summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd/relay.c
AgeCommit message (Expand)Author
2016-09-01Switch from the not really working session cache (because of the multiprocessClaudio Jeker
2015-12-30SSL_CTX_free() and SSL_free() check for null so dont do it in relaydSebastian Benoit
2015-12-24completly -> completelymmcc
2015-12-07Remove NULL-checks before free(). No functional change.mmcc
2015-12-05initialize host, to get rid of gcc warning, the conditions are correct.Sebastian Benoit
2015-12-04pledge the relay (layer 7 proxy) children, they can do with "stdioSebastian Benoit
2015-12-02relayd (when running relays) can distribute client sessions over hostsSebastian Benoit
2015-12-02In most cases we don't need all arguments of proc_compose*_imsg(),Reyk Floeter
2015-11-28Use SOCK_NONBLOCK in relayd as well.Reyk Floeter
2015-07-28spacingReyk Floeter
2015-07-18Fix unbounded buffer growth. In the case of a slow client reading large files,Sebastian Benoit
2015-06-12To match relayd's style, use an explicit enum with prefixed names forReyk Floeter
2015-06-08Introduce a state on the ctl_relay_event struct. This makes it possibleClaudio Jeker
2015-05-18Fix a crash reported and analyzed by Bertrand PROVOST. When a HTTPAlexander Bluhm
2015-04-29When the HTTP client did close the connection while relayd was stillAlexander Bluhm
2015-04-23We cannot log errors with relay_close() before allocatingFlorian Obser
2015-02-06Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem().Reyk Floeter
2015-01-22Clean up the relayd headers with help of include-what-you-use and someReyk Floeter
2015-01-22spacingReyk Floeter
2015-01-22LibreSSL now supports loading of CA certificates from memory, replaceReyk Floeter
2015-01-16SSL_CTX_use_certificate_chain() has been added to LibreSSL and thereReyk Floeter
2015-01-16Adapt to <limits.h> universe.Theo de Raadt
2015-01-16The SSL/TLS session Id context is limited to 32 bytes. Instead ofReyk Floeter
2014-12-21Stop pulling in <arpa/inet.h> or <arpa/nameser.h> when unnecessary.Philip Guenther
2014-12-18Update relayd to use siphash instead of sys/hash. The source-hash,Reyk Floeter
2014-12-12Change the keyword "ssl" to "tls" to reflect reality since weReyk Floeter
2014-11-19Support exporting relayd statistics via AgentX/snmpdBret Lambert
2014-11-07Remove the sslv2 option since LibreSSL has no SSLv2 support (however retainJoel Sing
2014-10-25Remove unnecessary netinet/in_systm.h include.Lawrence Teo
2014-10-15Disable SSLv3 by default.Reyk Floeter
2014-09-05revert previous; was based on a work-in-progress, as wellBret Lambert
2014-08-29Implement consistent host hashing for relayd, based onBret Lambert
2014-07-14When a connection was spliced in one direction and in copy mode inAlexander Bluhm
2014-07-13improve log output for relays. adjust regress testsSebastian Benoit
2014-07-11Add support for EDH to provide perfect forward secrecy for older SSLReyk Floeter
2014-07-09Replace the protocol directives for HTTP with a new generic filteringReyk Floeter
2014-06-27knf, no functional change.Andre de Oliveira
2014-05-20Unify the SSL privsep key loading functions.Reyk Floeter
2014-04-22Support the CA key for SSL inspection in the ca process. Instead ofReyk Floeter
2014-04-18Introduce privsep for private keys:Reyk Floeter
2013-09-09Add support for ECDHE (Elliptic curve Diffie-Hellman) to enableReyk Floeter
2013-05-30Support SSL inspection, the ability to transparently filter in SSL/TLSReyk Floeter
2013-04-20SSL_CTX_set_timeout only handles long for the delta timeval, so constrainTheo de Raadt
2013-03-10This diff changes relayd to use the monotonic clock instead ofReyk Floeter
2013-03-09Enable TCP socket splicing for HTTP persistent connection and chunkedAlexander Bluhm
2013-02-05Rework http content and chunk handling in relayd. Use specialAlexander Bluhm
2013-01-17Remove unnecessary pointer casts. No binary diff.Alexander Bluhm
2012-12-18reorder some variables and move large buffers to the top of the stack.Reyk Floeter
2012-11-29Fix white spaces in relayd. No binary diff.Alexander Bluhm
2012-11-27Add format attributes to the proper functions and then fix the warningsPhilip Guenthe