GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,972 Commits 19 Branches 88 Tags
39ac437727fbe45577e1611e058223fd17f58c23
Commit Graph

1972 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
39ac437727 enhanced ipv6_prefix_to_mask 2015-05-07 09:29:18 +02:00
Nikos Mavrogiannopoulos
689c5ad563 allow specifying a subnet id 2015-05-07 08:57:58 +02:00
Nikos Mavrogiannopoulos
acde2a1163 ipv4_prefix_to_mask: enhanced to handle all possible prefixes 2015-05-07 08:50:57 +02:00
Nikos Mavrogiannopoulos
353e5018ef tests: added unit test for ipv4_prefix_to_mask() 2015-05-07 08:50:33 +02:00
Nikos Mavrogiannopoulos
111e5a9b5f restore recvmsg 2015-05-06 21:11:10 +02:00
Nikos Mavrogiannopoulos
8b32d185c6 doc update 2015-05-06 20:43:04 +02:00
Nikos Mavrogiannopoulos
739cf0c78e doc update 2015-05-06 20:42:06 +02:00
Nikos Mavrogiannopoulos
f89525ff94 added config option 'persistent-cookies' 
When it is set, it doesn't invalidate cookies after
user disconnection.
 2015-05-06 20:41:42 +02:00
Nikos Mavrogiannopoulos
4083684be2 sec-mod: terminate a client session immediately only if there is a single user 2015-05-06 13:15:43 +02:00
Nikos Mavrogiannopoulos
3aa0bc4010 doc update 2015-05-05 11:26:24 +02:00
Nikos Mavrogiannopoulos
df4425a7d2 radius: consider Acct-Interim-Interval by default 
That can also be overriden by specifying 'override-interim-updates=true'
in the radius subconfig.
 2015-05-05 11:24:34 +02:00
Nikos Mavrogiannopoulos
9ed9716e0e radius: send IP address on session start 2015-05-04 19:02:40 +02:00
Nikos Mavrogiannopoulos
1b29436168 updated TODO 2015-05-04 18:50:51 +02:00
Nikos Mavrogiannopoulos
70eca474c4 doc: use the "proper" URL for kdcproxy 2015-05-04 10:55:02 +02:00
Nikos Mavrogiannopoulos
3dfd41221c doc update 2015-05-04 10:39:10 +02:00
Nikos Mavrogiannopoulos
9df499e376 tests: added check for radius accounting with certificates 2015-05-04 10:31:25 +02:00
Nikos Mavrogiannopoulos
71bb8f2866 force_read: handle EOF from fd 2015-05-04 10:31:03 +02:00
Nikos Mavrogiannopoulos
2929e1c2e8 radius: properly close accounting for certificate sessions 2015-05-04 10:25:37 +02:00
Nikos Mavrogiannopoulos
038db8fd80 common: corrected select loops 2015-05-04 09:30:23 +02:00
Nikos Mavrogiannopoulos
26b2978f6d allow the _timeout functions to operate without a timeout 2015-05-03 13:58:45 +02:00
Nikos Mavrogiannopoulos
f33009a6f0 selectively specify timeout in recv when needed 2015-05-03 13:53:05 +02:00
Nikos Mavrogiannopoulos
7661726bd7 radius acct: corrected type of value in data setting 2015-05-03 10:07:47 +02:00
Nikos Mavrogiannopoulos
6022b80394 radisu: always send NAS_PORT_TYPE 2015-05-03 10:06:45 +02:00
Nikos Mavrogiannopoulos
d09bff7b09 doc update 2015-05-02 12:23:06 +02:00
Nikos Mavrogiannopoulos
0b0ab73a2e updated message 2015-05-02 10:53:32 +02:00
Nikos Mavrogiannopoulos
5d522a73fe main: do not impose timeout when reading from sec-mod 2015-05-02 10:47:42 +02:00
Nikos Mavrogiannopoulos
89190854f6 doc update 2015-04-29 17:48:32 +02:00
Nikos Mavrogiannopoulos
ddfa37cf4a increased the tgt-freshness-time in examples 2015-04-29 17:36:14 +02:00
Nikos Mavrogiannopoulos
2932f170a6 gssapi: avoid comparison with null mechanism 2015-04-29 13:24:56 +02:00
Nikos Mavrogiannopoulos
c041d669e1 updated comment 2015-04-29 12:53:42 +02:00
Nikos Mavrogiannopoulos
3f91dfab83 corrected termination of sessions which had no associated module (i.e., certificate) 2015-04-29 11:55:15 +02:00
Nikos Mavrogiannopoulos
6e336431fe radius: distinguish between user disconnect and admin reset of worker process 2015-04-29 11:45:29 +02:00
Nikos Mavrogiannopoulos
849c68e4b6 doc update 2015-04-29 11:04:14 +02:00
Nikos Mavrogiannopoulos
1a1ab808a7 tests: verify tgt-freshness-time in Kerberos setup 2015-04-29 10:47:02 +02:00
Nikos Mavrogiannopoulos
e54f6e2ac2 Added config option 'tgt-freshness-time' for GSSAPI 
This allows to set the maximum number of seconds a TGT ticket will
be valid for logging in the VPN. That can be used to prevent
a valid for a day TGT ticket from being used to login to VPN, and
addresses the use-case of where a laptop with a valid TGT ticket is
stolen.
 2015-04-29 10:41:27 +02:00
Nikos Mavrogiannopoulos
595a9607ce doc update 2015-04-28 16:54:55 +02:00
Nikos Mavrogiannopoulos
b4d8a4aa39 tests: updated radius test 2015-04-28 16:39:54 +02:00
Nikos Mavrogiannopoulos
e0cd5c2660 on explicit user termination notify radious as soon 2015-04-28 16:36:35 +02:00
Nikos Mavrogiannopoulos
57104d9148 doc update 2015-04-27 14:10:01 +02:00
Nikos Mavrogiannopoulos
de118b1787 corrected typo in ban-points-connection option 2015-04-27 13:17:50 +02:00
Nikos Mavrogiannopoulos
efea3fa1e2 return more meaningful error code in parse_data() 2015-04-27 10:57:22 +02:00
Nikos Mavrogiannopoulos
a034626add radius: differentiate between user termination and session timeout 2015-04-27 09:49:45 +02:00
Nikos Mavrogiannopoulos
1cdc70763c tests: added check for proper disconnection message in radius 2015-04-27 09:49:41 +02:00
Nikos Mavrogiannopoulos
ff63a1dadd bumped version ocserv_0_10_4 2015-04-27 08:07:13 +02:00
Nikos Mavrogiannopoulos
cbd916caaf doc update 2015-04-26 23:10:41 +02:00
Nikos Mavrogiannopoulos
02aa9c691e keep track of client entries in sec-mod and report them in status msg 2015-04-26 17:06:16 +02:00
Nikos Mavrogiannopoulos
ea7b975840 sec-mod: expire sessions which are in terminated state 
Reported by riteki@gmail.com.
 2015-04-26 16:46:39 +02:00
Nikos Mavrogiannopoulos
80e6e46034 Added support for chacha20-poly1305 if compiled with gnutls 3.4.0 2015-04-26 00:13:28 +02:00
Nikos Mavrogiannopoulos
3f57dd59bf doc update 2015-04-25 10:35:48 +02:00
Nikos Mavrogiannopoulos
0ce51b8ac3 NEWS: made header consistent 2015-04-25 10:20:40 +02:00