Package: openvpn-auth-radius / 2.1-12

Metadata

Package Version Patches format
openvpn-auth-radius 2.1-12 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
20_iroute_mask.diff | (download)

UserAuth.cpp | 77 14 + 63 - 0 !
1 file changed, 14 insertions(+), 63 deletions(-)

 
 [patch] fix iroute netmask computation

This rewrites computation of the netmask from CIDR netmask.  It was
previously completely buggy due to using j instead of k.  Using doubles
to store a 32bit value is not really safe, and using masks and shifts
is much simpler actually.
25_fix fd leak.diff | (download)

AccountingProcess.cpp | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
---
30_build with debug symbols.diff | (download)

Makefile | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 
---
35_verbose_built.diff | (download)

Makefile | 15 3 + 12 - 0 !
1 file changed, 3 insertions(+), 12 deletions(-)

 
 show actual compiler arguments.
40_use_cppflags.diff | (download)

Makefile | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 
 respect cppflags
0006 Support verify client cert directive in openvpn 2.4.patch | (download)

Config.cpp | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 
 support verify-client-cert directive in openvpn 2.4

Bug-Debian: #954264
0007 RadiusBLAST | (download)

RadiusClass/RadiusAttribute.cpp | 8 8 + 0 - 0 !
RadiusClass/RadiusConfig.cpp | 11 11 + 0 - 0 !
RadiusClass/RadiusPacket.cpp | 106 95 + 11 - 0 !
RadiusClass/RadiusPacket.h | 5 4 + 1 - 0 !
RadiusClass/RadiusServer.cpp | 23 22 + 1 - 0 !
RadiusClass/RadiusServer.h | 6 5 + 1 - 0 !
RadiusClass/exampleconfig | 2 2 + 0 - 0 !
UserAuth.cpp | 11 9 + 2 - 0 !
radiusplugin.cnf | 6 6 + 0 - 0 !
9 files changed, 162 insertions(+), 16 deletions(-)

 
---
0008 authenticate fix | (download)

RadiusClass/RadiusPacket.cpp | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 
 fix radius packet authentication use-after-free
 The BLASTRadius vulnerability mitigation introduced a use-after-free
 in the RadiusPacket::authenticateReceivedPacket method.
 This fix prevents use-after-free by assigning the string to a
 variable before relying on the c_str result.
0009 framed ipv6 route | (download)

AccountingProcess.cpp | 2 2 + 0 - 0 !
AuthenticationProcess.cpp | 4 4 + 0 - 0 !
User.cpp | 37 36 + 1 - 0 !
User.h | 8 8 + 0 - 0 !
UserAcct.cpp | 328 311 + 17 - 0 !
UserAuth.cpp | 130 126 + 4 - 0 !
radiusplugin.cpp | 9 9 + 0 - 0 !
7 files changed, 496 insertions(+), 22 deletions(-)

 
 framed-ipv6-route.patch
   * Add Framed-IPv6-Route support.
0010 framed ipv6 address | (download)

AccountingProcess.cpp | 3 2 + 1 - 0 !
AuthenticationProcess.cpp | 3 3 + 0 - 0 !
Config.cpp | 27 27 + 0 - 0 !
Config.h | 4 4 + 0 - 0 !
RadiusClass/RadiusAttribute.cpp | 23 23 + 0 - 0 !
RadiusClass/RadiusAttribute.h | 1 1 + 0 - 0 !
RadiusClass/utilities/dictionary | 2 2 + 0 - 0 !
RadiusClass/utilities/vsa.h | 2 2 + 0 - 0 !
RadiusClass/vsa.h | 2 2 + 0 - 0 !
User.cpp | 21 19 + 2 - 0 !
User.h | 4 4 + 0 - 0 !
UserAuth.cpp | 41 40 + 1 - 0 !
radiusplugin.cnf | 3 3 + 0 - 0 !
radiusplugin.cpp | 5 5 + 0 - 0 !
14 files changed, 137 insertions(+), 4 deletions(-)

 
 framed-ipv6-address.patch
   * Add Framed-IPv6-Address support.
0011 DCO | (download)

UserAcct.cpp | 10 10 + 0 - 0 !
1 file changed, 10 insertions(+)

 
---