{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":208055031,"defaultBranch":"master","name":"tang","ownerLogin":"sergio-correia","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2019-09-12T13:15:15.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/40298165?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1704879627.0","currentOid":""},"activityList":{"items":[{"before":"614149a58d38921721afa6f09408be5b6e523f23","after":"e2544ac88ceff15d5aa67d6bcd73ec4194d3cafc","ref":"refs/heads/llhttp","pushedAt":"2024-02-12T13:21:42.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Fix issue introduced in http-parser -> llhttp conversion\n\nhttp_parser_execute() returns the number of parsed bytes, while\nllhttp_execute() returns an error code.\n\nSigned-off-by: Sergio Correia ","shortMessageHtmlLink":"Fix issue introduced in http-parser -> llhttp conversion"}},{"before":"305482886d7c45ecebdcaa817a3f5ddc3fc2511d","after":"614149a58d38921721afa6f09408be5b6e523f23","ref":"refs/heads/llhttp","pushedAt":"2024-02-12T13:11:10.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Fix issue introduced in http-parser -> llhttp conversion\n\nhttp_parser_execute() returns the number of parsed bytes, while\nllhttp_execute() returns an error code.\n\nSigned-off-by: Sergio Correia ","shortMessageHtmlLink":"Fix issue introduced in http-parser -> llhttp conversion"}},{"before":"bdbaf0919379daff6da6305df5ea735e6167f95c","after":"305482886d7c45ecebdcaa817a3f5ddc3fc2511d","ref":"refs/heads/llhttp","pushedAt":"2024-01-11T09:59:58.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Add support for building with llhttp instead of http-parser\n\nAs http-parser has been unmaintained for a while [1], let's add\nsupport for its natural replacement, llhttp.\n\nHowever, as llhttp does not seem to be packaged in distros like\nDebian [2], we will keep supporting building with http-parser for\ntime being, preferring llhttp, if it is present.\n\n[1] https://github.com/nodejs/http-parser/issues/522\n[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977716","shortMessageHtmlLink":"Add support for building with llhttp instead of http-parser"}},{"before":"2284ea19a29a9bddbd461f609c5ff41dc8ee9035","after":"bdbaf0919379daff6da6305df5ea735e6167f95c","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:50:01.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Add support for building with llhttp instead of http-parser\n\nAs http-parser has been unmaintained for a while [1], let's add\nsupport for its natural replacement, llhttp.\n\nHowever, as llhttp does not seem to be packaged in distros like\nDebian [2], we will keep supporting building with http-parser for\ntime being, preferring llhttp, if it is present.\n\n[1] https://github.com/nodejs/http-parser/issues/522\n[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977716","shortMessageHtmlLink":"Add support for building with llhttp instead of http-parser"}},{"before":"002ffd40cd85fd1166861c67912d617b7564cbc2","after":"2284ea19a29a9bddbd461f609c5ff41dc8ee9035","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:48:28.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Add support for building with llhttp instead of http-parser\n\nAs http-parser has been unmaintained for a while [1], let's add\nsupport for its natural replacement, llhttp.\n\nHowever, as llhttp does not seem to be packaged in distros like\nDebian [2], we will keep supporting building with http-parser for\ntime being, preferring llhttp, if it is present.\n\n[1] https://github.com/nodejs/http-parser/issues/522\n[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977716","shortMessageHtmlLink":"Add support for building with llhttp instead of http-parser"}},{"before":null,"after":"79c1e3467d2c990b7eb1ef2c9686f0b81cb466e5","ref":"refs/heads/misc","pushedAt":"2024-01-10T09:40:27.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"misc: update coverage action to codecov-action/v3","shortMessageHtmlLink":"misc: update coverage action to codecov-action/v3"}},{"before":"bd41357d2bb04bdc9fb17ee7bab3b6a7ea616683","after":"002ffd40cd85fd1166861c67912d617b7564cbc2","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:36:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"misc: remove ubuntu:kinetic from test build matrix\n\nAs it does not seem to work anymore.","shortMessageHtmlLink":"misc: remove ubuntu:kinetic from test build matrix"}},{"before":"426f97f0d8f2c0a00756ef3471ec00563f4bbf1e","after":"bd41357d2bb04bdc9fb17ee7bab3b6a7ea616683","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:18:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"misc: update coverage action to codecov-action/v3","shortMessageHtmlLink":"misc: update coverage action to codecov-action/v3"}},{"before":"3fb0c374fb01d268a982277dfcd01e4edeb0cc20","after":"426f97f0d8f2c0a00756ef3471ec00563f4bbf1e","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:14:55.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Add support for llhttp to use instead of http-parser\n\nAs http-parser has been unmaintained for a while [1], let's add\nsupport for its natural replacement, llhttp.\n\nHowever, as llhttp does not seem to be packaged in distros like\nDebian [2], we will keep supporting building with http-parser for\ntime being, preferring llhttp, if it is present.\n\n[1] https://github.com/nodejs/http-parser/issues/522\n[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977716","shortMessageHtmlLink":"Add support for llhttp to use instead of http-parser"}},{"before":null,"after":"3fb0c374fb01d268a982277dfcd01e4edeb0cc20","ref":"refs/heads/llhttp","pushedAt":"2024-01-10T09:04:28.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Add support for llhttp to use instead of http-parser\n\nAs http-parser has been unmaintained for a while [1], let's add\nsupport for its natural replacement, llhttp.\n\nHowever, as llhttp does not seem to be packaged in distros like\nDebian [2], we will keep supporting building with http-parser for\ntime being, preferring llhttp, if it is present.\n\n[1] https://github.com/nodejs/http-parser/issues/522\n[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977716","shortMessageHtmlLink":"Add support for llhttp to use instead of http-parser"}},{"before":"80725fda5dd2f98b201af06bb66ee96b1ec8863a","after":"a5ed6b021e124ae9ecc0de0674defd3640417a1b","ref":"refs/heads/master","pushedAt":"2024-01-08T12:25:39.000Z","pushType":"push","commitsCount":24,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Increase test timeouts (#131)\n\nResolves: #130\r\n\r\nSigned-off-by: Sergio Arroutbi ","shortMessageHtmlLink":"Increase test timeouts (latchset#131)"}},{"before":"05b12d14f7945b898235558af0bbaa43c582ccdd","after":null,"ref":"refs/heads/umask","pushedAt":"2023-06-14T16:16:05.062Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"}},{"before":null,"after":"05b12d14f7945b898235558af0bbaa43c582ccdd","ref":"refs/heads/umask","pushedAt":"2023-06-14T13:52:27.504Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"Fix race condition when creating/rotating keys\n\nWhen we create/rotate keys using either the tangd-keygen and\ntangd-rotate-keys helpers, there is a small window between the\nkeys being created and then the proper ownership permissions being\nset. This also happens when there are no keys and tang creates a\npair of keys itself.\n\nIn certain situations, such as the keys directory having wide open\npermissions, a user with local access could exploit this race\ncondition and read the keys before they are set to more restrictive\npermissions.\n\nTo prevent this issue, we now set the default umask to 0337 before\ncreating the files, so that they are already created with restrictive\npermissions; afterwards, we set the proper ownership as usual.\n\nIssue reported by Brian McDermott of CENSUS labs.\n\nFixes CVE-2023-1672\n\nSigned-off-by: Sergio Correia \nReviewed-by: Sergio Arroutbi ","shortMessageHtmlLink":"Fix race condition when creating/rotating keys"}},{"before":null,"after":"30dc7929ebf78f8cc16061a24278c296623dee48","ref":"refs/heads/ci","pushedAt":"2023-05-05T12:42:52.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"ci: use codecov/codecov-action@v3 instead of v1","shortMessageHtmlLink":"ci: use codecov/codecov-action@v3 instead of v1"}},{"before":"d4817a332fb6bc55472a72dafcc7d7ae9f2c1e58","after":"322bbe4bd68b072af036d54a2f8fe98a219b922d","ref":"refs/heads/misc-fixes","pushedAt":"2023-05-05T11:27:33.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"socket: fix possible buffer overflow in listen_port()\n\nAt some point in listen_port(), we memcpy() the IP address -- ai_addr\nfield (struct sockaddr), but used, as the size, the ai_addrlen field\nfrom ptr, which is struct addrinfo.\n\nThis means that, for IPv4, we had ai_addrlen being 16, while for IPv6,\nit was 28. The problem is that we copy this address to a struct\nsockaddr, which has sizeof 16.\n\nThis issue was exposed by running this under i686 with D_FORTIFY_SOURCE\nenabled, as we got a buffer overflow upon starting.\n\nThis commit changes the memcpy() call to use the correct size for the\ndestination memory area.","shortMessageHtmlLink":"socket: fix possible buffer overflow in listen_port()"}},{"before":"b5b0f165e9380c8ae9363c4fa88c44d69d5377ff","after":"d4817a332fb6bc55472a72dafcc7d7ae9f2c1e58","ref":"refs/heads/misc-fixes","pushedAt":"2023-05-05T11:24:31.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"socket: fix possible buffer overflow in listen_port()\n\nAt some point in listen_port(), we memcpy() the IP address -- ai_addr\nfield (struct sockaddr), but used, as the size, the ai_addrlen field\nfrom ptr, which is struct addrinfo.\n\nThis means that, for IPv4, we had ai_addrlen being 16, while for IPv6,\nit was 28. The problem is that we copy this address to a struct\nsockaddr, which has sizeof 16.\n\nThis issue was exposed by running this under i686 with D_FORTIFY_SOURCE\nenabled, as we got a buffer overflow upon starting.\n\nThis commit changes the memcpy() call to use the correct size for the\ndestination memory area.","shortMessageHtmlLink":"socket: fix possible buffer overflow in listen_port()"}},{"before":"72bfaed0d852a275ce96c05fecb9d3ee427b89e3","after":"b5b0f165e9380c8ae9363c4fa88c44d69d5377ff","ref":"refs/heads/misc-fixes","pushedAt":"2023-05-05T11:15:59.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"sergio-correia","name":"Sergio Correia","path":"/sergio-correia","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/40298165?s=80&v=4"},"commit":{"message":"socket: fix possible buffer overflow in listen_port()\n\nAt some point in listen_port(), we memcpy() the IP address -- ai_addr\nfield (struct sockaddr), but used, as the size, the ai_addrlen field\nfrom ptr, which is struct addrinfo.\n\nThis means that, for IPv4, we had ai_addrlen being 16, while for IPv6,\nit was 28. The problem is that we copy this address to a struct\nsockaddr, which has sizeof 16.\n\nThis issue was exposed by running this under i686 with D_FORTIFY_SOURCE\nenabled, as we got a buffer overflow upon starting.\n\nThis commit changes the memcpy() call to use the correct size for the\ndestination memory area.","shortMessageHtmlLink":"socket: fix possible buffer overflow in listen_port()"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"Y3Vyc29yOnYyOpK7MjAyNC0wMi0xMlQxMzoyMTo0Mi4wMDAwMDBazwAAAAP4dBTc","startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wMi0xMlQxMzoyMTo0Mi4wMDAwMDBazwAAAAP4dBTc","endCursor":"Y3Vyc29yOnYyOpK7MjAyMy0wNS0wNVQxMToxNTo1OS4wMDAwMDBazwAAAAMmvAqT"}},"title":"Activity ยท sergio-correia/tang"}