<feed xmlns='http://www.w3.org/2005/Atom'>
<title>gmnisrv/doc/gmnisrvini.scd, branch main</title>
<subtitle>Fork of gmnisrv (Gemini server): full CA certificate chain (Lets Encrypt), TLS 1.3 only, handshake buffer-overflow fix
</subtitle>
<id>https://git.virebent.art/virebent/gmnisrv/atom?h=main</id>
<link rel='self' href='https://git.virebent.art/virebent/gmnisrv/atom?h=main'/>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/'/>
<updated>2021-06-17T13:52:50+00:00</updated>
<entry>
<title>Support REMOTE_USER in CGI</title>
<updated>2021-06-17T13:52:50+00:00</updated>
<author>
<name>dece</name>
<email>shgck@pistache.land</email>
</author>
<published>2021-06-17T11:25:27+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=9f2481dcdf60387e57cfe357bc8d04997c967e57'/>
<id>urn:sha1:9f2481dcdf60387e57cfe357bc8d04997c967e57</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Support TLS_CLIENT_SERIAL_NUMBER in CGI</title>
<updated>2021-06-17T13:52:50+00:00</updated>
<author>
<name>dece</name>
<email>shgck@pistache.land</email>
</author>
<published>2021-06-17T11:25:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=d7bd3c6a0db4c79f244d8880d86a899eb0f8ca01'/>
<id>urn:sha1:d7bd3c6a0db4c79f244d8880d86a899eb0f8ca01</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Send client certificate hash for CGI scripts.</title>
<updated>2021-02-11T14:19:16+00:00</updated>
<author>
<name>nytpu</name>
<email>alex@nytpu.com</email>
</author>
<published>2021-02-11T01:14:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=ae7ca3db3983321c0ada8416cc19f17190802f38'/>
<id>urn:sha1:ae7ca3db3983321c0ada8416cc19f17190802f38</id>
<content type='text'>
Set SSL_VERIFY_PEER to request a client certificate from the server,
when available.  Have to shim the certificate verification function or
else it will fail on self-signed client certs.

In serve_cgi retrieve client certificate, create a fingerprint, and set
proper environment variables.  It's pretty barebones, it doesn't parse
the certificate to give any other useful info like the common name, but
it's acceptable IMO.  For most CGI uses the fingerprint is the only
thing that is needed anyways.
</content>
</entry>
<entry>
<title>Fix typo in documentation for $GATEWAY_INTERFACE</title>
<updated>2020-11-11T15:30:03+00:00</updated>
<author>
<name>Eyal Sawady</name>
<email>ecs@d2evs.net</email>
</author>
<published>2020-11-11T05:31:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=05a71905f959765fad74232b42dee6118b6f2029'/>
<id>urn:sha1:05a71905f959765fad74232b42dee6118b6f2029</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Implement URL rewrites with regex capture groups</title>
<updated>2020-11-01T16:19:51+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-11-01T16:19:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=dc6e4e80c0b0a3950594e32db7cff1b2db24d75c'/>
<id>urn:sha1:dc6e4e80c0b0a3950594e32db7cff1b2db24d75c</id>
<content type='text'>
</content>
</entry>
<entry>
<title>gmnisrv.ini(5): clarify tokens in route config</title>
<updated>2020-11-01T15:34:41+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-11-01T15:34:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=953039e0b15df9c119b70eb18f36e580a4c4e7d4'/>
<id>urn:sha1:953039e0b15df9c119b70eb18f36e580a4c4e7d4</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Change meaning of root (backwards incompatible!)</title>
<updated>2020-11-01T15:32:44+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-11-01T15:30:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=16e55c62623ef33db5e143126582d93c44ea950e'/>
<id>urn:sha1:16e55c62623ef33db5e143126582d93c44ea950e</id>
<content type='text'>
This takes the nginx approach to the "root" directive, which is simpler
to implement and more consistent with more complex routing behaviors
like regexp.

The path component of the URL is now simply appended to the root to form
the path to the file which should be served to the client.
</content>
</entry>
<entry>
<title>It's actually ECMAScript 2018 compatible</title>
<updated>2020-11-01T15:21:45+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-11-01T15:21:01+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=36e53f1f7f4681edd15fd4925357d6676db6aa8e'/>
<id>urn:sha1:36e53f1f7f4681edd15fd4925357d6676db6aa8e</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Clarify regex details in gmnisrv.ini(5)</title>
<updated>2020-11-01T14:48:10+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-11-01T14:48:10+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=4b6f5a1c61b1d1bdc4ea145ff5652dd3fefce570'/>
<id>urn:sha1:4b6f5a1c61b1d1bdc4ea145ff5652dd3fefce570</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Initial support for CGI scripts</title>
<updated>2020-10-26T03:16:50+00:00</updated>
<author>
<name>Drew DeVault</name>
<email>sir@cmpwn.com</email>
</author>
<published>2020-10-26T03:16:50+00:00</published>
<link rel='alternate' type='text/html' href='https://git.virebent.art/virebent/gmnisrv/commit/?id=cc1bd152e30e14827d2a002fef99384f418c22ab'/>
<id>urn:sha1:cc1bd152e30e14827d2a002fef99384f418c22ab</id>
<content type='text'>
</content>
</entry>
</feed>
