Commit graph

12 commits

Author SHA1 Message Date
joerg
af1ea28464 Unconditionally remove SSLv2 support. Bump revision. 2016-03-29 22:01:13 +00:00
khorben
292f9ace9d Fix build without support for SSLv2 2016-03-29 21:46:48 +00:00
agc
203292f73e Add SHA512 digests for distfiles for net category
Problems found with existing digests:
	Package haproxy distfile haproxy-1.5.14.tar.gz
	159f5beb8fdc6b8059ae51b53dc935d91c0fb51f [recorded]
	da39a3ee5e6b4b0d3255bfef95601890afd80709 [calculated]

Problems found locating distfiles:
	Package bsddip: missing distfile bsddip-1.02.tar.Z
	Package citrix_ica: missing distfile citrix_ica-10.6.115659/en.linuxx86.tar.gz
	Package djbdns: missing distfile djbdns-1.05-test25.diff.bz2
	Package djbdns: missing distfile djbdns-cachestats.patch
	Package djbdns: missing distfile 0002-dnscache-cache-soa-records.patch
	Package gated: missing distfile gated-3-5-11.tar.gz
	Package owncloudclient: missing distfile owncloudclient-2.0.2.tar.xz
	Package poink: missing distfile poink-1.6.tar.gz
	Package ra-rtsp-proxy: missing distfile rtspd-src-1.0.0.0.tar.gz
	Package ucspi-ssl: missing distfile ucspi-ssl-0.70-ucspitls-0.1.patch
	Package waste: missing distfile waste-source.tar.gz

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
2015-11-04 00:34:51 +00:00
ghen
d8f5c987b8 Update pen to the latest version (0.17.2, which almost a year old now).
070912	Added sanity check to init() to make sure that servers_max
	is large enough for the number of servers specified on the
	command line.
	Released 0.17.2.

070829	Faster string duplication courtesy of Nigel Horne.

070502	Updated automake links.

070212	Updated INSTALL with instructions for increasing the number
	of connections on Windows.

061204	Include server weight in response to "penctl servers" command.
	Set server weight on command line. Server is specified as
	host:port:maxconn:hard:weight.

060627	Bugfix by Chris Elsworth: server_by_weight would never
	consider blacklisted servers, which kept them blacklisted
	indefinitely.
	Released 0.17.1.

051230	Added code by Chris Elsworth for kqueue support. Configure
	with --with-kqueue to enable.
	Released 0.17.0.

051215	Changed the configure option for ssl to
	--with-experimental-only-ssl.
	Released 0.16.0.

040709	Added an "abuse server" for naughty clients that have been
	denied access by an acl. Works similar to the emergency server,
	use command-line option "-B host:port" to enable.
2008-01-30 08:27:30 +00:00
xtraeme
d62ec56098 Update to 0.15.0
* Servers can be assigned different weights to account for
  differing capacity. New -W command-line option. New penctl
  commands:
  server S weight W       (assign weight to server)
  weight                  (use weight for server selection)
  no weight               (do not use weight for server selection)

  Cleaned up the logic in add_client so the weighted server
  selection can be used without client tracking.

* Some performance enhancing changes:

        New variable connections_used remembers the number of used
        slots in conns[]. It is incremented by store_conn and
        decremented by close_conn. This allows the main loop to
        only accept new connections if there are empty slots in
        conns[], which is much better than accepting the connection
        only to immediately close it because we can't handle it.

        New variable connections_last remembers the last used slot
        in conns[]. This allows us to scan for empty slots much faster
        in store_conn when there are many simultaneous connections.

* Documented the procedure to change FD_SETSIZE on Linux
 in INSTALL.

* Documented the include command in the penctl manpage.

* Fixed SSL so it works in nonblocking mode, except that
  it doesn't work anyway.
  Moved listenfd and ctrlfd out of main.

* Highly experimental SSL code in pen.c. Updated manpage
  with the new options. Added https example to HOWTO.
2005-09-26 21:46:27 +00:00
agc
b12d62efb5 Add RMD160 digests. 2005-02-24 12:13:41 +00:00
xtraeme
82ee8bf35d Upgrade to 0.12.0.
Update provided by Andreas Wrede <andreas@planix.com> via PR pkg/23319.

Changes:

031023	Released 0.12.0.

	Penlogd: sscanf would read 100 bytes + terminating nul into
	a buffer of size 100. Now reads 99+nul. Spotted by Oezguer Kesim.

	Let tracking time be set through penctl.cgi.
	In do_cmd, "no log": only close the logfile if it is open.
	New penctl command, "write [FILE]" writes current configuration
	to a file. If FILE is omitted, overwrite the original
	configuration file (-F option).

	Pen: Time based expiration of tracked clients. Default is
	0 seconds = never expire. Added -T option to control expiry
	time. Also added penctl command "tracking N".
	Penlogd: zero-terminate results from recvfrom.

	In penlogd.c: don't complain if recvfrom is interrupted by signal.

More bugfixes, etc.
2003-10-30 23:36:29 +00:00
cjep
4cf5553134 Update of net/pen to 0.10.1.
Changes since 0.10.0:
030407  Bugs uncovered by Charlie Reitsma <reitsmac@denison.edu>:
        HOWTO incorrectly specified penctl in place of penlog
	in Apache configuration example, and using penctl to
	redirect log to penlogd didn't work.
	Avoid bogus header rewriting in rewrite_request.
	Released 0.10.1.

Also increase FN_SETSIZE for our package.

From PR#21075 (Andreas Wrede). Thanks!
2003-04-13 11:43:25 +00:00
wiz
1f029c7731 Update to 0.10.0, from Andreas Wrede in PR 20898.
Relevant portion of the Changelog :

030208  New option -H adds X-Forwarded-For header to http requests.

020717  Patches from Patroklos G. Argyroudis <argp@ieee.org>:
         - check getopt() calls against -1 and not EOF
         - fix for a possible format string in pen.c

020711  Ported to Darwin/MacOS X.
        Released 0.9.4.

020705  New penctl command: recent [seconds] displays clients that have
        connected recently (default five minutes), along with number of
        connects, transmitted and received data.

020702  Buffer overflow in netlog. See comment in pen.c.
        Added options -j (for chroot) and -u (for setuid) to pen and
        penlogd. See manpages.

020627  Fixed an error which could throw penlogd into an endless loop
        if a udp packet was lost at the crucial moment.

020626  Pedantic checking of memory allocations and buffer sizes.

020618  Penlogd: added option -n to adjust the number of cached log
        entries from Pen.

020614  Added options -d, -f, -l and -p to penlogd. They do the same
        as in pen. Also added signal handlers for TERM and HUP; these
        too do the same as in pen. Updated penlogd manpage.
        Updated www section in HOWTO to use penlog rather than mergelogs.

020613  Added penlog.c to log over a network using Apaches reliable
        piped logs. A companion log server, penlogd.c, consolidates
        logs from Pen and from all web servers into a single file.
        Added the necessary code to Pen log over the network.

020610  Wrote penctl.cgi, a web wrapper for penctl.

020609  Wrote a new version of the main loop, using poll() instead of
        select(). Added configuration option --with-poll to enable.
        Also turned redefinition of FD_SETSIZE into a configuration
        option --with-fd_setsize=N.
        Updated installation instructions in INSTALL.

020605  Added optional hard limit to the number of connections to each
        server.
        Timestamps in debug log entries.
        Released 0.8.0.

020604  Added "server of last resort" (-e option) which is only used
        when all other servers are unavailable. (Andreas Wrede)

020528  Several enhancements and bugfixes by Andreas Wrede:
        In webstats: changed CLIENTS_MAX to clients_max and
        CONNECTIONS_MAX to connections_max.
        Show time in human-readable format rather than seconds since 1970.
        Changed byte counters from unsigned long to unsigned long long.
        Fixed file descriptor leak: The connection wasn't closed when
        the connection table was full.
        Moved stats generation and log restart out of the signal handlers
        and into the main loop.
        If a client went away before receiving all its data (large files),
        the remaining portion would be sent to the next client occupying
        the same slot.
        Added pointers in connection structure to avoid having to memcpy
        the buffers in flush_up/flush_down.
        Released 0.7.0.

020507  Updated the penctl manpage to reflect reality.
        Released 0.6.3.

020417  Added -D switch to make copy_up and copy_down *always* store data
        in a temporary buffer and wait for the next round through the
        main loop before passing it on to the receiving end.
        The penctl command for this is "delayed_forward".
        When making sockets nonblocking (through fcntl(..., O_NONBLOCK)),
        make sure that any existing flags are not reset in the process.
        Important bugfix: each failed connection attempt in try_server
        would result in one socket leaked because we returned without
        closing it.

020413  Figured out why nonblocking mode was slower than blocking. Fixed.

020411  Added penctl, a simple user interface to the control protocol.

020324  Cancel timeout if it isn't needed.

020115  Added LDAP info in the HOWTO.
        Added the flush_up/flush_down bugfix from 0.5.0 again.
        Released 0.6.1.

020111  Moved #include <sys/types.h> before #include <netinet/in.h>
        Replaced the call to setpgrp with setsid.
        Transformed mergelogs into ultimately portable ANSI C (almost).
        Thanks to Mike Dugas <mad@phobia.net> for help with porting
        Removed the -r (rejects) option, since we no longer reject anything.
        to FreeBSD 4.4-RELEASE.

020110  Rewrote mergelogs completely. It will now never discard a web
        server log entry, and it tries much harder to locate a good
        match in the pen log. It deals with log entries that are out
        of order and servers with unsynchronized clocks and/or
        different time zones. The -l (lag) option is no more.
        Released 0.6.0

010915  Made the use of daemon() optional.
        Added the cgi script penstats to update and display statistics.
        Set current in store_conn.
        Released 0.5.0.

010914  Statistics in HTML format (Riccard Åkerman).
        Tested pen on HP-UX 10.20.
2003-03-27 17:53:20 +00:00
itojun
2d388e67b5 make it compile. 2001-11-22 08:12:24 +00:00
rh
4fc0cc30c3 Update pen to 0.4.0. Notable changes include:
010912  When storing part of the buffer for a renewed attempt,
        store the *end*, not the beginning. Affects copy_up and copy_down.
        Autoconf. Use daemon() if available. Make sure that we don't try
        to close uninitialized file handles in add_client.
        New option -n to not make sockets nonblocking (mainly useful
        for debugging).

010911  Make sure that remaining data is stored away when we get EAGAIN
        in copy_up.
        Released 0.3.3.

010909  Added -p argument to store process id in a file (Andreas Wrede).
        Made the sockets nonblocking. Handle EAGAIN in copy_up/down.
        Released 0.3.2.

010908  Ignore SIGPIPE. Released 0.3.1.

010827  Option -h uses a hash on the client IP address for the initial
        server selection. Option -s ("stubborn") prevents failover to
        another server if the initial choice is unavailable.

010824  Use getport for the local port as well.
2001-09-13 15:09:38 +00:00
rh
4e73855271 Initial import of pen-0.2.0, a simple TCP load balancer and failover
manager.
2001-08-21 12:00:14 +00:00