ports/103244: [MAINTAINER] security/openvpn-devel: update to 2.1.beta15

Matthias Andree matthias.andree at gmx.de
Wed Sep 13 22:00:42 UTC 2006


>Number:         103244
>Category:       ports
>Synopsis:       [MAINTAINER] security/openvpn-devel: update to 2.1.beta15
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Wed Sep 13 22:00:36 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator:     Matthias Andree
>Release:        FreeBSD 6.1-SECURITY i386
>Organization:
>Environment:
System: FreeBSD libertas.emma.line.org 6.1-SECURITY FreeBSD 6.1-SECURITY #0: Mon Aug 28 05:21:08 UTC 2006
>Description:
update to 2.1.beta15, quoting ChangeLog, edited for brevity:

|* Fixed bug introduced with the --port-share directive
|  (back in 2.1-beta9 which causes TLS soft resets
|  (1 per hour by default) in TCP server mode to force
|  a blockage of tunnel packets and later time-out and
|  restart the connection.
|
|* pkcs11 changes: 
|  1. Modified ssl.c to not FATAL and return to init.c
|     so auth-retry will work.
|  2. Modifed pkcs11-helper.c to fix some problem with
|     multiple providers. [...]
|  4. Modified lladdr.c to be compiled under visual C.
|  5. Added retry counter to PKCS#11 PIN hook.
|  6. Modified PKCS#11 PIN retry loop to return correct error
|     code when PIN is incorrect.
|  7. Fix handling (ignoring) zero sized attributes.
|  8. Fix gcc-2 issues.
|  9. Fix openssl 0.9.6 (first version) issues.
|  10. easy-rsa Makefile (install) is now available so that
|      distribs will be able to install it safely.
|
|* Added two new management states:
|   OPENVPN_STATE_RESOLVE      -- DNS lookup
|   OPENVPN_STATE_TCP_CONNECT  -- Connecting to TCP server
|
|* Echo management state change to log.
|
|* Added optional minimum-number-of-bytes parameter
|  to --inactive directive.

Added file(s):
- files/patch-fix-cltsrv-timeout

Generated with FreeBSD Port Tools 0.77
>How-To-Repeat:
>Fix:

--- openvpn-devel-2.1.b15.patch begins here ---
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/Makefile /usr/home/emma/ports/security/openvpn-devel/Makefile
--- /usr/ports/security/openvpn-devel/Makefile	Sun Aug 20 09:08:18 2006
+++ /usr/home/emma/ports/security/openvpn-devel/Makefile	Wed Sep 13 22:55:56 2006
@@ -6,8 +6,7 @@
 #
 
 PORTNAME=	openvpn
-DISTVERSION=	2.1_beta14
-PORTREVISION=	1
+DISTVERSION=	2.1_beta15
 CATEGORIES=	security net
 # MASTER_SITES points to hosts in distinct data centers,
 # so just one MASTER_SITES entry should be OK.
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/distinfo /usr/home/emma/ports/security/openvpn-devel/distinfo
--- /usr/ports/security/openvpn-devel/distinfo	Sat Aug 19 16:29:37 2006
+++ /usr/home/emma/ports/security/openvpn-devel/distinfo	Wed Sep 13 22:55:26 2006
@@ -1,3 +1,3 @@
-MD5 (openvpn-2.1_beta14.tar.gz) = 7bd96eaa834a1779755d68c9b2591583
-SHA256 (openvpn-2.1_beta14.tar.gz) = da61d236047b9a5985765961930446a706aeef87dc2b4ce0f7e2c9f2831566ea
-SIZE (openvpn-2.1_beta14.tar.gz) = 775042
+MD5 (openvpn-2.1_beta15.tar.gz) = 2ddc1878c99ea3a9b348275338f7d502
+SHA256 (openvpn-2.1_beta15.tar.gz) = 35daa28523095d637bc694d4e22f9a0e075f9e8b910998ca7bf2576fa9d8cc05
+SIZE (openvpn-2.1_beta15.tar.gz) = 776778
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout /usr/home/emma/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout
--- /usr/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout	Thu Jan  1 01:00:00 1970
+++ /usr/home/emma/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout	Wed Sep 13 23:07:47 2006
@@ -0,0 +1,19 @@
+This fix was published by Paul Howarth on the OpenVPN-devel mailing list
+on 2006-09-13 and fixes the TLS test's running indefinitely.
+
+--- ./sample-config-files/loopback-client~	2006-09-12 18:21:43.000000000 +0100
++++ ./sample-config-files/loopback-client	2006-09-12 18:22:40.000000000 +0100
+@@ -22,4 +22,4 @@
+ cert sample-keys/client.crt
+ cipher DES-EDE3-CBC
+ ping 1
+-inactive 120
++inactive 120 10000000
+--- ./sample-config-files/loopback-server~	2006-09-12 18:21:50.000000000 +0100
++++ ./sample-config-files/loopback-server	2006-09-12 18:22:51.000000000 +0100
+@@ -23,4 +23,4 @@
+ cert sample-keys/server.crt
+ cipher DES-EDE3-CBC
+ ping 1
+-inactive 120
++inactive 120 10000000
--- openvpn-devel-2.1.b15.patch ends here ---

>Release-Note:
>Audit-Trail:
>Unformatted:



More information about the freebsd-ports-bugs mailing list