Bug #14919: OpenVPN forms invalid ``route`` statements for empty local networks - pfSense - pfSense bugtracker

Custom queries

2.4.5-p1 - Resolved/Closed
2.5.0 - Resolved/Closed
2.5.1 - Resolved/Closed
2.5.2 - Resolved/Closed
2.6.0 - Resolved/Closed
2.7.0 - Resolved/Closed
2.7.1 - All Open Issues
2.7.1 - Resolved/Closed
2.7.2 - Resolved/Closed
2.8.0 - All Open Bugs
2.8.0 - All Open Features
2.8.0 - All Open Issues
2.8.0 - All Open Regressions
2.8.0 - Feedback
2.8.0 - Needs Attention
2.8.0 - New/Confirmed
2.8.0 - Pull Requests
2.8.0 - Regressions affecting 2.7.0
2.8.0 - Resolved/Closed
21.02.2/2.5.1 - Resolved/Closed
21.05 Plus - All Closed Issues
21.05.1 Plus Target - All Closed Issues
21.05.1 Target - All Closed Issues
22.01 Plus - All Closed Issues
22.01 Target - All Closed Issues
22.05 Plus - All Closed Issues
22.05 Target - All Closed Issues
23.01 Plus - All Closed Issues
23.01 Target - All Closed Issues
23.05 Plus - All Closed Issues
23.05 Target - All Closed Issues
23.05.1 Plus - All Closed Issues
23.05.1 Target - All Closed Issues
23.09 Plus - All Closed Issues
23.09 Target - All Closed Issues
23.09.1 Plus - All Closed Issues
23.09.1 Target - All Closed Issues
24.03 Plus - All Closed Issues
24.03 Target - All Closed Issues
24.11 Plus - All Closed Issues
24.11 Plus - All Open Issues
24.11 Plus - Feedback Issues
24.11 Plus - Needs Attention/Work
24.11 Plus - New/Confirmed/In Progress Issues
24.11 Target - All Closed Issues
24.11 Target - All Open Issues
25.01 Plus - All Closed Issues
25.01 Plus - All Open Issues
25.01 Plus - Feedback Issues
25.01 Plus - Needs Attention/Work
25.01 Plus - New/Confirmed/In Progress Issues
25.01 Plus - Pull Request Review
25.01 Plus - Waiting on Merge
25.01 Target - All Closed Issues
25.01 Target - All Open Issues
All Open Issues assigned to Me
All Open Pull Requests
Any Target - All Open Regressions
Any Target - Feedback Issues
CE-Next - All Closed Issues (Move to specific target)
CE-Next - All Open Issues
CE-Next - Feedback (Likely needs target changed)
New Issues by Category - Future Target
New Issues by Category - No Target
New Issues by Category - No Target+Future
No Target - All Open Issues (Base Only)
No Target - New Issues (Base Only)
No Target - New Issues (Base and Packages)
Release Notes - Plus Target Version (DO NOT EDIT)
Release Notes - Target Version (DO NOT EDIT)

Actions

Copy link

Bug #14919

closed

OpenVPN forms invalid ``route`` statements for empty local networks

Added by aleksei prokofiev about 1 year ago. Updated 8 months ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

OpenVPN

Target version:

2.8.0

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

24.03

Release Notes:

Default

Affected Version:

Affected Architecture:

All

Description

If I specify IPv4 Local networks in OpenVPN server and leave comma in end of the list, in config will be presented push "route 0.0.0.0"

In config
push "route 192.168.168.0 255.255.255.0"
push "route 10.0.0.0 255.255.255.0"
push "route 0.0.0.0"

If delete a trailing comma, all will be as expected
push "route 192.168.168.0 255.255.255.0"
push "route 10.0.0.0 255.255.255.0"

Files

clipboard-202310252000-gfdgr.png (19.8 KB) clipboard-202310252000-gfdgr.png

aleksei prokofiev, 10/25/2023 05:00 PM

History
Notes
Property changes
Associated revisions

Actions

Copy link

Updated by Jim Pingle about 1 year ago

Project changed from pfSense Plus to pfSense
Category changed from OpenVPN to OpenVPN
Target version set to 2.8.0
Affected Plus Version deleted (~~23.05.1~~)
Plus Target Version set to 24.03

It should trim/ignore any empty entries like that, but it may not be catching that case properly.

Actions

Copy link

Updated by Jim Pingle about 1 year ago

Subject changed from OpenVPN incorrect validation of config to OpenVPN forms invalid ``route`` statement for empty local networks

Actions

Copy link

Updated by Danilo Zrenjanin about 1 year ago

Status changed from New to Confirmed

I can replicate the issue on the:

23.05.1-RELEASE (amd64)
built on Wed Jun 28 03:57:27 UTC 2023
FreeBSD 14.0-CURRENT

Actions

Copy link

Updated by Lev Prokofev about 1 year ago

Can reproduce it on BETA

23.09-BETA (amd64)
built on Mon Oct 23 20:01:00 MSK 2023
FreeBSD 14.0-CURRENT

With comma, the server config contains:

push "route 192.168.4.0 255.255.254.0"
push "route 172.30.0.0 255.255.255.0"
push "route 0.0.0.0"

Actions

Copy link

Updated by Danilo Zrenjanin 11 months ago

Tested against:

23.09.1-RELEASE (amd64)
built on Wed Dec 20 18:27:00 UTC 2023
FreeBSD 14.0-CURRENT

I am able to replicate the issue.

Actions

Copy link

Updated by aleksei prokofiev 10 months ago

Tested on
24.03-DEVELOPMENT (amd64)
built on Fri Jan 26 9:00:00 MSK 2024
FreeBSD 15.0-CURRENT

The issue still presented.

Actions

Copy link

Updated by Jim Pingle 9 months ago

Assignee set to Jim Pingle

Actions

Copy link

Updated by Jim Pingle 9 months ago

Status changed from Confirmed to Feedback
% Done changed from 0 to 100

Applied in changeset 587dcb6ae708d144023879b509a1da9dd5dd0723.

Actions

Copy link

Updated by Jim Pingle 9 months ago

Status changed from Feedback to Resolved

Can't reproduce it on a current snapshot now, so it appears the fix is working as expected.

Worth noting this affected anything that generated OpenVPN route statements, not just that one field.

Actions

Copy link

#10

Updated by Jim Pingle 8 months ago

Subject changed from OpenVPN forms invalid ``route`` statement for empty local networks to OpenVPN forms invalid ``route`` statements for empty local networks

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #14919

OpenVPN forms invalid ``route`` statements for empty local networks

Updated by Jim Pingle about 1 year ago

Updated by Jim Pingle about 1 year ago

Updated by Danilo Zrenjanin about 1 year ago

Updated by Lev Prokofev about 1 year ago

Updated by Danilo Zrenjanin 11 months ago

Updated by aleksei prokofiev 10 months ago

Updated by Jim Pingle 9 months ago

Updated by Jim Pingle 9 months ago

Updated by Jim Pingle 9 months ago

Updated by Jim Pingle 8 months ago