Daniel Roethlisberger
06a02f946a
Always explicitly name the non-null arguments
...
Always explicitly name which arguments are non-null, even if all
arguments are non-null. This is to avoid bugs where newly added
arguments are automatically non-null by accident, possibly leading to
optimisation errors.
This also fixes a few potential errors related to non-null arguments;
specifically it prevents the compiler optimising away a test for sni
being NULL in cachedsess_mkkey().
Issue: #14
Reported by: kythyria
11 years ago
Daniel Roethlisberger
ca923ee7f1
Update copyright notices to 2014
11 years ago
Daniel Roethlisberger
a94dbc8c3a
Refactor event handler for clarity
11 years ago
Daniel Roethlisberger
38280818f8
Add HTTP content-length to connect log
11 years ago
Daniel Roethlisberger
b746a6f6bb
Add HTTP response header filtering
...
Filter response headers in order to remove HPKP headers. As an added
benefit, parse the HTTP status code and add it to the connection log.
11 years ago
Daniel Roethlisberger
2a4a9c8b23
Fix fallback to passthrough when no cert present
...
Properly reset connection state when reconnecting the dst part of the
connection. This fixes the fallback to passthrough when no certficates
are present which can be used to split the SSL.
Issue: #9
Reported by: ceear
11 years ago
Daniel Roethlisberger
9f23fb31aa
Log new bev connections to debug log
11 years ago
Daniel Roethlisberger
c972501063
Update copyright notices
11 years ago
Daniel Roethlisberger
146188b750
Improve SNI peek debugging
11 years ago
Daniel Roethlisberger
bb15224d11
Flush error queue prior to exiting
...
Reorganize the cleanup code after detaching from the TTY in order to be
able to flush the error queue before calling exit(). Addresses issue #6
12 years ago
Daniel Roethlisberger
457c2621b8
Fix warning when SSLv2 session cache is enabled
12 years ago
Daniel Roethlisberger
8eb5165760
Optimize debug branching using __builtin_expect()
12 years ago
Daniel Roethlisberger
38d22415af
Generic EC loading, new default curve 'secp160r2'
12 years ago
Daniel Roethlisberger
a592f7149c
Improve error handling for no origcrt situations
12 years ago
Daniel Roethlisberger
605c1ab6e6
Improve error recovery under low memory conditions
12 years ago
Daniel Roethlisberger
3fd9084fe1
Quickly decide on GET URIs obviously not OCSP
12 years ago
Daniel Roethlisberger
ee98c04b29
Add generic OCSP denial
12 years ago
Daniel Roethlisberger
9f40fbc473
Replace empty strings with dash when logging
12 years ago
Daniel Roethlisberger
07d591fccf
Skip whitespace when parsing HTTP headers
12 years ago
Daniel Roethlisberger
083b02d78d
Minor reformatting
12 years ago
Daniel Roethlisberger
d4be8c3e38
Refactor ssl_x509_names_to_str() for maintainability
12 years ago
Daniel Roethlisberger
4cfdef405a
Initial import of sslsplit-0.4.2
12 years ago