1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
1047
1048
1049
1050
1051
1052
1053
1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
1066
1067
1068
1069
1070
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
1083
1084
1085
1086
1087
1088
1089
1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
|
2002-04-18 Robert James Kaes <rjkaes@flarenet.com>
* src/tinyproxy.c (takesig): Moved the filter_destroy() code out
of the signal handler and placed it inside of main(). Same
reasoning as the rotate_log_files() changes below.
* src/utils.c (rotate_log_files): Moved the log rotation code out
of the signal handler and into it's own function. Also improved
the robustness of the code. Credit to Petr Lampa for suggesting
that system calls in a signal handler is bad magic. Now the
signal handler sets a flag which is responded to inside of
thread_main_loop().
2002-04-17 Robert James Kaes <rjkaes@flarenet.com>
* configure.ac: Added test for pthread_cancel() since it doesn't
seem to be available on every platform, even if the rest of
pthread is. Thanks to Daniel Flemming and Petr Lampa for
reporting this problem.
* src/sock.c (lookup_domain): Removed the LOOKUP_LOCK() and
LOOKUP_UNLOCK() macros and replaced them with calls the LOCK() and
UNLOCK(). The reason for this change is that I can not be sure
that calls to gethostbyname() and gethostbyaddr() will not
over-write the same static block of memory. Potential problem
pointed out by Petr Lampa.
* src/reqs.c (handle_connection): If the initialize_conn()
function fails, we need to close the socket.
* src/acl.c (check_acl): Changed the code to accept the peer IP
address and string address from the calling function (in this case
handle_connection.)
* src/thread.c (thread_main): Removed close(connfd) since it has
already been closed from within handle_connection(). Thanks to
Petr Lampa for spotting this.
(thread_pool_create): Added test to make sure pthread_create()
succeeds, and returns -1 if all the threads could not be created.
(thread_main_loop): Added test to determine if the
pthread_create() call succeeded. Warns the admin if there was a
problem, but tinyproxy will continue to run.
2002-04-15 Robert James Kaes <rjkaes@flarenet.com>
* src/anonymous.c (anonymous_insert): Now returns -1 upon error,
and 0 upon success. This simplified the code, since I don't care
whether the success is from a successful insert, or because the
string was already present in the hashmap.
(anonymous_search): The function now returns a positive number
greater than zero if the string was found, otherwise zero or a
negative value is returned. Needed to change the _one_ call to
this function to use the new return method.
* src/reqs.c (pull_client_data): Moved the common error exit
together. Better, smaller code is produced.
(add_header_to_connection): Changed the code a bit to remove the
call to strlen() and the variable associated with it.
(establish_http_connection): Changed the three calls to
write_message() and safe_write() into one combined call to
write_message().
(send_ssl_response): Replaced the three calls to safe_write() into
one call to write_message().
(extract_http_url): Moved the common error code into it's own
section and jump to it upon error.
2002-04-14 Robert James Kaes <rjkaes@flarenet.com>
* src/utils.c (chomp): Added an assert to detect a design error.
* src/reqs.c (read_request_line): Fixed the return type to be an
unsigned variable, so that we preserve a negative return value
upon an error.
* src/sock.c (readline): Added a test for allocating enough memory
for the whole_buffer.
* src/conns.h: Replaced the error boolean with a pointer to an
error string and error number for use in the
send_http_error_message() function.
* src/utils.c (indicate_http_error): Replaced the httperr()
function with this one. Instead of sending the error right away,
we store the error string and number and send them _after_ the
client headers have been processed.
2002-04-13 Robert James Kaes <rjkaes@flarenet.com>
* src/sock.c (opensock): If the Listen directive is in use, then
we should bind outgoing address to this address.
(listen_sock): Added error handling for the bind() and listen()
calls when setting up the listening socket.
2002-04-12 Robert James Kaes <rjkaes@flarenet.com>
* src/scanner.l:
* src/grammar.y: Added code for the ConnectPort directive.
* src/reqs.c (add_connect_port_allowed):
(check_allowed_connect_ports): Added these two functions (breaking
by no new features rule) because they fix a security problem with
tinyproxy. These functions are needed to support the ConnectPort
configuration directives, which allows the admin to specify which
ports are allowed by a CONNECT method. This is needed to prevent
people from using tinyproxy to connect to mail servers (port 25)
to do "bad things."
2002-04-11 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (remove_connection_headers): Moved all the code for
detecting and removing headers based on the Connection header into
this function.
(get_content_length): Moved the check for a Content-Length value
into it's own function.
(process_client_headers): Changed the code to use the newer
remove_connection_headers() and get_content_length() functions.
(process_server_headers): Rewrote this function to handle the
headers in a more consistent manner. The connection header is
handled correctly, and the content-length header is stored for
later use. Also, include a list of headers to not send.
(relay_connection): Added a test to use the
connptr->remote_content_length value if it's present.
(write_via_header): Moved the creation/modification of the Via
header into it's own function since it's used by both
process_client_headers() and process_server_headers(). I still
need to add code to allow you to "hide" the host information if
you so choose.
* src/conns.c: Added the remote_content_length variable to hold
the number of bytes the remove server is _supposed_ to send to
us. This fixes a problem where the remote server doesn't close
the connection after sending the body. Problem was reported by
James Flemer.
2002-04-10 Robert James Kaes <rjkaes@flarenet.com>
* src/Makefile.am: Removed the dependency on LIBOBJS and instead
replaced it with an ADDITIONAL_OBJECTS variable defined within the
configure script. This allows greater control over what is
compiled.
* configure.ac: Removed the AC_FUNC_LSTAT macro since it wants to
add lstat.o onto some machines. I don't think the test was really
needed anyway, so it's better to have it gone.
2002-04-09 Robert James Kaes <rjkaes@flarenet.com>
* src/anonymous.c: Changed this module to use the hashmap module
instead of it's own internal linked list. Common code is good. :)
* src/reqs.c (process_client_headers): Fixed the XTINYPROXY_ENABLE
section to actually check if xtinyproxy has been configured.
(compare_headers): Removed this function since it's been replaced
by a call to anonymous_search().
* src/acl.c (make_netmask): James Flemer cleaned up the
make_netmask() function to remove the big static table. Much
nicer now.
* configure.ac: The configure script now doesn't include a check
for the malloc.h header if tinyproxy is being compiled on an
OpenBSD machine. I might actually just remove the malloc.h header
since the malloc/calloc/realloc/free functions are supposed to be
in the stdlib.h header. I also changed the LIBOBJS="" lines to
AC_LIBOBJ() macro so conform to the new Autoconf rules.
* src/hashmap.c:
* src/vector.c: Cleaned up the include headers to _hopefully_ be
more portable. Who knows though.
2002-04-08 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_main_loop): Moved the looping code into
this function from the main() function. Just a bit of clean up.
(thread_main): Changed the default cancellation point to
asynchronous, which means immediately. This should fix up the
problem where the threads would not free correctly.
2002-04-07 Robert James Kaes <rjkaes@flarenet.com>
* src/hashmap.c:
* src/vector.c: These two "modules" are used within the reqs.c
file to better handle the headers from the clients.
* src/reqs.c: Tonnes of functions changed. The most significant
is the process_client_header() function which is now using the
hashmap functions to handle the Connection header more
accurately. With the addition of the add_header_to_connection(),
get_all_headers(), and remove_connection_headers() function, the
compare_header() function is _vastly_ simplified. Just read the
comments in the source itself for more information.
* src/conns.c: Cleaned up the initialize_conn and destroy_conn
functions to better handle error conditions.
2002-04-02 Robert James Kaes <rjkaes@flarenet.com>
* configure.ac: Patch from James Flamer which fixes a problem with
the --disable-* options and also prevents -lc_r from being
included on FreeBSD machines.
2002-01-13 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_kill_threads): Added a function to
explicitly go through all the active threads and kill them.
2002-01-07 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_main): Added code to check if tinyproxy is
being killed by the user.
2001-12-28 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_main): Added code to detect errors in the
accept() function.
2001-12-23 Robert James Kaes <rjkaes@flarenet.com>
* src/utils.c (send_http_message): Use the write_message()
function for creating and sending the headers to the client.
(httperr): Use similar code to write_message() to create the body
of the error message. I use this so that there is no limit to the
size of the error message (better coding. :) I'm still trying to
figure out how to combine this code with write_message() into a
common function.
* src/sock.c (write_message): Moved write_message() into sock.c
since it's now accessed by more than just the reqs.c file.
* src/tinyproxy.c (main): Made the error log for the idle time
setting more verbose so that it's explains the reasoning
better. Also, changed the level to WARNING.
* src/reqs.c (process_client_headers): Cleaned up the code to send
the Via header by using the write_message() function.
2001-12-22 Robert James Kaes <rjkaes@flarenet.com>
* src/tinyproxy.h: Add a test for the MSG_NOSIGNAL define, so it's
apparently a non-standard extension to send(). Also, moved the
<sys/resource.h> include after the includes for the various time
include files.
2001-12-19 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (write_message): Encapsulate code to handle sending
snprintf() built lines to a file descriptor.
(process_server_headers): Removed duplicate code and used the
return value from readline() instead of recalculating it by
strlen().
2001-12-18 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (connect_to_tunnel): Moved the tunnel connection code
into its own function.
(TUNNEL_CONFIGURED): Added a macro to help simplify the tests for
tunneling support.
2001-12-17 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (handle_connection): Also log the request when
tinyproxy is in tunneling mode. This was implemented by
Hans-Georg Bork.
2001-12-16 Robert James Kaes <rjkaes@flarenet.com>
* src/sock.c (safe_write): Add assert() calls to make sure the
arguments are sane.
* src/reqs.c (read_request_line): Ignore any blank lines if
tinyproxy is expecting a request line. This is suggested by
RFC2616 for a tolerant application.
(UPSTREAM_CONFIGURED): Added a macro to encapsulate the test for
upstream proxy support.
(establish_http_connection): Lines are now composed in a buffer
and then sent to the safe_write() function. This was done because
some sites (like www.heise.de) do not like having the request
line sent in pieces.
2001-12-15 Robert James Kaes <rjkaes@flarenet.com>
* src/sock.c (safe_write): In addition to handling "interruption"
errors, continue sending the buffer until it has been fully sent
or a fatal error occurred.
* src/anonymous.c: Removed the calls to the ternary tree and just
use a basic linked list. The ternary tree might have been slightly
faster, but since tinyproxy is only dealing with a "few" anonymous
headers the ternary tree code was _way_ overkill.
* src/sock.c (lookup_domain): Removed the DNS cache since
according to RFC2616 a HTTP client should not cache an address if
the client doesn't also respect the TTL value. tinyproxy does not
have a complete DNS resolver. Additionally, a caching DNS system
is an administrator decision which should not be included in
tinyproxy.
2001-11-25 Robert James Kaes <rjkaes@flarenet.com>
* src/buffer.c (makenewline): This function now copies the actual
data itself. This means any malloc() and free() functions are
closer together, instead of malloc()ing the data and then not
free()ing it.
(add_to_buffer): Add a new "line" to the buffer. I'm trying to
have more of the data go through the buffering code. Basically the
safe_write() function should only be called when the data needs to
be sent _now_.
(read_buffer): Fixed the code so that buffering _actually_
happens. :) The code will now buffer up to MAXBUFFSIZE bytes
(which is currently 48 KB.)
2001-11-24 Robert James Kaes <rjkaes@flarenet.com>
* configure.ac: Changed the extension of the configure.in to match
the new standard for the autoconf program. Also, replaced all the
obsolete macros with the new standard. autoconf 2.52 is now the
minimum required to process this file.
2001-11-23 Robert James Kaes <rjkaes@flarenet.com>
* src/sock.c (readline): Limit the maximum size of the buffer so
that we don't create a situation where tinyproxy could use all the
memory in a system. Right now we're limiting a line to a maximum
of 128KB.
2001-11-21 Robert James Kaes <rjkaes@flarenet.com>
* src/utils.c (chomp): Replaced the "trim()" function in reqs.c
with the new chomp() function which has similar semantics as the
chomp() function in Perl.
* src/sock.c (readline): Replaced the old function with a new
version that will allow an arbitrary long string.
2001-11-03 Robert James Kaes <rjkaes@flarenet.com>
* src/buffer.c (remove_from_buffer): This function is never
called with an empty buffer, so removed some inaccurate code which
would have removed an invalid line from the buffer if it was
empty. What was I thinking when I wrote that? Good thing is was
never called.
(add_to_buffer): Add a bit of a sanity check to make sure the
buffer structure hasn't been messed up some how.
2001-11-02 Robert James Kaes <rjkaes@flarenet.com>
* src/acl.c (insert_acl): Tightened the check regarding whether an
ACL is a string or a numeric address.
2001-10-25 Robert James Kaes <rjkaes@flarenet.com>
* Moved all the system header included into the tinyproxy.h header
and changed all the other files to include it. This should
centralize the header dependency issue into one file.
* src/conns.c: Brought back the conns.{c,h} files which contain
the connection structure definition plus the creation/destruction
routines.
* src/reqs.c (process_client_headers): Selectively send headers
based on whether we're using an upstream with a CONNECT
request. The short answer: all methods work correctly with
Upstream proxying and normal proxying.
* src/tinyproxy.h: Added a upstream flag to the conn_s structure
so we can figure out when to send headers and when not to send
headers. This is extremely important when trying to do upstream
proxying of the CONNECT method.
* src/reqs.c (relay_connection): Empty the contents of both
buffers when either socket is closed. This is more in line with
what a tunnel should do. Since either end could close with
information still in the buffers.
(connect_to_upstream): Cleaned up the code to re-use the
establish_http_connection() function.
* src/buffer.c (readbuff): Changed the memory allocation to 2K
from 48K since an Ethernet connection is usually around 1400
bytes. There's little point in allocating a huge amount of memory,
only to shrink the memory map in the next breath.
2001-10-22 Robert James Kaes <rjkaes@flarenet.com>
* src/sock.c (getpeer_string): Added logging in case the
gethostbyaddr() function fails.
* src/reqs.c (free_request_struct): Added a test to return if the
pointer is NULL.
(handle_connection): Cleaned up the code to better handle the
cause where the request is NULL.
* src/sock.c (getpeer_string):
* src/sock.c (getpeer_ip): When the DNS lookup fails, we need to
initialized the user's buffer to an empty string; otherwise, the
user's buffer will contain garbage and cause a SEGFAULT. Thanks to
Jeffrey Wheelhouse for finding this bug.
2001-10-18 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (connect_to_upstream): Moved the code needed to
rebuild the request line when using the upstream feature into it's
own function. Simplifies the handle_connection() function.
* src/buffer.c (readbuff): Fixed a problem where a full buffer
would cause the connection to be closed. Thanks to Jeffrey
Wheelhouse for helping me find this problem.
2001-09-29 Robert James Kaes <rjkaes@flarenet.com>
* configure.in: Uses any CFLAGS variable passed to the configure
script. Also, '-g -Wall' is _not_ enabled unless debugging support
is compiled in. Use --enable-static to compile a statically linked
tinyproxy.
2001-09-16 Robert James Kaes <rjkaes@flarenet.com>
* src/tinyproxy.c (main): Don't allow Tunnel and Upstream
directives to be both set in the configuration file.
* src/reqs.c (handle_connection): Added support for an upstream
proxy. What we used to use for our upstream proxy has now become a
TCP tunnel. The difference is that the upstream proxy will do
domain filtering, anonymous headers, etc. while the TCP tunnel
just sends the data without any processing. You can not have both
at the same time.
* src/utils.c (send_http_message): Instead of creating a block of
memory with the output message, just send it to the client. We
still need to process the various headers from the client, but it
will pick up the error when it's done talking to the proxy. Uses
less memory.
* src/sock.c: Moved safe_write() and safe_read() into sock.c since
I'm using them in more than just reqs.c.
2001-09-15 Robert James Kaes <rjkaes@flarenet.com>
* Removed all the log_message()s which reported that memory could
not be allocated. There's little point in reporting a memory
shortage since the computer will probably crash soon anyway.
* src/reqs.c (process_request): Added the code for showing the
stats back into the function.
* src/tinyproxy.c (takesig): When SIGHUP is received the log file
is rotated instead of being truncated. The rotated log has ".rot"
appended to the file name.
2001-09-14 Robert James Kaes <rjkaes@flarenet.com>
* src/uri.c: Removed this file since it's no longer needed.
* src/reqs.c: Split the process_method() function into separate
smaller functions. Added support for tunnel SSL connections.
* src/tinyproxy.h: Added a field to handle SSL connections.
2001-09-11 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (process_method): Fixed a memory leak due to the
change to heap allocation if there is an error.
* src/utils.c (debugging_realloc): Added the debugging version of
realloc().
* src/thread.c (THREAD_STACK_SIZE): Changed a threads stack size
to 32KB from 128KB.
* src/reqs.c (process_method):
* src/reqs.c (pull_client_data):
* src/reqs.c (process_client_headers):
* src/reqs.c (process_server_headers):
* src/buffer.c (readbuff): Using heap allocated memory for the
buffer rather than stack memory.
* src/uri.c (explode_uri): Fixed a potential memory leak where the
regular expression structure might not be freed if there was an
error in the expression.
2001-09-08 Robert James Kaes <rjkaes@flarenet.com>
* src/ternary.c (BUFARRAY & BUFSIZE): Lowered the values to help
lower memory usage. A ternary tree will now max out at 4MB.
* src/utils.c: Added debugging_(malloc|calloc|free) to help track
down memory leaks.
* src/dnscache.c (DNS_INSERT_LIMIT): Lower the number of
insertions before the ternary tree is rebuilt.
* src/thread.c (thread_main): Fixed a memory leak.
2001-09-07 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_pool_create): Explicitly set the detach
state for threads to PTHREAD_CREATE_DETACHED.
* Various error message clean up.
* src/thread.c (thread_main): Add locking around the
servers_waiting thread.
2001-09-06 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_main): The code which closes a thread
doesn't actually work correct so I've moved the test to just after
a thread has handled a connection. The code still needs to be
cleaned up to handle locking.
* src/ternary.c (ternary_destroy): Fixed the deletion code as it
would cause a segfault if it was every called. Also, lowered the
sizes of the arrays for better memory usage.
* src/dnscache.c: After a certain number of insertions delete the
DNS cache and free the memory. The reason for this is that a
ternary tree doesn't lend itself to removing individual
entries. It's just easier (and cleaner) to simply delete the cache.
2001-09-04 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (process_client_headers): Moved the skip header test
in front of the compare_header() function.
* src/ternary.c (ternary_search): Switched to doing case
insensitive searching.
* src/log.c (log_message): Thanks to NeilK for finding and fixing
a problem with the syslog code which can lead to a format string
attack.
2001-08-30 Robert James Kaes <rjkaes@flarenet.com>
* src/dnscache.c: Removed the insert_data() function and replaced
the "replace" logic in dns_insert() with a call to
ternary_replace(). This fixes the segmentation fault problem which
I introduced when I "tried" to fix the memory leak. Also changed
the LOCKing to be around the entire dnscache() again since I still
need to work out how locking should be done when accessing the
ternary tree.
* src/ternary.c (ternary_insert_replace): Renamed ternary_insert()
to ternary_insert_replace() and added a extra argument. The
function can now "replace" data already in the tree without
causing a memory leak. Added two DEFINES to make coding easier:
ternary_insert() and ternary_replace() which both call this
function with the right arguments.
* src/utils.c: Removed xstrstr() since it was only used in one
place, and could be safely replaced with strstr. I can't even
remember why we had this function to begin with.
* src/reqs.c (compare_header): Removed the call to xstrstr() since
it's been removed from the source.
2001-08-28 Robert James Kaes <rjkaes@flarenet.com>
* src/log.c (log_message): Handle a debug enabled compile better.
* src/dnscache.c (dns_insert): Fixed a memory leak if the same
information was inserted into the ternary tree twice.
* configure.in: Fixed the test regarding the REGEX library. Even
if a working REGEX was found on the system, the included REGEX was
being compiled in. Double Doh.
* src/log.c (log_message): Finally got the log levels worked out
properly. I've tested all the levels and they now produce the
correct output.
2001-08-27 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (trim): Moved the trim functionality out of
process_request() and added a test to make sure we don't back the
pointer past the beginning of the string.
* src/log.c (log_message): Fixed a problem where the connect
messages were not getting through if the log level was set to
INFO.
* src/tinyproxy.h: Moved some of the includes around so that
tinyproxy can compile correctly on FreeBSD systems.
* src/thread.c: Added the pthread_attr_t structure since we're
going to be using a non-default sized stack because some OS's have
a stack size which is too small.
* configure.in: Added a test for detecting FreeBSD's -pthread
mechanism for telling GCC to use POSIX threading.
* src/utils.c (httperr): Fixed the MIME type. Should be be
text/html, not text/mime. Fix one bug, add two new ones. Sigh.
2001-08-26 Robert James Kaes <rjkaes@flarenet.com>
* src/utils.c (httperr): Split the headers from the actual message
and include more headers like Date, Server, Content-Length,
etc. Also set the type for the error message to const char*.
* src/reqs.c (process_method): Fixed a SEGV problem if an invalid
request was submitted.
* Makefile.am (EXTRA_DIST): Don't include ./reconf in the
tarball.
* src/log.c (log_message): Fixed a problem with the new LOG_CONN
log level.
* configure.in: The debugging code was being included even on
non-debugging builds.
* src/anonymous.c (anonymous_insert): Moved the creation of the
search tree into the anonymous_insert() function. Therefore, the
search tree is _not_ created until the first insertion. This
should also fix a bug in main() where I was inserting headers
before creating the search tree. Doh.
(is_anonymous_enabled): Removed the tests for config.anon and
replaced it with a function call which returns a BOOL.
* Spell checked the ChangeLog file! :)
2001-08-25 Robert James Kaes <rjkaes@flarenet.com>
* src/thread.c (thread_main): Thanks to Hans-Georg Bork for
fixing a problem where the status of the threads was not
going back to T_WAITING if MaxRequestsPerChild was 0. Also, fixed
a problem with the looping system where the Debian
start-stop-daemon script would not stop all the threads if new
threads had been created.
* src/log.h (LOG_CONN): Added the LOG_CONN log level. This is less
verbose than LOG_INFO.
* doc/tinyproxy.8: Added the -l option to the list of command line
options.
* src/anonymous.c (anon_insert): Fixed a bug where anonymous
filtering wasn't working even if it was specified in the
configuration file.
2001-07-02 Robert James Kaes <rjkaes@flarenet.com>
* src/tinyproxy.c (versiondisp): Added George Talusan to the
copyright message. Also now include the target system name to the
version message.
2001-06-06 Robert James Kaes <rjkaes@flarenet.com>
* configure.in: Total reorganization.
2001-06-04 Robert James Kaes <rjkaes@flarenet.com>
* configure.in: Remove the --with-* for port, logfile, and user
since the configuration file handles this now. Fixed a problem
where we were testing for the libraries correctly, but not
actually including them in the linking.
2001-06-02 Robert James Kaes <rjkaes@flarenet.com>
* doc/tinyproxy.conf: Clarified the LogLevel directive.
* configure.in: Fixed up the tests for libsocket, libnsl, and
libresolv. Also improved the test for the yacc program since I
used bison 1.25 to originally write it. Updated the list of
headers to look for when configuring. Bumped up the version.
2001-06-01 Robert James Kaes <rjkaes@flarenet.com>
* configure.in: Fixed a problem when using the --with-port= config
* src/tinyproxy.c (main): Change the logging level from LOG_EMERG
(which doesn't exist anymore) to LOG_CRIT.
* src/scanner.l: Added the strings in the data structure to handle
the LogLevel switch.
* src/log.c (set_log_level): Code for handling selective logging.
* src/grammar.y: Added the tokens and code for handling the
LogLevel switch in the configuration file.
* configure.in: Added a test for the resolv library for the
gethostby* functions. Also bumped up the pre-version.
2001-05-26 Robert James Kaes <rjkaes@flarenet.com>
* src/tinyproxy.c (main): Added code to stop the creation of core
files.
* src/reqs.c (process_method): Fixed a memory leak.
(relay_connection): Cleaned up the code to remove some unneeded
variables and removed redundant code.
* src/log.c (log_message): Renamed "log()" function to
log_message().
* src/dnscache.c (new_dnscache):
* src/anonymous.c (new_anonymous): Fixed the return type.
2001-01-15 12:13 rjkaes
* configure.in: Bumped up the pre version number
2001-01-15 12:11 rjkaes
* ChangeLog, src/reqs.c, src/stats.c: Fixed more potential overflow
bugs.
2001-01-15 12:06 rjkaes
* ChangeLog, src/utils.c: Fixed a potential security bug in
http_err. There was a possibility of a heap overflow exploit.
2001-01-02 14:30 rjkaes
* src/scanner.l: Fixed a bug where the ':' character was not being
properly detected.
2000-12-09 15:03 rjkaes
* configure.in: Rolling out the first pre to 1.4.0
2000-12-08 21:35 rjkaes
* src/thread.c: Implemented the MaxRequestsPerChild directive.
2000-12-07 22:35 rjkaes
* ChangeLog: Updated changelog
2000-12-07 22:35 rjkaes
* src/: thread.c, tinyproxy.c: Fixed a problem with polling for the
number of active threads. No longer polls. :)
2000-11-22 23:49 rjkaes
* src/ternary.c: Fixed MACRO error.
2000-11-22 23:46 rjkaes
* src/tinyproxy.c: Fixed spelling mistake.
2000-11-22 23:46 rjkaes
* src/: filter.c, filter.h, reqs.c: Changed the filter_host command
to filter_url.
2000-10-23 17:47 rjkaes
* ChangeLog: Updated Information.
2000-10-23 17:46 rjkaes
* src/ternary.c: In the Key Found code, don't display the string in
the debug code since it doesn't exist anymore when we display it.
Doh!
2000-10-23 17:44 rjkaes
* src/tinyproxy.c: Added the initialization section for the DNS and
Anonymous sub systems.
2000-10-23 17:43 rjkaes
* src/: anonymous.c, anonymous.h: Added the new_anonymous
initialize routine
2000-10-23 17:42 rjkaes
* src/: dnscache.c, dnscache.h: Added the new_dnscache routine to
initialize the Ternary tree. Also, removed the garbage collection
routine.
2000-09-26 01:00 rjkaes
* ChangeLog: Updated documentation.
2000-09-26 00:59 rjkaes
* src/dnscache.c: Fixed the insert function to handle a failed
insert properly.
2000-09-26 00:59 rjkaes
* src/: ternary.c, ternary.h: Added the TE_EXISTS return code, and
cleaned up the ternary_destroy function.
2000-09-26 00:58 rjkaes
* src/: tinyproxy.h, utils.h: Moved the safefree() macro to the
tinyproxy.h header.
2000-09-26 00:57 rjkaes
* src/: acl.c, reqs.c: Updated the free() calls to the safefree()
calls.
2000-09-21 12:58 rjkaes
* ChangeLog: Updated documentation.
2000-09-21 12:57 rjkaes
* src/tinyproxy.c: There is no LOG_EMERG level, so changed to
LOG_CRIT.
2000-09-21 12:53 rjkaes
* src/: log.c, log.h: Added the LOG_NOTICE level.
2000-09-15 16:58 rjkaes
* src/: grammar.c, grammar.h, scanner.c: These are generated by
grammar.y and scanner.l respectively, don't include them in the
CVS.
2000-09-15 16:57 rjkaes
* src/stamp-h.in: Automatically generated file.
2000-09-15 16:55 rjkaes
* src/Makefile.in, doc/Makefile.in: Don't include automatically
generated files.
2000-09-15 16:53 rjkaes
* install-sh, missing, mkinstalldirs: Don't included automatically
generated files.
2000-09-15 16:52 rjkaes
* Makefile.in, config.guess, config.sub, configure: Flipping again.
:) Don't include any of the automatically generated stuff.
2000-09-14 12:41 rjkaes
* ChangeLog, configure.in, src/tinyproxy.h: Need to do a check for
the <stdint.h> header since it's not a standard header available on
all systems.
2000-09-12 14:10 rjkaes
* Makefile.in, doc/Makefile.in, src/Makefile.in: Again, needed for
configure script. Automatically built by ./reconf
2000-09-11 20:45 rjkaes
* config.guess, config.sub: Needed for running configure.
Automatically built with reconf
2000-09-11 20:43 rjkaes
* configure: Can be made from configure.in (and should be), but I
want to be able to check out the source and immediately configure
it.
2000-09-11 20:22 rjkaes
* doc/tinyproxy.conf: Example tinyproxy configuration file.
2000-09-11 20:21 rjkaes
* ChangeLog: We all know what this is. :)
2000-09-11 20:20 rjkaes
* acinclude.m4: A M4 macro for finding the various types on the
system (typedefs, etc.)
2000-09-11 20:18 rjkaes
* Makefile.am, acconfig.h, configure.in: New defaults, and better
checking for various features needed by tinyproxy. Looks like fun!
:)
2000-09-11 20:16 rjkaes
* AUTHORS, BUGS, INSTALL, README, THANKS: Just updating the
documentation.
2000-09-11 20:12 rjkaes
* src/: grammar.c, grammar.h, grammar.y, scanner.c, scanner.l:
These all handle reading the tinyproxy configuration file.
2000-09-11 20:10 rjkaes
* src/: ternary.c, ternary.h: Generalized the ternary code which
was already being used in anonymous.* now it can be used (and is
used) in both anonymous and dnscache
2000-09-11 20:08 rjkaes
* src/: acl.c, acl.h: Improved access control semantics. Allows
for a finger control for allowing and denying hosts.
2000-09-11 20:07 rjkaes
* src/: thread.c, thread.h: tinyproxy now uses a pool of threads to
handle connections. All the work for creating new threads, deleting
old thread, and generally managing the pool is done here.
2000-09-11 20:06 rjkaes
* src/: stats.c, stats.h: This module handles the various stats
relating to tinyproxy's functionality.
2000-09-11 20:04 rjkaes
* src/: reqs.c, reqs.h: MAJOR RE-WRITE! Read the ChangeLog and look
at the source. It's shorter than re-documenting the changes here. :)
2000-09-11 20:03 rjkaes
* src/: tinyproxy.c, tinyproxy.h: Fixed the change user/group
ability. Log when tinyproxy is using default values rather than
specific ones. Cleaned up the command line arguments since
tinyproxy now uses a configuration file. Removed the USR1 signal
and added the thread creation code.
2000-09-11 20:01 rjkaes
* src/: utils.c, utils.h: Removed the xmalloc() and xstrdup()
functions. Added the pidfile_create() function. Added the OpenBSD
style strlcat() and strlcpy() functions.
2000-09-11 19:57 rjkaes
* src/: uri.c, uri.h: Switched to the new logging style and
replaced the xmalloc() with straight malloc().
2000-09-11 19:56 rjkaes
* src/: sock.c, sock.h: Needed locking in getpeer_string(). Added
mutex locking around the dnscache() call. Removed the global
sockaddr and setup_fd variables. Added the socket_blocking() and
socket_nonblocking() functions. Gutted the readline() function and
replaced it with something similar to the 1.0 version. :)
2000-09-11 19:50 rjkaes
* src/regexp.h: Moved back to the <config.h> for autoconf defines.
2000-09-11 19:47 rjkaes
* src/: log.c, log.h: Cleaned up the logging format, and also
included logging levels (which are similar to the syslogd format.)
2000-09-11 19:46 rjkaes
* src/gnuregex.c: Not using <defines.h> for autoconf anymore, so
move back to the <config.h> format.
2000-09-11 19:43 rjkaes
* src/: filter.c, filter.h: Just using standard malloc() since the
xmalloc() didn't really add anything useful to the command.
2000-09-11 19:42 rjkaes
* src/: dnscache.c, dnscache.h: Removed the custom hash routines.
Using the ternary module instead.
2000-09-11 19:41 rjkaes
* src/: buffer.c, buffer.h: Cleaned up the source so that the
internal structure is no exposed by the buffer.h header.
2000-09-11 19:38 rjkaes
* src/: anonymous.c, anonymous.h: Removed the ternary tree code
from these files and made it a separate module.
2000-09-11 19:37 rjkaes
* src/Makefile.am: Modified to include all the files needed to
build tinyproxy, plus the special targets for building the LEX and
YACC files. (Also included the GNU license.)
2000-09-11 19:33 rjkaes
* doc/tinyproxy.8: Since the tinyproxy program has changed, the
manual had to change as well. Documents all the command line
arguments, though I think I need to document the configuration file
as well.
2000-09-11 19:32 rjkaes
* doc/: Makefile.am, TODO: Updated to reflect the new reality of
the tinyproxy source code.
2000-09-11 19:31 rjkaes
* doc/CONFIG: This was the layout for the purposed config file.
This is no more.
2000-09-11 19:27 rjkaes
* INSTALL.configure: This was the generic INSTALL file, but the
INSTALL file itself is again the generic file. :)
2000-09-11 19:24 rjkaes
* src/: config.h, conns.c, conns.h: These files are no longer used
within tinyproxy.
2000-06-06 13:58 rjkaes
* ChangeLog: Reflect changes made in source.
2000-06-06 13:56 rjkaes
* doc/tinyproxy.8: Fixed the links for finding tinyproxy. Thanks to
Simon Baker for pointing this out.
2000-04-26 12:31 rjkaes
* ChangeLog, src/dnscache.c, src/uri.c: Reorganized (or added) the
#include <sys/types.h> line so tinyproxy would compile cleanly on
FreeBSD systems.
2000-03-31 17:55 rjkaes
* ChangeLog, src/reqs.c: Fixed a bug with the path in clientreq. If
the path was empty it caused a malformed request to be sent.
2000-03-31 15:15 rjkaes
* ChangeLog: A whole whack of changes and bug fixes.
2000-03-31 15:14 rjkaes
* src/Makefile.am: Added a line for the anonymous.* files.
2000-03-31 15:14 rjkaes
* src/config.h: Changed the socket time out to 10 secs.
2000-03-31 15:13 rjkaes
* src/reqs.c: Updated the anonheader function to use the new
anonymous API. Removed the hack for the POST method in clientreq.
2000-03-31 15:10 rjkaes
* src/sock.c: Completely rewrote the readline function.
2000-03-31 15:09 rjkaes
* src/: buffer.c, buffer.h: Added the working_* fields as a scratch
pad for readline().
2000-03-31 15:08 rjkaes
* src/: tinyproxy.c, tinyproxy.h: Removed the allowedhdr_s
structure since it is now accessed through anonymous.*
2000-03-31 14:56 rjkaes
* src/: anonymous.c, anonymous.h: Moved the anonymous header code
into it's own file to make it easier to update.
2000-03-29 11:19 rjkaes
* ChangeLog: Updated to list changes in src/reqs.c and
src/dnscache.c
2000-03-29 11:18 rjkaes
* src/dnscache.c: Included the <sys/types.h> header.
2000-03-29 11:17 rjkaes
* src/reqs.c: Fixed a bug with the clientreq function which was
incorrectly setting the clientheader flag and causing _all_ headers
to be sent even in anonymous mode.
2000-03-28 11:44 rjkaes
* ChangeLog: Updated ChangeLog entry for new fix.
2000-03-28 11:41 rjkaes
* src/reqs.c: Fixed another NULL bug with the uri->authority. If an
badly formed request was made in the form of
http:\\www.somewhere.com/ tinyproxy would SEGV. This has been
corrected.
2000-03-28 11:21 rjkaes
* ChangeLog: Updated to reflect changes in src/reqs.c
2000-03-28 11:19 rjkaes
* src/reqs.c: Fixed a NULL pointer bug in clientreq. If the SCHEME
in the URL was NULL the program would SEGV. This was caused by the
error logging code.
2000-03-12 19:56 rjkaes
* src/config.h: Remove the defines for DEFAULT_* and UPSTREAM
(they've been moved into acconfig.h and configure).
2000-03-12 19:55 rjkaes
* ChangeLog: List all the changes which has occurred on the program.
2000-03-11 15:43 rjkaes
* acconfig.h: Added the support for the upstream proxy and also
made the defaults for the LOGFILE, USER, and PORT.
2000-03-11 15:37 rjkaes
* src/: dnscache.c, reqs.c, tinyproxy.c, tinyproxy.h: Included the
changes needed to re-add the upstream proxy option.
2000-03-11 15:36 rjkaes
* doc/tinyproxy.8: Updated the manual to reflect all the options,
plus provide additional information concerning the changes made to
some of the options.
2000-03-11 15:35 rjkaes
* configure.in: Re-ordered some of the arguments. Included the
support for the Upstream Proxy.
2000-03-11 15:34 rjkaes
* src/: Makefile.in, defines.h.in: Once again, these files are made
automatically, don't include them.
2000-03-11 15:33 rjkaes
* doc/Makefile.in: Again, the file is generated automatically, so
don't include it.
2000-03-11 15:32 rjkaes
* Makefile.in, aclocal.m4, configure: These files are generated by
reconf, so don't include them in the CVS.
2000-02-16 12:32 sdyoung
* AUTHORS, COPYING, ChangeLog, INSTALL, Makefile.am, Makefile.in,
NEWS, README, THANKS, aclocal.m4, BUGS, INSTALL.configure,
acconfig.h, configure, configure.in, install-sh, missing,
mkinstalldirs, reconf, src/Makefile.am, src/Makefile.in,
src/defines.h.in, src/stamp-h.in, src/filter.c, src/buffer.c,
src/buffer.h, src/config.h, src/conns.c, src/conns.h,
src/dnscache.c, src/dnscache.h, src/gnuregex.c, src/log.c,
src/log.h, src/reqs.c, src/reqs.h, src/sock.c, src/sock.h,
src/tinyproxy.c, src/tinyproxy.h, src/uri.c, doc/Makefile.am,
doc/Makefile.in, doc/TODO, src/filter.h, src/gnuregex.h,
src/regexp.h, src/uri.h, src/utils.c, src/utils.h, doc/CONFIG,
doc/HTTP_ERROR_CODES, doc/RFC_INFO, doc/report.sh, doc/tinyproxy.8:
Initial revision
2000-02-16 12:32 sdyoung
* AUTHORS, COPYING, ChangeLog, INSTALL, Makefile.am, Makefile.in,
NEWS, README, THANKS, aclocal.m4, BUGS, INSTALL.configure,
acconfig.h, configure, configure.in, install-sh, missing,
mkinstalldirs, reconf, src/Makefile.am, src/Makefile.in,
src/defines.h.in, src/stamp-h.in, src/filter.c, src/buffer.c,
src/buffer.h, src/config.h, src/conns.c, src/conns.h,
src/dnscache.c, src/dnscache.h, src/gnuregex.c, src/log.c,
src/log.h, src/reqs.c, src/reqs.h, src/sock.c, src/sock.h,
src/tinyproxy.c, src/tinyproxy.h, src/uri.c, doc/Makefile.am,
doc/Makefile.in, doc/TODO, src/filter.h, src/gnuregex.h,
src/regexp.h, src/uri.h, src/utils.c, src/utils.h, doc/CONFIG,
doc/HTTP_ERROR_CODES, doc/RFC_INFO, doc/report.sh, doc/tinyproxy.8:
Initial CVS checking of tinyproxy - version 1.3.2.
|