GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,603 Commits 19 Branches 88 Tags
92c31d1c02b49232b310177f7a6ec361c79880bf
Commit Graph

3603 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dimitri Papadopoulos
92c31d1c02 inih: updated to latest version r56 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2023-01-03 08:50:03 +01:00
Nikos Mavrogiannopoulos
88e4212e28 Merge branch 'arguments' into 'master' 
Improve arguments of time() and exit()

See merge request openconnect/ocserv!308
 2023-01-02 07:59:13 +00:00
Dimitri Papadopoulos Orfanos
76334ef7d9 Merge branch 'RFC9110' into 'master' 
Use the capitalisation of RFC 9110 in HTTP headers

See merge request openconnect/ocserv!307
 2022-12-31 13:58:28 +00:00
Dimitri Papadopoulos Orfanos
5a225e4008 Merge branch 'protobuf' into 'master' 
updated to protobuf 1.4.1

See merge request openconnect/ocserv!309
 2022-12-31 13:54:08 +00:00
Nikos Mavrogiannopoulos
e7dc62acd4 Merge branch 'cookie-validity' into 'master' 
Get rid of deprecated option cookie-validity

Closes #483

See merge request openconnect/ocserv!305
 2022-12-31 13:31:23 +00:00
Dimitri Papadopoulos
2b899aae82 Use the capitalisation of RFC 9110 in HTTP headers 
Capitalisation shouldn't be an issue, yet conform to RFC 9110 for
consistency:
https://www.rfc-editor.org/info/rfc9110

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2022-12-30 21:28:45 +01:00
Dimitri Papadopoulos
bf71414cf9 updated to protobuf 1.4.1 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2022-12-30 19:12:27 +01:00
Dimitri Papadopoulos
7b2cb88350 Use EXIT_SUCCESS and EXIT_FAILURE with exit() 
The use of `EXIT_SUCCESS` and `EXIT_FAILURE` is slightly more portable
than the use than the use of 0 and nonzero value like 1 or -1. In
practice, this is not an issue on Unix-like systems, but it does make
the intent clearer.
 2022-12-30 17:31:21 +01:00
Dimitri Papadopoulos
cd4c4c26eb The second argument of time() is a pointer 
Do not use `0` instead of `NULL` in C.
 2022-12-30 17:31:13 +01:00
Dimitri Papadopoulos
3eec11bfcd Get rid of deprecated option cookie-validity 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2022-12-24 12:46:53 +01:00
Nikos Mavrogiannopoulos
30ae99084d libtasn1: no longer use deprecated types 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-12-02 19:59:52 +01:00
Nikos Mavrogiannopoulos
e7a9529051 improved code coverage identification 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-12-02 19:59:52 +01:00
Nikos Mavrogiannopoulos
d4cb726644 Merge branch 'tls_reload_ocsp' into 'master' 
Avoid compile-time warning

See merge request openconnect/ocserv!301
 2022-12-02 18:59:10 +00:00
Nikos Mavrogiannopoulos
bb25bdd3aa Merge branch 'spaces' into 'master' 
Remove spaces [ci skip]

See merge request openconnect/ocserv!304
 2022-12-02 18:57:16 +00:00
Dimitri Papadopoulos
59fe28c85e Add .git-blame-ignore-revs 
For `git blame` to ignore the previous formatting changes.

Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com>
 2022-11-28 11:25:00 +01:00
Dimitri Papadopoulos
f28669bf60 Remove spaces 
* Remove trailing spaces at end-of-line
* Remove blank lines at end-of-file

Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com>
 2022-11-28 11:22:33 +01:00
Dimitri Papadopoulos
d8504e7e28 Avoid compile-time warning 
../src/tlslib.c:54:13: warning: 'tls_reload_ocsp' declared 'static' but never defined [-Wunused-function]
	 static void tls_reload_ocsp(main_server_st* s, struct vhost_cfg_st *vhost);
	             ^

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2022-11-27 20:16:33 +01:00
Nikos Mavrogiannopoulos
03b71ca57f doc update [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-11-26 16:25:21 +01:00
Nikos Mavrogiannopoulos
1f5bd46ef1 Merge branch 'master' into 'master' 
seccomp: allow essential syscalls in 32-bit arm platform

See merge request openconnect/ocserv!298
 2022-11-26 15:22:54 +00:00
Zhiyuan Wan
3bc39e40c0 seccomp: allow essential syscalls on 32-bit platform. 
This fix ocserv auth issue on armv7 platform.
Not tested with other 32-bit platforms, be careful.

Solves issue #474

Signed-off-by: Zhiyuan Wan <h@iloli.bid>
 2022-11-24 15:18:10 +08:00
Nikos Mavrogiannopoulos
15fe120292 ocserv.8: Align example with the default ocserv configuration for certificates 
Relates: #468

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-10-23 20:29:44 +02:00
Nikos Mavrogiannopoulos
a299300e67 seccomp: allow setitimer 
This enables ocserv on musl/alpine.

Resolves #455

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-10-09 20:12:13 +02:00
Dimitri Papadopoulos
d034f0d95a Fix codespell false positive 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2022-10-09 20:11:29 +02:00
Feng Xie
f1afd357e4 Merge branch 'taramallesh-master-patch-65583' into 'master' 
Allow HTTP headers to be  configurable

See merge request openconnect/ocserv!293
 2022-07-02 04:02:57 +00:00
Tara Mallesh
cfe2ea06d9 Allow HTTP headers to be configurable 2022-07-02 04:02:56 +00:00
Nikos Mavrogiannopoulos
413edf38bf Makefile.am: LICENSE -> COPYING 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-06-02 08:51:20 +02:00
Nikos Mavrogiannopoulos
95b521d58e Added detailed licensing information in README.md 
This keeps COPYING as the main licensing file.

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-06-01 16:00:39 +02:00
Nikos Mavrogiannopoulos
1c17846ea5 Merge branch 'tun-iteration-fix-issue-443' into 'master' 
Base /dev/tunN iteration on max-clients

Closes #443

See merge request openconnect/ocserv!291
 2022-03-17 07:44:26 +00:00
Marc West
e0a2fa4c3c Base /dev/tunN iteration on max-clients for OSes that do not have the /dev/tun special control device 2022-03-16 22:47:29 +00:00
Nikos Mavrogiannopoulos
7114104b8c Merge branch 'taramallesh-master-patch-01031' into 'master' 
Add Pragma and Cache-control HTTP headers.

See merge request openconnect/ocserv!290
 2022-03-15 08:36:22 +00:00
Tara Mallesh
73307e2dac Update worker-http.c 2022-03-14 05:25:11 +00:00
Tara Mallesh
058c63303f Update test-owasp-headers with Pragma and Cache-control checks 2022-03-09 17:48:51 +00:00
Tara Mallesh
c60c7cad98 Fix typo to remove extra closing bracket 2022-03-07 21:16:11 +00:00
Tara Mallesh
49a03419e8 Add Pragma and Cache-control HTTP headers. 2022-03-07 19:57:46 +00:00
Nikos Mavrogiannopoulos
a1bd01169f Merge branch 'groovyfengx-master-patch-69245' into 'master' 
Fixing memory leak in OpenID Connect auth module

See merge request openconnect/ocserv!289
 2022-03-02 08:48:55 +00:00
Feng Xie
030163fbbe Fixing memory leak in OpenConnect auth module 2022-03-01 22:28:47 +00:00
Nikos Mavrogiannopoulos
3d19078be6 Merge branch 'groovyfengx-master-patch-58049' into 'master' 
Fixing issue: Authentication requests from the same IP address are not load balanced among security modules

Closes #444

See merge request openconnect/ocserv!288
 2022-03-01 20:26:44 +00:00
Nikos Mavrogiannopoulos
43dbe741c7 Merge branch 'groovyfengx-master-patch-44853' into 'master' 
Fixing memory deallocation issue in auth

See merge request openconnect/ocserv!287
 2022-03-01 20:25:01 +00:00
Feng Xie
4ec99609ca Fixing issue: Authentication requests from the same IP address are not load balanced among security modules 2022-02-28 16:00:13 +00:00
Feng Xie
765472bd2c Fixing memory deallocation issue in auth. 2022-02-28 15:54:18 +00:00
Nikos Mavrogiannopoulos
8b00d198d9 released 1.1.6 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
1.1.6 		2022-02-17 09:21:36 +01:00
Nikos Mavrogiannopoulos
eb6d1c0aef sec-mod: increased max groups to 128 
Relates to #219

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-17 08:53:30 +01:00
Nikos Mavrogiannopoulos
1b826069eb str_rep_tab: added explicit initializer 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-15 10:34:18 +01:00
Nikos Mavrogiannopoulos
53b08d2433 forward_udp_to_owner: sanity check of session_id_size 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-15 10:33:45 +01:00
Nikos Mavrogiannopoulos
cdcc5eda4d doc update 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-11 11:41:58 +01:00
Nikos Mavrogiannopoulos
93e62b93ac Merge branch 'tmp-fix-f36-issues' into 'master' 
Updates to fix operation in fedora 36

See merge request openconnect/ocserv!285
 2022-02-10 15:28:23 +00:00
Nikos Mavrogiannopoulos
c1030512a7 load_keys: work around GnuTLS 3.7.3 regression 
GnuTLS 3.7.3 introduces a backwards incompatible change and
GNUTLS_E_PKCS11_PIN_ERROR is returned when an encrypted
file is loaded.

Reported at https://gitlab.com/gnutls/gnutls/-/issues/1321

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-10 16:05:35 +01:00
Nikos Mavrogiannopoulos
94af87c7a2 libtasn1: use NULL instead of ASN1_TYPE_EMPTY 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-10 15:31:39 +01:00
Nikos Mavrogiannopoulos
a2fbdabf5e seccomp: allow futex() 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-10 15:03:23 +01:00
Nikos Mavrogiannopoulos
ed4ec0a3cb NEWS: doc update 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2022-02-05 10:20:26 +01:00