GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,432 Commits 19 Branches 88 Tags
173301744ce4b5e568600a360359799be18bc73e
Commit Graph

1432 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
173301744c updated radius documentation 2014-12-13 22:22:28 +01:00
Nikos Mavrogiannopoulos
a32c5db859 Added README.radius 2014-12-11 12:09:56 +01:00
Nikos Mavrogiannopoulos
b18eeb7d74 first set amod and then use it 
That fixes a crash with PAM module on startup.
Reported by Ismail Donmez.
 2014-12-11 11:58:23 +01:00
Nikos Mavrogiannopoulos
6989b6a0c4 do not utilize radius symbols if radius is disabled 
Reported by Ismail Donmez
 2014-12-11 05:37:16 +01:00
Nikos Mavrogiannopoulos
209937e7b1 bumped version 2014-12-11 05:27:42 +01:00
Nikos Mavrogiannopoulos
27cf16b5f9 doc update 2014-12-10 20:01:45 +01:00
Nikos Mavrogiannopoulos
816663fab1 Merge branch 'radius' 
That merges all the changes needed for radius support.
 2014-12-10 19:59:36 +01:00
Nikos Mavrogiannopoulos
3307793e34 test-unix: correct copy of file ocserv_0_8_9 2014-12-10 19:55:12 +01:00
Nikos Mavrogiannopoulos
1f2726feb7 bumped version 2014-12-10 19:33:22 +01:00
Nikos Mavrogiannopoulos
065753bd57 undid ed5b177691 
It is not currently possible to reload only a part of the
configuration. If the back-end module changes, the server will
bail out instead.
 2014-12-10 15:28:14 +01:00
Nikos Mavrogiannopoulos
c15a7befbb sec-mod: always reply on open-session cmd 2014-12-10 15:10:25 +01:00
Nikos Mavrogiannopoulos
c8a2666fa7 avoid crash when no auth module is in use 2014-12-10 14:15:37 +01:00
Nikos Mavrogiannopoulos
0551338a7a sec-mod: preparations for thread safety 2014-12-10 14:10:17 +01:00
Nikos Mavrogiannopoulos
54e6450807 sec-mod: separated request serving from main loop 2014-12-10 13:30:56 +01:00
Nikos Mavrogiannopoulos
93125ea945 updated documentation on radius 2014-12-10 11:46:17 +01:00
Nikos Mavrogiannopoulos
c1deee1fb5 updated todo list 2014-12-10 11:22:22 +01:00
Nikos Mavrogiannopoulos
320773e80a Added support for radius interim updates 2014-12-10 11:18:29 +01:00
Nikos Mavrogiannopoulos
35e93c6341 added option to send statistics periodically to sec-mod 2014-12-10 11:18:23 +01:00
Nikos Mavrogiannopoulos
ed5b177691 authentication information is only read on load 2014-12-10 08:56:23 +01:00
Nikos Mavrogiannopoulos
766afb591a Added support for reading user configuration from radius. 2014-12-09 15:38:27 +01:00
Nikos Mavrogiannopoulos
2194e11b39 Added support for radius authentication 2014-12-09 10:59:18 +01:00
Nikos Mavrogiannopoulos
baa3e4701e Supplementary configuration is now read by the security module. 
That allows sec-mod to handle both authentication and accounting.
That deprecates the session-control configuration option.
 2014-12-08 13:52:28 +01:00
Nikos Mavrogiannopoulos
8365449e9b deprecated ipv6_netmask 2014-12-08 10:48:25 +01:00
Nikos Mavrogiannopoulos
7abfb3e800 call disconnect script only if the user was on connected state 2014-12-02 08:34:20 +01:00
Nikos Mavrogiannopoulos
6bfd5db245 separate log messages between up and down script 2014-12-02 08:27:32 +01:00
Nikos Mavrogiannopoulos
230b6adca0 doc update 2014-12-01 23:15:31 +01:00
Nikos Mavrogiannopoulos
af91c73924 tests: satisfy latest docker's restrictions 2014-12-01 23:14:22 +01:00
Nikos Mavrogiannopoulos
5019c4cebe tests: try to check stats only when file is present 2014-12-01 23:08:12 +01:00
Nikos Mavrogiannopoulos
d7ec6a168e run the down script even if the client's IP address has been re-used 2014-12-01 22:56:31 +01:00
Nikos Mavrogiannopoulos
7b0e20e6ad sec-mod: made logging consistent with the main server 2014-12-01 22:49:09 +01:00
Nikos Mavrogiannopoulos
c402c03d09 doc update 2014-11-30 14:44:08 +01:00
Nikos Mavrogiannopoulos
cb9dcde387 Notify the client that the server may have a dynamic DNS address 
That is send "X-CSTP-DynDNS: true", in CSTP headers if the
server is configured as having a dynamic DNS address.
 2014-11-30 11:30:08 +01:00
Nikos Mavrogiannopoulos
9a7a9a36a1 use define _XOPEN_SOURCE to get crypt() 2014-11-29 19:49:38 +01:00
Nikos Mavrogiannopoulos
987974a59e sec-mod: print whether a certificate is present 2014-11-27 13:33:02 +01:00
Nikos Mavrogiannopoulos
74aa65bfa0 enhanced sample.config 2014-11-26 17:09:54 +01:00
Nikos Mavrogiannopoulos
ece3324e40 forward to gnutls manual for priority string documentation 2014-11-25 21:59:40 +01:00
Nikos Mavrogiannopoulos
f96177ebe8 released 0.8.8 ocserv_0_8_8 2014-11-22 15:25:38 +01:00
Nikos Mavrogiannopoulos
8f84801c32 use TCP_NOPUSH in systems that support it (FreeBSD) 2014-11-18 22:29:37 +01:00
Nikos Mavrogiannopoulos
0320f61e3f Disable RC4 in the default priority strings 2014-11-18 22:23:02 +01:00
Nikos Mavrogiannopoulos
dc8c340bed bumped version 2014-11-17 20:16:47 +01:00
Nikos Mavrogiannopoulos
141bc755ad when generating the DTLS session ID set its size as well 2014-11-16 12:36:20 +01:00
Nikos Mavrogiannopoulos
bf2e8c8cd6 added oclog_hex() 2014-11-16 12:34:30 +01:00
Nikos Mavrogiannopoulos
6103f5066d doc update 2014-11-16 10:04:59 +01:00
Nikos Mavrogiannopoulos
78b3685f7a Generate a new DTLS session ID on every cookie connection 
That allows openconnect to distinguish when the DTLS key has switched.
 2014-11-16 10:00:15 +01:00
Nikos Mavrogiannopoulos
01bbb5cfa1 print the username earlier in log 2014-11-16 09:15:28 +01:00
Nikos Mavrogiannopoulos
f1e71ec597 improved logged messages 2014-11-15 12:47:30 +01:00
Nikos Mavrogiannopoulos
57cbb43a3b advertise a new DTLS session only when it is one 2014-11-15 12:32:31 +01:00
Nikos Mavrogiannopoulos
79668eb5e5 partially reverted b924eba1ac 
The timeouts were reset to the original values.
 2014-11-15 10:21:26 +01:00
Nikos Mavrogiannopoulos
845562201a doc update 2014-11-15 10:10:18 +01:00
Nikos Mavrogiannopoulos
a4ec19eb55 disable matching of IPs when the listen-clear-file option is set 2014-11-15 09:50:35 +01:00