9fb0100089
ssl: Try to ignore stale errors and log the right ones
2013-04-09 22:14:35 -07:00
e8c0b15c15
ssl: fix SEGV bug in error logging
2013-04-09 22:14:34 -07:00
1c5106925b
Allow -0 SSID in srccall (and dstcall), to match javaprssrvr
2013-04-10 08:13:24 +03:00
e0ce292f78
Fix SCTP uplink & listener to actually work. Send keepalive comments
...
even if no traffic has been sent.
2013-04-09 20:39:15 +03:00
fca8f208e9
Drop incoming packets with -0 SSIDs in callsigns. Speedup in callsign
...
checking (array reference instead of pointer math and referencing) and
stricter callsign syntax checks.
2013-04-09 18:33:12 +03:00
dd9b6c92c6
accept: Fix compiling on OS X without SCTP
2013-04-09 18:30:10 +03:00
788aa052f5
historydb: fix compiling on OS X, missing header include
2013-04-09 17:34:45 +03:00
b5123d0282
Half-working support for SCTP listeners and clients
2013-04-09 08:20:25 +03:00
a0179884e6
A little bit of SCTP listener config support + autoconf checks
2013-04-08 22:48:18 +03:00
6e8e5dcfc1
Adjust defines to get recursive mutexes back
2013-04-08 21:52:56 +03:00
d7132663eb
Added debian wheezy / raspberry pi to supported platforms
2013-04-08 20:40:32 +03:00
dd4622333a
build-all: Build on debian wheezy Raspberry Pi
2013-04-08 19:58:14 +03:00
a799e6dae3
define _GNU_SOURCE to silence warning about missing strncasestr prototype
2013-04-08 16:57:03 +00:00
e587507596
rpm spec: Create usr directory in the chroot
2013-03-22 06:36:44 +00:00
ceec8b4b99
ssl_info_callback: check for null pointers
2013-03-22 06:34:39 +00:00
269077fe5e
ssl: Adjust log messages to not say ERROR when there is no error
2013-03-22 06:08:17 +00:00
f39045ca3b
status: Make error flag log messages more intuitive
2013-03-22 06:07:46 +00:00
53f70eb803
ssl: log ssl handshake start/end, enable partial writes, allow
...
SSL_write of 0 bytes in case of a handshake
2013-03-21 08:07:38 +02:00
628156e1b5
just a comment fix
2013-03-14 23:50:39 +02:00
ae355f125b
Store cert subject & issue in client struct and status.json.
...
Store distinction between weak and strong validation status.
Display cert validation status on web.
Disconnect SSL client when doing live upgrade - the SSL state is not
transferred over the upgrade anyway.
Do not accept logging in with my ServerID or to an uplink server
having my ServerID.
2013-03-14 23:47:08 +02:00
6532d58dc3
Live upgrade: Check file IO errors when dumping state for live upgrade.
2013-03-14 18:37:13 +02:00
a24269cee5
historydb: Check for file i/o errors when dumping db (live upgrade)
2013-03-14 18:30:38 +02:00
0fc86638b9
Fixed a few ssl error logs
2013-03-14 09:10:07 +02:00
67f76622f6
ssl_write: pass right errno
2013-03-14 00:25:30 +02:00
7a4bcfee6c
version 2.0.1
2013-03-14 00:18:04 +02:00
6ece5fbe81
ssl: Adjust read error logging
2013-03-14 00:16:36 +02:00
cde80c9009
reconfigure: Don't segfault on clients on listeners with no ACL
2013-03-13 23:56:42 +02:00
c1d2c38050
added tool to submit build to coverity
2013-03-13 23:40:24 +02:00
1fadc802c2
Live upgrade: fixed little memory leak in error cases, introduced
...
by previous fix
2013-03-13 23:39:02 +02:00
d4c14d5f81
accept with ssl: fix use-after-free introduced in previous commit
2013-03-13 23:20:56 +02:00
fab138e39d
accept with ssl: fixed potential double free
2013-03-13 23:19:21 +02:00
469504cff7
ssl: Fix resource leaks when freeing SSL connections and when
...
SSL connection creation fails
2013-03-13 23:15:10 +02:00
e018124ff8
Uplink: use serverid for login command again
2013-03-13 23:14:51 +02:00
f99ca2f8f9
ssl: Silence a coverity warning (dead code)
2013-03-13 22:58:16 +02:00
48406cef23
debian/prerm: delete device files from chroot
2013-03-13 20:59:54 +02:00
3995e05b64
Fix debian/prerm to umount usr/lib bind mounts too
2013-03-13 18:47:42 +00:00
dc123f6def
Attempts at fixing the chroot environment for providing a bind mount of /usr/lib
2013-03-13 20:30:53 +02:00
a560112406
Uplink: Use uplink name from configuration until the server gives a serverid
...
(instead of the local serverid)
2013-03-13 17:46:05 +02:00
e96e5ba17b
Really allow access to urandom within the chroot
2013-03-12 01:51:06 +02:00
56f7cd00be
apparmor: Allow reading /dev/urandom
2013-03-11 23:09:56 +02:00
f5e3f21be6
version 2.0.0
2013-03-10 22:40:12 +02:00
8074f41c44
Login: made filter parameter case insensitive to match the competition.
2013-03-10 17:26:50 +02:00
35bdd93a53
If uplink client SSL key/cert loading fails, free the ssl context
...
and keep failing on future attempts.
2013-03-10 12:29:55 +02:00
61d29b165e
ssl: Validate uplink's certificate too
2013-03-07 23:25:01 +02:00
8540eb7752
parse_aprs: Fix logging of "Unknown NMEA" to use hlog_packet
2013-03-07 21:23:54 +02:00
d05829bcad
ssl: Load private key for Uplinks. Check private/ca pair to be
...
valid.
2013-03-07 20:50:20 +02:00
b1272bf5e6
Initial somewhat working SSL uplink setup
2013-03-07 00:40:49 +02:00
a4652055cf
ssl.h: removed unused vars
2013-03-06 23:30:51 +02:00
9aa968bd0b
accept: Do not disconnect all uplinks when rescanning clients at reconfigure
2013-03-06 18:24:06 +02:00
a6293fbafe
Config: put in options for uplink ssl client config
2013-03-06 17:52:03 +02:00
Heikki Hannikainen
Heikki Hannikainen