summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2015-10-27change cipher-server-preference to be on by default. It can be disabled withSebastian Benoit
2015-10-24clarify where "with tls" can be used.Sebastian Benoit
2015-10-23let the icmp check use getsockopt IP_IPDEFTTL to get the default ttlSebastian Benoit
2015-10-14More (unsigned char) casts for ctype functions.Reyk Floeter
2015-10-10relayd's ca process pledges to only use stdio.Sebastian Benoit
2015-10-01sync proc.c with httpd. no functional change, only switching to C99 types.Reyk Floeter
2015-09-27include <unistd.h> unconditionallyTheo de Raadt
2015-08-21Increase the input side socket buffer size for "check icmp" not toYASUOKA Masahiko
2015-08-20stdlib.h is in scope; do not cast malloc/calloc/realloc*Theo de Raadt
2015-08-10typo, decl*e*ration; from Larry HynesStuart Henderson
2015-07-29fix bug where other than the last of multiple forward rules in httpSebastian Benoit
2015-07-28spacingReyk Floeter
2015-07-27use file system path (.Pa) semantic markup macros where appropriate.Igor Sobrado
2015-07-24an TLS -> a TLS; from thanos tsouanasJason McIntyre
2015-07-19don't return failure for agentx messages with 0-length payloadsBret Lambert
2015-07-18Fix unbounded buffer growth. In the case of a slow client reading large files,Sebastian Benoit
2015-06-12To match relayd's style, use an explicit enum with prefixed names forReyk Floeter
2015-06-11Use "compliant" header guards by avoiding the reserved '_' namespace.Reyk Floeter
2015-06-08Introduce a state on the ctl_relay_event struct. This makes it possibleClaudio Jeker
2015-06-03Do not assume that asprintf() clears the pointer on failure, whichTodd C. Miller
2015-06-01Fix memory leak in error case. OK bluhm@ benno@Claudio Jeker
2015-05-30Plug a memory leak by simplifying kv_free(). By checking the type andClaudio Jeker
2015-05-30Remove fields from struct that are not used. OK benno@Claudio Jeker
2015-05-28Do not try to unlink the control socket in an unprivileged childFlorian Obser
2015-05-22fix a non safe use of TAILQ_FOREACH with TAILQ_REMOVEJonathan Gray
2015-05-18Fix a crash reported and analyzed by Bertrand PROVOST. When a HTTPAlexander Bluhm
2015-05-18The first line of a HTTP request is the method-url-version. TheAlexander Bluhm
2015-05-15Fix kill'n'yank error: the port is mandatory in relay listen on statements.Reyk Floeter
2015-05-15client/server mox ip;Jason McIntyre
2015-05-02Fix obvious problems with relayd config reload.Claudio Jeker
2015-04-29When the HTTP client did close the connection while relayd was stillAlexander Bluhm
2015-04-23We cannot log errors with relay_close() before allocatingFlorian Obser
2015-04-21fix a memory leak. ok blambert@Jonathan Gray
2015-03-24Missing free(3) in error pathGiovanni Bechis
2015-03-09Make relayd TLSv1.2-only by default.Reyk Floeter
2015-02-08Use AI_ADDRCONFIG when resolv hosts on startup.Reyk Floeter
2015-02-08move a log_warnx() to a DPRINTF, as it's information intendedBret Lambert
2015-02-06Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem().Reyk Floeter
2015-01-22Clean up the relayd headers with help of include-what-you-use and someReyk Floeter
2015-01-22spacingReyk Floeter
2015-01-22wrap long lines; spacing.Reyk Floeter
2015-01-22LibreSSL now supports loading of CA certificates from memory, replaceReyk Floeter
2015-01-21Include <netinet/in.h> before <net/pfvar.h>. In a future change whenTheo de Raadt
2015-01-16SSL_CTX_use_certificate_chain() has been added to LibreSSL and thereReyk Floeter
2015-01-16Adapt to <limits.h> universe.Theo de Raadt
2015-01-16The SSL/TLS session Id context is limited to 32 bytes. Instead ofReyk Floeter
2015-01-13bump copyright yearReyk Floeter
2015-01-02PFS stands for Perfect Forward Secrecy.Igor Sobrado
2015-01-01Merge error page changes from httpd: send Content-Length:, changeReyk Floeter
2015-01-01Use the recommended HTML5 doctype in error pages.Reyk Floeter