ocserv

mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 08:46:58 +08:00

Author	SHA1	Message	Date
Nikos Mavrogiannopoulos	3473bf1706	do not duplicate technical info	2014-01-20 18:54:01 +01:00
Nikos Mavrogiannopoulos	8884cfc940	protocolbuf-c was made an optional dependency.	2014-01-20 11:23:19 +01:00
Nikos Mavrogiannopoulos	0695e05078	more reasonable line wrapping	2014-01-19 12:50:02 +01:00
Nikos Mavrogiannopoulos	268ba7a634	better order of options	2014-01-19 12:40:47 +01:00
Nikos Mavrogiannopoulos	3ad1d38c8c	Added gnulib's missing files	2014-01-19 12:17:14 +01:00
Nikos Mavrogiannopoulos	b500de2ec0	simplified ciphersuite selection method and select ciphers based on server's desire.	2014-01-19 11:52:07 +01:00
Nikos Mavrogiannopoulos	404d831c35	better definition names.	2014-01-19 09:49:46 +01:00
Nikos Mavrogiannopoulos	2b743f5898	increased minimum maintainance time, and decreased log level of maintainance message.	2014-01-19 09:34:27 +01:00
Nikos Mavrogiannopoulos	d665872468	updated gnulib	2014-01-19 09:31:46 +01:00
Nikos Mavrogiannopoulos	3893ee6213	on unknown messages print the number of the message when cmd_request_to_str() is used.	2014-01-19 09:30:36 +01:00
Nikos Mavrogiannopoulos	e859125bb5	evened out the level of some debug messages.	2014-01-19 09:25:14 +01:00
Nikos Mavrogiannopoulos	0ed6332e09	mslog_hex() will allow printing values encoded in base64.	2014-01-19 09:21:48 +01:00
Nikos Mavrogiannopoulos	1b769d38d9	better debug messge	2014-01-19 09:16:08 +01:00
Nikos Mavrogiannopoulos	9d2b10de22	Use base64 to encode Cookies. That reduces the size of the cookie.	2014-01-19 09:14:11 +01:00
Nikos Mavrogiannopoulos	41862db757	doc update	2014-01-19 08:42:08 +01:00
Nikos Mavrogiannopoulos	baf12348d4	Added proc_st status PS_AUTH_FAILED to prevent users that failed authentication to leave a zombie proc_st.	2014-01-19 04:14:56 +01:00
Nikos Mavrogiannopoulos	add57c5d32	use pselect() in worker process as well.	2014-01-19 04:10:42 +01:00
Nikos Mavrogiannopoulos	b611537683	better message when cannot reach server.	2014-01-19 04:02:31 +01:00
Nikos Mavrogiannopoulos	1ac47546f7	main-ctl-handler.c when disconnecting IDs and ID==-1 then continue looping until all zombies have been cleaned up.	2014-01-19 04:00:57 +01:00
Nikos Mavrogiannopoulos	0f7e59a4f5	list users -> show users	2014-01-19 04:00:16 +01:00
Nikos Mavrogiannopoulos	f174f655db	remove zombie proc_st when its state has been 'stolen'	2014-01-19 04:00:02 +01:00
Nikos Mavrogiannopoulos	ef647c0190	reduce maintainance time to remove zombie processes sooner.	2014-01-19 03:43:30 +01:00
Nikos Mavrogiannopoulos	79b6f226af	when taking the state of a proc_st set its status to zombie.	2014-01-19 03:43:03 +01:00
Nikos Mavrogiannopoulos	3105398cc0	do not give information on zombie processes	2014-01-19 03:41:59 +01:00
Nikos Mavrogiannopoulos	445fcb666b	info printing updates	2014-01-19 03:41:35 +01:00
Nikos Mavrogiannopoulos	a88f30f3c9	updated copyright date	2014-01-19 03:21:25 +01:00
Nikos Mavrogiannopoulos	d83d71bf7a	updated authors	2014-01-19 03:14:43 +01:00
Nikos Mavrogiannopoulos	b9fe6b6263	instead of using the TLS session ID as session identifier prior to authentication use the webvpncontext cookie.	2014-01-19 02:59:04 +01:00
Nikos Mavrogiannopoulos	90a9286b88	send auth reply failure when needed.	2014-01-18 16:06:37 +01:00
Nikos Mavrogiannopoulos	ef537d6846	doc update	2014-01-18 15:08:51 +01:00
Nikos Mavrogiannopoulos	7145db0d54	Added sketch of authentication protocol between main and worker.	2014-01-18 15:06:16 +01:00
Nikos Mavrogiannopoulos	b1af6f2829	enabling cisco-client-compat allows 'stealing' of processes. This change puts a proc_st that its client has terminated to a "zombie" state. That state will allow a client that connects later using the same TLS session ID to reclaim it. That way clients that try to authenticate by sending their credentials in different sessions can still authenticate with ocserv. That however puts more trust to worker processes (as the main process has no way of telling whether a TLS session is certainly resumed).	2014-01-18 15:06:10 +01:00
Nikos Mavrogiannopoulos	d454557649	replace always-require-cert with cisco-client-compat.	2014-01-18 11:19:19 +01:00
Nikos Mavrogiannopoulos	bee6a99450	added missing dependency	2014-01-18 11:19:06 +01:00
Nikos Mavrogiannopoulos	fdee40d276	documented all dependencies	2014-01-18 11:09:16 +01:00
Nikos Mavrogiannopoulos	6c078f2397	configure info update	2014-01-14 17:36:40 +01:00
Nikos Mavrogiannopoulos	6eaa81cf73	corrected prototype	2014-01-14 17:31:19 +01:00
Nikos Mavrogiannopoulos	e43840db05	send empty array instead of nothing when a user or ID aren't found.	2014-01-14 10:34:34 +01:00
Nikos Mavrogiannopoulos	8f9cef9665	print correct error when a user or ID are not found	2014-01-14 10:34:09 +01:00
Nikos Mavrogiannopoulos	766ab8ee21	Added function to print network interface statistics.	2014-01-14 10:20:47 +01:00
Nikos Mavrogiannopoulos	68bd5af105	free the output of gnutls_session_get_desc	2014-01-14 07:39:53 +01:00
Nikos Mavrogiannopoulos	81c20b9237	export ID env variable	2014-01-13 19:04:56 +01:00
Nikos Mavrogiannopoulos	2e068ad0b9	more files to ignore	2014-01-12 18:30:03 +01:00
Nikos Mavrogiannopoulos	cc6473a92a	print file name instead of function name	2014-01-12 18:24:13 +01:00
Nikos Mavrogiannopoulos	823190475b	print textual name of messages exchanged.	2014-01-12 18:23:29 +01:00
Nikos Mavrogiannopoulos	39572b3d48	Store User-Agent information and send to occtl.	2014-01-12 14:35:58 +01:00
Nikos Mavrogiannopoulos	b8a4fdf530	unset needs_compact_auth if client changes its mind.	2014-01-12 14:19:10 +01:00
Nikos Mavrogiannopoulos	a08a03d70e	use a common version message.	2014-01-12 14:09:07 +01:00
Nikos Mavrogiannopoulos	4a8513b393	use config-auth header in success message	2014-01-12 14:08:13 +01:00
Nikos Mavrogiannopoulos	4fe59287f5	removed vpn-client-pkg-version which didn't seem to affect anything.	2014-01-12 14:06:23 +01:00

... 2 3 4 5 6 ...

957 Commits