| Message ID | 7d0f973d08473c99b498bb8467de800cd950a154-HTML@gerrit.openvpn.net |
|---|---|
| State | New |
| Headers | show
Return-Path: <openvpn-devel-bounces@lists.sourceforge.net>
Delivered-To: patchwork@openvpn.net
Received: by 2002:a05:7000:b7cb:b0:5e7:b9eb:58e8 with SMTP id
en11csp2193554mab;
Mon, 20 Jan 2025 04:12:55 -0800 (PST)
X-Forwarded-Encrypted: i=2;
AJvYcCUfSR0M/taf3Ad5cqpm+jU+Wgmwx2YGlMHwoupxpvxg7IZcoP27jw1rAjX31mSYhgfUK+4ZCHdiWVQ=@openvpn.net
X-Google-Smtp-Source:
AGHT+IEmNAW6WH4sszy7jqjP8Mr6tcZR28DzUdnK/g0EZ2YRLU1Yh+tcQNHuguYEAFZtiGCkH9Aj
X-Received: by 2002:a05:6808:1b8e:b0:3e6:147:6c5 with SMTP id
5614622812f47-3f19fc15668mr8976176b6e.10.1737375174944;
Mon, 20 Jan 2025 04:12:54 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1737375174; cv=none;
d=google.com; s=arc-20240605;
b=U1K+Irc9huZ/gooiynfmFl4MklK4gp/6A3hfdIDFZyahGqUel2BIkpv1ayrJ9m0CZe
lIDKkA2fIX53WMeiINXWk8ZKP6c1ZS3VZ9AETZ+TbG0U+0WfruXtzKxzsLbX22D6SvxB
xb6BBlaz9EgnnBakY0AMZ2RIzHfbsc25BFpOU85LL+g+Ze1HO+HE47W1Y1fTeUFijIxU
HgkYWfqZXtHBkLCvt62Lgb4AoY7r4wzoEKH4difpjf10sj9ilcbwfcBK03hnIDIB+Q2l
J5JjKuHRSroXfSu2ljrvtdeuid2HGbsXRPz0UsvPH6QZrASygmEIBpuqpgBFinQoxNbg
7k4Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20240605;
h=errors-to:cc:reply-to:list-subscribe:list-help:list-post
:list-archive:list-unsubscribe:list-id:precedence:subject:user-agent
:mime-version:message-id:references:auto-submitted:to:date:from
:dkim-signature:dkim-signature:dkim-signature;
bh=MWtRPV6snmSTZ33zE7M0FYK5ERc2O81gL9NAhsl4o0M=;
fh=lm0MLPW7DntlrDqRECIiC9JlE1uPxhepE0URYHIf+eE=;
b=P+rzpi8kXv60KS7pzwOjASe8WMQfxj1YDfmCKelYGORjkmJjcc/hWeJk8Wd95FH+Om
uyS4lo8aoMGNdWPiyzy546wkFD2prDyrDjzW7svQcxsSlQbRrW3YEL3DPnRN5ppQ96OE
5/yqCcPMv7+dDYgLMbyPKRiZkDw9htRkPaCjVR9aMkR7/wtVNKHU+vgx5+oFg2KO1QTq
d7AG4l387s2pJl1bgMKtyCJG9H4+8Tpc6IuK4jLJ803aZpyNzl/yFpIQT89Y124b11GU
RpvQaP30mRyH0lBqI0UcJioAhLpH8f8t6lp/FgQJBTxaRdY4te9MCjdkKRr2JMPtXIr8
Qe5w==;
dara=google.com
ARC-Authentication-Results: i=1; mx.google.com;
dkim=neutral (body hash did not verify) header.i=@sourceforge.net
header.s=x header.b=TvTl75O2;
dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x
header.b=N5PtjaMt;
dkim=neutral (body hash did not verify) header.i=@openvpn.net
header.s=google header.b=FDeHNegG;
spf=pass (google.com: domain of
openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as
permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=openvpn.net;
dara=fail header.i=@openvpn.net
Received: from lists.sourceforge.net (lists.sourceforge.net. [216.105.38.7])
by mx.google.com with ESMTPS id
5614622812f47-3f19dbae8dasi7326973b6e.214.2025.01.20.04.12.54
(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);
Mon, 20 Jan 2025 04:12:54 -0800 (PST)
Received-SPF: pass (google.com: domain of
openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as
permitted sender) client-ip=216.105.38.7;
Authentication-Results: mx.google.com;
dkim=neutral (body hash did not verify) header.i=@sourceforge.net
header.s=x header.b=TvTl75O2;
dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x
header.b=N5PtjaMt;
dkim=neutral (body hash did not verify) header.i=@openvpn.net
header.s=google header.b=FDeHNegG;
spf=pass (google.com: domain of
openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as
permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=openvpn.net;
dara=fail header.i=@openvpn.net
Received: from [127.0.0.1] (helo=sfs-ml-2.v29.lw.sourceforge.com)
by sfs-ml-2.v29.lw.sourceforge.com with esmtp (Exim 4.95)
(envelope-from <openvpn-devel-bounces@lists.sourceforge.net>)
id 1tZqe8-0008Pu-7t;
Mon, 20 Jan 2025 12:12:48 +0000
Received: from [172.30.29.66] (helo=mx.sourceforge.net)
by sfs-ml-2.v29.lw.sourceforge.com with esmtps (TLS1.2) tls
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95)
(envelope-from <gerrit@openvpn.net>) id 1tZqe6-0008Ph-Tp
for openvpn-devel@lists.sourceforge.net;
Mon, 20 Jan 2025 12:12:46 +0000
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
d=sourceforge.net; s=x; h=Content-Type:Content-Transfer-Encoding:MIME-Version
:Message-ID:Reply-To:References:Subject:List-Unsubscribe:List-Id:Cc:To:Date:
From:Sender:Content-ID:Content-Description:Resent-Date:Resent-From:
Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:List-Help:
List-Subscribe:List-Post:List-Owner:List-Archive;
bh=MqjzpD/rPtrpL4cifrPIjXPLrJFszNOcXXfsW9ddOuI=; b=TvTl75O2UnFGQM245x9lFEdDRd
rU01dNhjhit4bld5FLOIrKuWbeyAeULjoJ+kP9RT0djZjAgwXPegoGgYU2KqzggpjcglOtDJFjaOq
+d+qRbLqyfKNzBzttBrtuYKBuIfcbsQX4AIFofwC/c+R0Q8nfhCwNopIwOS/iGY9B7gs=;
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x
;
h=Content-Type:Content-Transfer-Encoding:MIME-Version:Message-ID:Reply-To:
References:Subject:List-Unsubscribe:List-Id:Cc:To:Date:From:Sender:Content-ID
:Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:
Resent-Cc:Resent-Message-ID:In-Reply-To:List-Help:List-Subscribe:List-Post:
List-Owner:List-Archive; bh=MqjzpD/rPtrpL4cifrPIjXPLrJFszNOcXXfsW9ddOuI=; b=N
5PtjaMt2EuIkZUAMfs/zxjriJ/NoAkDXkC1N2QAk1wXPnOGzwSbdDdeEoQ8NBa+7vc+6UDACIlISK
wVUm7ZhFztwX2fjjKVcZs1rDG3B2xAHC7BQYVuJ2X5keMBK9QnUvn2NIkwG2KGnEUaM0oAr/E0Arb
VQWYfKNY9u0WBF1U=;
Received: from mail-wm1-f44.google.com ([209.85.128.44])
by sfi-mx-2.v28.lw.sourceforge.com with esmtps
(TLS1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.95)
id 1tZqe4-0001Cw-VV for openvpn-devel@lists.sourceforge.net;
Mon, 20 Jan 2025 12:12:46 +0000
Received: by mail-wm1-f44.google.com with SMTP id
5b1f17b1804b1-436326dcb1cso30139035e9.0
for <openvpn-devel@lists.sourceforge.net>;
Mon, 20 Jan 2025 04:12:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=openvpn.net; s=google; t=1737375158; x=1737979958;
darn=lists.sourceforge.net;
h=user-agent:content-disposition:content-transfer-encoding
:mime-version:message-id:reply-to:references:subject
:list-unsubscribe:list-id:auto-submitted:cc:to:date:from:from:to:cc
:subject:date:message-id:reply-to;
bh=MqjzpD/rPtrpL4cifrPIjXPLrJFszNOcXXfsW9ddOuI=;
b=FDeHNegGBNdaqtlZywmuLdx5r1S8Wiw0wSrqz7mrRFFz/Km4zh1D3WfLYn7l3/LTDS
oVJZ7TeyZN7UHGL3WMlZA+QX65fWRTxjsY9T2Sjf+I3/DP6kXoQcgR4ZwZxPmjE2qViv
Y/QUUXOMiMW5j28v959ZZb80te5LTfM0TIZ+XfVuHe9Yp1Xqn75gS3+HhlqTG5GWt4lh
LJUQEvsCf6QqQuFSbOMHw6Y6xrAsyUCt6T/GH9/sbKIYaYJWhQWpBWkhTRlag//Y1aKW
u8IMf0zfFOwj8hHxe2yYjkgtbtNpOLj4IXGCg4yIq7YAMOSxmPLYnUY8N3UFu9H4aBF1
PgBQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1737375158; x=1737979958;
h=user-agent:content-disposition:content-transfer-encoding
:mime-version:message-id:reply-to:references:subject
:list-unsubscribe:list-id:auto-submitted:cc:to:date:from
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=MqjzpD/rPtrpL4cifrPIjXPLrJFszNOcXXfsW9ddOuI=;
b=ccmwYokWO01BBBIjQ8fLQovWerNPnW1bFh09hTQ801rlZ1Ve1DcBZ5XZU7lNN1MPim
Hwa9MbZAdeqrK50xyd7Bt/+00f4Lb8yFqJpivU/JjLubRrHTBpuPwkv0LhBhq8/O24Cq
P/KzMZT8Gac9C9Xo5EXab/i89xSONbkHb2VO9iVvlrqAbNt46BDaSe44yGl/Xs32PkXD
mvQtW17uW6on06YSrzyz6BE1gBGzARctAMyXYDlxHKHN46FhTrXQ451FUFBR0xN4S1fq
k+CFP6Dm49fj7jM+XSRWOFWvlwKwcYylB9ivwTBeIUrawTXsvMfa7inA/BmCeLBLxkhS
iexw==
X-Gm-Message-State: AOJu0YykQwdeukYBMGKSRuWzKd8bqwRLhdFMe6tUzNwbTfZ2O/aoJm7K
cQuf8JSPR/aY2mc6DAU+XJk0nbLeDEG/STvV6XF6TdwMBVgvRcJzNn7debibf4Us3uzMfatjXtz
f
X-Gm-Gg: ASbGncuu+vIvAw0qRbbzZiPOrVWZHShLMUp0jUUqyDF4gUfSSmsP89Ey4q1y3RJlTWb
t9hgdqHxnVF+f+c7P3K8OWvWxdEitBY/TNLYJlbb3PWGe/4TH9vlC4luAgP6BGxceH5ZY9j1vdg
hANsWUYkAXD2brZm4ULYkPYYp1zUc7YoqwYgFQBrXf4dGkpTWAOi+wqy3oIdgllZ4MbowGsnDgd
oEyWO7yJJ9fmrZy1rFDFg8UKLw8+OZLojxSljWAtxcBY/7mFtK8mMB3E8B9oia7NgpemdO+rnwo
4f1JxQotIho19TwyhKyXl8vKkzXxK3Xh4Hpd+ihkRMo6DNjHbU0e4teqnAq5oQ==
X-Received: by 2002:a05:600c:3593:b0:434:a239:d2fe with SMTP id
5b1f17b1804b1-4389144d62cmr104847555e9.28.1737375158124;
Mon, 20 Jan 2025 04:12:38 -0800 (PST)
Received: from gerrit.openvpn.in
(ec2-18-159-0-78.eu-central-1.compute.amazonaws.com. [18.159.0.78])
by smtp.gmail.com with ESMTPSA id
5b1f17b1804b1-4389041fec5sm139341495e9.19.2025.01.20.04.12.36
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Mon, 20 Jan 2025 04:12:36 -0800 (PST)
From: "plaisthos (Code Review)" <gerrit@openvpn.net>
X-Google-Original-From: "plaisthos (Code Review)" <gerrit@gerrit.openvpn.in>
X-Gerrit-PatchSet: 1
Date: Mon, 20 Jan 2025 12:12:36 +0000
To: flichtenheld <frank@lichtenheld.com>
Auto-Submitted: auto-generated
X-Gerrit-MessageType: newchange
X-Gerrit-Change-Id: Ib8adf7b31cae02e2de3d45da23b76a2d79f13e20
X-Gerrit-Change-Number: 871
X-Gerrit-Project: openvpn
X-Gerrit-ChangeURL: <http://gerrit.openvpn.net/c/openvpn/+/871?usp=email>
X-Gerrit-Commit: 6a6d04b68603db2e53c9c08796844f699085fb39
References:
<gerrit.1737375148000.Ib8adf7b31cae02e2de3d45da23b76a2d79f13e20@gerrit.openvpn.net>
Message-ID: <7d0f973d08473c99b498bb8467de800cd950a154-HTML@gerrit.openvpn.net>
MIME-Version: 1.0
User-Agent: Gerrit/3.8.2
X-Spam-Score: -0.2 (/)
X-Spam-Report: Spam detection software,
running on the system "util-spamd-2.v13.lw.sourceforge.com",
has NOT identified this incoming email as spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Attention is currently required from: flichtenheld. Hello
flichtenheld, I'd like you to do a code review. Please visit
Content analysis details: (-0.2 points, 6.0 required)
pts rule name description
---- ----------------------
--------------------------------------------------
0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The
query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[209.85.128.44 listed in bl.score.senderscore.com]
0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE:
The query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[209.85.128.44 listed in sa-trusted.bondedsender.org]
-0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)
[209.85.128.44 listed in wl.mailspike.net]
-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/,
no trust [209.85.128.44 listed in list.dnswl.org]
0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
-0.0 SPF_PASS SPF: sender matches SPF record
0.0 WEIRD_PORT URI: Uses non-standard port number for HTTP
0.0 HTML_MESSAGE BODY: HTML included in message
0.1 DKIM_SIGNED Message has a DKIM or DK signature,
not necessarily
valid
-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from
envelope-from domain
-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from
author's domain
0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
Colors in HTML
X-Headers-End: 1tZqe4-0001Cw-VV
Subject: [Openvpn-devel] [XS] Change in openvpn[master]: Remove comparing
username to NULL in tls_lock_username
X-BeenThere: openvpn-devel@lists.sourceforge.net
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: <openvpn-devel.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/options/openvpn-devel>,
<mailto:openvpn-devel-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive:
<http://sourceforge.net/mailarchive/forum.php?forum_name=openvpn-devel>
List-Post: <mailto:openvpn-devel@lists.sourceforge.net>
List-Help: <mailto:openvpn-devel-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/openvpn-devel>,
<mailto:openvpn-devel-request@lists.sourceforge.net?subject=subscribe>
Reply-To: arne-openvpn@rfc2549.org, openvpn-devel@lists.sourceforge.net,
frank@lichtenheld.com
Cc: openvpn-devel <openvpn-devel@lists.sourceforge.net>
Content-Type: multipart/mixed; boundary="===============0346348351592601531=="
Errors-To: openvpn-devel-bounces@lists.sourceforge.net
X-getmail-retrieved-from-mailbox: Inbox
X-GMAIL-THRID: =?utf-8?q?1821769911586404919?=
X-GMAIL-MSGID: =?utf-8?q?1821769911586404919?=
X-getmail-filter-classifier: gerrit message type newchange
|
| Series |
[Openvpn-devel,XS] Change in openvpn[master]: Remove comparing username to NULL in tls_lock_username
|
expand
|
diff --git a/src/openvpn/ssl_verify.c b/src/openvpn/ssl_verify.c index 4c4b58d..e7d7ed6 100644 --- a/src/openvpn/ssl_verify.c +++ b/src/openvpn/ssl_verify.c @@ -153,11 +153,11 @@ { if (multi->locked_username) { - if (!username || strcmp(username, multi->locked_username)) + if (strcmp(username, multi->locked_username) != 0) { msg(D_TLS_ERRORS, "TLS Auth Error: username attempted to change from '%s' to '%s' -- tunnel disabled", multi->locked_username, - np(username)); + username); /* disable the tunnel */ tls_deauthenticate(multi); @@ -166,10 +166,7 @@ } else { - if (username) - { - multi->locked_username = string_alloc(username, NULL); - } + multi->locked_username = string_alloc(username, NULL); } return true; }
Attention is currently required from: flichtenheld. Hello flichtenheld, I'd like you to do a code review. Please visit http://gerrit.openvpn.net/c/openvpn/+/871?usp=email to review the following change. Change subject: Remove comparing username to NULL in tls_lock_username ...................................................................... Remove comparing username to NULL in tls_lock_username tls_lock_username is only called in a single place and that place calls this is function with up->username, which is always defined. Change-Id: Ib8adf7b31cae02e2de3d45da23b76a2d79f13e20 Signed-off-by: Arne Schwabe <arne@rfc2549.org> --- M src/openvpn/ssl_verify.c 1 file changed, 3 insertions(+), 6 deletions(-) git pull ssh://gerrit.openvpn.net:29418/openvpn refs/changes/71/871/1