summaryrefslogtreecommitdiff
path: root/usr.bin/nc
AgeCommit message (Expand)Author
2017-02-08Avoid a busy loop in netcat's tls_close(). Reuse the tls_handshake()Alexander Bluhm
2017-02-08Avoid double close(2) in netcat. After every call to readwrite()Alexander Bluhm
2017-02-08Due to non-blocking sockets, tls_handshake() could wait in a busyAlexander Bluhm
2017-02-05Support IPv6 proxy addressesJeremie Courreges-Anglas
2017-01-26oscp -> ocsp;Jason McIntyre
2016-11-30Check return value of tls_config_set_protocols(3) and tls_config_set_ciphers(3)Ricardo Mestre
2016-11-06tweak previous;Jason McIntyre
2016-11-06rename tlslegacy to tlsall, and better describe what it does.Bob Beck
2016-11-05zap trailing whitespace, and add -o to usage() and help (-h);Jason McIntyre
2016-11-05Add support for server side OCSP stapling to libtls.Bob Beck
2016-11-04new sentence, new line, and zap trailing whitespace;Jason McIntyre
2016-11-04Add ocsp_require_stapling config option for tls - allows a connectionBob Beck
2016-11-03make OCSP_URL only show up when an OCSP url is actually present in the certBob Beck
2016-11-03Make OCSP Stapling: only appear if there is stapling info present.Bob Beck
2016-11-02Add OCSP client side support to libtls.Bob Beck
2016-09-03squash some possibly-used-uninitialized warningsBrent Cook
2016-08-13Let libtls load the CA, certificate and key files for nc(1), now that itJoel Sing
2016-07-30use the style from the man page examples for getaddrinfo, which makes aAlexander Hall
2016-07-13Adjust existing tls_config_set_cipher() callers for TLS cipher groupJoel Sing
2016-07-07Revert previous since the libtls change has been reverted.Joel Sing
2016-07-06Remove manual file loading (now that libtls does this for us) and adjustJoel Sing
2016-07-02do not uppercase "hop limit";Jason McIntyre
2016-07-01Simplify IP proto-specific sockopt error handling.Brent Cook
2016-06-28Add -M and -m options to specify the outgoing and incoming minimum TTLJeremie Courreges-Anglas
2016-06-28If an error path if close() is called, save errno so that original errorTheo de Raadt
2016-06-27Be more careful initializing and tracking socket s through main, this isTheo de Raadt
2016-06-27whitespaceTheo de Raadt
2016-06-02Let netcat support the use of service names instead of port numbers.Bob Beck
2016-05-28Fix pledge violation with -P s used and we need to supply a passwordBob Beck
2016-05-28Fix nc -verbose mode when used on a unix domain socket.Bob Beck
2016-01-04Use the correct values for TLS certificate / private key flags.Brent Cook
2015-12-28include time.h over sys/time.h for ctime(3)Brent Cook
2015-12-17Add missing colon after "Peer name" in verbose output. Mentioned on themmcc
2015-12-16clean up some unused variables, and add the printing of the certificate validityBob Beck
2015-12-10Specify SOCKS version in error messages. ok deraadt@mmcc
2015-12-10Map SOCKS error codes to error strings. With input from deraadt@mmcc
2015-12-08pledge nc better - Load the certificate into memory and then do the pledge,Bob Beck
2015-12-07Get rid of modulo bias and replace the naive shuffle by thetb
2015-11-23rename variable 'sun' to allow building on SolarisBrent Cook
2015-11-13Since rtable was hoisted to the top with setrtable, it should have noTheo de Raadt
2015-11-12with -V argument, dont set rtable on the socket, instead set if for the wholeSebastian Benoit
2015-11-01KNF; from Rob PierceTheo de Raadt
2015-10-23Initial pledge of netcat - unfortunately flawed because fiddling the rtableidBob Beck
2015-10-11Userspace doesn't need to use SUN_LEN(): connect() and bind() must acceptPhilip Guenther
2015-09-25avoid trailing .Ns, reduce .Xo and .Sm, drop redundant .BkIngo Schwarze
2015-09-13display negotiated TLS version and cipher suite in verbose mode.Bob Beck
2015-09-12Adapt to just committed libtls api changeBob Beck
2015-09-12use SOCK_CLOEXEC instead of fnctl; ok guenther beck jsingTheo de Raadt
2015-09-12fix previous;Jason McIntyre
2015-09-11spaces found during a readTheo de Raadt