Update to 2.3.6: 2014.11.28 -- Version 2.3.6 David Sommerseth (1): systemd: Reworked the systemd unit file to handle server and client configs better Gert Doering (1): Add client-only support for peer-id. Samuli Seppè¾°nen (1): Fix to --shaper documentation on the man-page Steffan Karger (4): Fix assertion error when using --cipher none Add --tls-version-max Modernize sample keys and sample configs Drop too-short control channel packets instead of asserting out. 2014.10.24 -- Version 2.3.5 Andris Kalnozols (2): Fix some typos in the man page. Do not upcase x509-username-field for mixed-case arguments. Arne Schwabe (1): Fix server routes not working in topology subnet with --server [v3] David Sommerseth (4): Improve error reporting on file access to --client-config-dir and --ccd-exclusive Don't let openvpn_popen() keep zombies around Add systemd unit file for OpenVPN systemd: Use systemd functions to consider systemd availability Gert Doering (3): Drop incoming fe80:: packets silently now. Fix t_lpback.sh platform-dependent failures Call init script helpers with explicit path (./) Heiko Hund (1): refine assertion to allow other modes than CBC Hubert Kario (2): ocsp_check - signature verification and cert staus results are separate ocsp_check - double check if ocsp didn't report any errors in execution James Bekkema (1): Fix socket-flag/TCP_NODELAY on Mac OS X James Yonan (6): Fixed several instances of declarations after statements. In socket.c, fixed issue where uninitialized value (err) is being passed to to gai_strerror. Explicitly cast the third parameter of setsockopt to const void * to avoid warning. MSVC 2008 doesn't support dimensioning an array with a const var nor using %z as a printf format specifier. Define PATH_SEPARATOR for MSVC builds. Fixed some compile issues with show_library_versions() Jann Horn (1): Remove quadratic complexity from openvpn_base64_decode() Mike Gilbert (1): Add configure check for the path to systemd-ask-password Philipp Hagemeister (2): Add topology in sample server configuration file Implement on-link route adding for iproute2 Samuel Thibault (1): Ensure that client-connect files are always deleted Steffan Karger (13): Remove function without effect (cipher_ok() always returned true). Remove unneeded wrapper functions in crypto_openssl.c Fix bug that incorrectly refuses oid representation eku's in polar builds Update README.polarssl Rename ALLOW_NON_CBC_CIPHERS to ENABLE_OFB_CFB_MODE, and add to configure. Add proper check for crypto modes (CBC or OFB/CFB) Improve --show-ciphers to show if a cipher can be used in static key mode Extend t_lpback tests to test all ciphers reported by --show-ciphers Don't exit daemon if opening or parsing the CRL fails. Fix typo in cipher_kt_mode_{cbc, ofb_cfb}() doxygen. Fix regression with password protected private keys (polarssl) ssl_polarssl.c: fix includes and make casts explicit Remove unused variables from ssl_verify_openssl.c extract_x509_extension() TDivine (1): Fix "code=995" bug with windows NDIS6 tap driver.diff -r1.54 -r1.55 pkgsrc/net/openvpn/Makefile
(wiz)
@@ -1,17 +1,16 @@ | @@ -1,17 +1,16 @@ | |||
1 | # $NetBSD: Makefile,v 1.54 2014/09/08 16:57:01 wiedi Exp $ | 1 | # $NetBSD: Makefile,v 1.55 2014/12/03 10:09:01 wiz Exp $ | |
2 | 2 | |||
3 | DISTNAME= ${OPENVPN_DISTNAME} | 3 | DISTNAME= ${OPENVPN_DISTNAME} | |
4 | PKGREVISION= 1 | |||
5 | CATEGORIES= net | 4 | CATEGORIES= net | |
6 | MASTER_SITES= ${OPENVPN_MASTER_SITES} | 5 | MASTER_SITES= ${OPENVPN_MASTER_SITES} | |
7 | EXTRACT_SUFX= .tar.xz | 6 | EXTRACT_SUFX= .tar.xz | |
8 | 7 | |||
9 | MAINTAINER= pkgsrc-users@NetBSD.org | 8 | MAINTAINER= pkgsrc-users@NetBSD.org | |
10 | HOMEPAGE= http://openvpn.net/ | 9 | HOMEPAGE= http://openvpn.net/ | |
11 | COMMENT= Easy-to-use SSL VPN daemon | 10 | COMMENT= Easy-to-use SSL VPN daemon | |
12 | LICENSE= gnu-gpl-v2 | 11 | LICENSE= gnu-gpl-v2 | |
13 | 12 | |||
14 | PKG_DESTDIR_SUPPORT= user-destdir | 13 | PKG_DESTDIR_SUPPORT= user-destdir | |
15 | 14 | |||
16 | USE_LIBTOOL= yes | 15 | USE_LIBTOOL= yes | |
17 | USE_TOOLS+= aclocal autoconf autom4te grep:run pkg-config | 16 | USE_TOOLS+= aclocal autoconf autom4te grep:run pkg-config |
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | # $NetBSD: Makefile.common,v 1.3 2014/07/20 17:43:29 adam Exp $ | 1 | # $NetBSD: Makefile.common,v 1.4 2014/12/03 10:09:01 wiz Exp $ | |
2 | 2 | |||
3 | # used by net/openvpn/Makefile | 3 | # used by net/openvpn/Makefile | |
4 | # used by net/openvpn-acct-wtmpx/Makefile | 4 | # used by net/openvpn-acct-wtmpx/Makefile | |
5 | # used by net/openvpn-nagios/Makefile | 5 | # used by net/openvpn-nagios/Makefile | |
6 | 6 | |||
7 | OPENVPN_DISTNAME= openvpn-2.3.4 | 7 | OPENVPN_DISTNAME= openvpn-2.3.6 | |
8 | OPENVPN_DISTFILE= ${OPENVPN_DISTNAME}.tar.xz | 8 | OPENVPN_DISTFILE= ${OPENVPN_DISTNAME}.tar.xz | |
9 | OPENVPN_MASTER_SITES= http://swupdate.openvpn.net/community/releases/ | 9 | OPENVPN_MASTER_SITES= http://swupdate.openvpn.net/community/releases/ | |
10 | SITES.${OPENVPN_DISTFILE}= ${OPENVPN_MASTER_SITES} | 10 | SITES.${OPENVPN_DISTFILE}= ${OPENVPN_MASTER_SITES} | |
11 | 11 | |||
12 | OPENVPN_USER?= openvpn | 12 | OPENVPN_USER?= openvpn | |
13 | OPENVPN_GROUP?= openvpn | 13 | OPENVPN_GROUP?= openvpn | |
14 | OPENVPN_PLUGINSDIR?= lib/openvpn/plugins | 14 | OPENVPN_PLUGINSDIR?= lib/openvpn/plugins |
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | @comment $NetBSD: PLIST,v 1.17 2014/03/11 14:05:10 jperkin Exp $ | 1 | @comment $NetBSD: PLIST,v 1.18 2014/12/03 10:09:01 wiz Exp $ | |
2 | include/openvpn-plugin.h | 2 | include/openvpn-plugin.h | |
3 | ${PLIST.pam}lib/openvpn/plugins/openvpn-plugin-auth-pam.la | 3 | ${PLIST.pam}lib/openvpn/plugins/openvpn-plugin-auth-pam.la | |
4 | lib/openvpn/plugins/openvpn-plugin-down-root.la | 4 | lib/openvpn/plugins/openvpn-plugin-down-root.la | |
5 | man/man8/openvpn.8 | 5 | man/man8/openvpn.8 | |
6 | sbin/openvpn | 6 | sbin/openvpn | |
7 | share/doc/openvpn/COPYING | 7 | share/doc/openvpn/COPYING | |
8 | share/doc/openvpn/COPYRIGHT.GPL | 8 | share/doc/openvpn/COPYRIGHT.GPL | |
9 | share/doc/openvpn/README | 9 | share/doc/openvpn/README | |
10 | share/doc/openvpn/README.IPv6 | 10 | share/doc/openvpn/README.IPv6 | |
11 | ${PLIST.pam}share/doc/openvpn/README.auth-pam | 11 | ${PLIST.pam}share/doc/openvpn/README.auth-pam | |
12 | share/doc/openvpn/README.down-root | 12 | share/doc/openvpn/README.down-root | |
13 | share/doc/openvpn/README.polarssl | 13 | share/doc/openvpn/README.polarssl | |
14 | share/doc/openvpn/management-notes.txt | 14 | share/doc/openvpn/management-notes.txt | |
@@ -21,26 +21,31 @@ share/examples/openvpn/config/loopback-s | @@ -21,26 +21,31 @@ share/examples/openvpn/config/loopback-s | |||
21 | share/examples/openvpn/config/office.up | 21 | share/examples/openvpn/config/office.up | |
22 | share/examples/openvpn/config/openvpn-shutdown.sh | 22 | share/examples/openvpn/config/openvpn-shutdown.sh | |
23 | share/examples/openvpn/config/openvpn-startup.sh | 23 | share/examples/openvpn/config/openvpn-startup.sh | |
24 | share/examples/openvpn/config/server.conf | 24 | share/examples/openvpn/config/server.conf | |
25 | share/examples/openvpn/config/static-home.conf | 25 | share/examples/openvpn/config/static-home.conf | |
26 | share/examples/openvpn/config/static-office.conf | 26 | share/examples/openvpn/config/static-office.conf | |
27 | share/examples/openvpn/config/tls-home.conf | 27 | share/examples/openvpn/config/tls-home.conf | |
28 | share/examples/openvpn/config/tls-office.conf | 28 | share/examples/openvpn/config/tls-office.conf | |
29 | share/examples/openvpn/config/xinetd-client-config | 29 | share/examples/openvpn/config/xinetd-client-config | |
30 | share/examples/openvpn/config/xinetd-server-config | 30 | share/examples/openvpn/config/xinetd-server-config | |
31 | share/examples/openvpn/keys/README | 31 | share/examples/openvpn/keys/README | |
32 | share/examples/openvpn/keys/ca.crt | 32 | share/examples/openvpn/keys/ca.crt | |
33 | share/examples/openvpn/keys/ca.key | 33 | share/examples/openvpn/keys/ca.key | |
34 | share/examples/openvpn/keys/client-ec.crt | |||
35 | share/examples/openvpn/keys/client-ec.key | |||
36 | share/examples/openvpn/keys/client-pass.key | |||
34 | share/examples/openvpn/keys/client.crt | 37 | share/examples/openvpn/keys/client.crt | |
35 | share/examples/openvpn/keys/client.key | 38 | share/examples/openvpn/keys/client.key | |
36 | share/examples/openvpn/keys/dh1024.pem | 39 | share/examples/openvpn/keys/client.p12 | |
37 | share/examples/openvpn/keys/pass.crt | 40 | share/examples/openvpn/keys/dh2048.pem | |
38 | share/examples/openvpn/keys/pass.key | 41 | share/examples/openvpn/keys/gen-sample-keys.sh | |
39 | share/examples/openvpn/keys/pkcs12.p12 | 42 | share/examples/openvpn/keys/openssl.cnf | |
43 | share/examples/openvpn/keys/server-ec.crt | |||
44 | share/examples/openvpn/keys/server-ec.key | |||
40 | share/examples/openvpn/keys/server.crt | 45 | share/examples/openvpn/keys/server.crt | |
41 | share/examples/openvpn/keys/server.key | 46 | share/examples/openvpn/keys/server.key | |
42 | share/examples/openvpn/scripts/auth-pam.pl | 47 | share/examples/openvpn/scripts/auth-pam.pl | |
43 | share/examples/openvpn/scripts/bridge-start | 48 | share/examples/openvpn/scripts/bridge-start | |
44 | share/examples/openvpn/scripts/bridge-stop | 49 | share/examples/openvpn/scripts/bridge-stop | |
45 | share/examples/openvpn/scripts/ucn.pl | 50 | share/examples/openvpn/scripts/ucn.pl | |
46 | share/examples/openvpn/scripts/verify-cn | 51 | share/examples/openvpn/scripts/verify-cn |
@@ -1,12 +1,12 @@ | @@ -1,12 +1,12 @@ | |||
1 | $NetBSD: distinfo,v 1.30 2014/07/20 17:43:29 adam Exp $ | 1 | $NetBSD: distinfo,v 1.31 2014/12/03 10:09:01 wiz Exp $ | |
2 | 2 | |||
3 | SHA1 (openvpn-2.3.4.tar.xz) = 20adb275760b0cfe99eb9cb34228d74bccb48ad8 | 3 | SHA1 (openvpn-2.3.6.tar.xz) = f360b4b858f70378f18853c334b0cd2f9219adbb | |
4 | RMD160 (openvpn-2.3.4.tar.xz) = 849a00f399283778facc64e4198d3ee201ea3573 | 4 | RMD160 (openvpn-2.3.6.tar.xz) = 8b34467bc4759380e10688c4839a67afa6a58abf | |
5 | Size (openvpn-2.3.4.tar.xz) = 791676 bytes | 5 | Size (openvpn-2.3.6.tar.xz) = 809348 bytes | |
6 | SHA1 (patch-ac) = d1918a08f8b3dd150b44737a236da58be7fa1f8c | 6 | SHA1 (patch-ac) = d1918a08f8b3dd150b44737a236da58be7fa1f8c | |
7 | SHA1 (patch-ad) = 1406764c57687665df34a489474255ab0c3c8179 | 7 | SHA1 (patch-ad) = 1406764c57687665df34a489474255ab0c3c8179 | |
8 | SHA1 (patch-ae) = e6e3e5977d1d9c09c0638d84e599c1c4956e27c8 | 8 | SHA1 (patch-ae) = e6e3e5977d1d9c09c0638d84e599c1c4956e27c8 | |
9 | SHA1 (patch-af) = 6c5cbb2fcd465a8519e947532cd8b09eb3499f65 | 9 | SHA1 (patch-af) = 6c5cbb2fcd465a8519e947532cd8b09eb3499f65 | |
10 | SHA1 (patch-src_compat_compat-basename.c) = 45a58ef2e05f6e0265f229da8540760e60e65143 | 10 | SHA1 (patch-src_compat_compat-basename.c) = 45a58ef2e05f6e0265f229da8540760e60e65143 | |
11 | SHA1 (patch-src_openvpn_socket.c) = 74668d39f5e6fdab64825d38d4b287c8004f5af3 | 11 | SHA1 (patch-src_openvpn_socket.c) = 74668d39f5e6fdab64825d38d4b287c8004f5af3 | |
12 | SHA1 (patch-src_openvpn_socket.h) = b4b952af347e0f2d0aff307a5025b3d27a2e6ee5 | 12 | SHA1 (patch-src_openvpn_socket.h) = b4b952af347e0f2d0aff307a5025b3d27a2e6ee5 |