technocloud-public/nginx-unit
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
2,120 Commits 1 Branch 0 Tags
f8b892e1fa3d6398a21ce5e183911baa11a14d6a
Commit Graph

3 Commits

Author SHA1 Message Date
Valentin Bartenev
7bf6253941 Custom implementation of Base64 decoding function. 
Compared to the previous implementation based on OpenSSL, the new implementation
has these advantages:

 1. Strict and reliable detection of invalid strings, including strings with
    less than 4 bytes of garbage at the end;

 2. Allows to use Base64 strings without '=' padding.
 2021-10-26 15:43:44 +03:00
Tiago Natel
411daeaa53 Isolation: allowed the use of credentials with unpriv userns. 
The setuid/setgid syscalls requires root capabilities but if the kernel
supports unprivileged user namespace then the child process has the full
set of capabilities in the new namespace, then we can allow setting "user"
and "group" in such cases (this is a common security use case).

Tests were added to ensure user gets meaningful error messages for
uid/gid mapping misconfigurations.
 2019-12-06 16:52:50 +00:00
Andrey Zelenkov
78a77c3e38 Tests: move existing tests to "src" folder. 2017-11-21 18:55:28 +03:00