<feed xmlns='http://www.w3.org/2005/Atom'>
<title>accel-ppp.git/accel-pppd/ctrl, branch 1.14.0</title>
<subtitle>High performance PPTP/L2TP/SSTP/PPPoE/IPoE server for Linux (mirror of https://github.com/accel-ppp/accel-ppp.git)
</subtitle>
<id>https://git.amelek.net/accel-ppp/accel-ppp.git/atom?h=1.14.0</id>
<link rel='self' href='https://git.amelek.net/accel-ppp/accel-ppp.git/atom?h=1.14.0'/>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/'/>
<updated>2025-12-13T15:25:13+00:00</updated>
<entry>
<title>Merge pull request #277 from nuclearcat/minor-rfc2516-compliance</title>
<updated>2025-12-13T15:25:13+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-12-13T15:25:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=0a5ac7f881103367daa8cf5d70cc55fd8f952fdb'/>
<id>urn:sha1:0a5ac7f881103367daa8cf5d70cc55fd8f952fdb</id>
<content type='text'>
pppoe: Fix RFC2516 non-compilance in PADI tags parsing</content>
</entry>
<entry>
<title>pppoe: Fix RFC2516 non-compilance in PADI tags parsing</title>
<updated>2025-12-10T23:01:05+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-12-10T22:59:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=6fbb4a900c17c28ecf2f6d0b620cfffe5bdd6b39'/>
<id>urn:sha1:6fbb4a900c17c28ecf2f6d0b620cfffe5bdd6b39</id>
<content type='text'>
We currently only break out of the switch, so the for loop keeps parsing tags after TAG_END_OF_LIST (accel-pppd/ctrl/pppoe/pppoe.c: around pppoe_recv_PADI).
RFC 2516 (paragraph 5, Tag Types: End-of-List) says an End-of-List tag MAY appear in PADI/PADR and "any TAGs after an End-of-List MUST be ignored."
Since we continue processing them, this behavior is technically non-compliant with the RFC.
Same in pppoe_recv_PADR.

Signed-off-by: Denys Fedoryshchenko &lt;denys.f@collabora.com&gt;
</content>
</entry>
<entry>
<title>Minor compile fix, we have only OpenSSL version now</title>
<updated>2025-12-10T17:26:23+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-12-10T17:26:23+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=b8c57bf4bd8276716a581ede91919db691f621c0'/>
<id>urn:sha1:b8c57bf4bd8276716a581ede91919db691f621c0</id>
<content type='text'>
Signed-off-by: Denys Fedoryshchenko &lt;denys.f@collabora.com&gt;
</content>
</entry>
<entry>
<title>crypto: Removed CRYPTO_OPENSSL definition.</title>
<updated>2025-12-10T17:17:36+00:00</updated>
<author>
<name>Andrii Melnychenko</name>
<email>a.melnychenko@vyos.io</email>
</author>
<published>2025-09-29T16:37:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=b4015f9ec2d58b80155e6691d82b5f3b6023a560'/>
<id>urn:sha1:b4015f9ec2d58b80155e6691d82b5f3b6023a560</id>
<content type='text'>
OpenSSL is now mandatory.

Signed-off-by: Andrii Melnychenko &lt;a.melnychenko@vyos.io&gt;
</content>
</entry>
<entry>
<title>crypto: Removed internal tomcat crypto.</title>
<updated>2025-12-10T17:16:42+00:00</updated>
<author>
<name>Andrii Melnychenko</name>
<email>a.melnychenko@vyos.io</email>
</author>
<published>2025-09-29T16:14:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=c912d09018828745e3bcba268cd02a611e324d54'/>
<id>urn:sha1:c912d09018828745e3bcba268cd02a611e324d54</id>
<content type='text'>
Signed-off-by: Andrii Melnychenko &lt;a.melnychenko@vyos.io&gt;
</content>
</entry>
<entry>
<title>sstp: Add config option enum for better code readability</title>
<updated>2025-12-01T00:46:20+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-12-01T00:46:20+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=c5493be157f71e83ed725dc7f768d90321589c8e'/>
<id>urn:sha1:c5493be157f71e83ed725dc7f768d90321589c8e</id>
<content type='text'>
Signed-off-by: Denys Fedoryshchenko &lt;denys.f@collabora.com&gt;
</content>
</entry>
<entry>
<title>Merge pull request #269 from nuclearcat/fix-buffer-overflow</title>
<updated>2025-11-30T11:47:21+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-11-30T11:47:21+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=63165ee7fd9abec04fb5f497d11ab09e21e10b9b'/>
<id>urn:sha1:63165ee7fd9abec04fb5f497d11ab09e21e10b9b</id>
<content type='text'>
l2tp: fix buffer overflow and type errors in Calling/Called Number handling</content>
</entry>
<entry>
<title>l2tp: fix buffer overflow and type errors in Calling/Called Number handling</title>
<updated>2025-11-26T18:39:13+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-11-26T18:38:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=2bbf451b94a3a9a96cdc8cbdb60a559f275dc0e6'/>
<id>urn:sha1:2bbf451b94a3a9a96cdc8cbdb60a559f275dc0e6</id>
<content type='text'>
  Fix issues introduced in 88a2ebdb:

  - Fix type declaration: uint8_t *calling[254] declared an array of 254
    pointers instead of an array of 254 bytes. Remove erroneous asterisks.

  - Fix buffer overflow vulnerability: L2TP AVP values can be up to 1017
    bytes (L2TP_AVP_LEN_MASK - sizeof(avp_header)), but buffers were only
    254(*4?) bytes. A malicious packet could cause stack buffer overflow.
    Use L2TP_AVP_LEN_MASK (1023) for buffer size to handle maximum AVP length.

  - Remove useless NULL checks: Stack-allocated arrays can never be NULL,
    causing compiler warnings. The existence check is n &gt; 0 / m &gt; 1.

Signed-off-by: Denys Fedoryshchenko &lt;denys.f@collabora.com&gt;
</content>
</entry>
<entry>
<title>Suppress OpenSSL 3.0 deprecation warnings for legacy crypto APIs</title>
<updated>2025-11-26T18:23:38+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-11-26T18:22:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=f03dc39ae891d20e56d7acd764a9b5764a8a2fef'/>
<id>urn:sha1:f03dc39ae891d20e56d7acd764a9b5764a8a2fef</id>
<content type='text'>
We are using similar approach as in other projects, easiest one,
but probably in future it will break as soon as this functions
will be removed completely.

Signed-off-by: Denys Fedoryshchenko &lt;denys.f@collabora.com&gt;
</content>
</entry>
<entry>
<title>Merge pull request #238 from socketpair/chain</title>
<updated>2025-11-23T17:04:00+00:00</updated>
<author>
<name>Denys Fedoryshchenko</name>
<email>denys.f@collabora.com</email>
</author>
<published>2025-11-23T17:04:00+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/accel-ppp/accel-ppp.git/commit/?id=9aebde5345cb78c9f37de12897c11979ef3a7cb7'/>
<id>urn:sha1:9aebde5345cb78c9f37de12897c11979ef3a7cb7</id>
<content type='text'>
SSTP: load certificate chain instead of single one</content>
</entry>
</feed>
