8323eb38c9
Make UtilRandomString() more secure.
...
Two ways this is more secure:
1. The seed is only generated once, not every time the function is called.
2. All threads share the same seed, which means timing attacks aren't
possible.
Because we are using a mutex, performance may suffer slightly.
2023-01-07 00:18:44 +00:00
7cd9fe8bd7
Fix log output by changing __FILE__
2023-01-06 23:00:18 +00:00
ea1828e95e
Fix warning in RouteRegister.c
2023-01-06 21:54:33 +00:00
7bda319f39
Format code
2023-01-06 21:18:44 +00:00
c63715c2e7
Update TODO
2023-01-06 21:17:55 +00:00
c48d666899
Add note on documenting patches.
2023-01-06 19:54:44 +00:00
1282371680
Fix "bad pointer" warnings.
2023-01-06 18:50:31 +00:00
fe57f07fee
Add onion location. We're on Tor now.
2023-01-04 01:07:48 +00:00
b753d58171
Apply #41
2023-01-03 13:01:22 +00:00
6960743e43
Apply #40
2023-01-03 04:01:03 +00:00
8e2399e648
Fix bug on some platforms that use unsigned characters.
2023-01-02 18:22:04 +00:00
d969f4d053
Fix visual bugs in MemoryHexDump()
2023-01-02 04:12:12 +00:00
5c5aab71d8
Fix bug in UserInteractiveAuth()
2023-01-02 03:56:27 +00:00
e9aebab221
Move hex dump logic to Memory API.
2023-01-01 22:10:23 +00:00
69862a1e6e
Use -ansi in compiler flags. I think this more well supported.
2023-01-01 21:16:20 +00:00
d9d88eb028
Periodically purge old user interactive auth sessions.
...
Keeping them around is going to take up a lot of storage. If it takes more
than a half hour for a client to complete the auth, make him start over.
2022-12-28 15:52:19 +00:00
fbd7bf5944
Fix memory leak in DbDelete()
2022-12-28 15:44:21 +00:00
1a43ea6470
Fix bugs in Cron
2022-12-26 16:28:58 +00:00
3c8d89a52e
Update copyright year
2022-12-26 15:52:52 +00:00
c9e42ff813
Break out UserInteractiveAuth into its own header.
...
We'll need this because user interactive auth will get complicated and
messy very soon.
2022-12-26 15:48:21 +00:00
dbecb28395
Update changelog
2022-12-24 23:41:50 +00:00
4f48f9a5cc
Document Cron
2022-12-24 23:07:46 +00:00
c18a9a96e6
Add job scheduler.
...
This will be used for expiring sessions and tokens, among other things that
need to happen periodically.
2022-12-24 21:49:37 +00:00
be2e267064
Turns out I don't need to do that.
2022-12-24 01:31:22 +00:00
61e9cdbea3
Check INT_WIDTH and LONG_WIDTH... stupid GNU libc.
2022-12-24 01:00:36 +00:00
eeabe93e3f
Revert using _POSIX_C_SOURCE.
...
It didn't fix the issue.
2022-12-24 00:51:49 +00:00
2d1bfd8b74
Define _POSIX_C_SOURCE again.
2022-12-23 22:53:48 +00:00
25dcff06a8
Fix type issues.
2022-12-19 23:25:37 +00:00
72bfa34bcd
Fix overflow on some platforms
2022-12-19 22:25:49 +00:00
b8027e1aaf
Fix compiler warning on some platforms.
2022-12-19 22:21:24 +00:00
94493e6ad8
Add Sha2
2022-12-19 22:15:41 +00:00
88a11650cf
Formatting.
2022-12-19 21:54:01 +00:00
c0bd70a391
Add MatrixUserValidate() and MatrixHistoricalUserValidate()
2022-12-18 20:20:08 +00:00
f32e5eafce
This release is getting too big to be 0.1.1
2022-12-18 20:11:32 +00:00
c15895ae06
Username is technically optional.
2022-12-17 02:12:04 +00:00
70c3d01125
Finish route param and request body validation
2022-12-17 00:08:31 +00:00
f837988156
Begin work on validating registration request.
2022-12-16 22:56:35 +00:00
53846b0994
Document MatrixAuthenticate and MatrixRateLimit
2022-12-16 22:15:50 +00:00
836b61dc42
Begin implementing a few helper functions
2022-12-16 22:06:01 +00:00
9a31b1f350
Document user interactive authentication function
2022-12-16 20:52:55 +00:00
fb06d17b16
Abstract user interactive auth out to function.
2022-12-16 20:08:16 +00:00
7ee31ad36b
Copy diagram from scrap paper into code for clarity.
2022-12-15 22:14:16 +00:00
1273d87df9
Finish user interactive logic (still need to abstract it out)
2022-12-15 22:04:30 +00:00
f475cac601
More validation in user-interactive API
2022-12-15 21:47:08 +00:00
7d8cec8185
Persist session IDs for future calls.
2022-12-15 20:41:56 +00:00
449851a67e
Format code
2022-12-15 20:31:51 +00:00
bee07d90fc
Fix memory leaks in database.
2022-12-15 20:29:19 +00:00
afa0d89e40
Fix links in download table
2022-12-15 20:28:42 +00:00
c3618488f2
Hexdump leaked memory to the log for debugging.
2022-12-15 20:18:12 +00:00
cc6ae2dbd3
Prevent directory traversals by replacing dots and slashes.
2022-12-15 16:07:45 +00:00
