Bug#954264: openvpn-auth-radius: Support for verify-client-cert openvpn 2.4 directive
Package: openvpn-auth-radius
Version: 2.1-7
Followup-For: Bug #954264
X-Debbugs-Cc: yangzhaofengsteven@gmail.com
Dear maintainer,
I also have this problem and see a resolution at
https://github.com/ValdikSS/openvpn-radiusplugin/issues/14#issuecomment-596705958
Also, I have generated a patch for it. It seems to work well with my
server.
--- openvpn-auth-radius-2.1.orig/Config.cpp
+++ openvpn-auth-radius-2.1/Config.cpp
@@ -180,6 +180,15 @@ int Config::parseConfigFile(const char *
this->clientcertnotrequired=true;
}
}
+ if (param == "verify-client-cert")
+ {
+ this->deletechars(&line);
+ //if (line == "verify-client-certoptional" || line == "verify-client-certnone")
+ if (line != "verify-client-certrequired")
+ {
+ this->clientcertnotrequired=true;
+ }
+ }
if (param == "username-as-common-name")
{
this->deletechars(&line);
Regards
-- System Information:
Debian Release: 11.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.102.1-microsoft-standard-WSL2 (SMP w/8 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: unable to detect
Versions of packages openvpn-auth-radius depends on:
ii libc6 2.31-13+deb11u5
ii libgcc-s1 [libgcc1] 10.2.1-6
ii libgcc1 1:8.3.0-6
ii libgcrypt20 1.8.7-6
ii libstdc++6 10.2.1-6
ii openvpn 2.5.1-3
openvpn-auth-radius recommends no packages.
openvpn-auth-radius suggests no packages.
-- no debconf information
Reply to: