| 1 | | == Introduction == |
| 2 | | |
| 3 | | This page lists current status of patches for OpenVPN. The entries are generated using ''parseOvpn.py'' attached to this page. |
| 4 | | |
| 5 | | == Patches under review == |
| 6 | | ||= Date =||= Patch =||= Author =||= Remarks =|| || |
| 7 | | || 2013-08-22 ||[[http://article.gmane.org/gmane.network.openvpn.devel/7841| [PATCH] Add timeout option for socks proxies]] || Nathan Ferch <nf+github@marginal.net> || Part of unified timeout patch, no longer relevant. || |
| 8 | | || 2014-02-26 ||[[https://github.com/OpenVPN/openvpn/pull/13| [openvpn] add option to use user defined routing table (#13) ]] || hecke <notifications@github.com> || Gert has reviewed, sent to submitter || |
| 9 | | || 2014-03-11 ||[[http://news.gmane.org/find-root.php?message_id=<988771394532734@web13h.yandex.ru>| Re: [PATCH] Flood unicast packet with unknowndestination to all clients ]] || Vladimir Kamarzin <vvk@vvk.pp.ru> || Gert will review || |
| 10 | | || 2014-04-16 ||[[http://news.gmane.org/find-root.php?message_id=<1397645317-20116-1-git-send-email-Holger.Kummert@Sophos.com>| Fixes for HTTP proxy authentication with NTLM ]] || Holger Kummert <Holger.Kummert@Sophos.com> || Steffan will review. Code needs review for security, assume NTLM works || |
| 11 | | || 2014-05-09 ||[[http://news.gmane.org/find-root.php?message_id=<20140509162908.375CFE0247@pstew.mtv.corp.google.com>| [PATCH] Export --redirect-gateway parameters ]] || Paul Stewart <pstew@chromium.org> || Gert has reviewed, answer from original author outstanding || |
| 12 | | || 2014-05-28 ||[[http://news.gmane.org/find-root.php?message_id=<CAKaFssH7oS=FdmYYs9PfNtPDRXQcs_5G4XWrpTnGcmM1V5ktJA@mail.gmail.com>| [PATCH] Add namespace option when using iproute2 ]] || Jared Casper <jaredcasper@gmail.com> || Gert will review, Arne will too || |
| 13 | | || 2014-07-20 ||[[http://news.gmane.org/find-root.php?message_id=<53CC04B8.1070808@usa.net>| [PATCH] Support IPv6 env-vars for server-providedIPs ]] || Josh Cepek <josh.cepek@usa.net> || Lev will review, provide extra patch if required || |
| 14 | | || 2014-08-11 ||[[http://news.gmane.org/find-root.php?message_id=<1407707108-16310-1-git-send-email-gavin.shrubbery@gmail.com>| [PATCH] Tease apart ipv6 and ipv4 ifconfig code. ]] || Gavin Shrubbery <gavin.shrubbery@gmail.com> || Gert will review || |
| 15 | | || 2014-11-28 ||[[ https://github.com/stipa/openvpn/commit/431e5684f73101c125d0151e4601a28a46b24ec5 | Send push reply right after async auth complete (inotify) ]] || Lev Stipakov <lstipakov@gmail.com> || David reviewed, on ML || |
| 16 | | || 2015-01-17 ||[[http://news.gmane.org/find-root.php?message_id=<1421497831-3424-1-git-send-email-fabian.knittel@lettink.de>| [PATCH v2 0/9] Refactor client-connect / addsupport for deferred handling ]] || Fabian Knittel <fabian.knittel@lettink.de> || Used in production for a while, David will review || |
| 17 | | || 2015-03-02 ||[[http://news.gmane.org/find-root.php?message_id=<1425307892-14258-1-git-send-email-lstipakov@gmail.com> | [PATCH] Client-side handling of OCC_SERVER_EXIT ]] || Lev Stipakov <lstipakov@gmail.com> || See previous || |
| 18 | | || 2015-07-02 ||[[http://news.gmane.org/find-root.php?message_id=<55950ACC.1000909@nikhef.nl>| [PATCH] Add TFTP and WPAD DHCP options ]] || Jan Just Keijser <janjust@nikhef.nl> || Arne has reviewed || |
| 19 | | || 2015-10-09 ||[[http://article.gmane.org/gmane.network.openvpn.devel/10219| [PATCH] Add TFTP and WPAD DHCP options V4]] || Jan Just Keiser <janjust@nikhef.nl> || || |
| 20 | | || 2015-07-08 ||[[http://news.gmane.org/find-root.php?message_id=<1436391455-4671-1-git-send-email-tim@seoss.co.uk>| [PATCH 0/4] RFC changes to the auth-pam plugin. ]] || Tim Small <tim@seoss.co.uk> || David will review || |
| 21 | | || 2015-08-25 ||[[http://mid.gmane.org/<CAAWBBYNiMbWmBgtp1cMc=Pz9V5dBwr71nOfdEOVWYfWg=_HtNA@mail.gmail.com>| [PATCH] Added two features to Network AddressTranslator ]] || Rafael Gava <gava100@gmail.com> || followup patch missing || |
| 22 | | || 2017-02-17 || [[https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg14066.html | [PATCH v2] Allow changing cipher from a ccd file ]] || Steffan Karger <steffan@karger.me> || Fix verified in #845, Awaiting review || |
| 23 | | |
| 24 | | |
| 25 | | == Patches sets under review == |
| 26 | | |
| 27 | | === tls-crypt-v2 === |
| 28 | | ==== Action needed ==== |
| 29 | | |
| 30 | | ||= Patch title =||= Status =|| |
| 31 | | |
| 32 | | ==== Done ==== |
| 33 | | |
| 34 | | ||= Patch title =|| |
| 35 | | || [https://www.mail-archive.com/search?l=all&q=<20170707102238.8781-1-a@unstable.cc> tls-crypt: avoid warnings when --disable-crypto is used] || |
| 36 | | || [https://www.mail-archive.com/search?l=all&q=<20170725210234.5673-1-steffan@karger.me> Move create_temp_file() out of #ifdef ENABLE_CRYPTO] || |
| 37 | | || [https://www.mail-archive.com/search?l=all&q=<1500993182-24246-1-git-send-email-steffan.karger@fox-it.com> tls-crypt: introduce tls_crypt_kt()] || |
| 38 | | || [https://www.mail-archive.com/search?l=all&q=<20170707044704.7239-1-a@unstable.cc> crypto: create function to initialize encrypt and decrypt key] || |
| 39 | | |
| 40 | | == Rejected Patches == |
| 41 | | ||= Date =||= Patch =||= Author =||= NACKED =|| |
| 42 | | || 2014-04-17 ||[[http://news.gmane.org/find-root.php?message_id=<55223.109.81.184.65.1397695567.squirrel@mail.actumg2.cz>| [PATCH] Channel Binding Key based on Keying Material Exporters [RFC 5705] ]] || "Daniel Kubec" <niel@rtfm.cz> || Not fully RFC5705-compliant, should leverage crypto lib ekm functions (changed in later patches) || |
| 43 | | || 2013-06-03 ||[[http://thread.gmane.org/gmane.network.openvpn.devel/7653 | Adding support for AEAD cipher modes (AES-GCM,et al.) ]] || Kenny Root <kenny@the-b.org> || Breaks tls-auth, alternative implementation with more optimisations is in the works (as discussed on Munich hackathon) || |
| 44 | | || 2014-03-04 ||[[http://news.gmane.org/find-root.php?message_id=<1393929449-423915-1-git-send-email-vvk@vvk.pp.ru>| [PATCH] Extract MAC addresses from ARP packets ]] || "Vladimir V. Kamarzin" <vvk@vvk.pp.ru> || See discussion on mailing list || |
| 45 | | || 2013-08-08 ||[[http://news.gmane.org/find-root.php?message_id=<CANfRfr0zuKi5mf0vAFXPvnRtrsyyFx3EtpGpbzNJsCLBnqZxLA@mail.gmail.com>| [PATCH 2/2] When using UDP over SOCKS5, send the actual remote hostname (FQDN) to the proxy server in the first packet. ]] || Jesse Glick <jglick@cloudbees.com> || See discussion on mailing list || |
| 46 | | || 2013-09-15 ||[[http://news.gmane.org/find-root.php?message_id=<l142b7$15v$1@ger.gmane.org>| [PATCH] Fix file access checks when using --chroot ]] || Josh Cepek <josh.cepek@usa.net> || See discussion on mailing list || |
| 47 | | || 2013-10-21 ||[[http://thread.gmane.org/gmane.network.openvpn.devel/7919 | [PATCH] Properly quote command and arguments passed to system() in down-root ]] ||[[https://github.com/OpenVPN/openvpn/pull/9 | crass via GitHub ]]|| Patch replacing system() with execve() sent to ML || |
| 48 | | || 2013-10-14 ||[[http://article.gmane.org/gmane.network.openvpn.devel/7917 | [PATCH] Floating: Add support for floating in TLSmode ]] || André Valentin <avalentin@marcant.net> || instead new packet format with session id|| |
| 49 | | || 2013-12-10 ||[[http://news.gmane.org/find-root.php?message_id=<OpenVPN/openvpn/pull/10@github.com>| [openvpn] Custom control messages & trigger (#10) ]] || andreax79 <notifications@github.com> || Patch needs work. Problem trying to solve not really understood || |
| 50 | | || 2014-09-03 ||[[http://news.gmane.org/find-root.php?message_id=<SNT148-W76BE9A56DA884B570B3DCE99C40@phx.gbl>| [PATCH] kill command with IPv6 client address and port ]] || 張 世杰 <roy8119425@hotmail.com> || || |
| 51 | | || 2015-03-03 ||[[http://news.gmane.org/find-root.php?message_id=<BLU180-W61AEF90310F06E613590DDAB110@phx.gbl>| [PATCH] Make openvpn management kill commandsupport killmsg ]] || ShanYafeng <cuckoo@kokonur.me> || || |
| | 1 | This page is **obsolete**. You can find the current list of patches in [https://patchwork.openvpn.net/project/openvpn2/list/ Patchwork]. |
