ports/103244: [MAINTAINER] security/openvpn-devel: update to 2.1.beta15
Matthias Andree
matthias.andree at gmx.de
Wed Sep 13 22:00:42 UTC 2006
>Number: 103244
>Category: ports
>Synopsis: [MAINTAINER] security/openvpn-devel: update to 2.1.beta15
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: maintainer-update
>Submitter-Id: current-users
>Arrival-Date: Wed Sep 13 22:00:36 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: Matthias Andree
>Release: FreeBSD 6.1-SECURITY i386
>Organization:
>Environment:
System: FreeBSD libertas.emma.line.org 6.1-SECURITY FreeBSD 6.1-SECURITY #0: Mon Aug 28 05:21:08 UTC 2006
>Description:
update to 2.1.beta15, quoting ChangeLog, edited for brevity:
|* Fixed bug introduced with the --port-share directive
| (back in 2.1-beta9 which causes TLS soft resets
| (1 per hour by default) in TCP server mode to force
| a blockage of tunnel packets and later time-out and
| restart the connection.
|
|* pkcs11 changes:
| 1. Modified ssl.c to not FATAL and return to init.c
| so auth-retry will work.
| 2. Modifed pkcs11-helper.c to fix some problem with
| multiple providers. [...]
| 4. Modified lladdr.c to be compiled under visual C.
| 5. Added retry counter to PKCS#11 PIN hook.
| 6. Modified PKCS#11 PIN retry loop to return correct error
| code when PIN is incorrect.
| 7. Fix handling (ignoring) zero sized attributes.
| 8. Fix gcc-2 issues.
| 9. Fix openssl 0.9.6 (first version) issues.
| 10. easy-rsa Makefile (install) is now available so that
| distribs will be able to install it safely.
|
|* Added two new management states:
| OPENVPN_STATE_RESOLVE -- DNS lookup
| OPENVPN_STATE_TCP_CONNECT -- Connecting to TCP server
|
|* Echo management state change to log.
|
|* Added optional minimum-number-of-bytes parameter
| to --inactive directive.
Added file(s):
- files/patch-fix-cltsrv-timeout
Generated with FreeBSD Port Tools 0.77
>How-To-Repeat:
>Fix:
--- openvpn-devel-2.1.b15.patch begins here ---
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/Makefile /usr/home/emma/ports/security/openvpn-devel/Makefile
--- /usr/ports/security/openvpn-devel/Makefile Sun Aug 20 09:08:18 2006
+++ /usr/home/emma/ports/security/openvpn-devel/Makefile Wed Sep 13 22:55:56 2006
@@ -6,8 +6,7 @@
#
PORTNAME= openvpn
-DISTVERSION= 2.1_beta14
-PORTREVISION= 1
+DISTVERSION= 2.1_beta15
CATEGORIES= security net
# MASTER_SITES points to hosts in distinct data centers,
# so just one MASTER_SITES entry should be OK.
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/distinfo /usr/home/emma/ports/security/openvpn-devel/distinfo
--- /usr/ports/security/openvpn-devel/distinfo Sat Aug 19 16:29:37 2006
+++ /usr/home/emma/ports/security/openvpn-devel/distinfo Wed Sep 13 22:55:26 2006
@@ -1,3 +1,3 @@
-MD5 (openvpn-2.1_beta14.tar.gz) = 7bd96eaa834a1779755d68c9b2591583
-SHA256 (openvpn-2.1_beta14.tar.gz) = da61d236047b9a5985765961930446a706aeef87dc2b4ce0f7e2c9f2831566ea
-SIZE (openvpn-2.1_beta14.tar.gz) = 775042
+MD5 (openvpn-2.1_beta15.tar.gz) = 2ddc1878c99ea3a9b348275338f7d502
+SHA256 (openvpn-2.1_beta15.tar.gz) = 35daa28523095d637bc694d4e22f9a0e075f9e8b910998ca7bf2576fa9d8cc05
+SIZE (openvpn-2.1_beta15.tar.gz) = 776778
diff -ruN --exclude=CVS /usr/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout /usr/home/emma/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout
--- /usr/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout Thu Jan 1 01:00:00 1970
+++ /usr/home/emma/ports/security/openvpn-devel/files/patch-fix-cltsrv-timeout Wed Sep 13 23:07:47 2006
@@ -0,0 +1,19 @@
+This fix was published by Paul Howarth on the OpenVPN-devel mailing list
+on 2006-09-13 and fixes the TLS test's running indefinitely.
+
+--- ./sample-config-files/loopback-client~ 2006-09-12 18:21:43.000000000 +0100
++++ ./sample-config-files/loopback-client 2006-09-12 18:22:40.000000000 +0100
+@@ -22,4 +22,4 @@
+ cert sample-keys/client.crt
+ cipher DES-EDE3-CBC
+ ping 1
+-inactive 120
++inactive 120 10000000
+--- ./sample-config-files/loopback-server~ 2006-09-12 18:21:50.000000000 +0100
++++ ./sample-config-files/loopback-server 2006-09-12 18:22:51.000000000 +0100
+@@ -23,4 +23,4 @@
+ cert sample-keys/server.crt
+ cipher DES-EDE3-CBC
+ ping 1
+-inactive 120
++inactive 120 10000000
--- openvpn-devel-2.1.b15.patch ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list