ferent. Can we please unite them?
JJK: Do you know which differences are needed between Windows and non-Windows?
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
Windows build, package a statically linked openssl.exe t...
4030142 The easy-rsa directory installed by the windows installer c...
6fbf66f This is the start of the BETA21 branch. It includes the --t...
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG
evelopers meeting to remove 0.9.6
support. However we found it better to remove that support first in
OpenVPN 2.3, as we will then go through the source code and remove all
0.9.6 related stuff in the same go. We don't want to change this in a
stable release.
kind regards,
David Sommerseth
-BEGI
isect good
Or if it failed, then you do:
$ git bisect bad
Do this good/bad thing until git have located the commit which changes the
behaviour. You will get a result similar to what you see here:
<https://community.openvpn.net/openvpn/ticket/108#comment:1>
kind regards,
David Sommerseth
eletions(-)
> create mode 100644 openvpn.doxyfile
>
ACK.
Wondering if we should enable SEARCHENGINE, for convenience, but that can
be done later on.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora -
ed, all message types are
> - * protected with an HMAC signature, even the initial packets
> - * of the TLS handshake. This makes it easy for OpenVPN to
> - * throw away bogus packets quickly, without wasting resources
> - * on attempting a TLS handshake which wil
further understanding.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk4T+lUACgkQDC186MBRfroZYgCePU+IbsXzR7POcDVgPjFgojIU
SSQAn2TsnXB+9mNZmrqgp2o5ZVngwDUD
=erwT
-END PGP SIGNATURE-
xygen/doc_protocol_overview.h
> create mode 100644 doxygen/doc_reliable.h
> create mode 100644 doxygen/doc_tunnel_state.h
> create mode 100644 doxygen/openvpn.doxyfile
> delete mode 100644 openvpn.doxyfile
As this is a pure file move, moving all doc files into doxygen, this gets
an ACK.
in time) than to
have SSL implementation aware plug-ins. And it might give far more
challenges in regards to supported features.
So for now, I recommend plug-ins to support OpenSSL and/or PolarSSL
natively. If someone can come up with a sensible X509 API layer which can
be used instead, lets review
on
is here [2].
kind regards,
David Sommerseth
[1] <https://community.openvpn.net/openvpn/ticket/145>
[2] <http://thread.gmane.org/gmane.network.openvpn.user/32383/focus=32394>
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuP
and all have the proper credit to Adriaan de Jong.
So unless there are any objections or Adriaan insists on having his name as
the patch authors, I will leave it how it is now. Otherwise, I'll need to
reset the git tree and push out a new one. But I'm willing to do that if
people wants it
proto_is_tcp() instead.
|
| Signed-off-by: Heiko Hund<heiko.h...@sophos.com>
Applied to testing and stable master branches.
commit 834eba7597e2582c44f69e03a762b838308c8df0
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with
sam...@openvpn.ne>
| Signed-off-by: Heiko Hund<heiko.h...@sophos.com>
ACK. Applied to testing and stable master branches.
Commit 98054a0744d1e228341cf2d8e1b1f9f2650c2775
Kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with F
ches.
Commit c1f25b6644efaa74c069c20d9a008e1786209a88
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5U9tYACgkQDC186MBRfroYugCfbQMcBOsAYfotc/Q6JHSTYTv4
aioAnR6WSmAN1uLURUeLIyOww
Commit 3f1745666bac31458b33f09c888769cc8c1c829b
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5VFaUACgkQDC186MBRfro5LgCfZA0rZa1nsYjgEM9u03UpH03F
NE4An1LRahZyf7y8Y7NsfK6U8/
rsa.
> -export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA`
> +export KEY_CONFIG=$("$EASY_RSA"/whichopensslcnf "$EASY_RSA")
Even though I personally like this syntax better, isn't it better to use
the `` syntax instead of $() due to portability? Or are we sure that $()
functi
OSX Lion does not have SOL_IP defined. If compiling on TARGET_DARWIN
and SOL_IP is not defined, make it the same as IPPROTO_IP. This patch
is based upon a patch in the MacPorts bug tracker.
Reference: https://trac.macports.org/ticket/30253
Signed-off-by: David Sommerseth <dav...@redhat.
ble in some
kind of requirements list. If we don't have that, that's probably
something we should have.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5d/4YACgkQDC186MBRfrohGACgoQFXyVf3n653bcAfNgPKssg0
K4MAnjYSnGkMxY1Fa64sNqR1MSU6B7L0
=tpDb
-END PGP SIGNATURE-
to testing and stable master branches.
Commit a18c2b025c851a50bd2df33af5bad99b467da595
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5ecbsACgkQDC186MBRfrodcwCggiac4FmGOzLpHbO87fO1PzXZ
TicAn
e636086fe0 [1]
contains this feature.
Applied to master braches in testing and stable. Commit
d90428d141102a646a20b1310de1716621e32bd6
kind regards,
David Sommerseth
[1]
<http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=4a19ec5800fc3bb64e2d87c4d9fdd9e636086fe0&
warning in 2.3,
though - and be removed in 2.4.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5ef5UACgkQDC186MBRfrrlswCeO8AgU4L58h9sL1XE358dQ2Tb
yO8An0zfR+jb2ci
want to get involved, changing OpenVPN, please get
in touch! If you don't know where to start, please have a look at our bug
tracker:
<https://community.openvpn.net/openvpn/report/3>
And if you don't feel like writing docs or code, please test our snapshots
as much as possible and please
ill contain these updates.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk5vbqUACgkQDC186MBRfrr0PACeM6YIshWod7LAdIp80MkBx+i+
pXoAn3hYqLqd8DknpcIdSOZs795IYoZ/
=AzNw
-END PGP SIGNATURE-
ttempt of harvesting our mailing list for
mail addresses, used by spam. If you look at the senders mail address, you
should get more sceptical.
kind regards,
David Sommerseth
eed a review again. That configure option was obsoleted
when James resolved this in a complete different way a while ago.
Nowadays, you don't need to use this argument at all. That's the only
change AFAIR. Please feel free to update the docs!
kind regards,
David Sommerseth
-BEGIN PGP SIG
l investigating).
>
> David, please ACK and merge :-)
>
ACK. Applied to testing and stable master branches.
commit 8ca19c014c149cf69257798afa6c75d1ff8f11a7
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Usi
_reap_range().
We're running a very large connectivity infrastructure based on
openVPN (more
than 4000 different clients connected per day per server), so we can
throughly
check this patch (or, of course, any variant of it).
Signed-off-by: Davide Guerri <d.gue...@caspur.it>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/10/11 12:31, Gert Doering wrote:
| Hi,
|
| On Fri, Sep 30, 2011 at 11:12:12AM +0200, David Sommerseth wrote:
|> On 15/09/11 23:42, Davide Guerri wrote:
|>> Please find attached a patch for a new stale-routes-check (and remove)
|
ssl() keep all its arguments - no matter if SSL is
enabled or not.
This issues appeared first in commit 1876ccd012e9e2ca6f8e1cd9e7e9bb4bf24ccecb,
which does modify the plugin system.
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
plugin.c |5 +
plugin
. For
more info about commits applied, see this URL:
<https://community.openvpn.net/openvpn/wiki/PolarSSLintegration>
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://en
PolarSSL does not support PKCS#12 certificate/key bundles, but had a
typo where #ifdef USE_POLARSSL was used, and it should have been #ifndef
instead.
Also added a few extra exclusions of PKCS#12 messages where appropriate,
to avoid confusing users.
Signed-off-by: David Sommerseth <
ction is here using MD5_DIGEST_LENGTH instead of
MD4_DIGEST_LENGTH+5 notice the MD4 vs MD5 prefix. Is this correct?
I have not had time to dig too much into if there are more such issues in
this patch yet.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 23/10/11 17:33, Nathan Stratton Treadway wrote:
> On Sun, Oct 23, 2011 at 12:35:13 +0200, David Sommerseth wrote:
>> diff --git a/options.c b/options.c index 39e7a57..4fd6933 100644 ---
>> a/options.c +++ b/options.c @@ -559,7 +
PolarSSL does not support PKCS#12 certificate/key bundles, but had a
typo where #ifdef USE_POLARSSL was used, and it should have been #ifndef
instead.
Also added a few extra exclusions of PKCS#12 messages where appropriate,
to avoid confusing users.
Signed-off-by: David Sommerseth <
probably not a clever idea - to change the
default encryption algorithm.
What about to enforce the use of --cipher when OpenVPN is compiled with
PolarSSL support? Stating that blowfish isn't supported and another
cipher must explicit be set.
kind regards,
David Sommerseth
>> -Ori
the challenge here is that --multihome is only suitable in UDP
mode, iirc. So most likely many of these multihome code paths are
avoided when running in TCP mode.
Maybe in the areas around multo_process_* functions would be a better
place to implement this then ... not sure, just thinking aloud.
kind
it.com>
List-Post: openvpn-devel@lists.sourceforge.net
Date: Mon Oct 24 11:39:05 2011 +0200
Added missing #ifdef to allow --disable-managent to work again
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by: Gert Doering <g...@greenie.muc.de>
Signed-of
4ca642a4d8bbdac3dadb44eca11f52e35
Author: Adriaan de Jong <dej...@fox-it.com>
List-Post: openvpn-devel@lists.sourceforge.net
Date: Mon Oct 24 10:46:01 2011 +0200
Fixed disabling crypto and SSL
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by: David Sommerseth
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 24/10/11 12:39, Adriaan de Jong wrote:
> On 10/24/2011 11:50 AM, David Sommerseth wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>>
>> On 24/10/11 10:58, Adriaan de Jong wrote:
>>> Unfortunately BF isn'
m>
List-Post: openvpn-devel@lists.sourceforge.net
Date: Mon Oct 24 10:46:00 2011 +0200
Got rid of a few magic numbers in ntlm.c
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by: James Yonan <ja...@openvpn.net>
Acked-by: David Sommerseth <dav...@redhat.com>
Si
8bcb5783
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk6lb84ACgkQDC186MBRfrpJjACgibrV+mZDECZVOQNvDqWqfDHK
/OAAn1H91PyM1dyQk6dBWDA8i85gTWkP
=E4w5
-END PGP SIGNATURE-
-it.com>
List-Post: openvpn-devel@lists.sourceforge.net
Date: Mon Oct 24 16:11:14 2011 +0200
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by: Gert Doering <g...@greenie.muc.de>
Signed-off-by: David Sommerseth <dav...@redhat.com>
kind regards,
David Sommerseth
---
y) reduce the variety in new
patches.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk6vDvoACgkQDC186MBRfrr6PwCdGFh7VKA9nRN05ommWCnAe9CH
xJIAoJRW8+pjM7ipFeQW4nHgBY7S1Ty7
=0kja
-END PGP SIGNATURE-
: openvpn-devel@lists.sourceforge.net
Date: Mon Oct 31 16:29:16 2011 +0100
Fixed missing comma in plugin.h
Fixed a bug where the wrong value was being passed to plugin_call_ssl,
due to a missing comma.
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 23/10/11 13:15, David Sommerseth wrote:
> For some odd reasons, the static inline plugin_call() function
> managed to corrupt the struct env_set *es pointer. The result was
> that es->list pointed at an invalid address, which again
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 24/10/11 08:53, David Sommerseth wrote:
> PolarSSL does not support PKCS#12 certificate/key bundles, but had a
> typo where #ifdef USE_POLARSSL was used, and it should have been
> #ifndef instead.
>
> Also added a few extra exclus
List-Post: openvpn-devel@lists.sourceforge.net
Date: Thu Nov 10 20:15:44 2011 +0100
Signed-off-by: Christian Niessner <bug-rep...@secadm.de>
Acked-by: Gert Doering <g...@greenie.muc.de>
Signed-off-by: Gert Doering <g...@greenie.muc.de>
Signed-off-by: David Sommerseth <dav...@
removes the hard coded approach and uses the --win-sys env
approach by default instead.
Trac-ticket: 66
URL: http://thread.gmane.org/gmane.network.openvpn.user/32508
Signed-off-by: David Sommerseth <dav...@redhat.com>
Tested-by: Samuli Seppänen <sam...@openvpn.net>
---
open
le master branches.
> [PATCH 1/8] Moved prng_uninit out of crypto_uninit_lib
commit 54628d1ac10675d4554b58500341e35e8ac4fcbb
Signed-off-by: Adriaan de Jong <dej...@fox-it.com>
Acked-by: David Sommerseth <dav...@redhat.com>
Signed-off-by: David Sommerseth <dav...@redhat
On these platforms (including DragonFly), get_default_gateway() would in some
cases return false. As get_default_gateway() is defined as a void function, and
none of the callers expect a return value -> just return without any value.
Signed-off-by: David Sommerseth <dav...@redh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 21/11/11 13:07, Gert Doering wrote:
> hi,
>
> On Mon, Nov 21, 2011 at 12:59:25PM +0100, David Sommerseth wrote:
>> As the body of the check_subnet_conflict() function was disabled
>> with an #if 0 clause, remove this func
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 21/11/11 12:59, David Sommerseth wrote:
> On these platforms (including DragonFly), get_default_gateway() would
> in some cases return false. As get_default_gateway() is defined as a
> void function, and none of the callers expect a ret
or not.
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
configure.ac |3 +++
options.c|6 +++---
socket.c |4 ++--
3 files changed, 8 insertions(+), 5 deletions(-)
diff --git a/configure.ac b/configure.ac
index a4d68e6..02382a8 100644
--- a/configure.ac
+++ b/config
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 18/11/11 13:39, David Sommerseth wrote:
> Without this patch, the default path used by OpenVPN is hard coded to
> C:\WINDOWS. As users might install Windows in a different directory,
> this approach will cause OpenVPN to malfunctio
ert Doering <g...@greenie.muc.de>
Acked-by: David Sommerseth <dav...@redhat.com>
Signed-off-by: David Sommerseth <dav...@redhat.com>
commit 1523d1101222340b7ef305020ed7eba0dd1676cf (master)
commit 066df6aa44c154bb94403b364f585c4ed569bf47 (release/2.2)
Author
From: David Sommerseth <d...@users.sourceforge.net>
In commit ce637abdafdc19547fc97192033a4d1703ecaf23 the Linux 2.2 support
was removed. When this happened an extra error check was avoided which
would normally kicked in if the tun/tap device would not be available.
Instead the followin
From: David Sommerseth <d...@users.sourceforge.net>
The following patch has been laying in my repository for some time, unsure
why it's been there for so long. I can't see nor recall if I posted it to
this -devel list either. If there are things I should have fixed up before
re-p
at
this late point might even be difficult to relate to a configuration option.
This patch tries to catch as many of these files as soon as possible, kind of
to "smoke-test" the files and directories to avoid the most likely errors.
Trac-ticket: 73
Signed-off-by: David Somme
From: David Sommerseth <d...@users.sourceforge.net>
In commit ce637abdafdc19547fc97192033a4d1703ecaf23 the Linux 2.2 support
was removed. When this happened an extra error check was avoided which
would normally kicked in if the tun/tap device would not be available.
Instead the followin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 24/11/11 23:10, David Sommerseth wrote:
> OpenVPN can handle over 30 different files and directories, and it is
> easy to misconfigure some of them. In many situations OpenVPN will
> even start running, even with a wrong file path o
g binary will then fail on WinXP.
Signed-off-by: Gert Doering <g...@greenie.muc.de>
Acked-by: David Sommerseth <dav...@redhat.com>
Signed-off-by: David Sommerseth <dav...@redhat.com>
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 25/11/11 11:57, David Sommerseth wrote:
> From: David Sommerseth <d...@users.sourceforge.net>
>
> In commit ce637abdafdc19547fc97192033a4d1703ecaf23 the Linux 2.2
> support was removed. When this happened an extra error ch
already available in openvpn_basename(). The POSIX variant
of dirname() will modify the input data.
Signed-off-by: David Sommerseth <dav...@redhat.com>
Cc: Heiko Hund <heiko.h...@sophos.com>
---
misc.c| 36
misc.h|3 +++
options.c |3
Commit 0f2bc0dd92f43c91e33bba8a66b06b98f281efc1 adds extra file and
directory checks at startup. However, this patch makes use of some
features not directly available in Windows.
This patch avoids #include on Windows and provides a
wrapper for the needed access() function.
Signed-off-by: David
which is global for all platforms is called openvpn_access()
Signed-off-by: David Sommerseth <dav...@redhat.com>
Cc: Heiko Hund <heiko.h...@sophos.com>
---
misc.h| 12
options.c |9 -
syshead.h |3 +++
win32.h | 20
4 files
approach is
found. But that will happen earliest after the 2.3 release is shipped.
kind regards,
David Sommerseth
> On Fri, Dec 2, 2011 at 1:02 PM, David Sommerseth <dav...@redhat.com>
> wrote:
>>
>> Commit 0f2bc0dd92f43c91e33bba8a66b06b98f281efc1 adds some ext
ess() function in win32.h instead. But that didn't
compile so well in Visual Studio.
As it is a wrapper function for platform neutrality, prefixing it with
openvpn_ makes that much clearer when reading the code.
kind regards,
David Sommerseth
> On Fri, Dec 2, 2011 at 2:17 PM, David Somm
in the community, I'd like to start using this new outline asap.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk7Yx0EACgkQDC186MBRfrrBLgCfe07JKnrHEzqCVUsWcN/8QiEF
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05/12/11 13:35, Samuli Seppänen wrote:
>
>>> -Original Message- From: Samuli Seppänen
>>> [mailto:sam...@openvpn.net] Sent: maandag 5 december 2011 11:47
>>> To: David Sommerseth Cc: openvpn-devel@lists.so
via PGP or GnuPG
in Windows as well.
Thanks goes to hyper_ch on #openvpn at FreeNode (IRC) for notifying us
about this issue.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
(), openvpn won't build in Visual Studio.
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
Makefile.am |1 +
compat.c | 58 ++
compat.h | 57 +
configure.ac
the usage of access() - despite it is being redefinded
as _access().
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
configure.ac|2 +-
options.c |1 -
win/config.h.in | 29 +
3 files changed, 30 insertions(+), 2 deletions(-)
diff
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/12/11 16:34, David Sommerseth wrote:
> This argument allows the keyword 'stdin' to indicate that the input is
> to be read from the stdin. Don't check for file existence if the file
> name is set to 'stdin'
>
> Signed-off-by: D
/beta releases), or
if we will take it in the next round with v2.4. But I will bring that up
for discussion soonish.
kind regards,
David Sommerseth
On 08/12/11 09:33, michael-dev wrote:
> This patch adds an option to disable the creation of tagged priority
> packets with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/12/11 08:42, Alon Bar-Lev wrote:
> On Thu, Dec 8, 2011 at 1:46 AM, David Sommerseth <dav...@redhat.com>
> wrote:
>>
>> This kicks out the openvpn_basename() function from misc.[ch]
>> andputs it into compat.[ch]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/12/11 08:44, Alon Bar-Lev wrote:
> On Thu, Dec 8, 2011 at 2:13 AM, David Sommerseth <dav...@redhat.com>
> wrote:
>> +/* The POSIX access() function is called via _access() on Windows,
>> + * defined in io.h + */ +#defin
(), openvpn won't build in Visual Studio.
v2: Move all functions from compat.h to compat.c
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
Makefile.am |1 +
compat.c | 82 ++
compat.h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/12/11 14:01, David Sommerseth wrote:
> This kicks out the openvpn_basename() function from misc.[ch] andputs
> it into compat.[ch]. This is to provide the same functionality on
> platforms not having a native basename() function
. Without dirname(), openvpn won't build in Visual Studio.
v2: Move all functions from compat.h to compat.c
v3: Use glibc versions of basename() and dirname() instead
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
Makefile.am |1 +
compat.c
(), openvpn won't build in Visual Studio.
v2: Move all functions from compat.h to compat.c
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
Makefile.am |1 +
compat.c | 82 ++
compat.h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
(resent - go get it into the mailing list too)
On 09/12/11 09:02, Gert Doering wrote:
> Hi,
>
> On Thu, Dec 08, 2011 at 04:24:20PM +0100, David Sommerseth wrote:
>> This kicks out the openvpn_basename() function from misc.[ch] and
uld even recommend you to move up to the 2.2 releases.
But yes, there are some configurations which are not 2.0/2.1 compatible.
But we don't pay attention to that any more. We rather encourage
everyone to move up to the 2.2 release.
<http://openvpn.net/index.php/open-source/downloads.html>
This patch modifies this message to state that IPv6 packets are not
tackled in tun mode, and prints it only once.
Trac: 147
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
mroute.c |7 ++-
1 files changed, 6 insertions(+), 1 deletions(-)
diff --git a/mroute.c b/mroute.c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 13/12/11 18:14, David Sommerseth wrote:
> When using OpenVPN 2.2 on clients and server with Windows based
> clients, it will try to push IPv6 packets through the tunnel. This
> causes the server log to be filled up with log ent
in/settings.in |4 3 files changed, 15 insertions(+), 4
> deletions(-)
>
Applied to the release/2.2 branch on stable.
commit 81ce1d45f88bec701fd477fa061acd0f0033fdf9
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Usin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 14/12/11 18:15, David Sommerseth wrote:
> The checks introduced in commit
> 0f2bc0dd92f43c91e33bba8a66b06b98f281efc1 didn't properly remove checks
> if crypto or SSL was disabled at compile time.
>
> Signed-off-by: David
reconnect.
options.c: extend pre_pull_save() and pre_pull_restore() to
save/restore options->routes_ipv6 as well
options.h: add routes_ipv6 to "struct options_pre_pull"
route.h, route.c: add clone_route_ipv6_option_list() and
copy_route_ipv6_option_l
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 12/12/11 18:57, Frederic Crozat wrote:
> Le lundi 31 octobre 2011 à 22:11 +0100, David Sommerseth a écrit :
>> On 31/10/11 16:30, Frederic Crozat wrote:
[...snip...]
Hey again, and thanks for this great rework! I've looke
serious issue (or programming error)
somewhere else in the code. Thus, abort execution to get these issues
flushed out as quickly as possible.
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
misc.c |4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/mi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/01/12 15:32, Frederic Crozat wrote:
> Le vendredi 06 janvier 2012 à 18:19 +0100, David Sommerseth a écrit :
>> On 06/01/12 17:40, Frederic Crozat wrote:
>>> Le vendredi 06 janvier 2012 à 17:22 +0100, David Sommerseth a
>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/01/12 18:11, David Sommerseth wrote:
> If openvpn_execve() is not able to fork(), it would make any noise
> about it. So this patch adds a log notification if this happens.
>
> In addition, if openvpn_execve() is called with a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/12/11 16:24, David Sommerseth wrote:
> This kicks out the openvpn_basename() function from misc.[ch] and puts
> glibc equivalents into compat.[ch]. This is to provide the same
> functionality on platforms not having a native
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/12/11 12:38, David Sommerseth wrote:
> Visual Studio does not enable certiain standard Unix functions, such
> as access(). By defining _CRT_NONSTDC_NO_WARNINGS and
> _CRT_SECURE_NO_WARNINGS, these functions are enabled.
>
>
PACKAGE_NAME
check if config.h should be included. This looks like a check if
syshead.h is loaded via ./configure or if it is a more normal
compilation. Moving the compat.h inclusion into this #ifndef block.
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
syshead.h |2 +-
1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/01/12 14:57, David Sommerseth wrote:
> The compat.h include file cannot be loaded when ./configure runs, as
> many of the HAVE_* declarations are not set. This makes test
> compilations when looking for features fail.
>
>
message, and nothing seems to be pushed to the client.
This site is now running with this patch applied, and it behaves better.
kind regards,
David Sommerseth
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 14/01/12 12:47, David Sommerseth wrote:
|
| Hi,
|
| I'm running the master branch (commit 330baf2aee70b35) on a site where IPv6
| tunnelling is not enabled. I found some odd IPv6 addresses in the log file
| when clients connected. Attached
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 14/01/12 12:52, David Sommerseth wrote:
> On 14/01/12 12:47, David Sommerseth wrote: | | Hi, | | I'm running
> the master branch (commit 330baf2aee70b35) on a site where IPv6 |
> tunnelling is not enabled. I found some odd IPv6
check_file_access().
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
options.c | 37 ++---
1 files changed, 26 insertions(+), 11 deletions(-)
diff --git a/options.c b/options.c
index 562c6f6..573bde5 100644
--- a/options.c
+++ b/options.c
@@ -2653,24 +2
check_file_access().
[v2 Simplify the code, using a flag to check_file_access()]
Signed-off-by: David Sommerseth <dav...@redhat.com>
---
options.c | 23 +++
1 files changed, 15 insertions(+), 8 deletions(-)
diff --git a/options.c b/options.c
index 562c6f6..e7e6565 100644
--- a/opt
201 - 300 of 2018 matches
Mail list logo
