summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2017-08-09Use X509_pubkey_digest() like libtls to hash the keys for the TLS privsepClaudio Jeker
2017-08-09Call tls_config_skip_private_key_check() to disable the key checking inClaudio Jeker
2017-07-30Fix a double free of the TLS config in the error path.Alexander Bluhm
2017-07-28Always calculate the hash value of the x509 cert in ssl_load_pkey().Alexander Bluhm
2017-07-12Consistently use the variable "ttl" for get/setsockoptJeremie Courreges-Anglas
2017-07-11Correctly set ttl for IPv4 and IPv6.Florian Obser
2017-07-11The config option is called "no splice", the parser rejects "nosplice".Alexander Bluhm
2017-07-04if configured, set the ttl (IPV6_UNICAST_HOPS) for ipv6 tcp checks.Sebastian Benoit
2017-07-04make relayd not crash in relay_udp_server() when using a dns relay.Sebastian Benoit
2017-07-03no need to generate y.tab.h if nothing uses it, set YFLAGS to nothingMarc Espie
2017-05-31Fix a memory leak in pkey_add() error path. All current callers fatalJonathan Gray
2017-05-28use __func__ in log messages. fix some whitespace while here.Sebastian Benoit
2017-05-27Migrate relayd to use libtls for TLS. Still does the TLS privsep via theClaudio Jeker
2017-05-06Convert explicit_bzero() + free() to freezero().Frederic Cambus
2017-04-19better example; from hiltjo posthumaJason McIntyre
2017-04-06fix format string found by clang -Wformat-securityGleydson Soares
2017-03-25X-Forwarded-By should be the server $SERVER_ADDR instead of the clientClaudio Jeker
2017-03-21From a syslog perspective it does not make sense to log fatal andAlexander Bluhm
2017-03-10DELETE can have a body.Reyk Floeter
2017-02-27update an example in the relayd.conf manpage, that was not convertedSebastian Benoit
2017-02-09Do not loose the send/expect validation error on timeout.Reyk Floeter
2017-02-02Disable client-initiated TLS renegotiation by default.Reyk Floeter
2017-01-24move the opening of /dev/pf from the parent process to the pfe processSebastian Benoit
2017-01-09Stop accessing verbose and debug variables from log.c directly.Reyk Floeter
2017-01-09Replace hand-rolled for(;;) traversal of ctl_conns TAILQ withKenneth R Westerback
2017-01-08Sync log.c with the latest version from vmd/log.c that preserves errnoReyk Floeter
2017-01-05Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with moreKenneth R Westerback
2017-01-05Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQKenneth R Westerback
2016-11-24The new fork+exec mode used too many fds in the parent process onReyk Floeter
2016-11-10Fix tcp ip ttl / minttl on IPv6 sockets.Jeremie Courreges-Anglas
2016-10-12copy updated log.c from vmd: for correctness, save errno when doingReyk Floeter
2016-10-05Sync with httpd(8) proc file. Check for dup2() usage to avoid oldd == newdRafael Zalamena
2016-10-05Call setsid() to create a new session for the executed processes.Reyk Floeter
2016-10-05sync proc.c with vmd: add p_pw to specify a non-standard user for a process.Reyk Floeter
2016-09-29fix DEBUG build after ps->ps_instance changeSebastian Benoit
2016-09-28Add -Wcast-qual and cast away one false positive where we use a constReyk Floeter
2016-09-28sync proc.c incl. the p_env removalReyk Floeter
2016-09-27The fork+exec privsep commit broke the "block request method" httpAlexander Bluhm
2016-09-26spacingReyk Floeter
2016-09-23use sizeof instead of constant 16 in function callsJonathan Gray
2016-09-22Change function arguments from "unsigned char keyname[16]" toJonathan Gray
2016-09-22correct invalid use of sizeofJonathan Gray
2016-09-03partial rewrite of the tcp/tls option parts: the trouble wasJason McIntyre
2016-09-03Replace [RELAY|SERVER]_MAXPROC with the new PROC_MAX_INSTANCESReyk Floeter
2016-09-03Use the fork+exec privsep model in relayd; based on rzalamena@'s workReyk Floeter
2016-09-02Move snmp options into struct relayd_config and delay start of theReyk Floeter
2016-09-02Split "struct relayd" into two structs: "struct relayd" and "structReyk Floeter
2016-09-02proc_id has been replaced by ps->ps_instance.Reyk Floeter
2016-09-02As done in httpd, (re-)initialize ps_what in all processes. This isReyk Floeter
2016-09-02style nit as done in httpdReyk Floeter
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 09:11:00 +0000