GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,134 Commits 19 Branches 88 Tags
f7c9379971195dce549cf14bcab3830aeb2ddb32
Commit Graph

2134 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
f7c9379971 tests: added check for proxy protocol 2015-07-15 13:05:48 +02:00
Nikos Mavrogiannopoulos
17e71dccd8 Added support for proxy protocol (v2) 2015-07-15 13:03:58 +02:00
Nikos Mavrogiannopoulos
7992d58fc7 doc update 2015-07-10 10:59:08 +02:00
Nikos Mavrogiannopoulos
8b4bc75b3f tests: fixed unreliable password entry in PAM test 2015-07-10 10:54:03 +02:00
Nikos Mavrogiannopoulos
48dc6c8ca1 radius: set the NAS_PORT via the rc_aaa() API 
This avoids a duplicate NAS-Port entry with the
freeradius-client library.
 2015-07-10 10:40:08 +02:00
Nikos Mavrogiannopoulos
c342fc6f09 tests: increased waiting time in radius tests to account for time fuzz 2015-07-10 10:07:52 +02:00
Nikos Mavrogiannopoulos
5d19fde60e tests: fixed unreliable password entry in radius tests 2015-07-10 10:07:50 +02:00
Nikos Mavrogiannopoulos
68f00582dd Apply a fuzzying factor rekey_time and stats_report_time 
That factor would prevent the case of all worker processes
contacting main or sec-mod at exactly the same time.
 2015-07-10 10:07:46 +02:00
Nikos Mavrogiannopoulos
c36d2acb79 removed duplicate header entry 2015-07-08 13:26:33 +02:00
Nikos Mavrogiannopoulos
747346c7e6 avoid including linux/in6.h, it causes issues in several systems 2015-07-08 13:14:23 +02:00
Nikos Mavrogiannopoulos
63fa6baa85 doc update 2015-07-03 16:52:35 +02:00
Nikos Mavrogiannopoulos
04f3923ca2 occtl: fix json output in show status 2015-07-03 16:22:10 +02:00
Nikos Mavrogiannopoulos
49de6d0586 occtl: added option --no-pager 2015-07-03 15:36:38 +02:00
Nikos Mavrogiannopoulos
7b87fa4459 occtl: document -j in manpage 2015-07-03 15:31:41 +02:00
Nikos Mavrogiannopoulos
6e77f14bad corrected JSON array output 2015-07-03 14:24:14 +02:00
Nikos Mavrogiannopoulos
f895ff54fd Only include grouplist functions when they are needed ocserv_0_10_6 2015-07-01 20:59:54 +02:00
Nikos Mavrogiannopoulos
2911ad5047 released 0.10.6 2015-07-01 20:51:19 +02:00
Nikos Mavrogiannopoulos
62050bec87 occtl: corrected bug in json checks 2015-07-01 11:42:51 +02:00
Nikos Mavrogiannopoulos
800021234c don't set the wr_set in select (previously it was only ignored in pselect) 2015-06-29 15:59:41 +02:00
Nikos Mavrogiannopoulos
1d3bf55609 bumped version 2015-06-29 15:55:34 +02:00
Nikos Mavrogiannopoulos
3f48b31a9e use quotes in all examples to avoid issues in modifications 2015-06-29 15:33:16 +02:00
Nikos Mavrogiannopoulos
b2ca1cd069 tests: verify that groupname is read correctly when in kerberos auth 2015-06-29 14:52:08 +02:00
Nikos Mavrogiannopoulos
7716f725ff doc update 2015-06-25 14:32:01 +02:00
Nikos Mavrogiannopoulos
e007a20e42 tests: check the ability to load encrypted key files 2015-06-25 14:31:56 +02:00
Nikos Mavrogiannopoulos
8b186fb53a Allow specifying a PIN and SRK PIN in the config file 
That pin will be used to decrypt encrypted key files as well.
 2015-06-25 14:12:57 +02:00
Nikos Mavrogiannopoulos
fc5ce78ed2 tests: kkdcp-parsing: fixed header include 2015-06-25 13:41:44 +02:00
Nikos Mavrogiannopoulos
9d621d2b5d certificates and keys were moved to permanent configuration 2015-06-25 13:38:59 +02:00
Nikos Mavrogiannopoulos
696b64dd98 worker: provide log messages in more failure paths 2015-06-23 09:59:01 +02:00
Nikos Mavrogiannopoulos
38b771cf08 require radcli 1.2.1 2015-06-17 10:44:35 +02:00
Nikos Mavrogiannopoulos
dc118a8d4c doc update 2015-06-17 09:56:58 +02:00
Nikos Mavrogiannopoulos
321bb72ede combined cfg.h and common-config.h 2015-06-17 09:56:50 +02:00
Nikos Mavrogiannopoulos
59e0d574fc improved variable name 2015-06-17 09:54:00 +02:00
Nikos Mavrogiannopoulos
a5b2175219 Lifted the limit by MAX_CONFIG_ENTRIES 
Now entries in the configuration file are limited by available
memory.
 2015-06-17 09:52:02 +02:00
Nikos Mavrogiannopoulos
042a0729f3 gssapi: allow auto-select-group option to work 2015-06-11 15:54:10 +02:00
Nikos Mavrogiannopoulos
005d3f4376 gssapi: allow group setting using getpwnam 2015-06-11 15:40:42 +02:00
Nikos Mavrogiannopoulos
d1a209c369 radius: add PW_ACCT_INTERIM_INTERVAL when compiling against old implementations 2015-06-09 09:24:12 +02:00
Nikos Mavrogiannopoulos
e143f2ad6e tests: radius: expose the radius ports 2015-06-09 09:21:44 +02:00
Nikos Mavrogiannopoulos
08f0dcd66a doc update 2015-06-09 09:21:44 +02:00
Nikos Mavrogiannopoulos
745b7984ea doc update 2015-06-08 20:49:06 +02:00
Nikos Mavrogiannopoulos
dac92f89df doc update 2015-06-08 20:32:52 +02:00
Nikos Mavrogiannopoulos
808832d40e radius: updated radcli header 2015-06-08 20:32:52 +02:00
Nikos Mavrogiannopoulos
ac3945268a define perm_cfg_st as struct in cfg.h to reduce warnings 2015-06-08 09:22:41 +02:00
Nikos Mavrogiannopoulos
29acc1f524 when using a UNIX socket get our IP from the UDP socket 
That is only for DTLS clients, and for the IP the worker advertizes
to the security module.
 2015-06-08 09:18:21 +02:00
Nikos Mavrogiannopoulos
21f08be56a improved error messages when radius packet forming fails 2015-06-06 08:37:29 +02:00
Nikos Mavrogiannopoulos
3e6b8fadb3 updated radcli URLs 2015-06-05 23:57:03 +02:00
Nikos Mavrogiannopoulos
2bce9455a0 use radcli as the radius library if found 2015-06-05 22:36:02 +02:00
Nikos Mavrogiannopoulos
16ea4a059f When we receive a data packet in the CSTP channel switch communication to it 
That will reduce delay time if the DTLS channel is unresponsive and our
peer switched to CSTP already. That switch will be undone if our peer
switches back and starts sending DTLS.
 2015-06-05 14:56:23 +02:00
Nikos Mavrogiannopoulos
d5c9fe7b02 added NAS-Identifier into dictionary 2015-06-03 19:52:33 +02:00
Nikos Mavrogiannopoulos
efbf779810 tests: use non-common IPs in full-test 2015-05-29 14:01:32 +02:00
Nikos Mavrogiannopoulos
5178913909 tests: added unit test for JSON escaping 2015-05-29 09:53:25 +02:00