rsyslog/rsyslog
1
0
Fork 0
mirror of https://github.com/rsyslog/rsyslog.git synced 2025-12-17 08:10:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,801 Commits 67 Branches 505 Tags
Commit Graph

30 Commits

Author SHA1 Message Date
Rainer Gerhards
b674dd69bd added gtls name authentication based on common name (inside DN) 
also changed fingerprint gtls auth mode to new format fingerprint
 2008-05-26 12:53:49 +02:00
Rainer Gerhards
68a2c3d512 implemented x509/certvalid "authentication" 2008-05-21 14:59:24 +02:00
Rainer Gerhards
85b587f93d first implementation of TLS server client authentication check 
The TLS server now checks the client fingerprint. This works, but
is highly experimental. Needs to be refined for practice. Also:
- implemented permittedPeers helper construct to store names
- changed omfwd implementation to use new permittedPeers
 2008-05-19 18:52:44 +02:00
Rainer Gerhards
48684ceac5 improved error messages and corrected fingerprint format 2008-05-19 09:43:37 +02:00
Rainer Gerhards
6ea98ec5ff added first rough ability to authenticate the server against its certificate 
This is very experimental and needs some more work. It probably even
segfaults - but the base code is there and running. The rest is
refinement.

While working on this, I did these two bugfixes:
- bugfix: small mem leak in omfwd on exit (strmdriver name was not freed)
- bugfix: $ActionSendStreamDriver had no effect
 2008-05-16 18:26:25 +02:00
Rainer Gerhards
d594f83a89 server's X509 cert fingerprint is obtained by client on connect 2008-05-08 16:00:57 +02:00
Rainer Gerhards
3d74096021 added a bit of doc (at least something...) 2008-05-08 13:24:20 +02:00
Rainer Gerhards
c370fc6305 server handshake now works with nonblocking sockets 2008-04-30 16:35:35 +02:00
Rainer Gerhards
94acfb1c5f ability to load proper select netstrm driver 2008-04-29 10:02:59 +02:00
Rainer Gerhards
a3ff7eaf85 added $ActionSendStreamDriverMode config directive 2008-04-28 14:21:58 +02:00
Rainer Gerhards
af30c9f8f2 added select() driver for GnuTls 2008-04-24 20:10:24 +02:00
Rainer Gerhards
af50a76c3f made this compile with the new abstracted socket server calls 
undid some invalid changes during merge plus did a few wrappers.
Compiles, but does not yet work.
 2008-04-24 17:59:43 +02:00
Rainer Gerhards
4b05bef636 Merge branch 'sock-abstract' into tls 
Conflicts:

	runtime/Makefile.am
	runtime/netstrm.c
	runtime/nsd.h
	runtime/nsd_ptcp.c
	runtime/rsyslog.h
 2008-04-24 17:43:45 +02:00
Rainer Gerhards
50fe2ec2ea removed listener array from inidividual netstrm (mostly finished) 2008-04-23 16:31:35 +02:00
Rainer Gerhards
1892fc75f9 added new netstrms class 
netstrms is at the top layer of the socket abstraction
 2008-04-23 15:07:19 +02:00
Rainer Gerhards
2be459c4d7 objects for receive-side socket abstraction specified 
The objects for receiver-side socket abstraction have now be
specified. The project as whole does not yet compile and
definitely not run, but I'd like to commit some milestones along
this way.
 2008-04-23 09:59:01 +02:00
Rainer Gerhards
2069ab114e first working TLS-enabled plain TCP sender 
implemented a first working version of a TLS-enabled plain TCP
sender (but, of course, the implementation is insecure as it is)
 2008-04-18 18:29:02 +02:00
Rainer Gerhards
032b9c1f64 Merge branch 'master' into tls 2008-04-18 14:38:17 +02:00
Rainer Gerhards
08a4fc4ae5 bugfix: a recent change effectively disabled error messages 2008-04-18 14:35:27 +02:00
Rainer Gerhards
fd6c3bc36a set stage for TLS client implementation 2008-04-18 14:25:29 +02:00
Rainer Gerhards
1daf8d492f converted netstrm into generic netstrm and the nsd_pctp driver 2008-04-18 11:40:15 +02:00
Rainer Gerhards
ccf3b533c6 imported tcp module from librelp as basis for new stream class 
we got permission to include the tcp module from librelp
copyright holders
 2008-04-17 15:40:28 +02:00
Rainer Gerhards
92303d400b added new "netstrm" class (not yet implemented) 2008-04-17 14:33:43 +02:00
Rainer Gerhards
60309004df completed better modularity of runtime 
- added the ability to specify an error log function for the
  runtime
- removed dependency of core runtime on dirty.h

Note that it is "better" modularity, not perfect. There is still
work to do, but I think we can for the time being proceed with
other things.
 2008-04-17 12:46:57 +02:00
Rainer Gerhards
e5130affc0 moved "glblModPath" variable inside global data pool 
(but still as a variable, not part of glbl object)
 2008-04-17 11:17:15 +02:00
Rainer Gerhards
87c936ab65 modularization work 
cleanup + created an abstract class for global data
items and moved glblGetWorkDir to it
 2008-04-17 09:07:12 +02:00
Rainer Gerhards
bf3e0d4f22 prevented segfault during runtime library init phase 2008-04-16 18:01:26 +02:00
Rainer Gerhards
d9b0c77d3e some more cleanup 
reduced dependencies, moved non-runtime files to its own directory except
for some whom's status is unclear
 2008-04-16 15:27:53 +02:00
Rainer Gerhards
91661455eb provided ability to initialize the runtime 2008-04-16 12:48:20 +02:00
Rainer Gerhards
8f8f65abb6 moved files to the runtime 
there are still some files left which could go into the
runtime, but I think we will delete most of them once we
are done with the full modularization.
 2008-04-16 10:26:54 +02:00