stv0g/libwebsockets
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
2143 commits 16 branches 48 tags 17 MiB
Commit graph

6 commits

Author SHA1 Message Date
Andy Green
2b9fff73f9 boilerplate: add back missing Lesser that cut-and-pasted itself around 2017-04-06 23:01:34 +08:00
Andy Green
a496700b3a lws_snprintf 
Thanks to Fabrice Gilot for reporting the problem that led to uncovering this.

Due to a misunderstanding of the return value of snprintf (it is not truncated according
to the max size passed in) in several places relying on snprintf to truncate the length
overflows are possible.

This patch wraps snprintf with a new lws_snprintf() which does truncate its length to allow
the buffer limiting scheme to work properly.

All users should update with these fixes.
 2016-09-15 02:22:57 +08:00
Andy Green
b8199ba4ab generic-table: format-security 
https://github.com/warmcat/libwebsockets/issues/624
 2016-09-10 04:54:20 +08:00
Andy Green
d11bee7fc5 coverity 169274 - lwsgt dirlisting ignore files that cant be statted 2016-08-28 09:44:15 +08:00
Andy Green
e35d91a860 per-vhost headers and lwsws conf support 
This l;ets you add per-vhost arbitrary headers on served files, eg

     "headers": [{
        "X-Content-Type-Options": "nosniff",
        "X-XSS-Protection": "1; mode=block",
        "x-frame-options": "SAMEORIGIN"
        }],
 2016-08-27 17:07:06 +08:00
Andy Green
722cc4a366 plugin table dirlisting 2016-07-14 08:57:28 +08:00