GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
183 Commits 19 Branches 88 Tags
a98e48b9b71272b451df4991ebaa11459c70ac7b
Commit Graph

183 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
a98e48b9b7 when receive a new UDP session, forward the fd and replace the old. 2013-02-19 19:12:05 +01:00
Nikos Mavrogiannopoulos
e5198dd40f simplified TLS file load and reload. 2013-02-19 07:42:42 +01:00
Nikos Mavrogiannopoulos
214bec96f0 Load PINs early. 2013-02-19 07:35:11 +01:00
Nikos Mavrogiannopoulos
628877881d Added configuration options for PIN files. 2013-02-18 23:47:20 +01:00
Nikos Mavrogiannopoulos
6ddb1ff631 print debugging information on the received HTTP headers 2013-02-17 22:02:25 +01:00
Nikos Mavrogiannopoulos
f1d769d5be doc update 2013-02-16 18:46:25 +01:00
Nikos Mavrogiannopoulos
ba80139452 mtu discovery via DPD is optional 2013-02-16 16:46:37 +01:00
Nikos Mavrogiannopoulos
2b1626f494 Added version.def.in 2013-02-16 16:40:41 +01:00
Nikos Mavrogiannopoulos
04bebb32f2 doc update 2013-02-16 16:33:43 +01:00
Nikos Mavrogiannopoulos
a7f14b7e68 updated bug report address 2013-02-15 23:01:39 +01:00
Nikos Mavrogiannopoulos
4ab7238051 doc update 2013-02-15 23:00:03 +01:00
Nikos Mavrogiannopoulos
0ff3f6de3c when restoring a cookie connection, extend the lifetime of the cookie. 2013-02-15 22:45:41 +01:00
Nikos Mavrogiannopoulos
59026fb8f1 Added some kind of path MTU discovery using DPD. 2013-02-15 22:23:35 +01:00
Nikos Mavrogiannopoulos
94304a2ff4 simplified messages 2013-02-15 22:03:57 +01:00
Nikos Mavrogiannopoulos
56cfac6887 updated 2013-02-14 09:08:35 +01:00
Nikos Mavrogiannopoulos
8519cfc234 better log messages 2013-02-14 08:16:46 +01:00
Nikos Mavrogiannopoulos
334338c73b Enable maintainance when maximum TLS sessions have been reached. Set more sane defaults for max sessions. 2013-02-14 08:11:16 +01:00
Nikos Mavrogiannopoulos
6b70200777 When the cookie DB is full enforce maintainance. 2013-02-14 08:04:48 +01:00
Nikos Mavrogiannopoulos
85a5db0604 updated 2013-02-13 22:40:27 +01:00
Nikos Mavrogiannopoulos
8caff361c9 simplified (and corrected) TUN device creation and re-use 2013-02-13 21:33:17 +01:00
Nikos Mavrogiannopoulos
2262d1c34a postpone usage of cork and uncork 2013-02-13 21:10:25 +01:00
Nikos Mavrogiannopoulos
56d1847e29 corrected typo 2013-02-13 21:07:53 +01:00
Nikos Mavrogiannopoulos
c60be929e0 simplified main loop 2013-02-13 18:04:33 +01:00
Nikos Mavrogiannopoulos
bbd9a588db reduced the default hash table size. 2013-02-13 17:58:52 +01:00
Nikos Mavrogiannopoulos
7ba28c0131 Added missing ioctl(). 2013-02-12 21:19:58 +01:00
Nikos Mavrogiannopoulos
e49fbbe547 Allow NULL PAM auth token. This would allow to have password authentication on certain users that have a certificate. 2013-02-12 21:12:35 +01:00
Nikos Mavrogiannopoulos
0e31edee4a Added example scripts and updated documentation. 2013-02-12 19:19:02 +01:00
Nikos Mavrogiannopoulos
35ce549e9e Added missing files 2013-02-12 18:57:06 +01:00
Nikos Mavrogiannopoulos
64a91f2b44 Simplify script calling by using the environment 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
2f1cdb5800 quit if no TCP port is available. 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
7270341e62 write the correct PID in pid file 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
e8f6332f36 Use PAM account management and added support for user groups. 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
121b2491aa HUP signal reloads configuration 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
8da6d44d8f Updated documentation 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
718d07208c use common function to exit 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
fba6115923 small updates 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
8cba144e77 Added support for seccomp (untested) 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
356da3fbe4 connect occurs before sending the fd to worker. 2013-02-12 18:57:05 +01:00
Nikos Mavrogiannopoulos
217a5e48e2 set time to entry only when writing the WTMP file 2013-02-12 09:35:01 +01:00
Nikos Mavrogiannopoulos
9bf5d7100f corrected definition 2013-02-11 20:41:33 +01:00
Nikos Mavrogiannopoulos
2e20c3f444 DTLS-Rekey time is set to be the 2/3 of cookie validity 2013-02-11 20:39:13 +01:00
Nikos Mavrogiannopoulos
4060c80469 fork moved to gdbm backend expiration 2013-02-10 13:50:56 +01:00
Nikos Mavrogiannopoulos
528f1e0ce8 more files to ignore 2013-02-10 13:41:29 +01:00
Nikos Mavrogiannopoulos
f3b085df61 added missing file 2013-02-10 13:41:00 +01:00
Nikos Mavrogiannopoulos
f8713edc3f better set socket options 2013-02-10 13:40:37 +01:00
Nikos Mavrogiannopoulos
db9f441e6e Write wtmp file if possible. 2013-02-10 13:35:50 +01:00
Nikos Mavrogiannopoulos
3784aa6ddc increased cookie hash table size and better cleanup resources on errors 2013-02-10 10:04:42 +01:00
Nikos Mavrogiannopoulos
985da9e264 erase cookie data before forking to unprivileged process. 2013-02-09 21:28:30 +01:00
Nikos Mavrogiannopoulos
478c6ca2ce when expiring stuff, do it on the main process unless we use gdbm. 2013-02-09 21:15:24 +01:00
Nikos Mavrogiannopoulos
184b8d7a66 enforce maximum number of same clients 2013-02-09 20:23:46 +01:00