Bug#768123: marked as done (openvpn: --auth-user-pass FILE' and '--auth-nocache' problem)

[Debian Bug Tracking System]

Your message dated Tue, 03 Oct 2017 23:07:39 +0200
with message-id <1507064859.6738.126.ca...@jff-webhosting.net>
and subject line Re: openvpn: --auth-user-pass FILE' and '--auth-nocache' 
problem
has caused the Debian Bug report #768123,
regarding openvpn: --auth-user-pass FILE' and '--auth-nocache' problem
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
768123: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768123
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: openvpn
Version: 2.3.4-3
Severity: bug

Please apply given patch to solve this annoying bug, described in
https://community.openvpn.net/openvpn/ticket/225, but still not fixed
upstream.

Patch idea are simple - add additional variable to tls_options structure
to store user passwd file name, set it on init, and on regen time supply
given file name to needed procedure instead of NULL.

Best regards,

Tomas Martišius





Description: <short summary of the patch>
 TODO: Put a short summary on the line above and replace this paragraph
 with a longer explanation of this change. Complete the meta-information
 with other relevant fields (see below for details). To make it easier, the
 information below has been extracted from the changelog. Adjust it or drop
 it.
 .
 openvpn (2.3.4-1~1) unstable; urgency=medium
 .
   * New upstream version.
   * Rebuilt for wheezy.
Author: Tomas Martisius <to...@puga.vdu.lt>

---
The information above should follow the Patch Tagging Guidelines, please
checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here
are templates for supplementary fields that you might want to add:

Origin: <vendor|upstream|other>, <url of original patch>
Bug: <url in upstream bugtracker>
Bug-Debian: http://bugs.debian.org/<bugnumber>
Bug-Ubuntu: https://launchpad.net/bugs/<bugnumber>
Forwarded: <no|not-needed|url proving that it has been forwarded>
Reviewed-By: <name and email of someone who approved the patch>
Last-Update: <YYYY-MM-DD>

--- openvpn-2.3.4.orig/src/openvpn/init.c
+++ openvpn-2.3.4/src/openvpn/init.c
@@ -2240,6 +2240,7 @@ do_init_crypto_tls (struct context *c, c
   to.auth_user_pass_verify_script = options->auth_user_pass_verify_script;
   to.auth_user_pass_verify_script_via_file = options->auth_user_pass_verify_script_via_file;
   to.tmp_dir = options->tmp_dir;
+  to.auth_user_pass_file = options->auth_user_pass_file;
   if (options->ccd_exclusive)
     to.client_config_dir_exclusive = options->client_config_dir;
 #endif
--- openvpn-2.3.4.orig/src/openvpn/ssl_common.h
+++ openvpn-2.3.4/src/openvpn/ssl_common.h
@@ -277,6 +277,7 @@ struct tls_options
   const char *auth_user_pass_verify_script;
   bool auth_user_pass_verify_script_via_file;
   const char *tmp_dir;
+  const char *auth_user_pass_file;
 
   /* use the client-config-dir as a positive authenticator */
   const char *client_config_dir_exclusive;
--- openvpn-2.3.4.orig/src/openvpn/ssl.c
+++ openvpn-2.3.4/src/openvpn/ssl.c
@@ -1898,9 +1898,9 @@ key_method_2_write (struct buffer *buf,
   if (auth_user_pass_enabled)
     {
 #ifdef ENABLE_CLIENT_CR
-      auth_user_pass_setup (NULL, session->opt->sci);
+      auth_user_pass_setup (session->opt->auth_user_pass_file, session->opt->sci);
 #else
-      auth_user_pass_setup (NULL, NULL);
+      auth_user_pass_setup (session->opt->auth_user_pass_file, NULL);
 #endif
       if (!write_string (buf, auth_user_pass.username, -1))
 	goto error;

signature.asc
Description: OpenPGP digital signature

--- End Message ---

--- Begin Message ---

Now closed.

CU
Jörg
-- 
New:
GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB  30EE 09F8 9F3C 8CA1 D25D
GPG key (long) : 09F89F3C8CA1D25D
GPG Key        : 8CA1D25D
CAcert Key S/N : 0E:D4:56

Old pgp Key: BE581B6E (revoked since 2014-12-31).

Jörg Frings-Fürst
D-54470 Lieser

Threema: SYR8SJXB
Wire:  @joergfringsfuerst
Skype: joergpenguin
Ring:  jff

IRC: j_...@freenode.net
     j_...@oftc.net

My wish list: 
 - Please send me a picture from the nature at your home.

signature.asc
Description: This is a digitally signed message part

--- End Message ---