summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2015-05-18Fix a crash reported and analyzed by Bertrand PROVOST. When a HTTPAlexander Bluhm
2015-05-18The first line of a HTTP request is the method-url-version. TheAlexander Bluhm
2015-05-15Fix kill'n'yank error: the port is mandatory in relay listen on statements.Reyk Floeter
2015-05-15client/server mox ip;Jason McIntyre
2015-05-02Fix obvious problems with relayd config reload.Claudio Jeker
2015-04-29When the HTTP client did close the connection while relayd was stillAlexander Bluhm
2015-04-23We cannot log errors with relay_close() before allocatingFlorian Obser
2015-04-21fix a memory leak. ok blambert@Jonathan Gray
2015-03-24Missing free(3) in error pathGiovanni Bechis
2015-03-09Make relayd TLSv1.2-only by default.Reyk Floeter
2015-02-08Use AI_ADDRCONFIG when resolv hosts on startup.Reyk Floeter
2015-02-08move a log_warnx() to a DPRINTF, as it's information intendedBret Lambert
2015-02-06Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem().Reyk Floeter
2015-01-22Clean up the relayd headers with help of include-what-you-use and someReyk Floeter
2015-01-22spacingReyk Floeter
2015-01-22wrap long lines; spacing.Reyk Floeter
2015-01-22LibreSSL now supports loading of CA certificates from memory, replaceReyk Floeter
2015-01-21Include <netinet/in.h> before <net/pfvar.h>. In a future change whenTheo de Raadt
2015-01-16SSL_CTX_use_certificate_chain() has been added to LibreSSL and thereReyk Floeter
2015-01-16Adapt to <limits.h> universe.Theo de Raadt
2015-01-16The SSL/TLS session Id context is limited to 32 bytes. Instead ofReyk Floeter
2015-01-13bump copyright yearReyk Floeter
2015-01-02PFS stands for Perfect Forward Secrecy.Igor Sobrado
2015-01-01Merge error page changes from httpd: send Content-Length:, changeReyk Floeter
2015-01-01Use the recommended HTML5 doctype in error pages.Reyk Floeter
2014-12-27zap trailing whitespace;Jason McIntyre
2014-12-26Document forward to in protocols.Sebastian Benoit
2014-12-23pf now supports source-hash and random with tables so we can allow itReyk Floeter
2014-12-21Stop pulling in <arpa/inet.h> or <arpa/nameser.h> when unnecessary.Philip Guenther
2014-12-18an hex -> a hex;Jason McIntyre
2014-12-18Update relayd to use siphash instead of sys/hash. The source-hash,Reyk Floeter
2014-12-17Add missing flag in the description field.Reyk Floeter
2014-12-16Replace setpgrp(0, getpid()) with setpgid(0, 0). OK deraadt@ tedu@Todd C. Miller
2014-12-12Change the keyword "ssl" to "tls" to reflect reality since weReyk Floeter
2014-11-25use correct divisor when converting microseconds to 100ths of a secondBret Lambert
2014-11-24remove a surplus break statementJonathan Gray
2014-11-22use size_t where appropriate. ok deraadt reykTed Unangst
2014-11-20Don't allow embedded nul characters in strings.Jonathan Gray
2014-11-19Support exporting relayd statistics via AgentX/snmpdBret Lambert
2014-11-14Shorten the AgentX header debug messages (only compiled with -DDEBUG)Reyk Floeter
2014-11-07Remove the sslv2 option since LibreSSL has no SSLv2 support (however retainJoel Sing
2014-11-02Convert the logic in yyerror(). Instead of creating a temporaryAlexander Bluhm
2014-10-25Remove unnecessary netinet/in_systm.h include.Lawrence Teo
2014-10-21Remove SSLv2 and SSLv3 references from the example relayd.conf and theLawrence Teo
2014-10-20Remove the "interface" option from the "transparent forward" directive.Reyk Floeter
2014-10-15Disable SSLv3 by default.Reyk Floeter
2014-10-12Remove possibility of mutiplicative integer overflow by not multiplying.Bret Lambert
2014-10-02no need to set the same field NULL twice ;-)Gilles Chehade
2014-09-15Make the HTTP version mandatory and abort if it is missing in the request.Reyk Floeter
2014-09-05revert previous; was based on a work-in-progress, as wellBret Lambert