GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,111 Commits 19 Branches 88 Tags
e007a20e423fdb93026e84c42fba041d4ae5ed55
Commit Graph

2111 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
e007a20e42 tests: check the ability to load encrypted key files 2015-06-25 14:31:56 +02:00
Nikos Mavrogiannopoulos
8b186fb53a Allow specifying a PIN and SRK PIN in the config file 
That pin will be used to decrypt encrypted key files as well.
 2015-06-25 14:12:57 +02:00
Nikos Mavrogiannopoulos
fc5ce78ed2 tests: kkdcp-parsing: fixed header include 2015-06-25 13:41:44 +02:00
Nikos Mavrogiannopoulos
9d621d2b5d certificates and keys were moved to permanent configuration 2015-06-25 13:38:59 +02:00
Nikos Mavrogiannopoulos
696b64dd98 worker: provide log messages in more failure paths 2015-06-23 09:59:01 +02:00
Nikos Mavrogiannopoulos
38b771cf08 require radcli 1.2.1 2015-06-17 10:44:35 +02:00
Nikos Mavrogiannopoulos
dc118a8d4c doc update 2015-06-17 09:56:58 +02:00
Nikos Mavrogiannopoulos
321bb72ede combined cfg.h and common-config.h 2015-06-17 09:56:50 +02:00
Nikos Mavrogiannopoulos
59e0d574fc improved variable name 2015-06-17 09:54:00 +02:00
Nikos Mavrogiannopoulos
a5b2175219 Lifted the limit by MAX_CONFIG_ENTRIES 
Now entries in the configuration file are limited by available
memory.
 2015-06-17 09:52:02 +02:00
Nikos Mavrogiannopoulos
042a0729f3 gssapi: allow auto-select-group option to work 2015-06-11 15:54:10 +02:00
Nikos Mavrogiannopoulos
005d3f4376 gssapi: allow group setting using getpwnam 2015-06-11 15:40:42 +02:00
Nikos Mavrogiannopoulos
d1a209c369 radius: add PW_ACCT_INTERIM_INTERVAL when compiling against old implementations 2015-06-09 09:24:12 +02:00
Nikos Mavrogiannopoulos
e143f2ad6e tests: radius: expose the radius ports 2015-06-09 09:21:44 +02:00
Nikos Mavrogiannopoulos
08f0dcd66a doc update 2015-06-09 09:21:44 +02:00
Nikos Mavrogiannopoulos
745b7984ea doc update 2015-06-08 20:49:06 +02:00
Nikos Mavrogiannopoulos
dac92f89df doc update 2015-06-08 20:32:52 +02:00
Nikos Mavrogiannopoulos
808832d40e radius: updated radcli header 2015-06-08 20:32:52 +02:00
Nikos Mavrogiannopoulos
ac3945268a define perm_cfg_st as struct in cfg.h to reduce warnings 2015-06-08 09:22:41 +02:00
Nikos Mavrogiannopoulos
29acc1f524 when using a UNIX socket get our IP from the UDP socket 
That is only for DTLS clients, and for the IP the worker advertizes
to the security module.
 2015-06-08 09:18:21 +02:00
Nikos Mavrogiannopoulos
21f08be56a improved error messages when radius packet forming fails 2015-06-06 08:37:29 +02:00
Nikos Mavrogiannopoulos
3e6b8fadb3 updated radcli URLs 2015-06-05 23:57:03 +02:00
Nikos Mavrogiannopoulos
2bce9455a0 use radcli as the radius library if found 2015-06-05 22:36:02 +02:00
Nikos Mavrogiannopoulos
16ea4a059f When we receive a data packet in the CSTP channel switch communication to it 
That will reduce delay time if the DTLS channel is unresponsive and our
peer switched to CSTP already. That switch will be undone if our peer
switches back and starts sending DTLS.
 2015-06-05 14:56:23 +02:00
Nikos Mavrogiannopoulos
d5c9fe7b02 added NAS-Identifier into dictionary 2015-06-03 19:52:33 +02:00
Nikos Mavrogiannopoulos
efbf779810 tests: use non-common IPs in full-test 2015-05-29 14:01:32 +02:00
Nikos Mavrogiannopoulos
5178913909 tests: added unit test for JSON escaping 2015-05-29 09:53:25 +02:00
Nikos Mavrogiannopoulos
54ad0a413c occtl: properly escape JSON strings 2015-05-29 09:52:54 +02:00
Nikos Mavrogiannopoulos
d59f5ad38c tests: use f22 for docker images 2015-05-28 15:59:55 +02:00
Nikos Mavrogiannopoulos
1e4463749a tests: added unit test with KKDCP server parsing 2015-05-28 15:53:53 +02:00
Nikos Mavrogiannopoulos
374ae17a4d split KKDCP config line parsing from config.c 2015-05-28 15:53:26 +02:00
Nikos Mavrogiannopoulos
70f9256d8c Allow IPv6 addresses in KKDCP 2015-05-28 14:37:33 +02:00
Nikos Mavrogiannopoulos
b63f0b4cce ping: check for ICMPv6 unreachable packets when in IPv6 2015-05-27 12:04:40 +02:00
Nikos Mavrogiannopoulos
a0c2ac4c3f ping: cleanup code 2015-05-27 11:06:07 +02:00
Nikos Mavrogiannopoulos
394933afb0 doc update 2015-05-26 16:19:56 +02:00
Nikos Mavrogiannopoulos
89500cb205 removed dbus option 2015-05-26 16:12:49 +02:00
Nikos Mavrogiannopoulos
1ca573ff16 occtl: added --json option 
This allows to parse the output data using automated tools.
 2015-05-26 16:09:25 +02:00
Nikos Mavrogiannopoulos
542b9b6f24 plain auth: use strsep() to allow an empty group string 2015-05-26 10:45:08 +02:00
Nikos Mavrogiannopoulos
647f36041a pcl: include headers for getpid and memcpy 2015-05-26 10:25:14 +02:00
Nikos Mavrogiannopoulos
26e2534404 use casts for systems where time_t is longer than 32-bits 
Suggested by Stuart Henderson.
 2015-05-26 10:24:16 +02:00
Nikos Mavrogiannopoulos
4703177c99 doc update 2015-05-25 19:04:16 +02:00
Nikos Mavrogiannopoulos
f7412a7fdd better text for group prompt 2015-05-25 13:11:30 +02:00
Nikos Mavrogiannopoulos
36bd7e10fd use IPV6_PATHMTU socket option instead of IPV6_MTU 
The former is portable and available on BSD systems.
 2015-05-24 17:04:49 +02:00
Nikos Mavrogiannopoulos
55eaf601b1 removed redundant line 2015-05-24 11:39:48 +02:00
Nikos Mavrogiannopoulos
00213a4e41 don't exit if isolated-workers isset ocserv_0_10_5 2015-05-24 11:14:59 +02:00
Nikos Mavrogiannopoulos
850cda3337 released 0.10.5 2015-05-24 10:58:37 +02:00
Nikos Mavrogiannopoulos
f954983f7a sample.config: bring in par with ocserv-args.def 2015-05-23 11:16:43 +02:00
Nikos Mavrogiannopoulos
9c0ebd3c81 document the fact that some clients fail if rekey is disabled 2015-05-23 11:15:07 +02:00
Nikos Mavrogiannopoulos
c89aec1b2a tests: separate the provided routes from the client's IP to avoid collisions 2015-05-22 17:03:01 +02:00
Nikos Mavrogiannopoulos
f7c9079e82 tests: use openconnect -b in full-test 2015-05-22 15:16:17 +02:00