GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-09 08:16:58 +08:00
Code Issues Packages Projects Releases Wiki Activity
4,017 Commits 19 Branches 88 Tags
master
Commit Graph

4017 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
75543b3091 Merge branch 'tmp-ci' into 'master' 
Fix new typos detected by codespell

See merge request openconnect/ocserv!449
 2025-03-02 07:59:24 +00:00
Dimitri Papadopoulos
63093e7392 Fix new typos detected by codespell 
These are debatable, but so be it.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2025-02-20 18:55:32 +01:00
Dimitri Papadopoulos
bab0561111 silence coverity 
CID 530817:  Resource leaks  (RESOURCE_LEAK)
Variable "ss" going out of scope leaks the storage "ss.ss_sp" points to.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2025-01-14 15:30:51 +01:00
Dimitri Papadopoulos
3d0c95580a Modernize printf() format 
Use macro constants from <inttypes.h> to print width-based integral
types from <stdint.h>.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-12-06 17:26:49 +01:00
Dimitri Papadopoulos
5d1eeee8ca Main() signature compliant with C standard 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-12-06 12:08:52 +01:00
Nikos Mavrogiannopoulos
d425d1749c Merge branch 'tmp-linux-kernel-coding-style' into 'master' 
Added check for linux kernel coding style

See merge request openconnect/ocserv!445
 2024-12-04 15:34:52 +00:00
Nikos Mavrogiannopoulos
21bef68a8f Merge branch 'tmp-llhttp' into 'master' 
Follow-up to cf56c975: remove http-parser

Closes #621

See merge request openconnect/ocserv!440
 2024-12-04 15:16:39 +00:00
Nikos Mavrogiannopoulos
a88a8fd52a maxmind: explicitly initialize variables identified by ubsan 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 22:11:08 +01:00
Nikos Mavrogiannopoulos
60dce59d97 forward_udp_to_owner: modified check to help static analyzer 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 20:52:12 +01:00
Nikos Mavrogiannopoulos
318c80a326 Improved code formatting 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 20:49:05 +01:00
Nikos Mavrogiannopoulos
c2ddad4280 .gitlab-ci.yml: use fedora 41 images 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 17:40:05 +01:00
Nikos Mavrogiannopoulos
528ae633f3 Added check for coding style using clang-format 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 17:03:04 +01:00
Nikos Mavrogiannopoulos
78c65b5adf Updated code to follow with kernel coding style 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-12-01 17:01:05 +01:00
Nikos Mavrogiannopoulos
f5b85f130a doc update 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-11-19 08:21:15 +01:00
Mike Gilbert
310ef4a732 Allow the readlinkat syscall when socket_wrapper is in use 
On arm64, the realpath function calls readlinkat instead of readlink.

Fixes: #627

Signed-off-by: Mike Gilbert <floppym@gentoo.org>
 2024-11-19 08:20:12 +01:00
Dimitri Papadopoulos
caeb4fa103 Follow-up to cf56c975: remove http-parser 
Delete last occurrence of http-parser.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-09-09 21:34:29 +02:00
Nikos Mavrogiannopoulos
d6b18598cd NEWS: updated [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-09-08 10:49:12 +02:00
Nikos Mavrogiannopoulos
2788a53eb8 Merge branch 'master' into 'master' 
Update to increase pam stack size per https://gitlab.com/openconnect/ocserv/-/issues/619

Closes #619

See merge request openconnect/ocserv!435
 2024-09-08 08:46:18 +00:00
theevilapplepie
3606482486 Update to increase pam stack size per https://gitlab.com/openconnect/ocserv/-/issues/619 
Signed-off-by: James Vess <theevilapplepie@gmail.com>
 2024-09-05 22:51:17 -04:00
Nikos Mavrogiannopoulos
b69bef3c3b Merge branch 'tmp-build' into 'master' 
Update build dependencies

Closes #617

See merge request openconnect/ocserv!433
 2024-09-03 09:42:35 +00:00
Dimitri Papadopoulos
d72fd7ee58 Use apt-get instead of yum on Debian/Ubuntu 
Thank you @sergius_fidelis for reporting it.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-08-22 12:04:04 +03:00
Dimitri Papadopoulos
aca9b34285 Update build dependencies 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-08-22 12:03:50 +03:00
Dimitri Papadopoulos Orfanos
d0e8ff2f96 Merge branch 'tmp-remove' into 'master' 
Check return value of remove()

See merge request openconnect/ocserv!427
 2024-07-03 20:48:20 +00:00
Dimitri Papadopoulos Orfanos
18099f98a5 Merge branch 'strdup' into 'master' 
src/ocpasswd/ocpasswd.c: handle strdup errors

See merge request openconnect/ocserv!428
 2024-07-03 20:25:16 +00:00
Ilya Shipitsin
9536c53521 src/ocpasswd/ocpasswd.c: handle strup errors 
Signed-off-by: Ilya Shipitsin <chipitsine@gmail.com>
 2024-06-25 23:52:07 +02:00
Dimitri Papadopoulos
6746d1d6f4 Check return value of remove() 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-06-25 22:13:21 +02:00
Nikos Mavrogiannopoulos
344c717319 README-oidc.md: mention that only the microsoft client supports OIDC [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-06-03 21:11:07 +02:00
Nikos Mavrogiannopoulos
db053d084d .gitlab-ci.yml: use saas-linux-small-amd64 tag 
The linux and shared tags were deprecated:
https://docs.gitlab.com/ee/update/deprecations.html?removal_milestone=17.0#removal-of-tags-from-small-saas-runners-on-linux

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-05-10 20:32:23 +02:00
Nikos Mavrogiannopoulos
dd13e5db65 design.md: added basic mermaid diagram 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-05-09 17:33:08 +02:00
Nikos Mavrogiannopoulos
92dba6e4f5 released 1.3.0 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
1.3.0 		2024-05-05 21:08:20 +02:00
Nikos Mavrogiannopoulos
538be2b5ff NEWS: mentioned closed issue 
Resolves: #597

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-29 22:26:21 +02:00
Nikos Mavrogiannopoulos
fe144f86c4 Merge branch 'tmp-llhttp' into 'master' 
Switch from http-parser to llhttp

Closes #598

See merge request openconnect/ocserv!422
 2024-04-28 18:24:13 +00:00
Nikos Mavrogiannopoulos
cf56c9754b Switch from http-parser to llhttp 
http-parser is an unmaintained library that has been replaced by llhttp.

Resolves: #598

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-28 13:37:19 +02:00
Nikos Mavrogiannopoulos
db90324b08 tls_load_files: do not print informational messages on worker load 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-28 13:35:52 +02:00
Nikos Mavrogiannopoulos
57ff431c9e Merge branch 'tmp-silent-worker' into 'master' 
config: silence informational messages on worker reload

See merge request openconnect/ocserv!423
 2024-04-28 11:23:21 +00:00
Nikos Mavrogiannopoulos
71e4aba580 config: silence informational messages on worker reload 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-27 21:32:19 +02:00
Nikos Mavrogiannopoulos
8e523597f1 Merge branch 'tmp-config-url' into 'master' 
Allow selecting group by URL or profile

See merge request openconnect/ocserv!403
 2024-04-27 19:07:09 +00:00
Nikos Mavrogiannopoulos
48d7057fb3 config: auto-select-group made global not per vhost 
The group functionality is available globally only and
there is no benefit from this option being per vhost.

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-23 21:35:44 +02:00
Marcin Ochab
3f966ae8ca Allow selecting group by URL or profile 
This introduces the 'select-group-by-url' config option
that allows selecting an authgroup just by connecting to
a dedicated URI.

Signed-off-by: Marcin Ochab <marcin.ochab@gmail.com>
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-23 21:35:00 +02:00
Nikos Mavrogiannopoulos
72b8e19cac updated copyright notices and minor text update 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-01 12:19:46 +02:00
Dimitri Papadopoulos Orfanos
8cd5e12e81 Merge branch 'MAX_GROUPS' into 'master' 
Bump MAX_GROUPS to allow for more groups

See merge request openconnect/ocserv!415
 2024-03-26 20:16:21 +00:00
Dimitri Papadopoulos Orfanos
6728eb2436 Merge branch 'malloc.h' into 'master' 
Do not include <malloc.h> but for malloc_trim()

See merge request openconnect/ocserv!418
 2024-03-26 14:25:41 +00:00
Nikos Mavrogiannopoulos
332644b31e Merge branch 'master' into 'master' 
src/ocpasswd/ocpasswd.c: handle malloc errors

See merge request openconnect/ocserv!417
 2024-03-26 14:07:47 +00:00
Ilya Shipitsin
ee7bc8ae60 src/ocpasswd/ocpasswd.c: handle malloc errors 
Signed-off-by: Ilya Shipitsin <chipitsine@gmail.com>
 2024-03-22 14:53:36 +01:00
Dimitri Papadopoulos
20ed2bfc7a Do not include <malloc.h> but for malloc_trim() 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-03-22 13:56:38 +01:00
Dimitri Papadopoulos
c734a9c929 Bump MAX_GROUPS to allow for more groups 
Especially Radius accounts might belong to a large number of groups.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-03-19 07:53:15 +01:00
Nikos Mavrogiannopoulos
44721552be README.md: updated URI [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-02-22 22:56:53 +01:00
Nikos Mavrogiannopoulos
1ea5385c2b Merge branch 'feature-expand_no-ipv6-ocv3_test' into 'master' 
Expand no-ipv6-ocv3 test

See merge request openconnect/ocserv!414
 2024-02-20 13:23:35 +00:00
Daniel Lenski
aa8ab8ed30 Expand no-ipv6-ocv3 test 
As added in c1a6f2b04a, this test verifies
that ocserv will NOT send IPv6 routes to OpenConnect v3 clients, which can't
handle them correctly.

Additionally, we can also verify that ocserv DOES send IPv6 routes to
totally unknown clients, which is the intended outcome resulting from
8b8a1a7b53.

Signed-off-by: Daniel Lenski <dlenski@amazon.com>
 2024-02-19 17:41:29 -08:00
Nikos Mavrogiannopoulos
444ae6022a bumped version [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-02-02 16:29:50 +01:00