git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Marco Baffo <marco@mandelbit.com>
	Thu, 9 Oct 2025 18:28:49 +0000 (20:28 +0200)
committer	Gert Doering <gert@greenie.muc.de>
	Fri, 10 Oct 2025 14:34:51 +0000 (16:34 +0200)
commit	855094893e8cd808ddc74d2e6d392cf04bd06a65
tree	f76401d99dbb295af062ea024869f5fa5f172be0	tree \| snapshot
parent	107f80b8e3102cca3a2cc008d37895f96ec2f17c	commit \| diff

PUSH_UPDATE server: check IV_PROTO before sending the message to the client

Before sending the PUSH_UPDATE message to the client, we must verify that
the client has actually sent IV_PROTO_PUSH_UPDATE to the server, declaring that
it supports push-updates.

Also fixed a gc_arena memory leak in one of the error paths and asserted
mi->context.c2.tls_multi .

Change-Id: I7c28da72be11c7efbed3068fbfc65f2959227bec
Signed-off-by: Marco Baffo <marco@mandelbit.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/1255
Message-Id: <20251009182855.18712-1-gert@greenie.muc.de>
URL: https://sourceforge.net/p/openvpn/mailman/message/59244566/
Signed-off-by: Gert Doering <gert@greenie.muc.de>

src/openvpn/push_util.c		diff \| blob \| blame \| history
tests/unit_tests/openvpn/test_push_update_msg.c		diff \| blob \| blame \| history