GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-03-13 06:48:13 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,036 Commits 17 Branches 89 Tags
87dcf31665acb536180f5ce17a51640d9e5ddf2f
Commit Graph

2036 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
da44c28a01 more files to ignore 2015-05-11 14:24:28 +02:00
Nikos Mavrogiannopoulos
020138d219 radius: use explicit sizes when setting NAS address 2015-05-11 14:20:15 +02:00
Nikos Mavrogiannopoulos
87a3fbf18e updated ipv6 MTU discovery 2015-05-11 14:20:08 +02:00
Nikos Mavrogiannopoulos
f2e5e7e441 oc_recvfrom_at: fixed discovery of our IPv6 address 2015-05-11 14:20:00 +02:00
Nikos Mavrogiannopoulos
a80a07fa53 added MTU discovery and adjustment in IPv6 2015-05-11 14:19:53 +02:00
Nikos Mavrogiannopoulos
0ca7389c5d radius: set our IP in the request explicitly 2015-05-11 14:19:47 +02:00
Nikos Mavrogiannopoulos
ff36023277 doc update 2015-05-11 14:19:24 +02:00
Nikos Mavrogiannopoulos
18253952d3 radius: removed documentation for Framed-IPv6-Route 
It was superseded by Route-IPv6-Information
 2015-05-11 14:18:13 +02:00
Nikos Mavrogiannopoulos
c7167af362 radius: added support for Delegated-IPv6-Prefix 2015-05-11 14:17:44 +02:00
Nikos Mavrogiannopoulos
41bcc9d0c0 radius: put the process ID into NAS-Port 2015-05-11 14:15:25 +02:00
Nikos Mavrogiannopoulos
6b79e20c53 radius: removed NAS-PORT-TYPE from accounting requests 2015-05-11 14:15:10 +02:00
Nikos Mavrogiannopoulos
96a2f9723d README.radius: added new attributes 2015-05-11 14:14:35 +02:00
Nikos Mavrogiannopoulos
3185581a73 Revert "allow specifying a subnet id" 
This reverts commit 689c5ad563.
 2015-05-11 14:13:26 +02:00
Nikos Mavrogiannopoulos
5995389b0f tests: added ipv6-prefix unit test 2015-05-07 09:29:36 +02:00
Nikos Mavrogiannopoulos
39ac437727 enhanced ipv6_prefix_to_mask 2015-05-07 09:29:18 +02:00
Nikos Mavrogiannopoulos
689c5ad563 allow specifying a subnet id 2015-05-07 08:57:58 +02:00
Nikos Mavrogiannopoulos
acde2a1163 ipv4_prefix_to_mask: enhanced to handle all possible prefixes 2015-05-07 08:50:57 +02:00
Nikos Mavrogiannopoulos
353e5018ef tests: added unit test for ipv4_prefix_to_mask() 2015-05-07 08:50:33 +02:00
Nikos Mavrogiannopoulos
111e5a9b5f restore recvmsg 2015-05-06 21:11:10 +02:00
Nikos Mavrogiannopoulos
8b32d185c6 doc update 2015-05-06 20:43:04 +02:00
Nikos Mavrogiannopoulos
739cf0c78e doc update 2015-05-06 20:42:06 +02:00
Nikos Mavrogiannopoulos
f89525ff94 added config option 'persistent-cookies' 
When it is set, it doesn't invalidate cookies after
user disconnection.
 2015-05-06 20:41:42 +02:00
Nikos Mavrogiannopoulos
4083684be2 sec-mod: terminate a client session immediately only if there is a single user 2015-05-06 13:15:43 +02:00
Nikos Mavrogiannopoulos
3aa0bc4010 doc update 2015-05-05 11:26:24 +02:00
Nikos Mavrogiannopoulos
df4425a7d2 radius: consider Acct-Interim-Interval by default 
That can also be overriden by specifying 'override-interim-updates=true'
in the radius subconfig.
 2015-05-05 11:24:34 +02:00
Nikos Mavrogiannopoulos
9ed9716e0e radius: send IP address on session start 2015-05-04 19:02:40 +02:00
Nikos Mavrogiannopoulos
1b29436168 updated TODO 2015-05-04 18:50:51 +02:00
Nikos Mavrogiannopoulos
70eca474c4 doc: use the "proper" URL for kdcproxy 2015-05-04 10:55:02 +02:00
Nikos Mavrogiannopoulos
3dfd41221c doc update 2015-05-04 10:39:10 +02:00
Nikos Mavrogiannopoulos
9df499e376 tests: added check for radius accounting with certificates 2015-05-04 10:31:25 +02:00
Nikos Mavrogiannopoulos
71bb8f2866 force_read: handle EOF from fd 2015-05-04 10:31:03 +02:00
Nikos Mavrogiannopoulos
2929e1c2e8 radius: properly close accounting for certificate sessions 2015-05-04 10:25:37 +02:00
Nikos Mavrogiannopoulos
038db8fd80 common: corrected select loops 2015-05-04 09:30:23 +02:00
Nikos Mavrogiannopoulos
26b2978f6d allow the _timeout functions to operate without a timeout 2015-05-03 13:58:45 +02:00
Nikos Mavrogiannopoulos
f33009a6f0 selectively specify timeout in recv when needed 2015-05-03 13:53:05 +02:00
Nikos Mavrogiannopoulos
7661726bd7 radius acct: corrected type of value in data setting 2015-05-03 10:07:47 +02:00
Nikos Mavrogiannopoulos
6022b80394 radisu: always send NAS_PORT_TYPE 2015-05-03 10:06:45 +02:00
Nikos Mavrogiannopoulos
d09bff7b09 doc update 2015-05-02 12:23:06 +02:00
Nikos Mavrogiannopoulos
0b0ab73a2e updated message 2015-05-02 10:53:32 +02:00
Nikos Mavrogiannopoulos
5d522a73fe main: do not impose timeout when reading from sec-mod 2015-05-02 10:47:42 +02:00
Nikos Mavrogiannopoulos
89190854f6 doc update 2015-04-29 17:48:32 +02:00
Nikos Mavrogiannopoulos
ddfa37cf4a increased the tgt-freshness-time in examples 2015-04-29 17:36:14 +02:00
Nikos Mavrogiannopoulos
2932f170a6 gssapi: avoid comparison with null mechanism 2015-04-29 13:24:56 +02:00
Nikos Mavrogiannopoulos
c041d669e1 updated comment 2015-04-29 12:53:42 +02:00
Nikos Mavrogiannopoulos
3f91dfab83 corrected termination of sessions which had no associated module (i.e., certificate) 2015-04-29 11:55:15 +02:00
Nikos Mavrogiannopoulos
6e336431fe radius: distinguish between user disconnect and admin reset of worker process 2015-04-29 11:45:29 +02:00
Nikos Mavrogiannopoulos
849c68e4b6 doc update 2015-04-29 11:04:14 +02:00
Nikos Mavrogiannopoulos
1a1ab808a7 tests: verify tgt-freshness-time in Kerberos setup 2015-04-29 10:47:02 +02:00
Nikos Mavrogiannopoulos
e54f6e2ac2 Added config option 'tgt-freshness-time' for GSSAPI 
This allows to set the maximum number of seconds a TGT ticket will
be valid for logging in the VPN. That can be used to prevent
a valid for a day TGT ticket from being used to login to VPN, and
addresses the use-case of where a laptop with a valid TGT ticket is
stolen.
 2015-04-29 10:41:27 +02:00
Nikos Mavrogiannopoulos
595a9607ce doc update 2015-04-28 16:54:55 +02:00