aboutsummaryrefslogtreecommitdiffstats
path: root/package/network/services/openvpn
Commit message (Collapse)AuthorAgeFilesLines
* openvpn: remove __DATE__ from options outputFelix Fietkau2015-09-111-0/+10
| | | | | | | | | reported by: https://reproducible.debian.net/openwrt/dbd/ar71xx/base/openvpn-nossl_2.3.7-1_ar71xx.ipk.html Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@46860 3c298f89-4303-0410-b956-a3cf2f4a3e73
* package: replace ifconfig-usage with ipSteven Barth2015-09-081-1/+1
| | | | | | Signed-off-by: Steven Barth <steven@midlink.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@46832 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: bump to 2.3.7.Felix Fietkau2015-06-185-78/+6
| | | | | | | | Two patches are dropped as they were already applied upstream. Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@46027 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: bump PKG_RELEASE.Felix Fietkau2015-06-141-1/+1
| | | | | | Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@45962 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: let instances drop to nobody in default config.Felix Fietkau2015-06-141-0/+2
| | | | | | | | | This is for security precautions. As persist_tun and persist_key are already there, this should not cause compatibility issue. Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@45961 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: fix handling option auth_retry.Felix Fietkau2015-06-141-2/+2
| | | | | | | | | As reported in ticket #19104, auth_retry takes a <type> argument with 3 choices: none, nointeract, interact. Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@45960 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: replace polarssl run-time version check with a compile-time oneFelix Fietkau2015-05-051-0/+11
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@45608 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: disable CBC record splitting in PolarSSL/mbedTLS (#19101)Jo-Philipp Wich2015-05-042-1/+17
| | | | | | | | | | | | | | | | | | | | | | | | OpenVPN assumes that its control channel messages are sent and received unfragmented, this assumption is broken when CBC record splitting is enabled in mbedTLS. The record splitting is intended as countermeasure against BEAST attacks which do not apply to OpenVPN, therefore we simply disable it until upstream OpenVPN gains the ability to process fragmented control messages. Disabling the splitting also works around a (not remotely triggerable) segmentation fault in mbedTLS. References: * https://dev.openwrt.org/ticket/19101 * https://community.openvpn.net/openvpn/ticket/524 * https://github.com/ARMmbed/mbedtls/pull/185 Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@45602 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: autostart openvpn instances for each .conf file in /etc/openvpnJo-Philipp Wich2015-02-072-4/+32
| | | | | | | | | | | | | | | Align init behaviour with other distros by starting an OpenVPN instance for each config file found in /etc/openvpn/. This removes the additional requirement to "register" the configs with uci and thus simplifies the setup. Make sure to respect the disabled state in uci to not suddenly autostart instances which have been previously set to disabled, also skip configs which are already started due to uci configuration. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@44310 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: procd_set_param respawnJohn Crispin2015-01-081-0/+1
| | | | | | | | | | | Makes sure that the openvpn instance gets restarted in case of a crash. Intentional stops using /etc/init.d/openvpn stop will not result in respawning. Anything else will, e.g. killall openvpn. Signed-off-by: Lars Gierth <larsg@systemli.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43886 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: bump PKG_REVISION and copyright yearJo-Philipp Wich2015-01-061-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43859 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: backport an upstream fix for a regression in using --cipher none ↵Felix Fietkau2015-01-041-0/+57
| | | | | | | | (fixes #18676) Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43823 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: update to 2.3.6, fixes CVE-2014-8104Felix Fietkau2014-12-012-25/+46
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43482 3c298f89-4303-0410-b956-a3cf2f4a3e73
* license info - revert r43155John Crispin2014-11-031-3/+0
| | | | | | | | turns out that r43155 adds duplicate info. Signed-off-by: John Crispin <blogic@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43167 3c298f89-4303-0410-b956-a3cf2f4a3e73
* Add more license tags with SPDX identifiersJohn Crispin2014-11-031-0/+3
| | | | | | | | | | | | | | | | | | Note, that licensing stuff is a nightmare: many packages does not clearly state their licenses, and often multiple source files are simply copied together - each with different licensing information in the file headers. I tried hard to ensure, that the license information extracted into the OpenWRT's makefiles fit the "spirit" of the packages, e.g. such small packages which come without a dedicated source archive "inherites" the OpenWRT's own license in my opinion. However, I can not garantee that I always picked the correct information and/or did not miss license information. Signed-off-by: Michael Heimpold <mhei@heimpold.de> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43155 3c298f89-4303-0410-b956-a3cf2f4a3e73
* Add a few SPDX tagsSteven Barth2014-11-021-0/+1
| | | | | | Signed-off-by: Steven Barth <steven@midlink.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@43151 3c298f89-4303-0410-b956-a3cf2f4a3e73
* scripts: fix wrong usage of '==' operatorJohn Crispin2014-10-141-1/+1
| | | | | | | | | | | | | | [base-files] shell-scripting: fix wrong usage of '==' operator normally the '==' is used for invoking a regex parser and is a bashism. all of the fixes just want to compare a string. the used busybox-ash will silently "ignore" this mistake, but make it portable/clean at least. this patch does not change the behavior/logic of the scripts. Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@42911 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: fix compile error with muslFelix Fietkau2014-06-301-0/+13
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@41425 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: update to version 2.3.4Felix Fietkau2014-06-302-66/+81
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@41416 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: enable ipv6 parametersJohn Crispin2014-06-021-1/+2
| | | | | | | | http://patchwork.openwrt.org/patch/4945/ Signed-off-by: John Crispin <blogic@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@40931 3c298f89-4303-0410-b956-a3cf2f4a3e73
* polarssl: update to version 1.3.4 and add openssl compat patchFelix Fietkau2014-03-141-0/+221
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@39930 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: make size optimization configurableFelix Fietkau2014-03-114-1/+22
| | | | | | Signed-off-by: Christoph Kottke <christoph.kottke@gmx.de> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@39872 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: clean up and fix the init scriptFelix Fietkau2013-10-311-17/+16
| | | | | | | | | | | | | - clean up duplication of procd instance handling code - using --cd *after* --config is rather pointless - to be able to log errors properly, --syslog needs to be passed before --config - tell procd about the generated or referenced config file instead of the uci file. this avoids having to restart all instances if only one of them changes. Signed-off-by: Felix Fietkau <nbd@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38632 3c298f89-4303-0410-b956-a3cf2f4a3e73
* [package] openvpn: make comp_lzo a parameterLuka Perkov2013-10-153-5/+5
| | | | | | | | Possible parameters are yes, no and adaptive. See manpage for more information. Signed-off-by: Philipp Borgers <borgers@mi.fu-berlin.de> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38412 3c298f89-4303-0410-b956-a3cf2f4a3e73
* [package] openvpn: rework initscript (fixes #14299)Luka Perkov2013-10-091-8/+30
| | | | | | Signed-off-by: Luka Perkov <luka@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38351 3c298f89-4303-0410-b956-a3cf2f4a3e73
* [package] openvpn: switch to new procd init script styleLuka Perkov2013-10-072-65/+14
| | | | | | Signed-off-by: Luka Perkov <luka@openwrt.org> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38331 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: update to 2.3.2Felix Fietkau2013-07-262-61/+2
| | | | | | | | | | | | this patches updates openvpn to v2.3.2 and adds a PKG_MD5SUM to the Makefile This release fixes a memory access violation when cipher none is used on ar71xx - at least with my config Signed-off-by: Peter Wagner <tripolar@gmx.at> git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37560 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: enable password save support (#13245)Felix Fietkau2013-04-011-0/+1
| | | | git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36144 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: remove the stale PKG_REV variableFelix Fietkau2013-02-051-1/+0
| | | | git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35499 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: split easy-rsa into a separate package, it is no longer bundled ↵Felix Fietkau2013-02-053-26/+0
| | | | | | with the release tarball git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35498 3c298f89-4303-0410-b956-a3cf2f4a3e73
* openvpn: add from openvpn-devel from /packages, fix support for current polarsslFelix Fietkau2013-01-3010-0/+927
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35412 3c298f89-4303-0410-b956-a3cf2f4a3e73
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-05 15:19:24 +0000