lighttpd1.4

lighttpd

lighttpd1.4

Author	SHA1	Message	Date
Glenn Strauss	0e749c1c84	[mod_auth] http_auth_const_time_memeq() (#2975 , #2976 ) use constant time comparison when comparing digests (mitigation for brute-force timing attacks against digests generated using the same nonce) x-ref: "Digest auth nonces are not validated" https://redmine.lighttpd.net/issues/2976 "safe_memcmp new function proposal" https://redmine.lighttpd.net/issues/2975	3 years ago
Mohammed Sadiq	6a988bb0d0	[multiple] cleaner calloc use in SETDEFAULTS_FUNC github: closes #99 x-ref: "cleaner calloc use in SETDEFAULTS_FUNC" https://github.com/lighttpd/lighttpd1.4/pull/99	3 years ago
Glenn Strauss	60f4cf3ad8	[mod_auth] http_auth_info_t digest abstraction	3 years ago
Glenn Strauss	07fef25867	[mod_auth] http_auth_digest_hex2bin() replace http_auth_md5_hex2bin() with more generic function to handle digests of different lengths	3 years ago
Glenn Strauss	04d76e7afd	[core] some header cleanup provide standard types in first.h instead of base.h provide lighttpd types in base_decls.h instead of settings.h reduce headers exposed by headers for core data structures do not expose <pcre.h> or <stdlib.h> in headers move stat_cache_entry to stat_cache.h reduce use of "server.h" and "base.h" in headers	4 years ago
Glenn Strauss	2e0f87c8a5	[core] add missing #include (quiet compiler warning)	5 years ago
Glenn Strauss	a53f662a30	[core] remove some unused header includes remove exposure of stdio.h in buffer.h for print_backtrace(), now static	5 years ago
Glenn Strauss	fb8057707c	[mod_authn_mysql] fix minor memleak at shutdown	6 years ago
Glenn Strauss	9619d643ff	[build] compile fixes for AIX x-ref: https://www.lighttpd.net/2016/10/31/1.4.43/ (see comments section)	6 years ago
Glenn Strauss	4d95a8e300	[mod_authn_mysql] close mysql_conn in cleanup close cached mysql_conn in server cleanup when server shuts down	6 years ago
Glenn Strauss	ac90699d28	[autobuild] rm module stub code for missing deps remove module stub code since the build system(s) no longer build any module when the dependencies for a given module are not present.	6 years ago
Glenn Strauss	609e9a5050	silence warnings from clang ccc-analyzer	6 years ago
Glenn Strauss	a401c9469a	[mod_auth] HTTP Basic auth backends also do authz (#1817 ) HTTP Basic auth backends now do both authn and authz in order to allow provide a means to extend backends to optionally support group authz x-ref: "LDAP-Group support for HTTP-Authentication" https://redmine.lighttpd.net/issues/1817	6 years ago
Glenn Strauss	d2b7c7bad2	remove excess initializers (fix compiler warnings)	6 years ago
Glenn Strauss	ae91578895	[mod_auth] mod_authn_mysql.c MySQL auth backend (fixes #752 , fixes #1845 ) (automatically load mod_authn_mysql with mod_auth for compatibility with existing config usage via patches in various distros, e.g. FreeBSD) x-ref: "mySQL auth" https://redmine.lighttpd.net/issues/752 "MySQL Digest Authentication" https://redmine.lighttpd.net/issues/1845	6 years ago

15 Commits (0e749c1c84326a51f0f8a80c6db49c31c8e920ab)