GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,013 Commits 19 Branches 88 Tags
e50051b435ca54e6d7eac558e37b814d17fcb97e
Commit Graph

1013 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
e50051b435 When a disconnect script is set, the main process will close the tun device on client exit. 
That allows the disconnect script to gather statistics from the client session.
 2014-04-12 12:37:47 +02:00
Nikos Mavrogiannopoulos
491b3c9c7e doc update 2014-04-12 08:51:40 +02:00
Nikos Mavrogiannopoulos
c1c9680efb document new behavior in calling disconnect script. 2014-04-12 08:50:28 +02:00
Nikos Mavrogiannopoulos
1185cb07ee Execute disconnect script for user that their IP was hijacked by a cookie reconnection 
This will prevent having the script be called to initiate connections
that are never disconnected. This patch also introduces IPV6_LOCAL and
IPV6_REMOTE script environment variables that allow passing both addresses
in case both IPv4 and IPv6 are assigned.
 2014-04-12 08:43:10 +02:00
Nikos Mavrogiannopoulos
3137c507e2 doc update 2014-04-08 22:02:12 +02:00
Nikos Mavrogiannopoulos
25137299c7 released 0.3.3 ocserv_0_3_3 2014-04-08 21:27:42 +02:00
Nikos Mavrogiannopoulos
ee12a7509d renamed function for consistency 2014-04-06 10:02:16 +02:00
Nikos Mavrogiannopoulos
bd9aaa1228 Revert "Try to read more than a single packet from the TUN device." 
This reverts commit 019126abfd.
 2014-04-06 09:08:44 +02:00
Nikos Mavrogiannopoulos
7d07ccb1e4 Revert "corrected DTLS data sending." 
This reverts commit 374f8d52a9.
 2014-04-06 09:08:37 +02:00
Nikos Mavrogiannopoulos
374f8d52a9 corrected DTLS data sending. 2014-04-05 19:57:53 +02:00
Nikos Mavrogiannopoulos
f9968decf9 Revert "check sockets for writability and use that information to discard packets rather than block." 
This reverts commit 449302afe2.
 2014-04-04 09:23:54 +02:00
Nikos Mavrogiannopoulos
019126abfd Try to read more than a single packet from the TUN device. 2014-04-03 13:54:56 +02:00
Nikos Mavrogiannopoulos
449302afe2 check sockets for writability and use that information to discard packets rather than block. 2014-04-03 13:32:08 +02:00
Nikos Mavrogiannopoulos
0d1eef4fa5 refactored worker main loop 2014-04-03 11:42:18 +02:00
Nikos Mavrogiannopoulos
9b36471d22 corrected name of crl template 2014-04-03 10:32:36 +02:00
Nikos Mavrogiannopoulos
78c0200a69 updated comments 2014-04-02 20:54:23 +02:00
Nikos Mavrogiannopoulos
f79fa04a83 doc update 2014-04-02 13:16:10 +02:00
Nikos Mavrogiannopoulos
a64edf9c6d better message 2014-04-02 13:12:50 +02:00
Nikos Mavrogiannopoulos
d5597c71c6 doc update 2014-04-02 12:57:43 +02:00
Nikos Mavrogiannopoulos
c094a94d19 Added test for CRL file support. 2014-04-02 12:56:56 +02:00
Nikos Mavrogiannopoulos
d00319faf4 Updates in CRL handling. 
Ensure reload on SIGHUP, and do print an appropriate error
when an empty CRL file is encountered.
 2014-04-02 12:55:43 +02:00
Nikos Mavrogiannopoulos
7473731061 avoid a totally empty function body. 2014-04-02 11:01:44 +02:00
Nikos Mavrogiannopoulos
52d34b1d8d small code improvements 2014-04-02 10:14:15 +02:00
Nikos Mavrogiannopoulos
f65507ed66 properly copy the username from a certificate 2014-04-01 18:35:21 +02:00
Nikos Mavrogiannopoulos
a3ecb5b91f simplified and corrected test execution 2014-04-01 18:35:01 +02:00
Nikos Mavrogiannopoulos
cbb7bb28c9 Added check for connection with incorrect certificate 2014-04-01 11:57:30 +02:00
Nikos Mavrogiannopoulos
bfe4d4e9dc explicitly specify GPLv2+ (or later) in LICENSE. 2014-04-01 11:47:58 +02:00
Nikos Mavrogiannopoulos
f58a194054 Added sys/wait.h for WEXITSTATUS 2014-03-31 16:58:30 +02:00
Nikos Mavrogiannopoulos
c84452fe8f Added limits.h for POSIX_PATH_MAX 2014-03-31 16:58:02 +02:00
Nikos Mavrogiannopoulos
317fe62a56 Added sys/uio.h 2014-03-31 16:57:24 +02:00
Nikos Mavrogiannopoulos
a5f2bb1705 Added LIBGNUTLS_CFLAGS to ocserv's CFLAGS 2014-03-31 16:26:23 +02:00
Nikos Mavrogiannopoulos
7549548874 doc update 2014-03-31 16:06:23 +02:00
Nikos Mavrogiannopoulos
f65e771e54 more verbose log message 2014-03-31 16:01:37 +02:00
Nikos Mavrogiannopoulos
4aa423f936 notify the peer when disabling the DTLS channel with a close alert. 2014-03-30 17:15:08 +02:00
Nikos Mavrogiannopoulos
df6653229a more cleanups in MTU calculation 2014-03-30 17:10:30 +02:00
Nikos Mavrogiannopoulos
a4d85dee43 removed cast as it is not available on every readline version. 2014-03-30 14:59:30 +02:00
Nikos Mavrogiannopoulos
987284a947 doc update 2014-03-27 14:06:02 +01:00
Nikos Mavrogiannopoulos
1b711a1f7c Use the Base-MTU for MTU calculations. 2014-03-27 14:04:58 +01:00
Nikos Mavrogiannopoulos
1278074b0c removed unused functions 2014-03-25 14:43:57 +01:00
Nikos Mavrogiannopoulos
188b30e264 doc update 2014-03-25 14:40:39 +01:00
Nikos Mavrogiannopoulos
0b9c6ff633 Added diagram with authentication state machine. 2014-03-25 13:49:11 +01:00
Nikos Mavrogiannopoulos
35c46d05c5 Do not set the output-buffer in the default configuration. 2014-03-25 11:25:42 +01:00
Nikos Mavrogiannopoulos
1900a23e97 updated comment 2014-03-24 16:03:54 +01:00
Nikos Mavrogiannopoulos
214ae42cd3 The IP don't fragment bit is only set if try-mtu-discovery is true. 2014-03-24 13:22:22 +01:00
Nikos Mavrogiannopoulos
dd11a06951 better naming of variables. 2014-03-23 18:26:23 +01:00
Nikos Mavrogiannopoulos
4c4650ea17 dropped support for Salsa20 and UMAC. 
They are not supported by openconnect and the latest IETF
drafts use Chacha20 with poly1305.
 2014-03-20 22:54:58 +01:00
Nikos Mavrogiannopoulos
1879207f37 No longer send IPv6 information to CISCO clients that may not be able to handle it. 
Now IPv6 information is only forwarded if the client is openconnect, or if
the client is unknown and has advertised full IPv6 support.
 2014-03-20 22:51:30 +01:00
Nikos Mavrogiannopoulos
6eccb69c23 doc update 2014-03-20 22:35:05 +01:00
Nikos Mavrogiannopoulos
9ff9105df7 doc update 2014-03-20 22:26:45 +01:00
Nikos Mavrogiannopoulos
cb11549e44 doc update 2014-03-20 14:56:33 +01:00