James Yonan

What's happening?

Merged changes from Dave Cridland's branch

This is a fairly significant upgrade to pyOpenSSL functionality in the sense that many additional OpenSSL APIs are exposed. Dave Cridland appears to have forked pyOpenSSL several years back (relative to the sourceforge branch), adding significant additional functionality including access to the digital signatures API. I have merged those changes back into the sourceforge.net pyOpenSSL branch...

2009-02-12 05:46:28 UTC in pyOpenSSL
Comment: 64 bit version not auto reconnecting all clients

Can you submit more configuration details on this? TCP or UDP, dev tun or tap, version of clients, plugins used, etc. Thanks, James.

2008-11-19 17:53:43 UTC in OpenVPN
Comment: Call to recv() uses wrong length?

Re: setting buf->len to -1, the fix for this is also discussed in ticket 2015672.

2008-07-27 18:23:50 UTC in OpenVPN
Comment: buf_safe() has no protection against integer overflow

This has been fixed. See ticket 2015672 for a detailed description.

2008-07-27 18:07:59 UTC in OpenVPN
Comment: tun_finalize() shouldn't set buf->len on error (SECURITY?)

This has been fixed. See ticket 2015672 for a detailed description.

2008-07-27 18:07:39 UTC in OpenVPN
Comment: link_socket_read_udp_posix() doesn't check for errors

This has been fixed. See ticket 2015672 for a detailed description.

2008-07-27 18:07:18 UTC in OpenVPN
Comment: buffer.{h,c} isn't defensively programmed (SECURITY?)

I've attempted to address these issues in a defensive programming change within buffer.[ch]: -r3128 http://svn.openvpn.net/projects/openvpn/branches/BETA21 First, we introduce BUF_SIZE_MAX and require that buf.capacity always be below this level. We guard against integer overflow by testing any value that will add or subtract against length or offset, that the value is within...

2008-07-27 18:04:27 UTC in OpenVPN
Comment: configure --enable-iproute2 + --pull is a security hole?

This has been verified as a security issue and has been fixed in: -r3126 http://svn.openvpn.net/projects/openvpn/branches/BETA21 Note that the vulnerable code only exists in the 2.1 beta/rc series and has never been included in a stable-tagged release.

2008-07-26 23:16:53 UTC in OpenVPN
Comment: add_option() should validate --pull opts (SECURITY)

Added additional input validation on pulled options. -r3126 https://svn.openvpn.net/projects/openvpn/branches/BETA21.

2008-07-26 23:11:39 UTC in OpenVPN
Comment: Script invocations have their command line truncated

This has been fixed in -r3122 https://svn.openvpn.net/projects/openvpn/branches/BETA21 * Argument lists for external programs and scripts are now built by the new argv_printf function which natively outputs to string arrays (i.e. char *argv[] lists), never truncates its output, and eliminates the security issues inherent in formatting and parsing command lines, and dealing with...

2008-07-26 07:45:09 UTC in OpenVPN

James Yonan

What's happening?

Merged changes from Dave Cridland's branch

Comment: 64 bit version not auto reconnecting all clients

Comment: Call to recv() uses wrong length?

Comment: buf_safe() has no protection against integer overflow

Comment: tun_finalize() shouldn't set buf->len on error (SECURITY?)

Comment: link_socket_read_udp_posix() doesn't check for errors

Comment: buffer.{h,c} isn't defensively programmed (SECURITY?)

Comment: configure --enable-iproute2 + --pull is a security hole?

Comment: add_option() should validate --pull opts (SECURITY)

Comment: Script invocations have their command line truncated

About Me

My Projects

About SourceForge

Find Software

Develop Software

Community

Help