summaryrefslogtreecommitdiffstats
path: root/usr.sbin/relayd (follow)
Commit message (Expand)AuthorAgeFilesLines
...
* fix double dot;jmc2017-11-291-2/+2
* add options to specify the control socket in relayd and relayctl.benno2017-11-294-8/+15
* One less lie in commentsclaudio2017-11-281-2/+2
* Introduce relay_reset_event() which closes and resets a relay connection.claudio2017-11-282-29/+41
* In TLS inspection mode we also need to keep the server tls object around.claudio2017-11-282-5/+7
* relay_load_fd() is no longer clobering errno in the error case so useclaudio2017-11-281-3/+3
* Add space between to and read like in other DPRINTFs.claudio2017-11-281-2/+2
* Change the ecdhe curve configuration to the same way httpd is doing it.claudio2017-11-275-50/+36
* Make ca_launch error messages unique.bluhm2017-11-271-7/+7
* lseek/read is racy when there is multiple consumers. Use pread instead.claudio2017-11-271-4/+5
* Add a DPRINTF() in relay_error() that helped me out way too many times.claudio2017-11-271-1/+3
* Use file descriptor passing to load certificates into the relays. Especiallyclaudio2017-11-276-109/+225
* Do not rip out the output buffer of the bufferevent. Instead just use anclaudio2017-11-271-7/+8
* rfc 7230 mandates that a "204 No Content" http status must not come with abenno2017-11-271-14/+18
* relay_tls_connected() is playing with the inner bowels of bufferevents.claudio2017-11-271-1/+4
* Simplify relay_close_http(), make relay_httpdesc_free() accept and ignoreclaudio2017-11-271-13/+9
* Check that http options are only configured in http protocols.bluhm2017-11-161-1/+6
* make the maximum size of http headers configurable in the protocol.benno2017-11-154-22/+59
* The relayd regression tests for chunked HTTP traffic were failingbluhm2017-09-232-13/+17
* Differentiate between a style string not being specified and an emptyjsg2017-09-141-3/+4
* Do not close the relay if data is still in the output buffer.bluhm2017-08-281-4/+4
* 65535 is a valid port to listen on.florian2017-08-281-2/+2
* Use X509_pubkey_digest() like libtls to hash the keys for the TLS privsepclaudio2017-08-091-3/+3
* Call tls_config_skip_private_key_check() to disable the key checking inclaudio2017-08-091-1/+4
* Fix a double free of the TLS config in the error path.bluhm2017-07-301-4/+3
* Always calculate the hash value of the x509 cert in ssl_load_pkey().bluhm2017-07-284-47/+50
* Consistently use the variable "ttl" for get/setsockoptjca2017-07-121-7/+8
* Correctly set ttl for IPv4 and IPv6.florian2017-07-111-13/+40
* The config option is called "no splice", the parser rejects "nosplice".bluhm2017-07-111-3/+3
* if configured, set the ttl (IPV6_UNICAST_HOPS) for ipv6 tcp checks.benno2017-07-041-6/+14
* make relayd not crash in relay_udp_server() when using a dns relay.benno2017-07-043-12/+12
* no need to generate y.tab.h if nothing uses it, set YFLAGS to nothingespie2017-07-031-2/+2
* Fix a memory leak in pkey_add() error path. All current callers fataljsg2017-05-311-2/+4
* use __func__ in log messages. fix some whitespace while here.benno2017-05-2816-130/+124
* Migrate relayd to use libtls for TLS. Still does the TLS privsep via theclaudio2017-05-2713-896/+1094
* Convert explicit_bzero() + free() to freezero().fcambus2017-05-061-10/+4
* better example; from hiltjo posthumajmc2017-04-191-4/+4
* fix format string found by clang -Wformat-securitygsoares2017-04-061-2/+2
* X-Forwarded-By should be the server $SERVER_ADDR instead of the clientclaudio2017-03-251-3/+3
* From a syslog perspective it does not make sense to log fatal andbluhm2017-03-211-6/+6
* DELETE can have a body.reyk2017-03-101-2/+2
* update an example in the relayd.conf manpage, that was not convertedbenno2017-02-271-3/+3
* Do not loose the send/expect validation error on timeout.reyk2017-02-091-3/+7
* Disable client-initiated TLS renegotiation by default.reyk2017-02-023-77/+14
* move the opening of /dev/pf from the parent process to the pfe processbenno2017-01-244-51/+37
* Stop accessing verbose and debug variables from log.c directly.reyk2017-01-098-24/+28
* Replace hand-rolled for(;;) traversal of ctl_conns TAILQ withkrw2017-01-091-4/+5
* Sync log.c with the latest version from vmd/log.c that preserves errnoreyk2017-01-081-9/+11
* Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with morekrw2017-01-051-3/+2
* Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQkrw2017-01-051-5/+7
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.