Re: SECURITY UPDATE: net/openvpn 2.4.3
On Wed, Jun 21, 2017 at 01:58:46PM +0200, Jeremie Courreges-Anglas wrote:
> Paul Irofti writes:
>
> > On Wed, Jun 21, 2017 at 02:34:13PM +0300, Paul Irofti wrote:
> >> The following fixes 4 remote holes. OK? :)
> >> I have diffs for -stable too, coming up next.
> >>
> >> https://marc.info/?l=oss-security&m=149804249114979&w=2
> >
> > Stable diff follows
>
> Thanks, but please use the following diff.
Tested on -stable. OK.
>
>
> Index: Makefile
> ===
> RCS file: /d/cvs/ports/net/openvpn/Makefile,v
> retrieving revision 1.73.2.1
> diff -u -p -r1.73.2.1 Makefile
> --- Makefile 15 May 2017 23:44:41 - 1.73.2.1
> +++ Makefile 21 Jun 2017 11:57:18 -
> @@ -2,7 +2,7 @@
>
> COMMENT= easy-to-use, robust, and highly configurable VPN
>
> -DISTNAME=openvpn-2.4.2
> +DISTNAME=openvpn-2.4.3
> CATEGORIES= net security
>
> HOMEPAGE=https://openvpn.net/index.php/open-source/
> Index: distinfo
> ===
> RCS file: /d/cvs/ports/net/openvpn/distinfo,v
> retrieving revision 1.36.2.1
> diff -u -p -r1.36.2.1 distinfo
> --- distinfo 15 May 2017 23:44:41 - 1.36.2.1
> +++ distinfo 21 Jun 2017 11:57:18 -
> @@ -1,2 +1,2 @@
> -SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
> -SIZE (openvpn-2.4.2.tar.gz) = 1402516
> +SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
> +SIZE (openvpn-2.4.3.tar.gz) = 1397306
> Index: patches/patch-configure
> ===
> RCS file: /d/cvs/ports/net/openvpn/patches/patch-configure,v
> retrieving revision 1.15.2.1
> diff -u -p -r1.15.2.1 patch-configure
> --- patches/patch-configure 15 May 2017 23:44:41 - 1.15.2.1
> +++ patches/patch-configure 21 Jun 2017 11:57:18 -
> @@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.15.2.1 201
> Index: configure
> --- configure.orig
> +++ configure
> -@@ -17187,7 +17187,7 @@ else
> +@@ -17318,7 +17318,7 @@ else
> fi
>
>
> Index: patches/patch-include_openvpn-plugin_h_in
> ===
> RCS file: patches/patch-include_openvpn-plugin_h_in
> diff -N patches/patch-include_openvpn-plugin_h_in
> --- patches/patch-include_openvpn-plugin_h_in 15 May 2017 23:44:41 -
> 1.1.2.1
> +++ /dev/null 1 Jan 1970 00:00:00 -
> @@ -1,15 +0,0 @@
> -$OpenBSD: patch-include_openvpn-plugin_h_in,v 1.1.2.1 2017/05/15 23:44:41
> jca Exp $
> -
> -Include stddef.h for size_t.
> -
> -Index: include/openvpn-plugin.h.in
> include/openvpn-plugin.h.in.orig
> -+++ include/openvpn-plugin.h.in
> -@@ -44,6 +44,7 @@ typedef X509 openvpn_x509_cert_t;
> - #endif
> -
> - #include
> -+#include
> -
> - #ifdef __cplusplus
> - extern "C" {
> Index: patches/patch-src_openvpn_route_c
> ===
> RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_route_c,v
> retrieving revision 1.8
> diff -u -p -r1.8 patch-src_openvpn_route_c
> --- patches/patch-src_openvpn_route_c 28 Mar 2017 22:16:37 - 1.8
> +++ patches/patch-src_openvpn_route_c 21 Jun 2017 11:57:18 -
> @@ -2,9 +2,10 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
>
> - add support for on-link routes
>
> src/openvpn/route.c.orig Wed Mar 22 16:34:21 2017
> -+++ src/openvpn/route.c Mon Mar 27 06:01:57 2017
> -@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
> +Index: src/openvpn/route.c
> +--- src/openvpn/route.c.orig
> src/openvpn/route.c
> +@@ -1777,12 +1777,17 @@ add_route(struct route_ipv4 *r,
> }
> #endif
>
> Index: patches/patch-src_openvpn_syshead_h
> ===
> RCS file: patches/patch-src_openvpn_syshead_h
> diff -N patches/patch-src_openvpn_syshead_h
> --- patches/patch-src_openvpn_syshead_h 16 Feb 2017 21:16:55 -
> 1.3
> +++ /dev/null 1 Jan 1970 00:00:00 -
> @@ -1,14 +0,0 @@
> -$OpenBSD: patch-src_openvpn_syshead_h,v 1.3 2017/02/16 21:16:55 kurt Exp $
> src/openvpn/syshead.h.orig Wed Feb 15 11:34:39 2017
> -+++ src/openvpn/syshead.hWed Feb 15 11:35:49 2017
> -@@ -288,6 +288,10 @@
> - #include
> - #endif
> -
> -+#ifdef HAVE_NETINET_TCP_H
> -+#include
> -+#endif
> -+
> - #ifdef HAVE_NET_IF_TUN_H
> - #include
> - #endif
> Index: patches/patch-src_openvpn_tun_c
> ===
> RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_tun_c,v
> retrieving revision 1.12.2.1
> diff -u -p -r1.12.2.1 patch-src_openvpn_tun_c
> --- patches/patch-src_openvpn_tun_c 15 May 2017 23:44:41 - 1.12.2.1
> +++ patches/patch-src_openvpn_tun_c 21 Jun 2017 11:57:18 -
> @@ -5,7 +5,7 @@ $OpenBSD: patch-src_openvpn_tun_c,v 1.12
> Index: src/openvpn/tun.c
> --- src/openvpn/tun.c.orig
> +++ src/openvpn/tun
Re: SECURITY UPDATE: net/openvpn 2.4.3
Paul Irofti writes:
> On Wed, Jun 21, 2017 at 02:34:13PM +0300, Paul Irofti wrote:
>> The following fixes 4 remote holes. OK? :)
>> I have diffs for -stable too, coming up next.
>>
>> https://marc.info/?l=oss-security&m=149804249114979&w=2
>
> Stable diff follows
Thanks, but please use the following diff.
Index: Makefile
===
RCS file: /d/cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.73.2.1
diff -u -p -r1.73.2.1 Makefile
--- Makefile15 May 2017 23:44:41 - 1.73.2.1
+++ Makefile21 Jun 2017 11:57:18 -
@@ -2,7 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-DISTNAME= openvpn-2.4.2
+DISTNAME= openvpn-2.4.3
CATEGORIES=net security
HOMEPAGE= https://openvpn.net/index.php/open-source/
Index: distinfo
===
RCS file: /d/cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.36.2.1
diff -u -p -r1.36.2.1 distinfo
--- distinfo15 May 2017 23:44:41 - 1.36.2.1
+++ distinfo21 Jun 2017 11:57:18 -
@@ -1,2 +1,2 @@
-SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
-SIZE (openvpn-2.4.2.tar.gz) = 1402516
+SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
+SIZE (openvpn-2.4.3.tar.gz) = 1397306
Index: patches/patch-configure
===
RCS file: /d/cvs/ports/net/openvpn/patches/patch-configure,v
retrieving revision 1.15.2.1
diff -u -p -r1.15.2.1 patch-configure
--- patches/patch-configure 15 May 2017 23:44:41 - 1.15.2.1
+++ patches/patch-configure 21 Jun 2017 11:57:18 -
@@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.15.2.1 201
Index: configure
--- configure.orig
+++ configure
-@@ -17187,7 +17187,7 @@ else
+@@ -17318,7 +17318,7 @@ else
fi
Index: patches/patch-include_openvpn-plugin_h_in
===
RCS file: patches/patch-include_openvpn-plugin_h_in
diff -N patches/patch-include_openvpn-plugin_h_in
--- patches/patch-include_openvpn-plugin_h_in 15 May 2017 23:44:41 -
1.1.2.1
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,15 +0,0 @@
-$OpenBSD: patch-include_openvpn-plugin_h_in,v 1.1.2.1 2017/05/15 23:44:41 jca
Exp $
-
-Include stddef.h for size_t.
-
-Index: include/openvpn-plugin.h.in
include/openvpn-plugin.h.in.orig
-+++ include/openvpn-plugin.h.in
-@@ -44,6 +44,7 @@ typedef X509 openvpn_x509_cert_t;
- #endif
-
- #include
-+#include
-
- #ifdef __cplusplus
- extern "C" {
Index: patches/patch-src_openvpn_route_c
===
RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_route_c,v
retrieving revision 1.8
diff -u -p -r1.8 patch-src_openvpn_route_c
--- patches/patch-src_openvpn_route_c 28 Mar 2017 22:16:37 - 1.8
+++ patches/patch-src_openvpn_route_c 21 Jun 2017 11:57:18 -
@@ -2,9 +2,10 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
- add support for on-link routes
src/openvpn/route.c.orig Wed Mar 22 16:34:21 2017
-+++ src/openvpn/route.cMon Mar 27 06:01:57 2017
-@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
+Index: src/openvpn/route.c
+--- src/openvpn/route.c.orig
src/openvpn/route.c
+@@ -1777,12 +1777,17 @@ add_route(struct route_ipv4 *r,
}
#endif
Index: patches/patch-src_openvpn_syshead_h
===
RCS file: patches/patch-src_openvpn_syshead_h
diff -N patches/patch-src_openvpn_syshead_h
--- patches/patch-src_openvpn_syshead_h 16 Feb 2017 21:16:55 - 1.3
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,14 +0,0 @@
-$OpenBSD: patch-src_openvpn_syshead_h,v 1.3 2017/02/16 21:16:55 kurt Exp $
src/openvpn/syshead.h.orig Wed Feb 15 11:34:39 2017
-+++ src/openvpn/syshead.h Wed Feb 15 11:35:49 2017
-@@ -288,6 +288,10 @@
- #include
- #endif
-
-+#ifdef HAVE_NETINET_TCP_H
-+#include
-+#endif
-+
- #ifdef HAVE_NET_IF_TUN_H
- #include
- #endif
Index: patches/patch-src_openvpn_tun_c
===
RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_tun_c,v
retrieving revision 1.12.2.1
diff -u -p -r1.12.2.1 patch-src_openvpn_tun_c
--- patches/patch-src_openvpn_tun_c 15 May 2017 23:44:41 - 1.12.2.1
+++ patches/patch-src_openvpn_tun_c 21 Jun 2017 11:57:18 -
@@ -5,7 +5,7 @@ $OpenBSD: patch-src_openvpn_tun_c,v 1.12
Index: src/openvpn/tun.c
--- src/openvpn/tun.c.orig
+++ src/openvpn/tun.c
-@@ -1201,7 +1201,7 @@ do_ifconfig(struct tuntap *tt,
+@@ -1200,7 +1200,7 @@ do_ifconfig(struct tuntap *tt,
if (tun)
{
argv_printf(&argv,
@@ -14,7 +14,7 @@ Index: src/openvpn/tun.c
IFCONFIG_PATH,
actual,
ifconfig_local,
-@@ -
Re: SECURITY UPDATE: net/openvpn 2.4.3
On Wed, Jun 21, 2017 at 01:53:47PM +0200, Jeremie Courreges-Anglas wrote:
> Paul Irofti writes:
>
> > The following fixes 4 remote holes. OK? :)
>
> Nope, please don't blindly delete patches that don't apply. ;)
Oh, I missunderstood the log messages about patches pushed upstream.
Sure, go ahead please.
>
> My take:
>
>
> Index: Makefile
> ===
> RCS file: /d/cvs/ports/net/openvpn/Makefile,v
> retrieving revision 1.78
> diff -u -p -r1.78 Makefile
> --- Makefile 11 Jun 2017 12:15:50 - 1.78
> +++ Makefile 21 Jun 2017 11:50:44 -
> @@ -2,8 +2,7 @@
>
> COMMENT= easy-to-use, robust, and highly configurable VPN
>
> -DISTNAME=openvpn-2.4.2
> -REVISION=2
> +DISTNAME=openvpn-2.4.3
> CATEGORIES= net security
>
> HOMEPAGE=https://openvpn.net/index.php/open-source/
> Index: distinfo
> ===
> RCS file: /d/cvs/ports/net/openvpn/distinfo,v
> retrieving revision 1.37
> diff -u -p -r1.37 distinfo
> --- distinfo 14 May 2017 16:43:33 - 1.37
> +++ distinfo 21 Jun 2017 11:50:44 -
> @@ -1,2 +1,2 @@
> -SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
> -SIZE (openvpn-2.4.2.tar.gz) = 1402516
> +SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
> +SIZE (openvpn-2.4.3.tar.gz) = 1397306
> Index: patches/patch-configure
> ===
> RCS file: /d/cvs/ports/net/openvpn/patches/patch-configure,v
> retrieving revision 1.16
> diff -u -p -r1.16 patch-configure
> --- patches/patch-configure 14 May 2017 16:43:33 - 1.16
> +++ patches/patch-configure 21 Jun 2017 11:50:44 -
> @@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.16 2017/05
> Index: configure
> --- configure.orig
> +++ configure
> -@@ -17187,7 +17187,7 @@ else
> +@@ -17318,7 +17318,7 @@ else
> fi
>
>
> Index: patches/patch-include_openvpn-plugin_h_in
> ===
> RCS file: patches/patch-include_openvpn-plugin_h_in
> diff -N patches/patch-include_openvpn-plugin_h_in
> --- patches/patch-include_openvpn-plugin_h_in 15 May 2017 14:30:56 -
> 1.1
> +++ /dev/null 1 Jan 1970 00:00:00 -
> @@ -1,15 +0,0 @@
> -$OpenBSD: patch-include_openvpn-plugin_h_in,v 1.1 2017/05/15 14:30:56 jca
> Exp $
> -
> -Include stddef.h for size_t.
> -
> -Index: include/openvpn-plugin.h.in
> include/openvpn-plugin.h.in.orig
> -+++ include/openvpn-plugin.h.in
> -@@ -44,6 +44,7 @@ typedef X509 openvpn_x509_cert_t;
> - #endif
> -
> - #include
> -+#include
> -
> - #ifdef __cplusplus
> - extern "C" {
> Index: patches/patch-src_openvpn_route_c
> ===
> RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_route_c,v
> retrieving revision 1.10
> diff -u -p -r1.10 patch-src_openvpn_route_c
> --- patches/patch-src_openvpn_route_c 11 Jun 2017 12:15:50 - 1.10
> +++ patches/patch-src_openvpn_route_c 21 Jun 2017 11:50:44 -
> @@ -2,12 +2,10 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
>
> - add support for on-link routes
>
> -- add support for non-0 routing tables
> -
> https://github.com/OpenVPN/openvpn/commit/3dd30bfe5fdf9f34afe7f847b4e30156982d9ff0
> -
> src/openvpn/route.c.orig Thu Mar 23 02:34:21 2017
> -+++ src/openvpn/route.c Wed Apr 12 18:06:40 2017
> -@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
> +Index: src/openvpn/route.c
> +--- src/openvpn/route.c.orig
> src/openvpn/route.c
> +@@ -1777,12 +1777,17 @@ add_route(struct route_ipv4 *r,
> }
> #endif
>
> @@ -28,23 +26,3 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
>
> argv_msg(D_ROUTE, &argv);
> status = openvpn_execve_check(&argv, es, 0, "ERROR: OpenBSD/NetBSD
> route add command failed");
> -@@ -3597,6 +3602,9 @@ get_default_gateway(struct route_gateway_info *rgi)
> - rtm.rtm_flags = RTF_UP | RTF_GATEWAY;
> - rtm.rtm_version = RTM_VERSION;
> - rtm.rtm_seq = ++seq;
> -+#ifdef TARGET_OPENBSD
> -+rtm.rtm_tableid = getrtable();
> -+#endif
> - rtm.rtm_addrs = rtm_addrs;
> -
> - so_dst.sa_family = AF_INET;
> -@@ -3812,6 +3820,9 @@ get_default_gateway_ipv6(struct route_ipv6_gateway_inf
> - rtm.rtm_flags = RTF_UP;
> - rtm.rtm_version = RTM_VERSION;
> - rtm.rtm_seq = ++seq;
> -+#ifdef TARGET_OPENBSD
> -+rtm.rtm_tableid = getrtable();
> -+#endif
> -
> - so_dst.sin6_family = AF_INET6;
> - so_mask.sin6_family = AF_INET6;
> Index: patches/patch-src_openvpn_syshead_h
> ===
> RCS file: patches/patch-src_openvpn_syshead_h
> diff -N patches/patch-src_openvpn_syshead_h
> --- patches/patch-src_openvpn_syshead_h 11 Jun 2017 12:15:50 -
> 1.4
> +++ /dev/null 1 Jan 1970 00:00:00 -
> @@ -1,18 +0,0 @@
> -$OpenBSD: patch-s
Re: SECURITY UPDATE: net/openvpn 2.4.3
Paul Irofti writes:
> The following fixes 4 remote holes. OK? :)
Nope, please don't blindly delete patches that don't apply. ;)
My take:
Index: Makefile
===
RCS file: /d/cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.78
diff -u -p -r1.78 Makefile
--- Makefile11 Jun 2017 12:15:50 - 1.78
+++ Makefile21 Jun 2017 11:50:44 -
@@ -2,8 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-DISTNAME= openvpn-2.4.2
-REVISION= 2
+DISTNAME= openvpn-2.4.3
CATEGORIES=net security
HOMEPAGE= https://openvpn.net/index.php/open-source/
Index: distinfo
===
RCS file: /d/cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.37
diff -u -p -r1.37 distinfo
--- distinfo14 May 2017 16:43:33 - 1.37
+++ distinfo21 Jun 2017 11:50:44 -
@@ -1,2 +1,2 @@
-SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
-SIZE (openvpn-2.4.2.tar.gz) = 1402516
+SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
+SIZE (openvpn-2.4.3.tar.gz) = 1397306
Index: patches/patch-configure
===
RCS file: /d/cvs/ports/net/openvpn/patches/patch-configure,v
retrieving revision 1.16
diff -u -p -r1.16 patch-configure
--- patches/patch-configure 14 May 2017 16:43:33 - 1.16
+++ patches/patch-configure 21 Jun 2017 11:50:44 -
@@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.16 2017/05
Index: configure
--- configure.orig
+++ configure
-@@ -17187,7 +17187,7 @@ else
+@@ -17318,7 +17318,7 @@ else
fi
Index: patches/patch-include_openvpn-plugin_h_in
===
RCS file: patches/patch-include_openvpn-plugin_h_in
diff -N patches/patch-include_openvpn-plugin_h_in
--- patches/patch-include_openvpn-plugin_h_in 15 May 2017 14:30:56 -
1.1
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,15 +0,0 @@
-$OpenBSD: patch-include_openvpn-plugin_h_in,v 1.1 2017/05/15 14:30:56 jca Exp $
-
-Include stddef.h for size_t.
-
-Index: include/openvpn-plugin.h.in
include/openvpn-plugin.h.in.orig
-+++ include/openvpn-plugin.h.in
-@@ -44,6 +44,7 @@ typedef X509 openvpn_x509_cert_t;
- #endif
-
- #include
-+#include
-
- #ifdef __cplusplus
- extern "C" {
Index: patches/patch-src_openvpn_route_c
===
RCS file: /d/cvs/ports/net/openvpn/patches/patch-src_openvpn_route_c,v
retrieving revision 1.10
diff -u -p -r1.10 patch-src_openvpn_route_c
--- patches/patch-src_openvpn_route_c 11 Jun 2017 12:15:50 - 1.10
+++ patches/patch-src_openvpn_route_c 21 Jun 2017 11:50:44 -
@@ -2,12 +2,10 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
- add support for on-link routes
-- add support for non-0 routing tables
-
https://github.com/OpenVPN/openvpn/commit/3dd30bfe5fdf9f34afe7f847b4e30156982d9ff0
-
src/openvpn/route.c.orig Thu Mar 23 02:34:21 2017
-+++ src/openvpn/route.cWed Apr 12 18:06:40 2017
-@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
+Index: src/openvpn/route.c
+--- src/openvpn/route.c.orig
src/openvpn/route.c
+@@ -1777,12 +1777,17 @@ add_route(struct route_ipv4 *r,
}
#endif
@@ -28,23 +26,3 @@ $OpenBSD: patch-src_openvpn_route_c,v 1.
argv_msg(D_ROUTE, &argv);
status = openvpn_execve_check(&argv, es, 0, "ERROR: OpenBSD/NetBSD route
add command failed");
-@@ -3597,6 +3602,9 @@ get_default_gateway(struct route_gateway_info *rgi)
- rtm.rtm_flags = RTF_UP | RTF_GATEWAY;
- rtm.rtm_version = RTM_VERSION;
- rtm.rtm_seq = ++seq;
-+#ifdef TARGET_OPENBSD
-+rtm.rtm_tableid = getrtable();
-+#endif
- rtm.rtm_addrs = rtm_addrs;
-
- so_dst.sa_family = AF_INET;
-@@ -3812,6 +3820,9 @@ get_default_gateway_ipv6(struct route_ipv6_gateway_inf
- rtm.rtm_flags = RTF_UP;
- rtm.rtm_version = RTM_VERSION;
- rtm.rtm_seq = ++seq;
-+#ifdef TARGET_OPENBSD
-+rtm.rtm_tableid = getrtable();
-+#endif
-
- so_dst.sin6_family = AF_INET6;
- so_mask.sin6_family = AF_INET6;
Index: patches/patch-src_openvpn_syshead_h
===
RCS file: patches/patch-src_openvpn_syshead_h
diff -N patches/patch-src_openvpn_syshead_h
--- patches/patch-src_openvpn_syshead_h 11 Jun 2017 12:15:50 - 1.4
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,18 +0,0 @@
-$OpenBSD: patch-src_openvpn_syshead_h,v 1.4 2017/06/11 12:15:50 jca Exp $
-
-- missing include
-
https://github.com/OpenVPN/openvpn/commit/e5b236eaba4512f86da917a0a63dd0f84e1b02db
-
src/openvpn/syshead.h.orig Wed Feb 15 11:34:39 2017
-+++ src/openvpn/syshead.h Wed Feb 15 11:35:49 2017
-@@ -288,6 +288,10 @@
- #include
- #endif
-
-+#ifdef HAVE_NETINET_TCP_H
-+#include
-+#endif
-+
- #ifdef HAVE_NET_IF_TUN_H
- #inc
Re: SECURITY UPDATE: net/openvpn 2.4.3
On Wed, Jun 21, 2017 at 02:34:13PM +0300, Paul Irofti wrote:
> The following fixes 4 remote holes. OK? :)
> I have diffs for -stable too, coming up next.
>
> https://marc.info/?l=oss-security&m=149804249114979&w=2
Stable diff follows
Index: Makefile
===
RCS file: /cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.73.2.1
diff -u -p -u -p -r1.73.2.1 Makefile
--- Makefile15 May 2017 23:44:41 - 1.73.2.1
+++ Makefile21 Jun 2017 11:46:04 -
@@ -2,7 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-DISTNAME= openvpn-2.4.2
+DISTNAME= openvpn-2.4.3
CATEGORIES=net security
HOMEPAGE= https://openvpn.net/index.php/open-source/
Index: distinfo
===
RCS file: /cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.36.2.1
diff -u -p -u -p -r1.36.2.1 distinfo
--- distinfo15 May 2017 23:44:41 - 1.36.2.1
+++ distinfo21 Jun 2017 11:46:04 -
@@ -1,2 +1,2 @@
-SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
-SIZE (openvpn-2.4.2.tar.gz) = 1402516
+SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
+SIZE (openvpn-2.4.3.tar.gz) = 1397306
Index: patches/patch-src_openvpn_route_c
===
RCS file: patches/patch-src_openvpn_route_c
diff -N patches/patch-src_openvpn_route_c
--- patches/patch-src_openvpn_route_c 28 Mar 2017 22:16:37 - 1.8
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,27 +0,0 @@
-$OpenBSD: patch-src_openvpn_route_c,v 1.8 2017/03/28 22:16:37 jca Exp $
-
-- add support for on-link routes
-
src/openvpn/route.c.orig Wed Mar 22 16:34:21 2017
-+++ src/openvpn/route.cMon Mar 27 06:01:57 2017
-@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
- }
- #endif
-
--argv_printf_cat(&argv, "-net %s %s -netmask %s",
-+argv_printf_cat (&argv, "-net %s -netmask %s",
- network,
--gateway,
- netmask);
-
--/* FIXME -- add on-link support for OpenBSD/NetBSD */
-+/* FIXME -- add on-link support for NetBSD */
-+#ifdef TARGET_OPENBSD
-+if (is_on_link (is_local_route, flags, rgi))
-+argv_printf_cat (&argv, "-link -iface %s", rgi->iface);
-+else
-+#endif
-+argv_printf_cat (&argv, "%s", gateway);
-
- argv_msg(D_ROUTE, &argv);
- status = openvpn_execve_check(&argv, es, 0, "ERROR: OpenBSD/NetBSD route
add command failed");
Index: patches/patch-src_openvpn_syshead_h
===
RCS file: patches/patch-src_openvpn_syshead_h
diff -N patches/patch-src_openvpn_syshead_h
--- patches/patch-src_openvpn_syshead_h 16 Feb 2017 21:16:55 - 1.3
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,14 +0,0 @@
-$OpenBSD: patch-src_openvpn_syshead_h,v 1.3 2017/02/16 21:16:55 kurt Exp $
src/openvpn/syshead.h.orig Wed Feb 15 11:34:39 2017
-+++ src/openvpn/syshead.h Wed Feb 15 11:35:49 2017
-@@ -288,6 +288,10 @@
- #include
- #endif
-
-+#ifdef HAVE_NETINET_TCP_H
-+#include
-+#endif
-+
- #ifdef HAVE_NET_IF_TUN_H
- #include
- #endif
Index: patches/patch-src_openvpn_tun_c
===
RCS file: patches/patch-src_openvpn_tun_c
diff -N patches/patch-src_openvpn_tun_c
--- patches/patch-src_openvpn_tun_c 15 May 2017 23:44:41 - 1.12.2.1
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,55 +0,0 @@
-$OpenBSD: patch-src_openvpn_tun_c,v 1.12.2.1 2017/05/15 23:44:41 jca Exp $
-
-- no need for link0 any more, we have separate tap interfaces
-
-Index: src/openvpn/tun.c
src/openvpn/tun.c.orig
-+++ src/openvpn/tun.c
-@@ -1201,7 +1201,7 @@ do_ifconfig(struct tuntap *tt,
- if (tun)
- {
- argv_printf(&argv,
--"%s %s %s %s mtu %d netmask 255.255.255.255 up
-link0",
-+"%s %s %s %s mtu %d netmask 255.255.255.255 up",
- IFCONFIG_PATH,
- actual,
- ifconfig_local,
-@@ -1213,7 +1213,7 @@ do_ifconfig(struct tuntap *tt,
- {
- remote_end = create_arbitrary_remote( tt );
- argv_printf(&argv,
--"%s %s %s %s mtu %d netmask %s up -link0",
-+"%s %s %s %s mtu %d netmask %s up",
- IFCONFIG_PATH,
- actual,
- ifconfig_local,
-@@ -1224,8 +1224,13 @@ do_ifconfig(struct tuntap *tt,
- }
- else
- {
-+ /*
-+* OpenBSD has distinct tun and tap devices
-+* so we don't need the "link0" extra parameter to specify we want
to do
-+* tunneling at the ethernet level
-+*/
- argv_printf(&argv,
--
SECURITY UPDATE: net/openvpn 2.4.3
The following fixes 4 remote holes. OK? :)
I have diffs for -stable too, coming up next.
https://marc.info/?l=oss-security&m=149804249114979&w=2
Index: Makefile
===
RCS file: /cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.78
diff -u -p -u -p -r1.78 Makefile
--- Makefile11 Jun 2017 12:15:50 - 1.78
+++ Makefile21 Jun 2017 11:32:57 -
@@ -2,8 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-DISTNAME= openvpn-2.4.2
-REVISION= 2
+DISTNAME= openvpn-2.4.3
CATEGORIES=net security
HOMEPAGE= https://openvpn.net/index.php/open-source/
Index: distinfo
===
RCS file: /cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.37
diff -u -p -u -p -r1.37 distinfo
--- distinfo14 May 2017 16:43:33 - 1.37
+++ distinfo21 Jun 2017 11:32:57 -
@@ -1,2 +1,2 @@
-SHA256 (openvpn-2.4.2.tar.gz) = skdAydRKgeryvvxIRtUURaUgEEMh4yqvDBNe0uCYpiQ=
-SIZE (openvpn-2.4.2.tar.gz) = 1402516
+SHA256 (openvpn-2.4.3.tar.gz) = hKAao98MEqNVLKO6qjnXABN7W85LbeaD/of7eb+l3ws=
+SIZE (openvpn-2.4.3.tar.gz) = 1397306
Index: patches/patch-include_openvpn-plugin_h_in
===
RCS file: patches/patch-include_openvpn-plugin_h_in
diff -N patches/patch-include_openvpn-plugin_h_in
--- patches/patch-include_openvpn-plugin_h_in 15 May 2017 14:30:56 -
1.1
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,15 +0,0 @@
-$OpenBSD: patch-include_openvpn-plugin_h_in,v 1.1 2017/05/15 14:30:56 jca Exp $
-
-Include stddef.h for size_t.
-
-Index: include/openvpn-plugin.h.in
include/openvpn-plugin.h.in.orig
-+++ include/openvpn-plugin.h.in
-@@ -44,6 +44,7 @@ typedef X509 openvpn_x509_cert_t;
- #endif
-
- #include
-+#include
-
- #ifdef __cplusplus
- extern "C" {
Index: patches/patch-src_openvpn_route_c
===
RCS file: patches/patch-src_openvpn_route_c
diff -N patches/patch-src_openvpn_route_c
--- patches/patch-src_openvpn_route_c 11 Jun 2017 12:15:50 - 1.10
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,50 +0,0 @@
-$OpenBSD: patch-src_openvpn_route_c,v 1.10 2017/06/11 12:15:50 jca Exp $
-
-- add support for on-link routes
-
-- add support for non-0 routing tables
-
https://github.com/OpenVPN/openvpn/commit/3dd30bfe5fdf9f34afe7f847b4e30156982d9ff0
-
src/openvpn/route.c.orig Thu Mar 23 02:34:21 2017
-+++ src/openvpn/route.cWed Apr 12 18:06:40 2017
-@@ -1778,12 +1778,17 @@ add_route(struct route_ipv4 *r,
- }
- #endif
-
--argv_printf_cat(&argv, "-net %s %s -netmask %s",
-+argv_printf_cat (&argv, "-net %s -netmask %s",
- network,
--gateway,
- netmask);
-
--/* FIXME -- add on-link support for OpenBSD/NetBSD */
-+/* FIXME -- add on-link support for NetBSD */
-+#ifdef TARGET_OPENBSD
-+if (is_on_link (is_local_route, flags, rgi))
-+argv_printf_cat (&argv, "-link -iface %s", rgi->iface);
-+else
-+#endif
-+argv_printf_cat (&argv, "%s", gateway);
-
- argv_msg(D_ROUTE, &argv);
- status = openvpn_execve_check(&argv, es, 0, "ERROR: OpenBSD/NetBSD route
add command failed");
-@@ -3597,6 +3602,9 @@ get_default_gateway(struct route_gateway_info *rgi)
- rtm.rtm_flags = RTF_UP | RTF_GATEWAY;
- rtm.rtm_version = RTM_VERSION;
- rtm.rtm_seq = ++seq;
-+#ifdef TARGET_OPENBSD
-+rtm.rtm_tableid = getrtable();
-+#endif
- rtm.rtm_addrs = rtm_addrs;
-
- so_dst.sa_family = AF_INET;
-@@ -3812,6 +3820,9 @@ get_default_gateway_ipv6(struct route_ipv6_gateway_inf
- rtm.rtm_flags = RTF_UP;
- rtm.rtm_version = RTM_VERSION;
- rtm.rtm_seq = ++seq;
-+#ifdef TARGET_OPENBSD
-+rtm.rtm_tableid = getrtable();
-+#endif
-
- so_dst.sin6_family = AF_INET6;
- so_mask.sin6_family = AF_INET6;
Index: patches/patch-src_openvpn_syshead_h
===
RCS file: patches/patch-src_openvpn_syshead_h
diff -N patches/patch-src_openvpn_syshead_h
--- patches/patch-src_openvpn_syshead_h 11 Jun 2017 12:15:50 - 1.4
+++ /dev/null 1 Jan 1970 00:00:00 -
@@ -1,18 +0,0 @@
-$OpenBSD: patch-src_openvpn_syshead_h,v 1.4 2017/06/11 12:15:50 jca Exp $
-
-- missing include
-
https://github.com/OpenVPN/openvpn/commit/e5b236eaba4512f86da917a0a63dd0f84e1b02db
-
src/openvpn/syshead.h.orig Wed Feb 15 11:34:39 2017
-+++ src/openvpn/syshead.h Wed Feb 15 11:35:49 2017
-@@ -288,6 +288,10 @@
- #include
- #endif
-
-+#ifdef HAVE_NETINET_TCP_H
-+#include
-+#endif
-+
- #ifdef HAVE_NET_IF_TUN_H
- #include
- #endif
Index: patches/patch-src_openvpn_tun_c
===
RCS file: patches/patch-src_openvpn_tun_c
diff -N patches/patch-src_openvpn_tun_c
--- patches/patch-src_openvpn_t
Re: UPDATE: net/openvpn, please test
On Tue, Nov 18, 2014 at 1:32 AM, Stuart Henderson wrote: > This one should be a straightforward update (changelog is at > https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23#OpenVPN2.3.5) > but more tests would be useful. Hi Stuart, It's working fine for me with my usual use case (client mode). Thanks.
UPDATE: net/openvpn, please test
This one should be a straightforward update (changelog is at
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23#OpenVPN2.3.5)
but more tests would be useful.
Index: Makefile
===
RCS file: /cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.53
diff -u -p -r1.53 Makefile
--- Makefile21 Oct 2014 17:55:11 - 1.53
+++ Makefile18 Nov 2014 00:29:49 -
@@ -2,8 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-DISTNAME= openvpn-2.3.4
-REVISION= 0
+DISTNAME= openvpn-2.3.5
CATEGORIES=net security
HOMEPAGE= http://openvpn.net/
Index: distinfo
===
RCS file: /cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.25
diff -u -p -r1.25 distinfo
--- distinfo10 Oct 2014 21:07:07 - 1.25
+++ distinfo18 Nov 2014 00:29:49 -
@@ -1,2 +1,2 @@
-SHA256 (openvpn-2.3.4.tar.gz) = r1BtX0hWj6jS8kNcs/rTX5qajyY5mept87opaWDOyFo=
-SIZE (openvpn-2.3.4.tar.gz) = 1191101
+SHA256 (openvpn-2.3.5.tar.gz) = 2TtEewFKQewVUMO3YIcapy18CfG1xvweAT0wc6wpyiE=
+SIZE (openvpn-2.3.5.tar.gz) = 1196464
Index: patches/patch-Makefile_in
===
RCS file: /cvs/ports/net/openvpn/patches/patch-Makefile_in,v
retrieving revision 1.2
diff -u -p -r1.2 patch-Makefile_in
--- patches/patch-Makefile_in 10 Oct 2014 21:07:07 - 1.2
+++ patches/patch-Makefile_in 18 Nov 2014 00:29:49 -
@@ -1,7 +1,7 @@
$OpenBSD: patch-Makefile_in,v 1.2 2014/10/10 21:07:07 sthen Exp $
Makefile.in.orig Thu May 1 12:13:12 2014
-+++ Makefile.inTue Jul 29 22:10:23 2014
-@@ -449,8 +449,7 @@ EXTRA_DIST = \
+--- Makefile.in.orig Tue Oct 28 13:17:40 2014
Makefile.inTue Nov 18 00:27:34 2014
+@@ -453,8 +453,7 @@ EXTRA_DIST = \
@GIT_CHECKOUT_TRUE@ config-version.h
SUBDIRS = build distro include src sample doc tests
Index: patches/patch-configure
===
RCS file: /cvs/ports/net/openvpn/patches/patch-configure,v
retrieving revision 1.6
diff -u -p -r1.6 patch-configure
--- patches/patch-configure 10 Oct 2014 21:07:07 - 1.6
+++ patches/patch-configure 18 Nov 2014 00:29:49 -
@@ -1,7 +1,7 @@
$OpenBSD: patch-configure,v 1.6 2014/10/10 21:07:07 sthen Exp $
configure.orig Thu May 1 12:13:13 2014
-+++ configure Tue Jul 29 22:10:23 2014
-@@ -16460,7 +16460,7 @@ fi
+--- configure.orig Tue Oct 28 13:17:41 2014
configure Tue Nov 18 00:27:34 2014
+@@ -16834,7 +16834,7 @@ fi
plugindir="${with_plugindir}"
Index: patches/patch-include_Makefile_in
===
RCS file: /cvs/ports/net/openvpn/patches/patch-include_Makefile_in,v
retrieving revision 1.2
diff -u -p -r1.2 patch-include_Makefile_in
--- patches/patch-include_Makefile_in 10 Oct 2014 21:07:07 - 1.2
+++ patches/patch-include_Makefile_in 18 Nov 2014 00:29:49 -
@@ -1,7 +1,7 @@
$OpenBSD: patch-include_Makefile_in,v 1.2 2014/10/10 21:07:07 sthen Exp $
include/Makefile.in.orig Fri May 2 08:16:40 2014
-+++ include/Makefile.inTue Jul 29 22:10:23 2014
-@@ -306,7 +306,7 @@ host_cpu = @host_cpu@
+--- include/Makefile.in.orig Tue Oct 28 13:18:43 2014
include/Makefile.inTue Nov 18 00:27:34 2014
+@@ -308,7 +308,7 @@ host_cpu = @host_cpu@
host_os = @host_os@
host_vendor = @host_vendor@
htmldir = @htmldir@
Index: patches/patch-sample_sample-config-files_server_conf
===
RCS file:
/cvs/ports/net/openvpn/patches/patch-sample_sample-config-files_server_conf,v
retrieving revision 1.1
diff -u -p -r1.1 patch-sample_sample-config-files_server_conf
--- patches/patch-sample_sample-config-files_server_conf20 Apr 2013
16:22:55 - 1.1
+++ patches/patch-sample_sample-config-files_server_conf18 Nov 2014
00:29:49 -
@@ -1,7 +1,7 @@
$OpenBSD: patch-sample_sample-config-files_server_conf,v 1.1 2013/04/20
16:22:55 sthen Exp $
sample/sample-config-files/server.conf.origMon Sep 10 17:01:08 2012
-+++ sample/sample-config-files/server.conf Thu Mar 7 14:02:35 2013
-@@ -259,8 +259,8 @@ comp-lzo
+--- sample/sample-config-files/server.conf.origFri Jul 25 08:01:32 2014
sample/sample-config-files/server.conf Tue Nov 18 00:27:34 2014
+@@ -266,8 +266,8 @@ comp-lzo
#
# You can uncomment this out on
# non-Windows systems.
Re: update: net/openvpn
On Wed, Aug 27, 2008 at 09:50:20PM +0400, Vadim Zhukov wrote:
> BTW: What about using --enable-password-save? I have to use it - it is,
> IMHO, more secure to save password on secured box than telling this
> password to everyone that uses this tunnel, or giving them access to
> remote PC (and more easy and using-friendly for those people too:) ).
> This option may be enabled as FLAVOR, and even non-linked to builds; I
> use modified in a such way openvpn port, and it works OK for months.
as this just adds functionality without crippling anything, I'd
suggest to just add the configure option to the main port without
making an extra flavour
Index: Makefile
===
RCS file: /cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.17
diff -u -r1.17 Makefile
--- Makefile1 Apr 2008 21:50:14 - 1.17
+++ Makefile4 Sep 2008 15:43:00 -
@@ -2,7 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-VERSION= 2.1_rc7
+VERSION= 2.1_rc9
DISTNAME= openvpn-${VERSION}
PKGNAME= ${DISTNAME:S/_//g}
CATEGORIES=net security
@@ -30,7 +30,8 @@
# pthread support is supposed to be unstable on OpenBSD
CONFIGURE_ARGS+=--disable-pthread \
--with-lzo-headers=${DEPBASE}/include \
- --with-lzo-lib=${DEPBASE}/lib
+ --with-lzo-lib=${DEPBASE}/lib \
+ --enable-password-save
SAMPLES_DIR= ${PREFIX}/share/examples/openvpn
Index: distinfo
===
RCS file: /cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.12
diff -u -r1.12 distinfo
--- distinfo1 Apr 2008 21:50:14 - 1.12
+++ distinfo4 Sep 2008 15:43:00 -
@@ -1,5 +1,5 @@
-MD5 (openvpn-2.1_rc7.tar.gz) = OMj9+qNGXXQASUaLx7Zvzw==
-RMD160 (openvpn-2.1_rc7.tar.gz) = Z+gNe/tVQEbHHJXsFdR4UEBX+QM=
-SHA1 (openvpn-2.1_rc7.tar.gz) = +fV6jvOvirUZJHhK0qq11fV5hYE=
-SHA256 (openvpn-2.1_rc7.tar.gz) = wH/LxBRlv1CMr/cNzEI4uMlemy81vse/iR9xZAJ+y/g=
-SIZE (openvpn-2.1_rc7.tar.gz) = 787379
+MD5 (openvpn-2.1_rc9.tar.gz) = 9DXkrUPPQyPpQtpXC65JUQ==
+RMD160 (openvpn-2.1_rc9.tar.gz) = vcJ8el4qHaqM51l6n6CZFnhhu/0=
+SHA1 (openvpn-2.1_rc9.tar.gz) = VrAf2bLN2L1MIlfZG5uHmm+dsdg=
+SHA256 (openvpn-2.1_rc9.tar.gz) = 9z7CJ6X7f0xzGQ565SpZpNsUno1ijyLooKdipY+7Qk0=
+SIZE (openvpn-2.1_rc9.tar.gz) = 818716
Re: update: net/openvpn
27 August 2008 г. 16:08:02 Felix Kronlage wrote: > hi, > > attached is an update to OpenVPN 2.1rc9. > (this does fix a security issue with previous releases > from the 2.1 RC series[1]) > Please test and comment. > > felix > > [1] http://www.openvpn.net/index.php/documentation/change-log/changelog-21 >.html> Works well for me so far. BTW: What about using --enable-password-save? I have to use it - it is, IMHO, more secure to save password on secured box than telling this password to everyone that uses this tunnel, or giving them access to remote PC (and more easy and using-friendly for those people too:) ). This option may be enabled as FLAVOR, and even non-linked to builds; I use modified in a such way openvpn port, and it works OK for months. -- Best wishes, Vadim Zhukov
Re: update: net/openvpn
hi,
attached is an update to OpenVPN 2.1rc9.
(this does fix a security issue with previous releases
from the 2.1 RC series[1])
Please test and comment.
felix
[1] http://www.openvpn.net/index.php/documentation/change-log/changelog-21.html>
Index: Makefile
===
RCS file: /src/ports/net/openvpn/Makefile,v
retrieving revision 1.17
diff -u -r1.17 Makefile
--- Makefile1 Apr 2008 21:50:14 - 1.17
+++ Makefile27 Aug 2008 12:02:42 -
@@ -2,7 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-VERSION= 2.1_rc7
+VERSION= 2.1_rc9
DISTNAME= openvpn-${VERSION}
PKGNAME= ${DISTNAME:S/_//g}
CATEGORIES=net security
Index: distinfo
===
RCS file: /src/ports/net/openvpn/distinfo,v
retrieving revision 1.12
diff -u -r1.12 distinfo
--- distinfo1 Apr 2008 21:50:14 - 1.12
+++ distinfo27 Aug 2008 12:02:43 -
@@ -1,5 +1,5 @@
-MD5 (openvpn-2.1_rc7.tar.gz) = OMj9+qNGXXQASUaLx7Zvzw==
-RMD160 (openvpn-2.1_rc7.tar.gz) = Z+gNe/tVQEbHHJXsFdR4UEBX+QM=
-SHA1 (openvpn-2.1_rc7.tar.gz) = +fV6jvOvirUZJHhK0qq11fV5hYE=
-SHA256 (openvpn-2.1_rc7.tar.gz) = wH/LxBRlv1CMr/cNzEI4uMlemy81vse/iR9xZAJ+y/g=
-SIZE (openvpn-2.1_rc7.tar.gz) = 787379
+MD5 (openvpn-2.1_rc9.tar.gz) = 9DXkrUPPQyPpQtpXC65JUQ==
+RMD160 (openvpn-2.1_rc9.tar.gz) = vcJ8el4qHaqM51l6n6CZFnhhu/0=
+SHA1 (openvpn-2.1_rc9.tar.gz) = VrAf2bLN2L1MIlfZG5uHmm+dsdg=
+SHA256 (openvpn-2.1_rc9.tar.gz) = 9z7CJ6X7f0xzGQ565SpZpNsUno1ijyLooKdipY+7Qk0=
+SIZE (openvpn-2.1_rc9.tar.gz) = 818716
update: net/openvpn
hi,
attached is an update of OpenVPN to 2.1rc8.
tests more than welcome.
felix
Index: Makefile
===
RCS file: /cvs/ports/net/openvpn/Makefile,v
retrieving revision 1.17
diff -u -r1.17 Makefile
--- Makefile1 Apr 2008 21:50:14 - 1.17
+++ Makefile12 Jul 2008 18:20:46 -
@@ -2,7 +2,7 @@
COMMENT= easy-to-use, robust, and highly configurable VPN
-VERSION= 2.1_rc7
+VERSION= 2.1_rc8
DISTNAME= openvpn-${VERSION}
PKGNAME= ${DISTNAME:S/_//g}
CATEGORIES=net security
@@ -18,7 +18,7 @@
PERMIT_DISTFILES_FTP= Yes
WANTLIB= c crypto ssl
-MASTER_SITES= ${HOMEPAGE}/release/
+MASTER_SITES= https://secure.openvpn.net/beta/
LIB_DEPENDS= lzo::archivers/lzo
Index: distinfo
===
RCS file: /cvs/ports/net/openvpn/distinfo,v
retrieving revision 1.12
diff -u -r1.12 distinfo
--- distinfo1 Apr 2008 21:50:14 - 1.12
+++ distinfo12 Jul 2008 18:20:46 -
@@ -1,5 +1,5 @@
-MD5 (openvpn-2.1_rc7.tar.gz) = OMj9+qNGXXQASUaLx7Zvzw==
-RMD160 (openvpn-2.1_rc7.tar.gz) = Z+gNe/tVQEbHHJXsFdR4UEBX+QM=
-SHA1 (openvpn-2.1_rc7.tar.gz) = +fV6jvOvirUZJHhK0qq11fV5hYE=
-SHA256 (openvpn-2.1_rc7.tar.gz) = wH/LxBRlv1CMr/cNzEI4uMlemy81vse/iR9xZAJ+y/g=
-SIZE (openvpn-2.1_rc7.tar.gz) = 787379
+MD5 (openvpn-2.1_rc8.tar.gz) = BZ37biG1A2h8a0qKGwA0rA==
+RMD160 (openvpn-2.1_rc8.tar.gz) = 0eER6FxvjZMpkSFo4jfbGXayzcs=
+SHA1 (openvpn-2.1_rc8.tar.gz) = yHNQ9L16m+owzf+hEbLwgoHEB8w=
+SHA256 (openvpn-2.1_rc8.tar.gz) = DIDbAv94OyP5HyMLx2mq7Ja6tAUQaCkoOjucRwKCLtA=
+SIZE (openvpn-2.1_rc8.tar.gz) = 809545
