7febd08d30
Merge 06e79fd75d into dc2b11918a
2023-12-09 13:56:16 -07:00
ff4b74afda
Merge pull request #1929 from chipitsine/pr_1921_followup
...
fix nullptr deref
2023-12-01 17:18:40 +01:00
e6792d8893
fix nullptr deref
...
Co-authored-by: icy17 <1061499390@qq.com >
2023-11-19 10:57:28 +01:00
9429243dbe
Merge pull request #1906 from hiura2023/master
...
Fix access violation: correct typing mistake in calling Debug().
2023-11-01 10:26:37 +01:00
6dbf7e9ae2
Showing an explanation of the purpose of the Developer Edition and the difference from the Stable Editon by Daiyuu Nobori
2023-10-09 17:14:32 +02:00
54ae7f725b
Add four new certificate hashes to the DDNS_CERT_HASH list by Daiyuu Nobori. These certificates will be used to University of Tsukuba's built-in "softether.net" DDNS server after year 2038.
2023-10-09 17:14:32 +02:00
35077deaf1
Fix Vulnerability: CVE-2023-25774 TALOS-2023-1743
...
SoftEther VPN vpnserver ConnectionAccept () denial of service vulnerability
2023-10-09 17:13:57 +02:00
3b932f5fee
Fix Vulnerability: CVE-2023-27516 TALOS-2023-1754 and CVE-2023-32634 TALOS-2023-1755
...
SoftEther VPN CiRpcAccepted () authentication bypass vulnerability
and SoftEther VPN CiRpcServerThread () MitM authentication bypass vulnerability
https://www.softether.org/9-about/News/904-SEVPN202301
https://jvn.jp/en/jp/JVN64316789/
2023-10-07 04:42:41 +02:00
f4bbe476be
Fix Vulnerability: CVE-2023-32275 TALOS-2023-1753
...
SoftEther VPN CtEnumCa () information disclosure vulnerability
https://www.softether.org/9-about/News/904-SEVPN202301
https://jvn.jp/en/jp/JVN64316789/
2023-10-07 04:42:41 +02:00
2dec52b875
Heap area protection of memory has been enhanced.
...
When memory is released and reallocated, a random security value called a canary is written to the before/after area of memory, and if the value has been modified, the process is terminated (restarted) for safety, assuming it is a buffer overflow of the memory area. This feature may effectively prevent confidentiality or integrity violations in the event that some heap area overflow vulnerability is discovered in this system in the future.
2023-10-07 04:42:34 +02:00
c49e462ed1
Fix Vulnerability: CVE-2023-22325 TALOS-2023-1736
...
SoftEther VPN DCRegister DDNS_RPC_MAX_RECV_SIZE denial of service vulnerability
https://www.softether.org/9-about/News/904-SEVPN202301
https://jvn.jp/en/jp/JVN64316789/
2023-09-28 18:26:17 +09:00
b8e542105f
Fix Vulnerability: CVE-2023-27395 TALOS-2023-1735
...
SoftEther VPN vpnserver WpcParsePacket () heap-based buffer overflow vulnerability
https://www.softether.org/9-about/News/904-SEVPN202301
https://jvn.jp/en/jp/JVN64316789/
2023-09-28 18:24:12 +09:00
06e79fd75d
replace да|нет to yes|no
2023-09-27 20:03:43 +09:00
d30949038f
Swap comment for ConnectionList command and comment for ConnectionGet command in strtable_ru.stb file
2023-09-27 20:01:53 +09:00
c621a8e74d
fix [порт] to [port]
2023-09-27 00:12:50 +09:00
1b0aa5e434
fix
2023-09-26 23:26:57 +09:00
51898b80a2
fix comment: ConnectionGet
2023-09-26 23:25:55 +09:00
ed282ad977
change comment: VPN工具 to VPN Tools
2023-09-26 23:24:07 +09:00
7e30a8e52a
fixed VpnAzureSetStatus to VpnAzureSetEnable
2023-09-26 22:55:22 +09:00
a09446c1f3
fix [nome] to [name]
2023-09-26 22:51:28 +09:00
f57f05a599
Bind outgoing connection to a specific IP address (fix a bug)
2023-09-17 16:36:57 +09:00
f736d18267
temporarily suppress clang warnings on "-Wincompatible-function-pointer-types"
2023-09-16 00:03:03 +02:00
1be55ebb94
src/vpndrvinst/main.c: add missing header file
2023-09-16 00:02:29 +02:00
fc2a33d1f3
fix missing arg
2023-09-15 09:39:11 +09:00
2fd6c0b76a
add missing localization
...
this is a follow up of
https://github.com/SoftEtherVPN/SoftEtherVPN/pull/1867
English localization is added for now
2023-09-12 22:43:01 +02:00
6833a7a11d
Merge pull request #1901 from hiura2023/master
...
Bind outgoing connection to a specific IP address (avoid illegal access)
2023-09-12 09:39:18 +02:00
643cbbbf88
Bind outgoing connection to a specific IP address (avoid illegal access)
2023-09-12 10:20:51 +09:00
205a94cda2
Merge pull request #1867 from hiura2023/master
...
Bind outgoing connection to a specific IP address
2023-09-10 17:18:31 +02:00
a9a93a2824
fixed VpnAzureSetStatus to VpnAzureSetEnable
2023-08-31 01:30:15 +09:00
68e704097d
fix another stb complaints
2023-08-27 21:11:53 +02:00
8162ca3d12
Merge branch 'SoftEtherVPN:master' into master
2023-08-27 21:01:22 +02:00
8345deebe4
Add files via upload
2023-08-27 19:21:13 +03:00
63595f79c5
fix some missing localization
2023-08-25 22:24:53 +02:00
2abd9de923
Update strtable_ru.stb
2023-08-24 00:37:55 +03:00
8f8677f164
set PPPSetStatus(p, PPP_STATUS_FAIL); in case of failure
2023-08-16 22:32:00 +02:00
088b5c2df3
additional error handling if SSL_CTX_new failed
...
this is a folloup to https://github.com/SoftEtherVPN/SoftEtherVPN/pull/1873
2023-08-16 19:17:18 +02:00
a80d3f2032
TunTap.h: fix for undefined u_char, u_short on MacOS
2023-08-14 15:54:56 +08:00
1cf2e7a8ea
Network.h: include forgotten pthread.h for MacOS too
2023-08-14 15:40:53 +08:00
c2fe874865
Bind outgoing connection to a specific IP address No.2
2023-08-08 18:14:22 +09:00
f6f2660060
Merge pull request #1869 from metalefty/bsdunixvlan-group
...
Cedar/VLanUnix: assign virtual interface to softether group
2023-08-07 08:16:17 +02:00
adccc6b7d4
Merge pull request #1775 from domosekai/radius2
...
Support more EAP methods for RADIUS auth
2023-08-07 02:50:13 +09:00
07733b29cb
fix potential crash.
2023-07-30 11:01:09 +00:00
eb785e08fe
Merge PR #1866 : Translate GenX25519/GetPublicX25519 command
2023-07-05 09:55:53 +02:00
1493ccb44d
Merge PR #1865 : Fix build when NO_VLAN
2023-07-05 09:55:35 +02:00
49f8112d83
Cedar/VLanUnix: assign virtual interface to softether group
...
Interface grouping is available on FreeBSD and OpenBSD. This will allow
you to enumerate only SoftEther virtual interfaces or exclude SoftEther
virtual interfaces, and be helpful when making custom scripts to start
DHCP client when virtual interface become up (=VPN connection
established) for example.
Usage examples as follows.
List all interfaces' names available on the system:
```
$ ifconfig -l
vtnet0 lo0 vpn_client0 vpn_client1 vpn_client2
```
Display a list of SoftEther virtual interfaces:
```
$ ifconfig -g softether
vpn_client0
vpn_client1
vpn_client2
```
Display details about SoftEther virtual interfaces that are up:
```
$ ifconfig -a -u -g softether
vpn_client0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
description: SoftEther Virtual Network Adapter
options=80000<LINKSTATE>
ether 5e:71:fa:f8:91:4a
hwaddr 58:9c:fc:10:34:2a
groups: tap softether
media: Ethernet autoselect
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 1445
```
Display details about interfaces except for SoftEther virtual interfaces:
```
$ ifconfig -a -G softether
vtnet0: flags=8863<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=80028<VLAN_MTU,JUMBO_MTU,LINKSTATE>
ether 58:9c:fc:00:f0:23
inet6 fe80::5a9c:fcff:fe00:f023%vtnet0 prefixlen 64 scopeid 0x1
inet 192.168.96.7 netmask 0xffffff00 broadcast 192.168.96.255
media: Ethernet autoselect (10Gbase-T <full-duplex>)
status: active
nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=680003<RXCSUM,TXCSUM,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x2
inet 127.0.0.1 netmask 0xff000000
groups: lo
nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
```
2023-07-04 14:38:36 +09:00
5633314981
Merge PR #1868 : Fix build on __FreeBSD_version >= 140091 (LLVM 16)
2023-07-04 06:08:21 +02:00
dcdbce63d5
Fix build on __FreeBSD_version >= 140091 (LLVM 16)
...
Fails to build after:
https://cgit.freebsd.org/src/commit/?id=a681cba16d8967651a2146385ce44a2bfeb1c4c3
As the commit title is "Bump __FreeBSD_version for llvm 16.0.6 merge",
I suppose LLVM 16 is stricter than LLVM 15. It was building successfully
at least the previous week.
Build log: https://pkg-status.freebsd.org/beefy18/data/main-amd64-default/p4785b313b958_se8efee297c/logs/softether5-5.02.5180.335,2.log
```
[ 32%] Building C object src/Mayaqua/CMakeFiles/mayaqua.dir/Unix.c.o
cd /wrkdirs/usr/ports/security/softether5/work/.build/src/Mayaqua && /usr/bin/cc -DBRIDGE_BPF -DCPU_64 -DHAVE_SSL_CTX_SET_NUM_TICKETS -DNDEBUG -DOS_UNIX -DREENTRANT -DSE_DBDIR=\"/var/db/softether\" -DSE_LOGDIR=\"/var/log/softether\" -DSE_PIDDIR=\"/var/run/softether\" -DSE_TAGNAME=\"5.02.5180-335-g1c0bdb0c/freebsd\" -DTHREADSAFE -DTHREAD_SAFE -DUNIX -DUNIX_BSD -DVPN_SPEED -D_FILE_OFFSET_BITS=64 -D_REENTRANT -D_THREADSAFE -D_THREAD_SAFE -Dmayaqua_EXPORTS -I/wrkdirs/usr/ports/security/softether5/work/SoftEtherVPN-5.02.5180-335-g1c0bdb0c/src/. -I/wrkdirs/usr/ports/security/softether5/work/SoftEtherVPN-5.02.5180-335-g1c0bdb0c/src/Mayaqua/. -I/wrkdirs/usr/ports/security/softether5/work/SoftEtherVPN-5.02.5180-335-g1c0bdb0c/src/libhamcore/include -O2 -pipe -I/usr/local/include/cpu_features -fstack-protector-strong -isystem /usr/local/include -fno-strict-aliasing -fsigned-char -O2 -pipe -I/usr/local/include/cpu_features -fstack-protector-strong -isystem /usr/local/include -fno-strict-aliasing -DNDEBUG -O2 -std=gnu99 -fPIC -pthread -MD -MT src/Mayaqua/CMakeFiles/mayaqua.dir/Unix.c.o -MF CMakeFiles/mayaqua.dir/Unix.c.o.d -o CMakeFiles/mayaqua.dir/Unix.c.o -c /wrkdirs/usr/ports/security/softether5/work/SoftEtherVPN-5.02.5180-335-g1c0bdb0c/src/Mayaqua/Unix.c
/wrkdirs/usr/ports/security/softether5/work/SoftEtherVPN-5.02.5180-335-g1c0bdb0c/src/Mayaqua/Unix.c:259:18: error: incompatible function pointer types assigning to 'void (*)(int, struct __siginfo *, void *)' from 'void *(int, siginfo_t *, void *)' (aka 'void *(int, struct __siginfo *, void *)') [-Wincompatible-function-pointer-types]
sa.sa_sigaction = signal_received_for_ignore;
^ ~~~~~~~~~~~~~~~~~~~~~~~~~~
```
2023-07-04 08:50:53 +09:00
e4330ca71a
bind outgoing connection
2023-06-28 23:18:09 +09:00
35b5d0640f
Translate GenX25519/GetPublicX25519 command
2023-06-21 15:16:47 +09:00
f88341ce40
Fix case of WireGuard
2023-06-21 15:11:38 +09:00
