./net/openvpn, Easy-to-use SSL VPN daemon

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.5.3, Package name: openvpn-2.5.3, Maintainer: pkgsrc-users

OpenVPN is a robust and highly flexible tunneling application
that uses all of the encryption, authentication, and certification
features of the OpenSSL library to securely tunnel IP networks over
a single TCP/UDP port.


Required to run:
[archivers/lzo] [security/openssl] [archivers/lz4]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: 9bcb8aaa0a56ba7d7af4c2c1f2c955f2026b28a7
RMD160: 0fd6f0f32105a3997f6359fd5818e3695d7b51c3
Filesize: 1122.074 KB

Version history: (Expand)


CVS history: (Expand)


   2021-07-27 09:35:05 by Adam Ciarcinski | Files touched by this commit (5) | Package updated
Log message:
openvpn: updated to 2.5.3

Version 2.5.3
* Add missing free_key_ctx for auth_token
* Add github actions
* Implement auth-token-user
* Update copyrights
* openvpnmsica: properly schedule reboot in the end of installation
* msvc: add ARM64 configuration
* msvc: standalone building
* contrib/vcpkg-ports: add pkcs11-helper port
* vcpkg-ports: restore trailing whitespaces in .patch files
* GitHub actions: add MSVC build
* crypto_openssl.c: disable explicit initialization on Windows (CVE-2121-3606)
* contrib/vcpkg-ports: add openssl port with --no-autoload-config option set \ 
(CVE-2121-3606)
* Fix SIGSEGV (NULL deref) receiving push "echo"
* Fix build with mbedtls w/o SSL renegotiation support
* Improve documentation of AUTH_PENDING related directives
* Apply the connect-retry backoff to only one side of a connection
   2021-05-02 10:16:41 by Nia Alarie | Files touched by this commit (10)
Log message:
Recursive revbump for security/mbedtls
   2021-04-22 15:53:16 by Adam Ciarcinski | Files touched by this commit (6) | Package updated
Log message:
openvpn: updated to 2.5.2

The OpenVPN community project team is proud to release OpenVPN 2.5.2. It fixes \ 
two related security vulnerabilities (CVE-2020-15078) which under very specific \ 
circumstances allow tricking a server using delayed authentication (plugin or \ 
management) into returning a PUSH_REPLY before the AUTH_FAILED message, which \ 
can possibly be used to gather information about a VPN setup. In combination \ 
with “–auth-gen-token” or a user-specific token auth solution it can be \ 
possible to get access to a VPN with an otherwise-invalid account. OpenVPN 2.5.2 \ 
also includes other bug fixes and improvements. Updated OpenSSL and OpenVPN GUI \ 
are included in Windows installers.
   2021-04-21 15:25:34 by Adam Ciarcinski | Files touched by this commit (864)
Log message:
revbump for boost-libs
   2021-04-15 13:23:14 by Ryo ONODERA | Files touched by this commit (95)
Log message:
*: Recursive revbump from devel/nss
   2021-04-09 08:55:06 by Thomas Klausner | Files touched by this commit (95) | Package updated
Log message:
*: bump PKGREVISION for nss linking fix
   2021-02-24 20:13:51 by Adam Ciarcinski | Files touched by this commit (7) | Package updated
Log message:
openvpn: updated to 2.5.1

Version 2.5.1
* Fix auth-token not being updated if auth-nocache is set
* Remove auth_user_pass.wait_for_push variable
* Fix port-share option with TLS-Crypt v2
* Zero initialise msghdr prior to calling sendmesg
* Fix tls-auth mismatch OCC message when tls-cryptv2 is used.
* build: Fix missing install of man page in certain environments
* Fix too early argv freeing when registering DNS
* Remove 1 second delay before running netsh
* Skip DHCP renew with Wintun adapter
* Change travis build scripts to use https when fetching prerequisites.
* Fix line number reporting on config file errors after <inline> segments
* Clarify --block-ipv6 intent and direction.
* Document common uses of 'echo' directive, re-enable logging for 'echo'.
* Make OPENVPN_PLUGIN_ENABLE_PF failures FATAL
* clean up / rewrite sample-plugins/defer/simple.c
* Fix naming error in sample-plugins/defer/simple.c
* Documentation fixes around openvpn_plugin_func_v3 in openvpn-plugin.h.in
* Update openvpn_plugin_func_v2 to _v3 in sample-plugins/defer/simple.c
* More explicit versioning compatibility in sample-plugins/defer/simple.c
* Explain structver usage in sample defer plugin.
* Man page sections corrections
* Quote the domain name argument passed to the wmic command
* tls-crypt-v2: fix server memory leak
* tls-crypt-v2: also preload tls-crypt-v2 keys (if --persist-key)
   2021-02-05 16:03:29 by Greg Troxel | Files touched by this commit (1)
Log message:
net/openvpn: Drop MESSAGE

This says nothing other than that the package behaves the way it
should and that the user should read the documentation.

(The hint about upgrading is from at least 7 years ago, so that should
be deleted anyway.)