about summary refs log tree commit diff
path: root/rc.d (unfollow)
Commit message (Collapse)Author
2019-11-06Declare more missing functions and deal with lack of SO_NOSIGPIPEJune McEnroe
2019-11-06Define one CERTBOT_PATH rather than two format stringsJune McEnroe
2019-11-06Change license to GPLv3June McEnroe
> Notwithstanding any other provision of this License, if you modify the > Program, your modified version must prominently offer all users > interacting with it remotely through a computer network (if your version > supports such interaction) an opportunity to receive the Corresponding > Source of your version by providing access to the Corresponding Source > from a network server at no charge, through some standard or customary > means of facilitating copying of software. This potentially means that every freenode user, for example, is interacting with this software, and offering the corresponding source to each of them is an unreasonable burden.
2019-11-06Add flag to generate a client certificateJune McEnroe
This is essentially the command freenode tells you to run: <https://freenode.net/kb/answer/certfp>.
2019-11-06Give SYNOPSIS Ars more informative namesJune McEnroe
2019-11-06Expand SASL EXTERNAL documentationJune McEnroe
2019-11-06Use explicit_bzero from LibreSSLJune McEnroe
2019-11-05Clean up bounce.cJune McEnroe
2019-11-05Use "priv" instead of "key" in optionsJune McEnroe
Let all words be four letter words.
2019-11-05Use arc4random_bufJune McEnroe
2019-11-05Add missing includeJune McEnroe
2019-11-05Use one call to set client cert and keyJune McEnroe
2019-11-05Implement SASL EXTERNALJune McEnroe
2019-11-04Add options for TLS client certificateJune McEnroe
2019-11-04Zero PASS parameterJune McEnroe
2019-11-04Don't set directory modes on installJune McEnroe
2019-11-04Hash client passwords with cryptJune McEnroe
2019-11-04Move base64 to bounce.hJune McEnroe
2019-11-03Rename bind-unix to bind-pathJune McEnroe
2019-11-03Append bindHost to bindPath if it is a directoryJune McEnroe
2019-11-03Set up /var/run/calico and /usr/local/etc/pounceJune McEnroe
2019-11-02Set procname in calico rc scriptJune McEnroe
2019-11-02Send an unrecognized_name alert when failing to dispatchJune McEnroe
2019-11-02Fix name of SNIJune McEnroe
2019-11-02Unlink UNIX socket at exitJune McEnroe
2019-11-02Note calico in pounce CAVEATSJune McEnroe
2019-11-02Add calico rc scriptJune McEnroe
2019-11-02Apply capsicum to calicoJune McEnroe
2019-11-02Fix trying to cap_rights_limit a NULL saveFileJune McEnroe
2019-11-02Implement UNIX-domain bindingJune McEnroe
2019-11-02Don't try to sendfd if connect failedJune McEnroe
2019-11-02Document pounce -U flagJune McEnroe
Not yet implemented.
2019-11-02Add SNI socket dispatcherJune McEnroe
pounce can't accept connections from it yet though!
2019-11-01Limit saveFile to CAP_WRITEJune McEnroe
2019-11-01Implement capsicum workaround for certbotJune McEnroe
2019-11-01Reload certificates using openatJune McEnroe
This is more versatile since files are more likely to be replaced than overwritten.
2019-11-01Re-read cert and key from the same FILEsJune McEnroe
2019-11-01Use capsicumJune McEnroe
2019-10-31Use explicit_bzero to clear passwordsJune McEnroe
GNU doesn't implement memset_s, but both FreeBSD and GNU implement explicit_bzero. Darwin doesn't, so #define it in terms of memset_s.
2019-10-31Send clients their own QUIT on shutdownJune McEnroe
2019-10-31Shrink client buffer sizeJune McEnroe
Clients are generally not going to send huge amounts at a time, and IRC messages are limited to 512 bytes. If in the future we supported message tags from clients, which have a size limit of 8191 bytes, this would unfortunately have to be set much higher.
2019-10-31Iterator over pollfds in reverseJune McEnroe
This has two advantages: 1. When removing a client, we don't need to break the loop, since the swap-remove will replace the current pollfd with one we've already handled and we can safely move on to the next (previous) one. 2. If a new client connects for the same consumer (for example if the previous one is going to time out), it will start consuming messages for that consumer, rather than them being sent to the old client.
2019-10-31Clear passwords from memory with memset_sJune McEnroe
2019-10-30Clean up cert path documentationJune McEnroe
2019-10-30Remove client count FIXMEJune McEnroe
This minor thing would take too much code convolution to do.
2019-10-30Preserve consumers ptr in realloc failureJune McEnroe
2019-10-30Add option for ring sizeJune McEnroe
2019-10-30Set away status upon connectingJune McEnroe
2019-10-30Add make target for localhost.crtJune McEnroe
Adapted from <https://letsencrypt.org/docs/certificates-for-localhost/>.
2019-10-30Warn when consumers drop messagesJune McEnroe