Age | Commit message (Collapse) | Author | |
---|---|---|---|
2023-11-17 | Fix stls_run; sbearssl_run needs a rewrite | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-16 | Add -J and -j to the TLS tools to check for peer close_notify. | Laurent Bercot | |
Also, and more importantly, significantly rewrite stls_run() for better full-duplex support. This implementation isn't fully tested yet. Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-12 | Fix sbearssl_run even more | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-12 | s6-tcpserverd: change terminology: allow -> accept, deny -> reject | Laurent Bercot | |
Also change ip:port to ip_port in logs Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-11 | New and fixed version of sbearssl_run | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-10 | Prepare for 2.7.0.0. Better s6-tlsc-io interface. | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-06 | s6-tcpserver-access: don't use errno in deny messages | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-11-05 | Fix tls_error invocation | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-10-16 | Fix missing null terminator | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-10-01 | Better iteration when sending signals in s6-tcpserverd | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-10-01 | Avoid stupid buffer overflows tyvm | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-10-01 | Refactor s6-tcpserverd logging | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-30 | s6-tlsserver bugfix, doc updates | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-30 | Great Tcpserver Unification. Prepare for 2.6.0.0. | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-20 | Remove extra warning when s6-tcpserver-access has no ruleset | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-11 | Remove s6-tcpserver?d dependency on libs6 | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-09 | Fix s6-tlsd fd fux | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-09 | Use cspawn (skalibs-2.14) | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-08 | Fully defork s6-tlsc and s6-tlsd | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-08 | Refactor s6-tls[cd] so they're ready to port to posix_spawn | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-09-08 | New versions of s6-tcpserver4d and s6-tcpserver6d | Laurent Bercot | |
- both now use posix_spawn when available - s6-tcpserver4d uses avltree for logarithmic lookups - s6-tcpserver6d still has the linear lookup - the point was to benchmark linear vs logarithmic, but the fork() overhead overshadowed everything - now with fork() out of the way, I'm going back to benchmarks Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-08-09 | Fix s6-tcpserver verbosity invocation | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-08-09 | Fix s6-tlsserver tcpaccess invocation condition | Laurent Bercot | |
Also fix s6-tlsclient storage reservation Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-08-08 | Prepare for 2.5.1.4; fix s6-tlsserver -Y|-y | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-02-15 | Autoset INTERNAL_LIBS | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-01-23 | bugfix: s6net_ident_reply_get uninitialized variable | Laurent Bercot | |
Thanks hurufu. Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2023-01-18 | QoL: more client warnings / earlier exit when taiclock or ntp exchange fails | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-11-29 | Prepare for 2.5.1.2 | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-10-14 | Bring libsbearssl doc up to date. | Laurent Bercot | |
Also fix a typo in sbearssl.h Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-10-07 | bugfix: sbearssl_run adapted to new allread() API | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-10-07 | Add workaround to bearssl regression with BR_FEATURE_X509_TIME_CALLBACK | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-08-30 | s6-tls[cd]: don't leak useless fd to the app | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-08-12 | sbearssl_sni_policy_vtable: use the COPY macro for ec as well | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-07-18 | Fix allread errno management | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2022-04-09 | Prepare for 2.5.1.1; adapt to skalibs-2.12.0.0 | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-19 | Add sbearssl_*_set_tain(n)_g convenience macros | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-18 | Allow SNI wildcarding for *.example.com | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-18 | SNI matches are case-insensitive | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-09 | Fix error path in add_keypair_file for sbearssl SNI policy | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-09 | Fix error message in sbearssl server init | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-11-08 | No need for twice the workaround ^^' | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-10-19 | Workaround for a bearssl bug in do_sign | Laurent Bercot | |
Credit to Erico Nogueira for reporting and helping find the bug. Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-10-18 | Fix error case in readbigpem | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-09-24 | Fix sbearssl send_environment protocol | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-09-24 | Log client decision on s6-ucspitls[cd] -v2 | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-08-10 | Adapt to skalibs-2.11.0.0 | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-07-23 | Prepare for 2.5.0.0; remove minidentd | Laurent Bercot | |
Signed-off-by: Laurent Bercot <ska@appnovation.com> | |||
2021-06-03 | Cosmetics | Laurent Bercot | |
2021-06-03 | Inline functions | Laurent Bercot | |
2021-06-03 | Don't hardcode ecdsa signature implementation in sni_policy | Laurent Bercot | |