Hello community, here is the log from the commit of package openconnect for openSUSE:Factory checked in at 2016-10-14 03:37:38 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/openconnect (Old) and /work/SRC/openSUSE:Factory/.openconnect.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "openconnect" Changes: -------- --- /work/SRC/openSUSE:Factory/openconnect/openconnect.changes 2015-03-19 20:59:12.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.openconnect.new/openconnect.changes 2016-10-14 03:37:39.000000000 +0200 @@ -1,0 +2,27 @@ +Tue Oct 4 20:45:52 UTC 2016 - [email protected] + +- Upgraded to 7.07, included fix for Juniper vpn + +------------------------------------------------------------------- +Tue Oct 04 15:36:27 UTC 2016 - [email protected] + +- Update to version 7.0.7 + * More fixes for OpenSSL 1.1 build. + * Support Juniper "Post Sign-in Message". + * Add --protocol option. + * Fix ChaCha20-Poly1305 cipher suite to reflect final standard. + * Add ability to disable IPv6 support via library API. + * Set groups appropriately when using setuid(). + * Automatic DTLS MTU detection. + * Support SSL client certificate authentication with Juniper servers. + * Revamp SSL certificate validation for OpenSSL and stop supporting OpenSSL older than 0.9.8. + * Fix handling of multiple DNS search domains with Network Connect. + * Fix handling of large configuration packets for Network Connect. + * Enable SNI when built with OpenSSL (1.0.1g or later). + * Add --resolve and --local-hostname options to command line. + +- juniper-fix-for-upstream-sources.patch included to fix upgraded Juniper servers + * Submitted to upstream, not yet included in release + + +------------------------------------------------------------------- Old: ---- openconnect-7.06.tar.gz New: ---- juniper-fix-for-upstream-sources.patch openconnect-7.07.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ openconnect.spec ++++++ --- /var/tmp/diff_new_pack.XenMgE/_old 2016-10-14 03:37:41.000000000 +0200 +++ /var/tmp/diff_new_pack.XenMgE/_new 2016-10-14 03:37:41.000000000 +0200 @@ -1,7 +1,7 @@ # # spec file for package openconnect # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: openconnect -Version: 7.06 +Version: 7.07 Release: 0 Summary: Open client for Cisco AnyConnect VPN License: LGPL-2.1+ @@ -39,6 +39,8 @@ BuildRequires: pkgconfig(libxml-2.0) Requires: vpnc BuildRoot: %{_tmppath}/%{name}-%{version}-build +# PATCH-FIX-UPSTREAM juniper-fix-for-upstream-sources.patch +Patch0: juniper-fix-for-upstream-sources.patch %description This package provides a client for Cisco's "AnyConnect" VPN, which uses @@ -76,6 +78,7 @@ %prep %setup -q +%patch0 -p1 %lang_package %build ++++++ juniper-fix-for-upstream-sources.patch ++++++ >From 4ce9c9241f5707917e87e93a055f757cea5fb84d Mon Sep 17 00:00:00 2001 From: Jon DeVree <[email protected]> Date: Mon, 19 Sep 2016 21:00:18 -0400 Subject: [PATCH] Add Content-Length header to mimic official pulse client The official pulse client sends in a fixed "Content-Length: 256" header with these two HTTP requests. Some versions of the VPN server will reject requests with an HTTP 400 error if they do not have this header. Signed-off-by: Jon DeVree <[email protected]> Signed-off-by: David Woodhouse <[email protected]> --- oncp.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/oncp.c b/oncp.c index cc9a223..2bf1571 100644 --- a/oncp.c +++ b/oncp.c @@ -562,6 +562,7 @@ int oncp_connect(struct openconnect_info *vpninfo) buf_append(reqbuf, "POST /dana/js?prot=1&svc=1 HTTP/1.1\r\n"); oncp_common_headers(vpninfo, reqbuf); + buf_append(reqbuf, "Content-Length: 256\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { @@ -606,6 +607,7 @@ int oncp_connect(struct openconnect_info *vpninfo) buf_truncate(reqbuf); buf_append(reqbuf, "POST /dana/js?prot=1&svc=4 HTTP/1.1\r\n"); oncp_common_headers(vpninfo, reqbuf); + buf_append(reqbuf, "Content-Length: 256\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { -- 2.4.11 ++++++ openconnect-7.06.tar.gz -> openconnect-7.07.tar.gz ++++++ ++++ 153313 lines of diff (skipped)
