292996 – net-misc/openvpn-2.1_rc21 (new release): updated ebuild

Bug 292996 - net-misc/openvpn-2.1_rc21 (new release): updated ebuild

Summary: net-misc/openvpn-2.1_rc21 (new release): updated ebuild

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High enhancement (vote)
Assignee:	Cédric Krier

URL:
Whiteboard:
Keywords:

Duplicates (1):	293016 (view as bug list)
Depends on:
Blocks:

Reported:	2009-11-13 09:08 UTC by Marcel Pennewiß
Modified:	2009-11-15 14:23 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
openvpn-2.1_rc20_to_rc21.ebuild.patch (openvpn-2.1_rc20_to_rc21.ebuild.patch,971 bytes, patch) 2009-11-13 09:10 UTC, Marcel Pennewiß	Details \| Diff
openvpn-2.1_rc20_to_rc21.ebuild.patch (openvpn-2.1_rc20_to_rc21.ebuild.patch,971 bytes, text/plain) 2009-11-13 09:11 UTC, Marcel Pennewiß	Details
openvpn-2.1_rc21.ebuild (openvpn-2.1_rc21.ebuild,5.32 KB, text/plain) 2009-11-13 09:12 UTC, Marcel Pennewiß	Details
openvpn-2.1_rc20_to_rc21.ebuild.patch (openvpn-2.1_rc20_to_rc21.ebuild.patch,1.14 KB, patch) 2009-11-13 16:01 UTC, Marcel Pennewiß	Details \| Diff
openvpn-2.1_rc21.ebuild (openvpn-2.1_rc21.ebuild,5.34 KB, text/plain) 2009-11-13 16:01 UTC, Marcel Pennewiß	Details
Show Obsolete (3) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Marcel Pennewiß 2009-11-13 09:08:17 UTC

openvpn-2.1_rc21 has been released. updated ebuild includes support for eurephia- and ipv6-patches.

Reproducible: Always

Comment 1 Marcel Pennewiß 2009-11-13 09:10:28 UTC

Created attachment 210112 [details, diff]
openvpn-2.1_rc20_to_rc21.ebuild.patch

patch to update ebuild from rc20 to rc21

Comment 2 Marcel Pennewiß 2009-11-13 09:11:03 UTC

Created attachment 210113 [details]
openvpn-2.1_rc20_to_rc21.ebuild.patch

complete ebuild

Comment 3 Marcel Pennewiß 2009-11-13 09:12:04 UTC

Created attachment 210114 [details]
openvpn-2.1_rc21.ebuild

complete ebuild

Comment 4 Marcel Pennewiß 2009-11-13 09:15:23 UTC

ChangeLog:

OpenVPN Version 2.1_rc21 (source: James Yonan / OpenVPN Tech Inc.)
* Rebuilt OpenVPN Windows installer with OpenSSL 0.9.8l to address
   CVE-2009-3555.  Note that OpenVPN has never relied on the session
   renegotiation capabilities that are built into the SSL/TLS protocol,
   therefore the fix in OpenSSL 0.9.8l (disable SSL/TLS renegotiation
   completely) will not adversely affect OpenVPN mid-session SSL/TLS
   renegotation or any other OpenVPN capabilities.
* Added additional session renegotiation hardening.  OpenVPN has always
   required that mid-session renegotiations build up a new SSL/TLS
   session from scratch.  While the client certificate common name is
   already locked against changes in mid-session TLS renegotiations, we
   now extend this locking to the auth-user-pass username as well as all
   certificate content in the full client certificate chain.

ipv6-patch-v0.4.10: (source: JuanJo Ciarlante)
* All platforms:
 - implemented redirect-gateway support for ipv4 on ipv6 endpoints
 - several src cleanups (no actual code changes)
 - doc updates
* win32:
 - expanded usage of proto_is_udp(), proto_is_tcp()
 - replaced some memset(&obj, 0, sizeof obj) by openvpn's CLEAR(obj)
* openbsd:
 - there's no IFF_MULTICAST, #ifdef'd around it (not specific to ipv6-patch)

eurephia-patch: (source: David Sommerseth)
The rewriten patch makes now use of the code practice which is found
other places in OpenVPN, and it is not as intrusive as earlier.

Comment 5 Marcel Pennewiß 2009-11-13 16:01:34 UTC

Created attachment 210134 [details, diff]
openvpn-2.1_rc20_to_rc21.ebuild.patch

patch for ebuild 2.1_rc20

Comment 6 Marcel Pennewiß 2009-11-13 16:01:57 UTC

Created attachment 210136 [details]
openvpn-2.1_rc21.ebuild

complete ebuild

Comment 7 Patrick Lauer gentoo-dev

2009-11-13 17:38:18 UTC

*** Bug 293016 has been marked as a duplicate of this bug. ***

Comment 8 Cédric Krier gentoo-dev

2009-11-15 14:23:51 UTC

Fix in CVS