Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Remove -DNO_EXPLICIT_BZERO from Darwin.mk | C. McEnroe | 2019-11-06 | 1 | -1/+0 | |
| | ||||||
* | Don't install rc scripts or dirs on Linux | C. McEnroe | 2019-11-06 | 2 | -4/+10 | |
| | ||||||
* | Add Linux.mk | C. McEnroe | 2019-11-06 | 1 | -0/+5 | |
| | ||||||
* | Use #defines for constant strings | C. McEnroe | 2019-11-06 | 3 | -11/+11 | |
| | | | | | GCC hates declaring static consts in headers and not using them, for some stupid reason. | |||||
* | Declare more missing functions and deal with lack of SO_NOSIGPIPE | C. McEnroe | 2019-11-06 | 4 | -4/+14 | |
| | ||||||
* | Define one CERTBOT_PATH rather than two format strings | C. McEnroe | 2019-11-06 | 2 | -8/+10 | |
| | ||||||
* | Change license to GPLv3 | C. McEnroe | 2019-11-06 | 11 | -111/+124 | |
| | | | | | | | | | | | | | | > Notwithstanding any other provision of this License, if you modify the > Program, your modified version must prominently offer all users > interacting with it remotely through a computer network (if your version > supports such interaction) an opportunity to receive the Corresponding > Source of your version by providing access to the Corresponding Source > from a network server at no charge, through some standard or customary > means of facilitating copying of software. This potentially means that every freenode user, for example, is interacting with this software, and offering the corresponding source to each of them is an unreasonable burden. | |||||
* | Add flag to generate a client certificate | C. McEnroe | 2019-11-06 | 2 | -2/+31 | |
| | | | | | This is essentially the command freenode tells you to run: <https://freenode.net/kb/answer/certfp>. | |||||
* | Give SYNOPSIS Ars more informative names | C. McEnroe | 2019-11-06 | 1 | -9/+9 | |
| | ||||||
* | Expand SASL EXTERNAL documentation | C. McEnroe | 2019-11-06 | 1 | -12/+16 | |
| | ||||||
* | Use explicit_bzero from LibreSSL | C. McEnroe | 2019-11-06 | 12 | -22/+55 | |
| | ||||||
* | Clean up bounce.c | C. McEnroe | 2019-11-05 | 1 | -88/+87 | |
| | ||||||
* | Use "priv" instead of "key" in options | C. McEnroe | 2019-11-05 | 2 | -5/+5 | |
| | | | | Let all words be four letter words. | |||||
* | Use arc4random_buf | C. McEnroe | 2019-11-05 | 1 | -3/+1 | |
| | ||||||
* | Add missing include | C. McEnroe | 2019-11-05 | 1 | -0/+1 | |
| | ||||||
* | Use one call to set client cert and key | C. McEnroe | 2019-11-05 | 1 | -13/+2 | |
| | ||||||
* | Implement SASL EXTERNAL | C. McEnroe | 2019-11-05 | 4 | -27/+40 | |
| | ||||||
* | Add options for TLS client certificate | C. McEnroe | 2019-11-04 | 4 | -9/+58 | |
| | ||||||
* | Zero PASS parameter | C. McEnroe | 2019-11-04 | 2 | -4/+6 | |
| | ||||||
* | Don't set directory modes on install | C. McEnroe | 2019-11-04 | 1 | -1/+1 | |
| | ||||||
* | Hash client passwords with crypt | C. McEnroe | 2019-11-04 | 6 | -14/+41 | |
| | ||||||
* | Move base64 to bounce.h | C. McEnroe | 2019-11-04 | 2 | -32/+35 | |
| | ||||||
* | Rename bind-unix to bind-path | C. McEnroe | 2019-11-03 | 2 | -2/+2 | |
| | ||||||
* | Append bindHost to bindPath if it is a directory | C. McEnroe | 2019-11-03 | 2 | -5/+22 | |
| | ||||||
* | Set up /var/run/calico and /usr/local/etc/pounce | C. McEnroe | 2019-11-03 | 3 | -3/+12 | |
| | ||||||
* | Set procname in calico rc script | C. McEnroe | 2019-11-02 | 1 | -2/+2 | |
| | ||||||
* | Send an unrecognized_name alert when failing to dispatch | C. McEnroe | 2019-11-02 | 1 | -3/+19 | |
| | ||||||
* | Fix name of SNI | C. McEnroe | 2019-11-02 | 2 | -2/+2 | |
| | ||||||
* | Unlink UNIX socket at exit | C. McEnroe | 2019-11-02 | 1 | -6/+35 | |
| | ||||||
* | Note calico in pounce CAVEATS | C. McEnroe | 2019-11-02 | 1 | -1/+8 | |
| | ||||||
* | Add calico rc script | C. McEnroe | 2019-11-02 | 5 | -10/+38 | |
| | ||||||
* | Apply capsicum to calico | C. McEnroe | 2019-11-02 | 1 | -2/+29 | |
| | ||||||
* | Fix trying to cap_rights_limit a NULL saveFile | Curtis McEnroe | 2019-11-02 | 1 | -2/+4 | |
| | ||||||
* | Implement UNIX-domain binding | C. McEnroe | 2019-11-02 | 3 | -2/+66 | |
| | ||||||
* | Don't try to sendfd if connect failed | C. McEnroe | 2019-11-02 | 1 | -2/+4 | |
| | ||||||
* | Document pounce -U flag | C. McEnroe | 2019-11-02 | 2 | -3/+31 | |
| | | | | Not yet implemented. | |||||
* | Add SNI socket dispatcher | C. McEnroe | 2019-11-02 | 5 | -8/+382 | |
| | | | | pounce can't accept connections from it yet though! | |||||
* | Limit saveFile to CAP_WRITE | Curtis McEnroe | 2019-11-01 | 1 | -1/+4 | |
| | ||||||
* | Implement capsicum workaround for certbot | Curtis McEnroe | 2019-11-01 | 1 | -23/+66 | |
| | ||||||
* | Reload certificates using openat | Curtis McEnroe | 2019-11-01 | 2 | -42/+69 | |
| | | | | | This is more versatile since files are more likely to be replaced than overwritten. | |||||
* | Re-read cert and key from the same FILEs | Curtis McEnroe | 2019-11-01 | 3 | -9/+43 | |
| | ||||||
* | Use capsicum | Curtis McEnroe | 2019-11-01 | 2 | -0/+25 | |
| | ||||||
* | Use explicit_bzero to clear passwords | Curtis McEnroe | 2019-10-31 | 7 | -15/+20 | |
| | | | | | GNU doesn't implement memset_s, but both FreeBSD and GNU implement explicit_bzero. Darwin doesn't, so #define it in terms of memset_s. | |||||
* | Send clients their own QUIT on shutdown | Curtis McEnroe | 2019-10-31 | 1 | -1/+4 | |
| | ||||||
* | Shrink client buffer size | Curtis McEnroe | 2019-10-31 | 1 | -1/+2 | |
| | | | | | | | Clients are generally not going to send huge amounts at a time, and IRC messages are limited to 512 bytes. If in the future we supported message tags from clients, which have a size limit of 8191 bytes, this would unfortunately have to be set much higher. | |||||
* | Iterator over pollfds in reverse | Curtis McEnroe | 2019-10-31 | 1 | -2/+1 | |
| | | | | | | | | | | | This has two advantages: 1. When removing a client, we don't need to break the loop, since the swap-remove will replace the current pollfd with one we've already handled and we can safely move on to the next (previous) one. 2. If a new client connects for the same consumer (for example if the previous one is going to time out), it will start consuming messages for that consumer, rather than them being sent to the old client. | |||||
* | Clear passwords from memory with memset_s | Curtis McEnroe | 2019-10-31 | 2 | -2/+10 | |
| | ||||||
* | Clean up cert path documentation | Curtis McEnroe | 2019-10-30 | 1 | -15/+8 | |
| | ||||||
* | Remove client count FIXME | Curtis McEnroe | 2019-10-30 | 1 | -2/+0 | |
| | | | | This minor thing would take too much code convolution to do. | |||||
* | Preserve consumers ptr in realloc failure | Curtis McEnroe | 2019-10-30 | 1 | -3/+3 | |
| |