aboutsummaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2010-11-18Use stricter snprintf() formatting in socks_username_password_auth() (v3)David Sommerseth1-3/+10
2010-11-14Clean-up: Removing useless code - hash related functionsDavid Sommerseth6-49/+20
2010-11-14Clean-up: Remove more dead and inactive code pathsDavid Sommerseth11-52/+5
2010-11-14Clean-up: Remove pthread and mutex locking codeDavid Sommerseth32-921/+1
2010-11-14Added check for variable CONFIGURE_DEFINES into options.cSamuli Seppänen1-0/+2
2010-11-12Make "topology subnet" work on Solaris (ifconfig + route metric changes by Ka...Gert Doering2-5/+30
2010-11-12Integrate support for TAP mode on Solaris, written by Kazuyoshi Aizawa <admin...Gert Doering1-22/+98
2010-11-12Adding support for SOCKS plain text authenticationPierre Bourdon5-12/+138
2010-06-26Fixed static defined length check to use sizeof()Emilien Mantel1-1/+1
2010-06-17Choose a different field in X509 to be usernameEmilien Mantel4-14/+36
2010-05-04ssl.c: fix use of openvpn_run_script()'s return valueFabian Knittel1-13/+5
2010-04-29Revamped the script-security warning logging (version 2)David Sommerseth8-11/+27
2010-04-22Don't add compile time information if --enable-small is usedDavid Sommerseth1-0/+2
2010-04-22Make use of automake CLEANFILES variable instead of clean-local ruleDavid Sommerseth1-4/+1
2010-04-22Fix dependency checking for configure.h (v2)David Sommerseth3-8/+11
2010-04-08Add comile time information/settings from ./configure to --versionDavid Sommerseth4-0/+85
2010-03-02pkitool lacks expected option "--help"Wil Cooley1-0/+6
2010-03-02Several updates to openvpn.8 (man page updates)Karl O. Pinc1-9/+13
2010-03-02enhance tls-verify possibilityMathieu GIANNECCHINI6-0/+87
2010-03-01Allow 'lport 0' setup for random port bindingEnrico Scholz1-1/+1
2010-02-28remove duplicate code in FREEBSD+DRAGONFLY system-dependent ifconfigGert Doering1-14/+3
2010-02-26Merge branch 'master' into bugfix2.1David Sommerseth1-6/+15
2010-02-26Added mapping files from SVN commit ID to more descriptive commit IDs.David Sommerseth2-0/+2
2010-02-26Fixed an issue in the Management Interface that could causejames1-6/+15
2010-02-19verb 5 logging wrongly reports received bytesDavid Sommerseth1-2/+2
2010-02-18[PATCH] Change verify-cn so cn is no longer hardcoded in openvpn's config fileKarl O. Pinc1-15/+27
2010-02-18Do not randomize resolving of IP addresses in getaddr()David Sommerseth1-3/+2
2010-02-16Added mapping files from SVN commit ID to more descriptive commit IDs.David Sommerseth2-0/+2
2010-01-16Version 2.1.1bjames1-1/+1
2010-01-16Don't advance the connection list on AUTH_FAILED errors.james1-0/+1
2010-01-16Fixed an issue where AUTH_FAILED was not being properly deliveredjames2-13/+35
2010-01-12When aborting in a non-graceful way, try to execute do_close_tun injames3-1/+20
2009-12-11Fixed some breakage in openvpn.spec (which is required to build anv2.1.1james3-2/+12
2009-12-11Version 2.1.0v2.1.0james4-2/+19
2009-12-11Clarified that TAP-Win32 driver is licensed under GPL 2.james19-94/+19
2009-12-11Documented --multihome in the man page.james1-0/+9
2009-12-10Fixed a couple issues in sample plugins auth-pam.c and down-root.c:james2-2/+6
2009-11-20Version 2.1_rc22v2.1_rc22james2-1/+13
2009-11-19Fixed a client-side bug that occurred when the "dhcp-pre-release"james7-33/+141
2009-11-13Increase MAX_CERT_DEPTH to 16 (from 8), and when exceeded,james3-3/+6
2009-11-12Version 2.1_rc21v2.1_rc21james3-2/+18
2009-10-25Version 2.1_rc20ajames1-1/+1
2009-10-25On server, lock client-provided certs against mid-session TLSjames3-5/+156
2009-10-25Change to doval valgrind script. The openvpn command parameter is nowjames2-1/+14
2009-10-24On server, lock session username against changes in mid-session TLSjames2-3/+31
2009-10-16Added "setenv GENERIC_CONFIG" directive, for generic configsjames1-0/+5
2009-10-07Fixed issue where some .svn directories were being inadvertentlyv2.1_rc20james1-1/+1
2009-10-01Version 2.1_rc20james2-1/+51
2009-10-01client-kill management interface command, when issued on server, willjames6-7/+41
2009-10-01Minor fix: management interface shouldn't echo 'load-stats' commands tojames1-1/+1
2009-09-29Added the ability for the server to provide a custom reason stringjames8-14/+84
2009-09-28Fixed a bug introduced in r4436 (2.1_rc17) where using thejames1-2/+2
2009-09-28Added --server-poll-timeout option : when polling possible remotejames8-0/+70
2009-09-27Eliminated the limitation on the number of options that can be pushedjames16-115/+271
2009-09-17The maximum number of "route" directives (specified in the configjames8-30/+86
2009-09-16Modified client to send a PUSH_REQUEST message to server 1 secondjames3-5/+14
2009-09-08Updated version number to 2.1_rc19c.james1-1/+1
2009-09-04Added "setcon" directive for interoperability with SELinuxjames6-4/+104
2009-08-24Added new ./configure flags:james3-3/+23
2009-08-24Added PLATFORM-SPECIFIC comment tag to platform-specific functionsjames1-4/+4
2009-08-23Added "load-stats" management interface command to get globaljames2-0/+27
2009-08-22Added --remote-random-hostname option.james6-10/+89
2009-08-19Fixed ifconfig command for "topology subnet" on FreeBSD (Stefan Bethke).james1-6/+10
2009-08-19Fixed build problem when ./configure --disable-server is used.james1-0/+2
2009-07-16OpenVPN version 2.1_rc19 releasedv2.1_rc19james2-1/+13
2009-06-22In Windows TAP driver, refactor DHCP/ARP packet injection code tojames7-28/+154
2009-06-22Rename generated tapdrvr.cod to a unique name to avoid the issue wherejames1-0/+1
2009-06-09In configure.ac, use datadir instead of datarootdir for compatibilityjames1-1/+1
2009-06-07Version 2.1_rc18v2.1_rc18james2-2/+9
2009-06-07Fixed issue introduced in r4475 (2.1-rc17) where cryptoapi.c changejames1-0/+2
2009-06-01Fixed compile error on ./configure --enable-smalljames1-0/+1
2009-06-01Version 2.1_rc17v2.1_rc17james2-2/+45
2009-05-30Update copyright to 2009.james157-160/+160
2009-05-30Fixed bug where the remote_X environmental variables were not beingjames1-2/+2
2009-05-30Fixed issue of symbol conflicts interfering with Windows CryptoAPIjames4-8/+7
2009-05-24Added new 'autolocal' redirect-gateway flag. When enabled, the OpenVPNjames6-33/+119
2009-05-23Added "redirect-private" option which allows private subnetsjames3-69/+80
2009-05-21Fixed race condition in management interface recv code onjames3-5/+6
2009-05-21Reduce the debug level (--verb) at which received management interfacejames1-1/+1
2009-05-18Version 2.1_rc16v2.1_rc16james2-1/+54
2009-05-13Updated Windows build scripts to package openssl-0.9.8k,james4-21/+21
2009-04-13Added errors-to-stderr option. When enabled, fatal errorsjames3-6/+28
2009-04-10Allow "management-client" directive to be usedjames5-44/+91
2009-04-09Added the ability to read the configuration filejames1-2/+6
2009-02-13install-win32/buildinstaller will now always sign executablejames1-1/+1
2009-01-27Fixed issue involving an #ifdef in a macro reference that breaks early gccjames1-2/+5
2009-01-27Updated common.h types for _WIN64.james1-0/+8
2009-01-27Updated configure.ac to work on MinGW.james1-53/+58
2009-01-27Fixed some compile-time warnings.james4-5/+7
2009-01-27Fixed some issues with C++ style comments that leaked into the code.james2-6/+6
2009-01-21Version 2.1_rc15ejames2-1/+6
2009-01-01In Windows installer generator, don't sign the installer .exejames1-1/+1
2008-12-26Added daemon_start_time and daemon_pid environmental variables.james6-6/+22
2008-12-25Fixed issue where SIGUSR1 restarts would fail if privatejames3-4/+7
2008-12-23Version 2.1_rc15bjames1-1/+1
2008-12-18Added n_clients environmental variable to information passedjames1-4/+20
2008-12-18Added "nclients" command to management interface tojames4-0/+37
2008-12-01Added MultiFileExtract capability to Windows Installer.james4-128/+16
2008-11-30Added ExtractAuxFile capability to Windows Installer.james4-2/+136
2008-11-20Added new management interface command "pid" to show thejames2-0/+10
2008-11-20Added optional "nogw" (no gateway) flag to --server-bridgejames5-84/+101
2008-11-19Version 2.1_rc15v2.1_rc15james2-1/+28
2008-11-19Fixed issue introduced in 2.1_rc14 that may cause ajames1-1/+1
2008-11-18Added --tcp-nodelay option: Macro that sets TCP_NODELAY socketjames5-0/+76
2008-11-18Cleaned up man page synopsis.james1-273/+2
2008-11-18Minor options check fix: --no-name-remapping is ajames1-0/+2
2008-11-18Added server-side --opt-verify option: clients that connectjames4-0/+29
2008-11-18Added --prng option to control PRNG (pseudo-randomjames9-21/+136
2008-11-17Version 2.1_rc14v2.1_rc14james2-8/+8
2008-11-17* Added additional method parameter to --script-security to preservejames14-105/+383
2008-11-16Interim release.james2-1/+87
2008-11-05Minor fix to previous commit (r3476).james1-3/+3
2008-11-04Added config file option "setenv FORWARD_COMPATIBLE 1" to relaxjames3-3/+33
2008-11-03Fixed revoke-full to deal with issue arising from additionjames1-1/+2
2008-11-03Fixed some ifconfig-pool issues that precludedjames3-10/+12
2008-10-31Updated docs to reflect the addition ofjames3-3/+4
2008-10-31Added --no-name-remapping option to allow Common Name, X509 Subject,james4-3/+42
2008-10-31Added --status-version 3 which is the same as version 2james2-25/+28
2008-10-28Modified pkitool to allow flexibility in separatingjames1-14/+20
2008-10-28Added man page entry for new environmental variable setjames1-0/+37
2008-10-28Added server-side --auth-user-pass-optional directive, to allowjames6-21/+57
2008-10-28Change to pkitool/openssl.cnf so that calling scripts canjames2-1/+16
2008-10-28Save X509 Subject fields to environment, using the naming convention:james1-0/+54
2008-10-27Fixed informational message in ssl.c to properly indicatejames1-1/+5
2008-10-24Extended Management Interface "bytecount" commandjames5-29/+153
2008-10-24Added optional files SAMPCONF_CONF2 (second sample configurationjames2-0/+14
2008-10-17Modified Windows domake-win build system to write all openvpn.nsijames5-49/+94
2008-10-15Added additional warning messages about --script-security 2james4-3/+10
2008-10-14Added AC_GNU_SOURCE to configure.ac to enable struct ucred,james3-59/+324
2008-10-08Version 2.1_rc13v2.1_rc13james10-30/+43
2008-10-06Copyright notice changed to reflect change in name ofjames157-198/+194
2008-09-30Management interface can now listen on a unixjames16-45/+693
2008-09-23Version 2.1_rc12v2.1_rc12james2-1/+10
2008-09-19Fixed --lladdr bug introduced in 2.1-rc9 where input validation codejames3-2/+42
2008-09-15Patched Makefile.am so that the new t_cltsrv-down.sh script becomesjames2-2/+3
2008-09-15Version 2.1_rc11v2.1_rc11james4-10/+38
2008-09-10Version 2.1_rc10v2.1_rc10james2-1/+94
2008-09-08Version 2.1_rc9bjames1-1/+1
2008-09-08Fixed bug in intra-session TLS key rollover that was introduced withjames3-18/+68
2008-09-06Modified ip_or_dns_addr_safe, which validates pulled DNS names,james2-4/+16
2008-09-062.1_rc8 and earlier did implicit shell expansion on scriptjames9-363/+350
2008-09-04Added --allow-pull-fqdn option which allows client to pull DNS namesjames5-12/+45
2008-08-11Fixed minor compile issue in ntlm.c (mid-block declaration).james1-2/+4
2008-08-11LZO compression buffer overflow errors will now invalidatejames1-1/+7
2008-08-10Workaround bug in OpenSSL 0.9.6b ASN1_STRING_to_UTF8, whichjames2-5/+2
2008-08-10Fixed build issue with ./configure --disable-socks --disable-http.james3-4/+4
2008-08-10Tagged security fix in 2.1-rc9 as CVE-2008-3459.james1-0/+1
2008-08-10Updated openvpn/t_cltsrv.sh (used by "make check") to conform to newjames2-14/+44
2008-08-05Reverted r3181, accomplish the same thing via a special casejames3-21/+16
2008-08-05Workaround for MinGW autoconf issue where HAVE_SETSOCKOPT,james1-0/+12
2008-08-05Added additional warnings to flag common gotchas:james5-27/+133
2008-08-04Fixed minor issue with --redirect-gateway bypass-dhcp or bypass-dnsjames1-1/+1
2008-08-02Added "--server-bridge" (without parameters) to enablejames14-34/+427
2008-08-01Version 2.1_rc9v2.1_rc9james1-2/+2
2008-07-31In Windows build, package a statically linked openssl.exe to work aroundjames4-13/+6
2008-07-31Updated ChangeLog and version number.james2-1/+22
2008-07-27Added additional warnings for:james1-0/+7
2008-07-27Added additional defensive programming to buffer.[ch] functions.james2-26/+118
2008-07-27Added a warning message when passwords are cached in memory.james1-0/+4
2008-07-26Perform additional input validation on options pulledjames7-64/+230
2008-07-26Fixed compiler warnings in Windows build (MinGW).james6-5/+8
2008-07-26Completely revamped the system for calling external programs and scripts:james23-420/+1098
2008-07-23Added argv_x functions to buffer.[ch] to be used to safely buildjames3-0/+265
2008-07-19buf_printf will now return false on errors, such as truncationjames2-3/+8
2008-07-19Modified extract_x509_field_ssl to return a status value indicatingjames1-37/+41
2008-07-19Replace leading dash ('-') characters in an X509 name with underbars ('_')james3-0/+19
2008-07-18Added a warning when plugins are specified withoutjames3-1/+28
2008-07-18Reverted some recent buffer.[ch] changes, including r3058 (except forjames3-64/+21
2008-07-18Fixed format string issue in read_inline_file,james1-1/+1
2008-07-18status_printf function will now set error flag onjames2-7/+24
2008-07-18gen_path will no longer silently truncate the generatedjames2-1/+15
2008-07-18Fixed code inclusion bug that was erroneously testingjames2-6/+9
2008-07-18Modified create_temp_filename to create unpredictablejames1-5/+12
2008-07-17Previously, OpenVPN might log a client's auth-user-passjames3-2/+19
2008-07-17gen_path now rejects filenames that match Windowsjames3-1/+72
2008-07-17Call prng_init after fork in background processjames1-0/+4
2008-07-17Added warning when using chroot without specifying user and group.james1-0/+3
2008-07-17Check for multiplication overflow on ALLOC_ARRAY* functions.james2-4/+16
2008-07-17Removed old version of extract_x509_field.james1-40/+0
2008-07-17Support wraparound of reliable.[ch] packet IDs. Injames1-12/+44
2008-07-17Fixed a potential information leak in the new NTLM phase 3 code,james2-8/+21
2008-07-17Fixed issue in read_key_file, where the return value ofjames1-1/+3
2008-07-16Added SOCKET_SND_RCV_BUF_MAX constant (set to 1000000) to limit thejames2-5/+16
2008-07-16In the Windows version of tun_finalize, on errors that wouldjames1-1/+6
2008-07-16Used unlikely() macro to tell compiler that msg() willjames1-1/+1
2008-07-16Added likely() and unlikely() branch prediction hint macrosjames4-21/+68
2008-07-14Copyright change OpenVPN Solutions LLC -> Telethra, Inc.james153-159/+159
2008-06-13Version 2.1_rc8v2.1_rc8james2-5/+13
2008-06-11Updated copyright notice to 2008.james150-152/+152
2008-06-11Updated version & changelog.james4-4/+77
2008-06-11Merged connection profiles fromjames23-582/+1076
2008-06-11Updated version to 2.1_rc7e.james30-569/+2495
2008-06-04Added support for building and linking withjames6-6/+91
2008-06-04Fixed unbounded memory growth bug injames3-2/+18
2008-06-04Fixed an issue in extract_x509_field_ssl where the extractionjames1-1/+1
2008-06-04In auth-pam authentication module, even when in debug mode,james1-2/+8
2008-06-04Incremented version to 2.1_rc7d.james26-108/+1210
2008-05-25Fixed a bug in plugin.c that caused openvpn_plugin_client_destructor_v1james6-13/+136
2008-05-24Support asynchronous/deferred authentication injames19-101/+456
2008-05-24Did:james0-0/+0