AMajor/SoftEtherVPN
1
0
Fork 0
mirror of https://github.com/SoftEtherVPN/SoftEtherVPN.git synced 2024-11-23 01:49:53 +03:00
Code Releases Activity
216 Commits 1 Branch 26 Tags 548 MiB
93d9ade990
Commit Graph

138 Commits

Author SHA1 Message Date
Moataz Elmasry
93d9ade990 Merge PR #129 into master. 2018-01-25 02:55:11 +01:00
Maks Naumov
ea4bb811ef Fix log msg for IKE with agressive exchange mode (#425) 2018-01-23 17:42:20 +01:00
Daiyuu Nobori
7de986dcca 7 missing memory boundaries checks and similar memory problems. There are no risk of arbitrary code execution or intrusion on these bugs in my analysis. However, these problems may lead to crash the running server process. So these bugs must be fixed. 
Buffer overread in ParseL2TPPacket()
Memory corruption in IcmpParseResult
Missing bounds check in ParseUDP() can lead to invalid memory access
Out-of-bounds read in IPsec_PPP.c (unterminated string buffer)
Overlapping parameters to memcpy() via StrToIp6()
PACK ReadValue() crash vulnerability
Potential use of uninitialized memory via IPToInAddr6()

4 memory leaks. While the amount of leakage is very small per time, these bugs can finally cause process crash by out of memory. So these bugs must be fixed.

Memory leak in NnReadDnsRecord
Memory leak in RadiusLogin()
Memory leak via ParsePacketIPv4WithDummyMacHeader
Remote memory leak in OpenVPN server code

1 coding improvement. This is not a bug, however, I fixed the code to avoid furture misunderstanding.

RecvAll can return success on failure (leading to use of uninitialized memory)

Contributors for this bugfix:

- Max Planck Institute for Molecular Genetics
- Guido Vranken
 2018-01-15 10:25:10 +09:00
Daiyuu Nobori
8edbcd4c0d update recent authors 2018-01-15 10:11:40 +09:00
macvk
ab4b27ab3c Add parameter "ListenIP" to server configuration (vpn_server.config) (#202) 
* Added parameter "ListenIP" to server configuration (vpn_server.config)

* Fixed bug in VPN client
 2018-01-11 23:53:38 +01:00
Daiyuu Nobori
ce3d35c595 Added the function to save the DNS query log on the packet logs. (fix) 2017-12-22 07:26:06 +09:00
Daiyuu Nobori
a0b54d7c6d Added the TCP destination port 3128 (well known as Squid default port) to assume as the HTTP proxy port on the packet logging. 2017-12-21 23:25:08 +09:00
Daiyuu Nobori
bb30535bb6 Fix the function name: RFC3164 -> RFC3339 2017-12-21 23:24:06 +09:00
Daiyuu Nobori
97e7a82be2 Added the function to save the DNS query log on the packet logs. 2017-12-21 23:23:17 +09:00
Daiyuu Nobori
4a01c41d09 Fixed the bug which occurs the L2TP/IPsec connection error with Android Oreo. 2017-12-21 23:21:31 +09:00
Ilya Shipitsin
bed99f9a56 build documentation refactoring (#395) 
BUILD_WINDOWS.TXT, BUILD_UNIX.TXT removed from root folder

src/BUILD_WINDOWS.TXT, src/BUILD_UNIX.TXT converted to "md"

BUILD_WINDOWS.TXT, BUILD_UNIX.TXT are now hyperlinks in README.md
 2017-12-05 13:17:14 +01:00
Nguyễn Hồng Quân
1f33fbdff4 Fix: vpncmd thinks that "hamcore.se2" is missing or broken (#339) 2017-12-03 20:50:12 +01:00
Den Lesnov
0796249525 fix aarch64 build (#281) 
Fix build error under ARM 64 bit (aarch64)
 2017-12-03 20:48:39 +01:00
Daiyuu Nobori
1f2c052dfb Fixed the bug on the OpenVPN Server function. 2017-10-23 02:54:51 +09:00
Daiyuu Nobori
fd7707d95a Fixed the service title. 2017-10-19 15:28:28 +09:00
Daiyuu Nobori
d8bf734baa Fixed the service title. 2017-10-19 15:24:51 +09:00
Daiyuu Nobori
804b9f1a19 Preparing the development branch 2017-10-19 15:18:42 +09:00
Daiyuu Nobori
9f9dc459a7 Preparing the development branch 2017-10-19 15:00:41 +09:00
dnobori
faee11ff09 v4.23-9647-beta 2017-10-18 18:24:21 +09:00
Daiyuu Nobori
acf49ad536 Merge pull request #344 from quantum5/openssl1.1 
OpenSSL 1.1 Port
 2017-10-18 16:58:46 +09:00
Daiyuu Nobori
1b73778e3f Merge pull request #315 from rel22/SoftetherVPN-RuToken-S-patch-1 
Added support for RuToken USB key PKCS#11
 2017-10-18 16:58:19 +09:00
Daiyuu Nobori
f9436daa6f Merge pull request #313 from zulzardi/patch-2 
Fixed RSA key bits wrong calculation for certain x509 certificate
 2017-10-18 16:58:09 +09:00
Daiyuu Nobori
2241b9a366 Merge pull request #309 from moatazelmasry2/openvpn-extend-ciphers 
Openvpn extend ciphers
 2017-10-18 16:57:52 +09:00
Daiyuu Nobori
056c322601 Merge branch 'master' into add-sha2 2017-10-18 16:57:26 +09:00
Daiyuu Nobori
936815f2d4 Merge pull request #293 from moatazelmasry2/expand-dh-groups 
Add DH groups 2048,3072,4096 to IPSec_IKE
 2017-10-18 16:37:22 +09:00
Daiyuu Nobori
8ae035420b Merge pull request #282 from NoahO/NoahO-PPP-patch 
Stop Radius Delay from counting to next_resend
 2017-10-18 16:37:02 +09:00
Daiyuu Nobori
b61882598f Merge pull request #256 from cm0x4D/master 
Using client parameter in function CtConnect
 2017-10-18 16:36:24 +09:00
cm0x4d
78bcc07fa9 Peer info optional in OvsParseKeyMethod2() 2017-09-28 10:37:24 +02:00
Quantum
0746be43a2 OpenSSL 1.1 Port. 
Some potential problems with Ssl_Init_Async_SendAlert.
 2017-07-29 22:31:25 -04:00
rel22
61e71be380 Add support for RuToken USB key PKCS#11 
Test on RuToken-S key.
https://www.rutoken.ru/products/all/rutoken-s/
 2017-03-13 18:17:24 +03:00
Zulyandri Zardi
a3db7b2e3d Update Encrypt.c 
Fixed RSA bits wrong calculation for certain x509 certificate
 2017-03-10 12:04:17 +08:00
Moataz Elmasry
fdcf90d3f0 Add CAMELLIA cipher suite to OpenVPN 2017-02-24 14:09:22 +01:00
Moataz Elmasry
e0a9fb1950 Add HMAC-SHA2-256, HMAC2-384, HMAC2-512 support to OpenVPN 2017-01-23 02:34:25 +01:00
Moataz Elmasry
071004477f Fix errors while adding SHA2 support to HMAC 2017-01-23 02:03:37 +01:00
Moataz Elmasry
29234b7f9a Add HMAC SHA2 to IKE 2017-01-23 00:50:48 +01:00
Moataz Elmasry
342d602f5d Add support for HMAC SHA2-256, HMAC SHA2-384, HMAC SHA2-512 2017-01-22 16:09:30 +01:00
Moataz Elmasry
c7c40c063a Add DH groups 2048,3072,4096 to IPSec_IKE 
src/Cedar/IPsec_IkePacket.c
 2017-01-21 19:20:59 +01:00
Noah O'Donoghue
a5425bcb4e Add files via upload 2016-12-28 14:39:01 +07:00
dnobori
4df2eb4f9c v4.22-9634-beta 2016-11-27 17:43:14 +09:00
Daiyuu Nobori
c9cd73d906 fix conflict 2016-11-27 18:02:30 +09:00
Daiyuu Nobori
2a2f47e0c8 Merge pull request #127 from nna774/fix/vpncmd-LogFileGet 
fix LogFileGet won't save to SAVEPATH
 2016-11-27 17:57:47 +09:00
Daiyuu Nobori
86d87d1ac4 fix conflict 2016-11-27 17:57:00 +09:00
Daiyuu Nobori
5f8ce287c3 Merge pull request #133 from yehorov/master 
Add the possibility to send the Virtual Hub Name to an external DHCP server
 2016-11-27 17:55:04 +09:00
Daiyuu Nobori
697bff4023 Merge pull request #165 from micsell/cpupatch 
Fixed OSX CPU utilization by replacing broken kevent() with select()
 2016-11-27 17:54:57 +09:00
Daiyuu Nobori
7c30cddedb Merge pull request #178 from mcsalgado/fix_initialization 
Fix set initialization, set.OnlyCapsuleModeIsInvalid could be garbage
 2016-11-27 17:54:17 +09:00
Daiyuu Nobori
034a213c2c Merge pull request #204 from LegDog/master 
Adding Radius AVP Called-Station-Id
 2016-11-27 17:53:45 +09:00
Daiyuu Nobori
712adc6d74 resolved the conflict 2016-11-27 17:48:18 +09:00
Daiyuu Nobori
cc8fff4d81 Merge pull request #217 from lewellyn/patch-1 
Default to TLS connections only
 2016-11-27 17:25:15 +09:00
Daiyuu Nobori
5cae447c79 Merge pull request #229 from chipitsine/master 
cppcheck issues
 2016-11-27 17:25:03 +09:00
Luiz Eduardo Gava
ced0856ab1 HTTPS /wiki redir to 443 (test) 2016-11-08 14:44:35 -02:00