summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd/relay.c
AgeCommit message (Expand)Author
2021-03-24Responses to HEAD requests must not have a message body (even though they haveSebastian Benoit
2021-01-27remove bogus key hack now that it's handled by libtlsEric Faurot
2021-01-09Add 'strip' directivedenis
2020-05-14Enable TLSv1.3 support in relayd(8)pvk
2019-07-13Don't "forward to <table>" when a "forward to destination" address is set.Christopher Zimmermann
2019-06-28When system calls indicate an error they return -1, not some arbitraryTheo de Raadt
2019-06-26Add support for OCSP staplingReyk Floeter
2019-05-31Move the relay keys/certs into a separate global list and look them up by id.Reyk Floeter
2019-05-29Move relay_load_*() functions into relayd.cReyk Floeter
2019-05-13Fix filter rules with "forward to" statement in persistent connections.Reyk Floeter
2019-05-10Add support for from/to in relay filter rules.Reyk Floeter
2019-05-08Fix and tweak websocket upgrade handling.Reyk Floeter
2019-03-04Support for rfc 6455 Websockets connection upgrade. Add a new protocolSebastian Benoit
2018-09-19Do not abort when the ca privenc runs into a timeout.Reyk Floeter
2018-08-06replace the current log optionsSebastian Benoit
2018-06-10When a TLS error occurs, print the tls_error() message as part of theSebastian Benoit
2018-04-18Remove RELAY_MAX_SESSIONS from relayd, there is no reason to limit relaysClaudio Jeker
2017-12-27log specific error when connect() fails.Sebastian Benoit
2017-11-28Introduce relay_reset_event() which closes and resets a relay connection.Claudio Jeker
2017-11-28In TLS inspection mode we also need to keep the server tls object around.Claudio Jeker
2017-11-28Add space between to and read like in other DPRINTFs.Claudio Jeker
2017-11-27Change the ecdhe curve configuration to the same way httpd is doing it.Claudio Jeker
2017-11-27lseek/read is racy when there is multiple consumers. Use pread instead.Claudio Jeker
2017-11-27Add a DPRINTF() in relay_error() that helped me out way too many times.Claudio Jeker
2017-11-27Use file descriptor passing to load certificates into the relays. EspeciallyClaudio Jeker
2017-11-27Do not rip out the output buffer of the bufferevent. Instead just use anClaudio Jeker
2017-11-27relay_tls_connected() is playing with the inner bowels of bufferevents.Claudio Jeker
2017-09-23The relayd regression tests for chunked HTTP traffic were failingAlexander Bluhm
2017-08-28Do not close the relay if data is still in the output buffer.Alexander Bluhm
2017-08-09Call tls_config_skip_private_key_check() to disable the key checking inClaudio Jeker
2017-07-30Fix a double free of the TLS config in the error path.Alexander Bluhm
2017-07-28Always calculate the hash value of the x509 cert in ssl_load_pkey().Alexander Bluhm
2017-07-04make relayd not crash in relay_udp_server() when using a dns relay.Sebastian Benoit
2017-05-28use __func__ in log messages. fix some whitespace while here.Sebastian Benoit
2017-05-27Migrate relayd to use libtls for TLS. Still does the TLS privsep via theClaudio Jeker
2017-02-02Disable client-initiated TLS renegotiation by default.Reyk Floeter
2017-01-09Stop accessing verbose and debug variables from log.c directly.Reyk Floeter
2016-11-10Fix tcp ip ttl / minttl on IPv6 sockets.Jeremie Courreges-Anglas
2016-09-29fix DEBUG build after ps->ps_instance changeSebastian Benoit
2016-09-26spacingReyk Floeter
2016-09-23use sizeof instead of constant 16 in function callsJonathan Gray
2016-09-22Change function arguments from "unsigned char keyname[16]" toJonathan Gray
2016-09-22correct invalid use of sizeofJonathan Gray
2016-09-02Split "struct relayd" into two structs: "struct relayd" and "structReyk Floeter
2016-09-02proc_id has been replaced by ps->ps_instance.Reyk Floeter
2016-09-02As done in httpd, remove ps_ninstances and p_instance.Reyk Floeter
2016-09-02Terminate relayd using the socket status instead of watching SIGCHLDReyk Floeter
2016-09-01Switch from the not really working session cache (because of the multiprocessClaudio Jeker
2015-12-30SSL_CTX_free() and SSL_free() check for null so dont do it in relaydSebastian Benoit
2015-12-24completly -> completelymmcc
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-15 20:16:13 +0000