aboutsummaryrefslogtreecommitdiff
path: root/security/openvpn20
Commit message (Collapse)AuthorAgeFilesLines
* Remove expired security/openvpn20 port.Matthias Andree2013-07-1011-457/+0
| | | | | | | It is recommended to migrate to security/openvpn. Notes: svn path=/head/; revision=322736
* Add LICENSE=GPLv2.Matthias Andree2013-06-031-0/+2
| | | | Notes: svn path=/head/; revision=319805
* - Backport fix for CVE-2013-2061 to openvpn22 and openvpn20;Matthias Andree2013-06-012-1/+75
| | | | | | | | | | | | | | | while it is unclear whether it affects OpenSSL-builds at all. Let's play it safe. - Reference CVE-2013-2061 name in OpenVPN's VuXML entry - Mark 2.0.9_4 <= openvpn < 2.1.0 and 2.2.2_2 < openvpn < 2.3.0 not vulnerable - Mark openvpn22 deprecated and to expire 2013-09-01. (openvpn20 is already marked to expire 2013-07-11.) Security: CVE-2013-2061 Security: 92f30415-9935-11e2-ad4c-080027ef73ec Notes: svn path=/head/; revision=319579
* OpenVPN changes, upgrades and fixes:Matthias Andree2013-01-112-1/+15
| | | | | | | | | | | | | | - Upgrade security/openvpn to v2.3.0 (changes installed layout a bit), splitting and re-diffing patches. - Retain v2.2.2 as security/openvpn22 - Mark security/openvpn20 as deprecated and to expire 6 months from now - Fix TCP_NODELAY option (openvpn 2.3, 2.2), see <http://community.openvpn.net/openvpn/ticket/158> - Fix PassTOS option (openvpn 2.2, 2.0), see http://community.openvpn.net/openvpn/ticket/135 Notes: svn path=/head/; revision=310252
* - Convert to OptionsNGMatthias Andree2013-01-061-9/+8
| | | | | | | | - Strip Makefile header - Drop LIB_DEPENDS ABI versions Notes: svn path=/head/; revision=309978
* Move the rc.d scripts of the form *.sh.in to *.inDoug Barton2012-08-052-1/+1
| | | | | | | | | Where necessary add $FreeBSD$ to the file No PORTREVISION bump necessary because this is a no-op Notes: svn path=/head/; revision=302141
* In the rc.d scripts, change assignments to rcvar to use theDoug Barton2012-01-141-2/+1
| | | | | | | | | | | | | | literal name_enable wherever possible, and ${name}_enable when it's not, to prepare for the demise of set_rcvar(). In cases where I had to hand-edit unusual instances also modify formatting slightly to be more uniform (and in some cases, correct). This includes adding some $FreeBSD$ tags, and most importantly moving rcvar= to right after name= so it's clear that one is derived from the other. Notes: svn path=/head/; revision=289156
* Remove more tags from pkg-descr files fo the form:Doug Barton2011-10-241-3/+0
| | | | | | | | | | | - Name em@i.l or variations thereof. While I'm here also fix some whitespace and other formatting errors, including moving WWW: to the last line in the file. Notes: svn path=/head/; revision=284232
* Update and demote CONFLICTS to CONFLICTS_INSTALL.Matthias Andree2011-10-041-1/+1
| | | | Notes: svn path=/head/; revision=282955
* Use recently bugfixed rc script from ../openvpn port.Matthias Andree2011-08-302-19/+20
| | | | Notes: svn path=/head/; revision=280781
* - Turn off self-tests on pointyhat, they failPav Lucistnik2011-08-071-0/+4
| | | | | | | Reported by: pointyhat Notes: svn path=/head/; revision=279143
* archivers/lzo was removed, remove support for it.Matthias Andree2011-07-251-10/+2
| | | | Notes: svn path=/head/; revision=278321
* Fix Pointyhat build failures by skipping (not failing) network-based tests.Matthias Andree2011-07-251-0/+11
| | | | Notes: svn path=/head/; revision=278320
* Clang fixes:- patch plugin Makefiles to use ${CC} rather than gcc (found by ↵Matthias Andree2011-06-204-3/+46
| | | | | | | | | | | | | -exp run); - silence non-literal format string warnings (non-fix, adds patch-options.c) - fix missing prototype warning (adds patch-route.c, bumps PORTREVISION) - Use full ${MAKE} environment from do-build, for consistency. While here, remove MD5 checksum. Notes: svn path=/head/; revision=275927
* Remove painful examples of foo="", with particular prejudice againstDoug Barton2011-05-151-2/+2
| | | | | | | | | | | | | | | | | | constructions that parse out to [ -z "$foo" ] && foo="" These are bad examples that get copied and pasted into new code, so the hope is that with less bad examples there will be less need for me to bring this up in review. In a few of these files all that were changed were comments so that next time I search for these patterns I won't trip on the file for no reason. In a few places, add $FreeBSD$ No functional changes, so no PORTREVISION bumps Notes: svn path=/head/; revision=274133
* Add a note about skipping the self-test.Matthias Andree2011-01-081-0/+1
| | | | Notes: svn path=/head/; revision=267509
* Streamline a bit:Matthias Andree2011-01-081-10/+6
| | | | | | | | | | | | - remove subshell to use basename, and use ## substitution [1] - remove FreeBSD 5.X compatibility comment [1] - remove FreeBSD 5.X compatibility code The parts marked with [1] above were Submitted by: dougb (Doug Barton) Notes: svn path=/head/; revision=267508
* Switch MAINTAINER line to FreeBSD address.Matthias Andree2010-06-131-1/+1
| | | | | | | Approved by: garga (mentor, implicit) Notes: svn path=/head/; revision=256473
* RC_SUBR_SUFFIX has not been needed for a long time now, all supportedDoug Barton2010-03-272-3/+1
| | | | | | | | versions of FreeBSD now use /etc/rc.subr and rc.d scripts without .sh appended to the script name. Notes: svn path=/head/; revision=251570
* Begin the process of deprecating sysutils/rc_subr byDoug Barton2010-03-271-1/+1
| | | | | | | s#. %%RC_SUBR%%#. /etc/rc.subr# Notes: svn path=/head/; revision=251553
* Move security/openvpn to security/openvpn20 (after previous repocopy).Matthias Andree2010-01-076-66/+16
| | | | | | | | | | | | | | | | | | | | | Update security/openvpn20 to 2.0.9, revising pkg-message. Move security/openvpn-devel to security/openvpn and update security/openvpn to 2.1.1. Remove security/openvpn-devel, adding a MOVED entry. Update security/Makefile to remove openvpn-devel and add openvpn20 to SUBDIRS. Add a UPDATING entry for this shuffle. Currently without upgrade instructions since neither portupgrade nor portmaster are up to the task (because of the CONFLICTS). Approved by: garga@ (mentor) Notes: svn path=/head/; revision=247340
* Fix a few "bad example" problems in the rc.d scripts that have beenDoug Barton2009-07-151-4/+2
| | | | | | | | | | | | | | | | | | | | | | | propogated by copy and paste. 1. Primarily the "empty variable" default assignment, which is mostly ${name}_flags="", but fix a few others as well. 2. Where they are not already documented, add the existence of the _flags (or other deleted empties) option to the comments, and in some cases add comments from scratch. 3. Replace things that look like: prefix=%%PREFIX%% command=${prefix}/sbin/foo to just use %%PREFIX%%. In many cases the $prefix variable is only used once, and in some cases it is not used at all. 4. In a few cases remove ${name}_flags from command_args 5. Remove a long-stale comment about putting the port's rc.d script in /etc/rc.d (which is no longer necessary). No PORTREVISION bumps because all of these changes are noops. Notes: svn path=/head/; revision=237892
* - Add logging knobBeech Rintoul2009-01-251-0/+16
| | | | | | | | | PR: ports/130893 Submitted by: Michael Scheidell <scheidell@secnap.net> Approved by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Notes: svn path=/head/; revision=226831
* Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.Rong-En Fan2008-08-211-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Specifically, newer autoconf (> 2.13) has different semantic of the configure target. In short, one should use --build=CONFIGURE_TARGET instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning and the old semantic may be removed in later autoconf releases. To workaround this issue, many ports hack the CONFIGURE_TARGET variable so that it contains the ``--build='' prefix. To solve this issue, under the fact that some ports still have configure script generated by the old autoconf, we use runtime detection in the do-configure target so that the proper argument can be used. Changes to Mk/*: - Add runtime detection magic in bsd.port.mk - Remove CONFIGURE_TARGET hack in various bsd.*.mk - USE_GNOME=gnometarget is now an no-op Changes to individual ports, other than removing the CONFIGURE_TARGET hack: = pkg-plist changed (due to the ugly CONFIGURE_TARGET prefix in * executables) - comms/gnuradio - science/abinit - science/elmer-fem - science/elmer-matc - science/elmer-meshgen2d - science/elmerfront - science/elmerpost = use x86_64 as ARCH - devel/g-wrap = other changes - print/magicfilter GNU_CONFIGURE -> HAS_CONFIGURE since it's not generated by autoconf Total # of ports modified: 1,027 Total # of ports affected: ~7,000 (set GNU_CONFIGURE to yes) PR: 126524 (obsoletes 52917) Submitted by: rafan Tested on: two pointyhat 7-amd64 exp runs (by pav) Approved by: portmgr (pav) Notes: svn path=/head/; revision=218938
* - Respect NOPORTDOCSMartin Wilke2008-07-181-5/+9
| | | | | | | | PR: 125726 Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Notes: svn path=/head/; revision=217016
* - Run opensvn with --daemon ${name} in order to get distinguishable andRong-En Fan2008-02-202-3/+3
| | | | | | | | | | useful syslog tags PR: ports/120862 Submitted by: Matthias Andree <matthias.andree at gmx.de> (maintainer) Notes: svn path=/head/; revision=207617
* Remove spurious empty BEFORE: linesDoug Barton2007-03-081-1/+0
| | | | | | | Approved by: maintainer Notes: svn path=/head/; revision=186876
* rcfile:Juergen Lock2007-03-042-16/+16
| | | | | | | | | | | | | | | | | - fix for FreeBSD releases before rcorder integration - update copyright notice - replace shell backticks by $(). Port: - bump revision - reformat comment PR: ports/109856 Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Approved by: miwi (mentor) Notes: svn path=/head/; revision=186508
* Fix a bug I introduced with last commit which resulted in openvpn notVasil Dimov2007-02-252-2/+12
| | | | | | | | | | | being started during boot. The reason for this is that at boot $0 is not /usr/local/etc/rc.d/openvpn but /etc/rc. The fix is a bit hackish because it retrieves the script name from $_file - variable used in run_rc_script(). Reported by: bazzoola <bazzoola@gmail.com> Notes: svn path=/head/; revision=185921
* use $() instead of ``Vasil Dimov2007-02-231-1/+1
| | | | | | | Requested by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Notes: svn path=/head/; revision=185746
* * Add support for running multiple instances of openvpn to the startup scriptVasil Dimov2007-02-232-20/+39
| | | | | | | | | | | | | | | Inspired by [1] * Bump PORTREVISION * Update the comment which says not to send notices about 2.0.8 to 2.0.9 since 2.0.9 also introduces only Windows changes. Remove maintainer's name from this comment since he did not explicitly state this. PR: ports/108371 [1] Submitted by: Denis Shaposhnikov <dsh@vlink.ru>, Gleb Kozyrev <gkozyrev@gmail.com> [1] Approved by: matthias.andree@gmx.de (maintainer timeout, 28 days) Notes: svn path=/head/; revision=185735
* - Use newly added RC_SUBR_SUFFIXRong-En Fan2007-02-041-6/+1
| | | | | | | Approved by: Matthias Andree <matthias.andree at gmx.de> (maintainer) Notes: svn path=/head/; revision=184148
* - Fix build failures that arose from an accidentally omitted -fPIC.Alejandro Pulver2006-10-021-3/+3
| | | | | | | | | | | | - Portrevision bumped since the change affects all architectures, not just those that were failing. PR: ports/103863 Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Reported by: pointyhat Notes: svn path=/head/; revision=174321
* - Install additional auth-pam pluginRong-En Fan2006-09-302-5/+8
| | | | | | | | | | PR: ports/103833 Submitted by: Matthias Andree <matthias.andree at gmx.de> (maintainer) Suggested by: Michael Helmeste Tested by: Michael Helmeste Notes: svn path=/head/; revision=174136
* - Update comments for OpenVPN 2.0.8Rong-En Fan2006-09-141-3/+3
| | | | | | | | PR: ports/103243 Submitted by: Matthias Andree <matthias.andree at gmx.de> (maintainer) Notes: svn path=/head/; revision=172988
* - conflicts with openvpn-devel-[0-9]*Ion-Mihai Tetcu2006-08-201-1/+3
| | | | | | | | | | - bump PORTREVISION PR: ports/102301 Submitted by: Matthias Andree (maintainer) Notes: svn path=/head/; revision=171010
* 1 - build and install lib/openvpn-down-root.so plugin (see --plugin option inIon-Mihai Tetcu2006-07-284-3/+55
| | | | | | | | | | | | | | | | | | | | the man page) and README.openvpn-down-root 2 - match rc.d filename as printed post install in pkg-message to actual file name on newer systems (which use openvpn rather than openvpn.sh) Reported by: Jean-Baptiste Quenot (Bcc'd) The maintainer wishes to thank Jean-Baptiste for his report and patience. 3 - add a pkg-req script to prevent installation of 6.1 packages on older machines, which is a frequent source of "rc.d script doesn't work" complaints. Added file(s): - files/pkg-req.in PR: ports/100917 Submitted by: Matthias Andree (maintainer) Notes: svn path=/head/; revision=168953
* Add a message explaining why it won't be upgraded to 2.0.7 version, toRenato Botelho2006-04-271-0/+6
| | | | | | | | | | | | | | | | | prevent a lot of people asking maintainer about it: # ----------------------------------------------------- # DO NOT BOTHER TO SEND NOTICES ABOUT 2.0.7 AS IT FIXES # A WINDOWS-ONLY BUG THAT DOESN'T AFFECT *BSD AND THUS # DOES NOT WARRANT A PORT UPGRADE! AND UPGRADE REQUESTS # WILL BE DROPPED. -- Matthias Andree, 2006-04-26 # ----------------------------------------------------- PR: ports/96383 Submitted by: maintainer Notes: svn path=/head/; revision=160591
* - Update to 2.0.6Renato Botelho2006-04-053-72/+4
| | | | | | | | | | | | | | | | * security fix for client LD_PRELOAD code injection vulnerability through compromised upstream servers (FreeBSD VuXML Vuln VID be4ccb7b-c48b-11da-ae12-0002b3b60e4c, filed in separate PR) CVE id not known yet * 2 other changes only relevant for Linux and NetBSD, not detailed here. PR: ports/95345 Submitted by: maintainer Security: VuXML be4ccb7b-c48b-11da-ae12-0002b3b60e4c Notes: svn path=/head/; revision=158868
* Fix FreeBSD 4 jail buildVasil Dimov2006-02-281-1/+1
| | | | | | | | | | PR: ports/93833 Patch by: dinoex Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Approved by: portmgr (marcus) Notes: svn path=/head/; revision=156895
* Remove the FreeBSD KEYWORD from all rc.d scripts where it appears.Doug Barton2006-02-201-1/+1
| | | | | | | | | | We have not checked for this KEYWORD for a long time now, so this is a complete noop, and thus no PORTREVISION bump. Removing it at this point is mostly for pedantic reasons, and partly to avoid perpetuating this anachronism by copy and paste to future scripts. Notes: svn path=/head/; revision=156534
* - CATEGORY CHANGE: add "net" secondary categoryRenato Botelho2005-11-105-22/+31
| | | | | | | | | | | | | - fix jail build on FreeBSD 4 (no security.jail.jailed oid in sysctl) - catch jail IP misconfiguration and print clear error message - add SHA256 checksum - revise pkg-message and pkg-descr PR: ports/88785 Submitted by: maintainer Notes: svn path=/head/; revision=147838
* Enables self-tests with WITH_JAILMarcus Alves Grando2005-11-052-2/+64
| | | | | | | | | | Bump PORTREVISION PR: 88488 Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Notes: svn path=/head/; revision=147246
* - Update to 2.0.5Renato Botelho2005-11-033-3/+22
| | | | | | | | PR: ports/88437 Submitted by: maintainer Notes: svn path=/head/; revision=147131
* Update to 2.0.4Marcus Alves Grando2005-11-023-26/+5
| | | | | | | | | PR: 88379 Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer) Security: CVE-2005-3393, CVE-2005-3409 Notes: svn path=/head/; revision=146982
* - fix build in jailDirk Meyer2005-10-251-0/+2
| | | | | | | | maintainer emailed 2005-10-04 Approved by: (maintainer timeout) Notes: svn path=/head/; revision=146304
* FreeBSD 6 no longer adds debug.if_* sysctl variables in its default kernelVolker Stolz2005-09-182-1/+6
| | | | | | | | | | | (according to the release notes), so our heuristic assumes the module is missing and tries to load it, which fails as the module already exists. PR: ports/86286 Submitted by: maintainer Notes: svn path=/head/; revision=143068
* - Update to 2.0.2 that brings these upstream changes:Renato Botelho2005-08-293-54/+3
| | | | | | | | | | | | | - fix bug that would exhaust file descriptors as the routing table was modified (this had already been part of the port previously) - fix bug that would block the management socket until the peer connected - fix pkitool sh incompatibilities (from NetBSD) PR: ports/85299 Submitted by: maintainer Notes: svn path=/head/; revision=141367
* Fix a typo in the new rc file, where documentation didn't match theRenato Botelho2005-08-222-2/+3
| | | | | | | | | | | | actual variables. PR: ports/85156 Submitted by: maintainer Reported by: Benjamin Lutz <benlutz@datacomm.ch> Approved by: portmgr (krion) Notes: svn path=/head/; revision=140952
* - Security update to version 2.0.1, fixing four denial of service bugs,Renato Botelho2005-08-197-56/+157
| | | | | | | | | | | | | | | | | | | | CAN-2005-2531, CAN-2005-2532, CAN-2005-2533, CAN-2005-2534 - Drop old init script and add a modern rcNG script in its place, requested by Matthias Grimm and Dirk Gouders (although the script below is one I, Matthias Andree, wrote). It can automatically load tun/tap drivers. - move pkg-message to files/pkg-message.in, revise it, list it in SUB_FILES to expand ${PREFIX}. - print pkg-message after installation from port - switch to official "make check" as smoke-test, rather than wiring our own. - prefer LZO2 in most situations, as OpenVPN will pick up LZO2 rather than LZO1 if both are installed. PR: ports/85109 Submitted by: maintainer Approved by: portmgr (krion) Notes: svn path=/head/; revision=140936
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-05 15:38:13 +0000