Hello community,

here is the log from the commit of package openconnect for openSUSE:Factory 
checked in at 2016-10-14 03:37:38
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/openconnect (Old)
 and      /work/SRC/openSUSE:Factory/.openconnect.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "openconnect"

Changes:
--------
--- /work/SRC/openSUSE:Factory/openconnect/openconnect.changes  2015-03-19 
20:59:12.000000000 +0100
+++ /work/SRC/openSUSE:Factory/.openconnect.new/openconnect.changes     
2016-10-14 03:37:39.000000000 +0200
@@ -1,0 +2,27 @@
+Tue Oct  4 20:45:52 UTC 2016 - fat...@gmail.com
+
+- Upgraded to 7.07, included fix for Juniper vpn
+
+-------------------------------------------------------------------
+Tue Oct 04 15:36:27 UTC 2016 - fat...@gmail.com
+
+- Update to version 7.0.7
+  * More fixes for OpenSSL 1.1 build.
+  * Support Juniper "Post Sign-in Message".
+  * Add --protocol option.
+  * Fix ChaCha20-Poly1305 cipher suite to reflect final standard.
+  * Add ability to disable IPv6 support via library API.
+  * Set groups appropriately when using setuid().
+  * Automatic DTLS MTU detection.
+  * Support SSL client certificate authentication with Juniper servers.
+  * Revamp SSL certificate validation for OpenSSL and stop supporting OpenSSL 
older than 0.9.8.
+  * Fix handling of multiple DNS search domains with Network Connect.
+  * Fix handling of large configuration packets for Network Connect.
+  * Enable SNI when built with OpenSSL (1.0.1g or later).
+  * Add --resolve and --local-hostname options to command line.
+
+- juniper-fix-for-upstream-sources.patch included to fix upgraded Juniper 
servers
+  * Submitted to upstream, not yet included in release 
+
+
+-------------------------------------------------------------------

Old:
----
  openconnect-7.06.tar.gz

New:
----
  juniper-fix-for-upstream-sources.patch
  openconnect-7.07.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ openconnect.spec ++++++
--- /var/tmp/diff_new_pack.XenMgE/_old  2016-10-14 03:37:41.000000000 +0200
+++ /var/tmp/diff_new_pack.XenMgE/_new  2016-10-14 03:37:41.000000000 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package openconnect
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           openconnect
-Version:        7.06
+Version:        7.07
 Release:        0
 Summary:        Open client for Cisco AnyConnect VPN
 License:        LGPL-2.1+
@@ -39,6 +39,8 @@
 BuildRequires:  pkgconfig(libxml-2.0)
 Requires:       vpnc
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
+# PATCH-FIX-UPSTREAM juniper-fix-for-upstream-sources.patch
+Patch0:         juniper-fix-for-upstream-sources.patch
 
 %description
 This package provides a client for Cisco's "AnyConnect" VPN, which uses
@@ -76,6 +78,7 @@
 
 %prep
 %setup -q
+%patch0 -p1
 %lang_package
 
 %build

++++++ juniper-fix-for-upstream-sources.patch ++++++
>From 4ce9c9241f5707917e87e93a055f757cea5fb84d Mon Sep 17 00:00:00 2001
From: Jon DeVree <n...@vault24.org>
Date: Mon, 19 Sep 2016 21:00:18 -0400
Subject: [PATCH] Add Content-Length header to mimic official pulse client

The official pulse client sends in a fixed "Content-Length: 256" header
with these two HTTP requests. Some versions of the VPN server will
reject requests with an HTTP 400 error if they do not have this header.

Signed-off-by: Jon DeVree <n...@vault24.org>
Signed-off-by: David Woodhouse <david.woodho...@intel.com>
---
 oncp.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/oncp.c b/oncp.c
index cc9a223..2bf1571 100644
--- a/oncp.c
+++ b/oncp.c
@@ -562,6 +562,7 @@ int oncp_connect(struct openconnect_info *vpninfo)
 
        buf_append(reqbuf, "POST /dana/js?prot=1&svc=1 HTTP/1.1\r\n");
        oncp_common_headers(vpninfo, reqbuf);
+       buf_append(reqbuf, "Content-Length: 256\r\n");
        buf_append(reqbuf, "\r\n");
 
        if (buf_error(reqbuf)) {
@@ -606,6 +607,7 @@ int oncp_connect(struct openconnect_info *vpninfo)
        buf_truncate(reqbuf);
        buf_append(reqbuf, "POST /dana/js?prot=1&svc=4 HTTP/1.1\r\n");
        oncp_common_headers(vpninfo, reqbuf);
+       buf_append(reqbuf, "Content-Length: 256\r\n");
        buf_append(reqbuf, "\r\n");
 
        if (buf_error(reqbuf)) {
-- 
2.4.11

++++++ openconnect-7.06.tar.gz -> openconnect-7.07.tar.gz ++++++
++++ 153313 lines of diff (skipped)


Reply via email to