summaryrefslogtreecommitdiffstats
path: root/database/sqlite
Commit message (Collapse)AuthorAgeFilesLines
...
* Moved all malloc() operations over to a calloc wrapper, malloc_nullsafe()David Sommerseth2009-09-072-13/+6
| | | | This also improves debugging as well, if debug logging is enabled and log level is >= 40.
* Removed header file which is no longer neededDavid Sommerseth2009-09-056-6/+0
|
* Added copyright info in CMake filesDavid Sommerseth2009-09-021-1/+20
|
* Added missing #include statementsDavid Sommerseth2009-09-022-0/+2
|
* Cleaned up and commented CMakeLists.txt for the SQLite3 driverDavid Sommerseth2009-09-021-16/+25
|
* Rearranged some files in the sqlite3 driverDavid Sommerseth2009-09-025-15/+10
|
* Updated copyright info in the SQLite3 SQL schema fileDavid Sommerseth2009-09-021-2/+17
|
* Added more comments to the SQLite3 database schemaDavid Sommerseth2009-09-021-7/+38
|
* Don't try to populate granted access nodes with data if no access is grantedDavid Sommerseth2009-09-011-13/+22
|
* Only populate XML nodes if we have a value to populate it withDavid Sommerseth2009-09-011-13/+14
|
* Added --set-fwprofile mode to the eurephiadm usercerts commandDavid Sommerseth2009-09-011-6/+61
| | | | This mode updates the firewall access profile for at user-certs link
* Unified eDBadminGetUserCertsList(...) and eDBadminUpdateUserCertLink(...) ↵David Sommerseth2009-09-011-39/+97
| | | | | | into one function Plus added better XML documentation for the new eDBadminUserCertsLink(...) function
* SQLite3 - Added support for "affected rows" count on INSERT/UPDATE/DELETE ↵David Sommerseth2009-09-012-0/+12
| | | | queries
* Moved usercerts related functions into its own fileDavid Sommerseth2009-08-293-130/+183
|
* Improved some commentsDavid Sommerseth2009-08-291-2/+3
|
* sqlite3 driver: Implemented eDBadminBlacklist(...) function for blacklist ↵David Sommerseth2009-05-094-0/+227
| | | | management
* Corrected some minor detailsDavid Sommerseth2009-05-091-4/+3
|
* Completed the attempts command in eurephiadmDavid Sommerseth2009-05-072-8/+48
| | | | Added functionality for resetting and deleting attempt records
* Fixed wrong database field name mapping for SQLite3David Sommerseth2009-05-071-1/+1
|
* Corrected the default filter setup and added the 'digest' fieldDavid Sommerseth2009-05-061-6/+7
|
* Renamed fieldmapping for 'attempts' to 'attemptslog'David Sommerseth2009-05-062-9/+16
| | | | | | Also made the result XML from eDBadminAttemptsLog(...) more efficient by not adding the username/certificate/ipaddress group tags if the information is not present.
* Rewritten CMake rules to build common/ as static libraryDavid Sommerseth2009-04-111-11/+5
| | | | | | This static library is later on linked in. This is to avoid recompiling the same source files several times during a complete eurephia compilation.
* sqlite3 driver: Implemented listing of openvpn_attempts tableDavid Sommerseth2009-04-094-4/+184
|
* Added improved filtering support to SQLite3 driverDavid Sommerseth2009-04-051-1/+17
| | | | Follow up of commit ff744b48fdc0665b620339d51424892def8d8071
* Added eDBfieldMapping field for filter typesDavid Sommerseth2009-04-051-49/+49
| | | | | | | | | | | | | | | | | | | This field will be used to determine what kind of filter logic to add when building SQL queries. The filter type is set in the fieldMapping field nodes as an attribute named 'filter'. Their values and the corresponding SQL conditions are: filter | SQL condition -----------------------+--------------- equals | = not-equals | != / NOT(...) less-than | < less-than-equals | <= greater-than | > greater-than-equals | >= -----------------------+--------------- The default value for each field is set in the eurephiadb_mapping.h
* When deleting fwprofiles, delete also records from openvpn_usercertsDavid Sommerseth2009-04-031-0/+30
|
* Completed eDBadminFirewallProfiles(...) with add and delete in db driverDavid Sommerseth2009-04-021-9/+60
|
* Security enhancement: Added check in eDBadmin* functions that the context is ↵David Sommerseth2009-04-012-0/+102
| | | | correct
* Cleaned up some compiler warnings in edb-sqliteDavid Sommerseth2009-03-303-0/+20
|
* Restructured ./configure and improved the path setupDavid Sommerseth2009-03-301-1/+1
| | | | Also added install rules to XSLT files
* Added missing xmlReplaceChars(...) on common_name and organisationDavid Sommerseth2009-03-291-4/+20
|
* Changed eDBadminGetFirewallProfiles(...) to eDBadminFirewallProfiles(...)David Sommerseth2009-03-291-23/+61
| | | | | Will try a new approach to use the same entry point for all actions connected to the firewall profiles configuration.
* Fixed some possible issues with the XML implementation, regarding UTF-8David Sommerseth2009-03-291-5/+20
| | | | | | Do proper conversion from char * to xmlChar *. Need to figure out a better way how to return xmlChar * to char * when returning strings which may contain UTF-8.
* Added eDBadminGetFirewallProfiles(...) function in DB driverDavid Sommerseth2009-03-282-0/+137
|
* Added fieldMapping for the firewall access table (openvpn_accesses)David Sommerseth2009-03-281-0/+15
|
* Fixed a "hang" when wrong password was usedDavid Sommerseth2009-03-282-4/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Due to the current implementation of SHA512 salts, it could be experienced as if the application hung on wrong passwords. This is because the rounds count for the passwords are scrambled, with values based on the given password. When a wrong password is given, this will also result in getting a wrong salt length and hash rounds for the following hash calculation. Due to this, the extracted rounds value from the salt string could return some really high number of rounds on wrong passwords (possibly the max value if integer). And this is why the "hang" is experienced. To avoid this, a check is added to make sure the rounds is not unreasonably much higher than the configured max rounds values. If the descrambled rounds number from the salt exceeds max rounds * 1.5, the password (most probaly) is wrong. In this case we do a sleep() to slow down bruteforce attacks and return NULL. The drawback is if the maxrounds later on is changed to a value which hits this scenario: passwordsalt_rounds > maxrounds_cfg * 1.5 In this case these old passwords will be invalidated by that configuration change. This is considered to be a feature and not a bug. The reason for mulitiplying by 1.5, is to allow a little room for a degrading the max rounds setting. By adjusting the max rounds up again, these passwords will be valid again. Added also a sleep() when wrong username is attempted.
* BUGFIX: Fixed missing string replace in certificate functionsDavid Sommerseth2009-03-271-2/+18
| | | | | | | | When calling eDBadminGetCertificateInfo(...) or eDBadminDeleteCertificate(...) with a search XML document using common_name or organisation and these fields contained spaces, no certificates would be deleted. This is because space is replaced with underscore in the database.
* Made the licence explicit GPLv2 onlyDavid Sommerseth2009-03-266-6/+6
|
* Cleaned up the code a little bitDavid Sommerseth2009-03-266-12/+16
| | | | | Made sure we only include needed include files and checked that the copyright headers are equal and correct
* Corrected sorting of result in eDBadminGetAdminAccess(...)David Sommerseth2009-03-241-1/+1
|
* Implemented the eDBadminGetLastLog(...) function in the SQLite3 driverDavid Sommerseth2009-03-242-3/+101
|
* Extended the database driver with eDBadminGetAdminAccess(...)David Sommerseth2009-03-241-0/+62
| | | | | | This function will return an XML document with data extracted from the eurephia_adminaccess table. Search criterias are defined by the search XML doc given as input.
* Added support for editing the eurephia_adminaccess tableDavid Sommerseth2009-03-222-0/+73
| | | | Implemented eDBadminEditAdminAccess(...) function in db driver
* Rewrote database driver (SQLite) to use eurephia_pwd_crypt(...)David Sommerseth2009-03-222-20/+40
| | | | Follow up from commit 062a3c92343a5fa371f8637f8bca88aacca14cc4
* Added missing source in edb-sqlite driver after reorg with randstr.cDavid Sommerseth2009-03-211-0/+1
|
* Compile fix: Use sqlite_int64 instead of sqlite3_int64David Sommerseth2009-03-021-1/+1
| | | | | This makes it possible to compile it on some older versions of the SQLite3 library
* Introduced password caching on authenticated sessionsDavid Sommerseth2009-01-031-19/+43
| | | | | | | | | | | | | | | | | | | | | | This is to prepare eurephia-auth plugin to use other and more CPU intensive hashing algorithms for passwords. In addition, open sessions will now not be rejected/closed due to wrong password if the user changes the password with an open session running. The patch adds a new server_salt attribute in the eurephiaCTX structure. This is used as a temporary salt and is created of random data when OpenVPN is started. When a user is being authenticated (eurephia.c/eurephia_userauth) a authentication session (not the same as a 'normal' session) is opened and checked for a cached password. If it does not exist or match, normal password check will be done against the user database. If a cached password is found and matches, it is considered to be authenticated. The cached password uses the SHA512 algorithm, together with the eurephiaCTX->server_salt.
* Prepared passwdhash function to allow salting and be prepared for other ↵David Sommerseth2009-01-022-2/+2
| | | | hashing algorithms
* Make it possible to compile plug-in again without eurephiadm enabledDavid Sommerseth2009-01-021-2/+5
|
* sqlite3 - compile in common/eurephia_xml.c when admin mode is enabledv0.9.3_betaDavid Sommerseth2008-12-291-1/+1
|
generated by cgit (git 2.34.1) at 2025-09-26 04:34:52 +0000