clones/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2024-09-21 02:17:23 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,901 Commits 22 Branches 87 Tags 7.1 MiB
master
Commit Graph

3901 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
d6b18598cd NEWS: updated [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-09-08 10:49:12 +02:00
Nikos Mavrogiannopoulos
2788a53eb8 Merge branch 'master' into 'master' 
Update to increase pam stack size per https://gitlab.com/openconnect/ocserv/-/issues/619

Closes #619

See merge request openconnect/ocserv!435
 2024-09-08 08:46:18 +00:00
theevilapplepie
3606482486 Update to increase pam stack size per https://gitlab.com/openconnect/ocserv/-/issues/619 
Signed-off-by: James Vess <theevilapplepie@gmail.com>
 2024-09-05 22:51:17 -04:00
Nikos Mavrogiannopoulos
b69bef3c3b Merge branch 'tmp-build' into 'master' 
Update build dependencies

Closes #617

See merge request openconnect/ocserv!433
 2024-09-03 09:42:35 +00:00
Dimitri Papadopoulos
d72fd7ee58
Use apt-get instead of yum on Debian/Ubuntu 
Thank you @sergius_fidelis for reporting it.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-08-22 12:04:04 +03:00
Dimitri Papadopoulos
aca9b34285
Update build dependencies 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-08-22 12:03:50 +03:00
Dimitri Papadopoulos Orfanos
d0e8ff2f96 Merge branch 'tmp-remove' into 'master' 
Check return value of remove()

See merge request openconnect/ocserv!427
 2024-07-03 20:48:20 +00:00
Dimitri Papadopoulos Orfanos
18099f98a5 Merge branch 'strdup' into 'master' 
src/ocpasswd/ocpasswd.c: handle strdup errors

See merge request openconnect/ocserv!428
 2024-07-03 20:25:16 +00:00
Ilya Shipitsin
9536c53521 src/ocpasswd/ocpasswd.c: handle strup errors 
Signed-off-by: Ilya Shipitsin <chipitsine@gmail.com>
 2024-06-25 23:52:07 +02:00
Dimitri Papadopoulos
6746d1d6f4
Check return value of remove() 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-06-25 22:13:21 +02:00
Nikos Mavrogiannopoulos
344c717319 README-oidc.md: mention that only the microsoft client supports OIDC [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-06-03 21:11:07 +02:00
Nikos Mavrogiannopoulos
db053d084d .gitlab-ci.yml: use saas-linux-small-amd64 tag 
The linux and shared tags were deprecated:
https://docs.gitlab.com/ee/update/deprecations.html?removal_milestone=17.0#removal-of-tags-from-small-saas-runners-on-linux

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-05-10 20:32:23 +02:00
Nikos Mavrogiannopoulos
dd13e5db65 design.md: added basic mermaid diagram 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-05-09 17:33:08 +02:00
Nikos Mavrogiannopoulos
92dba6e4f5 released 1.3.0 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-05-05 21:08:20 +02:00
Nikos Mavrogiannopoulos
538be2b5ff NEWS: mentioned closed issue 
Resolves: #597

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-29 22:26:21 +02:00
Nikos Mavrogiannopoulos
fe144f86c4 Merge branch 'tmp-llhttp' into 'master' 
Switch from http-parser to llhttp

Closes #598

See merge request openconnect/ocserv!422
 2024-04-28 18:24:13 +00:00
Nikos Mavrogiannopoulos
cf56c9754b Switch from http-parser to llhttp 
http-parser is an unmaintained library that has been replaced by llhttp.

Resolves: #598

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-28 13:37:19 +02:00
Nikos Mavrogiannopoulos
db90324b08 tls_load_files: do not print informational messages on worker load 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-28 13:35:52 +02:00
Nikos Mavrogiannopoulos
57ff431c9e Merge branch 'tmp-silent-worker' into 'master' 
config: silence informational messages on worker reload

See merge request openconnect/ocserv!423
 2024-04-28 11:23:21 +00:00
Nikos Mavrogiannopoulos
71e4aba580 config: silence informational messages on worker reload 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-27 21:32:19 +02:00
Nikos Mavrogiannopoulos
8e523597f1 Merge branch 'tmp-config-url' into 'master' 
Allow selecting group by URL or profile

See merge request openconnect/ocserv!403
 2024-04-27 19:07:09 +00:00
Nikos Mavrogiannopoulos
48d7057fb3 config: auto-select-group made global not per vhost 
The group functionality is available globally only and
there is no benefit from this option being per vhost.

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-23 21:35:44 +02:00
Marcin Ochab
3f966ae8ca Allow selecting group by URL or profile 
This introduces the 'select-group-by-url' config option
that allows selecting an authgroup just by connecting to
a dedicated URI.

Signed-off-by: Marcin Ochab <marcin.ochab@gmail.com>
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-23 21:35:00 +02:00
Nikos Mavrogiannopoulos
72b8e19cac updated copyright notices and minor text update 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-04-01 12:19:46 +02:00
Dimitri Papadopoulos Orfanos
8cd5e12e81 Merge branch 'MAX_GROUPS' into 'master' 
Bump MAX_GROUPS to allow for more groups

See merge request openconnect/ocserv!415
 2024-03-26 20:16:21 +00:00
Dimitri Papadopoulos Orfanos
6728eb2436 Merge branch 'malloc.h' into 'master' 
Do not include <malloc.h> but for malloc_trim()

See merge request openconnect/ocserv!418
 2024-03-26 14:25:41 +00:00
Nikos Mavrogiannopoulos
332644b31e Merge branch 'master' into 'master' 
src/ocpasswd/ocpasswd.c: handle malloc errors

See merge request openconnect/ocserv!417
 2024-03-26 14:07:47 +00:00
Ilya Shipitsin
ee7bc8ae60 src/ocpasswd/ocpasswd.c: handle malloc errors 
Signed-off-by: Ilya Shipitsin <chipitsine@gmail.com>
 2024-03-22 14:53:36 +01:00
Dimitri Papadopoulos
20ed2bfc7a
Do not include <malloc.h> but for malloc_trim() 
Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-03-22 13:56:38 +01:00
Dimitri Papadopoulos
c734a9c929
Bump MAX_GROUPS to allow for more groups 
Especially Radius accounts might belong to a large number of groups.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-03-19 07:53:15 +01:00
Nikos Mavrogiannopoulos
44721552be README.md: updated URI [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-02-22 22:56:53 +01:00
Nikos Mavrogiannopoulos
1ea5385c2b Merge branch 'feature-expand_no-ipv6-ocv3_test' into 'master' 
Expand no-ipv6-ocv3 test

See merge request openconnect/ocserv!414
 2024-02-20 13:23:35 +00:00
Daniel Lenski
aa8ab8ed30 Expand no-ipv6-ocv3 test 
As added in c1a6f2b04a, this test verifies
that ocserv will NOT send IPv6 routes to OpenConnect v3 clients, which can't
handle them correctly.

Additionally, we can also verify that ocserv DOES send IPv6 routes to
totally unknown clients, which is the intended outcome resulting from
8b8a1a7b53.

Signed-off-by: Daniel Lenski <dlenski@amazon.com>
 2024-02-19 17:41:29 -08:00
Nikos Mavrogiannopoulos
444ae6022a bumped version [ci skip] 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-02-02 16:29:50 +01:00
Nikos Mavrogiannopoulos
fe05d2a630 Require ipcalc for the test suite 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-25 09:57:39 +01:00
Nikos Mavrogiannopoulos
2a17ffb874 release.sh: use package type for tarball 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-24 10:26:35 +01:00
Nikos Mavrogiannopoulos
b94591a168 release.sh: updated 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-22 23:22:58 +01:00
Nikos Mavrogiannopoulos
7ced730fb2 released 1.2.4 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-22 22:57:08 +01:00
Nikos Mavrogiannopoulos
ab02819cd8 release.sh: read .gitlab-token from home dir 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-22 16:11:40 +01:00
Nikos Mavrogiannopoulos
b569822267 Merge branch 'speed-limit' into 'master' 
Retrieve connection speed from RADIUS

Closes #554

See merge request openconnect/ocserv!390
 2024-01-22 15:10:09 +00:00
Dimitri Papadopoulos
ab58d9e9d7 Retrieve connection speed from RADIUS 
Hijack Roaring Penguin's RADIUS attributes for that purpose:
* RP-Upstream-Speed-Limit → rx_per_sec
* RP-Downstream-Speed-Limit → tx_per_sec

While the ocserv configuration options use b/s, ocserv uses kb/s
internally. The radius attributes are already expressed in kb/s,
so we don't need to convert them.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-01-20 20:12:34 +01:00
Nikos Mavrogiannopoulos
df657e2772 .triage-policies.yml: updated 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-16 06:12:32 +01:00
Nikos Mavrogiannopoulos
dd6778bf60 .gitlab-ci.yml: use CI_PROJECT_ID for triage 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-16 06:06:05 +01:00
Dimitri Papadopoulos Orfanos
aa41bfb8fe Merge branch 'PACKAGE_NAME' into 'master' 
Further improvements to arguments of AC_INIT

See merge request openconnect/ocserv!410
 2024-01-07 16:28:04 +00:00
Nikos Mavrogiannopoulos
313e68b933 main: increased details on error message 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-07 00:37:33 +01:00
Nikos Mavrogiannopoulos
072dd794c8 Merge branch 'tmp-detect-new-openconnect' into 'master' 
Added detection logic for new openconnect

See merge request openconnect/ocserv!411
 2024-01-06 21:59:54 +00:00
Nikos Mavrogiannopoulos
c403e2bd02 Added detection logic for new openconnect 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2024-01-06 22:21:54 +01:00
Dimitri Papadopoulos
badf9be99a
Further improvements to arguments of AC_INIT 
Reapply df6a3c2a, this time without regression.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-01-06 18:21:27 +01:00
Dimitri Papadopoulos Orfanos
7e9af98c28 Merge branch 'bug_reports' into 'master' 
Bug reports are not to be sent by mail anymore

See merge request openconnect/ocserv!409
 2024-01-06 09:04:55 +00:00
Dimitri Papadopoulos
3a3edcfd80
Bug reports are not to be sent by mail anymore 
Instead they should be filed on GitLab.

Adapt the relevant explanation to the different tpye of bug reporting mechanism.

Signed-off-by: Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com>
 2024-01-05 23:31:05 +01:00