github
/
aria2
mirror of https://github.com/aria2/aria2
1
0
Fork 0
Code Issues Releases Wiki Activity
4,425 Commits
9 Branches
152 Tags
63 MiB
Commit Graph

4425 Commits (1da3af8869517f729d269ee87c1c0870de38f864)

Author SHA1 Message Date
Nils Maier 047b49b7a0 Cleanup HttpHeaderProcessor::parse 2014-05-27 19:46:54 +02:00
Nils Maier d72df551ba Document setUri() in FileEntry does not need to check the return value. 2014-05-27 19:10:14 +02:00
Nils Maier 15cb9e12b2 Remove unused variable in LibgcryptMessageDigestImpl 2014-05-27 19:10:14 +02:00
Nils Maier fd8dc921fe Initialize DownloadEngine::tokenAverageDuration_ to something. 2014-05-27 19:10:14 +02:00
Nils Maier f8db60e54e OSX: Use F_NOCACHE instead of F_GLOBAL_NOCACHE 
The latter persists for the lifetime of the file, while the former
affects only the current descriptor.
 2014-05-26 21:34:49 +02:00
Nils Maier dd8e4b0ad0 Remove spurious CXX11_OVERRIDE to make cov-build happy. 2014-05-26 01:34:26 +02:00
Nils Maier a82f08765e Fix (unknown length) downloads larger than 2GiB 
Closes #215
 2014-05-25 14:49:29 +02:00
Nils Maier 64b1fefb78 Add missing include in util_security.h 
Fixes #231
 2014-05-23 18:44:10 +02:00
Nils Maier f7cc24d6cf Internally use HMAC in http auth 
To at least get constant time compare.
Also fix incorrect parsing of the creds (were incorrectly stripped).
Also add unit tests.
 2014-05-22 15:24:20 +02:00
Nils Maier d02ee723bd Improve aria2.rst and usage texts a bit. 
(Keep in mind that I'm not a native speaker either)
- Fix some typos.
- Fix some grammar stuff.
- Clarify some things.
- Add a new paragraph or two...
 2014-05-20 18:02:47 +02:00
Nils Maier 17f03e8f29 Fix some typos in README.rst 2014-05-20 12:54:29 +02:00
Nils Maier 855dfa0e2f Authorize RPC multicalls only once. 
Cache the auth status afterwards and just assume the token still matches
(within the same request, of course).
 2014-05-20 12:53:39 +02:00
Nils Maier 88b61f2eb9 Adjust RPC token processing time 
Make it consume a bit less time.
 2014-05-20 12:53:38 +02:00
Nils Maier bb50de1336 Improve write cache failures error reporting 2014-05-20 12:52:26 +02:00
Nils Maier fd3348cc88 Use -pipe when GCC 2014-05-20 12:50:56 +02:00
Nils Maier 5c07f0109e Fix F_PREALLOC based allocation on some OSX versions 2014-05-08 16:40:09 +02:00
Nils Maier 1dd7409c4e Fix unused function warning about generateRandomDataUrandom in mingw-w64 2014-05-08 16:38:32 +02:00
Nils Maier a0f275a9f1 Remove unused function getWin32Handle 2014-05-08 16:38:32 +02:00
Tatsuhiro Tsujikawa f60e55cece Use index.html as filename for conditional-get when file is missing in URI 
Previously we disabled conditional-get if file part is missing in URI.
But we use constant string "index.html" in this case, so we can do the
same to determine the modification time.  In this patch, if we have
file part in URI, we are not going to set absolute file path in
FileEntry, since it prevents content-disposition from working.
 2014-05-08 21:49:04 +09:00
Tatsuhiro Tsujikawa 84f1a15e10 Check negative number from Integer::i() where it is not allowed 2014-05-01 11:34:27 +09:00
Tatsuhiro Tsujikawa 4c2ad69a75 Ignore negative metadata size in extended handshake 2014-04-30 23:46:27 +09:00
Tatsuhiro Tsujikawa 6c3a33d958 Merge branch 'master' of github.com:tatsuhiro-t/aria2 2014-04-27 23:26:51 +09:00
Tatsuhiro Tsujikawa 6020756d2e Always add README.html to dist_doc_DATA 
rst2html is required to produce README.html from README.rst.  We
include generated README.html to distribution.  And rst2html is not
required when compiling sources in distribution and always README.html
is available.
 2014-04-27 23:24:23 +09:00
Nils Maier 82dad90ff3 Validate token using PBKDF2-HMAC-SHA1. 
This change should make token validation more resilient to:
 - timing attacks (constant time array compare)
 - brute-force/dictionary attacks (PBKDF2)

 Closes #220
 2014-04-19 19:10:06 +02:00
Nils Maier 98ba096951 Add util::security (compare, HMAC, PBKDF2) 
See #220
 2014-04-19 19:07:38 +02:00
Nils Maier 37a84182b7 makerelease-osx: Do not build universal by default 2014-04-18 20:03:05 +02:00
Nils Maier cd204ff525 Add --disable-websocket 2014-04-17 18:02:42 +02:00
Nils Maier 010131161e Remove ENABLE_MESSAGE_DIGEST, since we got the internal md, always 2014-04-17 18:02:42 +02:00
Nils Maier befd799d17 configure: Do not check for nettle/gcrypt when appletls or wintls 2014-04-17 18:02:42 +02:00
Tatsuhiro Tsujikawa 67aa993ca9 Enable wintls by default and remove its experimental status 2014-04-17 22:28:29 +09:00
Tatsuhiro Tsujikawa 83691981e3 mingw32: Enable wintls and compile with GMP 
By enabling wintls, we can use Windows certificate store to validate
server's certificate.  Previously, we built windows build using
openssl and since we don't bundle CA certificates, aria2 fails to
validate server's certificate unless user setups their CA
certificates.  GMP provides fast big integer calculations, whic is
used in BitTorrent encryption.
 2014-04-15 23:02:45 +09:00
Nils Maier e4135ca669 Fix typo: BitTorr(r)ent 2014-04-13 18:51:07 +02:00
Nils Maier aa02545fba Use mpz_pown_sec where available 2014-04-13 18:51:06 +02:00
Nils Maier ead6685b18 Warn (or error with explicit --with-libgmp) if gmp is not actually found 2014-04-13 18:51:06 +02:00
Nils Maier b223bbf308 makerelease-osx: GMP --enable-fat 2014-04-13 18:51:06 +02:00
Nils Maier 7e4644927f makerelease-osx: Explicitly put arch include and lib into flags. 
For libgmp
 2014-04-13 18:51:06 +02:00
Nils Maier c694a05797 Fix some warnings 2014-04-13 18:51:05 +02:00
Nils Maier 18c35f56b8 AppleTLS: Enable BEAST mitigations in ST 
Only available in 10.9+, but since we might be building on a previous
version but running on 10.9+, always try to set the option.
 2014-04-13 18:51:05 +02:00
Nils Maier e195dc5f00 AppleTLS: Update cipher suites 
Also make the suite selection more sane.
 2014-04-13 18:51:05 +02:00
Nils Maier 39d66bd560 WinTLS: Improve error reporting 2014-04-13 18:51:05 +02:00
Nils Maier 51beb4bfa7 WinTLS: Move some defines out of the header 2014-04-13 18:51:04 +02:00
Nils Maier 219fd5b4b7 WinTLS: Make ca-file rejection a warning 2014-04-13 18:51:04 +02:00
Nils Maier 8d55e30561 WinTLS: Use SCH_USE_STRONG_CRYPTO 
See: #217
 2014-04-13 18:50:54 +02:00
Nils Maier 0a51b8d172 WinTLS: Accept chains with no revocation information. 
This is kind what browser do anyway (IE, Firefox, Chrome tested), what
AppleTLS does, what GnuTLS does and what OpenSSL does. Actually, most
browsers will also be OK with the CRL/OCSP provider being offline.
WinTLS will still fail in that case.

Should revocation information be available in the trust chain (CRL or
OCSP) the certificate still will be checked!

"Real" CAs, aka. those provided by the OS or system CA bundle, usually
provide revocation information and are thus still checked.
It should be mostly (only?) custom (organization) CAs that lack
revocation information, but those users might want to use aria2 in their
intranets and VPNs anyway ;)

See #217
 2014-04-13 18:50:38 +02:00
Nils Maier 13a202df07 Fix GnuTLS 2.x compatiblity 
Closes GH-216
 2014-04-12 02:55:31 +02:00
Nils Maier 2d9bf0f374 AppleTLS: Use newer, non-deprecated API in 10.8+ 2014-04-12 02:55:31 +02:00
Nils Maier 7600886d3d Implement falloc equivalent in OSX 2014-04-12 02:55:31 +02:00
Tatsuhiro Tsujikawa a95674aef3 Update doc 2014-04-09 23:30:44 +09:00
Tatsuhiro Tsujikawa e5db3a4cbb Update NEWS 2014-03-30 18:22:09 +09:00
Tatsuhiro Tsujikawa 305ef84e5d Bump up version number to 1.18.5 2014-03-30 18:20:32 +09:00