Hi, On Wed, Sep 28, 2016 at 11:33:51AM +0200, Steffan Karger wrote: > The NCP code does a strcmp(options->ciphername, ...) without first checking > whether options->ciphername is NULL. This could cause a crash when using > "--cipher none". This patch fixes that problem by ensuring that > options->ciphername (and options->authname) are never NULL. Ensuring that > options->ciphername is never null prevents us from having to write null > checks everywhere.
Another ACK from me. Looks reasonable :-) - and passes all tests. (Which
means I need more tests to actually catch the next "cipher none" breakage
quicker)
Your patch has been applied to master. Due to differences in surrounding
code (which do not affect this change) I had to do it manually - code change
is the same, patch looks different. Please verify that it's all as it
should be :-)
commit 348c416face9a025b618ebcae9d3a74c5a4a242b
Author: Steffan Karger <stef...@karger.me>
Date: Wed Sep 28 12:40:51 2016 +0200
Make sure options->ciphername and options->authname are always defined
Signed-off-by: Steffan Karger <stef...@karger.me>
Acked-by: Arne Schwabe <a...@rfc2549.org>
Acked-by: Gert Doering <g...@greenie.muc.de>
Message-Id: <1475055231-1778-1-git-send-email-stef...@karger.me>
URL:
https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg12576.html
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
