summaryrefslogtreecommitdiff
path: root/usr.sbin/httpd/parse.y
AgeCommit message (Expand)Author
2016-08-22Enable SNI support in httpd(8).Joel Sing
2016-08-15Move server_match() from parse.y to server.c; use env instead of conf,Joel Sing
2016-08-15Make httpd stricter with respect to TLS configuration - in particular, doJoel Sing
2016-06-21do not allow whitespace in macro names, i.e. "this is" = "a variable".Sebastian Benoit
2015-11-22Update log.c: change fatal() and fatalx() into variadic functions,Reyk Floeter
2015-08-20stdlib.h is in scope; do not cast malloc/calloc/realloc*Theo de Raadt
2015-08-20Change httpd(8) to use C99-style fixed-width integers (uintN_t insteadReyk Floeter
2015-08-19spacingReyk Floeter
2015-07-19For the completeness of HSTS, add the non-standard preload option.Reyk Floeter
2015-07-18Allow to change the default media type globally or per-location,Reyk Floeter
2015-07-18Implement HTTP Strict Transport Security (HSTS).Florian Obser
2015-07-16spacingReyk Floeter
2015-07-15Unbreak configurations that have a non-TLS listen statement followed by aJoel Sing
2015-06-23Add initial support for pattern matching using Lua's pattern matching code.Reyk Floeter
2015-04-01Zero the tls cert/key length variables when inheriting a serverJonathan Gray
2015-03-09Make httpd TLSv1.2-only by default. Some older browsers, like IE 10,Reyk Floeter
2015-02-12Allow TLS protocols to be specified via a "tls protocols" configurationJoel Sing
2015-02-08Use AI_ADDRCONFIG when resolv hosts on startup.Reyk Floeter
2015-02-08spacingReyk Floeter
2015-02-07Add httpd configuration options to allow the specification of DHEJoel Sing
2015-02-07Add support for blocking, dropping, and redirecting requests.Reyk Floeter
2015-02-06Fix log options in locations.Reyk Floeter
2015-01-29Fix a regression that removed support for using service names insteadReyk Floeter
2015-01-21httpd is based on relayd and had included many headers that are onlyReyk Floeter
2015-01-19No need to include pfvar.h, another leftover from relayd. It was alsoReyk Floeter
2015-01-19Decouple auth parameters from struct server_config into struct auth.Reyk Floeter
2015-01-18First stab at implementing basic auth.Florian Obser
2015-01-16Replace <sys/param.h> with <limits.h> and other less dirty headers whereTheo de Raadt
2015-01-13bump copyright yearReyk Floeter
2015-01-07Relax configuration list parsing to allow multi-line blocks for tls,Reyk Floeter
2015-01-06Only open a socket once for each unique "listen on" statement. ThisReyk Floeter
2015-01-04add new url stripping option:Christopher Zimmermann
2015-01-03Reset tls key and cert to NULL when duplicating a server - avoids aReyk Floeter
2015-01-03Tweak previous - add a missing free in the error path.Reyk Floeter
2015-01-03Support alias names and multiple listen statements per server block.Reyk Floeter
2014-12-21Stop pulling in <arpa/inet.h> or <arpa/nameser.h> when unnecessary.Philip Guenther
2014-12-18Accept * as an alias for the default ipv4 listen address.Reyk Floeter
2014-12-12Like previously done in relayd, change the keyword "ssl" to "tls" toReyk Floeter
2014-12-04stop viral header propagation. none of this code uses sys/hash.hTed Unangst
2014-11-20Don't allow embedded nul characters in strings.Jonathan Gray
2014-11-11Allow the log directory to be configurable in the config file, rather thanBob Beck
2014-11-03Convert the logic in yyerror(). Instead of creating a temporaryAlexander Bluhm
2014-11-03Add gcc format attributes to yyerror() in httpd.Doug Hogan
2014-09-05Remove a limitation that only allowed to specify a server name once.Reyk Floeter
2014-09-04One line change adding the 'include' directive to the valid serverReyk Floeter
2014-08-25Add a generic system-wide /usr/share/misc/mime.types file that can beReyk Floeter
2014-08-09Allow to inclue the types section anywhere in the configuration file.Reyk Floeter
2014-08-06Change grammar to remove a shift/reduce conflict that was introducedReyk Floeter
2014-08-06Limit the body size in client requests (eg. POST data) to 1M by default;Reyk Floeter
2014-08-06Provide configuration options that allow the SSL certificate, key andJoel Sing