Am 13.07.20 um 11:32 schrieb Gert Doering:
> ssl_ncp.c:ncp_get_best_cipher() would crash if a client connects without
> NCP (or with a NCP cipher list that does not contain the first NCP cipher
> in the server list) due to a NULL pointer strcmp().
>
> Work around / fix by just assigning an empty string to remote_cipher here
> ("not NULL but will never match either").
>
> Add new warning message in multi.c for the "we do not know what the
> client can do" case (no NCP and non-helpful OCC), rewrapped the existing
> message to keep line lenght limit. tpyoAcked-By: Arne Schwabe <a...@rfc2549.org>
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
