Roger A. Light
afba3ec9a0
Bump version, update changelog.
2023-08-16 14:01:21 +01:00
Roger A. Light
1f3b23cd60
Fix broken links on security.md
...
Closes #2855 . Thanks to cfi-gb
2023-08-16 14:01:21 +01:00
Roger A. Light
66faab12d5
Document mosquitto_rr -W option
...
Closes #2839 . Thanks to KaeLL
2023-08-16 14:01:21 +01:00
Roger A. Light
20df874604
Remove broken Travis links.
...
Closes #2867
2023-08-16 14:01:21 +01:00
Roger A. Light
9109e9e0e2
Fix setlinebuf() on Windows
2023-08-16 14:01:21 +01:00
Roger A. Light
3ab0a9a3fd
mosquitto_ctrl dynsec init uses open( , O_EXCL | O_CREAT)
...
This allows us to refuse to open an existing file, without a race
condition.
2023-08-16 14:01:21 +01:00
Roger A. Light
00b24e0eb0
Fix memory leak when clients send v5 CONNECT packets.
...
This occurs when they have a will message that contains invalid property
types.
2023-08-16 14:01:21 +01:00
Roger A. Light
4f9002c58a
Fix UTF-8 control characters test
2023-08-16 14:01:21 +01:00
Roger A. Light
70d713ca07
Fix heap overflow when reading corrupt config with "log_dest file".
2023-08-16 14:01:21 +01:00
Roger A. Light
284db04bc3
Library will no longer allow single level wildcard certificates, e.g. *.com
2023-08-16 14:01:21 +01:00
Roger A. Light
b76c3c7820
Dynsec: Don't allow duplicate c/g/r when loading config
2023-08-16 14:01:21 +01:00
Roger A. Light
8bc047511a
Fix any possible case where a json string might be incorrectly loaded.
2023-08-16 14:01:21 +01:00
Roger A. Light
fa9979ce68
Update mosquitto-tls to suggest modern cypher.
2023-08-16 14:01:21 +01:00
Roger A. Light
41db41761d
Fix test running under valgrind
2023-08-16 14:01:21 +01:00
Roger A. Light
6113eac95a
Fix for CVE-2023-28366
2023-08-16 14:01:21 +01:00
Roger A. Light
b1c29e881e
Fix potential file persistence crash.
...
Identified by OS-TIF audit.
TOB-MOSQ-CR-5
2023-08-16 14:01:21 +01:00
Roger A. Light
a3c680fbb0
Fix for Eclipse #581199
2023-08-16 14:01:21 +01:00
Roger A. Light
411ed41c27
Dynsec: Simplify config load
2023-08-16 14:01:21 +01:00
Roger A. Light
3fc7dce74c
Only register with DLT if DLT logging is enabled.
2023-08-16 14:01:21 +01:00
Roger A. Light
67ac8cbe17
mosquitto_memcmp_const is now more constant time.
2023-08-16 14:01:21 +01:00
Roger A. Light
02d36f9946
Broker now validates usernames provided over TLS are valid UTF-8.
2023-08-16 14:01:21 +01:00
Roger A. Light
44b94875b5
mosquitto_passwd uses mkstemp() for backup files.
2023-08-16 14:01:21 +01:00
Roger A. Light
9bb8058578
Reject Will messages that attempt to publish to $CONTROL/.
2023-08-16 14:01:21 +01:00
Roger A. Light
4ca294fd9c
Warn on lax permissions on sensitive files.
...
- Broker will log warnings if sensitive files are world readable/writable, or
if the owner/group is not the same as the user/group the broker is running
as. In future versions the broker will refuse to open these files.
2023-08-16 14:01:21 +01:00
Roger Light
4093dad058
Merge pull request #2827 from bdesplanq/fix-engine-support
...
Fix engine keyfile support.
2023-08-15 14:09:01 +01:00
Roger A. Light
cb90e91126
Add missing mosquitto_strerror entries.
...
Closes #2799 . Thanks to n00b42
2023-08-12 10:12:52 +01:00
Roger Light
9c295efe98
Merge pull request #2838 from NorbertHeusser/fix-no-expiry-on-outgoing-bridge
...
Do not add outgoing bridge connection context to session expiry list
2023-08-11 23:35:43 +01:00
Roger Light
2f2307f684
Merge pull request #2834 from linkkzz/fix-subcount
...
Fix sub_count is not decreased when client ubsubscribe
2023-08-11 23:03:35 +01:00
Norbert Heusser
c749ed6fd5
Do not add outgoing bridge connection context to session expiry list on disconnect
...
Signed-off-by: Norbert Heusser <norbert.heusser@cedalo.com>
2023-07-03 11:16:38 +00:00
linkkzz
18ea97c468
Fixes sub_count is not decreased when client ubsubscribe
...
Signed-off-by: linkkzz <jk588592@163.com>
2023-06-30 11:29:40 +08:00
Bart Desplanques
105e30ff5b
Fix engine support.
...
Do not try to open keyfile when keyform is "engine": this is not necessarily a real file.
Dynamic engines require init with OPENSSL_INIT_ENGINE_DYNAMIC before they can be loaded.
Signed-off-by: Bart Desplanques <bart.desplanques@gmail.com>
2023-06-02 19:11:50 +02:00
Roger A. Light
269756a171
Fix high CPU use on slow TLS connect.
...
Closes #2794 . Thanks to Evgeny S.
2023-04-27 23:25:52 +01:00
Roger A. Light
3c51816009
Fix leak on error.
2023-04-12 11:52:26 +01:00
Roger A. Light
6d240a9d18
Fix bridges being expired after being restored.
...
This occurred with non-matching cleansession/local_cleansession being
expired on start after restoring from persistence.
Closes #2634 . Thanks to everyone on the issue.
2023-04-08 09:15:46 +01:00
Roger A. Light
3b2f3c6d8a
Windows: Increase connection limit to 8192 where supported.
...
Closes #2732 . Thanks to zhousongsong.
2023-04-07 19:29:32 +01:00
Roger A. Light
4f9c5567ba
Fix example plugin incorrect callback unregister.
...
Closes #2673 . Thanks to Karl Palsson.
2023-04-01 22:36:38 +01:00
Roger A. Light
655f9e58b7
Update blog post with non-expired Lets Encrypt root.
...
Closes #2692 . Thanks to Matt Turner.
2023-04-01 22:28:02 +01:00
Roger A. Light
5a748806d3
Default to max keepalive 0.
2023-04-01 22:19:54 +01:00
Roger A. Light
cc97f433c1
Use line buffered mode for stdout.
...
Closes #2354 .
Closes #2749 .
2023-04-01 21:16:07 +01:00
Roger A. Light
1bf753e773
Fix confusing message on TLS certificate verification.
...
Closes #2746 . Thanks to Akos Vandra-Meyer.
2023-04-01 17:52:12 +01:00
Roger A. Light
1195dd991e
Clearer len calculation.
2023-04-01 08:50:03 +01:00
Roger Light
ec6a56d759
Merge pull request #2734 from axos88/patch-1
...
Fix malloc size for file path
2023-04-01 08:48:30 +01:00
Roger A. Light
63da7472b5
Fix default settings incorrectly allowing TLS v1.1.
...
Closes #2722 . Thanks to KramNamez.
2023-03-28 01:39:28 +01:00
Roger Light
5cae46d26d
Merge pull request #2745 from Hyeongon-Kim/fix-load-priv-key-file
...
fixed a bug where broker's private-key file was not loaded
2023-03-28 01:03:42 +01:00
Roger A. Light
7e35ac92ec
Update changelog
2023-03-27 23:42:19 +01:00
Roger A. Light
a991a8373f
Merge branch 'Daedaluz-fixes' into fixes
2023-03-27 23:39:06 +01:00
Roger A. Light
6f61710fa7
Merge branch 'fixes' of github.com:Daedaluz/mosquitto into Daedaluz-fixes
2023-03-27 23:37:55 +01:00
Roger A. Light
103253deda
Windows build for fixes branch.
2023-03-14 23:16:49 +00:00
Roger A. Light
28a39e62ff
Remove unused header.
2023-03-07 14:16:27 +00:00
Tobias Assarsson
2e2a420099
use CLOCK_BOOTTIME when available.
...
Signed-off-by: Tobias Assarsson <tobias.assarsson@gmail.com>
2023-03-02 09:04:59 +01:00