GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 08:46:58 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,118 Commits 19 Branches 88 Tags
0.12.6
Commit Graph

241 Commits

Author SHA1 Message Date
Nikos Mavrogiannopoulos
1d7a7088bf released 0.12.6 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2019-12-28 20:19:44 +01:00
Nikos Mavrogiannopoulos
c9e907c841 tests: replaced docker-based kerberos test case with one that runs in CI 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2019-11-17 14:51:21 +01:00
Nikos Mavrogiannopoulos
962de41fba released 0.12.5 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2019-10-16 21:32:24 +02:00
Nikos Mavrogiannopoulos
960032e065 occtl: use maxminddb when available 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2019-10-15 12:11:17 +02:00
Nikos Mavrogiannopoulos
4da4ade2a3 bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2019-07-01 21:55:32 +02:00
Nikos Mavrogiannopoulos
03cd4a198c released 0.12.3 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2019-03-12 21:14:24 +01:00
Nikos Mavrogiannopoulos
579cfc0ead Added support for AES-256-CBC 
This enables support for AES-256 for anyconnect clients which
do not support AES-GCM. Also prioritized the 256-bit ciphers
higher than the 128-bit ones.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-07-20 21:58:49 +02:00
Nikos Mavrogiannopoulos
c1aee4fe9a configure: bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-05-12 05:20:02 +00:00
Nikos Mavrogiannopoulos
ece70b0d6c configure: always work-around brokenness of gnutls_certificate_set_key 
That is, instead of requiring the user to explicitly pass --with-broken-gnutls
warn at the end of the configure script.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-05-12 05:20:02 +00:00
Nikos Mavrogiannopoulos
094145bf54 configure: refuse to compile with known dependency issues 
In particular require gnutls 3.5.5 which fixes cleanups in
gnutls_certificate_set_key(), or a recent version of
the 3.3.x branch. When forced to use a broken version work-around
issues (at the cost of a memory leak).

Resolves #152

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-05-04 23:21:37 +02:00
Nikos Mavrogiannopoulos
9ecafa9d73 configure: do not warn on string truncation 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-04-14 14:23:21 +02:00
Nikos Mavrogiannopoulos
9cdd2be7f0 include crypt.h to use crypt() 
This is necessary in Fedora28 as it doesn't provide
crypt() prototype in unistd.h

https://bugzilla.redhat.com/show_bug.cgi?id=1566464

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2018-04-12 14:59:05 +02:00
Nikos Mavrogiannopoulos
265e30dab7 tests: full-test was moved into traffic test 
The new traffic test only requires namespaces and no docker.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-04-05 20:06:27 +02:00
Nikos Mavrogiannopoulos
d8731fbb99 configure: warn when no worker isolation is available 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-03-21 12:52:04 +01:00
Nikos Mavrogiannopoulos
dfab7f6e30 Create coverage report and depend on pre-built CI images 
It will be made available at:
https://ocserv.gitlab.io/ocserv/coverage/

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-03-12 21:54:44 +01:00
Nikos Mavrogiannopoulos
5d0205332d tests: introduced test program to check basic vhost functionality 
This checks whether connecting to different virtual hosts
with different authentication methods works.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-03-06 20:42:33 +01:00
Nikos Mavrogiannopoulos
66f9f97d1d test: replaced docker otp-test with cwrap test-otp 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-02-25 16:00:09 +01:00
Nikos Mavrogiannopoulos
e61029445c gnutls: increased dependency to 3.3.0 
That way PKCS#11 reinitialization and global initialization are
implicit.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-02-11 12:02:30 +01:00
Nikos Mavrogiannopoulos
e6c4d5e492 bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:11:57 +01:00
Nikos Mavrogiannopoulos
760199a33c doc: man-pages are modified to be generated using ronn 
That eliminates the need for autogen and also combines
doc/sample.config and manpage contents. Now the doc/sample.config
is the primary config documentation location.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:07:18 +01:00
Nikos Mavrogiannopoulos
1b8079a11a Replaced the configuration parser with inih parser 
That eliminates the dependency on libopts as well as autogen.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:07:18 +01:00
Nikos Mavrogiannopoulos
533677bd73 ocserv: use getopt for command line parsing 
The complexity of its command line options didn't require
the use of libopts, and by eliminating that dependency for cmd
parsing, we can chose another parser for config file parsing.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:07:18 +01:00
Nikos Mavrogiannopoulos
6b7d09485e ocpasswd: removed dependency on autogen 
The complexity of its command line options didn't require
the linking to yet another library.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:07:18 +01:00
Nikos Mavrogiannopoulos
cbac133b07 .gitlab-ci.yml: added a -Werror build under F27 
That helps catch any potential issues early.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-23 21:07:18 +01:00
Nikos Mavrogiannopoulos
924ebdf143 configure: use the -Wextra gcc flag for warnings 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2018-01-12 13:43:58 +01:00
Nikos Mavrogiannopoulos
f6a6f0bc34 bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2018-01-07 16:34:37 +01:00
Nikos Mavrogiannopoulos
7937fe2533 bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2017-10-09 21:45:43 +02:00
Nikos Mavrogiannopoulos
b5d77da7f4 Separate root from docker tests 
This allows running the root tests under CI, even if the
docker tests (which cannot be run) are not.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2017-09-09 11:27:35 +02:00
Nikos Mavrogiannopoulos
7fcb1d835d configure.ac: also check /lib/security for PAMDIR 
This is the path used in Debian.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2017-09-09 10:51:47 +02:00
Nikos Mavrogiannopoulos
077e16e36d tests: check server functionality with Ed25519/RSA-PSS certs 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2017-08-23 12:00:15 +02:00
Nikos Mavrogiannopoulos
f0969ffd3f configure: allow disabling libgeoip detection 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2017-05-03 00:12:26 +02:00
Nikos Mavrogiannopoulos
1c236a8abb occtl: print peer location on show user info 
That utilizes libgeoip.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
 2017-05-02 13:45:38 +02:00
Nikos Mavrogiannopoulos
1627f09cc9 configure: bumped version 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
 2017-04-25 19:01:32 +02:00
Nikos Mavrogiannopoulos
d23215b584 bumped version 2017-02-12 10:19:02 +01:00
Mike Miller
888cbeabc7 configure: preserve LIBS from calling environment 
Use the existing oldlibs temporary variable that was used but never
populated.

Signed-off-by: Mike Miller <mtmiller@debian.org>
 2016-12-22 18:48:23 -08:00
Mike Miller
e3ccd247a0 configure: discover pam_wrapper directory from pkg-config 
Signed-off-by: Mike Miller <mtmiller@debian.org>
 2016-12-14 09:04:04 +01:00
Nikos Mavrogiannopoulos
2c64c99baa Reverted recursive make in src/ 
This simplifies the make process and allows for greater parallelism
during build.
 2016-12-13 15:37:07 +01:00
Nikos Mavrogiannopoulos
1b7e00ed02 Use unique names for autogen files 
This addresses issue in parallel builds caused by autogen
using the same temporary files for both occtl and ocpasswd
files.

Resolves #76
 2016-12-13 09:39:51 +01:00
Nikos Mavrogiannopoulos
e42c5ed7e7 autogen: store and use auto-generated autogen .in files in git builds 
This simplifies the generation of the files (delegated to configure),
and allows systems without autogen to be used to compile git sources.
 2016-11-17 08:28:11 +01:00
Nikos Mavrogiannopoulos
943e2fb597 bumped version 2016-11-14 19:16:50 +01:00
Nikos Mavrogiannopoulos
813a3a2451 configure: require automake 1.11.1 
This allows ocserv to compile on Centos 6.
 2016-11-11 17:53:21 +01:00
Nikos Mavrogiannopoulos
17122fe364 bumped version 2016-09-22 17:55:59 +02:00
Nikos Mavrogiannopoulos
a1889e100d Allow disabling the tests requiring root 
This allows seamless operation on the CI.
 2016-09-04 15:29:39 +02:00
Nikos Mavrogiannopoulos
c2ae0f6cc2 bumped version 2016-08-04 08:11:22 +02:00
Nikos Mavrogiannopoulos
0d1358edf2 configure: enable pam tests only when liboath is present and PAM compiled in 2016-06-29 09:49:24 +02:00
Nikos Mavrogiannopoulos
ae3c20c3ed tests: pam tests were converted to use pam-wrapper 
This allows running the PAM tests without requiring root access
 2016-06-25 23:05:18 +02:00
Nikos Mavrogiannopoulos
63e4500f09 bumped version 2016-05-29 11:57:33 +02:00
Nikos Mavrogiannopoulos
c7200bb3cf configure.ac: reduced libtasn1 dependency to 3.4 
This allows building in travis systems.
 2016-05-29 11:46:02 +02:00
Nikos Mavrogiannopoulos
795730a681 configure: Add a code coverage option 
Configure with:
  ./configure --enable-code-coverage
Show coverage output with:
  make && make check && make code-coverage-capture

It does not take into account tests run under docker.
 2016-04-16 12:39:18 +02:00
Nikos Mavrogiannopoulos
3b844bf3f0 bumped version 2016-04-16 08:56:23 +02:00