September 8, 2008 | ||
---|---|---|
View 1c4af9e
Fixed bug in intra-session TLS key rollover that was introduced with deferred authentication features in 2.1_rc8.james authored on 2008/09/08 12:52:52 |
September 6, 2008 | ||
---|---|---|
View b8fb090
2.1_rc8 and earlier did implicit shell expansion on script arguments since all scripts were called by system(). The security hardening changes made to 2.1_rc9 no longer use system(), but rather use the safer execve or CreateProcess system calls. The security hardening also introduced a backward incompatibility with 2.1_rc8 and earlier in that script parameters were no longer shell-expanded, so for example:james authored on 2008/09/06 18:42:17 |
August 11, 2008 | ||
---|---|---|
View c282a2c
Workaround bug in OpenSSL 0.9.6b ASN1_STRING_to_UTF8, which the new implementation of extract_x509_field_ssl depends on.james authored on 2008/08/11 07:37:18 |
July 26, 2008 | ||
---|---|---|
View 5a2e9a2
Completely revamped the system for calling external programs and scripts:james authored on 2008/07/26 16:27:03 |
July 19, 2008 | ||
---|---|---|
View 564cbab
Modified extract_x509_field_ssl to return a status value indicating success/error, and any truncation of output due to an insufficiently large output buffer will be cause for error.james authored on 2008/07/19 12:33:27 |
||
View 7621883
Replace leading dash ('-') characters in an X509 name with underbars ('_') before calling user-defined scripts, to preclude the chance of a leading dash being interpreted as an option prefix.james authored on 2008/07/19 09:29:31 |
July 18, 2008 | ||
---|---|---|
View b1d8021
Removed old version of extract_x509_field.james authored on 2008/07/18 04:07:41 |
July 15, 2008 | ||
---|---|---|
View 1c0cc4a
Copyright change OpenVPN Solutions LLC -> Telethra, Inc.james authored on 2008/07/15 03:59:09 |
June 12, 2008 | ||
---|---|---|
View eca8691
Updated copyright notice to 2008.james authored on 2008/06/12 06:59:26 |
June 11, 2008 | ||
---|---|---|
View 90efcac
Updated version to 2.1_rc7e.james authored on 2008/06/11 17:45:09 |
June 4, 2008 | ||
---|---|---|
View 9712c4c
Fixed an issue in extract_x509_field_ssl where the extraction would fail on the first field of the subject name, such as the common name in:james authored on 2008/06/04 15:17:53 |
||
View 47ae845
Incremented version to 2.1_rc7d.james authored on 2008/06/04 14:16:44 |
May 25, 2008 | ||
---|---|---|
View 344ee91
Support asynchronous/deferred authentication in OPENVPN_PLUGIN_AUTH_USER_PASS_VERIFY plugin handler.james authored on 2008/05/25 08:26:11 |
May 13, 2008 | ||
---|---|---|
View 1bda73a
Moved branch into official BETA21 position.james authored on 2008/05/13 05:31:43 |
February 17, 2008 | ||
---|---|---|
View 522fccc
The new function extract_x509_field_ssl tends to break in early versions of OpenSSL 0.9.6. Now we will fall back to the old function extract_x509_field for OpenSSL 0.9.6.james authored on 2008/02/17 17:21:28 |