summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2016-09-03partial rewrite of the tcp/tls option parts: the trouble wasJason McIntyre
2016-09-03Replace [RELAY|SERVER]_MAXPROC with the new PROC_MAX_INSTANCESReyk Floeter
2016-09-03Use the fork+exec privsep model in relayd; based on rzalamena@'s workReyk Floeter
2016-09-02Move snmp options into struct relayd_config and delay start of theReyk Floeter
2016-09-02Split "struct relayd" into two structs: "struct relayd" and "structReyk Floeter
2016-09-02proc_id has been replaced by ps->ps_instance.Reyk Floeter
2016-09-02As done in httpd, (re-)initialize ps_what in all processes. This isReyk Floeter
2016-09-02style nit as done in httpdReyk Floeter
2016-09-02As done in httpd, remove ps_ninstances and p_instance.Reyk Floeter
2016-09-02Terminate relayd using the socket status instead of watching SIGCHLDReyk Floeter
2016-09-01Switch from the not really working session cache (because of the multiprocessClaudio Jeker
2016-09-01Do not busy loop in the rsa engine callback waiting for the ca. Instead useClaudio Jeker
2016-08-18word fix, from remi locherer; ok reykJason McIntyre
2016-08-18fix fd leaks in error pathsJonathan Gray
2016-08-01whitespace and 80 columns, no binary changeSebastian Benoit
2016-08-01rfc 7230 3.3.3 says: response with a status code of 1xxSebastian Benoit
2016-07-29Bump copyright in files that I touched last.Reyk Floeter
2016-07-29Add support for common WebDAV methods; from httpd.Reyk Floeter
2016-07-27According to RFC 7231 4.3.7, OPTIONS may have body. "Although thisReyk Floeter
2016-07-27Improve parsing of the Host by following RFC 7230 Section 5.4 more strictly:Reyk Floeter
2016-07-22fix some cases where we relay_abort_http() the connection too soon.Sebastian Benoit
2016-06-21do not allow whitespace in macro names, i.e. "this is" = "a variable".Sebastian Benoit
2016-02-02Remove setproctitle() for the parent process. Because rc.d(8) uses processStuart Henderson
2016-01-11This adds the host_error output and the http code (when available) to theSebastian Benoit
2015-12-30SSL_CTX_free() and SSL_free() check for null so dont do it in relaydSebastian Benoit
2015-12-30now that ibuf_free() checks for null, we can remove the check here.Sebastian Benoit
2015-12-24revert check_tcp rev 1.41 by yasuoka@Sebastian Benoit
2015-12-24completly -> completelymmcc
2015-12-15PATCH is like PUT, data is expected.Reyk Floeter
2015-12-07Add imsg "peerid" to debug messages (only within -DDEBUG).Reyk Floeter
2015-12-07sync with vmdReyk Floeter
2015-12-07Remove NULL-checks before free(). No functional change.mmcc
2015-12-05initialize host, to get rid of gcc warning, the conditions are correct.Sebastian Benoit
2015-12-05EAGAIN handling for imsg_read. OK henning@ benno@Claudio Jeker
2015-12-05don't attempt to process AgentX packets when a short read is encounteredBret Lambert
2015-12-04pledge the relay (layer 7 proxy) children, they can do with "stdioSebastian Benoit
2015-12-03quick removal of all host-related entries in the related relayd anchorSebastian Benoit
2015-12-02relayd (when running relays) can distribute client sessions over hostsSebastian Benoit
2015-12-02In most cases we don't need all arguments of proc_compose*_imsg(),Reyk Floeter
2015-11-29Use pledge("pf") in pfe.c.Sebastian Benoit
2015-11-28pledge: allow getsockopt IP_IPDEFTTL with promise inetSebastian Benoit
2015-11-28Use SOCK_NONBLOCK in relayd as well.Reyk Floeter
2015-11-23Sync proc.c with iked: the default proc_dispatch_null allows to removeReyk Floeter
2015-11-22Update log.c: change fatal() and fatalx() into variadic functions,Reyk Floeter
2015-11-21Once again, fix the license text. After many years, we just cannotReyk Floeter
2015-11-21Move local logging functions from log.c to new file util.c (that isReyk Floeter
2015-11-19Simplify all instances of get_string() and get_data() using malloc() andmmcc
2015-11-06relayd.conf(5) macro cleanup.Anthony J. Bentley
2015-10-27change cipher-server-preference to be on by default. It can be disabled withSebastian Benoit
2015-10-24clarify where "with tls" can be used.Sebastian Benoit