summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2019-08-30revert r1.175 which added unveil to relayd; "check script" needs access to theStuart Henderson
2019-07-13fix error description on invalid forward ip.Christopher Zimmermann
2019-07-13Don't "forward to <table>" when a "forward to destination" address is set.Christopher Zimmermann
2019-07-05Add a new macro called $HOST that expands to the Host header's value or fallsRobert Nagy
2019-07-05Fix integer sizes in format strings and enable formatting warningsPatrick Wildt
2019-06-28When system calls indicate an error they return -1, not some arbitraryTheo de Raadt
2019-06-26Add support for OCSP staplingReyk Floeter
2019-06-01Make sure that the IMSG_CTL_RESET message is sent immediately.Reyk Floeter
2019-05-31Add support for SNI with new "tls keypair" option to load additional certs.Reyk Floeter
2019-05-31Move the relay keys/certs into a separate global list and look them up by id.Reyk Floeter
2019-05-29Fix the check if a relay has been specified twiceReyk Floeter
2019-05-29Move relay_load_*() functions into relayd.cReyk Floeter
2019-05-13Add Connection: close when switching to "unlimited" reading mode.Reyk Floeter
2019-05-13Fix filter rules with "forward to" statement in persistent connections.Reyk Floeter
2019-05-10Add support for from/to in relay filter rules.Reyk Floeter
2019-05-08Fix and tweak websocket upgrade handling.Reyk Floeter
2019-04-24restrict filesystem access to read only on main process via unveil(2)Ricardo Mestre
2019-03-13remove unused keyword "virtual".Sebastian Benoit
2019-03-04Support for rfc 6455 Websockets connection upgrade. Add a new protocolSebastian Benoit
2019-02-13(unsigned) means (unsigned int) which on ptrdiff_t or size_t or otherTheo de Raadt
2018-11-01- odd condition/test in PF lexerAlexandr Nedvedicky
2018-10-22Make host_*() AF-agnosticdenis
2018-09-19Do not abort when the ca privenc runs into a timeout.Reyk Floeter
2018-09-09During the fork+exec implementation, daemon(3) was moved afterAlexander Bluhm
2018-09-07replace malloc()+strlcpy() with strndup() in cmdline_symset().miko
2018-09-01Accidentally relayd(8) closed file descriptor 0 in the pfe childAlexander Bluhm
2018-08-06space required between macro args and punctuation;Jason McIntyre
2018-08-06replace the current log optionsSebastian Benoit
2018-07-11Do for most running out of memory err() what was done for most runningKenneth R Westerback
2018-07-09No need to mention which memory allocation entry point failed (malloc,Kenneth R Westerback
2018-06-18remove the SECTIONS header, since a one line DESCRIPTION is a bit silly;Jason McIntyre
2018-06-11Fix an off-by-one line count when using include statements.denis
2018-06-10When a TLS error occurs, print the tls_error() message as part of theSebastian Benoit
2018-04-26Plug leak in error case of the common 'varset' implementations.Kenneth R Westerback
2018-04-20adjust the example to make it work;Jason McIntyre
2018-04-18Remove RELAY_MAX_SESSIONS from relayd, there is no reason to limit relaysClaudio Jeker
2018-04-14In case of a tcp read timeout, the destination host state needs to beSebastian Benoit
2018-01-24Log some more errors in the ca code, since there seems to be still a bugClaudio Jeker
2018-01-01RSA_private_{en,de}crypt() can fail and will return -1 in that case.Claudio Jeker
2017-12-27log specific error when connect() fails.Sebastian Benoit
2017-12-18always initialize the hce_launch_checks event timer.Sebastian Benoit
2017-11-29fix double dot;Jason McIntyre
2017-11-29add options to specify the control socket in relayd and relayctl.Sebastian Benoit
2017-11-28One less lie in commentsClaudio Jeker
2017-11-28Introduce relay_reset_event() which closes and resets a relay connection.Claudio Jeker
2017-11-28In TLS inspection mode we also need to keep the server tls object around.Claudio Jeker
2017-11-28relay_load_fd() is no longer clobering errno in the error case so useClaudio Jeker
2017-11-28Add space between to and read like in other DPRINTFs.Claudio Jeker
2017-11-27Change the ecdhe curve configuration to the same way httpd is doing it.Claudio Jeker
2017-11-27Make ca_launch error messages unique.Alexander Bluhm