[vpnc-devel] Asking for patch merge

Davide Pucci d.pucci at i-node.it
Fri Nov 17 10:51:19 CET 2017


Hi all. 
I'm Davide Pucci, systems engineer and developer at I-Node S.r.l.. 
I got in contact with VPNC source code as I needed to make it read and load connection credentials via command line, obfuscating them in ps - or similar - process view. 
So, I wrote a patch that: 


    1. firstly allow the group secret and the user password to be passed in command line in argv 
    2. secondly, included a new field in config_name_s struct to include an integer needsEncryption field, passed in config_names array, to trigger eventual obfuscation of field in process argv 
    3. finally, in argument parsing phase, if a field asks for encryption (obfuscation) via needsEncryption field, I populate the config value pointer with a new one, referencing a new memory location containing the original argv[i] pointing value, and replace argv[i] pointing value with a random string. 

The full patch is sent as attachment. 
I'm writing this just to know if there's a way to officially ask for this to be included in mainstream branch. 
Waiting for any feedback. 

Regards, 
Davide Pucci. 

********** 

Davide Pucci 
Systems and Software Engineer 
Mob: +39 348 923 7278 
Tel: +39 06 5960 2069 
Fax: +39 06 5960 6185 
Email: d.pucci at i-node.it 

I-node s.r.l. 
We build you® .biz 
Via Laurentina, 86 - 00142 Roma (RM) 
Twitter: http://www.twitter.com/i_node 
Sito Web: http://www.i-node.it 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.unix-ag.uni-kl.de/pipermail/vpnc-devel/attachments/20171117/e519aab0/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: vpnc-0.5.3r550.patch
Type: text/x-patch
Size: 8197 bytes
Desc: not available
URL: <http://lists.unix-ag.uni-kl.de/pipermail/vpnc-devel/attachments/20171117/e519aab0/attachment.bin>


More information about the vpnc-devel mailing list