d0kuhn/mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,966 Commits 1 Branch 0 Tags 11 MiB
1f3b23cd60
Commit Graph

2966 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Roger A. Light
1f3b23cd60 Fix broken links on security.md 
Closes #2855. Thanks to cfi-gb
 2023-08-16 14:01:21 +01:00
Roger A. Light
66faab12d5 Document mosquitto_rr -W option 
Closes #2839. Thanks to KaeLL
 2023-08-16 14:01:21 +01:00
Roger A. Light
20df874604 Remove broken Travis links. 
Closes #2867
 2023-08-16 14:01:21 +01:00
Roger A. Light
9109e9e0e2 Fix setlinebuf() on Windows 2023-08-16 14:01:21 +01:00
Roger A. Light
3ab0a9a3fd mosquitto_ctrl dynsec init uses open( , O_EXCL | O_CREAT) 
This allows us to refuse to open an existing file, without a race
condition.
 2023-08-16 14:01:21 +01:00
Roger A. Light
00b24e0eb0 Fix memory leak when clients send v5 CONNECT packets. 
This occurs when they have a will message that contains invalid property
types.
 2023-08-16 14:01:21 +01:00
Roger A. Light
4f9002c58a Fix UTF-8 control characters test 2023-08-16 14:01:21 +01:00
Roger A. Light
70d713ca07 Fix heap overflow when reading corrupt config with "log_dest file". 2023-08-16 14:01:21 +01:00
Roger A. Light
284db04bc3 Library will no longer allow single level wildcard certificates, e.g. *.com 2023-08-16 14:01:21 +01:00
Roger A. Light
b76c3c7820 Dynsec: Don't allow duplicate c/g/r when loading config 2023-08-16 14:01:21 +01:00
Roger A. Light
8bc047511a Fix any possible case where a json string might be incorrectly loaded. 2023-08-16 14:01:21 +01:00
Roger A. Light
fa9979ce68 Update mosquitto-tls to suggest modern cypher. 2023-08-16 14:01:21 +01:00
Roger A. Light
41db41761d Fix test running under valgrind 2023-08-16 14:01:21 +01:00
Roger A. Light
6113eac95a Fix for CVE-2023-28366 2023-08-16 14:01:21 +01:00
Roger A. Light
b1c29e881e Fix potential file persistence crash. 
Identified by OS-TIF audit.

TOB-MOSQ-CR-5
 2023-08-16 14:01:21 +01:00
Roger A. Light
a3c680fbb0 Fix for Eclipse #581199 2023-08-16 14:01:21 +01:00
Roger A. Light
411ed41c27 Dynsec: Simplify config load 2023-08-16 14:01:21 +01:00
Roger A. Light
3fc7dce74c Only register with DLT if DLT logging is enabled. 2023-08-16 14:01:21 +01:00
Roger A. Light
67ac8cbe17 mosquitto_memcmp_const is now more constant time. 2023-08-16 14:01:21 +01:00
Roger A. Light
02d36f9946 Broker now validates usernames provided over TLS are valid UTF-8. 2023-08-16 14:01:21 +01:00
Roger A. Light
44b94875b5 mosquitto_passwd uses mkstemp() for backup files. 2023-08-16 14:01:21 +01:00
Roger A. Light
9bb8058578 Reject Will messages that attempt to publish to $CONTROL/. 2023-08-16 14:01:21 +01:00
Roger A. Light
4ca294fd9c Warn on lax permissions on sensitive files. 
- Broker will log warnings if sensitive files are world readable/writable, or
  if the owner/group is not the same as the user/group the broker is running
  as. In future versions the broker will refuse to open these files.
 2023-08-16 14:01:21 +01:00
Roger Light
4093dad058
Merge pull request #2827 from bdesplanq/fix-engine-support 
Fix engine keyfile support.
 2023-08-15 14:09:01 +01:00
Roger A. Light
cb90e91126 Add missing mosquitto_strerror entries. 
Closes #2799. Thanks to n00b42
 2023-08-12 10:12:52 +01:00
Roger Light
9c295efe98
Merge pull request #2838 from NorbertHeusser/fix-no-expiry-on-outgoing-bridge 
Do not add outgoing bridge connection context to session expiry list
 2023-08-11 23:35:43 +01:00
Roger Light
2f2307f684
Merge pull request #2834 from linkkzz/fix-subcount 
Fix sub_count is not decreased when client ubsubscribe
 2023-08-11 23:03:35 +01:00
Norbert Heusser
c749ed6fd5 Do not add outgoing bridge connection context to session expiry list on disconnect 
Signed-off-by: Norbert Heusser <norbert.heusser@cedalo.com>
 2023-07-03 11:16:38 +00:00
linkkzz
18ea97c468 Fixes sub_count is not decreased when client ubsubscribe 
Signed-off-by: linkkzz <jk588592@163.com>
 2023-06-30 11:29:40 +08:00
Bart Desplanques
105e30ff5b Fix engine support. 
Do not try to open keyfile when keyform is "engine": this is not necessarily a real file.
Dynamic engines require init with OPENSSL_INIT_ENGINE_DYNAMIC before they can be loaded.

Signed-off-by: Bart Desplanques <bart.desplanques@gmail.com>
 2023-06-02 19:11:50 +02:00
Roger A. Light
269756a171 Fix high CPU use on slow TLS connect. 
Closes #2794. Thanks to Evgeny S.
 2023-04-27 23:25:52 +01:00
Roger A. Light
3c51816009 Fix leak on error. 2023-04-12 11:52:26 +01:00
Roger A. Light
6d240a9d18 Fix bridges being expired after being restored. 
This occurred with non-matching cleansession/local_cleansession being
expired on start after restoring from persistence.

Closes #2634. Thanks to everyone on the issue.
 2023-04-08 09:15:46 +01:00
Roger A. Light
3b2f3c6d8a Windows: Increase connection limit to 8192 where supported. 
Closes #2732. Thanks to zhousongsong.
 2023-04-07 19:29:32 +01:00
Roger A. Light
4f9c5567ba Fix example plugin incorrect callback unregister. 
Closes #2673. Thanks to Karl Palsson.
 2023-04-01 22:36:38 +01:00
Roger A. Light
655f9e58b7 Update blog post with non-expired Lets Encrypt root. 
Closes #2692. Thanks to Matt Turner.
 2023-04-01 22:28:02 +01:00
Roger A. Light
5a748806d3 Default to max keepalive 0. 2023-04-01 22:19:54 +01:00
Roger A. Light
cc97f433c1 Use line buffered mode for stdout. 
Closes #2354.
Closes #2749.
 2023-04-01 21:16:07 +01:00
Roger A. Light
1bf753e773 Fix confusing message on TLS certificate verification. 
Closes #2746. Thanks to Akos Vandra-Meyer.
 2023-04-01 17:52:12 +01:00
Roger A. Light
1195dd991e Clearer len calculation. 2023-04-01 08:50:03 +01:00
Roger Light
ec6a56d759
Merge pull request #2734 from axos88/patch-1 
Fix malloc size for file path
 2023-04-01 08:48:30 +01:00
Roger A. Light
63da7472b5 Fix default settings incorrectly allowing TLS v1.1. 
Closes #2722. Thanks to KramNamez.
 2023-03-28 01:39:28 +01:00
Roger Light
5cae46d26d
Merge pull request #2745 from Hyeongon-Kim/fix-load-priv-key-file 
fixed a bug where broker's private-key file was not loaded
 2023-03-28 01:03:42 +01:00
Roger A. Light
7e35ac92ec Update changelog 2023-03-27 23:42:19 +01:00
Roger A. Light
a991a8373f Merge branch 'Daedaluz-fixes' into fixes 2023-03-27 23:39:06 +01:00
Roger A. Light
6f61710fa7 Merge branch 'fixes' of github.com:Daedaluz/mosquitto into Daedaluz-fixes 2023-03-27 23:37:55 +01:00
Roger A. Light
103253deda Windows build for fixes branch. 2023-03-14 23:16:49 +00:00
Roger A. Light
28a39e62ff Remove unused header. 2023-03-07 14:16:27 +00:00
Tobias Assarsson
2e2a420099 use CLOCK_BOOTTIME when available. 
Signed-off-by: Tobias Assarsson <tobias.assarsson@gmail.com>
 2023-03-02 09:04:59 +01:00
Hyeongon Kim
19fbfee791 fixed a bug where broker's private-key file was not loaded 
fixed a bug where the mosquitto-broker's private-key file(.pem)
dose not load with tls-engine.

Signed-off-by: Hyeongon Kim <khyeongon@gmail.com>
 2023-02-06 15:02:30 +09:00