OpenConnect v9.21 release
David Woodhouse
dwmw2 at infradead.org
Tue Jun 16 04:45:55 PDT 2026
Mihai Donțu reported v9.20 eating CPU attempting to append to a buffer
for creating environment variables for the vpnc-script (#851).
The bug had actually been there for 12 years, but it gets a whole lot
easier to hit it now that we're using the oc_text_buf for building
environment variables too, as we do in v9.20.
Apologies, the Reported-by: tag in the fix commit is complete nonsense;
I was keeping the AI under close scrutiny when it came to the actual
*code* and the Fixes: tag, but the complete hallucination of a
Reported-by: name completely escaped my attention.
Download: https://www.infradead.org/openconnect/download/openconnect-9.21.tar.gz
Signature: https://www.infradead.org/openconnect/download/openconnect-9.21.tar.gz.asc
Ben Walsh (1):
pulse: Test "short reads from ssl_nonblock_read"
David Woodhouse (13):
tests: Support both old and new pyOpenSSL API in fake-cisco-server.py
Fix use of free_pass() on binary oath_secret
Merge branch 'mr/610'
spec: Fix COPR builds for Amazon Linux 2023, EPEL 7/10, and MinGW
Merge branch 'bw-pulse-test-short-read' into 'master'
gnutls_tpm2_esys: Handle NULL passphrase in install_tpm_passphrase()
compat: Add default: to switch to silence uninitialized warning
Fix compiler warnings in fortinet.c and tun-win32.c
Merge branch 'typos' into 'master'
oath: Accept base32 token secrets without trailing padding
textbuf: Fix infinite loop in buf_append() at chunk boundary
Resync translations with sources
Tag version 9.21
Dimitri Papadopoulos Orfanos (3):
Fedora 39 → 44
Update Python fake server scripts for Fedora 44
Fix typos
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5069 bytes
Desc: not available
URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20260616/f1507f37/attachment.p7s>
More information about the openconnect-devel
mailing list