| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-06-05 | sync buffer.c with ospfd, send out buf->wpos and not buf->size. | Pierre-Yves Ritschard | |
| 2009-06-05 | some KNF cleanup following the last sed. | Pierre-Yves Ritschard | |
| 2009-06-05 | Make imsg completely async model agnostic by not requiring an | Pierre-Yves Ritschard | |
| imsg_event_add function to be provided (which ended up being a named callback). Instead provide a wrapper in the daemon and call that everywhere. Previsously discussed with the usual suspects, ok eric@ though not too happy about the function name (imsg_compose_event). | |||
| 2009-06-04 | move logging functions out of imsg.h, make imsg.c more library ready | Pierre-Yves Ritschard | |
| by not calling log_* or fatal and handle set errno when appropriate. discussed with a bunch of imsg conscious guys, ok eric@ | |||
| 2009-06-04 | change imsg_close() return type to void. It never fails nor does it | Eric Faurot | |
| return any useful value. "ok now" pyr@ | |||
| 2009-06-04 | - move message types enum back to relayd.h | Eric Faurot | |
| - use u_int16_t instead of enum imsg_type in imsg function prototypes requested by reyk@, ok pyr@ | |||
| 2009-06-04 | revert previous commit for now since it won't play well with snmpd. | Eric Faurot | |
| ok pyr@ | |||
| 2009-06-04 | make the imsg framework endian-safe so that it can also be used | Eric Faurot | |
| for network message passing. ok pyr@ | |||
| 2009-06-04 | remove unused variable | Reyk Floeter | |
| 2009-06-04 | tweak | Reyk Floeter | |
| 2009-06-04 | Keep around the SSL session for each checked host. This way SSL | Reyk Floeter | |
| caching can kick in on subsequent checks, making them faster and lighter on the server. From camield, closes PR 6137 (modified diff) | |||
| 2009-06-04 | Make imsg.c and buffer.c more generic by introducing | Eric Faurot | |
| imsg.h and a daemon-specific imsg_types.h discussed with and "yes, please" pyr@ | |||
| 2009-06-03 | cleanup contorted and slightly broken call to imsg_get_fd | Eric Faurot | |
| ok pyr@ | |||
| 2009-06-03 | initialize queue | Eric Faurot | |
| ok pyr@ | |||
| 2009-06-03 | change buf_close return type to void. | Eric Faurot | |
| that function is not supposed to report anything remotely useful, or fail in any meaningful way. ok pyr@ | |||
| 2009-06-02 | bring in buf_seek, buf_size and buf_left from bgpd | Eric Faurot | |
| ok pyr@ | |||
| 2009-06-02 | constify argument to buf_add | Eric Faurot | |
| ok pyr@ | |||
| 2009-06-02 | - minor tweaks | Jason McIntyre | |
| - remove unneccessary -compact from a list - remove unneccessary Xo/Xc before it gets copied all over the place | |||
| 2009-06-02 | make it clear that setting the global timeout late will mess things up. | Pierre-Yves Ritschard | |
| 2009-06-02 | note that order is important in the file regarding global options at this ↵ | Janne Johansson | |
| time. ok pyr@ | |||
| 2009-06-02 | remove extra imsg_event_add() after EV_WRITE checks - this is not | Reyk Floeter | |
| required because it is called later and there is no return before. ok gilles@ | |||
| 2009-06-02 | Libevent may do an upcall with both EV_READ and EV_WRITE set. | Reyk Floeter | |
| So change the code accordingly to allow that. Found by claudio@ in ospfd | |||
| 2009-04-24 | Allow UDP and/or TCP redirections instead of just TCP. | Reyk Floeter | |
| Thanks to Marek Grzybowski for feedback and testing. ok jmc@ (manpage bits) | |||
| 2009-04-24 | don't truncate http headers when no separator is given between key and | Pierre-Yves Ritschard | |
| value. ok & ``makes sense'' reyk@ | |||
| 2009-04-17 | close filedescriptors with closefrom(STDERR_FILENO + 1) before executing | Reyk Floeter | |
| the script to prevent access to internal processes. From jacekm@ | |||
| 2009-04-17 | keep the parent relations of hosts after reloading the configuration. | Reyk Floeter | |
| From Camiel Dobbelaar, closes PR 6066 | |||
| 2009-04-17 | add "Connection: close" to HTTP check headers to deconfuse HTTP/1.1 | Reyk Floeter | |
| servers claiming keepalive sessions. From Camiel Dobbelaar | |||
| 2009-04-16 | fix a few more typos found by spell(1); rectify a double "with" pointed out | Igor Sobrado | |
| by jmc@ while looking at this diff. ok jmc@, reyk@ (for the hostapd part) | |||
| 2009-04-02 | add support to specify a ca file (eg. /etc/ssl/cert.pem) to verify ssl | Reyk Floeter | |
| server certificates when connecting as an SSL client from relays. it works so far, but needs more testing and is currently lacking support for certificate revocation (like CRL or OCSP). the file ssl_privsep.c is extended to implement more code that should be in openssl to allow loading the ca from chroot... | |||
| 2009-04-01 | fix an incorrect flag in route mode. | Reyk Floeter | |
| From Padcal Lalonde, closes PR 6114 | |||
| 2009-04-01 | re-initialize tables after reload to handle new and changed tables. | Reyk Floeter | |
| From Pascal Lalonde, closes PR 6112 | |||
| 2009-04-01 | Add support for client-side SSL connections from relays. relayd can | Reyk Floeter | |
| now sit between two SSL connections (Oitm - OpenBSD-in-the-middle), accept SSL connections and forward to TCP, accept TCP connections and forward to SSL, and do TCP to TCP of course. This was tested by some people a while ago. | |||
| 2009-04-01 | terminate and cleanup properly by setting the pf anchor names | Reyk Floeter | |
| correctly (anchor names with characters after the terminating NUL byte are considered invalid). Thanks to camield@ | |||
| 2009-03-31 | Fixed memory leaks which would occur if the second of two memory | Tobias Stoeckmann | |
| allocations fails. looks right deraadt, krw ok henning | |||
| 2009-02-25 | Fix an invalid pointer dereference in control_close(). If control_connbyfd() | Claudio Jeker | |
| fails -- which should never happen -- the function does not return and is accession the NULL set control pointer later on. Found by Matthew Haub. OK deraadt@ | |||
| 2009-02-16 | relayd complains about a table called "backup", so change it to | Jason McIntyre | |
| fallback, as used in /etc/relayd.conf; from Patrik Lundin | |||
| 2008-12-08 | change the handling of redirections with the sticky-address option set: | Reyk Floeter | |
| instead of flushing the complete source tracking table (sticky addresses) in pf on host state changes, just flush the entries for hosts that have been marked as down in the relayd table. this fixes ugly problems with users loosing their sessions if another host or redirection was going down. ok cloder@ | |||
| 2008-12-05 | use HTTP/1.1 instead of HTTP/1.0 if a host header is specified. | Reyk Floeter | |
| spotted by phessler@ | |||
| 2008-12-05 | change the way relayd reports check results: instead of logging an | Reyk Floeter | |
| arbitrary string in debugging mode, it will store an error code (HCE_*) for each host. the error code can be translated to a string (in log.c) for debugging but it will also be passed to relayctl via the control socket. from a user point of view, this will print a human-readable error message in the "relayctl show hosts" output if a host is down because the check failed. the relayctl(8) manpage includes detailed explanations of the error messages including mitigations for the most-common problems. ok jmc@ (manpages) ok phessler@ | |||
| 2008-12-04 | cosmetic changes: | Reyk Floeter | |
| - log table changes in sync_table() if "log updates" is enabled. before we only logged these changes in debug mode when running relayd in foreground. - type in a log message | |||
| 2008-11-09 | typo fixed (overriden -> overridden) | Tobias Stoeckmann | |
| ok espie, jmc | |||
| 2008-10-17 | bring in the findeol() fix from pfctl. list of affected parsers by sthen | Henning Brauer | |
| 2008-10-05 | tweak previous; | Jason McIntyre | |
| 2008-10-03 | Unify code between the various flavors of imsg buffer.c. | Eric Faurot | |
| Use unsigned int for msg_iovlen. ok henning@ claudio@ | |||
| 2008-09-29 | fix log option with filter rules | Reyk Floeter | |
| 2008-09-29 | also log the label if available for the matching rule node (like the | Reyk Floeter | |
| URL filter category etc.) | |||
| 2008-09-29 | spacing | Reyk Floeter | |
| 2008-09-29 | Change parsing of comments in external rule files. The hash mark may | Reyk Floeter | |
| appear in URLs (eg. /index.html#anchor), so only allow full-line comments indicated by a hash mark # at the beginning of a line. | |||
| 2008-09-29 | allow to load expect, filter, log, and remove keys from external files | Reyk Floeter | |
| just containing on key per line. this allows easier use of URL white/blacklists from external sources. | |||
| 2008-09-29 | sort tokens for better readability | Reyk Floeter | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |