| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-02-02 | Remove setproctitle() for the parent process. Because rc.d(8) uses process | Stuart Henderson | |
| titles (including flags) to distinguish between daemons, this makes it possible to manage multiple copies of a daemon using the normal infrastructure by symlinking rc.d scripts to a new name. ok jung@ ajacoutot@, smtpd ok gilles@ | |||
| 2016-01-11 | This adds the host_error output and the http code (when available) to the | Sebastian Benoit | |
| host-check log. ok claudio@ | |||
| 2015-12-30 | SSL_CTX_free() and SSL_free() check for null so dont do it in relayd | Sebastian Benoit | |
| ok jung@ tedu@ deraadt@ | |||
| 2015-12-30 | now that ibuf_free() checks for null, we can remove the check here. | Sebastian Benoit | |
| ok mmcc@ millert@ | |||
| 2015-12-24 | revert check_tcp rev 1.41 by yasuoka@ | Sebastian Benoit | |
| This part was not meant to be commited, only the bits in check_icmp.c and relayd.h are ok. ok yasuoka@ | |||
| 2015-12-24 | completly -> completely | mmcc | |
| 2015-12-15 | PATCH is like PUT, data is expected. | Reyk Floeter | |
| From mxb at alumni chalmers se | |||
| 2015-12-07 | Add imsg "peerid" to debug messages (only within -DDEBUG). | Reyk Floeter | |
| 2015-12-07 | sync with vmd | Reyk Floeter | |
| 2015-12-07 | Remove NULL-checks before free(). No functional change. | mmcc | |
| 2015-12-05 | initialize host, to get rid of gcc warning, the conditions are correct. | Sebastian Benoit | |
| ok henning@ | |||
| 2015-12-05 | EAGAIN handling for imsg_read. OK henning@ benno@ | Claudio Jeker | |
| 2015-12-05 | don't attempt to process AgentX packets when a short read is encountered | Bret Lambert | |
| while here, remove a pair of duplicate function definitions ok benno@ | |||
| 2015-12-04 | pledge the relay (layer 7 proxy) children, they can do with "stdio | Sebastian Benoit | |
| recvfd inet" ok reyk@ | |||
| 2015-12-03 | quick removal of all host-related entries in the related relayd anchor | Sebastian Benoit | |
| if the host fails the SLA check. patch from Brian S. Vangsgaard. ok reyk@ | |||
| 2015-12-02 | relayd (when running relays) can distribute client sessions over hosts | Sebastian Benoit | |
| with a hash generated from different data and calculate modulo rlt->rlt_nhosts to find the host the session should go to. If this host is down, the current algorithm simply selects the next host that is up, obviously not ideal, because this puts heavier load on this next host. this changes the algorithm: if the chosen host is not available, the hash value is recalculated and and retried until a host that is usable is found or a maximum of retires is reached (in that case the old method is used). ok and nice input on my original idea bluhm@ | |||
| 2015-12-02 | In most cases we don't need all arguments of proc_compose*_imsg(), | Reyk Floeter | |
| so add a shortcut proc_compose*() that skips all of them. Only use the full argument list if needed. The functions with full argument lists can eventually be replaced with a nicer transaction-based approach later. OK benno@ | |||
| 2015-11-29 | Use pledge("pf") in pfe.c. | Sebastian Benoit | |
| Move getrtable() from pfe to parent process, since its in the way of pledge. ok deraadt@, feedback from reyk@ on previous version. | |||
| 2015-11-28 | pledge: allow getsockopt IP_IPDEFTTL with promise inet | Sebastian Benoit | |
| then relayd's host check engine can be pledged. ok reyk@, approach suggested by deraadt@ weeks ago. | |||
| 2015-11-28 | Use SOCK_NONBLOCK in relayd as well. | Reyk Floeter | |
| OK benno@ | |||
| 2015-11-23 | Sync proc.c with iked: the default proc_dispatch_null allows to remove | Reyk Floeter | |
| some empty imsg callback stubs in the privsep processes. iked's proc.c -r1.24 was OK benno@ deraadt@ | |||
| 2015-11-22 | Update log.c: change fatal() and fatalx() into variadic functions, | Reyk Floeter | |
| include the process name, and replace all calls of fatal*(NULL) with fatal(__func__) for better debugging. OK benno@ | |||
| 2015-11-21 | Once again, fix the license text. After many years, we just cannot | Reyk Floeter | |
| get rid of the "LOSS OF MIND" joke. Haha. We keep on removing it and it shows up again because it accidentally gets synced from somewhere else. bgpd and ospfd don't have it anymore, but their offsprings still carry it. If you see it, remove it, and, in the OpenBSD ISC case, use the original text from /usr/share/misc/license.template. All authors agree. | |||
| 2015-11-21 | Move local logging functions from log.c to new file util.c (that is | Reyk Floeter | |
| also shared with relayctl). This allows us to unify common log.c with other daemons. It also clarifies the Copyright: log.c is by Henning, relayd's additions were from me. No functional or code changes, but it will make future updates easier. | |||
| 2015-11-19 | Simplify all instances of get_string() and get_data() using malloc() and | mmcc | |
| strndup(). ok millert@ | |||
| 2015-11-06 | relayd.conf(5) macro cleanup. | Anthony J. Bentley | |
| - use <> instead of \*(Lt and \*(Gt - use <> instead of Aq (Aq is not the same as <> in a UTF-8 locale) - replace Ar usage when appropriate - mark up RTP_STATIC with Dv with input from jmc@ schwarze@, ok schwarze@ | |||
| 2015-10-27 | change cipher-server-preference to be on by default. It can be disabled with | Sebastian Benoit | |
| no cipher-server-preference this makes more clients select ciphers with pfs. requested and ok by reyk@ | |||
| 2015-10-24 | clarify where "with tls" can be used. | Sebastian Benoit | |
| ok jmc@ | |||
| 2015-10-23 | let the icmp check use getsockopt IP_IPDEFTTL to get the default ttl | Sebastian Benoit | |
| instead of using sysctl. makes it possible to pledge hce. | |||
| 2015-10-14 | More (unsigned char) casts for ctype functions. | Reyk Floeter | |
| Pointed out by Michael McConville | |||
| 2015-10-10 | relayd's ca process pledges to only use stdio. | Sebastian Benoit | |
| ok deraadt@ | |||
| 2015-10-01 | sync proc.c with httpd. no functional change, only switching to C99 types. | Reyk Floeter | |
| 2015-09-27 | include <unistd.h> unconditionally | Theo de Raadt | |
| ok benno | |||
| 2015-08-21 | Increase the input side socket buffer size for "check icmp" not to | YASUOKA Masahiko | |
| drop the reply messages when "check icmp" is used with many hosts. ok reyk benno | |||
| 2015-08-20 | stdlib.h is in scope; do not cast malloc/calloc/realloc* | Theo de Raadt | |
| ok millert krw | |||
| 2015-08-10 | typo, decl*e*ration; from Larry Hynes | Stuart Henderson | |
| 2015-07-29 | fix bug where other than the last of multiple forward rules in http | Sebastian Benoit | |
| protocols would be ignored, reported and fixed by J. Fischer (lists -AT- mistrust -DOT- net) and reminded by (trondd -AT- kagu-tsuchi -DOT- com), thanks! ok deraadt@ | |||
| 2015-07-28 | spacing | Reyk Floeter | |
| 2015-07-27 | use file system path (.Pa) semantic markup macros where appropriate. | Igor Sobrado | |
| ok jmc@ | |||
| 2015-07-24 | an TLS -> a TLS; from thanos tsouanas | Jason McIntyre | |
| 2015-07-19 | don't return failure for agentx messages with 0-length payloads | Bret Lambert | |
| allows snmpd to properly handle ping messages from agentx subagents ok reyk@ | |||
| 2015-07-18 | Fix unbounded buffer growth. In the case of a slow client reading large files, | Sebastian Benoit | |
| we would consume large ammounts of memory. Found by Matthew Martin <matt DOT a DOT martin AT gmail DOT com> in httpd, fixed in httpd by florian@ feedback from florian, reyk and bluhm, ok bluhm, reyk | |||
| 2015-06-12 | To match relayd's style, use an explicit enum with prefixed names for | Reyk Floeter | |
| the states that Claudio introduced. No functional change. OK claudio@ benno@ | |||
| 2015-06-11 | Use "compliant" header guards by avoiding the reserved '_' namespace. | Reyk Floeter | |
| Pointed out by Markus Elfring OK mikeb@ millert@ | |||
| 2015-06-08 | Introduce a state on the ctl_relay_event struct. This makes it possible | Claudio Jeker | |
| to better track the connection state of a session and stops doing double opens in certain situations using http relays. Using a state field to simplify the logic since relay_connect() is called multiple times. OK benno@, bluhm@ and running in production for more than a week | |||
| 2015-06-03 | Do not assume that asprintf() clears the pointer on failure, which | Todd C. Miller | |
| is non-portable. Also add missing asprintf() return value checks. OK deraadt@ guenther@ doug@ | |||
| 2015-06-01 | Fix memory leak in error case. OK bluhm@ benno@ | Claudio Jeker | |
| 2015-05-30 | Plug a memory leak by simplifying kv_free(). By checking the type and | Claudio Jeker | |
| returning early the key and value memory got leaked on HTTP header kvs since their type was never set. OK benno@ | |||
| 2015-05-30 | Remove fields from struct that are not used. OK benno@ | Claudio Jeker | |
| 2015-05-28 | Do not try to unlink the control socket in an unprivileged child | Florian Obser | |
| process on shutdown. Found while working on tame(2). OK benno@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |