Bug #14919
closed
OpenVPN forms invalid ``route`` statements for empty local networks
Added by aleksei prokofiev 8 months ago.
Updated 4 months ago.
Plus Target Version:
24.03
Affected Architecture:
All
Description
If I specify IPv4 Local networks in OpenVPN server and leave comma in end of the list, in config will be presented push "route 0.0.0.0"
![](/attachments/download/5530/clipboard-202310252000-gfdgr.png)
In config
push "route 192.168.168.0 255.255.255.0"
push "route 10.0.0.0 255.255.255.0"
push "route 0.0.0.0"
If delete a trailing comma, all will be as expected
push "route 192.168.168.0 255.255.255.0"
push "route 10.0.0.0 255.255.255.0"
Files
- Project changed from pfSense Plus to pfSense
- Category changed from OpenVPN to OpenVPN
- Target version set to 2.8.0
- Affected Plus Version deleted (
23.05.1)
- Plus Target Version set to 24.03
It should trim/ignore any empty entries like that, but it may not be catching that case properly.
- Subject changed from OpenVPN incorrect validation of config to OpenVPN forms invalid ``route`` statement for empty local networks
- Status changed from New to Confirmed
I can replicate the issue on the:
23.05.1-RELEASE (amd64)
built on Wed Jun 28 03:57:27 UTC 2023
FreeBSD 14.0-CURRENT
Can reproduce it on BETA
23.09-BETA (amd64)
built on Mon Oct 23 20:01:00 MSK 2023
FreeBSD 14.0-CURRENT
With comma, the server config contains:
push "route 192.168.4.0 255.255.254.0"
push "route 172.30.0.0 255.255.255.0"
push "route 0.0.0.0"
Tested against:
23.09.1-RELEASE (amd64)
built on Wed Dec 20 18:27:00 UTC 2023
FreeBSD 14.0-CURRENT
I am able to replicate the issue.
Tested on
24.03-DEVELOPMENT (amd64)
built on Fri Jan 26 9:00:00 MSK 2024
FreeBSD 15.0-CURRENT
The issue still presented.
- Assignee set to Jim Pingle
- Status changed from Confirmed to Feedback
- % Done changed from 0 to 100
- Status changed from Feedback to Resolved
Can't reproduce it on a current snapshot now, so it appears the fix is working as expected.
Worth noting this affected anything that generated OpenVPN route statements, not just that one field.
- Subject changed from OpenVPN forms invalid ``route`` statement for empty local networks to OpenVPN forms invalid ``route`` statements for empty local networks
Also available in: Atom
PDF