1. 6b3b0d4 MEDIUM: listener: provide a fallback for accept4() when not supported by Willy Tarreau · Mon Oct 22 19:32:55 2012 +0200
  2. a068a29 MINOR: sample: export 'sample_get_trash_chunk(void)' by Emeric Brun · Wed Oct 17 15:34:03 2012 +0200
  3. 07ca496 MINOR: acl: add parse and match primitives to use binary type on ACLs by Emeric Brun · Wed Oct 17 13:38:19 2012 +0200
  4. 8ac33d9 MINOR: sample: manage binary to string type convertion in stick-table and samples. by Emeric Brun · Wed Oct 17 13:36:06 2012 +0200
  5. fc47f91 BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode by Willy Tarreau · Sat Oct 20 10:38:09 2012 +0200
  6. 566dc55 MINOR: ssl: improve socket behaviour upon handshake abort. by Willy Tarreau · Fri Oct 19 20:52:18 2012 +0200
  7. 2e845be MEDIUM: sample: pass an empty list instead of a null for fetch args by Willy Tarreau · Fri Oct 19 19:49:09 2012 +0200
  8. f22a508 MINOR: sample: accept fetch keywords without parenthesis by Willy Tarreau · Fri Oct 19 16:47:23 2012 +0200
  9. ad8f8e8 MINOR: chunk: provide string compare functions by Willy Tarreau · Fri Oct 19 15:18:06 2012 +0200
  10. 8c866a3 BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions by Willy Tarreau · Fri Oct 19 14:34:30 2012 +0200
  11. 6c9a3d5 MEDIUM: ssl: add support for the "npn" bind keyword by Willy Tarreau · Thu Oct 18 18:57:14 2012 +0200
  12. 338a4fc BUILD: ssl: fix shctx build on older compilers by Willy Tarreau · Thu Oct 18 15:11:52 2012 +0200
  13. a33c654 MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information by Willy Tarreau · Mon Oct 15 13:19:06 2012 +0200
  14. c93f795 CLEANUP: session: remove term_trace which is not used anymore by Willy Tarreau · Sat Oct 13 11:09:14 2012 +0200
  15. 9b28e03 MAJOR: channel: replace the struct buffer with a pointer to a buffer by Willy Tarreau · Fri Oct 12 23:49:43 2012 +0200
  16. f332af7 CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers by Willy Tarreau · Fri Oct 12 23:58:13 2012 +0200
  17. cb76e59 CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers by Willy Tarreau · Fri Oct 12 23:56:57 2012 +0200
  18. 697d850 CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names by Willy Tarreau · Fri Oct 12 23:53:39 2012 +0200
  19. 974ced6 CLEANUP: channel: use 'chn' instead of 'buf' as local variable names by Willy Tarreau · Fri Oct 12 23:11:02 2012 +0200
  20. cdbdd52 CLEANUP: http: use 'chn' to name channel variables, not 'buf' by Willy Tarreau · Fri Oct 12 22:51:15 2012 +0200
  21. 394db37 REORG: http: rename msg->buf to msg->chn since it's a channel by Willy Tarreau · Fri Oct 12 22:40:39 2012 +0200
  22. ffc3fcd MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv by Willy Tarreau · Fri Oct 12 20:17:54 2012 +0200
  23. 4f65356 MINOR: log: make lf_text use a const char * by Willy Tarreau · Fri Oct 12 19:48:16 2012 +0200
  24. 93dbc2b MEDIUM: log: add a new LW_XPRT flag to pin the transport layer by Willy Tarreau · Fri Oct 12 18:01:49 2012 +0200
  25. 1e95491 MEDIUM: connection: add a flag to hold the transport layer by Willy Tarreau · Fri Oct 12 17:50:05 2012 +0200
  26. 91083f5 BUG/MEDIUM: session: enable the conn_session_update() callback by Willy Tarreau · Fri Oct 12 17:42:13 2012 +0200
  27. e9909f4 BUG/MINOR: session: fix some leftover from debug code by Willy Tarreau · Fri Oct 12 17:36:40 2012 +0200
  28. 773d65f MEDIUM: log: suffix the frontend's name with '~' when using SSL by Willy Tarreau · Fri Oct 12 14:56:11 2012 +0200
  29. ef42d92 MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers. by Emeric Brun · Thu Oct 11 16:11:36 2012 +0200
  30. f9c5c47 MINOR: ssl: add statement 'no-tls-tickets' on server side. by Emeric Brun · Thu Oct 11 15:28:34 2012 +0200
  31. ecc91fe MEDIUM: ssl: reject ssl server keywords in default-server statement by Emeric Brun · Thu Oct 11 15:05:10 2012 +0200
  32. 94324a4 MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c by Emeric Brun · Thu Oct 11 14:00:19 2012 +0200
  33. 92faadf MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c by Willy Tarreau · Wed Oct 10 23:04:25 2012 +0200
  34. 7151633 BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin by Willy Tarreau · Wed Oct 10 23:01:14 2012 +0200
  35. dff5543 MEDIUM: server: move parsing of keyword "id" to server.c by Willy Tarreau · Wed Oct 10 17:51:05 2012 +0200
  36. d0d6059 MEDIUM: server: check for registered keywords when parsing unknown keywords by Willy Tarreau · Wed Oct 10 08:57:40 2012 +0200
  37. 70eec38 MINOR: standard: make indent_msg() support empty messages by Willy Tarreau · Wed Oct 10 08:56:47 2012 +0200
  38. 21faa91 MINOR: server: add minimal infrastructure to parse keywords by Willy Tarreau · Wed Oct 10 08:27:36 2012 +0200
  39. 1bc4aab MEDIUM: listener: add support for linux's accept4() syscall by Willy Tarreau · Mon Oct 08 20:11:03 2012 +0200
  40. 1b6c00c BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used by Willy Tarreau · Fri Oct 05 22:41:26 2012 +0200
  41. 71e451c CLEANUP: cttproxy: remove a warning on undeclared close() by Willy Tarreau · Fri Oct 05 22:18:07 2012 +0200
  42. 76d8895 MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS. by Emeric Brun · Fri Oct 05 15:47:31 2012 +0200
  43. 8694b9a MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server by Emeric Brun · Fri Oct 05 14:39:07 2012 +0200
  44. 2cb7ae5 MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind. by Emeric Brun · Fri Oct 05 14:14:21 2012 +0200
  45. 8967549 MINOR: ssl: use bit fields to store ssl options instead of one int each by Emeric Brun · Fri Oct 05 13:48:26 2012 +0200
  46. fb510ea MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file' by Emeric Brun · Fri Oct 05 12:00:26 2012 +0200
  47. 9b3009b MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'. by Emeric Brun · Fri Oct 05 11:55:06 2012 +0200
  48. c8e8d12 MINOR: ssl: add 'crt-base' and 'ca-base' global statements. by Emeric Brun · Tue Oct 02 18:42:10 2012 +0200
  49. 9fa8973 BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes by Emeric Brun · Thu Oct 04 17:09:56 2012 +0200
  50. 3b5bc66 BUG: connection: fix regression from commit 9e272bf9 by Willy Tarreau · Fri Oct 05 21:29:37 2012 +0200
  51. 3c4bc6e MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners. by Emeric Brun · Thu Oct 04 18:44:19 2012 +0200
  52. ce08baa BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686. by Emeric Brun · Thu Oct 04 17:28:25 2012 +0200
  53. 0914df8 BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL. by Emeric Brun · Tue Oct 02 18:45:42 2012 +0200
  54. 1c862c5 MEDIUM: tcp: enable TCP Fast Open on systems which support it by Willy Tarreau · Fri Oct 05 16:21:00 2012 +0200
  55. 4c75cca MINOR: samples: update the url_param fetch to match parameters in the path by bedis · Fri Oct 05 08:38:24 2012 +0200
  56. 392e939 CLEANUP: checks: remove minor warnings for assigned but not used variables by Willy Tarreau · Fri Oct 05 14:54:30 2012 +0200
  57. e6baecf BUILD: fix build issue without USE_OPENSSL by Baptiste Assmann · Fri Oct 05 11:48:04 2012 +0200
  58. 6c16adc MEDIUM: checks: enable the PROXY protocol with health checks by Willy Tarreau · Fri Oct 05 00:04:16 2012 +0200
  59. 763a95b MEDIUM: checks: add the "check-ssl" server option by Willy Tarreau · Thu Oct 04 23:15:39 2012 +0200
  60. f150317 MAJOR: checks: completely use the connection transport layer by Willy Tarreau · Fri Sep 28 19:39:36 2012 +0200
  61. f4288ee MEDIUM: check: add the ctrl and transport layers in the server check structure by Willy Tarreau · Fri Sep 28 18:13:10 2012 +0200
  62. 1ae1b7b MEDIUM: checks: use real buffers to store requests and responses by Willy Tarreau · Fri Sep 28 15:28:30 2012 +0200
  63. 5b3a202 REORG: server: move the check-specific parts into a check subsection by Willy Tarreau · Fri Sep 28 15:01:02 2012 +0200
  64. fb56aab MAJOR: checks: make use of the connection layer to send checks by Willy Tarreau · Fri Sep 28 14:40:02 2012 +0200
  65. 5f1504f MEDIUM: connection: add a new local send-proxy transport callback by Willy Tarreau · Thu Oct 04 23:55:57 2012 +0200
  66. e1e4a61 REORG: connection: move the PROXY protocol management to connection.c by Willy Tarreau · Fri Oct 05 00:10:55 2012 +0200
  67. 0ffde2c MEDIUM: connection: automatically disable polling on error by Willy Tarreau · Thu Oct 04 22:21:15 2012 +0200
  68. 665e6ee MEDIUM: connection: it's not the data layer's role to validate the connection by Willy Tarreau · Thu Oct 04 20:20:46 2012 +0200
  69. 78eaebe MEDIUM: connection: don't call the data->init callback upon error by Willy Tarreau · Wed Oct 03 21:20:21 2012 +0200
  70. 9683e9a MEDIUM: session: register a data->wake callback to process errors by Willy Tarreau · Wed Oct 03 21:17:23 2012 +0200
  71. 2396c1c MEDIUM: connection: make it possible for data->wake to return an error by Willy Tarreau · Wed Oct 03 21:12:16 2012 +0200
  72. 9e272bf MEDIUM: connection: only call the data->wake callback on activity by Willy Tarreau · Wed Oct 03 21:04:48 2012 +0200
  73. 071e137 MEDIUM: connection: use a generic data-layer init() callback by Willy Tarreau · Wed Oct 03 01:39:48 2012 +0200
  74. 5e75e27 MEDIUM: session: use a specific data_cb for embryonic sessions by Willy Tarreau · Tue Oct 02 21:21:20 2012 +0200
  75. 4aa3683 MINOR: connection: provide a generic data layer wakeup callback by Willy Tarreau · Tue Oct 02 20:07:22 2012 +0200
  76. 74beec3 REORG: connection: rename app_cb "data" by Willy Tarreau · Wed Oct 03 00:41:04 2012 +0200
  77. f7bc57c REORG: connection: rename the data layer the "transport layer" by Willy Tarreau · Wed Oct 03 00:19:48 2012 +0200
  78. 6f5d141 MEDIUM: raw_sock: improve connection error reporting by Willy Tarreau · Thu Oct 04 20:38:49 2012 +0200
  79. c0e9886 MINOR: raw_sock: always report asynchronous connection errors by Willy Tarreau · Thu Oct 04 20:17:13 2012 +0200
  80. c39b0d1 MINOR: signal: really ignore signals configured with no handler by Willy Tarreau · Thu Oct 04 19:19:36 2012 +0200
  81. f8cfa44 BUG/MINOR: epoll: correctly disable FD polling in fd_rem() by Willy Tarreau · Thu Oct 04 21:54:41 2012 +0200
  82. 050536d MEDIUM: proxy: add the global frontend to the list of normal proxies by Willy Tarreau · Thu Oct 04 08:47:34 2012 +0200
  83. b3fb60b BUG/MEDIUM: listener: don't pause protocols that do not support it by Willy Tarreau · Thu Oct 04 08:56:31 2012 +0200
  84. 8113a5d BUG/MINOR: config: use a copy of the file name in proxy configurations by Willy Tarreau · Thu Oct 04 08:01:43 2012 +0200
  85. d1a33e3 BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload by Willy Tarreau · Thu Oct 04 00:14:33 2012 +0200
  86. 8923019 BUG/MINOR: ssl: report the L4 connection as established when possible by Willy Tarreau · Fri Sep 28 20:22:13 2012 +0200
  87. 051cdab BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature. by Emeric Brun · Tue Oct 02 19:25:50 2012 +0200
  88. 561e574 BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified. by Emeric Brun · Tue Oct 02 15:20:55 2012 +0200
  89. 2d0c482 MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption by Emeric Brun · Tue Oct 02 13:45:20 2012 +0200
  90. c6678e2 MEDIUM: config: authorize frontend and listen without bind. by Emeric Brun · Mon Oct 01 17:10:30 2012 +0200
  91. c0ff492 MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. by Emeric Brun · Fri Sep 28 19:37:02 2012 +0200
  92. 9faf071 MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory by Emeric Brun · Tue Sep 25 11:11:16 2012 +0200
  93. 4b3091e MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1 by Emeric Brun · Mon Sep 24 15:48:52 2012 +0200
  94. f282a81 MINOR: ssl: add fetches and ACLs to return verify errors by Emeric Brun · Fri Sep 21 15:27:54 2012 +0200
  95. baf8ffb MINOR: ssl: add fetch and ACL 'ssl_verify_result' by Emeric Brun · Fri Sep 21 15:27:20 2012 +0200
  96. 81c00f0 MINOR: ssl: add ignore verify errors options by Emeric Brun · Fri Sep 21 14:31:21 2012 +0200
  97. e64aef1 MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present by Emeric Brun · Fri Sep 21 13:15:06 2012 +0200
  98. d94b3fe MEDIUM: ssl: add client certificate authentication support by Emeric Brun · Thu Sep 20 18:23:56 2012 +0200
  99. 2b58d04 MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation by Emeric Brun · Thu Sep 20 17:10:03 2012 +0200
  100. a4bcd9a MINOR: ssl: try to load Diffie-Hellman parameters from cert file by Emeric Brun · Thu Sep 20 16:19:02 2012 +0200