summaryrefslogtreecommitdiff
path: root/src/network.c
AgeCommit message (Expand)AuthorFilesLines
2016-03-19[core] more careful parse of $SERVER["socket"] config str (prepare #2204)Glenn Strauss1-25/+27
2016-02-21[core] improve conditional enabling (thx Gwenlliana, #2598)Stefan Bühler1-3/+4
2016-01-30add force_assert for more allocation resultsStefan Bühler1-0/+3
2015-08-22rewrite network (write) backendsStefan Bühler1-23/+14
2015-02-08fix buffer, chunk and http_chunk APIStefan Bühler1-14/+14
2015-02-07[network] fix compile break in calculation of sockaddr_un size if SUN_LEN is ...Stefan Bühler1-6/+7
2014-02-16check length of unix domain socket filenamesStefan Bühler1-2/+9
2014-02-16force assertion: setting FD_CLOEXEC must work (if available)Stefan Bühler1-3/+1
2014-02-14fix resource leaks in error cases on config parsing and other initializationsStefan Bühler1-0/+1
2014-02-14remove logical dead codeStefan Bühler1-2/+0
2014-01-20[network/ssl] fix build error if TLSEXT is disabledStefan Bühler1-1/+1
2013-11-13[ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken)Stefan Bühler1-0/+8
2013-11-13fix/silence bugs reported by ccc-analyzer (clang)Stefan Bühler1-2/+2
2013-11-05[ssl] fix SNI handling; only use key+cert+verify-client from SNI specific con...Stefan Bühler1-47/+172
2013-11-05remove unused members from struct server_socketStefan Bühler1-1/+0
2013-08-30[ssl] add option ssl.empty-fragments, defaulting to disabled (fixes #2492)Stefan Bühler1-0/+10
2013-08-30[ssl] accept ssl renegotiations if they are not disabled (fixes #2491)Stefan Bühler1-2/+0
2013-07-31[ssl] Fix $HTTP["scheme"] conditional, could be "http" for ssl connections if...Stefan Bühler1-2/+2
2013-06-29[ssl] use DH only if openssl supports it (fixes #2479)Stefan Bühler1-1/+11
2012-11-09network_server_init: fix double free and memleak on error (fixes #2440, thx k...Stefan Bühler1-5/+2
2011-12-27[ssl] include more headers explicitlyStefan Bühler1-0/+8
2011-11-30fix compile error when ssl is not enabledStefan Bühler1-0/+2
2011-11-30[ssl] add option to honor server cipher order, true by default (fixes #2364)Stefan Bühler1-0/+4
2011-11-30remove copy/paste remainings from previous commitStefan Bühler1-7/+0
2011-11-30[ssl] count renegotiations to prevent client renegotiationsStefan Bühler1-0/+26
2011-08-22[ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabledStefan Bühler1-0/+2
2011-08-22Limit amount of bytes we send in one go; fixes stalling in one connection and...Stefan Bühler1-16/+27
2011-04-24[ssl/build] some minor fixes; fix compile without ssl, cleanup ssl config buf...Stefan Bühler1-4/+7
2011-03-13ssl: Support for Diffie-Hellman and Elliptic-Curve Diffie-Hellman key exchang...Stefan Bühler1-0/+115
2010-08-17Rename fdevent_event_add to _set to reflect what the function does. Fix some ...Stefan Bühler1-1/+1
2010-08-07bind to IPV6-only if ipv6 address was specified (http://redmine.lighttpd.net/...Stefan Bühler1-1/+12
2010-08-06only require FDEVENT_IN bit to be set for listening connections (fixes #2227)Stefan Bühler1-1/+1
2010-08-06cleanup fdevent code, removed linux-rtsig handler, replaced some fprintf callsStefan Bühler1-2/+1
2010-04-28Reset uri.authority before TLS servername handling, reset all "keep-alive" da...Stefan Bühler1-0/+3
2010-02-28Fix handling return value of SSL_CTX_set_options (fixes #2157, thx mlcreech)Stefan Bühler1-1/+1
2009-10-16Don't print ssl error if client didn't support TLS SNIStefan Bühler1-2/+6
2009-10-14Add SSL Client Certificate verification (#1288)Stefan Bühler1-0/+24
2009-10-14Fix compile error if TLS SNI isn't supportedStefan Bühler1-4/+7
2009-10-14Fix some warnings in previous commit (TLS SNI)Stefan Bühler1-2/+3
2009-10-14Add TLS servername indication (SNI) support (fixes #386, thx Peter Colberg <p...Peter Colberg1-69/+133
2009-10-11Fix header inclusion order, always include "config.h" before any system headerStefan Bühler1-11/+11
2009-09-01Fixed some small non-critical leaks reported by cppcheckStefan Bühler1-27/+42
2009-07-21Fix issues found with clang analyzerStefan Bühler1-2/+0
2009-07-16Allow all comparisons for $SERVER["socket"] - only bind for "=="Stefan Bühler1-5/+1
2009-07-11Set FD_CLOEXEC for bound sockets before pipe-logger forks (fixes #2026)Stefan Bühler1-0/+5
2009-04-26Add option to enable TCP_DEFER_ACCEPT (fixes #1447)Stefan Bühler1-8/+9
2009-03-07Added some extra warning options in cmake and fix the resulting warnings (unu...Stefan Bühler1-2/+2
2008-07-30Replace buffer_{append,copy}_string with the _len variant where possible (#17...Stefan Bühler1-1/+1
2006-10-04- white space cleanup part 2 this time 1.4 ;)Marcus Rückert1-118/+118
2006-09-14oops, use SSL_CTX_* if you modify the ssl_ctxJan Kneschke1-1/+1