summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2023-11-16 Add -J and -j to the TLS tools to check for peer close_notify.Laurent Bercot
Also, and more importantly, significantly rewrite stls_run() for better full-duplex support. This implementation isn't fully tested yet. Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-12 Fix sbearssl_run even moreLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-12 s6-tcpserverd: change terminology: allow -> accept, deny -> rejectLaurent Bercot
Also change ip:port to ip_port in logs Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-11 New and fixed version of sbearssl_runLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-10 Prepare for 2.7.0.0. Better s6-tlsc-io interface.Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-06 s6-tcpserver-access: don't use errno in deny messagesLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-11-05 Fix tls_error invocationLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-10-16 Fix missing null terminatorLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-10-01 Better iteration when sending signals in s6-tcpserverdLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-10-01 Avoid stupid buffer overflows tyvmLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-10-01 Refactor s6-tcpserverd loggingLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-30 s6-tlsserver bugfix, doc updatesLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-30 Great Tcpserver Unification. Prepare for 2.6.0.0.Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-20 Remove extra warning when s6-tcpserver-access has no rulesetLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-11 Remove s6-tcpserver?d dependency on libs6Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-09 Fix s6-tlsd fd fuxLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-09 Use cspawn (skalibs-2.14)Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-08 Fully defork s6-tlsc and s6-tlsdLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-08 Refactor s6-tls[cd] so they're ready to port to posix_spawnLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-09-08 New versions of s6-tcpserver4d and s6-tcpserver6dLaurent Bercot
- both now use posix_spawn when available - s6-tcpserver4d uses avltree for logarithmic lookups - s6-tcpserver6d still has the linear lookup - the point was to benchmark linear vs logarithmic, but the fork() overhead overshadowed everything - now with fork() out of the way, I'm going back to benchmarks Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-08-09 Fix s6-tcpserver verbosity invocationLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-08-09 Fix s6-tlsserver tcpaccess invocation conditionLaurent Bercot
Also fix s6-tlsclient storage reservation Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-08-08 Prepare for 2.5.1.4; fix s6-tlsserver -Y|-yLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-02-15 Autoset INTERNAL_LIBSLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-01-23 bugfix: s6net_ident_reply_get uninitialized variableLaurent Bercot
Thanks hurufu. Signed-off-by: Laurent Bercot <ska@appnovation.com>
2023-01-18 QoL: more client warnings / earlier exit when taiclock or ntp exchange failsLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-11-29 Prepare for 2.5.1.2Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-10-14 Bring libsbearssl doc up to date.Laurent Bercot
Also fix a typo in sbearssl.h Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-10-07 bugfix: sbearssl_run adapted to new allread() APILaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-10-07 Add workaround to bearssl regression with BR_FEATURE_X509_TIME_CALLBACKLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-08-30 s6-tls[cd]: don't leak useless fd to the appLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-08-12 sbearssl_sni_policy_vtable: use the COPY macro for ec as wellLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-07-18 Fix allread errno managementLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2022-04-09 Prepare for 2.5.1.1; adapt to skalibs-2.12.0.0Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-19 Add sbearssl_*_set_tain(n)_g convenience macrosLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-18 Allow SNI wildcarding for *.example.comLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-18 SNI matches are case-insensitiveLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-09 Fix error path in add_keypair_file for sbearssl SNI policyLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-09 Fix error message in sbearssl server initLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-11-08 No need for twice the workaround ^^'Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-10-19 Workaround for a bearssl bug in do_signLaurent Bercot
Credit to Erico Nogueira for reporting and helping find the bug. Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-10-18 Fix error case in readbigpemLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-09-24 Fix sbearssl send_environment protocolLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-09-24 Log client decision on s6-ucspitls[cd] -v2Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-08-10 Adapt to skalibs-2.11.0.0Laurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-07-23 Prepare for 2.5.0.0; remove minidentdLaurent Bercot
Signed-off-by: Laurent Bercot <ska@appnovation.com>
2021-06-03 CosmeticsLaurent Bercot
2021-06-03 Inline functionsLaurent Bercot
2021-06-03 Don't hardcode ecdsa signature implementation in sni_policyLaurent Bercot
2021-06-02 Work around incredible libtls stupidityLaurent Bercot