commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-09-14 12:32:07 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.4249 (New) Package is "openfortivpn" Mon Sep 14 12:32:07 2020 rev:13 rq:834122 version:1.15.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2020-06-30 21:56:14.114716170 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.4249/openfortivpn.changes 2020-09-14 12:33:44.597305836 +0200 @@ -1,0 +2,13 @@ +Wed Sep 9 18:34:03 UTC 2020 - Martin Hauke + +- Update to version 1.15.0 + * fix issue sending pin codes + * add command line option to bind to specific interface + * use different hints for OTP and 2FA + * remove password from /proc/#/cmd + * extend OTP to allow FTM push + * add preliminary support for host checks + * don't accept route to the vpn gateway + * fix byte counter in pppd_write + +--- Old: openfortivpn-1.14.1.tar.gz New: openfortivpn-1.15.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.wzpT0R/_old 2020-09-14 12:33:45.977306717 +0200 +++ /var/tmp/diff_new_pack.wzpT0R/_new 2020-09-14 12:33:45.981306719 +0200 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.14.1 +Version:1.15.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.14.1.tar.gz -> openfortivpn-1.15.0.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.1/CHANGELOG.md new/openfortivpn-1.15.0/CHANGELOG.md --- old/openfortivpn-1.14.1/CHANGELOG.md2020-05-21 07:52:53.0 +0200 +++ new/openfortivpn-1.15.0/CHANGELOG.md2020-09-09 09:50:49.0 +0200 @@ -14,6 +14,17 @@ This high level changelog is usually updated when a release is tagged. On the master branch there may be changes that are not (yet) described here. +### 1.15.0 + +* [-] fix issue sending pin codes +* [+] add command line option to bind to specific interface +* [+] use different hints for OTP and 2FA +* [+] remove password from /proc/#/cmd +* [+] extend OTP to allow FTM push +* [+] add preliminary support for host checks +* [-] don't accept route to the vpn gateway +* [-] fix byte counter in pppd_write + ### 1.14.1 * [-] fix out of bounds array access diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.1/README.md new/openfortivpn-1.15.0/README.md --- old/openfortivpn-1.14.1/README.md 2020-05-21 07:52:53.0 +0200 +++ new/openfortivpn-1.15.0/README.md 2020-09-09 09:50:49.0 +0200 @@ -71,7 +71,7 @@ Multiple readers are currently not supported. Smartcard support has been tested with Yubikey under Linux, but other PIV enabled -smartcards may work too. On Mac OS X Mojave it is known that the pkcs eingine-by-id is not found. +smartcards may work too. On Mac OS X Mojave it is known that the pkcs engine-by-id is not found. @@ -81,7 +81,7 @@ ### Installing existing packages -Some Linux distibutions provide `openfortivpn` packages: +Some Linux distributions provide `openfortivpn` packages: * [Fedora / CentOS](https://apps.fedoraproject.org/packages/openfortivpn) * [openSUSE / SLE](https://software.opensuse.org/package/openfortivpn) * [Gentoo](https://packages.gentoo.org/packages/net-vpn/openfortivpn) @@ -168,9 +168,9 @@ * when setting IP routes through VPN (when the tunnel is up); * when adding nameservers to `/etc/resolv.conf` (when the tunnel is up). -For these reasons, you may need to use `sudo openfortivpn`. +For these reasons, you need to use `sudo openfortivpn`. If you need it to be usable by non-sudoer users, you might consider adding an -entry in `/etc/sudoers`. +entry in `/etc/sudoers` or a file under `/etc/sudoers.d`. For example: `visudo -f /etc/sudoers.d/openfortivpn` @@ -179,6 +179,8 @@ %adm ALL = (ALL) OPENFORTIVPN ``` +Adapt the above example by changing the `openfortivpn` path or choosing +a group different from `adm` - such as a dedicated `openfortivpn` group. **Warning**: Make sure only trusted users can run openfortivpn as root! As described in [#54](https://github.com/adrienverge/openfortivpn/issues/54), diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.1/configure.ac new/openfortivpn-1.15.0/configure.ac --- old/openfortivpn-1.14.1/configure.ac2020-05-21 07:52:53.0 +0200 +++ new/openfortivpn-1.15.0/co
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-06-30 21:56:11 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.3060 (New) Package is "openfortivpn" Tue Jun 30 21:56:11 2020 rev:12 rq:810125 version:1.14.1 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2020-05-23 17:28:52.539594294 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.3060/openfortivpn.changes 2020-06-30 21:56:14.114716170 +0200 @@ -1,0 +2,6 @@ +Sat May 23 08:34:20 UTC 2020 - Martin Hauke + +- Update to version 1.14.1 + * fix out of bounds array access + +--- Old: openfortivpn-1.14.0.tar.gz New: openfortivpn-1.14.1.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.klZheo/_old 2020-06-30 21:56:14.714718027 +0200 +++ /var/tmp/diff_new_pack.klZheo/_new 2020-06-30 21:56:14.718718039 +0200 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.14.0 +Version:1.14.1 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.14.0.tar.gz -> openfortivpn-1.14.1.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.0/CHANGELOG.md new/openfortivpn-1.14.1/CHANGELOG.md --- old/openfortivpn-1.14.0/CHANGELOG.md2020-05-11 08:29:51.0 +0200 +++ new/openfortivpn-1.14.1/CHANGELOG.md2020-05-21 07:52:53.0 +0200 @@ -14,6 +14,10 @@ This high level changelog is usually updated when a release is tagged. On the master branch there may be changes that are not (yet) described here. +### 1.14.1 + +* [-] fix out of bounds array access + ### 1.14.0 * [+] add git commit id in debug output @@ -27,7 +31,7 @@ * [+] allow logging with both smartcard and username * [+] fix GCC 9 and clang warnings * [+] bump default minimal TLS version from TLSv1.0 to TLSv1.2 -* [-] fix a couple coverity warnin +* [-] fix a couple coverity warnings ### 1.13.3 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.0/configure.ac new/openfortivpn-1.14.1/configure.ac --- old/openfortivpn-1.14.0/configure.ac2020-05-11 08:29:51.0 +0200 +++ new/openfortivpn-1.14.1/configure.ac2020-05-21 07:52:53.0 +0200 @@ -2,7 +2,7 @@ # Process this file with autoconf to produce a configure script. AC_PREREQ([2.63]) -AC_INIT([openfortivpn], [1.14.0]) +AC_INIT([openfortivpn], [1.14.1]) AC_CONFIG_SRCDIR([src/main.c]) AM_INIT_AUTOMAKE([foreign subdir-objects]) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.0/src/ipv4.c new/openfortivpn-1.14.1/src/ipv4.c --- old/openfortivpn-1.14.0/src/ipv4.c 2020-05-11 08:29:51.0 +0200 +++ new/openfortivpn-1.14.1/src/ipv4.c 2020-05-21 07:52:53.0 +0200 @@ -1063,10 +1063,10 @@ int ret = -1; FILE *file; struct stat stat; -#define NS_SIZE ARRAY_SIZE("nameserver xxx.xxx.xxx.xxx") +#define NS_SIZE ARRAY_SIZE("nameserver xxx.xxx.xxx.xxx\n") char ns1[NS_SIZE], ns2[NS_SIZE]; #undef NS_SIZE -#define DNS_SUFFIX_SIZE (ARRAY_SIZE("search ") + MAX_DOMAIN_LENGTH) +#define DNS_SUFFIX_SIZE (ARRAY_SIZE("search \n") + MAX_DOMAIN_LENGTH) char dns_suffix[DNS_SUFFIX_SIZE]; #undef DNS_SUFFIX_SIZE char *buffer = NULL; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.0/src/main.c new/openfortivpn-1.14.1/src/main.c --- old/openfortivpn-1.14.0/src/main.c 2020-05-11 08:29:51.0 +0200 +++ new/openfortivpn-1.14.1/src/main.c 2020-05-21 07:52:53.0 +0200 @@ -50,7 +50,7 @@ " --pppd-plugin= Use specified pppd plugin instead of configuring\n" \ "resolver and routes directly.\n" \ " --pppd-ifname=Set the pppd interface name, if supported by pppd.\n" \ -" --pppd-ipparam= Provides an extra parameter to the ip-up, ip-pre-up\n" \ +" --pppd-ipparam= Provides an extra parameter to the ip-up, ip-pre-up\n" \ "and ip-down scripts. See man (8) pppd\n" \ " --pppd-call=Move most pppd options from pppd cmdline to\n" \ "/etc/ppp/peers/ and invoke pppd with\n" \ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.14.0/tests/ci/checkpatch/checkpatch.pl new/openfortivpn-1.
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-05-23 17:27:48 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.2738 (New) Package is "openfortivpn" Sat May 23 17:27:48 2020 rev:11 rq:807892 version:1.14.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2020-04-04 12:28:17.568105414 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.2738/openfortivpn.changes 2020-05-23 17:28:52.539594294 +0200 @@ -1,0 +2,18 @@ +Tue May 12 18:46:49 UTC 2020 - Martin Hauke + +- Update to version 1.14.0 + * add git commit id in debug output + * do not use interface ip for routing on linux + * avoid extra hop on interface for default route + * clean up, updates and improvments in the build system + * increase the inbound HTTP buffer capacity when needed + * print domain search list to output + * add systemd service file + * add systemd notification when stopping + * allow logging with both smartcard and username + * fix GCC 9 and clang warnings + * bump default minimal TLS version from TLSv1.0 to TLSv1.2 + * fix a couple coverity warnings +- Package systemd service file + +--- Old: openfortivpn-1.13.3.tar.gz New: openfortivpn-1.14.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.UIofqB/_old 2020-05-23 17:28:53.007595306 +0200 +++ /var/tmp/diff_new_pack.UIofqB/_new 2020-05-23 17:28:53.007595306 +0200 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.13.3 +Version:1.14.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later @@ -28,6 +28,7 @@ BuildRequires: automake BuildRequires: openssl-devel Requires: ppp +BuildRequires: systemd-rpm-macros %description openfortivpn is a client for PPP+SSL VPN tunnel services. It spawns a pppd @@ -40,13 +41,26 @@ %build autoreconf -fiv -%configure +%configure \ +--with-systemdsystemunitdir=%{_unitdir} make %{?_smp_mflags} V=1 %install %make_install rm -f %{buildroot}/%{_datadir}/openfortivpn/config.template +%preun +%service_del_preun openfortivpn@.service + +%postun +%service_del_postun openfortivpn@.service + +%pre +%service_add_pre openfortivpn@.service + +%post +%service_add_post openfortivpn@.service + %files %license LICENSE LICENSE.OpenSSL %doc README.md @@ -54,5 +68,6 @@ %{_mandir}/man1/openfortivpn.1%{?ext_man} %dir %{_sysconfdir}/openfortivpn %config(noreplace) %{_sysconfdir}/openfortivpn/config +%{_unitdir}/openfortivpn@.service %changelog ++ openfortivpn-1.13.3.tar.gz -> openfortivpn-1.14.0.tar.gz ++ 2241 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-04-04 12:27:14 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.3248 (New) Package is "openfortivpn" Sat Apr 4 12:27:14 2020 rev:10 rq:791277 version:1.13.3 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2020-03-27 21:58:06.154820853 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.3248/openfortivpn.changes 2020-04-04 12:28:17.568105414 +0200 @@ -1,0 +2,7 @@ +Wed Apr 1 05:42:13 UTC 2020 - Martin Hauke + +- Update to version 1.13.3 + * fix a coverity warning + * cross-compile: do not check resolvconf on the host system + +--- Old: openfortivpn-1.13.2.tar.gz New: openfortivpn-1.13.3.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.lAFDG4/_old 2020-04-04 12:28:20.772108726 +0200 +++ /var/tmp/diff_new_pack.lAFDG4/_new 2020-04-04 12:28:20.776108731 +0200 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.13.2 +Version:1.13.3 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.13.2.tar.gz -> openfortivpn-1.13.3.tar.gz ++ 8495 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-03-27 21:57:43 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.3160 (New) Package is "openfortivpn" Fri Mar 27 21:57:43 2020 rev:9 rq:788893 version:1.13.2 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2020-02-29 21:25:01.666577445 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.3160/openfortivpn.changes 2020-03-27 21:58:06.154820853 +0100 @@ -1,0 +2,18 @@ +Wed Mar 25 18:09:34 UTC 2020 - Martin Hauke + +- Update to version 1.13.2 + * properly build on FreeBSD, even if ppp is not installed at +configure time + * build in the absence of resolvconf + +--- +Tue Mar 24 20:21:17 UTC 2020 - Martin Hauke + +- Update to versin 1.13.0 + * avoid unsupported versions of resolvconf + * add configure and command line option for resolvconf + * increase BUFSIZ + * reinitialize static variables with the --persistent option + * fix a memory leak in ipv4_add_nameservers_to_resolv_conf + +--- Old: openfortivpn-1.12.0.tar.gz New: openfortivpn-1.13.2.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.6f9UuA/_old 2020-03-27 21:58:07.370821560 +0100 +++ /var/tmp/diff_new_pack.6f9UuA/_new 2020-03-27 21:58:07.374821562 +0100 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.12.0 +Version:1.13.2 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.12.0.tar.gz -> openfortivpn-1.13.2.tar.gz ++ 2107 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2020-02-29 21:24:45 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.26092 (New) Package is "openfortivpn" Sat Feb 29 21:24:45 2020 rev:8 rq:780376 version:1.12.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2019-12-03 12:43:05.346121004 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.26092/openfortivpn.changes 2020-02-29 21:25:01.666577445 +0100 @@ -1,0 +2,19 @@ +Thu Feb 27 15:14:15 UTC 2020 - Martin Hauke + +- Update to version 1.12.0 + * fix CVE-2020-7043: TLS Certificate CommonName NULL Byte +Vulnerability + * fix CVE-2020-7042: use of uninitialized memory in +X509_check_host + * fix CVE-2020-7041: incorrect use of X509_check_host +(regarding return value). + * always hide cleartest password in -vv output + * add a clear warning about sensitive information in the debug +output + * add a hint in debug output when password is read from config +file + * fix segfault when connecting with empty password + * use resolvconf if available to update resolv.conf file + * replace semicolon by space in dns-suffix string + +--- Old: openfortivpn-1.11.0.tar.gz New: openfortivpn-1.12.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.F08wRw/_old 2020-02-29 21:25:02.666579424 +0100 +++ /var/tmp/diff_new_pack.F08wRw/_new 2020-02-29 21:25:02.670579432 +0100 @@ -1,7 +1,7 @@ # # spec file for package openfortivpn # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.11.0 +Version:1.12.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.11.0.tar.gz -> openfortivpn-1.12.0.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.11.0/.github/SECURITY.md new/openfortivpn-1.12.0/.github/SECURITY.md --- old/openfortivpn-1.11.0/.github/SECURITY.md 1970-01-01 01:00:00.0 +0100 +++ new/openfortivpn-1.12.0/.github/SECURITY.md 2020-02-26 17:02:52.0 +0100 @@ -0,0 +1,14 @@ +# Security Policy + +## Supported Versions + +Use this section to tell people about which versions of your project are +currently being supported with security updates. + +| Version | Supported | +| --- | -- | +| latest stable release | :white_check_mark: | + +## Reporting a Vulnerability + +Send an email to secur...@openfortivpn.org. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.11.0/CHANGELOG.md new/openfortivpn-1.12.0/CHANGELOG.md --- old/openfortivpn-1.11.0/CHANGELOG.md2019-11-28 17:08:40.0 +0100 +++ new/openfortivpn-1.12.0/CHANGELOG.md2020-02-26 17:02:52.0 +0100 @@ -14,6 +14,18 @@ This high level changelog is usually updated when a release is tagged. On the master branch there may be changes that are not (yet) described here. +### 1.12.0 + +* [-] fix CVE-2020-7043: TLS Certificate CommonName NULL Byte Vulnerability +* [-] fix CVE-2020-7042: use of uninitialized memory in X509_check_host +* [-] fix CVE-2020-7041: incorrect use of X509_check_host (regarding return value). +* [-] always hide cleartest password in -vv output +* [+] add a clear warning about sensitive information in the debug output +* [+] add a hint in debug output when password is read from config file +* [-] fix segfault when connecting with empty password +* [+] use resolvconf if available to update resolv.conf file +* [~] replace semicolon by space in dns-suffix string + ### 1.11.0 * [+] allow to connect with empty password (and with smartcard instead of username) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.11.0/Makefile.am new/openfortivpn-1.12.0/Makefile.am --- old/openfortivpn-1.11.0/Makefile.am 2019-11-28 17:08:40.0 +0100 +++ new/openfortivpn-1.12.0/Makefile.am 2020-02-26 17:02:52.0 +0100 @@ -5,11 +5,14 @@ src/http.c src/http.h src/io.c src/io.h src/ipv4.c \ src/ipv4.h src/log.c src/log.h src/tunnel.c \ src/tunnel.h src/main.c src/ssl.
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2019-12-03 12:42:37 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.4691 (New) Package is "openfortivpn" Tue Dec 3 12:42:37 2019 rev:7 rq:753038 version:1.11.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2019-03-18 10:43:14.935150918 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.4691/openfortivpn.changes 2019-12-03 12:43:05.346121004 +0100 @@ -1,0 +2,26 @@ +Thu Nov 28 19:20:07 UTC 2019 - Martin Hauke + +- Update to version 1.11.0 + * allow to connect with empty password (and with smartcard +instead of username) + * properly handle manipulations of resolv.conf + * support dns-suffix feature + * several codacy fixes + * Add smartcard support with openssl-engine + * correctly shift masks for cidr notation on MAC + * one-byte fix to build with lcc compiler + * pass space character as %20 instead of encoding it as '+' + +- Update to version 1.10.0 + * fix openssl 1.1.x compatibility issues + * Connect to old TLSv1.0 software - override new openssl defaults. + * suppress cleartext password in debug detail output / add new +verbosity level + * increase speed setting for pppd + * configure.ac: rt_dst: don't run tests when option is passed + * configure.ac: don't check file path if --with/--disable specified + * userinput: pass a hint to the pinentry program + * tunnel: make pppd default to logging to stderr + * tunnel: pass our stderr to the pppd slave + +--- Old: openfortivpn-1.9.0.tar.gz New: openfortivpn-1.11.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.No4hnd/_old 2019-12-03 12:43:06.342120728 +0100 +++ /var/tmp/diff_new_pack.No4hnd/_new 2019-12-03 12:43:06.342120728 +0100 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.9.0 +Version:1.11.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.9.0.tar.gz -> openfortivpn-1.11.0.tar.gz ++ 2560 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2019-03-18 10:43:07 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.28833 (New) Package is "openfortivpn" Mon Mar 18 10:43:07 2019 rev:6 rq:685778 version:1.9.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2019-01-21 11:00:55.451230858 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.28833/openfortivpn.changes 2019-03-18 10:43:14.935150918 +0100 @@ -1,0 +2,11 @@ +Sun Mar 17 11:52:47 UTC 2019 - Martin Hauke + +- Update to version 1.9.0 + * Update of the man page, especially about the dns settings + * improved configure output: show detected paths for use at runtime + * Make search string for the otp-prompt configurable + * Add an option to specify a configurable delay during otp +authentication + * Make the options that control usepeerdns more consistent + +--- Old: openfortivpn-1.8.1.tar.gz New: openfortivpn-1.9.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.YJBM3F/_old 2019-03-18 10:43:16.271150157 +0100 +++ /var/tmp/diff_new_pack.YJBM3F/_new 2019-03-18 10:43:16.271150157 +0100 @@ -12,12 +12,12 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: openfortivpn -Version:1.8.1 +Version:1.9.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.8.1.tar.gz -> openfortivpn-1.9.0.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.8.1/CHANGELOG.md new/openfortivpn-1.9.0/CHANGELOG.md --- old/openfortivpn-1.8.1/CHANGELOG.md 2018-12-14 16:49:46.0 +0100 +++ new/openfortivpn-1.9.0/CHANGELOG.md 2019-03-17 10:17:06.0 +0100 @@ -14,6 +14,15 @@ This high level changelog is usually updated when a release is tagged. On the master branch there may be changes that are not (yet) described here. +### 1.9.0 + +* [+] update of the man page, especially about the dns settings +* [+] improved configure output: show detected paths for use at runtime +* [-] correctly convert parsed values, fix for an issue e.g. on Raspbian +* [+] make search string for the otp-prompt configurable +* [+] add an option to specify a configurable delay during otp authentication +* [~] make the options that control usepeerdns more consistent + ### 1.8.1 * [~] Support longer passowrds by allocation of a larger buffer diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.8.1/README.md new/openfortivpn-1.9.0/README.md --- old/openfortivpn-1.8.1/README.md2018-12-14 16:49:46.0 +0100 +++ new/openfortivpn-1.9.0/README.md2019-03-17 10:17:06.0 +0100 @@ -52,7 +52,7 @@ ### Installing existing packages Some Linux distibutions provide `openfortivpn` packages: -* [Fedora](https://apps.fedoraproject.org/packages/openfortivpn) +* [Fedora / CentOS](https://apps.fedoraproject.org/packages/openfortivpn) * [openSUSE / SLE](https://software.opensuse.org/package/openfortivpn) * [Gentoo](https://packages.gentoo.org/packages/net-vpn/openfortivpn) * [NixOS](https://github.com/NixOS/nixpkgs/tree/master/pkgs/tools/networking/openfortivpn) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.8.1/configure.ac new/openfortivpn-1.9.0/configure.ac --- old/openfortivpn-1.8.1/configure.ac 2018-12-14 16:49:46.0 +0100 +++ new/openfortivpn-1.9.0/configure.ac 2019-03-17 10:17:06.0 +0100 @@ -2,7 +2,7 @@ # Process this file with autoconf to produce a configure script. AC_PREREQ([2.63]) -AC_INIT([openfortivpn], [1.8.1]) +AC_INIT([openfortivpn], [1.9.0]) AC_CONFIG_SRCDIR([src/main.c]) AM_INIT_AUTOMAKE([foreign subdir-objects]) @@ -191,6 +191,7 @@ strtok \ strtok_r \ strtol \ +strtoul \ syslog \ system \ tcgetattr \ @@ -316,7 +317,7 @@ with_pppd="no" ]) -# when neither ppp nor pppd are enabled, assume the previous behavior (for travis) +# when neither ppp nor pppd are enabled fall back to a sensible choice for the platform AS_IF([test "x$with_ppp" = "xno" -a "x$with_pppd" = "xno" ], [ AS_IF([test "x$uname" = "xFreeBSD" ], [ PPP_PATH="/usr/sbin/ppp" @@ -327,29 +328,42 @@ ]) ]) -# when both are enab
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2019-01-21 10:59:13 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new.28833 (New) Package is "openfortivpn" Mon Jan 21 10:59:13 2019 rev:5 rq:666713 version:1.8.1 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2018-07-12 09:21:39.170627314 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new.28833/openfortivpn.changes 2019-01-21 11:00:55.451230858 +0100 @@ -1,0 +2,38 @@ +Mon Jan 7 08:05:03 UTC 2019 - mar...@gmx.de + +- Update to version 1.8.1 + Bug fix + * With version 1.8.0 /etc/resolv.conf was not updated anymore in +some situations. To avoid this regression the change +"Rationalize DNS options" has been reverted again to restore the +behavior of versions up to 1.7.1. + * Correctly use realm together with two factor authentication + * If no port is specified use standard https port similar as vendor +client + * Fix value of Accept-Encoding request header + * Bugfix in url_encode for non alphanumerical characters + * HTML URL Encoding with uppercase characters + * Honor Cipher-list option + Change in behavior + * Support longer passowrds by allocation of a larger buffer + * Improved detection of pppd/ppp client during configure stage +- Update to version 1.8.0 + Bug fix + * Prioritize command line arguments over config file parameters + Change in behavior + * When logging traffic also show http traffic (not only tunneled +traffic) + * Improve error message in case of login failure + * Require root privileges for running. They are needed at various +places. Previously, just a warning was issued, but in later stage +things have failed. + * Dynamically allocate routing buffer and therefore allow larger +routing table. + * Support systemd notification upon tunnel up + * Change the way to read passwords such that backspace etc. should +work as usual + * Rationalize DNS options: pppd and openfortivpn were updating +/etc/resolv.conf. Check man page and help output for the +documentation of the current behavior. + +--- Old: _service openfortivpn-1.7.1.tar.gz New: openfortivpn-1.8.1.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.SbjgOA/_old 2019-01-21 11:00:55.871230315 +0100 +++ /var/tmp/diff_new_pack.SbjgOA/_new 2019-01-21 11:00:55.875230310 +0100 @@ -1,7 +1,7 @@ # # spec file for package openfortivpn # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.7.1 +Version:1.8.1 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.7.1.tar.gz -> openfortivpn-1.8.1.tar.gz ++ 3145 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2018-07-12 09:19:49 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new (New) Package is "openfortivpn" Thu Jul 12 09:19:49 2018 rev:4 rq:622040 version:1.7.1 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2018-05-06 15:01:57.699939905 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new/openfortivpn.changes 2018-07-12 09:21:39.170627314 +0200 @@ -1,0 +2,32 @@ +Mon Jun 18 06:24:41 UTC 2018 - mar...@gmx.de + +- Update to version 1.7.1 + * openfortivpn version 1.7.1 + * remove iswhitespace_like in favorite of isspace + * treat carriage returns as white space (might solve #129) (#334) + * update README.md for MacOS X (#333) + * Ooops... Fix --help output. + * Revert 6772c53 + * Let pppd handle DNS servers + * Manual page fixes + * Documentation: we -> openfortivpn + * Ooops... Partial revert of 30a4e0b + * Temporarily change recipient of Coverity reports + * Simplify ofv_append_varr() + * Use the ARRAY_SIZE macro + * Automated Coverity analysis with Travis CI + * Fix pylint warnings + * Restore configure options removed in ac5c083 + * Shell indentation: avoid mixing tabs and spaces + * Use PKG_CHECK_MODULES compiler/linker flags + * Quote shell variables + * bash -> sh + * Balance directory tree + * Build openfortivpn against OpenSSL 1.0.2 + * Refactor Travis CI integration + * Revert 79f52ef + * Rework OpenSSL library detection + * Reworked array of pppd args (#295) + * Build with missing pthread_mutexattr_setrobust() (#298) + +--- Old: openfortivpn-1.7.0.tar.gz New: openfortivpn-1.7.1.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.6iEGiR/_old 2018-07-12 09:21:39.658627996 +0200 +++ /var/tmp/diff_new_pack.6iEGiR/_new 2018-07-12 09:21:39.658627996 +0200 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.7.0 +Version:1.7.1 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0-or-later ++ openfortivpn-1.7.0.tar.gz -> openfortivpn-1.7.1.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.7.0/.travis.yml new/openfortivpn-1.7.1/.travis.yml --- old/openfortivpn-1.7.0/.travis.yml 2018-04-19 16:06:46.0 +0200 +++ new/openfortivpn-1.7.1/.travis.yml 2018-06-16 20:36:59.0 +0200 @@ -2,22 +2,33 @@ sudo: false -install: - - > - [ -f $HOME/astyle/build/gcc/bin/astyle ] || { -wget -O astyle_2.05.1_linux.tar.gz http://sourceforge.net/projects/astyle/files/astyle/astyle%202.05.1/astyle_2.05.1_linux.tar.gz/download; -tar -xf astyle_2.05.1_linux.tar.gz -C $HOME; -make -C $HOME/astyle/build/gcc; - } - - make -C $HOME/astyle/build/gcc prefix=$HOME install - cache: directories: -- $HOME/astyle +- $HOME/.openfortivpn-deps + +before_install: + - tests/ci/install_astyle.sh $HOME/.openfortivpn-deps + - tests/ci/install_openssl.sh $HOME/.openfortivpn-deps + +install: + - ./autogen.sh + - PKG_CONFIG_PATH=$HOME/.openfortivpn-deps/lib/pkgconfig ./configure --prefix=/usr --sysconfdir=/etc + - make script: - ./tests/lint/run.sh - - > - ./autogen.sh - && ./configure --prefix=/usr --sysconfdir=/etc - && make + +env: + global: +# COVERITY_SCAN_TOKEN +- secure: "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" + +addons: + coverity_scan: +project: + name: adrienverge/openfortivpn + description: Client for PPP+SSL VPN tunnel services +notification_email: dimitripapadopou...@users.noreply.github.com +build_command_prepend: ./configure --prefix=/usr --sysconfdir=/etc; make clean +build_command: make +branch_pattern: coverity_scan diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/openfortivpn-1.7.0
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2018-05-06 15:01:43 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new (New) Package is "openfortivpn" Sun May 6 15:01:43 2018 rev:3 rq:603976 version:1.7.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2017-11-21 15:34:18.181011837 +0100 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new/openfortivpn.changes 2018-05-06 15:01:57.699939905 +0200 @@ -1,0 +2,42 @@ +Mon Apr 23 08:15:04 UTC 2018 - mar...@gmx.de + +- Update to version 1.7.0 + * correctly set up route to vpn gateway (#285) + * Properly check vsnprintf() return value + * const correctness for strings + * socket() requires (#290) + * HTTP end-of-line marker is CR LF + * malloc(), realloc() and free() require + * vsnprintf() is defined in + * va_start() and va_end() require (#287) + * Improve script to find line length errors + * If the OTP is specified in the configuration, use it for 2FA + * fix formatting of man page + * replace hard-coded virtual ip address in pppd call parameters +by a rfc3330 test-net address + * Print proper pppd status messages + * Linux kernel coding style + * Ignore strings when calculating line lengths + * Make sure the Coverity defect is a false positive (#264) + * Linux kernel coding style + * Rephrase --half-internet-routes documentation + * Limit string length to C99 standard + * Add info about Debian (testing) package to readme + * Add --pppd-call option. (#270) + * Explain why Coverity defect is a false positive + * Linux kernel coding style + * Use X509_check_host instead of explicit CN match. (#242) + * Fix usage string for half-internet-routes + * UINT_MAX is defined in + * avoid confusion of code branches for different platforms + * added --persistent option for automatic reconnects (#190) + * update README.md + * Bourne shell + * call aclocal from autogen.sh only if it exists + * improve autoconf + * Standard error message for malloc()/realloc() + * Avoid Valgrind warning + * C99 initialization instead of memset() + * Documentation + +--- Old: openfortivpn-1.6.0.tar.gz New: openfortivpn-1.7.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.1EruCF/_old 2018-05-06 15:01:58.255919498 +0200 +++ /var/tmp/diff_new_pack.1EruCF/_new 2018-05-06 15:01:58.259919351 +0200 @@ -1,7 +1,7 @@ # # spec file for package openfortivpn # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,12 +17,12 @@ Name: openfortivpn -Version:1.6.0 +Version:1.7.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services -License:GPL-3.0+ +License:GPL-3.0-or-later Group: Productivity/Networking/Security -Url:https://github.com/adrienverge/openfortivpn +URL:https://github.com/adrienverge/openfortivpn Source0: https://github.com/adrienverge/openfortivpn/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz BuildRequires: autoconf BuildRequires: automake @@ -48,10 +48,10 @@ rm -f %{buildroot}/%{_datadir}/openfortivpn/config.template %files -%defattr(-,root,root) -%doc README.md LICENSE LICENSE.OpenSSL +%license LICENSE LICENSE.OpenSSL +%doc README.md %{_bindir}/openfortivpn -%{_mandir}/man1/openfortivpn.1%{ext_man} +%{_mandir}/man1/openfortivpn.1%{?ext_man} %dir %{_sysconfdir}/openfortivpn %config(noreplace) %{_sysconfdir}/openfortivpn/config ++ openfortivpn-1.6.0.tar.gz -> openfortivpn-1.7.0.tar.gz ++ 1957 lines of diff (skipped)
commit openfortivpn for openSUSE:Factory
Hello community, here is the log from the commit of package openfortivpn for openSUSE:Factory checked in at 2017-11-21 15:34:04 Comparing /work/SRC/openSUSE:Factory/openfortivpn (Old) and /work/SRC/openSUSE:Factory/.openfortivpn.new (New) Package is "openfortivpn" Tue Nov 21 15:34:04 2017 rev:2 rq:543967 version:1.6.0 Changes: --- /work/SRC/openSUSE:Factory/openfortivpn/openfortivpn.changes 2017-10-21 20:21:34.599559949 +0200 +++ /work/SRC/openSUSE:Factory/.openfortivpn.new/openfortivpn.changes 2017-11-21 15:34:18.181011837 +0100 @@ -1,0 +2,17 @@ +Fri Nov 17 21:30:57 UTC 2017 - mar...@gmx.de + +- Update to version 1.6.0 + * Linux kernel coding style + * Does /usr/sbin/pppd exist? + * Update README.md (#196) + * Print message associated to pppd exit status code (#189) + * preserve existing config during install, this solves #130 (#193) + * Fix Codacy code style issues + * Increase max cookie size to 4096 + * Fix Coverity defect + * Avoid multiple occurrences of a magic number + * Fix warning from static analysis tool scan-build + * Update Linux installation instructions + * dynamic allocation of memory for split route array (#163) + +--- Old: openfortivpn-1.5.0.tar.gz New: _service openfortivpn-1.6.0.tar.gz Other differences: -- ++ openfortivpn.spec ++ --- /var/tmp/diff_new_pack.A3LKrR/_old 2017-11-21 15:34:18.860987196 +0100 +++ /var/tmp/diff_new_pack.A3LKrR/_new 2017-11-21 15:34:18.864987051 +0100 @@ -17,7 +17,7 @@ Name: openfortivpn -Version:1.5.0 +Version:1.6.0 Release:0 Summary:Client for PPP+SSL VPN tunnel services License:GPL-3.0+ @@ -45,6 +45,7 @@ %install %make_install +rm -f %{buildroot}/%{_datadir}/openfortivpn/config.template %files %defattr(-,root,root) ++ _service ++ ++ openfortivpn-1.5.0.tar.gz -> openfortivpn-1.6.0.tar.gz ++ 2209 lines of diff (skipped)