GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,272 Commits 19 Branches 88 Tags
a988dc11dc0a68ae814524fc6c1067701f5da461
Commit Graph

1272 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
a988dc11dc updated libopts to 5.18.3 2014-07-29 22:19:29 +02:00
Nikos Mavrogiannopoulos
60dcb9d62f /profiles request allows partial match 2014-07-27 14:05:19 +02:00
Nikos Mavrogiannopoulos
40d499ac1a better error messages when certificate username limit is reached 2014-07-27 11:21:36 +02:00
Nikos Mavrogiannopoulos
f838584e0e bumped version ocserv_0_8_2 2014-07-26 11:07:00 +02:00
Nikos Mavrogiannopoulos
be326bd7ed doc update 2014-07-26 11:03:45 +02:00
Nikos Mavrogiannopoulos
6de26b9408 made macro usage safer 
That solves an issue where the pid_file would be overwritten on
a configuration file reload.
 2014-07-26 10:59:26 +02:00
Nikos Mavrogiannopoulos
bf39dc0398 updated todo list 2014-07-23 15:27:14 +02:00
Nikos Mavrogiannopoulos
6079cdb833 doc update 2014-06-28 22:59:29 +02:00
Nikos Mavrogiannopoulos
eb6e3fea81 doc update 2014-06-28 22:57:16 +02:00
Nikos Mavrogiannopoulos
def560ec75 doc: do not explicitly set serial number in generated certificate 
That would allow certtool to use a random one.
 2014-06-28 22:48:51 +02:00
Nikos Mavrogiannopoulos
ff0e39bae1 pam: deinitialize co-routine when session is open to save memory 2014-06-28 20:49:30 +02:00
Nikos Mavrogiannopoulos
bb4f2ae453 pam: reduced default stack size 2014-06-28 20:45:43 +02:00
Nikos Mavrogiannopoulos
f44e0d63bf released 0.8.1 ocserv_0_8_1 2014-06-28 13:24:41 +02:00
Nikos Mavrogiannopoulos
5aeab28cae initialize str to null 2014-06-27 09:08:31 +02:00
Nikos Mavrogiannopoulos
f541dc3633 fix typo 2014-06-26 13:50:07 +02:00
Nikos Mavrogiannopoulos
47918f97c6 doc update 2014-06-26 13:49:10 +02:00
Nikos Mavrogiannopoulos
53c7bbeb1d ocserv: corrected debug message 2014-06-26 13:47:54 +02:00
Nikos Mavrogiannopoulos
309ad41475 ocserv: print the correct message when only selecting a group. 2014-06-26 13:46:31 +02:00
Nikos Mavrogiannopoulos
3de707b0fe introduced str_append_printf() 2014-06-26 13:46:31 +02:00
Nikos Mavrogiannopoulos
5ef450086d tests: Increased the server start wait time 2014-06-26 13:46:31 +02:00
Nikos Mavrogiannopoulos
e5434ea89e tests: Added check for certificate-only client with groups 2014-06-26 13:46:31 +02:00
Nikos Mavrogiannopoulos
4fa0053d54 ocserv: prompt the user for group selection even if only certificate authentication is used. 2014-06-26 13:46:31 +02:00
Nikos Mavrogiannopoulos
caa98a05fd document how to convert key to pkcs12 file 2014-06-26 08:29:54 +02:00
Nikos Mavrogiannopoulos
29a0604eb0 doc update 2014-06-25 22:00:58 +02:00
Nikos Mavrogiannopoulos
3fac1c4e0c search for group_list in addition to group%5flist 
That allows to read the group from AnyConnect clients.
 2014-06-25 21:58:00 +02:00
Nikos Mavrogiannopoulos
e48ad13e82 Set the applicable DNS and NBNS servers in complete_vpn_info(). 2014-06-25 10:11:00 +02:00
Nikos Mavrogiannopoulos
a144fde0e4 Eliminated the MAX_ROUTES requirement. 2014-06-25 10:05:34 +02:00
Nikos Mavrogiannopoulos
3e3e05f30a doc update 2014-06-25 10:04:10 +02:00
Nikos Mavrogiannopoulos
4a0b16fb98 Forward the appropriate DNS and NBNS values when using a per-user/group config. 2014-06-25 10:02:16 +02:00
Nikos Mavrogiannopoulos
6ebaac8839 tests: Added check for the basic commands of ocpasswd. 2014-06-24 14:00:40 +02:00
Nikos Mavrogiannopoulos
4117bf2661 Use a more terse, but with more dynamic information version string. 2014-06-23 21:09:43 +02:00
Nikos Mavrogiannopoulos
0629345022 Avoid using snprintf() and simply use strcpy(). 2014-06-23 17:30:15 +02:00
Nikos Mavrogiannopoulos
85288fd96f Ignore the return code of snprintf(); it is useless. 2014-06-23 17:26:01 +02:00
Nikos Mavrogiannopoulos
1d2f36f9bf When renegotiating, verify that any certificate received from the client contains the same username. 2014-06-13 15:08:40 +02:00
Nikos Mavrogiannopoulos
18cef50ebe doc update 2014-06-12 15:36:39 +02:00
Nikos Mavrogiannopoulos
70623591d5 Seccomp is now compiled in by default, and can be enabled at run-time. 2014-06-12 15:35:45 +02:00
Nikos Mavrogiannopoulos
ae3b9e5111 doc update 2014-06-12 10:20:10 +02:00
Hexchain Tong
41ff067641 Fix array subscription in unescape_url 
Passwords with url escaped characters were parsed incorrectly. The
variable used for iterating over `url` should be `i`, not `pos`. This
patch fixes the problem.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2014-06-12 10:19:03 +02:00
Nikos Mavrogiannopoulos
11bc2819da doc update 2014-06-12 10:19:03 +02:00
Nikos Mavrogiannopoulos
4a91581d92 doc update 2014-06-10 20:49:34 +02:00
Nikos Mavrogiannopoulos
23f6e8e187 removed debugging message 2014-06-10 15:58:53 +02:00
Nikos Mavrogiannopoulos
c49128f1bb doc update 2014-06-10 15:50:55 +02:00
Nikos Mavrogiannopoulos
cfa74a4e29 Reload the configuration of the security module as well, on main process reload. 2014-06-10 15:47:58 +02:00
Nikos Mavrogiannopoulos
9e4be33533 Added sequence diagram describing the session control operation. 2014-06-10 15:39:10 +02:00
Nikos Mavrogiannopoulos
021febe5d8 doc update 2014-06-10 15:16:54 +02:00
Nikos Mavrogiannopoulos
28dca2aa0c Added support for session control (relevant for PAM for now) 
That in effect will utilize the pam_open_session() and pam_close_session().
It is disabled by default as it requires more resources from the security module.
 2014-06-10 15:16:40 +02:00
Nikos Mavrogiannopoulos
01db3e5817 Include the SID into the cookie and store it in proc_st. 2014-06-10 10:41:10 +02:00
Nikos Mavrogiannopoulos
089463840e doc update 2014-06-10 10:09:48 +02:00
Nikos Mavrogiannopoulos
0a0b51ab37 Added work-around for openconnect v3.20 
That version of openconnect requires some strict format on the
XML messages. Thus we send it, what it expects.
 2014-06-10 10:08:46 +02:00
Nikos Mavrogiannopoulos
46f9327684 removed unused protobuf variable 2014-06-09 16:55:49 +02:00