]> git.ipfire.org Git - thirdparty/openvpn.git/commit
projects / thirdparty / openvpn.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c58b6e7) | patch
Fix logic when pushed cipher triggers tun reopen and ignore more options
authorArne Schwabe <arne@rfc2549.org>
Wed, 29 Oct 2025 06:53:10 +0000 (07:53 +0100)
committerGert Doering <gert@greenie.muc.de>
Wed, 29 Oct 2025 07:14:23 +0000 (08:14 +0100)
commit911a69dc1af20bc54557a208b6fd4e76261b2bb2
treefe3d592d8ea5654f74ce2bfde50691c72e13ff31tree | snapshot
parentc58b6e73c3508b40b3d2f26eebfc3aa4df53e524commit | diff
Fix logic when pushed cipher triggers tun reopen and ignore more options

The logic was inverted. Only when link-mtu is used, pushing a cipher can
change the MTU and not the other way round. (found by zeropath)

Also ignore a few more options that should not trigger a reopen of tun
in push message.

Reported-by: Joshua Rogers <contact@joshua.hu>
Found-by: ZeroPath (https://zeropath.com/)
Change-Id: I76eb584024610a6054a069340adbac988abf686c
Signed-off-by: Arne Schwabe <arne-openvpn@rfc2549.org>
Acked-by: Gert Doering <gert@greenie.muc.de>
Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/1321
Message-Id: <20251029065316.10182-1-gert@greenie.muc.de>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg33989.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
src/openvpn/push.c diff | blob | blame | history
Mirror of https://github.com/OpenVPN/openvpn.git