| Age | Commit message (Collapse) | Author |
|---|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Signed-off-by: Edward Tomasz Napierala <trasz@FreeBSD.org>
|
|
Correct GHashTable usage
See merge request !16
|
|
Check return value of localtime
See merge request !15
|
|
|
|
Enable UTF8 in GRegex
|
|
Fixes #10
|
|
This splits sign parsing out of parse_time_interval_uint() so that the
negative sign is applied outside of the unsigned context where the
number parsing is done, and after all the checks that it's lower than
(1 << 31)
This fixes issues with settings like `server_reconnect_time`,
`server_connect_timeout` and `lag_max_before_disconnect`, which accepted
-1 as a valid value.
|
|
|
|
add 2 comments about new_string
|
|
make helper functions static
|
|
- with non-unicode byte to Private Use Area A mapping
- move all ifdefs to iregex.h file only
|
|
Originally found by oss-fuzz (issue 525) in get_ansi_color using ubsan.
After a lot of analysis I'm 99% sure this isn't security relevant so
it's fine to handle this publicly.
The fix is mainly adding a function that does it right and use it
everywhere. This is harder than it seems because the strtol() family of
functions doesn't have the friendliest of interfaces.
Aside from get_ansi_color(), there were other pieces of code that used
the same (out*10+(*in-'0')) pattern, like the parse_size() and
parse_time_interval() functions, which are mostly used for settings.
Those are interesting cases, since they multiply the parsed number
(resulting in more overflows) and they write to a signed integer
parameter (which can accidentally make the uints negative without UB)
Thanks to Pascal Cuoq for enlightening me about the undefined behavior
of parse_size (and, in particular, the implementation-defined behavior
of one of the WIP versions of this commit, where something like signed
integer overflow happened, but it was legal). Also for writing
tis-interpreter, which is better than ubsan to verify these things.
|
|
|
|
|
|
|
|
|
|
make foreach send commands
|
|
|
|
Quote the filename when dcc requests are auto accepted.
|
|
A command requiring an argument and given in tail position would not
raise an error but silently set the value to the empty string ''.
|
|
|
|
Let's repurpose escape_string and make it more flexible by letting us
choose the characters to escape.
|
|
Check whether the client certificate is expired.
|
|
Closes #559.
|
|
provide net_start_ssl api
|
|
fixes #615
|
|
- X509_get_notBefore becomes X509_get0_notBefore
- X509_get_notAfter becomes X509_get0_notAfter
- ASN1_STRING_data becomes ASN1_STRING_get0_data (and drops the const)
- The whole library is now initialized by OPENSSL_init_ssl
Closes #597
|
|
Right now we only warn the user, the connection keeps going.
Fixes #211
|
|
Original patch by 'Slarky'
According to that ticket, the next major version of solaris won't need
this. Consider reverting this when solaris 11.3 stops being relevant.
|
|
|
|
|
|
Also, plugged a memory leak when retrieving the match position.
|
|
|
|
It was made redundant by the introduction of the pointer to the GRegex
structure.
Silence the compiler warning in textbuffer.c about preg being
initialized by setting it to NULL.
|
|
|
|
enforce check that chatnets are nodelists to handle invalid config
|
|
|
|
|
|
|
|
This patch moves the emitted "tls handshake finished" signal to before
we do validation of the given TLS certificate. This ensures that we
display certificate information before we possibly error out and
disconnects from the server.
|
|
This patch removes support for DANE validation of TLS certificates.
There wasn't enough support in the IRC community to push for this on the
majority of bigger IRC networks. If you believe this should be
reintroduced into irssi, then please come up with an implementation that
does not rely on the libval library. It is causing a lot of troubles for
our downstream maintainers.
|
