aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Different code style for the maxconn spurious warning avoidanceLaurent Bercot2019-05-142-9/+6
|
* Adapt to skalibs/posixishard.hLaurent Bercot2019-02-206-7/+18
|
* bugfix: have s6-tcpserver?d write localport to stdout on notifLaurent Bercot2018-10-062-2/+24
| | | | and not just a newline.
* Add nsss supportLaurent Bercot2018-08-011-0/+2
|
* Adapt to skalibs-2.7.0.0, prepare for 2.3.0.3Laurent Bercot2018-07-212-11/+8
|
* change localip is6 flag based on destination ipJohn Regan2018-04-111-2/+6
| | | | | | | | | | | | | | | | By default, the localip flag is initialized with the is6 flag set to 0. The only time the flag is changed to 1 is when a user specifies a local IPv6 address to use. Because of this, socket_tcp46 always creates an IPv4 socket. This patch corrects that - if the user hasn't specified a local address, then the local 'is6' flag is updated to match the destination 'is6' flag. Signed-off-by: Laurent Bercot <ska-skaware@skarnet.org>
* Add -B (blocking) option to s6-tcpserver?-socketbinderLaurent Bercot2018-04-112-6/+12
|
* bugfix: spurious error message in s6-tcpserver?d when maxed connectionsLaurent Bercot2017-09-133-6/+8
|
* Moderately big hammer: force kill on s6-tlsd when it has nothing to write ↵Laurent Bercot2017-08-282-2/+10
| | | | to the network
* Revert big hammer. Data still needs to be flushed to the network even when ↵Laurent Bercot2017-08-282-10/+2
| | | | the local app dies.
* Optimize to xpathexec ; prepare for 2.3.0.2Laurent Bercot2017-08-2210-21/+11
|
* Fix error messages in stls_s6tls?.c when setting key fileLaurent Bercot2017-06-292-2/+2
|
* Explicitly make s6-tls[cd] die when the app diesLaurent Bercot2017-05-112-2/+10
| | | | | I have no explanation for the fact that they sometimes survive their app, and I'm fed up with it, so it's time to use the big hammer.
* Fix case where s6-tls[cd] would sometimes not detect an application and ↵Laurent Bercot2017-03-2216-144/+205
| | | | remain there forever with its zombie, both condemned to err in limbo for all eternity, the living and the dead, hand in hand
* Fix memcpy size in s6-tcpserver6dLaurent Bercot2017-03-151-1/+1
|
* Cleanup superfluous includesLaurent Bercot2017-03-1436-72/+4
|
* Adapt to skalibs-2.5.0.0Laurent Bercot2017-03-1240-350/+297
|
* Delay client cert support, but make s6-networking build against bearssl-0.3Laurent Bercot2017-01-303-37/+8
|
* Fix variable scope in sbearssl_ta_certsLaurent Bercot2017-01-221-1/+1
|
* Types fix, first passLaurent Bercot2017-01-1045-142/+305
| | | | | | | XXX marks what must change when skalibs changes. Also started writing functions for client certificate support in sbearssl, but it's not working yet (need more high-level support from BearSSL before it can work)
* sbearssl: follow API change for br_x590_trust_anchorLaurent Bercot2016-12-142-4/+4
|
* Fix sbearssl buildLaurent Bercot2016-12-042-1/+3
|
* Remove s6-tls* dependency to libs6net. Improve gen-deps to make dynlinking ↵Laurent Bercot2016-12-0416-36/+43
| | | | easier.
* s6-tls*: small bugfixes. Add documentation.Laurent Bercot2016-12-034-14/+12
|
* Fix closing bugs in sbearssl_run and tls_runLaurent Bercot2016-12-022-36/+53
|
* Fix several bugs in stls, make the engine workLaurent Bercot2016-12-016-35/+43
|
* sbearssl: allow DER-encoded certificates in TA directoryLaurent Bercot2016-11-3013-56/+162
|
* Small sbearssl bugfixes and usability messagesLaurent Bercot2016-11-286-8/+22
|
* Fix double close in sbearssl_cert_readfileLaurent Bercot2016-11-271-1/+0
|
* use S6_EXTBINPREFIX for s6-applyuidgid invocation in s6-tlsserverLaurent Bercot2016-11-271-1/+1
|
* Add -z option to s6-tlsc/s6-tlsd to clean TLS env vars before spawning ↵Laurent Bercot2016-11-2616-16/+71
| | | | (default)
* stls_run: fix "read from peer" error messageLaurent Bercot2016-11-261-1/+1
|
* Fix warning messages in libtls engineLaurent Bercot2016-11-261-3/+3
|
* Usability fixes for TLSLaurent Bercot2016-11-262-29/+39
|
* Add EC certificate issuer key type detection for sbearsslLaurent Bercot2016-11-254-17/+69
|
* SNI support for libtlsLaurent Bercot2016-11-251-8/+6
|
* Fix build bugs. It builds!Laurent Bercot2016-11-2536-135/+160
| | | | | | Two things remain to do: - how to pass SNI information to libtls - how to detect cert issuer key type for ECC in bearssl
* Alpha version of the SSL work.Laurent Bercot2016-11-2547-0/+2822
| | | | | | Doesn't build yet, but I'm scared of losing it, so using git as storage. Will fix the stupid bugs now, the tricky bugs later.
* Port to new librandom APILaurent Bercot2016-10-142-16/+15
|
* Add options to s6-tcpserver4-socketbinder and s6-tcpserver6-socketbinder to ↵Laurent Bercot2016-09-104-10/+22
| | | | create UDP sockets; also to not listen(). (Suggested by Daniel Kahn Gillmor.)
* Link shared libs against their -l deps, better libpath managementv2.1.0.2Laurent Bercot2015-08-121-0/+1
|
* - Bugfix: s6-tcpclient and s6-tcpserver-access didn't s6dns_init()Laurent Bercot2015-03-302-1/+11
| | | | - Version: rc for 2.1.0.1
* Move Unix domain socket and access control stuff to s6.Laurent Bercot2015-01-1540-2237/+21
| | | | | Move seekablepipe to s6-portable-utils. Version: 2.0.1.0, release candidate
* - Parallel build fixv2.0.1.0Laurent Bercot2015-01-145-5/+5
| | | | - Version updated to 2.0.1.0, release candidate
* Bugfix: bad test in s6-ipcclient (for skalibs 2)Laurent Bercot2015-01-101-1/+1
|
* Complete conversion of s6-ipcserver and s6-tcpserver (4 and 6)Laurent Bercot2015-01-075-790/+277
| | | | to socketbinder + d model. With documentation (!)
* Experimental decoupling of socketbinders and daemons in ucspi servers.Laurent Bercot2015-01-0714-395/+1386
| | | | | Rewrite of s6-ipcserver as a small wrapper. s6-tcpserver4 and s6-tcpserver6 will follow.
* Prevent failure of -1 option in ucspi servers when stdout is closedLaurent Bercot2015-01-063-6/+24
|
* Remove the shutdown() in s6-sudoc: the MSG_DONTWAIT support in skalibsv2.0.0.0Laurent Bercot2014-12-211-3/+0
| | | | should fix the BSD problem in a better fashion.
* My instinctive attempt to fix s6-sudoc on the BSDs appears to be working...Laurent Bercot2014-12-201-1/+1
| | | | BSD is easy: when in doubt, shutdown() the socket. wtfbsdseriously.