ocserv 0.0.1 release

Mike Miller mtmiller at ieee.org
Thu Feb 21 18:41:09 EST 2013

On Wed, Feb 20, 2013 at 09:56:10PM +0100, Nikos Mavrogiannopoulos wrote:
> Hello,
>  This is the first public release of ocserv, a small VPN server that
> implements the AnyConnect SSL VPN protocol. The server targets small
> embedded Linux devices.

Hi Nikos, just wanted to say I tried this out and it works for me, at
least to the point of connecting and setting up a tunnel. A couple
points that don't work:

Cannot connect with openconnect < 4.00. The error is reported at
worker-vpn.c:563. I bisected openconnect down to a change to send the
CSTP connection in one burst [1]. Perhaps ocserv is expecting the
connection headers all at once and failing if the first recv doesn't
have everything it needs? I have not dug into ocserv to work this yet,
only guessing.

Out-of-source-tree build fails, the following trivial diff fixes it for

-- >8 --
diff --git a/src/Makefile.am b/src/Makefile.am
index 99301e8..9e06622 100644
--- a/src/Makefile.am
+++ b/src/Makefile.am
@@ -28,5 +28,5 @@ ocserv_LDADD += $(LIBGNUTLS_LIBS) $(GDBM_LIBS) $(PAM_LIBS) $(LIB
 ocserv-args.c ocserv-args.h: $(srcdir)/ocserv-args.def
-       -autogen ocserv-args.def
+       -autogen $<
-- >8 --

[1] http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/7d974cd01f11f7eed3c75b5803129e75fbcf83a1



More information about the openconnect-devel mailing list