summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2019-04-24restrict filesystem access to read only on main process via unveil(2)Ricardo Mestre
2019-03-13remove unused keyword "virtual".Sebastian Benoit
2019-03-04Support for rfc 6455 Websockets connection upgrade. Add a new protocolSebastian Benoit
2019-02-13(unsigned) means (unsigned int) which on ptrdiff_t or size_t or otherTheo de Raadt
2018-11-01- odd condition/test in PF lexerAlexandr Nedvedicky
2018-10-22Make host_*() AF-agnosticdenis
2018-09-19Do not abort when the ca privenc runs into a timeout.Reyk Floeter
2018-09-09During the fork+exec implementation, daemon(3) was moved afterAlexander Bluhm
2018-09-07replace malloc()+strlcpy() with strndup() in cmdline_symset().miko
2018-09-01Accidentally relayd(8) closed file descriptor 0 in the pfe childAlexander Bluhm
2018-08-06space required between macro args and punctuation;Jason McIntyre
2018-08-06replace the current log optionsSebastian Benoit
2018-07-11Do for most running out of memory err() what was done for most runningKenneth R Westerback
2018-07-09No need to mention which memory allocation entry point failed (malloc,Kenneth R Westerback
2018-06-18remove the SECTIONS header, since a one line DESCRIPTION is a bit silly;Jason McIntyre
2018-06-11Fix an off-by-one line count when using include statements.denis
2018-06-10When a TLS error occurs, print the tls_error() message as part of theSebastian Benoit
2018-04-26Plug leak in error case of the common 'varset' implementations.Kenneth R Westerback
2018-04-20adjust the example to make it work;Jason McIntyre
2018-04-18Remove RELAY_MAX_SESSIONS from relayd, there is no reason to limit relaysClaudio Jeker
2018-04-14In case of a tcp read timeout, the destination host state needs to beSebastian Benoit
2018-01-24Log some more errors in the ca code, since there seems to be still a bugClaudio Jeker
2018-01-01RSA_private_{en,de}crypt() can fail and will return -1 in that case.Claudio Jeker
2017-12-27log specific error when connect() fails.Sebastian Benoit
2017-12-18always initialize the hce_launch_checks event timer.Sebastian Benoit
2017-11-29fix double dot;Jason McIntyre
2017-11-29add options to specify the control socket in relayd and relayctl.Sebastian Benoit
2017-11-28One less lie in commentsClaudio Jeker
2017-11-28Introduce relay_reset_event() which closes and resets a relay connection.Claudio Jeker
2017-11-28In TLS inspection mode we also need to keep the server tls object around.Claudio Jeker
2017-11-28relay_load_fd() is no longer clobering errno in the error case so useClaudio Jeker
2017-11-28Add space between to and read like in other DPRINTFs.Claudio Jeker
2017-11-27Change the ecdhe curve configuration to the same way httpd is doing it.Claudio Jeker
2017-11-27Make ca_launch error messages unique.Alexander Bluhm
2017-11-27lseek/read is racy when there is multiple consumers. Use pread instead.Claudio Jeker
2017-11-27Add a DPRINTF() in relay_error() that helped me out way too many times.Claudio Jeker
2017-11-27Use file descriptor passing to load certificates into the relays. EspeciallyClaudio Jeker
2017-11-27Do not rip out the output buffer of the bufferevent. Instead just use anClaudio Jeker
2017-11-27rfc 7230 mandates that a "204 No Content" http status must not come with aSebastian Benoit
2017-11-27relay_tls_connected() is playing with the inner bowels of bufferevents.Claudio Jeker
2017-11-27Simplify relay_close_http(), make relay_httpdesc_free() accept and ignoreClaudio Jeker
2017-11-16Check that http options are only configured in http protocols.Alexander Bluhm
2017-11-15make the maximum size of http headers configurable in the protocol.Sebastian Benoit
2017-09-23The relayd regression tests for chunked HTTP traffic were failingAlexander Bluhm
2017-09-14Differentiate between a style string not being specified and an emptyJonathan Gray
2017-08-28Do not close the relay if data is still in the output buffer.Alexander Bluhm
2017-08-2865535 is a valid port to listen on.Florian Obser
2017-08-09Use X509_pubkey_digest() like libtls to hash the keys for the TLS privsepClaudio Jeker
2017-08-09Call tls_config_skip_private_key_check() to disable the key checking inClaudio Jeker
2017-07-30Fix a double free of the TLS config in the error path.Alexander Bluhm