summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd
AgeCommit message (Expand)Author
2014-04-18spacingReyk Floeter
2014-04-18Fix SSL client-only mode when no RSA private key is needed.Reyk Floeter
2014-04-18The RSA_FLAG_SIGN_VER is not yet supported and the current code usesReyk Floeter
2014-04-18Introduce privsep for private keys:Reyk Floeter
2014-04-18The proc.c code sets up some socketpair for the communication betweenReyk Floeter
2014-04-15Print hashkey to debug output, this helps hash-action use cases to be tested.andre
2014-04-14macro fixes for previous;Jason McIntyre
2014-04-14No need to include ber.h here, probably overlooked while importing.andre
2014-04-14remove 'restricted' symbol from yacc parser, overlooked in previousBret Lambert
2014-04-14Adapt relayd to use AgentX protocol to send trapsBret Lambert
2014-04-14Fix the following idiom in the following way:Bret Lambert
2014-03-16lint is dead (long live the lint!), so stop using it as a cpp conditionalPhilip Guenther
2014-02-24fix a buffer overflow of an array introduced with the ssl inspection commitJonathan Gray
2014-02-14remove unused function that distracts from cleaning up the imsg_flush() messSebastian Benoit
2014-01-22relax the cfg file secrecy check slightly to allow group readabilityHenning Brauer
2014-01-21fix a a double free caused by a config with two listen on statementsSebastian Benoit
2014-01-18Remove -Wbounded: it is now the compiler default.Martynas Venckus
2013-11-27unsigned char for ctypeTheo de Raadt
2013-11-26don't intentionally cast the argument to isprint() to the wrong type...Theo de Raadt
2013-11-25use u_char for buffers in yylex, for ctype callsSebastian Benoit
2013-11-13handle msgbuf_write() returning EAGAINSebastian Benoit
2013-09-09Add support for ECDHE (Elliptic curve Diffie-Hellman) to enableReyk Floeter
2013-09-07update man page with the new default HIGH:!aNULLReyk Floeter
2013-09-07Change default ciphers to HIGH:!aNULL.Federico G. Schwindt
2013-09-04Handling of HTTP requests with a body like POST were broken inAlexander Bluhm
2013-07-16use .Mt for email addresses; from Jan Stary <hans at stare dot cz>; ok jmc@Ingo Schwarze
2013-07-04have FILES format a bit better;Jason McIntyre
2013-06-29do not use Sx for sections outwith the page;Jason McIntyre
2013-06-02With HTTP keepalive, relayd only filtered the first request andReyk Floeter
2013-05-31unset cte->buf after free, fix double free via tcp_close().Sebastian Benoit
2013-05-30Support SSL inspection, the ability to transparently filter in SSL/TLSReyk Floeter
2013-05-30Safari doesn't like HTTP/1.x in the generated error messages (return error),Reyk Floeter
2013-05-07- Add a simple check to prevent that the client-provided hex HTTP chunk sizeReyk Floeter
2013-04-27time_t 64bit fixes for relayd and relayctl:Sebastian Benoit
2013-04-20SSL_CTX_set_timeout only handles long for the delta timeval, so constrainTheo de Raadt
2013-04-20print large time_t nicely; ok bennoTheo de Raadt
2013-03-11handle ECONNABORTED errors from accept(). In many code blocks they can beTheo de Raadt
2013-03-10This diff changes relayd to use the monotonic clock instead ofReyk Floeter
2013-03-09Enable TCP socket splicing for HTTP persistent connection and chunkedAlexander Bluhm
2013-03-04sync yyerror() with bgpd; use vlog() to log parser errors so they show inStuart Henderson
2013-02-15Fix the toread check in the lateconnect case. This allowsAlexander Bluhm
2013-02-05Rework http content and chunk handling in relayd. Use specialAlexander Bluhm
2013-01-29use correct function name in fatal error messageStuart Henderson
2013-01-22Only send a single CRLF between chunks. A second CRLF seemed to beReyk Floeter
2013-01-17Remove unnecessary pointer casts. No binary diff.Alexander Bluhm
2012-12-18reorder some variables and move large buffers to the top of the stack.Reyk Floeter
2012-12-18remove unused variableReyk Floeter
2012-12-18no nead to touch argv later since we don't support non-getopt arguments.Reyk Floeter
2012-12-18doin't complain if the child processes exited cleanly.Reyk Floeter
2012-12-18cnl is only allocated if F_NATLOOK was specified before, so skip theReyk Floeter