nicolabs/mosquitto
1
0
Fork 0
mirror of https://github.com/eclipse-mosquitto/mosquitto.git synced 2026-05-13 01:20:25 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
3804 commits 12 branches 70 tags 29 MiB
Commit graph

3804 commits

This branch
This branch
All branches
Author SHA1 Message Date
Roger A. Light
fd4f4bc31c Don't allow files to be symbolic links 2023-09-10 22:28:25 +01:00
Roger A. Light
e656e694ed Merge branch 'master' into develop 2023-09-09 15:20:40 +01:00
Roger A. Light
1ed275b1d4 Version 2.0.17 and below post 2023-08-24 01:16:51 +01:00
Roger A. Light
f762a3fd1c Update docker 2023-08-22 08:43:41 +01:00
Roger A. Light
597d64b7fb Bump version. 2023-08-22 08:40:19 +01:00
Roger A. Light
28d96d8ebc Fix max_inflight_messages not being set correctly. 
Closes #2876.
 2023-08-22 08:39:40 +01:00
Roger A. Light
47ae6dd0e2 Fix mosquitto_passwd -U backup file creation. 
Closes #2873.
 2023-08-22 08:09:36 +01:00
Roger A. Light
bfb373d774 Fix max_queued_message 0 stopping clients from receiving messages. 
Closes #2789. Thanks to Daedaluz.
 2023-08-22 07:40:54 +01:00
Roger A. Light
166d1489f2 Update docker 2023-08-16 14:05:47 +01:00
Roger A. Light
9e0831b3ed Merge branch 'fixes' 2023-08-16 14:03:29 +01:00
Roger A. Light
afba3ec9a0 Bump version, update changelog. 2023-08-16 14:01:21 +01:00
Roger A. Light
1f3b23cd60 Fix broken links on security.md 
Closes #2855. Thanks to cfi-gb
 2023-08-16 14:01:21 +01:00
Roger A. Light
66faab12d5 Document mosquitto_rr -W option 
Closes #2839. Thanks to KaeLL
 2023-08-16 14:01:21 +01:00
Roger A. Light
20df874604 Remove broken Travis links. 
Closes #2867
 2023-08-16 14:01:21 +01:00
Roger A. Light
9109e9e0e2 Fix setlinebuf() on Windows 2023-08-16 14:01:21 +01:00
Roger A. Light
3ab0a9a3fd mosquitto_ctrl dynsec init uses open( , O_EXCL | O_CREAT) 
This allows us to refuse to open an existing file, without a race
condition.
 2023-08-16 14:01:21 +01:00
Roger A. Light
00b24e0eb0 Fix memory leak when clients send v5 CONNECT packets. 
This occurs when they have a will message that contains invalid property
types.
 2023-08-16 14:01:21 +01:00
Roger A. Light
4f9002c58a Fix UTF-8 control characters test 2023-08-16 14:01:21 +01:00
Roger A. Light
70d713ca07 Fix heap overflow when reading corrupt config with "log_dest file". 2023-08-16 14:01:21 +01:00
Roger A. Light
284db04bc3 Library will no longer allow single level wildcard certificates, e.g. *.com 2023-08-16 14:01:21 +01:00
Roger A. Light
b76c3c7820 Dynsec: Don't allow duplicate c/g/r when loading config 2023-08-16 14:01:21 +01:00
Roger A. Light
8bc047511a Fix any possible case where a json string might be incorrectly loaded. 2023-08-16 14:01:21 +01:00
Roger A. Light
fa9979ce68 Update mosquitto-tls to suggest modern cypher. 2023-08-16 14:01:21 +01:00
Roger A. Light
41db41761d Fix test running under valgrind 2023-08-16 14:01:21 +01:00
Roger A. Light
6113eac95a Fix for CVE-2023-28366 2023-08-16 14:01:21 +01:00
Roger A. Light
b1c29e881e Fix potential file persistence crash. 
Identified by OS-TIF audit.

TOB-MOSQ-CR-5
 2023-08-16 14:01:21 +01:00
Roger A. Light
a3c680fbb0 Fix for Eclipse #581199 2023-08-16 14:01:21 +01:00
Roger A. Light
411ed41c27 Dynsec: Simplify config load 2023-08-16 14:01:21 +01:00
Roger A. Light
3fc7dce74c Only register with DLT if DLT logging is enabled. 2023-08-16 14:01:21 +01:00
Roger A. Light
67ac8cbe17 mosquitto_memcmp_const is now more constant time. 2023-08-16 14:01:21 +01:00
Roger A. Light
02d36f9946 Broker now validates usernames provided over TLS are valid UTF-8. 2023-08-16 14:01:21 +01:00
Roger A. Light
44b94875b5 mosquitto_passwd uses mkstemp() for backup files. 2023-08-16 14:01:21 +01:00
Roger A. Light
9bb8058578 Reject Will messages that attempt to publish to $CONTROL/. 2023-08-16 14:01:21 +01:00
Roger A. Light
4ca294fd9c Warn on lax permissions on sensitive files. 
- Broker will log warnings if sensitive files are world readable/writable, or
  if the owner/group is not the same as the user/group the broker is running
  as. In future versions the broker will refuse to open these files.
 2023-08-16 14:01:21 +01:00
Roger Light
4093dad058
Merge pull request #2827 from bdesplanq/fix-engine-support 
Fix engine keyfile support.
 2023-08-15 14:09:01 +01:00
Roger A. Light
cb90e91126 Add missing mosquitto_strerror entries. 
Closes #2799. Thanks to n00b42
 2023-08-12 10:12:52 +01:00
Roger Light
ba76009a0d
Merge pull request #2840 from NorbertHeusser/dev-no-expiry-on-outgoing-bridge 
Do not add outgoing bridge connection to session expiry list
 2023-08-11 23:36:04 +01:00
Roger Light
9c295efe98
Merge pull request #2838 from NorbertHeusser/fix-no-expiry-on-outgoing-bridge 
Do not add outgoing bridge connection context to session expiry list
 2023-08-11 23:35:43 +01:00
Roger Light
2f2307f684
Merge pull request #2834 from linkkzz/fix-subcount 
Fix sub_count is not decreased when client ubsubscribe
 2023-08-11 23:03:35 +01:00
Roger Light
857dd8d508
Merge pull request #2841 from SergeyVasiliev/fix-setting-bridge_tcp_user_timeout-on-linux 
Fix define to properly parse bridge tcp user timeout configuration
 2023-08-11 23:01:30 +01:00
Roger Light
1a781fbf7a
Merge pull request #2846 from CrossStream/sandbox/rzr/review/master 
man: Fix typo-in-manual-page noticable noticeable
 2023-08-11 22:49:31 +01:00
Roger A. Light
87316959ee Update API generation target 2023-08-02 10:43:01 +01:00
Roger A. Light
9be6aec6cf Make tls keylog file user-readable only 2023-07-31 23:36:40 +01:00
Philippe Coval
e653f75f67 man: Fix typo-in-manual-page noticable noticeable 
This was reported by debian lintian checker

Forwarded: https://github.com/eclipse/mosquitto/pull/2846#Open
Signed-off-by: Philippe Coval <rzr@users.sf.net>
 2023-07-10 08:52:51 +02:00
Roger A. Light
92184b572f Silence Coverity Scan 1509252 Unused value 2023-07-09 08:42:27 +01:00
Roger A. Light
3bb4ff180e Fix Coverity Scan 1509020 Unchecked return value. 
This was really a false positive, however the intent is probably clearer
now.
 2023-07-09 08:40:02 +01:00
Roger A. Light
ba31065390 Fix Coverity Scan 1511194, use after free 
Develop branch only
 2023-07-09 08:37:01 +01:00
Roger Light
5dceeb94b1
Merge pull request #2845 from CrossStream/sandbox/rzr/review/master 
git: Ignore more generated files
 2023-07-08 23:36:01 +01:00
Philippe Coval
41a3a2068e git: Ignore more generated files 
Signed-off-by: Philippe Coval <rzr@users.sf.net>
 2023-07-08 11:47:58 +02:00
Sergey Vasiliev
d0ba59b5c0 Fix define to properly parse bridge tcp user timeout configuration value when this feature enabled 2023-07-05 09:17:20 +00:00