| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
| |
- tp: limit stdin to 64 KiB + 1 byte to reject oversized pastes
early without unbounded memory allocation
- daemon: bound the oversized-line drain to MAX_LINE_SIZE so a
client without newlines cannot block beyond the read timeout
- tpd: document intentional Arc::into_raw leak in signal handler
|
| |
|
|
|
|
|
|
|
| |
- Write identity.key with mode 0600 to prevent other users from
reading the Ed25519 private seed
- Use destination filename in atomic_write temp path to avoid
collisions between concurrent writes to different files
- Reject HTTP methods other than GET/HEAD with 405
- Return "Hello Tesseras World" on GET /
|
| | |
|
| |
|
|
|
| |
Report the actual error instead of silently ignoring it and
failing later with a confusing message in PasteStore::open.
|
| |
|
|
|
|
|
| |
tpd: unveil data dir (rwc), resolv.conf (r) when DNS needed,
then pledge stdio rpath wpath cpath fattr inet unix dns.
tp: unveil socket path (rw), then pledge stdio unix rpath.
|
| |
|
|
|
|
| |
tpd now queries _tesseras._udp.tesseras.net SRV records to discover
bootstrap peers when no -b flag is given. Add -n flag to disable this
automatic discovery for seed/isolated nodes.
|
|
|
DHT-backed encrypted pastebin with two binaries (tp/tpd),
XChaCha20-Poly1305 encryption, content-addressed storage,
and Unix socket + HTTP interfaces.
|