summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Fixed possible crash in xs_regex_split_n().Gravatar grunfink4 days1-1/+1
|
* More JSON parser tweaks.Gravatar grunfink4 days1-0/+1
|
* Fixed parsing error in xs_multipart_form_data().Gravatar grunfink4 days1-0/+3
|
* More JSON parser fixes.Gravatar grunfink4 days1-0/+1
|
* More JSON parser fixes.Gravatar grunfink4 days1-0/+1
|
* Fixed crash in JSON parser.Gravatar grunfink4 days1-0/+4
|
* Updated RELEASE_NOTES.Gravatar grunfink4 days1-0/+2
|
* Fixed timezones.Gravatar grunfink4 days1-26/+26
|
* Updated RELEASE_NOTES.Gravatar grunfink4 days1-0/+4
|
* Merge pull request 'Log xs_socket_accept failure reason and document OpenBSD ↵Gravatar grunfink4 days3-2/+45
|\ | | | | | | | | | | login class w/ extended openfiles' (#559) from oxzi/snac2:openbsd-openfiles-nfiles into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/559
| * OpenBSD: Document login class w/ extended openfilesGravatar Alvar Penning9 days2-0/+42
| | | | | | | | | | | | | | | | | | | | | | A file heavy applications makes heavy use of files. Shocking news. OpenBSD's daemon login class limits the amount of openfiles quite strict. This restriction is an annoyance for lots of applications, and, unless I am mistaken, seems to be an issue for snac as well. Thus, after hopefully fixing this on my instance, I tried to briefly document this in snac(8) and provide a minimal login.conf(5) example.
| * httpd: Log xs_socket_accept failure reasonGravatar Alvar Penning9 days1-2/+3
|/ | | | | | | | | | | | | | | So far, it was expected that xs_socket_accept should work and while its failure results in a termination, it was not properly logged. With this change, an error message including the strerror message is being logged. After experiencing some unexpected snac httpd shutdowns, I added a bit of additional logging, including when xs_socket_accept fails. This proved useful, as it unveiled a deeper error on my machine: > xs_socket_accept failed: Too many open files Since entering this code path results in termination, I thought upstreaming this logging might be useful for others.
* Version 2.90 RELEASED.2.90Gravatar grunfink10 days1-1/+1
|
* Updated RELEASE_NOTES.Gravatar grunfink10 days1-5/+5
|
* Merge pull request 'Removed two dead links from README.md' (#557) from ↵Gravatar grunfink10 days1-2/+0
|\ | | | | | | | | | | mookie/snac2:master into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/557
| * Removed two dead links from README.mdGravatar Steve Mookie Kong11 days1-2/+0
|/
* Do the same with list 'url' fields in notifications.Gravatar grunfink13 days1-0/+6
|
* Fixed crash when the 'url' field is a list.Gravatar grunfink13 days1-0/+7
|
* Updated RELEASE_NOTES.Gravatar grunfink13 days1-4/+6
|
* Updated TODO.Gravatar grunfink13 days1-2/+2
|
* Merge branch 'master' of comam.es:git/snac2Gravatar grunfink13 days1-0/+2
|\
| * Updated RELEASE_NOTES.Gravatar grunfink13 days1-0/+2
| |
* | Fixed mismatched following count.Gravatar grunfink13 days1-7/+7
|/
* Also show 'url' in notifications.Gravatar grunfink13 days1-1/+3
|
* Use the 'url' link instead of 'id' (if there is one) in html_actor_icon().Gravatar grunfink13 days1-2/+3
|
* Updated RELEASE_NOTES.Gravatar grunfink2026-02-111-1/+1
|
* Merge pull request 'mastoapi: add `uri` field to verify_credentials' (#555) ↵Gravatar grunfink2026-02-111-0/+1
|\ | | | | | | | | | | from ag-eitilt/snac2:mastoapi/credentials-uri into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/555
| * mastoapi: add `uri` field to verify_credentialsGravatar Sam May2026-02-101-0/+1
|/ | | | | | | Mastodon split the field out from `url` for identification purposes in version 4.2.0, leaving the previous for simply navigating to the user page. Some services (notably Bridgy Fed) rely on the `uri` as part of their OAuth flow: https://github.com/snarfed/bridgy-fed/issues/2339
* mastoapi: added a (dummy) client_secret_expires_at value in app creation.Gravatar grunfink2026-02-101-0/+1
|
* Updated TODO.Gravatar grunfink2026-02-101-1/+1
|
* In timelines, always create a 'people/' link, not only if follower or following.Gravatar grunfink2026-02-101-6/+2
|
* Merge pull request 'Update Portuguese (Brazil) translation' (#554) from ↵Gravatar grunfink2026-02-101-17/+17
|\ | | | | | | | | | | daltux/snac2:pt_BR-9 into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/554
| * Merge branch 'master' into pt_BR-9Gravatar Daltux2026-02-101-25/+25
| |\ | |/ |/|
* | Merge pull request 'po/de_DE.po update' (#553) from zen/snac2:master into masterGravatar grunfink2026-02-091-25/+25
|\ \ | | | | | | | | | Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/553
| * | po/de_DE.po updateGravatar zen2026-02-081-25/+25
|/ /
| * Update Brazilian translationGravatar Daltux2026-02-091-17/+17
|/ | | | | | | | New strings (abbreviated months) translated. Fix notification filter list parallelism. Fix clear meaning of a button.
* Added a 'webfinger' field to 'Person' objects.Gravatar grunfink2026-02-071-0/+3
|
* Updated RELEASE_NOTES.Gravatar grunfink2026-02-071-1/+1
|
* Merge pull request 'Bug fix: Poll voting in mastoapi: Check global object ↵Gravatar grunfink2026-02-071-25/+46
|\ | | | | | | | | | | store + Prevent voting when not allowed' (#552) from davidrv00/snac2-fork:vote-fix into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/552
| * Prevent voting via mastoapi if closed or we already votedGravatar David Vaughan2026-02-061-24/+40
| |
| * Check global object store for poll id when voting via mastoapiGravatar David Vaughan2026-02-061-1/+6
| |
* | Updated RELEASE_NOTES.Gravatar grunfink2026-02-071-0/+2
| |
* | Merge pull request 'Add poll creation to mastoapi' (#551) from ↵Gravatar grunfink2026-02-071-9/+37
|\ \ | | | | | | | | | | | | | | | davidrv00/snac2-fork:poll-mastoapi into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/551
| * | Add poll creation to mastoapiGravatar David Vaughan2026-02-061-9/+37
| |/
* | Merge pull request 'snac(8): Words of caution for strip_exif configuration' ↵Gravatar grunfink2026-02-071-0/+11
|\ \ | | | | | | | | | | | | | | | (#549) from oxzi/snac2:strip-metadata-man-warning into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/549
| * | snac(8): Words of caution for strip_exif configurationGravatar Alvar Penning2026-02-051-0/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add words of caution and reasoning to the "strip_exif" configuration for the server.json file, as these commands would be executed outside of the sandbox - at least on OpenBSD - and both have quite a history on security issues due to their huge attack surface and variety of supported protocols. After getting comfortable with the related code, I would continue using it on a personal instance, but would reconsider enabling "strip_exif" on shared instances with multiple users. IMO, snac administrators should at least know of potential dangers.
* | | Updated RELEASE_NOTES.Gravatar grunfink2026-02-071-0/+2
| | |
* | | Merge branch 'master' of grunfink-codeberg:grunfink/snac2Gravatar grunfink2026-02-074-73/+114
|\ \ \
| * \ \ Merge pull request 'strip_exif support for the OpenBSD sandbox' (#548) from ↵Gravatar grunfink2026-02-074-73/+114
| |\ \ \ | | |_|/ | |/| | | | | | | | | | | | | | oxzi/snac2:strip-metadata-openbsd into master Reviewed-on: https://codeberg.org/grunfink/snac2/pulls/548
| | * | strip_exif support for the OpenBSD sandboxGravatar Alvar Penning2026-02-054-73/+114
| | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change the strip_exif logic to work with the already existing OpenBSD sandbox and allow ffmpeg and mogrify to be executed. The previous strip_exif implementation relied on system(3), effectively starting "/bin/sh" and executing the required tool within a shell session. Making this work in the sandbox would require to allow executing "/bin/sh", rendering the sandbox useless. Thus, the code now starts determining the absolute path of the tools - unless they are given as ffmpeg_path or mogrify_path - and allowing them to be executed via unveil(2). Then, instead of the system(3) call, the good old fork(2) and execve(2) dance is performed. The sbox_enter code was made aware of strip_exif, which resulted in a pledge(2) violation before when disable_email_notifications was set to false. Furthermore, the detected paths of the tools are now allowed.
HIC SVNT DRACONES