kmx git

Commit	Date	Message
112421c8	2024-12-29T18:49:06	Fix potential NULL dereference in evdns_cache_lookup() evutil_new_addrinfo_() returns NULL in some cases, and its return value is always checked for NULL.
1759485e	2024-12-20T15:56:10	Improve portability on NetBSD According to GCC documentation, "the various `-std` options disable certain keywords". This change adheres to GCC's recommendation by replacing the `typeof` keyword with its alternative, `__typeof__`.
c4ea8028	2025-02-01T14:09:10	build(deps): bump the github-actions group across 1 directory with 2 updates Bumps the github-actions group with 2 updates in the / directory: [coverallsapp/github-action](https://github.com/coverallsapp/github-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.3.4 to 2.3.6 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/cfd0633edbd2411b532b808ba7a8b5e04f76d2c8...648a8eb78e6d50909eff900e4ec85cab4524a45b) Updates `github/codeql-action` from 3.27.5 to 3.28.8 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/f09c1c0a94de965c15400f5634aa42fac8fb8f88...dd746615b3b9d728a6a37ca2045b68ca76d4841a) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
9a6a799e	2024-12-02T17:28:02	ci: Test Autotools build on FreeBSD 14.1 CMake builds are already tested on FreeBSD 13.4 and 14.1. This change extends testing with Autotools to include FreeBSD 14.1.
5bfb2ae8	2024-12-01T14:47:11	build(deps): bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.27.0 to 3.27.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/662472033e021d55d94146f66f6058822b0b39fd...f09c1c0a94de965c15400f5634aa42fac8fb8f88) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
a2ed23b1	2024-11-24T23:32:04	Replace deprecated find_package(PythonInterp) with Python2/Python3 Fixes: #1751
cf557113	2024-11-25T01:22:24	Merge pull request #1752 from hebasto/241116-cmake-version cmake: Update minimum required version
e36398f1	2024-11-16T21:35:53	cmake: Remove redundant policy settings The `cmake_minimum_required(VERSION 3.10)` command implicitly sets the following policies to NEW by default: - CMP0042 (introduced in CMake 3.0) - CMP0054 (introduced in CMake 3.1) - CMP0068 (introduced in CMake 3.9)
2d7a3b9b	2024-11-16T21:26:55	cmake: Update minimum required version Compatibility with versions of CMake older than 3.10 is now deprecated and will be removed from a future version. See: https://cmake.org/cmake/help/v3.31/release/3.31.html
78eb3059	2024-11-02T21:41:32	Fix unlikely (for libevent) UB in HT_GROW() The reason it is not possible for libevent is that: a) it is unlikely to have 1610612741 elements b) growing is done incrementally (i.e. only internally by HT_INSERT) and in this case the UB is not possible Fixes: https://github.com/libevent/libevent/issues/1312
98b7ca30	2024-11-02T21:39:57	http: allow passing in pre-existing connection bev (#1722) This patch adds functionality to pass a pre-existing connection as a bufferevent to `evhttp_connection_base_bufferevent_reuse_new`. When the bufferevent has an existing fd, the evcon starts in state `EVCON_IDLE` so that requests can be made immediately. Signed-off-by: Kirill Rodriguez <theoden8@tutamail.com> Signed-off-by: Kirill Rodriguez <theoden8@tutamail.com> Co-authored-by: Wladimir J. van der Laan <laanwj@gmail.com> Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>
6b7fb78c	2024-11-02T18:22:02	Make scope of the timeval structure cleaner in event_base_loop() Fixes: https://github.com/libevent/libevent/issues/1741
d6dbd7f8	2024-11-03T01:26:59	Windows platform supports reading IPv6 addresses for DNS server. (#1701) When using libevent on the Windows platform in an IPv6 environment, I found that libevent could not read the DNS server address for IPv6 addresses during DNS initialization, resulting in constant DNS resolution failures. Then, on MSDN, I discovered that the GetNetworkParams interface does not support obtaining IPv6 addresses, and they provided another interface, GetAdaptersAddresses, to obtain both IPv4 and IPv6 addresses. Therefore, I replaced the GetNetworkParams interface with the GetAdaptersAddresses interface. Please review whether this modification can be merged into the master branch. Reference MSDN documentation: https://learn.microsoft.com/en-us/windows/win32/api/iphlpapi/nf-iphlpapi-getnetworkparams https://learn.microsoft.com/en-us/windows/win32/api/iphlpapi/nf-iphlpapi-getadaptersaddresses Co-authored-by: alphacheng <alphacheng@tencent.com> Co-authored-by: Azat Khuzhin <azat@libevent.org> Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>
ffe913b9	2024-11-02T20:04:49	Merge pull request #1735 from theoden8/minor-improvements various minor fixes and improvements
269946b1	2024-11-01T14:05:06	build(deps): bump the github-actions group with 2 updates Bumps the github-actions group with 2 updates: [coverallsapp/github-action](https://github.com/coverallsapp/github-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.3.0 to 2.3.4 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/643bc377ffa44ace6394b2b5d0d3950076de9f63...cfd0633edbd2411b532b808ba7a8b5e04f76d2c8) Updates `github/codeql-action` from 3.26.6 to 3.27.0 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/4dd16135b69a43b6c8efb853346f8437d92d3c93...662472033e021d55d94146f66f6058822b0b39fd) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
e219dd4a	2024-11-02T00:53:31	return EAI_ADDRFAMILY instead of NULL (propagate to caller) Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>
23839cb0	2024-11-01T00:25:02	mm_strdup instead of strdup Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>
cdef74fd	2024-11-01T00:10:57	remove old issue reference Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>
6313a61d	2024-11-01T01:37:19	Ignore Proxy-Connection in request header (#1736) * don't strip Proxy-Connection * remove Proxy-Connection * remove proxy-connection from http-connect * moved EVHTTP_ flags to http.c * fix flags definition placements in http.c * fix unused variable Co-authored-by: Greg Hazel <ghazel@gmail.com>
3c8d89b9	2024-11-01T01:30:58	Merge pull request #1737 from libevent/signal-tests Retry tests with SIGALRM on OSX (and fix some related stuff)
6f35d4df	2024-10-31T14:52:44	probably platform caching at work too, let's make different nodenames Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>
d2facdae	2024-10-31T10:18:22	hitting cache makes cancel stress test unreliable Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>
e9559cd1	2024-10-29T15:20:08	fix unused variable
c35d406d	2024-10-29T11:43:02	fix flags definition placements in http.c
a92ce7e1	2024-10-29T11:26:35	moved EVHTTP_ flags to http.c
a8cd11f9	2024-10-29T11:18:48	remove proxy-connection from http-connect
f01879d5	2024-10-21T09:58:26	Align ELF sections to 16K boundaries (-Wl,-z,max-page-size=16384) Even though the initial request was about Android, it is not only about it, but it could be the case for Linux as well (so as Apple M1/... chips) And this should not affect anything, since this is just ELFs Fixes: https://github.com/libevent/libevent/issues/1708
ca163ff1	2024-10-28T08:34:12	test: fix retries of signal tests on apple
5e427ad9	2024-10-28T08:23:48	test: rename signal tests (simple_signal and simple_signal_re_order)
25fa9c77	2024-10-28T22:20:10	test: retry signal tests with SIGALRM no OSX By some reason even after first ALRM signal received and event loop returned it is possible to recieve an ALRM one more time (at least one): % yes signal/simple_signal.. \| head -n 1000 \| xargs -I{} -P10 sh -c 'EVENT_DEBUG_LOGGING_ALL= bin/regress --timeout 0 --verbose {} >& /tmp/test.$SECONDS.$RANDOM.log' % cat /tmp/test.0.18384.log signal/simple_signal: [forking] [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 [debug] evsig_ensure_saved_: evsignal (14) >= sh_old_max (0), resizing OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0[debug] kq_dispatch: kevent reports 1 [debug] event_active: 0x16d70f368 (fd 14), res 8, callback 0x102704ae8 [debug] event_process_active: event: 0x16d70f368, call 0x102704ae8 [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_loop: no events registered. FAIL /Users/ec2-user/libevent/test/regress.c:1062: ALRM received not from event loop![debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_free_: 0 events freed signal/simple_signal: exited with 0 (0) [FAILED signal/simple_signal (0 retries)] signal/simple_signal_re_order: [forking] [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 [debug] evsig_ensure_saved_: evsignal (14) >= sh_old_max (0), resizing [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0[debug] kq_dispatch: kevent reports 1 [debug] event_active: 0x16d70f368 (fd 14), res 8, callback 0x102704ae8 [debug] event_process_active: event: 0x16d70f368, call 0x102704ae8 [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_loop: no events registered. [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_free_: 0 events freed signal/simple_signal_re_order: exited with 0 (0) 1/2 TESTS FAILED. (0 skipped) Also note, that the problem not only when I run two tests, but only one as well: % bin/regress --timeout 0 --repeat 1000 --verbose --no-fork signal/simple_signal >/tmp/test2.log 2>&1 signal/simple_signal: OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0 signal/simple_signal: OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0 FAIL /Users/ec2-user/libevent/test/regress.c:1062: ALRM received not from event loop! I've tried to run under "ktrace trace -Ss -f C4,S0x010c -c" but of course it does not fails under it (dtruss by some reason did not work for me). P.S. Also remove one TT_RETRIABLE for one test, since only setitimer() causes this.
29a3eee5	2024-10-28T22:06:29	test: add --repeat option into tinytest
7b14bc16	2024-10-28T10:06:45	test: add fallback for SIGALRM
c94b3825	2024-10-28T10:03:17	test: do not ignore setitimer() failures
f84896d3	2024-10-28T20:50:29	dns: Return DNS query type on error (#1220) When calling the user callback after a DNS resolution on error, make sure to send back the query type (A, AAAA, PTR). Closes #1219 Signed-off-by: David Goulet <dgoulet@torproject.org> Signed-off-by: David Goulet <dgoulet@ev0ke.net> Co-authored-by: Azat Khuzhin <azat@libevent.org>
342a0faa	2024-10-27T16:41:12	Avoid loosing previously active events in case of EV_TIMEOUT Previously all the existing events was lost if the timeout had been triggered on that event. Fixes: #1530
528fbed1	2024-05-19T17:42:19	kqueue: make changelist and eventlist of kevent share the same array The array used by the changelist of the kevent() can be reused by the eventlist, We should make use of this feature to eliminate the extra overhead of array allocation. https://man.freebsd.org/cgi/man.cgi?kqueue https://developer.apple.com/library/archive/documentation/System/Conceptual/ManPages_iPhoneOS/man2/kqueue.2.html https://leaf.dragonflybsd.org/cgi/web-man?command=kqueue&section=2 https://man.netbsd.org/kqueue.2 https://man.openbsd.org/kqueue.2 --------- Signed-off-by: Andy Pan <i@andypan.me>
afb7f483	2024-10-27T20:30:44	arc4: drop 4096 bytes of the early keystream (#1586) It might be safer to drop 4096 bytes to be on the safe side. See: twitter.com/nugxperience/status/1773906926503591970
ba0442ba	2024-05-05T02:03:35	Improve hashsocket() (for win32) to avoid collisions Fixes: 91e3ead Refs: https://gist.github.com/azat/8a0a94e4de2d95af8f729b709589ce12
b456e4bd	2024-10-26T20:46:41	Use arc4random_stir over deprecated arc4random_addrandom (#1631) Co-authored-by: Azat Khuzhin <azat@libevent.org>
e30b215f	2024-10-24T06:28:53	Add caching for evdns (#1717) No evdns will do caching by default (with respect to TTL), to disable this set EVDNS_BASE_NO_CACHE There are also helpers for manually manage the cache: - evdns_cache_write() - evdns_cache_lookup() Initial PR: #571 Fixes: #1715 Co-authored-by: Greg Hazel <ghazel@gmail.com> Co-authored-by: Keith Moore <kmoore@clostra.com>
267e808e	2024-10-23T21:54:31	Updated documentation for bufferevent_setcb() (#1733) Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>
2a1ec766	2024-10-21T21:53:44	ci/openbsd: bump autoconf version to 2.72
b2192269	2024-10-20T23:52:33	Fix notifying the base in a different thread after removing active timer event The base should be notified in case of timer removal if that was the minimal timer in the base. Reported-by: @moihn (who is also provided the reproducer on which this test is based on) Fixes: https://github.com/libevent/libevent/issues/1727
970a258b	2024-10-21T10:02:33	CI and tests fixes (#1719)
468be957	2024-10-21T09:58:38	tests: add a test for event_free() from signal callback handler (#1729)
ae635d4b	2024-10-20T21:47:17	add explicit check for linux
c923a184	2024-10-15T21:02:53	getaddrinfo with localhost does not necessarily read files
096c5fe5	2024-10-15T15:38:53	update openbsd pkg names to 7.6
5755befd	2024-10-15T12:44:09	fix a Werror error
370d9924	2024-10-15T12:33:52	mbedtls3 does not support tls<1.3, and tls<1.3 does not support renegotiations. therefore, disable
87c921f9	2024-10-11T12:29:50	make sure cmake cache misses when configuration files change
dc37edc4	2024-10-20T21:59:13	Add a comment about handling event_free() for signals in event_signal_closure()
77fed760	2024-10-20T21:57:02	tests: add a test for event_free() from callback handler for signals Refs: https://github.com/libevent/libevent/issues/1287
2321506d	2024-10-03T12:45:06	replace mbedtls@2 with mbedtls
f6e426c2	2024-10-04T06:45:52	Move find_dependency() directly to LibeventConfig.cmake (#1726)
e23924c2	2024-10-03T21:31:12	Fix LibeventConfig.cmake in case of no OpenSSL Previously it fails with, due to empty OPENSSL_FOUND: CMake Error at /home/runner/work/libevent/libevent/build/LibeventConfig.cmake:64 (if): if given arguments: "3.30.3" "VERSION_LESS" "3.15.0" "AND" "1" "AND" "AND" "TRUE" Unknown arguments specified
68e18761	2024-10-03T09:20:52	Move find_dependency() directly to LibeventConfig.cmake Patch-by: @ahuj9 Fixes: https://github.com/libevent/libevent/issues/1711 Follow-up for: https://github.com/libevent/libevent/pull/1544 (cc @kurtlau)
8f1e4bd9	2024-09-29T03:49:15	fix typo: bufferevent_set_callbacks should be bufferevent_setcb
d681a0d4	2024-10-03T07:09:21	CI fixes for openbsd/android/freebsd (#1721) the following changes are introduced: * openbsd CI fails with "too many open files", fixed with `ulimit -n` (now it fails for a more test-specific reasons) * android CI fails with `pipe2` method not found, fixed by removing cache * bumped freebsd to 13.4 (and 14.1) as they [reached EOL](https://www.freebsd.org/releases/)
cd68743e	2024-09-23T08:12:10	add android CI cmake builds (#1716) * trying android-ci workflow * focus on android * fix workflow file * another fix attempt * update java * added host targets * added clause for skipping CI * revert focus on android * set push CI back to master branch * fix CI cache key for android
ccb18f5b	2024-09-20T20:56:14	fix cmake build error for android: threads not found
aa04ba93	2024-09-01T14:27:50	build(deps): bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.25.15 to 3.26.6 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/afb54ba388a7dca6ecae48f608c4ff05ff4cc77a...4dd16135b69a43b6c8efb853346f8437d92d3c93) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
bb0d473b	2024-09-10T21:53:27	Add small note to event_active() documentation
628f39bb	2024-08-12T10:00:44	ws: fix potential NULL pointer dereference
d1a90d09	2024-08-07T17:20:46	tests: Fix potential NULL pointer dereference
d3f6c78e	2024-08-01T14:13:30	build(deps): bump the github-actions group with 2 updates Bumps the github-actions group with 2 updates: [ossf/scorecard-action](https://github.com/ossf/scorecard-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `ossf/scorecard-action` from 2.3.3 to 2.4.0 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/dc50aa9510b46c811795eb24b2f1ba02a914e534...62b2cac7ed8198b15735ed49ab1e5cf35480ba46) Updates `github/codeql-action` from 3.25.11 to 3.25.15 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/b611370bb5703a7efb587f9d136a52ea24c5c38c...afb54ba388a7dca6ecae48f608c4ff05ff4cc77a) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
0499c517	2024-08-05T05:23:43	Document non-NULL parameters in public API (#1705)
00c94bea	2024-07-22T21:47:53	ws: allow Upgrade in Connection header anywhere This will make it work for Firefox, which uses "Connection: keep-alive, Upgrade" Reimplemented our own evutil_ascii_strcasestr function (same as non-portable strcasestr)
9848df54	2024-07-26T22:53:30	http: disallow empty header names (#1690) In theory, we could be more strict, since there is only a subset of allowed characters: > ``` > tchar = "!" / "#" / "$" / "%" / "&" / "'" / "*" > / "+" / "-" / "." / "^" / "_" / "`" / "\|" / "~" > / DIGIT / ALPHA > ; any VCHAR, except delimiters > ``` But I'd skip such verification, unless there is a legitimate interest (versus performances). Fixes: #1686
7f23b5b5	2024-07-10T06:14:50	Add instruction for release tarballs validation with GPG keys Fixes: https://github.com/libevent/libevent/issues/1691
9d735b4b	2024-07-09T23:34:00	Better error handling in event-read-fifo.c (#1673)
25f4439d	2024-04-22T15:11:15	sample/event-read-fifo: add proper exit path Co-authored-by: Azat Khuzhin <azat@libevent.org>
09738283	2024-04-10T18:21:47	Fix potential Null pointer dereference in event-read-fifo.c
30d169b1	2024-07-08T23:20:26	Better error path in test-changelist.c and EVUTIL_INVALID_SOCKET (#1679)
5485887c	2024-06-24T14:19:12	Check against EVUTIL_INVALID_SOCKET
3f799ab6	2024-04-22T15:31:10	test/test-changelist: add proper exit path
6f9f2f3a	2024-04-10T17:25:54	test/test-changelist.c: fix potential NULL pointer dereference
66428fb9	2024-07-08T10:15:29	test-closed: fix -Werror=maybe-uninitialized Follow-up for: https://github.com/libevent/libevent/pull/1680
272bd7dd	2024-07-08T10:13:08	Fix potential Null pointer dereference in test-closed.c (#1680) * Fix potential Null pointer dereference in test-closed.c * add err path * code review: goto err after evutil_socketpair failure * code review: goto err for event_config_new failure --------- Co-authored-by: icy17 <1061499390@qq.com>
49d6b4b0	2024-07-08T10:10:42	samples: use evutil_socket_t instead and handle 64 bit Windows (#1682) * Use evutil_socket_t instead in http server sample and handle 64 bit Windows * Update http-server.c * consistently using EV_SOCK_FMT for Windows compatibility * code review: fix missing symbol strsignal * Add evutil_strsignal() helper instead of strsignal() macro --------- Co-authored-by: Hernan Martinez <hernan.c.martinez@gmail.com> Co-authored-by: Azat Khuzhin <azat@libevent.org>
2bc831c8	2024-07-08T10:08:58	Fix potential Null pointer dereference in test-time.c (#1681) * Fix potential Null pointer dereference in test-time.c * add err path * code review: free events before base --------- Co-authored-by: icy17 <1061499390@qq.com>
0bbaee61	2024-07-06T09:13:41	Disable persist-credentials for actions/checkout to improve security
7331c66b	2024-07-06T08:59:19	ci: limit artifacts Refs: https://github.com/libevent/libevent/security/advisories/GHSA-f4cg-pcr2-495m
7c20c219	2024-07-01T14:07:35	Bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.25.10 to 3.25.11 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/23acc5c183826b7a8a97bce3cecc52db901f8251...b611370bb5703a7efb587f9d136a52ea24c5c38c) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
96c259f1	2024-06-26T12:10:00	tcpkeepalive: distinguish OS versions and use proper time units (#1669) DragonFly BSD changed the time unit for TCP keep-alive from milliseconds to seconds since v5.8 and Solaris 11.4 added `TCP_KEEPIDLE`, `TCP_KEEPINTVL`, and `TCP_KEEPCNT` with time units in second while Solaris <11.4 still use `TCP_KEEPALIVE_THRESHOLD` and `TCP_KEEPALIVE_ABORT_THRESHOLD` with time units in millisecond. Currently, we don't differentiate among DragonFly BSD versions but set the keepalive options with seconds, which will result in unexpected behaviors on DragonFlyBSD <5.8. This PR intends to fix the wrong usage of time units of TCP keepalive options on DragonFly BSD <5.8 and consolidate the logic of time units conversion for TCP keepalive across platforms. In addition, this PR introduces a new custom macro for determining Solaris 11.4. This macro is expected to help us implement some new features for `libuv` using some abilities that only exist on Solaris 11.4 and other mainstream platforms in the future, considering that Oracle developed and released Solaris 11.4 to replenish plenty of features on Solaris that have already been implemented on other UNIX-like OSs but missing from Solaris <11.4, also bring a good deal of new features. ### References - [Change tcp keepalive options from ms to seconds (DISRUPTIVE)](https://lists.dragonflybsd.org/pipermail/commits/2019-July/719125.html) - [DragonFly BSD 5.8 release notes](https://www.dragonflybsd.org/release58/) - [DragonFly TCP](https://man.dragonflybsd.org/?command=tcp&section=4) - [Solaris 11.3 TCP](https://docs.oracle.com/cd/E86824_01/html/E54777/tcp-7p.html) - [Solaris 11.4 TCP](https://docs.oracle.com/cd/E88353_01/html/E37851/tcp-4p.html) - [Solaris 11.4 release notes](https://docs.oracle.com/cd/E37838_01/html/E60973/) Signed-off-by: Andy Pan <i@andypan.me>
90b9520f	2024-06-23T19:20:02	Bump the github-actions group across 1 directory with 3 updates Bumps the github-actions group with 3 updates in the / directory: [coverallsapp/github-action](https://github.com/coverallsapp/github-action), [ossf/scorecard-action](https://github.com/ossf/scorecard-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.2.3 to 2.3.0 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/3dfc5567390f6fa9267c0ee9c251e4c8c3f18949...643bc377ffa44ace6394b2b5d0d3950076de9f63) Updates `ossf/scorecard-action` from 2.3.1 to 2.3.3 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...dc50aa9510b46c811795eb24b2f1ba02a914e534) Updates `github/codeql-action` from 3.25.3 to 3.25.10 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/d39d31e687223d841ef683f52467bd88e9b21c14...23acc5c183826b7a8a97bce3cecc52db901f8251) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
78d29804	2024-06-24T15:58:46	gitignore cleanup (#1672)
e0d53cbc	2024-06-23T21:21:22	ci: ignore lukka/run-vcpkg for updates by dependabot Follow-up for: https://github.com/libevent/libevent/pull/1657
e5181b15	2024-06-24T03:37:49	Cleanup EVENT_HAVE_ macros (#1645)
8dd92069	2024-06-24T03:15:23	Fix potential Null pointer dereference in bench_httpclient.c (#1676) Co-authored-by: icy17 <1061499390@qq.com>
5d830362	2024-06-24T03:12:39	Fix potential Null pointer dereference in regress_dns.c (#1675) Co-authored-by: icy17 <1061499390@qq.com>
dabf4e13	2024-06-24T03:10:56	Fix potential Null pointer dereference in ws-chat-server.c (#1674) Co-authored-by: icy17 <1061499390@qq.com>
6d8c38af	2024-06-02T10:31:11	Reducing the number of mingw warnings
a0fc31bf	2024-06-01T18:52:39	Sort symbols to check in cmake/autotools lexicographically
13678f37	2024-06-02T00:53:58	gcc: fix some compiler errors from the new GCC (#1658) gcc: fix some compiler errors from the new GCC
3d853625	2024-06-01T18:13:52	ci: secure github.event.repository.owner.name Even though this should not be a problem, let's do this anyway. Reported-by: Francesco Garofalo
f5b61043	2024-05-20T11:53:24	test: use evutil_timerclear over timerclear
b202a72b	2024-05-24T05:31:27	temp size assert for #1632
5fbc00a3	2024-05-23T14:53:13	event_warn mmap format
fef2a867	2024-05-21T11:05:23	Fix -Wcast-function-type errors --------- Signed-off-by: Andy Pan <i@andypan.me>

112421c8

2024-12-29T18:49:06

Fix potential NULL dereference in evdns_cache_lookup() evutil_new_addrinfo_() returns NULL in some cases, and its return value is always checked for NULL.

1759485e

2024-12-20T15:56:10

Improve portability on NetBSD According to GCC documentation, "the various `-std` options disable certain keywords". This change adheres to GCC's recommendation by replacing the `typeof` keyword with its alternative, `__typeof__`.

c4ea8028

2025-02-01T14:09:10

build(deps): bump the github-actions group across 1 directory with 2 updates Bumps the github-actions group with 2 updates in the / directory: [coverallsapp/github-action](https://github.com/coverallsapp/github-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.3.4 to 2.3.6 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/cfd0633edbd2411b532b808ba7a8b5e04f76d2c8...648a8eb78e6d50909eff900e4ec85cab4524a45b) Updates `github/codeql-action` from 3.27.5 to 3.28.8 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/f09c1c0a94de965c15400f5634aa42fac8fb8f88...dd746615b3b9d728a6a37ca2045b68ca76d4841a) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

9a6a799e

2024-12-02T17:28:02

ci: Test Autotools build on FreeBSD 14.1 CMake builds are already tested on FreeBSD 13.4 and 14.1. This change extends testing with Autotools to include FreeBSD 14.1.

5bfb2ae8

2024-12-01T14:47:11

build(deps): bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.27.0 to 3.27.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/662472033e021d55d94146f66f6058822b0b39fd...f09c1c0a94de965c15400f5634aa42fac8fb8f88) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

a2ed23b1

2024-11-24T23:32:04

Replace deprecated find_package(PythonInterp) with Python2/Python3 Fixes: #1751

cf557113

2024-11-25T01:22:24

Merge pull request #1752 from hebasto/241116-cmake-version cmake: Update minimum required version

e36398f1

2024-11-16T21:35:53

cmake: Remove redundant policy settings The `cmake_minimum_required(VERSION 3.10)` command implicitly sets the following policies to NEW by default: - CMP0042 (introduced in CMake 3.0) - CMP0054 (introduced in CMake 3.1) - CMP0068 (introduced in CMake 3.9)

2d7a3b9b

2024-11-16T21:26:55

cmake: Update minimum required version Compatibility with versions of CMake older than 3.10 is now deprecated and will be removed from a future version. See: https://cmake.org/cmake/help/v3.31/release/3.31.html

78eb3059

2024-11-02T21:41:32

Fix unlikely (for libevent) UB in HT_GROW() The reason it is not possible for libevent is that: a) it is unlikely to have 1610612741 elements b) growing is done incrementally (i.e. only internally by HT_INSERT) and in this case the UB is not possible Fixes: https://github.com/libevent/libevent/issues/1312

98b7ca30

2024-11-02T21:39:57

http: allow passing in pre-existing connection bev (#1722) This patch adds functionality to pass a pre-existing connection as a bufferevent to `evhttp_connection_base_bufferevent_reuse_new`. When the bufferevent has an existing fd, the evcon starts in state `EVCON_IDLE` so that requests can be made immediately. Signed-off-by: Kirill Rodriguez <theoden8@tutamail.com> Signed-off-by: Kirill Rodriguez <theoden8@tutamail.com> Co-authored-by: Wladimir J. van der Laan <laanwj@gmail.com> Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>

6b7fb78c

2024-11-02T18:22:02

Make scope of the timeval structure cleaner in event_base_loop() Fixes: https://github.com/libevent/libevent/issues/1741

d6dbd7f8

2024-11-03T01:26:59

Windows platform supports reading IPv6 addresses for DNS server. (#1701) When using libevent on the Windows platform in an IPv6 environment, I found that libevent could not read the DNS server address for IPv6 addresses during DNS initialization, resulting in constant DNS resolution failures. Then, on MSDN, I discovered that the GetNetworkParams interface does not support obtaining IPv6 addresses, and they provided another interface, GetAdaptersAddresses, to obtain both IPv4 and IPv6 addresses. Therefore, I replaced the GetNetworkParams interface with the GetAdaptersAddresses interface. Please review whether this modification can be merged into the master branch. Reference MSDN documentation: https://learn.microsoft.com/en-us/windows/win32/api/iphlpapi/nf-iphlpapi-getnetworkparams https://learn.microsoft.com/en-us/windows/win32/api/iphlpapi/nf-iphlpapi-getadaptersaddresses Co-authored-by: alphacheng <alphacheng@tencent.com> Co-authored-by: Azat Khuzhin <azat@libevent.org> Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>

ffe913b9

2024-11-02T20:04:49

Merge pull request #1735 from theoden8/minor-improvements various minor fixes and improvements

269946b1

2024-11-01T14:05:06

build(deps): bump the github-actions group with 2 updates Bumps the github-actions group with 2 updates: [coverallsapp/github-action](https://github.com/coverallsapp/github-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.3.0 to 2.3.4 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/643bc377ffa44ace6394b2b5d0d3950076de9f63...cfd0633edbd2411b532b808ba7a8b5e04f76d2c8) Updates `github/codeql-action` from 3.26.6 to 3.27.0 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/4dd16135b69a43b6c8efb853346f8437d92d3c93...662472033e021d55d94146f66f6058822b0b39fd) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

e219dd4a

2024-11-02T00:53:31

return EAI_ADDRFAMILY instead of NULL (propagate to caller) Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>

23839cb0

2024-11-01T00:25:02

mm_strdup instead of strdup Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>

cdef74fd

2024-11-01T00:10:57

remove old issue reference Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>

6313a61d

2024-11-01T01:37:19

Ignore Proxy-Connection in request header (#1736) * don't strip Proxy-Connection * remove Proxy-Connection * remove proxy-connection from http-connect * moved EVHTTP_ flags to http.c * fix flags definition placements in http.c * fix unused variable Co-authored-by: Greg Hazel <ghazel@gmail.com>

3c8d89b9

2024-11-01T01:30:58

Merge pull request #1737 from libevent/signal-tests Retry tests with SIGALRM on OSX (and fix some related stuff)

6f35d4df

2024-10-31T14:52:44

probably platform caching at work too, let's make different nodenames Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>

d2facdae

2024-10-31T10:18:22

hitting cache makes cancel stress test unreliable Signed-off-by: Kirill Rodriguez <theoden8@gmail.com>

e9559cd1

2024-10-29T15:20:08

fix unused variable

c35d406d

2024-10-29T11:43:02

fix flags definition placements in http.c

a92ce7e1

2024-10-29T11:26:35

moved EVHTTP_ flags to http.c

a8cd11f9

2024-10-29T11:18:48

remove proxy-connection from http-connect

f01879d5

2024-10-21T09:58:26

Align ELF sections to 16K boundaries (-Wl,-z,max-page-size=16384) Even though the initial request was about Android, it is not only about it, but it could be the case for Linux as well (so as Apple M1/... chips) And this should not affect anything, since this is just ELFs Fixes: https://github.com/libevent/libevent/issues/1708

ca163ff1

2024-10-28T08:34:12

test: fix retries of signal tests on apple

5e427ad9

2024-10-28T08:23:48

test: rename signal tests (simple_signal and simple_signal_re_order)

25fa9c77

2024-10-28T22:20:10

test: retry signal tests with SIGALRM no OSX By some reason even after first ALRM signal received and event loop returned it is possible to recieve an ALRM one more time (at least one): % yes signal/simple_signal.. | head -n 1000 | xargs -I{} -P10 sh -c 'EVENT_DEBUG_LOGGING_ALL= bin/regress --timeout 0 --verbose {} >& /tmp/test.$SECONDS.$RANDOM.log' % cat /tmp/test.0.18384.log signal/simple_signal: [forking] [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 [debug] evsig_ensure_saved_: evsignal (14) >= sh_old_max (0), resizing OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0[debug] kq_dispatch: kevent reports 1 [debug] event_active: 0x16d70f368 (fd 14), res 8, callback 0x102704ae8 [debug] event_process_active: event: 0x16d70f368, call 0x102704ae8 [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_loop: no events registered. FAIL /Users/ec2-user/libevent/test/regress.c:1062: ALRM received not from event loop![debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_free_: 0 events freed signal/simple_signal: exited with 0 (0) [FAILED signal/simple_signal (0 retries)] signal/simple_signal_re_order: [forking] [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 [debug] evsig_ensure_saved_: evsignal (14) >= sh_old_max (0), resizing [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_add: event: 0x16d70f368 (fd 14), call 0x102704ae8 OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0[debug] kq_dispatch: kevent reports 1 [debug] event_active: 0x16d70f368 (fd 14), res 8, callback 0x102704ae8 [debug] event_process_active: event: 0x16d70f368, call 0x102704ae8 [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_loop: no events registered. [debug] event_del: 0x16d70f368 (fd 14), callback 0x102704ae8 [debug] event_base_free_: 0 events freed signal/simple_signal_re_order: exited with 0 (0) 1/2 TESTS FAILED. (0 skipped) Also note, that the problem not only when I run two tests, but only one as well: % bin/regress --timeout 0 --repeat 1000 --verbose --no-fork signal/simple_signal >/tmp/test2.log 2>&1 signal/simple_signal: OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0 signal/simple_signal: OK /Users/ec2-user/libevent/test/regress.c:1086: assert(setitimer(ITIMER_REAL, &itv, NULL) == 0): 0 vs 0 FAIL /Users/ec2-user/libevent/test/regress.c:1062: ALRM received not from event loop! I've tried to run under "ktrace trace -Ss -f C4,S0x010c -c" but of course it does not fails under it (dtruss by some reason did not work for me). P.S. Also remove one TT_RETRIABLE for one test, since only setitimer() causes this.

29a3eee5

2024-10-28T22:06:29

test: add --repeat option into tinytest

7b14bc16

2024-10-28T10:06:45

test: add fallback for SIGALRM

c94b3825

2024-10-28T10:03:17

test: do not ignore setitimer() failures

f84896d3

2024-10-28T20:50:29

dns: Return DNS query type on error (#1220) When calling the user callback after a DNS resolution on error, make sure to send back the query type (A, AAAA, PTR). Closes #1219 Signed-off-by: David Goulet <dgoulet@torproject.org> Signed-off-by: David Goulet <dgoulet@ev0ke.net> Co-authored-by: Azat Khuzhin <azat@libevent.org>

342a0faa

2024-10-27T16:41:12

Avoid loosing previously active events in case of EV_TIMEOUT Previously all the existing events was lost if the timeout had been triggered on that event. Fixes: #1530

528fbed1

2024-05-19T17:42:19

kqueue: make changelist and eventlist of kevent share the same array The array used by the changelist of the kevent() can be reused by the eventlist, We should make use of this feature to eliminate the extra overhead of array allocation. https://man.freebsd.org/cgi/man.cgi?kqueue https://developer.apple.com/library/archive/documentation/System/Conceptual/ManPages_iPhoneOS/man2/kqueue.2.html https://leaf.dragonflybsd.org/cgi/web-man?command=kqueue&section=2 https://man.netbsd.org/kqueue.2 https://man.openbsd.org/kqueue.2 --------- Signed-off-by: Andy Pan <i@andypan.me>

afb7f483

2024-10-27T20:30:44

arc4: drop 4096 bytes of the early keystream (#1586) It might be safer to drop 4096 bytes to be on the safe side. See: twitter.com/nugxperience/status/1773906926503591970

ba0442ba

2024-05-05T02:03:35

Improve hashsocket() (for win32) to avoid collisions Fixes: 91e3ead Refs: https://gist.github.com/azat/8a0a94e4de2d95af8f729b709589ce12

b456e4bd

2024-10-26T20:46:41

Use arc4random_stir over deprecated arc4random_addrandom (#1631) Co-authored-by: Azat Khuzhin <azat@libevent.org>

e30b215f

2024-10-24T06:28:53

Add caching for evdns (#1717) No evdns will do caching by default (with respect to TTL), to disable this set EVDNS_BASE_NO_CACHE There are also helpers for manually manage the cache: - evdns_cache_write() - evdns_cache_lookup() Initial PR: #571 Fixes: #1715 Co-authored-by: Greg Hazel <ghazel@gmail.com> Co-authored-by: Keith Moore <kmoore@clostra.com>

267e808e

2024-10-23T21:54:31

Updated documentation for bufferevent_setcb() (#1733) Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>

2a1ec766

2024-10-21T21:53:44

ci/openbsd: bump autoconf version to 2.72

b2192269

2024-10-20T23:52:33

Fix notifying the base in a different thread after removing active timer event The base should be notified in case of timer removal if that was the minimal timer in the base. Reported-by: @moihn (who is also provided the reproducer on which this test is based on) Fixes: https://github.com/libevent/libevent/issues/1727

970a258b

2024-10-21T10:02:33

CI and tests fixes (#1719)

468be957

2024-10-21T09:58:38

tests: add a test for event_free() from signal callback handler (#1729)

ae635d4b

2024-10-20T21:47:17

add explicit check for linux

c923a184

2024-10-15T21:02:53

getaddrinfo with localhost does not necessarily read files

096c5fe5

2024-10-15T15:38:53

update openbsd pkg names to 7.6

5755befd

2024-10-15T12:44:09

fix a Werror error

370d9924

2024-10-15T12:33:52

mbedtls3 does not support tls<1.3, and tls<1.3 does not support renegotiations. therefore, disable

87c921f9

2024-10-11T12:29:50

make sure cmake cache misses when configuration files change

dc37edc4

2024-10-20T21:59:13

Add a comment about handling event_free() for signals in event_signal_closure()

77fed760

2024-10-20T21:57:02

tests: add a test for event_free() from callback handler for signals Refs: https://github.com/libevent/libevent/issues/1287

2321506d

2024-10-03T12:45:06

replace mbedtls@2 with mbedtls

f6e426c2

2024-10-04T06:45:52

Move find_dependency() directly to LibeventConfig.cmake (#1726)

e23924c2

2024-10-03T21:31:12

Fix LibeventConfig.cmake in case of no OpenSSL Previously it fails with, due to empty OPENSSL_FOUND: CMake Error at /home/runner/work/libevent/libevent/build/LibeventConfig.cmake:64 (if): if given arguments: "3.30.3" "VERSION_LESS" "3.15.0" "AND" "1" "AND" "AND" "TRUE" Unknown arguments specified

68e18761

2024-10-03T09:20:52

Move find_dependency() directly to LibeventConfig.cmake Patch-by: @ahuj9 Fixes: https://github.com/libevent/libevent/issues/1711 Follow-up for: https://github.com/libevent/libevent/pull/1544 (cc @kurtlau)

8f1e4bd9

2024-09-29T03:49:15

fix typo: bufferevent_set_callbacks should be bufferevent_setcb

d681a0d4

2024-10-03T07:09:21

CI fixes for openbsd/android/freebsd (#1721) the following changes are introduced: * openbsd CI fails with "too many open files", fixed with `ulimit -n` (now it fails for a more test-specific reasons) * android CI fails with `pipe2` method not found, fixed by removing cache * bumped freebsd to 13.4 (and 14.1) as they [reached EOL](https://www.freebsd.org/releases/)

cd68743e

2024-09-23T08:12:10

add android CI cmake builds (#1716) * trying android-ci workflow * focus on android * fix workflow file * another fix attempt * update java * added host targets * added clause for skipping CI * revert focus on android * set push CI back to master branch * fix CI cache key for android

ccb18f5b

2024-09-20T20:56:14

fix cmake build error for android: threads not found

aa04ba93

2024-09-01T14:27:50

build(deps): bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.25.15 to 3.26.6 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/afb54ba388a7dca6ecae48f608c4ff05ff4cc77a...4dd16135b69a43b6c8efb853346f8437d92d3c93) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

bb0d473b

2024-09-10T21:53:27

Add small note to event_active() documentation

628f39bb

2024-08-12T10:00:44

ws: fix potential NULL pointer dereference

d1a90d09

2024-08-07T17:20:46

tests: Fix potential NULL pointer dereference

d3f6c78e

2024-08-01T14:13:30

build(deps): bump the github-actions group with 2 updates Bumps the github-actions group with 2 updates: [ossf/scorecard-action](https://github.com/ossf/scorecard-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `ossf/scorecard-action` from 2.3.3 to 2.4.0 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/dc50aa9510b46c811795eb24b2f1ba02a914e534...62b2cac7ed8198b15735ed49ab1e5cf35480ba46) Updates `github/codeql-action` from 3.25.11 to 3.25.15 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/b611370bb5703a7efb587f9d136a52ea24c5c38c...afb54ba388a7dca6ecae48f608c4ff05ff4cc77a) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

0499c517

2024-08-05T05:23:43

Document non-NULL parameters in public API (#1705)

00c94bea

2024-07-22T21:47:53

ws: allow Upgrade in Connection header anywhere This will make it work for Firefox, which uses "Connection: keep-alive, Upgrade" Reimplemented our own evutil_ascii_strcasestr function (same as non-portable strcasestr)

9848df54

2024-07-26T22:53:30

http: disallow empty header names (#1690) In theory, we could be more strict, since there is only a subset of allowed characters: > ``` > tchar = "!" / "#" / "$" / "%" / "&" / "'" / "*" > / "+" / "-" / "." / "^" / "_" / "`" / "|" / "~" > / DIGIT / ALPHA > ; any VCHAR, except delimiters > ``` But I'd skip such verification, unless there is a legitimate interest (versus performances). Fixes: #1686

7f23b5b5

2024-07-10T06:14:50

Add instruction for release tarballs validation with GPG keys Fixes: https://github.com/libevent/libevent/issues/1691

9d735b4b

2024-07-09T23:34:00

Better error handling in event-read-fifo.c (#1673)

25f4439d

2024-04-22T15:11:15

sample/event-read-fifo: add proper exit path Co-authored-by: Azat Khuzhin <azat@libevent.org>

09738283

2024-04-10T18:21:47

Fix potential Null pointer dereference in event-read-fifo.c

30d169b1

2024-07-08T23:20:26

Better error path in test-changelist.c and EVUTIL_INVALID_SOCKET (#1679)

5485887c

2024-06-24T14:19:12

Check against EVUTIL_INVALID_SOCKET

3f799ab6

2024-04-22T15:31:10

test/test-changelist: add proper exit path

6f9f2f3a

2024-04-10T17:25:54

test/test-changelist.c: fix potential NULL pointer dereference

66428fb9

2024-07-08T10:15:29

test-closed: fix -Werror=maybe-uninitialized Follow-up for: https://github.com/libevent/libevent/pull/1680

272bd7dd

2024-07-08T10:13:08

Fix potential Null pointer dereference in test-closed.c (#1680) * Fix potential Null pointer dereference in test-closed.c * add err path * code review: goto err after evutil_socketpair failure * code review: goto err for event_config_new failure --------- Co-authored-by: icy17 <1061499390@qq.com>

49d6b4b0

2024-07-08T10:10:42

samples: use evutil_socket_t instead and handle 64 bit Windows (#1682) * Use evutil_socket_t instead in http server sample and handle 64 bit Windows * Update http-server.c * consistently using EV_SOCK_FMT for Windows compatibility * code review: fix missing symbol strsignal * Add evutil_strsignal() helper instead of strsignal() macro --------- Co-authored-by: Hernan Martinez <hernan.c.martinez@gmail.com> Co-authored-by: Azat Khuzhin <azat@libevent.org>

2bc831c8

2024-07-08T10:08:58

Fix potential Null pointer dereference in test-time.c (#1681) * Fix potential Null pointer dereference in test-time.c * add err path * code review: free events before base --------- Co-authored-by: icy17 <1061499390@qq.com>

0bbaee61

2024-07-06T09:13:41

Disable persist-credentials for actions/checkout to improve security

7331c66b

2024-07-06T08:59:19

ci: limit artifacts Refs: https://github.com/libevent/libevent/security/advisories/GHSA-f4cg-pcr2-495m

7c20c219

2024-07-01T14:07:35

Bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.25.10 to 3.25.11 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/23acc5c183826b7a8a97bce3cecc52db901f8251...b611370bb5703a7efb587f9d136a52ea24c5c38c) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

96c259f1

2024-06-26T12:10:00

tcpkeepalive: distinguish OS versions and use proper time units (#1669) DragonFly BSD changed the time unit for TCP keep-alive from milliseconds to seconds since v5.8 and Solaris 11.4 added `TCP_KEEPIDLE`, `TCP_KEEPINTVL`, and `TCP_KEEPCNT` with time units in second while Solaris <11.4 still use `TCP_KEEPALIVE_THRESHOLD` and `TCP_KEEPALIVE_ABORT_THRESHOLD` with time units in millisecond. Currently, we don't differentiate among DragonFly BSD versions but set the keepalive options with seconds, which will result in unexpected behaviors on DragonFlyBSD <5.8. This PR intends to fix the wrong usage of time units of TCP keepalive options on DragonFly BSD <5.8 and consolidate the logic of time units conversion for TCP keepalive across platforms. In addition, this PR introduces a new custom macro for determining Solaris 11.4. This macro is expected to help us implement some new features for `libuv` using some abilities that only exist on Solaris 11.4 and other mainstream platforms in the future, considering that Oracle developed and released Solaris 11.4 to replenish plenty of features on Solaris that have already been implemented on other UNIX-like OSs but missing from Solaris <11.4, also bring a good deal of new features. ### References - [Change tcp keepalive options from ms to seconds (DISRUPTIVE)](https://lists.dragonflybsd.org/pipermail/commits/2019-July/719125.html) - [DragonFly BSD 5.8 release notes](https://www.dragonflybsd.org/release58/) - [DragonFly TCP](https://man.dragonflybsd.org/?command=tcp&section=4) - [Solaris 11.3 TCP](https://docs.oracle.com/cd/E86824_01/html/E54777/tcp-7p.html) - [Solaris 11.4 TCP](https://docs.oracle.com/cd/E88353_01/html/E37851/tcp-4p.html) - [Solaris 11.4 release notes](https://docs.oracle.com/cd/E37838_01/html/E60973/) Signed-off-by: Andy Pan <i@andypan.me>

90b9520f

2024-06-23T19:20:02

Bump the github-actions group across 1 directory with 3 updates Bumps the github-actions group with 3 updates in the / directory: [coverallsapp/github-action](https://github.com/coverallsapp/github-action), [ossf/scorecard-action](https://github.com/ossf/scorecard-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `coverallsapp/github-action` from 2.2.3 to 2.3.0 - [Release notes](https://github.com/coverallsapp/github-action/releases) - [Commits](https://github.com/coverallsapp/github-action/compare/3dfc5567390f6fa9267c0ee9c251e4c8c3f18949...643bc377ffa44ace6394b2b5d0d3950076de9f63) Updates `ossf/scorecard-action` from 2.3.1 to 2.3.3 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...dc50aa9510b46c811795eb24b2f1ba02a914e534) Updates `github/codeql-action` from 3.25.3 to 3.25.10 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/d39d31e687223d841ef683f52467bd88e9b21c14...23acc5c183826b7a8a97bce3cecc52db901f8251) --- updated-dependencies: - dependency-name: coverallsapp/github-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

78d29804

2024-06-24T15:58:46

gitignore cleanup (#1672)

e0d53cbc

2024-06-23T21:21:22

ci: ignore lukka/run-vcpkg for updates by dependabot Follow-up for: https://github.com/libevent/libevent/pull/1657

e5181b15

2024-06-24T03:37:49

Cleanup EVENT_HAVE_ macros (#1645)

8dd92069

2024-06-24T03:15:23

Fix potential Null pointer dereference in bench_httpclient.c (#1676) Co-authored-by: icy17 <1061499390@qq.com>

5d830362

2024-06-24T03:12:39

Fix potential Null pointer dereference in regress_dns.c (#1675) Co-authored-by: icy17 <1061499390@qq.com>

dabf4e13

2024-06-24T03:10:56

Fix potential Null pointer dereference in ws-chat-server.c (#1674) Co-authored-by: icy17 <1061499390@qq.com>

6d8c38af

2024-06-02T10:31:11

Reducing the number of mingw warnings

a0fc31bf

2024-06-01T18:52:39

Sort symbols to check in cmake/autotools lexicographically

13678f37

2024-06-02T00:53:58

gcc: fix some compiler errors from the new GCC (#1658) gcc: fix some compiler errors from the new GCC

3d853625

2024-06-01T18:13:52

ci: secure github.event.repository.owner.name Even though this should not be a problem, let's do this anyway. Reported-by: Francesco Garofalo

f5b61043

2024-05-20T11:53:24

test: use evutil_timerclear over timerclear

b202a72b

2024-05-24T05:31:27

temp size assert for #1632

5fbc00a3

2024-05-23T14:53:13

event_warn mmap format

fef2a867

2024-05-21T11:05:23

Fix -Wcast-function-type errors --------- Signed-off-by: Andy Pan <i@andypan.me>

kc3-lang/libevent

Log