From owner-freebsd-ports-bugs@freebsd.org Tue Jul 14 14:56:26 2020 Return-Path: Delivered-To: freebsd-ports-bugs@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2944E365716 for ; Tue, 14 Jul 2020 14:56:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4B5k9j3qWcz4K77 for ; Tue, 14 Jul 2020 14:56:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 6DC5836544C; Tue, 14 Jul 2020 14:56:25 +0000 (UTC) Delivered-To: ports-bugs@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6A61936544B for ; Tue, 14 Jul 2020 14:56:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4B5k9j1ZC3z4KJF for ; Tue, 14 Jul 2020 14:56:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 19DA227CC1 for ; Tue, 14 Jul 2020 14:56:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 06EEuONs072598 for ; Tue, 14 Jul 2020 14:56:24 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 06EEuOlo072597 for ports-bugs@FreeBSD.org; Tue, 14 Jul 2020 14:56:24 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 247974] [maintainer] security/openvpn-devel: Update to 2020-W28 snapshot Date: Tue, 14 Jul 2020 14:56:25 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: ecrist@secure-computing.net X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: ports-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter attachments.created Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Jul 2020 14:56:26 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D247974 Bug ID: 247974 Summary: [maintainer] security/openvpn-devel: Update to 2020-W28 snapshot Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ports-bugs@FreeBSD.org Reporter: ecrist@secure-computing.net Created attachment 216439 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D216439&action= =3Dedit Port Diff File Updating port to latest 2020 week 28 snapshot. Summary snapshot (2020-W16 = to 2020-W28) below (full log in attachments): 6168f53d Allow changing fallback cipher from ccd files/client-connect e539c95d Cleanup: Remove special case code for old poor man's NCP. 07560d9e Generate data channel keys after connect options have been parsed 4f378ddb Move protocol option negotiation from push_prepare to new function ca514800 Code cleanup: remove superflous variable a6571181 Removed unused definition 5e78bf66 Extract process_incoming_push_reply from process_incoming_push_msg 5608041c Make key_state->authenticated more state machine like 2b09c140 Deprecate ncp-disable and add improved ncp to Changes.rst 96ae327a Make openvpn --version exit with exit code 0 05ffefcc Simplify multi_connection_established. 008ec688 Remove --writepid file on program exit. a5e6f2d2 merge key_state->authenticated and key_state->auth_deferred efe01d52 Unified success messages for setting mtu 5b313a35 tap.c: fix adapter renaming ec33bae3 t_client.sh: correctly report all failed instances in summary c252dcc0 Remove did_open_context, defined and connection_established_flag 182a2fdd Remove push_reply_deferred variable 8a168a9a Fix 'engine' unit test on FreeBSD (specifically 'not GNU make') 712f2629 multi.c: use mi->cc_config instead of config variable 9f0a7dcc Remove parameter config from multi_client_connect_mda 93439307 Log a note if someone wants to set a MTU below 1280 on IPv6 3ef858b3 Linux: do not change --txqueuelen OS default if not configured. 19d3c602 Add --bind-dev option. d299367c Add c1ff8f247f91c88a2df5502eeedf42857f9a6831 (engine, pool, SSO) to .git-blame-ignore-revs c1ff8f24 Reformat files using uncrustify c67e93b2 Make compression asymmetric by default and add warnings 2569902c msvc: fix various level2 warnings 013498dd engine-key tests: make check_engine_keys.sh work with --enable-sma= ll 21e3e9fc Fix make distcheck for new engine key unit test 542c69c3 Add unit tests for engine keys 933b4ab8 Convert plugin/auth-pam.c from stderr logging to plugin_log(). 3bc12aef Add unit test for cipher name translations 02a03320 Depreciation warning for --topology net30 on servers with IPv4 poo= ls. ff063b6f Change timestamps in file-based logging to ISO 8601 time format. 06498f21 Implement forwarding client CR_RESPONSE messages to management 1114b985 Implement sending AUTH_PENDING challenges to clients adb9bb91 Implement sending response to challenge via CR_RESPONSE 1f76bbb5 Implement support for signalling IV_SSO to server 7bdba531 Implement parsing and sending INFO and INFO_PRE control messages 58bb8f3e Make cipher_kt_get also accept OpenVPN config cipher name ff531767 Make cipher_kt_name always return normalised cipher name 0213f80e Set the correct mtu on windows based systems e0b49cb9 Add .git-blame-ignore-revs with reformat commits 9002885b multi: skip IPv4 logic in multi_select_virtual_addr() if no pool is configured 28e39585 pool: remove useless 'options.h' include e7c0cd99 Simplify pool size handling, fix possible array overrun on pool reading. 1379e527 ipv6-pool: get rid of size constraint 070319c1 options: enable IPv4 redirection logic only if really required 25266ebb crypto_openssl: add include for openssl/conf.h 826d8953 route: warn on IPv4 routes installation when no IPv4 is configured 6a8cd033 pool: add support for ifconfig-pool-persist with IPv6 only a4071b20 crypto_openssl: add initialization to pick up local configuration 8155f8aa openssl: add engine method for loading the key 7d65aad8 allow usage of --server-ipv6 even when no --server is specified 45211315 pool: allow to configure an IPv6-only ifconfig-pool 984bd1e1 Switch assertion failure to returning false 81d66a1f pool: prevent IPv6 pools to be larger than 2^16 addresses cc76e177 Refuse server mode on Android 14a57be4 Do not write extra 0 byte for --gen-key with auth-token/tls-crypt-= v2 6001784a Change client side of t_lpback.sh configs to use inline material. 93ba6ccd Persist management-query-remote and proxy prompts a8850401 Fix session id and initial timestamp not being preserved b0c94aff Document reneweal mechanic of auth-token in manual 42fe3e81 Fix session id in env missing first byte 27ad978f get rid of INLINE_FILE_TAG constant d7e26a34 tls-crypt-v2: fix testing of inline key 416162c5 options: fix inlining auth-gen-token-secret file 7ae8dbb7 options: Restore --tls-crypt-v2 inline file capability e8e410fd options: Fix failing inline tls-auth/crypt with persist-key 042429d3 build: Remove --disable-server from ./configure cb2e9218 convert *_inline attributes to bool 4dddca52 Use crypto library functions for const time memcmp when possible 3cb9b156 t_net.sh: assign MAC address directly during interface creation da1574ef Uncrustify the tests/unit_tests/ part of our tree. a17e7353 Add tls-crypt-v2 test writing metadata 75aa88af Fix tls_ctx_client/server_new leaving error on OpenSSL error stack c40679fb remove bogus file check on --genkey argument 9cf7b492 Another round of uncrustify code cleanup. cbde07f4 Minor style change to improve code style c577facf Refactor counting number of element in a : delimited list into function d8225e98 t_net.sh: use dummy interface instead of tun db3d737b sitnl: fix ignoring EEXIST when sending a netlink command b9ff3988 sitnl: fix TUN/TAP confusion in error messages 74fadcf4 sitnl: fix failure reporting by keeping error negative --=20 You are receiving this mail because: You are the assignee for the bug.=