aboutsummaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2025-04-11Fix Cowlib version in migration guideHEADmasterLoïc Hoguin
2025-04-11Fix jsx test dependency2.2.0Loïc Hoguin
2025-04-11Gun 2.2.0Loïc Hoguin
2025-04-10Add migration guide for Gun 2.2Loïc Hoguin
2025-04-10Cleanup HTTP/2 timeouts on close to avoid stray messagesLoïc Hoguin
2025-04-09Catch post-handshake TLS 1.3 alertsLoïc Hoguin
When TLS 1.3 is used and `fail_if_no_peer_cert` (or equivalent) is configured on the server, such as in mTLS scenarios, and the client certificate is missing or invalid, the TLS 1.3 alert will be sent after the handshake has completed. The same is true for post-handshake authentication in TLS 1.3 which Erlang/OTP doesn't yet support, but will at some point in the future. Due to the asynchronous nature of some `ssl` socket operations, such as sending, the alert may not always be returned from a socket call. When the ssl socket is active we would receive it as a message instead, so when Gun gets `{error,closed}` it must look for the active message and see if an alert occurred. When the ssl socket is passive we don't, so we must query the socket for it (trying to set the socket active at that point gets us the alert in the return value). There is a span between handshake and the initial active mode set where the socket is passive and may send data (the HTTP/2 preface) so we must account for both cases. Because we sometimes have to wait for the alert as a message, and we don't want to wait for a very long time (200ms), we sometimes may lose the alert. Perhaps in the future this wait time can be made configurable for users that really require getting the alert. The tests are only enabled on Linux because other OSes have intermittent failures (likely due to timing).
2025-03-28Recommend disabling automatic reconnect for WebsocketLoïc Hoguin
2025-03-28Reject Websocket frames sent over HTTPLoïc Hoguin
2025-03-27Handle error when sending Websocket pong framesLoïc Hoguin
Also fix an EvHandlerState value that mistakenly got dropped.
2025-03-27Add a paragraph about HTTP/2 compressed headers security riskLoïc Hoguin
2025-03-26Default the origin authority to "localhost" for unix socketsLoïc Hoguin
Otherwise garbage gets sent.
2025-03-26Configure customize_hostname_check by defaultLoïc Hoguin
HTTP requires us to do wildcard certificate matching so we now do it by default. That plus the previously added `cacerts` configuration by default (using `public_key:cacerts_get/0`) means that as far as certificates are concerned, the default should now be fully compliant. Users may want to keep configuring some options such as `depth` though.
2025-03-26Remove copyright years from all files except LICENSELoïc Hoguin
2025-03-26Better identify ping errors and test the HTTP/1.1 oneLoïc Hoguin
2025-03-26User ping payload is 10000 or aboveLoïc Hoguin
2025-03-26Improve the gun:ping manualLoïc Hoguin
2025-03-26Implement user pings for tunnelsLoïc Hoguin
2025-03-21Add gun:ping/2,3 for user-initiated ping for HTTP/2Viktor Söderqvist
Signed-off-by: Viktor Söderqvist <[email protected]>
2025-03-21Respect remote concurrency limit for headers/connect/ws_upgraderespect-remote-concurrency-limitLoïc Hoguin
In order to simplify the implementation the CookieStore is given to the connect function now, even though it's not currently used.
2025-03-18HTTP/2: Respect remote MAX_CONCURRENT_STREAMSViktor Söderqvist
If the limit has been reached, new requests are failed immediately, so that the application can retry them on a different connection. Co-authored-by: Björn Svensson <[email protected]>
2025-02-27Do not ignore data received immediately after switching to rawDenys Knertser
LH: Minor tweaks.
2025-02-27Include event handler state in gun:info/1 resultViktor Söderqvist
Adds event_handler and event_handler_state in the map returned by gun:info/1. Signed-off-by: Viktor Söderqvist <[email protected]>
2025-02-26Add docs for notify_settings_changed in http2_opts()Björn Svensson
LH: I have expanded and documented gun_notify in its own page.
2025-02-26Allow specifying functions for reply_toViktor Söderqvist
LH: I have fixed types, extended tests and tweaked a bit.
2025-02-25Improve graceful_shutdown_goaway_no_error test reliabilityLoïc Hoguin
2025-02-25Send NO_ERROR in client-initiated graceful shutdownViktor Söderqvist
2025-02-25Add state_name field to gun:info/1Viktor Söderqvist
2025-01-13Increase the ping loop in send_errors_SUITELoïc Hoguin
2025-01-13Increase another send_errors timeoutLoïc Hoguin
2025-01-13Increase a send_errors test timeoutLoïc Hoguin
Depending on the environment the send buffer may not be configured as low as we want, so the test will take longer.
2025-01-02HTTP/2: Fix tunneled streams bugsLoïc Hoguin
* Tunneled streams can now close the stream. * Data received on tunneled streams now result in WINDOW_UPDATE frames being sent if necessary, and flow control is handled. This was detected as part of writing a new Cowboy test suite for benchmarking Websocket, but should help other uses too.
2024-11-27Update Discord link to a permanent inviteLoïc Hoguin
2024-11-15Add Discord server to READMELoïc Hoguin
2024-11-08CI: Add concurrency rulesLoïc Hoguin
2024-11-08CI: Fix master build deletionLoïc Hoguin
Some things likely changed and made it not work anymore. Also seems that the macOS runner is now ARM64.
2024-11-06Fix a Dialyzer warningLoïc Hoguin
2024-11-06Update Erlang.mkLoïc Hoguin
2024-03-26Initial HTTP/3 implementationhttp3Loïc Hoguin
Since quicer, which provides the QUIC implementation, is a NIF, Gun cannot depend directly on it. In order to enable QUIC and HTTP/3, users have to set the GUN_QUICER environment variable: export GUN_QUICER=1 Gun is now tested using GitHub Actions. As a result OTP-24+ is now required. In addition, the number of OTP releases tested has been reduced; only the latest of each major version is now tested. This also updates Erlang.mk.
2024-03-14Tweak user guide migration linkLoïc Hoguin
2024-03-14Gun 2.1.02.1.0Loïc Hoguin
2024-03-14Use public_key:cacerts_get/0 when possibleLoïc Hoguin
Also "fix" many TLS test failures due to yet more changes in the default options for TLS. Also small changes to make Dialyzer happy.
2024-03-14Remove client_preferred_next_protocolsViktor Söderqvist
2024-03-14Update Cowlib to 2.13.0Loïc Hoguin
2024-02-27Update Erlang.mkLoïc Hoguin
2023-06-05Fix crash when TLS connection closes very earlyLoïc Hoguin
And ensure that we don't infinite loop when retries are enabled, by decrementing the retry count instead of using a new one. Also check for ssl:negotiated_protocol {error,closed} which was possible but was not documented in OTP before this change. Thanks @voluntas for the help.
2023-04-28Gun 2.0.12.0.1Loïc Hoguin
2023-03-29Update Cowlib to 2.12.1Loïc Hoguin
2023-01-23Update version to 2.0.02.0.0Loïc Hoguin
2023-01-23Update READMELoïc Hoguin
2023-01-23Update public domain suffix listLoïc Hoguin