Commits


got-notify-http: use a UNIX timestamp for the date Was suggested by Lucas some time ago. ok stsp@ with a tweak in the manual.


Use got_pkt_readlen() to parse pkt-lens.


rename a function to avoid gramatical ambiguity


ensure that test_unstage_directory calls test_done on success


make test_stage_directory pass and actually hook it up to regress runs


require -R option for staging or unstaging directory contents -R is needed on almost all other commands so this makes things consistent. Patch by Lorenz (xha)


make got-fetch-http pass "done\n" through rather than faking it Without this we exit the loop early and got-fetch-pack sees unexpected end-of-file on stdout trying to write its final "done\n" message. ok op@


show path of got-fetch-http in execv error message


make got-notify-email log warnings and errors to syslog


Move pkt-len parsing to a separate got_pkt_readlen() function so we can reuse it in other places like got-fetch-http later. ok op@ stsp@


got-notify-http: fix I/O with TLS tls_write() may return TLS_WANT_READ. In that case, we're stuck trying to read while we have the request still in the buffer. So, we have to retry bufio_write() regardless of the POLLIN/POLLOUT state. We'd need this only in the TLS case, but in practice it doesn't harm for the plaintext case too. In fact, we're either waiting to flush the request or we're only reading the server reply. ok stsp


sort includes in got-notify-http; suggested by op@


send got-http-notify error output to syslog ok op@


set a default port for http notifications if not specified in gotd.conf ok op@


make it harder to leak notification credentials over plaintext HTTP ok op@


http-server: send $res in wrong method case


fix previous; pledge("stdio") must wait until after the TLS handshake


use pledge("stdio") late in got-fetch-http, currently as early as possible


remove dead code under DEBUG_HTTP; ok op@


use unveil to restrict filesystem access of got-fetch-http With HTTPS we only need to be able to read /etc/ssl/cert.pem. With plaintext HTTP no filesystem access is needed at all.


can drop "rpath" pledge in got-fetch-http if plaintext HTTP is being used


attempt to kill http-server when tests exit abnormally


fix test dir name


add a basic HTTP test for 'got send', expecting failure


add a basic test for HTTP protocol used with 'got fetch'