summaryrefslogtreecommitdiff
path: root/local.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Update copyrights, authorsJune McEnroe2022-07-171-1/+1
|
* Refactor XDG base directory iterator APIC. McEnroe2021-10-051-9/+8
| | | | Finally something more reasonable for call sites.
* Load and reload local certificates like normalC. McEnroe2021-10-051-37/+25
|
* Delete local-path socket like normalC. McEnroe2021-10-051-24/+0
|
* FreeBSD: Remove capsicum supportC. McEnroe2021-10-051-10/+0
| | | | | capsicum is too impractical and removing it will allow much more straightforward code.
* Remove TCP keepalive settingsC. McEnroe2021-10-031-16/+1
| | | | | | | | | | | | | | | TCP keepalives were originally enabled to solve the problem of client connections staying idle for long periods of time, due to pounce not relaying PINGs from the server. Long-idle TCP connections are likely to be dropped by NAT routers, causing timeouts. Unfortunately, the TCP_KEEPIDLE socket option is not available on OpenBSD, so this was useless for pounce running there. The default timeout before sending keepalives is 2 hours, which is far longer than the timeout used by NAT routers, which seems to be 30 minutes. Now that pounce sends its own PINGs to idle clients approximately every 15 minutes, these TCP keepalive settings are unnecessary.
* Don't create new tls_server(3), just reconfigureC. McEnroe2021-08-211-2/+1
|
* Zero local-key memory before freeing itC. McEnroe2021-08-211-0/+1
|
* Unlink existing UNIX socket if it can't be connected toC. McEnroe2020-11-231-10/+26
| | | | | | I think this emulates SO_REUSEADDR, which for some reason doesn't work on PF_UNIX. If the socket exists, check if connect(2) works, rather than clobbering the socket being used by a still-running instance.
* Swap localAccept parameter orderC. McEnroe2020-11-141-11/+11
|
* Add support for OpenBSDC. McEnroe2020-08-271-0/+2
|
* Say "OpenSSL" in additional permission noticesC. McEnroe2020-08-061-2/+2
| | | | LibreSSL is "a modified version of that library".
* Remove compat.hC. McEnroe2020-08-011-0/+4
|
* Use snprintf instead of strlcpyC. McEnroe2020-07-311-2/+4
|
* Add additional permission for linking with LibreSSLC. McEnroe2020-06-081-0/+11
| | | | https://www.gnu.org/licenses/gpl-faq.en.html#GPLIncompatibleLibs
* Don't bother setting SO_NOSIGPIPEC. McEnroe2020-05-181-5/+2
| | | | We need to ignore SIGPIPE anyway for other platforms.
* Enable TCP keepalive with half-hour idleC. McEnroe2020-05-181-0/+8
| | | | | | Since we swallow IRC PINGs, a client connection can go hours idle on a quiet network. On my home internet, at least, these connections seem to get silently dropped.
* Do not crash on error from acceptC. McEnroe2020-04-021-1/+1
|
* Add option to set local client CAC. McEnroe2020-01-121-1/+19
| | | | | | | | | This is a little bit messy. Allows setting either -A or -W or both. Implements SASL EXTERNAL for clients that expect that when connecting with a client certificate. Need to test that reloading still works inside capsicum, since I suspect that rewind call may be blocked.
* Avoid a couple VLAs with constant sizeMichael Forney2019-11-201-3/+2
| | | | These are really just regular arrays masquerading as VLAs.
* Use strlcpy for sun_pathsC. McEnroe2019-11-201-2/+2
| | | | | | | | | | | | My understanding is that sun_path need not be nul-terminated, but I didn't notice that SUN_LEN actually requires it. > The length of UNIX-domain address, required by bind(2) and connect(2), > can be calculated by the macro SUN_LEN() defined in <sys/un.h>. The > sun_path field must be terminated by a NUL character to be used with > SUN_LEN(), but the terminating NUL is not part of the address. Thanks to Duncan Overbruck <mail@duncano.de> for the report.
* Rename listen to localC. McEnroe2019-11-101-0/+208
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-05 22:51:20 +0000