d0kuhn/mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,845 Commits 1 Branch 0 Tags 11 MiB
6468bb4f9b
Commit Graph

2845 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Roger A. Light
06c84aeb66 CVE-2021-34434 details. 2021-08-30 22:06:32 +01:00
Roger A. Light
37b5aedcb6 Fix for #575314. 
Incoming QoS 2 messages that had not completed the QoS flow were not being
checked for ACL access when a clean session=False client was reconnecting.

Closes #575314.
 2021-08-30 16:14:27 +01:00
Roger A. Light
9d95cba95e Fix leak. 2021-08-30 14:11:23 +01:00
Roger A. Light
9d6a73f9f7 Fix CONNECT performance with many user-properties. 
An MQTT v5 client connecting with a large number of user-property properties
could cause excessive CPU usage, leading to a loss of performance and
possible denial of service. This has been fixed.
 2021-08-26 12:17:42 +01:00
Roger Light
32af599c81 Fix $share subscriptions not being recovered for durable clients. 
If a plugin had granted ACL subscription access to a
durable/non-clean-session client, then removed that access, the client would
keep its existing subscription. This has been fixed.
 2021-08-26 12:17:26 +01:00
Roger A. Light
376226c129 Build warning fixes. 2021-08-26 10:54:03 +01:00
Roger A. Light
756b3fcb08 Document TLS certificate behaviour when using -p 8883. 2021-08-24 23:15:06 +01:00
Roger A. Light
f952d19da1 Fix printf format build warning on MIPS. 
Closes #2271. Thanks to Karl Palsson.
 2021-08-24 13:58:15 +01:00
Roger A. Light
9b25dd3b0d libressl build fixes. 
Closes #2198. Thanks to Theo Buehler.
 2021-08-24 13:53:03 +01:00
Roger A. Light
0d1837ebe3 Deconfigure thread mode when the loop thread ends. 
Threaded mode is deconfigured when the mosquitto_loop_start() thread ends,
which allows mosquitto_loop_start() to be called again.

Closes #2242. Thanks to Timo Lange.
 2021-08-24 11:51:38 +01:00
Roger A. Light
9526b4cf23 Check for file==dir only when reading. 2021-08-23 23:19:37 +01:00
Roger Light
ba2ca33671 Strict protocol compliance fixes, and extensive test suite. 2021-08-23 23:19:28 +01:00
Roger Light
723b5d7081 Fix listener mount_point not being removed on outgoing messages. 
Closes #2244. Thanks to alflexRH.
 2021-08-22 08:23:13 +01:00
Roger Light
33349010cd Fix linker error 2021-08-22 07:55:10 +01:00
Roger Light
6608e852a1 Fix broker not quiting if password_file is specified as a directory. 
Closes #2241. Thanks to Bryan Pearson.
 2021-08-21 22:45:39 +01:00
Roger Light
526b8430e2 Fix for #2283. 
Closes #2283. Thanks to Heath Raftery.
 2021-08-21 20:14:51 +01:00
Roger Light
c01ae67af7 Fix openssl not being linked to dynamic security plugin. 
Closes #2277. Thanks to LeSuisse.
 2021-08-21 09:45:26 +01:00
Roger Light
035291c595 Signal+reload documentation improvement. 2021-08-21 00:08:20 +01:00
Roger Light
342aa0ad1a Fix installation using WITH_TLS=no. 
Closes #2281. Thanks to Matt Turner.
 2021-08-20 23:49:59 +01:00
Roger Light
93b2232bb9 Apply max_keepalive to MQTT v3.1.1 and v3.1 clients. 2021-08-20 23:27:14 +01:00
Roger A. Light
ea371564e7 Disable TLS 1.3 when using TLS-PSK, because it isn't correctly config'd. 2021-08-19 17:26:04 +01:00
Roger A. Light
0143db71a1 Fix TLS certs and PSK not being able to be config'd at the same time. 2021-08-19 17:26:04 +01:00
Roger A. Light
a37c8e65d2 TLS-PSK mismatch fix. 
Produce an error if a TLS-PSK client tries to connect to a broker
that is not configured with TLS-PSK.
 2021-08-19 17:26:04 +01:00
Roger A. Light
fc4099eafa Speed up tests. 2021-08-17 17:11:47 +01:00
Roger A. Light
79542158f4 Fix max_connections option not being correctly counted. 2021-08-17 13:10:18 +01:00
Roger A. Light
2ace833eee Remove duplicate line 2021-08-17 12:26:52 +01:00
Roger A. Light
8589f082d8 Fix CVE references. 2021-08-05 16:10:43 +01:00
Roger Light
17bbca22fb
Merge pull request #2255 from tparker-usgs/master 
Disable HTTP2 when building libwebsockets for docker images.
 2021-07-28 22:40:50 +01:00
Roger A. Light
eec1ef1c55 Parallelise bridge clean session test. 2021-07-28 15:54:21 +01:00
Roger A. Light
4e146b7b53 Fix possible out of bounds memory reads when reading configuration. 
This would happen with a corrupt/crafted configuration file. Unless your
configuration file is writable by untrusted users this is not a risk.

Closes #567213. Thanks to Roland Sako.
 2021-07-22 16:43:06 +01:00
Tom Parker
87cba17715 Disable HTTP2 when building libwebsockets for docker images. Works around #1211. 
Signed-off-by: Tom Parker <tparker@usgs.gov>
 2021-07-15 19:49:35 +00:00
Roger Light
e3158e2b09
Merge pull request #2247 from Begasus/haiku 
Haiku build fixes
 2021-07-09 14:16:21 +01:00
begasus
0f49a9ff5b Haiku build fixes 
Signed-off-by: begasus <begasus@gmail.com>
 2021-07-07 12:26:20 +00:00
Roger A. Light
30b54ba124 Add platform limitations section to man page. 2021-06-29 13:51:31 +01:00
Roger A. Light
b7c3d52cd4 Fix letsencrypt case when RENEWED_DOMAINS is empty. 2021-06-10 11:55:01 +01:00
Roger A. Light
0d1bc03665 Simplify editing needs of the letsencrypt hook script. 2021-06-10 11:05:23 +01:00
Roger A. Light
6028d0e33e mosquitto_sub and mosquitto_rr now open stdout in binary mode on Windows 
This is so binary payloads are not modified when printing.

Thanks to Steve Mullock.
 2021-06-09 21:16:57 +01:00
Roger A. Light
5217863b8b Bump docker files. 2021-06-09 16:21:55 +01:00
Roger A. Light
1ab6b28e26 Add missing test file. 2021-06-09 14:22:21 +01:00
Roger A. Light
3b89bb2e35 Update post to include 1.6.15 information. 2021-06-09 13:36:28 +01:00
Roger A. Light
f68c052c79 Merge branch 'fixes' 2021-06-09 13:22:56 +01:00
Roger A. Light
c4ca718ea7 Add man page deps to readme. 2021-06-09 13:22:40 +01:00
Roger A. Light
99d7299b24 Fix qos0 messages not being queued when queue_qos0_message enabled. 
Closes #2224. Thanks to Luigi Caiffa.
 2021-06-09 13:21:27 +01:00
Roger A. Light
ea7e2a6bca Bump version, add post. 2021-06-08 22:27:07 +01:00
Roger A. Light
8416f928df Revert premature want_connect fix. 2021-06-08 22:26:14 +01:00
Roger A. Light
42163634c7 Fix leak on crafted MQTT v5 CONNECT. 
If a MQTT v5 client connects with a crafted CONNECT packet a memory leak
will occur.

Thanks to Kathrin Kleinhammer.
 2021-06-08 22:26:09 +01:00
Roger A. Light
403691ce40 Add missing return types. 2021-06-08 22:25:59 +01:00
Roger A. Light
238b68686a Fix bridge pollfd corruption on Windows. 
Closes #2173. Thanks to Niclas Lindgren.
 2021-06-08 13:29:29 +01:00
Roger A. Light
104b94db57 Fix non-reachable bridge blocking the broker on Windows. 
Closes #2172. Thanks to Niclas Lindgren.
 2021-06-08 12:07:24 +01:00
Roger A. Light
5851713f3e Refactor to remove duplicate code. 2021-06-08 12:00:05 +01:00