facil.io v0.7.0.beta6 Release Notes
Release Date: 2018-12-31 // over 5 years ago-
๐ This is a security release with partial support for TLS, using OpenSSL.
๐ TLS support is still under development and the API related to TLS should be considered fragile (I will release 0.7.0 once the API is solid enough and things work).
BREAK : (
fio_tls
) breaking API changes to the SSL/TLS API, adding support for password protected private key files. Note: The TLS API is still fragile and should only be considered stable once version 0.7.0 is released with SSL/TLS support.๐ Security / Fix : (
http
) fixed an issue with the HTTP/1.1 parser, where maliciously crafted white-space data could cause a segmentation fault, resulting a potential DoS.๐ Fix : (
fio
) fixed an issue exposed by implementing the TLS layer, where the highetfd
for a connection that wasn't assigned aprotocol_s
object immediately after the connection was opened, might avoid timeout review or avoid cleanup during shutdown (which will be marked as a memory leak).โก๏ธ Update : (
fio_tls
) added experimental support for OpenSSL. This was only partially tested and should be considered experimental.โก๏ธ Update : (
fio
) added, thefio_rw_hook_replace_unsafe
to allow r/w hook switching from within a r/w hook callback.โก๏ธ Update : (
fio_cli
) a common user-error is a a missingfio_cli_end
, resulting in a memory leak notification. Now facil.io protects against this common error by automatically callingfio_cli_end
during the exit stage, iffio_cli_start
was called.