJn1oc7WV!|)!_xb?}>O!g+*$+C4zfq$^xeazE=75zm1N4>Q6~Fs0|GHOa z>cV2X8Ws@Mu4(vPN~%a}$6d#SbIf8#?3C(rb=M&=ZHCRs$4 zB|u)@zaPip1{)Xc96xjJyhIfb>An0c)GCct0Cp?1hF@_=Pi264*VUq9DIURBBB&>% zun8ExpO2u+icrx;N*V5v)dSSZtIL3-_ zdG^dek# zp}pY9pME{HBx|C(m= z@$?B65vB?c_eKW}ay4;&o5tk&>Udet#zCbbj?p1b*RAR1c;XNew))xG+S2Kw?e>7) zp)9)>PS$K`4RRZdV*Lr9;Ian0A8?byy1so1t0ROd)<3E^bQ>px$Q7J2D1O`KdHX&q z>LWG3_HW7HYz?VRKbrgNlfpd_(lYv=ijsdH^8D+@%-+QK!4lMR!a>E$7#(Nv`dORB zA99cajK(>qW!#m6FQIcIzt+m$XWt1NO{tp;R)|l&vGAxMlBn%fbJua}#O}eC&HPynfyXbQrIaJ~oZeGwt)9r1^Jr_e!GsmZoBKu)aMxUs%}cjj@E_ zJ;31oXj1pDYTgU#Fg||t5jQ1^EZ_PUxYpLRv*KrN+3d9Zlubu_KFsPdb;97OA~(K5 z&QC6IHY?SZSk2@~+L6zGd`*GafL=gf+iCrtBWMaOLt!9qrg>`pyiudb@eud{xAu$x z6G8E7x&d@Ncw`0p7^tBFS5~mOoaJRL!HTeuYBe%q@8a?ot4sE-wG0FFCLM6tG_Fttj*c_J|)_B0cB_k%^ z4qbs3llOoCOFMD}{^y31K7e_Phn=Thxpj)247mj`ZO#>n!-CMt;A>mme3}e_;WPN^ zz!Uj(wf}Uj7^;NhHUrj1Y`vyRPHedp+nsTG+?4o9)R-QXNk-#1ld=^QHZw|Di{#gI zR-5^r$)N9!j64lMGtr@JfIpcYAWek+>U5h+|;hmfL#9@&zPxqIm#m zJOHW%ad#T1m;(%XD6{XR$v851*CFrQIhjcn-){I%NcOl0Jj9wE^3c#gOSMC*T%)C? z2N&i6aN)OGrno6TtC{5T0r>n~T+Wt+vZ(YLn=ZT$DEH#whMp31DuDf|qV#ntO_@E_OM<5qN4@j0BFCpFw!7#6sp^yfG*dL|T%PMua%c-Db@L@8RH!RS&J)XCK@bPN zn7;`6HI^NZgD<;n`RC>SFX*P{!-Us#{8U$k`-7~a@|APefqvI-lZX+=;{T2qA2ccg z&XitBi}o~}aJj{<5WK(Wk?WcyADnGtMKhKhUEaMs)w+uA4G!}TPrdjw#rBBXJGjQW z&+*`!R(YVw^nuUMAD`A?n`>&2YkiuAGsTR4ecu9G?B?{_YA$9d;f0mPx5^+`#Vm9^ zhfL#c$<>1?L9so9|71vDcy0~2N<@h3`N`?TJ+kABBlQTcwFF0J^}aa0(PW-zIOFv5 z1b?@=dZBtG=RPr>0m6HFV{kmz|NfRTrg?hy6WH1(lk~>6tJ=*OJ~IP)agBG1l0*D0 z&Hp%IelmNAoQI{-RY95yA(KK0zh4)Rf6wnq1F-o1K5^0VYk%?B;UP;fw{QQKWogcm z;*>3?^u5&GrF1^+(aUNVR;*ctTfw$0Fxc9w&RnPH433)ch6C7g&o^tWnf^BKP?eFJ zf>}YPLcP@oUb!tSBmkM;3<&`rkrrrldjN&%)faEqkZZ4i0d}DoV&k4`eb0QBFH=1@ z9u{ZwemVYH=WXDo}<2oSLK~tb(t^h&ip*FS`=^J z`@9y{Zs8kR#=%|i?exVnnDN}^J3N|L#$tGB(W2y^PqPFYgQ}K0Vp9`&7TQ0{xaH&k z0c2RDt`%_obwke2R7>T?g6Y%!LJt`tWmbQj-r?c=vl8;h{4@g`bm+$~0E1rV}l^B^)BC_Cem zTjwZim?EbJY^f!SnjAe;NT1}eXD5aT1Vq%oKOtr&p;ZjK1sBLLJ0qhfkO2`1*w9F8 zeTQc%U^2Y$n>$)rC4s_)|J*1Erg3Z>-wGp}!{90iMh@N|rUSOD?YE)u(Dd+RPTXN( zu zT*Pl3GU$wiwwxcn$#FSRu+8_sp<45o-73f5>D}*KIOWaz#)C{XI2^rLO3~g)aLSgw zO;z(`Ra9XnyYZ1Pba!uj*~G=`>@QtRFGuODd0Zx{tl9cpP4HT~?ri7cOJFJbJn+`& zA;)@Zot-kdPJ0VupsD}-JKoLsbo&l5wz+AnX^tN%YwomhBn{@>(k*1qeM~!V0~0wE z(3!=3h1bsu6d?5`(pr$8leI%Id$rGU(U9^?9uK|F^6|7y3pkv9_3GjClpHt^QRm zXsPiYu&k^u-m)@ z=ndZ2Q?l*}gUx? z#I5$V-@@ng2hONg#EOG?;NsO09nJmLOY;L)O$h(ru{IZyUa$MhkW{ z_@H;d@jgNGlELL_nwxY$pb73xXraxhTRC9OU*26MFE{JKOIe)dH9Vle5dPDkE}i>OEzEDvPwEUBg8$TTNh=kWLgtw!B`@sRo)^IobqMdgYD1xd+h3h zQytHto4lqgbk%5UH&26L{CE3#$AIO2A7?z};T`13Ra|{|gR)^+`gvpTH)-kcCrHZn z&EEeoR@(4V6`$4PzS~bhV%6QaV^oBSObaGu5E>!(=j^P=_v-XwU~i+8A(qbCZT7uD z%{>6#8yaHP8xWmvTxc!VR$xnQ>6|D@pbDClHK3~gUYe8N0_r~r=ik5;f1{?8nmn(v zui^h*{)UsYO^MCR z=2H;}?}W!@0jNZ^q%BCA#?!?){E~PzZ0R1W^oHtbF_*+%FVfXweSr%8X^IBs8NeH5 zBRO8>2AMM1aj<}th+YJC1wLdxbv5#pUQ=i4d$-Xvk4pD=OlE12P*DjnJ zo)ck(WBOKY&gb!vJ>6+l9<$DbQ)p8eI^_=oJx%B2vmiX(-7@WhW``%tQGZj-9=1X6 z0h}Sn__EGMJGQEY6>M?FL_-I$9Osks~#@S(7G5e8IRmIfYC6(aIzdVa#&GPwB z_6lif!)T4m(%~Q*>ks`%1`u&aT)l*#>)86Yr-3FJU4LG%)ao$riU#R?7WS5U;@w#} z{UJNm(W6XA|B=qZZ!=v59Ve|v2Cbuuz4?`AabmL~Z9|0uSg)rUqKuo`hU$bvU`tc! zh9nz-1IeX1muuIZm+eS8&ExUAZfGLqq8U$Fepbr9xWSJ}Osci4iO-$%PQm_Rm8|`6 z?6BrJO4p0D($6OvesUJHYTU!NI0wvK{g|gXfVAf2 zCxAF$ymoe@Sw}TSgom21{zyrgb#$n!{(1E1_gx#?!3!pSo9-6+=2E$2Q7__H#w=>a=B}=jcS!#Ls;%tvtY!>ZBkB1jy~0$O zKQI1R{Nm;hCk8Cl?U@+=-Mav|kc7?bdXMG7(%*VW@Y?KUH4hG3cAwy3z5d-zkFH5> zv-!sBNtG71sWKOYo2Y-XQSrLjfY0FCvKHi_4tB2WG$B!m+ch9a#*x%T>(21FH@={G z?DU@76xRnw!zbnQ=snhq1HJ>TCTC3*VHd?|PbNi4V9o^ok6!h#(nE77!7U;1%1Z64 zrBZCpTPs7Iv{p!TwStKNpYkE-s|~E(qE`uafy$Z+XR%zr2`vu@wB9uf3?UDPPQV6i z1~wM3?sEuJ>3|1z$NXyW7DlV?Y1e%R`qkn?xC;Et!HZ=S?e|>@ zW%+N+y+p~|f!v7h60y_y6|pdfHPcNKX^WaJuFXo=2qh)3uvxCnxd)Uqld!U`pLSjB z&)3kjZhQ`y3|iB4fNy()88l>Q1I-GyOu_}z#D>O|q@Nc?`l*KC)SD9)wys;{5Z5Yq zpB#42Q3HB3JaZW5k#rmqL`#9i_j~BMejXn3IV0zAz(sdS%#R$wDH7b+Rxvey@mI}d zceg!Vgq8g$@gA_9zr7Qs=L4~)ctGXgdhGcnyFSBgCN%@%=<~LIwHm}<$FBjz?z;X>ao_*_t)fxzcy<@^MKW3R$ALd=>5YT$*q~bjuM5| zJ?!0cJ--Z59vWPsu~rRt10iv()FAz7e`oY_3g1j%jIb=hsGD6QCsRrH!7M1c)lT_< z1i@%~BlKWZ015^-l9gIWtNcRDL2}Cq7qAlNN#49J8c-Q*4&#*6JwV`3z;T;R(doN4 zq>UUX&4@?iK-+sju1Ku3^0d2$A`~eg_y)0Jl#xsIWawfu zS7FsN1O}VfT{+TSY-h_5$cl^Yyl~%wz;as}wvy$$S6h`-{>n(S^vvlUar|a}vD`Pw zDsLd?q}-`bw<-)(&A~q9ae>VOe{#q{eWcy|28+TF>mR)t{M$wuK_O#pNkWu z>KnAR1mC8GrH4s<$X+Hhm0SjO@@Y|7;aCLMU&9}R{n8g3VI0a*)9;Vg|9gD;fOD(1 zWoAO^#PB-ZB80EpeXe#TAVi`r_)t;iw%M+GjEa#c#66KDP*2rLLfcJ`pPqn>B!`;) zoz~~uI{zH?aA813jSw3md5}r~!%awQ|GCQbaWrQ7DHxn!tPoxR%T*2_a{fy&r8@kH z@!tkk-yXf;yC-eH3rZiZN=FOX(Ga5-^+3eh*%PaV6N{u@eQT=B>~fNyNd{=_O}M}; zsMv#SN)1d zsq|uYcJ+&6#Kh*)))l>3TCrB56T72AmlwuO-Uxq;h7M^&!~42+fum^;@q>| ze@5M!@@%q303X<0;EZVF#wV_fZX-twA44a}441y*X9?{Z$6)+Io5NPmdo3m@!DQx^ zRU)l>ZV5}uwVdDUZPRS;lkid6t~rk{=ipM`mC=ZR zZxK)7KY=#wYuIbawpYO|h0MaC}+y&BQ(cUu?ODAW+siU^E&8I73G96 zxNVW}Vfd5wF{H-X%-XAMtWQ9_v^9S0nBo@E-_d^h2s2C-sGASoGmHl-rxv#FqO~j|?66``hEAbs_9RxS&EU^k!p6 z%_q@xfc0GD6VWHJqAMz7{Bw-BtACK}7E|K%tc>6>sB-DSkdPB=A zvr&-qIFUa-kp!&k8|p?vGX1}0)%-M2J14jMP~r=EAFSCOtEfOT8nuV_PotDU(Z7Q= zMZA^Fda}<^!(PSYE)Dg1wdkqHTJP605nx6FDL6kC3m8o;})hj@bg<(x=^-7SY{a5vGvAwG{aZvcI4(h%_;}%w&YF3Un(r`Hs1s2FIn`$ zTAmkH#|epifu@=~&}jtb<@NJq~w9n`hlWJ)neebqPLTBkoG%KFDeC->yC0^OOAg`CbOh|C` zR&Rqpdnis`285)B<;)|Fr6LsHQKN>byvYegRZ@HijZlH41f#YF=LKSueAEeG#g`cZ z*#u9u?%r1xv#9;C-i?KNw~~3Y>yv1m1+25A9RRAiaAd^2vp*KmcWF6bD{XJ|4tt%U z(dO{q{r)iaL&aM(=3RtLK-caB&et~fm{g@)C@d)FTm`~cuG07xGhT> zy)p;O>d1z?xYnD_(+64y8L&{BD8%xwR;$|`5`;m8Peb32E-tco@MU($$IuJ-+XvC* z;LT1dWRofQO#|Zmn=_H14n#&B${0y(nN)I!)ch`)NkdgN(8w)LiQzcJ^~N`{bz&M{wIe6jUSq2_ z(>n_SN#9ABf?qj5K;SY`FKyt1IU!==rVHz=N=pv@oh;i8d`MddpMkvyG-gl3;*$$}f+a$%kRVd=?V1X8 z0WiMMwPac6(`3eu{o~X$^Ps6l&THLrp@Gc}a6A|2!wSbDSvW@pQQBC|hQM}^!5$3U z*`7vAhA$lEsZ({L1a(jEuov5vk%{^(rS;*~-B3;Cs25!0FT*kVCMJx_8vaT%`D0zG z$v%k6yN-8!J0-=E0$RShR<#XxO1cNcC-^@UIqWlk=!4YM=k!RpW?(6MnR#@uCjKQw zm+05@JgL_J)|j;A?W2;pKGmPtCNQ9vjiRD$~^%$S*I=dI0B2-6l14xl?BY@(&rtHwL_k!og*K+1FtRQSY$6!ZZx5BEwd(T@?}vG4G_l#s7U>V2(AJ6h!MuEvN%*&glRG+8FfMqLfN zR{r8Ws!{5X$d%+hK9p~;fqGGs{M)OUaf;g` zg3|2ymbp*1Op_?4rLxHTSM_qrPKwr43!=IwqSn7ZM`X=O_bSw>pcX@(cpKjJWOiZv|=V?=(rWO~}~S$L^I z^!c{jfiF77o`nG+FNtKwry#@@a|P~c&&kWMl#e8CjnBX}{t}Ro(;8%DHl( zGzgguL<-T3QJ-h9(PM0NRvy7Wc3_CWD#4=goE_VW1`-qMnMu~C1O>P#h%N;j=2C() zOJl>D)a(C!{1}(qc{R+~CD_Snw>esJqR?i6Eo0}-E{hg=L8YUpGMzUS|2?GgE#*i6 z+Ft!Q?;_R0GBShL)~kEGG}Ex7S# zdRcz%!IcMIjD4Q1$;xXbG4Ok)k$QKz~IuEu$20tni>1FAXh z^oFpQt8VgAr*;R_zTLum;MoVHWG{>qKN-=BoCOm3y=4_)LmwABp8?J(R%O$j6(5|g zA68k_O-l>7`TOj$vl?DdP~Lsp516LHEAUi-3fUIk&rT~~G1}VZ&$THcw5+P~6`R+N_`TqUh_rLdf&+|O*d(Oj~;LQREf+OA$0D(Y2Ain|L z6krcPguoE65Cj5-K%o#A907+53&SOjiiskmB&4OKB+zJC1+0>++%b7H8l!_brlzi` zr75GNYoM!PfYs2{_%8_v3WdU9a1j983zzuK{1gQW5NRS{B#Cs0N z1Au^lAm8m_L7-q5NKi-s;G+%*03-kgzz~=S6#VxFNI($aUxS2-D;wIuP%5V8K}2$5 za?7LE5eZ2tRU@-go;Qjq=wn#5;J!D;9toM%d>R=Lz?b+R4L+-&5CG;wO31(U`S_s$ zkN{Fp*-%_a#g5410HS<^KR^PuK+0%+-3YOgphhRSuUrT90x~wAFPd;`qMyz@6{X3} z(Wz9U!Op>2c0ov^@Dv@$6FawRF|6~<>xJ_omScWk)~$8xHnvxLF%NhA+qnCI{X3;2 zhRe{u{G7JMl7M~>F&wQWTffeCTg!TJ&@KLQXVJ+br#A|_-3^^9!V0Y6I;mVf~ zHV|e?Q>1JD%ZT;t86EST_l)vY#g8vpM-Gab&g;Lmc?G`{VxxYBs{kYY%Mzn_u%U<9 zN5_@a{*^G@wn{tCVK02BrIm5<7v`1 z7Uvdu8e#V*reLFfp`$2IZ#tG+a}8y{e61e7V_Uh@O_}rdiq~c&S8>Y%8iVUMi{b)s zQ!daR&K5&A%cGHN{pcV>(zvuTH>se-Yp=xDR`O(*$ZV?dspVWb>LmqJgwbj1rc_5& znFwna@hVjQbE5_F+AYYZ|iZ-M%sZqc7R zwANepZRR@PAG9b~hSt!fudjac>saAQ;aP1c32zJFA&ym7#Ije;kw2%#Op)J z^j&tJHjYN0{t;dI)hVkSn~82H|A|1vb}W=UOBwhjY#G(MPajP5A0W4VneTbf@HX*| zcX~^11=D#Rx8Ji@a?xrGJ@n7CnK~t9OZp4*F1j>uGD|iaWpB1P|Dhy6x2K&Tv z>sai}vU3}6g+i6&lZ{DNyKa*ThD}y+QDOE(D(i`Ykb0^-1|NZl8p~&u6=-T- zX8rM6JbuLUp)^}&WYKfs5qgRdEv;H>aYJ&j+mqq+yICprDl@s=k^TAR%EjfMOPA6B z{Xq98yT5_gw&z?%?%q}l4LjE`ro7|ndR8~HDjlJD%~NsL5T05#daAU{vud?QK5jPf zaoFAIRz^bnlQQzpHT6~)$oF)=Jd$ygSA2A|s=~f2?8^GuTFVzGcSCc5t2Nqfw(J|( zJDuj-$hA2B%g(=timhxrzmJ=)m5Y3G-ZmMH>6q1&8zb8}_B^e~;Odbp`bvB1S z;iMXNO>M2^d>L``yU3*TMi|%^xqo#xAjxvF2Hy|&@;QNlG+IU zjJ?j2tSBuUaauUv*}T$fLMhyk^N2uxZ)3Rd+fwuyGEynv70N`bOHDOY?R6U7)rbdd z-BZZ^d@ETcv|9xZC%m?_kdgb2^wXf)<7i%F%gqN#3UR&GCys}@#}dy_P(ja!JPfxe z4}QJIM3lUAb!1yKS0_(-m8W^@Fz~uI1@5cb8iKuq%cqQfG>5thm;YjhK&hX`?FJ@k8xt2hG%IySZVx*xSkROL&*!eYRGa(8M%LFjLH> zL3x0(dRu%q(e@8{*yMcv>Jj@H@!aap4oTm*^z?@~9#CoW-N69(p-G~PeG$suyL-Y5 zyzT+3OjgffN7X&?;=1s1Dy2RO%^~K8 zf6YDlO)+n36F$kz6865%fyh~1FEY&$a(xI=)>BVt0h2h@(S+%yDUF_f&Q|e{HP=_9 zD9oL}(NA*8I@LZbTSYuAb`2WrYp?rJd7&?E*j<-JiA{b=>Kw>9-A->qly6@3Gu*Qm zJPdG-db5b7`|X^R*l4os1B{TlN01jtYgTGTKx%Q0&&Of^M*htJ&RCe3n*dl?SO8|s z8{pqKz!1O=WMg9kvNIpp+1WWjJe(kA<2!YVi-(_2K!Bf*pI`7So1Ou%vH*ds%;-TZoGd_A5VIG+#?LMw zt*Xx0Q}!H z|92h$b0jwAr@`#J!Vh3&Wnp99fj~Cq703*Vl^@8)oJ3Inyxm=Puo{|>Cu0y>&0#;V zz9HnM-uCO?7=XDF=0bq{09^pf#rtcNXvc6z!T4UEFJbfO+Vo{C-uTTpKt(qbqdkuB zWV?AhlBk^noUp%AeX#?Fu}k)rVQEY!ULTy+#_J(O!-q$;bpaRI;{PT>ZwQ@!ImTyQ ziypjy%7lc#y0({k%|Y0!m#apG^V!D*1MK0YH|GBV56`B0$MZ4I>jx)Ebu8EI{Owa2G=cRwgtwbBlfF?bxTTiQ~NccRrRbJWY?@ z^27~Pk87tqf4|hJ7S1ug-UNgV8Z|ZyI2-=aL>i+f;^ix}?FMcO7?h<=)f$c|JS#g< zj(TM6t>z$h!`58oV)E!3Eo-oXt7~Sv@KgOmHwXUh+%b@Qd-lhn4fD-l3wvh{WK4nUeWSwuRgW#@iZ7GB)nT_r8rY` z#AEvp5cKL+1?{xGtw#d^qjekT5p5Bh!6+B-_pmjLCz`E#Jd({;95hQTXmtuPmf;Ol zCyW&n&zh_ehO*p)@uzRU7S2-o``IyyV=(96 zjn*EM>($s=m9sOKm+V?z3Aak&KVFAQYpPXuupDn#2AVQ%*c+12TU{mJxlMmj_uisp zT)8h-VuINJ6y!K6I|lZdXlluMTjF26`Dg-|(uf9m1!Ny0;kspaWct~$MnfQgGSt1?X>&Hi!r?)mQZQfdX%I4RJKqDUIhfeSUu_M+{n50n~M%V!%bFSm7(rTKGZV{&B_un}#u!-yGv=bi;2a2@{WfWc=c#DUD!i)X^l=V&Z zuh)#4@gbre`*p~t^eTIc|?cZ{Sg1X z&jRC9-Ol%dv^!h*u;si!!nnu4Vw);1n}JpNk}5@Qk9I6*9ICjW*)86fC;KBn4DQ}H zM5e++{v+})HW5R~0by4pS7CrMBY-&PTj(WEzdu2yEk?Aa08^J8U%t`TKO)bi{XTQm zkLNKM*?APf)<=75nFgT`Wp(yxHk+-M7b)_vcy{$OnQmv{{q=QhBoW2 zQoL6TrY~1Le{?Dl0BYMU8QYv8y_Ef79NZ)K-Gg2(X8Ryrh(SnErY_s9`7v~ttf2&2 zdH|eS2TLs{{BbkyPhhXGa)UU3Sb`~!!kLaYP2EKjrjq3rw)A3fe?iDxxP7jSA5HLwC&T{9Z&S+yltndA z1{R`y{(kOw3D9IU#@W@)z@51_O`<>omzQ^A6l%paEJM+bXBk1 z1A&(=S4Hs~UW>deFDubHxUYJ#np?+JSfO#dNaVgG=kq`>jZZI;Pif?<<-_tvgSSRL z5>9XZ(T6_|Ub49zAnfS{oYyPL$4Jz!eKrdN6=M(&7F~>Y!L&)>1%zUKlG!E;ilTE>>wFbe+0WF1_&aoL42pdpjam#J=YA z;4wc-E|ah7cJ2NM(CbyT6fKye19i0$O;LjfKQ6vsc2qE3?C$;VuKV>jPAp(a$Ma(Q z1xG%h!W*Y!4n=3?>J1_I_H@dp`0fiUH6dzz&m9hl5mB~!8gf2m(b`E7%S6NMTN{gB z8_D-BU*BD4bIaL#$*FI)t~C?|H*3Ab5xKOiN}pX@w%<6naQRd>j?F;v>TR*q=frpB zcg#B=5ljC75rNT?jBD{86q9Ht1LED?s}7{$yy&74LGMjUNG51-Do-Q*X*Uji z!z!wxAU;hCZFxB15vQl?=z|i(vC!n~Uf?3CQI@iylrB?=A9R>@kZyTk3yT9gz z?Dh_&96I)D-+@*B^o9a8uOe;M1bCX5XrqD`KI~85y((+=_8Q%lTH)g^KUux5#2PNj z5+6IgRiu(yp+@Z&4flJqGvFE^(qx~7^d*1VJg5wwKFq81U!Br8cf{aKnhcU+ z%KDmN6(8GURr`1a>0Jo_2Y>}a2qHy&r+Ti;W$oByXR7Gmd5?>?d2&gA%se^+713R# z!(t>vKR|`>Jj(C4V+jk=cQn{SXG&^GNikrPWY7?vO;7f9&Xe$)A{Xetgft8Roh`Rn%NYtq8ZC)O{yIevCTs zc)Z@%FHo~eY3D2CuRRm37|^S}&+VNzz!GNOW!D*u7^MtQF|PyoIGR1b;@MJF!`^?j z7m@1?Nht^0@~U^LDD)v0>$U;&3-n*$*9*Gsx;+B6p7MogyOd>9cGl+?mTDu}VTef$ z-cZ9TCrjDWcJ212+sBa~4c1 z(7&-_$2jF5_ol8Qf~`BeWMCg7Scx7P{{Wo%&j79{5e|$iR@s5uqEm+S*f57x>s&>vVAyr$rJkcO2 zXQwdQ@W1q_%qr7wv^Q;R9_~aGhXX&w_tR?p20wo0=IgfKo5oV7C(yPZz0>2gFauF~ z);VE6`s>x+ zl>+l9;e#gV?579U$&P0iRhNjK6XS?-iHw#h|IP^~9XLXlk=9O|z$tU~{ z11T?7~)Hbqm2@ii&h+?Qm)@wL}07b;RYeK@n#7Y@Gq~KfVgE9u=fF-mNLj>DIC3IA*)Fw%^Vm9z1p}Kt(74y z6FZfDcP1P|o6!=M4dUSQK`8~}!U=cYXGcQwG<(3>ZqKK2Jec8Ai8F*dRl7ytKKK0r zvx_O}8(j;Hy_`}dOGB@#9&Hz8B6zp$Pk#?11bam8Y}S~ zA{f7FX1m>E@eRLCBH%yvD@l(9a_DMVKGIx8Np^NhyU=rUjr5&xygCmjKOX#O4y|Zi z)w|6*rN!;-qKiWDlV&2l-)UpL+1E{O%A(_~TBQJ?r4|oYBB2@^W}H3~UrC4pmJbWOQ1ZZqL4c59t>tgus{0@x|h&ue~p+IF;Q2!%DaHV%*a2 zZcF``i9oh2R}(r}3wTkV>!e+R~h7rGi(?Jk?or}wHv*I7GN!28N& zR6!6?<%lzWh=oRKTc35E#xFcOYz~LdPyNZy`D})HxJquJNXN(}43DVt!_)H-@=XN_ z=v1x8`PRPpi9itSRv@Qa4-ChuN>q90v6bpwC@2rs&|-1#JD)Yuwnw%!ENQy}CJ5#v z620EMtQ21vNaX!z2^jAx4@<@nXdZ~bAZf#xDbiH4+~ zcVDgRaio5oh)q3h|Hbh8?T<-62s=fuK-E;Aa_|2jk1DpD3a{c)RNWadaOb%L8rL9P zDFst00H5K{v923`mEw$zQrSAIg9+H%tJr#(24Y+WV*o^&;-N41(M9 z6~9!DjYY)-qu9d4bNmO9iMr0V{{{S+$}+|1(&xULN*N;OQ_i=aN1 z`R7bXuNRO+M?@?q2I=?612z-Fsy#C~G7ym&;kGdiKuGxT-8j;*VtrCq`%zbyB=_Nl znQRJ)#Q+z-l)YU}a&OAl=mdkWLFTfNg8KKr77%KEn1Dh?G=GRHDl zt-nNt6{c7hBcX$fuSMO2by`ZJRtco| zWeee%GiK>&sq%EA+sw>#bBa3fP4Rwo+Av!+Xx&6W18L{`UxR$bB)vNGLx5nk4AI6gz|$ zxTMRc?_2>|M_DEQ0L^J|j;Wiup>tw3rjoy5&ZycL1ZvYJsPz|aKijiMR?~g)h#(|HBdxlUpPpr3PFm9pzyIGWgI@K{@R*w_l5spF$QumcYHU=4H z4v(mgHJiaP;D}Pui3VZY$dakcVoFtN$kIaiAD!B;*r)5q(8S5!z+&A@WS7&evjZev zZ|*Y~yXeN{3CLpX)t+ou}onN_SJ3fPhJ_wu9T0iKc>=)hS;#AjAAU8&8xQ z-q+lK@fC6C5Os|qCI;Uo2T4%3IZObpj895f+}uO)#fImJY6a*{sf0cjE3T3HDy!lg z3vd1DLP$MLu$}aHmayt!&w|=4Y!a$*U^CI|gjIeCC4XAJIy*|3dNo&1Zwy|9mYxq$ zQ6r0JE~I-+;{TFQH?62aBQim=97%>_t=xz1Bzv%Yo#+5dHyhUG$wLv5&Wml;abeb> z+@_V_o+si3b|>E40B06E-OhOY_G*HZD;aU(P;g1h1Dl$n-*fe|h3nNoxR?pFg8ViX z8#RD`wSQAZJD6Gp=86B-hg=d-rCRRhtJwJ2ugce1Z7On%_Nv~g3XsLVeo(zX>|U?q zAY`N%6H=i7l65E+Lw8^K{%Ly27$=e%z{KMy4y*@gjM$~Uu3%Kld9!h6)%j+e*P9r8 z)?R^!vnK>!duve)g#X!5X{{KdziQ?V!tv#iV|ERqvcOGCgA5yw@t&&?S3IU)wLoHo z+S{1OD72L??>VsESG=fsB~VdJPW{+hFS&6fY^R6|B0*+YZ;?oI zl7)({MG2cP_fKD*%qV5iEIFdcllTf12q_P~V%?|378mN~eu?QSdQJ*&_v&0%?2$Lj z&e#YV)hymLXjHjh=f^V_(Ft>^4|7rY`{()JTOJPWp(I=hxWO#k^+2(wLa!C6c(s9G zZ83-0Eejfu$bzq&HaWR10`fXqM7eHsW=goI<8@o4tPA+wI3nyCw0{s2@+5Z;hF-69 zx5rq7dqkAQ9o+_2I;y+QrNJvU+u$H<$i-Y-V^^nKf1p7Q$~epuUZI+uMGhUZwukF^uI)!xPvR=+VHXu_Jq6{SJ3v+CMrN&;Q)$hvK;hDMfgqhn zoq8^mBq5+b5;P2(CFl5L6@>{S9#(M0reH$Ayc}EriQ4Aiv1dxenKv882|(~nu(Pdu ztPvQp;cQFS1V7a~M7N3*C}oqu*1hNv3@QY#dr6@xHz;fS$~a43xnQklKUObyU27mj zF19` z`eubvAFz-`@6g0l4H31D-Iqd{^1)-|sH zkJm8>g`($Lt`L;!nt2zHBk^fV4GLWssO~(7H{VCw@%)*I#Rdf9vv$D#r&pr0SwOA_ z!;y>%kTu4^R37kfx1zPrT07X}huE0p-izg7hS{Fwga;7&EI~fqyo!BkiikbCYvw7t z>7D3-)H@jDu23x|faY>Mw=#t_jVeepE1#M+NA_mpjQ8Lz0;6%-h3UYi|`vPgqdX;_dP)T0-D zfVv9o)dVjv0VUhf(-v00fcXgy)u~hhZuSih5GpxFG_8~pWu?3i>6DhoLoonvRXk}x z-@}7GmHH1bPEje6moP*Au?P*L%{W*r{?+)#gATEJ1@rf&`lqlD@QL z=6BXZSeARP{;43xX8UyIyjaT&b%@t7s6?cCw@p@F62QWe$i zV};FX<|aC9*5KuYZ&&z+0ge!u*c-T3iTp-MY*|;=#`!$5)H>&Zy%4fZxGWgY#qFJN zPFO(=TKb%>_;p=VjzFl6DIP9#R5r5#mP6zJ0e;142itTT{e5MB6X#y+v-)Y$XZTNZ zqJ=wlp-P0V`$ob@LPY46rld}7uEeCmUd^kUK+LA51*v?t zkm>e2f&2sb7)t6sVGJedTS7|5qW54!&IE!n=X0r5Nk>CTVZ|Wt5hBNkJ_Mino#g5{ zh289yOnhC1H{V-kCK`Ww`g9@M@WXQjz5QXoE?^CVQG%oLnoZ)G)g zw0a7{=QHzH)^NRPV}&Zuj08Mi19CZEzdR`a91i(ieO1aLqV@bp;WK+_Dh-tm`Q6y4GE=*$T<_9qCj=NPefIK7{=gbD!3_rA62#KE8ip>@q@MV?s>Xw7UHY~GV{dQr{cX{aoM%Ff^{uMoouJx zI3Ey{{n6gNw05D4N&>jp3(p9`+rQ-iFRm+V) zUc+rrVJ59`CZ=P8yuC%}2oMY^?ni}4SX&9z3idx*wHjktKJhwY2MV>x5m5*RQ9gjr z?@<9XeKFjgo89BU9_FcY?3JH$Hn>wY{cmFETT2DW0F1|$)p)wGS{#R|9MP7ZM=j@y z(NHl7wo(YRag_h|C#=F_DJCqh+7@c#JZOM!>jb0l&_Xl;D=4h`-vcH@rfZ7i-_~4? zPq8qu{(H1E$sLQO=M}BYK7&#?3lu|e+{y}&+awW52q` zn%Aaj|Cr~v8a`+SECI8ySYzD5ljLkwBekOqtI<9gNv&Lvq8hXA+@`|x?WT(z0|u~w zcu%AjDr67w7^d%%GxQp_2{9R>gxm`NC+@qarnd;2c_Jf~3Bm<@WxtkPEMl!@>opS$oxC znLU|p@AgE2briz+ELep>RD3{ZsaCg|Bt8-w;@|Fi+XL^JLLBI+xrqOsd~ zs|44;;#~wouxi~;(5+r^!4C3w%WkY*o0lk-Ay#dM^VkblwS--9>I!XTRq5(AZMiaI zf+#8DQ@{u5)DH4}3Z@aWveimgyX1lAiEf&GLVm9D>G5{R1{bcfO_7hrcau_{vc9gG zW8kjGHb_NDyn$8*gweO&qD&r$DSfR5Ndc#bXGn7wZyk^PS+Y{m&=e^udLBB$F_@i5 z$N&Ii7EaSae!$Q3_ z7Mf0;a2VZJ7=C#y`F989IJ5JnEGgK09zW9OQ**W~g-UHv9Fv~;EYl)JlT5CuqNwAy z6N1bTo`tuMdq6s_9Iy9`sl4jHy{6(RUuk5BJ=^|v=dHS2>MUf-`YeI)ZDydw_M>0< ztsr=xICPdbIDT!5OvjbEnsGuLQXu!NFNla&n}07%7D^TXw)Q-J(S)$OFC@QlF{m~E zUCeCuFF&@;e&9Op;HJN2+&R*L-8XI_%Af4o4PP;L-=n_;bBWcXcb>KNs#=^C=!jvL z@N1RVX)4elFiMU}0}Mk)I5%6z^p?k7@Yj&>JQPr$7M(ps&pdgv`YfuSQvnE@e(Xda}E0HiYKIsgAuPPUI}Wrezqb1e@;t zb4lyh#jae8`5JYf?0W+Q;5ig+@{QO57<}A@GV<)dD(Ol$^sXkQYiRd=VzPNj2rWOuvpjC@#Yql?Ie2R1WESI zXH;GISknXafjJg3cY8GtXli_xsOnlC2RGu){_p`Om9QoA_ahR~idVT~LuTmWRx;9U z5T1bxnuuUCTgk6U+#CuZ%L8n{1jLojFv?hsCmKpNc4~{Wrh?d5q1;Cw>@Ki$QLI$* zAQB3e*JAuXZZA0t;%ywI@))tq)F7^kKdHTCt7;4?^49Pe&{pkQ?tv9qWB$K`B`9pw zY#;{2`iz;2(PrJ0u)Sip-23{Zhpfb#GKc|o_#B@PU1X6(e#Fj8;ha}*c*Ih(dXBSu zq0l_N9?CoiFt%B-UpKlSgBI(NNUubz)^*bsw4RMMQlTdHmIniC)db3B7p!6+P#O=Z z!B**dLHCZx04_7k%zx^1^TWSKbr*bCx7x5_N<6h zNG1hBx#@-4+#E^-9L>+=*elUG2+FXbkmOd!HFThZ9KwSzCpH!h-O%i^n{9-|H|vYe8MD1oqQ2bBhUHx^JSz-+}6_(*V2DPNgBzlwG(x*FBCzrFWF2CfHGP^l_ z#f}`BZv69)TtmZ$>)B_avi222_PpA=du0OvM21UPR|Sa)bx`n4H4Sd8WnDu|jY~o8jXd7S|8s)Iw*|d01wN z*;0e!)_07ijQoW?uHh;fwB)$8ULJQ_J<=juVqo`HixWdCQpa( z$&~KfEtnwuaFLn?Q(U?qY`!*34D{7SX08akWyGff$WEUBL4(Iq!}OxRF_>y#!u1tE z+1YO49yv8W`J;hDw_eLoD(s1Y{$H+zAa2Fs=W`{@O2*ECF5I&FAYE@3+uaQyKBFVeVS3ME2O+e5^I<~D(3=5Rn?~G7 zcfs}5eV&1D4}{@>R38VdG@c?cb{TR2~& zdz!2@M0@<-SF*-h_Bok($8*W(4tMNxvh%(Fax%SY-a}oDxne)3=48rGzWN;dc3pu= zchPoBt;wZ>B=S>~x82*Y^RZqh1kJCYT%LHk$>Ygk4{!L>TdZB<} zaAH>v6gPMGsm}I_xfF{a@Xbei&UL1aM?Pv|p_nqPyb33odIGn8Eg)}cD7A>C6-Y$1 zL4kV?gFxJZ204(VXYpu8)Z3C*8-s;);(%f_m^n!$Itu#d^gEF2^2DG;nrgOUYwPFl z%%YOg{AWG0FRP>Rt6dWZ<))u>=t;)pD=B8V0&q1`i8Pj~GZEQx2zN{F0*kn~_q7BY zO^7#@u|IX4q0om4%u!?$^1ON9Vj=rV+1WqS?N(R2k;5X#K5G%TwcSO;J7N2NDh{3# z_g@l@!PS*D$^ERFjHxVB;Te{t8^dQ81MSY(2I+k@chw>Nq}(vd?dLbJF`Q0uoPV+& z%B+(?q+@UR+EPF2y^0|h1MB^SalvaMetf6kKAfU%TvKYxmBPka+acyL!*d@$nKLt+ z`iV>X+=S@G1gWz)ycT4qD3e|+On&uL>I;)X1N~Kj{;9TSRWxIOzXMe98NTOtolyon zbGU;I>rTD9YHFtPb#lEJ_jwc8wd~OSK^|EiI?RciUG)TFA7+#mh#7Da8$>WUpCjEu zNbKsnrwGq0ZJ}%XsP?UIl9^Cc-xuT1-Ebf)esbyX7SBs@rK;eLkczdT#MU5upp{&o zfeNy8`UxF8gT&Z>t{IlmNF5cS`UK^%Z7*9dQJ{Ks;lAD^@zd93HbM#&Z{modNX>)c z;9k=@ISTGv3M?spHd*~9K8*dn$+~li2sh}980a71!~1Bj&mQHMUJGsaTK7{f-k9Xt zd}=Fa_fz+exX$(8W0@J4Cvr5skS?a=)Bu&7DvRo_tSc9t-81~TATZ_xa3}2lwQ+ZG z359z6AtLW6k5O&N3-bL({=e=7i3Ipp63_abnnZ{g$_J_b2#4IP2o?O&kS$*KcxVUy z2r0LT-gD}7ri#d91O>YL(SOMZ{XUV7xA;*(a}q0YQy%s3a4qk11I@nG<^SvE#Dbhq z=}@wc^~CCDU6xs@w|uCR@&oO>reW6n4?r$=qbdxK=GHZ0XD8*J*Hq-aEH;3Sr#u1? zxB58$K5ab_tNL+K?7wE(obg58^b+XS#kmuQ2Xuo_!2K41&aqj_)UW<_8l}SSL#d3W zuHp`C|At`xKEWTv{KfS*RL6n73PzOx2+9nD=q*qYPtnVzy{l z4=R%@whx2i&Ty?75J4Q=cPxTLn-wtIeTC=d@?@Cwo^SiB-YIBPeu!BNXBP+;G8^}^ za(ngCz@N%OtZ@2IQ$D=$4hmmKU}+RgI9_1)+gi?-n< zbo#hZUk)s{Lf#~YwOjF3@z9m#V<*e()AH6IYR{q7#_oW>f4A8%m9$6pf?C2fN_QXa z7QdZ(tqEJbTdqE|;9$jIk}kUC;eyA7q1x>s{kN$~%UY9PpWKqt@!P!W+SC7NQ7c4f z@x~tJ1^F)fGoz{>vN7fnUE?ph`7}Yz^w=Gw)_zUT3x_#Oe_NttXLL7R_kNDYIni{} ztIz5NOUucAXJ63XQ*hea>%4rnbt@k-6Uskjlnsp8t7)MfFY}F#jEo>FasY{9|4n8b z0CR$ZNryi@lWqp-3zPr?{M=i7i@qFT?eA-SY{1)LXTBXzsZA$s7if^OP526J_CgSm zN@;TT)+;P7wAU4VAh%Dk$z*yQS0Co?`&38*=rhMV2XuEgxL{Kcz>P=_)CF6lv&E#> z?#wo}>&;1I`fwk_gwrDAad99=i5r)BEUI~J*xXwlPmU+ZG+4Y>rI={lRroMlY}X+JF39N+NoxiM!#x%s?5eZ4zn)mc92XB$$Jj8hzyQ^cFO z%d8V@9vb?^>V_Occ9yU<&562PY zGHrx@x{vnm6NL5mC^#!ge%1$pi_*+AIRoM~rIAPDq7)m)`L-Hh!?#i*`fCK~d-n{_ z=<>o6$CF@P2JcKtxcP9(1h*?aoIQidcRrx zQ9?^;)B~8U$sk&qr#yv4iGh9z?-k2xztp}dQ?C%5=U>yHhMOVLU}?CZ&|M+d-8q~e z<6sbxlEmiUBbHiUb@qidqxiVCz4Jr<(S}Jar)jXIDsPL5_ZT^5!eL=rCT6%Yl*JjBG!Sq~3e15XEKi~z8Q)9JZeKpTQpw=r; zl8WzIdi`Z$CmV&7S4Ej{imnBe+`R~G4h)@rlU^&5kuY(S>AAEv*vYrx@1h?LityQ` zZ{@egc8MGzF(`u#JZ6CBX@%0qYU7MkwNWkR1*e7~0~gen;}kVgnywh70>We?l~Tk* z_Z`OJ-EygU$j045SHnJitU(8j$%{>6@8Z&l56|{_D`0Tp!)%(%KODwQzcH@Wx(j!P zHmCTv#(N1N44u2v8OB(+e;ZDV*MrHKE^A4CW$_WTML0mm;;gbB{?<6c-> z9|`)NJ9;$@{xWu-xTP<0iBsfOyjo>GKJ%u|+xzQt!v}@5#nK1s`<0ww7K9NA_?vog%nmWk)v}8Xx zmr(xkHu_#UVk@#2`Xu$$tR9UW4m#EEagz*Lzlt_2&=_;zAE7+w2?RVB-HII-f@sy} z$mRN-{jC~u?lDs=I7Rr)GM9qBla(R$Rz8P_dfm|Pg>W5=VG+b4`yRiiAn?2vc zu-KUIX=!P}5#0@a&g)_x9nZZKRyWiV|JoIfk+gG3ATRHpK>OL-{jdk)Nze4>ZAx~pRGiHex!)vZTh>f8G4Asd z&5ALVfyIW+@gjYz)srjCcr3!Vi)!^Mcoov(A(vrsI%t#MXTNaG;m}x<2IRq^os$|T z;NYf^80M&S&Es!B8$oT`k7e1);JZFA-(Bqb^lt4&Z^N(gNNwYRO2@vnw`&LjNoSxR zIQG$SWq4J)Q$qA7J?*r082SG3oM2Pv+GaP1EMP-s!!q-lR zD}D~caU4TM3d9}DEe-REvR+nwZ5-9MF`^{^LET>y{ItBM0 z0;_tY8uYYSR*cUH)c37C?M=d^@7tH<$;=-8{;xSE^dzpaBbJcz^<`(K{hieJ3P@}3 z@s|~WAk5>S0AYi9fdFHh3>Fz!!ulO@4{-H56KZoOB%Vf#M=Mz9vLK>pj}l!B@Ah=@u!d^eFiQs5hQD6~9G z%f6Qp1oS{X>A_{lBLjV$(x84)Uh-6cXmXk{Ws&;bE-^UUb{Lj~w@WzNze^niz(E4H5NT)r)lO;SwhmW58qO6DiU*p zw>2qxown&mkO6s5rX?x%*G$aBqh)(St!ou5?Tk8!<_z?XZE1kdVS?@Uk^4He=s=yQ z+9B7V+ddfu_kZY#@;3lZYAGqeRF$yqg%l-`-kY0OrW`Kt{THCvaEf}*+vaJZw8fP? zk*{&=S8_Fb)j)+;l;nK@p{+BLv{&;RJrFmY99>6u;}zBGjc;--W45r~dZs)1M|HhS zIJ?DQ$-9Qe&&vVShFn)MswPf3K+m~t8y&XSVm6es#?8w9MO+ zhdGbkY^3(cCo3e4qm(x${S{_Yp?Nkjfj}p>;OvZK|M=wTLg6zx9dePHtLD}J0K^vy zSHPGLu|)bbu#ok#N%Wacvj(zmJE-^LOD>7883u`ywJRR|vr9I%I*FM9sQqY1XkPJI z>$2GXS(51&Ra(B&lRsL69~b*7B1`6UWHz$d6|A=hlq0W3Lchs+tdHyzb}gxAq6yZ2 z>-}_EkkC_dTBS(ns4!(c5?<&BWm#4^rkgcCxqSH)OO7+-#?zJT`>$8_O#C+8$NvGg z&O{epk0}W5LOd#qeqUx%y*~BIeN5^3=OaTM-I9{%Zn4?fi=w+q&7RI7Zy$)3`m^3k zRB%~JloB{O!^lIfYyEr{6yTJdSW*XnX*-07`3Goh`0FG--r`(Pf=*G`@cmq~CjMJ1 z_EQe!MFVGNFiY%!iPqhC^!^R?Rrih@uTS9h702Yi4L{OORrysa&$%PZ1SvtenMl>a z!bn3ka{e>%Gn7%K-yp~Ph2deK1r<}aLS5S)p-6xsfCtUX;#ZSW(5n`?X0KOQL zyxr)t)n$$Gb_uw1D(hVLPNcMf$3B`TV-Xsg@1h>ssYi)_w~#3M_Qqst z@K5`~(yJTdWx_jbyhlLd)@{dyM+W=n*~W^+Il@mKy(Ybn$X}8uy2z`H@W3xbCi&7? z-u_X!Lm4`J3=BA`>>I)kBJM<7QMf2Nur|{eS@n(eEcL|nZ&cmJROZ{?qPN1w!y0sE z6GWbY0uk%s629nN)a=D*OLX9@Hyh23>wXZwxh_AjY3}CL)vb1?A1lk<7nQ3&25<#N z-mCN_MkN8#4g#N?fbCv9NUap#m>$3J{;uxJ{J#;(@K)loyslA~_`y%*gQw3Po$9_6 zKIuC#e^l+PFZE!GLz!CHg5gX2c%z0(d*UbGWOAZ3?&R}EXtBp(kwIyFeD{W5s>4^XWBYnTuCL8#lquAL5%yIbF z9T(n9J`dTTmdw^-UOt1}(fND(Kc5#bhLy8j z@wW}qK7AZ^xaZS*+ql^Hg+7Al9T4vJQF4{1CswPf^!AR-_WZQ67Sh3K}x2%JIWPG|cZSXbl+kWFM zWBGB$bLm5ijqjL%r(oR>T4w)b^{jzepY`a{ZKTY~!tAwL&mXIH(yX_W;=q@p)o;28 z(ms27Z+vNspr@$D{0`1pGY*ZLGWVO`{P2bxZ~d6l;dGVBCEsWT+Hv;uNa%mmkQ-@M zp3x89j+bKfyK!-PE*Q_l;flpuwMk!yz*0N@@Fceu1Fbd72)rrn)3t^Mk5AZ}nQ2B* z*68=3x_}75-PqZ0d;%|OqsPykvnwyb(l0slBmhB(`yY`e*|#q==|tw-DeU919d*X& zR1WNzklbPeqj7NdXpG1{ z3wbP=Db2>K7y$*<$!StBobd@#rC@#p8we!28Vtc5|S+>!BTc&}4#w$in}uCG1FW>}G{j@cPl)ND_LOVdbGY z=P_742+|JglG-T}XyF?qO3%(jTev>+nD?4^=6%2(`1H+OB(xALz?OkBXhJ;PEeZpU zBi}Y$Hu87<s7$GsEn}d!1x3EyWo_h zN+G8)c?$Nu7$cLRlQAG7!Y28({FeM<@Q?%i?@Ni=Ap@5SyVr%-Hk%60tC4@nEZ^`K zl?eJcC@TB=jA(fGMrHz70I)#p0 z2J{0-ZJ7C+$$R&KkDjH7DOq^Vo7wKka##6=P{JPR2EU3yWnQe6OsX`ANvTdTg4b1pv3r4+JEn@IzDs{EIp7SAF z7Ds{6ykhv-R}F!S&_9uIM&$p)Vm~Y9bIp zEZapw%cS&8f?L;Z#0DwleU<;ZD zU2PAH{pmZhS~w z8opw1*`k7b6S=f8#giW2BLUNu#$1Nr-lIB~-Rl)&|FkZKBJLNQ^E#JUvXSg@nYO(V zPu$k!z3W>2jD-+DYhY@)LiGF{eNZ&AOn=vuzP)idWoJ@A>9)XW#ZG>?fV4&_O`v!U z``v79uT|Q$N94ho2hU&sSorv~Lqg&9gSG9g{{zfGGrw?#crRr_OJi`{dCgq?viRjZ z8{rAXynt$#WudlEd0$uhe_U6C{g!GPbb7MGs!B6ICPr?Cxg?&=$8;KVqv`!GP_?^3 z2b!LG9Ei>tf%YKRihs1)4Vwyki65bqPDzH z9w}mOcMKkJ)Oy#=UuqY!YMw3BBvfWoF$w`E2RwntOp}Vn9QJE2Dvv*s$h_t?sU)oNk7AB#iOuJ{)~OuXFn!`w+PC2B8M2;w?4pG==@)5)H36 zum_Mm>)G{>_I>*|)*&*!ktKxW03Om(m;P(&FCh$&x7`yM&c=bt=Gucq8dvhB!jFJZ$;$&PmAL>0U9q)Aa>gnL&a^ zIb8bmuRrlduW_wwGv3@eIdUUh@Qc_A^sln*BTDgKg|+)Ti%WLYt?b3srNoB^aQ8I-c_yEAs%bNcwEN48HwUb85n6`(K=IPtY4d&dD4F&OLEk8_hFE)qF9eMSUD#TfjoJL5C4PX16VK!pR}rPxk9i(mW8+_`pSXZb$6vMN3jg!puh}^gsSo@#^C{X;mB= z-_yTr;;!2~b4=E?O%q;Qy)y1wE2z%wsoRfp`qiJ0{?Iia7Z`4D-CkrxN0VR$h#2G0 zR^L_o9n`gbGsZqEOMz!+rmDP1Qzm{lI)k1u>t1o--vw%(C)VvWJv9v1S2Bo`YLX+* zS8qTCcVbY;xBVVW<0#2P?A865eT#Ub?Gr=&rKiapDdvR|%yAlz>QBnOd%|Drj{%vR zUh!FF7|L4P^Pgs8{j2D|1^9DL@Lz*;&kot_^6a4oMgtyW0r4^Unl3F$D1!RPb4E;# z_h}T#MemTGi_tL_m?s+ z820{SUrG39N7DR1q(`S|$PzReWt6VrT0nm1)ox_g! zt`4~TLX?n5!+mpGr%2&y-HFa}a!Bb&SpNX>DRZ7{k0-4y!rC`E&rDN!&T)!(9kbWg znkiZhtZN*Op46MNanDL|9G;zNq&GgDsqPlmAY<$G6~%^qX+rg+JdT}cv^rvL9FNkt zW7J~1X&nW2InP|t!0Cuo9_F~H>6+o5hLi@!^rFO&(!BMgW$Vd4l=11bXV$xs+Lq=U zP|q(pJF-nDmct=w**V5KQmcCrM?D7?H)HyawcA@6_5Er6dCB&!{vN%0QEaM2TUc^H zCYguE0O!)DBp%&6*As#3NwB5%4oTn?z|A*|=M_I5y!uiex$Q$@+CbO?IHr&@fGTpm zJMl@gBZ1P5$Q)S<06XHN3O47bOi=`J&q2ppVE_)5Ns{75RdP7vc&R}LpdN=k zX`x2m0Vmp-G(uw;^sX`BWRp_uC$%9NAmfAYPQsB1i`0x$Oecepk9r{E2a`?XraRHO zg&<~xkO5GA>8%LI;OD&-20st0Nj`g%sZ?4325}7`!EENd|I^ew7<;#!BO@ zS`_2I6vj@*pOVD!eoE7o&jfKz+}(M`D#4S`RBsyNg&YcgL`RK)5D%x%6o&+3Z+bc6 zQhx~PQM@Vqr=ImnNS%xqDn@ai?OYE73q%-Gu1LivlsfM`(%gr&&^hNhrjQT!qP(ti zocmG;+je_Vxesduah^c}qG)mn_-OZx44iXK^72Mh^vT5vVBm_@j|ZUn(@HSM2kBNU zi`-z3YGH~pat}WBTgZ6I@=sw*ZcbDje5m$;PvIjNrhV1FnQFHpTqIWutR@ImIqDOd zRla2ehX*`#pf@@zF$%{&!c8~KlmVD{^sA)JTWGUO*;$4rRqe?C07`jTSq;os`Ydu1;GCR$eMUP{N?=UNg(7o*q#F6N2-d$ z_%mD9yglK|j}vJ*mg_~=?qk$L42QLs8}|X&ZBy-v)I7(K3HCd)Sba0ZS}%rtSK@CD zc&VN(7hOb|B?w60+;Q0RpQUl@BPA6j$=#uxRNCs%58DTcPl~*0b$t}u?9sftUrmF* z)a3nZ9L_|$hDHu*ZAM)^^;x3R@8G$Fd{OyqP89S9BRLcd%s?PZou5VG16;==uCnF@N>7EBYde_Zx zlAMg3cdu>#0A{}w+UPoduWhK@#|(44ZiUW1FN;5>D+i4)k<%IWkEG+na0VBkqjzw9 zJ5~ig(0n{fBI;0Zc{{~fMdH0Sc(=iM3*cvl6-sG3GjX$B78sN0pjXZR0PR)wMs?dL zyi?)LHa68Q11;onE*j!Kpx||3gYI))$`}yr2h^G# zM4D@|Ry(x%K1u%oV~r+Sk$OMr~AK;cV(na<^p~yAn(B#U15(#0*uSe4SR8q(N z-|;QG-dTgX-ay-Bg^%$@-H)oC4QZbj%X0VGI5M=qE25jk7teb#Mx;6*$~JlCv>p+f z>KMW!!z9Gv1eY1wG1y~@hf0r4hf#SWn@YNc6uKMac$ohH+Ct??`BtM|@y3I$X_i() z!MZh#&9VOgpJgK>Iqi}c`sTSOj^nZ@^swvpPkf6Hv+K0C@jacAK=)2$K3Wb!vFZJ5 zW#aD?t*6>0j8V$3X&em+bvaj;C(L2(k^uGsvDWfW;qL`pc$-JDX>TNPY}Y{Uj?l84 zfKTF(s3RkV2h`R}RMi%3I?m^D#l6}$xJM)W)=|UH1m)B`j@k4t>{k0i)2#e82DK%G zEpz8g6r4*Q3a~0Vo>Yw2sePaLFT#ESj##v77~y0==UqR=ESLk9WAE5;#eCKFapI{o zKOE?{bIL`uw`*?T^ibSq_0Q713a9X0(3>%{!aDdge!# zQSm_&VLpa5e-P!5)Yn`zvzIbB=c~sa7bOH9CHqajX#VS`yb(sb zSIkTU?ss*n{ZGOkF!3eeyw`Oo6~gTsn6}aA02r@ETj-gvOQ7w|INSlxnUU{WtujxO z8EYHq7&{-bn*|DQb%|td>l{IUQ<}Qb{?5EDVJMPFrMz`HUp@XG$YQjDb#6kd;Ae{F zxl(>O+a0mZTEP_hGkT1V*=Y>v6l)YAV~qd`s4x_Ks!@2vXK?1JjK~KBf_o84w-K`A zcn8+B*o<7A_Fap%AH{*|PZxxAU_M>yjc3Wob;r(|_mk8(q2mqg&@JnFnsB~sa!;*i z*65Hi{*>W#!A?#_dVqMO@uBZ#fL~-1Pa>YT;NzZ^K({HM$BsP>IL@WAB~Q+w<3+5G z?7kPn0GxA5FBh*I^{Nj%fsMeDdm2WZ^~fCh^`+uN@<`DoU!pc)U|kY`$xIExJaR1tmgn!N(pk=ra4M(lH}D*dv6LCmPJJ!OB?}Cj(DASEQ&{B z4Sdn|t@ev);ypO%x^%a&+j+|KOoSpI8@Ce-Jd_%hV8gubwpTw)>dJ{B4A8x#Xr){{T~4 zpACJd_fx?qBdM>Ef7*iFMmG2_50U=vabB=goRQhCFrSC}&5o z*DeWW1Iv*^qnz?FgH76WJ(8pAQl}ZmT3x;HIiN1}J6$(K7y8ZIHu1v{Yl#@`KylAr zl~drq9C&lZ%KredZ(2u1-?8H;O6MDfdXJSq!4<`tCRHS5KsCT0L5x%JoMMy)&u_|^ z6h^>$Q+5tXskv@Ck52U-3I6~T1q{Fhkw^gkUJX3wsr_j%2**=L0Zd^X!0Xz(2e73$ z$4Xz|9<;_sh9GCKrtIUAGHO%QfPXrSl0EUw7E414H%y98EstN)o^$I+M>q!rbFf_-^ro=mxTb~5BP+n~Oe2m5A3AvlIiw(tl*zI(i;RCtX-)80k*J z$XYT_1CvZDI0GZ=Q)7(xrW1ipSuTjk=yAm{y60_7z~__2HNo_znFJ?}gC?3w4tjlR zLJw}{n!`L(v9X)5cXQ2fa7H-!kxIbh^`@0SEKnPmgee@V*Li8^KRRhspOrL%PI;jr zCS)^q6qRNmbKa0oah^*9Q|?w6Yk`b(#Y5)06Mz^FGq7~7gzwQ#HSA-o^BlM&^yZXX zoB(81C)Cj*YjT^i0Y0fwyGF$G5hsot0~9Qe=uZ@T?1in!P*y~Il0F=qew6s9F=ZJL zkNbr>J>iH(R34$~Wf4fkG|JiO$9ismVpzU`qq*CkfmwYILr;!FBknPbdJ3Fd7hQp3 z@5nuAB(^A@@`|5hnqEX6DN!VM5T+UI)v@B~D0=#z&0OSN5 zRGT+MRwR%veh}S%Dovu2WQFwhCn99eL6B;T$66MLu6TOx*5N$YSlOayQIv2vAoi;? zjS8LaSI}quX^n4e#{zur7&#fF>8ckg-5)jhYwYXB`lhN=LbEeGaslRxgitfCp@tuqv8eKXaw^sEi0p>g1?P?+q?gCTUd$@tXt9@wpH-)T#! zN#-tX!#E`!x?m71ha;5bUXN1~N(#F+QT>#73Q`K`^D3TzTs8$te#v|YGyebsa-a|Y z0NH8-!`?5ql^4vokLuNPs(80ex3ZIU+RDXFRv=x69)sp<294C2jPa-0--hh`6{u=j zPMRw$7s(d9ry;mX`98GuA8Y%00l%j zk%h20b!JCbh#9*C^-BIbRI)%_GMe!&uqgCFHWlu$5AC zfTTkhu`fP2#T#^y~@;uC9Sac+@W zg=pl!_*HYefH=l`esrUUAKj<-HLVy~2|W#T$tHGCBUgrDu`s ziM~CPc9H6L{s^`I0Qx(q_)gtZ&5cpB*w3|CkJ9GQVg!0vq7p{-c8}# zJEyl;WJ|9sxFk4r>KGHpBzCW+JTobiK(T#7Lf20cyo&z-^w^F-{{S`ekB9Fr<+1&c zZf<69{$y6D10%>!Eadk2*VMX9zGjLjbLz4+50A3; zLu}w|nHL_!=Cgljz9UZv_*(N>ir`!{KnUZ(8=Z~-`B8Ii4fyyTg1o=|qZ}Ur zag)ynt#!+endYutG+6zVeWq%@DAx{^tXo;c^P@=#gb|ISBpjZ2^siKGgSD7o_X9QZ zr~5uk(tV^^?rao-UBCV&zMET#0Ur{wLs68kY zxi}|o?~%qS=_c`wpr1_EjTox*SUuF6a#k`p=}06+UCxIDXBA%RW5IYGLHr~N;6`(q zSB~_OL*zNs7*Bl_66Ae8qE1l^9SCdkUAyR9N|qv=J~F>N`@bgp4$))3K_glMR-O zzfn>%07EBVmMJtkErQC~VI*z`ag6@}TIN^lhCCnPs+OKWcwv+4UH7R(<XU zh%&Ya-Ph&bzIU^7{{R^|C$BZ;YqGl9kFx&&#B^|;eE9(&vtBN|d|)p-FNx%VXaZqTuBGUrL39pzydJ>(-%>?p20V9y_gfDrdpCv>KNM z2q2HCryH+;^d5$*KJzwtw^kmwq9Su3$KBVCyqX$9S7ASSBydko1vp%unf4SQBYs-h z!S-y@{^J=bGH0kYE{3Bd5cgyQl5t-p-uRXcSM5($zFC8$*Dk8eFgAmQ$IuG;JM9Ac z9XG*x#q4hTqO*~d1I~7l{p;f!c@oM`F+A3GZelq@gWom9sK&C~e+Q?alg8A~qBPAn z!`gy>`jw5W%17fW6#je~*mx&K@Rg0-y4l)7(!|X0{6)xMGI`HI$6D~u_is_w>}>^% z`h2A#1c5LzbB-9}oL8v*i+Fog(=R8IVy$llx0AiN4J$V03!b0=qdv9c=`^d#ztsMy z_O<$_;*;55Oq2bqJW}>v0gp+FKqSZS8Ddf1un( z0s8*{O3nWOv`(va;y)jL%d}RK9W6Y9LHJCEmOoAh(x&?*@vXPn&9&rOo{KD#T`(qe zkOCAA7au-;weMq5_w4!EsqEn&Uw!m|TFz;H_0Ld6DqMrvc&ymD?jM?PxgozF&zesOese}{1~Y-lr1QY) z2>DicT`PsL=i;ZrHJs7;sf=XjJm!z?^KO{>c zIP3GK071{K2Df>@-f2zIBk>Ab8Y^-OeuE5gieUhpa!o*Pxc(YLbI;+$Drh)l#1G*= zI!00Y)Mjzh7|n5=54AdBNKly^pPe8bxy>P#Jo0!R)!u5B#_C*(klnP_QMizCnvlBZ z0E%e}PIm$+*li*!#~o<^`Tc5AI6UKuZap)aEL#Yf2P>TOP1(=)^{I;RGJcq*;P%JX zor%DMXTE8!0N`_qpBdtrj(P3tM&WEBE8KBOw4THBsY;v>I0l+k^T$eipP_9rHu0g( z^T(x1X0}87q;_&~%JGT<-r`*RDl^ljXsBNDM=cz9V0dL4O5}CTX#3>aJ#bDVg5^t< zF#tX;gZoo{ zW{zAdDITgpraWvoZhMp7xwSij>W<*-;3-~}Jd(*K(x~IrkYo{BZj$WHMlYdYh~T<0 zRmXGIp9|cCDj^cDZQRjtC5uA9%YGaVHp7vhPPGJ+MG*@n&BAUU#|AO_)_eCpjW#Hv z1~bIsM_~`P4M>t+AC0DtQQJJwrQO)NNhE+C>C%*}r=N@vdI-)B&b05c0&X5+s{a6X zh=ay<=7xXA=6L}EjC?s1M0W-#$CwH)wtvMBb2>^1%!CowZ78-W#aCe0UPa7iD~Og@ z&sAfQ`qeI_;Y~W@5?D&sr1esFE`P0F@3+GZ(&HYT>9QAgs4J-ZVH@wX9lbF z-7eE!v^H9mx?M)xejE|*4^V3v;8Ni}4vcz-9?|8xw~Arb)gXngqKY;wBe|b>ImhAS z73V%F7Y(V%(!=Gc;ZIzF-!=4Bm-chv1eHa_i%1XfwC{j_JpQ$)f3s}|P|_sRTR=~` zNPZTGd}@D~9=Wb`o+oE)X9=GgD@zosBC`UgAcM%OPue#ZN*YPqe^6NGn))JN_G+?@ z+Tv*Sokr?G%rPynL+lun&3Tr+;HU$=ppETrE%JmgX;ht?XPP6%n zq)y<^&56*cVluN#67EJqg`nc zSio)BVG{lod;?WC#|WHhUuB+^XC0M{R;hp^UVr!JQqF+jcgLs7m@c3Mx0r-{>KDJY z1&d684nGxT@-^V=9Uji(RY{%@(-s(z^;-H5!WzAfm!-#TYQbZIJPvx}B%jQh`Pge# zHu8XOqDCht;v7}PUMY$wK^O5Vk;Ytftg=EllTWqztZpZ zEqc%PjMCh+O4740;rv7a@BJ%W7@BwN%Qi^YJs4lH{VMBL*W$B`OZRngHPJ!F(0UW^ z(-riE_4U4=X(i3mi+CYT%@+J=Z=~tg){zsEtCCyXo~FFV{h@qKY`P=p z5nLg=l0<1EL&#oFKHWb$>DuA_S;ahyD@i_#kJ<;?o~@{Bj=mnfn#)g%;X=GLr}>Ze z6_C_*eREv1f7&{=&B}%hBY6p2`s1Z%@_N>T!1sD3roRo(h@rc<)1vs~g5MjZBchT> zz$dAvB+}rlaEo-qzR9m9(|*ykX%Ox6E>;%LLa*?j>t9@KIK~(9;=XI}UX^d+pS8^r zD*W&~9I4g3AzKcA!8y6I|0L zYdPFkWkyO~iwUrxy1bE~?;yYf*FKf!9xD4o@+6kmMp)-?O8w!vO!|S|yzA{N?H21- zW`@@0TU&L=NYSv;5Bu@`D+4cxwF04HaTlooWY#U@n)sW-5KiQeOw@HfUs3Sn{{Xc0 zC%HG5ilcG>v8pL2YK{P`#ggpfzj}`E#9|)`=`k`HZU>rJlh-_F=gvNrS!J$yk`ecQ zfAX#@xH3sLeUIpx-8PpbRNWeg@JC9D?&rxN0SH(ftbJ;}9cny$P|5Vcr(N9J-YTO- zHUZ<|{{R)k91>FbE)TiXey@Uf8pAca`x>7L-^mjR0)}utAXkHt){58f9`aDqa7S!a z9+#-;_Hd*!N@62|T?qcwCDy5BJe#7O2p#kOYboQE@Q+7Ds>0zHIj1W7L0W3&?K#Ia z>u~+2LE*cI^qpQOiqbff%ehmy42ntqRbi|vcS(oV4c*o!BjWgutV;{vu;ddghDlE#Z9 zQZD3lY^wv`BZ~P`?88a$#-p#r2Z-$2SY};_R%S(4?YkJ`wR?w$w6yTvrn()AyqaCi zO(m##xA`uo;*1`+AmnGz*R2ek)Q`PmMgx5Sg(FnAy zM*h|Au7Ljlg;fq&bCwv-Om#S~7XJWh{{Rn1E~}u~Xr3Io{h_eN^22I;sSuxqatAG( zpI~UO2``PbT~K(ZPha=TW&OR0=^O zp&p|(<;!%lCY{mjV^PP7tFz)S7=4j_pm;8C4!LPAj;FO_du_q3@&}?uXac- zEws4d^JX$f2vY4IQWvit^{D$o)KB}@a|_Juus+os5WI6)ZAVl#_VUVDG-{=eK?fMF z*hR(-zW&cYH22L$JugShc0M$=v+&NNqF?F%0D07ZXdA0*^~Udui4l)d4gntZk-xob z*^Ji(nUB3k;wZlBuHHt9!93O|5Au_dLdMP9b51zozDwDp=O*^QMwh_X-*mW-djg3z zIqVMxzLonuL2sr=Jmt)?ZjL4EjB?*2#eA7=vTq9;v}f4kn)T1I&k*V}_`5}dNM@D? z%u)>J;o5S2aqnJ+pEP3$LSFhjFVr-7Cz=_tuDE~D`UzcdIp@)--hT140iT@`e&z`# z-1FB2ii`dU`106$=ls-evwgHg%>IYkxHN!p`8npE&{~oi9FJgWq6l|F}Rg|LFR}1)XSLI0qP2h6R_HY7Ix}Mr8BVL6O+@5iYeHx zLD)xQL)={Ld=?q)m8rXQTZJpI@o>X~oc7|8ZwMIc>s4ZAbCe{XPQsDiTyvVLMtq{* z?_Q(xrwgFmHTx{ zr~UPgIPX*f?nTc+ed~qmG3OZdrQ#ouz8Adnlk=zj@NK;#t#aJR2jZ!CQyR$2^D}3hXV#h~CAkBR z)k-fU&(EbiT}(5P#V3esBQ5;p&*w-cj~@^j?^R2B-N!%DxL)zlew98U`Ai+Ow@%w) zfwBiUY+{YyaUHOB+#@HI+)fXr1s+{kwZfr2K^Z?Pa1x(`%#nrxJ6DR?t7S&g2zect zWXK8kqT!j;d2%el@$lsB&(5lz+fY|lDK-JldRJVnZXQU1b&dV9K_8t~M-+^pq>NWT%|)n}U{@kQIKy*_Qrc8py^=)?^GKo_ zxV|xv3y;d5cWVfCsR8)nP=AyhgGEDhBtpqzjgi=Os+gg;l0oNNf-}hcG*bTn!-M3ch;yI$xft}t zOq6s6Z1hGEwcuG()V@w&UP!+hvPp7)g(JfHsniAb+} z(qPW#9l^~K!)viELW{aEekkz8)v~-gg_x2fz+r|%^%a2BJSilpI;`q}qzw`g@Sp?w z*T1RMRS8ySP;g01imTLgg`JDtTF1EaxGvx6P_W59Bxv;!?onsYui)K4bhw25Pxz(} z2kJ_|n}`9=OrP;y?!F$|Gz}UvyhPGB{msClvh+VL8oE46Zx3qHUqo(1 zcWbu;VF(AzLDND$RCD0C1a#S9Uj!ky%k6br~d$Z)#^eaLXor!A1B~` zGhGYmUQrT&U$Fp>&Y+d_-U5~D+cl&ooT9WKVZFLNYqi{I+R}yl)_H|9C@T2Et)Nf&!#2hgUN5xZ( zTTofq9o2Sr3%GuiABiJ2+Wq`&j zv6aA{XaMQPLC@BXdy8jMvTY#tBRp0iuDrne*<7|hB02v6=B4}EBx9zj=%~C;qB7&@;_~EvYXv<%`%0OF5NF%6PiDbtP zoWBR{{TidYg^d(meJS`Kx@gr+7nc3EgsiP2=UEvFPKAc zb}o7R{{W?ZGh<_EHRMqlm?=0rj|AtZ%Dzkg0BS8o^*^)=shb-io$ccTpi~L~AFUdF zel1(9ZqW1onVU(@M0p!AW-P>#d(u}|S82>zT|+$3S*oia-QaP@Q&zqg)3=!nh~YzE zoxYV!xA%}k0>wOvsyG|C>U&o6!xrm(;n|$Z1nj_=nBbK?*X#Xjk5M;{9Q1nnY;nz& z;oUC(0HJ^3>t6(s_IY~2 zuQZ)LL$?hWa;FEsUMmUqoAyhh+gVR{pqV04rQ!IuD-TbddF7^?uTQFZ&|E;*2>4}@ zn0|HYejn8JI~^YG)5L4#M#Ysn$u_XE_A? zM;$BF@;S8s00)Pg8^flQUmK zwfjHSY_+?4>AYEGt0lhp!bVsWVesPz{{WsVMfNRYapAwPd3;HsTiT|gRpydempkyl z0mq{B_st(|_Fdx@jF`2H7giPevf&S6$pm6rq zw|jbRxEqh>ipTf=0IA291pffwxB55e@>Lwa=l=k5_w27gGwaga>QNFc6M88;J7>N`VhbI=*8X)iKAODhi&z52vIFdIEcuQ>kzd^HGPYELlA?*UgF5_qX%)%-zpR6%X2xNc6!+aISD zlKomK++f*K{SPHnrjjUpbrF9R>TDGM0Q-hH?Vk1LKWI1dS=gnpa2|8cJuA^QPZz+Mu`-Vn0CmwX$oq+{_a^!%%~84~!jk0w3eCD;dmJTrCT?;Kcodq{}MHRQtt^hN5- zeSpdOSK6L3&^$Nbj}7VC4~DesOG!|Mo=DRYNJ8UtH&Ra~sXy6+?DE6HUJaMTuv$j? zjo4uo#Lca~BUo%~|nL9COC$T30e7L0tyCR7h7R*i9GU^w6$K1%r5uHCsHTgFSE%IBk}1jiE@Exx zX#*p;YVR#WaVrM&6-+LjMUz zD9m`yO*bZ$i9t)IFPWAE$-CB??8i6*9>$6*3|vVXsOg=;xuc1c6xqn?05uCL^jp)u zff<=j4l$0sX~+wlE2uRige2>u7KYHMg!Rt}nMLb|_3_!<1 zMKzg#1(m=*_k+zn%d#9K$^P`*1wDP~e)9hSmwE_o3{Keq&sgNy7XuJlun-wvGwRQA5pS`rpG zW|tidcqWFp)uNG$wwDe`Bz1*P}y9O=xTQRc2k}4!3_F@7Xe~OVuv_8 zl;a;dX4rhcFkQw5IZ|+c)|n~`vR+JEGhhVjGf_{aBy(f$F}f(=liIb4k46u7bPxA= z?j zGX*K;!mEtnwkaT*{?cL0E;7C{*0eKj3zg&H&9m-tHp^`=ah)kX6XtL^Z}BXP8S6QO3m_ z)_1pri~dgAA(5|xpfO6Z^gBj>N+K;j%2dnhYtAwmFw0f(TwO@S!X=OaQx>}_e9LJF zBbcAx#l4Ra-|AcckDan~<`MGq~uZ zW{YLaXh0mXJgsHArOC5~==@(Ga9s!CXJzM*Wg?1_bwUy5j!oD(-;f98Rd+TB2ks;; zPhc`d3~eVJVwXPXYifh$&R0B;;iE?O>EyE?yJPVKy+X zrBRkvQQL}U*NwL(?W5FFQD0=duKxguc`Iq)VUjVQ<$sb)vTSW$xbTQ2>$@_+<{u=&g_KO_obsW;As@w>E#ZTg#+E z5nd_0z(6=4oO*I7JFO~sm1NooV}LM0A3AF+AF?HbBJ>C5A;2J?nWnn{2gB3Q(c?zD zD#vVj9k(3k6t>nZCTN)hxXw8se!i66NUoTc8Mn$aekvwiC=I#UAY+l&xA&>O$@FyA zHK{G6ziV4?737XQlP^3j-_MiMt##O>xzpa%Me!BJ0uJ2PL&Ey*qv362-f7dkEyme0$N%DuBixh-$KBQ1;tQQX%wCFz|rPqJNe!dh0ZYcw~pD>Hrxm3GL! zpAhR_H?HZrPLrx!>6ccj^IMUYB%Q#Ff3QmNglkqsn6b`AN==!NL-q^z{<7sld zk?2o)jc%JJXeEYjEgSxys>P?s-e_)2`R~i{%&HtlBL|@jMNA{m7iz3Ao&`LNF)8jj=~L z{t@Eutl7nI*4FmQ?xZmCkR9Dd2&-#&d{2Lar|1{t705C|V;`GfSGT2&mdxARTg4zB z3y6Tn`cw_7{mqqc6Usn#$lv`kdN=+jrh8Q{(G!2_Vel)!$ z=Sy29Kf@%YnSOwOdeB*Yn9a-IYtpzUm5LCYe91NFb7VTohlAH054}1Wk>U&(5Nop^ z==xZ98#r@*zpTmpT95QbcS`V%k)*krF)Y%c#`#-u{{RBNJ3iYbYn^)LY>mHsn2(WT zkLh2ey1mL=!lpq4uF5lIx6e+y4ME)!n7Tj}+R1qsr9kGUZp2R$)(C zLsIz@c|LcR-e2=$ijKV$aD`eTTu%gVAw=lykHRzlwdmII{npL_3#izEPVR(z)^Ea^ zVAv#?GG<2L_Z4BK&dX&iZUlld$^#tabBxy(v3ybK{+loL9hPSB-Cx6J1F!CwJFt|n zKEl3^(EOQx&Y`wt1zlud6lAYV8u>!PFE;R72S_GA6fVt;-r4o9So=QKn#Lf$E7mU~ zw1{FWXj38bI+h1G_7&u7Fw_+vRr-FWGn0(FFE2E$M%|;-A4T{iP{QgU`xs-cS1L^( zJ)ybNtuE%+x@=I*b0l()ia?5fGwry6%?I`|;|tq8Zu>!kTZ@exGc~)&q!e77aC%mg zRPm07d*kgR!%)wr$u-o$F66pla-w64DU!58q?Vi9UdJ}?jNr1>6(jtoWzPBB#ClxY^S%1+qXw#o?~ z3C>8*LtDSG%?C->wTZ2@NoOw_??~g1sP$*g6nyIhR2R)^JOX5WU|3sPq|@B(UGB#S zpyZqmzgo%kRr6=m3v*-P{{RoPAA5;x<6W@@JSgQh}A**Cc$V>lhE z$6eJNn5+fRo-0+@K~O^;=O3k3yqZI=?;%Lse<&mL2Dj72$K=t&shXd~G&VtM;GE``ev8P zfbtcw?syd~l%hb)$__wG^v*>nn63)RoO9NvSRr%!*%U9k8k##OiT%^7eL=-N{-_jJ zrbh+a5Co1`b_CIOzFdb53_%Ydhol;C$0(mlh3qa9{!9mJ9(dohspX?M-_C;rJnx)lx);T%i(VbZ~XI8tamEI zbfMSKfNLTPt8T+?>}ZtKE|h|D*zeCZP7?IVjN$(1(WKm{2%ad4d#ymzX?ggOl;`+c zHB%O?Fu*Fuo|!-1rv0f206Y$?I-P=}=DS7IA5snrr#U-W)MGyqWK%?T+sR9aHunrM zLyL(fAMpDC?h19NjQ1R?Tf*P{xS=wfX?Ok$7KYrARiHT^%}w$X`6B-S{(`F#>TfeX zQYxMZ1XIaI=| z+(jIw^9{5H{UuN!^; z0G#qM+uNFg>c!US{_Qw;^YD`(9Da2c-xeoJoxkL^)oz*#g?S-dJ{W*`1aVdEe+QZz z`Hh3nG2*4Swzzo*-r6|^F_S9fdK~ql7e~K!VF-zo^~J|pl_+ zAOcGq;E!C6O;2xdBaEAicy1jI+!+AC_9Nb!EN8b#7GWB?jEr1lpHYgfxwjHF;S`PS zkSI+)6AzN_u;XzOZxdRxEWZ#j$}+#D7pKc@EL&z5YC07lV0+a>HaT+{wr%Ga9%ge# zM-9v{ZEG?B;4>z0D4dtrK|g&3-X)xG8pC(E5tEf%sr0Gst!$bW^FB8n2vLvg{i{8B zCHqPXLYxdKNPzy8HkTk1mAi$>Z^G-4R-B{py9i|YQ$bfxr>m5WL1FlgF@r)0LAWak zRvq&o0MqX-G^plyt}X8OXX4yNR$WbEW&PAL1nd}K)j?SqXHSNUq`R8erMm8do}>zr%4f2Z&w@CnLNS*>!~G3R@hAO94NFgs zjlx{`eNn%8ZgKoOMoo3u(R{e%Qvwf~;QdIfaMrF#Bt-z&KqtR$nHV^PbpHS}l3q^G z1f7wf2OE5`kJ7VRc_(&g^-*f5+1X2_Z(l0%2-toiT|hKt#q4hbn_G=JT@U?0GT-D^ zn#pXkW=k^8JF9gcFIr;SUAe-*+Uz>f_fXi`Bx#+@foMp4 zTdQMfNTm7ptnhowHVEVuJnV2vn$hXnrKGm`hfaW9AkM;ZyWD?@C5|y)#WEw3Q-8^# zIXp?IPIkADnEn=Asr z?f8hn`qjmy(xPOycPj$Bww4)68Dp0`?v3&()^|5hNIa0PNANHWOt-g&LS*y&q6Yvr zXxPoxH^b$~SAgD5b5`Z($}r~9EM6kKh_Z`oWdvZTLMU0aTiM)}mmkaUgNla!d&y)1 z>L`gF@q#KAiAv@_FFECRVAD~8=7Lkn)r3!Xs4?F1859f#9Vn}9TIpgC%!Xv-VAXjDg&6ASMWOp1lBXhS`+D)u})*# z4C5!9?QY{gtz65jUJxU9D}jt)gHUQ$Q|fk)ZE$xX!3BvsPi$8-u}Ph{^Tl?#H2(l+ z`bElV_FA2es|0&r6C`Ds$o~Mluodo_2Br)?V-GGUz}R{-pO?LSv*FJYUuaI+W$nen z+2pb+bG5&i4B-6Ddj9}`d_*;g6KhCr5qCzXq5lB5`d1UQ&qIkW4^^7#dv{4@lc*$* zP)gn7T`#oPI&alKDD2=@!pa(OP>Y!&0N{D zk!yJ_L&S5!u^fWE1AB8?Igp{r>T!6k8+}-4`mjwqQgQo{D}LtV-5GTYDRF00{-hT9zRHs`fJ%6(VU zy-z3F7M*9RY4@<+MJ|=AjfoZRs38g=EKpK*u#w3364dUfX& zTDk_lY|WsGc{5mOdq(#ncF-B#&@;AL6#L!{`v?nC$w9LU3bP2v&X(G z*gnsED`RG8_FeXof22URr3C7|5S~ZMy-!m6Z$#2IHHeO2 znBKzye=fE2+Pr#)Cll=Sn$0|Lryuzt`&!hjyfvd=-EDGN{T%~c|T`B-etq|SfK~-ues^^*U%sB z4dKgk;af{94IM?bg}N+qB49xZ?gewus}QzWVsgRq9&HjH!p zM!PfOkB*?bI5B3E$ei8Ly89n%?+Sgg4I=#ncP(de0wHXxvqzM{91z$TBd%-c-y7UP zHkaW@fD5$?k^G<_&3u`vU)#&$e+<2?mEM~rtH);6_X^6<;DS1w?f9@W&H%4>`&QH@ zf*m_ewq{vGQXmV|20KnY_^xS2PipqfQ%S$0&h_nY_TITXkvaRFvpPagLd4~d=mkZ2 zs2hv8T@z$h>JlN0a1T@NPc`(P+3(p7jbY&%31+g1HCZBAB>Tb#RVSUe_32V-{sIDN zT3-!XUF2b9g%{!-2OJSx+4JVW_=9Wkb?NY6&Z*5NeBI)`W%Zlnx@6kP3Pe5dI@KdH z1Gka~9c$jMe$V_LKB*)Zc9-@usL6$7*@Aro1I0H$`y}x7?Xb7JTga|lmJ&xWIOjW0 z1a!_1twt}@;WnU?Pw3Yt>63(9?KF=GcE}w*5uAI_@I+0`*E!1u$I`c6De$(7XRqDb zX?J%`YYc@Eq`@pl2apGR)ffA{GRo3g+(g8;D(3|8iuI$uu8$g0$GWVgxY=;5tPV)n z*&dxg%|RYQgp(Nq;eO3p8N4s68A*6Nv6q&pljfqB*Vg2Z+n$hXoUYA&aES&xd3RJ~V%N~6?Rm^g{=ofh_&}42O z-lMv+4i4yJVUDVsPw7;%{gCwBd`gKTkQ@mQK8;K<$&Oh4MILP9#(c>~z5@zx+~g|4 zJBZsIh}->ZMU@!6JidzN5(9$2l}iNBDq`Xp3I1g`r(9cHMt&s8W5EOve=3gVDPd&< z^&O6JR-~k7<8XIDG0$KQ=bW?%9uq(aWP3!HWWo%c(C2`KB1 znNw2ZAF-^H^n+!+xP|g0KpT>(4hQE>gH)IfUNSSB6%|_W%m@UKN2tXxq>4c+yWXp0 zC|+ENmlNuubqO-`?t}_tcaW#ynY#Y~6kydkb{j)32fc8ZV1T0^EYtBN(0SzFCV?-Z z3x=3BPyN7;)}8xGILRgE+uLJ<{Y7U?sz*E#-kv13F^$3ZdgNl3%Jv>q{Uby*Sh3C2 z%Ynw|!O!JRi&cbmx`_L-ky)ZyjzQx-y(@|5mHOtM&&ao{=+%DGjDkx*{Bwuv`O}u- z-eve<-ILG&b6JR(46@v9^~gWkr;Y;u0D|rYZkLIpv7%Kz zj4@A0?au*YIrKG5EG}9<`N)6n4oRgJcdEGaQ?GNduWNy z<_G6l$Cm2d{wV`(AI(eqLhe=pBPTt8HEAcw4Ng2+d~Jy4IZFKnCzo(P>O|wvim4Y@ zaO2Fkkx#PGFzPZo?lI+kPZcgPDl*Er9dRATP9RVI+Cg(Fj5WN3j{8MOw{o$<+dB@q z&lJ9V=byRB`BCxv4f%eE7f5^qy+QTGJn1emwp9#zk}BqFi-?YG;#E(23VC%2IenQu zvtDx4WS6tq{k}N#iutUev|yK#!mN5==RcJj2AN>s7L`57Jt}yuMA71PLVkS(1AU@0 zvpu!PmZW|S#|EF8Qgr1+JQ0T~DTUnWc6O&G;uGC|JcC1BT+42%Ah#uR$&aZY+K05U zSrDYRIGDBca1Zr)gJAXUfY{!ae@shpaE;x+vU_DwwHn%+!q&RQUU zTE4P-c&$s^h-7^9Kr%Z0{ehtKZW{|7!6fx9fGEpWxwMeJ*vQ5Rc>$;hxC5QUdiAC&oN##^ zYo%aM*~as1eLF0!Zlb)18@TO*AoyPmlkLR~a}JpC;w(nl>H+8Tp-4GAcBDD!uvINI zSF<^4r29yaTH0*pal1eLAN8WFn${R*iLl~T!T36N6b?_I{OJP_PfDkPFNVpErcvo4 zLu+iuBH#h&BOnjfx$Nz*N8ZmPk|RInn5=mKj(zEVB07vy@UO9c;r%1N>u(%?1=N`b zISKx>R1t}sE8dkD>T)Pdf^oX7G&?x1-wZdg;4bWQS>=Rb9nG6y$t;smNe_J@?XBId zWm}g1T=D&S)fxsyF|uutHaW;3{c6iuxxBEsp50}R*%h{8G6Nnxs)*bxws)3u)STwA z#-!IK*{2lvMz2rT?juHu<>O#K3+@DuW9vpuefOJSCi}e5oQ@bA{V~O2l*rCiLzC<% zi&l8$EgP8F@OLj5_o$W_-LA@pX82{}$8Vqbcx}SxKN4n@r_>Sy92Zf*r?hL1CAlhTFz+aaZI^wr26UbrO;- zMq6+BMTqVTWL1nh>J`ITf^o>)FlZf5OdoXidfJ4qajfuCP$sCfWy-AMlcBU&g& zBC{ts;^5Ou;wS+iSVq|$O)?)8MwtgskKY*Q^sL-cGdL{!$MTXz7_DkoK3^by9mLXj zptzupX})YX#8(5!;T<^jITvN`i9C0D){xjq58sv-LS=Kn2?@ykLJY`qURXEV=&xhLkux5&jeY4Qm+UzD%c+J#o=awzjB>g-yoMg);m^ zdk<9^|G`<2E)=Lkrp7B{%~tnNMk0CsDoM;hqlbIRW~O%>6P z1urE+I(#|j^QqTTz4(k*@)Ca#D~$gDnhWk%I3z z(SkBYPCNIgez%PWsTM z_*=l2vv`j7;|n#(Mg^Rog;7Wt(_GW z+m_Br3&f@Kv>tJvo@>4_wy&x=H&lNiG2LH_^|-jXX(n7sqs-pf2OyK{^RKmj&$M;% zKiV96-O>rIZ1m_ZQBNw;lp9Cqlk~5NygwznMKCFwhf;x?qNy0;-oDlQ4)Hy%hxP|A zjCBc6NS4K4JP+KUL|<}G>T4{oZNH;TeDU^s--fjjtLQcwm`$I0w@FI+5;8~URzQ$z z<&XAm`)lz9?x|_ueOAQkb4(R%rjKlXQVvLS+yw-V{9?YPBvA=kCnR>T9eYL7wVP&& z^4%GT!panHPjGuy8^*WVKY?@?vsvdi*HB7ek&fmh3=H~mMS3K&#}by2f~W-Kn)$!& ze_XWj7mA(ZZT9xb)6{3yYJlqX1>YnLN->ecjC!Z+ilQ z4YUm1&N!&$vbTOl^&`G%V75Si7IEq;(|BzjLez2*2C*bV7WV3Z5?Es(iY)68UcvtW z6{p%1UN@3=5AQ+*!W0X^JmRAkkdCU^Ijo+YGS;erq=FN<;E;in@PpI!qS2M%^vP z1NceJ7~4*G1ZIlby7VW6kJ-h&^*Z@9)+lxbl4>2ejYQ$4Ek0w5?p-EOU9pQxaM(uFsU`$w*f#v zRA(gtsE(s|C?m{+oN`lX{**gu)1W0B6a8tDS>6B$ML%3rc%vSXx9%q|VT~o)46Kky zM?5nB0D6W^MdflN&IbT6&L}AsRL7kgFFi=&o4hU#?oYi6C~qXXED0?cnLuSHoOY*2 ze>!7q(xCKKAXRq#--){YE4L0nCz>{kf6z-#%_jC{W1gq4HPcE80r22;!qBEskO;`7 z^8gse27PJLCv}n^h>&u9vrLjD$s0&L`K}I2ag&;BI^=vnpOrhViQ10xS7|%?agMab zh!B1u*ntQoLK$6l1}%Zy{&BCB&k*qIx`>UyutH(KK)=t&1Y#Ac)}0RRw2Jt-AQ zA-4cI$?J++zQ(cr5SfWQqK^GBO!Elj8Z8lemfSr;C z%)cXwoplS9Tp65?bDCt3s5l^kJ7${Dukie^O*@P1N;xCbEF!#uXfZS5Ph4mE*IN)I z1{dsX>l zk#axMvdMQmd%Kh6x6SxTBXTaw)TM*6jsBWAWl!xs_)^ywqg~gHoSt&oR6Ilx3kAR#~bk5 z)8XL!@M!e8x{Nf$$K*)6M%Ua_^gR7*p20ly{PR3w}ah_2jxt64vV96}afIE2Ef3IiNR00Yp{9QQf&pjz8gIR(Ht{$WIEvE3__ zxErHx;!c#_YUYTJ2Hh}#9Pp}5SZN}7ClU-OBaqAmLfTk#U75pw-O`8smoJuDFx;-} zZXAl|o}o=`I`QdVDJgvx8kMbu+A~QyqlV5)AvlQ5UZ zbx=rPf2Y!_;-2OrH%)byUeMR{42-$RgC&=%r?z%svh4N z+#^2;_Y@OI?gXA{@r-11T0yA)023UEzvNu#`ZkR`iVmePkbWRzUVetGSHn79(tl`O zs}tTe$Mvk?bWF%@cd)|@1O0l6GfUUnHdyX=Nfv(=a>BEpleEq8yi19q;vWuaYjCCS zr&vMA$*7#Urdn*9DoZ64<6?gYi)67GKuZ(3#dF5JrByJy1A0+!!z#+G06V_ z70u?zrODXz_?&n~9y_T}`FCi+hvMf3i-zjYI4oa12~$>DjM`-B<=(PxUOx#8zgnWW zu(aKqE718oBjhmp^flEPsjgKV5`?k78h`d!+ud7l!oJ*&cLRY(rNlu)d?aJ>E=V<= z{oYJ$o0xSak6!fTA9r#foxkwU9q5)c#~iJ8X#VuRQATgwp4`=K)soJC;O}IK^Y|T@ zgY~A_T}D++$`mR&Dsm{cHm=)(%D{|*r>$hJ4})h}7bRG*)YY)pET_2MdHHrUB*N+$ zO3foH6UlsZGVADzRa|GfhtAXuMeA7`@J!<#p=*2C)0Kg>G4XCjH_0 zo@&Ec@Gg~mrbPvk2yUT|WOANM9OvQ#tpTR%Gil6pjeZejc?jAZj3k4x2c=x*+8!;f zx@N0Kvlsf5cI__B>cBAd0FXaQ(0DdICsw(J!&6cwj1`HuVOzcqKDCmt)Kc1buAy~r zErTfsimJQU>}@Af_b8He13fDja_O6Y9?f5gBesuOf4bSrYY<|)A2{4P<2>X1)}u-B z4YrfvxWcZ_yb!Ld=)C^`{nh6BmyHuv5c#(;vcd>V9_Ot-JJy=fGWk#dUVCDqSldZ5 zp(Sr=rm6{y}89( z>sq|pj5hGdN0$&dDE*m4aJw2$LqS}vatZGSLqtZXvTf?zxJ}%WY%jo>%(qcunVowsWARnUcud^q) z^7HXxzE}SMW$k-M@VD9O+Rrju-CRs=E;kGkafKfs2j)#}JX`jfZxGvQQwY(<*O;~# zf8syAbIG>pBS%RqVP9-sK9b_%T?#Q}9=ac>uyBF0BTRfco&t)rPgXFRm>k7%%p{YW1H!5+0D-$YMBImJ+U zvPJ8)!dW4(?0G?^yYVO8!k4nz1(F6bmOXq=rl9mK# z9D`5D*P=Wz`!9@xZyZ+_J8~+CW|V;H%&VMoYFTEQH9l3!$@HeOuVnt;>6ZJ?Vkvyi z%hdhk;6%$1Z4~iwn%A4i_dXhh-cJtFXr9(~nBbLt5z|25nxHzHTOp7OM zj=x$gKXXgGVwEDdOYE+fPM0Igm}5NTRBd5#-IR=cs?UD{kg%g_ACZ+N*6c9`Ai$2s zq5HkSk0vJvu&ctv4)mMz&wNp|JglL0nmG3~atw?ENF;1z#`*2VU$YPMP54hxDB4$$ zr2ER}AP{?sa@+=BH;vV7QZjjsK6s`WU?cug{VH4vS&>q1%JaJ*_Xqn_g7KVWIODb` z*=%iO02u!OBif;DF4!N0k@ca#YcC@sxeNyK82aX(!8aTg108o%Qfa5EOnyd%n!@fe z@SWq>)a*3!g{v;&A9e?I8O1fSNeaP%=Bta&gAKa^q>JKS8MD^}j8Q?l{RA{;uYaEv z3p+>nvY`G{s#_TkyFIDI{^Dl=`*^O;W$Ii0CW;>tviX~>*rCBr*!k4ac&Z=021`!_6xIS89$=y#*`9Zr)^z5(CZ@=7AR| z$A;{eeo#f=rml`fH{dB2CviFqo0 z`OQ|W))K}P+g(39Nog^OOG4)6$Nl~Sa+{ne3 z5GmQ7+4TIXvtqttOQDcXS(M{G*sgeOWC7l0LIw(z$o(m?rGk7dGqZLhARqBsDvw5O zTjioL8=~!bMswA2DT@#i9kLUiq^%IJ%<_i?jAV|a6O2(yYZQ`$wpv>{^DdLNKQuf{PA@m}J0(|Wj@-vfw06&#M86zwf=Q$fm85r(pn|q07 zBqGd6IrJgDXj90SWW0Ff{(+YMc=s;$3VNyOM(G-aGD;%4iAxdizIy!X8^v3vQX!FV zNyDbk$KO83+JR`AKZ->lpQR?0*FA|!Sl@PygksQt(*TZ~ii1=8rRA_jxDm*wa4RP{ z_w}s0JeWTd4@`6U(_7AoOER*9>N?g-3r_6bT9nmo4Q(xCP*O{Y53$HUT5Og^DE9es z_28DIvc0>vP#hmGIa7|6JDF}WndMM4fd#g;a{Ch-LFh~ZmV zjK>54o-^EbqjdYv76_SQv$rWWK*-L2UMh;xIc#JXc6x)XgDUK!X~E){XS#}3k{kJs zbI_gN`|nvaoA{(?oR{)!y}Y^cPUGiW#UAAWfnWoAXD6*z&0!_gu`j2jQ;h!c6!~rb zC_ma4^2mZ+LT3uWlsV%gr+S*|?^9+3>Q32Q03^=`tu+?DkU3v=z=626m?V~|6syyG zWahXWuHP*cnB-wNqAm4H*rZc&BHbYBlOSP_uS&eMzlQNK8pm(OJhw#v{F;Wu-Yf5EOu&I@ih-~5B#TSs*x^;9RAz8WQ-irf{F*84Ep8=4=R~Ri$ceuYs{7q4 z9P;! zS-CgDXw%0P%&v;|({&TI#8QpJf_i+aTU5On4J0K{;H&1Yt+m)%Ci~6Aak%^-9ohV< zJN?bD<}$ee`yceFZai0~6;yjhl>x{OIR4d?qmjN5tYwBV?1uNlNgPI4 zuF*zHg^{t(&bgQ$&)AImjTseQR%p4sM< zo-T=ieE#3!Xg$@X*XS~()r(p!FZDYYxAmD@2r0}+*e|f0EZ+kSC7V&~Y zOYs1D3}@Wd+r_#c?JY*)8Fxo)!Z578wu}+^(s_1d+asaq;Pl>TH{Dl8BHzV+Aefc4 zfhIrpM9o$)N#o5+3mj5gsqR!JKR#B^Wtv@O9u!ocQ&yV9bzVw379kJt!_ z2jyBqSnq~&PB~iTP#uNC+l32lZtI@vITT=RGVXOoiLA5u+&Ex9oKU}UfDxTVfY0#2 z)c*ju+c;gfS1x_6P7mu^IY;^!#u++%l4@FA&8su4f=DrynFdskrg2rtyaS1l5!2(v zX)H8IZR0l*>en`CdXo`P%oA6OruYhIN8kKO43d%fk`RO(dXB$QSv^!?!{_=VZ`wD? zrT+jX1Zo#q!(2HT?#C50`jBK1hU#*8+&`sQ>-r{z0WGEYk{QtRwUp$2aniF=p++gW z9~@*i710S}$gLxqamkI-f8@50QngQpdsrs`_61E6*WMp&6Q|6X>xSuB_&_c)p}FK2 z#%p1q=(cmjrs~i(MoYzbt%2@3ik!P3t=V{7@^GvB6%PiVa8KQ&karuHaZt63f=ZS+ z?~2cVS{YW4OdSM+(AUJGKL=xL8~aAQfI_l*z_TVPbJmigEw~mWFr_ozEqY;NAg^; zU%$RW)QbrdahmTs2>QJH;j#&1q zV;G~&HRx+kjrSuyB)^Y>Uyj}CRn#3Yvc!I1)s@bzXCMnCQM!YZ$3IGf?&`^k5pCuu z9}(Je1#2Ah_Y)auvHt+-AzR4g0Hmn7?A&6Xy`1Ds3HCi`E0(bj@W(2S!yJCK0rJ>y zQrr9SirzV&Y~`MwD}>8+W&nbB6YJWQlRR=hRZQ=O3QVicc;L}C)5ZWYT-=U2fEuag zMr%&~%P7>YLpDY!cM;F0N)B7N64pjZ<&s`DW<8*K=7n8GOk|)wq*GZF6tGGqt2YCh z?6*Fi^j^SFxStKElL^hQp z9ORtTt8ZwGzHQtQ%222g#Dz%gNy)`Z)KcfN{{U>aaJW3)Jv~JEdGuy;}yMo=q=-xNMtfyI04GQh`e!?J&)3#aj#lw)+D9W=Hh7sx9;*m>DL`8 zJxrS5rKO5|qYwK8`GmaZ8OAmo6H!`d7m`T+U<#wAGtF(6Rf_7?C|`T5N8tnvf@xOf z+!CVNOrKNN^{l^lIPhxpP?3$f(q)Oql@!E+J|IC9$?Wd{XJ}>1bU4Y)Zhr9)_*T;( zj=P06c_A_LY!yNE>q%=R?E}z9?7>N8smKTJ5p&R!{?B41#7J%gf7Dy zDzhEG7f)&>EUmqvCl zx0xe&Aj>uhGGiYzTM6{|E@C23haHO=jjWQ?d9cHQdq7Lx}oFr|-Ted^9#E+80N zPb5F~gO&YiBd2UCWwnaohw&)GeREIDpT0x()x`lpq{3t>VwkQ54&VVkwIsG6EQ)Nr z#6gk!Ng7-iJQ7L^p<9Wo{&Jw23z(5mE9pT(#c2=w<=2dH6_`d2P!*FEo&8Zr{{Y&1)X}D$Zo*WwZRywdMY4XPqkTfjXISO1eSqg801y8F6`ZD~ z`ZkOnKIB-NOVGg{#lXiI0CQ3P!}Cu0H29bQ04=$y%k4@XN<@j_y@^Hw$%qbPv|N52w)kF4wvZf?k3(87i@pB<;E5+STR+K1CH3TNWAmp_ zG5{~qqBF@V?UC8edKS%HO{3aBn2^aR2tiQfd^tEd{{R(Q@kbkZe{~AujI$CLj-+<3 zsLn5=ig>3U!K4Vs_fYo6LGSBUnj%|EG;4jOO)?h2b!Hj*XB9oIz3sY2Rc-CmxE#cH zW|?qBx>Ew@H5myybylTsUkF zGu)b(Hx*r)&MHsnWv-uRsKVu-(&vmN{+zjg{PuXk@E?g_L3M2n zyrE7(5@7M{Yt#HQW3Io4t)RXEWm(fsTq$s z$r-$oRbi8r2S2TIyeDaj;^kQOBaf#weAX<|6AQrozzxskQOT#;1;p%kck<6Ut^CpS zay>lJLo|w+^FH;Q@Y}z>YB=uFG7e`rIUl_5`BkKrcCj(?jmv!TL0s9zAowCF@1DO( z+BqW3WeKiOY+fjtAxOotxlxVfi6`hOf8J}h8)Ha;>Nr2)#ssgz8;MJLi*rq(F zHj#~oITS3`HtfX0#v_ga86VP=UO2uL3nX&Mb1N$&p9M@}A?(XtCB&i3hA7Y;n2cal zmsVF1kp5Y9#y2N4ICfrCk?maxr_s$M*9?(w7>-p(u|fVSWWBhI0+N`s-Bb#JounIB zF(m&006)^2V3I?PuG#)zL7~&^5|ZhbBKrE_zy0*GKSS{x(U4v1k^cbxP0>=l3C|x| z&PxkI*kxrtohbV)b5gSfW4JD)bbf!WM6ufV(WEj{`L=4b&0^#zx1IwiBjO32-E&4I z)DoE#$RTclA0dZ4eQPfth=BoQg%_WQg$FfqH7jjSAsE;l7xAbAzH!rv}Tx9z6rye=6&!0pO72DvgvN>a%s^k(swRA0UBM8N+GY`TQF_VgrOz?$t zw~-I?XW<98TAWVz7L6>vR5P&nWL98Lxg3hOCT60(%D0Z@Gv>TAL=Ob)r$K8hxnnDY zf5(&C*B$ChnJ*)=Yk4L?6O+Q@k~z+3Sf!9{5sVTra{F^yrs&DVUm+3*&o33m-P}5_ z7^O@Sn1GdGjJ5~mQ%k1m(Oau|XAIvE5^g+>xTq4|>=H^cMxzCUSULLC?q6kWYtXld ziz6{Wj8JU_heO_?ipFP$cni0u4Ms<2cFQ6Iy`vjQATQ^dKE$fq`D9yf+sR{|b5ksv zR|Urw=gC8HZ8Ri;x$a7kaZr&XWUfa%@mmC2cSrN?EzbT3!2^Nwp{9a6Wq7SFEmt5G zRvw+fsal^@Q_}mhKCs*c;e?w{;l(1#8QrdJ$OD75Iv@UO>I*@0AD#P7-S#jfuTVa} zDw!j-P8#L*v0!-xxb($0nF(MjudN}DJ>nhEk~X@Wa(!yC^z|#gDGLq6H+{JIR)HbX zVU{F!60aME4>`{!ihB(+GCmOqI8nUhduO!^QM7MNrSxMYg7N{L7-y=G!k)56B4SY( zJvbcJnY6JQ!!@g!NFRaU8%RF2Q+aEC6p5fEQ1CDhUwYO#)Qn}OZ~$e2m3H9@sp-`G z{b>}q$yo`{uX>C^p_N@(2|ZhYDMh&R0NB)1c&E#4 zda;>ivweVPcGE&j07(c*+#Y~B<24+qbrKKWFj9TMs_v-ImHda96RIgz`P4|!mm%|m z)}X_ZGR>NNTUmf-*gKq6)fw9ic&s)Oml9-t9H$>%Y6P}$LEJ(wpW}FwZ zUAZ4?{2qwfWsDZPwChV!#0A|mkih4*XtdKVPZvbFogcmY}IaP1|>O(e9#G~9Anry3Hf;`nHg~F4@ z4LG`t;CICf=Ee@-i=SarLn57*=h1E$*O+J)5x)x>Kh zq~h6QU%)vmM}FMa^yS0g!L=Wf?6%kyj@%XRgHH+%#HC070C1{JHT5H5G}3u;`6nt2 zfHRK$D%G!asO&_ac-e82xn(&3W2QZ8DPw7x$0}>0cv=iNy0(gNK?)=rfIW>@-CEg7 zWyEICgOw11qaL`)sVwd-E+HZr{wB#%=lfDiX){|eTe%~1{Aih6(^6^GicwPKB8pu? zD`{OnXiVTK;o-s0*BPsA2UYO(%#qt_FMA}Cjk(}1e=OBztD@b=(Z?m}oP{h&QJjIt z9+g2Qz0JFR{@K*9=L^!iV+?s050ip^R`{_DFE^ZdW(aBJuSyZb1I|``rD_p^Dl4-Wqt`)FS7#Ds=(;I58&&ILMv(1dT zbtQ_R!5=Jk`O_rvHM{A^u-uiL@Ki1U;2%$i{{WiG81g6bHJtIa!JoYGX1{7Ch(|rS zW(1WW5%S}T%pFOkxOuN7y)5S?w}w4yT`lgTEHY0O;JJvO-Xy7#pPy=UO{ZPj7_|#) zXxYX$qJl<8UMtX9vB7f>?0M3~l5dHBbZ61+nO0FZn*bYMbYMt0>+kfdduU*u*nY^F zB9M}srD9l*UV2r(4!T`BeIT zrUPMT0Ge>q=2ga8zd`>P$9WTG}~Ud%Zj?vt;gaGUulznI!Q)l)7A2 z*KWf;RBCq*p&!z#{7W6U0!w{Gm^dB{#1xmkMC9bmx(W~q$U}j-EoW~9OLI!x~{LJ>JY16B-buJ z5Z}ZH%=1*&ntq=(v7b#BK3K?dr~VFX>pe9YTK@ngWV1;tZkkt+ z_bf>?&B?$Ak7}CE8(Wy2n)M=JLWOn4NzZ=WI+{AYj_uScAVvpZh7LfdYD~D zlSt_@Rm+0Y!u}Y$*5I1(TwB{(!T$g@Nm~SQo(FybqIC;BE-rL0KYgo@GU8{$lj^8D zesxDQZ%kB4%!ZnL;LW~Lodc=n`AEHIqlsXwS44I%r!Br)Gd51H|2Jm>3KrPQ?v zPwsr?AoLOE`c&_z>T#4w?PAV%;nWJn;eL%{s86uF%NRt&o0gND=YJ|aa42<-cv(ff zvPc`CWGoLfb*`+W4?QBzJ}s@ErAoTpir^|Z$4p0zQFB~Xj-dIv17W!{}X##^Y~Ztq%7Q##a7gb-u}Z( z@|D1u$IP0K<7{qr`sSjJSr?tfhA>4vrVKjB2f58Ig6!ZWTc#Uys&*?}4FN|J0~;h9M1DrtcXgf8B5j8vlAa}cFaju^8HX0LJp z&_FN0B`4@Q-(9_kg=vha4scI3X=~z3b#*gBNe6;{9i!8V%=r>?jihzqsp|yK$G~{* z!m^eua_rt2^2dX9_x(QdFtFW8<}o;oIRG5+277d_iYX1pl<_&>j5MIGeMtWR6^cta z)r;;CFg$aEMMovXWN*7xQhCWIKb3R5DnG@YOH$wRMwS?@8c!-A5u0#1RAvVsGf8o# zODmnMjTr^T)EOs(j=gHC%UYJvW{9fJk`P$q1Y_Qfv`@a~Ybg*MaGq&ht)AR;sFIXj z*`#L)Dxv=XcD!41o?XZz1O;87eRERWY8Mu^tXc^YPJ!ENDI>1~=}dX`n_GDnXhf=8 zhskZfuS%zT>y{3sm6gv%?efn`QH!5+T%@45vfj$~R=JPPHiBehv51W4*BKR6GwLx& z(>xQ$8E--W6$)Qo7}6D;_Gg4cgZT<`TwY3k?y_7tZm7n!P}=%NFDB*7VX1v>br_7n zoQw?cbLuKM#hXsBTthrL7&vSL@6C0kt?jf%K^DtR%FRgi}L+q`R_)369zN)w!m-Gg##p(aU>y>#^f)v62V} zBX)f$B-CVgW-%%&5CC#{$I6**Cz;hHkQEJ_Dcp06;11MOipxB4l#sjUYZcCYh#jh4 z)cP%3U6Mm_r%vb0RzZ!xZTJc4)ce#1%T9MJvC9juD0d7Wo+x=?yK9#Y1b~yaK2+z_ zQX&ZCM$FMZ{Cq=_G1Hn7`eVD{qI;b_d5M}gX%s0tNemCmoX{GDqm=U=!f23=iOxQq zs@4mek2J-;1(=c*S(E?=%B8!NHmsPESI;XGkMl}7B^HM9MoF1hg%L}IVpQa-t_RE3 zn=Dbf38OJ6CzakZI`N9pPA)Yzn%3c#+6|zhu-e4?lTgp$cv=YC_KZWEvlj$o)K=>{ zO>T5^%TC|%R%X;hK~li5JvQeQ_VR`|q65zhkbbpib>WNHM*CUdm}78dY!Osbec>c4 zGO>{LEt=jFj!)vwX=9c@RQBYgy>k~;drPy=>)~2zV?1+J~OO#MP z7ULtO7}_?Ye{`~G`ZB`V_|!h-{JT`jeA9GXF{-qzh8Qg)WRfpEaC#AuL_i^xT1hU% zEX+w=r}OJZ{{Xsr%UpSqTZ?@6SHK@nN_%)#EdKLWUElV`aa_+NJ;>>dC+a1nx;~i} zmHz+@J3Pbwl#zhh>Q3QR3l-IklgoMLN44@AHr&VBk9&uW{{Z4vNQOGFBM1Kged)6n zF%%OLtTHxr8Lo9Xdpce?{{XaRo2pHANrQCDxG3`gT>WU-uV*C2uo%v8B@7xd?~z&i zjV;S%Wp)Jc8=?HD>nq(}(o{yVTZos9h)5XEPj8)Dj2|e4Jd1`~+na`rB$qyEBbP+r zeCg>Qn!x?+5gFu;DoHPN*{$L>`ZU&;E^tH20*s$r@@SvB-p6Dip3d4J+1eS^iO0y} z^R9U$bVg61e(&Z-l(;Mb=l~?rC8Tr5l$J$cdCwR%Utx6|UJ5lJtrzZwyY(5zI-El4LuvM_c$xDWq6px)Msw$Vk^X z@7A;y+MITNRlJ&J{mK+FV3K?0jBD$3_?JkUIq-5sK=JHp?r6>O3I5PMmc?55a z1Ze;#9=H`%27tb4RJC5c5SGnfef~0@XWedh_Gu8~^Yp5_nJy-oq;uw|JQT`%bgADb z_#Gq-C7zFEJ4JY6f>JZJfjoQFwwI#lw`xp_Z5k1jW;j+Jy=s=@RkqVIW@SU2*xk-g z=UM%K#%N|M3^F{J0GG(%RVdBA0@1D3{4JoQOhl29*D*+I&GlBd)AbFOHw`Kds(AqV zd())UZuKY`-s(gHfeH*%aNEEMR*W7$n>D^U`0sPGDdBVGJQg~1@m$0VC1d9VAK^7D z);8|>o&}Wm_;XZ`WirG~w6Y=K;I|bxTd79JoFN=D9zd*R6y3$q*9%cfO4(-(wY((x zFrVaHaImK3$|RaPut%C%VO zZnGzn-r6U&v(fz4+J;i6IWA32aN10^{!>656m-Dj`_yZu*~UzfPb6-7WxuUJk)yLD ztcn+ccMeC+o!h%)xTLA1aQm{&ZftiWME?MXImqrgsdWq8DV|h{<7wq&i^<$`kOAB| z9q0>zZ2`nr7$h8F#%i|eT`}g4NiLkYTyIbaKQY`^@K*ht`5H@#EhCcoV0$}D)!NJs z#h2kKIO^Zhn+z90!ZZe8&AE(yPp|`}4GyVnVG_N%?u-?QmOKJSBRM|xZKPd&_CnUy ze=4_v_Qzh21PG;4cs`_c z_p1BYeEWxuRp)q^JjpL4k3dgfrB~{f-*yQ-y`9cno?`z1rU~E<{rlEV5T9H#UDA(y zp}rur)Ge8bhjQl;yj+j3y-~?5%G+h(l;no!D(_C!?rp9PE@ZofPRV0of`{KdJJkA~ zm20T8OJ)VTk(0OL1pK>J(8;soG+{hjmgp59dw^NT37S`p8ze3RW9RwQ@LQY6_XLrm|6KU3(bg?X^HJFYz<#!K%dLC#eQDGcY ze8{ELBNNLxlHh`hzG_CKD&v9&uJ5&>p8=jdp=D6OpHG2C53 z-eZCfB%hsGyta!2L?R0ku6g`5GR)TzDPU4}BPk7y%#syb0V^lOe|gw;>yPhN_Lidhz&l9i9Dnax1}oNr zV?D2$9ODg)ZKAC2Y%i{y>QNXShzlfqCVg0Y`&NoGk8aV9_)DcsO+M#Kjsq3k2>o|D zu1gI1aZ{V`41lV(Hy9s@ly9r!R`)mLO~0D@X2DVHvkAm zJe@jXpkR+M@_kQQxzXFhnvwG%w~jf2?vZCalic!a zIUT&03$`eXNTdc*Ksoj2wFA&Iw z>&0ZW?RO??`-J&WMx$SU3g6rp7uPAYg^Wk>XY&A6RkRumbLJ>7ZX{09ZBQ}ws*)ik zLdy}|f%w18PIUWeq(+AG;w|x};m642)`|)Ww>mR&c^>Vm%^>kN?56VVwAI+llb2FI zN(WW(TVE%Tbjvk|IY7hW2f4_g{{Ul3mpdNeBZzl?cp@w?%&1;J^X1Zn>aLNy~EE>FU#kb2`lj+E*TH?y) z0Osl8xII)yg`(}WO(NmKt;vnJ%DkZCw)uK+LYUHqE$V3$@(5C`aYMUY8L^2YCW@O@JOJ3M>wf1EbZN-|)%Al!Pal+>9q|rb7hhRWx@1-E}2~m&h zRoaJwucMTUQ4H!%M&2>Uy=%1SqR0>|(W>VW?%Ep_V-B4nUo5f0cHrbWB<()_zvj3< zd6qA;zxJ4mi#v~Ze z=|bIT@fCQ)YY}d8xCf`pnsEI_OSDY?08fkdc>Eq2znE|P)vgb#ll=ugPYmC}>#^2D zkKpJ(GAq+l!&~G=j&cI$D}l$*RC=F>uHi#1yO~Hog-2?qua)*CpvPRMd1TsT@!-#C zbU8e%U+X}~w#ei(Hw6CxJ-YwYYF%CZ}hAS-&?=2jAJ7HOd zKRVy{9CDe=^sfFgMG{_3(mjj`{0wvY8dxta(a5;5jllFL{MFO=e@aE! zGN069t!?Gf?bJLIFaADePvu!nxVwvH_}1l8NEYDh*6{#koz!q1CeI%(wO2L86 zS>#R5u-t9v!{Kl9M&8}&P4Qb@$r}U0`9QDqpc?IDQoH%=VmK%0Yoao3T^y5wi|n1} zGe#CGyVzU|Y<#dkQAO!<>z3|gjyW#D2M999<|>+Nsga5aWMsxZF@s3ghj^AZmKgx} zb~(VN;M%GZ$fEAqqHRx58D^Bk>N$$$H3Q@iS}N06Lc6X~Bm?;2mvH=rV_H_8MQP=c z`RaK!&lEfV0COu5jQm3fKT4OUk4B4AHOe*DTF#iP9d6mkZgC$`>7PmxO-jz{MKUhr zbB&oibKbLtDb4|mw&9R*npmK^EtR)&LFXw#!3FG3SCPJrG?x}J&$&vgASVb2IUTq- zuAfzAhB+aKvH`V;T zrOQ@r9L?~!6l)HxCfH+8LB@K4nsoZ&lOaf2Hs8C3@A*-t^G6oVzfX!%2Uy17NA(mO zaA^}W+_a1piNs*^=A~`z#J``ZAXe4qnN>WrX*RG97m=Rh-jXOaiBU>JKEwc~-YVYD z_AF&kU^3u>`RCs?V6ocVgpHb8aJkxw`$K%OL(HSpLO5kEd6 zO*d4qp3@P}JduoiK4Rb+(2Gf+LmJ&pAUWfMj(T&=33p{Z#NJes+{VZ`1bipuLeFpT zQ`6G-W^4Dzx%H^{7iMLOEeQRbTt{6(>kZX|)WWk`taj_%v5OD!k%9yxm(2VU9@y+nSmW6ipmT zi*&3MV>|Ze=~+{$LI%aN-aRCgpYcs?O^L{~wFA=!{L)%@S3`QaC)w%RoR?F@BSz^w zj4_88Q&e{PBF2JKCy{U)Ifae@^f~KSia_gtI#M_!f&n0&g1ngJa8!?OSd^Wzl4RDc zFP`e%V!Ds{AFe3PGhUikSoIAxpl3J^7X$UHe=T|i$@k-mS#4mLsggAyatCbD=8Tug z3&SYCjE5Ovb{N3+sUskAWZm3k)os?90bSPe$qNp6Y>&#LSgs);l9KumyGW?p7Pw{Z zY4VFHgc30G1Z?A>C#6L#vi|@9+C7Z`+a6STa*`f71B#hkmfIWoia0Eiau3R@mC#y! zmUh~$)uP6;Fc7C34tBPEMt`Lr4zCkRT-(7MIor`^Yj&SVEI`hp*3@ErD zV;#Zk^rLd3e0I(4t;Uyi6PWd4Svm5`5^;>@9+g>tsYW7so>)RghXt1m=g@lAZ+ws= zNf9bQISMj)>s7KdP3692-lUMhh$G|;5lONo291TLvoyMLN{?$BI)kvQ1Nl%|hN&#E zi0&>HA)c`?U+Yd$e$(#qx9;6kVURe+f4yrUxk32+vyR)dTpEmuFW`~s>9I-2 z=J_aXu5~dOSMuZ8!v+~YIz1+p#xoyI;F_BLTY02Y5kTN)9kEq6GrB+Sh|YR1V_7es zsy2TgVQ!bI6DA#}rw59nztp4KBvM^ni4*Z8cmpH0MP0#jCe!zn*uZsm9Mui|t*-eE zz063GHunsh&VG5Vu-5O9hM`Muz@!S(NX)V_gXMhE9mpBBUCsWCWS z`+tkxxVGkJe*6*PnwuDfwWM%v3=nO}>P1C!40CLbSCsR?Ryg|NsfUOxu1E=aDly}0 zN6vnRojv7}La!b4vdG`S4g#Eatb9{XlYcB4;JHg{a33ldb$#6D=T#b}k7nEFv$z(r zfzA)YN61xj>#J=SnX}EgDpvu%5IsBQw7O2EYpOyFTcDf(UM!4{m#C_7$&Kz3mOP&m z6D!_B0*T?Bq6C=bjn2@1U31s1SV*g{TdJk(qT(dU^Bdyy!OzdNZGs+*NnhnWimJZw zwT;chmrzRfmku_QA48u}R<#js-v&=lCD$e%eG1_&A&bxRjHe$DI0Lz+$zeQmt*r9T z6h+SCu$AM!Ju2f>(fmcF?UE!D#U4UQ0_1_5@;<;nj5m^la62c>pG za+@Mza+eydU|@)JXv2mir(CE>aj@z_GMlZ-3?lkLc+SfN1cTx=e11h82C;U{G+RX15i$;}gVi_a@ zhCaU$rv){`4P>w1dmz8YIA$-K+<83?V+WapkbcKoXfZX}x3S6*8|I=umK+*t zpFsX3XUtK#VGV(t`u3?I7b;rf6_E=5A`kbYu4IO373^n?S7s!OXP3Bv+tmBVClE(Vl z*@G&vM}|O2(r3li;

    F{}|t>mu$zpk#Fij+8cysGy2CH6V>Ft~0lcXOWRt zk_g~d8*p0#a2-9X&&esqRC;)!j#0FL?=1W{@JtrkSS0`)hXVxX81}6F@=0juEp;if z!LY5!VbpZ?t9y?jUlX*lnX)#pI3#-tsQccZX(NawW+(V@oF8M>uND6QQgdxfjt1Cj zm(i<8FQSP9{9w1@{{Y|ZR!icU;CqnP4`Ev@c;{`L&o)SKYQNr(6Ws>3(_eno+rCYq{&+M> z_>0CiIadDwiWpE#k*Pt)PSr{N@WElZWq`>ljjbaClHXo~HB)ioEl%Xft8`*gaj+a< zRINVeN-BzZ(pKc`u+)5CuT5~$wbNV4oOx)w0uMn!PvZT0U>03g>>Tlj$MmYX4cxMc zC0QlF2Rsvj>ruQuY=whh4gk+VU2(&WcNB2TK1TSHEtABz*AKSt=*ooPmL!q-)ueZE zyZ}Xc444@Mq0go(EgglqVD}Rh1du|nC*FsdQ8KW~S$B{!yoz$e34apfsL2I#~F!u&%3@m3L03g zgX8wHkPlxikM^srJ6_Somev;vtXSkTrcj?=#C4$`Llr>64YE0-2s3^RCFmw9T z=h9I(;>PJ)JwYT7uX@*fe$0Gxzv3|@w~i)du#QcK@W|}LA45RiURxF(Rg5tbe}|F! z(`2-9)yr;(v90>N>i#x(&=`&fh1M5k}?7Kq5zDJnH6&# zy14jbjR@?buu;Wv1f&U3dEva!DEKuSn1YtnfFu6^;uDed70;6kZqqt&=SfpWs%Xq- z87MQ1o@fiLGTPzG$rjVyl;W!{^;eqT?($xwk#5`%m&l=)R5sD^Jko*NXuBnlje+2H2lP82ve|7NXxM%34Za7ExMV*|u_*5Haht?_bNW>qW^9r#cz!FV=0N zJxZ|pHV@^RtJJKu7zvVTON0DD`u!*o=P=#zVz*FI<}BuUB@c{~E!SJs?Ue$A9u z5Kc*r(2nDEM|ELuI6h=CH@|wx#$_%7f%6>I&X%F@{{XdIv22)%;DPDMsFn?!rfD5d zlZJ$o!`5uumPsS^1E1?s$KmZiVEyF(0GR&(6=iifQTvn!llYBSNj?7avKV&!sVU@s z#_?mjaWsi~R#Q6pEo`Z|oUx-Lx@qE9j4GoHj2@zpq1m(`QJ$Tt;Z;D-PS~$DTUqMI zaualnnr)~@D^P!|P$=MO3+Hg-i;;OE6D@hsN2_%A2av2Hh@~b3~amea=)OR<~ zq{0}$d2yYC(y9`Yd=WUsuaQ$>b8%@q+g;olus#x3lg(Jct6Mv5K_NN8!kUgdC%L&7 zS9=i`@TPe`I<<~CVvFHGyz~`$9Dn4TYDo}%@ks?>n;yFjIJ>fw5qhZWYD^w ziFGT4c$t+IxWGg&e6Y&5_!q_ zP`ZS2t>*9=c!}fKdT~VwG!)SUC}{5z_&p(WF#gt@|RBMsN<+P!)mRbkWC7UazU96dP2%`J^ zk-J-BKqH*_iy_W9RmXAHyoT78=9 zaG<%mzgWO-Jh58xOB5{coqilRH5a6G6{{R@N%e1gM&kEhf z2NI{^LH$K$v7~F|ZE#xK-oTMT{{RwMw&qNyQghOz(r?n%;qG-kK1r>d?hP3S9f!)P z78oZ$_Sa1tZRKPj+;)~$8=91*}uMg|~AN!-nX${07 zWCP>N=XZYmdsTmmyq#j~K-zo}TCXcCgAU%{gOOOcHJjzOMT=~4#K5wm4~qx69Mm`W zb6n215njn6u`FU@Rg~wZJurILEOd@JHzst;S-T$AjRn=Vo#sEEYO5M2{NFsWIO)eu zlq7RUZdIVuE#3!mRogO^^y$;(LRzDlts72?aprUT_ER4Gc0btBGDAL_b8Oc4F(jDZ zG*L4U*at0-UuxTBDsIeNoVlTFXNq{`^1}5i@J4*${{V2u9<<$H*xnm=Yv3RpGd}M# zIp=}JCDYoi<4>i{Bt}%k%rd))>-=A(SI22}93xPT$N~0*&Q3b#9+gp#H*`dw6+zmj zhaw=8PBGoUMp46%>IYCqN~#u<3@oZ+a&pNgK^=h^qqNOxYk4G!FDP5?-MFsoepFTL zNiFb}OSZd^peWYJKwf_i2HV~ zDdfFzw4A)^RC@)+LGRw5CX_|YEvMZ{7@F9;&cKqcGmw8F&%HKnGff&x-L2${D-VTV z@VgGA3}n`CBzUG$#`&~M7L#vxH{B(8t>j#RaU&DCx?=-@o+`z(cyw0H+zEbU!m8{% zdgI%Q&uKCxyz6r;b4KL|iLvl+>`!r56UBA6?>7?-K2QS|$z_n>=iwX*iSD|-4Y4@Y z?c|K=w$kaN_Iw|7@|>1QvQ#&2$NNUY=7TI%KGKAGe4p#w6uRGj-7 z-Wmr_bi4X6pXw2`qZ_ZYL#@5b!5ZB-j!rh)#z_O_J?h6sy=^?kZ)Ol$?Jwmz?JwJ} zT>k)y$D5m#A=cr;4ul?SL#KG66@obREj@1;1`LjJNcz&rrJ98$WntCAQ?~2+k!lw! zb#~He*)gyrD@I1#_2-=Y>b4!_*df3{KD1Tlr*C(6m2I#QEurL2+5D$jO=08ps|o^zhGG);3jmD=10m2zZO^6*c8N;rI^6x6fkj;6 z?#kZQ(&4B082LvmvHErBezeq_YR2HDbjnpI!^?6NH)Xc2NcX84*4RiwPO~mD2vRe} z7@BNx?w3-R$k~n1qk`-^juyIq+40;M58*G#`s0exO*g|baB*Cq+hs^Cx4{4x zAmezDo<39>Lf&YICP_U9ucdX9Oz9-iNbKkiR7Owd`qx@tyc^vkQ6nRB(;5E&N}6iQ za*Ihm4MmQr2A`)zZ*&$-xcn+NDC>;VkKDC6OtyEx61XtQ-|1M7y-g#M`|x^#D5zqQ z*Z~Z&6+eur&0_TQ_g^N_)$z8tF0~yOPY8F)kh$nqL66F__a1JSbUx{Nt~!T>^N*OK zX0V>%@A6%^>P9|%(?efi{;CPQ}3Fk)x0+hxqDe^-Ki9m6V zrMRwFzZAYFbY+h`en`S<8ZM)1$1s_ce-wQFbyf)tf-pyKO4#aG+SD$>2;pVy$}(#+ ze|K|pE^d`s{{Zj`e@gT)}giyhWJ#I??!2ZL?ypyE$HXr z5fvlqO&)D@)^Rim6GB^sX$fQV>58djigeKt#VIRI6f#QBoT~m*=!~BWBCs7Y1#EO_ zG-QHdHkAyl0U*Y5!{wfp4xw!{kfgR(a@#=12qY>1IsX8*v;D_AXxsLUM|SJ}g;lNA zrjdT>=XJ(5ka(qYsLV4XN}T@y6JS!`={n3gXIU-~jQNo^;C^VMNjH9!-?(2!GGTNbel9<)3RXdY!IbtUriyu)f|m|DVnbT| zmk7x?x6P6yQY(QhktiScXZlfA&ar^YsBPy5f<;MZq|b1q?nE6yR@^EpjUw(6Tgnax zJCNreO3ltK(`L&Y;M@dUZBPTiFQL$gl zhyyABl50YVrYiRAcJu0xjCwvZBtOU z;v1$Ydoa)St6O{f`JxWmXPSC$RX8=9gI%O)9EtSWHwtpZXMsvpl=FjAGDfAm(t~Kv z27;3E(Femge4dNRuN8CA@4h=HE~=%7Bmt9w%?WOT=HYLWYn4DYh@Eghr93>6Or$Y| zNAq{0WQ%wPSs8{pCjzSWlGg4_{ykob;Bad6Q`xaV{7 z*z~~SucJha0U7`gJPMe(QM?kz9V*^$jZ!mM9_wwDLqvH}FT7sN?HlgMIM1=8{FsvC z%@UA6`~v|^B$qMZ78#t!1 z*q&M}CA>fYNLZfP;)fSA%kYp8bif&*)y2TbW>K8vRM9M(35~Okzv9Jdn$QWGJxVEf~$vO$RjW)Ebdhv{O zrai*i#HFs_kx0%1ZLY5v21pXwij4LomE-)@M_AP^ zZzbCev{ulsAz_bc{{SYm0>Ml|Yr9BP#exd{BafH#sS?vnxe0I~ZQFwa9Dp!;8o16+U_0_Yb(buKP{;8&1Tb!fniymaqd2aIi+?g_I?dza2s-0Z zZ#G+)VT~qnhblUJv(t)ohO>2T47P>Yp_N8cIPaRR0f-~;oKqEKUVr$ld~s@wJd#fA z^>Q8(7}zWo5~o8A(Ea@ll@j;n{o) zj-Hht#yH%=*c#?~IJeo-wX#c;d*s)adi|MbX17r^eq6SvzWVTVg zv$ex+Dq=#c`5g$#@qvyr(~9z64S1^iMwv`+AlvvD9-riURn70(kBMcDI3S$EvxaqU zSbOK+n&*04mrJ9iYO&S(J!40=isoM;=S`L=f|Bv<2Lm|V3lr)w`qb8%UY8^?%#hFJ zGM(OJ%B#n6F^)N}3y;QLCyeYDEwr7(7$g#MPdwDt-)MUD5^a{@NZ1f7APRnitxM75 z^dG#3v(U90TUaG@wz-bsQNlE8``tJPt}sVhpx3S1+F|#I5_pP+Ly$*3kELd1@n)fL zC6#WTDP#p@F*e=fJmghGQe8)L|Vv^A9+!)(^_VTT7xk{x6j{KZ#ZK9=B_?5&d>LV~CCu9)Yw$}pCZu2U#&uB@6lR`T2#9C0!)#1F0y zA6~W5+1;(oZX8c$NG~FFQQWfiA3l{}bmZ08+vwU<&u|}|tV-UO6XE{1e^jsdaYq*s@InF$ZFf4mkPb_o{1zTU$hudwYg0 zkgPr)p8e|gP}OXv%r`n$+$CHqv_Hg0^C|6B`n9I9e-lp-^X=C=Rx!{I`+ABnw`og+ zJh4eP9$8;+uE>@X*|oDY5|G&Q2q61nmK{g_8cTT6Sd4&VnKStc4hvhNLn@~yjm!r> zQ&(+jkm*ZzbLBjva4;&BC4F}&BR^W{$g#!na^iVscIeHui6?Muk9uQU&Z=-<0QNO` zWjsP73QXvdoE_{4_6Lm7SGKyCgUh;zOKeCYSa1pAtM@HBX$k3*v!|bC!1}mxZ^%j zk}-l{mO%l zqnu=SuQ<`KuUAr8B%DYYvcfKke;Yd9duL$NQby ze9>vSe`+dxadE6gsm~m19lfK-&l|P7OvmWx2*r`V_?A@C`0A$o`dQ8L&n^ zd=j#NISqyf*B+Ekho?)aU47cp+{>Kh_GAI;T`yG>t)r1>x1vU0Gd@DoE#*7;R(q=C${J6^$$-xmR2j1fAmt zj+Iewq*>18Q&5Qxc-_ThwRmQYo`*g+zy*!m5jo#!8Gg(M_NzUYH=AZ@rJB`1QDNx6;4xQovPTVXig*F8V?n(ba&`>SpMF|Q7|!6)9U?c}tN zi7j3k0^l$tjQZl7VY(K({^2}|IVtu1gCKbBFO00QBYA*j&Q&{g^rJOKz7}3^Sk0oa zSmd`mRht}+MrbWI_88o$wBCdr#x~AR%e7qSnv2P5v9_Mly{Tr2!YEP4eDPUixVx^6 zV3S-v%8x%zEa|#PSAYxkVtVxY)`LomM754#KAbM*V5VSsxB67IzC1bzy^{GWEj7&!VR?CVZ9H*D zu*|V%7{?_?Y#!B{GR)3A;U-6^t4QUN@?S9O2@nnNBOy3m)nM1r-ArJ7%Twiz6A^* znOXA_GO5E5yb9=2i$^4*D7q{nl*mIsqj>58$S3Pic@ns38ZrRx1_o$ot*+#M_+*vN zc-W+x(r7w1y>#Cem}F3Y>X4`Ptfwf!U7ErVClm#xX)Sige2p5e0Rb|3txk)hLli9S zb#|d!2We8jQAehks;Kf3(l`b>sK_-*tU-OE-C*7rmAM3~6+YcCYlc~#SG68j(`g9!$zTde$>k`{{O$`YnguKfP!p*X)+qJeN$f^OcDRA37HE#n4Y5mG=dk z1Mx|WAEjx9WQ(n~PIr!K_feI2@G>|#=z3EXUn6Ka9OPA$m$1s)qp`P(Bc2Oj{Y^&K zw~`(kYN-Ad3O%}4prq@g%W;p`Mw>37Z7Rt2Z#sY83g_$ftv#06p!03?$QD!hgtKl3 z<<_x{EzHLZUniWNO&wtls$59~6Os-=98EB+)N&Q#e1J zUD#ggGN2Oa^0)oUq)|6k5M0I@OIHqku*2(I@yX-iopZ*r^B?*$tSzDCQd@!9g8)Cd zsjan36dPpIlylc{IQ;0Vy$ps89L|AzFvrvWSCA8t7f*2DRI9!wUqRi)SO#7M|JILf`M41?`;sECr zgIUGNs1w!w~^RB{#$6!Dse zd#*?!c*act7~4qG-fCgXuL#%*K2=HdJVFqXCm*4K9$iOG-A2rpVG3HnsR3G*5gRq zC`C`gsy#Ylhq{+fiZLYf#0O$A&&sf(?odNL!?8Rcj=JHB0HSE!4?qtq^Qu}(?U5~Y zt`V@4RnpL}m2uy&p~k!=KqX~^2MiU4SZCB$RyhG7UN#^Ror649lHbEZL|G+u!CZh8 z{WI%C@Z!h(hmSs7pTz|>p>I8ut!d<(97c>ee_ZCOE$(FUh)~Ilw$*K*8oRXc?UXwk zbfQ%}xNpVu=~fpyMTN*7Y#A%is}YLHWyc3d(pa+1TYQ4}BI3eZDdD}g6G@(&Wr6GY zbb&S0U{kU=V`KbE=QR!HhO70%`2rc#9E zcfizgLN#24X*Y6AlFv2jGC4a@BnN0d{c}fM+)WH&);E(J5$)?(d)+4L#BLywpT>+x z_2g6RH9OmNWm|rS>_N^tSQu#%Z4NH&4NYXvk#E-fuVF+?OwjUAwYAZSK^00*R z03-}Yj(^2N_vo#xp}SjSAd#@dCN>)FLh<%2_Kc2mlB{rkLbKV$QL~!v#zkwbTii;q zN@dB&b{G|9_p6zr7P_sxa+8vwz9r+(`qgY#n(JG%s}eTm;X%#^$a74CQq-os`>Vnd zLD;A3@~Yb>-5IIIJS*fER?rZ$No1^ryB^;v&)nPG+RDpx91YkFwzm32w^p~W2B*G2 z>RpKdDi34S_N$wVTN!O#m;eaQSnvf})i^qrCUVm(i*$HAq_DwI#~^p_T@dO<3XYuC zrt3x1Z%G#Wkdk_F(yM3i{-Xo_=&Y(wBRfyen(JBO{hTw?LpW1PpUQsCTydUx z^{ZVYTGXu^M{Oj;bPBm4zt*=F{{UtM4(p9oN>UDvMhJdc`jQcFaUYyJvkJ!-n2zh z&dbjj_@qR}4{nv{ny#0kc$VsWN6EN~Fv%hiteMU{yl~0~J8R6f-49prys38+o9h7o z01ebxF}Jf1;XcN(j>-NX(a_~M+kJhNmUs6SH_tRBqJ8Axf(CnxeQM`c@ouV`WOj`V zQU-4^%YsU_cplv|im15MuP+r_E=iCMXJjE)93BT@pXpHE z>Gu*ty=O_#D9b40gN~!y6x8Cn6O5X+2GdIfensWJ0U(T~Gx9y^`$4%Hm9Vx;nWCCA zx-TmOjC5h&6yv@nELnJLiE-x1QEJl#Z8qX4eAv|;bI+FhljWY@BU(xI2D#ECvbb^a z@g(pkm@+x&ITeVyxw(QVB0ybtDG0mV6l*wli`7SZve7TwOS)Tlu2F6IQ6qKEPaf3;mYaAUM2c{ckOI7;8TKO`Y0c(9-c{wC zvJeh(qX1{FK3<%c(ptV3df}80UOH7VvbDHxIL^rA;EkW1B_!1|M+T*F zB!ffvhN&26&MZ;vc>MG5-KHPb!c5jNUgd_Jl(-T-%#@uVRlFQ43(M2LlHj zb*j~lJDH8FcJ}O4aD2_Jk=K(;bE8iRptwlUiB}k*=X@^ij^n zSr@mcs1fheWR}x#q!EX~A1aP}tGkPk_Xlw!YLnd7i8aDAZuw>PriBz*lQ48-iwqf0 zP)0#NN+$aL?@Y9R*;eq~N4S}>lEeQ1x6|cS7na)AhS3|i5$z{ZM>MIbMT1)I~Ukv6igSkUwdeZTO-K73xxPV$8p=|S?lz-S>pm{ zxI(n&LLBETmrw*cVUntr=P~BUo087`} zp}IEmt1HANMjV1NFny~CJWZ=l4#_P6m~@q6{?x|Q{7nj_%1;!k4m_=+KT-a*&a{$U zx;kF2EpVGHwQmV&mr7-TwWc}Fei8IFhSqeWrrh~2JW}V7=uRbkardWv4$OCkRNn$duS{&lLz-^NkD=tIS~FSSva z`&N+BrOx9#n%5;;OBv3Pl9r8bnFnIQXx%GSwX~Q#7HSA5o%tYrc&eqdxV0uCS#i`+dP9-_WJD8AX|%O80yG4#Y4k5bZH$MNM9bAj$@E?*@&OM*`{vk&6*thb9Jm9B)IR@G6A=Ow`531VSPh#;bDy6auNC>TP%VezQ)JJ|cj5|bEZv3e|0jSYIeWa7?%~?gH zT$%RW4=sA+uo>gliy8opvTkGO4*=r_+}ESziuQQkIX^`(U5$X?p4jG|Rb!BOq>qOn zW36Z`{67rlWsY`v6$wzFE>Ce$&*9sM*Zx$AAn0e|NcK49r_CGeuMGZ*SjU(`AY#Yx zfHTb%bEdQ~5ph1o;Du9@^{FGC=S+%5+Of)<7Tc58v8?^}qj7gDJGsjqed|nE=aKw) zL&)*rkI$F%TFIzs7N9EHz2t)gw2y_)$WtNlB-Y`+>t$yew;1yC{c4Bx#Vl<{C#uNZr%2Gg zyL%WKp6%+@$#(Y2{*NHTAeM@GE9^lBv!D@sF)(wM|yR1ZPgUh8v6-R#tp| z5z&F<=Q*sTsZ>sdJ88(tYg)QPeJoJM9$0dRDaje?52Z(SeRnmy(93QgFq819$pn8| zEAHQU)Ryi|KYV8mEQr7?hamCo{wgT6>)U-^>rf58*_Dba$+36v2RY{l2NiLQD49-w z+#|!WBUx{2aDl+VFS{U)e_Yj+mhrj`*&tvH)kOB<3s=0hykT@B5?n(V%wXpS2c~^~ zbo9NE;z=Ztm1I%y`HBkgbH`r)0MfF_2{*YjTzMjv)`_kyNKuSqb`D6#&zcpCOzjZZ zTfV`cZj?3E{+fWivc~(l+DRt@s^{?<#gDsLAVPDDV*;)aoAgBTMn21#?3Omba1V6^ zP!njD>?FCkoHpUOw%juN8n2(kL=}G`EFPfAgGAf-g4SrnGDhJ~!gn3R^A)#`ELEc? zJW_PPqtb2WwJ4Vn7UvF52~@>S~tm)6S74wMcej zlpqZKX>TnpMX`?VSsF6kasL1;`x+%DE*k|1u40c&w7;~9?W_gj-%4UK#Ouq20~zP@ z+g38hZv?VJ_VB~xv+wf>S8RXNCz0+e%6ui_Vd1-%w<<ZFBIuzYVuNLF=4Xsaxxs zbK61W-oJ^lXxI>K;pDK#OhEzFnJFK29K4&G$4MJJY#F#JFc&FTrk zs-F;eyG7FP)vl}p-V>4L?g3k&at9ea{S9BquIaXt+r}q}C%GTIjIa@~ELYIbN3l|H{71(j#gZa@Nt*f$Uxh^Q7*8Fg>%Vl@>J7}ccyL4-m zW$w8hkA5pbVXZ@`*(8j%_O`7XEa;1Z`5y>T(-}VJjI*wk z>;uQN$+|KQ1_#sJW2FzIUD^1N#+?ic6pOjmR0?EJFfyc^pZrfarC7h-TRG=QUJ#I~ zwdUU}OyG_VdK{n5t1oP(x4!}Ge(sT#i+34s{PuH#c*y7FLZ`>DZP{6_Xtz33HSNvS z%(3tN)ykZxI3&hXgOliSShII5w`C%eba*WsF|iBs0Q5EO59UP$y|$!~+QP%jj9{>o zV>x5g0mvEWk>HSw{aNH1Czl9md{AMxN;5TPq!e4EEogZ*WQQL zAp5I91MGPN96T@ae3*Ls*6GITEXGlijm>Zm4V}}(!aJlySI*G9He$=WzF^rqXoz3cMPmP{=d7 zCj|4K=EXzB7u%xNSuT~E31st3L4udZ45td&>x|Izi&;#1ZPLiHwtTmL;W+D`N~yKD z)U>F)o4XSKd#il_npLwhq z2wl4^Mli#OqSi!~eM4EjSM*+SUbJ(v36l&aWfW+v#4sbxh2iB&QQb1bWA|y6Si10_$ z^`%P-soyYLNac=OYMv`?$@XHP;`j{HFZ7!yS*Fug=4j8tuGvHLrfa&zma2-$r(0RH zY;okrgN$@ECEl5FY!u!UfnNj`I6sv^{{ZRnu`hD+j<`hI`k(Pxs6oqh@@c+lZK^=C zEH5G+NF4L)MNK)mXt1gp6$*t{2Oj6WCCs*Q74j{{do+w#{{U(}!%>K!3o61-4Y4pk zL7LK1;^@vRmaK#=-P}if6T5C9S(^htT9SP$RJYUQxsoWhqh|s4arEM*HkVR3nTXre zGoB47j_x^0OQREGI6;nU7eAv_1?SJUF*A{o2~*7Gj~ce-__T4l!CwJZqjPh~ScU9!#8#aDxju zARacc{OVaXIVXZBZXZ5NWn>?Z<(ku8=$4v&&)v)1G=n)(RenSsYQ8-V{_{{+BC%O= z`#~%eo_h7gQq7KBu{=3r&`rmP;GQU8wci=Q4@GsvlJiK?gOyBtBz)>LvT(bl-6UB9D7@8-IyJ4rk!5%qPRQ-Gzh1SZr39&% zuOpR`Xcp~%bVbzAwXr$!*@H08V0zZCPVoMXZ8()ucXQKxhaaV7Akpt50}-&4eh>!- z-!*+@CaZ56Z^Eb_6FY5&(6Dzc4Uuzxm?vE^!EO1ZG zlkQVV51RyK#&MPBpOtzI(6G6bu+uEb2PB2(>qENv2t1Vu&kBH7a@Bqg7oo1%nX%I~ ziJ=?+0Cyi@H>b+4tu&i)5LxCdK*3c}gY`8m(l|m4P8&JN=xM97%nm}cp1#$T^2&dM ze0q38@^|dbJ}^SY00$tGyZtJ^Qn9?661G?Pi#$d6dHI1?FFa~8NK$dZrblxNF6BVQ zjyM=KoM$!9X41ors_4OAY5IgjJ;XAePFtv;PC+1w^wwpPLJK(g4k`mLz>DXEhGW#|cmPqde^zMiy3eC-_LG ziS6x$vJ7=zET7~_C*kF5tTq7v>nV+!vf!smcb(!3>aqv;(k!+st{@#|U5 zYVh72k-V@&44YYsWI5@_>qP3a>QF%}&lGDCjijR-oc{nyUk$>s*?E!3B=bHe+;f9n z7}mwToVi~2wHH>?wvTTG)zk(^+-=-gs`upo0E!D*@j70qcq8F3O70-!XOZn!%&)Gh z*hJR+V1}CoP-CDSIrXf@r{T?aM7y{|v}cEA49g$FK^=`$6dU<=a^`c7T@KP9O?ue8 zlLVF!R7BaqJwYF@w!fV=U0Jv}}yQ*khhOx_VH$jI&ED z@IyN{?!)YjvR9p@aopEGDe`o2MoKF?o0BAZm83CbjisMBUVC+_*YKUK+LyMNsmaI+ zaqsk^WszQ4OtH+e#sN&83G^WI>sES2-NnoKP)6}HE=gF9(8Ksgv986Ic=?N?lVmb+ zC1yJN!*W^>WS8M59_0HD^&052t=ij*S!R%~c7;54uT9n>)HORutYd^*6;MplCeox6 zk_q}$nsY^^*~b8z@7HKfZVY^Uv((f70P-0&{jsmp;N{gL9}k8#-9FM=wX=;W#-Jkg_!aOw_{W`y2N(3DRkON zI}m{rNJ2hy)DHahsmG|E?b401^5BY&$jXuCGfg`YzDYRsCYr&Y2jXv?Yqg8muI4uq zT3aJy8+@_)nyzBbGOCN7HmZOt)P|`w{Alu}rIza5Wh_?m$abn8eQHSTu1Uv~z;|qL zD#4<4k})EXzM$f!cy1?wri`;i7Y+gG?}~3!$XaFW8p_R)l0$T{?K%8h)`rUdHGyMM z=Bk1LZb>Go;EZ52sgd6Uk(#l#juwk%_Jrp~G>wo8@TR8T1F`S6XGv{p3;s@R9BFtQonxxtnzJFlOVP03OucPgJ_puBW-4OwBRN`}*q zUcIxx^E|}#V_MxKUAMk~i-pP`#J-<8^MGjGD(CLkvA%M-!vS1*^st(=xjVGl$;L@b zlzNhBx=fbu9mTULU>O*69-LK%m*J=$*cFgWpmYuZ2iFIRZ-K0itrf(R-jY)a#nW&c za5(l9U)?SI$s13x&zIgMcm+a1m}==&t8<<4PIMGlka~LukkYHr)tt$$Kd|}5?DzduX6Uc z4n7fpv5W$8JvbGP+UCn{{TXAS+0CiXZ*8c=x-&R3K?(C0J<1-(+w#q3^=l0V-uh_a zzcX1YIuK4W6b?XP@Z{&`OuEu-W7NzRH*Iu}Ay}0QF79~2?^3scuI{5R6iI0sk|cYX z!hn17*v)js?R?1Rc+}&FrS3c$-hMTbQl% z8%PpI$ZTbiM_|XAsGmZ-x4bs7n6CaV9wy3>>rzXh>Zpsd)JhLht(+RtvHN|P{{X1E zRYjNk{{XH>6p`7<6alvu0wp1{>ImvRXls8Kc$#@m+opFp%c>2-b^*Zyj+7*NHNn)y zoa!N;X&BCN#aZ}gOg1FRGS4RmE=brgcs-D{{2j{@u6Zl% z?UfkIwa!Kf&ox1;Xp>sITtS(mW1RFUTNJ{EV9SnxV!A|3Z5cbWjylz2&fv+*rdcCK z3Ojk{ZPAhD1^_aUx%4>ePfOiFOt!OM%LGh!GIO<$raq>wHGL274%6Acl{X~h;5YcJ zz1m3y$&O`nj1#zE*M2$2Cr6c&9I(DiDOOPga;)XzQGpzX%g3P{^HbPqqBvIduWcid zPV5;*NcP8iq7t*HjNqU@3uB*^A2r>KmLk?8Byt(DWMvrJ$6?dyO~s-VqWLYYk*^v_ z2BC?`5tRVshChU`9Mx>eEv5b9K@*LqY21Gg&ZB!fv%U*qB;Ur~SU4xOOJ}9u#0-~k zG%@Gmc^hthzO^YO&6RR>NRro5yD`aXREfvoCQJn%Bj4*zj{eqJQ7+VsugACHZ2E== z`q2i$#&VMV{wQSJ35ql=+ngGWrO{;6!-Tnb(RO11XB=~ykBjLV-2JjyZSEzvR?{_U z9s$D%<72Zui+WXL`fdCnNweOZ5hO=?p1zf!Yl9WBFmro&?phtm(RvqinR9v4Q|hgGO8EHx_!ZgjmSwRJAM^M!5+Edv@*&s?c=zMQJUPMXKa7~ zzcLMS&o)Qw>W-fp=rd37c86yRiQ`0MU{%fr;rjQgonqcAb#Emln%_Sg#M`!fz~+G( zlb7;tCW_@j+qOwLKO%XnZ6i{$(=0BwM=i{fHrUmfRAd3y9G<;+u6EyY0#-FTs&%|16mjce(J6I$DW0?XU zRVSrmFZ@fbUlMM08IDQFUIEX_yD($P++PO{r!F45e?jXREQ-5A#!%P^!7E@(@T?zGE#gNcG|a) zs~DA?KpBmPzB%b2MjGHrwX^JfDyLJj zjptb>hD&FVlDU zQ_M8U=Mhf0k&nXRa0&OTJvUF%pk;aOH>l@&oxuG&3gFDK%jDxv@OpS9mOm9MUz0tn z1;2~`0MhisBOai!{O~I`sNHH-a-vUX_g7wW(QvBRM#DttZx4R04?FIS?z;Ku^9YYH;u$qT-KMcWyDOuNd)6NeUGJV>~-BeZvoWp zVUke043O}|e5+Rum*I_G)V`f?B6a{cSqN{DQfhp%k1Y+sGsq&Dw~evL%rFk#pE|LP zq-cX2kEcrAc!$D9&rLF0J-f!gi+8|B%N=U5?WNP~*Y9v`wJTBo@pWTq}}tPCg%| zYCO$8QLl|YjNFjHw5opZ*mTFrhkHU-a)97=?kLSlIH9=PZvJ2+@UJCm8DuaJjTDAM z*@h46TgGm#^KTc-UsZTwo}#Nwu)HwS)$6_&rZ*c^n@o&JmJS z%v$Igo#os&Q_p7$sbI?teVeZ*txq3>CzdZN^8KZOGqNDO4l&ZT$SuL(6aN5+=}9H* za6`MxW&g+!+>Wyc&>KvKlk`a`5bHe$fa#n$q!$aIL3JpTX_l1&9|;#Ps#lFl%!Fu)VY^sMMT z>R95MM#OQue1&xW+X__C%C&i$wEqCXwTs4f%@K-yJZ<&>(Kh}i(It<|cw&nf<)P{` z$l%sK4Ic6Nby$b1uo$B(?5!bi0sG9j;B;KqE=(8_;r{?*sv3;X`6d00b=&EwY;_B0 z8sHv4jqnGr9+V7sQY3~&h(qyi9OnlVDqLJ|5v&oQ3Vs8^;B`MbA_%N!yjU-T+wc4` zL~sG@3fCfAS3I2#N>Ag!eaDGz+fGYI5xPcq0{LtoT1a)axX2^h6uTt=<~GO5wRScV$cnytDzW%Za!C1hs|3;I zv{QEjtdjyt#6Zs-at~VNmc2)cI$`>Jq+(#Pyqtj@w5|^vDXn*gKF&N%s<4@K`BDWr zEZk&$Ye04D_-&zyt)PZOjIbXLf3*X1;*C%ig>@EaN%-SQ3W9!>&n9dcyZk)a~vgkTH|al#m$X0CE2S&ou@8{)2G_?H@?Kl1QI($~pnuVMin9 zSZLKRp^_tT;E}?y$of$F2D7W^a^lkZXu)!&6p$Pa#8(o=-F0NN zuevvH2ZwC0lTWa^g5^viQsx%UanKR*2KMAtUbmv$Y7wBZ7j`Rvcgg~eysHfL^df=L zZeo&H#oLsRb~mUP!5xSdvap9vxs=0gbXwU{b6iaP?&v`see+!TB;xIMZwT&G-v%;& z2H#p(rR}yOl(yf!2{#eJ$YIbELs@9odTX?@T(!(@xL`R={<*ES--tAQDT_m?#UiT# zyDDQi>Im;x?Qg`oHRRGs1fEf4%lQaGlivXJ%_TYHLQ#e`RqFR93zT_djSw(7LUMWh zs@qDi{{VPo326-XFemROSbq|X9(f~-;;K``mZ@nqrJkN0WWywqjFoQw{{TwsZxP%? z@l9c7miuyF(>*$Ltvqt2$0B*7_rY?yEz?*f@(^QTk}!D3Y8fDr{{RC5tN7bI3a{2Y zSATgL!X{f{yng5vCqBIMRQh(EcXcC$kg@z*M4L-@$o2VCSftgy33`;cO3f?2o#lCx z-#{Zh0d7y_RhqMSdRuml-fNa1?b@VmKQmQNWo^%&B!RjBPAD0z<=jukd#ihTR*=Gz zyEC3=B~1@S(${QIY3%X>L$tCUMmXSNk_H24RgNWBJrDv%p`_TJTj3wgEyEvAN=ac7 z0VB53KNWNw)RN%_-fEY`6oT$X89Cd>6g$o4w0TyOyYA;6^n_X%)Il_^cn=$#*p4U)P3P)#kfD-_DQXfw>FEmSP$(2`49L9X^$3XD!4MqX5_)dkXDJEBh<^YlpWH%pn6Sf|39*2qS_qO@~oi zi1xA=84ty^&Oa|oC-UVk3dJh;x5<6?nWA)NKzDKv9EvhMV*1Uu+Q_B$j0qGlIqY*( z&uu$T4ZxJ#1S8?yjy=Ur#xF2Sl;4bPbAl_6YCB%`Aoy3z{Il8uM zeT;FiN9LWoS{9kdkt|brr1jIa)D>ixOr>TeQD7zwsZviyM_x5x3H_((AgU z66^tD+rVA5>QcFM+8=2h3h~~8xYO(|hTDr&m-tTM&MNTg;~(c67HuTo{{Y7-XPqaB zwKR}!Xyj4UV-=&&d`oX|`(+|IG58p8PqC>_gDh@uT@cFxj#qCW{&matbt95ul5vhk zR0`;v^tlyua^sG#6tA*NneN5L`+br|8!WtVJ!*BioZC+F)|mmWBt_f1o$ zT1Pe7oH3QL`3&=1c|S|b8GL#>VfwZiE0<{W0N|1tGT6=(s6nkXzj%zo6<4sD*j9PWHR=*B+Zr)G6dR9(1aKSpS@}87Ut;WF^ zcq4Ne&%_DMdQj41hpRkkYiB>fqSCx*(y)(Ix5+#iq2oU_>G@Ww&i2mk*vSm5ENj$^ z<$hzRtRqKndg(L}lwxt^s$^pwc&-`-s}0K-pUEuTmT)?B;8f(pieLV$(-v&8@8oY} zg30U!`_?;mGOJnyv8Oxu|KZtE?@yr2@yW zMpUUE_XF$np?poMnV|FSr%NcEj_BijGK}$)j&oeQ9_mc&jIKWuY$kz`^AHbm?F>4lQpiV7o!aOO|N#u*s2vT4$>nI9~&?!x1@rE9bg z6g%bg+895sb4|Y zB5i`vm=5ZAtxl)n>C-BZM;nk1Mh^#}%}~v*U&|qK<0sy$7nv%MES3JE^I)rH*N5Wa@;&%^#HdG$*;8gv)7g4*8fAS}xio5>A; za2ZB@s;}&;N{>YGq*q$C>I*sT?kwezQ06tB7mLi#qL&2wX00?|vfEug;^OCj}HS9CF9O4756Su@G)Z6g^bhvPpKY4U2;9v9T*u(!_X zV}Xh%uOM@d{+;Vb;Qs&%c&_(NLYh_m;*iEO6}vFnxZQ#V4l*sNnFL9BD4ioqCs|m`WCVgY4tjh*jZ~- z2^=USXZUvyT5WHQCCC2&LxR~WZE+WB2ffqv1hsiedFvZ2Wz>zx8yF;HWOm4} zPw@O2j<0Pbkm$OULMXv?n$^Q7+8-y5g;`j7h6lK-t-3dkd{yF43|!yaCY>exTBJ7$ z2FEavw?t#FnHhE;_=8?=Ev+sg&iHx~A0 z>Ns8&-!I0h6b=tNy7SVh{7I?LtI6VR55wA(vDKaQioyZqO@SdqJh@sJE z)26eYMBkT*vZ?_kv5uT$KDX$YN-nf-{1L5A(fyx9 z6h*r4REkeBP#Q7iry9fw+s2na{NR3RCip#htn_%SKJgvx(SXJu?@ek10W-JEBY&DA&;3o9_N?{XwwHQ| z(QisxUnR%gw@APRecN!vakoACW16Yeyf1yLiFF&P@2%$hoECxNmJz2bMu{JuE_agA z?LyvAP5C=<#!h=t(;vj%Ihmr=9vCiUj@H%XZ!dDHtV<)4_(=*F`efB+(?XXc!>ON5 zaBF-;qT6Y@POm15tih^WX+TeV16mZ_8E}Q;eZ)G3BdAl3YAsvC_EKrH>5=L-XT;W) zCi?43Yhp&hADq#wnZb}JIL0yv%?0BMnM1>$dEhWjB&J+#cZ_D zRcOKLCiqOpNA_W5;tO3e&3sI{exB0pWYQ+qBt{-x<7slI18a2|#%n9!-?85i z>+7goT--sW*x5ll`PUfTERjTH^3gI2HUP=!qm$SlVAF=7toVz;UMsY}v`r4i&cy1o zG{`)Mv|+s+N!%H>0=#p)VuJ7t`frFlTd8X+n@h7{sBMpaQN)l)G1rF49Vb zvCphp6!Auo@LUL>o6Hd0d2wgTT;qN_;B$(DUGThq2=IT2bp1_ZxVFF6bkk}URC9d< z4>L(3qOltHvoP}1 z8xM&OI3E!?9;UR^#W!|NnpGDXJg>mM9sdA(JYlE!dP~=~`}F=uxe=K>yypb2MtXXR zlULJx69$_zX?`ZvuI`r}R5IwR5<6$RiQ61!_)kjIeUn=)kJ|qLhVPm|Z)EpEQ|CU_ zQ-hJu0~MdY@qg_YqP5jD%?3Mlm`LrX=@$0x0PVREP7Zozx#K9f+6h6aQwE#E-X$6^ z*0moGYS3xYDkN8C(ZpmE!*0efdmi;A_k(;zZKD3()HIDqX(wjewuypmBw*(l#(2$o zzNP2E<8K%E%I@;gZwqP~Rl-_Kwzww-I7U^>PKiZ67!A*WG`F+TWweJ;X|KcLHMec0goOZ%ocWo@VZq4lL+W2; z*VY=1zMplcYVcj$DmCQG|XSsGkCq)yw4lb&#T;NvwXg67grtE$VR z*k0+8K7oB3Ecd>5nC2t51R`Mi4r*Rz+T6?V#V55GyT1u*w)VGInpTUdU+LD4+h_Zm zDMSbO_T(u8sL98zSLqg>BGmNjtzSy;{-g zeV%LDCF(<@X!h_W^o??{i$_VBr!K5>@eX=?K!Hi&RFeMy?t3gD{h4d4-brbDr|N5E zd7(!nnJp^6!cecoI6ML~+Nv0%HEr3P^G!NRk>>iAgR4v6n;#h5THKo}+nFuX7VH9r z+lMWTVTmAmm2XO=@ehRc%?8mgwapg$O@il$r@FUjkep`&BN@g{E7rUQZ0&R}3tbtc zzR~o*7TlYQfTs%)@_eaTGmxZ=^z3UX_JvyNYi1|<%wGAZxBm%`h

    QnSYkT-r$(c8uYb zcLB&fMFFH~{w3CIE_IzN!n(copK7cpx`GFEj{_$x7aR^xpsSC!HNEjK+mDKqPr8ov z7I`H`H%O`F#}FrLGX*$R-~*G444S{NvDdZTC+z1^@J_dFrrPM1Z4K?iUPl_~S3h`_ zrJhw|kgSZSI6HvHJu9j@TyaMvwNsO%XS_3i)RWq_ww8LHw=dbouiSrDrNN5lp(o+}U~v>$5!0PnS+g5Sem?`deH^As54^Ze2KyzdGl z!Ok(;IpU^TJWW0gA*{<5o$wi{#j5JJ7f{Qk-CNISNxd<~+hb6{a{PQh5d)lZaaQ`L zgkaHpWvgh{iGO`%rmQCB`r6f%VObGdbAgb9EsT@SD{ZLhmzGw)X;;^+WdOf{+Q6;k zZf@f@k-EtkRwS;_4t??KgMQidOFtE9`p%1_T)|~`qRSQZkw-Y$szzXpG=%>E6p@~b zpTbT#2DsKG1zjDIp67kpTADwGw7Bg=PcQ`JZ(?_$9a(dXb5TBteCu#@<=%39z=z;v z>Nq_A09wFU>QP(HvdtdpM0jtD1fJD(W8zsYRgb(jtWaEu$xZg+qAKk+OB||*za52ckK^C)U@@9w1<-A2gM=6?maWW ztmT%sZFa7T3~K!mkHh)a@SM`+9P@@bJ|8B23ECa1=;s|bDdbVs*O55*0Rz6?m1RDk zn@M7}nd2-$3gnOnqMo9&_d9H)KX|l|fDRY%p1z~4Xr!h`ic#pXb7bL*fw=TFAejdd zKO^w-+N-RlvAjadW3=Nf=1x?POnTH;d#%(dFbpswZ{h>zM%#4BN!H^)WU;=8!FuH` z2?jZb^kMz~0IdsluWH^<0hk;etO&+BgWjo?)ubh)Y_|aa0BVr3tc$hsazV+-6!r^v zlFD9ITaD@u3y)fv?Q;m06C1M<3b8rk*V2QMVrMGOP6)xqGgekG+D``g-Nd=TM2wu( z$x^Z+?a(ftEYa$K#@Tfspj-kCSQopVS9_93Vs~Y?bJWxAG})H@TE@cY+#?2E!20(U zq%msS&}#NNc!_WhR7S@=J|+74)>#_u8{*@JWoEXul0Bvc$N++PKbaJ}zNn~fRigydcAwmz&+*GpS^g=pc-_Yyx^zI+mS(r>R@`Uvdl|?T=AY z>DO>w+WB*;#PN_+{v4i|&wAa}UuIElzUZ=+<>OUY2@NBDHBG>L>gE{lF8sf_+(fFU zG6o#D^c?Y25=@BOWmb;^h9`sar`z4{M7WLIgv$jP8@`?Eox;uc7P^*&=3R@MmXi`G zRgB|kBdPh+I%S5X9PMv!bqR#vqR4*{^z;>~@Sli$BR-G!PZMc!#_f|GG3^ENg*bm^MT+^vP~nkBrIolt|2aoZ!kV|66EiroAkc9%IJ@ssUZ%^|!)ExEWE zD5T?afK%53iHpIlb!BsLA@dl=zBOkjc|M1=bYYXl#HhzN`l{n-^B>w;f`tu-QP{5) zB$Kt;`HvWd!wwgKe>&Df;TWDajehXg5w=RIlYzzo0)bx+YGUNsU0Gbgxv?8GBnIzY z-h5A#sNi^WM~OSIIPCoO50E59!7a!h{-0Ws)WnmRuD6)n9iSiL_2P-Ju-i1Y@`(|_ zDsTuV{{XboTxoIyPcIyup_{MNRxcuNYi6q)l1(DAYkPnMPsCAKZJj6{4uayjaL zRHvJ2;HYW$K2b$!;T=M7uW>3t5Fd&|&(j@h^G@)doeA?KxR&BWw`5@K-;u^MMcXyh zS1S(DA>Ez5Mt`@`j!UZ>ke2et_i0tQaoeu|_UG60u4!r}{hcw=!Y=4O&Ny_45hBx2 z2XlpA#198|J$uxW>6$L2&Lfq??)lyZ(wvdX{W?=(xt(sE4boj4fVz-EmM?_j&6<6LIy|m1#46$}#J$htzs%fq9x+hGP z;gyFKtzAywN3ia>V8Hp44T>?q;;A($Z05X@ORL0555&m|WPWu}bG||CqN>_Ut7I|3 za_I?dv^`@zx^_P*mrt^~zLrJ18`c-y1jJyBj)abJMYNDX7@iwZv!9A)<-S1BHk#e! z;&~D+(Jv|&0|US1TKt-A8MKuk+j|?dk^cZ_PiH3H5JWO~^vx`{cJZmW7R;@jGq+Rn z1F80^@4rbE`iK?YMmw2saHR9e>}c=XR_Lz_+clNRV%x9^5$sPCQ}%^vE*Kn|6xyIm zyNyxpE#!QdQH{o)MkR-;%T9c@K_;I!{lpKa@UuL#wjI-cfzl;GD*Sb z2aJ5NP4L~3dn<-(k1AyzT&*&OW*xTrcCFz(iMIa$;OCqa>X$!ee@oUr?Ctku4#G^V zlO6eA<=fLWppND{ozo?q+X8tpDGQ%r+vQoEcT2n)wB`t1WFTyW#uf5ChXnVk@7vnt zpZq&qTt-*;ShhuO@kb{p=kiMvrh5@3(63x}s$EVf?w#Hyds*S>E-{btE32!>#o6s- z==Vc(A_~WZSzZzu*(_V39;5n_%g zQ)F=>j4CMX0Isg9-zuQ-#xBw-Wl0LK4pjdDH>EPybSOj2(y?srZVh#H5&k4K@*eYi zK4y68eXA?1-iz&2m25_fwE%2}#dURcX`;6rnz=OuS3H5Ug&?2EdsCIni5kHQiIkpI zd2eG~U0tm6V);57*Fs0cfltOdA9~kl9w5`;yolOaHM61zW)Hi24yWtsU0qpc#~DT0 zzMmwcHAVaDHrBUMYg$FRHI?WqFv$)Nao3C*)=6XGT}s9ouZzhvgLd|Biyt%Ay1Kl{ z{8tC1ACu(DYu*{syyr`Jl?HN*t(*^Wp0o@)bP(Dbb(lE^A+~@;b#-UulT~K^IQ zRjy<67IU>FRRPhx7!C-c{{Unn%dzg$3)cXWYpbiw%(hAGJzQ&aQ)Y`=zk^thPqbS| zZLPHHa}*Fkl#M}R?0zOOq z7aV(2JnM%fZEQF5F(78Tx{$pQnN7YTc19WGcm9zyxfMAW~xIkbMq1it6gP zNyVm#oK&LhqO#X+>@`M*REd=lLWtuVLiFTg){Hub`@yKiZZyF9ddPg)-Bh}by*^p4 zuCB?&CAoJ;6eQc)`T_AThrB&+0FgBPk}$%gOiMZS13#Tncz43^>No8Kx^3J@Mp4di zK4!YQo;=w+Z{*3#haZ)EQEMN9bo78tdZNh&awd}v^XpaD{vPnkz~b9hgU$nu+lu~` z)zo9uWs~MiGGWG-5kT=;!(p|o<`+aM++o~8{KhHpPic|5Mqz?TMdR}|)z#7bpC>wd zdMqCPI0=&0(iA)aB!hbZJM+a=-|ErLF8hm@nZU+JKT7KAcyYzPO|wbHJOH+#X~xJO zAH+*_q!;$>Ali=+#xf3ZU0q#%7@S^N2FIw}L_=HM22eN~s`A%ew7ZB!sKcD$No5;( zuCA^;nBsOrB#7?3J8f|fo2AaH-9~agS*o*TsKt2{Guudad?mKR}8pO42iJP*)%6R`)&&xzlWo#<4ZMt1$QxoS&vt5&G9xRL>-$_%nty`!g3t z)g;>#4pConyW}$uPAHu}T-3Dpcn@#|e(Sk5Xj;J9RznzC!n64@<*Yu1)f zqt41;BcI{VaaE6N9BbzJj^r-Z%Hq1ZxucRza?e6o;~tO|taeg^5uHP;9uF#ctLrF= zAw+mw5!`pKuA?;AY2ulUw^oAs<(L$4C$Hc+trnZETwBc1$vBZX0JeWaU0q#Mij;Xc z@lD0L`!yOiwQW4bt(kV zN6QVYSuyROoke4F63jwC$A411k@Bvtt>YE6%2RfUMdC{Gt*p&EDiP&v_=z3GYdj%5 z(pig(Yn{?<8{!xxusQ31Ypbg~u~A$Xj!sXLuJy~CYtPwNmq`enOoiefiL=KYGr;18 z)-CV#7)aCg71->m(H6vEkMU>tenz^wvtJsb{{WJ9P~1&-YSMn!g@m#G;tPmJ!U;UL zJ$R#Ubem?-qrI^E!_2Y#d!HD5{xjDfE^Di+N7^ulHVvkDiWjqr+f*qG&_+wk-cQSn z(%M;t^R;aO;<{-AZrvj*W3NG7T~{cmyFnQ_DrE5M_EPApIMb%Jxn^Y!*$T`$fzz5R zPw^WGBes|C7RpzaVYm~H-#Y5*QpUL}9!DgslT3kZb%UrKR^|}nB*uOQ=khh7y1S0- zN~cd_6O4vd+@$)ICmF7;tS8M`v{Fxl&AdZvsA<~1>rcI#XBjInU=!FA+K`=M(HeWZ z6zT9X#!2=+D(dR&QBE> z4ZirZj;uQ1XRkHY)sOp)B;L?_bk~~kMfZ_3a)Kedjs6BBrW@zf8o1Q-``9ibB3nDM zpex|u^!4xa2D-YVFA_y#liJDdEhWBS_j0F|!lHqI4{m*G4OYWZwSncafnIFD1`FNpZ;TUqqza#Xct{%$cOODOUMvelj6&u{+q0jcNuC1jN zNSsn_y9bU4*5z!r$kDnVESAYe9)y~OWQ`(Nt*2=&0V)9ajx*d2E32rFJ(nbxL6F`H z8-|uxq)#}3l|jiP1N~|{s2<|gQeBen{7bi?uCA&28|k4ep8m!rM_;_!zv7L_3;^kd z>?thoG`&bo7oKh8=^B{vxc+?O-nzQ3A0+I`e;S~Jr)iN~EYZ$}Vf&XUA#CyZy3lu; aU9;RVNW_WJPaF?Q>gvT!n)u`NfB)HambjS! literal 0 HcmV?d00001 diff --git a/doc/webserver/team/02jon_t.jpg b/doc/webserver/team/02jon_t.jpg new file mode 100644 index 0000000000000000000000000000000000000000..32e470b58b3ea309ae8f997a3df352a7c1e70e72 GIT binary patch literal 2039 zcmb7s8N=&^*N zY)STxETs&xMY1$uR8%IBxpVL9cJBT6JkNj6`}2B#zF*0pWE_yE?xO4hKp+qhC|y7@ z0yqM2C=3pR!r?GD0s%*&<Acz7;@)Xbj z05BLLeeK@^gF~PI7y&{`sgpbafe<-!6f&gj5|5X4|D;NrsB0U9ZJs1Rq{Evdb z3Xlyns4kJIxPzr983xu%q4cHz*aP!5ctH=7&8EiVck=)Q5(xR$fBJBaFk`z>U3lpG z<>-T7>MBF39VoSfBbYezxE2nE~vX3tgN_ni_PMt` zdLFvO7hpzG8w!fiGPtuy5>%nBSTnTfnR-dW2~nO}D{a{Hu_fKH=8ei}>b$2?mLM)Y zOM_nDq$s-UqfX9nb?Um(w=sx~yDCb6YL6M6t5+7d36$cww?noiy(#tgw||Re+Sdno z)WV~Bu366$x#K3^P4QMT8sp%TtK76(julSY?k1_d8(hfn!x;N%8cC+NuJu{zji9lp z%#UtcG4E7e$Wa6#_)ObCGW__0hLulmX*Di0?=Q1glNq@LY^B3lFJi6J;R)CwJ1=BI zn&EjIDf*A@Sl<2Wm)}n9jLAHJ8hwc5y&N3z9UC;S>U-Kc6H3M&8MIswdy@%GVNCJw zUaTSkrG@FpDLXH0UQ@2(nB>e%T@4cH*oUm}c83He9^czdJWwkE^nThpKRh9Cl#=sD zYGmVM&(s|AXUmpJq!2d~;$+6nr7Z_f@WMRD7TPUN1-Q zG_4%auu608{g7N#&_96hMmaL6sEV!c$cYI8?no>{m@$TQgoiUc41%dNtR3) z+amG;NPAkdK%X#mmcB?773;n6n%X_G4sYY*pGCZS$z6@hrkYio9~7d^lRo3HMRfsf z^J}EMY!q!c1i5g_@1?RPJJECQJcY&I{M@l~kD{i5KdEViw8rKi_U`PvRvLWCGvYHn zBbGAvz=F~lJv4{MHJ?P)GF{?YZa7f0h#4Hs;Mn;7Cy!oQDs|zHvPN^yHQH@6xV%v4 z;3rfDrR2)Rq4}ZLyS~&K(une8Do1xyWxfPJQ7MffybKFA_j5tQ#c)HdR^O>a9hi05 zF!N{rlX~C#11ik7vUoxr|Sa z?{xEIX7f7Pf>13ps@tTG$^Fnj7rAX67XBQN1PGA;0Vk)tHjdc!sBSLVzoQB!e9(^Y zc4ySsC~wRhC5}Z{MBcuVlG1XTV_ROCKApTTf!rh3={!`Sq}yyfokdOAm3+BljN(R_ z<3%1Y>P;HqCu=#vGMB?+#J&;t2I{VCh*7?gJ)AzF!RX){ID62b^4{q?KJe^TX7*7; z3EKzy1CCwxJx-LzCNio4H|LL-xZ9hr>@~Hu1Z4dg2LT~`o#Emu)1O}-6fD`_j+`y| z^p^U=J$QMkfrkee9^(XE<0?NdR+IWEtX#9-(U=OvH}l&G+WpU?SCzCIZ9-?j6eZGoB!wmhf3k1=}RppBE{ni=TjI6?fuSO7T!uv$=r^0x{ z^3|1n-eISI{4O}9{j%yCjW$Uyl7`PJhagRkcz<<@ys zUQ|0Tz@&3AvPv6}?bt($uYdmi%ipTrm-W(*ZO;#~$gi+nsh&YHs^3=@5_T2>0J;PF LmBw2aCK>t{r4x{g literal 0 HcmV?d00001 diff --git a/doc/webserver/team/03andreas.jpg b/doc/webserver/team/03andreas.jpg new file mode 100644 index 0000000000000000000000000000000000000000..78dc102c7544b3db4332cf8951029f023a11e37b GIT binary patch literal 42354 zcmbTdc{r4R_&@rLv9HCb!PvzZCCiZAAcL`wwV|?wQ3+!m)yI}<8pBvKF$OdC5iy}C z%39gRk|YU{BxP%_zwO4f1PvQ&o$3=J^S;T_x;@W{eIoA_rIBc3%~&k+5ruK zKmY*RUx0sq0bd)et(B)M)-~Rj|GI&Lf?ybr85pDj@Einz4}$*n0*d?p z03YaoHQ@hjARaI;AHRU0kg&-937i7}4+sqA;RW;Y@$&AUeP#bRzBFE5x^;D2y|coO!1;Dfw;%DViLR_+3U(NZdUse%w|YI$>ykg7iR zi*!)TxbPu05f$ry-+ z!5J}59LiZmc7+c>0PJFJVGiGMo;;Yl6W?wH2`=C57S3W=ZPNH;7_$5@8qOs@j02dE zT=H81h46~};OP|Wc-CUNLv{qol5)$zm$z+w`N)`Wuyvm`!wO@A<> zk}dCi1UM#B$yU6kd+m4xN)s;#ABMO`iLPX`VeXqKK1B>131G2%mF6`dcy~o!7XYs` zuQeS@PXbq;h>{O(PuaG>3)x$sX*^uHs?L-FPj;e%BK)Y%-?9S|zjbtb%yZ_|6;epmT=Knmd(u|wH zV(_ioUDY%le+v;!h;U`B@mSD>$V!uK8UC(cYHo)k-lK0@TfIE8hr(Rpz8yq80p5dLgor<0v}xn4r^#aANX(y z_ZK!a4+*?mM_c{m^5Bgiz^AbYAq}rzy;tLKj=SLZNWrmVOI+Bk=)Uw>p_P+iARuiLadH9X9?(%w)9)vERX(tD-toBWTrGYb<0O9pfOosL` z8D>Q)AH>at4}9njIt(`%4O0YW&z5!%wG2==&@9}qb zOAhlz9PnY}Rb(+E7y?v~#AK>?xNh(r2+%4UiN^yStSXX_5rc2DPo{!A2AVBebND_c zrgNB{FYGk_AsqCo;?8^#GV>TDEiD?wZ%1$+ilXis$oDS7x9R6)&lkp*3y$CM0B89B znzDP)j(`>l6AwhRTxJk*iIaCE@#j3AjUy$iFDxZ*VT2WexjSes%=VaMo5m1IiD>Z;Q|l6TAfjF|!PhZj zCy*gjl(5Mdaolc)0cL3+uao?DszA0fOa|XDq_}e5QDFB!^{PDf5&0xY?|ul$%@J`J z)?{v=_|(nU@cK@GyF=c0H%*|D1@D2R6`8r|5@soy`Y0s8;7$;RwZq%f)$?VY#%cV= zWUBrmJ0OB?;ln4)xD(KhMUoXw6KL(^x(@@84yJk@2QWppYfM09B_LpV2ii?0c-@QD zKI1mpv;P5yNMhU3}f9wl{*%Jes122!3r` zSuCKX-@mAHxSCPjAl78zqj<*doi`xZUAGZ9nU+**bLm|HRB8bH zpfIz{eFjD(QPcb^bzs?Sq3rzO@SD)?<(-<8t+@~?iF@GOBWpSN7Ob;O7Ua3Wyg<#m z>uqoS@g)rl+`>OVaN{$=SOt4Rd9jMB@((D)*!&k;l09-`x$te`jL!=!S#ZSa=RZJq znCJe3{Jj%riOw??yXQ__{|9mVz7=WQL z72mtxm6w1n-V*!}R2pKS9ZmMJg!G|f2;PgGssLTgHdVHFkMYyXx6$h@@9w5IXeE^t zzTq(Gj=E`>tr2CZbKw9n_&2_IV-0JUmMgJGa8DjH)W+*O(BKC;j4JZDBwkHO7*8Gx zBD$YbG0npPBi676&Z4zj4CYP`AB5b_T!mnRvR6^!{N$fpVSSXa*m2^e3vLqoE}rCu z@5*KaW8eo|cPooYQ3-)*@;J?8Oqqbj!`D#*3HyOE+07CM6`6o^tk5*WL3s0;5%@5m zxwP)JoG1Se_&KG+H;SuHR_S#@ol9LN*(epRibkRNtYugW$`*gFnHb3i`6(X9jio8R zsS(+t5Gbv$?U@;AhwN>n9%?W)vHfJmIHhzFss zDtoWpj(bhf{QCN6$vwlK?-C<9{`?nf9It>_QX3Y22gHd|*w0w|rep8C-jCP?_Sxt8 z-QZ2u-+cUo?45i%>uuukg$S=nWdt*8Kp;)?6y*cwTF|^3uR=K*U#)MVnr6Kt!14MO z@hEyraW9dF-UgHlP#xXZViI&4QjB`cCrUiT)t@!bih1Lwd^4gP)=EeP+9YiSr15e{ z=q+99t+U6PvO1+^mM8plA9x*cxVqhw<=X%8ElKD* z@$B4)xcypc`pLWjI6_F^B@5N>B_r;PycT45vmazEGm5!6CK>;A!{gGRY5R_W9870b z`sAyF4Usc|6lJE~Rwrip_*G}r>1Ik9=8|ZFu37wUb^Cp7Eq%C_(h{Zh+VY4CbkC^H zRaa7~32qLU!%tbM9#tdv^FlE^aZUv&pa>Mn+ zhtoIgiK2xw=K5XwN;UGNHsucGzy>27*^rH%lW#w36)*)aA4CGQu^Tlb|p7wdp`k% z?^UE;lVQ+oP}lZH7^`2HPzD&8pWoUKY28nvJJwPAd0?fbfzn~)HI$hLKKTzEgePn| zkKk>AYwOb_mmi}z6E|>6-+s;%n!%Iq*mq*x5hcPUxvpC6N12Rm=g`;Fb^d36*ewqQ z&u8uNOm6?7>&57ETTpuTYEkj@v^%1%1RZ(QGVOsUPvR(4VUm80d93-h2paX{j+yw? z0>%yRm&4RFK2ubU^1+JCIh^a~RQv8ZqvJV52{*(ky!eR}SXJT@$#?m<>S5G;3OUb( zG;8$5A}Hchd_DQI@u)HKj*UCQ?tHX%y!Er{U+nu#*$X5QolBR8XdUlW4aZgP){0G6 z6d#Vf>XCh>HBYnr@i`aI6c_!?Q`@Kdp&Rl3|0R%aZ&*k7?A6Q_E|;=(nG^I-LgOFCg=@dk=T52-zMhq^@ACKfBPXG6WDh1#QE`4V*otB$IX zqvWQkZmYakJsU_0Evnl6S%)psN-#`J`RH$vk_jifaz#vRR4L0|%{_W1@QmJ5V8;L& zW>eN_E>v&fSo^~T-*2`Hy%ZsEzF^s@arwPzXgzF|#ytSjk(V%#dac9PjEc!m`ltz- zi%N`W8lw&)tko{W8l0SIu>1C4Le|h<2j;bMEhoiJm1RBX2;+9O3P|2}6|lUfWR`{) z$Sa}FgjVS0Tx}gUJm|kFFQ%zRNn#=r&DXk@uY?C6nb&Mmtp8@_@YpXwnAa}kL_4Yi ziDb|x%^ShmdJ$%@Xl(P+Y(gniX*h{x_n84kLkyG_Euo(|xr{(|71o$Ok%BC^MDwB*1^%UQ9b2`k#rugRQdo z{{#outCQVvV95BotrE<9jo>_b7YFJCH!;7`&Rdvp>3rDs{3V_g$(5z7TCa+0RhK24 z^49FFHgeBnxTD{~q6ZpX*KFbuaL4Fn(c^>>Q&MY={{1zJlYiGf{wEynMrusFuw!0# zR$uG^dNw)lMJrC$y3kSezX8R@fb6T{be+u%DZIdSsOVLT|$g@8PtA-KY|5x$}ZCp zcA;t+``y$#!Da+RJ&VS%R+`EshY~E$Z-owt!y2?jm{{f+^ zykWFEm9}7sPh5ppknbCE32%lk*;N~Ta((B)P6hK`Ezq{D3*~twHONza`sicS35n_Z zg}tBG$lrGBoBWWc-KciD5yd0w1?o{gRJ*<8{w2*6;>(cxgUbhW@Lc?d=VaIwg#WWW z`z1e@P)ns+N?Dh&laBe7`pS#u6{b`q`z^k5~b{qjHw%-THdeekcO#$&+=i6_&ZvFkTncnBs&K;Q5sk7&mHNFu$Vvj3OC0TSk zn8mG~HhbW$r$cy6Ql7}K+1Assx0syFSSz_u$c%1XDL3pRQ2XL?XO7c*Mac__5tYgK zysbuQG@|21lyOJ!4?9@8`(SmXiFe5~n|_^^W-s^&KR4W4;aQ+CCwpFW+Z%JBnv~IK z*NdB-2u=gYm3Oss zlDbZ}1Um#&?)nX{&(>wAg-ARpaG72RriTZN-<8{3bFK5<4o-`TUh_^55w?bzV1Hr> zR%b(1v>;MfhUWP?EI-w$Re+1#|>(UGg`TqJ08V;`;nO-T3)JmoHSfIU17FiU(|H z1wMMfI_Xi3y%B2*9Ak%U#0MFTN2jK5u6Z15y0Ei50=Ktc`|eef2d1~)kv%CA3L16y zuDlO!GB8m;Ov{1GBjkcr{Jchas(e%AHJ`7!ZjexDl{untFz)Ub^1(ST79=wR>HXwj z8;mA7Zl$(s5aBCuHdUJgzCqbf%2k6KsOeG9~IdH3zZe50ga?e(ON&g= z{85MonlGRw_G-17_|dGKp3X+?eH<{VTRn_0dR}^b+zzZk8tRxJY5s_D#cZy$deBX# z&%Gh#oGL1_@~#S5+cW#=hklc$>-GNr4pe&De@3+MT#rUIC#)-nkYdD!kXhgooqKyV z@`7d*t*hs4O8DwLULP=AVq>X!H*-+Gopruc%iH?rzA57PoD&vOW#f~JTgO35a&>OZ zl;{B$#EB1@W6fgIcV;Ne?t%d`O6%^dgBoF)UM?g3@E;(J`BJBoIO3D0|GN%NU=J;h z)5F(nb*vm5cbJ>j&=~k4nPw@>i+1RfS;;eVN6mcNF=A|!BJo$Qd;mE^N_HwzZ|!q! zNCiA$1U_ezscFI`poRfBGK|g34NHMTKaJDzrtTz=xZCMw>{Fq_P*ha?^c}ejGjUVU zB#m>l_9DL35DI?ycE;1boz;Q)Y3sG+(}ugtYuXr0jQb#huctGlEU=;BHFe z?RVkEKD9u3HoCI5YtYb~@(@E79&wu2RiS`W$)HUi6v0EB{MgCu@P^e74q%Edt=d;qyLZ>hXIS-N4y9P&+{D05 zDM6*f#&#UjOC04C)+XjqiH|v4ExdY(hw4M~-)AHb_8~pG`?PJrs#@+;4@pfqh)@pI z*+7}ur!?94-2H^~x$DwW0hIi-zIavqUfufy9%tWzs~+wJKN9Plj-GQ4ZL#;=TdZ@g zt{`ux`kjlOWfYhO)!G+H6&La;rJqVTbk2A2!O*b*4e8S8i)|Xx%#biRthMP9R`=U^ zg%zHL#Q!-u;uxH{(h_;>gziy`Ob*tVB~={#5n%ugq!+XOZYe2J5Vf4EQOuJ|zZz2&HPUF=Ao6)=V<58@ZQTGjO|BW>0t&(C3@u95Ban5*ua zIGI~^SHmk(1u(ij3|aGN6tHf)PXMEYW@O=eObz)Db24Jbj>s_L4oe`8g$-h5*!L}jIsL`@u=wh{aMGN z{?9)Y3(%kYox-Aac4{Nvf4a%a{}Cy{Z$rO=D8K3UStc^^o58svxMOzd!1GV$2t%lm zJC$P5DwwI`cOlpe*34#`ybTJ73(k!w?UYmFB@C$F-|$k-5Z5DeFSH+X776DXZLg1* z<3Cvh(~E}uTh^t!XHpf?&G7zJw)vHfw@cj8(g=OWW%aM$)2FDxUI5 zwH|ErEvkpg76PMgyUKE@AHan~5JoYjo)QFm=5-ZvD0AQV-MTbCb{MFFMsY-LLz02| zi)d2tL0d~6%A7}j0>fF*M-@_z$1kMYrbN!gR!S>S$prfJh@rBo zfboLom*Y+)^>G&YZHTPMuMhd)bB30(ku)KKT#Vo|>RV~oV2dhNXJDo2_j5m7Iquq# z0aV|syZmPj1jl5i zM0Bbu^f^xvBv=unnG12Z1%RLKbi6({E&M=NJ5wn%PgNdYg%ShoUT(1+a4w ztWjh*&q_89sjc<8<#F^$GeXFQJ$Qk-lwjN!qyvwn$ zo&S4Ae`M-6JhXr1>?2|rN4Lnj;u;{fyx8z0qlBJT*V{4cjPK=*svMC7%O8SMyv4j7xlXFV?bI~JmQ7J*yO#N z2OSIoeZUYE9)w#vfR*L--=;OyraE~J7{EXA9TMRo#m{lC87&rgWh1$Opzi*rc>YG| zFx)I8zM?1Qh_^Xf%)XYC&m*2(hQsnC)53k^+8!A(lr&@(S+C1jP%!I|bbnG1wPLR} z1#7aHzl85z@Q^(xaATFFo2PPDdPI{gxk|~*B(3Q0U0ic)^=i8XOp0cB`W}yw?A&D{ z?ANe$vhh#p;Y}p6ai8@%1y$d0yY5p)3079?-utT@p)*9U`>>!2RZ_UEP%wYpVEZ~w z@A$gs%9+-&;!=}n8grF{$8;u7$JTjH-*{$=pOjuEocgA#n!}7rROg(I>8O*ee&JwV zfAWPoS*RSO;r(mi^FN@h3UMvn#Hn5FfW5*L`|?APHjf@@^te#_fOCIq*Z2$kTnhJ) zYraC1mUi4FouvsQc9_71pnw%r<4awFF6f>W*(B!?7-Mdr0#YXlT9 zSZU_|of|!!Bk1fHSxnW@+nAW~U~ z!STLlaT1I1iKX1}3}$(CcH*av4(D|Jake>j&-70E(R1#d}`JKfdDxuPML?msDml)D9QuG4RS-}bP z+#GT8X_xaJ&@6`U_tLzh^C;~)sE>M*l zE`O7^dFQEc70 zKceI*EgT*4q}IMzhAorF_K3dEmQusc60$MXY5{|u6i&r{H`*1q|IxBEnA{L5%7#X6t5siC^88Un~2pw!#(+Sh=vRd}C z%~N?M-h0(RiA+72h!FF2cS<`#VG5dSPKKt4dY$h$8ExRJA)Q_8)%_WlRVC`Uech*|#RjW`GY!f2`5a|63LOk{uH((Z#)y*_B~RWpjB*t= z*PXv>P`h1tye}){t?Q#R5`z*vIj;`>s(Ihio>TdAGTS)JRxu8Z=*&Ho7rg{dox%1! zPs67n%Pl)hvt`!2JKrD6(J>Vs(R-gpNo(|LTpFwmrJ}PQ?ez@2!{t=<$(Yfnuv4Bf z{|P^a8V@zRHo;fy-q+u)|IpE07hlh9JrMBKckshalNv1Ii4>(kRy)es?RVjTU{fw#L|J0qSUBP_`<_!;+ii^ z!{#e_7fa;mkFW74T)DpFKu2k?l#R{t4Fo6eBjPE+uwN4sVP`lzlmfVF6`Vh_)h6-s zWQu$TYoFr59_o*F7G69waDf}QLM8>Sf7Hyseiiw&0NJry^NK>8Oz9Xf4|i{)_urO7 zJ{Hh`c+JU-+q`&Z7n!Ns^20sHQ&wno{&u3-4kPG)?~_dG1UHTgY_kl#dEq@03+tCxc(0jd*|k$CN{q`LCeXTY5C* z+n1Td*oKESj=$$(Ro7@U_PtcgZ~2mZVNPH}6H)IQ@2P2H7e87G#|+$wzx1w0+7q!3KOY*EVo8-|8PAJ9PP`{by&q*(Fh{mg^VNwDiz_wy2Zz zh;h-eHcR+kz1Esn<*3491DGZ#@92P9xh-1IL_S~Eo=3QU{%YU@egCO$6>ouQntVSj zjAZSAEJcLexVI{8(~+FIPiqH*AsiK9f3CYjN=K!7Zhq_@gKq=1L34RJoxSQ5^lP6Q z*{|cseN@^U)}iBHZ91vv0ZZRIr0c60Igy_`r;WUWQ}ju5EmrbP0agPScGau=q$N*P zzXr|fj6~_L`M>7ryS*dLHr36FPEY?q8%_KUi03OQYdx|~4hSu=_eiz*O#&=&A;E-w zIgITMspK$~`x}AYMgk&pKc`PKLzbG@&qEYS#HS<;(vV746ao2&dEHj=mGT?XFbc~$g8O$s>>v^XdvU;sCkk&n2s5X7_| zP&MkOOi#x3E~*&!;7;29Hj$ zTIH5@>MncoF6KBCm=PSBeeVgHB@FA7C=?vXA)P3pSq0gQ8c69LOEGbisl9e54wNiB zyzU;BKCCq~Ln62TbOXz=te0wPeaW8U4r|kC_V&iA)Ai2~LuScSNhY#PEeLaj;Hmz> zIo#ppY%Qki{K+tba$d=e087xx@v1({`5LRIOOFz3R=HK+dl<*v>qWs$7OuUY_^Hh#cucIJeEJTbgrGwq|twl=u1e zwDUm*N=seAs#Ub(h{>_LFCuh5ASSiasi#UsVt#|6KfT6NI4&x{Q0;iC0Nplpn0n5B zK&7OUOyP)s$}u6)EcAbPw(6Z*4w+0Li%%&!5j|ek$ghbO>j)rsWTc@`1HHvmVSZO` z8OalOa_&WUE!479FK79Tadn91Vi{RHJlsn8UiAJ5%$(0&V!sd``wuu?5_C&^IXNMy zbZ~8&DHtVyx%y(S&+A(BtwF|J$Ui{4q>}8>e2ki6RjrW!r<0;7gTIl&LO(C)^F>TT z|Ae3OuUe;Ql1PlDE?nY>v9t_|AE;@XP}0il-glT@jQl65Hw=!6FPq;ZIBAflZmLQP zp)@lycz;e_%-irVl1J$2;X$C9x5l-l$)t=`=c@|~v&5Wx0@l{2Gd+Uycx%n#n5CrJz^SCZ3o$L) zzupI`lo3+~VGm>94E~&|?~%cR1{Dg5A*toy2PG?Peg1x_=bC?yEPDs?`a=e;YWc(< zU$|N`C4%gvOA$Hm9@495`r#dsS6x}SGX*XZtKKhJ?%)BOzP&j<*$uQ`L;p3|nt}<2 z4?B>Ikljy)0dD+0#g*r{%iI^aLA%1&?Tso@Md&+^^53$K0RoMhM65ea8*tY7>Qbd( z3x+07eu;V*{W3SAW6j0RBEWc$aqwzP{m`;>!&+Gan6YyAY|{}J9bImVqOtLYHT1nf zIE-2M6i41?$fk4T8HAS4y($@)JK)%AaW%S z&o}y&i2j_Et@sd`;#nv7H|~t#2x`My)%ars&Y(k&K4tQCr;Z+QEOoj>UEP_nEY3N~ z+(APAa`be%yX)$=me$^OVY0RZgmY|5Cf5dGo{odH9%jOPu^0%A>OnE#);^hRE;q~D zsk6tEb(3z7T6rHd31d`O)IbME3D|ehbVTlv!9W)ikNBL3NqZ=99MQN?$v(uV@<21R z)_VE!lu~wyL_afRu{2}ZTWiD=`y-I(c}M&+(JhgoZAT`%sSLx7Epd59XT;6nV(tP( zbW@Mca`I#!zb;wWtr{i{Fr4#Gn@)&c_D;R^SQ?VEFHy{7x}RG$o4jB+^$*Z0iLXMQ zf+8ER)RTGX-8H_7n9lJpRxnRVCE+Mdq-pWJOk?nL7ORl0CmPnJqh!WydW|>%7U1~A z=tV43cX#Ua)S=04YUtmj#?`T@>qh+b?F%azDR(tRwe;3a?b(`%GV<$stF>$u^2(0> z!#|o?8mh=|Km1fv*StQ7Z|I2G%Oh-FwE;c-Ur4 zZ<%WP_rG4aP+kd}pPt{s%A&p8GW+orr{do#+v22ol>kt^$gunEN0SNr;y(B3d?GjD z8*9Wn_1cl+9GIIb7}+WdhlWz}-CU7^XIYS9hI{m_eTfAlXuJgL1_#t{U#VTWO&sG5 z*=5~Qh*_-)H(%SYmf(Q4sJ^ds7k#hd7`b(9{W;$Q5o@7i`7F7 z&bcQR0lLE%acJx1Z#C4Yxv`XzY|O(0-NRlP7s2MbK2lX$>TxHN2&t()Dp#7tSDWgR zV8TQUX!Rw@wmR4$1kt%`Hu>n%PziaO;IAdWPYH(?+|FVyV4EY*H}b)o^Hr39j$MN? z$c2HdURvuRTkw0~%DeJ-Uwlz{ehbftz%=_7QvgVNQ?E8GoN~ri;2tShzg>@qHzcky zKN9_+w7Eyo|EmX^TdSy}@T1Z85=_4QIpuYhA7#-~si900maDm?Oqg5yJ1gO>`cc=z zF9KBdoVrIJfXS}#z0MrExE!lCRn~g*@R3ycFS_?BZYv#=R~R}kBH5qBaH+k;;w(jT zhk-SJcDfV0-Qv5$`_!ScL0ayStZPFt_mn>n$p3(Aa-cEPistDPVc~;6Wn&!o9jn53 z_fyShw3IL8EM52hh)Bjij`x!}nCnSgNkLY`nJx3oQ9Vwyt(-Rwn~AD{(j98Yzkv!h zW^a*tKZBOce@?oTEKH1N+R6MJ+sqqU$?>-z3xmPjK2)x(Dq_M1uWIHxeYe#1G0O>W z|8|b)HuSO!5LK9|DRioF?_S?8v_eXjC)yi&X{WR3l`|73iu@x7&ASkXbM&vl4e3AX z0$=D~RNEThRd`b)!z_JSla#($AKY$)oa&S$ zA2J?|Y%Rf{@7z!9^K1w6l7ddxTZl*m&rHS)ab7>53u>^mctZ4av^L!%u_$%g3kTJ< zh=$EVvn?@X+TyeLucz8he_YNzWU-4`$kC@%)gCkqdl)zD*}i-wV)FZtN-btib{xhH zb$)dOLQh$&ds=2@i1@Vr2)y?Ar>Bm_P?|ApI#VL5U9ANc23?)5?}I8G{OvS4@Jc&lCtE0GV3wUAB9%2Jvh}xS2<$AOqaRLxO{dlKnK&VRRD&?>VUQGf87Jcnl~OS5E}2?5o;&7~1NvXK+kpsW(li-Wad`sLNp zdEL)D!#=0es6NDJLLXWG07L`iM$4u*+fT2_Tt@hBERy$N+sLCoS~0!3B`ZzShO5(@ z@($l+lq)C-5#oQQY8Kq&MeWuwpv1klpA@^NFD?!YY}dT*y#cwgu==O+)Yko2LS?8! zZ$Psux2|DS>x;|m>ig*s>dk`;^W-tw`)87#>h_=Yy#|L?OlCUzQCLe{sbVr@bPR56 z@bo@A_UUG7nU(vUUzwwu(7(uJy~*(p&lC0tO$&w=oBkf?itO}~rgeJ3%F5c@a>wdj z^&Cv^pT+-V&2LY>T2tTkjFBoUue&$ztaUjfSTPpn!z;gK@on8zFCdIiD?e<3y4W=` zm{cR4Xf!&{UnnC#v(Un~Onxc9cMXs(_?ECrqM3Hawktm*^cnDIQ{OalSN=YS0PZA52f{souPPLQC%`*Y+$@j3Iu?6*Eb(-uom~=)SG7+bAg^eHvB2 z>et^b(OKQLio1VCuQ_Y`sD8g|)4+CP0)KpM4_juoQOMi>eWnO8o7fi74~6Is`mfG6 zeY$K_bw*ve1M3<*%?Z4%E8iFLndH=-7jljw^vTrgcBrt<0F6OrEA^~GYoDggPo0pz z_3qD_W1;bf!+Bm$SLjULh1hak-!g)<0CW^{;}PViumh|_gV?xr(OQ6;*`v~3koeS7 z-~QPvc|=Eypa7RC3Jq?r_$KGAT4*=lP};$yX0-IaDN*buB?6DnK0tJSx>28(!lWe} z$?E7JoG6kpjs8J<(SB#pX8Tf%kj1Tkz{}c@c7E?Dbo|#mU!MmB4NA4eJ_5PUxQB;c z--;%b72i~4NSA6wiUX!abWUl~q6lBfgXW+_bIbmk=ZlG+fy$%hs{eqyIP}pG?Brzp zxu-{m>3=8pI^~2y=Y)O@G@iem*Bj}-K^B_}=6GI=a9Tz){vbL|!REt447@VkSoicP z`h9r28XJP_xqHJss-*37wrk0TO)4e-{mVv=s?lF7c~t|WD@0^@!F^R-0ctxryT9(C z-ecpH_PoVg+&hk%;Ogf#iB-GzKfmh!yP+`5*t_vbEx%}OTR0^5l1G|^jKPp4Nn0)w zdo-22#GkroH>WTA^Q&D;NXOhP&FWzprs{<_VeQn``RHea_xBd_ez_b1w)8*lzhqtr z%TX--r2!<|{dVv*{xbQwBRy|ka#UUD7q0m!P3Q-ig82oPDFs-&t;)Brjp`3>85<88 zxcmeDpyaomF9n9%u3{DnMi7=96S@Q28L?;7pq@H*;)36_j0DVQ0iH^P`rZ^}WLh zq3B;t61tft)Um7i_kE6OJrugg9Mxi+GfTPLJbC4cR?O=s`}z2em&d5}dE%39^yN2o z@|2ZJ9)3FQBAFw}vVFs)v1^s$6HgD-MI(%%pX}L*myN40^kgjmY_1RdI_H`8&U3e+ z_0dlo%03EpZxaJ8y%$?qijL6Z_pfrxEva>B&7siu?gPS@ezBnPZ-Ikq1@ghlFs zOTG}V;4j-Kup9l<4*M+nj^);MODvn$R(sB+lI~B8Eo{6010pny)^^!fI9_u8L*vZ% zFSs3p{@=YfeD4L61)pm9Fk7N=TrPIN<_uN-$)Kt1o#&LmZMXrg{z%8w{-aw-7E>aj zC;$7k(ttZ(REP}~xv8r9tEx+U)t+-(e!R9p%;rhdy_P3}moVdAuIMntp=s6FxAOCS zN{1y@kGBIauaqaIz4RsDKD%`RXy)X2=E zsGsQT{GY2qsS)AVD95`fK-A^on*aYvFlY^tTS=?yg;XC0b6Qwt|2nmV}dWG zdv(5L^j7Q=b+4xR^W=M%({7bmbD0)09U&8$3pkPajd`bazS?GfV$Yco+og*Z{cgUr zZ++a+OZ57@scxGi72Q^sI(7B&l1r(k!!^t}$>bj(ezVi-ikacjLvojsibO5WBp-*- zC0MwxW!EaWtwNEndyijI3sw@eIXnagIr>oXe=R3l@&7HJR=S_+b0MmKe?r*$ON-rz zb&s!yNw1v$Os46N2yRSw9r;w-yDfVcTa|5{^_dj_`Oz}}#<3*S?qK?NO@qw!qvR?r z4L7va%z*00^Y>c5uIZ_tcK5518*;zo^y(Na?jwrMAQ7mv%7j?U(14De_?xc zjEp-b$$!}PGn2ij!FK1X_q%>rH*4+?kR8$SUtzw4Q|i7OjQ*QJTM?pR3aiqu*JdsAs-JEJ*}3)pTFfua`rxs8?utpjS)gb1hR1x8 zVd19*p8XHzNXNvoIA{hf!3jBkR#&i$VDXsPf@^84ekcW4!P@jj7Wmd%#l?=^w+P~a z@ciDXb-x<#rpM10@!EDphgY1>FWxAqaU}4Qx>adaJ@P^|Z@^22oc+8`JSCkI@)j=w z54x2m5CIwX7kA}8xGQY;aARK$A%(UqB}i&g&>oXM?(fk5fNaWt@0p2zB3NIp8Enea z#I8ps)?S_h;}@oazV9n+wKZmhKA*os=rUD#(S}HAjubE`)^3E!UkAT5*Fx-VxyATy ze9|(Kd-zJYN2VVYWTcpFzzleBd$QrD++o@F+(X`k&gh=HypNAN&|X2mq6W+~|8gEz zez(vxbWZ&A39#^0ReZ+ydWC7&GHWG@q2Blj@BVn+QLWV&#?q)AmUmftrmJ(Y;Z=`8 z&`Zzaiy^0Et`{5c$s> zY^60Lsp3_s!zVtm;LmL{9NrJ?hy@YHm-+*9sB%xD>WCjcBZ~6 zF=o{3%W!AzN!8m7l@P$l5_jvg9HG6HU~PDK;}>F=)HG4nAS|6ujug2ZjGdxw9pOub=qQj->APJ(5Xq?rHR%+t5NvfwNF zwnkH-r&Sk9Y3b4VR3CVZko03Du2>T9~e^GNd? zz|t*(rB$@oo)tjFs zriy+eM6!8aS5WtA+u{Xy|3k?8-mAO8TLJO?NrFNH=PE3W=OoF0Gk*oujMxz0C@)_)1U6#b!+}8iOB!@PG|&yE`m*+dOx>6;lgRpcmpTt zXt>~FDqOy3@U{w%4PKdj_MbBD<=0JbV~zAvSJi$XyEN^via(BB0%tlBiYw?fr<;tC z-#3_e!-W-2N12}l=f));bF0P1HwT+QFT0#C1$^Lt=kmBUB*O@{TkCq-7LIHTQkQwF_~~`ND%yIddMEsdM?6yi=JudT})~{PsEssh(Q! zvgZZ8$qAm3l?aBNghz`}OeTG5#r_aj)%1C9h2-I9ZOq-m;P(>y=409 zIkaVnt$Ah zzw?&bPw>XgZFqreS2!+ro+|*LUVUbG>sH5c`hNGE;$0P26fmv&EQbbJW?8QbhdJ6I! zhnb(VF>3W~MntpHZg1IuSeI&y@>u$Qb>)_}?KH8(qbyigRV8I}j<>xl9mj<%c3S`KnrE;uGZrCTGj|hzkxMc;VHD}P4nZ7`$JV;Id`LB0xTLs>-WH8Y<{0(@3C}#& zJvN?O=2ZEyo+>e9(YRJZ0p_hpsnd*+v*PqkM@Nxja9Sm1>(;!cXvWTZgZcYcc=pms zl}>@bdJT{gv{6pef?RLXXvAF?Yu!KbluLA>)dFy}& z;aJe7&{+K|u)5I};#nkU6ZarSJg<}xJDd(rJ!+l4nF9kMg}_F^1&;=t=gjWR;fCZ^ zM@Qj%U$f|HWaG@q{4#5o@fMR3-aPii^T`#l_SvJAAYekDlznQw%rmrr?#kzoM`~Qg zk)fuiDILtV%mac)L0VRqPV$H7Ju1!4o){9T!8KkRGZW(k3YR3u$l}e2=iVufbJn0m zDgZpxxGZo5XR)R3wJTi=#O>%S1H|w9y9oaPyAdbx#dOyYv4O{^z^*r4n9HfU=ZL_J zejHZR-OhTNF*H~NmjtlmrEM*`#d?Pv6N6A`HpUp&BjzTwqKnSF2nRrOO}?g4)<&J3 zl3cS8I2;OFttdUbvEz^`?vfTcJiKEBaaz+x4awt%&1Bt=Q`sp%@=0RyrD)GoBpRb8 zNk5%*9wLM6+O(_Fcg#OJz&I>VYS~=z=Nn0)0U11+7-J*aoMh{YjIlLD2x-8bw3x>| z=`u;rYGM?>IHv9nx{Rt4OC)yLy6g*!LB25lI>1xz7g2d3C31 zcXm;E@K{8$-Nohr=(s<;P=4^>yo!)1!1kvBk;vwv=S{3CZ3)w@S&0=Cm0y_ms>h+n_n3t^B!Zn(u~Ni?@Ec8#g& znl6N**iUfR8)F}JPIK!+ZHhnTntW{Xg;SX#EKkjUz%dq>qXfuD2Qlw#!e6y~Cg z&lqZe+oqct$ZRu__5Qf5-wW9Jw+7|cD5n7X)@Iv{Q&2lWc_e?sK7zdp$4-w=vPdK3 z0g~A2Yobq;Sse72G`X2}-v=12t5i6wi%>Tx^sUQg3ZT{u^b>X`RocK2+M_NyGC$&QCS0^0*0CttY&A%ZOE%x6D_E56il%UrzhiR*A)xH!2l3Py+%?+83f{;%SjW( zCzZTy`^1y@)d#mi#{+7z@;${!^0M{LX@*_hMI6kf6hSm7(!~2l<#2y0e2A^qo=9%g z$K-KE$6~y(fH(rGwYV+1uIMf*g}C{$c3h9uw)!9N!`J%MJ%S70M@oap)T1BXAXe4z+bWU9Mr$JNPEu9s2x`!| zxJi;1L!HP!JXUwm_8{${#CXyWxA94iSvjsq$6b$&q#kqt_1Fz^4BY!x(b(~^AH-#1 zoaZ#91~{RZ=NP8%#wztW#})om)?6u|KRBSbtpG>OCp9hs=}IFcQ@D$Ode8+e9qI;! z80|$AcBBIKqx2LGO)fi70Yw9fUex^t9cgJX#RK2HD*&0G@j<4VVX@zMCUB^@>Z2c_ ztp|6K`|QJ*_m^+!T)%@Ze7nbwwm~1Qc2)=^)oxGwSQUhond{P*G*PM|^5Yx~n&iAw z7w&xDRvi8n+g*${2WsZ^tA9Sxl=kM7bY;#Q(PtS63uzhWb7w!DShr#%$*O@GIo>wl zFG{fi`NeA^&x*6Ly=Z=4deM!#R$Zf3tOIvGm4uGS>`W9gjMYp1H7}uMWf{T6Xe@cD zRSxV5i`cs!X+5r^p~*P3c_9-iN7&fjzK0#Xt3KaTys>;n@Uj_X5~w(+&ZYqn^jka~bY{&l4XjO>s4$Q=*2G?Vxva3y44 zq2u~iT;2_yAV?zv(W%~>-3>yb*_|YQD$-x9uBYBMKhmXN5oqjqxjg#B{{Z1!Z~P+H zL9>JT(tpA?cgY#!(9*Rq{psC*!bhU)AL&Op{{WsZ{uHa?eIPpzwP0g|}-C$saK}_ovHDEmZFp#M)41Fv%nEG5e=DKljaa(fD)3cd$o18eE1Mlt_)| z#<>J!92Us>5nfFXg>K0oF&y+Jy9*h7L1}K5@m-aPR44_X01lYuw1T9!{7h;`5%x>^ z?uoAGkgWHbOluQ1Jjrz!5NFc_^Y~XWABdwVD$8|aYqS!h%aUee>GF^O_p4f-i>YeQ zo4dl}({pk8)fMn$D7I<#MSGT*nx72kd*j8xfc-8<; zFv2~goO%;jo-WjniuK~!O_VlvK|&-p@d%XToz0A7`}$U*cy`X*jjOo-0JY6tg4H8m zkYb03y0SqWB2wm)xkEtk^mZ|<(jaS&q?{1EcCA_13;-&@ZIR>JsY?5tRt>iGI#g27 zp4B>5#ku(fWI}s-R;8{$B+_Q9V)*5H3a>Xj_o-CnX^wz{%|}v^k$aqGxzcvsdoiw} z>Ku->%w49*c zYLhTl864HAwV{KgrK!hRc$)UvRbEdqM`?a<{=ID3_`x@WEISTynA?xmtT%>jZb{&) zA4;hwfx#rlF&|c^%?G%>okg=ZBk^vUNXP)7Umpx`KhgOZa~D*d;H?O;k4Ve?fO#A)&*M+o$GCe+osUCn z`!vq$h{xkqn_IAtmbp&7fj`o?h0^ZWbU&?49)ooJkbf#UA>3E0`W+?TimZ`y4);Eo zz^-pm@g3FRD1}iEWd}c=YRrBTxNr&Jdz#X=@S3A9nE5Bts_>4)%AHAkOy(?YCcd~E zvR5ND+C^@**2;=F0~IuO5!w={IUVWKoX7O3b8V5yWMSNqob=6E@cp@#@G%5|>)NYa z@Z5eC(`Z(qAx0fYs&7JQLz;IqWwzdcdRBZ&@oEu9e(MqdHPOa^uS&|+BJ!j2m#8@g zvt5ruUkSqa;&9r^s^e&01#<R}Ek@j%DG*7gn2Aw=S42Xc zv3a%6OVWTAicZv{tuc$%ia;sGkOdv7J5u(h0uxL$ofW|Z^{n}kWCdwvxzB!T zsF>!VBelmvk=7#->kg`TDmbVR1#Hy%!)I70ugg`(T;{EwT)rl3*>Z!_oL02Q*=nE&w^sYNW94kO5X%n{gtT18!{e1B#KY3e1YU0m!5lz>vji%BLie zQZT{;Oriv~Qcg!oc!dJ+2Q@kjjyltXK%Z&=WJm|_@ltGFPjgDdAi$inie=JpNmkNg!NX@bviT?nE8m<`R zRAiT9&swttJml5vO4PLio&{@Lt_DR^w}&TziqVY%rZOouYLPHdaodVUT&Wczi~xNp z9C4BBQiA4u=yu~C_0MV$l33!piGFZJW8TIX5=C4^C3JK4@|dLOfOxGl^QPfhw-Ib} zinC`iDo~oIv4nJHgbV=&w4f?@{A(#xj1gC%a->#F-4{HtTN`@RQ`&|H3sR#NIR~Xb zcg@X6Sj>9`+kz^iT7@{pZ^)sPfr_Bfo^wF#XA5DTKs;j=Ftu5O4PXde;UoWT&-x1d6>6dMRuA>?6iQM>zd-OfhQH(Y0?9yz<=4|w3fzr ze~Ftaz>1-)koGPy&{T^!0;+0rgJk~zO3$g<)`yvD%o6jH{5(|yaDY|+024%Fni+c) z70&J?S4xG?5~H-5FSXdm6$@QAV^uTF8LCi5PE47u8HnbXWG6YO@M&;ORgkVJV@Z=n z2K$mEvYdlw_jR}agJ%1;ziU$w@hHu$s8YQ(DNkk zCTiH6Z8@#$VX$VfEPsZ&7ZW5JxlWwRD6~fk%!V2+R%u+l=43UcIbjzfkJ*OGXXC>5d zWU6U58(gl0lhTq@$s}~C88PcaE>fBUJgx~Drz_(k zrjixy)}eS<0DY>G2VfHJBzF}dCAPTLh%a{s|r;3^w8Drkv1yPqX-J)YTHJaS*Z$p>y zbVOT3ams)zkio9=#z+N@?wDo%b;AHFq7U6XTuQY@N3elO(A4A%R40tprgMs-o(CeC znt16$0UwHwH0Ny7DWMv^)OVte^@*UlqZl+E)O4T)pmHdndvQPt4J{=Uz){|cK}vYX ztpgfGF!4_`!$=Js22U$hi2ne4BlNFEj}lu2_7&x}k`%c{^fl=EWy-y}64~OSq3Gb} z?%1&tG#M2F#?oEmvBg`ONb#K0^r*zQEbK4<<29Ok8`P3)<-AF5vEJL{;NYLHN~4U0 z8Li(L1!-;MKo6Eq7c4WZTmQvaaFkd)HBQYq2*RV?FxTE!0`vpUS4zHH?!vsg#ks z)~S@sRyMbN4+vw$COHehaetm zyoV@3sUd_#8zAUTY6-qopoUeO1qk-6$<8-b>9U~iJw<0scx?5nM?BeydCY^>wzTNg z3}+b6YQnxak#Wi6^RCF)?X``-!AuicJ*;I){LPo{WL314CLPNBz-=#lyoEJQS zQp&+1;-KzM=NscWKhgGoc#r2?P(0U5;~Do|M;LCuHFFF4S5!2KF-e63seZ^ikfjGzwn4QAHO4N2L^$52Y|4 zNk(x={b>NAl=DFLqdap=2Gb7|`e8g!0xNBh9Q3ZgM!RQ$6m_mK&H=5@4_=_1B4f@! zJ}P9iI&ku|tahq}v6Gt6wgw<}@G(_v@Z&XXw>TApeGdLpp7A>pB5rV7n#Nz76}jR# z^JcBn4aH$bagSQK>~d6AnXzTS1O2R4xhEJ09M(O6-GlCHU|{p;D>)m(Vsvg4k6O5_ zcBu!U=BYx%YW-^B9zBVuW|uB0$sBggNZH)Du{sMO0I`bipR4+}Q*ky{H*u%-VV6j(DcD;dwj? zXly1(G~=)j7VCjs)OG$cxuj=BN}QQEh(zc0>BpbVBR}+$RyR}o5%wt6& z{lweQFY~NR$pWh%%B{5j050t2uyre-v5}r?8MJgM&o<^Jq24o!qdn3mEZC;SEycpK zTU)$=Mp)+<{OQ=6-I`261Db+B6;INtrNr6WBt;L`H2G!%GoMNBVoX zhXd0U&glS=B*&wWN6=R2f0R}=Hz^j9L6KHG&ENt>XK&iVox5>3Z^DvgTIHD(5uA0X zNE=AaJ$D2pj~L>kkcAlUj+I?Wv07udr*l<@%v&`yq_OMxdQ>EU4?LP-A&lEiSCj(0 z)rQCERi-$M`p{&|%koG}9D3G#=Piu(>smLRzL~7qMtSzF5zjLg>-}_o?kmv~Y_^!| zkzRW^%<<>@)!AFl(V~X*rz_bJO7~KCMf7=U^}e_ ziZejQkxVrqsK}%QG9C>!DOwo>h;T=7Qc2RQHx$uH*z^qxT}k5s*;Y_F9<|b2x=L~y zylo|9AgQhWJH+$bDx;0yb>o_eQtWlp#HOtyy73AtX;WjWf@_qBVQkPS{bZ%kC|S{O;*aB)%@Pac&P{&0GZ^k)t- zI5Zj}!kqKSIjMsl8v~9isq-=Jo=sPtOfV-n^cAdhFHWW$ zmNyW6!@WI8sV!s?kYtZ#Gc%ZpnQClOa6`4J>mTnq6 zw0*%nD%!Eh3&tu(n+>sml{o;N+sxx@EU(9sU2 zV*S*>#_BoU(w(ocqdRVO?|Lv!Y9zfGBXx5U>LrKBL83d-7bJ>YqjQPUOMam^JXbTQ zUzsM@zcD=pB$sb91dMg+dsUlj6-+x2SktwMQn^yz$IU)v#tH1bg>G8Q9kgR+1~}M5m;dLq}9zEibea&tA8+)joyG(V|kY{1tV--&vRDN-4~vOaheo@ zccRmK}5@vP9| z%ZnyJsHJ`HkakXD2zuQIud2>IGkv<(Sn=k@9g?w>jit%A2(alQ`!!+sg_bK*e!v z9dD9wgsLzE`ewSfzDENG6{L`;HLb@nDW6K^JWr_kR*e$B?;PM(wyUi{YXfD0Y#a*n zjY9fc>z9$w1f8SMRa1tyBNJIA%8G1v5_{5v&otU!@vei-9uMbCZnWXaq+>{8dQtSG zr4+;|JW^Ashph-+rkJIq9VvQNCZS3@oKkZ}Pvz2|P`Fb56m`WN=mFGH3Q^S10osg# zM^0)fi4=y1835@~G^0EkW@5_{GasUW6E8-O*pY~g^%t#iog zhQ^YxXU02J;W9dNP@o=v(ycGdao(~wMDY`m^rVVLl4o9U7}Mj%2d*k~j3P4y>S`M_ zy@>Du!R<&6Gf$J{JXC)D1tOCdan2U4M!6pKS|Rg#)urQ_Wn5J}eAPFYpmX?DZORF5 z{V`C*a2>Xi2?w8QXwAs6Jfmsn992&=U=j^FR{iGCK^>~Bjkq!%J7?CZA*mKwmunuN zRYG#RSa5p%XhvcPE7VerjJa-9wgpmSxG~y=3FM3|RE(5%M&t}*J?hk{$)tBR`eBn&9SQ$>V(vOoi` zT6|E;GGR$wy*QdY%vUKnV7<8;w32q}4_r3c!Wh3!ejDCz4-_)-H(fkrw}+ltK93rYvQCu%xSASRZM z^q}*a1{tNK=dCYV04f=(VNlF@=7uy!j%pG{YGKGV0}2q^u!X5N3PL|hX%%S+$$@W5 zO~=-Zbu^f&CAJwgt)xgvDo;*=vTEj?FPCwT?+Q}baC)7Eu~W3?r+VDA`G^4Hp0&-{ zK1!)QbBf=!kORr$xg>W}X5=q{lhoCaNJU}P9%_^X5J}^0T1GoYdCg?>HcY(`$p)_` zFmup$tjJ{A!Ab4SXhe5Mn$4oFM<5#ss;I@z+;QvcQ_e^Pdeb0WF!ZUpqGgEFXvwJ= zz~ia(rjQ87r7*AWH|K@md(|a!Wg-=mYZrASWA5gnbigeiR^*zN^lbq2Il;w26olG| zALYTp`c)*zxgJ=82`j+>)qgNK0rCR-)XyiI5`Zu=PT|(8q-4x-j+|AZu31?|a>oR( z3r~k^aQws`bA#(qv})h)btam@nMhx}M;WFv$o=F3KCC`$ntGr}k(&jVCp3@(U_6rJ zjGBBSY~nXv!G}{o#aI=hCmgp?=}Umw%K!o3Vx~lAG6RJjIQ0Jj8kH?qcw$a4c=e8xjyh9r?VL(B zugl)FQ4BeKrHJPqwC%oXktz&lc0DPR%3?`rvvh5Yo>Y-Z8i^zklpbIOvPU3R)RxIP z4YzOyBR;g*AVqJH2JCgDJ2MDG%_N!N5sqpXh-3qtk%3y0#KQy(5_zg^9!^Lgq5Shj z%Sg|bEvOLWoOPxIiK3`CM>g~#t^Jf8j)FiKx$^Zk{bfyJ$Vp)I~6*O{fZJlw~ z6$*w>xW)kIG%J4ik^Dk|HfX~6U|8UT$Gu#K=57Zfv7$b5ZB`(Y`qtD85sUkDsA+;@ z)eh~%pGrczAFo<-utqsN4r!&;z+w1Sdfc?exaO+1eBi#deV1}%bR(@*bpk+p(;H)4 zZ5Se;W5^zrVnR1$nyVl`Y3soqDWfJsIba6g#yb>g6#txr(P*AxvAuX=^L)WB3mgc2FrlN9WCqt>jEfKnC3JazVt%)}ARA3y14S)_!PxF1Dy6oV6D+Z2)%c#Kcd-SakKG@W-BX&K{ z8LDDcMFvC9tx^&o4pvDJ50rN_vA^##-xw6xXNVKIh7U@KE+XBX!`iKCQbp*{=aY~} zH8aDKqx+(&t=fNjrd!zd^4!s8XrjxpC|nOpkRUEwCpDk_pqS&WD&O!hNAq#+d8pQis9(Qv}E+07E#XeI-NgW(hMotH6pK>wl#d51VtM%fiit)kgRbjdd zxzIWW=xQ?=+zC7ir5*EexQcA|>>mK}){7acF7`Bu2r3C=UNS{vPkijS4aqfHYlkvp zJ?LoFP+d)VT}4(n=iamAoQA+^jjxI+$*FNBREe&mRzh*e^r~1YfVKh6O81IWlTf_s zZ~^N|%)!B;C&J_b*R@6DVcddB9@ROKdH$3M0ULAaNX4Ov9@bX_ky?AiXu&W;eB9MU z0!Ao0^{Lh{epMJfIrOD)u=}PV4`m}CN<<1`1CzAWS4_;W8w}_56j+~-j9?Ri^rY5- zv88SEL)W3Gu44)bsjLR?F>%N=+y4NSNF8e>xkhw^@P8VCmQgJ*qFR(dCmdGYn{|3*&Dle>smu|DZLIiR&Do$XP~MT za^(54GcP$cP>SqF1h*5tNCh^YqlyR^)PtH<;L-|UD4_JD0+p!%%33I<1IHB74rxUO zkgQ$z?Mib^+y_&|Ch^|0H6KMs=2LvbpRE=GdU6k%qEc~_Qm-xePz0x?HlEbl06nS+ ze)UiM>b$%)CNwluC#_668i@5Y&@m}G8eDNjQ7s1m(_0kQYGGn&qySIpO`?@XNEKq- zzotL$_GAFVIW^R2ld+E{ucdLrD4>oFbXsM=DhWM$Ry7s%H>T{)+SX-rkK)B%Q-s<- zh*mzGAkH}CR)Cm!s*Z7vIIdQXw95pQJGycC)!QlZqb-4q5mX#*UNQmora>mgF|j%1 z=BC#j&W0(2oB_zI(JtT*ddJh-1F-~kt!rk;Bhs>Hw8za3QFzEa)pm#{&BtCU{HOOB z#%nfN0~Q(JdV0`3SyJ-uIJ$$ASj>}7f^}Az&IK^0w?E%3(YQL7FBBYHFrb2^3s)H^q+77HgI+bq_w_2n2L~;($ zDEl58JddRs8YnYZOoIe4H9mR}de&0fF&r~z9C-J0fXn^~pKC}?x*;(%Mo;b}{eL#bd4NW9!rx+ChRl(w&%qJE^ z+N6buMI`=IvCnxUjjR;BcRWX?L)#if|}Sb@@$Xv3GdS>4GC0dN2(fZnye1c*jP z4n`|Et(31Tnze6l$I4IAv6Do!4IcBJgm$SdBM47n=}%NKmLzh+2Q?&XxDZAF=~=c- ziFEF6X2(D})Ow=@Q&w$P%6A=z=CZY!$P5SJPCBtk^)hFe2H2;bm2*2002w6nSr&xL zH<(l~&MRc9#t3e3D%vqkvYqUUj1HB@Yx4;0nOC{~wbSY{1joH_+RfLUaIt~FCphn0 zQdeemUqdhP(~}^f{8D5n=gx+5CJ$kK0 z&|uRaC_|?eJDNV{ai-ky8j9T@$b7&?HumdWK9_frq#i4)v$@`i0q3SGnsKu_AnuC^ zdht!RP&W3(PdD!H`N-hbUCeT|&M};GpGwn+F|Z2bC)T0pQn{sPa2skG+_!qvd0 zuoW1gt%{su8L1TrBR`chqUn}lgoXpD#ZK^T3I@}I$jwIq%z&uK=~{~D!I8HNA54m) zDLWa$-CAHk>Ds0HFv9`fuR@5jFc{~dsQ`^+UO;T~o+v~)JD9H)R{&zD%NEmGvtb$c za&yMeYJ~1s9yz4VqRjahlHG?jUQ@>vEAB4f^c4(3CPcVj}}jMS@z=9`QuJ?c3a ztwYpknWZxDI3k?};0g8VnxwM*>>i@6LgAxTJps)kBwJ@I9((t$XIHr{#12nETNigi zC>SyBb6mt<>6)q``-_$)t_s?iP4qQ%>tC}(3vzburMO^<$0t2`?N(-S&~Pg!P`N~b zfjG%D)!P=x%hfJ|#MwOUt|mwGE*;qQJXV&sdd-wW$vFHw);J_7#dX119I}&>1A*^N z?b4l&^Z^;`MF;OtIi?}&N^_nms(Gg#O(3}l6u6|LHA5DR&?p^f8FnxAYxJq(A2mZ4 z`ms|-*0C&<(@i<4yb1!rP)YZyZnX@bdXUi3_erRYOW4#*aB0LEE4aZl+H{94Os$cd z3R)rD&86&F`Q)5KS!fduWf!?mE+!W`W);W-55D6aDaw)nJPc*DrE&1n{#B;Z zLOA1&yi^Y~Wmv0Y9ldE?naZ@80D?ICR1!ZY13uMaNk^5q_Z3Z4vlau4Qf$w1NR+V$ z^Qp-LuTNTAc=n9axEqLUVAfZ;X$;ChNf% zt7zMB17M%hv(eRAj&tknO`7-1jF3BUb49MqAl` zuliNTn%UrqoM)5mT;{8Nn2$XxM*ib~Gl5)Yt#)J{TAsf3 ztvKAuq_il_Ii6x$kPSDC`&4SbDD)KmIu5nbV+1G%KHikmo_MDMdr}g>bf9B8QUT38 z{n3hxc1;Fy5?}zxsD>(6%XX#++tP&0#LYjpDMT($N^pVCYA%IlS3PI|)q!fpo-Ifm znmN$)j_DpV(&^r>dcVM>-6^fbL_CvQ$^K^O#%yke0;I)jRqDA+~jN1UN1 zqt7QiX0Pd_Fm)q>Dqg^rrTrrDORn}id*iQ4=`CgqfwRZ*t}T?>TnSWsg}JTUE5gu& zoc64z8|sZ=D;*-qxxKNU#-8k6JdAE5rBH@X-Ju6KIjcTqRN}EZFQIDP!Hf*^j%spB zfCnQSn$2e+H=!GV<27tdcEsM;H7yjGEKJxNh7NiPw7Em-GsRa{$)58x#N|GLf(vdz^+TBN508#@U zIO7!nP?F(?$~nzhA1Tf_V@`NWWOk}f!YiT|InGq_K9tFm%^Ob&4{DhFr(o-jDP02( zq3KkZTIDt>uw^%8ascg4hEii8fCO}+MJhnZP1G3RrdM})V4HsYDE*YXy+_3LZvlf4^ zYIt9icBtMmSQFB;GLyKhKvyHF99DCOk#?V?%QlKw(Rme5MT)QC+7fw4$3z zI?x5=A1L}%(RDQnebMx(qUNzQByZ(Sr!nNyf29`yBZ`5(^-uMv8ymAoXbAag2FE$8 zAHYYwS7Y;>(}*>8MuPyE`4Xqz9M(&*Qe9EIXK)+j&oy{H*YAT| z)s^8a81asCThQDrh`A#oqEWG=C3H>*a@qU6G3!>Kapi?4nxaTTNT)2gZ(cfPv$e}i z*hW>2K=s90jX+$A&bF8_!Q|G3vxjcH1B#0s36d!)z;wy0QAviu%V&-%CjgQ-&uVqP zP~oazZ(g0mpIPrt>!Ej{Ihtr+ahLsH#jZS7YC>Vc1`BaibdER+6-yxba{&PJqh-td@E&F0FPQOG{zKn!RWoI$^getdYqLho`CUDU0vF5Kpp z+X|uIu4=Y1ZtRvu5F>W=u6Isw;X**F}rz#3j$)u+av<}79`=jYoN7U3S_eD=1TEwp`S;9H8f(z3I%nbNbR9?r+%I4>g^o%e4Det`FS+?L3OcTbgt*r{8ZdP(DrB6{%rz8-j6B-rISQoOK+E zr2~{jBXE&(<__I>s(Pa}?z5*;<|p0<1A$0bq=Wg^ZMDHH4({KrUpaK+t}7<2%~LK~ zP6GgX_04KqKEizuKZSD;$oskE~|%ReB+J4?*;z*F)wiG<&i@=j%}gAYqP0 zXgUG|3=aPQg;jHq$`4L+j@2P@FEw_8ys7r4N=qo(c7xuKx#x26jtxYT6O}X~t}Ks% zk~$83>a$CT$?rt2%J}=$T3G`PqnwP2Xokf`E=v>Msxx8a3&C!trA8()r1A|`b^ze9 z!Om*ZB2pugU8;Y)1!S3o&RFs4YHQhWr)zxJ$2FR)#fpsN_BE8#2RSvHcPNk^PnhH61Nzk^+=nY7872F3G#x--bLq`baH2R0 zuK)^`&e>s5an3So8?rpNK9uiwVr^t|T+*lBrqZw86fu|ApsAy%SD>k* z?^u?{p0u4$y$7u)dH@eYP@blyIK@DI^&*hJ!T8fX>QCUP$6V7y$ZMUe#X?UtJB+PY zJRf?ffZk15x3_6rR4LR}zMX+{9#<&Fku0)qQajc)(BNcWwsp-+~9F zLvsqc9+e5$bB)o92{G+_@s2)~s|~C zF&r*Gi>`Z$hBqW{L&x1asp~2eBx*nkKvB~ssUlf)xL&|;a((J4j@DTe{{X8|oQ?=J z9I}Lj>>HSXIOjDIxiOVF!Q_x>vD{hRq5%*Bah%m-FC6XXrrKpvVI%B7;R=Jc$xg)6K>rbBHdanaH zKF76V+}$f&pmr>QzJ0yw(lL~*Hdz4#$Ua=-1J|gg$F?{cLVjZ1Dhr20GZfrVG26Iv zk9w~?&d9P4LyUK=EzrfwsLP9hh5M81NvB&G3Ak^($BKdo8t&i|l7o|5@k6(7Kq!+- zLBVrs$mCt96b?;hUJu={{3}{tx?A$B9YRsc{*Ke+Crs35t})h{5W9h1o#-d##wf-OU(&5b)#4!nhoFeywmTjDQNNW@ z2tntn@m*%CV>EH%Hdy0P%H!`>FDl`%DMjB8VsM|1}g2#i3&Q{4Htg$j3&PgY&R$vkGI#P+fYIav1K=0O& z24&sP6vLJo&q|qFXd~8{fQPLdfs9gvg#hwLYC`3@Qvu-qUX`z<%mD~`de$&JWYw!# ze6|b^6*5;v#hp@|07ViZ+qe!7-u9@iU(JjkZk28`#t-Cc2cfZ(cWu3MSo6eU$N=@? zx_P7W@=qwok7}WDY#0FmBmdlIsQOhVXDFFbU2c3a!K-T~@(AZWs+`uvK6PB2V-+2} z!B!!-AXQrX85?UkSpi^iz$6~EY73B3OdNo~W9wNfFkzB%4_|7UIYc-($j)kPQg%8R zry)ScDsT^_UXEdP9uEVzy>p3pvV)c&md-0iJAumvz~~dwp~TiQH-*xn!Nvzlu$x&- zs7K5)ed`USQy$3vcFsrmRhwzqF>cSeft>!eJf^B=wO8)=O+}bUp9rtxM+w#eo}FdKx$(yalHl@eca%R!!xvwr;~yS8SCDs zd!j=-oD;}WdQo8}YZ<@*Aqv>zJmR8?=PW=39G)vJE>-6)Pa%F`>*-SctT)O!k;M%S zGVRls0aWsOnuIefvJ!L9WPK`;mPMIM=WB7FLrP^4Mt43*=sWR6g6N)Uf=G6p6W7qy zSCBHu!;An9Y8fs!o(4eV^U|p``pprKjAsq_Q{^Gde6zN8jAuCOQRI0k=ItywBzo0m zWp^Yu%&o|A}AI^s|Jj6a! zuV0%Yqn<#E_pnD=($>)!xn0~@rU)5#3ZlEN-^)TukK)BJhP#&wow?xF?S+ttbQ$_m zZA3|PGR2ju#Tuww59L<&ZeXMCj6nwT4G`I2Cd%>#7*)r8C5-N5kY1Pl1+5lMXNxZHZnSoTA4AU zS6Y@k*}l)_s))zTRP-M8!(0Hj5(x5CHUagnlKv?nj%Qb2oO91L%}d8l^hZHGNSltM znnfR-2Zp9@$4<3m+;eboOz%!S(hjr;L-eOBx}X65l%D33Jkhv^Ez=Iv@pNhenLmX` zid>Ooxk(94ry5GK1gFL_;8Sx?i~V4s>@~S`bj42>N`Q5#;v8nNEK}B!l+u4nKqGWD z3GY&|z$U7^pc9H|ToXu?u-XMg(uL{Pp=k-G^s7-NvOwjj>M{>p)Jgi(jNNlhmbNrB z$b^!TcmldPqmp|A91-q(9FJ<|tsIF4I`e*23Ymk{tzO=w{F-}YXbKGLD zbAw<~Tc=!gr+`OpoX|2xI}T}7ozAB?q`)#TPg+n)_ND+=b_ZHsO);GYk#>Q6w`?46 zYjp*Q_$?IgbD}U+D8VW<=DlR z0D20~xv*EmAR)Wrx8;b&+YjA5gH@U@ZuM!IN(VF~cwcLRImKv2GCWQXUc#=;V6&b_ z<5`y)Y?kA45?A=WX{U2H7Kshc|GdPSXEzmEitC3tsDg`|S zGEF!yQCSFV^T4eLraQdSMoI1Tu6OK!ljX_JTy&?Kso_wp0F4hEa%pm+l$p|-fxI%3 z0bFA}4J?-gxI6hPg~z9@bE$r^DNNx{Oj7-?_q(Gbb~-gKQn}8KJGVzxYp70H4q0w$>Z9WDAdi^ZNv{=1D#}*?2;_Szp>MBFG~H4(f4^aw--}hitPb zL(d13Pn3r{m*&(~*}@3}Ir)^1qcupEWi2SMF&)pSkzR*U)qos|C2u2Wn1M*to^A3rirS zeqNQY6nHoTnj?j{RT(C&jh4|Dax;$glXquCA!H-8cF{37&JIbgTUfsmosl*`;ML7r zQdwYNgb>_UH6hO2*06=OWK@?#Bm9a^M&fCXTa1p>=EoQ`gqL6etxP~M00YT1072To z8Kea@xii zjt>U83s{yLQ8q}CpJ)QQ0jNEeny+x}B$&WoO3mGy%|#*|Z7pGemP{$Ww5r?HW&}N+> z=sMz&ae>V-bq{Y!0Kn-^+1C_}!eW3Ko^wgHX~bfaW@r;cG~V>RsH-vxd|&GpnNN)2 z!KC&Y+`HPQjNo%r%)oS}o0i8MR$Q#BqT|S;Cp81y4%Jk-J!v|MwI1T;C285QgHaN5 z$)c0JQY2n6MI|q40D2q)QV*F%4at|YT8bA{w$qDItTyk*@gtn8ze9SEpGoCDIF#Fjg{=9dN71HkpD zJtVG*(?zkk!S@v1ppLa}LcUR4eAP@GKHk{%tBblg@f7)8(5sxB8jv>8j->HXfq|b| zes~6`!43y+)KYahGy%Ik#XBLC#f_paf+D3xjJCbq|iD^oFO;RFf&5uw%|Cae%!n9oRBN8dqr`A zpo7}8?)*OltGmkqy+v2FT}<63VTXbFUS`CzZe#nC zA8e&pG9!_Zv|*K0kQjQN)V@a2b09o*&uWddtwkR=4cj1aXf}F+uG1EM{VDS< z0Vh6Z$<(OyrHulEvR%E$Jeq}UuiNgX+zxU&)0a-ZB!*lL$E6ot!Cjw_&x zMS>!JO#7a-Y+0g?7Xqi9bSYA2I+|ln%Jclh3=ct9;$Oi_fh(D|eLS4l~K6ytzvoW($qoGn$>Phr(+B+i(}k~br@(u>BeDivisXQe@{TwFj_ z7hFcH8+aTru7=?xLB>uxwiq0b#=8k515H&yg$a!Mn&Xcc#dTV2 z##;@z4aa_JB(ybyw2Vguq&|bKJ&*3eTpV_*_ZIQbEOFb$7jAdA_rA43(`1f0+z(2F z){E#wz&9s@=}^d36VJSD-}a_^rr!kPo+Lsz&RbMszY(>THiy0 zq#R^C5Tp*79ciGA&CedRrx*b9NZU{hckM{b6|l#OP~UqTkUCI|r>Nxip?>ke>p%`e zfHT&%H0?xNWg9s9);2NCI52FS(rV?#Ry&J(xaW*Aob%Ar$=U}w$;END*V4iFTcvDU zYRe%|=e=a$Y^0g8z&Ygq0QITS5~PB1J5)kIz%r0Q=~F~ikImECq4q5oqrn^sopMPX zJt~xYqdXjr#;z*|9G-ouS*p~O#y10>Y*Sh@!h_FIo@v0H=Q#GKC&+U6!0%E~8HHP@ z6n&g@BQ-b5#B>g6$< zFH`MO-iK@{#u~`G4Yj;>mfM|8#H9Ryat?T|i${*;34+|-nBfB@TPGY=Zil11mnn4d zu!=bW0jl?i!bTDdU_}U8+Q3k9tg~vHbxAb*)V@{{ZaPr8^eO8q3^I6(lS35x4+HO!ui~m$s)~ zZ&oXIx`9=M$`!W`N7Asa4(VD(A9#{6TY7D+pwkg<6lK)miNMZytb6o(dy^5t+xJNC zS=nC4eF@!Iu1MRn@uP1z2dy-4#GXm17jAOYwmR0JRaAiEIjVA|$q5I8R@wHs%H$D& zP_phBJqt5Z`}L>u~Mo^nP4u0ZhuPW2mPB69e4UShHrnoq@ z86zKf)c*k66XWG`xOAv=&0|#^>PXoc9Xizc4UF|2tB$ns3xwMt?T#y2$6SE0Nf=;v zBy&*U&6MKJ{uMdN&!sV>5%PL;ss~lK8N+}%Jw;Z1X4)~hOfXIlBBzm+bZeW1XWD~v z56Y~e<0K5%FFv;nBXUR^C$&~SDhr*ZkKs*IWVyw4I}?M_ns}}%KNU=^^L)$SiYD<} z?IA(^C{&oetWL6dky`|Fip#y!s?{SoR$UE?jcrV% zsN~j7)}~}^frFZ*xDLF5O~&J#R;no&N^OerGacu>BanISJ!znAau4ZJGhmc%xT-TF zJ6X49r3dd89Xe7K0PG_;>rHWlI5Y@x<%#W01Tz3=QdEAXjx$U*6pRi}YECc#q&#%# zniLiw0ZEji-ogA>6=FEZBR%=0f<3SE4AqF^CAsc!2dzt&L%M|?RjFdm%3Hore4(&S zb~-+pHG%UP#E|2+YR}MMy0Xl>f6?3(Aaj#lF@`8&Nuq4C519cxeifU24C_ta#Vtid zu*)n{vN#zF>s$;vl(rYL+@k|=xT$9SYj;+?wKGbqEU`|bq3P1O2|i|QjFNi#*0EMO zWXD`wz0AAZ<*K`K-6_G80Cw|8K_r}jDz+d)#yRWOgMtS<=8%jwDG$oN^avTS2=7h7 z08);B8d2BjOhRCToY9<;O&pqBV054W?b;40PSJr)Co~a)1p~ODxit~%PGikQnrRu$ zfufR@nE^*rMI`_)Z+c2QQqUmH7^A%u0ArdcqJRO?iaJq1!?h^uNlTgrPPhaNWYA7V zF;SuCIjIH@8OM5)RjH|Ms>p3)vyfyj-9DVwrPYzRwTX~sL&-kX&L#%tC!BHYYoXHh zFk?`}5}++amCJeLB%0M^q=TA5`S$ju`9Z)Lq$FgK(tu*AV!o!H2N)wXfQ4+1K<`9kw4YqyQWzYT z0B|u%gecEkaZA)6N@}u*$vkI_Py?1sXVujZZ~mJaI#{Lyx8bHX;>VYCz#AW_sdM(^H2f6&lKRGwmY7b1;k=Pk`8Id8wL(f zr5IOM8R=1+ea7 z4wQrw#wgIJ#j$q}PWhw&vHU7jfr^59ROL1*ouFfntxK0`#ZhdO_r($qlpWmDbCnqS^#pKRGkM(hov|-7&Mu2m5DQvkItpGoWUkX-6xuaU?``rEr2N&cG_mS40fhA z3e4Sz%_g-CxziTv+4AASI(uOAT$B?$2XG@R(zmo3W4VrFa7QMylzN)esmjdTh#ECg zRH;2Z>HWUX*Z_j$fKkJTtYEkIMT*~CCaG!_eLJ@-G;~Z3EfS`9YyaiRy zUTGU#U88n7j8t<*kI3s%1_}qQ8CZsQbNF37zsHbv{Ks-_@BhY$NOPH2i{q^w{P271yh z$wg{G9l4TFs0rP`$8+gj7LlONx33iH(KKtgDaXu6;8XNHH_X&tDG`*a89;wZmd;AG`XioOBc!Fw?1dyJ1bSCK`jnT~@xym=>1~o*X*~sWUM|#Rmc^pD zO_wg?g&!#Z^IRCknADt?S00s%k#wk0K=qbf%qweS4fq-oFr3^xzGe~~sYBI)+$!@|HKbI<0CCjhH;8R=Qc9TclLy-t2V zpE>9{(}>HE20-8%(zw#T&kvrt^4Yi^f|hMINUfH1R$#*?1EodJLKBO!xtidN0KI9a zlYlx?iF1RrlKU!Dy%_8y}9cW-i&^gHcXzCpYZQBM%dS={#p1mwMp2@R3j!)D9B2YlkGq! zB}h1{+ee*{GCI>)26|$jF^|<(LZ_DHcLB#rXl6n>){7?C@CQ+viDCzq>)cSLIbl~q zi7d^Ll4;J_Z8&DL2i|4JZd4Gm5$70EZpDsdfMd9MQ}l zRo7CVC!jSlrsW>|^HvfyJBHreQ+5FRPBBZE(l}(bB4`dq(aEV}K#PI~?DePQ? zG&XQ0J$M+Yk|vSKP5@qg#REcES<82JkVLs=IM1b7)U=C>22m^J5#h97SdL0lm4_5wEE+{VP5#M<>h1LN054sjqlQgoQ`SKTO+W% zx%(ZlyGTwM_U{Aud;V3QsOuuiB)oxjzQ*z z$pDVj06^Y4QIoeMPy<->G&5s3=~1&B=9`ju?NwqNfU!O3_2QD08e|DeN#2Z5AnisC z6ugQ8<7lO#fD<&h%@j}qQjtKSfD(#PMF130MF12~IW!)$2wv2bPz3`Q6m+A#B>*pK zPKJ*3y-ff(H9S5|McRSK){#m~pClTyZ*)5qD(uai$4k_9UoCv&h(S}85!jn{H0 zP zMirw{$ivpTo{P^l)oRy8?&r3X3K%ZXybeWSHlH@q0`b`T)LO@FI?1hBRO4pgIL$Oj zLj~_z66uq~kuKfL!#MS<;0T{#A28z-lR6aBwTT>)fyMBIyfYeM%dp!N_=*$=ZH>29>n!pT(Ut(@e8Z8N*`1Qh6ZxK9w1<#73QfL- z6T~;Lo*scLw8po>v%Xch_04l$Al81*FWD{kEQ)cs9AFCCTcx(YV9kV(f}WMiYMPzA zt#=;8G8qUAM<8d8YM`|_B`fM!(sh~cZ_F1{?6lZR^Vg1ZG9N5y%o{xLF@fn= zrbW&HBi9uJGcm#Yz0GK%uX8)xwJq$DBE-&2Y0-1Qs*d2Cj<}>G5r97vP3gy_I|y)W zsZ-XO(BhO38kl;Xed*XuiW-BLC$OP?PfBt5O&b6O$R5U!$d#npHjb4Ua(mNHG*ht-O@?`+9MRv3DUuyJ(ox=)fDlri zhLV>YPyw1LJJYf6Kn?FkDJgqU0%DgGl(YZ}JJJeK$)E$Z1DZ-vK!Y7ai&t7{Md(tmPXTLaRnS zwVlLTle9n~Q=QGz6&|g1CB^Ak6+A1N0`j=@70^^#rdSE70e#w*Jbyh{Ot{WtW~o#d6VE!8V<} z*XEBnIiy@Fs~CAIn|k`v;5&`n0C890wTYyh5O4-ZHBRC&8WIWMwvIg>8vv7tCX8c|5!G>kMF^)YE{;emmfQR%tvQp*ZQ0IF zD^}hJ=G2i{eo{{Yx~u&f#q@#ukP33792%C%_NhA_ecKeM*et%)D=70=P*F=o$E{t9 za24rB2Y8WBCD>ebZ?w7Rs`+k zdr*^m9RAg-@{6ZwR;#B8XDq;iTPLU#x_a2bbT1%%y9palVOgFixRn;wQMRiw1Odi4 zs(K2E?qq33;)+V=w+5Px(Tt|5*6a&y) m;*+%$cAx{C=8W@22ekkl=~(2FJJIPy0u#6EK%}LhXaCuQN675} literal 0 HcmV?d00001 diff --git a/doc/webserver/team/03andreas_t.jpg b/doc/webserver/team/03andreas_t.jpg new file mode 100644 index 0000000000000000000000000000000000000000..e23f5804271983c4029210ed85725aa65b1e2643 GIT binary patch literal 1894 zcmb7Dc{tmN7X2lWL_$>TG*v+np^Df_OI4zwgV;+g6;aDX>`QAark#%6OUKgbGgP$d ziCyWE&J-EjC>li!9gQt02CdQ3jK23e@9%f+U-vuTJ@-5JJ6ALz`W=vVAdyJ`2m}HG z4+;={0u;~2&@RQ%g4Ghk;zHHjLuqRES@9Z@-|dPD_-QPVuGt){N0fx+mQ;q*=z5(tE&+7_qGjjWCv6O2BKfDj0Tq=cjr z3Z-O(#bAy8Z-{;Z(Bgm#-~s`u17I`=f(D7Y0hP}lJ_GmyI1~mJg8&B{Q5pb2zz{Jp zgg6}WZyI#a0ca>p297m6BTKo|Bu6lfj*Y+8(j{+X>{-P8c~o8Fn5}Ep2$33`U3s^8 zcH=-s83ceK|I_~jgY^VtysiA2 z*&aH6Cl-=!ZS>~m)==!0SMTN3FjANCn}1HSMS#!ux$-fb?<5N3)AoDU*?#>UIbIql zzk=f?0R%-Mdmzgq#6%NkQ6R6jCHuqPSl^Ix$%=yh&bYNn@X-(_RU!1DvehVCURYpo zkMsvkO1-`@(r49UvOS2q7-E4s&y7Z)YSfw1+pK!E71Bppej0x!B-i1pva@n>*{E-P zhXGFF>;t4jR&b`cnHZXzli~Tv%He4^ji;OWCuk+7n_}brZj4ECfQ>UsUbtFBn{|vf?q#PGr29b zSR5-p=&E2hZ>X>9VA({`}U)YyzuR+~eha zDNJI_Mg>O`IQtmhGr!HjZ@h93uaayEPCA%ImO8IoaSq>^D0U`P7zc&A@UO0wzzph@S}ex7%Wh{qP=F3 z&09SzAMP7aJ-@d{yyzakO*@nRz>0`BxM=LDtFl<^ull~N}-GTM%CeafrJYKfb2L+gCwnrHM>oaIGhcW$ z9C+RR;`RPLD!tNzeE|sHkY86VdgS>lha})M6s?UpIr5Fm$DzCbNz^cR8dXyAf>M|| zjSIR^0Z`>i2PW2(Ue-Tpt(S77>pEOh%S3djZC0UL-b_T|HnsaEa>;j&I*%q<3S)^M zEd9Ir@2zRhRh8w{arvN{zQrp$k68BQe)h+foo6XrfrrMqNL!hK9vzq86xi^_VPQmN zu8Bb`>8_M-%#76YVx^>YxA563PdZCi^zgnTS%C}+rSa~VU38;7O;a^E&4jPsU$~Ir z*%r^x;wj>{qp58x`?xpe<*uyz*0VD1`u|GdNe#8QF~>76J&2xy2LsYs-Re7IZ`C>T z-zL#Y4E^x$A6+0HF3`6xDX(@cox7LQpu21ZcUeB-P7cW2H95U2op6FYWVBNu9q=Tw z#P~~$T-tk^%)Jxn%uiS&D^jj}B|deS?~s$X*16bGLDLOMd699hKWRWuP)cQYLgy+` W17FwLwc7xY81g*Hw!S7^H2D{{a!F1A literal 0 HcmV?d00001 diff --git a/doc/webserver/team/04rodney.jpg b/doc/webserver/team/04rodney.jpg new file mode 100644 index 0000000000000000000000000000000000000000..bb4e02d818e9fb8ca6697a141b969a1a8e58d619 GIT binary patch literal 57055 zcmb4pRZtvEu=U~^2<|Mh!6CQ=55e8t-Q696>!Kg-Zo%DUakt>^?#`e4@K@c}+fy|! zUDJIYrl!v6GoQfZuHidg`garo9svyz z5sefZ1Do{!9G^V^3`8hd=l~cf3IH?)6buH`=Kz4@A5K`9|AG7e;~!Xf1Sn`k0Mfs- z^j82h6buaXKlBLy5Fo(7K|#X+U@_n@$>CWLu!I#U3>~pq1HpNSIFvtYduNnzL2O1& z-`GWhwv`j|>-w&)@qQUQQ*oNk{wqcV1%Uq7>VNfuhJ}KG1HdEvOLAZUprN5)|1B73 zxPNW_!GVItfPuv%XAy?OqEIx%W_1MjQU>PDT*0%|;(&gNC~beP08nB66~%zT00;t- zJz@y_qUV+4BKb>>!7@JI18v(Z!3ceG*UyTiT{d?UYktv+{+xr~rpeGU6%amX1&b)D zJuzQ^kv|66)7nkMzNgniUHKHz`ooMz750|uhE`N-|{0|f(v;0`;sn1E&LyN=S;c$YqK&M z{>-nrAIU14L7emM%vIH8l`OimD|^-QSI)ylpv6WNQ&Q7bdxqK%MB=zC&PF;?zHCX? zw+e~BrnIs0|EauxG3}^-Ba05vNKo zyV(}&A$R*|#cuddR&MVNOrt!SNk#PJO;>wt({qd0-pe@oCY{wMxe`fqn6! za{*O6_!H163;30}T^}IoO*dJwhBbley!Xm;e7!#XB5SS@Qjl4c_)7(zRC7IN>R67+ zD@w6BkUDY&UP)|AWy{1YF`M0D6nHR6TWDim?``0>g)IDt^PPPu0T(=!NSEl4PirdCqnd8=*P{I=F#!h1*^~tEo6I&=GnX|))C}Rt3oTe?tD3;p;}`HQ|!4dp5z;U@2L6w zk|XVY3TKQ-To|wkGW8hWRA?do)P@kc{X*`RD)sW(+ti6N8v&PuupCFW3Jt+oSg4~; zEg+1zg4i0>`ObzQ|cgfK_{ZjZBrCoaH0P%tnl8MlS z?zO{EyH4;QI8rJFO`eRT@Jeb6y^2yngkP&J!P@HH5t;#tNMh2X+Wft-5uf12UxEp? zJYn7EYNEkkM3?jQDgkNupcVKqHk+_o-Eb~y1|Hl8!*kjErdi(IbN%4)_n?IKgE^Qn!Y#m65w*>tw~NUdN_M4#i94^tw|Um>znb zknHAhL$70St8MZ?a{8r(n7J2cpkUnTFV1!{Z>PA`Vx63*BxM8#Qn%Znfg0Q|a3LB6 z)Cl*ahLbpS2K@T9_oBL)*xecebtbXbPA7{n83rXCX>S|{0zMf=u!blK#UK3M!}OaR zv8@+1D@jf#6ij|=t$WW{C=Li|jaun`oYjab6G5osarQlg04J1OOqSl6EN$Vpe&7z$S*0F#_qW?7M>1~)iIOi$;q)j0b%iv zqIRcYs2H0DpvKOxk^bga6%!mKl>D$7f@Ai4Aq|NiLtK$PgQEEp)1c$q#yy9rZA8<= zp_$u@S%ckOz0fGsFi$07SQ$@sHACns7RachT)UBWAKh7d5T9Ug3FQ2i4!L?m=;V#~ znt2Nu{R6HLkJI*91-Ztp`=0nkIs2gj765*O<}YurXN*6 zW&a?-Get71(8!a)d&?;1>(~SE>%Bl>lQ(^Zv<8I{3jQN5uY5@}hnWiu{Bd{}sdVjx z^Cv*0*3DcX53;M&^5ar{#>AItmR{K&gGid1@AguYsC$r$l(#QQdO{nS*|R8qABw7U zd#AV+iT(ivUSMCMNPV!=1S(5lN|4I&9bfg74$sRc#>M*~uP+KW z`5dS;*CyESi}IK;Mu<-y;l}jvootfjo|;4CK1X5g9<4?oj}PP5q;a&^?_IzRo04D0 zDSeDvzkIDVd!w}aEjImO6ZEv4WC$^nqT)wU208g-O@GjyPaVBB9PJPU_4EK*zP4&l z8N^EW=!*aL^Aiy1V=%0VN9;p+tSMjn;KdCi4q_bPi#wq=>+iRB=m9bY2*#MkQHWk% z?Y?m$bl#2XbV&QCAB^jss8|7i6-HTiWC@p>A zSwx!tlU=?gYumfwRdO57>BwdVFr55-W0RyW%jTTgP<)zC}Z z+{2cgsU1Up%d$7Mfg-}w^4 z7^Ws-ZC8Z8m{)KNzl5p&;S!KhYlbpJA`DVK@U=4DF3xi$xMyfKMDxmt$i`upZ&78vPoE;^PQycc+K-yzFCRp^pLMc0-u^`CWhLz^TL%NrRLYSGA=w zoz$OKC2A=f@=QDDqM33;sG)LPFc{NgGTeN%rs0=qpB+KZ*4FiYmaUpse9zR?Ca>fPMkS&}XrBp> zKLTdhUpuL2l;whCYvBzjm4k0fFLgZZi&4_Pr_Ye%Gic%=`=d)uhL!ib{S}L$^-^|x z8jgCh-j!EB(ps-1U%V){pGqCH`JlbV%#hGI|e-O%Y zMeoCLCtv)l_HHN@^|H;hK3c+enJ)PKi)ELRnX$HZ-1JMQUX4P$LG^a?MyvS4vKYT+ z?l=;S4T(R=v*1cww}XE80|Ljmf77z!cbTE06*Wx_CIp-O>(h;5{w#Hi10-_Pev7p; z2iz*s@GGZ}mq`+FW%X#u(E)Ta(t&yFd>7AZukv1|sx;%~aRlIOJAKIj1D*?+ zIe`M(i;~y+uiAMdo`Siux11nw_mxqv&C*!oEipjOs`VP!Hx`3Ab5A0`)dR$~``hz~ zv&w3w?L--duY*bhU!L=Iw>e?RgKAkLs9=Y*p_oxk6?8VOrK3slw6~M@=$M&l)F7>X zv+{EdCfY3K-YkK^b+ujEV-ja_VFO5Q}PI1qhyiq@VfuX)=kRLH3`GaV1CA5QFv1ndXSqH9F0?N}hB$|PhM zLgrSv^$HxVZ|t7+r#lrUj7J)|)T^{3_yo+>c@R`LIG$V&p?RydZVm|$E~tOWj8@mg zrNx)0=k1QjX>Xp}eFB1?iZiNB@HMY(N3>}yy?yKT4`&xfMTTNd~f=ox8fP%;`gs%Ki#djGN z7)^+iPV($MEo!|Nv?f`jb;HbIJFA}nF8gCOeK@04<4DRL>e)mJcpe7fhvHAbS0j}} zf$aGX*jO!wx07$9WCNpIh7JO*ZFDqHYs9a}Gjaz#d+D2F{&(ph*C@%ozBDFTYrLTj zVyxxGKmC*=K>+=<$_88F5bcW^io$J;Khf@G&Nn4)HMnBNmpxNO=&S~&mLJ)Y_$;CP zp8(`NN0U1;{atb!n>GI*_T^bGgS~3I4!|OoU}e`~US-Iu?w zks9m;xG5AI2Fnw!o+A!d{Ru!6SW~tR$tET+#@Cy;ysaj4MS*e9xyo}+zq=LZZ-->d zLl?At)H@eiDv$mVXX+_5$sTurgFCjXY@K%vKP#D&F$^>&qlUT7SG3~|cajdWQ~58c zY;tZRe2m2##JvZQ{eo4BIna&9tn!-f%#cq{f$w9(qkpMdq&D(Pd@v0KQj`;A2aNYi z2K-GEPrC3=s~r;5%6ZBld*w{6x7d;U1cV43D$NYzIVE(ys?NL@Xe>d=C7Ihw?vrIw zuXEUXNKvf%nWyLzARugmc|5@ zsfS85lDNGbgocC~VFfwkTG{Ft6gnVRWh+>QhGM!~^P$}3|J$G&NV zzcM$k5LFV~!-ogm_ro6)cS5~0aI>~7XeT}yGT-~M~^ud6Sg&$Fuk>O8Hea`+Y1Uwoluf~iYbQ*=xK&|Cj z|CJbmAH~^f-zjbH3W+al9xB^eF02)0uhv=2ro2?pA!9uE=*ag`+TJYAp=chppKRDg0L-7#`&kQA@fbMDx=eVKt z**&Mmt*Lt&VbG>&bS@mgtwue}>i&nxf7~0ajyhpG{&G52ehiyyp@6laUkKb|FwO97 z*NM)w{PmE<)~G@HRh|y16lqiNw_CnqnJXTV7GFvB>aq#pmRJj8B-1jeHsj(NFW>V< zZO`l>#~&38qF^02@;bTQ^P7Xz({ncElc>|@FMIXh>I0fqSIy?uwv4mql}lY)?cqXG z&A+B-;LBXM@R&iyvgcC*YesCV^#(odiK!Kph9l*KfeO58VrR3dtvVTcw{&-i}|c3X^(ZdYl?0(=t(wnm7Ru_*J%`8#$!$!6hR|tSZ`|^}@+LJDD{Z!*6s&m9Xd;Mo1hf z(aIRP#K8EtFLxr}hpNXGR`Buy^-iYa`p1kP(JK9gfo5dROU9czW&G4&r?YxnJ9@=`vlGFVUt%e^;Yq%g=3v2^)C7qnGJ$NhAMXxWFh_*F+bxfLl zbj^?sleo|f4|nIoV-{g5ZDI)^3@kBlsGh@9zg5M~f)XcmZa>(3fg|*|yB>KDbxkYkaJ#IX52n8^P8XyEm&6r!@uy?8IJ&5f&J5~1yk6#{84c9uTU znmzG?{b4eG>P8`mbVrt>rO7jAGvlbOOdlIp`@>z~p0kSB&6zQMPt+ZGG;EvuNqh5z zHhC&i{j8^1!bLkU8!f*36R^N?;#b~q{O+wbyVscFy)MT+%cXn;S!1#Hiqy@+IN*4y z)h47FsqiKBo-cx9FW5|wcieHA)Sf(wjrjMPepCS8RRm548kp;{LymR|n%HjyU&?72 zlq5+_h^O02(}Wc~9!eexm@5C1-C+zK>M|E{i4{7;t!DcKKxC+|QGW5LUtJb0d!5A! z$9>R+%H)>WR-?BTU($2a?Ei#XqrpL=rRVKsOss0N5(aNS1QqPf`ls8ho6g$(^$VDj zpP+XASU~*GYZrk%f%K;rCYwlWeUfBhmio+T<{d}N`l{{NKSgEArEur+Z{&3SHEiEy zb0=TPoiZCgayq~}P^2}aK1hSZFG`7RPTB4O&n2lXPMigF_daj%suQeeAhCrNSLKo5 zeXHD>aP5nU(0a_dHd44j7w!I^5je#z*$q}(pNhW_KDgTL--TK;YxEtIASkt)R6t|9 zYnaS4>c%GtE-NJ5{P``CXr5;)f$g2fw1H_YWKERmS`N%!MT+5=AmB<=(M!kZXm;?0 zMl$Ee*6m07-DxphOpSo^Nz&g`*x*Dh)|%85C{F@1FLnK`y_^&QXGZp2w5Y?QI7dh=mLRuNHh7jjLD5TxQC>E|#JZRQ~jam0@!M>q!r z_7vWm_}6FiW+H2mqJ09KSDF{HaBPh!cg&{zcJkW5raodXKRuD$9k`cwfx@4FD(*S> z`+#nuK;wG`+O{0}U&e2<)wfUJLB6IKzZpW~-@kyd!qu6HyS?}e4tft6*(+cBcVo!_ zQ!n0gPx$t|f~ZcI-9NeWnqtHM>;?c6v$s<}0Xj+#u}VU~tYPu#D)WR_WWHR~vPorN z6-Rq}=*q%{-M$2w;x%8`9Zm$XP58x%#7_POm4tdpWJh~+U3oOBVvnJ%+WMqby2jo-< z%uqI|dlsv#II%j%`;%JO70NF&Rz1LDVYKsym2wxQ%swmFB}wDM#)To|C^?T*E&*xU z0{kfci(D?Gyhvkvj{N-t3hQ#WQL1fHhw+bt$eTFAQlsd8{}8;GMqFPF#C3R)F82a# z-%&8YJT3A2gHNTqu#n|GC5wF5r5$}bhz3tw3@E*r`Q;TAm1uRRKn>Wpz(}QsJem3G zBV?93`mh(p>vl9Mc$>dX?ReSuM=*u1x${41Plw^&LhqC!) z*s1WgE`@Nwieo8=1bgu|JS_Nd11`BVa(#dxr2_?Dj_*1di3z z*~&2#V@hF-tt~~q*+MU2-=W!!0ISd-z#zoFsTqf`ysshna73AbdBKkt!-7IA@8v4L z5fEkrT^OX%3C(X;&PU$-A40`V<^0V8$71H`qjM3ahvHh4ch$`e|^)E z+J@`%Pz$=NE!>J7Cj~$*=Z`|J>|806Ou1Pb8V~L;JP(y~q z8B=DBSHfs(y>Gg%CE>%V$|ClKLbIZl_R%y1LkHBY+#kt?mi!1sQ!&Df#$XL-g&O>a zLRUp8odWl{z4ro6BVFjR;uoh?*;-9#IJ6;= z6b7LYj>#_2-@%z{?TwXH2BoO~_7Ka_usP+A=yQLlS9|G~vU4mnoU1KsXToDi)Yfs8 z|DmSD@r&`%WrFP#lQmKM1c0(TJP020)Yc{E9+f=ZRu*&Eyh2*^Z)IJpD`p$+|6@qd z=^(?q;ep|A{pgw>FTt-cQk0X+CjzmI-X>RDy%)M%7rXwnVlJ~R4l!TJ>Q#o(D?X zs9U{^$8|V!glB|Bp8&1X1vqkySVgga#>HqBQBieH`RKz$ny%_MmC2(Se5`1U*yjpr@e^6U$qjmo zn&mVFDcs$s!b5j_O3I4|*tx6m{5BR>eC>xpZSH046Ale(b!RP#Eq(99kN8`0@-?{?c`0lzAw`jnYSShUf+Fv9nJ2@z zrw>g>El&cvfo6~rtc8Is8=K%qd0>dD!!rNWxqHc2!&&3>*xqgQbFRM@&kvy?&YsOC z&YV)sBSLp2%h?Ik6ue3qu)yL^Ns@osFyskm(cgahAWX3x-TkmmzU9qE(;b0y??w>$ z#IF5#g15}e?@(&K(zq>X*G+K}-pTXj?KHk|Be3J@6EMKTzG|%*3-+}>5c#p+5vn!} z_lNDRf38zC2h|j>*Dr%TkG&>TGsQ~{>>9y%;kU9Hu9~7GL_J+o#Ja$d^}V=eNv^Ru zl6EcYoDluD@pP;Od{&-b6xb7P;3471UW2~thlfDJ10?T)y8G32Z%&?hZ-i{pn%`JY z^XOX!C}mOk-MmoGs#DRr^qHxmV|)*MRqQ0tp_F&)o6YXl)+s**AagcjF6ZV zNIJNbm`=1Ao09C3fXD3;Y^PJ@uQCtqzubZOLO@|QPZ`fTre7pMlJU!Ok#K;(*> zGP4qV+dn27W4LHdMr1`f~HpJ*`ATV6&psQ&V7DO8`5$P8#sip ztE8dA=LtloewohFdjPR&HOO8&?Bjn~K0nS`ERDHffYH$kHgDRxA=(;y8@Yxo#QmQLZkv-(uQZ8&|?&WAh z1+}~TA+V=Yib)toUWeDN@%yPrE}4^VbRFJQ4ZWGdi|=dLi34EtjP{_~@t@VjZzMaE z+L|eG+7jgU4~b_139mmt*k3kK%bwcftU!OUP0=%-`IFpBByxuX5xEaL$(nZ9ZJN&B zYUQfVchN{PU~s5$yMNNe6_Uz0O;8`N2{T ztBj5Jhwqg18#oBTxVz_IS&pIaEXe-by@^u2jgtA_k`$3*MeWn>M6RaSA z%rCIXSfod73+|S~;u{vp^`8KF_KWkT)wHEhOcP+DvbCxuW0fYn`lw+}_KLeXnYS^K zSH62;xNnqhF3SMVmZL%qRuRx-uBvs6mup|yx@YnPLxcvfw_v)XQ~54QQr2^m&)|5R z&R}&QT~0Aqi%Xu^-fn!9AMxaDe{e6Ognva5QzWS4e=2i7ZO}BgGlZ<|nbo~`_^J}t zM{l}WzJBw|p^}GkKHk5PH$i%(E_@YialxviIq()D{7zFY({wy?w-YiTyqJXMHpF(b z)6@p;r!&}Np+44})RsP3$FRpw{}wEtMhrc=wR=^5DcJ!&>`(loayzInCsI<)y>j@X z0=>Z)%PjESs-381d6Gk->5VR2*X17t-ZK5g(()1nc}4cd#lHLm$PwL8bZ+TT>7wYN zGOuDAA2vR{i_)Tb8nE>aDpnTZ*Hy~DN!ILs0v3lZe{qvayo*0`V4!x1{9H?k z>1JjTOE=^Hh6Nt`8GN4$N|`S(zD8%bKA&K#NJv?E!I%@b+keKqS!n##tlT^j#&|zy zaRE_8iVI@jkmFrsK++ybSC9$V6?}iI;Ig8`Q%+oghm3>cE+wPyZL;q2ZH_znynCvi zqi0l~+~Hup7lT?8g=g58gW1_6&gszhgJK%+Sv%6c z0gE*gF@IBjug`L=QhK;lOuvy_ol2{x3^n_HKZPw`LdvKn{%77EmnNIqLQ4rpHDEWL z#dbC%*)?@+b&F#Zb_IMpbXkSk+A%AYLFtIB-BCG?yLxd8;V3-qNp2XvD4Qe9L^O}w z(4<6gPJRlT$52K`=lgkT%lt*4H&vl79Kqv4nH-CI#AnZWkav#Z^4nb1UVUpw-fDeR zeBLv+ARYDW3R97FRXAK~7RiBOn?;rcSYzupC+(no3~}_kQ{9?U(l^Vnwu>=^Ya;2d z$0@9yJGzk{2FNWCYQC-8$O@N>j1zu(#d-GkpDcz9_MxxBJ;vFHj}>#pcSF*65`?pT zUxj~p7il69OrE`6D|Qp)&J4BN`@5IrH?Fs(Xdq-1lDl1XxL=MGabP-Sbi@4c zpy@?g0ns}XhySw23SbsuXb+uq%xNV9D)^SVRTOJY)>bZ|>{qqLEZfeEw2E*F9r7J! zTXfZ6G^NW5Gl4W#79J@i;6Z9IBtzmG5YnWo^}2dVd*X>7!q|@g=Bz#m-}IcE_(hen z@XDzBDEcK@LN4%3w4o!642Sk$?AG(bd$>m?J?{(eCb*{Rvn454x)jY{ihb4ZIkU(r*a+;#I5od zxuCgsnad&qc>uVg1Ve1CkR|L<*Va1M9I`s%=M<$5{H3NU7Sql;)Y`I0WczVTEOJS+8?D6yXm-7MzRsE zaF4F^$wR(F@PxZm_k4ay>-U@#{_vT^n=kFbT7D~=PG{2?Z>f)zbvP*_#fF6BBvm2- zN|OLs?#r3rBgUtI28u>!8i-dELDgxQW9*zuao!zL?J>b(N*b99%(RLMGN zv&NM3)cI<9F0Y3g5UFlwrrM|+S2Oq91bfznjDf^nu^%vw`&sEHhk<*L1PIs{XdL-H zrJ23O#?t3@h;OLn_EP6&a}56(?Qh|JoC$jL6~CMxrCk0YCe&3KLx=kvu!sW`Uid*A zj^rA2`HJ(=udPi2&8$?xA@|VJz@WLO3-h5&=`TY&| zEj=0bafp|2V{1rFkdY;%pZJj@?_BG}rvhxmBG-^1-o3zRW6bRxk;3d8D+!$*gg9Iv z00e%oylc%gHEt8i0U#3Dhm*{A?p%LpMXLII5G(&fkrhv$1_G*+F7`hlJ`DQk_^yvMWNcF zEjU!&O;C!Z(uXtQ{LrU+emcT)Dak8nb2g$2S;-A29Ikozk>l&4Ky2umZTT@jLwY_54n+he@v-?UoW-2kXO__@!6QqS86vSTL@e{C6&Qa5c)Pg$w)fL2s9osWMx{QT*F&{Aak!Kt*i+lUsJ zrcasfi(1DUq6ED}ti?Io=3>o)KLEw*6UbL~SImH%dt z2ICm5#>u<#_h^5-6={{EJ?YiGa@nxa_Qx8j%sKTu)Q4p|kA^h3cPqzgRTyL)soM;~ zy%_baL#losSu&x%k=QW9l;taV7lOIx$-f3}Q)Id;iMI^rI$(TjBO3xG86=*IDM%g! zE!+JJC=kf~1XvNM2kgu;#V|j+?T~Fc4);D#M!FK980nw_Y5kF_znxlV&?n6O6@C*c zq#O3-RnFVNHkvY71k(&H3K;GrEx#aF{WZ}ZCj4tkeNl#Rs7kFl_U%wz@4xvb5@Y3@ zz9{PO2R-p*l9C<|kaW(uVpE6Mytax-J&| z;mRy=#*qn5R69_O5e<&2^EbhIEU3Luaeh)#kNdbL{{%=2u$@6T>!L^_CsI^lt>BI?gEN>uK9Lbt7tPs%6!X|7hC|;1xvRq&r z6(;x}H$T!bizq&fGk}nks+G?4mM#yEN^$&1-HjwM8Qy zm-2`yJXefOu6AqOat9}h(bW=qs+DlYgE$L~CYYqqO>&>X^8-zjaWAO@3qnKJ?T*mN zSQzD;QA0^sq8RjsgQtBWwZvGc$;Pe#XhuXrVF+s#cq-*6PW7$6m(jwLTS=pej~R^X z3tOU|MrJItnqK$q`k=+2iXqfnM#DFzKUWhB@Uqbo_?_Awtgru1vWeSC=nMH*@#k`d1$7NZU-Vwi4bryBr zP3C{u!~}*1A15BGMgOTjFL(1gNIT(D<3!{eNw?JSK@4^V_ElH65 zeHlXIF1kvbeHcmYiyBA#gf=cZ4Yx3wZ6Z)Wn!Ui-be`nu!oH}PDBao+O9j0s8vtk1 z!V*6*7H!&lS9!cd%geSZebu674wve7JP$2Cc+`4%Dshr3Z_l_t0B6KHJbF@Y1SRpk z<&DyDv-xVc(sGAhlOm?6{23O)5GcV*h1&6l;PS${VpwD1a^T=Zl8g7}XfB{n@RRn)kRTZyqTK8UJSIEPJW>-hI>x7ICnrA`xSX@t^jp-L!PK78HzCdcqOSUv z?JBbGFZ0{V4J?vqJ>3q7u}Cx-CAXc2{G||wtm5pc^{9AGGV+aB4_Wt7=+g{ZaYwkyz1UcvVX53lA- z1|GBZgQ^qwhV7^pPwhk&bvi5SdK%{z+bzw?34YgVki*b-+RU5bga*+7BR`VBK`i{}v$h&xmmUH%jQj-&vQOQ)+$9GmN ztwVn`PvSEqCmIR`W=8a{Jj=fiddt_}0~`>pm8nnY-cF>Esu~IGFF4tqYCi#?duKpa z&vNg{d{Uy!3s&+>g9> zsuL|U(|CGLNlz+&me~|xdNF}ylWwtI#L%-Ip^>V0^a2ooeke^rfKPS-fr-KPfoq@Cm_k+3Jz4>I)YE^UQD7}I-0JQuG)l!_s`<| zqIT-(d$OsRUID8md=TmMt*s)o9v}8V6>=!DOVk!5MoA8Hcsqz(KX2OF5sDIlo_tV7 z?s1R(_{*89%%2$)&B=Cas5X`#_FBrFOF?g95c|)CP>?<(b-s~Gq3)Dv#H6gt35?0~ zwZcAa*$#olBTr9#60zM{Jne=5vsS9ajg!0=0wKM(U^{YXj|{?#tFi@hTP@6s*IVQL z6rkXz=bcdx{`Hh!fF_cO1B))A2Lpps`!_(n^-_{2(Q$S4SlLaA{q-jL`mSgh&v);J zmfjWB$q$p)e?k-dS0ivG|9jAv+m^EPNF{d0;k&!yd@+(*IV0mo=K$~Yj5<+(D-R_= zkzN#STlo?rQ~6tTIp*j%QNZ7PHx~SLlP7t@%$=C8#Bt@{F_+HVBVdG+c{$%Sw49g> zQfz0gqI<&t#sbOM9={@5qf#fGtQQ{{O<5%yb+O;1+sWdrt5Nb4Ht~GmiXif7?Ju)fU-s~Jz*XQ zPynB=<)d%ep)tf#D0iK~%eNi}T8gNdQ2) z=&U^*t$kTJ3P_>O=_)-&JMKXJnZs>N-QAy_DCM@v3*1Ncyf1E4 z>;&o0B*&^&r@tZ|(e+mE@gQHck|w!5d8RuL32jYxG7K?b+bP^iAuu2qi(c$H!sHPr zUTz*=YR*`NQhkUgS`F-Nd#hNN=D0M~nL`y%eH>jrDR#5DFttuD!rYhoYo9=*-WPvK zQc9VVYlh#!yv_^jMEGM1HkijmhmZfxv_pVTjos1x-B9>0D)z%&-&X8$%-ZlPOX}9% z-dDj+#8Y(42EDZT!r6nSw)PfPxZefy-0y zORjX+5p^pV3m19*`5dES590_VGX3YE_ic&Ath z;JMe2&sQ375l`}NXhJaPx{`HerPH=6+4L_|CQEyEl;;>j?*8MNUNN^vxQTPL`zC@d~BZ^|O2lFOt;6rey z`~!Tl>cIi0zounXIcf|VYz+gl-IUojhjWb>lhpmypb&D~wp9n;PFmL;J$y{pdS&?L zi_b2xm>r}Dl01*3%Cug6IphC$ihMOm7O#QPaqVlktI^p z^bFzU;}wr!o+r=UalvHubxO|0e0^)l%F3fhB#gkB5#@%aed1UlyG=@ES!t#JDEnPz zcRVrXu@Sai;=1%tp9vWgbd$UH7S$3gf8nW3e=UGzqYF}DQ4Zq`AEK8&rx?08-_c|q zz`5DAsRdy)dixjdX5V)%G^Wwr{>?)nF4D|n0k|^{U6HV|#r8M;@bF3VnV`D301-g` z?qN{?zFlAhLMUh3t*LA7KLNt*(`Sndl%gsv%PO3ze^u&I6dV+=uHqq%L*m%2K^xq- z+&cr_0A?}C|DZiq6O##mlVZ$%n23c2^SFpfc&lur*ag4Fg>6F$=`#)G#C$8vZ`1aE z5>S#CYg?-zIMBJn8}?A!@feTB!duZ_xsG)GT3(g)KY%y>=Nc*z*TIu&d0K-rp(g#z z()5xE2#90nL#pl+?JmthW>f@9T5bF{3!h#`+x zNv)>_D0<8qkjj7ObG$7eG|Mn`B#Wd@SAj_}4)8q+KYIO(a6Jphy#YITnFsL}&duvRg~-bsGZGsQ8?Acs4p;gAm8B7QKd;>{PIDkt=9pw0)6mu5KoEX#v0wfZ>uoZ*m|3*=C+PUo+O24%+TjO zy@#C~^Nd1zcw}nFrOZmEN@yO1tGW%*J8C+w#EO-U)q%0^i(rJ4SDKyXbV<*cc<@cN z@inz#%*T{1#&9BUsIPk5sjmFeBX0fC(vQ$R0WB8A7F+zsYS27~B!{fVxX{-DRLi)R zh_~mGPEO1yi;4wIhp1{X<=}nd{EO#o3(a%UY68v38#K0+ut`qHC`OBe@2N(=WHBqy zV{scldTTMjWcHK{8UBl~ktBKpmL^iRGYZ2jB4F zYUma^NihhG2c6W1D#g)x1b@xG6lY&(e&yI} z{`%Zb{sDZel!q@sX-V04CvS|O7=;65^+&SIk$F0Yfy{}~{!Vow)RQxz{9))Eek|bs z@pZNJXFn7C+-fB4ox&^1$*WqQPaU`^uP$DjP8f%N@xLzuu8+Wte1L&bKFM#h&ft{} zv@di;Dxn6l8mKQM+8GvS$Q?Fw^@n?EO|M+(oDi4`IvvL&9;&3~*B_<+3~aSMp!v9> z^Yqups5l13&gfVq1AfGw=Xog|9JgO=3F;&jBagAxmJT3FOV}HKaxL;T$7sd##$L!D z(5tu17_8^^qrFn8D-Dfbe{p~Orw?4K<{xwUgwUSZ0O za8YPUGVm|~L0@`e*bm?81+rQ*z&1KZXRbl_fDYD?s247Iuf#9}0U=X4f$vxVhX(JD zz&x64CYPEH)TyN0@8aIrts7cnfu}_(jYRWOIr-gFjW$KPpfH4Gb&Y!Pya4w9%PNZt~~n;hRV}W5sKpr`Fip} zMZ#2$IT~E&!6Lz{J_J+>?o)Ou5@S{ndHq*bnD}L{3F)rJiZy=-uLYY_tX*2L!LzJq zUrPqq<24t)Tv?h*CymM5ZB_ll_hLTk<}e%QCK%_74H%TjPy_v=A&9|#6`TpPHiJ^p zQeCCBv%(dNYecDu$bbj>vV1?t)fR$)1Vc-i&HHYtS>W0rYB7p>Ghk>LRv2wOhV`yf z#6G*_Irqm?($(efaNqYv!7$Wu0%4K~vct1<(GIB4V{LDY&Bg+jRf|7a+K{D@~~ zn~u>$XKN>-YbSiB!&$LS{%{w#Q7oN1R1EasDIgkNDl&dou8-Msz10)rbpYeS`g;2{ zn2UGcy3(_I=y9(Y;AE+{@Q`g?_wb*z{&bzen2McUt4i3!`<~0XvL>-@tnpv)osFuA zt0BX_jqP5BySZVbMe{jI*@SiFaZ~Zq`wG3&OxJduIg_VArpkATg_tMAY@IJ3@xmN# zIWQXYg~~6nIus{S-}CoR!sadt!c-dP3@rnVVNpO?wd*bKw2Nhi=o#IrC$>^|TRA)H z&jvn0kVvGN#kvVoZcCW~8P3dv7RbI5iY(#c$sH(V!`R>xzzN3>R?CTd9*)*M={}sP z3XPfjIb)Vh-%StqyUQmN=o31DnW(aO$Io){qF-7xZz$Y)_FaEcscS4J960o!l~yRY zxKb^(*>PYd?+Z3JIPjt8{Av1CdV)*yPrAn;=Y~uKfn}P)?RolymG2TvGZKHBnK}2M}-bGyhi@tap z9?SRl1LifUt_n!^k=5!+b@lZ9WPbC!!2)AmQ^E=Z-)#AB>TiJ~7wEtb3)2$Egd{Ih zk6Wtr91Gf6HL)pWaRwcHqPRh;@N2{Vr^ND>WWcNRb|{*ks;TRDeXZmEGhcp+6T;s! z>==?(MM-SH4&J?3?()ZyH|~?_;>B+fXN8Sv3bOR;1!8WAk5>=|em1$SC>J0`gcnb> z9j>R{g*g-oHgb7EH@4Ckfp`FAkfP;3%^#lb;#DK5x7rK`NMQ92)f29^izNUx$1~!S}9_)cOVkr*#r^%%Vgv z48%?wzc~4JHB(=7A5f{pc4k6ya4=8kX`C6N*CM$w$#O*W?k-_DA@`2oT9!zmX1Gz< z(pKF8)VtC_XCgM?_mGTpQ=k6;Pqpc8*$gPBXwM%ijG17cB;vz2*Zxq$qOTn-VyxI;wwByPZ6@=J23Qq9$^QUcWbi$H2EyZ!@ex(0RrIe? z^uCd&Yj#ixWw(}COltc{MqHd9&WYM>-XwWx;M2CnGzlh2;8e#>+{y zScA8h_nBHn!yYzQ<*+mw-SBDszsE^xvod_1%7O=qd$7qiQ# zX>Sx{eWNWDGe#A+U@U=$`qP4aO%A)#=Qc4QxRye@%w=OT5%8hsZ>J!4tu>2wOASq) zdEA&-INT5&hjN{ZpXF5q{VSszWbEaC&djF2rC-`ek*PR{u~<`VgD3e%nlp}jd(t}B zQt7&JTbU+yhs|k1Nb@lx0|2h`&mF#Iv3I9Kd2OY*PdZ5zU@k`X1*2WRaZjjkUiqkZ zTxc;}bn;u-Y4Hp1H6Ae%Hu(#D1afkI?tdD(F;9ZLt;P+HIwPv0>K_sFIDAl3hj*=}|@NEe0*cX10)^&d~eM_@+0WB@~R?X?Dy{ZOz9%^<*^Z zyP_qRWPform#6G)mvn+V06G2x;lD1~sBc&6mYOLk2DC1v?vVLKoc&7hDkH0F8vd@* zi;LN!kI^GI&;DUi>8)BB#Dz~hHb;M%r{Sefv0R$J3D{cW#4e>Iq&j7~j^lm7Km9Zk z`>MLfQH{2?m1uiz^4dfF1!h>n&PE0gVND1{SpW(M0FRwEwD{BLT3W2W84&RXey)e5 zZ`xj^l4unHmKB9iHcz4NRbHB9rO(rVm8=C{NlTI$=S4ApY%p;s|KPuJ>X?)=FF5tPz z3zOQpqN}!sDHi0EA`;4TxV8WTIs9o7-rR#uuQqv(BO5{IZgcq4OdNrZPj8(;VmFD( z$Ot$-hNTuAM|{>YTHK>71y&Z3NF0Nak?YMxgQA?V9C}e5GR*2SrM0~28%U*?%HSy4 zHx@bd!2EMucVb$&oLzZ$9F$NOocthQew0qz_+1@4cJn7tzdTm`X`{=gPiUTAcR;P? z2g!Vm*(1>4_VlFQIi}GpEG<>0mPaHa@>u;SW#jn{JSM~5C@=k$)6Ap2fMfbpJ5MNV zFG0>WFK?|&JWH61T@Ds2m9SMHHbT@Y*<}7C5rK&Z`mx%p#s2_p6O)HVu^vet#*Osa zxPY8|CFoY4Wj)c6V~$KBlILk4RGUe+cy#!!+%D{rtOqUrXr=+KyTydZ%El;s)6&p6bBhkCCI{QC&63 zgCKa7kY&KfJ*gx(CC>oTP#v$|73s1c9hCMSl{?5CET=t}@~lMcXDhT2X*LTSiVT6W zyRxmoKGl>eWL`%n9sdAYmGnryR89j7AFUO%XhW=jXUmlMNN-vY=&2!4LtyaT^H1$Z zVmpz=5dkPN@-W=7s2%&{((t?qJ|&RhhZqz!B=Vnd?ma!}(#gI+So&}Y?Lwo;BV|@N zB#hFM0~j9?W{#@X!o2%i?CFn(2^iFY+IcPz?2=ek7nT(Y?1}<`ySNwwfr_UxZafTWq?D>vUy@DLnzN;hdUmm>Nq?xZ z4=`8WmY?#B@#YiD730#HSj`Qdl+en8`%jU^V7P3NpHw~7yY}PU8V4SuV-kh?2J+b_ zoD7=7+}vK-7%epSZHI6m?kn^8Qd4tsw5b~~c=ky)r7n6*K9*Ld1--LruQbQXw7&~U z44=yzgV^@@A5UsydG=E(2j3*D!I-cpSMWGL+L-Cux9%IOON~0>;t7>D&PNL-dx8!@ z{JYei0jKp)l`JBMP1SRi1DkoX=s(cj#eNp~RL&|?*8t(1<8hnZzPlPhs?R2;_DE%w zV{SeX-vi#Z)Y{wrJlAr}u@K%?@^VMMX_TW>(Zs1evVy-3?B|Ze#tE!*G(?)Aa%N3FD2Vzp^+B9i1NEpYyJ)QtZCq%j{8f6G_P8gOtzu*~6; zc>e&Z^-DXRq}Be-sM|*qO3wgHlIP?=^`taSM^8;s+T&1pO};Qs8@CR`4?$5)U|Yv@ zk7p#FPk8qqh<#{9m_f?M;T*9K-}^Ji%S_T1SbooSd7qL8~}aI9El0bP6& zzHZ-aEn{(iaeEMs;&|I5%foHK^gj+cu8{BpLe})ib!qiIIpBuj7t5OCK65rt2PZh^ zwkel}eKn%Q%L`cBT6u5~riI%4Ngm6|aNA#8UG>r`@U77r#ysbv#1g|{(gVb87wTAgz8UG%&f zK`;?@Vg!#P{6L=7&-#Z+we8KepL28~me~v?5Mcuj`EQ@SY3SOyB&^QW+#;mQ*F@J~ zy3#M8w$|ZWiLG|C4bg@pk&LZFE%lvNJj?crlPY0=89Zl`+Z9-+N_8fdUQIh)bSg5d z=Cb$wS_K_pS-53$rPPas_jzRi(svaUt-^kB=*$AMG!#TxN-7T(N>OE7Y>Gzr)@<7uMv^0r;6b?>6;-cD*iPuwH z+----AsDVxc`{&NWRBlTqb5DiYGW8=qs=1Z@i$hUZkDi!-AeK`>2L`kZ09GpYGu;V zTuGu>SbDbuJPM*)tGdrsXcg90iEyjtC&B^r=dksuuTS;u{ku(X zs%WF^(ZpU!p==OBkY91^aB;;8!8pYvF^f|NCwy6BsgdWiXH#RRB?* zcAr8jQDf9PR;ha9MZSXN-F(@0y8?5NP@H6Nalq}0RjEFQHz&y~x3*a2wvjyD`=SI( z5nxY}-}1Pk&*q;g-fO0fZ(s-nBw!Vb1AwA|#`e3RWh)yiLRl5rSPw2mZVDgye>zS} z=q>!VnOmEicTpq1#qdUd&@dvftiUT6vUwOBA52yz)%4Xs7IwYK)mDFmF9d)%$|yMWCZ$E47gQ9UDU3D?6|<87c^oW2kkFR^0(Txs_o25JGh0h% zF2`1e_XWP{fxTFA5PB0st-9-{12REz9purum<3JwP?>Ifaz`WQK#x)BTCDcbSh$aL zu`bzyD>gQa{m$oYGmbKCGK{$+PA!tJ+798M=w=GCZjxpDqp$-O7) zP#b$B-bI&P%x7$Ld=qi(18Q<-mnhl{mr- zSBz2zXv%bZfKQA1PuC*siWFDFmi`wO^q>dcCOh9oJG_nKX+@E$ssl=gznTJ@LRN^89H$ zTIlA>vK-f+1CrB95Zx{r6uY&*b(=(cCApsE_ga+i5L1KO@H|vue*{ij-N1ZZ!({~FlqaoW)#nD;(^pMCOcH(fugIVh9y)x$MuF~MO%b;>W z&gMLlbKjC^eVP61b*9-p%169;Wy+P?$;RWJd)2Bfa#txgb_ch%l*=4$p#+VLx!MQf zX=}@PVRIBxrPB5+nc5Go4mqg}{FnMPU@hIe=(4;;LWd(5!65tRkELs_>-|3^h0Ttg zptqeUg@xVQ11wGe^ET}OV4U{{j8{p%nGs2m05Wk~#HTs!iqvqx`%{?RWh_{2I2ha7 zi9`z>+M-DxETE40r4~h4+^Y@4h5A!CLaTu1mhXyks<YKml3B#ibn^%g%f8~7Yx(HuxGG-z&arkKZb@wq2z5F+RZs7t*?S{iHX>#_AX&u(Nxqm}QxjNccz2qsLB&M(kcjAmAKkg>GH5xo?DP z9nF++VT;T?2qX$pJz7YS($yX%VS}~FCY)P-?T*HDxQw*L*UKexYkf0Kis~unmQN)j zL$raN=Zr7)=82``oN}G~T`|B*Hq-6y9DwCcOEyV4_Vlf6wLh}Xw>I*z+Ib}L-?8~- zkefhRZj{@%oZKVN>spfmKcDSN5rS!d^h_v%G zykwGlQSBPm)#Z6?p;#jy2nc|3J!zXvS3_x6ySpln#)@cgl+)r;q_G(|HC9Q=OO{=S z6cStoJc38ZGw16>I&MpA4SK@j=Hx{Z+((y@fKlJn@$ExW-JE0+pCW2E;w|*n+HJLr zTd{E49!>}zovNrs&Qx2MCdfDRO?++FVUJr`H2at?Jj)eWTr!jlq~zpr>s;-6@<}|d zTXc-vvih9zXy&6lenMHnFPag4DOjHVzE|4{_7tv{WY;?( zoOu!~gqD8bkCCU-*y#4JBQ)_l5K5BY61S-st9K!9Y2A^V+%@E)Fs^~fLFR5DbHLBN zJ-W4Kn%X-^IJ?>8@yKq(Q+XjXgnua(H5*PFmigAZ(FqFjuaq}KhRIf=iw0B@>OPy* zx^dx)S+r|O=0f5pKN{fU1Z3iw>8^gyC@kBKHvN6+3#*s8i*%2@y;+ILr7T-(uVeM> zXhJ%t!AZr=iES)}3yW}smO0_^{VLavXpOQe`FLUn40-0MF92^|=S!TSAz}ak4{k+H z`j1r9EOlF3ivX7o0+ld7V9(A@J+V~h+Z;6i044ZS$*AM$6H?|VgoUhT~K3nr+%^TBh^{@7SRMd5A=_e)`3`kUMMcQ+L`O^Acp0VkWDaQEXjR)5P zv!tpKe`b_l&P;9AtsIgFwz|E%D;`1PI34Q0lE!$ak;J}f-N3-@_|)&IN#84+m!4K( zx1JP?R8A3auFPLKC*do|t*=gn#!~xcAF5=j#ve!;$$2BT%K;!(0er~@0QbQ3qSmiF zN4Div*%`9Pgy0jLd+}L@NrWL?7ijK#8r#Z>OaOri<0djQ_>b#ak#)h6-JX_d;09P^ zXs!?+EtQIq$G&Q{>Np|~Z!1RS%djj+@9Ca9)t7S=aj9l9vgBh2a)Xa!TIw1dl$vwg zC9Wr79D$WU1-B8O$O?`=iH95_2`mcsh#Zmz2uyyJ>26uBp5kzuBY?&i?uGH;4RN>lVB~?E)O)C{KG_(ySxC507#D4*e=l0Q!7=6b3vCNeyoG{8BodL!Lnvh! z^&*{g)H;QxpRGfpO3ys7sx*g!7k|V@s5tr6lc02;NH0h|)$dsgJH3nMTBs6-J;?2x z(+Fj=TSSK5-Bv7=-5|#C?r)PBdXh8%_YUg zV-S30om_F8_s1Qo4KAN|JAVopT<5q`-|JUBo|$c=-pE?cO@NR_%K{@Vd^5Tv- z#Ye!bbIUBG<>YJDQlfO8t|S8=Vs*(JWQZd83}KkSp#vwySQS<^FlQd`Raz1YM8qhXFrXWS}&w2o-*G_=#( z8h>CtC#y7FO5uNYO!KzUn3^&O9{llABX+`2%@eF^joBY}KJ^^vEhgS|y4RaaO*yV7 zY{ZN3g;TT+J@KE$teI>l^6jm>$f64|+Zr$4jgWH39P)i?)u)W2zQre!r0<{-UMgdI zDGYcZ@&5qko3^DJF&os3@y$t}K(}(zy{rI4H!%y6;2y&SbNSQ0qPo$nrWSBb1*|wx zECv|dWPo_!dx{U!O6ZSvG(-*PSw11O0nT{Edvuo)e-1a7XQHWWepMyYh_8nWs#Jl{DHb*==uLW|B*3 zfX-AN59LF(Jxlj=5=}G`6Cd6nf)pQ5{VI8>TCuk&HQO@o&ec_1f0~49+H7ViR2M6d z?AtiVJZI9Fj+y{_&%q1pey6q4V$^JBxry%fvZBJd2Xcl|3G4thUF#hUsaf={mDCq= zTP?1rTgXu`-UvMB{UbiLj=a5)_@Ag*P1Y-L_+7R-Nb_ghMsUpFA}IId)L#5_ z^IuDFuwPzBzxXkEgYNonVT}F&Q(Zd$08IoVX%gN{qn*=`zmTa7j=!ke#6_P-#R~hX z9w{u-oLf}i`J`Wt5pLW606}{psZFC?#bcsHV=S8%0v8w=IXPkRdUyWxV@&DYTT+Y5 z)%CWrY%>>tm%@SYs89e0KE{E|)g4mcf7m4o{{YwVQ)#tcqn={YXh1o}L2^Alw3?Kq zDsf4FDY2&&NvSsf0HG-9eG11->a8)SzPQwbNKnT3*a%W{gT+odtFQWZKrI}X%X4s} z;ey!jKTQ4K&ZymfZlt@mK>BytmNv*}$;tg_Qs}pa0W`@ZZ08CX_cY!)#xPr@{{WBd zQIZmrts+gC(>Oub<=Stmm|jm?L~>z22M^Hn~Y&e&$TeA@-HOcW1hXgpHJ$`Ikc;i zWVD769FaD6GK_{9sNYj+mm2P;E~Rkt%X>N9Iev29r;5LN7ohZgFHErOZBwZ9!E2-3 zB3#?7WxUAW`3dgli~>G%E5!TGk+fBdrZk?IcZm(mjIAv1yyFRmAPzCxp7juFDuR>U zawy2HZcHTkT#>tl=N|Pa(jqHu5yt`%pOs(T1J}L?YdsSljn(}(Z>HY`Z!%kT?&sA` zbDY$EKA7npPh6CAPgd!-#E0_jH4tNT7(8=@J-g@Dsd|oiU-SA5{+&{3l)q40NpmC$ zigt{W`*HxMHrf_}Wv4Cfqo}pZ822<#N6M0T2Q?yrAU#ZUt$OM!3oArvCXN@I;(3OND>PHLmWgv`Fu? zy*fKfY4VUuBtf20*zkDA&Z4*R$VS__He4A3GHon#^&a(ObpEH++BUauXu4O~?uD~? z7S9riBa3Nm${&E(K4}swwUW|R3lkQN&^9ticwsRY+f(oCfv8HYGDz1Yzx>?pV zw$$fLs^ukgjEuhou|2b#^YRr9)Dfe-kxH;2v^Xrbl zdYs~-y3M`9-NTdMp&7xnk{sQt%KE+HIl8c5NK z`>`3NL%EPDBJE}FeJQ!}@^TJG-SwrQIZS%{QC9>G9a=YJB}mRe2AtYE@$nw?%>m?k zntKFJHVkJR@luWp>Gt1b)J5IJvdt3m@fR35?b@2^teT#p&>L86yquQuNgR7%)B6kd zifEr1F}Pu#*#@0;mCRa?Qr~KyXO7(5fMkUbfC$S|lDGe(lqG zcH(&c8_h=A?#gISa5ip7`f%T+K_E%zgse#^1b_%k@_P@hO!`q%T-0veY@*YxEbQmF zRbPn6M0in_I(6wvbF77F9WBxpMB4F72q9%~gNYc@v| z&}q6tE6sVSt3K_<8z{>tKBIBtzqL%21C8@zt657lY(VWtdTLnJVvUJfx$GxO6eMphB3y` z{%D6@>(k%gc`+*`yiJJX&kWwA{urpO!xwjE?sHCH!sE*`HCm5x?Oh7}vMXXmu;V%S zhI#j=R=3)|rGB4gXO?6IkPHDBToQe;#RpJd;m;lFPvPE@bsc?eiYw+f!WJWU9k`~Y zNm~=&NMN$*^Gf$Rj;nIhNOJ2GS;5adnsprgFqkhL{HOg+*dLIfmk^{APZO&LNeCcz z;Masi+C1t=RUl*9uEmqvd?fz>lBp~0lPxz<>3HN{CM8qtB4_&1X>N2)M%=BtK^?;P z^3_*0SLB1=n!qF+gM;oVxa*Q!<3xLZl1ZsS4ZN<&6w-;l_$z_`0HqIO90fvUap=Rp z(wW0?agd^CAajCgb0S>C81XM+DydErd!o5IF>8Y5@CT}N%_c2HHEV%r90rUS-M8c0 z0+;LlywvYCXopQ+ZLyCFHNb~%>07wT=OU}G4tiqescxs!mRPOijw2&WB9n;yaf+2* zcvG)6+%{Sz+iDp2r4GU{jq~qM;>)$lE3$3jA6M#{-$wN{mala8FKmcW zn;!^v*@5|!R=B%Fw*{9U2_z43$M&k9qq-Yh=*<^VO<~{?YBF0wvBe-@e~J%3g-@D! zA&n$=;gBgG^Ap~c)HK?zhcxkfUhc+SQ9qS?1+gWWV)F^l`n@P*XAu&M$?ua|-d!#3 zzjNj~gwyFT;67tu=97ravA!Tz zBmuaNDc!;-w+C(ytqzo!#?uhPdXMW(MOc`!$j;td7Ter`?LxYvs4gsw_Ru3Rk`;{y~H!H)7?VpA$Rb^+n6nSuh%Ex-{#}xknRO)*f?hFkWl*9;hSHT2?{{R#difpzW z2escKTe+E}Ld@A85$1xux;c3u-2=ZY$n3d3=bF|Vh^}TKqajD#A*uX{6slQQACLH{ zX(WKQm>T*i40|4F8=mbWAMaL&h0{F!BpOC7LxNMimS(dVBoiQ%dR=#Ai>~L&V!geu378^%;P+Sp3CM9vAhU&q3;Tokb0bU8I5S z?jV%lNfV3^YW4AoZ!5!{Xq_-N#gi>4yOCyuya^+xPw>H3^LZblICW}IsQ=fb>NgUV+|f?8>~g>V2ImHgatYVlyi5CI$f+< z&6`0Ci#_W)or80dFccB^(;I$>xw6w^zv^j?y}OWtGT33B17P|N=N^=2$0=sF>J1~$ zUCC}(oOdm|Kb{38ZK~;gN2O0bwQ}iUX6joX8<2R|x&3j?D>YMXjpKI&$j4adS{9P_ z@aY`EBY8YU`n^B73>E+1dZScWbef01=<~9Lk9~o}sQQn;DxwP#v=Sb7^%V}h~ zo;g-|5Hzu}h6iV$1z3U(YBdF`+=ZS&vL7%e_B%&4HPw@+^o2k-<Br@rcWM0DqSU6vtVT$M>4cZWd^r7DiIVisW*vf7Ce{spf^K z>e`+34bhzwX>O1{=;od;JgSu1Lo<9NXCxeY)Md*EE%S80JOv23y{N6BnS9b@c>@N{ zIOm#_^_04HpQ}Z0qRf{T(_3516v-iGRxv1b=l)>X6*ANOD7UvKQ0mQM+Ss|?@y5b6 z_ai^xeJGjK{4wdV<0KBRa2DCVK!j*1&)j)x@NaAcGL z`3hI1`ij%4wN%q4>EQs76XwR*3y)8w3fF4jobutQug@it(%_fIIW51y6RUK)>t4UP z{qd{McI?2#aPC;k8DHVCZ)|Z=-BU}x*R&_MWwE!kn%3OKX&T@x=%IIwycS?N`qXo; z^jpm)%*zDRJWKpA8{z>o+cg>0x}e@$X;!*)O=i}SD0lPAd5)}pFO_NOH4xOte0mbq zVV0g-No}`O=-n$9lc(tNL8->$f10?KHy+GS0-AV_soZtWi5FVjIFkAdT53v*mH>Un zIP~l@Q7vxv=TyFXtF5f^ulz;?lHT<&w9qwfjnb?ywK=SQ!>`+a4OV4;GCkbxQTK7* z@TZ+7n4(Ud5RESL>~g^}#V`unWjqkdYD=!O-#NY0tZnU~k`+l=eimW?0DyCof$2;2 zC7TH5u(_Tzp3ZQeWmG%njfO;kjtJmqKPoZNLr=QXAhOlqMObEKSzWfj-C_m@ZfKib zof~e5he_&E>9X9~O%W?BVO$jlYiGEpdctqKZIQdo1`&3RxW;MERdnv7)B27zD@9Rx z3~mPErCF2_@9XPLE?{`s(d2Mdvg{v&z~CQV^cJqsFNH*I7^I)=4C4$q`@92K8IgyQ z6due^trfnCJ49s=ykzm+M8;1wtLOI8=sJ6GLn=5#%^lLcn zY{+o(> z2R|wmch4lbCHqEpdOo$N9NF2(symfV8}T$kE|8Acht%(5jk~Z7oP9~)Q=9&&*6&#n zClLS$1~Ihu_o&pivs~R4yqe;4<(XPe{{W2?T&39(NpKLomq3NQt1F9%*l~ryADu0y zt&|QfZXlZFKbj<%MsbfuJPL+tx`eXaG#Ye%RBOf#3m?Xrl)ROS&T!s^pP$04SnLma zl@|uBt#r+|MM-5Bm1`!{yhf6LI%c>n<(1>mMp)vYX{~9I%8zk9)zfE{BLnG-;-Ydx z8Uiez>m$i*RN+J?Nv2U6pTTg>S2A^IAZUF^hG}NKA)s@UXZ89q>UlrQWfp zMJ?Q70c)2ePGKDhiVcGN&pE!Q9O6Ph1%?<0clNn?^~ z*rt(8+LN=_afO(oNU{Ogjs;CTBbqB-tGAkG2%zvyLCkUY^EvmW;gU$5WQtN5dl6kY z?u$iEHmL+U#vdoCbpZw$Oos$^_k+Byrp3f0I{YNx~)yJM$rB?H|=gi%~9@wQc zSuvNpJp0tq%~WV>C*3mo6Pna=a4UJx#d64bR3u`t66R4-N~UjZ5SCR|V2Vfu zk7fCvl}WYUjMsW|Mzhy1ZGg1BZ}(>>{vgJ8Z9IT#KWv*x!Ond>>#KihKA%_cYo|3x zZOXl@5k(^?7*%8#JbQEb)l-{`NEu1TqM-15Trq2qeX7M`Nkc*|5Mfx5J`#WOn&?js zV|SKI=~N#&Unz1jM?B#Daa_fvbtUeVq^^bj?=6|Xj{QhaiDXfN0rnu{71RC_YIa(O zN?2Y(iafN$h&!a9<%KD#$MSM!rk5?pXXM|+=_AIM5}qZyi_`rvwtu0hr&G$X*v zxFD#$8+viEz!V<(NXl4)u}S zzo$Rr6mMJeuH=tSgZ?es2$XyClllr%tF%GWy=1mF(CoFow^o4qZ&8LHr9`JvNIZDn z*2iihjy6UNaq0l(qS~x&4!Jl@yCfn^W8%rFOe`7=>l<)5sOM9#{ro1|-4qUL&}z{3 z+C9+&B7*+_%ikb=6y-=*!7)7CdK$%m5gElsxhcS9kQ;o1WdPHHQvctzCOKZSqoG`5h4;f6WZWuGj_S$-g=w|?E~H>PxtR%`P~ zsOl42Sj8dS(#+hb{{W$KSN{Mo0+Q=!?X>+Zbc;T$)HSQU;x>f=7V3m{87DZbDQeWF zqaI)3Hfu)&Vw;iBo*GXz$3^J!LPqAYg^K5cgaD7sQOm2lQ12e0W#qBR-iMFGimyBh zyO!Uhw99*yY=FTse(2sv9lbMFWz);M5?UEh`i4=DpEb0(F{Nrvo9P#8451R|d~CT@ zCpi3TdFQlC$>g{#fhwO-z`_3X3R^@;S>U&l+Xrz9K?k2~(5-7wlkGy`qLO4~F%&>> z2sz38=)Jydo@kt1URZ|P460cADD6q1FOB_=B7o`FSMLb8g26D!xk(`UQE0Ap4T|&F zE(pd|tE8x{w#U~3FDNeVNTAnfM;n+9-KduNitYh%^v)@*)Q>O1;1E5AC_|0($~VV- zA`zhrt9cSYYAwy8kQyS+YD%wwvx z1yBr8ejxtXVeQ-L`BT^HlF&;LvWyuOQJZil1D-Oxei-7qlIS@nE?;BKRNLwLV@F~niZHlj zNmv&7TCskwr0JDu>zt=xXOHr)Hhlct3O5gM?hB-;~{fZ9C<%&8-0gBwrfZ~mOVZVpbz@7SAG8gMtEJ(TASPJ z6KK(2q2AHmT?rXIct!YE>55i=68t&Sq4KTu*tReJ9lf*T{{WNPP!^KM?iu`s|IzNRSXREZc>$1lWnxF=|o!!F|oxxW*KA1SECZFK0g=H9h zV^g`iVca75KzjXX_1}#B5{5wxnvA(pxJUwmKNC@_uNL}IuD8R}*K@hxv$zD0sHxNH zeNQuME++{1QQE)N{{XRM@o6C&Q%(MV{t|0`l;{m2REj+!0{91fs?ubUp68C#wA%jw zP3iDDK#Ks31GX!0hi}URnt*CvEa>7)FGwT$g7+=Q=}$T%tMtC8*AAU0Ou=eqM#Rvu zVlX{P?MiBWHhU$PG-lHKlK%k5BRI8C-j+8X=*2qEsB|qx-RzQAca}4>viz!*)U1uA z^Dm(Rljv&l>Q0!^>|<-FjlpCL#I%5p$K_P-SZ#|@hYB+G=*{WQD_79xirU3>`4;tD zb8t^3U*H?|ndOo+W-KEcRBj^`CDgC(bxkJL+DNU0+H_kOsMy%g^KkFKC*h{H^F6NN3l2un zgUA$^jog(o3<1R~&4_jdMFZCypT?}{7k&*_CC(f+aCsC$Evq-23i+UdydF8vZpXK+ zG_`~~f5buf(~zvLafZP3H6*JJqeQ$CRlPx_e6+?k@P2fTm2uTKR&PDFn}2ZtZM%_J zfPJYe%|ly({{WAt-9`>aFz58eW^J4BX{h7>0Q5bIC`;`q2|c-|5yG1W<;kezI^1@S z#(O~94%Svooc%M!JRL`-Ex*8!2S3a441Tl@*9|bLJhaejOn`l}Xq2!4h+OhGJ?n1~ zVQ6%%9K^*u>tga?{o}_pk4R7U&@MnmE{-?^9u$E{c%OG0Tj-iqqWQDOYr0K?JhliG zWP1l9wM(+SM|fC-Y;t`oS9utdyzckS5E=%eR69cHyVHt!Ytru|EcZ7EgnJB{C#l61 z%L^Z;YH~VIf9Js;ToP3BeN8ByQid`Yz#IWbe{#caj#bMYrib_mnfFqn7ZXU-JjD=mdWaB)qwL4pgW^?CTAQ-_b#d=8L+n7cP^vVA9 zaIoI!!m{GqcuaG<-n;;11%^&5(^_1^{{RveU$5c*MQJ0sWM)(aR4CiuA3EX;EPJ;GW?PG>S7ODc!7`t4 zsJZ_C0G)9>WPS6(_9Xge>s@uzejs#rP2w}3H~HP1I!5X#}x3arNq?ViHA z!@@l>$4lwB+RoJ>7fQ0rk5<`?)q2@&g;4&64pP6NuUbsEJ$Dox*529p`R5T&MdBN_2*Y#Rie563UU`|^k*gA?jFZ^&QK5$IL|a{QAE-~; z(>3?Ov$Mq-rtB6p;D=jX#Pdudk?t-TNI3(wJh%mR#ps+ZdLzpWt|lnBrk1D8x@U99 z93N_1Q)f}M4@zM3M+L0cGZ3+)Ojw_gqmK&6^FywRwTD{q8_gWsXz*@k?U_z7`evqH zD{1!EdIUPFAu{RHEWCQD`@`~~-Vtf-Y10dPFd}_L&BKpjk_YKhj-<7ZQ_(K8(*FSW zn9P4pDK_2RkH$2psmzgr+a_&~@hSEm)g0=bqV5(~%VLOWBIR`OkGNbw<~au8+;C`r zQV>4Q?~ql9ZaY)B=e{Y5WQ&ZN2L+*M_f&Oeun$k#PjF&VWpp@H_EYmdl`y{G0Nt^ZPI?>0i99z; z+he6gez&K1IV$MNIPKhhX$N#nHA92tJgmKvhSRB!zvXY>`=)1{Mp+bpC+Tm3|58KXWQ^bb?@hN`xjErgShekljS zv5)mTb_4p=k~8mB$B6wqW;M-BTj}@qnv^PTE}}<_ z!x%X16;}f%w3IY?_7I!xKpAe)A%dRK z4OAol0Kq@%Usl}};X;v(O5W!^gX$xX){EJ6Uxz0jX0p?+2M}(j18{qCagO|o(e1597CmYc&jq59f3_<>FQIB?@AWeO08i~h5cLc({{ZSoPac-( z1z=*)H0JsFYTxFZMW<<&3QdKLt*`$8(v4L9V!2l3u55_eda?pC40*@vNv@}Sq!qfC zasL3E{{Wg!fArRQKbCga=HK@jhpS?bDWL(=|%lKuW)NIL{Rjw?%n?bB(np>3vM- z^BqFQ-bcG!g?xMfk;p%VY^A}F!hLCM(CPt*i4qg!#kMaf$cT7iKh=zmd)Ba8r%}gq z7MV2aEUo_01+ByG+@qHZ^5mb!qx#=aU+UMbb9m^|bBaAvjm#n zK_X+Z$8|p=+M)GFTN{{&baYaX1LMX#bhyVlWN=3Rk zT|F~QteMTiH*6jaJ!xJ`hA%cqIPF|G^QE#cfbatvg8d(-}&V7JN+Fb5elIab_qptO>5%@_G6EpI)-tbwKH zpS@ebrb{!G3Q&)8oY4WP{hrD)L_^^e&}%m0R*=iIft&+@`q!OVGBv_Jjk8M%-7o4g z*R-i^wAp0b2?DEmM)@>4Fyqv}&!1!$vG{{Zj?MQ+dN)!aMI=X z0^c#)@~tj>;@;+~md*(kgF7MhxO77Wz7dj8Pi;P`*mppinPN#Kr1imt~PazM}EeJa|p)ND0! zme$u+lS}L74Wyp<=Nw=f4XImcw{pxQXjyW0$ASo{hL#zfW0yaYzkW&bS7{*RKITF@ zD`O^;Cjz85+C7j5YfA)!`34B4*4ho-)NLdPj~;Li>>T|KQIkuTA85KcV=o}PY1$_Y zs;8e(SXM17ZB|0ZAOV_laiw0{%3_ffNbXAmTf~WG1cg#b{R<8SR7z0ah`iuN%$qMSnC}rZD(zC^WE4-8r-arg=Gh}K3E;; z9cpeVk7(qRYwQywk3UuG^W!QmiUXd(R0>u(RkYtRW^?8co?Bolk@_l zz0|A@Kjy`4C!Mt|3H})&kb7WLzL$x)PEYt2^_-s=L;S>#1Z*W4#qqjb$l*{{D9)x#E zFUd>&wUeo5LZk^F;{f^|MJ3e?q(;%R7~P55$B|m=_V;#uRM!g`*s#Q8Aa-n#*!?Sh zrt+Ijj^r}r5J*3IkJG2SPanc4*21$&y0$s#=4R5Ejs_`f!dDw#arUNK1;Y(0SmRvn zlLzTpk)$EdmUCJ$kCQ$~M)qck8DwL;Mum#@Dc?8tsO|<)GhuXfJ7kk5TK1Xa3f-5^wovi9F!n03LrroD` z7u|oM2)70+#)*^`1fj_8K6Faiytx6!XkC<|;74S@iuT=>>6OVMH_-Yk-RhxcB*6~prYHGPduQru*3xgLzv;=P znbfqGNRh{aKm>pR80-hFLwr6fcc)+3+qpLvMijsUag071tr_el(zQRZ>Hh!>QpOq8 zKJjJkS?=qDNpiql0J3P^Y+;nHCPzmKejVGs9DW?t+mn#qqrc46FAkS?r%U_AiD^95 zY!i~9PAcQJm1VF?nEgO+!kEU@P_}r~tligl#he`Wq$XVDbLpCK6C{APJ}hT6nE{-W z?N`OIcND<)_ep1YV{%+6SydZ9%ovad=~8u&Ge;m94fCqk#(71rOfBSDR<@QIcs{Dx z{{S^T>3fvaH1zV$;8A6W`>7qjI<5B6E;URxK>%UD3i03`bMvfQN<6}k_sH$-Tgp;2 z_=hIBaCXo|*jb#QKYSJK+akD&tkA>M7qBvIDLbhjjdu;`Foclf85!cZ)!EL8JW$of0#C`eNdEhS`o_>{X^>0{c-VtkwqxAK;mdph**+#n%EB^p5 zoIxjcHw=t}Rj2IF)LK_e=>0{1sA5N#$O{>lZU8590iIhN0(b`oz2b*iTI#w+op~0S z8MP}UQ@oNZ86?ld+jEjY$HaKfcJWoYNj3CF)g@?__>bbryy-P+OK@ZvNl4Bu; z5>u9DUIlqy4R@mj<|mf`*tTyug?e~=V+XLzDnV`Xcm*y+uAv0D1x8>?BOE6N;( z1cAW^85s4Y`cgib(5!XcdtHe&FSI<`baqjY9XBTRn4A%SMmteGTca&3`gJTV%ZH6l zB#;pQ02etUCt&#;6UP(}rLOvIx|$s*y!RHE+Arreu1Gpppny_{LhDE-aZCdBcM{FM@pLP$S0B7=F#-rDrDS2+| zx;9*#fhX|E9{iew)99Vnz_*05jIx}56xDennmKc$T%_{DK%otP>c6uGL{60OWdSHJd~;2@`}>87_I|l2BQ~0twDC1}m;V#`}yo{Au&$`hB;A=3b3ze(@ABiLvwD$C07g>cgXEi4-p*dZEda3ab|Ds z;|+4KW8ou#xMKkEQMo2h6hg_9;aJ=TA1u}gCxUscpQ`XsjYbLE)j(EwH_-zJmGh%M0&G4hWtaCkoT zn$k5lwP^{o_BS^II5gYEW&%?>JQMn(T9D_^J+7oeUe9xcck#K7EtWqtfXlG+*)H>wxSz1ST zeIWyEaYkEcB=^VA)ay#{7sQ=fB$Q}Zh#&5m6JY&n`u&Eq*KgHIAGbPNhDddJ4~P zA&zaJd@ML4BA!8|SjTQzu4h2_*|hii)WgS(Eb0C!^(B~<9E-w19gaXhhkCBh+9r@h ze8OWRXi-cjLX+Z5F|1fwuSj{zBO8UiXz~95F5VC4QCQ(B!*d)SDn+V09+Z8@7`*55 zpm4)BW0_SXK*QlDzvWXVmhFfN6(7% zasa@Vk(qy(cgJ3p6$0@mrSyw^O444NxC;f%wpupN z@Z=fXx%Ty>bbhf6*;X|cuczVv0I>e6(Q@hW`;FRN{{Wc-n&$P;&hnW8@yO>C>eA(o zlCmVCBj=I<`c(I#d?(gAi=y>CTGHYlv{}pLHM+OP{{RSO#(U>D`C_Z?q0?`4XTj9g13k_(5CWjNtaZ>tE_mc$OeK$N;3aRXJWn%S+sAk$k7y3XL}%O)%}YEid#BYT zxww`|H$YVx&!F@f`qU!&0c{1h^2*9t&OzJ>$ReI}=BIUQF@`o~R}2TK8TO?gCB>K4 z$~7%AMi?s*;Euw8cyq67-8rwZ(WLWkE&zd%W8PUo@3+>P$FI5R(;E%DP8gqFeJGEG z9Zeri^+MiUgckP}?*qA9l*l+B_Z;9*&M$8Y=(8NEOPVIyB&K~8ncFj5yAlco_?gcq z9=uUoNXd<6azu;YKBw0dKc%5rZS7G5GN$4JjGW~1ez~KOMJ(H42tgb%#xYL%Y<6R9 z`C>k&mwsfvk&8Rg9H@`*tF{i_#=WaBd&fBqv9==o=}A7%X1-n)X*1lO#+ur|^B1|4 z9PVZ#_02xja*W}>*(TIyx6`73PY0&Ps4>> zN2+gim&e(ytYu4ak6=t)1!uK+w z8H)q71CxwV<&<1l5#1Rfzf;?3@#`H@6vHCg>2S=Yn}E#wjt{Q}tLxzn&rg|C0E5bt z%|vww?iT80j^^g?coDpkDNwIN2nALZ`8RL%LlxoC#kq+rb|4(&pK8d|H7v4z zc}BjUba5r&kglxJPfm3{qoldm(A={|Pu-F?{agp&c+x(z+TCx8CX&Y~` z_4HSUBCy`s0M2>IT;u`of-1R=NFL!Fu<}%Hf0jKd{WR3EB)kb~BGyL!&ug->+d*r& zoTghR*R};hJV9XEeX2JM&Rmb6sYUg`ySiz&4o*~jy{bRr6}dW1gvzJll#STzF-53f z;kJRp`_U58buCX%Xm0fB9vLDaqox4^-!(d)t$LRF@(Z0ydfxeK|@VI^HzQcDM&* zLmU}!K_~fhj8;RRHfu%~!3w(TjYTctk5kchoZ+^x58Ks9$Uj=P`VUvNyXmVdh8T)i zuvd0)K==F&R2@g+CV{AR=AW)~-jQe15d6#Uu7xxd;wI#t*+V+-V7sZocX3zM;`&(X3Hsxw$c-1Iq5mB)6~w zlk%lHC1bSHA54c*i&44Ir#3Us65vP_3^@EaKS4u$Yu4rIu9dibKIx*px+?@^aKtd$ zz+>cU2jC8&d!luAp`+>rlkHKg{{S9x$BduHHAJNS-a0O6dpGC%9TjfE>fBB60)0W| zw3p1!k`~Ye>d6?=Uyr=haPR?u6E1*LZ0T)+8LS)~qQ`(VNMX$s9z3 zwSlfp{iAISuZY(JoJ$Hn*S&R3utmF63<+lSHO}9)L{PT3q+cv7lS>;cnK|sl{{VWc zGPv1x2lAqonS(GO=C#Q8t)`9DeCFG=xfneDRFxIY`f^KXAi7Jtn2<`j*vfFHO84x1&kV&3KyluQJm<|gb}8F7L!!Stf91y+;blXN$M zD{7+mtXURB+D(#50FOM6Iz#^e4?GQ{;y#sW$zu(bs@mFHrL1s|h9y%7gWLez$DdYz zjlBgpu{??K@&C*g+5u&17e() zVtr2^Iv#AXamg6!KR#%T8g;q4mSg3_fl9QjcqTOD@t=v0C*@SnQRq@x13mbR%Q%q# z01Si*Qy3%D9s3^O)#x<|x__x+)AeXBte$y9cI|FUT+1L}Fr{;W?4twgP+pn`F;_xbldD;@j?cscCox%GUw?8^ir3+RbE*G{#52*Z)9mRAvP(>D*aT?l2 z@afk%YiP+kt@+&0bIwqW$WI`HP@b{1gICh0w2{GLHv&6z@e)2wo&NwPEGjC_y5Q$K zDFjzYULhzv7~A=?=~*$l+z6&tM^?it3>7}uqB^V>HkVRqajXnP-eQ$ck3S>r#Sd90 zH)dH*=`)g8ZEW*aABny($JZ9tcC%?l z%vp&X;$7;}GJ&2))~ZL5=fslWx27ouQWx&}bDF0vhX#Dm&n5DQPx%iXrzSW`5$T?~ zbaw?Ai;AQ9)7haNYh?qJ$(e#0CZq4|>;O{!npFB}EO`yi$FdMR-|Rf#Yz< z{c2UxH`;!quElB8Xg*Ma)!Vo91}}I%v&V4w=|4$c}d&i^`&E(U+ZiXGK@c(}1u)1-MubF>Y=-i_H?dCbg;WMRlfT;_xHc_31!+C0LMO2eIOo)vfi(A%f!m4Y9sNM8*c-JL0ueugQnC62A((PU^ml zTa7=bt`QqhnKJH4IRKCDYQfa{@5H@jWP?-c%a|fzgB&k`RewlyFI05|>2aZHk2Ays z`?soLLB>XVjDuFqkB8lPdVsy1ji7D_no`aWzBr`ycy$f0XRj>Z^o>`i^H0vA5j(j7nHUaxm=B>KJe z{+iKBV+xi^Ba@C9Tr(4&r8My~!DzHjoEr7Doz2-JZQQrBGP<$<0ESbL00)u?-B%ygob7gt{>FxU^LTfD3Mq%3rlbX}(oZyC1>8Z; zy%pDNZZ!QqOIcZ(FE~04z0P);jX7m@bstlT(weDJ=G3o|+0^b>sM{;HI~F9=r^9QQ zZZ(PQ?v)`kN5jb2+I@dYi)o0&%X213jd=RjV2(?N6SS=ir{Y2m4t`Xos|UY|SnjNQ zMW|YQ(aT*OLE^5v)2B$%qth;6mUN6Hn=zCCaoVY_uhr}>A=B*fnNs6+_~hgv;fEfz z3A&3~eg*8Txa73C6rPB)Y5J^pR|g;wl1Mxstz`ONqAe9%?wy)iuUYqTJW!1%_x($6 z!9KjX=?=FO>K7(m7UZpk%u*Bo01x?G`{RI5wMhQ}YVL)O-fKRm(-9@Ky8F^8BoJ^^ z=hR^FP|av*vFVoLDE#9-AF# zw_BqDt2s7)l+>3YtfyiWHu%t$!R?+nq~y^x2z1GkYe|*kl|o0bmdR3m2hzI=`&a0$ zjE+ki$R0T^e4y6Rhirm_0G8}CQBJn;k{+3eT-x*Hxsoo=H7`sa$ptv6RUeVxg7J)Elw0-2QY#Cz${U zyZGRbe@YWG;!q4siyj8TFmvmgkaU%^-)dIYk*Q(4HV3E&nztIaz%qMzExw+#dwVNc zZWnB#B>w=0PEh02)SB$vMu-*TK4OAjcPHmaTU)@E&lvs|F_!-TR~4H>Fps`l~)<$Xh!=2uN3~M@RVPsOR=O`V-9C9OEgNiQ6!Y{oPJERLzFB^k9_)#}k$XpZqx5!% z9hK$W5ob!CJ=xEhDaQjG`&9tCgl5&FQ+yl}PRRkyKYb@&5wVv`)WGsc<~CpnK9nMT zGggmzHaCc;Klp4otgJXxQ{2sr+12zA7vXKvGktX$gTDX`+4eu3JzZrYvAz7t!w0iqi;$KE~;x9Ij ztaS#c(c4P_M z(zUC|(Pb#muHuA~+~?=*P?x^En^lWm(mvf9T3$;G_b70xxcCO;PUtS2ShlrC;?cgJ`@G7niJ7Aq zBg!Wk`cVG9h|ghf6n5f6=YRunc^Di~$f7a4TS4297!PV%=H5B4twz;s-Nu8C_+>xl zoXr>Qv?+!r@e)(o|&gxHOpz%i6Y0h{w>RtNZ5hs8H=BifkUpmIlt63`Q_FW z+FRJWLIXFME}?SYes&|UW;qAZR-bg1uKISfb8~NY&^n+Jobk74y#G=h5|Mwouzk6Syf;AOwxyLyiqg z{0iy?v%mexso1sD7n0;loU{$^k5P)5{gX)6I(Y`Yrt2^o4O3Zc<|e`<}PT#LoGD)#q(X4p!e2q^uy_Ny@d`YX>$1=$_LTcL+fl52?g+vfe% z`DF8&)*GoV5>$7P$i2fIsy?2kgj?NTJb@Z{Wj>&Rx9N{h&W*(sGAg^4P(J2I#J?}6 z`KR1ag_Vboa=P@?NhSs^fLVzD0EdOZHC1#zr}j>_(={8dYwdWHM<((~DnTBQ}2WLQduOF*whum zj?&Pz195HkY1Mq#1_np`Ks#gH)5VpJR_@)Q^(><+`cyZj^##?sM@#A}CM>eTuPI(k zQvtQWA5q$*5cLzAHJUqJ^CNAML*qX@Q(db} ztjhDGkHI56kMmbG&HcWmC@elTU>Q#Z2d*lz@vlI(ie=Sqpchtl$V9BtGIIPO8+qXO zs&cQ3FT&E1&o^2~ipT9~b03(JnCFDH9Wm+$sI1#**0bsFBHrz~5`{>NWUD4QV%>%h z81dhw8!DVIs zYQOr|T!B0`)b-68+Un63;t4dMkoig-R0fc!7{EV2TAoQ!O`QJ#rQ7Q#U9+(L$oJFR zP3AqbMt4XQZYzf1E<1tAqsihnrD?03M@&NmO062&hi$N_?xQDx{{Szg8|iIh{iD^- zQ*}R4*=e^n0!!FIgb^*oAp$EX=i)nu&zh<=T}tOu)o$-@OlDc;d8G2!V&%WmzJujK zzU4)mekw%csQT(&qJ1jvOUAI&H2DKW@HtT2&pYZnw0XO^vlZ9W^~(2?oo{ zf-)37@Zb+nM{iu3t!~}~QLwUQx%rw_(krW{DQ+6$Y8hAo_Z54w$8W6?$_*27)l}Q%Ue<>%neLoXWZC+{ZCz94>F-;4VDo+cKh=KCY#y(_^ zN@dr+F-rPWy*ttNkm(vZlV=IKS%RJmA4-DV^&R%5XLG9FYJu;ItX@kg1(XgP9^VP$ zA3BvPCa;k_cHdLEOU|dag$0GQ%V^gGj2T%;JAMBEwM3&;9OHX!?mxXB)_R5;?v>Lt zJAFPIU$Mz7w-Tg{{`Dg;!!Rcq1KNQ=e90A6Lgbd<&?jL|DMpawmWe@<83N;jjty%p zp|+qPXV$I#FHW*;D$)sHNepVN*quE`VvIBS8moG;)Y@yeQG^Q^lL#;YAA<2q>2<3t zjc8-l12jzg3lKYw)Ydj)Fz$YjTmK<;M|AJqZd-8POJ~s1n7tbubIU7ty14Pc#!p+F zB?#3LZ68yKH977cGU+6ZCRK1)pY2Ai?xpH&TS?JHrOc5DL}?OayoJs&f$7?W^yZUq zavoWgf@FDNTLPwC9G1FAiQPRsXcc3=fr%%dz6bZMoNhRzq?On9G8`q9bJPCkOa9LO z8(wG;-oH|5zh;nxj>#E-aT1bGBb;RV)x~e3>9&_~wY7!1F=AQ5a&z^~JdDn6loT|$!zmal}84co<})1_EEEKBqs2qC{r4h9*4Cv)bxujO4dtVLfR{4q*19ll)(!OY1SFX@6vBnmdMO^8xu9M#oN`Xj*x^_~28B*+*ecwevKO91Kj7 zDq|$&j(d|!=`qPHky=44g&l@eHw}T$>rLUsx(&YqGJLA?HguNR##yDeKY7aKhu7s= zU0F#irZ`l}NE<>aZ(ci8qfFBzxVaFxSWvGoBMqRQD$3|RNBx`7Zl^kanJ$nm0eOm3wf2;fGll{`CNBwkQebZrk!o!w@Gzf ztk?D$j<2M_bg{moWkYVV4ssA=HV!f~$KzF=rPP|8-lvJ>mRMb~kRt+v*d8!P)`{7@ z{;8wGrX9uxxOcR*1K~n&9!5R!+k;*CJ9V%pSKZs{-B+q=FctD{ZzO28E)=O_f(M|f zzl2&ynmesZ7&7SV5}oIajFJUnZi-1PBUJwYcbXK~?gtWl@ltOLe4d^%XxHrtoRc(e z4{$~?_3cb)zj;=r)CntE+?D~6um?Exr6Duhw&`Ne&{6Rkm{ji1xuzP8)NqB06%$I| zE(K^xR%HWqmP^PU&_2*t_?RDb8hfMITIseiS=hv?k>@AQ#; z2d-+NgT@k{@w7;>?Ht5^YBi;JyJ2%IaE%J&$s+|+Nz|4nfCVql(9=nd{9@LVOVEXk zOp)GR94ij!gObCZ{e@C@9Yuc!n-X4LGPw9k-8kFNe*Nm;>(36lld1KoHAK79l^Ik= z3rb0iaoae+KJ^Z~@Q13S$&D4t)2>U{L&l$rWwt-3?veV?8jd~3%9XyARsinX*@pxC(``9- zz)p6AZ-gGyy}~GgasxMUTGXOs(`;#L;mwy;MEbqO^tP-{#Z*8@+sAWS!{J=EcCBxx z^)1v$UvWbb3QxHKuzxC<^gB=f&&10f5#B}z2S0lqy(sddvVr8V$Eo8rg^~Q*H(?dA zBB#CZ?^%u)*{s^kHj$Yvz&wwTq+vpBU;u`WKe>-ewKWS#8YW<%4^TnLs@m?^>|r*Y znh9hCAM}&PX{{4`+85SC;GfXq-3x%q#1$if>q%-?K2*?L2LAwscL_e7+z;tm+p-m1 zMGSKyG4%Ai3K#45vA0m}eyM^u<@61YO$4r(D>6?U65Kkj!q%k-i*YCqF#Z z>(sgpv|bqX3_5Hrc)GOq*JMWOI3)5;M>ry)dSnp|H%@4zxJH5xEXOQGF&QMNJPeRQ z1dcF87Ajd2D%2~34?$?l8chYkivuBj%|Es;C@&y*7J%XPQ}j!~wKvHcAtnzxT(e;O{2*{@nyw2S=- z=Sk5VN~#A64+r(DPgIWHIRuSsCV!SlRIeZ2x#z(fC~Z2u7%j?7(6cEgYPZONoQmjs z8~0ckT$XtK2lG|Zr`GzMx>H1uyQ`{`j1~hwu4)Z&;lEK^d@{{t z5dQ$0;1B7V%xxyn{90>~UYXH!exm9N%R5WiZ7oV}hDittr#Q>!oxJ^dr`{>(dWS~d z#nQ8CHrMglC}`zKlo95IVx*2wbIxdGw@2RyTVb<#l;w(7lA27{rnO(O^%k3bEJ<*X+(z=oc}86Fr`%&X9@TYqCal^r-pLEa zccN=6ADxvi<)}IG)8ZqJz>IdqR9X*GT=e_{PPRzx#l(tkW4N|iQIBkukP%kDOzIj= zucY2s$889+Mh5IyD=@bspEt=YS04Kqf74UCl?2x%a@sQLacZ*Y*AiVNtNEfWj0-|Z z=aJ4msyNX~v$2sF6Wb#jzIAD6^T%PXnR+Xzpwum8kIJ7w)v_nUiSJT={Cm>L$uhigB8`ean0jN|iUm2Dqg8%KZ~*KoT?U(_-Co-1@}#je zWsStpDRVAPP;G&=LQQ%25vj$?`xWEFr@=EBAd{G5*r{d!T zQ;TUz$Rxn_BAx59Y1?eYmAH>}vKh#eacKzW>GbB9+pJz*{{S!z&KGI#+rQGfh?3y5 zbng@8OIYE&(<7NtLV%<%VUJL0ou;>-UiBuYcXeo?ZY>CoH;r3tgm?5616f=Rs@!%N z6rwcIGR`9|SML%yr6K9~V%vhN`UPc|35dkTDFg7zNk6S7PIvbBi8bQeoUq2;zzX#| zt#ApnO5Q@1KAp$XrkWm$XD?0M-A#Ea-CMk7C`>z+P;-;J(*S<87||~+t>C$eXt#+` zcAr#Wf5llH8R8>a+TZ9lT1JeEsoQxHJeI(aKp-$;Ne7xXtsJWP4EVv}*w8F=N#I?v zUanB5A-Ge3etWq38jHnat8|{dZzbKVu(kuh;9*EzD1~~Z1o!<)R46gWW(Fqi&8>J*zLE&joXMM1OAbY zNvS5Qq-ge&eZKQo7wX3>fw?Erg-6$#uAgzgM0KzU@TgP_G4Ic<5_u%PA<7t`*(7@t zr%fHZ!eVH`{2*Xw9-}lnsC6jUT8djY2{pdfE)F)bobmJ^Q2zk`08#a;s2ty0>36J0 z-f%u!o_G%1%SXWH1gNGlry} z#k^a5p(-EmZu6q_D>^T^JusF?&H1Dx^Cp{p9ModYSU za?xt^*ILij8hp3fMXYhd9P(SSnTcTWw$|g1TGLS0uiHzLP+d`HgdBgmfT~9I2My0} zi$2&j6VbXuRnjc(ZSDG)*~M`@ms3Y&Vx+sV+p@t=So^*`x6LI(NkNqe;;xw9#)PRjIX&&=}Hl;fhhKu)HHzLhk{d<| zkPgsrayjE90Dg45mnG^*uTGzH6^*;WV8tVd$uNzB7{hive@gbBtXV}K{{Xf|WL`OZ z5%Tw`hKr|N+gV@Aj<*jy&+%mAVjN?hY7f90$7T@@zjFx7TLo`R5TN zF|!gQj9?GKunS>ZV_^2E?38q^w_5Z(m_*cV!C}FY78v~vHNI^NQMiuk)=1hzAHeEC z{c4Tr`*pe0?P75uFCwnRT#_^B1$M`V_I*94_+5K(CWUEve;e$0q=h7RW+6u(c?Ul( zGJPuSGKN2s?4v9tlj2uzJkZ*tO7TdlgD$Q}e}jjJqYkXtF?D_F{cA=~i!D zLDDbah4)ceXwYfWEPh-@-5V&vTrlH<{N3uNduhD8NFtf{>PKa^)f>n27y1EB$59zY zzo9AVI#1YNL`ZqHs?1X7vX@)~&Arx@q+-P4#)k z*ewVVz58%s_meI~t_zym;2v{_&*ga-4Is za-Zu@qw(rC+Ag|f2?LUsP5tOxWVxWzMZcp-rw*aDwbUh8%=?nsHo#YI_OIV_&U;N@|OuE&d=FRe%RZBM3diYtj!q~j{X)E?mc z^HN(+8Z`S`27=pA)|NGlsx8bhPRO|A1|%QOtj6TIq8d`-$S#!;WOS6W5J|&vf!p4c znqUI22OYVlT4b%LJ;d=er_Ex>%@|V3$AUuS3Rd>gG>ax)mH$8{{Y)sfX5^K>P~;Lt52r&y(317;(b%6 z(_GE8kt9+8UNYFm(sPd7)l&T{)MDaEA<-_@CSp_w$=V6d2gp`7qC0Xw$*-rL=pp6T zh@Djy1bXG$5$MD=KQTx28|&>`OH2Fd+DYesjmaMtIqW-B0{;L)*5Ps{((cfX`H0lx zq5lAZqDO0Vr6pF}5RO+q^>&SX`2$ybI1aM;k{}DW9)g&7fIt4_-BA>IL|7)p2OrjFxxoA56S&iy!z* zcn|(XTh}&Lr%jJa)?xc@iy>)j?%~0EHg4}3AcCjWPX@WB7T9x<`DUyS4?IHDdS(-6 zG(%C+OKy94o0$G;dy2y~s<}E#NgX$P(h})9ex-OMdvP9aWD3%i7*^wfgV+q!OVC<2 zvD4llTH0#5jm`4iTg~uJ8yN$FGxGq0@}pW-vC!Q}zxH;m4VA>76I)#2a(+afKA?(~ z+G%>FrHo8(y!|=}R!=Q2S=0l-AxJ0x0E&(dq?kE*gZ=_`5HOLTLN;eFxN^UZ7lJY- z^IgC=_y&0bhenRDd8G3EoO;u>^8BP`R(CuOdsdXXGUGtbs}S5T76iUTIqp!kZN^akW%%2OrkD$>S1VDSU17KOi`+RqL6p?fSP= zTXt56T*#5*up6^W=kPay-Hv=b)uYim(@wi(Pb5jQe@q7BCc5?QZB49lgi_lIMaY3zw1YIJMO9Jb%Ry55`C4xX%{(G zUve?Qq5V|X`ev_jX{bo|2vNMIZgLN?rdK^rtXyfQPnPVPW<^qlCFBpE(yJ|^SFCld zuTTY&=cg@YlXu3RX3|HxwlY41nq{UTp-&Y8xKB8OH#bo^Wp52vkL7Z6(AbY;I(KC9<-9s51K z)uimBY%!1&U;;@a9E@?mJXJjnws6*uJ6pSK61+bMBjzeuqd|Vizh@EL`C|cNnST?5 z&T3cW>rp`-r?$M8UD2&BOqv~~%xKD%*37FH#6O6jeg6P_f=|wl_(#&3mxx;Z&WEdN z?_;KE? zCj*aRRS$_>ebgGyo26))4aSF|voo7}b#2aDzUKD%4k{=$`6Qkyb(cZ({{TtqJr&{J zkqNe7BGh$Ne9JIWa=Y*g1L`;(`1P)Po-LNbYlDU)Y|j}VI(v0*dnKWXw7Cn1EM_Xe z;{)Nxx3A+vXO8HwhU7OG``z(SzK*j6T4x?!3gZDu{*{R%F%Ui=bMa(im(iNq+U=Tm zI9?Qy#Tt8!GUXX$nmw)Gj&o9oYSjQ7fcOLtU@LW+P^Em=3VV&m2A)Z23{M-`T*Sb? z-E8qpuON6|$|YEzR5=x8QBx5GL$(MNz7Mq|V|8pe+DE-83x6pXsH${vl{<1r8ShT? zdxf{SS7I_)XC|4j%8^eYxW_D$y9stOh{j(}1n! z7b5|=0M{-~7rVQf@!EN}$>?31n$48fph#|f#vjTPxvT2$!XA;5AK;6)gK|R7$NJFb z@JmLLOvR|*LR4pvrxc3G6~h>9_ER@jdD9Kxxwb0Yc|LFP2jNVhjpmUchTcb+xI_q8 zx%T3%9=Pz!O6kopuP?fwMsQ3~G$6dE9f$d?JTdDYg6XJHrqlHksO-yJ$q;e$03Ilp z;O)(gdUL~#Ue4k@OIXmM)D#ah>;~t{ay|PI`qW2QhG=ywpq3XFv3bRoCOf>oe(pyH z70@<*Ep$D|#JY^oNPQ)?Bl>YsPNu)b`6^59aqL55p_}{exXTcKR#SR;U?<{5l?@J%_<;DFy=MDqni!>Gq4 zhpuRy{{Yz`(rp<6v5N2=s@QN!=Q;NDtz0;h((Wj7Yb6bDtmn7CyScWwc$z!nf!DGe zu{?ePuill^+VerQ*KR!N%h`x7U3g*?@ZXrKg{RZ)^$m1g*+VcFOCT*PE=z?VfIf%w zslQHj<(zQC7}F=WizYQiTqZkbIjpHi;)WNKNvt(JS5~-tD^_UT*~&z$&GC2bRi|26 z+^(gkTC^@9-0hHr<$=Ki*owIN<5io(h5hMmF}Hh|Lm)=ohW`Lb4cPNkewEZ0+Lo<7 z{rAHRV7d&b3eHYT9`p^h9tlY|$d6Cm-DrJxr)sx0j>!TsZ#O6kg+8a&o!xj%t?R6H zxGwF=Ua`1H-B>cK9Dsg!H6yaoH2%BPqlWiU%URm)K1&0PoM7gy?JmRY*6`XyOL;M@ zeEfhOpGxSvR>H{z8Bxxu;J;Zcq(c?6uN&M&tye_TBo>id$}<^Yxsl(103_|e$Q}7LTc=Oj z*y;yUiRYecn7D>X1ixgDKk(ya7%AHay*lwK{{T~u_HDb=W}JP$QwILvsld$A=i%dl zw*wh9%UXY1YW7_=x_!2%eQPDX&zWx|PDbe4@2h@ z3XJogYUAr)75e_yhbvUkWE~Z#xNi5=QF+I<~ zII86tBfOJ8+K;OjO3>lyXlE-m>GLkId02trPyI*wS2P9;TLhu!AR6pmtMFq&>WlW( z^_#s)O-@x`I#iTxE(Q+O+CTv30;4y7vsX`*4QZ|FF>%?VL;a|+&MS)sO*5C2?1-oU zl5@M)=}4I}ejvx`T^)D(HI{O=y-F7x;!9)wjSIQ`oHfMAw%0W0`4n|0^Q#_M{gv`k zI(^`U_bRa_12Lw5!`8yo&gh_pVFgUSK*ga^vqG*>han| z8xR#z*7oKLg9%0Q&%}Nq{%Tp#+N`7uiRIQett0aIld+~)C;GcZ@RWDyZ41Ich zCHte*;(d)<(^v#M6+z1J^s48;CbhJ`zl!2(Xr!6| z(U&243^D;fom?W_B>=}HOmT(Sz|m&ZJlwG*fnk=|^hB;~ozMr32=+Bh>uqmytKLru zSc5s-6?jk&y>vy^ocSS??)BrEqWn(KZuAC;T2O87S%eH1<4z7kj^C9YpH&OSmg$FLWtyiWIYM%qp!4`PyN!=U)!`dUQiFT84#X5 zM{mSYYk5?X@WfoV&w=_171Mfx-q=HM$ja`D-12!Gg(h2R3=ZMca+p$Uo-|($wf$ZLeQ@H{Bw|p?31{c;W9L`zR?3YhkvTHl z-OJ^w{{W;R%V*_*ie@2^yD{KWnwhJlKcBTD`y2jHMQ`D)aeJO1mTAlsj$XTI^CkMD8k3UMU1gc0p@mm>Z z%$Yw6F(;5mwGGs_$8N+$o_Qm=t@NAEI?((__&*83=Zf^Mv$w(-!Su~IB3Hg9-&$G4 zVRL;fc8dFveCFC49Pnxl`|nI+i1iyTc>e&rEg1c)K^-5a9i(FHj(_Pj%^=`lcBHc^ znEog5MXTaXg_fzK3#)s`B)PZATsoYNIOD%+s?0P006a2->{QlLX(DB0Y!xAgKBKi= zy(=Z2zoA2Zut(+r<;*sYBpts_XbVwC$dVu-un)FB^{qkU0Q2jSSJl@~TS#!)Yz^;~ z6vpGF^!#M$HpAZvGf;IDrqWJ!0K>J+h)Vq z2@Y$Bp_fj7v~hIfSlG*NHJqfl1pU%}w8Cv0s8k2?ZI~&}IOP5maM`|%r?}DDPd6Fa zD`b4dM~_-+QDr5924&!!I75fYcCcD z-SdgXHHWP(itLio0;4=+{xz$0i|!!Urr(p1TyjYdp2J_-2m3`J2b^y;9qKJI{?>0g z;_0pgi_C+XCVIXz_v|_J!Xk@gI#=zxwjDJevNVeaH89!Xout6-vmL<-` z+{B-{JJDn&8Y-qEYcx`lmn8u_1|ynI_R*kmw+x4|9jU~6 zJ@YW#Zs!zI3n@fCMcfWlebx(|zh8Rh>2gQ_TS(Fnqbe(ZvN$6k^F=2s1IZHLGWVwD zeB&W%H!q;Jvo>~#9%N#754sOyPEDdDO3X%FWaHA2ON@cQKT1(wkOL2gH7f+_=_8!RFqvN2^r#nz{wC@DGOb}?VZPNu z;O%eW!hJK2N@TF-)a|9%RHZavl2f6*a{bx90oY70)0h!PFodXX>>;>uFhl)ypio$1<&)5 zS=(D8j&i_#XsKP3Vs6rpxa=F>H0w>W)HNH$wYH8~W^edtpr6O-M0#sLzSr;4%T9pI z>~PFGAoo8i=x-1DCc~zz!Bi99IR5~6xIX^FJ--U-vx;}9IxhF6EUc%!xL2CwW#d)i zGmhDy){7*o=ax7)-EEB z&gRsn{{S>D)9728SWUXvrxM+fuxMkNuqPx%@Lj zB;N;F-hqG?H&ufDy$vcFQc_7^iVqeeI^!|U3t3H&1P_T|gV(>BOk1o=+s$j59q z91K-3YBKo%nn2IlXGycryePKRjtgG1+|212b|WQJa5BIE4hCvB*4<2(J}+6AdS6$5 zoHF@$^EI5=xo2IiAO(I9zbx^ZlWSVfQFwFHtEKeEO&hqPaJCZ}42c9?%DR)eh&jhS zu}oXX?x>GX^5*EM+UbS_n3x4_+1f|U|!I@_+ZLjmdUJItckoT1jpg=CYSo&OnOl-b|0>kP-S5PEsjI z$&HBl15rtZd;xWf%Uv%|xxJkHHtUiJ#!sO9Yngh>Sk|@uY+q_bWMyK64iR(4D){lM zPu1_bR9op$Z*;mxnHYuKn@$JkilQ}bPHO}fdX=m;_wn-3$~?D0?~~jgl~pWreGcg| zV}Y9v!SES>NVdVQ(uT6)LlOLq}sKJ0lX>6(FRvbFW( zw?Y81o)l+0MO&xSwD(9YPNhB|EvjmddbwwRhwg^w{{Tv9Z>itF*@o)nG5(oI{+Ogh z2sZx!9F`y)ZN(=hdt;X4N5u&-R|}KTTeMuY?4MJx5FDZ_NwwhZFGz9&uo;5O!|Cs zPLjbNmh8YZfpWlny+1lrrS#1{O>kIi5gDxHxbox@9iZp2`BL|yW|4L(puj3}aDOUA zY;NRcB^mHHr9njMzR?6x;jE^qmfXBWF=9)|UKJ;_8<(B?4 z>4|fX&aBT5=Y30~w42ET7i(19-sEsqNC588yHU*>vkcxL}to`1yc+D!l|ms~;@vxnc(0)Vk~u4>t-= z03LYut3CXSg6Qe-waO%&HP+7h-R`&5H&Ygx5Qym>L|o?xqp+!#pW+upl?F|8pgxZY z2C0ooWF|{75o9A9ho(KMCd^g7ABU1SHDn~@tPGKi9V4nOy4Rv6B~z*G7bE$>AKI~` z^*>Krb#M=E}iyWE54~{ZNrd#2zS1d`%B>hRF-X7@F^#@mJ+C8j^3*61L zIXEK&InTWm8&a~FwYAyU(a9#AbCg}s?%LQNckAy?E+@4>C5m9ePDT$RnP^sbKVbVT zvbngn#6gQ^dI5k>&Xj#NUB`ajcw>wLJ-$_=#Tlh>8vb4Tzpa);um#N9omG>;sXR`NJ(0%BkBOKK8S(B_^_NyOx`nPt!a z0E(UXRjPf5SNjB$`F59o3pb*;?BCk2xVk$)ar{jp)wBNq@qtb){66WaB?WYA9F9ii zBM0y_tC~gCF92oJ<^uO2^{Fz=oGXwUGDw>?%`{#Gd0#ZtWOh^s3{pdTH$o>K4&5#N0}|dmnn0 zj~8u14gEf$kNRfq`O-RviF#fAtHC~u?6NKo@fN1#^g&XS&I zMZ320_pmWaNNCTo#VaR--AJpImdTH|nt#Pjpc_ShUj7;WZfa{UhFwn{e}e=3(ou?P zy#v%Rvu@M8);xR;4lAt$i1wExw$rTfwhHsdsH-DHyj@n;&46x^N5-q(qMz)4P+PXy z^qY;pE`On-S}l)IX*WJ}7B?}K=Wmz84{C=cM<-;m9XY1>ytAKL+w6#2ZZLj*sK%dn zX+5-Z$`;kzf|9nz&&VG1t;gA16C1?;03gFZ)`xpKSKy7CBCLG9y!Ym@_IJNTuN6Fi7uB%ixYX*5ETX2W(Nra1FN0_WuB&xfF{ z{L0KTL9VM7QFO0nZ0C~vzR%L_)_=#Y6!Kz}5_$$f0B8J--Y9{Ba5F^onsbHz;}3Pyhgb!6r(R?<=F zxH3>JbHm%tpOV@2jY7f;d1VSp$+`CWkiE~PUs~?1CX>_GTBLC-pJzg=2{=-H&2u+X z>$;A)sWzd1J4qy*g(u-b?4!_E9l?0?PN(6{hoz;Rj=5|YjL9P_hja7DsdcwebgZkk z->9_4BrnYR&YJN%>>7teUYKv~r7>-gd2=gg2iR2) z06>9*2Oh({12W781f&Ds=SA&NSz{-?6jy>pUN#K7bGvr#Pp7pl=Z5WtWANbCfALS! zwkRLIc;||n;04bkThER@0_Axm4)obnNfJy44U}Q*eGL(XJlAyGN5kK}D{pF_x+7pn zW|`x2{;YBj%i4<^+*m^$D%gu@AXX^q+mQPjEYfN(Zq{?jZRNx=(ndZnp|5H1qq92< zvyqeZ6}7?g?5CN2^oMEsP|LG`^0KXpEF_)m&B^)DEk#e10`PYlHK-`_0(vOGp!X;w zNYs)(Bie-Fy_z0(^UoD*_zB_Ey=l}!=IS?HBFu-lZ~dcsMn1l^UTC%gd+2Sv(!Okp zo3`g0jx+dXySt$D4L_wia@$4H;t3QGhIc=DSr`q@-#QGAqC<2Zv$jYr)+p6dGyp0n zzyNj>?l2e-dBrD6L+eXjvZQ8PbeVA?tFAGI83LM}6HhI>?2&`=7@{fnX~?2Ylh{5x zRgD57;YVSP)sq3nGsk**&QrBDyq{z#btzU+UZKPWbMc?q_B{=?lOE<%$IqN>RSF z)+}x@OYG@NhF@)LU?E}da%(2(w&aWtYEhzGo+&RScYZZ)${}PO$EY|}^5k^D^kON@ zJzKBYfVR56po4d0xo|%$(3s#x3=h3|;Ei2Ej2!o<_LC#rc1Z>e>Llc!Ekl{Mr^ zE>-%@J2_d_o6yQm4j(>yV^$5C~t_4dF}aBsmtt|vyZO-0A`JB zCg?hgPnG?eCPDp8C#85#b>ZBy^%qv(S-z04JP!7uoz_VdqTzjTSZC#$>jZ&9fs<7K z0PSrfMd2iYfAO!PM*0Fz_Nb0oNz(^u&$b;=rCUtv7NCzDe+ro*?gwH4=^phaSDds4JOFSa2$bF`!MaI@6_Z`t2<-EE~V)0AENZlF5|3pR=I{U z9DS@|bM?pdsf1lm(+mT})LK-l>dAD6A3zDN1++#efXI8%k1kl@QnRrK(1B6yenp(3 z{1%6bonNSRUsKIJyyxte&d}N>J{`WU2=zYw>IHtJ7grk_AbcO%kkK`Zp}kJif>d$Z zmbko`@Z^omc9Vfn@W~FtG*m`zu7yi52&cP!;Y=>ICNi*Jg>m=D&TF820Py!m>N_;* zEoGYP$(BV+W>K(!K={4;)xAH5eGe>dvh=o+*lYv#aoVGFA>U;a&gIuf3eSBXl4F4y zSr6WSY6l`V;zASnS9)IfN#WdzySiSdil0(_z(ModlD{7HIR0jyWTml6|fjrZL4LXC1=> zismhD$@*7Wp4UpfxrjzT;wzBn*c03IrsJ-X+_iQVogbSviIqMxlO-Ifqf8G1nVH%Qzqx+%W1K6D&?><^57BDp3=8aDnS zVTn2UbBtGcOr|Al5Jou#d)FxV)SKXfYhBCdM&>+>uw|%u{VeJ$lZRfXYV_+^r5e&`n#y5JLae-SY;~+BUoD)l= zE9NiOoEv0jB-ALAynoQWMR(Jh$eJ?CZ!g0*CnE>>fcG8iq4Zn9so1T|a)wt>R|k?l zmCXqXd5XV0Rk7e!v2^!$8VljAkqnWO-FX8aty7yFDYV~DUdW`17G&ic9FL)@p8Ce-#_CI1qj=qa3cdX*G1i)8zM-VcEQ4&Yg2>==^9S5j z(09SgWm6fEGyF#x9*k?&@?T2vB3#|CnEMnf91}^q64>Ac7#I|ZERu;8*c5Hx1M5tz zX#(YB&#W{pW2G)^R$WzYe$#BT5fhi$yU>~o``=KEXYC}9P}I{>)wLZ)=@$0xNw$)x zH~&k7PwSch literal 0 HcmV?d00001 diff --git a/doc/webserver/team/04rodney_t.jpg b/doc/webserver/team/04rodney_t.jpg new file mode 100644 index 0000000000000000000000000000000000000000..bba4f154096761632d45c00767f3b2af8b564ce2 GIT binary patch literal 2138 zcmbV`dpy&N8^^yhHdbV4Zgbn_GR~&b(NZ{Wu`RbTa_vVg4U>sXjyjS`KX<|_5<6Qa zw{n?MA-RMfYMa)`rA!wr9Tn-Q{q*~z|9|Is{&}9~{XCz~BY!TR1=L9ghz9@=2n76V zGXeP|-~vDtl^{xr5Qq{43WX@c)L}3c6_}RVwyo;gS~@z~S_p)mfvJ(6J{pNY82@67 zHZ#XsVs(vhJ8%{|Of9e$KSV%KC={j)(}ck^E%Xq27XNq1y8*Z|-~;%8K`1~04g$kL z@?Jn602IJKzWo`BP(TR+R#w=AuIc~?351s_1}#O^2WQKMIh7B6yP+!#B+V zh0OqIN%7JdQn4m>!$? zg>Z1~`e{UpmY%PodV(^#v3}9M)qDJV%{Q^tI=KqeX4c{w=IsEr*6wkAqpOM#dFT&4 zG*3mcQjeG5TeSPcsMdmKT-$ok_XWSjEY;imEyKC_8dHNL%N4+>?#^1t>#@6p7y112 zX(IEXv#T+x?OwZjN3IC9wfadkVhTJ^<6u;IT1a(hx{hxDnHjxzXAA2vmtu#@5Ve+5 zN<2#+clBLOqe)DIpqny_ISc-z)~lZ2m@MD@5Z1VDZKr2Pw6oCbk*mj1+=DrRCBdF^ z^yoGQHJL=@yDpH3XeS;%H|PX^^2n%m>F%n82G_THIv@1D!JlJ&o<+jypOxmgMRv5S zN#ZUh5VLEyB=wcOBoL;M)WVoo(#7_eY^*>UH+;Dmhdmx)4nt(MpG0p|y{Fsbc6Wb%94Msz z9Vuv-z%k#LX4(w>!pYPWEYFe3$*~tj()<+TbM9NE&n}G+qir0Bb4cDsbq#O!-P^$* zhi(HC(rXb4pJ@g3NSg$lwo*dFeSfDo^r)KRsp2Ec9Dh+wk8`kxiVF0P2Kmyt4tQ0ic#Mg@@ zzh3M2e{Q?RDf@8Eq@DVpLQVLBo}Q8kw>;8)Rn46NRQK5>UpeP7xIBVM97WA&)H1ly zv!K8=FL$zGz3>^q?WxqZV4XWpHa?=VoqbbW^kINj_?H|=T+iT5tA~jLE}C z$ejZ@Ve~99viR03|L|A`ez8LFG;zRV-93uQUGT3lWFDMdfmsEpv7(I5h8;hZk`S^+ z&fl`{-n~l(Rp`MfL1W98wj{}@qow%Wrzrjt(LgD@HqVajA1K6d)SB)!mP`XZdO09 zU&gXdrwi^TgrKgR;+l9h&|yQ)8XW7Tb?>y`*l(ri={SpccsWk2YfuS7-JLNXDaG5^ zpipoIEXkae^Dc^v7^ zt(Dof1bk-@>0EnqHzBZY(3uhGa6LJw$Bx*p>lCY9!I)YJ@D5LiXNo;#wB~QvGvk`? z_v{W6V+Tas^PVK%)jXh3(*6GCpgvmQP4s(Am1XBU>y`*8*L|dP9)7e!Y8Dk7cIR=V zM#H~@Xio(5yJxg=N9GkA^#q66I?;aCSO}UxCtqH;#%%k8RU(uu-k2_b(s8D@eQ0~i z)k%&aDO6Oe?BIW%Ut#!lr(L92FEJ~iG_Iu2!^9i4uO5rH8cI3fe{yX+wy^gkQ_R*g z3w13z##nda=UKJ_LxqJq*cA7`c=jjL=^6Z&vIyyo5Ev!I!-#H*;YpKLQ?X5nk{d-G zjxRM2-NO_2`t`&UePtNP8fy&{MvGnZ>N=hi2U!}9wcy!_E>ISliLV;n>vDpd!`n1p zh3)iZU8>6+!>f|_UD(>ULVJG+JB>kBJ}M%gI<{|i$(3&10}Aq+%)}b6vzSI{r%wx8 zM(j_dTk1E4*YxKfSTXw#qZ?QP7wTvk4AZVgMn5LEKYlvo{JU<}!Ij^Vm3A>@T=UKW zorrmvOZ*w?!(%S}#}-qwf`wo5q8On|GEtT`;;s^OZ{06Drt=Mv-LLk)WlhJ%!^s5QvC-Yil6nhOC$$6=Fei2_9qKEi=KbCZ@S5Adwokt iNpxUG+Ok{r|IL4=%;3Ln<>K79000}rtolIZlK%pS620#L literal 0 HcmV?d00001 diff --git a/doc/webserver/team/05david.jpg b/doc/webserver/team/05david.jpg new file mode 100644 index 0000000000000000000000000000000000000000..429723f1cece4b5f2734eb0ba5066003d0a31a80 GIT binary patch literal 62834 zcmbTdXH-*P^eq}hK|ny1qEwZpROub8Q~?F0g`)H#AiWbsK{^5gQX|r9Xd(2dlz>Pt zp@trW5JC-s6kdM+`^I}?yif1mo$}?JWUqO$v-VtT&T~F9}7cVi=)6-qP!g%Eh6C)E7Gt0HB%q(myOiWifud-cd z=iuPD!pe1nll{gub`JLczJ!LB`k9ND7%p96U}t7xX8+$F=RW~#muXUIQfX=K04}i6 z(6Z5-_W%T_abBYNp8@#42h9a)jCAyu85o(UCqSSWk(YyD=bgQJtPi>sTvpMOALP;f}-$4}8QpJU_V)6&0YWM+NK&iPSP zTvA$AUQyZ5*aU5cwY0YV?(XUBL-Y^)8K0P(nnupd&aJGjt#6<=|7~sW9~>SX<4*{u zXaC`%0nq+0Sk(9b1?>NWi;arw!o`cU7wP}QMROsD`l4mKcEUza#tM zGW(;{!unqff^sH%9QM9rjGRL9E5iH#LHi$M|NnqR{U0Iwe}MhJxaI&?XlbZF9xWR{ z3qYi|-a~)8HE`-}Z{-HSAThm62W8J2coLIA47k@m^Uzu%DPt9|QU%^79uLOq~ z!1G1MJ+nQ3q?tPBuE#Pwf75&r=}eommp^4w-GPEaef|ENMLMy5ej(??n|9ld zE!=Je=+SA=ZPvv(#w{)Pw`)>;K&DUT>Q8~BSC&#b-oKaD&jE54;zp`9lxc7!DH-i4 zY6@#_hP6$-TE7hnk2QMOe{mB|U-D|-uyd%i_RD}q-UrVgJe!NHd#d|p!s7~Rme|`J zQ=IlIpa^b(_I|#w%{<10KC6JKTBrwmkkl`URi4aSvx4gD$W&#hXpt@CjFbXomS4}3 zw@q>K9z{+FF0O`Y_tvLoT$%4Ck4T?MqDt8k@XfI4xp#V5vjwqc!;1`xVG4lW1j=f z;kKBw(<60~>B*0dRI8mzceA8QCTVPGh<5xd-g3hZ`g4H#M2*$cNvTV*4d;MQO~v#t zSZW3DQAWDNBGTvnOb-a7zDtW_lyqLdt?F$4U8DX*wVW~IR^RsSIFEmHmhItaZX>w0 zy$fVD)v2`thh*6dKarK*DJ-$6Nt;Vy{HTTh;*|dPP;OYG(ey7~D$~W3DCmmv7uA`8 zzyp<+DDvpmmNvg~p0GjDX1O1(s}_iP&>R9}6*}nSAU%IkDKrt5a@kYq?_)fR>W6ub z^kWhT0$;an6+{W?0t(UFmAkiEyUJrSI*Sx+cf^4n};*f*-3T4oc2Qxf|Gi$2171bY8|nmrpN58!#mXl|Jxr@2;`c8+*dl-a`WLLJ zw01Um4ggZa-=l*=Fb9&lo;~;?Q^mrkKPdy3fszM4?IgGA@rbfupxkP`XHqsuLZ=;0 zcv;|xHy5+g;2ic9;IPyOqQB}{l;?SZ})yv$wtE9<=+A!j9PsBpCN z+}3UN4=DToN8)3qi3I`uQt4t&@Z6AF=$_sMX*_3-h#VZZb~YtUorM03c*a`c6_iw4 z18;g-9TX>b4sf~{)ScAfvQ(mYQ;2BLanBWX??8}?EhJ^5I;<_;#~^_xI$lp&8g<}u z&j-pnBiq6H)}=&D$4{DMaBX$>=4yhNSwQII&;$^dyrX$ufF0NG7N&F{ENWf?1u zl&VwzyKcJUUF&cCnzKb`m=k5JJD66MZxe-9ol&>~nu@j7%)LSXy2aVY9zqq8*>N-- zYd9KI-h@JjUW9PxRBy+saEc*YsprT^y`kGVfR!Av{NI9V-AlnvpGA+v`^!{3^t?1m z)Yr~DXmsWqgvM$xpt~YQ7v^o|3bpR0`tA7HJ&r_~Wm&nzs%!BrF3cq+2~Sq}2)SP< zbn3AbSVS0yoO!uV|%BO&TYhL=;t z$au@{5$1B^mU%sF(bdM7eBglw6GVFv;5}nA(KPkPLFp-ukP`1WMWtH-u6dxf(k?-6 zoQd0M!6F~8m8SQ;*89HfA6r(?OlQmd!T=46A(#a+OhiR2bC0XuEG|3q8OK1;tVE3*2k z>(fg+dZ>X1gd;eINoBRQ8RlCdA=%37wfu3ZR=GBh zjl5=gFsuSeItO?q1(Y_&^z@nUoc*|}x60}`v{CFy|8DVn|dY2IB% z<<{$!8XZ%+Hy`y)-7sa_DGB9sK50O$F|fqoUDxc!(d!hBvxF75jgGzDn3Dm#XgrFw zQOw2xOFzIXu!n|={hc>6oSplg7HYn2{E;*dVh#>aP~kia!4@j|3PY|^Hhl6xs@;la zi8uePYz%RxHo4@A>^;u6>t~#End^F<+lAMv72g2OFU-#e+dVjd*oHVwI?HMw;@Fyh z9jrBrZ;QkP<;@qTO2?XAS}Ip4>mO*(I2wV5gNea5ZWFGWe4Lp>R|dm;Hf7!;(27$7 zH@BHXf_c^8~p?%g}UR-*Yor5)CrDa&FqDod3%iavCdYJ*WWa9s$+F(*QX5qdDBDuiNjNgp zpIb41)sb2Qx%Kc4;+8$YYq=mB5>;V1&{Dg!9)Ys?Tp-SD^GFgp2&+P_hX{X;laSoy z#{XRyxY7JF;G0-VmbyzTpEzusq!Zc}Q9>?;U0Ynfye4IlSkQCA;XJ>>Qn(7_8C+t0 zAXV)^@BiS|m4~NUACVP^(AA^3V~nH`pOis@20xICCx4VHKa>XADgLKtBFD&FHgLR0Dd1Z)?F#f z(saR`8m4AB_i(jRO}&|Bovl~+Srr&WG#8?=cAmmRX4{grIGwXd7e`^~*DI=(XKs95 zLGX?GjWaM-XT^h+-_FX_mMzz+llz@{!7%5g*lc)Ea;~gjUV!G*4vJ=9rw7CzY&(76 z&8V|t$8ze_fz|i@`_h5t&T5CzAwHWBuma|@dAM>8U>K;_mMr}mQaxJwAXh}Ph1UhW zi2M$5BlxWe#A;pbQ1dQ72mBW0iVl~CejAKXk=Ry!`#5F8^hI+)$|2cN)qUJ}@f-ka zvLm|vODNnn3ks|%-@b#r`9b#L{6T?gWJ?(Vsqd-~rd;DS`7^V;DpRv&=B4je5FVx& zb@DuBRfSO{BONW~tBErX&FV8#+_!bBa4XlXtEqc+aFuUK&ZPjAfi{x54i~r6!W?LD zbA*(39+3r|PPv*Id2NNqGIx4K>?wKUZ;E zTX}&)zGp&>-PNv_G{@eB*L_QSYO8c#a`(aJ9>=)e+oETxu3asvDj)JY9^$7KlF*!7Ic3xuZLkif1>(&uP#$opsJ#PV_w5B|CvZ}lj*U-CMo`#YxEmNZL zLg^2PRva*E@}AbPN0=m83qsIPRJkso^39!duskB(nEgJOC}x3O8q_7yleAPLYSELm z=7yYlkljz)2LrS_{s=YWN1%*bF~FB$ccrAfJ-twVew7jRK^DA@sKz`x+MI)~Ckf*WU>-;Oc7^)HCkgQITmon9A`D^)aS+-sAzRt{?} znmMdh*Id~QDQnt42iV81ru*`BcpqW63=elphbts&dZ9-z{-(Oxc^JZO3BZ%j0ai_E z))os*dkCL$!w7l%Fzwby@;hbE)f~pl&K4sR+e)>Yx@!T-bv2q z%m!QAA3S>SMcyPjNv>;iAzsXeURY+@C40@w|$U`M^Pkc_5 z%@5UwNIqKxAMLWLx!J{TkqY6w&@Zz2_dfZuznmvIMhaLFaH}IEb~S^E+LDx?dps41 z{Lj+1Efk+~XocQIoJ}B5$^urWE>`3Ub&q|z(}@@R3fMm#rH`%|-@T4xi5#S5Don^;8Bz_(2*6&O?_pi9EtKq5ePZ5X61Ijc5dp7( z=$2;n=rU^mH3qw-xpcfYCgSZwzYpu4(dLknItjTURr-BlTP|O&(&viP(JqOC`@R*3 zw&)z*aTEONdsAqDRHbC2vjguwJK6~a&Au!s7z5WMEV}eJk7KPx*wva;%v|R= z;HN;dbR14Tdq?3OUGd-C$Z4ARjfX0?ovhcCDZ+@BLi;UIoDG%55!1<^Z9%`%vZ%?0 zc3*R8V)u0#8b=hGW4JUzGQJW|;>+970;^Afn%umw5p@9hj`KPRH&9&2%FYq{2CGd3LZl;z8msip>=}6v) zwot4m znbhH4sf9q!eb{U|_Oe0jCm@`<6iuRA>RX&x!zy@)F@JN{M4t((g*s?xz*TEJeS{%+ zr8(R!i<-4JtI`T`(jzBIkr|col$z7X{2-am1Wu$P6aH6muHwW{4}AU^PGnszWd4*p zcBq7zo4rLbVR?;Ld)z7LklSXFb@m(D-H;ey2gXdie%7urptJ{aW4dwtbNn3O*q2PS@#(`w zf~^WrE?j9Em9y~J+1p(EHwElP!d}{|<=$jYEjXYUz_Qa#@5oAME8D#_U5nZNNB-dD zE$Ik7urhpEX@5xm5;m=7`Cri$aLDqxTMH&{Wp77_II_HzYvhqznx>0(d826_`X!X+ z!!abs|J2(0i7$J?~s1Ld1`F@?4fX_0Rp-ttYVJ~EMk7ZmVh&aMEV-dt z;7wo8?!sm8@2(4En58`-soc}IM%=3P>A;qkwg(ROh%1>+Er+yEh8Byi_B9A7FS;cb z!2ccNHg=B}>|9QZx*>bkr)W#xn&j@9$RFWqL`8Wg<5#{7YbZWx8)+3U~hVlH_!9fJq@2wzb$qNe$v54G`{_l605s&T6 z)Kecj@eTFJ8vf|NV-TV7_F%s`H0M+aPmaMe88hgF`DZ;FU+4(CbAYckci-#`o{cCF zm)JGj*< zJI)1pyj5iDN~=_H_6ir+CGDw0>U;KU<**>yuI)d>#@T zP76X)z7WBq@U>eXM|jQ0oD}yH!>*4j%P0n_IyVh0{Jk3|NK9iV=+zK=a6-8U-*ejT- zkVe7NT}N;6LGdP1{g+|~LfEvab}>^q|3f-&8p@4IRCvG`}e1kT)EfzI$Ts} z6OTkX0|h>7GSoFg)3li94b^W?j)Yv5JZWG#l{E(aX>J-aeF{x@9?x0-Ubwo}WLoP! z_L5%TSc;K&39`b($i$FZ<4z6V7%$TYHx^fSWTfylweO9@1Ry5EW%k-lyV}#HmX+@B zz)V{Y>tZ(3hj+W{!hud5vqH&97o+&@VmIjmq#B}u}Xsl}Gode;^HCJDV|&qt)us9@fQ)SQ;7 zRjGx-r{Mj={u$zWLQoVi5}Z9dQtX~-IyVqhK9>+QfBVjTM=>MT!BN(c?^Tgf4Rtv- zGM-Kzxqff|L<_j*sa+rS8{x1fx+2kW)^pt1WYMc;6G{#DkK zX9l*FYQvjSrdMR_$5&@ZufrQ~mh$oUU2Y)j&HGBe{%QSQ!;OvA2?{V94-ca5Un+owq-eT5fIgT2gP+%`XEVA-^1 zurhdwMUGpow0&#GW2Xo=iNP|98p4Z6MKYRiU~M|q%d2L0y#xAb5o0cXVR1_`l5w`| ze^yU27#34EK?W=P@)u$>SKGJ>L&SI2Ano3gA+^kjxZ^-iXJQx0Bh1xA?FNX>4 zxh1oBi{yIs%tX$B`NNAE=YT6yy3=dz!#UWKov38=k(LXUuu3v zp|)3nOiY%q6_p0UX(oBR0R^W=n>AAAWa){c)99lcjc$g82J${n1wOLz8oGM&>N_o+ zyr)*^k?xU;0?(u+4E3d~8HP?9I5)(vg$J5R^vL(HD8a=#_gnBBrw+bjp1+;%e)Andx~_vODnF@| zR8rt}w(#4nM0v0s=7oB1YebFOMT}tjPyPaQ5v)B&Jb%m)_C!pXcDm6fX`zap*1i6B zSs4=5&PpGwxn?@`Chjrf@>{PrGXcuAt-l_6AitMS=ar^~X8F%}9rI*-0%n)IY5%$q z8pN@n*IOf|e6Zq( zEm^F(NJo{|&OLdaa@CI)6p{!{{0_eKag7pL1HkH?N?NI9JhE8D7mi&wH~ zCTl>@=>aH6)o#ZuUTLlhMs1pvsE+Gr?H3&0wMqNJtOu_t|M`=%Fj`plXP za%=R(2b^WMFRU<3B%>Zs>qS$}Y0H|vOfQ_LCpMEV#g_QUt9?^VDF{Ot_dcU;iDv-| z=<)8?p7&>L_~flXzZGpkSTmnn?`Af=VTWagPbEJY*N^p074$0 zvYdh0BT*?rSp_#eEv#zW_BoP#daaVz`*!bVz@>#Nmj_PdrCHUC#X+>n&va z%|_84bi{2;@M8V+o{qb=boS<{e|8I5{Lls(7xSRt!NZ$0bx#fW;Xdf-G`C>&3!68G zT*z@THkJ(tSeusqb^JWx`SXTtt44s_hhjtUhFKxGIg+zs7f5#aCm+`kd}fZWo0ev} z2dv0i8d9mb5fBEY^&I-OmX3yL)p%bi{iN7ZlHgrDJ4UPa-`$^ko<;L3ceO zmy&!O_OGvMR#m%I1j}PSUij_x{eFM1{oK;M&6^ORbgT9&azXE2zGI*U?9P<`u=XlL zN$P>GQoTCaqbvDZCV%*Tdmsfa$S@ti(Ja2We|^(u`HN3_V&E}k67tz^!G<9HJBvH- zg_Q@})&O2yxpsIKk=BulNvVl^Ii#GXBheFH>@aD*4eM@^sv$A2coPIb^ z5M?u9rq`CQ&vUG}7%zOTqRNg^Q@Z~I(=2w2Tbq+rj^nOzwAU-SI5I7KNHKOlWyK#F zFol5_bew{{z77Nl>KG#Lh?auV86`naWM4!q)21Ut@TAKiXZ>yVL62KOE{JuR)Ba zadM(11aTAJYIEOci~LiH7?`Nparv8iW~zk6?j?(8ZMFSPRIAMp5lf&f!5J8YmbTaO zu56`UL89kT1E0xj{B*hwLyu09pI`Z+*?~+Yf7B^bg*Ra#(rf1c09h~#Pa^0uf?@8T zMQ>1s-nnh!DTF8SpjD@e&CxB0U5=qY!pmaW|ERpU1t25w08=oP*TAhcM2^^~MiRks zXXaGNCq5`R=1irTHj@HZlrpedQJc+wJGvv)rjFT;j4pH-)WVE|P!1ZdX?CmxN6ch9#)C|U*W#oez zI-(v66sjggh|ijvq*k!%J4ba)nNHIo-&|$ndV-S-aff1vn6HGIje>98Gp_zQW^c6II6+-L}Z#?K>gga7p3k0NKAU419vr10U|>3_DRK zQ+Hw%Xd1tCwQiP}c;vqM!E9Jv3cAw7825vT4Nc{vgpoCa0O7pxEo_Cl;`DQ40X%P9 z;PN70o;SiOS-kyQfEE`}TvgZ1bmsfB7hEO2y5 z4z;c1`^Ue%sgCC@*X!T)*c6a{^4(o@d(NL>yT;%sp$`zKP949^AD0aJQujj6Snr~V zl9)~7mX@!WbcI7)qp%9Y7V3Md|EYX}N7&#uEJ^q>Op!ZnsV>t^?sq+INPz{jN7gcG zPu}QvhP6)YLL?;}oA-|B0y-yv#ywdkF1WjxSK$w9wou%o^VY~OgDX8R3;xXdp92c| z#W;mOzxjYFEkL_LzPC-@fx-594c@hR8vethm}x<(6Z$(?ZVd*eR8Sm6!Ugo$~&;&+ZSh3p6V(XhJ8WX zLbkTBs1BYL+~;{ycoPr5b=~vc(E4Eje^l2LA@CznneIj+DYn?377l&nW%x&D(n;CY zal6TLi<61B#qh_i`*bM1UA>dl%HZ^sshDzG*N?zwvq3L2GF4PIeJgNS8{wufnUD2x z^G)GD9jB_c-Y}Nev=m&nv(xY09;q>|-!$U~z+)DyW|=f(M|oSDlZvxHU=sJie&7;+ zGb;&B#R`v$9=twRZV6=q{L;eG^lGD~SBhTGNBvl?pVMO>G6A6+Z;7#hxTl0Nqbn4L zv}kR0oI-fZbEVif*VQaib}5eGnIR3Wq-kOg7h;}4=BLh zOJ6>IVW)IKRVL?+U)s-SColhWTn|N#INYb4$OmaG2p8|3s1M?m2tQ6VW$VUvV^-d! zF$H88NGRQU_wK&$WpvkWU0B?%Q`8g|k(hR)cjIubE?KwRmu9OVU;L2vXP^ne8(+~m zR%27MriAlhDtgO?5c3`mdo4q%Iy#tEu5I#&P&JtKY`R`h=Gd)G>$x`R!&&F3ZLVFh%%*|iul`YNbDK}1-9MMExpq6^X&joULt3wkRUoe{^dCF+j9jAZs}DVT0N{7 zB}vw;R>b3LhU4LEb6p>UMjZfhv4xyT(kV+)Ui8Qj?yyRzwCs2M8m9+1VmLVSL&3GZ zj+CL6ef2?Q*36I8-0tx6E9q_Ymrzb^KWq5KU;mjCP_mF#k}+K(e6;NpxBDU{`@lhr z^_dGa?5NSzBW*=3QxC z>>`ZlJHdAbS9z9T&{BBeASYPxY1pl_=XD$=2E1i|l@T0gH>rIvq;7<|8xQUp$9q{q z0@eU6fN~jJLUO2sS&rJPioaN)++zN$jLeR|6qx&FTdkF#jKfgHm$zfUG6GfRiqV=) zn^hoy^Dsme3`3Dft90y<{OJ1gYecy>3(bn23|~NuFr}UDRdI1*n8y(4adT^Dpur6* zJs=kN;PwZmgH3g3_(Prd^3b>d!4jLlDHo}|{NKtpijS1Yd!20o6?`-m?* z21*0qL5cZF;)&9wTKZsYJS$MEn_67R!W-SCs`e@H+Oo|Ktw!@W+r6!Q_cn>P9Uq|y zw#j$eW*>eHp!L=}&mJU?s8;Dkr54NWfb_&xQ?<`O!iWpmL{`>w6@75@An zcmLk@Nl7okWIFGw^v1I5bfSZcOOSIwEyRkXG*O)IT^MunEPhUpG^D_IX_Do><>&Az zi6xdJTM&ucsrp{44aGI7(#%BxVvKqCJsqV2!ZiR%RYWG2!h$1FmcG54ucZF^bd)0 zn3EHMH%-W+gc>VBf%&)3yD+c3S4D3q_YaF73H-7$%3m3w-O4eHo>VH}hc(?t+2zJ8 z@V&gCQ{U?dB#FX^Pu>CT>@1cn4ZIHB`;-sM0h(LN>!D{z7xpB)UGr1V08gh2`jFz& zd)dR06!GrAK416s#d60$c1W+X`j3TT_bPyP7z)om=fk&q!0yn!UnND|WU%Z)T}Uo3 z?U{X-6S+~72cyM~-dhDOx;2Mlo36Kv7dX4*D<#VEz7}{Mik#SWgl4Lg8YIkkl_b4} zUacT<4Nj89Y3=r+Fxxp!L%oCUtMqA-A(9g(V!&P6iMbAvu*GN%ciI-k4hgB4u;L%j zjly8ap{F~MzMyVtLh`mBM?q^L%J5>8+Pa=a#AiXFE}e%XcfNbiezd%Y|F!B#OT4Vp zu}$$fy|w9u${zMOQqbhw%Hon$_!?y8F>l07WO_+8%oSV*mupRz!@E7%{8L~&Ox-Kf z?{Dq>YkCy^`y7CgL8?$o&SRh9`@7R{qa|e7YWU%x`-xrL-Ys$}>3PF9senbgKbCn2 z`?Li`?^vD>MygkJM5ikUh$4jQC-&SiU(UwAXE*t%F@1V8GqA=_ID(Akf@4%8I!Q7p zo|;FiXmd|Rr^ZKZuCwozkJdhJy~Frh(@%`+h4+L`h~Z;*tNj%O}SI@;0a!>f^Pv#!>?bHICAl4~sp8*dAGcMfRW+#rCZ30$i|NnIiY-v|?gp26k5BH<75 z^H-bhR-}sSiAs`}z6NkqEsuQClxp3NMi*9jFiEBRUFz|B_ztaoceL$T{fdjqi2L;3 zNV2-&nxT|OlKAhm;J`)a`}57Ea)PBS!i*1Sd;ve{)2+?~el7xm`-!0=u_R!{((gF2 z+6*QvjHb}hDY7RV@txyf8(#1Iis#hk9FThQ>Q0Gag?OHMw7TeC(Ta7}bxYLjc3brW zPB!?wFbC#7f|5I)s-KX5@(;`MFRPM#*k|t0#$Xj3;w;kGwx= zu|~3PZOH-MtggJK#V2XMI%EO#G39}Oz7i&^6uKw*(0`J*G3`wU>aAyw(|Wk&1y~Bv z`lh_%K&aMMom|f#{)00!Z}r_b)9s_0D?JcaJB7#0hW?lf(K#c=&l3gc0d<&R@!HN& z`_B(1N~SjBl?w|%Ic|X$E*nR7nB8w9#I5Q*$n=nAv1s@*-Db}PF8p~2gd1hl2drR# z0<3Q1!O2I@_H6ZE;Ed4r4n`MF)MU!yBBTOMN2a6{pOL5P0mh(3my?-(r#=hnIfII5pA7mf z+Bq={!3#7oMTM)@XFt$tKMfz5sL>QpNDaGVRay}KcJw#0yw6zZX?uQWW1>%i*w@hi zjG&84RG$U}b9Nx)VK8qw-M5O~CYp9AF?&`sx%SuHSke0@V<&tL_@z(Mmj^{D=Fq20 zI!&^?>*wTH@QfH0%&EEKRuQ zlC(Ze@-7Ot`u#+cZ%n@2vB6?Mm^9Xz9k;3cigruqCD=|JWDC~#jW@(ocQ&$d+;Vfl zSwx-oc)MTpO$GaDddnVPoF47#!W(bw+=IRGZ^!+YuKeRXe4Ovar?4xWwx}247=Ze| z94PsLf(@Tq9l1=kjh+C7uI!Yg6Jk~aHy4hztfp&k_Z~nCm(0cTx!patLzi|o%cKe; z-t9!&-pCygI&3d=paesz!!^oy3@#?!5#0d1-Bbs~c>D%Ajj(DoXZTJ$a>%fJykY!| z*N2dErf6Zsbf>%|$kAu?f`-q z=(7**R?I1ziK*yp{CGF<^vTgrWlDx!@0n4y!klIyi18snNTMb>Wj@_nv1rve#{6m1 zAhDdcBka}G7=uPEx>j|^FmycX#LBj;lVI03XWMz#AgtUm?})J*eN>a=^6ZkC?#w+Q zn)JkiO@Yml@C4TG1YO8l%U)3IMg}cCo6)Hgp5-#+yE@ydr27*f^DE(&+jLuCQ9|&= zle6j3M8_OxTw#3qQb$q+p`dta|zF94|?)_*lAUBqkVG9`X;7nUmSy0$k2Cn;)z zD~j+Vd0+;0TB4R0<{n-`#OGYThBH($ z+<43%xyMJ(ry>54VMxpkjyc0kpuQw^-ktubdP9<)KHyUVw&tO^HW`zr(u z{OqXiaexMCy4ggBHTI1KOHsL=)2Eh{7TXY#hSuG}9r4$2aDEByVMGBSCM@R`~?Lv;E>7bBU@P6HNB{S{@LM6xt`OB#At%1QfS zucvkX<~%!ou>`eDmHYv;lwL`Wkac^*ZP;eXJFkdhG8t5$D$gP6_q-w9?7xwETwtLs zaEDH4&RB5_-mMxj52+PS3gB_>JbfF3s?_?F^1D7OERxFG52XGlf5>zhj-x`Ph1&@~ z=T!{O0rjajQb3C%&(=t1bIle7VU1-q9a8BI<}T1Tn^aHsh%E(bXb?L(eNdoUY=Y4b)_K~c0Sq5yqkFk_L2WWzkixa+7E7RF1)z*J) z>_>Il(`$rheLvLf8kN85!E05I@m1+hD#Bb9ZhJ`X=R7WMctA+>TvpmLG)Tx`j%*&1 zs^05M`H@g(rm%EU2U1@xe&A_qQB#_OpGI3+ZSO7CzBNKUI6`b0fVMz(n{_y9N}dpm z6Cs*PwnC{JPw``cIT4xriHP>^CtG^ncwvL0*UkI?D2_{WZ`R)J5Y{1><1+b2K=yi% z0ql;0u9b!Z)}SqLWN`$9G0Apm&6e7T4->Bn{PwggA-Z>2pf~xLD$^~4?AE!cvSxR^ z$&1q3tjp~dS}QznSZ6sLKyo3}r>DE8P-$hejAyge?rZ06!>40P-@bLM80|_?cm~v>~^LmYMINMsVJQ~)piB$a1~S(uBqgBE zU+eX0DAB&^hO;hRfz+;zEf)y8cE?#Och_aF&)t-2%Le`8rp__a(mbvW%Q7w_XY5)z z+F1AFKGCSmo=qunKOcSOghhPfzhn3-wI{}qtl^V0PCi~QW(#@1?#0DAk6VsYIe}+4~+KYG1+1VQLl**Q$;Imq(&Gnatq35?= zNjXdawd1FEEne?cR*Q_EdM)UQ?=D~8${CXu9`oqO?pD{-*m^4&9;7Svuy!V&mWyQ9 z+)k!=7z_^bfQ9djWnL5+O+Sgn9@jV&nH^xr;oyf_n6usMP3gA4!E(f<=0@7T{)6%z zo-jtPC{z>CJj2_$ttpu&cw-=cc`A{ixj)b( z%)U5Eys9crQWD+L2#4M$mzjn+_U`rRf5aIWQ5)o-!NJJFLYJX2_&>2F0uMDy{HQz! zc+Z>zMqy!89$fSv4|ZAaIyBJQM#RJWMwk|xMhW_J=KzF~jIN-lQDR90474;5{aP)9 zu7(g2DI5&8g{B?8m>`M&$b3B)nZXJUxPyHYlTX1Z6N{i``_errG~x2lmZ&w;_-*uP zwTWAs7*pJBXXRI(U@@2P3p(QsO^`V1#$mad&ne9u>^|~vZ#_$fObzR$gYe)J-Nib8 z=EUUB1;@{$=iViCY@G3b>Y^_hR5kx;d^uQA3tQuB8swLB;7$?llv86{^8ZZx@6sDo zT6>4yb-|$ZdnJwA=~W?IC69`- zZ3bc^(4uKR(=CGBSl*Y>kq05lm;gEsZDZB_Zx@hV_-&f4c6OU zSF-5{HJ_vOQ&iMPdE3LBgGrLB6uo8nuK;sKNd-Ngx($97R9~OQ9)EC+O_$D=;ihPc z!!hJpyUyp4h8Q$@8-?BUNHWK|wHqqmd=Tbv1d*Ij046=w&v0rm)bd<}&Gx`M!qXz{ z>3wX|Z^vv%7dJLv{kNxgf69})2iFmiZ;Dh{{A?()bWDy6D^Rqr5iSFb-sIl<e( z0X*JNR}+nv@wW~Q4#HJyRV*z-iome`X@ll7AMX{tt#*!uX*hC( z!nz!yMdih=Hi_1A#&?RdanlL{L_#j-(@op$;-JvDJ_Xzjlaj$^E>$P zT@a{h1T}y=Klgg>LiuIDKJ#Chxd{b`(OC!~fFeFUY`1S7l3k&mosLL`4ya$^- zCDZ_pyQxQ~hgwbY%zRRjMBnxe-KSzoSF# z*|~YtZ)g+^m2GWcg~c>SzI~YULC}Kx;HFZkE0fskCPekK^%0pdm*gQlu<%9Frh24? z$AJ!ok>xBu1^aN7W6~+!0Nvb>rUSe50`A)Z2=zxdzVOWp0a3l>lO;}^OIhd?Sh%26 zK3#rTfKbEZAm1M|>QA_mFD8253Qc<_-W~3+SNmt-SI|W_Mt6Fw4DfYJvVudC<1xm@ zuG{;X>(bQ@fl~K|XXk)7Z4JM4OXl`Q-d7v9h^PFn-p-<1#s3-f8{`MOW+upyH)%zE zPHs(4q{u;2Mk^2gsP9i{ZE+U>Chm;AU1X>8;(nmadj%xDX_FrX@-X@bZhyt&+p&+q zTI;o|Dio;*-F)yM%zw2F$K0>k&32K~_u(2JXk^P|B7Jl?_rzc29KcOdn^3TDB8CaL-&AXoaJTW``}-YDtLoqM~Y9s%US^g zCJ)IBAw=qmyp1t)?u*zWii_uaC8aEeg1UZB2N^Faym5l-nZ7zPsw=S#hLSvCpY%ml`q2&max693$st{eP~>qPIH5- zlhGvuD6(GRhcZJk4=+S~xc#(blVqT-!Z&nt)7Pq^ULLJ)JNiG~(`-UEY?WBDms2=V zhVpZ@_0DJq#)P^T&#Fi~u~fHX<8;>-!q^XBaFyOfN#@E(Do)(=dUyW zO!c}0Unp^&aJ}P7n>U7EZjdbU9MtujC?|Vh?@B^M7fZYSG`h+zzU!F7088gn3tm#; zE(riis%R|Cs#^?2*$vZ#0SYOc8r75Nl zy9M#m;fEu^gK6<6*A33#n;VVlSH|GgEnRWaKc_4;r+8t_c%-5k=ZNZ}TatS_ghwEl zT2$)uCMYkrw?T7=&stnLk4W~*_C3;; zXMVbATb2Q*DIqD5)+`R4KA0pkVD~uXPlYsQa|s64DctZE^)M*k7JfJZ9e?!@- zbn6U{Mb0Cnx<#Lx6K1mgBz9D+JO73{_{5< zA%r_8v!tEaw+jT5FaMn@vI3-u;M&w&*tPeDv*czUNjCKhe{)wHx6DV1@@DWMN?y&s z_7C=SY1Jj&uVMnaKicmYa9ldkI~s9^`ADSMJyh66cvk;*;f_eN<;yZiu2vhX41}$a z!;ugFoA0=gMWB3YIeuqd~?Y2 zNGK|Ec4HA+3O!r%% ziq(Ac>R(h>vt{B}UN?8-S2z6={90q{Lt&#)!>#@0asw*L8O4dG7mHcNth+ zyJhnU(6jGFl%~aRYNOT5XaXE+V1*-8)hL4VjL?|Wvh_eUkT&{>0+K&?K0E&|sdta5 zy$wrGhV0SX%r_R4-k+3Z4{-%W_zlXIfft-Ha zsLD1@9dT{C&XflJm{n+BkW5k5&5!fj;HfnCYa}ixozMoIADA`vXJx7D(4#Gf#1pL6 zNbXwlD=3?n>OccDqw25O8PiMXn>P zsoKP%>KD0cbsiK{|5g5Bt3kLn?iOTeU;*kQ^d(Y+_i?_Fw^?IhciQ(UkY`*@URJ~A z;oXq7$sPTE5%NPJzDYba+AZHHV-xgjpsfIz`);gt!P$V+aZdQSGSotNgs<#=Njk&az0%{TJn#i4}{2~Jud$DUMsP)O_lsRUc=_-}_k*?BE<^n@$0 zCusfa>F$GVvX=cj1sVsspdvQf^zNIl-s>3IJ1hSFzUSVdJeJDH^ILl?Cns>h-_^JD zm8)*phVnP1ihbJ4PmM`RyWmW(e${_O-+#<`bWql~T-dY=v->wlKX8UK%n1NF0( z&_Z_nBPu*~zd4qF9$2)DVk;tG&5F)oI;=D5o?hEG=`Rc0<=LBXIr4#(evb6ky@<3y z&o2R$(l*SB4qKvhPK|gX)E{GWnPpCy?93u|)1eN3V*bZ@#pffJAPkFeo=kt6W8MRm5@isH+AJ&RuUk!O{&KEtr_k-M-#}FsvTvOCE1(@AnEhG5wZF z1CuxmX_W!d!976~CFOtfDHRprm!(wGBV0^ij3@hrVtWDC}E{kLD9z%+<$y6Gy-7lfOzAb zoI*!#pQyxk%GX*t6I#M&fx=WBGGi=9zS3Y0G(#e1V>6ofc3FREXV%q|_$Qy*)Z$L_ zYA!y+#P%a}rv0felRzk417?i45q$S2Su=^!Pz6smB1;z*VrEBv8RuTy*qCT2Xx8(r zsa6B^(BydN#GZAVYMekjz>PCIA9Q6uh{cRBuUI_i&u}ZySoelC>N@KMR4XxDUCL-3 zI<^uVtu=$08I>*!a0gU2BcfrQ^zof%bpB74yeB+@gG?%{hiBFo^@6yea|PlF?9-wT zEp`@PSlWT-H^FpsW%Jc1_Rc@HaMOv;(y96*K6i*M^PfR{veyonUbWZRXnXy^T;_01 zWd8b2Le-4DJo%zS z@y|Yu^8yU)AIY2O?Om;Ob@o0DB#<`c$aZjOW<3fRVLNIxL0t)Z)&zQj%7|}9;`h$W z7f4#}?y{&i&dl>_wksNNx#c!d=59Db_~T97lH6g}=g2uU%=2`ZuesjhihhtqAre27 zB07wp2H4!ed53Fd`KSEnOWbItXs}RT=k(y_Qj@^8bUu*Z%Fa1DQ&Ilm1qr3C7hOb9 z5k5@n+IpsmK%%YiY?ac3yVJr9`peb7o|oA;*(wa)UIk19vd63&?kWb}9)4eocjiqa%*dGpIsJ;07JsVB zvuF)G8!RK{kzIMI=xvn>9IpY&WcAWD{E4r)n>QNUPNef8fW#V#=J;ALhqO0|bqcrS zX!RV%aBds63-WO%r@l^ITt7_Jv1IA^fl2hlJc$ReIQdcrv}T-(wI)|CtprYTY{NoC zZ0lne81p=6X~3E!a9V;-Z<&i4g`h%D!EN=+*$7h@r zAlB_Lqv`!1p6i?xcX7S>Y`qsx9>{IOc&>#YPM0QcKhkn~Pk|RNYXq&)enmwjSvp+w z4#Zo7Mo~2iA7f_qFMrIl+AXoUM<4Odi!!h3PP>Ktq1a$PRAj*Alv%V#N2jGgiv{Be zCo2m&RVKp58K7;VRR@mHuW0U#B^7R!DOFW3K-Sf%wc_c-A`+watzEU)XQ<~e&os1u7AVWuHlYL*6DHY!X{(A2pe{du0Cg;oOho z)LS3AA~^qK5F#lAl;ojx9A5>kiTTee=^s9s{UtxsSwea#E%86wWE+sGyy9@)b^y1) z!;U$7s5=+p&Q(U>c6e-Wwti{Gb>KfD;}ck8)Gkw`x(S_uUK`H~osaDOYgRU)Wk_;d z1Do=c^3tUHzMe*nJ1>2lw{KaFIzi$Kq))>0y=Gbl6Kqo#v_bFmm$k_=J~yFmzj=q+ z@fHQnwkQXZ5SE#l&McN_?zvAhdup0b*cGlwGh<0_WL2!KHD` zm;GQap=7>YY~VTD{mL-x@eLLab*2wC>l?wep@Zcg7A`U2$FJnK8kLmljo8QZodL5# z#*>=^UsS)K--GIZ(r<|E=Q_sEp_aAM{$S{*26*Zss@kVD?iV@oaj*F9n?lPj)=zKU zw+TK8LIq~a3td*nWs26QVw+3=PsK_Z-EVSQgN@49EGl+0pVj=bt--jN97t4#F9f^ozq$?7H;7^sMzS=e;?)-E1`rx zhjn!pFLiz__W-^Z`?PAN>1O(8Sp^4Lvst;SXE7h&wCv}Cl!G`m3p%nx0gTr8&44cG z{nXCkZru=qS3>L^e$tg99iu^LLLTP4MDmVl^TY2)Uf+q|f@d@kklnKb1Hy5(!i_fb z_;^!+9w->6X?UZysVx>aU7y$4g73U|H|~}#*CFi%`3C2zE)IEXLM{({TjVwiJlPJkcC`6#3u-{Po47Y1 z!oj)L_WeQ=O1&IZGU6>K|3OdUc3+Q+m?Y@zUU@w`s{@tXK;xspVz z=~us5D{|SA@#^vZsCSv#S>$eh-t`yTM(*|Syyr>)|I?5cwQpQ6h+91+M!Jr{*m1T7 zoLdwD_(J*R3`4$=Gv$u_$L}2T$$T~y6-IU-un}MT}+BI=4{>KYK=W-nBF{S ziH1i+&$xm=b2E6@&HZWOvRRV^?#sByvcu@sms|hK(mqe6j%}Fni=n_@y6?4b_}c(h zm0PLpcCp+nAREZx><1vBnvc%%Tu}#+cWk|uiLv4j1zdcZ%)0CNd8qau5nuHES?iUd zGRY@Ek9KaOmdx=+OOdr#po>ZpZ6}}oqrz5aMJ4e+ZobCt0DIB4V@SxyJb87w#-@%` zZ5C~_O?lrx{zIW?(!mpahmV>(s2iuO_ap89ca^KzRpEvj_`NVjk!?p46DQ%c>6qpJ zR{mnZJdcnuHtbT{Cmf$P=;KsGP%rv!!Wyi^WI?;Z^NipO8Z-V8Z8}wL+ssWvB-`=lAwwJMU-mb!(EKOZt^PBhgo_w$ zN5{O)CvA44XoDdSIh9$q!57Z0T|*j@0-q%FqX6`2{U$m*9~@K2jM0Oplmz>OqM|w(upe$;L*7&fFO={AtU4*t z^{f&^^7V9dF_pI>==A~j7%=C;MX1-AJ_=XTe<~2zUM{qGM#vWF|IaR2JPf*Y%Zvi& zm9Jxe%Kk#0<3u=~jsIFxcv!=-`^fgIx58(D)%x>29%@f34r4FikH3(g%O@`q1zrIT z>Ssf(J5_Un-=GD}IH)Z3YOpbT;;OXb4aW2%r%0X8A4Ze=Gq#dRAu4FmZx<{!_f|ka zOEzO?5oA%~VE6slHL10pmxJ^7xA?&sF2dS6DCJ1*_=X^*!qM>xmqg~^)c(8W^6^M( z+Auoersyu{twJ>*!`;JPVz~=0nzg4aQE{a}1(vX^&u)#Ew(9zG^3{G_;sgdmS*x+9 zZ6Ixo>%pU#;7~!GW>uqxI`6hSbH{#&oJ85~-Ht;1Lu?RBfLYV?A?Ae1v_bj&?3T&M zR>{Ujyg)}+K2m6*$5!Zj$_p9s#$a@cwKjThiy_*LGfOYICd$#%wly)U{Hg0edJ>Nq z$NGd=V&{CvBVS$xYnTnJV)r9s+(`MM<2CoP9aa^guvB8|&i!M{HL?6^am6Fdtvyko zvFl+7Zy;lE@Yf8ZY_4Hl8G$~^j>U~IqceuSJQ6%T-8jB%Q*b;`l3}$%$G4>IDYWgq z;^K~e&)}a5j)mVL{OG24s88_BAB8R^N%z(me~tF+GDO|^`e!^Zs@`8oa0)}+#V=i! zg4`{dtWK&zwv(dprw6i6=Y@Bgy|x}pABp33lx0Ty*eIpyy6!8=su}B_`H{T_{WUv> zWJY}vJ-)D*r0c2Z%)C6IyO_Jwr(&(A_Rk>XXr^TDgEJrqqzmQUbsH>fh`Cj@&9wvg0KK}VrBD$_j~@$s{=-R)7Lw%J~`gpKG^o0 zY3_nEU~(41#Mck}{QTh=UEf4%#{0~yG>QW5UpX1c!ha}wr+NiFLbav7`D$0Nzi&nR z8!5Rx!Th~NQ&yy`A#9w`hS;I-B{ETvz0;$U?^10FA+?iXj;FV;{)`*pn4k-F?U%k#ByzwLvoAgEsoyFz3Jl&#a_>t4lUArG2da`XtHR*Xd?u z_~LXWc>B6TeIKvhjMc&wq{rJoQ6axYTd{2u1PjiJT^BB1wCp72+dfTEH>xR}ZeFBH zRfRv=GhaD;WE5=3eL{-F335ceh8sz>3;~&+q3N5dtcKFT0)|K9iTbeQK6I5e6SfO6 z>}&ezHh2SQF;YOi`;SQPWs=XD{ySsq7Xvvw5ksRdtE)7^hCjN0ze?2m-F<>If=)g% zb;%N&loOliF;#S|^6T^Cye!|@yVNU4crH~j=qnnw4<7;&7SB6a1+S(BOm^xr=aY5u29w7lLnqvvwTB}kmji(^v91?Nb{2_pzJgchTU@P6 zI)OaHkfcr-AI1EMQs@S_RKIUaU~X@>L#AT}6kC5wkB_oLEv#wys`#^LEOZ}JENye_ zSxuDZqf)WombK5minRr%wfrN>)W0{z@#oHQXeAU};eb#kW7|YP9~vf?^f!tViy_^f>|ukqgH3q-_WLpwl9mS(R@S0%QmClzo5#u& zi$nA!0YzgZ0-nz4Nkc#^617Yh-F=r?e$i9uQO;QhA>cZTmb67n7^J412#VG=91 zN+{zJl2~Yh7SM@`Mr{^i`>{Ehm^aCqdo?^Y5NX*J2as|BQKtYF7LvT(urW*0eUHU< zFlVU>cPziRt{WQXLfnQTGB?EJs&$=iD%MSKE}=G_8%Vy@43Zdr;@SvYp{Sx`QvSZt zL?q&`HJv-X<*ON1K3^t)mt6N1u1gDR(_d${s7cy62PF?WRwru&+i}rP-l?5X*f7q_ zKr>IiX`vcD;Nk9mZ@-IRiXrdvPh>cUSn zVdKcMI*2QQpIBvXN?LHh@+d@p&Y9|_(yRYG)4P(xkK_o#Hptftj>lN9%l;sT-FCYM zv)PF_je3?{TQ8N52TD-}x_Vl*MFGo$>yLfy$^-mOQe64J*E_Y`yrJrwe*J)lCSv(P zU0HT1QeV=T|LY;o8gun+HqPXV!-s>2b}666=A-(eM7f5F=e&C1Apws2274a@=A3KH z{YNymopB0VzDVN0Cfd;K%b=XE^R^#m$peRNo6HQ|c-X&wRtA9wd4#^Qndc-?0F22fUmCr z5mWIbOMrrh=eRX?8tn!nBwtJ@H}Gbo6+gGy10@$GhW#=v6I%92aA~hfj7C)5CY*KO zwu1Ay3)zY0GYFE>3bG4=_uY*WccyP0AdMdtKMQEQUZZ{$m3?M=Hs#e3D%jig@gGr~ z{K|DTCa)$SdlN)qzNF6CGLLZDP4suacv_qJz95%^Xt#ZAGYcsN3Hby?Q$|QaD8gMt z@`u~&Q?^A}%@np@Nle`fUxEGSLAR&hw`g*^I-)pNjb= zgV@rmHgrOc-LYD}40hc(ETO&rs;Klxxl)MqJPfzUdo65RFUk(7(uPn?kcALSS(#RB{hs+p!0w_8~J3n;mD2rHcGCU z`MdF4I(>NRgg5bfIIpvRM2R5qbBT=;8oPS~GA%=|pNE0GI(^;aJEdUII8I-U^Ok~C z*9XVPk~Hc-pO0i&)Nd#rwcFi^BHC?`a*rhld=1eQf^5P43)auYohJn?NmCi$cqWgt zP~|GiP1;m*80B5L)ew4EEbmPquV3S-dRx=i5Y0z!?)285ACQWxJqRn2B_J;8TL@9Q zFC@3TGP%CIKlcdwAV}`5$rgwvEK+`Noy?dd|1f0UQ^=12ZLQCP!VxN7haB9br zIh@<7%#HVI|7sCPp`#FYG>Z;OH3|g?WM%@Z-8x=)~MuONh`8I*FbkX z?13k0J;8e@I{(9V1g-L|j_56Sn8acMHkz%hYPs7(7PHwIgjK)Mz!q6y3+ZFwxXiAf z2NEk9?3>D5+RvsO`qiN|%gxhU!?w6yK}3hId*mMzq0)m*+rzWG%Btp*K{cgTSl6uzwy-!v zW|n@>P`v8NI&Z7HSmoAYdcv)Ug-o^ zmu1kr@pQX0ca(f}TV3b^P__;brDzfx5P?ZT8vq&ndY4C{H0S6oeq?Bv3GKw=@|M(e z$G6=+?3;wBqLnvgK3^z5p4`kC=fkWU^G$x z*(?F1{}B}&fv}_u*lA0KTS>pXe?%|i)^8t2+&WcYXpmQQ$gGr8y)ROFF&wmt&Vd!! z&VC?(Epf)_=d3F#(}|snuGdE={V zoZ+iaaGvA4ZxTGMbH8oJc|Ri5Ji*)N$ne-sLXK&O-j*_(i+NMrt*W=D9r4`HF|7u7 zKKO$05EC~MdhX&vYTDGL(fHUW|GslF(4R_-+NRS`ugPsMfWXSEAC+y+_eA$kG<59w zwF+17PO6hfmAsNEtp>I42;muCmUr@F<0^+j{mIr`R;`8&o}I<3#pJTueSYAjXO2AY z(9>V=$)~D`D_+@8&T2Y6fzS%g%H;ZgipEXHBXV*v)u9pyOHl!sqERTW7Q}oaW3rgI zHs?>Jerd;!3q1^i8OS&0SHhjDcz=lp21{vwMJ&p$a2t+nyHs6byDwCSvWmVL?I2>j+hMY$-iPD2M7iD?x7r=7anH_dht^>EihoS()gN7dieD;+mQnrT{uNGQ2hvE7F-!~>P?>uy@P+33q$RbN9-F5X zATM~!%A{912)IP(UmHB7hC_xUxSifgj4)n%TR}g_X=ks-6zn6mjslMtF6UDN@&^I@ zu!ic_y^jAyURXQ}`*WGnXgF%v_gi+45eM9&goC!?*Qv^;+C|HT8T#1iKf{-WbhRv3 zs6&?HS$+R1)gM}c1}78bOXDhme#WgS@*OiHu70kT;mjM))`A;X(90bmZF1d@#62yh z`%c?NTmk~W0rH#%Gss)N3P%s~Y&Dl@x83tEou1U!FSuz_)488{A^TTwT9KkiT$4L@ z;agPIT7bV{)0_}LFgV)6OZM=byZM4nwdmRF_eiC25w(*bq1Xw9#^vf70s>jVC!e~vUC?a8v zXaW3|Hlvbp+Fy7Dq00pc8aG9_pYq_oyDh>Ls=rfMqhiUsdOiFfZEb(d3)!`up&zUF z(!7vb4Y25E_FdF~vY3$_c+xB<5}fS7tKHgxSMNTI)A_^Zuz!?%;~_UAX2MApsL5F0 zoK+sO@z79lA?fKB{!z=&UE6@Sa(n01l;i=~%bM+`nW~*)d0kG1rxJUqWvxm2FuJh= z^SpMry~mP{uMqXK2Y2slZRe70Y$ri%T&AYmWjq=)D;~MFG;ci(NbnxH2ZI3c7n`!0 zBf45he*hTFd#IJ(v^G?^UuzKnw)2)OhkW_{vWQr{VhB>Uw@}=Q1>xfEXT3OawshD| z3GyG-hb4Z2-m)Py8*oY{nsK4i-G7Qj^!)seNDAowX7h(b*zVdWFR$eF%TVQBQ|Rqk z8NH}2ui1haE)-fJWKM>qQGM;|lJT?|#_t4uLp=!gh*Jsff< zvs{*JqV6@Dy6xXf)@0wnt91;iqh`%4)KJdTnqGaEo?z;y2YM>Ex$#ttqHQRpGO_1+LRS-&s;L6vZCBM5YbzHUj!SctvJQB^tj~GpSGtyoB7v zmXxhx8Qw-1{Pt$mAKQJZ##u4BI=sJM02&?TS@>s)>-GksC* z-^aJ(e$f`3+2MRq^+r>g=$)(MaA>peqF0b@yZ2@kp*C`lp@Bl8T`z{3>RhcH#gN%} zt|6*zw(3YPartNFe_$cp!MkSItXI%9YZ-XR%VoS7)7BX77KYgeVERkf2Gv zkzdC8T9B*FEe*O#MmGs+JY1Zzhyme2sJZs{~Pd|N0w=H&%Y6WchTBbk}2O+HYPo0z#>hh`?`O$AdVbgiJdGBrvb$HYdA zZqtNM>dcS2tUZ_`?DeMbeLtjU@rw13yVvj)1I1X>gnUS|@>`%eT_I@`>=@Z1JEHew zOXN*PE3k0^iC2pXZ#UTzoGn~mR%eXUa2G*KX0m@uIZ_$_tt>!fx7{b>4R2GXwZNuy zvN<(+f1MH*KH+Tx57<5Z8ExOTk^1MDl+&JgLTuoD4`PxED=`q~iCAUOX`bdwFTEie zlfJ{K5OdSNC-rwt9DP5CBkB`xriB?2^P(Ay98YHzc%(Z`&sGftPmBCK`~{k7TyTzjcRmf zIFv6ftgz4tX8BX6<166^3=ED3vJ$G~E6e2>BUg|6%{H+Tg`9_F`F#9~3QF__n-BJUDsb_evjPEDbdD9(g zcId4;=1}8eqUyt9^`D&Su=nT-5+JoYk7xLywaHdjY<5Xv5kZT*-_krAD1<(auj(4> zmQ(OhwM47MR9Y{);GealiRbf*OV=<9uFuJ+iO9eADEb^O#F{z^c+VMk8M3PJB{0fP zH%h7bmBfiL#4_Q$eX|gK0c5)+oFuET6G?)f$ z3E-VM@`*cqP}ilNq!GKO_SM3I>vl@~!P6F|3njq}^d5nCqn`?~Azmoil%RF>F-E-c zPt^Kg#pto}+3%uzU;pp*M1?OP0~81hb}afUfUBjwZ2Z-$@cCgt6j5s%b(mWjyd##@ z;eOSi2~e#IvVRnE{2Xfe4qmme0ODP~K5z^OyJqQnc;L#mY#x|Kh>f!35foZT4g7i~ zd$Y*NYRBm)yGdZL4Cj5y+f5!cAzlaDh29@_NEl9UCc)XY#Xmi_WWGpH?#w`UzA3tg=?okwWpKjeN@8Q`ifC%Ml z&xMfu+P@ymK(t&uD@~NiMu_BK0~g>idsKSV{6KFwc}su~K_!eQp12=^D59B|y)(ZWhn^n#X(0(_N|0 zoaM01U4CWsg|+zOyXa#@$IrkbbbiDIB|Emrcj(&G)X0wclP!zA;M2F*BLL=w7w|Xu zOi!K`QndfXve>VV5dnQPJt|YB(bvMyVQ9)h)+yOt8}NnP);@l0`$dY0e`f6BqV)M7 zVjwUeHnr6=A^ZRAAs~n3TOOT^!T5gZT4&i)LKxm2!80`Z`X5nPcI-ty);!4M_N#h#T2t%4EUFIbDL; z{%9kz?dl(q$+>Kih}BX`<*oAEt>>?m{3ok)Q~d*lQ%55j8XHLsvb)BZo6h+bPyf;Y z*`eY^v$$0a&eMiA&Z1FEl)daS^-UB1Z^@g(RnP#8oFa?RuG6T+yK8M?Lds=Txt~yY zre&Qk8=oWjbx`RXcC*5YheHZ~T)d9;Oj0KFZb@VKp@C;2)Ra|kCoYskV8bzBu%rtA2lr}1~*&sBHHRmOOf zQPA*k6EYrbt~rJ`E&mf0QOwcQ-x|QH9+(!o@z2o zCvfK<(SVM0? z2zS#T?_1rW<0J?mV|2`aQ;*hV<}m^G+c%dk=DIP;Oi~znEWpjPy`6U1x+S&$e5UV~ zzU?ZHeKf&w_!!xdmsIO-eGtSde^Jy^(Fb^R<*6|t$GJ^2xNx7NBm{x}M}(S^Co+MeJHtBPMH{oe(39gV) zOcLO!m;9RgM^8v|JJltAg)raAFcYr9c0&leVsc=$i#^sF`T{Qcz@xTW7r-%jUc&8s zf;0fEr;}00r^J3>=>$VxxA1t~Etc6NJv=d5m6lcrnw{1ldw6Yc$e8-#p_EDIMh5t6 zT&B${CBY^vaLWWWSW&0WVV4`3;oa>P-c{mJb(*+`{wecpi94d_`rU|?DZx?YtzLMM zUcY?McoR-+>Nyxzv~R}ucvbqfBr-c0&Hfefk^60J?|<>Ksp0@l zv6Tywm0;KhPy1z$%A>vbJL7>;77_k{SyB#nV%duqQV_-i54c!MyFT^PiMj3Yh4y>> z^5=N2Ird%KS9jky>G~z1A@yOzA)-^ao@iygsaqqORkL;Y>T~n*!<%;Mu<#$@7b-UF z0XIFD03!5Iw4y{n&vAq6t5ARm$KbSvp~v+G#~_51M09O(JFulhUDqY@+KQlPUf2~9 zp-b{mmzu>shp#!;RM$AZ&>B^YI=FWa92z~jZ`oVEB9VM&&)t0H%Yw6=W`T)^y_h3x zwoI<48ch{vlCou(-cn5iQxpy)!P@P&!Wuaw5p3`6? z-C0uKD#5U=J9p9$d}DUhIYocK(`*p=nKNlz1ya^dN`2t3U&-1>^}IO#{kHv0_UT3q z66XtOdXQ^fR)i&lcVsgNG&jTr~C1*?r;{0ZE~R@BfIuUv*jfQ!TO(RgVX0b$$@*&k1p9-IvrC) zdi+Y1SNM!wFa!E8%v95LQ{y6-3;TfRNznWFFz5=9`DGOA;}&M>C%k6k8(hdR_+XTP{|<^;rg_ky?9XUITF86u zT`peuDHubV9*vW$@Gt%H?4vc6?Ha_Tm&vZO=m&U%sY}A@0P7)xwvNq;pS2t|(jB$j zlX`fK%vt>FS4{@~BvxEZFZ-&pIyDGSz~wh7;S30y{+)!0wh~K?8a}FZjo%tkjGRL8 z%1`%g6!D9o2G#Y%5V`{Yv`#A^s5cdbJxkSrRap0Tv(lyGnK9)3Z|oR*o_k)Hvo<LgEzO!_lM z0rgtn!hL=GAU&JD++<{VTR56ak|!ybq&FUnhkBLhC@zMt}XOIeI_BR8bwT&mYRY^qg} z`9IV^@qyT)x!{`_T-+z2J3A`t-wvl7tF@hPUjM}~8|4+uNSRje;pU|6^q#Izfw|Z7 z%9L7>exFy~prs)&>NQs=11(=Y#B+0`iAJ9s&=mF<^> zP#`DKNjx1>&pP^bLoiGNocEObhPz2FYTW;Wf zM6TNXK}gsPfe&+*Hy;RO{|>vmnjLKXMNy11l4s*=UrWD=7PqSW3fKO8PA?njM3}YJ ztNDRYPF54LRGvZX2y)1$1cv*XIO*nS+FAyN!sTC_DRlX-;?`0BDS?JG9m1~FqMUJU zHA9yh>dV9xO3a&jh<`*L4oL-vM(4`+nWXO2U}JZn)ei6KhDYjHUIxVlT&pSR2?b}P zK}+0Qrs#I~Nu--lLzUe5oaUIb7bWkHr7ZV9{q?zygcfU7>YN+{aV>>hzdW;yzj_q3 z;R{$d-%g)3E+Y&U;MekT9KJlATbu*ih?^F2EfCAf2%rBgy3QYl<=no(LJ{kc*|e8g zSrv{{6KoUv$2QX>#(;lBqwQyyG+Zec_9NUa!@b1nAWVEd>Y6^ewvib?=V(hh%)j%f zJ+*8F#*O0G7`RLd6I%($*|g0ww4C+XNoC{O-euAJFXDdL>V}VvbxTb)BNHsgg12SJ zkU^VV9jTeN|$%IT+y^Be`)rwqTvDZM7 zmrLEK9)tdT>ZQphAtiu4>dCvZ%qdfIz00(S+Oo8qly3;<#tz(`pY$T*AU^^}=wT`#N;B z1V^Uz%EkWcPzkMf;pc~%$qy&F%VxeLrgd9C&*?QsLT~k;B*!AOU}iqWy?q!8QXazV z%Mtwne7d?NBEeOq7UtB|mAl1X4oNIbu~U}z13#q0P#&$`1KN<3&ACaAltk!uhAKg9 zSt9OM{;jh+_RwJYO(AnL(58-WTLBR$gj}JxeK4{T+L_EQr ze6)qzoJT05-sV3XLny=R2Wja35veWoGY_=g`8+1{UK)^?NZAZ=m_O0quFd#SM1^!_ zzcX6LHfjhi;`mhgG-Q5e2G>C2La(Q{eu6!S2)Is4xWpLk=^&0&;ykUN` zSM$YIcKt^6OPQ#R(2~V+;`-0UH$kvkXJ*$NXZJlT+ILoC&A82AyS1Oixq3PVNqlV* z!vNY4F`N4@v+W=A?&iC*_Sok>^P1Qhe3gU{?*4mcz*m{JMwA9|yRZ-pM$lHZC`NYg zLXqw@PnmPf-k7C-$Wzl`qag8mpevX*AI9wj2c&q~iMtp~a>@durK=pduP}#}zO~fA zH$GEiTS)0?Kz`r`^H49+y`On7C)jS2w{vQ6$5o&>b)}LH5wH~m_TS3}k9B8v<`ofQ zg{ywpv6lw;saUwMJaO>f z9evj4FIUgV-kDUEIXyeMUfl25K#;zx8V|F&+y|xXQ-w`*Q7Vd|c9*T%V{)Tk5Bb1U zjn%l5i&?!#sv(i=J zzRG8aALx~Ym*!kHxvcX*@vV%=8~R%jCu5GIHUx9t=uhPDGI*s6N9|s3-gChOgVVL^ zwY3F?>_9lOmQ|zV`}xrwh?YAuHi6sLr~JF`Bs=tsA9;531{n4bE6Dc+rTW2t(>U1A zhfuvcBt3Ymyv8SaEnz&GDTogPix2W+K*V_UovZ=DLpHrliZ;*Uz}o$^HEpGKLk-Kp zcrOP2w8(D2RgF`~s>;ybMfvR@SUphApEqf1p*Wi1eI>=I8eJe?2j8!BT^Ye9K9MQ) zSGw}q0K}k|61EB^E$o`#U~0K+SHTK7#7kMf`TSH&Z|I2BlD;Nc9lR0Cn@Z0bK|`lpLME21hQJ4w z?g3WLvRADN*?6P+A#~0I^uj@xE}x6W(>tdqUNVgkacJFeW1gUVx*9N5o537Uat<{l zEu2aSyenUSMzPm@@uwTLkN!NwpJ-v>u!&2IT>eT3#@J8eS)9F1 zOAEb!jaO9A`}?l|@}IMHmr_XA^1QeO{tXP{{>@3w2P%c1DaY8*o{v=n_3FV(3-7M} z3uQ7*eu+2wx+W*6rCysgANlE3T*BoNcQ~O4ibIp&L$dHUKRXGgyGV=wmqhegctVOc zcG~1-awqBHR6)6cK=p5DA@Ghn{4vO10IGoemo2DO2*xv3)-6#($c-EHBfR^7MC&?2 z6$^7li{HG;m`+yXZ4G?F%5Pq!P@s3~-|Kj-VKgZqs z_8?je`6eOqH{h(f|-VO4}F+Z7GA3+PE#oz5wgS4KW!k6x7#6NeRK{XHhXN7&?ykFrs66`c`r4j$L4;B z1n!q&FsgT-w|35M?kC*t)K@m-LhvtXA4NpRr^Eb4j`()fUoPg=&|aq|7>4leWHb!7 z*G(rO$TYdj^dqdtEjQ!SEp2DC-BV8AVJ#St&-rDc!r+cs_|V)s(?237VNrx*)CIYC zuZFKOUB{n61;1UE7nZkYDeE(U>h-%_07do9xN4iX?QP&qtJiN^ye?(DJNGgsnE;C$ zce)wxRsz91oeSTyoFCN+Ey<1?>(~kYvJZ^u9=^`LdOpu*&J-HM8r0=KRy4IxZT_wRJ z6LDY?o1pZv(H9aUCj&3VX3CbnJltdA&JS|RDrlk54SE~&eh(&FnnAYW=%*0tnU)s* z8{C3Vr+#_(nNn{syUa~o46LG5Y5ZK}9`wz|dAF334t-%fxJ9XBKPq=GVbytbkz{t! zKpx4+8a^(b0_w}22?#d-hDLJFJ-w4^;oNx?-FM&Ki&BmR-eHKbgh8hXq9c*X-b-(1 z?O%tP3*PWI{e4pPql&{Nx`{b5K!NwQW)|K>+Ai2V@c9VP#-)f_)vvPt?o^m4V#x1Raz==ziWvG^Q#G0(#i5TF2CL! zJFEFF%DhfLVH?#XmUOj?-MqqiAwAN9rs}AW2gv*|@_?s~N z?r1Uj;W23J<dYrwHwEV; z9Uk#3C^78zJJla%TDa{`6>L@DfB;RW#8%VFS`gKBpeJ z#*Iak*mPU#h^qj(Dc9^XV?uQ|NJn@)_iYRhgZO^b?2o(pmJJAJ=dV7E2lOmM&Q7ce z$n#^=e%rIhW6ZSp|m4ajt?>vYgpYVmJ{v1tgM zrZ7v(MOQ?38|qu$hl*8aV{`NV#7ya)_M!WZpW?@IbI-tm+psdTfPBsR#>8h9y0JWW z=ngzioPmpuBsU2ES`xDn|kWI{y-M}?)xZJ$Eo|TBFhrg^O z>?Np2GfcYYe*hmr;J)!&<8<0?nDIW3p-26l1KYMzLX1qVJwcGL`XH~kel~cENccj_-jhK)-D(4k>eOh z)1YT_fVt%Ic_h}J&YeHrxoErT{eP1)r%tU&s&I|l=)bS(#}=wOdt;MbU&Fl+>mDIj zE10a%%*U~Aia$T)UW2Xv$A1+3KWuIv!>f9McQV-A$14x`2s!+!PltXNm&2MPi|ctU zFK%44kw~RoK;S6{racWRb?MiCyOLwa;c*x^UbGx=#um@}-7BJU9!HUZ#(U@Ts>Ty?96O0nw<{!h0DTR0a`rxN znJrFAPlviK@DF1=(ea$aAdx<}tUK?9S8*{G_mNM|Hp-<4`qy)H;XO7@&en?ryy5Mc zqCVX!9}r(JhrB&Bqa~t`%Z$j|i#gzOdY=CPg;R^R#*nWz(u=+Oo;f~kjJEF@8CFa* zigVK=0QAOcxj6@%0W(kMx{@BR<@t3f7i(GZcw10lJ~WKi$(gLoG*0ak>x4>0Jf?AH2Zn9`-d5cHm@f# zC-~QxPvPT#c@5ZoOHcmHl33c%`CGL$RqDRP)lsK4uw7--RGK@Kg$IYwMZVOr!FKQe z0PC)AWge3-QJuD5*U0o6{{R;FTEgwEZf`9u?iZ|YIx7s0IM1bg+426zP1HPdrFe%y znmfouakbx&>gx~^suI}jLl4TU_`^WcZ2lriX{qWhGfG-DyKSmiV{lW^at1|hd@a%} zY_%^J>F;@`T-e>|g*=<75gJ$A%$pef+#HgB`qj(Gy{d)JtijS)IxiUqc9yHxL+J1L zNwg383s`^PQh$vV@HhM_J$wFsJU#yaf${$UjTPv9TA%Zt57n3VzT|i}h>!NSgYRP} zGF$DK40aqG``}lW5|L$d^7^srYtt>Qrikh`vTl>iwr~UV$Q%Lwdsma*ND&DnC<7a_ zf-B@Fd9`!&*gi(tW#q(zoP{{&^%V7&%VxnKXCPGwWemH+D=6!+v&L%7uA>T1I6GSv zlaEGr##hw{*M(PZMly4OoP$+lV=I*>m)p{r`b(#mqJv?`K2 zl6!Ob*7WH)$wn(yWmgdzaFpisNa8iCv306lOaLQs1L!!a4l=zq(vmU;ay>;kkYka~ zc(2kaK|%^Eq4-@|j-^LZTeoqcc8#p3=zCG?*l|j6ymTP?(jQ!Ot&E4SIpZhRth|4^ z4Z+5F?s%%ve8>7#%>LoJ5D5N6RmRpamW+aB+S%lSI1Fkd`@j(J+3T8`LC+lVnt_1t z*V?7%%8tVUWF=c1ccovMij$1=qC!{z+=1AdjCH}uVbJHLNv`6u6M>9g>k=55(8kdRP1tSH^d-M-1K|(~hFid5vpmk0O9Z;fXP{f;kP)_Ub5%TUSLnMOyE3 z6j7v4HLr-RIm95#08 zX0lA|<0|_Yjq8q1)4&-gkSpxphF`OlpTVDo`eb&dO+Met6W>dBbhfhUGdIYDq01_Q z$L%W8qKBLwARz^SmC?2Q8aPM5DZnoa>e|>M!-Q*qU^=`pM}tP7C3xAe8O+DE+Dh+|SI;%TnS!!~$Rx%B?rszoCkGX`;ctcO zajsk0rR1VENn|pJ#IdSENs-b;01`e`3fLz(1lN-~8oNCYv%+Q&g(TjVUcZ(8XB7v= zx%7)+Z*gnpDj$+aha`KeV2bAT4~c_RpEiKQaQR)>%K}e0QIf}+`U6Yw{{V#MFi!Tm zuZnC7$lq+URSF{xs;KBdZOmBx)4^YHSFHRu;md6<%TLwQO4Ehow35pe+aESEOGF|d zZb-`P8_)3q20^Y#P>f^EDOn!1JmFc!l^$t%Z`Y@lypJF755wE95#Cre^_-Duld8)M zcLc20nQU}kV_vz=4`Kj0uWj(J!+kfxaht0|TRTibuv;`ck~t1l0)f-ENIV|rHM^#G zUd9K#8k|)1gI3xqxioIv5Ppn_+h_-DaEKW10Gx^2{ zfb!!-KPyVbn|9Kq4ZU;6or$6CrOQcZx7UBr!WoTO-cy#3rr&q25>Aq@H=kC^}W{t7MSd-M*izT*LdVVWUFZcjUyRj(Ar0z!k48yz<>$BiT)5 zX$f_PNZf6iHz*Q<8=*PQMtDAyT3fEAFiEW0mRVLZWj``Tn~ZD#;B&a-)>zInyVUjP*yf#a@k%C(T+^D;^{=mpXS0G964^*F zvU#hIlc#(R^`Y@c#c*19N5xV|(Zr_4I50ouqq2|(s_o?FeJZ^vU9yK6EUg9l26Z z7$df7Sbk{#0DOUmWoF)|@I9;TIbTEhoylw$@kETPZvJ$80rLZHR{9?PmF0gFwSP9^ z*G@x)jCs;v_dF>4x%_L<=axHLcXG;*qLw(}Q3qa}0oQ?E5vuABt7=y_ZPsZEf#^Ga zfK{d3>cU5weBBXGgTXZAQzqEa3&`vOsOm}J0ZmbsKEGP@AAw#IvGJe8?JCPupX}On zZRX1Jw~$*$KZ;%mR_jGK#KR1GzW5%!J9n=#H~hM<>*v#BwzT6p zww9ee7K{EIlI^5At*m;OwS9G(cF`n?)%>_4+rX2WWD(pxt8%(=wqF*;w&PT|lHNfJ z$KPjTk7}u^YWin~CS59RKrN1{ZX~$5p81W;EI=D#Ok|Al$6j$<#mB{O4bLokRP$=F zX|^&#Z7=Qo!zJ4%Q6~U_o;j{3iK4V~*X7^0>DP14uaClEbgx!1^=W@!q2PbCUZZO! zt)-m=I%&||+_LUc7&tgQ9!48?Uf8cUvAK@)yqm;Qw*;$TXTKe@>0Zy`pBrg^6ud{N zYFcy_nm(^>YVi3t_dy`K4p<4JC2_a~V8HhRzJ$>J9{49v&@Cj7!@3rs9C1dbXlWUt!)0M}#f9$`lfN}OJ;r1WX%)zi`J@1gMi$badV{rsZ7?f(FU zS>Rv#6SSZF0blT}}8BLp{p*1TWD7V93Tb8jSA z3oGDbr#xc4S3|xxIvh{Dw(E3!WB7+qefn1i~#R*vU`fW|2)dnxF;e_J0tN#R-W$@T)iDL` zr6V+UXYZ^?IcM}FkO2DTzQxcy0b^(0Qz8LysyZCwug!=5kj z#g3sLm2%o!PGLWKJ<~A3_xUSa6&ZbE3fe3FAMj3$-n3(ap1$+4`|We*geT@W$vtV{ z4xMSSfK-g*wLUOOI2o_AN9D|6``l+I)YGD2$o1gnhD<0ez&$BdSvlH4Ao4{P4ur5r zjGW*D>5eLSB8{LS1Ghp-uOCiov}u+sNk3EiRr_uU1a<9<;Q3ai{>s4Gy00f>8a5cMhVVy&wTn+j-vw|4?G%zGl0Xn_o>6FOaY7^T+%7% zNpFTyy+6jGl}r+F4h=pw^5hvF-qk(SD=a{6%MSjvlhOGCDNZrZO!^v_ukKY-BaV5f z2__OwI3QK~3n_1|VzjqS(@w%PQN~Mf1!}JJ6tqXD{>h#gxbb)G58#_vEg`*Vuh!$r zx&HuEb^^n9Y-D%ivBqol-^3audKJaA@mt3hpJ;7uW3 zYvdo;%l2p0z8c)#YF;AKZpO7bu5Ij+Ii489D=M-#%E68^k_QJTjy}-PZfy0PT66|G zZA(?Ty)#EFj&&Yq{am^b1KQwSxOoMN5e#bG}&7iv|)hw4k>HV1bSW zVEB_<)I4KzHI|!we4ZYS=44q{WUU;M2UyCf+p;n~Lc@18&P(EC@jk6SlVFHEF{a$G zw1yx6xR{(Y?0TH^T=ZOLl1+E^HsZzwPr9S;A@#+080<|&?$XhJUvc-@ZUU7x8u*3H zC$f7lJ$m=)e&#D_*J*CKywrBH1u~n*F5LFRa5K;ARdo*qTF0ldTfn|?!6lC^jzIoZ z(xGdK43ChbnADJe6Iqw9aeX4NC1XLjmLKQPSI)^!PnWCyx*ugr6Dn`r(ITD4kFWJR zDJ(T>`6q{zlHGuK--D3D9E^JU)ui~Du1$Mw0^i=u31^97K@g9O5=c-wAAIK>tDEr* zX>Vo-Ska_xD-XOzI{O;Kw(*l(Tz_TT+RJk+Nt+(jjY<=Bqdvl6w*3Wuiypv82a2>79?>0TmOd{=vJ*3zNGk||Op z3^sDSZ6uuJaf4jFmBjH&ADmt|o0%d~42;K&4#TE%T9+E$m!xU3Ne!$EET1r*MH0CB z7T|N}J638JUh2Q1{{S*;LY$%OYC&1(o{6uS()hS(9wxB4yVXCkwNJFF+dbKc`6yp{ zh?X@amkow2ayF1MFXc! zhsFIgq8W+m7H@)@5!|gNs(SznS^}01;s-VEvrbuNQT0)?e58Xl;1I!5Vjt zE#4hb-^1P@y0bf{2pZz!8&o`?e5F*d1zEQNj!3TvgWkHA1IydGAd7&&=bUq1jOfN~O4|Mwzw7;W zJPaOZh{DlyQ*IJgx60Z*_tM^7I(#+zP5cIv;D3yxOE;G5!&;bmG~1FsWZFjfB;y;< zkXk{=W0T#o;B-cyHBt{zr4-?=1LpQ!-3q ziDAKXBXjxz^*ntm#Ex-;$I`mr7Wmdb5b3t|_V7FbWb-8qbDl6Te>&uN$A52H+ADWr z@U-O!d)-GV#%t}**q6heCh#wVW${gyh7(zXSGtYL&l(XV5fTOo1g=SLN2sreSe$JG z2hzQ7LH(e9B6vSVvD0+F8ERHqeXK$#E#qYi8jiqYrA1nDsI*D?{s*mx#M8r1nrn2| z-@o8~uU!0i(zK5cYPy!CZ>mSAwbZfcwwLy?tkAaA1VfC1idcNd9V^ScS@EaDvl(K2 zRdi{LE96gW7+J0($I8z5$tNV^v9FiD2YgG`z9`!3num#XJB>?O(`1TBrn!?od~SA_ z!uqdJKpba1E4lcWt+*oQ?)vsaoq$SrDx!`N0*)8jzD~9lt|J*7Eaa^1kCxP7OwS4X33pepTuCv{)rD^#LM@0Q2NGo0{F z1zz!!kB94}Sa@T@hfVP;QJ22fE@zVMPVcxQTx=&C?-(5898^`nQH5DTle|`m?SDo6 zXnIiK9Ix3%SelcQdb>WpmOg~gzi1sA(_Xf_hs%QEIHZaQ?%*46!Lx-U9a*psL(N{% z{vcYLfpunPvj#ZTY>0T8O^x#8A?G;DayUOq_-n+M-YT9^s9x$fx~1W7-ifW-0CqSd zk@#1){?EQUe-y_0Hm3x(cb1W>Z*9OxgySPU`5bhtWtXVI)J<7$_xc|*op9uG`d?VU zRGU!QN$Qr`HS*KTPRG6f0K-jqpZJwH0k_^Wm14JQ6A##mQql#FDl%Klib zn@b4A?z3z|Ead?D;ZNnweYIJ8 zRZ4HFzu?cwp$9^}dTH#M`VhlOKONS(XrT4gvoFV!trI;HJ9Yo$)urnpV;Ni)S^%H~n>! z1MtEh&bX-m02&ta{ZCQ*)Mnpk{)fk@jB+~mse<`q%x5I_Wuw8Th@g(vTGj-4q` zlp`kxH282+fzN+RWT~`d^y}+dS=#8%_jVXbIqEAPLulwg!yqsi2iv_7 zU^xfB98|3kKQ~ZukULa6wn_&>p0zhMTB1NZbR9-bUD#it&Okn#)h7hIa&elo424lo z_fJn+nJc17b3_BMT!m%aGy2!sKe12jt!Luvy+6jDG}NTgqJ5L-_AhQ6+{9$^%*-+w zLCzx}bs@PJ&&Tj3y6W~u;xln&_L%(0k-2!wfXXq?BO7E?2f++9W zGjo44z^=fUt|OSR`B_lpAZE)J;0)Jasp^_l)S5MpvmEwOK=MKM6|hLerJ@fC$0Ct{ zfC2*W*(JE?<+|7H52opwBsLmhyVrFX;zYRBK^F1M%KMqXU`sQPl)li|cZ=-1yk}Vg}`9!Q|C*Z5fae2rb{`&OWuRr&}z=TN_Bn`mxEc zB6#}gJ4G!m*Zu+SQpj*rrm9YD+pIkQep;_eF5G(^R0G8t%3hC}6GEWLA5wGzv7#%ts*9oq8T-f-{uWqGli6md# zMLGE+>7AJBPr3H5GBqVr_?jPEMieCc>~>Lak|4{%^~0QT^r|eD(i*0d(ji)EbToQfpTNf=Fhhz#@j!DK3r##jUiDdWMgqIR-g3SmrK5`^(%D>E? zrD-f2@iS3`Zv4&Tm{Gydl}hsEgjLvB_F)Z35ZT+$9Mam_Mq?xbG6QzcY}UQ!hOWk;Wp!t$OJQ|uEU~<>oEa_Vc4;Fc?(PMH z1CP8p;+{1*LoK-*W+yB|@`#|Ge=>hct*`jz!$Gi;dx=&s2Jf75N$jJ!{{R~8p_Imp zPMSP?Zxq+X`_h_-OcsIvf12R=#n*ef0T+aGWhofdwDF9D7 z^aHo1c>_MRvEgqLsn+1L(zN?%tVbNKWaFtWdH(?Gn)YLtMiG4e^Xt)iA1yrkwC5O8 ze2Ml~fAA5)Xuq-F!sw)qOD~3NIw%Y!)-UI9eLhmdKTKDm>0h(=!;Lb~ES?JRtVxUn zO)54y_brlZslM?Q!o#pi5lP1J%N|YzV}_nhh7anF!6kPO~#$AUo#Sh-$b`Zxe^nF z1UU+$InI8S=~}PB&kX3=Y}dDT9}}%3wk&Qw(c##Y5mfxgd3+2U0#6**-d;5Qk!}1@ z@lQ_iZ-OsuJRRZ*ZvN4F*C_r?)R-7tFHOe;`;7H9<-fMa#Yr{q+0xN8jYdSC<6dnS zS&A8YO9uY{HUpkQ??B$;ZhF_3TCAwWCbil5Y?Jgpj)ZCA8?q2+{*UA&U8$?gi_g?c(_vg+3GUR%oQlPEiLfmFc8a}_HH7s=-qlediymS)aXyM`wiGLiv|_3kiv>}yJ}i&u(0I#ZN-vgV)R`<+5%xxKxx zf>J*7POiXq;2&!Bi+>bd>s}oG!PYOW^&1kg!ev`1zR;+r3$@hnM?iYxityhH_!q^J z-brr08}P@8G}Y!i=V^5JZ)1{FpQU$R8nM0bZlmT!@b2cy?Hymv(=Vf$LoY@dVaUnB z_pc76O0ahPj`a#PmFFA!r@!2Ezwmn;_0&+?j04D=DCj z_{z@3S`#P<9pWPb2@im-MstSz>*SqsKeK9*#ezJ!SxTQwnus|uj zDAwkMNGE^4@7(>9_+9%%d_DMx+RfdEjC9i_%7zyDg9|B;Z6j$(2n3Fq1mxG|=k4+1 zEicBu9cQ`Gt_9_dy^MCEdxF993u+E(g>avdRJz zoFD05OtwBQR=CDvv|}84b)&0rxC6BTiszo#02*SPKU@!L1YeIKFgOI~AJ&|uLmmbj zu0KkN93q2)4u1A{p(NddfLo>qdgxC?j2asxFA2)2V8fBtqvU`=z&sKv(v~OXBaT2} z#a5Outa5g?IT_A>!n2fZsxB`2GCl_fkUJVi92^`2Op(q8R|D6zCh$9fo_f|YyV%_! z$c&tACq0R()2`V&oSrjQ(b7&gWc2Gyyj{qw6b+{Y)?C(lnn!XsKRCfTsjRm7yBH9z z3X|#YRl{ZTfuHluNDkxFeNPp3&>8680Q4(;cjGsM?eDGUxYMn*81HYA6yCzt1LsQE z^a~j$+P?7kf#ZEkS<>`t8;PA?UN7PeNUH5w+F2MvxbCW>IR5jK*jMMz!>xL4561dU z^cRm}W^-#S$iZ2v z{QC--Ti82ySM>h?hq2X{*<)hm+fQHX^g7!}qJ{*|LUGft9V^p39eZhErZkKd!ey|h z)1IB{!>@cx1*VqwR}+Y!h;C;m01Q_tWv_U@#|Y`Aq}pzVPCW0qEXsJ#Vx#r14!xtN zbM!hhb9P78I$w)yHQ8EgD~RWSND#W75zkQE`<}j)+eN6^X@U_f;@VbW5|-dG_a}j# z)$-?sd>1Z-Y@!(E)7i)b!Zs4v;FFRZ_pe>>{{V=e`!no%>}z=q!kE&1xKcjr2OR@` zhPbLz=Sth1ai`I}4)0s>6rLNfd!0rTb8K__$dH$V-GcI0+;d!px#IZr+XlOz{w5ks zstCD{l7!@MUVDFbxw&;sL&0~WL%))3LrNgY0ck@_6Ry>7;@UeCoOG@SQn-^<)#kF$ zTpKIKW_ToG0v}zyo3Hh)Aw%ywX>wCf@A9|k{{REn{5P({dcJGA`H^rY2R>q-y4-Xm zbseiznF(!$BaDz(0hR~b{5@-p)30pw-8S8BLYt5f0#4oAMhl;>sq0(vYOqJ98_A#S z+H$VuobX(FCV4+v^eEvcIVizhpEH@}bZMzpo8^h4e6cz-lg=Z7Fl1)HE$yFQDT`Ntz3-0A-(a%{8rX6v=$0>#}Y45*qZOO{{RicpxJJ^F`-eD zB)mqs>M`8?EAOy)8dwP4dd;7NX8FD+I;qJ`^3h+`zJHMkSuW91MkxV5GZBVw_E2>{ zU&^-a^ro{g%O348N6JpB1egP|{yq4ti%nYdQk9N@Vs0cqD{5DSBy0ZedwnWD_(wk1 zJd$gg?)PE`m2J3zU5@YKf2%xY9z}R7`nxZ^+UBM1xpjZJQ~e@%oQVKCQe)6DJ@R(o zbR5?!{eX4b?>6#woq-$5FYe(P`-)Fm|cJ|s{jRll$my$rNNE@(J_9NVM&0*{I z0wVtaWs@x$DJvX@YsLWqRCf064;=`qr&2ClkkjR3p1m5XKGv&G(cHlJhpsKIp9Q7A z$glgj(MJfQwlV%sHD}?pe0M95sAP#`nNH}IH$roetQ?FVehqI{Hl&nHu+rwN=Pm4YcNbC{pphYV0RI3FU;e!& zZY5R|WdXq|_#fxBMAu6bs;JwOlb$p6_VxNy{&V?$ZXTx6*F*TO%x$LzyoH5)z^V6r?cK6a1XDVEM>>=sT>rO;Vvf+{^$vjBe1Y?kW zkLz9@Ck^d&>c6k+{LiPr;@%!s==WdOU+Zh5@SZk8?#@Xa!0LVez3b`^*{{YoUMGDk z!|t)%>eg~%+9_rceX<;L9_HX29CQB9rFK8I=j?eOgc^Sycq2`9(qwYlo|kHwTT*#5 zMh7A@+-0Xd6_p!RgVXxc`u_kXey-bm zHMo_cY5o&xcQHf<+}3sho=*x$#!2WarnT^8l%_5J015R=G6n*h{{S@!{{X%#@=g3x zuBkcKwJ=ESsY%b}TRL{J<0aEX!Z#4-vw}9>#DKlt@$T?@B`F|E` z?c~+DpY`)UWIwPW{{W#&!youJKjTGyH2t>k{(kO%@FBm(ihkN%zcG7P{LlLNpLqN} z@Ur;2U1v{3^Azd#TMzp}1}c8J0=%bJoF(?3c8I~{Rb#mDFgg8AeKGqb>EiR^V~JOC z$n6PILB{BxBEDkyi(@{A;*C#Ak&3pRe{pUjZZ?4-$LWgsocT2>bMB9=;rf^Mw7XgU zfA9|^@s^Jpc+5p6=xwfMKwFG}PBTg3e}_7khi#*~NksOJc8AA9=to-9_?H2Wdpq>X z@q$3$5CI>{^{=6RAp9=X{2QitKH}%e)U^Fi?DzJ!R+(gyDHA_1BaXa-TrjCWV;RKs zWlj#fp(kecJ~y~x1ET=44%z-*)tw>v_h93>&3#F)d|q7(xR^dF!I>b=ui1(V`O*Lvs@Y8D_{M`=s{IKc#pIQk<^c&(TzA;i+;(6|~(B)FV$M zVH7Ah56S`9^Uq%Oa$8$Dqqw$~*bwQw#0mMf_Z_p-p8QpJnj0(gETG$4NTsAnakYBj zgWCtV`qn&MHZW&S|i?Fe(!S)q^g{=Gk7X*O?x~+b-SUuMl3M|WA4Php8lusucXTGA6lO@m%6wA z03+bIn}~n2sPe{FsPtZ5f7es6@c#gS^m{!*<5<-1ZnYLAB0+Y;%Tg3?D4hb9&t5hlM`ZFuK-VwF`~ECA^LMwfccuw!US| zTVjPGw?bEJM;w1j&DL(##l(U)mBIN!9OE6U&voiewN5`f>-YZvm5*Iu=+cUnd3r93 z<*vS^i=6{dzD==Cu)w?s)L;%e5Am*ZSMcTTkpz;;iy|*B!M78i>-?*7*ImE9DAxLG zGGin&U=ICyRk#~jpBv4xf=&~!UOLwBuU3<^oP92F*1_TN7jRNkY?|#+go;~q!xz_xfI~ZiUw2RJZQTDt=aujD6!Q^1|2D@ouBUSQ6e9tPr z3Uq0@l9t6^80q)^An{e6pC!SH)t#rEAR;)>U=6rGF(+|39FiLVX1cu|+RI3@g2oNW zV9k<;=9QT8Prh-_zA;=y!%3=ZGhH!w#5Tz=l{nZN=FU%GK|a+kjpEB~dKmR9c>_&t zGRHbZaH`oGTo3NB83(6P+PY-E%jj@L^2X_Jx#<^z;^tEog_^k_JIO4VSornn?e+Rs zL7-?Bws0)hQmw_@haq>8BPaW#*PgY@!9SG|G5-LhLo2L_7(BN;;Cpo=y)xfgy1BZ# zymdZW{EN4$0m#k5F8wwXOCKhYc^K! zyl?~~*8>L?#6jZMzPtMr@yh}j%UinuH-LHKl(0$g%gTVJQh1O50E$1Qa>oe%+dJo& zr~EW@(CZRh&#{VyJd?uUeLX$RYd!U>NECtQ;}~8}amFix@dt`*JQrp5i}!Hn{Z*_B z=1+U!JMxk$5DKFljC2R52EMSc(rnL% zpodM0-qyzEBN(=e=8^z#cQFSfw$)wixl7yIcbb`Se5>A1DL3G8z~{#GEJ? z?&iJP@AgLVlnc2mBA9hPT=BOay{j7Q_G|H+Ntm=7+p&Uw(H1$e`8|AVt1jP)KTBDE z_n+M($jaO8$qENvT>5=$xzPRud_nOIvd^dZ4_vr`@wRWWNQiUD!!`k?ufy3iy+Rmu zIZl}S&gi5b8qVrzYwK;@B-q-#nu93&s7Ez4*;VzRX?2iOZG*wHhwMBt{IN$b#*}Jjl*MuUPJq3cwPK6@!Q18s8%bvBEF2O z_jSX5qP@5FZfNapJSQw`h~HR10UV5yqxsbz_$YROAo1ppsj3{@X_#U^h@2Pes$~LuosCQ-KG37c3(61Zb0`axvvu}mGtvR(`K+%=JJ1&U#a!~0Exe5Zx48r#kWvtvdf_? zsIvK1>K;ApNXS#rSLAQT?MfX>;@674%{yFLTi;1#Zz})`#|bfp$G*~k8vVcVo~{1? z2(tLMSQrMwL%6#K{ix%Shw24>1GKMlOwtn4NO!qCNj#s_n)k49kF{+t>Hh%3A0vvz zR;xlZ=PRu(@?Y>qV20^aLi=|E(Z|bCupeICX^coG*1f~W_=|YT{{T8^$j2W}DTw>V za&y#*m?s&@7#I}Ho|}qt1`a?SF-ma6=b-KDK~3P`5sGP#lg}Z#BvG{rLzU$%z%%T@)ZD1fvIb4jM z!_?#YSJ8eB_!FXdd1HUF8@rMGQYnzPudw_&R>$nc;TO@q9@$;YtsK`(*D6Bi0ghKZ zbs!4%n>%}rLPLez5OcXl)9#)LuaCx6oa#8=M1H-J;BfeSG%HFgovYoPU6+MzpmlqF zKgp8-mT#9}{4-t7ouEJ2(n2@Hs!57fEE^xi$ET?2T6WemTZw$J8q1OY04&aMdy$NF z;wDW6er2pk3f0+ zy+`<0sY({y@GI1EV|+{FCFrO80*g-fXq-A#L@@JEOYX&^85vK z+fw%YqVPz|1p}e%E0>qV7WP^OB4U!WG-r{+gN*)M)~<`HeU)tHXqm)-;~Ww|@Azi9 zszOyAqIc1&PJ|Ss_So)Y(^kgNfHp?Ja8&YYn6g)xt-YXkVS>%muTxn%-;4#UF%fFg zO)QHPP_9*3kJGRJ0Is{Mb&6OcWkilppfFtj06O#PLaq55vONklXOi8vY}nd>@Y`Oht|7r)ZtDyO8)?v$BU~{q`7&yegg;}L3-h3w7E`psKSlQ$o22ZuSM~%fm&@Q_TxltuOuvskC~K_ zjDzd#(!53u8(GrXZDO>N>L^YKgNYX%nGf`?49gcf3J!(V{{W_k)$qPmhsS$pV0-Qh@rOBberjP^B9V4j3fz+fY=0X7(FrX>s-d6tHW>NiwSfKq|@~w zA-9m7!q)N)xkZ*T0R*>G*yk10X#P5~g4u1Z?ajQ~G3CyM93OntGG18T>K;_~vB=EB za4W`h{J;9u#Vq2y;NaT3>*jqNI5RF)<60_8G2J(G*XQ_~z8(0jeWXY<+ly6L)zxHy zjwFcW4d~q+dB?x8uI6tMO&o>gP}V>MQ5$VyGo0jepGxwrcfk5J!z*sMf_P8vSjgFp zyA?V0=C57rw;GO=l1cQ&&cjPHL53yUh4Kwv|Ha>&SC}S-?kz^R_VtlkH_A-Og8SLn3ggC z$8ZGW8Rr=3OEks2ENu^R^-mW7wo`6W4h{}^uRicTwrs3+j4W|H zvVup8N4aZT z&1T77bO?Nlg1@_Tc+UiI4n{ihiswEy{8iWfFpUZ*7GDh8X>l=<9X{cRo^!{TNdtg5 z0OuU@&3b2zJVx5Lg%xk6YlN`B`#p(lnIb}kq)eZ@pK~3>d9iC^TdFR5FBtx{^EuS< z7+h6cJvqKc?{1pw`u<1KaJ~l#m}T@am1(bO8^uc6w6yu@roLyJ+Fp3yPTDPeS*Yyn zB|CxqYeLh-e-f+%G#cf!rGX8)00{@EBzo6mEbZO0kvkL6?Z6c?SjV?+!p9lMO5nrb za~x0b;NQy2?`PCj{?Eg|-c+}vf08_N#dqE&)+I;0x3x>PK&7owRZ8cMJ$W^NkF4x? zO}@~0$Y1m6UqIUUe$Mhu*C>eIk|{YD_M=enK9w2?!zy{7bgN|kLp9wzhaU*@NkzWe z-|<%bPKr6+4cZZ$(n{CT-**21h0hD}{7wG=J=gyL9iqLb`wLJ0`+wgD{3x$K`ztd4 z0H0C&*ZH20_Rb6bf+zRL`j6m6%$8%q{(MF)jA5)pq=cInOe$banzYRVp$sDC6J{7)2 z+&~%fn}9p;Yw)#mg#a7?EAF2kf5Ae0JK~QH_>aSt9!wDYrRJHod<${%68tp$buiBP+Fk&zJxj)S*xO(Ao^=f5%t| zZoJiKPTr^g0M}N8hdiJpie^%}dJQp^KOtfG)OmFsbB|h-N~&-==9A3~rvF z8DBqlBzjb%Jz2TybDNUg@m1F$;Jpt`dy|g9)vHt*ipb;l# zVbCAeskHJ$j2Ri2o!MsPf$z^8b6+Po^GUPy*v&!;E1{tRkRQxu18G%|WRduKcg0a% zL@;n&0)h$^ZM=@y?0;IRJ?W0dLU*RwHZI)fcVYbN7g*MW5IZgvnKQXZC9**JP@rcj zjJ@J5dMj9?ZS3V_%Mg0t_x}Jr>%_cg;^}W5SOXQAHyr061Ju>87>26dY*A!uJ-ZT zM`ln2F@WWI4p)#rGx^tzYb`#EUtYO_Z?U?4lT(Rf-qw?^3o8!04hDTP4?|w9sa=cP z2pUX?64_;!Jx<|}qw8N*)8=QxPEm1+Pfor?&k1hTHCZmCiHkr~LWc)o>yh>U01EUQ zOP?veV0_L&3UklU{cC{mJk4=uEQtX5+i_qBUOEH%epT2T!4wNDxKhV%_id~Cn)7PK zMYG$c`IKU`w#1$!vRk5LMK0uJls8f7k6vqz)x0$fxdap}Kh}5re*ix!=&rT9ZLD5Y zEEJKpVYrTRM?CfBsaxH7@l6;!!f}I+oZ|<-t#Z?p;_nA^dUYv6P*JR!et*`-GY+36 znJ)~E(RCfT^~Gmv{t|6YN%cK7)M{#&cmTkZj)42)jQ$ndn^|FS1Tiu=`O6YRXQ9C9 z^rH64##onPT*EPC3oK-);j@Bz?a#ML*Ak)#P);?&L#Lcg~ z*0bsM_bjYdNTg612;hT}kVivM=>8tEmf?fj>bhPD{p2!lRrcg?2OVp(@fBT#UlV^H z2az8N0wN+HF%+Z`>1K-3(lL5UNQp2)nt>qQ-AIGP1nHD6>FyZa8#Q2?&pm&@y>_qN z-S-pkn!1rq*hpKS`K&#NmYcXg9r@)?HYqaUAHmF3>GP@yimVcoHyeiK-J*hO51rW0 zwutqG`$%|4NN7&a{D$jgLyjNYE4b#1JFq^1l9(<3Et)lz)g> zaaMO@5DipI#b2&7_}Ji{Xjn=Ahm0gT&~K41T-jX+6TSMHf?=bkzSa)F?}>x6tiU}= z@dgYZ}!o zFYKSRFFUG5=7c_CwG|p{=hTXKi6^-p_IR1`tW~KzKW;|i)hvXCDHfrvd{~y5IST`X zjQQ%5{C8A3pXk#k#5XeMsGx?9zQ`B>YP>CbQ}Lf+S=H5MRQ)f7&_ASuuxgGepAwz> zr!p@Rl;z!5{RV7c*7FpsGRYwFw@U0wh4Z$K`o~9@6cHw%%`mE{h~IBF9~Z`~@YoMw zpE)UiijDTK>LrvWAQTzjy`lZiYihKrSu_1oQ89f(>@EQ6|JZ1Vuy@s?|5)RsVKU`z zMDu--S|qBlLzZ8?8=fx2g@h zYt&EhZ`sz&Asno)lez>&g|NJoB&X&5vkIAwXNb?6CRC4qC>1a-Hn7~r={_5KR`sCH z*~EarZ57grgYyP~v&>7zzmRVLFS-d=Wgxf5%lqf^}|gX3I2$x@Pc9ZfBEcRa<&PFkL@x z{w>6o3ouv(JEIUdQf3wa;iJTi8-h=BFbViTv3~?txZTQ_3ROH@@#Z=cs#gkFZmuqk z7P^sZ99}-$yHq5t;z(mza|LmpS7?y#KQW`7I5}q5OFrIak5asPLq~?Ws#Jad`&Pb* z=0)Q37<2eQ>C61|n`0*KspN)4=bgAaR~FFd5p)Yg=R{9jypS&@5(~FwPC>SsS`ZW@ zT<3{~W`%*I;Gq7eCTJ1|Mdx|*X>`Y_#FHV5iDLDQyVuu1wU zC5@42X~F0d_oK+_H7_qONR0fgVvtvdph;aE#m_FnG;tUK%0{R{R?nX1(U!S zb$K_&fZvR337O{U9(#R$w(rVYV0**j->rLL=|m3w^&o_wM30HG0*SN*qEL@pGcYjR z;Lj&>@5|u_Yzgu|3WF6jw8nJI^oZy;Z%ALmgDk_TNX%U3O9U_IYqE{wy(m&k@1t?^ zAtVdwdo|I1a1A?o>790$nS`;5fsg*pyf#IO7XCj44YK{cXIH_$+dE;WE`Nd#bn6#4 z)Ql~!*gi&51*ER^nPtXHWqw6S;u6~k8HntWtJFq^uFut;_pVDa&r*QT2{AX2DM2|a z!REkri4kX|QOA-yEr)85(|0$S#U$28`v{FQ&hqt2pCuYYK-Df9?*+`g+@)@=)iIe# z3$m!&vN=CGyq?IWJxjFgzA>*C#m@DtOu4CY^BcCR$Eryl9! zk?;zN3GadQ=}yHqIf@lY@7q}-PYZ9j^D+MO_xsoWdwauPZq*%*)Ld#u(UjuD+Ed%A zJo>Uq#7*2g;b*UObG377zRXCSaZYtjUD_^XtXm&(Y^;7y(OQJkq9{YQq3k;vZ5G?o zzOu?1+=`z!ze+=v?-ZC7BdO>?a#*gXoeLodQ;(rcrD^q*=6Ei+p0G;kZ^^%YW+;N3^_4GCf zoKH-^h+vEG-VoKjLh=2hY51R|+pgE`&Xu8fN*+W7r(M;vM$HxRI10iF4ooNK+U6gMfhPyVr~8 zU)9g?r`5=+y&jMG9|qrq-C9x$Nooi8B`2ZWj_zIid4>}8eYSZDg*V_kfNSH*|#&bo)B}j z-4MaqdoB8?AR*Dk-{Zh&SXzwz*#n+CiciZ#*P25ae~H{ibZQy(fV=T;0eU;2_r&YJ z^l=GP!c3nQUFiYqNoMg=TuTaB@lvDEk%>_8;OoSP_w`L;idC@JjhMiV=EVjM{A?2> zpgZ<6%e_%^V&Ah|d;J+^p~){3@?m@tOV`7}+M(qWrTrbmZ;5hDAboN3hIT>+DWx{a z*&gxR_gF!^Ed6wxm!wKqVn4TTUE8&TPOTMHNA-5_7|uONAPF^R7hAIYW4g_Ka?7!M z+x3J2Qz?NRxX1__*ndfqmNQa{Y3^?7Z3%dJ^7I`M&VWG?8NQk>tIOv7Mtajlx6;*7 zU^+`6E}>W6=Ucbv@g-RP(mjT6r1(<5-owXDW<{_{k?~`Q=HFGE9gg@{T{3z~$^8{9 zTX7l7bGEvc{F^xh*?+!ACx6)-+ET4f^bi(<5V=uZ$9zyVR;qt_N&m-ja&^xvJ>5x1 z@>J^*=CpLW8evA4eW2D96p$jP6)NLxjYj0SHea*;Rc96(A#FDo2bUn~eV|2)%WQE~ zXFk8)o?~5NG|Z;aeLd}Wawt~F&3oJzRXVJ7rWvF`XBP-5dX0q_+6?)#`C#*->QAOM zi&Iv=U|G|ibxDI&5;BA|ae0Hk6`EhUbgkBif`h0#K-{j6+6O9?@ zlNgaGIAi3zj=20&Ay$1yWWgV#@`k#%%)h*=q?ZzDd`8uO{OM%(r$OKnv;6yLMb-z3 zpQk4sTZ0Kms_07fX#X-eDW61how>d_Tsca_kBec^pwv8okOtddy_y);8QvVa^s^q% zSx_zB6E&xyrFFko`dAhFUJ*?*>tXR)jdZG|`aZ&%VJFcYyv*GB3lGA0ZuC}^I3#by zvXM4CXJZmLRx~@ee8@Q> z!b}@=ZMdMsGjM^JfQBxRVA=fc&wMsjOuifun&KZ+aDirAJ<%Xb=4;GzDDZj+!|@E3 zR7kZI7b>4ksMdvKV*Kz>$|aBF?t!hs;l%N{MV2pgIC&V0f5=uxW&4I&Rqbs0J7RsC zj=M0tN2R>Fg-qEodUjM}!M*Cb*DjO$r=u0D87`#4kkDsVluj`E>#7*-0ob5;D+c$r zc-~At&JHR5JoRTMVRj~UXo)ENrSJ^_Nr{BfQ|Y7uiOXWHehFlonnJfvaonLAL4@Wt zgV+~`WzqWAHiDpaIu1+~j+?H4jAfM6i2-Y0JT6Uy@Ce=(FBcvtdgQM!Ct5`LwgD9m zsgjOre&Ld-2gL3jtNGgB3g8Dn;mWa4WQ1I@;iEZQ>N`ai9fs^o2@PgA%)yioAuh!= zhHMBp28kn#W+p$!y?bqMY_U&^ne)mfDfAV&JgFfjJImV=7+_1^EYo{olk+xkh;6l| zybZdo+ZcE?mw0cs(n&)dtFPBH;NP!EKKfww6^+-;Cn}n(H=h~3Es909RwPg@U+-zl z{OnP2#);#2hV5=a`mH^Hxa*O}2$PJ`BVOwhA?6@2i+Yvo#f^~OyT9)UJUat@B|%vf zDXyFJb+<=pD+||&K6uHY6B3K-k)iPQ%gOR6oL-u};+L61NRK#=?6B7qhPb)SGd~d$ z(7fV0hR$G>-4POxs#Kj_wz$?qca5iJ^xxcQAG0zig5C$3)o}G@dYaeBn!C6$Z4x11 zCrX~oiP@=puO-BLY~JvanpqM>d&A7WuUXKvKtAMe6%xX-36O}HhAd`&$#Y`RD<+K! zFOKgHmJwr0Srl@GEmCS-FdFgjQJj|4bsG9{+pVwvuO??NHv&658{y zqmQH3+`|IeeySK&GwiLJ+EHp-&*gGA1Y>H<0x}n*oM|R^QQ_xFbP~X_Skv^bE@T}( z$nqj@wYeE`a@fBvF+|_-DIX-NHc#f_-;M-6D3y^cA^`u~V%O1(LCE zJae+7J|z!0Xx4(C*0|St|yy_D{E!J)2c!0pVTh zCgV`D{S@n!Wzd>${@U#`Z>z^Wk&{#@FG7fzi1kq4H@|v)Z*7Wxy&5l}U3}u__HuEN zK}NLqaa~<=^phln-c>ONP6Y>9`+%eN8D_Fv~yvv3Utc zq1UKae+z&;QB$CBe_60go1&sbk{5H9AR?$B?tBs^Oa%lJSbj~|NgW4rh6Uz zAg!6U6r6eY`rZpI(<^_hY5X(Ryp^OjdVBmI`Ztnyy*+nzgQk z70F+I74OzE{X_Z7y}fo`(b9b_1)*8-QrCY3bCesARcSBPzgsX6CcsL${s3oPV2>}P z*aTB4qp(euL;0dbfP|ew7S)}>(prC=7v_R4%U=G4 zE8D2Tgg5+LS;%k6$-)~MT%A5H-I|iE2oBPPRIFy-w0C2+`|$UdH_GM{O@JI{O(~aZ z`WI1U4kEz&B? zGt@r)$B+tl=j9ceBKjtC8~7d|M_?sTL!I#$)!yXw)r!KK62l)UbPqy)d%J!KZfO)g zviIYtc%aCO5c6nT29N&5T1)~F+EIR!dQ^?xQb8GazdpE+m{<+Mb5x`FgZYeB#2wZ8 zJJR+038LrrpzJ<&xOBIeZ?dcjsxu#H(|rfPAE!1<^IVLl!7DI)@32~mZ8zl_UlWprB zTiE}qSEl_qqqsc9Wme;`5G7F!{&h69iCzd2$Ga_guwE+ND#Y*f>a6Zc7B3iyBWsfB zH*7AyRZ>dtII-N2-UN1-369~}Fp&2sP>AEC&V&eE(3l!XYrkAFSf_&|mxeaHqS7*e zy)Nvjs^X*XXQw0W-3_b_dne)PYJ)0#UwooWkTjf&O6@Q34%w6dX#|=F9~%JX`_<50 zggtL#*aKQ`wO{tqZ_1Ad48F^Ac z?y`sX*A-VpdiL@K@BO$Ngp|6^=ssEj?roE(IaLThvmR~!SVsquN*jH1l0H#MYf8}w z*|y^x#0(>A$6V8d`DEXz9yBbDBxYUt8eN&Ve=1@}5m-jUBV0(gkvzt}CtfVKg?d{d&(#(1P=|G}VFGwyIR8 z=AloKuli)ZycTVY&iz9|Kf+11$=sq{O)RcY-e+e)Uz4yGeX*PK0MA(;l*U_2&AZ^|!Wf61 z*^x#q`!++eHp9iJCL^cRN$vjb=Igs!7E_;dtgm+Scpr)KguXD&Fr?i~V@#5UxH}-} z4+G-w%;9-6LoN^_AR?^7tSo4`WIT!wvQdt+a>I!ZS=Zk5nu5ASQg$sY!0c-f+D zHu_%B*oZNt!R2;9Xb(4jGs}l;4_&B_sZ2Ua`%oLX&7-6|S3H$41adJcdvHF=w7>qw zk#)Fxo4WM4W1iG28@ER(QP3xSk)L~Fnp}m9h#S2qC?v{uc}+jcI7T4p#M$?_fz4ln z<5y*LUuS$`wCcAX5AQ`XuUr&x4Hm^I(D2BGx6F-_y{60(7-a$znia3#K5UXnef30E z`z(7W=fLE@zWGJvY`3k&UT|9APsJAZN1&?qKR~CX88F!?a ziJjNEU*yZ|pPMiLHEw-a+m*w$L^KvXo#C=h)5JYt^m!CzeV2026xIwC7+|Ge`>>5r zmTB%TDEY+7=t}c5Z-;}e8<3hj@r((@3eH44E%^LQcZYF$^qZt@#71-+K4zzgja~Lw zlriAM)a=I|tl29?D=x=qqjqR^f}f>r@>BfC{u6S>ai;QeNh-t1?g9Op6dkTLn~86w z|M^zPmN^#4zlzYv?s+=JQ`o!45Es=r@Mq_&+=2XP;#`$mk-U4EK9Rg^X`@XOTvHsj zLdkth=XSrBAl=*vHt8JQHSznf?K!5t8}dk|w@O;!ZNL9rZYjb&s64Okv&ReK`!fdN z$zeAlg&4#;F55g~mH1V4Qu$Bi47}!`a8y^l@cne^X!+B(y%(}}N)it$=E89jxOA{hNt>W;RH2<3Q*l)J z^Zzy;+w?9|K7jTuz!+sEtGYM<>c4+J&`X(nVpiyG&0K0ZUggoTDR|oNYacS} zBUZU2SC-ghqug12YzP^u9CTT**ZlQ|HHme-SyI~# zU%B8aCwr^tC_45-c+icIEDu%fN}^poBgU%roy( zcQer|O_A*cS)&mk0*KHOwCs4?fMi86LiVKVN;HpG=pMe&sb>X`{PrE{r%HuTZs2cg?TaQ>awtXTWu4>RU}bO_BP z8TDO-Gv4EvYrWj|dJC8~Zqn^dTpAQ~iCOMw=KII{m`KZ+SOS6kZM&7oo zG?|Ee3O6m$e_5H87G&}ns;W%oPNV;&`+>ejgs{T2Ybj*lI$`_IPQ7@A{FFZ7nZSb< z?6jG$8=C@I++2=bnEbFXRG769ar@B690lowhDzpq&#Usa=)4-2!A+-&oj5GKB1~pH zHTXuTvGM1a=iFKiXoU}x z=I18sg|hghc^`L7o?F_^*ykOx!i6nF(c7q<8v6?bOLb^}f=R#J;NU$uSS`sZqJa@d zSpMpKGe!8yx}D+ekKGM)-U7v1F$V|E!r3L~PdL(#b%c)~BuBJbDR4$p=j*y7&L?c0Kid&HI;$a0XMSbS4KQpBLM(veKu;mrM0*(dD zlsAlt3hh(A_T|;--ZI5&DTPn0~t+PQeyd^aoav3+2 zt-aI51rS|;p4({$G4svI$@55=WuZ%WY+jrLg=mx|?P|(IvPaF2cxgKloDCF`&~Nw? z?FwMDn~9=R_fFoAR>_n|jH-})?Dkieyd95yJuDvxX!8qqxuUzmOej3_qlXm0q^~H6 zidzXdG(KyuQGN5g(Tcpl?sYiJC`dA&``dn*AFU9sV)B~o^cPy3C^xj7gtpDi5{dJT zQTAr)Bvex;npX}El4WwTWp^TsZ52M@&a<^IuT`n9A*vR+h1sHc6EAuA}NaZ33J6;nIWgZcICT>Yw=3*QEoV#>ajuX8h*tS>`m#SRH0g zZZCfDJNL#*pKq(SH^y~$o+=@U&8f2}P(L(o``O#2z;q0wI)zh0jmD%?Dy9jhwhT8G zs-MJal^Jnryn3Hsc?M_-q8#V3Z{lg5+duU4kGz@9TwGaFg)1ibCU7kFIOoXorPnf-CZuHhX-j zM$Pg?Mle4|I_)7I?BP1tcg#sq4oqRXUnd+{`OyB+bHh5V4U^{0y5XvGBrL$n+PuN) zWDr}y98@+sk6z*P0+NNf7IyWIRi!@$0{-Nt?!m$a$SjS4NHiTxPq>WCSCQ;VQ3ayX2w9YaCg1G* z%e?6MB{xf6cLEP_*2o!?)lw#oZyrQ>yTvnoh$q{V zN-8|<3*Xcva8+%VZS8+{pt7?D|NcaL5M$jJr|zr_sd4f;b;5v*1`W!k#`R(V-Awct^nD&Y>xaW)AaPvA|3iwJTM3U5J zWd;m18?2KC3*4ks#cV0@z)x=R7!>IDM^FXth_n|k=KqN2B7Nj(;)-x^^uGZuqMoFo zXg+L~N~*O9U93(N)L`Be1qkFQqgr?}IZfGlkyF^|vHfv48V&Zy4f}R0cpF32R71v{ zVwJ%vVdrdQMaQPpRY`y_o^E?GZ=57r$ISPMq9-jPl*a&+siPKwVfc8n=r3P=X3K9yPI!vM=8he|J&NG@Uk#etc;&?7I_~x<%*XurIEf1`zC-0V*B&o6`vVcYbR4 zX8k_`T6v#!;H3wSd+@I14EXd(_yxSK3@!-}>p(pCN*%o7)ev_0AVe(X&H|TM7Xz&) zePg!HblAy}(a$ov0h22ZCJhrjH~fvkZizwYsDhq)2*=Nyzl<}B>zjQ25)6Qp!Iu)3 z>T5qHd%4BJg@f&D3B|eIc8p?DdD%EInnZ-{;%aJ|7F1j63UJN@S0DMjS+* z;p{6=R`v525VA}`;L}3rp679-9c_0QA}u?vXi!y&CHm@8J=y1b3awmn#>yaYbuxY5 zOn#pq3{q>%TD6TclQdd#^2WLAw(NDUg}af* zm)CSeE3p^!j1*HLakHmCEYRvCg%sD~j5>q^eJcAcTIU?@qJqfxz==u{K&A8isVorH{wDarHF*-}m8FLz_TANiIVQQx~8S+(l|X{j~M z{346==R&_l#~QjsV>S70%uN^A#;={Z`$I6sg&$2kC_z%a#tGdkVFUxyZS)lpDx+RwI;`AAK=#gN#?A3XK6 zZ>XF$_uVpte31TdK4MRD=qW*=kt@5pL$eRRAFm|MQ^xw>xY1+{UJdSSvzF@W%%&O< zYaPGx;g3w_5QyRq6S2OgL;F0L_@b@xavMG8tiT2#8)cIJU{dFga-M|#G0Fu|Es@PkEUj2HG~aYROAw(wi-i_>f?t5al8p{S9alO(J! zQwNl#--K~QW(d3Aa%M)mD>{{H9GErczuoGelhC}6Z2eM*q_cdm_UInL#a@pt&p=sC zX!4x|hic>EZ!e3D=%$xSy<&A8&h6Hs^%b`mx(46jHCjN9hH&~*f<4!N5K8% zQ?^`YPkmQ6-HJoCUzEL2XGZ6t6ti*dTT)} zLa)HB+#--`YWhTyFU+)nXfx8%S29!27J#$-cD78J7kND_--BSLV1w_qkbeaA=Kl!Z z0*)UMEl|ALi<_*O5adaa*kF!L)fC^nvAwX@BKw=0(#jn<6ug6;@Gd4u*!MN+0bGo^ zNS3EVvGato>bcsp$H+_}qMVVkq0@{mlmuilhb5<(RbM+v48aX_9nZfMhK5hKW9fx` zfll^*@t-|5`Hx7tdMD;pXdNu`hK6Q*(LU#HWjtTgYP6RBrf7v75dJtoej3vy$d0rZ zw6wNKtLEmyQ+dE`tiG*NGv?GV#&lNu4c_u&2^qXiR1WyD^!#Yqo&;men{U+JD^mXP zM3i+#?f7BCh1$`sKxT&)TV#KiwLR-XJ;&@04Vnt0m#cuWIhl>Q#<0c=<^iiat^5Wl zwM&=G>&*ZRk|smNUi;W zmqRN2yCOT2k1~7>e5!hLEO;XUUjwA>#kIpw_1bV{k|?(!|DQy!NC_`U_!p|zW_Ydr zmD;!fn0Pc*lNxh^NFVJyFkgW#Am%J0RU~kn@b5F>f-l_&USIpiT3qYEy6no^PeB-# zs<|orEdFkL|Bbe(*}xG7MUJ0lGMwdDJb_5ST&$mcK7eTVWs4;t&qRQ-b6Qc;5qo76 z!%FwaC1)@eD>BLaTz=(;y7)3@AG#FQd3nqH`69e4dD^S(mKY}ytYWn{J zUp7FeKM&h?j!*Fa2;dhbg+p(L{t*zux2-SA713ZU8J_TDhWCMYtb>lf5SAq~W}t7M z_)FG^>Lb1Ad!wbBlpO(}D7SwEboj?6SkdY8`S{N5QMu{Eji%r6o<0+sC6BOw9xyGk zEqL8mEOh35uLL^bvy-k7xJT257X z>^RZmc-m1t^=U2-#k=tPJoBFu84Ek#W7{(fuU|+)v8IH&kRf3~X&Wtc(c6A%sY_oLifbsvM)}f6QWYhd`zWwd zX}2ux^UEbldNp!Cj^zI<0L1tC#FoR_I?f!pn=>SU>2v1rl9rlMaH78{7Pd9W7#Cw< zn4&-Xu&YVcg`s3X?v|G81Yx-NW{sKV9fv zqav%!jf=L1)41^fkAmFgAL&hfTULe5c@^;?C6_UG)_`}hH9ejmB-gIaE4bLgSLT^N z>BjyT3}}u~x8s+jiDtjea|zNou~^CBCTl&^c~X4$te@aN#*NI&`Q@wBz;B9gjNV6F zCeUARodoy&dK~|*>LFdw=YV(^W^7GEN{D%GM>-P~evSw>2M0@vB4;;`Z&`2XlWQ!)<}Zaj ze~MXxCJ@)m_EmFoS&JF65qhpNkAu?m-Spk)kcFlZDy{MNpGW2o1hbMyJHc+kCwT0i ziCG?dMio@pvwRX1WZZ&%^W{E(daen7-lvqlxw(0ICLyhX?9+d1<4+WM*9>e_2AtWn zQPWSr&uE;SiiFp)arTRb>@s}MeLy!o$;Bu+kL&SBoLRH$(OXY8^`=sh7d zU?<^c0wDs2N?QZ+{ErHI=-xoofikWg36X2ISj-O4p~vnTvP=0vN3mf(@+mT&|JS|B zhz{we(c~xg53X^?d(w>A{%(o-{nt}8AhPb2%bwXY(F&x&J@@wlJKUi#!$1I8I(lJw zYn`|j+mUMm#FgRudL}XP_%`{;(NjH8!{T}Ubw#JWeRm6RQ{&|d2#7+sDH+EAviS@LtP9RR0;bi`1B`^y#d{}YXS_DB5z zJZRhZZc}8u0G;&t-Ba+>*pN8y7Bv>W!2BbKo$>ze#rgjT9ih2rNlVR4BU^q}bMS%k zq2@;Et*EzorJGdY+c`a66@PBuk|o)o^N6)>I}Wm^>1PnCB(9Aaqf#o>F-tKA2E2D~ z)BqbfosnJeFQ5%M6OC<725#TE4>A0{u}Sdt-^TuHmm|ZsnhkLilUKVC^2<27Yh0De zP5JSI?Ul8=gSeCrQaJJ#DT7x#(6EdV+r>3_$aV73CRpO7x-Qz8T-NrJ&Ak_=ut?BE zi3m3IwxzLJfjT`zlq;2+Wv$t3JE((_PH=>ZK;(&(>30zJF=y%5PPZ@#JCk6?)+)Ptn(PA%!wM>fbmNR#v z!JAZIB+h^X3?emKu=HF!;R_FQoQ zMsoYt7p%{D+ndm=CGSfnYod3%U1xM)3gag!4&I$_@W38y7Bz$%W7}b(2)baeKcvmeW zzV^z^)*uvo2^@khPXRQM6|A^XR9<)(R-vYi_>2RDW(4+J0LU*{=KGHTRE-CZg!4!o z+Jev`eapajJNxnU1TQ0^akIzt7%~b2-3GO4U1kDxleNT46)kypcl8)3{nkJjBuEfG zD})_>4B3pE2aP+rSS#Ejcia2*gL5X3xJhi(V?7;AN~sWr%|mbJCIG*N|5W{AKj;7d z(rx7Eria@FPt1j;uWdc}EBNXkL1#FpalRFbdi09zAAx6kg=c+u`=&Vj0BAJ0IV+{1 zr+Dj%q<;kTH*`RoCYzYk*$zBo#+#&H#V4dESo(hiEW&{FH43|%*U~bCVLz7@b|Wdl z!edLlL5TCb@atU%v<#$?A6w^mrFdROjs=|nYdOxckW;)(F^W_&rtg{*c-E$voCA59 nJWLwMiag;2bk$yHPzAVH!Ve<;e;XynA@lDZYsuTO{+s_FlvPle literal 0 HcmV?d00001 diff --git a/doc/webserver/team/05david_t.jpg b/doc/webserver/team/05david_t.jpg new file mode 100644 index 0000000000000000000000000000000000000000..c04aa55f51618b926e49db64a99a12fd3df820b7 GIT binary patch literal 3950 zcmbW2XHXMdm&X$lxDbl5jbfie{ zy%#|`gc<@wKp=sDp)bDg&hE^9+TH&-_k6kM-1-0J&YgQceZB;MsH>`}0)RjO0C*9A z^I3oj07OOgCocrPNNPH2YA~3ZftHqr?h?bLON`fRzrQ4bTPw1p!p7KoBeNyb~aB z;gcHpF9H5jK&lImG_-W|42%~IRS*Cb5CozEgZ{X_==Q$Y2Y^|r*{!Vi z$KQU@nRM{GWo?{KMu-Rrb7y~g1}GQzWgekx!XnpiNJ`z2mXVcHxp!X`^*~KsM_2Eu zzJZ~Uh2={tYa82FF0O8G-=W<-0s@0D!6BhxF|l#+35lPQlD}kS=j7()7ZjFPR902j z)YjFvcXW1j_w@GlkB*H`OioSDU~$X%mDM%E&-D$`?jCvn;5X&)=noeV0Qxu9Mg2F} z|KMW1;GzP9L15ZHTtKRK7YoD+roMWchE4e~?Ta_;f`9wbaomm0ENi2OOFSWRnmdm$ zKoOESA<`eTf06y~!2JJTWd8;B-&|P0B@po9@<6NrCBVLoo7H5q;QCRZ8lw8_UatcK z+vj+d@EX}AvT&Z%uX=E8buGY2_!VhOw#prgUE8>Z)$us2HT{$)q>M<{B9DozP*#oaVcHylH53 zIj`(S!s<9KLHbH!Tkjl=%u;&Ql+U=2=tQF!QJ^c4hrPdkYlS}7cG3DAVBjE*Fwhk~ zHn3{j3O^{t_`W;`fNam8#Dt3F42bQo*c40!(&;dZz5}4feR(H+-Yye29zQG5t}?6l z*lvEqn?wvgC?eK$)kUPT&i(W#u;7{A@YG9d?b9`L(vJNdKdQ_~YJg?ie*05NGSAZ`oqUBAcE5QPnT5wSzOCA0Y)@;@AY25rN%csCHr|h3X+tu#fO-`e} zZOC9@;a6_wfV?r|{nLz&MP9T-n_B+K{U4R0eUBe$}?>Wg@x+cx6e-9Sxa#QM z)DTffUdy4&%ZaqmCq1vIigTXh*s}x;XiCS>g3T z)M3m(nZAP(+ICY0LJdZC8{uhn&v^7<>rfbk=4vqO^%dM-irje4m2&_Lc?}Kk@EH7N zY8Ro{oB}n1DU?A)K%FTM26}7xP;glQ4)%DPN3Le|>uWW$^9WS2VrwVKbRIw5TU(nt{CY-WOK&NRInN_U#(^Ze1m_ zk9nAE6!NnxGJr40v*qb(l!P@i=u7w8QKQ6Jjf<|#wD9~$)2~S#XqNmgM#C_ z4Qb}gJ}P&s|L);D=p|{U@Qq+Jrn6EXSln)S-?sPLNz2rsin4`22ZYpTo3a-di*1!k zez<2-3guL4Oqx+aUB@yn0l81KXqvxK9ut>4Iz7C@v1fG%kD$?=;5F=&3K)M`zI6kA zly2A4IhLP>WB&;w9tLR|_V>#f!*@g+q4z}nQTI3c1O0|%Tlbe!r)pK@EwM$9QwCns zz&M5ZTxN^Cf^yLxw7QEkZ-s0XOZM{9K8?m4BJHOa=q`b-$Xq#~{akX>h%!ao!+js* zhfFlS+8ZqA-Mg7R{90iS!#qOM5gnUO*PlA6-Qm)ad~~4TL7re3il1o6czarBXi(VS zYROh6+XjP?x}=0f`TEtVQrXPCKtIu&rrZWzI>ed~SNC78J0VD(UGd&M!OD7r6%oD% zI*H)ZuAx==y5V9+n;IkgYX4*l%4q*NKzjIXx;G_UqLX$Nr(``$}CTq7B3^T%RjI3r98b9y&i=RT zOLN&@+6RiB`hDjBPA??^4DuSKM%7;h!Q=4Nq=u(H@;uuMjM271I0%Ip?BfNd=)>(bE-Z zWSD32ei$DWns+U2gsikBU;GoA!FtAzuE4G3V&jW{2Nyev1#aZ7(NDUMcia%>jmCU$ zYL9Hv8dm~0YLqV*Dbt$_qLy!>DVdv!0{Q%YSKA4)gi5DzhDC>%uQ=vOJ>}cCI_#kkX(f1qbjtLwn0;AT} zfS?h(Tna4Cc0JwdaaSGkrdAdW-ZYjk?2u*j?nriYF{~-L$eEla+IFjq*6xW^%IRb>)D(w;*FgS${v+ zT*w)WsDaDuY~0)n(547nJmZ<*<>#hs4mm%hn8bTSGbga9UAQ~n3oI)JC-M|QMc0iV z8jE`2$ajJwU2C%TwO=k+s~k>DNmju?lvvHf-O_;}?yJgy5ak?)<~>QC31#_Xd*F8!o%&k;_7 zmh$H~O(lmdJQR1hJdpH~S*1)kM#FMtzqI~Lo|2+XQ7-k8Cr!q_t`C|D7Mom@)@}_6>>uZH?^3>TE z788OnAM5c~fLf!H_8Of=aXdarwnF>AvJaiw>#SP)PG}^ObEBG2v`#0R>pRoOxUPw+ zc|znq_d_G+)`JA3S!+@#zh!_@d*)k0o$!yTuO?Z6umnPce@EdyUh|n7S<(8ymxv0J zyhUe-T22|sHk!WI8*TJZZ$Ysu?g9SuWjKR79(h)W%ix$p6HF2an)M0Kc%RrW*QTx- z6QyDAKrPOiG_q2=rCW^04+}89EEH#)WvskaUHGcbIE#^Et3YG~5sw;?+_LI7tV|*p zVt1ju%hpPF_Js+W!Lq$QKJh*8wGaBy%?xRZW zvp#(PPfmECU;GWOn>Avotfo}28!+G?hEH=A=Rxwm&VcA=I#IMKQMG?^_AaBaR2 zwWNG%M=0Yy;tt(ij2)UHBhLXharM&%E?SFEjZCon=K%P~Il#_db!e{*f;N$Nn(}b{ zsyG-_u?l_C;4=U1IMVy;UgWZHO}at0K%=V2%swqm^9so-)~mWcJ)=-XQZ8f^Z&Bz0I7lcdLun%677&yVUwHX@O__ zS7pT8q0J{_vHIV_{uwh=2m%+%g-6=WASHap6Vv6##K=laM$*A#nJ)%2+H~`Am%!S2 zbnoBvteZdv#=?)M9C2DyRdX6{u9@Z12t_AF17EG7<}eP$#+V0(w)nFgwT2m`#+4#+ zU5Q_OYb5ny(xP9KqtQXc^-4Z#l_)LgjnGQ72Px{LVWWOIHaYv3Pm1o~>b-CJw)y}^ z2R)K%%eg@G-=L1MJJt>?d@btBLw_-+2{`0r`|7k{_R#vBr;po^z9Y}cQNg}Y2QR)? zXRrp$Ugv;Re;=&e_)A_47u7YF*x!DNEJnw%?PqX`lyI=?A!1xo!&Cm)Oq{&=lhpw( z|F*s!j0j(W(1T%--7T^TsN8iEX!`e)t-IZ7FXoSvvag275UvJEJft)UU|#OwNs6oC zwf!gsLG5YspxdreOYtLPX#rL5Ga;ONysX-FRE3c^HvNMw`jY9k_wrh90ASD0p$f1Ms z?SV$|$@MYQ|jh&KJy^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/06member.jpg b/doc/webserver/team/06member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/07member.jpg b/doc/webserver/team/07member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/08member.jpg b/doc/webserver/team/08member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/09member.jpg b/doc/webserver/team/09member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/10member.jpg b/doc/webserver/team/10member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/11member.jpg b/doc/webserver/team/11member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/12member.jpg b/doc/webserver/team/12member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/13member.jpg b/doc/webserver/team/13member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/14member.jpg b/doc/webserver/team/14member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/15member.jpg b/doc/webserver/team/15member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/16member.jpg b/doc/webserver/team/16member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/17member.jpg b/doc/webserver/team/17member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/18member.jpg b/doc/webserver/team/18member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/19member.jpg b/doc/webserver/team/19member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/20member.jpg b/doc/webserver/team/20member.jpg new file mode 100644 index 0000000000000000000000000000000000000000..97042aaa9b30fd95c9316e2ab62fe40e71825413 GIT binary patch literal 932 zcmex=^lOiET&UP@Y7ModgWM?qOlT~kX_QeM|USHnP6LsJ7}2qQZ?I~NC+Fc+7w zhLo6;2Fc+60R}-1h5&{DW=16jCP7AKLB{__7$iVW1v(Z9uye4n0%c4E7#LWXS($m5 zn3$omj7&fQHg*nE^I}1vO=999VI`%LrfuAO@v@<#qH$p2M4&cNG}C}uLH39WqFMqL zzQw@9%m{P~vmk>#!?rW?tzC{@3V3A|G-H*LQb&qQwEy3pn|a?RMg(uYxM|WA|68VJ z8y?A+9Jv*JEKAw`dHxT@MbBo;KAZYc;>7hCXPVvw>VACpFN&GgdZ?s7hRKgJLbw&n_VkHewBTEHS1_v zfS=MgDNdKi)oEwv&%N@W;gE>dr+lMa=PQA?ec~MZxndp`JaX<^vXV=~%gD&cc1cR= zPr=zs5~ohv%qOn2F=J+Z@b~ETnMp_c)@63?xfURV`U%B#Gkt&d#eQ#Bc=p$5_Gg*h?*(NRU=?RP#qjDUyZOs0_h&r4 zUs1%De_3l&1c@e+xx7r~Rt8 vwpZT1UYjfPEPtRwZlLF4_inv{j)I4KTbAm&bGo>=c-=}%|0SkV|NkZc(teRB literal 0 HcmV?d00001 diff --git a/doc/webserver/team/index.html b/doc/webserver/team/index.html new file mode 100644 index 00000000..fe12d905 --- /dev/null +++ b/doc/webserver/team/index.html @@ -0,0 +1,83 @@ + + + + + + +Privoxy - Team page + + + + + + + diff --git a/doc/webserver/user-manual/actions-file.html b/doc/webserver/user-manual/actions-file.html new file mode 100644 index 00000000..ca87032f --- /dev/null +++ b/doc/webserver/user-manual/actions-file.html @@ -0,0 +1,4959 @@ +Actions Files
    Privoxy User Manual
    PrevNext

    8. Actions Files

    The actions files are used to define what actions + Privoxy takes for which URLs, and thus determine + how ad images, cookies and various other aspects of HTTP content and + transactions are handled, and on which sites (or even parts thereof). There + are three such files included with Privoxy (as of + version 2.9.15), with differing purposes: +

    • default.action - is the primary action file + that sets the initial values for all actions. It is intended to + provide a base level of functionality for + Privoxy's array of features. So it is + a set of broad rules that should work reasonably well for users everywhere. + This is the file that the developers are keeping updated, and making + available to users. +

    • user.action - is intended to be for local site + preferences and exceptions. As an example, if your ISP or your bank + has specific requirements, and need special handling, this kind of + thing should go here. This file will not be upgraded. +

    • standard.action - is used by the web based editor, + to set various pre-defined sets of rules for the default actions section + in default.action. These have increasing levels of + aggressiveness and have no influence on your browsing unless + you select them explicitly in the editor. It is not recommend + to edit this file. +

    +

    The list of actions files to be used are defined in the main configuration + file, and are processed in the order they are defined. The content of these + can all be viewed and edited from http://config.privoxy.org/show-status.

    An actions file typically has multiple sections. If you want to use + "aliases" in an actions file, you have to place the (optional) + alias section at the top of that file. + Then comes the default set of rules which will apply universally to all + sites and pages (be very careful with using such a + universal set in user.action or any other actions file after + default.action, because it will override the result + from consulting any previous file). And then below that, + exceptions to the defined universal policies. You can regard + user.action as an appendix to default.action, + with the advantage that is a separate file, which makes preserving your + personal settings across Privoxy upgrades easier.

    + Actions can be used to block anything you want, including ads, banners, or + just some obnoxious URL that you would rather not see. Cookies can be accepted + or rejected, or accepted only during the current browser session (i.e. not + written to disk), content can be modified, JavaScripts tamed, user-tracking + fooled, and much more. See below for a complete list + of actions.

    8.1. Finding the Right Mix

    Note that some actions, like cookie suppression + or script disabling, may render some sites unusable that rely on these + techniques to work properly. Finding the right mix of actions is not always easy and + certainly a matter of personal taste. In general, it can be said that the more + "aggressive" your default settings (in the top section of the + actions file) are, the more exceptions for "trusted" sites you + will have to make later. If, for example, you want to kill popup windows per + default, you'll have to make exceptions from that rule for sites that you + regularly use and that require popups for actually useful content, like maybe + your bank, favorite shop, or newspaper.

    We have tried to provide you with reasonable rules to start from in the + distribution actions files. But there is no general rule of thumb on these + things. There just are too many variables, and sites are constantly changing. + Sooner or later you will want to change the rules (and read this chapter again :).

    8.2. How to Edit

    The easiest way to edit the actions files is with a browser by + using our browser-based editor, which can be reached from http://config.privoxy.org/show-status. + The editor allows both fine-grained control over every single feature on a + per-URL basis, and easy choosing from wholesale sets of defaults like + "Cautious", "Medium" or "Advanced".

    If you prefer plain text editing to GUIs, you can of course also directly edit the + the actions files. Look at default.action which is richly + commented.

    8.3. How Actions are Applied to URLs

    Actions files are divided into sections. There are special sections, + like the "alias" sections which will + be discussed later. For now let's concentrate on regular sections: They have a + heading line (often split up to multiple lines for readability) which consist + of a list of actions, separated by whitespace and enclosed in curly braces. + Below that, there is a list of URL patterns, each on a separate line.

    To determine which actions apply to a request, the URL of the request is + compared to all patterns in each action file file. Every time it matches, the list of + applicable actions for the URL is incrementally updated, using the heading + of the section in which the pattern is located. If multiple matches for + the same URL set the same action differently, the last match wins. If not, + the effects are aggregated. E.g. a URL might match a regular section with + a heading line of { + +handle-as-image }, + then later another one with just { + +block }, resulting + in both actions to apply.

    You can trace this process for any given URL by visiting http://config.privoxy.org/show-url-info.

    More detail on this is provided in the Appendix, Anatomy of an Action.

    8.4. Patterns

    Generally, a pattern has the form <domain>/<path>, + where both the <domain> and <path> + are optional. (This is why the pattern / matches all URLs).

    www.example.com/

    is a domain-only pattern and will match any request to www.example.com, + regardless of which document on that server is requested. +

    www.example.com

    means exactly the same. For domain-only patterns, the trailing / may + be omitted. +

    www.example.com/index.html

    matches only the single document /index.html + on www.example.com. +

    /index.html

    matches the document /index.html, regardless of the domain, + i.e. on any web server. +

    index.html

    matches nothing, since it would be interpreted as a domain name and + there is no top-level domain called .html. +

    8.4.1. The Domain Pattern

    The matching of the domain part offers some flexible options: if the + domain starts or ends with a dot, it becomes unanchored at that end. + For example:

    .example.com

    matches any domain that ENDS in + .example.com +

    www.

    matches any domain that STARTS with + www. +

    .example.

    matches any domain that CONTAINS .example. + (Correctly speaking: It matches any FQDN that contains example as a domain.) +

    Additionally, there are wild-cards that you can use in the domain names + themselves. They work pretty similar to shell wild-cards: "*" + stands for zero or more arbitrary characters, "?" stands for + any single character, you can define character classes in square + brackets and all of that can be freely mixed:

    ad*.example.com

    matches "adserver.example.com", + "ads.example.com", etc but not "sfads.example.com" +

    *ad*.example.com

    matches all of the above, and then some. +

    .?pix.com

    matches www.ipix.com, + pictures.epix.com, a.b.c.d.e.upix.com etc. +

    www[1-9a-ez].example.c*

    matches www1.example.com, + www4.example.cc, wwwd.example.cy, + wwwz.example.com etc., but not + wwww.example.com. +

    8.4.2. The Path Pattern

    Privoxy uses Perl compatible regular expressions + (through the PCRE library) for + matching the path.

    There is an Appendix with a brief quick-start into regular + expressions, and full (very technical) documentation on PCRE regex syntax is available on-line + at http://www.pcre.org/man.txt. + You might also find the Perl man page on regular expressions (man perlre) + useful, which is available on-line at http://www.perldoc.com/perl5.6/pod/perlre.html.

    Note that the path pattern is automatically left-anchored at the "/", + i.e. it matches as if it would start with a "^" (regular expression speak + for the beginning of a line).

    Please also note that matching in the path is CASE INSENSITIVE + by default, but you can switch to case sensitive at any point in the pattern by using the + "(?-i)" switch: www.example.com/(?-i)PaTtErN.* will match + only documents whose path starts with PaTtErN in + exactly this capitalization.

    8.5. Actions

    All actions are disabled by default, until they are explicitly enabled + somewhere in an actions file. Actions are turned on if preceded with a + "+", and turned off if preceded with a "-". So a + +action means "do that action", e.g. + +block means "please block URLs that match the + following patterns", and -block means "don't + block URLs that match the following patterns, even if +block + previously applied."

    + Again, actions are invoked by placing them on a line, enclosed in curly braces and + separated by whitespace, like in + {+some-action -some-other-action{some-parameter}}, + followed by a list of URL patterns, one per line, to which they apply. + Together, the actions line and the following pattern lines make up a section + of the actions file.

    + There are three classes of actions:

    • + Boolean, i.e the action can only be "enabled" or + "disabled". Syntax: + 

        +name        # enable action name
+  -name        # disable action name
      +

      + Example: +block +

    • + Parameterized, where some value is required in order to enable this type of action. + Syntax: + 

        +name{param}  # enable action and set parameter to param,
+               # overwriting parameter from previous match if necessary
+  -name         # disable action. The parameter can be omitted
      +

      Note that if the URL matches multiple positive forms of a parameterized action, + the last match wins, i.e. the params from earlier matches are simply ignored. +

      + Example: +hide-user-agent{ Mozilla 1.0 } +

    • + Multi-value. These look exactly like parameterized actions, + but they behave differently: If the action applies multiple times to the + same URL, but with different parameters, all the parameters + from all matches are remembered. This is used for actions + that can be executed for the same request repeatedly, like adding multiple + headers, or filtering through multiple filters. Syntax: + 

        +name{param}   # enable action and add param to the list of parameters
+  -name{param}   # remove the parameter param from the list of parameters
+                # If it was the last one left, disable the action.
+  -name          # disable this action completely and remove all parameters from the list
      +

      + Examples: +add-header{X-Fun-Header: Some text} and + +filter{html-annoyances} +

    If nothing is specified in any actions file, no "actions" are + taken. So in this case Privoxy would just be a + normal, non-blocking, non-anonymizing proxy. You must specifically enable the + privacy and blocking features you need (although the provided default actions + files will give a good starting point).

    Later defined actions always over-ride earlier ones. So exceptions + to any rules you make, should come in the latter part of the file (or + in a file that is processed later when using multiple actions files). For + multi-valued actions, the actions are applied in the order they are specified. + Actions files are processed in the order they are defined in + config (the default installation has three actions + files). It also quite possible for any given URL pattern to match more than + one pattern and thus more than one set of actions!

    The list of valid Privoxy actions are:

    8.5.1. add-header

    Typical use:

    Confuse log analysis, custom applications

    Effect:

    Sends a user defined HTTP header to the web server. +

    Type:

    Multi-value.

    Parameter:

    Any string value is possible. Validity of the defined HTTP headers is not checked. + It is recommended that you use the "X-" prefix + for custom headers. +

    Notes:

    This action may be specified multiple times, in order to define multiple + headers. This is rarely needed for the typical user. If you don't know what + "HTTP headers" are, you definitely don't need to worry about this + one. +

    Example usage:

    +add-header{X-User-Tracking: sucks}
    +

    8.5.2. block

    Typical use:

    Block ads or other obnoxious content

    Effect:

    Requests for URLs to which this action applies are blocked, i.e. the requests are not + forwarded to the remote server, but answered locally with a substitute page or image, + as determined by the handle-as-image + and set-image-blocker actions. +

    Type:

    Boolean.

    Parameter:

    N/A

    Notes:

    Privoxy sends a special "BLOCKED" page + for requests to blocked pages. This page contains links to find out why the request + was blocked, and a click-through to the blocked content (the latter only if compiled with the + force feature enabled). The "BLOCKED" page adapts to the available + screen space -- it displays full-blown if space allows, or miniaturized and text-only + if loaded into a small frame or window. If you are using Privoxy + right now, you can take a look at the + "BLOCKED" + page. +

    + A very important exception occurs if both + block and handle-as-image, + apply to the same request: it will then be replaced by an image. If + set-image-blocker + (see below) also applies, the type of image will be determined by its parameter, + if not, the standard checkerboard pattern is sent. +

    It is important to understand this process, in order + to understand how Privoxy deals with + ads and other unwanted content. +

    The filter + action can perform a very similar task, by "blocking" + banner images and other content through rewriting the relevant URLs in the + document's HTML source, so they don't get requested in the first place. + Note that this is a totally different technique, and it's easy to confuse the two. +

    Example usage (section):

    {+block}      # Block and replace with "blocked" page
+.nasty-stuff.example.com
+
+{+block +handle-as-image} # Block and replace with image
+.ad.doubleclick.net
+.ads.r.us
    +

    8.5.3. crunch-incoming-cookies

    Typical use:

    Prevent the web server from setting any cookies on your system +

    Effect:

    Deletes any "Set-Cookie:" HTTP headers from server replies. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    This action is only concerned with incoming cookies. For + outgoing cookies, use + crunch-outgoing-cookies. + Use both to disable cookies completely. +

    It makes no sense at all to use this action in conjunction + with the session-cookies-only action, + since it would prevent the session cookies from being set. +

    Example usage:

    +crunch-incoming-cookies
    +

    8.5.4. crunch-outgoing-cookies

    Typical use:

    Prevent the web server from reading any cookies from your system +

    Effect:

    Deletes any "Cookie:" HTTP headers from client requests. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    This action is only concerned with outgoing cookies. For + incoming cookies, use + crunch-incoming-cookies. + Use both to disable cookies completely. +

    It makes no sense at all to use this action in conjunction + with the session-cookies-only action, + since it would prevent the session cookies from being read. +

    Example usage:

    +crunch-outgoing-cookies
    +

    8.5.5. deanimate-gifs

    Typical use:

    Stop those annoying, distracting animated GIF images.

    Effect:

    De-animate GIF animations, i.e. reduce them to their first or last image. +

    Type:

    Parameterized.

    Parameter:

    "last" or "first" +

    Notes:

    This will also shrink the images considerably (in bytes, not pixels!). If + the option "first" is given, the first frame of the animation + is used as the replacement. If "last" is given, the last + frame of the animation is used instead, which probably makes more sense for + most banner animations, but also has the risk of not showing the entire + last frame (if it is only a delta to an earlier frame). +

    You can safely use this action with patterns that will also match non-GIF + objects, because no attempt will be made at anything that doesn't look like + a GIF. +

    Example usage:

    +deanimate-gifs{last}
    +

    8.5.6. downgrade-http-version

    Typical use:

    Work around (very rare) problems with HTTP/1.1

    Effect:

    Downgrades HTTP/1.1 client requests and server replies to HTTP/1.0. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    This is a left-over from the time when Privoxy + didn't support important HTTP/1.1 features well. It is left here for the + unlikely case that you experience HTTP/1.1 related problems with some server + out there. Not all (optional) HTTP/1.1 features are supported yet, so there + is a chance you might need this action. +

    Example usage (section):

    {+downgrade-http-version}
+problem-host.example.com
    +

    8.5.7. fast-redirects

    Typical use:

    Fool some click-tracking scripts and speed up indirect links

    Effect:

    Cut off all but the last valid URL from requests. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    + Many sites, like yahoo.com, don't just link to other sites. Instead, they + will link to some script on their own servers, giving the destination as a + parameter, which will then redirect you to the final target. URLs + resulting from this scheme typically look like: + http://some.place/click-tracker.cgi?target=http://some.where.else. +

    Sometimes, there are even multiple consecutive redirects encoded in the + URL. These redirections via scripts make your web browsing more traceable, + since the server from which you follow such a link can see where you go + to. Apart from that, valuable bandwidth and time is wasted, while your + browser ask the server for one redirect after the other. Plus, it feeds + the advertisers. +

    This feature is currently not very smart and is scheduled for improvement. + It is likely to break some sites. You should expect to need possibly + many exceptions to this action, if it is enabled by default in + default.action. Some sites just don't work without + it. +

    Example usage:

    {+fast-redirects}
    +

    8.5.8. filter

    Typical use:

    Get rid of HTML and JavaScript annoyances, banner advertisements (by size), do fun text replacements, etc.

    Effect:

    Text documents, including HTML and JavaScript, to which this action applies, are filtered on-the-fly + through the specified regular expression based substitutions. +

    Type:

    Parameterized.

    Parameter:

    The name of a filter, as defined in the filter file + (typically default.filter, set by the + filterfile + option in the config file) +

    Notes:

    For your convenience, there are a bunch of pre-defined filters available + in the distribution filter file that you can use. See the example below for + a list. +

    This is potentially a very powerful feature! But "rolling your own" + filters requires a knowledge of regular expressions and HTML. +

    Filtering requires buffering the page content, which may appear to + slow down page rendering since nothing is displayed until all content has + passed the filters. (It does not really take longer, but seems that way + since the page is not incrementally displayed.) This effect will be more + noticeable on slower connections. +

    At this time, Privoxy cannot (yet!) uncompress compressed + documents. If you want filtering to work on all documents, even those that + would normally be sent compressed, use the + prevent-compression + action in conjunction with filter. +

    Filtering can achieve some of the effects as the + block + action, i.e. it can be used to block ads and banners. +

    Feedback with suggestions for new or improved filters is particularly + welcome! +

    Example usage (with filters from the distribution default.filter file):

    + 
    +filter{html-annoyances}     # Get rid of particularly annoying HTML abuse.
    +

    + 
    +filter{js-annoyances}       # Get rid of particularly annoying JavaScript abuse
    +

    + 
    +filter{banners-by-size}     # Kill banners by size (very efficient!)
    +

    + 
    +filter{content-cookies}     # Kill cookies that come sneaking in the HTML or JS content
    +

    + 
    +filter{popups}              # Kill all popups in JS and HTML
    +

    + 
    +filter{webbugs}             # Squish WebBugs (1x1 invisible GIFs used for user tracking)
    +

    + 
    +filter{fun}                 # Text replacements for subversive browsing fun!
    +

    + 
    +filter{frameset-borders}    # Give frames a border and make them resizeable
    +

    + 
    +filter{refresh-tags}        # Kill automatic refresh tags (for dial-on-demand setups)
    +

    + 
    +filter{nimda}               # Remove Nimda (virus) code.
    +

    + 
    +filter{shockwave-flash}     # Kill embedded Shockwave Flash objects
    +

    + 
    +filter{crude-parental}      # Kill all web pages that contain the words "sex" or "warez"
    +

    8.5.9. handle-as-image

    Typical use:

    Mark URLs as belonging to images (so they'll be replaced by images if they get blocked)

    Effect:

    This action alone doesn't do anything noticeable. It just marks URLs as images. + If the block action also applies, + the presence or absence of this mark decides whether an HTML "blocked" + page, or a replacement image (as determined by the set-image-blocker action) will be sent to the + client as a substitute for the blocked content. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    The below generic example section is actually part of default.action. + It marks all URLs with well-known image file name extensions as images and should + be left intact. +

    Users will probably only want to use the handle-as-image action in conjunction with + block, to block sources of banners, whose URLs don't + reflect the file type, like in the second example section. +

    Note that you cannot treat HTML pages as images in most cases. For instance, (inline) ad + frames require an HTML page to be sent, or they won't display properly. + Forcing handle-as-image in this situation will not replace the + ad frame with an image, but lead to error messages. +

    Example usage (sections):

    # Generic image extensions:
+#
+{+handle-as-image}
+/.*\.(gif|jpg|jpeg|png|bmp|ico)$
+
+# These don't look like images, but they're banners and should be
+# blocked as images:
+#
+{+block +handle-as-image}
+some.nasty-banner-server.com/junk.cgi?output=trash
+
+# Banner source! Who cares if they also have non-image content?
+ad.doubleclick.net
    +

    8.5.10. hide-forwarded-for-headers

    Typical use:

    Improve privacy by hiding the true source of the request

    Effect:

    Deletes any existing "X-Forwarded-for:" HTTP header from client requests, + and prevents adding a new one. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    It is fairly safe to leave this on. +

    This action is scheduled for improvement: It should be able to generate forged + "X-Forwarded-for:" headers using random IP addresses from a specified network, + to make successive requests from the same client look like requests from a pool of different + users sharing the same proxy. +

    Example usage:

    +hide-forwarded-for-headers
    +

    8.5.11. hide-from-header

    Typical use:

    Keep your (old and ill) browser from telling web servers your email address

    Effect:

    Deletes any existing "From:" HTTP header, or replaces it with the + specified string. +

    Type:

    Parameterized.

    Parameter:

    Keyword: "block", or any user defined value. +

    Notes:

    The keyword "block" will completely remove the header + (not to be confused with the block + action). +

    Alternately, you can specify any value you prefer to be sent to the web + server. If you do, it is a matter of fairness not to use any address that + is actually used by a real person. +

    This action is rarely needed, as modern web browsers don't send + "From:" headers anymore. +

    Example usage:

    +hide-from-header{block}
    or + 
    +hide-from-header{spam-me-senseless@sittingduck.example.com}
    +

    8.5.12. hide-referrer

    Typical use:

    Conceal which link you followed to get to a particular site

    Effect:

    Deletes the "Referer:" (sic) HTTP header from the client request, + or replaces it with a forged one. +

    Type:

    Parameterized.

    Parameter:

    • "block" to delete the header completely.

    • "forge" to pretend to be coming from the homepage of the server we are talking to.

    • Any other string to set a user defined referrer.

    Notes:

    "forge" is the preferred option here, since some servers will + not send images back otherwise, in an attempt to prevent their valuable + content from being embedded elsewhere (and hence, without being surrounded + by their banners). +

    + hide-referer is an alternate spelling of + hide-referrer and the two can be can be freely + substituted with each other. ("referrer" is the + correct English spelling, however the HTTP specification has a bug - it + requires it to be spelled as "referer".) +

    Example usage:

    +hide-referrer{forge}
    or + 
    +hide-referrer{http://www.yahoo.com/}
    +

    8.5.13. hide-user-agent

    Typical use:

    Conceal your type of browser and client operating system

    Effect:

    Replaces the value of the "User-Agent:" HTTP header + in client requests with the specified value. +

    Type:

    Parameterized.

    Parameter:

    Any user-defined string. +

    Notes:

    Warning

    This breaks many web sites that depend on looking at this header in order + to customize their content for different browsers (which, by the + way, is NOT a smart way to do + that!). +

    Using this action in multi-user setups or wherever different types of + browsers will access the same Privoxy is + not recommended. In single-user, single-browser + setups, you might use it to delete your OS version information from + the headers, because it is an invitation to exploit known bugs for your + OS. It is also occasionally useful to forge this in order to access + sites that won't let you in otherwise (though there may be a good + reason in some cases). Example of this: some MSN sites will not + let Mozilla enter, yet forging to a + Netscape 6.1 user-agent works just fine. + (Must be just a silly MS goof, I'm sure :-). +

    This action is scheduled for improvement. +

    Example usage:

    +hide-user-agent{Netscape 6.1 (X11; I; Linux 2.4.18 i686)}
    +

    8.5.14. kill-popups

    Typical use:

    Eliminate those annoying pop-up windows

    Effect:

    While loading the document, replace JavaScript code that opens + pop-up windows with (syntactically neutral) dummy code on the fly. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    This action is easily confused with the built-in, hardwired filter + action, but there are important differences: For kill-popups, + the document need not be buffered, so it can be incrementally rendered while + downloading. But kill-popups doesn't catch as many pop-ups as + filter{popups} + does. +

    Think of it as a fast and efficient replacement for a filter that you + can use if you don't want any filtering at all. Note that it doesn't make + sense to combine it with any filter action, + since as soon as one filter applies, + the whole document needs to be buffered anyway, which destroys the advantage of + the kill-popups action over its filter equivalent. +

    Killing all pop-ups is a dangerous business. Many shops and banks rely on + pop-ups to display forms, shopping carts etc, and killing only the unwanted pop-ups + would require artificial intelligence in Privoxy. + If the only kind of pop-ups that you want to kill are exit consoles (those + really nasty windows that appear when you close an other + one), you might want to use + filter{js-annoyances} + instead. +

    Example usage:

    +kill-popups

    8.5.15. limit-connect

    Typical use:

    Prevent abuse of Privoxy as a TCP proxy relay

    Effect:

    Specifies to which ports HTTP CONNECT requests are allowable. +

    Type:

    Parameterized.

    Parameter:

    A comma-separated list of ports or port ranges (the latter using dashes, with the minimum + defaulting to 0 and the maximum to 65K). +

    Notes:

    By default, i.e. if no limit-connect action applies, + Privoxy only allows HTTP CONNECT + requests to port 443 (the standard, secure HTTPS port). Use + limit-connect if more fine-grained control is desired + for some or all destinations. +

    The CONNECT methods exists in HTTP to allow access to secure websites + ("https://" URLs) through proxies. It works very simply: + the proxy connects to the server on the specified port, and then + short-circuits its connections to the client and to the remote server. + This can be a big security hole, since CONNECT-enabled proxies can be + abused as TCP relays very easily. +

    If you don't know what any of this means, there probably is no reason to + change this one, since the default is already very restrictive. +

    Example usages:

    +limit-connect{443}                   # This is the default and need not be specified.
++limit-connect{80,443}                # Ports 80 and 443 are OK.
++limit-connect{-3, 7, 20-100, 500-}   # Ports less than 3, 7, 20 to 100 and above 500 are OK.
++limit-connect{-}                     # All ports are OK (gaping security hole!)
    +

    8.5.16. prevent-compression

    Typical use:

    Ensure that servers send the content uncompressed, so it can be + passed through filters +

    Effect:

    Adds a header to the request that asks for uncompressed transfer. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    More and more websites send their content compressed by default, which + is generally a good idea and saves bandwidth. But for the filter, deanimate-gifs + and kill-popups actions to work, + Privoxy needs access to the uncompressed data. + Unfortunately, Privoxy can't yet(!) uncompress, filter, and + re-compress the content on the fly. So if you want to ensure that all websites, including + those that normally compress, can be filtered, you need to use this action. +

    This will slow down transfers from those websites, though. If you use any of the above-mentioned + actions, you will typically want to use prevent-compression in conjunction + with them. +

    Note that some (rare) ill-configured sites don't handle requests for uncompressed + documents correctly (they send an empty document body). If you use prevent-compression + per default, you'll have to add exceptions for those sites. See the example for how to do that. +

    Example usage (sections):

    # Set default:
+#
+{+prevent-compression}
+/ # Match all sites
+
+# Make exceptions for ill sites:
+#
+{-prevent-compression}
+www.debianhelp.org
+www.pclinuxonline.com
    +

    8.5.17. send-vanilla-wafer

    Typical use:

    Feed log analysis scripts with useless data. +

    Effect:

    Sends a cookie with each request stating that you do not accept any copyright + on cookies sent to you, and asking the site operator not to track you. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    The vanilla wafer is a (relatively) unique header and could conceivably be used to track you. +

    This action is rarely used and not enabled in the default configuration. +

    Example usage:

    +send-vanilla-wafer
    +

    8.5.18. send-wafer

    Typical use:

    Send custom cookies or feed log analysis scripts with even more useless data. +

    Effect:

    Sends a custom, user-defined cookie with each request. +

    Type:

    Multi-value.

    Parameter:

    A string of the form "name=value". +

    Notes:

    Being multi-valued, multiple instances of this action can apply to the same request, + resulting in multiple cookies being sent. +

    This action is rarely used and not enabled in the default configuration. +

    Example usage (section):

    {+send-wafer{UsingPrivoxy=true}}
+my-internal-testing-server.void
    +

    8.5.19. session-cookies-only

    Typical use:

    Allow only temporary "session" cookies (for the current browser session only). +

    Effect:

    Deletes the "expires" field from "Set-Cookie:" server headers. + Most browsers will not store such cookies permanently and forget them in between sessions. +

    Type:

    Boolean.

    Parameter:

    N/A +

    Notes:

    This is less strict than crunch-incoming-cookies / + crunch-outgoing-cookies and allows you to browse + websites that insist or rely on setting cookies, without compromising your privacy too badly. +

    Most browsers will not permanently store cookies that have been processed by + session-cookies-only and will forget about them between sessions. + This makes profiling cookies useless, but won't break sites which require cookies so + that you can log in for transactions. This is generally turned on for all + sites, and is the recommended setting. +

    It makes no sense at all to use session-cookies-only + together with crunch-incoming-cookies or + crunch-outgoing-cookies. If you do, cookies + will be plainly killed. +

    Note that it is up to the browser how it handles such cookies without an "expires" + field. If you use an exotic browser, you might want to try it out to be sure. +

    Example usage:

    +session-cookies-only
    +

    8.5.20. set-image-blocker

    Typical use:

    Choose the replacement for blocked images

    Effect:

    This action alone doesn't do anything noticeable. If both + block and handle-as-image also + apply, i.e. if the request is to be blocked as an image, + then the parameter of this action decides what will be + sent as a replacement. +

    Type:

    Parameterized.

    Parameter:

    • "pattern" to send a built-in checkerboard pattern image. The image is visually + decent, scales very well, and makes it obvious where banners were busted. +

    • "blank" to send a built-in transparent image. This makes banners disappear + completely, but makes it hard to detect where Privoxy has blocked + images on a given page and complicates troubleshooting if Privoxy + has blocked innocent images, like navigation icons. +

    • "target-url" to + send a redirect to target-url. You can redirect + to any image anywhere, even in your local filesystem (via "file:///" URL). +

      A good application of redirects is to use special Privoxy-built-in + URLs, which send the built-in images, as target-url. + This has the same visual effect as specifying "blank" or "pattern" in + the first place, but enables your browser to cache the replacement image, instead of requesting + it over and over again. +

    Notes:

    The URLs for the built-in images are "http://config.privoxy.org/send-banner?type=type", where type is + either "blank" or "pattern". +

    There is a third (advanced) type, called "auto". It is NOT to be + used in set-image-blocker, but meant for use from filters. + Auto will select the type of image that would have applied to the referring page, had it been an image. +

    Example usage:

    Built-in pattern: + 

    +set-image-blocker{pattern}
    +

    Redirect to the BSD devil: + 

    +set-image-blocker{http://www.freebsd.org/gifs/dae_up3.gif}
    +

    Redirect to the built-in pattern for better caching: + 

    +set-image-blocker{http://config.privoxy.org/send-banner?type=pattern}
    +

    8.5.21. Summary

    Note that many of these actions have the potential to cause a page to + misbehave, possibly even not to display at all. There are many ways + a site designer may choose to design his site, and what HTTP header + content, and other criteria, he may depend on. There is no way to have hard + and fast rules for all sites. See the Appendix for a brief example on troubleshooting + actions.

    8.6. Aliases

    Custom "actions", known to Privoxy + as "aliases", can be defined by combining other actions. + These can in turn be invoked just like the built-in actions. + Currently, an alias name can contain any character except space, tab, + "=", + "{" and "}", but we strongly + recommend that you only use "a" to "z", + "0" to "9", "+", and "-". + Alias names are not case sensitive, and are not required to start with a + "+" or "-" sign, since they are merely textually + expanded.

    Aliases can be used throughout the actions file, but they must be + defined in a special section at the top of the file! + And there can only be one such section per actions file. Each actions file may + have its own alias section, and the aliases defined in it are only visible + within that file.

    There are two main reasons to use aliases: One is to save typing for frequently + used combinations of actions, the other one is a gain in flexibility: If you + decide once how you want to handle shops by defining an alias called + "shop", you can later change your policy on shops in + one place, and your changes will take effect everywhere + in the actions file where the "shop" alias is used. Calling aliases + by their purpose also makes your actions files more readable.

    Currently, there is one big drawback to using aliases, though: + Privoxy's built-in web-based action file + editor honors aliases when reading the actions files, but it expands + them before writing. So the effects of your aliases are of course preserved, + but the aliases themselves are lost when you edit sections that use aliases + with it. + This is likely to change in future versions of Privoxy.

    Now let's define some aliases...

     # Useful custom aliases we can use later.
+ #
+ # Note the (required!) section header line and that this section
+ # must be at the top of the actions file!
+ #
+ {{alias}}
+
+ # These aliases just save typing later:
+ # (Note that some already use other aliases!)
+ #
+ +crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies
+ -crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies
+ block-as-image      = +block +handle-as-image
+ mercy-for-cookies   = -crunch-all-cookies -session-cookies-only
+
+ # These aliases define combinations of actions
+ # that are useful for certain types of sites:
+ #
+ fragile     = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups
+ shop        = -crunch-all-cookies -filter{popups} -kill-popups
+
+ # Short names for other aliases, for really lazy people ;-)
+ #
+ c0 = +crunch-all-cookies
+ c1 = -crunch-all-cookies

    ...and put them to use. These sections would appear in the lower part of an + actions file and define exceptions to the default actions (as specified further + up for the "/" pattern):

     # These sites are either very complex or very keen on
+ # user data and require minimal interference to work:
+ #
+ {fragile}
+ .office.microsoft.com
+ .windowsupdate.microsoft.com
+ .nytimes.com
+
+ # Shopping sites:
+ # Allow cookies (for setting and retrieving your customer data)
+ #           
+ {shop}
+ .quietpc.com
+ .worldpay.com   # for quietpc.com
+ .scan.co.uk
+
+ # These shops require pop-ups:
+ #
+ {shop -kill-popups -filter{popups}}
+  .dabs.com
+  .overclockers.co.uk

    Aliases like "shop" and "fragile" are often used for + "problem" sites that require some actions to be disabled + in order to function properly.

    8.7. Actions Files Tutorial

    The above chapters have shown which actions files + there are and how they are organized, how actions are specified and applied + to URLs, how patterns work, and how to + define and use aliases. Now, let's look at an + example default.action and user.action + file and see how all these pieces come together:

    8.7.1. default.action

    Every config file should start with a short comment stating its purpose:

    # Sample default.action file <developers@privoxy.org>

    Then, since this is the default.action file, the +first section is a special section for internal use that you needn't +change or worry about:

    ##########################################################################
+# Settings -- Don't change! For internal Privoxy use ONLY.
+##########################################################################
+
+{{settings}}
+for-privoxy-version=3.0

    After that comes the (optional) alias section. We'll use the example +section from the above chapter on aliases, +that also explains why and how aliases are used:

    ##########################################################################
+# Aliases
+##########################################################################
+{{alias}}
+
+# These aliases just save typing later:
+# (Note that some already use other aliases!)
+#
++crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies
+-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies
+block-as-image      = +block +handle-as-image
+mercy-for-cookies   = -crunch-all-cookies -session-cookies-only
+
+# These aliases define combinations of actions
+# that are useful for certain types of sites:
+#
+fragile     = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups
+shop        = mercy-for-cookies -filter{popups} -kill-popups

    Now come the regular sections, i.e. sets of actions, accompanied + by URL patterns to which they apply. Remember all actions + are disabled when matching starts, so we have to explicitly + enable the ones we want.

    The first regular section is probably the most important. It has only + one pattern, "/", but this pattern + matches all URLs.. Therefore, the + set of actions used in this "default" section will + be applied to all requests as a start. It can be partly or + wholly overridden by later matches further down this file, or in user.action, + but it will still be largely responsible for your overall browsing + experience.

    Again, at the start of matching, all actions are disabled, so there is + no real need to disable any actions here, but we will do that nonetheless, + to have a complete listing for your reference. (Remember: A "+" + preceding the action name enables the action, a "-" disables!). + Also note how this long line has been made more readable by splitting it into + multiple lines with line continuation.

    ##########################################################################
+# "Defaults" section:
+##########################################################################
+ { \
+ -add-header \
+ -block \
+ -crunch-incoming-cookies \
+ -crunch-outgoing-cookies \
+ +deanimate-gifs \
+ -downgrade-http-version \
+ +fast-redirects \
+ +filter{html-annoyances} \
+ +filter{js-annoyances} \
+ -filter{content-cookies} \
+ +filter{popups} \
+ +filter{webbugs} \
+ -filter{refresh-tags} \
+ -filter{fun} \
+ +filter{nimda} \
+ +filter{banners-by-size} \
+ -filter{shockwave-flash} \
+ -filter{crude-parental} \
+ -handle-as-image \
+ +hide-forwarded-for-headers \
+ +hide-from-header{block} \
+ +hide-referrer{forge} \
+ -hide-user-agent \
+ -kill-popups \
+ -limit-connect \
+ +prevent-compression \
+ -send-vanilla-wafer \
+ -send-wafer \
+ +session-cookies-only \
+ +set-image-blocker{pattern} \
+ }
+ / # forward slash will match *all* potential URL patterns.

    The default behavior is now set. Note that some actions, like not hiding + the user agent, are part of a "general policy" that applies + universally and won't get any exceptions defined later. Other choices, + like not blocking (which is understandably the + default!) need exceptions, i.e. we need to specify explicitly what we + want to block in later sections. + We will also want to make exceptions from our general pop-up-killing, + and use our defined aliases for that.

    The first of our specialized sections is concerned with "fragile" + sites, i.e. sites that require minimum interference, because they are either + very complex or very keen on tracking you (and have mechanisms in place that + make them unusable for people who avoid being tracked). We will simply use + our pre-defined fragile alias instead of stating the list + of actions explicitly:

    ##########################################################################
+# Exceptions for sites that'll break under the default action set:
+##########################################################################
+
+# "Fragile" Use a minimum set of actions for these sites (see alias above):
+#
+{ fragile }
+.office.microsoft.com           # surprise, surprise!
+.windowsupdate.microsoft.com

    Shopping sites are not as fragile, but they typically + require cookies to log in, and pop-up windows for shopping + carts or item details. Again, we'll use a pre-defined alias:

    # Shopping sites:
+#
+{ shop }
+.quietpc.com 
+.worldpay.com   # for quietpc.com
+.jungle.com
+.scan.co.uk

    Then, there are sites which rely on pop-up windows (yuck!) to work. + Since we made pop-up-killing our default above, we need to make exceptions + now. Mozilla users, who + can turn on smart handling of unwanted pop-ups in their browsers, can + safely choose + -filter{popups} (and + -kill-popups) above + and hence don't need this section. Anyway, disabling an already disabled + action doesn't hurt, so we'll define our exceptions regardless of what was + chosen in the defaults section:

    # These sites require pop-ups too :( 
+#
+{ -kill-popups -filter{popups} }
+.dabs.com
+.overclockers.co.uk
+.deutsche-bank-24.de

    The fast-redirects + action, which we enabled per default above, breaks some sites. So disable + it for popular sites where we know it misbehaves:

    { -fast-redirects }
+login.yahoo.com
+edit.*.yahoo.com
+.google.com
+.altavista.com/.*(like|url|link):http
+.altavista.com/trans.*urltext=http
+.nytimes.com

    It is important that Privoxy knows which + URLs belong to images, so that if they are to + be blocked, a substitute image can be sent, rather than an HTML page. + Contacting the remote site to find out is not an option, since it + would destroy the loading time advantage of banner blocking, and it + would feed the advertisers (in terms of money and + information). We can mark any URL as an image with the handle-as-image action, + and marking all URLs that end in a known image file extension is a + good start:

    ##########################################################################
+# Images:
+##########################################################################
+
+# Define which file types will be treated as images, in case they get
+# blocked further down this file:
+#
+{ +handle-as-image }
+/.*\.(gif|jpe?g|png|bmp|ico)$

    And then there are known banner sources. They often use scripts to + generate the banners, so it won't be visible from the URL that the + request is for an image. Hence we block them and + mark them as images in one go, with the help of our + block-as-image alias defined above. (We could of + course just as well use +block + +handle-as-image here.) + Remember that the type of the replacement image is chosen by the + set-image-blocker + action. Since all URLs have matched the default section with its + +set-image-blocker{pattern} + action before, it still applies and needn't be repeated:

    # Known ad generators:
+#
+{ block-as-image }
+ar.atwola.com 
+.ad.doubleclick.net
+.ad.*.doubleclick.net
+.a.yimg.com/(?:(?!/i/).)*$
+.a[0-9].yimg.com/(?:(?!/i/).)*$
+bs*.gsanet.com
+bs*.einets.com
+.qkimg.net

    One of the most important jobs of Privoxy + is to block banners. A huge bunch of them are already "blocked" + by the filter{banners-by-size} + action, which we enabled above, and which deletes the references to banner + images from the pages while they are loaded, so the browser doesn't request + them anymore, and hence they don't need to be blocked here. But this naturally + doesn't catch all banners, and some people choose not to use filters, so we + need a comprehensive list of patterns for banner URLs here, and apply the + block action to them.

    First comes a bunch of generic patterns, which do most of the work, by + matching typical domain and path name components of banners. Then comes + a list of individual patterns for specific sites, which is omitted here + to keep the example short:

    ##########################################################################
+# Block these fine banners:
+##########################################################################
+{ +block }
+
+# Generic patterns:
+# 
+ad*.
+.*ads.
+banner?.
+count*.
+/.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?)
+/(?:.*/)?(publicite|werbung|rekla(ma|me|am)|annonse|maino(kset|nta|s)?)/
+
+# Site-specific patterns (abbreviated):
+#
+.hitbox.com

    You wouldn't believe how many advertisers actually call their banner + servers ads.company.com, or call the directory + in which the banners are stored simply "banners". So the above + generic patterns are surprisingly effective.

    But being very generic, they necessarily also catch URLs that we don't want + to block. The pattern .*ads. e.g. catches + "nasty-ads.nasty-corp.com" as intended, + but also "downloads.sourcefroge.net" or + "adsl.some-provider.net." So here come some + well-known exceptions to the +block + section above.

    Note that these are exceptions to exceptions from the default! Consider the URL + "downloads.sourcefroge.net": Initially, all actions are deactivated, + so it wouldn't get blocked. Then comes the defaults section, which matches the + URL, but just deactivates the block + action once again. Then it matches .*ads., an exception to the + general non-blocking policy, and suddenly + +block applies. And now, it'll match + .*loads., where -block + applies, so (unless it matches again further down) it ends up + with no block action applying.

    ##########################################################################
+# Save some innocent victims of the above generic block patterns:
+##########################################################################
+
+# By domain:
+# 
+{ -block }
+adv[io]*.  # (for advogato.org and advice.*)
+adsl.      # (has nothing to do with ads)
+ad[ud]*.   # (adult.* and add.*)
+.edu       # (universities don't host banners (yet!))
+.*loads.   # (downloads, uploads etc)
+
+# By path:
+#
+/.*loads/
+
+# Site-specific:
+#
+www.globalintersec.com/adv # (adv = advanced)
+www.ugu.com/sui/ugu/adv

    Filtering source code can have nasty side effects, + so make an exception for our friends at sourceforge.net, + and all paths with "cvs" in them. Note that + -filter + disables all filters in one fell swoop!

    # Don't filter code!
+#
+{ -filter }
+/.*cvs
+.sourceforge.net

    The actual default.action is of course more + comprehensive, but we hope this example made clear how it works.

    8.7.2. user.action

    So far we are painting with a broad brush by setting general policies, + which would be a reasonable starting point for many people. Now, + you'd maybe want to be more specific and have customized rules that + are more suitable to your personal habits and preferences. These would + be for narrowly defined situations like your ISP or your bank, and should + be placed in user.action, which is parsed after all other + actions files and hence has the last word, over-riding any previously + defined actions. user.action is also a + safe place for your personal settings, since + default.action is actively maintained by the + Privoxy developers and you'll probably want + to install updated versions from time to time.

    So let's look at a few examples of things that one might typically do in + user.action: 

    # My user.action file. <fred@foobar.com>

    As aliases are local to the actions + file that they are defined in, you can't use the ones from + default.action, unless you repeat them here:

    # (Re-)define aliases for this file:
+#
+{{alias}}
+-crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies
+mercy-for-cookies   = -crunch-all-cookies -session-cookies-only
+fragile     = -block -crunch-all-cookies -filter -fast-redirects -hide-referer -kill-popups
+shop        = mercy-for-cookies -filter{popups} -kill-popups
+allow-ads   = -block -filter{banners-by-size} # (see below)
    +

    Say you have accounts on some sites that you visit regularly, and + you don't want to have to log in manually each time. So you'd like + to allow persistent cookies for these sites. The + mercy-for-cookies alias defined above does exactly + that, i.e. it disables crunching of cookies in any direction, and + processing of cookies to make them temporary.

    { mercy-for-cookies }
+sunsolve.sun.com
+slashdot.org
+.yahoo.com
+.msdn.microsoft.com
+.redhat.com

    Your bank needs popups and is allergic to some filter, but you don't + know which, so you disable them all:

    { -filter -kill-popups }
+.your-home-banking-site.com

    While browsing the web with Privoxy you + noticed some ads that sneaked through, but you were too lazy to + report them through our fine and easy feedback + system, so you have added them here:

    { +block }
+www.a-popular-site.com/some/unobvious/path
+another.popular.site.net/more/junk/here/

    Note that, assuming the banners in the above example have regular image + extensions (most do), + +handle-as-image + need not be specified, since all URLs ending in these extensions will + already have been tagged as images in the relevant section of + default.action by now.

    Then you noticed that the default configuration breaks Forbes Magazine, + but you were too lazy to find out which action is the culprit, and you + were again too lazy to give feedback, so + you just used the fragile alias on the site, and + -- whoa! -- it worked:

    { fragile }
+.forbes.com

    You like the "fun" text replacements in default.filter, + but it is disabled in the distributed actions file. (My colleagues on the team just + don't have a sense of humour, that's why! ;-). So you'd like to turn it on in your private, + update-safe config, once and for all:

    { +filter{fun} }
+/ # For ALL sites!

    Note that the above is not really a good idea: There are exceptions + to the filters in default.action for things that + really shouldn't be filtered, like code on CVS->Web interfaces. Since + user.action has the last word, these exceptions + won't be valid for the "fun" filtering specified here.

    Finally, you might think about how your favourite free websites are + funded, and find that they rely on displaying banner advertisements + to survive. So you might want to specifically allow banners for those + sites that you feel provide value to you:

    { allow-ads }
+.sourceforge.net
+.slashdot.org
+.osdn.net

    Note that allow-ads has been aliased to + -block + -filter{banners-by-size} + above.

    PrevHomeNext
    The Main Configuration File The Filter File
    \ No newline at end of file diff --git a/doc/webserver/user-manual/appendix.html b/doc/webserver/user-manual/appendix.html new file mode 100644 index 00000000..9985300a --- /dev/null +++ b/doc/webserver/user-manual/appendix.html @@ -0,0 +1,1918 @@ +Appendix
    Privoxy User Manual
    Prev 

    14. Appendix

    14.1. Regular Expressions

    Privoxy uses Perl-style "regular + expressions" in its actions + files and filter file, + through the PCRE and + PCRS libraries.

    If you are reading this, you probably don't understand what "regular + expressions" are, or what they can do. So this will be a very brief + introduction only. A full explanation would require a book ;-)

    Regular expressions provide a language to describe patterns that can be + run against strings of characters (letter, numbers, etc), to see if they + match the string or not. The patterns are themselves (sometimes complex) + strings of literal characters, combined with wild-cards, and other special + characters, called meta-characters. The "meta-characters" have + special meanings and are used to build complex patterns to be matched against. + Perl Compatible Regular Expressions are an especially convenient + "dialect" of the regular expression language.

    To make a simple analogy, we do something similar when we use wild-card + characters when listing files with the dir command in DOS. + *.* matches all filenames. The "special" + character here is the asterisk which matches any and all characters. We can be + more specific and use ? to match just individual + characters. So "dir file?.text" would match + "file1.txt", "file2.txt", etc. We are pattern + matching, using a similar technique to "regular expressions"!

    Regular expressions do essentially the same thing, but are much, much more + powerful. There are many more "special characters" and ways of + building complex patterns however. Let's look at a few of the common ones, + and then some examples:

    . - Matches any single character, e.g. "a", + "A", "4", ":", or "@". +

    ? - The preceding character or expression is matched ZERO or ONE + times. Either/or. +

    + - The preceding character or expression is matched ONE or MORE + times. +

    * - The preceding character or expression is matched ZERO or MORE + times. +

    \ - The "escape" character denotes that + the following character should be taken literally. This is used where one of the + special characters (e.g. ".") needs to be taken literally and + not as a special meta-character. Example: "example\.com", makes + sure the period is recognized only as a period (and not expanded to its + meta-character meaning of any single character). +

    [] - Characters enclosed in brackets will be matched if + any of the enclosed characters are encountered. For instance, "[0-9]" + matches any numeric digit (zero through nine). As an example, we can combine + this with "+" to match any digit one of more times: "[0-9]+". +

    () - parentheses are used to group a sub-expression, + or multiple sub-expressions. +

    | - The "bar" character works like an + "or" conditional statement. A match is successful if the + sub-expression on either side of "|" matches. As an example: + "/(this|that) example/" uses grouping and the bar character + and would match either "this example" or "that + example", and nothing else. +

    These are just some of the ones you are likely to use when matching URLs with + Privoxy, and is a long way from a definitive + list. This is enough to get us started with a few simple examples which may + be more illuminating:

    /.*/banners/.* - A simple example + that uses the common combination of "." and "*" to + denote any character, zero or more times. In other words, any string at all. + So we start with a literal forward slash, then our regular expression pattern + (".*") another literal forward slash, the string + "banners", another forward slash, and lastly another + ".*". We are building + a directory path here. This will match any file with the path that has a + directory named "banners" in it. The ".*" matches + any characters, and this could conceivably be more forward slashes, so it + might expand into a much longer looking path. For example, this could match: + "/eye/hate/spammers/banners/annoy_me_please.gif", or just + "/banners/annoying.html", or almost an infinite number of other + possible combinations, just so it has "banners" in the path + somewhere.

    A now something a little more complex:

    /.*/adv((er)?ts?|ertis(ing|ements?))?/ - + We have several literal forward slashes again ("/"), so we are + building another expression that is a file path statement. We have another + ".*", so we are matching against any conceivable sub-path, just so + it matches our expression. The only true literal that must + match our pattern is adv, together with + the forward slashes. What comes after the "adv" string is the + interesting part.

    Remember the "?" means the preceding expression (either a + literal character or anything grouped with "(...)" in this case) + can exist or not, since this means either zero or one match. So + "((er)?ts?|ertis(ing|ements?))" is optional, as are the + individual sub-expressions: "(er)", + "(ing|ements?)", and the "s". The "|" + means "or". We have two of those. For instance, + "(ing|ements?)", can expand to match either "ing" + OR "ements?". What is being done here, is an + attempt at matching as many variations of "advertisement", and + similar, as possible. So this would expand to match just "adv", + or "advert", or "adverts", or + "advertising", or "advertisement", or + "advertisements". You get the idea. But it would not match + "advertizements" (with a "z"). We could fix that by + changing our regular expression to: + "/.*/adv((er)?ts?|erti(s|z)(ing|ements?))?/", which would then match + either spelling.

    /.*/advert[0-9]+\.(gif|jpe?g) - Again + another path statement with forward slashes. Anything in the square brackets + "[]" can be matched. This is using "0-9" as a + shorthand expression to mean any digit one through nine. It is the same as + saying "0123456789". So any digit matches. The "+" + means one or more of the preceding expression must be included. The preceding + expression here is what is in the square brackets -- in this case, any digit + one through nine. Then, at the end, we have a grouping: "(gif|jpe?g)". + This includes a "|", so this needs to match the expression on + either side of that bar character also. A simple "gif" on one side, and the other + side will in turn match either "jpeg" or "jpg", + since the "?" means the letter "e" is optional and + can be matched once or not at all. So we are building an expression here to + match image GIF or JPEG type image file. It must include the literal + string "advert", then one or more digits, and a "." + (which is now a literal, and not a special character, since it is escaped + with "\"), and lastly either "gif", or + "jpeg", or "jpg". Some possible matches would + include: "//advert1.jpg", + "/nasty/ads/advert1234.gif", + "/banners/from/hell/advert99.jpg". It would not match + "advert1.gif" (no leading slash), or + "/adverts232.jpg" (the expression does not include an + "s"), or "/advert1.jsp" ("jsp" is not + in the expression anywhere).

    We are barely scratching the surface of regular expressions here so that you + can understand the default Privoxy + configuration files, and maybe use this knowledge to customize your own + installation. There is much, much more that can be done with regular + expressions. Now that you know enough to get started, you can learn more on + your own :/

    More reading on Perl Compatible Regular expressions: + http://www.perldoc.com/perl5.6/pod/perlre.html

    For information on regular expression based substititions and their applications + in filters, please see the filter file tutorial + in this manual.

    14.2. Privoxy's Internal Pages

    Since Privoxy proxies each requested + web page, it is easy for Privoxy to + trap certain special URLs. In this way, we can talk directly to + Privoxy, and see how it is + configured, see how our rules are being applied, change these + rules and other configuration options, and even turn + Privoxy's filtering off, all with + a web browser.

    The URLs listed below are the special ones that allow direct access + to Privoxy. Of course, + Privoxy must be running to access these. If + not, you will get a friendly error message. Internet access is not + necessary either.

    These may be bookmarked for quick reference. See next.

    14.2.1. Bookmarklets

    Below are some "bookmarklets" to allow you to easily access a + "mini" version of some of Privoxy's + special pages. They are designed for MS Internet Explorer, but should work + equally well in Netscape, Mozilla, and other browsers which support + JavaScript. They are designed to run directly from your bookmarks - not by + clicking the links below (although that should work for testing).

    To save them, right-click the link and choose "Add to Favorites" + (IE) or "Add Bookmark" (Netscape). You will get a warning that + the bookmark "may not be safe" - just click OK. Then you can run the + Bookmarklet directly from your favorites/bookmarks. For even faster access, + you can put them on the "Links" bar (IE) or the "Personal + Toolbar" (Netscape), and run them with a single click.

    Credit: The site which gave us the general idea for these bookmarklets is + www.bookmarklets.com. They + have more information about bookmarklets.

    14.3. Chain of Events

    Let's take a quick look at the basic sequence of events when a web page is + requested by your browser and Privoxy is on duty:

    • First, your web browser requests a web page. The browser knows to send + the request to Privoxy, which will in turn, + relay the request to the remote web server after passing the following + tests: +

    • Privoxy traps any request for its own internal CGI + pages (e.g http://p.p/) and sends the CGI page back to the browser. +

    • Next, Privoxy checks to see if the URL + matches any "+block" patterns. If + so, the URL is then blocked, and the remote web server will not be contacted. + "+handle-as-image" + is then checked and if it does not match, an + HTML "BLOCKED" page is sent back. Otherwise, if it does match, + an image is returned. The type of image depends on the setting of "+set-image-blocker" + (blank, checkerboard pattern, or an HTTP redirect to an image elsewhere). +

    • Untrusted URLs are blocked. If URLs are being added to the + trust file, then that is done. +

    • If the URL pattern matches the "+fast-redirects" action, + it is then processed. Unwanted parts of the requested URL are stripped. +

    • Now the rest of the client browser's request headers are processed. If any + of these match any of the relevant actions (e.g. "+hide-user-agent", + etc.), headers are suppressed or forged as determined by these actions and + their parameters. +

    • Now the web server starts sending its response back (i.e. typically a web page and related + data). +

    • First, the server headers are read and processed to determine, among other + things, the MIME type (document type) and encoding. The headers are then + filtered as deterimed by the + "+crunch-incoming-cookies", + "+session-cookies-only", + and "+downgrade-http-version" + actions. +

    • If the "+kill-popups" + action applies, and it is an HTML or JavaScript document, the popup-code in the + response is filtered on-the-fly as it is received. +

    • If a "+filter" + or "+deanimate-gifs" + action applies (and the document type fits the action), the rest of the page is + read into memory (up to a configurable limit). Then the filter rules (from + default.filter) are processed against the buffered + content. Filters are applied in the order they are specified in the + default.filter file. Animated GIFs, if present, are + reduced to either the first or last frame, depending on the action + setting.The entire page, which is now filtered, is then sent by + Privoxy back to your browser. +

      If neither "+filter" + or "+deanimate-gifs" + matches, then Privoxy passes the raw data through + to the client browser as it becomes available. +

    • As the browser receives the now (probably filtered) page content, it + reads and then requests any URLs that may be embedded within the page + source, e.g. ad images, stylesheets, JavaScript, other HTML documents (e.g. + frames), sounds, etc. For each of these objects, the browser issues a new + request. And each such request is in turn processed as above. Note that a + complex web page may have many such embedded URLs. +

    14.4. Anatomy of an Action

    The way Privoxy applies + actions and filters + to any given URL can be complex, and not always so + easy to understand what is happening. And sometimes we need to be able to + see just what Privoxy is + doing. Especially, if something Privoxy is doing + is causing us a problem inadvertently. It can be a little daunting to look at + the actions and filters files themselves, since they tend to be filled with + regular expressions whose consequences are not + always so obvious.

    One quick test to see if Privoxy is causing a problem + or not, is to disable it temporarily. This should be the first troubleshooting + step. See the Bookmarklets section on a quick + and easy way to do this (be sure to flush caches afterward!).

    Privoxy also provides the + http://config.privoxy.org/show-url-info + page that can show us very specifically how actions + are being applied to any given URL. This is a big help for troubleshooting.

    First, enter one URL (or partial URL) at the prompt, and then + Privoxy will tell us + how the current configuration will handle it. This will not + help with filtering effects (i.e. the "+filter" action) from + the default.filter file since this is handled very + differently and not so easy to trap! It also will not tell you about any other + URLs that may be embedded within the URL you are testing. For instance, images + such as ads are expressed as URLs within the raw page source of HTML pages. So + you will only get info for the actual URL that is pasted into the prompt area + -- not any sub-URLs. If you want to know about embedded URLs like ads, you + will have to dig those out of the HTML source. Use your browser's "View + Page Source" option for this. Or right click on the ad, and grab the + URL.

    Let's try an example, google.com, + and look at it one section at a time:

     Matches for http://google.com:
+
+ In file: default.action [ View ] [ Edit ]
+
+{-add-header 
+ -block 
+ -crunch-outgoing-cookies 
+ -crunch-incoming-cookies 
+ +deanimate-gifs{last} 
+ -downgrade-http-version 
+ +fast-redirects 
+ -filter{popups} 
+ -filter{fun} 
+ -filter{shockwave-flash} 
+ -filter{crude-parental} 
+ +filter{html-annoyances} 
+ +filter{js-annoyances} 
+ +filter{content-cookies} 
+ +filter{webbugs} 
+ +filter{refresh-tags} 
+ +filter{nimda} 
+ +filter{banners-by-size} 
+ +hide-forwarded-for-headers 
+ +hide-from-header{block} 
+ +hide-referer{forge} 
+ -hide-user-agent 
+ -handle-as-image 
+ -kill-popups 
+ -limit-connect 
+ +prevent-compression 
+ -send-vanilla-wafer 
+ -send-wafer 
+ +session-cookies-only 
+ +set-image-blocker{pattern} }
+/
+
+ { -session-cookies-only }
+ .google.com
+
+ { -fast-redirects }
+ .google.com
+
+In file: user.action [ View ] [ Edit ]
+(no matches in this file)

    This tells us how we have defined our + "actions", and + which ones match for our example, "google.com". The first listing + is any matches for the standard.action file. No hits at + all here on "standard". Then next is "default", or + our default.action file. The large, multi-line listing, + is how the actions are set to match for all URLs, i.e. our default settings. + If you look at your "actions" file, this would be the section + just below the "aliases" section near the top. This will apply to + all URLs as signified by the single forward slash at the end of the listing + -- "/".

    But we can define additional actions that would be exceptions to these general + rules, and then list specific URLs (or patterns) that these exceptions would + apply to. Last match wins. Just below this then are two explicit matches for + ".google.com". The first is negating our previous cookie setting, + which was for "+session-cookies-only" + (i.e. not persistent). So we will allow persistent cookies for google. The + second turns off any + "+fast-redirects" + action, allowing this to take place unmolested. Note that there is a leading + dot here -- ".google.com". This will match any hosts and + sub-domains, in the google.com domain also, such as + "www.google.com". So, apparently, we have these two actions + defined somewhere in the lower part of our default.action + file, and "google.com" is referenced somewhere in these latter + sections.

    Then, for our user.action file, we again have no hits.

    And finally we pull it all together in the bottom section and summarize how + Privoxy is applying all its "actions" + to "google.com": 

    
 Final results:
+ 
+ -add-header 
+ -block 
+ -crunch-outgoing-cookies 
+ -crunch-incoming-cookies 
+ +deanimate-gifs{last} 
+ -downgrade-http-version 
+ -fast-redirects 
+ -filter{popups} 
+ -filter{fun} 
+ -filter{shockwave-flash} 
+ -filter{crude-parental} 
+ +filter{html-annoyances} 
+ +filter{js-annoyances} 
+ +filter{content-cookies} 
+ +filter{webbugs} 
+ +filter{refresh-tags} 
+ +filter{nimda} 
+ +filter{banners-by-size} 
+ +hide-forwarded-for-headers 
+ +hide-from-header{block} 
+ +hide-referer{forge} 
+ -hide-user-agent 
+ -handle-as-image 
+ -kill-popups 
+ -limit-connect 
+ +prevent-compression 
+ -send-vanilla-wafer 
+ -send-wafer
+ -session-cookies-only 
+ +set-image-blocker{pattern}

    Notice the only difference here to the previous listing, is to + "fast-redirects" and "session-cookies-only".

    Now another example, "ad.doubleclick.net":

    
 { +block +handle-as-image }
+  .ad.doubleclick.net
+
+ { +block +handle-as-image }
+  ad*.
+
+ { +block +handle-as-image }
+  .doubleclick.net

    We'll just show the interesting part here, the explicit matches. It is + matched three different times. Each as an "+block +handle-as-image", + which is the expanded form of one of our aliases that had been defined as: + "+imageblock". ("Aliases" are defined in + the first section of the actions file and typically used to combine more + than one action.)

    Any one of these would have done the trick and blocked this as an unwanted + image. This is unnecessarily redundant since the last case effectively + would also cover the first. No point in taking chances with these guys + though ;-) Note that if you want an ad or obnoxious + URL to be invisible, it should be defined as "ad.doubleclick.net" + is done here -- as both a "+block" + and an + "+handle-as-image". + The custom alias "+imageblock" just simplifies the process and make + it more readable.

    One last example. Let's try "http://www.rhapsodyk.net/adsl/HOWTO/". + This one is giving us problems. We are getting a blank page. Hmmm...

    
 Matches for http://www.rhapsodyk.net/adsl/HOWTO/:
+
+ In file: default.action [ View ] [ Edit ]
+
+ {-add-header 
+  -block 
+  -crunch-incoming-cookies 
+  -crunch-outgoing-cookies 
+  +deanimate-gifs 
+  -downgrade-http-version 
+  +fast-redirects 
+  +filter{html-annoyances} 
+  +filter{js-annoyances} 
+  +filter{kill-popups} 
+  +filter{webbugs} 
+  +filter{nimda} 
+  +filter{banners-by-size} 
+  +filter{hal} 
+  +filter{fun} 
+  +hide-forwarded-for-headers 
+  +hide-from-header{block} 
+  +hide-referer{forge} 
+  -hide-user-agent 
+  -handle-as-image 
+  +kill-popups 
+  +prevent-compression 
+  -send-vanilla-wafer 
+  -send-wafer 
+  +session-cookies-only 
+  +set-image-blocker{blank} }
+   /
+
+ { +block +handle-as-image }
+  /ads

    Ooops, the "/adsl/" is matching "/ads"! But + we did not want this at all! Now we see why we get the blank page. We could + now add a new action below this that explicitly does not + block ("{-block}") paths with "adsl". There are + various ways to handle such exceptions. Example:

    
 { -block }
+  /adsl

    Now the page displays ;-) Be sure to flush your browser's caches when + making such changes. Or, try using Shift+Reload.

    But now what about a situation where we get no explicit matches like + we did with:

    
 { +block +handle-as-image }
+ /ads

    That actually was very telling and pointed us quickly to where the problem + was. If you don't get this kind of match, then it means one of the default + rules in the first section is causing the problem. This would require some + guesswork, and maybe a little trial and error to isolate the offending rule. + One likely cause would be one of the "{+filter}" actions. Try + adding the URL for the site to one of aliases that turn off "+filter":

    
 {shop}
+ .quietpc.com
+ .worldpay.com   # for quietpc.com
+ .jungle.com
+ .scan.co.uk
+ .forbes.com

    "{shop}" is an "alias" that expands to + "{ -filter -session-cookies-only }". + Or you could do your own exception to negate filtering: 

    
 {-filter}
+ .forbes.com

    This would probably be most appropriately put in user.action, + for local site exceptions.

    "{fragile}" is an alias that disables most actions. This can be + used as a last resort for problem sites. Remember to flush caches! If this + still does not work, you will have to go through the remaining actions one by + one to find which one(s) is causing the problem.

    PrevHome 
    See Also  
    \ No newline at end of file diff --git a/doc/webserver/user-manual/config.html b/doc/webserver/user-manual/config.html new file mode 100644 index 00000000..1e7d197d --- /dev/null +++ b/doc/webserver/user-manual/config.html @@ -0,0 +1,2959 @@ +The Main Configuration File
    Privoxy User Manual
    PrevNext

    7. The Main Configuration File

    Again, the main configuration file is named config on + Linux/Unix/BSD and OS/2, and config.txt on Windows. + Configuration lines consist of an initial keyword followed by a list of + values, all separated by whitespace (any number of spaces or tabs). For + example:

      confdir /etc/privoxy

    +

    Assigns the value /etc/privoxy to the option + confdir and thus indicates that the configuration + directory is named "/etc/privoxy/".

    All options in the config file except for confdir and + logdir are optional. Watch out in the below description + for what happens if you leave them unset.

    The main config file controls all aspects of Privoxy's + operation that are not location dependent (i.e. they apply universally, no matter + where you may be surfing).

    7.1. Configuration and Log File Locations

    Privoxy can (and normally does) use a number of + other files for additional configuration, help and logging. + This section of the configuration file tells Privoxy + where to find those other files.

    The user running Privoxy, must have read permission for all + configuration files, and write permission to any files that would + be modified, such as log files.

    7.1.1. confdir

    Specifies:

    The directory where the other configuration files are located

    Type of value:

    Path name

    Default value:

    /etc/privoxy (Unix) or Privoxy installation dir (Windows)

    Effect if unset:

    Mandatory

    Notes:

    No trailing "/", please +

    When development goes modular and multi-user, the blocker, filter, and + per-user config will be stored in subdirectories of "confdir". + For now, the configuration directory structure is flat, except for + confdir/templates, where the HTML templates for CGI + output reside (e.g. Privoxy's 404 error page). +

    7.1.2. logdir

    Specifies:

    The directory where all logging takes place (i.e. where logfile and + jarfile are located) +

    Type of value:

    Path name

    Default value:

    /var/log/privoxy (Unix) or Privoxy installation dir (Windows)

    Effect if unset:

    Mandatory

    Notes:

    No trailing "/", please +

    7.1.3. actionsfile

    Specifies:

    The actions file(s) to use +

    Type of value:

    File name, relative to confdir, without the .action suffix

    Default values:

      standard     # Internal purposes, no editing recommended

    +

      default      # Main actions file

    +

      user         # User customizations

    +

    Effect if unset:

    No actions are taken at all. Simple neutral proxying. +

    Notes:

    Multiple actionsfile lines are permitted, and are in fact recommended! +

    + The default values include standard.action, which is used for internal + purposes and should be loaded, default.action, which is the + "main" actions file maintained by the developers, and + user.action, where you can make your personal additions. +

    + Actions files are where all the per site and per URL configuration is done for + ad blocking, cookie management, privacy considerations, etc. + There is no point in using Privoxy without at + least one actions file. +

    7.1.4. filterfile

    Specifies:

    The filter file to use +

    Type of value:

    File name, relative to confdir

    Default value:

    default.filter (Unix) or default.filter.txt (Windows)

    Effect if unset:

    No textual content filtering takes place, i.e. all + +filter{name} + actions in the actions files are turned neutral. +

    Notes:

    The filter file contains content modification + rules that use regular expressions. These rules permit + powerful changes on the content of Web pages, e.g., you could disable your favorite + JavaScript annoyances, re-write the actual displayed text, or just have some + fun replacing "Microsoft" with "MicroSuck" wherever + it appears on a Web page. +

    The + +filter{name} + actions rely on the relevant filter (name) + to be defined in the filter file! +

    A pre-defined filter file called default.filter that contains + a bunch of handy filters for common problems is included in the distribution. + See the section on the filter + action for a list. +

    7.1.5. logfile

    Specifies:

    The log file to use +

    Type of value:

    File name, relative to logdir

    Default value:

    logfile (Unix) or privoxy.log (Windows)

    Effect if unset:

    No log file is used, all log messages go to the console (stderr). +

    Notes:

    The windows version will additionally log to the console. +

    The logfile is where all logging and error messages are written. The level + of detail and number of messages are set with the debug + option (see below). The logfile can be useful for tracking down a problem with + Privoxy (e.g., it's not blocking an ad you + think it should block) but in most cases you probably will never look at it. +

    Your logfile will grow indefinitely, and you will probably want to + periodically remove it. On Unix systems, you can do this with a cron job + (see "man cron"). For Red Hat, a logrotate + script has been included. +

    On SuSE Linux systems, you can place a line like "/var/log/privoxy.* + +1024k 644 nobody.nogroup" in /etc/logfiles, with + the effect that cron.daily will automatically archive, gzip, and empty the + log, when it exceeds 1M size. +

    Any log files must be writable by whatever user Privoxy + is being run as (default on UNIX, user id is "privoxy"). +

    7.1.6. jarfile

    Specifies:

    The file to store intercepted cookies in +

    Type of value:

    File name, relative to logdir

    Default value:

    jarfile (Unix) or privoxy.jar (Windows)

    Effect if unset:

    Intercepted cookies are not stored at all. +

    Notes:

    The jarfile may grow to ridiculous sizes over time. +

    7.1.7. trustfile

    Specifies:

    The trust file to use +

    Type of value:

    File name, relative to confdir

    Default value:

    Unset (commented out). When activated: trust (Unix) or trust.txt (Windows)

    Effect if unset:

    The whole trust mechanism is turned off. +

    Notes:

    The trust mechanism is an experimental feature for building white-lists and should + be used with care. It is NOT recommended for the casual user. +

    If you specify a trust file, Privoxy will only allow + access to sites that are named in the trustfile. + You can also mark sites as trusted referrers (with +), with + the effect that access to untrusted sites will be granted, if a link from a + trusted referrer was used. + The link target will then be added to the "trustfile". + Possible applications include limiting Internet access for children. +

    If you use + operator in the trust file, it may grow considerably over time. +

    7.2. Local Set-up Documentation

    If you intend to operate Privoxy for more users + than just yourself, it might be a good idea to let them know how to reach + you, what you block and why you do that, your policies, etc. +

    7.2.1. user-manual

    Specifies:

    Location of the Privoxy User Manual. +

    Type of value:

    A fully qualified URI

    Default value:

    Unset

    Effect if unset:

    http://www.privoxy.org/version/user-manual/ + will be used, where version is the Privoxy version. +

    Notes:

    The User Manual URI is used for help links from some of the internal CGI pages. + The manual itself is normally packaged with the binary distributions, so you probably want + to set this to a locally installed copy. For multi-user setups, you could provide a copy on + a local webserver for all your users and use the corresponding URL here. +

    Examples: +

    Unix, in local filesystem: + 

    user-manual  file:///usr/share/doc/privoxy-2.9.15/user-manual/
    +

    Any platform, on local webserver (called "local-webserver"): + 

    user-manual  http://local-webserver/privoxy-user-manual/
    +

    Warning

    If set, this option should be the first option in the config file, because + it is used while the config file is being read. +

    7.2.2. trust-info-url

    Specifies:

    A URL to be displayed in the error page that users will see if access to an untrusted page is denied. +

    Type of value:

    URL

    Default value:

    Two example URL are provided

    Effect if unset:

    No links are displayed on the "untrusted" error page. +

    Notes:

    The value of this option only matters if the experimental trust mechanism has been + activated. (See trustfile above.) +

    If you use the trust mechanism, it is a good idea to write up some on-line + documentation about your trust policy and to specify the URL(s) here. + Use multiple times for multiple URLs. +

    The URL(s) should be added to the trustfile as well, so users don't end up + locked out from the information on why they were locked out in the first place! +

    7.2.3. admin-address

    Specifies:

    An email address to reach the proxy administrator. +

    Type of value:

    Email address

    Default value:

    Unset

    Effect if unset:

    No email address is displayed on error pages and the CGI user interface. +

    Notes:

    If both admin-address and proxy-info-url + are unset, the whole "Local Privoxy Support" box on all generated pages will + not be shown. +

    7.2.4. proxy-info-url

    Specifies:

    A URL to documentation about the local Privoxy setup, + configuration or policies. +

    Type of value:

    URL

    Default value:

    Unset

    Effect if unset:

    No link to local documentation is displayed on error pages and the CGI user interface. +

    Notes:

    If both admin-address and proxy-info-url + are unset, the whole "Local Privoxy Support" box on all generated pages will + not be shown. +

    This URL shouldn't be blocked ;-) +

    7.3. Debugging

    These options are mainly useful when tracing a problem. + Note that you might also want to invoke + Privoxy with the --no-daemon + command line option when debugging. +

    7.3.1. debug

    Specifies:

    Key values that determine what information gets logged to the + logfile. +

    Type of value:

    Integer values

    Default value:

    12289 (i.e.: URLs plus informational and warning messages)

    Effect if unset:

    Nothing gets logged. +

    Notes:

    The available debug levels are: + 

      debug         1 # show each GET/POST/CONNECT request
+  debug         2 # show each connection status
+  debug         4 # show I/O status
+  debug         8 # show header parsing
+  debug        16 # log all data into the logfile
+  debug        32 # debug force feature
+  debug        64 # debug regular expression filter 
+  debug       128 # debug fast redirects
+  debug       256 # debug GIF de-animation
+  debug       512 # Common Log Format
+  debug      1024 # debug kill pop-ups
+  debug      4096 # Startup banner and warnings.
+  debug      8192 # Non-fatal errors
    +

    To select multiple debug levels, you can either add them or use + multiple debug lines. +

    A debug level of 1 is informative because it will show you each request + as it happens. 1, 4096 and 8192 are highly recommended + so that you will notice when things go wrong. The other levels are probably + only of interest if you are hunting down a specific problem. They can produce + a hell of an output (especially 16). + +

    The reporting of fatal errors (i.e. ones which crash + Privoxy) is always on and cannot be disabled. +

    If you want to use CLF (Common Log Format), you should set "debug + 512" ONLY and not enable anything else. +

    7.3.2. single-threaded

    Specifies:

    Whether to run only one server thread +

    Type of value:

    None

    Default value:

    Unset

    Effect if unset:

    Multi-threaded (or, where unavailable: forked) operation, i.e. the ability to + serve multiple requests simultaneously. +

    Notes:

    This option is only there for debug purposes and you should never + need to use it. It will drastically reduce performance. +

    7.4. Access Control and Security

    This section of the config file controls the security-relevant aspects + of Privoxy's configuration. +

    7.4.1. listen-address

    Specifies:

    The IP address and TCP port on which Privoxy will + listen for client requests. +

    Type of value:

    [IP-Address]:Port

    Default value:

    127.0.0.1:8118

    Effect if unset:

    Bind to 127.0.0.1 (localhost), port 8118. This is suitable and recommended for + home users who run Privoxy on the same machine as + their browser. +

    Notes:

    You will need to configure your browser(s) to this proxy address and port. +

    If you already have another service running on port 8118, or if you want to + serve requests from other machines (e.g. on your local network) as well, you + will need to override the default. +

    If you leave out the IP address, Privoxy will + bind to all interfaces (addresses) on your machine and may become reachable + from the Internet. In that case, consider using access control lists (ACL's, see below), and/or + a firewall. +

    If you open Privoxy to untrusted users, you will + also want to turn off the enable-edit-actions and + enable-remote-toggle + options! +

    Example:

    Suppose you are running Privoxy on + a machine which has the address 192.168.0.1 on your local private network + (192.168.0.0) and has another outside connection with a different address. + You want it to serve requests from inside only: + 

      listen-address  192.168.0.1:8118
    +

    7.4.2. toggle

    Specifies:

    Initial state of "toggle" status +

    Type of value:

    1 or 0

    Default value:

    1

    Effect if unset:

    Act as if toggled on +

    Notes:

    If set to 0, Privoxy will start in + "toggled off" mode, i.e. behave like a normal, content-neutral + proxy where all ad blocking, filtering, etc are disabled. See + enable-remote-toggle below. This is not really useful + anymore, since toggling is much easier via the web interface than via + editing the conf file. +

    The windows version will only display the toggle icon in the system tray + if this option is present. +

    7.4.3. enable-remote-toggle

    Specifies:

    Whether or not the web-based toggle + feature may be used +

    Type of value:

    0 or 1

    Default value:

    1

    Effect if unset:

    The web-based toggle feature is disabled. +

    Notes:

    When toggled off, Privoxy acts like a normal, + content-neutral proxy, i.e. it acts as if none of the actions applied to + any URL. +

    For the time being, access to the toggle feature can not be + controlled separately by "ACLs" or HTTP authentication, + so that everybody who can access Privoxy (see + "ACLs" and listen-address above) can + toggle it for all users. So this option is not recommended + for multi-user environments with untrusted users. +

    Note that you must have compiled Privoxy with + support for this feature, otherwise this option has no effect. +

    7.4.4. enable-edit-actions

    Specifies:

    Whether or not the web-based actions + file editor may be used +

    Type of value:

    0 or 1

    Default value:

    1

    Effect if unset:

    The web-based actions file editor is disabled. +

    Notes:

    For the time being, access to the editor can not be + controlled separately by "ACLs" or HTTP authentication, + so that everybody who can access Privoxy (see + "ACLs" and listen-address above) can + modify its configuration for all users. So this option is not + recommended for multi-user environments with untrusted users. +

    Note that you must have compiled Privoxy with + support for this feature, otherwise this option has no effect. +

    7.4.5. ACLs: permit-access and deny-access

    Specifies:

    Who can access what. +

    Type of value:

    src_addr[/src_masklen] + [dst_addr[/dst_masklen]] +

    Where src_addr and + dst_addr are IP addresses in dotted decimal notation or valid + DNS names, and src_masklen and + dst_masklen are subnet masks in CIDR notation, i.e. integer + values from 2 to 30 representing the length (in bits) of the network address. The masks and the whole + destination part are optional. +

    Default value:

    Unset

    Effect if unset:

    Don't restrict access further than implied by listen-address +

    Notes:

    Access controls are included at the request of ISPs and systems + administrators, and are not usually needed by individual users. + For a typical home user, it will normally suffice to ensure that + Privoxy only listens on the localhost + (127.0.0.1) or internal (home) network address by means of the + listen-address + option. +

    Please see the warnings in the FAQ that this proxy is not intended to be a substitute + for a firewall or to encourage anyone to defer addressing basic security + weaknesses. +

    Multiple ACL lines are OK. + If any ACLs are specified, then the Privoxy + talks only to IP addresses that match at least one permit-access line + and don't match any subsequent deny-access line. In other words, the + last match wins, with the default being deny-access. +

    If Privoxy is using a forwarder (see forward below) + for a particular destination URL, the dst_addr + that is examined is the address of the forwarder and NOT the address + of the ultimate target. This is necessary because it may be impossible for the local + Privoxy to determine the IP address of the + ultimate target (that's often what gateways are used for). +

    You should prefer using IP addresses over DNS names, because the address lookups take + time. All DNS names must resolve! You can not use domain patterns + like "*.org" or partial domain names. If a DNS name resolves to multiple + IP addresses, only the first one is used. +

    Denying access to particular sites by ACL may have undesired side effects + if the site in question is hosted on a machine which also hosts other sites. +

    Examples:

    Explicitly define the default behavior if no ACL and + listen-address are set: "localhost" + is OK. The absence of a dst_addr implies that + all destination addresses are OK: + 

      permit-access  localhost
    +

    Allow any host on the same class C subnet as www.privoxy.org access to + nothing but www.example.com: + 

      permit-access  www.privoxy.org/24 www.example.com/32
    +

    Allow access from any host on the 26-bit subnet 192.168.45.64 to anywhere, + with the exception that 192.168.45.73 may not access www.dirty-stuff.example.com: + 

      permit-access  192.168.45.64/26
+  deny-access    192.168.45.73    www.dirty-stuff.example.com
    +

    7.4.6. buffer-limit

    Specifies:

    Maximum size of the buffer for content filtering. +

    Type of value:

    Size in Kbytes

    Default value:

    4096

    Effect if unset:

    Use a 4MB (4096 KB) limit. +

    Notes:

    For content filtering, i.e. the +filter and + +deanimate-gif actions, it is necessary that + Privoxy buffers the entire document body. + This can be potentially dangerous, since a server could just keep sending + data indefinitely and wait for your RAM to exhaust -- with nasty consequences. + Hence this option. +

    When a document buffer size reaches the buffer-limit, it is + flushed to the client unfiltered and no further attempt to + filter the rest of the document is made. Remember that there may be multiple threads + running, which might require up to buffer-limit Kbytes + each, unless you have enabled "single-threaded" + above. +

    7.5. Forwarding

    This feature allows routing of HTTP requests through a chain of + multiple proxies. + It can be used to better protect privacy and confidentiality when + accessing specific domains by routing requests to those domains + through an anonymous public proxy (see e.g. http://www.multiproxy.org/anon_list.htm) + Or to use a caching proxy to speed up browsing. Or chaining to a parent + proxy may be necessary because the machine that Privoxy + runs on has no direct Internet access.

    Also specified here are SOCKS proxies. Privoxy + supports the SOCKS 4 and SOCKS 4A protocols.

    7.5.1. forward

    Specifies:

    To which parent HTTP proxy specific requests should be routed. +

    Type of value:

    target_domain[:port] + http_parent[/port] +

    Where target_domain is a domain name pattern (see the + chapter on domain matching in the default.action file), + http_parent is the address of the parent HTTP proxy + as an IP addresses in dotted decimal notation or as a valid DNS name (or "." to denote + "no forwarding", and the optional + port parameters are TCP ports, i.e. integer + values from 1 to 64535 +

    Default value:

    Unset

    Effect if unset:

    Don't use parent HTTP proxies. +

    Notes:

    If http_parent is ".", then requests are not + forwarded to another HTTP proxy but are made directly to the web servers. +

    Multiple lines are OK, they are checked in sequence, and the last match wins. +

    Examples:

    Everything goes to an example anonymizing proxy, except SSL on port 443 (which it doesn't handle): + 

      forward   .*     anon-proxy.example.org:8080
+  forward   :443   .
    +

    Everything goes to our example ISP's caching proxy, except for requests + to that ISP's sites: + 

      forward   .*.                caching-proxy.example-isp.net:8000
+  forward   .example-isp.net   .
    +

    7.5.2. forward-socks4 and forward-socks4a

    Specifies:

    Through which SOCKS proxy (and to which parent HTTP proxy) specific requests should be routed. +

    Type of value:

    target_domain[:port] + socks_proxy[/port] + http_parent[/port] +

    Where target_domain is a domain name pattern (see the + chapter on domain matching in the default.action file), + http_parent and socks_proxy + are IP addresses in dotted decimal notation or valid DNS names (http_parent + may be "." to denote "no HTTP forwarding"), and the optional + port parameters are TCP ports, i.e. integer values from 1 to 64535 +

    Default value:

    Unset

    Effect if unset:

    Don't use SOCKS proxies. +

    Notes:

    Multiple lines are OK, they are checked in sequence, and the last match wins. +

    The difference between forward-socks4 and forward-socks4a + is that in the SOCKS 4A protocol, the DNS resolution of the target hostname happens on the SOCKS + server, while in SOCKS 4 it happens locally. +

    If http_parent is ".", then requests are not + forwarded to another HTTP proxy but are made (HTTP-wise) directly to the web servers, albeit through + a SOCKS proxy. +

    Examples:

    From the company example.com, direct connections are made to all + "internal" domains, but everything outbound goes through + their ISP's proxy by way of example.com's corporate SOCKS 4A gateway to + the Internet. + 

      forward-socks4a   .*.            socks-gw.example.com:1080  www-cache.example-isp.net:8080
+  forward           .example.com   .
    +

    A rule that uses a SOCKS 4 gateway for all destinations but no HTTP parent looks like this: + 

      forward-socks4   .*.            socks-gw.example.com:1080  .
    +

    7.5.3. Advanced Forwarding Examples

    If you have links to multiple ISPs that provide various special content + only to their subscribers, you can configure multiple Privoxies + which have connections to the respective ISPs to act as forwarders to each other, so that + your users can see the internal content of all ISPs.

    Assume that host-a has a PPP connection to isp-a.net. And host-b has a PPP connection to + isp-b.net. Both run Privoxy. Their forwarding + configuration can look like this:

    host-a:

      forward    .*.         .
+  forward    .isp-b.net  host-b:8118

    host-b:

      forward    .*.         .
+  forward    .isp-a.net  host-a:8118

    Now, your users can set their browser's proxy to use either + host-a or host-b and be able to browse the internal content + of both isp-a and isp-b.

    If you intend to chain Privoxy and + squid locally, then chain as + browser -> squid -> privoxy is the recommended way.

    Assuming that Privoxy and squid + run on the same box, your squid configuration could then look like this:

      # Define Privoxy as parent proxy (without ICP) 
+  cache_peer 127.0.0.1 parent 8118 7 no-query 
+
+  # Define ACL for protocol FTP 
+  acl ftp proto FTP 
+
+  # Do not forward FTP requests to Privoxy
+  always_direct allow ftp 
+
+  # Forward all the rest to Privoxy
+  never_direct allow all

    You would then need to change your browser's proxy settings to squid's address and port. + Squid normally uses port 3128. If unsure consult http_port in squid.conf.

    7.6. Windows GUI Options

    Privoxy has a number of options specific to the + Windows GUI interface:

    If "activity-animation" is set to 1, the + Privoxy icon will animate when + "Privoxy" is active. To turn off, set to 0.

      activity-animation 1
    +   

    +

    If "log-messages" is set to 1, + Privoxy will log messages to the console + window:

      log-messages 1
    +   

    +

    + If "log-buffer-size" is set to 1, the size of the log buffer, + i.e. the amount of memory used for the log messages displayed in the + console window, will be limited to "log-max-lines" (see below).

    Warning: Setting this to 0 will result in the buffer to grow infinitely and + eat up all your memory!

      log-buffer-size 1
    +   

    +

    log-max-lines is the maximum number of lines held + in the log buffer. See above.

      log-max-lines 200
    +   

    +

    If "log-highlight-messages" is set to 1, + Privoxy will highlight portions of the log + messages with a bold-faced font:

      log-highlight-messages 1
    +   

    +

    The font used in the console window:

      log-font-name Comic Sans MS
    +   

    +

    Font size used in the console window:

      log-font-size 8
    +   

    +

    + "show-on-task-bar" controls whether or not + Privoxy will appear as a button on the Task bar + when minimized:

      show-on-task-bar 0
    +   

    +

    If "close-button-minimizes" is set to 1, the Windows close + button will minimize Privoxy instead of closing + the program (close with the exit option on the File menu).

      close-button-minimizes 1
    +   

    +

    The "hide-console" option is specific to the MS-Win console + version of Privoxy. If this option is used, + Privoxy will disconnect from and hide the + command console.

      #hide-console
    +   

    +

    PrevHomeNext
    Privoxy Configuration Actions Files
    \ No newline at end of file diff --git a/doc/webserver/user-manual/configuration.html b/doc/webserver/user-manual/configuration.html new file mode 100644 index 00000000..e4bbe096 --- /dev/null +++ b/doc/webserver/user-manual/configuration.html @@ -0,0 +1,481 @@ +Privoxy Configuration
    Privoxy User Manual
    PrevNext

    6. Privoxy Configuration

    All Privoxy configuration is stored + in text files. These files can be edited with a text editor. + Many important aspects of Privoxy can + also be controlled easily with a web browser. +

    6.1. Controlling Privoxy with Your Web Browser

    Privoxy's user interface can be reached through the special + URL http://config.privoxy.org/ + (shortcut: http://p.p/), + which is a built-in page and works without Internet access. + You will see the following section: 

     
    Privoxy Menu
              ▪  View & change the current configuration
+ 
              ▪  View the source code version numbers
+ 
              ▪  View the request headers.
+ 
              ▪  Look up which actions apply to a URL and why
+ 
              ▪  Toggle Privoxy on or off
+

    This should be self-explanatory. Note the first item leads to an editor for the + actions files, which is where the ad, banner, + cookie, and URL blocking magic is configured as well as other advanced features of + Privoxy. This is an easy way to adjust various + aspects of Privoxy configuration. The actions + file, and other configuration files, are explained in detail below.

    "Toggle Privoxy On or Off" is handy for sites that might + have problems with your current actions and filters. You can in fact use + it as a test to see whether it is Privoxy + causing the problem or not. Privoxy continues + to run as a proxy in this case, but all manipulation is disabled, i.e. + Privoxy acts like a normal forwarding proxy. There + is even a toggle Bookmarklet offered, so + that you can toggle Privoxy with one click from + your browser.

    6.2. Configuration Files Overview

    For Unix, *BSD and Linux, all configuration files are located in + /etc/privoxy/ by default. For MS Windows, OS/2, and + AmigaOS these are all in the same directory as the + Privoxy executable. The name + and number of configuration files has changed from previous versions, and is + subject to change as development progresses.

    The installed defaults provide a reasonable starting point, though + some settings may be aggressive by some standards. For the time being, the + principle configuration files are:

    • The main configuration file is named config + on Linux, Unix, BSD, OS/2, and AmigaOS and config.txt + on Windows. This is a required file. +

    • default.action (the main actions file) + is used to define which "actions" relating to banner-blocking, images, pop-ups, + content modification, cookie handling etc should be applied by default. It also defines many + exceptions (both positive and negative) from this default set of actions that enable + Privoxy to selectively eliminate the junk, and only the junk, on + as many websites as possible. +

      Multiple actions files may be defined in config. These + are processed in the order they are defined. Local customizations and locally + preferred exceptions to the default policies as defined in + default.action (which you will most probably want + to define sooner or later) are probably best applied in + user.action, where you can preserve them across + upgrades. standard.action is for + Privoxy's internal use. +

      + There is also a web based editor that can be accessed from + http://config.privoxy.org/show-status + (Shortcut: http://p.p/show-status) for the + various actions files. +

    • default.filter (the filter + file) can be used to re-write the raw page content, including + viewable text as well as embedded HTML and JavaScript, and whatever else + lurks on any given web page. The filtering jobs are only pre-defined here; + whether to apply them or not is up to the actions files. +

    All files use the "#" character to denote a + comment (the rest of the line will be ignored) and understand line continuation + through placing a backslash ("\") as the very last character + in a line. If the # is preceded by a backslash, it looses + its special function. Placing a # in front of an otherwise + valid configuration line to prevent it from being interpreted is called "commenting + out" that line.

    The actions files and default.filter + can use Perl style regular expressions for + maximum flexibility.

    After making any changes, there is no need to restart + Privoxy in order for the changes to take + effect. Privoxy detects such changes + automatically. Note, however, that it may take one or two additional + requests for the change to take effect. When changing the listening address + of Privoxy, these "wake up" requests + must obviously be sent to the old listening address.

    While under development, the configuration content is subject to change. + The below documentation may not be accurate by the time you read this. + Also, what constitutes a "default" setting, may change, so + please check all your configuration files on important issues.

    PrevHomeNext
    Starting Privoxy The Main Configuration File
    \ No newline at end of file diff --git a/doc/webserver/user-manual/contact.html b/doc/webserver/user-manual/contact.html new file mode 100644 index 00000000..8e67ad83 --- /dev/null +++ b/doc/webserver/user-manual/contact.html @@ -0,0 +1,313 @@ +Contacting the Developers, Bug Reporting and Feature +Requests
    Privoxy User Manual
    PrevNext

    11. Contacting the Developers, Bug Reporting and Feature +Requests

    We value your feedback. In fact, we rely on it to improve + Privoxy and its configuration. + However, please note the following hints, so we can + provide you with the best support:

    11.1. Get Support

    For casual users, our support forum at + SourceForge + is probably best suited: + http://sourceforge.net/tracker/?group_id=11118&atid=211118

    All users are of course welcome to discuss their issues on the users + mailing list, where the developers also hang around.

    11.2. Report Bugs

    Please report all bugs only through our + bug tracker: + http://sourceforge.net/tracker/?group_id=11118&atid=111118.

    Before doing so, please make sure that the bug has not already been submitted + and observe the aditional hints at the top of the submit + form.

    + Please try to verify that it is a Privoxy bug, + and not a browser or site bug first. If unsure, + try toggling + off Privoxy, and see if the problem persists. + The appendix + of the user manual also has helpful information + on action debugging. If you are using your own custom configuration, please try + the stock configs to see if the problem is configuration related.

    If not using the latest version, chances are that the bug has been found + and fixed in the meantime. We would appreciate if you could take the time + to upgrade + to the latest version (or even the latest CVS snapshot) and verify + your bug, but this is not required for reporting.

    11.3. Request New Features

    You are welcome to submit ideas on new features or other proposals + for improvement through our feature request tracker at + http://sourceforge.net/tracker/?atid=361118&group_id=11118.

    11.4. Report Ads or Other Actions-Related Problems

    Please send feedback on ads that slipped through, innocent images that were blocked, + and any other problems relating to the default.action file through + our actions feedback mechanism located at + http://www.privoxy.org/actions/. + On this page, you will also find a bookmark which will take you back there from + any troubled site and even pre-fill the form!

    New, improved default.action files will occasionally be made + available based on your feedback. These will be announced on the ijbswa-announce + list and available from our project page.

    11.5. Other

    For any other issues, feel free to use the mailing lists. Technically interested users +and people who wish to contribute to the project are also welcome on the developers list! +You can find an overview of all Prixoxy-related mailing lists, +including list archives, at: +http://sourceforge.net/mail/?group_id=11118.

    PrevHomeNext
    Templates Privoxy Copyright, License and History
    \ No newline at end of file diff --git a/doc/webserver/user-manual/copyright.html b/doc/webserver/user-manual/copyright.html new file mode 100644 index 00000000..81cbf4ae --- /dev/null +++ b/doc/webserver/user-manual/copyright.html @@ -0,0 +1,354 @@ +Privoxy Copyright, License and History
    Privoxy User Manual
    PrevNext

    12. Privoxy Copyright, License and History

    Copyright © 2001, 2002 by Privoxy Developers <developers@privoxy.org>

    Some source code is based on code Copyright © 1997 by Anonymous Coders + and Junkbusters, Inc. and licensed under the GNU General Public + License.

    12.1. License

    Privoxy is free software; you can + redistribute it and/or modify it under the terms of the + GNU General Public + License, version 2, as published by the Free Software Foundation.

    This program is distributed in the hope that it will be useful, but WITHOUT + ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for + + more details, which is available from the Free Software Foundation, Inc, 59 + Temple Place - Suite 330, Boston, MA 02111-1307, USA.

    You should have received a copy of the GNU General Public License + along with this program; if not, write to the

     Free Software
    + Foundation, Inc. 59 Temple Place - Suite 330
    BostonMA 02111-1307
    USA 

    12.2. History

    In the beginning, there was the + Internet Junkbuster, + by Anonymous Coders and Junkbusters + Corporation. It saved many users a lot of pain in the early days of + web advertising and user tracking.

    But the web, its protocols and standards, and with it, the techniques for + forcing users to consume ads, give up autonomy over their browsing, and + for spying on them, kept evolving. Unfortunately, the Internet + Junkbuster did not. Version 2.0.2, published in 1998, was + (and is) the last official + release + available from Junkbusters Corporation. + Fortunately, it had been released under the GNU + GPL, which allowed further + development by others.

    So Stefan Waldherr started maintaining an + improved version of the + software, to which eventually a number of people contributed patches. + It could already replace banners with a transparent image, and had a first + version of pop-up killing, but it was still very closely based on the + original, with all its limitations, such as the lack of HTTP/1.1 support, + flexible per-site configuration, or content modification. The last release + from this effort was version 2.0.2-10, published in 2000.

    Then, some + developers + picked up the thread, and started turning the software inside out, upside down, + and then reassembled it, adding many + new + features along the way.

    The result of this is Privoxy, whose first + stable release, 3.0, is due in May 2002.

    12.3. Authors

    Current Project Developers:

     Jon Foster
    + Andreas Oesterhelt
    + Stefan Waldherr

    + Thomas Steudten
    + Rodney Stromlund

    Current Project Contributors:

     Rodrigo Barbosa (RPM specfiles)
    + Hal Burgiss (docs)
    + Alexander Lazic
    + Gábor Lipták
    + Guy
    + Haroon Rafique
    + David Schmidt (OS/2, Mac OSX ports)
    + Joerg Strohmayer
    + Sarantis Paskalis

    Originally developed by:

     Junkbusters Corp.
    + Anonymous Coders

    Thanks to the many people who have tested Privoxy, reported bugs, or made + suggestions. These include (in alphabetical order):

     Ken Arromdee
    + Reiner Buehl
    + Andrew J. Caines
    + Clifford Caoile
    + Peter E
    + Aaron Hamid
    + Magnus Holmgren
    + Paul Lieverse
    + Roberto Ragusa
    + Bart Schelstraete
    + Darren Wiebe

    PrevHomeNext
    Contacting the Developers, Bug Reporting and Feature +Requests See Also
    \ No newline at end of file diff --git a/doc/webserver/user-manual/filter-file.html b/doc/webserver/user-manual/filter-file.html new file mode 100644 index 00000000..64b2c74f --- /dev/null +++ b/doc/webserver/user-manual/filter-file.html @@ -0,0 +1,772 @@ +The Filter File
    Privoxy User Manual
    PrevNext

    9. The Filter File

    All text substitutions that can be invoked through the + filter action + must first be defined in the filter file, which is typically + called default.filter and which can be + selected through the filterfile config + option.

    Typical reasons for doing such substitutions are to eliminate + common annoyances in HTML and JavaScript, such as pop-up windows, + exit consoles, crippled windows without navigation tools, the + infamous <BLINK> tag etc, to suppress images with certain + width and height attributes (standard banner sizes or web-bugs), + or just to have fun. The possibilities are endless.

    Filtering works on any text-based document type, including plain + text, HTML, JavaScript, CSS etc. (all text/* + MIME types). Substitutions are made at the source level, so if + you want to "roll your own" filters, you should be + familiar with HTML syntax.

    Just like the actions files, the + filter file is organized in sections, which are called filters + here. Each filter consists of a heading line, that starts with the + keyword FILTER:, followed by + the filter's name, and a short (one line) + description of what it does. Below that line + come the jobs, i.e. lines that define the actual + text substitutions. By convention, the name of a filter + should describe what the filter eliminates. The + comment is used in the web-based + user interface.

    Once a filter called name has been defined + in the filter file, it can be invoked by using an action of the form + +filter{name} + in any actions file.

    A filter header line for a filter called "foo" could look + like this:

    FILTER: foo Replace all "foo" with "bar"

    Below that line, and up to the next header line, come the jobs that + define what text replacements the filter executes. They are specified + in a syntax that imitates Perl's + s/// operator. If you are familiar with Perl, you + will find this to be quite intuitive, and may want to look at the + PCRS man page + for the subtle differences to Perl behaviour. Most notably, the non-standard + option letter U is supported, which turns the default + to ungreedy matching.

    If you are new to regular expressions, you might want to take a look at + the Appendix on regular expressions, and + see the Perl + manual for + the + s/// operator's syntax and Perl-style regular + expressions in general. + The below examples might also help to get you started.

    9.1. Filter File Tutorial

    Now, let's complete our "foo" filter. We have already defined + the heading, but the jobs are still missing. Since all it does is to replace + "foo" with "bar", there is only one (trivial) job + needed:

    s/foo/bar/

    But wait! Didn't the comment say that all occurrences + of "foo" should be replaced? Our current job will only take + care of the first "foo" on each page. For global substitution, + we'll need to add the g option:

    s/foo/bar/g

    Our complete filter now looks like this:

    FILTER: foo Replace all "foo" with "bar"
+s/foo/bar/g

    Let's look at some real filters for more interesting examples. Here you see + a filter that protects against some common annoyances that arise from JavaScript + abuse. Let's look at its jobs one after the other:

    FILTER: js-annoyances Get rid of particularly annoying JavaScript abuse
+
+# Get rid of JavaScript referrer tracking. Test page: http://www.randomoddness.com/untitled.htm
+#
+s|(<script.*)document\.referrer(.*</script>)|$1"Not Your Business!"$2|Usg

    Following the header line and a comment, you see the job. Note that it uses + | as the delimiter instead of /, because + the pattern contains a forward slash, which would otherwise have to be escaped + by a backslash (\).

    Now, let's examine the pattern: it starts with the text <script.* + enclosed in parentheses. Since the dot matches any character, and * + means: "Match an arbitrary number of the element left of myself", this + matches "<script", followed by any text, i.e. + it matches the whole page, from the start of the first <script> tag.

    That's more than we want, but the pattern continues: document\.referrer + matches only the exact string "document.referrer". The dot needed to + be escaped, i.e. preceded by a backslash, to take away its + special meaning as a joker, and make it just a regular dot. So far, the meaning is: + Match from the start of the first <script> tag in a the page, up to, and including, + the text "document.referrer", if both are present + in the page (and appear in that order).

    But there's still more pattern to go. The next element, again enclosed in parentheses, + is .*</script>. You already know what .* + means, so the whole pattern translates to: Match from the start of the first <script> + tag in a page to the end of the last <script> tag, provided that the text + "document.referrer" appears somewhere in between.

    This is still not the whole story, since we have ignored the options and the parentheses: + The portions of the page matched by sub-patterns that are enclosed in parentheses, will be + remembered and be available through the variables $1, $2, ... in + the substitute. The U option switches to ungreedy matching, which means + that the first .* in the pattern will only "eat up" all + text in between "<script" and the first occurrence + of "document.referrer", and that the second .* will + only span the text up to the first "</script>" + tag. Furthermore, the s option says that the match may span + multiple lines in the page, and the g option again means that the + substitution is global.

    So, to summarize, the pattern means: Match all scripts that contain the text + "document.referrer". Remember the parts of the script from + (and including) the start tag up to (and excluding) the string + "document.referrer" as $1, and the part following + that string, up to and including the closing tag, as $2.

    Now the pattern is deciphered, but wasn't this about substituting things? So + lets look at the substitute: $1"Not Your Business!"$2 is + easy to read: The text remembered as $1, followed by + "Not Your Business!" (including + the quotation marks!), followed by the text remembered as $2. + This produces an exact copy of the original string, with the middle part + (the "document.referrer") replaced by "Not Your + Business!".

    The whole job now reads: Replace "document.referrer" by + "Not Your Business!" wherever it appears inside a + <script> tag. Note that this job won't break JavaScript syntax, + since both the original and the replacement are syntactically valid + string objects. The script just won't have access to the referrer + information anymore.

    We'll show you two other jobs from the JavaScript taming department, but + this time only point out the constructs of special interest:

    # The status bar is for displaying link targets, not pointless blahblah
+#
+s/window\.status\s*=\s*['"].*?['"]/dUmMy=1/ig

    \s stands for whitespace characters (space, tab, newline, + carriage return, form feed), so that \s* means: "zero + or more whitespace". The ? in .*? + makes this matching of arbitrary text ungreedy. (Note that the U + option is not set). The ['"] construct means: "a single + or a double quote".

    So what does this job do? It replaces assignments of single- or double-quoted + strings to the "window.status" object with a dummy assignment + (using a variable name that is hopefully odd enough not to conflict with + real variables in scripts). Thus, it catches many cases where e.g. pointless + descriptions are displayed in the status bar instead of the link target when + you move your mouse over links.

    # Kill OnUnload popups. Yummy. Test: http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html
+#
+s/(<body .*)onunload(.*>)/$1never$2/iU

    Including the + OnUnload + event binding in the HTML DOM was a CRIME. + When I close a browser window, I want it to close and die. Basta. + This job replaces the "onunload" attribute in + "<body>" tags with the dummy word never. + Note that the i option makes the pattern matching + case-insensitive.

    The last example is from the fun department:

    FILTER: fun Fun text replacements
+
+# Spice the daily news:
+#
+s/microsoft(?!\.com)/MicroSuck/ig

    Note the (?!\.com) part (a so-called negative lookahead) + in the job's pattern, which means: Don't match, if the string + ".com" appears directly following "microsoft" + in the page. This prevents links to microsoft.com from being messed, while + still replacing the word everywhere else.

    # Buzzword Bingo (example for extended regex syntax)
+#
+s* industry[ -]leading \
+|  cutting[ -]edge \
+|  award[ -]winning # Comments are OK, too! \
+|  high[ -]performance \
+|  solutions[ -]based \
+|  unmatched \
+|  unparalleled \
+|  unrivalled \
+*<font color="red"><b>BINGO!</b></font> \
+*igx

    The x option in this job turns on extended syntax, and allows for + e.g. the liberal use of (non-interpreted!) whitespace for nicer formatting.

    You get the idea?

    PrevHomeNext
    Actions Files Templates
    \ No newline at end of file diff --git a/doc/webserver/user-manual/index.html b/doc/webserver/user-manual/index.html new file mode 100644 index 00000000..ef8d46d2 --- /dev/null +++ b/doc/webserver/user-manual/index.html @@ -0,0 +1,832 @@ +Privoxy User Manual

    Privoxy User Manual

    Copyright © 2001, 2002 by + Privoxy Developers +

    $Id: user-manual.sgml,v 1.121 2002/05/23 23:20:17 oes Exp $

    The user manual gives users information on how to install, configure and use + Privoxy. +

    Privoxy is a web proxy with advanced filtering + capabilities for protecting privacy, filtering web page content, managing + cookies, controlling access, and removing ads, banners, pop-ups and other + obnoxious Internet junk. Privoxy has a very + flexible configuration and can be customized to suit individual needs and + tastes. Privoxy has application for both + stand-alone systems and multi-user networks.

    Privoxy is based on Internet + Junkbuster (tm).

    You can find the latest version of the user manual at http://www.privoxy.org/user-manual/. + Please see the Contact section on how to + contact the developers. +

    Table of Contents
    1. Introduction
    1.1. Features
    2. Installation
    2.1. Binary Packages
    2.1.1. Red Hat, SuSE RPMs and Conectiva
    2.1.2. Debian
    2.1.3. Windows
    2.1.4. Solaris, NetBSD, FreeBSD, HP-UX
    2.1.5. OS/2
    2.1.6. Max OSX
    2.1.7. AmigaOS
    2.2. Building from Source
    3. Note to Upgraders
    4. Quickstart to Using Privoxy
    4.1. Quickstart to Ad Blocking
    5. Starting Privoxy
    5.1. RedHat and Conectiva
    5.2. Debian
    5.3. SuSE
    5.4. Windows
    5.5. Solaris, NetBSD, FreeBSD, HP-UX and others
    5.6. OS/2
    5.7. MAX OSX
    5.8. AmigaOS
    5.9. Command Line Options
    6. Privoxy Configuration
    6.1. Controlling Privoxy with Your Web Browser
    6.2. Configuration Files Overview
    7. The Main Configuration File
    7.1. Configuration and Log File Locations
    7.1.1. confdir
    7.1.2. logdir
    7.1.3. actionsfile
    7.1.4. filterfile
    7.1.5. logfile
    7.1.6. jarfile
    7.1.7. trustfile
    7.2. Local Set-up Documentation
    7.2.1. user-manual
    7.2.2. trust-info-url
    7.2.3. admin-address
    7.2.4. proxy-info-url
    7.3. Debugging
    7.3.1. debug
    7.3.2. single-threaded
    7.4. Access Control and Security
    7.4.1. listen-address
    7.4.2. toggle
    7.4.3. enable-remote-toggle
    7.4.4. enable-edit-actions
    7.4.5. ACLs: permit-access and deny-access
    7.4.6. buffer-limit
    7.5. Forwarding
    7.5.1. forward
    7.5.2. forward-socks4 and forward-socks4a
    7.5.3. Advanced Forwarding Examples
    7.6. Windows GUI Options
    8. Actions Files
    8.1. Finding the Right Mix
    8.2. How to Edit
    8.3. How Actions are Applied to URLs
    8.4. Patterns
    22
    8.4.1. The Domain Pattern
    8.4.2. The Path Pattern
    8.5. Actions
    8.5.1. add-header
    8.5.2. block
    8.5.3. crunch-incoming-cookies
    8.5.4. crunch-outgoing-cookies
    8.5.5. deanimate-gifs
    8.5.6. downgrade-http-version
    8.5.7. fast-redirects
    8.5.8. filter
    8.5.9. handle-as-image
    8.5.10. hide-forwarded-for-headers
    8.5.11. hide-from-header
    8.5.12. hide-referrer
    8.5.13. hide-user-agent
    8.5.14. kill-popups
    8.5.15. limit-connect
    8.5.16. prevent-compression
    8.5.17. send-vanilla-wafer
    8.5.18. send-wafer
    8.5.19. session-cookies-only
    8.5.20. set-image-blocker
    8.5.21. Summary
    8.6. Aliases
    8.7. Actions Files Tutorial
    8.7.1. default.action
    8.7.2. user.action
    9. The Filter File
    9.1. Filter File Tutorial
    10. Templates
    11. Contacting the Developers, Bug Reporting and Feature +Requests
    11.1. Get Support
    11.2. Report Bugs
    11.3. Request New Features
    11.4. Report Ads or Other Actions-Related Problems
    11.5. Other
    12. Privoxy Copyright, License and History
    12.1. License
    12.2. History
    12.3. Authors
    13. See Also
    14. Appendix
    14.1. Regular Expressions
    14.2. Privoxy's Internal Pages
    14.2.1. Bookmarklets
    14.3. Chain of Events
    14.4. Anatomy of an Action
      Next
      Introduction
    \ No newline at end of file diff --git a/doc/webserver/user-manual/installation.html b/doc/webserver/user-manual/installation.html new file mode 100644 index 00000000..12397cf2 --- /dev/null +++ b/doc/webserver/user-manual/installation.html @@ -0,0 +1,544 @@ +Installation
    Privoxy User Manual
    PrevNext

    2. Installation

    Privoxy is available both in convenient pre-compiled + packages for a wide range of operating systems, and as raw source code. + For most users, we recommend using the packages, which can be downloaded from our + Privoxy Project + Page.

    Note: If you have a previous Junkbuster or + Privoxy installation on your system, you + will need to remove it. On some platforms, this may be done for you as part + of their installation procedure. (See below for your platform). In any case + be sure to backup your old configuration if it is valuable to + you. See the note to + upgraders section below.

    2.1. Binary Packages

    How to install the binary packages depends on your operating system:

    2.1.1. Red Hat, SuSE RPMs and Conectiva

    RPMs can be installed with rpm -Uvh privoxy-2.9.15-1.rpm, + and will use /etc/privoxy for the location + of configuration files.

    Note that on Red Hat, Privoxy will + not be automatically started on system boot. You will + need to enable that using chkconfig, + ntsysv, or similar methods. Note that SuSE will +automatically start Privoxy in the boot process.

    If you have problems with failed dependencies, try rebuilding the SRC RPM: + rpm --rebuild privoxy-2.9.15-1.src.rpm;. This + will use your locally installed libraries and RPM version.

    Also note that if you have a Junkbuster RPM installed + on your system, you need to remove it first, because the packages conflict. + Otherwise, RPM will try to remove Junkbuster + automatically, before installing Privoxy.

    2.1.2. Debian

    DEBs can be installed with dpkg -i + privoxy_2.9.15-1.deb, and will use + /etc/privoxy for the location of configuration + files.

    2.1.3. Windows

    Just double-click the installer, which will guide you through + the installation process. You will find the configuration files + in the same directory as you installed Privoxy in. We do not + use the registry of Windows.

    2.1.4. Solaris, NetBSD, FreeBSD, HP-UX

    Create a new directory, cd to it, then unzip and + untar the archive. For the most part, you'll have to figure out where + things go. FIXME.

    2.1.5. OS/2

    First, make sure that no previous installations of + Junkbuster and / or + Privoxy are left on your + system. You can do this by

    Then, just double-click the WarpIN self-installing archive, which will + guide you through the installation process. A shadow of the + Privoxy executable will be placed in your + startup folder so it will start automatically whenever OS/2 starts.

    The directory you choose to install Privoxy + into will contain all of the configuration files.

    2.1.6. Max OSX

    Unzip the downloaded package (you can either double-click on the file + in the finder, or on the desktop if you downloaded it there). Then, + double-click on the package installer icon and follow the installation + process. + Privoxy will be installed in the subdirectory + /Applications/Privoxy.app. + Privoxy will set itself up to start + automatically on system bring-up via + /System/Library/StartupItems/Privoxy.

    2.1.7. AmigaOS

    Copy and then unpack the lha archive to a suitable location. + All necessary files will be installed into Privoxy + directory, including all configuration and log files. To uninstall, just + remove this directory.

    Start Privoxy (with RUN <>NIL:) in your + startnet script (AmiTCP), in + s:user-startup (RoadShow), as startup program in your + startup script (Genesis), or as startup action (Miami and MiamiDx). + Privoxy will automatically quit when you quit your + TCP/IP stack (just ignore the harmless warning your TCP/IP stack may display that + Privoxy is still running).

    2.2. Building from Source

    The most convenient way to obtain the Privoxy sources + is to download the source tarball from our project + page.

    If you like to live on the bleeding edge and are not afraid of using + possibly unstable development versions, you can check out the up-to-the-minute + version directly from the + CVS repository or simply download the nightly CVS + tarball.

    To build Privoxy from source, + autoconf, + GNU make + (gmake), and, of course, a C compiler like gcc are required.

    When building from a source tarball (either release version or + nightly CVS + tarball), first unpack the source: 

     tar xzvf privoxy-2.9.15-beta-src* [.tgz or .tar.gz]
+ cd privoxy-2.9.15-beta

    For retrieving the current CVS sources, you'll need CVS installed. + Note that sources from CVS are development quality, and may not be + stable, or well tested. To download CVS source:

      cvs -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa login
+  cvs -z3 -d:pserver:anonymous@cvs.ijbswa.sourceforge.net:/cvsroot/ijbswa co current
+  cd current

    This will create a directory named current/, which will + contain the source tree.

    Then, in either case, to build from unpacked tarball or CVS source:

     autoheader
+ autoconf
+ ./configure      # (--help to see options)
+ make             # (the make from gnu, gmake for *BSD) 
+ su 
+ make -n install  # (to see where all the files will go)
+ make install     # (to really install)

    If you have gnu make, you can have the first four steps + automatically done for you by just typing:

      make

    in the freshly downloaded or unpacked source directory.

    For more detailed instructions on how to build Redhat and SuSE RPMs, + Windows self-extracting installers, building on platforms with + special requirements etc, please consult the developer manual.

    PrevHomeNext
    Introduction Note to Upgraders
    \ No newline at end of file diff --git a/doc/webserver/user-manual/introduction.html b/doc/webserver/user-manual/introduction.html new file mode 100644 index 00000000..536b4f46 --- /dev/null +++ b/doc/webserver/user-manual/introduction.html @@ -0,0 +1,270 @@ +Introduction
    Privoxy User Manual
    PrevNext

    1. Introduction

    This documentation is included with the current beta version of + Privoxy, v.2.9.15, + and is mostly complete at this point. The most up to date reference for the + time being is still the comments in the source files and in the individual + configuration files. Development of version 3.0 is currently nearing + completion, and includes many significant changes and enhancements over + earlier versions. The target release date for + stable v3.0 is "soon" ;-).

    Since this is a beta version, not all new features are well tested. This + documentation may be slightly out of sync as a result (especially with + CVS sources). And there may be bugs, though hopefully + not many!

    1.1. Features

    In addition to Internet Junkbuster's traditional + features of ad and banner blocking and cookie management, + Privoxy provides new features, + some of them currently under development:

    • Integrated browser based configuration and control utility at http://config.privoxy.org/ + (shortcut: http://p.p/). Browser-based + tracing of rule and filter effects. Remote toggling. +

    • Web page content filtering (removes banners based on size, + invisible "web-bugs", JavaScript and HTML annoyances, pop-up windows, etc.) +

    • Modularized configuration that allows for standard settings and + user settings to reside in separate files, so that installing updated + actions files won't overwrite individual user settings. +

    • HTTP/1.1 compliant (but not all optional 1.1 features are supported). +

    • Support for Perl Compatible Regular Expressions in the configuration files, and + generally a more sophisticated and flexible configuration syntax over + previous versions. +

    • Improved cookie management features (e.g. session based cookies). +

    • GIF de-animation. +

    • Bypass many click-tracking scripts (avoids script redirection). +

    • Multi-threaded (POSIX and native threads). +

    • User-customizable HTML templates for all proxy-generated pages (e.g. "blocked" page). +

    • Auto-detection and re-reading of config file changes. +

    • Improved signal handling, and a true daemon mode (Unix). +

    • Every feature now controllable on a per-site or per-location basis, configuration + more powerful and versatile over-all. +

    • Many smaller new features added, limitations and bugs removed, and security holes fixed. +

    PrevHomeNext
    Privoxy User Manual Installation
    \ No newline at end of file diff --git a/doc/webserver/user-manual/quickstart.html b/doc/webserver/user-manual/quickstart.html new file mode 100644 index 00000000..cf3eebe6 --- /dev/null +++ b/doc/webserver/user-manual/quickstart.html @@ -0,0 +1,807 @@ +Quickstart to Using Privoxy
    Privoxy User Manual
    PrevNext

    4. Quickstart to Using Privoxy

    • If upgrading, from versions before 2.9.16, please back up any configuration + files. See the Note to Upgraders Section. +

    • Install Privoxy. See the Installation Section below for platform specific + information. +

    • Advanced users and those who want to offer Privoxy + service to more than just their local machine should check the main config file, especially the security-relevant options. These are + off by default. +

    • Start Privoxy, if the installation program has + not done this already (may vary according to platform). See the section + Starting Privoxy. +

    • Set your browser to use Privoxy as HTTP and + HTTPS proxy by setting the proxy configuration for address of + 127.0.0.1 and port 8118. + (Junkbuster and earlier versions of + Privoxy used port 8000.) See the section Starting Privoxy below + for more details on this. +

    • Flush your browser's disk and memory caches, to remove any cached ad images. +

    • A default installation should provide a reasonable starting point for + most. There will undoubtedly be occasions where you will want to adjust the + configuration, but that can be dealt with as the need arises. Little + to no initial configuration is required in most cases. +

      See the Configuration section for more + configuration options, and how to customize your installation. + +

    • If you experience ads that slipped through, innocent images that are + blocked, or otherwise feel the need to fine-tune + Privoxy's behaviour, take a look at the actions files. As a quick start, you might + find the richly commented examples + helpful. You can also view and edit the actions files through the web-based user interface. The + Appendix "Anatomy of an + Action" has hints how to debug actions that + "misbehave". +

    • Please see the section Contacting the + Developers on how to report bugs or problems with websites or to get + help. +

    • Now enjoy surfing with enhanced comfort and privacy! +

    4.1. Quickstart to Ad Blocking

    Ad blocking is but one of Privoxy's + array of features. Many of these features are for the technically minded advanced + user. But, ad and banner blocking is surely common ground for everybody.

    + This section will provide a quick summary of ad blocking so + you can get up to speed quickly without having to read the more extensive + information provided below, though this is highly recommeneded.

    First a bit of a warning ... blocking ads is much like blocking SPAM: the + more aggressive you are about it, the more likely you are to block + things that were not intended. So there is a trade off here. If you want + extreme ad free browsing, be prepared to deal with more + "problem" sites, and to spend more time adjusting the + configuration to solve these unintended consequences. In short, there is + not an easy way to eliminate all ads. Either take + the easy way and settle for most ads blocked with the + default configuration, or jump in and tweak it for your personal surfing + habits and preferences.

    Secondly, a brief explanation of Privoxy's + "actions". "Actions" in this context, are + the directives we use to tell Privoxy to perform + some task relating to HTTP transactions (i.e. web browsing). We tell + Privoxy to take some "action". Each + action has a unique name and function. While there are many potential + actions in Privoxy's + arsenal, only a few are used for ad blocking. Actions, and action + configuration files, are explained in depth below.

    Actions are specified in Privoxy's configuration, + followed by one or more URLs to which the action should apply. URLs + can actually be URL type patterns that use + wildcards so they can apply potentially to a range of similar URLs. The + actions, together with the URL patterns are called a section.

    When you connect to a website, the full URL will either match one or more + of the sections as defined in Privoxy's configuration, + or not. If so, then Privoxy will perform the + respective actions. If not, then nothing special happens. Futhermore, web + pages may contain embedded, secondary URLs that your web browser will + use to load additional components of the page, as it parses the + original page's HTML content. An ad image for instance, is just a URL + embedded in the page somewhere. The image itself may be on the same server, + or a server somewhere else on the Internet. Complex web pages will have many + such embedded URLs.

    The actions we need to know about for ad blocking are: block, handle-as-image, and + set-image-blocker:

    • block - this action stops + any contact between your browser and any URL patterns that match this + action's configuration. It can be used for blocking ads, but also anything + that is determined to be unwanted. By itself, it simply stops any + communication with the remote server and sends Privoxy's + own built-in BLOCKED page instead to let you now what has happened. +

    • handle-as-image - + tells Privoxy to treat this URL as an image. + Privoxy's default configuration already does this + for all common image types (e.g. GIF), but there are many situations where this + is not as easy to determine. So we'll force it in these cases. This is particularly + important for ad blocking, since only if we know that it's an image, we can replace + it by an image instead of the BLOCKED page, which would only result in a + "broken image" icon. There are some limitations to this though. For + instance, you can't just brute-force an image substituion for an entire HTML page + in most situations. +

    • set-image-blocker - tells + Privoxy what to display in place of an ad image that + has hit a block rule. For this to come into play, the URL must match a + block action somewhere in the + configuration, and, it must also match an + handle-as-image action. +

      The configuration options on what to display instead of the ad are: +

         pattern - a checkboard pattern, so that an ad + replacement is obvious. This is the default. +

         blank - A very small empty GIF image is displayed. + This is the so-called "invisible" configuration option. +

         http://<URL> - A redirect to any image anywhere + of the user's choosing (advanced usage). +

    The quickest way to adjust any of these settings is with your browser through + the special Privoxy editor at http://config.privoxy.org/show-status + (shortcut: http://p.p/show-status). This + is an internal page, and does not require Internet access. Select the + appropriate "actions" file, and click + "Edit". It is best to put personal or + local preferences in user.action since this is not + meant to be overwritten during upgrades, and will over-ride the settings in + other files. Here you can insert new "actions", and URLs for ad + blocking or other purposes, and make other adjustments to the configuration. + Privoxy will detect these changes automatically.

    A quick and simple step by step example:

    • Right click on the ad image to be blocked, then select + "Copy Link Location" from the + pop-up menu. +

    • Set your browser to + http://config.privoxy.org/show-status +

    • Find user.action in the top section, and click + on "Edit": +

      Figure 1. Actions Files in Use

      +

    • You should have a section with only + block listed under + "Actions:". + If not, click a "Insert new section below" + button, and in the new section that just appeared, click the + Edit button right under the word "Actions:". + This will bring up a list of all actions. Find + block near the top, and click + in the "Enabled" column, then "Submit" + just below the list. +

    • Now, in the block actions section, + click the "Add" button, and paste the URL the + browser got from "Copy Link Location". + Remove the http:// at the beginning of the URL. Then, click + "Submit" (or + "OK" if in a pop-up window). +

    • Now go back to the original page, and press SHIFT-Reload + (or flush all browser caches). The image should be gone now. +

    This is a very crude and simple example. There might be good reasons to use a + wildcard pattern match to include potentially similar images from the same + site. For a more extensive explanation of "patterns", and + the entire actions concept, see the Actions + section.

    For advanced users who want to hand edit their config files, you might want + to now go to the Actions Files Tutorial. + The ideas explained thererin also apply to the web-based editor.

    PrevHomeNext
    Note to Upgraders Starting Privoxy
    \ No newline at end of file diff --git a/doc/webserver/user-manual/seealso.html b/doc/webserver/user-manual/seealso.html new file mode 100644 index 00000000..a1fe3522 --- /dev/null +++ b/doc/webserver/user-manual/seealso.html @@ -0,0 +1,396 @@ +See Also
    Privoxy User Manual
    PrevNext

    13. See Also

    Other references and sites of interest to Privoxy + users:

    http://www.privoxy.org/, + the Privoxy Home page. +

    +

    http://www.privoxy.org/faq/, + the Privoxy FAQ. +

    +

    http://sourceforge.net/projects/ijbswa/, + the Project Page for Privoxy on + SourceForge. +

    +

    http://config.privoxy.org/, + the web-based user interface. Privoxy must be + running for this to work. Shortcut: http://p.p/ +

    +

    http://www.privoxy.org/actions/, to submit "misses" to the developers. +

    +

    http://www.junkbusters.com/ht/en/cookies.html, + an explanation how cookies are used to track web users. +

    +

    http://www.junkbusters.com/ijb.html, + the original Internet Junkbuster. +

    +

    http://www.waldherr.org/junkbuster/, + Stefan Waldherr's version of Junkbuster, from which Privoxy was + derived. +

    +

    http://privacy.net/analyze/, a useful site + to check what information about you is leaked while you browse the web. +

    +

    http://www.squid-cache.org/, a very popular + caching proxy, which is often used together with Privoxy. +

    +

    http://www.privoxy.org/developer-manual/, + the Privoxy developer manual. +

    PrevHomeNext
    Privoxy Copyright, License and History Appendix
    \ No newline at end of file diff --git a/doc/webserver/user-manual/startup.html b/doc/webserver/user-manual/startup.html new file mode 100644 index 00000000..d7fcaefe --- /dev/null +++ b/doc/webserver/user-manual/startup.html @@ -0,0 +1,505 @@ +Starting Privoxy
    Privoxy User Manual
    PrevNext

    5. Starting Privoxy

    Before launching Privoxy for the first time, you + will want to configure your browser(s) to use + Privoxy as a HTTP and HTTPS proxy. The default is + 127.0.0.1 (or localhost) for the proxy address, and port 8118 (earlier versions + used port 8000). This is the one configuration step that must be done!

    + With Netscape (and + Mozilla), this can be set under Edit + -> Preferences -> Advanced -> Proxies -> HTTP Proxy. + For Internet Explorer: Tools -> + Internet Properties -> Connections -> LAN Setting. Then, + check "Use Proxy" and fill in the appropriate info (Address: + 127.0.0.1, Port: 8118). Include if HTTPS proxy support too.

    After doing this, flush your browser's disk and memory caches to force a + re-reading of all pages and to get rid of any ads that may be cached. You + are now ready to start enjoying the benefits of using + Privoxy!

    Privoxy is typically started by specifying the + main configuration file to be used on the command line. If no configuration + file is specified on the command line, Privoxy + will look for a file named config in the current + directory. Except on Win32 where it will try config.txt.

    5.1. RedHat and Conectiva

    We use a script. Note that RedHat does not start Privoxy upon booting per +default. It will use the file /etc/privoxy/config as its +main configuration file.

     # /etc/rc.d/init.d/privoxy start

    5.2. Debian

    We use a script. Note that Debian starts Privoxy upon booting per + default. It will use the file + /etc/privoxy/config as its main configuration + file.

     # /etc/init.d/privoxy start

    5.3. SuSE

    We use a script. It will use the file /etc/privoxy/config +as its main configuration file. Note that SuSE starts Privoxy upon booting +your PC.

     # rcprivoxy start

    5.4. Windows

    Click on the Privoxy Icon to start Privoxy. If no configuration file is + specified on the command line, Privoxy will look + for a file named config.txt. Note that Windows will + automatically start Privoxy upon booting you PC.

    5.5. Solaris, NetBSD, FreeBSD, HP-UX and others

    Example Unix startup command:

     # /usr/sbin/privoxy /etc/privoxy/config

    5.6. OS/2

    FIXME.

    5.9. Command Line Options

    Privoxy may be invoked with the following + command-line options:

    • --version +

      Print version info and exit. Unix only. +

    • --help +

      Print short usage info and exit. Unix only. +

    • --no-daemon +

      Don't become a daemon, i.e. don't fork and become process group + leader, and don't detach from controlling tty. Unix only. +

    • --pidfile FILE + +

      On startup, write the process ID to FILE. Delete the + FILE on exit. Failure to create or delete the + FILE is non-fatal. If no FILE + option is given, no PID file will be used. Unix only. +

    • --user USER[.GROUP] + +

      After (optionally) writing the PID file, assume the user ID of + USER, and if included the GID of GROUP. Exit if the + privileges are not sufficient to do so. Unix only. +

    • configfile +

      If no configfile is included on the command line, + Privoxy will look for a file named + "config" in the current directory (except on Win32 + where it will look for "config.txt" instead). Specify + full path to avoid confusion. If no config file is found, + Privoxy will fail to start. +

    PrevHomeNext
    Quickstart to Using Privoxy Privoxy Configuration
    \ No newline at end of file diff --git a/doc/webserver/user-manual/templates.html b/doc/webserver/user-manual/templates.html new file mode 100644 index 00000000..dbd8a604 --- /dev/null +++ b/doc/webserver/user-manual/templates.html @@ -0,0 +1,290 @@ +Templates
    Privoxy User Manual
    PrevNext

    10. Templates

    All Privoxy built-in pages, i.e. error pages such as the + "404 - No Such Domain" + error page, the "BLOCKED" + page + and all pages of its web-based + user interface, are generated from templates. + (Privoxy must be running for the above links to work as + intended)

    These templates are stored in a subdirectory of the configuration + directory called templates. On unixish platforms, + this is typically + /etc/privoxy/templates/.

    The templates are basically normal HTML files, but with place-holders (called symbols + or exports), which Privoxy fills at run time. You can + edit the templates with a normal text editor, should you want to customize them. + (Not recommended for the casual user). Note that + just like in configuration files, lines starting with # are + ignored when the templates are filled in.

    The place-holders are of the form @name@, and you will + find a list of available symbols, which vary from template to template, + in the comments at the start of each file. Note that these comments are not + always accurate, and that it's probably best to look at the existing HTML + code to find out which symbols are supported and what they are filled in with.

    A special application of this substitution mechanism is to make whole + blocks of HTML code disappear when a specific symbol is set. We use this + for many purposes, one of them being to include the beta warning in all + our user interface (CGI) pages when Privoxy + in in an alpha or beta development stage:

    <!-- @if-unstable-start -->
+
+  ... beta warning HTML code goes here ...
+
+<!-- if-unstable-end@ -->

    If the "unstable" symbol is set, everything in between and including + @if-unstable-start and if-unstable-end@ + will disappear, leaving nothing but an empty comment:

    <!--  -->

    There's also an if-then-else construct and an #include + mechanism, but you'll sure find out if you are inclined to edit the + templates ;-)

    All templates refer to a style located at + http://config.privoxy.org/send-stylesheet. + This is, of course, locally served by Privoxy + and the source for it can be found and edited in the + cgi-style.css template.

    PrevHomeNext
    The Filter File Contacting the Developers, Bug Reporting and Feature +Requests
    \ No newline at end of file diff --git a/doc/webserver/user-manual/upgradersnote.html b/doc/webserver/user-manual/upgradersnote.html new file mode 100644 index 00000000..6e8ea179 --- /dev/null +++ b/doc/webserver/user-manual/upgradersnote.html @@ -0,0 +1,288 @@ +Note to Upgraders
    Privoxy User Manual
    PrevNext

    3. Note to Upgraders

    There are very significant changes from earlier + Junkbuster versions to the current + Privoxy. The number, names, syntax, and + purposes of configuration files have substantially changed. + Junkbuster 2.0.x configuration + files will not migrate, Junkbuster 2.9.x + and Privoxy configurations will need to be + ported. The functionalities of the old blockfile, + cookiefile and imagelist + are now combined into the "actions + files". + default.action, is the main actions file. Local + exceptions should best be put into user.action.

    A "filter file" (typically + default.filter) is new as of Privoxy + 2.9.x, and provides some of the new sophistication (explained + below). config is much the same as before.

    If upgrading from a 2.0.x version, you will have to use the new config + files, and possibly adapt any personal rules from your older files. + When porting personal rules over from the old blockfile + to the new actions files, please note that even the pattern syntax has + changed. If upgrading from 2.9.x development versions, it is still + recommended to use the new configuration files.

    A quick list of things to be aware of before upgrading:

    • The default listening port is now 8118 due to a conflict with another + service (NAS). +

    • + Some installers may remove earlier versions completely. Save any + important configuration files! +

    • Privoxy is controllable with a web browser + at the special URL: http://config.privoxy.org/ + (Shortcut: http://p.p/). Many + aspects of configuration can be done here, including temporarily disabling + Privoxy. +

    • The primary configuration files for cookie management, ad and banner + blocking, and many other aspects of Privoxy + configuration are the actions + files. It is strongly recommended to become familiar with the new + actions concept below, before modifying these files. Locally defined rules + should go into user.action. +

    • + Some installers may not automatically start + Privoxy after installation. +

    PrevHomeNext
    Installation Quickstart to Using Privoxy
    \ No newline at end of file diff --git a/encode.c b/encode.c index 42d07443..09c7b5f7 100644 --- a/encode.c +++ b/encode.c @@ -1,13 +1,13 @@ -const char encode_rcs[] = "$Id: encode.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char encode_rcs[] = "$Id: encode.c,v 1.7 2002/03/24 13:25:43 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/encode.c,v $ + * File : $Source: /cvsroot/ijbswa/current/encode.c,v $ * * Purpose : Functions to encode and decode URLs, and also to * encode cookies and HTML text. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -33,6 +33,30 @@ const char encode_rcs[] = "$Id: encode.c,v 1.1 2001/05/13 21:57:06 administrator * * Revisions : * $Log: encode.c,v $ + * Revision 1.7 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.6 2002/03/13 00:27:04 jongfoster + * Killing warnings + * + * Revision 1.5 2002/03/07 03:46:53 oes + * Fixed compiler warnings etc + * + * Revision 1.4 2002/01/22 23:28:07 jongfoster + * Adding convenience function html_encode_and_free_original() + * Making all functions accept NULL paramaters - in this case, they + * simply return NULL. This allows error-checking to be deferred. + * + * Revision 1.3 2001/11/13 00:16:40 jongfoster + * Replacing references to malloc.h with the standard stdlib.h + * (See ANSI or K&R 2nd Ed) + * + * Revision 1.2 2001/05/17 22:52:35 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:58:51 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -40,9 +64,9 @@ const char encode_rcs[] = "$Id: encode.c,v 1.1 2001/05/13 21:57:06 administrator #include "config.h" #include +#include #include -#include - + #include "encode.h" const char encode_h_rcs[] = ENCODE_H_VERSION; @@ -152,12 +176,20 @@ static const char * const cookie_code_map[256] = { * * Returns : Encoded string, newly allocated on the heap. * Caller is responsible for freeing it with free(). + * If s is NULL, or on out-of memory, returns NULL. * *********************************************************************/ char * html_encode(const char *s) { + char * buf; + + if (s == NULL) + { + return NULL; + } + /* each input char can expand to at most 6 chars */ - char * buf = (char *) malloc((strlen(s) * 6) + 1); + buf = (char *) malloc((strlen(s) * 6) + 1); if (buf) { @@ -183,6 +215,41 @@ char * html_encode(const char *s) return(buf); } + +/********************************************************************* + * + * Function : html_encode_and_free_original + * + * Description : Encodes a string so it's not interpreted as + * containing HTML tags or entities. + * Replaces <, >, &, and " with the appropriate HTML + * entities. Free()s original string. + * If original string is NULL, simply returns NULL. + * + * Parameters : + * 1 : s = String to encode. Null-terminated. + * + * Returns : Encoded string, newly allocated on the heap. + * Caller is responsible for freeing it with free(). + * If s is NULL, or on out-of memory, returns NULL. + * + *********************************************************************/ +char * html_encode_and_free_original(char *s) +{ + char * result; + + if (s == NULL) + { + return NULL; + } + + result = html_encode(s); + free(s); + + return result; +} + + /********************************************************************* * * Function : cookie_encode @@ -196,12 +263,20 @@ char * html_encode(const char *s) * * Returns : Encoded string, newly allocated on the heap. * Caller is responsible for freeing it with free(). + * If s is NULL, or on out-of memory, returns NULL. * *********************************************************************/ char * cookie_encode(const char *s) { + char * buf; + + if (s == NULL) + { + return NULL; + } + /* each input char can expand to at most 3 chars */ - char * buf = (char *) malloc((strlen(s) * 3) + 1); + buf = (char *) malloc((strlen(s) * 3) + 1); if (buf) { @@ -232,7 +307,7 @@ char * cookie_encode(const char *s) * Function : url_encode * * Description : Encodes a string so it can be used in a URL - * query string. Replaces special characters with + * query string. Replaces special characters with * the appropriate %xx codes. * * Parameters : @@ -240,15 +315,23 @@ char * cookie_encode(const char *s) * * Returns : Encoded string, newly allocated on the heap. * Caller is responsible for freeing it with free(). + * If s is NULL, or on out-of memory, returns NULL. * *********************************************************************/ char * url_encode(const char *s) -{ - /* each input char can expand to at most 3 chars */ - char * buf = (char *) malloc((strlen(s) * 3) + 1); - +{ + char * buf; + + if (s == NULL) + { + return NULL; + } + + /* each input char can expand to at most 3 chars */ + buf = (char *) malloc((strlen(s) * 3) + 1); + if (buf) - { + { char c; char * p = buf; while( (c = *s++) != '\0') @@ -266,9 +349,9 @@ char * url_encode(const char *s) } *p = '\0'; - + } - + return(buf); } @@ -285,7 +368,7 @@ char * url_encode(const char *s) * Returns : The integer value, or -1 for non-hex characters. * *********************************************************************/ -static int xdtoi(char d) +static int xdtoi(const int d) { if ((d >= '0') && (d <= '9')) { @@ -323,10 +406,10 @@ static int xtoi(const char *s) { int d1, d2; - d1 = xdtoi(*s++); + d1 = xdtoi(*s); if(d1 >= 0) { - d2 = xdtoi(*s); + d2 = xdtoi(*(s+1)); if(d2 >= 0) { return (d1 << 4) + d2; @@ -355,9 +438,9 @@ char *url_decode(const char * s) { char *buf = malloc(strlen(s) + 1); char *q = buf; - - if (buf) - { + + if (buf) + { while (*s) { switch (*s) @@ -368,7 +451,7 @@ char *url_decode(const char * s) break; case '%': - if ((*q = xtoi(s + 1))) + if ((*q = xtoi(s + 1)) != '\0') { s += 3; q++; @@ -385,9 +468,9 @@ char *url_decode(const char * s) break; } } - *q = '\0'; + *q = '\0'; } - + return(buf); } diff --git a/encode.h b/encode.h index ba0b6cf0..875b9662 100644 --- a/encode.h +++ b/encode.h @@ -1,15 +1,15 @@ -#ifndef _ENCODE_H -#define _ENCODE_H -#define ENCODE_H_VERSION "$Id: encode.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef ENCODE_H_INCLUDED +#define ENCODE_H_INCLUDED +#define ENCODE_H_VERSION "$Id: encode.h,v 1.4 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/encode.h,v $ + * File : $Source: /cvsroot/ijbswa/current/encode.h,v $ * * Purpose : Functions to encode and decode URLs, and also to * encode cookies and HTML text. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -35,6 +35,21 @@ * * Revisions : * $Log: encode.h,v $ + * Revision 1.4 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.3 2002/01/22 23:28:07 jongfoster + * Adding convenience function html_encode_and_free_original() + * Making all functions accept NULL paramaters - in this case, they + * simply return NULL. This allows error-checking to be deferred. + * + * Revision 1.2 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.1.1.1 2001/05/15 13:58:51 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -48,6 +63,8 @@ extern char * cookie_encode(const char *s); extern char * url_encode(const char *s); extern char * url_decode(const char *str); +extern char * html_encode_and_free_original(char *s); + /* Revision control strings from this header and associated .c file */ extern const char encode_rcs[]; extern const char encode_h_rcs[]; @@ -56,7 +73,7 @@ extern const char encode_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _ENCODE_H */ +#endif /* ndef ENCODE_H_INCLUDED */ /* Local Variables: diff --git a/errlog.c b/errlog.c index 54b26873..4a3cfe7e 100644 --- a/errlog.c +++ b/errlog.c @@ -1,13 +1,13 @@ -const char errlog_rcs[] = "$Id: errlog.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char errlog_rcs[] = "$Id: errlog.c,v 1.39 2002/04/03 17:15:27 gliptak Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/errlog.c,v $ + * File : $Source: /cvsroot/ijbswa/current/errlog.c,v $ * * Purpose : Log errors to a designated destination in an elegant, * printf-like fashion. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -33,50 +33,288 @@ const char errlog_rcs[] = "$Id: errlog.c,v 1.1 2001/05/13 21:57:06 administrator * * Revisions : * $Log: errlog.c,v $ + * Revision 1.39 2002/04/03 17:15:27 gliptak + * zero padding thread ids in log + * + * Revision 1.38 2002/03/31 17:18:59 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.37 2002/03/27 14:32:43 david__schmidt + * More compiler warning message maintenance + * + * Revision 1.36 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.35 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.34 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.33 2002/03/13 00:27:04 jongfoster + * Killing warnings + * + * Revision 1.32 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.31 2002/03/06 23:02:57 jongfoster + * Removing tabs + * + * Revision 1.30 2002/03/05 22:43:45 david__schmidt + * - Better error reporting on OS/2 + * - Fix double-slash comment (oops) + * + * Revision 1.29 2002/03/04 23:45:13 jongfoster + * Printing thread ID if using Win32 native threads + * + * Revision 1.28 2002/03/04 17:59:59 oes + * Deleted deletePidFile(), cosmetics + * + * Revision 1.27 2002/03/04 02:08:01 david__schmidt + * Enable web editing of actions file on OS/2 (it had been broken all this time!) + * + * Revision 1.26 2002/01/09 19:05:45 steudten + * Fix big memory leak. + * + * Revision 1.25 2002/01/09 14:32:08 oes + * Added support for gmtime_r and localtime_r. + * + * Revision 1.24 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.23 2001/11/07 00:02:13 steudten + * Add line number in error output for lineparsing for + * actionsfile and configfile. + * Special handling for CLF added. + * + * Revision 1.22 2001/11/05 23:43:05 steudten + * Add time+date to log files. + * + * Revision 1.21 2001/10/25 03:40:47 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.20 2001/09/16 23:04:34 jongfoster + * Fixing a warning + * + * Revision 1.19 2001/09/13 20:08:06 jongfoster + * Adding support for LOG_LEVEL_CGI + * + * Revision 1.18 2001/09/10 11:27:24 oes + * Declaration of w32_socket_strerr now conditional + * + * Revision 1.17 2001/09/10 10:17:13 oes + * Removed unused variable; Fixed sprintf format + * + * Revision 1.16 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.15 2001/07/29 17:41:10 jongfoster + * Now prints thread ID for each message (pthreads only) + * + * Revision 1.14 2001/07/19 19:03:48 haroon + * - Added case for LOG_LEVEL_POPUPS + * + * Revision 1.13 2001/07/13 13:58:58 oes + * - Added case for LOG_LEVEL_DEANIMATE + * - Removed all #ifdef PCRS + * + * Revision 1.12 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.11 2001/06/01 18:14:49 jongfoster + * Changing the calls to strerr() to check HAVE_STRERR (which is defined + * in config.h if appropriate) rather than the NO_STRERR macro. + * + * Revision 1.10 2001/05/29 11:52:21 oes + * Conditional compilation of w32_socket_error + * + * Revision 1.9 2001/05/28 16:15:17 jongfoster + * Improved reporting of errors under Win32. + * + * Revision 1.8 2001/05/26 17:25:14 jongfoster + * Added support for CLF (Common Log Format) and fixed LOG_LEVEL_LOG + * + * Revision 1.7 2001/05/26 15:21:28 jongfoster + * Activity animation in Win32 GUI now works even if debug==0 + * + * Revision 1.6 2001/05/25 21:55:08 jongfoster + * Now cleans up properly on FATAL (removes taskbar icon etc) + * + * Revision 1.5 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.4 2001/05/21 19:32:54 jongfoster + * Added another #ifdef _WIN_CONSOLE + * + * Revision 1.3 2001/05/20 01:11:40 jongfoster + * Added support for LOG_LEVEL_FATAL + * Renamed LOG_LEVEL_FRC to LOG_LEVEL_FORCE, + * and LOG_LEVEL_REF to LOG_LEVEL_RE_FILTER + * + * Revision 1.2 2001/05/17 22:42:01 oes + * - Cleaned CRLF's from the sources and related files + * - Repaired logging for REF and FRC + * + * Revision 1.1.1.1 2001/05/15 13:58:51 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ #include "config.h" +#include "miscutil.h" #include #include #include #include -#ifndef _WIN32 +#if !defined(_WIN32) && !defined(__OS2__) #include -#endif /* ndef _WIN32 */ +#endif /* !defined(_WIN32) && !defined(__OS2__) */ #include -/* #include */ +#include +#ifdef FEATURE_PTHREAD +#include +#endif /* def FEATURE_PTHREAD */ #ifdef _WIN32 +#ifndef STRICT +#define STRICT +#endif #include +#ifndef _WIN_CONSOLE #include "w32log.h" +#endif /* ndef _WIN_CONSOLE */ #endif /* def _WIN32 */ +#ifdef __OS2__ +#include /* For sock_errno */ +#define INCL_DOS +#include +#endif + #include "errlog.h" #include "project.h" +#include "jcc.h" const char errlog_h_rcs[] = ERRLOG_H_VERSION; -/* LOG_LEVEL_ERROR and LOG_LEVEL_INFO cannot be turned off */ -#define LOG_LEVEL_MINIMUM (LOG_LEVEL_ERROR | LOG_LEVEL_INFO) + +/* + * LOG_LEVEL_FATAL cannot be turned off. (There are + * some exceptional situations where we need to get a + * message to the user). + */ +#define LOG_LEVEL_MINIMUM LOG_LEVEL_FATAL /* where to log (default: stderr) */ static FILE *logfp = NULL; -/* where to log (NULL == stderr) */ -static char * logfilename = NULL; - /* logging detail level. */ -static int debug = LOG_LEVEL_MINIMUM; +static int debug = (LOG_LEVEL_FATAL | LOG_LEVEL_ERROR | LOG_LEVEL_INFO); + +/* static functions */ +static void fatal_error(const char * error_message); +#ifdef _WIN32 +static char *w32_socket_strerr(int errcode, char *tmp_buf); +#endif +#ifdef __OS2__ +static char *os2_socket_strerr(int errcode, char *tmp_buf); +#endif + +/********************************************************************* + * + * Function : fatal_error + * + * Description : Displays a fatal error to standard error (or, on + * a WIN32 GUI, to a dialog box), and exits + * JunkBuster with status code 1. + * + * Parameters : + * 1 : error_message = The error message to display. + * + * Returns : Does not return. + * + *********************************************************************/ +static void fatal_error(const char * error_message) +{ +#if defined(_WIN32) && !defined(_WIN_CONSOLE) + MessageBox(g_hwndLogFrame, error_message, "Privoxy Error", + MB_OK | MB_ICONERROR | MB_TASKMODAL | MB_SETFOREGROUND | MB_TOPMOST); + + /* Cleanup - remove taskbar icon etc. */ + TermLogWindow(); + +#else /* if !defined(_WIN32) || defined(_WIN_CONSOLE) */ + fputs(error_message, stderr); +#endif /* defined(_WIN32) && !defined(_WIN_CONSOLE) */ + +#if defined(unix) + unlink(pidfile); +#endif /* unix */ + + exit(1); +} /********************************************************************* * - * Function : init_errlog + * Function : init_error_log * * Description : Initializes the logging module. Must call before * calling log_error. @@ -100,6 +338,7 @@ void init_error_log(const char *prog_name, const char *logfname, int debuglevel) if ((logfp != NULL) && (logfp != stderr)) { + log_error(LOG_LEVEL_INFO, "(Re-)Open logfile %s", logfname ? logfname : "none"); fclose(logfp); } logfp = stderr; @@ -107,14 +346,9 @@ void init_error_log(const char *prog_name, const char *logfname, int debuglevel) /* set the designated log file */ if( logfname ) { - if( !(fp = fopen(logfname, "a")) ) + if( NULL == (fp = fopen(logfname, "a")) ) { - log_error(LOG_LEVEL_ERROR, "init_errlog(): can't open logfile: %s", logfname); -#if defined(_WIN32) && ! defined (_WIN_CONSOLE) - MessageBox(NULL, "init_errlog(): can't open logfile", "Internet JunkBuster Error", - MB_OK | MB_ICONERROR | MB_TASKMODAL | MB_SETFOREGROUND | MB_TOPMOST); -#endif /* defined(_WIN32) && ! defined (_WIN_CONSOLE) */ - exit(1); + log_error(LOG_LEVEL_FATAL, "init_error_log(): can't open logfile: %s", logfname); } /* set logging to be completely unbuffered */ @@ -123,7 +357,7 @@ void init_error_log(const char *prog_name, const char *logfname, int debuglevel) logfp = fp; } - log_error(LOG_LEVEL_INFO, "Internet JunkBuster version " VERSION); + log_error(LOG_LEVEL_INFO, "Privoxy version " VERSION); if (prog_name != NULL) { log_error(LOG_LEVEL_INFO, "Program name: %s", prog_name); @@ -151,39 +385,124 @@ void init_error_log(const char *prog_name, const char *logfname, int debuglevel) void log_error(int loglevel, char *fmt, ...) { va_list ap; - char outbuf[BUFSIZ]; + char *outbuf= NULL; + static char *outbuf_save = NULL; char * src = fmt; int outc = 0; long this_thread = 1; /* was: pthread_t this_thread;*/ +#ifdef __OS2__ + PTIB ptib; + APIRET ulrc; +#endif /* __OS2__ */ + +#if defined(_WIN32) && !defined(_WIN_CONSOLE) + /* + * Irrespective of debug setting, a GET/POST/CONNECT makes + * the taskbar icon animate. (There is an option to disable + * this but checking that is handled inside LogShowActivity()). + */ + if (loglevel == LOG_LEVEL_GPC) + { + LogShowActivity(); + } +#endif /* defined(_WIN32) && !defined(_WIN_CONSOLE) */ /* verify if loglevel applies to current settings and bail out if negative */ - if(!(loglevel & debug)) + if ((loglevel & debug) == 0) { return; } /* FIXME get current thread id */ - /* this_thread = (long)pthread_self(); */ - +#ifdef FEATURE_PTHREAD + this_thread = (long)pthread_self(); +#elif defined(_WIN32) + this_thread = GetCurrentThreadId(); +#elif defined(__OS2__) + ulrc = DosGetInfoBlocks(&ptib, NULL); + if (ulrc == 0) + this_thread = ptib -> tib_ptib2 -> tib2_ultid; +#endif /* def FEATURE_PTHREAD */ + + if ( !outbuf_save ) + { + outbuf_save = outbuf = (char*)malloc(BUFFER_SIZE); + assert(outbuf); + } + outbuf = outbuf_save; + + { + /* + * Write timestamp into tempbuf. + * + * Complex because not all OSs have tm_gmtoff or + * the %z field in strftime() + */ + time_t now; + struct tm tm_now; + time (&now); +#ifdef HAVE_LOCALTIME_R + tm_now = *localtime_r(&now, &tm_now); +#else + tm_now = *localtime (&now); +#endif + strftime(outbuf, BUFFER_SIZE-6, "%b %d %H:%M:%S ", &tm_now); + outbuf += strlen( outbuf ); + } switch (loglevel) { case LOG_LEVEL_ERROR: - outc = sprintf(outbuf, "IJB(%d) Error: ", this_thread); + outc = sprintf(outbuf, "Privoxy(%05ld) Error: ", this_thread); + break; + case LOG_LEVEL_FATAL: + outc = sprintf(outbuf, "Privoxy(%05ld) Fatal error: ", this_thread); break; case LOG_LEVEL_GPC: - outc = sprintf(outbuf, "IJB(%d) Request: ", this_thread); + outc = sprintf(outbuf, "Privoxy(%05ld) Request: ", this_thread); break; case LOG_LEVEL_CONNECT: - outc = sprintf(outbuf, "IJB(%d) Connect: ", this_thread); + outc = sprintf(outbuf, "Privoxy(%05ld) Connect: ", this_thread); + break; + case LOG_LEVEL_LOG: + outc = sprintf(outbuf, "Privoxy(%05ld) Writing: ", this_thread); break; case LOG_LEVEL_HEADER: - outc = sprintf(outbuf, "IJB(%d) Header: ", this_thread); + outc = sprintf(outbuf, "Privoxy(%05ld) Header: ", this_thread); break; case LOG_LEVEL_INFO: - outc = sprintf(outbuf, "IJB(%d) Info: ", this_thread); + outc = sprintf(outbuf, "Privoxy(%05ld) Info: ", this_thread); + break; + case LOG_LEVEL_RE_FILTER: + outc = sprintf(outbuf, "Privoxy(%05ld) Re-Filter: ", this_thread); + break; +#ifdef FEATURE_FORCE_LOAD + case LOG_LEVEL_FORCE: + outc = sprintf(outbuf, "Privoxy(%05ld) Force: ", this_thread); + break; +#endif /* def FEATURE_FORCE_LOAD */ +#ifdef FEATURE_FAST_REDIRECTS + case LOG_LEVEL_REDIRECTS: + outc = sprintf(outbuf, "Privoxy(%05ld) Redirect: ", this_thread); + break; +#endif /* def FEATURE_FAST_REDIRECTS */ + case LOG_LEVEL_DEANIMATE: + outc = sprintf(outbuf, "Privoxy(%05ld) Gif-Deanimate: ", this_thread); + break; + case LOG_LEVEL_CLF: + outbuf = outbuf_save; + outc = 0; + outbuf[0] = '\0'; + break; +#ifdef FEATURE_KILL_POPUPS + case LOG_LEVEL_POPUPS: + outc = sprintf(outbuf, "Privoxy(%05ld) Kill-Popups: ", this_thread); + break; +#endif /* def FEATURE_KILL_POPUPS */ + case LOG_LEVEL_CGI: + outc = sprintf(outbuf, "Privoxy(%05ld) CGI: ", this_thread); break; default: - outc = sprintf(outbuf, "IJB(%d) UNKNOWN LOG TYPE(%d): ", this_thread, loglevel); + outc = sprintf(outbuf, "Privoxy(%05ld) UNKNOWN LOG TYPE(%d): ", this_thread, loglevel); break; } @@ -191,10 +510,10 @@ void log_error(int loglevel, char *fmt, ...) va_start( ap, fmt ); /* build formatted message from fmt and var-args */ - while ((*src) && (outc < BUFSIZ-2)) + while ((*src) && (outc < BUFFER_SIZE-2)) { - char tempbuf[BUFSIZ]; - char *sval; + char tempbuf[BUFFER_SIZE]; + char *sval = NULL; int ival; unsigned uval; long lval; @@ -218,7 +537,7 @@ void log_error(int loglevel, char *fmt, ...) ival = va_arg( ap, int ); oldoutc = outc; outc += sprintf(tempbuf, "%d", ival); - if (outc < BUFSIZ-1) + if (outc < BUFFER_SIZE-1) { strcpy(outbuf + oldoutc, tempbuf); } @@ -231,7 +550,7 @@ void log_error(int loglevel, char *fmt, ...) uval = va_arg( ap, unsigned ); oldoutc = outc; outc += sprintf(tempbuf, "%u", uval); - if (outc < BUFSIZ-1) + if (outc < BUFFER_SIZE-1) { strcpy(outbuf + oldoutc, tempbuf); } @@ -258,7 +577,7 @@ void log_error(int loglevel, char *fmt, ...) else { /* Error */ - sprintf(outbuf, "IJB(%d) Error: log_error(): Bad format string:\n" + sprintf(outbuf, "Privoxy(%ld) Error: log_error(): Bad format string:\n" "Format = \"%s\"\n" "Exiting.", this_thread, fmt); /* FIXME RACE HAZARD: should start critical section error_log_use here */ @@ -268,14 +587,11 @@ void log_error(int loglevel, char *fmt, ...) } fputs(outbuf, logfp); /* FIXME RACE HAZARD: should end critical section error_log_use here */ -#if defined(_WIN32) && ! defined (_WIN_CONSOLE) - MessageBox(NULL, outbuf, "Internet JunkBuster Error", - MB_OK | MB_ICONERROR | MB_TASKMODAL | MB_SETFOREGROUND | MB_TOPMOST); -#endif /* defined(_WIN32) && ! defined (_WIN_CONSOLE) */ - exit(1); + fatal_error(outbuf); + /* Never get here */ break; } - if (outc < BUFSIZ-1) + if (outc < BUFFER_SIZE-1) { strcpy(outbuf + oldoutc, tempbuf); } @@ -295,7 +611,7 @@ void log_error(int loglevel, char *fmt, ...) sval = va_arg( ap, char * ); oldoutc = outc; outc += strlen(sval); - if (outc < BUFSIZ-1) + if (outc < BUFFER_SIZE-1) { strcpy(outbuf + oldoutc, sval); } @@ -304,22 +620,57 @@ void log_error(int loglevel, char *fmt, ...) outbuf[oldoutc] = '\0'; } break; + case 'N': + /* Non-standard: Print a counted string. Takes 2 parameters: + * int length, const char * string + */ + ival = va_arg( ap, int ); + sval = va_arg( ap, char * ); + if (ival < 0) + { + ival = 0; + } + oldoutc = outc; + outc += ival; + if (outc < BUFFER_SIZE-1) + { + memcpy(outbuf + oldoutc, sval, (size_t) ival); + } + else + { + outbuf[oldoutc] = '\0'; + } + break; case 'E': /* Non-standard: Print error code from errno */ - ival = errno; -#ifndef NOSTRERROR +#ifdef _WIN32 + ival = WSAGetLastError(); + sval = w32_socket_strerr(ival, tempbuf); +#elif __OS2__ + ival = sock_errno(); + if (ival != 0) + sval = os2_socket_strerr(ival, tempbuf); + else + { + ival = errno; + sval = strerror(ival); + } +#else /* ifndef _WIN32 */ + ival = errno; +#ifdef HAVE_STRERROR sval = strerror(ival); -#else /* def NOSTRERROR */ - sval = NULL -#endif /* def NOSTRERROR */ +#else /* ifndef HAVE_STRERROR */ + sval = NULL; +#endif /* ndef HAVE_STRERROR */ if (sval == NULL) { sprintf(tempbuf, "(errno = %d)", ival); sval = tempbuf; } +#endif /* ndef _WIN32 */ oldoutc = outc; outc += strlen(sval); - if (outc < BUFSIZ-1) + if (outc < BUFFER_SIZE-1) { strcpy(outbuf + oldoutc, sval); } @@ -328,8 +679,52 @@ void log_error(int loglevel, char *fmt, ...) outbuf[oldoutc] = '\0'; } break; + case 'T': + /* Non-standard: Print a Common Log File timestamp */ + { + /* + * Write timestamp into tempbuf. + * + * Complex because not all OSs have tm_gmtoff or + * the %z field in strftime() + */ + time_t now; + struct tm *tm_now; + struct tm gmt; +#ifdef HAVE_LOCALTIME_R + struct tm dummy; +#endif + int days, hrs, mins; + time (&now); +#ifdef HAVE_GMTIME_R + gmt = *gmtime_r(&now, &gmt); +#else + gmt = *gmtime(&now); +#endif +#ifdef HAVE_LOCALTIME_R + tm_now = localtime_r(&now, &dummy); +#else + tm_now = localtime (&now); +#endif + days = tm_now->tm_yday - gmt.tm_yday; + hrs = ((days < -1 ? 24 : 1 < days ? -24 : days * 24) + tm_now->tm_hour - gmt.tm_hour); + mins = hrs * 60 + tm_now->tm_min - gmt.tm_min; + strftime (tempbuf, BUFFER_SIZE-6, "%d/%b/%Y:%H:%M:%S ", tm_now); + sprintf (tempbuf + strlen(tempbuf), "%+03d%02d", mins / 60, abs(mins) % 60); + } + oldoutc = outc; + outc += strlen(tempbuf); + if (outc < BUFFER_SIZE-1) + { + strcpy(outbuf + oldoutc, tempbuf); + } + else + { + outbuf[oldoutc] = '\0'; + } + break; default: - sprintf(outbuf, "IJB(%d) Error: log_error(): Bad format string:\n" + sprintf(outbuf, "Privoxy(%ld) Error: log_error(): Bad format string:\n" "Format = \"%s\"\n" "Exiting.", this_thread, fmt); /* FIXME RACE HAZARD: should start critical section error_log_use here */ @@ -337,13 +732,10 @@ void log_error(int loglevel, char *fmt, ...) { logfp = stderr; } - fputs(outbuf, logfp); + fputs(outbuf_save, logfp); /* FIXME RACE HAZARD: should end critical section error_log_use here */ -#if defined(_WIN32) && ! defined (_WIN_CONSOLE) - MessageBox(NULL, outbuf, "Internet JunkBuster Error", - MB_OK | MB_ICONERROR | MB_TASKMODAL | MB_SETFOREGROUND | MB_TOPMOST); -#endif /* defined(_WIN32) && ! defined (_WIN_CONSOLE) */ - exit(1); + fatal_error(outbuf_save); + /* Never get here */ break; } /* switch( p ) */ @@ -353,20 +745,20 @@ void log_error(int loglevel, char *fmt, ...) /* done with var. args */ va_end( ap ); - if (outc >= BUFSIZ-2) + if (outc >= BUFFER_SIZE-2) { /* insufficient room for newline and trailing null. */ static const char warning[] = "... [too long, truncated]\n"; - if (outc < BUFSIZ) + if (outc < BUFFER_SIZE) { /* Need to add terminating null in this case. */ outbuf[outc] = '\0'; } /* Truncate output */ - outbuf[BUFSIZ - sizeof(warning)] = '\0'; + outbuf[BUFFER_SIZE - sizeof(warning)] = '\0'; /* Append warning */ strcat(outbuf, warning); @@ -386,22 +778,192 @@ void log_error(int loglevel, char *fmt, ...) logfp = stderr; } - fputs(outbuf, logfp); + fputs(outbuf_save, logfp); + + if (loglevel == LOG_LEVEL_FATAL) + { + fatal_error(outbuf_save); + /* Never get here */ + } /* FIXME RACE HAZARD: should end critical section error_log_use here */ #if defined(_WIN32) && !defined(_WIN_CONSOLE) /* Write to display */ - LogPutString(outbuf); - LogShowActivity(); + LogPutString(outbuf_save); #endif /* defined(_WIN32) && !defined(_WIN_CONSOLE) */ } +#ifdef _WIN32 +/********************************************************************* + * + * Function : w32_socket_strerr + * + * Description : Translate the return value from WSAGetLastError() + * into a string. + * + * Parameters : + * 1 : errcode = The return value from WSAGetLastError(). + * 2 : tmp_buf = A temporary buffer that might be used to + * store the string. + * + * Returns : String representing the error code. This may be + * a global string constant or a string stored in + * tmp_buf. + * + *********************************************************************/ +static char *w32_socket_strerr(int errcode, char *tmp_buf) +{ +#define TEXT_FOR_ERROR(code,text) \ + if (errcode == code) \ + { \ + return #code " - " text; \ + } + + TEXT_FOR_ERROR(WSAEACCES, "Permission denied") + TEXT_FOR_ERROR(WSAEADDRINUSE, "Address already in use.") + TEXT_FOR_ERROR(WSAEADDRNOTAVAIL, "Cannot assign requested address."); + TEXT_FOR_ERROR(WSAEAFNOSUPPORT, "Address family not supported by protocol family."); + TEXT_FOR_ERROR(WSAEALREADY, "Operation already in progress."); + TEXT_FOR_ERROR(WSAECONNABORTED, "Software caused connection abort."); + TEXT_FOR_ERROR(WSAECONNREFUSED, "Connection refused."); + TEXT_FOR_ERROR(WSAECONNRESET, "Connection reset by peer."); + TEXT_FOR_ERROR(WSAEDESTADDRREQ, "Destination address required."); + TEXT_FOR_ERROR(WSAEFAULT, "Bad address."); + TEXT_FOR_ERROR(WSAEHOSTDOWN, "Host is down."); + TEXT_FOR_ERROR(WSAEHOSTUNREACH, "No route to host."); + TEXT_FOR_ERROR(WSAEINPROGRESS, "Operation now in progress."); + TEXT_FOR_ERROR(WSAEINTR, "Interrupted function call."); + TEXT_FOR_ERROR(WSAEINVAL, "Invalid argument."); + TEXT_FOR_ERROR(WSAEISCONN, "Socket is already connected."); + TEXT_FOR_ERROR(WSAEMFILE, "Too many open sockets."); + TEXT_FOR_ERROR(WSAEMSGSIZE, "Message too long."); + TEXT_FOR_ERROR(WSAENETDOWN, "Network is down."); + TEXT_FOR_ERROR(WSAENETRESET, "Network dropped connection on reset."); + TEXT_FOR_ERROR(WSAENETUNREACH, "Network is unreachable."); + TEXT_FOR_ERROR(WSAENOBUFS, "No buffer space available."); + TEXT_FOR_ERROR(WSAENOPROTOOPT, "Bad protocol option."); + TEXT_FOR_ERROR(WSAENOTCONN, "Socket is not connected."); + TEXT_FOR_ERROR(WSAENOTSOCK, "Socket operation on non-socket."); + TEXT_FOR_ERROR(WSAEOPNOTSUPP, "Operation not supported."); + TEXT_FOR_ERROR(WSAEPFNOSUPPORT, "Protocol family not supported."); + TEXT_FOR_ERROR(WSAEPROCLIM, "Too many processes."); + TEXT_FOR_ERROR(WSAEPROTONOSUPPORT, "Protocol not supported."); + TEXT_FOR_ERROR(WSAEPROTOTYPE, "Protocol wrong type for socket."); + TEXT_FOR_ERROR(WSAESHUTDOWN, "Cannot send after socket shutdown."); + TEXT_FOR_ERROR(WSAESOCKTNOSUPPORT, "Socket type not supported."); + TEXT_FOR_ERROR(WSAETIMEDOUT, "Connection timed out."); + TEXT_FOR_ERROR(WSAEWOULDBLOCK, "Resource temporarily unavailable."); + TEXT_FOR_ERROR(WSAHOST_NOT_FOUND, "Host not found."); + TEXT_FOR_ERROR(WSANOTINITIALISED, "Successful WSAStartup not yet performed."); + TEXT_FOR_ERROR(WSANO_DATA, "Valid name, no data record of requested type."); + TEXT_FOR_ERROR(WSANO_RECOVERY, "This is a non-recoverable error."); + TEXT_FOR_ERROR(WSASYSNOTREADY, "Network subsystem is unavailable."); + TEXT_FOR_ERROR(WSATRY_AGAIN, "Non-authoritative host not found."); + TEXT_FOR_ERROR(WSAVERNOTSUPPORTED, "WINSOCK.DLL version out of range."); + TEXT_FOR_ERROR(WSAEDISCON, "Graceful shutdown in progress."); + /* + * The following error codes are documented in the Microsoft WinSock + * reference guide, but don't actually exist. + * + * TEXT_FOR_ERROR(WSA_INVALID_HANDLE, "Specified event object handle is invalid."); + * TEXT_FOR_ERROR(WSA_INVALID_PARAMETER, "One or more parameters are invalid."); + * TEXT_FOR_ERROR(WSAINVALIDPROCTABLE, "Invalid procedure table from service provider."); + * TEXT_FOR_ERROR(WSAINVALIDPROVIDER, "Invalid service provider version number."); + * TEXT_FOR_ERROR(WSA_IO_PENDING, "Overlapped operations will complete later."); + * TEXT_FOR_ERROR(WSA_IO_INCOMPLETE, "Overlapped I/O event object not in signaled state."); + * TEXT_FOR_ERROR(WSA_NOT_ENOUGH_MEMORY, "Insufficient memory available."); + * TEXT_FOR_ERROR(WSAPROVIDERFAILEDINIT, "Unable to initialize a service provider."); + * TEXT_FOR_ERROR(WSASYSCALLFAILURE, "System call failure."); + * TEXT_FOR_ERROR(WSA_OPERATION_ABORTED, "Overlapped operation aborted."); + */ + + sprintf(tmp_buf, "(error number %d)", errcode); + return tmp_buf; +} +#endif /* def _WIN32 */ + + +#ifdef __OS2__ +/********************************************************************* + * + * Function : os2_socket_strerr + * + * Description : Translate the return value from sock_errno() + * into a string. + * + * Parameters : + * 1 : errcode = The return value from sock_errno(). + * 2 : tmp_buf = A temporary buffer that might be used to + * store the string. + * + * Returns : String representing the error code. This may be + * a global string constant or a string stored in + * tmp_buf. + * + *********************************************************************/ +static char *os2_socket_strerr(int errcode, char *tmp_buf) +{ +#define TEXT_FOR_ERROR(code,text) \ + if (errcode == code) \ + { \ + return #code " - " text; \ + } + + TEXT_FOR_ERROR(SOCEPERM , "Not owner.") + TEXT_FOR_ERROR(SOCESRCH , "No such process.") + TEXT_FOR_ERROR(SOCEINTR , "Interrupted system call.") + TEXT_FOR_ERROR(SOCENXIO , "No such device or address.") + TEXT_FOR_ERROR(SOCEBADF , "Bad file number.") + TEXT_FOR_ERROR(SOCEACCES , "Permission denied.") + TEXT_FOR_ERROR(SOCEFAULT , "Bad address.") + TEXT_FOR_ERROR(SOCEINVAL , "Invalid argument.") + TEXT_FOR_ERROR(SOCEMFILE , "Too many open files.") + TEXT_FOR_ERROR(SOCEPIPE , "Broken pipe.") + TEXT_FOR_ERROR(SOCEWOULDBLOCK , "Operation would block.") + TEXT_FOR_ERROR(SOCEINPROGRESS , "Operation now in progress.") + TEXT_FOR_ERROR(SOCEALREADY , "Operation already in progress.") + TEXT_FOR_ERROR(SOCENOTSOCK , "Socket operation on non-socket.") + TEXT_FOR_ERROR(SOCEDESTADDRREQ , "Destination address required.") + TEXT_FOR_ERROR(SOCEMSGSIZE , "Message too long.") + TEXT_FOR_ERROR(SOCEPROTOTYPE , "Protocol wrong type for socket.") + TEXT_FOR_ERROR(SOCENOPROTOOPT , "Protocol not available.") + TEXT_FOR_ERROR(SOCEPROTONOSUPPORT, "Protocol not supported.") + TEXT_FOR_ERROR(SOCESOCKTNOSUPPORT, "Socket type not supported.") + TEXT_FOR_ERROR(SOCEOPNOTSUPP , "Operation not supported.") + TEXT_FOR_ERROR(SOCEPFNOSUPPORT , "Protocol family not supported.") + TEXT_FOR_ERROR(SOCEAFNOSUPPORT , "Address family not supported by protocol family.") + TEXT_FOR_ERROR(SOCEADDRINUSE , "Address already in use.") + TEXT_FOR_ERROR(SOCEADDRNOTAVAIL , "Can't assign requested address.") + TEXT_FOR_ERROR(SOCENETDOWN , "Network is down.") + TEXT_FOR_ERROR(SOCENETUNREACH , "Network is unreachable.") + TEXT_FOR_ERROR(SOCENETRESET , "Network dropped connection on reset.") + TEXT_FOR_ERROR(SOCECONNABORTED , "Software caused connection abort.") + TEXT_FOR_ERROR(SOCECONNRESET , "Connection reset by peer.") + TEXT_FOR_ERROR(SOCENOBUFS , "No buffer space available.") + TEXT_FOR_ERROR(SOCEISCONN , "Socket is already connected.") + TEXT_FOR_ERROR(SOCENOTCONN , "Socket is not connected.") + TEXT_FOR_ERROR(SOCESHUTDOWN , "Can't send after socket shutdown.") + TEXT_FOR_ERROR(SOCETOOMANYREFS , "Too many references: can't splice.") + TEXT_FOR_ERROR(SOCETIMEDOUT , "Operation timed out.") + TEXT_FOR_ERROR(SOCECONNREFUSED , "Connection refused.") + TEXT_FOR_ERROR(SOCELOOP , "Too many levels of symbolic links.") + TEXT_FOR_ERROR(SOCENAMETOOLONG , "File name too long.") + TEXT_FOR_ERROR(SOCEHOSTDOWN , "Host is down.") + TEXT_FOR_ERROR(SOCEHOSTUNREACH , "No route to host.") + TEXT_FOR_ERROR(SOCENOTEMPTY , "Directory not empty.") + TEXT_FOR_ERROR(SOCEOS2ERR , "OS/2 Error.") + + sprintf(tmp_buf, "(error number %d)", errcode); + return tmp_buf; +} +#endif /* def __OS2__ */ + + /* Local Variables: tab-width: 3 end: */ - diff --git a/errlog.h b/errlog.h index 24ce2856..c3424dd0 100644 --- a/errlog.h +++ b/errlog.h @@ -1,15 +1,15 @@ -#ifndef _ERRLOG_H -#define _ERRLOG_H -#define ERRLOG_H_VERSION "$Id: errlog.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef ERRLOG_H_INCLUDED +#define ERRLOG_H_INCLUDED +#define ERRLOG_H_VERSION "$Id: errlog.h,v 1.12 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/errlog.h,v $ + * File : $Source: /cvsroot/ijbswa/current/errlog.h,v $ * * Purpose : Log errors to a designated destination in an elegant, * printf-like fashion. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -35,6 +35,91 @@ * * Revisions : * $Log: errlog.h,v $ + * Revision 1.12 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.11 2002/03/06 23:02:57 jongfoster + * Removing tabs + * + * Revision 1.10 2001/09/13 20:08:06 jongfoster + * Adding support for LOG_LEVEL_CGI + * + * Revision 1.9 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.8 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.7 2001/07/19 19:02:53 haroon + * Added define for LOG_LEVEL_POPUPS + * + * Revision 1.6 2001/07/13 13:59:22 oes + * - Added LOG_LEVEL_DEANIMATE + * - Changed LOG_LEVEL_CLF + * - Removed all #ifdef PCRS + * + * Revision 1.5 2001/05/26 17:25:14 jongfoster + * Added support for CLF (Common Log Format) and fixed LOG_LEVEL_LOG + * + * Revision 1.4 2001/05/25 21:56:06 jongfoster + * Added FIXME comment to (broken) LOG_LEVEL_LOG + * + * Revision 1.3 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.2 2001/05/20 01:11:40 jongfoster + * Added support for LOG_LEVEL_FATAL + * Renamed LOG_LEVEL_FRC to LOG_LEVEL_FORCE, + * and LOG_LEVEL_REF to LOG_LEVEL_RE_FILTER + * + * Revision 1.1.1.1 2001/05/15 13:58:51 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -45,19 +130,31 @@ extern "C" { /* Debug level for errors */ -#define LOG_LEVEL_GPC 0x0001 -#define LOG_LEVEL_CONNECT 0x0002 -#define LOG_LEVEL_IO 0x0004 -#define LOG_LEVEL_HEADER 0x0008 -#define LOG_LEVEL_LOG 0x0010 -#ifdef PCRS -#define LOG_LEVEL_FRC 0x0020 -#define LOG_LEVEL_REF 0x0040 -#endif /* def PCRS */ +#define LOG_LEVEL_GPC 0x0001 +#define LOG_LEVEL_CONNECT 0x0002 +#define LOG_LEVEL_IO 0x0004 +#define LOG_LEVEL_HEADER 0x0008 +#define LOG_LEVEL_LOG 0x0010 +#ifdef FEATURE_FORCE_LOAD +#define LOG_LEVEL_FORCE 0x0020 +#endif /* def FEATURE_FORCE_LOAD */ +#define LOG_LEVEL_RE_FILTER 0x0040 +#ifdef FEATURE_FAST_REDIRECTS +#define LOG_LEVEL_REDIRECTS 0x0080 +#endif /* def FEATURE_FAST_REDIRECTS */ +#define LOG_LEVEL_DEANIMATE 0x0100 + +#define LOG_LEVEL_CLF 0x0200 /* Common Log File format */ +#ifdef FEATURE_KILL_POPUPS +#define LOG_LEVEL_POPUPS 0x0400 /* Kill Popups */ +#endif /* def FEATURE_KILL_POPUPS */ + +#define LOG_LEVEL_CGI 0x0800 /* CGI / templates */ /* Following are always on: */ -#define LOG_LEVEL_ERROR 0x1000 -#define LOG_LEVEL_INFO 0x2000 +#define LOG_LEVEL_INFO 0x1000 +#define LOG_LEVEL_ERROR 0x2000 +#define LOG_LEVEL_FATAL 0x4000 /* Exits after writing log */ extern void init_error_log(const char *prog_name, const char *logfname, int debuglevel); extern void log_error(int loglevel, char *fmt, ...); @@ -70,7 +167,7 @@ extern const char errlog_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _ERRLOG_H */ +#endif /* ndef ERRLOG_H_INCLUDED */ /* Local Variables: diff --git a/filters.c b/filters.c index 29cee478..ff70ac56 100644 --- a/filters.c +++ b/filters.c @@ -1,24 +1,24 @@ -const char filters_rcs[] = "$Id: filters.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char filters_rcs[] = "$Id: filters.c,v 1.57 2002/04/08 20:38:34 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/filters.c,v $ + * File : $Source: /cvsroot/ijbswa/current/filters.c,v $ * * Purpose : Declares functions to parse/crunch headers and pages. * Functions declared include: * `acl_addr', `add_stats', `block_acl', `block_imageurl', - * `block_url', `cookie_url', `domaincmp', `dsplit', - * `filter_popups', `forward_url', - * `ij_untrusted_url', `intercept_url', `re_process_buffer', - * `show_proxy_args', and `trust_url' + * `block_url', `url_actions', `domain_split', + * `filter_popups', `forward_url', 'redirect_url', + * `ij_untrusted_url', `intercept_url', `pcrs_filter_respose', + * 'ijb_send_banner', and `trust_url' * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -38,6 +38,359 @@ const char filters_rcs[] = "$Id: filters.c,v 1.1 2001/05/13 21:57:06 administrat * * Revisions : * $Log: filters.c,v $ + * Revision 1.57 2002/04/08 20:38:34 swa + * fixed JB spelling + * + * Revision 1.56 2002/04/05 15:51:24 oes + * - bugfix: error-pages now get correct request protocol + * - fix for invalid HTML in trust info + * + * Revision 1.55 2002/04/02 16:13:51 oes + * Fix: No "Go there anyway" for SSL + * + * Revision 1.54 2002/04/02 14:55:56 oes + * Bugfix: is_untrusted_url() now depends on FEATURE_TRUST, not FEATURE_COOKIE_JAR + * + * Revision 1.53 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.52 2002/03/24 16:35:57 jongfoster + * Removing logo + * + * Revision 1.51 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.50 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.49 2002/03/16 20:29:14 oes + * Cosmetics + * + * Revision 1.48 2002/03/13 20:25:34 oes + * Better logging for content filters + * + * Revision 1.47 2002/03/13 00:30:52 jongfoster + * Killing warnings + * Added option of always sending redirect for imageblock, + * currently disabled with #if 0. + * + * Revision 1.46 2002/03/12 01:42:49 oes + * Introduced modular filters + * + * Revision 1.45 2002/03/08 16:47:50 oes + * Added choice beween GIF and PNG built-in images + * + * Revision 1.44 2002/03/07 03:49:31 oes + * - Fixed compiler warnings etc + * - Changed built-in images from GIF to PNG + * (with regard to Unisys patent issue) + * - Added a 4x4 pattern PNG which is less intrusive + * than the logo but also clearly marks the deleted banners + * + * Revision 1.43 2002/01/22 23:51:59 jongfoster + * Replacing strsav() with the safer string_append(). + * + * Adding missing html_encode() to error message generators. Where encoded + * and unencoded versions of a string were provided, removing the unencoded + * one. + * + * Revision 1.42 2002/01/17 21:00:32 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Using a single, simple url_match(pattern,url) function - rather than + * the 3-line match routine which was repeated all over the place. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Using parse_http_url() to parse URLs without faking a HTTP + * request line for parse_http_request(). + * + * Revision 1.41 2001/11/13 00:14:07 jongfoster + * Fixing stupid bug now I've figured out what || means. + * (It always returns 0 or 1, not one of it's paramaters.) + * + * Revision 1.40 2001/10/26 17:37:55 oes + * - Re-enabled Netscape 200/404 bug workaround in block_url(): + * - Removed OS/2 special case + * - Made block_url() independant from sed() having been run + * - Made trust_url independant from sed() having been run + * - Made is_imageurl independant from sed() having been run. + * It now checks User-Agent: and Accept: by itself. + * + * + * Revision 1.39 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.38 2001/10/23 21:32:33 jongfoster + * Adding error-checking to selected functions + * + * Revision 1.37 2001/10/22 15:33:56 david__schmidt + * Special-cased OS/2 out of the Netscape-abort-on-404-in-js problem in + * filters.c. Added a FIXME in front of the offending code. I'll gladly + * put in a better/more robust fix for all parties if one is presented... + * It seems that just returning 200 instead of 404 would pretty much fix + * it for everyone, but I don't know all the history of the problem. + * + * Revision 1.36 2001/10/10 16:44:16 oes + * Added match_portlist function + * + * Revision 1.35 2001/10/07 15:41:23 oes + * Replaced 6 boolean members of csp with one bitmap (csp->flags) + * + * New function remove_chunked_transfer_coding that strips chunked + * transfer coding to plain and is called by pcrs_filter_response + * and gif_deanimate_response if neccessary + * + * Improved handling of zero-change re_filter runs + * + * pcrs_filter_response and gif_deanimate_response now remove + * chunked transfer codeing before processing the body. + * + * Revision 1.34 2001/09/20 15:49:36 steudten + * + * Fix BUG: Change int size to size_t size in pcrs_filter_response(). + * See cgi.c fill_template(). + * + * Revision 1.33 2001/09/16 17:05:14 jongfoster + * Removing unused #include showarg.h + * + * Revision 1.32 2001/09/16 13:21:27 jongfoster + * Changes to use new list functions. + * + * Revision 1.31 2001/09/16 11:38:02 jongfoster + * Splitting fill_template() into 2 functions: + * template_load() loads the file + * template_fill() performs the PCRS regexps. + * This is because the CGI edit interface has a "table row" + * template which is used many times in the page - this + * change means it's only loaded from disk once. + * + * Revision 1.30 2001/09/16 11:00:10 jongfoster + * New function alloc_http_response, for symmetry with free_http_response + * + * Revision 1.29 2001/09/13 23:32:40 jongfoster + * Moving image data to cgi.c rather than cgi.h + * Fixing a GPF under Win32 (and any other OS that protects global + * constants from being written to). + * + * Revision 1.28 2001/09/10 10:18:51 oes + * Silenced compiler warnings + * + * Revision 1.27 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.26 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.25 2001/07/26 10:09:46 oes + * Made browser detection a little less naive + * + * Revision 1.24 2001/07/25 17:22:51 oes + * Added workaround for Netscape bug that prevents display of page when loading a component fails. + * + * Revision 1.23 2001/07/23 13:40:12 oes + * Fixed bug that caused document body to be dropped when pcrs joblist was empty. + * + * Revision 1.22 2001/07/18 12:29:34 oes + * - Made gif_deanimate_response respect + * csp->action->string[ACTION_STRING_DEANIMATE] + * - Logging cosmetics + * + * Revision 1.21 2001/07/13 13:59:53 oes + * - Introduced gif_deanimate_response which shares the + * generic content modification interface of pcrs_filter_response + * and acts as a wrapper to deanimate.c:gif_deanimate() + * - Renamed re_process_buffer to pcrs_filter_response + * - pcrs_filter_response now returns NULL on failiure + * - Removed all #ifdef PCRS + * + * Revision 1.20 2001/07/01 17:01:04 oes + * Added comments and missing return statement in is_untrusted_url() + * + * Revision 1.19 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.18 2001/06/29 13:27:38 oes + * - Cleaned up, renamed and reorderd functions + * and improved comments + * + * - block_url: + * - Ported to CGI platform. Now delivers + * http_response or NULL + * - Unified HTML and GIF generation (moved image detection + * and GIF generation here from jcc.c:chat()) + * - Fixed HTTP status to: + * - 403 (Forbidden) for the "blocked" HTML message + * - 200 (OK) for GIF answers + * - 302 (Redirect) for redirect to GIF + * + * - trust_url: + * - Ported to CGI platform. Now delivers + * http_response or NULL + * - Separated detection of untrusted URL into + * (bool)is_untrusted_url + * - Added enforcement of untrusted requests + * + * - Moved redirect_url() from cgi.c to here + * and ported it to the CGI platform + * + * - Removed logentry from cancelled commit + * + * Revision 1.17 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.16 2001/06/07 23:10:26 jongfoster + * Allowing unanchored domain patterns to back off and retry + * if they partially match. Optimized right-anchored patterns. + * Moving ACL and forward files into config file. + * Replacing struct gateway with struct forward_spec + * + * Revision 1.15 2001/06/03 19:12:00 oes + * extracted-CGI relevant stuff + * + * Revision 1.14 2001/06/01 10:30:55 oes + * Added optional left-anchoring to domaincmp + * + * Revision 1.13 2001/05/31 21:21:30 jongfoster + * Permissionsfile / actions file changes: + * - Changed "permission" to "action" throughout + * - changes to file format to allow string parameters + * - Moved helper functions to actions.c + * + * Revision 1.12 2001/05/31 17:35:20 oes + * + * - Enhanced domain part globbing with infix and prefix asterisk + * matching and optional unanchored operation + * + * Revision 1.11 2001/05/29 11:53:23 oes + * "See why" link added to "blocked" page + * + * Revision 1.10 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.9 2001/05/27 22:17:04 oes + * + * - re_process_buffer no longer writes the modified buffer + * to the client, which was very ugly. It now returns the + * buffer, which it is then written by chat. + * + * - content_length now adjusts the Content-Length: header + * for modified documents rather than crunch()ing it. + * (Length info in csp->content_length, which is 0 for + * unmodified documents) + * + * - For this to work, sed() is called twice when filtering. + * + * Revision 1.8 2001/05/26 17:13:28 jongfoster + * Filled in a function comment. + * + * Revision 1.7 2001/05/26 15:26:15 jongfoster + * ACL feature now provides more security by immediately dropping + * connections from untrusted hosts. + * + * Revision 1.6 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.5 2001/05/25 22:34:30 jongfoster + * Hard tabs->Spaces + * + * Revision 1.4 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.3 2001/05/20 16:44:47 jongfoster + * Removing last hardcoded Junkbusters.com URLs. + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:58:52 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -49,25 +402,34 @@ const char filters_rcs[] = "$Id: filters.c,v 1.1 2001/05/13 21:57:06 administrat #include #include #include +#include #ifndef _WIN32 +#ifndef __OS2__ #include +#endif /* ndef __OS2__ */ #include #else #include -#endif +#endif /* ndef _WIN32 */ + +#ifdef __OS2__ +#include +#endif /* def __OS2__ */ #include "project.h" #include "filters.h" #include "encode.h" -#include "jcc.h" -#include "showargs.h" #include "parsers.h" #include "ssplit.h" -#include "gateway.h" -#include "jbsockets.h" #include "errlog.h" #include "jbsockets.h" +#include "miscutil.h" +#include "actions.h" +#include "cgi.h" +#include "list.h" +#include "deanimate.h" +#include "urlmatch.h" #ifdef _WIN32 #include "win32.h" @@ -85,61 +447,7 @@ const char filters_h_rcs[] = FILTERS_H_VERSION; #define ijb_isdigit(__X) isdigit((int)(unsigned char)(__X)) -static const char CBLOCK[] = -#ifdef AMIGA - "HTTP/1.0 403 Request for blocked URL\n" -#else /* ifndef AMIGA */ - "HTTP/1.0 202 Request for blocked URL\n" -#endif /* ndef AMIGA */ - "Pragma: no-cache\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Content-Type: text/html\n\n" - "\n" - "\n" - "Internet Junkbuster: Request for blocked URL\n" - "\n" - WHITEBG - "

    " - BANNER - "

    \n" - "

    Your request for %s%s
    \n" - "was blocked because it matches the following pattern " - "in the blockfile: %s\n

    " -#ifdef FORCE_LOAD - "

    Go there anyway.

    " -#endif /* def FORCE_LOAD */ - "\n" - "\n"; - -#ifdef TRUST_FILES -static const char CTRUST[] = -#ifdef AMIGA - "HTTP/1.0 403 Request for untrusted URL\n" -#else /* ifndef AMIGA */ - "HTTP/1.0 202 Request for untrusted URL\n" -#endif /* ndef AMIGA */ - "Pragma: no-cache\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Content-Type: text/html\n\n" - "\n" - "\n" - "Internet Junkbuster: Request for untrusted URL\n" - "\n" - WHITEBG - "
    " - "" - BANNER - "" - "
    " - "\n" - "\n"; -#endif /* def TRUST_FILES */ - - -#ifdef ACL_FILES +#ifdef FEATURE_ACL /********************************************************************* * * Function : block_acl @@ -148,52 +456,51 @@ static const char CTRUST[] = * Decide yes or no based on ACL file. * * Parameters : - * 1 : src = Address the browser/user agent is requesting. - * 2 : dst = The proxy or gateway address this is going to. - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : dst = The proxy or gateway address this is going to. + * Or NULL to check all possible targets. + * 2 : csp = Current client state (buffers, headers, etc...) + * Also includes the client IP address. * * Returns : 0 = FALSE (don't block) and 1 = TRUE (do block) * *********************************************************************/ -int block_acl(struct access_control_addr *src, struct access_control_addr *dst, struct client_state *csp) +int block_acl(struct access_control_addr *dst, struct client_state *csp) { - struct file_list *fl; - struct access_control_list *a, *acl; - struct access_control_addr s[1], d[1]; + struct access_control_list *acl = csp->config->acl; /* if not using an access control list, then permit the connection */ - if (((fl = csp->alist) == NULL) || ((acl = fl->f) == NULL)) + if (acl == NULL) { return(0); } /* search the list */ - for (a = acl->next ; a ; a = a->next) + while (acl != NULL) { - *s = *src; - *d = *dst; - - s->addr &= a->src->mask; - d->addr &= a->dst->mask; - - if ((s->addr == a->src->addr) - && (d->addr == a->dst->addr) - && ((s->port == a->src->port) - || (s->port == 0) - || (a->src->port == 0)) - && ((d->port == a->dst->port) - || (d->port == 0) - || (a->dst->port == 0))) + if ((csp->ip_addr_long & acl->src->mask) == acl->src->addr) { - if (a->action == ACL_PERMIT) + if (dst == NULL) { - return(0); + /* Just want to check if they have any access */ + if (acl->action == ACL_PERMIT) + { + return(0); + } } - else + else if ( ((dst->addr & acl->dst->mask) == acl->dst->addr) + && ((dst->port == acl->dst->port) || (acl->dst->port == 0))) { - return(1); + if (acl->action == ACL_PERMIT) + { + return(0); + } + else + { + return(1); + } } } + acl = acl->next; } return(1); @@ -205,11 +512,11 @@ int block_acl(struct access_control_addr *src, struct access_control_addr *dst, * * Function : acl_addr * - * Description : Called from `load_aclfile'. FIXME: I can't say more. + * Description : Called from `load_config' to parse an ACL address. * * Parameters : - * 1 : aspec = (what?) - * 2 : aca = (what?) + * 1 : aspec = String specifying ACL address. + * 2 : aca = struct access_control_addr to fill in. * * Returns : 0 => Ok, everything else is an error. * @@ -222,7 +529,7 @@ int acl_addr(char *aspec, struct access_control_addr *aca) masklength = 32; port = 0; - if ((p = strchr(aspec, '/'))) + if ((p = strchr(aspec, '/')) != NULL) { *p++ = '\0'; @@ -238,7 +545,7 @@ int acl_addr(char *aspec, struct access_control_addr *aca) return(-1); } - if ((p = strchr(aspec, ':'))) + if ((p = strchr(aspec, ':')) != NULL) { *p++ = '\0'; @@ -253,9 +560,8 @@ int acl_addr(char *aspec, struct access_control_addr *aca) aca->addr = ntohl(resolve_hostname_to_ip(aspec)); - if (aca->addr == -1) + if (aca->addr == INADDR_NONE) { - log_error(LOG_LEVEL_ERROR, "can't resolve address for %s", aspec); return(-1); } @@ -274,1252 +580,1014 @@ int acl_addr(char *aspec, struct access_control_addr *aca) return(0); } -#endif /* def ACL_FILES */ +#endif /* def FEATURE_ACL */ /********************************************************************* * - * Function : block_url + * Function : match_portlist * - * Description : Called from `chat'. Check to see if we need to block this. + * Description : Check if a given number is covered by a comma + * separated list of numbers and ranges (a,b-c,d,..) * * Parameters : - * 1 : http = http_request request to "check" for blocked - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : portlist = String with list + * 2 : port = port to check * - * Returns : NULL => unblocked, else string to HTML block description. + * Returns : 0 => no match + * 1 => match * *********************************************************************/ -char *block_url(struct http_request *http, struct client_state *csp) +int match_portlist(const char *portlist, int port) { - struct file_list *fl; - struct block_spec *b; - struct url_spec url[1]; - char *p; - int n; + char *min, *max, *next, *portlist_copy; - if (((fl = csp->blist) == NULL) || ((b = fl->f) == NULL)) + min = next = portlist_copy = strdup(portlist); + + /* + * Zero-terminate first item and remember offset for next + */ + if (NULL != (next = strchr(portlist_copy, (int) ','))) { - return(NULL); + *next++ = '\0'; } - *url = dsplit(http->host); - - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) return(NULL); - - for (b = b->next; b ; b = b->next) + /* + * Loop through all items, checking for match + */ + while(min) { - if ((b->url->port == 0) || (b->url->port == http->port)) + if (NULL == (max = strchr(min, (int) '-'))) { - if ((b->url->domain[0] == '\0') || (domaincmp(b->url, url) == 0)) + /* + * No dash, check for equality + */ + if (port == atoi(min)) { - if ((b->url->path == NULL) || -#ifdef REGEX - (regexec(b->url->preg, http->path, 0, NULL, 0) == 0) -#else - (strncmp(b->url->path, http->path, b->url->pathlen) == 0) -#endif - ) - { - freez(url->dbuf); - freez(url->dvec); - - if (b->reject == 0) return(NULL); - - n = strlen(CBLOCK); - n += strlen(http->hostport); - n += strlen(http->path); - n += strlen(b->url->spec); -#ifdef FORCE_LOAD - n += strlen(http->hostport); - n += strlen(http->path); -#endif /* def FORCE_LOAD */ + free(portlist_copy); + return(1); + } + } + else + { + /* + * This is a range, so check if between min and max, + * or, if max was omitted, between min and 65K + */ + *max++ = '\0'; + if(port >= atoi(min) && port <= (atoi(max) ? atoi(max) : 65535)) + { + free(portlist_copy); + return(1); + } - p = (char *)malloc(n); + } -#ifdef FORCE_LOAD - sprintf(p, CBLOCK, http->hostport, http->path, b->url->spec, http->hostport, http->path); -#else - sprintf(p, CBLOCK, http->hostport, http->path, b->url->spec); -#endif /* def FORCE_LOAD */ + /* + * Jump to next item + */ + min = next; - return(p); - } - } + /* + * Zero-terminate next item and remember offset for n+1 + */ + if ((NULL != next) && (NULL != (next = strchr(next, (int) ',')))) + { + *next++ = '\0'; } } - freez(url->dbuf); - freez(url->dvec); - return(NULL); + + free(portlist_copy); + return 0; } -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) /********************************************************************* * - * Function : block_imageurl + * Function : block_url * - * Description : Given a URL which is blocked, decide whether to - * send the "blocked" image or HTML. + * Description : Called from `chat'. Check to see if we need to block this. * * Parameters : - * 1 : http = URL to check. - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : True (nonzero) if URL is in image list, false (0) - * otherwise + * Returns : NULL => unblocked, else HTTP block response * *********************************************************************/ -int block_imageurl(struct http_request *http, struct client_state *csp) +struct http_response *block_url(struct client_state *csp) { -#ifdef DETECT_MSIE_IMAGES - if ((csp->accept_types - & (ACCEPT_TYPE_IS_MSIE|ACCEPT_TYPE_MSIE_IMAGE|ACCEPT_TYPE_MSIE_HTML)) - == (ACCEPT_TYPE_IS_MSIE|ACCEPT_TYPE_MSIE_IMAGE)) +#ifdef FEATURE_IMAGE_BLOCKING + char *p; +#endif /* def FEATURE_IMAGE_BLOCKING */ + struct http_response *rsp; + + /* + * If it's not blocked, don't block it ;-) + */ + if ((csp->action->flags & ACTION_BLOCK) == 0) { - return 1; + return NULL; } - else if ((csp->accept_types - & (ACCEPT_TYPE_IS_MSIE|ACCEPT_TYPE_MSIE_IMAGE|ACCEPT_TYPE_MSIE_HTML)) - == (ACCEPT_TYPE_IS_MSIE|ACCEPT_TYPE_MSIE_HTML)) + + /* + * Else, prepare a response + */ + if (NULL == (rsp = alloc_http_response())) { - return 0; + return cgi_error_memory(); } -#endif -#if defined(USE_IMAGE_LIST) - return block_imageurl_using_imagelist(http, csp); -#else - /* Don't know - assume HTML */ - return 0; -#endif -} -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ + /* + * If it's an image-url, send back an image or redirect + * as specified by the relevant +image action + */ +#ifdef FEATURE_IMAGE_BLOCKING + if (((csp->action->flags & ACTION_IMAGE_BLOCKER) != 0) + && is_imageurl(csp)) + { + /* determine HOW images should be blocked */ + p = csp->action->string[ACTION_STRING_IMAGE_BLOCKER]; +#if 1 /* Two alternative strategies, use this one for now: */ -#ifdef USE_IMAGE_LIST -/********************************************************************* - * - * Function : block_imageurl - * - * Description : Test if a URL is in the imagelist. - * - * Parameters : - * 1 : http = URL to check. - * 2 : csp = Current client state (buffers, headers, etc...) - * - * Returns : True (nonzero) if URL is in image list, false (0) - * otherwise - * - *********************************************************************/ -int block_imageurl_using_imagelist(struct http_request *http, struct client_state *csp) -{ - struct file_list *fl; - struct block_spec *b; - struct url_spec url[1]; + /* and handle accordingly: */ + if ((p == NULL) || (0 == strcmpic(p, "pattern"))) + { + rsp->body = bindup(image_pattern_data, image_pattern_length); + if (rsp->body == NULL) + { + free_http_response(rsp); + return cgi_error_memory(); + } + rsp->content_length = image_pattern_length; - if (((fl = csp->ilist) == NULL) || ((b = fl->f) == NULL)) - { - return(0); - } + if (enlist_unique_header(rsp->headers, "Content-Type", BUILTIN_IMAGE_MIMETYPE)) + { + free_http_response(rsp); + return cgi_error_memory(); + } + } - *url = dsplit(http->host); + else if (0 == strcmpic(p, "blank")) + { + rsp->body = bindup(image_blank_data, image_blank_length); + if (rsp->body == NULL) + { + free_http_response(rsp); + return cgi_error_memory(); + } + rsp->content_length = image_blank_length; - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) return(0); + if (enlist_unique_header(rsp->headers, "Content-Type", BUILTIN_IMAGE_MIMETYPE)) + { + free_http_response(rsp); + return cgi_error_memory(); + } + } - for (b = b->next; b ; b = b->next) + else + { + rsp->status = strdup("302 Local Redirect from Privoxy"); + if (rsp->status == NULL) + { + free_http_response(rsp); + return cgi_error_memory(); + } + + if (enlist_unique_header(rsp->headers, "Location", p)) + { + free_http_response(rsp); + return cgi_error_memory(); + } + } + +#else /* Following code is disabled for now */ + + /* and handle accordingly: */ + if ((p == NULL) || (0 == strcmpic(p, "pattern"))) + { + p = CGI_PREFIX "send-banner?type=pattern"; + } + else if (0 == strcmpic(p, "blank")) + { + p = CGI_PREFIX "send-banner?type=blank"; + } + rsp->status = strdup("302 Local Redirect from Privoxy"); + if (rsp->status == NULL) + { + free_http_response(rsp); + return cgi_error_memory(); + } + + if (enlist_unique_header(rsp->headers, "Location", p)) + { + free_http_response(rsp); + return cgi_error_memory(); + } +#endif /* Preceeding code is disabled for now */ + } + else +#endif /* def FEATURE_IMAGE_BLOCKING */ + + /* + * Else, generate an HTML "blocked" message: + */ { + jb_err err; + struct map * exports; + + /* + * Workaround for stupid Netscape bug which prevents + * pages from being displayed if loading a referenced + * JavaScript or style sheet fails. So make it appear + * as if it succeeded. + */ + if ( NULL != (p = get_header_value(csp->headers, "User-Agent:")) + && !strncmpic(p, "mozilla", 7) /* Catch Netscape but */ + && !strstr(p, "Gecko") /* save Mozilla, */ + && !strstr(p, "compatible") /* MSIE */ + && !strstr(p, "Opera")) /* and Opera. */ + { + rsp->status = strdup("200 Request for blocked URL"); + } + else + { + rsp->status = strdup("404 Request for blocked URL"); + } - if ((b->url->port == 0) || (b->url->port == http->port)) + if (rsp->status == NULL) { - /* port matches, check domain */ - if ((b->url->domain[0] == '\0') || (domaincmp(b->url, url) == 0)) - { - /* domain matches, check path */ - if ((b->url->path == NULL) || -#ifdef REGEX - (regexec(b->url->preg, http->path, 0, NULL, 0) == 0) -#else - (strncmp(b->url->path, http->path, b->url->pathlen) == 0) -#endif - ) - { - /* Matches */ - freez(url->dbuf); - freez(url->dvec); + free_http_response(rsp); + return cgi_error_memory(); + } - if (b->reject == 0) return(0); + exports = default_exports(csp, NULL); + if (exports == NULL) + { + free_http_response(rsp); + return cgi_error_memory(); + } - return(1); - } - } +#ifdef FEATURE_FORCE_LOAD + err = map(exports, "force-prefix", 1, FORCE_PREFIX, 1); + if (csp->http->ssl != 0) +#endif /* ndef FEATURE_FORCE_LOAD */ + { + err = map_block_killer(exports, "force-support"); + } + + if (!err) err = map(exports, "protocol", 1, csp->http->ssl ? "https://" : "http://", 1); + if (!err) err = map(exports, "hostport", 1, html_encode(csp->http->hostport), 0); + if (!err) err = map(exports, "path", 1, html_encode(csp->http->path), 0); + + if (err) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + + err = template_fill_for_cgi(csp, "blocked", exports, rsp); + if (err) + { + free_http_response(rsp); + return cgi_error_memory(); } } - freez(url->dbuf); - freez(url->dvec); - return(0); + + return finish_http_response(rsp); } -#endif /* def USE_IMAGE_LIST */ -#ifdef PCRS +#ifdef FEATURE_TRUST /********************************************************************* * - * Function : re_process_buffer + * Function : trust_url FIXME: I should be called distrust_url * - * Description : Apply all jobs from the joblist (aka. Perl regexp's) to - * the text buffer that's been accumulated in csp->iob->buf. - * Then, write the modified buffer out to the client - * (Maybe this should happen from jcc.c via flush_socket - * for better readability). + * Description : Calls is_untrusted_url to determine if the URL is trusted + * and if not, returns a HTTP 304 response with a reject message. * * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : N/A + * Returns : NULL => trusted, else http_response. * *********************************************************************/ -void re_process_buffer(struct client_state *csp) +struct http_response *trust_url(struct client_state *csp) { - int hits=0; - int size = csp->iob->eod - csp->iob->cur; - char *old=csp->iob->cur, *new = NULL; - pcrs_job *job, *joblist; + struct http_response *rsp; + struct map * exports; + char buf[BUFFER_SIZE]; + char *p; + struct url_spec **tl; + struct url_spec *t; + jb_err err; - struct file_list *fl; - struct re_filterfile_spec *b; + /* + * Don't bother to work on trusted URLs + */ + if (!is_untrusted_url(csp)) + { + return NULL; + } - /* Sanity first ;-) */ - if (size <= 0) return; + /* + * Else, prepare a response: + */ + if (NULL == (rsp = alloc_http_response())) + { + return cgi_error_memory(); + } - if ( ( NULL == (fl = csp->rlist) ) || ( NULL == (b = fl->f) ) ) + exports = default_exports(csp, NULL); + if (exports == NULL) { - log_error(LOG_LEVEL_ERROR, "Unable to get current state of regexp filtering."); - return; + free_http_response(rsp); + return cgi_error_memory(); } - joblist = b->joblist; + /* + * Export the protocol, host, port, and referrer information + */ + err = map(exports, "hostport", 1, csp->http->hostport, 1); + if (!err) err = map(exports, "protocol", 1, csp->http->ssl ? "https://" : "http://", 1); + if (!err) err = map(exports, "path", 1, csp->http->path, 1); + + if (NULL != (p = get_header_value(csp->headers, "Referer:"))) + { + if (!err) err = map(exports, "referrer", 1, html_encode(p), 0); + } + else + { + if (!err) err = map(exports, "referrer", 1, "unknown", 1); + } + if (err) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } - log_error(LOG_LEVEL_REF, "re_filtering %s%s (size %d) ...", - csp->http->hostport, csp->http->path, size); + /* + * Export the trust list + */ + p = strdup(""); + for (tl = csp->config->trust_list; (t = *tl) != NULL ; tl++) + { + sprintf(buf, "
  • %s
    • \n", t->spec); + string_append(&p, buf); + } + err = map(exports, "trusted-referrers", 1, p, 0); - /* Apply all jobs from the joblist */ - for (job = joblist; NULL != job; job = job->next) + if (err) { - hits += pcrs_exec_substitution(job, old, size, &new, &size); - if (old != csp->iob->cur) free(old); - old=new; + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); } - log_error(LOG_LEVEL_REF, " produced %d hits (new size %d).", hits, size); + /* + * Export the trust info, if available + */ + if (csp->config->trust_info->first) + { + struct list_entry *l; - if (write_socket(csp->cfd, old, size) != size) + p = strdup(""); + for (l = csp->config->trust_info->first; l ; l = l->next) + { + sprintf(buf, "
  • %s
    \n",l->str, l->str); + string_append(&p, buf); + } + err = map(exports, "trust-info", 1, p, 0); + } + else { - log_error(LOG_LEVEL_ERROR, "write to client failed."); + err = map_block_killer(exports, "have-trust-info"); } - /* fwiw, reset the iob */ - IOB_RESET(csp); - freez(new); - return; + if (err) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + + /* + * Export the force prefix or the force conditional block killer + */ +#ifdef FEATURE_FORCE_LOAD + err = map(exports, "force-prefix", 1, FORCE_PREFIX, 1); +#else /* ifndef FEATURE_FORCE_LOAD */ + err = map_block_killer(exports, "force-support"); +#endif /* ndef FEATURE_FORCE_LOAD */ + + if (err) + { + free_map(exports); + free_http_response(rsp); + return cgi_error_memory(); + } + + /* + * Build the response + */ + err = template_fill_for_cgi(csp, "untrusted", exports, rsp); + if (err) + { + free_http_response(rsp); + return cgi_error_memory(); + } + return finish_http_response(rsp); } -#endif /* def PCRS */ +#endif /* def FEATURE_TRUST */ -#ifdef TRUST_FILES +#ifdef FEATURE_FAST_REDIRECTS /********************************************************************* * - * Function : trust_url + * Function : redirect_url * - * Description : Should we "trust" this URL? See "trustfile" line in config. + * Description : Checks for redirection URLs and returns a HTTP redirect + * to the destination URL, if necessary * * Parameters : - * 1 : http = http_request request for requested URL - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : NULL => trusted, else string to HTML "untrusted" description. + * Returns : NULL if URL was clean, HTTP redirect otherwise. * *********************************************************************/ -char *trust_url(struct http_request *http, struct client_state *csp) +struct http_response *redirect_url(struct client_state *csp) { - struct file_list *fl; - struct block_spec *b; - struct url_spec url[1], **tl, *t; - char *p, *h; - char *hostport, *path, *refer; - struct http_request rhttp[1]; - int n; + char *p, *q; + struct http_response *rsp; - if (((fl = csp->tlist) == NULL) || ((b = fl->f) == NULL)) + p = q = csp->http->path; + log_error(LOG_LEVEL_REDIRECTS, "checking path for redirects: %s", p); + + /* + * find the last URL encoded in the request + */ + while ((p = strstr(p, "http://")) != NULL) { - return(NULL); + q = p++; } - *url = dsplit(http->host); - - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) return(NULL); + /* + * if there was any, generate and return a HTTP redirect + */ + if (q != csp->http->path) + { + log_error(LOG_LEVEL_REDIRECTS, "redirecting to: %s", q); - memset(rhttp, '\0', sizeof(*rhttp)); + if (NULL == (rsp = alloc_http_response())) + { + return cgi_error_memory(); + } - for (b = b->next; b ; b = b->next) - { - if ((b->url->port == 0) || (b->url->port == http->port)) + if ( enlist_unique_header(rsp->headers, "Location", q) + || (NULL == (rsp->status = strdup("302 Local Redirect from Privoxy"))) ) { - if ((b->url->domain[0] == '\0') || (domaincmp(b->url, url) == 0)) - { - if ((b->url->path == NULL) || -#ifdef REGEX - (regexec(b->url->preg, http->path, 0, NULL, 0) == 0) -#else - (strncmp(b->url->path, http->path, b->url->pathlen) == 0) -#endif - ) - { - freez(url->dbuf); - freez(url->dvec); - - if (b->reject == 0) return(NULL); - - hostport = url_encode(http->hostport); - path = url_encode(http->path); - - if (csp->referrer) - { - refer = url_encode(csp->referrer); - } - else - { - refer = url_encode("undefined"); - } - - n = strlen(CTRUST); - n += strlen(hostport); - n += strlen(path); - n += strlen(refer); - - p = (char *)malloc(n); - - sprintf(p, CTRUST, hostport, path, refer); - - freez(hostport); - freez(path); - freez(refer); - - return(p); - } - } + free_http_response(rsp); + return cgi_error_memory(); } - } - - freez(url->dbuf); - freez(url->dvec); - - if ((csp->referrer == NULL)|| (strlen(csp->referrer) <= 9)) - { - /* no referrer was supplied */ - goto trust_url_not_trusted; - } - - /* forge a URL from the referrer so we can use - * convert_url() to parse it into its components. - */ - p = NULL; - p = strsav(p, "GET "); - p = strsav(p, csp->referrer + 9); /* skip over "Referer: " */ - p = strsav(p, " HTTP/1.0"); - - parse_http_request(p, rhttp, csp); - - if (rhttp->cmd == NULL) - { - freez(p); - goto trust_url_not_trusted; - } - - freez(p); - - *url = dsplit(rhttp->host); - - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) goto trust_url_not_trusted; - - for (tl = trust_list; (t = *tl) ; tl++) - { - if ((t->port == 0) || (t->port == rhttp->port)) - { - if ((t->domain[0] == '\0') || domaincmp(t, url) == 0) - { - if ((t->path == NULL) || -#ifdef REGEX - (regexec(t->preg, rhttp->path, 0, NULL, 0) == 0) -#else - (strncmp(t->path, rhttp->path, t->pathlen) == 0) -#endif - ) - { - /* if the URL's referrer is from a trusted referrer, then - * add the target spec to the trustfile as an unblocked - * domain and return NULL (which means it's OK). - */ - - FILE *fp; - - freez(url->dbuf); - freez(url->dvec); - - if ((fp = fopen(trustfile, "a"))) - { - h = NULL; - - h = strsav(h, "~"); - h = strsav(h, http->hostport); - - p = http->path; - if ((*p++ == '/') - && (*p++ == '~')) - { - /* since this path points into a user's home space - * be sure to include this spec in the trustfile. - */ - if ((p = strchr(p, '/'))) - { - *p = '\0'; - h = strsav(h, http->path); - h = strsav(h, "/"); - } - } - - free_http_request(rhttp); - - fprintf(fp, "%s\n", h); - freez(h); - fclose(fp); - } - return(NULL); - } - } - } - } - -trust_url_not_trusted: - free_http_request(rhttp); - - hostport = url_encode(http->hostport); - path = url_encode(http->path); - - if (csp->referrer) - { - refer = url_encode(csp->referrer); + return finish_http_response(rsp); } else { - refer = url_encode("undefined"); + return NULL; } - n = strlen(CTRUST); - n += strlen(hostport); - n += strlen(path); - n += strlen(refer); - - p = (char *)malloc(n); - sprintf(p, CTRUST, hostport, path, refer); - - freez(hostport); - freez(path); - freez(refer); - - return(p); - } -#endif /* def TRUST_FILES */ +#endif /* def FEATURE_FAST_REDIRECTS */ +#ifdef FEATURE_IMAGE_BLOCKING /********************************************************************* * - * Function : intercept_url + * Function : is_imageurl * - * Description : checks the URL `basename' against a list of URLs to - * snarf. If it matches, it calls the associated function - * which returns an HTML page to send back to the client. - * Right now, we snarf: - * "show-proxy-args", and - * "ij-untrusted-url" (optional w/TRUST_FILES) + * Description : Given a URL, decide whether it is an image or not, + * using either the info from a previous +image action + * or, #ifdef FEATURE_IMAGE_DETECT_MSIE, the info from + * the browser's accept header. * * Parameters : - * 1 : http = http_request request, check `basename's of blocklist - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : NULL for no recognized URLs, or an HTML description page. + * Returns : True (nonzero) if URL is an image, false (0) + * otherwise * *********************************************************************/ -char *intercept_url(struct http_request *http, struct client_state *csp) +int is_imageurl(struct client_state *csp) { - char *basename; - const struct interceptors *v; - - basename = strrchr(http->path, '/'); - - if (basename == NULL) return(NULL); +#ifdef FEATURE_IMAGE_DETECT_MSIE + char *tmp; - basename ++; /* first char past the last slash */ - - if (*basename) + tmp = get_header_value(csp->headers, "User-Agent:"); + if (tmp && strstr(tmp, "MSIE")) { - for (v = intercept_patterns; v->str; v++) + tmp = get_header_value(csp->headers, "Accept:"); + if (tmp && strstr(tmp, "image/gif")) { - if (strncmp(basename, v->str, v->len) == 0) - { - return((v->interceptor)(http, csp)); - } + /* Client will accept HTML. If this seems counterintuitive, + * blame Microsoft. + */ + return(0); + } + else + { + return(1); } } +#endif /* def FEATURE_IMAGE_DETECT_MSIE */ - return(NULL); + return ((csp->action->flags & ACTION_IMAGE) != 0); } +#endif /* def FEATURE_IMAGE_BLOCKING */ +#ifdef FEATURE_TRUST /********************************************************************* * - * Function : cookie_url + * Function : is_untrusted_url + * + * Description : Should we "distrust" this URL (and block it)? * - * Description : Accept this cookie, or no? See "cookiefile" setting. + * Yes if it matches a line in the trustfile, or if the + * referrer matches a line starting with "+" in the + * trustfile. + * No otherwise. * * Parameters : - * 1 : http = http_request request for blocked URLs - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : NULL => accept, cookie_spec pointer to crunch. + * Returns : 0 => trusted, 1 => untrusted * *********************************************************************/ -struct cookie_spec *cookie_url(struct http_request *http, struct client_state *csp) +int is_untrusted_url(struct client_state *csp) { struct file_list *fl; - struct cookie_spec *b; - struct url_spec url[1]; + struct block_spec *b; + struct url_spec **trusted_url; + struct http_request rhttp[1]; + const char * referer; + jb_err err; - if (((fl = csp->clist) == NULL) || ((b = fl->f) == NULL)) + /* + * If we don't have a trustlist, we trust everybody + */ + if (((fl = csp->tlist) == NULL) || ((b = fl->f) == NULL)) { - return(NULL); + return 0; } - *url = dsplit(http->host); + memset(rhttp, '\0', sizeof(*rhttp)); - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) return(NULL); + /* + * Do we trust the request URL itself? + */ + for (b = b->next; b ; b = b->next) + { + if (url_match(b->url, csp->http)) + { + return b->reject; + } + } - for (b = b->next; NULL != b; b = b->next) + if (NULL == (referer = get_header_value(csp->headers, "Referer:"))) + { + /* no referrer was supplied */ + return 1; + } + + + /* + * If not, do we maybe trust its referrer? + */ + err = parse_http_url(referer, rhttp, csp); + if (err) + { + return 1; + } + + for (trusted_url = csp->config->trust_list; *trusted_url != NULL; trusted_url++) { - if ((b->url->port == 0) || (b->url->port == http->port)) + if (url_match(*trusted_url, rhttp)) { - if ((b->url->domain[0] == '\0') || (domaincmp(b->url, url) == 0)) + /* if the URL's referrer is from a trusted referrer, then + * add the target spec to the trustfile as an unblocked + * domain and return NULL (which means it's OK). + */ + + FILE *fp; + + if (NULL != (fp = fopen(csp->config->trustfile, "a"))) { - if ((b->url->path == NULL) || -#ifdef REGEX - (regexec(b->url->preg, http->path, 0, NULL, 0) == 0) -#else - (strncmp(b->url->path, http->path, b->url->pathlen) == 0) -#endif - ) + char * path; + char * path_end; + char * new_entry = strdup("~"); + + string_append(&new_entry, csp->http->hostport); + + path = csp->http->path; + if ( (path[0] == '/') + && (path[1] == '~') + && ((path_end = strchr(path + 2, '/')) != NULL)) + { + /* since this path points into a user's home space + * be sure to include this spec in the trustfile. + */ + int path_len = path_end - path; /* save offset */ + path = strdup(path); /* Copy string */ + if (path != NULL) + { + path_end = path + path_len; /* regenerate ptr to new buffer */ + *(path_end + 1) = '\0'; /* Truncate path after '/' */ + } + string_join(&new_entry, path); + } + + if (new_entry != NULL) + { + fprintf(fp, "%s\n", new_entry); + free(new_entry); + } + else { - freez(url->dbuf); - freez(url->dvec); - return(b); + /* FIXME: No way to handle out-of memory, so mostly ignoring it */ + log_error(LOG_LEVEL_ERROR, "Out of memory adding pattern to trust file"); } + + fclose(fp); } + return 0; } } - - freez(url->dbuf); - freez(url->dvec); - return(NULL); - + return 1; } +#endif /* def FEATURE_TRUST */ /********************************************************************* * - * Function : forward_url + * Function : pcrs_filter_response * - * Description : Should we forward this to another proxy? + * Description : Ecexute all text substitutions from all applying + * +filter actions on the text buffer that's been accumulated + * in csp->iob->buf. If this changes the contents, set + * csp->content_length to the modified size and raise the + * CSP_FLAG_MODIFIED flag. * * Parameters : - * 1 : http = http_request request for current URL - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : Return gw_default for no forward match, - * else a gateway pointer to a specific forwarding proxy. + * Returns : a pointer to the (newly allocated) modified buffer. + * or NULL if there were no hits or something went wrong * *********************************************************************/ -const struct gateway *forward_url(struct http_request *http, struct client_state *csp) +char *pcrs_filter_response(struct client_state *csp) { + int hits=0; + size_t size; + + char *old = csp->iob->cur, *new = NULL; + pcrs_job *job; + struct file_list *fl; - struct forward_spec *b; - struct url_spec url[1]; + struct re_filterfile_spec *b; + struct list_entry *filtername; - if (((fl = csp->flist) == NULL) || ((b = fl->f) == NULL)) + /* + * Sanity first + */ + if (csp->iob->cur >= csp->iob->eod) { - return(gw_default); + return(NULL); } + size = csp->iob->eod - csp->iob->cur; - *url = dsplit(http->host); + if ( ( NULL == (fl = csp->rlist) ) || ( NULL == fl->f) ) + { + log_error(LOG_LEVEL_ERROR, "Unable to get current state of regexp filtering."); + return(NULL); + } - /* if splitting the domain fails, punt */ - if (url->dbuf == NULL) return(gw_default); + /* + * If the body has a "chunked" transfer-encoding, + * get rid of it first, adjusting size and iob->eod + */ + if (csp->flags & CSP_FLAG_CHUNKED) + { + log_error(LOG_LEVEL_RE_FILTER, "Need to de-chunk first"); + if (0 == (size = remove_chunked_transfer_coding(csp->iob->cur, size))) + { + return(NULL); + } + csp->iob->eod = csp->iob->cur + size; + csp->flags |= CSP_FLAG_MODIFIED; + } - for (b = b->next; b ; b = b->next) + /* + * For all applying +filter actions, look if a filter by that + * name exists and if yes, execute it's pcrs_joblist on the + * buffer. + */ + for (b = fl->f; b; b = b->next) { - if ((b->url->port == 0) || (b->url->port == http->port)) + for (filtername = csp->action->multi[ACTION_MULTI_FILTER]->first; + filtername ; filtername = filtername->next) { - if ((b->url->domain[0] == '\0') || (domaincmp(b->url, url) == 0)) + if (strcmp(b->name, filtername->str) == 0) { - if ((b->url->path == NULL) || -#ifdef REGEX - (regexec(b->url->preg, http->path, 0, NULL, 0) == 0) -#else - (strncmp(b->url->path, http->path, b->url->pathlen) == 0) -#endif - ) + int current_hits = 0; + + if ( NULL == b->joblist ) { - freez(url->dbuf); - freez(url->dvec); - return(b->gw); + log_error(LOG_LEVEL_RE_FILTER, "Filter %s has empty joblist. Nothing to do.", b->name); + return(NULL); } + + log_error(LOG_LEVEL_RE_FILTER, "re_filtering %s%s (size %d) with filter %s...", + csp->http->hostport, csp->http->path, size, b->name); + + /* Apply all jobs from the joblist */ + for (job = b->joblist; NULL != job; job = job->next) + { + current_hits += pcrs_execute(job, old, size, &new, &size); + if (old != csp->iob->cur) free(old); + old=new; + } + + log_error(LOG_LEVEL_RE_FILTER, " ...produced %d hits (new size %d).", current_hits, size); + hits += current_hits; } } } - freez(url->dbuf); - freez(url->dvec); - return(gw_default); + /* + * If there were no hits, destroy our copy and let + * chat() use the original in csp->iob + */ + if (!hits) + { + free(new); + return(NULL); + } + + csp->flags |= CSP_FLAG_MODIFIED; + csp->content_length = size; + IOB_RESET(csp); + + return(new); } /********************************************************************* * - * Function : dsplit + * Function : gif_deanimate_response * - * Description : Takes a domain and returns a pointer to a url_spec - * structure populated with dbuf, dcnt and dvec. The - * other fields in the structure that is returned are zero. + * Description : Deanimate the GIF image that has been accumulated in + * csp->iob->buf, set csp->content_length to the modified + * size and raise the CSP_FLAG_MODIFIED flag. * * Parameters : - * 1 : domain = a URL address + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : url_spec structure populated with dbuf, dcnt and dvec. + * Returns : a pointer to the (newly allocated) modified buffer. + * or NULL in case something went wrong. * *********************************************************************/ -struct url_spec dsplit(char *domain) +char *gif_deanimate_response(struct client_state *csp) { - struct url_spec ret[1]; - char *v[BUFSIZ]; - int size; + struct binbuffer *in, *out; char *p; + size_t size = csp->iob->eod - csp->iob->cur; - memset(ret, '\0', sizeof(*ret)); - - if ((p = strrchr(domain, '.'))) + /* + * If the body has a "chunked" transfer-encoding, + * get rid of it first, adjusting size and iob->eod + */ + if (csp->flags & CSP_FLAG_CHUNKED) { - if (*(++p) == '\0') + log_error(LOG_LEVEL_DEANIMATE, "Need to de-chunk first"); + if (0 == (size = remove_chunked_transfer_coding(csp->iob->cur, size))) { - ret->toplevel = 1; + return(NULL); } + csp->iob->eod = csp->iob->cur + size; + csp->flags |= CSP_FLAG_MODIFIED; } - ret->dbuf = strdup(domain); - - /* map to lower case */ - for (p = ret->dbuf; *p ; p++) *p = tolower(*p); - - /* split the domain name into components */ - ret->dcnt = ssplit(ret->dbuf, ".", v, SZ(v), 1, 1); - - if (ret->dcnt <= 0) + if ( (NULL == (in = (struct binbuffer *)zalloc(sizeof *in ))) + || (NULL == (out = (struct binbuffer *)zalloc(sizeof *out))) ) { - memset(ret, '\0', sizeof(ret)); - return(*ret); + log_error(LOG_LEVEL_DEANIMATE, "failed! (no mem)"); + return NULL; } - /* save a copy of the pointers in dvec */ - size = ret->dcnt * sizeof(*ret->dvec); + in->buffer = csp->iob->cur; + in->size = size; - if ((ret->dvec = (char **)malloc(size))) + if (gif_deanimate(in, out, strncmp("last", csp->action->string[ACTION_STRING_DEANIMATE], 4))) { - memcpy(ret->dvec, v, size); + log_error(LOG_LEVEL_DEANIMATE, "failed! (gif parsing)"); + free(in); + buf_free(out); + return(NULL); + } + else + { + if ((int)size == out->offset) + { + log_error(LOG_LEVEL_DEANIMATE, "GIF not changed."); + } + else + { + log_error(LOG_LEVEL_DEANIMATE, "Success! GIF shrunk from %d bytes to %d.", size, out->offset); + } + csp->content_length = out->offset; + csp->flags |= CSP_FLAG_MODIFIED; + p = out->buffer; + free(in); + free(out); + return(p); } - - return(*ret); } /********************************************************************* * - * Function : domaincmp + * Function : remove_chunked_transfer_coding * - * Description : Compare domain names. - * domaincmp("a.b.c" , "a.b.c") => 0 (MATCH) - * domaincmp("a*.b.c", "a.b.c") => 0 (MATCH) - * domaincmp("b.c" , "a.b.c") => 0 (MATCH) - * domaincmp("" , "a.b.c") => 0 (MATCH) + * Description : In-situ remove the "chunked" transfer coding as defined + * in rfc2616 from a buffer. * * Parameters : - * 1 : pattern = a domain that may contain a '*' as a wildcard. - * 2 : fqdn = domain name against which the patterns are compared. + * 1 : buffer = Pointer to the text buffer + * 2 : size = Number of bytes to be processed * - * Returns : 0 => domains are equivalent, else no match. + * Returns : The new size, i.e. the number of bytes from buffer which + * are occupied by the stripped body, or 0 in case something + * went wrong * *********************************************************************/ -int domaincmp(struct url_spec *pattern, struct url_spec *fqdn) +int remove_chunked_transfer_coding(char *buffer, const size_t size) { - char **pv, **fv; /* vectors */ - int pn, fn; /* counters */ - char *p, *f; /* chars */ + size_t newsize = 0; + unsigned int chunksize = 0; + char *from_p, *to_p; - pv = pattern->dvec; - pn = pattern->dcnt; + assert(buffer); + from_p = to_p = buffer; - fv = fqdn->dvec; - fn = fqdn->dcnt; - - while ((pn > 0) && (fn > 0)) + if (sscanf(buffer, "%x", &chunksize) != 1) { - p = pv[--pn]; - f = fv[--fn]; + log_error(LOG_LEVEL_ERROR, "Invalid first chunksize while stripping \"chunked\" transfer coding"); + return(0); + } - while (*p && *f && (*p == tolower(*f))) + while (chunksize > 0) + { + if (NULL == (from_p = strstr(from_p, "\r\n"))) { - p++, f++; + log_error(LOG_LEVEL_ERROR, "Parse error while stripping \"chunked\" transfer coding"); + return(0); } + newsize += chunksize; + from_p += 2; - if ((*p != tolower(*f)) && (*p != '*')) return(1); - } + memmove(to_p, from_p, (size_t) chunksize); + to_p = buffer + newsize; + from_p += chunksize + 2; - if (pn > 0) return(1); + if (sscanf(from_p, "%x", &chunksize) != 1) + { + log_error(LOG_LEVEL_ERROR, "Parse error while stripping \"chunked\" transfer coding"); + return(0); + } + } - return(0); + /* FIXME: Should this get its own loglevel? */ + log_error(LOG_LEVEL_RE_FILTER, "De-chunking successful. Shrunk from %d to %d\n", size, newsize); + return(newsize); } -/* intercept functions */ - /********************************************************************* * - * Function : show_proxy_args + * Function : url_actions * - * Description : This "crunch"es "http:/any.thing/show-proxy-args" and - * returns a web page describing the current status of IJB. + * Description : Gets the actions for this URL. * * Parameters : - * 1 : http = ignored + * 1 : http = http_request request for blocked URLs * 2 : csp = Current client state (buffers, headers, etc...) * - * Returns : A string that contains the current status of IJB. + * Returns : N/A * *********************************************************************/ -char *show_proxy_args(struct http_request *http, struct client_state *csp) +void url_actions(struct http_request *http, + struct client_state *csp) { - char *s = NULL; - -#ifdef SPLIT_PROXY_ARGS - FILE * fp; - char buf[BUFSIZ]; - char * p; - const char * filename = NULL; - const char * file_description = NULL; - char * query_string = strrchr(http->path, '?'); - char which_file = '\0'; - - - if (query_string != NULL) - { - /* first char past the last '?' (maybe '\0')*/ - which_file = query_string[1]; - } - switch (which_file) - { - case 'b': - if (csp->blist) - { - filename = csp->blist->filename; - file_description = "Block List"; - } - break; - case 'c': - if (csp->clist) - { - filename = csp->clist->filename; - file_description = "Cookie List"; - } - break; - case 'f': - if (csp->flist) - { - filename = csp->flist->filename; - file_description = "Forward List"; - } - break; - -#ifdef ACL_FILES - case 'a': - if (csp->alist) - { - filename = csp->alist->filename; - file_description = "Access Control List"; - } - break; -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST - case 'i': - if (csp->ilist) - { - filename = csp->ilist->filename; - file_description = "Image List"; - } - break; -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS - case 'p': - if (csp->plist) - { - filename = csp->plist->filename; - file_description = "Popup list"; - } - break; -#endif /* def KILLPOPUPS */ - -#ifdef PCRS - case 'r': - if (csp->rlist) - { - filename = csp->rlist->filename; - file_description = "RE Filter List"; - } - break; -#endif /* def PCRS */ + struct file_list *fl; + struct url_actions *b; + int i; -#ifdef TRUST_FILES - case 't': - if (csp->tlist) - { - filename = csp->tlist->filename; - file_description = "Trust List"; - } - break; -#endif /* def TRUST_FILES */ - } + init_current_action(csp->action); - if (filename) + for (i = 0; i < MAX_ACTION_FILES; i++) { - /* Display specified file */ - /* FIXME: Add HTTP headers so this isn't cached */ - s = strsav(s, - "HTTP/1.0 200 OK\n" - "Server: IJ/" VERSION "\n" - "Content-type: text/html\n" - "Pragma: no-cache\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "\n" - - "" - "" - "Internet Junkbuster Proxy Status - "); - s = strsav(s, file_description); - s = strsav(s, - "" - "\n" - "\n" - "
    \n" - "

    " BANNER "\n"); - s = strsav(s, file_description); - s = strsav(s, - "

    \n" - "

    Back to proxy status

    \n" - "

    "); - s = strsav(s, file_description); - s = strsav(s, - "

    \n" - "Contents of file ""); - p = html_encode(filename); - s = strsav(s, p); - freez(p); - s = strsav(s, - "":
    \n" - "

    \n" - "
    ");
-      
-      if ((fp = fopen(filename, "r")) == NULL)
+      if (((fl = csp->actions_list[i]) == NULL) || ((b = fl->f) == NULL))
       {
-         s = strsav(s, "

    ERROR OPENING FILE!

    ");
+         return;
       }
-      else
-      {
-         while (fgets(buf, sizeof(buf), fp))
-         {
-            p = html_encode(buf);
-            if (p)
-            {
-               s = strsav(s, p);
-               freez(p);
-               s = strsav(s, "
    ");
-            }
-         }
-         fclose(fp);
-      }
-
-      s = strsav(s,
-         "
    \n" - "
    \n" - "

    Back to proxy status

    \n" - "
    \n" - "

    \n" - "Code and documentation of the " BANNER " Proxy" - "TM\n" - "\n" "Copyright© 1997 Junkbusters Corporation\n" - "TM
    \n" - "Copying and distribution permitted under the" - "\n" - "GNU " - "General Public License.\n" - "    " - "

    webmaster@junkbusters.com
    " - "    " - "\n"); - return(s); - } -#endif /* def SPLIT_PROXY_ARGS */ - - s = strsav(s, proxy_args->header); - s = strsav(s, proxy_args->invocation); -#ifdef STATISTICS - s = add_stats(s); -#endif /* def STATISTICS */ - s = strsav(s, proxy_args->gateways); - -#ifdef SPLIT_PROXY_ARGS - s = strsav(s, - "

    The following files are in use:

    \n" - "

    (Click a filename to view it)

    \n" - ""); - -#else /* ifndef SPLIT_PROXY_ARGS */ - if (csp->blist) - { - s = strsav(s, csp->blist->proxy_args); - } - - if (csp->clist) - { - s = strsav(s, csp->clist->proxy_args); - } - - if (csp->flist) - { - s = strsav(s, csp->flist->proxy_args); - } - -#ifdef ACL_FILES - if (csp->alist) - { - s = strsav(s, csp->alist->proxy_args); - } -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST - if (csp->ilist) - { - s = strsav(s, csp->ilist->proxy_args); - } -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS - if (csp->plist) - { - s = strsav(s, csp->plist->proxy_args); - } -#endif /* def KILLPOPUPS */ -#ifdef PCRS - if (csp->rlist) - { - s = strsav(s, csp->rlist->proxy_args); + apply_url_actions(csp->action, http, b); } -#endif /* def PCRS */ - -#ifdef TRUST_FILES - if (csp->tlist) - { - s = strsav(s, csp->tlist->proxy_args); - } -#endif /* def TRUST_FILES */ - -#endif /* ndef SPLIT_PROXY_ARGS */ - - s = strsav(s, proxy_args->trailer); - - return(s); + return; } -#ifdef TRUST_FILES /********************************************************************* * - * Function : ij_untrusted_url + * Function : apply_url_actions * - * Description : This "crunch"es "http:/any.thing/ij-untrusted-url" and - * returns a web page describing why it was untrusted. + * Description : Applies a list of URL actions. * * Parameters : - * 1 : http = http_request request for crunched URL - * 2 : csp = Current client state (buffers, headers, etc...) + * 1 : action = Destination. + * 2 : http = Current URL + * 3 : b = list of URL actions to apply * - * Returns : A string that contains why this was untrusted. + * Returns : N/A * *********************************************************************/ -char *ij_untrusted_url(struct http_request *http, struct client_state *csp) +void apply_url_actions(struct current_action_spec *action, + struct http_request *http, + struct url_actions *b) { - int n; - char *hostport, *path, *refer, *p, *v[9]; - char buf[BUFSIZ]; - struct url_spec **tl, *t; - - - static const char format[] = - "HTTP/1.0 200 OK\r\n" - "Pragma: no-cache\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\n" - "Content-Type: text/html\n\n" - "\n" - "\n" - "Internet Junkbuster: Request for untrusted URL\n" - "\n" - BODY - "

    " - BANNER - "

    " - "The " BANNER " Proxy " - "" - "(" HOME_PAGE_URL ") " - "intercepted the request for %s%s\n" - "because the URL is not trusted.\n" - "

    \n"; - - if ((n = ssplit(http->path, "?+", v, SZ(v), 0, 0)) == 4) + if (b == NULL) { - hostport = url_decode(v[1]); - path = url_decode(v[2]); - refer = url_decode(v[3]); - } - else - { - hostport = strdup("undefined_host"); - path = strdup("/undefined_path"); - refer = strdup("undefined"); - } - - n = sizeof(format); - n += strlen(hostport); - n += strlen(path ); - - if ((p = (char *)malloc(n))) - { - sprintf(p, format, hostport, path); - } - - strsav(p, "The referrer in this request was "); - strsav(p, refer); - strsav(p, "
    \n"); - - freez(hostport); - freez(path ); - freez(refer ); - - p = strsav(p, "

    The following referrers are trusted

    \n"); - - for (tl = trust_list; (t = *tl) ; tl++) - { - sprintf(buf, "%s
    \n", t->spec); - p = strsav(p, buf); + /* Should never happen */ + return; } - if (trust_info->next) + for (b = b->next; NULL != b; b = b->next) { - struct list *l; - - strcpy(buf, - "

    " - "You can learn more about what this means " - "and what you may be able to do about it by " - "reading the following documents:
    \n" - "

      \n" - ); - - p = strsav(p, buf); - - for (l = trust_info->next; l ; l = l->next) + if (url_match(b->url, http)) { - sprintf(buf, - "
    1. %s
      \n", - l->str, l->str); - p = strsav(p, buf); + merge_current_action(action, b->action); } - - p = strsav(p, "
    \n"); } - - p = strsav(p, "\n" "\n"); - - return(p); - } -#endif /* def TRUST_FILES */ -#ifdef STATISTICS /********************************************************************* * - * Function : add_stats + * Function : forward_url * - * Description : Statistics function of JB. Called by `show_proxy_args'. + * Description : Should we forward this to another proxy? * * Parameters : - * 1 : s = string that holds the proxy args description page + * 1 : http = http_request request for current URL + * 2 : csp = Current client state (buffers, headers, etc...) * - * Returns : A pointer to the descriptive status web page. + * Returns : Pointer to forwarding information. * *********************************************************************/ -char *add_stats(char *s) +const struct forward_spec * forward_url(struct http_request *http, + struct client_state *csp) { - /* - * Output details of the number of requests rejected and - * accepted. This is switchable in the junkbuster config. - * Does nothing if this option is not enabled. - */ + static const struct forward_spec fwd_default[1] = { FORWARD_SPEC_INITIALIZER }; + struct forward_spec *fwd = csp->config->forward; - float perc_rej; /* Percentage of http requests rejected */ - char out_str[81]; - int local_urls_read = urls_read; - int local_urls_rejected = urls_rejected; - - /* - * Need to alter the stats not to include the fetch of this - * page. - * - * Can't do following thread safely! doh! - * - * urls_read--; - * urls_rejected--; * This will be incremented subsequently * - */ - - s = strsav(s,"

    Statistics for this " BANNER ":

    \n"); - - if (local_urls_read == 0) + if (fwd == NULL) { - - s = strsav(s,"No activity so far!\n"); - + return fwd_default; } - else - { - - perc_rej = (float)local_urls_rejected * 100.0F / - (float)local_urls_read; - sprintf(out_str, - "%d requests received, %d filtered " - "(%6.2f %%).", - local_urls_read, - local_urls_rejected, perc_rej); - - s = strsav(s,out_str); + while (fwd != NULL) + { + if (url_match(fwd->url, http)) + { + return fwd; + } + fwd = fwd->next; } - return(s); + return fwd_default; } -#endif /* def STATISTICS */ /* diff --git a/filters.h b/filters.h index 68af5195..75da5b1c 100644 --- a/filters.h +++ b/filters.h @@ -1,20 +1,19 @@ -#ifndef _FILTERS_H -#define _FILTERS_H -#define FILTERS_H_VERSION "$Id: filters.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef FILTERS_H_INCLUDED +#define FILTERS_H_INCLUDED +#define FILTERS_H_VERSION "$Id: filters.h,v 1.19 2002/03/26 22:29:54 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/filters.h,v $ + * File : $Source: /cvsroot/ijbswa/current/filters.h,v $ * * Purpose : Declares functions to parse/crunch headers and pages. * Functions declared include: * `acl_addr', `add_stats', `block_acl', `block_imageurl', - * `block_url', `cookie_url', `domaincmp', `dsplit', - * `filter_popups', `forward_url' + * `block_url', `url_actions', `filter_popups', `forward_url' * `ij_untrusted_url', `intercept_url', `re_process_buffer', * `show_proxy_args', and `trust_url' * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -40,9 +39,158 @@ * * Revisions : * $Log: filters.h,v $ + * Revision 1.19 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.18 2002/03/25 22:12:45 oes + * Added fix for undefined INADDR_NONE on Solaris by Bart Schelstraete + * + * Revision 1.17 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.16 2002/01/17 21:01:02 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Revision 1.15 2001/10/10 16:44:16 oes + * Added match_portlist function + * + * Revision 1.14 2001/10/07 15:41:40 oes + * Added prototype for remove_chunked_transfer_coding + * + * Revision 1.13 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.12 2001/07/29 19:01:11 jongfoster + * Changed _FILENAME_H to FILENAME_H_INCLUDED. + * Added forward declarations for needed structures. + * + * Revision 1.11 2001/07/13 14:00:18 oes + * - Introduced gif_deanimate_response + * - Renamed re_process_buffer to pcrs_filter_response + * - Removed all #ifdef PCRS + * + * Revision 1.10 2001/06/29 13:29:01 oes + * Cleaned up and updated to reflect the changesin + * filters.c + * + * Revision 1.9 2001/06/07 23:10:53 jongfoster + * Replacing struct gateway with struct forward_spec + * + * Revision 1.8 2001/06/03 19:12:00 oes + * extracted-CGI relevant stuff + * + * Revision 1.7 2001/05/31 21:21:30 jongfoster + * Permissionsfile / actions file changes: + * - Changed "permission" to "action" throughout + * - changes to file format to allow string parameters + * - Moved helper functions to actions.c + * + * Revision 1.6 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.5 2001/05/27 22:17:04 oes + * + * - re_process_buffer no longer writes the modified buffer + * to the client, which was very ugly. It now returns the + * buffer, which it is then written by chat. + * + * - content_length now adjusts the Content-Length: header + * for modified documents rather than crunch()ing it. + * (Length info in csp->content_length, which is 0 for + * unmodified documents) + * + * - For this to work, sed() is called twice when filtering. + * + * Revision 1.4 2001/05/26 15:26:15 jongfoster + * ACL feature now provides more security by immediately dropping + * connections from untrusted hosts. + * + * Revision 1.3 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:58:52 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ - + #include "project.h" @@ -50,46 +198,74 @@ extern "C" { #endif -#ifdef ACL_FILES -extern int block_acl(struct access_control_addr *src, struct access_control_addr *dst, struct client_state *csp); -extern int acl_addr(char *aspec, struct access_control_addr *aca); -#endif /* def ACL_FILES */ - -extern char *block_url(struct http_request *http, struct client_state *csp); -#ifdef TRUST_FILES -extern char *trust_url(struct http_request *http, struct client_state *csp); -#endif /* def TRUST_FILES */ -extern char *intercept_url(struct http_request *http, struct client_state *csp); -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) -extern int block_imageurl(struct http_request *http, struct client_state *csp); -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ +struct access_control_addr; +struct client_state; +struct http_request; +struct http_response; +struct current_action_spec; +struct url_actions; +struct url_spec; -#ifdef USE_IMAGE_LIST -extern int block_imageurl_using_imagelist(struct http_request *http, struct client_state *csp); -#endif /* def USE_IMAGE_LIST */ -extern struct cookie_spec *cookie_url(struct http_request *http, struct client_state *csp); -extern const struct gateway *forward_url(struct http_request *http, struct client_state *csp); +/* + * ACL checking + */ +#ifdef FEATURE_ACL +extern int block_acl(struct access_control_addr *dst, struct client_state *csp); +extern int acl_addr(char *aspec, struct access_control_addr *aca); +#endif /* def FEATURE_ACL */ +extern int match_portlist(const char *portlist, int port); -extern struct url_spec dsplit(char *domain); -extern int domaincmp(struct url_spec *pattern, struct url_spec *fqdn); +/* + * Interceptors + */ +extern struct http_response *block_url(struct client_state *csp); +extern struct http_response *redirect_url(struct client_state *csp); +#ifdef FEATURE_TRUST +extern struct http_response *trust_url(struct client_state *csp); +#endif /* def FEATURE_TRUST */ -extern char *show_proxy_args(struct http_request *http, struct client_state *csp); +/* + * Request inspectors + */ +#ifdef FEATURE_TRUST +extern int is_untrusted_url(struct client_state *csp); +#endif /* def FEATURE_TRUST */ +#ifdef FEATURE_IMAGE_BLOCKING +extern int is_imageurl(struct client_state *csp); +#endif /* def FEATURE_IMAGE_BLOCKING */ -#ifdef TRUST_FILES -extern char *ij_untrusted_url(struct http_request *http, struct client_state *csp); -#endif /* def TRUST_FILES */ +/* + * Determining applicable actions + */ +extern void url_actions(struct http_request *http, + struct client_state *csp); +extern void apply_url_actions(struct current_action_spec *action, + struct http_request *http, + struct url_actions *b); +/* + * Determining parent proxies + */ +extern const struct forward_spec *forward_url(struct http_request *http, struct client_state *csp); -#ifdef STATISTICS -extern char *add_stats(char *s); -#endif /* def STATISTICS */ +/* + * Content modification + */ +extern char *pcrs_filter_response(struct client_state *csp); +extern char *gif_deanimate_response(struct client_state *csp); +extern int remove_chunked_transfer_coding(char *buffer, const size_t size); -#ifdef PCRS -extern void re_process_buffer(struct client_state *csp); -#endif /* def PCRS */ +/* + * Solaris fix: + */ +#ifndef INADDR_NONE +#define INADDR_NONE -1 +#endif -/* Revision control strings from this header and associated .c file */ +/* + * Revision control strings from this header and associated .c file + */ extern const char filters_rcs[]; extern const char filters_h_rcs[]; @@ -97,7 +273,7 @@ extern const char filters_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _FILTERS_H */ +#endif /* ndef FILTERS_H_INCLUDED */ /* Local Variables: diff --git a/forward b/forward deleted file mode 100644 index be4c7870..00000000 --- a/forward +++ /dev/null @@ -1,97 +0,0 @@ -# Forwarding specification for Internet Junkbuster 2.0 -# -# Copyright 1997-8 Junkbusters Corp. For distribution, modification and use -# under the GNU General Public License. These files come with NO WARRANTY. -# See http://www.junkbusters.com/ht/en/gpl.html or README file for details. - -# For this file to have any effect, the line beginning "forwardfile" must -# be commented in, with the name of this file following the word "forwardfile" - -# -# This feature allows routing of HTTP requests via multiple proxies. -# It can be used to better protect privacy and confidentiality when -# accessing specific domains by routing requests to those domains -# to a special purpose filtering proxy such as lpwa.com -# -# It can also be used in an environment with multiple networks to route -# requests via multiple gateways allowing transparent access to multiple -# networks without having to modify browser configurations. -# -# Also specified here are special gateway protocols such as SOCKS. - -# The syntax of each line is -# -# target_domain[:port][/path] forwarding_domain[:port] gateway_type gateway_domain[:port] -# - -# A '.' in the forwarding domain/port means that requests made to the -# target domain are not forwarded but are made directly by the proxy -# (though the proxy may still use a gateway to contact the server) -# -# Lines are checked in turn, and the last match wins. -# -# There is an implicit line equivalent to the following, which specifies that -# anything not finding a match on the list is to go out without forwarding -# or gateway protocol; like so: -# -# * . . . # implicit - -# In the following common configuration, everything goes to Lucent's LPWA, -# except SSL on port 443 (which it doesn't handle) -# * lpwa.com:8000 . . -# :443 . . . - -# See the FAQ for instructions on how to automate the login procedure for LPWA. -# Some users have reported difficulties related to LPWA's use of . as the -# last element of the domain, and have said that this can be fixed with this: -# lpwa. lpwa.com:8000 . . - -# In this fictitious example, everything goes via an ISP's caching proxy, -# except requests to that ISP: -# -# * caching.myisp.net:8000 . . -# myisp.net . . . - -# For the @home network, we're told the forwarding configuration is this: -# * proxy:8080 . . -# Also, we're told they insist on getting cookies and Javascript, so you need -# to add home.com to the cookie file. We consider Javascript a security risk; -# see our page on cookies. Java need not be enabled. - -# In this example direct connections are made to all "internal" domains, -# but everything else goes through Lucent's LPWA by way of the company's -# SOCKS gateway to the Internet. -# -# * lpwa.com:8000 socks argyle.my_company.com:1080 -# my_company.com . . . - -# This is how you could set up a site that always uses SOCKS but no forwarders -# -# * . socks knee.my_company.com:1080 - -# An advanced example for network administrators. -# -# If you have links to multiple ISPs that provide various special -#content to their subscribers, you can configure forwarding to pass -# requests to the specific host that's connected to that ISP -# so that everybody can see -# all of the content on all of the ISPs. -# -# This is tricky, but here's a sample: -# -# host-a has a PPP connection to isp-a.com -# host-b has a PPP connection to isp-b.com - -# host-a can run an Internet Junkbuster proxy with forwarding like this: -# -# / . . . -# isp-b.com host-b:8000 . . -# -# host-b can run an Internet Junkbuster proxy with forwarding like this: -# / . . . -# isp-a.com host-a:8000 . . -# -# Now, *anyone* on the Internet (including users on host-a and host-b) -# can set their browser's proxy to *either* host-a or host-b and -# be able to browse the content on isp-a or isp-b. - diff --git a/gateway.c b/gateway.c index 2ccf1676..7584b945 100644 --- a/gateway.c +++ b/gateway.c @@ -1,20 +1,20 @@ -const char gateway_rcs[] = "$Id: gateway.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char gateway_rcs[] = "$Id: gateway.c,v 1.15 2002/03/26 22:29:54 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/gateway.c,v $ + * File : $Source: /cvsroot/ijbswa/current/gateway.c,v $ * * Purpose : Contains functions to connect to a server, possibly - * using a "gateway" (i.e. HTTP proxy and/or SOCKS4 - * proxy). Also contains the list of gateway types. + * using a "forwarder" (i.e. HTTP proxy and/or a SOCKS4 + * proxy). * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -34,6 +34,85 @@ const char gateway_rcs[] = "$Id: gateway.c,v 1.1 2001/05/13 21:57:06 administrat * * Revisions : * $Log: gateway.c,v $ + * Revision 1.15 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.14 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.13 2002/03/13 00:29:59 jongfoster + * Killing warnings + * + * Revision 1.12 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.11 2002/03/08 17:46:04 jongfoster + * Fixing int/size_t warnings + * + * Revision 1.10 2002/03/07 03:50:19 oes + * - Improved handling of failed DNS lookups + * - Fixed compiler warnings + * + * Revision 1.9 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.8 2001/09/13 20:10:12 jongfoster + * Fixing missing #include under Windows + * + * Revision 1.7 2001/09/12 17:58:26 steudten + * + * add #include + * + * Revision 1.6 2001/09/10 10:41:16 oes + * Added #include in.h + * + * Revision 1.5 2001/07/29 18:47:57 jongfoster + * Adding missing #include project.h + * + * Revision 1.4 2001/07/24 12:47:06 oes + * Applied BeOS support update by Eugenia + * + * Revision 1.3 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.2 2001/06/07 23:11:38 jongfoster + * Removing gateways[] list - no longer used. + * Replacing function pointer in struct gateway with a directly + * called function forwarded_connect(), which can do the common + * task of deciding whether to connect to the web server or HTTP + * proxy. + * Replacing struct gateway with struct forward_spec + * Fixing bug with SOCKS4A and HTTP proxy server in combination. + * It was a bug which led to the connection being made to the web + * server rather than the HTTP proxy, and also a buffer overrun. + * + * Revision 1.1.1.1 2001/05/15 13:58:54 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -42,12 +121,27 @@ const char gateway_rcs[] = "$Id: gateway.c,v 1.1 2001/05/13 21:57:06 administrat #include #include + +#ifndef _WIN32 +#include +#endif + #include +#include #ifdef _WIN32 #include #endif /* def _WIN32 */ +#ifdef __BEOS__ +#include +#endif /* def __BEOS__ */ + +#ifdef __OS2__ +#include +#endif /* def __OS2__ */ + +#include "project.h" #include "jcc.h" #include "errlog.h" #include "jbsockets.h" @@ -55,20 +149,10 @@ const char gateway_rcs[] = "$Id: gateway.c,v 1.1 2001/05/13 21:57:06 administrat const char gateway_h_rcs[] = GATEWAY_H_VERSION; -#define SOCKS_4 40 /* original SOCKS 4 protocol */ -#define SOCKS_4A 41 /* as modified for hosts w/o external DNS */ - -const struct gateway gateways[] = { - /* type function gw type/host/port, fw host/port */ - { "direct", direct_connect, 0, NULL, 0, NULL, 0 }, - { ".", direct_connect, 0, NULL, 0, NULL, 0 }, - { "socks", socks4_connect, SOCKS_4, NULL, 1080, NULL, 0 }, - { "socks4", socks4_connect, SOCKS_4, NULL, 1080, NULL, 0 }, - { "socks4a", socks4_connect, SOCKS_4A, NULL, 1080, NULL, 0 }, - { NULL, NULL, 0, NULL, 0, NULL, 0 } -}; - -const struct gateway *gw_default = gateways; /* direct */ +static jb_socket socks4_connect(const struct forward_spec * fwd, + const char * target_host, + int target_port, + struct client_state *csp); #define SOCKS_REQUEST_GRANTED 90 @@ -99,31 +183,56 @@ static const char socks_userid[] = "anonymous"; /********************************************************************* * - * Function : direct_connect + * Function : forwarded_connect * - * Description : Direct how we connect to the web. This can be: - * directly : no forwarding, or - * indirectly : through another proxy such as squid. + * Description : Connect to a specified web server, possibly via + * a HTTP proxy and/or a SOCKS proxy. * * Parameters : - * 1 : gw = pointer to a gateway structure (such as gw_default) + * 1 : fwd = the proxies to use when connecting. * 2 : http = the http request and apropos headers * 3 : csp = Current client state (buffers, headers, etc...) * - * Returns : -1 => failure, else it is the socket file descriptor. + * Returns : JB_INVALID_SOCKET => failure, else it is the socket file descriptor. * *********************************************************************/ -int direct_connect(const struct gateway *gw, struct http_request *http, struct client_state *csp) +jb_socket forwarded_connect(const struct forward_spec * fwd, + struct http_request *http, + struct client_state *csp) { - if (gw->forward_host) + const char * dest_host; + int dest_port; + + /* Figure out if we need to connect to the web server or a HTTP proxy. */ + if (fwd->forward_host) { - return(connect_to(gw->forward_host, gw->forward_port, csp)); + /* HTTP proxy */ + dest_host = fwd->forward_host; + dest_port = fwd->forward_port; } else { - return(connect_to(http->host, http->port, csp)); + /* Web server */ + dest_host = http->host; + dest_port = http->port; } + /* Connect, maybe using a SOCKS proxy */ + switch (fwd->type) + { + case SOCKS_NONE: + return (connect_to(dest_host, dest_port, csp)); + + case SOCKS_4: + case SOCKS_4A: + return (socks4_connect(fwd, dest_host, dest_port, csp)); + + default: + /* Should never get here */ + log_error(LOG_LEVEL_FATAL, "SOCKS4 impossible internal error - bad SOCKS type."); + errno = EINVAL; + return(JB_INVALID_SOCKET); + } } @@ -132,37 +241,43 @@ int direct_connect(const struct gateway *gw, struct http_request *http, struct c * Function : socks4_connect * * Description : Connect to the SOCKS server, and connect through - * it to the web server or web proxy. This handles + * it to the specified server. This handles * all the SOCKS negotiation, and returns a file * descriptor for a socket which can be treated as a * normal (non-SOCKS) socket. * * Parameters : - * 1 : gw = pointer to a gateway structure (such as gw_default) - * 2 : http = the http request and apropos headers - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : fwd = Specifies the SOCKS proxy to use. + * 2 : target_host = The final server to connect to. + * 3 : target_port = The final port to connect to. + * 4 : csp = Current client state (buffers, headers, etc...) * - * Returns : -1 => failure, else a socket file descriptor. + * Returns : JB_INVALID_SOCKET => failure, else a socket file descriptor. * *********************************************************************/ -int socks4_connect(const struct gateway *gw, struct http_request *http, struct client_state *csp) +static jb_socket socks4_connect(const struct forward_spec * fwd, + const char * target_host, + int target_port, + struct client_state *csp) { int web_server_addr; - unsigned char cbuf[BUFSIZ]; - unsigned char sbuf[BUFSIZ]; + char cbuf[BUFFER_SIZE]; + char sbuf[BUFFER_SIZE]; struct socks_op *c = (struct socks_op *)cbuf; struct socks_reply *s = (struct socks_reply *)sbuf; - int n, csiz, sfd, target_port; + size_t n; + size_t csiz; + jb_socket sfd; int err = 0; - char *errstr, *target_host; + char *errstr; - if ((gw->gateway_host == NULL) || (*gw->gateway_host == '\0')) + if ((fwd->gateway_host == NULL) || (*fwd->gateway_host == '\0')) { log_error(LOG_LEVEL_CONNECT, "socks4_connect: NULL gateway host specified"); err = 1; } - if (gw->gateway_port <= 0) + if (fwd->gateway_port <= 0) { log_error(LOG_LEVEL_CONNECT, "socks4_connect: invalid gateway port specified"); err = 1; @@ -171,18 +286,7 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c if (err) { errno = EINVAL; - return(-1); - } - - if (gw->forward_host) - { - target_host = gw->forward_host; - target_port = gw->forward_port; - } - else - { - target_host = http->host; - target_port = http->port; + return(JB_INVALID_SOCKET); } /* build a socks request for connection to the web server */ @@ -191,10 +295,15 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c csiz = sizeof(*c) + sizeof(socks_userid) - 1; - switch (gw->type) + switch (fwd->type) { case SOCKS_4: web_server_addr = htonl(resolve_hostname_to_ip(target_host)); + if (web_server_addr == INADDR_NONE) + { + log_error(LOG_LEVEL_CONNECT, "socks4_connect: could not resolve target host %s", target_host); + return(JB_INVALID_SOCKET); + } break; case SOCKS_4A: web_server_addr = 0x00000001; @@ -202,16 +311,16 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c if (n > sizeof(cbuf)) { errno = EINVAL; - return(-1); + return(JB_INVALID_SOCKET); } - strcpy(((char *)cbuf) + csiz, http->host); + strcpy(cbuf + csiz, target_host); csiz = n; break; default: /* Should never get here */ - log_error(LOG_LEVEL_ERROR, "SOCKS4 impossible internal error - bad SOCKS type."); + log_error(LOG_LEVEL_FATAL, "SOCKS4 impossible internal error - bad SOCKS type."); errno = EINVAL; - return(-1); + return(JB_INVALID_SOCKET); } c->vn = 4; @@ -224,25 +333,25 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c c->dstip[3] = (web_server_addr ) & 0xff; /* pass the request to the socks server */ - sfd = connect_to(gw->gateway_host, gw->gateway_port, csp); + sfd = connect_to(fwd->gateway_host, fwd->gateway_port, csp); - if (sfd < 0) + if (sfd == JB_INVALID_SOCKET) { - return(-1); + return(JB_INVALID_SOCKET); } - if ((n = write_socket(sfd, (char *)c, csiz)) != csiz) + if (write_socket(sfd, (char *)c, csiz)) { log_error(LOG_LEVEL_CONNECT, "SOCKS4 negotiation write failed..."); close_socket(sfd); - return(-1); + return(JB_INVALID_SOCKET); } - if ((n = read_socket(sfd, sbuf, sizeof(sbuf))) != sizeof(*s)) + if (read_socket(sfd, sbuf, sizeof(sbuf)) != sizeof(*s)) { log_error(LOG_LEVEL_CONNECT, "SOCKS4 negotiation read failed..."); close_socket(sfd); - return(-1); + return(JB_INVALID_SOCKET); } switch (s->cd) @@ -266,7 +375,7 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c errno = EACCES; break; default: - errstr = (char *) cbuf; + errstr = cbuf; errno = ENOENT; sprintf(errstr, "SOCKS request rejected for reason code %d\n", s->cd); @@ -275,7 +384,7 @@ int socks4_connect(const struct gateway *gw, struct http_request *http, struct c log_error(LOG_LEVEL_CONNECT, "socks4_connect: %s ...", errstr); close_socket(sfd); - return(-1); + return(JB_INVALID_SOCKET); } diff --git a/gateway.h b/gateway.h index 69145552..d96bc58d 100644 --- a/gateway.h +++ b/gateway.h @@ -1,16 +1,16 @@ -#ifndef _GATEWAY_H -#define _GATEWAY_H -#define GATEWAY_H_VERSION "$Id: gateway.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef GATEWAY_H_INCLUDED +#define GATEWAY_H_INCLUDED +#define GATEWAY_H_VERSION "$Id: gateway.h,v 1.6 2002/03/25 22:12:45 oes Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/gateway.h,v $ + * File : $Source: /cvsroot/ijbswa/current/gateway.h,v $ * * Purpose : Contains functions to connect to a server, possibly * using a "gateway" (i.e. HTTP proxy and/or SOCKS4 * proxy). Also contains the list of gateway types. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -36,23 +36,77 @@ * * Revisions : * $Log: gateway.h,v $ + * Revision 1.6 2002/03/25 22:12:45 oes + * Added fix for undefined INADDR_NONE on Solaris by Bart Schelstraete + * + * Revision 1.5 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.4 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.3 2001/07/29 18:58:15 jongfoster + * Removing nested #includes, adding forward declarations for needed + * structures, and changing the #define _FILENAME_H to FILENAME_H_INCLUDED. + * + * Revision 1.2 2001/06/07 23:12:14 jongfoster + * Removing gateways[] list - no longer used. + * Replacing function pointer in struct gateway with a directly + * called function forwarded_connect(), which can do the common + * task of deciding whether to connect to the web server or HTTP + * proxy. + * Replacing struct gateway with struct forward_spec + * + * Revision 1.1.1.1 2001/05/15 13:58:54 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ -#include "project.h" - #ifdef __cplusplus extern "C" { #endif -extern const struct gateway gateways[]; -extern const struct gateway *gw_default; +struct forward_spec; +struct http_request; +struct client_state; -extern int socks4_connect(const struct gateway *gw, struct http_request *http, struct client_state *csp); -extern int direct_connect(const struct gateway *gw, struct http_request *http, struct client_state *csp); +extern jb_socket forwarded_connect(const struct forward_spec * fwd, + struct http_request *http, + struct client_state *csp); -/* Revision control strings from this header and associated .c file */ +/* + * Solaris fix + */ +#ifndef INADDR_NONE +#define INADDR_NONE -1 +#endif + +/* + * Revision control strings from this header and associated .c file + */ extern const char gateway_rcs[]; extern const char gateway_h_rcs[]; @@ -60,7 +114,7 @@ extern const char gateway_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _GATEWAY_H */ +#endif /* ndef GATEWAY_H_INCLUDED */ /* Local Variables: diff --git a/genclspec.sh b/genclspec.sh new file mode 100755 index 00000000..796d05fc --- /dev/null +++ b/genclspec.sh @@ -0,0 +1,52 @@ +#!/bin/sh +# +# $Id: genclspec,v 1.30 2002/04/26 15:51:05 morcego Exp $ +# +# Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# $Log: genclspec.spec,v $ +# + +VERSION=`cat privoxy-rh.spec | sed -n -e 's/^Version:[ ]*//p'` +RELEASE=`cat privoxy-rh.spec | sed -n -e 's/^Release:[ ]*//p'` +CLTAG=${VERSION}-${RELEASE}cl + +PACKAGER=`rpm --eval "%{packager}"` +if [ "${PACKAGER}" = "%{packager}" ]; then + PACKAGER="genclspec script " +fi + +export LC_ALL= +export LANG= +DATETAG=`date "+%a %b %d %Y"` + +if [ -r privoxy-cl.spec ]; then + echo Old CL specfile found. Removing it. +fi + +cat privoxy-rh.spec | sed -e 's/^\(Release:[ ]*[^ ]\+\)[ ]*$/\1cl/' \ + -e "/^%changelog/a* ${DATETAG} ${PACKAGER}" \ + -e "/^%changelog/a+ privoxy-${CLTAG}" \ + -e "/^%changelog/a- Packaging for Conectiva Linux (automatic genarated specfile)" \ + -e '/^%changelog/a \ +' > privoxy-cl.spec + diff --git a/icons/denyrule.ico b/icons/denyrule.ico deleted file mode 100644 index e5aa250604fb73ae2bedf554aed994cdac982f02..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 318 zcmZvXF%H5o6hmJnB$SCxtT1xSGBMIMw~5pP^bClhbH##0rC=vy!-?%L|No@~I-S1n zF)ke(?V^*j*s+sBD*8_b&}A5^NmY_klDm=1C1+Qnjw4G$7*z#`Q7$$Qs@)55ERNhG z3fvN+5+TI8BJ-$4f!8$h+o_wLZtxS94@|Gh=K>FLo#B0l?Ib_wFMGI7a9d&C{PxN( D6JJL~ diff --git a/icons/icon1.ico b/icons/icon1.ico deleted file mode 100644 index b96fe7c27d160d8fd002a84ab474d95dc5124340..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 318 zcmZvW!3{zo5JVru0yuf~hm&1cnso3>uoZ5<4HFyCn_k2j_(n|}csrBbB>{p?N(pNp zU~3odOd_yRh1%=CQb3ndhN&u2Yn6M@`lU4|q2rdzM{&fMryg?7_PDyb9z-?Y?i|;i oSNq`Gz0l;vw4L1;~mrO#lD@ diff --git a/icons/idle.ico b/icons/idle.ico index 99470b54e0402ab4b18229f78ee0eb5121583796..5ef20fc1391b376205c3c83346a7754fc6f4df97 100644 GIT binary patch delta 102 zcmdnTw2x`Rgcz+wN=ix$3`!812|_C^9SR6#JS_M)GqE~_GMM_9C6GU7AXbwmn L&^!>B_$CMdJ?tAS delta 102 zcmdnTw2x`Rgcv0dU|`T%rL=055(CpJtwlhjpah|nFlZ&PJWvaeUIo$$;WI&K1qKMs L0H#+>d=mr!__HIV diff --git a/icons/os2.ico b/icons/os2.ico new file mode 100644 index 0000000000000000000000000000000000000000..0ad4f5624750e4bd5ff229af53ff4818f46fe4b8 GIT binary patch literal 2968 zcmeHJJ8s)R5S@t<$S?wk3kXn{#x7On22PwRU5??>s>se{CAws#=r%fl4xuBcbYYlz zZ+1syY{v)?A#O6laCT?j{C3G*U4EI1NC_r={q_;h48JQCd5`hAd=|wI)OFp!{>JU+ zu)d|eGOkQim{p|hcH2SU!J7h-ak}o(^6sI7^C-qWl~cJwDCV8Y{7GKgPu{tG`WJbb zw$D37w!0K}F5jQzrM*0fdFNIaiWGE6u1r8;1o~aSz`iQkqVLAsh3;PD;!flYt3TO^ zjL933k#i-Yf5MKZ+@&~-$=J-nTpe?Q)}!n8azEM&e>=IBjeIh$aCW`Kj-wBK8H2H2B3rHqXsQD+Ybt-& zRGZpgBMnXMFJZvg-$0ISqYxmpT=(b=Jt(FKd2{;%`@N8*el?N+Ce_Zjoom2nV8(j$YdpI5(Q8`fN#J!ALRm!vr^8$d+=l+ zcNmYskL3os5%^eghgi?$d0daz>2-S_?8(^s^uB!^d|lEd;Ohmqe?(ap58y#Mp6SpI zFB8p*;u_!W@Tn!=U)UA1K)o6f8&>DPkYr%qZ z%Nl`>xHevW2IJ*tzWEHezG3Q6vgNRvxd_l1)xP|2KIqa~akX66Z>NS2(X~G}ZCMeN T6f@W}Dt=K}GegG#{0PIJcWRD4 literal 0 HcmV?d00001 diff --git a/icons/os20.ico b/icons/os20.ico new file mode 100644 index 0000000000000000000000000000000000000000..ef5995b1649fad95cf2398c3bc393a2859445e75 GIT binary patch literal 498 zcmbtQu?+$-47?8%bg%)D%b((biiQc8f(bGUWv0kTh>9-UC69vi5e;Xb&#~XO^vA;$ z4X5*kj}7ffoyZ;O$${2`>lMFhIcK!3H!hjj)mCx9nsEvBej@;MgiwW%DN;&QHF9zA zIx~`{lER;O?SaRZw^o&*|6|G(^*-NeMzer3^HL*bQ8Gr0(ct2Er+cev3$@bcEH!FJ QeY>h2Rk^Q4KNmS@c4K68GY3E^T+pKH^)@F2e P9o)~%e1Qv{?GC&F|Die+ literal 0 HcmV?d00001 diff --git a/icons/os22.ico b/icons/os22.ico new file mode 100644 index 0000000000000000000000000000000000000000..d357dfba4eaefb36918d3f104f07017d465a5afa GIT binary patch literal 498 zcmbtQu?@m75WE-)I@kcqWu^$EqG1B2U;>XqohdvLqM|c*ej_7c(Qxnkd;i7%QjUiU z8s^iPmkr}VoyZ;O$$`;>>oq@mIcKz~R}PuzYN|M3&HN2{zYzf*#Aw3I5-BCBj9d=5 zofXMYOX*KM_rQJ2T`Obk|Cq8x-upYf(ObZU;H816qC!`yD-yg(KQDxwv1*_?Yus$k LQs<3rPu=?hUAQ={ literal 0 HcmV?d00001 diff --git a/icons/os23.ico b/icons/os23.ico new file mode 100644 index 0000000000000000000000000000000000000000..8ac037f045701b0bed5cadc3586b3d31ecfb3755 GIT binary patch literal 498 zcmbtQu?+$-5c3BLI@o~Mm6_s!iiQc8f(bGTb*9Kjh>9-QNzfyRXz<17obPid{eE}G zjKlH7V#T;qCvroM}sksV9EGx>ixC^@F1lIMy8miiBzNd z0k<=w=qf4vX^$;%TXWZdk_3Vb;*nzIUzc N(G+j3f%fr+2VT1WI5hwO literal 0 HcmV?d00001 diff --git a/icons/os26.ico b/icons/os26.ico new file mode 100644 index 0000000000000000000000000000000000000000..408d89efd66fed1304cfe0cfa40295a27fba7ad6 GIT binary patch literal 498 zcmbu5!41MN3`O0-0dav1h&oAu6Bj063MR-bJ!XoIgg9{v@5i7Z5pm%=-{1LeY^jI+ z#VU@cGnW-{M@P7Y0d_RETup3*qPln>{>Wu`^S_m>b<|y8@)B_hapG@fJ{<~EEJN;*UE72Pwy|NjT61kwM&^q(_GG!I1l0MHze MI-q$VF!4 -# -# Note that the regexp is split into domain and path, hence the `/' as the -# beginning of a path. -# - -# generic, most powerful regepxs, path contains `.gif', `.jpeg' or `.jpg' -/.*\.gif -/.*\.jpe?g - -adforce.imgis.com -ad.preferences.com/image.* -ads.web.aol.com -focalink.com -ad-adex3.flycast.com -ad.doubleclick.net -connect.247media.ads.link4ads.com -ln.doubleclick.net -mojofarm.mediaplex.com/ad/ -www.carbuyer.com/cgi-carbuyer/getimage.cgi diff --git a/install-sh b/install-sh new file mode 100755 index 00000000..e9de2384 --- /dev/null +++ b/install-sh @@ -0,0 +1,251 @@ +#!/bin/sh +# +# install - install a program, script, or datafile +# This comes from X11R5 (mit/util/scripts/install.sh). +# +# Copyright 1991 by the Massachusetts Institute of Technology +# +# Permission to use, copy, modify, distribute, and sell this software and its +# documentation for any purpose is hereby granted without fee, provided that +# the above copyright notice appear in all copies and that both that +# copyright notice and this permission notice appear in supporting +# documentation, and that the name of M.I.T. not be used in advertising or +# publicity pertaining to distribution of the software without specific, +# written prior permission. M.I.T. makes no representations about the +# suitability of this software for any purpose. It is provided "as is" +# without express or implied warranty. +# +# Calling this script install-sh is preferred over install.sh, to prevent +# `make' implicit rules from creating a file called install from it +# when there is no Makefile. +# +# This script is compatible with the BSD install script, but was written +# from scratch. It can only install one file at a time, a restriction +# shared with many OS's install programs. + + +# set DOITPROG to echo to test this script + +# Don't use :- since 4.3BSD and earlier shells don't like it. +doit="${DOITPROG-}" + + +# put in absolute paths if you don't have them in your path; or use env. vars. + +mvprog="${MVPROG-mv}" +cpprog="${CPPROG-cp}" +chmodprog="${CHMODPROG-chmod}" +chownprog="${CHOWNPROG-chown}" +chgrpprog="${CHGRPPROG-chgrp}" +stripprog="${STRIPPROG-strip}" +rmprog="${RMPROG-rm}" +mkdirprog="${MKDIRPROG-mkdir}" + +transformbasename="" +transform_arg="" +instcmd="$mvprog" +chmodcmd="$chmodprog 0755" +chowncmd="" +chgrpcmd="" +stripcmd="" +rmcmd="$rmprog -f" +mvcmd="$mvprog" +src="" +dst="" +dir_arg="" + +while [ x"$1" != x ]; do + case $1 in + -c) instcmd="$cpprog" + shift + continue;; + + -d) dir_arg=true + shift + continue;; + + -m) chmodcmd="$chmodprog $2" + shift + shift + continue;; + + -o) chowncmd="$chownprog $2" + shift + shift + continue;; + + -g) chgrpcmd="$chgrpprog $2" + shift + shift + continue;; + + -s) stripcmd="$stripprog" + shift + continue;; + + -t=*) transformarg=`echo $1 | sed 's/-t=//'` + shift + continue;; + + -b=*) transformbasename=`echo $1 | sed 's/-b=//'` + shift + continue;; + + *) if [ x"$src" = x ] + then + src=$1 + else + # this colon is to work around a 386BSD /bin/sh bug + : + dst=$1 + fi + shift + continue;; + esac +done + +if [ x"$src" = x ] +then + echo "install: no input file specified" + exit 1 +else + true +fi + +if [ x"$dir_arg" != x ]; then + dst=$src + src="" + + if [ -d $dst ]; then + instcmd=: + chmodcmd="" + else + instcmd=mkdir + fi +else + +# Waiting for this to be detected by the "$instcmd $src $dsttmp" command +# might cause directories to be created, which would be especially bad +# if $src (and thus $dsttmp) contains '*'. + + if [ -f $src -o -d $src ] + then + true + else + echo "install: $src does not exist" + exit 1 + fi + + if [ x"$dst" = x ] + then + echo "install: no destination specified" + exit 1 + else + true + fi + +# If destination is a directory, append the input filename; if your system +# does not like double slashes in filenames, you may need to add some logic + + if [ -d $dst ] + then + dst="$dst"/`basename $src` + else + true + fi +fi + +## this sed command emulates the dirname command +dstdir=`echo $dst | sed -e 's,[^/]*$,,;s,/$,,;s,^$,.,'` + +# Make sure that the destination directory exists. +# this part is taken from Noah Friedman's mkinstalldirs script + +# Skip lots of stat calls in the usual case. +if [ ! -d "$dstdir" ]; then +defaultIFS=' +' +IFS="${IFS-${defaultIFS}}" + +oIFS="${IFS}" +# Some sh's can't handle IFS=/ for some reason. +IFS='%' +set - `echo ${dstdir} | sed -e 's@/@%@g' -e 's@^%@/@'` +IFS="${oIFS}" + +pathcomp='' + +while [ $# -ne 0 ] ; do + pathcomp="${pathcomp}${1}" + shift + + if [ ! -d "${pathcomp}" ] ; + then + $mkdirprog "${pathcomp}" + else + true + fi + + pathcomp="${pathcomp}/" +done +fi + +if [ x"$dir_arg" != x ] +then + $doit $instcmd $dst && + + if [ x"$chowncmd" != x ]; then $doit $chowncmd $dst; else true ; fi && + if [ x"$chgrpcmd" != x ]; then $doit $chgrpcmd $dst; else true ; fi && + if [ x"$stripcmd" != x ]; then $doit $stripcmd $dst; else true ; fi && + if [ x"$chmodcmd" != x ]; then $doit $chmodcmd $dst; else true ; fi +else + +# If we're going to rename the final executable, determine the name now. + + if [ x"$transformarg" = x ] + then + dstfile=`basename $dst` + else + dstfile=`basename $dst $transformbasename | + sed $transformarg`$transformbasename + fi + +# don't allow the sed command to completely eliminate the filename + + if [ x"$dstfile" = x ] + then + dstfile=`basename $dst` + else + true + fi + +# Make a temp file name in the proper directory. + + dsttmp=$dstdir/#inst.$$# + +# Move or copy the file name to the temp name + + $doit $instcmd $src $dsttmp && + + trap "rm -f ${dsttmp}" 0 && + +# and set any options; do chmod last to preserve setuid bits + +# If any of these fail, we abort the whole thing. If we want to +# ignore errors from any of these, just make sure not to ignore +# errors from the above "$doit $instcmd $src $dsttmp" command. + + if [ x"$chowncmd" != x ]; then $doit $chowncmd $dsttmp; else true;fi && + if [ x"$chgrpcmd" != x ]; then $doit $chgrpcmd $dsttmp; else true;fi && + if [ x"$stripcmd" != x ]; then $doit $stripcmd $dsttmp; else true;fi && + if [ x"$chmodcmd" != x ]; then $doit $chmodcmd $dsttmp; else true;fi && + +# Now rename the file to the real destination. + + $doit $rmcmd -f $dstdir/$dstfile && + $doit $mvcmd $dsttmp $dstdir/$dstfile + +fi && + + +exit 0 diff --git a/jbsockets.c b/jbsockets.c index c5f73c9c..a3859656 100644 --- a/jbsockets.c +++ b/jbsockets.c @@ -1,15 +1,15 @@ -const char jbsockets_rcs[] = "$Id: jbsockets.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char jbsockets_rcs[] = "$Id: jbsockets.c,v 1.34 2002/04/08 20:31:41 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/jbsockets.c,v $ + * File : $Source: /cvsroot/ijbswa/current/jbsockets.c,v $ * * Purpose : Contains wrappers for system-specific sockets code, - * so that the rest of JunkBuster can be more + * so that the rest of Junkbuster can be more * OS-independent. Contains #ifdefs to make this work * on many platforms. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -35,6 +35,144 @@ const char jbsockets_rcs[] = "$Id: jbsockets.c,v 1.1 2001/05/13 21:57:06 adminis * * Revisions : * $Log: jbsockets.c,v $ + * Revision 1.34 2002/04/08 20:31:41 swa + * fixed JB spelling + * + * Revision 1.33 2002/04/03 16:02:18 gliptak + * Correcting compile warning with older gcc + * + * Revision 1.32 2002/03/31 17:18:59 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.31 2002/03/29 03:33:13 david__schmidt + * Fix Mac OSX compiler warnings + * + * Revision 1.30 2002/03/27 14:32:43 david__schmidt + * More compiler warning message maintenance + * + * Revision 1.29 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.28 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.27 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.26 2002/03/11 22:07:02 david__schmidt + * OS/2 port maintenance: + * - Fixed EMX build - it had decayed a little + * - Fixed inexplicable crash during FD_ZERO - must be due to a bad macro. + * substituted a memset for now. + * + * Revision 1.25 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.24 2002/03/07 03:51:36 oes + * - Improved handling of failed DNS lookups + * - Fixed compiler warnings etc + * + * Revision 1.23 2002/03/05 00:36:01 jongfoster + * Fixing bug 514988 - unable to restart Junkbuster + * + * Revision 1.22 2002/03/04 02:08:02 david__schmidt + * Enable web editing of actions file on OS/2 (it had been broken all this time!) + * + * Revision 1.21 2002/01/09 14:32:33 oes + * Added support for gethostbyname_r and gethostbyaddr_r. + * + * Revision 1.20 2001/11/16 00:48:48 jongfoster + * Enabling duplicate-socket detection for all platforms, not + * just Win32. + * + * Revision 1.19 2001/10/25 03:40:47 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.18 2001/09/21 23:02:02 david__schmidt + * Cleaning up 2 compiler warnings on OS/2. + * + * Revision 1.17 2001/09/13 20:11:46 jongfoster + * Fixing 2 compiler warnings under Win32 + * + * Revision 1.16 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.15 2001/07/29 17:40:43 jongfoster + * Fixed compiler warning by adding a cast + * + * Revision 1.14 2001/07/18 13:47:59 oes + * Eliminated dirty hack for getsockbyname() + * + * Revision 1.13 2001/07/15 13:56:57 jongfoster + * Removing unused local variable. + * + * Revision 1.12 2001/07/01 17:04:11 oes + * Bugfix: accept_connection no longer uses the obsolete hstrerror() function + * + * Revision 1.11 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.10 2001/06/29 13:29:15 oes + * - Added remote (server) host IP to csp->http->host_ip_addr_str + * - Added detection of local socket IP and fqdn + * - Removed logentry from cancelled commit + * + * Revision 1.9 2001/06/07 23:06:09 jongfoster + * The host parameter to connect_to() is now const. + * + * Revision 1.8 2001/06/03 19:12:07 oes + * filled comment + * + * Revision 1.7 2001/05/28 16:14:00 jongfoster + * Fixing bug in LOG_LEVEL_LOG + * + * Revision 1.6 2001/05/26 17:28:32 jongfoster + * Fixed LOG_LEVEL_LOG + * + * Revision 1.5 2001/05/26 15:26:15 jongfoster + * ACL feature now provides more security by immediately dropping + * connections from untrusted hosts. + * + * Revision 1.4 2001/05/26 00:37:42 jongfoster + * Cosmetic indentation correction. + * + * Revision 1.3 2001/05/25 21:57:54 jongfoster + * Now gives a warning under Windows if you try to bind + * it to a port that's already in use. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:58:54 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -50,13 +188,18 @@ const char jbsockets_rcs[] = "$Id: jbsockets.c,v 1.1 2001/05/13 21:57:06 adminis #ifdef _WIN32 +#ifndef STRICT +#define STRICT +#endif #include #include #include #else +#ifndef __OS2__ #include +#endif #include #include #include @@ -65,16 +208,26 @@ const char jbsockets_rcs[] = "$Id: jbsockets.c,v 1.1 2001/05/13 21:57:06 adminis #ifndef __BEOS__ #include +#ifndef __OS2__ #include +#endif #else #include #endif +#if defined(__EMX__) || defined (__OS2__) +#include /* OS/2/EMX needs a little help with select */ +#ifdef __OS2__ +#include +#endif +#endif + #endif #include "project.h" #include "jbsockets.h" #include "filters.h" +#include "errlog.h" const char jbsockets_h_rcs[] = JBSOCKETS_H_VERSION; @@ -92,59 +245,72 @@ const char jbsockets_h_rcs[] = JBSOCKETS_H_VERSION; * 3 : csp = Current client state (buffers, headers, etc...) * Not modified, only used for source IP and ACL. * - * Returns : -1 => failure, else it is the socket file descriptor. + * Returns : JB_INVALID_SOCKET => failure, else it is the socket + * file descriptor. * *********************************************************************/ -int connect_to(char *host, int portnum, struct client_state *csp) +jb_socket connect_to(const char *host, int portnum, struct client_state *csp) { struct sockaddr_in inaddr; - int fd, addr; + jb_socket fd; + int addr; fd_set wfds; struct timeval tv[1]; #if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) int flags; #endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ -#ifdef ACL_FILES - struct access_control_addr src[1], dst[1]; -#endif /* def ACL_FILES */ +#ifdef FEATURE_ACL + struct access_control_addr dst[1]; +#endif /* def FEATURE_ACL */ memset((char *)&inaddr, 0, sizeof inaddr); - if ((addr = resolve_hostname_to_ip(host)) == -1) + if ((addr = resolve_hostname_to_ip(host)) == INADDR_NONE) { - return(-1); + csp->http->host_ip_addr_str = strdup("unknown"); + return(JB_INVALID_SOCKET); } -#ifdef ACL_FILES - src->addr = csp->ip_addr_long; - src->port = 0; - - dst->addr = ntohl(addr); +#ifdef FEATURE_ACL + dst->addr = ntohl((unsigned long) addr); dst->port = portnum; - if (block_acl(src, dst, csp)) + if (block_acl(dst, csp)) { +#ifdef __OS2__ + errno = SOCEPERM; +#else errno = EPERM; - return(-1); +#endif + return(JB_INVALID_SOCKET); } -#endif /* def ACL_FILES */ +#endif /* def FEATURE_ACL */ inaddr.sin_addr.s_addr = addr; inaddr.sin_family = AF_INET; + csp->http->host_ip_addr_str = strdup(inet_ntoa(inaddr.sin_addr)); +#ifndef _WIN32 if (sizeof(inaddr.sin_port) == sizeof(short)) +#endif /* ndef _WIN32 */ { - inaddr.sin_port = htons((short)portnum); + inaddr.sin_port = htons((unsigned short) portnum); } +#ifndef _WIN32 else { - inaddr.sin_port = htonl(portnum); + inaddr.sin_port = htonl((unsigned long)portnum); } +#endif /* ndef _WIN32 */ +#ifdef _WIN32 + if ((fd = socket(inaddr.sin_family, SOCK_STREAM, 0)) == JB_INVALID_SOCKET) +#else if ((fd = socket(inaddr.sin_family, SOCK_STREAM, 0)) < 0) +#endif { - return(-1); + return(JB_INVALID_SOCKET); } #ifdef TCP_NODELAY @@ -154,39 +320,45 @@ int connect_to(char *host, int portnum, struct client_state *csp) } #endif /* def TCP_NODELAY */ -#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) +#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) && !defined(__OS2__) if ((flags = fcntl(fd, F_GETFL, 0)) != -1) { flags |= O_NDELAY; fcntl(fd, F_SETFL, flags); } -#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ +#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) && !defined(__OS2__) */ - while (connect(fd, (struct sockaddr *) & inaddr, sizeof inaddr) == -1) + while (connect(fd, (struct sockaddr *) & inaddr, sizeof inaddr) == JB_INVALID_SOCKET) { #ifdef _WIN32 if (errno == WSAEINPROGRESS) +#elif __OS2__ + if (sock_errno() == EINPROGRESS) #else /* ifndef _WIN32 */ if (errno == EINPROGRESS) -#endif /* ndef _WIN32 */ +#endif /* ndef _WIN32 || __OS2__ */ { break; } +#ifdef __OS2__ + if (sock_errno() != EINTR) +#else if (errno != EINTR) +#endif /* __OS2__ */ { close_socket(fd); - return(-1); + return(JB_INVALID_SOCKET); } } -#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) +#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) && !defined(__OS2__) if (flags != -1) { flags &= ~O_NDELAY; fcntl(fd, F_SETFL, flags); } -#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ +#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) && !defined(__OS2__) */ /* wait for connection to complete */ FD_ZERO(&wfds); @@ -195,10 +367,11 @@ int connect_to(char *host, int portnum, struct client_state *csp) tv->tv_sec = 30; tv->tv_usec = 0; - if (select(fd + 1, NULL, &wfds, NULL, tv) <= 0) + /* MS Windows uses int, not SOCKET, for the 1st arg of select(). Wierd! */ + if (select((int)fd + 1, NULL, &wfds, NULL, tv) <= 0) { close_socket(fd); - return(-1); + return(JB_INVALID_SOCKET); } return(fd); @@ -216,22 +389,51 @@ int connect_to(char *host, int portnum, struct client_state *csp) * 2 : buf = pointer to data to be written. * 3 : len = length of data to be written to the socket "fd". * - * Returns : Win32: If no error occurs, returns the total number of - * bytes sent, which can be less than the number - * indicated by len. Otherwise, returns (-1). - * Unix: ??? (Please fill me in!) + * Returns : 0 on success (entire buffer sent). + * nonzero on error. * *********************************************************************/ -int write_socket(int fd, const char *buf, int len) +int write_socket(jb_socket fd, const char *buf, size_t len) { - if (len <= 0) return(0); + if (len == 0) + { + return 0; + } - /* if (DEBUG(LOG)) fwrite(buf, n, 1, logfp); */ + if (len < 0) + { + return 1; + } -#if defined(_WIN32) || defined(__BEOS__) || defined(AMIGA) - return( send(fd, buf, len, 0)); + log_error(LOG_LEVEL_LOG, "%N", len, buf); + +#if defined(_WIN32) + return (send(fd, buf, (int)len, 0) != (int)len); +#elif defined(__BEOS__) || defined(AMIGA) + return (send(fd, buf, len, 0) != len); +#elif defined(__OS2__) + /* + * Break the data up into SOCKET_SEND_MAX chunks for sending... + * OS/2 seemed to complain when the chunks were too large. + */ +#define SOCKET_SEND_MAX 65000 + { + int write_len = 0, send_len, send_rc = 0, i = 0; + while ((i < len) && (send_rc != -1)) + { + if ((i + SOCKET_SEND_MAX) > len) + send_len = len - i; + else + send_len = SOCKET_SEND_MAX; + send_rc = send(fd,(char*)buf + i, send_len, 0); + if (send_rc == -1) + return 1; + i = i + send_len; + } + return 0; + } #else - return( write(fd, buf, len)); + return (write(fd, buf, len) != len); #endif } @@ -255,24 +457,26 @@ int write_socket(int fd, const char *buf, int len) * smaller than the number of bytes requested; this may hap- * pen for example because fewer bytes are actually available * right now (maybe because we were close to end-of-file, or - * because we are reading from a pipe, or from a terminal), - * or because read() was interrupted by a signal. On error, + * because we are reading from a pipe, or from a terminal, + * or because read() was interrupted by a signal). On error, * -1 is returned, and errno is set appropriately. In this * case it is left unspecified whether the file position (if * any) changes. * *********************************************************************/ -int read_socket(int fd, char *buf, int len) +int read_socket(jb_socket fd, char *buf, int len) { if (len <= 0) { return(0); } -#if defined(_WIN32) || defined(__BEOS__) || defined(AMIGA) - return( recv(fd, buf, len, 0)); +#if defined(_WIN32) + return(recv(fd, buf, len, 0)); +#elif defined(__BEOS__) || defined(AMIGA) || defined(__OS2__) + return(recv(fd, buf, (size_t)len, 0)); #else - return( read(fd, buf, len)); + return(read(fd, buf, (size_t)len)); #endif } @@ -289,12 +493,14 @@ int read_socket(int fd, char *buf, int len) * Returns : void * *********************************************************************/ -void close_socket(int fd) +void close_socket(jb_socket fd) { #if defined(_WIN32) || defined(__BEOS__) closesocket(fd); -#elif defined(AMIGA) - CloseSocket(fd); +#elif defined(AMIGA) + CloseSocket(fd); +#elif defined(__OS2__) + soclose(fd); #else close(fd); #endif @@ -312,39 +518,72 @@ void close_socket(int fd) * Parameters : * 1 : hostnam = TCP/IP address to bind/listen to * 2 : portnum = port to listen on + * 3 : pfd = pointer used to return file descriptor. * - * Returns : if success, return file descriptor - * if failure, returns -2 if address is in use, otherwise -1 - * + * Returns : if success, returns 0 and sets *pfd. + * if failure, returns -3 if address is in use, + * -2 if address unresolvable, + * -1 otherwise *********************************************************************/ -int bind_port(const char *hostnam, int portnum) +int bind_port(const char *hostnam, int portnum, jb_socket *pfd) { struct sockaddr_in inaddr; - int fd; + jb_socket fd; +#ifndef _WIN32 int one = 1; +#endif /* ndef _WIN32 */ + + *pfd = JB_INVALID_SOCKET; memset((char *)&inaddr, '\0', sizeof inaddr); inaddr.sin_family = AF_INET; inaddr.sin_addr.s_addr = resolve_hostname_to_ip(hostnam); + if (inaddr.sin_addr.s_addr == INADDR_NONE) + { + return(-2); + } + +#ifndef _WIN32 if (sizeof(inaddr.sin_port) == sizeof(short)) +#endif /* ndef _WIN32 */ { - inaddr.sin_port = htons((short)portnum); + inaddr.sin_port = htons((unsigned short) portnum); } +#ifndef _WIN32 else { - inaddr.sin_port = htonl(portnum); + inaddr.sin_port = htonl((unsigned long) portnum); } +#endif /* ndef _WIN32 */ fd = socket(AF_INET, SOCK_STREAM, 0); +#ifdef _WIN32 + if (fd == JB_INVALID_SOCKET) +#else if (fd < 0) +#endif { return(-1); } +#ifndef _WIN32 + /* + * This is not needed for Win32 - in fact, it stops + * duplicate instances of Junkbuster from being caught. + * + * On UNIX, we assume the user is sensible enough not + * to start Junkbuster multiple times on the same IP. + * Without this, stopping and restarting Junkbuster + * from a script fails. + * Note: SO_REUSEADDR is meant to only take over + * sockets which are *not* in listen state in Linux, + * e.g. sockets in TIME_WAIT. YMMV. + */ setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, (char *)&one, sizeof(one)); +#endif /* ndef _WIN32 */ if (bind (fd, (struct sockaddr *)&inaddr, sizeof(inaddr)) < 0) { @@ -355,7 +594,7 @@ int bind_port(const char *hostnam, int portnum) if (errno == EADDRINUSE) #endif { - return(-2); + return(-3); } else { @@ -371,7 +610,8 @@ int bind_port(const char *hostnam, int portnum) } } - return fd; + *pfd = fd; + return 0; } @@ -392,28 +632,93 @@ int bind_port(const char *hostnam, int portnum) * On an error it returns 0 (FALSE). * *********************************************************************/ -int accept_connection(struct client_state * csp, int fd) +int accept_connection(struct client_state * csp, jb_socket fd) { - struct sockaddr raddr; - struct sockaddr_in *rap = (struct sockaddr_in *) &raddr; - int afd, raddrlen; + struct sockaddr_in client, server; + struct hostent *host = NULL; + jb_socket afd; +#if defined(_WIN32) || defined(__OS2__) || defined(__APPLE_CC__) || defined(AMIGA) + /* Wierdness - fix a warning. */ + int c_length, s_length; +#else + socklen_t c_length, s_length; +#endif +#if defined(HAVE_GETHOSTBYADDR_R_8_ARGS) || defined(HAVE_GETHOSTBYADDR_R_7_ARGS) || defined(HAVE_GETHOSTBYADDR_R_5_ARGS) + struct hostent result; +#if defined(HAVE_GETHOSTBYADDR_R_5_ARGS) + struct hostent_data hdata; +#else + char hbuf[HOSTENT_BUFFER_SIZE]; + int thd_err; +#endif /* def HAVE_GETHOSTBYADDR_R_5_ARGS */ +#endif /* def HAVE_GETHOSTBYADDR_R_(8|7|5)_ARGS */ - raddrlen = sizeof raddr; + c_length = s_length = sizeof(client); + +#ifdef _WIN32 + afd = accept (fd, (struct sockaddr *) &client, &c_length); + if (afd == JB_INVALID_SOCKET) + { + return 0; + } +#else do { - afd = accept (fd, &raddr, &raddrlen); + afd = accept (fd, (struct sockaddr *) &client, &c_length); } while (afd < 1 && errno == EINTR); - if (afd < 0) { return 0; } +#endif + + /* + * Determine the IP-Adress that the client used to reach us + * and the hostname associated with that address + */ + if (!getsockname(afd, (struct sockaddr *) &server, &s_length)) + { + csp->my_ip_addr_str = strdup(inet_ntoa(server.sin_addr)); +#if defined(HAVE_GETHOSTBYADDR_R_8_ARGS) + gethostbyaddr_r((const char *)&server.sin_addr, + sizeof(server.sin_addr), AF_INET, + &result, hbuf, HOSTENT_BUFFER_SIZE, + &host, &thd_err); +#elif defined(HAVE_GETHOSTBYADDR_R_7_ARGS) + host = gethostbyaddr_r((const char *)&server.sin_addr, + sizeof(server.sin_addr), AF_INET, + &result, hbuf, HOSTENT_BUFFER_SIZE, &thd_err); +#elif defined(HAVE_GETHOSTBYADDR_R_5_ARGS) + if (0 == gethostbyaddr_r((const char *)&server.sin_addr, + sizeof(server.sin_addr), AF_INET, + &result, &hdata)) + { + host = &result; + } + else + { + host = NULL; + } +#else + host = gethostbyaddr((const char *)&server.sin_addr, + sizeof(server.sin_addr), AF_INET); +#endif + if (host == NULL) + { + log_error(LOG_LEVEL_ERROR, "Unable to get my own hostname: %E\n"); + } + else + { + csp->my_hostname = strdup(host->h_name); + } + } csp->cfd = afd; - csp->ip_addr_str = strdup(inet_ntoa(rap->sin_addr)); - csp->ip_addr_long = ntohl(rap->sin_addr.s_addr); + csp->ip_addr_str = strdup(inet_ntoa(client.sin_addr)); + csp->ip_addr_long = ntohl(client.sin_addr.s_addr); return 1; + } @@ -427,13 +732,22 @@ int accept_connection(struct client_state * csp, int fd) * Parameters : * 1 : host = hostname to resolve * - * Returns : -1 => failure, INADDR_ANY or tcp/ip address if succesful. + * Returns : INADDR_NONE => failure, INADDR_ANY or tcp/ip address if succesful. * *********************************************************************/ -int resolve_hostname_to_ip(const char *host) +unsigned long resolve_hostname_to_ip(const char *host) { struct sockaddr_in inaddr; struct hostent *hostp; +#if defined(HAVE_GETHOSTBYNAME_R_6_ARGS) || defined(HAVE_GETHOSTBYNAME_R_5_ARGS) || defined(HAVE_GETHOSTBYNAME_R_3_ARGS) + struct hostent result; +#if defined(HAVE_GETHOSTBYNAME_R_6_ARGS) || defined(HAVE_GETHOSTBYNAME_R_5_ARGS) + char hbuf[HOSTENT_BUFFER_SIZE]; + int thd_err; +#else /* defined(HAVE_GETHOSTBYNAME_R_3_ARGS) */ + struct hostent_data hdata; +#endif /* def HAVE_GETHOSTBYNAME_R_(6|5)_ARGS */ +#endif /* def HAVE_GETHOSTBYNAME_R_(6|5|3)_ARGS */ if ((host == NULL) || (*host == '\0')) { @@ -444,10 +758,29 @@ int resolve_hostname_to_ip(const char *host) if ((inaddr.sin_addr.s_addr = inet_addr(host)) == -1) { - if ((hostp = gethostbyname(host)) == NULL) +#if defined(HAVE_GETHOSTBYNAME_R_6_ARGS) + gethostbyname_r(host, &result, hbuf, + HOSTENT_BUFFER_SIZE, &hostp, &thd_err); +#elif defined(HAVE_GETHOSTBYNAME_R_5_ARGS) + hostp = gethostbyname_r(host, &result, hbuf, + HOSTENT_BUFFER_SIZE, &thd_err); +#elif defined(HAVE_GETHOSTBYNAME_R_3_ARGS) + if (0 == gethostbyname_r(host, &result, &hdata)) + { + hostp = &result; + } + else + { + hostp = NULL; + } +#else + hostp = gethostbyname(host); +#endif /* def HAVE_GETHOSTBYNAME_R_(6|5|3)_ARGS */ + if (hostp == NULL) { errno = EINVAL; - return(-1); + log_error(LOG_LEVEL_ERROR, "could not resolve hostname %s", host); + return(INADDR_NONE); } if (hostp->h_addrtype != AF_INET) { @@ -455,8 +788,9 @@ int resolve_hostname_to_ip(const char *host) errno = WSAEPROTOTYPE; #else errno = EPROTOTYPE; -#endif - return(-1); +#endif + log_error(LOG_LEVEL_ERROR, "hostname %s resolves to unknown address type.", host); + return(INADDR_NONE); } memcpy( (char *) &inaddr.sin_addr, diff --git a/jbsockets.h b/jbsockets.h index 6d77c4c5..78f2ee0d 100644 --- a/jbsockets.h +++ b/jbsockets.h @@ -1,17 +1,17 @@ -#ifndef _JBSOCKETS_H -#define _JBSOCKETS_H -#define JBSOCKETS_H_VERSION "$Id: jbsockets.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef JBSOCKETS_H_INCLUDED +#define JBSOCKETS_H_INCLUDED +#define JBSOCKETS_H_VERSION "$Id: jbsockets.h,v 1.8 2002/03/26 22:29:54 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/jbsockets.h,v $ + * File : $Source: /cvsroot/ijbswa/current/jbsockets.h,v $ * * Purpose : Contains wrappers for system-specific sockets code, - * so that the rest of JunkBuster can be more + * so that the rest of Junkbuster can be more * OS-independent. Contains #ifdefs to make this work * on many platforms. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -37,23 +37,74 @@ * * Revisions : * $Log: jbsockets.h,v $ + * Revision 1.8 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.7 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.6 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.5 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.4 2002/03/07 03:51:36 oes + * - Improved handling of failed DNS lookups + * - Fixed compiler warnings etc + * + * Revision 1.3 2001/07/29 19:01:11 jongfoster + * Changed _FILENAME_H to FILENAME_H_INCLUDED. + * Added forward declarations for needed structures. + * + * Revision 1.2 2001/06/07 23:06:09 jongfoster + * The host parameter to connect_to() is now const. + * + * Revision 1.1.1.1 2001/05/15 13:58:54 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ +#include "project.h" + #ifdef __cplusplus extern "C" { #endif -extern int connect_to(char *host, int portnum, struct client_state *csp); -extern int write_socket(int fd, const char *buf, int n); -extern int read_socket(int fd, char *buf, int n); -extern void close_socket(int fd); +struct client_state; + +extern jb_socket connect_to(const char *host, int portnum, struct client_state *csp); +extern int write_socket(jb_socket fd, const char *buf, size_t n); +extern int read_socket(jb_socket fd, char *buf, int n); +extern void close_socket(jb_socket fd); -extern int bind_port(const char *hostnam, int portnum); -extern int accept_connection(struct client_state * csp, int fd); +extern int bind_port(const char *hostnam, int portnum, jb_socket *pfd); +extern int accept_connection(struct client_state * csp, jb_socket fd); -extern int resolve_hostname_to_ip(const char *host); +extern unsigned long resolve_hostname_to_ip(const char *host); /* Revision control strings from this header and associated .c file */ extern const char jbsockets_rcs[]; @@ -63,7 +114,7 @@ extern const char jbsockets_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _JBSOCKETS_H */ +#endif /* ndef JBSOCKETS_H_INCLUDED */ /* Local Variables: diff --git a/jcc.c b/jcc.c index e6d06bd7..62694b0c 100644 --- a/jcc.c +++ b/jcc.c @@ -1,19 +1,19 @@ -const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char jcc_rcs[] = "$Id: jcc.c,v 1.91 2002/04/08 20:35:58 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/jcc.c,v $ + * File : $Source: /cvsroot/ijbswa/current/jcc.c,v $ * - * Purpose : Main file. Contains main() method, main loop, and + * Purpose : Main file. Contains main() method, main loop, and * the main connection-handling function. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -33,6 +33,492 @@ const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $ * * Revisions : * $Log: jcc.c,v $ + * Revision 1.91 2002/04/08 20:35:58 swa + * fixed JB spelling + * + * Revision 1.90 2002/04/02 14:57:28 oes + * Made sending wafers independent of FEATURE_COOKIE_JAR + * + * Revision 1.89 2002/03/31 17:18:59 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.88 2002/03/27 14:32:43 david__schmidt + * More compiler warning message maintenance + * + * Revision 1.87 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.86 2002/03/25 17:04:55 david__schmidt + * Workaround for closing the jarfile before load_config() comes around again + * + * Revision 1.85 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.84 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.83 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.82 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.81 2002/03/12 01:42:50 oes + * Introduced modular filters + * + * Revision 1.80 2002/03/11 22:07:05 david__schmidt + * OS/2 port maintenance: + * - Fixed EMX build - it had decayed a little + * - Fixed inexplicable crash during FD_ZERO - must be due to a bad macro. + * substituted a memset for now. + * + * Revision 1.79 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.78 2002/03/08 21:35:04 oes + * Added optional group supplement to --user option. Will now use default group of user if no group given + * + * Revision 1.77 2002/03/07 03:52:06 oes + * - Fixed compiler warnings etc + * - Improved handling of failed DNS lookups + * + * Revision 1.76 2002/03/06 22:54:35 jongfoster + * Automated function-comment nitpicking. + * + * Revision 1.75 2002/03/06 10:02:19 oes + * Fixed stupid bug when --user was not given + * + * Revision 1.74 2002/03/06 00:49:31 jongfoster + * Fixing warning on Windows + * Making #ifdefs that refer to the same variable consistently + * use #ifdef unix rather than mixing #ifdef unix & #ifndef OS2 + * + * Revision 1.73 2002/03/05 23:57:30 hal9 + * Stray character 's' on line 1618 was breaking build. + * + * Revision 1.72 2002/03/05 21:33:45 david__schmidt + * - Re-enable OS/2 building after new parms were added + * - Fix false out of memory report when resolving CGI templates when no IP + * address is available of failed attempt (a la no such domain) + * + * Revision 1.71 2002/03/05 18:13:56 oes + * Added --user option + * + * Revision 1.70 2002/03/05 04:52:42 oes + * Deleted non-errlog debugging code + * + * Revision 1.69 2002/03/04 23:50:00 jongfoster + * Splitting off bind_port() call into bind_port_helper(), with + * improved logging. + * + * Revision 1.68 2002/03/04 20:17:32 oes + * Fixed usage info + * + * Revision 1.67 2002/03/04 18:18:57 oes + * - Removed _DEBUG mode + * - Cleand up cmdline parsing + * - Introduced --no-daemon, --pidfile options + * - Cleaned up signal handling: + * - Terminate cleanly on INT, TERM and ABRT + * - Schedule logfile for re-opening on HUP + * - Ignore CHLD and PIPE + * - Leave the rest with their default handlers + * - Uniform handler registration + * - Added usage() function + * - Played styleguide police + * + * Revision 1.66 2002/03/03 15:06:55 oes + * Re-enabled automatic config reloading + * + * Revision 1.65 2002/03/03 14:49:11 oes + * Fixed CLF logging: Now uses client's original HTTP request + * + * Revision 1.64 2002/03/03 09:18:03 joergs + * Made jumbjuster work on AmigaOS again. + * + * Revision 1.63 2002/03/02 04:14:50 david__schmidt + * Clean up a little CRLF unpleasantness that suddenly appeared + * + * Revision 1.62 2002/02/20 23:17:23 jongfoster + * Detecting some out-of memory conditions and exiting with a log message. + * + * Revision 1.61 2002/01/17 21:01:52 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Revision 1.60 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.59 2001/12/13 14:07:18 oes + * Fixed Bug: 503 error page now sent OK + * + * Revision 1.58 2001/11/30 23:37:24 jongfoster + * Renaming the Win32 config file to config.txt - this is almost the + * same as the corresponding UNIX name "config" + * + * Revision 1.57 2001/11/16 00:47:43 jongfoster + * Changing the tty-disconnection code to use setsid(). + * + * Revision 1.56 2001/11/13 20:20:54 jongfoster + * Tabs->spaces, fixing a bug with missing {} around an if() + * + * Revision 1.55 2001/11/13 20:14:53 jongfoster + * Patch for FreeBSD setpgrp() as suggested by Alexander Lazic + * + * Revision 1.54 2001/11/07 00:03:14 steudten + * Give reliable return value if an error + * occurs not just 0 with new daemon mode. + * + * Revision 1.53 2001/11/05 21:41:43 steudten + * Add changes to be a real daemon just for unix os. + * (change cwd to /, detach from controlling tty, set + * process group and session leader to the own process. + * Add DBG() Macro. + * Add some fatal-error log message for failed malloc(). + * Add '-d' if compiled with 'configure --with-debug' to + * enable debug output. + * + * Revision 1.52 2001/10/26 20:11:20 jongfoster + * Fixing type mismatch + * + * Revision 1.51 2001/10/26 17:38:28 oes + * Cosmetics + * + * Revision 1.50 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.49 2001/10/23 21:41:35 jongfoster + * Added call to initialize the (statically-allocated of course) + * "out of memory" CGI response. + * + * Revision 1.48 2001/10/10 19:56:46 jongfoster + * Moving some code that wasn't cookie-related out of an #ifdef + * FEATURE_COOKIE_JAR + * + * Revision 1.47 2001/10/10 16:44:36 oes + * Added CONNECT destination port limitation check + * + * Revision 1.46 2001/10/08 15:17:41 oes + * Re-enabled SSL forwarding + * + * Revision 1.45 2001/10/07 15:42:11 oes + * Replaced 6 boolean members of csp with one bitmap (csp->flags) + * + * Moved downgrading of the HTTP version from parse_http_request to + * chat(), since we can't decide if it is necessary before we have + * determined the actions for the URL. The HTTP command is now + * *always* re-built so the repairs need no longer be special-cased. + * + * filter_popups now gets a csp pointer so it can raise the new + * CSP_FLAG_MODIFIED flag. + * + * Bugfix + * + * Added configurable size limit for the IOB. If the IOB grows so + * large that the next read would exceed the limit, the header + * is generated, and the header & unfiltered buffer are flushed + * to the client. Chat then continues in non-buffering, + * non-filtering body mode. + * + * Revision 1.44 2001/10/02 18:13:57 oes + * Ooops + * + * Revision 1.43 2001/10/02 15:32:13 oes + * Moved generation of hdr + * + * Revision 1.42 2001/09/21 23:02:02 david__schmidt + * Cleaning up 2 compiler warnings on OS/2. + * + * Revision 1.41 2001/09/16 17:05:14 jongfoster + * Removing unused #include showarg.h + * + * Revision 1.40 2001/09/16 15:41:45 jongfoster + * Fixing signed/unsigned comparison warning. + * + * Revision 1.39 2001/09/16 13:21:27 jongfoster + * Changes to use new list functions. + * + * Revision 1.38 2001/09/16 13:01:46 jongfoster + * Removing redundant function call that zeroed zalloc()'d memory. + * + * Revision 1.37 2001/09/10 11:12:24 oes + * Deleted unused variable + * + * Revision 1.36 2001/09/10 10:56:15 oes + * Silenced compiler warnings + * + * Revision 1.35 2001/07/31 14:44:22 oes + * Deleted unused size parameter from filter_popups() + * + * Revision 1.34 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.33 2001/07/29 19:32:00 jongfoster + * Renaming _main() [mingw32 only] to real_main(), for ANSI compliance. + * + * Revision 1.32 2001/07/29 18:47:05 jongfoster + * Adding missing #include "loadcfg.h" + * + * Revision 1.31 2001/07/29 12:17:48 oes + * Applied pthread fix by Paul Lieverse + * + * Revision 1.30 2001/07/25 22:57:13 jongfoster + * __BEOS__ no longer overrides FEATURE_PTHREAD. + * This is because FEATURE_PTHREAD will soon be widely used, so I + * want to keep it simple. + * + * Revision 1.29 2001/07/24 12:47:06 oes + * Applied BeOS support update by Eugenia + * + * Revision 1.28 2001/07/23 13:26:12 oes + * Fixed bug in popup-killing for the first read that caused binary garbage to be sent between headers and body + * + * Revision 1.27 2001/07/19 19:09:47 haroon + * - Added code to take care of the situation where while processing the first + * server response (which includes the server header), after finding the end + * of the headers we were not looking past the end of the headers for + * content modification. I enabled it for filter_popups. + * Someone else should look to see if other similar operations should be + * done to the discarded portion of the buffer. + * + * Note 2001/07/20: No, the other content modification mechanisms will process + * the whole iob later anyway. --oes + * + * Revision 1.26 2001/07/18 12:31:36 oes + * cosmetics + * + * Revision 1.25 2001/07/15 19:43:49 jongfoster + * Supports POSIX threads. + * Also removed some unused #includes. + * + * Revision 1.24 2001/07/13 14:00:40 oes + * - Generic content modification scheme: + * Each feature has its own applicability flag that is set + * from csp->action->flags. + * Replaced the "filtering" int flag , by a function pointer + * "content_filter" to the function that will do the content + * modification. If it is != NULL, the document will be buffered + * and processed through *content_filter, which must set + * csp->content_length and return a modified copy of the body + * or return NULL (on failiure). + * - Changed csp->is_text to the more generic bitmap csp->content_type + * which can currently take the valued CT_TEXT or CT_GIF + * - Reformatting etc + * - Removed all #ifdef PCRS + * + * Revision 1.23 2001/07/02 02:28:25 iwanttokeepanon + * Added "#ifdef ACL_FILES" conditional compilation to line 1291 to exclude + * the `block_acl' call. This prevents a compilation error when the user + * does not wish to use the "ACL" feature. + * + * Revision 1.22 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.21 2001/06/29 13:29:36 oes + * - Cleaned up, improved comments + * - Unified all possible interceptors (CGI, + * block, trust, fast_redirect) in one + * place, with one (CGI) answer generation + * mechansim. Much clearer now. + * - Removed the GIF image generation, which + * is now done in filters.c:block_url() + * - Made error conditions like domain lookup + * failiure or (various) problems while talking + * to the server use cgi.c:error_response() + * instead of generating HTML/HTTP in chat() (yuck!) + * - Removed logentry from cancelled commit + * + * Revision 1.20 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.19 2001/06/07 23:12:52 jongfoster + * Replacing function pointer in struct gateway with a directly + * called function forwarded_connect(). + * Replacing struct gateway with struct forward_spec + * + * Revision 1.18 2001/06/03 19:12:16 oes + * introduced new cgi handling + * + * Revision 1.17 2001/06/01 20:07:23 jongfoster + * Now uses action +image-blocker{} rather than config->tinygif + * + * Revision 1.16 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.15 2001/05/31 21:24:47 jongfoster + * Changed "permission" to "action" throughout. + * Removed DEFAULT_USER_AGENT - it must now be specified manually. + * Moved vanilla wafer check into chat(), since we must now + * decide whether or not to add it based on the URL. + * + * Revision 1.14 2001/05/29 20:14:01 joergs + * AmigaOS bugfix: PCRS needs a lot of stack, stacksize for child threads + * increased. + * + * Revision 1.13 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.12 2001/05/27 22:17:04 oes + * + * - re_process_buffer no longer writes the modified buffer + * to the client, which was very ugly. It now returns the + * buffer, which it is then written by chat. + * + * - content_length now adjusts the Content-Length: header + * for modified documents rather than crunch()ing it. + * (Length info in csp->content_length, which is 0 for + * unmodified documents) + * + * - For this to work, sed() is called twice when filtering. + * + * Revision 1.11 2001/05/26 17:27:53 jongfoster + * Added support for CLF and fixed LOG_LEVEL_LOG. + * Also did CRLF->LF fix of my previous patch. + * + * Revision 1.10 2001/05/26 15:26:15 jongfoster + * ACL feature now provides more security by immediately dropping + * connections from untrusted hosts. + * + * Revision 1.9 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.8 2001/05/25 22:43:18 jongfoster + * Fixing minor memory leak and buffer overflow. + * + * Revision 1.7 2001/05/25 22:34:30 jongfoster + * Hard tabs->Spaces + * + * Revision 1.6 2001/05/23 00:13:58 joergs + * AmigaOS support fixed. + * + * Revision 1.5 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.4 2001/05/21 19:34:01 jongfoster + * Made failure to bind() a fatal error. + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 22:34:44 oes + * - Added hint on GIF char array generation to jcc.c + * - Cleaned CRLF's from the sources and related files + * - Repaired logging for REF and FRC + * + * Revision 1.1.1.1 2001/05/15 13:58:56 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -47,15 +533,18 @@ const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $ #include #include -#ifdef _WIN32 +#ifdef FEATURE_PTHREAD +#include +#endif /* def FEATURE_PTHREAD */ -# include -# include -# include -# include -# ifdef TOGGLE -# include -# endif /* def TOGGLE */ +#ifdef _WIN32 +# ifndef FEATURE_PTHREAD +# ifndef STRICT +# define STRICT +# endif +# include +# include +# endif /* ndef FEATURE_PTHREAD */ # include "win32.h" # ifndef _WIN_CONSOLE @@ -64,10 +553,23 @@ const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $ #else /* ifndef _WIN32 */ +# if !defined (__OS2__) # include -# include # include +# endif /* ndef __OS2__ */ +# include # include +# include + +#ifdef sun +#include +#endif /* sun */ + +#ifdef unix +#include +#include +#endif + # include # ifdef __BEOS__ @@ -75,6 +577,15 @@ const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $ # include /* declarations for threads and stuff. */ # endif +# if defined(__EMX__) || defined(__OS2__) +# include /* OS/2/EMX needs a little help with select */ +# endif +# ifdef __OS2__ +#define INCL_DOS +# include +#define bzero(B,N) memset(B,0x00,n) +# endif + # ifndef FD_ZERO # include # endif @@ -82,120 +593,120 @@ const char jcc_rcs[] = "$Id: jcc.c,v 1.1 2001/05/13 21:57:06 administrator Exp $ #endif #include "project.h" +#include "list.h" #include "jcc.h" #include "filters.h" #include "loaders.h" -#include "showargs.h" #include "parsers.h" #include "killpopup.h" #include "miscutil.h" #include "errlog.h" #include "jbsockets.h" #include "gateway.h" +#include "actions.h" +#include "cgi.h" +#include "loadcfg.h" +#include "urlmatch.h" const char jcc_h_rcs[] = JCC_H_VERSION; const char project_h_rcs[] = PROJECT_H_VERSION; -const char DEFAULT_USER_AGENT[] ="User-Agent: Mozilla (X11; I; Linux 2.0.32 i586)"; - +int no_daemon = 0; struct client_state clients[1]; struct file_list files[1]; -#ifdef STATISTICS +#ifdef FEATURE_STATISTICS int urls_read = 0; /* total nr of urls read inc rejected */ int urls_rejected = 0; /* total nr of urls rejected */ -#endif /* def STATISTICS */ +#endif /* def FEATURE_STATISTICS */ +#ifdef FEATURE_GRACEFUL_TERMINATION +int g_terminate = 0; +#endif static void listen_loop(void); static void chat(struct client_state *csp); +#ifdef AMIGA +void serve(struct client_state *csp); +#else /* ifndef AMIGA */ static void serve(struct client_state *csp); +#endif /* def AMIGA */ + #ifdef __BEOS__ static int32 server_thread(void *data); #endif /* def __BEOS__ */ - -#define BODY "\n" - -static const char CFAIL[] = - "HTTP/1.0 503 Connect failed\n" - "Content-Type: text/html\n\n" - "\n" - "\n" - "Internet Junkbuster: Connect failed\n" - "\n" - BODY - "

    " - BANNER - "

    " - "TCP connection to '%s' failed: %s.\n
    " - "\n" - "\n"; - -static const char CNXDOM[] = - "HTTP/1.0 404 Non-existent domain\n" - "Content-Type: text/html\n\n" - "\n" - "\n" - "Internet Junkbuster: Non-existent domain\n" - "\n" - BODY - "

    " - BANNER - "

    " - "No such domain: %s\n" - "\n" - "\n"; - -static const char CSUCCEED[] = - "HTTP/1.0 200 Connection established\n" - "Proxy-Agent: IJ/" VERSION "\n\n"; - -static const char CHEADER[] = - "HTTP/1.0 400 Invalid header received from browser\n\n"; - -static const char SHEADER[] = - "HTTP/1.0 502 Invalid header received from server\n\n"; - -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) -static const char BLANKGIF[] = - "HTTP/1.0 200 OK\r\n" - "Pragma: no-cache\r\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Content-type: image/gif\r\n\r\n" - "GIF89a\001\000\001\000\200\000\000\377\377\377\000\000" - "\000!\371\004\001\000\000\000\000,\000\000\000\000\001" - "\000\001\000\000\002\002D\001\000;"; - -static const char JBGIF[] = - "HTTP/1.0 200 OK\r\n" - "Pragma: no-cache\r\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Content-type: image/gif\r\n\r\n" - "GIF89aD\000\013\000\360\000\000\000\000\000\377\377\377!" - "\371\004\001\000\000\001\000,\000\000\000\000D\000\013\000" - "\000\002a\214\217\251\313\355\277\000\200G&K\025\316hC\037" - "\200\234\230Y\2309\235S\230\266\206\372J\253<\3131\253\271" - "\270\215\342\254\013\203\371\202\264\334P\207\332\020o\266" - "N\215I\332=\211\312\3513\266:\026AK)\364\370\365aobr\305" - "\372\003S\275\274k2\354\254z\347?\335\274x\306^9\374\276" - "\037Q\000\000;"; - -static const char FWGIF[] = - "HTTP/1.0 302 Blocked Advert\r\n" - "Pragma: no-cache\r\n" - "Last-Modified: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Expires: Thu Jul 31, 1997 07:42:22 pm GMT\r\n" - "Location: "; - -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ - #ifdef _WIN32 #define sleep(N) Sleep(((N) * 1000)) #endif +#ifdef __OS2__ +#define sleep(N) DosSleep(((N) * 100)) +#endif + +#if defined(unix) || defined(__EMX__) +const char *basedir; +const char *pidfile = NULL; +int received_hup_signal = 0; +#endif /* defined unix */ + +/* The vanilla wafer. */ +static const char VANILLA_WAFER[] = + "NOTICE=TO_WHOM_IT_MAY_CONCERN_" + "Do_not_send_me_any_copyrighted_information_other_than_the_" + "document_that_I_am_requesting_or_any_of_its_necessary_components._" + "In_particular_do_not_send_me_any_cookies_that_" + "are_subject_to_a_claim_of_copyright_by_anybody._" + "Take_notice_that_I_refuse_to_be_bound_by_any_license_condition_" + "(copyright_or_otherwise)_applying_to_any_cookie._"; + + +#if !defined(_WIN32) && !defined(__OS2__) && !defined(AMIGA) +/********************************************************************* + * + * Function : sig_handler + * + * Description : Signal handler for different signals. + * Exit gracefully on ABRT, TERM and INT + * or set a flag that will cause the errlog + * to be reopened by the main thread on HUP. + * + * Parameters : + * 1 : the_signal = the signal cause this function to call + * + * Returns : - + * + *********************************************************************/ +static void sig_handler(int the_signal) +{ + switch(the_signal) + { + case SIGABRT: + case SIGTERM: + case SIGINT: + log_error(LOG_LEVEL_INFO, "exiting by signal %d .. bye", the_signal); +#if defined(unix) + unlink(pidfile); +#endif /* unix */ + exit(the_signal); + break; + + case SIGHUP: + received_hup_signal = 1; + break; + + default: + /* + * We shouldn't be here, unless we catch signals + * in main() that we can't handle here! + */ + log_error(LOG_LEVEL_FATAL, "sig_handler: exiting on unexpected signal %d", the_signal); + } + return; + +} +#endif + /********************************************************************* * @@ -203,7 +714,7 @@ static const char FWGIF[] = * * Description : Once a connection to the client has been accepted, * this function is called (via serve()) to handle the - * main business of the communication. When this + * main business of the communication. When this * function returns, the caller must close the client * socket handle. * @@ -220,17 +731,51 @@ static const char FWGIF[] = *********************************************************************/ static void chat(struct client_state *csp) { - char buf[BUFSIZ], *hdr, *p, *req; - char *err = NULL; - char *eno; +/* + * This next lines are a little ugly, but they simplifies the if statements + * below. Basically if TOGGLE, then we want the if to test if the + * CSP_FLAG_TOGGLED_ON flag ist set, else we don't. And if FEATURE_FORCE_LOAD, + * then we want the if to test for CSP_FLAG_FORCED , else we don't + */ +#ifdef FEATURE_TOGGLE +# define IS_TOGGLED_ON_AND (csp->flags & CSP_FLAG_TOGGLED_ON) && +#else /* ifndef FEATURE_TOGGLE */ +# define IS_TOGGLED_ON_AND +#endif /* ndef FEATURE_TOGGLE */ +#ifdef FEATURE_FORCE_LOAD +# define IS_NOT_FORCED_AND !(csp->flags & CSP_FLAG_FORCED) && +#else /* ifndef FEATURE_FORCE_LOAD */ +# define IS_NOT_FORCED_AND +#endif /* def FEATURE_FORCE_LOAD */ + +#define IS_ENABLED_AND IS_TOGGLED_ON_AND IS_NOT_FORCED_AND + + char buf[BUFFER_SIZE]; + char *hdr; + char *p; + char *req; fd_set rfds; - int n, maxfd, server_body, ms_iis5_hack = 0; - struct cookie_spec *cs; - const struct gateway *gw; + int n; + jb_socket maxfd; + int server_body; + int ms_iis5_hack = 0; + int byte_count = 0; + const struct forward_spec * fwd; struct http_request *http; -#ifdef PCRS - int filtering = 0; -#endif /* def PCRS */ + int len; /* for buffer sizes */ +#ifdef FEATURE_KILL_POPUPS + int block_popups; /* bool, 1==will block popups */ + int block_popups_now = 0; /* bool, 1==currently blocking popups */ +#endif /* def FEATURE_KILL_POPUPS */ + + int pcrs_filter; /* bool, 1==will filter through pcrs */ + int gif_deanimate; /* bool, 1==will deanimate gifs */ + + /* Function that does the content filtering for the current request */ + char *(*content_filter)() = NULL; + + /* Skeleton for HTTP response, if we should intercept the request */ + struct http_response *rsp; http = csp->http; @@ -239,43 +784,47 @@ static void chat(struct client_state *csp) * could get blocked here if a client connected, then didn't say anything! */ - while (FOREVER) + for (;;) { - n = read_socket(csp->cfd, buf, sizeof(buf)); + len = read_socket(csp->cfd, buf, sizeof(buf)); - if (n <= 0) break; /* error! */ - - add_to_iob(csp, buf, n); + if (len <= 0) break; /* error! */ + + /* + * If there is no memory left for buffering the + * request, there is nothing we can do but hang up + */ + if (add_to_iob(csp, buf, len)) + { + return; + } req = get_header(csp); - if (req == NULL) - { - break; /* no HTTP request! */ + if (req == NULL) + { + break; /* no HTTP request! */ } - if (*req == '\0') - { - continue; /* more to come! */ + if (*req == '\0') + { + continue; /* more to come! */ } - -#ifdef FORCE_LOAD + +#ifdef FEATURE_FORCE_LOAD /* If this request contains the FORCE_PREFIX, - * better get rid of it now and set the force flag --oes + * better get rid of it now and set the force flag --oes */ - if(strstr(req, FORCE_PREFIX)) - { - strclean(req, FORCE_PREFIX); - /* if DEBUG(FRC) fprintf(logfp, "%s: Enforcing request \"%s\".\n", prog, req); */ - csp->force = 1; - } - else + if (strstr(req, FORCE_PREFIX)) { - csp->force = 0; - } -#endif /* def FORCE_LOAD */ - + strclean(req, FORCE_PREFIX); + log_error(LOG_LEVEL_FORCE, "Enforcing request \"%s\".\n", req); + csp->flags |= CSP_FLAG_FORCED; + } + +#endif /* def FEATURE_FORCE_LOAD */ + parse_http_request(req, http, csp); freez(req); break; @@ -285,102 +834,193 @@ static void chat(struct client_state *csp) { strcpy(buf, CHEADER); write_socket(csp->cfd, buf, strlen(buf)); + + log_error(LOG_LEVEL_CLF, "%s - - [%T] \" \" 400 0", csp->ip_addr_str); + return; } /* decide how to route the HTTP request */ - if ((gw = forward_url(http, csp)) == NULL) + if ((fwd = forward_url(http, csp)) == NULL) { - log_error(LOG_LEVEL_ERROR, "gateway spec is NULL!?!? This can't happen!"); - abort(); + log_error(LOG_LEVEL_FATAL, "gateway spec is NULL!?!? This can't happen!"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ } /* build the http request to send to the server * we have to do one of the following: * * create = use the original HTTP request to create a new - * HTTP request that has only the path component - * without the http://domainspec - * pass = pass the original HTTP request unchanged + * HTTP request that has either the path component + * without the http://domainspec (w/path) or the + * full orininal URL (w/url) + * Note that the path and/or the HTTP version may + * have been altered by now. * - * drop = drop the HTTP request + * connect = Open a socket to the host:port of the server + * and short-circuit server and client socket. + * + * pass = Pass the request unchanged if forwarding a CONNECT + * request to a parent proxy. Note that we'll be sending + * the CFAIL message ourselves if connecting to the parent + * fails, but we won't send a CSUCCEED message if it works, + * since that would result in a double message (ours and the + * parent's). After sending the request to the parent, we simply + * tunnel. * * here's the matrix: * SSL * 0 1 * +--------+--------+ * | | | - * 0 | create | drop | - * | | | + * 0 | create | connect| + * | w/path | | * Forwarding +--------+--------+ * | | | - * 1 | pass | pass | - * | | | + * 1 | create | pass | + * | w/url | | * +--------+--------+ * */ - if (gw->forward_host) + /* + * Determine the actions for this URL + */ +#ifdef FEATURE_TOGGLE + if (!(csp->flags & CSP_FLAG_TOGGLED_ON)) { - /* if forwarding, just pass the request as is */ - enlist(csp->headers, http->cmd); + /* Most compatible set of actions (i.e. none) */ + init_current_action(csp->action); } else +#endif /* ndef FEATURE_TOGGLE */ { - if (http->ssl == 0) + url_actions(http, csp); + } + + + /* + * Check if a CONNECT request is allowable: + * In the absence of a +limit-connect action, allow only port 443. + * If there is an action, allow whatever matches the specificaton. + */ + if(http->ssl) + { + if( ( !(csp->action->flags & ACTION_LIMIT_CONNECT) && csp->http->port != 443) + || (csp->action->flags & ACTION_LIMIT_CONNECT + && !match_portlist(csp->action->string[ACTION_STRING_LIMIT_CONNECT], csp->http->port)) ) { - /* otherwise elide the host information from the url */ - p = NULL; - p = strsav(p, http->gpc); - p = strsav(p, " "); - p = strsav(p, http->path); - p = strsav(p, " "); - p = strsav(p, http->ver); - enlist(csp->headers, p); - freez(p); + strcpy(buf, CFORBIDDEN); + write_socket(csp->cfd, buf, strlen(buf)); + + log_error(LOG_LEVEL_CONNECT, "Denying suspicious CONNECT request from %s", csp->ip_addr_str); + log_error(LOG_LEVEL_CLF, "%s - - [%T] \" \" 403 0", csp->ip_addr_str); + + return; } } - /* decide what we're to do with cookies */ -#if defined(TOGGLE) /* - * by haroon - most of credit to srt19170 - * if toggled_on flag is false IJB is disabled, pass cookies thru + * Downgrade http version from 1.1 to 1.0 if +downgrade + * action applies */ - if (!csp->toggled_on) + if ( (http->ssl == 0) + && (!strcmpic(http->ver, "HTTP/1.1")) + && (csp->action->flags & ACTION_DOWNGRADE)) { - csp->accept_server_cookie = 1; - csp->send_user_cookie = 1; + freez(http->ver); + http->ver = strdup("HTTP/1.0"); + + if (http->ver == NULL) + { + log_error(LOG_LEVEL_FATAL, "Out of memory downgrading HTTP version"); + } } - else -#endif - if ((cs = cookie_url(http, csp))) + /* + * Save a copy of the original request for logging + */ + http->ocmd = strdup(http->cmd); + + if (http->ocmd == NULL) { - csp->accept_server_cookie = cs->accept_server_cookie; - csp->send_user_cookie = cs->send_user_cookie; + log_error(LOG_LEVEL_FATAL, "Out of memory copying HTTP request line"); } - else + + /* + * (Re)build the HTTP request for non-SSL requests. + * If forwarding, use the whole URL, else, use only the path. + */ + if (http->ssl == 0) + { + freez(http->cmd); + + http->cmd = strdup(http->gpc); + string_append(&http->cmd, " "); + + if (fwd->forward_host) + { + string_append(&http->cmd, http->url); + } + else + { + string_append(&http->cmd, http->path); + } + + string_append(&http->cmd, " "); + string_append(&http->cmd, http->ver); + + if (http->cmd == NULL) + { + log_error(LOG_LEVEL_FATAL, "Out of memory rewiting SSL command"); + } + } + enlist(csp->headers, http->cmd); + + + /* + * If the user has not supplied any wafers, and the user has not + * told us to suppress the vanilla wafer, then send the vanilla wafer. + */ + if (list_is_empty(csp->action->multi[ACTION_MULTI_WAFER]) + && ((csp->action->flags & ACTION_VANILLA_WAFER) != 0)) { - csp->accept_server_cookie = 0; - csp->send_user_cookie = 0; + enlist(csp->action->multi[ACTION_MULTI_WAFER], VANILLA_WAFER); } + +#ifdef FEATURE_KILL_POPUPS + block_popups = ((csp->action->flags & ACTION_NO_POPUPS) != 0); +#endif /* def FEATURE_KILL_POPUPS */ + + pcrs_filter = (csp->rlist != NULL) && /* There are expressions to be used */ + (!list_is_empty(csp->action->multi[ACTION_MULTI_FILTER])); + + gif_deanimate = ((csp->action->flags & ACTION_DEANIMATE) != 0); + /* grab the rest of the client's headers */ - while (FOREVER) + for (;;) { - if ( ( p = get_header(csp) ) && ( *p == '\0' ) ) + if ( ( ( p = get_header(csp) ) != NULL) && ( *p == '\0' ) ) { - n = read_socket(csp->cfd, buf, sizeof(buf)); - if (n <= 0) + len = read_socket(csp->cfd, buf, sizeof(buf)); + if (len <= 0) { log_error(LOG_LEVEL_ERROR, "read from client failed: %E"); return; } - add_to_iob(csp, buf, n); + + /* + * If there is no memory left for buffering the + * request, there is nothing we can do but hang up + */ + if (add_to_iob(csp, buf, len)) + { + return; + } continue; } @@ -389,105 +1029,61 @@ static void chat(struct client_state *csp) enlist(csp->headers, p); freez(p); } - - /* filter it as required */ - - hdr = sed(client_patterns, add_client_headers, csp); - - destroy_list(csp->headers); - -#ifdef TOGGLE /* - * by haroon - most of credit to srt19170 - * if toggled_on flag is true then IJB is enabled, do the usual - * otherwise avoid crunching + * We have a request. Now, check to see if we need to + * intercept it, i.e. If .. */ -/* This next line is a little ugly, but it simplifies the if statement below. */ -/* Basically if TOGGLE, then we want the if to test "csp->toggled_on", else we don't */ -#define IS_TOGGLED_ON csp->toggled_on && - -#else /* ifndef TOGGLE */ - -/* We don't have TOGGLE, so we don't care about toggling. */ -#define IS_TOGGLED_ON - -#endif /* ndef TOGGLE */ + if ( + /* a CGI call was detected and answered */ + (NULL != (rsp = dispatch_cgi(csp))) + /* or we are enabled and... */ + || (IS_ENABLED_AND ( -#ifdef TRUST_FILES -/* This next line is a little ugly, but it simplifies the if statement below. */ -/* Basically if TRUST_FILES, then we want the if to call "trust_url", else we don't */ -#define IS_TRUSTED_URL (p = trust_url(http, csp)) || + /* ..the request was blocked */ + ( NULL != (rsp = block_url(csp))) -#else /* ifndef TRUST_FILES */ + /* ..or untrusted */ +#ifdef FEATURE_TRUST + || ( NULL != (rsp = trust_url(csp))) +#endif /* def FEATURE_TRUST */ -/* We don't have TRUST_FILES, so we don't care about trusted URL's. */ -#define IS_TRUSTED_URL - -#endif /* ndef TRUST_FILES */ - - - /* Check the request against all rules, unless - * we're disabled or in force mode. - */ - - if (IS_TOGGLED_ON -#ifdef FORCE_LOAD - (!csp->force) && -#endif /* def FORCE_LOAD */ - ( (p = intercept_url(http, csp)) || - IS_TRUSTED_URL - (p = block_url(http, csp)) )) + /* ..or a fast redirect kicked in */ +#ifdef FEATURE_FAST_REDIRECTS + || (((csp->action->flags & ACTION_FAST_REDIRECTS) != 0) && + (NULL != (rsp = redirect_url(csp)))) +#endif /* def FEATURE_FAST_REDIRECTS */ + )) + ) { -#ifdef STATISTICS - csp->rejected = 1; -#endif /* def STATISTICS */ - - log_error(LOG_LEVEL_GPC, "%s%s crunch!", http->hostport, http->path); - -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) - /* now use block_imageurl */ - if ( (tinygif > 0) && block_imageurl(http, csp) ) - { - /* Send "blocked" image */ - log_error(LOG_LEVEL_GPC, "%s%s image crunch!", - http->hostport, http->path); - - if (tinygif == 1) - { - write_socket(csp->cfd, BLANKGIF, sizeof(BLANKGIF)-1); - } - else if ((tinygif == 3) && (tinygifurl)) - { - write_socket(csp->cfd, FWGIF, sizeof(FWGIF)-1); - write_socket(csp->cfd, tinygifurl, strlen(tinygifurl)); - } - else - { - write_socket(csp->cfd, JBGIF, sizeof(JBGIF)-1); - } - } - else -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ + /* Write the answer to the client */ + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) { - /* Send HTML "blocked" message */ - write_socket(csp->cfd, p, strlen(p)); + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); } - log_error(LOG_LEVEL_LOG, "%s", p); +#ifdef FEATURE_STATISTICS + /* Count as a rejected request */ + csp->flags |= CSP_FLAG_REJECTED; +#endif /* def FEATURE_STATISTICS */ - freez(p); - freez(hdr); + /* Log (FIXME: All intercept reasons apprear as "crunch" with Status 200) */ + log_error(LOG_LEVEL_GPC, "%s%s crunch!", http->hostport, http->path); + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 200 3", csp->ip_addr_str, http->ocmd); + + /* Clean up and return */ + free_http_response(rsp); return; } log_error(LOG_LEVEL_GPC, "%s%s", http->hostport, http->path); - if (gw->forward_host) + if (fwd->forward_host) { log_error(LOG_LEVEL_CONNECT, "via %s:%d to: %s", - gw->forward_host, gw->forward_port, http->hostport); + fwd->forward_host, fwd->forward_port, http->hostport); } else { @@ -496,56 +1092,81 @@ static void chat(struct client_state *csp) /* here we connect to the server, gateway, or the forwarder */ - csp->sfd = (gw->conn)(gw, http, csp); + csp->sfd = forwarded_connect(fwd, http, csp); - if (csp->sfd < 0) + if (csp->sfd == JB_INVALID_SOCKET) { log_error(LOG_LEVEL_CONNECT, "connect to: %s failed: %E", http->hostport); if (errno == EINVAL) { - err = zalloc(strlen(CNXDOM) + strlen(http->host)); - sprintf(err, CNXDOM, http->host); + rsp = error_response(csp, "no-such-domain", errno); + + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 404 0", + csp->ip_addr_str, http->ocmd); } else { - eno = safe_strerror(errno); - err = zalloc(strlen(CFAIL) + strlen(http->hostport) + strlen(eno)); - sprintf(err, CFAIL, http->hostport, eno); + rsp = error_response(csp, "connect-failed", errno); + + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 503 0", + csp->ip_addr_str, http->ocmd); } - write_socket(csp->cfd, err, strlen(err)); - log_error(LOG_LEVEL_LOG, err); + /* Write the answer to the client */ + if(rsp) + { + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); + } + } - freez(err); - freez(hdr); + free_http_response(rsp); return; } log_error(LOG_LEVEL_CONNECT, "OK"); - if (gw->forward_host || (http->ssl == 0)) + hdr = sed(client_patterns, add_client_headers, csp); + if (hdr == NULL) + { + /* FIXME Should handle error properly */ + log_error(LOG_LEVEL_FATAL, "Out of memory parsing client header"); + } + + list_remove_all(csp->headers); + + if (fwd->forward_host || (http->ssl == 0)) { /* write the client's (modified) header to the server * (along with anything else that may be in the buffer) */ - n = strlen(hdr); - - if ((write_socket(csp->sfd, hdr, n) != n) - || (flush_socket(csp->sfd, csp ) < 0)) + if (write_socket(csp->sfd, hdr, strlen(hdr)) + || (flush_socket(csp->sfd, csp) < 0)) { log_error(LOG_LEVEL_CONNECT, "write header to: %s failed: %E", http->hostport); - eno = safe_strerror(errno); - err = zalloc(strlen(CFAIL) + strlen(http->hostport) + strlen(eno)); - sprintf(err, CFAIL, http->hostport, eno); - write_socket(csp->cfd, err, strlen(err)); + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 503 0", + csp->ip_addr_str, http->ocmd); + + rsp = error_response(csp, "connect-failed", errno); - freez(err); + if(rsp) + { + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); + } + } + + free_http_response(rsp); freez(hdr); return; } @@ -557,7 +1178,10 @@ static void chat(struct client_state *csp) * so just send the "connect succeeded" message to the * client, flush the rest, and get out of the way. */ - if (write_socket(csp->cfd, CSUCCEED, sizeof(CSUCCEED)-1) < 0) + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 200 2\n", + csp->ip_addr_str, http->ocmd); + + if (write_socket(csp->cfd, CSUCCEED, sizeof(CSUCCEED)-1)) { freez(hdr); return; @@ -576,14 +1200,21 @@ static void chat(struct client_state *csp) server_body = 0; - while (FOREVER) + for (;;) { +#ifdef __OS2__ + /* + * FD_ZERO here seems to point to an errant macro which crashes. + * So do this by hand for now... + */ + memset(&rfds,0x00,sizeof(fd_set)); +#else FD_ZERO(&rfds); - +#endif FD_SET(csp->cfd, &rfds); FD_SET(csp->sfd, &rfds); - n = select(maxfd+1, &rfds, NULL, NULL, NULL); + n = select((int)maxfd+1, &rfds, NULL, NULL, NULL); if (n < 0) { @@ -597,11 +1228,14 @@ static void chat(struct client_state *csp) if (FD_ISSET(csp->cfd, &rfds)) { - n = read_socket(csp->cfd, buf, sizeof(buf)); + len = read_socket(csp->cfd, buf, sizeof(buf)); - if (n <= 0) break; /* "game over, man" */ + if (len <= 0) + { + break; /* "game over, man" */ + } - if (write_socket(csp->sfd, buf, n) != n) + if (write_socket(csp->sfd, buf, (size_t)len)) { log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); return; @@ -612,40 +1246,49 @@ static void chat(struct client_state *csp) /* * The server wants to talk. It could be the header or the body. * If `hdr' is null, then it's the header otherwise it's the body. - * FIXME: Does `hdr' really mean `host'? + * FIXME: Does `hdr' really mean `host'? No. */ if (FD_ISSET(csp->sfd, &rfds)) { fflush( 0 ); - n = read_socket(csp->sfd, buf, sizeof(buf) - 1); + len = read_socket(csp->sfd, buf, sizeof(buf) - 1); - if (n < 0) + if (len < 0) { log_error(LOG_LEVEL_ERROR, "read from: %s failed: %E", http->host); - eno = safe_strerror(errno); - sprintf(buf, CFAIL, http->hostport, eno); - freez(eno); - write_socket(csp->cfd, buf, strlen(buf)); + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 503 0", + csp->ip_addr_str, http->ocmd); + + rsp = error_response(csp, "connect-failed", errno); + + if(rsp) + { + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); + } + } + + free_http_response(rsp); return; } /* Add a trailing zero. This lets filter_popups * use string operations. */ - buf[n] = '\0'; + buf[len] = '\0'; -#ifdef KILLPOPUPS +#ifdef FEATURE_KILL_POPUPS /* Filter the popups on this read. */ - if ( IS_TOGGLED_ON - ( kill_all_popups || - ( ( http->host != NULL ) && ( popupfile != NULL ) ) ) ) + if (block_popups_now) { - filter_popups(csp, http->host, buf, n); + filter_popups(buf, csp); } -#endif /* def KILLPOPUPS */ +#endif /* def FEATURE_KILL_POPUPS */ /* Normally, this would indicate that we've read * as much as the server has sent us and we can @@ -665,22 +1308,56 @@ static void chat(struct client_state *csp) * doesn't generate a valid header, then we won't * transmit anything to the client. */ - if (n == 0) + if (len == 0) { - /* This hack must only be enforced for headers. */ + if (server_body || http->ssl) { -#ifdef PCRS - if (filtering) + /* + * If we have been buffering up the document, + * now is the time to apply content modification + * and send the result to the client. + */ + if (content_filter) { - re_process_buffer(csp); + /* + * If the content filter fails, use the original + * buffer and length. + * (see p != NULL ? p : csp->iob->cur below) + */ + if (NULL == (p = (*content_filter)(csp))) + { + csp->content_length = csp->iob->eod - csp->iob->cur; + } + + hdr = sed(server_patterns, add_server_headers, csp); + if (hdr == NULL) + { + /* FIXME Should handle error properly */ + log_error(LOG_LEVEL_FATAL, "Out of memory parsing server header"); + } + + if (write_socket(csp->cfd, hdr, strlen(hdr)) + || write_socket(csp->cfd, p != NULL ? p : csp->iob->cur, csp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write modified content to client failed: %E"); + return; + } + + freez(hdr); + if (NULL != p) { + freez(p); + } } -#endif /* def PCRS */ + break; /* "game over, man" */ } - /* Let's pretend the server just sent us a blank line. */ - n = sprintf(buf, "\r\n"); + /* + * This is NOT the body, so + * Let's pretend the server just sent us a blank line. + */ + len = sprintf(buf, "\r\n"); /* * Now, let the normal header parsing algorithm below do its @@ -692,26 +1369,72 @@ static void chat(struct client_state *csp) /* * If this is an SSL connection or we're in the body - * of the server document, just write it to the client. + * of the server document, just write it to the client, + * unless we need to buffer the body for later content-filtering */ if (server_body || http->ssl) { -#ifdef PCRS - if (filtering) + if (content_filter) { - add_to_iob(csp, buf, n); /* Buffer the body for filtering */ + /* + * If there is no memory left for buffering the content, or the buffer limit + * has been reached, switch to non-filtering mode, i.e. make & write the + * header, flush the iob and buf, and get out of the way. + */ + if (add_to_iob(csp, buf, len)) + { + size_t hdrlen; + int flushed; + + log_error(LOG_LEVEL_ERROR, "Flushing header and buffers. Stepping back from filtering."); + + hdr = sed(server_patterns, add_server_headers, csp); + if (hdr == NULL) + { + /* + * Memory is too tight to even generate the header. + * Send our static "Out-of-memory" page. + */ + log_error(LOG_LEVEL_ERROR, "Out of memory while trying to flush."); + rsp = cgi_error_memory(); + + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); + } + return; + } + + hdrlen = strlen(hdr); + + if (write_socket(csp->cfd, hdr, hdrlen) + || ((flushed = flush_socket(csp->cfd, csp)) < 0) + || (write_socket(csp->cfd, buf, len))) + { + log_error(LOG_LEVEL_CONNECT, "Flush header and buffers to client failed: %E"); + + freez(hdr); + return; + } + + byte_count += hdrlen + flushed + len; + freez(hdr); + content_filter = NULL; + server_body = 1; + + } } else -#endif /* def PCRS */ { - /* just write */ - if (write_socket(csp->cfd, buf, n) != n) + if (write_socket(csp->cfd, buf, (size_t)len)) { log_error(LOG_LEVEL_ERROR, "write to client failed: %E"); return; } } + byte_count += len; continue; } else @@ -721,12 +1444,27 @@ static void chat(struct client_state *csp) * parsing an "out of body experience" ? */ - /* buffer up the data we just read */ - add_to_iob(csp, buf, n); + /* + * buffer up the data we just read. If that fails, + * there's little we can do but send our static + * out-of-memory page. + */ + if (add_to_iob(csp, buf, len)) + { + log_error(LOG_LEVEL_ERROR, "Out of memory while looking for end of server headers."); + rsp = cgi_error_memory(); + + if (write_socket(csp->cfd, rsp->head, rsp->head_length) + || write_socket(csp->cfd, rsp->body, rsp->content_length)) + { + log_error(LOG_LEVEL_ERROR, "write to: %s failed: %E", http->host); + } + return; + } /* get header lines from the iob */ - while ((p = get_header(csp))) + while ((p = get_header(csp)) != NULL) { if (*p == '\0') { @@ -771,47 +1509,71 @@ static void chat(struct client_state *csp) */ hdr = sed(server_patterns, add_server_headers, csp); - n = strlen(hdr); - - /* write the server's (modified) header to - * the client (along with anything else that - * may be in the buffer) - */ + if (hdr == NULL) + { + /* FIXME Should handle error properly */ + log_error(LOG_LEVEL_FATAL, "Out of memory parsing server header"); + } -#ifdef PCRS - /* Decide if we want to re_filter this. */ +#ifdef FEATURE_KILL_POPUPS + /* Start blocking popups if appropriate. */ - if (IS_TOGGLED_ON /* Only filter if toggle is "on" */ - csp->is_text && /* It's a text / * MIME-Type */ - re_filterfile && /* There are expressions to be used */ - !http->ssl && /* We talk plaintext */ - (re_filter_all || !csp->send_user_cookie)) /* Policy allows */ + if ((csp->content_type & CT_TEXT) && /* It's a text / * MIME-Type */ + !http->ssl && /* We talk plaintext */ + block_popups) /* Policy allows */ { - filtering = 1; + block_popups_now = 1; + /* + * Filter the part of the body that came in the same read + * as the last headers: + */ + filter_popups(csp->iob->cur, csp); } -/* This next line is a little ugly, but it simplifies the if statement below. */ -/* Basically if using PCRS, we want the OR condition to require "!filtering" */ -#define NOT_FILTERING_AND !filtering && +#endif /* def FEATURE_KILL_POPUPS */ -#else /* not def PCRS */ + /* Buffer and pcrs filter this if appropriate. */ -#define NOT_FILTERING_AND + if ((csp->content_type & CT_TEXT) && /* It's a text / * MIME-Type */ + !http->ssl && /* We talk plaintext */ + pcrs_filter) /* Policy allows */ + { + content_filter = pcrs_filter_response; + } + + /* Buffer and gif_deanimate this if appropriate. */ + + if ((csp->content_type & CT_GIF) && /* It's a image/gif MIME-Type */ + !http->ssl && /* We talk plaintext */ + gif_deanimate) /* Policy allows */ + { + content_filter = gif_deanimate_response; + } -#endif /* def PCRS */ + /* + * Only write if we're not buffering for content modification + */ + if (!content_filter) + { + /* write the server's (modified) header to + * the client (along with anything else that + * may be in the buffer) + */ + if (write_socket(csp->cfd, hdr, strlen(hdr)) + || ((len = flush_socket(csp->cfd, csp)) < 0)) + { + log_error(LOG_LEVEL_CONNECT, "write header to client failed: %E"); - if ((write_socket(csp->cfd, hdr, n) != n) - || (NOT_FILTERING_AND (flush_socket(csp->cfd, csp) < 0))) - { - log_error(LOG_LEVEL_CONNECT, "write header to client failed: %E"); + /* the write failed, so don't bother + * mentioning it to the client... + * it probably can't hear us anyway. + */ + freez(hdr); + return; + } - /* the write failed, so don't bother - * mentioning it to the client... - * it probably can't hear us anyway. - */ - freez(hdr); - return; + byte_count += len; } /* we're finished with the server's header */ @@ -835,7 +1597,8 @@ static void chat(struct client_state *csp) return; /* huh? we should never get here */ } - + log_error(LOG_LEVEL_CLF, "%s - - [%T] \"%s\" 200 %d", + csp->ip_addr_str, http->ocmd, byte_count); } @@ -852,23 +1615,26 @@ static void chat(struct client_state *csp) * Returns : N/A * *********************************************************************/ +#ifdef AMIGA +void serve(struct client_state *csp) +#else /* ifndef AMIGA */ static void serve(struct client_state *csp) +#endif /* def AMIGA */ { chat(csp); close_socket(csp->cfd); - if (csp->sfd >= 0) + if (csp->sfd != JB_INVALID_SOCKET) { close_socket(csp->sfd); } - csp->active = 0; + csp->flags &= ~CSP_FLAG_ACTIVE; } #ifdef __BEOS__ - /********************************************************************* * * Function : server_thread @@ -887,10 +1653,31 @@ static int32 server_thread(void *data) return 0; } - #endif +/********************************************************************* + * + * Function : usage + * + * Description : Print usage info & exit. + * + * Parameters : Pointer to argv[0] for identifying ourselves + * + * Returns : No. ,-) + * + *********************************************************************/ +void usage(const char *myname) +{ + printf("Privoxy version " VERSION " (" HOME_PAGE_URL ")\n" + "Usage: %s [--help] [--version] [--no-daemon] [--pidfile pidfile] [--user user[.group]] [configfile]\n" + "Aborting.\n", myname); + + exit(2); + +} + + /********************************************************************* * * Function : main @@ -910,75 +1697,156 @@ static int32 server_thread(void *data) * any load fails, and can't bind port. * * Else main never returns, the process must be signaled - * to terminate execution. Or, on Windows, use the + * to terminate execution. Or, on Windows, use the * "File", "Exit" menu option. * *********************************************************************/ #ifdef __MINGW32__ -int _main(int argc, const char *argv[]) +int real_main(int argc, const char *argv[]) #else int main(int argc, const char *argv[]) #endif { + int argc_pos = 0; +#ifdef unix + struct passwd *pw = NULL; + struct group *grp = NULL; + char *p; +#endif + + Argc = argc; + Argv = argv; + configfile = -#ifndef _WIN32 +#if !defined(_WIN32) "config" #else - "junkbstr.txt" + "config.txt" #endif ; -#if !defined(_WIN32) || defined(_WIN_CONSOLE) - if ((argc >= 2) && (strcmp(argv[1], "--help")==0)) - { - printf("JunkBuster proxy version " VERSION ".\n\n" - "Usage: %s [configfile]\n\n" - "See " HOME_PAGE_URL " for details.\n" - "This program is distributed under the GNU GPL, version 2 or later.\n", - argv[0]); - exit(2); - } - if ((argc >= 2) && (strcmp(argv[1], "--version")==0)) + /* + * Parse the command line arguments + */ + while (++argc_pos < argc) { - printf(VERSION "\n"); - exit(2); - } -#endif /* !defined(_WIN32) || defined(_WIN_CONSOLE) */ +#if !defined(_WIN32) || defined(_WIN_CONSOLE) - Argc = argc; - Argv = argv; + if (strcmp(argv[argc_pos], "--help") == 0) + { + usage(argv[0]); + } + + else if(strcmp(argv[argc_pos], "--version") == 0) + { + printf("Privoxy version " VERSION " (" HOME_PAGE_URL ")\n"); + exit(0); + } + + else if (strcmp(argv[argc_pos], "--no-daemon" ) == 0) + { + no_daemon = 1; + } +#if defined(unix) + else if (strcmp(argv[argc_pos], "--pidfile" ) == 0) + { + if (++argc_pos == argc) usage(argv[0]); + pidfile = strdup(argv[argc_pos]); + } + + else if (strcmp(argv[argc_pos], "--user" ) == 0) + { + if (++argc_pos == argc) usage(argv[argc_pos]); + + if ((NULL != (p = strchr(argv[argc_pos], '.'))) && *(p + 1) != '0') + { + *p++ = '\0'; + if (NULL == (grp = getgrnam(p))) + { + log_error(LOG_LEVEL_FATAL, "Group %s not found.", p); + } + } + + if (NULL == (pw = getpwnam(argv[argc_pos]))) + { + log_error(LOG_LEVEL_FATAL, "User %s not found.", argv[argc_pos]); + } + + if (p != NULL) *--p = '\0'; + } +#endif /* defined(unix) */ + else +#endif /* defined(_WIN32) && !defined(_WIN_CONSOLE) */ + { + configfile = argv[argc_pos]; + } - if (argc > 1) + } /* -END- while (more arguments) */ + +#if defined(unix) + if ( *configfile != '/' ) { - configfile = argv[1]; + char *abs_file; + + /* make config-filename absolute here */ + if ( !(basedir = getcwd( NULL, 1024 ))) + { + perror("get working dir failed"); + exit( 1 ); + } + + if ( !(abs_file = malloc( strlen( basedir ) + strlen( configfile ) + 5 ))) + { + perror("malloc failed"); + exit( 1 ); + } + strcpy( abs_file, basedir ); + strcat( abs_file, "/" ); + strcat( abs_file, configfile ); + configfile = abs_file; } +#endif /* defined unix */ + - remove_all_loaders(); - memset( proxy_args, 0, sizeof( proxy_args ) ); files->next = NULL; - load_config( 0 ); +#ifdef AMIGA + InitAmiga(); +#elif defined(_WIN32) + InitWin32(); +#endif /* - * Since load_config acts as a signal handler too, it returns - * its status in configret. Check it for an error in loading. + * Unix signal handling + * + * Catch the abort, interrupt and terminate signals for a graceful exit + * Catch the hangup signal so the errlog can be reopened. + * Ignore the broken pipe and child signals + * FIXME: Isn't ignoring the default for SIGCHLD anyway and why ignore SIGPIPE? */ - if ( 0 != configret ) +#if !defined(_WIN32) && !defined(__OS2__) && !defined(AMIGA) +{ + int idx; + const int catched_signals[] = { SIGABRT, SIGTERM, SIGINT, SIGHUP, 0 }; + const int ignored_signals[] = { SIGPIPE, SIGCHLD, 0 }; + + for (idx = 0; catched_signals[idx] != 0; idx++) { - /* load config failed! Exit with error. */ - return( 1 ); + if (signal(catched_signals[idx], sig_handler) == SIG_ERR) + { + log_error(LOG_LEVEL_FATAL, "Can't set signal-handler for signal %d: %E", catched_signals[idx]); + } } -#ifdef _WIN32 - InitWin32(); -#endif - - -#ifndef _WIN32 - signal(SIGPIPE, SIG_IGN); - signal(SIGCHLD, SIG_IGN); - signal(SIGHUP, load_config); + for (idx = 0; ignored_signals[idx] != 0; idx++) + { + if (signal(ignored_signals[idx], SIG_IGN) == SIG_ERR) + { + log_error(LOG_LEVEL_FATAL, "Can't set ignore-handler for signal %d: %E", ignored_signals[idx]); + } + } +} #else /* ifdef _WIN32 */ # ifdef _WIN_CONSOLE /* @@ -990,6 +1858,96 @@ int main(int argc, const char *argv[]) #endif /* def _WIN32 */ + /* Initialize the CGI subsystem */ + cgi_init_error_messages(); + + /* + * If runnig on unix and without the --nodaemon + * option, become a daemon. I.e. fork, detach + * from tty and get process group leadership + */ +#if defined(unix) +{ + pid_t pid = 0; +#if 0 + int fd; +#endif + + if (!no_daemon) + { + pid = fork(); + + if ( pid < 0 ) /* error */ + { + perror("fork"); + exit( 3 ); + } + else if ( pid != 0 ) /* parent */ + { + int status; + pid_t wpid; + /* + * must check for errors + * child died due to missing files aso + */ + sleep( 1 ); + wpid = waitpid( pid, &status, WNOHANG ); + if ( wpid != 0 ) + { + exit( 1 ); + } + exit( 0 ); + } + /* child */ +#if 1 + /* Should be more portable, but not as well tested */ + setsid(); +#else /* !1 */ +#ifdef __FreeBSD__ + setpgrp(0,0); +#else /* ndef __FreeBSD__ */ + setpgrp(); +#endif /* ndef __FreeBSD__ */ + fd = open("/dev/tty", O_RDONLY); + if ( fd ) + { + /* no error check here */ + ioctl( fd, TIOCNOTTY,0 ); + close ( fd ); + } +#endif /* 1 */ + /* FIXME: should close stderr (fd 2) here too, but the test + * for existence + * and load config file is done in listen_loop() and puts + * some messages on stderr there. + */ + + close( 0 ); + close( 1 ); + chdir("/"); + + } /* -END- if (!no_daemon) */ + + /* + * As soon as we have written the PID file, we can switch + * to the user and group ID indicated by the --user option + */ + write_pid_file(); + + if (NULL != pw) + { + if (((NULL != grp) && setgid(grp->gr_gid)) || (setgid(pw->pw_gid))) + { + log_error(LOG_LEVEL_FATAL, "Cannot setgid(): Insufficient permissions."); + } + if (setuid(pw->pw_uid)) + { + log_error(LOG_LEVEL_FATAL, "Cannot setuid(): Insufficient permissions."); + } + } +} +#endif /* defined unix */ + listen_loop(); /* NOTREACHED */ @@ -998,6 +1956,78 @@ int main(int argc, const char *argv[]) } +/********************************************************************* + * + * Function : bind_port_helper + * + * Description : Bind the listen port. Handles logging, and aborts + * on failure. + * + * Parameters : + * 1 : config = Privoxy configuration. Specifies port + * to bind to. + * + * Returns : Port that was opened. + * + *********************************************************************/ +static jb_socket bind_port_helper(struct configuration_spec * config) +{ + int result; + jb_socket bfd; + + if ( (config->haddr != NULL) + && (config->haddr[0] == '1') + && (config->haddr[1] == '2') + && (config->haddr[2] == '7') + && (config->haddr[3] == '.') ) + { + log_error(LOG_LEVEL_INFO, "Listening on port %d for local connections only", + config->hport); + } + else if (config->haddr == NULL) + { + log_error(LOG_LEVEL_INFO, "Listening on port %d on all IP addresses", + config->hport); + } + else + { + log_error(LOG_LEVEL_INFO, "Listening on port %d on IP address %s", + config->hport, config->haddr); + } + + result = bind_port(config->haddr, config->hport, &bfd); + + if (result < 0) + { + switch(result) + { + case -3 : + log_error(LOG_LEVEL_FATAL, "can't bind to %s:%d: " + "There may be another Privoxy or some other " + "proxy running on port %d", + (NULL != config->haddr) ? config->haddr : "INADDR_ANY", + config->hport, config->hport); + + case -2 : + log_error(LOG_LEVEL_FATAL, "can't bind to %s:%d: " + "The hostname is not resolvable", + (NULL != config->haddr) ? config->haddr : "INADDR_ANY", config->hport); + + default : + log_error(LOG_LEVEL_FATAL, "can't bind to %s:%d: because %E", + (NULL != config->haddr) ? config->haddr : "INADDR_ANY", config->hport); + } + + /* shouldn't get here */ + return JB_INVALID_SOCKET; + } + + config->need_bind = 0; + + return bfd; +} + + /********************************************************************* * * Function : listen_loop @@ -1012,47 +2042,71 @@ int main(int argc, const char *argv[]) static void listen_loop(void) { struct client_state *csp = NULL; - int bfd; - - log_error(LOG_LEVEL_CONNECT, "bind (%s, %d)", - haddr ? haddr : "INADDR_ANY", hport); + jb_socket bfd; + struct configuration_spec * config; - bfd = bind_port(haddr, hport); - config_changed = 0; - - if (bfd < 0) - { - log_error(LOG_LEVEL_ERROR, "can't bind %s:%d: %E " - "- There may be another junkbuster or some other " - "proxy running on port %d", - (NULL != haddr) ? haddr : "INADDR_ANY", hport, hport - ); - return; - } + config = load_config(); + bfd = bind_port_helper(config); - while (FOREVER) +#ifdef FEATURE_GRACEFUL_TERMINATION + while (!g_terminate) +#else + for (;;) +#endif { -#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) +#if !defined(FEATURE_PTHREAD) && !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) && !defined(__OS2__) while (waitpid(-1, NULL, WNOHANG) > 0) { /* zombie children */ } -#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ +#endif /* !defined(FEATURE_PTHREAD) && !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ + + /* + * Free data that was used by died threads + */ sweep(); - if ( NULL == (csp = (struct client_state *) malloc(sizeof(*csp))) ) +#if defined(unix) + /* + * Re-open the errlog after HUP signal + */ + if (received_hup_signal) + { + init_error_log(Argv[0], config->logfile, config->debug); + received_hup_signal = 0; + } +#endif + +#ifdef __OS2__ +#ifdef FEATURE_COOKIE_JAR + /* + * Need a workaround here: we have to fclose() the jarfile, or we die because it's + * already open. I think unload_configfile() is not being run, which should do + * this work. Until that can get resolved, we'll use this workaround. + */ + if (csp) + if(csp->config) + if (csp->config->jar) + { + fclose(csp->config->jar); + csp->config->jar = NULL; + } +#endif /* FEATURE_COOKIE_JAR */ +#endif /* __OS2__ */ + + if ( NULL == (csp = (struct client_state *) zalloc(sizeof(*csp))) ) { - log_error(LOG_LEVEL_ERROR, "malloc(%d) for csp failed: %E", sizeof(*csp)); + log_error(LOG_LEVEL_FATAL, "malloc(%d) for csp failed: %E", sizeof(*csp)); continue; } - memset(csp, '\0', sizeof(*csp)); + csp->flags |= CSP_FLAG_ACTIVE; + csp->sfd = JB_INVALID_SOCKET; - csp->active = 1; - csp->sfd = -1; + csp->config = config = load_config(); - if ( config_changed ) + if ( config->need_bind ) { /* * Since we were listening to the "old port", we will not see @@ -1066,13 +2120,10 @@ static void listen_loop(void) * request. This should not be a so common of an operation * that this will hurt people's feelings. */ - close_socket(bfd); - log_error(LOG_LEVEL_CONNECT, "bind (%s, %d)", - haddr ? haddr : "INADDR_ANY", hport); - bfd = bind_port(haddr, hport); + close_socket(bfd); - config_changed = 0; + bfd = bind_port_helper(config); } log_error(LOG_LEVEL_CONNECT, "accept connection ... "); @@ -1080,13 +2131,14 @@ static void listen_loop(void) if (!accept_connection(csp, bfd)) { log_error(LOG_LEVEL_CONNECT, "accept failed: %E"); - -#ifdef AMIGA - if(!childs) - { - exit(1); - } -#endif + +#ifdef AMIGA + if(!childs) + { + exit(1); + } +#endif + freez(csp); continue; } else @@ -1094,32 +2146,68 @@ static void listen_loop(void) log_error(LOG_LEVEL_CONNECT, "OK"); } -#if defined(TOGGLE) - /* by haroon - most of credit to srt19170 */ - csp->toggled_on = g_bToggleIJB; -#endif - - /* add it to the list of clients */ - csp->next = clients->next; - clients->next = csp; +#ifdef FEATURE_TOGGLE + if (g_bToggleIJB) + { + csp->flags |= CSP_FLAG_TOGGLED_ON; + } +#endif /* def FEATURE_TOGGLE */ if (run_loader(csp)) { - log_error(LOG_LEVEL_ERROR, "a loader failed - must exit"); - return; + log_error(LOG_LEVEL_FATAL, "a loader failed - must exit"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + } + +#ifdef FEATURE_ACL + if (block_acl(NULL,csp)) + { + log_error(LOG_LEVEL_CONNECT, "Connection dropped due to ACL"); + close_socket(csp->cfd); + freez(csp); + continue; } +#endif /* def FEATURE_ACL */ + + /* add it to the list of clients */ + csp->next = clients->next; + clients->next = csp; - if (multi_threaded) + if (config->multi_threaded) { int child_id; /* this is a switch () statment in the C preprocessor - ugh */ #undef SELECTED_ONE_OPTION +/* Use Pthreads in preference to native code */ +#if defined(FEATURE_PTHREAD) && !defined(SELECTED_ONE_OPTION) +#define SELECTED_ONE_OPTION + { + pthread_t the_thread; + pthread_attr_t attrs; + + pthread_attr_init(&attrs); + pthread_attr_setdetachstate(&attrs, PTHREAD_CREATE_DETACHED); + child_id = (pthread_create(&the_thread, &attrs, + (void*)serve, csp) ? -1 : 0); + pthread_attr_destroy(&attrs); + } +#endif + #if defined(_WIN32) && !defined(_CYGWIN) && !defined(SELECTED_ONE_OPTION) #define SELECTED_ONE_OPTION child_id = _beginthread( - (void*)serve, + (void (*)(void *))serve, + 64 * 1024, + csp); +#endif + +#if defined(__OS2__) && !defined(SELECTED_ONE_OPTION) +#define SELECTED_ONE_OPTION + child_id = _beginthread( + (void(* _Optlink)(void*))serve, + NULL, 64 * 1024, csp); #endif @@ -1141,47 +2229,27 @@ static void listen_loop(void) } #endif -#if defined(AMIGA) && !defined(SELECTED_ONE_OPTION) -#define SELECTED_ONE_OPTION - csp->cfd = ReleaseSocket(csp->cfd, -1); - if((child_id = (int)CreateNewProcTags( - NP_Entry, (ULONG)server_thread, - NP_Output, Output(), - NP_CloseOutput, FALSE, - NP_Name, (ULONG)"junkbuster child", - NP_StackSize, 20*1024, - TAG_DONE))) - { - childs++; - ((struct Task *)child_id)->tc_UserData = csp; - Signal((struct Task *)child_id, SIGF_SINGLE); - Wait(SIGF_SINGLE); - } -#endif - -#if !defined(SELECTED_ONE_OPTION) - child_id = fork(); -#endif - -#undef SELECTED_ONE_OPTION -/* end of cpp switch () */ - - if (child_id < 0) /* failed */ +#if defined(AMIGA) && !defined(SELECTED_ONE_OPTION) +#define SELECTED_ONE_OPTION + csp->cfd = ReleaseSocket(csp->cfd, -1); + if((child_id = (int)CreateNewProcTags( + NP_Entry, (ULONG)server_thread, + NP_Output, Output(), + NP_CloseOutput, FALSE, + NP_Name, (ULONG)"privoxy child", + NP_StackSize, 200*1024, + TAG_DONE))) { - char buf[BUFSIZ]; - - log_error(LOG_LEVEL_ERROR, "can't fork: %E"); - - sprintf(buf , "JunkBuster: can't fork: errno = %d", errno); - - write_socket(csp->cfd, buf, strlen(buf)); - close_socket(csp->cfd); - csp->active = 0; - sleep(5); - continue; + childs++; + ((struct Task *)child_id)->tc_UserData = csp; + Signal((struct Task *)child_id, SIGF_SINGLE); + Wait(SIGF_SINGLE); } +#endif + +#if !defined(SELECTED_ONE_OPTION) + child_id = fork(); -#if !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) /* This block is only needed when using fork(). * When using threads, the server thread was * created and run by the call to _beginthread(). @@ -1192,7 +2260,7 @@ static void listen_loop(void) _exit(0); } - else /* parent */ + else if (child_id > 0) /* parent */ { /* in a fork()'d environment, the parent's * copy of the client socket and the CSP @@ -1203,16 +2271,75 @@ static void listen_loop(void) wait( NULL ); #endif /* !defined(_WIN32) && defined(__CYGWIN__) */ close_socket(csp->cfd); - csp->active = 0; + csp->flags &= ~CSP_FLAG_ACTIVE; + } +#endif + +#undef SELECTED_ONE_OPTION +/* end of cpp switch () */ + + if (child_id < 0) /* failed */ + { + char buf[BUFFER_SIZE]; + + log_error(LOG_LEVEL_ERROR, "can't fork: %E"); + + sprintf(buf , "Privoxy: can't fork: errno = %d", errno); + + write_socket(csp->cfd, buf, strlen(buf)); + close_socket(csp->cfd); + csp->flags &= ~CSP_FLAG_ACTIVE; + sleep(5); + continue; } -#endif /* !defined(_WIN32) && !defined(__BEOS__) && !defined(AMIGA) */ } else { serve(csp); } } - /* NOTREACHED */ + + /* NOTREACHED unless FEATURE_GRACEFUL_TERMINATION is defined */ + + /* Clean up. Aim: free all memory (no leaks) */ +#ifdef FEATURE_GRACEFUL_TERMINATION + + log_error(LOG_LEVEL_ERROR, "Graceful termination requested"); + + unload_current_config_file(); + unload_current_actions_file(); + unload_current_re_filterfile(); +#ifdef FEATURE_TRUST + unload_current_trust_file(); +#endif + + if (config->multi_threaded) + { + int i = 60; + do + { + sleep(1); + sweep(); + } while ((clients->next != NULL) && (--i > 0)); + + if (i <= 0) + { + log_error(LOG_LEVEL_ERROR, "Graceful termination failed - still some live clients after 1 minute wait."); + } + } + sweep(); + sweep(); + +#if defined(unix) + free(basedir); +#endif +#if defined(_WIN32) && !defined(_WIN_CONSOLE) + /* Cleanup - remove taskbar icon etc. */ + TermLogWindow(); +#endif + + exit(0); +#endif /* FEATURE_GRACEFUL_TERMINATION */ } diff --git a/jcc.h b/jcc.h index fcafbb71..1778f1ea 100644 --- a/jcc.h +++ b/jcc.h @@ -1,15 +1,15 @@ -#ifndef _JCC_H -#define _JCC_H -#define JCC_H_VERSION "$Id: jcc.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef JCC_H_INCLUDED +#define JCC_H_INCLUDED +#define JCC_H_VERSION "$Id: jcc.h,v 1.11 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/jcc.h,v $ + * File : $Source: /cvsroot/ijbswa/current/jcc.h,v $ * * Purpose : Main file. Contains main() method, main loop, and * the main connection-handling function. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -35,46 +35,90 @@ * * Revisions : * $Log: jcc.h,v $ + * Revision 1.11 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.10 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.9 2002/03/07 03:52:44 oes + * Set logging to tty for --no-daemon mode + * + * Revision 1.8 2002/03/04 18:19:49 oes + * Added extern const char *pidfile + * + * Revision 1.7 2001/11/05 21:41:43 steudten + * Add changes to be a real daemon just for unix os. + * (change cwd to /, detach from controlling tty, set + * process group and session leader to the own process. + * Add DBG() Macro. + * Add some fatal-error log message for failed malloc(). + * Add '-d' if compiled with 'configure --with-debug' to + * enable debug output. + * + * Revision 1.6 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.5 2001/07/29 19:32:00 jongfoster + * Renaming _main() [mingw32 only] to real_main(), for ANSI compliance. + * + * Revision 1.4 2001/07/29 18:58:15 jongfoster + * Removing nested #includes, adding forward declarations for needed + * structures, and changing the #define _FILENAME_H to FILENAME_H_INCLUDED. + * + * Revision 1.3 2001/07/18 12:31:58 oes + * moved #define freez from jcc.h to project.h + * + * Revision 1.2 2001/05/31 21:24:47 jongfoster + * Changed "permission" to "action" throughout. + * Removed DEFAULT_USER_AGENT - it must now be specified manually. + * Moved vanilla wafer check into chat(), since we must now + * decide whether or not to add it based on the URL. + * + * Revision 1.1.1.1 2001/05/15 13:58:56 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ -/* Declare struct FILE for vars and funcs. */ -#include - -/* All of our project's data types. */ -#include "project.h" - -#include "loadcfg.h" - #ifdef __cplusplus extern "C" { #endif -#define freez(X) if(X) free(X); X = NULL - +struct client_state; +struct file_list; /* Global variables */ - -#ifdef STATISTICS +#ifdef FEATURE_STATISTICS extern int urls_read; extern int urls_rejected; -#endif /*def STATISTICS*/ +#endif /*def FEATURE_STATISTICS*/ extern struct client_state clients[]; - extern struct file_list files[]; -/* Global constants */ - -extern const char DEFAULT_USER_AGENT[]; +#ifdef unix +extern const char *pidfile; +#endif +extern int no_daemon; +#ifdef FEATURE_GRACEFUL_TERMINATION +extern int g_terminate; +#endif /* Functions */ #ifdef __MINGW32__ -int _main(int argc, const char *argv[]); +int real_main(int argc, const char *argv[]); #else int main(int argc, const char *argv[]); #endif @@ -87,7 +131,7 @@ extern const char jcc_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _JCC_H */ +#endif /* ndef JCC_H_INCLUDED */ /* Local Variables: diff --git a/junkbstr.txt b/junkbstr.txt deleted file mode 100644 index cbe21048..00000000 --- a/junkbstr.txt +++ /dev/null @@ -1,206 +0,0 @@ -# Sample Configuration file for the Internet Junkbuster 2.0 - -# -# $Id: config,v 1.2 2001/04/30 03:05:11 rodney Exp $ -# - -# -# -# Copyright 1997-8 Junkbusters Corp. For distribution, modification and use -# under the GNU General Public License. These files come with NO WARRANTY. -# See http://www.junkbusters.com/ht/en/gpl.html or README file for details. -# -# When starting the proxy, give the name of this file as an argument. -# Any changes made to this file are *not* automatically loaded; you have -# to stop and restart the proxy. - -# For information see http://www.junkbusters.com/ht/en/ijbman.html -# or the documentation that came with the release - -# Lines beginning with a # character are comments; they are ignored. -# Many example lines are provided here commented out - -# the blockfile contains patterns to be blocked by the proxy -blockfile ./blocklist # comments are OK here, too - -# the imagefile contains patterns to detect blocked images -imagefile ./imagelist - -# the popfile contains patterns of servers where javascript popups are disabled -# -# if the next line is not commented out, all javascript popups from the sites -# that match the patterns in popup will be blocked -# popupfile ./popup - -# File containing content modification rules -#re_filterfile ./re_filterfile - -# Uncomment to filter *all* traffic. Default is to -# filter only if we wouldn't send a cookie either. -# -#re_filter_all - - -# the cookiefile contains patterns to specify the cookie management policy -# -cookiefile ./cookiefile - -# the logfile is where all logging and error messages are written -# -logfile ./junkbuster.log - -# the jarfile is where cookies can be stored -# -#jarfile ./jarfile - -# the forwardfile defines domain-specific routing -# -forwardfile ./forward - -# file which lists and into which trusted domains are written -# -#trustfile ./trust -# files specify locations of "for information about trusted referers, see.." -# multiple trust_info_url lines are OK -# -# trust_info_url http://internet.junkbuster.com/ -# trust_info_url http://www.yoursite.com/our_trust_policy.html -# - -# The access control list file can be used to restrict IP addresses -# that are permitted to use the proxy (see warnings in the FAQ). -# -#aclfile ./aclfile - -# add an "X-Forwarded-For:" specification to each request header -# -#add-forwarded-header - -# if logging cookies into a jarfile, and no other wafers were -# explicity set, then by default a vanilla wafer is sent with -# each request. -# -# setting 'suppress-vanilla-wafer' stops this vanilla wafer from -# being sent. -# -suppress-vanilla-wafer - -# add these wafers to each request header -# multiple wafer lines are OK -# -#wafer NOTE=Like most people, I want my browsing to be anonymous. -#wafer WARNING=Please do not attempt to track me. - -# Anything can be added to the request headers. Please don't litter. -# multiple add-header lines are OK -# -#add-header Forwarded: by http://stay-out-of-my-backyard.net -#add-header Forwarded: by http://pro-privacy-isp.net -#add-header Proxy-Connection: Keep-Alive - -# listen-address specifies where the Junkbuster will listen for connections -# Specifying a port is optional; if unspecified the defaults is 8000. -# Before Version 2.0.2 the default was to bind to all IP addresses (INADDR_ANY) -# This has been restricted to localhost to avoid unintended security breaches. -# To open the proxy to all, uncomment the following line: -#listen-address :8000 -# other example usage: -#listen-address 124.207.250.245:8080 -# to explicitly state what is now the default: -#listen-address localhost -# or equivalently: -listen-address 127.0.0.1:8000 - -# user-agent specifies treatment of the "User-Agent:" (and "UA-*:") header(s) -# default: Forge the "User-Agent:" -# 'text' : Always send as the "User-Agent:" -# . : Pass the "User-Agent:" unchanged -# @ : Pass the "User-Agent:" if the server is in the cookie file, -# forge the "User-Agent:" otherwise -#user-agent @ - -# note: Russian browsers may be confused if user agent misidentifies -# the operating system (Mac vs Windows); see FAQ -user-agent . - -# referer specifies treatment of the "Referer:" header -# New option by "Andreas S. Oesterhelt" -# -# default: Kill the referrer-header from the client -# 'text' : Always send as the referrer -# . : Pass the referrer unchanged -# @ : Pass the referrer if the server is in the cookie file, -# kill the referrer otherwise -# § : Pass the referrer if the server is in the cookie file, -# send a forged referrer that points to the root-diretory URL -# of the current request otherwise -referer § - -# from specifies value to be subsituted if browser provides a "From:" header -# -#from spam-me-senseless@sittingduck.net - -# tinygif allows you to change the appearance of blocked images -# -# tinygif 0 # Show a "broken icon" -# tinygif 1 # Show a GIF of one transparent pixel -tinygif 2 # Show a GIF with the word "JUNKBUSTER" -# tinygif 3 http://localhost/1x1.gif # Temporary redirect to this URL - -# Andrew added -# The following can be used to suppress display of the block lists when the -# page http://x.x/show-proxy-args is displayed. With a long block list this -# accelerates loading of the configuration page and also hides the contents of -# the block lists (for whatever reason). Maintainers of junkbuster proxies for -# multiple use can specify a message for any use who wants to know what is in -# these files. -# -#suppress-blocklists Contact sysadmin@example.com for details. -# suppress-blocklists - -# debug sets the level of debugging information to log in the logfile -# -# debug 1 # GPC = show each GET/POST/CONNECT request -# debug 2 # CONN = show each connection status -# debug 4 # IO = show I/O status -# debug 8 # HDR = show header parsing -# debug 16 # LOG = log all data into the logfile -# debug 32 # FRC = debug force feature -# debug 64 # REF = debug regular expression filter -# -# multiple "debug" directives, are OK - they're logical-OR'd together -# -#debug 15 # same as setting the first 4 listed above -debug 1 -# debug 255 # Log *everything* - -# single-threaded operation (i.e. disallows multiple threads or processes) -# This is most often used for debugging because it keeps the -# debugging output "in order" for easy reading. -# -#single-threaded - -# Toggle flag. 0 => disabled, anything else (ie. 1) => enabled -toggle 1 - - -# Win32 GUI specific options. Moved here from ijbw32.ini -# in hopes of keep all of our config settings together. - -activity-animation 1 -log-messages 1 -log-highlight-messages 1 -log-buffer-size 1 -log-max-lines 200 -log-font-name Comic Sans MS -log-font-size 8 -show-on-task-bar 0 -close-button-minimizes 1 - -# hide-console is used only on Win32 console mode. It instructs -# the Internet Junkbuster to disconnect from and hide the -# command console. -# -#hide-console - - diff --git a/junkbuster.1 b/junkbuster.1 deleted file mode 100644 index d88294da..00000000 --- a/junkbuster.1 +++ /dev/null @@ -1,871 +0,0 @@ -.TH JUNKBUSTER 1 "http://www.junkbusters.com/ht/en/ijb2.0man.html" -.SH NAME -\fBjunkbuster\fP -- The -Internet Junkbuster -Proxy -\s-2(TM)\s+2 -.SH SYNOPSIS -\fBjunkbuster\fP -\fI\&configfile\fP -(Version 2.0 onwards) -.br -\fBjunkbstr.exe\fP -\fI\&configfile\fP -(Windows) -.br -\fBjunkbuster\fP -[-a] -[-y] -[-s] -[-c] -[-v] -.br -[-u user_agent] -[-r referer] -[-t from] -.br -[-b blockfile] -[-j jarfile] -[-l logfile] -.br -[-w NAME=VALUE] -[-x Header_text] -.br -[-h [bind_host_address][:bind_port]] -.br -[-f forward_host[:port]] -[-d N] -.br -[-g gw_protocol[:[gw_host][:gw_port]]] -.br -(Version 1.4 and earlier) -.SH DESCRIPTION -\fBjunkbuster\fP -is an instrumentable proxy that filters the -\s-2HTTP\s0 -stream between -web servers and browsers. -Its main purpose is to enhance privacy. -.P -Versions before 2.0 used command-line options; -Versions from 2.0 onward use a configuration file. -The following descriptions of the options first give the older -command-line usage, then the new configfile line. -.P -In Versions 2.0.1 upwards on Windows, -a start-up message is printed and the configuration is read from the file -\fC\&junkbstr.ini\fP -if it exists and no argument was given. -.P -All files except the configfile -are checked for changes before each page is fetched, -so they may edited without restarting the proxy. -.SS OPTIONS -.TP -.\" anchor: o_b blockfile -\fI-b blockfile\fP (Old) blockfile \fIblockfile\fP (New) -Block\" ijbfaq.html#blocking -requests to -\s-2URL\s0s -matching any pattern given in the lines of the -\fI\&blockfile\fP. -The -\fBjunkbuster\fP -instead returns status 202, indicating that the request has been accepted -(though not completed), -and a -message identifying itself\" ijbfaq.html#show -(though the browser may -display only a broken image icon). -(Versions before 2.0 returned an error 403 (Forbidden).) -The syntax of a pattern is -\fB\&[domain][:port][/path]\fP -(the -\fB\&http://\fP -or -\fB\&https://\fP -protocol part is omitted). -To decide if a pattern matches a target, the domains are compared first, -then the paths. -.P -To compare the domains, -the pattern domain and the target -domain specified in the -\s-2URL\s0 -are each broken into their components. -(Components are separated by the -\fC\&.\fP -(period) character.) -Next each of the target components -is compared with the corresponding pattern component: last with last, -next-to-last with next-to-last, and so on. -(This is called -\fIright-anchored\fP -matching.) -If all of the pattern components find their match in the target, -then the domains are considered a match. -Case is irrelevant when comparing domain components. -.P -A successfully -matching pattern can be an anchored substring of a target, but -not vice versa. -Thus if a pattern doesn't specify a domain, -it matches all domains. -.\" anchor: wildcard -Furthermore, when comparing two components, -the components must either match in their entirety or up to a wildcard -\fC\&* \fP -(star character) in the pattern. The wildcard feature -implements only a "prefix" match capability ("abc*" vs. "abcdefg"), -not suffix matching ("*efg" vs. "abcdefg") or -infix matching ("abc*efg" vs. "abcdefg"). -The feature is restricted to the domain component; -it is unrelated to the optional -regular expression -feature in the path -(described below).\" ijbman.html#regex -.P -If a numeric port -is specified in the pattern domain, then the target port must -match as well. The default port in a target is port 80. -.P -If the domain and port match, -then the target -\s-2URL\s0 -path is checked for -a match against the path in the pattern. -Paths are compared with a simple case-sensitive -left-anchored substring comparison. -Once again, the pattern can be an -anchored substring of the target, but not vice versa. -A path of -\fC\&/\fP -(slash) would match all paths. Wildcards are not considered in -path comparisons. -.P -For example, the target -\s-2URL\s0 -.br -.ti +0.25i -\fB\&the.yellow-brick-road.com/TinMan/has_no_brain\fP -.br -would be matched (and blocked) by the following patterns -.br -.ti +0.25i -\fB\&yellow-brick-road.com\fP -.br -and -.br -.ti +0.25i -\fB\&Yellow*.COM\fP -.br -and -.br -.ti +0.25i -\fB\&/TinM\fP -.br -but not -.br -.ti +0.25i -\fB\&follow.the.yellow-brick-road.com\fP -.br -or -.br -.ti +0.25i -\fB\&/tinman\fP -.br -.P -Comments in a blockfile start with a -\fB\&#\fP -(hash) character and end at a new line. -Blank lines are also ignored. -.P -Lines beginning with a -\fC\&~\fP -(tilde) character are taken to be -exceptions:\" ijbfaq.html#exceptions -a -\s-2URL\s0 -blocked by previous patterns that matches the rest of -the line is let through. (The last match wins.) -.P -Patterns -may contain -\s-2POSIX\s0 -regular expressions\" ijbfaq.html#regex -provided the -\fBjunkbuster\fP -was compiled with this option -(the default in Version 2.0 on). -The idiom -\fC\&/*.*/ad\fP -can then be used -to match any -\s-2URL\s0 -containing -\fC\&/ad\fP -(such as -\fC\&http://nomatterwhere.com/images/advert/g3487.gif\fP -for example). -These expressions -don't work\" ijbman.html#substring -in the domain part. -.P -In version 1.3 and later -the blockfile and cookiefile are checked for changes before each request. -.TP -tinygif \fIN\fP -Set appearance of blocked GIFs. You can select one of the following -values: -.br -.br -\h'-\w"0 = "u'0 = Show a ``broken icon'' in the browser -.br -\h'-\w"1 = "u'1 = Show a one pixel transparent GIF -.br -\h'-\w"2 = "u'2 = Show a GIF with the word ``JUNKBUSTER'' -.TP -popupfile \fI\&popup\fP -Sets the name of the popupfile. If uncommented, the popupfile -controls on which sites Javascript popup windows are disabled. -.TP -.\" anchor: o_w wafer -\fI-w NAME=VALUE\fP (Old) wafer \fINAME=VALUE\fP (New) -Specifies a pair to be sent as a cookie with every request -to the server.\" ijbfaq.html#wafers -(Such boring cookies are called -\fI\&wafers\fP.) -This option may be called more than once to generate multiple wafers. -The original -Netscape specification -prohibited -semi-colons, commas and white space; -these characters will be -\s-2URL\s0-encoded -if used in wafers. -The Path and Domain attributes are not currently supported. -.TP -.\" anchor: o_c cookiefile -\fI-c cookiefile\fP (Old) cookiefile \fIcookiefile\fP (New) -Enforce the cookie management policy specified in the -\fI\&cookiefile.\fP -.\" anchor: java -If this option is not used all cookies are silently crunched, -so that users who never want cookies aren't bothered by browsers -asking whether each cookie should be accepted. -However, cookies can -still get through\" ijbfaq.html#breakthrough -via -JavaScript\" links.html#javascript -and -\s-2SSL\s0, -so alerts should be left on. -.P -In Version 1.2 and later -this option must be followed by a -filename\" ijbfaq.html#crumble -containing instructions on which sites are allowed to -receive and set cookies. -.\" anchor: drop -By default cookies are dropped in both the browser's request -and the server's response, unless the -\s-2URL\s0 -requested matches an entry in the -\fI\&cookiefile\fP. -The matching algorithm is the same as for the blockfile. -A leading -\fC\&>\fP -character allows -server-bound\" ijbfaq.html#directional -cookies only; -a -\fC\&<\fP -allows only browser-bound cookies; -a -\fC\&~\fP -character stops cookies in -both directions.\" ijbfaq.html#crumble -Thus a cookiefile containing a single line with the two characters -\fC\&>*\fP -will pass on all cookies to servers but not give any new ones to the browser. -.TP -.\" anchor: o_j jarfile -\fI-j jarfile\fP (Old) jarfile \fIjarfile\fP (New) -All Set-cookie attempts by the server are -logged\" ijbfaq.html#jar -to -\fI\&jarfile\fP. -If no wafer is specified, -one containing a -canned notice\" ijbfaq.html#notice -(the -\fI\&vanilla wafer\fP) -is added as an alert to the server -unless the -suppress-vanilla-wafer\" ijbman.html#suppress-vanilla-wafer -option is invoked. -.TP -.\" anchor: o_v suppress-vanilla-wafer -\fI-v\fP (Old) suppress-vanilla-wafer \fI\fP (New) -Suppress the vanilla wafer. -.TP -.\" anchor: o_t from -\fI-t from\fP (Old) from \fIfrom\fP (New) -If the browser -discloses an email address\" ijbfaq.html#from -in the -\fB\&FROM\fP -header (most don't), -replace it with -\fI\&from.\fP -If -\fI\&from\fP -is set to -\fB\&.\fP -(the period character) -the -\fB\&FROM\fP -is passed to the server unchanged. -The default is to delete the -\fB\&FROM\fP -header. -.TP -.\" anchor: o_r referer -\fI-r referer\fP (Old) referer \fIreferer\fP (New) -Whenever the browser discloses the -\s-2URL\s0 -that -led to\" ijbfaq.html#referer -the current request, -replace it with -\fI\&referer.\fP -If -\fI\&referer\fP -is set to -\fB\&.\fP -(period) -the -\s-2URL\s0 -is passed to the server unchanged. -In -Version 1.4 -and later, if referer is set to -\fB\&@\fP -(at) the -\s-2URL\s0 -is sent in cases where the cookiefile -specifies that a cookie would be sent. -(No way to send bogus referers selectively is provided.) -The default is to delete Referer. -.P -Version 2.0 also accepts the spelling -\fC\&referrer\fP, -which most dictionaries consider correct. -.TP -.\" anchor: o_u user-agent -\fI-u user-agent\fP (Old) user-agent \fIuser-agent\fP (New) -Information disclosed by the browser -about itself\" ijbfaq.html#agent -is replaced with the value -\fI\&user-agent.\fP -If -\fI\&user-agent\fP -is set to -\fB\&.\fP -(period) -the -\fB\&User-Agent\fP -header is passed to the server unchanged, -along with any -\fB\&UA\fP -headers produced by -\s-2MS-IE\s0 -(which would otherwise be deleted). -In -Version 1.4 -and later, if -\fI\&user-agent\fP -is set to -\fB\&@\fP -(at) these headers are sent unchanged in cases where the cookiefile -specifies that a cookie would be sent, -otherwise only default -\fB\&User-Agent\fP -header is sent. -That default -is Mozilla/3.0 (Netscape) -with an unremarkable -Macintosh\" ijbfaq.html#infer -configuration. -If used with a browser less advanced than Mozilla/3.0 or IE-3, the default -may encourage pages containing extensions that confuse the browser. -.TP -.\" anchor: o_h listen-address -\fI-h [host][:port]\fP (Old) listen-address \fI[host][:port]\fP (New) -If -\fI\&host\fP -is specified, -bind the -\fBjunkbuster\fP -to that -\s-2IP\s0 -address. -If a -\fI\&port\fP -is specified, use it. -The default -port -is 8000; -the default host is -\fC\&localhost\fP. -Before Version 2.0.2, -the default was to bind to all -\s-2IP\s0 -addresses -(\fB\&INADDR_ANY\fP); -but this has been restricted to -\fB\&localhost\fP -to avoid unintended security breaches. -(To open the proxy to all, use the line -.br -.ti +0.25i -\fB\&listen-address :8000\fP -.br -in the configuration file.) -.TP -.\" anchor: o_f forwardfile -\fI-f forward_host[:port]\fP (Old) forwardfile \fIforwardfile\fP (New) -Version 1.X required all -\s-2HTTP\s0 -requests from the client to be forwarded to the same destination. -Version 2.0 takes its routing specification from a -\fI\&forwardfile\fP, -allowing selection of the proxy (a.k.a. forwarding host) and gateway -according to the -\s-2URL\s0. -Here is a typical line. -.br -.ft CW -.S 8 -.nf -.sp -* lpwa.com:8000 . . -.S -.ft -.fi -.sp - -.P -Each line contains four fields: -\fB\&target\fP, -\fB\&forward_to\fP, -\fB\&via_gateway_type\fP -and -\fB\&gateway\fP. -As usual, the -last\" ijbman.html#compare -\fB\&target\fP -domain that matches the requested -\s-2URL\s0 -wins, -and the -\fC\&*\fP -character alone matches any domain. -The target domain need not be a fully qualified -hostname; it can be a general domain such as -\fC\&com\fP -or -\fC\&co.uk\fP -or even just a port number. -.\" anchor: nose -For example, because -LPWA -does not handle -SSL,\" ijbfaq.html#encrypt -the line above will typically be followed by a line such as -.br -.ft CW -.S 8 -.nf -.sp -:443 . . . -.S -.ft -.fi -.sp - -to allow SSL transactions to proceed directly. -The cautious would also -add an entry in their blockfile to stop transactions -to port 443 for all but specified trusted sites. -.P -If the winning -\fB\&forward_to\fP -field is -\fC\&.\fP -(the dot character) the proxy connects -directly to the server given in the -\s-2URL\s0, -otherwise it forwards to the host and port number specified. -The default port is 8000. -The -\fC\&via_gateway_type\fP -and -\fC\&gateway\fP -fields also use a dot to indicate no gateway protocol. -The gateway protocols are explained -below.\" ijbman.html#o_g -.P -The example line above in a forwardfile alone -would send everything through port 8000 at -\fC\&lpwa.com\fP -with no gateway protocol, -and is equivalent to the old -\fC\&-f lpwa.com:8000\fP -with no -\fC\&-g\fP -option. -For more information see the example file provided with the distribution. -.P -Configure with care: no loop detection is performed. -When setting up chains of proxies that might loop back, try adding -Squid.\" ijbman.html#squid -.TP -.\" anchor: o_g -\fI-g gw_protocol[:[gw_host][:gw_port]]\fP (Old) -Use -\fI\&gw_protocol\fP -as the gateway protocol. -This option was introduced in Version 1.4, -but was folded into the -forwardfile\" ijbman.html#forwardfile -option in Version 2.0. -The default is to use no gateway protocol; -this may be explicitly specified as -\fB\&direct\fP -on the command line -or the dot character in the forwardfile. -The -\fC\&SOCKS4\fP -protocol may be specified as -\fB\&socks\fP -or -\fB\&socks4\fP. -The -\fC\&SOCKS4A\fP -protocol is specified as -\fB\&socks4a\fP. -The -\fC\&SOCKS5\fP -protocol is not currently supported. -The default -\s-2SOCKS\s0 -\fI\&gw_port\fP -is 1080. -.P -The user's browser should -\fInot\fP -be -configured\" ijbfaq.html#socks -to use -\fC\&SOCKS\fP; -the proxy conducts the negotiations, not the browser. -.P -The user identification capabilities of -\fC\&SOCKS4\fP -are deliberately not used; -the user is always identified to the -\fC\&SOCKS\fP -server as -\fC\&userid=anonymous\fP. -If the server's policy is to reject requests from -\fC\&anonymous\fP, -the proxy will not work. -Use a -debug\" ijbman.html#o_d -value of 3 -to see the status returned by the server. -.TP -.\" anchor: o_d debug -\fI-d N\fP (Old) debug \fIN\fP (New) -Set debug mode. -The most common value is 1, -to -pinpoint\" ijbfaq.html#pinpoint -offensive -\s-2URL\s0s, -so they can be added to the blockfile. -The value of -\fB\&N\fP -is a bitwise -logical-\s-2OR\s0 -of the following values: -.br -.br -\h'-\w"1 = "u'1 = URLs (show each URL requested by the browser); -.br -\h'-\w"2 = "u'2 = Connections (show each connection to or from the proxy); -.br -\h'-\w"4 = "u'4 = I/O (log I/O errors); -.br -\h'-\w"8 = "u'8 = Headers (as each header is scanned, show the header and what is done to it); -.br -\h'-\w"16 = "u'16 = Log everything (including debugging traces and the contents of the pages). -.\" anchor: or -Multiple -\fB\&debug\fP -lines are permitted; they are logical OR-ed together. -.P -Because most browsers send several requests in parallel -the debugging output may appear intermingled, so the -single-threaded\" ijbman.html#single-threaded -option is recommended when using -debug\" ijbman.html#debug -with -\fB\&N\fP -greater than 1. -.TP -.\" anchor: o_y add-forwarded-header -\fI-y\fP (Old) add-forwarded-header \fI\fP (New) -Add -\fB\&X-Forwarded-For\fP -headers to the server-bound -\s-2HTTP\s0 -stream -indicating the client -\s-2IP\s0 -address -to the server,\" ijbfaq.html#detect -in the new style of -Squid 1.1.4.\" ijbman.html#squid -If you want the traditional -\fC\&HTTP_FORWARDED\fP -response header, add it manually with the --x\" ijbman.html#o_x -option. -.TP -.\" anchor: o_x add-header -\fI-x HeaderText\fP (Old) add-header \fIHeaderText\fP (New) -Add the -\fI\&HeaderText\fP -verbatim to requests to the server. -Typical uses include -adding old-style forwarding notices such as -\fB\&Forwarded: by http://pro-privacy-isp.net\fP -and reinstating the -\fB\&Proxy-Connection: Keep-Alive\fP -header -(which the -\fBjunkbuster\fP -deletes so as -not\" ijbfaq.html#detect -to reveal its existence). -No checking is done for correctness or plausibility, -so it can be used to throw any old trash into the server-bound -\s-2HTTP\s0 -stream. -Please don't litter. -.TP -.\" anchor: o_s single-threaded -\fI-s\fP (Old) single-threaded \fI\fP (New) -Doesn't -\fB\&fork()\fP -a separate process -(or create a separate thread) -to handle each connection. -Useful when debugging to keep the process single threaded. -.TP -.\" anchor: o_l logfile -\fI-l logfile\fP (Old) logfile \fIlogfile\fP (New) -Write all debugging data into -\fI\&logfile.\fP -The default -\fI\&logfile\fP -is the standard output. -.TP -.\" anchor: o_acl aclfile -aclfile \fIaclfile\fP (New) -Unless this option is used, the proxy talks to anyone who can connect to it, -and everyone who can has equal permissions on where they can go. -An access file allows restrictions to be placed on these two policies, -by distinguishing some -\fIsource\fP -\s-2IP\s0 -addresses and/or -some -\fIdestination\fP -addresses. -(If a -forwarder or a gateway\" ijbman.html#forwardfile -is being used, its address is considered the destination address, -not the ultimate -\s-2IP\s0 -address of the -\s-2URL\s0 -requested.) -.P -Each line of the access file begins with -either the word -\fB\&permit\fP -or -\fB\&deny\fP -followed by source and (optionally) destination addresses -to be matched against those of the -\s-2HTTP\s0 -request. -The last matching line specifies the result: if it was a -\fB\&deny\fP -line or if no line matched, -the request will be refused. -.P -A source or destination -can be specified as a single numeric -\s-2IP\s0 -address, -or with a hostname, provided that the host's name -can be resolved to a numeric address: this cannot be used to block all -\fB\&.mil \fP -domains for example, -because there is no single address associated with that domain name. -Either form may be followed by a slash and an integer -\fB\&N\fP, -specifying a subnet mask of -\fB\&N\fP -bits. -For example, -\fB\&permit 207.153.200.72/24\fP -matches the entire Class-C subnet from -207.153.200.0 -through 207.153.200.255. -(A netmask of 255.255.255.0 corresponds to 24 bits of -ones in the netmask, as with -\fC\&*_MASKLEN=24\fP.) -A value of 16 would be used for a Class-B subnet. -A value of zero for -\fB\&N\fP -in the subnet mask length will cause any address to match; -this can be used to express a default rule. -For more information see the example file provided with the distribution. -.P -If you like these access controls -you should probably have -firewall;\" ijbfaq.html#firewall -they are not intended to replace one. -.TP -.\" anchor: o_tf trustfile -trustfile \fItrustfile\fP (New) -This feature is experimental, has not been fully documented and is -very subject to change. -The goal is for parents to be able to choose a page or site whose -links they regard suitable for their -young children\" ijbfaq.html#children -and for the proxy to allow access only to sites mentioned there. -To do this the proxy examines the -referer\" ijbman.html#o_r -variable on each page request to check they resulted from -a click on the ``trusted referer'' site: if so the referred site -is added to a list of trusted sites, so that the child can -then move around that site. -There are several uncertainties in this scheme that experience may be -able to iron out; check back in the months ahead. -.TP -.\" anchor: o_ti trust_info_url -trust_info_url \fItrust_info_url\fP (New) -When access is denied due to lack of a trusted referer, this -\s-2URL\s0 -is displayed with a message pointing the user to it for further information. -.TP -.\" anchor: o_hc hide-console -hide-console \fI\fP (New) -In the Windows version only, instructs the program -to disconnect from and hide the command console after starting. -.TP -.\" anchor: o_a -\fI-a\fP (Old) -(Obsolete) Accept the server's -\fB\&Set-cookie\fP -headers, passing them through to the browser. -.\" anchor: obsolete -This option was removed in Version 1.2 -and replaced by an improvement to the --c\" ijbman.html#o_c -option. -.LE -.SH INSTALLATION AND USE -Browsers must be told where to find the -\fBjunkbuster\fP -(e.g. -\fB\&localhost\fP -port 8000). -To set the -\s-2HTTP\s0 -proxy in Netscape 3.0, -go through: -\fB\&Options\fP; -\fB\&Network Preferences\fP; -\fB\&Proxies\fP; -\fB\&Manual Proxy Configuration\fP; -\fB\&View\fP. -See the -\s-2FAQ\s0 -for other browsers. -The -Security Proxy\" ijbfaq.html#security -should also be set to the same values, -otherwise -\fB\&shttp:\fP -\s-2URL\s0s -won't work. -.P -Note the limitations -explained in the -\s-2FAQ\s0. -.SH CHECKING OPTIONS -To allow users to -check\" ijbfaq.html#show -that a -\fBjunkbuster\fP -is running and how it is configured, -it intercepts requests for any -\s-2URL\s0 -ending in -\fB\&/show-proxy-args\fP -and blocks it, -returning instead returns information on its -version number and -current configuration -including the contents of its blockfile. -To get an explicit warning that no -\fBjunkbuster\fP -intervened if the proxy was not configured, -it's best to point it to a -\s-2URL\s0 -that does this, such as -http://internet.junkbuster.com/cgi-bin/show-proxy-args -on Junkbusters's website. -.SH SEE ALSO -http://www.waldherr.org/junkbuster/\" waldherr.org# -.br -http://www.junkbusters.com/ht/en/ijbfaq.html\" ijbfaq.html# -.br -http://www.junkbusters.com/ht/en/cookies.html\" cookies.html# -.br -http://internet.junkbuster.com/cgi-bin/show-proxy-args -.br -http://www.cis.ohio-state.edu/htbin/rfc/rfc2109.html -.br -http://squid.nlanr.net/Squid/ -.br -http://www-math.uni-paderborn.de/~axel/ -.SH COPYRIGHT AND GPL -Written and copyright by the Anonymous Coders and Junkbusters Corporation -and made available under the -GNU General Public License (GPL).\" gpl.html# -This software comes with -NO WARRANTY.\" gpl.html#nowarr -Internet Junkbuster -Proxy -is a -trademark\" legal.html#marks -of Junkbusters Corporation. diff --git a/junkbuster.init b/junkbuster.init deleted file mode 100644 index c74b6b7a..00000000 --- a/junkbuster.init +++ /dev/null @@ -1,149 +0,0 @@ -#!/bin/sh -# -# $Id: junkbuster.init,v 1.2 2001/04/30 02:36:54 rodney Exp $ -# -# This is file is either -# -# /etc/rc.d/init.d/junkbuster -# -# or -# -# /sbin/init.d/junkbuster -# -# and was put here by the junkbuster rpm -# -# junkbuster This shell script takes care of starting and stopping -# junkbuster. -# -# This works only correctly if the user `nobody' is allowed -# to be in the directory where this file is called -# (for example: /root is NOT ok) -# --------------------------------------------------------------------------- -# Force /bin/sh as shell (padraic@renaghan.com). -# Augmented with help by Sterling -# Hints from mjohnson11@uswest.net -# Hints from rochedav@primenet.com -# --------------------------------------------------------------------------- -# These lines are needed so Redhat's config tools will "see" this script: -# chkconfig: 35 84 09 -# description: Blocks annoying ads from the internet, along with cookies \ -# and a few other privacy features. -# processname: junkbuster -# config: /etc/junkbuster/config - - -# --------------------------------------------------------------------------- -# -# SuSE only -# -# --------------------------------------------------------------------------- -if [ -f /etc/rc.config ]; then - -# Author: Daniel Bischof , 1999 -# Adjustment: Axel Braun , 17.08.2000 -. /etc/rc.config -#base=${0##*/} -#link=${base#*[SK][0-9][0-9]} -#test $link = $base && START_IJB=yes -#test "$START_IJB" = "yes" || exit 0 -return=$rc_done -case "$1" in - start) - echo -n "Starting The Internet Junkbuster" - su - nobody -c 'nohup /usr/sbin/junkbuster /etc/junkbuster/config < /dev/null > /dev/null &' - sleep 1 - echo -e "$return" - ;; - stop) - echo -n "Shutting down The Internet Junkbuster" - killproc -TERM /usr/sbin/junkbuster || return=$rc_failed - echo -e "$return" - ;; - restart|reload) - echo -n "Reload The Internet Junkbuster" - killproc -HUP /usr/sbin/junkbuster || return=$rc_failed - echo -e "$return" - ;; - status) - checkproc /usr/sbin/junkbuster && echo OK || echo No process - ;; - *) - echo "Usage: $0 {start|restart|status|stop}" - exit 1 -esac -test "$return" = "$rc_done" || exit 1 -exit 0 - -else -# --------------------------------------------------------------------------- -# -# RedHat only -# -# --------------------------------------------------------------------------- - -# Source function library. -if [ -f /etc/rc.d/init.d/functions ]; then -. /etc/rc.d/init.d/functions -fi - -if [ -f /etc/sysconfig/network ]; then -. /etc/sysconfig/network -fi - -# Check that networking is up. -[ ${NETWORKING} = "no" ] && exit 0 - -[ -f /etc/junkbuster/config ] || exit 0 - -[ -f /usr/sbin/junkbuster ] || exit 0 - -RETVAL=0 - -# See how we were called. -case "$1" in - - start) - # abort if already started - pid=`pidofproc junkbuster` - [ -n "$pid" ] && ps h $pid >/dev/null 2>&1 && \ - echo -n "Already started: " && status junkbuster && \ - exit 0 - - # Start daemon. - echo -n "Starting junkbuster:" && RETVAL=1 - ulimit -c 0 - su - nobody -s /bin/sh -c '/usr/sbin/junkbuster /etc/junkbuster/config' & - sleep 1 - pid=`pidofproc junkbuster` - [ -n "$pid" ] && ps h $pid >/dev/null 2>&1 && RETVAL=0 && echo_success && touch /var/lock/subsys/junkbuster - [ $RETVAL -eq 1 ] && echo_failure - echo - ;; - - stop) - # Stop daemon. - echo -n "Shutting down junkbuster:" - killproc junkbuster - RETVAL=$? - [ $RETVAL -eq 0 ] && rm -f /var/lock/subsys/junkbuster - echo - ;; - - status) - status junkbuster - RETVAL=$? - ;; - - restart|reload) - $0 stop && $0 start - ;; - - *) - echo "Usage: junkbuster {start|stop|status|restart|reload}" - exit 1 -esac - -exit $RETVAL - -fi - diff --git a/junkbuster.logrotate b/junkbuster.logrotate deleted file mode 100644 index e8e8b92d..00000000 --- a/junkbuster.logrotate +++ /dev/null @@ -1,22 +0,0 @@ -# -# Logrotate file for Junkbuster RPM -# -# $Id: junkbuster.logrotate,v 1.1 2001/04/30 03:17:00 rodney Exp $ - -# Fixed problems of -# filename.1 -> filename.1.2 -> filename.1.3 -# filename.1.2.2, filename.1.2.3, filename.1.3.2, filename.1.3.3 -# filename.1.2.2.2, filename.1.2.2.3 ... -# by explicitly listing each logfile in the directory instead of `*'. -# - -/var/log/junkbuster/junkbuster { - compress - weekly -} - - -#/var/log/junkbuster/jarfile { -# compress -# weekly -#} diff --git a/junkbuster.monthly b/junkbuster.monthly deleted file mode 100644 index 44ff3496..00000000 --- a/junkbuster.monthly +++ /dev/null @@ -1,44 +0,0 @@ -#!/bin/sh - -# $Id: junkbuster.monthly,v 1.1 2001/04/16 21:10:38 rodney Exp $ -# -# bug fixed, which downloaded all three files to the file blocklist -# -# Revised: Mon Dec 06 10:46:08 PST 1999 by Jon Hamkins -# Hints by Ulrik Haugen -# Hints by mirjamv@theochem.kun.nl -# -set -e - -# blocklist -wget -q --output-document=/etc/junkbuster/blocklist.new \ - http://www.waldherr.org/blocklist - -mv -f /etc/junkbuster/blocklist.new /etc/junkbuster/blocklist - -if [ -f /etc/junkbuster/blocklist.local ] ; then - cat /etc/junkbuster/blocklist.local >> /etc/junkbuster/blocklist -fi -chmod 644 /etc/junkbuster/blocklist - -# cookiefile -wget -q --output-document=/etc/junkbuster/cookiefile.new \ - http://www.waldherr.org/cookiefile - -mv -f /etc/junkbuster/cookiefile.new /etc/junkbuster/cookiefile - -if [ -f /etc/junkbuster/cookiefile.local ] ; then - cat /etc/junkbuster/cookiefile.local >> /etc/junkbuster/cookiefile -fi -chmod 644 /etc/junkbuster/cookiefile - -# imagelist -wget -q --output-document=/etc/junkbuster/imagelist.new \ - http://www.waldherr.org/imagelist - -mv -f /etc/junkbuster/imagelist.new /etc/junkbuster/imagelist - -if [ -f /etc/junkbuster/imagelist.local ] ; then - cat /etc/junkbuster/imagelist.local >> /etc/junkbuster/imagelist -fi -chmod 644 /etc/junkbuster/imagelist diff --git a/junkbuster.weekly b/junkbuster.weekly deleted file mode 100644 index bc07b231..00000000 --- a/junkbuster.weekly +++ /dev/null @@ -1,21 +0,0 @@ -#!/bin/sh - -# $Id: junkbuster.weekly,v 1.1 2001/04/16 21:10:38 rodney Exp $ - -# Revised: Mon Dec 06 10:46:08 PST 1999 by Jon Hamkins -# Hints by Ulrik Haugen -# Hints by mirjamv@theochem.kun.nl - -set -e - -# blocklist -wget -q --output-document=/etc/junkbuster/blocklist.new \ - http://www.waldherr.org/blocklist - -mv -f /etc/junkbuster/blocklist.new /etc/junkbuster/blocklist - -if [ -f /etc/junkbuster/blocklist.local ] ; then - cat /etc/junkbuster/blocklist.local >> /etc/junkbuster/blocklist -fi - -chmod 644 /etc/junkbuster/blocklist diff --git a/killpopup.c b/killpopup.c index 7004962d..34653738 100644 --- a/killpopup.c +++ b/killpopup.c @@ -1,18 +1,18 @@ -const char killpopup_rcs[] = "$Id: killpopup.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char killpopup_rcs[] = "$Id: killpopup.c,v 1.15 2002/03/24 13:25:43 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/killpopup.c,v $ + * File : $Source: /cvsroot/ijbswa/current/killpopup.c,v $ * * Purpose : Handles the filtering of popups. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -32,6 +32,73 @@ const char killpopup_rcs[] = "$Id: killpopup.c,v 1.1 2001/05/13 21:57:06 adminis * * Revisions : * $Log: killpopup.c,v $ + * Revision 1.15 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.14 2002/03/07 03:46:53 oes + * Fixed compiler warnings etc + * + * Revision 1.13 2001/11/13 00:16:40 jongfoster + * Replacing references to malloc.h with the standard stdlib.h + * (See ANSI or K&R 2nd Ed) + * + * Revision 1.12 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.11 2001/10/07 15:42:41 oes + * filter_popups now gets a csp pointer so it can raise the new + * CSP_FLAG_MODIFIED flag. + * + * Revision 1.10 2001/09/22 16:34:44 jongfoster + * Removing unneeded #includes + * + * Revision 1.9 2001/07/31 14:44:22 oes + * Deleted unused size parameter from filter_popups() + * + * Revision 1.8 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.7 2001/07/20 19:29:25 haroon + * - In v1.5 forgot to add that I implemented LOG_LEVEL_POPUPS in errlog.c, + * errlog.h and killpopup.c. In that case, it is superfluous to have define for + * POPUP_VERBOSE, so I removed the defines and logging is now done + * via log_error(LOG_LEVEL_POPUPS, ....) + * + * Revision 1.6 2001/07/19 19:11:35 haroon + * - Implemented Guy's idea of replacing window.open( with 1;''.concat( + * - Implemented Guy's idea of replacing .resizeTo( with .scrollTo( + * + * Revision 1.5 2001/07/18 15:02:52 haroon + * improved nuking of window.open + * + * Revision 1.4 2001/06/29 13:29:55 oes + * Added FIXMEs (and didn't repair, hehe) + * + * Revision 1.3 2001/05/22 18:56:28 oes + * CRLF -> LF + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:58:58 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -42,201 +109,102 @@ const char killpopup_rcs[] = "$Id: killpopup.c,v 1.1 2001/05/13 21:57:06 adminis #include #include #include -#include #include #include #include -#ifndef _WIN32 +#if !defined(_WIN32) && !defined(__OS2__) #include #endif #include "project.h" #include "killpopup.h" -#include "jcc.h" +#include "errlog.h" const char killpopup_h_rcs[] = KILLPOPUP_H_VERSION; -#ifdef KILLPOPUPS - -/* Change these for debug output. *lots*. */ -/*#define POPUP_VERBOSE 1*/ -/* CHANGED - added the below and shifted the more spammy stuff into it ;-) */ -#undef POPUP_VERY_VERBOSE -#undef POPUP_VERBOSE - +#ifdef FEATURE_KILL_POPUPS /********************************************************************* * * Function : filter_popups * - * Description : Filter the block of data that's been read from the server. - * IF NECESSARY. + * Description : Filter the block of data that's been read from the server + * for javascript popup code and replace by syntactically + * neutral code of the same size. + * Raise the CSP_FLAG_MODIFIED flag on success. * * Parameters : - * 1 : csp = Client state - * 2 : host_name = hostname of originating web page to - * look up on blocklist - * 3 : buff = Buffer to scan and modify. Null terminated. - * 4 : size = Buffer size, excluding null terminator. + * 1 : buff = Buffer to scan and modify. Null terminated. + * 2 : csp = Client state pointer * * Returns : void * *********************************************************************/ -void filter_popups(struct client_state *csp, char *host_name, char *buff, int size) +void filter_popups(char *buff, struct client_state *csp) { - struct popup_settings * data; - struct popup_blocklist * cur; - int i; - int found = 0; - char *popup = NULL; - char *close = NULL; + char *start_p = NULL; + char *close_p = NULL; char *p = NULL; - char *q = NULL; /* by BREITENB NEW! */ - - if ( (!csp->plist) || ((data = csp->plist->f) == NULL) ) - { - /* Disabled. */ - return; - } - /* If the hostname is on our list for blocking then mark it - * as a host to block from. (This may be later changed if the - * host is also on the list-to-allow list). + /* + * replace the window.open( with a harmless JavaScript replacement + * (notice the two single quotes) */ - - for (i=0; (i < 50) && (i < size); i++) /* avoid scanning binary data! */ - { - if ((unsigned int)(buff[i])>127) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "I'm not scanning binary stuff! (%i)\n",buff[i]); -#endif - return; - } - } - - - for (cur = data->blocked ; cur ; cur = cur->next) - { - if ( host_name != 0 ) - { - if ( strcmp( cur->host_name, host_name ) == 0 ) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Blocking %s\n", host_name ); -#endif - found = 1; - } - } - } - - /* Force match if we're supposed to nuke _all_ popups, globally. */ - if ( kill_all_popups != 0 ) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Indescriminatly nuking popups..\n" ); -#endif - found = 1; - } - /* an exception-from blocking should still be an exception! by BREITENB NEW! */ - - - /* Now, if its allowed adjust the filtering, so it _doesn't_ happen. */ - for (cur = data->allowed ; cur ; cur = cur->next) + while ((start_p = strstr(buff, "window.open(")) != NULL) { - if ( host_name != 0 ) + if (start_p) { - if ( strcmp( cur->host_name, host_name ) == 0 ) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Reversing block decision for %s\n", host_name ); -#endif - found = 0; - } + strncpy(start_p, "1;''.concat(", 12); + log_error(LOG_LEVEL_POPUPS, "Blocked popup window open"); + csp->flags |= CSP_FLAG_MODIFIED; } } - if ( found == 0) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Allowing %s\n", host_name ); -#endif - return; - } - - while ((popup = strstr( buff, "window.open(" )) != NULL) - /* if ( popup ) by BREITENB filter ALL popups! NEW! */ + /* + * replace the .resizeTo( with a harmless JavaScript replacement + */ + while ((start_p = strstr(buff, ".resizeTo(")) != NULL) { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Found start of window open" ); -#endif - close = strstr( popup+1, ");" ); - if ( close ) - { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Found end of window open" ); -#endif - for ( p = popup; p != (close+1); p++ ) - { - *p = ' '; - } -#ifdef POPUP_VERBOSE - fprintf(logfp, "Blocked %s\n", host_name ); -#endif - } - else + if (start_p) { -#ifdef POPUP_VERBOSE - fprintf(logfp, "Couldn't find end, turned into comment. Read boundary?\n" ); -#endif - *popup = '/'; - popup++; - *popup = '/'; - } - - - q=popup; /* by BREITENB NEW! */ - while (q>=buff) - { - if (*q==' ' || *q=='\t') - q--; - else break; - } - if (q>=buff) - { - if (*q=='=') *++q='1'; - /* result of popup is assigned to a variable! ensure success. hehehe. */ + strncpy(start_p, ".scrollTo(", 10); + log_error(LOG_LEVEL_POPUPS, "Blocked popup window resize"); + csp->flags |= CSP_FLAG_MODIFIED; } } - /* Filter all other crap like onUnload onExit etc. (by BREITENB) NEW!*/ - popup=strstr( buff, "'); - if (q) + close_p = strchr(start_p, '>'); + if (close_p) { /* we are now between */ - p=strstr(popup, "onUnload"); + p = strstr(start_p, "onUnload"); if (p) { - strncpy(p,"_nU_",4); + strncpy(p, "_nU_", 4); + csp->flags |= CSP_FLAG_MODIFIED; } - p=strstr(popup, "onExit"); + p = strstr(start_p, "onExit"); if (p) { - strncpy(p,"_nE_",4); + strncpy(p, "_nE_", 4); + csp->flags |= CSP_FLAG_MODIFIED; } } } } -#endif /* def KILLPOPUPS */ +#endif /* def FEATURE_KILL_POPUPS */ /* Local Variables: diff --git a/killpopup.h b/killpopup.h index 42602ea2..7d2eadf6 100644 --- a/killpopup.h +++ b/killpopup.h @@ -1,14 +1,14 @@ -#ifndef _KILLPOPUP_H -#define _KILLPOPUP_H -#define KILLPOPUP_H_VERSION "$Id: killpopup.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef KILLPOPUP_H_INCLUDED +#define KILLPOPUP_H_INCLUDED +#define KILLPOPUP_H_VERSION "$Id: killpopup.h,v 1.7 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/killpopup.h,v $ + * File : $Source: /cvsroot/ijbswa/current/killpopup.h,v $ * * Purpose : Handles the filtering of popups. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -34,23 +34,67 @@ * * Revisions : * $Log: killpopup.h,v $ + * Revision 1.7 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.6 2001/10/07 15:42:41 oes + * filter_popups now gets a csp pointer so it can raise the new + * CSP_FLAG_MODIFIED flag. + * + * Revision 1.5 2001/07/31 14:44:22 oes + * Deleted unused size parameter from filter_popups() + * + * Revision 1.4 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.3 2001/07/29 18:59:21 jongfoster + * - Changing #define _KILLPOPUP_H to KILLPOPUP_H_INCLUDED + * - Adding extern "C" {} + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:58:58 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ #include "project.h" -#ifdef KILLPOPUPS +#ifdef __cplusplus +extern "C" { +#endif -extern void filter_popups(struct client_state *csp, char *host_name, char *buff, int size); +#ifdef FEATURE_KILL_POPUPS -#endif /* def KILLPOPUPS */ +extern void filter_popups(char *buff, struct client_state *csp); + +#endif /* def FEATURE_KILL_POPUPS */ /* Revision control strings from this header and associated .c file */ extern const char killpopup_rcs[]; extern const char killpopup_h_rcs[]; -#endif /* ndef _KILLPOPUP_H */ +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef KILLPOPUP_H_INCLUDED */ /* Local Variables: diff --git a/list.c b/list.c new file mode 100644 index 00000000..6cd7f891 --- /dev/null +++ b/list.c @@ -0,0 +1,1064 @@ +const char list_rcs[] = "$Id: list.c,v 1.14 2002/03/24 13:25:43 swa Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/list.c,v $ + * + * Purpose : Declares functions to handle lists. + * Functions declared include: + * `destroy_list', `enlist' and `list_to_text' + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: list.c,v $ + * Revision 1.14 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.13 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.12 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.11 2001/10/23 21:21:03 jongfoster + * New error handling - error codes are now jb_errs, not ints. + * Changed the way map() handles out-of-memory, to dramatically + * reduce the amount of error-checking clutter needed. + * + * Revision 1.10 2001/09/16 17:30:24 jongfoster + * Fixing a compiler warning. + * + * Revision 1.9 2001/09/16 13:20:29 jongfoster + * Rewrite of list library. Now has seperate header and list_entry + * structures. Also added a large sprinking of assert()s to the list + * code. + * + * Revision 1.8 2001/08/07 14:00:20 oes + * Fixed comment + * + * Revision 1.7 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.6 2001/07/31 14:44:51 oes + * list_to_text() now appends empty line at end + * + * Revision 1.5 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.4 2001/06/29 13:30:22 oes + * - Added Convenience function enlist_unique_header(), + * which takes the Header name and value as separate + * arguments and thus saves the pain of sprintf()ing + * and determining the Header name length to enlist_unique + * - Improved comments + * - Removed logentry from cancelled commit + * + * Revision 1.3 2001/06/03 19:12:24 oes + * functions for new struct map, extended enlist_unique + * + * Revision 1.2 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.1 2001/05/31 21:11:53 jongfoster + * - Moved linked list support to new "list.c" file. + * Structure definitions are still in project.h, + * function prototypes are now in "list.h". + * - Added support for "struct list_share", which is identical + * to "struct list" except it saves memory by not duplicating + * the strings. Obviously, this only works if there is some + * other way of managing the memory used by the strings. + * (These list_share lists are used for lists which last + * for only 1 request, and where all the list entries are + * just coming directly from entries in the actionsfile.) + * Note that you still need to destroy list_share lists + * properly to free the nodes - it's only the strings + * which are shared. + * + * + *********************************************************************/ + + +#include "config.h" + +#ifndef _WIN32 +/* FIXME: The following headers are not needed for Win32. Are they + * needed on other platforms? + */ +#include +#include +#include +#include +#endif +#include + +#if !defined(_WIN32) && !defined(__OS2__) +#include +#endif + +#include + +#include "project.h" +#include "list.h" +#include "miscutil.h" + +const char list_h_rcs[] = LIST_H_VERSION; + + +static int list_is_valid (const struct list *the_list); + + +/********************************************************************* + * + * Function : list_init + * + * Description : Create a new, empty list in user-allocated memory. + * Caller should allocate a "struct list" variable, + * then pass it to this function. + * (Implementation note: Rather than calling this + * function, you can also just memset the memory to + * zero, e.g. if you have a larger structure you + * want to initialize quickly. However, that isn't + * really good design.) + * + * Parameters : + * 1 : the_list = pointer to list + * + * Returns : N/A + * + *********************************************************************/ +void init_list(struct list *the_list) +{ + memset(the_list, '\0', sizeof(*the_list)); +} + + +/********************************************************************* + * + * Function : destroy_list + * + * Description : Destroy a string list (opposite of list_init). + * On return, the memory used by the list entries has + * been freed, but not the memory used by the_list + * itself. You should not re-use the_list without + * calling list_init(). + * + * (Implementation note: You *can* reuse the_list + * without calling list_init(), but please don't. + * If you want to remove all entries from a list + * and still have a usable list, then use + * list_remove_all().) + * + * Parameters : + * 1 : the_list = pointer to list + * + * Returns : N/A + * + *********************************************************************/ +void destroy_list (struct list *the_list) +{ + struct list_entry *cur_entry, *next_entry; + + assert(the_list); + + for (cur_entry = the_list->first; cur_entry ; cur_entry = next_entry) + { + next_entry = cur_entry->next; + freez(cur_entry->str); + free(cur_entry); + } + + the_list->first = NULL; + the_list->last = NULL; +} + + +/********************************************************************* + * + * Function : list_is_valid + * + * Description : Check that a string list is valid. The intended + * usage is "assert(list_is_valid(the_list))". + * Currently this checks that "the_list->last" + * is correct, and that the list dosn't contain + * circular references. It is likely to crash if + * it's passed complete garbage. + * + * Parameters : + * 1 : the_list = pointer to list. Must be non-null. + * + * Returns : 1 if list is valid, 0 otherwise. + * + *********************************************************************/ +static int list_is_valid (const struct list *the_list) +{ + /* + * If you don't want this check, just change the line below + * from "#if 1" to "#if 0". + */ +#if 1 + const struct list_entry *cur_entry; + const struct list_entry *last_entry = NULL; + int length = 0; + + assert(the_list); + + for (cur_entry = the_list->first; cur_entry ; cur_entry = cur_entry->next) + { + last_entry = cur_entry; + + if (cur_entry->str) + { + /* + * Just check that this string can be accessed - i.e. it's a valid + * pointer. + */ + strlen(cur_entry->str); + } + + /* + * Check for looping back to first + */ + if ((length != 0) && (cur_entry == the_list->first)) + { + return 0; + } + + /* + * Arbitrarily limit length to prevent infinite loops. + */ + if (++length > 1000) + { + return 0; + } + + /* + * Check this isn't marked as the last entry, unless of course it's + * *really* the last entry. + */ + if ((the_list->last == cur_entry) && (cur_entry->next != NULL)) + { + /* This is the last entry, but there's data after it !!?? */ + return 0; + } + } + + return (the_list->last == last_entry); +#else + return 1; +#endif +} + +/********************************************************************* + * + * Function : enlist + * + * Description : Append a string into a specified string list. + * + * Parameters : + * 1 : the_list = pointer to list + * 2 : str = string to add to the list (maybe NULL) + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, the_list will be unchanged. + * + *********************************************************************/ +jb_err enlist(struct list *the_list, const char *str) +{ + struct list_entry *cur; + + assert(the_list); + assert(list_is_valid(the_list)); + + if (NULL == (cur = (struct list_entry *)zalloc(sizeof(*cur)))) + { + return JB_ERR_MEMORY; + } + + if (str) + { + if (NULL == (cur->str = strdup(str))) + { + free(cur); + return JB_ERR_MEMORY; + } + } + /* else { cur->str = NULL; } - implied by zalloc */ + + /* cur->next = NULL; - implied by zalloc */ + + if (the_list->last) + { + the_list->last->next = cur; + the_list->last = cur; + } + else + { + the_list->first = cur; + the_list->last = cur; + } + + assert(list_is_valid(the_list)); + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : enlist_first + * + * Description : Append a string as first element into a specified + * string list. + * + * Parameters : + * 1 : the_list = pointer to list + * 2 : str = string to add to the list (maybe NULL) + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, the_list will be unchanged. + * + *********************************************************************/ +jb_err enlist_first(struct list *the_list, const char *str) +{ + struct list_entry *cur; + + assert(the_list); + assert(list_is_valid(the_list)); + + if (NULL == (cur = (struct list_entry *)zalloc(sizeof(*cur)))) + { + return JB_ERR_MEMORY; + } + + if (str) + { + if (NULL == (cur->str = strdup(str))) + { + free(cur); + return JB_ERR_MEMORY; + } + } + /* else { cur->str = NULL; } - implied by zalloc */ + + cur->next = the_list->first; + + the_list->first = cur; + if (the_list->last == NULL) + { + the_list->last = cur; + } + + assert(list_is_valid(the_list)); + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : enlist_unique + * + * Description : Append a string into a specified string list, + * if & only if it's not there already. + * If the num_significant_chars argument is nonzero, + * only compare up to the nth character. + * + * Parameters : + * 1 : the_list = pointer to list + * 2 : str = string to add to the list + * 3 : num_significant_chars = number of chars to use + * for uniqueness test, or 0 to require an exact match. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, the_list will be unchanged. + * "Success" does not indicate whether or not the + * item was already in the list. + * + *********************************************************************/ +jb_err enlist_unique(struct list *the_list, const char *str, + size_t num_significant_chars) +{ + struct list_entry *cur_entry; + + assert(the_list); + assert(list_is_valid(the_list)); + assert(str); + assert(num_significant_chars >= 0); + assert(num_significant_chars <= strlen(str)); + + if (num_significant_chars > 0) + { + for (cur_entry = the_list->first; cur_entry != NULL; cur_entry = cur_entry->next) + { + if ( (cur_entry->str != NULL) + && (0 == strncmp(str, cur_entry->str, num_significant_chars))) + { + /* Already there */ + return JB_ERR_OK; + } + } + } + else + { + /* Test whole string */ + for (cur_entry = the_list->first; cur_entry != NULL; cur_entry = cur_entry->next) + { + if ( (cur_entry->str != NULL) && (0 == strcmp(str, cur_entry->str))) + { + /* Already there */ + return JB_ERR_OK; + } + } + } + + return enlist(the_list, str); +} + + +/********************************************************************* + * + * Function : enlist_unique_header + * + * Description : Make a HTTP header from the two strings name and value, + * and append the result into a specified string list, + * if & only if there isn't already a header with that name. + * + * Parameters : + * 1 : the_list = pointer to list + * 2 : name = HTTP header name (e.g. "Content-type") + * 3 : value = HTTP header value (e.g. "text/html") + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, the_list will be unchanged. + * "Success" does not indicate whether or not the + * header was already in the list. + * + *********************************************************************/ +jb_err enlist_unique_header(struct list *the_list, const char *name, + const char *value) +{ + size_t length; + jb_err result; + char *str; + + assert(the_list); + assert(list_is_valid(the_list)); + assert(name); + assert(value); + + length = strlen(name) + 2; + if (NULL == (str = (char *)malloc(length + strlen(value) + 1))) + { + return JB_ERR_MEMORY; + } + strcpy(str, name); + str[length - 2] = ':'; + str[length - 1] = ' '; + strcpy(str + length, value); + + result = enlist_unique(the_list, str, length); + + free(str); + + assert(list_is_valid(the_list)); + + return result; + +} + + +/********************************************************************* + * + * Function : list_remove_all + * + * Description : Remove all entries from a list. On return, the_list + * is a valid, empty list. Note that this is similar + * to destroy_list(), but the difference is that this + * function guarantees that the list structure is still + * valid after the call. + * + * Parameters : + * 1 : the_list = pointer to list + * + * Returns : N/A + * + *********************************************************************/ +void list_remove_all(struct list *the_list) +{ + struct list_entry *cur_entry; + struct list_entry *next_entry; + + assert(the_list); + assert(list_is_valid(the_list)); + + for (cur_entry = the_list->first; cur_entry ; cur_entry = next_entry) + { + next_entry = cur_entry->next; + freez(cur_entry->str); + free(cur_entry); + } + + the_list->first = the_list->last = NULL; + + assert(list_is_valid(the_list)); +} + + +/********************************************************************* + * + * Function : list_to_text + * + * Description : "Flatten" a string list into 1 long \r\n delimited string, + * adding an empty line at the end. NULL entries are ignored. + * This function does not change the_list. + * + * Parameters : + * 1 : the_list = pointer to list + * + * Returns : NULL on malloc error, else new long string. + * Caller must free() it. + * + *********************************************************************/ +char *list_to_text(const struct list *the_list) +{ + struct list_entry *cur_entry; + char *ret = NULL; + char *s; + size_t size = 2; + + assert(the_list); + assert(list_is_valid(the_list)); + + for (cur_entry = the_list->first; cur_entry ; cur_entry = cur_entry->next) + { + if (cur_entry->str) + { + size += strlen(cur_entry->str) + 2; + } + } + + if ((ret = (char *)malloc(size + 1)) == NULL) + { + return NULL; + } + + ret[size] = '\0'; + + s = ret; + + for (cur_entry = the_list->first; cur_entry ; cur_entry = cur_entry->next) + { + if (cur_entry->str) + { + strcpy(s, cur_entry->str); + s += strlen(s); + *s++ = '\r'; *s++ = '\n'; + } + } + *s++ = '\r'; *s++ = '\n'; + + return ret; +} + + +/********************************************************************* + * + * Function : list_remove_item + * + * Description : Remove a string from a specified string list. + * + * Parameters : + * 1 : the_list = pointer to list + * 2 : str = string to remove from the list - non-NULL + * + * Returns : Number of times it was removed. + * + *********************************************************************/ +int list_remove_item(struct list *the_list, const char *str) +{ + struct list_entry *prev = NULL; + struct list_entry *cur; + struct list_entry *next; + int count = 0; + + assert(the_list); + assert(list_is_valid(the_list)); + assert(str); + + cur = the_list->first; + + while (cur != NULL) + { + next = cur->next; + + if ((cur->str != NULL) && (0 == strcmp(str, cur->str))) + { + count++; + + if (prev != NULL) + { + prev->next = next; + } + else + { + the_list->first = next; + } + free((char *)cur->str); + free(cur); + } + else + { + prev = cur; + } + cur = next; + } + + the_list->last = prev; + + assert(list_is_valid(the_list)); + + return count; +} + + +/********************************************************************* + * + * Function : list_remove_list + * + * Description : Remove all strings in one list from another list. + * This is currently a brute-force algorithm + * (it compares every pair of strings). + * + * Parameters : + * 1 : dest = list to change + * 2 : src = list of strings to remove + * + * Returns : Total number of strings removed. + * + *********************************************************************/ +int list_remove_list(struct list *dest, const struct list *src) +{ + struct list_entry *cur; + int count = 0; + + assert(src); + assert(dest); + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + for (cur = src->first; cur != NULL; cur = cur->next) + { + if (cur->str != NULL) + { + count += list_remove_item(dest, cur->str); + } + } + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return count; +} + + +/********************************************************************* + * + * Function : list_duplicate + * + * Description : Copy a string list + * + * Parameters : + * 1 : dest = Destination list. Must be a valid list. + * All existing entries will be removed. + * 1 : src = pointer to source list for copy. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, dest will be empty. + * + *********************************************************************/ +jb_err list_duplicate(struct list *dest, const struct list *src) +{ + struct list_entry * cur_src; + struct list_entry * cur_dest; + + assert(src); + assert(dest); + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + list_remove_all(dest); + + /* Need to process first entry specially so we can set dest->first */ + cur_src = src->first; + if (cur_src) + { + cur_dest = dest->first = (struct list_entry *)zalloc(sizeof(*cur_dest)); + if (cur_dest == NULL) + { + destroy_list(dest); + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_MEMORY; + } + + if (cur_src->str) + { + cur_dest->str = strdup(cur_src->str); + if (cur_dest->str == NULL) + { + destroy_list(dest); + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_MEMORY; + } + } + /* else { cur_dest->str = NULL; } - implied by zalloc */ + + /* Now process the rest */ + for (cur_src = cur_src->next; cur_src; cur_src = cur_src->next) + { + cur_dest = cur_dest->next = (struct list_entry *)zalloc(sizeof(*cur_dest)); + if (cur_dest == NULL) + { + destroy_list(dest); + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_MEMORY; + } + if (cur_src->str) + { + cur_dest->str = strdup(cur_src->str); + if (cur_dest->str == NULL) + { + destroy_list(dest); + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_MEMORY; + } + } + /* else { cur_dest->str = NULL; } - implied by zalloc */ + } + + dest->last = cur_dest; + } + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : list_append_list_unique + * + * Description : Append a string list to another list. + * Duplicate items are not added. + * + * Parameters : + * 1 : dest = pointer to destination list for merge. + * 2 : src = pointer to source for merge. + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * On error, some (but not all) of src might have + * been copied into dest. + * + *********************************************************************/ +jb_err list_append_list_unique(struct list *dest, const struct list *src) +{ + struct list_entry * cur; + + assert(src); + assert(dest); + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + for (cur = src->first; cur; cur = cur->next) + { + if (cur->str) + { + if (enlist_unique(dest, cur->str, 0)) + { + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_MEMORY; + } + } + } + + assert(list_is_valid(src)); + assert(list_is_valid(dest)); + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : list_is_empty + * + * Description : Test whether a list is empty. Does not change the list. + * + * Parameters : + * 1 : the_list = pointer to list to test. + * + * Returns : Nonzero iff the list contains no entries. + * + *********************************************************************/ +int list_is_empty(const struct list *the_list) +{ + assert(the_list); + assert(list_is_valid(the_list)); + + return (the_list->first == NULL); +} + + +/********************************************************************* + * + * Function : new_map + * + * Description : Create a new, empty map. + * + * Parameters : N/A + * + * Returns : A new, empty map, or NULL if out of memory. + * + *********************************************************************/ +struct map *new_map(void) +{ + return (struct map *) zalloc(sizeof(struct map)); +} + + +/********************************************************************* + * + * Function : free_map + * + * Description : Free the memory occupied by a map and its + * depandant strings + * + * Parameters : + * 1 : the_map = map to be freed. May be NULL. + * + * Returns : N/A + * + *********************************************************************/ +void free_map(struct map *the_map) +{ + struct map_entry *cur_entry; + struct map_entry *next_entry; + + if (the_map == NULL) + { + return; + } + + for (cur_entry = the_map->first; cur_entry != NULL; cur_entry = next_entry) + { + freez(cur_entry->name); + freez(cur_entry->value); + + next_entry = cur_entry->next; + free(cur_entry); + } + + the_map->first = the_map->last = NULL; + + free(the_map); +} + + +/********************************************************************* + * + * Function : map + * + * Description : Add a mapping from given name to given value to a + * given map. + * + * Note: Since all strings will be free()d in free_map() + * later, set the copy flags for constants or + * strings that will be independantly free()d. + * + * Note2: This function allows NULL parameters - it + * returns JB_ERR_MEMORY in that case. + * + * Note3: If this function returns JB_ERR_MEMORY, + * it will free(name) unless you specify + * name_needs_copying, and similarly it will + * free(value) unless you specify + * value_needs_copying. + * + * Due to Note2 and Note3 above, the following code + * is legal, and will never crash or leak memory even + * if the system runs out of memory: + * + * err = map(mymap, "xyz", 1, html_encode(somestring), 0); + * + * err will be set to JB_ERR_MEMORY if either call runs + * out-of-memory. Without these features, you would + * need to check the return value of html_encode in the + * above example for NULL, which (at least) doubles the + * amount of error-checking code needed. + * + * Parameters : + * 1 : the_map = map to add to + * 2 : name = name to add + * 3 : name_needs_copying = flag set if a copy of name should be used + * 4 : value = value to add + * 5 : value_needs_copying = flag set if a copy of value should be used + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err map(struct map *the_map, + const char *name, int name_needs_copying, + const char *value, int value_needs_copying) +{ + struct map_entry *new_entry; + + assert(the_map); + + if ( (NULL == value) + || (NULL == name) + || (NULL == (new_entry = zalloc(sizeof(*new_entry)))) ) + { + if ((name != NULL) && (!name_needs_copying)) + { + free((char *)name); + } + if ((value != NULL) && (!value_needs_copying)) + { + free((char *)value); + } + return JB_ERR_MEMORY; + } + + if (name_needs_copying) + { + if (NULL == (name = strdup(name))) + { + free(new_entry); + if (!value_needs_copying) + { + free((char *)value); + } + return JB_ERR_MEMORY; + } + } + + if (value_needs_copying) + { + if (NULL == (value = strdup(value))) + { + free((char *)name); + free(new_entry); + return JB_ERR_MEMORY; + } + } + + new_entry->name = name; + new_entry->value = value; + /* new_entry->next = NULL; - implied by zalloc */ + + if (the_map->last) + { + the_map->last->next = new_entry; + the_map->last = new_entry; + } + else + { + the_map->first = new_entry; + the_map->last = new_entry; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : lookup + * + * Description : Look up an item with a given name in a map, and + * return its value + * + * Parameters : + * 1 : the_map = map to look in + * 2 : name = name parameter to look for + * + * Returns : the value if found, else the empty string. + * Return value is alloced as part of the map, so + * it is freed when the map is destroyed. Caller + * must not free or modify it. + * + *********************************************************************/ +const char *lookup(const struct map *the_map, const char *name) +{ + const struct map_entry *cur_entry; + + assert(the_map); + assert(name); + + for (cur_entry = the_map->first; cur_entry != NULL; cur_entry = cur_entry->next) + { + if (!strcmp(name, cur_entry->name)) + { + return cur_entry->value; + } + } + return ""; +} + + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/list.h b/list.h new file mode 100644 index 00000000..afa44238 --- /dev/null +++ b/list.h @@ -0,0 +1,164 @@ +#ifndef LIST_H_INCLUDED +#define LIST_H_INCLUDED +#define LIST_H_VERSION "$Id: list.h,v 1.11 2002/03/24 13:25:43 swa Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/list.h,v $ + * + * Purpose : Declares functions to handle lists. + * Functions declared include: + * `destroy_list', `enlist' and `list_to_text' + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: list.h,v $ + * Revision 1.11 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.10 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.9 2001/10/23 21:21:03 jongfoster + * New error handling - error codes are now jb_errs, not ints. + * Changed the way map() handles out-of-memory, to dramatically + * reduce the amount of error-checking clutter needed. + * + * Revision 1.8 2001/09/16 17:30:24 jongfoster + * Fixing a compiler warning. + * + * Revision 1.7 2001/09/16 13:20:29 jongfoster + * Rewrite of list library. Now has seperate header and list_entry + * structures. Also added a large sprinking of assert()s to the list + * code. + * + * Revision 1.6 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.5 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.4 2001/06/29 13:30:37 oes + * - Introduced enlist_unique_header() + * - Removed logentry from cancelled commit + * + * Revision 1.3 2001/06/03 11:03:48 oes + * introduced functions for new list type "map": map(), lookup(), + * free_map(), and extended enlist_unique + * + * Revision 1.2 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.1 2001/05/31 21:11:53 jongfoster + * - Moved linked list support to new "list.c" file. + * Structure definitions are still in project.h, + * function prototypes are now in "list.h". + * - Added support for "struct list_share", which is identical + * to "struct list" except it saves memory by not duplicating + * the strings. Obviously, this only works if there is some + * other way of managing the memory used by the strings. + * (These list_share lists are used for lists which last + * for only 1 request, and where all the list entries are + * just coming directly from entries in the actionsfile.) + * Note that you still need to destroy list_share lists + * properly to free the nodes - it's only the strings + * which are shared. + * + * + *********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + + +/* + * struct list + * + * A linked list class. + */ + +extern void init_list (struct list *the_list); +extern void destroy_list (struct list *the_list); + +extern jb_err enlist (struct list *the_list, const char *str); +extern jb_err enlist_unique (struct list *the_list, const char *str, size_t num_significant_chars); +extern jb_err enlist_unique_header (struct list *the_list, const char *name, const char *value); +extern jb_err enlist_first (struct list *the_list, const char *str); +extern jb_err list_append_list_unique(struct list *dest, const struct list *src); +extern jb_err list_duplicate (struct list *dest, const struct list *src); + +extern int list_remove_item(struct list *the_list, const char *str); +extern int list_remove_list(struct list *dest, const struct list *src); +extern void list_remove_all (struct list *the_list); + +extern int list_is_empty(const struct list *the_list); + +extern char * list_to_text(const struct list *the_list); + + +/* + * struct map + * + * A class which maps names to values. + * + * Note: You must allocate this through new_map() and free it + * through free_map(). + */ + +extern struct map * new_map (void); +extern void free_map (struct map * the_map); + +extern int map (struct map * the_map, + const char * name, int name_needs_copying, + const char * value, int value_needs_copying); +extern const char * lookup (const struct map * the_map, const char * name); + + +/* Revision control strings from this header and associated .c file */ +extern const char list_rcs[]; +extern const char list_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef LIST_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/loadcfg.c b/loadcfg.c index f29d6654..1d6a10eb 100644 --- a/loadcfg.c +++ b/loadcfg.c @@ -1,21 +1,21 @@ -const char loadcfg_rcs[] = "$Id: loadcfg.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char loadcfg_rcs[] = "$Id: loadcfg.c,v 1.47 2002/05/12 21:36:29 jongfoster Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/loadcfg.c,v $ + * File : $Source: /cvsroot/ijbswa/current/loadcfg.c,v $ * * Purpose : Loads settings from the configuration file into - * global variables. This file contains both the + * global variables. This file contains both the * routine to load the configuration and the global * variables it writes to. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -35,6 +35,268 @@ const char loadcfg_rcs[] = "$Id: loadcfg.c,v 1.1 2001/05/13 21:57:06 administrat * * Revisions : * $Log: loadcfg.c,v $ + * Revision 1.47 2002/05/12 21:36:29 jongfoster + * Correcting function comments + * + * Revision 1.46 2002/04/26 12:55:14 oes + * - New option "user-manual", defaults to our site + * via project.h #define + * - savearg now embeds option names in help links + * + * Revision 1.45 2002/04/24 02:11:54 oes + * Jon's multiple AF patch: Allow up to MAX_ACTION_FILES actionsfile options + * + * Revision 1.44 2002/04/08 20:37:13 swa + * fixed JB spelling + * + * Revision 1.43 2002/04/08 20:36:50 swa + * fixed JB spelling + * + * Revision 1.42 2002/04/05 15:50:15 oes + * fix for invalid HTML proxy_args + * + * Revision 1.41 2002/03/31 17:19:00 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.40 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.39 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.38 2002/03/24 13:05:48 jongfoster + * Renaming re_filterfile to filterfile + * + * Revision 1.37 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.36 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.35 2002/03/07 03:52:44 oes + * Set logging to tty for --no-daemon mode + * + * Revision 1.34 2002/03/06 23:14:35 jongfoster + * Trivial cosmetic changes to make function comments easier to find. + * + * Revision 1.33 2002/03/05 04:52:42 oes + * Deleted non-errlog debugging code + * + * Revision 1.32 2002/03/04 18:24:53 oes + * Re-enabled output of unknown config directive hash + * + * Revision 1.31 2002/03/03 15:07:20 oes + * Re-enabled automatic config reloading + * + * Revision 1.30 2002/01/22 23:31:43 jongfoster + * Replacing strsav() with string_append() + * + * Revision 1.29 2002/01/17 21:02:30 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Revision 1.28 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.27 2001/11/07 00:02:13 steudten + * Add line number in error output for lineparsing for + * actionsfile and configfile. + * Special handling for CLF added. + * + * Revision 1.26 2001/11/05 21:41:43 steudten + * Add changes to be a real daemon just for unix os. + * (change cwd to /, detach from controlling tty, set + * process group and session leader to the own process. + * Add DBG() Macro. + * Add some fatal-error log message for failed malloc(). + * Add '-d' if compiled with 'configure --with-debug' to + * enable debug output. + * + * Revision 1.25 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.24 2001/10/23 21:40:30 jongfoster + * Added support for enable-edit-actions and enable-remote-toggle config + * file options. + * + * Revision 1.23 2001/10/07 15:36:00 oes + * Introduced new config option "buffer-limit" + * + * Revision 1.22 2001/09/22 16:36:59 jongfoster + * Removing unused parameter fs from read_config_line() + * + * Revision 1.21 2001/09/16 17:10:43 jongfoster + * Moving function savearg() here, since it was the only thing left in + * showargs.c. + * + * Revision 1.20 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.19 2001/07/15 17:45:16 jongfoster + * Removing some unused #includes + * + * Revision 1.18 2001/07/13 14:01:14 oes + * - Removed all #ifdef PCRS + * - Removed vim-settings + * + * Revision 1.17 2001/06/29 13:31:03 oes + * - Improved comments + * - Fixed (actionsfile) and sorted hashes + * - Introduced admin_address and proxy-info-url + * as config parameters + * - Renamed config->proxy_args_invocation (which didn't have + * the invocation but the options!) to config->proxy_args + * - Various adaptions + * - Removed logentry from cancelled commit + * + * Revision 1.16 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.15 2001/06/07 23:13:40 jongfoster + * Merging ACL and forward files into config file. + * Cosmetic: Sorting config file options alphabetically. + * Cosmetic: Adding brief syntax comments to config file options. + * + * Revision 1.14 2001/06/07 14:46:25 joergs + * Missing make_path() added for re_filterfile. + * + * Revision 1.13 2001/06/05 22:33:54 jongfoster + * + * Fixed minor memory leak. + * Also now uses make_path to prepend the pathnames. + * + * Revision 1.12 2001/06/05 20:04:09 jongfoster + * Now uses _snprintf() in place of snprintf() under Win32. + * + * Revision 1.11 2001/06/04 18:31:58 swa + * files are now prefixed with either `confdir' or `logdir'. + * `make redhat-dist' replaces both entries confdir and logdir + * with redhat values + * + * Revision 1.10 2001/06/03 19:11:54 oes + * introduced confdir option + * + * Revision 1.9 2001/06/01 20:06:24 jongfoster + * Removed support for "tinygif" option - moved to actions file. + * + * Revision 1.8 2001/05/31 21:27:13 jongfoster + * Removed many options from the config file and into the + * "actions" file: add_forwarded, suppress_vanilla_wafer, + * wafer, add_header, user_agent, referer, from + * Also globally replaced "permission" with "action". + * + * Revision 1.7 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.6 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.5 2001/05/25 22:34:30 jongfoster + * Hard tabs->Spaces + * + * Revision 1.4 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:58:58 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -49,43 +311,46 @@ const char loadcfg_rcs[] = "$Id: loadcfg.c,v 1.1 2001/05/13 21:57:06 administrat #include #include #include +#include #ifdef _WIN32 -# include +# ifndef STRICT +# define STRICT +# endif # include -# include -# include -# ifdef TOGGLE -# include -# endif /* def TOGGLE */ # include "win32.h" # ifndef _WIN_CONSOLE # include "w32log.h" # endif /* ndef _WIN_CONSOLE */ +/* VC++ has "_snprintf", not "snprintf" */ +#define snprintf _snprintf + #else /* ifndef _WIN32 */ +#ifndef __OS2__ # include -# include # include +#endif +# include # include # include #endif #include "loadcfg.h" +#include "list.h" #include "jcc.h" #include "filters.h" #include "loaders.h" -#include "showargs.h" -#include "parsers.h" -#include "killpopup.h" #include "miscutil.h" #include "errlog.h" -#include "jbsockets.h" -#include "gateway.h" +#include "ssplit.h" +#include "encode.h" +#include "urlmatch.h" +#include "cgi.h" const char loadcfg_h_rcs[] = LOADCFG_H_VERSION; @@ -100,155 +365,171 @@ const char loadcfg_h_rcs[] = LOADCFG_H_VERSION; #define ijb_isupper(__X) isupper((int)(unsigned char)(__X)) #define ijb_tolower(__X) tolower((int)(unsigned char)(__X)) -static const char VANILLA_WAFER[] = - "NOTICE=TO_WHOM_IT_MAY_CONCERN_" - "Do_not_send_me_any_copyrighted_information_other_than_the_" - "document_that_I_am_requesting_or_any_of_its_necessary_components._" - "In_particular_do_not_send_me_any_cookies_that_" - "are_subject_to_a_claim_of_copyright_by_anybody._" - "Take_notice_that_I_refuse_to_be_bound_by_any_license_condition_" - "(copyright_or_otherwise)_applying_to_any_cookie._"; - -#ifdef TOGGLE +#ifdef FEATURE_TOGGLE /* by haroon - indicates if ijb is enabled */ -int g_bToggleIJB = 1; /* JunkBusters is enabled by default. */ -#endif - -int debug = 0; -int multi_threaded = 1; - -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) -int tinygif = 0; -const char *tinygifurl = NULL; -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ - -const char *logfile = NULL; +int g_bToggleIJB = 1; /* Privoxy is enabled by default. */ +#endif /* def FEATURE_TOGGLE */ +/* The filename of the configfile */ const char *configfile = NULL; -const char *blockfile = NULL; -const char *cookiefile = NULL; -const char *forwardfile = NULL; - -#ifdef ACL_FILES -const char *aclfile = NULL; -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST -const char *imagefile = NULL; -#endif /* def USE_IMAGE_LIST */ +/* + * CGI functions will later need access to the invocation args, + * so we will make argc and argv global. + */ +int Argc = 0; +const char **Argv = NULL; -#ifdef KILLPOPUPS -const char *popupfile = NULL; -int kill_all_popups = 0; /* Not recommended really ... */ -#endif /* def KILLPOPUPS */ +static struct file_list *current_configfile = NULL; -#ifdef PCRS -const char *re_filterfile = NULL; -int re_filter_all = 0; -#endif /* def PCRS */ -#ifdef TRUST_FILES -const char *trustfile = NULL; -#endif /* def TRUST_FILES */ +/* + * This takes the "cryptic" hash of each keyword and aliases them to + * something a little more readable. This also makes changing the + * hash values easier if they should change or the hash algorthm changes. + * Use the included "hash" program to find out what the hash will be + * for any string supplied on the command line. (Or just put it in the + * config file and read the number from the error message in the log). + * + * Please keep this list sorted alphabetically (but with the Windows + * console and GUI specific options last). + */ -#ifdef JAR_FILES -const char *jarfile = NULL; -FILE *jar = NULL; -#endif /* def JAR_FILES */ +#define hash_actions_file 1196306641ul /* "actionsfile" */ +#define hash_admin_address 4112573064ul /* "admin-address" */ +#define hash_buffer_limit 1881726070ul /* "buffer-limit */ +#define hash_confdir 1978389ul /* "confdir" */ +#define hash_debug 78263ul /* "debug" */ +#define hash_deny_access 1227333715ul /* "deny-access" */ +#define hash_enable_edit_actions 2517097536ul /* "enable-edit-actions" */ +#define hash_enable_remote_toggle 2979744683ul /* "enable-remote-toggle" */ +#define hash_filterfile 250887266ul /* "filterfile" */ +#define hash_forward 2029845ul /* "forward" */ +#define hash_forward_socks4 3963965521ul /* "forward-socks4" */ +#define hash_forward_socks4a 2639958518ul /* "forward-socks4a" */ +#define hash_jarfile 2046641ul /* "jarfile" */ +#define hash_listen_address 1255650842ul /* "listen-address" */ +#define hash_logdir 422889ul /* "logdir" */ +#define hash_logfile 2114766ul /* "logfile" */ +#define hash_permit_access 3587953268ul /* "permit-access" */ +#define hash_proxy_info_url 3903079059ul /* "proxy-info-url" */ +#define hash_single_threaded 4250084780ul /* "single-threaded" */ +#define hash_suppress_blocklists 1948693308ul /* "suppress-blocklists" */ +#define hash_toggle 447966ul /* "toggle" */ +#define hash_trust_info_url 430331967ul /* "trust-info-url" */ +#define hash_trustfile 56494766ul /* "trustfile" */ +#define hash_usermanual 1416668518ul /* "user-manual" */ +#define hash_activity_animation 1817904738ul /* "activity-animation" */ +#define hash_close_button_minimizes 3651284693ul /* "close-button-minimizes" */ +#define hash_hide_console 2048809870ul /* "hide-console" */ +#define hash_log_buffer_size 2918070425ul /* "log-buffer-size" */ +#define hash_log_font_name 2866730124ul /* "log-font-name" */ +#define hash_log_font_size 2866731014ul /* "log-font-size" */ +#define hash_log_highlight_messages 4032101240ul /* "log-highlight-messages" */ +#define hash_log_max_lines 2868344173ul /* "log-max-lines" */ +#define hash_log_messages 2291744899ul /* "log-messages" */ +#define hash_show_on_task_bar 215410365ul /* "show-on-task-bar" */ + + +static void savearg(char *command, char *argument, struct configuration_spec * config); -const char *referrer = NULL; -const char *uagent = NULL; -const char *from = NULL; +/********************************************************************* + * + * Function : unload_configfile + * + * Description : Free the config structure and all components. + * + * Parameters : + * 1 : data: struct configuration_spec to unload + * + * Returns : N/A + * + *********************************************************************/ +void unload_configfile (void * data) +{ + struct configuration_spec * config = (struct configuration_spec *)data; + struct forward_spec *cur_fwd = config->forward; +#ifdef FEATURE_ACL + struct access_control_list *cur_acl = config->acl; + int i; -#ifndef SPLIT_PROXY_ARGS -const char *suppress_message = NULL; -#endif /* ndef SPLIT_PROXY_ARGS */ + while (cur_acl != NULL) + { + struct access_control_list * next_acl = cur_acl->next; + free(cur_acl); + cur_acl = next_acl; + } + config->acl = NULL; +#endif /* def FEATURE_ACL */ -int suppress_vanilla_wafer = 0; -int add_forwarded = 0; + while (cur_fwd != NULL) + { + struct forward_spec * next_fwd = cur_fwd->next; + free_url_spec(cur_fwd->url); -struct list wafer_list[1]; -struct list xtra_list[1]; + freez(cur_fwd->gateway_host); + freez(cur_fwd->forward_host); + free(cur_fwd); + cur_fwd = next_fwd; + } + config->forward = NULL; -#ifdef TRUST_FILES -struct list trust_info[1]; -struct url_spec *trust_list[64]; -#endif /* def TRUST_FILES */ +#ifdef FEATURE_COOKIE_JAR + if ( NULL != config->jar ) + { + fclose( config->jar ); + config->jar = NULL; + } +#endif /* def FEATURE_COOKIE_JAR */ -/* - * Port and IP to bind to. - * Defaults to HADDR_DEFAULT:HADDR_PORT == 127.0.0.1:8000 - */ -const char *haddr = NULL; -int hport = 0; + freez(config->confdir); + freez(config->logdir); -#ifndef SPLIT_PROXY_ARGS -int suppress_blocklists = 0; /* suppress listing sblock and simage */ -#endif /* ndef SPLIT_PROXY_ARGS */ + freez(config->haddr); + freez(config->logfile); -struct proxy_args proxy_args[1]; + for (i = 0; i < MAX_ACTION_FILES; i++) + { + freez(config->actions_file_short[i]); + freez(config->actions_file[i]); + } -int configret = 0; -int config_changed = 0; + freez(config->admin_address); + freez(config->proxy_info_url); + freez(config->proxy_args); + freez(config->usermanual); +#ifdef FEATURE_COOKIE_JAR + freez(config->jarfile); +#endif /* def FEATURE_COOKIE_JAR */ -/* - * The load_config function is now going to call `init_proxy_args', - * so it will need argc and argv. Since load_config will also be - * a signal handler, we need to have these globally available. - */ -int Argc = 0; -const char **Argv = NULL; + freez(config->re_filterfile); +} -/* - * This takes the "cryptic" hash of each keyword and aliases them to - * something a little more readable. This also makes changing the - * hash values easier if they should change or the hash algorthm changes. - * Use the included "hash" program to find out what the hash will be - * for any string supplied on the command line. - */ -#define hash_trustfile 56494766ul -#define hash_trust_info_url 449869467ul -#define hash_debug 78263ul -#define hash_tinygif 2227702ul -#define hash_add_forwarded_header 3191044770ul -#define hash_single_threaded 4250084780ul -#define hash_suppress_vanilla_wafer 3121233547ul -#define hash_wafer 89669ul -#define hash_add_header 237434619ul -#define hash_cookiefile 247469766ul -#define hash_logfile 2114766ul -#define hash_blockfile 48845391ul -#define hash_imagefile 51447891ul -#define hash_jarfile 2046641ul -#define hash_listen_address 1255650842ul -#define hash_forwardfile 1268669141ul -#define hash_aclfile 1908516ul -#define hash_popupfile 54623516ul -#define hash_kill_all_popups 2311539906ul -#define hash_re_filterfile 3877522444ul -#define hash_re_filter_all 3877521376ul -#define hash_user_agent 283326691ul -#define hash_referrer 10883969ul -#define hash_referer 2176719ul -#define hash_from 16264ul -#define hash_hide_console 2048809870ul -#define hash_include_stats 2174146548ul -#define hash_suppress_blocklists 1948693308ul -#define hash_toggle 447966ul - -#define hash_activity_animation 1817904738ul -#define hash_log_messages 2291744899ul -#define hash_log_highlight_messages 4032101240ul -#define hash_log_buffer_size 2918070425ul -#define hash_log_max_lines 2868344173ul -#define hash_log_font_name 2866730124ul -#define hash_log_font_size 2866731014ul -#define hash_show_on_task_bar 215410365ul -#define hash_close_button_minimizes 3651284693ul +#ifdef FEATURE_GRACEFUL_TERMINATION +/********************************************************************* + * + * Function : unload_current_config_file + * + * Description : Unloads current config file - reset to state at + * beginning of program. + * + * Parameters : None + * + * Returns : N/A + * + *********************************************************************/ +void unload_current_config_file(void) +{ + if (current_configfile) + { + current_configfile->unloader = unload_configfile; + current_configfile = NULL; + } +} +#endif /********************************************************************* @@ -257,608 +538,1053 @@ const char **Argv = NULL; * * Description : Load the config file and all parameters. * - * Parameters : - * 1 : signum : this can be the signal SIGHUP or 0 (if from main). - * In any case, we just ignore this and reload the config file. + * Parameters : None * - * Returns : configret : 0 => Ok, everything else is an error. - * Note: we use configret since a signal handler cannot - * return a value, and this function does double duty. - * Ie. Is is called from main and from signal( SIGHUP ); + * Returns : The configuration_spec, or NULL on error. * *********************************************************************/ -void load_config( int signum ) +struct configuration_spec * load_config(void) { - char buf[BUFSIZ]; + char buf[BUFFER_SIZE]; char *p, *q; FILE *configfp = NULL; + struct configuration_spec * config = NULL; + struct client_state * fake_csp; + struct file_list *fs; + unsigned long linenum = 0; + int i; - configret = 0; - config_changed = 1; + if ( !check_file_changed(current_configfile, configfile, &fs)) + { + /* No need to load */ + return ((struct configuration_spec *)current_configfile->f); + } + if (!fs) + { + log_error(LOG_LEVEL_FATAL, "can't check configuration file '%s': %E", + configfile); + } log_error(LOG_LEVEL_INFO, "loading configuration file '%s':", configfile); - init_proxy_args(Argc, Argv); +#ifdef FEATURE_TOGGLE + g_bToggleIJB = 1; +#endif /* def FEATURE_TOGGLE */ + fs->f = config = (struct configuration_spec *)zalloc(sizeof(*config)); - /* (Waste of memory [not quite a "leak"] here. The - * last blockfile/popupfile/... etc will not be - * unloaded until we load a new one. If the - * block/popup/... feature has been disabled in - * the new config file, then we're wasting some - * memory we could otherwise reclaim. - */ + if (config==NULL) + { + freez(fs->filename); + freez(fs); + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + } - /* Disable all loaders. */ - remove_all_loaders(); + /* + * This is backwards from how it's usually done. + * Following the usual pattern, "fs" would be stored in a member + * variable in "csp", and then we'd access "config" from "fs->f", + * using a cast. However, "config" is used so often that a + * cast each time would be very ugly, and the extra indirection + * would waste CPU cycles. Therefore we store "config" in + * "csp->config", and "fs" in "csp->config->config_file_list". + */ + config->config_file_list = fs; /* - * Reset to as close to startup state as we can. - * But leave changing the logfile until after we're done loading. + * Set to defaults */ + config->multi_threaded = 1; + config->hport = HADDR_PORT; + config->buffer_limit = 4096 * 1024; + config->usermanual = strdup(USER_MANUAL_URL); + config->proxy_args = strdup(""); - #ifdef JAR_FILES - if ( NULL != jar ) + if ((configfp = fopen(configfile, "r")) == NULL) { - fclose( jar ); - jar = NULL; + log_error(LOG_LEVEL_FATAL, "can't open configuration file '%s': %E", + configfile); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ } - #endif /* def JAR_FILES */ - debug = 0; - multi_threaded = 1; + while (read_config_line(buf, sizeof(buf), configfp, &linenum) != NULL) + { + char cmd[BUFFER_SIZE]; + char arg[BUFFER_SIZE]; + char tmp[BUFFER_SIZE]; +#ifdef FEATURE_ACL + struct access_control_list *cur_acl; +#endif /* def FEATURE_ACL */ + struct forward_spec *cur_fwd; + int vec_count; + char *vec[3]; + + strcpy(tmp, buf); + + /* Copy command (i.e. up to space or tab) into cmd */ + p = buf; + q = cmd; + while (*p && (*p != ' ') && (*p != '\t')) + { + *q++ = *p++; + } + *q = '\0'; -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) - tinygif = 0; - freez((char *)tinygifurl); -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ + /* Skip over the whitespace in buf */ + while (*p && ((*p == ' ') || (*p == '\t'))) + { + p++; + } - suppress_vanilla_wafer = 0; - add_forwarded = 0; - hport = HADDR_PORT; + /* Copy the argument into arg */ + strcpy(arg, p); -#ifdef _WIN_CONSOLE - hideConsole = 0; -#endif /*def _WIN_CONSOLE*/ + /* Should never happen, but check this anyway */ + if (*cmd == '\0') + { + continue; + } -#ifdef PCRS - re_filter_all = 0; -#endif /* def PCRS */ + /* Make sure the command field is lower case */ + for (p=cmd; *p; p++) + { + if (ijb_isupper(*p)) + { + *p = ijb_tolower(*p); + } + } -#ifdef KILLPOPUPS - kill_all_popups = 0; -#endif /* def KILLPOPUPS */ + /* Save the argument for show-proxy-args */ + savearg(cmd, arg, config); -#ifdef TOGGLE - g_bToggleIJB = 1; -#endif -#ifdef STATISTICS - urls_read = 0; - urls_rejected = 0; -#endif /* def STATISTICS */ + switch( hash_string( cmd ) ) + { +/* ************************************************************************* + * actionsfile actions-file-name + * In confdir by default + * *************************************************************************/ + case hash_actions_file : + i = 0; + while ((i < MAX_ACTION_FILES) && (NULL != config->actions_file[i])) + { + i++; + } -#ifndef SPLIT_PROXY_ARGS - suppress_blocklists = 0; -#endif /* ndef SPLIT_PROXY_ARGS */ + if (i >= MAX_ACTION_FILES) + { + log_error(LOG_LEVEL_FATAL, "Too many 'actionsfile' directives in config file - limit is %d.\n" + "(You can increase this limit by changing MAX_ACTION_FILES in project.h and recompiling).", + MAX_ACTION_FILES); + } + config->actions_file_short[i] = strdup(arg); + p = malloc(strlen(arg) + sizeof(".action")); + if (p == NULL) + { + log_error(LOG_LEVEL_FATAL, "Out of memory"); + } + strcpy(p, arg); + strcat(p, ".action"); + config->actions_file[i] = make_path(config->confdir, p); + free(p); + continue; - freez((char *)from); - freez((char *)haddr); - freez((char *)uagent); - freez((char *)referrer); - freez((char *)logfile); +/* ************************************************************************* + * admin-address email-address + * *************************************************************************/ + case hash_admin_address : + freez(config->admin_address); + config->admin_address = strdup(arg); + continue; +/* ************************************************************************* + * buffer-limit n + * *************************************************************************/ + case hash_buffer_limit : + config->buffer_limit = (size_t) 1024 * atoi(arg); + continue; - freez((char *)blockfile); - freez((char *)cookiefile); - freez((char *)forwardfile); +/* ************************************************************************* + * confdir directory-name + * *************************************************************************/ + case hash_confdir : + freez(config->confdir); + config->confdir = make_path( NULL, arg); + continue; -#ifdef ACL_FILES - freez((char *)aclfile); -#endif /* def ACL_FILES */ +/* ************************************************************************* + * debug n + * Specifies debug level, multiple values are ORed together. + * *************************************************************************/ + case hash_debug : + config->debug |= atoi(arg); + continue; -#ifdef USE_IMAGE_LIST - freez((char *)imagefile); -#endif /* def USE_IMAGE_LIST */ +/* ************************************************************************* + * deny-access source-ip[/significant-bits] [dest-ip[/significant-bits]] + * *************************************************************************/ +#ifdef FEATURE_ACL + case hash_deny_access: + vec_count = ssplit(arg, " \t", vec, SZ(vec), 1, 1); -#ifdef JAR_FILES - freez((char *)jarfile); -#endif /* def JAR_FILES */ + if ((vec_count != 1) && (vec_count != 2)) + { + log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for " + "deny-access directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Wrong number of parameters for " + "deny-access directive in configuration file.

    \n"); + continue; + } -#ifdef KILLPOPUPS - freez((char *)popupfile); -#endif /* def KILLPOPUPS */ + /* allocate a new node */ + cur_acl = (struct access_control_list *) zalloc(sizeof(*cur_acl)); -#ifndef SPLIT_PROXY_ARGS - freez((char *)suppress_message); -#endif /* ndef SPLIT_PROXY_ARGS */ + if (cur_acl == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + continue; + } + cur_acl->action = ACL_DENY; -#ifdef TRUST_FILES - freez((char *)trustfile); -#endif /* def TRUST_FILES */ + if (acl_addr(vec[0], cur_acl->src) < 0) + { + log_error(LOG_LEVEL_ERROR, "Invalid source IP for deny-access " + "directive in configuration file: \"%s\"", vec[0]); + string_append(&config->proxy_args, + "
    \nWARNING: Invalid source IP for deny-access directive" + " in configuration file: \""); + string_append(&config->proxy_args, + vec[0]); + string_append(&config->proxy_args, + "\"

    \n"); + freez(cur_acl); + continue; + } + if (vec_count == 2) + { + if (acl_addr(vec[1], cur_acl->dst) < 0) + { + log_error(LOG_LEVEL_ERROR, "Invalid destination IP for deny-access " + "directive in configuration file: \"%s\"", vec[0]); + string_append(&config->proxy_args, + "
    \nWARNING: Invalid destination IP for deny-access directive" + " in configuration file: \""); + string_append(&config->proxy_args, + vec[0]); + string_append(&config->proxy_args, + "\"

    \n"); + freez(cur_acl); + continue; + } + } -#ifdef PCRS - freez((char *)re_filterfile); -#endif /* def PCRS */ + /* + * Add it to the list. Note we reverse the list to get the + * behaviour the user expects. With both the ACL and + * actions file, the last match wins. However, the internal + * implementations are different: The actions file is stored + * in the same order as the file, and scanned completely. + * With the ACL, we reverse the order as we load it, then + * when we scan it we stop as soon as we get a match. + */ + cur_acl->next = config->acl; + config->acl = cur_acl; - if (NULL != configfile) - { - if ((configfp = fopen(configfile, "r")) == NULL) - { - log_error(LOG_LEVEL_ERROR, "can't open configuration file '%s': %E", - configfile); - configret = 1; - return; - } - } + continue; +#endif /* def FEATURE_ACL */ + +/* ************************************************************************* + * enable-edit-actions 0|1 + * *************************************************************************/ +#ifdef FEATURE_CGI_EDIT_ACTIONS + case hash_enable_edit_actions: + if ((*arg != '\0') && (0 != atoi(arg))) + { + config->feature_flags |= RUNTIME_FEATURE_CGI_EDIT_ACTIONS; + } + else + { + config->feature_flags &= ~RUNTIME_FEATURE_CGI_EDIT_ACTIONS; + } + continue; +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ + +/* ************************************************************************* + * enable-remote-toggle 0|1 + * *************************************************************************/ +#ifdef FEATURE_CGI_EDIT_ACTIONS + case hash_enable_remote_toggle: + if ((*arg != '\0') && (0 != atoi(arg))) + { + config->feature_flags |= RUNTIME_FEATURE_CGI_TOGGLE; + } + else + { + config->feature_flags &= ~RUNTIME_FEATURE_CGI_TOGGLE; + } + continue; +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ - if (NULL != configfp) - { - memset (buf, 'j', sizeof(buf)); - while (read_config_line(buf, sizeof(buf), configfp, NULL) != NULL) - { - char cmd[BUFSIZ]; - char arg[BUFSIZ]; - char tmp[BUFSIZ]; +/* ************************************************************************* + * forward url-pattern (.|http-proxy-host[:port]) + * *************************************************************************/ + case hash_forward: + vec_count = ssplit(arg, " \t", vec, SZ(vec), 1, 1); - strcpy(tmp, buf); + if (vec_count != 2) + { + log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for forward " + "directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Wrong number of parameters for " + "forward directive in configuration file."); + continue; + } - /* Copy command (i.e. up to space or tab) into cmd */ - p = buf; - q = cmd; - while (*p && (*p != ' ') && (*p != '\t')) - { - *q++ = *p++; - } - *q = '\0'; + /* allocate a new node */ + cur_fwd = zalloc(sizeof(*cur_fwd)); + if (cur_fwd == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + continue; + } - /* Skip over the whitespace in buf */ - while (*p && ((*p == ' ') || (*p == '\t'))) - { - p++; - } + cur_fwd->type = SOCKS_NONE; - /* Copy the argument into arg */ - strcpy(arg, p); + /* Save the URL pattern */ + if (create_url_spec(cur_fwd->url, vec[0])) + { + log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward " + "directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Bad URL specifier for " + "forward directive in configuration file."); + continue; + } - /* Should never happen, but check this anyway */ - if (*cmd == '\0') - { - continue; - } + /* Parse the parent HTTP proxy host:port */ + p = vec[1]; - /* Make sure the command field is lower case */ - for (p=cmd; *p; p++) - { - if (ijb_isupper(*p)) + if (strcmp(p, ".") != 0) { - *p = ijb_tolower(*p); - } - } + cur_fwd->forward_host = strdup(p); - /* Save the argument for show-proxy-args */ - savearg(cmd, arg); + if (NULL != (p = strchr(cur_fwd->forward_host, ':'))) + { + *p++ = '\0'; + cur_fwd->forward_port = atoi(p); + } + if (cur_fwd->forward_port <= 0) + { + cur_fwd->forward_port = 8000; + } + } - switch( hash_string( cmd ) ) - { -#ifdef TRUST_FILES - case hash_trustfile : - freez((char *)trustfile); - trustfile = strdup(arg); - continue; + /* Add to list. */ + cur_fwd->next = config->forward; + config->forward = cur_fwd; - case hash_trust_info_url : - enlist(trust_info, arg); - continue; -#endif /* def TRUST_FILES */ + continue; - case hash_debug : - debug |= atoi(arg); - continue; +/* ************************************************************************* + * forward-socks4 url-pattern socks-proxy[:port] (.|http-proxy[:port]) + * *************************************************************************/ + case hash_forward_socks4: + vec_count = ssplit(arg, " \t", vec, SZ(vec), 1, 1); -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) - case hash_tinygif : - freez((char *)tinygifurl); - tinygif = atoi(arg); - if(3 == tinygif) - { - p = arg; - while((*p >= '0') && (*p <= '9')) - { - p++; - } - while((*p == ' ') || (*p == '\t')) - { - p++; - } - if (*p) - { - q = malloc(strlen(p) + 5); - if (q) - { - strcpy(q, p); - strcat(q, "\r\n\r\n"); - tinygifurl = q; - } - } - } - if ((tinygif != 1) && - (tinygif != 2) && - ((tinygif != 3) || (tinygifurl==NULL)) ) - { - log_error(LOG_LEVEL_ERROR, "tinygif setting invalid."); - } + if (vec_count != 3) + { + log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for " + "forward-socks4 directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Wrong number of parameters for " + "forward-socks4 directive in configuration file."); continue; -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ + } - case hash_add_forwarded_header : - add_forwarded = 1; + /* allocate a new node */ + cur_fwd = zalloc(sizeof(*cur_fwd)); + if (cur_fwd == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ continue; + } - case hash_single_threaded : - multi_threaded = 0; - continue; + cur_fwd->type = SOCKS_4; - case hash_suppress_vanilla_wafer : - suppress_vanilla_wafer = 1; + /* Save the URL pattern */ + if (create_url_spec(cur_fwd->url, vec[0])) + { + log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward-socks4 " + "directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Bad URL specifier for " + "forward-socks4 directive in configuration file."); continue; + } - case hash_wafer : - enlist(wafer_list, arg); - continue; + /* Parse the SOCKS proxy host[:port] */ + p = vec[1]; - case hash_add_header : - enlist(xtra_list, arg); - continue; + if (strcmp(p, ".") != 0) + { + cur_fwd->gateway_host = strdup(p); - case hash_cookiefile : - freez((char *)cookiefile); - cookiefile = strdup(arg); - continue; + if (NULL != (p = strchr(cur_fwd->gateway_host, ':'))) + { + *p++ = '\0'; + cur_fwd->gateway_port = atoi(p); + } + if (cur_fwd->gateway_port <= 0) + { + cur_fwd->gateway_port = 1080; + } + } - case hash_logfile : - freez((char *)logfile); - logfile = strdup(arg); - continue; + /* Parse the parent HTTP proxy host[:port] */ + p = vec[2]; - case hash_blockfile : - freez((char *)blockfile); - blockfile = strdup(arg); - continue; + if (strcmp(p, ".") != 0) + { + cur_fwd->forward_host = strdup(p); -#ifdef USE_IMAGE_LIST - case hash_imagefile : - freez((char *)imagefile); - imagefile = strdup(arg); - continue; -#endif /* def USE_IMAGE_LIST */ + if (NULL != (p = strchr(cur_fwd->forward_host, ':'))) + { + *p++ = '\0'; + cur_fwd->forward_port = atoi(p); + } -#ifdef JAR_FILES - case hash_jarfile : - freez((char *)jarfile); - jarfile = strdup(arg); - continue; -#endif /* def JAR_FILES */ + if (cur_fwd->forward_port <= 0) + { + cur_fwd->forward_port = 8000; + } + } - case hash_listen_address : - freez((char *)haddr); - haddr = strdup(arg); - continue; + /* Add to list. */ + cur_fwd->next = config->forward; + config->forward = cur_fwd; - case hash_forwardfile : - freez((char *)forwardfile); - forwardfile = strdup(arg); - continue; + continue; -#ifdef ACL_FILES - case hash_aclfile : - freez((char *)aclfile); - aclfile = strdup(arg); - continue; -#endif /* def ACL_FILES */ +/* ************************************************************************* + * forward-socks4a url-pattern socks-proxy[:port] (.|http-proxy[:port]) + * *************************************************************************/ + case hash_forward_socks4a: + vec_count = ssplit(arg, " \t", vec, SZ(vec), 1, 1); -#ifdef KILLPOPUPS - case hash_popupfile : - freez((char *)popupfile); - popupfile = strdup(arg); + if (vec_count != 3) + { + log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for " + "forward-socks4a directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Wrong number of parameters for " + "forward-socks4a directive in configuration file."); continue; + } - case hash_kill_all_popups : - kill_all_popups = 1; + /* allocate a new node */ + cur_fwd = zalloc(sizeof(*cur_fwd)); + if (cur_fwd == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ continue; -#endif /* def KILLPOPUPS */ + } -#ifdef PCRS - case hash_re_filterfile : - freez((char *)re_filterfile); - re_filterfile = strdup(arg); - continue; + cur_fwd->type = SOCKS_4A; - case hash_re_filter_all : - re_filter_all = 1; - log_error(LOG_LEVEL_REF, "re_filter policy is %s.", - re_filter_all ? "RADICAL" : "SEMI-SMART"); + /* Save the URL pattern */ + if (create_url_spec(cur_fwd->url, vec[0])) + { + log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward-socks4a " + "directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Bad URL specifier for " + "forward-socks4a directive in configuration file."); continue; -#endif /* def PCRS */ + } - case hash_user_agent : - freez((char *)uagent); - uagent = strdup(arg); - continue; + /* Parse the SOCKS proxy host[:port] */ + p = vec[1]; - /* - * Offer choice of correct spelling according to dictionary, - * or the misspelling used in the HTTP spec. - */ - case hash_referrer : - case hash_referer : - freez((char *)referrer); - referrer = strdup(arg); - continue; + cur_fwd->gateway_host = strdup(p); - case hash_from : - freez((char *)from); - from = strdup(arg); - continue; + if (NULL != (p = strchr(cur_fwd->gateway_host, ':'))) + { + *p++ = '\0'; + cur_fwd->gateway_port = atoi(p); + } + if (cur_fwd->gateway_port <= 0) + { + cur_fwd->gateway_port = 1080; + } -#ifdef _WIN_CONSOLE - case hash_hide_console : - hideConsole = 1; - continue; -#endif /*def _WIN_CONSOLE*/ + /* Parse the parent HTTP proxy host[:port] */ + p = vec[2]; + + if (strcmp(p, ".") != 0) + { + cur_fwd->forward_host = strdup(p); -#ifndef SPLIT_PROXY_ARGS - case hash_suppress_blocklists : - if (arg[0] != '\0') + if (NULL != (p = strchr(cur_fwd->forward_host, ':'))) { - suppress_message = strdup(arg); + *p++ = '\0'; + cur_fwd->forward_port = atoi(p); } - else + + if (cur_fwd->forward_port <= 0) { - /* There will be NO reference in proxy-args. */ - suppress_message = NULL; + cur_fwd->forward_port = 8000; } + } - suppress_blocklists = 1; - continue; -#endif /* ndef SPLIT_PROXY_ARGS */ + /* Add to list. */ + cur_fwd->next = config->forward; + config->forward = cur_fwd; -#ifdef TOGGLE - case hash_toggle : - g_bToggleIJB = atoi(arg); - continue; -#endif /* def TOGGLE */ + continue; -#if defined(_WIN32) && ! defined(_WIN_CONSOLE) - case hash_activity_animation : - g_bShowActivityAnimation = atoi(arg); - continue; +/* ************************************************************************* + * jarfile jar-file-name + * In logdir by default + * *************************************************************************/ +#ifdef FEATURE_COOKIE_JAR + case hash_jarfile : + freez(config->jarfile); + config->jarfile = make_path(config->logdir, arg); + continue; +#endif /* def FEATURE_COOKIE_JAR */ + +/* ************************************************************************* + * listen-address [ip][:port] + * *************************************************************************/ + case hash_listen_address : + freez(config->haddr); + config->haddr = strdup(arg); + continue; - case hash_log_messages : - g_bLogMessages = atoi(arg); - continue; +/* ************************************************************************* + * logdir directory-name + * *************************************************************************/ + case hash_logdir : + freez(config->logdir); + config->logdir = make_path(NULL, arg); + continue; - case hash_log_highlight_messages : - g_bHighlightMessages = atoi(arg); - continue; +/* ************************************************************************* + * logfile log-file-name + * In logdir by default + * *************************************************************************/ + case hash_logfile : + freez(config->logfile); + config->logfile = no_daemon ? NULL : make_path(config->logdir, arg); + continue; - case hash_log_buffer_size : - g_bLimitBufferSize = atoi(arg); - continue; +/* ************************************************************************* + * permit-access source-ip[/significant-bits] [dest-ip[/significant-bits]] + * *************************************************************************/ +#ifdef FEATURE_ACL + case hash_permit_access: + vec_count = ssplit(arg, " \t", vec, SZ(vec), 1, 1); - case hash_log_max_lines : - g_nMaxBufferLines = atoi(arg); - continue; + if ((vec_count != 1) && (vec_count != 2)) + { + log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for " + "permit-access directive in configuration file."); + string_append(&config->proxy_args, + "
    \nWARNING: Wrong number of parameters for " + "permit-access directive in configuration file.

    \n"); - case hash_log_font_name : - strcpy( g_szFontFaceName, arg ); continue; + } - case hash_log_font_size : - g_nFontSize = atoi(arg); - continue; + /* allocate a new node */ + cur_acl = (struct access_control_list *) zalloc(sizeof(*cur_acl)); - case hash_show_on_task_bar : - g_bShowOnTaskBar = atoi(arg); + if (cur_acl == NULL) + { + log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ continue; + } + cur_acl->action = ACL_PERMIT; - case hash_close_button_minimizes : - g_bCloseHidesWindow = atoi(arg); + if (acl_addr(vec[0], cur_acl->src) < 0) + { + log_error(LOG_LEVEL_ERROR, "Invalid source IP for permit-access " + "directive in configuration file: \"%s\"", vec[0]); + string_append(&config->proxy_args, + "
    \nWARNING: Invalid source IP for permit-access directive" + " in configuration file: \""); + string_append(&config->proxy_args, + vec[0]); + string_append(&config->proxy_args, + "\"

    \n"); + freez(cur_acl); continue; + } + if (vec_count == 2) + { + if (acl_addr(vec[1], cur_acl->dst) < 0) + { + log_error(LOG_LEVEL_ERROR, "Invalid destination IP for " + "permit-access directive in configuration file: \"%s\"", + vec[0]); + string_append(&config->proxy_args, + "
    \nWARNING: Invalid destination IP for permit-access directive" + " in configuration file: \""); + string_append(&config->proxy_args, + vec[0]); + string_append(&config->proxy_args, + "\"

    \n"); + freez(cur_acl); + continue; + } + } + + /* + * Add it to the list. Note we reverse the list to get the + * behaviour the user expects. With both the ACL and + * actions file, the last match wins. However, the internal + * implementations are different: The actions file is stored + * in the same order as the file, and scanned completely. + * With the ACL, we reverse the order as we load it, then + * when we scan it we stop as soon as we get a match. + */ + cur_acl->next = config->acl; + config->acl = cur_acl; + + continue; +#endif /* def FEATURE_ACL */ + +/* ************************************************************************* + * proxy-info-url url + * *************************************************************************/ + case hash_proxy_info_url : + freez(config->proxy_info_url); + config->proxy_info_url = strdup(arg); + continue; + +/* ************************************************************************* + * re_filterfile file-name + * In confdir by default. + * *************************************************************************/ + case hash_filterfile : + freez(config->re_filterfile); + config->re_filterfile = make_path(config->confdir, arg); + continue; + +/* ************************************************************************* + * single-threaded + * *************************************************************************/ + case hash_single_threaded : + config->multi_threaded = 0; + continue; + +/* ************************************************************************* + * toggle (0|1) + * *************************************************************************/ +#ifdef FEATURE_TOGGLE + case hash_toggle : + g_bToggleIJB = atoi(arg); + continue; +#endif /* def FEATURE_TOGGLE */ + +/* ************************************************************************* + * trust-info-url url + * *************************************************************************/ +#ifdef FEATURE_TRUST + case hash_trust_info_url : + enlist(config->trust_info, arg); + continue; +#endif /* def FEATURE_TRUST */ + +/* ************************************************************************* + * trustfile filename + * (In confdir by default.) + * *************************************************************************/ +#ifdef FEATURE_TRUST + case hash_trustfile : + freez(config->trustfile); + config->trustfile = make_path(config->confdir, arg); + continue; +#endif /* def FEATURE_TRUST */ + +/* ************************************************************************* + * usermanual url + * *************************************************************************/ + case hash_usermanual : + freez(config->usermanual); + config->usermanual = strdup(arg); + continue; + +/* ************************************************************************* + * Win32 Console options: + * *************************************************************************/ + +/* ************************************************************************* + * hide-console + * *************************************************************************/ +#ifdef _WIN_CONSOLE + case hash_hide_console : + hideConsole = 1; + continue; +#endif /*def _WIN_CONSOLE*/ + + +/* ************************************************************************* + * Win32 GUI options: + * *************************************************************************/ + +#if defined(_WIN32) && ! defined(_WIN_CONSOLE) +/* ************************************************************************* + * activity-animation (0|1) + * *************************************************************************/ + case hash_activity_animation : + g_bShowActivityAnimation = atoi(arg); + continue; + +/* ************************************************************************* + * close-button-minimizes (0|1) + * *************************************************************************/ + case hash_close_button_minimizes : + g_bCloseHidesWindow = atoi(arg); + continue; + +/* ************************************************************************* + * log-buffer-size (0|1) + * *************************************************************************/ + case hash_log_buffer_size : + g_bLimitBufferSize = atoi(arg); + continue; + +/* ************************************************************************* + * log-font-name fontnane + * *************************************************************************/ + case hash_log_font_name : + strcpy( g_szFontFaceName, arg ); + continue; + +/* ************************************************************************* + * log-font-size n + * *************************************************************************/ + case hash_log_font_size : + g_nFontSize = atoi(arg); + continue; + +/* ************************************************************************* + * log-highlight-messages (0|1) + * *************************************************************************/ + case hash_log_highlight_messages : + g_bHighlightMessages = atoi(arg); + continue; + +/* ************************************************************************* + * log-max-lines n + * *************************************************************************/ + case hash_log_max_lines : + g_nMaxBufferLines = atoi(arg); + continue; + +/* ************************************************************************* + * log-messages (0|1) + * *************************************************************************/ + case hash_log_messages : + g_bLogMessages = atoi(arg); + continue; + +/* ************************************************************************* + * show-on-task-bar (0|1) + * *************************************************************************/ + case hash_show_on_task_bar : + g_bShowOnTaskBar = atoi(arg); + continue; + #endif /* defined(_WIN32) && ! defined(_WIN_CONSOLE) */ - /* Warnings about unsupported features */ - -#ifndef TRUST_FILES - case hash_trustfile : - case hash_trust_info_url : -#endif /* ndef TRUST_FILES */ -#ifndef USE_IMAGE_LIST - case hash_imagefile : -#endif /* ndef USE_IMAGE_LIST */ -#ifndef PCRS - case hash_re_filterfile : - case hash_re_filter_all : -#endif /* ndef PCRS */ -#ifndef TOGGLE - case hash_toggle : -#endif /* ndef TOGGLE */ -#if defined(_WIN_CONSOLE) || ! defined(_WIN32) - case hash_activity_animation : - case hash_log_messages : - case hash_log_highlight_messages : - case hash_log_buffer_size : - case hash_log_max_lines : - case hash_log_font_name : - case hash_log_font_size : - case hash_show_on_task_bar : - case hash_close_button_minimizes : -#endif /* defined(_WIN_CONSOLE) || ! defined(_WIN32) */ + +/* ************************************************************************* + * Warnings about unsupported features + * *************************************************************************/ +#ifndef FEATURE_ACL + case hash_deny_access: +#endif /* ndef FEATURE_ACL */ +#ifndef FEATURE_CGI_EDIT_ACTIONS + case hash_enable_edit_actions: + case hash_enable_remote_toggle: +#endif /* def FEATURE_CGI_EDIT_ACTIONS */ +#ifndef FEATURE_COOKIE_JAR + case hash_jarfile : +#endif /* ndef FEATURE_COOKIE_JAR */ +#ifndef FEATURE_ACL + case hash_permit_access: +#endif /* ndef FEATURE_ACL */ +#ifndef FEATURE_TOGGLE + case hash_toggle : +#endif /* ndef FEATURE_TOGGLE */ +#ifndef FEATURE_TRUST + case hash_trustfile : + case hash_trust_info_url : +#endif /* ndef FEATURE_TRUST */ + #ifndef _WIN_CONSOLE - case hash_hide_console : + case hash_hide_console : #endif /* ndef _WIN_CONSOLE */ -#if !defined(DETECT_MSIE_IMAGES) && !defined(USE_IMAGE_LIST) - case hash_tinygif : -#endif /* !defined(DETECT_MSIE_IMAGES) && !defined(USE_IMAGE_LIST) */ -#ifndef KILLPOPUPS - case hash_popupfile : - case hash_kill_all_popups : -#endif /* ndef KILLPOPUPS */ -#ifndef JAR_FILES - case hash_jarfile : -#endif /* ndef JAR_FILES */ -#ifndef ACL_FILES - case hash_aclfile : -#endif /* ndef ACL_FILES */ - -#ifdef SPLIT_PROXY_ARGS - case hash_suppress_blocklists : -#endif /* def SPLIT_PROXY_ARGS */ - log_error(LOG_LEVEL_INFO, "Unsupported directive \"%s\" ignored.", cmd); - continue; - default : - log_error(LOG_LEVEL_ERROR, "Unrecognized directive (%lulu) in " - "configuration file: \"%s\"", hash_string( cmd ), buf); - p = malloc( BUFSIZ ); - if (p != NULL) - { - sprintf( p, "
    \nWARNING: unrecognized directive : %s

    \n", buf ); - proxy_args->invocation = strsav( proxy_args->invocation, p ); - freez( p ); - } - /* - * I decided that I liked this better as a warning than an - * error. - */ - - /* - * configret = 1; - * return; - */ - continue; - } - } - fclose(configfp); - } - - init_error_log(Argv[0], logfile, debug); +#if defined(_WIN_CONSOLE) || ! defined(_WIN32) + case hash_activity_animation : + case hash_close_button_minimizes : + case hash_log_buffer_size : + case hash_log_font_name : + case hash_log_font_size : + case hash_log_highlight_messages : + case hash_log_max_lines : + case hash_log_messages : + case hash_show_on_task_bar : +#endif /* defined(_WIN_CONSOLE) || ! defined(_WIN32) */ + /* These warnings are annoying - so hide them. -- Jon */ + /* log_error(LOG_LEVEL_INFO, "Unsupported directive \"%s\" ignored.", cmd); */ + continue; - if (cookiefile) - { - add_loader(load_cookiefile); - } +/* *************************************************************************/ + default : +/* *************************************************************************/ + /* + * I decided that I liked this better as a warning than an + * error. To change back to an error, just change log level + * to LOG_LEVEL_FATAL. + */ + log_error(LOG_LEVEL_ERROR, "Unrecognized directive '%s' (%luul) in line %lu in " + "configuration file (%s).", buf, hash_string(cmd), linenum, configfile); + string_append(&config->proxy_args, "
    \nWARNING: unrecognized directive : "); + string_append(&config->proxy_args, buf); + string_append(&config->proxy_args, "

    \n"); + continue; - if (blockfile) - { - add_loader(load_blockfile); - } +/* *************************************************************************/ + } /* end switch( hash_string(cmd) ) */ + } /* end while ( read_config_line(...) ) */ -#ifdef USE_IMAGE_LIST - if (imagefile) - { - add_loader(load_imagefile); - } -#endif /* def USE_IMAGE_LIST */ + fclose(configfp); -#ifdef TRUST_FILES - if (trustfile) + if (NULL == config->proxy_args) { - add_loader(load_trustfile); + log_error(LOG_LEVEL_FATAL, "Out of memory loading config - insufficient memory for config->proxy_args"); } -#endif /* def TRUST_FILES */ - if (forwardfile) - { - add_loader(load_forwardfile); - } + init_error_log(Argv[0], config->logfile, config->debug); -#ifdef ACL_FILES - if (aclfile) + if (config->actions_file[0]) { - add_loader(load_aclfile); + add_loader(load_actions_file, config); } -#endif /* def ACL_FILES */ -#ifdef KILLPOPUPS - if (popupfile) + if (config->re_filterfile) { - add_loader(load_popupfile); + add_loader(load_re_filterfile, config); } -#endif /* def KILLPOPUPS */ -#ifdef PCRS - if (re_filterfile) +#ifdef FEATURE_TRUST + if (config->trustfile) { - add_loader(load_re_filterfile); + add_loader(load_trustfile, config); } -#endif /* def PCRS */ +#endif /* def FEATURE_TRUST */ -#ifdef JAR_FILES - if ( NULL != jarfile ) +#ifdef FEATURE_COOKIE_JAR + if ( NULL != config->jarfile ) { - if ( NULL == (jar = fopen(jarfile, "a")) ) + if ( NULL == (config->jar = fopen(config->jarfile, "a")) ) { - log_error(LOG_LEVEL_ERROR, "can't open jarfile '%s': %E", jarfile); - configret = 1; - return; + log_error(LOG_LEVEL_FATAL, "can't open jarfile '%s': %E", config->jarfile); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ } - setbuf(jar, NULL); + setbuf(config->jar, NULL); } -#endif /* def JAR_FILES */ +#endif /* def FEATURE_COOKIE_JAR */ - if ( NULL == haddr ) + if ( NULL == config->haddr ) { - haddr = strdup( HADDR_DEFAULT ); + config->haddr = strdup( HADDR_DEFAULT ); } - if ( NULL != haddr ) + if ( NULL != config->haddr ) { - if ((p = strchr(haddr, ':'))) + if (NULL != (p = strchr(config->haddr, ':'))) { *p++ = '\0'; if (*p) { - hport = atoi(p); + config->hport = atoi(p); } } - if (hport <= 0) + if (config->hport <= 0) { *--p = ':'; - log_error(LOG_LEVEL_ERROR, "invalid bind port spec %s", haddr); - configret = 1; - return; + log_error(LOG_LEVEL_FATAL, "invalid bind port spec %s", config->haddr); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ } - if (*haddr == '\0') + if (*config->haddr == '\0') { - haddr = NULL; + config->haddr = NULL; } } - if (run_loader(NULL)) + /* + * Want to run all the loaders once now. + * + * Need to set up a fake csp, so they can get to the config. + */ + fake_csp = (struct client_state *) zalloc (sizeof(*fake_csp)); + fake_csp->config = config; + + if (run_loader(fake_csp)) { - configret = 1; - return; + freez(fake_csp); + log_error(LOG_LEVEL_FATAL, "A loader failed while loading config file. Exiting."); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + } + freez(fake_csp); + +/* FIXME: this is a kludge for win32 */ +#if defined(_WIN32) && !defined (_WIN_CONSOLE) + + g_actions_file = config->actions_file[0]; /* FIXME only works for first action file */ + g_re_filterfile = config->re_filterfile; + +#ifdef FEATURE_TRUST + g_trustfile = config->trustfile; +#endif /* def FEATURE_TRUST */ + + +#endif /* defined(_WIN32) && !defined (_WIN_CONSOLE) */ +/* FIXME: end kludge */ + + + config->need_bind = 1; + + if (current_configfile) + { + struct configuration_spec * oldcfg = (struct configuration_spec *) + current_configfile->f; + /* + * Check if config->haddr,hport == oldcfg->haddr,hport + * + * The following could be written more compactly as a single, + * (unreadably long) if statement. + */ + config->need_bind = 0; + if (config->hport != oldcfg->hport) + { + config->need_bind = 1; + } + else if (config->haddr == NULL) + { + if (oldcfg->haddr != NULL) + { + config->need_bind = 1; + } + } + else if (oldcfg->haddr == NULL) + { + config->need_bind = 1; + } + else if (0 != strcmp(config->haddr, oldcfg->haddr)) + { + config->need_bind = 1; + } + + current_configfile->unloader = unload_configfile; } -#ifdef JAR_FILES + fs->next = files->next; + files->next = fs; + + current_configfile = fs; + + return (config); +} + + +/********************************************************************* + * + * Function : savearg + * + * Description : Called from `load_config'. It saves each non-empty + * and non-comment line from config into + * config->proxy_args. This is used to create the + * show-proxy-args page. On error, frees + * config->proxy_args and sets it to NULL + * + * Parameters : + * 1 : command = config setting that was found + * 2 : argument = the setting's argument (if any) + * 3 : config = Configuration to save into. + * + * Returns : N/A + * + *********************************************************************/ +static void savearg(char *command, char *argument, struct configuration_spec * config) +{ + char * buf; + char * s; + + assert(command); + assert(*command); + assert(argument); + /* - * If we're logging cookies in a cookie jar, and the user has not - * supplied any wafers, and the user has not told us to suppress the - * vanilla wafer, then send the vanilla wafer. + * Add config option name embedded in + * link to it's section in the user-manual */ - if ((jarfile != NULL) - && (wafer_list->next == NULL) - && (suppress_vanilla_wafer == 0)) + buf = strdup("usermanual); + string_append(&buf, CONFIG_HELP_PREFIX); + string_join (&buf, string_toupper(command)); + string_append(&buf, "\">"); + string_append(&buf, command); + string_append(&buf, " "); + + if (NULL == buf) { - enlist(wafer_list, VANILLA_WAFER); + freez(config->proxy_args); + return; + } + + if ( (NULL != argument) && ('\0' != *argument) ) + { + s = html_encode(argument); + if (NULL == s) + { + freez(buf); + freez(config->proxy_args); + return; + } + + if (strncmpic(argument, "http://", 7) == 0) + { + string_append(&buf, ""); + string_join (&buf, s); + string_append(&buf, ""); + } + else + { + string_join (&buf, s); + } } -#endif /* def JAR_FILES */ - end_proxy_args(); + string_append(&buf, "
    \n"); + string_join(&config->proxy_args, buf); } diff --git a/loadcfg.h b/loadcfg.h index e567b7e0..3e71b752 100644 --- a/loadcfg.h +++ b/loadcfg.h @@ -1,9 +1,9 @@ -#ifndef _LOADCFG_H -#define _LOADCFG_H -#define LOADCFG_H_VERSION "$Id: loadcfg.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef LOADCFG_H_INCLUDED +#define LOADCFG_H_INCLUDED +#define LOADCFG_H_VERSION "$Id: loadcfg.h,v 1.10 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/loadcfg.h,v $ + * File : $Source: /cvsroot/ijbswa/current/loadcfg.h,v $ * * Purpose : Loads settings from the configuration file into * global variables. This file contains both the @@ -11,7 +11,7 @@ * variables it writes to. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -37,107 +37,124 @@ * * Revisions : * $Log: loadcfg.h,v $ + * Revision 1.10 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.9 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.8 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.7 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.6 2001/07/29 18:58:15 jongfoster + * Removing nested #includes, adding forward declarations for needed + * structures, and changing the #define _FILENAME_H to FILENAME_H_INCLUDED. + * + * Revision 1.5 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.4 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:58:58 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ -/* Declare struct FILE for vars and funcs. */ -#include - -/* All of our project's data types. */ -#include "project.h" - #ifdef __cplusplus extern "C" { #endif +/* Don't need project.h, only this: */ +struct configuration_spec; + /* Global variables */ -#ifdef TOGGLE +#ifdef FEATURE_TOGGLE /* indicates if ijb is enabled */ extern int g_bToggleIJB; -#endif - -extern int debug; -extern int multi_threaded; - -#if defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) -extern int tinygif; -extern const char *tinygifurl; -#endif /* defined(DETECT_MSIE_IMAGES) || defined(USE_IMAGE_LIST) */ - -extern const char *logfile; +#endif /* def FEATURE_TOGGLE */ extern const char *configfile; -#ifdef ACL_FILES -extern const char *aclfile; -#endif /* def ACL_FILES */ - -extern const char *blockfile; -extern const char *cookiefile; -extern const char *forwardfile; - -#ifdef USE_IMAGE_LIST -extern const char *imagefile; -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS -extern const char *popupfile; -#endif /* def KILLPOPUPS */ - -#ifdef TRUST_FILES -extern const char *trustfile; -#endif /* def TRUST_FILES */ - -#ifdef PCRS -extern const char *re_filterfile; -#endif /* def PCRS */ - -#ifdef PCRS -extern int re_filter_all; -#endif /* def PCRS */ - -#ifdef KILLPOPUPS -extern int kill_all_popups; /* Not recommended really .. */ -#endif /* def KILLPOPUPS */ - -#ifdef JAR_FILES -extern const char *jarfile; -extern FILE *jar; -#endif /* def JAR_FILES */ - -extern const char *referrer; -extern const char *uagent; -extern const char *from; - -#ifndef SPLIT_PROXY_ARGS -extern const char *suppress_message; -#endif /* ndef SPLIT_PROXY_ARGS */ - -extern int suppress_vanilla_wafer; -extern int add_forwarded; - -extern struct list wafer_list[]; -extern struct list xtra_list[]; - -#ifdef TRUST_FILES -extern struct list trust_info[]; -extern struct url_spec *trust_list[]; -#endif /* def TRUST_FILES */ - -extern const char *haddr; -extern int hport; - -#ifndef SPLIT_PROXY_ARGS -extern int suppress_blocklists; /* suppress listing sblock and simage */ -#endif /* ndef SPLIT_PROXY_ARGS */ - -extern struct proxy_args proxy_args[1]; - -extern int configret; -extern int config_changed; - /* The load_config function is now going to call: * init_proxy_args, so it will need argc and argv. @@ -146,10 +163,14 @@ extern int config_changed; */ extern int Argc; extern const char **Argv; +extern short int MustReload; -extern void load_config( int ); +extern struct configuration_spec * load_config(void); +#ifdef FEATURE_GRACEFUL_TERMINATION +void unload_current_config_file(void); +#endif /* Revision control strings from this header and associated .c file */ extern const char loadcfg_rcs[]; @@ -159,7 +180,7 @@ extern const char loadcfg_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _JCC_H */ +#endif /* ndef LOADCFG_H_INCLUDED */ /* Local Variables: diff --git a/loaders.c b/loaders.c index 71ff3fa0..8ebfa70a 100644 --- a/loaders.c +++ b/loaders.c @@ -1,21 +1,21 @@ -const char loaders_rcs[] = "$Id: loaders.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char loaders_rcs[] = "$Id: loaders.c,v 1.49 2002/04/19 16:53:25 jongfoster Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/loaders.c,v $ + * File : $Source: /cvsroot/ijbswa/current/loaders.c,v $ * * Purpose : Functions to load and unload the various * configuration files. Also contains code to manage - * the list of active loaders, and to automatically + * the list of active loaders, and to automatically * unload files that are no longer in use. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -35,6 +35,232 @@ const char loaders_rcs[] = "$Id: loaders.c,v 1.1 2001/05/13 21:57:06 administrat * * Revisions : * $Log: loaders.c,v $ + * Revision 1.49 2002/04/19 16:53:25 jongfoster + * Optimize away a function call by using an equivalent macro + * + * Revision 1.48 2002/04/05 00:56:09 gliptak + * Correcting typo to clean up on realloc failure + * + * Revision 1.47 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.46 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.45 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.44 2002/03/16 21:51:00 jongfoster + * Fixing free(NULL). + * + * Revision 1.43 2002/03/16 20:28:34 oes + * Added descriptions to the filters so users will know what they select in the cgi editor + * + * Revision 1.42 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.41 2002/03/12 01:42:50 oes + * Introduced modular filters + * + * Revision 1.40 2002/03/08 17:46:04 jongfoster + * Fixing int/size_t warnings + * + * Revision 1.39 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.38 2002/03/06 22:54:35 jongfoster + * Automated function-comment nitpicking. + * + * Revision 1.37 2002/03/03 15:07:49 oes + * Re-enabled automatic config reloading + * + * Revision 1.36 2002/01/22 23:46:18 jongfoster + * Moving edit_read_line() and simple_read_line() to loaders.c, and + * extending them to support reading MS-DOS, Mac and UNIX style files + * on all platforms. + * + * Modifying read_config_line() (without changing it's prototype) to + * be a trivial wrapper for edit_read_line(). This means that we have + * one function to read a line and handle comments, which is common + * between the initialization code and the edit interface. + * + * Revision 1.35 2002/01/17 21:03:08 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Revision 1.34 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.33 2001/11/13 00:16:38 jongfoster + * Replacing references to malloc.h with the standard stdlib.h + * (See ANSI or K&R 2nd Ed) + * + * Revision 1.32 2001/11/07 00:02:13 steudten + * Add line number in error output for lineparsing for + * actionsfile and configfile. + * Special handling for CLF added. + * + * Revision 1.31 2001/10/26 17:39:01 oes + * Removed csp->referrer + * Moved ijb_isspace and ijb_tolower to project.h + * + * Revision 1.30 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.29 2001/10/23 21:38:53 jongfoster + * Adding error-checking to create_url_spec() + * + * Revision 1.28 2001/10/07 15:40:39 oes + * Replaced 6 boolean members of csp with one bitmap (csp->flags) + * + * Revision 1.27 2001/09/22 16:36:59 jongfoster + * Removing unused parameter fs from read_config_line() + * + * Revision 1.26 2001/09/22 14:05:22 jongfoster + * Bugfix: Multiple escaped "#" characters in a configuration + * file are now permitted. + * Also removing 3 unused headers. + * + * Revision 1.25 2001/09/13 22:44:03 jongfoster + * Adding {} to an if statement + * + * Revision 1.24 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.23 2001/07/20 15:51:54 oes + * Fixed indentation of prepocessor commands + * + * Revision 1.22 2001/07/20 15:16:17 haroon + * - per Guy's suggestion, added a while loop in sweep() to catch not just + * the last inactive CSP but all other consecutive inactive CSPs after that + * as well + * + * Revision 1.21 2001/07/18 17:26:24 oes + * Changed to conform to new pcrs interface + * + * Revision 1.20 2001/07/17 13:07:01 oes + * Fixed segv when last line in config files + * lacked a terminating (\r)\n + * + * Revision 1.19 2001/07/13 14:01:54 oes + * Removed all #ifdef PCRS + * + * Revision 1.18 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.17 2001/06/29 13:31:51 oes + * Various adaptions + * + * Revision 1.16 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.15 2001/06/07 23:14:14 jongfoster + * Removing ACL and forward file loaders - these + * files have been merged into the config file. + * Cosmetic: Moving unloader funcs next to their + * respective loader funcs + * + * Revision 1.14 2001/06/01 03:27:04 oes + * Fixed line continuation problem + * + * Revision 1.13 2001/05/31 21:28:49 jongfoster + * Removed all permissionsfile code - it's now called the actions + * file, and (almost) all the code is in actions.c + * + * Revision 1.12 2001/05/31 17:32:31 oes + * + * - Enhanced domain part globbing with infix and prefix asterisk + * matching and optional unanchored operation + * + * Revision 1.11 2001/05/29 23:25:24 oes + * + * - load_config_line() and load_permissions_file() now use chomp() + * + * Revision 1.10 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.9 2001/05/26 17:12:07 jongfoster + * Fatal errors loading configuration files now give better error messages. + * + * Revision 1.8 2001/05/26 00:55:20 jongfoster + * Removing duplicated code. load_forwardfile() now uses create_url_spec() + * + * Revision 1.7 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.6 2001/05/23 12:27:33 oes + * + * Fixed ugly indentation of my last changes + * + * Revision 1.5 2001/05/23 10:39:05 oes + * - Added support for escaping the comment character + * in config files by a backslash + * - Added support for line continuation in config + * files + * - Fixed a buffer overflow bug with long config lines + * + * Revision 1.4 2001/05/22 18:56:28 oes + * CRLF -> LF + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:58:59 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -45,74 +271,39 @@ const char loaders_rcs[] = "$Id: loaders.c,v 1.1 2001/05/13 21:57:06 administrat #include #include #include -#include #include #include #include +#include -#ifndef _WIN32 +#if !defined(_WIN32) && !defined(__OS2__) #include #endif #include "project.h" +#include "list.h" #include "loaders.h" -#include "encode.h" #include "filters.h" #include "parsers.h" #include "jcc.h" -#include "ssplit.h" #include "miscutil.h" #include "errlog.h" -#include "gateway.h" - -#ifndef SPLIT_PROXY_ARGS -/* For strsav */ -#include "showargs.h" -#endif /* ndef SPLIT_PROXY_ARGS */ +#include "actions.h" +#include "urlmatch.h" const char loaders_h_rcs[] = LOADERS_H_VERSION; -/* Fix a problem with Solaris. There should be no effect on other - * platforms. - * Solaris's isspace() is a macro which uses it's argument directly - * as an array index. Therefore we need to make sure that high-bit - * characters generate +ve values, and ideally we also want to make - * the argument match the declared parameter type of "int". - */ -#define ijb_isspace(__X) isspace((int)(unsigned char)(__X)) - - -#define NLOADERS 8 -static int (*loaders[NLOADERS])(struct client_state *); - - /* * Currently active files. * These are also entered in the main linked list of files. */ -static struct file_list *current_blockfile = NULL; -static struct file_list *current_cookiefile = NULL; -static struct file_list *current_forwardfile = NULL; - -#ifdef ACL_FILES -static struct file_list *current_aclfile = NULL; -#endif /* def ACL_FILES */ -#ifdef USE_IMAGE_LIST -static struct file_list *current_imagefile = NULL; -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS -static struct file_list * current_popupfile = NULL; -#endif /* def KILLPOPUPS */ - -#ifdef TRUST_FILES +#ifdef FEATURE_TRUST static struct file_list *current_trustfile = NULL; -#endif /* def TRUST_FILES */ +#endif /* def FEATURE_TRUST */ -#ifdef PCRS static struct file_list *current_re_filterfile = NULL; -#endif /* def PCRS */ + /********************************************************************* @@ -143,6 +334,7 @@ void sweep(void) { struct file_list *fl, *nfl; struct client_state *csp, *ncsp; + int i; /* clear all of the file's active flags */ for ( fl = files->next; NULL != fl; fl = fl->next ) @@ -150,93 +342,82 @@ void sweep(void) fl->active = 0; } - for (csp = clients; csp && (ncsp = csp->next) ; csp = csp->next) + for (csp = clients; csp && (NULL != (ncsp = csp->next)) ; csp = csp->next) { - if (ncsp->active) + if (ncsp->flags & CSP_FLAG_ACTIVE) { /* mark this client's files as active */ - if (ncsp->blist) /* block files */ - { - ncsp->blist->active = 1; - } - - if (ncsp->clist) /* cookie files */ - { - ncsp->clist->active = 1; - } - - /* FIXME: These were left out of the "10" release. Should they be here? */ - if (ncsp->flist) /* forward files */ - { - ncsp->flist->active = 1; - } - -#ifdef ACL_FILES - if (ncsp->alist) /* acl files */ - { - ncsp->alist->active = 1; - } -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST - if (ncsp->ilist) /* image files */ - { - ncsp->ilist->active = 1; - } -#endif /* def USE_IMAGE_LIST */ + /* + * Always have a configuration file. + * (Also note the slightly non-standard extra + * indirection here.) + */ + ncsp->config->config_file_list->active = 1; -#ifdef KILLPOPUPS - if (ncsp->plist) /* killpopup files */ + for (i = 0; i < MAX_ACTION_FILES; i++) { - ncsp->plist->active = 1; + if (ncsp->actions_list[i]) /* actions files */ + { + ncsp->actions_list[i]->active = 1; + } } -#endif /* def KILLPOPUPS */ -#ifdef PCRS - if (ncsp->rlist) /* perl re files */ + if (ncsp->rlist) /* pcrsjob files */ { ncsp->rlist->active = 1; } -#endif /* def PCRS */ -#ifdef TRUST_FILES +#ifdef FEATURE_TRUST if (ncsp->tlist) /* trust files */ { ncsp->tlist->active = 1; } -#endif /* def TRUST_FILES */ +#endif /* def FEATURE_TRUST */ } else + /* + * this client is not active, release its resources + * and the ones of all inactive clients that might + * follow it + */ { - /* this client one is not active, release its resources */ - csp->next = ncsp->next; + while (!(ncsp->flags & CSP_FLAG_ACTIVE)) + { + csp->next = ncsp->next; - freez(ncsp->ip_addr_str); - freez(ncsp->referrer); - freez(ncsp->x_forwarded); - freez(ncsp->ip_addr_str); - freez(ncsp->iob->buf); + freez(ncsp->ip_addr_str); + freez(ncsp->my_ip_addr_str); + freez(ncsp->my_hostname); + freez(ncsp->x_forwarded); + freez(ncsp->iob->buf); - free_http_request(ncsp->http); + free_http_request(ncsp->http); - destroy_list(ncsp->headers); - destroy_list(ncsp->cookie_list); + destroy_list(ncsp->headers); + destroy_list(ncsp->cookie_list); -#ifdef STATISTICS - urls_read++; - if (ncsp->rejected) - { - urls_rejected++; - } -#endif /* def STATISTICS */ + free_current_action(ncsp->action); + +#ifdef FEATURE_STATISTICS + urls_read++; + if (ncsp->flags & CSP_FLAG_REJECTED) + { + urls_rejected++; + } +#endif /* def FEATURE_STATISTICS */ - freez(ncsp); + freez(ncsp); + + /* are there any more in sequence after it? */ + if( (ncsp = csp->next) == NULL) + break; + } } } - for (fl = files; fl && (nfl = fl->next) ; fl = fl->next) + for (fl = files; fl && ((nfl = fl->next) != NULL) ; fl = fl->next) { if ( ( 0 == nfl->active ) && ( NULL != nfl->unloader ) ) { @@ -244,10 +425,6 @@ void sweep(void) (nfl->unloader)(nfl->f); -#ifndef SPLIT_PROXY_ARGS - freez(nfl->proxy_args); -#endif /* ndef SPLIT_PROXY_ARGS */ - freez(nfl->filename); freez(nfl); @@ -257,289 +434,18 @@ void sweep(void) } -/********************************************************************* - * - * Function : unload_url - * - * Description : Called from the "unloaders". Freez the url - * structure elements. - * - * Parameters : - * 1 : url = pointer to a url_spec structure. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_url(struct url_spec *url) -{ - if (url == NULL) return; - - freez(url->spec); - freez(url->domain); - freez(url->dbuf); - freez(url->dvec); - freez(url->path); -#ifdef REGEX - if (url->preg) - { - regfree(url->preg); - freez(url->preg); - } -#endif - -} - - -#ifdef ACL_FILES -/********************************************************************* - * - * Function : unload_aclfile - * - * Description : Unloads an aclfile. - * - * Parameters : - * 1 : f = the data structure associated with the aclfile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_aclfile(void *f) -{ - struct access_control_list *b = (struct access_control_list *)f; - if (b == NULL) return; - - unload_aclfile(b->next); - - freez(b); - -} -#endif /* def ACL_FILES */ - -/********************************************************************* - * - * Function : unload_blockfile - * - * Description : Unloads a blockfile. - * - * Parameters : - * 1 : f = the data structure associated with the blockfile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_blockfile(void *f) -{ - struct block_spec *b = (struct block_spec *)f; - if (b == NULL) return; - - unload_blockfile(b->next); - - unload_url(b->url); - - freez(b); - -} - - -#ifdef USE_IMAGE_LIST -/********************************************************************* - * - * Function : unload_imagefile - * - * Description : Unloads an imagefile. - * - * Parameters : - * 1 : f = the data structure associated with the imagefile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_imagefile(void *f) -{ - struct block_spec *b = (struct block_spec *)f; - if (b == NULL) return; - - unload_imagefile(b->next); - - unload_url(b->url); - - freez(b); - -} -#endif /* def USE_IMAGE_LIST */ - - -/********************************************************************* - * - * Function : unload_cookiefile - * - * Description : Unloads a cookiefile. - * - * Parameters : - * 1 : f = the data structure associated with the cookiefile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_cookiefile(void *f) -{ - struct cookie_spec *b = (struct cookie_spec *)f; - if (b == NULL) return; - - unload_cookiefile(b->next); - - unload_url(b->url); - - freez(b); - -} - - -#ifdef TRUST_FILES -/********************************************************************* - * - * Function : unload_trustfile - * - * Description : Unloads a trustfile. - * - * Parameters : - * 1 : f = the data structure associated with the trustfile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_trustfile(void *f) -{ - struct block_spec *b = (struct block_spec *)f; - if (b == NULL) return; - - unload_trustfile(b->next); - - unload_url(b->url); - - freez(b); - -} -#endif /* def TRUST_FILES */ - - -/********************************************************************* - * - * Function : unload_forwardfile - * - * Description : Unloads a forwardfile. - * - * Parameters : - * 1 : f = the data structure associated with the forwardfile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_forwardfile(void *f) -{ - struct forward_spec *b = (struct forward_spec *)f; - if (b == NULL) return; - - unload_forwardfile(b->next); - - unload_url(b->url); - - freez(b->gw->gateway_host); - freez(b->gw->forward_host); - - freez(b); - -} - - -#ifdef PCRS -/********************************************************************* - * - * Function : unload_re_filterfile - * - * Description : Unload the re_filter list. - * - * Parameters : - * 1 : f = the data structure associated with the filterfile. - * - * Returns : N/A - * - *********************************************************************/ -static void unload_re_filterfile(void *f) -{ - pcrs_job *joblist; - struct re_filterfile_spec *b = (struct re_filterfile_spec *)f; - - if (b == NULL) return; - - destroy_list(b->patterns); - - joblist = b->joblist; - while ( NULL != (joblist = pcrs_free_job(joblist)) ) {} - - freez(b); - -} -#endif /* def PCRS */ - - -#ifdef KILLPOPUPS -/********************************************************************* - * - * Function : unload_popupfile - * - * Description : Free the lists of blocked, and allowed popup sites. - * - * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) - * - * Returns : N/A - * - *********************************************************************/ -static void unload_popupfile(void * b) -{ - struct popup_settings * data = (struct popup_settings *) b; - struct popup_blocklist * cur = NULL; - struct popup_blocklist * temp= NULL; - - /* Free the blocked list. */ - cur = data->blocked; - while (cur != NULL) - { - temp = cur->next; - freez (cur->host_name); - free (cur); - cur = temp; - } - data->blocked = NULL; - - /* Free the allowed list. */ - cur = data->allowed; - while (cur != NULL) - { - temp = cur->next; - freez (cur->host_name); - free (cur); - cur = temp; - } - data->allowed = NULL; - -} -#endif /* def KILLPOPUPS */ - - /********************************************************************* * * Function : check_file_changed * * Description : Helper function to check if a file needs reloading. * If "current" is still current, return it. Otherwise - * allocates a new (zeroed) "struct file_list", fills + * allocates a new (zeroed) "struct file_list", fills * in the disk file name and timestamp, and returns it. * * Parameters : * 1 : current = The file_list currently being used - will - * be checked to see if it is out of date. + * be checked to see if it is out of date. * May be NULL (which is treated as out of * date). * 2 : filename = Name of file to check. @@ -547,19 +453,16 @@ static void unload_popupfile(void * b) * This will be set to NULL, OR a struct * file_list newly allocated on the * heap, with the filename and lastmodified - * fields filled, standard header giving file - * name in proxy_args, and all others zeroed. - * (proxy_args is only filled in if - * SPLIT_PROXY_ARGS and !suppress_blocklists). + * fields filled, and all others zeroed. * * Returns : If file unchanged: 0 (and sets newfl == NULL) * If file changed: 1 and sets newfl != NULL * On error: 1 and sets newfl == NULL * *********************************************************************/ -static int check_file_changed(const struct file_list * current, - const char * filename, - struct file_list ** newfl) +int check_file_changed(const struct file_list * current, + const char * filename, + struct file_list ** newfl) { struct file_list *fs; struct stat statbuf[1]; @@ -580,7 +483,6 @@ static int check_file_changed(const struct file_list * current, } fs = (struct file_list *)zalloc(sizeof(struct file_list)); - if (fs == NULL) { /* Out of memory error */ @@ -596,23 +498,6 @@ static int check_file_changed(const struct file_list * current, freez (fs); return 1; } - -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - char * p = html_encode(filename); - if (p) - { - fs->proxy_args = strsav(fs->proxy_args, "

    The file `"); - fs->proxy_args = strsav(fs->proxy_args, p); - fs->proxy_args = strsav(fs->proxy_args, - "' contains the following patterns

    \n"); - freez(p); - } - fs->proxy_args = strsav(fs->proxy_args, "
    ");
-   }
-#endif /* ndef SPLIT_PROXY_ARGS */
-
    *newfl = fs;
    return 1;
 }
@@ -620,1060 +505,520 @@ static int check_file_changed(const struct file_list * current,
 
 /*********************************************************************
  *
- * Function    :  read_config_line
+ * Function    :  simple_read_line
  *
- * Description :  Read a single non-empty line from a file and return
- *                it.  Trims comments, leading and trailing whitespace.
- *                Also wites the file to fs->proxy_args.
+ * Description :  Read a single line from a file and return it.
+ *                This is basically a version of fgets() that malloc()s
+ *                it's own line buffer.  Note that the buffer will
+ *                always be a multiple of BUFFER_SIZE bytes long.
+ *                Therefore if you are going to keep the string for
+ *                an extended period of time, you should probably
+ *                strdup() it and free() the original, to save memory.
  *
- * Parameters  :
- *          1  :  buf = Buffer to use.
- *          2  :  buflen = Size of buffer in bytes.
- *          3  :  fp = File to read from
- *          4  :  fs = File will be written to fs->proxy_args.  May
- *                be NULL to disable this feature.
  *
- * Returns     :  NULL on EOF or error
- *                Otherwise, returns buf.
+ * Parameters  :
+ *          1  :  dest = destination for newly malloc'd pointer to
+ *                line data.  Will be set to NULL on error.
+ *          2  :  fp = File to read from
+ *          3  :  newline = Standard for newlines in the file.
+ *                Will be unchanged if it's value on input is not
+ *                NEWLINE_UNKNOWN.
+ *                On output, may be changed from NEWLINE_UNKNOWN to
+ *                actual convention in file.
+ *
+ * Returns     :  JB_ERR_OK     on success
+ *                JB_ERR_MEMORY on out-of-memory
+ *                JB_ERR_FILE   on EOF.
  *
  *********************************************************************/
-char *read_config_line(char *buf, int buflen, FILE *fp, struct file_list *fs)
+jb_err simple_read_line(FILE *fp, char **dest, int *newline)
 {
-   char *p, *q;
-   char linebuf[BUFSIZ];
+   size_t len = 0;
+   size_t buflen = BUFFER_SIZE;
+   char * buf;
+   char * p;
+   int ch;
+   int realnewline = NEWLINE_UNKNOWN;
 
-   while (fgets(linebuf, sizeof(linebuf), fp))
+   if (NULL == (buf = malloc(buflen)))
    {
-#ifndef SPLIT_PROXY_ARGS
-      if (fs && !suppress_blocklists)
-      {
-         char *html_line = html_encode(linebuf);
-         if (html_line != NULL)
-         {
-            fs->proxy_args = strsav(fs->proxy_args, html_line);
-            freez(html_line);
-         }
-         fs->proxy_args = strsav(fs->proxy_args, "
    ");
-      }
-#endif /* ndef SPLIT_PROXY_ARGS */
+      return JB_ERR_MEMORY;
+   }
 
-      /* Trim off newline and any comment */
-      if ((p = strpbrk(linebuf, "\r\n#")) != NULL)
-      {
-         *p = '\0';
-      }
-      
-      /* Trim leading whitespace */
-      p = linebuf;
-      while (*p && ijb_isspace(*p))
+   p = buf;
+
+/*
+ * Character codes.  If you have a wierd compiler and the following are
+ * incorrect, you also need to fix NEWLINE() in loaders.h
+ */
+#define CHAR_CR '\r' /* ASCII 13 */
+#define CHAR_LF '\n' /* ASCII 10 */
+
+   for (;;)
+   {
+      ch = getc(fp);
+      if (ch == EOF)
       {
-         *p++;
+         if (len > 0)
+         {
+            *p = '\0';
+            *dest = buf;
+            return JB_ERR_OK;
+         }
+         else
+         {
+            free(buf);
+            *dest = NULL;
+            return JB_ERR_FILE;
+         }
       }
-
-      if (*p)
+      else if (ch == CHAR_CR)
       {
-         /* There is something other than whitespace on the line. */
-
-         /* Move the data to the start of buf */
-         if (p != linebuf)
+         ch = getc(fp);
+         if (ch == CHAR_LF)
          {
-            /* strcpy that can cope with overlap. */
-            q = linebuf;
-            while ((*q++ = *p++) != '\0')
+            if (*newline == NEWLINE_UNKNOWN)
             {
-               /* Do nothing */
+               *newline = NEWLINE_DOS;
             }
          }
-
-         /* Trim trailing whitespace */
-         p = linebuf + strlen(linebuf) - 1;
-
-         /*
-          * Note: the (p >= retval) below is paranoia, it's not really needed.
-          * When p == retval then ijb_isspace(*p) will be false and we'll drop
-          * out of the loop.
-          */
-         while ((p >= linebuf) && ijb_isspace(*p))
+         else
+         {
+            if (ch != EOF)
+            {
+               ungetc(ch, fp);
+            }
+            if (*newline == NEWLINE_UNKNOWN)
+            {
+               *newline = NEWLINE_MAC;
+            }
+         }
+         *p = '\0';
+         *dest = buf;
+         if (*newline == NEWLINE_UNKNOWN)
+         {
+            *newline = realnewline;
+         }
+         return JB_ERR_OK;
+      }
+      else if (ch == CHAR_LF)
+      {
+         *p = '\0';
+         *dest = buf;
+         if (*newline == NEWLINE_UNKNOWN)
          {
-            p--;
+            *newline = NEWLINE_UNIX;
          }
-         p[1] = '\0';
+         return JB_ERR_OK;
+      }
+      else if (ch == 0)
+      {
+         *p = '\0';
+         *dest = buf;
+         return JB_ERR_OK;
+      }
 
-         /* More paranoia.  This if statement is always true. */
-         if (*linebuf)
+      *p++ = ch;
+
+      if (++len >= buflen)
+      {
+         buflen += BUFFER_SIZE;
+         if (NULL == (p = realloc(buf, buflen)))
          {
-            strcpy(buf, linebuf);
-            return buf;
+            free(buf);
+            return JB_ERR_MEMORY;
          }
+         buf = p;
+         p = buf + len;
       }
    }
-
-   /* EOF */
-   return NULL;
 }
 
 
-#ifdef ACL_FILES
 /*********************************************************************
  *
- * Function    :  load_aclfile
+ * Function    :  edit_read_line
  *
- * Description :  Read and parse an aclfile and add to files list.
+ * Description :  Read a single non-empty line from a file and return
+ *                it.  Trims comments, leading and trailing whitespace
+ *                and respects escaping of newline and comment char.
+ *                Provides the line in 2 alternative forms: raw and
+ *                preprocessed.
+ *                - raw is the raw data read from the file.  If the
+ *                  line is not modified, then this should be written
+ *                  to the new file.
+ *                - prefix is any comments and blank lines that were
+ *                  read from the file.  If the line is modified, then
+ *                  this should be written out to the file followed
+ *                  by the modified data.  (If this string is non-empty
+ *                  then it will have a newline at the end).
+ *                - data is the actual data that will be parsed
+ *                  further by appropriate routines.
+ *                On EOF, the 3 strings will all be set to NULL and
+ *                0 will be returned.
  *
  * Parameters  :
- *          1  :  csp = Current client state (buffers, headers, etc...)
- *
- * Returns     :  0 => Ok, everything else is an error.
+ *          1  :  fp = File to read from
+ *          2  :  raw_out = destination for newly malloc'd pointer to
+ *                raw line data.  May be NULL if you don't want it.
+ *          3  :  prefix_out = destination for newly malloc'd pointer to
+ *                comments.  May be NULL if you don't want it.
+ *          4  :  data_out = destination for newly malloc'd pointer to
+ *                line data with comments and leading/trailing spaces
+ *                removed, and line continuation performed.  May be
+ *                NULL if you don't want it.
+ *          5  :  newline = Standard for newlines in the file.
+ *                On input, set to value to use or NEWLINE_UNKNOWN.
+ *                On output, may be changed from NEWLINE_UNKNOWN to
+ *                actual convention in file.  May be NULL if you
+ *                don't want it.
+ *          6  :  line_number = Line number in file.  In "lines" as
+ *                reported by a text editor, not lines containing data.
+ *
+ * Returns     :  JB_ERR_OK     on success
+ *                JB_ERR_MEMORY on out-of-memory
+ *                JB_ERR_FILE   on EOF.
  *
  *********************************************************************/
-int load_aclfile(struct client_state *csp)
+jb_err edit_read_line(FILE *fp,
+                      char **raw_out,
+                      char **prefix_out,
+                      char **data_out,
+                      int *newline,
+                      unsigned long *line_number)
 {
-   FILE *fp;
-   char buf[BUFSIZ], *v[3], *p;
-   int i;
-   struct access_control_list *a, *bl;
-   struct file_list *fs;
-
-   if (!check_file_changed(current_aclfile, aclfile, &fs))
-   {
-      /* No need to load */
-      if (csp)
-      {
-         csp->alist = current_aclfile;
-      }
-      return(0);
-   }
-   if (!fs)
-   {
-      goto load_aclfile_error;
-   }
-
-   fs->f = bl = (struct access_control_list *)zalloc(sizeof(*bl));
-   if (bl == NULL)
-   {
-      freez(fs->filename);
-      freez(fs);
-      goto load_aclfile_error;
-   }
-
-   fp = fopen(aclfile, "r");
+   char *p;          /* Temporary pointer   */
+   char *linebuf;    /* Line read from file */
+   char *linestart;  /* Start of linebuf, usually first non-whitespace char */
+   int contflag = 0; /* Nonzero for line continuation - i.e. line ends '\' */
+   int is_empty = 1; /* Flag if not got any data yet */
+   char *raw    = NULL; /* String to be stored in raw_out    */
+   char *prefix = NULL; /* String to be stored in prefix_out */
+   char *data   = NULL; /* String to be stored in data_out   */
+   int scrapnewline;    /* Used for (*newline) if newline==NULL */
+   jb_err rval = JB_ERR_OK;
 
-   if (fp == NULL)
-   {
-      goto load_aclfile_error;
-   }
+   assert(fp);
+   assert(raw_out || data_out);
+   assert(newline == NULL
+       || *newline == NEWLINE_UNKNOWN
+       || *newline == NEWLINE_UNIX
+       || *newline == NEWLINE_DOS
+       || *newline == NEWLINE_MAC);
 
-   while (read_config_line(buf, sizeof(buf), fp, fs) != NULL)
+   if (newline == NULL)
    {
-      i = ssplit(buf, " \t", v, SZ(v), 1, 1);
-
-      /* allocate a new node */
-      a = (struct access_control_list *) zalloc(sizeof(*a));
-
-      if (a == NULL)
-      {
-         fclose(fp);
-         freez(fs->f);
-         freez(fs->filename);
-         freez(fs);
-         goto load_aclfile_error;
-      }
-
-      /* add it to the list */
-      a->next  = bl->next;
-      bl->next = a;
-
-      switch (i)
-      {
-         case 3:
-            if (acl_addr(v[2], a->dst) < 0)
-            {
-               goto load_aclfile_error;
-            }
-            /* no break */
-
-         case 2:
-            if (acl_addr(v[1], a->src) < 0)
-            {
-               goto load_aclfile_error;
-            }
-
-            p = v[0];
-            if (strcmpic(p, "permit") == 0)
-            {
-               a->action = ACL_PERMIT;
-               break;
-            }
-
-            if (strcmpic(p, "deny") == 0)
-            {
-               a->action = ACL_DENY;
-               break;
-            }
-            /* no break */
-
-         default:
-            goto load_aclfile_error;
-      }
+      scrapnewline = NEWLINE_UNKNOWN;
+      newline = &scrapnewline;
    }
 
-   fclose(fp);
-
-#ifndef SPLIT_PROXY_ARGS
-   if (!suppress_blocklists)
+   /* Set output parameters to NULL */
+   if (raw_out)
    {
-      fs->proxy_args = strsav(fs->proxy_args, "
    "); + *raw_out = NULL; } -#endif /* ndef SPLIT_PROXY_ARGS */ - - if (current_aclfile) + if (prefix_out) { - current_aclfile->unloader = unload_aclfile; + *prefix_out = NULL; } - - fs->next = files->next; - files->next = fs; - current_aclfile = fs; - - if (csp) + if (data_out) { - csp->alist = fs; + *data_out = NULL; } - return(0); - -load_aclfile_error: - log_error(LOG_LEVEL_ERROR, "can't load access control list %s: %E", aclfile); - return(-1); - -} -#endif /* def ACL_FILES */ - - -/********************************************************************* - * - * Function : load_blockfile - * - * Description : Read and parse a blockfile and add to files list. - * - * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) - * - * Returns : 0 => Ok, everything else is an error. - * - *********************************************************************/ -int load_blockfile(struct client_state *csp) -{ - FILE *fp; - - struct block_spec *b, *bl; - char buf[BUFSIZ], *p, *q; - int port, reject; - struct file_list *fs; - struct url_spec url[1]; + /* Set string variables to new, empty strings. */ - if (!check_file_changed(current_blockfile, blockfile, &fs)) + if (raw_out) { - /* No need to load */ - if (csp) + if ((raw = malloc(1)) == NULL) { - csp->blist = current_blockfile; + return JB_ERR_MEMORY; } - return(0); + *raw = '\0'; } - if (!fs) + if (prefix_out) { - goto load_blockfile_error; + if ((prefix = malloc(1)) == NULL) + { + freez(raw); + return JB_ERR_MEMORY; + } + *prefix = '\0'; } - - fs->f = bl = (struct block_spec *) zalloc(sizeof(*bl)); - if (bl == NULL) + if (data_out) { - goto load_blockfile_error; + if ((data = malloc(1)) == NULL) + { + freez(raw); + freez(prefix); + return JB_ERR_MEMORY; + } + *data = '\0'; } - if ((fp = fopen(blockfile, "r")) == NULL) - { - goto load_blockfile_error; - } + /* Main loop. Loop while we need more data & it's not EOF. */ - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) + while ( (contflag || is_empty) + && (JB_ERR_OK == (rval = simple_read_line(fp, &linebuf, newline)))) { - reject = 1; - - if (*buf == '~') + if (line_number) { - reject = 0; - p = buf; - q = p+1; - while ((*p++ = *q++)) + (*line_number)++; + } + if (raw) + { + string_append(&raw,linebuf); + if (string_append(&raw,NEWLINE(*newline))) { - /* nop */ + freez(prefix); + freez(data); + free(linebuf); + return JB_ERR_MEMORY; } } - /* skip lines containing only ~ */ - if (*buf == '\0') + /* Line continuation? Trim escape and set flag. */ + p = linebuf + strlen(linebuf) - 1; + contflag = ((*linebuf != '\0') && (*p == '\\')); + if (contflag) { - continue; + *p = '\0'; } - /* allocate a new node */ - if (((b = zalloc(sizeof(*b))) == NULL) -#ifdef REGEX - || ((b->url->preg = zalloc(sizeof(*b->url->preg))) == NULL) -#endif - ) + /* Trim leading spaces if we're at the start of the line */ + linestart = linebuf; + if (*data == '\0') { - fclose(fp); - goto load_blockfile_error; + /* Trim leading spaces */ + while (*linestart && isspace((int)(unsigned char)*linestart)) + { + linestart++; + } } - /* add it to the list */ - b->next = bl->next; - bl->next = b; - - /* save a copy of the orignal specification */ - if ((b->url->spec = strdup(buf)) == NULL) + /* Handle comment characters. */ + p = linestart; + while ((p = strchr(p, '#')) != NULL) { - fclose(fp); - goto load_blockfile_error; - } + /* Found a comment char.. */ + if ((p != linebuf) && (*(p-1) == '\\')) + { + /* ..and it's escaped, left-shift the line over the escape. */ + char *q = p - 1; + while ((*q = *(q + 1)) != '\0') + { + q++; + } + /* Now scan from just after the "#". */ + } + else + { + /* Real comment. Save it... */ + if (p == linestart) + { + /* Special case: Line only contains a comment, so all the + * previous whitespace is considered part of the comment. + * Undo the whitespace skipping, if any. + */ + linestart = linebuf; + p = linestart; + } + if (prefix) + { + string_append(&prefix,p); + if (string_append(&prefix, NEWLINE(*newline))) + { + freez(raw); + freez(data); + free(linebuf); + return JB_ERR_MEMORY; + } + } - b->reject = reject; + /* ... and chop off the rest of the line */ + *p = '\0'; + } + } /* END while (there's a # character) */ - if ((p = strchr(buf, '/'))) - { - b->url->path = strdup(p); - b->url->pathlen = strlen(b->url->path); - *p = '\0'; - } - else + /* Write to the buffer */ + if (*linestart) { - b->url->path = NULL; - b->url->pathlen = 0; + is_empty = 0; + if (data) + { + if (string_append(&data, linestart)) + { + freez(raw); + freez(prefix); + free(linebuf); + return JB_ERR_MEMORY; + } + } } -#ifdef REGEX - if (b->url->path) - { - int errcode; - char rebuf[BUFSIZ]; - sprintf(rebuf, "^(%s)", b->url->path); + free(linebuf); + } /* END while(we need more data) */ - errcode = regcomp(b->url->preg, rebuf, - (REG_EXTENDED|REG_NOSUB|REG_ICASE)); + /* Handle simple_read_line() errors - ignore EOF */ + if ((rval != JB_ERR_OK) && (rval != JB_ERR_FILE)) + { + freez(raw); + freez(prefix); + freez(data); + return rval; + } - if (errcode) - { - size_t errlen = - regerror(errcode, - b->url->preg, buf, sizeof(buf)); + if (raw ? (*raw == '\0') : is_empty) + { + /* EOF and no data there. (Definition of "data" depends on whether + * the caller cares about "raw" or just "data"). + */ - buf[errlen] = '\0'; + freez(raw); + freez(prefix); + freez(data); - log_error(LOG_LEVEL_ERROR, "error compiling %s: %s\n", - b->url->spec, buf); - fclose(fp); - goto load_blockfile_error; - } + return JB_ERR_FILE; + } + else + { + /* Got at least some data */ + + /* Remove trailing whitespace */ + chomp(data); + + if (raw_out) + { + *raw_out = raw; } else { - freez(b->url->preg); + freez(raw); } -#endif - if ((p = strchr(buf, ':')) == NULL) + if (prefix_out) { - port = 0; + *prefix_out = prefix; } else { - *p++ = '\0'; - port = atoi(p); + freez(prefix); } - - b->url->port = port; - - if ((b->url->domain = strdup(buf)) == NULL) + if (data_out) { - fclose(fp); - goto load_blockfile_error; + *data_out = data; } - - /* split domain into components */ - *url = dsplit(b->url->domain); - b->url->dbuf = url->dbuf; - b->url->dcnt = url->dcnt; - b->url->dvec = url->dvec; + else + { + freez(data); + } + return JB_ERR_OK; } +} - fclose(fp); - -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - /* the old one is now obsolete */ - if (current_blockfile) +/********************************************************************* + * + * Function : read_config_line + * + * Description : Read a single non-empty line from a file and return + * it. Trims comments, leading and trailing whitespace + * and respects escaping of newline and comment char. + * + * Parameters : + * 1 : buf = Buffer to use. + * 2 : buflen = Size of buffer in bytes. + * 3 : fp = File to read from + * 4 : linenum = linenumber in file + * + * Returns : NULL on EOF or error + * Otherwise, returns buf. + * + *********************************************************************/ +char *read_config_line(char *buf, size_t buflen, FILE *fp, unsigned long *linenum) +{ + jb_err err; + char *buf2 = NULL; + err = edit_read_line(fp, NULL, NULL, &buf2, NULL, linenum); + if (err) { - current_blockfile->unloader = unload_blockfile; + if (err == JB_ERR_MEMORY) + { + log_error(LOG_LEVEL_FATAL, "Out of memory loading a config file"); + } + return NULL; } - - fs->next = files->next; - files->next = fs; - current_blockfile = fs; - - if (csp) + else { - csp->blist = fs; + assert(buf2); + assert(strlen(buf2) + 1U < buflen); + strncpy(buf, buf2, buflen - 1); + free(buf2); + buf[buflen - 1] = '\0'; + return buf; } - - return(0); - -load_blockfile_error: - log_error(LOG_LEVEL_ERROR, "can't load blockfile '%s': %E", blockfile); - return(-1); - } -#ifdef USE_IMAGE_LIST +#ifdef FEATURE_TRUST /********************************************************************* * - * Function : load_imagefile + * Function : unload_trustfile * - * Description : Read and parse an imagefile and add to files list. + * Description : Unloads a trustfile. * * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) + * 1 : f = the data structure associated with the trustfile. * - * Returns : 0 => Ok, everything else is an error. + * Returns : N/A * *********************************************************************/ -int load_imagefile(struct client_state *csp) +static void unload_trustfile(void *f) { - FILE *fp; - - struct block_spec *b, *bl; - char buf[BUFSIZ], *p, *q; - int port, reject; - struct file_list *fs; - struct url_spec url[1]; + struct block_spec *cur = (struct block_spec *)f; + struct block_spec *next; - if (!check_file_changed(current_imagefile, imagefile, &fs)) - { - /* No need to load */ - if (csp) - { - csp->ilist = current_imagefile; - } - return(0); - } - if (!fs) + while (cur != NULL) { - goto load_imagefile_error; - } + next = cur->next; - fs->f = bl = (struct block_spec *)zalloc(sizeof(*bl)); - if (bl == NULL) - { - goto load_imagefile_error; - } + free_url_spec(cur->url); + free(cur); - if ((fp = fopen(imagefile, "r")) == NULL) - { - goto load_imagefile_error; + cur = next; } - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) - { - reject = 1; +} - if (*buf == '~') - { - reject = 0; - p = buf; - q = p+1; - while ((*p++ = *q++)) - { - /* nop */ - } - } - - /* skip lines containing only ~ */ - if (*buf == '\0') - { - continue; - } - - /* allocate a new node */ - if (((b = zalloc(sizeof(*b))) == NULL) -#ifdef REGEX - || ((b->url->preg = zalloc(sizeof(*b->url->preg))) == NULL) -#endif - ) - { - fclose(fp); - goto load_imagefile_error; - } - - /* add it to the list */ - b->next = bl->next; - bl->next = b; - - /* save a copy of the orignal specification */ - if ((b->url->spec = strdup(buf)) == NULL) - { - fclose(fp); - goto load_imagefile_error; - } - - b->reject = reject; - - if ((p = strchr(buf, '/'))) - { - b->url->path = strdup(p); - b->url->pathlen = strlen(b->url->path); - *p = '\0'; - } - else - { - b->url->path = NULL; - b->url->pathlen = 0; - } -#ifdef REGEX - if (b->url->path) - { - int errcode; - char rebuf[BUFSIZ]; - - sprintf(rebuf, "^(%s)", b->url->path); - - errcode = regcomp(b->url->preg, rebuf, - (REG_EXTENDED|REG_NOSUB|REG_ICASE)); - - if (errcode) - { - size_t errlen = - regerror(errcode, - b->url->preg, buf, sizeof(buf)); - - buf[errlen] = '\0'; - - log_error(LOG_LEVEL_ERROR, "error compiling %s: %s", - b->url->spec, buf); - fclose(fp); - goto load_imagefile_error; - } - } - else - { - freez(b->url->preg); - } -#endif - if ((p = strchr(buf, ':')) == NULL) - { - port = 0; - } - else - { - *p++ = '\0'; - port = atoi(p); - } - - b->url->port = port; - - if ((b->url->domain = strdup(buf)) == NULL) - { - fclose(fp); - goto load_imagefile_error; - } - - /* split domain into components */ - *url = dsplit(b->url->domain); - b->url->dbuf = url->dbuf; - b->url->dcnt = url->dcnt; - b->url->dvec = url->dvec; - } -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - fs->proxy_args = strsav(fs->proxy_args, ""); -#endif /* ndef SPLIT_PROXY_ARGS */ - - fclose(fp); - -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - - /* the old one is now obsolete */ - if (current_imagefile) - { - current_imagefile->unloader = unload_imagefile; - } - - fs->next = files->next; - files->next = fs; - current_imagefile = fs; - - if (csp) - { - csp->ilist = fs; - } - - return(0); - -load_imagefile_error: - log_error(LOG_LEVEL_ERROR, "can't load imagefile '%s': %E", imagefile); - return(-1); - -} -#endif /* def USE_IMAGE_LIST */ - - -/********************************************************************* - * - * Function : load_cookiefile - * - * Description : Read and parse a cookiefile and add to files list. - * - * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) - * - * Returns : 0 => Ok, everything else is an error. - * - *********************************************************************/ -int load_cookiefile(struct client_state *csp) -{ - FILE *fp; - - struct cookie_spec *b, *bl; - char buf[BUFSIZ], *p, *q; - int port, user_cookie, server_cookie; - struct file_list *fs; - struct url_spec url[1]; - - if (!check_file_changed(current_cookiefile, cookiefile, &fs)) - { - /* No need to load */ - if (csp) - { - csp->clist = current_cookiefile; - } - return(0); - } - if (!fs) - { - goto load_cookie_error; - } - - fs->f = bl = (struct cookie_spec *)zalloc(sizeof(*bl)); - if (bl == NULL) - { - goto load_cookie_error; - } - - if ((fp = fopen(cookiefile, "r")) == NULL) - { - goto load_cookie_error; - } - - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) - { - p = buf; - - switch ((int)*p) - { - case '>': - server_cookie = 0; - user_cookie = 1; - p++; - break; - - case '<': - server_cookie = 1; - user_cookie = 0; - p++; - break; - - case '~': - server_cookie = 0; - user_cookie = 0; - p++; - break; - - default: - server_cookie = 1; - user_cookie = 1; - break; - } - - /* - * Elide any of the "special" chars from the - * front of the pattern - */ - q = buf; - if (p > q) while ((*q++ = *p++)) - { - /* nop */ - } - - /* skip lines containing only "special" chars */ - if (*buf == '\0') - { - continue; - } - - /* allocate a new node */ - if (((b = zalloc(sizeof(*b))) == NULL) -#ifdef REGEX - || ((b->url->preg = zalloc(sizeof(*b->url->preg))) == NULL) -#endif - ) - { - fclose(fp); - goto load_cookie_error; - } - - /* add it to the list */ - b->next = bl->next; - bl->next = b; - - /* save a copy of the orignal specification */ - if ((b->url->spec = strdup(buf)) == NULL) - { - fclose(fp); - goto load_cookie_error; - } - - b->send_user_cookie = user_cookie; - b->accept_server_cookie = server_cookie; - - if ((p = strchr(buf, '/'))) - { - b->url->path = strdup(p); - b->url->pathlen = strlen(b->url->path); - *p = '\0'; - } - else - { - b->url->path = NULL; - b->url->pathlen = 0; - } -#ifdef REGEX - if (b->url->path) - { - int errcode; - char rebuf[BUFSIZ]; - - sprintf(rebuf, "^(%s)", b->url->path); - - errcode = regcomp(b->url->preg, rebuf, - (REG_EXTENDED|REG_NOSUB|REG_ICASE)); - if (errcode) - { - size_t errlen = - regerror(errcode, - b->url->preg, buf, sizeof(buf)); - - buf[errlen] = '\0'; - - log_error(LOG_LEVEL_ERROR, "error compiling %s: %s", - b->url->spec, buf); - fclose(fp); - goto load_cookie_error; - } - } - else - { - freez(b->url->preg); - } -#endif - if ((p = strchr(buf, ':')) == NULL) - { - port = 0; - } - else - { - *p++ = '\0'; - port = atoi(p); - } - - b->url->port = port; - - if ((b->url->domain = strdup(buf)) == NULL) - { - fclose(fp); - goto load_cookie_error; - } - - /* split domain into components */ - - *url = dsplit(b->url->domain); - b->url->dbuf = url->dbuf; - b->url->dcnt = url->dcnt; - b->url->dvec = url->dvec; - } - - fclose(fp); - -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - - /* the old one is now obsolete */ - if (current_cookiefile) - { - current_cookiefile->unloader = unload_cookiefile; - } - - fs->next = files->next; - files->next = fs; - current_cookiefile = fs; - - if (csp) - { - csp->clist = fs; - } - - return(0); - -load_cookie_error: - log_error(LOG_LEVEL_ERROR, "can't load cookiefile '%s': %E", cookiefile); - return(-1); - -} - -#ifdef TRUST_FILES +#ifdef FEATURE_GRACEFUL_TERMINATION /********************************************************************* * - * Function : load_trustfile + * Function : unload_current_trust_file * - * Description : Read and parse a trustfile and add to files list. + * Description : Unloads current trust file - reset to state at + * beginning of program. * - * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) + * Parameters : None * - * Returns : 0 => Ok, everything else is an error. + * Returns : N/A * - *********************************************************************/ -int load_trustfile(struct client_state *csp) -{ - FILE *fp; - - struct block_spec *b, *bl; - struct url_spec **tl; - - char buf[BUFSIZ], *p, *q; - int port, reject, trusted; - struct file_list *fs; - struct url_spec url[1]; - - if (!check_file_changed(current_trustfile, trustfile, &fs)) - { - /* No need to load */ - if (csp) - { - csp->tlist = current_trustfile; - } - return(0); - } - if (!fs) - { - goto load_trustfile_error; - } - - fs->f = bl = (struct block_spec *)zalloc(sizeof(*bl)); - if (bl == NULL) - { - goto load_trustfile_error; - } - - if ((fp = fopen(trustfile, "r")) == NULL) - { - goto load_trustfile_error; - } - - tl = trust_list; - - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) - { - trusted = 0; - reject = 1; - - if (*buf == '+') - { - trusted = 1; - *buf = '~'; - } - - if (*buf == '~') - { - reject = 0; - p = buf; - q = p+1; - while ((*p++ = *q++)) - { - /* nop */ - } - } - - /* skip blank lines */ - if (*buf == '\0') - { - continue; - } - - /* allocate a new node */ - if (((b = zalloc(sizeof(*b))) == NULL) -#ifdef REGEX - || ((b->url->preg = zalloc(sizeof(*b->url->preg))) == NULL) -#endif - ) - { - fclose(fp); - goto load_trustfile_error; - } - - /* add it to the list */ - b->next = bl->next; - bl->next = b; - - /* save a copy of the orignal specification */ - if ((b->url->spec = strdup(buf)) == NULL) - { - fclose(fp); - goto load_trustfile_error; - } - - b->reject = reject; - - if ((p = strchr(buf, '/'))) - { - b->url->path = strdup(p); - b->url->pathlen = strlen(b->url->path); - *p = '\0'; - } - else - { - b->url->path = NULL; - b->url->pathlen = 0; - } -#ifdef REGEX - if (b->url->path) - { - int errcode; - char rebuf[BUFSIZ]; - - sprintf(rebuf, "^(%s)", b->url->path); - - errcode = regcomp(b->url->preg, rebuf, - (REG_EXTENDED|REG_NOSUB|REG_ICASE)); - - if (errcode) - { - size_t errlen = - regerror(errcode, - b->url->preg, buf, sizeof(buf)); - - buf[errlen] = '\0'; - - log_error(LOG_LEVEL_ERROR, "error compiling %s: %s", - b->url->spec, buf); - fclose(fp); - goto load_trustfile_error; - } - } - else - { - freez(b->url->preg); - } -#endif - if ((p = strchr(buf, ':')) == NULL) - { - port = 0; - } - else - { - *p++ = '\0'; - port = atoi(p); - } - - b->url->port = port; - - if ((b->url->domain = strdup(buf)) == NULL) - { - fclose(fp); - goto load_trustfile_error; - } - - /* split domain into components */ - *url = dsplit(b->url->domain); - b->url->dbuf = url->dbuf; - b->url->dcnt = url->dcnt; - b->url->dvec = url->dvec; - - /* - * save a pointer to URL's spec in the list of trusted URL's, too - */ - if (trusted) - { - *tl++ = b->url; - } - } - - *tl = NULL; - - fclose(fp); - -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - - /* the old one is now obsolete */ + *********************************************************************/ +void unload_current_trust_file(void) +{ if (current_trustfile) { current_trustfile->unloader = unload_trustfile; + current_trustfile = NULL; } - - fs->next = files->next; - files->next = fs; - current_trustfile = fs; - - if (csp) - { - csp->tlist = fs; - } - - return(0); - -load_trustfile_error: - log_error(LOG_LEVEL_ERROR, "can't load trustfile '%s': %E", trustfile); - return(-1); - } -#endif /* def TRUST_FILES */ +#endif /* FEATURE_GRACEFUL_TERMINATION */ /********************************************************************* * - * Function : load_forwardfile + * Function : load_trustfile * - * Description : Read and parse a forwardfile and add to files list. + * Description : Read and parse a trustfile and add to files list. * * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) @@ -1681,490 +1026,350 @@ load_trustfile_error: * Returns : 0 => Ok, everything else is an error. * *********************************************************************/ -int load_forwardfile(struct client_state *csp) +int load_trustfile(struct client_state *csp) { FILE *fp; - struct forward_spec *b, *bl; - char buf[BUFSIZ], *p, *q, *tmp; - char *vec[4]; - int port, n, reject; + struct block_spec *b, *bl; + struct url_spec **tl; + + char buf[BUFFER_SIZE], *p, *q; + int reject, trusted; struct file_list *fs; - const struct gateway *gw; - struct url_spec url[1]; + unsigned long linenum = 0; - if (!check_file_changed(current_forwardfile, forwardfile, &fs)) + if (!check_file_changed(current_trustfile, csp->config->trustfile, &fs)) { /* No need to load */ if (csp) { - csp->flist = current_forwardfile; + csp->tlist = current_trustfile; } return(0); } if (!fs) { - goto load_forwardfile_error; + goto load_trustfile_error; } - fs->f = bl = (struct forward_spec *)zalloc(sizeof(*bl)); - - if ((fs == NULL) || (bl == NULL)) + fs->f = bl = (struct block_spec *)zalloc(sizeof(*bl)); + if (bl == NULL) { - goto load_forwardfile_error; + goto load_trustfile_error; } - if ((fp = fopen(forwardfile, "r")) == NULL) + if ((fp = fopen(csp->config->trustfile, "r")) == NULL) { - goto load_forwardfile_error; + goto load_trustfile_error; } - tmp = NULL; + tl = csp->config->trust_list; - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) + while (read_config_line(buf, sizeof(buf), fp, &linenum) != NULL) { - freez(tmp); - - tmp = strdup(buf); - - n = ssplit(tmp, " \t", vec, SZ(vec), 1, 1); + trusted = 0; + reject = 1; - if (n != 4) + if (*buf == '+') { - log_error(LOG_LEVEL_ERROR, "error in forwardfile: %s", buf); - continue; + trusted = 1; + *buf = '~'; } - strcpy(buf, vec[0]); - - reject = 1; - if (*buf == '~') { reject = 0; p = buf; q = p+1; - while ((*p++ = *q++)) + while ((*p++ = *q++) != '\0') { /* nop */ } } - /* skip lines containing only ~ */ + /* skip blank lines */ if (*buf == '\0') { continue; } /* allocate a new node */ - if (((b = zalloc(sizeof(*b))) == NULL) -#ifdef REGEX - || ((b->url->preg = zalloc(sizeof(*b->url->preg))) == NULL) -#endif - ) + if ((b = zalloc(sizeof(*b))) == NULL) { fclose(fp); - goto load_forwardfile_error; + goto load_trustfile_error; } /* add it to the list */ b->next = bl->next; bl->next = b; - /* save a copy of the orignal specification */ - if ((b->url->spec = strdup(buf)) == NULL) - { - fclose(fp); - goto load_forwardfile_error; - } - b->reject = reject; - if ((p = strchr(buf, '/'))) - { - b->url->path = strdup(p); - b->url->pathlen = strlen(b->url->path); - *p = '\0'; - } - else - { - b->url->path = NULL; - b->url->pathlen = 0; - } -#ifdef REGEX - if (b->url->path) - { - int errcode; - char rebuf[BUFSIZ]; - - sprintf(rebuf, "^(%s)", b->url->path); - - errcode = regcomp(b->url->preg, rebuf, - (REG_EXTENDED|REG_NOSUB|REG_ICASE)); - - if (errcode) - { - size_t errlen = regerror(errcode, b->url->preg, buf, sizeof(buf)); - - buf[errlen] = '\0'; - - log_error(LOG_LEVEL_ERROR, "error compiling %s: %s", - b->url->spec, buf); - fclose(fp); - goto load_forwardfile_error; - } - } - else - { - freez(b->url->preg); - } -#endif - if ((p = strchr(buf, ':')) == NULL) - { - port = 0; - } - else - { - *p++ = '\0'; - port = atoi(p); - } - - b->url->port = port; - - if ((b->url->domain = strdup(buf)) == NULL) + /* Save the URL pattern */ + if (create_url_spec(b->url, buf)) { fclose(fp); - goto load_forwardfile_error; - } - - /* split domain into components */ - *url = dsplit(b->url->domain); - b->url->dbuf = url->dbuf; - b->url->dcnt = url->dcnt; - b->url->dvec = url->dvec; - - /* now parse the gateway specs */ - - p = vec[2]; - - for (gw = gateways; gw->name; gw++) - { - if (strcmp(gw->name, p) == 0) - { - break; - } - } - - if (gw->name == NULL) - { - goto load_forwardfile_error; - } - - /* save this as the gateway type */ - *b->gw = *gw; - - /* now parse the gateway host[:port] spec */ - p = vec[3]; - - if (strcmp(p, ".") != 0) - { - b->gw->gateway_host = strdup(p); - - if ((p = strchr(b->gw->gateway_host, ':'))) - { - *p++ = '\0'; - b->gw->gateway_port = atoi(p); - } - - if (b->gw->gateway_port <= 0) - { - goto load_forwardfile_error; - } + goto load_trustfile_error; } - /* now parse the forwarding spec */ - p = vec[1]; - - if (strcmp(p, ".") != 0) + /* + * save a pointer to URL's spec in the list of trusted URL's, too + */ + if (trusted) { - b->gw->forward_host = strdup(p); - - if ((p = strchr(b->gw->forward_host, ':'))) - { - *p++ = '\0'; - b->gw->forward_port = atoi(p); - } - - if (b->gw->forward_port <= 0) - { - b->gw->forward_port = 8000; - } + *tl++ = b->url; + /* FIXME BUFFER OVERFLOW if >=64 entries */ } } - freez(tmp); + *tl = NULL; fclose(fp); -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - /* the old one is now obsolete */ - if (current_forwardfile) + if (current_trustfile) { - current_forwardfile->unloader = unload_forwardfile; + current_trustfile->unloader = unload_trustfile; } fs->next = files->next; files->next = fs; - current_forwardfile = fs; + current_trustfile = fs; if (csp) { - csp->flist = fs; + csp->tlist = fs; } return(0); -load_forwardfile_error: - log_error(LOG_LEVEL_ERROR, "can't load forwardfile '%s': %E", forwardfile); +load_trustfile_error: + log_error(LOG_LEVEL_FATAL, "can't load trustfile '%s': %E", + csp->config->trustfile); return(-1); } +#endif /* def FEATURE_TRUST */ -#ifdef PCRS /********************************************************************* * - * Function : load_re_filterfile + * Function : unload_re_filterfile * - * Description : Load the re_filterfile. Each non-comment, non-empty - * line is instantly added to the joblist, which is - * a chained list of pcrs_job structs. + * Description : Unload the re_filter list by freeing all chained + * re_filterfile specs and their data. * * Parameters : - * 1 : csp = Current client state (buffers, headers, etc...) + * 1 : f = the data structure associated with the filterfile. * - * Returns : 0 => Ok, everything else is an error. + * Returns : N/A * *********************************************************************/ -int load_re_filterfile(struct client_state *csp) +static void unload_re_filterfile(void *f) { - FILE *fp; - - struct re_filterfile_spec *bl; - struct file_list *fs; + struct re_filterfile_spec *a, *b = (struct re_filterfile_spec *)f; - char buf[BUFSIZ]; - int error; - pcrs_job *dummy; - -#ifndef SPLIT_PROXY_ARGS - char *p; -#endif /* ndef SPLIT_PROXY_ARGS */ - if (!check_file_changed(current_re_filterfile, re_filterfile, &fs)) - { - /* No need to load */ - if (csp) - { - csp->rlist = current_re_filterfile; - } - return(0); - } - if (!fs) - { - goto load_re_filterfile_error; - } - - fs->f = bl = (struct re_filterfile_spec *)zalloc(sizeof(*bl)); - if (bl == NULL) - { - goto load_re_filterfile_error; - } - - /* Open the file or fail */ - if ((fp = fopen(re_filterfile, "r")) == NULL) + while (b != NULL) { - goto load_re_filterfile_error; - } + a = b->next; - /* Read line by line */ - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) - { - enlist( bl->patterns, buf ); + destroy_list(b->patterns); + pcrs_free_joblist(b->joblist); + freez(b->name); + freez(b->description); + freez(b); - /* We have a meaningful line -> make it a job */ - if ((dummy = pcrs_make_job(buf, &error)) == NULL) - { - log_error(LOG_LEVEL_REF, - "Adding re_filter job %s failed with error %d.", buf, error); - continue; - } - else - { - dummy->next = bl->joblist; - bl->joblist = dummy; - log_error(LOG_LEVEL_REF, "Adding re_filter job %s succeeded.", buf); - } + b = a; } - fclose(fp); + return; +} -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - /* the old one is now obsolete */ - if ( NULL != current_re_filterfile ) +#ifdef FEATURE_GRACEFUL_TERMINATION +/********************************************************************* + * + * Function : unload_current_re_filterfile + * + * Description : Unloads current re_filter file - reset to state at + * beginning of program. + * + * Parameters : None + * + * Returns : N/A + * + *********************************************************************/ +void unload_current_re_filterfile(void) +{ + if (current_re_filterfile) { current_re_filterfile->unloader = unload_re_filterfile; + current_re_filterfile = NULL; } - - fs->next = files->next; - files->next = fs; - current_re_filterfile = fs; - - if (csp) - { - csp->rlist = fs; - } - - return( 0 ); - -load_re_filterfile_error: - log_error(LOG_LEVEL_ERROR, "can't load re_filterfile '%s': %E", re_filterfile); - return(-1); - } -#endif /* def PCRS */ +#endif -#ifdef KILLPOPUPS /********************************************************************* * - * Function : load_popupfile + * Function : load_re_filterfile * - * Description : Load, and parse the popup blocklist. + * Description : Load the re_filterfile. + * Generate a chained list of re_filterfile_spec's from + * the "FILTER: " blocks, compiling all their substitutions + * into chained lists of pcrs_job structs. * * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : 0 => success, else there was an error. + * Returns : 0 => Ok, everything else is an error. * *********************************************************************/ -int load_popupfile(struct client_state *csp) +int load_re_filterfile(struct client_state *csp) { FILE *fp; - char buf[BUFSIZ], *p, *q; - struct popup_blocklist *entry = NULL; - struct popup_settings * data; + + struct re_filterfile_spec *new_bl, *bl = NULL; struct file_list *fs; - p = buf; - q = buf; - if (!check_file_changed(current_popupfile, popupfile, &fs)) + char buf[BUFFER_SIZE]; + int error; + unsigned long linenum = 0; + pcrs_job *dummy; + + /* + * No need to reload if unchanged + */ + if (!check_file_changed(current_re_filterfile, csp->config->re_filterfile, &fs)) { - /* No need to load */ if (csp) { - csp->plist = current_popupfile; + csp->rlist = current_re_filterfile; } return(0); } if (!fs) { - goto load_popupfile_error; - } - - fs->f = data = (struct popup_settings *)zalloc(sizeof(*data)); - if (data == NULL) - { - goto load_popupfile_error; + goto load_re_filterfile_error; } - if ((fp = fopen(popupfile, "r")) == NULL) + /* + * Open the file or fail + */ + if ((fp = fopen(csp->config->re_filterfile, "r")) == NULL) { - goto load_popupfile_error; + goto load_re_filterfile_error; } - while (read_config_line(buf, sizeof(buf), fp, fs) != NULL) + /* + * Read line by line + */ + while (read_config_line(buf, sizeof(buf), fp, &linenum) != NULL) { - entry = (struct popup_blocklist*)zalloc(sizeof(struct popup_blocklist)); - if (!entry) + /* + * If this is the head of a new filter block, make it a + * re_filterfile spec of its own and chain it to the list: + */ + if (strncmp(buf, "FILTER:", 7) == 0) { - fclose( fp ); - goto load_popupfile_error; - } + new_bl = (struct re_filterfile_spec *)zalloc(sizeof(*bl)); + if (new_bl == NULL) + { + goto load_re_filterfile_error; + } - /* Handle allowed hosts. */ - if ( *buf == '~' ) - { - /* Rememeber: skip the tilde */ - entry->host_name = strdup( buf + 1 ); - if (!entry->host_name) + new_bl->name = chomp(buf + 7); + + if (NULL != (new_bl->description = strchr(new_bl->name, ' '))) { - fclose( fp ); - goto load_popupfile_error; + *new_bl->description++ = '\0'; + new_bl->description = strdup(chomp(new_bl->description)); + } + else + { + new_bl->description = strdup("No description available for this filter"); } - entry->next = data->allowed; - data->allowed = entry; - } - else - { - /* Blocked host */ - entry->host_name = strdup( buf ); - if (!entry->host_name) + new_bl->name = strdup(chomp(new_bl->name)); + + /* + * If this is the first filter block, chain it + * to the file_list rather than its (nonexistant) + * predecessor + */ + if (fs->f == NULL) + { + fs->f = new_bl; + } + else { - fclose( fp ); - goto load_popupfile_error; + bl->next = new_bl; } + bl = new_bl; + + log_error(LOG_LEVEL_RE_FILTER, "Reading in filter \"%s\" (\"%s\")", bl->name, bl->description); - entry->next = data->blocked; - data->blocked = entry; + continue; } - } - fclose( fp ); + /* + * Else, save the expression, make it a pcrs_job + * and chain it into the current filter's joblist + */ + if (bl != NULL) + { + enlist(bl->patterns, buf); -#ifndef SPLIT_PROXY_ARGS - if (!suppress_blocklists) - { - fs->proxy_args = strsav(fs->proxy_args, ""); + if ((dummy = pcrs_compile_command(buf, &error)) == NULL) + { + log_error(LOG_LEVEL_RE_FILTER, + "Adding re_filter job %s to filter %s failed with error %d.", buf, bl->name, error); + continue; + } + else + { + dummy->next = bl->joblist; + bl->joblist = dummy; + log_error(LOG_LEVEL_RE_FILTER, "Adding re_filter job %s to filter %s succeeded.", buf, bl->name); + } + } + else + { + log_error(LOG_LEVEL_ERROR, "Ignoring job %s outside filter block in %s, line %d", buf, csp->config->re_filterfile, linenum); + } } -#endif /* ndef SPLIT_PROXY_ARGS */ - /* the old one is now obsolete */ - if ( NULL != current_popupfile ) + fclose(fp); + + /* + * Schedule the now-obsolete old data for unloading + */ + if ( NULL != current_re_filterfile ) { - current_popupfile->unloader = unload_popupfile; + current_re_filterfile->unloader = unload_re_filterfile; } + /* + * Chain this file into the global list of loaded files + */ fs->next = files->next; files->next = fs; - current_popupfile = fs; + current_re_filterfile = fs; if (csp) { - csp->plist = fs; + csp->rlist = fs; } return( 0 ); -load_popupfile_error: - log_error(LOG_LEVEL_ERROR, "can't load popupfile '%s': %E", popupfile); +load_re_filterfile_error: + log_error(LOG_LEVEL_FATAL, "can't load re_filterfile '%s': %E", + csp->config->re_filterfile); return(-1); } -#endif /* def KILLPOPUPS */ - /********************************************************************* @@ -2177,19 +1382,21 @@ load_popupfile_error: * Parameters : * 1 : loader = pointer to a function that can parse and load * the appropriate config file. + * 2 : config = The configuration_spec to add the loader to. * * Returns : N/A * *********************************************************************/ -void add_loader(int (*loader)(struct client_state *)) +void add_loader(int (*loader)(struct client_state *), + struct configuration_spec * config) { int i; for (i=0; i < NLOADERS; i++) { - if (loaders[i] == NULL) + if (config->loaders[i] == NULL) { - loaders[i] = loader; + config->loaders[i] = loader; break; } } @@ -2208,6 +1415,8 @@ void add_loader(int (*loader)(struct client_state *)) * * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) + * Must be non-null. Reads: "csp->config" + * Writes: various data members. * * Returns : 0 => Ok, everything else is an error. * @@ -2219,34 +1428,17 @@ int run_loader(struct client_state *csp) for (i=0; i < NLOADERS; i++) { - if (loaders[i] == NULL) + if (csp->config->loaders[i] == NULL) { break; } - ret |= (loaders[i])(csp); + ret |= (csp->config->loaders[i])(csp); } return(ret); } -/********************************************************************* - * - * Function : remove_all_loaders - * - * Description : Remove all loaders from the list. - * - * Parameters : N/A - * - * Returns : N/A - * - *********************************************************************/ -void remove_all_loaders(void) -{ - memset( loaders, 0, sizeof( loaders ) ); -} - - /* Local Variables: tab-width: 3 diff --git a/loaders.h b/loaders.h index 0551a6e9..216c352d 100644 --- a/loaders.h +++ b/loaders.h @@ -1,9 +1,9 @@ -#ifndef _LOADERS_H -#define _LOADERS_H -#define LOADERS_H_VERSION "$Id: loaders.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef LOADERS_H_INCLUDED +#define LOADERS_H_INCLUDED +#define LOADERS_H_VERSION "$Id: loaders.h,v 1.18 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/loaders.h,v $ + * File : $Source: /cvsroot/ijbswa/current/loaders.h,v $ * * Purpose : Functions to load and unload the various * configuration files. Also contains code to manage @@ -11,7 +11,7 @@ * unload files that are no longer in use. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -37,54 +37,186 @@ * * Revisions : * $Log: loaders.h,v $ + * Revision 1.18 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.17 2002/03/16 23:54:06 jongfoster + * Adding graceful termination feature, to help look for memory leaks. + * If you enable this (which, by design, has to be done by hand + * editing config.h) and then go to http://i.j.b/die, then the program + * will exit cleanly after the *next* request. It should free all the + * memory that was used. + * + * Revision 1.16 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.15 2002/01/22 23:46:18 jongfoster + * Moving edit_read_line() and simple_read_line() to loaders.c, and + * extending them to support reading MS-DOS, Mac and UNIX style files + * on all platforms. + * + * Modifying read_config_line() (without changing it's prototype) to + * be a trivial wrapper for edit_read_line(). This means that we have + * one function to read a line and handle comments, which is common + * between the initialization code and the edit interface. + * + * Revision 1.14 2002/01/17 21:03:08 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Revision 1.13 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.12 2001/11/07 00:02:13 steudten + * Add line number in error output for lineparsing for + * actionsfile and configfile. + * Special handling for CLF added. + * + * Revision 1.11 2001/10/23 21:38:53 jongfoster + * Adding error-checking to create_url_spec() + * + * Revision 1.10 2001/09/22 16:36:59 jongfoster + * Removing unused parameter fs from read_config_line() + * + * Revision 1.9 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.8 2001/07/29 18:58:15 jongfoster + * Removing nested #includes, adding forward declarations for needed + * structures, and changing the #define _FILENAME_H to FILENAME_H_INCLUDED. + * + * Revision 1.7 2001/07/13 14:01:54 oes + * Removed all #ifdef PCRS + * + * Revision 1.6 2001/06/07 23:14:38 jongfoster + * Removing ACL and forward file loaders - these files have + * been merged into the config file. + * + * Revision 1.5 2001/05/31 21:28:49 jongfoster + * Removed all permissionsfile code - it's now called the actions + * file, and (almost) all the code is in actions.c + * + * Revision 1.4 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.3 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:59:00 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ -#include "project.h" - #ifdef __cplusplus extern "C" { #endif +/* Structures taken from project.h */ +struct client_state; +struct file_list; +struct configuration_spec; +struct url_spec; + extern void sweep(void); -extern char *read_config_line(char *buf, int buflen, FILE *fp, struct file_list *fs); - -extern int load_blockfile(struct client_state *csp); -extern int load_cookiefile(struct client_state *csp); -extern int load_forwardfile(struct client_state *csp); - -#ifdef ACL_FILES -extern int load_aclfile(struct client_state *csp); -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST -extern int load_imagefile(struct client_state *csp); -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS -extern int load_popupfile(struct client_state *csp); -#endif /* def KILLPOPUPS */ - -#ifdef TRUST_FILES -extern int load_trustfile(struct client_state *csp); -#endif /* def TRUST_FILES */ +extern char *read_config_line(char *buf, size_t buflen, FILE *fp, unsigned long *linenum); +extern int check_file_changed(const struct file_list * current, + const char * filename, + struct file_list ** newfl); -#ifdef PCRS -extern int load_re_filterfile(struct client_state *csp); -#endif /* def PCRS */ +extern jb_err edit_read_line(FILE *fp, + char **raw_out, + char **prefix_out, + char **data_out, + int *newline, + unsigned long *line_number); -extern void add_loader(int (*loader)(struct client_state *)); -extern int run_loader(struct client_state *csp); -extern void remove_all_loaders(void); +extern jb_err simple_read_line(FILE *fp, char **dest, int *newline); + +/* + * Various types of newlines that a file may contain. + */ +#define NEWLINE_UNKNOWN 0 /* Newline convention in file is unknown */ +#define NEWLINE_UNIX 1 /* Newline convention in file is '\n' (ASCII 10) */ +#define NEWLINE_DOS 2 /* Newline convention in file is '\r\n' (ASCII 13,10) */ +#define NEWLINE_MAC 3 /* Newline convention in file is '\r' (ASCII 13) */ -#ifdef PCRS +/* + * Types of newlines that a file may contain, as strings. If you have an + * extremely wierd compiler that does not have '\r' == CR == ASCII 13 and + * '\n' == LF == ASCII 10), then fix CHAR_CR and CHAR_LF in loaders.c as + * well as these definitions. + */ +#define NEWLINE(style) ((style)==NEWLINE_DOS ? "\r\n" : \ + ((style)==NEWLINE_MAC ? "\r" : "\n")) + + +extern short int MustReload; +extern int load_actions_file(struct client_state *csp); extern int load_re_filterfile(struct client_state *csp); -#endif /* def PCRS */ -#ifdef KILLPOPUPS -extern int load_popupfile(struct client_state *csp); -#endif /* def KILLPOPUPS */ +#ifdef FEATURE_TRUST +extern int load_trustfile(struct client_state *csp); +#endif /* def FEATURE_TRUST */ + +#ifdef FEATURE_GRACEFUL_TERMINATION +#ifdef FEATURE_TRUST +void unload_current_trust_file(void); +#endif +void unload_current_re_filterfile(void); +#endif /* FEATURE_GRACEFUL_TERMINATION */ + + +extern void add_loader(int (*loader)(struct client_state *), + struct configuration_spec * config); +extern int run_loader(struct client_state *csp); /* Revision control strings from this header and associated .c file */ extern const char loaders_rcs[]; @@ -94,7 +226,7 @@ extern const char loaders_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _LOADERS_H */ +#endif /* ndef LOADERS_H_INCLUDED */ /* Local Variables: diff --git a/miscutil.c b/miscutil.c index 1257a99d..065cd5f6 100644 --- a/miscutil.c +++ b/miscutil.c @@ -1,15 +1,16 @@ -const char miscutil_rcs[] = "$Id: miscutil.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char miscutil_rcs[] = "$Id: miscutil.c,v 1.36 2002/04/26 12:55:38 oes Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/miscutil.c,v $ + * File : $Source: /cvsroot/ijbswa/current/miscutil.c,v $ * * Purpose : zalloc, hash_string, safe_strerror, strcmpic, - * strncmpic, and MinGW32 strdup functions. These are - * each too small to deserve their own file but don't - * really fit in any other file. + * strncmpic, chomp, and MinGW32 strdup + * functions. + * These are each too small to deserve their own file + * but don't really fit in any other file. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -35,6 +36,166 @@ const char miscutil_rcs[] = "$Id: miscutil.c,v 1.1 2001/05/13 21:57:06 administr * * Revisions : * $Log: miscutil.c,v $ + * Revision 1.36 2002/04/26 12:55:38 oes + * New function string_toupper + * + * Revision 1.35 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.34 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.33 2002/03/07 03:46:53 oes + * Fixed compiler warnings etc + * + * Revision 1.32 2002/03/06 23:02:57 jongfoster + * Removing tabs + * + * Revision 1.31 2002/03/05 04:52:42 oes + * Deleted non-errlog debugging code + * + * Revision 1.30 2002/03/04 18:27:42 oes + * - Deleted deletePidFile + * - Made write_pid_file use the --pidfile option value + * (or no PID file, if the option was absent) + * - Played styleguide police + * + * Revision 1.29 2002/03/04 02:08:02 david__schmidt + * Enable web editing of actions file on OS/2 (it had been broken all this time!) + * + * Revision 1.28 2002/03/03 09:18:03 joergs + * Made jumbjuster work on AmigaOS again. + * + * Revision 1.27 2002/01/21 00:52:32 jongfoster + * Adding string_join() + * + * Revision 1.26 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.25 2001/11/13 00:16:38 jongfoster + * Replacing references to malloc.h with the standard stdlib.h + * (See ANSI or K&R 2nd Ed) + * + * Revision 1.24 2001/11/05 21:41:43 steudten + * Add changes to be a real daemon just for unix os. + * (change cwd to /, detach from controlling tty, set + * process group and session leader to the own process. + * Add DBG() Macro. + * Add some fatal-error log message for failed malloc(). + * Add '-d' if compiled with 'configure --with-debug' to + * enable debug output. + * + * Revision 1.23 2001/10/29 03:48:10 david__schmidt + * OS/2 native needed a snprintf() routine. Added one to miscutil, brackedted + * by and __OS2__ ifdef. + * + * Revision 1.22 2001/10/26 17:39:38 oes + * Moved ijb_isspace and ijb_tolower to project.h + * + * Revision 1.21 2001/10/23 21:27:50 jongfoster + * Standardising error codes in string_append + * make_path() no longer adds '\\' if the dir already ends in '\\' (this + * is just copying a UNIX-specific fix to the Windows-specific part) + * + * Revision 1.20 2001/10/22 15:33:56 david__schmidt + * Special-cased OS/2 out of the Netscape-abort-on-404-in-js problem in + * filters.c. Added a FIXME in front of the offending code. I'll gladly + * put in a better/more robust fix for all parties if one is presented... + * It seems that just returning 200 instead of 404 would pretty much fix + * it for everyone, but I don't know all the history of the problem. + * + * Revision 1.19 2001/10/14 22:02:57 jongfoster + * New function string_append() which is like strsav(), but running + * out of memory isn't automatically FATAL. + * + * Revision 1.18 2001/09/20 13:33:43 steudten + * + * change long to int as return value in hash_string(). Remember the wraparound + * for int = long = sizeof(4) - thats maybe not what we want. + * + * Revision 1.17 2001/09/13 20:51:29 jongfoster + * Fixing potential problems with characters >=128 in simplematch() + * This was also a compiler warning. + * + * Revision 1.16 2001/09/10 10:56:59 oes + * Silenced compiler warnings + * + * Revision 1.15 2001/07/13 14:02:24 oes + * Removed vim-settings + * + * Revision 1.14 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.13 2001/06/29 13:32:14 oes + * Removed logentry from cancelled commit + * + * Revision 1.12 2001/06/09 10:55:28 jongfoster + * Changing BUFSIZ ==> BUFFER_SIZE + * + * Revision 1.11 2001/06/07 23:09:19 jongfoster + * Cosmetic indentation changes. + * + * Revision 1.10 2001/06/07 14:51:38 joergs + * make_path() no longer adds '/' if the dir already ends in '/'. + * + * Revision 1.9 2001/06/07 14:43:17 swa + * slight mistake in make_path, unix path style is /. + * + * Revision 1.8 2001/06/05 22:32:01 jongfoster + * New function make_path() to splice directory and file names together. + * + * Revision 1.7 2001/06/03 19:12:30 oes + * introduced bindup() + * + * Revision 1.6 2001/06/01 18:14:49 jongfoster + * Changing the calls to strerr() to check HAVE_STRERR (which is defined + * in config.h if appropriate) rather than the NO_STRERR macro. + * + * Revision 1.5 2001/06/01 10:31:51 oes + * Added character class matching to trivimatch; renamed to simplematch + * + * Revision 1.4 2001/05/31 17:32:31 oes + * + * - Enhanced domain part globbing with infix and prefix asterisk + * matching and optional unanchored operation + * + * Revision 1.3 2001/05/29 23:10:09 oes + * + * + * - Introduced chomp() + * - Moved strsav() from showargs to miscutil + * + * Revision 1.2 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.1.1.1 2001/05/15 13:59:00 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -42,24 +203,22 @@ const char miscutil_rcs[] = "$Id: miscutil.c,v 1.1 2001/05/13 21:57:06 administr #include "config.h" #include +#include #include +#if !defined(_WIN32) && !defined(__OS2__) +#include +#endif /* #if !defined(_WIN32) && !defined(__OS2__) */ #include -#include #include +#include +#include "project.h" #include "miscutil.h" +#include "errlog.h" +#include "jcc.h" const char miscutil_h_rcs[] = MISCUTIL_H_VERSION; -/* Fix a problem with Solaris. There should be no effect on other - * platforms. - * Solaris's isspace() is a macro which uses it's argument directly - * as an array index. Therefore we need to make sure that high-bit - * characters generate +ve values, and ideally we also want to make - * the argument match the declared parameter type of "int". - */ -#define ijb_tolower(__X) tolower((int)(unsigned char)(__X)) - /********************************************************************* * * Function : zalloc @@ -73,7 +232,7 @@ const char miscutil_h_rcs[] = MISCUTIL_H_VERSION; * Returns : Pointer to newly malloc'd memory chunk. * *********************************************************************/ -void *zalloc(int size) +void *zalloc(size_t size) { void * ret; @@ -83,9 +242,47 @@ void *zalloc(int size) } return(ret); + } +#if defined(unix) +/********************************************************************* + * + * Function : write_pid_file + * + * Description : Writes a pid file with the pid of the main process + * + * Parameters : None + * + * Returns : N/A + * + *********************************************************************/ +void write_pid_file(void) +{ + FILE *fp; + + /* + * If no --pidfile option was given, + * we can live without one. + */ + if (pidfile == NULL) return; + + if ((fp = fopen(pidfile, "w")) == NULL) + { + log_error(LOG_LEVEL_INFO, "can't open pidfile '%s': %E", pidfile); + } + else + { + fprintf(fp, "%u\n", (unsigned int) getpid()); + fclose (fp); + } + return; + +} +#endif /* def unix */ + + /********************************************************************* * * Function : hash_string @@ -100,9 +297,9 @@ void *zalloc(int size) * Returns : an unsigned long variable with the hashed value. * *********************************************************************/ -unsigned long hash_string( const char* s ) +unsigned int hash_string( const char* s ) { - unsigned long h = 0ul; + unsigned int h = 0; for ( ; *s; ++s ) { @@ -165,12 +362,12 @@ char *strdup( const char *s ) char *safe_strerror(int err) { char *s = NULL; - char buf[BUFSIZ]; + char buf[BUFFER_SIZE]; -#ifndef NOSTRERROR +#ifdef HAVE_STRERROR s = strerror(err); -#endif /* NOSTRERROR */ +#endif /* HAVE_STRERROR */ if (s == NULL) { @@ -196,7 +393,7 @@ char *safe_strerror(int err) * Returns : 0 if s1==s2, Negative if s1s2 * *********************************************************************/ -int strcmpic(char *s1, char *s2) +int strcmpic(const char *s1, const char *s2) { while (*s1 && *s2) { @@ -225,7 +422,7 @@ int strcmpic(char *s1, char *s2) * Returns : 0 if s1==s2, Negative if s1s2 * *********************************************************************/ -int strncmpic(char *s1, char *s2, size_t n) +int strncmpic(const char *s1, const char *s2, size_t n) { if (n <= 0) return(0); @@ -245,6 +442,1316 @@ int strncmpic(char *s1, char *s2, size_t n) } +/********************************************************************* + * + * Function : chomp + * + * Description : In-situ-eliminate all leading and trailing whitespace + * from a string. + * + * Parameters : + * 1 : s : string to be chomped. + * + * Returns : chomped string + * + *********************************************************************/ +char *chomp(char *string) +{ + char *p, *q, *r; + + /* + * strip trailing whitespace + */ + p = string + strlen(string); + while (p > string && ijb_isspace(*(p-1))) + { + p--; + } + *p = '\0'; + + /* + * find end of leading whitespace + */ + q = r = string; + while (*q && ijb_isspace(*q)) + { + q++; + } + + /* + * if there was any, move the rest forwards + */ + if (q != string) + { + while (q <= p) + { + *r++ = *q++; + } + } + + return(string); + +} + + +/********************************************************************* + * + * Function : strsav + * + * Description : Reallocate "old" and append text to it. This makes + * it easier to append to malloc'd strings. + * Running out of memory is a FATAL error. + * + * Parameters : + * 1 : old = Old text that is to be extended. Will be + * free()d by this routine. May be NULL. + * 2 : text_to_append = Text to be appended to old. + * May be NULL. + * + * Returns : Pointer to newly malloc'ed appended string. + * If there is no text to append, return old. Caller + * must free(). + * + *********************************************************************/ +char *strsav(char *old, const char *text_to_append) +{ + size_t old_len, new_len = 0; + char *p; + + if ((text_to_append == NULL) || (*text_to_append == '\0')) + { + return(old); + } + + if (NULL == old) + { + if ((p = strdup(text_to_append)) == NULL) + { + log_error(LOG_LEVEL_FATAL, "strdup() failed!"); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + } + return p; + } + + old_len = strlen(old); + new_len = old_len + strlen(text_to_append) + 1; + + if ((p = realloc(old, new_len)) == NULL) + { + log_error(LOG_LEVEL_FATAL, "realloc(%d) bytes failed!", new_len); + /* Never get here - LOG_LEVEL_FATAL causes program exit */ + } + + strcpy(p + old_len, text_to_append); + return(p); +} + + +/********************************************************************* + * + * Function : string_append + * + * Description : Reallocate target_string and append text to it. + * This makes it easier to append to malloc'd strings. + * This is similar to the (removed) strsav(), but + * running out of memory isn't catastrophic. + * + * Programming style: + * + * The following style provides sufficient error + * checking for this routine, with minimal clutter + * in the source code. It is recommended if you + * have many calls to this function: + * + * char * s = strdup(...); // don't check for error + * string_append(&s, ...); // don't check for error + * string_append(&s, ...); // don't check for error + * string_append(&s, ...); // don't check for error + * if (NULL == s) { ... handle error ... } + * + * OR, equivalently: + * + * char * s = strdup(...); // don't check for error + * string_append(&s, ...); // don't check for error + * string_append(&s, ...); // don't check for error + * if (string_append(&s, ...)) {... handle error ...} + * + * Parameters : + * 1 : target_string = Pointer to old text that is to be + * extended. *target_string will be free()d by this + * routine. target_string must be non-NULL. + * If *target_string is NULL, this routine will + * do nothing and return with an error - this allows + * you to make many calls to this routine and only + * check for errors after the last one. + * 2 : text_to_append = Text to be appended to old. + * Must not be NULL. + * + * Returns : JB_ERR_OK on success, and sets *target_string + * to newly malloc'ed appended string. Caller + * must free(*target_string). + * JB_ERR_MEMORY on out-of-memory. (And free()s + * *target_string and sets it to NULL). + * JB_ERR_MEMORY if *target_string is NULL. + * + *********************************************************************/ +jb_err string_append(char **target_string, const char *text_to_append) +{ + size_t old_len; + char *new_string; + + assert(target_string); + assert(text_to_append); + + if (*target_string == NULL) + { + return JB_ERR_MEMORY; + } + + if (*text_to_append == '\0') + { + return JB_ERR_OK; + } + + old_len = strlen(*target_string); + + if (NULL == (new_string = realloc(*target_string, + strlen(text_to_append) + old_len + 1))) + { + free(*target_string); + + *target_string = NULL; + return JB_ERR_MEMORY; + } + + strcpy(new_string + old_len, text_to_append); + + *target_string = new_string; + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : string_join + * + * Description : Join two strings together. Frees BOTH the original + * strings. If either or both input strings are NULL, + * fails as if it had run out of memory. + * + * For comparison, string_append requires that the + * second string is non-NULL, and doesn't free it. + * + * Rationale: Too often, we want to do + * string_append(s, html_encode(s2)). That assert()s + * if s2 is NULL or if html_encode() runs out of memory. + * It also leaks memory. Proper checking is cumbersome. + * The solution: string_join(s, html_encode(s2)) is safe, + * and will free the memory allocated by html_encode(). + * + * Parameters : + * 1 : target_string = Pointer to old text that is to be + * extended. *target_string will be free()d by this + * routine. target_string must be non-NULL. + * 2 : text_to_append = Text to be appended to old. + * + * Returns : JB_ERR_OK on success, and sets *target_string + * to newly malloc'ed appended string. Caller + * must free(*target_string). + * JB_ERR_MEMORY on out-of-memory, or if + * *target_string or text_to_append is NULL. (In + * this case, frees *target_string and text_to_append, + * sets *target_string to NULL). + * + *********************************************************************/ +jb_err string_join(char **target_string, char *text_to_append) +{ + jb_err err; + + assert(target_string); + + if (text_to_append == NULL) + { + freez(*target_string); + return JB_ERR_MEMORY; + } + + err = string_append(target_string, text_to_append); + + free(text_to_append); + + return err; +} + + +/********************************************************************* + * + * Function : string_toupper + * + * Description : Produce a copy of string with all convertible + * characters converted to uppercase. + * + * Parameters : + * 1 : string = string to convert + * + * Returns : Uppercase copy of string if possible, + * NULL on out-of-memory or if string was NULL. + * + *********************************************************************/ +char *string_toupper(const char *string) +{ + char *result, *p; + const char *q; + + if (!string || ((result = (char *) zalloc(strlen(string) + 1)) == NULL)) + { + return NULL; + } + + q = string; + p = result; + + while (*q != '\0') + { + *p++ = toupper(*q++); + } + + return result; + +} + + +/********************************************************************* + * + * Function : simplematch + * + * Description : String matching, with a (greedy) '*' wildcard that + * stands for zero or more arbitrary characters and + * character classes in [], which take both enumerations + * and ranges. + * + * Parameters : + * 1 : pattern = pattern for matching + * 2 : text = text to be matched + * + * Returns : 0 if match, else nonzero + * + *********************************************************************/ +int simplematch(char *pattern, char *text) +{ + unsigned char *pat = (unsigned char *) pattern; + unsigned char *txt = (unsigned char *) text; + unsigned char *fallback = pat; + int wildcard = 0; + + unsigned char lastchar = 'a'; + unsigned i; + unsigned char charmap[32]; + + + while (*txt) + { + + /* EOF pattern but !EOF text? */ + if (*pat == '\0') + { + return 1; + } + + /* '*' in the pattern? */ + if (*pat == '*') + { + + /* The pattern ends afterwards? Speed up the return. */ + if (*++pat == '\0') + { + return 0; + } + + /* Else, set wildcard mode and remember position after '*' */ + wildcard = 1; + fallback = pat; + } + + /* Character range specification? */ + if (*pat == '[') + { + memset(charmap, '\0', sizeof(charmap)); + + while (*++pat != ']') + { + if (!*pat) + { + return 1; + } + else if (*pat == '-') + { + if ((*++pat == ']') || *pat == '\0') + { + return(1); + } + for(i = lastchar; i <= *pat; i++) + { + charmap[i / 8] |= (1 << (i % 8)); + } + } + else + { + charmap[*pat / 8] |= (1 << (*pat % 8)); + lastchar = *pat; + } + } + } /* -END- if Character range specification */ + + + /* Compare: Char match, or char range match*/ + if ((*pat == *txt) + || ((*pat == ']') && (charmap[*txt / 8] & (1 << (*txt % 8)))) ) + { + /* Sucess, go ahead */ + pat++; + } + else + { + /* In wildcard mode, just try again after failiure */ + if(wildcard) + { + pat = fallback; + } + + /* Else, bad luck */ + else + { + return 1; + } + } + txt++; + } + + /* Cut off extra '*'s */ + if(*pat == '*') pat++; + + /* If this is the pattern's end, fine! */ + return(*pat); + +} + + +/********************************************************************* + * + * Function : bindup + * + * Description : Duplicate the first n characters of a string that may + * contain '\0' characters. + * + * Parameters : + * 1 : string = string to be duplicated + * 2 : len = number of bytes to duplicate + * + * Returns : pointer to copy, or NULL if failiure + * + *********************************************************************/ +char *bindup(const char *string, size_t len) +{ + char *duplicate; + + if (NULL == (duplicate = (char *)malloc(len))) + { + return NULL; + } + else + { + memcpy(duplicate, string, len); + } + + return duplicate; + +} + + +/********************************************************************* + * + * Function : make_path + * + * Description : Takes a directory name and a file name, returns + * the complete path. Handles windows/unix differences. + * If the file name is already an absolute path, or if + * the directory name is NULL or empty, it returns + * the filename. + * + * Parameters : + * 1 : dir: Name of directory or NULL for none. + * 2 : file: Name of file. Should not be NULL or empty. + * + * Returns : "dir/file" (Or on windows, "dir\file"). + * It allocates the string on the heap. Caller frees. + * Returns NULL in error (i.e. NULL file or out of + * memory) + * + *********************************************************************/ +char * make_path(const char * dir, const char * file) +{ +#ifdef AMIGA + char path[512]; + + if(dir) + { + if(dir[0] == '.') + { + if(dir[1] == '/') + { + strncpy(path,dir+2,512); + } + else + { + strncpy(path,dir+1,512); + } + } + else + { + strncpy(path,dir,512); + } + path[511]=0; + } else { + path[0]=0; + } + if(AddPart(path,file,512)) + { + return strdup(path); + } else { + return NULL; + } +#else /* ndef AMIGA */ + + if ((file == NULL) || (*file == '\0')) + { + return NULL; /* Error */ + } + + if ((dir == NULL) || (*dir == '\0') /* No directory specified */ +#if defined(_WIN32) || defined(__OS2__) + || (*file == '\\') || (file[1] == ':') /* Absolute path (DOS) */ +#else /* ifndef _WIN32 || __OS2__ */ + || (*file == '/') /* Absolute path (U*ix) */ +#endif /* ifndef _WIN32 || __OS2__ */ + ) + { + return strdup(file); + } + else + { + char * path; + +#if defined(unix) + if ( *dir != '/' && basedir && *basedir ) + { + path = malloc( strlen( basedir ) + strlen(dir) + strlen(file) + 3); + if (!path ) log_error(LOG_LEVEL_FATAL, "malloc failed!"); + strcpy(path, basedir); + strcat(path, "/"); + strcat(path, dir); + } + else + { + path = malloc(strlen(dir) + strlen(file) + 2); + if (!path ) log_error(LOG_LEVEL_FATAL, "malloc failed!"); + strcpy(path, dir); + } +#else + + path = malloc(strlen(dir) + strlen(file) + 2); + if (!path ) log_error(LOG_LEVEL_FATAL, "malloc failed!"); + strcpy(path, dir); + +#endif /* defined unix */ + +#if defined(_WIN32) || defined(__OS2__) + if(path[strlen(path)-1] != '\\') + { + strcat(path, "\\"); + } +#else /* ifndef _WIN32 || __OS2__ */ + if(path[strlen(path)-1] != '/') + { + strcat(path, "/"); + } +#endif /* ifndef _WIN32 || __OS2__ */ + strcat(path, file); + + return path; + } +#endif /* ndef AMIGA */ +} + + +/* + * What follows is a portable snprintf routine, written by Mark Martinec. + * See: http://www.ijs.si/software/snprintf/ + * Anyone who needs it can add a define for themselves... so far, only + * OS/2 (native) lacks snprintf. + + snprintf.c + - a portable implementation of snprintf, + including vsnprintf.c, asnprintf, vasnprintf, asprintf, vasprintf + + snprintf is a routine to convert numeric and string arguments to + formatted strings. It is similar to sprintf(3) provided in a system's + C library, yet it requires an additional argument - the buffer size - + and it guarantees never to store anything beyond the given buffer, + regardless of the format or arguments to be formatted. Some newer + operating systems do provide snprintf in their C library, but many do + not or do provide an inadequate (slow or idiosyncratic) version, which + calls for a portable implementation of this routine. + +Author + + Mark Martinec , April 1999, June 2000 + Copyright © 1999, Mark Martinec + + */ + +#ifdef __OS2__ + +#define PORTABLE_SNPRINTF_VERSION_MAJOR 2 +#define PORTABLE_SNPRINTF_VERSION_MINOR 2 + +#if defined(NEED_ASPRINTF) || defined(NEED_ASNPRINTF) || defined(NEED_VASPRINTF) || defined(NEED_VASNPRINTF) +# if defined(NEED_SNPRINTF_ONLY) +# undef NEED_SNPRINTF_ONLY +# endif +# if !defined(PREFER_PORTABLE_SNPRINTF) +# define PREFER_PORTABLE_SNPRINTF +# endif +#endif + +#if defined(SOLARIS_BUG_COMPATIBLE) && !defined(SOLARIS_COMPATIBLE) +#define SOLARIS_COMPATIBLE +#endif + +#if defined(HPUX_BUG_COMPATIBLE) && !defined(HPUX_COMPATIBLE) +#define HPUX_COMPATIBLE +#endif + +#if defined(DIGITAL_UNIX_BUG_COMPATIBLE) && !defined(DIGITAL_UNIX_COMPATIBLE) +#define DIGITAL_UNIX_COMPATIBLE +#endif + +#if defined(PERL_BUG_COMPATIBLE) && !defined(PERL_COMPATIBLE) +#define PERL_COMPATIBLE +#endif + +#if defined(LINUX_BUG_COMPATIBLE) && !defined(LINUX_COMPATIBLE) +#define LINUX_COMPATIBLE +#endif + +#include +#include +#include +#include +#include +#include +#include + +#ifdef isdigit +#undef isdigit +#endif +#define isdigit(c) ((c) >= '0' && (c) <= '9') + +/* For copying strings longer or equal to 'breakeven_point' + * it is more efficient to call memcpy() than to do it inline. + * The value depends mostly on the processor architecture, + * but also on the compiler and its optimization capabilities. + * The value is not critical, some small value greater than zero + * will be just fine if you don't care to squeeze every drop + * of performance out of the code. + * + * Small values favor memcpy, large values favor inline code. + */ +#if defined(__alpha__) || defined(__alpha) +# define breakeven_point 2 /* AXP (DEC Alpha) - gcc or cc or egcs */ +#endif +#if defined(__i386__) || defined(__i386) +# define breakeven_point 12 /* Intel Pentium/Linux - gcc 2.96 */ +#endif +#if defined(__hppa) +# define breakeven_point 10 /* HP-PA - gcc */ +#endif +#if defined(__sparc__) || defined(__sparc) +# define breakeven_point 33 /* Sun Sparc 5 - gcc 2.8.1 */ +#endif + +/* some other values of possible interest: */ +/* #define breakeven_point 8 */ /* VAX 4000 - vaxc */ +/* #define breakeven_point 19 */ /* VAX 4000 - gcc 2.7.0 */ + +#ifndef breakeven_point +# define breakeven_point 6 /* some reasonable one-size-fits-all value */ +#endif + +#define fast_memcpy(d,s,n) \ + { register size_t nn = (size_t)(n); \ + if (nn >= breakeven_point) memcpy((d), (s), nn); \ + else if (nn > 0) { /* proc call overhead is worth only for large strings*/\ + register char *dd; register const char *ss; \ + for (ss=(s), dd=(d); nn>0; nn--) *dd++ = *ss++; } } + +#define fast_memset(d,c,n) \ + { register size_t nn = (size_t)(n); \ + if (nn >= breakeven_point) memset((d), (int)(c), nn); \ + else if (nn > 0) { /* proc call overhead is worth only for large strings*/\ + register char *dd; register const int cc=(int)(c); \ + for (dd=(d); nn>0; nn--) *dd++ = cc; } } + +/* prototypes */ + +#if defined(NEED_ASPRINTF) +int asprintf (char **ptr, const char *fmt, /*args*/ ...); +#endif +#if defined(NEED_VASPRINTF) +int vasprintf (char **ptr, const char *fmt, va_list ap); +#endif +#if defined(NEED_ASNPRINTF) +int asnprintf (char **ptr, size_t str_m, const char *fmt, /*args*/ ...); +#endif +#if defined(NEED_VASNPRINTF) +int vasnprintf (char **ptr, size_t str_m, const char *fmt, va_list ap); +#endif + +#if defined(HAVE_SNPRINTF) +/* declare our portable snprintf routine under name portable_snprintf */ +/* declare our portable vsnprintf routine under name portable_vsnprintf */ +#else +/* declare our portable routines under names snprintf and vsnprintf */ +#define portable_snprintf snprintf +#if !defined(NEED_SNPRINTF_ONLY) +#define portable_vsnprintf vsnprintf +#endif +#endif + +#if !defined(HAVE_SNPRINTF) || defined(PREFER_PORTABLE_SNPRINTF) +int portable_snprintf(char *str, size_t str_m, const char *fmt, /*args*/ ...); +#if !defined(NEED_SNPRINTF_ONLY) +int portable_vsnprintf(char *str, size_t str_m, const char *fmt, va_list ap); +#endif +#endif + +/* declarations */ + +static char credits[] = "\n\ +@(#)snprintf.c, v2.2: Mark Martinec, \n\ +@(#)snprintf.c, v2.2: Copyright 1999, Mark Martinec. Frontier Artistic License applies.\n\ +@(#)snprintf.c, v2.2: http://www.ijs.si/software/snprintf/\n"; + +#if defined(NEED_ASPRINTF) +int asprintf(char **ptr, const char *fmt, /*args*/ ...) { + va_list ap; + size_t str_m; + int str_l; + + *ptr = NULL; + va_start(ap, fmt); /* measure the required size */ + str_l = portable_vsnprintf(NULL, (size_t)0, fmt, ap); + va_end(ap); + assert(str_l >= 0); /* possible integer overflow if str_m > INT_MAX */ + *ptr = (char *) malloc(str_m = (size_t)str_l + 1); + if (*ptr == NULL) { errno = ENOMEM; str_l = -1; } + else { + int str_l2; + va_start(ap, fmt); + str_l2 = portable_vsnprintf(*ptr, str_m, fmt, ap); + va_end(ap); + assert(str_l2 == str_l); + } + return str_l; +} +#endif + +#if defined(NEED_VASPRINTF) +int vasprintf(char **ptr, const char *fmt, va_list ap) { + size_t str_m; + int str_l; + + *ptr = NULL; + { va_list ap2; + va_copy(ap2, ap); /* don't consume the original ap, we'll need it again */ + str_l = portable_vsnprintf(NULL, (size_t)0, fmt, ap2);/*get required size*/ + va_end(ap2); + } + assert(str_l >= 0); /* possible integer overflow if str_m > INT_MAX */ + *ptr = (char *) malloc(str_m = (size_t)str_l + 1); + if (*ptr == NULL) { errno = ENOMEM; str_l = -1; } + else { + int str_l2 = portable_vsnprintf(*ptr, str_m, fmt, ap); + assert(str_l2 == str_l); + } + return str_l; +} +#endif + +#if defined(NEED_ASNPRINTF) +int asnprintf (char **ptr, size_t str_m, const char *fmt, /*args*/ ...) { + va_list ap; + int str_l; + + *ptr = NULL; + va_start(ap, fmt); /* measure the required size */ + str_l = portable_vsnprintf(NULL, (size_t)0, fmt, ap); + va_end(ap); + assert(str_l >= 0); /* possible integer overflow if str_m > INT_MAX */ + if ((size_t)str_l + 1 < str_m) str_m = (size_t)str_l + 1; /* truncate */ + /* if str_m is 0, no buffer is allocated, just set *ptr to NULL */ + if (str_m == 0) { /* not interested in resulting string, just return size */ + } else { + *ptr = (char *) malloc(str_m); + if (*ptr == NULL) { errno = ENOMEM; str_l = -1; } + else { + int str_l2; + va_start(ap, fmt); + str_l2 = portable_vsnprintf(*ptr, str_m, fmt, ap); + va_end(ap); + assert(str_l2 == str_l); + } + } + return str_l; +} +#endif + +#if defined(NEED_VASNPRINTF) +int vasnprintf (char **ptr, size_t str_m, const char *fmt, va_list ap) { + int str_l; + + *ptr = NULL; + { va_list ap2; + va_copy(ap2, ap); /* don't consume the original ap, we'll need it again */ + str_l = portable_vsnprintf(NULL, (size_t)0, fmt, ap2);/*get required size*/ + va_end(ap2); + } + assert(str_l >= 0); /* possible integer overflow if str_m > INT_MAX */ + if ((size_t)str_l + 1 < str_m) str_m = (size_t)str_l + 1; /* truncate */ + /* if str_m is 0, no buffer is allocated, just set *ptr to NULL */ + if (str_m == 0) { /* not interested in resulting string, just return size */ + } else { + *ptr = (char *) malloc(str_m); + if (*ptr == NULL) { errno = ENOMEM; str_l = -1; } + else { + int str_l2 = portable_vsnprintf(*ptr, str_m, fmt, ap); + assert(str_l2 == str_l); + } + } + return str_l; +} +#endif + +/* + * If the system does have snprintf and the portable routine is not + * specifically required, this module produces no code for snprintf/vsnprintf. + */ +#if !defined(HAVE_SNPRINTF) || defined(PREFER_PORTABLE_SNPRINTF) + +#if !defined(NEED_SNPRINTF_ONLY) +int portable_snprintf(char *str, size_t str_m, const char *fmt, /*args*/ ...) { + va_list ap; + int str_l; + + va_start(ap, fmt); + str_l = portable_vsnprintf(str, str_m, fmt, ap); + va_end(ap); + return str_l; +} +#endif + +#if defined(NEED_SNPRINTF_ONLY) +int portable_snprintf(char *str, size_t str_m, const char *fmt, /*args*/ ...) { +#else +int portable_vsnprintf(char *str, size_t str_m, const char *fmt, va_list ap) { +#endif + +#if defined(NEED_SNPRINTF_ONLY) + va_list ap; +#endif + size_t str_l = 0; + const char *p = fmt; + +/* In contrast with POSIX, the ISO C99 now says + * that str can be NULL and str_m can be 0. + * This is more useful than the old: if (str_m < 1) return -1; */ + +#if defined(NEED_SNPRINTF_ONLY) + va_start(ap, fmt); +#endif + if (!p) p = ""; + while (*p) { + if (*p != '%') { + /* if (str_l < str_m) str[str_l++] = *p++; -- this would be sufficient */ + /* but the following code achieves better performance for cases + * where format string is long and contains few conversions */ + const char *q = strchr(p+1,'%'); + size_t n = !q ? strlen(p) : (q-p); + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memcpy(str+str_l, p, (n>avail?avail:n)); + } + p += n; str_l += n; + } else { + const char *starting_p; + size_t min_field_width = 0, precision = 0; + int zero_padding = 0, precision_specified = 0, justify_left = 0; + int alternate_form = 0, force_sign = 0; + int space_for_positive = 1; /* If both the ' ' and '+' flags appear, + the ' ' flag should be ignored. */ + char length_modifier = '\0'; /* allowed values: \0, h, l, L */ + char tmp[32];/* temporary buffer for simple numeric->string conversion */ + + const char *str_arg; /* string address in case of string argument */ + size_t str_arg_l; /* natural field width of arg without padding + and sign */ + unsigned char uchar_arg; + /* unsigned char argument value - only defined for c conversion. + N.B. standard explicitly states the char argument for + the c conversion is unsigned */ + + size_t number_of_zeros_to_pad = 0; + /* number of zeros to be inserted for numeric conversions + as required by the precision or minimal field width */ + + size_t zero_padding_insertion_ind = 0; + /* index into tmp where zero padding is to be inserted */ + + char fmt_spec = '\0'; + /* current conversion specifier character */ + + str_arg = credits;/* just to make compiler happy (defined but not used)*/ + str_arg = NULL; + starting_p = p; p++; /* skip '%' */ + /* parse flags */ + while (*p == '0' || *p == '-' || *p == '+' || + *p == ' ' || *p == '#' || *p == '\'') { + switch (*p) { + case '0': zero_padding = 1; break; + case '-': justify_left = 1; break; + case '+': force_sign = 1; space_for_positive = 0; break; + case ' ': force_sign = 1; + /* If both the ' ' and '+' flags appear, the ' ' flag should be ignored */ +#ifdef PERL_COMPATIBLE + /* ... but in Perl the last of ' ' and '+' applies */ + space_for_positive = 1; +#endif + break; + case '#': alternate_form = 1; break; + case '\'': break; + } + p++; + } + /* If the '0' and '-' flags both appear, the '0' flag should be ignored. */ + + /* parse field width */ + if (*p == '*') { + int j; + p++; j = va_arg(ap, int); + if (j >= 0) min_field_width = j; + else { min_field_width = -j; justify_left = 1; } + } else if (isdigit((int)(*p))) { + /* size_t could be wider than unsigned int; + make sure we treat argument like common implementations do */ + unsigned int uj = *p++ - '0'; + while (isdigit((int)(*p))) uj = 10*uj + (unsigned int)(*p++ - '0'); + min_field_width = uj; + } + /* parse precision */ + if (*p == '.') { + p++; precision_specified = 1; + if (*p == '*') { + int j = va_arg(ap, int); + p++; + if (j >= 0) precision = j; + else { + precision_specified = 0; precision = 0; + /* NOTE: + * Solaris 2.6 man page claims that in this case the precision + * should be set to 0. Digital Unix 4.0, HPUX 10 and BSD man page + * claim that this case should be treated as unspecified precision, + * which is what we do here. + */ + } + } else if (isdigit((int)(*p))) { + /* size_t could be wider than unsigned int; + make sure we treat argument like common implementations do */ + unsigned int uj = *p++ - '0'; + while (isdigit((int)(*p))) uj = 10*uj + (unsigned int)(*p++ - '0'); + precision = uj; + } + } + /* parse 'h', 'l' and 'll' length modifiers */ + if (*p == 'h' || *p == 'l') { + length_modifier = *p; p++; + if (length_modifier == 'l' && *p == 'l') { /* double l = long long */ +#ifdef SNPRINTF_LONGLONG_SUPPORT + length_modifier = '2'; /* double l encoded as '2' */ +#else + length_modifier = 'l'; /* treat it as a single 'l' */ +#endif + p++; + } + } + fmt_spec = *p; + /* common synonyms: */ + switch (fmt_spec) { + case 'i': fmt_spec = 'd'; break; + case 'D': fmt_spec = 'd'; length_modifier = 'l'; break; + case 'U': fmt_spec = 'u'; length_modifier = 'l'; break; + case 'O': fmt_spec = 'o'; length_modifier = 'l'; break; + default: break; + } + /* get parameter value, do initial processing */ + switch (fmt_spec) { + case '%': /* % behaves similar to 's' regarding flags and field widths */ + case 'c': /* c behaves similar to 's' regarding flags and field widths */ + case 's': + length_modifier = '\0'; /* wint_t and wchar_t not supported */ + /* the result of zero padding flag with non-numeric conversion specifier*/ + /* is undefined. Solaris and HPUX 10 does zero padding in this case, */ + /* Digital Unix and Linux does not. */ +#if !defined(SOLARIS_COMPATIBLE) && !defined(HPUX_COMPATIBLE) + zero_padding = 0; /* turn zero padding off for string conversions */ +#endif + str_arg_l = 1; + switch (fmt_spec) { + case '%': + str_arg = p; break; + case 'c': { + int j = va_arg(ap, int); + uchar_arg = (unsigned char) j; /* standard demands unsigned char */ + str_arg = (const char *) &uchar_arg; + break; + } + case 's': + str_arg = va_arg(ap, const char *); + if (!str_arg) str_arg_l = 0; + /* make sure not to address string beyond the specified precision !!! */ + else if (!precision_specified) str_arg_l = strlen(str_arg); + /* truncate string if necessary as requested by precision */ + else if (precision == 0) str_arg_l = 0; + else { + /* memchr on HP does not like n > 2^31 !!! */ + const char *q = memchr(str_arg, '\0', + precision <= 0x7fffffff ? precision : 0x7fffffff); + str_arg_l = !q ? precision : (q-str_arg); + } + break; + default: break; + } + break; + case 'd': case 'u': case 'o': case 'x': case 'X': case 'p': { + /* NOTE: the u, o, x, X and p conversion specifiers imply + the value is unsigned; d implies a signed value */ + + int arg_sign = 0; + /* 0 if numeric argument is zero (or if pointer is NULL for 'p'), + +1 if greater than zero (or nonzero for unsigned arguments), + -1 if negative (unsigned argument is never negative) */ + + int int_arg = 0; unsigned int uint_arg = 0; + /* only defined for length modifier h, or for no length modifiers */ + + long int long_arg = 0; unsigned long int ulong_arg = 0; + /* only defined for length modifier l */ + + void *ptr_arg = NULL; + /* pointer argument value -only defined for p conversion */ + +#ifdef SNPRINTF_LONGLONG_SUPPORT + long long int long_long_arg = 0; + unsigned long long int ulong_long_arg = 0; + /* only defined for length modifier ll */ +#endif + if (fmt_spec == 'p') { + /* HPUX 10: An l, h, ll or L before any other conversion character + * (other than d, i, u, o, x, or X) is ignored. + * Digital Unix: + * not specified, but seems to behave as HPUX does. + * Solaris: If an h, l, or L appears before any other conversion + * specifier (other than d, i, u, o, x, or X), the behavior + * is undefined. (Actually %hp converts only 16-bits of address + * and %llp treats address as 64-bit data which is incompatible + * with (void *) argument on a 32-bit system). + */ +#ifdef SOLARIS_COMPATIBLE +# ifdef SOLARIS_BUG_COMPATIBLE + /* keep length modifiers even if it represents 'll' */ +# else + if (length_modifier == '2') length_modifier = '\0'; +# endif +#else + length_modifier = '\0'; +#endif + ptr_arg = va_arg(ap, void *); + if (ptr_arg != NULL) arg_sign = 1; + } else if (fmt_spec == 'd') { /* signed */ + switch (length_modifier) { + case '\0': + case 'h': + /* It is non-portable to specify a second argument of char or short + * to va_arg, because arguments seen by the called function + * are not char or short. C converts char and short arguments + * to int before passing them to a function. + */ + int_arg = va_arg(ap, int); + if (int_arg > 0) arg_sign = 1; + else if (int_arg < 0) arg_sign = -1; + break; + case 'l': + long_arg = va_arg(ap, long int); + if (long_arg > 0) arg_sign = 1; + else if (long_arg < 0) arg_sign = -1; + break; +#ifdef SNPRINTF_LONGLONG_SUPPORT + case '2': + long_long_arg = va_arg(ap, long long int); + if (long_long_arg > 0) arg_sign = 1; + else if (long_long_arg < 0) arg_sign = -1; + break; +#endif + } + } else { /* unsigned */ + switch (length_modifier) { + case '\0': + case 'h': + uint_arg = va_arg(ap, unsigned int); + if (uint_arg) arg_sign = 1; + break; + case 'l': + ulong_arg = va_arg(ap, unsigned long int); + if (ulong_arg) arg_sign = 1; + break; +#ifdef SNPRINTF_LONGLONG_SUPPORT + case '2': + ulong_long_arg = va_arg(ap, unsigned long long int); + if (ulong_long_arg) arg_sign = 1; + break; +#endif + } + } + str_arg = tmp; str_arg_l = 0; + /* NOTE: + * For d, i, u, o, x, and X conversions, if precision is specified, + * the '0' flag should be ignored. This is so with Solaris 2.6, + * Digital UNIX 4.0, HPUX 10, Linux, FreeBSD, NetBSD; but not with Perl. + */ +#ifndef PERL_COMPATIBLE + if (precision_specified) zero_padding = 0; +#endif + if (fmt_spec == 'd') { + if (force_sign && arg_sign >= 0) + tmp[str_arg_l++] = space_for_positive ? ' ' : '+'; + /* leave negative numbers for sprintf to handle, + to avoid handling tricky cases like (short int)(-32768) */ +#ifdef LINUX_COMPATIBLE + } else if (fmt_spec == 'p' && force_sign && arg_sign > 0) { + tmp[str_arg_l++] = space_for_positive ? ' ' : '+'; +#endif + } else if (alternate_form) { + if (arg_sign != 0 && (fmt_spec == 'x' || fmt_spec == 'X') ) + { tmp[str_arg_l++] = '0'; tmp[str_arg_l++] = fmt_spec; } + /* alternate form should have no effect for p conversion, but ... */ +#ifdef HPUX_COMPATIBLE + else if (fmt_spec == 'p' + /* HPUX 10: for an alternate form of p conversion, + * a nonzero result is prefixed by 0x. */ +#ifndef HPUX_BUG_COMPATIBLE + /* Actually it uses 0x prefix even for a zero value. */ + && arg_sign != 0 +#endif + ) { tmp[str_arg_l++] = '0'; tmp[str_arg_l++] = 'x'; } +#endif + } + zero_padding_insertion_ind = str_arg_l; + if (!precision_specified) precision = 1; /* default precision is 1 */ + if (precision == 0 && arg_sign == 0 +#if defined(HPUX_BUG_COMPATIBLE) || defined(LINUX_COMPATIBLE) + && fmt_spec != 'p' + /* HPUX 10 man page claims: With conversion character p the result of + * converting a zero value with a precision of zero is a null string. + * Actually HP returns all zeroes, and Linux returns "(nil)". */ +#endif + ) { + /* converted to null string */ + /* When zero value is formatted with an explicit precision 0, + the resulting formatted string is empty (d, i, u, o, x, X, p). */ + } else { + char f[5]; int f_l = 0; + f[f_l++] = '%'; /* construct a simple format string for sprintf */ + if (!length_modifier) { } + else if (length_modifier=='2') { f[f_l++] = 'l'; f[f_l++] = 'l'; } + else f[f_l++] = length_modifier; + f[f_l++] = fmt_spec; f[f_l++] = '\0'; + if (fmt_spec == 'p') str_arg_l += sprintf(tmp+str_arg_l, f, ptr_arg); + else if (fmt_spec == 'd') { /* signed */ + switch (length_modifier) { + case '\0': + case 'h': str_arg_l+=sprintf(tmp+str_arg_l, f, int_arg); break; + case 'l': str_arg_l+=sprintf(tmp+str_arg_l, f, long_arg); break; +#ifdef SNPRINTF_LONGLONG_SUPPORT + case '2': str_arg_l+=sprintf(tmp+str_arg_l,f,long_long_arg); break; +#endif + } + } else { /* unsigned */ + switch (length_modifier) { + case '\0': + case 'h': str_arg_l+=sprintf(tmp+str_arg_l, f, uint_arg); break; + case 'l': str_arg_l+=sprintf(tmp+str_arg_l, f, ulong_arg); break; +#ifdef SNPRINTF_LONGLONG_SUPPORT + case '2': str_arg_l+=sprintf(tmp+str_arg_l,f,ulong_long_arg);break; +#endif + } + } + /* include the optional minus sign and possible "0x" + in the region before the zero padding insertion point */ + if (zero_padding_insertion_ind < str_arg_l && + tmp[zero_padding_insertion_ind] == '-') { + zero_padding_insertion_ind++; + } + if (zero_padding_insertion_ind+1 < str_arg_l && + tmp[zero_padding_insertion_ind] == '0' && + (tmp[zero_padding_insertion_ind+1] == 'x' || + tmp[zero_padding_insertion_ind+1] == 'X') ) { + zero_padding_insertion_ind += 2; + } + } + { size_t num_of_digits = str_arg_l - zero_padding_insertion_ind; + if (alternate_form && fmt_spec == 'o' +#ifdef HPUX_COMPATIBLE /* ("%#.o",0) -> "" */ + && (str_arg_l > 0) +#endif +#ifdef DIGITAL_UNIX_BUG_COMPATIBLE /* ("%#o",0) -> "00" */ +#else + /* unless zero is already the first character */ + && !(zero_padding_insertion_ind < str_arg_l + && tmp[zero_padding_insertion_ind] == '0') +#endif + ) { /* assure leading zero for alternate-form octal numbers */ + if (!precision_specified || precision < num_of_digits+1) { + /* precision is increased to force the first character to be zero, + except if a zero value is formatted with an explicit precision + of zero */ + precision = num_of_digits+1; precision_specified = 1; + } + } + /* zero padding to specified precision? */ + if (num_of_digits < precision) + number_of_zeros_to_pad = precision - num_of_digits; + } + /* zero padding to specified minimal field width? */ + if (!justify_left && zero_padding) { + int n = min_field_width - (str_arg_l+number_of_zeros_to_pad); + if (n > 0) number_of_zeros_to_pad += n; + } + break; + } + default: /* unrecognized conversion specifier, keep format string as-is*/ + zero_padding = 0; /* turn zero padding off for non-numeric convers. */ +#ifndef DIGITAL_UNIX_COMPATIBLE + justify_left = 1; min_field_width = 0; /* reset flags */ +#endif +#if defined(PERL_COMPATIBLE) || defined(LINUX_COMPATIBLE) + /* keep the entire format string unchanged */ + str_arg = starting_p; str_arg_l = p - starting_p; + /* well, not exactly so for Linux, which does something inbetween, + * and I don't feel an urge to imitate it: "%+++++hy" -> "%+y" */ +#else + /* discard the unrecognized conversion, just keep * + * the unrecognized conversion character */ + str_arg = p; str_arg_l = 0; +#endif + if (*p) str_arg_l++; /* include invalid conversion specifier unchanged + if not at end-of-string */ + break; + } + if (*p) p++; /* step over the just processed conversion specifier */ + /* insert padding to the left as requested by min_field_width; + this does not include the zero padding in case of numerical conversions*/ + if (!justify_left) { /* left padding with blank or zero */ + int n = min_field_width - (str_arg_l+number_of_zeros_to_pad); + if (n > 0) { + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memset(str+str_l, (zero_padding?'0':' '), (n>avail?avail:n)); + } + str_l += n; + } + } + /* zero padding as requested by the precision or by the minimal field width + * for numeric conversions required? */ + if (number_of_zeros_to_pad <= 0) { + /* will not copy first part of numeric right now, * + * force it to be copied later in its entirety */ + zero_padding_insertion_ind = 0; + } else { + /* insert first part of numerics (sign or '0x') before zero padding */ + int n = zero_padding_insertion_ind; + if (n > 0) { + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memcpy(str+str_l, str_arg, (n>avail?avail:n)); + } + str_l += n; + } + /* insert zero padding as requested by the precision or min field width */ + n = number_of_zeros_to_pad; + if (n > 0) { + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memset(str+str_l, '0', (n>avail?avail:n)); + } + str_l += n; + } + } + /* insert formatted string + * (or as-is conversion specifier for unknown conversions) */ + { int n = str_arg_l - zero_padding_insertion_ind; + if (n > 0) { + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memcpy(str+str_l, str_arg+zero_padding_insertion_ind, + (n>avail?avail:n)); + } + str_l += n; + } + } + /* insert right padding */ + if (justify_left) { /* right blank padding to the field width */ + int n = min_field_width - (str_arg_l+number_of_zeros_to_pad); + if (n > 0) { + if (str_l < str_m) { + size_t avail = str_m-str_l; + fast_memset(str+str_l, ' ', (n>avail?avail:n)); + } + str_l += n; + } + } + } + } +#if defined(NEED_SNPRINTF_ONLY) + va_end(ap); +#endif + if (str_m > 0) { /* make sure the string is null-terminated + even at the expense of overwriting the last character + (shouldn't happen, but just in case) */ + str[str_l <= str_m-1 ? str_l : str_m-1] = '\0'; + } + /* Return the number of characters formatted (excluding trailing null + * character), that is, the number of characters that would have been + * written to the buffer if it were large enough. + * + * The value of str_l should be returned, but str_l is of unsigned type + * size_t, and snprintf is int, possibly leading to an undetected + * integer overflow, resulting in a negative return value, which is illegal. + * Both XSH5 and ISO C99 (at least the draft) are silent on this issue. + * Should errno be set to EOVERFLOW and EOF returned in this case??? + */ + return (int) str_l; +} +#endif +#endif /* __OS2__ */ /* Local Variables: tab-width: 3 diff --git a/miscutil.h b/miscutil.h index 0a6b95e1..e4793c8c 100644 --- a/miscutil.h +++ b/miscutil.h @@ -1,9 +1,9 @@ -#ifndef _MISCUTIL_H -#define _MISCUTIL_H -#define MISCUTIL_H_VERSION "$Id: miscutil.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef MISCUTIL_H_INCLUDED +#define MISCUTIL_H_INCLUDED +#define MISCUTIL_H_VERSION "$Id: miscutil.h,v 1.20 2002/03/26 22:29:55 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/miscutil.h,v $ + * File : $Source: /cvsroot/ijbswa/current/miscutil.h,v $ * * Purpose : zalloc, hash_string, safe_strerror, strcmpic, * strncmpic, and MinGW32 strdup functions. These are @@ -11,7 +11,7 @@ * really fit in any other file. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -37,27 +37,146 @@ * * Revisions : * $Log: miscutil.h,v $ + * Revision 1.20 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.19 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.18 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.17 2002/03/04 18:28:32 oes + * Deleted deletePidFile, played syleguide police + * + * Revision 1.16 2002/01/21 00:53:36 jongfoster + * Adding string_join() + * + * Revision 1.15 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.14 2001/11/05 21:43:48 steudten + * Add global var 'basedir' for unix os. + * + * Revision 1.13 2001/10/29 03:48:10 david__schmidt + * OS/2 native needed a snprintf() routine. Added one to miscutil, brackedted + * by and __OS2__ ifdef. + * + * Revision 1.12 2001/10/23 21:27:50 jongfoster + * Standardising error codes in string_append + * make_path() no longer adds '\\' if the dir already ends in '\\' (this + * is just copying a UNIX-specific fix to the Windows-specific part) + * + * Revision 1.11 2001/10/14 22:02:57 jongfoster + * New function string_append() which is like strsav(), but running + * out of memory isn't automatically FATAL. + * + * Revision 1.10 2001/09/20 13:34:09 steudten + * + * change long to int for prototype hash_string() + * + * Revision 1.9 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.8 2001/06/29 13:32:14 oes + * Removed logentry from cancelled commit + * + * Revision 1.7 2001/06/05 22:32:01 jongfoster + * New function make_path() to splice directory and file names together. + * + * Revision 1.6 2001/06/03 19:12:30 oes + * introduced bindup() + * + * Revision 1.5 2001/06/01 10:31:51 oes + * Added character class matching to trivimatch; renamed to simplematch + * + * Revision 1.4 2001/05/31 17:32:31 oes + * + * - Enhanced domain part globbing with infix and prefix asterisk + * matching and optional unanchored operation + * + * Revision 1.3 2001/05/29 23:10:09 oes + * + * + * - Introduced chomp() + * - Moved strsav() from showargs to miscutil + * + * Revision 1.2 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.1.1.1 2001/05/15 13:59:00 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ +#include "project.h" + #if defined(__cplusplus) extern "C" { #endif -extern void *zalloc(int size); +extern const char *basedir; +extern void *zalloc(size_t size); -extern unsigned long hash_string(const char* s); +#if defined(unix) +extern void write_pid_file(void); +#endif /* unix */ + +extern unsigned int hash_string(const char* s); extern char *safe_strerror(int err); -extern int strcmpic(char *s1, char *s2); -extern int strncmpic(char *s1, char *s2, size_t n); +extern int strcmpic(const char *s1, const char *s2); +extern int strncmpic(const char *s1, const char *s2, size_t n); + +extern char *strsav(char *old, const char *text_to_append); +extern jb_err string_append(char **target_string, const char *text_to_append); +extern jb_err string_join (char **target_string, char *text_to_append); + +extern char *string_toupper(const char *string); +extern char *chomp(char *string); +extern int simplematch(char *pattern, char *text); + +extern char *bindup(const char *string, size_t len); + +extern char *make_path(const char * dir, const char * file); #ifdef __MINGW32__ extern char *strdup(const char *s); #endif /* def __MINGW32__ */ +#ifdef __OS2__ +extern int snprintf(char *, size_t, const char *, /*args*/ ...); +#endif /* def __OS2__ */ + /* Revision control strings from this header and associated .c file */ extern const char miscutil_rcs[]; extern const char miscutil_h_rcs[]; @@ -66,7 +185,7 @@ extern const char miscutil_h_rcs[]; } #endif -#endif /* ndef _MISCUTIL_H */ +#endif /* ndef MISCUTIL_H_INCLUDED */ /* Local Variables: diff --git a/parsers.c b/parsers.c index f56c0b7c..df2ae59a 100644 --- a/parsers.c +++ b/parsers.c @@ -1,7 +1,7 @@ -const char parsers_rcs[] = "$Id: parsers.c,v 1.1 2001/05/13 21:57:06 administrator Exp $"; +const char parsers_rcs[] = "$Id: parsers.c,v 1.55 2002/05/08 16:01:07 oes Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/parsers.c,v $ + * File : $Source: /cvsroot/ijbswa/current/parsers.c,v $ * * Purpose : Declares functions to parse/crunch headers and pages. * Functions declared include: @@ -10,18 +10,17 @@ const char parsers_rcs[] = "$Id: parsers.c,v 1.1 2001/05/13 21:57:06 administrat * `client_uagent', `client_x_forwarded', * `client_x_forwarded_adder', `client_xtra_adder', * `content_type', `crumble', `destroy_list', `enlist', - * `flush_socket', `free_http_request', `get_header', - * `list_to_text', `match', `parse_http_request', `sed', + * `flush_socket', ``get_header', `sed', * and `server_set_cookie'. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -41,33 +40,374 @@ const char parsers_rcs[] = "$Id: parsers.c,v 1.1 2001/05/13 21:57:06 administrat * * Revisions : * $Log: parsers.c,v $ + * Revision 1.55 2002/05/08 16:01:07 oes + * Optimized add_to_iob: + * - Use realloc instead of malloc(), memcpy(), free() + * - Expand to powers of two if possible, to get + * O(log n) reallocs instead of O(n). + * - Moved check for buffer limit here from chat + * - Report failure via returncode + * + * Revision 1.54 2002/04/02 15:03:16 oes + * Tiny code cosmetics + * + * Revision 1.53 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.52 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.51 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.50 2002/03/12 01:45:35 oes + * More verbose logging + * + * Revision 1.49 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.48 2002/03/07 03:46:53 oes + * Fixed compiler warnings etc + * + * Revision 1.47 2002/02/20 23:15:13 jongfoster + * Parsing functions now handle out-of-memory gracefully by returning + * an error code. + * + * Revision 1.46 2002/01/17 21:03:47 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Revision 1.45 2002/01/09 14:33:03 oes + * Added support for localtime_r. + * + * Revision 1.44 2001/12/14 01:22:54 steudten + * Remove 'user:pass@' from 'proto://user:pass@host' for the + * new added header 'Host: ..'. (See Req ID 491818) + * + * Revision 1.43 2001/11/23 00:26:38 jongfoster + * Fixing two really stupid errors in my previous commit + * + * Revision 1.42 2001/11/22 21:59:30 jongfoster + * Adding code to handle +no-cookies-keep + * + * Revision 1.41 2001/11/05 23:43:05 steudten + * Add time+date to log files. + * + * Revision 1.40 2001/10/26 20:13:09 jongfoster + * ctype.h is needed in Windows, too. + * + * Revision 1.39 2001/10/26 17:40:04 oes + * Introduced get_header_value() + * Removed http->user_agent, csp->referrer and csp->accept_types + * Removed client_accept() + * + * Revision 1.38 2001/10/25 03:40:48 david__schmidt + * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple + * threads to call select() simultaneously. So, it's time to do a real, live, + * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__ + * (native). Both versions will work, but using __OS2__ offers multi-threading. + * + * Revision 1.37 2001/10/23 21:36:02 jongfoster + * Documenting sed()'s error behaviou (doc change only) + * + * Revision 1.36 2001/10/13 12:51:51 joergs + * Removed client_host, (was only required for the old 2.0.2-11 http://noijb. + * force-load), instead crumble Host: and add it (again) in client_host_adder + * (in case we get a HTTP/1.0 request without Host: header and forward it to + * a HTTP/1.1 server/proxy). + * + * Revision 1.35 2001/10/09 22:39:21 jongfoster + * assert.h is also required under Win32, so moving out of #ifndef _WIN32 + * block. + * + * Revision 1.34 2001/10/07 18:50:55 oes + * Added server_content_encoding, renamed server_transfer_encoding + * + * Revision 1.33 2001/10/07 18:04:49 oes + * Changed server_http11 to server_http and its pattern to "HTTP". + * Additional functionality: it now saves the HTTP status into + * csp->http->status and sets CT_TABOO for Status 206 (partial range) + * + * Revision 1.32 2001/10/07 15:43:28 oes + * Removed FEATURE_DENY_GZIP and replaced it with client_accept_encoding, + * client_te and client_accept_encoding_adder, triggered by the new + * +no-compression action. For HTTP/1.1 the Accept-Encoding header is + * changed to allow only identity and chunked, and the TE header is + * crunched. For HTTP/1.0, Accept-Encoding is crunched. + * + * parse_http_request no longer does anything than parsing. The rewriting + * of http->cmd and version mangling are gone. It now also recognizes + * the put and delete methods and saves the url in http->url. Removed + * unused variable. + * + * renamed content_type and content_length to have the server_ prefix + * + * server_content_type now only works if csp->content_type != CT_TABOO + * + * added server_transfer_encoding, which + * - Sets CT_TABOO to prohibit filtering if encoding compresses + * - Raises the CSP_FLAG_CHUNKED flag if Encoding is "chunked" + * - Change from "chunked" to "identity" if body was chunked + * but has been de-chunked for filtering. + * + * added server_content_md5 which crunches any Content-MD5 headers + * if the body was modified. + * + * made server_http11 conditional on +downgrade action + * + * Replaced 6 boolean members of csp with one bitmap (csp->flags) + * + * Revision 1.31 2001/10/05 14:25:02 oes + * Crumble Keep-Alive from Server + * + * Revision 1.30 2001/09/29 12:56:03 joergs + * IJB now changes HTTP/1.1 to HTTP/1.0 in requests and answers. + * + * Revision 1.29 2001/09/24 21:09:24 jongfoster + * Fixing 2 memory leaks that Guy spotted, where the paramater to + * enlist() was not being free()d. + * + * Revision 1.28 2001/09/22 16:32:28 jongfoster + * Removing unused #includes. + * + * Revision 1.27 2001/09/20 15:45:25 steudten + * + * add casting from size_t to int for printf() + * remove local variable shadow s2 + * + * Revision 1.26 2001/09/16 17:05:14 jongfoster + * Removing unused #include showarg.h + * + * Revision 1.25 2001/09/16 13:21:27 jongfoster + * Changes to use new list functions. + * + * Revision 1.24 2001/09/13 23:05:50 jongfoster + * Changing the string paramater to the header parsers a "const". + * + * Revision 1.23 2001/09/12 18:08:19 steudten + * + * In parse_http_request() header rewriting miss the host value, so + * from http://www.mydomain.com the result was just " / " not + * http://www.mydomain.com/ in case we forward. + * + * Revision 1.22 2001/09/10 10:58:53 oes + * Silenced compiler warnings + * + * Revision 1.21 2001/07/31 14:46:00 oes + * - Persistant connections now suppressed + * - sed() no longer appends empty header to csp->headers + * + * Revision 1.20 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.19 2001/07/25 17:21:54 oes + * client_uagent now saves copy of User-Agent: header value + * + * Revision 1.18 2001/07/13 14:02:46 oes + * - Included fix to repair broken HTTP requests that + * don't contain a path, not even '/'. + * - Removed all #ifdef PCRS + * - content_type now always inspected and classified as + * text, gif or other. + * - formatting / comments + * + * Revision 1.17 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.16 2001/06/29 13:32:42 oes + * - Fixed a comment + * - Adapted free_http_request + * - Removed logentry from cancelled commit + * + * Revision 1.15 2001/06/03 19:12:38 oes + * deleted const struct interceptors + * + * Revision 1.14 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.13 2001/05/31 21:30:33 jongfoster + * Removed list code - it's now in list.[ch] + * Renamed "permission" to "action", and changed many features + * to use the actions file rather than the global config. + * + * Revision 1.12 2001/05/31 17:33:13 oes + * + * CRLF -> LF + * + * Revision 1.11 2001/05/29 20:11:19 joergs + * '/ * inside comment' warning removed. + * + * Revision 1.10 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.9 2001/05/28 17:26:33 jongfoster + * Fixing segfault if last header was crunched. + * Fixing Windows build (snprintf() is _snprintf() under Win32, but we + * can use the cross-platform sprintf() instead.) + * + * Revision 1.8 2001/05/27 22:17:04 oes + * + * - re_process_buffer no longer writes the modified buffer + * to the client, which was very ugly. It now returns the + * buffer, which it is then written by chat. + * + * - content_length now adjusts the Content-Length: header + * for modified documents rather than crunch()ing it. + * (Length info in csp->content_length, which is 0 for + * unmodified documents) + * + * - For this to work, sed() is called twice when filtering. + * + * Revision 1.7 2001/05/27 13:19:06 oes + * Patched Joergs solution for the content-length in. + * + * Revision 1.6 2001/05/26 13:39:32 jongfoster + * Only crunches Content-Length header if applying RE filtering. + * Without this fix, Microsoft Windows Update wouldn't work. + * + * Revision 1.5 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.4 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 23:02:36 oes + * - Made referrer option accept 'L' as a substitute for '§' + * + * Revision 1.1.1.1 2001/05/15 13:59:01 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ #include "config.h" +#ifndef _WIN32 #include #include +#endif + #include #include +#include #include -#ifndef _WIN32 +#if !defined(_WIN32) && !defined(__OS2__) #include #endif #include "project.h" +#include "list.h" #include "parsers.h" #include "encode.h" -#include "filters.h" -#include "loaders.h" -#include "showargs.h" -#include "jcc.h" #include "ssplit.h" #include "errlog.h" #include "jbsockets.h" #include "miscutil.h" +#include "list.h" const char parsers_h_rcs[] = PARSERS_H_VERSION; @@ -77,8 +417,8 @@ const char parsers_h_rcs[] = PARSERS_H_VERSION; * as an array index. Therefore we need to make sure that high-bit * characters generate +ve values, and ideally we also want to make * the argument match the declared parameter type of "int". - * - * Why did they write a character function that can't take a simple + * + * Why did they write a character function that can't take a simple * "char" argument? Doh! */ #define ijb_isupper(__X) isupper((int)(unsigned char)(__X)) @@ -92,89 +432,48 @@ const struct parsers client_patterns[] = { { "from:", 5, client_from }, { "cookie:", 7, client_send_cookie }, { "x-forwarded-for:", 16, client_x_forwarded }, - { "proxy-connection:", 17, crumble }, -#ifdef DENY_GZIP - { "Accept-Encoding: gzip", 21, crumble }, -#endif /* def DENY_GZIP */ -#if defined(DETECT_MSIE_IMAGES) - { "Accept:", 7, client_accept }, -#endif /* defined(DETECT_MSIE_IMAGES) */ -#ifdef FORCE_LOAD - { "Host:", 5, client_host }, -#endif /* def FORCE_LOAD */ + { "Accept-Encoding:", 16, client_accept_encoding }, + { "TE:", 3, client_te }, + { "Host:", 5, crumble }, /* { "if-modified-since:", 18, crumble }, */ + { "Keep-Alive:", 11, crumble }, + { "connection:", 11, crumble }, + { "proxy-connection:", 17, crumble }, { NULL, 0, NULL } }; -const struct interceptors intercept_patterns[] = { - { "show-proxy-args", 14, show_proxy_args }, -#ifdef TRUST_FILES - { "ij-untrusted-url", 14, ij_untrusted_url }, -#endif /* def TRUST_FILES */ - { NULL, 0, NULL } -}; const struct parsers server_patterns[] = { + { "HTTP", 4, server_http }, { "set-cookie:", 11, server_set_cookie }, { "connection:", 11, crumble }, -#ifdef PCRS - { "Content-Type:", 13, content_type }, - { "Content-Length:", 15, crumble }, -#endif /* def PCRS */ + { "Content-Type:", 13, server_content_type }, + { "Content-Length:", 15, server_content_length }, + { "Content-MD5:", 12, server_content_md5 }, + { "Content-Encoding:", 17, server_content_encoding }, + { "Transfer-Encoding:", 18, server_transfer_coding }, + { "Keep-Alive:", 11, crumble }, { NULL, 0, NULL } }; -void (* const add_client_headers[])(struct client_state *) = { +const add_header_func_ptr add_client_headers[] = { + client_host_adder, client_cookie_adder, client_x_forwarded_adder, client_xtra_adder, + client_accept_encoding_adder, + connection_close_adder, NULL }; -void (* const add_server_headers[])(struct client_state *) = { +const add_header_func_ptr add_server_headers[] = { + connection_close_adder, NULL }; -/********************************************************************* - * - * Function : match - * - * Description : Do a `strncmpic' on every pattern in pats. - * - * Parameters : - * 1 : buf = a string to match to a list of patterns - * 2 : pats = list of strings to compare against buf. - * - * Returns : Return the matching "struct parsers *", - * or NULL if no pattern matches. - * - *********************************************************************/ -static const struct parsers *match(char *buf, const struct parsers *pats) -{ - const struct parsers *v; - - if (buf == NULL) - { - /* hit me */ - log_error(LOG_LEVEL_ERROR, "NULL parameter to match()"); - return(NULL); - } - - for (v = pats; v->str ; v++) - { - if (strncmpic(buf, v->str, v->len) == 0) - { - return(v); - } - } - return(NULL); - -} - - /********************************************************************* * * Function : flush_socket @@ -193,19 +492,22 @@ static const struct parsers *match(char *buf, const struct parsers *pats) * file, the results are not portable. * *********************************************************************/ -int flush_socket(int fd, struct client_state *csp) +int flush_socket(jb_socket fd, struct client_state *csp) { struct iob *iob = csp->iob; - int n = iob->eod - iob->cur; + int len = iob->eod - iob->cur; - if (n <= 0) + if (len <= 0) { return(0); } - n = write_socket(fd, iob->cur, n); + if (write_socket(fd, iob->cur, (size_t)len)) + { + return(-1); + } iob->eod = iob->cur = iob->buf; - return(n); + return(len); } @@ -214,70 +516,74 @@ int flush_socket(int fd, struct client_state *csp) * * Function : add_to_iob * - * Description : Add content to the buffered page. + * Description : Add content to the buffered page, expanding the + * buffer if necessary. * * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * 2 : buf = holds the content to be added to the page * 3 : n = number of bytes to be added * - * Returns : Number of bytes in the content buffer. + * Returns : JB_ERR_OK on success, JB_ERR_MEMORY if out-of-memory + * or buffer limit reached. * *********************************************************************/ -int add_to_iob(struct client_state *csp, char *buf, int n) +jb_err add_to_iob(struct client_state *csp, char *buf, int n) { struct iob *iob = csp->iob; - int have, need; + size_t used, offset, need, want; char *p; - have = iob->eod - iob->cur; + if (n <= 0) return JB_ERR_OK; - if (n <= 0) - { - return(have); - } - - need = have + n; + used = iob->eod - iob->buf; + offset = iob->cur - iob->buf; + need = used + n + 1; - if ((p = (char *)malloc(need + 1)) == NULL) + /* + * If the buffer can't hold the new data, extend it first. + * Use the next power of two if possible, else use the actual need. + */ + if (need > csp->config->buffer_limit) { - log_error(LOG_LEVEL_ERROR, "malloc() iob failed: %E"); - return(-1); + log_error(LOG_LEVEL_ERROR, "Buffer limit reached while extending the buffer (iob)"); + return JB_ERR_MEMORY; } - if (have) + if (need > iob->size) { - /* there is something in the buffer - save it */ - memcpy(p, iob->cur, have); - - /* replace the buffer with the new space */ - freez(iob->buf); - iob->buf = p; + for (want = csp->iob->size ? csp->iob->size : 512; want <= need;) want *= 2; + + if (want <= csp->config->buffer_limit && NULL != (p = (char *)realloc(iob->buf, want))) + { + iob->size = want; + } + else if (NULL != (p = (char *)realloc(iob->buf, need))) + { + iob->size = need; + } + else + { + log_error(LOG_LEVEL_ERROR, "Extending the buffer (iob) failed: %E"); + return JB_ERR_MEMORY; + } - /* point to the end of the data */ - p += have; - } - else - { - /* the buffer is empty, free it and reinitialize */ - freez(iob->buf); + /* Update the iob pointers */ + iob->cur = p + offset; + iob->eod = p + used; iob->buf = p; } /* copy the new data into the iob buffer */ - memcpy(p, buf, n); + memcpy(iob->eod, buf, (size_t)n); /* point to the end of the data */ - p += n; + iob->eod += n; /* null terminate == cheap insurance */ - *p = '\0'; - - /* set the pointers to the new values */ - iob->cur = iob->buf; - iob->eod = p; + *iob->eod = '\0'; - return(need); + return JB_ERR_OK; } @@ -314,12 +620,17 @@ char *get_header(struct client_state *csp) *p = '\0'; ret = strdup(iob->cur); + if (ret == NULL) + { + /* FIXME No way to handle error properly */ + log_error(LOG_LEVEL_FATAL, "Out of memory in get_header()"); + } iob->cur = p+1; - if ((q = strchr(ret, '\r'))) *q = '\0'; + if ((q = strchr(ret, '\r')) != NULL) *q = '\0'; - /* is this a blank linke (i.e. the end of the header) ? */ + /* is this a blank line (i.e. the end of the header) ? */ if (*ret == '\0') { freez(ret); @@ -333,123 +644,54 @@ char *get_header(struct client_state *csp) /********************************************************************* * - * Function : enlist + * Function : get_header_value * - * Description : Append a string into a specified string list. + * Description : Get the value of a given header from a chained list + * of header lines or return NULL if no such header is + * present in the list. * * Parameters : - * 1 : h = pointer to list 'dummy' header - * 2 : s = string to add to the list + * 1 : header_list = pointer to list + * 2 : header_name = string with name of header to look for. + * Trailing colon required, capitalization + * doesn't matter. * - * Returns : N/A + * Returns : NULL if not found, else value of header * *********************************************************************/ -void enlist(struct list *h, const char *s) +char *get_header_value(const struct list *header_list, const char *header_name) { - struct list *n = (struct list *)malloc(sizeof(*n)); - struct list *l; - - if (n) - { - n->str = strdup(s); - n->next = NULL; - - if ((l = h->last)) - { - l->next = n; - } - else - { - h->next = n; - } - - h->last = n; - } - -} - - -/********************************************************************* - * - * Function : destroy_list - * - * Description : Destroy a string list (opposite of enlist) - * - * Parameters : - * 1 : h = pointer to list 'dummy' header - * - * Returns : N/A - * - *********************************************************************/ -void destroy_list(struct list *h) -{ - struct list *p, *n; - - for (p = h->next; p ; p = n) - { - n = p->next; - freez(p->str); - freez(p); - } - - memset(h, '\0', sizeof(*h)); - -} - - -/********************************************************************* - * - * Function : list_to_text - * - * Description : "Flaten" a string list into 1 long \r\n delimited string. - * - * Parameters : - * 1 : h = pointer to list 'dummy' header - * - * Returns : NULL on malloc error, else new long string. - * - *********************************************************************/ -static char *list_to_text(struct list *h) -{ - struct list *p; + struct list_entry *cur_entry; char *ret = NULL; - char *s; - int size; - - size = 0; - - for (p = h->next; p ; p = p->next) - { - if (p->str) - { - size += strlen(p->str) + 2; - } - } - - if ((ret = (char *)malloc(size + 1)) == NULL) - { - return(NULL); - } + size_t length = 0; - ret[size] = '\0'; + assert(header_list); + assert(header_name); + length = strlen(header_name); - s = ret; - - for (p = h->next; p ; p = p->next) + for (cur_entry = header_list->first; cur_entry ; cur_entry = cur_entry->next) { - if (p->str) + if (cur_entry->str) { - strcpy(s, p->str); - s += strlen(s); - *s++ = '\r'; *s++ = '\n'; + if (!strncmpic(cur_entry->str, header_name, length)) + { + /* + * Found: return pointer to start of value + */ + ret = (char *) (cur_entry->str + length); + while (*ret && ijb_isspace(*ret)) ret++; + return(ret); + } } } - return(ret); + /* + * Not found + */ + return NULL; } - /********************************************************************* * * Function : sed @@ -468,272 +710,336 @@ static char *list_to_text(struct list *h) * headers (client or server) * 3 : csp = Current client state (buffers, headers, etc...) * - * Returns : Single pointer to a fully formed header. + * Returns : Single pointer to a fully formed header, or NULL + * on out-of-memory error. * *********************************************************************/ -char *sed(const struct parsers pats[], void (* const more_headers[])(struct client_state *), struct client_state *csp) +char *sed(const struct parsers pats[], + const add_header_func_ptr more_headers[], + struct client_state *csp) { - struct list *p; + struct list_entry *p; const struct parsers *v; - char *hdr; - void (* const *f)(); + const add_header_func_ptr *f; + jb_err err = JB_ERR_OK; - for (p = csp->headers->next; p ; p = p->next) + for (v = pats; (err == JB_ERR_OK) && (v->str != NULL) ; v++) { - log_error(LOG_LEVEL_HEADER, "scan: %s", p->str); - - if ((v = match(p->str, pats))) + for (p = csp->headers->first; (err == JB_ERR_OK) && (p != NULL) ; p = p->next) { - hdr = v->parser(v, p->str, csp); - freez(p->str); - p->str = hdr; - } + /* Header crunch()ed in previous run? -> ignore */ + if (p->str == NULL) continue; + if (v == pats) log_error(LOG_LEVEL_HEADER, "scan: %s", p->str); + + if (strncmpic(p->str, v->str, v->len) == 0) + { + err = v->parser(csp, (char **)&(p->str)); + } + } } /* place any additional headers on the csp->headers list */ - for (f = more_headers; *f ; f++) + for (f = more_headers; (err == JB_ERR_OK) && (*f) ; f++) { - (*f)(csp); + err = (*f)(csp); } - /* add the blank line at the end of the header */ - enlist(csp->headers, ""); + if (err != JB_ERR_OK) + { + return NULL; + } - hdr = list_to_text(csp->headers); + return list_to_text(csp->headers); +} - return(hdr); -} +/* here begins the family of parser functions that reformat header lines */ /********************************************************************* * - * Function : free_http_request + * Function : crumble * - * Description : Freez a http_request structure + * Description : This is called if a header matches a pattern to "crunch" * * Parameters : - * 1 : http = points to a http_request structure to free + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : N/A + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -void free_http_request(struct http_request *http) +jb_err crumble(struct client_state *csp, char **header) { - freez(http->cmd); - freez(http->gpc); - freez(http->host); - freez(http->hostport); - freez(http->path); - freez(http->ver); - + log_error(LOG_LEVEL_HEADER, "crunch!"); + freez(*header); + return JB_ERR_OK; } /********************************************************************* * - * Function : parse_http_request + * Function : server_content_type * - * Description : Parse out the host and port from the URL. Find the - * hostname & path, port (if ':'), and/or password (if '@') + * Description : Set the content-type for filterable types (text/.*, + * javascript and image/gif) unless filtering has been + * forbidden (CT_TABOO) while parsing earlier headers. * * Parameters : - * 1 : req = URL (or is it URI?) to break down - * 2 : http = pointer to the http structure to hold elements - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : N/A + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -void parse_http_request(char *req, struct http_request *http, struct client_state *csp) +jb_err server_content_type(struct client_state *csp, char **header) { - char *buf, *v[10], *url, *p; - int n; - - memset(http, '\0', sizeof(*http)); - - http->cmd = strdup(req); - - buf = strdup(req); - - n = ssplit(buf, " \r\n", v, SZ(v), 1, 1); - - if (n == 3) + if (csp->content_type != CT_TABOO) { - /* this could be a CONNECT request */ - if (strcmpic(v[0], "connect") == 0) - { - http->ssl = 1; - http->gpc = strdup(v[0]); - http->hostport = strdup(v[1]); - http->ver = strdup(v[2]); - } - -#ifdef WEBDAV - -/* This next line is a little ugly, but it simplifies the if statement below. */ -/* Basically if using webDAV, we want the OR condition to use these too. */ - -/* - * by haroon - * These are the headers as defined in RFC2518 to add webDAV support - */ + if (strstr(*header, " text/") + || strstr(*header, "application/x-javascript")) + csp->content_type = CT_TEXT; + else if (strstr(*header, " image/gif")) + csp->content_type = CT_GIF; + else + csp->content_type = 0; + } -#define OR_WEBDAV || \ - (0 == strcmpic(v[0], "propfind")) || \ - (0 == strcmpic(v[0], "proppatch")) || \ - (0 == strcmpic(v[0], "move")) || \ - (0 == strcmpic(v[0], "copy")) || \ - (0 == strcmpic(v[0], "mkcol")) || \ - (0 == strcmpic(v[0], "lock")) || \ - (0 == strcmpic(v[0], "unlock")) + return JB_ERR_OK; +} -#else /* No webDAV support is enabled. Provide an empty OR_WEBDAV macro. */ -#define OR_WEBDAV +/********************************************************************* + * + * Function : server_transfer_coding + * + * Description : - Prohibit filtering (CT_TABOO) if transfer coding compresses + * - Raise the CSP_FLAG_CHUNKED flag if coding is "chunked" + * - Change from "chunked" to "identity" if body was chunked + * but has been de-chunked for filtering. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err server_transfer_coding(struct client_state *csp, char **header) +{ + /* + * Turn off pcrs and gif filtering if body compressed + */ + if (strstr(*header, "gzip") || strstr(*header, "compress") || strstr(*header, "deflate")) + { + csp->content_type = CT_TABOO; + } -#endif + /* + * Raise flag if body chunked + */ + if (strstr(*header, "chunked")) + { + csp->flags |= CSP_FLAG_CHUNKED; - /* or it could be a GET or a POST (possibly webDAV too) */ - if ((strcmpic(v[0], "get") == 0) || - (strcmpic(v[0], "head") == 0) OR_WEBDAV || - (strcmpic(v[0], "post") == 0)) + /* + * If the body was modified, it has been + * de-chunked first, so adjust the header: + */ + if (csp->flags & CSP_FLAG_MODIFIED) { - http->ssl = 0; - http->gpc = strdup(v[0]); - url = v[1]; - http->ver = strdup(v[2]); - - if (strncmpic(url, "http://", 7) == 0) - { - url += 7; - } - else if (strncmpic(url, "https://", 8) == 0) - { - url += 8; - } - else - { - url = NULL; - } - - if (url && (p = strchr(url, '/'))) - { - http->path = strdup(p); - *p = '\0'; - http->hostport = strdup(url); - } + freez(*header); + *header = strdup("Transfer-Encoding: identity"); + return (header == NULL) ? JB_ERR_MEMORY : JB_ERR_OK; } } - freez(buf); + return JB_ERR_OK; +} - if (http->hostport == NULL) +/********************************************************************* + * + * Function : server_content_encoding + * + * Description : Prohibit filtering (CT_TABOO) if content encoding compresses + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err server_content_encoding(struct client_state *csp, char **header) +{ + /* + * Turn off pcrs and gif filtering if body compressed + */ + if (strstr(*header, "gzip") || strstr(*header, "compress") || strstr(*header, "deflate")) { - free_http_request(http); - return; + csp->content_type = CT_TABOO; } - buf = strdup(http->hostport); - + return JB_ERR_OK; - /* check if url contains password */ - n = ssplit(buf, "@", v, SZ(v), 1, 1); - if (n == 2) - { - char * newbuf = NULL; - newbuf = strdup(v[1]); - freez(buf); - buf = newbuf; - } +} - n = ssplit(buf, ":", v, SZ(v), 1, 1); - if (n == 1) +/********************************************************************* + * + * Function : server_content_length + * + * Description : Adjust Content-Length header if we modified + * the body. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err server_content_length(struct client_state *csp, char **header) +{ + if (csp->content_length != 0) /* Content length has been modified */ { - http->host = strdup(v[0]); - http->port = 80; - } + freez(*header); + *header = (char *) zalloc(100); + if (*header == NULL) + { + return JB_ERR_MEMORY; + } - if (n == 2) - { - http->host = strdup(v[0]); - http->port = atoi(v[1]); + sprintf(*header, "Content-Length: %d", (int) csp->content_length); + + log_error(LOG_LEVEL_HEADER, "Adjust Content-Length to %d", (int) csp->content_length); } - freez(buf); + return JB_ERR_OK; +} - if (http->host == NULL) - { - free_http_request(http); - } - if (http->path == NULL) +/********************************************************************* + * + * Function : server_content_md5 + * + * Description : Crumble any Content-MD5 headers if the document was + * modified. FIXME: Should we re-compute instead? + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err server_content_md5(struct client_state *csp, char **header) +{ + if (csp->flags & CSP_FLAG_MODIFIED) { - http->path = strdup(""); + log_error(LOG_LEVEL_HEADER, "Crunching Content-MD5"); + freez(*header); } + return JB_ERR_OK; } -/* here begins the family of parser functions that reformat header lines */ - - /********************************************************************* * - * Function : crumble + * Function : client_accept_encoding * - * Description : This is called if a header matches a pattern to "crunch" + * Description : Rewrite the client's Accept-Encoding header so that + * if doesn't allow compression, if the action applies. + * Note: For HTTP/1.0 the absence of the header is enough. * * Parameters : - * 1 : v = Pointer to parsers structure, which basically holds - * headers (client or server) that we want to "crunch" - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : Always NULL. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *crumble(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_accept_encoding(struct client_state *csp, char **header) { - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); + if ((csp->action->flags & ACTION_NO_COMPRESSION) != 0) + { + log_error(LOG_LEVEL_HEADER, "Supressed offer to compress content"); -} + freez(*header); + if (!strcmpic(csp->http->ver, "HTTP/1.1")) + { + *header = strdup("Accept-Encoding: identity;q=1.0, *;q=0"); + if (*header == NULL) + { + return JB_ERR_MEMORY; + } + } + } + return JB_ERR_OK; +} -#ifdef PCRS /********************************************************************* * - * Function : content_type + * Function : client_te * - * Description : Is this a text/* or javascript MIME Type? + * Description : Rewrite the client's TE header so that + * if doesn't allow compression, if the action applies. * * Parameters : - * 1 : v = ignored - * 2 : s = header string we are "considering" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : A duplicate string pointer to this header (ie. pass thru) + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *content_type(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_te(struct client_state *csp, char **header) { - if (strstr (s, " text/") || strstr (s, "application/x-javascript")) - csp->is_text = 1; - else - csp->is_text = 0; - - return(strdup(s)); + if ((csp->action->flags & ACTION_NO_COMPRESSION) != 0) + { + freez(*header); + log_error(LOG_LEVEL_HEADER, "Supressed offer to compress transfer"); + } + return JB_ERR_OK; } -#endif /* def PCRS */ - - /********************************************************************* * * Function : client_referrer @@ -742,78 +1048,81 @@ char *content_type(const struct parsers *v, char *s, struct client_state *csp) * Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : NULL if crunched, or a malloc'ed string with the original - * or modified header + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_referrer(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_referrer(struct client_state *csp, char **header) { -#ifdef FORCE_LOAD + const char *newval; + +#ifdef FEATURE_FORCE_LOAD /* Since the referrer can include the prefix even * even if the request itself is non-forced, we must - * clean it unconditionally + * clean it unconditionally */ - strclean(s, FORCE_PREFIX); -#endif /* def FORCE_LOAD */ + strclean(*header, FORCE_PREFIX); +#endif /* def FEATURE_FORCE_LOAD */ - csp->referrer = strdup(s); - - if (referrer == NULL) + /* + * Are we sending referer? + */ + if ((csp->action->flags & ACTION_HIDE_REFERER) == 0) { - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); + return JB_ERR_OK; } - if (*referrer == '.') - { - return(strdup(s)); - } + freez(*header); + + newval = csp->action->string[ACTION_STRING_REFERER]; - if (*referrer == '@') + if ((newval == NULL) || (0 == strcmpic(newval, "block")) ) { - if (csp->send_user_cookie) - { - return(strdup(s)); - } - else - { - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); - } + /* + * Blocking referer + */ + log_error(LOG_LEVEL_HEADER, "crunch!"); + return JB_ERR_OK; } + else if (0 == strncmpic(newval, "http://", 7)) + { + /* + * We have a specific (fixed) referer we want to send. + */ + log_error(LOG_LEVEL_HEADER, "modified"); - /* - * New option §: Forge a referer as http://[hostname:port of REQUEST]/ - * to fool stupid checks for in-site links - */ + *header = strdup("Referer: "); + string_append(header, newval); - if (*referrer == '§') + return (*header == NULL) ? JB_ERR_MEMORY : JB_ERR_OK; + } + else { - if (csp->send_user_cookie) - { - return(strdup(s)); - } - else + /* + * Forge a referer as http://[hostname:port of REQUEST]/ + * to fool stupid checks for in-site links + */ + if (0 != strcmpic(newval, "forge")) { - log_error(LOG_LEVEL_HEADER, "crunch+forge!"); - s = strsav(NULL, "Referer: "); - s = strsav(s, "http://"); - s = strsav(s, csp->http->hostport); - s = strsav(s, "/"); - return(s); + /* + * Invalid choice - but forge is probably the best default. + */ + log_error(LOG_LEVEL_ERROR, "Bad parameter: +referer{%s}", newval); } - } - - log_error(LOG_LEVEL_HEADER, "modified"); - - s = strsav( NULL, "Referer: " ); - s = strsav( s, referrer ); - return(s); + *header = strdup("Referer: http://"); + string_append(header, csp->http->hostport); + string_append(header, "/"); + log_error(LOG_LEVEL_HEADER, "crunch+forge to %s", *header); + + return (*header == NULL) ? JB_ERR_MEMORY : JB_ERR_OK; + } } @@ -821,60 +1130,43 @@ char *client_referrer(const struct parsers *v, char *s, struct client_state *csp * * Function : client_uagent * - * Description : Handle the "user-agent" config setting properly. - * Called from `sed'. + * Description : Handle the "user-agent" config setting properly + * and remember its original value to enable browser + * bug workarounds. Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : A malloc'ed pointer to the default agent, or - * a malloc'ed string pointer to this header (ie. pass thru). + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_uagent(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_uagent(struct client_state *csp, char **header) { -#ifdef DETECT_MSIE_IMAGES - if (strstr (s, "MSIE ")) - { - /* This is Microsoft Internet Explorer. - * Enable auto-detect. - */ - csp->accept_types |= ACCEPT_TYPE_IS_MSIE; - } -#endif /* def DETECT_MSIE_IMAGES */ - - if (uagent == NULL) - { - log_error(LOG_LEVEL_HEADER, "default"); - return(strdup(DEFAULT_USER_AGENT)); - } + const char *newval; - if (*uagent == '.') + if ((csp->action->flags & ACTION_HIDE_USER_AGENT) == 0) { - return(strdup(s)); + return JB_ERR_OK; } - if (*uagent == '@') + newval = csp->action->string[ACTION_STRING_USER_AGENT]; + if (newval == NULL) { - if (csp->send_user_cookie) - { - return(strdup(s)); - } - else - { - log_error(LOG_LEVEL_HEADER, "default"); - return(strdup(DEFAULT_USER_AGENT)); - } + return JB_ERR_OK; } log_error(LOG_LEVEL_HEADER, "modified"); - s = strsav( NULL, "User-Agent: " ); - s = strsav( s, uagent ); - return(s); + freez(*header); + *header = strdup("User-Agent: "); + string_append(header, newval); + return (*header == NULL) ? JB_ERR_MEMORY : JB_ERR_OK; } @@ -885,42 +1177,25 @@ char *client_uagent(const struct parsers *v, char *s, struct client_state *csp) * Description : Handle "ua-" headers properly. Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : NULL if crunched, or a malloc'ed string to original header + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_ua(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_ua(struct client_state *csp, char **header) { - if (uagent == NULL) + if ((csp->action->flags & ACTION_HIDE_USER_AGENT) != 0) { log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); - } - - if (*uagent == '.') - { - return(strdup(s)); - } - - if (*uagent == '@') - { - if (csp->send_user_cookie) - { - return(strdup(s)); - } - else - { - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); - } + freez(*header); } - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); - + return JB_ERR_OK; } @@ -932,34 +1207,44 @@ char *client_ua(const struct parsers *v, char *s, struct client_state *csp) * Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : NULL if crunched, or a malloc'ed string to - * modified/original header. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_from(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_from(struct client_state *csp, char **header) { - /* if not set, zap it */ - if (from == NULL) + const char *newval; + + if ((csp->action->flags & ACTION_HIDE_FROM) == 0) { - log_error(LOG_LEVEL_HEADER, "crunch!"); - return(NULL); + return JB_ERR_OK; } - if (*from == '.') + freez(*header); + + newval = csp->action->string[ACTION_STRING_FROM]; + + /* + * Are we blocking the e-mail address? + */ + if ((newval == NULL) || (0 == strcmpic(newval, "block")) ) { - return(strdup(s)); + log_error(LOG_LEVEL_HEADER, "crunch!"); + return JB_ERR_OK; } log_error(LOG_LEVEL_HEADER, " modified"); - s = strsav( NULL, "From: " ); - s = strsav( s, from ); - return(s); + *header = strdup("From: "); + string_append(header, newval); + return (*header == NULL) ? JB_ERR_MEMORY : JB_ERR_OK; } @@ -972,18 +1257,24 @@ char *client_from(const struct parsers *v, char *s, struct client_state *csp) * else we crunch it. Mmmmmmmmmmm ... cookie ...... * * Parameters : - * 1 : v = pattern of cookie `sed' found matching - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : Always NULL. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_send_cookie(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_send_cookie(struct client_state *csp, char **header) { - if (csp->send_user_cookie) + jb_err result = JB_ERR_OK; + + if ((csp->action->flags & ACTION_NO_COOKIE_READ) == 0) { - enlist(csp->cookie_list, s + v->len + 1); + /* strlen("cookie: ") == 8 */ + result = enlist(csp->cookie_list, *header + 8); } else { @@ -991,11 +1282,12 @@ char *client_send_cookie(const struct parsers *v, char *s, struct client_state * } /* - * Always return NULL here. The cookie header + * Always remove the cookie here. The cookie header * will be sent at the end of the header. */ - return(NULL); + freez(*header); + return result; } @@ -1007,71 +1299,91 @@ char *client_send_cookie(const struct parsers *v, char *s, struct client_state * * also used in the add_client_headers list. Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to "crunch" - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : Always NULL. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_x_forwarded(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_x_forwarded(struct client_state *csp, char **header) { - if (add_forwarded) + if ((csp->action->flags & ACTION_HIDE_FORWARDED) == 0) { - csp->x_forwarded = strdup(s); - } - - /* - * Always return NULL, since this information - * will be sent at the end of the header. - */ + /* Save it so we can re-add it later */ + freez(csp->x_forwarded); + csp->x_forwarded = *header; - return(NULL); + /* + * Always set *header = NULL, since this information + * will be sent at the end of the header. + */ + *header = NULL; + } + else + { + freez(*header); + log_error(LOG_LEVEL_HEADER, " crunch!"); + } + return JB_ERR_OK; } -#if defined(DETECT_MSIE_IMAGES) +/* the following functions add headers directly to the header list */ + /********************************************************************* * - * Function : client_accept + * Function : client_host_adder * - * Description : Detect whether the client wants HTML or an image. - * Clients do not always make this information available - * in a sane way. Always passes the header through - * the proxy unchanged. + * Description : (re)adds the host header. Called from `sed'. * * Parameters : - * 1 : v = Ignored. - * 2 : s = Header string. Null terminated. - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : Duplicate of argument s. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_accept(const struct parsers *v, char *s, struct client_state *csp) +jb_err client_host_adder(struct client_state *csp) { -#ifdef DETECT_MSIE_IMAGES - if (strstr (s, "image/gif")) + char *p; + char *pos; + jb_err err; + + if ( !csp->http->hostport || !*(csp->http->hostport)) { - /* Client will accept HTML. If this seems counterintuitive, - * blame Microsoft. - */ - csp->accept_types |= ACCEPT_TYPE_MSIE_HTML; + return JB_ERR_OK; + } + + p = strdup("Host: "); + /* + ** remove 'user:pass@' from 'proto://user:pass@host' + */ + if ( (pos = strchr( csp->http->hostport, '@')) != NULL ) + { + string_append(&p, pos+1); } else { - csp->accept_types |= ACCEPT_TYPE_MSIE_IMAGE; + string_append(&p, csp->http->hostport); } -#endif /* def DETECT_MSIE_IMAGES */ - return(strdup(s)); + if (p == NULL) + { + return JB_ERR_MEMORY; + } -} -#endif /* defined(DETECT_MSIE_IMAGES) */ + log_error(LOG_LEVEL_HEADER, "addh: %s", p); + err = enlist(csp->headers, p); + freez(p); -/* the following functions add headers directly to the header list */ + return err; +} /********************************************************************* @@ -1083,50 +1395,90 @@ char *client_accept(const struct parsers *v, char *s, struct client_state *csp) * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : N/A + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -void client_cookie_adder(struct client_state *csp) +jb_err client_cookie_adder(struct client_state *csp) { - struct list *l; - char *tmp = NULL; - char *e; + struct list_entry *lst; + char *tmp; + struct list_entry *list1 = csp->cookie_list->first; + struct list_entry *list2 = csp->action->multi[ACTION_MULTI_WAFER]->first; + int first_cookie = 1; + jb_err err; + + if ((list1 == NULL) && (list2 == NULL)) + { + /* Nothing to do */ + return JB_ERR_OK; + } + + tmp = strdup("Cookie: "); - for (l = csp->cookie_list->next; l ; l = l->next) + for (lst = list1; lst ; lst = lst->next) { - if (tmp) + if (first_cookie) + { + first_cookie = 0; + } + else { - tmp = strsav(tmp, "; "); + string_append(&tmp, "; "); } - tmp = strsav(tmp, l->str); + string_append(&tmp, lst->str); } - for (l = wafer_list->next; l ; l = l->next) + for (lst = list2; lst ; lst = lst->next) { - if (tmp) + if (first_cookie) { - tmp = strsav(tmp, "; "); + first_cookie = 0; } - - if ((e = cookie_encode(l->str))) + else { - tmp = strsav(tmp, e); - freez(e); + string_append(&tmp, "; "); } + string_join(&tmp, cookie_encode(lst->str)); } - if (tmp) + if (tmp == NULL) { - char *ret; + return JB_ERR_MEMORY; + } - ret = strdup("Cookie: "); - ret = strsav(ret, tmp); - log_error(LOG_LEVEL_HEADER, "addh: %s", ret); - enlist(csp->headers, ret); - freez(tmp); - freez(ret); + log_error(LOG_LEVEL_HEADER, "addh: %s", tmp); + err = enlist(csp->headers, tmp); + free(tmp); + return err; +} + + +/********************************************************************* + * + * Function : client_accept_encoding_adder + * + * Description : Add an Accept-Encoding header to the client's request + * that disables compression if the action applies, and + * the header is not already there. Called from `sed'. + * Note: For HTTP/1.0, the absence of the header is enough. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err client_accept_encoding_adder(struct client_state *csp) +{ + if ( ((csp->action->flags & ACTION_NO_COMPRESSION) != 0) + && (!strcmpic(csp->http->ver, "HTTP/1.1")) ) + { + return enlist_unique(csp->headers, "Accept-Encoding: identity;q=1.0, *;q=0", 16); } + return JB_ERR_OK; } @@ -1139,19 +1491,28 @@ void client_cookie_adder(struct client_state *csp) * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : N/A + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -void client_xtra_adder(struct client_state *csp) +jb_err client_xtra_adder(struct client_state *csp) { - struct list *l; + struct list_entry *lst; + jb_err err; - for (l = xtra_list->next; l ; l = l->next) + for (lst = csp->action->multi[ACTION_MULTI_ADD_HEADER]->first; + lst ; lst = lst->next) { - log_error(LOG_LEVEL_HEADER, "addh: %s", l->str); - enlist(csp->headers, l->str); + log_error(LOG_LEVEL_HEADER, "addh: %s", lst->str); + err = enlist(csp->headers, lst->str); + if (err) + { + return err; + } + } + return JB_ERR_OK; } @@ -1164,102 +1525,234 @@ void client_xtra_adder(struct client_state *csp) * Parameters : * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : N/A + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -void client_x_forwarded_adder(struct client_state *csp) +jb_err client_x_forwarded_adder(struct client_state *csp) { char *p = NULL; + jb_err err; - if (add_forwarded == 0) return; + if ((csp->action->flags & ACTION_HIDE_FORWARDED) != 0) + { + return JB_ERR_OK; + } if (csp->x_forwarded) { - p = strsav(p, csp->x_forwarded); - p = strsav(p, ", "); - p = strsav(p, csp->ip_addr_str); + p = strdup(csp->x_forwarded); + string_append(&p, ", "); } else { - p = strsav(p, "X-Forwarded-For: "); - p = strsav(p, csp->ip_addr_str); + p = strdup("X-Forwarded-For: "); + } + string_append(&p, csp->ip_addr_str); + + if (p == NULL) + { + return JB_ERR_MEMORY; } log_error(LOG_LEVEL_HEADER, "addh: %s", p); - enlist(csp->headers, p); + err = enlist(csp->headers, p); + free(p); + return err; } /********************************************************************* * - * Function : server_set_cookie + * Function : connection_close_adder * - * Description : Handle the server "cookie" header properly. - * Log cookie to the jar file. Then "crunch" it, - * or accept it. Called from `sed'. + * Description : Adds a "Connection: close" header to csp->headers + * as a temporary fix for the needed but missing HTTP/1.1 + * support. Called from `sed'. + * FIXME: This whole function shouldn't be neccessary! * * Parameters : - * 1 : v = parser pattern that matched this header - * 2 : s = header that matched this pattern - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) * - * Returns : `crumble' or a newly malloc'ed string. + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *server_set_cookie(const struct parsers *v, char *s, struct client_state *csp) +jb_err connection_close_adder(struct client_state *csp) { -#ifdef JAR_FILES - if (jar) + return enlist(csp->headers, "Connection: close"); +} + + +/********************************************************************* + * + * Function : server_http + * + * Description : - Save the HTTP Status into csp->http->status + * - Set CT_TABOO to prevent filtering if the answer + * is a partial range (HTTP status 206) + * - Rewrite HTTP/1.1 answers to HTTP/1.0 if +downgrade + * action applies. + * + * Parameters : + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. + * + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. + * + *********************************************************************/ +jb_err server_http(struct client_state *csp, char **header) +{ + sscanf(*header, "HTTP/%*d.%*d %d", &(csp->http->status)); + if (csp->http->status == 206) { - fprintf(jar, "%s\t%s\n", csp->http->host, (s + v->len + 1)); + csp->content_type = CT_TABOO; } -#endif /* def JAR_FILES */ - if (csp->accept_server_cookie == 0) + if ((csp->action->flags & ACTION_DOWNGRADE) != 0) { - return(crumble(v, s, csp)); + (*header)[7] = '0'; + log_error(LOG_LEVEL_HEADER, "Downgraded answer to HTTP/1.0"); } - return(strdup(s)); - + return JB_ERR_OK; } -#ifdef FORCE_LOAD /********************************************************************* * - * Function : client_host + * Function : server_set_cookie * - * Description : Clean the FORCE_PREFIX out of the 'host' http - * header, if we use force + * Description : Handle the server "cookie" header properly. + * Log cookie to the jar file. Then "crunch" it, + * or accept it. Called from `sed'. * * Parameters : - * 1 : v = ignored - * 2 : s = header (from sed) to clean - * 3 : csp = Current client state (buffers, headers, etc...) + * 1 : csp = Current client state (buffers, headers, etc...) + * 2 : header = On input, pointer to header to modify. + * On output, pointer to the modified header, or NULL + * to remove the header. This function frees the + * original string if necessary. * - * Returns : A malloc'ed pointer to the cleaned host header + * Returns : JB_ERR_OK on success, or + * JB_ERR_MEMORY on out-of-memory error. * *********************************************************************/ -char *client_host(const struct parsers *v, char *s, struct client_state *csp) +jb_err server_set_cookie(struct client_state *csp, char **header) { - char *cleanhost = strdup(s); - - if(csp->force) - strclean(cleanhost, FORCE_PREFIX); - - return(cleanhost); +#ifdef FEATURE_COOKIE_JAR + if (csp->config->jar) + { + /* + * Write timestamp into outbuf. + * + * Complex because not all OSs have tm_gmtoff or + * the %z field in strftime() + */ + char tempbuf[ BUFFER_SIZE ]; + time_t now; + struct tm tm_now; + time (&now); +#ifdef HAVE_LOCALTIME_R + tm_now = *localtime_r(&now, &tm_now); +#else + tm_now = *localtime (&now); +#endif + strftime(tempbuf, BUFFER_SIZE-6, "%b %d %H:%M:%S ", &tm_now); + + /* strlen("set-cookie: ") = 12 */ + fprintf(csp->config->jar, "%s %s\t%s\n", tempbuf, csp->http->host, *header + 12); + } +#endif /* def FEATURE_COOKIE_JAR */ + + if ((csp->action->flags & ACTION_NO_COOKIE_SET) != 0) + { + return crumble(csp, header); + } + else if ((csp->action->flags & ACTION_NO_COOKIE_KEEP) != 0) + { + /* Flag whether or not to log a message */ + int changed = 0; + + /* A variable to store the tag we're working on */ + char *cur_tag; + + /* Skip "Set-Cookie:" (11 characters) in header */ + cur_tag = *header + 11; + + /* skip whitespace between "Set-Cookie:" and value */ + while (*cur_tag && ijb_isspace(*cur_tag)) + { + cur_tag++; + } + + /* Loop through each tag in the cookie */ + while (*cur_tag) + { + /* Find next tag */ + char *next_tag = strchr(cur_tag, ';'); + if (next_tag != NULL) + { + /* Skip the ';' character itself */ + next_tag++; + + /* skip whitespace ";" and start of tag */ + while (*next_tag && ijb_isspace(*next_tag)) + { + next_tag++; + } + } + else + { + /* "Next tag" is the end of the string */ + next_tag = cur_tag + strlen(cur_tag); + } + + /* Is this the "Expires" tag? */ + if (strncmpic(cur_tag, "expires=", 8) == 0) + { + /* Delete the tag by copying the rest of the string over it. + * (Note that we cannot just use "strcpy(cur_tag, next_tag)", + * since the behaviour of strcpy is undefined for overlapping + * strings.) + */ + memmove(cur_tag, next_tag, strlen(next_tag) + 1); + + /* That changed the header, need to issue a log message */ + changed = 1; + + /* Note that the next tag has now been moved to *cur_tag, + * so we do not need to update the cur_tag pointer. + */ + } + else + { + /* Move on to next cookie tag */ + cur_tag = next_tag; + } + } + + if (changed) + { + log_error(LOG_LEVEL_HEADER, "Changed cookie to a temporary one."); + } + } + + return JB_ERR_OK; } -#endif /* def FORCE_LOAD */ - - -#ifdef FORCE_LOAD + + +#ifdef FEATURE_FORCE_LOAD /********************************************************************* * * Function : strclean * - * Description : In-Situ-Eliminate all occurances of substring in + * Description : In-Situ-Eliminate all occurances of substring in * string * * Parameters : @@ -1274,12 +1767,12 @@ int strclean(const char *string, const char *substring) int hits = 0, len = strlen(substring); char *pos, *p; - while((pos = strstr(string, substring))) + while((pos = strstr(string, substring)) != NULL) { p = pos + len; do { - *(p - len) = *p; + *(p - len) = *p; } while (*p++ != '\0'); @@ -1288,7 +1781,7 @@ int strclean(const char *string, const char *substring) return(hits); } -#endif /* def FORCE_LOAD */ +#endif /* def FEATURE_FORCE_LOAD */ /* diff --git a/parsers.h b/parsers.h index 14025448..837bac4a 100644 --- a/parsers.h +++ b/parsers.h @@ -1,9 +1,9 @@ -#ifndef _PARSERS_H -#define _PARSERS_H -#define PARSERS_H_VERSION "$Id: parsers.h,v 1.1 2001/05/13 21:57:06 administrator Exp $" +#ifndef PARSERS_H_INCLUDED +#define PARSERS_H_INCLUDED +#define PARSERS_H_VERSION "$Id: parsers.h,v 1.25 2002/03/26 22:29:55 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/parsers.h,v $ + * File : $Source: /cvsroot/ijbswa/current/parsers.h,v $ * * Purpose : Declares functions to parse/crunch headers and pages. * Functions declared include: @@ -13,11 +13,11 @@ * `client_x_forwarded_adder', `client_xtra_adder', * `content_type', `crumble', `destroy_list', `enlist', * `flush_socket', `free_http_request', `get_header', - * `list_to_text', `match', `parse_http_request', `sed', + * `list_to_text', `parse_http_request', `sed', * and `server_set_cookie'. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -43,6 +43,125 @@ * * Revisions : * $Log: parsers.h,v $ + * Revision 1.25 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.24 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.23 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.22 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.21 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.20 2002/02/20 23:15:13 jongfoster + * Parsing functions now handle out-of-memory gracefully by returning + * an error code. + * + * Revision 1.19 2002/01/17 21:03:47 jongfoster + * Moving all our URL and URL pattern parsing code to urlmatch.c. + * + * Revision 1.18 2001/10/26 17:40:23 oes + * Introduced get_header_value() + * Removed client_accept() + * + * Revision 1.17 2001/10/13 12:47:32 joergs + * Removed client_host, added client_host_adder + * + * Revision 1.16 2001/10/07 18:50:16 oes + * Added server_content_encoding, renamed server_transfer_encoding + * + * Revision 1.15 2001/10/07 18:01:55 oes + * Changed server_http11 to server_http + * + * Revision 1.14 2001/10/07 15:45:48 oes + * added client_accept_encoding, client_te, client_accept_encoding_adder + * + * renamed content_type and content_length + * + * fixed client_host and strclean prototypes + * + * Revision 1.13 2001/09/29 12:56:03 joergs + * IJB now changes HTTP/1.1 to HTTP/1.0 in requests and answers. + * + * Revision 1.12 2001/09/13 23:05:50 jongfoster + * Changing the string paramater to the header parsers a "const". + * + * Revision 1.11 2001/07/31 14:46:53 oes + * Added prototype for connection_close_adder + * + * Revision 1.10 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.9 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.8 2001/07/13 14:01:54 oes + * Removed all #ifdef PCRS + * + * Revision 1.7 2001/06/29 13:32:14 oes + * Removed logentry from cancelled commit + * + * Revision 1.6 2001/06/03 19:12:38 oes + * deleted const struct interceptors + * + * Revision 1.5 2001/05/31 21:30:33 jongfoster + * Removed list code - it's now in list.[ch] + * Renamed "permission" to "action", and changed many features + * to use the actions file rather than the global config. + * + * Revision 1.4 2001/05/27 13:19:06 oes + * Patched Joergs solution for the content-length in. + * + * Revision 1.3 2001/05/26 13:39:32 jongfoster + * Only crunches Content-Length header if applying RE filtering. + * Without this fix, Microsoft Windows Update wouldn't work. + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:59:01 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -55,47 +174,45 @@ extern "C" { extern const struct parsers client_patterns[]; extern const struct parsers server_patterns[]; -extern const struct interceptors intercept_patterns[]; -extern void (* const add_client_headers[])(struct client_state *); -extern void (* const add_server_headers[])(struct client_state *); +extern const add_header_func_ptr add_client_headers[]; +extern const add_header_func_ptr add_server_headers[]; -extern int flush_socket(int fd, struct client_state *csp); -extern int add_to_iob(struct client_state *csp, char *buf, int n); +extern int flush_socket(jb_socket fd, struct client_state *csp); +extern jb_err add_to_iob(struct client_state *csp, char *buf, int n); extern char *get_header(struct client_state *csp); -extern void enlist(struct list *h, const char *s); -extern void destroy_list(struct list *h); - -extern char *sed(const struct parsers pats[], void (* const more_headers[])(struct client_state *), struct client_state *csp); - -extern void free_http_request(struct http_request *http); -extern void parse_http_request(char *req, struct http_request *http, struct client_state *csp); - -extern char *crumble(const struct parsers *v, char *s, struct client_state *csp); - -extern char *client_referrer(const struct parsers *v, char *s, struct client_state *csp); -extern char *client_uagent(const struct parsers *v, char *s, struct client_state *csp); -extern char *client_ua(const struct parsers *v, char *s, struct client_state *csp); -extern char *client_from(const struct parsers *v, char *s, struct client_state *csp); -extern char *client_send_cookie(const struct parsers *v, char *s, struct client_state *csp); -extern char *client_x_forwarded(const struct parsers *v, char *s, struct client_state *csp); -extern void client_cookie_adder(struct client_state *csp); -extern void client_xtra_adder(struct client_state *csp); -extern void client_x_forwarded_adder(struct client_state *csp); -extern char *server_set_cookie(const struct parsers *v, char *s, struct client_state *csp); - -#ifdef PCRS -extern char *content_type(const struct parsers *v, char *s, struct client_state *csp); -#endif /* def PCRS */ - -#ifdef FORCE_LOAD -char *client_host(const struct parsers *v, char *s, struct client_state *csp); -int strclean(const char *string, const char *substring); -#endif /* def FORCE_LOAD */ - -#if defined(DETECT_MSIE_IMAGES) -extern char *client_accept(const struct parsers *v, char *s, struct client_state *csp); -#endif /* defined(DETECT_MSIE_IMAGES) */ +extern char *get_header_value(const struct list *header_list, const char *header_name); +extern char *sed(const struct parsers pats[], const add_header_func_ptr more_headers[], struct client_state *csp); + +extern jb_err crumble (struct client_state *csp, char **header); +extern jb_err client_referrer (struct client_state *csp, char **header); +extern jb_err client_uagent (struct client_state *csp, char **header); +extern jb_err client_ua (struct client_state *csp, char **header); +extern jb_err client_from (struct client_state *csp, char **header); +extern jb_err client_send_cookie (struct client_state *csp, char **header); +extern jb_err client_x_forwarded (struct client_state *csp, char **header); +extern jb_err client_accept_encoding (struct client_state *csp, char **header); +extern jb_err client_te (struct client_state *csp, char **header); + +extern jb_err client_host_adder (struct client_state *csp); +extern jb_err client_cookie_adder (struct client_state *csp); +extern jb_err client_xtra_adder (struct client_state *csp); +extern jb_err client_accept_encoding_adder(struct client_state *csp); +extern jb_err client_x_forwarded_adder (struct client_state *csp); + +extern jb_err connection_close_adder (struct client_state *csp); + +extern jb_err server_set_cookie (struct client_state *csp, char **header); +extern jb_err server_content_type (struct client_state *csp, char **header); +extern jb_err server_content_length (struct client_state *csp, char **header); +extern jb_err server_content_md5 (struct client_state *csp, char **header); +extern jb_err server_content_encoding(struct client_state *csp, char **header); +extern jb_err server_transfer_coding (struct client_state *csp, char **header); +extern jb_err server_http (struct client_state *csp, char **header); + +#ifdef FEATURE_FORCE_LOAD +extern int strclean(const char *string, const char *substring); +#endif /* def FEATURE_FORCE_LOAD */ /* Revision control strings from this header and associated .c file */ extern const char parsers_rcs[]; @@ -105,7 +222,7 @@ extern const char parsers_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _PARSERS_H */ +#endif /* ndef PARSERS_H_INCLUDED */ /* Local Variables: diff --git a/pcre/.gitignore b/pcre/.gitignore new file mode 100644 index 00000000..58124c0e --- /dev/null +++ b/pcre/.gitignore @@ -0,0 +1,5 @@ +chartables.c +dftables +vc_dftables.plg +vc_dftables +vc_dftables_dbg diff --git a/pcre/Makefile.in b/pcre/Makefile.in new file mode 100644 index 00000000..94edf499 --- /dev/null +++ b/pcre/Makefile.in @@ -0,0 +1,219 @@ + +# Makefile.in for PCRE (Perl-Compatible Regular Expression) library. + +#---------------------------------------------------------------------------# +# To build mingw32 DLL uncomment the next two lines. This addition for # +# mingw32 was contributed by . I (Philip # +# Hazel) don't know anything about it! There are some additional targets at # +# the bottom of this Makefile. # +#---------------------------------------------------------------------------# +# +# include dll.mk +# DLL_LDFLAGS=-s + + +#---------------------------------------------------------------------------# +# The next few lines are modified by "configure" to insert data that it is # +# given in its arguments, or which it finds out for itself. # +#---------------------------------------------------------------------------# + +# BINDIR is the directory in which the pcregrep command is installed. +# INCDIR is the directory in which the public header file pcre.h is installed. +# LIBDIR is the directory in which the libraries are installed. +# MANDIR is the directory in which the man pages are installed. +# The pcretest program, as it is a test program, does not get installed +# anywhere. + +prefix = @prefix@ +exec_prefix = @exec_prefix@ + +BINDIR = @bindir@ +LIBDIR = @libdir@ +INCDIR = @includedir@ +MANDIR = @mandir@ + +CC = @CC@ +CFLAGS = @CFLAGS@ +RANLIB = @RANLIB@ +UTF8 = @UTF8@ + +# LIBTOOL defaults to "./libtool", which enables the building of shared +# libraries. If "configure" is called with --disable-shared-libraries, LIBTOOL +# is set to "", which stops shared libraries from being built, and LIBSUFFIX +# is set to "a" instead of "la", which causes the shared libraries not to be +# installed. + +LIBTOOL = @LIBTOOL@ +LIBSUFFIX = @LIBSUFFIX@ + +# These are the version numbers for the shared libraries + +PCRELIBVERSION = @PCRE_LIB_VERSION@ +PCREPOSIXLIBVERSION = @PCRE_POSIXLIB_VERSION@ + + +#---------------------------------------------------------------------------# +# A copy of install-sh is in this distribution and is used by default. # +#---------------------------------------------------------------------------# + +INSTALL = ./install-sh -c +INSTALL_DATA = ${INSTALL} -m 644 + + +#---------------------------------------------------------------------------# +# For almost all systems, the command to create a library is "ar cq", but # +# there is at least one where it is different, so this command must be # +# configurable. However, I haven't got round to learning how to make # +# "configure" find this out for itself. It is necessary to use a command # +# such as "make AR='ar -rc'" if you need to vary this. The setting of AR is # +# *not* passed over to ./ltconfig, because it does its own setting up. # +#---------------------------------------------------------------------------# + +AR = ar cq + + +############################################################################## + + +OBJ = maketables.o get.o study.o pcre.o +LOBJ = maketables.lo get.lo study.lo pcre.lo + +all: libtool libpcre.$(LIBSUFFIX) libpcreposix.$(LIBSUFFIX) pcretest pcregrep + +libtool: config.guess config.sub ltconfig ltmain.sh + @if test "$(LIBTOOL)" = "./libtool"; then \ + echo '--- Building libtool ---'; \ + CC=$(CC) CFLAGS='$(CFLAGS)' RANLIB='$(RANLIB)' ./ltconfig ./ltmain.sh; \ + echo '--- Built libtool ---'; fi + +pcregrep: libpcre.$(LIBSUFFIX) pcregrep.o + @echo ' ' + @echo '--- Building pcregrep utility' + @echo ' ' + $(LIBTOOL) $(CC) $(CFLAGS) -o pcregrep pcregrep.o libpcre.$(LIBSUFFIX) + +pcretest: libpcre.$(LIBSUFFIX) libpcreposix.$(LIBSUFFIX) pcretest.o + @echo ' ' + @echo '--- Building pcretest testing program' + @echo ' ' + $(LIBTOOL) $(PURIFY) $(CC) $(CFLAGS) -o pcretest pcretest.o \ + libpcre.$(LIBSUFFIX) libpcreposix.$(LIBSUFFIX) + +libpcre.a: $(OBJ) + @echo ' ' + @echo '--- Building static library: libpcre' + @echo ' ' + -rm -f libpcre.a + $(AR) libpcre.a $(OBJ) + $(RANLIB) libpcre.a + +libpcre.la: $(OBJ) + @echo ' ' + @echo '--- Building shared library: libpcre' + @echo ' ' + -rm -f libpcre.la + ./libtool $(CC) -version-info '$(PCRELIBVERSION)' -o libpcre.la -rpath $(LIBDIR) $(LOBJ) + +libpcreposix.a: pcreposix.o + @echo ' ' + @echo '--- Building static library: libpcreposix' + @echo ' ' + -rm -f libpcreposix.a + $(AR) libpcreposix.a pcreposix.o + $(RANLIB) libpcreposix.a + +libpcreposix.la: pcreposix.o + @echo ' ' + @echo '--- Building shared library: libpcreposix' + @echo ' ' + -rm -f libpcreposix.la + ./libtool $(CC) -version-info '$(PCREPOSIXLIBVERSION)' -o libpcreposix.la -rpath $(LIBDIR) pcreposix.lo + +pcre.o: chartables.c pcre.c pcre.h internal.h config.h Makefile + $(LIBTOOL) $(CC) -c $(CFLAGS) $(UTF8) pcre.c + +pcreposix.o: pcreposix.c pcreposix.h internal.h pcre.h config.h Makefile + $(LIBTOOL) $(CC) -c $(CFLAGS) pcreposix.c + +maketables.o: maketables.c pcre.h internal.h config.h Makefile + $(LIBTOOL) $(CC) -c $(CFLAGS) maketables.c + +get.o: get.c pcre.h internal.h config.h Makefile + $(LIBTOOL) $(CC) -c $(CFLAGS) get.c + +study.o: study.c pcre.h internal.h config.h Makefile + $(LIBTOOL) $(CC) -c $(CFLAGS) $(UTF8) study.c + +pcretest.o: pcretest.c pcre.h config.h Makefile + $(CC) -c $(CFLAGS) $(UTF8) pcretest.c + +pcregrep.o: pcregrep.c pcre.h Makefile config.h + $(CC) -c $(CFLAGS) $(UTF8) pcregrep.c + +# An auxiliary program makes the default character table source + +chartables.c: dftables + ./dftables >chartables.c + +dftables: dftables.c maketables.c pcre.h internal.h config.h Makefile + $(CC) -o dftables $(CFLAGS) dftables.c + +install: all + $(LIBTOOL) $(INSTALL_DATA) libpcre.$(LIBSUFFIX) $(DESTDIR)/$(LIBDIR)/libpcre.$(LIBSUFFIX) + $(LIBTOOL) $(INSTALL_DATA) libpcreposix.$(LIBSUFFIX) $(DESTDIR)/$(LIBDIR)/libpcreposix.$(LIBSUFFIX) + $(INSTALL_DATA) pcre.h $(DESTDIR)/$(INCDIR)/pcre.h + $(INSTALL_DATA) pcreposix.h $(DESTDIR)/$(INCDIR)/pcreposix.h + $(INSTALL_DATA) doc/pcre.3 $(DESTDIR)/$(MANDIR)/man3/pcre.3 + $(INSTALL_DATA) doc/pcreposix.3 $(DESTDIR)/$(MANDIR)/man3/pcreposix.3 + $(INSTALL_DATA) doc/pcregrep.1 $(DESTDIR)/$(MANDIR)/man1/pcregrep.1 + @if test "$(LIBTOOL)" = "./libtool"; then \ + echo ' '; \ + echo '--- Rebuilding pcregrep to use installed shared library ---'; \ + echo $(CC) $(CFLAGS) -o pcregrep pcregrep.o -L$(DESTDIR)/$(LIBDIR) -lpcre; \ + $(CC) $(CFLAGS) -o pcregrep pcregrep.o -L$(DESTDIR)/$(LIBDIR) -lpcre; \ + echo '--- Rebuilding pcretest to use installed shared library ---'; \ + echo $(CC) $(CFLAGS) -o pcretest pcretest.o -L$(DESTDIR)/$(LIBDIR) -lpcre -lpcreposix; \ + $(CC) $(CFLAGS) -o pcretest pcretest.o -L$(DESTDIR)/$(LIBDIR) -lpcre -lpcreposix; \ + fi + $(INSTALL) pcregrep $(DESTDIR)/$(BINDIR)/pcregrep + $(INSTALL) pcre-config $(DESTDIR)/$(BINDIR)/pcre-config + +# We deliberately omit dftables and chartables.c from 'make clean'; once made +# chartables.c shouldn't change, and if people have edited the tables by hand, +# you don't want to throw them away. + +clean:; -rm -rf *.o *.lo *.a *.la .libs pcretest pcregrep testtry + +# But "make distclean" should get back to a virgin distribution + +distclean: clean + -rm -f chartables.c libtool pcre-config pcre.h \ + Makefile config.h config.status config.log config.cache + +check: runtest + +test: runtest + +runtest: all + ./RunTest + +######## MINGW32 ############### MINGW32 ############### MINGW32 ############# + +# This addition for mingw32 was contributed by Paul Sokolovsky +# . I (PH) don't know anything about it! + +dll: _dll libpcre.dll.a pcregrep_d pcretest_d + +_dll: + $(MAKE) CFLAGS=-DSTATIC pcre.dll + +pcre.dll: $(OBJ) pcreposix.o pcre.def +libpcre.dll.a: pcre.def + +pcregrep_d: libpcre.dll.a pcregrep.o + $(CC) $(CFLAGS) -L. -o pcregrep pcregrep.o -lpcre.dll + +pcretest_d: libpcre.dll.a pcretest.o + $(PURIFY) $(CC) $(CFLAGS) -L. -o pcretest pcretest.o -lpcre.dll + +# End diff --git a/pcre/RunTest.in b/pcre/RunTest.in new file mode 100644 index 00000000..6e4eb085 --- /dev/null +++ b/pcre/RunTest.in @@ -0,0 +1,148 @@ +#! /bin/sh + +# This file is generated by configure from RunTest.in. Make any changes +# to that file. + +# Run PCRE tests + +cf=diff + +# Select which tests to run; if no selection, run all + +do1=no +do2=no +do3=no +do4=no +do5=no +do6=no + +while [ $# -gt 0 ] ; do + case $1 in + 1) do1=yes;; + 2) do2=yes;; + 3) do3=yes;; + 4) do4=yes;; + 5) do5=yes;; + 6) do6=yes;; + *) echo "Unknown test number $1"; exit 1;; + esac + shift +done + +if [ "@UTF8@" = "" ] ; then + if [ $do5 = yes ] ; then + echo "Can't run test 5 because UFT8 support is not configured" + exit 1 + fi + if [ $do6 = yes ] ; then + echo "Can't run test 6 because UFT8 support is not configured" + exit 1 + fi +fi + +if [ $do1 = no -a $do2 = no -a $do3 = no -a $do4 = no -a\ + $do5 = no -a $do6 = no ] ; then + do1=yes + do2=yes + do3=yes + do4=yes + if [ "@UTF8@" != "" ] ; then do5=yes; fi + if [ "@UTF8@" != "" ] ; then do6=yes; fi +fi + +# Primary test, Perl-compatible + +if [ $do1 = yes ] ; then + echo "Testing main functionality (Perl compatible)" + ./pcretest testdata/testinput1 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput1 + if [ $? != 0 ] ; then exit 1; fi + else exit 1 + fi +fi + +# PCRE tests that are not Perl-compatible - API & error tests, mostly + +if [ $do2 = yes ] ; then + echo "Testing API and error handling (not Perl compatible)" + ./pcretest -i testdata/testinput2 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput2 + if [ $? != 0 ] ; then exit 1; fi + else exit 1 + fi +fi + +# Additional Perl-compatible tests for Perl 5.005's new features + +if [ $do3 = yes ] ; then + echo "Testing Perl 5.005 features (Perl 5.005 compatible)" + ./pcretest testdata/testinput3 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput3 + if [ $? != 0 ] ; then exit 1; fi + else exit 1 + fi +fi + +if [ $do1 = yes -a $do2 = yes -a $do3 = yes ] ; then + echo " " + echo "The three main tests all ran OK" + echo " " +fi + +# Locale-specific tests, provided the "fr" locale is available + +if [ $do4 = yes ] ; then + locale -a | grep '^fr$' >/dev/null + if [ $? -eq 0 ] ; then + echo "Testing locale-specific features (using 'fr' locale)" + ./pcretest testdata/testinput4 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput4 + if [ $? != 0 ] ; then + echo " " + echo "Locale test did not run entirely successfully." + echo "This usually means that there is a problem with the locale" + echo "settings rather than a bug in PCRE." + else + echo "Locale test ran OK" + fi + echo " " + else exit 1 + fi + else + echo "Cannot test locale-specific features - 'fr' locale not found," + echo "or the \"locale\" command is not available to check for it." + echo " " + fi +fi + +# Additional tests for UTF8 support + +if [ $do5 = yes ] ; then + echo "Testing experimental, incomplete UTF8 support (Perl compatible)" + ./pcretest testdata/testinput5 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput5 + if [ $? != 0 ] ; then exit 1; fi + else exit 1 + fi + echo "UTF8 test ran OK" + echo " " +fi + +if [ $do6 = yes ] ; then + echo "Testing API and internals for UTF8 support (not Perl compatible)" + ./pcretest testdata/testinput6 testtry + if [ $? = 0 ] ; then + $cf testtry testdata/testoutput6 + if [ $? != 0 ] ; then exit 1; fi + else exit 1 + fi + echo "UTF8 internals test ran OK" + echo " " +fi + +# End diff --git a/pcre/chartables.c b/pcre/chartables.c deleted file mode 100644 index 9055da2d..00000000 --- a/pcre/chartables.c +++ /dev/null @@ -1,183 +0,0 @@ -/************************************************* -* Perl-Compatible Regular Expressions * -*************************************************/ - -/* This file is automatically written by the dftables auxiliary -program. If you edit it by hand, you might like to edit the Makefile to -prevent its ever being regenerated. - -This file is #included in the compilation of pcre.c to build the default -character tables which are used when no tables are passed to the compile -function. */ - -static unsigned char pcre_default_tables[] = { - -/* This table is a lower casing table. */ - - 0, 1, 2, 3, 4, 5, 6, 7, - 8, 9, 10, 11, 12, 13, 14, 15, - 16, 17, 18, 19, 20, 21, 22, 23, - 24, 25, 26, 27, 28, 29, 30, 31, - 32, 33, 34, 35, 36, 37, 38, 39, - 40, 41, 42, 43, 44, 45, 46, 47, - 48, 49, 50, 51, 52, 53, 54, 55, - 56, 57, 58, 59, 60, 61, 62, 63, - 64, 97, 98, 99,100,101,102,103, - 104,105,106,107,108,109,110,111, - 112,113,114,115,116,117,118,119, - 120,121,122, 91, 92, 93, 94, 95, - 96, 97, 98, 99,100,101,102,103, - 104,105,106,107,108,109,110,111, - 112,113,114,115,116,117,118,119, - 120,121,122,123,124,125,126,127, - 128,129,130,131,132,133,134,135, - 136,137,138,139,140,141,142,143, - 144,145,146,147,148,149,150,151, - 152,153,154,155,156,157,158,159, - 160,161,162,163,164,165,166,167, - 168,169,170,171,172,173,174,175, - 176,177,178,179,180,181,182,183, - 184,185,186,187,188,189,190,191, - 192,193,194,195,196,197,198,199, - 200,201,202,203,204,205,206,207, - 208,209,210,211,212,213,214,215, - 216,217,218,219,220,221,222,223, - 224,225,226,227,228,229,230,231, - 232,233,234,235,236,237,238,239, - 240,241,242,243,244,245,246,247, - 248,249,250,251,252,253,254,255, - -/* This table is a case flipping table. */ - - 0, 1, 2, 3, 4, 5, 6, 7, - 8, 9, 10, 11, 12, 13, 14, 15, - 16, 17, 18, 19, 20, 21, 22, 23, - 24, 25, 26, 27, 28, 29, 30, 31, - 32, 33, 34, 35, 36, 37, 38, 39, - 40, 41, 42, 43, 44, 45, 46, 47, - 48, 49, 50, 51, 52, 53, 54, 55, - 56, 57, 58, 59, 60, 61, 62, 63, - 64, 97, 98, 99,100,101,102,103, - 104,105,106,107,108,109,110,111, - 112,113,114,115,116,117,118,119, - 120,121,122, 91, 92, 93, 94, 95, - 96, 65, 66, 67, 68, 69, 70, 71, - 72, 73, 74, 75, 76, 77, 78, 79, - 80, 81, 82, 83, 84, 85, 86, 87, - 88, 89, 90,123,124,125,126,127, - 128,129,130,131,132,133,134,135, - 136,137,138,139,140,141,142,143, - 144,145,146,147,148,149,150,151, - 152,153,154,155,156,157,158,159, - 160,161,162,163,164,165,166,167, - 168,169,170,171,172,173,174,175, - 176,177,178,179,180,181,182,183, - 184,185,186,187,188,189,190,191, - 192,193,194,195,196,197,198,199, - 200,201,202,203,204,205,206,207, - 208,209,210,211,212,213,214,215, - 216,217,218,219,220,221,222,223, - 224,225,226,227,228,229,230,231, - 232,233,234,235,236,237,238,239, - 240,241,242,243,244,245,246,247, - 248,249,250,251,252,253,254,255, - -/* This table contains bit maps for various character classes. -Each map is 32 bytes long and the bits run from the least -significant end of each byte. The classes that have their own -maps are: space, xdigit, digit, upper, lower, word, graph -print, punct, and cntrl. Other classes are built from combinations. */ - - 0x00,0x3e,0x00,0x00,0x01,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0x00,0x00,0xff,0x03, - 0x7e,0x00,0x00,0x00,0x7e,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0x00,0x00,0xff,0x03, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0xfe,0xff,0xff,0x07,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0xfe,0xff,0xff,0x07, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0x00,0x00,0xff,0x03, - 0xfe,0xff,0xff,0x87,0xfe,0xff,0xff,0x07, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0xfe,0xff,0xff,0xff, - 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0x7f, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0xff,0xff,0xff,0xff, - 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0x7f, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0x00,0x00,0x00,0x00,0xfe,0xff,0x00,0xfc, - 0x01,0x00,0x00,0xf8,0x01,0x00,0x00,0x78, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - - 0xff,0xff,0xff,0xff,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x80, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, - -/* This table identifies various classes of character by individual bits: - 0x01 white space character - 0x02 letter - 0x04 decimal digit - 0x08 hexadecimal digit - 0x10 alphanumeric or '_' - 0x80 regular expression metacharacter or binary zero -*/ - - 0x80,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 0- 7 */ - 0x00,0x01,0x01,0x01,0x01,0x01,0x00,0x00, /* 8- 15 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 16- 23 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 24- 31 */ - 0x01,0x00,0x00,0x00,0x80,0x00,0x00,0x00, /* - ' */ - 0x80,0x80,0x80,0x80,0x00,0x00,0x80,0x00, /* ( - / */ - 0x1c,0x1c,0x1c,0x1c,0x1c,0x1c,0x1c,0x1c, /* 0 - 7 */ - 0x1c,0x1c,0x00,0x00,0x00,0x00,0x00,0x80, /* 8 - ? */ - 0x00,0x1a,0x1a,0x1a,0x1a,0x1a,0x1a,0x12, /* @ - G */ - 0x12,0x12,0x12,0x12,0x12,0x12,0x12,0x12, /* H - O */ - 0x12,0x12,0x12,0x12,0x12,0x12,0x12,0x12, /* P - W */ - 0x12,0x12,0x12,0x80,0x00,0x00,0x80,0x10, /* X - _ */ - 0x00,0x1a,0x1a,0x1a,0x1a,0x1a,0x1a,0x12, /* ` - g */ - 0x12,0x12,0x12,0x12,0x12,0x12,0x12,0x12, /* h - o */ - 0x12,0x12,0x12,0x12,0x12,0x12,0x12,0x12, /* p - w */ - 0x12,0x12,0x12,0x80,0x80,0x00,0x00,0x00, /* x -127 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 128-135 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 136-143 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 144-151 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 152-159 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 160-167 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 168-175 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 176-183 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 184-191 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 192-199 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 200-207 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 208-215 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 216-223 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 224-231 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 232-239 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, /* 240-247 */ - 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00};/* 248-255 */ - -/* End of chartables.c */ diff --git a/pcre/config.guess b/pcre/config.guess new file mode 100644 index 00000000..e1b58717 --- /dev/null +++ b/pcre/config.guess @@ -0,0 +1,1121 @@ +#! /bin/sh +# Attempt to guess a canonical system name. +# Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999 +# Free Software Foundation, Inc. +# +# This file is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# Written by Per Bothner . +# The master version of this file is at the FSF in /home/gd/gnu/lib. +# Please send patches to . +# +# This script attempts to guess a canonical system name similar to +# config.sub. If it succeeds, it prints the system name on stdout, and +# exits with 0. Otherwise, it exits with 1. +# +# The plan is that this can be called by configure scripts if you +# don't specify an explicit system type (host/target name). +# +# Only a few systems have been added to this list; please add others +# (but try to keep the structure clean). +# + +# Use $HOST_CC if defined. $CC may point to a cross-compiler +if test x"$CC_FOR_BUILD" = x; then + if test x"$HOST_CC" != x; then + CC_FOR_BUILD="$HOST_CC" + else + if test x"$CC" != x; then + CC_FOR_BUILD="$CC" + else + CC_FOR_BUILD=cc + fi + fi +fi + + +# This is needed to find uname on a Pyramid OSx when run in the BSD universe. +# (ghazi@noc.rutgers.edu 8/24/94.) +if (test -f /.attbin/uname) >/dev/null 2>&1 ; then + PATH=$PATH:/.attbin ; export PATH +fi + +UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown +UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown +UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown +UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown + +dummy=dummy-$$ +trap 'rm -f $dummy.c $dummy.o $dummy; exit 1' 1 2 15 + +# Note: order is significant - the case branches are not exclusive. + +case "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" in + alpha:OSF1:*:*) + if test $UNAME_RELEASE = "V4.0"; then + UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` + fi + # A Vn.n version is a released version. + # A Tn.n version is a released field test version. + # A Xn.n version is an unreleased experimental baselevel. + # 1.2 uses "1.2" for uname -r. + cat <$dummy.s + .globl main + .ent main +main: + .frame \$30,0,\$26,0 + .prologue 0 + .long 0x47e03d80 # implver $0 + lda \$2,259 + .long 0x47e20c21 # amask $2,$1 + srl \$1,8,\$2 + sll \$2,2,\$2 + sll \$0,3,\$0 + addl \$1,\$0,\$0 + addl \$2,\$0,\$0 + ret \$31,(\$26),1 + .end main +EOF + $CC_FOR_BUILD $dummy.s -o $dummy 2>/dev/null + if test "$?" = 0 ; then + ./$dummy + case "$?" in + 7) + UNAME_MACHINE="alpha" + ;; + 15) + UNAME_MACHINE="alphaev5" + ;; + 14) + UNAME_MACHINE="alphaev56" + ;; + 10) + UNAME_MACHINE="alphapca56" + ;; + 16) + UNAME_MACHINE="alphaev6" + ;; + esac + fi + rm -f $dummy.s $dummy + echo ${UNAME_MACHINE}-dec-osf`echo ${UNAME_RELEASE} | sed -e 's/^[VTX]//' | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` + exit 0 ;; + Alpha\ *:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # Should we change UNAME_MACHINE based on the output of uname instead + # of the specific Alpha model? + echo alpha-pc-interix + exit 0 ;; + 21064:Windows_NT:50:3) + echo alpha-dec-winnt3.5 + exit 0 ;; + Amiga*:UNIX_System_V:4.0:*) + echo m68k-cbm-sysv4 + exit 0;; + amiga:NetBSD:*:*) + echo m68k-cbm-netbsd${UNAME_RELEASE} + exit 0 ;; + amiga:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + *:[Aa]miga[Oo][Ss]:*:*) + echo ${UNAME_MACHINE}-unknown-amigaos + exit 0 ;; + arc64:OpenBSD:*:*) + echo mips64el-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + arc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + hkmips:OpenBSD:*:*) + echo mips-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + pmax:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + sgi:OpenBSD:*:*) + echo mips-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + wgrisc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + *:OS/390:*:*) + echo i370-ibm-openedition + exit 0 ;; + arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) + echo arm-acorn-riscix${UNAME_RELEASE} + exit 0;; + arm32:NetBSD:*:*) + echo arm-unknown-netbsd`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` + exit 0 ;; + SR2?01:HI-UX/MPP:*:*) + echo hppa1.1-hitachi-hiuxmpp + exit 0;; + Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) + # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. + if test "`(/bin/universe) 2>/dev/null`" = att ; then + echo pyramid-pyramid-sysv3 + else + echo pyramid-pyramid-bsd + fi + exit 0 ;; + NILE*:*:*:dcosx) + echo pyramid-pyramid-svr4 + exit 0 ;; + sun4H:SunOS:5.*:*) + echo sparc-hal-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) + echo sparc-sun-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + i86pc:SunOS:5.*:*) + echo i386-pc-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:6*:*) + # According to config.sub, this is the proper way to canonicalize + # SunOS6. Hard to guess exactly what SunOS6 will be like, but + # it's likely to be more like Solaris than SunOS4. + echo sparc-sun-solaris3`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + sun4*:SunOS:*:*) + case "`/usr/bin/arch -k`" in + Series*|S4*) + UNAME_RELEASE=`uname -v` + ;; + esac + # Japanese Language versions have a version number like `4.1.3-JL'. + echo sparc-sun-sunos`echo ${UNAME_RELEASE}|sed -e 's/-/_/'` + exit 0 ;; + sun3*:SunOS:*:*) + echo m68k-sun-sunos${UNAME_RELEASE} + exit 0 ;; + sun*:*:4.2BSD:*) + UNAME_RELEASE=`(head -1 /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` + test "x${UNAME_RELEASE}" = "x" && UNAME_RELEASE=3 + case "`/bin/arch`" in + sun3) + echo m68k-sun-sunos${UNAME_RELEASE} + ;; + sun4) + echo sparc-sun-sunos${UNAME_RELEASE} + ;; + esac + exit 0 ;; + aushp:SunOS:*:*) + echo sparc-auspex-sunos${UNAME_RELEASE} + exit 0 ;; + atari*:NetBSD:*:*) + echo m68k-atari-netbsd${UNAME_RELEASE} + exit 0 ;; + atari*:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + # The situation for MiNT is a little confusing. The machine name + # can be virtually everything (everything which is not + # "atarist" or "atariste" at least should have a processor + # > m68000). The system name ranges from "MiNT" over "FreeMiNT" + # to the lowercase version "mint" (or "freemint"). Finally + # the system name "TOS" denotes a system which is actually not + # MiNT. But MiNT is downward compatible to TOS, so this should + # be no problem. + atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; + milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) + echo m68k-milan-mint${UNAME_RELEASE} + exit 0 ;; + hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) + echo m68k-hades-mint${UNAME_RELEASE} + exit 0 ;; + *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) + echo m68k-unknown-mint${UNAME_RELEASE} + exit 0 ;; + sun3*:NetBSD:*:*) + echo m68k-sun-netbsd${UNAME_RELEASE} + exit 0 ;; + sun3*:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mac68k:NetBSD:*:*) + echo m68k-apple-netbsd${UNAME_RELEASE} + exit 0 ;; + mac68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme88k:OpenBSD:*:*) + echo m88k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + powerpc:machten:*:*) + echo powerpc-apple-machten${UNAME_RELEASE} + exit 0 ;; + macppc:NetBSD:*:*) + echo powerpc-apple-netbsd${UNAME_RELEASE} + exit 0 ;; + RISC*:Mach:*:*) + echo mips-dec-mach_bsd4.3 + exit 0 ;; + RISC*:ULTRIX:*:*) + echo mips-dec-ultrix${UNAME_RELEASE} + exit 0 ;; + VAX*:ULTRIX*:*:*) + echo vax-dec-ultrix${UNAME_RELEASE} + exit 0 ;; + 2020:CLIX:*:* | 2430:CLIX:*:*) + echo clipper-intergraph-clix${UNAME_RELEASE} + exit 0 ;; + mips:*:*:UMIPS | mips:*:*:RISCos) + sed 's/^ //' << EOF >$dummy.c +#ifdef __cplusplus + int main (int argc, char *argv[]) { +#else + int main (argc, argv) int argc; char *argv[]; { +#endif + #if defined (host_mips) && defined (MIPSEB) + #if defined (SYSTYPE_SYSV) + printf ("mips-mips-riscos%ssysv\n", argv[1]); exit (0); + #endif + #if defined (SYSTYPE_SVR4) + printf ("mips-mips-riscos%ssvr4\n", argv[1]); exit (0); + #endif + #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) + printf ("mips-mips-riscos%sbsd\n", argv[1]); exit (0); + #endif + #endif + exit (-1); + } +EOF + $CC_FOR_BUILD $dummy.c -o $dummy \ + && ./$dummy `echo "${UNAME_RELEASE}" | sed -n 's/\([0-9]*\).*/\1/p'` \ + && rm $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo mips-mips-riscos${UNAME_RELEASE} + exit 0 ;; + Night_Hawk:Power_UNIX:*:*) + echo powerpc-harris-powerunix + exit 0 ;; + m88k:CX/UX:7*:*) + echo m88k-harris-cxux7 + exit 0 ;; + m88k:*:4*:R4*) + echo m88k-motorola-sysv4 + exit 0 ;; + m88k:*:3*:R3*) + echo m88k-motorola-sysv3 + exit 0 ;; + AViiON:dgux:*:*) + # DG/UX returns AViiON for all architectures + UNAME_PROCESSOR=`/usr/bin/uname -p` + if [ $UNAME_PROCESSOR = mc88100 ] || [ $UNAME_PROCESSOR = mc88110] + then + if [ ${TARGET_BINARY_INTERFACE}x = m88kdguxelfx ] || \ + [ ${TARGET_BINARY_INTERFACE}x = x ] + then + echo m88k-dg-dgux${UNAME_RELEASE} + else + echo m88k-dg-dguxbcs${UNAME_RELEASE} + fi + else + echo i586-dg-dgux${UNAME_RELEASE} + fi + exit 0 ;; + M88*:DolphinOS:*:*) # DolphinOS (SVR3) + echo m88k-dolphin-sysv3 + exit 0 ;; + M88*:*:R3*:*) + # Delta 88k system running SVR3 + echo m88k-motorola-sysv3 + exit 0 ;; + XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) + echo m88k-tektronix-sysv3 + exit 0 ;; + Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) + echo m68k-tektronix-bsd + exit 0 ;; + *:IRIX*:*:*) + echo mips-sgi-irix`echo ${UNAME_RELEASE}|sed -e 's/-/_/g'` + exit 0 ;; + ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. + echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id + exit 0 ;; # Note that: echo "'`uname -s`'" gives 'AIX ' + i?86:AIX:*:*) + echo i386-ibm-aix + exit 0 ;; + *:AIX:2:3) + if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then + sed 's/^ //' << EOF >$dummy.c + #include + + main() + { + if (!__power_pc()) + exit(1); + puts("powerpc-ibm-aix3.2.5"); + exit(0); + } +EOF + $CC_FOR_BUILD $dummy.c -o $dummy && ./$dummy && rm $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo rs6000-ibm-aix3.2.5 + elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then + echo rs6000-ibm-aix3.2.4 + else + echo rs6000-ibm-aix3.2 + fi + exit 0 ;; + *:AIX:*:4) + IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | head -1 | awk '{ print $1 }'` + if /usr/sbin/lsattr -EHl ${IBM_CPU_ID} | grep POWER >/dev/null 2>&1; then + IBM_ARCH=rs6000 + else + IBM_ARCH=powerpc + fi + if [ -x /usr/bin/oslevel ] ; then + IBM_REV=`/usr/bin/oslevel` + else + IBM_REV=4.${UNAME_RELEASE} + fi + echo ${IBM_ARCH}-ibm-aix${IBM_REV} + exit 0 ;; + *:AIX:*:*) + echo rs6000-ibm-aix + exit 0 ;; + ibmrt:4.4BSD:*|romp-ibm:BSD:*) + echo romp-ibm-bsd4.4 + exit 0 ;; + ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC NetBSD and + echo romp-ibm-bsd${UNAME_RELEASE} # 4.3 with uname added to + exit 0 ;; # report: romp-ibm BSD 4.3 + *:BOSX:*:*) + echo rs6000-bull-bosx + exit 0 ;; + DPX/2?00:B.O.S.:*:*) + echo m68k-bull-sysv3 + exit 0 ;; + 9000/[34]??:4.3bsd:1.*:*) + echo m68k-hp-bsd + exit 0 ;; + hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) + echo m68k-hp-bsd4.4 + exit 0 ;; + 9000/[34678]??:HP-UX:*:*) + case "${UNAME_MACHINE}" in + 9000/31? ) HP_ARCH=m68000 ;; + 9000/[34]?? ) HP_ARCH=m68k ;; + 9000/[678][0-9][0-9]) + sed 's/^ //' << EOF >$dummy.c + #include + #include + + int main () + { + #if defined(_SC_KERNEL_BITS) + long bits = sysconf(_SC_KERNEL_BITS); + #endif + long cpu = sysconf (_SC_CPU_VERSION); + + switch (cpu) + { + case CPU_PA_RISC1_0: puts ("hppa1.0"); break; + case CPU_PA_RISC1_1: puts ("hppa1.1"); break; + case CPU_PA_RISC2_0: + #if defined(_SC_KERNEL_BITS) + switch (bits) + { + case 64: puts ("hppa2.0w"); break; + case 32: puts ("hppa2.0n"); break; + default: puts ("hppa2.0"); break; + } break; + #else /* !defined(_SC_KERNEL_BITS) */ + puts ("hppa2.0"); break; + #endif + default: puts ("hppa1.0"); break; + } + exit (0); + } +EOF + (CCOPTS= $CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null ) && HP_ARCH=`./$dummy` + rm -f $dummy.c $dummy + esac + HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` + echo ${HP_ARCH}-hp-hpux${HPUX_REV} + exit 0 ;; + 3050*:HI-UX:*:*) + sed 's/^ //' << EOF >$dummy.c + #include + int + main () + { + long cpu = sysconf (_SC_CPU_VERSION); + /* The order matters, because CPU_IS_HP_MC68K erroneously returns + true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct + results, however. */ + if (CPU_IS_PA_RISC (cpu)) + { + switch (cpu) + { + case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; + case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; + case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; + default: puts ("hppa-hitachi-hiuxwe2"); break; + } + } + else if (CPU_IS_HP_MC68K (cpu)) + puts ("m68k-hitachi-hiuxwe2"); + else puts ("unknown-hitachi-hiuxwe2"); + exit (0); + } +EOF + $CC_FOR_BUILD $dummy.c -o $dummy && ./$dummy && rm $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + echo unknown-hitachi-hiuxwe2 + exit 0 ;; + 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:* ) + echo hppa1.1-hp-bsd + exit 0 ;; + 9000/8??:4.3bsd:*:*) + echo hppa1.0-hp-bsd + exit 0 ;; + *9??*:MPE/iX:*:*) + echo hppa1.0-hp-mpeix + exit 0 ;; + hp7??:OSF1:*:* | hp8?[79]:OSF1:*:* ) + echo hppa1.1-hp-osf + exit 0 ;; + hp8??:OSF1:*:*) + echo hppa1.0-hp-osf + exit 0 ;; + i?86:OSF1:*:*) + if [ -x /usr/sbin/sysversion ] ; then + echo ${UNAME_MACHINE}-unknown-osf1mk + else + echo ${UNAME_MACHINE}-unknown-osf1 + fi + exit 0 ;; + parisc*:Lites*:*:*) + echo hppa1.1-hp-lites + exit 0 ;; + hppa*:OpenBSD:*:*) + echo hppa-unknown-openbsd + exit 0 ;; + C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) + echo c1-convex-bsd + exit 0 ;; + C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) + if getsysinfo -f scalar_acc + then echo c32-convex-bsd + else echo c2-convex-bsd + fi + exit 0 ;; + C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) + echo c34-convex-bsd + exit 0 ;; + C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) + echo c38-convex-bsd + exit 0 ;; + C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) + echo c4-convex-bsd + exit 0 ;; + CRAY*X-MP:*:*:*) + echo xmp-cray-unicos + exit 0 ;; + CRAY*Y-MP:*:*:*) + echo ymp-cray-unicos${UNAME_RELEASE} + exit 0 ;; + CRAY*[A-Z]90:*:*:*) + echo ${UNAME_MACHINE}-cray-unicos${UNAME_RELEASE} \ + | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ + -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ + exit 0 ;; + CRAY*TS:*:*:*) + echo t90-cray-unicos${UNAME_RELEASE} + exit 0 ;; + CRAY*T3E:*:*:*) + echo alpha-cray-unicosmk${UNAME_RELEASE} + exit 0 ;; + CRAY-2:*:*:*) + echo cray2-cray-unicos + exit 0 ;; + F300:UNIX_System_V:*:*) + FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` + FUJITSU_REL=`echo ${UNAME_RELEASE} | sed -e 's/ /_/'` + echo "f300-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" + exit 0 ;; + F301:UNIX_System_V:*:*) + echo f301-fujitsu-uxpv`echo $UNAME_RELEASE | sed 's/ .*//'` + exit 0 ;; + hp3[0-9][05]:NetBSD:*:*) + echo m68k-hp-netbsd${UNAME_RELEASE} + exit 0 ;; + hp300:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + i?86:BSD/386:*:* | i?86:BSD/OS:*:*) + echo ${UNAME_MACHINE}-pc-bsdi${UNAME_RELEASE} + exit 0 ;; + sparc*:BSD/OS:*:*) + echo sparc-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:BSD/OS:*:*) + echo ${UNAME_MACHINE}-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:FreeBSD:*:*) + if test -x /usr/bin/objformat; then + if test "elf" = "`/usr/bin/objformat`"; then + echo ${UNAME_MACHINE}-unknown-freebsdelf`echo ${UNAME_RELEASE}|sed -e 's/[-_].*//'` + exit 0 + fi + fi + echo ${UNAME_MACHINE}-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` + exit 0 ;; + *:NetBSD:*:*) + echo ${UNAME_MACHINE}-unknown-netbsd`echo ${UNAME_RELEASE}|sed -e 's/[-_].*//'` + exit 0 ;; + *:OpenBSD:*:*) + echo ${UNAME_MACHINE}-unknown-openbsd`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` + exit 0 ;; + i*:CYGWIN*:*) + echo ${UNAME_MACHINE}-pc-cygwin + exit 0 ;; + i*:MINGW*:*) + echo ${UNAME_MACHINE}-pc-mingw32 + exit 0 ;; + i*:Windows_NT*:* | Pentium*:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # It also conflicts with pre-2.0 versions of AT&T UWIN. Should we + # UNAME_MACHINE based on the output of uname instead of i386? + echo i386-pc-interix + exit 0 ;; + i*:UWIN*:*) + echo ${UNAME_MACHINE}-pc-uwin + exit 0 ;; + p*:CYGWIN*:*) + echo powerpcle-unknown-cygwin + exit 0 ;; + prep*:SunOS:5.*:*) + echo powerpcle-unknown-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + *:GNU:*:*) + echo `echo ${UNAME_MACHINE}|sed -e 's,[-/].*$,,'`-unknown-gnu`echo ${UNAME_RELEASE}|sed -e 's,/.*$,,'` + exit 0 ;; + *:Linux:*:*) + + # The BFD linker knows what the default object file format is, so + # first see if it will tell us. cd to the root directory to prevent + # problems with other programs or directories called `ld' in the path. + ld_help_string=`cd /; ld --help 2>&1` + ld_supported_emulations=`echo $ld_help_string \ + | sed -ne '/supported emulations:/!d + s/[ ][ ]*/ /g + s/.*supported emulations: *// + s/ .*// + p'` + case "$ld_supported_emulations" in + *ia64) + echo "${UNAME_MACHINE}-unknown-linux" + exit 0 + ;; + i?86linux) + echo "${UNAME_MACHINE}-pc-linux-gnuaout" + exit 0 + ;; + i?86coff) + echo "${UNAME_MACHINE}-pc-linux-gnucoff" + exit 0 + ;; + sparclinux) + echo "${UNAME_MACHINE}-unknown-linux-gnuaout" + exit 0 + ;; + armlinux) + echo "${UNAME_MACHINE}-unknown-linux-gnuaout" + exit 0 + ;; + elf32arm*) + echo "${UNAME_MACHINE}-unknown-linux-gnu" + exit 0 + ;; + armelf_linux*) + echo "${UNAME_MACHINE}-unknown-linux-gnu" + exit 0 + ;; + m68klinux) + echo "${UNAME_MACHINE}-unknown-linux-gnuaout" + exit 0 + ;; + elf32ppc) + # Determine Lib Version + cat >$dummy.c < +#if defined(__GLIBC__) +extern char __libc_version[]; +extern char __libc_release[]; +#endif +main(argc, argv) + int argc; + char *argv[]; +{ +#if defined(__GLIBC__) + printf("%s %s\n", __libc_version, __libc_release); +#else + printf("unkown\n"); +#endif + return 0; +} +EOF + LIBC="" + $CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null + if test "$?" = 0 ; then + ./$dummy | grep 1\.99 > /dev/null + if test "$?" = 0 ; then + LIBC="libc1" + fi + fi + rm -f $dummy.c $dummy + echo powerpc-unknown-linux-gnu${LIBC} + exit 0 + ;; + esac + + if test "${UNAME_MACHINE}" = "alpha" ; then + sed 's/^ //' <$dummy.s + .globl main + .ent main + main: + .frame \$30,0,\$26,0 + .prologue 0 + .long 0x47e03d80 # implver $0 + lda \$2,259 + .long 0x47e20c21 # amask $2,$1 + srl \$1,8,\$2 + sll \$2,2,\$2 + sll \$0,3,\$0 + addl \$1,\$0,\$0 + addl \$2,\$0,\$0 + ret \$31,(\$26),1 + .end main +EOF + LIBC="" + $CC_FOR_BUILD $dummy.s -o $dummy 2>/dev/null + if test "$?" = 0 ; then + ./$dummy + case "$?" in + 7) + UNAME_MACHINE="alpha" + ;; + 15) + UNAME_MACHINE="alphaev5" + ;; + 14) + UNAME_MACHINE="alphaev56" + ;; + 10) + UNAME_MACHINE="alphapca56" + ;; + 16) + UNAME_MACHINE="alphaev6" + ;; + esac + + objdump --private-headers $dummy | \ + grep ld.so.1 > /dev/null + if test "$?" = 0 ; then + LIBC="libc1" + fi + fi + rm -f $dummy.s $dummy + echo ${UNAME_MACHINE}-unknown-linux-gnu${LIBC} ; exit 0 + elif test "${UNAME_MACHINE}" = "mips" ; then + cat >$dummy.c </dev/null && ./$dummy "${UNAME_MACHINE}" && rm $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + else + # Either a pre-BFD a.out linker (linux-gnuoldld) + # or one that does not give us useful --help. + # GCC wants to distinguish between linux-gnuoldld and linux-gnuaout. + # If ld does not provide *any* "supported emulations:" + # that means it is gnuoldld. + echo "$ld_help_string" | grep >/dev/null 2>&1 "supported emulations:" + test $? != 0 && echo "${UNAME_MACHINE}-pc-linux-gnuoldld" && exit 0 + + case "${UNAME_MACHINE}" in + i?86) + VENDOR=pc; + ;; + *) + VENDOR=unknown; + ;; + esac + # Determine whether the default compiler is a.out or elf + cat >$dummy.c < +#ifdef __cplusplus + int main (int argc, char *argv[]) { +#else + int main (argc, argv) int argc; char *argv[]; { +#endif +#ifdef __ELF__ +# ifdef __GLIBC__ +# if __GLIBC__ >= 2 + printf ("%s-${VENDOR}-linux-gnu\n", argv[1]); +# else + printf ("%s-${VENDOR}-linux-gnulibc1\n", argv[1]); +# endif +# else + printf ("%s-${VENDOR}-linux-gnulibc1\n", argv[1]); +# endif +#else + printf ("%s-${VENDOR}-linux-gnuaout\n", argv[1]); +#endif + return 0; +} +EOF + $CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null && ./$dummy "${UNAME_MACHINE}" && rm $dummy.c $dummy && exit 0 + rm -f $dummy.c $dummy + fi ;; +# ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. earlier versions +# are messed up and put the nodename in both sysname and nodename. + i?86:DYNIX/ptx:4*:*) + echo i386-sequent-sysv4 + exit 0 ;; + i?86:UNIX_SV:4.2MP:2.*) + # Unixware is an offshoot of SVR4, but it has its own version + # number series starting with 2... + # I am not positive that other SVR4 systems won't match this, + # I just have to hope. -- rms. + # Use sysv4.2uw... so that sysv4* matches it. + echo ${UNAME_MACHINE}-pc-sysv4.2uw${UNAME_VERSION} + exit 0 ;; + i?86:*:4.*:* | i?86:SYSTEM_V:4.*:*) + UNAME_REL=`echo ${UNAME_RELEASE} | sed 's/\/MP$//'` + if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then + echo ${UNAME_MACHINE}-univel-sysv${UNAME_REL} + else + echo ${UNAME_MACHINE}-pc-sysv${UNAME_REL} + fi + exit 0 ;; + i?86:*:5:7*) + # Fixed at (any) Pentium or better + UNAME_MACHINE=i586 + if [ ${UNAME_SYSTEM} = "UnixWare" ] ; then + echo ${UNAME_MACHINE}-sco-sysv${UNAME_RELEASE}uw${UNAME_VERSION} + else + echo ${UNAME_MACHINE}-pc-sysv${UNAME_RELEASE} + fi + exit 0 ;; + i?86:*:3.2:*) + if test -f /usr/options/cb.name; then + UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then + UNAME_REL=`(/bin/uname -X|egrep Release|sed -e 's/.*= //')` + (/bin/uname -X|egrep i80486 >/dev/null) && UNAME_MACHINE=i486 + (/bin/uname -X|egrep '^Machine.*Pentium' >/dev/null) \ + && UNAME_MACHINE=i586 + (/bin/uname -X|egrep '^Machine.*Pent ?II' >/dev/null) \ + && UNAME_MACHINE=i686 + (/bin/uname -X|egrep '^Machine.*Pentium Pro' >/dev/null) \ + && UNAME_MACHINE=i686 + echo ${UNAME_MACHINE}-pc-sco$UNAME_REL + else + echo ${UNAME_MACHINE}-pc-sysv32 + fi + exit 0 ;; + pc:*:*:*) + # uname -m prints for DJGPP always 'pc', but it prints nothing about + # the processor, so we play safe by assuming i386. + echo i386-pc-msdosdjgpp + exit 0 ;; + Intel:Mach:3*:*) + echo i386-pc-mach3 + exit 0 ;; + paragon:*:*:*) + echo i860-intel-osf1 + exit 0 ;; + i860:*:4.*:*) # i860-SVR4 + if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then + echo i860-stardent-sysv${UNAME_RELEASE} # Stardent Vistra i860-SVR4 + else # Add other i860-SVR4 vendors below as they are discovered. + echo i860-unknown-sysv${UNAME_RELEASE} # Unknown i860-SVR4 + fi + exit 0 ;; + mini*:CTIX:SYS*5:*) + # "miniframe" + echo m68010-convergent-sysv + exit 0 ;; + M68*:*:R3V[567]*:*) + test -r /sysV68 && echo 'm68k-motorola-sysv' && exit 0 ;; + 3[34]??:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 4850:*:4.0:3.0) + OS_REL='' + test -r /etc/.relid \ + && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` + /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ + && echo i486-ncr-sysv4.3${OS_REL} && exit 0 + /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ + && echo i586-ncr-sysv4.3${OS_REL} && exit 0 ;; + 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) + /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ + && echo i486-ncr-sysv4 && exit 0 ;; + m68*:LynxOS:2.*:*) + echo m68k-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + mc68030:UNIX_System_V:4.*:*) + echo m68k-atari-sysv4 + exit 0 ;; + i?86:LynxOS:2.*:* | i?86:LynxOS:3.[01]*:*) + echo i386-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + TSUNAMI:LynxOS:2.*:*) + echo sparc-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + rs6000:LynxOS:2.*:* | PowerPC:LynxOS:2.*:*) + echo rs6000-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + SM[BE]S:UNIX_SV:*:*) + echo mips-dde-sysv${UNAME_RELEASE} + exit 0 ;; + RM*:ReliantUNIX-*:*:*) + echo mips-sni-sysv4 + exit 0 ;; + RM*:SINIX-*:*:*) + echo mips-sni-sysv4 + exit 0 ;; + *:SINIX-*:*:*) + if uname -p 2>/dev/null >/dev/null ; then + UNAME_MACHINE=`(uname -p) 2>/dev/null` + echo ${UNAME_MACHINE}-sni-sysv4 + else + echo ns32k-sni-sysv + fi + exit 0 ;; + PENTIUM:CPunix:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort + # says + echo i586-unisys-sysv4 + exit 0 ;; + *:UNIX_System_V:4*:FTX*) + # From Gerald Hewes . + # How about differentiating between stratus architectures? -djm + echo hppa1.1-stratus-sysv4 + exit 0 ;; + *:*:*:FTX*) + # From seanf@swdc.stratus.com. + echo i860-stratus-sysv4 + exit 0 ;; + mc68*:A/UX:*:*) + echo m68k-apple-aux${UNAME_RELEASE} + exit 0 ;; + news*:NEWS-OS:*:6*) + echo mips-sony-newsos6 + exit 0 ;; + R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) + if [ -d /usr/nec ]; then + echo mips-nec-sysv${UNAME_RELEASE} + else + echo mips-unknown-sysv${UNAME_RELEASE} + fi + exit 0 ;; + BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. + echo powerpc-be-beos + exit 0 ;; + BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. + echo powerpc-apple-beos + exit 0 ;; + BePC:BeOS:*:*) # BeOS running on Intel PC compatible. + echo i586-pc-beos + exit 0 ;; + SX-4:SUPER-UX:*:*) + echo sx4-nec-superux${UNAME_RELEASE} + exit 0 ;; + SX-5:SUPER-UX:*:*) + echo sx5-nec-superux${UNAME_RELEASE} + exit 0 ;; + Power*:Rhapsody:*:*) + echo powerpc-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; + *:Rhapsody:*:*) + echo ${UNAME_MACHINE}-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; + *:QNX:*:4*) + echo i386-qnx-qnx${UNAME_VERSION} + exit 0 ;; +esac + +#echo '(No uname command or uname output not recognized.)' 1>&2 +#echo "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" 1>&2 + +cat >$dummy.c < +# include +#endif +main () +{ +#if defined (sony) +#if defined (MIPSEB) + /* BFD wants "bsd" instead of "newsos". Perhaps BFD should be changed, + I don't know.... */ + printf ("mips-sony-bsd\n"); exit (0); +#else +#include + printf ("m68k-sony-newsos%s\n", +#ifdef NEWSOS4 + "4" +#else + "" +#endif + ); exit (0); +#endif +#endif + +#if defined (__arm) && defined (__acorn) && defined (__unix) + printf ("arm-acorn-riscix"); exit (0); +#endif + +#if defined (hp300) && !defined (hpux) + printf ("m68k-hp-bsd\n"); exit (0); +#endif + +#if defined (NeXT) +#if !defined (__ARCHITECTURE__) +#define __ARCHITECTURE__ "m68k" +#endif + int version; + version=`(hostinfo | sed -n 's/.*NeXT Mach \([0-9]*\).*/\1/p') 2>/dev/null`; + if (version < 4) + printf ("%s-next-nextstep%d\n", __ARCHITECTURE__, version); + else + printf ("%s-next-openstep%d\n", __ARCHITECTURE__, version); + exit (0); +#endif + +#if defined (MULTIMAX) || defined (n16) +#if defined (UMAXV) + printf ("ns32k-encore-sysv\n"); exit (0); +#else +#if defined (CMU) + printf ("ns32k-encore-mach\n"); exit (0); +#else + printf ("ns32k-encore-bsd\n"); exit (0); +#endif +#endif +#endif + +#if defined (__386BSD__) + printf ("i386-pc-bsd\n"); exit (0); +#endif + +#if defined (sequent) +#if defined (i386) + printf ("i386-sequent-dynix\n"); exit (0); +#endif +#if defined (ns32000) + printf ("ns32k-sequent-dynix\n"); exit (0); +#endif +#endif + +#if defined (_SEQUENT_) + struct utsname un; + + uname(&un); + + if (strncmp(un.version, "V2", 2) == 0) { + printf ("i386-sequent-ptx2\n"); exit (0); + } + if (strncmp(un.version, "V1", 2) == 0) { /* XXX is V1 correct? */ + printf ("i386-sequent-ptx1\n"); exit (0); + } + printf ("i386-sequent-ptx\n"); exit (0); + +#endif + +#if defined (vax) +#if !defined (ultrix) + printf ("vax-dec-bsd\n"); exit (0); +#else + printf ("vax-dec-ultrix\n"); exit (0); +#endif +#endif + +#if defined (alliant) && defined (i860) + printf ("i860-alliant-bsd\n"); exit (0); +#endif + + exit (1); +} +EOF + +$CC_FOR_BUILD $dummy.c -o $dummy 2>/dev/null && ./$dummy && rm $dummy.c $dummy && exit 0 +rm -f $dummy.c $dummy + +# Apollos put the system type in the environment. + +test -d /usr/apollo && { echo ${ISP}-apollo-${SYSTYPE}; exit 0; } + +# Convex versions that predate uname can use getsysinfo(1) + +if [ -x /usr/convex/getsysinfo ] +then + case `getsysinfo -f cpu_type` in + c1*) + echo c1-convex-bsd + exit 0 ;; + c2*) + if getsysinfo -f scalar_acc + then echo c32-convex-bsd + else echo c2-convex-bsd + fi + exit 0 ;; + c34*) + echo c34-convex-bsd + exit 0 ;; + c38*) + echo c38-convex-bsd + exit 0 ;; + c4*) + echo c4-convex-bsd + exit 0 ;; + esac +fi + +#echo '(Unable to guess system type)' 1>&2 + +exit 1 diff --git a/pcre/config.h b/pcre/config.h index 048b8c35..c767cbb4 100644 --- a/pcre/config.h +++ b/pcre/config.h @@ -1,34 +1,5 @@ -/* config.h. Generated automatically by configure. */ -/* On Unix systems config.in is converted by configure into config.h. PCRE is -written in Standard C, but there are a few non-standard things it can cope -with, allowing it to run on SunOS4 and other "close to standard" systems. +/* For Privoxy, we just use Privoxy's config.h */ -On a non-Unix system you should just copy this file into config.h and change -the definitions of HAVE_STRERROR and HAVE_MEMMOVE to 1. Unfortunately, because -of the way autoconf works, these cannot be made the defaults. If your system -has bcopy() and not memmove(), change the definition of HAVE_BCOPY instead of -HAVE_MEMMOVE. If your system has neither bcopy() nor memmove(), leave them both -as 0; an emulation function will be used. */ +#include "../config.h" -/* Define to empty if the keyword does not work. */ - -/* #undef const */ - -/* Define to `unsigned' if doesn't define size_t. */ - -/* #undef size_t */ - -/* The following two definitions are mainly for the benefit of SunOS4, which -doesn't have the strerror() or memmove() functions that should be present in -all Standard C libraries. The macros HAVE_STRERROR and HAVE_MEMMOVE should -normally be defined with the value 1 for other systems, but unfortunately we -can't make this the default because "configure" files generated by autoconf -will only change 0 to 1; they won't change 1 to 0 if the functions are not -found. If HAVE_MEMMOVE is set to 1, the value of HAVE_BCOPY is not relevant. */ - -#define HAVE_STRERROR 1 -#define HAVE_MEMMOVE 1 -#define HAVE_BCOPY 1 - -/* End */ diff --git a/pcre/config.in b/pcre/config.in new file mode 100644 index 00000000..02f42593 --- /dev/null +++ b/pcre/config.in @@ -0,0 +1,33 @@ + +/* On Unix systems config.in is converted by configure into config.h. PCRE is +written in Standard C, but there are a few non-standard things it can cope +with, allowing it to run on SunOS4 and other "close to standard" systems. + +On a non-Unix system you should just copy this file into config.h and change +the definitions of HAVE_STRERROR and HAVE_MEMMOVE to 1. Unfortunately, because +of the way autoconf works, these cannot be made the defaults. If your system +has bcopy() and not memmove(), change the definition of HAVE_BCOPY instead of +HAVE_MEMMOVE. If your system has neither bcopy() nor memmove(), leave them both +as 0; an emulation function will be used. */ + +/* Define to empty if the keyword does not work. */ + +#undef const + +/* Define to `unsigned' if doesn't define size_t. */ + +#undef size_t + +/* The following two definitions are mainly for the benefit of SunOS4, which +doesn't have the strerror() or memmove() functions that should be present in +all Standard C libraries. The macros HAVE_STRERROR and HAVE_MEMMOVE should +normally be defined with the value 1 for other systems, but unfortunately we +can't make this the default because "configure" files generated by autoconf +will only change 0 to 1; they won't change 1 to 0 if the functions are not +found. If HAVE_MEMMOVE is set to 1, the value of HAVE_BCOPY is not relevant. */ + +#define HAVE_STRERROR 0 +#define HAVE_MEMMOVE 0 +#define HAVE_BCOPY 0 + +/* End */ diff --git a/pcre/config.sub b/pcre/config.sub new file mode 100644 index 00000000..28426bb8 --- /dev/null +++ b/pcre/config.sub @@ -0,0 +1,1232 @@ +#! /bin/sh +# Configuration validation subroutine script, version 1.1. +# Copyright (C) 1991, 92-97, 1998, 1999 Free Software Foundation, Inc. +# This file is (in principle) common to ALL GNU software. +# The presence of a machine in this file suggests that SOME GNU software +# can handle that machine. It does not imply ALL GNU software can. +# +# This file is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, +# Boston, MA 02111-1307, USA. + +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# Configuration subroutine to validate and canonicalize a configuration type. +# Supply the specified configuration type as an argument. +# If it is invalid, we print an error message on stderr and exit with code 1. +# Otherwise, we print the canonical config type on stdout and succeed. + +# This file is supposed to be the same for all GNU packages +# and recognize all the CPU types, system types and aliases +# that are meaningful with *any* GNU software. +# Each package is responsible for reporting which valid configurations +# it does not support. The user should be able to distinguish +# a failure to support a valid configuration from a meaningless +# configuration. + +# The goal of this file is to map all the various variations of a given +# machine specification into a single specification in the form: +# CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM +# or in some cases, the newer four-part form: +# CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM +# It is wrong to echo any other type of specification. + +if [ x$1 = x ] +then + echo Configuration name missing. 1>&2 + echo "Usage: $0 CPU-MFR-OPSYS" 1>&2 + echo "or $0 ALIAS" 1>&2 + echo where ALIAS is a recognized configuration type. 1>&2 + exit 1 +fi + +# First pass through any local machine types. +case $1 in + *local*) + echo $1 + exit 0 + ;; + *) + ;; +esac + +# Separate what the user gave into CPU-COMPANY and OS or KERNEL-OS (if any). +# Here we must recognize all the valid KERNEL-OS combinations. +maybe_os=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\2/'` +case $maybe_os in + linux-gnu*) + os=-$maybe_os + basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'` + ;; + *) + basic_machine=`echo $1 | sed 's/-[^-]*$//'` + if [ $basic_machine != $1 ] + then os=`echo $1 | sed 's/.*-/-/'` + else os=; fi + ;; +esac + +### Let's recognize common machines as not being operating systems so +### that things like config.sub decstation-3100 work. We also +### recognize some manufacturers as not being operating systems, so we +### can provide default operating systems below. +case $os in + -sun*os*) + # Prevent following clause from handling this invalid input. + ;; + -dec* | -mips* | -sequent* | -encore* | -pc532* | -sgi* | -sony* | \ + -att* | -7300* | -3300* | -delta* | -motorola* | -sun[234]* | \ + -unicom* | -ibm* | -next | -hp | -isi* | -apollo | -altos* | \ + -convergent* | -ncr* | -news | -32* | -3600* | -3100* | -hitachi* |\ + -c[123]* | -convex* | -sun | -crds | -omron* | -dg | -ultra | -tti* | \ + -harris | -dolphin | -highlevel | -gould | -cbm | -ns | -masscomp | \ + -apple) + os= + basic_machine=$1 + ;; + -sim | -cisco | -oki | -wec | -winbond) + os= + basic_machine=$1 + ;; + -scout) + ;; + -wrs) + os=-vxworks + basic_machine=$1 + ;; + -hiux*) + os=-hiuxwe2 + ;; + -sco5) + os=-sco3.2v5 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco4) + os=-sco3.2v4 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2.[4-9]*) + os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2v[4-9]*) + # Don't forget version if it is 3.2v4 or newer. + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco*) + os=-sco3.2v2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -udk*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -isc) + os=-isc2.2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -clix*) + basic_machine=clipper-intergraph + ;; + -isc*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -lynx*) + os=-lynxos + ;; + -ptx*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-sequent/'` + ;; + -windowsnt*) + os=`echo $os | sed -e 's/windowsnt/winnt/'` + ;; + -psos*) + os=-psos + ;; + -mint | -mint[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; +esac + +# Decode aliases for certain CPU-COMPANY combinations. +case $basic_machine in + # Recognize the basic CPU types without company name. + # Some are omitted here because they have special meanings below. + tahoe | i860 | ia64 | m32r | m68k | m68000 | m88k | ns32k | arc | arm \ + | arme[lb] | pyramid | mn10200 | mn10300 | tron | a29k \ + | 580 | i960 | h8300 \ + | hppa | hppa1.0 | hppa1.1 | hppa2.0 | hppa2.0w | hppa2.0n \ + | alpha | alphaev[4-7] | alphaev56 | alphapca5[67] \ + | we32k | ns16k | clipper | i370 | sh | powerpc | powerpcle \ + | 1750a | dsp16xx | pdp11 | mips16 | mips64 | mipsel | mips64el \ + | mips64orion | mips64orionel | mipstx39 | mipstx39el \ + | mips64vr4300 | mips64vr4300el | mips64vr4100 | mips64vr4100el \ + | mips64vr5000 | miprs64vr5000el | mcore \ + | sparc | sparclet | sparclite | sparc64 | sparcv9 | v850 | c4x \ + | thumb | d10v | fr30) + basic_machine=$basic_machine-unknown + ;; + m88110 | m680[12346]0 | m683?2 | m68360 | m5200 | z8k | v70 | h8500 | w65 | pj | pjl) + ;; + + # We use `pc' rather than `unknown' + # because (1) that's what they normally are, and + # (2) the word "unknown" tends to confuse beginning users. + i[34567]86) + basic_machine=$basic_machine-pc + ;; + # Object if more than one company name word. + *-*-*) + echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 + exit 1 + ;; + # Recognize the basic CPU types with company name. + # FIXME: clean up the formatting here. + vax-* | tahoe-* | i[34567]86-* | i860-* | ia64-* | m32r-* | m68k-* | m68000-* \ + | m88k-* | sparc-* | ns32k-* | fx80-* | arc-* | arm-* | c[123]* \ + | mips-* | pyramid-* | tron-* | a29k-* | romp-* | rs6000-* \ + | power-* | none-* | 580-* | cray2-* | h8300-* | h8500-* | i960-* \ + | xmp-* | ymp-* \ + | hppa-* | hppa1.0-* | hppa1.1-* | hppa2.0-* | hppa2.0w-* | hppa2.0n-* \ + | alpha-* | alphaev[4-7]-* | alphaev56-* | alphapca5[67]-* \ + | we32k-* | cydra-* | ns16k-* | pn-* | np1-* | xps100-* \ + | clipper-* | orion-* \ + | sparclite-* | pdp11-* | sh-* | powerpc-* | powerpcle-* \ + | sparc64-* | sparcv9-* | sparc86x-* | mips16-* | mips64-* | mipsel-* \ + | mips64el-* | mips64orion-* | mips64orionel-* \ + | mips64vr4100-* | mips64vr4100el-* | mips64vr4300-* | mips64vr4300el-* \ + | mipstx39-* | mipstx39el-* | mcore-* \ + | f301-* | armv*-* | t3e-* \ + | m88110-* | m680[01234]0-* | m683?2-* | m68360-* | z8k-* | d10v-* \ + | thumb-* | v850-* | d30v-* | tic30-* | c30-* | fr30-* ) + ;; + # Recognize the various machine names and aliases which stand + # for a CPU type and a company and sometimes even an OS. + 386bsd) + basic_machine=i386-unknown + os=-bsd + ;; + 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) + basic_machine=m68000-att + ;; + 3b*) + basic_machine=we32k-att + ;; + a29khif) + basic_machine=a29k-amd + os=-udi + ;; + adobe68k) + basic_machine=m68010-adobe + os=-scout + ;; + alliant | fx80) + basic_machine=fx80-alliant + ;; + altos | altos3068) + basic_machine=m68k-altos + ;; + am29k) + basic_machine=a29k-none + os=-bsd + ;; + amdahl) + basic_machine=580-amdahl + os=-sysv + ;; + amiga | amiga-*) + basic_machine=m68k-cbm + ;; + amigaos | amigados) + basic_machine=m68k-cbm + os=-amigaos + ;; + amigaunix | amix) + basic_machine=m68k-cbm + os=-sysv4 + ;; + apollo68) + basic_machine=m68k-apollo + os=-sysv + ;; + apollo68bsd) + basic_machine=m68k-apollo + os=-bsd + ;; + aux) + basic_machine=m68k-apple + os=-aux + ;; + balance) + basic_machine=ns32k-sequent + os=-dynix + ;; + convex-c1) + basic_machine=c1-convex + os=-bsd + ;; + convex-c2) + basic_machine=c2-convex + os=-bsd + ;; + convex-c32) + basic_machine=c32-convex + os=-bsd + ;; + convex-c34) + basic_machine=c34-convex + os=-bsd + ;; + convex-c38) + basic_machine=c38-convex + os=-bsd + ;; + cray | ymp) + basic_machine=ymp-cray + os=-unicos + ;; + cray2) + basic_machine=cray2-cray + os=-unicos + ;; + [ctj]90-cray) + basic_machine=c90-cray + os=-unicos + ;; + crds | unos) + basic_machine=m68k-crds + ;; + da30 | da30-*) + basic_machine=m68k-da30 + ;; + decstation | decstation-3100 | pmax | pmax-* | pmin | dec3100 | decstatn) + basic_machine=mips-dec + ;; + delta | 3300 | motorola-3300 | motorola-delta \ + | 3300-motorola | delta-motorola) + basic_machine=m68k-motorola + ;; + delta88) + basic_machine=m88k-motorola + os=-sysv3 + ;; + dpx20 | dpx20-*) + basic_machine=rs6000-bull + os=-bosx + ;; + dpx2* | dpx2*-bull) + basic_machine=m68k-bull + os=-sysv3 + ;; + ebmon29k) + basic_machine=a29k-amd + os=-ebmon + ;; + elxsi) + basic_machine=elxsi-elxsi + os=-bsd + ;; + encore | umax | mmax) + basic_machine=ns32k-encore + ;; + es1800 | OSE68k | ose68k | ose | OSE) + basic_machine=m68k-ericsson + os=-ose + ;; + fx2800) + basic_machine=i860-alliant + ;; + genix) + basic_machine=ns32k-ns + ;; + gmicro) + basic_machine=tron-gmicro + os=-sysv + ;; + h3050r* | hiux*) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + h8300hms) + basic_machine=h8300-hitachi + os=-hms + ;; + h8300xray) + basic_machine=h8300-hitachi + os=-xray + ;; + h8500hms) + basic_machine=h8500-hitachi + os=-hms + ;; + harris) + basic_machine=m88k-harris + os=-sysv3 + ;; + hp300-*) + basic_machine=m68k-hp + ;; + hp300bsd) + basic_machine=m68k-hp + os=-bsd + ;; + hp300hpux) + basic_machine=m68k-hp + os=-hpux + ;; + hp3k9[0-9][0-9] | hp9[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k2[0-9][0-9] | hp9k31[0-9]) + basic_machine=m68000-hp + ;; + hp9k3[2-9][0-9]) + basic_machine=m68k-hp + ;; + hp9k6[0-9][0-9] | hp6[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k7[0-79][0-9] | hp7[0-79][0-9]) + basic_machine=hppa1.1-hp + ;; + hp9k78[0-9] | hp78[0-9]) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][13679] | hp8[0-9][13679]) + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][0-9] | hp8[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hppa-next) + os=-nextstep3 + ;; + hppaosf) + basic_machine=hppa1.1-hp + os=-osf + ;; + hppro) + basic_machine=hppa1.1-hp + os=-proelf + ;; + i370-ibm* | ibm*) + basic_machine=i370-ibm + ;; +# I'm not sure what "Sysv32" means. Should this be sysv3.2? + i[34567]86v32) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv32 + ;; + i[34567]86v4*) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv4 + ;; + i[34567]86v) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv + ;; + i[34567]86sol2) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-solaris2 + ;; + i386mach) + basic_machine=i386-mach + os=-mach + ;; + i386-vsta | vsta) + basic_machine=i386-unknown + os=-vsta + ;; + i386-go32 | go32) + basic_machine=i386-unknown + os=-go32 + ;; + i386-mingw32 | mingw32) + basic_machine=i386-unknown + os=-mingw32 + ;; + i386-qnx | qnx) + basic_machine=i386-qnx + ;; + iris | iris4d) + basic_machine=mips-sgi + case $os in + -irix*) + ;; + *) + os=-irix4 + ;; + esac + ;; + isi68 | isi) + basic_machine=m68k-isi + os=-sysv + ;; + m88k-omron*) + basic_machine=m88k-omron + ;; + magnum | m3230) + basic_machine=mips-mips + os=-sysv + ;; + merlin) + basic_machine=ns32k-utek + os=-sysv + ;; + miniframe) + basic_machine=m68000-convergent + ;; + *mint | -mint[0-9]* | *MiNT | *MiNT[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; + mipsel*-linux*) + basic_machine=mipsel-unknown + os=-linux-gnu + ;; + mips*-linux*) + basic_machine=mips-unknown + os=-linux-gnu + ;; + mips3*-*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'` + ;; + mips3*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'`-unknown + ;; + monitor) + basic_machine=m68k-rom68k + os=-coff + ;; + msdos) + basic_machine=i386-unknown + os=-msdos + ;; + mvs) + basic_machine=i370-ibm + os=-mvs + ;; + ncr3000) + basic_machine=i486-ncr + os=-sysv4 + ;; + netbsd386) + basic_machine=i386-unknown + os=-netbsd + ;; + netwinder) + basic_machine=armv4l-rebel + os=-linux + ;; + news | news700 | news800 | news900) + basic_machine=m68k-sony + os=-newsos + ;; + news1000) + basic_machine=m68030-sony + os=-newsos + ;; + news-3600 | risc-news) + basic_machine=mips-sony + os=-newsos + ;; + necv70) + basic_machine=v70-nec + os=-sysv + ;; + next | m*-next ) + basic_machine=m68k-next + case $os in + -nextstep* ) + ;; + -ns2*) + os=-nextstep2 + ;; + *) + os=-nextstep3 + ;; + esac + ;; + nh3000) + basic_machine=m68k-harris + os=-cxux + ;; + nh[45]000) + basic_machine=m88k-harris + os=-cxux + ;; + nindy960) + basic_machine=i960-intel + os=-nindy + ;; + mon960) + basic_machine=i960-intel + os=-mon960 + ;; + np1) + basic_machine=np1-gould + ;; + op50n-* | op60c-*) + basic_machine=hppa1.1-oki + os=-proelf + ;; + OSE68000 | ose68000) + basic_machine=m68000-ericsson + os=-ose + ;; + os68k) + basic_machine=m68k-none + os=-os68k + ;; + pa-hitachi) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + paragon) + basic_machine=i860-intel + os=-osf + ;; + pbd) + basic_machine=sparc-tti + ;; + pbb) + basic_machine=m68k-tti + ;; + pc532 | pc532-*) + basic_machine=ns32k-pc532 + ;; + pentium | p5 | k5 | k6 | nexen) + basic_machine=i586-pc + ;; + pentiumpro | p6 | 6x86) + basic_machine=i686-pc + ;; + pentiumii | pentium2) + basic_machine=i786-pc + ;; + pentium-* | p5-* | k5-* | k6-* | nexen-*) + basic_machine=i586-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumpro-* | p6-* | 6x86-*) + basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumii-* | pentium2-*) + basic_machine=i786-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pn) + basic_machine=pn-gould + ;; + power) basic_machine=rs6000-ibm + ;; + ppc) basic_machine=powerpc-unknown + ;; + ppc-*) basic_machine=powerpc-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppcle | powerpclittle | ppc-le | powerpc-little) + basic_machine=powerpcle-unknown + ;; + ppcle-* | powerpclittle-*) + basic_machine=powerpcle-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ps2) + basic_machine=i386-ibm + ;; + rom68k) + basic_machine=m68k-rom68k + os=-coff + ;; + rm[46]00) + basic_machine=mips-siemens + ;; + rtpc | rtpc-*) + basic_machine=romp-ibm + ;; + sa29200) + basic_machine=a29k-amd + os=-udi + ;; + sequent) + basic_machine=i386-sequent + ;; + sh) + basic_machine=sh-hitachi + os=-hms + ;; + sparclite-wrs) + basic_machine=sparclite-wrs + os=-vxworks + ;; + sps7) + basic_machine=m68k-bull + os=-sysv2 + ;; + spur) + basic_machine=spur-unknown + ;; + st2000) + basic_machine=m68k-tandem + ;; + stratus) + basic_machine=i860-stratus + os=-sysv4 + ;; + sun2) + basic_machine=m68000-sun + ;; + sun2os3) + basic_machine=m68000-sun + os=-sunos3 + ;; + sun2os4) + basic_machine=m68000-sun + os=-sunos4 + ;; + sun3os3) + basic_machine=m68k-sun + os=-sunos3 + ;; + sun3os4) + basic_machine=m68k-sun + os=-sunos4 + ;; + sun4os3) + basic_machine=sparc-sun + os=-sunos3 + ;; + sun4os4) + basic_machine=sparc-sun + os=-sunos4 + ;; + sun4sol2) + basic_machine=sparc-sun + os=-solaris2 + ;; + sun3 | sun3-*) + basic_machine=m68k-sun + ;; + sun4) + basic_machine=sparc-sun + ;; + sun386 | sun386i | roadrunner) + basic_machine=i386-sun + ;; + symmetry) + basic_machine=i386-sequent + os=-dynix + ;; + t3e) + basic_machine=t3e-cray + os=-unicos + ;; + tx39) + basic_machine=mipstx39-unknown + ;; + tx39el) + basic_machine=mipstx39el-unknown + ;; + tower | tower-32) + basic_machine=m68k-ncr + ;; + udi29k) + basic_machine=a29k-amd + os=-udi + ;; + ultra3) + basic_machine=a29k-nyu + os=-sym1 + ;; + v810 | necv810) + basic_machine=v810-nec + os=-none + ;; + vaxv) + basic_machine=vax-dec + os=-sysv + ;; + vms) + basic_machine=vax-dec + os=-vms + ;; + vpp*|vx|vx-*) + basic_machine=f301-fujitsu + ;; + vxworks960) + basic_machine=i960-wrs + os=-vxworks + ;; + vxworks68) + basic_machine=m68k-wrs + os=-vxworks + ;; + vxworks29k) + basic_machine=a29k-wrs + os=-vxworks + ;; + w65*) + basic_machine=w65-wdc + os=-none + ;; + w89k-*) + basic_machine=hppa1.1-winbond + os=-proelf + ;; + xmp) + basic_machine=xmp-cray + os=-unicos + ;; + xps | xps100) + basic_machine=xps100-honeywell + ;; + z8k-*-coff) + basic_machine=z8k-unknown + os=-sim + ;; + none) + basic_machine=none-none + os=-none + ;; + +# Here we handle the default manufacturer of certain CPU types. It is in +# some cases the only manufacturer, in others, it is the most popular. + w89k) + basic_machine=hppa1.1-winbond + ;; + op50n) + basic_machine=hppa1.1-oki + ;; + op60c) + basic_machine=hppa1.1-oki + ;; + mips) + if [ x$os = x-linux-gnu ]; then + basic_machine=mips-unknown + else + basic_machine=mips-mips + fi + ;; + romp) + basic_machine=romp-ibm + ;; + rs6000) + basic_machine=rs6000-ibm + ;; + vax) + basic_machine=vax-dec + ;; + pdp11) + basic_machine=pdp11-dec + ;; + we32k) + basic_machine=we32k-att + ;; + sparc | sparcv9) + basic_machine=sparc-sun + ;; + cydra) + basic_machine=cydra-cydrome + ;; + orion) + basic_machine=orion-highlevel + ;; + orion105) + basic_machine=clipper-highlevel + ;; + mac | mpw | mac-mpw) + basic_machine=m68k-apple + ;; + pmac | pmac-mpw) + basic_machine=powerpc-apple + ;; + c4x*) + basic_machine=c4x-none + os=-coff + ;; + *) + echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 + exit 1 + ;; +esac + +# Here we canonicalize certain aliases for manufacturers. +case $basic_machine in + *-digital*) + basic_machine=`echo $basic_machine | sed 's/digital.*/dec/'` + ;; + *-commodore*) + basic_machine=`echo $basic_machine | sed 's/commodore.*/cbm/'` + ;; + *) + ;; +esac + +# Decode manufacturer-specific aliases for certain operating systems. + +if [ x"$os" != x"" ] +then +case $os in + # First match some system type aliases + # that might get confused with valid system types. + # -solaris* is a basic system type, with this one exception. + -solaris1 | -solaris1.*) + os=`echo $os | sed -e 's|solaris1|sunos4|'` + ;; + -solaris) + os=-solaris2 + ;; + -svr4*) + os=-sysv4 + ;; + -unixware*) + os=-sysv4.2uw + ;; + -gnu/linux*) + os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` + ;; + # First accept the basic system types. + # The portable systems comes first. + # Each alternative MUST END IN A *, to match a version number. + # -sysv* is not here because it comes later, after sysvr4. + -gnu* | -bsd* | -mach* | -minix* | -genix* | -ultrix* | -irix* \ + | -*vms* | -sco* | -esix* | -isc* | -aix* | -sunos | -sunos[34]*\ + | -hpux* | -unos* | -osf* | -luna* | -dgux* | -solaris* | -sym* \ + | -amigaos* | -amigados* | -msdos* | -newsos* | -unicos* | -aof* \ + | -aos* \ + | -nindy* | -vxsim* | -vxworks* | -ebmon* | -hms* | -mvs* \ + | -clix* | -riscos* | -uniplus* | -iris* | -rtu* | -xenix* \ + | -hiux* | -386bsd* | -netbsd* | -openbsd* | -freebsd* | -riscix* \ + | -lynxos* | -bosx* | -nextstep* | -cxux* | -aout* | -elf* | -oabi* \ + | -ptx* | -coff* | -ecoff* | -winnt* | -domain* | -vsta* \ + | -udi* | -eabi* | -lites* | -ieee* | -go32* | -aux* \ + | -cygwin* | -pe* | -psos* | -moss* | -proelf* | -rtems* \ + | -mingw32* | -linux-gnu* | -uxpv* | -beos* | -mpeix* | -udk* \ + | -interix* | -uwin* | -rhapsody* | -opened* | -openstep* | -oskit*) + # Remember, each alternative MUST END IN *, to match a version number. + ;; + -sim | -es1800* | -hms* | -xray | -os68k* | -none* | -v88r* \ + | -windows* | -osx | -abug | -netware* | -os9* | -beos* \ + | -macos* | -mpw* | -magic* | -mon960* | -lnews*) + ;; + -mac*) + os=`echo $os | sed -e 's|mac|macos|'` + ;; + -linux*) + os=`echo $os | sed -e 's|linux|linux-gnu|'` + ;; + -sunos5*) + os=`echo $os | sed -e 's|sunos5|solaris2|'` + ;; + -sunos6*) + os=`echo $os | sed -e 's|sunos6|solaris3|'` + ;; + -opened*) + os=-openedition + ;; + -osfrose*) + os=-osfrose + ;; + -osf*) + os=-osf + ;; + -utek*) + os=-bsd + ;; + -dynix*) + os=-bsd + ;; + -acis*) + os=-aos + ;; + -386bsd) + os=-bsd + ;; + -ctix* | -uts*) + os=-sysv + ;; + -ns2 ) + os=-nextstep2 + ;; + # Preserve the version number of sinix5. + -sinix5.*) + os=`echo $os | sed -e 's|sinix|sysv|'` + ;; + -sinix*) + os=-sysv4 + ;; + -triton*) + os=-sysv3 + ;; + -oss*) + os=-sysv3 + ;; + -qnx) + os=-qnx4 + ;; + -svr4) + os=-sysv4 + ;; + -svr3) + os=-sysv3 + ;; + -sysvr4) + os=-sysv4 + ;; + # This must come after -sysvr4. + -sysv*) + ;; + -ose*) + os=-ose + ;; + -es1800*) + os=-ose + ;; + -xenix) + os=-xenix + ;; + -*mint | -*MiNT) + os=-mint + ;; + -none) + ;; + *) + # Get rid of the `-' at the beginning of $os. + os=`echo $os | sed 's/[^-]*-//'` + echo Invalid configuration \`$1\': system \`$os\' not recognized 1>&2 + exit 1 + ;; +esac +else + +# Here we handle the default operating systems that come with various machines. +# The value should be what the vendor currently ships out the door with their +# machine or put another way, the most popular os provided with the machine. + +# Note that if you're going to try to match "-MANUFACTURER" here (say, +# "-sun"), then you have to tell the case statement up towards the top +# that MANUFACTURER isn't an operating system. Otherwise, code above +# will signal an error saying that MANUFACTURER isn't an operating +# system, and we'll never get to this point. + +case $basic_machine in + *-acorn) + os=-riscix1.2 + ;; + arm*-rebel) + os=-linux + ;; + arm*-semi) + os=-aout + ;; + pdp11-*) + os=-none + ;; + *-dec | vax-*) + os=-ultrix4.2 + ;; + m68*-apollo) + os=-domain + ;; + i386-sun) + os=-sunos4.0.2 + ;; + m68000-sun) + os=-sunos3 + # This also exists in the configure program, but was not the + # default. + # os=-sunos4 + ;; + m68*-cisco) + os=-aout + ;; + mips*-cisco) + os=-elf + ;; + mips*-*) + os=-elf + ;; + *-tti) # must be before sparc entry or we get the wrong os. + os=-sysv3 + ;; + sparc-* | *-sun) + os=-sunos4.1.1 + ;; + *-be) + os=-beos + ;; + *-ibm) + os=-aix + ;; + *-wec) + os=-proelf + ;; + *-winbond) + os=-proelf + ;; + *-oki) + os=-proelf + ;; + *-hp) + os=-hpux + ;; + *-hitachi) + os=-hiux + ;; + i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) + os=-sysv + ;; + *-cbm) + os=-amigaos + ;; + *-dg) + os=-dgux + ;; + *-dolphin) + os=-sysv3 + ;; + m68k-ccur) + os=-rtu + ;; + m88k-omron*) + os=-luna + ;; + *-next ) + os=-nextstep + ;; + *-sequent) + os=-ptx + ;; + *-crds) + os=-unos + ;; + *-ns) + os=-genix + ;; + i370-*) + os=-mvs + ;; + *-next) + os=-nextstep3 + ;; + *-gould) + os=-sysv + ;; + *-highlevel) + os=-bsd + ;; + *-encore) + os=-bsd + ;; + *-sgi) + os=-irix + ;; + *-siemens) + os=-sysv4 + ;; + *-masscomp) + os=-rtu + ;; + f301-fujitsu) + os=-uxpv + ;; + *-rom68k) + os=-coff + ;; + *-*bug) + os=-coff + ;; + *-apple) + os=-macos + ;; + *-atari*) + os=-mint + ;; + *) + os=-none + ;; +esac +fi + +# Here we handle the case where we know the os, and the CPU type, but not the +# manufacturer. We pick the logical manufacturer. +vendor=unknown +case $basic_machine in + *-unknown) + case $os in + -riscix*) + vendor=acorn + ;; + -sunos*) + vendor=sun + ;; + -aix*) + vendor=ibm + ;; + -beos*) + vendor=be + ;; + -hpux*) + vendor=hp + ;; + -mpeix*) + vendor=hp + ;; + -hiux*) + vendor=hitachi + ;; + -unos*) + vendor=crds + ;; + -dgux*) + vendor=dg + ;; + -luna*) + vendor=omron + ;; + -genix*) + vendor=ns + ;; + -mvs* | -opened*) + vendor=ibm + ;; + -ptx*) + vendor=sequent + ;; + -vxsim* | -vxworks*) + vendor=wrs + ;; + -aux*) + vendor=apple + ;; + -hms*) + vendor=hitachi + ;; + -mpw* | -macos*) + vendor=apple + ;; + -*mint | -*MiNT) + vendor=atari + ;; + esac + basic_machine=`echo $basic_machine | sed "s/unknown/$vendor/"` + ;; +esac + +echo $basic_machine$os diff --git a/configure b/pcre/configure old mode 100755 new mode 100644 similarity index 74% rename from configure rename to pcre/configure index 6c620ec3..fbd3831e --- a/configure +++ b/pcre/configure @@ -12,42 +12,9 @@ ac_help= ac_default_prefix=/usr/local # Any additions from configure.in: ac_help="$ac_help - --enable-mingw32 Use mingw32 for a Windows GUI" + --disable-shared build PCRE as a static library" ac_help="$ac_help - --disable-regex Don't allow regular expressions in the blockfile" -ac_help="$ac_help - --disable-pcre-regex Use old, slow GNU Regex instead of PCRE." -ac_help="$ac_help - --disable-toggle Don't support temporary disable" -ac_help="$ac_help - --disable-pcrs Don't support arbitrary content modification" -ac_help="$ac_help - --disable-force Don't allow blockfle to be bypassed" -ac_help="$ac_help - --disable-killpopup Never block popups" -ac_help="$ac_help - --disable-stats Don't keep statistics" -ac_help="$ac_help - --disable-split-proxy-args One big show-proxy-args page, not one per file." -ac_help="$ac_help - --disable-webdav Don't support WebDAV. This option stops MS Outlook - Express from accessing HotMail e-mail." -ac_help="$ac_help - --disable-ie-images Don't auto-detect whether a request from MS Internet - Explorer is for an image or HTML." -ac_help="$ac_help - --disable-image-list Don't try to figure out whether a request is for an - image or HTML using the imagelist - assume HTML." -ac_help="$ac_help - --disable-acl-files Prevents the use of ACL files to control access to - the proxy by IP address." -ac_help="$ac_help - --disable-trust-files Prevents the use of trust files." -ac_help="$ac_help - --disable-jar-files Prevents the use of jar files to capture cookies." -ac_help="$ac_help - --disable-static-pcre Link dynamically with the pcre and pcreposix - libraries. You must build the libraries seperately." + --enable-utf8 enable UTF8 support (incomplete)" # Initialize some variables set by options. # The variables have the same names as the options, with @@ -170,9 +137,18 @@ do -help | --help | --hel | --he) # Omit some internal or obsolete options to make the list less imposing. + # The list generated by autoconf has been trimmed to remove many + # options that are totally irrelevant to PCRE (e.g. relating to X), + # or are not supported by its Makefile. + # The list generated by autoconf has been trimmed to remove many + # options that are totally irrelevant to PCRE (e.g. relating to X), + # or are not supported by its Makefile. + # The list generated by autoconf has been trimmed to remove many + # options that are totally irrelevant to PCRE (e.g. relating to X), + # or are not supported by its Makefile. # This message is too long to be a string in the A/UX 3.1 sh. cat << EOF -Usage: configure [options] [host] +Usage: ./configure [options] Options: [defaults in brackets after descriptions] Configuration: --cache-file=FILE cache test results in FILE @@ -186,37 +162,11 @@ Directory and file names: --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX [same as prefix] --bindir=DIR user executables in DIR [EPREFIX/bin] - --sbindir=DIR system admin executables in DIR [EPREFIX/sbin] - --libexecdir=DIR program executables in DIR [EPREFIX/libexec] - --datadir=DIR read-only architecture-independent data in DIR - [PREFIX/share] - --sysconfdir=DIR read-only single-machine data in DIR [PREFIX/etc] - --sharedstatedir=DIR modifiable architecture-independent data in DIR - [PREFIX/com] - --localstatedir=DIR modifiable single-machine data in DIR [PREFIX/var] --libdir=DIR object code libraries in DIR [EPREFIX/lib] --includedir=DIR C header files in DIR [PREFIX/include] - --oldincludedir=DIR C header files for non-gcc in DIR [/usr/include] - --infodir=DIR info documentation in DIR [PREFIX/info] --mandir=DIR man documentation in DIR [PREFIX/man] - --srcdir=DIR find the sources in DIR [configure dir or ..] - --program-prefix=PREFIX prepend PREFIX to installed program names - --program-suffix=SUFFIX append SUFFIX to installed program names - --program-transform-name=PROGRAM - run sed PROGRAM on installed program names EOF cat << EOF -Host type: - --build=BUILD configure for building on BUILD [BUILD=HOST] - --host=HOST configure for HOST [guessed] - --target=TARGET configure for TARGET [TARGET=HOST] -Features and packages: - --disable-FEATURE do not include FEATURE (same as --enable-FEATURE=no) - --enable-FEATURE[=ARG] include FEATURE [ARG=yes] - --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] - --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) - --x-includes=DIR X include files are in DIR - --x-libraries=DIR X library files are in DIR EOF if test -n "$ac_help"; then echo "--enable and --with options recognized:$ac_help" @@ -488,7 +438,7 @@ echo > confdefs.h # A filename unique to this package, relative to the directory that # configure is in, which we can look for to find out if srcdir is correct. -ac_unique_file=jcc.c +ac_unique_file=dftables.c # Find the source files, if location was not specified. if test -z "$srcdir"; then @@ -560,35 +510,22 @@ fi -VERSION_MAJOR=2 -VERSION_MINOR=9 -VERSION_POINT=3 - +PCRE_MAJOR=3 +PCRE_MINOR=4 +PCRE_DATE=22-Aug-2000 +PCRE_VERSION=${PCRE_MAJOR}.${PCRE_MINOR} -cat >> confdefs.h <> confdefs.h <> confdefs.h <> confdefs.h <&6 -echo "configure:592: checking for $ac_word" >&5 +echo "configure:546: checking for $ac_word" >&5 if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else @@ -618,7 +555,7 @@ if test -z "$CC"; then # Extract the first word of "cc", so it can be a program name with args. set dummy cc; ac_word=$2 echo $ac_n "checking for $ac_word""... $ac_c" 1>&6 -echo "configure:622: checking for $ac_word" >&5 +echo "configure:576: checking for $ac_word" >&5 if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else @@ -669,7 +606,7 @@ fi # Extract the first word of "cl", so it can be a program name with args. set dummy cl; ac_word=$2 echo $ac_n "checking for $ac_word""... $ac_c" 1>&6 -echo "configure:673: checking for $ac_word" >&5 +echo "configure:627: checking for $ac_word" >&5 if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else @@ -701,7 +638,7 @@ fi fi echo $ac_n "checking whether the C compiler ($CC $CFLAGS $LDFLAGS) works""... $ac_c" 1>&6 -echo "configure:705: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) works" >&5 +echo "configure:659: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) works" >&5 ac_ext=c # CFLAGS is not in ac_cpp because -g, -O, etc. are not valid cpp options. @@ -712,12 +649,12 @@ cross_compiling=$ac_cv_prog_cc_cross cat > conftest.$ac_ext << EOF -#line 716 "configure" +#line 670 "configure" #include "confdefs.h" main(){return(0);} EOF -if { (eval echo configure:721: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then +if { (eval echo configure:675: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then ac_cv_prog_cc_works=yes # If we can't run a trivial program, we are probably using a cross compiler. if (./conftest; exit) 2>/dev/null; then @@ -743,12 +680,12 @@ if test $ac_cv_prog_cc_works = no; then { echo "configure: error: installation or configuration problem: C compiler cannot create executables." 1>&2; exit 1; } fi echo $ac_n "checking whether the C compiler ($CC $CFLAGS $LDFLAGS) is a cross-compiler""... $ac_c" 1>&6 -echo "configure:747: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) is a cross-compiler" >&5 +echo "configure:701: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) is a cross-compiler" >&5 echo "$ac_t""$ac_cv_prog_cc_cross" 1>&6 cross_compiling=$ac_cv_prog_cc_cross echo $ac_n "checking whether we are using GNU C""... $ac_c" 1>&6 -echo "configure:752: checking whether we are using GNU C" >&5 +echo "configure:706: checking whether we are using GNU C" >&5 if eval "test \"`echo '$''{'ac_cv_prog_gcc'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else @@ -757,7 +694,7 @@ else yes; #endif EOF -if { ac_try='${CC-cc} -E conftest.c'; { (eval echo configure:761: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; }; } | egrep yes >/dev/null 2>&1; then +if { ac_try='${CC-cc} -E conftest.c'; { (eval echo configure:715: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; }; } | egrep yes >/dev/null 2>&1; then ac_cv_prog_gcc=yes else ac_cv_prog_gcc=no @@ -776,7 +713,7 @@ ac_test_CFLAGS="${CFLAGS+set}" ac_save_CFLAGS="$CFLAGS" CFLAGS= echo $ac_n "checking whether ${CC-cc} accepts -g""... $ac_c" 1>&6 -echo "configure:780: checking whether ${CC-cc} accepts -g" >&5 +echo "configure:734: checking whether ${CC-cc} accepts -g" >&5 if eval "test \"`echo '$''{'ac_cv_prog_cc_g'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else @@ -807,8 +744,40 @@ else fi fi +# Extract the first word of "ranlib", so it can be a program name with args. +set dummy ranlib; ac_word=$2 +echo $ac_n "checking for $ac_word""... $ac_c" 1>&6 +echo "configure:768: checking for $ac_word" >&5 +if eval "test \"`echo '$''{'ac_cv_prog_RANLIB'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + if test -n "$RANLIB"; then + ac_cv_prog_RANLIB="$RANLIB" # Let the user override the test. +else + IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS=":" + ac_dummy="$PATH" + for ac_dir in $ac_dummy; do + test -z "$ac_dir" && ac_dir=. + if test -f $ac_dir/$ac_word; then + ac_cv_prog_RANLIB="ranlib" + break + fi + done + IFS="$ac_save_ifs" + test -z "$ac_cv_prog_RANLIB" && ac_cv_prog_RANLIB=":" +fi +fi +RANLIB="$ac_cv_prog_RANLIB" +if test -n "$RANLIB"; then + echo "$ac_t""$RANLIB" 1>&6 +else + echo "$ac_t""no" 1>&6 +fi + + + echo $ac_n "checking how to run the C preprocessor""... $ac_c" 1>&6 -echo "configure:812: checking how to run the C preprocessor" >&5 +echo "configure:798: checking how to run the C preprocessor" >&5 # On Suns, sometimes $CPP names a directory. if test -n "$CPP" && test -d "$CPP"; then CPP= @@ -823,13 +792,13 @@ else # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. cat > conftest.$ac_ext < Syntax Error EOF ac_try="$ac_cpp conftest.$ac_ext >/dev/null 2>conftest.out" -{ (eval echo configure:833: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +{ (eval echo configure:819: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` if test -z "$ac_err"; then : @@ -840,13 +809,13 @@ else rm -rf conftest* CPP="${CC-cc} -E -traditional-cpp" cat > conftest.$ac_ext < Syntax Error EOF ac_try="$ac_cpp conftest.$ac_ext >/dev/null 2>conftest.out" -{ (eval echo configure:850: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +{ (eval echo configure:836: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` if test -z "$ac_err"; then : @@ -857,13 +826,13 @@ else rm -rf conftest* CPP="${CC-cc} -nologo -E" cat > conftest.$ac_ext < Syntax Error EOF ac_try="$ac_cpp conftest.$ac_ext >/dev/null 2>conftest.out" -{ (eval echo configure:867: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +{ (eval echo configure:853: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` if test -z "$ac_err"; then : @@ -887,135 +856,13 @@ else fi echo "$ac_t""$CPP" 1>&6 - -echo $ac_n "checking for mingw32 environment""... $ac_c" 1>&6 -echo "configure:893: checking for mingw32 environment" >&5 -if eval "test \"`echo '$''{'ac_cv_mingw32'+set}'`\" = set"; then - echo $ac_n "(cached) $ac_c" 1>&6 -else - cat > conftest.$ac_ext <&5; (eval $ac_compile) 2>&5; }; then - rm -rf conftest* - ac_cv_mingw32=yes -else - echo "configure: failed program was:" >&5 - cat conftest.$ac_ext >&5 - rm -rf conftest* - ac_cv_mingw32=no -fi -rm -f conftest* -rm -f conftest* -fi - -echo "$ac_t""$ac_cv_mingw32" 1>&6 -MINGW32= -test "$ac_cv_mingw32" = yes && MINGW32=yes -echo $ac_n "checking for Cygwin environment""... $ac_c" 1>&6 -echo "configure:922: checking for Cygwin environment" >&5 -if eval "test \"`echo '$''{'ac_cv_cygwin'+set}'`\" = set"; then - echo $ac_n "(cached) $ac_c" 1>&6 -else - cat > conftest.$ac_ext <&5; (eval $ac_compile) 2>&5; }; then - rm -rf conftest* - ac_cv_cygwin=yes -else - echo "configure: failed program was:" >&5 - cat conftest.$ac_ext >&5 - rm -rf conftest* - ac_cv_cygwin=no -fi -rm -f conftest* -rm -f conftest* -fi - -echo "$ac_t""$ac_cv_cygwin" 1>&6 -CYGWIN= -test "$ac_cv_cygwin" = yes && CYGWIN=yes - - -echo $ac_n "checking for executable suffix""... $ac_c" 1>&6 -echo "configure:957: checking for executable suffix" >&5 -if eval "test \"`echo '$''{'ac_cv_exeext'+set}'`\" = set"; then - echo $ac_n "(cached) $ac_c" 1>&6 -else - if test "$CYGWIN" = yes || test "$MINGW32" = yes; then - ac_cv_exeext=.exe -else - rm -f conftest* - echo 'int main () { return 0; }' > conftest.$ac_ext - ac_cv_exeext= - if { (eval echo configure:967: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; }; then - for file in conftest.*; do - case $file in - *.c | *.o | *.obj) ;; - *) ac_cv_exeext=`echo $file | sed -e s/conftest//` ;; - esac - done - else - { echo "configure: error: installation or configuration problem: compiler cannot create executables." 1>&2; exit 1; } - fi - rm -f conftest* - test x"${ac_cv_exeext}" = x && ac_cv_exeext=no -fi -fi - -EXEEXT="" -test x"${ac_cv_exeext}" != xno && EXEEXT=${ac_cv_exeext} -echo "$ac_t""${ac_cv_exeext}" 1>&6 -ac_exeext=$EXEEXT - -echo $ac_n "checking for object suffix""... $ac_c" 1>&6 -echo "configure:988: checking for object suffix" >&5 -if eval "test \"`echo '$''{'ac_cv_objext'+set}'`\" = set"; then - echo $ac_n "(cached) $ac_c" 1>&6 -else - rm -f conftest* -echo 'int i = 1;' > conftest.$ac_ext -if { (eval echo configure:994: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>&5; }; then - for ac_file in conftest.*; do - case $ac_file in - *.c) ;; - *) ac_cv_objext=`echo $ac_file | sed -e s/conftest.//` ;; - esac - done -else - { echo "configure: error: installation or configuration problem; compiler does not work" 1>&2; exit 1; } -fi -rm -f conftest* -fi - -echo "$ac_t""$ac_cv_objext" 1>&6 -OBJEXT=$ac_cv_objext -ac_objext=$ac_cv_objext - - - echo $ac_n "checking for ANSI C header files""... $ac_c" 1>&6 -echo "configure:1014: checking for ANSI C header files" >&5 +echo "configure:878: checking for ANSI C header files" >&5 if eval "test \"`echo '$''{'ac_cv_header_stdc'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else cat > conftest.$ac_ext < #include @@ -1023,7 +870,7 @@ else #include EOF ac_try="$ac_cpp conftest.$ac_ext >/dev/null 2>conftest.out" -{ (eval echo configure:1027: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +{ (eval echo configure:891: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` if test -z "$ac_err"; then rm -rf conftest* @@ -1040,7 +887,7 @@ rm -f conftest* if test $ac_cv_header_stdc = yes; then # SunOS 4.x string.h does not declare mem*, contrary to ANSI. cat > conftest.$ac_ext < EOF @@ -1058,7 +905,7 @@ fi if test $ac_cv_header_stdc = yes; then # ISC 2.0.2 stdlib.h does not declare free, contrary to ANSI. cat > conftest.$ac_ext < EOF @@ -1079,7 +926,7 @@ if test "$cross_compiling" = yes; then : else cat > conftest.$ac_ext < #define ISLOWER(c) ('a' <= (c) && (c) <= 'z') @@ -1090,7 +937,7 @@ if (XOR (islower (i), ISLOWER (i)) || toupper (i) != TOUPPER (i)) exit(2); exit (0); } EOF -if { (eval echo configure:1094: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext} && (./conftest; exit) 2>/dev/null +if { (eval echo configure:958: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext} && (./conftest; exit) 2>/dev/null then : else @@ -1113,14 +960,55 @@ EOF fi +for ac_hdr in limits.h +do +ac_safe=`echo "$ac_hdr" | sed 'y%./+-%__p_%'` +echo $ac_n "checking for $ac_hdr""... $ac_c" 1>&6 +echo "configure:985: checking for $ac_hdr" >&5 +if eval "test \"`echo '$''{'ac_cv_header_$ac_safe'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + cat > conftest.$ac_ext < +EOF +ac_try="$ac_cpp conftest.$ac_ext >/dev/null 2>conftest.out" +{ (eval echo configure:995: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` +if test -z "$ac_err"; then + rm -rf conftest* + eval "ac_cv_header_$ac_safe=yes" +else + echo "$ac_err" >&5 + echo "configure: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_header_$ac_safe=no" +fi +rm -f conftest* +fi +if eval "test \"`echo '$ac_cv_header_'$ac_safe`\" = yes"; then + echo "$ac_t""yes" 1>&6 + ac_tr_hdr=HAVE_`echo $ac_hdr | sed 'y%abcdefghijklmnopqrstuvwxyz./-%ABCDEFGHIJKLMNOPQRSTUVWXYZ___%'` + cat >> confdefs.h <&6 +fi +done + + echo $ac_n "checking for working const""... $ac_c" 1>&6 -echo "configure:1119: checking for working const" >&5 +echo "configure:1024: checking for working const" >&5 if eval "test \"`echo '$''{'ac_cv_c_const'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else cat > conftest.$ac_ext <&5; (eval $ac_compile) 2>&5; }; then +if { (eval echo configure:1078: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>&5; }; then rm -rf conftest* ac_cv_c_const=yes else @@ -1190,12 +1078,12 @@ EOF fi echo $ac_n "checking for size_t""... $ac_c" 1>&6 -echo "configure:1194: checking for size_t" >&5 +echo "configure:1099: checking for size_t" >&5 if eval "test \"`echo '$''{'ac_cv_type_size_t'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else cat > conftest.$ac_ext < #if STDC_HEADERS @@ -1223,15 +1111,16 @@ EOF fi -for ac_func in strerror bcopy memmove + +for ac_func in bcopy memmove strerror do echo $ac_n "checking for $ac_func""... $ac_c" 1>&6 -echo "configure:1230: checking for $ac_func" >&5 +echo "configure:1136: checking for $ac_func" >&5 if eval "test \"`echo '$''{'ac_cv_func_$ac_func'+set}'`\" = set"; then echo $ac_n "(cached) $ac_c" 1>&6 else cat > conftest.$ac_ext <&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then +if { (eval echo configure:1164: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then rm -rf conftest* eval "ac_cv_func_$ac_func=yes" else @@ -1280,90 +1169,26 @@ done -# Check whether --enable-mingw32 or --disable-mingw32 was given. -if test "${enable_mingw32+set}" = set; then - enableval="$enable_mingw32" - if test $enableval = yes; then - WIN_ONLY= - CYGWIN_FLAGS="-mwindows -mno-cygwin" - echo "Using mingw32 (Win32 GUI)" - else - WIN_ONLY=# - if test "$CYGWIN" = "yes"; then - CYGWIN_FLAGS="-mno-win32" - echo "Using Cygnus (Win32 command line)" - else - CYGWIN_FLAGS= - fi - fi -else - if test "$MINGW32" = "yes"; then - WIN_ONLY= - CYGWIN_FLAGS="-mwindows -mno-cygwin" - echo "Using mingw32 (Win32 GUI)" - else - WIN_ONLY=# - if test "$CYGWIN" = "yes"; then - CYGWIN_FLAGS="-mno-win32" - echo "Using Cygnus (Win32 command line)" - else - CYGWIN_FLAGS= - fi - fi +LIBTOOL=./libtool +LIBSUFFIX=la +# Check whether --enable-shared or --disable-shared was given. +if test "${enable_shared+set}" = set; then + enableval="$enable_shared" + if test "$enableval" = "no"; then + LIBTOOL= + LIBSUFFIX=a fi - - - - -SOLARIS_ONLY=# - - - - -GNU_REGEX_ONLY= -PCRE_REGEX_ONLY= -NO_REGEX_ONLY=# - -# Check whether --enable-regex or --disable-regex was given. -if test "${enable_regex+set}" = set; then - enableval="$enable_regex" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define REGEX 1 -EOF - -else - NO_REGEX_ONLY= - GNU_REGEX_ONLY=# - PCRE_REGEX_ONLY=# -fi -else - cat >> confdefs.h <<\EOF -#define REGEX 1 -EOF - fi -# Check whether --enable-pcre-regex or --disable-pcre-regex was given. -if test "${enable_pcre_regex+set}" = set; then - enableval="$enable_pcre_regex" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define PCRE 1 -EOF - GNU_REGEX_ONLY=# -else - PCRE_REGEX_ONLY=# +# Check whether --enable-utf8 or --disable-utf8 was given. +if test "${enable_utf8+set}" = set; then + enableval="$enable_utf8" + if test "$enableval" = "yes"; then + UTF8=-DSUPPORT_UTF8 fi -else - cat >> confdefs.h <<\EOF -#define PCRE 1 -EOF - - GNU_REGEX_ONLY=# fi @@ -1374,232 +1199,10 @@ fi -# Check whether --enable-toggle or --disable-toggle was given. -if test "${enable_toggle+set}" = set; then - enableval="$enable_toggle" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define TOGGLE 1 -EOF -fi -else - cat >> confdefs.h <<\EOF -#define TOGGLE 1 -EOF -fi -PCRS_ONLY= -# Check whether --enable-pcrs or --disable-pcrs was given. -if test "${enable_pcrs+set}" = set; then - enableval="$enable_pcrs" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define PCRS 1 -EOF - - cat >> confdefs.h <<\EOF -#define DENY_GZIP 1 -EOF - -else - PCRS_ONLY=# -fi -else - cat >> confdefs.h <<\EOF -#define PCRS 1 -EOF - cat >> confdefs.h <<\EOF -#define DENY_GZIP 1 -EOF - -fi - - - -# Check whether --enable-force or --disable-force was given. -if test "${enable_force+set}" = set; then - enableval="$enable_force" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define FORCE_LOAD 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define FORCE_LOAD 1 -EOF - -fi - - -# Check whether --enable-killpopup or --disable-killpopup was given. -if test "${enable_killpopup+set}" = set; then - enableval="$enable_killpopup" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define KILLPOPUPS 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define KILLPOPUPS 1 -EOF - -fi - - -# Check whether --enable-stats or --disable-stats was given. -if test "${enable_stats+set}" = set; then - enableval="$enable_stats" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define STATISTICS 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define STATISTICS 1 -EOF - -fi - - -# Check whether --enable-split-proxy-args or --disable-split-proxy-args was given. -if test "${enable_split_proxy_args+set}" = set; then - enableval="$enable_split_proxy_args" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define SPLIT_PROXY_ARGS 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define SPLIT_PROXY_ARGS 1 -EOF - -fi - - -# Check whether --enable-webdav or --disable-webdav was given. -if test "${enable_webdav+set}" = set; then - enableval="$enable_webdav" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define WEBDAV 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define WEBDAV 1 -EOF - -fi - - -# Check whether --enable-ie-images or --disable-ie-images was given. -if test "${enable_ie_images+set}" = set; then - enableval="$enable_ie_images" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define DETECT_MSIE_IMAGES 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define DETECT_MSIE_IMAGES 1 -EOF - -fi - - -# Check whether --enable-image-list or --disable-image-list was given. -if test "${enable_image_list+set}" = set; then - enableval="$enable_image_list" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define USE_IMAGE_LIST 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define USE_IMAGE_LIST 1 -EOF - -fi - - -# Check whether --enable-acl-files or --disable-acl-files was given. -if test "${enable_acl_files+set}" = set; then - enableval="$enable_acl_files" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define ACL_FILES 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define ACL_FILES 1 -EOF - -fi - - -# Check whether --enable-trust-files or --disable-trust-files was given. -if test "${enable_trust_files+set}" = set; then - enableval="$enable_trust_files" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define TRUST_FILES 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define TRUST_FILES 1 -EOF - -fi - - -# Check whether --enable-jar-files or --disable-jar-files was given. -if test "${enable_jar_files+set}" = set; then - enableval="$enable_jar_files" - if test $enableval = yes; then - cat >> confdefs.h <<\EOF -#define JAR_FILES 1 -EOF - -fi -else - cat >> confdefs.h <<\EOF -#define JAR_FILES 1 -EOF - -fi - - -LIBRARY_PCRE_ONLY=# -STATIC_PCRE_ONLY= -# Check whether --enable-static-pcre or --disable-static-pcre was given. -if test "${enable_static_pcre+set}" = set; then - enableval="$enable_static_pcre" - if test $enableval = no; then - LIBRARY_PCRE_ONLY= - STATIC_PCRE_ONLY=# -fi -fi - @@ -1703,7 +1306,7 @@ done ac_given_srcdir=$srcdir -trap 'rm -fr `echo "Makefile config.h" | sed "s/:[^ ]*//g"` conftest*; exit 1' 1 2 15 +trap 'rm -fr `echo "Makefile pcre.h:pcre.in pcre-config:pcre-config.in RunTest:RunTest.in config.h:config.in" | sed "s/:[^ ]*//g"` conftest*; exit 1' 1 2 15 EOF cat >> $CONFIG_STATUS <> $CONFIG_STATUS <> $CONFIG_STATUS <<\EOF for ac_file in .. $CONFIG_FILES; do if test "x$ac_file" != x..; then @@ -1868,7 +1469,7 @@ ac_eD='%g' if test "${CONFIG_HEADERS+set}" != set; then EOF cat >> $CONFIG_STATUS <> $CONFIG_STATUS <<\EOF fi @@ -1958,11 +1559,10 @@ cat >> $CONFIG_STATUS <> $CONFIG_STATUS <<\EOF - +chmod a+x RunTest pcre-config exit 0 EOF chmod +x $CONFIG_STATUS rm -fr confdefs* $ac_clean_files test "$no_create" = yes || ${CONFIG_SHELL-/bin/sh} $CONFIG_STATUS || exit 1 - diff --git a/pcre/configure.in b/pcre/configure.in new file mode 100644 index 00000000..c98387d2 --- /dev/null +++ b/pcre/configure.in @@ -0,0 +1,85 @@ +dnl Process this file with autoconf to produce a configure script. + +dnl This is required at the start; the name is the name of a file +dnl it should be seeing, to verify it is in the same directory. + +AC_INIT(dftables.c) + +dnl Arrange to build config.h from config.in. Note that pcre.h is +dnl built differently, as it is just a "substitution" file. +dnl Manual says this macro should come right after AC_INIT. +AC_CONFIG_HEADER(config.h:config.in) + +dnl Provide the current PCRE version information. Do not use numbers +dnl with leading zeros for the minor version, as they end up in a C +dnl macro, and may be treated as octal constants. Stick to single +dnl digits for minor numbers less than 10. There are unlikely to be +dnl that many releases anyway. + +PCRE_MAJOR=3 +PCRE_MINOR=4 +PCRE_DATE=22-Aug-2000 +PCRE_VERSION=${PCRE_MAJOR}.${PCRE_MINOR} + +dnl Provide versioning information for libtool shared libraries that +dnl are built by default on Unix systems. + +PCRE_LIB_VERSION=0:1:0 +PCRE_POSIXLIB_VERSION=0:0:0 + +dnl Checks for programs. + +AC_PROG_CC +AC_PROG_RANLIB + +dnl Checks for header files. + +AC_HEADER_STDC +AC_CHECK_HEADERS(limits.h) + +dnl Checks for typedefs, structures, and compiler characteristics. + +AC_C_CONST +AC_TYPE_SIZE_T + +dnl Checks for library functions. + +AC_CHECK_FUNCS(bcopy memmove strerror) + +dnl Handle --enable-shared-libraries + +LIBTOOL=./libtool +LIBSUFFIX=la +AC_ARG_ENABLE(shared, +[ --disable-shared build PCRE as a static library], +if test "$enableval" = "no"; then + LIBTOOL= + LIBSUFFIX=a +fi +) + +dnl Handle --enable-utf8 + +AC_ARG_ENABLE(utf8, +[ --enable-utf8 enable UTF8 support (incomplete)], +if test "$enableval" = "yes"; then + UTF8=-DSUPPORT_UTF8 +fi +) + +dnl "Export" these variables + +AC_SUBST(HAVE_MEMMOVE) +AC_SUBST(HAVE_STRERROR) +AC_SUBST(LIBTOOL) +AC_SUBST(LIBSUFFIX) +AC_SUBST(UTF8) +AC_SUBST(PCRE_MAJOR) +AC_SUBST(PCRE_MINOR) +AC_SUBST(PCRE_DATE) +AC_SUBST(PCRE_VERSION) +AC_SUBST(PCRE_LIB_VERSION) +AC_SUBST(PCRE_POSIXLIB_VERSION) + +dnl This must be last; it determines what files are written +AC_OUTPUT(Makefile pcre.h:pcre.in pcre-config:pcre-config.in RunTest:RunTest.in,[chmod a+x RunTest pcre-config]) diff --git a/pcre/dftables.c b/pcre/dftables.c new file mode 100644 index 00000000..d572dfd3 --- /dev/null +++ b/pcre/dftables.c @@ -0,0 +1,148 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + +/* +PCRE is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. + +Written by: Philip Hazel + + Copyright (c) 1997-2000 University of Cambridge + +----------------------------------------------------------------------------- +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. +----------------------------------------------------------------------------- + +See the file Tech.Notes for some information on the internals. +*/ + + +/* This is a support program to generate the file chartables.c, containing +character tables of various kinds. They are built according to the default C +locale and used as the default tables by PCRE. Now that pcre_maketables is +a function visible to the outside world, we make use of its code from here in +order to be consistent. */ + +#include +#include +#include + +#include "internal.h" + +#define DFTABLES /* maketables.c notices this */ +#include "maketables.c" + + +int main(void) +{ +int i; +unsigned const char *tables = pcre_maketables(); + +printf( + "/*************************************************\n" + "* Perl-Compatible Regular Expressions *\n" + "*************************************************/\n\n" + "/* This file is automatically written by the dftables auxiliary \n" + "program. If you edit it by hand, you might like to edit the Makefile to \n" + "prevent its ever being regenerated.\n\n" + "This file is #included in the compilation of pcre.c to build the default\n" + "character tables which are used when no tables are passed to the compile\n" + "function. */\n\n" + "static unsigned char pcre_default_tables[] = {\n\n" + "/* This table is a lower casing table. */\n\n"); + +printf(" "); +for (i = 0; i < 256; i++) + { + if ((i & 7) == 0 && i != 0) printf("\n "); + printf("%3d", *tables++); + if (i != 255) printf(","); + } +printf(",\n\n"); + +printf("/* This table is a case flipping table. */\n\n"); + +printf(" "); +for (i = 0; i < 256; i++) + { + if ((i & 7) == 0 && i != 0) printf("\n "); + printf("%3d", *tables++); + if (i != 255) printf(","); + } +printf(",\n\n"); + +printf( + "/* This table contains bit maps for various character classes.\n" + "Each map is 32 bytes long and the bits run from the least\n" + "significant end of each byte. The classes that have their own\n" + "maps are: space, xdigit, digit, upper, lower, word, graph\n" + "print, punct, and cntrl. Other classes are built from combinations. */\n\n"); + +printf(" "); +for (i = 0; i < cbit_length; i++) + { + if ((i & 7) == 0 && i != 0) + { + if ((i & 31) == 0) printf("\n"); + printf("\n "); + } + printf("0x%02x", *tables++); + if (i != cbit_length - 1) printf(","); + } +printf(",\n\n"); + +printf( + "/* This table identifies various classes of character by individual bits:\n" + " 0x%02x white space character\n" + " 0x%02x letter\n" + " 0x%02x decimal digit\n" + " 0x%02x hexadecimal digit\n" + " 0x%02x alphanumeric or '_'\n" + " 0x%02x regular expression metacharacter or binary zero\n*/\n\n", + ctype_space, ctype_letter, ctype_digit, ctype_xdigit, ctype_word, + ctype_meta); + +printf(" "); +for (i = 0; i < 256; i++) + { + if ((i & 7) == 0 && i != 0) + { + printf(" /* "); + if (isprint(i-8)) printf(" %c -", i-8); + else printf("%3d-", i-8); + if (isprint(i-1)) printf(" %c ", i-1); + else printf("%3d", i-1); + printf(" */\n "); + } + printf("0x%02x", *tables++); + if (i != 255) printf(","); + } + +printf("};/* "); +if (isprint(i-8)) printf(" %c -", i-8); + else printf("%3d-", i-8); +if (isprint(i-1)) printf(" %c ", i-1); + else printf("%3d", i-1); +printf(" */\n\n/* End of chartables.c */\n"); + +return 0; +} + +/* End of dftables.c */ diff --git a/pcre/dll.mk b/pcre/dll.mk new file mode 100644 index 00000000..d8b728e5 --- /dev/null +++ b/pcre/dll.mk @@ -0,0 +1,60 @@ +# dll.mk - auxilary Makefile to easy build dll's for mingw32 target +# ver. 0.6 of 1999-03-25 +# +# Homepage of this makefile - http://www.is.lg.ua/~paul/devel/ +# Homepage of original mingw32 project - +# http://www.fu.is.saga-u.ac.jp/~colin/gcc.html +# +# How to use: +# This makefile can: +# 1. Create automatical .def file from list of objects +# 2. Create .dll from objects and .def file, either automatical, or your +# hand-written (maybe) file, which must have same basename as dll +# WARNING! There MUST be object, which name match dll's name. Make sux. +# 3. Create import library from .def (as for .dll, only its name required, +# not dll itself) +# By convention implibs for dll have .dll.a suffix, e.g. libstuff.dll.a +# Why not just libstuff.a? 'Cos that's name for static lib, ok? +# Process divided into 3 phases because: +# 1. Pre-existent .def possible +# 2. Generating implib is enough time-consuming +# +# Variables: +# DLL_LDLIBS - libs for linking dll +# DLL_LDFLAGS - flags for linking dll +# +# By using $(DLL_SUFFIX) instead of 'dll', e.g. stuff.$(DLL_SUFFIX) +# you may help porting makefiles to other platforms +# +# Put this file in your make's include path (e.g. main include dir, for +# more information see include section in make doc). Put in the beginning +# of your own Makefile line "include dll.mk". Specify dependences, e.g.: +# +# Do all stuff in one step +# libstuff.dll.a: $(OBJECTS) stuff.def +# stuff.def: $(OBJECTS) +# +# Steps separated, pre-provided .def, link with user32 +# +# DLL_LDLIBS=-luser32 +# stuff.dll: $(OBJECTS) +# libstuff.dll.a: $(OBJECTS) + + +DLLWRAP=dllwrap +DLLTOOL=dlltool + +DLL_SUFFIX=dll + +.SUFFIXES: .o .$(DLL_SUFFIX) + +_%.def: %.o + $(DLLTOOL) --export-all --output-def $@ $^ + +%.$(DLL_SUFFIX): %.o + $(DLLWRAP) --dllname $(notdir $@) --driver-name $(CC) --def $*.def -o $@ $(filter %.o,$^) $(DLL_LDFLAGS) $(DLL_LDLIBS) + +lib%.$(DLL_SUFFIX).a:%.def + $(DLLTOOL) --dllname $(notdir $*.dll) --def $< --output-lib $@ + +# End diff --git a/pcre/doc/ChangeLog b/pcre/doc/ChangeLog new file mode 100644 index 00000000..2133dd76 --- /dev/null +++ b/pcre/doc/ChangeLog @@ -0,0 +1,655 @@ +ChangeLog for PCRE +------------------ + + +Version 3.4 22-Aug-00 +--------------------- + +1. Fixed typo in pcre.h: unsigned const char * changed to const unsigned char *. + +2. Diagnose condition (?(0) as an error instead of crashing on matching. + + +Version 3.3 01-Aug-00 +--------------------- + +1. If an octal character was given, but the value was greater than \377, it +was not getting masked to the least significant bits, as documented. This could +lead to crashes in some systems. + +2. Perl 5.6 (if not earlier versions) accepts classes like [a-\d] and treats +the hyphen as a literal. PCRE used to give an error; it now behaves like Perl. + +3. Added the functions pcre_free_substring() and pcre_free_substring_list(). +These just pass their arguments on to (pcre_free)(), but they are provided +because some uses of PCRE bind it to non-C systems that can call its functions, +but cannot call free() or pcre_free() directly. + +4. Add "make test" as a synonym for "make check". Corrected some comments in +the Makefile. + +5. Add $(DESTDIR)/ in front of all the paths in the "install" target in the +Makefile. + +6. Changed the name of pgrep to pcregrep, because Solaris has introduced a +command called pgrep for grepping around the active processes. + +7. Added the beginnings of support for UTF-8 character strings. + +8. Arranged for the Makefile to pass over the settings of CC, CFLAGS, and +RANLIB to ./ltconfig so that they are used by libtool. I think these are all +the relevant ones. (AR is not passed because ./ltconfig does its own figuring +out for the ar command.) + + +Version 3.2 12-May-00 +--------------------- + +This is purely a bug fixing release. + +1. If the pattern /((Z)+|A)*/ was matched agained ZABCDEFG it matched Z instead +of ZA. This was just one example of several cases that could provoke this bug, +which was introduced by change 9 of version 2.00. The code for breaking +infinite loops after an iteration that matches an empty string was't working +correctly. + +2. The pcretest program was not imitating Perl correctly for the pattern /a*/g +when matched against abbab (for example). After matching an empty string, it +wasn't forcing anchoring when setting PCRE_NOTEMPTY for the next attempt; this +caused it to match further down the string than it should. + +3. The code contained an inclusion of sys/types.h. It isn't clear why this +was there because it doesn't seem to be needed, and it causes trouble on some +systems, as it is not a Standard C header. It has been removed. + +4. Made 4 silly changes to the source to avoid stupid compiler warnings that +were reported on the Macintosh. The changes were from + + while ((c = *(++ptr)) != 0 && c != '\n'); +to + while ((c = *(++ptr)) != 0 && c != '\n') ; + +Totally extraordinary, but if that's what it takes... + +5. PCRE is being used in one environment where neither memmove() nor bcopy() is +available. Added HAVE_BCOPY and an autoconf test for it; if neither +HAVE_MEMMOVE nor HAVE_BCOPY is set, use a built-in emulation function which +assumes the way PCRE uses memmove() (always moving upwards). + +6. PCRE is being used in one environment where strchr() is not available. There +was only one use in pcre.c, and writing it out to avoid strchr() probably gives +faster code anyway. + + +Version 3.1 09-Feb-00 +--------------------- + +The only change in this release is the fixing of some bugs in Makefile.in for +the "install" target: + +(1) It was failing to install pcreposix.h. + +(2) It was overwriting the pcre.3 man page with the pcreposix.3 man page. + + +Version 3.0 01-Feb-00 +--------------------- + +1. Add support for the /+ modifier to perltest (to output $` like it does in +pcretest). + +2. Add support for the /g modifier to perltest. + +3. Fix pcretest so that it behaves even more like Perl for /g when the pattern +matches null strings. + +4. Fix perltest so that it doesn't do unwanted things when fed an empty +pattern. Perl treats empty patterns specially - it reuses the most recent +pattern, which is not what we want. Replace // by /(?#)/ in order to avoid this +effect. + +5. The POSIX interface was broken in that it was just handing over the POSIX +captured string vector to pcre_exec(), but (since release 2.00) PCRE has +required a bigger vector, with some working space on the end. This means that +the POSIX wrapper now has to get and free some memory, and copy the results. + +6. Added some simple autoconf support, placing the test data and the +documentation in separate directories, re-organizing some of the +information files, and making it build pcre-config (a GNU standard). Also added +libtool support for building PCRE as a shared library, which is now the +default. + +7. Got rid of the leading zero in the definition of PCRE_MINOR because 08 and +09 are not valid octal constants. Single digits will be used for minor values +less than 10. + +8. Defined REG_EXTENDED and REG_NOSUB as zero in the POSIX header, so that +existing programs that set these in the POSIX interface can use PCRE without +modification. + +9. Added a new function, pcre_fullinfo() with an extensible interface. It can +return all that pcre_info() returns, plus additional data. The pcre_info() +function is retained for compatibility, but is considered to be obsolete. + +10. Added experimental recursion feature (?R) to handle one common case that +Perl 5.6 will be able to do with (?p{...}). + +11. Added support for POSIX character classes like [:alpha:], which Perl is +adopting. + + +Version 2.08 31-Aug-99 +---------------------- + +1. When startoffset was not zero and the pattern began with ".*", PCRE was not +trying to match at the startoffset position, but instead was moving forward to +the next newline as if a previous match had failed. + +2. pcretest was not making use of PCRE_NOTEMPTY when repeating for /g and /G, +and could get into a loop if a null string was matched other than at the start +of the subject. + +3. Added definitions of PCRE_MAJOR and PCRE_MINOR to pcre.h so the version can +be distinguished at compile time, and for completeness also added PCRE_DATE. + +5. Added Paul Sokolovsky's minor changes to make it easy to compile a Win32 DLL +in GnuWin32 environments. + + +Version 2.07 29-Jul-99 +---------------------- + +1. The documentation is now supplied in plain text form and HTML as well as in +the form of man page sources. + +2. C++ compilers don't like assigning (void *) values to other pointer types. +In particular this affects malloc(). Although there is no problem in Standard +C, I've put in casts to keep C++ compilers happy. + +3. Typo on pcretest.c; a cast of (unsigned char *) in the POSIX regexec() call +should be (const char *). + +4. If NOPOSIX is defined, pcretest.c compiles without POSIX support. This may +be useful for non-Unix systems who don't want to bother with the POSIX stuff. +However, I haven't made this a standard facility. The documentation doesn't +mention it, and the Makefile doesn't support it. + +5. The Makefile now contains an "install" target, with editable destinations at +the top of the file. The pcretest program is not installed. + +6. pgrep -V now gives the PCRE version number and date. + +7. Fixed bug: a zero repetition after a literal string (e.g. /abcde{0}/) was +causing the entire string to be ignored, instead of just the last character. + +8. If a pattern like /"([^\\"]+|\\.)*"/ is applied in the normal way to a +non-matching string, it can take a very, very long time, even for strings of +quite modest length, because of the nested recursion. PCRE now does better in +some of these cases. It does this by remembering the last required literal +character in the pattern, and pre-searching the subject to ensure it is present +before running the real match. In other words, it applies a heuristic to detect +some types of certain failure quickly, and in the above example, if presented +with a string that has no trailing " it gives "no match" very quickly. + +9. A new runtime option PCRE_NOTEMPTY causes null string matches to be ignored; +other alternatives are tried instead. + + +Version 2.06 09-Jun-99 +---------------------- + +1. Change pcretest's output for amount of store used to show just the code +space, because the remainder (the data block) varies in size between 32-bit and +64-bit systems. + +2. Added an extra argument to pcre_exec() to supply an offset in the subject to +start matching at. This allows lookbehinds to work when searching for multiple +occurrences in a string. + +3. Added additional options to pcretest for testing multiple occurrences: + + /+ outputs the rest of the string that follows a match + /g loops for multiple occurrences, using the new startoffset argument + /G loops for multiple occurrences by passing an incremented pointer + +4. PCRE wasn't doing the "first character" optimization for patterns starting +with \b or \B, though it was doing it for other lookbehind assertions. That is, +it wasn't noticing that a match for a pattern such as /\bxyz/ has to start with +the letter 'x'. On long subject strings, this gives a significant speed-up. + + +Version 2.05 21-Apr-99 +---------------------- + +1. Changed the type of magic_number from int to long int so that it works +properly on 16-bit systems. + +2. Fixed a bug which caused patterns starting with .* not to work correctly +when the subject string contained newline characters. PCRE was assuming +anchoring for such patterns in all cases, which is not correct because .* will +not pass a newline unless PCRE_DOTALL is set. It now assumes anchoring only if +DOTALL is set at top level; otherwise it knows that patterns starting with .* +must be retried after every newline in the subject. + + +Version 2.04 18-Feb-99 +---------------------- + +1. For parenthesized subpatterns with repeats whose minimum was zero, the +computation of the store needed to hold the pattern was incorrect (too large). +If such patterns were nested a few deep, this could multiply and become a real +problem. + +2. Added /M option to pcretest to show the memory requirement of a specific +pattern. Made -m a synonym of -s (which does this globally) for compatibility. + +3. Subpatterns of the form (regex){n,m} (i.e. limited maximum) were being +compiled in such a way that the backtracking after subsequent failure was +pessimal. Something like (a){0,3} was compiled as (a)?(a)?(a)? instead of +((a)((a)(a)?)?)? with disastrous performance if the maximum was of any size. + + +Version 2.03 02-Feb-99 +---------------------- + +1. Fixed typo and small mistake in man page. + +2. Added 4th condition (GPL supersedes if conflict) and created separate +LICENCE file containing the conditions. + +3. Updated pcretest so that patterns such as /abc\/def/ work like they do in +Perl, that is the internal \ allows the delimiter to be included in the +pattern. Locked out the use of \ as a delimiter. If \ immediately follows +the final delimiter, add \ to the end of the pattern (to test the error). + +4. Added the convenience functions for extracting substrings after a successful +match. Updated pcretest to make it able to test these functions. + + +Version 2.02 14-Jan-99 +---------------------- + +1. Initialized the working variables associated with each extraction so that +their saving and restoring doesn't refer to uninitialized store. + +2. Put dummy code into study.c in order to trick the optimizer of the IBM C +compiler for OS/2 into generating correct code. Apparently IBM isn't going to +fix the problem. + +3. Pcretest: the timing code wasn't using LOOPREPEAT for timing execution +calls, and wasn't printing the correct value for compiling calls. Increased the +default value of LOOPREPEAT, and the number of significant figures in the +times. + +4. Changed "/bin/rm" in the Makefile to "-rm" so it works on Windows NT. + +5. Renamed "deftables" as "dftables" to get it down to 8 characters, to avoid +a building problem on Windows NT with a FAT file system. + + +Version 2.01 21-Oct-98 +---------------------- + +1. Changed the API for pcre_compile() to allow for the provision of a pointer +to character tables built by pcre_maketables() in the current locale. If NULL +is passed, the default tables are used. + + +Version 2.00 24-Sep-98 +---------------------- + +1. Since the (>?) facility is in Perl 5.005, don't require PCRE_EXTRA to enable +it any more. + +2. Allow quantification of (?>) groups, and make it work correctly. + +3. The first character computation wasn't working for (?>) groups. + +4. Correct the implementation of \Z (it is permitted to match on the \n at the +end of the subject) and add 5.005's \z, which really does match only at the +very end of the subject. + +5. Remove the \X "cut" facility; Perl doesn't have it, and (?> is neater. + +6. Remove the ability to specify CASELESS, MULTILINE, DOTALL, and +DOLLAR_END_ONLY at runtime, to make it possible to implement the Perl 5.005 +localized options. All options to pcre_study() were also removed. + +7. Add other new features from 5.005: + + $(?<= positive lookbehind + $(?a*))*/ (a PCRE_EXTRA facility). + + +Version 1.00 18-Nov-97 +---------------------- + +1. Added compile-time macros to support systems such as SunOS4 which don't have +memmove() or strerror() but have other things that can be used instead. + +2. Arranged that "make clean" removes the executables. + + +Version 0.99 27-Oct-97 +---------------------- + +1. Fixed bug in code for optimizing classes with only one character. It was +initializing a 32-byte map regardless, which could cause it to run off the end +of the memory it had got. + +2. Added, conditional on PCRE_EXTRA, the proposed (?>REGEX) construction. + + +Version 0.98 22-Oct-97 +---------------------- + +1. Fixed bug in code for handling temporary memory usage when there are more +back references than supplied space in the ovector. This could cause segfaults. + + +Version 0.97 21-Oct-97 +---------------------- + +1. Added the \X "cut" facility, conditional on PCRE_EXTRA. + +2. Optimized negated single characters not to use a bit map. + +3. Brought error texts together as macro definitions; clarified some of them; +fixed one that was wrong - it said "range out of order" when it meant "invalid +escape sequence". + +4. Changed some char * arguments to const char *. + +5. Added PCRE_NOTBOL and PCRE_NOTEOL (from POSIX). + +6. Added the POSIX-style API wrapper in pcreposix.a and testing facilities in +pcretest. + + +Version 0.96 16-Oct-97 +---------------------- + +1. Added a simple "pgrep" utility to the distribution. + +2. Fixed an incompatibility with Perl: "{" is now treated as a normal character +unless it appears in one of the precise forms "{ddd}", "{ddd,}", or "{ddd,ddd}" +where "ddd" means "one or more decimal digits". + +3. Fixed serious bug. If a pattern had a back reference, but the call to +pcre_exec() didn't supply a large enough ovector to record the related +identifying subpattern, the match always failed. PCRE now remembers the number +of the largest back reference, and gets some temporary memory in which to save +the offsets during matching if necessary, in order to ensure that +backreferences always work. + +4. Increased the compatibility with Perl in a number of ways: + + (a) . no longer matches \n by default; an option PCRE_DOTALL is provided + to request this handling. The option can be set at compile or exec time. + + (b) $ matches before a terminating newline by default; an option + PCRE_DOLLAR_ENDONLY is provided to override this (but not in multiline + mode). The option can be set at compile or exec time. + + (c) The handling of \ followed by a digit other than 0 is now supposed to be + the same as Perl's. If the decimal number it represents is less than 10 + or there aren't that many previous left capturing parentheses, an octal + escape is read. Inside a character class, it's always an octal escape, + even if it is a single digit. + + (d) An escaped but undefined alphabetic character is taken as a literal, + unless PCRE_EXTRA is set. Currently this just reserves the remaining + escapes. + + (e) {0} is now permitted. (The previous item is removed from the compiled + pattern). + +5. Changed all the names of code files so that the basic parts are no longer +than 10 characters, and abolished the teeny "globals.c" file. + +6. Changed the handling of character classes; they are now done with a 32-byte +bit map always. + +7. Added the -d and /D options to pcretest to make it possible to look at the +internals of compilation without having to recompile pcre. + + +Version 0.95 23-Sep-97 +---------------------- + +1. Fixed bug in pre-pass concerning escaped "normal" characters such as \x5c or +\x20 at the start of a run of normal characters. These were being treated as +real characters, instead of the source characters being re-checked. + + +Version 0.94 18-Sep-97 +---------------------- + +1. The functions are now thread-safe, with the caveat that the global variables +containing pointers to malloc() and free() or alternative functions are the +same for all threads. + +2. Get pcre_study() to generate a bitmap of initial characters for non- +anchored patterns when this is possible, and use it if passed to pcre_exec(). + + +Version 0.93 15-Sep-97 +---------------------- + +1. /(b)|(:+)/ was computing an incorrect first character. + +2. Add pcre_study() to the API and the passing of pcre_extra to pcre_exec(), +but not actually doing anything yet. + +3. Treat "-" characters in classes that cannot be part of ranges as literals, +as Perl does (e.g. [-az] or [az-]). + +4. Set the anchored flag if a branch starts with .* or .*? because that tests +all possible positions. + +5. Split up into different modules to avoid including unneeded functions in a +compiled binary. However, compile and exec are still in one module. The "study" +function is split off. + +6. The character tables are now in a separate module whose source is generated +by an auxiliary program - but can then be edited by hand if required. There are +now no calls to isalnum(), isspace(), isdigit(), isxdigit(), tolower() or +toupper() in the code. + +7. Turn the malloc/free funtions variables into pcre_malloc and pcre_free and +make them global. Abolish the function for setting them, as the caller can now +set them directly. + + +Version 0.92 11-Sep-97 +---------------------- + +1. A repeat with a fixed maximum and a minimum of 1 for an ordinary character +(e.g. /a{1,3}/) was broken (I mis-optimized it). + +2. Caseless matching was not working in character classes if the characters in +the pattern were in upper case. + +3. Make ranges like [W-c] work in the same way as Perl for caseless matching. + +4. Make PCRE_ANCHORED public and accept as a compile option. + +5. Add an options word to pcre_exec() and accept PCRE_ANCHORED and +PCRE_CASELESS at run time. Add escapes \A and \I to pcretest to cause it to +pass them. + +6. Give an error if bad option bits passed at compile or run time. + +7. Add PCRE_MULTILINE at compile and exec time, and (?m) as well. Add \M to +pcretest to cause it to pass that flag. + +8. Add pcre_info(), to get the number of identifying subpatterns, the stored +options, and the first character, if set. + +9. Recognize C+ or C{n,m} where n >= 1 as providing a fixed starting character. + + +Version 0.91 10-Sep-97 +---------------------- + +1. PCRE was failing to diagnose unlimited repeats of subpatterns that could +match the empty string as in /(a*)*/. It was looping and ultimately crashing. + +2. PCRE was looping on encountering an indefinitely repeated back reference to +a subpattern that had matched an empty string, e.g. /(a|)\1*/. It now does what +Perl does - treats the match as successful. + +**** diff --git a/pcre/doc/NON-UNIX-USE b/pcre/doc/NON-UNIX-USE new file mode 100644 index 00000000..09a74324 --- /dev/null +++ b/pcre/doc/NON-UNIX-USE @@ -0,0 +1,50 @@ +Compiling PCRE on non-Unix systems +---------------------------------- + +If you want to compile PCRE for a non-Unix system, note that it consists +entirely of code written in Standard C, and so should compile successfully +on any machine with a Standard C compiler and library, using normal compiling +commands to do the following: + +(1) Copy or rename the file config.in as config.h, and change the macros that +define HAVE_STRERROR and HAVE_MEMMOVE to define them as 1 rather than 0. +Unfortunately, because of the way Unix autoconf works, the default setting has +to be 0. + +(2) Copy or rename the file pcre.in as pcre.h, and change the macro definitions +for PCRE_MAJOR, PCRE_MINOR, and PCRE_DATE near its start to the values set in +configure.in. + +(3) Compile dftables.c as a stand-alone program, and then run it with +the standard output sent to chartables.c. This generates a set of standard +character tables. + +(4) Compile maketables.c, get.c, study.c and pcre.c and link them all +together into an object library in whichever form your system keeps such +libraries. This is the pcre library (chartables.c gets included by means of an +#include directive). + +(5) Similarly, compile pcreposix.c and link it as the pcreposix library. + +(6) Compile the test program pcretest.c. This needs the functions in the +pcre and pcreposix libraries when linking. + +(7) Run pcretest on the testinput files in the testdata directory, and check +that the output matches the corresponding testoutput files. You must use the +-i option when checking testinput2. + +If you have a system without "configure" but where you can use a Makefile, edit +Makefile.in to create Makefile, substituting suitable values for the variables +at the head of the file. + +Some help in building a Win32 DLL of PCRE in GnuWin32 environments was +contributed by Paul.Sokolovsky@technologist.com. These environments are +Mingw32 (http://www.xraylith.wisc.edu/~khan/software/gnu-win32/) and +CygWin (http://sourceware.cygnus.com/cygwin/). Paul comments: + + For CygWin, set CFLAGS=-mno-cygwin, and do 'make dll'. You'll get + pcre.dll (containing pcreposix also), libpcre.dll.a, and dynamically + linked pgrep and pcretest. If you have /bin/sh, run RunTest (three + main test go ok, locale not supported). + +**** diff --git a/pcre/doc/Tech.Notes b/pcre/doc/Tech.Notes new file mode 100644 index 00000000..7b96e5b6 --- /dev/null +++ b/pcre/doc/Tech.Notes @@ -0,0 +1,243 @@ +Technical Notes about PCRE +-------------------------- + +Many years ago I implemented some regular expression functions to an algorithm +suggested by Martin Richards. These were not Unix-like in form, and were quite +restricted in what they could do by comparison with Perl. The interesting part +about the algorithm was that the amount of space required to hold the compiled +form of an expression was known in advance. The code to apply an expression did +not operate by backtracking, as the Henry Spencer and Perl code does, but +instead checked all possibilities simultaneously by keeping a list of current +states and checking all of them as it advanced through the subject string. (In +the terminology of Jeffrey Friedl's book, it was a "DFA algorithm".) When the +pattern was all used up, all remaining states were possible matches, and the +one matching the longest subset of the subject string was chosen. This did not +necessarily maximize the individual wild portions of the pattern, as is +expected in Unix and Perl-style regular expressions. + +By contrast, the code originally written by Henry Spencer and subsequently +heavily modified for Perl actually compiles the expression twice: once in a +dummy mode in order to find out how much store will be needed, and then for +real. The execution function operates by backtracking and maximizing (or, +optionally, minimizing in Perl) the amount of the subject that matches +individual wild portions of the pattern. This is an "NFA algorithm" in Friedl's +terminology. + +For the set of functions that forms PCRE (which are unrelated to those +mentioned above), I tried at first to invent an algorithm that used an amount +of store bounded by a multiple of the number of characters in the pattern, to +save on compiling time. However, because of the greater complexity in Perl +regular expressions, I couldn't do this. In any case, a first pass through the +pattern is needed, in order to find internal flag settings like (?i) at top +level. So PCRE works by running a very degenerate first pass to calculate a +maximum store size, and then a second pass to do the real compile - which may +use a bit less than the predicted amount of store. The idea is that this is +going to turn out faster because the first pass is degenerate and the second +pass can just store stuff straight into the vector. It does make the compiling +functions bigger, of course, but they have got quite big anyway to handle all +the Perl stuff. + +The compiled form of a pattern is a vector of bytes, containing items of +variable length. The first byte in an item is an opcode, and the length of the +item is either implicit in the opcode or contained in the data bytes which +follow it. A list of all the opcodes follows: + +Opcodes with no following data +------------------------------ + +These items are all just one byte long + + OP_END end of pattern + OP_ANY match any character + OP_SOD match start of data: \A + OP_CIRC ^ (start of data, or after \n in multiline) + OP_NOT_WORD_BOUNDARY \W + OP_WORD_BOUNDARY \w + OP_NOT_DIGIT \D + OP_DIGIT \d + OP_NOT_WHITESPACE \S + OP_WHITESPACE \s + OP_NOT_WORDCHAR \W + OP_WORDCHAR \w + OP_EODN match end of data or \n at end: \Z + OP_EOD match end of data: \z + OP_DOLL $ (end of data, or before \n in multiline) + OP_RECURSE match the pattern recursively + + +Repeating single characters +--------------------------- + +The common repeats (*, +, ?) when applied to a single character appear as +two-byte items using the following opcodes: + + OP_STAR + OP_MINSTAR + OP_PLUS + OP_MINPLUS + OP_QUERY + OP_MINQUERY + +Those with "MIN" in their name are the minimizing versions. Each is followed by +the character that is to be repeated. Other repeats make use of + + OP_UPTO + OP_MINUPTO + OP_EXACT + +which are followed by a two-byte count (most significant first) and the +repeated character. OP_UPTO matches from 0 to the given number. A repeat with a +non-zero minimum and a fixed maximum is coded as an OP_EXACT followed by an +OP_UPTO (or OP_MINUPTO). + + +Repeating character types +------------------------- + +Repeats of things like \d are done exactly as for single characters, except +that instead of a character, the opcode for the type is stored in the data +byte. The opcodes are: + + OP_TYPESTAR + OP_TYPEMINSTAR + OP_TYPEPLUS + OP_TYPEMINPLUS + OP_TYPEQUERY + OP_TYPEMINQUERY + OP_TYPEUPTO + OP_TYPEMINUPTO + OP_TYPEEXACT + + +Matching a character string +--------------------------- + +The OP_CHARS opcode is followed by a one-byte count and then that number of +characters. If there are more than 255 characters in sequence, successive +instances of OP_CHARS are used. + + +Character classes +----------------- + +OP_CLASS is used for a character class, provided there are at least two +characters in the class. If there is only one character, OP_CHARS is used for a +positive class, and OP_NOT for a negative one (that is, for something like +[^a]). Another set of repeating opcodes (OP_NOTSTAR etc.) are used for a +repeated, negated, single-character class. The normal ones (OP_STAR etc.) are +used for a repeated positive single-character class. + +OP_CLASS is followed by a 32-byte bit map containing a 1 bit for every +character that is acceptable. The bits are counted from the least significant +end of each byte. + + +Back references +--------------- + +OP_REF is followed by a single byte containing the reference number. + + +Repeating character classes and back references +----------------------------------------------- + +Single-character classes are handled specially (see above). This applies to +OP_CLASS and OP_REF. In both cases, the repeat information follows the base +item. The matching code looks at the following opcode to see if it is one of + + OP_CRSTAR + OP_CRMINSTAR + OP_CRPLUS + OP_CRMINPLUS + OP_CRQUERY + OP_CRMINQUERY + OP_CRRANGE + OP_CRMINRANGE + +All but the last two are just single-byte items. The others are followed by +four bytes of data, comprising the minimum and maximum repeat counts. + + +Brackets and alternation +------------------------ + +A pair of non-capturing (round) brackets is wrapped round each expression at +compile time, so alternation always happens in the context of brackets. +Non-capturing brackets use the opcode OP_BRA, while capturing brackets use +OP_BRA+1, OP_BRA+2, etc. [Note for North Americans: "bracket" to some English +speakers, including myself, can be round, square, curly, or pointy. Hence this +usage.] + +A bracket opcode is followed by two bytes which give the offset to the next +alternative OP_ALT or, if there aren't any branches, to the matching KET +opcode. Each OP_ALT is followed by two bytes giving the offset to the next one, +or to the KET opcode. + +OP_KET is used for subpatterns that do not repeat indefinitely, while +OP_KETRMIN and OP_KETRMAX are used for indefinite repetitions, minimally or +maximally respectively. All three are followed by two bytes giving (as a +positive number) the offset back to the matching BRA opcode. + +If a subpattern is quantified such that it is permitted to match zero times, it +is preceded by one of OP_BRAZERO or OP_BRAMINZERO. These are single-byte +opcodes which tell the matcher that skipping this subpattern entirely is a +valid branch. + +A subpattern with an indefinite maximum repetition is replicated in the +compiled data its minimum number of times (or once with a BRAZERO if the +minimum is zero), with the final copy terminating with a KETRMIN or KETRMAX as +appropriate. + +A subpattern with a bounded maximum repetition is replicated in a nested +fashion up to the maximum number of times, with BRAZERO or BRAMINZERO before +each replication after the minimum, so that, for example, (abc){2,5} is +compiled as (abc)(abc)((abc)((abc)(abc)?)?)?. The 200-bracket limit does not +apply to these internally generated brackets. + + +Assertions +---------- + +Forward assertions are just like other subpatterns, but starting with one of +the opcodes OP_ASSERT or OP_ASSERT_NOT. Backward assertions use the opcodes +OP_ASSERTBACK and OP_ASSERTBACK_NOT, and the first opcode inside the assertion +is OP_REVERSE, followed by a two byte count of the number of characters to move +back the pointer in the subject string. When operating in UTF-8 mode, the count +is a character count rather than a byte count. A separate count is present in +each alternative of a lookbehind assertion, allowing them to have different +fixed lengths. + + +Once-only subpatterns +--------------------- + +These are also just like other subpatterns, but they start with the opcode +OP_ONCE. + + +Conditional subpatterns +----------------------- + +These are like other subpatterns, but they start with the opcode OP_COND. If +the condition is a back reference, this is stored at the start of the +subpattern using the opcode OP_CREF followed by one byte containing the +reference number. Otherwise, a conditional subpattern will always start with +one of the assertions. + + +Changing options +---------------- + +If any of the /i, /m, or /s options are changed within a parenthesized group, +an OP_OPT opcode is compiled, followed by one byte containing the new settings +of these flags. If there are several alternatives in a group, there is an +occurrence of OP_OPT at the start of all those following the first options +change, to set appropriate options for the start of the alternative. +Immediately after the end of the group there is another such item to reset the +flags to their previous values. Other changes of flag within the pattern can be +handled entirely at compile time, and so do not cause anything to be put into +the compiled data. + + +Philip Hazel +August 2000 diff --git a/pcre/doc/authors b/pcre/doc/authors new file mode 100644 index 00000000..bfe1b5d8 --- /dev/null +++ b/pcre/doc/authors @@ -0,0 +1,6 @@ +Written by: Philip Hazel + +University of Cambridge Computing Service, +Cambridge, England. Phone: +44 1223 334714. + +Copyright (c) 1997-2000 University of Cambridge diff --git a/pcre/doc/copying b/pcre/doc/copying new file mode 100644 index 00000000..34d20db9 --- /dev/null +++ b/pcre/doc/copying @@ -0,0 +1,46 @@ +PCRE LICENCE +------------ + +PCRE is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. + +Written by: Philip Hazel + +University of Cambridge Computing Service, +Cambridge, England. Phone: +44 1223 334714. + +Copyright (c) 1997-2000 University of Cambridge + +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. In practice, this means that if you use + PCRE in software which you distribute to others, commercially or + otherwise, you must put a sentence like this + + Regular expression support is provided by the PCRE library package, + which is open source software, written by Philip Hazel, and copyright + by the University of Cambridge, England. + + somewhere reasonably visible in your documentation and in any relevant + files or online help data or similar. A reference to the ftp site for + the source, that is, to + + ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/ + + should also be given in the documentation. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. + +End diff --git a/pcre/doc/news b/pcre/doc/news new file mode 100644 index 00000000..56fccdfa --- /dev/null +++ b/pcre/doc/news @@ -0,0 +1,54 @@ +News about PCRE releases +------------------------ + +Release 3.3 01-Aug-00 +--------------------- + +There is some support for UTF-8 character strings. This is incomplete and +experimental. The documentation describes what is and what is not implemented. +Otherwise, this is just a bug-fixing release. + + +Release 3.0 01-Feb-00 +--------------------- + +1. A "configure" script is now used to configure PCRE for Unix systems. It +builds a Makefile, a config.h file, and the pcre-config script. + +2. PCRE is built as a shared library by default. + +3. There is support for POSIX classes such as [:alpha:]. + +5. There is an experimental recursion feature. + +---------------------------------------------------------------------------- + IMPORTANT FOR THOSE UPGRADING FROM VERSIONS BEFORE 2.00 + +Please note that there has been a change in the API such that a larger +ovector is required at matching time, to provide some additional workspace. +The new man page has details. This change was necessary in order to support +some of the new functionality in Perl 5.005. + + IMPORTANT FOR THOSE UPGRADING FROM VERSION 2.00 + +Another (I hope this is the last!) change has been made to the API for the +pcre_compile() function. An additional argument has been added to make it +possible to pass over a pointer to character tables built in the current +locale by pcre_maketables(). To use the default tables, this new arguement +should be passed as NULL. + + IMPORTANT FOR THOSE UPGRADING FROM VERSION 2.05 + +Yet another (and again I hope this really is the last) change has been made +to the API for the pcre_exec() function. An additional argument has been +added to make it possible to start the match other than at the start of the +subject string. This is important if there are lookbehinds. The new man +page has the details, but you just want to convert existing programs, all +you need to do is to stick in a new fifth argument to pcre_exec(), with a +value of zero. For example, change + + pcre_exec(pattern, extra, subject, length, options, ovec, ovecsize) +to + pcre_exec(pattern, extra, subject, length, 0, options, ovec, ovecsize) + +**** diff --git a/pcre/doc/pcre.3 b/pcre/doc/pcre.3 new file mode 100644 index 00000000..bb812f47 --- /dev/null +++ b/pcre/doc/pcre.3 @@ -0,0 +1,1810 @@ +.TH PCRE 3 +.SH NAME +pcre - Perl-compatible regular expressions. +.SH SYNOPSIS +.B #include +.PP +.SM +.br +.B pcre *pcre_compile(const char *\fIpattern\fR, int \fIoptions\fR, +.ti +5n +.B const char **\fIerrptr\fR, int *\fIerroffset\fR, +.ti +5n +.B const unsigned char *\fItableptr\fR); +.PP +.br +.B pcre_extra *pcre_study(const pcre *\fIcode\fR, int \fIoptions\fR, +.ti +5n +.B const char **\fIerrptr\fR); +.PP +.br +.B int pcre_exec(const pcre *\fIcode\fR, "const pcre_extra *\fIextra\fR," +.ti +5n +.B "const char *\fIsubject\fR," int \fIlength\fR, int \fIstartoffset\fR, +.ti +5n +.B int \fIoptions\fR, int *\fIovector\fR, int \fIovecsize\fR); +.PP +.br +.B int pcre_copy_substring(const char *\fIsubject\fR, int *\fIovector\fR, +.ti +5n +.B int \fIstringcount\fR, int \fIstringnumber\fR, char *\fIbuffer\fR, +.ti +5n +.B int \fIbuffersize\fR); +.PP +.br +.B int pcre_get_substring(const char *\fIsubject\fR, int *\fIovector\fR, +.ti +5n +.B int \fIstringcount\fR, int \fIstringnumber\fR, +.ti +5n +.B const char **\fIstringptr\fR); +.PP +.br +.B int pcre_get_substring_list(const char *\fIsubject\fR, +.ti +5n +.B int *\fIovector\fR, int \fIstringcount\fR, "const char ***\fIlistptr\fR);" +.PP +.br +.B void pcre_free_substring(const char *\fIstringptr\fR); +.PP +.br +.B void pcre_free_substring_list(const char **\fIstringptr\fR); +.PP +.br +.B const unsigned char *pcre_maketables(void); +.PP +.br +.B int pcre_fullinfo(const pcre *\fIcode\fR, "const pcre_extra *\fIextra\fR," +.ti +5n +.B int \fIwhat\fR, void *\fIwhere\fR); +.PP +.br +.B int pcre_info(const pcre *\fIcode\fR, int *\fIoptptr\fR, int +.B *\fIfirstcharptr\fR); +.PP +.br +.B char *pcre_version(void); +.PP +.br +.B void *(*pcre_malloc)(size_t); +.PP +.br +.B void (*pcre_free)(void *); + + + +.SH DESCRIPTION +The PCRE library is a set of functions that implement regular expression +pattern matching using the same syntax and semantics as Perl 5, with just a few +differences (see below). The current implementation corresponds to Perl 5.005, +with some additional features from later versions. This includes some +experimental, incomplete support for UTF-8 encoded strings. Details of exactly +what is and what is not supported are given below. + +PCRE has its own native API, which is described in this document. There is also +a set of wrapper functions that correspond to the POSIX regular expression API. +These are described in the \fBpcreposix\fR documentation. + +The native API function prototypes are defined in the header file \fBpcre.h\fR, +and on Unix systems the library itself is called \fBlibpcre.a\fR, so can be +accessed by adding \fB-lpcre\fR to the command for linking an application which +calls it. The header file defines the macros PCRE_MAJOR and PCRE_MINOR to +contain the major and minor release numbers for the library. Applications can +use these to include support for different releases. + +The functions \fBpcre_compile()\fR, \fBpcre_study()\fR, and \fBpcre_exec()\fR +are used for compiling and matching regular expressions. + +The functions \fBpcre_copy_substring()\fR, \fBpcre_get_substring()\fR, and +\fBpcre_get_substring_list()\fR are convenience functions for extracting +captured substrings from a matched subject string; \fBpcre_free_substring()\fR +and \fBpcre_free_substring_list()\fR are also provided, to free the memory used +for extracted strings. + +The function \fBpcre_maketables()\fR is used (optionally) to build a set of +character tables in the current locale for passing to \fBpcre_compile()\fR. + +The function \fBpcre_fullinfo()\fR is used to find out information about a +compiled pattern; \fBpcre_info()\fR is an obsolete version which returns only +some of the available information, but is retained for backwards compatibility. +The function \fBpcre_version()\fR returns a pointer to a string containing the +version of PCRE and its date of release. + +The global variables \fBpcre_malloc\fR and \fBpcre_free\fR initially contain +the entry points of the standard \fBmalloc()\fR and \fBfree()\fR functions +respectively. PCRE calls the memory management functions via these variables, +so a calling program can replace them if it wishes to intercept the calls. This +should be done before calling any PCRE functions. + + +.SH MULTI-THREADING +The PCRE functions can be used in multi-threading applications, with the +proviso that the memory management functions pointed to by \fBpcre_malloc\fR +and \fBpcre_free\fR are shared by all threads. + +The compiled form of a regular expression is not altered during matching, so +the same compiled pattern can safely be used by several threads at once. + + +.SH COMPILING A PATTERN +The function \fBpcre_compile()\fR is called to compile a pattern into an +internal form. The pattern is a C string terminated by a binary zero, and +is passed in the argument \fIpattern\fR. A pointer to a single block of memory +that is obtained via \fBpcre_malloc\fR is returned. This contains the +compiled code and related data. The \fBpcre\fR type is defined for this for +convenience, but in fact \fBpcre\fR is just a typedef for \fBvoid\fR, since the +contents of the block are not externally defined. It is up to the caller to +free the memory when it is no longer required. +.PP +The size of a compiled pattern is roughly proportional to the length of the +pattern string, except that each character class (other than those containing +just a single character, negated or not) requires 33 bytes, and repeat +quantifiers with a minimum greater than one or a bounded maximum cause the +relevant portions of the compiled pattern to be replicated. +.PP +The \fIoptions\fR argument contains independent bits that affect the +compilation. It should be zero if no options are required. Some of the options, +in particular, those that are compatible with Perl, can also be set and unset +from within the pattern (see the detailed description of regular expressions +below). For these options, the contents of the \fIoptions\fR argument specifies +their initial settings at the start of compilation and execution. The +PCRE_ANCHORED option can be set at the time of matching as well as at compile +time. +.PP +If \fIerrptr\fR is NULL, \fBpcre_compile()\fR returns NULL immediately. +Otherwise, if compilation of a pattern fails, \fBpcre_compile()\fR returns +NULL, and sets the variable pointed to by \fIerrptr\fR to point to a textual +error message. The offset from the start of the pattern to the character where +the error was discovered is placed in the variable pointed to by +\fIerroffset\fR, which must not be NULL. If it is, an immediate error is given. +.PP +If the final argument, \fItableptr\fR, is NULL, PCRE uses a default set of +character tables which are built when it is compiled, using the default C +locale. Otherwise, \fItableptr\fR must be the result of a call to +\fBpcre_maketables()\fR. See the section on locale support below. +.PP +The following option bits are defined in the header file: + + PCRE_ANCHORED + +If this bit is set, the pattern is forced to be "anchored", that is, it is +constrained to match only at the start of the string which is being searched +(the "subject string"). This effect can also be achieved by appropriate +constructs in the pattern itself, which is the only way to do it in Perl. + + PCRE_CASELESS + +If this bit is set, letters in the pattern match both upper and lower case +letters. It is equivalent to Perl's /i option. + + PCRE_DOLLAR_ENDONLY + +If this bit is set, a dollar metacharacter in the pattern matches only at the +end of the subject string. Without this option, a dollar also matches +immediately before the final character if it is a newline (but not before any +other newlines). The PCRE_DOLLAR_ENDONLY option is ignored if PCRE_MULTILINE is +set. There is no equivalent to this option in Perl. + + PCRE_DOTALL + +If this bit is set, a dot metacharater in the pattern matches all characters, +including newlines. Without it, newlines are excluded. This option is +equivalent to Perl's /s option. A negative class such as [^a] always matches a +newline character, independent of the setting of this option. + + PCRE_EXTENDED + +If this bit is set, whitespace data characters in the pattern are totally +ignored except when escaped or inside a character class, and characters between +an unescaped # outside a character class and the next newline character, +inclusive, are also ignored. This is equivalent to Perl's /x option, and makes +it possible to include comments inside complicated patterns. Note, however, +that this applies only to data characters. Whitespace characters may never +appear within special character sequences in a pattern, for example within the +sequence (?( which introduces a conditional subpattern. + + PCRE_EXTRA + +This option was invented in order to turn on additional functionality of PCRE +that is incompatible with Perl, but it is currently of very little use. When +set, any backslash in a pattern that is followed by a letter that has no +special meaning causes an error, thus reserving these combinations for future +expansion. By default, as in Perl, a backslash followed by a letter with no +special meaning is treated as a literal. There are at present no other features +controlled by this option. It can also be set by a (?X) option setting within a +pattern. + + PCRE_MULTILINE + +By default, PCRE treats the subject string as consisting of a single "line" of +characters (even if it actually contains several newlines). The "start of line" +metacharacter (^) matches only at the start of the string, while the "end of +line" metacharacter ($) matches only at the end of the string, or before a +terminating newline (unless PCRE_DOLLAR_ENDONLY is set). This is the same as +Perl. + +When PCRE_MULTILINE it is set, the "start of line" and "end of line" constructs +match immediately following or immediately before any newline in the subject +string, respectively, as well as at the very start and end. This is equivalent +to Perl's /m option. If there are no "\\n" characters in a subject string, or +no occurrences of ^ or $ in a pattern, setting PCRE_MULTILINE has no +effect. + + PCRE_UNGREEDY + +This option inverts the "greediness" of the quantifiers so that they are not +greedy by default, but become greedy if followed by "?". It is not compatible +with Perl. It can also be set by a (?U) option setting within the pattern. + + PCRE_UTF8 + +This option causes PCRE to regard both the pattern and the subject as strings +of UTF-8 characters instead of just byte strings. However, it is available only +if PCRE has been built to include UTF-8 support. If not, the use of this option +provokes an error. Support for UTF-8 is new, experimental, and incomplete. +Details of exactly what it entails are given below. + + +.SH STUDYING A PATTERN +When a pattern is going to be used several times, it is worth spending more +time analyzing it in order to speed up the time taken for matching. The +function \fBpcre_study()\fR takes a pointer to a compiled pattern as its first +argument, and returns a pointer to a \fBpcre_extra\fR block (another \fBvoid\fR +typedef) containing additional information about the pattern; this can be +passed to \fBpcre_exec()\fR. If no additional information is available, NULL +is returned. + +The second argument contains option bits. At present, no options are defined +for \fBpcre_study()\fR, and this argument should always be zero. + +The third argument for \fBpcre_study()\fR is a pointer to an error message. If +studying succeeds (even if no data is returned), the variable it points to is +set to NULL. Otherwise it points to a textual error message. + +At present, studying a pattern is useful only for non-anchored patterns that do +not have a single fixed starting character. A bitmap of possible starting +characters is created. + + +.SH LOCALE SUPPORT +PCRE handles caseless matching, and determines whether characters are letters, +digits, or whatever, by reference to a set of tables. The library contains a +default set of tables which is created in the default C locale when PCRE is +compiled. This is used when the final argument of \fBpcre_compile()\fR is NULL, +and is sufficient for many applications. + +An alternative set of tables can, however, be supplied. Such tables are built +by calling the \fBpcre_maketables()\fR function, which has no arguments, in the +relevant locale. The result can then be passed to \fBpcre_compile()\fR as often +as necessary. For example, to build and use tables that are appropriate for the +French locale (where accented characters with codes greater than 128 are +treated as letters), the following code could be used: + + setlocale(LC_CTYPE, "fr"); + tables = pcre_maketables(); + re = pcre_compile(..., tables); + +The tables are built in memory that is obtained via \fBpcre_malloc\fR. The +pointer that is passed to \fBpcre_compile\fR is saved with the compiled +pattern, and the same tables are used via this pointer by \fBpcre_study()\fR +and \fBpcre_exec()\fR. Thus for any single pattern, compilation, studying and +matching all happen in the same locale, but different patterns can be compiled +in different locales. It is the caller's responsibility to ensure that the +memory containing the tables remains available for as long as it is needed. + + +.SH INFORMATION ABOUT A PATTERN +The \fBpcre_fullinfo()\fR function returns information about a compiled +pattern. It replaces the obsolete \fBpcre_info()\fR function, which is +nevertheless retained for backwards compability (and is documented below). + +The first argument for \fBpcre_fullinfo()\fR is a pointer to the compiled +pattern. The second argument is the result of \fBpcre_study()\fR, or NULL if +the pattern was not studied. The third argument specifies which piece of +information is required, while the fourth argument is a pointer to a variable +to receive the data. The yield of the function is zero for success, or one of +the following negative numbers: + + PCRE_ERROR_NULL the argument \fIcode\fR was NULL + the argument \fIwhere\fR was NULL + PCRE_ERROR_BADMAGIC the "magic number" was not found + PCRE_ERROR_BADOPTION the value of \fIwhat\fR was invalid + +The possible values for the third argument are defined in \fBpcre.h\fR, and are +as follows: + + PCRE_INFO_OPTIONS + +Return a copy of the options with which the pattern was compiled. The fourth +argument should point to au \fBunsigned long int\fR variable. These option bits +are those specified in the call to \fBpcre_compile()\fR, modified by any +top-level option settings within the pattern itself, and with the PCRE_ANCHORED +bit forcibly set if the form of the pattern implies that it can match only at +the start of a subject string. + + PCRE_INFO_SIZE + +Return the size of the compiled pattern, that is, the value that was passed as +the argument to \fBpcre_malloc()\fR when PCRE was getting memory in which to +place the compiled data. The fourth argument should point to a \fBsize_t\fR +variable. + + PCRE_INFO_CAPTURECOUNT + +Return the number of capturing subpatterns in the pattern. The fourth argument +should point to an \fbint\fR variable. + + PCRE_INFO_BACKREFMAX + +Return the number of the highest back reference in the pattern. The fourth +argument should point to an \fBint\fR variable. Zero is returned if there are +no back references. + + PCRE_INFO_FIRSTCHAR + +Return information about the first character of any matched string, for a +non-anchored pattern. If there is a fixed first character, e.g. from a pattern +such as (cat|cow|coyote), it is returned in the integer pointed to by +\fIwhere\fR. Otherwise, if either + +(a) the pattern was compiled with the PCRE_MULTILINE option, and every branch +starts with "^", or + +(b) every branch of the pattern starts with ".*" and PCRE_DOTALL is not set +(if it were set, the pattern would be anchored), + +-1 is returned, indicating that the pattern matches only at the start of a +subject string or after any "\\n" within the string. Otherwise -2 is returned. +For anchored patterns, -2 is returned. + + PCRE_INFO_FIRSTTABLE + +If the pattern was studied, and this resulted in the construction of a 256-bit +table indicating a fixed set of characters for the first character in any +matching string, a pointer to the table is returned. Otherwise NULL is +returned. The fourth argument should point to an \fBunsigned char *\fR +variable. + + PCRE_INFO_LASTLITERAL + +For a non-anchored pattern, return the value of the rightmost literal character +which must exist in any matched string, other than at its start. The fourth +argument should point to an \fBint\fR variable. If there is no such character, +or if the pattern is anchored, -1 is returned. For example, for the pattern +/a\\d+z\\d+/ the returned value is 'z'. + +The \fBpcre_info()\fR function is now obsolete because its interface is too +restrictive to return all the available data about a compiled pattern. New +programs should use \fBpcre_fullinfo()\fR instead. The yield of +\fBpcre_info()\fR is the number of capturing subpatterns, or one of the +following negative numbers: + + PCRE_ERROR_NULL the argument \fIcode\fR was NULL + PCRE_ERROR_BADMAGIC the "magic number" was not found + +If the \fIoptptr\fR argument is not NULL, a copy of the options with which the +pattern was compiled is placed in the integer it points to (see +PCRE_INFO_OPTIONS above). + +If the pattern is not anchored and the \fIfirstcharptr\fR argument is not NULL, +it is used to pass back information about the first character of any matched +string (see PCRE_INFO_FIRSTCHAR above). + + +.SH MATCHING A PATTERN +The function \fBpcre_exec()\fR is called to match a subject string against a +pre-compiled pattern, which is passed in the \fIcode\fR argument. If the +pattern has been studied, the result of the study should be passed in the +\fIextra\fR argument. Otherwise this must be NULL. + +The PCRE_ANCHORED option can be passed in the \fIoptions\fR argument, whose +unused bits must be zero. However, if a pattern was compiled with +PCRE_ANCHORED, or turned out to be anchored by virtue of its contents, it +cannot be made unachored at matching time. + +There are also three further options that can be set only at matching time: + + PCRE_NOTBOL + +The first character of the string is not the beginning of a line, so the +circumflex metacharacter should not match before it. Setting this without +PCRE_MULTILINE (at compile time) causes circumflex never to match. + + PCRE_NOTEOL + +The end of the string is not the end of a line, so the dollar metacharacter +should not match it nor (except in multiline mode) a newline immediately before +it. Setting this without PCRE_MULTILINE (at compile time) causes dollar never +to match. + + PCRE_NOTEMPTY + +An empty string is not considered to be a valid match if this option is set. If +there are alternatives in the pattern, they are tried. If all the alternatives +match the empty string, the entire match fails. For example, if the pattern + + a?b? + +is applied to a string not beginning with "a" or "b", it matches the empty +string at the start of the subject. With PCRE_NOTEMPTY set, this match is not +valid, so PCRE searches further into the string for occurrences of "a" or "b". + +Perl has no direct equivalent of PCRE_NOTEMPTY, but it does make a special case +of a pattern match of the empty string within its \fBsplit()\fR function, and +when using the /g modifier. It is possible to emulate Perl's behaviour after +matching a null string by first trying the match again at the same offset with +PCRE_NOTEMPTY set, and then if that fails by advancing the starting offset (see +below) and trying an ordinary match again. + +The subject string is passed as a pointer in \fIsubject\fR, a length in +\fIlength\fR, and a starting offset in \fIstartoffset\fR. Unlike the pattern +string, it may contain binary zero characters. When the starting offset is +zero, the search for a match starts at the beginning of the subject, and this +is by far the most common case. + +A non-zero starting offset is useful when searching for another match in the +same subject by calling \fBpcre_exec()\fR again after a previous success. +Setting \fIstartoffset\fR differs from just passing over a shortened string and +setting PCRE_NOTBOL in the case of a pattern that begins with any kind of +lookbehind. For example, consider the pattern + + \\Biss\\B + +which finds occurrences of "iss" in the middle of words. (\\B matches only if +the current position in the subject is not a word boundary.) When applied to +the string "Mississipi" the first call to \fBpcre_exec()\fR finds the first +occurrence. If \fBpcre_exec()\fR is called again with just the remainder of the +subject, namely "issipi", it does not match, because \\B is always false at the +start of the subject, which is deemed to be a word boundary. However, if +\fBpcre_exec()\fR is passed the entire string again, but with \fIstartoffset\fR +set to 4, it finds the second occurrence of "iss" because it is able to look +behind the starting point to discover that it is preceded by a letter. + +If a non-zero starting offset is passed when the pattern is anchored, one +attempt to match at the given offset is tried. This can only succeed if the +pattern does not require the match to be at the start of the subject. + +In general, a pattern matches a certain portion of the subject, and in +addition, further substrings from the subject may be picked out by parts of the +pattern. Following the usage in Jeffrey Friedl's book, this is called +"capturing" in what follows, and the phrase "capturing subpattern" is used for +a fragment of a pattern that picks out a substring. PCRE supports several other +kinds of parenthesized subpattern that do not cause substrings to be captured. + +Captured substrings are returned to the caller via a vector of integer offsets +whose address is passed in \fIovector\fR. The number of elements in the vector +is passed in \fIovecsize\fR. The first two-thirds of the vector is used to pass +back captured substrings, each substring using a pair of integers. The +remaining third of the vector is used as workspace by \fBpcre_exec()\fR while +matching capturing subpatterns, and is not available for passing back +information. The length passed in \fIovecsize\fR should always be a multiple of +three. If it is not, it is rounded down. + +When a match has been successful, information about captured substrings is +returned in pairs of integers, starting at the beginning of \fIovector\fR, and +continuing up to two-thirds of its length at the most. The first element of a +pair is set to the offset of the first character in a substring, and the second +is set to the offset of the first character after the end of a substring. The +first pair, \fIovector[0]\fR and \fIovector[1]\fR, identify the portion of the +subject string matched by the entire pattern. The next pair is used for the +first capturing subpattern, and so on. The value returned by \fBpcre_exec()\fR +is the number of pairs that have been set. If there are no capturing +subpatterns, the return value from a successful match is 1, indicating that +just the first pair of offsets has been set. + +Some convenience functions are provided for extracting the captured substrings +as separate strings. These are described in the following section. + +It is possible for an capturing subpattern number \fIn+1\fR to match some +part of the subject when subpattern \fIn\fR has not been used at all. For +example, if the string "abc" is matched against the pattern (a|(z))(bc) +subpatterns 1 and 3 are matched, but 2 is not. When this happens, both offset +values corresponding to the unused subpattern are set to -1. + +If a capturing subpattern is matched repeatedly, it is the last portion of the +string that it matched that gets returned. + +If the vector is too small to hold all the captured substrings, it is used as +far as possible (up to two-thirds of its length), and the function returns a +value of zero. In particular, if the substring offsets are not of interest, +\fBpcre_exec()\fR may be called with \fIovector\fR passed as NULL and +\fIovecsize\fR as zero. However, if the pattern contains back references and +the \fIovector\fR isn't big enough to remember the related substrings, PCRE has +to get additional memory for use during matching. Thus it is usually advisable +to supply an \fIovector\fR. + +Note that \fBpcre_info()\fR can be used to find out how many capturing +subpatterns there are in a compiled pattern. The smallest size for +\fIovector\fR that will allow for \fIn\fR captured substrings in addition to +the offsets of the substring matched by the whole pattern is (\fIn\fR+1)*3. + +If \fBpcre_exec()\fR fails, it returns a negative number. The following are +defined in the header file: + + PCRE_ERROR_NOMATCH (-1) + +The subject string did not match the pattern. + + PCRE_ERROR_NULL (-2) + +Either \fIcode\fR or \fIsubject\fR was passed as NULL, or \fIovector\fR was +NULL and \fIovecsize\fR was not zero. + + PCRE_ERROR_BADOPTION (-3) + +An unrecognized bit was set in the \fIoptions\fR argument. + + PCRE_ERROR_BADMAGIC (-4) + +PCRE stores a 4-byte "magic number" at the start of the compiled code, to catch +the case when it is passed a junk pointer. This is the error it gives when the +magic number isn't present. + + PCRE_ERROR_UNKNOWN_NODE (-5) + +While running the pattern match, an unknown item was encountered in the +compiled pattern. This error could be caused by a bug in PCRE or by overwriting +of the compiled pattern. + + PCRE_ERROR_NOMEMORY (-6) + +If a pattern contains back references, but the \fIovector\fR that is passed to +\fBpcre_exec()\fR is not big enough to remember the referenced substrings, PCRE +gets a block of memory at the start of matching to use for this purpose. If the +call via \fBpcre_malloc()\fR fails, this error is given. The memory is freed at +the end of matching. + + +.SH EXTRACTING CAPTURED SUBSTRINGS +Captured substrings can be accessed directly by using the offsets returned by +\fBpcre_exec()\fR in \fIovector\fR. For convenience, the functions +\fBpcre_copy_substring()\fR, \fBpcre_get_substring()\fR, and +\fBpcre_get_substring_list()\fR are provided for extracting captured substrings +as new, separate, zero-terminated strings. A substring that contains a binary +zero is correctly extracted and has a further zero added on the end, but the +result does not, of course, function as a C string. + +The first three arguments are the same for all three functions: \fIsubject\fR +is the subject string which has just been successfully matched, \fIovector\fR +is a pointer to the vector of integer offsets that was passed to +\fBpcre_exec()\fR, and \fIstringcount\fR is the number of substrings that +were captured by the match, including the substring that matched the entire +regular expression. This is the value returned by \fBpcre_exec\fR if it +is greater than zero. If \fBpcre_exec()\fR returned zero, indicating that it +ran out of space in \fIovector\fR, the value passed as \fIstringcount\fR should +be the size of the vector divided by three. + +The functions \fBpcre_copy_substring()\fR and \fBpcre_get_substring()\fR +extract a single substring, whose number is given as \fIstringnumber\fR. A +value of zero extracts the substring that matched the entire pattern, while +higher values extract the captured substrings. For \fBpcre_copy_substring()\fR, +the string is placed in \fIbuffer\fR, whose length is given by +\fIbuffersize\fR, while for \fBpcre_get_substring()\fR a new block of memory is +obtained via \fBpcre_malloc\fR, and its address is returned via +\fIstringptr\fR. The yield of the function is the length of the string, not +including the terminating zero, or one of + + PCRE_ERROR_NOMEMORY (-6) + +The buffer was too small for \fBpcre_copy_substring()\fR, or the attempt to get +memory failed for \fBpcre_get_substring()\fR. + + PCRE_ERROR_NOSUBSTRING (-7) + +There is no substring whose number is \fIstringnumber\fR. + +The \fBpcre_get_substring_list()\fR function extracts all available substrings +and builds a list of pointers to them. All this is done in a single block of +memory which is obtained via \fBpcre_malloc\fR. The address of the memory block +is returned via \fIlistptr\fR, which is also the start of the list of string +pointers. The end of the list is marked by a NULL pointer. The yield of the +function is zero if all went well, or + + PCRE_ERROR_NOMEMORY (-6) + +if the attempt to get the memory block failed. + +When any of these functions encounter a substring that is unset, which can +happen when capturing subpattern number \fIn+1\fR matches some part of the +subject, but subpattern \fIn\fR has not been used at all, they return an empty +string. This can be distinguished from a genuine zero-length substring by +inspecting the appropriate offset in \fIovector\fR, which is negative for unset +substrings. + +The two convenience functions \fBpcre_free_substring()\fR and +\fBpcre_free_substring_list()\fR can be used to free the memory returned by +a previous call of \fBpcre_get_substring()\fR or +\fBpcre_get_substring_list()\fR, respectively. They do nothing more than call +the function pointed to by \fBpcre_free\fR, which of course could be called +directly from a C program. However, PCRE is used in some situations where it is +linked via a special interface to another programming language which cannot use +\fBpcre_free\fR directly; it is for these cases that the functions are +provided. + + +.SH LIMITATIONS +There are some size limitations in PCRE but it is hoped that they will never in +practice be relevant. +The maximum length of a compiled pattern is 65539 (sic) bytes. +All values in repeating quantifiers must be less than 65536. +The maximum number of capturing subpatterns is 99. +The maximum number of all parenthesized subpatterns, including capturing +subpatterns, assertions, and other types of subpattern, is 200. + +The maximum length of a subject string is the largest positive number that an +integer variable can hold. However, PCRE uses recursion to handle subpatterns +and indefinite repetition. This means that the available stack space may limit +the size of a subject string that can be processed by certain patterns. + + +.SH DIFFERENCES FROM PERL +The differences described here are with respect to Perl 5.005. + +1. By default, a whitespace character is any character that the C library +function \fBisspace()\fR recognizes, though it is possible to compile PCRE with +alternative character type tables. Normally \fBisspace()\fR matches space, +formfeed, newline, carriage return, horizontal tab, and vertical tab. Perl 5 +no longer includes vertical tab in its set of whitespace characters. The \\v +escape that was in the Perl documentation for a long time was never in fact +recognized. However, the character itself was treated as whitespace at least +up to 5.002. In 5.004 and 5.005 it does not match \\s. + +2. PCRE does not allow repeat quantifiers on lookahead assertions. Perl permits +them, but they do not mean what you might think. For example, (?!a){3} does +not assert that the next three characters are not "a". It just asserts that the +next character is not "a" three times. + +3. Capturing subpatterns that occur inside negative lookahead assertions are +counted, but their entries in the offsets vector are never set. Perl sets its +numerical variables from any such patterns that are matched before the +assertion fails to match something (thereby succeeding), but only if the +negative lookahead assertion contains just one branch. + +4. Though binary zero characters are supported in the subject string, they are +not allowed in a pattern string because it is passed as a normal C string, +terminated by zero. The escape sequence "\\0" can be used in the pattern to +represent a binary zero. + +5. The following Perl escape sequences are not supported: \\l, \\u, \\L, \\U, +\\E, \\Q. In fact these are implemented by Perl's general string-handling and +are not part of its pattern matching engine. + +6. The Perl \\G assertion is not supported as it is not relevant to single +pattern matches. + +7. Fairly obviously, PCRE does not support the (?{code}) and (?p{code}) +constructions. However, there is some experimental support for recursive +patterns using the non-Perl item (?R). + +8. There are at the time of writing some oddities in Perl 5.005_02 concerned +with the settings of captured strings when part of a pattern is repeated. For +example, matching "aba" against the pattern /^(a(b)?)+$/ sets $2 to the value +"b", but matching "aabbaa" against /^(aa(bb)?)+$/ leaves $2 unset. However, if +the pattern is changed to /^(aa(b(b))?)+$/ then $2 (and $3) are set. + +In Perl 5.004 $2 is set in both cases, and that is also true of PCRE. If in the +future Perl changes to a consistent state that is different, PCRE may change to +follow. + +9. Another as yet unresolved discrepancy is that in Perl 5.005_02 the pattern +/^(a)?(?(1)a|b)+$/ matches the string "a", whereas in PCRE it does not. +However, in both Perl and PCRE /^(a)?a/ matched against "a" leaves $1 unset. + +10. PCRE provides some extensions to the Perl regular expression facilities: + +(a) Although lookbehind assertions must match fixed length strings, each +alternative branch of a lookbehind assertion can match a different length of +string. Perl 5.005 requires them all to have the same length. + +(b) If PCRE_DOLLAR_ENDONLY is set and PCRE_MULTILINE is not set, the $ meta- +character matches only at the very end of the string. + +(c) If PCRE_EXTRA is set, a backslash followed by a letter with no special +meaning is faulted. + +(d) If PCRE_UNGREEDY is set, the greediness of the repetition quantifiers is +inverted, that is, by default they are not greedy, but if followed by a +question mark they are. + +(e) PCRE_ANCHORED can be used to force a pattern to be tried only at the start +of the subject. + +(f) The PCRE_NOTBOL, PCRE_NOTEOL, and PCRE_NOTEMPTY options for +\fBpcre_exec()\fR have no Perl equivalents. + +(g) The (?R) construct allows for recursive pattern matching (Perl 5.6 can do +this using the (?p{code}) construct, which PCRE cannot of course support.) + + +.SH REGULAR EXPRESSION DETAILS +The syntax and semantics of the regular expressions supported by PCRE are +described below. Regular expressions are also described in the Perl +documentation and in a number of other books, some of which have copious +examples. Jeffrey Friedl's "Mastering Regular Expressions", published by +O'Reilly (ISBN 1-56592-257), covers them in great detail. + +The description here is intended as reference documentation. The basic +operation of PCRE is on strings of bytes. However, there is the beginnings of +some support for UTF-8 character strings. To use this support you must +configure PCRE to include it, and then call \fBpcre_compile()\fR with the +PCRE_UTF8 option. How this affects the pattern matching is described in the +final section of this document. + +A regular expression is a pattern that is matched against a subject string from +left to right. Most characters stand for themselves in a pattern, and match the +corresponding characters in the subject. As a trivial example, the pattern + + The quick brown fox + +matches a portion of a subject string that is identical to itself. The power of +regular expressions comes from the ability to include alternatives and +repetitions in the pattern. These are encoded in the pattern by the use of +\fImeta-characters\fR, which do not stand for themselves but instead are +interpreted in some special way. + +There are two different sets of meta-characters: those that are recognized +anywhere in the pattern except within square brackets, and those that are +recognized in square brackets. Outside square brackets, the meta-characters are +as follows: + + \\ general escape character with several uses + ^ assert start of subject (or line, in multiline mode) + $ assert end of subject (or line, in multiline mode) + . match any character except newline (by default) + [ start character class definition + | start of alternative branch + ( start subpattern + ) end subpattern + ? extends the meaning of ( + also 0 or 1 quantifier + also quantifier minimizer + * 0 or more quantifier + + 1 or more quantifier + { start min/max quantifier + +Part of a pattern that is in square brackets is called a "character class". In +a character class the only meta-characters are: + + \\ general escape character + ^ negate the class, but only if the first character + - indicates character range + ] terminates the character class + +The following sections describe the use of each of the meta-characters. + + +.SH BACKSLASH +The backslash character has several uses. Firstly, if it is followed by a +non-alphameric character, it takes away any special meaning that character may +have. This use of backslash as an escape character applies both inside and +outside character classes. + +For example, if you want to match a "*" character, you write "\\*" in the +pattern. This applies whether or not the following character would otherwise be +interpreted as a meta-character, so it is always safe to precede a +non-alphameric with "\\" to specify that it stands for itself. In particular, +if you want to match a backslash, you write "\\\\". + +If a pattern is compiled with the PCRE_EXTENDED option, whitespace in the +pattern (other than in a character class) and characters between a "#" outside +a character class and the next newline character are ignored. An escaping +backslash can be used to include a whitespace or "#" character as part of the +pattern. + +A second use of backslash provides a way of encoding non-printing characters +in patterns in a visible manner. There is no restriction on the appearance of +non-printing characters, apart from the binary zero that terminates a pattern, +but when a pattern is being prepared by text editing, it is usually easier to +use one of the following escape sequences than the binary character it +represents: + + \\a alarm, that is, the BEL character (hex 07) + \\cx "control-x", where x is any character + \\e escape (hex 1B) + \\f formfeed (hex 0C) + \\n newline (hex 0A) + \\r carriage return (hex 0D) + \\t tab (hex 09) + \\xhh character with hex code hh + \\ddd character with octal code ddd, or backreference + +The precise effect of "\\cx" is as follows: if "x" is a lower case letter, it +is converted to upper case. Then bit 6 of the character (hex 40) is inverted. +Thus "\\cz" becomes hex 1A, but "\\c{" becomes hex 3B, while "\\c;" becomes hex +7B. + +After "\\x", up to two hexadecimal digits are read (letters can be in upper or +lower case). + +After "\\0" up to two further octal digits are read. In both cases, if there +are fewer than two digits, just those that are present are used. Thus the +sequence "\\0\\x\\07" specifies two binary zeros followed by a BEL character. +Make sure you supply two digits after the initial zero if the character that +follows is itself an octal digit. + +The handling of a backslash followed by a digit other than 0 is complicated. +Outside a character class, PCRE reads it and any following digits as a decimal +number. If the number is less than 10, or if there have been at least that many +previous capturing left parentheses in the expression, the entire sequence is +taken as a \fIback reference\fR. A description of how this works is given +later, following the discussion of parenthesized subpatterns. + +Inside a character class, or if the decimal number is greater than 9 and there +have not been that many capturing subpatterns, PCRE re-reads up to three octal +digits following the backslash, and generates a single byte from the least +significant 8 bits of the value. Any subsequent digits stand for themselves. +For example: + + \\040 is another way of writing a space + \\40 is the same, provided there are fewer than 40 + previous capturing subpatterns + \\7 is always a back reference + \\11 might be a back reference, or another way of + writing a tab + \\011 is always a tab + \\0113 is a tab followed by the character "3" + \\113 is the character with octal code 113 (since there + can be no more than 99 back references) + \\377 is a byte consisting entirely of 1 bits + \\81 is either a back reference, or a binary zero + followed by the two characters "8" and "1" + +Note that octal values of 100 or greater must not be introduced by a leading +zero, because no more than three octal digits are ever read. + +All the sequences that define a single byte value can be used both inside and +outside character classes. In addition, inside a character class, the sequence +"\\b" is interpreted as the backspace character (hex 08). Outside a character +class it has a different meaning (see below). + +The third use of backslash is for specifying generic character types: + + \\d any decimal digit + \\D any character that is not a decimal digit + \\s any whitespace character + \\S any character that is not a whitespace character + \\w any "word" character + \\W any "non-word" character + +Each pair of escape sequences partitions the complete set of characters into +two disjoint sets. Any given character matches one, and only one, of each pair. + +A "word" character is any letter or digit or the underscore character, that is, +any character which can be part of a Perl "word". The definition of letters and +digits is controlled by PCRE's character tables, and may vary if locale- +specific matching is taking place (see "Locale support" above). For example, in +the "fr" (French) locale, some character codes greater than 128 are used for +accented letters, and these are matched by \\w. + +These character type sequences can appear both inside and outside character +classes. They each match one character of the appropriate type. If the current +matching point is at the end of the subject string, all of them fail, since +there is no character to match. + +The fourth use of backslash is for certain simple assertions. An assertion +specifies a condition that has to be met at a particular point in a match, +without consuming any characters from the subject string. The use of +subpatterns for more complicated assertions is described below. The backslashed +assertions are + + \\b word boundary + \\B not a word boundary + \\A start of subject (independent of multiline mode) + \\Z end of subject or newline at end (independent of multiline mode) + \\z end of subject (independent of multiline mode) + +These assertions may not appear in character classes (but note that "\\b" has a +different meaning, namely the backspace character, inside a character class). + +A word boundary is a position in the subject string where the current character +and the previous character do not both match \\w or \\W (i.e. one matches +\\w and the other matches \\W), or the start or end of the string if the +first or last character matches \\w, respectively. + +The \\A, \\Z, and \\z assertions differ from the traditional circumflex and +dollar (described below) in that they only ever match at the very start and end +of the subject string, whatever options are set. They are not affected by the +PCRE_NOTBOL or PCRE_NOTEOL options. If the \fIstartoffset\fR argument of +\fBpcre_exec()\fR is non-zero, \\A can never match. The difference between \\Z +and \\z is that \\Z matches before a newline that is the last character of the +string as well as at the end of the string, whereas \\z matches only at the +end. + + +.SH CIRCUMFLEX AND DOLLAR +Outside a character class, in the default matching mode, the circumflex +character is an assertion which is true only if the current matching point is +at the start of the subject string. If the \fIstartoffset\fR argument of +\fBpcre_exec()\fR is non-zero, circumflex can never match. Inside a character +class, circumflex has an entirely different meaning (see below). + +Circumflex need not be the first character of the pattern if a number of +alternatives are involved, but it should be the first thing in each alternative +in which it appears if the pattern is ever to match that branch. If all +possible alternatives start with a circumflex, that is, if the pattern is +constrained to match only at the start of the subject, it is said to be an +"anchored" pattern. (There are also other constructs that can cause a pattern +to be anchored.) + +A dollar character is an assertion which is true only if the current matching +point is at the end of the subject string, or immediately before a newline +character that is the last character in the string (by default). Dollar need +not be the last character of the pattern if a number of alternatives are +involved, but it should be the last item in any branch in which it appears. +Dollar has no special meaning in a character class. + +The meaning of dollar can be changed so that it matches only at the very end of +the string, by setting the PCRE_DOLLAR_ENDONLY option at compile or matching +time. This does not affect the \\Z assertion. + +The meanings of the circumflex and dollar characters are changed if the +PCRE_MULTILINE option is set. When this is the case, they match immediately +after and immediately before an internal "\\n" character, respectively, in +addition to matching at the start and end of the subject string. For example, +the pattern /^abc$/ matches the subject string "def\\nabc" in multiline mode, +but not otherwise. Consequently, patterns that are anchored in single line mode +because all branches start with "^" are not anchored in multiline mode, and a +match for circumflex is possible when the \fIstartoffset\fR argument of +\fBpcre_exec()\fR is non-zero. The PCRE_DOLLAR_ENDONLY option is ignored if +PCRE_MULTILINE is set. + +Note that the sequences \\A, \\Z, and \\z can be used to match the start and +end of the subject in both modes, and if all branches of a pattern start with +\\A is it always anchored, whether PCRE_MULTILINE is set or not. + + +.SH FULL STOP (PERIOD, DOT) +Outside a character class, a dot in the pattern matches any one character in +the subject, including a non-printing character, but not (by default) newline. +If the PCRE_DOTALL option is set, dots match newlines as well. The handling of +dot is entirely independent of the handling of circumflex and dollar, the only +relationship being that they both involve newline characters. Dot has no +special meaning in a character class. + + +.SH SQUARE BRACKETS +An opening square bracket introduces a character class, terminated by a closing +square bracket. A closing square bracket on its own is not special. If a +closing square bracket is required as a member of the class, it should be the +first data character in the class (after an initial circumflex, if present) or +escaped with a backslash. + +A character class matches a single character in the subject; the character must +be in the set of characters defined by the class, unless the first character in +the class is a circumflex, in which case the subject character must not be in +the set defined by the class. If a circumflex is actually required as a member +of the class, ensure it is not the first character, or escape it with a +backslash. + +For example, the character class [aeiou] matches any lower case vowel, while +[^aeiou] matches any character that is not a lower case vowel. Note that a +circumflex is just a convenient notation for specifying the characters which +are in the class by enumerating those that are not. It is not an assertion: it +still consumes a character from the subject string, and fails if the current +pointer is at the end of the string. + +When caseless matching is set, any letters in a class represent both their +upper case and lower case versions, so for example, a caseless [aeiou] matches +"A" as well as "a", and a caseless [^aeiou] does not match "A", whereas a +caseful version would. + +The newline character is never treated in any special way in character classes, +whatever the setting of the PCRE_DOTALL or PCRE_MULTILINE options is. A class +such as [^a] will always match a newline. + +The minus (hyphen) character can be used to specify a range of characters in a +character class. For example, [d-m] matches any letter between d and m, +inclusive. If a minus character is required in a class, it must be escaped with +a backslash or appear in a position where it cannot be interpreted as +indicating a range, typically as the first or last character in the class. + +It is not possible to have the literal character "]" as the end character of a +range. A pattern such as [W-]46] is interpreted as a class of two characters +("W" and "-") followed by a literal string "46]", so it would match "W46]" or +"-46]". However, if the "]" is escaped with a backslash it is interpreted as +the end of range, so [W-\\]46] is interpreted as a single class containing a +range followed by two separate characters. The octal or hexadecimal +representation of "]" can also be used to end a range. + +Ranges operate in ASCII collating sequence. They can also be used for +characters specified numerically, for example [\\000-\\037]. If a range that +includes letters is used when caseless matching is set, it matches the letters +in either case. For example, [W-c] is equivalent to [][\\^_`wxyzabc], matched +caselessly, and if character tables for the "fr" locale are in use, +[\\xc8-\\xcb] matches accented E characters in both cases. + +The character types \\d, \\D, \\s, \\S, \\w, and \\W may also appear in a +character class, and add the characters that they match to the class. For +example, [\\dABCDEF] matches any hexadecimal digit. A circumflex can +conveniently be used with the upper case character types to specify a more +restricted set of characters than the matching lower case type. For example, +the class [^\\W_] matches any letter or digit, but not underscore. + +All non-alphameric characters other than \\, -, ^ (at the start) and the +terminating ] are non-special in character classes, but it does no harm if they +are escaped. + + +.SH POSIX CHARACTER CLASSES +Perl 5.6 (not yet released at the time of writing) is going to support the +POSIX notation for character classes, which uses names enclosed by [: and :] +within the enclosing square brackets. PCRE supports this notation. For example, + + [01[:alpha:]%] + +matches "0", "1", any alphabetic character, or "%". The supported class names +are + + alnum letters and digits + alpha letters + ascii character codes 0 - 127 + cntrl control characters + digit decimal digits (same as \\d) + graph printing characters, excluding space + lower lower case letters + print printing characters, including space + punct printing characters, excluding letters and digits + space white space (same as \\s) + upper upper case letters + word "word" characters (same as \\w) + xdigit hexadecimal digits + +The names "ascii" and "word" are Perl extensions. Another Perl extension is +negation, which is indicated by a ^ character after the colon. For example, + + [12[:^digit:]] + +matches "1", "2", or any non-digit. PCRE (and Perl) also recogize the POSIX +syntax [.ch.] and [=ch=] where "ch" is a "collating element", but these are not +supported, and an error is given if they are encountered. + + +.SH VERTICAL BAR +Vertical bar characters are used to separate alternative patterns. For example, +the pattern + + gilbert|sullivan + +matches either "gilbert" or "sullivan". Any number of alternatives may appear, +and an empty alternative is permitted (matching the empty string). +The matching process tries each alternative in turn, from left to right, +and the first one that succeeds is used. If the alternatives are within a +subpattern (defined below), "succeeds" means matching the rest of the main +pattern as well as the alternative in the subpattern. + + +.SH INTERNAL OPTION SETTING +The settings of PCRE_CASELESS, PCRE_MULTILINE, PCRE_DOTALL, and PCRE_EXTENDED +can be changed from within the pattern by a sequence of Perl option letters +enclosed between "(?" and ")". The option letters are + + i for PCRE_CASELESS + m for PCRE_MULTILINE + s for PCRE_DOTALL + x for PCRE_EXTENDED + +For example, (?im) sets caseless, multiline matching. It is also possible to +unset these options by preceding the letter with a hyphen, and a combined +setting and unsetting such as (?im-sx), which sets PCRE_CASELESS and +PCRE_MULTILINE while unsetting PCRE_DOTALL and PCRE_EXTENDED, is also +permitted. If a letter appears both before and after the hyphen, the option is +unset. + +The scope of these option changes depends on where in the pattern the setting +occurs. For settings that are outside any subpattern (defined below), the +effect is the same as if the options were set or unset at the start of +matching. The following patterns all behave in exactly the same way: + + (?i)abc + a(?i)bc + ab(?i)c + abc(?i) + +which in turn is the same as compiling the pattern abc with PCRE_CASELESS set. +In other words, such "top level" settings apply to the whole pattern (unless +there are other changes inside subpatterns). If there is more than one setting +of the same option at top level, the rightmost setting is used. + +If an option change occurs inside a subpattern, the effect is different. This +is a change of behaviour in Perl 5.005. An option change inside a subpattern +affects only that part of the subpattern that follows it, so + + (a(?i)b)c + +matches abc and aBc and no other strings (assuming PCRE_CASELESS is not used). +By this means, options can be made to have different settings in different +parts of the pattern. Any changes made in one alternative do carry on +into subsequent branches within the same subpattern. For example, + + (a(?i)b|c) + +matches "ab", "aB", "c", and "C", even though when matching "C" the first +branch is abandoned before the option setting. This is because the effects of +option settings happen at compile time. There would be some very weird +behaviour otherwise. + +The PCRE-specific options PCRE_UNGREEDY and PCRE_EXTRA can be changed in the +same way as the Perl-compatible options by using the characters U and X +respectively. The (?X) flag setting is special in that it must always occur +earlier in the pattern than any of the additional features it turns on, even +when it is at top level. It is best put at the start. + + +.SH SUBPATTERNS +Subpatterns are delimited by parentheses (round brackets), which can be nested. +Marking part of a pattern as a subpattern does two things: + +1. It localizes a set of alternatives. For example, the pattern + + cat(aract|erpillar|) + +matches one of the words "cat", "cataract", or "caterpillar". Without the +parentheses, it would match "cataract", "erpillar" or the empty string. + +2. It sets up the subpattern as a capturing subpattern (as defined above). +When the whole pattern matches, that portion of the subject string that matched +the subpattern is passed back to the caller via the \fIovector\fR argument of +\fBpcre_exec()\fR. Opening parentheses are counted from left to right (starting +from 1) to obtain the numbers of the capturing subpatterns. + +For example, if the string "the red king" is matched against the pattern + + the ((red|white) (king|queen)) + +the captured substrings are "red king", "red", and "king", and are numbered 1, +2, and 3. + +The fact that plain parentheses fulfil two functions is not always helpful. +There are often times when a grouping subpattern is required without a +capturing requirement. If an opening parenthesis is followed by "?:", the +subpattern does not do any capturing, and is not counted when computing the +number of any subsequent capturing subpatterns. For example, if the string "the +white queen" is matched against the pattern + + the ((?:red|white) (king|queen)) + +the captured substrings are "white queen" and "queen", and are numbered 1 and +2. The maximum number of captured substrings is 99, and the maximum number of +all subpatterns, both capturing and non-capturing, is 200. + +As a convenient shorthand, if any option settings are required at the start of +a non-capturing subpattern, the option letters may appear between the "?" and +the ":". Thus the two patterns + + (?i:saturday|sunday) + (?:(?i)saturday|sunday) + +match exactly the same set of strings. Because alternative branches are tried +from left to right, and options are not reset until the end of the subpattern +is reached, an option setting in one branch does affect subsequent branches, so +the above patterns match "SUNDAY" as well as "Saturday". + + +.SH REPETITION +Repetition is specified by quantifiers, which can follow any of the following +items: + + a single character, possibly escaped + the . metacharacter + a character class + a back reference (see next section) + a parenthesized subpattern (unless it is an assertion - see below) + +The general repetition quantifier specifies a minimum and maximum number of +permitted matches, by giving the two numbers in curly brackets (braces), +separated by a comma. The numbers must be less than 65536, and the first must +be less than or equal to the second. For example: + + z{2,4} + +matches "zz", "zzz", or "zzzz". A closing brace on its own is not a special +character. If the second number is omitted, but the comma is present, there is +no upper limit; if the second number and the comma are both omitted, the +quantifier specifies an exact number of required matches. Thus + + [aeiou]{3,} + +matches at least 3 successive vowels, but may match many more, while + + \\d{8} + +matches exactly 8 digits. An opening curly bracket that appears in a position +where a quantifier is not allowed, or one that does not match the syntax of a +quantifier, is taken as a literal character. For example, {,6} is not a +quantifier, but a literal string of four characters. + +The quantifier {0} is permitted, causing the expression to behave as if the +previous item and the quantifier were not present. + +For convenience (and historical compatibility) the three most common +quantifiers have single-character abbreviations: + + * is equivalent to {0,} + + is equivalent to {1,} + ? is equivalent to {0,1} + +It is possible to construct infinite loops by following a subpattern that can +match no characters with a quantifier that has no upper limit, for example: + + (a?)* + +Earlier versions of Perl and PCRE used to give an error at compile time for +such patterns. However, because there are cases where this can be useful, such +patterns are now accepted, but if any repetition of the subpattern does in fact +match no characters, the loop is forcibly broken. + +By default, the quantifiers are "greedy", that is, they match as much as +possible (up to the maximum number of permitted times), without causing the +rest of the pattern to fail. The classic example of where this gives problems +is in trying to match comments in C programs. These appear between the +sequences /* and */ and within the sequence, individual * and / characters may +appear. An attempt to match C comments by applying the pattern + + /\\*.*\\*/ + +to the string + + /* first command */ not comment /* second comment */ + +fails, because it matches the entire string owing to the greediness of the .* +item. + +However, if a quantifier is followed by a question mark, it ceases to be +greedy, and instead matches the minimum number of times possible, so the +pattern + + /\\*.*?\\*/ + +does the right thing with the C comments. The meaning of the various +quantifiers is not otherwise changed, just the preferred number of matches. +Do not confuse this use of question mark with its use as a quantifier in its +own right. Because it has two uses, it can sometimes appear doubled, as in + + \\d??\\d + +which matches one digit by preference, but can match two if that is the only +way the rest of the pattern matches. + +If the PCRE_UNGREEDY option is set (an option which is not available in Perl), +the quantifiers are not greedy by default, but individual ones can be made +greedy by following them with a question mark. In other words, it inverts the +default behaviour. + +When a parenthesized subpattern is quantified with a minimum repeat count that +is greater than 1 or with a limited maximum, more store is required for the +compiled pattern, in proportion to the size of the minimum or maximum. + +If a pattern starts with .* or .{0,} and the PCRE_DOTALL option (equivalent +to Perl's /s) is set, thus allowing the . to match newlines, the pattern is +implicitly anchored, because whatever follows will be tried against every +character position in the subject string, so there is no point in retrying the +overall match at any position after the first. PCRE treats such a pattern as +though it were preceded by \\A. In cases where it is known that the subject +string contains no newlines, it is worth setting PCRE_DOTALL when the pattern +begins with .* in order to obtain this optimization, or alternatively using ^ +to indicate anchoring explicitly. + +When a capturing subpattern is repeated, the value captured is the substring +that matched the final iteration. For example, after + + (tweedle[dume]{3}\\s*)+ + +has matched "tweedledum tweedledee" the value of the captured substring is +"tweedledee". However, if there are nested capturing subpatterns, the +corresponding captured values may have been set in previous iterations. For +example, after + + /(a|(b))+/ + +matches "aba" the value of the second captured substring is "b". + + +.SH BACK REFERENCES +Outside a character class, a backslash followed by a digit greater than 0 (and +possibly further digits) is a back reference to a capturing subpattern earlier +(i.e. to its left) in the pattern, provided there have been that many previous +capturing left parentheses. + +However, if the decimal number following the backslash is less than 10, it is +always taken as a back reference, and causes an error only if there are not +that many capturing left parentheses in the entire pattern. In other words, the +parentheses that are referenced need not be to the left of the reference for +numbers less than 10. See the section entitled "Backslash" above for further +details of the handling of digits following a backslash. + +A back reference matches whatever actually matched the capturing subpattern in +the current subject string, rather than anything matching the subpattern +itself. So the pattern + + (sens|respons)e and \\1ibility + +matches "sense and sensibility" and "response and responsibility", but not +"sense and responsibility". If caseful matching is in force at the time of the +back reference, the case of letters is relevant. For example, + + ((?i)rah)\\s+\\1 + +matches "rah rah" and "RAH RAH", but not "RAH rah", even though the original +capturing subpattern is matched caselessly. + +There may be more than one back reference to the same subpattern. If a +subpattern has not actually been used in a particular match, any back +references to it always fail. For example, the pattern + + (a|(bc))\\2 + +always fails if it starts to match "a" rather than "bc". Because there may be +up to 99 back references, all digits following the backslash are taken +as part of a potential back reference number. If the pattern continues with a +digit character, some delimiter must be used to terminate the back reference. +If the PCRE_EXTENDED option is set, this can be whitespace. Otherwise an empty +comment can be used. + +A back reference that occurs inside the parentheses to which it refers fails +when the subpattern is first used, so, for example, (a\\1) never matches. +However, such references can be useful inside repeated subpatterns. For +example, the pattern + + (a|b\\1)+ + +matches any number of "a"s and also "aba", "ababbaa" etc. At each iteration of +the subpattern, the back reference matches the character string corresponding +to the previous iteration. In order for this to work, the pattern must be such +that the first iteration does not need to match the back reference. This can be +done using alternation, as in the example above, or by a quantifier with a +minimum of zero. + + +.SH ASSERTIONS +An assertion is a test on the characters following or preceding the current +matching point that does not actually consume any characters. The simple +assertions coded as \\b, \\B, \\A, \\Z, \\z, ^ and $ are described above. More +complicated assertions are coded as subpatterns. There are two kinds: those +that look ahead of the current position in the subject string, and those that +look behind it. + +An assertion subpattern is matched in the normal way, except that it does not +cause the current matching position to be changed. Lookahead assertions start +with (?= for positive assertions and (?! for negative assertions. For example, + + \\w+(?=;) + +matches a word followed by a semicolon, but does not include the semicolon in +the match, and + + foo(?!bar) + +matches any occurrence of "foo" that is not followed by "bar". Note that the +apparently similar pattern + + (?!foo)bar + +does not find an occurrence of "bar" that is preceded by something other than +"foo"; it finds any occurrence of "bar" whatsoever, because the assertion +(?!foo) is always true when the next three characters are "bar". A +lookbehind assertion is needed to achieve this effect. + +Lookbehind assertions start with (?<= for positive assertions and (? as in this example: + + (?>\\d+)bar + +This kind of parenthesis "locks up" the part of the pattern it contains once +it has matched, and a failure further into the pattern is prevented from +backtracking into it. Backtracking past it to previous items, however, works as +normal. + +An alternative description is that a subpattern of this type matches the string +of characters that an identical standalone pattern would match, if anchored at +the current point in the subject string. + +Once-only subpatterns are not capturing subpatterns. Simple cases such as the +above example can be thought of as a maximizing repeat that must swallow +everything it can. So, while both \\d+ and \\d+? are prepared to adjust the +number of digits they match in order to make the rest of the pattern match, +(?>\\d+) can only match an entire sequence of digits. + +This construction can of course contain arbitrarily complicated subpatterns, +and it can be nested. + +Once-only subpatterns can be used in conjunction with lookbehind assertions to +specify efficient matching at the end of the subject string. Consider a simple +pattern such as + + abcd$ + +when applied to a long string which does not match. Because matching proceeds +from left to right, PCRE will look for each "a" in the subject and then see if +what follows matches the rest of the pattern. If the pattern is specified as + + ^.*abcd$ + +the initial .* matches the entire string at first, but when this fails (because +there is no following "a"), it backtracks to match all but the last character, +then all but the last two characters, and so on. Once again the search for "a" +covers the entire string, from right to left, so we are no better off. However, +if the pattern is written as + + ^(?>.*)(?<=abcd) + +there can be no backtracking for the .* item; it can match only the entire +string. The subsequent lookbehind assertion does a single test on the last four +characters. If it fails, the match fails immediately. For long strings, this +approach makes a significant difference to the processing time. + +When a pattern contains an unlimited repeat inside a subpattern that can itself +be repeated an unlimited number of times, the use of a once-only subpattern is +the only way to avoid some failing matches taking a very long time indeed. +The pattern + + (\\D+|<\\d+>)*[!?] + +matches an unlimited number of substrings that either consist of non-digits, or +digits enclosed in <>, followed by either ! or ?. When it matches, it runs +quickly. However, if it is applied to + + aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa + +it takes a long time before reporting failure. This is because the string can +be divided between the two repeats in a large number of ways, and all have to +be tried. (The example used [!?] rather than a single character at the end, +because both PCRE and Perl have an optimization that allows for fast failure +when a single character is used. They remember the last single character that +is required for a match, and fail early if it is not present in the string.) +If the pattern is changed to + + ((?>\\D+)|<\\d+>)*[!?] + +sequences of non-digits cannot be broken, and failure happens quickly. + + +.SH CONDITIONAL SUBPATTERNS +It is possible to cause the matching process to obey a subpattern +conditionally or to choose between two alternative subpatterns, depending on +the result of an assertion, or whether a previous capturing subpattern matched +or not. The two possible forms of conditional subpattern are + + (?(condition)yes-pattern) + (?(condition)yes-pattern|no-pattern) + +If the condition is satisfied, the yes-pattern is used; otherwise the +no-pattern (if present) is used. If there are more than two alternatives in the +subpattern, a compile-time error occurs. + +There are two kinds of condition. If the text between the parentheses consists +of a sequence of digits, the condition is satisfied if the capturing subpattern +of that number has previously matched. The number must be greater than zero. +Consider the following pattern, which contains non-significant white space to +make it more readable (assume the PCRE_EXTENDED option) and to divide it into +three parts for ease of discussion: + + ( \\( )? [^()]+ (?(1) \\) ) + +The first part matches an optional opening parenthesis, and if that +character is present, sets it as the first captured substring. The second part +matches one or more characters that are not parentheses. The third part is a +conditional subpattern that tests whether the first set of parentheses matched +or not. If they did, that is, if subject started with an opening parenthesis, +the condition is true, and so the yes-pattern is executed and a closing +parenthesis is required. Otherwise, since no-pattern is not present, the +subpattern matches nothing. In other words, this pattern matches a sequence of +non-parentheses, optionally enclosed in parentheses. + +If the condition is not a sequence of digits, it must be an assertion. This may +be a positive or negative lookahead or lookbehind assertion. Consider this +pattern, again containing non-significant white space, and with the two +alternatives on the second line: + + (?(?=[^a-z]*[a-z]) + \\d{2}-[a-z]{3}-\\d{2} | \\d{2}-\\d{2}-\\d{2} ) + +The condition is a positive lookahead assertion that matches an optional +sequence of non-letters followed by a letter. In other words, it tests for the +presence of at least one letter in the subject. If a letter is found, the +subject is matched against the first alternative; otherwise it is matched +against the second. This pattern matches strings in one of the two forms +dd-aaa-dd or dd-dd-dd, where aaa are letters and dd are digits. + + +.SH COMMENTS +The sequence (?# marks the start of a comment which continues up to the next +closing parenthesis. Nested parentheses are not permitted. The characters +that make up a comment play no part in the pattern matching at all. + +If the PCRE_EXTENDED option is set, an unescaped # character outside a +character class introduces a comment that continues up to the next newline +character in the pattern. + + +.SH RECURSIVE PATTERNS +Consider the problem of matching a string in parentheses, allowing for +unlimited nested parentheses. Without the use of recursion, the best that can +be done is to use a pattern that matches up to some fixed depth of nesting. It +is not possible to handle an arbitrary nesting depth. Perl 5.6 has provided an +experimental facility that allows regular expressions to recurse (amongst other +things). It does this by interpolating Perl code in the expression at run time, +and the code can refer to the expression itself. A Perl pattern to solve the +parentheses problem can be created like this: + + $re = qr{\\( (?: (?>[^()]+) | (?p{$re}) )* \\)}x; + +The (?p{...}) item interpolates Perl code at run time, and in this case refers +recursively to the pattern in which it appears. Obviously, PCRE cannot support +the interpolation of Perl code. Instead, the special item (?R) is provided for +the specific case of recursion. This PCRE pattern solves the parentheses +problem (assume the PCRE_EXTENDED option is set so that white space is +ignored): + + \\( ( (?>[^()]+) | (?R) )* \\) + +First it matches an opening parenthesis. Then it matches any number of +substrings which can either be a sequence of non-parentheses, or a recursive +match of the pattern itself (i.e. a correctly parenthesized substring). Finally +there is a closing parenthesis. + +This particular example pattern contains nested unlimited repeats, and so the +use of a once-only subpattern for matching strings of non-parentheses is +important when applying the pattern to strings that do not match. For example, +when it is applied to + + (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa() + +it yields "no match" quickly. However, if a once-only subpattern is not used, +the match runs for a very long time indeed because there are so many different +ways the + and * repeats can carve up the subject, and all have to be tested +before failure can be reported. + +The values set for any capturing subpatterns are those from the outermost level +of the recursion at which the subpattern value is set. If the pattern above is +matched against + + (ab(cd)ef) + +the value for the capturing parentheses is "ef", which is the last value taken +on at the top level. If additional parentheses are added, giving + + \\( ( ( (?>[^()]+) | (?R) )* ) \\) + ^ ^ + ^ ^ +the string they capture is "ab(cd)ef", the contents of the top level +parentheses. If there are more than 15 capturing parentheses in a pattern, PCRE +has to obtain extra memory to store data during a recursion, which it does by +using \fBpcre_malloc\fR, freeing it via \fBpcre_free\fR afterwards. If no +memory can be obtained, it saves data for the first 15 capturing parentheses +only, as there is no way to give an out-of-memory error from within a +recursion. + + +.SH PERFORMANCE +Certain items that may appear in patterns are more efficient than others. It is +more efficient to use a character class like [aeiou] than a set of alternatives +such as (a|e|i|o|u). In general, the simplest construction that provides the +required behaviour is usually the most efficient. Jeffrey Friedl's book +contains a lot of discussion about optimizing regular expressions for efficient +performance. + +When a pattern begins with .* and the PCRE_DOTALL option is set, the pattern is +implicitly anchored by PCRE, since it can match only at the start of a subject +string. However, if PCRE_DOTALL is not set, PCRE cannot make this optimization, +because the . metacharacter does not then match a newline, and if the subject +string contains newlines, the pattern may match from the character immediately +following one of them instead of from the very start. For example, the pattern + + (.*) second + +matches the subject "first\\nand second" (where \\n stands for a newline +character) with the first captured substring being "and". In order to do this, +PCRE has to retry the match starting after every newline in the subject. + +If you are using such a pattern with subject strings that do not contain +newlines, the best performance is obtained by setting PCRE_DOTALL, or starting +the pattern with ^.* to indicate explicit anchoring. That saves PCRE from +having to scan along the subject looking for a newline to restart at. + +Beware of patterns that contain nested indefinite repeats. These can take a +long time to run when applied to a string that does not match. Consider the +pattern fragment + + (a+)* + +This can match "aaaa" in 33 different ways, and this number increases very +rapidly as the string gets longer. (The * repeat can match 0, 1, 2, 3, or 4 +times, and for each of those cases other than 0, the + repeats can match +different numbers of times.) When the remainder of the pattern is such that the +entire match is going to fail, PCRE has in principle to try every possible +variation, and this can take an extremely long time. + +An optimization catches some of the more simple cases such as + + (a+)*b + +where a literal character follows. Before embarking on the standard matching +procedure, PCRE checks that there is a "b" later in the subject string, and if +there is not, it fails the match immediately. However, when there is no +following literal this optimization cannot be used. You can see the difference +by comparing the behaviour of + + (a+)*\\d + +with the pattern above. The former gives a failure almost instantly when +applied to a whole line of "a" characters, whereas the latter takes an +appreciable time with strings longer than about 20 characters. + + +.SH UTF-8 SUPPORT +Starting at release 3.3, PCRE has some support for character strings encoded +in the UTF-8 format. This is incomplete, and is regarded as experimental. In +order to use it, you must configure PCRE to include UTF-8 support in the code, +and, in addition, you must call \fBpcre_compile()\fR with the PCRE_UTF8 option +flag. When you do this, both the pattern and any subject strings that are +matched against it are treated as UTF-8 strings instead of just strings of +bytes, but only in the cases that are mentioned below. + +If you compile PCRE with UTF-8 support, but do not use it at run time, the +library will be a bit bigger, but the additional run time overhead is limited +to testing the PCRE_UTF8 flag in several places, so should not be very large. + +PCRE assumes that the strings it is given contain valid UTF-8 codes. It does +not diagnose invalid UTF-8 strings. If you pass invalid UTF-8 strings to PCRE, +the results are undefined. + +Running with PCRE_UTF8 set causes these changes in the way PCRE works: + +1. In a pattern, the escape sequence \\x{...}, where the contents of the braces +is a string of hexadecimal digits, is interpreted as a UTF-8 character whose +code number is the given hexadecimal number, for example: \\x{1234}. This +inserts from one to six literal bytes into the pattern, using the UTF-8 +encoding. If a non-hexadecimal digit appears between the braces, the item is +not recognized. + +2. The original hexadecimal escape sequence, \\xhh, generates a two-byte UTF-8 +character if its value is greater than 127. + +3. Repeat quantifiers are NOT correctly handled if they follow a multibyte +character. For example, \\x{100}* and \\xc3+ do not work. If you want to +repeat such characters, you must enclose them in non-capturing parentheses, +for example (?:\\x{100}), at present. + +4. The dot metacharacter matches one UTF-8 character instead of a single byte. + +5. Unlike literal UTF-8 characters, the dot metacharacter followed by a +repeat quantifier does operate correctly on UTF-8 characters instead of +single bytes. + +4. Although the \\x{...} escape is permitted in a character class, characters +whose values are greater than 255 cannot be included in a class. + +5. A class is matched against a UTF-8 character instead of just a single byte, +but it can match only characters whose values are less than 256. Characters +with greater values always fail to match a class. + +6. Repeated classes work correctly on multiple characters. + +7. Classes containing just a single character whose value is greater than 127 +(but less than 256), for example, [\\x80] or [^\\x{93}], do not work because +these are optimized into single byte matches. In the first case, of course, +the class brackets are just redundant. + +8. Lookbehind assertions move backwards in the subject by a fixed number of +characters instead of a fixed number of bytes. Simple cases have been tested +to work correctly, but there may be hidden gotchas herein. + +9. The character types such as \\d and \\w do not work correctly with UTF-8 +characters. They continue to test a single byte. + +10. Anything not explicitly mentioned here continues to work in bytes rather +than in characters. + +The following UTF-8 features of Perl 5.6 are not implemented: + +1. The escape sequence \\C to match a single byte. + +2. The use of Unicode tables and properties and escapes \\p, \\P, and \\X. + +.SH AUTHOR +Philip Hazel +.br +University Computing Service, +.br +New Museums Site, +.br +Cambridge CB2 3QG, England. +.br +Phone: +44 1223 334714 + +Last updated: 28 August 2000, +.br + the 250th anniversary of the death of J.S. Bach. +.br +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcre.html b/pcre/doc/pcre.html new file mode 100644 index 00000000..b12b2126 --- /dev/null +++ b/pcre/doc/pcre.html @@ -0,0 +1,2397 @@ + + +pcre specification + + +

    pcre specification

    +This HTML document has been generated automatically from the original man page. +If there is any nonsense in it, please consult the man page in case the +conversion went wrong. + +
  • NAME +

    +pcre - Perl-compatible regular expressions. +

    +
  • SYNOPSIS +

    +#include <pcre.h> +

    +

    +pcre *pcre_compile(const char *pattern, int options, +const char **errptr, int *erroffset, +const unsigned char *tableptr); +

    +

    +pcre_extra *pcre_study(const pcre *code, int options, +const char **errptr); +

    +

    +int pcre_exec(const pcre *code, const pcre_extra *extra, +const char *subject, int length, int startoffset, +int options, int *ovector, int ovecsize); +

    +

    +int pcre_copy_substring(const char *subject, int *ovector, +int stringcount, int stringnumber, char *buffer, +int buffersize); +

    +

    +int pcre_get_substring(const char *subject, int *ovector, +int stringcount, int stringnumber, +const char **stringptr); +

    +

    +int pcre_get_substring_list(const char *subject, +int *ovector, int stringcount, const char ***listptr); +

    +

    +void pcre_free_substring(const char *stringptr); +

    +

    +void pcre_free_substring_list(const char **stringptr); +

    +

    +const unsigned char *pcre_maketables(void); +

    +

    +int pcre_fullinfo(const pcre *code, const pcre_extra *extra, +int what, void *where); +

    +

    +int pcre_info(const pcre *code, int *optptr, int +*firstcharptr); +

    +

    +char *pcre_version(void); +

    +

    +void *(*pcre_malloc)(size_t); +

    +

    +void (*pcre_free)(void *); +

    +
  • DESCRIPTION +

    +The PCRE library is a set of functions that implement regular expression +pattern matching using the same syntax and semantics as Perl 5, with just a few +differences (see below). The current implementation corresponds to Perl 5.005, +with some additional features from later versions. This includes some +experimental, incomplete support for UTF-8 encoded strings. Details of exactly +what is and what is not supported are given below. +

    +

    +PCRE has its own native API, which is described in this document. There is also +a set of wrapper functions that correspond to the POSIX regular expression API. +These are described in the pcreposix documentation. +

    +

    +The native API function prototypes are defined in the header file pcre.h, +and on Unix systems the library itself is called libpcre.a, so can be +accessed by adding -lpcre to the command for linking an application which +calls it. The header file defines the macros PCRE_MAJOR and PCRE_MINOR to +contain the major and minor release numbers for the library. Applications can +use these to include support for different releases. +

    +

    +The functions pcre_compile(), pcre_study(), and pcre_exec() +are used for compiling and matching regular expressions. +

    +

    +The functions pcre_copy_substring(), pcre_get_substring(), and +pcre_get_substring_list() are convenience functions for extracting +captured substrings from a matched subject string; pcre_free_substring() +and pcre_free_substring_list() are also provided, to free the memory used +for extracted strings. +

    +

    +The function pcre_maketables() is used (optionally) to build a set of +character tables in the current locale for passing to pcre_compile(). +

    +

    +The function pcre_fullinfo() is used to find out information about a +compiled pattern; pcre_info() is an obsolete version which returns only +some of the available information, but is retained for backwards compatibility. +The function pcre_version() returns a pointer to a string containing the +version of PCRE and its date of release. +

    +

    +The global variables pcre_malloc and pcre_free initially contain +the entry points of the standard malloc() and free() functions +respectively. PCRE calls the memory management functions via these variables, +so a calling program can replace them if it wishes to intercept the calls. This +should be done before calling any PCRE functions. +

    +
  • MULTI-THREADING +

    +The PCRE functions can be used in multi-threading applications, with the +proviso that the memory management functions pointed to by pcre_malloc +and pcre_free are shared by all threads. +

    +

    +The compiled form of a regular expression is not altered during matching, so +the same compiled pattern can safely be used by several threads at once. +

    +
  • COMPILING A PATTERN +

    +The function pcre_compile() is called to compile a pattern into an +internal form. The pattern is a C string terminated by a binary zero, and +is passed in the argument pattern. A pointer to a single block of memory +that is obtained via pcre_malloc is returned. This contains the +compiled code and related data. The pcre type is defined for this for +convenience, but in fact pcre is just a typedef for void, since the +contents of the block are not externally defined. It is up to the caller to +free the memory when it is no longer required. +

    +

    +The size of a compiled pattern is roughly proportional to the length of the +pattern string, except that each character class (other than those containing +just a single character, negated or not) requires 33 bytes, and repeat +quantifiers with a minimum greater than one or a bounded maximum cause the +relevant portions of the compiled pattern to be replicated. +

    +

    +The options argument contains independent bits that affect the +compilation. It should be zero if no options are required. Some of the options, +in particular, those that are compatible with Perl, can also be set and unset +from within the pattern (see the detailed description of regular expressions +below). For these options, the contents of the options argument specifies +their initial settings at the start of compilation and execution. The +PCRE_ANCHORED option can be set at the time of matching as well as at compile +time. +

    +

    +If errptr is NULL, pcre_compile() returns NULL immediately. +Otherwise, if compilation of a pattern fails, pcre_compile() returns +NULL, and sets the variable pointed to by errptr to point to a textual +error message. The offset from the start of the pattern to the character where +the error was discovered is placed in the variable pointed to by +erroffset, which must not be NULL. If it is, an immediate error is given. +

    +

    +If the final argument, tableptr, is NULL, PCRE uses a default set of +character tables which are built when it is compiled, using the default C +locale. Otherwise, tableptr must be the result of a call to +pcre_maketables(). See the section on locale support below. +

    +

    +The following option bits are defined in the header file: +

    +

    +

    +  PCRE_ANCHORED
+
    +

    +

    +If this bit is set, the pattern is forced to be "anchored", that is, it is +constrained to match only at the start of the string which is being searched +(the "subject string"). This effect can also be achieved by appropriate +constructs in the pattern itself, which is the only way to do it in Perl. +

    +

    +

    +  PCRE_CASELESS
+
    +

    +

    +If this bit is set, letters in the pattern match both upper and lower case +letters. It is equivalent to Perl's /i option. +

    +

    +

    +  PCRE_DOLLAR_ENDONLY
+
    +

    +

    +If this bit is set, a dollar metacharacter in the pattern matches only at the +end of the subject string. Without this option, a dollar also matches +immediately before the final character if it is a newline (but not before any +other newlines). The PCRE_DOLLAR_ENDONLY option is ignored if PCRE_MULTILINE is +set. There is no equivalent to this option in Perl. +

    +

    +

    +  PCRE_DOTALL
+
    +

    +

    +If this bit is set, a dot metacharater in the pattern matches all characters, +including newlines. Without it, newlines are excluded. This option is +equivalent to Perl's /s option. A negative class such as [^a] always matches a +newline character, independent of the setting of this option. +

    +

    +

    +  PCRE_EXTENDED
+
    +

    +

    +If this bit is set, whitespace data characters in the pattern are totally +ignored except when escaped or inside a character class, and characters between +an unescaped # outside a character class and the next newline character, +inclusive, are also ignored. This is equivalent to Perl's /x option, and makes +it possible to include comments inside complicated patterns. Note, however, +that this applies only to data characters. Whitespace characters may never +appear within special character sequences in a pattern, for example within the +sequence (?( which introduces a conditional subpattern. +

    +

    +

    +  PCRE_EXTRA
+
    +

    +

    +This option was invented in order to turn on additional functionality of PCRE +that is incompatible with Perl, but it is currently of very little use. When +set, any backslash in a pattern that is followed by a letter that has no +special meaning causes an error, thus reserving these combinations for future +expansion. By default, as in Perl, a backslash followed by a letter with no +special meaning is treated as a literal. There are at present no other features +controlled by this option. It can also be set by a (?X) option setting within a +pattern. +

    +

    +

    +  PCRE_MULTILINE
+
    +

    +

    +By default, PCRE treats the subject string as consisting of a single "line" of +characters (even if it actually contains several newlines). The "start of line" +metacharacter (^) matches only at the start of the string, while the "end of +line" metacharacter ($) matches only at the end of the string, or before a +terminating newline (unless PCRE_DOLLAR_ENDONLY is set). This is the same as +Perl. +

    +

    +When PCRE_MULTILINE it is set, the "start of line" and "end of line" constructs +match immediately following or immediately before any newline in the subject +string, respectively, as well as at the very start and end. This is equivalent +to Perl's /m option. If there are no "\n" characters in a subject string, or +no occurrences of ^ or $ in a pattern, setting PCRE_MULTILINE has no +effect. +

    +

    +

    +  PCRE_UNGREEDY
+
    +

    +

    +This option inverts the "greediness" of the quantifiers so that they are not +greedy by default, but become greedy if followed by "?". It is not compatible +with Perl. It can also be set by a (?U) option setting within the pattern. +

    +

    +

    +  PCRE_UTF8
+
    +

    +

    +This option causes PCRE to regard both the pattern and the subject as strings +of UTF-8 characters instead of just byte strings. However, it is available only +if PCRE has been built to include UTF-8 support. If not, the use of this option +provokes an error. Support for UTF-8 is new, experimental, and incomplete. +Details of exactly what it entails are given below. +

    +
  • STUDYING A PATTERN +

    +When a pattern is going to be used several times, it is worth spending more +time analyzing it in order to speed up the time taken for matching. The +function pcre_study() takes a pointer to a compiled pattern as its first +argument, and returns a pointer to a pcre_extra block (another void +typedef) containing additional information about the pattern; this can be +passed to pcre_exec(). If no additional information is available, NULL +is returned. +

    +

    +The second argument contains option bits. At present, no options are defined +for pcre_study(), and this argument should always be zero. +

    +

    +The third argument for pcre_study() is a pointer to an error message. If +studying succeeds (even if no data is returned), the variable it points to is +set to NULL. Otherwise it points to a textual error message. +

    +

    +At present, studying a pattern is useful only for non-anchored patterns that do +not have a single fixed starting character. A bitmap of possible starting +characters is created. +

    +
  • LOCALE SUPPORT +

    +PCRE handles caseless matching, and determines whether characters are letters, +digits, or whatever, by reference to a set of tables. The library contains a +default set of tables which is created in the default C locale when PCRE is +compiled. This is used when the final argument of pcre_compile() is NULL, +and is sufficient for many applications. +

    +

    +An alternative set of tables can, however, be supplied. Such tables are built +by calling the pcre_maketables() function, which has no arguments, in the +relevant locale. The result can then be passed to pcre_compile() as often +as necessary. For example, to build and use tables that are appropriate for the +French locale (where accented characters with codes greater than 128 are +treated as letters), the following code could be used: +

    +

    +

    +  setlocale(LC_CTYPE, "fr");
+  tables = pcre_maketables();
+  re = pcre_compile(..., tables);
+
    +

    +

    +The tables are built in memory that is obtained via pcre_malloc. The +pointer that is passed to pcre_compile is saved with the compiled +pattern, and the same tables are used via this pointer by pcre_study() +and pcre_exec(). Thus for any single pattern, compilation, studying and +matching all happen in the same locale, but different patterns can be compiled +in different locales. It is the caller's responsibility to ensure that the +memory containing the tables remains available for as long as it is needed. +

    +
  • INFORMATION ABOUT A PATTERN +

    +The pcre_fullinfo() function returns information about a compiled +pattern. It replaces the obsolete pcre_info() function, which is +nevertheless retained for backwards compability (and is documented below). +

    +

    +The first argument for pcre_fullinfo() is a pointer to the compiled +pattern. The second argument is the result of pcre_study(), or NULL if +the pattern was not studied. The third argument specifies which piece of +information is required, while the fourth argument is a pointer to a variable +to receive the data. The yield of the function is zero for success, or one of +the following negative numbers: +

    +

    +

    +  PCRE_ERROR_NULL       the argument code was NULL
+                        the argument where was NULL
+  PCRE_ERROR_BADMAGIC   the "magic number" was not found
+  PCRE_ERROR_BADOPTION  the value of what was invalid
+
    +

    +

    +The possible values for the third argument are defined in pcre.h, and are +as follows: +

    +

    +

    +  PCRE_INFO_OPTIONS
+
    +

    +

    +Return a copy of the options with which the pattern was compiled. The fourth +argument should point to au unsigned long int variable. These option bits +are those specified in the call to pcre_compile(), modified by any +top-level option settings within the pattern itself, and with the PCRE_ANCHORED +bit forcibly set if the form of the pattern implies that it can match only at +the start of a subject string. +

    +

    +

    +  PCRE_INFO_SIZE
+
    +

    +

    +Return the size of the compiled pattern, that is, the value that was passed as +the argument to pcre_malloc() when PCRE was getting memory in which to +place the compiled data. The fourth argument should point to a size_t +variable. +

    +

    +

    +  PCRE_INFO_CAPTURECOUNT
+
    +

    +

    +Return the number of capturing subpatterns in the pattern. The fourth argument +should point to an \fbint\fR variable. +

    +

    +

    +  PCRE_INFO_BACKREFMAX
+
    +

    +

    +Return the number of the highest back reference in the pattern. The fourth +argument should point to an int variable. Zero is returned if there are +no back references. +

    +

    +

    +  PCRE_INFO_FIRSTCHAR
+
    +

    +

    +Return information about the first character of any matched string, for a +non-anchored pattern. If there is a fixed first character, e.g. from a pattern +such as (cat|cow|coyote), it is returned in the integer pointed to by +where. Otherwise, if either +

    +

    +(a) the pattern was compiled with the PCRE_MULTILINE option, and every branch +starts with "^", or +

    +

    +(b) every branch of the pattern starts with ".*" and PCRE_DOTALL is not set +(if it were set, the pattern would be anchored), +

    +

    +-1 is returned, indicating that the pattern matches only at the start of a +subject string or after any "\n" within the string. Otherwise -2 is returned. +For anchored patterns, -2 is returned. +

    +

    +

    +  PCRE_INFO_FIRSTTABLE
+
    +

    +

    +If the pattern was studied, and this resulted in the construction of a 256-bit +table indicating a fixed set of characters for the first character in any +matching string, a pointer to the table is returned. Otherwise NULL is +returned. The fourth argument should point to an unsigned char * +variable. +

    +

    +

    +  PCRE_INFO_LASTLITERAL
+
    +

    +

    +For a non-anchored pattern, return the value of the rightmost literal character +which must exist in any matched string, other than at its start. The fourth +argument should point to an int variable. If there is no such character, +or if the pattern is anchored, -1 is returned. For example, for the pattern +/a\d+z\d+/ the returned value is 'z'. +

    +

    +The pcre_info() function is now obsolete because its interface is too +restrictive to return all the available data about a compiled pattern. New +programs should use pcre_fullinfo() instead. The yield of +pcre_info() is the number of capturing subpatterns, or one of the +following negative numbers: +

    +

    +

    +  PCRE_ERROR_NULL       the argument code was NULL
+  PCRE_ERROR_BADMAGIC   the "magic number" was not found
+
    +

    +

    +If the optptr argument is not NULL, a copy of the options with which the +pattern was compiled is placed in the integer it points to (see +PCRE_INFO_OPTIONS above). +

    +

    +If the pattern is not anchored and the firstcharptr argument is not NULL, +it is used to pass back information about the first character of any matched +string (see PCRE_INFO_FIRSTCHAR above). +

    +
  • MATCHING A PATTERN +

    +The function pcre_exec() is called to match a subject string against a +pre-compiled pattern, which is passed in the code argument. If the +pattern has been studied, the result of the study should be passed in the +extra argument. Otherwise this must be NULL. +

    +

    +The PCRE_ANCHORED option can be passed in the options argument, whose +unused bits must be zero. However, if a pattern was compiled with +PCRE_ANCHORED, or turned out to be anchored by virtue of its contents, it +cannot be made unachored at matching time. +

    +

    +There are also three further options that can be set only at matching time: +

    +

    +

    +  PCRE_NOTBOL
+
    +

    +

    +The first character of the string is not the beginning of a line, so the +circumflex metacharacter should not match before it. Setting this without +PCRE_MULTILINE (at compile time) causes circumflex never to match. +

    +

    +

    +  PCRE_NOTEOL
+
    +

    +

    +The end of the string is not the end of a line, so the dollar metacharacter +should not match it nor (except in multiline mode) a newline immediately before +it. Setting this without PCRE_MULTILINE (at compile time) causes dollar never +to match. +

    +

    +

    +  PCRE_NOTEMPTY
+
    +

    +

    +An empty string is not considered to be a valid match if this option is set. If +there are alternatives in the pattern, they are tried. If all the alternatives +match the empty string, the entire match fails. For example, if the pattern +

    +

    +

    +  a?b?
+
    +

    +

    +is applied to a string not beginning with "a" or "b", it matches the empty +string at the start of the subject. With PCRE_NOTEMPTY set, this match is not +valid, so PCRE searches further into the string for occurrences of "a" or "b". +

    +

    +Perl has no direct equivalent of PCRE_NOTEMPTY, but it does make a special case +of a pattern match of the empty string within its split() function, and +when using the /g modifier. It is possible to emulate Perl's behaviour after +matching a null string by first trying the match again at the same offset with +PCRE_NOTEMPTY set, and then if that fails by advancing the starting offset (see +below) and trying an ordinary match again. +

    +

    +The subject string is passed as a pointer in subject, a length in +length, and a starting offset in startoffset. Unlike the pattern +string, it may contain binary zero characters. When the starting offset is +zero, the search for a match starts at the beginning of the subject, and this +is by far the most common case. +

    +

    +A non-zero starting offset is useful when searching for another match in the +same subject by calling pcre_exec() again after a previous success. +Setting startoffset differs from just passing over a shortened string and +setting PCRE_NOTBOL in the case of a pattern that begins with any kind of +lookbehind. For example, consider the pattern +

    +

    +

    +  \Biss\B
+
    +

    +

    +which finds occurrences of "iss" in the middle of words. (\B matches only if +the current position in the subject is not a word boundary.) When applied to +the string "Mississipi" the first call to pcre_exec() finds the first +occurrence. If pcre_exec() is called again with just the remainder of the +subject, namely "issipi", it does not match, because \B is always false at the +start of the subject, which is deemed to be a word boundary. However, if +pcre_exec() is passed the entire string again, but with startoffset +set to 4, it finds the second occurrence of "iss" because it is able to look +behind the starting point to discover that it is preceded by a letter. +

    +

    +If a non-zero starting offset is passed when the pattern is anchored, one +attempt to match at the given offset is tried. This can only succeed if the +pattern does not require the match to be at the start of the subject. +

    +

    +In general, a pattern matches a certain portion of the subject, and in +addition, further substrings from the subject may be picked out by parts of the +pattern. Following the usage in Jeffrey Friedl's book, this is called +"capturing" in what follows, and the phrase "capturing subpattern" is used for +a fragment of a pattern that picks out a substring. PCRE supports several other +kinds of parenthesized subpattern that do not cause substrings to be captured. +

    +

    +Captured substrings are returned to the caller via a vector of integer offsets +whose address is passed in ovector. The number of elements in the vector +is passed in ovecsize. The first two-thirds of the vector is used to pass +back captured substrings, each substring using a pair of integers. The +remaining third of the vector is used as workspace by pcre_exec() while +matching capturing subpatterns, and is not available for passing back +information. The length passed in ovecsize should always be a multiple of +three. If it is not, it is rounded down. +

    +

    +When a match has been successful, information about captured substrings is +returned in pairs of integers, starting at the beginning of ovector, and +continuing up to two-thirds of its length at the most. The first element of a +pair is set to the offset of the first character in a substring, and the second +is set to the offset of the first character after the end of a substring. The +first pair, ovector[0] and ovector[1], identify the portion of the +subject string matched by the entire pattern. The next pair is used for the +first capturing subpattern, and so on. The value returned by pcre_exec() +is the number of pairs that have been set. If there are no capturing +subpatterns, the return value from a successful match is 1, indicating that +just the first pair of offsets has been set. +

    +

    +Some convenience functions are provided for extracting the captured substrings +as separate strings. These are described in the following section. +

    +

    +It is possible for an capturing subpattern number n+1 to match some +part of the subject when subpattern n has not been used at all. For +example, if the string "abc" is matched against the pattern (a|(z))(bc) +subpatterns 1 and 3 are matched, but 2 is not. When this happens, both offset +values corresponding to the unused subpattern are set to -1. +

    +

    +If a capturing subpattern is matched repeatedly, it is the last portion of the +string that it matched that gets returned. +

    +

    +If the vector is too small to hold all the captured substrings, it is used as +far as possible (up to two-thirds of its length), and the function returns a +value of zero. In particular, if the substring offsets are not of interest, +pcre_exec() may be called with ovector passed as NULL and +ovecsize as zero. However, if the pattern contains back references and +the ovector isn't big enough to remember the related substrings, PCRE has +to get additional memory for use during matching. Thus it is usually advisable +to supply an ovector. +

    +

    +Note that pcre_info() can be used to find out how many capturing +subpatterns there are in a compiled pattern. The smallest size for +ovector that will allow for n captured substrings in addition to +the offsets of the substring matched by the whole pattern is (n+1)*3. +

    +

    +If pcre_exec() fails, it returns a negative number. The following are +defined in the header file: +

    +

    +

    +  PCRE_ERROR_NOMATCH        (-1)
+
    +

    +

    +The subject string did not match the pattern. +

    +

    +

    +  PCRE_ERROR_NULL           (-2)
+
    +

    +

    +Either code or subject was passed as NULL, or ovector was +NULL and ovecsize was not zero. +

    +

    +

    +  PCRE_ERROR_BADOPTION      (-3)
+
    +

    +

    +An unrecognized bit was set in the options argument. +

    +

    +

    +  PCRE_ERROR_BADMAGIC       (-4)
+
    +

    +

    +PCRE stores a 4-byte "magic number" at the start of the compiled code, to catch +the case when it is passed a junk pointer. This is the error it gives when the +magic number isn't present. +

    +

    +

    +  PCRE_ERROR_UNKNOWN_NODE   (-5)
+
    +

    +

    +While running the pattern match, an unknown item was encountered in the +compiled pattern. This error could be caused by a bug in PCRE or by overwriting +of the compiled pattern. +

    +

    +

    +  PCRE_ERROR_NOMEMORY       (-6)
+
    +

    +

    +If a pattern contains back references, but the ovector that is passed to +pcre_exec() is not big enough to remember the referenced substrings, PCRE +gets a block of memory at the start of matching to use for this purpose. If the +call via pcre_malloc() fails, this error is given. The memory is freed at +the end of matching. +

    +
  • EXTRACTING CAPTURED SUBSTRINGS +

    +Captured substrings can be accessed directly by using the offsets returned by +pcre_exec() in ovector. For convenience, the functions +pcre_copy_substring(), pcre_get_substring(), and +pcre_get_substring_list() are provided for extracting captured substrings +as new, separate, zero-terminated strings. A substring that contains a binary +zero is correctly extracted and has a further zero added on the end, but the +result does not, of course, function as a C string. +

    +

    +The first three arguments are the same for all three functions: subject +is the subject string which has just been successfully matched, ovector +is a pointer to the vector of integer offsets that was passed to +pcre_exec(), and stringcount is the number of substrings that +were captured by the match, including the substring that matched the entire +regular expression. This is the value returned by pcre_exec if it +is greater than zero. If pcre_exec() returned zero, indicating that it +ran out of space in ovector, the value passed as stringcount should +be the size of the vector divided by three. +

    +

    +The functions pcre_copy_substring() and pcre_get_substring() +extract a single substring, whose number is given as stringnumber. A +value of zero extracts the substring that matched the entire pattern, while +higher values extract the captured substrings. For pcre_copy_substring(), +the string is placed in buffer, whose length is given by +buffersize, while for pcre_get_substring() a new block of memory is +obtained via pcre_malloc, and its address is returned via +stringptr. The yield of the function is the length of the string, not +including the terminating zero, or one of +

    +

    +

    +  PCRE_ERROR_NOMEMORY       (-6)
+
    +

    +

    +The buffer was too small for pcre_copy_substring(), or the attempt to get +memory failed for pcre_get_substring(). +

    +

    +

    +  PCRE_ERROR_NOSUBSTRING    (-7)
+
    +

    +

    +There is no substring whose number is stringnumber. +

    +

    +The pcre_get_substring_list() function extracts all available substrings +and builds a list of pointers to them. All this is done in a single block of +memory which is obtained via pcre_malloc. The address of the memory block +is returned via listptr, which is also the start of the list of string +pointers. The end of the list is marked by a NULL pointer. The yield of the +function is zero if all went well, or +

    +

    +

    +  PCRE_ERROR_NOMEMORY       (-6)
+
    +

    +

    +if the attempt to get the memory block failed. +

    +

    +When any of these functions encounter a substring that is unset, which can +happen when capturing subpattern number n+1 matches some part of the +subject, but subpattern n has not been used at all, they return an empty +string. This can be distinguished from a genuine zero-length substring by +inspecting the appropriate offset in ovector, which is negative for unset +substrings. +

    +

    +The two convenience functions pcre_free_substring() and +pcre_free_substring_list() can be used to free the memory returned by +a previous call of pcre_get_substring() or +pcre_get_substring_list(), respectively. They do nothing more than call +the function pointed to by pcre_free, which of course could be called +directly from a C program. However, PCRE is used in some situations where it is +linked via a special interface to another programming language which cannot use +pcre_free directly; it is for these cases that the functions are +provided. +

    +
  • LIMITATIONS +

    +There are some size limitations in PCRE but it is hoped that they will never in +practice be relevant. +The maximum length of a compiled pattern is 65539 (sic) bytes. +All values in repeating quantifiers must be less than 65536. +The maximum number of capturing subpatterns is 99. +The maximum number of all parenthesized subpatterns, including capturing +subpatterns, assertions, and other types of subpattern, is 200. +

    +

    +The maximum length of a subject string is the largest positive number that an +integer variable can hold. However, PCRE uses recursion to handle subpatterns +and indefinite repetition. This means that the available stack space may limit +the size of a subject string that can be processed by certain patterns. +

    +
  • DIFFERENCES FROM PERL +

    +The differences described here are with respect to Perl 5.005. +

    +

    +1. By default, a whitespace character is any character that the C library +function isspace() recognizes, though it is possible to compile PCRE with +alternative character type tables. Normally isspace() matches space, +formfeed, newline, carriage return, horizontal tab, and vertical tab. Perl 5 +no longer includes vertical tab in its set of whitespace characters. The \v +escape that was in the Perl documentation for a long time was never in fact +recognized. However, the character itself was treated as whitespace at least +up to 5.002. In 5.004 and 5.005 it does not match \s. +

    +

    +2. PCRE does not allow repeat quantifiers on lookahead assertions. Perl permits +them, but they do not mean what you might think. For example, (?!a){3} does +not assert that the next three characters are not "a". It just asserts that the +next character is not "a" three times. +

    +

    +3. Capturing subpatterns that occur inside negative lookahead assertions are +counted, but their entries in the offsets vector are never set. Perl sets its +numerical variables from any such patterns that are matched before the +assertion fails to match something (thereby succeeding), but only if the +negative lookahead assertion contains just one branch. +

    +

    +4. Though binary zero characters are supported in the subject string, they are +not allowed in a pattern string because it is passed as a normal C string, +terminated by zero. The escape sequence "\0" can be used in the pattern to +represent a binary zero. +

    +

    +5. The following Perl escape sequences are not supported: \l, \u, \L, \U, +\E, \Q. In fact these are implemented by Perl's general string-handling and +are not part of its pattern matching engine. +

    +

    +6. The Perl \G assertion is not supported as it is not relevant to single +pattern matches. +

    +

    +7. Fairly obviously, PCRE does not support the (?{code}) and (?p{code}) +constructions. However, there is some experimental support for recursive +patterns using the non-Perl item (?R). +

    +

    +8. There are at the time of writing some oddities in Perl 5.005_02 concerned +with the settings of captured strings when part of a pattern is repeated. For +example, matching "aba" against the pattern /^(a(b)?)+$/ sets $2 to the value +"b", but matching "aabbaa" against /^(aa(bb)?)+$/ leaves $2 unset. However, if +the pattern is changed to /^(aa(b(b))?)+$/ then $2 (and $3) are set. +

    +

    +In Perl 5.004 $2 is set in both cases, and that is also true of PCRE. If in the +future Perl changes to a consistent state that is different, PCRE may change to +follow. +

    +

    +9. Another as yet unresolved discrepancy is that in Perl 5.005_02 the pattern +/^(a)?(?(1)a|b)+$/ matches the string "a", whereas in PCRE it does not. +However, in both Perl and PCRE /^(a)?a/ matched against "a" leaves $1 unset. +

    +

    +10. PCRE provides some extensions to the Perl regular expression facilities: +

    +

    +(a) Although lookbehind assertions must match fixed length strings, each +alternative branch of a lookbehind assertion can match a different length of +string. Perl 5.005 requires them all to have the same length. +

    +

    +(b) If PCRE_DOLLAR_ENDONLY is set and PCRE_MULTILINE is not set, the $ meta- +character matches only at the very end of the string. +

    +

    +(c) If PCRE_EXTRA is set, a backslash followed by a letter with no special +meaning is faulted. +

    +

    +(d) If PCRE_UNGREEDY is set, the greediness of the repetition quantifiers is +inverted, that is, by default they are not greedy, but if followed by a +question mark they are. +

    +

    +(e) PCRE_ANCHORED can be used to force a pattern to be tried only at the start +of the subject. +

    +

    +(f) The PCRE_NOTBOL, PCRE_NOTEOL, and PCRE_NOTEMPTY options for +pcre_exec() have no Perl equivalents. +

    +

    +(g) The (?R) construct allows for recursive pattern matching (Perl 5.6 can do +this using the (?p{code}) construct, which PCRE cannot of course support.) +

    +
  • REGULAR EXPRESSION DETAILS +

    +The syntax and semantics of the regular expressions supported by PCRE are +described below. Regular expressions are also described in the Perl +documentation and in a number of other books, some of which have copious +examples. Jeffrey Friedl's "Mastering Regular Expressions", published by +O'Reilly (ISBN 1-56592-257), covers them in great detail. +

    +

    +The description here is intended as reference documentation. The basic +operation of PCRE is on strings of bytes. However, there is the beginnings of +some support for UTF-8 character strings. To use this support you must +configure PCRE to include it, and then call pcre_compile() with the +PCRE_UTF8 option. How this affects the pattern matching is described in the +final section of this document. +

    +

    +A regular expression is a pattern that is matched against a subject string from +left to right. Most characters stand for themselves in a pattern, and match the +corresponding characters in the subject. As a trivial example, the pattern +

    +

    +

    +  The quick brown fox
+
    +

    +

    +matches a portion of a subject string that is identical to itself. The power of +regular expressions comes from the ability to include alternatives and +repetitions in the pattern. These are encoded in the pattern by the use of +meta-characters, which do not stand for themselves but instead are +interpreted in some special way. +

    +

    +There are two different sets of meta-characters: those that are recognized +anywhere in the pattern except within square brackets, and those that are +recognized in square brackets. Outside square brackets, the meta-characters are +as follows: +

    +

    +

    +  \      general escape character with several uses
+  ^      assert start of subject (or line, in multiline mode)
+  $      assert end of subject (or line, in multiline mode)
+  .      match any character except newline (by default)
+  [      start character class definition
+  |      start of alternative branch
+  (      start subpattern
+  )      end subpattern
+  ?      extends the meaning of (
+         also 0 or 1 quantifier
+         also quantifier minimizer
+  *      0 or more quantifier
+  +      1 or more quantifier
+  {      start min/max quantifier
+
    +

    +

    +Part of a pattern that is in square brackets is called a "character class". In +a character class the only meta-characters are: +

    +

    +

    +  \      general escape character
+  ^      negate the class, but only if the first character
+  -      indicates character range
+  ]      terminates the character class
+
    +

    +

    +The following sections describe the use of each of the meta-characters. +

    +
  • BACKSLASH +

    +The backslash character has several uses. Firstly, if it is followed by a +non-alphameric character, it takes away any special meaning that character may +have. This use of backslash as an escape character applies both inside and +outside character classes. +

    +

    +For example, if you want to match a "*" character, you write "\*" in the +pattern. This applies whether or not the following character would otherwise be +interpreted as a meta-character, so it is always safe to precede a +non-alphameric with "\" to specify that it stands for itself. In particular, +if you want to match a backslash, you write "\\". +

    +

    +If a pattern is compiled with the PCRE_EXTENDED option, whitespace in the +pattern (other than in a character class) and characters between a "#" outside +a character class and the next newline character are ignored. An escaping +backslash can be used to include a whitespace or "#" character as part of the +pattern. +

    +

    +A second use of backslash provides a way of encoding non-printing characters +in patterns in a visible manner. There is no restriction on the appearance of +non-printing characters, apart from the binary zero that terminates a pattern, +but when a pattern is being prepared by text editing, it is usually easier to +use one of the following escape sequences than the binary character it +represents: +

    +

    +

    +  \a     alarm, that is, the BEL character (hex 07)
+  \cx    "control-x", where x is any character
+  \e     escape (hex 1B)
+  \f     formfeed (hex 0C)
+  \n     newline (hex 0A)
+  \r     carriage return (hex 0D)
+  \t     tab (hex 09)
+  \xhh   character with hex code hh
+  \ddd   character with octal code ddd, or backreference
+
    +

    +

    +The precise effect of "\cx" is as follows: if "x" is a lower case letter, it +is converted to upper case. Then bit 6 of the character (hex 40) is inverted. +Thus "\cz" becomes hex 1A, but "\c{" becomes hex 3B, while "\c;" becomes hex +7B. +

    +

    +After "\x", up to two hexadecimal digits are read (letters can be in upper or +lower case). +

    +

    +After "\0" up to two further octal digits are read. In both cases, if there +are fewer than two digits, just those that are present are used. Thus the +sequence "\0\x\07" specifies two binary zeros followed by a BEL character. +Make sure you supply two digits after the initial zero if the character that +follows is itself an octal digit. +

    +

    +The handling of a backslash followed by a digit other than 0 is complicated. +Outside a character class, PCRE reads it and any following digits as a decimal +number. If the number is less than 10, or if there have been at least that many +previous capturing left parentheses in the expression, the entire sequence is +taken as a back reference. A description of how this works is given +later, following the discussion of parenthesized subpatterns. +

    +

    +Inside a character class, or if the decimal number is greater than 9 and there +have not been that many capturing subpatterns, PCRE re-reads up to three octal +digits following the backslash, and generates a single byte from the least +significant 8 bits of the value. Any subsequent digits stand for themselves. +For example: +

    +

    +

    +  \040   is another way of writing a space
+  \40    is the same, provided there are fewer than 40
+            previous capturing subpatterns
+  \7     is always a back reference
+  \11    might be a back reference, or another way of
+            writing a tab
+  \011   is always a tab
+  \0113  is a tab followed by the character "3"
+  \113   is the character with octal code 113 (since there
+            can be no more than 99 back references)
+  \377   is a byte consisting entirely of 1 bits
+  \81    is either a back reference, or a binary zero
+            followed by the two characters "8" and "1"
+
    +

    +

    +Note that octal values of 100 or greater must not be introduced by a leading +zero, because no more than three octal digits are ever read. +

    +

    +All the sequences that define a single byte value can be used both inside and +outside character classes. In addition, inside a character class, the sequence +"\b" is interpreted as the backspace character (hex 08). Outside a character +class it has a different meaning (see below). +

    +

    +The third use of backslash is for specifying generic character types: +

    +

    +

    +  \d     any decimal digit
+  \D     any character that is not a decimal digit
+  \s     any whitespace character
+  \S     any character that is not a whitespace character
+  \w     any "word" character
+  \W     any "non-word" character
+
    +

    +

    +Each pair of escape sequences partitions the complete set of characters into +two disjoint sets. Any given character matches one, and only one, of each pair. +

    +

    +A "word" character is any letter or digit or the underscore character, that is, +any character which can be part of a Perl "word". The definition of letters and +digits is controlled by PCRE's character tables, and may vary if locale- +specific matching is taking place (see "Locale support" above). For example, in +the "fr" (French) locale, some character codes greater than 128 are used for +accented letters, and these are matched by \w. +

    +

    +These character type sequences can appear both inside and outside character +classes. They each match one character of the appropriate type. If the current +matching point is at the end of the subject string, all of them fail, since +there is no character to match. +

    +

    +The fourth use of backslash is for certain simple assertions. An assertion +specifies a condition that has to be met at a particular point in a match, +without consuming any characters from the subject string. The use of +subpatterns for more complicated assertions is described below. The backslashed +assertions are +

    +

    +

    +  \b     word boundary
+  \B     not a word boundary
+  \A     start of subject (independent of multiline mode)
+  \Z     end of subject or newline at end (independent of multiline mode)
+  \z     end of subject (independent of multiline mode)
+
    +

    +

    +These assertions may not appear in character classes (but note that "\b" has a +different meaning, namely the backspace character, inside a character class). +

    +

    +A word boundary is a position in the subject string where the current character +and the previous character do not both match \w or \W (i.e. one matches +\w and the other matches \W), or the start or end of the string if the +first or last character matches \w, respectively. +

    +

    +The \A, \Z, and \z assertions differ from the traditional circumflex and +dollar (described below) in that they only ever match at the very start and end +of the subject string, whatever options are set. They are not affected by the +PCRE_NOTBOL or PCRE_NOTEOL options. If the startoffset argument of +pcre_exec() is non-zero, \A can never match. The difference between \Z +and \z is that \Z matches before a newline that is the last character of the +string as well as at the end of the string, whereas \z matches only at the +end. +

    +
  • CIRCUMFLEX AND DOLLAR +

    +Outside a character class, in the default matching mode, the circumflex +character is an assertion which is true only if the current matching point is +at the start of the subject string. If the startoffset argument of +pcre_exec() is non-zero, circumflex can never match. Inside a character +class, circumflex has an entirely different meaning (see below). +

    +

    +Circumflex need not be the first character of the pattern if a number of +alternatives are involved, but it should be the first thing in each alternative +in which it appears if the pattern is ever to match that branch. If all +possible alternatives start with a circumflex, that is, if the pattern is +constrained to match only at the start of the subject, it is said to be an +"anchored" pattern. (There are also other constructs that can cause a pattern +to be anchored.) +

    +

    +A dollar character is an assertion which is true only if the current matching +point is at the end of the subject string, or immediately before a newline +character that is the last character in the string (by default). Dollar need +not be the last character of the pattern if a number of alternatives are +involved, but it should be the last item in any branch in which it appears. +Dollar has no special meaning in a character class. +

    +

    +The meaning of dollar can be changed so that it matches only at the very end of +the string, by setting the PCRE_DOLLAR_ENDONLY option at compile or matching +time. This does not affect the \Z assertion. +

    +

    +The meanings of the circumflex and dollar characters are changed if the +PCRE_MULTILINE option is set. When this is the case, they match immediately +after and immediately before an internal "\n" character, respectively, in +addition to matching at the start and end of the subject string. For example, +the pattern /^abc$/ matches the subject string "def\nabc" in multiline mode, +but not otherwise. Consequently, patterns that are anchored in single line mode +because all branches start with "^" are not anchored in multiline mode, and a +match for circumflex is possible when the startoffset argument of +pcre_exec() is non-zero. The PCRE_DOLLAR_ENDONLY option is ignored if +PCRE_MULTILINE is set. +

    +

    +Note that the sequences \A, \Z, and \z can be used to match the start and +end of the subject in both modes, and if all branches of a pattern start with +\A is it always anchored, whether PCRE_MULTILINE is set or not. +

    +
  • FULL STOP (PERIOD, DOT) +

    +Outside a character class, a dot in the pattern matches any one character in +the subject, including a non-printing character, but not (by default) newline. +If the PCRE_DOTALL option is set, dots match newlines as well. The handling of +dot is entirely independent of the handling of circumflex and dollar, the only +relationship being that they both involve newline characters. Dot has no +special meaning in a character class. +

    +
  • SQUARE BRACKETS +

    +An opening square bracket introduces a character class, terminated by a closing +square bracket. A closing square bracket on its own is not special. If a +closing square bracket is required as a member of the class, it should be the +first data character in the class (after an initial circumflex, if present) or +escaped with a backslash. +

    +

    +A character class matches a single character in the subject; the character must +be in the set of characters defined by the class, unless the first character in +the class is a circumflex, in which case the subject character must not be in +the set defined by the class. If a circumflex is actually required as a member +of the class, ensure it is not the first character, or escape it with a +backslash. +

    +

    +For example, the character class [aeiou] matches any lower case vowel, while +[^aeiou] matches any character that is not a lower case vowel. Note that a +circumflex is just a convenient notation for specifying the characters which +are in the class by enumerating those that are not. It is not an assertion: it +still consumes a character from the subject string, and fails if the current +pointer is at the end of the string. +

    +

    +When caseless matching is set, any letters in a class represent both their +upper case and lower case versions, so for example, a caseless [aeiou] matches +"A" as well as "a", and a caseless [^aeiou] does not match "A", whereas a +caseful version would. +

    +

    +The newline character is never treated in any special way in character classes, +whatever the setting of the PCRE_DOTALL or PCRE_MULTILINE options is. A class +such as [^a] will always match a newline. +

    +

    +The minus (hyphen) character can be used to specify a range of characters in a +character class. For example, [d-m] matches any letter between d and m, +inclusive. If a minus character is required in a class, it must be escaped with +a backslash or appear in a position where it cannot be interpreted as +indicating a range, typically as the first or last character in the class. +

    +

    +It is not possible to have the literal character "]" as the end character of a +range. A pattern such as [W-]46] is interpreted as a class of two characters +("W" and "-") followed by a literal string "46]", so it would match "W46]" or +"-46]". However, if the "]" is escaped with a backslash it is interpreted as +the end of range, so [W-\]46] is interpreted as a single class containing a +range followed by two separate characters. The octal or hexadecimal +representation of "]" can also be used to end a range. +

    +

    +Ranges operate in ASCII collating sequence. They can also be used for +characters specified numerically, for example [\000-\037]. If a range that +includes letters is used when caseless matching is set, it matches the letters +in either case. For example, [W-c] is equivalent to [][\^_`wxyzabc], matched +caselessly, and if character tables for the "fr" locale are in use, +[\xc8-\xcb] matches accented E characters in both cases. +

    +

    +The character types \d, \D, \s, \S, \w, and \W may also appear in a +character class, and add the characters that they match to the class. For +example, [\dABCDEF] matches any hexadecimal digit. A circumflex can +conveniently be used with the upper case character types to specify a more +restricted set of characters than the matching lower case type. For example, +the class [^\W_] matches any letter or digit, but not underscore. +

    +

    +All non-alphameric characters other than \, -, ^ (at the start) and the +terminating ] are non-special in character classes, but it does no harm if they +are escaped. +

    +
  • POSIX CHARACTER CLASSES +

    +Perl 5.6 (not yet released at the time of writing) is going to support the +POSIX notation for character classes, which uses names enclosed by [: and :] +within the enclosing square brackets. PCRE supports this notation. For example, +

    +

    +

    +  [01[:alpha:]%]
+
    +

    +

    +matches "0", "1", any alphabetic character, or "%". The supported class names +are +

    +

    +

    +  alnum    letters and digits
+  alpha    letters
+  ascii    character codes 0 - 127
+  cntrl    control characters
+  digit    decimal digits (same as \d)
+  graph    printing characters, excluding space
+  lower    lower case letters
+  print    printing characters, including space
+  punct    printing characters, excluding letters and digits
+  space    white space (same as \s)
+  upper    upper case letters
+  word     "word" characters (same as \w)
+  xdigit   hexadecimal digits
+
    +

    +

    +The names "ascii" and "word" are Perl extensions. Another Perl extension is +negation, which is indicated by a ^ character after the colon. For example, +

    +

    +

    +  [12[:^digit:]]
+
    +

    +

    +matches "1", "2", or any non-digit. PCRE (and Perl) also recogize the POSIX +syntax [.ch.] and [=ch=] where "ch" is a "collating element", but these are not +supported, and an error is given if they are encountered. +

    +
  • VERTICAL BAR +

    +Vertical bar characters are used to separate alternative patterns. For example, +the pattern +

    +

    +

    +  gilbert|sullivan
+
    +

    +

    +matches either "gilbert" or "sullivan". Any number of alternatives may appear, +and an empty alternative is permitted (matching the empty string). +The matching process tries each alternative in turn, from left to right, +and the first one that succeeds is used. If the alternatives are within a +subpattern (defined below), "succeeds" means matching the rest of the main +pattern as well as the alternative in the subpattern. +

    +
  • INTERNAL OPTION SETTING +

    +The settings of PCRE_CASELESS, PCRE_MULTILINE, PCRE_DOTALL, and PCRE_EXTENDED +can be changed from within the pattern by a sequence of Perl option letters +enclosed between "(?" and ")". The option letters are +

    +

    +

    +  i  for PCRE_CASELESS
+  m  for PCRE_MULTILINE
+  s  for PCRE_DOTALL
+  x  for PCRE_EXTENDED
+
    +

    +

    +For example, (?im) sets caseless, multiline matching. It is also possible to +unset these options by preceding the letter with a hyphen, and a combined +setting and unsetting such as (?im-sx), which sets PCRE_CASELESS and +PCRE_MULTILINE while unsetting PCRE_DOTALL and PCRE_EXTENDED, is also +permitted. If a letter appears both before and after the hyphen, the option is +unset. +

    +

    +The scope of these option changes depends on where in the pattern the setting +occurs. For settings that are outside any subpattern (defined below), the +effect is the same as if the options were set or unset at the start of +matching. The following patterns all behave in exactly the same way: +

    +

    +

    +  (?i)abc
+  a(?i)bc
+  ab(?i)c
+  abc(?i)
+
    +

    +

    +which in turn is the same as compiling the pattern abc with PCRE_CASELESS set. +In other words, such "top level" settings apply to the whole pattern (unless +there are other changes inside subpatterns). If there is more than one setting +of the same option at top level, the rightmost setting is used. +

    +

    +If an option change occurs inside a subpattern, the effect is different. This +is a change of behaviour in Perl 5.005. An option change inside a subpattern +affects only that part of the subpattern that follows it, so +

    +

    +

    +  (a(?i)b)c
+
    +

    +

    +matches abc and aBc and no other strings (assuming PCRE_CASELESS is not used). +By this means, options can be made to have different settings in different +parts of the pattern. Any changes made in one alternative do carry on +into subsequent branches within the same subpattern. For example, +

    +

    +

    +  (a(?i)b|c)
+
    +

    +

    +matches "ab", "aB", "c", and "C", even though when matching "C" the first +branch is abandoned before the option setting. This is because the effects of +option settings happen at compile time. There would be some very weird +behaviour otherwise. +

    +

    +The PCRE-specific options PCRE_UNGREEDY and PCRE_EXTRA can be changed in the +same way as the Perl-compatible options by using the characters U and X +respectively. The (?X) flag setting is special in that it must always occur +earlier in the pattern than any of the additional features it turns on, even +when it is at top level. It is best put at the start. +

    +
  • SUBPATTERNS +

    +Subpatterns are delimited by parentheses (round brackets), which can be nested. +Marking part of a pattern as a subpattern does two things: +

    +

    +1. It localizes a set of alternatives. For example, the pattern +

    +

    +

    +  cat(aract|erpillar|)
+
    +

    +

    +matches one of the words "cat", "cataract", or "caterpillar". Without the +parentheses, it would match "cataract", "erpillar" or the empty string. +

    +

    +2. It sets up the subpattern as a capturing subpattern (as defined above). +When the whole pattern matches, that portion of the subject string that matched +the subpattern is passed back to the caller via the ovector argument of +pcre_exec(). Opening parentheses are counted from left to right (starting +from 1) to obtain the numbers of the capturing subpatterns. +

    +

    +For example, if the string "the red king" is matched against the pattern +

    +

    +

    +  the ((red|white) (king|queen))
+
    +

    +

    +the captured substrings are "red king", "red", and "king", and are numbered 1, +2, and 3. +

    +

    +The fact that plain parentheses fulfil two functions is not always helpful. +There are often times when a grouping subpattern is required without a +capturing requirement. If an opening parenthesis is followed by "?:", the +subpattern does not do any capturing, and is not counted when computing the +number of any subsequent capturing subpatterns. For example, if the string "the +white queen" is matched against the pattern +

    +

    +

    +  the ((?:red|white) (king|queen))
+
    +

    +

    +the captured substrings are "white queen" and "queen", and are numbered 1 and +2. The maximum number of captured substrings is 99, and the maximum number of +all subpatterns, both capturing and non-capturing, is 200. +

    +

    +As a convenient shorthand, if any option settings are required at the start of +a non-capturing subpattern, the option letters may appear between the "?" and +the ":". Thus the two patterns +

    +

    +

    +  (?i:saturday|sunday)
+  (?:(?i)saturday|sunday)
+
    +

    +

    +match exactly the same set of strings. Because alternative branches are tried +from left to right, and options are not reset until the end of the subpattern +is reached, an option setting in one branch does affect subsequent branches, so +the above patterns match "SUNDAY" as well as "Saturday". +

    +
  • REPETITION +

    +Repetition is specified by quantifiers, which can follow any of the following +items: +

    +

    +

    +  a single character, possibly escaped
+  the . metacharacter
+  a character class
+  a back reference (see next section)
+  a parenthesized subpattern (unless it is an assertion - see below)
+
    +

    +

    +The general repetition quantifier specifies a minimum and maximum number of +permitted matches, by giving the two numbers in curly brackets (braces), +separated by a comma. The numbers must be less than 65536, and the first must +be less than or equal to the second. For example: +

    +

    +

    +  z{2,4}
+
    +

    +

    +matches "zz", "zzz", or "zzzz". A closing brace on its own is not a special +character. If the second number is omitted, but the comma is present, there is +no upper limit; if the second number and the comma are both omitted, the +quantifier specifies an exact number of required matches. Thus +

    +

    +

    +  [aeiou]{3,}
+
    +

    +

    +matches at least 3 successive vowels, but may match many more, while +

    +

    +

    +  \d{8}
+
    +

    +

    +matches exactly 8 digits. An opening curly bracket that appears in a position +where a quantifier is not allowed, or one that does not match the syntax of a +quantifier, is taken as a literal character. For example, {,6} is not a +quantifier, but a literal string of four characters. +

    +

    +The quantifier {0} is permitted, causing the expression to behave as if the +previous item and the quantifier were not present. +

    +

    +For convenience (and historical compatibility) the three most common +quantifiers have single-character abbreviations: +

    +

    +

    +  *    is equivalent to {0,}
+  +    is equivalent to {1,}
+  ?    is equivalent to {0,1}
+
    +

    +

    +It is possible to construct infinite loops by following a subpattern that can +match no characters with a quantifier that has no upper limit, for example: +

    +

    +

    +  (a?)*
+
    +

    +

    +Earlier versions of Perl and PCRE used to give an error at compile time for +such patterns. However, because there are cases where this can be useful, such +patterns are now accepted, but if any repetition of the subpattern does in fact +match no characters, the loop is forcibly broken. +

    +

    +By default, the quantifiers are "greedy", that is, they match as much as +possible (up to the maximum number of permitted times), without causing the +rest of the pattern to fail. The classic example of where this gives problems +is in trying to match comments in C programs. These appear between the +sequences /* and */ and within the sequence, individual * and / characters may +appear. An attempt to match C comments by applying the pattern +

    +

    +

    +  /\*.*\*/
+
    +

    +

    +to the string +

    +

    +

    +  /* first command */  not comment  /* second comment */
+
    +

    +

    +fails, because it matches the entire string owing to the greediness of the .* +item. +

    +

    +However, if a quantifier is followed by a question mark, it ceases to be +greedy, and instead matches the minimum number of times possible, so the +pattern +

    +

    +

    +  /\*.*?\*/
+
    +

    +

    +does the right thing with the C comments. The meaning of the various +quantifiers is not otherwise changed, just the preferred number of matches. +Do not confuse this use of question mark with its use as a quantifier in its +own right. Because it has two uses, it can sometimes appear doubled, as in +

    +

    +

    +  \d??\d
+
    +

    +

    +which matches one digit by preference, but can match two if that is the only +way the rest of the pattern matches. +

    +

    +If the PCRE_UNGREEDY option is set (an option which is not available in Perl), +the quantifiers are not greedy by default, but individual ones can be made +greedy by following them with a question mark. In other words, it inverts the +default behaviour. +

    +

    +When a parenthesized subpattern is quantified with a minimum repeat count that +is greater than 1 or with a limited maximum, more store is required for the +compiled pattern, in proportion to the size of the minimum or maximum. +

    +

    +If a pattern starts with .* or .{0,} and the PCRE_DOTALL option (equivalent +to Perl's /s) is set, thus allowing the . to match newlines, the pattern is +implicitly anchored, because whatever follows will be tried against every +character position in the subject string, so there is no point in retrying the +overall match at any position after the first. PCRE treats such a pattern as +though it were preceded by \A. In cases where it is known that the subject +string contains no newlines, it is worth setting PCRE_DOTALL when the pattern +begins with .* in order to obtain this optimization, or alternatively using ^ +to indicate anchoring explicitly. +

    +

    +When a capturing subpattern is repeated, the value captured is the substring +that matched the final iteration. For example, after +

    +

    +

    +  (tweedle[dume]{3}\s*)+
+
    +

    +

    +has matched "tweedledum tweedledee" the value of the captured substring is +"tweedledee". However, if there are nested capturing subpatterns, the +corresponding captured values may have been set in previous iterations. For +example, after +

    +

    +

    +  /(a|(b))+/
+
    +

    +

    +matches "aba" the value of the second captured substring is "b". +

    +
  • BACK REFERENCES +

    +Outside a character class, a backslash followed by a digit greater than 0 (and +possibly further digits) is a back reference to a capturing subpattern earlier +(i.e. to its left) in the pattern, provided there have been that many previous +capturing left parentheses. +

    +

    +However, if the decimal number following the backslash is less than 10, it is +always taken as a back reference, and causes an error only if there are not +that many capturing left parentheses in the entire pattern. In other words, the +parentheses that are referenced need not be to the left of the reference for +numbers less than 10. See the section entitled "Backslash" above for further +details of the handling of digits following a backslash. +

    +

    +A back reference matches whatever actually matched the capturing subpattern in +the current subject string, rather than anything matching the subpattern +itself. So the pattern +

    +

    +

    +  (sens|respons)e and \1ibility
+
    +

    +

    +matches "sense and sensibility" and "response and responsibility", but not +"sense and responsibility". If caseful matching is in force at the time of the +back reference, the case of letters is relevant. For example, +

    +

    +

    +  ((?i)rah)\s+\1
+
    +

    +

    +matches "rah rah" and "RAH RAH", but not "RAH rah", even though the original +capturing subpattern is matched caselessly. +

    +

    +There may be more than one back reference to the same subpattern. If a +subpattern has not actually been used in a particular match, any back +references to it always fail. For example, the pattern +

    +

    +

    +  (a|(bc))\2
+
    +

    +

    +always fails if it starts to match "a" rather than "bc". Because there may be +up to 99 back references, all digits following the backslash are taken +as part of a potential back reference number. If the pattern continues with a +digit character, some delimiter must be used to terminate the back reference. +If the PCRE_EXTENDED option is set, this can be whitespace. Otherwise an empty +comment can be used. +

    +

    +A back reference that occurs inside the parentheses to which it refers fails +when the subpattern is first used, so, for example, (a\1) never matches. +However, such references can be useful inside repeated subpatterns. For +example, the pattern +

    +

    +

    +  (a|b\1)+
+
    +

    +

    +matches any number of "a"s and also "aba", "ababbaa" etc. At each iteration of +the subpattern, the back reference matches the character string corresponding +to the previous iteration. In order for this to work, the pattern must be such +that the first iteration does not need to match the back reference. This can be +done using alternation, as in the example above, or by a quantifier with a +minimum of zero. +

    +
  • ASSERTIONS +

    +An assertion is a test on the characters following or preceding the current +matching point that does not actually consume any characters. The simple +assertions coded as \b, \B, \A, \Z, \z, ^ and $ are described above. More +complicated assertions are coded as subpatterns. There are two kinds: those +that look ahead of the current position in the subject string, and those that +look behind it. +

    +

    +An assertion subpattern is matched in the normal way, except that it does not +cause the current matching position to be changed. Lookahead assertions start +with (?= for positive assertions and (?! for negative assertions. For example, +

    +

    +

    +  \w+(?=;)
+
    +

    +

    +matches a word followed by a semicolon, but does not include the semicolon in +the match, and +

    +

    +

    +  foo(?!bar)
+
    +

    +

    +matches any occurrence of "foo" that is not followed by "bar". Note that the +apparently similar pattern +

    +

    +

    +  (?!foo)bar
+
    +

    +

    +does not find an occurrence of "bar" that is preceded by something other than +"foo"; it finds any occurrence of "bar" whatsoever, because the assertion +(?!foo) is always true when the next three characters are "bar". A +lookbehind assertion is needed to achieve this effect. +

    +

    +Lookbehind assertions start with (?<= for positive assertions and (?<! for +negative assertions. For example, +

    +

    +

    +  (?<!foo)bar
+
    +

    +

    +does find an occurrence of "bar" that is not preceded by "foo". The contents of +a lookbehind assertion are restricted such that all the strings it matches must +have a fixed length. However, if there are several alternatives, they do not +all have to have the same fixed length. Thus +

    +

    +

    +  (?<=bullock|donkey)
+
    +

    +

    +is permitted, but +

    +

    +

    +  (?<!dogs?|cats?)
+
    +

    +

    +causes an error at compile time. Branches that match different length strings +are permitted only at the top level of a lookbehind assertion. This is an +extension compared with Perl 5.005, which requires all branches to match the +same length of string. An assertion such as +

    +

    +

    +  (?<=ab(c|de))
+
    +

    +

    +is not permitted, because its single top-level branch can match two different +lengths, but it is acceptable if rewritten to use two top-level branches: +

    +

    +

    +  (?<=abc|abde)
+
    +

    +

    +The implementation of lookbehind assertions is, for each alternative, to +temporarily move the current position back by the fixed width and then try to +match. If there are insufficient characters before the current position, the +match is deemed to fail. Lookbehinds in conjunction with once-only subpatterns +can be particularly useful for matching at the ends of strings; an example is +given at the end of the section on once-only subpatterns. +

    +

    +Several assertions (of any sort) may occur in succession. For example, +

    +

    +

    +  (?<=\d{3})(?<!999)foo
+
    +

    +

    +matches "foo" preceded by three digits that are not "999". Notice that each of +the assertions is applied independently at the same point in the subject +string. First there is a check that the previous three characters are all +digits, and then there is a check that the same three characters are not "999". +This pattern does not match "foo" preceded by six characters, the first +of which are digits and the last three of which are not "999". For example, it +doesn't match "123abcfoo". A pattern to do that is +

    +

    +

    +  (?<=\d{3}...)(?<!999)foo
+
    +

    +

    +This time the first assertion looks at the preceding six characters, checking +that the first three are digits, and then the second assertion checks that the +preceding three characters are not "999". +

    +

    +Assertions can be nested in any combination. For example, +

    +

    +

    +  (?<=(?<!foo)bar)baz
+
    +

    +

    +matches an occurrence of "baz" that is preceded by "bar" which in turn is not +preceded by "foo", while +

    +

    +

    +  (?<=\d{3}(?!999)...)foo
+
    +

    +

    +is another pattern which matches "foo" preceded by three digits and any three +characters that are not "999". +

    +

    +Assertion subpatterns are not capturing subpatterns, and may not be repeated, +because it makes no sense to assert the same thing several times. If any kind +of assertion contains capturing subpatterns within it, these are counted for +the purposes of numbering the capturing subpatterns in the whole pattern. +However, substring capturing is carried out only for positive assertions, +because it does not make sense for negative assertions. +

    +

    +Assertions count towards the maximum of 200 parenthesized subpatterns. +

    +
  • ONCE-ONLY SUBPATTERNS +

    +With both maximizing and minimizing repetition, failure of what follows +normally causes the repeated item to be re-evaluated to see if a different +number of repeats allows the rest of the pattern to match. Sometimes it is +useful to prevent this, either to change the nature of the match, or to cause +it fail earlier than it otherwise might, when the author of the pattern knows +there is no point in carrying on. +

    +

    +Consider, for example, the pattern \d+foo when applied to the subject line +

    +

    +

    +  123456bar
+
    +

    +

    +After matching all 6 digits and then failing to match "foo", the normal +action of the matcher is to try again with only 5 digits matching the \d+ +item, and then with 4, and so on, before ultimately failing. Once-only +subpatterns provide the means for specifying that once a portion of the pattern +has matched, it is not to be re-evaluated in this way, so the matcher would +give up immediately on failing to match "foo" the first time. The notation is +another kind of special parenthesis, starting with (?> as in this example: +

    +

    +

    +  (?>\d+)bar
+
    +

    +

    +This kind of parenthesis "locks up" the part of the pattern it contains once +it has matched, and a failure further into the pattern is prevented from +backtracking into it. Backtracking past it to previous items, however, works as +normal. +

    +

    +An alternative description is that a subpattern of this type matches the string +of characters that an identical standalone pattern would match, if anchored at +the current point in the subject string. +

    +

    +Once-only subpatterns are not capturing subpatterns. Simple cases such as the +above example can be thought of as a maximizing repeat that must swallow +everything it can. So, while both \d+ and \d+? are prepared to adjust the +number of digits they match in order to make the rest of the pattern match, +(?>\d+) can only match an entire sequence of digits. +

    +

    +This construction can of course contain arbitrarily complicated subpatterns, +and it can be nested. +

    +

    +Once-only subpatterns can be used in conjunction with lookbehind assertions to +specify efficient matching at the end of the subject string. Consider a simple +pattern such as +

    +

    +

    +  abcd$
+
    +

    +

    +when applied to a long string which does not match. Because matching proceeds +from left to right, PCRE will look for each "a" in the subject and then see if +what follows matches the rest of the pattern. If the pattern is specified as +

    +

    +

    +  ^.*abcd$
+
    +

    +

    +the initial .* matches the entire string at first, but when this fails (because +there is no following "a"), it backtracks to match all but the last character, +then all but the last two characters, and so on. Once again the search for "a" +covers the entire string, from right to left, so we are no better off. However, +if the pattern is written as +

    +

    +

    +  ^(?>.*)(?<=abcd)
+
    +

    +

    +there can be no backtracking for the .* item; it can match only the entire +string. The subsequent lookbehind assertion does a single test on the last four +characters. If it fails, the match fails immediately. For long strings, this +approach makes a significant difference to the processing time. +

    +

    +When a pattern contains an unlimited repeat inside a subpattern that can itself +be repeated an unlimited number of times, the use of a once-only subpattern is +the only way to avoid some failing matches taking a very long time indeed. +The pattern +

    +

    +

    +  (\D+|<\d+>)*[!?]
+
    +

    +

    +matches an unlimited number of substrings that either consist of non-digits, or +digits enclosed in <>, followed by either ! or ?. When it matches, it runs +quickly. However, if it is applied to +

    +

    +

    +  aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
+
    +

    +

    +it takes a long time before reporting failure. This is because the string can +be divided between the two repeats in a large number of ways, and all have to +be tried. (The example used [!?] rather than a single character at the end, +because both PCRE and Perl have an optimization that allows for fast failure +when a single character is used. They remember the last single character that +is required for a match, and fail early if it is not present in the string.) +If the pattern is changed to +

    +

    +

    +  ((?>\D+)|<\d+>)*[!?]
+
    +

    +

    +sequences of non-digits cannot be broken, and failure happens quickly. +

    +
  • CONDITIONAL SUBPATTERNS +

    +It is possible to cause the matching process to obey a subpattern +conditionally or to choose between two alternative subpatterns, depending on +the result of an assertion, or whether a previous capturing subpattern matched +or not. The two possible forms of conditional subpattern are +

    +

    +

    +  (?(condition)yes-pattern)
+  (?(condition)yes-pattern|no-pattern)
+
    +

    +

    +If the condition is satisfied, the yes-pattern is used; otherwise the +no-pattern (if present) is used. If there are more than two alternatives in the +subpattern, a compile-time error occurs. +

    +

    +There are two kinds of condition. If the text between the parentheses consists +of a sequence of digits, the condition is satisfied if the capturing subpattern +of that number has previously matched. The number must be greater than zero. +Consider the following pattern, which contains non-significant white space to +make it more readable (assume the PCRE_EXTENDED option) and to divide it into +three parts for ease of discussion: +

    +

    +

    +  ( \( )?    [^()]+    (?(1) \) )
+
    +

    +

    +The first part matches an optional opening parenthesis, and if that +character is present, sets it as the first captured substring. The second part +matches one or more characters that are not parentheses. The third part is a +conditional subpattern that tests whether the first set of parentheses matched +or not. If they did, that is, if subject started with an opening parenthesis, +the condition is true, and so the yes-pattern is executed and a closing +parenthesis is required. Otherwise, since no-pattern is not present, the +subpattern matches nothing. In other words, this pattern matches a sequence of +non-parentheses, optionally enclosed in parentheses. +

    +

    +If the condition is not a sequence of digits, it must be an assertion. This may +be a positive or negative lookahead or lookbehind assertion. Consider this +pattern, again containing non-significant white space, and with the two +alternatives on the second line: +

    +

    +

    +  (?(?=[^a-z]*[a-z])
+  \d{2}-[a-z]{3}-\d{2}  |  \d{2}-\d{2}-\d{2} )
+
    +

    +

    +The condition is a positive lookahead assertion that matches an optional +sequence of non-letters followed by a letter. In other words, it tests for the +presence of at least one letter in the subject. If a letter is found, the +subject is matched against the first alternative; otherwise it is matched +against the second. This pattern matches strings in one of the two forms +dd-aaa-dd or dd-dd-dd, where aaa are letters and dd are digits. +

    +
  • COMMENTS +

    +The sequence (?# marks the start of a comment which continues up to the next +closing parenthesis. Nested parentheses are not permitted. The characters +that make up a comment play no part in the pattern matching at all. +

    +

    +If the PCRE_EXTENDED option is set, an unescaped # character outside a +character class introduces a comment that continues up to the next newline +character in the pattern. +

    +
  • RECURSIVE PATTERNS +

    +Consider the problem of matching a string in parentheses, allowing for +unlimited nested parentheses. Without the use of recursion, the best that can +be done is to use a pattern that matches up to some fixed depth of nesting. It +is not possible to handle an arbitrary nesting depth. Perl 5.6 has provided an +experimental facility that allows regular expressions to recurse (amongst other +things). It does this by interpolating Perl code in the expression at run time, +and the code can refer to the expression itself. A Perl pattern to solve the +parentheses problem can be created like this: +

    +

    +

    +  $re = qr{\( (?: (?>[^()]+) | (?p{$re}) )* \)}x;
+
    +

    +

    +The (?p{...}) item interpolates Perl code at run time, and in this case refers +recursively to the pattern in which it appears. Obviously, PCRE cannot support +the interpolation of Perl code. Instead, the special item (?R) is provided for +the specific case of recursion. This PCRE pattern solves the parentheses +problem (assume the PCRE_EXTENDED option is set so that white space is +ignored): +

    +

    +

    +  \( ( (?>[^()]+) | (?R) )* \)
+
    +

    +

    +First it matches an opening parenthesis. Then it matches any number of +substrings which can either be a sequence of non-parentheses, or a recursive +match of the pattern itself (i.e. a correctly parenthesized substring). Finally +there is a closing parenthesis. +

    +

    +This particular example pattern contains nested unlimited repeats, and so the +use of a once-only subpattern for matching strings of non-parentheses is +important when applying the pattern to strings that do not match. For example, +when it is applied to +

    +

    +

    +  (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa()
+
    +

    +

    +it yields "no match" quickly. However, if a once-only subpattern is not used, +the match runs for a very long time indeed because there are so many different +ways the + and * repeats can carve up the subject, and all have to be tested +before failure can be reported. +

    +

    +The values set for any capturing subpatterns are those from the outermost level +of the recursion at which the subpattern value is set. If the pattern above is +matched against +

    +

    +

    +  (ab(cd)ef)
+
    +

    +

    +the value for the capturing parentheses is "ef", which is the last value taken +on at the top level. If additional parentheses are added, giving +

    +

    +

    +  \( ( ( (?>[^()]+) | (?R) )* ) \)
+     ^                        ^
+     ^                        ^
+
    +the string they capture is "ab(cd)ef", the contents of the top level +parentheses. If there are more than 15 capturing parentheses in a pattern, PCRE +has to obtain extra memory to store data during a recursion, which it does by +using pcre_malloc, freeing it via pcre_free afterwards. If no +memory can be obtained, it saves data for the first 15 capturing parentheses +only, as there is no way to give an out-of-memory error from within a +recursion. +

    +
  • PERFORMANCE +

    +Certain items that may appear in patterns are more efficient than others. It is +more efficient to use a character class like [aeiou] than a set of alternatives +such as (a|e|i|o|u). In general, the simplest construction that provides the +required behaviour is usually the most efficient. Jeffrey Friedl's book +contains a lot of discussion about optimizing regular expressions for efficient +performance. +

    +

    +When a pattern begins with .* and the PCRE_DOTALL option is set, the pattern is +implicitly anchored by PCRE, since it can match only at the start of a subject +string. However, if PCRE_DOTALL is not set, PCRE cannot make this optimization, +because the . metacharacter does not then match a newline, and if the subject +string contains newlines, the pattern may match from the character immediately +following one of them instead of from the very start. For example, the pattern +

    +

    +

    +  (.*) second
+
    +

    +

    +matches the subject "first\nand second" (where \n stands for a newline +character) with the first captured substring being "and". In order to do this, +PCRE has to retry the match starting after every newline in the subject. +

    +

    +If you are using such a pattern with subject strings that do not contain +newlines, the best performance is obtained by setting PCRE_DOTALL, or starting +the pattern with ^.* to indicate explicit anchoring. That saves PCRE from +having to scan along the subject looking for a newline to restart at. +

    +

    +Beware of patterns that contain nested indefinite repeats. These can take a +long time to run when applied to a string that does not match. Consider the +pattern fragment +

    +

    +

    +  (a+)*
+
    +

    +

    +This can match "aaaa" in 33 different ways, and this number increases very +rapidly as the string gets longer. (The * repeat can match 0, 1, 2, 3, or 4 +times, and for each of those cases other than 0, the + repeats can match +different numbers of times.) When the remainder of the pattern is such that the +entire match is going to fail, PCRE has in principle to try every possible +variation, and this can take an extremely long time. +

    +

    +An optimization catches some of the more simple cases such as +

    +

    +

    +  (a+)*b
+
    +

    +

    +where a literal character follows. Before embarking on the standard matching +procedure, PCRE checks that there is a "b" later in the subject string, and if +there is not, it fails the match immediately. However, when there is no +following literal this optimization cannot be used. You can see the difference +by comparing the behaviour of +

    +

    +

    +  (a+)*\d
+
    +

    +

    +with the pattern above. The former gives a failure almost instantly when +applied to a whole line of "a" characters, whereas the latter takes an +appreciable time with strings longer than about 20 characters. +

    +
  • UTF-8 SUPPORT +

    +Starting at release 3.3, PCRE has some support for character strings encoded +in the UTF-8 format. This is incomplete, and is regarded as experimental. In +order to use it, you must configure PCRE to include UTF-8 support in the code, +and, in addition, you must call pcre_compile() with the PCRE_UTF8 option +flag. When you do this, both the pattern and any subject strings that are +matched against it are treated as UTF-8 strings instead of just strings of +bytes, but only in the cases that are mentioned below. +

    +

    +If you compile PCRE with UTF-8 support, but do not use it at run time, the +library will be a bit bigger, but the additional run time overhead is limited +to testing the PCRE_UTF8 flag in several places, so should not be very large. +

    +

    +PCRE assumes that the strings it is given contain valid UTF-8 codes. It does +not diagnose invalid UTF-8 strings. If you pass invalid UTF-8 strings to PCRE, +the results are undefined. +

    +

    +Running with PCRE_UTF8 set causes these changes in the way PCRE works: +

    +

    +1. In a pattern, the escape sequence \x{...}, where the contents of the braces +is a string of hexadecimal digits, is interpreted as a UTF-8 character whose +code number is the given hexadecimal number, for example: \x{1234}. This +inserts from one to six literal bytes into the pattern, using the UTF-8 +encoding. If a non-hexadecimal digit appears between the braces, the item is +not recognized. +

    +

    +2. The original hexadecimal escape sequence, \xhh, generates a two-byte UTF-8 +character if its value is greater than 127. +

    +

    +3. Repeat quantifiers are NOT correctly handled if they follow a multibyte +character. For example, \x{100}* and \xc3+ do not work. If you want to +repeat such characters, you must enclose them in non-capturing parentheses, +for example (?:\x{100}), at present. +

    +

    +4. The dot metacharacter matches one UTF-8 character instead of a single byte. +

    +

    +5. Unlike literal UTF-8 characters, the dot metacharacter followed by a +repeat quantifier does operate correctly on UTF-8 characters instead of +single bytes. +

    +

    +4. Although the \x{...} escape is permitted in a character class, characters +whose values are greater than 255 cannot be included in a class. +

    +

    +5. A class is matched against a UTF-8 character instead of just a single byte, +but it can match only characters whose values are less than 256. Characters +with greater values always fail to match a class. +

    +

    +6. Repeated classes work correctly on multiple characters. +

    +

    +7. Classes containing just a single character whose value is greater than 127 +(but less than 256), for example, [\x80] or [^\x{93}], do not work because +these are optimized into single byte matches. In the first case, of course, +the class brackets are just redundant. +

    +

    +8. Lookbehind assertions move backwards in the subject by a fixed number of +characters instead of a fixed number of bytes. Simple cases have been tested +to work correctly, but there may be hidden gotchas herein. +

    +

    +9. The character types such as \d and \w do not work correctly with UTF-8 +characters. They continue to test a single byte. +

    +

    +10. Anything not explicitly mentioned here continues to work in bytes rather +than in characters. +

    +

    +The following UTF-8 features of Perl 5.6 are not implemented: +

    +

    +1. The escape sequence \C to match a single byte. +

    +

    +2. The use of Unicode tables and properties and escapes \p, \P, and \X. +

    +
  • AUTHOR +

    +Philip Hazel <ph10@cam.ac.uk> +
    +University Computing Service, +
    +New Museums Site, +
    +Cambridge CB2 3QG, England. +
    +Phone: +44 1223 334714 +

    +

    +Last updated: 28 August 2000, +
    +

    +  the 250th anniversary of the death of J.S. Bach.
+
    
+
    +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcre.txt b/pcre/doc/pcre.txt new file mode 100644 index 00000000..1db4b537 --- /dev/null +++ b/pcre/doc/pcre.txt @@ -0,0 +1,2125 @@ +NAME + pcre - Perl-compatible regular expressions. + + + +SYNOPSIS + #include + + pcre *pcre_compile(const char *pattern, int options, + const char **errptr, int *erroffset, + const unsigned char *tableptr); + + pcre_extra *pcre_study(const pcre *code, int options, + const char **errptr); + + int pcre_exec(const pcre *code, const pcre_extra *extra, + const char *subject, int length, int startoffset, + int options, int *ovector, int ovecsize); + + int pcre_copy_substring(const char *subject, int *ovector, + int stringcount, int stringnumber, char *buffer, + int buffersize); + + int pcre_get_substring(const char *subject, int *ovector, + int stringcount, int stringnumber, + const char **stringptr); + + int pcre_get_substring_list(const char *subject, + int *ovector, int stringcount, const char ***listptr); + + void pcre_free_substring(const char *stringptr); + + void pcre_free_substring_list(const char **stringptr); + + const unsigned char *pcre_maketables(void); + + int pcre_fullinfo(const pcre *code, const pcre_extra *extra, + int what, void *where); + + int pcre_info(const pcre *code, int *optptr, *firstcharptr); + + char *pcre_version(void); + + void *(*pcre_malloc)(size_t); + + void (*pcre_free)(void *); + + + + +DESCRIPTION + The PCRE library is a set of functions that implement regu- + lar expression pattern matching using the same syntax and + semantics as Perl 5, with just a few differences (see + + below). The current implementation corresponds to Perl + 5.005, with some additional features from later versions. + This includes some experimental, incomplete support for + UTF-8 encoded strings. Details of exactly what is and what + is not supported are given below. + + PCRE has its own native API, which is described in this + document. There is also a set of wrapper functions that + correspond to the POSIX regular expression API. These are + described in the pcreposix documentation. + + The native API function prototypes are defined in the header + file pcre.h, and on Unix systems the library itself is + called libpcre.a, so can be accessed by adding -lpcre to the + command for linking an application which calls it. The + header file defines the macros PCRE_MAJOR and PCRE_MINOR to + contain the major and minor release numbers for the library. + Applications can use these to include support for different + releases. + + The functions pcre_compile(), pcre_study(), and pcre_exec() + are used for compiling and matching regular expressions. + + The functions pcre_copy_substring(), pcre_get_substring(), + and pcre_get_substring_list() are convenience functions for + extracting captured substrings from a matched subject + string; pcre_free_substring() and pcre_free_substring_list() + are also provided, to free the memory used for extracted + strings. + + The function pcre_maketables() is used (optionally) to build + a set of character tables in the current locale for passing + to pcre_compile(). + + The function pcre_fullinfo() is used to find out information + about a compiled pattern; pcre_info() is an obsolete version + which returns only some of the available information, but is + retained for backwards compatibility. The function + pcre_version() returns a pointer to a string containing the + version of PCRE and its date of release. + + The global variables pcre_malloc and pcre_free initially + contain the entry points of the standard malloc() and free() + functions respectively. PCRE calls the memory management + functions via these variables, so a calling program can + replace them if it wishes to intercept the calls. This + should be done before calling any PCRE functions. + + + +MULTI-THREADING + The PCRE functions can be used in multi-threading + + + + + +SunOS 5.8 Last change: 2 + + + + applications, with the proviso that the memory management + functions pointed to by pcre_malloc and pcre_free are shared + by all threads. + + The compiled form of a regular expression is not altered + during matching, so the same compiled pattern can safely be + used by several threads at once. + + + +COMPILING A PATTERN + The function pcre_compile() is called to compile a pattern + into an internal form. The pattern is a C string terminated + by a binary zero, and is passed in the argument pattern. A + pointer to a single block of memory that is obtained via + pcre_malloc is returned. This contains the compiled code and + related data. The pcre type is defined for this for conveni- + ence, but in fact pcre is just a typedef for void, since the + contents of the block are not externally defined. It is up + to the caller to free the memory when it is no longer + required. + + The size of a compiled pattern is roughly proportional to + the length of the pattern string, except that each character + class (other than those containing just a single character, + negated or not) requires 33 bytes, and repeat quantifiers + with a minimum greater than one or a bounded maximum cause + the relevant portions of the compiled pattern to be repli- + cated. + + The options argument contains independent bits that affect + the compilation. It should be zero if no options are + required. Some of the options, in particular, those that are + compatible with Perl, can also be set and unset from within + the pattern (see the detailed description of regular expres- + sions below). For these options, the contents of the options + argument specifies their initial settings at the start of + compilation and execution. The PCRE_ANCHORED option can be + set at the time of matching as well as at compile time. + + If errptr is NULL, pcre_compile() returns NULL immediately. + Otherwise, if compilation of a pattern fails, pcre_compile() + returns NULL, and sets the variable pointed to by errptr to + point to a textual error message. The offset from the start + of the pattern to the character where the error was + discovered is placed in the variable pointed to by + erroffset, which must not be NULL. If it is, an immediate + error is given. + + If the final argument, tableptr, is NULL, PCRE uses a + default set of character tables which are built when it is + compiled, using the default C locale. Otherwise, tableptr + must be the result of a call to pcre_maketables(). See the + section on locale support below. + + The following option bits are defined in the header file: + + PCRE_ANCHORED + + If this bit is set, the pattern is forced to be "anchored", + that is, it is constrained to match only at the start of the + string which is being searched (the "subject string"). This + effect can also be achieved by appropriate constructs in the + pattern itself, which is the only way to do it in Perl. + + PCRE_CASELESS + + If this bit is set, letters in the pattern match both upper + and lower case letters. It is equivalent to Perl's /i + option. + + PCRE_DOLLAR_ENDONLY + + If this bit is set, a dollar metacharacter in the pattern + matches only at the end of the subject string. Without this + option, a dollar also matches immediately before the final + character if it is a newline (but not before any other new- + lines). The PCRE_DOLLAR_ENDONLY option is ignored if + PCRE_MULTILINE is set. There is no equivalent to this option + in Perl. + + PCRE_DOTALL + + If this bit is set, a dot metacharater in the pattern + matches all characters, including newlines. Without it, new- + lines are excluded. This option is equivalent to Perl's /s + option. A negative class such as [^a] always matches a new- + line character, independent of the setting of this option. + + PCRE_EXTENDED + + If this bit is set, whitespace data characters in the pat- + tern are totally ignored except when escaped or inside a + character class, and characters between an unescaped # out- + side a character class and the next newline character, + inclusive, are also ignored. This is equivalent to Perl's /x + option, and makes it possible to include comments inside + complicated patterns. Note, however, that this applies only + to data characters. Whitespace characters may never appear + within special character sequences in a pattern, for example + within the sequence (?( which introduces a conditional sub- + pattern. + + PCRE_EXTRA + + This option was invented in order to turn on additional + functionality of PCRE that is incompatible with Perl, but it + is currently of very little use. When set, any backslash in + a pattern that is followed by a letter that has no special + meaning causes an error, thus reserving these combinations + for future expansion. By default, as in Perl, a backslash + followed by a letter with no special meaning is treated as a + literal. There are at present no other features controlled + by this option. It can also be set by a (?X) option setting + within a pattern. + + PCRE_MULTILINE + + By default, PCRE treats the subject string as consisting of + a single "line" of characters (even if it actually contains + several newlines). The "start of line" metacharacter (^) + matches only at the start of the string, while the "end of + line" metacharacter ($) matches only at the end of the + string, or before a terminating newline (unless + PCRE_DOLLAR_ENDONLY is set). This is the same as Perl. + + When PCRE_MULTILINE it is set, the "start of line" and "end + of line" constructs match immediately following or immedi- + ately before any newline in the subject string, respec- + tively, as well as at the very start and end. This is + equivalent to Perl's /m option. If there are no "\n" charac- + ters in a subject string, or no occurrences of ^ or $ in a + pattern, setting PCRE_MULTILINE has no effect. + + PCRE_UNGREEDY + + This option inverts the "greediness" of the quantifiers so + that they are not greedy by default, but become greedy if + followed by "?". It is not compatible with Perl. It can also + be set by a (?U) option setting within the pattern. + + PCRE_UTF8 + + This option causes PCRE to regard both the pattern and the + subject as strings of UTF-8 characters instead of just byte + strings. However, it is available only if PCRE has been + built to include UTF-8 support. If not, the use of this + option provokes an error. Support for UTF-8 is new, experi- + mental, and incomplete. Details of exactly what it entails + are given below. + + + +STUDYING A PATTERN + When a pattern is going to be used several times, it is + worth spending more time analyzing it in order to speed up + the time taken for matching. The function pcre_study() takes + + a pointer to a compiled pattern as its first argument, and + returns a pointer to a pcre_extra block (another void + typedef) containing additional information about the pat- + tern; this can be passed to pcre_exec(). If no additional + information is available, NULL is returned. + + The second argument contains option bits. At present, no + options are defined for pcre_study(), and this argument + should always be zero. + + The third argument for pcre_study() is a pointer to an error + message. If studying succeeds (even if no data is returned), + the variable it points to is set to NULL. Otherwise it + points to a textual error message. + + At present, studying a pattern is useful only for non- + anchored patterns that do not have a single fixed starting + character. A bitmap of possible starting characters is + created. + + + +LOCALE SUPPORT + PCRE handles caseless matching, and determines whether char- + acters are letters, digits, or whatever, by reference to a + set of tables. The library contains a default set of tables + which is created in the default C locale when PCRE is com- + piled. This is used when the final argument of + pcre_compile() is NULL, and is sufficient for many applica- + tions. + + An alternative set of tables can, however, be supplied. Such + tables are built by calling the pcre_maketables() function, + which has no arguments, in the relevant locale. The result + can then be passed to pcre_compile() as often as necessary. + For example, to build and use tables that are appropriate + for the French locale (where accented characters with codes + greater than 128 are treated as letters), the following code + could be used: + + setlocale(LC_CTYPE, "fr"); + tables = pcre_maketables(); + re = pcre_compile(..., tables); + + The tables are built in memory that is obtained via + pcre_malloc. The pointer that is passed to pcre_compile is + saved with the compiled pattern, and the same tables are + used via this pointer by pcre_study() and pcre_exec(). Thus + for any single pattern, compilation, studying and matching + all happen in the same locale, but different patterns can be + compiled in different locales. It is the caller's responsi- + bility to ensure that the memory containing the tables + remains available for as long as it is needed. + + + +INFORMATION ABOUT A PATTERN + The pcre_fullinfo() function returns information about a + compiled pattern. It replaces the obsolete pcre_info() func- + tion, which is nevertheless retained for backwards compabil- + ity (and is documented below). + + The first argument for pcre_fullinfo() is a pointer to the + compiled pattern. The second argument is the result of + pcre_study(), or NULL if the pattern was not studied. The + third argument specifies which piece of information is + required, while the fourth argument is a pointer to a vari- + able to receive the data. The yield of the function is zero + for success, or one of the following negative numbers: + + PCRE_ERROR_NULL the argument code was NULL + the argument where was NULL + PCRE_ERROR_BADMAGIC the "magic number" was not found + PCRE_ERROR_BADOPTION the value of what was invalid + + The possible values for the third argument are defined in + pcre.h, and are as follows: + + PCRE_INFO_OPTIONS + + Return a copy of the options with which the pattern was com- + piled. The fourth argument should point to au unsigned long + int variable. These option bits are those specified in the + call to pcre_compile(), modified by any top-level option + settings within the pattern itself, and with the + PCRE_ANCHORED bit forcibly set if the form of the pattern + implies that it can match only at the start of a subject + string. + + PCRE_INFO_SIZE + + Return the size of the compiled pattern, that is, the value + that was passed as the argument to pcre_malloc() when PCRE + was getting memory in which to place the compiled data. The + fourth argument should point to a size_t variable. + + PCRE_INFO_CAPTURECOUNT + + Return the number of capturing subpatterns in the pattern. + The fourth argument should point to an int variable. + + PCRE_INFO_BACKREFMAX + + Return the number of the highest back reference in the + pattern. The fourth argument should point to an int vari- + able. Zero is returned if there are no back references. + + PCRE_INFO_FIRSTCHAR + + Return information about the first character of any matched + string, for a non-anchored pattern. If there is a fixed + first character, e.g. from a pattern such as + (cat|cow|coyote), it is returned in the integer pointed to + by where. Otherwise, if either + + (a) the pattern was compiled with the PCRE_MULTILINE option, + and every branch starts with "^", or + + (b) every branch of the pattern starts with ".*" and + PCRE_DOTALL is not set (if it were set, the pattern would be + anchored), + + -1 is returned, indicating that the pattern matches only at + the start of a subject string or after any "\n" within the + string. Otherwise -2 is returned. For anchored patterns, -2 + is returned. + + PCRE_INFO_FIRSTTABLE + + If the pattern was studied, and this resulted in the con- + struction of a 256-bit table indicating a fixed set of char- + acters for the first character in any matching string, a + pointer to the table is returned. Otherwise NULL is + returned. The fourth argument should point to an unsigned + char * variable. + + PCRE_INFO_LASTLITERAL + + For a non-anchored pattern, return the value of the right- + most literal character which must exist in any matched + string, other than at its start. The fourth argument should + point to an int variable. If there is no such character, or + if the pattern is anchored, -1 is returned. For example, for + the pattern /a\d+z\d+/ the returned value is 'z'. + + The pcre_info() function is now obsolete because its inter- + face is too restrictive to return all the available data + about a compiled pattern. New programs should use + pcre_fullinfo() instead. The yield of pcre_info() is the + number of capturing subpatterns, or one of the following + negative numbers: + + PCRE_ERROR_NULL the argument code was NULL + PCRE_ERROR_BADMAGIC the "magic number" was not found + + If the optptr argument is not NULL, a copy of the options + with which the pattern was compiled is placed in the integer + it points to (see PCRE_INFO_OPTIONS above). + + If the pattern is not anchored and the firstcharptr argument + is not NULL, it is used to pass back information about the + first character of any matched string (see + PCRE_INFO_FIRSTCHAR above). + + + +MATCHING A PATTERN + The function pcre_exec() is called to match a subject string + against a pre-compiled pattern, which is passed in the code + argument. If the pattern has been studied, the result of the + study should be passed in the extra argument. Otherwise this + must be NULL. + + The PCRE_ANCHORED option can be passed in the options argu- + ment, whose unused bits must be zero. However, if a pattern + was compiled with PCRE_ANCHORED, or turned out to be + anchored by virtue of its contents, it cannot be made + unachored at matching time. + + There are also three further options that can be set only at + matching time: + + PCRE_NOTBOL + + The first character of the string is not the beginning of a + line, so the circumflex metacharacter should not match + before it. Setting this without PCRE_MULTILINE (at compile + time) causes circumflex never to match. + + PCRE_NOTEOL + + The end of the string is not the end of a line, so the dol- + lar metacharacter should not match it nor (except in multi- + line mode) a newline immediately before it. Setting this + without PCRE_MULTILINE (at compile time) causes dollar never + to match. + + PCRE_NOTEMPTY + + An empty string is not considered to be a valid match if + this option is set. If there are alternatives in the pat- + tern, they are tried. If all the alternatives match the + empty string, the entire match fails. For example, if the + pattern + + a?b? + + is applied to a string not beginning with "a" or "b", it + matches the empty string at the start of the subject. With + PCRE_NOTEMPTY set, this match is not valid, so PCRE searches + further into the string for occurrences of "a" or "b". + + Perl has no direct equivalent of PCRE_NOTEMPTY, but it does + make a special case of a pattern match of the empty string + within its split() function, and when using the /g modifier. + It is possible to emulate Perl's behaviour after matching a + null string by first trying the match again at the same + offset with PCRE_NOTEMPTY set, and then if that fails by + advancing the starting offset (see below) and trying an + ordinary match again. + + The subject string is passed as a pointer in subject, a + length in length, and a starting offset in startoffset. + Unlike the pattern string, it may contain binary zero char- + acters. When the starting offset is zero, the search for a + match starts at the beginning of the subject, and this is by + far the most common case. + + A non-zero starting offset is useful when searching for + another match in the same subject by calling pcre_exec() + again after a previous success. Setting startoffset differs + from just passing over a shortened string and setting + PCRE_NOTBOL in the case of a pattern that begins with any + kind of lookbehind. For example, consider the pattern + + \Biss\B + + which finds occurrences of "iss" in the middle of words. (\B + matches only if the current position in the subject is not a + word boundary.) When applied to the string "Mississipi" the + first call to pcre_exec() finds the first occurrence. If + pcre_exec() is called again with just the remainder of the + subject, namely "issipi", it does not match, because \B is + always false at the start of the subject, which is deemed to + be a word boundary. However, if pcre_exec() is passed the + entire string again, but with startoffset set to 4, it finds + the second occurrence of "iss" because it is able to look + behind the starting point to discover that it is preceded by + a letter. + + If a non-zero starting offset is passed when the pattern is + anchored, one attempt to match at the given offset is tried. + This can only succeed if the pattern does not require the + match to be at the start of the subject. + + In general, a pattern matches a certain portion of the sub- + ject, and in addition, further substrings from the subject + may be picked out by parts of the pattern. Following the + usage in Jeffrey Friedl's book, this is called "capturing" + in what follows, and the phrase "capturing subpattern" is + used for a fragment of a pattern that picks out a substring. + PCRE supports several other kinds of parenthesized subpat- + tern that do not cause substrings to be captured. + + Captured substrings are returned to the caller via a vector + of integer offsets whose address is passed in ovector. The + number of elements in the vector is passed in ovecsize. The + first two-thirds of the vector is used to pass back captured + substrings, each substring using a pair of integers. The + remaining third of the vector is used as workspace by + pcre_exec() while matching capturing subpatterns, and is not + available for passing back information. The length passed in + ovecsize should always be a multiple of three. If it is not, + it is rounded down. + + When a match has been successful, information about captured + substrings is returned in pairs of integers, starting at the + beginning of ovector, and continuing up to two-thirds of its + length at the most. The first element of a pair is set to + the offset of the first character in a substring, and the + second is set to the offset of the first character after the + end of a substring. The first pair, ovector[0] and ovec- + tor[1], identify the portion of the subject string matched + by the entire pattern. The next pair is used for the first + capturing subpattern, and so on. The value returned by + pcre_exec() is the number of pairs that have been set. If + there are no capturing subpatterns, the return value from a + successful match is 1, indicating that just the first pair + of offsets has been set. + + Some convenience functions are provided for extracting the + captured substrings as separate strings. These are described + in the following section. + + It is possible for an capturing subpattern number n+1 to + match some part of the subject when subpattern n has not + been used at all. For example, if the string "abc" is + matched against the pattern (a|(z))(bc) subpatterns 1 and 3 + are matched, but 2 is not. When this happens, both offset + values corresponding to the unused subpattern are set to -1. + + If a capturing subpattern is matched repeatedly, it is the + last portion of the string that it matched that gets + returned. + + If the vector is too small to hold all the captured sub- + strings, it is used as far as possible (up to two-thirds of + its length), and the function returns a value of zero. In + particular, if the substring offsets are not of interest, + pcre_exec() may be called with ovector passed as NULL and + ovecsize as zero. However, if the pattern contains back + references and the ovector isn't big enough to remember the + related substrings, PCRE has to get additional memory for + use during matching. Thus it is usually advisable to supply + an ovector. + + Note that pcre_info() can be used to find out how many cap- + turing subpatterns there are in a compiled pattern. The + smallest size for ovector that will allow for n captured + substrings in addition to the offsets of the substring + matched by the whole pattern is (n+1)*3. + + If pcre_exec() fails, it returns a negative number. The fol- + lowing are defined in the header file: + + PCRE_ERROR_NOMATCH (-1) + + The subject string did not match the pattern. + + PCRE_ERROR_NULL (-2) + + Either code or subject was passed as NULL, or ovector was + NULL and ovecsize was not zero. + + PCRE_ERROR_BADOPTION (-3) + + An unrecognized bit was set in the options argument. + + PCRE_ERROR_BADMAGIC (-4) + + PCRE stores a 4-byte "magic number" at the start of the com- + piled code, to catch the case when it is passed a junk + pointer. This is the error it gives when the magic number + isn't present. + + PCRE_ERROR_UNKNOWN_NODE (-5) + + While running the pattern match, an unknown item was encoun- + tered in the compiled pattern. This error could be caused by + a bug in PCRE or by overwriting of the compiled pattern. + + PCRE_ERROR_NOMEMORY (-6) + + If a pattern contains back references, but the ovector that + is passed to pcre_exec() is not big enough to remember the + referenced substrings, PCRE gets a block of memory at the + start of matching to use for this purpose. If the call via + pcre_malloc() fails, this error is given. The memory is + freed at the end of matching. + + + +EXTRACTING CAPTURED SUBSTRINGS + Captured substrings can be accessed directly by using the + + + + + +SunOS 5.8 Last change: 12 + + + + offsets returned by pcre_exec() in ovector. For convenience, + the functions pcre_copy_substring(), pcre_get_substring(), + and pcre_get_substring_list() are provided for extracting + captured substrings as new, separate, zero-terminated + strings. A substring that contains a binary zero is + correctly extracted and has a further zero added on the end, + but the result does not, of course, function as a C string. + + The first three arguments are the same for all three func- + tions: subject is the subject string which has just been + successfully matched, ovector is a pointer to the vector of + integer offsets that was passed to pcre_exec(), and + stringcount is the number of substrings that were captured + by the match, including the substring that matched the + entire regular expression. This is the value returned by + pcre_exec if it is greater than zero. If pcre_exec() + returned zero, indicating that it ran out of space in ovec- + tor, the value passed as stringcount should be the size of + the vector divided by three. + + The functions pcre_copy_substring() and pcre_get_substring() + extract a single substring, whose number is given as string- + number. A value of zero extracts the substring that matched + the entire pattern, while higher values extract the captured + substrings. For pcre_copy_substring(), the string is placed + in buffer, whose length is given by buffersize, while for + pcre_get_substring() a new block of memory is obtained via + pcre_malloc, and its address is returned via stringptr. The + yield of the function is the length of the string, not + including the terminating zero, or one of + + PCRE_ERROR_NOMEMORY (-6) + + The buffer was too small for pcre_copy_substring(), or the + attempt to get memory failed for pcre_get_substring(). + + PCRE_ERROR_NOSUBSTRING (-7) + + There is no substring whose number is stringnumber. + + The pcre_get_substring_list() function extracts all avail- + able substrings and builds a list of pointers to them. All + this is done in a single block of memory which is obtained + via pcre_malloc. The address of the memory block is returned + via listptr, which is also the start of the list of string + pointers. The end of the list is marked by a NULL pointer. + The yield of the function is zero if all went well, or + + PCRE_ERROR_NOMEMORY (-6) + + if the attempt to get the memory block failed. + + When any of these functions encounter a substring that is + unset, which can happen when capturing subpattern number n+1 + matches some part of the subject, but subpattern n has not + been used at all, they return an empty string. This can be + distinguished from a genuine zero-length substring by + inspecting the appropriate offset in ovector, which is nega- + tive for unset substrings. + + The two convenience functions pcre_free_substring() and + pcre_free_substring_list() can be used to free the memory + returned by a previous call of pcre_get_substring() or + pcre_get_substring_list(), respectively. They do nothing + more than call the function pointed to by pcre_free, which + of course could be called directly from a C program. How- + ever, PCRE is used in some situations where it is linked via + a special interface to another programming language which + cannot use pcre_free directly; it is for these cases that + the functions are provided. + + + +LIMITATIONS + There are some size limitations in PCRE but it is hoped that + they will never in practice be relevant. The maximum length + of a compiled pattern is 65539 (sic) bytes. All values in + repeating quantifiers must be less than 65536. The maximum + number of capturing subpatterns is 99. The maximum number + of all parenthesized subpatterns, including capturing sub- + patterns, assertions, and other types of subpattern, is 200. + + The maximum length of a subject string is the largest posi- + tive number that an integer variable can hold. However, PCRE + uses recursion to handle subpatterns and indefinite repeti- + tion. This means that the available stack space may limit + the size of a subject string that can be processed by cer- + tain patterns. + + + +DIFFERENCES FROM PERL + The differences described here are with respect to Perl + 5.005. + + 1. By default, a whitespace character is any character that + the C library function isspace() recognizes, though it is + possible to compile PCRE with alternative character type + tables. Normally isspace() matches space, formfeed, newline, + carriage return, horizontal tab, and vertical tab. Perl 5 no + longer includes vertical tab in its set of whitespace char- + acters. The \v escape that was in the Perl documentation for + a long time was never in fact recognized. However, the char- + acter itself was treated as whitespace at least up to 5.002. + In 5.004 and 5.005 it does not match \s. + + 2. PCRE does not allow repeat quantifiers on lookahead + assertions. Perl permits them, but they do not mean what you + might think. For example, (?!a){3} does not assert that the + next three characters are not "a". It just asserts that the + next character is not "a" three times. + + 3. Capturing subpatterns that occur inside negative looka- + head assertions are counted, but their entries in the + offsets vector are never set. Perl sets its numerical vari- + ables from any such patterns that are matched before the + assertion fails to match something (thereby succeeding), but + only if the negative lookahead assertion contains just one + branch. + + 4. Though binary zero characters are supported in the sub- + ject string, they are not allowed in a pattern string + because it is passed as a normal C string, terminated by + zero. The escape sequence "\0" can be used in the pattern to + represent a binary zero. + + 5. The following Perl escape sequences are not supported: + \l, \u, \L, \U, \E, \Q. In fact these are implemented by + Perl's general string-handling and are not part of its pat- + tern matching engine. + + 6. The Perl \G assertion is not supported as it is not + relevant to single pattern matches. + + 7. Fairly obviously, PCRE does not support the (?{code}) and + (?p{code}) constructions. However, there is some experimen- + tal support for recursive patterns using the non-Perl item + (?R). + + 8. There are at the time of writing some oddities in Perl + 5.005_02 concerned with the settings of captured strings + when part of a pattern is repeated. For example, matching + "aba" against the pattern /^(a(b)?)+$/ sets $2 to the value + "b", but matching "aabbaa" against /^(aa(bb)?)+$/ leaves $2 + unset. However, if the pattern is changed to + /^(aa(b(b))?)+$/ then $2 (and $3) are set. + + In Perl 5.004 $2 is set in both cases, and that is also true + of PCRE. If in the future Perl changes to a consistent state + that is different, PCRE may change to follow. + + 9. Another as yet unresolved discrepancy is that in Perl + 5.005_02 the pattern /^(a)?(?(1)a|b)+$/ matches the string + "a", whereas in PCRE it does not. However, in both Perl and + PCRE /^(a)?a/ matched against "a" leaves $1 unset. + + 10. PCRE provides some extensions to the Perl regular + expression facilities: + + (a) Although lookbehind assertions must match fixed length + strings, each alternative branch of a lookbehind assertion + can match a different length of string. Perl 5.005 requires + them all to have the same length. + + (b) If PCRE_DOLLAR_ENDONLY is set and PCRE_MULTILINE is not + set, the $ meta- character matches only at the very end of + the string. + + (c) If PCRE_EXTRA is set, a backslash followed by a letter + with no special meaning is faulted. + + (d) If PCRE_UNGREEDY is set, the greediness of the repeti- + tion quantifiers is inverted, that is, by default they are + not greedy, but if followed by a question mark they are. + + (e) PCRE_ANCHORED can be used to force a pattern to be tried + only at the start of the subject. + + (f) The PCRE_NOTBOL, PCRE_NOTEOL, and PCRE_NOTEMPTY options + for pcre_exec() have no Perl equivalents. + + (g) The (?R) construct allows for recursive pattern matching + (Perl 5.6 can do this using the (?p{code}) construct, which + PCRE cannot of course support.) + + + +REGULAR EXPRESSION DETAILS + The syntax and semantics of the regular expressions sup- + ported by PCRE are described below. Regular expressions are + also described in the Perl documentation and in a number of + other books, some of which have copious examples. Jeffrey + Friedl's "Mastering Regular Expressions", published by + O'Reilly (ISBN 1-56592-257), covers them in great detail. + + The description here is intended as reference documentation. + The basic operation of PCRE is on strings of bytes. However, + there is the beginnings of some support for UTF-8 character + strings. To use this support you must configure PCRE to + include it, and then call pcre_compile() with the PCRE_UTF8 + option. How this affects the pattern matching is described + in the final section of this document. + + A regular expression is a pattern that is matched against a + subject string from left to right. Most characters stand for + themselves in a pattern, and match the corresponding charac- + ters in the subject. As a trivial example, the pattern + + The quick brown fox + + matches a portion of a subject string that is identical to + itself. The power of regular expressions comes from the + ability to include alternatives and repetitions in the pat- + tern. These are encoded in the pattern by the use of meta- + characters, which do not stand for themselves but instead + are interpreted in some special way. + + There are two different sets of meta-characters: those that + are recognized anywhere in the pattern except within square + brackets, and those that are recognized in square brackets. + Outside square brackets, the meta-characters are as follows: + + \ general escape character with several uses + ^ assert start of subject (or line, in multiline + mode) + $ assert end of subject (or line, in multiline mode) + . match any character except newline (by default) + [ start character class definition + | start of alternative branch + ( start subpattern + ) end subpattern + ? extends the meaning of ( + also 0 or 1 quantifier + also quantifier minimizer + * 0 or more quantifier + + 1 or more quantifier + { start min/max quantifier + + Part of a pattern that is in square brackets is called a + "character class". In a character class the only meta- + characters are: + + \ general escape character + ^ negate the class, but only if the first character + - indicates character range + ] terminates the character class + + The following sections describe the use of each of the + meta-characters. + + + +BACKSLASH + The backslash character has several uses. Firstly, if it is + followed by a non-alphameric character, it takes away any + special meaning that character may have. This use of + backslash as an escape character applies both inside and + outside character classes. + + For example, if you want to match a "*" character, you write + "\*" in the pattern. This applies whether or not the follow- + ing character would otherwise be interpreted as a meta- + character, so it is always safe to precede a non-alphameric + with "\" to specify that it stands for itself. In particu- + lar, if you want to match a backslash, you write "\\". + + If a pattern is compiled with the PCRE_EXTENDED option, whi- + tespace in the pattern (other than in a character class) and + characters between a "#" outside a character class and the + next newline character are ignored. An escaping backslash + can be used to include a whitespace or "#" character as part + of the pattern. + + A second use of backslash provides a way of encoding non- + printing characters in patterns in a visible manner. There + is no restriction on the appearance of non-printing charac- + ters, apart from the binary zero that terminates a pattern, + but when a pattern is being prepared by text editing, it is + usually easier to use one of the following escape sequences + than the binary character it represents: + + \a alarm, that is, the BEL character (hex 07) + \cx "control-x", where x is any character + \e escape (hex 1B) + \f formfeed (hex 0C) + \n newline (hex 0A) + \r carriage return (hex 0D) + \t tab (hex 09) + \xhh character with hex code hh + \ddd character with octal code ddd, or backreference + + The precise effect of "\cx" is as follows: if "x" is a lower + case letter, it is converted to upper case. Then bit 6 of + the character (hex 40) is inverted. Thus "\cz" becomes hex + 1A, but "\c{" becomes hex 3B, while "\c;" becomes hex 7B. + + After "\x", up to two hexadecimal digits are read (letters + can be in upper or lower case). + + After "\0" up to two further octal digits are read. In both + cases, if there are fewer than two digits, just those that + are present are used. Thus the sequence "\0\x\07" specifies + two binary zeros followed by a BEL character. Make sure you + supply two digits after the initial zero if the character + that follows is itself an octal digit. + + The handling of a backslash followed by a digit other than 0 + is complicated. Outside a character class, PCRE reads it + and any following digits as a decimal number. If the number + is less than 10, or if there have been at least that many + previous capturing left parentheses in the expression, the + entire sequence is taken as a back reference. A description + of how this works is given later, following the discussion + of parenthesized subpatterns. + + Inside a character class, or if the decimal number is + greater than 9 and there have not been that many capturing + subpatterns, PCRE re-reads up to three octal digits follow- + ing the backslash, and generates a single byte from the + least significant 8 bits of the value. Any subsequent digits + stand for themselves. For example: + + \040 is another way of writing a space + \40 is the same, provided there are fewer than 40 + previous capturing subpatterns + \7 is always a back reference + \11 might be a back reference, or another way of + writing a tab + \011 is always a tab + \0113 is a tab followed by the character "3" + \113 is the character with octal code 113 (since there + can be no more than 99 back references) + \377 is a byte consisting entirely of 1 bits + \81 is either a back reference, or a binary zero + followed by the two characters "8" and "1" + + Note that octal values of 100 or greater must not be intro- + duced by a leading zero, because no more than three octal + digits are ever read. + + All the sequences that define a single byte value can be + used both inside and outside character classes. In addition, + inside a character class, the sequence "\b" is interpreted + as the backspace character (hex 08). Outside a character + class it has a different meaning (see below). + + The third use of backslash is for specifying generic charac- + ter types: + + \d any decimal digit + \D any character that is not a decimal digit + \s any whitespace character + \S any character that is not a whitespace character + \w any "word" character + \W any "non-word" character + + Each pair of escape sequences partitions the complete set of + characters into two disjoint sets. Any given character + matches one, and only one, of each pair. + + A "word" character is any letter or digit or the underscore + character, that is, any character which can be part of a + Perl "word". The definition of letters and digits is con- + trolled by PCRE's character tables, and may vary if locale- + specific matching is taking place (see "Locale support" + above). For example, in the "fr" (French) locale, some char- + acter codes greater than 128 are used for accented letters, + and these are matched by \w. + + These character type sequences can appear both inside and + outside character classes. They each match one character of + the appropriate type. If the current matching point is at + the end of the subject string, all of them fail, since there + is no character to match. + + The fourth use of backslash is for certain simple asser- + tions. An assertion specifies a condition that has to be met + at a particular point in a match, without consuming any + characters from the subject string. The use of subpatterns + for more complicated assertions is described below. The + backslashed assertions are + + \b word boundary + \B not a word boundary + \A start of subject (independent of multiline mode) + \Z end of subject or newline at end (independent of + multiline mode) + \z end of subject (independent of multiline mode) + + These assertions may not appear in character classes (but + note that "\b" has a different meaning, namely the backspace + character, inside a character class). + + A word boundary is a position in the subject string where + the current character and the previous character do not both + match \w or \W (i.e. one matches \w and the other matches + \W), or the start or end of the string if the first or last + character matches \w, respectively. + + The \A, \Z, and \z assertions differ from the traditional + circumflex and dollar (described below) in that they only + ever match at the very start and end of the subject string, + whatever options are set. They are not affected by the + PCRE_NOTBOL or PCRE_NOTEOL options. If the startoffset argu- + ment of pcre_exec() is non-zero, \A can never match. The + difference between \Z and \z is that \Z matches before a + newline that is the last character of the string as well as + at the end of the string, whereas \z matches only at the + end. + + + +CIRCUMFLEX AND DOLLAR + Outside a character class, in the default matching mode, the + circumflex character is an assertion which is true only if + the current matching point is at the start of the subject + + string. If the startoffset argument of pcre_exec() is non- + zero, circumflex can never match. Inside a character class, + circumflex has an entirely different meaning (see below). + + Circumflex need not be the first character of the pattern if + a number of alternatives are involved, but it should be the + first thing in each alternative in which it appears if the + pattern is ever to match that branch. If all possible alter- + natives start with a circumflex, that is, if the pattern is + constrained to match only at the start of the subject, it is + said to be an "anchored" pattern. (There are also other con- + structs that can cause a pattern to be anchored.) + + A dollar character is an assertion which is true only if the + current matching point is at the end of the subject string, + or immediately before a newline character that is the last + character in the string (by default). Dollar need not be the + last character of the pattern if a number of alternatives + are involved, but it should be the last item in any branch + in which it appears. Dollar has no special meaning in a + character class. + + The meaning of dollar can be changed so that it matches only + at the very end of the string, by setting the + PCRE_DOLLAR_ENDONLY option at compile or matching time. This + does not affect the \Z assertion. + + The meanings of the circumflex and dollar characters are + changed if the PCRE_MULTILINE option is set. When this is + the case, they match immediately after and immediately + before an internal "\n" character, respectively, in addition + to matching at the start and end of the subject string. For + example, the pattern /^abc$/ matches the subject string + "def\nabc" in multiline mode, but not otherwise. Conse- + quently, patterns that are anchored in single line mode + because all branches start with "^" are not anchored in mul- + tiline mode, and a match for circumflex is possible when the + startoffset argument of pcre_exec() is non-zero. The + PCRE_DOLLAR_ENDONLY option is ignored if PCRE_MULTILINE is + set. + + Note that the sequences \A, \Z, and \z can be used to match + the start and end of the subject in both modes, and if all + branches of a pattern start with \A is it always anchored, + whether PCRE_MULTILINE is set or not. + + + +FULL STOP (PERIOD, DOT) + Outside a character class, a dot in the pattern matches any + one character in the subject, including a non-printing char- + acter, but not (by default) newline. If the PCRE_DOTALL + + option is set, dots match newlines as well. The handling of + dot is entirely independent of the handling of circumflex + and dollar, the only relationship being that they both + involve newline characters. Dot has no special meaning in a + character class. + + + +SQUARE BRACKETS + An opening square bracket introduces a character class, ter- + minated by a closing square bracket. A closing square + bracket on its own is not special. If a closing square + bracket is required as a member of the class, it should be + the first data character in the class (after an initial cir- + cumflex, if present) or escaped with a backslash. + + A character class matches a single character in the subject; + the character must be in the set of characters defined by + the class, unless the first character in the class is a cir- + cumflex, in which case the subject character must not be in + the set defined by the class. If a circumflex is actually + required as a member of the class, ensure it is not the + first character, or escape it with a backslash. + + For example, the character class [aeiou] matches any lower + case vowel, while [^aeiou] matches any character that is not + a lower case vowel. Note that a circumflex is just a con- + venient notation for specifying the characters which are in + the class by enumerating those that are not. It is not an + assertion: it still consumes a character from the subject + string, and fails if the current pointer is at the end of + the string. + + When caseless matching is set, any letters in a class + represent both their upper case and lower case versions, so + for example, a caseless [aeiou] matches "A" as well as "a", + and a caseless [^aeiou] does not match "A", whereas a case- + ful version would. + + The newline character is never treated in any special way in + character classes, whatever the setting of the PCRE_DOTALL + or PCRE_MULTILINE options is. A class such as [^a] will + always match a newline. + + The minus (hyphen) character can be used to specify a range + of characters in a character class. For example, [d-m] + matches any letter between d and m, inclusive. If a minus + character is required in a class, it must be escaped with a + backslash or appear in a position where it cannot be inter- + preted as indicating a range, typically as the first or last + character in the class. + + It is not possible to have the literal character "]" as the + end character of a range. A pattern such as [W-]46] is + interpreted as a class of two characters ("W" and "-") fol- + lowed by a literal string "46]", so it would match "W46]" or + "-46]". However, if the "]" is escaped with a backslash it + is interpreted as the end of range, so [W-\]46] is inter- + preted as a single class containing a range followed by two + separate characters. The octal or hexadecimal representation + of "]" can also be used to end a range. + + Ranges operate in ASCII collating sequence. They can also be + used for characters specified numerically, for example + [\000-\037]. If a range that includes letters is used when + caseless matching is set, it matches the letters in either + case. For example, [W-c] is equivalent to [][\^_`wxyzabc], + matched caselessly, and if character tables for the "fr" + locale are in use, [\xc8-\xcb] matches accented E characters + in both cases. + + The character types \d, \D, \s, \S, \w, and \W may also + appear in a character class, and add the characters that + they match to the class. For example, [\dABCDEF] matches any + hexadecimal digit. A circumflex can conveniently be used + with the upper case character types to specify a more res- + tricted set of characters than the matching lower case type. + For example, the class [^\W_] matches any letter or digit, + but not underscore. + + All non-alphameric characters other than \, -, ^ (at the + start) and the terminating ] are non-special in character + classes, but it does no harm if they are escaped. + + + +POSIX CHARACTER CLASSES + Perl 5.6 (not yet released at the time of writing) is going + to support the POSIX notation for character classes, which + uses names enclosed by [: and :] within the enclosing + square brackets. PCRE supports this notation. For example, + + [01[:alpha:]%] + + matches "0", "1", any alphabetic character, or "%". The sup- + ported class names are + + alnum letters and digits + alpha letters + ascii character codes 0 - 127 + cntrl control characters + digit decimal digits (same as \d) + graph printing characters, excluding space + lower lower case letters + print printing characters, including space + punct printing characters, excluding letters and digits + space white space (same as \s) + upper upper case letters + word "word" characters (same as \w) + xdigit hexadecimal digits + + The names "ascii" and "word" are Perl extensions. Another + Perl extension is negation, which is indicated by a ^ char- + acter after the colon. For example, + + [12[:^digit:]] + + matches "1", "2", or any non-digit. PCRE (and Perl) also + recogize the POSIX syntax [.ch.] and [=ch=] where "ch" is a + "collating element", but these are not supported, and an + error is given if they are encountered. + + + +VERTICAL BAR + Vertical bar characters are used to separate alternative + patterns. For example, the pattern + + gilbert|sullivan + + matches either "gilbert" or "sullivan". Any number of alter- + natives may appear, and an empty alternative is permitted + (matching the empty string). The matching process tries + each alternative in turn, from left to right, and the first + one that succeeds is used. If the alternatives are within a + subpattern (defined below), "succeeds" means matching the + rest of the main pattern as well as the alternative in the + subpattern. + + + +INTERNAL OPTION SETTING + The settings of PCRE_CASELESS, PCRE_MULTILINE, PCRE_DOTALL, + and PCRE_EXTENDED can be changed from within the pattern by + a sequence of Perl option letters enclosed between "(?" and + ")". The option letters are + + i for PCRE_CASELESS + m for PCRE_MULTILINE + s for PCRE_DOTALL + x for PCRE_EXTENDED + + For example, (?im) sets caseless, multiline matching. It is + also possible to unset these options by preceding the letter + with a hyphen, and a combined setting and unsetting such as + (?im-sx), which sets PCRE_CASELESS and PCRE_MULTILINE while + unsetting PCRE_DOTALL and PCRE_EXTENDED, is also permitted. + If a letter appears both before and after the hyphen, the + option is unset. + + The scope of these option changes depends on where in the + pattern the setting occurs. For settings that are outside + any subpattern (defined below), the effect is the same as if + the options were set or unset at the start of matching. The + following patterns all behave in exactly the same way: + + (?i)abc + a(?i)bc + ab(?i)c + abc(?i) + + which in turn is the same as compiling the pattern abc with + PCRE_CASELESS set. In other words, such "top level" set- + tings apply to the whole pattern (unless there are other + changes inside subpatterns). If there is more than one set- + ting of the same option at top level, the rightmost setting + is used. + + If an option change occurs inside a subpattern, the effect + is different. This is a change of behaviour in Perl 5.005. + An option change inside a subpattern affects only that part + of the subpattern that follows it, so + + (a(?i)b)c + + matches abc and aBc and no other strings (assuming + PCRE_CASELESS is not used). By this means, options can be + made to have different settings in different parts of the + pattern. Any changes made in one alternative do carry on + into subsequent branches within the same subpattern. For + example, + + (a(?i)b|c) + + matches "ab", "aB", "c", and "C", even though when matching + "C" the first branch is abandoned before the option setting. + This is because the effects of option settings happen at + compile time. There would be some very weird behaviour oth- + erwise. + + The PCRE-specific options PCRE_UNGREEDY and PCRE_EXTRA can + be changed in the same way as the Perl-compatible options by + using the characters U and X respectively. The (?X) flag + setting is special in that it must always occur earlier in + the pattern than any of the additional features it turns on, + even when it is at top level. It is best put at the start. + + + +SUBPATTERNS + Subpatterns are delimited by parentheses (round brackets), + which can be nested. Marking part of a pattern as a subpat- + tern does two things: + + 1. It localizes a set of alternatives. For example, the pat- + tern + + cat(aract|erpillar|) + + matches one of the words "cat", "cataract", or "caterpil- + lar". Without the parentheses, it would match "cataract", + "erpillar" or the empty string. + + 2. It sets up the subpattern as a capturing subpattern (as + defined above). When the whole pattern matches, that por- + tion of the subject string that matched the subpattern is + passed back to the caller via the ovector argument of + pcre_exec(). Opening parentheses are counted from left to + right (starting from 1) to obtain the numbers of the captur- + ing subpatterns. + + For example, if the string "the red king" is matched against + the pattern + + the ((red|white) (king|queen)) + + the captured substrings are "red king", "red", and "king", + and are numbered 1, 2, and 3. + + The fact that plain parentheses fulfil two functions is not + always helpful. There are often times when a grouping sub- + pattern is required without a capturing requirement. If an + opening parenthesis is followed by "?:", the subpattern does + not do any capturing, and is not counted when computing the + number of any subsequent capturing subpatterns. For example, + if the string "the white queen" is matched against the pat- + tern + + the ((?:red|white) (king|queen)) + + the captured substrings are "white queen" and "queen", and + are numbered 1 and 2. The maximum number of captured sub- + strings is 99, and the maximum number of all subpatterns, + both capturing and non-capturing, is 200. + + As a convenient shorthand, if any option settings are + required at the start of a non-capturing subpattern, the + option letters may appear between the "?" and the ":". Thus + the two patterns + + (?i:saturday|sunday) + (?:(?i)saturday|sunday) + + match exactly the same set of strings. Because alternative + branches are tried from left to right, and options are not + reset until the end of the subpattern is reached, an option + setting in one branch does affect subsequent branches, so + the above patterns match "SUNDAY" as well as "Saturday". + + + +REPETITION + Repetition is specified by quantifiers, which can follow any + of the following items: + + a single character, possibly escaped + the . metacharacter + a character class + a back reference (see next section) + a parenthesized subpattern (unless it is an assertion - + see below) + + The general repetition quantifier specifies a minimum and + maximum number of permitted matches, by giving the two + numbers in curly brackets (braces), separated by a comma. + The numbers must be less than 65536, and the first must be + less than or equal to the second. For example: + + z{2,4} + + matches "zz", "zzz", or "zzzz". A closing brace on its own + is not a special character. If the second number is omitted, + but the comma is present, there is no upper limit; if the + second number and the comma are both omitted, the quantifier + specifies an exact number of required matches. Thus + + [aeiou]{3,} + + matches at least 3 successive vowels, but may match many + more, while + + \d{8} + + matches exactly 8 digits. An opening curly bracket that + appears in a position where a quantifier is not allowed, or + one that does not match the syntax of a quantifier, is taken + as a literal character. For example, {,6} is not a quantif- + ier, but a literal string of four characters. + + The quantifier {0} is permitted, causing the expression to + behave as if the previous item and the quantifier were not + present. + + For convenience (and historical compatibility) the three + most common quantifiers have single-character abbreviations: + + * is equivalent to {0,} + + is equivalent to {1,} + ? is equivalent to {0,1} + + It is possible to construct infinite loops by following a + subpattern that can match no characters with a quantifier + that has no upper limit, for example: + + (a?)* + + Earlier versions of Perl and PCRE used to give an error at + compile time for such patterns. However, because there are + cases where this can be useful, such patterns are now + accepted, but if any repetition of the subpattern does in + fact match no characters, the loop is forcibly broken. + + By default, the quantifiers are "greedy", that is, they + match as much as possible (up to the maximum number of per- + mitted times), without causing the rest of the pattern to + fail. The classic example of where this gives problems is in + trying to match comments in C programs. These appear between + the sequences /* and */ and within the sequence, individual + * and / characters may appear. An attempt to match C com- + ments by applying the pattern + + /\*.*\*/ + + to the string + + /* first command */ not comment /* second comment */ + + fails, because it matches the entire string owing to the + greediness of the .* item. + + However, if a quantifier is followed by a question mark, it + ceases to be greedy, and instead matches the minimum number + of times possible, so the pattern + + /\*.*?\*/ + + does the right thing with the C comments. The meaning of the + various quantifiers is not otherwise changed, just the pre- + ferred number of matches. Do not confuse this use of ques- + tion mark with its use as a quantifier in its own right. + Because it has two uses, it can sometimes appear doubled, as + in + + \d??\d + + which matches one digit by preference, but can match two if + that is the only way the rest of the pattern matches. + + If the PCRE_UNGREEDY option is set (an option which is not + available in Perl), the quantifiers are not greedy by + default, but individual ones can be made greedy by following + them with a question mark. In other words, it inverts the + default behaviour. + + When a parenthesized subpattern is quantified with a minimum + repeat count that is greater than 1 or with a limited max- + imum, more store is required for the compiled pattern, in + proportion to the size of the minimum or maximum. + + If a pattern starts with .* or .{0,} and the PCRE_DOTALL + option (equivalent to Perl's /s) is set, thus allowing the . + to match newlines, the pattern is implicitly anchored, + because whatever follows will be tried against every charac- + ter position in the subject string, so there is no point in + retrying the overall match at any position after the first. + PCRE treats such a pattern as though it were preceded by \A. + In cases where it is known that the subject string contains + no newlines, it is worth setting PCRE_DOTALL when the pat- + tern begins with .* in order to obtain this optimization, or + alternatively using ^ to indicate anchoring explicitly. + + When a capturing subpattern is repeated, the value captured + is the substring that matched the final iteration. For exam- + ple, after + + (tweedle[dume]{3}\s*)+ + + has matched "tweedledum tweedledee" the value of the cap- + tured substring is "tweedledee". However, if there are + nested capturing subpatterns, the corresponding captured + values may have been set in previous iterations. For exam- + ple, after + + /(a|(b))+/ + + matches "aba" the value of the second captured substring is + "b". + + + +BACK REFERENCES + Outside a character class, a backslash followed by a digit + greater than 0 (and possibly further digits) is a back + reference to a capturing subpattern earlier (i.e. to its + left) in the pattern, provided there have been that many + previous capturing left parentheses. + + However, if the decimal number following the backslash is + less than 10, it is always taken as a back reference, and + causes an error only if there are not that many capturing + left parentheses in the entire pattern. In other words, the + parentheses that are referenced need not be to the left of + the reference for numbers less than 10. See the section + entitled "Backslash" above for further details of the han- + dling of digits following a backslash. + + A back reference matches whatever actually matched the cap- + turing subpattern in the current subject string, rather than + anything matching the subpattern itself. So the pattern + + (sens|respons)e and \1ibility + + matches "sense and sensibility" and "response and responsi- + bility", but not "sense and responsibility". If caseful + matching is in force at the time of the back reference, the + case of letters is relevant. For example, + + ((?i)rah)\s+\1 + + matches "rah rah" and "RAH RAH", but not "RAH rah", even + though the original capturing subpattern is matched case- + lessly. + + There may be more than one back reference to the same sub- + pattern. If a subpattern has not actually been used in a + particular match, any back references to it always fail. For + example, the pattern + + (a|(bc))\2 + + always fails if it starts to match "a" rather than "bc". + Because there may be up to 99 back references, all digits + following the backslash are taken as part of a potential + back reference number. If the pattern continues with a digit + character, some delimiter must be used to terminate the back + reference. If the PCRE_EXTENDED option is set, this can be + whitespace. Otherwise an empty comment can be used. + + A back reference that occurs inside the parentheses to which + it refers fails when the subpattern is first used, so, for + example, (a\1) never matches. However, such references can + be useful inside repeated subpatterns. For example, the pat- + tern + + (a|b\1)+ + + matches any number of "a"s and also "aba", "ababbaa" etc. At + each iteration of the subpattern, the back reference matches + the character string corresponding to the previous + iteration. In order for this to work, the pattern must be + such that the first iteration does not need to match the + back reference. This can be done using alternation, as in + the example above, or by a quantifier with a minimum of + zero. + + + +ASSERTIONS + An assertion is a test on the characters following or + preceding the current matching point that does not actually + consume any characters. The simple assertions coded as \b, + \B, \A, \Z, \z, ^ and $ are described above. More compli- + cated assertions are coded as subpatterns. There are two + kinds: those that look ahead of the current position in the + subject string, and those that look behind it. + + An assertion subpattern is matched in the normal way, except + that it does not cause the current matching position to be + changed. Lookahead assertions start with (?= for positive + assertions and (?! for negative assertions. For example, + + \w+(?=;) + + matches a word followed by a semicolon, but does not include + the semicolon in the match, and + + foo(?!bar) + + matches any occurrence of "foo" that is not followed by + "bar". Note that the apparently similar pattern + + (?!foo)bar + + does not find an occurrence of "bar" that is preceded by + something other than "foo"; it finds any occurrence of "bar" + whatsoever, because the assertion (?!foo) is always true + when the next three characters are "bar". A lookbehind + assertion is needed to achieve this effect. + + Lookbehind assertions start with (?<= for positive asser- + tions and (? as in this example: + + (?>\d+)bar + + This kind of parenthesis "locks up" the part of the pattern + it contains once it has matched, and a failure further into + the pattern is prevented from backtracking into it. + Backtracking past it to previous items, however, works as + normal. + + An alternative description is that a subpattern of this type + matches the string of characters that an identical stan- + dalone pattern would match, if anchored at the current point + in the subject string. + + Once-only subpatterns are not capturing subpatterns. Simple + cases such as the above example can be thought of as a max- + imizing repeat that must swallow everything it can. So, + while both \d+ and \d+? are prepared to adjust the number of + digits they match in order to make the rest of the pattern + match, (?>\d+) can only match an entire sequence of digits. + + This construction can of course contain arbitrarily compli- + cated subpatterns, and it can be nested. + + Once-only subpatterns can be used in conjunction with look- + behind assertions to specify efficient matching at the end + of the subject string. Consider a simple pattern such as + + abcd$ + + when applied to a long string which does not match. Because + matching proceeds from left to right, PCRE will look for + each "a" in the subject and then see if what follows matches + the rest of the pattern. If the pattern is specified as + + ^.*abcd$ + + the initial .* matches the entire string at first, but when + this fails (because there is no following "a"), it back- + tracks to match all but the last character, then all but the + last two characters, and so on. Once again the search for + "a" covers the entire string, from right to left, so we are + no better off. However, if the pattern is written as + + ^(?>.*)(?<=abcd) + + there can be no backtracking for the .* item; it can match + only the entire string. The subsequent lookbehind assertion + does a single test on the last four characters. If it fails, + the match fails immediately. For long strings, this approach + makes a significant difference to the processing time. + + When a pattern contains an unlimited repeat inside a subpat- + tern that can itself be repeated an unlimited number of + times, the use of a once-only subpattern is the only way to + avoid some failing matches taking a very long time indeed. + The pattern + + (\D+|<\d+>)*[!?] + + matches an unlimited number of substrings that either con- + sist of non-digits, or digits enclosed in <>, followed by + either ! or ?. When it matches, it runs quickly. However, if + it is applied to + + aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa + + it takes a long time before reporting failure. This is + because the string can be divided between the two repeats in + a large number of ways, and all have to be tried. (The exam- + ple used [!?] rather than a single character at the end, + because both PCRE and Perl have an optimization that allows + for fast failure when a single character is used. They + remember the last single character that is required for a + match, and fail early if it is not present in the string.) + If the pattern is changed to + + ((?>\D+)|<\d+>)*[!?] + + sequences of non-digits cannot be broken, and failure hap- + pens quickly. + + + +CONDITIONAL SUBPATTERNS + It is possible to cause the matching process to obey a sub- + pattern conditionally or to choose between two alternative + subpatterns, depending on the result of an assertion, or + whether a previous capturing subpattern matched or not. The + two possible forms of conditional subpattern are + + (?(condition)yes-pattern) + (?(condition)yes-pattern|no-pattern) + + If the condition is satisfied, the yes-pattern is used; oth- + erwise the no-pattern (if present) is used. If there are + more than two alternatives in the subpattern, a compile-time + error occurs. + + There are two kinds of condition. If the text between the + parentheses consists of a sequence of digits, the condition + is satisfied if the capturing subpattern of that number has + previously matched. The number must be greater than zero. + Consider the following pattern, which contains non- + significant white space to make it more readable (assume the + PCRE_EXTENDED option) and to divide it into three parts for + ease of discussion: + + ( \( )? [^()]+ (?(1) \) ) + + The first part matches an optional opening parenthesis, and + if that character is present, sets it as the first captured + substring. The second part matches one or more characters + that are not parentheses. The third part is a conditional + subpattern that tests whether the first set of parentheses + matched or not. If they did, that is, if subject started + with an opening parenthesis, the condition is true, and so + the yes-pattern is executed and a closing parenthesis is + required. Otherwise, since no-pattern is not present, the + subpattern matches nothing. In other words, this pattern + matches a sequence of non-parentheses, optionally enclosed + in parentheses. + + If the condition is not a sequence of digits, it must be an + assertion. This may be a positive or negative lookahead or + lookbehind assertion. Consider this pattern, again contain- + ing non-significant white space, and with the two alterna- + tives on the second line: + + (?(?=[^a-z]*[a-z]) + \d{2}-[a-z]{3}-\d{2} | \d{2}-\d{2}-\d{2} ) + + The condition is a positive lookahead assertion that matches + an optional sequence of non-letters followed by a letter. In + other words, it tests for the presence of at least one + letter in the subject. If a letter is found, the subject is + matched against the first alternative; otherwise it is + matched against the second. This pattern matches strings in + one of the two forms dd-aaa-dd or dd-dd-dd, where aaa are + letters and dd are digits. + + + +COMMENTS + The sequence (?# marks the start of a comment which contin- + ues up to the next closing parenthesis. Nested parentheses + are not permitted. The characters that make up a comment + play no part in the pattern matching at all. + + If the PCRE_EXTENDED option is set, an unescaped # character + outside a character class introduces a comment that contin- + ues up to the next newline character in the pattern. + + + +RECURSIVE PATTERNS + Consider the problem of matching a string in parentheses, + allowing for unlimited nested parentheses. Without the use + of recursion, the best that can be done is to use a pattern + that matches up to some fixed depth of nesting. It is not + possible to handle an arbitrary nesting depth. Perl 5.6 has + provided an experimental facility that allows regular + expressions to recurse (amongst other things). It does this + by interpolating Perl code in the expression at run time, + and the code can refer to the expression itself. A Perl pat- + tern to solve the parentheses problem can be created like + this: + + $re = qr{\( (?: (?>[^()]+) | (?p{$re}) )* \)}x; + + The (?p{...}) item interpolates Perl code at run time, and + in this case refers recursively to the pattern in which it + appears. Obviously, PCRE cannot support the interpolation of + Perl code. Instead, the special item (?R) is provided for + the specific case of recursion. This PCRE pattern solves the + parentheses problem (assume the PCRE_EXTENDED option is set + so that white space is ignored): + + \( ( (?>[^()]+) | (?R) )* \) + + First it matches an opening parenthesis. Then it matches any + number of substrings which can either be a sequence of non- + parentheses, or a recursive match of the pattern itself + (i.e. a correctly parenthesized substring). Finally there is + a closing parenthesis. + + This particular example pattern contains nested unlimited + repeats, and so the use of a once-only subpattern for match- + ing strings of non-parentheses is important when applying + the pattern to strings that do not match. For example, when + it is applied to + + (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa() + + it yields "no match" quickly. However, if a once-only sub- + pattern is not used, the match runs for a very long time + indeed because there are so many different ways the + and * + repeats can carve up the subject, and all have to be tested + before failure can be reported. + + The values set for any capturing subpatterns are those from + the outermost level of the recursion at which the subpattern + value is set. If the pattern above is matched against + + (ab(cd)ef) + + the value for the capturing parentheses is "ef", which is + the last value taken on at the top level. If additional + parentheses are added, giving + + \( ( ( (?>[^()]+) | (?R) )* ) \) + ^ ^ + ^ ^ the string they capture is + "ab(cd)ef", the contents of the top level parentheses. If + there are more than 15 capturing parentheses in a pattern, + PCRE has to obtain extra memory to store data during a + recursion, which it does by using pcre_malloc, freeing it + via pcre_free afterwards. If no memory can be obtained, it + saves data for the first 15 capturing parentheses only, as + there is no way to give an out-of-memory error from within a + recursion. + + + +PERFORMANCE + Certain items that may appear in patterns are more efficient + than others. It is more efficient to use a character class + like [aeiou] than a set of alternatives such as (a|e|i|o|u). + In general, the simplest construction that provides the + required behaviour is usually the most efficient. Jeffrey + Friedl's book contains a lot of discussion about optimizing + regular expressions for efficient performance. + + When a pattern begins with .* and the PCRE_DOTALL option is + set, the pattern is implicitly anchored by PCRE, since it + can match only at the start of a subject string. However, if + PCRE_DOTALL is not set, PCRE cannot make this optimization, + because the . metacharacter does not then match a newline, + and if the subject string contains newlines, the pattern may + match from the character immediately following one of them + instead of from the very start. For example, the pattern + + (.*) second + + matches the subject "first\nand second" (where \n stands for + a newline character) with the first captured substring being + "and". In order to do this, PCRE has to retry the match + starting after every newline in the subject. + + If you are using such a pattern with subject strings that do + not contain newlines, the best performance is obtained by + setting PCRE_DOTALL, or starting the pattern with ^.* to + indicate explicit anchoring. That saves PCRE from having to + scan along the subject looking for a newline to restart at. + + Beware of patterns that contain nested indefinite repeats. + These can take a long time to run when applied to a string + that does not match. Consider the pattern fragment + + (a+)* + + This can match "aaaa" in 33 different ways, and this number + increases very rapidly as the string gets longer. (The * + repeat can match 0, 1, 2, 3, or 4 times, and for each of + those cases other than 0, the + repeats can match different + numbers of times.) When the remainder of the pattern is such + that the entire match is going to fail, PCRE has in princi- + ple to try every possible variation, and this can take an + extremely long time. + + An optimization catches some of the more simple cases such + as + + (a+)*b + + where a literal character follows. Before embarking on the + standard matching procedure, PCRE checks that there is a "b" + later in the subject string, and if there is not, it fails + the match immediately. However, when there is no following + literal this optimization cannot be used. You can see the + difference by comparing the behaviour of + + (a+)*\d + + with the pattern above. The former gives a failure almost + instantly when applied to a whole line of "a" characters, + whereas the latter takes an appreciable time with strings + longer than about 20 characters. + + + +UTF-8 SUPPORT + Starting at release 3.3, PCRE has some support for character + strings encoded in the UTF-8 format. This is incomplete, and + is regarded as experimental. In order to use it, you must + configure PCRE to include UTF-8 support in the code, and, in + addition, you must call pcre_compile() with the PCRE_UTF8 + option flag. When you do this, both the pattern and any sub- + ject strings that are matched against it are treated as + UTF-8 strings instead of just strings of bytes, but only in + the cases that are mentioned below. + + If you compile PCRE with UTF-8 support, but do not use it at + run time, the library will be a bit bigger, but the addi- + tional run time overhead is limited to testing the PCRE_UTF8 + flag in several places, so should not be very large. + + PCRE assumes that the strings it is given contain valid + UTF-8 codes. It does not diagnose invalid UTF-8 strings. If + you pass invalid UTF-8 strings to PCRE, the results are + undefined. + + Running with PCRE_UTF8 set causes these changes in the way + PCRE works: + + 1. In a pattern, the escape sequence \x{...}, where the con- + tents of the braces is a string of hexadecimal digits, is + interpreted as a UTF-8 character whose code number is the + given hexadecimal number, for example: \x{1234}. This + inserts from one to six literal bytes into the pattern, + using the UTF-8 encoding. If a non-hexadecimal digit appears + between the braces, the item is not recognized. + + 2. The original hexadecimal escape sequence, \xhh, generates + a two-byte UTF-8 character if its value is greater than 127. + + 3. Repeat quantifiers are NOT correctly handled if they fol- + low a multibyte character. For example, \x{100}* and \xc3+ + do not work. If you want to repeat such characters, you must + enclose them in non-capturing parentheses, for example + (?:\x{100}), at present. + + 4. The dot metacharacter matches one UTF-8 character instead + of a single byte. + + 5. Unlike literal UTF-8 characters, the dot metacharacter + followed by a repeat quantifier does operate correctly on + UTF-8 characters instead of single bytes. + + 4. Although the \x{...} escape is permitted in a character + class, characters whose values are greater than 255 cannot + be included in a class. + + 5. A class is matched against a UTF-8 character instead of + just a single byte, but it can match only characters whose + values are less than 256. Characters with greater values + always fail to match a class. + + 6. Repeated classes work correctly on multiple characters. + + 7. Classes containing just a single character whose value is + greater than 127 (but less than 256), for example, [\x80] or + [^\x{93}], do not work because these are optimized into sin- + gle byte matches. In the first case, of course, the class + brackets are just redundant. + + 8. Lookbehind assertions move backwards in the subject by a + fixed number of characters instead of a fixed number of + bytes. Simple cases have been tested to work correctly, but + there may be hidden gotchas herein. + + 9. The character types such as \d and \w do not work + correctly with UTF-8 characters. They continue to test a + single byte. + + 10. Anything not explicitly mentioned here continues to work + in bytes rather than in characters. + + The following UTF-8 features of Perl 5.6 are not imple- + mented: + 1. The escape sequence \C to match a single byte. + + 2. The use of Unicode tables and properties and escapes \p, + \P, and \X. + + + +AUTHOR + Philip Hazel + University Computing Service, + New Museums Site, + Cambridge CB2 3QG, England. + Phone: +44 1223 334714 + + Last updated: 28 August 2000, + the 250th anniversary of the death of J.S. Bach. + Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcregrep.1 b/pcre/doc/pcregrep.1 new file mode 100644 index 00000000..ec733fa1 --- /dev/null +++ b/pcre/doc/pcregrep.1 @@ -0,0 +1,76 @@ +.TH PCREGREP 1 +.SH NAME +pcregrep - a grep with Perl-compatible regular expressions. +.SH SYNOPSIS +.B pcregrep [-Vchilnsvx] pattern [file] ... + + +.SH DESCRIPTION +\fBpcregrep\fR searches files for character patterns, in the same way as other +grep commands do, but it uses the PCRE regular expression library to support +patterns that are compatible with the regular expressions of Perl 5. See +\fBpcre(3)\fR for a full description of syntax and semantics. + +If no files are specified, \fBpcregrep\fR reads the standard input. By default, +each line that matches the pattern is copied to the standard output, and if +there is more than one file, the file name is printed before each line of +output. However, there are options that can change how \fBpcregrep\fR behaves. + +Lines are limited to BUFSIZ characters. BUFSIZ is defined in \fB\fR. +The newline character is removed from the end of each line before it is matched +against the pattern. + + +.SH OPTIONS +.TP 10 +\fB-V\fR +Write the version number of the PCRE library being used to the standard error +stream. +.TP +\fB-c\fR +Do not print individual lines; instead just print a count of the number of +lines that would otherwise have been printed. If several files are given, a +count is printed for each of them. +.TP +\fB-h\fR +Suppress printing of filenames when searching multiple files. +.TP +\fB-i\fR +Ignore upper/lower case distinctions during comparisons. +.TP +\fB-l\fR +Instead of printing lines from the files, just print the names of the files +containing lines that would have been printed. Each file name is printed +once, on a separate line. +.TP +\fB-n\fR +Precede each line by its line number in the file. +.TP +\fB-s\fR +Work silently, that is, display nothing except error messages. +The exit status indicates whether any matches were found. +.TP +\fB-v\fR +Invert the sense of the match, so that lines which do \fInot\fR match the +pattern are now the ones that are found. +.TP +\fB-x\fR +Force the pattern to be anchored (it must start matching at the beginning of +the line) and in addition, require it to match the entire line. This is +equivalent to having ^ and $ characters at the start and end of each +alternative branch in the regular expression. + + +.SH SEE ALSO +\fBpcre(3)\fR, Perl 5 documentation + + +.SH DIAGNOSTICS +Exit status is 0 if any matches were found, 1 if no matches were found, and 2 +for syntax errors or inacessible files (even if matches were found). + + +.SH AUTHOR +Philip Hazel +.br +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcregrep.html b/pcre/doc/pcregrep.html new file mode 100644 index 00000000..19f733c4 --- /dev/null +++ b/pcre/doc/pcregrep.html @@ -0,0 +1,105 @@ + + +pcregrep specification + + +

    pcregrep specification

    +This HTML document has been generated automatically from the original man page. +If there is any nonsense in it, please consult the man page in case the +conversion went wrong. + +
  • NAME +

    +pcregrep - a grep with Perl-compatible regular expressions. +

    +
  • SYNOPSIS +

    +pcregrep [-Vchilnsvx] pattern [file] ... +

    +
  • DESCRIPTION +

    +pcregrep searches files for character patterns, in the same way as other +grep commands do, but it uses the PCRE regular expression library to support +patterns that are compatible with the regular expressions of Perl 5. See +pcre(3) for a full description of syntax and semantics. +

    +

    +If no files are specified, pcregrep reads the standard input. By default, +each line that matches the pattern is copied to the standard output, and if +there is more than one file, the file name is printed before each line of +output. However, there are options that can change how pcregrep behaves. +

    +

    +Lines are limited to BUFSIZ characters. BUFSIZ is defined in <stdio.h>. +The newline character is removed from the end of each line before it is matched +against the pattern. +

    +
  • OPTIONS +

    +-V +Write the version number of the PCRE library being used to the standard error +stream. +

    +

    +-c +Do not print individual lines; instead just print a count of the number of +lines that would otherwise have been printed. If several files are given, a +count is printed for each of them. +

    +

    +-h +Suppress printing of filenames when searching multiple files. +

    +

    +-i +Ignore upper/lower case distinctions during comparisons. +

    +

    +-l +Instead of printing lines from the files, just print the names of the files +containing lines that would have been printed. Each file name is printed +once, on a separate line. +

    +

    +-n +Precede each line by its line number in the file. +

    +

    +-s +Work silently, that is, display nothing except error messages. +The exit status indicates whether any matches were found. +

    +

    +-v +Invert the sense of the match, so that lines which do not match the +pattern are now the ones that are found. +

    +

    +-x +Force the pattern to be anchored (it must start matching at the beginning of +the line) and in addition, require it to match the entire line. This is +equivalent to having ^ and $ characters at the start and end of each +alternative branch in the regular expression. +

    +
  • SEE ALSO +

    +pcre(3), Perl 5 documentation +

    +
  • DIAGNOSTICS +

    +Exit status is 0 if any matches were found, 1 if no matches were found, and 2 +for syntax errors or inacessible files (even if matches were found). +

    +
  • AUTHOR +

    +Philip Hazel <ph10@cam.ac.uk> +
    +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcregrep.txt b/pcre/doc/pcregrep.txt new file mode 100644 index 00000000..871350ca --- /dev/null +++ b/pcre/doc/pcregrep.txt @@ -0,0 +1,87 @@ +NAME + pcregrep - a grep with Perl-compatible regular expressions. + + + +SYNOPSIS + pcregrep [-Vchilnsvx] pattern [file] ... + + + +DESCRIPTION + pcregrep searches files for character patterns, in the same + way as other grep commands do, but it uses the PCRE regular + expression library to support patterns that are compatible + with the regular expressions of Perl 5. See pcre(3) for a + full description of syntax and semantics. + + If no files are specified, pcregrep reads the standard + input. By default, each line that matches the pattern is + copied to the standard output, and if there is more than one + file, the file name is printed before each line of output. + However, there are options that can change how pcregrep + behaves. + + Lines are limited to BUFSIZ characters. BUFSIZ is defined in + . The newline character is removed from the end of + each line before it is matched against the pattern. + + + +OPTIONS + -V Write the version number of the PCRE library being + used to the standard error stream. + + -c Do not print individual lines; instead just print + a count of the number of lines that would other- + wise have been printed. If several files are + given, a count is printed for each of them. + + -h Suppress printing of filenames when searching mul- + tiple files. + + -i Ignore upper/lower case distinctions during com- + parisons. + + -l Instead of printing lines from the files, just + print the names of the files containing lines that + would have been printed. Each file name is printed + once, on a separate line. + + -n Precede each line by its line number in the file. + + -s Work silently, that is, display nothing except + error messages. The exit status indicates whether + any matches were found. + + -v Invert the sense of the match, so that lines which + do not match the pattern are now the ones that are + found. + + -x Force the pattern to be anchored (it must start + matching at the beginning of the line) and in + addition, require it to match the entire line. + This is equivalent to having ^ and $ characters at + the start and end of each alternative branch in + the regular expression. + + + +SEE ALSO + pcre(3), Perl 5 documentation + + + + + +DIAGNOSTICS + Exit status is 0 if any matches were found, 1 if no matches + were found, and 2 for syntax errors or inacessible files + (even if matches were found). + + + +AUTHOR + Philip Hazel + Copyright (c) 1997-2000 University of Cambridge. + diff --git a/pcre/doc/pcreposix.3 b/pcre/doc/pcreposix.3 new file mode 100644 index 00000000..4853a97f --- /dev/null +++ b/pcre/doc/pcreposix.3 @@ -0,0 +1,149 @@ +.TH PCRE 3 +.SH NAME +pcreposix - POSIX API for Perl-compatible regular expressions. +.SH SYNOPSIS +.B #include +.PP +.SM +.br +.B int regcomp(regex_t *\fIpreg\fR, const char *\fIpattern\fR, +.ti +5n +.B int \fIcflags\fR); +.PP +.br +.B int regexec(regex_t *\fIpreg\fR, const char *\fIstring\fR, +.ti +5n +.B size_t \fInmatch\fR, regmatch_t \fIpmatch\fR[], int \fIeflags\fR); +.PP +.br +.B size_t regerror(int \fIerrcode\fR, const regex_t *\fIpreg\fR, +.ti +5n +.B char *\fIerrbuf\fR, size_t \fIerrbuf_size\fR); +.PP +.br +.B void regfree(regex_t *\fIpreg\fR); + + +.SH DESCRIPTION +This set of functions provides a POSIX-style API to the PCRE regular expression +package. See the \fBpcre\fR documentation for a description of the native API, +which contains additional functionality. + +The functions described here are just wrapper functions that ultimately call +the native API. Their prototypes are defined in the \fBpcreposix.h\fR header +file, and on Unix systems the library itself is called \fBpcreposix.a\fR, so +can be accessed by adding \fB-lpcreposix\fR to the command for linking an +application which uses them. Because the POSIX functions call the native ones, +it is also necessary to add \fR-lpcre\fR. + +I have implemented only those option bits that can be reasonably mapped to PCRE +native options. In addition, the options REG_EXTENDED and REG_NOSUB are defined +with the value zero. They have no effect, but since programs that are written +to the POSIX interface often use them, this makes it easier to slot in PCRE as +a replacement library. Other POSIX options are not even defined. + +When PCRE is called via these functions, it is only the API that is POSIX-like +in style. The syntax and semantics of the regular expressions themselves are +still those of Perl, subject to the setting of various PCRE options, as +described below. + +The header for these functions is supplied as \fBpcreposix.h\fR to avoid any +potential clash with other POSIX libraries. It can, of course, be renamed or +aliased as \fBregex.h\fR, which is the "correct" name. It provides two +structure types, \fIregex_t\fR for compiled internal forms, and +\fIregmatch_t\fR for returning captured substrings. It also defines some +constants whose names start with "REG_"; these are used for setting options and +identifying error codes. + + +.SH COMPILING A PATTERN + +The function \fBregcomp()\fR is called to compile a pattern into an +internal form. The pattern is a C string terminated by a binary zero, and +is passed in the argument \fIpattern\fR. The \fIpreg\fR argument is a pointer +to a regex_t structure which is used as a base for storing information about +the compiled expression. + +The argument \fIcflags\fR is either zero, or contains one or more of the bits +defined by the following macros: + + REG_ICASE + +The PCRE_CASELESS option is set when the expression is passed for compilation +to the native function. + + REG_NEWLINE + +The PCRE_MULTILINE option is set when the expression is passed for compilation +to the native function. + +In the absence of these flags, no options are passed to the native function. +This means the the regex is compiled with PCRE default semantics. In +particular, the way it handles newline characters in the subject string is the +Perl way, not the POSIX way. Note that setting PCRE_MULTILINE has only +\fIsome\fR of the effects specified for REG_NEWLINE. It does not affect the way +newlines are matched by . (they aren't) or a negative class such as [^a] (they +are). + +The yield of \fBregcomp()\fR is zero on success, and non-zero otherwise. The +\fIpreg\fR structure is filled in on success, and one member of the structure +is publicized: \fIre_nsub\fR contains the number of capturing subpatterns in +the regular expression. Various error codes are defined in the header file. + + +.SH MATCHING A PATTERN +The function \fBregexec()\fR is called to match a pre-compiled pattern +\fIpreg\fR against a given \fIstring\fR, which is terminated by a zero byte, +subject to the options in \fIeflags\fR. These can be: + + REG_NOTBOL + +The PCRE_NOTBOL option is set when calling the underlying PCRE matching +function. + + REG_NOTEOL + +The PCRE_NOTEOL option is set when calling the underlying PCRE matching +function. + +The portion of the string that was matched, and also any captured substrings, +are returned via the \fIpmatch\fR argument, which points to an array of +\fInmatch\fR structures of type \fIregmatch_t\fR, containing the members +\fIrm_so\fR and \fIrm_eo\fR. These contain the offset to the first character of +each substring and the offset to the first character after the end of each +substring, respectively. The 0th element of the vector relates to the entire +portion of \fIstring\fR that was matched; subsequent elements relate to the +capturing subpatterns of the regular expression. Unused entries in the array +have both structure members set to -1. + +A successful match yields a zero return; various error codes are defined in the +header file, of which REG_NOMATCH is the "expected" failure code. + + +.SH ERROR MESSAGES +The \fBregerror()\fR function maps a non-zero errorcode from either +\fBregcomp\fR or \fBregexec\fR to a printable message. If \fIpreg\fR is not +NULL, the error should have arisen from the use of that structure. A message +terminated by a binary zero is placed in \fIerrbuf\fR. The length of the +message, including the zero, is limited to \fIerrbuf_size\fR. The yield of the +function is the size of buffer needed to hold the whole message. + + +.SH STORAGE +Compiling a regular expression causes memory to be allocated and associated +with the \fIpreg\fR structure. The function \fBregfree()\fR frees all such +memory, after which \fIpreg\fR may no longer be used as a compiled expression. + + +.SH AUTHOR +Philip Hazel +.br +University Computing Service, +.br +New Museums Site, +.br +Cambridge CB2 3QG, England. +.br +Phone: +44 1223 334714 + +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcreposix.html b/pcre/doc/pcreposix.html new file mode 100644 index 00000000..79ff544b --- /dev/null +++ b/pcre/doc/pcreposix.html @@ -0,0 +1,191 @@ + + +pcreposix specification + + +

    pcreposix specification

    +This HTML document has been generated automatically from the original man page. +If there is any nonsense in it, please consult the man page in case the +conversion went wrong. + +
  • NAME +

    +pcreposix - POSIX API for Perl-compatible regular expressions. +

    +
  • SYNOPSIS +

    +#include <pcreposix.h> +

    +

    +int regcomp(regex_t *preg, const char *pattern, +int cflags); +

    +

    +int regexec(regex_t *preg, const char *string, +size_t nmatch, regmatch_t pmatch[], int eflags); +

    +

    +size_t regerror(int errcode, const regex_t *preg, +char *errbuf, size_t errbuf_size); +

    +

    +void regfree(regex_t *preg); +

    +
  • DESCRIPTION +

    +This set of functions provides a POSIX-style API to the PCRE regular expression +package. See the pcre documentation for a description of the native API, +which contains additional functionality. +

    +

    +The functions described here are just wrapper functions that ultimately call +the native API. Their prototypes are defined in the pcreposix.h header +file, and on Unix systems the library itself is called pcreposix.a, so +can be accessed by adding -lpcreposix to the command for linking an +application which uses them. Because the POSIX functions call the native ones, +it is also necessary to add \fR-lpcre\fR. +

    +

    +I have implemented only those option bits that can be reasonably mapped to PCRE +native options. In addition, the options REG_EXTENDED and REG_NOSUB are defined +with the value zero. They have no effect, but since programs that are written +to the POSIX interface often use them, this makes it easier to slot in PCRE as +a replacement library. Other POSIX options are not even defined. +

    +

    +When PCRE is called via these functions, it is only the API that is POSIX-like +in style. The syntax and semantics of the regular expressions themselves are +still those of Perl, subject to the setting of various PCRE options, as +described below. +

    +

    +The header for these functions is supplied as pcreposix.h to avoid any +potential clash with other POSIX libraries. It can, of course, be renamed or +aliased as regex.h, which is the "correct" name. It provides two +structure types, regex_t for compiled internal forms, and +regmatch_t for returning captured substrings. It also defines some +constants whose names start with "REG_"; these are used for setting options and +identifying error codes. +

    +
  • COMPILING A PATTERN +

    +The function regcomp() is called to compile a pattern into an +internal form. The pattern is a C string terminated by a binary zero, and +is passed in the argument pattern. The preg argument is a pointer +to a regex_t structure which is used as a base for storing information about +the compiled expression. +

    +

    +The argument cflags is either zero, or contains one or more of the bits +defined by the following macros: +

    +

    +

    +  REG_ICASE
+
    +

    +

    +The PCRE_CASELESS option is set when the expression is passed for compilation +to the native function. +

    +

    +

    +  REG_NEWLINE
+
    +

    +

    +The PCRE_MULTILINE option is set when the expression is passed for compilation +to the native function. +

    +

    +In the absence of these flags, no options are passed to the native function. +This means the the regex is compiled with PCRE default semantics. In +particular, the way it handles newline characters in the subject string is the +Perl way, not the POSIX way. Note that setting PCRE_MULTILINE has only +some of the effects specified for REG_NEWLINE. It does not affect the way +newlines are matched by . (they aren't) or a negative class such as [^a] (they +are). +

    +

    +The yield of regcomp() is zero on success, and non-zero otherwise. The +preg structure is filled in on success, and one member of the structure +is publicized: re_nsub contains the number of capturing subpatterns in +the regular expression. Various error codes are defined in the header file. +

    +
  • MATCHING A PATTERN +

    +The function regexec() is called to match a pre-compiled pattern +preg against a given string, which is terminated by a zero byte, +subject to the options in eflags. These can be: +

    +

    +

    +  REG_NOTBOL
+
    +

    +

    +The PCRE_NOTBOL option is set when calling the underlying PCRE matching +function. +

    +

    +

    +  REG_NOTEOL
+
    +

    +

    +The PCRE_NOTEOL option is set when calling the underlying PCRE matching +function. +

    +

    +The portion of the string that was matched, and also any captured substrings, +are returned via the pmatch argument, which points to an array of +nmatch structures of type regmatch_t, containing the members +rm_so and rm_eo. These contain the offset to the first character of +each substring and the offset to the first character after the end of each +substring, respectively. The 0th element of the vector relates to the entire +portion of string that was matched; subsequent elements relate to the +capturing subpatterns of the regular expression. Unused entries in the array +have both structure members set to -1. +

    +

    +A successful match yields a zero return; various error codes are defined in the +header file, of which REG_NOMATCH is the "expected" failure code. +

    +
  • ERROR MESSAGES +

    +The regerror() function maps a non-zero errorcode from either +regcomp or regexec to a printable message. If preg is not +NULL, the error should have arisen from the use of that structure. A message +terminated by a binary zero is placed in errbuf. The length of the +message, including the zero, is limited to errbuf_size. The yield of the +function is the size of buffer needed to hold the whole message. +

    +
  • STORAGE +

    +Compiling a regular expression causes memory to be allocated and associated +with the preg structure. The function regfree() frees all such +memory, after which preg may no longer be used as a compiled expression. +

    +
  • AUTHOR +

    +Philip Hazel <ph10@cam.ac.uk> +
    +University Computing Service, +
    +New Museums Site, +
    +Cambridge CB2 3QG, England. +
    +Phone: +44 1223 334714 +

    +

    +Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcreposix.txt b/pcre/doc/pcreposix.txt new file mode 100644 index 00000000..2d76f7cd --- /dev/null +++ b/pcre/doc/pcreposix.txt @@ -0,0 +1,159 @@ +NAME + pcreposix - POSIX API for Perl-compatible regular expres- + sions. + + + +SYNOPSIS + #include + + int regcomp(regex_t *preg, const char *pattern, + int cflags); + + int regexec(regex_t *preg, const char *string, + size_t nmatch, regmatch_t pmatch[], int eflags); + + size_t regerror(int errcode, const regex_t *preg, + char *errbuf, size_t errbuf_size); + + void regfree(regex_t *preg); + + + +DESCRIPTION + This set of functions provides a POSIX-style API to the PCRE + regular expression package. See the pcre documentation for a + description of the native API, which contains additional + functionality. + + The functions described here are just wrapper functions that + ultimately call the native API. Their prototypes are defined + in the pcreposix.h header file, and on Unix systems the + library itself is called pcreposix.a, so can be accessed by + adding -lpcreposix to the command for linking an application + which uses them. Because the POSIX functions call the native + ones, it is also necessary to add -lpcre. + + I have implemented only those option bits that can be rea- + sonably mapped to PCRE native options. In addition, the + options REG_EXTENDED and REG_NOSUB are defined with the + value zero. They have no effect, but since programs that are + written to the POSIX interface often use them, this makes it + easier to slot in PCRE as a replacement library. Other POSIX + options are not even defined. + + When PCRE is called via these functions, it is only the API + that is POSIX-like in style. The syntax and semantics of the + regular expressions themselves are still those of Perl, sub- + ject to the setting of various PCRE options, as described + below. + + The header for these functions is supplied as pcreposix.h to + avoid any potential clash with other POSIX libraries. It + can, of course, be renamed or aliased as regex.h, which is + the "correct" name. It provides two structure types, regex_t + for compiled internal forms, and regmatch_t for returning + captured substrings. It also defines some constants whose + names start with "REG_"; these are used for setting options + and identifying error codes. + + + +COMPILING A PATTERN + The function regcomp() is called to compile a pattern into + an internal form. The pattern is a C string terminated by a + binary zero, and is passed in the argument pattern. The preg + argument is a pointer to a regex_t structure which is used + as a base for storing information about the compiled expres- + sion. + + The argument cflags is either zero, or contains one or more + of the bits defined by the following macros: + + REG_ICASE + + The PCRE_CASELESS option is set when the expression is + passed for compilation to the native function. + + REG_NEWLINE + + The PCRE_MULTILINE option is set when the expression is + passed for compilation to the native function. + + In the absence of these flags, no options are passed to the + native function. This means the the regex is compiled with + PCRE default semantics. In particular, the way it handles + newline characters in the subject string is the Perl way, + not the POSIX way. Note that setting PCRE_MULTILINE has only + some of the effects specified for REG_NEWLINE. It does not + affect the way newlines are matched by . (they aren't) or a + negative class such as [^a] (they are). + + The yield of regcomp() is zero on success, and non-zero oth- + erwise. The preg structure is filled in on success, and one + member of the structure is publicized: re_nsub contains the + number of capturing subpatterns in the regular expression. + Various error codes are defined in the header file. + + + +MATCHING A PATTERN + The function regexec() is called to match a pre-compiled + pattern preg against a given string, which is terminated by + a zero byte, subject to the options in eflags. These can be: + + REG_NOTBOL + + The PCRE_NOTBOL option is set when calling the underlying + PCRE matching function. + + REG_NOTEOL + + The PCRE_NOTEOL option is set when calling the underlying + PCRE matching function. + + The portion of the string that was matched, and also any + captured substrings, are returned via the pmatch argument, + which points to an array of nmatch structures of type + regmatch_t, containing the members rm_so and rm_eo. These + contain the offset to the first character of each substring + and the offset to the first character after the end of each + substring, respectively. The 0th element of the vector + relates to the entire portion of string that was matched; + subsequent elements relate to the capturing subpatterns of + the regular expression. Unused entries in the array have + both structure members set to -1. + + A successful match yields a zero return; various error codes + are defined in the header file, of which REG_NOMATCH is the + "expected" failure code. + + + +ERROR MESSAGES + The regerror() function maps a non-zero errorcode from + either regcomp or regexec to a printable message. If preg is + not NULL, the error should have arisen from the use of that + structure. A message terminated by a binary zero is placed + in errbuf. The length of the message, including the zero, is + limited to errbuf_size. The yield of the function is the + size of buffer needed to hold the whole message. + + + +STORAGE + Compiling a regular expression causes memory to be allocated + and associated with the preg structure. The function reg- + free() frees all such memory, after which preg may no longer + be used as a compiled expression. + + + +AUTHOR + Philip Hazel + University Computing Service, + New Museums Site, + Cambridge CB2 3QG, England. + Phone: +44 1223 334714 + + Copyright (c) 1997-2000 University of Cambridge. diff --git a/pcre/doc/pcretest.txt b/pcre/doc/pcretest.txt new file mode 100644 index 00000000..722e6b86 --- /dev/null +++ b/pcre/doc/pcretest.txt @@ -0,0 +1,246 @@ +The pcretest program +-------------------- + +This program is intended for testing PCRE, but it can also be used for +experimenting with regular expressions. + +If it is given two filename arguments, it reads from the first and writes to +the second. If it is given only one filename argument, it reads from that file +and writes to stdout. Otherwise, it reads from stdin and writes to stdout, and +prompts for each line of input, using "re>" to prompt for regular expressions, +and "data>" to prompt for data lines. + +The program handles any number of sets of input on a single input file. Each +set starts with a regular expression, and continues with any number of data +lines to be matched against the pattern. An empty line signals the end of the +data lines, at which point a new regular expression is read. The regular +expressions are given enclosed in any non-alphameric delimiters other than +backslash, for example + + /(a|bc)x+yz/ + +White space before the initial delimiter is ignored. A regular expression may +be continued over several input lines, in which case the newline characters are +included within it. See the test input files in the testdata directory for many +examples. It is possible to include the delimiter within the pattern by +escaping it, for example + + /abc\/def/ + +If you do so, the escape and the delimiter form part of the pattern, but since +delimiters are always non-alphameric, this does not affect its interpretation. +If the terminating delimiter is immediately followed by a backslash, for +example, + + /abc/\ + +then a backslash is added to the end of the pattern. This is done to provide a +way of testing the error condition that arises if a pattern finishes with a +backslash, because + + /abc\/ + +is interpreted as the first line of a pattern that starts with "abc/", causing +pcretest to read the next line as a continuation of the regular expression. + + +PATTERN MODIFIERS +----------------- + +The pattern may be followed by i, m, s, or x to set the PCRE_CASELESS, +PCRE_MULTILINE, PCRE_DOTALL, or PCRE_EXTENDED options, respectively. For +example: + + /caseless/i + +These modifier letters have the same effect as they do in Perl. There are +others which set PCRE options that do not correspond to anything in Perl: /A, +/E, and /X set PCRE_ANCHORED, PCRE_DOLLAR_ENDONLY, and PCRE_EXTRA respectively. + +Searching for all possible matches within each subject string can be requested +by the /g or /G modifier. After finding a match, PCRE is called again to search +the remainder of the subject string. The difference between /g and /G is that +the former uses the startoffset argument to pcre_exec() to start searching at +a new point within the entire string (which is in effect what Perl does), +whereas the latter passes over a shortened substring. This makes a difference +to the matching process if the pattern begins with a lookbehind assertion +(including \b or \B). + +If any call to pcre_exec() in a /g or /G sequence matches an empty string, the +next call is done with the PCRE_NOTEMPTY and PCRE_ANCHORED flags set in order +to search for another, non-empty, match at the same point. If this second match +fails, the start offset is advanced by one, and the normal match is retried. +This imitates the way Perl handles such cases when using the /g modifier or the +split() function. + +There are a number of other modifiers for controlling the way pcretest +operates. + +The /+ modifier requests that as well as outputting the substring that matched +the entire pattern, pcretest should in addition output the remainder of the +subject string. This is useful for tests where the subject contains multiple +copies of the same substring. + +The /L modifier must be followed directly by the name of a locale, for example, + + /pattern/Lfr + +For this reason, it must be the last modifier letter. The given locale is set, +pcre_maketables() is called to build a set of character tables for the locale, +and this is then passed to pcre_compile() when compiling the regular +expression. Without an /L modifier, NULL is passed as the tables pointer; that +is, /L applies only to the expression on which it appears. + +The /I modifier requests that pcretest output information about the compiled +expression (whether it is anchored, has a fixed first character, and so on). It +does this by calling pcre_fullinfo() after compiling an expression, and +outputting the information it gets back. If the pattern is studied, the results +of that are also output. + +The /D modifier is a PCRE debugging feature, which also assumes /I. It causes +the internal form of compiled regular expressions to be output after +compilation. + +The /S modifier causes pcre_study() to be called after the expression has been +compiled, and the results used when the expression is matched. + +The /M modifier causes the size of memory block used to hold the compiled +pattern to be output. + +The /P modifier causes pcretest to call PCRE via the POSIX wrapper API rather +than its native API. When this is done, all other modifiers except /i, /m, and +/+ are ignored. REG_ICASE is set if /i is present, and REG_NEWLINE is set if /m +is present. The wrapper functions force PCRE_DOLLAR_ENDONLY always, and +PCRE_DOTALL unless REG_NEWLINE is set. + +The /8 modifier causes pcretest to call PCRE with the PCRE_UTF8 option set. +This turns on the (currently incomplete) support for UTF-8 character handling +in PCRE, provided that it was compiled with this support enabled. This modifier +also causes any non-printing characters in output strings to be printed using +the \x{hh...} notation if they are valid UTF-8 sequences. + + +DATA LINES +---------- + +Before each data line is passed to pcre_exec(), leading and trailing whitespace +is removed, and it is then scanned for \ escapes. The following are recognized: + + \a alarm (= BEL) + \b backspace + \e escape + \f formfeed + \n newline + \r carriage return + \t tab + \v vertical tab + \nnn octal character (up to 3 octal digits) + \xhh hexadecimal character (up to 2 hex digits) + \x{hh...} hexadecimal UTF-8 character + + \A pass the PCRE_ANCHORED option to pcre_exec() + \B pass the PCRE_NOTBOL option to pcre_exec() + \Cdd call pcre_copy_substring() for substring dd after a successful + match (any decimal number less than 32) + \Gdd call pcre_get_substring() for substring dd after a successful + match (any decimal number less than 32) + \L call pcre_get_substringlist() after a successful match + \N pass the PCRE_NOTEMPTY option to pcre_exec() + \Odd set the size of the output vector passed to pcre_exec() to dd + (any number of decimal digits) + \Z pass the PCRE_NOTEOL option to pcre_exec() + +A backslash followed by anything else just escapes the anything else. If the +very last character is a backslash, it is ignored. This gives a way of passing +an empty line as data, since a real empty line terminates the data input. + +If /P was present on the regex, causing the POSIX wrapper API to be used, only +\B, and \Z have any effect, causing REG_NOTBOL and REG_NOTEOL to be passed to +regexec() respectively. + +The use of \x{hh...} to represent UTF-8 characters is not dependent on the use +of the /8 modifier on the pattern. It is recognized always. There may be any +number of hexadecimal digits inside the braces. The result is from one to six +bytes, encoded according to the UTF-8 rules. + + +OUTPUT FROM PCRETEST +-------------------- + +When a match succeeds, pcretest outputs the list of captured substrings that +pcre_exec() returns, starting with number 0 for the string that matched the +whole pattern. Here is an example of an interactive pcretest run. + + $ pcretest + PCRE version 2.06 08-Jun-1999 + + re> /^abc(\d+)/ + data> abc123 + 0: abc123 + 1: 123 + data> xyz + No match + +If the strings contain any non-printing characters, they are output as \0x +escapes, or as \x{...} escapes if the /8 modifier was present on the pattern. +If the pattern has the /+ modifier, then the output for substring 0 is followed +by the the rest of the subject string, identified by "0+" like this: + + re> /cat/+ + data> cataract + 0: cat + 0+ aract + +If the pattern has the /g or /G modifier, the results of successive matching +attempts are output in sequence, like this: + + re> /\Bi(\w\w)/g + data> Mississippi + 0: iss + 1: ss + 0: iss + 1: ss + 0: ipp + 1: pp + +"No match" is output only if the first match attempt fails. + +If any of \C, \G, or \L are present in a data line that is successfully +matched, the substrings extracted by the convenience functions are output with +C, G, or L after the string number instead of a colon. This is in addition to +the normal full list. The string length (that is, the return from the +extraction function) is given in parentheses after each string for \C and \G. + +Note that while patterns can be continued over several lines (a plain ">" +prompt is used for continuations), data lines may not. However newlines can be +included in data by means of the \n escape. + + +COMMAND LINE OPTIONS +-------------------- + +If the -p option is given to pcretest, it is equivalent to adding /P to each +regular expression: the POSIX wrapper API is used to call PCRE. None of the +following flags has any effect in this case. + +If the option -d is given to pcretest, it is equivalent to adding /D to each +regular expression: the internal form is output after compilation. + +If the option -i is given to pcretest, it is equivalent to adding /I to each +regular expression: information about the compiled pattern is given after +compilation. + +If the option -m is given to pcretest, it outputs the size of each compiled +pattern after it has been compiled. It is equivalent to adding /M to each +regular expression. For compatibility with earlier versions of pcretest, -s is +a synonym for -m. + +If the -t option is given, each compile, study, and match is run 20000 times +while being timed, and the resulting time per compile or match is output in +milliseconds. Do not set -t with -m, because you will then get the size output +20000 times and the timing will be distorted. If you want to change the number +of repetitions used for timing, edit the definition of LOOPREPEAT at the top of +pcretest.c + +Philip Hazel +August 2000 diff --git a/pcre/doc/perltest.txt b/pcre/doc/perltest.txt new file mode 100644 index 00000000..33155c1a --- /dev/null +++ b/pcre/doc/perltest.txt @@ -0,0 +1,29 @@ +The perltest program +-------------------- + +The perltest program tests Perl's regular expressions; it has the same +specification as pcretest, and so can be given identical input, except that +input patterns can be followed only by Perl's lower case modifiers and /+ (as +used by pcretest), which is recognized and handled by the program. + +The data lines are processed as Perl double-quoted strings, so if they contain +" \ $ or @ characters, these have to be escaped. For this reason, all such +characters in testinput1 and testinput3 are escaped so that they can be used +for perltest as well as for pcretest, and the special upper case modifiers such +as /A that pcretest recognizes are not used in these files. The output should +be identical, apart from the initial identifying banner. + +For testing UTF-8 features, an alternative form of perltest, called perltest8, +is supplied. This requires Perl 5.6 or higher. It recognizes the special +modifier /8 that pcretest uses to invoke UTF-8 functionality. The testinput5 +file can be fed to perltest8. + +The testinput2 and testinput4 files are not suitable for feeding to perltest, +since they do make use of the special upper case modifiers and escapes that +pcretest uses to test some features of PCRE. The first of these files also +contains malformed regular expressions, in order to check that PCRE diagnoses +them correctly. Similarly, testinput6 tests UTF-8 features that do not relate +to Perl. + +Philip Hazel +August 2000 diff --git a/pcre/doc/readme b/pcre/doc/readme new file mode 100644 index 00000000..d124ee01 --- /dev/null +++ b/pcre/doc/readme @@ -0,0 +1,270 @@ +README file for PCRE (Perl-compatible regular expression library) +----------------------------------------------------------------- + +The latest release of PCRE is always available from + + ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/pcre-xxx.tar.gz + +Please read the NEWS file if you are upgrading from a previous release. + +PCRE has its own native API, but a set of "wrapper" functions that are based on +the POSIX API are also supplied in the library libpcreposix. Note that this +just provides a POSIX calling interface to PCRE: the regular expressions +themselves still follow Perl syntax and semantics. The header file +for the POSIX-style functions is called pcreposix.h. The official POSIX name is +regex.h, but I didn't want to risk possible problems with existing files of +that name by distributing it that way. To use it with an existing program that +uses the POSIX API, it will have to be renamed or pointed at by a link. + + +Building PCRE on a Unix system +------------------------------ + +To build PCRE on a Unix system, run the "configure" command in the PCRE +distribution directory. This is a standard GNU "autoconf" configuration script, +for which generic instructions are supplied in INSTALL. On many systems just +running "./configure" is sufficient, but the usual methods of changing standard +defaults are available. For example, + +CFLAGS='-O2 -Wall' ./configure --prefix=/opt/local + +specifies that the C compiler should be run with the flags '-O2 -Wall' instead +of the default, and that "make install" should install PCRE under /opt/local +instead of the default /usr/local. + +If you want to make use of the experimential, incomplete support for UTF-8 +character strings in PCRE, you must add --enable-utf8 to the "configure" +command. Without it, the code for handling UTF-8 is not included in the +library. (Even when included, it still has to be enabled by an option at run +time.) + +The "configure" script builds four files: + +. Makefile is built by copying Makefile.in and making substitutions. +. config.h is built by copying config.in and making substitutions. +. pcre-config is built by copying pcre-config.in and making substitutions. +. RunTest is a script for running tests + +Once "configure" has run, you can run "make". It builds two libraries called +libpcre and libpcreposix, a test program called pcretest, and the pcregrep +command. You can use "make install" to copy these, and the public header file +pcre.h, to appropriate live directories on your system, in the normal way. + +Running "make install" also installs the command pcre-config, which can be used +to recall information about the PCRE configuration and installation. For +example, + + pcre-config --version + +prints the version number, and + + pcre-config --libs + +outputs information about where the library is installed. This command can be +included in makefiles for programs that use PCRE, saving the programmer from +having to remember too many details. + + +Shared libraries on Unix systems +-------------------------------- + +The default distribution builds PCRE as two shared libraries. This support is +new and experimental and may not work on all systems. It relies on the +"libtool" scripts - these are distributed with PCRE. It should build a +"libtool" script and use this to compile and link shared libraries, which are +placed in a subdirectory called .libs. The programs pcretest and pcregrep are +built to use these uninstalled libraries by means of wrapper scripts. When you +use "make install" to install shared libraries, pcregrep and pcretest are +automatically re-built to use the newly installed libraries. However, only +pcregrep is installed, as pcretest is really just a test program. + +To build PCRE using static libraries you must use --disable-shared when +configuring it. For example + +./configure --prefix=/usr/gnu --disable-shared + +Then run "make" in the usual way. + + +Building on non-Unix systems +---------------------------- + +For a non-Unix system, read the comments in the file NON-UNIX-USE. PCRE has +been compiled on Windows systems and on Macintoshes, but I don't know the +details because I don't use those systems. It should be straightforward to +build PCRE on any system that has a Standard C compiler, because it uses only +Standard C functions. + + +Testing PCRE +------------ + +To test PCRE on a Unix system, run the RunTest script in the pcre directory. +(This can also be run by "make runtest", "make check", or "make test".) For +other systems, see the instruction in NON-UNIX-USE. + +The script runs the pcretest test program (which is documented in +doc/pcretest.txt) on each of the testinput files (in the testdata directory) in +turn, and compares the output with the contents of the corresponding testoutput +file. A file called testtry is used to hold the output from pcretest. To run +pcretest on just one of the test files, give its number as an argument to +RunTest, for example: + + RunTest 3 + +The first and third test files can also be fed directly into the perltest +script to check that Perl gives the same results. The third file requires the +additional features of release 5.005, which is why it is kept separate from the +main test input, which needs only Perl 5.004. In the long run, when 5.005 (or +higher) is widespread, these two test files may get amalgamated. + +The second set of tests check pcre_fullinfo(), pcre_info(), pcre_study(), +pcre_copy_substring(), pcre_get_substring(), pcre_get_substring_list(), error +detection, and run-time flags that are specific to PCRE, as well as the POSIX +wrapper API. It also uses the debugging flag to check some of the internals of +pcre_compile(). + +If you build PCRE with a locale setting that is not the standard C locale, the +character tables may be different (see next paragraph). In some cases, this may +cause failures in the second set of tests. For example, in a locale where the +isprint() function yields TRUE for characters in the range 128-255, the use of +[:isascii:] inside a character class defines a different set of characters, and +this shows up in this test as a difference in the compiled code, which is being +listed for checking. Where the comparison test output contains [\x00-\x7f] the +test will contain [\x00-\xff], and similarly in some other cases. This is not a +bug in PCRE. + +The fourth set of tests checks pcre_maketables(), the facility for building a +set of character tables for a specific locale and using them instead of the +default tables. The tests make use of the "fr" (French) locale. Before running +the test, the script checks for the presence of this locale by running the +"locale" command. If that command fails, or if it doesn't include "fr" in the +list of available locales, the fourth test cannot be run, and a comment is +output to say why. If running this test produces instances of the error + + ** Failed to set locale "fr" + +in the comparison output, it means that locale is not available on your system, +despite being listed by "locale". This does not mean that PCRE is broken. + +The fifth test checks the experimental, incomplete UTF-8 support. It is not run +automatically unless PCRE is built with UTF-8 support. This file can be fed +directly to the perltest8 script, which requires Perl 5.6 or higher. The sixth +file tests internal UTF-8 features of PCRE that are not relevant to Perl. + + +Character tables +---------------- + +PCRE uses four tables for manipulating and identifying characters. The final +argument of the pcre_compile() function is a pointer to a block of memory +containing the concatenated tables. A call to pcre_maketables() can be used to +generate a set of tables in the current locale. If the final argument for +pcre_compile() is passed as NULL, a set of default tables that is built into +the binary is used. + +The source file called chartables.c contains the default set of tables. This is +not supplied in the distribution, but is built by the program dftables +(compiled from dftables.c), which uses the ANSI C character handling functions +such as isalnum(), isalpha(), isupper(), islower(), etc. to build the table +sources. This means that the default C locale which is set for your system will +control the contents of these default tables. You can change the default tables +by editing chartables.c and then re-building PCRE. If you do this, you should +probably also edit Makefile to ensure that the file doesn't ever get +re-generated. + +The first two 256-byte tables provide lower casing and case flipping functions, +respectively. The next table consists of three 32-byte bit maps which identify +digits, "word" characters, and white space, respectively. These are used when +building 32-byte bit maps that represent character classes. + +The final 256-byte table has bits indicating various character types, as +follows: + + 1 white space character + 2 letter + 4 decimal digit + 8 hexadecimal digit + 16 alphanumeric or '_' + 128 regular expression metacharacter or binary zero + +You should not alter the set of characters that contain the 128 bit, as that +will cause PCRE to malfunction. + + +Manifest +-------- + +The distribution should contain the following files: + +(A) The actual source files of the PCRE library functions and their + headers: + + dftables.c auxiliary program for building chartables.c + get.c ) + maketables.c ) + study.c ) source of + pcre.c ) the functions + pcreposix.c ) + pcre.in "source" for the header for the external API; pcre.h + is built from this by "configure" + pcreposix.h header for the external POSIX wrapper API + internal.h header for internal use + config.in template for config.h, which is built by configure + +(B) Auxiliary files: + + AUTHORS information about the author of PCRE + ChangeLog log of changes to the code + INSTALL generic installation instructions + LICENCE conditions for the use of PCRE + COPYING the same, using GNU's standard name + Makefile.in template for Unix Makefile, which is built by configure + NEWS important changes in this release + NON-UNIX-USE notes on building PCRE on non-Unix systems + README this file + RunTest.in template for a Unix shell script for running tests + config.guess ) files used by libtool, + config.sub ) used only when building a shared library + configure a configuring shell script (built by autoconf) + configure.in the autoconf input used to build configure + doc/Tech.Notes notes on the encoding + doc/pcre.3 man page source for the PCRE functions + doc/pcre.html HTML version + doc/pcre.txt plain text version + doc/pcreposix.3 man page source for the POSIX wrapper API + doc/pcreposix.html HTML version + doc/pcreposix.txt plain text version + doc/pcretest.txt documentation of test program + doc/perltest.txt documentation of Perl test program + doc/pcregrep.1 man page source for the pcregrep utility + doc/pcregrep.html HTML version + doc/pcregrep.txt plain text version + install-sh a shell script for installing files + ltconfig ) files used to build "libtool", + ltmain.sh ) used only when building a shared library + pcretest.c test program + perltest Perl test program + perltest8 Perl test program for UTF-8 tests + pcregrep.c source of a grep utility that uses PCRE + pcre-config.in source of script which retains PCRE information + testdata/testinput1 test data, compatible with Perl 5.004 and 5.005 + testdata/testinput2 test data for error messages and non-Perl things + testdata/testinput3 test data, compatible with Perl 5.005 + testdata/testinput4 test data for locale-specific tests + testdata/testinput5 test data for UTF-8 tests compatible with Perl 5.6 + testdata/testinput6 test data for other UTF-8 tests + testdata/testoutput1 test results corresponding to testinput1 + testdata/testoutput2 test results corresponding to testinput2 + testdata/testoutput3 test results corresponding to testinput3 + testdata/testoutput4 test results corresponding to testinput4 + testdata/testoutput5 test results corresponding to testinput5 + testdata/testoutput6 test results corresponding to testinput6 + +(C) Auxiliary files for Win32 DLL + + dll.mk + pcre.def + +Philip Hazel +August 2000 diff --git a/pcre/get.c b/pcre/get.c new file mode 100644 index 00000000..42e9bd49 --- /dev/null +++ b/pcre/get.c @@ -0,0 +1,227 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + +/* +This is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. See +the file Tech.Notes for some information on the internals. + +Written by: Philip Hazel + + Copyright (c) 1997-2000 University of Cambridge + +----------------------------------------------------------------------------- +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. +----------------------------------------------------------------------------- +*/ + +/* This module contains some convenience functions for extracting substrings +from the subject string after a regex match has succeeded. The original idea +for these functions came from Scott Wimer . */ + + +/* Include the internals header, which itself includes Standard C headers plus +the external pcre header. */ + +#include "internal.h" + + + +/************************************************* +* Copy captured string to given buffer * +*************************************************/ + +/* This function copies a single captured substring into a given buffer. +Note that we use memcpy() rather than strncpy() in case there are binary zeros +in the string. + +Arguments: + subject the subject string that was matched + ovector pointer to the offsets table + stringcount the number of substrings that were captured + (i.e. the yield of the pcre_exec call, unless + that was zero, in which case it should be 1/3 + of the offset table size) + stringnumber the number of the required substring + buffer where to put the substring + size the size of the buffer + +Returns: if successful: + the length of the copied string, not including the zero + that is put on the end; can be zero + if not successful: + PCRE_ERROR_NOMEMORY (-6) buffer too small + PCRE_ERROR_NOSUBSTRING (-7) no such captured substring +*/ + +int +pcre_copy_substring(const char *subject, int *ovector, int stringcount, + int stringnumber, char *buffer, int size) +{ +int yield; +if (stringnumber < 0 || stringnumber >= stringcount) + return PCRE_ERROR_NOSUBSTRING; +stringnumber *= 2; +yield = ovector[stringnumber+1] - ovector[stringnumber]; +if (size < yield + 1) return PCRE_ERROR_NOMEMORY; +memcpy(buffer, subject + ovector[stringnumber], yield); +buffer[yield] = 0; +return yield; +} + + + +/************************************************* +* Copy all captured strings to new store * +*************************************************/ + +/* This function gets one chunk of store and builds a list of pointers and all +of the captured substrings in it. A NULL pointer is put on the end of the list. + +Arguments: + subject the subject string that was matched + ovector pointer to the offsets table + stringcount the number of substrings that were captured + (i.e. the yield of the pcre_exec call, unless + that was zero, in which case it should be 1/3 + of the offset table size) + listptr set to point to the list of pointers + +Returns: if successful: 0 + if not successful: + PCRE_ERROR_NOMEMORY (-6) failed to get store +*/ + +int +pcre_get_substring_list(const char *subject, int *ovector, int stringcount, + const char ***listptr) +{ +int i; +int size = sizeof(char *); +int double_count = stringcount * 2; +char **stringlist; +char *p; + +for (i = 0; i < double_count; i += 2) + size += sizeof(char *) + ovector[i+1] - ovector[i] + 1; + +stringlist = (char **)(pcre_malloc)(size); +if (stringlist == NULL) return PCRE_ERROR_NOMEMORY; + +*listptr = (const char **)stringlist; +p = (char *)(stringlist + stringcount + 1); + +for (i = 0; i < double_count; i += 2) + { + int len = ovector[i+1] - ovector[i]; + memcpy(p, subject + ovector[i], len); + *stringlist++ = p; + p += len; + *p++ = 0; + } + +*stringlist = NULL; +return 0; +} + + + +/************************************************* +* Free store obtained by get_substring_list * +*************************************************/ + +/* This function exists for the benefit of people calling PCRE from non-C +programs that can call its functions, but not free() or (pcre_free)() directly. + +Argument: the result of a previous pcre_get_substring_list() +Returns: nothing +*/ + +void +pcre_free_substring_list(const char **pointer) +{ +(pcre_free)((void *)pointer); +} + + + +/************************************************* +* Copy captured string to new store * +*************************************************/ + +/* This function copies a single captured substring into a piece of new +store + +Arguments: + subject the subject string that was matched + ovector pointer to the offsets table + stringcount the number of substrings that were captured + (i.e. the yield of the pcre_exec call, unless + that was zero, in which case it should be 1/3 + of the offset table size) + stringnumber the number of the required substring + stringptr where to put a pointer to the substring + +Returns: if successful: + the length of the string, not including the zero that + is put on the end; can be zero + if not successful: + PCRE_ERROR_NOMEMORY (-6) failed to get store + PCRE_ERROR_NOSUBSTRING (-7) substring not present +*/ + +int +pcre_get_substring(const char *subject, int *ovector, int stringcount, + int stringnumber, const char **stringptr) +{ +int yield; +char *substring; +if (stringnumber < 0 || stringnumber >= stringcount) + return PCRE_ERROR_NOSUBSTRING; +stringnumber *= 2; +yield = ovector[stringnumber+1] - ovector[stringnumber]; +substring = (char *)(pcre_malloc)(yield + 1); +if (substring == NULL) return PCRE_ERROR_NOMEMORY; +memcpy(substring, subject + ovector[stringnumber], yield); +substring[yield] = 0; +*stringptr = substring; +return yield; +} + + + +/************************************************* +* Free store obtained by get_substring * +*************************************************/ + +/* This function exists for the benefit of people calling PCRE from non-C +programs that can call its functions, but not free() or (pcre_free)() directly. + +Argument: the result of a previous pcre_get_substring() +Returns: nothing +*/ + +void +pcre_free_substring(const char *pointer) +{ +(pcre_free)((void *)pointer); +} + +/* End of get.c */ diff --git a/pcre/install b/pcre/install new file mode 100644 index 00000000..08802812 --- /dev/null +++ b/pcre/install @@ -0,0 +1,185 @@ +Basic Installation +================== + + These are generic installation instructions that apply to systems that +can run the `configure' shell script - Unix systems and any that imitate +it. They are not specific to PCRE. There are PCRE-specific instructions +for non-Unix systems in the file NON-UNIX-USE. + + The `configure' shell script attempts to guess correct values for +various system-dependent variables used during compilation. It uses +those values to create a `Makefile' in each directory of the package. +It may also create one or more `.h' files containing system-dependent +definitions. Finally, it creates a shell script `config.status' that +you can run in the future to recreate the current configuration, a file +`config.cache' that saves the results of its tests to speed up +reconfiguring, and a file `config.log' containing compiler output +(useful mainly for debugging `configure'). + + If you need to do unusual things to compile the package, please try +to figure out how `configure' could check whether to do them, and mail +diffs or instructions to the address given in the `README' so they can +be considered for the next release. If at some point `config.cache' +contains results you don't want to keep, you may remove or edit it. + + The file `configure.in' is used to create `configure' by a program +called `autoconf'. You only need `configure.in' if you want to change +it or regenerate `configure' using a newer version of `autoconf'. + +The simplest way to compile this package is: + + 1. `cd' to the directory containing the package's source code and type + `./configure' to configure the package for your system. If you're + using `csh' on an old version of System V, you might need to type + `sh ./configure' instead to prevent `csh' from trying to execute + `configure' itself. + + Running `configure' takes awhile. While running, it prints some + messages telling which features it is checking for. + + 2. Type `make' to compile the package. + + 3. Optionally, type `make check' to run any self-tests that come with + the package. + + 4. Type `make install' to install the programs and any data files and + documentation. + + 5. You can remove the program binaries and object files from the + source code directory by typing `make clean'. To also remove the + files that `configure' created (so you can compile the package for + a different kind of computer), type `make distclean'. There is + also a `make maintainer-clean' target, but that is intended mainly + for the package's developers. If you use it, you may have to get + all sorts of other programs in order to regenerate files that came + with the distribution. + +Compilers and Options +===================== + + Some systems require unusual options for compilation or linking that +the `configure' script does not know about. You can give `configure' +initial values for variables by setting them in the environment. Using +a Bourne-compatible shell, you can do that on the command line like +this: + CC=c89 CFLAGS=-O2 LIBS=-lposix ./configure + +Or on systems that have the `env' program, you can do it like this: + env CPPFLAGS=-I/usr/local/include LDFLAGS=-s ./configure + +Compiling For Multiple Architectures +==================================== + + You can compile the package for more than one kind of computer at the +same time, by placing the object files for each architecture in their +own directory. To do this, you must use a version of `make' that +supports the `VPATH' variable, such as GNU `make'. `cd' to the +directory where you want the object files and executables to go and run +the `configure' script. `configure' automatically checks for the +source code in the directory that `configure' is in and in `..'. + + If you have to use a `make' that does not supports the `VPATH' +variable, you have to compile the package for one architecture at a time +in the source code directory. After you have installed the package for +one architecture, use `make distclean' before reconfiguring for another +architecture. + +Installation Names +================== + + By default, `make install' will install the package's files in +`/usr/local/bin', `/usr/local/man', etc. You can specify an +installation prefix other than `/usr/local' by giving `configure' the +option `--prefix=PATH'. + + You can specify separate installation prefixes for +architecture-specific files and architecture-independent files. If you +give `configure' the option `--exec-prefix=PATH', the package will use +PATH as the prefix for installing programs and libraries. +Documentation and other data files will still use the regular prefix. + + In addition, if you use an unusual directory layout you can give +options like `--bindir=PATH' to specify different values for particular +kinds of files. Run `configure --help' for a list of the directories +you can set and what kinds of files go in them. + + If the package supports it, you can cause programs to be installed +with an extra prefix or suffix on their names by giving `configure' the +option `--program-prefix=PREFIX' or `--program-suffix=SUFFIX'. + +Optional Features +================= + + Some packages pay attention to `--enable-FEATURE' options to +`configure', where FEATURE indicates an optional part of the package. +They may also pay attention to `--with-PACKAGE' options, where PACKAGE +is something like `gnu-as' or `x' (for the X Window System). The +`README' should mention any `--enable-' and `--with-' options that the +package recognizes. + + For packages that use the X Window System, `configure' can usually +find the X include and library files automatically, but if it doesn't, +you can use the `configure' options `--x-includes=DIR' and +`--x-libraries=DIR' to specify their locations. + +Specifying the System Type +========================== + + There may be some features `configure' can not figure out +automatically, but needs to determine by the type of host the package +will run on. Usually `configure' can figure that out, but if it prints +a message saying it can not guess the host type, give it the +`--host=TYPE' option. TYPE can either be a short name for the system +type, such as `sun4', or a canonical name with three fields: + CPU-COMPANY-SYSTEM + +See the file `config.sub' for the possible values of each field. If +`config.sub' isn't included in this package, then this package doesn't +need to know the host type. + + If you are building compiler tools for cross-compiling, you can also +use the `--target=TYPE' option to select the type of system they will +produce code for and the `--build=TYPE' option to select the type of +system on which you are compiling the package. + +Sharing Defaults +================ + + If you want to set default values for `configure' scripts to share, +you can create a site shell script called `config.site' that gives +default values for variables like `CC', `cache_file', and `prefix'. +`configure' looks for `PREFIX/share/config.site' if it exists, then +`PREFIX/etc/config.site' if it exists. Or, you can set the +`CONFIG_SITE' environment variable to the location of the site script. +A warning: not all `configure' scripts look for a site script. + +Operation Controls +================== + + `configure' recognizes the following options to control how it +operates. + +`--cache-file=FILE' + Use and save the results of the tests in FILE instead of + `./config.cache'. Set FILE to `/dev/null' to disable caching, for + debugging `configure'. + +`--help' + Print a summary of the options to `configure', and exit. + +`--quiet' +`--silent' +`-q' + Do not print messages saying which checks are being made. To + suppress all normal output, redirect it to `/dev/null' (any error + messages will still be shown). + +`--srcdir=DIR' + Look for the package's source code in directory DIR. Usually + `configure' can determine that directory automatically. + +`--version' + Print the version of Autoconf used to generate the `configure' + script, and exit. + +`configure' also accepts some other, not widely useful, options. diff --git a/pcre/install-sh b/pcre/install-sh new file mode 100644 index 00000000..e9de2384 --- /dev/null +++ b/pcre/install-sh @@ -0,0 +1,251 @@ +#!/bin/sh +# +# install - install a program, script, or datafile +# This comes from X11R5 (mit/util/scripts/install.sh). +# +# Copyright 1991 by the Massachusetts Institute of Technology +# +# Permission to use, copy, modify, distribute, and sell this software and its +# documentation for any purpose is hereby granted without fee, provided that +# the above copyright notice appear in all copies and that both that +# copyright notice and this permission notice appear in supporting +# documentation, and that the name of M.I.T. not be used in advertising or +# publicity pertaining to distribution of the software without specific, +# written prior permission. M.I.T. makes no representations about the +# suitability of this software for any purpose. It is provided "as is" +# without express or implied warranty. +# +# Calling this script install-sh is preferred over install.sh, to prevent +# `make' implicit rules from creating a file called install from it +# when there is no Makefile. +# +# This script is compatible with the BSD install script, but was written +# from scratch. It can only install one file at a time, a restriction +# shared with many OS's install programs. + + +# set DOITPROG to echo to test this script + +# Don't use :- since 4.3BSD and earlier shells don't like it. +doit="${DOITPROG-}" + + +# put in absolute paths if you don't have them in your path; or use env. vars. + +mvprog="${MVPROG-mv}" +cpprog="${CPPROG-cp}" +chmodprog="${CHMODPROG-chmod}" +chownprog="${CHOWNPROG-chown}" +chgrpprog="${CHGRPPROG-chgrp}" +stripprog="${STRIPPROG-strip}" +rmprog="${RMPROG-rm}" +mkdirprog="${MKDIRPROG-mkdir}" + +transformbasename="" +transform_arg="" +instcmd="$mvprog" +chmodcmd="$chmodprog 0755" +chowncmd="" +chgrpcmd="" +stripcmd="" +rmcmd="$rmprog -f" +mvcmd="$mvprog" +src="" +dst="" +dir_arg="" + +while [ x"$1" != x ]; do + case $1 in + -c) instcmd="$cpprog" + shift + continue;; + + -d) dir_arg=true + shift + continue;; + + -m) chmodcmd="$chmodprog $2" + shift + shift + continue;; + + -o) chowncmd="$chownprog $2" + shift + shift + continue;; + + -g) chgrpcmd="$chgrpprog $2" + shift + shift + continue;; + + -s) stripcmd="$stripprog" + shift + continue;; + + -t=*) transformarg=`echo $1 | sed 's/-t=//'` + shift + continue;; + + -b=*) transformbasename=`echo $1 | sed 's/-b=//'` + shift + continue;; + + *) if [ x"$src" = x ] + then + src=$1 + else + # this colon is to work around a 386BSD /bin/sh bug + : + dst=$1 + fi + shift + continue;; + esac +done + +if [ x"$src" = x ] +then + echo "install: no input file specified" + exit 1 +else + true +fi + +if [ x"$dir_arg" != x ]; then + dst=$src + src="" + + if [ -d $dst ]; then + instcmd=: + chmodcmd="" + else + instcmd=mkdir + fi +else + +# Waiting for this to be detected by the "$instcmd $src $dsttmp" command +# might cause directories to be created, which would be especially bad +# if $src (and thus $dsttmp) contains '*'. + + if [ -f $src -o -d $src ] + then + true + else + echo "install: $src does not exist" + exit 1 + fi + + if [ x"$dst" = x ] + then + echo "install: no destination specified" + exit 1 + else + true + fi + +# If destination is a directory, append the input filename; if your system +# does not like double slashes in filenames, you may need to add some logic + + if [ -d $dst ] + then + dst="$dst"/`basename $src` + else + true + fi +fi + +## this sed command emulates the dirname command +dstdir=`echo $dst | sed -e 's,[^/]*$,,;s,/$,,;s,^$,.,'` + +# Make sure that the destination directory exists. +# this part is taken from Noah Friedman's mkinstalldirs script + +# Skip lots of stat calls in the usual case. +if [ ! -d "$dstdir" ]; then +defaultIFS=' +' +IFS="${IFS-${defaultIFS}}" + +oIFS="${IFS}" +# Some sh's can't handle IFS=/ for some reason. +IFS='%' +set - `echo ${dstdir} | sed -e 's@/@%@g' -e 's@^%@/@'` +IFS="${oIFS}" + +pathcomp='' + +while [ $# -ne 0 ] ; do + pathcomp="${pathcomp}${1}" + shift + + if [ ! -d "${pathcomp}" ] ; + then + $mkdirprog "${pathcomp}" + else + true + fi + + pathcomp="${pathcomp}/" +done +fi + +if [ x"$dir_arg" != x ] +then + $doit $instcmd $dst && + + if [ x"$chowncmd" != x ]; then $doit $chowncmd $dst; else true ; fi && + if [ x"$chgrpcmd" != x ]; then $doit $chgrpcmd $dst; else true ; fi && + if [ x"$stripcmd" != x ]; then $doit $stripcmd $dst; else true ; fi && + if [ x"$chmodcmd" != x ]; then $doit $chmodcmd $dst; else true ; fi +else + +# If we're going to rename the final executable, determine the name now. + + if [ x"$transformarg" = x ] + then + dstfile=`basename $dst` + else + dstfile=`basename $dst $transformbasename | + sed $transformarg`$transformbasename + fi + +# don't allow the sed command to completely eliminate the filename + + if [ x"$dstfile" = x ] + then + dstfile=`basename $dst` + else + true + fi + +# Make a temp file name in the proper directory. + + dsttmp=$dstdir/#inst.$$# + +# Move or copy the file name to the temp name + + $doit $instcmd $src $dsttmp && + + trap "rm -f ${dsttmp}" 0 && + +# and set any options; do chmod last to preserve setuid bits + +# If any of these fail, we abort the whole thing. If we want to +# ignore errors from any of these, just make sure not to ignore +# errors from the above "$doit $instcmd $src $dsttmp" command. + + if [ x"$chowncmd" != x ]; then $doit $chowncmd $dsttmp; else true;fi && + if [ x"$chgrpcmd" != x ]; then $doit $chgrpcmd $dsttmp; else true;fi && + if [ x"$stripcmd" != x ]; then $doit $stripcmd $dsttmp; else true;fi && + if [ x"$chmodcmd" != x ]; then $doit $chmodcmd $dsttmp; else true;fi && + +# Now rename the file to the real destination. + + $doit $rmcmd -f $dstdir/$dstfile && + $doit $mvcmd $dsttmp $dstdir/$dstfile + +fi && + + +exit 0 diff --git a/pcre/internal.h b/pcre/internal.h new file mode 100644 index 00000000..25bb7f8f --- /dev/null +++ b/pcre/internal.h @@ -0,0 +1,381 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + + +/* This is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. See +the file Tech.Notes for some information on the internals. + +Written by: Philip Hazel + + Copyright (c) 1997-2000 University of Cambridge + +----------------------------------------------------------------------------- +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. +----------------------------------------------------------------------------- +*/ + +/* This header contains definitions that are shared between the different +modules, but which are not relevant to the outside. */ + +/* Get the definitions provided by running "configure" */ + +#include "config.h" + +/* To cope with SunOS4 and other systems that lack memmove() but have bcopy(), +define a macro for memmove() if HAVE_MEMMOVE is false, provided that HAVE_BCOPY +is set. Otherwise, include an emulating function for those systems that have +neither (there some non-Unix environments where this is the case). This assumes +that all calls to memmove are moving strings upwards in store, which is the +case in PCRE. */ + +#if ! HAVE_MEMMOVE +#undef memmove /* some systems may have a macro */ +#if HAVE_BCOPY +#define memmove(a, b, c) bcopy(b, a, c) +#else +void * +pcre_memmove(unsigned char *dest, const unsigned char *src, size_t n) +{ +int i; +dest += n; +src += n; +for (i = 0; i < n; ++i) *(--dest) = *(--src); +} +#define memmove(a, b, c) pcre_memmove(a, b, c) +#endif +#endif + +/* Standard C headers plus the external interface definition */ + +#include +#include +#include +#include +#include +#include +#include "pcre.h" + +/* In case there is no definition of offsetof() provided - though any proper +Standard C system should have one. */ + +#ifndef offsetof +#define offsetof(p_type,field) ((size_t)&(((p_type *)0)->field)) +#endif + +/* These are the public options that can change during matching. */ + +#define PCRE_IMS (PCRE_CASELESS|PCRE_MULTILINE|PCRE_DOTALL) + +/* Private options flags start at the most significant end of the four bytes, +but skip the top bit so we can use ints for convenience without getting tangled +with negative values. The public options defined in pcre.h start at the least +significant end. Make sure they don't overlap, though now that we have expanded +to four bytes there is plenty of space. */ + +#define PCRE_FIRSTSET 0x40000000 /* first_char is set */ +#define PCRE_REQCHSET 0x20000000 /* req_char is set */ +#define PCRE_STARTLINE 0x10000000 /* start after \n for multiline */ +#define PCRE_INGROUP 0x08000000 /* compiling inside a group */ +#define PCRE_ICHANGED 0x04000000 /* i option changes within regex */ + +/* Options for the "extra" block produced by pcre_study(). */ + +#define PCRE_STUDY_MAPPED 0x01 /* a map of starting chars exists */ + +/* Masks for identifying the public options which are permitted at compile +time, run time or study time, respectively. */ + +#define PUBLIC_OPTIONS \ + (PCRE_CASELESS|PCRE_EXTENDED|PCRE_ANCHORED|PCRE_MULTILINE| \ + PCRE_DOTALL|PCRE_DOLLAR_ENDONLY|PCRE_EXTRA|PCRE_UNGREEDY|PCRE_UTF8) + +#define PUBLIC_EXEC_OPTIONS \ + (PCRE_ANCHORED|PCRE_NOTBOL|PCRE_NOTEOL|PCRE_NOTEMPTY) + +#define PUBLIC_STUDY_OPTIONS 0 /* None defined */ + +/* Magic number to provide a small check against being handed junk. */ + +#define MAGIC_NUMBER 0x50435245UL /* 'PCRE' */ + +/* Miscellaneous definitions */ + +typedef int BOOL; + +#define FALSE 0 +#define TRUE 1 + +/* These are escaped items that aren't just an encoding of a particular data +value such as \n. They must have non-zero values, as check_escape() returns +their negation. Also, they must appear in the same order as in the opcode +definitions below, up to ESC_z. The final one must be ESC_REF as subsequent +values are used for \1, \2, \3, etc. There is a test in the code for an escape +greater than ESC_b and less than ESC_X to detect the types that may be +repeated. If any new escapes are put in-between that don't consume a character, +that code will have to change. */ + +enum { ESC_A = 1, ESC_B, ESC_b, ESC_D, ESC_d, ESC_S, ESC_s, ESC_W, ESC_w, + ESC_Z, ESC_z, ESC_REF }; + +/* Opcode table: OP_BRA must be last, as all values >= it are used for brackets +that extract substrings. Starting from 1 (i.e. after OP_END), the values up to +OP_EOD must correspond in order to the list of escapes immediately above. */ + +enum { + OP_END, /* End of pattern */ + + /* Values corresponding to backslashed metacharacters */ + + OP_SOD, /* Start of data: \A */ + OP_NOT_WORD_BOUNDARY, /* \B */ + OP_WORD_BOUNDARY, /* \b */ + OP_NOT_DIGIT, /* \D */ + OP_DIGIT, /* \d */ + OP_NOT_WHITESPACE, /* \S */ + OP_WHITESPACE, /* \s */ + OP_NOT_WORDCHAR, /* \W */ + OP_WORDCHAR, /* \w */ + OP_EODN, /* End of data or \n at end of data: \Z. */ + OP_EOD, /* End of data: \z */ + + OP_OPT, /* Set runtime options */ + OP_CIRC, /* Start of line - varies with multiline switch */ + OP_DOLL, /* End of line - varies with multiline switch */ + OP_ANY, /* Match any character */ + OP_CHARS, /* Match string of characters */ + OP_NOT, /* Match anything but the following char */ + + OP_STAR, /* The maximizing and minimizing versions of */ + OP_MINSTAR, /* all these opcodes must come in pairs, with */ + OP_PLUS, /* the minimizing one second. */ + OP_MINPLUS, /* This first set applies to single characters */ + OP_QUERY, + OP_MINQUERY, + OP_UPTO, /* From 0 to n matches */ + OP_MINUPTO, + OP_EXACT, /* Exactly n matches */ + + OP_NOTSTAR, /* The maximizing and minimizing versions of */ + OP_NOTMINSTAR, /* all these opcodes must come in pairs, with */ + OP_NOTPLUS, /* the minimizing one second. */ + OP_NOTMINPLUS, /* This first set applies to "not" single characters */ + OP_NOTQUERY, + OP_NOTMINQUERY, + OP_NOTUPTO, /* From 0 to n matches */ + OP_NOTMINUPTO, + OP_NOTEXACT, /* Exactly n matches */ + + OP_TYPESTAR, /* The maximizing and minimizing versions of */ + OP_TYPEMINSTAR, /* all these opcodes must come in pairs, with */ + OP_TYPEPLUS, /* the minimizing one second. These codes must */ + OP_TYPEMINPLUS, /* be in exactly the same order as those above. */ + OP_TYPEQUERY, /* This set applies to character types such as \d */ + OP_TYPEMINQUERY, + OP_TYPEUPTO, /* From 0 to n matches */ + OP_TYPEMINUPTO, + OP_TYPEEXACT, /* Exactly n matches */ + + OP_CRSTAR, /* The maximizing and minimizing versions of */ + OP_CRMINSTAR, /* all these opcodes must come in pairs, with */ + OP_CRPLUS, /* the minimizing one second. These codes must */ + OP_CRMINPLUS, /* be in exactly the same order as those above. */ + OP_CRQUERY, /* These are for character classes and back refs */ + OP_CRMINQUERY, + OP_CRRANGE, /* These are different to the three seta above. */ + OP_CRMINRANGE, + + OP_CLASS, /* Match a character class */ + OP_REF, /* Match a back reference */ + OP_RECURSE, /* Match this pattern recursively */ + + OP_ALT, /* Start of alternation */ + OP_KET, /* End of group that doesn't have an unbounded repeat */ + OP_KETRMAX, /* These two must remain together and in this */ + OP_KETRMIN, /* order. They are for groups the repeat for ever. */ + + /* The assertions must come before ONCE and COND */ + + OP_ASSERT, /* Positive lookahead */ + OP_ASSERT_NOT, /* Negative lookahead */ + OP_ASSERTBACK, /* Positive lookbehind */ + OP_ASSERTBACK_NOT, /* Negative lookbehind */ + OP_REVERSE, /* Move pointer back - used in lookbehind assertions */ + + /* ONCE and COND must come after the assertions, with ONCE first, as there's + a test for >= ONCE for a subpattern that isn't an assertion. */ + + OP_ONCE, /* Once matched, don't back up into the subpattern */ + OP_COND, /* Conditional group */ + OP_CREF, /* Used to hold an extraction string number */ + + OP_BRAZERO, /* These two must remain together and in this */ + OP_BRAMINZERO, /* order. */ + + OP_BRA /* This and greater values are used for brackets that + extract substrings. */ +}; + +/* The highest extraction number. This is limited by the number of opcodes +left after OP_BRA, i.e. 255 - OP_BRA. We actually set it somewhat lower. */ + +#define EXTRACT_MAX 99 + +/* The texts of compile-time error messages are defined as macros here so that +they can be accessed by the POSIX wrapper and converted into error codes. Yes, +I could have used error codes in the first place, but didn't feel like changing +just to accommodate the POSIX wrapper. */ + +#define ERR1 "\\ at end of pattern" +#define ERR2 "\\c at end of pattern" +#define ERR3 "unrecognized character follows \\" +#define ERR4 "numbers out of order in {} quantifier" +#define ERR5 "number too big in {} quantifier" +#define ERR6 "missing terminating ] for character class" +#define ERR7 "invalid escape sequence in character class" +#define ERR8 "range out of order in character class" +#define ERR9 "nothing to repeat" +#define ERR10 "operand of unlimited repeat could match the empty string" +#define ERR11 "internal error: unexpected repeat" +#define ERR12 "unrecognized character after (?" +#define ERR13 "too many capturing parenthesized sub-patterns" +#define ERR14 "missing )" +#define ERR15 "back reference to non-existent subpattern" +#define ERR16 "erroffset passed as NULL" +#define ERR17 "unknown option bit(s) set" +#define ERR18 "missing ) after comment" +#define ERR19 "too many sets of parentheses" +#define ERR20 "regular expression too large" +#define ERR21 "failed to get memory" +#define ERR22 "unmatched parentheses" +#define ERR23 "internal error: code overflow" +#define ERR24 "unrecognized character after (?<" +#define ERR25 "lookbehind assertion is not fixed length" +#define ERR26 "malformed number after (?(" +#define ERR27 "conditional group contains more than two branches" +#define ERR28 "assertion expected after (?(" +#define ERR29 "(?p must be followed by )" +#define ERR30 "unknown POSIX class name" +#define ERR31 "POSIX collating elements are not supported" +#define ERR32 "this version of PCRE is not compiled with PCRE_UTF8 support" +#define ERR33 "characters with values > 255 are not yet supported in classes" +#define ERR34 "character value in \\x{...} sequence is too large" +#define ERR35 "invalid condition (?(0)" + +/* All character handling must be done as unsigned characters. Otherwise there +are problems with top-bit-set characters and functions such as isspace(). +However, we leave the interface to the outside world as char *, because that +should make things easier for callers. We define a short type for unsigned char +to save lots of typing. I tried "uchar", but it causes problems on Digital +Unix, where it is defined in sys/types, so use "uschar" instead. */ + +typedef unsigned char uschar; + +/* The real format of the start of the pcre block; the actual code vector +runs on as long as necessary after the end. */ + +typedef struct real_pcre { + unsigned long int magic_number; + size_t size; + const unsigned char *tables; + unsigned long int options; + uschar top_bracket; + uschar top_backref; + uschar first_char; + uschar req_char; + uschar code[1]; +} real_pcre; + +/* The real format of the extra block returned by pcre_study(). */ + +typedef struct real_pcre_extra { + uschar options; + uschar start_bits[32]; +} real_pcre_extra; + + +/* Structure for passing "static" information around between the functions +doing the compiling, so that they are thread-safe. */ + +typedef struct compile_data { + const uschar *lcc; /* Points to lower casing table */ + const uschar *fcc; /* Points to case-flipping table */ + const uschar *cbits; /* Points to character type table */ + const uschar *ctypes; /* Points to table of type maps */ +} compile_data; + +/* Structure for passing "static" information around between the functions +doing the matching, so that they are thread-safe. */ + +typedef struct match_data { + int errorcode; /* As it says */ + int *offset_vector; /* Offset vector */ + int offset_end; /* One past the end */ + int offset_max; /* The maximum usable for return data */ + const uschar *lcc; /* Points to lower casing table */ + const uschar *ctypes; /* Points to table of type maps */ + BOOL offset_overflow; /* Set if too many extractions */ + BOOL notbol; /* NOTBOL flag */ + BOOL noteol; /* NOTEOL flag */ + BOOL utf8; /* UTF8 flag */ + BOOL endonly; /* Dollar not before final \n */ + BOOL notempty; /* Empty string match not wanted */ + const uschar *start_pattern; /* For use when recursing */ + const uschar *start_subject; /* Start of the subject string */ + const uschar *end_subject; /* End of the subject string */ + const uschar *start_match; /* Start of this match attempt */ + const uschar *end_match_ptr; /* Subject position at end match */ + int end_offset_top; /* Highwater mark at end of match */ +} match_data; + +/* Bit definitions for entries in the pcre_ctypes table. */ + +#define ctype_space 0x01 +#define ctype_letter 0x02 +#define ctype_digit 0x04 +#define ctype_xdigit 0x08 +#define ctype_word 0x10 /* alphameric or '_' */ +#define ctype_meta 0x80 /* regexp meta char or zero (end pattern) */ + +/* Offsets for the bitmap tables in pcre_cbits. Each table contains a set +of bits for a class map. Some classes are built by combining these tables. */ + +#define cbit_space 0 /* [:space:] or \s */ +#define cbit_xdigit 32 /* [:xdigit:] */ +#define cbit_digit 64 /* [:digit:] or \d */ +#define cbit_upper 96 /* [:upper:] */ +#define cbit_lower 128 /* [:lower:] */ +#define cbit_word 160 /* [:word:] or \w */ +#define cbit_graph 192 /* [:graph:] */ +#define cbit_print 224 /* [:print:] */ +#define cbit_punct 256 /* [:punct:] */ +#define cbit_cntrl 288 /* [:cntrl:] */ +#define cbit_length 320 /* Length of the cbits table */ + +/* Offsets of the various tables from the base tables pointer, and +total length. */ + +#define lcc_offset 0 +#define fcc_offset 256 +#define cbits_offset 512 +#define ctypes_offset (cbits_offset + cbit_length) +#define tables_length (ctypes_offset + 256) + +/* End of internal.h */ diff --git a/pcre/licence b/pcre/licence new file mode 100644 index 00000000..34d20db9 --- /dev/null +++ b/pcre/licence @@ -0,0 +1,46 @@ +PCRE LICENCE +------------ + +PCRE is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. + +Written by: Philip Hazel + +University of Cambridge Computing Service, +Cambridge, England. Phone: +44 1223 334714. + +Copyright (c) 1997-2000 University of Cambridge + +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. In practice, this means that if you use + PCRE in software which you distribute to others, commercially or + otherwise, you must put a sentence like this + + Regular expression support is provided by the PCRE library package, + which is open source software, written by Philip Hazel, and copyright + by the University of Cambridge, England. + + somewhere reasonably visible in your documentation and in any relevant + files or online help data or similar. A reference to the ftp site for + the source, that is, to + + ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/ + + should also be given in the documentation. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. + +End diff --git a/pcre/ltconfig b/pcre/ltconfig new file mode 100644 index 00000000..a01334f9 --- /dev/null +++ b/pcre/ltconfig @@ -0,0 +1,3078 @@ +#! /bin/sh + +# ltconfig - Create a system-specific libtool. +# Copyright (C) 1996-1999 Free Software Foundation, Inc. +# Originally by Gordon Matzigkeit , 1996 +# +# This file is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# A lot of this script is taken from autoconf-2.10. + +# Check that we are running under the correct shell. +SHELL=${CONFIG_SHELL-/bin/sh} +echo=echo +if test "X$1" = X--no-reexec; then + # Discard the --no-reexec flag, and continue. + shift +elif test "X$1" = X--fallback-echo; then + # Avoid inline document here, it may be left over + : +elif test "X`($echo '\t') 2>/dev/null`" = 'X\t'; then + # Yippee, $echo works! + : +else + # Restart under the correct shell. + exec "$SHELL" "$0" --no-reexec ${1+"$@"} +fi + +if test "X$1" = X--fallback-echo; then + # used as fallback echo + shift + cat </dev/null`} + case X$UNAME in + *-DOS) PATH_SEPARATOR=';' ;; + *) PATH_SEPARATOR=':' ;; + esac +fi + +# The HP-UX ksh and POSIX shell print the target directory to stdout +# if CDPATH is set. +if test "X${CDPATH+set}" = Xset; then CDPATH=:; export CDPATH; fi + +if test "X${echo_test_string+set}" != Xset; then + # find a string as large as possible, as long as the shell can cope with it + for cmd in 'sed 50q "$0"' 'sed 20q "$0"' 'sed 10q "$0"' 'sed 2q "$0"' 'echo test'; do + # expected sizes: less than 2Kb, 1Kb, 512 bytes, 16 bytes, ... + if (echo_test_string="`eval $cmd`") 2>/dev/null && + echo_test_string="`eval $cmd`" && + (test "X$echo_test_string" = "X$echo_test_string") 2>/dev/null; then + break + fi + done +fi + +if test "X`($echo '\t') 2>/dev/null`" != 'X\t' || + test "X`($echo "$echo_test_string") 2>/dev/null`" != X"$echo_test_string"; then + # The Solaris, AIX, and Digital Unix default echo programs unquote + # backslashes. This makes it impossible to quote backslashes using + # echo "$something" | sed 's/\\/\\\\/g' + # + # So, first we look for a working echo in the user's PATH. + + IFS="${IFS= }"; save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + for dir in $PATH /usr/ucb; do + if (test -f $dir/echo || test -f $dir/echo$ac_exeext) && + test "X`($dir/echo '\t') 2>/dev/null`" = 'X\t' && + test "X`($dir/echo "$echo_test_string") 2>/dev/null`" = X"$echo_test_string"; then + echo="$dir/echo" + break + fi + done + IFS="$save_ifs" + + if test "X$echo" = Xecho; then + # We didn't find a better echo, so look for alternatives. + if test "X`(print -r '\t') 2>/dev/null`" = 'X\t' && + test "X`(print -r "$echo_test_string") 2>/dev/null`" = X"$echo_test_string"; then + # This shell has a builtin print -r that does the trick. + echo='print -r' + elif (test -f /bin/ksh || test -f /bin/ksh$ac_exeext) && + test "X$CONFIG_SHELL" != X/bin/ksh; then + # If we have ksh, try running ltconfig again with it. + ORIGINAL_CONFIG_SHELL="${CONFIG_SHELL-/bin/sh}" + export ORIGINAL_CONFIG_SHELL + CONFIG_SHELL=/bin/ksh + export CONFIG_SHELL + exec "$CONFIG_SHELL" "$0" --no-reexec ${1+"$@"} + else + # Try using printf. + echo='printf "%s\n"' + if test "X`($echo '\t') 2>/dev/null`" = 'X\t' && + test "X`($echo "$echo_test_string") 2>/dev/null`" = X"$echo_test_string"; then + # Cool, printf works + : + elif test "X`("$ORIGINAL_CONFIG_SHELL" "$0" --fallback-echo '\t') 2>/dev/null`" = 'X\t' && + test "X`("$ORIGINAL_CONFIG_SHELL" "$0" --fallback-echo "$echo_test_string") 2>/dev/null`" = X"$echo_test_string"; then + CONFIG_SHELL="$ORIGINAL_CONFIG_SHELL" + export CONFIG_SHELL + SHELL="$CONFIG_SHELL" + export SHELL + echo="$CONFIG_SHELL $0 --fallback-echo" + elif test "X`("$CONFIG_SHELL" "$0" --fallback-echo '\t') 2>/dev/null`" = 'X\t' && + test "X`("$CONFIG_SHELL" "$0" --fallback-echo "$echo_test_string") 2>/dev/null`" = X"$echo_test_string"; then + echo="$CONFIG_SHELL $0 --fallback-echo" + else + # maybe with a smaller string... + prev=: + + for cmd in 'echo test' 'sed 2q "$0"' 'sed 10q "$0"' 'sed 20q "$0"' 'sed 50q "$0"'; do + if (test "X$echo_test_string" = "X`eval $cmd`") 2>/dev/null; then + break + fi + prev="$cmd" + done + + if test "$prev" != 'sed 50q "$0"'; then + echo_test_string=`eval $prev` + export echo_test_string + exec "${ORIGINAL_CONFIG_SHELL}" "$0" ${1+"$@"} + else + # Oops. We lost completely, so just stick with echo. + echo=echo + fi + fi + fi + fi +fi + +# Sed substitution that helps us do robust quoting. It backslashifies +# metacharacters that are still active within double-quoted strings. +Xsed='sed -e s/^X//' +sed_quote_subst='s/\([\\"\\`$\\\\]\)/\\\1/g' + +# Same as above, but do not quote variable references. +double_quote_subst='s/\([\\"\\`\\\\]\)/\\\1/g' + +# Sed substitution to delay expansion of an escaped shell variable in a +# double_quote_subst'ed string. +delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' + +# The name of this program. +progname=`$echo "X$0" | $Xsed -e 's%^.*/%%'` + +# Constants: +PROGRAM=ltconfig +PACKAGE=libtool +VERSION=1.3.4 +TIMESTAMP=" (1.385.2.196 1999/12/07 21:47:57)" +ac_compile='${CC-cc} -c $CFLAGS $CPPFLAGS conftest.$ac_ext 1>&5' +ac_link='${CC-cc} -o conftest $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS 1>&5' +rm="rm -f" + +help="Try \`$progname --help' for more information." + +# Global variables: +default_ofile=libtool +can_build_shared=yes +enable_shared=yes +# All known linkers require a `.a' archive for static linking (except M$VC, +# which needs '.lib'). +enable_static=yes +enable_fast_install=yes +enable_dlopen=unknown +enable_win32_dll=no +ltmain= +silent= +srcdir= +ac_config_guess= +ac_config_sub= +host= +nonopt= +ofile="$default_ofile" +verify_host=yes +with_gcc=no +with_gnu_ld=no +need_locks=yes +ac_ext=c +objext=o +libext=a +exeext= +cache_file= + +old_AR="$AR" +old_CC="$CC" +old_CFLAGS="$CFLAGS" +old_CPPFLAGS="$CPPFLAGS" +old_LDFLAGS="$LDFLAGS" +old_LD="$LD" +old_LN_S="$LN_S" +old_LIBS="$LIBS" +old_NM="$NM" +old_RANLIB="$RANLIB" +old_DLLTOOL="$DLLTOOL" +old_OBJDUMP="$OBJDUMP" +old_AS="$AS" + +# Parse the command line options. +args= +prev= +for option +do + case "$option" in + -*=*) optarg=`echo "$option" | sed 's/[-_a-zA-Z0-9]*=//'` ;; + *) optarg= ;; + esac + + # If the previous option needs an argument, assign it. + if test -n "$prev"; then + eval "$prev=\$option" + prev= + continue + fi + + case "$option" in + --help) cat <&2 + echo "$help" 1>&2 + exit 1 + ;; + + *) + if test -z "$ltmain"; then + ltmain="$option" + elif test -z "$host"; then +# This generates an unnecessary warning for sparc-sun-solaris4.1.3_U1 +# if test -n "`echo $option| sed 's/[-a-z0-9.]//g'`"; then +# echo "$progname: warning \`$option' is not a valid host type" 1>&2 +# fi + host="$option" + else + echo "$progname: too many arguments" 1>&2 + echo "$help" 1>&2 + exit 1 + fi ;; + esac +done + +if test -z "$ltmain"; then + echo "$progname: you must specify a LTMAIN file" 1>&2 + echo "$help" 1>&2 + exit 1 +fi + +if test ! -f "$ltmain"; then + echo "$progname: \`$ltmain' does not exist" 1>&2 + echo "$help" 1>&2 + exit 1 +fi + +# Quote any args containing shell metacharacters. +ltconfig_args= +for arg +do + case "$arg" in + *" "*|*" "*|*[\[\]\~\#\$\^\&\*\(\)\{\}\\\|\;\<\>\?]*) + ltconfig_args="$ltconfig_args '$arg'" ;; + *) ltconfig_args="$ltconfig_args $arg" ;; + esac +done + +# A relevant subset of AC_INIT. + +# File descriptor usage: +# 0 standard input +# 1 file creation +# 2 errors and warnings +# 3 some systems may open it to /dev/tty +# 4 used on the Kubota Titan +# 5 compiler messages saved in config.log +# 6 checking for... messages and results +if test "$silent" = yes; then + exec 6>/dev/null +else + exec 6>&1 +fi +exec 5>>./config.log + +# NLS nuisances. +# Only set LANG and LC_ALL to C if already set. +# These must not be set unconditionally because not all systems understand +# e.g. LANG=C (notably SCO). +if test "X${LC_ALL+set}" = Xset; then LC_ALL=C; export LC_ALL; fi +if test "X${LANG+set}" = Xset; then LANG=C; export LANG; fi + +if test -n "$cache_file" && test -r "$cache_file"; then + echo "loading cache $cache_file within ltconfig" + . $cache_file +fi + +if (echo "testing\c"; echo 1,2,3) | grep c >/dev/null; then + # Stardent Vistra SVR4 grep lacks -e, says ghazi@caip.rutgers.edu. + if (echo -n testing; echo 1,2,3) | sed s/-n/xn/ | grep xn >/dev/null; then + ac_n= ac_c=' +' ac_t=' ' + else + ac_n=-n ac_c= ac_t= + fi +else + ac_n= ac_c='\c' ac_t= +fi + +if test -z "$srcdir"; then + # Assume the source directory is the same one as the path to LTMAIN. + srcdir=`$echo "X$ltmain" | $Xsed -e 's%/[^/]*$%%'` + test "$srcdir" = "$ltmain" && srcdir=. +fi + +trap "$rm conftest*; exit 1" 1 2 15 +if test "$verify_host" = yes; then + # Check for config.guess and config.sub. + ac_aux_dir= + for ac_dir in $srcdir $srcdir/.. $srcdir/../..; do + if test -f $ac_dir/config.guess; then + ac_aux_dir=$ac_dir + break + fi + done + if test -z "$ac_aux_dir"; then + echo "$progname: cannot find config.guess in $srcdir $srcdir/.. $srcdir/../.." 1>&2 + echo "$help" 1>&2 + exit 1 + fi + ac_config_guess=$ac_aux_dir/config.guess + ac_config_sub=$ac_aux_dir/config.sub + + # Make sure we can run config.sub. + if $SHELL $ac_config_sub sun4 >/dev/null 2>&1; then : + else + echo "$progname: cannot run $ac_config_sub" 1>&2 + echo "$help" 1>&2 + exit 1 + fi + + echo $ac_n "checking host system type""... $ac_c" 1>&6 + + host_alias=$host + case "$host_alias" in + "") + if host_alias=`$SHELL $ac_config_guess`; then : + else + echo "$progname: cannot guess host type; you must specify one" 1>&2 + echo "$help" 1>&2 + exit 1 + fi ;; + esac + host=`$SHELL $ac_config_sub $host_alias` + echo "$ac_t$host" 1>&6 + + # Make sure the host verified. + test -z "$host" && exit 1 + +elif test -z "$host"; then + echo "$progname: you must specify a host type if you use \`--no-verify'" 1>&2 + echo "$help" 1>&2 + exit 1 +else + host_alias=$host +fi + +# Transform linux* to *-*-linux-gnu*, to support old configure scripts. +case "$host_os" in +linux-gnu*) ;; +linux*) host=`echo $host | sed 's/^\(.*-.*-linux\)\(.*\)$/\1-gnu\2/'` +esac + +host_cpu=`echo $host | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\1/'` +host_vendor=`echo $host | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\2/'` +host_os=`echo $host | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\3/'` + +case "$host_os" in +aix3*) + # AIX sometimes has problems with the GCC collect2 program. For some + # reason, if we set the COLLECT_NAMES environment variable, the problems + # vanish in a puff of smoke. + if test "X${COLLECT_NAMES+set}" != Xset; then + COLLECT_NAMES= + export COLLECT_NAMES + fi + ;; +esac + +# Determine commands to create old-style static archives. +old_archive_cmds='$AR cru $oldlib$oldobjs' +old_postinstall_cmds='chmod 644 $oldlib' +old_postuninstall_cmds= + +# Set a sane default for `AR'. +test -z "$AR" && AR=ar + +# Set a sane default for `OBJDUMP'. +test -z "$OBJDUMP" && OBJDUMP=objdump + +# If RANLIB is not set, then run the test. +if test "${RANLIB+set}" != "set"; then + result=no + + echo $ac_n "checking for ranlib... $ac_c" 1>&6 + IFS="${IFS= }"; save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + for dir in $PATH; do + test -z "$dir" && dir=. + if test -f $dir/ranlib || test -f $dir/ranlib$ac_exeext; then + RANLIB="ranlib" + result="ranlib" + break + fi + done + IFS="$save_ifs" + + echo "$ac_t$result" 1>&6 +fi + +if test -n "$RANLIB"; then + old_archive_cmds="$old_archive_cmds~\$RANLIB \$oldlib" + old_postinstall_cmds="\$RANLIB \$oldlib~$old_postinstall_cmds" +fi + +# Set sane defaults for `DLLTOOL', `OBJDUMP', and `AS', used on cygwin. +test -z "$DLLTOOL" && DLLTOOL=dlltool +test -z "$OBJDUMP" && OBJDUMP=objdump +test -z "$AS" && AS=as + +# Check to see if we are using GCC. +if test "$with_gcc" != yes || test -z "$CC"; then + # If CC is not set, then try to find GCC or a usable CC. + if test -z "$CC"; then + echo $ac_n "checking for gcc... $ac_c" 1>&6 + IFS="${IFS= }"; save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + for dir in $PATH; do + test -z "$dir" && dir=. + if test -f $dir/gcc || test -f $dir/gcc$ac_exeext; then + CC="gcc" + break + fi + done + IFS="$save_ifs" + + if test -n "$CC"; then + echo "$ac_t$CC" 1>&6 + else + echo "$ac_t"no 1>&6 + fi + fi + + # Not "gcc", so try "cc", rejecting "/usr/ucb/cc". + if test -z "$CC"; then + echo $ac_n "checking for cc... $ac_c" 1>&6 + IFS="${IFS= }"; save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + cc_rejected=no + for dir in $PATH; do + test -z "$dir" && dir=. + if test -f $dir/cc || test -f $dir/cc$ac_exeext; then + if test "$dir/cc" = "/usr/ucb/cc"; then + cc_rejected=yes + continue + fi + CC="cc" + break + fi + done + IFS="$save_ifs" + if test $cc_rejected = yes; then + # We found a bogon in the path, so make sure we never use it. + set dummy $CC + shift + if test $# -gt 0; then + # We chose a different compiler from the bogus one. + # However, it has the same name, so the bogon will be chosen + # first if we set CC to just the name; use the full file name. + shift + set dummy "$dir/cc" "$@" + shift + CC="$@" + fi + fi + + if test -n "$CC"; then + echo "$ac_t$CC" 1>&6 + else + echo "$ac_t"no 1>&6 + fi + + if test -z "$CC"; then + echo "$progname: error: no acceptable cc found in \$PATH" 1>&2 + exit 1 + fi + fi + + # Now see if the compiler is really GCC. + with_gcc=no + echo $ac_n "checking whether we are using GNU C... $ac_c" 1>&6 + echo "$progname:581: checking whether we are using GNU C" >&5 + + $rm conftest.c + cat > conftest.c <&5; (eval $ac_try) 2>&5; }; } | egrep yes >/dev/null 2>&1; then + with_gcc=yes + fi + $rm conftest.c + echo "$ac_t$with_gcc" 1>&6 +fi + +# Allow CC to be a program name with arguments. +set dummy $CC +compiler="$2" + +echo $ac_n "checking for object suffix... $ac_c" 1>&6 +$rm conftest* +echo 'int i = 1;' > conftest.c +echo "$progname:603: checking for object suffix" >& 5 +if { (eval echo $progname:604: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>conftest.err; }; then + # Append any warnings to the config.log. + cat conftest.err 1>&5 + + for ac_file in conftest.*; do + case $ac_file in + *.c) ;; + *) objext=`echo $ac_file | sed -e s/conftest.//` ;; + esac + done +else + cat conftest.err 1>&5 + echo "$progname: failed program was:" >&5 + cat conftest.c >&5 +fi +$rm conftest* +echo "$ac_t$objext" 1>&6 + +echo $ac_n "checking for executable suffix... $ac_c" 1>&6 +if eval "test \"`echo '$''{'ac_cv_exeext'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + ac_cv_exeext="no" + $rm conftest* + echo 'main () { return 0; }' > conftest.c + echo "$progname:629: checking for executable suffix" >& 5 + if { (eval echo $progname:630: \"$ac_link\") 1>&5; (eval $ac_link) 2>conftest.err; }; then + # Append any warnings to the config.log. + cat conftest.err 1>&5 + + for ac_file in conftest.*; do + case $ac_file in + *.c | *.err | *.$objext ) ;; + *) ac_cv_exeext=.`echo $ac_file | sed -e s/conftest.//` ;; + esac + done + else + cat conftest.err 1>&5 + echo "$progname: failed program was:" >&5 + cat conftest.c >&5 + fi + $rm conftest* +fi +if test "X$ac_cv_exeext" = Xno; then + exeext="" +else + exeext="$ac_cv_exeext" +fi +echo "$ac_t$ac_cv_exeext" 1>&6 + +echo $ac_n "checking for $compiler option to produce PIC... $ac_c" 1>&6 +pic_flag= +special_shlib_compile_flags= +wl= +link_static_flag= +no_builtin_flag= + +if test "$with_gcc" = yes; then + wl='-Wl,' + link_static_flag='-static' + + case "$host_os" in + beos* | irix5* | irix6* | osf3* | osf4* | osf5*) + # PIC is the default for these OSes. + ;; + aix*) + # Below there is a dirty hack to force normal static linking with -ldl + # The problem is because libdl dynamically linked with both libc and + # libC (AIX C++ library), which obviously doesn't included in libraries + # list by gcc. This cause undefined symbols with -static flags. + # This hack allows C programs to be linked with "-static -ldl", but + # we not sure about C++ programs. + link_static_flag="$link_static_flag ${wl}-lC" + ;; + cygwin* | mingw* | os2*) + # We can build DLLs from non-PIC. + ;; + amigaos*) + # FIXME: we need at least 68020 code to build shared libraries, but + # adding the `-m68020' flag to GCC prevents building anything better, + # like `-m68040'. + pic_flag='-m68020 -resident32 -malways-restore-a4' + ;; + sysv4*MP*) + if test -d /usr/nec; then + pic_flag=-Kconform_pic + fi + ;; + *) + pic_flag='-fPIC' + ;; + esac +else + # PORTME Check for PIC flags for the system compiler. + case "$host_os" in + aix3* | aix4*) + # All AIX code is PIC. + link_static_flag='-bnso -bI:/lib/syscalls.exp' + ;; + + hpux9* | hpux10* | hpux11*) + # Is there a better link_static_flag that works with the bundled CC? + wl='-Wl,' + link_static_flag="${wl}-a ${wl}archive" + pic_flag='+Z' + ;; + + irix5* | irix6*) + wl='-Wl,' + link_static_flag='-non_shared' + # PIC (with -KPIC) is the default. + ;; + + cygwin* | mingw* | os2*) + # We can build DLLs from non-PIC. + ;; + + osf3* | osf4* | osf5*) + # All OSF/1 code is PIC. + wl='-Wl,' + link_static_flag='-non_shared' + ;; + + sco3.2v5*) + pic_flag='-Kpic' + link_static_flag='-dn' + special_shlib_compile_flags='-belf' + ;; + + solaris*) + pic_flag='-KPIC' + link_static_flag='-Bstatic' + wl='-Wl,' + ;; + + sunos4*) + pic_flag='-PIC' + link_static_flag='-Bstatic' + wl='-Qoption ld ' + ;; + + sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) + pic_flag='-KPIC' + link_static_flag='-Bstatic' + wl='-Wl,' + ;; + + uts4*) + pic_flag='-pic' + link_static_flag='-Bstatic' + ;; + sysv4*MP*) + if test -d /usr/nec ;then + pic_flag='-Kconform_pic' + link_static_flag='-Bstatic' + fi + ;; + *) + can_build_shared=no + ;; + esac +fi + +if test -n "$pic_flag"; then + echo "$ac_t$pic_flag" 1>&6 + + # Check to make sure the pic_flag actually works. + echo $ac_n "checking if $compiler PIC flag $pic_flag works... $ac_c" 1>&6 + $rm conftest* + echo "int some_variable = 0;" > conftest.c + save_CFLAGS="$CFLAGS" + CFLAGS="$CFLAGS $pic_flag -DPIC" + echo "$progname:776: checking if $compiler PIC flag $pic_flag works" >&5 + if { (eval echo $progname:777: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>conftest.err; } && test -s conftest.$objext; then + # Append any warnings to the config.log. + cat conftest.err 1>&5 + + case "$host_os" in + hpux9* | hpux10* | hpux11*) + # On HP-UX, both CC and GCC only warn that PIC is supported... then they + # create non-PIC objects. So, if there were any warnings, we assume that + # PIC is not supported. + if test -s conftest.err; then + echo "$ac_t"no 1>&6 + can_build_shared=no + pic_flag= + else + echo "$ac_t"yes 1>&6 + pic_flag=" $pic_flag" + fi + ;; + *) + echo "$ac_t"yes 1>&6 + pic_flag=" $pic_flag" + ;; + esac + else + # Append any errors to the config.log. + cat conftest.err 1>&5 + can_build_shared=no + pic_flag= + echo "$ac_t"no 1>&6 + fi + CFLAGS="$save_CFLAGS" + $rm conftest* +else + echo "$ac_t"none 1>&6 +fi + +# Check to see if options -o and -c are simultaneously supported by compiler +echo $ac_n "checking if $compiler supports -c -o file.o... $ac_c" 1>&6 +$rm -r conftest 2>/dev/null +mkdir conftest +cd conftest +$rm conftest* +echo "int some_variable = 0;" > conftest.c +mkdir out +# According to Tom Tromey, Ian Lance Taylor reported there are C compilers +# that will create temporary files in the current directory regardless of +# the output directory. Thus, making CWD read-only will cause this test +# to fail, enabling locking or at least warning the user not to do parallel +# builds. +chmod -w . +save_CFLAGS="$CFLAGS" +CFLAGS="$CFLAGS -o out/conftest2.o" +echo "$progname:829: checking if $compiler supports -c -o file.o" >&5 +if { (eval echo $progname:830: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>out/conftest.err; } && test -s out/conftest2.o; then + + # The compiler can only warn and ignore the option if not recognized + # So say no if there are warnings + if test -s out/conftest.err; then + echo "$ac_t"no 1>&6 + compiler_c_o=no + else + echo "$ac_t"yes 1>&6 + compiler_c_o=yes + fi +else + # Append any errors to the config.log. + cat out/conftest.err 1>&5 + compiler_c_o=no + echo "$ac_t"no 1>&6 +fi +CFLAGS="$save_CFLAGS" +chmod u+w . +$rm conftest* out/* +rmdir out +cd .. +rmdir conftest +$rm -r conftest 2>/dev/null + +if test x"$compiler_c_o" = x"yes"; then + # Check to see if we can write to a .lo + echo $ac_n "checking if $compiler supports -c -o file.lo... $ac_c" 1>&6 + $rm conftest* + echo "int some_variable = 0;" > conftest.c + save_CFLAGS="$CFLAGS" + CFLAGS="$CFLAGS -c -o conftest.lo" + echo "$progname:862: checking if $compiler supports -c -o file.lo" >&5 +if { (eval echo $progname:863: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>conftest.err; } && test -s conftest.lo; then + + # The compiler can only warn and ignore the option if not recognized + # So say no if there are warnings + if test -s conftest.err; then + echo "$ac_t"no 1>&6 + compiler_o_lo=no + else + echo "$ac_t"yes 1>&6 + compiler_o_lo=yes + fi + else + # Append any errors to the config.log. + cat conftest.err 1>&5 + compiler_o_lo=no + echo "$ac_t"no 1>&6 + fi + CFLAGS="$save_CFLAGS" + $rm conftest* +else + compiler_o_lo=no +fi + +# Check to see if we can do hard links to lock some files if needed +hard_links="nottested" +if test "$compiler_c_o" = no && test "$need_locks" != no; then + # do not overwrite the value of need_locks provided by the user + echo $ac_n "checking if we can lock with hard links... $ac_c" 1>&6 + hard_links=yes + $rm conftest* + ln conftest.a conftest.b 2>/dev/null && hard_links=no + touch conftest.a + ln conftest.a conftest.b 2>&5 || hard_links=no + ln conftest.a conftest.b 2>/dev/null && hard_links=no + echo "$ac_t$hard_links" 1>&6 + $rm conftest* + if test "$hard_links" = no; then + echo "*** WARNING: \`$CC' does not support \`-c -o', so \`make -j' may be unsafe" >&2 + need_locks=warn + fi +else + need_locks=no +fi + +if test "$with_gcc" = yes; then + # Check to see if options -fno-rtti -fno-exceptions are supported by compiler + echo $ac_n "checking if $compiler supports -fno-rtti -fno-exceptions ... $ac_c" 1>&6 + $rm conftest* + echo "int some_variable = 0;" > conftest.c + save_CFLAGS="$CFLAGS" + CFLAGS="$CFLAGS -fno-rtti -fno-exceptions -c conftest.c" + echo "$progname:914: checking if $compiler supports -fno-rtti -fno-exceptions" >&5 + if { (eval echo $progname:915: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>conftest.err; } && test -s conftest.o; then + + # The compiler can only warn and ignore the option if not recognized + # So say no if there are warnings + if test -s conftest.err; then + echo "$ac_t"no 1>&6 + compiler_rtti_exceptions=no + else + echo "$ac_t"yes 1>&6 + compiler_rtti_exceptions=yes + fi + else + # Append any errors to the config.log. + cat conftest.err 1>&5 + compiler_rtti_exceptions=no + echo "$ac_t"no 1>&6 + fi + CFLAGS="$save_CFLAGS" + $rm conftest* + + if test "$compiler_rtti_exceptions" = "yes"; then + no_builtin_flag=' -fno-builtin -fno-rtti -fno-exceptions' + else + no_builtin_flag=' -fno-builtin' + fi + +fi + +# Check for any special shared library compilation flags. +if test -n "$special_shlib_compile_flags"; then + echo "$progname: warning: \`$CC' requires \`$special_shlib_compile_flags' to build shared libraries" 1>&2 + if echo "$old_CC $old_CFLAGS " | egrep -e "[ ]$special_shlib_compile_flags[ ]" >/dev/null; then : + else + echo "$progname: add \`$special_shlib_compile_flags' to the CC or CFLAGS env variable and reconfigure" 1>&2 + can_build_shared=no + fi +fi + +echo $ac_n "checking if $compiler static flag $link_static_flag works... $ac_c" 1>&6 +$rm conftest* +echo 'main(){return(0);}' > conftest.c +save_LDFLAGS="$LDFLAGS" +LDFLAGS="$LDFLAGS $link_static_flag" +echo "$progname:958: checking if $compiler static flag $link_static_flag works" >&5 +if { (eval echo $progname:959: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest; then + echo "$ac_t$link_static_flag" 1>&6 +else + echo "$ac_t"none 1>&6 + link_static_flag= +fi +LDFLAGS="$save_LDFLAGS" +$rm conftest* + +if test -z "$LN_S"; then + # Check to see if we can use ln -s, or we need hard links. + echo $ac_n "checking whether ln -s works... $ac_c" 1>&6 + $rm conftest.dat + if ln -s X conftest.dat 2>/dev/null; then + $rm conftest.dat + LN_S="ln -s" + else + LN_S=ln + fi + if test "$LN_S" = "ln -s"; then + echo "$ac_t"yes 1>&6 + else + echo "$ac_t"no 1>&6 + fi +fi + +# Make sure LD is an absolute path. +if test -z "$LD"; then + ac_prog=ld + if test "$with_gcc" = yes; then + # Check if gcc -print-prog-name=ld gives a path. + echo $ac_n "checking for ld used by GCC... $ac_c" 1>&6 + echo "$progname:991: checking for ld used by GCC" >&5 + ac_prog=`($CC -print-prog-name=ld) 2>&5` + case "$ac_prog" in + # Accept absolute paths. + [\\/]* | [A-Za-z]:[\\/]*) + re_direlt='/[^/][^/]*/\.\./' + # Canonicalize the path of ld + ac_prog=`echo $ac_prog| sed 's%\\\\%/%g'` + while echo $ac_prog | grep "$re_direlt" > /dev/null 2>&1; do + ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` + done + test -z "$LD" && LD="$ac_prog" + ;; + "") + # If it fails, then pretend we are not using GCC. + ac_prog=ld + ;; + *) + # If it is relative, then search for the first ld in PATH. + with_gnu_ld=unknown + ;; + esac + elif test "$with_gnu_ld" = yes; then + echo $ac_n "checking for GNU ld... $ac_c" 1>&6 + echo "$progname:1015: checking for GNU ld" >&5 + else + echo $ac_n "checking for non-GNU ld""... $ac_c" 1>&6 + echo "$progname:1018: checking for non-GNU ld" >&5 + fi + + if test -z "$LD"; then + IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + for ac_dir in $PATH; do + test -z "$ac_dir" && ac_dir=. + if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then + LD="$ac_dir/$ac_prog" + # Check to see if the program is GNU ld. I'd rather use --version, + # but apparently some GNU ld's only accept -v. + # Break only if it was the GNU/non-GNU ld that we prefer. + if "$LD" -v 2>&1 < /dev/null | egrep '(GNU|with BFD)' > /dev/null; then + test "$with_gnu_ld" != no && break + else + test "$with_gnu_ld" != yes && break + fi + fi + done + IFS="$ac_save_ifs" + fi + + if test -n "$LD"; then + echo "$ac_t$LD" 1>&6 + else + echo "$ac_t"no 1>&6 + fi + + if test -z "$LD"; then + echo "$progname: error: no acceptable ld found in \$PATH" 1>&2 + exit 1 + fi +fi + +# Check to see if it really is or is not GNU ld. +echo $ac_n "checking if the linker ($LD) is GNU ld... $ac_c" 1>&6 +# I'd rather use --version here, but apparently some GNU ld's only accept -v. +if $LD -v 2>&1 &5; then + with_gnu_ld=yes +else + with_gnu_ld=no +fi +echo "$ac_t$with_gnu_ld" 1>&6 + +# See if the linker supports building shared libraries. +echo $ac_n "checking whether the linker ($LD) supports shared libraries... $ac_c" 1>&6 + +allow_undefined_flag= +no_undefined_flag= +need_lib_prefix=unknown +need_version=unknown +# when you set need_version to no, make sure it does not cause -set_version +# flags to be left without arguments +archive_cmds= +archive_expsym_cmds= +old_archive_from_new_cmds= +export_dynamic_flag_spec= +whole_archive_flag_spec= +thread_safe_flag_spec= +hardcode_libdir_flag_spec= +hardcode_libdir_separator= +hardcode_direct=no +hardcode_minus_L=no +hardcode_shlibpath_var=unsupported +runpath_var= +always_export_symbols=no +export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | sed '\''s/.* //'\'' | sort | uniq > $export_symbols' +# include_expsyms should be a list of space-separated symbols to be *always* +# included in the symbol list +include_expsyms= +# exclude_expsyms can be an egrep regular expression of symbols to exclude +# it will be wrapped by ` (' and `)$', so one must not match beginning or +# end of line. Example: `a|bc|.*d.*' will exclude the symbols `a' and `bc', +# as well as any symbol that contains `d'. +exclude_expsyms="_GLOBAL_OFFSET_TABLE_" +# Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out +# platforms (ab)use it in PIC code, but their linkers get confused if +# the symbol is explicitly referenced. Since portable code cannot +# rely on this symbol name, it's probably fine to never include it in +# preloaded symbol tables. + +case "$host_os" in +cygwin* | mingw*) + # FIXME: the MSVC++ port hasn't been tested in a loooong time + # When not using gcc, we currently assume that we are using + # Microsoft Visual C++. + if test "$with_gcc" != yes; then + with_gnu_ld=no + fi + ;; + +esac + +ld_shlibs=yes +if test "$with_gnu_ld" = yes; then + # If archive_cmds runs LD, not CC, wlarc should be empty + wlarc='${wl}' + + # See if GNU ld supports shared libraries. + case "$host_os" in + aix3* | aix4*) + # On AIX, the GNU linker is very broken + ld_shlibs=no + cat <&2 + +*** Warning: the GNU linker, at least up to release 2.9.1, is reported +*** to be unable to reliably create shared libraries on AIX. +*** Therefore, libtool is disabling shared libraries support. If you +*** really care for shared libraries, you may want to modify your PATH +*** so that a non-GNU linker is found, and then restart. + +EOF + ;; + + amigaos*) + archive_cmds='$rm $objdir/a2ixlibrary.data~$echo "#define NAME $libname" > $objdir/a2ixlibrary.data~$echo "#define LIBRARY_ID 1" >> $objdir/a2ixlibrary.data~$echo "#define VERSION $major" >> $objdir/a2ixlibrary.data~$echo "#define REVISION $revision" >> $objdir/a2ixlibrary.data~$AR cru $lib $libobjs~$RANLIB $lib~(cd $objdir && a2ixlibrary -32)' + hardcode_libdir_flag_spec='-L$libdir' + hardcode_minus_L=yes + + # Samuel A. Falvo II reports + # that the semantics of dynamic libraries on AmigaOS, at least up + # to version 4, is to share data among multiple programs linked + # with the same dynamic library. Since this doesn't match the + # behavior of shared libraries on other platforms, we can use + # them. + ld_shlibs=no + ;; + + beos*) + if $LD --help 2>&1 | egrep ': supported targets:.* elf' > /dev/null; then + allow_undefined_flag=unsupported + # Joseph Beckenbach says some releases of gcc + # support --undefined. This deserves some investigation. FIXME + archive_cmds='$CC -nostart $libobjs $deplibs $linkopts ${wl}-soname $wl$soname -o $lib' + else + ld_shlibs=no + fi + ;; + + cygwin* | mingw*) + # hardcode_libdir_flag_spec is actually meaningless, as there is + # no search path for DLLs. + hardcode_libdir_flag_spec='-L$libdir' + allow_undefined_flag=unsupported + always_export_symbols=yes + + # Extract the symbol export list from an `--export-all' def file, + # then regenerate the def file from the symbol export list, so that + # the compiled dll only exports the symbol export list. + export_symbols_cmds='test -f $objdir/$soname-ltdll.c || sed -e "/^# \/\* ltdll\.c starts here \*\//,/^# \/\* ltdll.c ends here \*\// { s/^# //; p; }" -e d < $0 > $objdir/$soname-ltdll.c~ + test -f $objdir/$soname-ltdll.$objext || (cd $objdir && $CC -c $soname-ltdll.c)~ + $DLLTOOL --export-all --exclude-symbols DllMain@12,_cygwin_dll_entry@12,_cygwin_noncygwin_dll_entry@12 --output-def $objdir/$soname-def $objdir/$soname-ltdll.$objext $libobjs $convenience~ + sed -e "1,/EXPORTS/d" -e "s/ @ [0-9]* ; *//" < $objdir/$soname-def > $export_symbols' + + archive_expsym_cmds='echo EXPORTS > $objdir/$soname-def~ + _lt_hint=1; + for symbol in `cat $export_symbols`; do + echo " \$symbol @ \$_lt_hint ; " >> $objdir/$soname-def; + _lt_hint=`expr 1 + \$_lt_hint`; + done~ + test -f $objdir/$soname-ltdll.c || sed -e "/^# \/\* ltdll\.c starts here \*\//,/^# \/\* ltdll.c ends here \*\// { s/^# //; p; }" -e d < $0 > $objdir/$soname-ltdll.c~ + test -f $objdir/$soname-ltdll.$objext || (cd $objdir && $CC -c $soname-ltdll.c)~ + $CC -Wl,--base-file,$objdir/$soname-base -Wl,--dll -nostartfiles -Wl,-e,__cygwin_dll_entry@12 -o $lib $objdir/$soname-ltdll.$objext $libobjs $deplibs $linkopts~ + $DLLTOOL --as=$AS --dllname $soname --exclude-symbols DllMain@12,_cygwin_dll_entry@12,_cygwin_noncygwin_dll_entry@12 --def $objdir/$soname-def --base-file $objdir/$soname-base --output-exp $objdir/$soname-exp~ + $CC -Wl,--base-file,$objdir/$soname-base $objdir/$soname-exp -Wl,--dll -nostartfiles -Wl,-e,__cygwin_dll_entry@12 -o $lib $objdir/$soname-ltdll.$objext $libobjs $deplibs $linkopts~ + $DLLTOOL --as=$AS --dllname $soname --exclude-symbols DllMain@12,_cygwin_dll_entry@12,_cygwin_noncygwin_dll_entry@12 --def $objdir/$soname-def --base-file $objdir/$soname-base --output-exp $objdir/$soname-exp~ + $CC $objdir/$soname-exp -Wl,--dll -nostartfiles -Wl,-e,__cygwin_dll_entry@12 -o $lib $objdir/$soname-ltdll.$objext $libobjs $deplibs $linkopts' + + old_archive_from_new_cmds='$DLLTOOL --as=$AS --dllname $soname --def $objdir/$soname-def --output-lib $objdir/$libname.a' + ;; + + netbsd*) + if echo __ELF__ | $CC -E - | grep __ELF__ >/dev/null; then + archive_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname -o $lib' + archive_expsym_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' + else + archive_cmds='$LD -Bshareable $libobjs $deplibs $linkopts -o $lib' + # can we support soname and/or expsyms with a.out? -oliva + fi + ;; + + solaris* | sysv5*) + if $LD -v 2>&1 | egrep 'BFD 2\.8' > /dev/null; then + ld_shlibs=no + cat <&2 + +*** Warning: The releases 2.8.* of the GNU linker cannot reliably +*** create shared libraries on Solaris systems. Therefore, libtool +*** is disabling shared libraries support. We urge you to upgrade GNU +*** binutils to release 2.9.1 or newer. Another option is to modify +*** your PATH or compiler configuration so that the native linker is +*** used, and then restart. + +EOF + elif $LD --help 2>&1 | egrep ': supported targets:.* elf' > /dev/null; then + archive_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname -o $lib' + archive_expsym_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' + else + ld_shlibs=no + fi + ;; + + sunos4*) + archive_cmds='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linkopts' + wlarc= + hardcode_direct=yes + hardcode_shlibpath_var=no + ;; + + *) + if $LD --help 2>&1 | egrep ': supported targets:.* elf' > /dev/null; then + archive_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname -o $lib' + archive_expsym_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' + else + ld_shlibs=no + fi + ;; + esac + + if test "$ld_shlibs" = yes; then + runpath_var=LD_RUN_PATH + hardcode_libdir_flag_spec='${wl}--rpath ${wl}$libdir' + export_dynamic_flag_spec='${wl}--export-dynamic' + case $host_os in + cygwin* | mingw*) + # dlltool doesn't understand --whole-archive et. al. + whole_archive_flag_spec= + ;; + *) + # ancient GNU ld didn't support --whole-archive et. al. + if $LD --help 2>&1 | egrep 'no-whole-archive' > /dev/null; then + whole_archive_flag_spec="$wlarc"'--whole-archive$convenience '"$wlarc"'--no-whole-archive' + else + whole_archive_flag_spec= + fi + ;; + esac + fi +else + # PORTME fill in a description of your system's linker (not GNU ld) + case "$host_os" in + aix3*) + allow_undefined_flag=unsupported + always_export_symbols=yes + archive_expsym_cmds='$LD -o $objdir/$soname $libobjs $deplibs $linkopts -bE:$export_symbols -T512 -H512 -bM:SRE~$AR cru $lib $objdir/$soname' + # Note: this linker hardcodes the directories in LIBPATH if there + # are no directories specified by -L. + hardcode_minus_L=yes + if test "$with_gcc" = yes && test -z "$link_static_flag"; then + # Neither direct hardcoding nor static linking is supported with a + # broken collect2. + hardcode_direct=unsupported + fi + ;; + + aix4*) + hardcode_libdir_flag_spec='${wl}-b ${wl}nolibpath ${wl}-b ${wl}libpath:$libdir:/usr/lib:/lib' + hardcode_libdir_separator=':' + if test "$with_gcc" = yes; then + collect2name=`${CC} -print-prog-name=collect2` + if test -f "$collect2name" && \ + strings "$collect2name" | grep resolve_lib_name >/dev/null + then + # We have reworked collect2 + hardcode_direct=yes + else + # We have old collect2 + hardcode_direct=unsupported + # It fails to find uninstalled libraries when the uninstalled + # path is not listed in the libpath. Setting hardcode_minus_L + # to unsupported forces relinking + hardcode_minus_L=yes + hardcode_libdir_flag_spec='-L$libdir' + hardcode_libdir_separator= + fi + shared_flag='-shared' + else + shared_flag='${wl}-bM:SRE' + hardcode_direct=yes + fi + allow_undefined_flag=' ${wl}-berok' + archive_cmds="\$CC $shared_flag"' -o $objdir/$soname $libobjs $deplibs $linkopts ${wl}-bexpall ${wl}-bnoentry${allow_undefined_flag}' + archive_expsym_cmds="\$CC $shared_flag"' -o $objdir/$soname $libobjs $deplibs $linkopts ${wl}-bE:$export_symbols ${wl}-bnoentry${allow_undefined_flag}' + case "$host_os" in aix4.[01]|aix4.[01].*) + # According to Greg Wooledge, -bexpall is only supported from AIX 4.2 on + always_export_symbols=yes ;; + esac + ;; + + amigaos*) + archive_cmds='$rm $objdir/a2ixlibrary.data~$echo "#define NAME $libname" > $objdir/a2ixlibrary.data~$echo "#define LIBRARY_ID 1" >> $objdir/a2ixlibrary.data~$echo "#define VERSION $major" >> $objdir/a2ixlibrary.data~$echo "#define REVISION $revision" >> $objdir/a2ixlibrary.data~$AR cru $lib $libobjs~$RANLIB $lib~(cd $objdir && a2ixlibrary -32)' + hardcode_libdir_flag_spec='-L$libdir' + hardcode_minus_L=yes + # see comment about different semantics on the GNU ld section + ld_shlibs=no + ;; + + cygwin* | mingw*) + # When not using gcc, we currently assume that we are using + # Microsoft Visual C++. + # hardcode_libdir_flag_spec is actually meaningless, as there is + # no search path for DLLs. + hardcode_libdir_flag_spec=' ' + allow_undefined_flag=unsupported + # Tell ltmain to make .lib files, not .a files. + libext=lib + # FIXME: Setting linknames here is a bad hack. + archive_cmds='$CC -o $lib $libobjs $linkopts `echo "$deplibs" | sed -e '\''s/ -lc$//'\''` -link -dll~linknames=' + # The linker will automatically build a .lib file if we build a DLL. + old_archive_from_new_cmds='true' + # FIXME: Should let the user specify the lib program. + old_archive_cmds='lib /OUT:$oldlib$oldobjs' + fix_srcfile_path='`cygpath -w $srcfile`' + ;; + + freebsd1*) + ld_shlibs=no + ;; + + # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor + # support. Future versions do this automatically, but an explicit c++rt0.o + # does not break anything, and helps significantly (at the cost of a little + # extra space). + freebsd2.2*) + archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linkopts /usr/lib/c++rt0.o' + hardcode_libdir_flag_spec='-R$libdir' + hardcode_direct=yes + hardcode_shlibpath_var=no + ;; + + # Unfortunately, older versions of FreeBSD 2 do not have this feature. + freebsd2*) + archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linkopts' + hardcode_direct=yes + hardcode_minus_L=yes + hardcode_shlibpath_var=no + ;; + + # FreeBSD 3 and greater uses gcc -shared to do shared libraries. + freebsd*) + archive_cmds='$CC -shared -o $lib $libobjs $deplibs $linkopts' + hardcode_libdir_flag_spec='-R$libdir' + hardcode_direct=yes + hardcode_shlibpath_var=no + ;; + + hpux9* | hpux10* | hpux11*) + case "$host_os" in + hpux9*) archive_cmds='$rm $objdir/$soname~$LD -b +b $install_libdir -o $objdir/$soname $libobjs $deplibs $linkopts~test $objdir/$soname = $lib || mv $objdir/$soname $lib' ;; + *) archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linkopts' ;; + esac + hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' + hardcode_libdir_separator=: + hardcode_direct=yes + hardcode_minus_L=yes # Not in the search PATH, but as the default + # location of the library. + export_dynamic_flag_spec='${wl}-E' + ;; + + irix5* | irix6*) + if test "$with_gcc" = yes; then + archive_cmds='$CC -shared $libobjs $deplibs $linkopts ${wl}-soname ${wl}$soname `test -n "$verstring" && echo ${wl}-set_version ${wl}$verstring` ${wl}-update_registry ${wl}${objdir}/so_locations -o $lib' + else + archive_cmds='$LD -shared $libobjs $deplibs $linkopts -soname $soname `test -n "$verstring" && echo -set_version $verstring` -update_registry ${objdir}/so_locations -o $lib' + fi + hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' + hardcode_libdir_separator=: + ;; + + netbsd*) + if echo __ELF__ | $CC -E - | grep __ELF__ >/dev/null; then + archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linkopts' # a.out + else + archive_cmds='$LD -shared -o $lib $libobjs $deplibs $linkopts' # ELF + fi + hardcode_libdir_flag_spec='${wl}-R$libdir' + hardcode_direct=yes + hardcode_shlibpath_var=no + ;; + + openbsd*) + archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linkopts' + hardcode_libdir_flag_spec='-R$libdir' + hardcode_direct=yes + hardcode_shlibpath_var=no + ;; + + os2*) + hardcode_libdir_flag_spec='-L$libdir' + hardcode_minus_L=yes + allow_undefined_flag=unsupported + archive_cmds='$echo "LIBRARY $libname INITINSTANCE" > $objdir/$libname.def~$echo "DESCRIPTION \"$libname\"" >> $objdir/$libname.def~$echo DATA >> $objdir/$libname.def~$echo " SINGLE NONSHARED" >> $objdir/$libname.def~$echo EXPORTS >> $objdir/$libname.def~emxexp $libobjs >> $objdir/$libname.def~$CC -Zdll -Zcrtdll -o $lib $libobjs $deplibs $linkopts $objdir/$libname.def' + old_archive_from_new_cmds='emximp -o $objdir/$libname.a $objdir/$libname.def' + ;; + + osf3*) + if test "$with_gcc" = yes; then + allow_undefined_flag=' ${wl}-expect_unresolved ${wl}\*' + archive_cmds='$CC -shared${allow_undefined_flag} $libobjs $deplibs $linkopts ${wl}-soname ${wl}$soname `test -n "$verstring" && echo ${wl}-set_version ${wl}$verstring` ${wl}-update_registry ${wl}${objdir}/so_locations -o $lib' + else + allow_undefined_flag=' -expect_unresolved \*' + archive_cmds='$LD -shared${allow_undefined_flag} $libobjs $deplibs $linkopts -soname $soname `test -n "$verstring" && echo -set_version $verstring` -update_registry ${objdir}/so_locations -o $lib' + fi + hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' + hardcode_libdir_separator=: + ;; + + osf4* | osf5*) # As osf3* with the addition of the -msym flag + if test "$with_gcc" = yes; then + allow_undefined_flag=' ${wl}-expect_unresolved ${wl}\*' + archive_cmds='$CC -shared${allow_undefined_flag} $libobjs $deplibs $linkopts ${wl}-msym ${wl}-soname ${wl}$soname `test -n "$verstring" && echo ${wl}-set_version ${wl}$verstring` ${wl}-update_registry ${wl}${objdir}/so_locations -o $lib' + else + allow_undefined_flag=' -expect_unresolved \*' + archive_cmds='$LD -shared${allow_undefined_flag} $libobjs $deplibs $linkopts -msym -soname $soname `test -n "$verstring" && echo -set_version $verstring` -update_registry ${objdir}/so_locations -o $lib' + fi + hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' + hardcode_libdir_separator=: + ;; + + sco3.2v5*) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + hardcode_shlibpath_var=no + runpath_var=LD_RUN_PATH + hardcode_runpath_var=yes + ;; + + solaris*) + no_undefined_flag=' -z text' + # $CC -shared without GNU ld will not create a library from C++ + # object files and a static libstdc++, better avoid it by now + archive_cmds='$LD -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $linkopts' + archive_expsym_cmds='$echo "{ global:" > $lib.exp~cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $lib.exp~$echo "local: *; };" >> $lib.exp~ + $LD -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linkopts~$rm $lib.exp' + hardcode_libdir_flag_spec='-R$libdir' + hardcode_shlibpath_var=no + case "$host_os" in + solaris2.[0-5] | solaris2.[0-5].*) ;; + *) # Supported since Solaris 2.6 (maybe 2.5.1?) + whole_archive_flag_spec='-z allextract$convenience -z defaultextract' ;; + esac + ;; + + sunos4*) + archive_cmds='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linkopts' + hardcode_libdir_flag_spec='-L$libdir' + hardcode_direct=yes + hardcode_minus_L=yes + hardcode_shlibpath_var=no + ;; + + sysv4) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + runpath_var='LD_RUN_PATH' + hardcode_shlibpath_var=no + hardcode_direct=no #Motorola manual says yes, but my tests say they lie + ;; + + sysv4.3*) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + hardcode_shlibpath_var=no + export_dynamic_flag_spec='-Bexport' + ;; + + sysv5*) + no_undefined_flag=' -z text' + # $CC -shared without GNU ld will not create a library from C++ + # object files and a static libstdc++, better avoid it by now + archive_cmds='$LD -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $linkopts' + archive_expsym_cmds='$echo "{ global:" > $lib.exp~cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $lib.exp~$echo "local: *; };" >> $lib.exp~ + $LD -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linkopts~$rm $lib.exp' + hardcode_libdir_flag_spec= + hardcode_shlibpath_var=no + runpath_var='LD_RUN_PATH' + ;; + + uts4*) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + hardcode_libdir_flag_spec='-L$libdir' + hardcode_shlibpath_var=no + ;; + + dgux*) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + hardcode_libdir_flag_spec='-L$libdir' + hardcode_shlibpath_var=no + ;; + + sysv4*MP*) + if test -d /usr/nec; then + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + hardcode_shlibpath_var=no + runpath_var=LD_RUN_PATH + hardcode_runpath_var=yes + ld_shlibs=yes + fi + ;; + + sysv4.2uw2*) + archive_cmds='$LD -G -o $lib $libobjs $deplibs $linkopts' + hardcode_direct=yes + hardcode_minus_L=no + hardcode_shlibpath_var=no + hardcode_runpath_var=yes + runpath_var=LD_RUN_PATH + ;; + + unixware7*) + archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linkopts' + runpath_var='LD_RUN_PATH' + hardcode_shlibpath_var=no + ;; + + *) + ld_shlibs=no + ;; + esac +fi +echo "$ac_t$ld_shlibs" 1>&6 +test "$ld_shlibs" = no && can_build_shared=no + +if test -z "$NM"; then + echo $ac_n "checking for BSD-compatible nm... $ac_c" 1>&6 + case "$NM" in + [\\/]* | [A-Za-z]:[\\/]*) ;; # Let the user override the test with a path. + *) + IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR}" + for ac_dir in $PATH /usr/ucb /usr/ccs/bin /bin; do + test -z "$ac_dir" && ac_dir=. + if test -f $ac_dir/nm || test -f $ac_dir/nm$ac_exeext; then + # Check to see if the nm accepts a BSD-compat flag. + # Adding the `sed 1q' prevents false positives on HP-UX, which says: + # nm: unknown option "B" ignored + if ($ac_dir/nm -B /dev/null 2>&1 | sed '1q'; exit 0) | egrep /dev/null >/dev/null; then + NM="$ac_dir/nm -B" + break + elif ($ac_dir/nm -p /dev/null 2>&1 | sed '1q'; exit 0) | egrep /dev/null >/dev/null; then + NM="$ac_dir/nm -p" + break + else + NM=${NM="$ac_dir/nm"} # keep the first match, but + continue # so that we can try to find one that supports BSD flags + fi + fi + done + IFS="$ac_save_ifs" + test -z "$NM" && NM=nm + ;; + esac + echo "$ac_t$NM" 1>&6 +fi + +# Check for command to grab the raw symbol name followed by C symbol from nm. +echo $ac_n "checking command to parse $NM output... $ac_c" 1>&6 + +# These are sane defaults that work on at least a few old systems. +# [They come from Ultrix. What could be older than Ultrix?!! ;)] + +# Character class describing NM global symbol codes. +symcode='[BCDEGRST]' + +# Regexp to match symbols that can be accessed directly from C. +sympat='\([_A-Za-z][_A-Za-z0-9]*\)' + +# Transform the above into a raw symbol and a C symbol. +symxfrm='\1 \2\3 \3' + +# Transform an extracted symbol line into a proper C declaration +global_symbol_to_cdecl="sed -n -e 's/^. .* \(.*\)$/extern char \1;/p'" + +# Define system-specific variables. +case "$host_os" in +aix*) + symcode='[BCDT]' + ;; +cygwin* | mingw*) + symcode='[ABCDGISTW]' + ;; +hpux*) # Its linker distinguishes data from code symbols + global_symbol_to_cdecl="sed -n -e 's/^T .* \(.*\)$/extern char \1();/p' -e 's/^. .* \(.*\)$/extern char \1;/p'" + ;; +irix*) + symcode='[BCDEGRST]' + ;; +solaris*) + symcode='[BDT]' + ;; +sysv4) + symcode='[DFNSTU]' + ;; +esac + +# If we're using GNU nm, then use its standard symbol codes. +if $NM -V 2>&1 | egrep '(GNU|with BFD)' > /dev/null; then + symcode='[ABCDGISTW]' +fi + +# Try without a prefix undercore, then with it. +for ac_symprfx in "" "_"; do + + # Write the raw and C identifiers. + global_symbol_pipe="sed -n -e 's/^.*[ ]\($symcode\)[ ][ ]*\($ac_symprfx\)$sympat$/$symxfrm/p'" + + # Check to see that the pipe works correctly. + pipe_works=no + $rm conftest* + cat > conftest.c <&5 + if { (eval echo $progname:1636: \"$ac_compile\") 1>&5; (eval $ac_compile) 2>&5; } && test -s conftest.$objext; then + # Now try to grab the symbols. + nlist=conftest.nm + if { echo "$progname:1639: eval \"$NM conftest.$objext | $global_symbol_pipe > $nlist\"" >&5; eval "$NM conftest.$objext | $global_symbol_pipe > $nlist 2>&5"; } && test -s "$nlist"; then + + # Try sorting and uniquifying the output. + if sort "$nlist" | uniq > "$nlist"T; then + mv -f "$nlist"T "$nlist" + else + rm -f "$nlist"T + fi + + # Make sure that we snagged all the symbols we need. + if egrep ' nm_test_var$' "$nlist" >/dev/null; then + if egrep ' nm_test_func$' "$nlist" >/dev/null; then + cat < conftest.c +#ifdef __cplusplus +extern "C" { +#endif + +EOF + # Now generate the symbol file. + eval "$global_symbol_to_cdecl"' < "$nlist" >> conftest.c' + + cat <> conftest.c +#if defined (__STDC__) && __STDC__ +# define lt_ptr_t void * +#else +# define lt_ptr_t char * +# define const +#endif + +/* The mapping between symbol names and symbols. */ +const struct { + const char *name; + lt_ptr_t address; +} +lt_preloaded_symbols[] = +{ +EOF + sed 's/^. \(.*\) \(.*\)$/ {"\2", (lt_ptr_t) \&\2},/' < "$nlist" >> conftest.c + cat <<\EOF >> conftest.c + {0, (lt_ptr_t) 0} +}; + +#ifdef __cplusplus +} +#endif +EOF + # Now try linking the two files. + mv conftest.$objext conftstm.$objext + save_LIBS="$LIBS" + save_CFLAGS="$CFLAGS" + LIBS="conftstm.$objext" + CFLAGS="$CFLAGS$no_builtin_flag" + if { (eval echo $progname:1691: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest; then + pipe_works=yes + else + echo "$progname: failed program was:" >&5 + cat conftest.c >&5 + fi + LIBS="$save_LIBS" + else + echo "cannot find nm_test_func in $nlist" >&5 + fi + else + echo "cannot find nm_test_var in $nlist" >&5 + fi + else + echo "cannot run $global_symbol_pipe" >&5 + fi + else + echo "$progname: failed program was:" >&5 + cat conftest.c >&5 + fi + $rm conftest* conftst* + + # Do not use the global_symbol_pipe unless it works. + if test "$pipe_works" = yes; then + break + else + global_symbol_pipe= + fi +done +if test "$pipe_works" = yes; then + echo "${ac_t}ok" 1>&6 +else + echo "${ac_t}failed" 1>&6 +fi + +if test -z "$global_symbol_pipe"; then + global_symbol_to_cdecl= +fi + +# Check hardcoding attributes. +echo $ac_n "checking how to hardcode library paths into programs... $ac_c" 1>&6 +hardcode_action= +if test -n "$hardcode_libdir_flag_spec" || \ + test -n "$runpath_var"; then + + # We can hardcode non-existant directories. + if test "$hardcode_direct" != no && + # If the only mechanism to avoid hardcoding is shlibpath_var, we + # have to relink, otherwise we might link with an installed library + # when we should be linking with a yet-to-be-installed one + ## test "$hardcode_shlibpath_var" != no && + test "$hardcode_minus_L" != no; then + # Linking always hardcodes the temporary library directory. + hardcode_action=relink + else + # We can link without hardcoding, and we can hardcode nonexisting dirs. + hardcode_action=immediate + fi +else + # We cannot hardcode anything, or else we can only hardcode existing + # directories. + hardcode_action=unsupported +fi +echo "$ac_t$hardcode_action" 1>&6 + + +reload_flag= +reload_cmds='$LD$reload_flag -o $output$reload_objs' +echo $ac_n "checking for $LD option to reload object files... $ac_c" 1>&6 +# PORTME Some linkers may need a different reload flag. +reload_flag='-r' +echo "$ac_t$reload_flag" 1>&6 +test -n "$reload_flag" && reload_flag=" $reload_flag" + +# PORTME Fill in your ld.so characteristics +library_names_spec= +libname_spec='lib$name' +soname_spec= +postinstall_cmds= +postuninstall_cmds= +finish_cmds= +finish_eval= +shlibpath_var= +shlibpath_overrides_runpath=unknown +version_type=none +dynamic_linker="$host_os ld.so" +sys_lib_dlsearch_path_spec="/lib /usr/lib" +sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" +file_magic_cmd= +file_magic_test_file= +deplibs_check_method='unknown' +# Need to set the preceding variable on all platforms that support +# interlibrary dependencies. +# 'none' -- dependencies not supported. +# `unknown' -- same as none, but documents that we really don't know. +# 'pass_all' -- all dependencies passed with no checks. +# 'test_compile' -- check by making test program. +# 'file_magic [regex]' -- check by looking for files in library path +# which responds to the $file_magic_cmd with a given egrep regex. +# If you have `file' or equivalent on your system and you're not sure +# whether `pass_all' will *always* work, you probably want this one. +echo $ac_n "checking dynamic linker characteristics... $ac_c" 1>&6 +case "$host_os" in +aix3*) + version_type=linux + library_names_spec='${libname}${release}.so$versuffix $libname.a' + shlibpath_var=LIBPATH + + # AIX has no versioning support, so we append a major version to the name. + soname_spec='${libname}${release}.so$major' + ;; + +aix4*) + version_type=linux + # AIX has no versioning support, so currently we can not hardcode correct + # soname into executable. Probably we can add versioning support to + # collect2, so additional links can be useful in future. + # We preserve .a as extension for shared libraries though AIX4.2 + # and later linker supports .so + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.a' + shlibpath_var=LIBPATH + deplibs_check_method=pass_all + ;; + +amigaos*) + library_names_spec='$libname.ixlibrary $libname.a' + # Create ${libname}_ixlibrary.a entries in /sys/libs. + finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`$echo "X$lib" | $Xsed -e '\''s%^.*/\([^/]*\)\.ixlibrary$%\1%'\''`; test $rm /sys/libs/${libname}_ixlibrary.a; $show "(cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a)"; (cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a) || exit 1; done' + ;; + +beos*) + library_names_spec='${libname}.so' + dynamic_linker="$host_os ld.so" + shlibpath_var=LIBRARY_PATH + deplibs_check_method=pass_all + lt_cv_dlopen="load_add_on" + lt_cv_dlopen_libs= + lt_cv_dlopen_self=yes + ;; + +bsdi4*) + version_type=linux + need_version=no + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' + shlibpath_var=LD_LIBRARY_PATH + deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib)' + file_magic_cmd=/usr/bin/file + file_magic_test_file=/shlib/libc.so + sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" + sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" + export_dynamic_flag_spec=-rdynamic + # the default ld.so.conf also contains /usr/contrib/lib and + # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow + # libtool to hard-code these into programs + ;; + +cygwin* | mingw*) + version_type=windows + need_version=no + need_lib_prefix=no + if test "$with_gcc" = yes; then + library_names_spec='${libname}`echo ${release} | sed -e 's/[.]/-/g'`${versuffix}.dll $libname.a' + else + library_names_spec='${libname}`echo ${release} | sed -e 's/[.]/-/g'`${versuffix}.dll $libname.lib' + fi + dynamic_linker='Win32 ld.exe' + deplibs_check_method='file_magic file format pei*-i386(.*architecture: i386)?' + file_magic_cmd='${OBJDUMP} -f' + # FIXME: first we should search . and the directory the executable is in + shlibpath_var=PATH + lt_cv_dlopen="LoadLibrary" + lt_cv_dlopen_libs= + ;; + +freebsd1*) + dynamic_linker=no + ;; + +freebsd*) + objformat=`test -x /usr/bin/objformat && /usr/bin/objformat || echo aout` + version_type=freebsd-$objformat + case "$version_type" in + freebsd-elf*) + deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [LM]SB shared object' + file_magic_cmd=/usr/bin/file + file_magic_test_file=`echo /usr/lib/libc.so*` + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so $libname.so' + need_version=no + need_lib_prefix=no + ;; + freebsd-*) + deplibs_check_method=unknown + library_names_spec='${libname}${release}.so$versuffix $libname.so$versuffix' + need_version=yes + ;; + esac + shlibpath_var=LD_LIBRARY_PATH + case "$host_os" in + freebsd2* | freebsd3.[01]* | freebsdelf3.[01]*) + shlibpath_overrides_runpath=yes + ;; + *) # from 3.2 on + shlibpath_overrides_runpath=no + ;; + esac + ;; + +gnu*) + version_type=linux + need_lib_prefix=no + need_version=no + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so${major} ${libname}.so' + soname_spec='${libname}${release}.so$major' + shlibpath_var=LD_LIBRARY_PATH + ;; + +hpux9* | hpux10* | hpux11*) + # Give a soname corresponding to the major version so that dld.sl refuses to + # link against other versions. + dynamic_linker="$host_os dld.sl" + version_type=sunos + need_lib_prefix=no + need_version=no + shlibpath_var=SHLIB_PATH + shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH + library_names_spec='${libname}${release}.sl$versuffix ${libname}${release}.sl$major $libname.sl' + soname_spec='${libname}${release}.sl$major' + # HP-UX runs *really* slowly unless shared libraries are mode 555. + postinstall_cmds='chmod 555 $lib' + ;; + +irix5* | irix6*) + version_type=irix + need_lib_prefix=no + need_version=no + soname_spec='${libname}${release}.so.$major' + library_names_spec='${libname}${release}.so.$versuffix ${libname}${release}.so.$major ${libname}${release}.so $libname.so' + case "$host_os" in + irix5*) + libsuff= shlibsuff= + # this will be overridden with pass_all, but let us keep it just in case + deplibs_check_method="file_magic ELF 32-bit MSB dynamic lib MIPS - version 1" + ;; + *) + case "$LD" in # libtool.m4 will add one of these switches to LD + *-32|*"-32 ") libsuff= shlibsuff= libmagic=32-bit;; + *-n32|*"-n32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; + *-64|*"-64 ") libsuff=64 shlibsuff=64 libmagic=64-bit;; + *) libsuff= shlibsuff= libmagic=never-match;; + esac + ;; + esac + shlibpath_var=LD_LIBRARY${shlibsuff}_PATH + shlibpath_overrides_runpath=no + sys_lib_search_path_spec="/usr/lib${libsuff} /lib${libsuff} /usr/local/lib${libsuff}" + sys_lib_dlsearch_path_spec="/usr/lib${libsuff} /lib${libsuff}" + file_magic_cmd=/usr/bin/file + file_magic_test_file=`echo /lib${libsuff}/libc.so*` + deplibs_check_method='pass_all' + ;; + +# No shared lib support for Linux oldld, aout, or coff. +linux-gnuoldld* | linux-gnuaout* | linux-gnucoff*) + dynamic_linker=no + ;; + +# This must be Linux ELF. +linux-gnu*) + version_type=linux + need_lib_prefix=no + need_version=no + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' + shlibpath_var=LD_LIBRARY_PATH + shlibpath_overrides_runpath=no + deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [LM]SB (shared object|dynamic lib )' + file_magic_cmd=/usr/bin/file + file_magic_test_file=`echo /lib/libc.so* /lib/libc-*.so` + + if test -f /lib/ld.so.1; then + dynamic_linker='GNU ld.so' + else + # Only the GNU ld.so supports shared libraries on MkLinux. + case "$host_cpu" in + powerpc*) dynamic_linker=no ;; + *) dynamic_linker='Linux ld.so' ;; + esac + fi + ;; + +netbsd*) + version_type=sunos + if echo __ELF__ | $CC -E - | grep __ELF__ >/dev/null; then + library_names_spec='${libname}${release}.so$versuffix ${libname}.so$versuffix' + finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' + dynamic_linker='NetBSD (a.out) ld.so' + else + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major ${libname}${release}.so ${libname}.so' + soname_spec='${libname}${release}.so$major' + dynamic_linker='NetBSD ld.elf_so' + fi + shlibpath_var=LD_LIBRARY_PATH + ;; + +openbsd*) + version_type=sunos + if test "$with_gnu_ld" = yes; then + need_lib_prefix=no + need_version=no + fi + library_names_spec='${libname}${release}.so$versuffix ${libname}.so$versuffix' + finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' + shlibpath_var=LD_LIBRARY_PATH + ;; + +os2*) + libname_spec='$name' + need_lib_prefix=no + library_names_spec='$libname.dll $libname.a' + dynamic_linker='OS/2 ld.exe' + shlibpath_var=LIBPATH + ;; + +osf3* | osf4* | osf5*) + version_type=osf + need_version=no + soname_spec='${libname}${release}.so' + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so $libname.so' + shlibpath_var=LD_LIBRARY_PATH + # this will be overridden with pass_all, but let us keep it just in case + deplibs_check_method='file_magic COFF format alpha shared library' + file_magic_cmd=/usr/bin/file + file_magic_test_file=/shlib/libc.so + deplibs_check_method='pass_all' + sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" + sys_lib_dlsearch_path_spec="$sys_lib_search_path_spec" + ;; + +sco3.2v5*) + version_type=osf + soname_spec='${libname}${release}.so$major' + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + shlibpath_var=LD_LIBRARY_PATH + ;; + +solaris*) + version_type=linux + need_lib_prefix=no + need_version=no + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + shlibpath_var=LD_LIBRARY_PATH + shlibpath_overrides_runpath=yes + # ldd complains unless libraries are executable + postinstall_cmds='chmod +x $lib' + deplibs_check_method="file_magic ELF [0-9][0-9]-bit [LM]SB dynamic lib" + file_magic_cmd=/usr/bin/file + file_magic_test_file=/lib/libc.so + ;; + +sunos4*) + version_type=sunos + library_names_spec='${libname}${release}.so$versuffix ${libname}.so$versuffix' + finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' + shlibpath_var=LD_LIBRARY_PATH + shlibpath_overrides_runpath=yes + if test "$with_gnu_ld" = yes; then + need_lib_prefix=no + fi + need_version=yes + ;; + +sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) + version_type=linux + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + shlibpath_var=LD_LIBRARY_PATH + case "$host_vendor" in + ncr) + deplibs_check_method='pass_all' + ;; + motorola) + need_lib_prefix=no + need_version=no + shlibpath_overrides_runpath=no + sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' + deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib) M[0-9][0-9]* Version [0-9]' + file_magic_cmd=/usr/bin/file + file_magic_test_file=`echo /usr/lib/libc.so*` + ;; + esac + ;; + +uts4*) + version_type=linux + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + shlibpath_var=LD_LIBRARY_PATH + ;; + +dgux*) + version_type=linux + need_lib_prefix=no + need_version=no + library_names_spec='${libname}${release}.so$versuffix ${libname}${release}.so$major $libname.so' + soname_spec='${libname}${release}.so$major' + shlibpath_var=LD_LIBRARY_PATH + ;; + +sysv4*MP*) + if test -d /usr/nec ;then + version_type=linux + library_names_spec='$libname.so.$versuffix $libname.so.$major $libname.so' + soname_spec='$libname.so.$major' + shlibpath_var=LD_LIBRARY_PATH + fi + ;; + +*) + dynamic_linker=no + ;; +esac +echo "$ac_t$dynamic_linker" 1>&6 +test "$dynamic_linker" = no && can_build_shared=no + +# Report the final consequences. +echo "checking if libtool supports shared libraries... $can_build_shared" 1>&6 + +# Only try to build win32 dlls if AC_LIBTOOL_WIN32_DLL was used in +# configure.in, otherwise build static only libraries. +case "$host_os" in +cygwin* | mingw* | os2*) + if test x$can_build_shared = xyes; then + test x$enable_win32_dll = xno && can_build_shared=no + echo "checking if package supports dlls... $can_build_shared" 1>&6 + fi +;; +esac + +if test -n "$file_magic_test_file" && test -n "$file_magic_cmd"; then + case "$deplibs_check_method" in + "file_magic "*) + file_magic_regex="`expr \"$deplibs_check_method\" : \"file_magic \(.*\)\"`" + if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | + egrep "$file_magic_regex" > /dev/null; then + : + else + cat <&2 + +*** Warning: the command libtool uses to detect shared libraries, +*** $file_magic_cmd, produces output that libtool cannot recognize. +*** The result is that libtool may fail to recognize shared libraries +*** as such. This will affect the creation of libtool libraries that +*** depend on shared libraries, but programs linked with such libtool +*** libraries will work regardless of this problem. Nevertheless, you +*** may want to report the problem to your system manager and/or to +*** bug-libtool@gnu.org + +EOF + fi ;; + esac +fi + +echo $ac_n "checking whether to build shared libraries... $ac_c" 1>&6 +test "$can_build_shared" = "no" && enable_shared=no + +# On AIX, shared libraries and static libraries use the same namespace, and +# are all built from PIC. +case "$host_os" in +aix3*) + test "$enable_shared" = yes && enable_static=no + if test -n "$RANLIB"; then + archive_cmds="$archive_cmds~\$RANLIB \$lib" + postinstall_cmds='$RANLIB $lib' + fi + ;; + +aix4*) + test "$enable_shared" = yes && enable_static=no + ;; +esac + +echo "$ac_t$enable_shared" 1>&6 + +# Make sure either enable_shared or enable_static is yes. +test "$enable_shared" = yes || enable_static=yes + +echo "checking whether to build static libraries... $enable_static" 1>&6 + +if test "$hardcode_action" = relink; then + # Fast installation is not supported + enable_fast_install=no +elif test "$shlibpath_overrides_runpath" = yes || + test "$enable_shared" = no; then + # Fast installation is not necessary + enable_fast_install=needless +fi + +echo $ac_n "checking for objdir... $ac_c" 1>&6 +rm -f .libs 2>/dev/null +mkdir .libs 2>/dev/null +if test -d .libs; then + objdir=.libs +else + # MS-DOS does not allow filenames that begin with a dot. + objdir=_libs +fi +rmdir .libs 2>/dev/null +echo "$ac_t$objdir" 1>&6 + +if test "x$enable_dlopen" != xyes; then + enable_dlopen=unknown + enable_dlopen_self=unknown + enable_dlopen_self_static=unknown +else +if eval "test \"`echo '$''{'lt_cv_dlopen'+set}'`\" != set"; then + lt_cv_dlopen=no lt_cv_dlopen_libs= +echo $ac_n "checking for dlopen in -ldl""... $ac_c" 1>&6 +echo "$progname:2212: checking for dlopen in -ldl" >&5 +ac_lib_var=`echo dl'_'dlopen | sed 'y%./+-%__p_%'` +if eval "test \"`echo '$''{'ac_cv_lib_$ac_lib_var'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + ac_save_LIBS="$LIBS" +LIBS="-ldl $LIBS" +cat > conftest.$ac_ext <&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=yes" +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=no" +fi +rm -f conftest* +LIBS="$ac_save_LIBS" + +fi +if eval "test \"`echo '$ac_cv_lib_'$ac_lib_var`\" = yes"; then + echo "$ac_t""yes" 1>&6 + lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-ldl" +else + echo "$ac_t""no" 1>&6 +echo $ac_n "checking for dlopen""... $ac_c" 1>&6 +echo "$progname:2252: checking for dlopen" >&5 +if eval "test \"`echo '$''{'ac_cv_func_dlopen'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + cat > conftest.$ac_ext < +/* Override any gcc2 internal prototype to avoid an error. */ +/* We use char because int might match the return type of a gcc2 + builtin and then its argument prototype would still apply. */ +#ifdef __cplusplus +extern "C" +#endif +char dlopen(); + +int main() { + +/* The GNU C library defines this for functions which it implements + to always fail with ENOSYS. Some functions are actually named + something starting with __ and the normal name is an alias. */ +#if defined (__stub_dlopen) || defined (__stub___dlopen) +choke me +#else +dlopen(); +#endif + +; return 0; } +EOF +if { (eval echo $progname:2282: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then + rm -rf conftest* + eval "ac_cv_func_dlopen=yes" +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_func_dlopen=no" +fi +rm -f conftest* +fi +if eval "test \"`echo '$ac_cv_func_'dlopen`\" = yes"; then + echo "$ac_t""yes" 1>&6 + lt_cv_dlopen="dlopen" +else + echo "$ac_t""no" 1>&6 +echo $ac_n "checking for dld_link in -ldld""... $ac_c" 1>&6 +echo "$progname:2299: checking for dld_link in -ldld" >&5 +ac_lib_var=`echo dld'_'dld_link | sed 'y%./+-%__p_%'` +if eval "test \"`echo '$''{'ac_cv_lib_$ac_lib_var'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + ac_save_LIBS="$LIBS" +LIBS="-ldld $LIBS" +cat > conftest.$ac_ext <&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=yes" +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=no" +fi +rm -f conftest* +LIBS="$ac_save_LIBS" + +fi +if eval "test \"`echo '$ac_cv_lib_'$ac_lib_var`\" = yes"; then + echo "$ac_t""yes" 1>&6 + lt_cv_dlopen="dld_link" lt_cv_dlopen_libs="-ldld" +else + echo "$ac_t""no" 1>&6 +echo $ac_n "checking for shl_load""... $ac_c" 1>&6 +echo "$progname:2339: checking for shl_load" >&5 +if eval "test \"`echo '$''{'ac_cv_func_shl_load'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + cat > conftest.$ac_ext < +/* Override any gcc2 internal prototype to avoid an error. */ +/* We use char because int might match the return type of a gcc2 + builtin and then its argument prototype would still apply. */ +#ifdef __cplusplus +extern "C" +#endif +char shl_load(); + +int main() { + +/* The GNU C library defines this for functions which it implements + to always fail with ENOSYS. Some functions are actually named + something starting with __ and the normal name is an alias. */ +#if defined (__stub_shl_load) || defined (__stub___shl_load) +choke me +#else +shl_load(); +#endif + +; return 0; } +EOF +if { (eval echo $progname:2369: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then + rm -rf conftest* + eval "ac_cv_func_shl_load=yes" +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_func_shl_load=no" +fi +rm -f conftest* +fi + +if eval "test \"`echo '$ac_cv_func_'shl_load`\" = yes"; then + echo "$ac_t""yes" 1>&6 + lt_cv_dlopen="shl_load" +else + echo "$ac_t""no" 1>&6 +echo $ac_n "checking for shl_load in -ldld""... $ac_c" 1>&6 +echo "$progname:2387: checking for shl_load in -ldld" >&5 +ac_lib_var=`echo dld'_'shl_load | sed 'y%./+-%__p_%'` +if eval "test \"`echo '$''{'ac_cv_lib_$ac_lib_var'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + ac_save_LIBS="$LIBS" +LIBS="-ldld $LIBS" +cat > conftest.$ac_ext <&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=yes" +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_lib_$ac_lib_var=no" +fi +rm -f conftest* +LIBS="$ac_save_LIBS" + +fi +if eval "test \"`echo '$ac_cv_lib_'$ac_lib_var`\" = yes"; then + echo "$ac_t""yes" 1>&6 + lt_cv_dlopen="shl_load" lt_cv_dlopen_libs="-ldld" +else + echo "$ac_t""no" 1>&6 +fi + + +fi + + +fi + + +fi + + +fi + +fi + + if test "x$lt_cv_dlopen" != xno; then + enable_dlopen=yes + fi + + case "$lt_cv_dlopen" in + dlopen) +for ac_hdr in dlfcn.h; do +ac_safe=`echo "$ac_hdr" | sed 'y%./+-%__p_%'` +echo $ac_n "checking for $ac_hdr""... $ac_c" 1>&6 +echo "$progname:2452: checking for $ac_hdr" >&5 +if eval "test \"`echo '$''{'ac_cv_header_$ac_safe'+set}'`\" = set"; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + cat > conftest.$ac_ext < +int fnord = 0; +EOF +ac_try="$ac_compile >/dev/null 2>conftest.out" +{ (eval echo $progname:2462: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; } +ac_err=`grep -v '^ *+' conftest.out | grep -v "^conftest.${ac_ext}\$"` +if test -z "$ac_err"; then + rm -rf conftest* + eval "ac_cv_header_$ac_safe=yes" +else + echo "$ac_err" >&5 + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -rf conftest* + eval "ac_cv_header_$ac_safe=no" +fi +rm -f conftest* +fi +if eval "test \"`echo '$ac_cv_header_'$ac_safe`\" = yes"; then + echo "$ac_t""yes" 1>&6 +else + echo "$ac_t""no" 1>&6 +fi +done + + if test "x$ac_cv_header_dlfcn_h" = xyes; then + CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" + fi + eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" + LIBS="$lt_cv_dlopen_libs $LIBS" + + echo $ac_n "checking whether a program can dlopen itself""... $ac_c" 1>&6 +echo "$progname:2490: checking whether a program can dlopen itself" >&5 +if test "${lt_cv_dlopen_self+set}" = set; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + if test "$cross_compiling" = yes; then + lt_cv_dlopen_self=cross + else + cat > conftest.c < +#endif + +#include + +#ifdef RTLD_GLOBAL +# define LTDL_GLOBAL RTLD_GLOBAL +#else +# ifdef DL_GLOBAL +# define LTDL_GLOBAL DL_GLOBAL +# else +# define LTDL_GLOBAL 0 +# endif +#endif + +/* We may have to define LTDL_LAZY_OR_NOW in the command line if we + find out it does not work in some platform. */ +#ifndef LTDL_LAZY_OR_NOW +# ifdef RTLD_LAZY +# define LTDL_LAZY_OR_NOW RTLD_LAZY +# else +# ifdef DL_LAZY +# define LTDL_LAZY_OR_NOW DL_LAZY +# else +# ifdef RTLD_NOW +# define LTDL_LAZY_OR_NOW RTLD_NOW +# else +# ifdef DL_NOW +# define LTDL_LAZY_OR_NOW DL_NOW +# else +# define LTDL_LAZY_OR_NOW 0 +# endif +# endif +# endif +# endif +#endif + +fnord() { int i=42;} +main() { void *self, *ptr1, *ptr2; self=dlopen(0,LTDL_GLOBAL|LTDL_LAZY_OR_NOW); + if(self) { ptr1=dlsym(self,"fnord"); ptr2=dlsym(self,"_fnord"); + if(ptr1 || ptr2) { dlclose(self); exit(0); } } exit(1); } + +EOF +if { (eval echo $progname:2544: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest && (./conftest; exit) 2>/dev/null +then + lt_cv_dlopen_self=yes +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -fr conftest* + lt_cv_dlopen_self=no +fi +rm -fr conftest* +fi + +fi + +echo "$ac_t""$lt_cv_dlopen_self" 1>&6 + + if test "$lt_cv_dlopen_self" = yes; then + LDFLAGS="$LDFLAGS $link_static_flag" + echo $ac_n "checking whether a statically linked program can dlopen itself""... $ac_c" 1>&6 +echo "$progname:2563: checking whether a statically linked program can dlopen itself" >&5 +if test "${lt_cv_dlopen_self_static+set}" = set; then + echo $ac_n "(cached) $ac_c" 1>&6 +else + if test "$cross_compiling" = yes; then + lt_cv_dlopen_self_static=cross + else + cat > conftest.c < +#endif + +#include + +#ifdef RTLD_GLOBAL +# define LTDL_GLOBAL RTLD_GLOBAL +#else +# ifdef DL_GLOBAL +# define LTDL_GLOBAL DL_GLOBAL +# else +# define LTDL_GLOBAL 0 +# endif +#endif + +/* We may have to define LTDL_LAZY_OR_NOW in the command line if we + find out it does not work in some platform. */ +#ifndef LTDL_LAZY_OR_NOW +# ifdef RTLD_LAZY +# define LTDL_LAZY_OR_NOW RTLD_LAZY +# else +# ifdef DL_LAZY +# define LTDL_LAZY_OR_NOW DL_LAZY +# else +# ifdef RTLD_NOW +# define LTDL_LAZY_OR_NOW RTLD_NOW +# else +# ifdef DL_NOW +# define LTDL_LAZY_OR_NOW DL_NOW +# else +# define LTDL_LAZY_OR_NOW 0 +# endif +# endif +# endif +# endif +#endif + +fnord() { int i=42;} +main() { void *self, *ptr1, *ptr2; self=dlopen(0,LTDL_GLOBAL|LTDL_LAZY_OR_NOW); + if(self) { ptr1=dlsym(self,"fnord"); ptr2=dlsym(self,"_fnord"); + if(ptr1 || ptr2) { dlclose(self); exit(0); } } exit(1); } + +EOF +if { (eval echo $progname:2617: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest && (./conftest; exit) 2>/dev/null +then + lt_cv_dlopen_self_static=yes +else + echo "$progname: failed program was:" >&5 + cat conftest.$ac_ext >&5 + rm -fr conftest* + lt_cv_dlopen_self_static=no +fi +rm -fr conftest* +fi + +fi + +echo "$ac_t""$lt_cv_dlopen_self_static" 1>&6 +fi + ;; + esac + + case "$lt_cv_dlopen_self" in + yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; + *) enable_dlopen_self=unknown ;; + esac + + case "$lt_cv_dlopen_self_static" in + yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; + *) enable_dlopen_self_static=unknown ;; + esac +fi + +# Copy echo and quote the copy, instead of the original, because it is +# used later. +ltecho="$echo" +if test "X$ltecho" = "X$CONFIG_SHELL $0 --fallback-echo"; then + ltecho="$CONFIG_SHELL \$0 --fallback-echo" +fi +LTSHELL="$SHELL" + +LTCONFIG_VERSION="$VERSION" + +# Only quote variables if we're using ltmain.sh. +case "$ltmain" in +*.sh) + # Now quote all the things that may contain metacharacters. + for var in ltecho old_CC old_CFLAGS old_CPPFLAGS \ + old_LD old_LDFLAGS old_LIBS \ + old_NM old_RANLIB old_LN_S old_DLLTOOL old_OBJDUMP old_AS \ + AR CC LD LN_S NM LTSHELL LTCONFIG_VERSION \ + reload_flag reload_cmds wl \ + pic_flag link_static_flag no_builtin_flag export_dynamic_flag_spec \ + thread_safe_flag_spec whole_archive_flag_spec libname_spec \ + library_names_spec soname_spec \ + RANLIB old_archive_cmds old_archive_from_new_cmds old_postinstall_cmds \ + old_postuninstall_cmds archive_cmds archive_expsym_cmds postinstall_cmds postuninstall_cmds \ + file_magic_cmd export_symbols_cmds deplibs_check_method allow_undefined_flag no_undefined_flag \ + finish_cmds finish_eval global_symbol_pipe global_symbol_to_cdecl \ + hardcode_libdir_flag_spec hardcode_libdir_separator \ + sys_lib_search_path_spec sys_lib_dlsearch_path_spec \ + compiler_c_o compiler_o_lo need_locks exclude_expsyms include_expsyms; do + + case "$var" in + reload_cmds | old_archive_cmds | old_archive_from_new_cmds | \ + old_postinstall_cmds | old_postuninstall_cmds | \ + export_symbols_cmds | archive_cmds | archive_expsym_cmds | \ + postinstall_cmds | postuninstall_cmds | \ + finish_cmds | sys_lib_search_path_spec | sys_lib_dlsearch_path_spec) + # Double-quote double-evaled strings. + eval "$var=\\\"\`\$echo \"X\$$var\" | \$Xsed -e \"\$double_quote_subst\" -e \"\$sed_quote_subst\" -e \"\$delay_variable_subst\"\`\\\"" + ;; + *) + eval "$var=\\\"\`\$echo \"X\$$var\" | \$Xsed -e \"\$sed_quote_subst\"\`\\\"" + ;; + esac + done + + case "$ltecho" in + *'\$0 --fallback-echo"') + ltecho=`$echo "X$ltecho" | $Xsed -e 's/\\\\\\\$0 --fallback-echo"$/$0 --fallback-echo"/'` + ;; + esac + + trap "$rm \"$ofile\"; exit 1" 1 2 15 + echo "creating $ofile" + $rm "$ofile" + cat < "$ofile" +#! $SHELL + +# `$echo "$ofile" | sed 's%^.*/%%'` - Provide generalized library-building support services. +# Generated automatically by $PROGRAM (GNU $PACKAGE $VERSION$TIMESTAMP) +# NOTE: Changes made to this file will be lost: look at ltconfig or ltmain.sh. +# +# Copyright (C) 1996-1999 Free Software Foundation, Inc. +# Originally by Gordon Matzigkeit , 1996 +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# As a special exception to the GNU General Public License, if you +# distribute this file as part of a program that contains a +# configuration script generated by Autoconf, you may include it under +# the same distribution terms that you use for the rest of that program. + +# Sed that helps us avoid accidentally triggering echo(1) options like -n. +Xsed="sed -e s/^X//" + +# The HP-UX ksh and POSIX shell print the target directory to stdout +# if CDPATH is set. +if test "X\${CDPATH+set}" = Xset; then CDPATH=:; export CDPATH; fi + +### BEGIN LIBTOOL CONFIG +EOF + cfgfile="$ofile" + ;; + +*) + # Double-quote the variables that need it (for aesthetics). + for var in old_CC old_CFLAGS old_CPPFLAGS \ + old_LD old_LDFLAGS old_LIBS \ + old_NM old_RANLIB old_LN_S old_DLLTOOL old_OBJDUMP old_AS; do + eval "$var=\\\"\$var\\\"" + done + + # Just create a config file. + cfgfile="$ofile.cfg" + trap "$rm \"$cfgfile\"; exit 1" 1 2 15 + echo "creating $cfgfile" + $rm "$cfgfile" + cat < "$cfgfile" +# `$echo "$cfgfile" | sed 's%^.*/%%'` - Libtool configuration file. +# Generated automatically by $PROGRAM (GNU $PACKAGE $VERSION$TIMESTAMP) +EOF + ;; +esac + +cat <> "$cfgfile" +# Libtool was configured as follows, on host `(hostname || uname -n) 2>/dev/null | sed 1q`: +# +# CC=$old_CC CFLAGS=$old_CFLAGS CPPFLAGS=$old_CPPFLAGS \\ +# LD=$old_LD LDFLAGS=$old_LDFLAGS LIBS=$old_LIBS \\ +# NM=$old_NM RANLIB=$old_RANLIB LN_S=$old_LN_S \\ +# DLLTOOL=$old_DLLTOOL OBJDUMP=$old_OBJDUMP AS=$old_AS \\ +# $0$ltconfig_args +# +# Compiler and other test output produced by $progname, useful for +# debugging $progname, is in ./config.log if it exists. + +# The version of $progname that generated this script. +LTCONFIG_VERSION=$LTCONFIG_VERSION + +# Shell to use when invoking shell scripts. +SHELL=$LTSHELL + +# Whether or not to build shared libraries. +build_libtool_libs=$enable_shared + +# Whether or not to build static libraries. +build_old_libs=$enable_static + +# Whether or not to optimize for fast installation. +fast_install=$enable_fast_install + +# The host system. +host_alias=$host_alias +host=$host + +# An echo program that does not interpret backslashes. +echo=$ltecho + +# The archiver. +AR=$AR + +# The default C compiler. +CC=$CC + +# The linker used to build libraries. +LD=$LD + +# Whether we need hard or soft links. +LN_S=$LN_S + +# A BSD-compatible nm program. +NM=$NM + +# Used on cygwin: DLL creation program. +DLLTOOL="$DLLTOOL" + +# Used on cygwin: object dumper. +OBJDUMP="$OBJDUMP" + +# Used on cygwin: assembler. +AS="$AS" + +# The name of the directory that contains temporary libtool files. +objdir=$objdir + +# How to create reloadable object files. +reload_flag=$reload_flag +reload_cmds=$reload_cmds + +# How to pass a linker flag through the compiler. +wl=$wl + +# Object file suffix (normally "o"). +objext="$objext" + +# Old archive suffix (normally "a"). +libext="$libext" + +# Executable file suffix (normally ""). +exeext="$exeext" + +# Additional compiler flags for building library objects. +pic_flag=$pic_flag + +# Does compiler simultaneously support -c and -o options? +compiler_c_o=$compiler_c_o + +# Can we write directly to a .lo ? +compiler_o_lo=$compiler_o_lo + +# Must we lock files when doing compilation ? +need_locks=$need_locks + +# Do we need the lib prefix for modules? +need_lib_prefix=$need_lib_prefix + +# Do we need a version for libraries? +need_version=$need_version + +# Whether dlopen is supported. +dlopen=$enable_dlopen + +# Whether dlopen of programs is supported. +dlopen_self=$enable_dlopen_self + +# Whether dlopen of statically linked programs is supported. +dlopen_self_static=$enable_dlopen_self_static + +# Compiler flag to prevent dynamic linking. +link_static_flag=$link_static_flag + +# Compiler flag to turn off builtin functions. +no_builtin_flag=$no_builtin_flag + +# Compiler flag to allow reflexive dlopens. +export_dynamic_flag_spec=$export_dynamic_flag_spec + +# Compiler flag to generate shared objects directly from archives. +whole_archive_flag_spec=$whole_archive_flag_spec + +# Compiler flag to generate thread-safe objects. +thread_safe_flag_spec=$thread_safe_flag_spec + +# Library versioning type. +version_type=$version_type + +# Format of library name prefix. +libname_spec=$libname_spec + +# List of archive names. First name is the real one, the rest are links. +# The last name is the one that the linker finds with -lNAME. +library_names_spec=$library_names_spec + +# The coded name of the library, if different from the real name. +soname_spec=$soname_spec + +# Commands used to build and install an old-style archive. +RANLIB=$RANLIB +old_archive_cmds=$old_archive_cmds +old_postinstall_cmds=$old_postinstall_cmds +old_postuninstall_cmds=$old_postuninstall_cmds + +# Create an old-style archive from a shared archive. +old_archive_from_new_cmds=$old_archive_from_new_cmds + +# Commands used to build and install a shared archive. +archive_cmds=$archive_cmds +archive_expsym_cmds=$archive_expsym_cmds +postinstall_cmds=$postinstall_cmds +postuninstall_cmds=$postuninstall_cmds + +# Method to check whether dependent libraries are shared objects. +deplibs_check_method=$deplibs_check_method + +# Command to use when deplibs_check_method == file_magic. +file_magic_cmd=$file_magic_cmd + +# Flag that allows shared libraries with undefined symbols to be built. +allow_undefined_flag=$allow_undefined_flag + +# Flag that forces no undefined symbols. +no_undefined_flag=$no_undefined_flag + +# Commands used to finish a libtool library installation in a directory. +finish_cmds=$finish_cmds + +# Same as above, but a single script fragment to be evaled but not shown. +finish_eval=$finish_eval + +# Take the output of nm and produce a listing of raw symbols and C names. +global_symbol_pipe=$global_symbol_pipe + +# Transform the output of nm in a proper C declaration +global_symbol_to_cdecl=$global_symbol_to_cdecl + +# This is the shared library runtime path variable. +runpath_var=$runpath_var + +# This is the shared library path variable. +shlibpath_var=$shlibpath_var + +# Is shlibpath searched before the hard-coded library search path? +shlibpath_overrides_runpath=$shlibpath_overrides_runpath + +# How to hardcode a shared library path into an executable. +hardcode_action=$hardcode_action + +# Flag to hardcode \$libdir into a binary during linking. +# This must work even if \$libdir does not exist. +hardcode_libdir_flag_spec=$hardcode_libdir_flag_spec + +# Whether we need a single -rpath flag with a separated argument. +hardcode_libdir_separator=$hardcode_libdir_separator + +# Set to yes if using DIR/libNAME.so during linking hardcodes DIR into the +# resulting binary. +hardcode_direct=$hardcode_direct + +# Set to yes if using the -LDIR flag during linking hardcodes DIR into the +# resulting binary. +hardcode_minus_L=$hardcode_minus_L + +# Set to yes if using SHLIBPATH_VAR=DIR during linking hardcodes DIR into +# the resulting binary. +hardcode_shlibpath_var=$hardcode_shlibpath_var + +# Compile-time system search path for libraries +sys_lib_search_path_spec=$sys_lib_search_path_spec + +# Run-time system search path for libraries +sys_lib_dlsearch_path_spec=$sys_lib_dlsearch_path_spec + +# Fix the shell variable \$srcfile for the compiler. +fix_srcfile_path="$fix_srcfile_path" + +# Set to yes if exported symbols are required. +always_export_symbols=$always_export_symbols + +# The commands to list exported symbols. +export_symbols_cmds=$export_symbols_cmds + +# Symbols that should not be listed in the preloaded symbols. +exclude_expsyms=$exclude_expsyms + +# Symbols that must always be exported. +include_expsyms=$include_expsyms + +EOF + +case "$ltmain" in +*.sh) + echo '### END LIBTOOL CONFIG' >> "$ofile" + echo >> "$ofile" + case "$host_os" in + aix3*) + cat <<\EOF >> "$ofile" + +# AIX sometimes has problems with the GCC collect2 program. For some +# reason, if we set the COLLECT_NAMES environment variable, the problems +# vanish in a puff of smoke. +if test "X${COLLECT_NAMES+set}" != Xset; then + COLLECT_NAMES= + export COLLECT_NAMES +fi +EOF + ;; + esac + + # Append the ltmain.sh script. + sed '$q' "$ltmain" >> "$ofile" || (rm -f "$ofile"; exit 1) + # We use sed instead of cat because bash on DJGPP gets confused if + # if finds mixed CR/LF and LF-only lines. Since sed operates in + # text mode, it properly converts lines to CR/LF. This bash problem + # is reportedly fixed, but why not run on old versions too? + + chmod +x "$ofile" + ;; + +*) + # Compile the libtool program. + echo "FIXME: would compile $ltmain" + ;; +esac + +test -n "$cache_file" || exit 0 + +# AC_CACHE_SAVE +trap '' 1 2 15 +cat > confcache <<\EOF +# This file is a shell script that caches the results of configure +# tests run on this system so they can be shared between configure +# scripts and configure runs. It is not useful on other systems. +# If it contains results you don't want to keep, you may remove or edit it. +# +# By default, configure uses ./config.cache as the cache file, +# creating it if it does not exist already. You can give configure +# the --cache-file=FILE option to use a different cache file; that is +# what configure does when it calls configure scripts in +# subdirectories, so they share the cache. +# Giving --cache-file=/dev/null disables caching, for debugging configure. +# config.status only pays attention to the cache file if you give it the +# --recheck option to rerun configure. +# +EOF +# The following way of writing the cache mishandles newlines in values, +# but we know of no workaround that is simple, portable, and efficient. +# So, don't put newlines in cache variables' values. +# Ultrix sh set writes to stderr and can't be redirected directly, +# and sets the high bit in the cache file unless we assign to the vars. +(set) 2>&1 | + case `(ac_space=' '; set | grep ac_space) 2>&1` in + *ac_space=\ *) + # `set' does not quote correctly, so add quotes (double-quote substitution + # turns \\\\ into \\, and sed turns \\ into \). + sed -n \ + -e "s/'/'\\\\''/g" \ + -e "s/^\\([a-zA-Z0-9_]*_cv_[a-zA-Z0-9_]*\\)=\\(.*\\)/\\1=\${\\1='\\2'}/p" + ;; + *) + # `set' quotes correctly as required by POSIX, so do not add quotes. + sed -n -e 's/^\([a-zA-Z0-9_]*_cv_[a-zA-Z0-9_]*\)=\(.*\)/\1=${\1=\2}/p' + ;; + esac >> confcache +if cmp -s $cache_file confcache; then + : +else + if test -w $cache_file; then + echo "updating cache $cache_file" + cat confcache > $cache_file + else + echo "not updating unwritable cache $cache_file" + fi +fi +rm -f confcache + +exit 0 + +# Local Variables: +# mode:shell-script +# sh-indentation:2 +# End: diff --git a/pcre/ltmain.sh b/pcre/ltmain.sh index 50515ad0..ab65054f 100644 --- a/pcre/ltmain.sh +++ b/pcre/ltmain.sh @@ -2619,7 +2619,7 @@ static const void *lt_preloaded_setup() { # linked before any other PIC object. But we must not use # pic_flag when linking with -static. The problem exists in # FreeBSD 2.2.6 and is fixed in FreeBSD 3.1. - *-*-freebsd2*|*-*-freebsd3.0*|*-*-freebsdelf3.0*) + *-*-freebsd2*|*-*-freebsd3.0*|*-*-freebsdelf3.0*) case "$compile_command " in *" -static "*) ;; *) pic_flag_for_symtable=" $pic_flag -DPIC -DFREEBSD_WORKAROUND";; diff --git a/pcre/maketables.c b/pcre/maketables.c new file mode 100644 index 00000000..c0f06c03 --- /dev/null +++ b/pcre/maketables.c @@ -0,0 +1,132 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + +/* +PCRE is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. + +Written by: Philip Hazel + + Copyright (c) 1997-2000 University of Cambridge + +----------------------------------------------------------------------------- +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. +----------------------------------------------------------------------------- + +See the file Tech.Notes for some information on the internals. +*/ + + +/* This file is compiled on its own as part of the PCRE library. However, +it is also included in the compilation of dftables.c, in which case the macro +DFTABLES is defined. */ + +#ifndef DFTABLES +#include "internal.h" +#endif + + + +/************************************************* +* Create PCRE character tables * +*************************************************/ + +/* This function builds a set of character tables for use by PCRE and returns +a pointer to them. They are build using the ctype functions, and consequently +their contents will depend upon the current locale setting. When compiled as +part of the library, the store is obtained via pcre_malloc(), but when compiled +inside dftables, use malloc(). + +Arguments: none +Returns: pointer to the contiguous block of data +*/ + +unsigned const char * +pcre_maketables(void) +{ +unsigned char *yield, *p; +int i; + +#ifndef DFTABLES +yield = (unsigned char*)(pcre_malloc)(tables_length); +#else +yield = (unsigned char*)malloc(tables_length); +#endif + +if (yield == NULL) return NULL; +p = yield; + +/* First comes the lower casing table */ + +for (i = 0; i < 256; i++) *p++ = tolower(i); + +/* Next the case-flipping table */ + +for (i = 0; i < 256; i++) *p++ = islower(i)? toupper(i) : tolower(i); + +/* Then the character class tables. Don't try to be clever and save effort +on exclusive ones - in some locales things may be different. */ + +memset(p, 0, cbit_length); +for (i = 0; i < 256; i++) + { + if (isdigit(i)) + { + p[cbit_digit + i/8] |= 1 << (i&7); + p[cbit_word + i/8] |= 1 << (i&7); + } + if (isupper(i)) + { + p[cbit_upper + i/8] |= 1 << (i&7); + p[cbit_word + i/8] |= 1 << (i&7); + } + if (islower(i)) + { + p[cbit_lower + i/8] |= 1 << (i&7); + p[cbit_word + i/8] |= 1 << (i&7); + } + if (i == '_') p[cbit_word + i/8] |= 1 << (i&7); + if (isspace(i)) p[cbit_space + i/8] |= 1 << (i&7); + if (isxdigit(i))p[cbit_xdigit + i/8] |= 1 << (i&7); + if (isgraph(i)) p[cbit_graph + i/8] |= 1 << (i&7); + if (isprint(i)) p[cbit_print + i/8] |= 1 << (i&7); + if (ispunct(i)) p[cbit_punct + i/8] |= 1 << (i&7); + if (iscntrl(i)) p[cbit_cntrl + i/8] |= 1 << (i&7); + } +p += cbit_length; + +/* Finally, the character type table */ + +for (i = 0; i < 256; i++) + { + int x = 0; + if (isspace(i)) x += ctype_space; + if (isalpha(i)) x += ctype_letter; + if (isdigit(i)) x += ctype_digit; + if (isxdigit(i)) x += ctype_xdigit; + if (isalnum(i) || i == '_') x += ctype_word; + if (strchr("*+?{^.$|()[", i) != 0) x += ctype_meta; + *p++ = x; + } + +return yield; +} + +/* End of maketables.c */ diff --git a/pcre/pcre-config b/pcre/pcre-config new file mode 100644 index 00000000..ac9ccfe9 --- /dev/null +++ b/pcre/pcre-config @@ -0,0 +1,59 @@ +#!/bin/sh + +prefix=/usr/local +exec_prefix=${prefix} +exec_prefix_set=no + +usage="\ +Usage: pcre-config [--prefix] [--exec-prefix] [--version] [--libs] [--libs-posix] [--cflags] [--cflags-posix]" + +if test $# -eq 0; then + echo "${usage}" 1>&2 + exit 1 +fi + +while test $# -gt 0; do + case "$1" in + -*=*) optarg=`echo "$1" | sed 's/[-_a-zA-Z0-9]*=//'` ;; + *) optarg= ;; + esac + + case $1 in + --prefix=*) + prefix=$optarg + if test $exec_prefix_set = no ; then + exec_prefix=$optarg + fi + ;; + --prefix) + echo $prefix + ;; + --exec-prefix=*) + exec_prefix=$optarg + exec_prefix_set=yes + ;; + --exec-prefix) + echo $exec_prefix + ;; + --version) + echo 3.4 + ;; + --cflags | --cflags-posix) + if test ${prefix}/include != /usr/include ; then + includes=-I${prefix}/include + fi + echo $includes + ;; + --libs-posix) + echo -L${exec_prefix}/lib -lpcreposix -lpcre + ;; + --libs) + echo -L${exec_prefix}/lib -lpcre + ;; + *) + echo "${usage}" 1>&2 + exit 1 + ;; + esac + shift +done diff --git a/pcre/pcre-config.in b/pcre/pcre-config.in new file mode 100644 index 00000000..8daded9f --- /dev/null +++ b/pcre/pcre-config.in @@ -0,0 +1,59 @@ +#!/bin/sh + +prefix=@prefix@ +exec_prefix=@exec_prefix@ +exec_prefix_set=no + +usage="\ +Usage: pcre-config [--prefix] [--exec-prefix] [--version] [--libs] [--libs-posix] [--cflags] [--cflags-posix]" + +if test $# -eq 0; then + echo "${usage}" 1>&2 + exit 1 +fi + +while test $# -gt 0; do + case "$1" in + -*=*) optarg=`echo "$1" | sed 's/[-_a-zA-Z0-9]*=//'` ;; + *) optarg= ;; + esac + + case $1 in + --prefix=*) + prefix=$optarg + if test $exec_prefix_set = no ; then + exec_prefix=$optarg + fi + ;; + --prefix) + echo $prefix + ;; + --exec-prefix=*) + exec_prefix=$optarg + exec_prefix_set=yes + ;; + --exec-prefix) + echo $exec_prefix + ;; + --version) + echo @PCRE_VERSION@ + ;; + --cflags | --cflags-posix) + if test @includedir@ != /usr/include ; then + includes=-I@includedir@ + fi + echo $includes + ;; + --libs-posix) + echo -L@libdir@ -lpcreposix -lpcre + ;; + --libs) + echo -L@libdir@ -lpcre + ;; + *) + echo "${usage}" 1>&2 + exit 1 + ;; + esac + shift +done diff --git a/pcre/pcre.def b/pcre/pcre.def new file mode 100644 index 00000000..0e8cf3f4 --- /dev/null +++ b/pcre/pcre.def @@ -0,0 +1,19 @@ +EXPORTS + +pcre_malloc DATA +pcre_free DATA + +pcre_compile +pcre_copy_substring +pcre_exec +pcre_get_substring +pcre_get_substring_list +pcre_info +pcre_maketables +pcre_study +pcre_version + +regcomp +regexec +regerror +regfree diff --git a/pcre/pcre.h b/pcre/pcre.h index e5a875a7..d27ba859 100644 --- a/pcre/pcre.h +++ b/pcre/pcre.h @@ -17,7 +17,7 @@ make changes to pcre.in. */ /* Win32 uses DLL by default */ #ifdef _WIN32 -# ifdef STATIC +# ifdef STATIC_PCRE # define PCRE_DL_IMPORT # else # define PCRE_DL_IMPORT __declspec(dllimport) diff --git a/pcre/pcre.in b/pcre/pcre.in index 1dffb02b..d698f403 100644 --- a/pcre/pcre.in +++ b/pcre/pcre.in @@ -17,7 +17,7 @@ make changes to pcre.in. */ /* Win32 uses DLL by default */ #ifdef _WIN32 -# ifdef STATIC +# ifdef STATIC_PCRE # define PCRE_DL_IMPORT # else # define PCRE_DL_IMPORT __declspec(dllimport) diff --git a/pcre/pcregrep.c b/pcre/pcregrep.c new file mode 100644 index 00000000..e8c934ef --- /dev/null +++ b/pcre/pcregrep.c @@ -0,0 +1,228 @@ +/************************************************* +* pcregrep program * +*************************************************/ + +/* This is a grep program that uses the PCRE regular expression library to do +its pattern matching. */ + +#include +#include +#include +#include +#include "config.h" +#include "pcre.h" + +#define FALSE 0 +#define TRUE 1 + +typedef int BOOL; + + + +/************************************************* +* Global variables * +*************************************************/ + +static pcre *pattern; +static pcre_extra *hints; + +static BOOL count_only = FALSE; +static BOOL filenames_only = FALSE; +static BOOL invert = FALSE; +static BOOL number = FALSE; +static BOOL silent = FALSE; +static BOOL whole_lines = FALSE; + + + +#if ! HAVE_STRERROR +/************************************************* +* Provide strerror() for non-ANSI libraries * +*************************************************/ + +/* Some old-fashioned systems still around (e.g. SunOS4) don't have strerror() +in their libraries, but can provide the same facility by this simple +alternative function. */ + +extern int sys_nerr; +extern char *sys_errlist[]; + +char * +strerror(int n) +{ +if (n < 0 || n >= sys_nerr) return "unknown error number"; +return sys_errlist[n]; +} +#endif /* HAVE_STRERROR */ + + + +/************************************************* +* Grep an individual file * +*************************************************/ + +static int +pcregrep(FILE *in, char *name) +{ +int rc = 1; +int linenumber = 0; +int count = 0; +int offsets[99]; +char buffer[BUFSIZ]; + +while (fgets(buffer, sizeof(buffer), in) != NULL) + { + BOOL match; + int length = (int)strlen(buffer); + if (length > 0 && buffer[length-1] == '\n') buffer[--length] = 0; + linenumber++; + + match = pcre_exec(pattern, hints, buffer, length, 0, 0, offsets, 99) >= 0; + if (match && whole_lines && offsets[1] != length) match = FALSE; + + if (match != invert) + { + if (count_only) count++; + + else if (filenames_only) + { + fprintf(stdout, "%s\n", (name == NULL)? "" : name); + return 0; + } + + else if (silent) return 0; + + else + { + if (name != NULL) fprintf(stdout, "%s:", name); + if (number) fprintf(stdout, "%d:", linenumber); + fprintf(stdout, "%s\n", buffer); + } + + rc = 0; + } + } + +if (count_only) + { + if (name != NULL) fprintf(stdout, "%s:", name); + fprintf(stdout, "%d\n", count); + } + +return rc; +} + + + + +/************************************************* +* Usage function * +*************************************************/ + +static int +usage(int rc) +{ +fprintf(stderr, "Usage: pcregrep [-Vchilnsvx] pattern [file] ...\n"); +return rc; +} + + + + +/************************************************* +* Main program * +*************************************************/ + +int +main(int argc, char **argv) +{ +int i; +int rc = 1; +int options = 0; +int errptr; +const char *error; +BOOL filenames = TRUE; + +/* Process the options */ + +for (i = 1; i < argc; i++) + { + char *s; + if (argv[i][0] != '-') break; + s = argv[i] + 1; + while (*s != 0) + { + switch (*s++) + { + case 'c': count_only = TRUE; break; + case 'h': filenames = FALSE; break; + case 'i': options |= PCRE_CASELESS; break; + case 'l': filenames_only = TRUE; + case 'n': number = TRUE; break; + case 's': silent = TRUE; break; + case 'v': invert = TRUE; break; + case 'x': whole_lines = TRUE; options |= PCRE_ANCHORED; break; + + case 'V': + fprintf(stderr, "PCRE version %s\n", pcre_version()); + break; + + default: + fprintf(stderr, "pcregrep: unknown option %c\n", s[-1]); + return usage(2); + } + } + } + +/* There must be at least a regexp argument */ + +if (i >= argc) return usage(0); + +/* Compile the regular expression. */ + +pattern = pcre_compile(argv[i++], options, &error, &errptr, NULL); +if (pattern == NULL) + { + fprintf(stderr, "pcregrep: error in regex at offset %d: %s\n", errptr, error); + return 2; + } + +/* Study the regular expression, as we will be running it may times */ + +hints = pcre_study(pattern, 0, &error); +if (error != NULL) + { + fprintf(stderr, "pcregrep: error while studing regex: %s\n", error); + return 2; + } + +/* If there are no further arguments, do the business on stdin and exit */ + +if (i >= argc) return pcregrep(stdin, NULL); + +/* Otherwise, work through the remaining arguments as files. If there is only +one, don't give its name on the output. */ + +if (i == argc - 1) filenames = FALSE; +if (filenames_only) filenames = TRUE; + +for (; i < argc; i++) + { + FILE *in = fopen(argv[i], "r"); + if (in == NULL) + { + fprintf(stderr, "%s: failed to open: %s\n", argv[i], strerror(errno)); + rc = 2; + } + else + { + int frc = pcregrep(in, filenames? argv[i] : NULL); + if (frc == 0 && rc == 1) rc = 0; + fclose(in); + } + } + +return rc; +} + +/* End */ diff --git a/pcre/pcreposix.c b/pcre/pcreposix.c index 6aeb8828..519d2dd5 100644 --- a/pcre/pcreposix.c +++ b/pcre/pcreposix.c @@ -251,7 +251,7 @@ if (rc == 0) rc = nmatch; /* All captured slots were filled in */ if (rc >= 0) { size_t i; - for (i = 0; i < rc; i++) + for (i = 0; i < (size_t)rc; i++) { pmatch[i].rm_so = ovector[i*2]; pmatch[i].rm_eo = ovector[i*2+1]; diff --git a/pcre/pcreposix.h b/pcre/pcreposix.h new file mode 100644 index 00000000..7660acbd --- /dev/null +++ b/pcre/pcreposix.h @@ -0,0 +1,88 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + +/* Copyright (c) 1997-2000 University of Cambridge */ + +#ifndef _PCREPOSIX_H +#define _PCREPOSIX_H + +/* This is the header for the POSIX wrapper interface to the PCRE Perl- +Compatible Regular Expression library. It defines the things POSIX says should +be there. I hope. */ + +/* Have to include stdlib.h in order to ensure that size_t is defined. */ + +#include + +/* Allow for C++ users */ + +#ifdef __cplusplus +extern "C" { +#endif + +/* Options defined by POSIX. */ + +#define REG_ICASE 0x01 +#define REG_NEWLINE 0x02 +#define REG_NOTBOL 0x04 +#define REG_NOTEOL 0x08 + +/* These are not used by PCRE, but by defining them we make it easier +to slot PCRE into existing programs that make POSIX calls. */ + +#define REG_EXTENDED 0 +#define REG_NOSUB 0 + +/* Error values. Not all these are relevant or used by the wrapper. */ + +enum { + REG_ASSERT = 1, /* internal error ? */ + REG_BADBR, /* invalid repeat counts in {} */ + REG_BADPAT, /* pattern error */ + REG_BADRPT, /* ? * + invalid */ + REG_EBRACE, /* unbalanced {} */ + REG_EBRACK, /* unbalanced [] */ + REG_ECOLLATE, /* collation error - not relevant */ + REG_ECTYPE, /* bad class */ + REG_EESCAPE, /* bad escape sequence */ + REG_EMPTY, /* empty expression */ + REG_EPAREN, /* unbalanced () */ + REG_ERANGE, /* bad range inside [] */ + REG_ESIZE, /* expression too big */ + REG_ESPACE, /* failed to get memory */ + REG_ESUBREG, /* bad back reference */ + REG_INVARG, /* bad argument */ + REG_NOMATCH /* match failed */ +}; + + +/* The structure representing a compiled regular expression. */ + +typedef struct { + void *re_pcre; + size_t re_nsub; + size_t re_erroffset; +} regex_t; + +/* The structure in which a captured offset is returned. */ + +typedef int regoff_t; + +typedef struct { + regoff_t rm_so; + regoff_t rm_eo; +} regmatch_t; + +/* The functions */ + +extern int regcomp(regex_t *, const char *, int); +extern int regexec(regex_t *, const char *, size_t, regmatch_t *, int); +extern size_t regerror(int, const regex_t *, char *, size_t); +extern void regfree(regex_t *); + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* End of pcreposix.h */ diff --git a/pcre/pcretest.c b/pcre/pcretest.c new file mode 100644 index 00000000..ee5df5f0 --- /dev/null +++ b/pcre/pcretest.c @@ -0,0 +1,1225 @@ +/************************************************* +* PCRE testing program * +*************************************************/ + +#include +#include +#include +#include +#include +#include + +/* Use the internal info for displaying the results of pcre_study(). */ + +#include "internal.h" + +/* It is possible to compile this test program without including support for +testing the POSIX interface, though this is not available via the standard +Makefile. */ + +#if !defined NOPOSIX +#include "pcreposix.h" +#endif + +#ifndef CLOCKS_PER_SEC +#ifdef CLK_TCK +#define CLOCKS_PER_SEC CLK_TCK +#else +#define CLOCKS_PER_SEC 100 +#endif +#endif + +#define LOOPREPEAT 20000 + + +static FILE *outfile; +static int log_store = 0; +static size_t gotten_store; + + + +static int utf8_table1[] = { + 0x0000007f, 0x000007ff, 0x0000ffff, 0x001fffff, 0x03ffffff, 0x7fffffff}; + +static int utf8_table2[] = { + 0, 0xc0, 0xe0, 0xf0, 0xf8, 0xfc}; + +static int utf8_table3[] = { + 0xff, 0x1f, 0x0f, 0x07, 0x03, 0x01}; + + +/************************************************* +* Convert character value to UTF-8 * +*************************************************/ + +/* This function takes an integer value in the range 0 - 0x7fffffff +and encodes it as a UTF-8 character in 0 to 6 bytes. + +Arguments: + cvalue the character value + buffer pointer to buffer for result - at least 6 bytes long + +Returns: number of characters placed in the buffer + -1 if input character is negative + 0 if input character is positive but too big (only when + int is longer than 32 bits) +*/ + +static int +ord2utf8(int cvalue, unsigned char *buffer) +{ +register int i, j; +for (i = 0; i < sizeof(utf8_table1)/sizeof(int); i++) + if (cvalue <= utf8_table1[i]) break; +if (i >= sizeof(utf8_table1)/sizeof(int)) return 0; +if (cvalue < 0) return -1; +*buffer++ = utf8_table2[i] | (cvalue & utf8_table3[i]); +cvalue >>= 6 - i; +for (j = 0; j < i; j++) + { + *buffer++ = 0x80 | (cvalue & 0x3f); + cvalue >>= 6; + } +return i + 1; +} + + +/************************************************* +* Convert UTF-8 string to value * +*************************************************/ + +/* This function takes one or more bytes that represents a UTF-8 character, +and returns the value of the character. + +Argument: + buffer a pointer to the byte vector + vptr a pointer to an int to receive the value + +Returns: > 0 => the number of bytes consumed + -6 to 0 => malformed UTF-8 character at offset = (-return) +*/ + +int +utf82ord(unsigned char *buffer, int *vptr) +{ +int c = *buffer++; +int d = c; +int i, j, s; + +for (i = -1; i < 6; i++) /* i is number of additional bytes */ + { + if ((d & 0x80) == 0) break; + d <<= 1; + } + +if (i == -1) { *vptr = c; return 1; } /* ascii character */ +if (i == 0 || i == 6) return 0; /* invalid UTF-8 */ + +/* i now has a value in the range 1-5 */ + +d = c & utf8_table3[i]; +s = 6 - i; + +for (j = 0; j < i; j++) + { + c = *buffer++; + if ((c & 0xc0) != 0x80) return -(j+1); + d |= (c & 0x3f) << s; + s += 6; + } + +/* Check that encoding was the correct unique one */ + +for (j = 0; j < sizeof(utf8_table1)/sizeof(int); j++) + if (d <= utf8_table1[j]) break; +if (j != i) return -(i+1); + +/* Valid value */ + +*vptr = d; +return i+1; +} + + + + + + +/* Debugging function to print the internal form of the regex. This is the same +code as contained in pcre.c under the DEBUG macro. */ + +static const char *OP_names[] = { + "End", "\\A", "\\B", "\\b", "\\D", "\\d", + "\\S", "\\s", "\\W", "\\w", "\\Z", "\\z", + "Opt", "^", "$", "Any", "chars", "not", + "*", "*?", "+", "+?", "?", "??", "{", "{", "{", + "*", "*?", "+", "+?", "?", "??", "{", "{", "{", + "*", "*?", "+", "+?", "?", "??", "{", "{", "{", + "*", "*?", "+", "+?", "?", "??", "{", "{", + "class", "Ref", "Recurse", + "Alt", "Ket", "KetRmax", "KetRmin", "Assert", "Assert not", + "AssertB", "AssertB not", "Reverse", "Once", "Cond", "Cref", + "Brazero", "Braminzero", "Bra" +}; + + +static void print_internals(pcre *re) +{ +unsigned char *code = ((real_pcre *)re)->code; + +fprintf(outfile, "------------------------------------------------------------------\n"); + +for(;;) + { + int c; + int charlength; + + fprintf(outfile, "%3d ", (int)(code - ((real_pcre *)re)->code)); + + if (*code >= OP_BRA) + { + fprintf(outfile, "%3d Bra %d", (code[1] << 8) + code[2], *code - OP_BRA); + code += 2; + } + + else switch(*code) + { + case OP_END: + fprintf(outfile, " %s\n", OP_names[*code]); + fprintf(outfile, "------------------------------------------------------------------\n"); + return; + + case OP_OPT: + fprintf(outfile, " %.2x %s", code[1], OP_names[*code]); + code++; + break; + + case OP_COND: + fprintf(outfile, "%3d Cond", (code[1] << 8) + code[2]); + code += 2; + break; + + case OP_CREF: + fprintf(outfile, " %.2d %s", code[1], OP_names[*code]); + code++; + break; + + case OP_CHARS: + charlength = *(++code); + fprintf(outfile, "%3d ", charlength); + while (charlength-- > 0) + if (isprint(c = *(++code))) fprintf(outfile, "%c", c); + else fprintf(outfile, "\\x%02x", c); + break; + + case OP_KETRMAX: + case OP_KETRMIN: + case OP_ALT: + case OP_KET: + case OP_ASSERT: + case OP_ASSERT_NOT: + case OP_ASSERTBACK: + case OP_ASSERTBACK_NOT: + case OP_ONCE: + fprintf(outfile, "%3d %s", (code[1] << 8) + code[2], OP_names[*code]); + code += 2; + break; + + case OP_REVERSE: + fprintf(outfile, "%3d %s", (code[1] << 8) + code[2], OP_names[*code]); + code += 2; + break; + + case OP_STAR: + case OP_MINSTAR: + case OP_PLUS: + case OP_MINPLUS: + case OP_QUERY: + case OP_MINQUERY: + case OP_TYPESTAR: + case OP_TYPEMINSTAR: + case OP_TYPEPLUS: + case OP_TYPEMINPLUS: + case OP_TYPEQUERY: + case OP_TYPEMINQUERY: + if (*code >= OP_TYPESTAR) + fprintf(outfile, " %s", OP_names[code[1]]); + else if (isprint(c = code[1])) fprintf(outfile, " %c", c); + else fprintf(outfile, " \\x%02x", c); + fprintf(outfile, "%s", OP_names[*code++]); + break; + + case OP_EXACT: + case OP_UPTO: + case OP_MINUPTO: + if (isprint(c = code[3])) fprintf(outfile, " %c{", c); + else fprintf(outfile, " \\x%02x{", c); + if (*code != OP_EXACT) fprintf(outfile, ","); + fprintf(outfile, "%d}", (code[1] << 8) + code[2]); + if (*code == OP_MINUPTO) fprintf(outfile, "?"); + code += 3; + break; + + case OP_TYPEEXACT: + case OP_TYPEUPTO: + case OP_TYPEMINUPTO: + fprintf(outfile, " %s{", OP_names[code[3]]); + if (*code != OP_TYPEEXACT) fprintf(outfile, "0,"); + fprintf(outfile, "%d}", (code[1] << 8) + code[2]); + if (*code == OP_TYPEMINUPTO) fprintf(outfile, "?"); + code += 3; + break; + + case OP_NOT: + if (isprint(c = *(++code))) fprintf(outfile, " [^%c]", c); + else fprintf(outfile, " [^\\x%02x]", c); + break; + + case OP_NOTSTAR: + case OP_NOTMINSTAR: + case OP_NOTPLUS: + case OP_NOTMINPLUS: + case OP_NOTQUERY: + case OP_NOTMINQUERY: + if (isprint(c = code[1])) fprintf(outfile, " [^%c]", c); + else fprintf(outfile, " [^\\x%02x]", c); + fprintf(outfile, "%s", OP_names[*code++]); + break; + + case OP_NOTEXACT: + case OP_NOTUPTO: + case OP_NOTMINUPTO: + if (isprint(c = code[3])) fprintf(outfile, " [^%c]{", c); + else fprintf(outfile, " [^\\x%02x]{", c); + if (*code != OP_NOTEXACT) fprintf(outfile, ","); + fprintf(outfile, "%d}", (code[1] << 8) + code[2]); + if (*code == OP_NOTMINUPTO) fprintf(outfile, "?"); + code += 3; + break; + + case OP_REF: + fprintf(outfile, " \\%d", *(++code)); + code++; + goto CLASS_REF_REPEAT; + + case OP_CLASS: + { + int i, min, max; + code++; + fprintf(outfile, " ["); + + for (i = 0; i < 256; i++) + { + if ((code[i/8] & (1 << (i&7))) != 0) + { + int j; + for (j = i+1; j < 256; j++) + if ((code[j/8] & (1 << (j&7))) == 0) break; + if (i == '-' || i == ']') fprintf(outfile, "\\"); + if (isprint(i)) fprintf(outfile, "%c", i); else fprintf(outfile, "\\x%02x", i); + if (--j > i) + { + fprintf(outfile, "-"); + if (j == '-' || j == ']') fprintf(outfile, "\\"); + if (isprint(j)) fprintf(outfile, "%c", j); else fprintf(outfile, "\\x%02x", j); + } + i = j; + } + } + fprintf(outfile, "]"); + code += 32; + + CLASS_REF_REPEAT: + + switch(*code) + { + case OP_CRSTAR: + case OP_CRMINSTAR: + case OP_CRPLUS: + case OP_CRMINPLUS: + case OP_CRQUERY: + case OP_CRMINQUERY: + fprintf(outfile, "%s", OP_names[*code]); + break; + + case OP_CRRANGE: + case OP_CRMINRANGE: + min = (code[1] << 8) + code[2]; + max = (code[3] << 8) + code[4]; + if (max == 0) fprintf(outfile, "{%d,}", min); + else fprintf(outfile, "{%d,%d}", min, max); + if (*code == OP_CRMINRANGE) fprintf(outfile, "?"); + code += 4; + break; + + default: + code--; + } + } + break; + + /* Anything else is just a one-node item */ + + default: + fprintf(outfile, " %s", OP_names[*code]); + break; + } + + code++; + fprintf(outfile, "\n"); + } +} + + + +/* Character string printing function. A "normal" and a UTF-8 version. */ + +static void pchars(unsigned char *p, int length, int utf8) +{ +int c; +while (length-- > 0) + { + if (utf8) + { + int rc = utf82ord(p, &c); + if (rc > 0) + { + length -= rc - 1; + p += rc; + if (c < 256 && isprint(c)) fprintf(outfile, "%c", c); + else fprintf(outfile, "\\x{%02x}", c); + continue; + } + } + + /* Not UTF-8, or malformed UTF-8 */ + + if (isprint(c = *(p++))) fprintf(outfile, "%c", c); + else fprintf(outfile, "\\x%02x", c); + } +} + + + +/* Alternative malloc function, to test functionality and show the size of the +compiled re. */ + +static void *new_malloc(size_t size) +{ +gotten_store = size; +if (log_store) + fprintf(outfile, "Memory allocation (code space): %d\n", + (int)((int)size - offsetof(real_pcre, code[0]))); +return malloc(size); +} + + + + +/* Get one piece of information from the pcre_fullinfo() function */ + +static void new_info(pcre *re, pcre_extra *study, int option, void *ptr) +{ +int rc; +if ((rc = pcre_fullinfo(re, study, option, ptr)) < 0) + fprintf(outfile, "Error %d from pcre_fullinfo(%d)\n", rc, option); +} + + + + +/* Read lines from named file or stdin and write to named file or stdout; lines +consist of a regular expression, in delimiters and optionally followed by +options, followed by a set of test data, terminated by an empty line. */ + +int main(int argc, char **argv) +{ +FILE *infile = stdin; +int options = 0; +int study_options = 0; +int op = 1; +int timeit = 0; +int showinfo = 0; +int showstore = 0; +int posix = 0; +int debug = 0; +int done = 0; +unsigned char buffer[30000]; +unsigned char dbuffer[1024]; + +/* Static so that new_malloc can use it. */ + +outfile = stdout; + +/* Scan options */ + +while (argc > 1 && argv[op][0] == '-') + { + if (strcmp(argv[op], "-s") == 0 || strcmp(argv[op], "-m") == 0) + showstore = 1; + else if (strcmp(argv[op], "-t") == 0) timeit = 1; + else if (strcmp(argv[op], "-i") == 0) showinfo = 1; + else if (strcmp(argv[op], "-d") == 0) showinfo = debug = 1; + else if (strcmp(argv[op], "-p") == 0) posix = 1; + else + { + printf("*** Unknown option %s\n", argv[op]); + printf("Usage: pcretest [-d] [-i] [-p] [-s] [-t] [ []]\n"); + printf(" -d debug: show compiled code; implies -i\n" + " -i show information about compiled pattern\n" + " -p use POSIX interface\n" + " -s output store information\n" + " -t time compilation and execution\n"); + return 1; + } + op++; + argc--; + } + +/* Sort out the input and output files */ + +if (argc > 1) + { + infile = fopen(argv[op], "r"); + if (infile == NULL) + { + printf("** Failed to open %s\n", argv[op]); + return 1; + } + } + +if (argc > 2) + { + outfile = fopen(argv[op+1], "w"); + if (outfile == NULL) + { + printf("** Failed to open %s\n", argv[op+1]); + return 1; + } + } + +/* Set alternative malloc function */ + +pcre_malloc = new_malloc; + +/* Heading line, then prompt for first regex if stdin */ + +fprintf(outfile, "PCRE version %s\n\n", pcre_version()); + +/* Main loop */ + +while (!done) + { + pcre *re = NULL; + pcre_extra *extra = NULL; + +#if !defined NOPOSIX /* There are still compilers that require no indent */ + regex_t preg; + int do_posix = 0; +#endif + + const char *error; + unsigned char *p, *pp, *ppp; + unsigned const char *tables = NULL; + int do_study = 0; + int do_debug = debug; + int do_G = 0; + int do_g = 0; + int do_showinfo = showinfo; + int do_showrest = 0; + int utf8 = 0; + int erroroffset, len, delimiter; + + if (infile == stdin) printf(" re> "); + if (fgets((char *)buffer, sizeof(buffer), infile) == NULL) break; + if (infile != stdin) fprintf(outfile, "%s", (char *)buffer); + + p = buffer; + while (isspace(*p)) p++; + if (*p == 0) continue; + + /* Get the delimiter and seek the end of the pattern; if is isn't + complete, read more. */ + + delimiter = *p++; + + if (isalnum(delimiter) || delimiter == '\\') + { + fprintf(outfile, "** Delimiter must not be alphameric or \\\n"); + goto SKIP_DATA; + } + + pp = p; + + for(;;) + { + while (*pp != 0) + { + if (*pp == '\\' && pp[1] != 0) pp++; + else if (*pp == delimiter) break; + pp++; + } + if (*pp != 0) break; + + len = sizeof(buffer) - (pp - buffer); + if (len < 256) + { + fprintf(outfile, "** Expression too long - missing delimiter?\n"); + goto SKIP_DATA; + } + + if (infile == stdin) printf(" > "); + if (fgets((char *)pp, len, infile) == NULL) + { + fprintf(outfile, "** Unexpected EOF\n"); + done = 1; + goto CONTINUE; + } + if (infile != stdin) fprintf(outfile, "%s", (char *)pp); + } + + /* If the first character after the delimiter is backslash, make + the pattern end with backslash. This is purely to provide a way + of testing for the error message when a pattern ends with backslash. */ + + if (pp[1] == '\\') *pp++ = '\\'; + + /* Terminate the pattern at the delimiter */ + + *pp++ = 0; + + /* Look for options after final delimiter */ + + options = 0; + study_options = 0; + log_store = showstore; /* default from command line */ + + while (*pp != 0) + { + switch (*pp++) + { + case 'g': do_g = 1; break; + case 'i': options |= PCRE_CASELESS; break; + case 'm': options |= PCRE_MULTILINE; break; + case 's': options |= PCRE_DOTALL; break; + case 'x': options |= PCRE_EXTENDED; break; + + case '+': do_showrest = 1; break; + case 'A': options |= PCRE_ANCHORED; break; + case 'D': do_debug = do_showinfo = 1; break; + case 'E': options |= PCRE_DOLLAR_ENDONLY; break; + case 'G': do_G = 1; break; + case 'I': do_showinfo = 1; break; + case 'M': log_store = 1; break; + +#if !defined NOPOSIX + case 'P': do_posix = 1; break; +#endif + + case 'S': do_study = 1; break; + case 'U': options |= PCRE_UNGREEDY; break; + case 'X': options |= PCRE_EXTRA; break; + case '8': options |= PCRE_UTF8; utf8 = 1; break; + + case 'L': + ppp = pp; + while (*ppp != '\n' && *ppp != ' ') ppp++; + *ppp = 0; + if (setlocale(LC_CTYPE, (const char *)pp) == NULL) + { + fprintf(outfile, "** Failed to set locale \"%s\"\n", pp); + goto SKIP_DATA; + } + tables = pcre_maketables(); + pp = ppp; + break; + + case '\n': case ' ': break; + default: + fprintf(outfile, "** Unknown option '%c'\n", pp[-1]); + goto SKIP_DATA; + } + } + + /* Handle compiling via the POSIX interface, which doesn't support the + timing, showing, or debugging options, nor the ability to pass over + local character tables. */ + +#if !defined NOPOSIX + if (posix || do_posix) + { + int rc; + int cflags = 0; + if ((options & PCRE_CASELESS) != 0) cflags |= REG_ICASE; + if ((options & PCRE_MULTILINE) != 0) cflags |= REG_NEWLINE; + rc = regcomp(&preg, (char *)p, cflags); + + /* Compilation failed; go back for another re, skipping to blank line + if non-interactive. */ + + if (rc != 0) + { + (void)regerror(rc, &preg, (char *)buffer, sizeof(buffer)); + fprintf(outfile, "Failed: POSIX code %d: %s\n", rc, buffer); + goto SKIP_DATA; + } + } + + /* Handle compiling via the native interface */ + + else +#endif /* !defined NOPOSIX */ + + { + if (timeit) + { + register int i; + clock_t time_taken; + clock_t start_time = clock(); + for (i = 0; i < LOOPREPEAT; i++) + { + re = pcre_compile((char *)p, options, &error, &erroroffset, tables); + if (re != NULL) free(re); + } + time_taken = clock() - start_time; + fprintf(outfile, "Compile time %.3f milliseconds\n", + ((double)time_taken * 1000.0) / + ((double)LOOPREPEAT * (double)CLOCKS_PER_SEC)); + } + + re = pcre_compile((char *)p, options, &error, &erroroffset, tables); + + /* Compilation failed; go back for another re, skipping to blank line + if non-interactive. */ + + if (re == NULL) + { + fprintf(outfile, "Failed: %s at offset %d\n", error, erroroffset); + SKIP_DATA: + if (infile != stdin) + { + for (;;) + { + if (fgets((char *)buffer, sizeof(buffer), infile) == NULL) + { + done = 1; + goto CONTINUE; + } + len = (int)strlen((char *)buffer); + while (len > 0 && isspace(buffer[len-1])) len--; + if (len == 0) break; + } + fprintf(outfile, "\n"); + } + goto CONTINUE; + } + + /* Compilation succeeded; print data if required. There are now two + info-returning functions. The old one has a limited interface and + returns only limited data. Check that it agrees with the newer one. */ + + if (do_showinfo) + { + int old_first_char, old_options, old_count; + int count, backrefmax, first_char, need_char; + size_t size; + + if (do_debug) print_internals(re); + + new_info(re, NULL, PCRE_INFO_OPTIONS, &options); + new_info(re, NULL, PCRE_INFO_SIZE, &size); + new_info(re, NULL, PCRE_INFO_CAPTURECOUNT, &count); + new_info(re, NULL, PCRE_INFO_BACKREFMAX, &backrefmax); + new_info(re, NULL, PCRE_INFO_FIRSTCHAR, &first_char); + new_info(re, NULL, PCRE_INFO_LASTLITERAL, &need_char); + + old_count = pcre_info(re, &old_options, &old_first_char); + if (count < 0) fprintf(outfile, + "Error %d from pcre_info()\n", count); + else + { + if (old_count != count) fprintf(outfile, + "Count disagreement: pcre_fullinfo=%d pcre_info=%d\n", count, + old_count); + + if (old_first_char != first_char) fprintf(outfile, + "First char disagreement: pcre_fullinfo=%d pcre_info=%d\n", + first_char, old_first_char); + + if (old_options != options) fprintf(outfile, + "Options disagreement: pcre_fullinfo=%d pcre_info=%d\n", options, + old_options); + } + + if (size != gotten_store) fprintf(outfile, + "Size disagreement: pcre_fullinfo=%d call to malloc for %d\n", + size, gotten_store); + + fprintf(outfile, "Capturing subpattern count = %d\n", count); + if (backrefmax > 0) + fprintf(outfile, "Max back reference = %d\n", backrefmax); + if (options == 0) fprintf(outfile, "No options\n"); + else fprintf(outfile, "Options:%s%s%s%s%s%s%s%s%s\n", + ((options & PCRE_ANCHORED) != 0)? " anchored" : "", + ((options & PCRE_CASELESS) != 0)? " caseless" : "", + ((options & PCRE_EXTENDED) != 0)? " extended" : "", + ((options & PCRE_MULTILINE) != 0)? " multiline" : "", + ((options & PCRE_DOTALL) != 0)? " dotall" : "", + ((options & PCRE_DOLLAR_ENDONLY) != 0)? " dollar_endonly" : "", + ((options & PCRE_EXTRA) != 0)? " extra" : "", + ((options & PCRE_UNGREEDY) != 0)? " ungreedy" : "", + ((options & PCRE_UTF8) != 0)? " utf8" : ""); + + if (((((real_pcre *)re)->options) & PCRE_ICHANGED) != 0) + fprintf(outfile, "Case state changes\n"); + + if (first_char == -1) + { + fprintf(outfile, "First char at start or follows \\n\n"); + } + else if (first_char < 0) + { + fprintf(outfile, "No first char\n"); + } + else + { + if (isprint(first_char)) + fprintf(outfile, "First char = \'%c\'\n", first_char); + else + fprintf(outfile, "First char = %d\n", first_char); + } + + if (need_char < 0) + { + fprintf(outfile, "No need char\n"); + } + else + { + if (isprint(need_char)) + fprintf(outfile, "Need char = \'%c\'\n", need_char); + else + fprintf(outfile, "Need char = %d\n", need_char); + } + } + + /* If /S was present, study the regexp to generate additional info to + help with the matching. */ + + if (do_study) + { + if (timeit) + { + register int i; + clock_t time_taken; + clock_t start_time = clock(); + for (i = 0; i < LOOPREPEAT; i++) + extra = pcre_study(re, study_options, &error); + time_taken = clock() - start_time; + if (extra != NULL) free(extra); + fprintf(outfile, " Study time %.3f milliseconds\n", + ((double)time_taken * 1000.0)/ + ((double)LOOPREPEAT * (double)CLOCKS_PER_SEC)); + } + + extra = pcre_study(re, study_options, &error); + if (error != NULL) + fprintf(outfile, "Failed to study: %s\n", error); + else if (extra == NULL) + fprintf(outfile, "Study returned NULL\n"); + + else if (do_showinfo) + { + uschar *start_bits = NULL; + new_info(re, extra, PCRE_INFO_FIRSTTABLE, &start_bits); + if (start_bits == NULL) + fprintf(outfile, "No starting character set\n"); + else + { + int i; + int c = 24; + fprintf(outfile, "Starting character set: "); + for (i = 0; i < 256; i++) + { + if ((start_bits[i/8] & (1<<(i%8))) != 0) + { + if (c > 75) + { + fprintf(outfile, "\n "); + c = 2; + } + if (isprint(i) && i != ' ') + { + fprintf(outfile, "%c ", i); + c += 2; + } + else + { + fprintf(outfile, "\\x%02x ", i); + c += 5; + } + } + } + fprintf(outfile, "\n"); + } + } + } + } + + /* Read data lines and test them */ + + for (;;) + { + unsigned char *q; + unsigned char *bptr = dbuffer; + int count, c; + int copystrings = 0; + int getstrings = 0; + int getlist = 0; + int gmatched = 0; + int start_offset = 0; + int g_notempty = 0; + int offsets[45]; + int size_offsets = sizeof(offsets)/sizeof(int); + + options = 0; + + if (infile == stdin) printf("data> "); + if (fgets((char *)buffer, sizeof(buffer), infile) == NULL) + { + done = 1; + goto CONTINUE; + } + if (infile != stdin) fprintf(outfile, "%s", (char *)buffer); + + len = (int)strlen((char *)buffer); + while (len > 0 && isspace(buffer[len-1])) len--; + buffer[len] = 0; + if (len == 0) break; + + p = buffer; + while (isspace(*p)) p++; + + q = dbuffer; + while ((c = *p++) != 0) + { + int i = 0; + int n = 0; + if (c == '\\') switch ((c = *p++)) + { + case 'a': c = 7; break; + case 'b': c = '\b'; break; + case 'e': c = 27; break; + case 'f': c = '\f'; break; + case 'n': c = '\n'; break; + case 'r': c = '\r'; break; + case 't': c = '\t'; break; + case 'v': c = '\v'; break; + + case '0': case '1': case '2': case '3': + case '4': case '5': case '6': case '7': + c -= '0'; + while (i++ < 2 && isdigit(*p) && *p != '8' && *p != '9') + c = c * 8 + *p++ - '0'; + break; + + case 'x': + + /* Handle \x{..} specially - new Perl thing for utf8 */ + + if (*p == '{') + { + unsigned char *pt = p; + c = 0; + while (isxdigit(*(++pt))) + c = c * 16 + tolower(*pt) - ((isdigit(*pt))? '0' : 'W'); + if (*pt == '}') + { + unsigned char buffer[8]; + int ii, utn; + utn = ord2utf8(c, buffer); + for (ii = 0; ii < utn - 1; ii++) *q++ = buffer[ii]; + c = buffer[ii]; /* Last byte */ + p = pt + 1; + break; + } + /* Not correct form; fall through */ + } + + /* Ordinary \x */ + + c = 0; + while (i++ < 2 && isxdigit(*p)) + { + c = c * 16 + tolower(*p) - ((isdigit(*p))? '0' : 'W'); + p++; + } + break; + + case 0: /* Allows for an empty line */ + p--; + continue; + + case 'A': /* Option setting */ + options |= PCRE_ANCHORED; + continue; + + case 'B': + options |= PCRE_NOTBOL; + continue; + + case 'C': + while(isdigit(*p)) n = n * 10 + *p++ - '0'; + copystrings |= 1 << n; + continue; + + case 'G': + while(isdigit(*p)) n = n * 10 + *p++ - '0'; + getstrings |= 1 << n; + continue; + + case 'L': + getlist = 1; + continue; + + case 'N': + options |= PCRE_NOTEMPTY; + continue; + + case 'O': + while(isdigit(*p)) n = n * 10 + *p++ - '0'; + if (n <= (int)(sizeof(offsets)/sizeof(int))) size_offsets = n; + continue; + + case 'Z': + options |= PCRE_NOTEOL; + continue; + } + *q++ = c; + } + *q = 0; + len = q - dbuffer; + + /* Handle matching via the POSIX interface, which does not + support timing. */ + +#if !defined NOPOSIX + if (posix || do_posix) + { + int rc; + int eflags = 0; + regmatch_t pmatch[sizeof(offsets)/sizeof(int)]; + if ((options & PCRE_NOTBOL) != 0) eflags |= REG_NOTBOL; + if ((options & PCRE_NOTEOL) != 0) eflags |= REG_NOTEOL; + + rc = regexec(&preg, (const char *)bptr, size_offsets, pmatch, eflags); + + if (rc != 0) + { + (void)regerror(rc, &preg, (char *)buffer, sizeof(buffer)); + fprintf(outfile, "No match: POSIX code %d: %s\n", rc, buffer); + } + else + { + size_t i; + for (i = 0; i < size_offsets; i++) + { + if (pmatch[i].rm_so >= 0) + { + fprintf(outfile, "%2d: ", (int)i); + pchars(dbuffer + pmatch[i].rm_so, + pmatch[i].rm_eo - pmatch[i].rm_so, utf8); + fprintf(outfile, "\n"); + if (i == 0 && do_showrest) + { + fprintf(outfile, " 0+ "); + pchars(dbuffer + pmatch[i].rm_eo, len - pmatch[i].rm_eo, utf8); + fprintf(outfile, "\n"); + } + } + } + } + } + + /* Handle matching via the native interface - repeats for /g and /G */ + + else +#endif /* !defined NOPOSIX */ + + for (;; gmatched++) /* Loop for /g or /G */ + { + if (timeit) + { + register int i; + clock_t time_taken; + clock_t start_time = clock(); + for (i = 0; i < LOOPREPEAT; i++) + count = pcre_exec(re, extra, (char *)bptr, len, + start_offset, options | g_notempty, offsets, size_offsets); + time_taken = clock() - start_time; + fprintf(outfile, "Execute time %.3f milliseconds\n", + ((double)time_taken * 1000.0)/ + ((double)LOOPREPEAT * (double)CLOCKS_PER_SEC)); + } + + count = pcre_exec(re, extra, (char *)bptr, len, + start_offset, options | g_notempty, offsets, size_offsets); + + if (count == 0) + { + fprintf(outfile, "Matched, but too many substrings\n"); + count = size_offsets/3; + } + + /* Matched */ + + if (count >= 0) + { + int i; + for (i = 0; i < count * 2; i += 2) + { + if (offsets[i] < 0) + fprintf(outfile, "%2d: \n", i/2); + else + { + fprintf(outfile, "%2d: ", i/2); + pchars(bptr + offsets[i], offsets[i+1] - offsets[i], utf8); + fprintf(outfile, "\n"); + if (i == 0) + { + if (do_showrest) + { + fprintf(outfile, " 0+ "); + pchars(bptr + offsets[i+1], len - offsets[i+1], utf8); + fprintf(outfile, "\n"); + } + } + } + } + + for (i = 0; i < 32; i++) + { + if ((copystrings & (1 << i)) != 0) + { + char copybuffer[16]; + int rc = pcre_copy_substring((char *)bptr, offsets, count, + i, copybuffer, sizeof(copybuffer)); + if (rc < 0) + fprintf(outfile, "copy substring %d failed %d\n", i, rc); + else + fprintf(outfile, "%2dC %s (%d)\n", i, copybuffer, rc); + } + } + + for (i = 0; i < 32; i++) + { + if ((getstrings & (1 << i)) != 0) + { + const char *substring; + int rc = pcre_get_substring((char *)bptr, offsets, count, + i, &substring); + if (rc < 0) + fprintf(outfile, "get substring %d failed %d\n", i, rc); + else + { + fprintf(outfile, "%2dG %s (%d)\n", i, substring, rc); + /* free((void *)substring); */ + pcre_free_substring(substring); + } + } + } + + if (getlist) + { + const char **stringlist; + int rc = pcre_get_substring_list((char *)bptr, offsets, count, + &stringlist); + if (rc < 0) + fprintf(outfile, "get substring list failed %d\n", rc); + else + { + for (i = 0; i < count; i++) + fprintf(outfile, "%2dL %s\n", i, stringlist[i]); + if (stringlist[i] != NULL) + fprintf(outfile, "string list not terminated by NULL\n"); + /* free((void *)stringlist); */ + pcre_free_substring_list(stringlist); + } + } + } + + /* Failed to match. If this is a /g or /G loop and we previously set + g_notempty after a null match, this is not necessarily the end. + We want to advance the start offset, and continue. Fudge the offset + values to achieve this. We won't be at the end of the string - that + was checked before setting g_notempty. */ + + else + { + if (g_notempty != 0) + { + offsets[0] = start_offset; + offsets[1] = start_offset + 1; + } + else + { + if (gmatched == 0) /* Error if no previous matches */ + { + if (count == -1) fprintf(outfile, "No match\n"); + else fprintf(outfile, "Error %d\n", count); + } + break; /* Out of the /g loop */ + } + } + + /* If not /g or /G we are done */ + + if (!do_g && !do_G) break; + + /* If we have matched an empty string, first check to see if we are at + the end of the subject. If so, the /g loop is over. Otherwise, mimic + what Perl's /g options does. This turns out to be rather cunning. First + we set PCRE_NOTEMPTY and PCRE_ANCHORED and try the match again at the + same point. If this fails (picked up above) we advance to the next + character. */ + + g_notempty = 0; + if (offsets[0] == offsets[1]) + { + if (offsets[0] == len) break; + g_notempty = PCRE_NOTEMPTY | PCRE_ANCHORED; + } + + /* For /g, update the start offset, leaving the rest alone */ + + if (do_g) start_offset = offsets[1]; + + /* For /G, update the pointer and length */ + + else + { + bptr += offsets[1]; + len -= offsets[1]; + } + } /* End of loop for /g and /G */ + } /* End of loop for data lines */ + + CONTINUE: + +#if !defined NOPOSIX + if (posix || do_posix) regfree(&preg); +#endif + + if (re != NULL) free(re); + if (extra != NULL) free(extra); + if (tables != NULL) + { + free((void *)tables); + setlocale(LC_CTYPE, "C"); + } + } + +fprintf(outfile, "\n"); +return 0; +} + +/* End */ diff --git a/pcre/study.c b/pcre/study.c new file mode 100644 index 00000000..676db946 --- /dev/null +++ b/pcre/study.c @@ -0,0 +1,397 @@ +/************************************************* +* Perl-Compatible Regular Expressions * +*************************************************/ + +/* +This is a library of functions to support regular expressions whose syntax +and semantics are as close as possible to those of the Perl 5 language. See +the file Tech.Notes for some information on the internals. + +Written by: Philip Hazel + + Copyright (c) 1997-2000 University of Cambridge + +----------------------------------------------------------------------------- +Permission is granted to anyone to use this software for any purpose on any +computer system, and to redistribute it freely, subject to the following +restrictions: + +1. This software is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. + +2. The origin of this software must not be misrepresented, either by + explicit claim or by omission. + +3. Altered versions must be plainly marked as such, and must not be + misrepresented as being the original software. + +4. If PCRE is embedded in any software that is released under the GNU + General Purpose Licence (GPL), then the terms of that licence shall + supersede any condition above with which it is incompatible. +----------------------------------------------------------------------------- +*/ + + +/* Include the internals header, which itself includes Standard C headers plus +the external pcre header. */ + +#include "internal.h" + + + +/************************************************* +* Set a bit and maybe its alternate case * +*************************************************/ + +/* Given a character, set its bit in the table, and also the bit for the other +version of a letter if we are caseless. + +Arguments: + start_bits points to the bit map + c is the character + caseless the caseless flag + cd the block with char table pointers + +Returns: nothing +*/ + +static void +set_bit(uschar *start_bits, int c, BOOL caseless, compile_data *cd) +{ +start_bits[c/8] |= (1 << (c&7)); +if (caseless && (cd->ctypes[c] & ctype_letter) != 0) + start_bits[cd->fcc[c]/8] |= (1 << (cd->fcc[c]&7)); +} + + + +/************************************************* +* Create bitmap of starting chars * +*************************************************/ + +/* This function scans a compiled unanchored expression and attempts to build a +bitmap of the set of initial characters. If it can't, it returns FALSE. As time +goes by, we may be able to get more clever at doing this. + +Arguments: + code points to an expression + start_bits points to a 32-byte table, initialized to 0 + caseless the current state of the caseless flag + cd the block with char table pointers + +Returns: TRUE if table built, FALSE otherwise +*/ + +static BOOL +set_start_bits(const uschar *code, uschar *start_bits, BOOL caseless, + compile_data *cd) +{ +register int c; + +/* This next statement and the later reference to dummy are here in order to +trick the optimizer of the IBM C compiler for OS/2 into generating correct +code. Apparently IBM isn't going to fix the problem, and we would rather not +disable optimization (in this module it actually makes a big difference, and +the pcre module can use all the optimization it can get). */ + +volatile int dummy; + +do + { + const uschar *tcode = code + 3; + BOOL try_next = TRUE; + + while (try_next) + { + try_next = FALSE; + + /* If a branch starts with a bracket or a positive lookahead assertion, + recurse to set bits from within them. That's all for this branch. */ + + if ((int)*tcode >= OP_BRA || *tcode == OP_ASSERT) + { + if (!set_start_bits(tcode, start_bits, caseless, cd)) + return FALSE; + } + + else switch(*tcode) + { + default: + return FALSE; + + /* Skip over lookbehind and negative lookahead assertions */ + + case OP_ASSERT_NOT: + case OP_ASSERTBACK: + case OP_ASSERTBACK_NOT: + try_next = TRUE; + do tcode += (tcode[1] << 8) + tcode[2]; while (*tcode == OP_ALT); + tcode += 3; + break; + + /* Skip over an option setting, changing the caseless flag */ + + case OP_OPT: + caseless = (tcode[1] & PCRE_CASELESS) != 0; + tcode += 2; + try_next = TRUE; + break; + + /* BRAZERO does the bracket, but carries on. */ + + case OP_BRAZERO: + case OP_BRAMINZERO: + if (!set_start_bits(++tcode, start_bits, caseless, cd)) + return FALSE; + dummy = 1; + do tcode += (tcode[1] << 8) + tcode[2]; while (*tcode == OP_ALT); + tcode += 3; + try_next = TRUE; + break; + + /* Single-char * or ? sets the bit and tries the next item */ + + case OP_STAR: + case OP_MINSTAR: + case OP_QUERY: + case OP_MINQUERY: + set_bit(start_bits, tcode[1], caseless, cd); + tcode += 2; + try_next = TRUE; + break; + + /* Single-char upto sets the bit and tries the next */ + + case OP_UPTO: + case OP_MINUPTO: + set_bit(start_bits, tcode[3], caseless, cd); + tcode += 4; + try_next = TRUE; + break; + + /* At least one single char sets the bit and stops */ + + case OP_EXACT: /* Fall through */ + tcode++; + + case OP_CHARS: /* Fall through */ + tcode++; + + case OP_PLUS: + case OP_MINPLUS: + set_bit(start_bits, tcode[1], caseless, cd); + break; + + /* Single character type sets the bits and stops */ + + case OP_NOT_DIGIT: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_digit]; + break; + + case OP_DIGIT: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_digit]; + break; + + case OP_NOT_WHITESPACE: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_space]; + break; + + case OP_WHITESPACE: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_space]; + break; + + case OP_NOT_WORDCHAR: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_word]; + break; + + case OP_WORDCHAR: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_word]; + break; + + /* One or more character type fudges the pointer and restarts, knowing + it will hit a single character type and stop there. */ + + case OP_TYPEPLUS: + case OP_TYPEMINPLUS: + tcode++; + try_next = TRUE; + break; + + case OP_TYPEEXACT: + tcode += 3; + try_next = TRUE; + break; + + /* Zero or more repeats of character types set the bits and then + try again. */ + + case OP_TYPEUPTO: + case OP_TYPEMINUPTO: + tcode += 2; /* Fall through */ + + case OP_TYPESTAR: + case OP_TYPEMINSTAR: + case OP_TYPEQUERY: + case OP_TYPEMINQUERY: + switch(tcode[1]) + { + case OP_NOT_DIGIT: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_digit]; + break; + + case OP_DIGIT: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_digit]; + break; + + case OP_NOT_WHITESPACE: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_space]; + break; + + case OP_WHITESPACE: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_space]; + break; + + case OP_NOT_WORDCHAR: + for (c = 0; c < 32; c++) + start_bits[c] |= ~cd->cbits[c+cbit_word]; + break; + + case OP_WORDCHAR: + for (c = 0; c < 32; c++) + start_bits[c] |= cd->cbits[c+cbit_word]; + break; + } + + tcode += 2; + try_next = TRUE; + break; + + /* Character class: set the bits and either carry on or not, + according to the repeat count. */ + + case OP_CLASS: + { + tcode++; + for (c = 0; c < 32; c++) start_bits[c] |= tcode[c]; + tcode += 32; + switch (*tcode) + { + case OP_CRSTAR: + case OP_CRMINSTAR: + case OP_CRQUERY: + case OP_CRMINQUERY: + tcode++; + try_next = TRUE; + break; + + case OP_CRRANGE: + case OP_CRMINRANGE: + if (((tcode[1] << 8) + tcode[2]) == 0) + { + tcode += 5; + try_next = TRUE; + } + break; + } + } + break; /* End of class handling */ + + } /* End of switch */ + } /* End of try_next loop */ + + code += (code[1] << 8) + code[2]; /* Advance to next branch */ + } +while (*code == OP_ALT); +return TRUE; +} + + + +/************************************************* +* Study a compiled expression * +*************************************************/ + +/* This function is handed a compiled expression that it must study to produce +information that will speed up the matching. It returns a pcre_extra block +which then gets handed back to pcre_exec(). + +Arguments: + re points to the compiled expression + options contains option bits + errorptr points to where to place error messages; + set NULL unless error + +Returns: pointer to a pcre_extra block, + NULL on error or if no optimization possible +*/ + +pcre_extra * +pcre_study(const pcre *external_re, int options, const char **errorptr) +{ +uschar start_bits[32]; +real_pcre_extra *extra; +const real_pcre *re = (const real_pcre *)external_re; +compile_data compile_block; + +*errorptr = NULL; + +if (re == NULL || re->magic_number != MAGIC_NUMBER) + { + *errorptr = "argument is not a compiled regular expression"; + return NULL; + } + +if ((options & ~PUBLIC_STUDY_OPTIONS) != 0) + { + *errorptr = "unknown or incorrect option bit(s) set"; + return NULL; + } + +/* For an anchored pattern, or an unchored pattern that has a first char, or a +multiline pattern that matches only at "line starts", no further processing at +present. */ + +if ((re->options & (PCRE_ANCHORED|PCRE_FIRSTSET|PCRE_STARTLINE)) != 0) + return NULL; + +/* Set the character tables in the block which is passed around */ + +compile_block.lcc = re->tables + lcc_offset; +compile_block.fcc = re->tables + fcc_offset; +compile_block.cbits = re->tables + cbits_offset; +compile_block.ctypes = re->tables + ctypes_offset; + +/* See if we can find a fixed set of initial characters for the pattern. */ + +memset(start_bits, 0, 32 * sizeof(uschar)); +if (!set_start_bits(re->code, start_bits, (re->options & PCRE_CASELESS) != 0, + &compile_block)) return NULL; + +/* Get an "extra" block and put the information therein. */ + +extra = (real_pcre_extra *)(pcre_malloc)(sizeof(real_pcre_extra)); + +if (extra == NULL) + { + *errorptr = "failed to get memory"; + return NULL; + } + +extra->options = PCRE_STUDY_MAPPED; +memcpy(extra->start_bits, start_bits, sizeof(start_bits)); + +return (pcre_extra *)extra; +} + +/* End of study.c */ diff --git a/pcre/vc_dftables.dsp b/pcre/vc_dftables.dsp new file mode 100755 index 00000000..3a579a6b --- /dev/null +++ b/pcre/vc_dftables.dsp @@ -0,0 +1,296 @@ +# Microsoft Developer Studio Project File - Name="vc_dftables" - Package Owner=<4> +# Microsoft Developer Studio Generated Build File, Format Version 5.00 +# ** DO NOT EDIT ** + +# TARGTYPE "Win32 (x86) Console Application" 0x0103 + +CFG=vc_dftables - Win32 Debug with Win32 threads +!MESSAGE This is not a valid makefile. To build this project using NMAKE, +!MESSAGE use the Export Makefile command and run +!MESSAGE +!MESSAGE NMAKE /f "vc_dftables.mak". +!MESSAGE +!MESSAGE You can specify a configuration when running NMAKE +!MESSAGE by defining the macro CFG on the command line. For example: +!MESSAGE +!MESSAGE NMAKE /f "vc_dftables.mak"\ + CFG="vc_dftables - Win32 Debug with Win32 threads" +!MESSAGE +!MESSAGE Possible choices for configuration are: +!MESSAGE +!MESSAGE "vc_dftables - Win32 Release" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_dftables - Win32 Debug" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_dftables - Win32 Debug with Win32 threads" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_dftables - Win32 Release with Win32 threads" (based on\ + "Win32 (x86) Console Application") +!MESSAGE + +# Begin Project +# PROP Scc_ProjName "" +# PROP Scc_LocalPath "" +CPP=cl.exe +RSC=rc.exe + +!IF "$(CFG)" == "vc_dftables - Win32 Release" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 0 +# PROP BASE Output_Dir "Release" +# PROP BASE Intermediate_Dir "Release" +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 0 +# PROP Output_Dir "vc_dftables" +# PROP Intermediate_Dir "vc_dftables" +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /GX /O2 /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /W3 /GX /O2 /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "NDEBUG" +# ADD RSC /l 0x809 /d "NDEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386 +# Begin Special Build Tool +OutDir=.\vc_dftables +SOURCE=$(InputPath) +PostBuild_Desc=Running program to generate chartables.c +PostBuild_Cmds=$(OutDir)\vc_dftables.exe >$(OutDir)\..\chartables.c +# End Special Build Tool + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 1 +# PROP BASE Output_Dir "Debug" +# PROP BASE Intermediate_Dir "Debug" +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 1 +# PROP Output_Dir "vc_dftables_dbg" +# PROP Intermediate_Dir "vc_dftables_dbg" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "_DEBUG" +# ADD RSC /l 0x809 /d "_DEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# Begin Special Build Tool +OutDir=.\vc_dftables_dbg +SOURCE=$(InputPath) +PostBuild_Desc=Running program to generate chartables.c +PostBuild_Cmds=$(OutDir)\vc_dftables.exe >$(OutDir)\..\chartables.c +# End Special Build Tool + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 1 +# PROP BASE Output_Dir "vc_dftab" +# PROP BASE Intermediate_Dir "vc_dftab" +# PROP BASE Ignore_Export_Lib 0 +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 1 +# PROP Output_Dir "vc_dftables_dbg" +# PROP Intermediate_Dir "vc_dftables_dbg" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "_DEBUG" +# ADD RSC /l 0x809 /d "_DEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# Begin Special Build Tool +OutDir=.\vc_dftables_dbg +SOURCE=$(InputPath) +PostBuild_Desc=Running program to generate chartables.c +PostBuild_Cmds=$(OutDir)\vc_dftables.exe >$(OutDir)\..\chartables.c +# End Special Build Tool + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Release with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 0 +# PROP BASE Output_Dir "vc_dfta0" +# PROP BASE Intermediate_Dir "vc_dfta0" +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 0 +# PROP Output_Dir "vc_dftables" +# PROP Intermediate_Dir "vc_dftables" +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /GX /O2 /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /W3 /GX /O2 /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "NDEBUG" +# ADD RSC /l 0x809 /d "NDEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386 +# Begin Special Build Tool +OutDir=.\vc_dftables +SOURCE=$(InputPath) +PostBuild_Desc=Running program to generate chartables.c +PostBuild_Cmds=$(OutDir)\vc_dftables.exe >$(OutDir)\..\chartables.c +# End Special Build Tool + +!ENDIF + +# Begin Target + +# Name "vc_dftables - Win32 Release" +# Name "vc_dftables - Win32 Debug" +# Name "vc_dftables - Win32 Debug with Win32 threads" +# Name "vc_dftables - Win32 Release with Win32 threads" +# Begin Group "File Copy" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=..\vc_config_pthreads.h + +!IF "$(CFG)" == "vc_dftables - Win32 Release" + +# PROP Ignore_Default_Tool 1 +# Begin Custom Build - Copying vc_config_pthreads.h +WkspDir=. +InputPath=..\vc_config_pthreads.h + +"$(WkspDir)\..\config.h" : $(SOURCE) "$(INTDIR)" "$(OUTDIR)" + copy "$(InputPath)" "$(WkspDir)\..\config.h" + +# End Custom Build + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug" + +# PROP Ignore_Default_Tool 1 +# Begin Custom Build - Copying vc_config_pthreads.h +WkspDir=. +InputPath=..\vc_config_pthreads.h + +"$(WkspDir)\..\config.h" : $(SOURCE) "$(INTDIR)" "$(OUTDIR)" + copy "$(InputPath)" "$(WkspDir)\..\config.h" + +# End Custom Build + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug with Win32 threads" + +# PROP Exclude_From_Build 1 +# PROP Ignore_Default_Tool 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Release with Win32 threads" + +# PROP Exclude_From_Build 1 +# PROP Ignore_Default_Tool 1 + +!ENDIF + +# End Source File +# Begin Source File + +SOURCE=..\vc_config_winthreads.h + +!IF "$(CFG)" == "vc_dftables - Win32 Release" + +# PROP Exclude_From_Build 1 +# PROP Ignore_Default_Tool 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug" + +# PROP Exclude_From_Build 1 +# PROP Ignore_Default_Tool 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug with Win32 threads" + +# PROP Ignore_Default_Tool 1 +# Begin Custom Build - Copying vc_config_winthreads.h +WkspDir=. +InputPath=..\vc_config_winthreads.h + +"$(WkspDir)\..\config.h" : $(SOURCE) "$(INTDIR)" "$(OUTDIR)" + copy "$(InputPath)" "$(WkspDir)\..\config.h" + +# End Custom Build + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Release with Win32 threads" + +# PROP Ignore_Default_Tool 1 +# Begin Custom Build - Copying vc_config_winthreads.h +WkspDir=. +InputPath=..\vc_config_winthreads.h + +"$(WkspDir)\..\config.h" : $(SOURCE) "$(INTDIR)" "$(OUTDIR)" + copy "$(InputPath)" "$(WkspDir)\..\config.h" + +# End Custom Build + +!ENDIF + +# End Source File +# End Group +# Begin Source File + +SOURCE=..\config.h +# End Source File +# Begin Source File + +SOURCE=.\config.h +# End Source File +# Begin Source File + +SOURCE=.\dftables.c +# End Source File +# Begin Source File + +SOURCE=.\internal.h +# End Source File +# Begin Source File + +SOURCE=.\maketables.c + +!IF "$(CFG)" == "vc_dftables - Win32 Release" + +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug" + +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Debug with Win32 threads" + +# PROP BASE Exclude_From_Build 1 +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_dftables - Win32 Release with Win32 threads" + +# PROP BASE Exclude_From_Build 1 +# PROP Exclude_From_Build 1 + +!ENDIF + +# End Source File +# Begin Source File + +SOURCE=.\pcre.h +# End Source File +# End Target +# End Project diff --git a/pcrs.c b/pcrs.c index cd0c94a8..45a471b9 100644 --- a/pcrs.c +++ b/pcrs.c @@ -1,127 +1,236 @@ -const char pcrs_rcs[] = "$Id: pcrs.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; +const char pcrs_rcs[] = "$Id: pcrs.c,v 1.18 2002/03/08 14:17:14 oes Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/pcrs.c,v $ + * File : $Source: /cvsroot/ijbswa/current/pcrs.c,v $ * - * Purpose : This is the pre-pre-alpha realease of libpcrs. It is only - * published at this (ugly) stage of development, because it is - * needed for a new feature in JunkBuster. + * Purpose : pcrs is a supplement to the pcre library by Philip Hazel + * and adds Perl-style substitution. That + * is, it mimics Perl's 's' operator. See pcrs(3) for details. * - * Apart from the code being quite a mess, no inconsistencies, - * memory leaks or functional bugs **should** be present. * - * While you ROTFL at the code, you could just as well mail me - * (andreas@oesterhelt.org) with advice for improvement. + * Copyright : Written and Copyright (C) 2000, 2001 by Andreas S. Oesterhelt + * * - * pcrs is a supplement to the brilliant pcre library by Philip - * Hazel (ph10@cam.ac.uk) and adds Perl-style substitution. That - * is, it mimics Perl's 's' operator. + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU Lesser + * General Public License (LGPL), version 2.1, which should + * be included in this distribution (see LICENSE.txt), with + * the exception that the permission to replace that license + * with the GNU General Public License (GPL) given in section + * 3 is restricted to version 2 of the GPL. * - * Currently, there's no documentation besides comments and the - * source itself ;-) + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the license for more details. * - * Copyright : Written and copyright by andreas@oesterhelt.org + * The GNU Lesser General Public License should be included + * with this file. If not, you can view it at + * http://www.gnu.org/licenses/lgpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * Revisions : * $Log: pcrs.c,v $ + * Revision 1.18 2002/03/08 14:17:14 oes + * Fixing -Wconversion warnings + * + * Revision 1.17 2002/03/08 13:45:48 oes + * Hiding internal functions + * + * Revision 1.16 2001/11/30 21:32:14 jongfoster + * Fixing signed/unsigned comparison (Andreas please check this!) + * One tab->space + * + * Revision 1.15 2001/09/20 16:11:06 steudten + * + * Add casting for some string functions. + * + * Revision 1.14 2001/09/09 21:41:57 oes + * Fixing yet another silly bug + * + * Revision 1.13 2001/09/06 14:05:59 oes + * Fixed silly bug + * + * Revision 1.12 2001/08/18 11:35:00 oes + * - Introduced pcrs_strerror() + * - made some NULL arguments non-fatal + * - added support for \n \r \e \b \t \f \a \0 in substitute + * - made quoting adhere to standard rules + * - added warning for bad backrefs + * - added pcrs_execute_list() + * - fixed comments + * - bugfix & cosmetics + * + * Revision 1.11 2001/08/15 15:32:03 oes + * - Added support for Perl's special variables $+, $' and $` + * - Improved the substitute parser + * - Replaced the hard limit for the maximum number of matches + * by dynamic reallocation + * + * Revision 1.10 2001/08/05 13:13:11 jongfoster + * Making parameters "const" where possible. + * + * Revision 1.9 2001/07/18 17:27:00 oes + * Changed interface; Cosmetics + * + * Revision 1.8 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.7 2001/06/29 13:33:04 oes + * - Cleaned up, renamed and reordered functions, + * improved comments + * - Removed my_strsep + * - Replaced globalflag with a general flags int + * that holds PCRS_GLOBAL, PCRS_SUCCESS, and PCRS_TRIVIAL + * - Introduced trivial option that will prevent pcrs + * from honouring backreferences in the substitute, + * which is useful for large substitutes that are + * red in from somewhere and saves the pain of escaping + * the backrefs + * - Introduced convenience function pcrs_free_joblist() + * - Split pcrs_make_job() into pcrs_compile(), which still + * takes a complete s/// comand as argument and parses it, + * and a new function pcrs_make_job, which takes the + * three separate components. This should make for a + * much friendlier frontend. + * - Removed create_pcrs_job() which was useless + * - Fixed a bug in pcrs_execute + * - Success flag is now handled by pcrs instead of user + * + * Revision 1.6 2001/06/03 19:12:45 oes + * added FIXME + * + * Revision 1.5 2001/05/29 09:50:24 jongfoster + * (Fixed one int -> size_t) + * + * Revision 1.4 2001/05/25 14:12:40 oes + * Fixed bug: Empty substitutes now detected + * + * Revision 1.3 2001/05/25 11:03:55 oes + * Added sanity check for NULL jobs to pcrs_exec_substitution + * + * Revision 1.2 2001/05/22 18:46:04 oes + * + * Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * Revision 1.1.1.1 2001/05/15 13:59:02 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ #include #include +#include + #include "pcrs.h" + const char pcrs_h_rcs[] = PCRS_H_VERSION; +/* + * Internal prototypes + */ + +static int pcrs_parse_perl_options(const char *optstring, int *flags); +static pcrs_substitute *pcrs_compile_replacement(const char *replacement, int trivialflag, + int capturecount, int *errptr); /********************************************************************* * - * Function : my_strsep - * - * Description : Convenience function. It acts like strsep, except that - * it respects quoting of the delimiter character with the - * quote character. (And, of course, quoting the quote char - * with itself.) Called from `pcrs_make_job'. + * Function : pcrs_strerror * + * Description : Return a string describing a given error code. + * * Parameters : - * 1 : token = current token - * 2 : text = string to tokenize - * 3 : delimiter = single character deliminter - * 4 : quote_char = character to cause quoting + * 1 : error = the error code * - * Returns : -1 => failure, else the length of the token found. - * In the latter case, *text is the token's start. + * Returns : char * to the descriptive string * *********************************************************************/ -int my_strsep(char *token, char **text, char delimiter, char quote_char) +const char *pcrs_strerror(const int error) { - int i, k=0, limit, quoted = FALSE; - - limit = strlen(*text); - if ( 0 == limit ) + if (error < 0) { - return -1; - } - - token[0] = '\0'; - - for (i=0; i < limit; i++) - { - if (text[0][i] == delimiter && !quoted) + switch (error) { - *text += 1; - break; - } - else if (text[0][i] == quote_char && !quoted && i+1 < limit && text[0][i+1] == delimiter) - { - quoted = TRUE; - continue; + /* Passed-through PCRE error: */ + case PCRE_ERROR_NOMEMORY: return "(pcre:) No memory"; + + /* Shouldn't happen unless PCRE or PCRS bug, or user messed with compiled job: */ + case PCRE_ERROR_NULL: return "(pcre:) NULL code or subject or ovector"; + case PCRE_ERROR_BADOPTION: return "(pcre:) Unrecognized option bit"; + case PCRE_ERROR_BADMAGIC: return "(pcre:) Bad magic number in code"; + case PCRE_ERROR_UNKNOWN_NODE: return "(pcre:) Bad node in pattern"; + + /* Can't happen / not passed: */ + case PCRE_ERROR_NOSUBSTRING: return "(pcre:) Fire in power supply"; + case PCRE_ERROR_NOMATCH: return "(pcre:) Water in power supply"; + + /* PCRS errors: */ + case PCRS_ERR_NOMEM: return "(pcrs:) No memory"; + case PCRS_ERR_CMDSYNTAX: return "(pcrs:) Syntax error while parsing command"; + case PCRS_ERR_STUDY: return "(pcrs:) PCRE error while studying the pattern"; + case PCRS_ERR_BADJOB: return "(pcrs:) Bad job - NULL job, pattern or substitute"; + case PCRS_WARN_BADREF: return "(pcrs:) Backreference out of range"; + + /* What's that? */ + default: return "Unknown error"; } - token[k++] = text[0][i]; - quoted = FALSE; } - token[k] = '\0'; - *text += i; - return k; + /* error >= 0: No error */ + return "(pcrs:) Everything's just fine. Thanks for asking."; } /********************************************************************* * - * Function : pcrs_compile_perl_options + * Function : pcrs_parse_perl_options * * Description : This function parses a string containing the options to * Perl's s/// operator. It returns an integer that is the * pcre equivalent of the symbolic optstring. - * Since pcre doesn't know about Perl's 'g' (global) option, - * but pcrs needs it, the globalflag integer is set if 'g' - * is encountered. - * + * Since pcre doesn't know about Perl's 'g' (global) or pcrs', + * 'T' (trivial) options but pcrs needs them, the corresponding + * flags are set if 'g'or 'T' is encountered. + * Note: The 'T' and 'U' options do not conform to Perl. + * * Parameters : * 1 : optstring = string with options in perl syntax - * 2 : globalflag = see description + * 2 : flags = see description * * Returns : option integer suitable for pcre * *********************************************************************/ -int pcrs_compile_perl_options(char *optstring, int *globalflag) +static int pcrs_parse_perl_options(const char *optstring, int *flags) { - int i, rc = 0; - *globalflag = 0; - for (i=0; i < strlen(optstring); i++) + size_t i; + int rc = 0; + *flags = 0; + + if (NULL == optstring) return 0; + + for (i = 0; i < strlen(optstring); i++) { switch(optstring[i]) { - case 'e': break; - case 'g': *globalflag = 1; break; + case 'e': break; /* ToDo ;-) */ + case 'g': *flags |= PCRS_GLOBAL; break; case 'i': rc |= PCRE_CASELESS; break; case 'm': rc |= PCRE_MULTILINE; break; case 'o': break; case 's': rc |= PCRE_DOTALL; break; case 'x': rc |= PCRE_EXTENDED; break; - default: break; + case 'U': rc |= PCRE_UNGREEDY; break; + case 'T': *flags |= PCRS_TRIVIAL; break; + default: break; } } return rc; @@ -141,7 +250,11 @@ int pcrs_compile_perl_options(char *optstring, int *globalflag) * Parameters : * 1 : replacement = replacement part of s/// operator * in perl syntax - * 2 : errptr = pointer to an integer in which error + * 2 : trivialflag = Flag that causes backreferences to be + * ignored. + * 3 : capturecount = Number of capturing subpatterns in + * the pattern. Needed for $+ handling. + * 4 : errptr = pointer to an integer in which error * conditions can be returned. * * Returns : pcrs_substitute data structure, or NULL if an @@ -149,82 +262,178 @@ int pcrs_compile_perl_options(char *optstring, int *globalflag) * the reason. * *********************************************************************/ -pcrs_substitute *pcrs_compile_replacement(char *replacement, int *errptr) +static pcrs_substitute *pcrs_compile_replacement(const char *replacement, int trivialflag, int capturecount, int *errptr) { - int length, i, k = 0, l = 0, quoted = 0, idx; - char *text, *num_ptr, *numbers = "0123456789"; + int i, k, l, quoted; + size_t length; + char *text; pcrs_substitute *r; - r = (pcrs_substitute *)malloc(sizeof(pcrs_substitute)); - if (r == NULL) return NULL; - memset(r, '\0', sizeof(pcrs_substitute)); + i = k = l = quoted = 0; + + /* + * Sanity check + */ + if (NULL == replacement) + { + replacement = ""; + } - text = strdup(replacement); /* must be free()d by caller */ - if (text == NULL) + /* + * Get memory or fail + */ + if (NULL == (r = (pcrs_substitute *)malloc(sizeof(pcrs_substitute)))) { *errptr = PCRS_ERR_NOMEM; - free(r); return NULL; } + memset(r, '\0', sizeof(pcrs_substitute)); length = strlen(replacement); - for (i=0; i < length; i++) + if (NULL == (text = (char *)malloc(length + 1))) { - /* Backslash treatment */ - if (replacement[i] == '\\') - { - if (quoted) - { - text[k++] = replacement[i]; - quoted = 0; - } - else - { - quoted = 1; - } - continue; - } + free(r); + *errptr = PCRS_ERR_NOMEM; + return NULL; + } + memset(text, '\0', length + 1); + + + /* + * In trivial mode, just copy the substitute text + */ + if (trivialflag) + { + text = strncpy(text, replacement, length + 1); + k = length; + } - /* Dollar treatment */ - if (replacement[i] == '$' && !quoted && i < length - 1) + /* + * Else, parse, cut out and record all backreferences + */ + else + { + while (i < (int)length) { - if (strchr("0123456789&", replacement[i + 1]) == NULL) + /* Quoting */ + if (replacement[i] == '\\') { - text[k++] = replacement[i]; + if (quoted) + { + text[k++] = replacement[i++]; + quoted = 0; + } + else + { + if (replacement[i+1] && strchr("tnrfae0", replacement[i+1])) + { + switch (replacement[++i]) + { + case 't': + text[k++] = '\t'; + break; + case 'n': + text[k++] = '\n'; + break; + case 'r': + text[k++] = '\r'; + break; + case 'f': + text[k++] = '\f'; + break; + case 'a': + text[k++] = 7; + break; + case 'e': + text[k++] = 27; + break; + case '0': + text[k++] = '\0'; + break; + } + i++; + } + else + { + quoted = 1; + i++; + } + } + continue; } - else + + /* Backreferences */ + if (replacement[i] == '$' && !quoted && i < (int)(length - 1)) { + char *symbol, symbols[] = "'`+&"; r->block_length[l] = k - r->block_offset[l]; - r->backref[l] = 0; - if (replacement[i + 1] != '&') + + /* Numerical backreferences */ + if (isdigit((int)replacement[i + 1])) { - while ((num_ptr = strchr(numbers, replacement[++i])) != NULL && i < length) + while (i < (int)length && isdigit((int)replacement[++i])) + { + r->backref[l] = r->backref[l] * 10 + replacement[i] - 48; + } + if (r->backref[l] > capturecount) { - idx = num_ptr - numbers; - r->backref[l] = r->backref[l] * 10 + idx; + *errptr = PCRS_WARN_BADREF; } - i--; } + + /* Symbolic backreferences: */ + else if (NULL != (symbol = strchr(symbols, replacement[i + 1]))) + { + + if (symbol - symbols == 2) /* $+ */ + { + r->backref[l] = capturecount; + } + else if (symbol - symbols == 3) /* $& */ + { + r->backref[l] = 0; + } + else /* $' or $` */ + { + r->backref[l] = PCRS_MAX_SUBMATCHES + 1 - (symbol - symbols); + } + i += 2; + } + + /* Invalid backref -> plain '$' */ else - i++; - if (r->backref[l] < PCRS_MAX_SUBMATCHES) + { + goto plainchar; + } + + /* Valid and in range? -> record */ + if (r->backref[l] < PCRS_MAX_SUBMATCHES + 2) + { r->backref_count[r->backref[l]] += 1; - l++; - r->block_offset[l] = k; + r->block_offset[++l] = k; + } + else + { + *errptr = PCRS_WARN_BADREF; + } + continue; } - continue; + +plainchar: + /* Plain chars are copied */ + text[k++] = replacement[i++]; + quoted = 0; } + } /* -END- if (!trivialflag) */ - /* Plain char treatment */ - text[k++] = replacement[i]; - quoted = 0; - } - - text[k] = '\0'; + /* + * Finish & return + */ r->text = text; r->backrefs = l; r->block_length[l] = k - r->block_offset[l]; + return r; } @@ -235,14 +444,13 @@ pcrs_substitute *pcrs_compile_replacement(char *replacement, int *errptr) * Function : pcrs_free_job * * Description : Frees the memory used by a pcrs_job struct and its - * dependant structures. Returns a pointer to the next - * job, if there was any, or NULL otherwise. + * dependant structures. * * Parameters : * 1 : job = pointer to the pcrs_job structure to be freed * - * Returns : a pointer to the next job, if there was any, or - * NULL otherwise. + * Returns : a pointer to the next job, if there was any, or + * NULL otherwise. * *********************************************************************/ pcrs_job *pcrs_free_job(pcrs_job *job) @@ -272,12 +480,35 @@ pcrs_job *pcrs_free_job(pcrs_job *job) /********************************************************************* * - * Function : pcrs_make_job + * Function : pcrs_free_joblist + * + * Description : Iterates through a chained list of pcrs_job's and + * frees them using pcrs_free_job. + * + * Parameters : + * 1 : joblist = pointer to the first pcrs_job structure to + * be freed + * + * Returns : N/A + * + *********************************************************************/ +void pcrs_free_joblist(pcrs_job *joblist) +{ + while ( NULL != (joblist = pcrs_free_job(joblist)) ) {}; + + return; + +} + + +/********************************************************************* + * + * Function : pcrs_compile_command * - * Description : Main entry point. Takes a string with a Perl-style - * s/// command and returns a corresponding pcrs_job, - * or NULL if compiling the job fails at any stage. - * Diagnostics could obviously be improved. + * Description : Parses a string with a Perl-style s/// command, + * calls pcrs_compile, and returns a corresponding + * pcrs_job, or NULL if parsing or compiling the job + * fails. * * Parameters : * 1 : command = string with perl-style s/// command @@ -289,81 +520,139 @@ pcrs_job *pcrs_free_job(pcrs_job *job) * has the reason. * *********************************************************************/ -pcrs_job *pcrs_make_job(char *command, int *errptr) +pcrs_job *pcrs_compile_command(const char *command, int *errptr) { - char *dummy, *token, delimiter; - const char *error; - int i = 0, globalflag; + int i, k, l, quoted = FALSE; + size_t limit; + char delimiter; + char *tokens[4]; pcrs_job *newjob; - - /* Get and init memory */ - if ((newjob = (pcrs_job *)malloc(sizeof(pcrs_job))) == NULL) + + i = k = l = 0; + + /* + * Tokenize the perl command + */ + limit = strlen(command); + if (limit < 4) { - *errptr = PCRS_ERR_NOMEM; + *errptr = PCRS_ERR_CMDSYNTAX; return NULL; } - memset(newjob, '\0', sizeof(pcrs_job)); - - /* Command too short? */ - if (strlen(command) < 4) + else { - *errptr = PCRS_ERR_CMDSYNTAX; - pcrs_free_job(newjob); - return NULL; + delimiter = command[1]; } - /* Split command into tokens and handle them */ - delimiter = command[1]; - token = (char *)malloc(strlen(command)); /* current token */ - dummy = (char *)malloc(strlen(command)); /* must store pattern, since we can't */ - /* use it until the options are known */ - while (my_strsep(token, &command, delimiter, '\\') >= 0) + tokens[l] = (char *) malloc(limit + 1); + + for (i = 0; i <= (int)limit; i++) { - switch (i) + + if (command[i] == delimiter && !quoted) { - /* We don't care about the command and assume 's' */ - case 0: + if (l == 3) + { + l = -1; break; + } + tokens[0][k++] = '\0'; + tokens[++l] = tokens[0] + k; + continue; + } + + else if (command[i] == '\\' && !quoted) + { + quoted = TRUE; + if (command[i+1] == delimiter) continue; + } + else + { + quoted = FALSE; + } + tokens[0][k++] = command[i]; + } - /* The pattern */ - case 1: - strcpy(dummy, token); - break; + /* + * Syntax error ? + */ + if (l != 3) + { + *errptr = PCRS_ERR_CMDSYNTAX; + free(tokens[0]); + return NULL; + } + + newjob = pcrs_compile(tokens[1], tokens[2], tokens[3], errptr); + free(tokens[0]); + return newjob; + +} - /* The substitute */ - case 2: - newjob->substitute = pcrs_compile_replacement(token, errptr); - if (newjob->substitute == NULL) - { - pcrs_free_job(newjob); - return NULL; - } - break; - /* The options */ - case 3: - newjob->options = pcrs_compile_perl_options(token, &globalflag); - newjob->globalflag = globalflag; - break; +/********************************************************************* + * + * Function : pcrs_compile + * + * Description : Takes the three arguments to a perl s/// command + * and compiles a pcrs_job structure from them. + * + * Parameters : + * 1 : pattern = string with perl-style pattern + * 2 : substitute = string with perl-style substitute + * 3 : options = string with perl-style options + * 4 : errptr = pointer to an integer in which error + * conditions can be returned. + * + * Returns : a corresponding pcrs_job data structure, or NULL + * if an error was encountered. In that case, *errptr + * has the reason. + * + *********************************************************************/ +pcrs_job *pcrs_compile(const char *pattern, const char *substitute, const char *options, int *errptr) +{ + pcrs_job *newjob; + int flags; + int capturecount; + const char *error; - /* There shouldn't be anything else! */ - default: - *errptr = PCRS_ERR_CMDSYNTAX; - pcrs_free_job(newjob); - return NULL; - } - i++; + *errptr = 0; + + /* + * Handle NULL arguments + */ + if (pattern == NULL) pattern = ""; + if (substitute == NULL) substitute = ""; + + + /* + * Get and init memory + */ + if (NULL == (newjob = (pcrs_job *)malloc(sizeof(pcrs_job)))) + { + *errptr = PCRS_ERR_NOMEM; + return NULL; } - free(token); + memset(newjob, '\0', sizeof(pcrs_job)); - /* Compile the pattern */ - newjob->pattern = pcre_compile(dummy, newjob->options, &error, errptr, NULL); + + /* + * Evaluate the options + */ + newjob->options = pcrs_parse_perl_options(options, &flags); + newjob->flags = flags; + + + /* + * Compile the pattern + */ + newjob->pattern = pcre_compile(pattern, newjob->options, &error, errptr, NULL); if (newjob->pattern == NULL) { pcrs_free_job(newjob); return NULL; } - free(dummy); + /* * Generate hints. This has little overhead, since the @@ -376,7 +665,28 @@ pcrs_job *pcrs_make_job(char *command, int *errptr) pcrs_free_job(newjob); return NULL; } + + + /* + * Determine the number of capturing subpatterns. + * This is needed for handling $+ in the substitute. + */ + if (0 > (*errptr = pcre_fullinfo(newjob->pattern, newjob->hints, PCRE_INFO_CAPTURECOUNT, &capturecount))) + { + pcrs_free_job(newjob); + return NULL; + } + + /* + * Compile the substitute + */ + if (NULL == (newjob->substitute = pcrs_compile_replacement(substitute, newjob->flags & PCRS_TRIVIAL, capturecount, errptr))) + { + pcrs_free_job(newjob); + return NULL; + } + return newjob; } @@ -384,95 +694,170 @@ pcrs_job *pcrs_make_job(char *command, int *errptr) /********************************************************************* * - * Function : create_pcrs_job + * Function : pcrs_execute_list * - * Description : Create a job from all its components, if you don't - * have a Perl command to start from. Rather boring. + * Description : This is a multiple job wrapper for pcrs_execute(). + * Apply the regular substitutions defined by the jobs in + * the joblist to the subject. + * The subject itself is left untouched, memory for the result + * is malloc()ed and it is the caller's responsibility to free + * the result when it's no longer needed. * * Parameters : - * 1 : pattern = pointer to pcre pattern - * 2 : hints = pointer to pcre hints - * 3 : options = options in pcre format - * 4 : globalflag = flag that indicates if global matching is desired - * 5 : substitute = pointer to pcrs_substitute data structure - * 2 : errptr = pointer to an integer in which error - * conditions can be returned. + * 1 : joblist = the chained list of pcrs_jobs to be executed + * 2 : subject = the subject string + * 3 : subject_length = the subject's length + * INCLUDING the terminating zero, if string! + * 4 : result = char** for returning the result + * 5 : result_length = size_t* for returning the result's length * - * Returns : pcrs_job structure, or NULL if an error was encountered. - * In that case, *errptr has the reason why. + * Returns : On success, the number of substitutions that were made. + * May be > 1 if job->flags contained PCRS_GLOBAL + * On failiure, the (negative) pcre error code describing the + * failiure, which may be translated to text using pcrs_strerror(). * *********************************************************************/ -pcrs_job *create_pcrs_job(pcre *pattern, pcre_extra *hints, int options, int globalflag, pcrs_substitute *substitute, int *errptr) +int pcrs_execute_list(pcrs_job *joblist, char *subject, size_t subject_length, char **result, size_t *result_length) { - pcrs_job *newjob; - - if ((newjob = (pcrs_job *)malloc(sizeof(pcrs_job))) == NULL) + pcrs_job *job; + char *old, *new; + int hits, total_hits; + + old = subject; + *result_length = subject_length; + hits = total_hits = 0; + + for (job = joblist; job != NULL; job = job->next) { - *errptr = PCRS_ERR_NOMEM; - return NULL; - } - memset(newjob, '\0', sizeof(pcrs_job)); + hits = pcrs_execute(job, old, *result_length, &new, result_length); + + if (old != subject) free(old); - newjob->pattern = pattern; - newjob->hints = hints; - newjob->options = options; - newjob->globalflag = globalflag; - newjob->substitute = substitute; + if (hits < 0) + { + return(hits); + } + else + { + total_hits += hits; + old = new; + } + } - return(newjob); + *result = new; + return(total_hits); } /********************************************************************* * - * Function : pcrs_exec_substitution + * Function : pcrs_execute * - * Description : Modify the subject by executing the regular substitution - * defined by the job. Since the result may be longer than - * the subject, its space requirements are precalculated in - * the matching phase and new memory is allocated accordingly. - * It is the caller's responsibility to free the result when - * it's no longer needed. + * Description : Apply the regular substitution defined by the job to the + * subject. + * The subject itself is left untouched, memory for the result + * is malloc()ed and it is the caller's responsibility to free + * the result when it's no longer needed. * * Parameters : * 1 : job = the pcrs_job to be executed * 2 : subject = the subject (== original) string - * 3 : subject_length = the subject's length + * 3 : subject_length = the subject's length + * INCLUDING the terminating zero, if string! * 4 : result = char** for returning the result - * 5 : result_length = int* for returning the result's length + * 5 : result_length = size_t* for returning the result's length * - * Returns : the number of substitutions that were made. May be > 1 - * if job->globalflag was set + * Returns : On success, the number of substitutions that were made. + * May be > 1 if job->flags contained PCRS_GLOBAL + * On failiure, the (negative) pcre error code describing the + * failiure, which may be translated to text using pcrs_strerror(). * *********************************************************************/ -int pcrs_exec_substitution(pcrs_job *job, char *subject, int subject_length, char **result, int *result_length) +int pcrs_execute(pcrs_job *job, char *subject, size_t subject_length, char **result, size_t *result_length) { int offsets[3 * PCRS_MAX_SUBMATCHES], - offset = 0, i=0, k, matches_found, newsize, submatches; - pcrs_match matches[PCRS_MAX_MATCHES]; + offset, + i, k, + matches_found, + submatches, + max_matches = PCRS_MAX_MATCH_INIT; + size_t newsize; + pcrs_match *matches, *dummy; char *result_offset; - newsize=subject_length; + offset = i = k = 0; + + /* + * Sanity check & memory allocation + */ + if (job == NULL || job->pattern == NULL || job->substitute == NULL) + { + *result = NULL; + return(PCRS_ERR_BADJOB); + } + + if (NULL == (matches = (pcrs_match *)malloc(max_matches * sizeof(pcrs_match)))) + { + *result = NULL; + return(PCRS_ERR_NOMEM); + } + memset(matches, '\0', max_matches * sizeof(pcrs_match)); + - /* Find.. */ - while ((submatches = pcre_exec(job->pattern, job->hints, subject, subject_length, offset, 0, offsets, 99)) > 0) + /* + * Find the pattern and calculate the space + * requirements for the result + */ + newsize = subject_length; + + while ((submatches = pcre_exec(job->pattern, job->hints, subject, (int)subject_length, offset, 0, offsets, 3 * PCRS_MAX_SUBMATCHES)) > 0) { + job->flags |= PCRS_SUCCESS; matches[i].submatches = submatches; - for (k=0; k < submatches; k++) + + for (k = 0; k < submatches; k++) { matches[i].submatch_offset[k] = offsets[2 * k]; - matches[i].submatch_length[k] = offsets[2 * k + 1] - offsets[2 * k]; /* Non-found optional submatches have length -1-(-1)==0 */ - newsize += matches[i].submatch_length[k] * job->substitute->backref_count[k]; /* reserve mem for each submatch as often as it is ref'd */ + + /* Note: Non-found optional submatches have length -1-(-1)==0 */ + matches[i].submatch_length[k] = offsets[2 * k + 1] - offsets[2 * k]; + + /* reserve mem for each submatch as often as it is ref'd */ + newsize += matches[i].submatch_length[k] * job->substitute->backref_count[k]; + } + /* plus replacement text size minus match text size */ + newsize += strlen(job->substitute->text) - matches[i].submatch_length[0]; + + /* chunk before match */ + matches[i].submatch_offset[PCRS_MAX_SUBMATCHES] = 0; + matches[i].submatch_length[PCRS_MAX_SUBMATCHES] = offsets[0]; + newsize += offsets[0] * job->substitute->backref_count[PCRS_MAX_SUBMATCHES]; + + /* chunk after match */ + matches[i].submatch_offset[PCRS_MAX_SUBMATCHES + 1] = offsets[1]; + matches[i].submatch_length[PCRS_MAX_SUBMATCHES + 1] = subject_length - offsets[1] - 1; + newsize += (subject_length - offsets[1]) * job->substitute->backref_count[PCRS_MAX_SUBMATCHES + 1]; + + /* Storage for matches exhausted? -> Extend! */ + if (++i >= max_matches) + { + max_matches = (int)(max_matches * PCRS_MAX_MATCH_GROW); + if (NULL == (dummy = (pcrs_match *)realloc(matches, max_matches * sizeof(pcrs_match)))) + { + free(matches); + *result = NULL; + return(PCRS_ERR_NOMEM); + } + matches = dummy; } - newsize += strlen(job->substitute->text) - matches[i].submatch_length[0]; /* plus replacement text size minus match text size */ /* Non-global search or limit reached? */ - if (++i >= PCRS_MAX_MATCHES || !job->globalflag ) break; + if (!(job->flags & PCRS_GLOBAL)) break; /* Don't loop on empty matches */ if (offsets[1] == offset) - if (offset < subject_length) + if ((size_t)offset < subject_length) offset++; else break; @@ -480,39 +865,52 @@ int pcrs_exec_substitution(pcrs_job *job, char *subject, int subject_length, cha else offset = offsets[1]; } - if (submatches < -1) return submatches; /* Pass pcre error through */ + /* Pass pcre error through if (bad) failiure */ + if (submatches < PCRE_ERROR_NOMATCH) + { + free(matches); + return submatches; + } matches_found = i; - /* ..get memory ..*/ + + /* + * Get memory for the result + */ if ((*result = (char *)malloc(newsize)) == NULL) /* must be free()d by caller */ { + free(matches); return PCRS_ERR_NOMEM; } - /* ..and replace */ + + /* + * Replace + */ offset = 0; result_offset = *result; - for (i=0; i < matches_found; i++) + for (i = 0; i < matches_found; i++) { - memcpy(result_offset, subject + offset, matches[i].submatch_offset[0] - offset); /* copy the chunk preceding the match */ + /* copy the chunk preceding the match */ + memcpy(result_offset, subject + offset, (size_t)matches[i].submatch_offset[0] - offset); result_offset += matches[i].submatch_offset[0] - offset; /* For every segment of the substitute.. */ - for (k=0; k <= job->substitute->backrefs; k++) + for (k = 0; k <= job->substitute->backrefs; k++) { /* ...copy its text.. */ memcpy(result_offset, job->substitute->text + job->substitute->block_offset[k], job->substitute->block_length[k]); result_offset += job->substitute->block_length[k]; - /* ..plus, if it's not the last chunk (i.e.: There IS a backref).. */ + /* ..plus, if it's not the last chunk, i.e.: There *is* a backref.. */ if (k != job->substitute->backrefs - /* ..and a nonempty match.. */ - && matches[i].submatch_length[job->substitute->backref[k]] > 0 - /* ..and in legal range, ... */ - && job->substitute->backref[k] <= PCRS_MAX_SUBMATCHES) + /* ..in legal range.. */ + && job->substitute->backref[k] < PCRS_MAX_SUBMATCHES + 2 + /* ..and referencing a nonempty match.. */ + && matches[i].submatch_length[job->substitute->backref[k]] > 0) { - /* copy the submatch that is ref'd. */ + /* ..copy the submatch that is ref'd. */ memcpy( result_offset, subject + matches[i].submatch_offset[job->substitute->backref[k]], @@ -528,6 +926,7 @@ int pcrs_exec_substitution(pcrs_job *job, char *subject, int subject_length, cha memcpy(result_offset, subject + offset, subject_length - offset); *result_length = newsize; + free(matches); return matches_found; } diff --git a/pcrs.h b/pcrs.h index ba77c38a..a14b8165 100644 --- a/pcrs.h +++ b/pcrs.h @@ -1,31 +1,50 @@ -#ifndef _PCRS_H -#define _PCRS_H +#ifndef PCRS_H_INCLUDED +#define PCRS_H_INCLUDED /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/pcrs.h,v $ + * File : $Source: /cvsroot/ijbswa/current/pcrs.h,v $ * - * Purpose : This is the pre-pre-alpha realease of libpcrs. It is only - * published at this (ugly) stage of development, because it is - * needed for a new feature in JunkBuster. + * Purpose : Header file for pcrs.c * - * Apart from the code being quite a mess, no inconsistencies, - * memory leaks or functional bugs **should** be present. + * Copyright : see pcrs.c * - * While you ROTFL at the code, you could just as well mail me - * (oes@paradis.rhein.de) with advice for improvement. + * Revisions : + * $Log: pcrs.h,v $ + * Revision 1.10 2002/03/08 13:44:48 oes + * Hiding internal functions, preventing double inclusion of pcre.h * - * pcrs is a supplement to the brilliant pcre library by Philip - * Hazel (ph10@cam.ac.uk) and adds Perl-style substitution. That - * is, it mimics Perl's 's' operator. + * Revision 1.9 2001/08/18 11:35:29 oes + * - Introduced pcrs_strerror() + * - added pcrs_execute_list() * - * Currently, there's no documentation besides comments and the - * source itself ;-) + * Revision 1.8 2001/08/15 15:32:50 oes + * Replaced the hard limit for the maximum number of matches + * by dynamic reallocation * - * Copyright : Written and copyright 2001 by Sourceforge IJBSWA team. + * Revision 1.7 2001/08/05 13:13:11 jongfoster + * Making parameters "const" where possible. + * + * Revision 1.6 2001/07/29 18:52:06 jongfoster + * Renaming _PCRS_H, and adding "extern C {}" + * + * Revision 1.5 2001/07/18 17:27:00 oes + * Changed interface; Cosmetics + * + * Revision 1.4 2001/06/29 13:33:19 oes + * - Cleaned up, commented and adapted to reflect the + * changes in pcrs.c + * - Introduced the PCRS_* flags + * + * Revision 1.3 2001/06/09 10:58:57 jongfoster + * Removing a single unused #define which referenced BUFSIZ + * + * Revision 1.2 2001/05/25 11:03:55 oes + * Added sanity check for NULL jobs to pcrs_exec_substitution + * + * Revision 1.1.1.1 2001/05/15 13:59:02 oes + * Initial import of version 2.9.3 source tree * - * Revisions : - * $Log: pcrs.h,v $ * Revision 1.4 2001/05/11 01:57:02 rodney * Added new file header standard w/RCS control tags. * @@ -40,57 +59,107 @@ * *********************************************************************/ -#define PCRS_H_VERSION "$Id: pcrs.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#define PCRS_H_VERSION "$Id: pcrs.h,v 1.10 2002/03/08 13:44:48 oes Exp $" - +#ifndef _PCRE_H #include +#endif + +#ifdef __cplusplus +extern "C" { +#endif + +/* + * Constants: + */ #define FALSE 0 #define TRUE 1 -#define PCRS_MAX_MATCHES 300 -#define PCRS_MAX_SUBMATCHES 33 -#define CHARBUFSIZ BUFSIZ * sizeof(char) +/* Capacity */ +#define PCRS_MAX_SUBMATCHES 33 /* Maximum number of capturing subpatterns allowed. MUST be <= 99! FIXME: Should be dynamic */ +#define PCRS_MAX_MATCH_INIT 40 /* Initial amount of matches that can be stored in global searches */ +#define PCRS_MAX_MATCH_GROW 1.6 /* Factor by which storage for matches is extended if exhausted */ + +/* Error codes */ #define PCRS_ERR_NOMEM -10 /* Failed to acquire memory. */ #define PCRS_ERR_CMDSYNTAX -11 /* Syntax of s///-command */ #define PCRS_ERR_STUDY -12 /* pcre error while studying the pattern */ +#define PCRS_ERR_BADJOB -13 /* NULL job pointer, pattern or substitute */ +#define PCRS_WARN_BADREF -14 /* Backreference out of range */ + +/* Flags */ +#define PCRS_GLOBAL 1 /* Job should be applied globally, as with perl's g option */ +#define PCRS_TRIVIAL 2 /* Backreferences in the substitute are ignored */ +#define PCRS_SUCCESS 4 /* Job did previously match */ -typedef struct S_PCRS_SUBSTITUTE { - char *text; - int backrefs; - int block_offset[PCRS_MAX_SUBMATCHES]; - int block_length[PCRS_MAX_SUBMATCHES]; - int backref[PCRS_MAX_SUBMATCHES]; - int backref_count[PCRS_MAX_SUBMATCHES]; + +/* + * Data types: + */ + +/* A compiled substitute */ + +typedef struct { + char *text; /* The plaintext part of the substitute, with all backreferences stripped */ + int backrefs; /* The number of backreferences */ + int block_offset[PCRS_MAX_SUBMATCHES]; /* Array with the offsets of all plaintext blocks in text */ + size_t block_length[PCRS_MAX_SUBMATCHES]; /* Array with the lengths of all plaintext blocks in text */ + int backref[PCRS_MAX_SUBMATCHES]; /* Array with the backref number for all plaintext block borders */ + int backref_count[PCRS_MAX_SUBMATCHES + 2]; /* Array with the number of references to each backref index */ } pcrs_substitute; -typedef struct S_PCRS_MATCH { - /* char *buffer; */ - int submatches; - int submatch_offset[PCRS_MAX_SUBMATCHES]; - int submatch_length[PCRS_MAX_SUBMATCHES]; + +/* + * A match, including all captured subpatterns (submatches) + * Note: The zeroth is the whole match, the PCRS_MAX_SUBMATCHES + 0th + * is the range before the match, the PCRS_MAX_SUBMATCHES + 1th is the + * range after the match. + */ + +typedef struct { + int submatches; /* Number of captured subpatterns */ + int submatch_offset[PCRS_MAX_SUBMATCHES + 2]; /* Offset for each submatch in the subject */ + size_t submatch_length[PCRS_MAX_SUBMATCHES + 2]; /* Length of each submatch in the subject */ } pcrs_match; -typedef struct S_PCRS_JOB { - pcre *pattern; - pcre_extra *hints; - int options; - int globalflag; - int successflag; - pcrs_substitute *substitute; - struct S_PCRS_JOB *next; + +/* A PCRS job */ + +typedef struct PCRS_JOB { + pcre *pattern; /* The compiled pcre pattern */ + pcre_extra *hints; /* The pcre hints for the pattern */ + int options; /* The pcre options (numeric) */ + int flags; /* The pcrs and user flags (see "Flags" above) */ + pcrs_substitute *substitute; /* The compiled pcrs substitute */ + struct PCRS_JOB *next; /* Pointer for chaining jobs to joblists */ } pcrs_job; -extern int pcrs_compile_perl_options(char *optstring, int *globalflag); -extern pcrs_substitute *pcrs_compile_replacement(char *replacement, int *errptr); + +/* + * Prototypes: + */ + +/* Main usage */ +extern pcrs_job *pcrs_compile_command(const char *command, int *errptr); +extern pcrs_job *pcrs_compile(const char *pattern, const char *substitute, const char *options, int *errptr); +extern int pcrs_execute(pcrs_job *job, char *subject, size_t subject_length, char **result, size_t *result_length); +extern int pcrs_execute_list(pcrs_job *joblist, char *subject, size_t subject_length, char **result, size_t *result_length); + +/* Freeing jobs */ extern pcrs_job *pcrs_free_job(pcrs_job *job); -extern pcrs_job *pcrs_make_job(char *command, int *errptr); -extern pcrs_job *create_pcrs_job(pcre *pattern, pcre_extra *hints, int options, int globalflag, pcrs_substitute *substitute, int *errptr); -extern int pcrs_exec_substitution(pcrs_job *job, char *subject, int subject_length, char **result, int *result_length); +extern void pcrs_free_joblist(pcrs_job *joblist); + +/* Info on errors: */ +extern const char *pcrs_strerror(const int error); + +#ifdef __cplusplus +} /* extern "C" */ +#endif -#endif /* ndef _PCRS_H */ +#endif /* ndef PCRS_H_INCLUDED */ /* Local Variables: diff --git a/popup b/popup deleted file mode 100644 index 07f0c36b..00000000 --- a/popup +++ /dev/null @@ -1,44 +0,0 @@ -# -# $Id: popup,v 1.1 2001/04/16 21:10:38 rodney Exp $ -# -# This is the configuration file for blocking Javascript popup windows, -# it specifies both hosts to block from, and hosts to allow the popups -# from. -# -# The format is the hostname to block, or allow. -# -# eg: -# -# www.geocities.com # block all popups from geocities. -# -# ~www.trusted-host.com # Allow popups from the trusted host domain. -# -# -# If a site is not explicitly blocked popups will be allowed, the -# "allowable" syntax with "~" exists as a marker that you've explicitly -# allowed something. -# -# Order is not relevant - an allowable entry overrides a blocked entry, -# e.g. -# ~myhost.com # Allows myhost.com -# myhost.com # _Still_ allowed. -# -# Steve Kemp -# --- -# http://www.tardis.ed.ac.uk/~skx/junk/ for more details. -# -# - - - -# This is for the test page, at http://www.tardis.ed.ac.uk/~skx/junk/ -www.tardis.ed.ac.uk - -# -# Samples, uncomment to use: -# - -# members.tripod.co.uk -# www.geocities.com -# ~windowsupdates.microsoft.com -# ~updates.microsoft.com \ No newline at end of file diff --git a/privoxy-rh.spec b/privoxy-rh.spec new file mode 100644 index 00000000..994a2417 --- /dev/null +++ b/privoxy-rh.spec @@ -0,0 +1,955 @@ +# $Id: privoxy-rh.spec,v 1.32 2002/05/16 01:37:29 hal9 Exp $ +# +# Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# + +# Defines should happen in the begining of the file +%define veryoldname junkbust +%define oldname junkbuster +%define privoxyconf %{_sysconfdir}/%{name} +%define privoxy_uid 73 +%define privoxy_gid 73 + +Name: privoxy +# ATTENTION +# Version and release should be updated acordingly on configure.in and +# configure. Otherwise, the package can be build with the wrong value +Version: 2.9.15 +Release: 1 +Summary: Privoxy - privacy enhancing proxy +License: GPL +Vendor: Privoxy.Org +Source0: http://www.waldherr.org/%{name}/%{name}-%{version}.tar.gz +BuildRoot: %{_tmppath}/%{name}-%{version}-root +Group: Networking/Utilities +URL: http://www.privoxy.org/ +Obsoletes: junkbuster-raw junkbuster-blank junkbuster +# Prereq: /usr/sbin/useradd , /sbin/chkconfig , /sbin/service +Prereq: shadow-utils, chkconfig, initscripts, sh-utils +BuildRequires: perl gzip sed libtool autoconf +Conflicts: junkbuster-raw junkbuster-blank junkbuster + +%description +Privoxy is a web proxy with advanced filtering capabilities for +protecting privacy, filtering web page content, managing cookies, +controlling access, and removing ads, banners, pop-ups and other +obnoxious Internet junk. Privoxy has a very flexible configuration and +can be customized to suit individual needs and tastes. Privoxy has application +for both stand-alone systems and multi-user networks. + +Privoxy is based on the Internet Junkbuster. + +%prep +%setup -q -c + +%build + +# We check to see if versions match +VERSION_MAJOR=2 +VERSION_MINOR=9 +VERSION_POINT=15 + +CONFIG_VERSION=`cat configure.in | sed -n -e 's/^VERSION_MAJOR=\([0-9]*\)/\1./p' -e 's/^VERSION_MINOR=\([0-9]*\)/\1./p' -e 's/^VERSION_POINT=\([0-9]*\)/\1/p' | awk '{printf $1}'` +if [ "%{version}" != "${CONFIG_VERSION}" ]; then + echo "The version declared on the specfile does not match the version" + echo "declared on configure.in. This should not happen. The build will" + echo "be interrupted now, so you can fix it." + exit 1 +fi +autoheader +autoconf +%configure --disable-dynamic-pcre +make +# Docs are in CVS and tarball now. +#%%make dok + +## Explicitily stripping is not recomended. +## This is handled altomaticaly by RPM, and can couse troubles if +## anyone wants to build an unstriped version - morcego +#strip %{name} + +%install +[ "%{buildroot}" != "/" ] && rm -rf %{buildroot} +mkdir -p %{buildroot}%{_sbindir} \ + %{buildroot}%{_mandir}/man1 \ + %{buildroot}%{_localstatedir}/log/%{name} \ + %{buildroot}%{privoxyconf}/templates \ + %{buildroot}%{_sysconfdir}/logrotate.d \ + %{buildroot}%{_sysconfdir}/rc.d/init.d + +## Manual gziping of manpages should not be done, once it can +## break the building on some distributions. Anyway, rpm does it +## automagicaly these days +## Gziping the documentation files is not recomended - morcego +#gzip README AUTHORS ChangeLog %{name}.1 || /bin/true + +install -s -m 744 %{name} %{buildroot}%{_sbindir}/%{name} + +cp -f %{name}.1 %{buildroot}%{_mandir}/man1/%{name}.1 +cp -f *.action %{buildroot}%{privoxyconf}/ +cp -f default.filter %{buildroot}%{privoxyconf}/default.filter +cp -f trust %{buildroot}%{privoxyconf}/trust +cp -f templates/* %{buildroot}%{privoxyconf}/templates/ +cp -f %{name}.logrotate %{buildroot}%{_sysconfdir}/logrotate.d/%{name} +install -m 755 %{name}.init %{buildroot}%{_sysconfdir}/rc.d/init.d/%{name} +install -m 711 -d %{buildroot}%{_localstatedir}/log/%{name} + +# verify all file locations, etc. in the config file +# don't start with ^ or commented lines are not replaced +## Changing the sed paramter delimiter to @, so we don't have to +## escape the slashes +cat config | \ + sed 's@^confdir.*@confdir %{privoxyconf}@g' | \ +# sed 's/^permissionsfile.*/permissionsfile \/etc\/%{name}\/permissionsfile/g' | \ +# sed 's/^filterfile.*/default.filter \/etc\/%{name}\/default.filter/g' | \ +# sed 's/^logfile.*/logfile \%{_localstatedir}\/log\/%{name}\/logfile/g' | \ +# sed 's/^jarfile.*/jarfile \%{_localstatedir}\/log\/%{name}\/jarfile/g' | \ +# sed 's/^forward.*/forward \/etc\/%{name}\/forward/g' | \ +# sed 's/^aclfile.*/aclfile \/etc\/%{name}\/aclfile/g' > \ + sed 's@^logdir.*@logdir %{_localstatedir}/log/%{name}@g' > \ + %{buildroot}%{privoxyconf}/config +perl -pe 's/{-no-cookies}/{-no-cookies}\n\.redhat.com/' default.action >\ + %{buildroot}%{privoxyconf}/default.action + + +# Creating ghost init files +mkdir -p %{buildroot}/%{_sysconfdir}/rc.d/rc{0,1,2,3,4,5,6}.d +for i in 0 1 4 6 +do +ln -sf ../init.d/%{name} %{buildroot}/%{_sysconfdir}/rc.d/rc${i}.d/K09%{name} +done +for i in 2 3 5 +do +ln -sf ../init.d/%{name} %{buildroot}/%{_sysconfdir}/rc.d/rc${i}.d/S84%{name} +done + +## Macros are expanded even on commentaries. So, we have to use %% +## -- morcego +#%%makeinstall + +%pre +# This is where we handle old usernames (junkbust and junkbuster) +# I'm not sure we should do that, but this is the way we have been +# doing it for some time now -- morcego +# We should do it for the group as well -- morcego +# Doing it by brute force. Much cleaner (no more Mr. Nice Guy) -- morcego + +# Change the group name. Remove anything left behind. +groupmod -g %{privoxy_gid} -n %{name} %{oldname} > /dev/null 2>&1 ||: +groupmod -g %{privoxy_gid} -n %{name} %{veryoldname} > /dev/null 2>&1 ||: +groupdel %{oldname} > /dev/null 2>&1 ||: +groupdel %{veryoldname} > /dev/null 2>&1 ||: + +# Same for username +usermod -u %{privoxy_uid} -g %{privoxy_gid} -l %{name} -d %{_sysconfdir}/%{name} -s "" %{oldname} > /dev/null 2>&1 || : +usermod -u %{privoxy_uid} -g %{privoxy_gid} -l %{name} -d %{_sysconfdir}/%{name} -s "" %{veryoldname} > /dev/null 2>&1 || : +userdel %{oldname} > /dev/null 2>&1 ||: +userdel %{veryoldname} > /dev/null 2>&1 ||: + +# Doublecheck to see if the group exist, and that it has the correct gid +/bin/grep -E '^%{name}:' /etc/group > /dev/null 2>&1 +if [ $? -eq 1 ]; then + # Looks like it does not exist. Create it + groupadd -g %{privoxy_gid} %{name} > /dev/null 2>&1 +else + /bin/grep -E '^%{name}:[^:]*:%{privoxy_gid}:' /etc/group > /dev/null 2>&1 + if [ $? -eq 1 ]; then + # The group exists, but does not have the correct gid + groupmod -g %{privoxy_gid} %{name} > /dev/null 2>&1 + fi +fi + +# Check to see if everything is okey. Create user if it still does not +# exist +id %{name} > /dev/null 2>&1 +if [ $? -eq 1 ]; then + /usr/sbin/useradd -u %{privoxy_uid} -g %{privoxy_gid} -d %{_sysconfdir}/%{name} -r -s "" %{name} > /dev/null 2>&1 +fi + +# Double check that the group has the correct uid +P_UID=`id -u %{name} 2>/dev/null` +if [ $P_UID -ne %{privoxy_uid} ]; then + /usr/sbin/usermod -u %{privoxy_uid} %{name} +fi + +# The same for the gid +P_GID=`id -g %{name} 2>/dev/null` +if [ $P_GID -ne %{privoxy_gid} ]; then + /usr/sbin/usermod -g %{privoxy_gid} %{name} +fi + +%post +# for upgrade from 2.0.x +[ -f %{_localstatedir}/log/%{oldname}/logfile ] &&\ + mv -f %{_localstatedir}/log/%{oldname}/logfile %{_localstatedir}/log/%{name}/logfile || /bin/true +[ -f %{_localstatedir}/log/%{name}/%{name} ] &&\ + mv -f %{_localstatedir}/log/%{name}/%{name} %{_localstatedir}/log/%{name}/logfile || /bin/true +chown -R %{name}:%{name} %{_localstatedir}/log/%{name} 2>/dev/null +chown -R %{name}:%{name} /etc/%{name} 2>/dev/null +if [ "$1" = "1" ]; then + /sbin/service %{name} condrestart > /dev/null 2>&1 +fi + +%preun +/sbin/service %{veryoldname} stop > /dev/null 2>&1 ||: +/sbin/service %{oldname} stop > /dev/null 2>&1 ||: + +if [ "$1" = "0" ]; then + /sbin/service %{name} stop > /dev/null 2>&1 ||: + # No need to use chkconfig. The %%ghost files will handle it +fi + +%postun +#if [ "$1" -ge "1" ]; then +# /sbin/service %{name} condrestart > /dev/null 2>&1 +#fi +# We only remove it we this is not an upgrade +if [ "$1" = "0" ]; then + /bin/grep -E '^%{name}:' /etc/group > /dev/null && /usr/sbin/groupdel %{name} || /bin/true + id privoxy > /dev/null 2>&1 && /usr/sbin/userdel privoxy || /bin/true +fi + +%clean +[ "%{buildroot}" != "/" ] && rm -rf %{buildroot} + +%files +%defattr(0644,root,root,0755) +%doc README AUTHORS ChangeLog LICENSE +%doc doc/text/developer-manual.txt doc/text/user-manual.txt doc/text/faq.txt +%doc doc/webserver/developer-manual +%doc doc/webserver/user-manual +%doc doc/webserver/faq +%doc doc/webserver/p_doc.css doc/webserver/p_web.css doc/webserver/index.html +%doc doc/webserver/images + +%dir %{privoxyconf} +%dir %{privoxyconf}/templates +%attr(0744,%{name},%{name}) %dir %{_localstatedir}/log/%{name} + +%attr(0744,%{name},%{name})%{_sbindir}/%{name} + +# WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! +# We should not use wildchars here. This could mask missing files problems +# -- morcego +# WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! WARNING ! +%config(noreplace) %{privoxyconf}/config +%config %{privoxyconf}/standard.action +%config(noreplace) %{privoxyconf}/user.action +%config %{privoxyconf}/default.action +%config %{privoxyconf}/default.filter +%config %{privoxyconf}/trust + +# Please keep these alphabetized so its easier to find one that +# is not included. +%config %{privoxyconf}/templates/blocked +%config %{privoxyconf}/templates/cgi-error-404 +%config %{privoxyconf}/templates/cgi-error-bad-param +%config %{privoxyconf}/templates/cgi-error-disabled +%config %{privoxyconf}/templates/cgi-error-file +%config %{privoxyconf}/templates/cgi-error-file-read-only +%config %{privoxyconf}/templates/cgi-error-modified +%config %{privoxyconf}/templates/cgi-error-parse +%config %{privoxyconf}/templates/cgi-style.css +%config %{privoxyconf}/templates/connect-failed +%config %{privoxyconf}/templates/default +%config %{privoxyconf}/templates/edit-actions-add-url-form +%config %{privoxyconf}/templates/edit-actions-for-url +%config %{privoxyconf}/templates/edit-actions-for-url-filter +%config %{privoxyconf}/templates/edit-actions-list +%config %{privoxyconf}/templates/edit-actions-list-button +%config %{privoxyconf}/templates/edit-actions-list-section +%config %{privoxyconf}/templates/edit-actions-list-url +%config %{privoxyconf}/templates/edit-actions-remove-url-form +%config %{privoxyconf}/templates/edit-actions-url-form +%config %{privoxyconf}/templates/mod-local-help +%config %{privoxyconf}/templates/mod-support-and-service +%config %{privoxyconf}/templates/mod-title +%config %{privoxyconf}/templates/mod-unstable-warning +%config %{privoxyconf}/templates/no-such-domain +%config %{privoxyconf}/templates/show-request +%config %{privoxyconf}/templates/show-status +%config %{privoxyconf}/templates/show-status-file +%config %{privoxyconf}/templates/show-url-info +%config %{privoxyconf}/templates/show-version +%config %{privoxyconf}/templates/toggle +%config %{privoxyconf}/templates/toggle-mini +%config %{privoxyconf}/templates/untrusted + +%config %{_sysconfdir}/logrotate.d/%{name} +%config %attr(0744,root,root) %{_sysconfdir}/rc.d/init.d/%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc0.d/K09%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc1.d/K09%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc2.d/S84%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc3.d/S84%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc4.d/K09%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc5.d/S84%{name} +%ghost %attr(-,root,root) %{_sysconfdir}/rc.d/rc6.d/K09%{name} + +%{_mandir}/man1/%{name}.* + +%changelog +* Fri May 24 2002 Hal Burgiss ++ privoxy-2.9.15-1 +- Add another template and alphabetize these for easier tracking. +- Add doc/images directory. + +* Wed May 15 2002 Hal Burgiss ++ privoxy-2.9.15-1 +- Add templates/edit-actions-list-button + +* Fri May 03 2002 Rodrigo Barbosa ++ privoxy-2.9.15-1 +- Version bump +- Adding noreplace for %%{privoxyconf}/config +- Included a method to verify if the versions declared on the specfile and + configure.in match. Interrupt the build if they don't. + +* Fri Apr 26 2002 Rodrigo Barbosa ++ privoxy-2.9.14-3 +- Changing Vendor to Privoxy.Org + +* Tue Apr 23 2002 Hal Burgiss ++ privoxy-2.9.14-2 +- Adjust for new *actions files. + +* Mon Apr 22 2002 Rodrigo Barbosa ++ privoxy-2.9.14-2 +- Removed the redhat hack that prevented the user and group from + being dealocated. That was a misundestanding of my part regarding + redhat policy. + +* Mon Apr 22 2002 Rodrigo Barbosa ++ privoxy-2.9.14-2 +- Using macros to define uid and gid values +- Bumping release + +* Mon Apr 22 2002 Rodrigo Barbosa ++ privoxy-2.9.14-1 +- Changes to fixate the uid and gid values as (both) 73. This is a + value we hope to standarize for all distributions. RedHat already + uses it, and Conectiva should start as soon as I find where the heck + I left my cluebat :-) +- Only remove the user and group on uninstall if this is not redhat, once + redhat likes to have the values allocated even if the package is not + installed + +* Tue Apr 16 2002 Hal Burgiss ++ privoxy-2.9.13-6 +- Add --disable-dynamic-pcre to configure. + +* Wed Apr 10 2002 Rodrigo Barbosa ++ privoxy-2.9.13-5 +- Relisting template files on the %%files section + +* Tue Apr 09 2002 Hal Burgiss ++ privoxy-2.9.13-4 +- Removed 'make dok'. Docs are all maintained in CVS (and tarball) now. + +* Mon Apr 08 2002 Hal Burgiss ++ privoxy-2.9.13-4 +- Add templates/cgi-style.css, faq.txt, p_web.css, LICENSE +- Remove templates/blocked-compact. +- Add more docbook stuff to Builderquires. + +* Thu Mar 28 2002 Sarantis Paskalis ++ privoxy-2.9.13-3 +- Include correct documentation file. + +* Tue Mar 26 2002 Hal Burgiss ++ privoxy-2.9.13-3 +- Fix typo in Description. + +* Tue Mar 26 2002 Rodrigo Barbosa ++ privoxy-2.9.13-3 +- Added commentary asking to update the release value on the configure + script + +* Tue Mar 25 2002 Hal Burgiss ++ privoxy-2.9.13-3 +- Added the missing edit-actions-for-url-filter to templates. + +* Mon Mar 25 2002 Rodrigo Barbosa ++ privoxy-2.9.13-2 +- Fixing Release number + +* Sun Mar 24 2002 Hal Burgiss ++ privoxy-2.9.13-2 +- Added faq to docs. + +* Sun Mar 24 2002 Rodrigo Barbosa ++ privoxy-2.9.13-2 +- Fixed the init files entries. Now we use %%ghost +- improved username (and groupname) handling on the %%pre section. By improved + I mean: we do it by brute force now. Much easier to maintain. Yeah, you + got it right. No more Mr. Nice Guy. +- Removed the userdel call on %%post. No need, once it's complety handled on + the %%pre section + +* Sun Mar 24 2002 Hal Burgiss ++ junkbusterng-2.9.13-1 + Added autoheader. Added autoconf to buildrequires. + +* Sun Mar 24 2002 Hal Burgiss ++ junkbusterng-2.9.13-1 +- Fixed build problems re: name conflicts with man page and logrotate. +- Commented out rc?d/* configs for time being, which are causing a build +- failure. /etc/junkbuster is now /etc/privoxy. Stefan did other name +- changes. Fixed typo ';' should be ':' causing 'rpm -e' to fail. + +* Fri Mar 22 2002 Rodrigo Barbosa ++ junkbusterng-2.9.13-1 +- References to the expression ijb where changed where possible +- New package name: junkbusterng (all in lower case, acording to + the LSB recomendation) +- Version changed to: 2.9.13 +- Release: 1 +- Added: junkbuster to obsoletes and conflicts (Not sure this is + right. If it obsoletes, why conflict ? Have to check it later) +- Summary changed: Stefan, please check and aprove it +- Changes description to use the new name +- Sed string was NOT changed. Have to wait to the manpage to + change first +- Keeping the user junkbuster for now. It will require some aditional + changes on the script (scheduled for the next specfile release) +- Added post entry to move the old logfile to the new log directory +- Removing "chkconfig --add" entry (not good to have it automaticaly + added to the startup list). +- Added preun section to stop the service with the old name, as well + as remove it from the startup list +- Removed the chkconfig --del entry from the conditional block on + the preun scriptlet (now handled on the %files section) + +* Thu Mar 21 2002 Hal Burgiss +- added ijb_docs.css to docs. + +* Mon Mar 11 2002 Hal Burgiss ++ junkbuster-2.9.11-8 +- Take out --enable-no-gifs, breaks some browsers. + +* Sun Mar 10 2002 Hal Burgiss ++ junkbuster-2.9.11-8 +- Add --enable-no-gifs to configure. + +* Fri Mar 08 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-7 +- Added BuildRequires to libtool. + +* Tue Mar 06 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-6 +- Changed the routined that handle the junkbust and junkbuster users on + %%pre and %%post to work in a smoother manner +- %%files now uses hardcoded usernames, to avoid problems with package + name changes in the future + +* Tue Mar 05 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-5 +- Added "make redhat-dok" to the build process +- Added docbook-utils to BuildRequires + +* Tue Mar 05 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-4 +- Changing man section in the manpage from 1 to 8 +- We now require packages, not files, to avoid issues with apt + +* Mon Mar 04 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-3 +- Fixing permissions of the init script + +* Mon Mar 04 2002 Rodrigo Barbosa ++ junkbuster-2.9.11-2 +- General specfile fixup, using the best recomended practices, including: + - Adding -q to %%setup + - Using macros whereever possible + - Not using wildchars on %%files section + - Doubling the percentage char on changelog and comments, to + avoid rpm expanding them + +* Sun Mar 03 2002 Hal Burgiss +- /bin/false for shell causes init script to fail. Reverting. + +* Wed Jan 09 2002 Hal Burgiss +- Removed UID 73. Included user-manual and developer-manual in docs. + Include other actions files. Default shell is now /bin/false. + Userdel user=junkbust. ChangeLog was not zipped. Removed + RPM_OPT_FLAGS kludge. + +* Fri Dec 28 2001 Thomas Steudten +- add paranoia check for 'rm -rf %%{buildroot}' +- add gzip to 'BuildRequires' + +* Sat Dec 1 2001 Hal Burgiss +- actionsfile is now ijb.action. + +* Tue Nov 6 2001 Thomas Steudten +- Compress manpage +- Add more documents for installation +- Add version string to name and source + +* Wed Oct 24 2001 Hal Burigss +- Back to user 'junkbuster' and fix configure macro. + +* Wed Oct 10 2001 Hal Burigss +- More changes for user 'junkbust'. Init script had 'junkbuster'. + +* Sun Sep 23 2001 Hal Burgiss +- Change of $RPM_OPT_FLAGS handling. Added new HTML doc files. +- Changed owner of /etc/junkbuster to shut up PAM/xauth log noise. + +* Thu Sep 13 2001 Hal Burgiss +- Added $RPM_OPT_FLAGS support, renaming of old logfile, and +- made sure no default shell exists for user junkbust. + +* Sun Jun 3 2001 Stefan Waldherr +- rework of RPM + +* Mon Sep 25 2000 Stefan Waldherr +- CLF Logging patch by davep@cyw.uklinux.net +- Hal DeVore fix akamaitech in blocklist + +* Sun Sep 17 2000 Stefan Waldherr +- Steve Kemp skx@tardis.ed.ac.uk's javascript popup patch. +- Markus Breitenbach breitenb@rbg.informatik.tu-darmstadt.de supplied + numerous fixes and enhancements for Steve's patch. +- adamlock@netscape.com (Adam Lock) in the windows version: + - Taskbar activity spinner always spins even when logging is + turned off (which is the default) - people who don't + like the spinner can turn it off from a menu option. + - Taskbar popup menu has a options submenu - people can now + open the settings files for cookies, blockers etc. + without opening the JB window. + - Logging functionality works again + - Buffer overflow is fixed - new code uses a bigger buffer + and snprintf so it shouldn't overflow anymore. +- Fixed userid swa, group learning problem while installing. + root must build RPM. +- Added patch by Benjamin Low that prevents JB to + core dump when there is no log file. +- Tweaked SuSE startup with the help of mohataj@gmx.net and Doc.B@gmx.de. +- Fixed man page to include imagefile and popupfile. +- Sanity check for the statistics function added. +- "Patrick D'Cruze" : It seems Microsoft + are transitioning Hotmail from FreeBSD/Apache to Windows 2000/IIS. + With IIS/5, it appears to omit the trailing \r\n from http header + only messages. eg, when I visit http://www.hotmail.com, IIS/5 + responds with a HTTP 302 redirect header. However, this header + message is missing the trailing \r\n. IIS/5 then closes the + connection. Junkbuster, unfortunately, discards the header becomes + it thinks it is incomplete - and it is. MS have transmitted an + incomplete header! +- Added bug reports and patch submission forms in the docs. + +* Mon Mar 20 2000 Stefan Waldherr + Andrew extended the JB: + Display of statistics of the total number of requests and the number + of requests filtered by junkbuster, also the percentage of requests + filtered. Suppression of the listing of files on the proxy-args page. + All stuff optional and configurable. + +* Sun Sep 12 1999 Stefan Waldherr + Jan Willamowius (jan@janhh.shnet.org) fixed a bug in the + code which prevented the JB from handling URLs of the form + user:password@www.foo.com. Fixed. + +* Mon Aug 2 1999 Stefan Waldherr + Blank images are no longer cached, thanks to a hint from Markus + Breitenbach . The user + agent is NO longer set by the Junkbuster. Sadly, many sites depend + on the correct browser version nowadays. Incorporated many + suggestions from Jan "Yenya" Kasprzak for the + spec file. Fixed logging problem and since runlevel 2 does not + use networking, I replaced /etc/rc.d/rc2.d/S84junkbuster with + /etc/rc.d/rc2.d/K09junkbuster thanks to Shaw Walker + . You should now be able to build this RPM as + a non-root user (mathias@weidner.sem.lipsia.de). + +* Sun Jan 31 1999 Stefan Waldherr + %%{_localstatedir}/log/junkbuster set to nobody. Added /etc/junkbuster/imagelist + to allow more sophisticated matching of blocked images. Logrotate + logfile. Added files for auto-updating the blocklist et al. + +* Wed Dec 16 1998 Stefan Waldherr + Configure blank version via config file. No separate blank + version anymore. Added Roland's + patch to show a logo instead of a blank area. Added a suggestion + from Alex : %%{_localstatedir}/lock/subsys/junkbuster. + More regexps in the blocklist. Prepared the forwardfile for + squid. Extended image regexp with help from gabriel + . + +* Thu Nov 19 1998 Stefan Waldherr + All RPMs now identify themselves in the show-proxy-args page. + Released Windoze version. Run junkbuster as nobody instead of + root. + +* Fri Oct 30 1998 Stefan Waldherr + Newest version. First release (hence the little version number + mixture -- 2.0.2-0 instead of 2.0-7). This version tightens + security over 2.0.1; some multi-user sites will need to change + the listen-address in the configuration file. The blank version of + the Internet Junkbuster has a more sophisticated way of replacing + images. All RPMs identify themselves in the show-proxy-args page. + +* Thu Sep 23 1998 Stefan Waldherr + Modified the blocking feature, so that only GIFs and JPEGs are + blocked and replaced but not HTML pages. Thanks to + "Gerd Flender" for this nice + idea. Added numerous stuff to the blocklist. Keep patches in + seperate files and no longer in diffs (easier to maintain). + +* Tue Jun 16 1998 Stefan Waldherr + Moved config files to /etc/junkbuster directory, moved man page, + added BuildRoot directive (Thanks to Alexey Nogin ) + Made new version junkbuster-raw (which is only a stripped version of + the junkuster rpm, i.e. without my blocklist, etc.) + +* Tue Jun 16 1998 (2.0-1) + Uhm, not that much. Just a new junkbuster version that + fixes a couple of bugs ... and of course a bigger + blocklist with the unique Now-less-ads-than-ever(SM) + feature. + Oh, one thing: I changed the default user agent to Linux -- no + need anymore to support Apple. + +* Tue Jun 16 1998 (2.0-0) + Now-less-ads-than-ever (SM) + compiled with gcc instead of cc + compiled with -O3, thus it should be a little faster + show-proxy-args now works + /etc/junkbuster.init wasn't necessary + +* Tue Jun 16 1998 (1.4) + some more config files were put into /etc + The junkbuster-blank rpm returns a 1x1 pixel image, that gets + displayed by Netscape instead of the blocked image. + Read http://www.waldherr.org/junkbuster/ for + further info. + +* Tue Jun 16 1998 (1.3) + The program has been moved to /usr/sbin (from /usr/local/bin) + Init- and stopscripts (/etc/rc.d/rc*) have been added so + that the junkbuster starts automatically during bootup. + The /etc/blocklist file is much more sophisticated. Theoretically + one should e.g. browse all major US and German newspapers without + seeing one annoying ad. + junkbuster.init was modified. It now starts junkbuster with an + additional "-r @" flag. + +# $Log: privoxy-rh.spec,v $ +# Revision 1.32 2002/05/16 01:37:29 hal9 +# Add new template file so CGI stuff works :) +# +# Revision 1.31 2002/05/03 17:14:35 morcego +# *.spec: Version bump to 2.9.15 +# -rh.spec: noreplace for %%{privoxyconf}/config +# Will interrupt the build if versions from configure.in and +# specfile do not match +# +# Revision 1.30 2002/04/26 15:51:05 morcego +# Changing Vendor value to Privoxy.Org +# +# Revision 1.29 2002/04/24 03:13:51 hal9 +# New actions files changes. +# +# Revision 1.28 2002/04/22 18:51:33 morcego +# user and group now get removed on rh too. +# +# Revision 1.27 2002/04/22 16:32:31 morcego +# configure.in, *.spec: Bumping release to 2 (2.9.14-2) +# -rh.spec: uid and gid are now macros +# -suse.spec: Changing the header Copyright to License (Copyright is +# deprecable) +# +# Revision 1.26 2002/04/22 16:24:36 morcego +# - Changes to fixate the uid and gid values as (both) 73. This is a +# value we hope to standarize for all distributions. RedHat already +# uses it, and Conectiva should start as soon as I find where the heck +# I left my cluebat :-) +# - Only remove the user and group on uninstall if this is not redhat, once +# redhat likes to have the values allocated even if the package is not +# installed +# +# Revision 1.25 2002/04/17 01:59:12 hal9 +# Add --disable-dynamic-pcre. +# +# Revision 1.24 2002/04/11 10:09:20 oes +# Version 2.9.14 +# +# Revision 1.23 2002/04/10 18:14:45 morcego +# - (privoxy-rh.spec only) Relisting template files on the %%files section +# - (configure.in, privoxy-rh.spec) Bumped package release to 5 +# +# Revision 1.22 2002/04/09 22:06:12 hal9 +# Remove 'make dok'. +# +# Revision 1.21 2002/04/09 02:52:26 hal9 +# - Add templates/cgi-style.css, faq.txt, p_web.css, LICENSE +# - Remove templates/blocked-compact. +# - Add more docbook stuff to Buildrequires. +# +# Revision 1.20 2002/04/08 20:27:45 swa +# fixed JB spelling +# +# Revision 1.19 2002/03/27 22:44:59 sarantis +# Include correct documentation file. +# +# Revision 1.18 2002/03/27 22:10:14 sarantis +# bumped Hal's last commit 1 day to the future to make rpm build again. +# +# Revision 1.17 2002/03/27 00:48:23 hal9 +# Fix up descrition. +# +# Revision 1.16 2002/03/26 22:29:55 swa +# we have a new homepage! +# +# Revision 1.15 2002/03/26 17:39:54 morcego +# Adding comment on the specfile to remember the packager to update +# the release number on the configure script +# +# Revision 1.14 2002/03/26 14:25:15 hal9 +# Added edit-actions-for-url-filter to templates in %%config +# +# Revision 1.13 2002/03/25 13:31:04 morcego +# Bumping Release tag. +# +# Revision 1.12 2002/03/25 03:11:40 hal9 +# Do it right way this time :/ +# +# Revision 1.11 2002/03/25 03:09:51 hal9 +# Added faq to docs. +# +# Revision 1.10 2002/03/24 22:16:14 morcego +# Just removing some old commentaries. +# +# Revision 1.9 2002/03/24 22:03:22 morcego +# Should be working now. See %changelog for details +# +# Revision 1.8 2002/03/24 21:13:01 morcego +# Tis broken. +# +# Revision 1.7 2002/03/24 21:07:18 hal9 +# Add autoheader, etc. +# +# Revision 1.6 2002/03/24 19:56:40 hal9 +# /etc/junkbuster is now /etc/privoxy. Fixed ';' typo. +# +# Revision 1.4 2002/03/24 13:32:42 swa +# name change related issues +# +# Revision 1.3 2002/03/24 12:56:21 swa +# name change related issues. +# +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.1 2002/03/22 20:53:03 morcego +# - Ongoing process to change name to JunkbusterNG +# - configure/configure.in: no change needed +# - GNUmakefile.in: +# - TAR_ARCH = /tmp/JunkbusterNG-$(RPM_VERSION).tar.gz +# - PROGRAM = jbng@EXEEXT@ +# - rh-spec now references as junkbusterng-rh.spec +# - redhat-upload: references changed to junkbusterng-* (package names) +# - tarball-dist: references changed to JunkbusterNG-distribution-* +# - tarball-src: now JunkbusterNG-* +# - install: initscript now junkbusterng.init and junkbusterng (when +# installed) +# - junkbuster-rh.spec: renamed to junkbusterng-rh.spec +# - junkbusterng.spec: +# - References to the expression ijb where changed where possible +# - New package name: junkbusterng (all in lower case, acording to +# the LSB recomendation) +# - Version changed to: 2.9.13 +# - Release: 1 +# - Added: junkbuster to obsoletes and conflicts (Not sure this is +# right. If it obsoletes, why conflict ? Have to check it later) +# - Summary changed: Stefan, please check and aprove it +# - Changes description to use the new name +# - Sed string was NOT changed. Have to wait to the manpage to +# change first +# - Keeping the user junkbuster for now. It will require some aditional +# changes on the script (scheduled for the next specfile release) +# - Added post entry to move the old logfile to the new log directory +# - Removing "chkconfig --add" entry (not good to have it automaticaly +# added to the startup list). +# - Added preun section to stop the service with the old name, as well +# as remove it from the startup list +# - Removed the chkconfig --del entry from the conditional block on +# the preun scriptlet (now handled on the %files section) +# - junkbuster.init: renamed to junkbusterng.init +# - junkbusterng.init: +# - Changed JB_BIN to jbng +# - Created JB_OBIN with the old value of JB_BIN (junkbuster), to +# be used where necessary (config dir) +# +# Aditional notes: +# - The config directory is /etc/junkbuster yet. Have to change it on the +# specfile, after it is changes on the code +# - The only files that got renamed on the cvs tree were the rh specfile and +# the init file. Some file references got changes on the makefile and on the +# rh-spec (as listed above) +# +# Revision 1.43 2002/03/21 16:04:10 hal9 +# added ijb_docs.css to %doc +# +# Revision 1.42 2002/03/12 13:41:18 sarantis +# remove hard-coded "ijbswa" string in build phase +# +# Revision 1.41 2002/03/11 22:58:32 hal9 +# Remove --enable-no-gifs +# +# Revision 1.39 2002/03/08 18:57:29 swa +# remove user junkbuster after de-installation. +# +# Revision 1.38 2002/03/08 13:45:27 morcego +# Adding libtool to Buildrequires +# +# Revision 1.37 2002/03/07 19:23:49 swa +# i hate to scroll. suse: wrong configdir. +# +# Revision 1.36 2002/03/07 05:06:54 morcego +# Fixed %pre scriptlet. And, as a bonus, you can even understand it now. :-) +# +# Revision 1.34 2002/03/07 00:11:57 morcego +# Few changes on the %pre and %post sections of the rh specfile to handle +# usernames more cleanly +# +# Revision 1.33 2002/03/05 13:13:57 morcego +# - Added "make redhat-dok" to the build phase +# - Added docbook-utils to BuildRequires +# +# Revision 1.32 2002/03/05 12:34:24 morcego +# - Changing section internaly on the manpage from 1 to 8 +# - We now require packages, not files, to avoid issues with apt +# +# Revision 1.31 2002/03/04 18:06:09 morcego +# SPECFILE: fixing permissing of the init script (broken by the last change) +# +# Revision 1.30 2002/03/04 16:18:03 morcego +# General cleanup of the rh specfile. +# +# %changelog +# * Mon Mar 04 2002 Rodrigo Barbosa +# + junkbuster-2.9.11-2 +# - General specfile fixup, using the best recomended practices, including: +# - Adding -q to %%setup +# - Using macros whereever possible +# - Not using wildchars on %%files section +# - Doubling the percentage char on changelog and comments, to +# avoid rpm expanding them +# +# Revision 1.29 2002/03/03 19:21:22 hal9 +# Init script fails if shell is /bin/false. +# +# Revision 1.28 2002/01/09 18:34:03 hal9 +# nit. +# +# Revision 1.27 2002/01/09 18:32:02 hal9 +# Removed RPM_OPT_FLAGS kludge. +# +# Revision 1.26 2002/01/09 18:21:10 hal9 +# A few minor updates. +# +# Revision 1.25 2001/12/28 01:45:36 steudten +# Add paranoia check and BuildReq: gzip +# +# Revision 1.24 2001/12/01 21:43:14 hal9 +# Allowed for new ijb.action file. +# +# Revision 1.23 2001/11/06 12:09:03 steudten +# Compress doc files. Install README and AUTHORS at last as document. +# +# Revision 1.22 2001/11/05 21:37:34 steudten +# Fix to include the actual version for name. +# Let the 'real' packager be included - sorry stefan. +# +# Revision 1.21 2001/10/31 19:27:27 swa +# consistent description. new name for suse since +# we had troubles with rpms of identical names +# on the webserver. +# +# Revision 1.20 2001/10/24 15:45:49 hal9 +# To keep Thomas happy (aka correcting my mistakes) +# +# Revision 1.19 2001/10/15 03:23:59 hal9 +# Nits. +# +# Revision 1.17 2001/10/10 18:59:28 hal9 +# Minor change for init script. +# +# Revision 1.16 2001/09/24 20:56:23 hal9 +# Minor changes. +# +# Revision 1.13 2001/09/10 17:44:43 swa +# integrate three pieces of documentation. needs work. +# will not build cleanly under redhat. +# +# Revision 1.12 2001/09/10 16:25:04 swa +# copy all templates. version updated. +# +# Revision 1.11 2001/07/03 11:00:25 sarantis +# replaced permissionsfile with actionsfile +# +# Revision 1.10 2001/07/03 09:34:44 sarantis +# bumped up version number. +# +# Revision 1.9 2001/06/12 18:15:29 swa +# the %% in front of configure (see tag below) confused +# the rpm build process on 7.1. +# +# Revision 1.8 2001/06/12 17:15:56 swa +# fixes, because a clean build on rh6.1 was impossible. +# GZIP confuses make, %% configure confuses rpm, etc. +# +# Revision 1.7 2001/06/11 12:17:26 sarantis +# fix typo in %%post +# +# Revision 1.6 2001/06/11 11:28:25 sarantis +# Further optimizations and adaptations in the spec file. +# +# Revision 1.5 2001/06/09 09:14:11 swa +# shamelessly adapted RPM stuff from the newest rpm that +# RedHat provided for the JB. +# +# Revision 1.4 2001/06/08 20:54:18 swa +# type with status file. remove forward et. al from file list. +# +# Revision 1.3 2001/06/07 17:28:10 swa +# cosmetics +# +# Revision 1.2 2001/06/04 18:31:58 swa +# files are now prefixed with either `confdir' or `logdir'. +# `make redhat-dist' replaces both entries confdir and logdir +# with redhat values +# +# Revision 1.1 2001/06/04 10:44:57 swa +# `make redhatr-dist' now works. Except for the paths +# in the config file. +# +# +# diff --git a/privoxy-suse.spec b/privoxy-suse.spec new file mode 100644 index 00000000..cca70d00 --- /dev/null +++ b/privoxy-suse.spec @@ -0,0 +1,456 @@ +# $Id: privoxy-suse.spec,v 1.19 2002/05/03 17:14:36 morcego Exp $ +# +# Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# + +# do not set to %{name} +%define privoxyconf %{_sysconfdir}/privoxy +%define privoxy_uid 73 +%define privoxy_gid 73 + + +Summary: Privoxy - privacy enhancing proxy +Vendor: Privoxy.Org +Name: privoxy-suse +Distribution: defineme +Version: 2.9.15 +Release: 1 +# Needs makefile change: Source: http://prdownloads.sourceforge.net/ijbswa/privoxy-%{version}-%{status}-src.tar.gz +Source: http://prdownloads.sourceforge.net/ijbswa/privoxy-%{version}.tar.gz +# not sure if this works +BuildRoot: %{_tmppath}/%{name}-%{version}-root +Packager: Stefan Waldherr +License: GPL +Group: Networking/Utilities +URL: http://www.privoxy.org/ +Autoreqprov: on +BuildRequires: perl gzip libtool autoconf +Conflicts: junkbuster-raw junkbuster-blank junkbuster-suse junkbuster privoxy + +# +# ----------------------------------------------------------------------------- +# +%description +Privoxy is a web proxy with advanced filtering capabilities for +protecting privacy, filtering web page content, managing cookies, +controlling access, and removing ads, banners, pop-ups and other +obnoxious Internet junk. Privoxy has a very flexible configuration and +can be customized to suit individual needs and tastes. Privoxy has +application for both stand-alone systems and multi-user networks. + +Privoxy is based on the Internet Junkbuster. + +Authors: +-------- + http://www.privoxy.org/ + +SuSE series: n + +# +# ----------------------------------------------------------------------------- +# +%prep +%setup -c + +# +# ----------------------------------------------------------------------------- +# +%build +autoheader +autoconf +./configure --disable-dynamic-pcre +make + + +## Explicitily stripping is not recomended. +## This is handled altomaticaly by RPM, and can couse troubles if +## anyone wants to build an unstriped version - morcego +#strip privoxy + +# +# ----------------------------------------------------------------------------- +# +%install +[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT +mkdir -p ${RPM_BUILD_ROOT}%{_sbindir} \ + ${RPM_BUILD_ROOT}%{_mandir}/man8 \ + ${RPM_BUILD_ROOT}/var/log/privoxy \ + ${RPM_BUILD_ROOT}%{privoxyconf}/templates \ + ${RPM_BUILD_ROOT}%{_sysconfdir}/logrotate.d \ + ${RPM_BUILD_ROOT}%{_sysconfdir}/init.d +gzip README AUTHORS ChangeLog privoxy.1 LICENSE || /bin/true +install -s -m 744 privoxy $RPM_BUILD_ROOT%{_sbindir}/privoxy +cp -f privoxy.1.gz $RPM_BUILD_ROOT%{_mandir}/man8/privoxy.8.gz +cp -f *.action $RPM_BUILD_ROOT%{privoxyconf}/ +cp -f default.filter $RPM_BUILD_ROOT%{privoxyconf}/default.filter +cp -f trust $RPM_BUILD_ROOT%{privoxyconf}/trust +cp -f templates/* $RPM_BUILD_ROOT%{privoxyconf}/templates/ +cp -f privoxy.logrotate $RPM_BUILD_ROOT%{_sysconfdir}/logrotate.d/privoxy +install -m 755 privoxy.init.suse $RPM_BUILD_ROOT%{_sysconfdir}/init.d/privoxy +install -m 711 -d $RPM_BUILD_ROOT/var/log/privoxy +ln -sf /etc/init.d/privoxy $RPM_BUILD_ROOT/usr/sbin/rcprivoxy + +# verify all file locations, etc. in the config file +# don't start with ^ or commented lines are not replaced +cat config | \ + sed 's/^confdir.*/confdir \/etc\/privoxy/g' | \ +# sed 's/^permissionsfile.*/permissionsfile \/etc\/privoxy\/permissionsfile/g' | \ +# sed 's/^filterfile.*/default.filter \/etc\/privoxy\/default.filter/g' | \ +# sed 's/^logfile.*/logfile \/var\/log\/privoxy\/logfile/g' | \ +# sed 's/^jarfile.*/jarfile \/var\/log\/privoxy\/jarfile/g' | \ +# sed 's/^forward.*/forward \/etc\/privoxy\/forward/g' | \ +# sed 's/^aclfile.*/aclfile \/etc\/privoxy\/aclfile/g' > \ + sed 's/^logdir.*/logdir \/var\/log\/privoxy/g' > \ + $RPM_BUILD_ROOT%{privoxyconf}/config + +# +# ----------------------------------------------------------------------------- +# +%pre +# We check to see if the user privoxy exists. +# If it does, we do nothing +# If we don't, we check to see if the user junkbust exist and, in case it +# does, we change it do privoxy. If it also does not exist, we create the +# privoxy user -- morcego +id privoxy > /dev/null 2>&1 +if [ $? -eq 1 ]; then + id junkbust > /dev/null 2>&1 + if [ $? -eq 0 ]; then + /usr/sbin/usermod -u %{privoxy_uid} -g %{privoxy_gid} -l privoxy -d %{_sysconfdir}/privoxy -s "" junkbust > /dev/null 2>&1 + else +# -r does not work on suse. + /usr/sbin/groupadd -g %{privoxy_gid} privoxy + /usr/sbin/useradd -u %{privoxy_uid} -d %{_sysconfdir}/privoxy -g privoxy -s "" privoxy > /dev/null 2>&1 + fi +fi + +# +# ----------------------------------------------------------------------------- +# +%post +[ -f /var/log/privoxy/privoxy ] &&\ + mv -f /var/log/privoxy/privoxy /var/log/privoxy/logfile || /bin/true +chown -R privoxy:privoxy /var/log/privoxy 2>/dev/null +chown -R privoxy:privoxy /etc/privoxy 2>/dev/null +# not available on suse +#if [ "$1" = "1" ]; then +# /sbin/chkconfig --add privoxy +# /sbin/service privoxy condrestart > /dev/null 2>&1 +#fi +# 01/09/02 HB, getting rid of any user=junkbust +# Changed by morcego to use the id command. +id junkbust > /dev/null 2>&1 && /usr/sbin/userdel junkbust || /bin/true +sbin/insserv etc/init.d/privoxy + +# +# ----------------------------------------------------------------------------- +# +%preun +# need to stop the service on suse. swa. +#if [ "$1" = "0" ]; then +# /sbin/service privoxy stop > /dev/null 2>&1 ||: +#fi + +# +# ----------------------------------------------------------------------------- +# +%postun +sbin/insserv etc/init.d/ +# dont forget to remove user and group privoxy +id privoxy > /dev/null 2>&1 && /usr/sbin/userdel privoxy || /bin/true + +# +# ----------------------------------------------------------------------------- +# +%clean +[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT + +# +# ----------------------------------------------------------------------------- +# +%files +%defattr(-,root,root) +%doc README.gz AUTHORS.gz ChangeLog.gz LICENSE.gz +%doc doc/webserver/developer-manual +%doc doc/webserver/user-manual +%doc doc/webserver/faq +%doc doc/webserver/p_doc.css +%doc doc/webserver/p_web.css +%doc doc/webserver/index.html +%doc doc/webserver/images +#%doc privoxy.weekly privoxy.monthly AUTHORS +%dir %{privoxyconf} +%config %{privoxyconf}/* +%attr(0744,privoxy,privoxy) %dir /var/log/privoxy +%config %{_sysconfdir}/logrotate.d/privoxy +%attr(0755,root,root)/usr/sbin/privoxy +%{_mandir}/man8/* +%config %{_sysconfdir}/init.d/privoxy +/usr/sbin/rcprivoxy + +# +# ----------------------------------------------------------------------------- +# +%changelog +* Fri May 24 2002 Hal Burgiss ++ privoxy-2.9.15-1 +- Add doc/images directory. + +* Fri May 03 2002 Rodrigo Barbosa ++ privoxy-suse-2.9.15-1 +- Version bump + +* Fri Apr 26 2002 Rodrigo Barbosa ++ privoxy-suse-2.9.14-3 +- Changing Vendor to Privoxy.Org + +* Mon Apr 22 2002 Rodrigo Barbosa ++ privoxy-suse-2.9.14-2 +- Bumping release to reflect the new value on configure.in +- Taking the oportunity to change the header Copyright to License. The + Copyright headers is deprecated, and after all, GPL is a license, not a + Copyright + +* Mon Apr 08 2002 Hal Burgiss ++ privoxy-2.9.13-4 +- Add LICENSE.gz, p_web.css, and index.html. Add autoconf +- to Buildrequires. + +* Wed Mar 27 2002 Hal Burgiss ++ privoxy-2.9.13-3 +- Doc css has changed names. + +* Tue Mar 25 2002 Hal Burgiss ++ privoxy-2.9.13-3 +- Minor fix to description. + +* Sun Mar 24 2002 Hal Burgiss +- added faq to docs. + +* Thu Mar 21 2002 Hal Burgiss +- added ijb_docs.css to docs. + +* Mon Mar 11 2002 Hal Burgiss +- Remove --enable-no-gifs from configure. + +* Sun Mar 03 2002 Hal Burgiss +- /bin/false for shell causes init script to fail. Reverting. + +* Wed Jan 09 2002 Hal Burgiss +- Removed UID 73. Included user-manual and developer-manual in docs. + Include other actions files. Default shell is now /bin/false. + Userdel user=junkbust. ChangeLog was not zipped. Removed + RPM_OPT_FLAGS kludge. + +* Fri Dec 28 2001 Thomas Steudten +- add paranoia check for 'rm -rf $RPM_BUILD_ROOT' +- add gzip to 'BuildRequires' + +* Sat Dec 1 2001 Hal Burgiss +- actionsfile is now ijb.action. + +* Tue Nov 6 2001 Thomas Steudten +- Compress manpage +- Add more documents for installation +- Add version string to name and source + +* Wed Oct 24 2001 Hal Burigss +- Back to user 'junkbuster' and fix configure macro. + +* Wed Oct 10 2001 Hal Burigss +- More changes for user 'junkbust'. Init script had 'junkbuster'. + +* Sun Sep 23 2001 Hal Burgiss +- Change of $RPM_OPT_FLAGS handling. Added new HTML doc files. +- Changed owner of /etc/junkbuster to shut up PAM/xauth log noise. + +* Thu Sep 13 2001 Hal Burgiss +- Added $RPM_OPT_FLAGS support, renaming of old logfile, and +- made sure no default shell exists for user junkbust. + +* Sun Jun 3 2001 Stefan Waldherr +- rework of RPM +* Wed Feb 14 2001 - uli@suse.de +- fixed init script +* Wed Dec 06 2000 - bjacke@suse.de +- renamed package to junkbuster +- fixed copyright tag +* Thu Nov 30 2000 - uli@suse.de +- moved init script to /etc/init.d +* Wed Feb 16 2000 - kukuk@suse.de +- Move /usr/man -> /usr/share/man +- Mark /etc/ijb as "config(noreplace)" +* Mon Sep 20 1999 - uli@suse.de +- fixed init script +* Mon Sep 13 1999 - bs@suse.de +- ran old prepare_spec on spec file to switch to new prepare_spec. +* Thu Apr 01 1999 - daniel@suse.de +- do not start ijb as root (security) +* Tue Mar 30 1999 - daniel@suse.de +- don´t use saclfile.ini +* Tue Mar 30 1999 - daniel@suse.de +- small fix to whitelist-configuration, + version is and was 2.0.2 WITHOUT Stefan Waldherr's patches + (http://www.waldherr.org/junkbuster/) +* Mon Mar 01 1999 - daniel@suse.de +- new package: version 2.0 + +# $Log: privoxy-suse.spec,v $ +# Revision 1.19 2002/05/03 17:14:36 morcego +# *.spec: Version bump to 2.9.15 +# -rh.spec: noreplace for %%{privoxyconf}/config +# Will interrupt the build if versions from configure.in and +# specfile do not match +# +# Revision 1.18 2002/04/27 20:26:59 swa +# uid, gui 73 incorporated +# +# Revision 1.17 2002/04/26 15:51:05 morcego +# Changing Vendor value to Privoxy.Org +# +# Revision 1.16 2002/04/22 16:32:31 morcego +# configure.in, *.spec: Bumping release to 2 (2.9.14-2) +# -rh.spec: uid and gid are now macros +# -suse.spec: Changing the header Copyright to License (Copyright is +# deprecable) +# +# Revision 1.15 2002/04/16 18:49:07 oes +# Build with static built-in pcre +# +# Revision 1.14 2002/04/11 17:57:40 oes +# Fixed(?) Conflicts: Provides: Obsoletes: +# +# Revision 1.13 2002/04/11 10:09:20 oes +# Version 2.9.14 +# +# Revision 1.12 2002/04/09 13:29:43 swa +# build suse and gen-dist with html docs. do not generate docs while building rpm +# +# Revision 1.11 2002/04/09 03:12:37 hal9 +# Add LICENSE, p_web.css and index.html. Add autoconf to buildrequires. +# +# Revision 1.10 2002/04/08 20:24:13 swa +# fixed JB spelling +# +# Revision 1.9 2002/03/30 09:01:52 swa +# new release +# +# Revision 1.8 2002/03/27 23:46:41 hal9 +# ijb_docs.css to p_doc.css +# +# Revision 1.7 2002/03/27 00:49:39 hal9 +# Minor fix to description. +# +# Revision 1.6 2002/03/26 22:29:55 swa +# we have a new homepage! +# +# Revision 1.5 2002/03/25 03:10:50 hal9 +# Added faq to docs. +# +# Revision 1.4 2002/03/24 12:56:21 swa +# name change related issues. +# +# Revision 1.3 2002/03/24 12:44:31 swa +# new version string +# +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.21 2002/03/21 16:04:33 hal9 +# added ijb_docs.css to %%doc +# +# Revision 1.20 2002/03/12 13:42:14 sarantis +# remove hardcoded "ijbswa" from build phase +# +# Revision 1.19 2002/03/11 22:59:05 hal9 +# Remove --enable-no-gifs +# +# Revision 1.18 2002/03/11 12:30:31 swa +# be consistent with rh spec file +# +# Revision 1.17 2002/03/08 19:30:23 swa +# remove user junkbuster after de-installation. +# synced suse with rh-specfile. installation +# and de-installation seem to work. +# +# Revision 1.16 2002/03/08 18:40:44 swa +# build requires tools. useradd and del works +# now. +# +# Revision 1.15 2002/03/07 19:23:50 swa +# i hate to scroll. suse: wrong configdir. +# +# Revision 1.14 2002/03/07 19:10:21 swa +# builds cleanly. thanks to kukuk@suse.de +# not yet tested. +# +# Revision 1.13 2002/03/07 18:25:56 swa +# synced redhat and suse build process +# +# Revision 1.12 2002/03/02 15:50:04 swa +# 2.9.11 version. more input for docs. +# +# Revision 1.11 2001/12/02 10:29:26 swa +# New version made these changes necessary. +# +# Revision 1.10 2001/10/31 19:27:27 swa +# consistent description. new name for suse since +# we had troubles with rpms of identical names +# on the webserver. +# +# Revision 1.9 2001/10/26 18:17:23 swa +# new version string +# +# Revision 1.8 2001/09/13 16:22:42 swa +# man page is legacy. suse rpm now contains html +# documentation. +# +# Revision 1.7 2001/09/10 17:44:22 swa +# integrate three pieces of documentation. +# +# Revision 1.6 2001/09/10 16:29:23 swa +# binary contained debug info. +# buildroot definition fucks up the build process under suse. +# program needs to write in varlogjunkbuster +# install all templates +# create varlogjunkbuster +# +# Revision 1.5 2001/06/09 09:13:29 swa +# description shorter +# +# Revision 1.4 2001/06/08 20:53:36 swa +# use buildroot, export init to separate file (better manageability) +# +# Revision 1.3 2001/06/07 17:28:10 swa +# cosmetics +# +# Revision 1.2 2001/06/07 17:18:44 swa +# header fixed +# +# diff --git a/privoxy.1 b/privoxy.1 new file mode 100644 index 00000000..19cc5e26 --- /dev/null +++ b/privoxy.1 @@ -0,0 +1,304 @@ +.\" This manpage has been automatically generated by docbook2man +.\" from a DocBook document. This tool can be found at: +.\" +.\" Please send any bug reports, improvements, comments, patches, +.\" etc. to Steve Cheng . +.TH "PRIVOXY" "1" "14 May 2002" "Privoxy 2.9.15 beta" "" +.SH NAME +privoxy \- Privacy Enhancing Proxy +.SH SYNOPSIS + +\fBprivoxy\fR [\fB--help\fR] [\fB--version\fR] [\fB--no-daemon\fR] [\fB--pidfile \fIpidfile\fB\fR] [\fB--user \fIuser[.group]\fB\fR] [\fB\fIconfigfile\fB\fR] \fB(UNIX)\fR + + +\fBprivoxy.exe\fR [\fB\fIconfigfile\fB\fR] \fB(Windows)\fR + +.SH "OPTIONS" +.PP +\fBPrivoxy\fR may be invoked with the following command line +options: +.TP +\fB--help\fR +Print brief usage info and exit. +.TP +\fB--version\fR +Print version info and exit. +.TP +\fB--no-daemon\fR +Don't become a daemon, i.e. don't fork and become process group +leader, don't detach from controlling tty, and do all logging there. +.TP +\fB--pidfile \fIpidfile\fB\fR +On startup, write the process ID to \fIpidfile\fR. +Delete the \fIpidfile\fR on exit. +Failiure to create or delete the \fIpidfile\fR +is non-fatal. If no \fB--pidfile\fR option is given, no PID file will be used. +.TP +\fB--user \fIuser[.group]\fB\fR +After (optionally) writing the PID file, assume the user ID of +\fIuser\fR and the GID of +\fIgroup\fR, or, if the optional +\fIgroup\fR was not given, the default group of +\fIuser\fR. Exit if the privileges are not +sufficient to do so. +.PP +If the \fIconfigfile\fR is not specified on the command line, +\fBPrivoxy\fR will look for a file named +\fIconfig\fR in the current directory (except on Win32 where +it will try \fIconfig.txt\fR). If no +\fIconfigfile\fR is found, \fBPrivoxy\fR will +fail to start. +.SH "DESCRIPTION" +.PP +\fBPrivoxy\fR is a web proxy with advanced filtering +capabilities for protecting privacy, filtering web page content, managing +cookies, controlling access, and removing ads, banners, pop-ups and other +obnoxious Internet junk. \fBPrivoxy\fR has a very +flexible configuration and can be customized to suit individual needs and +tastes. \fBPrivoxy\fR has application for both +stand-alone systems and multi-user networks. +.PP +\fBPrivoxy\fR is based on \fBInternet +Junkbuster\fR (tm). +.SH "INSTALLATION AND USAGE" +.PP +Browsers must be individually configured to use \fBPrivoxy\fR as +a HTTP proxy. The default setting is for localhost, on port 8118 +(configurable in the main config file). To set the HTTP proxy in Netscape +and Mozilla, go through: \fBEdit\fR; +\fBPreferences\fR; \fBAdvanced\fR; +\fBProxies\fR; \fBManual Proxy Configuration\fR; +\fBView\fR. +.PP +For Internet Explorer, go through: \fBTools\fR; +\fBInternet Properties\fR; \fBConnections\fR; +\fBLAN Settings\fR. +.PP +The Secure (SSL) Proxy should also be set to the same values, otherwise +https: URLs will not be proxied. +.PP +For other browsers, check the documentation. +.SH "CONFIGURATION" +.PP +\fBPrivoxy\fR can be configured with the various configuration +files. The default configuration files are: \fIconfig\fR, +\fIdefault.filter\fR, and +\fIdefault.action\fR. \fIuser.action\fR should +be used for locally defined exceptions to the default rules of +\fIdefault.action\fR These are all well commented. On Unix +and Unix-like systems, these are located in +\fI/etc/privoxy/\fR by default. On Windows, OS/2 and AmigaOS, +these files are in the same directory as the \fBPrivoxy\fR +executable. +.PP +The name and number of configuration files has changed from previous +versions, and is subject to change as development progresses. In fact, the +configuration itself is changed and much more sophisticated. See the +user-manual for a +complete explanation of all configuration options and general usage. +.PP +The actions list (ad blocks, etc) can also be configured with your +web browser at http://config.privoxy.org/. +\fBPrivoxy's\fR configuration parameters can also be viewed at +the same page. In addition, \fBPrivoxy\fR can be toggled on/off. +This is an internal page. +.SH "SAMPLE CONFIGURATION" +.PP +A brief example of what a simple \fIdefault.action\fR +configuration might look like: + +.nf + # Define a few useful custom aliases for later use + {{alias}} + + # Useful aliases + +crunch-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies + -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + +imageblock = +block +handle-as-image + + # Fragile sites should have the minimum changes + fragile = -block -deanimate-gifs -fast-redirects -filter \\ + -hide-referer -prevent-cookies -kill-popups + + ## Turn some actions on ################################ + { \\ + -add-header \\ + -block \\ + +deanimate-gifs{last} \\ + -downgrade-http-version \\ + -fast-redirects \\ + +filter{html-annoyances} \\ + +filter{js-annoyances} \\ + +filter{content-cookies} \\ + +filter{webbugs} \\ + +filter{banners-by-size} \\ + +hide-forwarded-for-headers \\ + +hide-from-header{block} \\ + +hide-referrer{forge} \\ + -hide-user-agent \\ + -handle-as-image \\ + +set-image-blocker{pattern} \\ + -limit-connect \\ + +prevent-compression \\ + +session-cookies-only \\ + -crunch-cookies \\ + -kill-popups \\ + } + / # '/' Matches *all* URL patterns + + # Block, and treat these URL patterns as if they were 'images'. + # We would expect these to be ads. + {+imageblock} + .ad.doubleclick.net + .a[0-9].yimg.com/(?:(?!/i/).)*$ + ad.*.doubleclick.net + + # Block any URLs that match these patterns + {+block} + ad*. + .*ads. + banner?. + /.*count(er)?\\.(pl|cgi|exe|dll|asp|php[34]?) + .hitbox.com + + # Make exceptions for these harmless ones that would be + # caught by our +block patterns just above. + {-block} + adsl. + advice. + .*downloads. +.fi +.PP +Then for a \fIuser.action\fR, we would put local, +narrowly defined exceptions: + +.nf + # Re-define aliases as needed here + {{alias}} + + # Useful aliases + -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies + + # Set personal exceptions to the policies in default.action ####### + + # Sites where we want persistant cookies, so allow *all* cookies + {-crunch-cookies -session-cookies-only} + .redhat.com + .sun.com + .msdn.microsoft.com + + # This site breaks easily. + {-block -fast-redirects} + .forbes.com +.fi +.PP +See the comments in the configuration files themselves, or the +\fIuser-manual\fR +for explanations of the above syntax, and other \fBPrivoxy\fR +configuration options. +.SH "FILES" + +.nf + + \fI/usr/sbin/privoxy\fR + \fI/etc/privoxy/config\fR + \fI/etc/privoxy/default.action\fR + \fI/etc/privoxy/standard.action\fR + \fI/etc/privoxy/user.action\fR + \fI/etc/privoxy/default.filter\fR + \fI/etc/privoxy/trust\fR + \fI/etc/privoxy/templates/*\fR + \fI/var/log/privoxy/logfile\fR +.fi +.PP +Various other files should be included, but may vary depending on platform +and build configuration. More documentation should be included in the local +documentation directory. +.SH "SIGNALS" +.PP +\fBPrivoxy\fR terminates on the \fBSIGINT\fR, +\fBSIGTERM\fR and \fBSIGABRT\fR signals. Log +rotation scripts may cause a re-opening of the logfile by sending a +\fBSIGHUP\fR to \fBPrivoxy\fR. Note that unlike +other daemons, \fBPrivoxy\fR does not need to be made aware of +config file changes by \fBSIGHUP\fR -- it will detect them +automatically. +.SH "NOTES" +.PP +This is a beta version of \fBPrivoxy\fR. Not +all features are well tested. +.PP +Please see the \fIuser-manual\fR on how to contact the +developers for feature requests, reporting problems, and other questions. +.SH "SEE ALSO" +.PP +Other references and sites of interest to \fBPrivoxy\fR +users: +.PP + +http://www.privoxy.org/, +The \fBPrivoxy\fR Home page. + +http://sourceforge.net/projects/ijbswa, +the Project Page for \fBPrivoxy\fR on +Sourceforge. + +http://p.p/, access +\fBPrivoxy\fR from your browser. Alternately, +http://config.privoxy.org +may work in some situations where the first does not. + +http://p.p/ to submit ``misses'' to the developers. + +http://www.junkbusters.com/ht/en/cookies.html + +http://www.waldherr.org/junkbuster/ + +http://privacy.net/analyze/ + +http://www.squid-cache.org/ +.SH "DEVELOPMENT TEAM" + +.nf + Jon Foster + Andreas Oesterhelt + Stefan Waldherr + Thomas Steudten + Rodney Stromlund + Rodrigo Barbosa (RPM specfiles) + Hal Burgiss (docs) + Alexander Lazic + Gábor Lipták + Guy + Haroon Rafique + David Schmidt (OS/2, Mac OSX ports) + Joerg Strohmayer + Sarantis Paskalis +.fi +.SH "COPYRIGHT AND LICENSE" +.SS "COPYRIGHT" +.PP +Copyright (C) 2001, 2002 by Privoxy Developers +.PP +Some source code is based on code Copyright (C) 1997 by Anonymous Coders +and Junkbusters, Inc. and licensed under the \fIGNU General Public +License\fR. +.SS "LICENSE" +.PP +\fBPrivoxy\fR is free software; you can +redistribute it and/or modify it under the terms of the +\fIGNU General Public +License\fR, version 2, as published by the Free Software Foundation. +.PP +This program is distributed in the hope that it will be useful, but WITHOUT +ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or +FITNESS FOR A PARTICULAR PURPOSE. See the +\fIGNU General Public License\fR for +more details, which is available from the Free Software Foundation, Inc, 59 +Temple Place - Suite 330, Boston, MA 02111-1307, USA. +.PP +You should have received a copy of the \fIGNU General Public License\fR +along with this program; if not, write to the Free Software +Foundation, Inc. 59 Temple Place - Suite 330 +Boston, MA 02111-1307 +USA diff --git a/privoxy.init b/privoxy.init new file mode 100644 index 00000000..ff05a7ec --- /dev/null +++ b/privoxy.init @@ -0,0 +1,259 @@ +#!/bin/sh +# +# This is file /etc/rc.d/init.d/privoxy and was put here +# by the privoxy rpm +# +# chkconfig: 235 84 09 +# +# description: This shell script takes care of starting and stopping \ +# privoxy. +# + +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/privoxy.init,v $ +# +# Purpose : This shell script takes care of starting and stopping +# privoxy. +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: privoxy.init,v $ +# Revision 1.7 2002/04/08 14:54:51 morcego +# Moved the chkconfig comments to the begining of the file, couse Linuxconf +# was getting confused with it where it was. +# +# Revision 1.6 2002/03/26 22:29:55 swa +# we have a new homepage! +# +# Revision 1.5 2002/03/25 06:14:18 morcego +# Removing the OPRG definition (no longer needed) +# +# Revision 1.4 2002/03/25 04:16:48 hal9 +# Fix proper config file location. +# +# Revision 1.3 2002/03/24 19:12:15 hal9 +# Fixed some naming conflicts. +# +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.1 2002/03/22 20:53:03 morcego +# - Ongoing process to change name to JunkbusterNG +# - configure/configure.in: no change needed +# - GNUmakefile.in: +# - TAR_ARCH = /tmp/JunkbusterNG-$(RPM_VERSION).tar.gz +# - PROGRAM = jbng@EXEEXT@ +# - rh-spec now references as junkbusterng-rh.spec +# - redhat-upload: references changed to junkbusterng-* (package names) +# - tarball-dist: references changed to JunkbusterNG-distribution-* +# - tarball-src: now JunkbusterNG-* +# - install: initscript now junkbusterng.init and junkbusterng (when +# installed) +# - junkbuster-rh.spec: renamed to junkbusterng-rh.spec +# - junkbusterng.spec: +# - References to the expression ijb where changed where possible +# - New package name: junkbusterng (all in lower case, acording to +# the LSB recomendation) +# - Version changed to: 2.9.13 +# - Release: 1 +# - Added: junkbuster to obsoletes and conflicts (Not sure this is +# right. If it obsoletes, why conflict ? Have to check it later) +# - Summary changed: Stefan, please check and aprove it +# - Changes description to use the new name +# - Sed string was NOT changed. Have to wait to the manpage to +# change first +# - Keeping the user junkbuster for now. It will require some aditional +# changes on the script (scheduled for the next specfile release) +# - Added post entry to move the old logfile to the new log directory +# - Removing "chkconfig --add" entry (not good to have it automaticaly +# added to the startup list). +# - Added preun section to stop the service with the old name, as well +# as remove it from the startup list +# - Removed the chkconfig --del entry from the conditional block on +# the preun scriptlet (now handled on the %files section) +# - junkbuster.init: renamed to junkbusterng.init +# - junkbusterng.init: +# - Changed JB_BIN to jbng +# - Created JB_OBIN with the old value of JB_BIN (junkbuster), to +# be used where necessary (config dir) +# +# Aditional notes: +# - The config directory is /etc/junkbuster yet. Have to change it on the +# specfile, after it is changes on the code +# - The only files that got renamed on the cvs tree were the rh specfile and +# the init file. Some file references got changes on the makefile and on the +# rh-spec (as listed above) +# +# Revision 1.15 2002/03/09 15:05:58 swa +# wrong user.group +# +# Revision 1.14 2002/03/06 06:13:40 hal9 +# Adapted for Andreas' changes for --user and --pidfile. +# +# Revision 1.13 2002/03/05 05:10:10 oes +# Changed pidfile path to conform with FHS +# +# Revision 1.12 2002/03/04 20:44:36 oes +# Changed to new cmdline syntax +# +# Revision 1.11 2001/12/30 14:07:32 steudten +# - Add signal handling (unix) +# - Add SIGHUP handler (unix) +# - Add creation of pidfile (unix) +# - Add action 'top' in rc file (RH) +# - Add entry 'SIGNALS' to manpage +# - Add exit message to logfile (unix) +# +# Revision 1.10 2001/11/05 21:30:23 steudten +# Make JB startup without & due to be a 'real' daemon right now. +# Make the script easy to change. +# +# Revision 1.9 2001/09/15 01:53:12 steudten +# +# Remove test for subsys flag in start. Some minor changes. +# +# Revision 1.8 2001/06/28 13:50:36 sarantis +# swap ?$ with $?; remove bogus ";;" +# +# Revision 1.7 2001/06/28 13:40:26 sarantis +# remove single quotes from $JB; it was not expanded. +# +# Revision 1.6 2001/06/28 13:38:42 sarantis +# formatting changes; individual return values are returned from the init script. +# +# Revision 1.5 2001/06/11 11:37:40 sarantis +# Minor editing changes. +# +# Revision 1.4 2001/06/09 09:14:11 swa +# shamelessly adapted RPM stuff from the newest rpm that +# RedHat provided for the JB. +# +# Revision 1.3 2001/05/25 10:12:44 oes +# Fixed default case in switch statement (# -> *) +# +# Revision 1.2 2001/05/24 07:52:24 swa +# added header. removed ^M. +# +# +# ********************************************************************/ + + +# Source function library. +. /etc/rc.d/init.d/functions + +. /etc/sysconfig/network + +# Check that networking is up. +[ ${NETWORKING} = "no" ] && exit 0 + +PRIVOXY_PRG="privoxy" +PRIVOXY_BIN="/usr/sbin/$PRIVOXY_PRG" +PRIVOXY_CONF="/etc/$PRIVOXY_PRG/config" +PRIVOXY_USER="privoxy" +PRIVOXY_PID=/var/run/$PRIVOXY_PRG.pid +PRIVOXY_LOCK=/var/lock/subsys/$PRIVOXY_PRG +PRIVOXY="$PRIVOXY_BIN --user $PRIVOXY_USER.$PRIVOXY_USER --pidfile $PRIVOXY_PID $PRIVOXY_CONF" + +# some checks for us +! [ -x $PRIVOXY_BIN ] && echo "Can't find $PRIVOXY_BIN, exit." && exit 0 +! [ -f $PRIVOXY_CONF ] && echo "Can't find $PRIVOXY_CONF, exit." && exit 0 + +# See how we were called. + +start () { + # start daemon + echo -n $"Starting $PRIVOXY_PRG: " + if [ -f $PRIVOXY_PID ]; then + killproc $PRIVOXY_PRG && rm -f $PRIVOXY_LOCK $PRIVOXY_PID + RETVAL=$? + [ $RETVAL != 0 ] && return $RETVAL + fi + daemon $PRIVOXY + RETVAL=$? + echo + [ $RETVAL = 0 ] && touch $PRIVOXY_LOCK + return $RETVAL +} + +stop () { + # stop daemon + echo -n $"Stopping $PRIVOXY_PRG: " + killproc $PRIVOXY_PRG && rm -f $PRIVOXY_LOCK $PRIVOXY_PID + RETVAL=$? + echo + return $RETVAL +} + +case "$1" in + start) + start + ;; + stop) + stop + ;; + reload) + if [ -f $PRIVOXY_PID ] ; then + kill -HUP `cat $PRIVOXY_PID` + RETVAL=$? + fi + ;; + restart) + stop + start + RETVAL=$? + ;; + condrestart) + # restart only if already running + if [ -f $PRIVOXY_PID ] ; then + stop + start + RETVAL=$? + fi + ;; + status) + status $PRIVOXY_PRG + RETVAL=$? + ;; + top) + if [ -f $PRIVOXY_PID ]; then + a="" + for i in `pidof $PRIVOXY_PRG` ; do + a="$a -p $i" + done + top $a + fi + ;; + *) + echo $"Usage: $PRIVOXY_PRG {start|stop|reload|restart|condrestart|status|top}" + exit 1 +esac + +exit $RETVAL diff --git a/privoxy.init.suse b/privoxy.init.suse new file mode 100644 index 00000000..7bab6def --- /dev/null +++ b/privoxy.init.suse @@ -0,0 +1,117 @@ +#! /bin/sh +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/privoxy.init.suse,v $ +# +# Purpose : This shell script takes care of starting and stopping +# privoxy. +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: privoxy.init.suse,v $ +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.7 2002/03/11 11:44:46 oes +# Working in suggestions by Thorsten Kukuk +# +# Revision 1.6 2002/03/09 14:56:34 swa +# wrong user.group +# +# Revision 1.5 2002/03/08 21:39:59 oes +# setgid to nogroup +# +# Revision 1.4 2002/03/05 19:54:37 oes +# Preliminary version of SuSE 8.0-certified init script ,-) +# +# Revision 1.3 2002/03/05 05:28:05 oes +# Added pidfile creation +# +# Revision 1.2 2001/09/10 16:25:46 swa +# jb did not start. none of the arguments worked. fixed. +# +# Revision 1.1 2001/06/08 20:53:36 swa +# use buildroot, export init to separate file (better manageability) +# +# +# +# ********************************************************************/ +### BEGIN INIT INFO +# Provides: privoxy +# Required-Start: $network $syslog $remote_fs +# Required-Stop: +# Default-Start: 3 5 +# Default-Stop: 0 1 2 6 +# Description: Starts Privoxy +### END INIT INFO + +. /etc/rc.config +rc_reset + +case "$1" in + start) + echo -n "Starting Privoxy" + if [ ! -f /var/run/privoxy.pid ] || ! kill -0 `cat /var/run/privoxy.pid` 2> /dev/null; then + /usr/sbin/privoxy --user privoxy.privoxy --pidfile /var/run/privoxy.pid /etc/privoxy/config 2> /dev/null + else + false + fi + rc_status -v + ;; + stop) + echo -n "Shutting down Privoxy" + killproc -TERM /usr/sbin/privoxy && rm -f /var/run/privoxy.pid + rc_status -v + ;; + reload) + echo -n "Reloading Privoxy" + kill -HUP `cat /var/run/privoxy.pid` + rc_status -v + ;; + try-restart) + $0 stop && $0 start + rc_status + ;; + restart) + $0 stop + $0 start + rc_status + ;; + status) + echo -n "Checking for Privoxy" + checkproc /usr/sbin/privoxy + rc_status -v + ;; + *) + echo "Usage: $0 {start|restart|reload|status|stop}" + exit 1 +esac + +rc_exit diff --git a/privoxy.logrotate b/privoxy.logrotate new file mode 100644 index 00000000..035112a5 --- /dev/null +++ b/privoxy.logrotate @@ -0,0 +1,96 @@ +# +# Logrotate file for Privoxy RPM +# +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/privoxy.logrotate,v $ +# +# Purpose : Rotates all potential Privoxy logfiles +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: privoxy.logrotate,v $ +# Revision 1.3 2002/03/24 15:19:57 swa +# name change related issue. +# +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.7 2001/12/30 14:07:32 steudten +# - Add signal handling (unix) +# - Add SIGHUP handler (unix) +# - Add creation of pidfile (unix) +# - Add action 'top' in rc file (RH) +# - Add entry 'SIGNALS' to manpage +# - Add exit message to logfile (unix) +# +# Revision 1.6 2001/12/13 23:19:43 steudten +# Add 'restart' of junkbuster service after rotate logfiles. +# Better we could use the well known 'kill -HUP', but the handler +# isn't there at this time. +# +# Revision 1.5 2001/11/05 21:31:51 steudten +# Change switch mode from weekly to size 1M +# +# Revision 1.4 2001/06/28 13:30:22 sarantis +# add missingok for the jarfile entry +# +# Revision 1.3 2001/06/04 18:31:58 swa +# files are now prefixed with either `confdir' or `logdir'. +# `make redhat-dist' replaces both entries confdir and logdir +# with redhat values +# +# Revision 1.2 2001/05/24 07:52:24 swa +# added header. removed ^M. +# +# Revision 1.3 2001/05/24 07:41:33 swa +# added header +# +# +# +# ********************************************************************/ + +/var/log/privoxy/logfile { + compress + size 1M + postrotate + /sbin/service privoxy reload 2> /dev/null || true + endscript +} + +/var/log/privoxy/jarfile { + missingok + compress + size 1M + postrotate + /sbin/service privoxy reload 2> /dev/null || true + endscript +} diff --git a/privoxy.monthly b/privoxy.monthly new file mode 100644 index 00000000..15734ddf --- /dev/null +++ b/privoxy.monthly @@ -0,0 +1,84 @@ +#!/bin/sh + +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/privoxy.monthly,v $ +# +# Purpose : Downloads updated configuration (blocklists, ...) +# to the machine. +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: privoxy.monthly,v $ +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.3 2001/05/24 07:41:33 swa +# added header +# +# +# +# ********************************************************************/ + +set -e + +# blocklist +wget -q --output-document=/etc/junkbuster/blocklist.new \ + http://www.waldherr.org/blocklist + +mv -f /etc/junkbuster/blocklist.new /etc/junkbuster/blocklist + +if [ -f /etc/junkbuster/blocklist.local ] ; then + cat /etc/junkbuster/blocklist.local >> /etc/junkbuster/blocklist +fi +chmod 644 /etc/junkbuster/blocklist + +# cookiefile +wget -q --output-document=/etc/junkbuster/cookiefile.new \ + http://www.waldherr.org/cookiefile + +mv -f /etc/junkbuster/cookiefile.new /etc/junkbuster/cookiefile + +if [ -f /etc/junkbuster/cookiefile.local ] ; then + cat /etc/junkbuster/cookiefile.local >> /etc/junkbuster/cookiefile +fi +chmod 644 /etc/junkbuster/cookiefile + +# imagelist +wget -q --output-document=/etc/junkbuster/imagelist.new \ + http://www.waldherr.org/imagelist + +mv -f /etc/junkbuster/imagelist.new /etc/junkbuster/imagelist + +if [ -f /etc/junkbuster/imagelist.local ] ; then + cat /etc/junkbuster/imagelist.local >> /etc/junkbuster/imagelist +fi +chmod 644 /etc/junkbuster/imagelist + diff --git a/privoxy.weekly b/privoxy.weekly new file mode 100644 index 00000000..81424f8d --- /dev/null +++ b/privoxy.weekly @@ -0,0 +1,67 @@ +#!/bin/sh + +# ******************************************************************** +# +# File : $Source: /cvsroot/ijbswa/current/privoxy.weekly,v $ +# +# Purpose : Downloads updated configuration (blocklists, ...) +# to the machine. +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: privoxy.weekly,v $ +# Revision 1.2 2002/03/24 11:40:14 swa +# name change +# +# Revision 1.1 2002/03/24 11:23:44 swa +# name change +# +# Revision 1.2 2001/05/24 07:52:24 swa +# added header. removed ^M. +# +# Revision 1.3 2001/05/24 07:41:33 swa +# added header +# +# +# +# ********************************************************************/ + +set -e + +# blocklist +wget -q --output-document=/etc/junkbuster/blocklist.new \ + http://www.waldherr.org/blocklist + +mv -f /etc/junkbuster/blocklist.new /etc/junkbuster/blocklist + +if [ -f /etc/junkbuster/blocklist.local ] ; then + cat /etc/junkbuster/blocklist.local >> /etc/junkbuster/blocklist +fi + +chmod 644 /etc/junkbuster/blocklist + + diff --git a/project.h b/project.h index 5f4324ae..43d53d61 100644 --- a/project.h +++ b/project.h @@ -1,22 +1,23 @@ -#ifndef _PROJECT_H -#define _PROJECT_H -#define PROJECT_H_VERSION "$Id: project.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef PROJECT_H_INCLUDED +#define PROJECT_H_INCLUDED +/** Version string. */ +#define PROJECT_H_VERSION "$Id: project.h,v 1.71 2002/05/12 21:39:36 jongfoster Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/project.h,v $ + * File : $Source: /cvsroot/ijbswa/current/project.h,v $ * * Purpose : Defines data structures which are widely used in the * project. Does not define any variables or functions * (though it does declare some macros). * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and + * by and Copyright (C) 1997 Anonymous Coders and * Junkbusters Corporation. http://www.junkbusters.com * - * This program is free software; you can redistribute it + * This program is free software; you can redistribute it * and/or modify it under the terms of the GNU General * Public License as published by the Free Software * Foundation; either version 2 of the License, or (at @@ -36,6 +37,408 @@ * * Revisions : * $Log: project.h,v $ + * Revision 1.71 2002/05/12 21:39:36 jongfoster + * - Adding Doxygen-style comments to structures and #defines. + * + * Revision 1.70 2002/05/12 16:05:50 jongfoster + * Fixing ACTION_MASK_ALL to be unsigned long rather than + * just unsigned int. I don't know if anyone is porting + * Privoxy to 16-bit platforms, but if so, +limit-connect + * wouldn't have worked because of this bug. + * + * Revision 1.69 2002/05/08 16:00:16 oes + * Added size member to struct iob, so it can + * be alloced larger than needed. + * + * Revision 1.68 2002/04/26 12:56:00 oes + * Killed REDIRECT_URL, added USER_MANUAL_URL and HELP_LINK_PREFIX + * + * Revision 1.67 2002/04/24 02:12:43 oes + * - Jon's multiple AF patch: + * - Make csp->actions_list an array + * - #define MAX_ACTION_FILES + * - Moved CGI_PARAM_LEN_MAX (500) here + * + * Revision 1.66 2002/04/15 19:06:43 jongfoster + * Typos + * + * Revision 1.65 2002/04/04 00:36:36 gliptak + * always use pcre for matching + * + * Revision 1.64 2002/04/03 22:28:03 gliptak + * Removed references to gnu_regex + * + * Revision 1.63 2002/03/31 17:19:00 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.62 2002/03/26 22:48:49 swa + * new homepage url + * + * Revision 1.61 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.60 2002/03/24 15:52:17 jongfoster + * Changing CGI URL prefixes for new name + * + * Revision 1.59 2002/03/24 15:23:33 jongfoster + * Name changes + * + * Revision 1.58 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.57 2002/03/16 20:28:34 oes + * Added descriptions to the filters so users will know what they select in the cgi editor + * + * Revision 1.56 2002/03/13 20:27:30 oes + * Fixing bug with CT_TABOO + * + * Revision 1.55 2002/03/12 01:42:50 oes + * Introduced modular filters + * + * Revision 1.54 2002/03/09 20:03:52 jongfoster + * - Making various functions return int rather than size_t. + * (Undoing a recent change). Since size_t is unsigned on + * Windows, functions like read_socket that return -1 on + * error cannot return a size_t. + * + * THIS WAS A MAJOR BUG - it caused frequent, unpredictable + * crashes, and also frequently caused JB to jump to 100% + * CPU and stay there. (Because it thought it had just + * read ((unsigned)-1) == 4Gb of data...) + * + * - The signature of write_socket has changed, it now simply + * returns success=0/failure=nonzero. + * + * - Trying to get rid of a few warnings --with-debug on + * Windows, I've introduced a new type "jb_socket". This is + * used for the socket file descriptors. On Windows, this + * is SOCKET (a typedef for unsigned). Everywhere else, it's + * an int. The error value can't be -1 any more, so it's + * now JB_INVALID_SOCKET (which is -1 on UNIX, and in + * Windows it maps to the #define INVALID_SOCKET.) + * + * - The signature of bind_port has changed. + * + * Revision 1.53 2002/03/08 16:48:55 oes + * Added FEATURE_NO_GIFS and BUILTIN_IMAGE_MIMETYPE + * + * Revision 1.52 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.51 2002/03/05 04:52:42 oes + * Deleted non-errlog debugging code + * + * Revision 1.50 2002/03/04 19:32:07 oes + * Changed default port to 8118 + * + * Revision 1.49 2002/03/04 18:28:55 oes + * Deleted PID_FILE_NAME + * + * Revision 1.48 2002/03/03 14:50:40 oes + * Fixed CLF logging: Added ocmd member for client's request to struct http_request + * + * Revision 1.47 2002/02/20 23:15:13 jongfoster + * Parsing functions now handle out-of-memory gracefully by returning + * an error code. + * + * Revision 1.46 2002/01/17 21:06:09 jongfoster + * Now #defining the URLs of the config interface + * + * Minor changes to struct http_request and struct url_spec due to + * standardizing that struct http_request is used to represent a URL, and + * struct url_spec is used to represent a URL pattern. (Before, URLs were + * represented as seperate variables and a partially-filled-in url_spec). + * + * Revision 1.45 2002/01/09 14:33:27 oes + * Added HOSTENT_BUFFER_SIZE + * + * Revision 1.44 2001/12/30 14:07:32 steudten + * - Add signal handling (unix) + * - Add SIGHUP handler (unix) + * - Add creation of pidfile (unix) + * - Add action 'top' in rc file (RH) + * - Add entry 'SIGNALS' to manpage + * - Add exit message to logfile (unix) + * + * Revision 1.43 2001/11/22 21:57:51 jongfoster + * Making action_spec->flags into an unsigned long rather than just an + * unsigned int. + * Adding ACTION_NO_COOKIE_KEEP + * + * Revision 1.42 2001/11/05 21:42:41 steudten + * Include DBG() macro. + * + * Revision 1.41 2001/10/28 19:12:06 jongfoster + * Adding ijb_toupper() + * + * Revision 1.40 2001/10/26 17:40:47 oes + * Moved ijb_isspace and ijb_tolower to project.h + * Removed http->user_agent, csp->referrer and csp->accept_types + * + * Revision 1.39 2001/10/25 03:45:02 david__schmidt + * Adding a (void*) cast to freez() because Visual Age C++ won't expand the + * macro when called with a cast; so moving the cast to the macro def'n + * seems to both eliminate compiler warnings (on darwin and OS/2, anyway) and + * doesn't make macro expansion complain. Hope this works for everyone else + * too... + * + * Revision 1.38 2001/10/23 21:19:04 jongfoster + * New error-handling support: jb_err type and JB_ERR_xxx constants + * CGI functions now return a jb_err, and their parameters map is const. + * Support for RUNTIME_FEATUREs to enable/disable config editor + * Adding a few comments + * + * Revision 1.37 2001/10/14 22:14:01 jongfoster + * Removing name_length field from struct cgi_dispatcher, as this is + * now calculated at runtime from the "name" field. + * + * Revision 1.36 2001/10/10 16:45:15 oes + * Added LIMIT_CONNECT action and string + * Fixed HTTP message line termination + * Added CFORBIDDEN HTTP message + * + * Revision 1.35 2001/10/07 18:06:43 oes + * Added status member to struct http_request + * + * Revision 1.34 2001/10/07 15:45:25 oes + * Added url member to struct http_request and commented all + * members + * + * Added CT_TABOO + * + * Added ACTION_DOWNGRADE and ACTION_NO_COMPRESSION + * + * Replaced struct client_state members rejected, + * force, active and toggled_on with "flags" bitmap. + * + * Added CSP_FLAG_MODIFIED and CSP_FLAG_CHUNKED + * + * Added buffer_limit to struct configuration_spec + * + * Revision 1.33 2001/09/20 13:30:08 steudten + * + * Make freez() more secure in case of: if (exp) { free(z) ; a=*z } + * Last case will set z to NULL in free(z) and thats bad.. + * + * Revision 1.32 2001/09/16 23:02:51 jongfoster + * Fixing warning + * + * Revision 1.31 2001/09/16 13:20:29 jongfoster + * Rewrite of list library. Now has seperate header and list_entry + * structures. Also added a large sprinking of assert()s to the list + * code. + * + * Revision 1.30 2001/09/13 23:52:00 jongfoster + * Support for both static and dynamically generated CGI pages + * + * Revision 1.29 2001/09/13 23:29:43 jongfoster + * Defining FORWARD_SPEC_INITIALIZER + * + * Revision 1.28 2001/09/13 23:05:50 jongfoster + * Changing the string paramater to the header parsers a "const". + * + * Revision 1.27 2001/08/05 16:06:20 jongfoster + * Modifiying "struct map" so that there are now separate header and + * "map_entry" structures. This means that functions which modify a + * map no longer need to return a pointer to the modified map. + * Also, it no longer reverses the order of the entries (which may be + * important with some advanced template substitutions). + * + * Revision 1.26 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.25 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.24 2001/07/25 17:20:27 oes + * Introduced http->user_agent + * + * Revision 1.23 2001/07/18 12:32:23 oes + * - Added ACTION_STRING_DEANIMATE + * - moved #define freez from jcc.h to project.h + * + * Revision 1.22 2001/07/15 17:51:41 jongfoster + * Renaming #define STATIC to STATIC_PCRE + * + * Revision 1.21 2001/07/13 14:03:19 oes + * - Reorganized regex header inclusion and #defines to + * comply to the scheme in configure.in + * - Added csp->content_type and its CT_* keys + * - Added ACTION_DEANIMATE + * - Removed all #ifdef PCRS + * + * Revision 1.20 2001/06/29 21:45:41 oes + * Indentation, CRLF->LF, Tab-> Space + * + * Revision 1.19 2001/06/29 13:33:36 oes + * - Improved comments + * - Introduced http_request.host_ip_addr_str + * - Introduced http_response.head_length + * - Introduced config.my_ip_addr_str, config.my_hostname, + * config.admin_address and config.proxy_info_url + * - Removed config.proxy_args_header and config.proxy_args_trailer, + * renamed config.proxy_args_invocation to config.proxy_args + * - Removed HTML snipplets and GIFs + * - Removed logentry from cancelled commit + * + * Revision 1.18 2001/06/09 10:57:39 jongfoster + * Adding definition of BUFFER_SIZE. + * Changing struct cgi_dispatcher to use "const" strings. + * + * Revision 1.17 2001/06/07 23:15:09 jongfoster + * Merging ACL and forward files into config file. + * Moving struct gateway members into struct forward_spec + * Removing config->proxy_args_gateways + * Cosmetic: Adding a few comments + * + * Revision 1.16 2001/06/04 18:31:58 swa + * files are now prefixed with either `confdir' or `logdir'. + * `make redhat-dist' replaces both entries confdir and logdir + * with redhat values + * + * Revision 1.15 2001/06/04 11:28:53 swa + * redirect did not work due to missing / + * + * Revision 1.14 2001/06/03 11:03:48 oes + * Added struct map, + * added struct http_response, + * changed struct interceptors to struct cgi_dispatcher, + * moved HTML stuff to cgi.h + * + * Revision 1.13 2001/06/01 20:05:36 jongfoster + * Support for +image-blocker{}: added ACTION_IMAGE_BLOCKER + * constant, and removed csp->tinygif. + * + * Revision 1.12 2001/06/01 18:49:17 jongfoster + * Replaced "list_share" with "list" - the tiny memory gain was not + * worth the extra complexity. + * + * Revision 1.11 2001/06/01 10:32:47 oes + * Added constants for anchoring selection bitmap + * + * Revision 1.10 2001/05/31 21:33:53 jongfoster + * Changes for new actions file, replacing permissionsfile + * and parts of the config file. Also added support for + * list_shared. + * + * Revision 1.9 2001/05/31 17:32:31 oes + * + * - Enhanced domain part globbing with infix and prefix asterisk + * matching and optional unanchored operation + * + * Revision 1.8 2001/05/29 20:09:15 joergs + * HTTP_REDIRECT_TEMPLATE fixed. + * + * Revision 1.7 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/actionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.6 2001/05/27 22:17:04 oes + * + * - re_process_buffer no longer writes the modified buffer + * to the client, which was very ugly. It now returns the + * buffer, which it is then written by chat. + * + * - content_length now adjusts the Content-Length: header + * for modified documents rather than crunch()ing it. + * (Length info in csp->content_length, which is 0 for + * unmodified documents) + * + * - For this to work, sed() is called twice when filtering. + * + * Revision 1.5 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.4 2001/05/22 18:46:04 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Some minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.3 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "actionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:59:03 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -48,289 +451,682 @@ /* * Include appropriate regular expression libraries. - * - * PCRS ==> Include pcre - * REGEX && PCRE ==> Include pcre and pcreposix - * REGEX && !PCRE ==> Include gnu_regex - * - * STATIC ==> Use #include "pcre.h" (compiling at same time) - * !STATIC ==> Use #include (System library) - * + * Note that pcrs and pcre (native) are needed for cgi + * and are included anyway. */ -#if (defined(REGEX) && defined(PCRE)) || defined(PCRS) -# ifdef STATIC -# include "pcre.h" -# else -# include -# endif -#endif /* (defined(REGEX) && defined(PCRE)) || defined(PCRS) */ -#if defined(REGEX) && defined(PCRE) -# ifdef STATIC -# include "pcreposix.h" -# else -# include -# endif -#endif /* defined(REGEX) && defined(PCRE) */ +#ifdef STATIC_PCRE +# include "pcre.h" +#else +# include +#endif -#if defined(REGEX) && !defined(PCRE) -# include "gnu_regex.h" +#ifdef STATIC_PCRS +# include "pcrs.h" +#else +# include #endif -#ifdef PCRS -#include "pcrs.h" -#endif /* def PCRS */ +#ifdef STATIC_PCRE +# include "pcreposix.h" +#else +# include +#endif -#ifdef AMIGA -#include "amiga.h" +#ifdef AMIGA +#include "amiga.h" #endif /* def AMIGA */ +#ifdef _WIN32 +/* + * I don't want to have to #include all this just for the declaration + * of SOCKET. However, it looks like we have to... + */ +#ifndef STRICT +#define STRICT +#endif +#include +#endif + + #ifdef __cplusplus extern "C" { #endif +#ifdef _WIN32 + +typedef SOCKET jb_socket; + +#define JB_INVALID_SOCKET INVALID_SOCKET + +#else /* ndef _WIN32 */ + +/** + * The type used by sockets. On UNIX it's an int. Microsoft decided to + * make it an unsigned. + */ +typedef int jb_socket; + +/** + * The error value used for variables of type jb_socket. On UNIX this + * is -1, however Microsoft decided to make socket handles unsigned, so + * they use a different value. + */ + +#define JB_INVALID_SOCKET (-1) + +#endif /* ndef _WIN32 */ + + +/** + * A standard error code. This should be JB_ERR_OK or one of the JB_ERR_xxx + * series of errors. + */ +typedef int jb_err; + +#define JB_ERR_OK 0 /**< Success, no error */ +#define JB_ERR_MEMORY 1 /**< Out of memory */ +#define JB_ERR_CGI_PARAMS 2 /**< Missing or corrupt CGI parameters */ +#define JB_ERR_FILE 3 /**< Error opening, reading or writing a file */ +#define JB_ERR_PARSE 4 /**< Error parsing file */ +#define JB_ERR_MODIFIED 5 /**< File has been modified outside of the + CGI actions editor. */ + + +/** + * This macro is used to free a pointer that may be NULL. + * It also sets the variable to NULL after it's been freed. + * The paramater should be a simple variable without side effects. + */ +#define freez(X) { if(X) { free((void*)X); X = NULL ; } } + + +/** + * Fix a problem with Solaris. There should be no effect on other + * platforms. + * + * Solaris's isspace() is a macro which uses it's argument directly + * as an array index. Therefore we need to make sure that high-bit + * characters generate +ve values, and ideally we also want to make + * the argument match the declared parameter type of "int". + * + * Note: Remember to #include if you use these macros. + */ +#define ijb_toupper(__X) toupper((int)(unsigned char)(__X)) +#define ijb_tolower(__X) tolower((int)(unsigned char)(__X)) +#define ijb_isspace(__X) isspace((int)(unsigned char)(__X)) + +/** + * Use for statically allocated buffers if you have no other choice. + * Remember to check the length of what you write into the buffer + * - we don't want any buffer overflows! + */ +#define BUFFER_SIZE 5000 + +/** + * Max length of CGI parameters (arbitrary limit). + */ +#define CGI_PARAM_LEN_MAX 500 + +/** + * Buffer size for capturing struct hostent data in the + * gethostby(name|addr)_r library calls. Since we don't + * loop over gethostbyname_r, the buffer must be sufficient + * to accomodate multiple IN A RRs, as used in DNS round robin + * load balancing. W3C's wwwlib uses 1K, so that should be + * good enough for us, too. + */ +#define HOSTENT_BUFFER_SIZE 1024 + +/** + * Do not use. Originally this was so that you can + * say "while (FOREVER) { ...do something... }". + * However, this gives a warning with some compilers (e.g. VC++). + * Instead, use "for (;;) { ...do something... }". + */ #define FOREVER 1 -/* Default IP and port to listen on */ +/** + * Default IP address to listen on, as a string. + * Set to "127.0.0.1". + */ #define HADDR_DEFAULT "127.0.0.1" -#define HADDR_PORT 8000 + +/** + * Default port to listen on, as a number. + * Set to 8118. + */ +#define HADDR_PORT 8118 -/* Need this for struct gateway */ -struct client_state; +/* Forward def for struct client_state */ +struct configuration_spec; -struct http_request +/** + * Entry in a linked list of strings. + */ +struct list_entry { - char *cmd; - char *gpc; - char *host; - int port; - char *path; - char *ver; - char *hostport; /* "host[:port]" */ - int ssl; + /** + * The string. The "const" is only to discourage modification, + * you can actually change it if you *really* want to. + * You can even freez() it and replace it with another + * malloc()d string. If you replace it with NULL, the list + * functions will work, just be careful next time you iterate + * through the list in your own code. + * + * FIXME: Should we remove the "const"? + */ + const char *str; + + /** Next entry in the linked list, or NULL if no more. */ + struct list_entry *next; }; - -struct gateway +/** + * A header for a linked list of strings. + */ +struct list { - /* generic attributes */ - char *name; - int (*conn)(const struct gateway *, struct http_request *, struct client_state *); - int type; + /** First entry in the list, or NULL if the list is empty. */ + struct list_entry *first; - /* domain specific attributes */ - char *gateway_host; - int gateway_port; + /** Last entry in the list, or NULL if the list is empty. */ + struct list_entry *last; +}; - char *forward_host; - int forward_port; + +/** + * An entry in a map. This is a name=value pair. + */ +struct map_entry +{ + /** The key for the map. */ + const char *name; + /** The value associated with that key. */ + const char *value; + /** The next map entry, or NULL if none. */ + struct map_entry *next; +}; + +/** + * A map from a string to another string. + * This is used for the paramaters passed in a HTTP GET request, and + * to store the exports when the CGI interface is filling in a template. + */ +struct map +{ + /** The first map entry, or NULL if the map is empty. */ + struct map_entry *first; + /** The last map entry, or NULL if the map is empty. */ + struct map_entry *last; }; -struct proxy_args +/** + * A HTTP request. This includes the method (GET, POST) and + * the parsed URL. + * + * This is also used whenever we want to match a URL against a + * URL pattern. This always contains the URL to match, and never + * a URL pattern. (See struct url_spec). + */ +struct http_request { - char *header; - char *invocation; - char *gateways; - char *trailer; + char *cmd; /**< Whole command line: method, URL, Version */ + char *ocmd; /**< Backup of original cmd for CLF logging */ + char *gpc; /**< HTTP method: GET, POST, ... */ + char *url; /**< The URL */ + char *ver; /**< Protocol version */ + int status; /**< HTTP Status */ + + char *host; /**< Host part of URL */ + int port; /**< Port of URL or 80 (default) */ + char *path; /**< Path of URL */ + char *hostport; /**< host[:port] */ + int ssl; /**< Flag if protocol is https */ + + char *host_ip_addr_str; /**< String with dotted decimal representation + of host's IP. NULL before connect_to() */ + + char *dbuffer; /**< Buffer with '\0'-delimited domain name. */ + char **dvec; /**< List of pointers to the strings in dbuffer. */ + int dcount; /**< How many parts to this domain? (length of dvec) */ }; -struct iob +/** + * Response generated by CGI, blocker, or error handler + */ +struct http_response +{ + char *status; /**< HTTP status (string). */ + struct list headers[1]; /**< List of header lines. */ + char *head; /**< Formatted http response head. */ + size_t head_length; /**< Length of http response head. */ + char *body; /**< HTTP document body. */ + size_t content_length; /**< Length of body, REQUIRED if binary body. */ + int is_static; /**< Nonzero if the content will never change and + should be cached by the browser (e.g. images). */ +}; + +/** + * A URL pattern. + */ +struct url_spec { - char *buf; - char *cur; - char *eod; + /** The string which was parsed to produce this url_spec. + Used for debugging or display only. */ + char *spec; + + char *dbuffer; /**< Buffer with '\0'-delimited domain name, or NULL to match all hosts. */ + char **dvec; /**< List of pointers to the strings in dbuffer. */ + int dcount; /**< How many parts to this domain? (length of dvec) */ + int unanchored; /**< Bitmap - flags are ANCHOR_LEFT and ANCHOR_RIGHT. */ + + int port; /**< The port number, or 0 to match all ports. */ + + char *path; /**< The source for the regex. */ + int pathlen; /**< ==strlen(path). Needed for prefix matching. FIXME: Now obsolete? */ + regex_t *preg; /**< Regex for matching path part */ }; +/** + * If you declare a static url_spec, this is the value to initialize it to zero. + */ +#define URL_SPEC_INITIALIZER { NULL, NULL, NULL, 0, 0, 0, NULL, 0, NULL } + +/** + * Constant for host part matching in URLs. If set, indicates that the start of + * the pattern must match the start of the URL. E.g. this is not set for the + * pattern ".example.com", so that it will match both "example.com" and + * "www.example.com". It is set for the pattern "example.com", which makes it + * match "example.com" only, not "www.example.com". + */ +#define ANCHOR_LEFT 1 -struct list +/** + * Constant for host part matching in URLs. If set, indicates that the end of + * the pattern must match the end of the URL. E.g. this is not set for the + * pattern "ad.", so that it will match any host called "ad", irrespective + * of how many subdomains are in the fully-qualified domain name. + */ +#define ANCHOR_RIGHT 2 + + +/** + * An I/O buffer. Holds a string which can be appended to, and can have data + * removed from the beginning. + */ +struct iob { - char *str; - struct list *last; - struct list *next; + char *buf; /**< Start of buffer */ + char *cur; /**< Start of relevant data */ + char *eod; /**< End of relevant data */ + size_t size; /**< Size as malloc()ed */ }; + +/** + * Return the number of bytes in the I/O buffer associated with the passed + * client_state pointer. + * May be zero. + */ #define IOB_PEEK(CSP) ((CSP->iob->cur > CSP->iob->eod) ? (CSP->iob->eod - CSP->iob->cur) : 0) + + +/** + * Remove any data in the I/O buffer associated with the passed + * client_state pointer. + */ #define IOB_RESET(CSP) if(CSP->iob->buf) free(CSP->iob->buf); memset(CSP->iob, '\0', sizeof(CSP->iob)); +/* Bits for csp->content_type */ +#define CT_TEXT 1 /**< csp->content_type bitmask: + Suitable for pcrs filtering. */ +#define CT_GIF 2 /**< csp->content_type bitmask: + Suitable for GIF filtering. */ +#define CT_TABOO 4 /**< csp->content_type bitmask: + DO NOT filter, irrespective of other flags. */ + +/** + * The mask which includes all actions. + */ +#define ACTION_MASK_ALL (~0UL) + +/** + * The most compatible set of actions - i.e. none. + */ +#define ACTION_MOST_COMPATIBLE 0x00000000UL + +/** Action bitmap: Block the request. */ +#define ACTION_BLOCK 0x00000001UL +/** Action bitmap: Deanimate if it's a GIF. */ +#define ACTION_DEANIMATE 0x00000002UL +/** Action bitmap: Downgrade HTTP/1.1 to 1.0. */ +#define ACTION_DOWNGRADE 0x00000004UL +/** Action bitmap: Fast redirects. */ +#define ACTION_FAST_REDIRECTS 0x00000008UL +/** Action bitmap: Remove existing "Forwarded" header, and do not add another. */ +#define ACTION_HIDE_FORWARDED 0x00000010UL +/** Action bitmap: Hide "From" header. */ +#define ACTION_HIDE_FROM 0x00000020UL +/** Action bitmap: Hide "Referer" header. (sic - follow HTTP, not English). */ +#define ACTION_HIDE_REFERER 0x00000040UL +/** Action bitmap: Hide "User-Agent" and similar headers. */ +#define ACTION_HIDE_USER_AGENT 0x00000080UL +/** Action bitmap: This is an image. */ +#define ACTION_IMAGE 0x00000100UL +/** Action bitmap: Sets the image blocker. */ +#define ACTION_IMAGE_BLOCKER 0x00000200UL +/** Action bitmap: Prevent compression. */ +#define ACTION_NO_COMPRESSION 0x00000400UL +/** Action bitmap: Change cookies to session only cookies. */ +#define ACTION_NO_COOKIE_KEEP 0x00000800UL +/** Action bitmap: Block rending cookies. */ +#define ACTION_NO_COOKIE_READ 0x00001000UL +/** Action bitmap: Block setting cookies. */ +#define ACTION_NO_COOKIE_SET 0x00002000UL +/** Action bitmap: Filter out popups. */ +#define ACTION_NO_POPUPS 0x00004000UL +/** Action bitmap: Send a vanilla wafer. */ +#define ACTION_VANILLA_WAFER 0x00008000UL +/** Action bitmap: Limit CONNECT requests to safe ports. */ +#define ACTION_LIMIT_CONNECT 0x00010000UL + +/** Action string index: How to deanimate GIFs */ +#define ACTION_STRING_DEANIMATE 0 +/** Action string index: Replacement for "From:" header */ +#define ACTION_STRING_FROM 1 +/** Action string index: How to block images */ +#define ACTION_STRING_IMAGE_BLOCKER 2 +/** Action string index: Replacement for "Referer:" header */ +#define ACTION_STRING_REFERER 3 +/** Action string index: Replacement for "User-Agent:" header */ +#define ACTION_STRING_USER_AGENT 4 +/** Action string index: Legal CONNECT ports. */ +#define ACTION_STRING_LIMIT_CONNECT 5 +/** Number of string actions. */ +#define ACTION_STRING_COUNT 6 + +/** Index into current_action_spec::multi[] for headers to add. */ +#define ACTION_MULTI_ADD_HEADER 0 +/** Index into current_action_spec::multi[] for headers to add. */ +#define ACTION_MULTI_WAFER 1 +/** Index into current_action_spec::multi[] for filters to apply. */ +#define ACTION_MULTI_FILTER 2 +/** Number of multi-string actions. */ +#define ACTION_MULTI_COUNT 3 + + +/** + * This structure contains a list of actions to apply to a URL. + * It only contains positive instructions - no "-" options. + * It is not used to store the actions list itself, only for + * url_actions() to return the current values. + */ +struct current_action_spec +{ + /** Actions to apply. A bit set to "1" means perform the action. */ + unsigned long flags; + + /** + * Paramaters for those actions that require them. + * Each entry is valid if & only if the corresponding entry in "flags" is + * set. + */ + char * string[ACTION_STRING_COUNT]; -/* Constants defining bitmask for csp->accept_types */ + /** Lists of strings for multi-string actions. */ + struct list multi[ACTION_MULTI_COUNT][1]; +}; -#ifdef DETECT_MSIE_IMAGES -/* MSIE detected by user-agent string */ -#define ACCEPT_TYPE_IS_MSIE 0x0001 +/** + * This structure contains a set of changes to actions. + * It can contain both positive and negative instructions. + * It is used to store an entry in the actions list. + */ +struct action_spec +{ + unsigned long mask; /**< Actions to keep. A bit set to "0" means remove action. */ + unsigned long add; /**< Actions to add. A bit set to "1" means add action. */ -/* - * *If* this is MSIE, it wants an image. (Or this is a shift-reload, or - * it's got an image from this URL before... yuck!) - * Only meaningful if ACCEPT_TYPE_IS_MSIE set + /** + * Paramaters for those actions that require them. + * Each entry is valid if & only if the corresponding entry in "flags" is + * set. + */ + char * string[ACTION_STRING_COUNT]; + + /** Lists of strings to remove, for multi-string actions. */ + struct list multi_remove[ACTION_MULTI_COUNT][1]; + + /** If nonzero, remove *all* strings from the multi-string action. */ + int multi_remove_all[ACTION_MULTI_COUNT]; + + /** Lists of strings to add, for multi-string actions. */ + struct list multi_add[ACTION_MULTI_COUNT][1]; +}; + + +/** + * This structure is used to store the actions list. + * + * It contains a URL pattern, and the chages to the actions. + * It is a linked list. */ -#define ACCEPT_TYPE_MSIE_IMAGE 0x0002 +struct url_actions +{ + struct url_spec url[1]; /**< URL pattern. */ + + struct action_spec action[1]; /**< Actions. */ + + struct url_actions * next; /**< Next action in file, or NULL. */ +}; + /* - * *If* this is MSIE, it wants a HTML document. - * Only meaningful if ACCEPT_TYPE_IS_MSIE set + * Flags for use in csp->flags + */ + +/** + * Flag for csp->flags: Set if this client is processing data. + * Cleared when the thread associated with this structure dies. */ -#define ACCEPT_TYPE_MSIE_HTML 0x0004 +#define CSP_FLAG_ACTIVE 0x01 -#endif /* def DETECT_MSIE_IMAGES */ +/** + * Flag for csp->flags: Set if the server's reply is in "chunked" + * transfer encoding + */ +#define CSP_FLAG_CHUNKED 0x02 + +/** + * Flag for csp->flags: Set if this request was enforced, although it would + * normally have been blocked. + */ +#define CSP_FLAG_FORCED 0x04 +/** + * Flag for csp->flags: Set if any modification to the body was done. + */ +#define CSP_FLAG_MODIFIED 0x08 + +/** + * Flag for csp->flags: Set if request was blocked. + */ +#define CSP_FLAG_REJECTED 0x10 + +/** + * Flag for csp->flags: Set if we are toggled on (FEATURE_TOGGLE). + */ +#define CSP_FLAG_TOGGLED_ON 0x20 + + +/** + * Maximum number of actions files. This limit is arbitrary - it's just used + * to size an array. + */ +#define MAX_ACTION_FILES 10 +/** + * The state of a Privoxy processing thread. + */ struct client_state { - int send_user_cookie; - int accept_server_cookie; - int cfd; - int sfd; - -#ifdef STATISTICS - /* 1 if this URL was rejected, 0 otherwise. Allows actual stats inc to - * occur in main thread only for thread-safety. - */ - int rejected; -#endif /* def STATISTICS */ - -#ifdef FORCE_LOAD - int force; -#endif /* def FORCE_LOAD */ - -#ifdef TOGGLE - /* - * by haroon - most of credit to srt19170 - * We add an "on/off" toggle here that is used to effectively toggle - * the Junkbuster off or on - */ - int toggled_on; -#endif + /** The proxy's configuration */ + struct configuration_spec * config; + + /** The actions to perform on the current request */ + struct current_action_spec action[1]; + + /** socket to talk to client (web browser) */ + jb_socket cfd; + /** socket to talk to server (web server or proxy) */ + jb_socket sfd; + + /** Multi-purpose flag container, see CSP_FLAG_* above */ + unsigned short int flags; + + /** Client PC's IP address, as reported by the accept() function. + As a string. */ char *ip_addr_str; + /** Client PC's IP address, as reported by the accept() function. + As a number. */ long ip_addr_long; - char *referrer; -#if defined(DETECT_MSIE_IMAGES) - /* Types the client will accept. - * Bitmask - see ACCEPT_TYPE_XXX constants. - */ - int accept_types; -#endif /* defined(DETECT_MSIE_IMAGES) */ + /** Our IP address. I.e. the IP address that the client used to reach us, + as a string. */ + char *my_ip_addr_str; - const struct gateway *gw; + /** Our hostname. I.e. the reverse DNS of the IP address that the client + used to reach us, as a string. */ + char *my_hostname; + + /** The URL that was requested */ struct http_request http[1]; + /** An I/O buffer used for buffering data read from the network */ struct iob iob[1]; + /** List of all headers for this request */ struct list headers[1]; + + /** List of all cookies for this request */ struct list cookie_list[1]; -#ifdef PCRS - int is_text; -#endif /* def PCRS */ - char *x_forwarded; + /** MIME-Type key, see CT_* above */ + unsigned short int content_type; - int active; + /** The "X-Forwarded-For:" header sent by the client */ + char *x_forwarded; - /* files associated with this client */ - struct file_list *blist; /* blockfile */ - struct file_list *clist; /* cookiefile */ - struct file_list *flist; /* forwardfile */ + /** Actions files associated with this client */ + struct file_list *actions_list[MAX_ACTION_FILES]; -#ifdef ACL_FILES - struct file_list *alist; /* aclfile */ -#endif /* def ACL_FILES */ + /** pcrs job file. */ + struct file_list *rlist; -#ifdef USE_IMAGE_LIST - struct file_list *ilist; /* imagefile */ -#endif /* def USE_IMAGE_LIST */ + /** Length after content modification. */ + size_t content_length; -#ifdef KILLPOPUPS - struct file_list *plist; /* kill popup file */ -#endif /* def KILLPOPUPS */ +#ifdef FEATURE_TRUST -#ifdef PCRS - struct file_list *rlist; /* Perl re_filterfile */ -#endif /* def PCRS */ + /** Trust file. */ + struct file_list *tlist; -#ifdef TRUST_FILES - struct file_list *tlist; /* trustfile */ -#endif /* def TRUST_FILES */ +#endif /* def FEATURE_TRUST */ + /** Next thread in linked list. Only read or modify from the main thread! */ struct client_state *next; }; +/** + * A function to add a header + */ +typedef jb_err (*add_header_func_ptr)(struct client_state *); + +/** + * A function to process a header + */ +typedef jb_err (*parser_func_ptr )(struct client_state *, char **); + + +/** + * List of functions to run on a list of headers + */ struct parsers { - char *str; - char len; - char *(*parser)(const struct parsers *, char *, struct client_state *); + /** The header prefix to match */ + char *str; + + /** The length of the prefix to match */ + size_t len; + + /** The function to apply to this line */ + parser_func_ptr parser; }; -struct interceptors +/** + * List of available CGI functions. + */ +struct cgi_dispatcher { - char *str; - char len; - char *(*interceptor)(struct http_request *http, struct client_state *csp); -}; - + /** The URL of the CGI, relative to the CGI root. */ + const char * const name; -/* this allows the proxy to permit/block access to any host and/or path */ + /** The handler function for the CGI */ + jb_err (* const handler)(struct client_state *csp, struct http_response *rsp, const struct map *parameters); -struct url_spec -{ - char *spec; - char *domain; - char *dbuf; - char **dvec; - int dcnt; - int toplevel; - - char *path; - int pathlen; - int port; -#ifdef REGEX - regex_t *preg; -#endif + /** The description of the CGI, to appear on the main menu, or NULL to hide it. */ + const char * const description; }; +/** + * A data file used by Privoxy. Kept in a linked list. + */ struct file_list { - /* - * this is a pointer to the data structures associated with the file. + /** + * This is a pointer to the data structures associated with the file. * Read-only once the structure has been created. */ void *f; - - /* Normally NULL. When we are finished with file (i.e. when we have + + /** + * The unloader function. + * Normally NULL. When we are finished with file (i.e. when we have * loaded a new one), set to a pointer to an unloader function. * Unloader will be called by sweep() (called from main loop) when - * all clients using this file are done. This prevents threading + * all clients using this file are done. This prevents threading * problems. */ void (*unloader)(void *); - /* Used internally by sweep(). Do not access from elsewhere. */ - int active; - -#ifndef SPLIT_PROXY_ARGS - /* String to be displayed as part of show-proxy-args display. - * Read-only once the structure has been created. + /** + * Used internally by sweep(). Do not access from elsewhere. */ - char *proxy_args; -#endif /* ndef SPLIT_PROXY_ARGS */ + int active; - /* Following variables allow us to check if file has been changed. + /** + * File last-modified time, so we can check if file has been changed. * Read-only once the structure has been created. */ time_t lastmodified; + + /** + * The full filename. + */ char * filename; - /* Pointer to next entry in the linked list of all "file_list"s. + /** + * Pointer to next entry in the linked list of all "file_list"s. * This linked list is so that sweep() can navigate it. * Since sweep() can remove items from the list, we must be careful * to only access this value from main thread (when we know sweep @@ -340,105 +1136,295 @@ struct file_list }; +#ifdef FEATURE_TRUST + +/** + * The format of a trust file when loaded into memory. + */ struct block_spec { - struct url_spec url[1]; - int reject; - struct block_spec *next; + struct url_spec url[1]; /**< The URL pattern */ + int reject; /**< FIXME: Please document this! */ + struct block_spec *next; /**< Next entry in linked list */ }; +#endif /* def FEATURE_TRUST */ -struct cookie_spec -{ - struct url_spec url[1]; - int send_user_cookie; - int accept_server_cookie; - struct cookie_spec *next; -}; + +#define SOCKS_NONE 0 /**< Don't use a SOCKS server */ +#define SOCKS_4 40 /**< original SOCKS 4 protocol */ +#define SOCKS_4A 41 /**< as modified for hosts w/o external DNS */ +/** + * How to forward a connection to a parent proxy. + */ struct forward_spec { + /** URL pattern that this forward_spec is for. */ struct url_spec url[1]; - int reject; - struct gateway gw[1]; + + /** Connection type. Must be SOCKS_NONE, SOCKS_4, or SOCKS_4A. */ + int type; + + /** SOCKS server hostname. Only valid if "type" is SOCKS_4 or SOCKS_4A. */ + char *gateway_host; + + /** SOCKS server port. */ + int gateway_port; + + /** Parent HTTP proxy hostname, or NULL for none. */ + char *forward_host; + + /** Parent HTTP proxy port. */ + int forward_port; + + /** Next entry in the linked list. */ struct forward_spec *next; }; -#ifdef PCRS +/** + * Initializer for a static struct forward_spec. + */ +#define FORWARD_SPEC_INITIALIZER { { URL_SPEC_INITIALIZER }, 0, NULL, 0, NULL, 0, NULL } + + +/** + * This struct represents one filter (one block) from + * the re_filterfile. If there is more than one filter + * in the file, the file will be represented by a + * chained list of re_filterfile specs. + */ struct re_filterfile_spec { - struct list patterns[1]; - /* See README.re_filter */ - pcrs_job *joblist; + char *name; /**< Name from FILTER: statement in re_filterfile. */ + char *description; /**< Description from FILTER: statement in re_filterfile. */ + struct list patterns[1]; /**< The patterns from the re_filterfile. */ + pcrs_job *joblist; /**< The resulting compiled pcrs_jobs. */ + struct re_filterfile_spec *next; /**< The pointer for chaining. */ }; -#endif /* def PCRS */ -#ifdef KILLPOPUPS -/* Entries on popup blocklist */ -struct popup_blocklist +#ifdef FEATURE_ACL + +#define ACL_PERMIT 1 /**< Accept connection request */ +#define ACL_DENY 2 /**< Reject connection request */ + +/** + * An IP address pattern. Used to specify networks in the ACL. + */ +struct access_control_addr { - char *host_name; - struct popup_blocklist *next; + unsigned long addr; /**< The IP address as an integer. */ + unsigned long mask; /**< The network mask as an integer. */ + unsigned long port; /**< The port number. */ }; -/* Actual type used in file object */ -struct popup_settings +/** + * An access control list (ACL) entry. + * + * This is a linked list. + */ +struct access_control_list { - struct popup_blocklist *blocked; - struct popup_blocklist *allowed; + struct access_control_addr src[1]; /**< Client IP address */ + struct access_control_addr dst[1]; /**< Website or parent proxy IP address */ + + short action; /**< ACL_PERMIT or ACL_DENY */ + struct access_control_list *next; /**< The next entry in the ACL. */ }; -#endif /* def KILLPOPUPS */ -#ifdef ACL_FILES -#define ACL_PERMIT 1 /* accept connection request */ -#define ACL_DENY 2 /* reject connection request */ +#endif /* def FEATURE_ACL */ -struct access_control_addr -{ - unsigned long addr; - unsigned long mask; - unsigned long port; -}; -struct access_control_list +/** Maximum number of loaders (actions, re_filter, ...) */ +#define NLOADERS 8 + + +/** configuration_spec::feature_flags: CGI actions editor. */ +#define RUNTIME_FEATURE_CGI_EDIT_ACTIONS 1 + +/** configuration_spec::feature_flags: Web-based toggle. */ +#define RUNTIME_FEATURE_CGI_TOGGLE 2 + + +/** + * Data loaded from the configuration file. + * + * (Anomaly: toggle is still handled through a global, not this structure) + */ +struct configuration_spec { - struct access_control_addr src[1]; - struct access_control_addr dst[1]; + /** What to log */ + int debug; + + /** Nonzero to enable multithreading. */ + int multi_threaded; + + /** + * Bitmask of features that can be enabled/disabled through the config + * file. Currently defined bits: + * + * - RUNTIME_FEATURE_CGI_EDIT_ACTIONS + * - RUNTIME_FEATURE_CGI_TOGGLE + */ + unsigned feature_flags; + + /** The log file name. */ + const char *logfile; + + /** The config file directory. */ + const char *confdir; + + /** The log file directory. */ + const char *logdir; + + /** The full paths to the actions files. */ + const char *actions_file[MAX_ACTION_FILES]; + + /** The short names of the actions files. */ + const char *actions_file_short[MAX_ACTION_FILES]; - short action; - struct access_control_list *next; + /** The administrator's email address */ + char *admin_address; + + /** A URL with info on this proxy */ + char *proxy_info_url; + + /** URL to the user manual (on our website or local copy) */ + char *usermanual; + + /** The file name of the pcre filter file */ + const char *re_filterfile; + +#ifdef FEATURE_COOKIE_JAR + + /** The file name of the cookie jar file */ + const char * jarfile; + + /** The handle to the cookie jar file */ + FILE * jar; + +#endif /* def FEATURE_COOKIE_JAR */ + + /** IP address to bind to. Defaults to HADDR_DEFAULT == 127.0.0.1. */ + const char *haddr; + + /** Port to bind to. Defaults to HADDR_PORT == 8118. */ + int hport; + + /** Size limit for IOB */ + size_t buffer_limit; + +#ifdef FEATURE_TRUST + + /** The file name of the trust file. */ + const char * trustfile; + + /** FIXME: DOCME: Document this. */ + struct list trust_info[1]; + + /** FIXME: DOCME: Document this. */ + struct url_spec *trust_list[64]; + +#endif /* def FEATURE_TRUST */ + +#ifdef FEATURE_ACL + + /** The access control list (ACL). */ + struct access_control_list *acl; + +#endif /* def FEATURE_ACL */ + + /** Information about parent proxies (forwarding). */ + struct forward_spec *forward; + + /** All options from the config file, HTML-formatted. */ + char *proxy_args; + + /** The configuration file object. */ + struct file_list *config_file_list; + + /** List of loaders */ + int (*loaders[NLOADERS])(struct client_state *); + + /** Nonzero if we need to bind() to the new port. */ + int need_bind; }; -#endif /* def ACL_FILES */ +/** Calculates the number of elements in an array, using sizeof. */ #define SZ(X) (sizeof(X) / sizeof(*X)) -#define WHITEBG "\n" -#define BODY "\n" -#define BANNER "Internet JUNKBUSTER" - -#ifdef FORCE_LOAD -/* - * FIXME: Unfortunately, IE lowercases the domain name. JunkBuster does - * a case-sensitive compare. JunkBuster should be modified to do a - * case-insensitive compatison. As a temporary workaround, I've lowercased - * the FORCE_PREFIX. - * - * #define FORCE_PREFIX "IJB-FORCE-LOAD-" - */ -#define FORCE_PREFIX "ijb-force-load-" -#endif /* def FORCE_LOAD */ - -#define HOME_PAGE_URL "http://ijbswa.sourceforge.net/" -#define REDIRECT_URL HOME_PAGE_URL "redirect.php?v=" VERSION "&to=" +#ifdef FEATURE_FORCE_LOAD +/** The force load URL prefix. */ +#define FORCE_PREFIX "/PRIVOXY-FORCE" +#endif /* def FEATURE_FORCE_LOAD */ + +#ifdef FEATURE_NO_GIFS +/** The MIME type for images ("image/png" or "image/gif"). */ +#define BUILTIN_IMAGE_MIMETYPE "image/png" +#else +#define BUILTIN_IMAGE_MIMETYPE "image/gif" +#endif /* def FEATURE_NO_GIFS */ + + +/* + * Hardwired URLs + */ + +/** URL for the Privoxy home page. */ +#define HOME_PAGE_URL "http://www.privoxy.org/" + +/** URL for the Privoxy user manual. */ +#define USER_MANUAL_URL HOME_PAGE_URL "/" VERSION "/user-manual/" + +/** Prefix for actions help links (append to USER_MANUAL_URL). */ +#define ACTIONS_HELP_PREFIX "actions-file.html#" + +/** Prefix for config option help links (append to USER_MANUAL_URL). */ +#define CONFIG_HELP_PREFIX "config.html#" + +/* + * The "hosts" to intercept and display CGI pages. + * First one is a hostname only, second one can specify host and path. + * + * Notes: + * 1) Do not specify the http: prefix + * 2) CGI_SITE_2_PATH must not end with /, one will be added automatically. + * 3) CGI_SITE_2_PATH must start with /, unless it is the empty string. + */ +#define CGI_SITE_1_HOST "p.p" +#define CGI_SITE_2_HOST "config.privoxy.org" +#define CGI_SITE_2_PATH "" + +/** + * The prefix for CGI pages. Written out in generated HTML. + * INCLUDES the trailing slash. + */ +#define CGI_PREFIX "http://" CGI_SITE_2_HOST CGI_SITE_2_PATH "/" + + +/* HTTP snipplets. + * + * FIXME: This is very inefficient. There could be one copy of these strings + * for each .c file!! They should be "extern", not "static". + */ +static const char CSUCCEED[] = + "HTTP/1.0 200 Connection established\n" + "Proxy-Agent: Privoxy/" VERSION "\r\n\r\n"; + +static const char CHEADER[] = + "HTTP/1.0 400 Invalid header received from browser\r\n\r\n"; + +static const char CFORBIDDEN[] = + "HTTP/1.0 403 Connection not allowable\r\nX-Hint: If you read this message interactively, then you know why this happens ,-)\r\n\r\n"; #ifdef __cplusplus } /* extern "C" */ #endif -#endif /* ndef _PROJECT_H */ +#endif /* ndef PROJECT_H_INCLUDED */ /* Local Variables: diff --git a/re_filterfile b/re_filterfile deleted file mode 100644 index 16c073bf..00000000 --- a/re_filterfile +++ /dev/null @@ -1,62 +0,0 @@ -# Filterfile for the Regular Substitution Module -# -# Syntax: One Perl-Style substitution per line. -# For Details see the perlre, perlop and pcre manpages. -# Note that you are free to choose the delimter as you -# see fit. -# - -# Kill OnUnload popups. Yummy. -# check it out on http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html -# -s/()/$1never$2/i - -# Kill refresh tags. I like to refresh myself. Manually. -# check it out on http://www.airport-cgn.de/ and go to the arrivals page. -# -s/]*http-equiv[^>]*refresh[^>]*>//i -s/]*http-equiv="?page-enter"?[^>]*content=[^>]*>//i - -# If I allow popups, I want them to be rezizable and have a location and status bar: -# check it out on http://www.airport-cgn.de/ and go to the arrivals page. -# -s/resizable="?(no|0)"?/resizable=1/ig -s/noresize/yesresize/ig -s/location="?(no|0)"?/location=1/ig -s/status="?(no|0)"?/status=1/ig -s/scrolling="?(no|0|Auto)"?/scrolling=1/ig -s/menubar="?(no|0)"?/menubar=1/ig -#s/framespacing="?(no|0)"?//ig -#s/margin(height|width)=[0-9]*//gi - -# Remove frameborder=0 and border=0 from framesets -s/(MicroSuck<\/b>/ig - -# Crude parental filtering? (Use along with a suitable blocklist). -# Shows how to deny access to whole page based on a keyword. -# -# (Note: Middlesex, Sussex and Essex are counties in the UK, not rude words) -# (Note #2: Is 'sex' a rude word?!) -# -#s%^.*(?Blocked

    Blocked due to possible adult content. Please see this site.

    %is -#s+^.*warez.*$+No Warez

    You're not searching for illegal stuff, are you?

    +is - -# http://www.farscapezone.com/wwwboard/messages/1451.html -s/(\w+) was tired/$1 needed more coffee<\/b>/ig - -# I'm sure you'll find more uses. -# Please send your cool additions to junkbuster-users@yahoogroups.com diff --git a/showargs.c b/showargs.c deleted file mode 100644 index 0a7cc2c8..00000000 --- a/showargs.c +++ /dev/null @@ -1,467 +0,0 @@ -const char showargs_rcs[] = "$Id: showargs.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/showargs.c,v $ - * - * Purpose : Contains various utility routines needed to - * generate the show-proxy-args page. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and - * Junkbusters Corporation. http://www.junkbusters.com - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: showargs.c,v $ - * - *********************************************************************/ - -#include "config.h" - -#include -#include -#include -#include -#include -#include - -#include "showargs.h" -#include "jcc.h" -#include "encode.h" -#include "parsers.h" -#include "errlog.h" -#include "miscutil.h" -#include "gateway.h" - -const char showargs_h_rcs[] = SHOWARGS_H_VERSION; - -/********************************************************************* - * - * Function : strsav - * - * Description : Reallocate "old" and append text to it. This makes - * it easier to append to malloc'd strings. - * - * Parameters : - * 1 : old = Old text that is to be extended. Will be - * free()d by this routine. - * 2 : text_to_append = Text to be appended to old. - * - * Returns : Pointer to newly malloc'ed appended string. - * If there is no text to append, return old. Caller - * must free(). - * - *********************************************************************/ -char *strsav(char *old, const char *text_to_append) -{ - int old_len, new_len; - char *p; - - if (( text_to_append == NULL) || (*text_to_append == '\0')) - { - return(old); - } - - if (NULL != old) - { - old_len = strlen(old); - } - else - { - old_len = 0; - } - - new_len = old_len + strlen(text_to_append) + 1; - - if (old) - { - if ((p = realloc(old, new_len)) == NULL) - { - log_error(LOG_LEVEL_ERROR, "realloc(%d) bytes for proxy_args failed!", new_len); - exit(1); - } - } - else - { - if ((p = (char *)malloc(new_len)) == NULL) - { - log_error(LOG_LEVEL_ERROR, "malloc(%d) bytes for proxy_args failed!", new_len); - exit(1); - } - } - - strcpy(p + old_len, text_to_append); - return(p); - -} - - -/********************************************************************* - * - * Function : savearg - * - * Description : Called from `load_config'. It saves each non-empty - * and non-comment line from config into a list. This - * list is used to create the show-proxy-args page. - * - * Parameters : - * 1 : c = config setting that was found - * 2 : o = the setting's argument (if any) - * - * Returns : N/A - * - *********************************************************************/ -void savearg(char *c, char *o) -{ - char buf[BUFSIZ]; - - *buf = '\0'; - - if ( ( NULL != c ) && ( '\0' != *c ) ) - { - if ((c = html_encode(c))) - { - sprintf(buf, "%s ", c, c); - } - freez(c); - } - if ( ( NULL != o ) && ( '\0' != *o ) ) - { - if ((o = html_encode(o))) - { - if (strncmpic(o, "http://", 7) == 0) - { - strcat(buf, ""); - strcat(buf, o); - strcat(buf, ""); - } - else - { - strcat(buf, o); - } - } - freez(o); - } - - strcat(buf, "
    \n"); - - proxy_args->invocation = strsav(proxy_args->invocation, buf); - -} - - -/********************************************************************* - * - * Function : init_proxy_args - * - * Description : Create the "top" of the show-proxy-args page. - * - * Parameters : - * 1 : argc = argument count (same as in main) - * 2 : argv[] = program arguments (same as in main) - * - * Returns : N/A - * - *********************************************************************/ -void init_proxy_args(int argc, const char *argv[]) -{ - const struct gateway *g; - int i; - - freez(proxy_args->header); - freez(proxy_args->invocation); - freez(proxy_args->gateways); - freez(proxy_args->trailer); - - - proxy_args->header = strsav(proxy_args->header, - "HTTP/1.0 200 OK\n" - "Server: IJ/" VERSION "\n" - "Content-type: text/html\n\n" - - "" - "" - "Internet Junkbuster Proxy Status" - "\n" - "\n" - "
    \n" - "

    " BANNER "\n" - "Proxy Status\n" - "

    \n" - "

    You are using the " BANNER " TM

    \n" - "Version: " VERSION "\n" - "
    Home page: " HOME_PAGE_URL "\n" - "

    \n" - ); - - proxy_args->header = strsav(proxy_args->header, - "

    The program was invoked as follows

    \n"); - - for (i=0; i < argc; i++) - { - proxy_args->header = strsav(proxy_args->header, argv[i]); - proxy_args->header = strsav(proxy_args->header, " "); - } - proxy_args->header = strsav(proxy_args->header, "
    \n"); - - - proxy_args->invocation = strsav( - proxy_args->invocation, - "
    \n" - "and the following options were set in the configuration file" - "

    \n" - ); - - - proxy_args->gateways = strsav(proxy_args->gateways, - "

    It supports the following gateway protocols:

    \n"); - - for (g = gateways; g->name; g++) - { - proxy_args->gateways = strsav(proxy_args->gateways, g->name); - proxy_args->gateways = strsav(proxy_args->gateways, " "); - } - proxy_args->gateways = strsav(proxy_args->gateways, "
    \n"); - -} - - -/********************************************************************* - * - * Function : end_proxy_args - * - * Description : Create the "bottom" of the show-proxy-args page. - * - * Parameters : None - * - * Returns : N/A - * - *********************************************************************/ -void end_proxy_args(void) -{ - char *b = NULL; - char buf[BUFSIZ]; - - /* Instead of including *all* dot h's in the project (thus creating a - * tremendous amount of dependencies), I will concede to declaring them - * as extern's. This forces the developer to add to this list, but oh well. - */ - -#ifndef SPLIT_PROXY_ARGS - if (suppress_blocklists && suppress_message!=NULL) - { - b = strsav(b, "

    File contents

    \n"); - b = strsav(b, suppress_message); - b = strsav(b, "\n"); - } -#endif /* ndef SPLIT_PROXY_ARGS */ - - b = strsav(b, "

    Source versions:

    \n"); - b = strsav(b, "
    ");
-
-#define SHOW_RCS(__x)            \
-   {                             \
-      extern const char __x[];   \
-      sprintf(buf, "%s\n", __x); \
-      b = strsav(b, buf);        \
-   }
-
-   /* In alphabetical order */
-#ifdef __MINGW32__
-   SHOW_RCS(cygwin_h_rcs)
-#endif
-   SHOW_RCS(encode_h_rcs)
-   SHOW_RCS(encode_rcs)
-   SHOW_RCS(errlog_h_rcs)
-   SHOW_RCS(errlog_rcs)
-   SHOW_RCS(filters_h_rcs)
-   SHOW_RCS(filters_rcs)
-   SHOW_RCS(gateway_h_rcs)
-   SHOW_RCS(gateway_rcs)
-#ifdef GNU_REGEX
-   SHOW_RCS(gnu_regex_h_rcs)
-   SHOW_RCS(gnu_regex_rcs)
-#endif /* def GNU_REGEX */
-   SHOW_RCS(jbsockets_h_rcs)
-   SHOW_RCS(jbsockets_rcs)
-   SHOW_RCS(jcc_h_rcs)
-   SHOW_RCS(jcc_rcs)
-#ifdef KILLPOPUPS
-   SHOW_RCS(killpopup_h_rcs)
-   SHOW_RCS(killpopup_rcs)
-#endif /* def KILLPOPUPS */
-   SHOW_RCS(loadcfg_h_rcs)
-   SHOW_RCS(loadcfg_rcs)
-   SHOW_RCS(loaders_h_rcs)
-   SHOW_RCS(loaders_rcs)
-   SHOW_RCS(miscutil_h_rcs)
-   SHOW_RCS(miscutil_rcs)
-   SHOW_RCS(parsers_h_rcs)
-   SHOW_RCS(parsers_rcs)
-#ifdef PCRS
-   SHOW_RCS(pcrs_rcs)
-   SHOW_RCS(pcrs_h_rcs)
-#endif /* def PCRS */
-   SHOW_RCS(project_h_rcs)
-   SHOW_RCS(showargs_h_rcs)
-   SHOW_RCS(showargs_rcs)
-   SHOW_RCS(ssplit_h_rcs)
-   SHOW_RCS(ssplit_rcs)
-#ifdef _WIN32
-   SHOW_RCS(w32log_h_rcs)
-   SHOW_RCS(w32log_rcs)
-   SHOW_RCS(w32res_h_rcs)
-   SHOW_RCS(w32rulesdlg_h_rcs)
-   SHOW_RCS(w32rulesdlg_rcs)
-   SHOW_RCS(w32taskbar_h_rcs)
-   SHOW_RCS(w32taskbar_rcs)
-   SHOW_RCS(win32_h_rcs)
-   SHOW_RCS(win32_rcs)
-#endif /* def _WIN32 */
-
-#undef SHOW_RCS
-
-   b = strsav(b, "
    \n"); - - b = strsav(b, "

    Conditional defines:

    \n
      "); - -#ifdef REGEX - b = strsav(b, "
    • #define REGEX - Support for regular expressions in the path specs.
      • \n"); -#else /* ifndef REGEX */ - b = strsav(b, "
    • #undef REGEX - No support for regular expressions in the path specs.
      • \n"); -#endif /* ndef REGEX */ - -#ifdef PCRE - b = strsav(b, "
    • #define PCRE - Use PCRE rather than old GNU regex library.
      • \n"); -#else /* ifndef PCRE */ - b = strsav(b, "
    • #undef PCRE - Use old GNU regex library rather than PCRE.
      • \n"); -#endif /* ndef PCRE */ - -#ifdef PCRS - b = strsav(b, "
    • #define PCRS - Enables arbitrary content modification regexps.
      • \n"); -#else /* ifndef PCRS */ - b = strsav(b, "
    • #undef PCRS - Disables arbitrary content modification regexps.
      • \n"); -#endif /* ndef PCRS */ - -#ifdef TOGGLE - b = strsav(b, "
    • #define TOGGLE - Allow JunkBuster to be \"disabled\" so it is just a normal non-blocking non-anonymizing proxy.
      • \n"); -#else /* ifndef TOGGLE */ - b = strsav(b, "
    • #undef TOGGLE - Do not allow JunkBuster to be \"disabled\" so it is just a normal non-blocking non-anonymizing proxy.
      • \n"); -#endif /* ndef TOGGLE */ - -#ifdef FORCE_LOAD - b = strsav(b, "
    • #define FORCE_LOAD - Enables bypassing filtering for a single page using the prefix \"" FORCE_PREFIX "\".
      • \n"); -#else /* ifndef FORCE_LOAD */ - b = strsav(b, "
    • #undef FORCE_LOAD - Disables bypassing filtering for a single page.
      • \n"); -#endif /* ndef FORCE_LOAD */ - -#ifdef DENY_GZIP - b = strsav(b, "
    • #define DENY_GZIP - Prevents requests from being compressed - required for PCRS.
      • \n"); -#else /* ifndef DENY_GZIP */ - b = strsav(b, "
    • #undef DENY_GZIP - Allows requests to be compressed if the browser and server support it.
      • \n"); -#endif /* ndef DENY_GZIP */ - -#ifdef STATISTICS - b = strsav(b, "
    • #define STATISTICS - Enables statistics function.
      • \n"); -#else /* ifndef STATISTICS */ - b = strsav(b, "
    • #undef STATISTICS - Disables statistics function.
      • \n"); -#endif /* ndef STATISTICS */ - -#ifdef SPLIT_PROXY_ARGS - b = strsav(b, "
    • #define SPLIT_PROXY_ARGS - Split this page up by placing the configuration files on separate pages.
      • \n"); -#else /* ifndef SPLIT_PROXY_ARGS */ - b = strsav(b, "
    • #undef SPLIT_PROXY_ARGS - This page contains the text of the configuration files, they are not split onto separate pages.
      • \n"); -#endif /* ndef SPLIT_PROXY_ARGS */ - -#ifdef KILLPOPUPS - b = strsav(b, "
    • #define KILLPOPUPS - Enables killing JavaScript popups.
      • \n"); -#else /* ifndef KILLPOPUPS */ - b = strsav(b, "
    • #undef KILLPOPUPS - Disables killing JavaScript popups.
      • \n"); -#endif /* ndef KILLPOPUPS */ - -#ifdef WEBDAV - b = strsav(b, "
    • #define WEBDAV - Enables support for webDAV - e.g. stops Microsoft Outlook from accessing HotMail e-mail.
      • \n"); -#else /* ifndef WEBDAV */ - b = strsav(b, "
    • #undef WEBDAV - Disables support for webDAV - e.g. so Microsoft Outlook can access HotMail e-mail.
      • \n"); -#endif /* ndef WEBDAV */ - -#ifdef DETECT_MSIE_IMAGES - b = strsav(b, "
    • #define DETECT_MSIE_IMAGES - Enables detecting image requests automatically for MSIE.
      • \n"); -#else /* ifndef DETECT_MSIE_IMAGES */ - b = strsav(b, "
    • #undef DETECT_MSIE_IMAGES - Disables detecting image requests automatically for MSIE.
      • \n"); -#endif /* ndef DETECT_MSIE_IMAGES */ - -#ifdef USE_IMAGE_LIST - b = strsav(b, "
    • #define USE_IMAGE_LIST - Enables using image list to detect images.
      • \n"); -#else /* ifndef USE_IMAGE_LIST */ - b = strsav(b, "
    • #undef USE_IMAGE_LIST - Disables using image list to detect images.
      • \n"); -#endif /* ndef USE_IMAGE_LIST */ - -#ifdef ACL_FILES - b = strsav(b, "
    • #define ACL_FILES - Enables the use of ACL files to control access to the proxy by IP address.
      • \n"); -#else /* ifndef ACL_FILES */ - b = strsav(b, "
    • #undef ACL_FILES - Disables the use of ACL files to control access to the proxy by IP address.
      • \n"); -#endif /* ndef ACL_FILES */ - -#ifdef TRUST_FILES - b = strsav(b, "
    • #define TRUST_FILES - Enables the use of trust files.
      • \n"); -#else /* ifndef TRUST_FILES */ - b = strsav(b, "
    • #undef TRUST_FILES - Disables the use of trust files.
      • \n"); -#endif /* ndef TRUST_FILES */ - -#ifdef JAR_FILES - b = strsav(b, "
    • #define JAR_FILES - Enables the use of jar files to capture cookies.
      • \n"); -#else /* ifndef JAR_FILES */ - b = strsav(b, "
    • #undef JAR_FILES - Disables the use of jar files to capture cookies.
      • \n"); -#endif /* ndef JAR_FILES */ - - b = strsav(b, "
    \n
    \n"); - - b = strsav(b, - "

    \n" - "Code and documentation of the " BANNER " Proxy" - "TM\n" - "\n" "Copyright© 1997 Junkbusters Corporation\n" - "TM
    \n" - "Copying and distribution permitted under the" - "\n" - "GNU " - "General Public License.\n" - "    " - "

    webmaster@junkbusters.com
    " - "    " - "\n" - ); - - proxy_args->trailer = b; - -} - - -/* - Local Variables: - tab-width: 3 - end: -*/ diff --git a/showargs.h b/showargs.h deleted file mode 100644 index 82b511c5..00000000 --- a/showargs.h +++ /dev/null @@ -1,60 +0,0 @@ -#ifndef _SHOWARGS_H -#define _SHOWARGS_H -#define SHOWARGS_H_VERSION "$Id: showargs.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/showargs.h,v $ - * - * Purpose : Contains various utility routines needed to - * generate the show-proxy-args page. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Based on the Internet Junkbuster originally written - * by and Copyright (C) 1997 Anonymous Coders and - * Junkbusters Corporation. http://www.junkbusters.com - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: showargs.h,v $ - * - *********************************************************************/ - - -#ifdef __cplusplus -extern "C" { -#endif - -extern char *strsav(char *old, const char *text_to_append); -extern void savearg(char *c, char *o); - -extern void init_proxy_args(int argc, const char *argv[]); -extern void end_proxy_args(void); - -/* Revision control strings from this header and associated .c file */ -extern const char showargs_rcs[]; -extern const char showargs_h_rcs[]; - -#ifdef __cplusplus -} /* extern "C" */ -#endif - -#endif /* ndef _SHOWARGS_H */ diff --git a/ssplit.c b/ssplit.c index 81246fdf..ff362568 100644 --- a/ssplit.c +++ b/ssplit.c @@ -1,12 +1,12 @@ -const char ssplit_rcs[] = "$Id: ssplit.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; +const char ssplit_rcs[] = "$Id: ssplit.c,v 1.5 2002/03/24 13:25:43 swa Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/ssplit.c,v $ + * File : $Source: /cvsroot/ijbswa/current/ssplit.c,v $ * * Purpose : A function to split a string at specified deliminters. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -32,6 +32,24 @@ const char ssplit_rcs[] = "$Id: ssplit.c,v 1.1 2001/05/13 21:57:07 administrator * * Revisions : * $Log: ssplit.c,v $ + * Revision 1.5 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.4 2001/11/13 00:16:38 jongfoster + * Replacing references to malloc.h with the standard stdlib.h + * (See ANSI or K&R 2nd Ed) + * + * Revision 1.3 2001/05/29 08:54:25 jongfoster + * Rewrote the innards of ssplit() to be easier to understand, + * faster, and to use less memory. Didn't change the interface + * except to give the parameters meaningful names. + * + * Revision 1.2 2001/05/17 23:01:01 oes + * - Cleaned CRLF's from the sources and related files + * + * Revision 1.1.1.1 2001/05/15 13:59:04 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -39,11 +57,7 @@ const char ssplit_rcs[] = "$Id: ssplit.c,v 1.1 2001/05/13 21:57:07 administrator #include "config.h" #include -#include - -#ifdef _WIN32 -#include -#endif +#include #include "ssplit.h" #include "miscutil.h" @@ -51,180 +65,139 @@ const char ssplit_rcs[] = "$Id: ssplit.c,v 1.1 2001/05/13 21:57:07 administrator const char ssplit_h_rcs[] = SSPLIT_H_VERSION; /* Define this for lots of debugging information to stdout */ -/* #define SSPLIT_VERBOSE */ - -#ifdef SSPLIT_VERBOSE -/********************************************************************* - * - * Function : print - * - * Description : Debugging routine to spit info on stdout. Not very - * useful to the non-console based IJB compiles. - * - * Parameters : - * 1 : v = an array of strings - * 2 : n = number of strings in `v' to dump to stdout - * - * Returns : N/A - * - *********************************************************************/ -static void print(char **v, int n) -{ - int i; - printf("dump %d strings\n", n); - for (i=0; i < n; i++) - { - printf("%d '%s'\n", i, v[i]); - } - -} -#endif /* def SSPLIT_VERBOSE */ +#undef SSPLIT_VERBOSE +/* #define SSPLIT_VERBOSE 1 */ /********************************************************************* * * Function : ssplit * - * Description : Split a string using deliminters in `c'. Results go - * into `v'. + * Description : Split a string using delimiters in `delim'. Results + * go into `vec'. * * Parameters : - * 1 : s = string to split - * 2 : c = array of delimiters - * 3 : v[] = results vector (aka. array) - * 4 : n = number of usable slots in the vector (aka. array size) - * 5 : m = consecutive delimiters means multiple fields? - * 6 : l = ignore leading field separators? - * - * Returns : -1 => failure, else the number of fields put in `v'. + * 1 : str = string to split. Will be split in place + * (i.e. do not free until you've finished with vec, + * previous contents will be trashed by the call). + * 2 : delim = array of delimiters (if NULL, uses " \t"). + * 3 : vec[] = results vector (aka. array) [out] + * 4 : vec_len = number of usable slots in the vector (aka. array size) + * 5 : dont_save_empty_fields = zero if consecutive delimiters + * give a null output field(s), nonzero if they are just + * to be considered as single delimeter + * 6 : ignore_leading = nonzero to ignore leading field + * separators. + * + * Returns : -1 => Error: vec_len is too small to hold all the + * data, or str == NULL. + * >=0 => the number of fields put in `vec'. + * On error, vec and str may still have been overwritten. * *********************************************************************/ -int ssplit(char *s, char *c, char *v[], int n, int m, int l) +int ssplit(char *str, const char *delim, char *vec[], int vec_len, + int dont_save_empty_fields, int ignore_leading) { - char t[256]; - char **x = NULL; - int xsize = 0; - unsigned char *p, b; - int xi = 0; - int vi = 0; - int i; - int last_was_null; - - if (!s) + unsigned char is_delim[256]; + unsigned char char_type; + int vec_count = 0; + + if (!str) { return(-1); } - memset(t, '\0', sizeof(t)); - p = (unsigned char *) c; + /* Build is_delim array */ - if (!p) + memset(is_delim, '\0', sizeof(is_delim)); + + if (!delim) { - p = (unsigned char *) " \t"; /* default field separators */ + delim = " \t"; /* default field separators */ } - while (*p) + while (*delim) { - t[*p++] = 1; /* separator */ + is_delim[(unsigned)(unsigned char)*delim++] = 1; /* separator */ } - t['\0'] = 2; /* terminator */ - t['\n'] = 2; /* terminator */ + is_delim[(unsigned)(unsigned char)'\0'] = 2; /* terminator */ + is_delim[(unsigned)(unsigned char)'\n'] = 2; /* terminator */ + - p = (unsigned char *) s; + /* Parse string */ - if (l)/* are we to skip leading separators ? */ + if (ignore_leading) { - while ((b = t[*p]) != 2) + /* skip leading separators */ + while (is_delim[(unsigned)(unsigned char)*str] == 1) { - if (b != 1) - { - break; - } - p++; + str++; } } - xsize = 256; - - x = (char **) zalloc((xsize) * sizeof(char *)); - - x[xi++] = (char *) p; /* first pointer is the beginning of string */ + /* first pointer is the beginning of string */ + /* Check if we want to save this field */ + if ( (!dont_save_empty_fields) + || (is_delim[(unsigned)(unsigned char)*str] == 0) ) + { + /* + * We want empty fields, or the first character in this + * field is not a delimiter or the end of string. + * So save it. + */ + if (vec_count >= vec_len) + { + return(-1); /* overflow */ + } + vec[vec_count++] = (char *) str; + } - /* first pass: save pointers to the field separators */ - while ((b = t[*p]) != 2) + while ((char_type = is_delim[(unsigned)(unsigned char)*str]) != 2) { - if (b == 1) /* if the char is a separator ... */ + if (char_type == 1) { - *p++ = '\0'; /* null terminate the substring */ + /* the char is a separator */ - if (xi == xsize) - { - /* get another chunk */ - int new_xsize = xsize + 256; - char **new_x = (char **)zalloc((new_xsize) * sizeof(char *)); + /* null terminate the substring */ + *str++ = '\0'; - for (i=0; i < xsize; i++) + /* Check if we want to save this field */ + if ( (!dont_save_empty_fields) + || (is_delim[(unsigned)(unsigned char)*str] == 0) ) { - new_x[i] = x[i]; + /* + * We want empty fields, or the first character in this + * field is not a delimiter or the end of string. + * So save it. + */ + if (vec_count >= vec_len) + { + return(-1); /* overflow */ } - - free(x); - xsize = new_xsize; - x = new_x; + vec[vec_count++] = (char *) str; } - x[xi++] = (char *) p; /* save pointer to beginning of next string */ } else { - p++; + str++; } } - *p = '\0'; /* null terminate the substring */ - + *str = '\0'; /* null terminate the substring */ #ifdef SSPLIT_VERBOSE - if (DEBUG(HDR)) { - print(x, xi); /* debugging */ - } -#endif /* def SSPLIT_VERBOSE */ - - - /* second pass: copy the relevant pointers to the output vector */ - last_was_null = 0; - for (i=0 ; i < xi; i++) - { - if (m) - { - /* there are NO null fields */ - if (*x[i] == 0) - { - continue; - } - } - if (vi < n) + int i; + printf("dump %d strings\n", vec_count); + for (i = 0; i < vec_count; i++) { - v[vi++] = x[i]; + printf("%d '%s'\n", i, vec[i]); } - else - { - free(x); - return(-1); /* overflow */ - } - } - free(x); - -#ifdef SSPLIT_VERBOSE - if (DEBUG(HDR)) - { - print(v, vi); /* debugging */ } #endif /* def SSPLIT_VERBOSE */ - return(vi); - + return(vec_count); } diff --git a/ssplit.h b/ssplit.h index 39bd9934..397dda2a 100644 --- a/ssplit.h +++ b/ssplit.h @@ -1,14 +1,14 @@ -#ifndef _SSPLIT_H -#define _SSPLIT_H -#define SSPLIT_H_VERSION "$Id: ssplit.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef SSPLIT_H_INCLUDED +#define SSPLIT_H_INCLUDED +#define SSPLIT_H_VERSION "$Id: ssplit.h,v 1.4 2002/03/24 13:25:43 swa Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/ssplit.h,v $ + * File : $Source: /cvsroot/ijbswa/current/ssplit.h,v $ * * Purpose : A function to split a string at specified deliminters. * * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -34,6 +34,21 @@ * * Revisions : * $Log: ssplit.h,v $ + * Revision 1.4 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.3 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.2 2001/05/29 08:54:25 jongfoster + * Rewrote the innards of ssplit() to be easier to understand, + * faster, and to use less memory. Didn't change the interface + * except to give the parameters meaningful names. + * + * Revision 1.1.1.1 2001/05/15 13:59:04 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -42,7 +57,8 @@ extern "C" { #endif -extern int ssplit(char *s, char *c, char *v[], int n, int m, int l); +extern int ssplit(char *str, const char *delim, char *vec[], int vec_len, + int dont_save_empty_fields, int ignore_leading); /* Revision control strings from this header and associated .c file */ extern const char ssplit_rcs[]; @@ -52,7 +68,7 @@ extern const char ssplit_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _SSPLIT_H */ +#endif /* ndef SSPLIT_H_INCLUDED */ /* Local Variables: diff --git a/standard.action b/standard.action new file mode 100644 index 00000000..7d5fd990 --- /dev/null +++ b/standard.action @@ -0,0 +1,138 @@ +###################################################################### +# +# File : $Source: /cvsroot/ijbswa/current/standard.action,v $ +# +# $Id: standard.action,v 1.1 2002/04/24 02:20:49 oes Exp $ +# +# Purpose : Provide prefedined sets of actions, see +# http://www.privoxy.org/faq/questions.html#CONFIGFILES +# +# Copyright : Written by and Copyright +# Privoxy team. http://www.privoxy.org/ +# +###################################################################### + +###################################################################### +# +# CAUTION: MODYFING THIS FILE IS *NOT* RECOMMENDED for the average +# user. +# +# If you want to customize Privoxy to suit your needs, +# you can alter the default section in default.action and/or +# add your personal exceptions and additions in user.action +# +###################################################################### + +################ +# +# Cautions settings -- safe for all sites +# +{ \ +-add-header \ +-block \ +-deanimate-gifs \ +-downgrade-http-version \ +-fast-redirects \ ++filter{html-annoyances} \ ++filter{js-annoyances} \ +-filter{content-cookies} \ +-filter{popups} \ ++filter{webbugs} \ +-filter{refresh-tags} \ +-filter{fun} \ ++filter{nimda} \ ++filter{banners-by-size} \ +-filter{shockwave-flash} \ +-filter{crude-prental} \ ++hide-forwarded-for-headers \ ++hide-from-header{block} \ +-hide-referrer \ +-hide-user-agent \ +-handle-as-image \ ++set-image-blocker{pattern} \ +-limit-connect \ ++prevent-compression \ +-session-cookies-only \ +-crunch-outgoing-cookies \ +-crunch-incoming-cookies \ +-kill-popups \ +-send-vanilla-wafer \ +-send-wafer \ +} +standard.Cautious + +################ +# +# Medium settings -- safe for most sites +# +{ \ +-add-header \ +-block \ ++deanimate-gifs{last} \ +-downgrade-http-version \ +-fast-redirects \ ++filter{html-annoyances} \ ++filter{js-annoyances} \ ++filter{content-cookies} \ +-filter{popups} \ ++filter{webbugs} \ ++filter{refresh-tags} \ +-filter{fun} \ ++filter{nimda} \ ++filter{banners-by-size} \ +-filter{shockwave-flash} \ +-filter{crude-prental} \ ++hide-forwarded-for-headers \ ++hide-from-header{block} \ ++hide-referrer{forge} \ +-hide-user-agent \ +-handle-as-image \ ++set-image-blocker{pattern} \ +-limit-connect \ ++prevent-compression \ ++session-cookies-only \ +-crunch-outgoing-cookies \ +-crunch-incoming-cookies \ +-kill-popups \ +-send-vanilla-wafer \ +-send-wafer \ +} +standard.Medium + +################ +# +# Advanced settings -- fun but risky +# +{ \ ++add-header{X-User-Tracking: sucks} \ +-block \ ++deanimate-gifs{last} \ +-downgrade-http-version \ ++fast-redirects \ ++filter{html-annoyances} \ ++filter{js-annoyances} \ ++filter{content-cookies} \ ++filter{popups} \ ++filter{webbugs} \ ++filter{refresh-tags} \ ++filter{fun} \ ++filter{nimda} \ ++filter{banners-by-size} \ +-filter{shockwave-flash} \ +-filter{crude-prental} \ ++hide-forwarded-for-headers \ ++hide-from-header{block} \ ++hide-referrer{forge} \ +-hide-user-agent \ +-handle-as-image \ ++set-image-blocker{pattern} \ +-limit-connect \ ++prevent-compression \ ++session-cookies-only \ +-crunch-outgoing-cookies \ +-crunch-incoming-cookies \ +-kill-popups \ +-send-vanilla-wafer \ +-send-wafer \ +} +standard.Advanced diff --git a/templates/blocked b/templates/blocked new file mode 100644 index 00000000..e323b9e3 --- /dev/null +++ b/templates/blocked @@ -0,0 +1,270 @@ +########################################################## +# +# "Blocked" Error Output template for Privoxy. +# +# NOTE: UNLIKE THE OTHER TEMPLATES, THIS ONE USES +# JavaScript write() TO GENERATE THE PAGE IN JS_AWARE +# BROWSERS. SYMBOL SUBSTITUTIONS THAT RESULT IN MULTILINE +# STRINGS WILL BREAK THE JavaScript SYNTAX. +# USE WITH CAUTION. +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written in plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# protocol: +# The request's protocol: http:// or https:// +# hostport: +# The host and port part of the request that lead to this problem +# path: +# The path part of the request that lead to this problem +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# This is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# force-support: +# Privoxy has been compiled with support for forced loading +# of blocked content. In that case, the symbol "force-prefix" is +# avaiable, which translates to the FORCE_PREFIX +# + + + + Request blocked (Privoxy@@my-hostname@) + + + + + + + + + + +# Note: The same small version is used above via JavaScript +# If you make changes here, keep the other version in sync! + + + + + diff --git a/templates/cgi-error-404 b/templates/cgi-error-404 new file mode 100644 index 00000000..ee70d494 --- /dev/null +++ b/templates/cgi-error-404 @@ -0,0 +1,154 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + 404 - Privoxy Configuration Page not found + + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + 404 + + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Privoxy Configuration page not found

    +

    You typed in what looks like a URL used to configure + Privoxy, but it cannot be recognised. Maybe it's + for a different Privoxy version, or you typed it + in wrong? Or maybe the Privoxy administrator + has decided to disable the feature.

    +

    If you got here by clicking a link in the + configuration interface, please file a bug report!

    +

    You can use the menu below to select from the available + configuration options

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/cgi-error-bad-param b/templates/cgi-error-bad-param new file mode 100644 index 00000000..a9803dba --- /dev/null +++ b/templates/cgi-error-bad-param @@ -0,0 +1,161 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy: Bad parameter + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Bad parameter to Privoxy configuration page

    +

    You've found a page used to configure Privoxy, but the + parameters (the part of the web page address after the + "?" mark) are wrong or missing.

    +

    Possible causes:

    +
      +
    • If you just typed a URL pattern into a form, then you got + something wrong. Press the "back" button on your browser + once and correct what you typed.
      • +
    • If you tried to type in the URL, then you've found a + page where you can't do that. You can only view this + page by following links from elsewhere in the configuration + interface.
      • +
    • If you got here using your browser's "back" button, then + that is deliberately disabled for this page.
      • +
    • If you got here by clicking a link in the + configuration interface, please file a bug report!
      • +
    +

    You can use the menu below to select from the available + configuration options

    +
    +

    Privoxy Menu:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/cgi-error-disabled b/templates/cgi-error-disabled new file mode 100644 index 00000000..fd7f01f9 --- /dev/null +++ b/templates/cgi-error-disabled @@ -0,0 +1,148 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Configuration Page Disabled + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Privoxy Configuration page diasabled

    +

    The Privoxy administrator has decided to disable this + feature. If you want to use it, you must ask them to + enable it.

    +

    If you are the Privoxy administrator, you can enable + this feature by changing the appropriate line in your + configuration file.

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/cgi-error-file b/templates/cgi-error-file new file mode 100644 index 00000000..dab262a5 --- /dev/null +++ b/templates/cgi-error-file @@ -0,0 +1,138 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy: Actions file not found + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Actions file not found

    +

    The actions file you are trying to edit (@f@.action) + does not exist, or cannot be read.

    +
    +

    Privoxy Menu:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + + + diff --git a/templates/cgi-error-file-read-only b/templates/cgi-error-file-read-only new file mode 100644 index 00000000..62224489 --- /dev/null +++ b/templates/cgi-error-file-read-only @@ -0,0 +1,145 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy: Cannot write to actions file + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Cannot write to actions file

    +

    The actions file you are trying to edit (@f@.action) + could not be written to.

    +

    You many not have permission to write to the file - check the file + permissions. On Windows, right-click the file, choose Properties, + and make sure it is not read-only.

    +

    Another reason you may see this message is if you have run out of + disk space. If that is the case, then the actions file has been + truncated - if you get further errors, you may need to fix it + using a text editor.

    +
    +

    Privoxy Menu:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + + + diff --git a/templates/cgi-error-modified b/templates/cgi-error-modified new file mode 100644 index 00000000..c42bc691 --- /dev/null +++ b/templates/cgi-error-modified @@ -0,0 +1,162 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy: URL out of date + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    URL out of date - file has changed since it was generated

    +

    The URL you're viewing is out of date. To prevent possible + damage to your configuration file, this action has been ignored. +

    +

    Possible causes:

    +
      +
    • If you got here using your browser's "back" button, then + that is deliberately disabled for this page. Please + navigate around the configuration editor using the + links provided.
      • +
    • Perhaps you've got more than one browser window open, and + you're trying to change the same file in both? You can + only have one editor window open at a time. Your other edit + window should continue to function.
      • +
    • You may have modified the file some other way - perhaps by + editing it with a text editor. Simply go back in to the + configuration interface using the links below.
      • +
    +

    You can go back into the edit interface using the menu below, + or by clicking here. +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/cgi-error-parse b/templates/cgi-error-parse new file mode 100644 index 00000000..723eb677 --- /dev/null +++ b/templates/cgi-error-parse @@ -0,0 +1,175 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy: Parse error + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Parse error

    +

    The file you're trying to edit is not valid. You need to fix + it using a text editor before you can edit it using the + web-based editor.

    +

    This error should only occur if you edited the file using a text + editor. If you managed to take a valid file and break it this + badly using the web-based editor, please file a bug report!

    +

    When you've fixed the problem, you can go back into the edit + interface using the menu below, or by clicking here. +

    +
    +

    Problem description:

    +

    @parse-error@

    +
    +

    The line which caused the problem:

    + 
    @line-raw@
    +
    +

    The line which caused the problem, with comments removed

    +

    @line-data@

    +
    +

    Note

    +

    Only the first error is reported - the file may contain other + errors, as well as the one reported above.

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + + + diff --git a/templates/cgi-style.css b/templates/cgi-style.css new file mode 100644 index 00000000..b3556fd8 --- /dev/null +++ b/templates/cgi-style.css @@ -0,0 +1,137 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-list,v $ +# +# Purpose : Style sheet for the web-based config interface. +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-list,v $ +# +############################################################################## + + +/* + * CSS for Privoxy CGI and script output + * + * $Id: cgi-style.css,v 1.7 2002/05/12 15:45:33 jongfoster Exp $ + */ + +/* + * General rules: Font, Color, Headings, Margins, Links + */ +body,td,th { font-family: arial, helvetica, helv, sans-serif; } +body { background-color: #ffffff; color: #000000; } + +h1 { font-size: 140%; margin: 0px; } +h2 { font-size: 120%; margin: 0px; } +h3 { font-size: 110%; margin: 0px; } + +p,pre { margin-left: 15px; } +li { margin: 2px 15px; } +dl { margin: 2px 15px; } + +a:link { color: #0000dd; text-decoration: none; } +a:visited { color: #330099; text-decoration: none; } +a:active { color: #3333ff; text-decoration: none; } + +/* + * Boxen as Table elements: + */ +td.title { border: solid black 1px; background-color: #dddddd; } +td.box { border: solid black 1px; background-color: #eeeeee; } +td.info { border: solid black 1px; background-color: #ccccff; } +td.warning { border: solid black 1px; background-color: #ffdddd; } + +/* + * Special Table Boxen: for nesting, naked container and for + * the Status field in CGI Output: + */ +td.wrapbox { border: solid black 1px; padding: 5px; } +td.container { padding: 0px; } +td.status { border: solid black 1px; background-color: #ff0000; color: #ffffff; font-size: 300%; font-weight: bolder; } + +/* + * Same Boxen as
    s: + */ +div.title { border: solid black 1px; background-color: #dddddd; margin: 20px; padding: 20px; } +div.box { border: solid black 1px; background-color: #eeeeee; margin: 20px; padding: 20px; } +div.info { border: solid black 1px; background-color: #ccccff; margin: 20px; padding: 20px; } +div.warning { border: solid black 1px; background-color: #ffdddd; margin: 20px; padding: 20px; } +div.wrapbox { border: solid black 1px; margin: 20px; padding: 5px; } + + +/* + * Bold definitions in
    s, grey BG for table headings, transparent (no-bordered) table + */ +dt { font-weight: bold; } +th { background-color: #dddddd; } +table.transparent { border-style: none} + +/* + * Special purpose paragraphs: Small for page footers, + * Important for quoting wrong or dangerous examples, + * Whiteframed for the toggle?mini=y CGI + */ +p.small { font-size: 10px; margin: 0px; } +p.important { border: solid black 1px; background-color: #ffdddd; font-weight: bold; padding: 2px; } +p.whiteframed { margin: 5px; padding: 5px; border: solid black 1px; text-align: center; background-color: #eeeeee; } + +/* + * Links as buttons: + */ + +td.buttons { + padding: 2px; +} + +a.cmd, td.indentbuttons a, td.buttons a { + white-space: nowrap; + width: auto; + padding: 2px; + background-color: #dddddd; + color: #000000; + text-decoration: none; + border-top: 1px solid #ffffff; + border-left: 1px solid #ffffff; + border-bottom: 1px solid #000000; + border-right: 1px solid #000000; +} +a.cmd:hover, td.indentbuttons a:hover, td.buttons a:hover { + background-color: #eeeeee; +} +a.cmd:active, td.indentbuttons a:active, td.buttons a:active { + border-top: 1px solid #000000; + border-left: 1px solid #000000; + border-bottom: 1px solid #ffffff; + border-right: 1px solid #ffffff; +} + + +/* + * Special red emphasis: + */ +em.warning { color: #ff0000 } diff --git a/templates/connect-failed b/templates/connect-failed new file mode 100644 index 00000000..8e6de608 --- /dev/null +++ b/templates/connect-failed @@ -0,0 +1,159 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# host-ip: +# The IP address of the host that could not be reached +# hostport: +# The host and port part of the request that lead to this problem +# path: +# The path part of the request that lead to this problem +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + 503 - Connect failed (Privoxy@@my-hostname@) + + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + 503 + + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Connect failed

    +

    Your request for @protocol@@hostport@@path@ could + not be fulfilled, because the connection to @host@ (@host-ip@) could not be established. +

    +

    This is often a temporary failiure, so you might just + try again. +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/default b/templates/default new file mode 100644 index 00000000..f11c3f69 --- /dev/null +++ b/templates/default @@ -0,0 +1,136 @@ +########################################################## +# +# Default-CGI Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy@@my-hostname@ + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Privoxy Menu:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/edit-actions-add-url-form b/templates/edit-actions-add-url-form new file mode 100644 index 00000000..a15bec18 --- /dev/null +++ b/templates/edit-actions-add-url-form @@ -0,0 +1,202 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-add-url-form,v $ +# +# Purpose : Template used to add a URL pattern to the actions file. +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-add-url-form,v $ +# Revision 1.13 2002/04/10 13:32:53 oes +# Made templates modular +# +# Revision 1.12 2002/04/08 17:08:14 oes +# Cosmetic: make status in title lowercase +# +# Revision 1.11 2002/04/05 16:01:33 oes +# Correct HTML, external Stylesheets, eye candy, some fixes +# +# Revision 1.10 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.9 2002/03/24 15:23:33 jongfoster +# Name changes +# +# Revision 1.8 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.7 2002/03/23 16:18:15 swa +# renamed every reference to the old name with foobar. +# fixed "application foobar application" tag, fixed +# "the foobar" with "foobar". left junkbuster in cvs +# comments and remarks to history untouched. should +# make final rename easier. +# +# Revision 1.6 2002/03/16 15:22:19 jongfoster +# Moving 'alpha' warning to the end of the page +# +# Revision 1.5 2002/03/03 10:29:12 swa +# point users to the right feedback forms, +# not necessarily the developer list. +# +# Revision 1.4 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.3 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.2 2002/01/17 21:21:03 jongfoster +# DOS->Unix line endings +# +# Revision 1.1 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################## +# +# Standard support: +# +# This file currently produces valid HTML 4.01 Strict. +# +# If you change it, please save the generated page from your web browser +# and then upload it to http://validator.w3.org/ for checking. +# +############################################################################# +# +# Available variables include: +# +# filename +# ver +# section +# +############################################################################# + + + + + + + + + + Privoxy@@my-hostname@: Add URL Pattern + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Add URL Pattern

    +
    +

    + + + +
    +   +   + Cancel +

    +
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + + diff --git a/templates/edit-actions-for-url b/templates/edit-actions-for-url new file mode 100644 index 00000000..40333459 --- /dev/null +++ b/templates/edit-actions-for-url @@ -0,0 +1,879 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-for-url,v $ +# +# Purpose : Template used to edit the actions associated with a +# particular section in an actions file. +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-for-url,v $ +# Revision 1.28 2002/05/14 21:36:38 oes +# - Renamed prevent-(setting/reading)-cookies to +# crunch-(incoming/outgoing)-cookies +# - Renamed helplink export to actions-help-prefix +# - Restored alphabetical order of actions +# +# Revision 1.27 2002/04/26 22:55:26 jongfoster +# Removing the alternating colors because they've been wrong +# since the actions renames, they're high maintenance, they +# don't look particularly good, and now there are gaps between +# the table cells we don't need them. +# +# Revision 1.26 2002/04/26 21:55:17 jongfoster +# Cosmetic change: Making the +filter UI look the same as +# the other actions. +# +# Revision 1.25 2002/04/26 21:37:50 jongfoster +# Fixing all(?) the substitutions that were broken in the +# recent actions rename. +# +# Revision 1.24 2002/04/26 18:24:28 jongfoster +# Fixing typos in help hyperlinks +# +# Revision 1.23 2002/04/26 12:57:02 oes +# Actions renamed, alphabetically sorted, comments fixed, and names linked to help +# +# Revision 1.22 2002/04/10 13:32:53 oes +# Made templates modular +# +# Revision 1.21 2002/04/08 17:05:18 oes +# Inline a style exception +# +# Revision 1.20 2002/04/05 16:01:30 oes +# Correct HTML, external Stylesheets, eye candy, some fixes +# +# Revision 1.19 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.18 2002/03/24 16:32:08 jongfoster +# Removing logo option +# +# Revision 1.17 2002/03/24 15:23:33 jongfoster +# Name changes +# +# Revision 1.16 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.15 2002/03/23 16:18:15 swa +# renamed every reference to the old name with foobar. +# fixed "application foobar application" tag, fixed +# "the foobar" with "foobar". left junkbuster in cvs +# comments and remarks to history untouched. should +# make final rename easier. +# +# Revision 1.14 2002/03/16 15:22:19 jongfoster +# Moving 'alpha' warning to the end of the page +# +# Revision 1.13 2002/03/16 14:28:38 jongfoster +# First version of modular filters support +# +# Revision 1.12 2002/03/12 01:42:50 oes +# Introduced modular filters +# +# Revision 1.11 2002/03/08 18:19:14 jongfoster +# Adding +image-blocker{pattern} option to edit interface +# +# Revision 1.10 2002/03/03 10:29:12 swa +# point users to the right feedback forms, +# not necessarily the developer list. +# +# Revision 1.9 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.8 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.7 2002/01/17 21:21:03 jongfoster +# DOS->Unix line endings +# +# Revision 1.6 2001/11/22 21:58:41 jongfoster +# Adding action +no-cookies-keep +# +# Revision 1.5 2001/11/13 21:12:17 jongfoster +# Added support for the following actions: +# +downgrade, +limit-connect, +no-compression +# +# Revision 1.4 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################## +# +# Browser support for the JavaScript on this page: +# MS Internet Explorer 5.5 - Tested, Yes +# Netscape 6.0 - Tested, Yes +# Netscape 4.75 - Tested, NO +# Opera 5.12 - Tested, NO +# MS Internet Explorer 4+ - Untested, Yes +# MS IE 3.x, NS3.x - Untested, NO +# Mozilla >=0.6 - Untested, Yes +# +# All browsers should work, you just might not get the pretty DHTML effects. +# +# The effects that only work under the browsers marked "Yes" above are: +# - Text edit boxes that won't have any effect are disabled. +# - Table rows containing additional settings are hidden if the feature in +# question is disabled. +# +# There are major kludges to get around these problems with NS4, but they +# screw up the HTML too much for other browsers. If anyone wants to try, +# here's some descriptions of the kludges: +# http://www.webreference.com/js/tips/991114.html +# http://www.webreference.com/dhtml/column12/outDisplay.html +# +# If you're favorite browser isn't listed, please test and add it. +# +# +############################################################################# +# +# Standard support: +# +# This file currently produces valid HTML 4.01 Strict. +# +# If you change it, please save the generated page from your web browser +# and then upload it to http://validator.w3.org/ for checking. +# +############################################################################# +# +# Available variables include: +# +# action-name-y +# action-name-n +# action-name-x +# +# deanimate-gifs-param-first +# deanimate-gifs-param-last +# hide-from-param-block +# hide-from-param-custom +# hide-from-param +# hide-referer-param-forge +# hide-referer-param-block +# hide-referer-param-custom +# hide-referer-param +# hide-user-agent-param +# image-blocker-param-pattern +# image-blocker-param-blank +# image-blocker-param-custom +# +# +############################################################################# + + + + + + + + + + + Privoxy@@my-hostname@: Edit actions + + + + + + + + + + +
    + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Edit Actions + + + +

    +
    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +@filter-params@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    EnableDisableNo ChangeActionDescription
    add-headerAdds HTTP headers.
        Editing the settings for this option, or turning + it on if it was off, is not yet supported using this web-based + editor.
    blockBlock the request
    crunch-incoming-cookiesPrevent the website from setting cookies on your system.
    crunch-outgoing-cookiesPrevent the website from reading cookies from your system.
    deanimate-gifsReplace animated GIFs with their (first/last) frame.
        Use the   
    downgrade-http-versionChange HTTP/1.1 requests to HTTP/1.0. Only change if you know + what you're doing!
    fast-redirectsBypass some click-tracking URLs.
     filter *Filter the website through regular expression + filters. You can use the radio buttons on this line to disable + all filters applied by previous rules, and/or you can enable or + disable the filters individually below.
    handle-as-imageRequest is for an image (only useful in conjunction with the block + and set-image-blocker actions).
    hide-forwarded-for-headersBlock any existing X-Forwarded-for header, and do not add a new one.
    hide-from-headerStop old web browsers from sending the user's e-mail address with + every request.
        
    +
    +
    hide-referrerHelps prevent tracking by not sending the URL of the previous web + page. 
         (breaks images + on some free web hosts).
    + (fools checks for in-site links.)
    +
    +
    hide-user-agentPretend to be using a different web browser.  (Breaks many web + sites).
        User Agent string to send:
    +
    kill-popupsFilter the website through a built-in filter to disable many JavaScript + pop-up windows.
    limit-connectSpecify which ports are allowed for SSL (HTTP CONNECT) access. + Note that this allows arbitrary tunnelling, so opening all + ports would be a security hole.
        Legal SSL ports (comma separated, ranges allowed):
    +
    prevent-compressionDisables compression. Compressed web pages are faster to + download, but cannot be filtered with filter + or kill-popups. + This setting only affects the few web sites which support + compression.
    send-vanilla-waferAdds a special wafer (standard cookie) to all your requests.
    send-waferAdds user-specified cookies.
        Editing the settings for this option, or turning + it on if it was off, is not yet supported using this web-based + editor.
    session-cookies-onlyAny cookies set by the website are changed to temporary + ("per-session") ones, which only last until you close your web + browser. This will allow you to use sites that require cookies, but + sites will not be able to track you across sessions. For this to + be useful, you should disable + crunch-outgoing-cookies and + crunch-incoming-cookies.
    set-image-blockerSpecifies how to block images.
        
    +
    +
    +
    + +
    +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + Valid HTML 4.01 Strict +
    +
    + + + + + + + + diff --git a/templates/edit-actions-for-url-filter b/templates/edit-actions-for-url-filter new file mode 100644 index 00000000..952ed14f --- /dev/null +++ b/templates/edit-actions-for-url-filter @@ -0,0 +1,7 @@ + + + + + filter @name@ + @description@ + diff --git a/templates/edit-actions-list b/templates/edit-actions-list new file mode 100644 index 00000000..cde66a64 --- /dev/null +++ b/templates/edit-actions-list @@ -0,0 +1,363 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-list,v $ +# +# Purpose : Template used to edit the actions file. +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-list,v $ +# Revision 1.25 2002/05/21 21:02:52 oes +# Added more help links +# +# Revision 1.24 2002/05/21 19:11:40 oes +# - Added client-side JavaScript versions of edit and add URL forms +# - Moved jump targets to before container table cell +# - Let earu determine the jump target when removing URLs via JS +# - Fixed broken help link +# +# Revision 1.23 2002/05/12 15:53:10 jongfoster +# Restoring CVS log information accidentally removed in +# my previous commit. +# +# Revision 1.22 2002/05/12 15:45:33 jongfoster +# Applying [Patch 552094] New templates for edit-actions-list +# This cleans up the templates by: +# - Removing the (confusing) alternating color scheme. +# - Making everything left-justified. +# +# Revision 1.21 2002/05/03 22:58:15 jongfoster +# Fixing link target in all URLs section +# +# Revision 1.20 2002/04/26 12:57:18 oes +# - Central "button" link style in cgi-style.css +# - Help links now dynamic +# +# Revision 1.19 2002/04/24 02:19:16 oes +# - Show name of actions file being edited +# - Show context sensitive help +# - Add buttons for easy changing of defaults +# - Cosmetics and clarifications +# +# Revision 1.18 2002/04/18 19:21:09 jongfoster +# Added code to detect "conventional" action files, that start +# with a set of actions for all URLs (the pattern "/"). +# These are special-cased in the "edit-actions-list" CGI, so +# that a special UI can be written for them. +# +# Revision 1.17 2002/04/10 13:32:53 oes +# Made templates modular +# +# Revision 1.16 2002/04/08 17:08:14 oes +# Cosmetic: make status in title lowercase +# +# Revision 1.15 2002/04/05 16:01:32 oes +# Correct HTML, external Stylesheets, eye candy, some fixes +# +# Revision 1.14 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.13 2002/03/24 15:23:33 jongfoster +# Name changes +# +# Revision 1.12 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.11 2002/03/23 16:18:15 swa +# renamed every reference to the old name with foobar. +# fixed "application foobar application" tag, fixed +# "the foobar" with "foobar". left junkbuster in cvs +# comments and remarks to history untouched. should +# make final rename easier. +# +# Revision 1.10 2002/03/16 15:22:19 jongfoster +# Moving 'alpha' warning to the end of the page +# +# Revision 1.9 2002/03/05 00:24:51 jongfoster +# Patch to always edit the current actions file. +# +# Revision 1.8 2002/03/03 10:29:12 swa +# point users to the right feedback forms, +# not necessarily the developer list. +# +# Revision 1.7 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.6 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.5 2002/01/17 21:21:05 jongfoster +# DOS->Unix line endings +# +# Revision 1.4 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################## +# +# Browser support for the CSS on this page: +# MS Internet Explorer 5.5 - Yes - everything works. +# Netscape 6.2 - Yes - everything works. +# Netscape 4.75 - No - CSS buttons look really bad, but they are +# usable. Everything else works. +# Opera 5.12 - Yes - everything works. +# MS Internet Explorer 4+ - Untested +# MS IE 3.x, NS3.x - Untested (Don't support CSS, so everything +# should work, but will look ugly). +# Mozilla >=0.6 - Yes - everything works. +# +# All browsers should work, you just might not get the pretty CSS buttons. +# +# If your favorite browser isn't listed/tested, please test and add it. +# +# +############################################################################# +# +# Standard support: +# +# This file currently produces valid HTML 4.01 Strict. +# +# If you change it, please save the generated page from your web browser +# and then upload it to http://validator.w3.org/ for checking. +# +############################################################################# +# +# Available variables include: +# +# filename +# ver +# +# +############################################################################# + + + + + + + + + + + Privoxy: Edit actions file @f@.action + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + +@sections@ + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    What is all this?

    +

    + If you haven't already done so, it is strongly recommended that you at + least skim the + chapter on actions files in the user manual + before making any changes. You will also find a comprehensive list of all available actions + there. +

    + +

    + Please note that the first section has special importance. It sets the default actions for + all URLs. The resulting actions for a particular URL may differ from these defaults if that + URL matches again further down, but this section is largely responsible for your browsing + experience. Edit manually with great care, or choose from the predefined sets of actions. +

    + + +

    + This is the default action file. Updates for it are available from + Privoxy.org on a regular basis. + It is therefore not recommended that you add your private + rules here, since they will be lost if you install an update in the future. + Put your rules in a separate actions file, like user.action instead. +

    + +
    +
    +

    Editing Actions File @f@.action

    + +

    Insert new section at top

    + +
    +
    + + + + + + + + + + + + +
    Actions:
    + Edit + @all-urls-buttons@ +
    @all-urls-actions@
    URL patterns:
    /   (Matches all requests)
    Advanced:
    + Insert new section below +
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + Valid HTML 4.01 Strict +
    + + + diff --git a/templates/edit-actions-list-button b/templates/edit-actions-list-button new file mode 100644 index 00000000..53235588 --- /dev/null +++ b/templates/edit-actions-list-button @@ -0,0 +1,45 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-list-button,v $ +# +# Purpose : Template which forms part of edit-actions-list +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-list-button,v $ +# Revision 1.2 2002/05/12 15:45:33 jongfoster +# Applying [Patch 552094] New templates for edit-actions-list +# This cleans up the templates by: +# - Removing the (confusing) alternating color scheme. +# - Making everything left-justified. +# +# Revision 1.1 2002/05/03 23:00:38 jongfoster +# Support for templates for "standard actions" buttons. +# See bug #549871 +# +############################################################################# +   Set to @button-name@ diff --git a/templates/edit-actions-list-section b/templates/edit-actions-list-section new file mode 100644 index 00000000..b48bcb5a --- /dev/null +++ b/templates/edit-actions-list-section @@ -0,0 +1,114 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa/current/templates/edit-actions-list-section,v $ +# +# Purpose : Template which forms part of edit-actions-list +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-list-section,v $ +# Revision 1.14 2002/05/21 19:12:43 oes +# - Added client-side JavaScript versions of edit and add URL forms +# - Moved jump targets to before container table cell +# +# Revision 1.13 2002/05/12 15:45:33 jongfoster +# Applying [Patch 552094] New templates for edit-actions-list +# This cleans up the templates by: +# - Removing the (confusing) alternating color scheme. +# - Making everything left-justified. +# +# Revision 1.12 2002/04/26 12:58:11 oes +# Central "button" link style in cgi-style.css +# +# Revision 1.11 2002/04/24 02:14:03 oes +# Changed shortcuts, Cosmetics +# +# Revision 1.10 2002/04/17 21:27:26 jongfoster +# Adding #linenumber to the URLs which affect blocks, to make +# editing in long files easier. +# +# Revision 1.9 2002/04/17 15:51:47 oes +# Args! Restoring CVS history +# +# Revision 1.8 2002/04/17 15:04:16 oes +# Adapted to style change +# +# Revision 1.7 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.6 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.5 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.4 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.3 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################# +# +# Available variables include: +# +# filename +# ver +# sectionid +# urls +# +############################################################################# +# +# ** Important note: ** +# +# It is important to keep this file small. That's why all the +# identifiers in the HTML are short and cryptic. Currently, the main +# edit-actions page is ~300k. Before it was optimized, it was ~550k. +# +############################################################################# + + + + + + + + +@urls@ + + +
    Actions:
    Edit
    @actions@
    URL patterns:
    Add
    Advanced:
    +@if-s-prev-exists-start@Move section up   @if-s-prev-exists-end@ +@if-s-next-exists-start@Move section down   @if-s-next-exists-end@ +Insert new section below +@if-empty-section-start@   Delete whole section@if-empty-section-end@ +
    + diff --git a/templates/edit-actions-list-url b/templates/edit-actions-list-url new file mode 100644 index 00000000..f44eb589 --- /dev/null +++ b/templates/edit-actions-list-url @@ -0,0 +1,84 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa//current/templates/edit-actions-list-url,v $ +# +# Purpose : Template which forms part of edit-actions-list +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-list-url,v $ +# Revision 1.9 2002/05/12 15:45:33 jongfoster +# Applying [Patch 552094] New templates for edit-actions-list +# This cleans up the templates by: +# - Removing the (confusing) alternating color scheme. +# - Making everything left-justified. +# +# Revision 1.8 2002/04/26 12:58:11 oes +# Central "button" link style in cgi-style.css +# +# Revision 1.7 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.6 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.5 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.4 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.3 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################# +# +# Available variables include: +# +# filename +# ver +# sectionid +# urls +# +############################################################################# +# +# ** Important note: ** +# +# It is *extremely* important to keep this file small. That's why all the +# identifiers in the HTML are short and cryptic. Currently, the main +# edit-actions page is ~300k. Before it was optimized, it was ~550k. +# +############################################################################# + +Remove   Edit  @url-html@ + diff --git a/templates/edit-actions-remove-url-form b/templates/edit-actions-remove-url-form new file mode 100644 index 00000000..14f5fd9e --- /dev/null +++ b/templates/edit-actions-remove-url-form @@ -0,0 +1,187 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa//current/templates/edit-actions-remove-url-form,v $ +# +# Purpose : Template used to confirm removal of a particular URL +# pattern from an actions file. Only used on browsers that +# don't support JavaScript. +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-remove-url-form,v $ +# Revision 1.13 2002/04/10 13:32:53 oes +# Made templates modular +# +# Revision 1.12 2002/04/08 17:08:14 oes +# Cosmetic: make status in title lowercase +# +# Revision 1.11 2002/04/05 16:01:30 oes +# Correct HTML, external Stylesheets, eye candy, some fixes +# +# Revision 1.10 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.9 2002/03/24 15:23:33 jongfoster +# Name changes +# +# Revision 1.8 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.7 2002/03/23 16:18:15 swa +# renamed every reference to the old name with foobar. +# fixed "application foobar application" tag, fixed +# "the foobar" with "foobar". left junkbuster in cvs +# comments and remarks to history untouched. should +# make final rename easier. +# +# Revision 1.6 2002/03/16 15:22:19 jongfoster +# Moving 'alpha' warning to the end of the page +# +# Revision 1.5 2002/03/03 10:29:12 swa +# point users to the right feedback forms, +# not necessarily the developer list. +# +# Revision 1.4 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.3 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.2 2002/01/17 21:21:05 jongfoster +# DOS->Unix line endings +# +# Revision 1.1 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################## +# +# Standard support: +# +# This file currently produces valid HTML 4.01 Strict. +# +# If you change it, please save the generated page from your web browser +# and then upload it to http://validator.w3.org/ for checking. +# +############################################################################# +# +# Available variables include: +# +# filename +# ver +# section +# pattern +# oldval +# jumptarget - append to eal URL to jump to relevant section +# +############################################################################# + + + + + + + + + + + Privoxy@@my-hostname@: Remove URL Pattern + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Remove URL Pattern

    +

    Are you sure you want to delete this URL pattern? The pattern is:

    +

    @u@

    +

    + OK +   + Cancel +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + Valid HTML 4.01 Strict +
    + + + diff --git a/templates/edit-actions-url-form b/templates/edit-actions-url-form new file mode 100644 index 00000000..1719c194 --- /dev/null +++ b/templates/edit-actions-url-form @@ -0,0 +1,205 @@ +############################################################################## +# +# File : $Source: /cvsroot/ijbswa//current/templates/edit-actions-url-form,v $ +# +# Purpose : Template used to edit a URL pattern in an actions file. +# +# +# Copyright : Written by and Copyright (C) 2001 the SourceForge +# Privoxy team. http://www.privoxy.org/ +# +# Original Author: Copyright (C) 2001 Jonathan Foster +# http://www.jon-foster.co.uk/ +# +# This program is free software; you can redistribute it +# and/or modify it under the terms of the GNU General +# Public License as published by the Free Software +# Foundation; either version 2 of the License, or (at +# your option) any later version. +# +# This program is distributed in the hope that it will +# be useful, but WITHOUT ANY WARRANTY; without even the +# implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. See the GNU General Public +# License for more details. +# +# The GNU General Public License should be included with +# this file. If not, you can view it at +# http://www.gnu.org/copyleft/gpl.html +# or write to the Free Software Foundation, Inc., 59 +# Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# +# Revisions : +# $Log: edit-actions-url-form,v $ +# Revision 1.13 2002/04/10 13:32:53 oes +# Made templates modular +# +# Revision 1.12 2002/04/08 17:08:14 oes +# Cosmetic: make status in title lowercase +# +# Revision 1.11 2002/04/05 16:01:32 oes +# Correct HTML, external Stylesheets, eye candy, some fixes +# +# Revision 1.10 2002/03/26 22:29:56 swa +# we have a new homepage! +# +# Revision 1.9 2002/03/24 15:23:33 jongfoster +# Name changes +# +# Revision 1.8 2002/03/24 11:01:06 swa +# name change +# +# Revision 1.7 2002/03/23 16:18:15 swa +# renamed every reference to the old name with foobar. +# fixed "application foobar application" tag, fixed +# "the foobar" with "foobar". left junkbuster in cvs +# comments and remarks to history untouched. should +# make final rename easier. +# +# Revision 1.6 2002/03/16 15:22:19 jongfoster +# Moving 'alpha' warning to the end of the page +# +# Revision 1.5 2002/03/03 10:29:13 swa +# point users to the right feedback forms, +# not necessarily the developer list. +# +# Revision 1.4 2002/01/23 00:26:45 jongfoster +# Reducing length of URLs +# Where encoded and unencoded versions of a string existed, removing +# the unencoded one. +# +# Revision 1.3 2002/01/17 21:33:00 jongfoster +# Replacing all references to the URL of the config interface +# with @default-cgi@ +# +# Revision 1.2 2002/01/17 21:21:05 jongfoster +# DOS->Unix line endings +# +# Revision 1.1 2001/11/13 00:58:18 jongfoster +# New version of actions file editor templates +# +# +############################################################################## +# +# Standard support: +# +# This file currently produces valid HTML 4.01 Strict. +# +# If you change it, please save the generated page from your web browser +# and then upload it to http://validator.w3.org/ for checking. +# +############################################################################# +# +# Available variables include: +# +# f - filename +# v - version +# s - section +# p - pattern +# u - old value of URL +# jumptarget - append to eal URL to jump to relevant section +# +############################################################################# + + + + + + + + + + + Privoxy@@my-hostname@: Edit URL Pattern + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Edit URL Pattern

    +
    +

    + + + +
    +   +   + Cancel +

    +
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    + Valid HTML 4.01 Strict +
    + + + diff --git a/templates/mod-local-help b/templates/mod-local-help new file mode 100644 index 00000000..21d65963 --- /dev/null +++ b/templates/mod-local-help @@ -0,0 +1,12 @@ +

    Local Privoxy support:

    + + +

    You can consult the online documentation for more information about this Privoxy installation.

    + + + +

    Address e-mail questions about this service to + @admin-address@, + who will be glad to help you. +

    + diff --git a/templates/mod-support-and-service b/templates/mod-support-and-service new file mode 100644 index 00000000..d937e16a --- /dev/null +++ b/templates/mod-support-and-service @@ -0,0 +1,22 @@ +

    Support and Service via Sourceforge:

    +

    + We value your feedback. To provide you with the best support, + we ask that you: +

    + diff --git a/templates/mod-title b/templates/mod-title new file mode 100644 index 00000000..18296044 --- /dev/null +++ b/templates/mod-title @@ -0,0 +1,4 @@ +

    + This is Privoxy @version@ on @my-hostname@ (@my-ip-address@), port @my-port@, + @if-enabled-display-then@enabled@else-not-enabled-display@disabled@endif-enabled-display@ +

    diff --git a/templates/mod-unstable-warning b/templates/mod-unstable-warning new file mode 100644 index 00000000..bb35ccf7 --- /dev/null +++ b/templates/mod-unstable-warning @@ -0,0 +1,6 @@ +

    Warning:

    +

    + Please note that this @code-status@ release + of the proxy software is not intended for production systems! +
    Use at your own risk. See the license for details.     +

    diff --git a/templates/no-such-domain b/templates/no-such-domain new file mode 100644 index 00000000..f220b5c9 --- /dev/null +++ b/templates/no-such-domain @@ -0,0 +1,160 @@ +########################################################## +# +# No-Such-Domain Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the proxy's administrator, as configured +# in the 'config' file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# host: +# The host part of the request that lead to this problem +# hostport: +# The host and port part of the request that lead to this problem +# path: +# The path part of the request that lead to this problem +# proxy-info-url: +# The URL to local online Privoxy documentation, if define in the +# 'config' file +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + 404 - No such Domain (Privoxy@@my-hostname@) + + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + 404 + + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    No such domain

    +

    Your request for @protocol@@hostport@@path@ + could not be fulfilled, because the domain name @host@ could not be resolved. +

    +

    This is often a temporary failiure, so you might just + try again. +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/show-request b/templates/show-request new file mode 100644 index 00000000..0871a114 --- /dev/null +++ b/templates/show-request @@ -0,0 +1,158 @@ +########################################################## +# +# Show-Request-CGI Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# client-request: +# The request and headers that the client sent. +# processed-request: +# What we would have rewritten this request to, if this had not +# been intercepted. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy@@my-hostname@ + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Show-Request

    +

    + Here you see the original headers that your client sent when requesting this page, along with + the headers that Privoxy would have sent to the remote server if this request hadn't been + intercepted. +

    + +

    Original Client Request:

    + 
    @client-request@
    + +

    Processed Request:

    + 
    @processed-request@
    + +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/show-status b/templates/show-status new file mode 100644 index 00000000..0ec4f2ee --- /dev/null +++ b/templates/show-status @@ -0,0 +1,340 @@ +########################################################## +# +# Show-Status-CGI Output template for Privoxy. +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# redirect-url: +# The URL to a script that will redirect to the Privoxy +# documentation for a given item +# invocation: +# The command line with whitch Privoxy was invoked +# options: +# The options read from the configfile, linked to their +# explanations, plus warnings if parsing acl or forward +# statements produced errors. +# sourceversions: +# A HTML-formatted list of the individual source file cvs versions +# defines: +# A HTML-formatted list of all conditional #defines used when +# Privoxy was compiled +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# This is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# statistics: +# Privoxy was compiled with statistics support +# have-stats: +# There have been previous requests and statistics have +# been collected. In this case, the following symbols +# are available: +# requests-received: +# The number of requests received so far +# requests-blocked: +# The number of request blocked so far +# percent-blocked: +# The percentage of blocked requests +# have-no-stats: +# There haven't any statistics been collected yet +# pcrs-support: +# Privoxy was compiled with pcrs support +# trust-support: +# Privoxy was compiled with trust support +# actions-filename: +# The path to the actions file. +# re-filter-filename: +# The path to the re_filter file. Only available if +# pcrs-support is set +# trust-filename: +# The path to the trust file.Only available if +# trust-support is set + + + + + Privoxy@@my-hostname@: Proxy Status + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    The following files are in use:

    +

    + + + + + @actions-filenames@ + + + + + + + + + + + + + + + +
    Actions Files:
    Filter File:
    + @re-filter-filename@ + + + View + +
    Trust File:
    + @trust-filename@ + + + View + +
    +

    +
    +

    Privoxy was invoked as follows:

    +

    @invocation@

    +
    +

    The following options were given in the config file:

    +

    @options@

    +
    +

    Blocking Statistics:

    +

    + + @requests-blocked@ out of @requests-received@ requests have been blocked, + which equals a block rate of @percent-blocked@%. + + + There haven't been any requests so far. + +

    +
    +

    Conditional #defines:

    +

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    #define Enabled? Effects when enabled
    FEATURE_ACL@if-FEATURE_ACL-then@ Yes @else-not-FEATURE_ACL@ No @endif-FEATURE_ACL@Allows the use of an ACL to control access to the proxy by IP address.
    FEATURE_CGI_EDIT_ACTIONS@if-FEATURE_CGI_EDIT_ACTIONS-then@ Yes @else-not-FEATURE_CGI_EDIT_ACTIONS@ No @endif-FEATURE_CGI_EDIT_ACTIONS@Allows the use of the web-based actions file + editor@if-FEATURE_CGI_EDIT_ACTIONS-then@, which is here@else-not-FEATURE_CGI_EDIT_ACTIONS@@endif-FEATURE_CGI_EDIT_ACTIONS@.
    FEATURE_COOKIE_JAR@if-FEATURE_COOKIE_JAR-then@ Yes @else-not-FEATURE_COOKIE_JAR@ No @endif-FEATURE_COOKIE_JAR@Allows the use of a "cookie jar" file to capture cookies.
    FEATURE_FAST_REDIRECTS@if-FEATURE_FAST_REDIRECTS-then@ Yes @else-not-FEATURE_FAST_REDIRECTS@ No @endif-FEATURE_FAST_REDIRECTS@Allows the +fast-redirects action, to bypass redirect and logging scripts.
    FEATURE_FORCE_LOAD@if-FEATURE_FORCE_LOAD-then@ Yes @else-not-FEATURE_FORCE_LOAD@ No @endif-FEATURE_FORCE_LOAD@Allows bypassing all filtering for a single page using the prefix "@FORCE_PREFIX@".
    FEATURE_IMAGE_BLOCKING@if-FEATURE_IMAGE_BLOCKING-then@ Yes @else-not-FEATURE_IMAGE_BLOCKING@ No @endif-FEATURE_IMAGE_BLOCKING@Allows the +image ation, to send "blocked" images instead of HTML.
    FEATURE_IMAGE_DETECT_MSIE@if-FEATURE_IMAGE_DETECT_MSIE-then@ Yes @else-not-FEATURE_IMAGE_DETECT_MSIE@ No @endif-FEATURE_IMAGE_DETECT_MSIE@Enables automatic detection of image and HTML requests from + Microsoft Internet Explorer users, overriding the setting of + +image in the actions file.
    FEATURE_KILL_POPUPS@if-FEATURE_KILL_POPUPS-then@ Yes @else-not-FEATURE_KILL_POPUPS@ No @endif-FEATURE_KILL_POPUPS@Allows the +no-popups action, to block JavaScript popups.
    FEATURE_NO_GIFS@if-FEATURE_NO_GIFS-then@ Yes @else-not-FEATURE_NO_GIFS@ No @endif-FEATURE_NO_GIFS@Use PNG instead of GIF for the built-in images.
    FEATURE_PTHREAD@if-FEATURE_PTHREAD-then@ Yes @else-not-FEATURE_PTHREAD@ No @endif-FEATURE_PTHREAD@Use POSIX threads rather than native threads
    FEATURE_STATISTICS@if-FEATURE_STATISTICS-then@ Yes @else-not-FEATURE_STATISTICS@ No @endif-FEATURE_STATISTICS@Enables the statistics function.
    FEATURE_TOGGLE@if-FEATURE_TOGGLE-then@ Yes @else-not-FEATURE_TOGGLE@ No @endif-FEATURE_TOGGLE@Allow Privoxy to be "disabled" so it is just a normal non-blocking non-anonymizing proxy.
    FEATURE_TRUST@if-FEATURE_TRUST-then@ Yes @else-not-FEATURE_TRUST@ No @endif-FEATURE_TRUST@Allows the use of trust files.
    STATIC_PCRE@if-STATIC_PCRE-then@ Yes @else-not-STATIC_PCRE@ No @endif-STATIC_PCRE@Use the supplied statically-linked PCRE library. This is set automatically + by ./configure if you do not have the libpcre installed.
    STATIC_PCRS@if-STATIC_PCRS-then@ Yes @else-not-STATIC_PCRS@ No @endif-STATIC_PCRS@Use the supplied statically-linked PCRS library. This is set automatically + by ./configure if you do not have the libpcrs installed.
    +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/show-status-file b/templates/show-status-file new file mode 100644 index 00000000..a4abf629 --- /dev/null +++ b/templates/show-status-file @@ -0,0 +1,150 @@ +########################################################## +# +# Show-Status-CGI Output template for Privoxy. +# (Variant for the show-file mode) +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# file-description: +# A descriptive name for the file being shown +# contents: +# The contents of the file being shown +# filepath +# The complete filename of the file being shown +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# This is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# + + + + + Privoxy@@my-hostname@: Contents of @file-description@ + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Contents of @file-description@ @filepath@

    + 
    @contents@
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/show-url-info b/templates/show-url-info new file mode 100644 index 00000000..fa2e1241 --- /dev/null +++ b/templates/show-url-info @@ -0,0 +1,188 @@ +########################################################## +# +# Show-Url-Info-CGI Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# url-given: +# The CGI was called with a url parameter. In that case, the +# following symbols are available: +# url: +# The given URL +# default: +# The system default for actions +# matches: +# The list of all matches in the actions file that this URL +# produced, along with the actions that were triggered by +# these matches +# final: +# The actions that are associated with the URL at the end of +# the matching process +# + + + + + Privoxy@@my-hostname@ URL Info + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    + +

    NOTE:

    +

    This is a secure (https:) URL, so the part after the "/" is ignored. + This is a feature of the HTTPS protocol - the exact address of the + page you're visiting is hidden. Privoxy can only detect the host + part of the URL.

    +

     

    + +

    Matches for @url@:

    +

    @matches@

    +
    +

    Final results:

    +

    @final@

    +
    +

    Look up the actions for a +new + URL:

    +
    +

    + + +

    +
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/show-version b/templates/show-version new file mode 100644 index 00000000..bc7890a1 --- /dev/null +++ b/templates/show-version @@ -0,0 +1,163 @@ +########################################################## +# +# Show-Status-CGI Output template for Privoxy. +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# redirect-url: +# The URL to a script that will redirect to the Privoxy +# documentation for a given item +# invocation: +# The command line with whitch Privoxy was invoked +# options: +# The options read from the configfile, linked to their +# explanations, plus warnings if parsing acl or forward +# statements produced errors. +# sourceversions: +# A HTML-formatted list of the individual source file cvs versions +# defines: +# A HTML-formatted list of all conditional #defines used when +# Privoxy was compiled +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# This is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# sourceversions +# The versions. + + + + + Privoxy@@my-hostname@: Detailed proxy version information + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Source code versions:

    +

    (Note: This information is only relevant if you checked out Privoxy from CVS + and compiled it yourself. If you downloaded a binary, .exe, RPM, or a .tgz file, + then when you ask for support just mention the version number @version@ + and the type of download you got.) +

    + 
    @sourceversions@
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/templates/toggle b/templates/toggle new file mode 100644 index 00000000..1150dd7c --- /dev/null +++ b/templates/toggle @@ -0,0 +1,185 @@ +########################################################## +# +# Toggle Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# @if-enabled-display-then@ on @else-not-enabled-display@ off @endif-enabled-display@ +# + + + + + @if-enabled-display-then@Enabled@else-not-enabled-display@Disabled@endif-enabled-display@ - Privoxy@@my-hostname@ + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Privoxy is @if-enabled-display-then@Enabled@else-not-enabled-display@Disabled@endif-enabled-display@

    +

    When enabled, Privoxy performs its magic - blocking + adverts, filtering cookies, regex-filtering, etc.

    +

    When disabled, Privoxy behaves as a normal HTTP proxy, + and will not affect your web browsing.

    +

    Click + here to @if-enabled-display-then@disable@else-not-enabled-display@enable@endif-enabled-display@ Privoxy.

    +
    +

    Bookmarklets

    +

    Here are some bookmarklets to allow you to easily access a + "mini" version of this page. They are known to work with MS + Internet Explorer, Netscape and Mozilla, but should work equally + well in other browsers which support JavaScript. They are designed + to run directly from your bookmarks - not by clicking the + links below (although that will work for testing). +

    +

    To save them, right-click the link and choose + "Add to Favorites" (IE) or "Add Bookmark" (Netscape). You + will get a warning that the bookmark "may not be safe" - just + click OK. Then you can run the Bookmarklet directly from your + favourites/bookmarks. For even faster access, you can put + them on the "Links" bar (IE) or the "Personal Toolbar" + (Netscape), and run them with a single click. +

    + + + +

    + Credit: The site which gave us the general idea for these + bookmarklets is www.bookmarklets.com. + They have more information about them. +

    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + + diff --git a/templates/toggle-mini b/templates/toggle-mini new file mode 100644 index 00000000..bf06fbaf --- /dev/null +++ b/templates/toggle-mini @@ -0,0 +1,90 @@ +########################################################## +# +# Toggle Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# this is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# @if-enabled-display-then@ on @else-not-enabled-display@ off @endif-enabled-display@ +# + + + + + @if-enabled-display-then@Enabled@else-not-enabled-display@Disabled@endif-enabled-display@ - Privoxy@@my-hostname@ + + + + + + + + +

    + Privoxy is + @if-enabled-display-then@enabled@else-not-enabled-display@disabled@endif-enabled-display@. +
    @if-enabled-display-then@[Disable]@else-not-enabled-display@[Enable]@endif-enabled-display@ | + [Close] +

    + + diff --git a/templates/untrusted b/templates/untrusted new file mode 100644 index 00000000..d9c45294 --- /dev/null +++ b/templates/untrusted @@ -0,0 +1,194 @@ +########################################################## +# +# "Untrusted" Error Output template for Privoxy. +# +# +# USING HTML TEMPLATES: +# --------------------- +# +# Template files are written win plain HTML, with a few +# additions: +# +# - Lines that start with a '#' character like this one +# are ignored +# +# - Each item in the below list of exported symbols will +# be replaced by dynamically generated text, if they +# are enclosed in '@'-characters. E.g. The string @version@ +# will be replaced by the version number of Privoxy. +# +# - One special application of this is to make whole blocks +# of the HTML template disappear if the condition +# is not given. Simply enclose the block between the two +# strings @if-start and if--end@. The strings +# should be placed in HTML comments (), so the +# html structure won't be messed when the magic happens. +# +# USABLE SYMBOLS IN THIS TEMPLATE: +# -------------------------------- +# +# my-ip-addr: +# The IP-address that the client used to reach this proxy +# my-hostname: +# The hostname associated with my-ip-addr +# admin-address: +# The email address of the pxoxy's administrator, as configured +# in the config file +# default-cgi: +# The URL for the "main menu" builtin CGI of this proxy +# menu: +# List of
  • elements linking to the other available CGIs +# version: +# The version number of the proxy software +# code-status: +# The development status of the proxy software: "alpha", "beta", +# or "stable". +# homepage: +# The URL of the SourceForge ijbswa project, who maintains this +# software. +# +# hostport: +# The host and port part of the request that lead to this problem +# path: +# The path part of the request that lead to this problem +# referrer: +# The referrer of the request that lead to this problem +# trusted-referrers: +# An HTML-formatted list of referrers that are marked as trusted in +# the trustfile +# +# +# CONDITIONAL SYMBOLS FOR THIS TEMPLATE AND THEIR DEPANDANT SYMBOLS: +# ------------------------------------------------------------------ +# +# unstable: +# This is an alpha or beta release of the proxy software +# have-adminaddr-info: +# An e-mail address for the local Privoxy adminstrator has +# been specified and is available through the "admin-address" +# symbol +# have-proxy-info: +# A URL for online documentation about this proxy has been +# specified and is available through the "proxy-info-url" +# symbol +# have-help-info: +# If either have-proxy-info is true or have-adminaddr-info is +# true, have-help-info is true. Used to conditionally include +# a grey box for any and all help info. +# force-support: +# Privoxy has been compiled with support for forced loading +# of blocked content. In that case, the symbol "force-prefix" is +# avaiable, which translates to the FORCE_PREFIX +# have-trust-info: +# There were URLs with info on the trust policy defined in the config +# file. In this case the list of URLs is available through the +# "trust-info" symbol. +# +# + + + + Untrusted request (Privoxy@@my-hostname@) + + + + + + + + + + + + + + + + +# This will only appear if CODE_STATUS is "alpha" or "beta". See configure.in + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + UNTRUSTED + + +#include mod-title + +
    + +#include mod-unstable-warning + +
    +

    Request for untrusted URL

    +

    Your request for @protocol@@hostport@@path@ was blocked, + because neither the request URL itself, nor its referrer + (@referrer@) were trusted. +

    + +

    (You can go there anyway.)

    + +
    +

    The following referrers are trusted:

    +
      + @trusted-referrers@ +
    +
    +

    More information on the trust policy:

    +

    You can learn more about what this means and what you may be able to do about it by + reading the following documents: +

    +
      + @trust-info@ +
    +
    +

    More Privoxy:

    +
      @menu@
    +
    + +#include mod-support-and-service + +
    + +#include mod-local-help + +
    +

    Valid HTML 4.01 Strict

    +
    + + + diff --git a/testdrive.status b/testdrive.status new file mode 100644 index 00000000..3ab18af7 --- /dev/null +++ b/testdrive.status @@ -0,0 +1,30 @@ +CHUNK: ASSIGNED TO: RUN1: RUN2: +----------------------------------------------------------------------------- +testdrive-intl-aa +testdrive-intl-ab +testdrive-intl-ac Clifford Caoile +testdrive-intl-ad +testdrive-intl-ae bokeh 1.2 +testdrive-intl-af +testdrive-intl-ag +testdrive-intl-ah +testdrive-intl-ai swa 1.2 +testdrive-intl-aj swa 1.2 +testdrive-intl-ak swa 1.2 +testdrive-unstable +testdrive-us-aa maynard.o@discourse.mentabolism.org 1.2 +testdrive-us-ab Eugene Wood +testdrive-us-ac +testdrive-us-ad Hal 1.2 +testdrive-us-ae Hal 1.2 +testdrive-us-af Hal 1.2 +testdrive-us-ag Markus Weidler 1.2 +testdrive-us-ah Adam Jacob Muller +testdrive-us-ai +testdrive-us-aj +testdrive-us-ak +testdrive-us-al +testdrive-us-am +testdrive-us-an +testdrive-us-ao +testdrive-us-ap diff --git a/trust b/trust index d1a9fe21..8a40dcc4 100644 --- a/trust +++ b/trust @@ -1,8 +1,47 @@ -# Illustrative Trustfile for the Internet Junkbuster +###################################################################### +# +# File : $Source: /cvsroot/ijbswa/current/basic.action,v $ +# +# $Id: basic.action,v 1.3 2002/03/26 22:29:54 swa Exp $ # -# Copyright 1997-8 Junkbusters Corp. For distribution, modification and use -# under the GNU General Public License. These files come with NO WARRANTY. -# See http://www.junkbusters.com/ht/en/gpl.html or README file for details. +# Purpose : Trustfiles are an experimental feature used for +# building "whitelists" (versus the usual "blacklists" +# in a blockfile). +# +# Copyright : Written by and Copyright +# Privoxy team. http://www.privoxy.org/ +# +# Based on the Internet Junkbuster originally written +# by and Copyright (C) 1997 Anonymous Coders and +# Junkbusters Corporation. http://www.junkbusters.com +# +# We value your feedback. However, to provide you with the best support, +# please note: +# +# * Use the support forum to get help: +# http://sourceforge.net/tracker/?group_id=11118&atid=211118 +# * Submit bugs only thru our bug forum: +# http://sourceforge.net/tracker/?group_id=11118&atid=111118 +# Make sure that the bug has not already been submitted. Please try +# to verify that it is a Junkbuster bug, and not a browser or site +# bug first. If you are using your own custom configuration, please +# try the stock configs to see if the problem is a configuration +# related bug. And if not using the latest development snapshot, +# please try the latest one. Or even better, CVS sources. +# * Submit feature requests only thru our feature request forum: +# http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse +# +# For any other issues, feel free to use the mailing lists: +# http://sourceforge.net/mail/?group_id=11118 +# +# Anyone interested in actively participating in development and related +# discussions can join the appropriate mailing list here: +# http://sourceforge.net/mail/?group_id=11118. Archives are available +# here too. +# +###################################################################### +# +# Illustrative Trustfile for Privoxy # For this file to have any effect, the line beginning "trustfile" must # be commented in, with the name of this file following the word "trustfile" diff --git a/urlmatch.c b/urlmatch.c new file mode 100644 index 00000000..1b2aee86 --- /dev/null +++ b/urlmatch.c @@ -0,0 +1,809 @@ +const char urlmatch_rcs[] = "$Id: urlmatch.c,v 1.9 2002/04/04 00:36:36 gliptak Exp $"; +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/urlmatch.c,v $ + * + * Purpose : Declares functions to match URLs against URL + * patterns. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: urlmatch.c,v $ + * Revision 1.9 2002/04/04 00:36:36 gliptak + * always use pcre for matching + * + * Revision 1.8 2002/04/03 23:32:47 jongfoster + * Fixing memory leak on error + * + * Revision 1.7 2002/03/26 22:29:55 swa + * we have a new homepage! + * + * Revision 1.6 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.5 2002/03/13 00:27:05 jongfoster + * Killing warnings + * + * Revision 1.4 2002/03/07 03:46:17 oes + * Fixed compiler warnings + * + * Revision 1.3 2002/03/03 14:51:11 oes + * Fixed CLF logging: Added ocmd member for client's request to struct http_request + * + * Revision 1.2 2002/01/21 00:14:09 jongfoster + * Correcting comment style + * Fixing an uninitialized memory bug in create_url_spec() + * + * Revision 1.1 2002/01/17 20:53:46 jongfoster + * Moving all our URL and URL pattern parsing code to the same file - it + * was scattered around in filters.c, loaders.c and parsers.c. + * + * Providing a single, simple url_match(pattern,url) function - rather than + * the 3-line match routine which was repeated all over the place. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Providing parse_http_url() so that URLs can be parsed without faking a + * HTTP request line for parse_http_request() or repeating the parsing + * code (both of which were techniques that were actually in use). + * + * Standardizing that struct http_request is used to represent a URL, and + * struct url_spec is used to represent a URL pattern. (Before, URLs were + * represented as seperate variables and a partially-filled-in url_spec). + * + * + *********************************************************************/ + + +#include "config.h" + +#ifndef _WIN32 +#include +#include +#endif + +#include +#include +#include +#include + +#if !defined(_WIN32) && !defined(__OS2__) +#include +#endif + +#include "project.h" +#include "urlmatch.h" +#include "ssplit.h" +#include "miscutil.h" +#include "errlog.h" + +const char urlmatch_h_rcs[] = URLMATCH_H_VERSION; + + +/********************************************************************* + * + * Function : free_http_request + * + * Description : Freez a http_request structure + * + * Parameters : + * 1 : http = points to a http_request structure to free + * + * Returns : N/A + * + *********************************************************************/ +void free_http_request(struct http_request *http) +{ + assert(http); + + freez(http->cmd); + freez(http->ocmd); + freez(http->gpc); + freez(http->host); + freez(http->url); + freez(http->hostport); + freez(http->path); + freez(http->ver); + freez(http->host_ip_addr_str); + freez(http->dbuffer); + freez(http->dvec); + http->dcount = 0; +} + + +/********************************************************************* + * + * Function : parse_http_url + * + * Description : Parse out the host and port from the URL. Find the + * hostname & path, port (if ':'), and/or password (if '@') + * + * Parameters : + * 1 : url = URL (or is it URI?) to break down + * 2 : http = pointer to the http structure to hold elements. + * Will be zeroed before use. Note that this + * function sets the http->gpc and http->ver + * members to NULL. + * 3 : csp = Current client state (buffers, headers, etc...) + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out of memory + * JB_ERR_CGI_PARAMS on malformed command/URL + * or >100 domains deep. + * + *********************************************************************/ +jb_err parse_http_url(const char * url, + struct http_request *http, + struct client_state *csp) +{ + /* + * Zero out the results structure + */ + memset(http, '\0', sizeof(*http)); + + + /* + * Save our initial URL + */ + http->url = strdup(url); + if (http->url == NULL) + { + return JB_ERR_MEMORY; + } + + + /* + * Split URL into protocol,hostport,path. + */ + { + char *buf; + char *url_noproto; + char *url_path; + + buf = strdup(url); + if (buf == NULL) + { + return JB_ERR_MEMORY; + } + + /* Find the start of the URL in our scratch space */ + url_noproto = buf; + if (strncmpic(url_noproto, "http://", 7) == 0) + { + url_noproto += 7; + http->ssl = 0; + } + else if (strncmpic(url_noproto, "https://", 8) == 0) + { + url_noproto += 8; + http->ssl = 1; + } + else + { + http->ssl = 0; + } + + url_path = strchr(url_noproto, '/'); + if (url_path != NULL) + { + /* + * Got a path. + * + * NOTE: The following line ignores the path for HTTPS URLS. + * This means that you get consistent behaviour if you type a + * https URL in and it's parsed by the function. (When the + * URL is actually retrieved, SSL hides the path part). + */ + http->path = strdup(http->ssl ? "/" : url_path); + *url_path = '\0'; + http->hostport = strdup(url_noproto); + } + else + { + /* + * Repair broken HTTP requests that don't contain a path, + * or CONNECT requests + */ + http->path = strdup("/"); + http->hostport = strdup(url_noproto); + } + + free(buf); + + if ( (http->path == NULL) + || (http->hostport == NULL)) + { + free(buf); + free_http_request(http); + return JB_ERR_MEMORY; + } + } + + + /* + * Split hostport into user/password (ignored), host, port. + */ + { + char *buf; + char *host; + char *port; + + buf = strdup(http->hostport); + if (buf == NULL) + { + free_http_request(http); + return JB_ERR_MEMORY; + } + + /* check if url contains username and/or password */ + host = strchr(buf, '@'); + if (host != NULL) + { + /* Contains username/password, skip it and the @ sign. */ + host++; + } + else + { + /* No username or password. */ + host = buf; + } + + /* check if url contains port */ + port = strchr(host, ':'); + if (port != NULL) + { + /* Contains port */ + /* Terminate hostname and point to start of port string */ + *port++ = '\0'; + http->port = atoi(port); + } + else + { + /* No port specified. */ + http->port = (http->ssl ? 143 : 80); + } + + http->host = strdup(host); + + free(buf); + + if (http->host == NULL) + { + free_http_request(http); + return JB_ERR_MEMORY; + } + } + + + /* + * Split domain name so we can compare it against wildcards + */ + { + char *vec[BUFFER_SIZE]; + size_t size; + char *p; + + http->dbuffer = strdup(http->host); + if (NULL == http->dbuffer) + { + free_http_request(http); + return JB_ERR_MEMORY; + } + + /* map to lower case */ + for (p = http->dbuffer; *p ; p++) + { + *p = tolower((int)(unsigned char)*p); + } + + /* split the domain name into components */ + http->dcount = ssplit(http->dbuffer, ".", vec, SZ(vec), 1, 1); + + if (http->dcount <= 0) + { + /* + * Error: More than SZ(vec) components in domain + * or: no components in domain + */ + free_http_request(http); + return JB_ERR_PARSE; + } + + /* save a copy of the pointers in dvec */ + size = http->dcount * sizeof(*http->dvec); + + http->dvec = (char **)malloc(size); + if (NULL == http->dvec) + { + free_http_request(http); + return JB_ERR_MEMORY; + } + + memcpy(http->dvec, vec, size); + } + + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : parse_http_request + * + * Description : Parse out the host and port from the URL. Find the + * hostname & path, port (if ':'), and/or password (if '@') + * + * Parameters : + * 1 : req = HTTP request line to break down + * 2 : http = pointer to the http structure to hold elements + * 3 : csp = Current client state (buffers, headers, etc...) + * + * Returns : JB_ERR_OK on success + * JB_ERR_MEMORY on out of memory + * JB_ERR_CGI_PARAMS on malformed command/URL + * or >100 domains deep. + * + *********************************************************************/ +jb_err parse_http_request(const char *req, + struct http_request *http, + struct client_state *csp) +{ + char *buf; + char *v[10]; + int n; + jb_err err; + int is_connect = 0; + + memset(http, '\0', sizeof(*http)); + + buf = strdup(req); + if (buf == NULL) + { + return JB_ERR_MEMORY; + } + + n = ssplit(buf, " \r\n", v, SZ(v), 1, 1); + if (n != 3) + { + free(buf); + return JB_ERR_PARSE; + } + + /* this could be a CONNECT request */ + if (strcmpic(v[0], "connect") == 0) + { + /* Secure */ + is_connect = 1; + } + /* or it could be any other basic HTTP request type */ + else if ((0 == strcmpic(v[0], "get")) + || (0 == strcmpic(v[0], "head")) + || (0 == strcmpic(v[0], "post")) + || (0 == strcmpic(v[0], "put")) + || (0 == strcmpic(v[0], "delete")) + + /* or a webDAV extension (RFC2518) */ + || (0 == strcmpic(v[0], "propfind")) + || (0 == strcmpic(v[0], "proppatch")) + || (0 == strcmpic(v[0], "move")) + || (0 == strcmpic(v[0], "copy")) + || (0 == strcmpic(v[0], "mkcol")) + || (0 == strcmpic(v[0], "lock")) + || (0 == strcmpic(v[0], "unlock")) + ) + { + /* Normal */ + is_connect = 0; + } + else + { + /* Unknown HTTP method */ + free(buf); + return JB_ERR_PARSE; + } + + err = parse_http_url(v[1], http, csp); + if (err) + { + free(buf); + return err; + } + + /* + * Copy the details into the structure + */ + http->ssl = is_connect; + http->cmd = strdup(req); + http->gpc = strdup(v[0]); + http->ver = strdup(v[2]); + + if ( (http->cmd == NULL) + || (http->gpc == NULL) + || (http->ver == NULL) ) + { + free(buf); + free_http_request(http); + return JB_ERR_MEMORY; + } + + return JB_ERR_OK; +} + + +/********************************************************************* + * + * Function : simple_domaincmp + * + * Description : Domain-wise Compare fqdn's. The comparison is + * both left- and right-anchored. The individual + * domain names are compared with simplematch(). + * This is only used by domain_match. + * + * Parameters : + * 1 : pv = array of patterns to compare + * 2 : fv = array of domain components to compare + * 3 : len = length of the arrays (both arrays are the + * same length - if they weren't, it couldn't + * possibly be a match). + * + * Returns : 0 => domains are equivalent, else no match. + * + *********************************************************************/ +static int simple_domaincmp(char **pv, char **fv, int len) +{ + int n; + + for (n = 0; n < len; n++) + { + if (simplematch(pv[n], fv[n])) + { + return 1; + } + } + + return 0; + +} + + +/********************************************************************* + * + * Function : domain_match + * + * Description : Domain-wise Compare fqdn's. Governed by the bimap in + * pattern->unachored, the comparison is un-, left-, + * right-anchored, or both. + * The individual domain names are compared with + * simplematch(). + * + * Parameters : + * 1 : pattern = a domain that may contain a '*' as a wildcard. + * 2 : fqdn = domain name against which the patterns are compared. + * + * Returns : 0 => domains are equivalent, else no match. + * + *********************************************************************/ +static int domain_match(const struct url_spec *pattern, const struct http_request *fqdn) +{ + char **pv, **fv; /* vectors */ + int plen, flen; + int unanchored = pattern->unanchored & (ANCHOR_RIGHT | ANCHOR_LEFT); + + plen = pattern->dcount; + flen = fqdn->dcount; + + if (flen < plen) + { + /* fqdn is too short to match this pattern */ + return 1; + } + + pv = pattern->dvec; + fv = fqdn->dvec; + + if (unanchored == ANCHOR_LEFT) + { + /* + * Right anchored. + * + * Convert this into a fully anchored pattern with + * the fqdn and pattern the same length + */ + fv += (flen - plen); /* flen - plen >= 0 due to check above */ + return simple_domaincmp(pv, fv, plen); + } + else if (unanchored == 0) + { + /* Fully anchored, check length */ + if (flen != plen) + { + return 1; + } + return simple_domaincmp(pv, fv, plen); + } + else if (unanchored == ANCHOR_RIGHT) + { + /* Left anchored, ignore all extra in fqdn */ + return simple_domaincmp(pv, fv, plen); + } + else + { + /* Unanchored */ + int n; + int maxn = flen - plen; + for (n = 0; n <= maxn; n++) + { + if (!simple_domaincmp(pv, fv, plen)) + { + return 0; + } + /* + * Doesn't match from start of fqdn + * Try skipping first part of fqdn + */ + fv++; + } + return 1; + } + +} + + +/********************************************************************* + * + * Function : create_url_spec + * + * Description : Creates a "url_spec" structure from a string. + * When finished, free with unload_url(). + * + * Parameters : + * 1 : url = Target url_spec to be filled in. Will be + * zeroed before use. + * 2 : buf = Source pattern, null terminated. NOTE: The + * contents of this buffer are destroyed by this + * function. If this function succeeds, the + * buffer is copied to url->spec. If this + * function fails, the contents of the buffer + * are lost forever. + * + * Returns : JB_ERR_OK - Success + * JB_ERR_MEMORY - Out of memory + * JB_ERR_PARSE - Cannot parse regex (Detailed message + * written to system log) + * + *********************************************************************/ +jb_err create_url_spec(struct url_spec * url, const char * buf) +{ + char *p; + + assert(url); + assert(buf); + + /* Zero memory */ + memset(url, '\0', sizeof(*url)); + + /* save a copy of the orignal specification */ + if ((url->spec = strdup(buf)) == NULL) + { + return JB_ERR_MEMORY; + } + + if ((p = strchr(buf, '/')) != NULL) + { + if (NULL == (url->path = strdup(p))) + { + freez(url->spec); + return JB_ERR_MEMORY; + } + url->pathlen = strlen(url->path); + *p = '\0'; + } + else + { + url->path = NULL; + url->pathlen = 0; + } + if (url->path) + { + int errcode; + char rebuf[BUFFER_SIZE]; + + if (NULL == (url->preg = zalloc(sizeof(*url->preg)))) + { + freez(url->spec); + freez(url->path); + return JB_ERR_MEMORY; + } + + sprintf(rebuf, "^(%s)", url->path); + + errcode = regcomp(url->preg, rebuf, + (REG_EXTENDED|REG_NOSUB|REG_ICASE)); + if (errcode) + { + size_t errlen = regerror(errcode, + url->preg, rebuf, sizeof(rebuf)); + + if (errlen > (sizeof(rebuf) - (size_t)1)) + { + errlen = sizeof(rebuf) - (size_t)1; + } + rebuf[errlen] = '\0'; + + log_error(LOG_LEVEL_ERROR, "error compiling %s: %s", + url->spec, rebuf); + + freez(url->spec); + freez(url->path); + regfree(url->preg); + freez(url->preg); + + return JB_ERR_PARSE; + } + } + if ((p = strchr(buf, ':')) == NULL) + { + url->port = 0; + } + else + { + *p++ = '\0'; + url->port = atoi(p); + } + + if (buf[0] != '\0') + { + char *v[150]; + size_t size; + + /* Parse domain part */ + if (buf[strlen(buf) - 1] == '.') + { + url->unanchored |= ANCHOR_RIGHT; + } + if (buf[0] == '.') + { + url->unanchored |= ANCHOR_LEFT; + } + + /* split domain into components */ + + url->dbuffer = strdup(buf); + if (NULL == url->dbuffer) + { + freez(url->spec); + freez(url->path); + regfree(url->preg); + freez(url->preg); + return JB_ERR_MEMORY; + } + + /* map to lower case */ + for (p = url->dbuffer; *p ; p++) + { + *p = tolower((int)(unsigned char)*p); + } + + /* split the domain name into components */ + url->dcount = ssplit(url->dbuffer, ".", v, SZ(v), 1, 1); + + if (url->dcount < 0) + { + freez(url->spec); + freez(url->path); + regfree(url->preg); + freez(url->preg); + freez(url->dbuffer); + url->dcount = 0; + return JB_ERR_MEMORY; + } + else if (url->dcount != 0) + { + + /* save a copy of the pointers in dvec */ + size = url->dcount * sizeof(*url->dvec); + + url->dvec = (char **)malloc(size); + if (NULL == url->dvec) + { + freez(url->spec); + freez(url->path); + regfree(url->preg); + freez(url->preg); + freez(url->dbuffer); + url->dcount = 0; + return JB_ERR_MEMORY; + } + + memcpy(url->dvec, v, size); + } + } + + return JB_ERR_OK; + +} + + +/********************************************************************* + * + * Function : free_url_spec + * + * Description : Called from the "unloaders". Freez the url + * structure elements. + * + * Parameters : + * 1 : url = pointer to a url_spec structure. + * + * Returns : N/A + * + *********************************************************************/ +void free_url_spec(struct url_spec *url) +{ + if (url == NULL) return; + + freez(url->spec); + freez(url->dbuffer); + freez(url->dvec); + freez(url->path); + if (url->preg) + { + regfree(url->preg); + freez(url->preg); + } +} + + +/********************************************************************* + * + * Function : url_match + * + * Description : Compare a URL against a URL pattern. + * + * Parameters : + * 1 : pattern = a URL pattern + * 2 : url = URL to match + * + * Returns : 0 iff the URL matches the pattern, else nonzero. + * + *********************************************************************/ +int url_match(const struct url_spec *pattern, + const struct http_request *url) +{ + return ((pattern->port == 0) || (pattern->port == url->port)) + && ((pattern->dbuffer == NULL) || (domain_match(pattern, url) == 0)) + && ((pattern->path == NULL) || + (regexec(pattern->preg, url->path, 0, NULL, 0) == 0) + ); +} + + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/urlmatch.h b/urlmatch.h new file mode 100644 index 00000000..09fa6396 --- /dev/null +++ b/urlmatch.h @@ -0,0 +1,97 @@ +#ifndef URLMATCH_H_INCLUDED +#define URLMATCH_H_INCLUDED +#define URLMATCH_H_VERSION "$Id: urlmatch.h,v 1.2 2002/03/24 13:25:43 swa Exp $" +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/urlmatch.h,v $ + * + * Purpose : Declares functions to match URLs against URL + * patterns. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: urlmatch.h,v $ + * Revision 1.2 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.1 2002/01/17 20:53:46 jongfoster + * Moving all our URL and URL pattern parsing code to the same file - it + * was scattered around in filters.c, loaders.c and parsers.c. + * + * Providing a single, simple url_match(pattern,url) function - rather than + * the 3-line match routine which was repeated all over the place. + * + * Renaming free_url to free_url_spec, since it frees a struct url_spec. + * + * Providing parse_http_url() so that URLs can be parsed without faking a + * HTTP request line for parse_http_request() or repeating the parsing + * code (both of which were techniques that were actually in use). + * + * Standardizing that struct http_request is used to represent a URL, and + * struct url_spec is used to represent a URL pattern. (Before, URLs were + * represented as seperate variables and a partially-filled-in url_spec). + * + * + *********************************************************************/ + + +#include "project.h" + +#ifdef __cplusplus +extern "C" { +#endif + +extern void free_http_request(struct http_request *http); +extern jb_err parse_http_request(const char *req, + struct http_request *http, + struct client_state *csp); +extern jb_err parse_http_url(const char * url, + struct http_request *http, + struct client_state *csp); + +extern int url_match(const struct url_spec *pattern, + const struct http_request *url); + +extern jb_err create_url_spec(struct url_spec * url, const char * buf); +extern void free_url_spec(struct url_spec *url); + + +/* Revision control strings from this header and associated .c file */ +extern const char urlmatch_rcs[]; +extern const char urlmatch_h_rcs[]; + +#ifdef __cplusplus +} /* extern "C" */ +#endif + +#endif /* ndef URLMATCH_H_INCLUDED */ + +/* + Local Variables: + tab-width: 3 + end: +*/ diff --git a/user.action b/user.action new file mode 100644 index 00000000..f35a4467 --- /dev/null +++ b/user.action @@ -0,0 +1,32 @@ +###################################################################### +# +# File : $Source: $ +# +# $Id: $ +# +# Purpose : User-maintained actions file, see +# http://www.privoxy.org/faq/questions.html#CONFIGFILES +# +###################################################################### + +# This is the place to add your personal exceptions and additions to +# the general policy. (Here they will be safe from updates to the +# "main" actions file, default.action. + +# Say you've seen an ad on your favourite page on example.com that +# you want to get rid of. You have right-clicked the image, selected +# "copy image location" and pasted the URL below, into a { +block } +# section. Note that { +handle-as-image } need not be specified, +# since all URLs ending in .gif will be tagged as images by the +# general rules in default.action anyway: +# +{ +block } +www.example.com/nasty-ads/sponsor.gif + +# Say the site where you do your homebanking needs to open +# popup windows, but you have chosen to kill popups by +# default. This will allow it for your-example-bank.com: +# +{ -filter{popups} -kill-popups } +.your-example-bank.com + diff --git a/vc_config_pthreads.h b/vc_config_pthreads.h new file mode 100644 index 00000000..c4a1137b --- /dev/null +++ b/vc_config_pthreads.h @@ -0,0 +1,479 @@ +#ifndef CONFIG_H_INCLUDED +#define CONFIG_H_INCLUDED +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/vc_config_pthreads.h,v $ + * + * Purpose : This file should be the first thing included in every + * .c file. (Before even system headers). It contains + * #define statements for various features. It was + * introduced because the compile command line started + * getting ludicrously long with feature defines. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: vc_config_pthreads.h,v $ + * Revision 1.2 2002/04/26 18:26:09 jongfoster + * Bumping version numbers + * + * Revision 1.1 2002/04/06 20:38:01 jongfoster + * Renaming VC++ versions of config.h + * + * Revision 1.20 2002/04/03 22:28:03 gliptak + * Removed references to gnu_regex + * + * Revision 1.19 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.18 2002/03/24 17:08:12 jongfoster + * Version number bump + * + * Revision 1.17 2002/03/24 13:33:26 swa + * name change related issues + * + * Revision 1.16 2002/03/16 14:27:22 jongfoster + * Ignoring a very common warning. + * + * Revision 1.15 2002/03/13 00:28:32 jongfoster + * Hiding all the warnings generated by #include + * + * Revision 1.14 2001/11/30 21:35:54 jongfoster + * Bumping version number to 2.9.10 + * + * Revision 1.13 2001/10/23 21:24:09 jongfoster + * Support for FEATURE_CGI_EDIT_ACTIONS + * + * Revision 1.12 2001/10/07 15:33:14 oes + * Removed FEATURE_DENY_GZIP + * Bumped up version number + * + * Revision 1.11 2001/09/16 16:59:34 jongfoster + * Bugfix - couldn't build resources with previous version. + * + * Revision 1.10 2001/09/16 16:19:02 jongfoster + * New version based on latest configure.in and acconfig.h + * + * Revision 1.9 2001/07/30 22:16:07 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.8 2001/07/25 19:16:27 oes + * Bumping version number to 2.9.8 + * + * Revision 1.7 2001/07/21 18:00:07 jongfoster + * Bumping version number to 2.9.7 + * + * Revision 1.6 2001/07/15 20:08:40 jongfoster + * New build files for VC++ which provide the option of POSIX + * or Win32 threads. + * + * Revision 1.5 2001/07/15 18:00:46 jongfoster + * Renaming STATIC to STATIC_PCRE. + * Replacing this file with one built by "configure" from + * "config.h.in", for consistency. + * + * Revision 1.6 2001/07/15 17:54:29 jongfoster + * Renaming #define STATIC to STATIC_PCRE + * Adding new #define FEATURE_PTHREAD that will be used to enable + * POSIX threads support. + * + * Revision 1.5 2001/07/13 13:48:37 oes + * - (Fix:) Copied CODE_STATUS #define from config.h.in + * - split REGEX #define into REGEX_GNU and REGEX_PCRE + * and removed PCRE. + * (REGEX = REGEX_GNU || REGEX_PCRE per project.h) + * - Moved STATIC (for pcre) here from Makefile.in + * - Introduced STATIC_PCRS #define to allow for dynaimc linking with + * libpcrs + * - Removed PCRS #define, since pcrs is now needed for CGI anyway + * + * Revision 1.4 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.3 2001/05/26 01:26:34 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * + * Revision 1.2 2001/05/22 17:43:35 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Many minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.1.1.1 2001/05/15 13:58:45 oes + * Initial import of version 2.9.3 source tree + * + * + *********************************************************************/ + + +/* + * Version number - Major (X._._) + */ +#define VERSION_MAJOR 2 + +/* + * Version number - Minor (_.X._) + */ +#define VERSION_MINOR 9 + +/* + * Version number - Point (_._.X) + */ +#define VERSION_POINT 15 + +/* + * Version number, as a string + */ +#define VERSION "2.9.15" + +/* + * Status of the code: alpha, beta or stable + */ +#define CODE_STATUS "beta" + +/* + * Regular expression matching for URLs. (Highly recommended). + * If neither of these are defined then you can ony use prefix matching. + * Don't bother to change this here! Use configure instead. + */ +#define REGEX_PCRE 1 + +/* + * Should pcre be statically built in instead of linkling with libpcre? + * (This is determined by configure depending on the availiability of + * libpcre and user preferences). The name is ugly, but pcre needs it. + * Don't bother to change this here! Use configure instead. + */ +#define STATIC_PCRE 1 + +/* + * Should pcrs be statically built in instead of linkling with libpcrs? + * (This is determined by configure depending on the availiability of + * libpcrs and user preferences). + * Don't bother to change this here! Use configure instead. + */ +#define STATIC_PCRS 1 + +/* + * Allows the use of an ACL to control access to the proxy by IP address. + */ +#define FEATURE_ACL 1 + +/* + * Enables the web-based configuration (actionsfile) editor. If you + * have a shared proxy, you might want to turn this off. + */ +#define FEATURE_CGI_EDIT_ACTIONS 1 + +/* + * Allows the use of jar files to capture cookies. + */ +#define FEATURE_COOKIE_JAR 1 + +/* + * Locally redirect remote script-redirect URLs + */ +#define FEATURE_FAST_REDIRECTS 1 + +/* + * Bypass filtering for 1 page only + */ +#define FEATURE_FORCE_LOAD 1 + +/* + * Allow blocking using images as well as HTML. + * If you do not define this then everything is blocked as HTML. + * + * Note that this is required if you want to use FEATURE_IMAGE_DETECT_MSIE. + */ +#define FEATURE_IMAGE_BLOCKING 1 + +/* + * Detect image requests automatically for MSIE. Will fall back to + * other image-detection methods (i.e. "+image" permission) for other + * browsers. + * + * You must also define FEATURE_IMAGE_BLOCKING to use this feature. + * + * It detects the following header pair as an image request: + * + * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) + * Accept: * / * + * + * And the following as a HTML request: + * + * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) + * Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, * / * + * + * And no, I haven't got that backwards - IE is being wierd. + * + * Known limitations: + * 1) If you press shift-reload on a blocked HTML page, you get + * the image "blocked" page, not the HTML "blocked" page. + * 2) Once an image "blocked" page has been sent, viewing it + * in it's own browser window *should* bring up the HTML + * "blocked" page, but it doesn't. You need to clear the + * browser cache to get the HTML version again. + * + * These limitations are due to IE making inconsistent choices + * about which "Accept:" header to send. + */ +#define FEATURE_IMAGE_DETECT_MSIE 1 + +/* + * Kills JavaScript popups - window.open, onunload, etc. + */ +#define FEATURE_KILL_POPUPS 1 + +/* + * Use POSIX threads instead of native threads. + */ +#define FEATURE_PTHREAD 1 + +/* + * Enables statistics function. + */ +#define FEATURE_STATISTICS 1 + +/* + * Allow JunkBuster to be "disabled" so it is just a normal non-blocking + * non-anonymizing proxy. This is useful if you're trying to access a + * blocked or broken site - just change the setting in the config file, + * or use the handy "Disable" menu option in the Windows GUI. + */ +#define FEATURE_TOGGLE 1 + +/* + * Allows the use of trust files. + */ +#define FEATURE_TRUST 1 + + +/**************************************************************************** + * The following values are correct for MS VC++97. + * You should normally not change them. + ***************************************************************************/ + + +/* + * Defined on Solaris only. Makes the system libraries thread safe. + */ +/* #define _REENTRANT 1 */ + +/* + * Defined on Solaris only. Without this, many important functions are not + * defined in the system headers. + */ +/* #define __EXTENSIONS__ 1 */ + +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with MultiThreading?) + */ +#define __MT__ 1 + + +/* Define if you have the `bcopy' function. */ +/* #define HAVE_BCOPY 1 */ + +/* Define if you have the header file. */ +/* #define HAVE_INTTYPES_H 1 */ + +/* Define if you have the `memmove' function. */ +#define HAVE_MEMMOVE 1 + +/* Define if you have the header file. */ +#define HAVE_MEMORY_H 1 + +/* Define if you have the header file. */ +/* #define HAVE_STDINT_H 1 */ + +/* Define if you have the header file. */ +#define HAVE_STDLIB_H 1 + +/* Define if you have the `strerror' function. */ +#define HAVE_STRERROR 1 + +/* Define if you have the header file. */ +/* #define HAVE_STRINGS_H 1 */ + +/* Define if you have the header file. */ +#define HAVE_STRING_H 1 + +/* Define if you have the header file. */ +#define HAVE_SYS_STAT_H 1 + +/* Define if you have the header file. */ +#define HAVE_SYS_TYPES_H 1 + +/* Define if you have the header file. */ +/* #define HAVE_UNISTD_H 1 */ + +/* The size of a `char *', as computed by sizeof. */ +#define SIZEOF_CHAR_P 4 + +/* The size of a `int', as computed by sizeof. */ +#define SIZEOF_INT 4 + +/* The size of a `long', as computed by sizeof. */ +#define SIZEOF_LONG 4 + +/* The size of a `long long', as computed by sizeof. */ +/* #define SIZEOF_LONG_LONG ---not supported--- */ + +/* The size of a `size_t', as computed by sizeof. */ +#define SIZEOF_SIZE_T 4 + +/* Define if you have the ANSI C header files. */ +#define STDC_HEADERS 1 + +/* Define to empty if `const' does not conform to ANSI C. */ +/* #define const */ + +/* Define to `unsigned' if does not define. */ +/* #define size_t unsigned */ + +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with ANSI Standard C?) + */ +/* Don't define for MS VC++ or you don't get strdup() declared. +#ifndef __STDC__ +#define __STDC__ 1 +#endif +*/ + +/* + * Need to set up this define only for the Pthreads library for + * Win32, available from http://sources.redhat.com/pthreads-win32/ + */ +#if defined(FEATURE_PTHREAD) && defined(_WIN32) +#define __CLEANUP_C +#endif /* defined(FEATURE_PTHREAD) && defined(_WIN32) */ + +/* + * BEOS does not currently support POSIX threads. + * This *should* be detected by ./configure, but let's be sure. + */ +#if defined(FEATURE_PTHREAD) && defined(__BEOS__) +#error BEOS does not support pthread - please run ./configure again with "--disable-pthread" + +#endif /* defined(FEATURE_PTHREAD) && defined(__BEOS__) */ + + +#if (!defined(_MSC_VER)) && (!defined(RC_INVOKED)) +#error This file is only intended for MS VC++ on Win32. For other compilers, please run configure. +#endif /* (!defined(_MSC_VER)) && (!defined(RC_INVOKED)) */ + +#pragma warning ( disable: 4100 4115 4201 4214 4244 4514 ) + +/* + * C4100 : unreferenced formal parameter + * Very common, not a bug + * + * C4115 : named type definition in parentheses + * #include causes a warning about one of these. + * + * C4201 : nonstandard extension used : nameless struct/union + * Endemic in + * + * C4214 nonstandard extension used : bit field types other than int + * Endemic in + * + * C4244 conversion from 'int' to 'char', possible loss of data + * Should really fix this one. Throughout the JB code. + * + * C4514 unreferenced inline/local function has been removed + * Caused by #include + */ + +#endif /* CONFIG_H_INCLUDED */ + diff --git a/vc_config_winthreads.h b/vc_config_winthreads.h new file mode 100644 index 00000000..396fb676 --- /dev/null +++ b/vc_config_winthreads.h @@ -0,0 +1,478 @@ +#ifndef CONFIG_H_INCLUDED +#define CONFIG_H_INCLUDED +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/vc_config_winthreads.h,v $ + * + * Purpose : This file should be the first thing included in every + * .c file. (Before even system headers). It contains + * #define statements for various features. It was + * introduced because the compile command line started + * getting ludicrously long with feature defines. + * + * Copyright : Written by and Copyright (C) 2001 the SourceForge + * Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: vc_config_winthreads.h,v $ + * Revision 1.2 2002/04/26 18:26:09 jongfoster + * Bumping version numbers + * + * Revision 1.1 2002/04/06 20:38:01 jongfoster + * Renaming VC++ versions of config.h + * + * Revision 1.14 2002/03/26 22:29:54 swa + * we have a new homepage! + * + * Revision 1.13 2002/03/24 17:08:12 jongfoster + * Version number bump + * + * Revision 1.12 2002/03/24 13:25:43 swa + * name change related issues + * + * Revision 1.11 2002/03/16 14:27:22 jongfoster + * Ignoring a very common warning. + * + * Revision 1.10 2002/03/13 00:28:32 jongfoster + * Hiding all the warnings generated by #include + * + * Revision 1.9 2001/11/30 21:35:54 jongfoster + * Bumping version number to 2.9.10 + * + * Revision 1.8 2001/10/23 21:24:09 jongfoster + * Support for FEATURE_CGI_EDIT_ACTIONS + * + * Revision 1.7 2001/10/07 15:33:14 oes + * Removed FEATURE_DENY_GZIP + * Bumped up version number + * + * Revision 1.6 2001/09/16 16:59:34 jongfoster + * Bugfix - couldn't build resources with previous version. + * + * Revision 1.5 2001/09/16 16:19:02 jongfoster + * New version based on latest configure.in and acconfig.h + * + * Revision 1.9 2001/07/30 22:16:07 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.8 2001/07/25 19:16:27 oes + * Bumping version number to 2.9.8 + * + * Revision 1.7 2001/07/21 18:00:07 jongfoster + * Bumping version number to 2.9.7 + * + * Revision 1.6 2001/07/15 20:08:40 jongfoster + * New build files for VC++ which provide the option of POSIX + * or Win32 threads. + * + * Revision 1.5 2001/07/15 18:00:46 jongfoster + * Renaming STATIC to STATIC_PCRE. + * Replacing this file with one built by "configure" from + * "config.h.in", for consistency. + * + * Revision 1.6 2001/07/15 17:54:29 jongfoster + * Renaming #define STATIC to STATIC_PCRE + * Adding new #define FEATURE_PTHREAD that will be used to enable + * POSIX threads support. + * + * Revision 1.5 2001/07/13 13:48:37 oes + * - (Fix:) Copied CODE_STATUS #define from config.h.in + * - split REGEX #define into REGEX_GNU and REGEX_PCRE + * and removed PCRE. + * (REGEX = REGEX_GNU || REGEX_PCRE per project.h) + * - Moved STATIC (for pcre) here from Makefile.in + * - Introduced STATIC_PCRS #define to allow for dynaimc linking with + * libpcrs + * - Removed PCRS #define, since pcrs is now needed for CGI anyway + * + * Revision 1.4 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.3 2001/05/26 01:26:34 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * + * Revision 1.2 2001/05/22 17:43:35 oes + * + * - Enabled filtering banners by size rather than URL + * by adding patterns that replace all standard banner + * sizes with the "Junkbuster" gif to the re_filterfile + * + * - Enabled filtering WebBugs by providing a pattern + * which kills all 1x1 images + * + * - Added support for PCRE_UNGREEDY behaviour to pcrs, + * which is selected by the (nonstandard and therefore + * capital) letter 'U' in the option string. + * It causes the quantifiers to be ungreedy by default. + * Appending a ? turns back to greedy (!). + * + * - Added a new interceptor ijb-send-banner, which + * sends back the "Junkbuster" gif. Without imagelist or + * MSIE detection support, or if tinygif = 1, or the + * URL isn't recognized as an imageurl, a lame HTML + * explanation is sent instead. + * + * - Added new feature, which permits blocking remote + * script redirects and firing back a local redirect + * to the browser. + * The feature is conditionally compiled, i.e. it + * can be disabled with --disable-fast-redirects, + * plus it must be activated by a "fast-redirects" + * line in the config file, has its own log level + * and of course wants to be displayed by show-proxy-args + * Note: Boy, all the #ifdefs in 1001 locations and + * all the fumbling with configure.in and acconfig.h + * were *way* more work than the feature itself :-( + * + * - Because a generic redirect template was needed for + * this, tinygif = 3 now uses the same. + * + * - Moved GIFs, and other static HTTP response templates + * to project.h + * + * - Many minor fixes + * + * - Removed some >400 CRs again (Jon, you really worked + * a lot! ;-) + * + * Revision 1.1.1.1 2001/05/15 13:58:45 oes + * Initial import of version 2.9.3 source tree + * + * + *********************************************************************/ + + +/* + * Version number - Major (X._._) + */ +#define VERSION_MAJOR 2 + +/* + * Version number - Minor (_.X._) + */ +#define VERSION_MINOR 9 + +/* + * Version number - Point (_._.X) + */ +#define VERSION_POINT 15 + +/* + * Version number, as a string + */ +#define VERSION "2.9.15" + +/* + * Status of the code: alpha, beta or stable + */ +#define CODE_STATUS "beta" + +/* + * Regular expression matching for URLs. (Highly recommended). + * If neither of these are defined then you can ony use prefix matching. + * Don't bother to change this here! Use configure instead. + */ +/* #define REGEX_GNU 1 */ +#define REGEX_PCRE 1 + +/* + * Should pcre be statically built in instead of linkling with libpcre? + * (This is determined by configure depending on the availiability of + * libpcre and user preferences). The name is ugly, but pcre needs it. + * Don't bother to change this here! Use configure instead. + */ +#define STATIC_PCRE 1 + +/* + * Should pcrs be statically built in instead of linkling with libpcrs? + * (This is determined by configure depending on the availiability of + * libpcrs and user preferences). + * Don't bother to change this here! Use configure instead. + */ +#define STATIC_PCRS 1 + +/* + * Allows the use of an ACL to control access to the proxy by IP address. + */ +#define FEATURE_ACL 1 + +/* + * Enables the web-based configuration (actionsfile) editor. If you + * have a shared proxy, you might want to turn this off. + */ +#define FEATURE_CGI_EDIT_ACTIONS 1 + +/* + * Allows the use of jar files to capture cookies. + */ +#define FEATURE_COOKIE_JAR 1 + +/* + * Locally redirect remote script-redirect URLs + */ +#define FEATURE_FAST_REDIRECTS 1 + +/* + * Bypass filtering for 1 page only + */ +#define FEATURE_FORCE_LOAD 1 + +/* + * Allow blocking using images as well as HTML. + * If you do not define this then everything is blocked as HTML. + * + * Note that this is required if you want to use FEATURE_IMAGE_DETECT_MSIE. + */ +#define FEATURE_IMAGE_BLOCKING 1 + +/* + * Detect image requests automatically for MSIE. Will fall back to + * other image-detection methods (i.e. "+image" permission) for other + * browsers. + * + * You must also define FEATURE_IMAGE_BLOCKING to use this feature. + * + * It detects the following header pair as an image request: + * + * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) + * Accept: * / * + * + * And the following as a HTML request: + * + * User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0) + * Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, * / * + * + * And no, I haven't got that backwards - IE is being wierd. + * + * Known limitations: + * 1) If you press shift-reload on a blocked HTML page, you get + * the image "blocked" page, not the HTML "blocked" page. + * 2) Once an image "blocked" page has been sent, viewing it + * in it's own browser window *should* bring up the HTML + * "blocked" page, but it doesn't. You need to clear the + * browser cache to get the HTML version again. + * + * These limitations are due to IE making inconsistent choices + * about which "Accept:" header to send. + */ +#define FEATURE_IMAGE_DETECT_MSIE 1 + +/* + * Kills JavaScript popups - window.open, onunload, etc. + */ +#define FEATURE_KILL_POPUPS 1 + +/* + * Use POSIX threads instead of native threads. + */ +/* #define FEATURE_PTHREAD 1 */ + +/* + * Enables statistics function. + */ +#define FEATURE_STATISTICS 1 + +/* + * Allow JunkBuster to be "disabled" so it is just a normal non-blocking + * non-anonymizing proxy. This is useful if you're trying to access a + * blocked or broken site - just change the setting in the config file, + * or use the handy "Disable" menu option in the Windows GUI. + */ +#define FEATURE_TOGGLE 1 + +/* + * Allows the use of trust files. + */ +#define FEATURE_TRUST 1 + + +/**************************************************************************** + * The following values are correct for MS VC++97. + * You should normally not change them. + ***************************************************************************/ + + +/* + * Defined on Solaris only. Makes the system libraries thread safe. + */ +/* #define _REENTRANT 1 */ + +/* + * Defined on Solaris only. Without this, many important functions are not + * defined in the system headers. + */ +/* #define __EXTENSIONS__ 1 */ + +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with MultiThreading?) + */ +#define __MT__ 1 + + +/* Define if you have the `bcopy' function. */ +/* #define HAVE_BCOPY 1 */ + +/* Define if you have the header file. */ +/* #define HAVE_INTTYPES_H 1 */ + +/* Define if you have the `memmove' function. */ +#define HAVE_MEMMOVE 1 + +/* Define if you have the header file. */ +#define HAVE_MEMORY_H 1 + +/* Define if you have the header file. */ +/* #define HAVE_STDINT_H 1 */ + +/* Define if you have the header file. */ +#define HAVE_STDLIB_H 1 + +/* Define if you have the `strerror' function. */ +#define HAVE_STRERROR 1 + +/* Define if you have the header file. */ +/* #define HAVE_STRINGS_H 1 */ + +/* Define if you have the header file. */ +#define HAVE_STRING_H 1 + +/* Define if you have the header file. */ +#define HAVE_SYS_STAT_H 1 + +/* Define if you have the header file. */ +#define HAVE_SYS_TYPES_H 1 + +/* Define if you have the header file. */ +/* #define HAVE_UNISTD_H 1 */ + +/* The size of a `char *', as computed by sizeof. */ +#define SIZEOF_CHAR_P 4 + +/* The size of a `int', as computed by sizeof. */ +#define SIZEOF_INT 4 + +/* The size of a `long', as computed by sizeof. */ +#define SIZEOF_LONG 4 + +/* The size of a `long long', as computed by sizeof. */ +/* #define SIZEOF_LONG_LONG ---not supported--- */ + +/* The size of a `size_t', as computed by sizeof. */ +#define SIZEOF_SIZE_T 4 + +/* Define if you have the ANSI C header files. */ +#define STDC_HEADERS 1 + +/* Define to empty if `const' does not conform to ANSI C. */ +/* #define const */ + +/* Define to `unsigned' if does not define. */ +/* #define size_t unsigned */ + +/* + * Defined always. + * FIXME: Don't know what it does or why we need it. + * (presumably something to do with ANSI Standard C?) + */ +/* Don't define for MS VC++ or you don't get strdup() declared. +#ifndef __STDC__ +#define __STDC__ 1 +#endif +*/ + +/* + * Need to set up this define only for the Pthreads library for + * Win32, available from http://sources.redhat.com/pthreads-win32/ + */ +#if defined(FEATURE_PTHREAD) && defined(_WIN32) +#define __CLEANUP_C +#endif /* defined(FEATURE_PTHREAD) && defined(_WIN32) */ + +/* + * BEOS does not currently support POSIX threads. + * This *should* be detected by ./configure, but let's be sure. + */ +#if defined(FEATURE_PTHREAD) && defined(__BEOS__) +#error BEOS does not support pthread - please run ./configure again with "--disable-pthread" + +#endif /* defined(FEATURE_PTHREAD) && defined(__BEOS__) */ + + +#if (!defined(_MSC_VER)) && (!defined(RC_INVOKED)) +#error This file is only intended for MS VC++ on Win32. For other compilers, please run configure. +#endif /* (!defined(_MSC_VER)) && (!defined(RC_INVOKED)) */ + +#pragma warning ( disable: 4100 4115 4201 4214 4244 4514 ) + +/* + * C4100 : unreferenced formal parameter + * Very common, not a bug + * + * C4115 : named type definition in parentheses + * #include causes a warning about one of these. + * + * C4201 : nonstandard extension used : nameless struct/union + * Endemic in + * + * C4214 nonstandard extension used : bit field types other than int + * Endemic in + * + * C4244 conversion from 'int' to 'char', possible loss of data + * Should really fix this one. Throughout the JB code. + * + * C4514 unreferenced inline/local function has been removed + * Caused by #include + */ + + +#endif /* CONFIG_H_INCLUDED */ + diff --git a/vc_console.dsp b/vc_console.dsp new file mode 100644 index 00000000..23d2f2a3 --- /dev/null +++ b/vc_console.dsp @@ -0,0 +1,413 @@ +# Microsoft Developer Studio Project File - Name="vc_console" - Package Owner=<4> +# Microsoft Developer Studio Generated Build File, Format Version 5.00 +# ** DO NOT EDIT ** + +# TARGTYPE "Win32 (x86) Console Application" 0x0103 + +CFG=vc_console - Win32 Debug with Win32 threads +!MESSAGE This is not a valid makefile. To build this project using NMAKE, +!MESSAGE use the Export Makefile command and run +!MESSAGE +!MESSAGE NMAKE /f "vc_console.mak". +!MESSAGE +!MESSAGE You can specify a configuration when running NMAKE +!MESSAGE by defining the macro CFG on the command line. For example: +!MESSAGE +!MESSAGE NMAKE /f "vc_console.mak"\ + CFG="vc_console - Win32 Debug with Win32 threads" +!MESSAGE +!MESSAGE Possible choices for configuration are: +!MESSAGE +!MESSAGE "vc_console - Win32 Release" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_console - Win32 Debug" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_console - Win32 Debug with Win32 threads" (based on\ + "Win32 (x86) Console Application") +!MESSAGE "vc_console - Win32 Release with Win32 threads" (based on\ + "Win32 (x86) Console Application") +!MESSAGE + +# Begin Project +# PROP Scc_ProjName "" +# PROP Scc_LocalPath "" +CPP=cl.exe +RSC=rc.exe + +!IF "$(CFG)" == "vc_console - Win32 Release" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 0 +# PROP BASE Output_Dir "Release" +# PROP BASE Intermediate_Dir "Release" +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 0 +# PROP Output_Dir "console_release" +# PROP Intermediate_Dir "console_release" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /GX /O2 /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /MT /W3 /GX /O2 /I "pcre" /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "NDEBUG" +# ADD RSC /l 0x809 /d "NDEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:console /machine:I386 + +!ELSEIF "$(CFG)" == "vc_console - Win32 Debug" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 1 +# PROP BASE Output_Dir "Debug" +# PROP BASE Intermediate_Dir "Debug" +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 1 +# PROP Output_Dir "console_debug" +# PROP Intermediate_Dir "console_debug" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /YX /FD /c +# ADD CPP /nologo /MTd /W3 /Gm /GX /Zi /Od /I "pcre" /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /FR /YX /FD /c +# ADD BASE RSC /l 0x809 /d "_DEBUG" +# ADD RSC /l 0x809 /d "_DEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept + +!ELSEIF "$(CFG)" == "vc_console - Win32 Debug with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 1 +# PROP BASE Output_Dir "console_" +# PROP BASE Intermediate_Dir "console_" +# PROP BASE Ignore_Export_Lib 0 +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 1 +# PROP Output_Dir "console_debug_winthr" +# PROP Intermediate_Dir "console_debug_winthr" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /MTd /W3 /Gm /GX /Zi /Od /I "pcre" /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /FR /YX /FD /c +# ADD CPP /nologo /MTd /W3 /Gm /GX /Zi /Od /I "pcre" /D "WIN32" /D "_DEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /FR /YX /FD /c +# ADD BASE RSC /l 0x809 /d "_DEBUG" +# ADD RSC /l 0x809 /d "_DEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept + +!ELSEIF "$(CFG)" == "vc_console - Win32 Release with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 0 +# PROP BASE Output_Dir "console0" +# PROP BASE Intermediate_Dir "console0" +# PROP BASE Ignore_Export_Lib 0 +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 0 +# PROP Output_Dir "console_release_winthr" +# PROP Intermediate_Dir "console_release_winthr" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /MT /W3 /GX /O2 /I "pcre" /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /YX /FD /c +# ADD CPP /nologo /MT /W3 /GX /O2 /I "pcre" /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_MBCS" /D "_WIN_CONSOLE" /D "STATIC" /YX /FD /c +# ADD BASE RSC /l 0x809 /d "NDEBUG" +# ADD RSC /l 0x809 /d "NDEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:console /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib /nologo /subsystem:console /machine:I386 + +!ENDIF + +# Begin Target + +# Name "vc_console - Win32 Release" +# Name "vc_console - Win32 Debug" +# Name "vc_console - Win32 Debug with Win32 threads" +# Name "vc_console - Win32 Release with Win32 threads" +# Begin Group "JunkBuster" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\actionlist.h +# End Source File +# Begin Source File + +SOURCE=.\actions.c +# End Source File +# Begin Source File + +SOURCE=.\actions.h +# End Source File +# Begin Source File + +SOURCE=.\cgi.c +# End Source File +# Begin Source File + +SOURCE=.\cgi.h +# End Source File +# Begin Source File + +SOURCE=.\cgiedit.c +# End Source File +# Begin Source File + +SOURCE=.\cgiedit.h +# End Source File +# Begin Source File + +SOURCE=.\cgisimple.c +# End Source File +# Begin Source File + +SOURCE=.\cgisimple.h +# End Source File +# Begin Source File + +SOURCE=.\config.h +# End Source File +# Begin Source File + +SOURCE=.\deanimate.c +# End Source File +# Begin Source File + +SOURCE=.\deanimate.h +# End Source File +# Begin Source File + +SOURCE=.\errlog.c +# End Source File +# Begin Source File + +SOURCE=.\errlog.h +# End Source File +# Begin Source File + +SOURCE=.\filters.c +# End Source File +# Begin Source File + +SOURCE=.\filters.h +# End Source File +# Begin Source File + +SOURCE=.\jcc.c +# End Source File +# Begin Source File + +SOURCE=.\jcc.h +# End Source File +# Begin Source File + +SOURCE=.\killpopup.c +# End Source File +# Begin Source File + +SOURCE=.\killpopup.h +# End Source File +# Begin Source File + +SOURCE=.\loadcfg.c +# End Source File +# Begin Source File + +SOURCE=.\loadcfg.h +# End Source File +# Begin Source File + +SOURCE=.\loaders.c +# End Source File +# Begin Source File + +SOURCE=.\loaders.h +# End Source File +# Begin Source File + +SOURCE=.\parsers.c +# End Source File +# Begin Source File + +SOURCE=.\parsers.h +# End Source File +# Begin Source File + +SOURCE=.\project.h +# End Source File +# Begin Source File + +SOURCE=.\urlmatch.c +# End Source File +# Begin Source File + +SOURCE=.\urlmatch.h +# End Source File +# End Group +# Begin Group "Win32" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\cygwin.h +# End Source File +# Begin Source File + +SOURCE=.\win32.c +# End Source File +# Begin Source File + +SOURCE=.\win32.h +# End Source File +# End Group +# Begin Group "PCRE" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\pcre\chartables.c + +!IF "$(CFG)" == "vc_console - Win32 Release" + +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_console - Win32 Debug" + +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_console - Win32 Debug with Win32 threads" + +# PROP BASE Exclude_From_Build 1 +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_console - Win32 Release with Win32 threads" + +# PROP BASE Exclude_From_Build 1 +# PROP Exclude_From_Build 1 + +!ENDIF + +# End Source File +# Begin Source File + +SOURCE=.\pcre\config.h +# End Source File +# Begin Source File + +SOURCE=.\pcre\get.c +# End Source File +# Begin Source File + +SOURCE=.\pcre\internal.h +# End Source File +# Begin Source File + +SOURCE=.\pcre\maketables.c +# End Source File +# Begin Source File + +SOURCE=.\pcre\pcre.c +# End Source File +# Begin Source File + +SOURCE=.\pcre\pcre.h +# End Source File +# Begin Source File + +SOURCE=.\pcre\pcreposix.c +# End Source File +# Begin Source File + +SOURCE=.\pcre\pcreposix.h +# End Source File +# Begin Source File + +SOURCE=.\pcre\study.c +# End Source File +# End Group +# Begin Group "PCRS" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\pcrs.c +# End Source File +# Begin Source File + +SOURCE=.\pcrs.h +# End Source File +# End Group +# Begin Group "Sockets" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\gateway.c +# End Source File +# Begin Source File + +SOURCE=.\gateway.h +# End Source File +# Begin Source File + +SOURCE=.\jbsockets.c +# End Source File +# Begin Source File + +SOURCE=.\jbsockets.h +# End Source File +# End Group +# Begin Group "Utilities" + +# PROP Default_Filter "" +# Begin Source File + +SOURCE=.\encode.c +# End Source File +# Begin Source File + +SOURCE=.\encode.h +# End Source File +# Begin Source File + +SOURCE=.\list.c +# End Source File +# Begin Source File + +SOURCE=.\list.h +# End Source File +# Begin Source File + +SOURCE=.\miscutil.c +# End Source File +# Begin Source File + +SOURCE=.\miscutil.h +# End Source File +# Begin Source File + +SOURCE=.\ssplit.c +# End Source File +# Begin Source File + +SOURCE=.\ssplit.h +# End Source File +# End Group +# End Target +# End Project diff --git a/vc_junkbuster.dsw b/vc_junkbuster.dsw deleted file mode 100644 index a275c02a..00000000 --- a/vc_junkbuster.dsw +++ /dev/null @@ -1,29 +0,0 @@ -Microsoft Developer Studio Workspace File, Format Version 5.00 -# WARNING: DO NOT EDIT OR DELETE THIS WORKSPACE FILE! - -############################################################################### - -Project: "vc_junkbuster"=".\vc_junkbuster.dsp" - Package Owner=<4> - -Package=<5> -{{{ -}}} - -Package=<4> -{{{ -}}} - -############################################################################### - -Global: - -Package=<5> -{{{ -}}} - -Package=<3> -{{{ -}}} - -############################################################################### - diff --git a/vc_junkbuster.dsp b/vc_privoxy.dsp similarity index 57% rename from vc_junkbuster.dsp rename to vc_privoxy.dsp index f9acd6b5..3a61a18f 100644 --- a/vc_junkbuster.dsp +++ b/vc_privoxy.dsp @@ -1,24 +1,29 @@ -# Microsoft Developer Studio Project File - Name="vc_junkbuster" - Package Owner=<4> +# Microsoft Developer Studio Project File - Name="vc_privoxy" - Package Owner=<4> # Microsoft Developer Studio Generated Build File, Format Version 5.00 # ** DO NOT EDIT ** # TARGTYPE "Win32 (x86) Application" 0x0101 -CFG=vc_junkbuster - Win32 Release +CFG=vc_privoxy - Win32 Debug with Win32 threads !MESSAGE This is not a valid makefile. To build this project using NMAKE, !MESSAGE use the Export Makefile command and run !MESSAGE -!MESSAGE NMAKE /f "vc_junkbuster.mak". +!MESSAGE NMAKE /f "vc_privoxy.mak". !MESSAGE !MESSAGE You can specify a configuration when running NMAKE !MESSAGE by defining the macro CFG on the command line. For example: !MESSAGE -!MESSAGE NMAKE /f "vc_junkbuster.mak" CFG="vc_junkbuster - Win32 Release" +!MESSAGE NMAKE /f "vc_privoxy.mak"\ + CFG="vc_privoxy - Win32 Debug with Win32 threads" !MESSAGE !MESSAGE Possible choices for configuration are: !MESSAGE -!MESSAGE "vc_junkbuster - Win32 Release" (based on "Win32 (x86) Application") -!MESSAGE "vc_junkbuster - Win32 Debug" (based on "Win32 (x86) Application") +!MESSAGE "vc_privoxy - Win32 Release" (based on "Win32 (x86) Application") +!MESSAGE "vc_privoxy - Win32 Debug" (based on "Win32 (x86) Application") +!MESSAGE "vc_privoxy - Win32 Release with Win32 threads" (based on\ + "Win32 (x86) Application") +!MESSAGE "vc_privoxy - Win32 Debug with Win32 threads" (based on\ + "Win32 (x86) Application") !MESSAGE # Begin Project @@ -28,7 +33,7 @@ CPP=cl.exe MTL=midl.exe RSC=rc.exe -!IF "$(CFG)" == "vc_junkbuster - Win32 Release" +!IF "$(CFG)" == "vc_privoxy - Win32 Release" # PROP BASE Use_MFC 0 # PROP BASE Use_Debug_Libraries 0 @@ -52,9 +57,9 @@ BSC32=bscmake.exe # ADD BSC32 /nologo LINK32=link.exe # ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:windows /machine:I386 -# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib /nologo /subsystem:windows /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:windows /machine:I386 -!ELSEIF "$(CFG)" == "vc_junkbuster - Win32 Debug" +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Debug" # PROP BASE Use_MFC 0 # PROP BASE Use_Debug_Libraries 1 @@ -68,7 +73,7 @@ LINK32=link.exe # PROP Ignore_Export_Lib 0 # PROP Target_Dir "" # ADD BASE CPP /nologo /W3 /Gm /GX /Zi /Od /D "WIN32" /D "_DEBUG" /D "_WINDOWS" /YX /FD /c -# ADD CPP /nologo /MTd /W3 /Gm /GX /Zi /O2 /I "pcre" /D "WIN32" /D "_DEBUG" /D "_WINDOWS" /D "STATIC" /YX /FD /c +# ADD CPP /nologo /MTd /W3 /Gm /GX /Zi /Od /I "pcre" /D "WIN32" /D "_DEBUG" /D "_WINDOWS" /D "STATIC" /FR /YX /FD /c # ADD BASE MTL /nologo /D "_DEBUG" /mktyplib203 /o NUL /win32 # ADD MTL /nologo /D "_DEBUG" /mktyplib203 /o NUL /win32 # ADD BASE RSC /l 0x809 /d "_DEBUG" @@ -78,24 +83,108 @@ BSC32=bscmake.exe # ADD BSC32 /nologo LINK32=link.exe # ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:windows /debug /machine:I386 /pdbtype:sept +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:windows /debug /machine:I386 /pdbtype:sept + +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Release with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 0 +# PROP BASE Output_Dir "vc_junkb" +# PROP BASE Intermediate_Dir "vc_junkb" +# PROP BASE Ignore_Export_Lib 0 +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 0 +# PROP Output_Dir "vc_release_winthr" +# PROP Intermediate_Dir "vc_release_winthr" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /MT /W3 /GX /O2 /Ob2 /I "pcre" /D "WIN32" /D "NDEBUG" /D "_WINDOWS" /D "STATIC" /FR /YX /FD /c +# ADD CPP /nologo /MT /W3 /GX /O2 /Ob2 /I "pcre" /D "WIN32" /D "NDEBUG" /D "_WINDOWS" /D "STATIC" /FR /YX /FD /c +# ADD BASE MTL /nologo /D "NDEBUG" /mktyplib203 /o NUL /win32 +# ADD MTL /nologo /D "NDEBUG" /mktyplib203 /o NUL /win32 +# ADD BASE RSC /l 0x809 /d "NDEBUG" +# ADD RSC /l 0x809 /d "NDEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:windows /machine:I386 +# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib /nologo /subsystem:windows /machine:I386 + +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Debug with Win32 threads" + +# PROP BASE Use_MFC 0 +# PROP BASE Use_Debug_Libraries 1 +# PROP BASE Output_Dir "vc_junk0" +# PROP BASE Intermediate_Dir "vc_junk0" +# PROP BASE Ignore_Export_Lib 0 +# PROP BASE Target_Dir "" +# PROP Use_MFC 0 +# PROP Use_Debug_Libraries 1 +# PROP Output_Dir "vc_debug_winthr" +# PROP Intermediate_Dir "vc_debug_winthr" +# PROP Ignore_Export_Lib 0 +# PROP Target_Dir "" +# ADD BASE CPP /nologo /MTd /W3 /Gm /GX /Zi /O2 /I "pcre" /D "WIN32" /D "_DEBUG" /D "_WINDOWS" /D "STATIC" /YX /FD /c +# ADD CPP /nologo /MTd /W4 /Gm /GX /Zi /Od /I "pcre" /D "WIN32" /D "_DEBUG" /D "_WINDOWS" /D "STATIC" /FR /YX /FD /c +# ADD BASE MTL /nologo /D "_DEBUG" /mktyplib203 /o NUL /win32 +# ADD MTL /nologo /D "_DEBUG" /mktyplib203 /o NUL /win32 +# ADD BASE RSC /l 0x809 /d "_DEBUG" +# ADD RSC /l 0x809 /d "_DEBUG" +BSC32=bscmake.exe +# ADD BASE BSC32 /nologo +# ADD BSC32 /nologo +LINK32=link.exe +# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib pthreadVC.lib /nologo /subsystem:windows /debug /machine:I386 /pdbtype:sept # ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib ws2_32.lib comctl32.lib /nologo /subsystem:windows /debug /machine:I386 /pdbtype:sept !ENDIF # Begin Target -# Name "vc_junkbuster - Win32 Release" -# Name "vc_junkbuster - Win32 Debug" +# Name "vc_privoxy - Win32 Release" +# Name "vc_privoxy - Win32 Debug" +# Name "vc_privoxy - Win32 Release with Win32 threads" +# Name "vc_privoxy - Win32 Debug with Win32 threads" # Begin Group "JunkBuster" # PROP Default_Filter "" # Begin Source File -SOURCE=.\amiga.c +SOURCE=.\actionlist.h +# End Source File +# Begin Source File + +SOURCE=.\actions.c +# End Source File +# Begin Source File + +SOURCE=.\actions.h +# End Source File +# Begin Source File + +SOURCE=.\cgi.c +# End Source File +# Begin Source File + +SOURCE=.\cgi.h +# End Source File +# Begin Source File + +SOURCE=.\cgiedit.c +# End Source File +# Begin Source File + +SOURCE=.\cgiedit.h # End Source File # Begin Source File -SOURCE=.\amiga.h +SOURCE=.\cgisimple.c +# End Source File +# Begin Source File + +SOURCE=.\cgisimple.h # End Source File # Begin Source File @@ -103,6 +192,14 @@ SOURCE=.\config.h # End Source File # Begin Source File +SOURCE=.\deanimate.c +# End Source File +# Begin Source File + +SOURCE=.\deanimate.h +# End Source File +# Begin Source File + SOURCE=.\errlog.c # End Source File # Begin Source File @@ -163,11 +260,11 @@ SOURCE=.\project.h # End Source File # Begin Source File -SOURCE=.\showargs.c +SOURCE=.\urlmatch.c # End Source File # Begin Source File -SOURCE=.\showargs.h +SOURCE=.\urlmatch.h # End Source File # End Group # Begin Group "Win32" @@ -191,14 +288,6 @@ SOURCE=.\w32res.h # End Source File # Begin Source File -SOURCE=.\w32rulesdlg.c -# End Source File -# Begin Source File - -SOURCE=.\w32rulesdlg.h -# End Source File -# Begin Source File - SOURCE=.\w32taskbar.c # End Source File # Begin Source File @@ -219,10 +308,6 @@ SOURCE=.\win32.h # PROP Default_Filter "rc,ico,bmp" # Begin Source File -SOURCE=.\icons\denyrule.ico -# End Source File -# Begin Source File - SOURCE=.\icons\ico00001.ico # End Source File # Begin Source File @@ -255,15 +340,11 @@ SOURCE=.\icons\ico00008.ico # End Source File # Begin Source File -SOURCE=.\icons\icon1.ico -# End Source File -# Begin Source File - SOURCE=.\icons\idle.ico # End Source File # Begin Source File -SOURCE=.\icons\junkbust.ico +SOURCE=.\icons\privoxy.ico # End Source File # Begin Source File @@ -277,10 +358,22 @@ SOURCE=.\w32.rc SOURCE=.\pcre\chartables.c -!IF "$(CFG)" == "vc_junkbuster - Win32 Release" +!IF "$(CFG)" == "vc_privoxy - Win32 Release" + +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Debug" -!ELSEIF "$(CFG)" == "vc_junkbuster - Win32 Debug" +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Release with Win32 threads" + +# PROP BASE Exclude_From_Build 1 +# PROP Exclude_From_Build 1 + +!ELSEIF "$(CFG)" == "vc_privoxy - Win32 Debug with Win32 threads" +# PROP BASE Exclude_From_Build 1 # PROP Exclude_From_Build 1 !ENDIF @@ -368,6 +461,14 @@ SOURCE=.\encode.h # End Source File # Begin Source File +SOURCE=.\list.c +# End Source File +# Begin Source File + +SOURCE=.\list.h +# End Source File +# Begin Source File + SOURCE=.\miscutil.c # End Source File # Begin Source File diff --git a/vc_privoxy.dsw b/vc_privoxy.dsw new file mode 100644 index 00000000..3bee9279 --- /dev/null +++ b/vc_privoxy.dsw @@ -0,0 +1,59 @@ +Microsoft Developer Studio Workspace File, Format Version 5.00 +# WARNING: DO NOT EDIT OR DELETE THIS WORKSPACE FILE! + +############################################################################### + +Project: "vc_console"=".\vc_console.dsp" - Package Owner=<4> + +Package=<5> +{{{ +}}} + +Package=<4> +{{{ + Begin Project Dependency + Project_Dep_Name vc_dftables + End Project Dependency +}}} + +############################################################################### + +Project: "vc_dftables"=".\pcre\vc_dftables.dsp" - Package Owner=<4> + +Package=<5> +{{{ +}}} + +Package=<4> +{{{ +}}} + +############################################################################### + +Project: "vc_privoxy"=".\vc_privoxy.dsp" - Package Owner=<4> + +Package=<5> +{{{ +}}} + +Package=<4> +{{{ + Begin Project Dependency + Project_Dep_Name vc_dftables + End Project Dependency +}}} + +############################################################################### + +Global: + +Package=<5> +{{{ +}}} + +Package=<3> +{{{ +}}} + +############################################################################### + diff --git a/w32.aps b/w32.aps deleted file mode 100644 index 85caaa5c571734407b6ccc4b68904d88032d2b26..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 43740 zcmeHw37DK!mG((UfFK&&cWomgL6+L9ni+*!zUr>z>#C-f?gXP{(&>aCB$x$IQG?64 zpu)^Jqd2YzD8XH4aYu2+4aIHTcieTxeFhcn|9#K7_gku3{PRD`Jo7w%L8t1z@45TE z=bpQLpNPl={+5>P4?k0%B3#GgZ(8Q1hVP}N6^>tXwEH2)Un|l$eap-fCmMSe4xGQZ zd;h*I8}{tpGP`%r&MoKe+%epB?zUlWI62G=FI?DiQ9gI--Ua$S5kXDhdui#2DBR3( zakwXfI}U%8Ss|dE!h|TwLB9%_NJR| zz?a;FkNe_}o0o1{TDnP&UAp-;{C~qu_I=aX_f5*fFTR%;hPjWm?;FIv5xnwoJTBf_ zA1w0IwMgp`_IJ=1F_Sd%A?M}jhkow?nF;(YE!_owA66g9a%AbPkmHU!4*#ywQeQDr z_AAHy+;L^Ua@{&6Ue@8`zW9Sqe6Q56brbfr{J&Q@_>lhwuoAxy9YV`_KqR)?(JqYTZNE@Kq2Z|X`X|5<5{ z2@5CgM}OY3|JYbLj_VxLJQI*KeZP9l&mCFz?E5SerxMs~wTKQKx=PEQx`Rb|=qf8v zU*OJZ;K;u#&3y-#JqN5m*6vr2wEH8+{M>P6e+;!UK5WDK#iA8CN!v8FGTkWqlYEi; z?~|-}m;ZOA!FO=kf1DZlBRc2Ek+MH(%+DQH_9&$ZM$f{+*H!$+4=Z6g#v1#CS1w*{>P%^S`C+QP5uZxPD-|$?GbwyP(p@BcJ?cc8^hA z_ouaUJ~>v7<7K~Qr0kCw^YcGm_9#M>lB_&*(pC6>Vx4_sz*Tqrz0SG$t)*}7m4-v- zs2lxAdE}Gbg4td9XK433#>#QL?2nP}V~#cf$)%-L_*-1YkH{4=D|_SuIeYKK)QFL_zude*7oEaU>9l3 z%hk{X)<|~2&vum(`72EACg9iF0Ye!budFtk@MY;Zm}&>c1_+O>f@#PcV7Xo(PlSu@ zU=GY8QpC?|kb}C0!`fkq@6nViDM!oI;0>FQ8Ti_V|9r^{_-odtQI_vC!rzHppXa{W z=5}kSN6WQqS*PdYk1dw1>Htb>2SR4-J>XBmZ;|K7YY{VB2Yp|t@=t_B6(Q08R>fJ? z%eU?SxB9YNBX+a|UswOXUo77*uF#rh+c#bGy0y!d80)x+T02XN_PRePGlLr4jkd5A z;qh~5?Ub}-plxIdEn>H}5V8~K;|H`4?n3J@9YGDUTlI)~)_<=519A1xa@cy<%hP@Q zpuBo*6(R2dm(-`rw*U?o6Zo@!x=Z6sui=d9YxYFbl-3v7e|#8g5Y9PcVO)m3nK>}J z=6R-}v+2Yw(-gnk%m`8GKU&04aQ~1cJ|+E6oeOD9V2T z&>KXYAM;6R|5?Ja>-T;ua^o-T@0Rb0d=q~^gK2r|@|yvd73;xidnh?9-i%b2@2! z4$7rY=DzY3r0(PuOG}p;B}c4yh~rL_jq)%#1>Cb72fI+Yv*kp|$z9|$a0j6SPQd86 zs9I}L9^z!alW~EQZMx+C_*NPsjfPIl&3cVv`8Xx)@e$;*VqG z?V6U1rey}&@j|49dVL@lI7y^iWvfm$J0{zJzl%`z{$uhNJNcZ-pCAo{%#x<K}&_Jy|AV#a39GaI0Dmvp3$;*Qxv393g@3-cv{Xhx= z<%1+JRw<%T=92EBf#8^|QLE*;$nn$5 zt$|lJ(QyLyHj(Wi%BO*-Gx7+qNW`!+8?+smm6ILVs&_n?lT#en9E4%7-VK5_a)*gj zhQI#9CRkDEG z%iP9cSR3^Foi=MWE00vD8$&sHltT4tyB>rT%F7vw%)~+kIa8rpwZ4%e6>jw+=zg_E z=OkJ%o%JxNY745fn*itr{Xth_ZlLoK=}otqefUAaqL?nr1RXbTIizW(TN%PE081)vL2ARAVOx(wnW;3FI=gNEuAG)nV## zS*Upe?O+p=lFLy6FpPGC&OBy@bWV3>)PDi`g6=TTl;?_=Rna||rF02%I=Z^8sc8+Z zEYObt&{&xBTtzmkyBCB(T_q;vY( zn3=6MGJr}M%)(+QODHQCpd+aqp&V8OVkl22Pjwtg6$lkDpNpX)p(2NhNUB7r1icqS zWkO{RK#^31P(_}QfF=n|LS0g71|7LI8*V06h3X_$ZLoGrHH@DzpH>I#jNL zgId1}l|!t7VTV{FsJE!&00o>$6Kc(=BD}cNl#3N*vnnz@+ga#;?Vi`gw#kBODGFd^X!^36q$Vcm=46^G8F{XAGEtSRJkL3q zs!C2SGbef;oOyY^b23$xg1o>vnW{=rUg(@mRiz}CJ10|BDPtLo@uD?`9aTM(8TlK9 zpies?Yh^Mkf2&C7bxSoPFIA))AzAqclZn+$H774KsRWjnmz$i^LDho1!h}3flvgS+ z+wIhYUTI2sSyOBCj=|8+4kKn3UHkFdJ4G zWV0&Qsath9+%-9*?slhLRmIe-%k}1?%93q1-L$ z2TBHpg`<$1l;~$wrV-4|bf6v+38~2!l=AHX!;0mqE?-oliQzu!p+Q3#!S`D;sel6c zvf^fzFd7S|iOCJ+(M;-tZco)WnrcSAs_;w)rh<=LePFcznuRpo3L9xECtp_z6*dTZ zo7-4{LFvE%_=du09k3;7n6{f8qYCmZrL-Z?)-$*ywcNgV+BzdtUFCgJ}dv>C1IPG4uot@{?p4Q z;k^7rVeJ>l(^OP&`Lg^}sd@+IMj}u7N%>h!U=9Eqm!($7$}c=V)9&}-S)ew+PnR$HN*cuID? z{LX;hpof0j=myAI4^s#E{RrM0Kvm~>ppaqJyRCk!UJWt*AfD&m5bCYoncdu|_N$hd zs;o3r4e|{g7|?2cAoDe>D9}SP3%*indIU^Dw(HP-<8 zhP^o_#}OE6qd-yIRb86w?qq!yo53IV24k)F!Z3!u!3L|O*l9nVPG0P#DOWT1siFd;z%;}iC2vY2oQ1_xQyd}9RLxMy!qTZLsD?@c&q+gZ4)s>7n9v6bO-I%|45flJ6`V_gMVV3% z=1QauvY4Dqr_kBXtSjwoSz1a_bwpEdgx-`55gt_o?1zntV(BI5wi;$rW??&o3S-b# zn`@>wRqJfhCV|1Oo#KLq8FtxxUOFizZ1wt)w}Q;3$eK##FG`nA{SQFoTaQoa4uVvOO!)BM)Dsv$S{}^XygVa8 zL~4p_p%!96o*47rcWiGItpOAbqi zf9*lkPQ7Y#oE&Bhf8%l5B-L)$&-8MbHTyP0EWr0|P#4PB7qKqPVt9 zS|U+@hZ%pRQD~WICMPddrqS)pHj!YRj_07+{=vu54VoyA={TN(yi7T)V6uMm&?Z+K z0Q1(6tX!kWEZU-`Iu8|ctqJ+1<2+QyYZV$`z1{p3$62{~sE_N7#Vl)ts>th=Qfq94o0K;w=Z2>dwkmH_mc=!DCimui;x4Y(X{TElRmTawOD1-m0wH(d}S+=#oSQOE~gT1vsZ+nz`-uc_O{DZLL2mUvW-b+|S8Zox2YWo|mu1F5Md_ z$k$`UycFdd4ytvq2{VIjns256^;ni~r9ksrky}nB(;3F=oh*6yVYloLTwt z3Ymtz(#0ysiKpb&%g^Y>0(KjFAKXQYmL#Mam%JN&4Y_;9CQblf4 zpt{Kclkz(PS|Vtgzo)}W0*!HrE*3i)AvPoRw@Kz@g>yUMf~+Lq3LL}Z5wX*}lw?&5 zIbUU2ZCDp7M$mkZq!TNN1MDIphf%tZBCdNCZxscHqOq3fva!aa+6;Y~EXHHV zb!r>9DTI;tSUPPn5rfp7>C)*pMy9*0l-^9ggK58RwxX%B@!rFsHMcSjEGzePV71oi zVsT`8;MPr`XYaLAW~#$zaKpqk1)!T^Js3^kK?)~!CNXCnft+kXCRPeZs9_HqBpB7@ zVa{D^aqIE~BnBmdT|nJ!g<|0;4~6{3Z3AMbcr4lz&dI4UrW?L_IW0zX7rG!BLtLq( zV=5ZQ#K9IGiLzv5VprA#qWH@uz)IHGJ*|#POlm?rsgB8&GCzkUkFYh>W@}|#p)Efu z0c#T^j%q$5fxGrfrjU^{6O6SN5>RecBc|guZcbrqhR($(t@*m44m^=5bN(hSnV`$b zub062N5Zk1Rks0@3bBc*Pi-Nym9-U2Y$78w(oxXwxS%y+rlU~8Dnt(CECmyr%PgQS z;_nTy(a;UCWbD>$*vvDTP|i`(&+RG(1K*{1o$IRmSylG$0?oJWUC9O$G)gk&%OOaJE{U4%A_ns#M$} z9eiS{nX()8hMbgP_%w$rOLN4rn%k!jiE==k<@IuzMyc&Q5u3VA+S-HtcJZv2%hi`Q zy@W4yub018GT1aki@_#JHB8hc>p2_B-+PgEXLSBc3AC?JUhHL1tuq~4jWV(l%1b<1 zt=EIuel%TBfh?NRm0loenrK^tNDcxo^#Yu%x$bPi7r?&EvwduoxGZ|#74R?jym3Lp z?TR4;G@wvk;dwK9k~}&{D6fooo9{-e-UtAFE0kAxfmjh+4+`ZfPeoeY(jCfcJk#xC zy}#P<%hcB9L%G`XVZWQ^8A2%6L_Ch2q?UXvSrEC_i)gw=Wh|K2dKssMonffu=epN* zUW8jvSP_WIPt`{#hdd9>oGgCTJE2_f>1F#0nqFKj)^Y*GHL+ga=>5A%ii?6BZF$de zGl;@-&2qiGX{FSAeppk*iQ(#B6ikemr~`S2f>=qY&-GKel6NX&%SLV+x+3pV5J!3% zZj&%0?^dV|)2`=0jN9)~&`Q~%7_{H3XuD(4F+U9T$)y_97nw*c|Gf zcvfy!2a+*UorPieNp;R()q!1nwgtO2FP~Ddw;5Xl1^Ki(8m%VIsC`C%!v<|)&huGy z;9!D=T$X=#f;F7T`<(vv)7DA(yty&S;g%R|gD)u1Wk{F^d{JHVC?8G*zN9XhvNOg0HC)rZc9?f_3Dts~e-VU`qQ9b)d3?uG=!wGD1b( zqD-SVt8uXxVPWjs9&|;ea8ADCVV?{wG9~l!T~8*Hsazo6Qx2!Yc-+py5uEvGVx|D#z*MupRf5); zJCOif_3Ld)L`TpV3@wjPey2n?T5vKCAbzhzZF6GVKz-4Z9KnRuHYc|=NUA1Yp=9#t zmij{v3FQdo>_mv#Z&8q|m6_^RHzy5C41Gr`k+k{DPcD?Blp3__(?NY>(i>u0qudyS zq3{^<)x)YPyjgQ_D#Vq^om2v+Y~t~NafWhdB@!)2lY+7LE=pKqj83((hx}6a(8N(x506afL*+l!) zhWk*Wee9QMnWJ&JUnd&wikywkG~If`Q>6zs!yPnRZTdc)D)kPjtqOw=6`Vg;jo zlSi2TXVDnfC_uPhCBuDp1mS;{jfuM!xY$wgY#d_L7AKAK?F|0>&(n{PUVTV&A7$A@ zTabn#ZmGKoMJ0hD?l`*2VFunb)S2OmV#Rz)QLgJpgJ}~DRHhZ5?FMrR9LFnKiu-ZA znZc6f28H6;STlp;p&J#9Ct^)BPze>ZJ$pO(+{|ECV@6?E47#|6Y|&(BD;VzxG`R=c zQ83<}Xl9YISq1x8Z07bOGnPfh&QcVnBF>`I#!ws?>na`{+G%Eysh(oKh#3H~HBfK{ z%PMGp{=7^xi@eP#Lo*Y_=4|L@7Wtc3B5uQ4LrvMFFz0TpJ3lj$$0)4pYlMBpJoX6b z)OfCur|t5&aR6D9L%TUxSKrzL#^0ViYXMZbMyWOg1lj40X9N zG$$9h5G*@}X5|Tny8IZLk-dh_#N~mbRr?IY@LTIJq1Y$hZ;*?>rD$0W80z9Tv?LcA z>Wb6QqFiLCi{H?KTx@73Y{Yek!`x3YSbHoIfD_+Ojs+7niqqkj#6+T2agzKgF_EZQ zoH~DMOeAU-C)A&2L`@fJnME9AKWLaKVnP|YGy!3zj?FLNMVzko-rMy~7q+3{6?ul? z%%fW`rhHkR8RNe36if1~81-G2;ziyD@6@|~l{cR&!oGcuVXazFok1#!*c^VYLGx7{ zHy~1w=NWWqFZdZMMe}y4c^D z8|J2-bD^~a0$S3@R}iS)nG5It7NFeq1$HyIji!bHvmPNFDpb|GV1wcF}#RPmC$#n5zi z-sV7;9VRFl-uqn?x~W7`6ZHW@leyBI`1o!luO}rx%3tm-QBFQam+nPis(2F}xDlks z`#w$w7Rh-Ft0 zj~ineFqrpWRxq(>1H1k!is}6jtmHcT7FPCG6(3-B)5TuA!(q{XP4SQiLnE9P_SY51 zMs{x=c9=#<%laD%R|ox0Jo3|a4dt5=6A%A3vHF%W?G85(VAL`!ombtWI3~>)BC#;8 z`>Hw%`nD3VG#j0^-f^M%8_IVSp0DBzhQD^j<$+MXYY_})YPy)rWr0w>4{&CPGXyTm zOf4fnQ4FUCA}lLE^>W-6(0tZ%@-r_OgL(OR5^US@Z>=D|FxX$$z=`~#{8BMifUR0t zxHzPnki~J-z(t7jxk@0lSj6;aerpx^Z<9~MlX9zaI zYBl+d4~MPYj%Q?Qb@{CiCkZ#?HV^lwQKpvmKzEkj z!9J9z9o7qi$8VxmLfnmvFDBHBvO-~WD}N>;Q!mL%1!JTvM<~*q>1)Yq!s-=S<-%;^ z#71WZGke=ns80&+tRgnlH}3Iq#onf>^_m>%3E#kDUv)W3$zW!-znPKO2F<41q^LLK zXeCimx(eYoTH+iAvc?CUY`>X$Q;zWjJCx2@dBsLEfqQ6o^5HJSX60DVj-|JelRNu> zXR2N9q+5`AS?fKe@PZuY<>P8d)yZAGznG`SX%yvd%3$RpRnU!+++7J4A{hu+8p?8y zRZ{B>X9vCM__8IsCqI}AD+vR9IUf4$fy%4p5^b5#C)C`7l%gIQr!m!gu+lmM9gP>d za6;KUmxG-mWT-{VucJ^$$x3C8B*XUD3dlUD3qeFTz)Co>5{h9T2t$aoJiKwu!K{(N~aZ z`kYcDqnlfB$txEh-9tpSp&?T^KuH)P4m^@P5c6vQ4 zk5ZSL!sp}+bw=~}yqu|kTWP?;an;y@B5;5P7dUsCFHqMo(dML=F4NP6T+psDzBdTFOp^SDxhBTmjrQEyO7=fpvd?0rHp?TW%2 z;h>k!jRPGap^_f2BsE%etx6-rO`Y?U>a}!!Vl@H^s_J|t*n@Bw3uD}T7uzb4Kph7O zRA3oB*T7K$-N%YCe zY9r#RrjJc+;Y*CewixHODZi>lpQ3zk(BA0oSNfIdrz(N9;vm$69e$bKbmG&Lovm^q zD@7wvWaOaIti%zT=Ql#R)WUW?6D4Hy(^pBOH-yQhdwI+b%KNzra;2Qx^aN4N&r{HL zsqA_I2e!*hG`f(-;p_Q|rMCE4;xACR-Qkr6TwXx1I(WS>4xt-x$Zk_jXklNjRK9^z z>aJeV_gvwB`<0@Iiq>Xw6*7c1#HW1u!t1~)6}kWr{9te-;3h0}q1 zpoI01>y6js;ws8u#vd{Y<@H8!;)m5@J>aaD0i#lXg9)Gv+1zn0S(}%Z{Tq#PBXJwo zCf%)ivnSqUbQ?_)d$D$qDwH>S)Izcz^Hu{f>S5!y+mI9E`oT6m9jq4Hv3GN0bJ(Gl z_44*rQm0fxaiU7!X(+dC{rxH(K;D(c-5NKVB}S2V8}|q5?>!^zSpB`%1ZX@br|PW0 z_c_0*Ik~E~8;tQyPkY(>4NEr!?PMP?X1UtdesZJn3_GlSj6{?(nk)?s7hr z?>8J6uN1IxeKQ$E+fHa`tNWHC7(u74OI4~TQ4+T}3jID27z~$h$AoU2MB#z^PBNlR z{lq3OGWcCbVwJIuVb+_2pr zDjY}P9#|+pas={%g+(`&#eJ_(ejLS;zO$RzD*x%ICbMtL51DQ96NloSW?Wng^3ym5 z&GgXEmowYtXO8oil{p;CFOuLex=D?lv0tVbeK-xH;(uT_uZB)?k4bwvy$mV{iT zfVJ^k4V-D=`3>!;#J*Vd0E z5<`=A8J0#?LoHOh)VgP5)N!(i_BcpGUr-0)NZ3XfaaQhbc&syWau0(N372~s6wP%D zaxX(t^IW;Nf$aR&6AN-5gOU>lxo_mxJ&mIx_cMsYzfT-$`~HU7Ml;5y=-L#_NO^#f zI+iCE=uq1ai~@_6^RR3Apw%)!eZ)q3RvuyyT7GTNXl#xi1(K6>#;BG{q`e>yO%QQD zD{{QUQN9|MHAftvcQ`jM(d(?-k@^!1j|v&dez-v>gK6Am#Hee+NcxGZrH)f@QSq}O zq351raJ$1@arcZDQcwh^8kMRZFzD2$c~97@vh8(x!3SzB<2gI-meBDOfR@UdK(#@$ zJ+hHV(oV{G@Afz)rxrkRq|L9EaIQB@%n+qy5LQwn`z|YG1N8zzES!^y;R(AyCJjnY zTJmzb3jsYH_uSn2EDo>#g~Rda6rk3dteIBiFCB-3;Nl*vDu0>>t?-dChxPm6yl`KVrMuUk8MhAys2|`&fNxV6Xv=le&*2vh`>?NW);3jy_w#&02OWfNL736&$xJnNGmIaYG?XD}npT4};lY__$pL z8%07R+a0rRr?I=CTAKEY%y^RaRYa-sZ=?63p}@#W>By{{6%p}jIMim>V8yDqt*Vb! zW22LvG3k<|LhT#j560jDCVGmHqdV$*U@Y&3q}vIqdk!3WqK?vRoxYUlZ*zjvnu|zy zJljZ46Rgc;?r7VkpO{5RJ+2Xl3LvMx@pP*(@GwxN0eXMo8_Hj0}xZ6*=E( z*u#%lH;;3Es#8;VvXY;du&TE@FMMKC$KC95cDgpUZN`sPxi+~4BYB<|!xS^BmAyR? zW;?)81465MakW%Ynzl?}#gdhC3>-UJo|9e1u+O+>YH2l}yP6M%z@Ryd4@w3Z*&o4t z#6XLSV<#r%*2{rNB3?gBi97-ihPf~jsy49uF%rlla7pi?NMg`lRwln*E{WTIAg}ajw_0o2BMszL z4y#pr*d2#lZo9nNW6;yxLC^f-hW1q+AA~q7V=z>}YaEO{_$pG!mXw#PJvhx>NnN5X z$Tc3s4SKW*P1aVq)}y%Mt0qZNUhAL+Qr}aoB(L+>0LyR8P+qQc5FRZC#jkRca>#?& zf^&JtGbXQhXtNr0JC-0E(|LV_cJWXhWFEJXJ%q=ex-hrN8$F2INS4M0d6UDYu=;Dc zF3X!eh67=`+*6UaIA}V+CY(M*ZM(eHW4KQk738A4&B3@dfO5p$4Ho4NdAo0bh#JeM`+aFBf#0V=NXJ+2xaO~LmfN?GKy&fH4a$vzu z%KIG19WDoMl^Z-5cINZ|Zg!izKY`)Nt?D074fueEQ3kFKx5|wkoX3!)jU~HXKIp(c z?uRp(i}J4?8FV)~u^sYn4jgRk;vTt+Cnq0r@LVhC^X|E3HMdnhjCla|UdDRsr(--m z2Z$RLpNVm-2S&#*QTsXhY|P;So9MSVt25xS7drGAS6TVom`tl%J&Ua;C!ZhVf~n23 zIz!0I7skl2Rokqg7UYX#WHm%%w@8cfr7?P@gB|9&K4hRIUmm0TxL1HWX0poil`)#l zf?P$uI>v1daB7p}q}_^w+A3ckBR61C*}~l>-xy=V0QwQj5T`h4j6 zKN{DMV%F*4p*?gjD?eU_Qk9sK{}`w6NMcLpe~xpQ>60tSPsX{nZow4gr{h%6vYeIV zXX9kAGw4qbIcnBjgZ%lp&<30eb9_a9G0x*iO{<2Zgsx@&a$Ew1GxxNI@W?LjZ3s(9ALp6N93$u6-ADWv@9QA z?SjwBiZMKyxRo&*jfQCFM~uS54V~$#o<_>as+f!hz+tVk(Vk-r->a7sXm5tF?dIj= z$XJ5&?Py>`Cpv05YFO)5&&Hh*E3>Q|9SgZpafpH2iXta##@RZwB6iHwhRDk?34wS} z%*vg{a9qsTghsDzIw!|2!{Z5g_7L*C+F5?n)+<2|x7KQb^qO2Vk zK@!pT*hWio+&JCn@O(QGi37s37-%h*Wx4CP=p5D+&mO>@Vqg`y+qeXuL^k7w(n-1d zxB$*D^7-jlcfH3ri8D~xe#7oRCAP^u$0hI#a-1yG<(LJz*Er7`x~hV=%e}|hK^IL$ zpJ1F>l>3bHSSzY}fgN(+ae*34GuU@X9!8t{jq^bWgCd-BNrbI<|8W@%C5-`|pUXh- z+JSKaR)(g75_ko{xWp_T;)`c)pw?+0;PCB(5;BoRhOYGBF&q=iHtk{fLvNV?j}DYH zlH>%3d82o@X+ujjoSZny_~&IJ4YJ;me&EGpHu$t|ypmvqnC;ee*;h^;A(Ek;GQziU69B$fXxUr{QQZi{c8B*3!rf`R|DE50R&Eq z4$Z!#PKynV9PfGnYmp%h6?Ix%NW!E#Eo7wNbah%eV5ajI>a=peiTA%$rw?lw+e)%>)I-TEbc=4a?TG-?KF7Q1Oa5}%+`Hl!U zo!>>i9|BJ2cZZxOvTy%_`Ni5d-sJ$N`Nb~VUUiyZ?5XWjr}@Q}+J1FfQDQgkfI6)t zv6XhAI<1;<-30G!K*(0jxTkfoI<1;<(FAX7U^1+laog)j=631Y%C|OiL#2CMvbzRrPem%c^5&w*~2z8!p_!+HB$bHiP$zf-5N zxQ+Gq>a@h;!q$t`X=%sBu9v9Ol8y^tSE|!ej*DV1Ri`B!7s~!YotAFgID45oE!lW= z$jjB~svYkQd4;(x*`=*~$pe$=61GiVWp0Lf))S%QoH@@)mWvY~zI?Z#B0|*H(F(xn07x@l_E_woBOpUlT#MOWJn6A%bp~ zwne@lf^L_%9eg{);&xZt*v5K~IxTcOIN`nOw7~Ho(f6s-!p7r6Z&0TNjVENkU!4{* zo)P*1by~LZaL^moY1zh;us^6y%XXzA|Ef-x?aCzI{=j5ewkuot;s?52!nW~k4|Kbf zE$~$jbi1T&=X)OLc4=GWs~zZeiQB;!JM3H7Yr*3x@2Avhq2s}%pH`;@KADrxsMErp z%*$uhX+cjGa=W6mih7p9tPpdB(RKx=UiZE{c9q+2{b~K z`R)UK0}&n#C|zNSo8x|fw*xVYDBOl$~J z6wkN7iyL5jV-rc=#Boo&AO(+yF_*DfxtD@G%S#&_OIj#6*roSYxY=ysaKsc2OXIP- z&~eQmz)kQPPUOOFWi;gb-9g<)0X1kxOtFa#L)M8fH8^2Eg?;M8aoIeM%Ra!#Anw{g z*D&CpLEx5#r*M?Ei+4Lj_tMB?*M1`6t9rnfD%d{QoJX-}+!{8qN@sQ~Ba0GoL&NS;3+=Y+p7e+PQWfvY} zMw?<4m-3khMD!Q;^v%T*7i0HkmkHEuRYE~Wy6 z8`0Z>EE$**DBPWkr4j!l4US$60%48!QHIZL(mAlAygzh?!MquPZ2_#@$ARH6{+Y_= zmQ8KlagFXA8#JHN9{WYI8wnogW}>J3TGS}VAR)kgj)A{jp%TbSGa-QOmUzdQ0w~I< z1n*BNTjk5(?tV7);A<*+)%^fAWj6>B8$a=?z%A{ zgVkVLUN9EN{=x*y$LhqTgGG5vgHU@pyiaBhN)PV|!4rw5JBhl%?F7t?REBjq#L~%V z37?hZ=Wxryy?RGefC9$!DE1G981N)XoC=h1j}lEhbg0+EMYsS@1ok=1>KpYy;XXLj zFAkuX$E?0e4>(0ze2%~2Ien!baNa${@d5YvQEI<}zFQB^igJf8tT26Wk3ka1VPCRu z4=lo^eIMpymBhoZX7rKQ1~YqTUym~mCjv2$*@miSoLzLQalI}U<`QL!HnYtb+*pO~ zw~Y<+h3ecMb9{xzY^?gJc^6|gRgToTJB*v>)e~HibY+Erd2Z?)BS#7hBoCSIG7?(} zou+?1q9zEc2p3+Af}#;o6Idu>P>P&zsfWW>{frf99Zmh!mlWAC{`B?xL#%77E(BHy;7xwJlv1_Nj zZnf8M@bD;4IrT7#P|rKFWTuKeKs;}a8rnlG*mGFKp#pW#EN=>6aH8fjNY>>}ojf(O zj>-nNI&ixgchp4sohcj*!tYHmt?)iN{6aUtnbFO|sk3q7Gs~u^DjA1G>!i_4^u*FI z#CrqaMve6F$bvpJZ)ekHY~gZ_eovUAiyEE0ls-qdJG*PhkXoD2d@ruLU!V zC*3H6IT<>!xuO42s#(sAs`XI2I7O~QigAXc9|3O^*--69&bMhUm>>?d)rXf9pBo1`h*ub z`NE0pso4qCe)hCX@w9AyB9}eASUx>dp4htm{9U_u?c2Y1>;64^CxVMFm^gkNmpNNF zJPM0-sE=pHXqBbq(`uwKn3=F{@Kgluq1uCf`1TptHhjE-zK4YGo;lfM@K6eD+|R>0 z&C|-EH+EK>X4dyuW}*B}HQ3Hg<2V|sfRB&JV(k+K4vq>By8}MWKa15*7&eTBErB4g zGE%7+#-Gl-11o5X3T}WIQA5ojGbjk!E%Y9vS-{$m({K)Oj+ROq#(Sud4HzhCxB$4o z)yp(o1YG1QW*RO5F0rGe;WFSdO_?-|oM1-@=!JK?@2`h}!Ix-UcwQea-s*40Ar|*| z5=fM3T0lbc)5IwcU==DRkKq`_07eSnNv^?qcxsjy=IpRMJVrHzjd#HM4qw2g-G;3V zHKIAL!UDx?395?+_nUYUIfy(h3>EK$c&;dpD#w%?Mk^=0*$s z2qa#DGeSan&hrWsNW2DTgoLhBZ$+-*rcz{=7vV{lXj7C^vf#>Gf=zRHW;Uj#;3^!S zQ=Dp2QUwm1+Vs@+wig3HV?&ySp|7B0cR)d4LDXwVxn)UpCI7+oEY9}O_~zNz@h3y@t=q^)x176k$8guV z+lIN}|<7o;(>xn7tCowarO2x@lL6=~EgtmhlZiME=euV>EEM(7&|B`p0{ zt)((xsj|OyG1s=q-C-B%)0QdJ*rv-IK(y&u!E2Zjg_84ut0Q!|nZPv>J30rrHe$xD z|JRaBSm=MKSa<_y%qst1*#@FX&g+HCBpM=Bb$UtRu*3e)a$#e{P_)=^*dc#9R%WIe z<28!I4(l@-RuQS<2;kR54m+4H!ZRlGHltcv8gp=o;p7#B-RiTv4_r>P_5+m;+o zRl=<;WFm(yD`eH_Rupm;0w3d?=TCiMI5tCBpIAi4uBGmOP7Uy2NxK6{!-i~$3qAH3 zU8h>%iT{gl2F1S@jm-^Ls_*375DT1K{z%LpeN1bP_EF)j(mbbu5Rbs0@tNad{vP1I z4cM&q539E%PyhEp)aKu%VZ{IAur}wdeg-h=9}l8+{_$gkXZ&A5Ud_L=6BFSx{^M4A z{}5cp|E43o|BsFF^#6S2nSTVdjQ`Ib<^A6@#?$}NC{4>h0$RrZEbLuN|HsF8`hTYK zj2{s#Cd-%QH+`)4fAg~bFHxTHBO&;V`v2gaz5h>+@r?gg z<>?;@UB>^JYrTK$qm1z1hyVS`uY!NDLbF_QSNbQ9g_se39o)y`jDhjH#(0*< zIm)kr%sFE`(|?8XOg{<|pV9n(;a)!dSnL_$>Hk=qTd?{^L5}b&|Necv|MSLpyq!;; zqx@=waqbvD4dmAQu^$ImxoKgcvaPE%O)lrbHGqp8_dDAvqd}zdfW<(0-2It`Bk_j> v -#include "config.h" -#include "w32res.h" - -#ifdef __MINGW32__ -#include "cygwin.h" -#endif - -/**************************************************************************** - * Language-neutral resources - ****************************************************************************/ - -#if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_NEU) -#ifdef _WIN32 -/* LANGUAGE LANG_NEUTRAL, SUBLANG_NEUTRAL */ -#pragma code_page(1252) -#endif /* _WIN32 */ - -/* - * Icons - * - * Icon with lowest ID value placed first to ensure application icon - * remains consistent on all systems. - */ -IDI_JUNKBUSTER ICON DISCARDABLE "icons/junkbust.ico" -IDI_JUNKBUSTER1 ICON DISCARDABLE "icons/ico00001.ico" -IDI_JUNKBUSTER2 ICON DISCARDABLE "icons/ico00002.ico" -IDI_JUNKBUSTER3 ICON DISCARDABLE "icons/ico00003.ico" -IDI_JUNKBUSTER4 ICON DISCARDABLE "icons/ico00004.ico" -IDI_JUNKBUSTER5 ICON DISCARDABLE "icons/ico00005.ico" -IDI_JUNKBUSTER6 ICON DISCARDABLE "icons/ico00006.ico" -IDI_JUNKBUSTER7 ICON DISCARDABLE "icons/ico00007.ico" -IDI_JUNKBUSTER8 ICON DISCARDABLE "icons/ico00008.ico" -IDI_IDLE ICON DISCARDABLE "icons/idle.ico" - -#endif /* Neutral resources */ - - -/**************************************************************************** - * English (U.S.) resources - ****************************************************************************/ - -#if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_ENU) -#ifdef _WIN32 -/* LANGUAGE LANG_ENGLISH, SUBLANG_ENGLISH_US */ -#pragma code_page(1252) -#endif //_WIN32 - -/* - * Menus - */ - -IDR_TRAYMENU MENU DISCARDABLE -BEGIN - POPUP "Popup" - BEGIN - MENUITEM "E&xit JunkBuster", ID_FILE_EXIT - MENUITEM SEPARATOR - POPUP "&Options" - BEGIN - MENUITEM "&Junkbuster...", ID_TOOLS_EDITJUNKBUSTER - MENUITEM SEPARATOR - MENUITEM "&Blockers...", ID_TOOLS_EDITBLOCKERS - MENUITEM "&Cookies...", ID_TOOLS_EDITCOOKIES - MENUITEM "&Forward...", ID_TOOLS_EDITFORWARD -#ifdef ACL_FILES - MENUITEM "&Access Control Lists...", ID_TOOLS_EDITACLS -#endif /* def ACL_FILES */ -#ifdef USE_IMAGE_LIST - MENUITEM "&Images...", ID_TOOLS_EDITIMAGE -#endif /* def USE_IMAGE_LIST */ -#ifdef KILLPOPUPS - MENUITEM "&Popups...", ID_TOOLS_EDITPOPUPS -#endif /* def KILLPOPUPS */ -#ifdef PCRS - MENUITEM "Perl &Regexps...", ID_TOOLS_EDITPERLRE -#endif /* def PCRS */ -#ifdef TRUST_FILES - MENUITEM "&Trust...", ID_TOOLS_EDITTRUST -#endif /* def TRUST_FILES */ - END - MENUITEM SEPARATOR -#ifdef TOGGLE - MENUITEM "&Enable", ID_TOGGLE_IJB, CHECKED -#endif - MENUITEM "&Reload config", ID_RELOAD_CONFIG - MENUITEM "Show &JunkBuster Window", ID_SHOWWINDOW - END -END - -IDR_LOGVIEW MENU DISCARDABLE -BEGIN - POPUP "&File" - BEGIN - MENUITEM "E&xit", ID_FILE_EXIT - END - POPUP "&Edit" - BEGIN - MENUITEM "Copy", ID_EDIT_COPY - END - POPUP "&View" - BEGIN - MENUITEM "&Clear Log", ID_VIEW_CLEARLOG - MENUITEM SEPARATOR - MENUITEM "&Log Messages", ID_VIEW_LOGMESSAGES, CHECKED - MENUITEM "Message &Highlighting", ID_VIEW_MESSAGEHIGHLIGHTING, CHECKED - MENUITEM "Limit &Buffer Size", ID_VIEW_LIMITBUFFERSIZE, CHECKED - MENUITEM "&Activity Animation", ID_VIEW_ACTIVITYANIMATION, CHECKED - END - POPUP "&Options" - BEGIN -#ifdef TOGGLE - MENUITEM "&Enable", ID_TOGGLE_IJB, CHECKED - MENUITEM "&Reload config", ID_RELOAD_CONFIG - MENUITEM SEPARATOR -#endif - MENUITEM "&Junkbuster...", ID_TOOLS_EDITJUNKBUSTER - MENUITEM SEPARATOR - MENUITEM "&Blockers...", ID_TOOLS_EDITBLOCKERS - MENUITEM "&Cookies...", ID_TOOLS_EDITCOOKIES - MENUITEM "&Forward...", ID_TOOLS_EDITFORWARD -#ifdef ACL_FILES - MENUITEM "&Access Control Lists...",ID_TOOLS_EDITACLS -#endif /* def ACL_FILES */ -#ifdef USE_IMAGE_LIST - MENUITEM "&Images...", ID_TOOLS_EDITIMAGE -#endif /* def USE_IMAGE_LIST */ -#ifdef KILLPOPUPS - MENUITEM "&Popups...", ID_TOOLS_EDITPOPUPS -#endif /* def KILLPOPUPS */ -#ifdef PCRS - MENUITEM "Perl &Regexps...", ID_TOOLS_EDITPERLRE -#endif /* def PCRS */ -#ifdef TRUST_FILES - MENUITEM "&Trust...", ID_TOOLS_EDITTRUST -#endif /* def TRUST_FILES */ - END - POPUP "&Help" - BEGIN - MENUITEM "Junkbuster &FAQ", ID_HELP_FAQ - MENUITEM "Junkbuster &Manual", ID_HELP_MANUAL - MENUITEM "GNU &General Public Licence", ID_HELP_GPL - MENUITEM SEPARATOR - MENUITEM "Junkbuster Status...", ID_HELP_STATUS - MENUITEM SEPARATOR - MENUITEM "About Junkbuster...", ID_HELP_ABOUTJUNKBUSTER - END -END - -IDR_POPUP_SELECTION MENU DISCARDABLE -BEGIN - POPUP "Popup" - BEGIN - MENUITEM "&Copy", ID_EDIT_COPY - END -END - - -/* - * Accelerators - */ - -IDR_ACCELERATOR ACCELERATORS DISCARDABLE -BEGIN - "C", ID_EDIT_COPY, VIRTKEY, CONTROL, NOINVERT -END - -/* - * Icons - * - * Icon with lowest ID value placed first to ensure application icon - * remains consistent on all systems. - */ -IDI_DENYRULE ICON DISCARDABLE "icons/denyrule.ico" -IDI_ALLOWRULE ICON DISCARDABLE "icons/icon1.ico" - -/* - * Dialog - */ - -IDD_RULES DIALOG DISCARDABLE 0, 0, 239, 225 -STYLE DS_MODALFRAME | WS_POPUP | WS_CAPTION | WS_SYSMENU -CAPTION "Blockers" -FONT 8, "MS Sans Serif" -BEGIN - GROUPBOX "New Rule",IDC_STATIC,5,5,230,55 - LTEXT "For:",IDC_STATIC,10,15,13,8 - EDITTEXT IDC_NEW,10,25,220,12,ES_AUTOHSCROLL - COMBOBOX IDC_ACTION,10,40,75,37,CBS_DROPDOWNLIST | CBS_SORT | - WS_VSCROLL | WS_TABSTOP - PUSHBUTTON "C&reate!",IDC_CREATE,90,40,50,14 - GROUPBOX "Rules",IDC_STATIC,5,65,230,135 - CONTROL "List1",IDC_RULES,"SysListView32",LVS_REPORT | - LVS_SHOWSELALWAYS | LVS_EDITLABELS | WS_BORDER | - WS_TABSTOP,10,75,220,100 - PUSHBUTTON "Move &Up",IDC_MOVEUP,10,180,50,14,WS_DISABLED - PUSHBUTTON "Move &Down",IDC_MOVEDOWN,65,180,50,14,WS_DISABLED - PUSHBUTTON "&Delete",IDC_DELETE,120,180,50,14,WS_DISABLED - PUSHBUTTON "&Save",IDC_SAVE,130,205,50,14 - PUSHBUTTON "&Cancel",IDCANCEL,185,205,50,14 -END - - -/* - * DESIGNINFO - */ - -#ifdef APSTUDIO_INVOKED -GUIDELINES DESIGNINFO DISCARDABLE -BEGIN - IDD_RULES, DIALOG - BEGIN - LEFTMARGIN, 7 - RIGHTMARGIN, 232 - TOPMARGIN, 7 - BOTTOMMARGIN, 218 - END -END -#endif // APSTUDIO_INVOKED - - -/* - * String Table - */ - -STRINGTABLE DISCARDABLE -BEGIN - IDS_NEW_BLOCKER "Create rule for ""%s""..." -END - -#endif /* English (U.S.) resources */ +/********************************************************************* + * + * File : $Source: /cvsroot/ijbswa/current/w32.rc,v $ + * + * Purpose : Windows GUI resource script. + * + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ + * + * Based on the Internet Junkbuster originally written + * by and Copyright (C) 1997 Anonymous Coders and + * Junkbusters Corporation. http://www.junkbusters.com + * + * This program is free software; you can redistribute it + * and/or modify it under the terms of the GNU General + * Public License as published by the Free Software + * Foundation; either version 2 of the License, or (at + * your option) any later version. + * + * This program is distributed in the hope that it will + * be useful, but WITHOUT ANY WARRANTY; without even the + * implied warranty of MERCHANTABILITY or FITNESS FOR A + * PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + * + * The GNU General Public License should be included with + * this file. If not, you can view it at + * http://www.gnu.org/copyleft/gpl.html + * or write to the Free Software Foundation, Inc., 59 + * Temple Place - Suite 330, Boston, MA 02111-1307, USA. + * + * Revisions : + * $Log: w32.rc,v $ + * Revision 1.16 2002/03/26 22:57:44 jongfoster + * Web server name should begin www. + * + * Revision 1.15 2002/03/24 14:29:25 jongfoster + * Renaming icon file + * + * Revision 1.14 2002/03/24 12:07:36 jongfoster + * Consistern name for filters file + * + * Revision 1.13 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.12 2001/07/30 22:16:07 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.11 2001/07/21 17:53:41 jongfoster + * Adding version information block. + * + * Revision 1.10 2001/07/19 19:14:19 haroon + * - Removed all #ifdef PCRS. The .rc file extension had eluded Andreas. + * + * Revision 1.9 2001/06/07 23:08:54 jongfoster + * Forward and ACL edit options removed. + * Config edit option renamed from "&Junkbuster" to "&Configuration". + * + * Revision 1.8 2001/05/31 21:37:11 jongfoster + * GUI changes to rename "permissions file" to "actions file". + * + * Revision 1.7 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.6 2001/05/26 14:15:18 jongfoster + * Cosmetic fix: // -> block comment + * + * Revision 1.5 2001/05/26 13:24:31 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * (I missed this file in my original checkin) + * + * Revision 1.4 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.3 2001/05/25 22:33:40 jongfoster + * CRLF->LF + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:59:07 oes + * Initial import of version 2.9.3 source tree + * + * + *********************************************************************/ + +#include "config.h" + +#ifndef STRICT +#define STRICT +#endif +#include + +#include "w32res.h" + +#ifdef __MINGW32__ +#include "cygwin.h" +#endif + +/**************************************************************************** + * Language-neutral resources + ****************************************************************************/ + +#if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_NEU) +#ifdef _WIN32 +/* LANGUAGE LANG_NEUTRAL, SUBLANG_NEUTRAL */ +#pragma code_page(1252) +#endif /* _WIN32 */ + +/* + * Icons + * + * Icon with lowest ID value placed first to ensure application icon + * remains consistent on all systems. + */ +IDI_MAINICON ICON DISCARDABLE "icons/privoxy.ico" +IDI_ANIMATED1 ICON DISCARDABLE "icons/ico00001.ico" +IDI_ANIMATED2 ICON DISCARDABLE "icons/ico00002.ico" +IDI_ANIMATED3 ICON DISCARDABLE "icons/ico00003.ico" +IDI_ANIMATED4 ICON DISCARDABLE "icons/ico00004.ico" +IDI_ANIMATED5 ICON DISCARDABLE "icons/ico00005.ico" +IDI_ANIMATED6 ICON DISCARDABLE "icons/ico00006.ico" +IDI_ANIMATED7 ICON DISCARDABLE "icons/ico00007.ico" +IDI_ANIMATED8 ICON DISCARDABLE "icons/ico00008.ico" +IDI_IDLE ICON DISCARDABLE "icons/idle.ico" + +#endif /* Neutral resources */ + + +/**************************************************************************** + * English (U.S.) resources + ****************************************************************************/ + +#if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_ENU) +#ifdef _WIN32 +/* LANGUAGE LANG_ENGLISH, SUBLANG_ENGLISH_US */ +#pragma code_page(1252) +#endif /* def _WIN32 */ + +/* + * File Version + */ +#ifndef _MAC + +VS_VERSION_INFO VERSIONINFO + FILEVERSION VERSION_MAJOR,VERSION_MINOR,VERSION_POINT,0 + PRODUCTVERSION VERSION_MAJOR,VERSION_MINOR,VERSION_POINT,0 + FILEFLAGSMASK 0x3fL +#ifdef _DEBUG + FILEFLAGS 0x1L +#else + FILEFLAGS 0x0L +#endif + FILEOS 0x40004L + FILETYPE 0x1L + FILESUBTYPE 0x0L +BEGIN + BLOCK "StringFileInfo" + BEGIN + BLOCK "040904b0" + BEGIN + VALUE "CompanyName", "The Privoxy team - www.privoxy.org\0" + VALUE "FileDescription", "Privoxy\0" + VALUE "FileVersion", VERSION "\0" + VALUE "InternalName", "Privoxy\0" + VALUE "LegalCopyright", "Distributed under the GNU GPL\0" + VALUE "OriginalFilename", "privoxy.exe\0" + VALUE "ProductName", "Privoxy\0" + VALUE "ProductVersion", VERSION "\0" + END + END + BLOCK "VarFileInfo" + BEGIN + VALUE "Translation", 0x409, 1200 + END +END + +#endif /* ndef _MAC */ + + +/* + * Menus + */ + +IDR_TRAYMENU MENU DISCARDABLE +BEGIN + POPUP "Popup" + BEGIN + MENUITEM "E&xit Privoxy", ID_FILE_EXIT + MENUITEM SEPARATOR + POPUP "&Options" + BEGIN + MENUITEM "&Configuration...", ID_TOOLS_EDITCONFIG + MENUITEM SEPARATOR + MENUITEM "&Actions...", ID_TOOLS_EDITACTIONS + MENUITEM "&Filters...", ID_TOOLS_EDITFILTERS +#ifdef FEATURE_TRUST + MENUITEM "&Trust...", ID_TOOLS_EDITTRUST +#endif /* def FEATURE_TRUST */ + END + MENUITEM SEPARATOR +#ifdef FEATURE_TOGGLE + MENUITEM "&Enable", ID_TOGGLE_ENABLED, CHECKED +#endif /* def FEATURE_TOGGLE */ + MENUITEM "Show Privoxy &Window", ID_SHOWWINDOW + END +END + +IDR_LOGVIEW MENU DISCARDABLE +BEGIN + POPUP "&File" + BEGIN + MENUITEM "E&xit", ID_FILE_EXIT + END + POPUP "&Edit" + BEGIN + MENUITEM "Copy", ID_EDIT_COPY + END + POPUP "&View" + BEGIN + MENUITEM "&Clear Log", ID_VIEW_CLEARLOG + MENUITEM SEPARATOR + MENUITEM "&Log Messages", ID_VIEW_LOGMESSAGES, CHECKED + MENUITEM "Message &Highlighting", ID_VIEW_MESSAGEHIGHLIGHTING, CHECKED + MENUITEM "Limit &Buffer Size", ID_VIEW_LIMITBUFFERSIZE, CHECKED + MENUITEM "&Activity Animation", ID_VIEW_ACTIVITYANIMATION, CHECKED + END + POPUP "&Options" + BEGIN +#ifdef FEATURE_TOGGLE + MENUITEM "&Enable", ID_TOGGLE_ENABLED, CHECKED + MENUITEM SEPARATOR +#endif /* def FEATURE_TOGGLE */ + MENUITEM "&Configuration...", ID_TOOLS_EDITCONFIG + MENUITEM SEPARATOR + MENUITEM "&Actions...", ID_TOOLS_EDITACTIONS + MENUITEM "&Filters...", ID_TOOLS_EDITFILTERS +#ifdef FEATURE_TRUST + MENUITEM "&Trust...", ID_TOOLS_EDITTRUST +#endif /* def FEATURE_TRUST */ + END + POPUP "&Help" + BEGIN + MENUITEM "Privoxy &FAQ", ID_HELP_FAQ + MENUITEM "Privoxy &Manual", ID_HELP_MANUAL + MENUITEM "GNU &General Public Licence", ID_HELP_GPL + MENUITEM SEPARATOR + MENUITEM "Privoxy Status...", ID_HELP_STATUS + MENUITEM SEPARATOR + MENUITEM "About Privoxy...", ID_HELP_ABOUT + END +END + +IDR_POPUP_SELECTION MENU DISCARDABLE +BEGIN + POPUP "Popup" + BEGIN + MENUITEM "&Copy", ID_EDIT_COPY + END +END + + +/* + * Accelerators + */ + +IDR_ACCELERATOR ACCELERATORS DISCARDABLE +BEGIN + "C", ID_EDIT_COPY, VIRTKEY, CONTROL, NOINVERT +END + +#endif /* English (U.S.) resources */ diff --git a/w32log.c b/w32log.c index 975c5e0f..ada06b2e 100644 --- a/w32log.c +++ b/w32log.c @@ -1,13 +1,13 @@ -const char w32log_rcs[] = "$Id: w32log.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; +const char w32log_rcs[] = "$Id: w32log.c,v 1.24 2002/03/31 17:19:00 jongfoster Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/w32log.c,v $ + * File : $Source: /cvsroot/ijbswa/current/w32log.c,v $ * * Purpose : Functions for creating and destroying the log window, * ouputting strings, processing messages and so on. * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -32,6 +32,121 @@ const char w32log_rcs[] = "$Id: w32log.c,v 1.1 2001/05/13 21:57:07 administrator * * Revisions : * $Log: w32log.c,v $ + * Revision 1.24 2002/03/31 17:19:00 jongfoster + * Win32 only: Enabling STRICT to fix a VC++ compile warning. + * + * Revision 1.23 2002/03/26 22:57:10 jongfoster + * Web server name should begin www. + * + * Revision 1.22 2002/03/24 12:48:23 jongfoster + * Fixing doc links + * + * Revision 1.21 2002/03/24 12:07:35 jongfoster + * Consistern name for filters file + * + * Revision 1.20 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.19 2002/01/17 21:04:17 jongfoster + * Replacing hard references to the URL of the config interface + * with #defines from project.h + * + * Revision 1.18 2001/11/30 23:37:24 jongfoster + * Renaming the Win32 config file to config.txt - this is almost the + * same as the corresponding UNIX name "config" + * + * Revision 1.17 2001/11/16 00:46:31 jongfoster + * Fixing compiler warnings + * + * Revision 1.16 2001/08/01 19:58:12 jongfoster + * Fixing documentation filenames in help menu, and making status + * option work without needing the "Junkbuster Status.URL" file. + * + * Revision 1.15 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.14 2001/07/29 18:47:05 jongfoster + * Adding missing #include "loadcfg.h" + * + * Revision 1.13 2001/07/19 19:15:14 haroon + * - Added a FIXME for EditFile but didn't fix :-) + * + * Revision 1.12 2001/07/13 14:04:59 oes + * Removed all #ifdef PCRS + * + * Revision 1.11 2001/06/07 23:08:12 jongfoster + * Forward and ACL edit options removed. + * + * Revision 1.10 2001/05/31 21:37:11 jongfoster + * GUI changes to rename "permissions file" to "actions file". + * + * Revision 1.9 2001/05/31 17:33:13 oes + * + * CRLF -> LF + * + * Revision 1.8 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.7 2001/05/26 01:26:34 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * + * Revision 1.6 2001/05/26 00:31:30 jongfoster + * Fixing compiler warning about comparing signed/unsigned. + * + * Revision 1.5 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.4 2001/05/22 18:56:28 oes + * CRLF -> LF + * + * Revision 1.3 2001/05/20 15:07:54 jongfoster + * File is now ignored if _WIN_CONSOLE is defined. + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:59:07 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -41,18 +156,21 @@ const char w32log_rcs[] = "$Id: w32log.c,v 1.1 2001/05/13 21:57:07 administrator #include #include +#ifndef STRICT +#define STRICT +#endif #include #include #include "project.h" #include "w32log.h" #include "w32taskbar.h" -#include "w32rulesdlg.h" #include "win32.h" #include "w32res.h" #include "jcc.h" #include "miscutil.h" #include "errlog.h" +#include "loadcfg.h" const char w32res_h_rcs[] = W32RES_H_VERSION; @@ -63,6 +181,8 @@ const char cygwin_h_rcs[] = CYGWIN_H_VERSION; const char w32log_h_rcs[] = W32LOG_H_VERSION; +#ifndef _WIN_CONSOLE /* entire file */ + /* * Timers and the various durations */ @@ -126,7 +246,16 @@ char g_szFontFaceName[255] = DEFAULT_LOG_FONT_NAME; int g_nFontSize = DEFAULT_LOG_FONT_SIZE; -#ifdef REGEX +/* FIXME: this is a kludge */ + +const char * g_actions_file = NULL; +const char * g_re_filterfile = NULL; +#ifdef FEATURE_TRUST +const char * g_trustfile = NULL; +#endif /* def FEATURE_TRUST */ + +/* FIXME: end kludge */ + /* Regular expression for detected URLs */ #define RE_URL "http:[^ \n\r]*" @@ -172,8 +301,6 @@ static struct _Pattern /* this is the terminator statement - do not delete! */ { NULL, STYLE_NONE } }; -#endif /* def REGEX */ - /* * Public variables @@ -228,14 +355,14 @@ BOOL InitLogWindow(void) g_hiconIdle = LoadIcon(g_hInstance, MAKEINTRESOURCE(IDI_IDLE)); for (i = 0; i < ANIM_FRAMES; i++) { - g_hiconAnim[i] = LoadIcon(g_hInstance, MAKEINTRESOURCE(IDI_JUNKBUSTER1 + i)); + g_hiconAnim[i] = LoadIcon(g_hInstance, MAKEINTRESOURCE(IDI_ANIMATED1 + i)); } - g_hiconApp = LoadIcon(g_hInstance, MAKEINTRESOURCE(IDI_JUNKBUSTER)); + g_hiconApp = LoadIcon(g_hInstance, MAKEINTRESOURCE(IDI_MAINICON)); /* Create the user interface */ g_hwndLogFrame = CreateLogWindow(g_hInstance, g_nCmdShow); g_hwndTray = CreateTrayWindow(g_hInstance); - TrayAddIcon(g_hwndTray, 1, g_hiconApp, "Junkbuster"); + TrayAddIcon(g_hwndTray, 1, g_hiconApp, "Privoxy"); /* Create pattern matching buffers (for highlighting */ LogCreatePatternMatchingBuffers(); @@ -289,14 +416,11 @@ void TermLogWindow(void) *********************************************************************/ void LogCreatePatternMatchingBuffers(void) { -#ifdef REGEX int i; for (i = 0; patterns_to_highlight[i].str != NULL; i++) { regcomp(&patterns_to_highlight[i].buffer, patterns_to_highlight[i].str, REG_ICASE); } -#endif - } @@ -313,14 +437,11 @@ void LogCreatePatternMatchingBuffers(void) *********************************************************************/ void LogDestroyPatternMatchingBuffers(void) { -#ifdef REGEX int i; for (i = 0; patterns_to_highlight[i].str != NULL; i++) { regfree(&patterns_to_highlight[i].buffer); } -#endif - } @@ -338,7 +459,6 @@ void LogDestroyPatternMatchingBuffers(void) char *LogGetURLUnderCursor(void) { char *szResult = NULL; -#ifdef REGEX regex_t re; POINT ptCursor; POINTL ptl; @@ -381,7 +501,6 @@ char *LogGetURLUnderCursor(void) regfree(&re); } -#endif return szResult; } @@ -392,7 +511,7 @@ char *LogGetURLUnderCursor(void) * Function : LogPutString * * Description : Inserts text into the logging window. This is really - * a REGEXP aware wrapper function to `LogPutStringNoMatch'. + * a regexp aware wrapper function to `LogPutStringNoMatch'. * * Parameters : * 1 : pszText = pointer to string going to the log window @@ -404,9 +523,7 @@ char *LogGetURLUnderCursor(void) *********************************************************************/ int LogPutString(const char *pszText) { -#ifdef REGEX int i; -#endif int result = 0; if (pszText == NULL || strlen(pszText) == 0) @@ -424,7 +541,6 @@ int LogPutString(const char *pszText) */ EnterCriticalSection(&g_criticalsection); -#ifdef REGEX if (g_bHighlightMessages) { regmatch_t match; @@ -448,7 +564,7 @@ int LogPutString(const char *pszText) memset(pszBefore, 0, (match.rm_so + 1) * sizeof(char)); strncpy(pszBefore, pszText, match.rm_so); } - if (match.rm_eo < strlen(pszText)) + if (match.rm_eo < (regoff_t)strlen(pszText)) { pszAfter = strdup(&pszText[match.rm_eo]); } @@ -479,13 +595,10 @@ int LogPutString(const char *pszText) } } } -#endif result = LogPutStringNoMatch(pszText, STYLE_NONE); -#ifdef REGEX end: -#endif LeaveCriticalSection(&g_criticalsection); return result; @@ -656,7 +769,7 @@ void LogClipBuffer(void) *********************************************************************/ HWND CreateHiddenLogOwnerWindow(HINSTANCE hInstance) { - static const char *szWndName = "JunkbusterLogLogOwner"; + static const char *szWndName = "PrivoxyLogOwner"; WNDCLASS wc; HWND hwnd; @@ -719,12 +832,11 @@ LRESULT CALLBACK LogOwnerWindowProc(HWND hwnd, UINT uMsg, WPARAM wParam, LPARAM *********************************************************************/ HWND CreateLogWindow(HINSTANCE hInstance, int nCmdShow) { - static const char *szWndName = "JunkbusterLogWindow"; - static const char *szWndTitle = "Junkbuster"; + static const char *szWndName = "PrivoxyLogWindow"; + static const char *szWndTitle = "Privoxy"; HWND hwnd = NULL; HWND hwndOwner = (g_bShowOnTaskBar) ? NULL : CreateHiddenLogOwnerWindow(hInstance); - HWND hwndChild = NULL; RECT rcClient; WNDCLASSEX wc; @@ -857,9 +969,11 @@ void ShowLogWindow(BOOL bShow) * Function : EditFile * * Description : Opens the specified setting file for editing. + * FIXME: What if the file has no associated application. Check for return values +* from ShellExecute?? * * Parameters : - * 1 : filename = filename from the config (aka junkbstr.txt) file. + * 1 : filename = filename from the config (aka config.txt) file. * * Returns : N/A * @@ -899,7 +1013,6 @@ void OnLogRButtonUp(int nModifier, int x, int y) if (hMenu != NULL) { HMENU hMenuPopup = GetSubMenu(hMenu, 0); - char *szURL; /* Check if there is a selection */ CHARRANGE range; @@ -913,38 +1026,6 @@ void OnLogRButtonUp(int nModifier, int x, int y) EnableMenuItem(hMenuPopup, ID_EDIT_COPY, MF_BYCOMMAND | MF_ENABLED); } - /* Check if cursor is over a link */ - szURL = LogGetURLUnderCursor(); - if (szURL) - { - MENUITEMINFO item; - TCHAR szMenuItemTemplate[1000]; - char *szMenuItem; - - memset(&item, 0, sizeof(item)); - item.cbSize = sizeof(item); - item.fMask = MIIM_TYPE | MIIM_ID | MIIM_STATE; - item.fType = MFT_STRING; - item.fState = MFS_ENABLED; - item.wID = ID_NEW_BLOCKER; - - /* Put the item into the menu */ - memset(szMenuItemTemplate, 0, sizeof(szMenuItemTemplate)); - LoadString(g_hInstance, IDS_NEW_BLOCKER, szMenuItemTemplate, sizeof(szMenuItemTemplate) / sizeof(szMenuItemTemplate[0])); - - szMenuItem = (char *)malloc(strlen(szMenuItemTemplate) + strlen(szURL) + 1); - sprintf(szMenuItem, szMenuItemTemplate, szURL); - - item.dwTypeData = szMenuItem; - item.cch = strlen(szMenuItem); - - InsertMenuItem(hMenuPopup, 1, TRUE, &item); - - SetDefaultRule(szURL); - - free(szURL); - } - /* Display the popup */ TrackPopupMenu(hMenuPopup, TPM_LEFTALIGN | TPM_TOPALIGN | TPM_RIGHTBUTTON, x, y, 0, g_hwndLogFrame, NULL); DestroyMenu(hMenu); @@ -1005,9 +1086,9 @@ void OnLogCommand(int nCommand) /* SaveLogSettings(); */ break; -#ifdef TOGGLE +#ifdef FEATURE_TOGGLE /* by haroon - change toggle to its opposite value */ - case ID_TOGGLE_IJB: + case ID_TOGGLE_ENABLED: g_bToggleIJB = !g_bToggleIJB; if (g_bToggleIJB) { @@ -1018,90 +1099,44 @@ void OnLogCommand(int nCommand) log_error(LOG_LEVEL_INFO, "Now toggled OFF."); } break; -#endif - - case ID_RELOAD_CONFIG: - configret = 0; - load_config( 1 ); - - if ( configret ) - { - log_error(LOG_LEVEL_ERROR, "load_config encountered a problem! You should probably restart IJB."); - } - else - { - log_error(LOG_LEVEL_INFO, "Configuration has been reloaded."); - } - break; +#endif /* def FEATURE_TOGGLE */ - case ID_TOOLS_EDITJUNKBUSTER: + case ID_TOOLS_EDITCONFIG: EditFile(configfile); break; - case ID_TOOLS_EDITBLOCKERS: - EditFile(blockfile); - break; - - case ID_TOOLS_EDITCOOKIES: - EditFile(cookiefile); - break; - - case ID_TOOLS_EDITFORWARD: - EditFile(forwardfile); - break; - -#ifdef ACL_FILES - case ID_TOOLS_EDITACLS: - EditFile(aclfile); - break; -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST - case ID_TOOLS_EDITIMAGE: - EditFile(imagefile); - break; -#endif /* def USE_IMAGE_LIST */ - -#ifdef PCRS - case ID_TOOLS_EDITPERLRE: - EditFile(re_filterfile); + case ID_TOOLS_EDITACTIONS: + EditFile(g_actions_file); break; -#endif -#ifdef KILLPOPUPS - case ID_TOOLS_EDITPOPUPS: - EditFile(popupfile); + case ID_TOOLS_EDITFILTERS: + EditFile(g_re_filterfile); break; -#endif /* def KILLPOPUPS */ -#ifdef TRUST_FILES +#ifdef FEATURE_TRUST case ID_TOOLS_EDITTRUST: - EditFile(trustfile); - break; -#endif /* def TRUST_FILES */ - - case ID_NEW_BLOCKER: - ShowRulesDialog(g_hwndLogFrame); + EditFile(g_trustfile); break; +#endif /* def FEATURE_TRUST */ case ID_HELP_GPL: - ShellExecute(g_hwndLogFrame, "open", "gpl.html", NULL, NULL, SW_SHOWNORMAL); + ShellExecute(g_hwndLogFrame, "open", "LICENSE.txt", NULL, NULL, SW_SHOWNORMAL); break; case ID_HELP_FAQ: - ShellExecute(g_hwndLogFrame, "open", "ijbfaq.html", NULL, NULL, SW_SHOWNORMAL); + ShellExecute(g_hwndLogFrame, "open", "doc\\faq\\index.html", NULL, NULL, SW_SHOWNORMAL); break; case ID_HELP_MANUAL: - ShellExecute(g_hwndLogFrame, "open", "ijbman.html", NULL, NULL, SW_SHOWNORMAL); + ShellExecute(g_hwndLogFrame, "open", "doc\\user-manual\\index.html", NULL, NULL, SW_SHOWNORMAL); break; case ID_HELP_STATUS: - ShellExecute(g_hwndLogFrame, "open", "Junkbuster Status.URL", NULL, NULL, SW_SHOWNORMAL); + ShellExecute(g_hwndLogFrame, "open", CGI_PREFIX "show-status", NULL, NULL, SW_SHOWNORMAL); break; - case ID_HELP_ABOUTJUNKBUSTER: - MessageBox(g_hwndLogFrame, win32_blurb, "Junkbuster Information", MB_OK); + case ID_HELP_ABOUT: + MessageBox(g_hwndLogFrame, win32_blurb, "About Privoxy", MB_OK); break; default: @@ -1128,34 +1163,21 @@ void OnLogCommand(int nCommand) void OnLogInitMenu(HMENU hmenu) { /* Only enable editors if there is a file to edit */ - EnableMenuItem(hmenu, ID_TOOLS_EDITCOOKIES, MF_BYCOMMAND | (cookiefile ? MF_ENABLED : MF_GRAYED)); - EnableMenuItem(hmenu, ID_TOOLS_EDITBLOCKERS, MF_BYCOMMAND | (blockfile ? MF_ENABLED : MF_GRAYED)); - EnableMenuItem(hmenu, ID_TOOLS_EDITFORWARD, MF_BYCOMMAND | (forwardfile ? MF_ENABLED : MF_GRAYED)); -#ifdef ACL_FILES - EnableMenuItem(hmenu, ID_TOOLS_EDITACLS, MF_BYCOMMAND | (aclfile ? MF_ENABLED : MF_GRAYED)); -#endif /* def ACL_FILES */ -#ifdef USE_IMAGE_LIST - EnableMenuItem(hmenu, ID_TOOLS_EDITIMAGE, MF_BYCOMMAND | (imagefile ? MF_ENABLED : MF_GRAYED)); -#endif /* def USE_IMAGE_LIST */ -#ifdef KILLPOPUPS - EnableMenuItem(hmenu, ID_TOOLS_EDITPOPUPS, MF_BYCOMMAND | (popupfile ? MF_ENABLED : MF_GRAYED)); -#endif /* def KILLPOPUPS */ -#ifdef PCRS - EnableMenuItem(hmenu, ID_TOOLS_EDITPERLRE, MF_BYCOMMAND | (re_filterfile ? MF_ENABLED : MF_GRAYED)); -#endif -#ifdef TRUST_FILES - EnableMenuItem(hmenu, ID_TOOLS_EDITTRUST, MF_BYCOMMAND | (trustfile ? MF_ENABLED : MF_GRAYED)); -#endif /* def TRUST_FILES */ + EnableMenuItem(hmenu, ID_TOOLS_EDITACTIONS, MF_BYCOMMAND | (g_actions_file ? MF_ENABLED : MF_GRAYED)); + EnableMenuItem(hmenu, ID_TOOLS_EDITFILTERS, MF_BYCOMMAND | (g_re_filterfile ? MF_ENABLED : MF_GRAYED)); +#ifdef FEATURE_TRUST + EnableMenuItem(hmenu, ID_TOOLS_EDITTRUST, MF_BYCOMMAND | (g_trustfile ? MF_ENABLED : MF_GRAYED)); +#endif /* def FEATURE_TRUST */ /* Check/uncheck options */ CheckMenuItem(hmenu, ID_VIEW_LOGMESSAGES, MF_BYCOMMAND | (g_bLogMessages ? MF_CHECKED : MF_UNCHECKED)); CheckMenuItem(hmenu, ID_VIEW_MESSAGEHIGHLIGHTING, MF_BYCOMMAND | (g_bHighlightMessages ? MF_CHECKED : MF_UNCHECKED)); CheckMenuItem(hmenu, ID_VIEW_LIMITBUFFERSIZE, MF_BYCOMMAND | (g_bLimitBufferSize ? MF_CHECKED : MF_UNCHECKED)); CheckMenuItem(hmenu, ID_VIEW_ACTIVITYANIMATION, MF_BYCOMMAND | (g_bShowActivityAnimation ? MF_CHECKED : MF_UNCHECKED)); -#ifdef TOGGLE +#ifdef FEATURE_TOGGLE /* by haroon - menu item for Enable toggle on/off */ - CheckMenuItem(hmenu, ID_TOGGLE_IJB, MF_BYCOMMAND | (g_bToggleIJB ? MF_CHECKED : MF_UNCHECKED)); -#endif + CheckMenuItem(hmenu, ID_TOGGLE_ENABLED, MF_BYCOMMAND | (g_bToggleIJB ? MF_CHECKED : MF_UNCHECKED)); +#endif /* def FEATURE_TOGGLE */ } @@ -1313,6 +1335,7 @@ LRESULT CALLBACK LogWindowProc(HWND hwnd, UINT uMsg, WPARAM wParam, LPARAM lPara } +#endif /* ndef _WIN_CONSOLE - entire file */ /* Local Variables: diff --git a/w32log.h b/w32log.h index 85b43754..2634a95c 100644 --- a/w32log.h +++ b/w32log.h @@ -1,15 +1,15 @@ -#ifndef _W32LOG_H -#define _W32LOG_H -#define W32LOG_H_VERSION "$Id: w32log.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef W32LOG_H_INCLUDED +#define W32LOG_H_INCLUDED +#define W32LOG_H_VERSION "$Id: w32log.h,v 1.9 2002/03/24 12:03:47 jongfoster Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/w32log.h,v $ + * File : $Source: /cvsroot/ijbswa/current/w32log.h,v $ * * Purpose : Functions for creating and destroying the log window, * ouputting strings, processing messages and so on. * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -34,6 +34,61 @@ * * Revisions : * $Log: w32log.h,v $ + * Revision 1.9 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.8 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.7 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.6 2001/07/13 14:04:59 oes + * Removed all #ifdef PCRS + * + * Revision 1.5 2001/06/07 23:08:12 jongfoster + * Forward and ACL edit options removed. + * + * Revision 1.4 2001/05/31 21:37:11 jongfoster + * GUI changes to rename "permissions file" to "actions file". + * + * Revision 1.3 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.2 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.1.1.1 2001/05/15 13:59:07 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -72,6 +127,16 @@ extern char g_szFontFaceName[255]; extern int g_nFontSize; +/* FIXME: this is a kludge */ + +extern const char * g_actions_file; +extern const char * g_re_filterfile; +#ifdef FEATURE_TRUST +extern const char * g_trustfile; +#endif /* def FEATURE_TRUST */ + +/* FIXME: end kludge */ + extern int LogPutString(const char *pszText); extern BOOL InitLogWindow(void); extern void TermLogWindow(void); @@ -86,7 +151,7 @@ extern const char w32log_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _W32LOG_H */ +#endif /* ndef W32LOG_H_INCLUDED */ /* diff --git a/w32res.h b/w32res.h index 7fb57b6a..62308cf2 100644 --- a/w32res.h +++ b/w32res.h @@ -1,14 +1,14 @@ -#ifndef _W32RES_H -#define _W32RES_H -#define W32RES_H_VERSION "$Id: w32res.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef W32RES_H_INCLUDED +#define W32RES_H_INCLUDED +#define W32RES_H_VERSION "$Id: w32res.h,v 1.12 2002/03/24 12:07:36 jongfoster Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/w32res.h,v $ + * File : $Source: /cvsroot/ijbswa/current/w32res.h,v $ * * Purpose : Identifiers for Windows GUI resources. * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Based on the Internet Junkbuster originally written * by and Copyright (C) 1997 Anonymous Coders and @@ -34,42 +34,104 @@ * * Revisions : * $Log: w32res.h,v $ + * Revision 1.12 2002/03/24 12:07:36 jongfoster + * Consistern name for filters file + * + * Revision 1.11 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.10 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.9 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.8 2001/07/13 14:04:59 oes + * Removed all #ifdef PCRS + * + * Revision 1.7 2001/06/07 23:08:12 jongfoster + * Forward and ACL edit options removed. + * + * Revision 1.6 2001/05/31 21:37:11 jongfoster + * GUI changes to rename "permissions file" to "actions file". + * + * Revision 1.5 2001/05/29 09:50:24 jongfoster + * Unified blocklist/imagelist/permissionslist. + * File format is still under discussion, but the internal changes + * are (mostly) done. + * + * Also modified interceptor behaviour: + * - We now intercept all URLs beginning with one of the following + * prefixes (and *only* these prefixes): + * * http://i.j.b/ + * * http://ijbswa.sf.net/config/ + * * http://ijbswa.sourceforge.net/config/ + * - New interceptors "home page" - go to http://i.j.b/ to see it. + * - Internal changes so that intercepted and fast redirect pages + * are not replaced with an image. + * - Interceptors now have the option to send a binary page direct + * to the client. (i.e. ijb-send-banner uses this) + * - Implemented show-url-info interceptor. (Which is why I needed + * the above interceptors changes - a typical URL is + * "http://i.j.b/show-url-info?url=www.somesite.com/banner.gif". + * The previous mechanism would not have intercepted that, and + * if it had been intercepted then it then it would have replaced + * it with an image.) + * + * Revision 1.4 2001/05/26 01:26:34 jongfoster + * New #define, WIN_GUI_EDIT, enables the (embryonic) Win32 GUI editor. + * This #define cannot be set from ./configure - there's no point, it + * doesn't work yet. See feature request # 425722 + * + * Revision 1.3 2001/05/26 00:28:36 jongfoster + * Automatic reloading of config file. + * Removed obsolete SIGHUP support (Unix) and Reload menu option (Win32). + * Most of the global variables have been moved to a new + * struct configuration_spec, accessed through csp->config->globalname + * Most of the globals remaining are used by the Win32 GUI. + * + * Revision 1.2 2001/05/20 01:21:20 jongfoster + * Version 2.9.4 checkin. + * - Merged popupfile and cookiefile, and added control over PCRS + * filtering, in new "permissionsfile". + * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration + * file error you now get a message box (in the Win32 GUI) rather + * than the program exiting with no explanation. + * - Made killpopup use the PCRS MIME-type checking and HTTP-header + * skipping. + * - Removed tabs from "config" + * - Moved duplicated url parsing code in "loaders.c" to a new funcition. + * - Bumped up version number. + * + * Revision 1.1.1.1 2001/05/15 13:59:08 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ -#define IDS_NEW_BLOCKER 1 - -#define ID_NEW_BLOCKER 100 #define IDR_TRAYMENU 101 #define IDI_IDLE 102 #define IDR_LOGVIEW 103 #define IDR_ACCELERATOR 104 #define IDR_POPUP_SELECTION 105 -#define IDD_RULES 106 -#define IDI_DENYRULE 107 -#define IDI_ALLOWRULE 108 -#define IDI_JUNKBUSTER 200 -#define IDI_JUNKBUSTER1 201 -#define IDI_JUNKBUSTER2 202 -#define IDI_JUNKBUSTER3 203 -#define IDI_JUNKBUSTER4 204 -#define IDI_JUNKBUSTER5 205 -#define IDI_JUNKBUSTER6 206 -#define IDI_JUNKBUSTER7 207 -#define IDI_JUNKBUSTER8 208 -#define IDC_NEW 300 -#define IDC_ACTION 301 -#define IDC_RULES 302 -#define IDC_CREATE 303 -#define IDC_MOVEUP 304 -#define IDC_MOVEDOWN 305 -#define IDC_DELETE 306 -#define IDC_SAVE 307 +#define IDI_MAINICON 200 +#define IDI_ANIMATED1 201 +#define IDI_ANIMATED2 202 +#define IDI_ANIMATED3 203 +#define IDI_ANIMATED4 204 +#define IDI_ANIMATED5 205 +#define IDI_ANIMATED6 206 +#define IDI_ANIMATED7 207 +#define IDI_ANIMATED8 208 #define ID_SHOWWINDOW 4000 -#define ID_HELP_ABOUTJUNKBUSTER 4001 +#define ID_HELP_ABOUT 4001 #define ID_FILE_EXIT 4002 #define ID_VIEW_CLEARLOG 4003 #define ID_VIEW_LOGMESSAGES 4004 @@ -80,36 +142,18 @@ #define ID_HELP_MANUAL 4009 #define ID_HELP_GPL 4010 #define ID_HELP_STATUS 4011 -#ifdef TOGGLE -#define ID_TOGGLE_IJB 4012 -#endif -#define ID_RELOAD_CONFIG 4013 +#ifdef FEATURE_TOGGLE +#define ID_TOGGLE_ENABLED 4012 +#endif /* def FEATURE_TOGGLE */ /* Break these out so they are easier to extend, but keep consecutive */ -#define ID_TOOLS_EDITJUNKBUSTER 5000 -#define ID_TOOLS_EDITBLOCKERS 5001 -#define ID_TOOLS_EDITCOOKIES 5002 -#define ID_TOOLS_EDITFORWARD 5003 - -#ifdef ACL_FILES -#define ID_TOOLS_EDITACLS 5005 -#endif /* def ACL_FILES */ - -#ifdef USE_IMAGE_LIST -#define ID_TOOLS_EDITIMAGE 5006 -#endif /* def USE_IMAGE_LIST */ - -#ifdef KILLPOPUPS -#define ID_TOOLS_EDITPOPUPS 5007 -#endif /* def KILLPOPUPS */ - -#ifdef PCRS -#define ID_TOOLS_EDITPERLRE 5008 -#endif /* def PCRS */ +#define ID_TOOLS_EDITCONFIG 5000 +#define ID_TOOLS_EDITACTIONS 5001 +#define ID_TOOLS_EDITFILTERS 5002 -#ifdef TRUST_FILES -#define ID_TOOLS_EDITTRUST 5004 -#endif /* def TRUST_FILES */ +#ifdef FEATURE_TRUST +#define ID_TOOLS_EDITTRUST 5003 +#endif /* def FEATURE_TRUST */ /* * The following symbols are declared in in VC++. @@ -121,7 +165,7 @@ #define ID_EDIT_COPY 30000 -#endif /* ndef _W32RES_H */ +#endif /* ndef W32RES_H_INCLUDED */ /* Local Variables: diff --git a/w32rulesdlg.c b/w32rulesdlg.c deleted file mode 100644 index 845995b0..00000000 --- a/w32rulesdlg.c +++ /dev/null @@ -1,532 +0,0 @@ -const char w32rulesdlg_rcs[] = "$Id: w32rulesdlg.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/w32rulesdlg.c,v $ - * - * Purpose : A dialog to allow GUI editing of the rules. - * Unfinished. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Written by and Copyright (C) 1999 Adam Lock - * - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: w32rulesdlg.c,v $ - * - *********************************************************************/ - -#include "config.h" - -#include - -#include -#include - -#include "w32res.h" -#include "w32rulesdlg.h" -#include "win32.h" - -#ifdef __MINGW32__ -#include "cygwin.h" -#endif - -const char w32rulesdlg_h_rcs[] = W32RULESDLG_H_VERSION; - -const int nSmallIconWidth = 16; -const int nSmallIconHeight = 16; - -static BOOL CALLBACK DialogProc(HWND hwndDlg, UINT uMsg, WPARAM wParam, LPARAM lParam); - -static HIMAGELIST g_hImageList = NULL; -static char *g_pszDefaultRule; -static BOOL g_bDirty = FALSE; - - - -/********************************************************************* - * - * Function : ShowRulesDialog - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndParent = (what?) - * - * Returns : (Please fill me in!) - * - *********************************************************************/ -int ShowRulesDialog(HWND hwndParent) -{ - DialogBox(g_hInstance, MAKEINTRESOURCE(IDD_RULES), hwndParent, DialogProc); - return TRUE; - -} - - -/********************************************************************* - * - * Function : SetDefaultRule - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : pszRule = (what?) - * - * Returns : N/A - * - *********************************************************************/ -void SetDefaultRule(const char *pszRule) -{ - if (pszRule == NULL) - { - if (g_pszDefaultRule) - { - free(g_pszDefaultRule); - g_pszDefaultRule = NULL; - } - } - else - { - g_pszDefaultRule = strdup(pszRule); - } - -} - - -#define IMAGE_ALLOW 0 -#define IMAGE_DENY 1 - -/********************************************************************* - * - * Function : InsertRule - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndListView = (what?) - * 2 : pszRule = (what?) - * 3 : bAllow = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void InsertRule(HWND hwndListView, const char *pszRule, BOOL bAllow) -{ - LVITEM item; - item.mask = LVIF_TEXT | LVIF_IMAGE; - item.pszText = (char *)pszRule; - item.iItem = ListView_GetItemCount(hwndListView) + 1; - item.iSubItem = 0; - item.iImage = bAllow ? IMAGE_ALLOW : IMAGE_DENY; - ListView_InsertItem(hwndListView, &item); - /* TODO add subitem for whether the rule is always or never */ - -} - - -/********************************************************************* - * - * Function : SetDirty - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : bDirty = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void SetDirty(BOOL bDirty) -{ - g_bDirty = bDirty; - /* TODO Change some values */ - -} - - -/********************************************************************* - * - * Function : OnInitDialog - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnInitDialog(HWND hwndDlg) -{ - LVCOLUMN aCols[2]; - HWND hwndListView; - RECT rcListView; - int cx; - - if (g_hImageList == NULL) - { - /* Create image list and add icons */ - HICON hIconDeny = LoadImage(g_hInstance, MAKEINTRESOURCE(IDI_DENYRULE), IMAGE_ICON, nSmallIconWidth, nSmallIconHeight, 0); - HICON hIconAllow = LoadImage(g_hInstance, MAKEINTRESOURCE(IDI_ALLOWRULE), IMAGE_ICON, nSmallIconWidth, nSmallIconHeight, 0); - g_hImageList = ImageList_Create(nSmallIconWidth, nSmallIconHeight, ILC_COLOR | ILC_MASK, 0, 10); - ImageList_AddIcon(g_hImageList, hIconAllow); - ImageList_AddIcon(g_hImageList, hIconDeny); - } - - /* Set the default rule value if there is one */ - if (g_pszDefaultRule) - { - SetDlgItemText(hwndDlg, IDC_NEW, g_pszDefaultRule); - SetDefaultRule(NULL); - } - - /* Initialise the list view */ - hwndListView = GetDlgItem(hwndDlg, IDC_RULES); - ListView_SetImageList(hwndListView, g_hImageList, LVSIL_SMALL); - GetClientRect(hwndListView, &rcListView); - cx = rcListView.right - rcListView.left; - aCols[0].mask = LVCF_TEXT | LVCF_WIDTH; - aCols[0].pszText = "Rule"; - aCols[0].cx = (70 * cx) / 100; - aCols[1].mask = LVCF_TEXT | LVCF_WIDTH; - aCols[1].pszText = "Applies when"; - aCols[1].cx = cx - aCols[0].cx; - ListView_InsertColumn(hwndListView, 0, &aCols[0]); - ListView_InsertColumn(hwndListView, 1, &aCols[1]); - - /* Read and add rules to the list */ - /* TODO */ - InsertRule(hwndListView, "Test rule 1", TRUE); - InsertRule(hwndListView, "Test rule 2", TRUE); - InsertRule(hwndListView, "Test rule 3", FALSE); - InsertRule(hwndListView, "Test rule 4", FALSE); - -} - - -/********************************************************************* - * - * Function : GetFirstSelectedItem - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : (Please fill me in!) - * - *********************************************************************/ -static int GetFirstSelectedItem(HWND hwndDlg) -{ - /* Check for selected items */ - HWND hwndListView = GetDlgItem(hwndDlg, IDC_RULES); - int nItem = -1; - do - { - nItem = ListView_GetNextItem(hwndListView, nItem, LVNI_SELECTED); - if (nItem >= 0) - { - return nItem; - } - } while (nItem >= 0); - return -1; - -} - - -/********************************************************************* - * - * Function : OnRulesItemChanged - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnRulesItemChanged(HWND hwndDlg) -{ - int nItem = GetFirstSelectedItem(hwndDlg); - HWND hwndListView = GetDlgItem(hwndDlg, IDC_RULES); - int nItems = ListView_GetItemCount(hwndListView); - BOOL bHaveSelection = (nItem >= 0) ? TRUE : FALSE; - BOOL bMoveUp = (bHaveSelection && nItem > 0) ? TRUE : FALSE; - BOOL bMoveDown = (bHaveSelection && nItem < nItems - 1) ? TRUE : FALSE; - - /* Enable/disable buttons */ - EnableWindow(GetDlgItem(hwndDlg, IDC_DELETE), bHaveSelection); - EnableWindow(GetDlgItem(hwndDlg, IDC_MOVEUP), bMoveUp); - EnableWindow(GetDlgItem(hwndDlg, IDC_MOVEDOWN), bMoveDown); - -} - - -/********************************************************************* - * - * Function : MoveRules - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * 2 : bMoveUp = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void MoveRules(HWND hwndDlg, BOOL bMoveUp) -{ -} - - -/********************************************************************* - * - * Function : OnMoveRuleUpClick - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnMoveRuleUpClick(HWND hwndDlg) -{ -} - - -/********************************************************************* - * - * Function : OnMoveRuleDownClick - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnMoveRuleDownClick(HWND hwndDlg) -{ -} - - -/********************************************************************* - * - * Function : OnCreateRuleClick - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnCreateRuleClick(HWND hwndDlg) -{ -} - - -/********************************************************************* - * - * Function : OnDeleteRuleClick - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnDeleteRuleClick(HWND hwndDlg) -{ - /* Get selection and remove it */ - int nItem = GetFirstSelectedItem(hwndDlg); - if (nItem >= 0) - { - LVITEM item; - HWND hwndListView = GetDlgItem(hwndDlg, IDC_RULES); - item.mask = LVIF_PARAM; - item.iItem = nItem; - item.iSubItem = 0; - ListView_GetItem(hwndListView, &item); - /* TODO erase data stored with item */ - ListView_DeleteItem(hwndListView, nItem); - } - -} - - -/********************************************************************* - * - * Function : OnCommand - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * 2 : nCommand = (what?) - * 3 : nNotifyCode = (what?) - * 4 : hwndItem = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnCommand(HWND hwndDlg, int nCommand, int nNotifyCode, HWND hwndItem) -{ - switch (nCommand) - { - case IDCANCEL: - case IDC_SAVE: - EndDialog(hwndDlg, IDOK); - break; - case IDC_CREATE: - if (nNotifyCode == BN_CLICKED) - { - OnCreateRuleClick(hwndDlg); - } - break; - case IDC_DELETE: - if (nNotifyCode == BN_CLICKED) - { - OnDeleteRuleClick(hwndDlg); - } - break; - case IDC_MOVEUP: - if (nNotifyCode == BN_CLICKED) - { - OnMoveRuleUpClick(hwndDlg); - } - break; - case IDC_MOVEDOWN: - if (nNotifyCode == BN_CLICKED) - { - OnMoveRuleDownClick(hwndDlg); - } - break; - } - -} - - -/********************************************************************* - * - * Function : OnNotify - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * 2 : nIdCtrl = (what?) - * 3 : pnmh = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnNotify(HWND hwndDlg, int nIdCtrl, LPNMHDR pnmh) -{ - switch (nIdCtrl) - { - case IDC_RULES: - switch (pnmh->code) - { - case LVN_ITEMCHANGED: - OnRulesItemChanged(hwndDlg); - break; - } - break; - } - -} - - -/********************************************************************* - * - * Function : OnDestroy - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * - * Returns : N/A - * - *********************************************************************/ -static void OnDestroy(HWND hwndDlg) -{ - /* TODO any destruction cleanup */ - -} - - -/********************************************************************* - * - * Function : DialogProc - * - * Description : (Please fill me in!) - * - * Parameters : - * 1 : hwndDlg = (what?) - * 2 : uMsg = (what?) - * 3 : wParam = (what?) - * 4 : lParam = (what?) - * - * Returns : (Please fill me in!) - * - *********************************************************************/ -static BOOL CALLBACK DialogProc(HWND hwndDlg, UINT uMsg, WPARAM wParam, LPARAM lParam) -{ - switch (uMsg) - { - case WM_INITDIALOG: - OnInitDialog(hwndDlg); - return TRUE; - - case WM_DESTROY: - OnDestroy(hwndDlg); - return TRUE; - - case WM_COMMAND: - OnCommand(hwndDlg, LOWORD(wParam), HIWORD(wParam), (HWND) lParam); - break; - - case WM_NOTIFY: - OnNotify(hwndDlg, (int) wParam, (LPNMHDR) lParam); - break; - } - return FALSE; - -} - - -/* - Local Variables: - tab-width: 3 - end: -*/ diff --git a/w32rulesdlg.h b/w32rulesdlg.h deleted file mode 100644 index 991a8bd0..00000000 --- a/w32rulesdlg.h +++ /dev/null @@ -1,63 +0,0 @@ -#ifndef _W32RULESDLG_H -#define _W32RULESDLG_H -#define W32RULESDLG_H_VERSION "$Id: w32rulesdlg.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" -/********************************************************************* - * - * File : $Source: /home/administrator/cvs/ijb/w32rulesdlg.h,v $ - * - * Purpose : A dialog to allow GUI editing of the rules. - * Unfinished. - * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net - * - * Written by and Copyright (C) 1999 Adam Lock - * - * - * This program is free software; you can redistribute it - * and/or modify it under the terms of the GNU General - * Public License as published by the Free Software - * Foundation; either version 2 of the License, or (at - * your option) any later version. - * - * This program is distributed in the hope that it will - * be useful, but WITHOUT ANY WARRANTY; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A - * PARTICULAR PURPOSE. See the GNU General Public - * License for more details. - * - * The GNU General Public License should be included with - * this file. If not, you can view it at - * http://www.gnu.org/copyleft/gpl.html - * or write to the Free Software Foundation, Inc., 59 - * Temple Place - Suite 330, Boston, MA 02111-1307, USA. - * - * Revisions : - * $Log: w32rulesdlg.h,v $ - * - *********************************************************************/ - - -#ifdef __cplusplus -extern "C" { -#endif - -extern int ShowRulesDialog(HWND hwndParent); -extern void SetDefaultRule(const char *pszRule); - -/* Revision control strings from this header and associated .c file */ -extern const char w32rulesdlg_rcs[]; -extern const char w32rulesdlg_h_rcs[]; - -#ifdef __cplusplus -} /* extern "C" */ -#endif - -#endif /* ndef _W32RULESDLG_H */ - - -/* - Local Variables: - tab-width: 3 - end: -*/ diff --git a/w32taskbar.c b/w32taskbar.c index 62f269d0..721ad08e 100644 --- a/w32taskbar.c +++ b/w32taskbar.c @@ -1,13 +1,13 @@ -const char w32taskbar_rcs[] = "$Id: w32taskbar.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; +const char w32taskbar_rcs[] = "$Id: w32taskbar.c,v 1.6 2002/03/26 22:57:10 jongfoster Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/w32taskbar.c,v $ + * File : $Source: /cvsroot/ijbswa/current/w32taskbar.c,v $ * * Purpose : Functions for creating, setting and destroying the * workspace tray icon * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -32,6 +32,24 @@ const char w32taskbar_rcs[] = "$Id: w32taskbar.c,v 1.1 2001/05/13 21:57:07 admin * * Revisions : * $Log: w32taskbar.c,v $ + * Revision 1.6 2002/03/26 22:57:10 jongfoster + * Web server name should begin www. + * + * Revision 1.5 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.4 2001/11/16 00:46:31 jongfoster + * Fixing compiler warnings + * + * Revision 1.3 2001/05/22 18:56:28 oes + * CRLF -> LF + * + * Revision 1.2 2001/05/20 15:07:54 jongfoster + * File is now ignored if _WIN_CONSOLE is defined. + * + * Revision 1.1.1.1 2001/05/15 13:59:08 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -40,6 +58,9 @@ const char w32taskbar_rcs[] = "$Id: w32taskbar.c,v 1.1 2001/05/13 21:57:07 admin #include +#ifndef STRICT +#define STRICT +#endif #include #include "w32taskbar.h" @@ -48,6 +69,8 @@ const char w32taskbar_rcs[] = "$Id: w32taskbar.c,v 1.1 2001/05/13 21:57:07 admin const char w32taskbar_h_rcs[] = W32TASKBAR_H_VERSION; +#ifndef _WIN_CONSOLE /* entire file */ + #define WM_TRAYMSG WM_USER+1 static HMENU g_hmenuTray; @@ -60,7 +83,8 @@ static LRESULT CALLBACK TrayProc(HWND hwnd, UINT msg, WPARAM wParam, LPARAM lPar * * Function : CreateTrayWindow * - * Description : Creates and returns the invisible window responsible for processing tray messages. + * Description : Creates and returns the invisible window responsible + * for processing tray messages. * * Parameters : * 1 : hInstance = instance handle of this application @@ -71,7 +95,7 @@ static LRESULT CALLBACK TrayProc(HWND hwnd, UINT msg, WPARAM wParam, LPARAM lPar HWND CreateTrayWindow(HINSTANCE hInstance) { WNDCLASS wc; - static const char *szWndName = "JunkbusterTrayWindow"; + static const char *szWndName = "PrivoxyTrayWindow"; wc.style = 0; wc.lpfnWndProc = TrayProc; @@ -226,7 +250,7 @@ LRESULT CALLBACK TrayProc(HWND hwnd, UINT msg, WPARAM wParam, LPARAM lParam) case WM_TRAYMSG: { - UINT uID = (UINT) wParam; + /* UINT uID = (UINT) wParam; */ UINT uMouseMsg = (UINT) lParam; if (uMouseMsg == WM_RBUTTONDOWN) @@ -255,6 +279,8 @@ LRESULT CALLBACK TrayProc(HWND hwnd, UINT msg, WPARAM wParam, LPARAM lParam) } +#endif /* ndef _WIN_CONSOLE - entire file */ + /* Local Variables: tab-width: 3 diff --git a/w32taskbar.h b/w32taskbar.h index 9ba21fbd..19450614 100644 --- a/w32taskbar.h +++ b/w32taskbar.h @@ -1,15 +1,15 @@ -#ifndef _W32TASKBAR_H -#define _W32TASKBAR_H -#define W32TASKBAR_H_VERSION "$Id: w32taskbar.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef W32TASKBAR_H_INCLUDED +#define W32TASKBAR_H_INCLUDED +#define W32TASKBAR_H_VERSION "$Id: w32taskbar.h,v 1.3 2002/03/24 12:03:47 jongfoster Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/w32taskbar.h,v $ + * File : $Source: /cvsroot/ijbswa/current/w32taskbar.h,v $ * * Purpose : Functions for creating, setting and destroying the * workspace tray icon * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -34,6 +34,16 @@ * * Revisions : * $Log: w32taskbar.h,v $ + * Revision 1.3 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.2 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.1.1.1 2001/05/15 13:59:08 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -55,7 +65,7 @@ extern const char w32taskbar_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _W32TASKBAR_H */ +#endif /* ndef W32TASKBAR_H_INCLUDED */ /* diff --git a/win32.c b/win32.c index 2252dc1f..9db1ed1b 100644 --- a/win32.c +++ b/win32.c @@ -1,12 +1,12 @@ -const char win32_rcs[] = "$Id: win32.c,v 1.1 2001/05/13 21:57:07 administrator Exp $"; +const char win32_rcs[] = "$Id: win32.c,v 1.8 2002/03/26 22:57:10 jongfoster Exp $"; /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/win32.c,v $ + * File : $Source: /cvsroot/ijbswa/current/win32.c,v $ * * Purpose : Win32 User Interface initialization and message loop * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -31,6 +31,31 @@ const char win32_rcs[] = "$Id: win32.c,v 1.1 2001/05/13 21:57:07 administrator E * * Revisions : * $Log: win32.c,v $ + * Revision 1.8 2002/03/26 22:57:10 jongfoster + * Web server name should begin www. + * + * Revision 1.7 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.6 2002/03/16 21:53:28 jongfoster + * VC++ Heap debug option + * + * Revision 1.5 2002/03/04 23:47:30 jongfoster + * - Rewritten, simpler command-line pre-parser + * - not using raise(SIGINT) any more + * + * Revision 1.4 2001/11/30 21:29:33 jongfoster + * Fixing a warning + * + * Revision 1.3 2001/11/16 00:46:31 jongfoster + * Fixing compiler warnings + * + * Revision 1.2 2001/07/29 19:32:00 jongfoster + * Renaming _main() [mingw32 only] to real_main(), for ANSI compliance. + * + * Revision 1.1.1.1 2001/05/15 13:59:08 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -43,30 +68,39 @@ const char win32_rcs[] = "$Id: win32.c,v 1.1 2001/05/13 21:57:07 administrator E #include "project.h" #include "jcc.h" +#include "miscutil.h" /* Uncomment this if you want to build Win32 as a console app */ /* #define _WIN_CONSOLE */ +#ifndef STRICT +#define STRICT +#endif #include #include #include +#if defined(_WIN32) && defined(_MSC_VER) && defined(_DEBUG) +/* Visual C++ Heap debugging */ +#include +#endif /* defined(_WIN32) && defined(_MSC_VER) && defined(_DEBUG) */ + #include "win32.h" const char win32_h_rcs[] = WIN32_H_VERSION; const char win32_blurb[] = -"Internet Junkbuster Proxy(TM) Version " VERSION " for Windows is Copyright (C) 1997-8\n" -"by Junkbusters Corp. This is free software; it may be used and copied under\n" -"the GNU General Public License: http://www.gnu.org/copyleft/gpl.html .\n" +"Privoxy version " VERSION " for Windows\n" +"Copyright (C) 2000-2002 by members of the Privoxy Team\n" +"Copyright (C) 1997-8 by Junkbusters Corp.\n" +"This is free software; it may be used and copied under the\n" +"GNU General Public License: http://www.gnu.org/copyleft/gpl.html .\n" "This program comes with ABSOLUTELY NO WARRANTY OF ANY KIND.\n" "\n" "For information about how to to configure the proxy and your browser, see\n" -" " REDIRECT_URL "win\n" -"\n" -"The Internet Junkbuster Proxy(TM) is running and ready to serve!\n" -""; +" " HOME_PAGE_URL "\n" +"\n"; #ifdef _WIN_CONSOLE @@ -89,12 +123,12 @@ static void __cdecl UserInterfaceThread(void *); * Description : M$ Windows "main" routine: * parse the `lpCmdLine' param into main's argc and argv variables, * start the user interface thread (for the systray window), and - * call main (i.e. patch execution into normal IJB startup). + * call main (i.e. patch execution into normal startup). * * Parameters : - * 1 : hInstance = instance handle of this IJB execution - * 2 : hPrevInstance = instance handle of previous IJB execution - * 3 : lpCmdLine = command line string which started IJB + * 1 : hInstance = instance handle of this execution + * 2 : hPrevInstance = instance handle of previous execution + * 3 : lpCmdLine = command line string which started us * 4 : nCmdShow = window show value (MIN, MAX, NORMAL, etc...) * * Returns : `main' never returns, so WinMain will also never return. @@ -102,56 +136,64 @@ static void __cdecl UserInterfaceThread(void *); *********************************************************************/ int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow) { - int argc = 0; int i; int res; - char **argv = NULL; - char *pszArgs = NULL; - char *pszLastTok; + int argc = 1; + const char *argv[3]; char szModule[MAX_PATH+1]; #ifndef _WIN_CONSOLE HANDLE hInitCompleteEvent = NULL; #endif - /* Split command line into arguments */ - pszArgs = (char *)malloc(strlen(lpCmdLine) + 1); - strcpy(pszArgs, lpCmdLine); - GetModuleFileName(hInstance, szModule, MAX_PATH); +#if defined(_WIN32) && defined(_MSC_VER) && defined(_DEBUG) +#if 0 + /* Visual C++ Heap debugging */ - /* Count number of spaces */ - argc = 1; - if (strlen(pszArgs) > 0) - { - pszLastTok = pszArgs; - do - { - argc++; - pszLastTok = strchr(pszLastTok+1, ' '); - } while (pszLastTok); - } + /* Get current flag*/ + int tmpFlag = _CrtSetDbgFlag( _CRTDBG_REPORT_FLAG ); - /* Allocate array of strings */ - argv = (char **)malloc(sizeof(char *) * argc); + /* Turn on leak-checking bit */ + tmpFlag |= _CRTDBG_ALLOC_MEM_DF | _CRTDBG_LEAK_CHECK_DF | _CRTDBG_CHECK_ALWAYS_DF; - /* step through command line replacing spaces with zeros, initialise array */ - argv[0] = szModule; - i = 1; - pszLastTok = pszArgs; - do + /* Turn off CRT block checking bit */ + tmpFlag &= ~(_CRTDBG_CHECK_CRT_DF | _CRTDBG_DELAY_FREE_MEM_DF); + + /* Set flag to the new value */ + _CrtSetDbgFlag( tmpFlag ); +#endif +#endif /* defined(_WIN32) && defined(_MSC_VER) && defined(_DEBUG) */ + + /* + * Cheat in parsing the command line. We only ever have at most one + * paramater, which may optionally be specified inside double quotes. + */ + + if (lpCmdLine != NULL) + { + /* Make writable copy */ + lpCmdLine = strdup(lpCmdLine); + } + if (lpCmdLine != NULL) { - argv[i] = pszLastTok; - pszLastTok = strchr(pszLastTok+1, ' '); - if (pszLastTok) + chomp(lpCmdLine); + i = strlen(lpCmdLine); + if ((i >= 2) && (lpCmdLine[0] == '\"') && (lpCmdLine[i - 1] == '\"')) { - while (*pszLastTok != '\0' && *pszLastTok == ' ') - { - *pszLastTok = '\0'; - pszLastTok++; - } + lpCmdLine[i - 1] = '\0'; + lpCmdLine++; } - i++; - } while (pszLastTok && *pszLastTok != '\0'); + if (lpCmdLine[0] == '\0') + { + lpCmdLine = NULL; + } + } + + GetModuleFileName(hInstance, szModule, MAX_PATH); + argv[0] = szModule; + argv[1] = lpCmdLine; + argv[2] = NULL; + argc = ((lpCmdLine != NULL) ? 2 : 1); #ifndef _WIN_CONSOLE /* Create a user-interface thread and wait for it to initialise */ @@ -164,15 +206,11 @@ int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine #endif #ifdef __MINGW32__ - res = _main( argc, argv ); + res = real_main( argc, argv ); #else res = main( argc, argv ); #endif - /* Cleanup */ - free(argv); - free(pszArgs); - return res; } @@ -206,7 +244,7 @@ void InitWin32(void) if (WSAStartup(wVersionRequested, &wsaData) != 0) { #ifndef _WIN_CONSOLE - MessageBox(NULL, "Cannot initialize WinSock library", "Internet JunkBuster Error", + MessageBox(NULL, "Cannot initialize WinSock library", "Privoxy Error", MB_OK | MB_ICONERROR | MB_TASKMODAL | MB_SETFOREGROUND | MB_TOPMOST); #endif exit(1); @@ -230,7 +268,7 @@ void InitWin32(void) * Description : User interface thread. WinMain will wait for us to set * the hInitCompleteEvent before patching over to `main'. * This ensures the systray window is active before beginning - * IJB operations. + * operations. * * Parameters : * 1 : pData = pointer to `hInitCompleteEvent'. @@ -258,7 +296,7 @@ static void __cdecl UserInterfaceThread(void *pData) TermLogWindow(); /* Time to die... */ - raise(SIGINT); + exit(0); } diff --git a/win32.h b/win32.h index 3011f478..7c699dc3 100644 --- a/win32.h +++ b/win32.h @@ -1,14 +1,14 @@ -#ifndef _WIN32_H -#define _WIN32_H -#define WIN32_H_VERSION "$Id: win32.h,v 1.1 2001/05/13 21:57:07 administrator Exp $" +#ifndef WIN32_H_INCLUDED +#define WIN32_H_INCLUDED +#define WIN32_H_VERSION "$Id: win32.h,v 1.4 2002/03/24 12:03:47 jongfoster Exp $" /********************************************************************* * - * File : $Source: /home/administrator/cvs/ijb/win32.h,v $ + * File : $Source: /cvsroot/ijbswa/current/win32.h,v $ * * Purpose : Win32 User Interface initialization and message loop * - * Copyright : Written by and Copyright (C) 2001 the SourceForge - * IJBSWA team. http://ijbswa.sourceforge.net + * Copyright : Written by and Copyright (C) 2001-2002 members of + * the Privoxy team. http://www.privoxy.org/ * * Written by and Copyright (C) 1999 Adam Lock * @@ -33,6 +33,22 @@ * * Revisions : * $Log: win32.h,v $ + * Revision 1.4 2002/03/24 12:03:47 jongfoster + * Name change + * + * Revision 1.3 2001/07/30 22:08:36 jongfoster + * Tidying up #defines: + * - All feature #defines are now of the form FEATURE_xxx + * - Permanently turned off WIN_GUI_EDIT + * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS + * + * Revision 1.2 2001/07/29 18:43:08 jongfoster + * Changing #ifdef _FILENAME_H to FILENAME_H_INCLUDED, to conform to + * ANSI C rules. + * + * Revision 1.1.1.1 2001/05/15 13:59:08 oes + * Initial import of version 2.9.3 source tree + * * *********************************************************************/ @@ -62,8 +78,8 @@ extern const char win32_h_rcs[]; } /* extern "C" */ #endif -#endif /* ndef _WIN32_H */ - +#endif /* ndef WIN32_H_INCLUDED */ + /* Local Variables: tab-width: 3 -- 2.50.1
    • +

    Privoxy - Team page

    +
    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    +01stefanw.jpg +02jon.jpg +03andreas.jpg +04rodney.jpg
    +05david.jpg +06member.jpg +07member.jpg +08member.jpg
    +09member.jpg +10member.jpg +11member.jpg +12member.jpg
    +13member.jpg +14member.jpg +15member.jpg +16member.jpg
    +17member.jpg +18member.jpg +19member.jpg +20member.jpg
    + +
    +    Created by IrfanView +