Fix important bugs in redbean

This change upgrades to the latest Chromium Zlib, fixes bugs in redbean, and introduces better support for reverse proxies like Cloudflare. This change improves the security of redbean and it's recommended that users upgrade to the release that'll follow. This change also updates the docs to clarify how to use the security tools redbean provides e.g. pledge(), unveil(), and the MODE=asan builds which improve memory safety.
2025-05-28 00:02:28 +00:00 · 2022-09-17 01:37:33 -07:00 · 2022-09-17 01:37:33 -07:00 · 775944a2d0
commit 775944a2d0
parent 994e1f4386
42 changed files with 8148 additions and 7298 deletions
--- a/third_party/zlib/README.cosmo
+++ b/third_party/zlib/README.cosmo
@ -0,0 +1,29 @@
+DESCRIPTION
+
+  zlib implements the deflate compression algorithm.
+
+ORIGIN
+
+  https://chromium.googlesource.com/chromium/src/third_party/zlib
+  commit 8f22e90f007a7dd466b426513725c13191248315
+  Author: Hans Wennborg <hans@chromium.org>
+  Date:   Fri Sep 16 16:14:51 2022 +0000
+
+    [zlib][fuzz] Cap the input size for zlib_inflate_with_header_fuzzer
+    
+    To prevent timeouts when processing large inputs with small chunk sizes.
+    
+    Bug: 1362206
+    Change-Id: Ie21ea48abf85ee49897243857bf84b0f32d24bd5
+    Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3899099
+    Reviewed-by: Adenilson Cavalcanti <cavalcantii@chromium.org>
+    Auto-Submit: Hans Wennborg <hans@chromium.org>
+    Commit-Queue: Adenilson Cavalcanti <cavalcantii@chromium.org>
+    Cr-Commit-Position: refs/heads/main@{#1048044}
+    NOKEYCHECK=True
+    GitOrigin-RevId: fd75b8c2768e7cc3a3e7a06bc563bb03c5ba0ec2
+
+LOCAL CHANGES
+
+  - Changed Trace() calls to use kprintf()
+  - We use our own crc32() implementation from LIBC_STR