Re: [Openvpn-devel] compiling openvpn-2.1_rc21 or rc20 in windows

You can use my build system [1]. I use cross compile on Linux for this. Alon [1] http://www.opensc-project.org/build On Mon, Nov 16, 2009 at 5:08 PM, froggu 21 wrote: > hi > > could you compile the openvpn-2.1_rc21 or openvpn-2.1_rc20 version on > windows successfully? If yes, is it possible f

Re: [Openvpn-devel] Help: build openvpn from source on windows

I use my own build to build this [1]. The OpenVPN project should have long ago separate between a some components for ease of use: 1. OpenVPN 2. OpenVPN Windows Service Wrapper 3. OpenVPN TAP driver 4. OpenVPN Windows Installer 5. Easy-RSA This would have enable users to build specific component

Re: [Openvpn-devel] Crosscompile OpenVPN 2.1.1

Take my build from http://opensc-project.com/build On 1/20/10, Eike Lohmann wrote: > > Hello, > > I am searching for the best way to compile OpenVPN 2.1.1 for Windows, I > have tried it on Windows with mingw+msys and on cygwin with the native > win32 option. Right now I am on Linux using the ming

Re: [Openvpn-devel] Crosscompile OpenVPN 2.1.1

Ops... http://opensc-project.org/build On 1/20/10, Alon Bar-Lev wrote: > Take my build from http://opensc-project.com/build > > On 1/20/10, Eike Lohmann wrote: >> >> Hello, >> >> I am searching for the best way to compile OpenVPN 2.1.1 for Windows, I >> h

Re: [Openvpn-devel] Crosscompile OpenVPN 2.1.1

; Regards, Eike > > > > > Alon Bar-Lev schrieb: > > Ops... > > http://opensc-project.org/build > > > > On 1/20/10, Alon Bar-Lev wrote: > > > >> Take my build from http://opensc-project.com/build > >> > >> On 1/20/10, Eike Lohmann

Re: [Openvpn-devel] pkcs11 support in openvpn

It uses pkcs11-helper [1]. http://opensc-project.org/pkcs11-helper On Fri, Jan 22, 2010 at 3:35 AM, John R Pierce wrote: > I'm looking at the pkcs11 support in openvpn 2.1... > does that use the openssl engine_pkcs11 developed by the opensc group, or > does it directly implement the interface to

Re: [Openvpn-devel] Crosscompile OpenVPN 2.1.1

issing" > I tried to compile openssl no-shared but that didn't chaged anything, > what do I have to change ? > > Best regards > > Eike > > Alon Bar-Lev schrieb: >> You should run the build script it will build all including openvpn. >> You can adjust it

Re: [Openvpn-devel] Summary of the IRC meeting (28th Jan 2010)

Trac is promises to provide all but provides none, I really don't know which project you managed with Trac, but without ticket dependencies and without proper CC lists and workflow it is difficult to manage a real project. You are better use separate products for each category. 1. Bugzilla - bug

Re: [Openvpn-devel] Summary of the IRC meeting (28th Jan 2010)

Trac is *THE* worse ticketing system there is on earth. It is almost unmaintained and even if something happens at the project it is minor and unusable. For example ticket dependency and duplication is unavailable for years. If you like to have sane system, use bugzilla. Yes, I know this was rais

Re: [Openvpn-devel] Summary of the IRC meeting (28th Jan 2010)

gt;> On Jan 31, 2010, at 06:59:10, Alon Bar-Lev wrote: >> >> [ snip ] >> >>> You are better use separate products for each category. >> >> [ snip ] >> >>> 5. Forums... Why not mailing list with archive? As it always had been? >>> And

Re: [Openvpn-devel] [Feedback needed] Fix cross compile support

Yes, it is better than current. Should use --host= and not --target= for cross compile. 1. I would not touch host_alias it is irrelevant and may lead to problems. Use only host variable in autoconf. 2. The case in autoconf should be '*-*-os*)' and not '*os*)' 3. I don't think it is so important

Re: [Openvpn-devel] [PATCH] OpenVPN PKCS11-ID autoselect

I disagree. First certificate tells you nothing, usually you have several (signing, authentication, decryption). First is random, and random is bad. After a while the old certificates also expires and you have new ones added to the card. It would be not wise to enforce your card scheme on others.

Re: [Openvpn-devel] [PATCH] On TARGET_LINUX define _GNU_SOURCE if not defined

This is not the way to do it. Use AC_USE_SYSTEM_EXTENSIONS in autoconf, which detects libc settings. The current autoconf shape is poor, long ago I offered James to rewrite it but he refused. I only made it partially work for cross compile. There are a lot of none standard/best practice stuff th

Re: [Openvpn-devel] [PATCH] On TARGET_LINUX define _GNU_SOURCE if not defined

On Wed, Mar 10, 2010 at 6:50 PM, David Sommerseth wrote: > I'm willing to accept patches with updates as long as it don't break the > oldest version OpenVPN need to support (autotools/autoconf v2.59).  If > it can be built an old RHEL4.6 installation, it's good enough for James, > according to the

Re: [Openvpn-devel] [PATCH] On TARGET_LINUX define _GNU_SOURCE if not defined

; -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 10/03/10 18:03, Alon Bar-Lev wrote: >> On Wed, Mar 10, 2010 at 6:50 PM, David Sommerseth >> wrote: >>> I'm willing to accept patches with updates as long as it don't break the >>> oldest version O

Re: [Openvpn-devel] [PATCH] On TARGET_LINUX define _GNU_SOURCE if not defined

On Wed, Mar 10, 2010 at 7:39 PM, Karl O. Pinc wrote: > In other words ./configure is not expected to be run under normal > circumstances. > > The whole point of autoconf is to produce something that can > be made into a tarball that only requires "make; make install" > to compile and install. You

Re: [Openvpn-devel] [PATCH] On TARGET_LINUX define _GNU_SOURCE if not defined

On Wed, Mar 10, 2010 at 8:04 PM, Karl O. Pinc wrote: > But how is it then that Alon does not run ./configure > on machine 2 above? You do... On the target machine: tar -xf @TARBALL@ cd @TOP@ ./configure make install You must run configure in order to generate Makefile in autoconf environment.

Re: [Openvpn-devel] [PATCH] Fix autotools cross-compiling support

2491190&group_id=48978&atid=454721> > > After having disucssed this patch on IRC (#openvpn-discussions) > March 4, 2010, it was decided to accept this patch when not modifying > TARGET_* defines through out the code.  Further, in a mail comment > Alon Bar-Lev had some other c

Re: [Openvpn-devel] Compiling openvpn for windows using mingw32

You can use [1]. [1] opensc-project.org/build On Sun, Mar 14, 2010 at 4:47 AM, Kill AllSnoopers wrote: > > Hi, > > I am trying to compile openvpn for windows using mingw32 and have openssl > lzo, etc compiled. I am trying to compile to create the openvpn.exe and then > use the GUI. > > I haven

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure information to --version

Highly none standard autotools usage. Also requires awk which may not be available. Please REVERT. On Thu, Apr 8, 2010 at 10:44 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 30/03/10 14:12, David Sommerseth wrote: >> This patch will create ./configure.h whic

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure information to --version

Also there is no proper dependency for configure.h in Makefile.am so it won't be built. Proper way to do so is like I done for OpenSC [1], look for OPENSC_FEATURES. [1] http://www.opensc-project.org/opensc/browser/trunk/configure.ac#L613 On Sat, Apr 10, 2010 at 10:05 AM, Alon Bar-Lev

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure information to --version

On Tue, Apr 13, 2010 at 4:49 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 10/04/10 09:05, Alon Bar-Lev wrote: >> Highly none standard autotools usage. >> Also requires awk which may not be available. >> Please REVERT. > &

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure to --version

such as: AC_DEFUN([MY_AC_ARG_WITH],[ AC_ARG_WITH([$1],[$2],[$3],[$4]) do something ]) This will enable you to do some procedural work without using hacks. On Tue, Apr 13, 2010 at 4:49 PM, David Sommerseth wrote: > On 10/04/10 09:35, Alon Bar-Lev wrote: >> Also ther

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure information to --version

As you wish. On Tue, Apr 13, 2010 at 5:37 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 13/04/10 15:59, Alon Bar-Lev wrote: >>> Alon, with all respect, it is great getting feedbacks to submitted >>> > patches, even REVER

Re: [Openvpn-devel] [PATCH] Add comile time settings from ./configure information to --version

2010/4/14 Samuli Seppänen : > >> First of all, let's bring in the history.  This feature was discussed in >> the weekly meeting February 26, 2010.  See the chat log at [1], around >> the time stamp 20:45:15. >> >> > David, IRC is not a development tool, it is sync tool that require all >> > to be a

Re: [Openvpn-devel] Any volunteer Windows devs to change OpenVPN proxying code to use "new" InternetQueryOption API?

The IE API is user specific. As OpenVPN runs as a service using own user or system account, IE API is not suitable. Using WinHTTP indeed looks better. 2010/4/28 : > Hi Samuli, > > > > Very interesting timing! Just last night I was poking about about this a > bit, and I'm not so sure that the prox

Re: [Openvpn-devel] Any volunteer Windows devs to change OpenVPN proxying code to use "new" InternetQueryOption API?

On Wed, Apr 28, 2010 at 5:38 PM, Heiko Hund wrote: > On Wednesday 28 April 2010 16:24:31 Alon Bar-Lev wrote: >> The IE API is user specific. >> As OpenVPN runs as a service using own user or system account, IE API >> is not suitable. > > Sadly I haven't found

Re: [Openvpn-devel] Building the TAP drivers from source and then signing them (possible?)

http://www.verisign.com/code-signing/content-signing-certificates/microsoft-authenticode/index.html On Wed, Apr 28, 2010 at 10:38 PM, Peter Stuge wrote: > Jon Onstott wrote: >> I would like to go ahead and compile and sign the TAP drivers >> myself.  Does anyone know which certificate would be be

Re: [Openvpn-devel] Any volunteer Windows devs to change OpenVPN proxying code to use "new" InternetQueryOption API?

On Thu, Apr 29, 2010 at 9:07 AM, Heiko Hund wrote: >> > If the service is started by the GUI it still makes sense to use user >> > specific proxy settings, doesn't it? One could consider auto-proxy for >> > auto-started VPNs a misconfiguration, as well. Or am I mislead? >> >> If this is a service

Re: [Openvpn-devel] [PATCH] Choose a different field in X509 to be username

This is good idea. In order to upper case toupper() should be used and not manual guessing. + else if (streq (p[0], "x509-username-field") && p[1]) +{ + VERIFY_PERMISSION (OPT_P_GENERAL); + /* Uppercase if necessary */ + { + char *s = p[1]; + int c, flag = 0; + +

Re: [Openvpn-devel] [PATCH] Choose a different field in X509 to be username

added toupper() + #include in options.c > > See attached. > > -- > Emilien Mantel > > Le 17/06/2010 14:02, Alon Bar-Lev a écrit : >> >> This is good idea. >> >> In order to upper case toupper() should be used and not manual guessing. >> >

Re: [Openvpn-devel] [PATCH] Choose a different field in X509 to be username

* | wc -l > 165 > Are you sure it's a good idea? If I do that, are you agree to rename it > "username"? Oh... this is not for me to decide, I of course think it should be done... Maybe as separate patch... it is very confusing to leave it this way... > > -- > Emil

Re: [Openvpn-devel] Summary of the IRC meeting (26th Aug 2010)

On Sat, Aug 28, 2010 at 5:46 AM, Peter Stuge wrote: > > Samuli Seppänen wrote: > > Discussed the "Some way of supporting static compilation" issue: > > > > > > > > Did some testing to see if creating a static binary would be > > trivial. As it was

Re: [Openvpn-devel] Summary of the IRC meeting (26th Aug 2010)

I am not sure ELF is capable of mixing static/dynamic in same module. I had this problem in several cases, at the end, dynamic glibc was used. On 8/28/10, Peter Stuge wrote: > Alon Bar-Lev wrote: >> > > Did some testing to see if creating a static binary would be >> >

Re: [Openvpn-devel] Summary of the IRC meeting (26th Aug 2010)

On Sun, Aug 29, 2010 at 2:04 AM, Peter Stuge wrote: > The only thing missing was -lz to satisfy OpenSSL dependencies. > If pkg-config is available in the system then pkg-config openssl --libs > is all that is needed to get the linker flags needed for OpenSSL. > Maybe use PKG_CHECK_MODULES() in con

[Openvpn-devel] Windows build was messed up!

Hello, Does anyone know why the socklet_t detection was added this way? I mean the TYPE_SOCKLEN_T m4 macro. First, it should be sufficient to just try to see if socklen_t is defined. Next, on all platforms it would be int in all other platforms. And, there is no need to check for the type in mon

Re: [Openvpn-devel] Windows build was messed up!

On Mon, Sep 13, 2010 at 8:59 PM, Toby Thain wrote: > NMAKE is convenient for Windows builds as it will also happily run > under Linux/WINE, targeting both 32 and 64 bit Windows runtimes with > the 'freely downloadable' Express toolchain. It may even be possible > to combine autotools with the Micr

Re: [Openvpn-devel] Windows build was messed up!

On Mon, Sep 13, 2010 at 8:25 PM, Peter Stuge wrote: > autotools is absolutely alien in Windows, and to be honest a bit of a > hassle to set up if you're already a VS wizard. In OpenVPN upstream provides binaries using mingw anyway. So there is no need to support any other environment for Windows.

Re: [Openvpn-devel] Windows build was messed up!

On Mon, Sep 13, 2010 at 9:29 PM, Toby Thain wrote: >>> NMAKE is convenient for Windows builds as it will also happily run >>> under Linux/WINE, targeting both 32 and 64 bit Windows runtimes with >>> the 'freely downloadable' Express toolchain. It may even be possible >>> to combine autotools with

Re: [Openvpn-devel] Windows build was messed up!

Samuli, Please peek this up. Thanks. On Mon, Sep 13, 2010 at 6:21 PM, Alon Bar-Lev wrote: > Hello, > > Does anyone know why the socklet_t detection was added this way? > > I mean the TYPE_SOCKLEN_T m4 macro. > > First, it should be sufficient to just try to see if socklen

Re: [Openvpn-devel] Windows build was messed up!

Look at the date Since ~2007 we are discussing modular. It is so needed... :) Better later than ever... -- Forwarded message -- From: Alon Bar-Lev List-Post: openvpn-devel@lists.sourceforge.net Date: Wed, Dec 27, 2006 at 8:20 PM Subject: Re: [openvpn] cross compile To: James

Re: [Openvpn-devel] [PATCH] Removed hardcoded signtool dependency from win/build_all.py

Hello, This again, raises the modulation of openvpn project. *NOBODY* wants/needs to modify the driver, most people lacks the skills and interest. Usually people wants to patch openvpn userspace components. The driver should come in its own .msi signed (msi + driver). OpenVPN installation should

Re: [Openvpn-devel] [PATCH] Use \r\n as newline in log files on Windows

Use text mode file io, don't mess with the constants. On Mon, Dec 13, 2010 at 11:56 AM, David Sommerseth wrote: > The newline style is different from most Unices and Windows, where > Windows uses \r\n instead of just \n. > > Reported-by: Thomas Reifferscheid > Signed-off-by: David Sommerseth > -

Re: [Openvpn-devel] OpenVPN 2.2-RC released

Hello, Any reason why the windows cross compile fix we discussed [1] did not made it into mainline? Attached again. This is trivial patch, which resume the ability to build openvpn using cross compiler and autotools. Please apply so we don't need to maintain this out of tree. You can test buil

Re: [Openvpn-devel] OpenVPN 2.2-RC released

; > On 04/03/11 22:14, Alon Bar-Lev wrote: >> Hello, >> >> Any reason why the windows cross compile fix we discussed [1] did not >> made it into mainline? >> >> This is trivial patch, which resume the ability to build openvpn using >> cross compiler

Re: [Openvpn-devel] OpenVPN 2.2-RC released

On Sat, Mar 5, 2011 at 2:02 AM, Mr Dash Four wrote: > Speaking of which, I also proposed a (rather trivial) patch which enables > cross compilation of a number of OpenVPN plugins (that patch is attached > again) as in the 2.1.4 version that was not possible. I think you should leave the -O2 as de

Re: [Openvpn-devel] [PATCH] Bind only to specified interface

Hello, I don't understand why it is needed. You can always start openvpn and override configuration via command-line. So add --local "$(/sbin/ip addr show dev wlan0 | grep inet | sed 's#.*inet \(.*\)/.*#\1#')" parameter while starting it. A more generic approach can be adding $() support into op

Re: [Openvpn-devel] OpenVPN 2.2-RC released

Can you please send the patch again? On Wed, Mar 9, 2011 at 4:39 PM, Markus Koetter wrote: > > Hi, > > On 03/04/2011 08:26 PM, Samuli Seppänen wrote: > >      * Make the --x509-username-field feature an opt-in feature > > given the x509 username field is optional now, any chance to get x509 v3 >

Re: [Openvpn-devel] First OpenVPN 2.2-RC2 preview available

Any reason why I cannot find git or svn repository for openvpn in the openvpn site? Maybe it is hidden or misplaced. 2011/3/18 Samuli Seppänen : > Hi all, > > First working _preview_ of 2.2-RC2 is now available. I've verified that > this installer works on Windows XP (32-bit) and Windows 7 (64-bit

Re: [Openvpn-devel] First OpenVPN 2.2-RC2 preview available

Hello, GIT/SVN repository is expected to be published clearly in opened source projects, just like you have Download option in menu, there should be Source or similar. If your git is the one that is candidate for next release, publish it, better something than nothing. Also, please install gitwe

Re: [Openvpn-devel] [PATCH] Fixes to Makefile.am

I think management/management-notes.txt should be in dist_doc_DATA so it actually get installed. 2011/3/23 Samuli Seppänen > > Removed reference to config-win32.h, which has been removed. Added > management-notes.txt to dist rules. > > Signed-off-by: Samuli Seppänen > --- >  Makefile.am |    6

Re: [Openvpn-devel] [PATCH] Change the default --tmp-dir path to a more suitable path

On Wed, Apr 6, 2011 at 7:10 PM, David Sommerseth wrote: > In commit 4e1cc5f6dda22e9 the create_temp_filename() function was > reviewed and hardened, which in the end renamed this function to > create_temp_file() in commit 495e3cec5d156. > > With these changes it became more evident that OpenVPN ne

Re: [Openvpn-devel] [PATCH] Change the default --tmp-dir path to a more suitable path

On Thu, Apr 7, 2011 at 3:48 PM, David Sommerseth wrote: > Good idea!  I wasn't aware of that one.  I'll fix this.  I will anyway > choose to fallback to C:\WINDOWS\Temp if %SystemRoot% is not found, even > though I believe this is most likely not something which should happen. Can't happen, Windo

Re: [Openvpn-devel] [PATCH] Change the default --tmp-dir path to a more suitable path

On Thu, Apr 7, 2011 at 5:52 PM, Karl O. Pinc wrote: > FYI After poking about the man pages of various Un*xs I find: > > login(1) does not have to set $TMPDIR, although the whole > login process can be configured to do so there's no > requirement that $TMPDIR exist. This is so strange discussion.

Re: [Openvpn-devel] [PATCH 2/2] Use %SystemRoot% instead of hard-coded C:\WINDOWS for temp directory path

On Fri, Apr 8, 2011 at 2:40 PM, David Sommerseth wrote: > + > +  envptr = getenv(SYS_PATH_ENV_VAR_NAME); > +  if( !envptr ) { > +    /* This indicates something is really wrong with the Windows > +     * environment, and we shouldn't try to start OpenVPN in this case > +     */ > +    msg (M_FATAL

Re: [Openvpn-devel] [PATCH 2/2] Use %SystemRoot% instead of hard-codedC:\WINDOWS for temp directory path

On Fri, Apr 8, 2011 at 7:03 PM, Gisle Vanem wrote: > Why not a bit simpler; GetTempPath() (kernel32.dll) already does these tests. > Ref: http://msdn.microsoft.com/en-us/library/aa364992(v=vs.85).aspx : Good catch. Alon.

Re: [Openvpn-devel] I made a patch that prevents POSIX capabilities from disappearing during UID downgrade.

Usually, using cap should be enabled/disabled via autoconf. On Mon, Apr 11, 2011 at 11:23 PM, crocket wrote: > > diff -Naur a/init.c b/init.c > --- a/init.c    2010-11-05 04:29:02.0 +0900 > +++ b/init.c    2011-04-12 05:11:43.540370471 +0900 > @@ -41,6 +41,10 @@ > >  #include "occ-inline.

Re: [Openvpn-devel] I made a patch that prevents POSIX capabilities from disappearing during UID downgrade.

quot; = "yes" && AC_DEFINE([ENABLE_CAPABILITIES], [1], [enable Linux capabilities]) --- Then in source you test for: #ifdef ENABLE_CAPABILITIES Alon. On Tue, Apr 12, 2011 at 12:03 AM, crocket wrote: > How do I enable it via autoconf? > > On Tue, Apr 12, 2011 at 5:37 AM, Alon Bar-Lev wr

Re: [Openvpn-devel] route-up and iproute plugins

I don't understand the "more secure" argument. But you can write less secured suid iproute2 ip utility replacement which can do whatever you like if the sudo is your problem. On Sat, Apr 16, 2011 at 1:57 AM, Mr Dash Four wrote: > > Is there a plugin allowing me to run "route-up" and "iproute" > (

Re: [Openvpn-devel] [PATCH] Make '--comp-lzo no' the default behaviour if LZO is enabled

If you have a problem in what can or cannot be pushed to client, why not do this generic? Something like: --- push-allowed="comp-lzo ..." push-disallow="comp-lzo ..." --- On Mon, May 16, 2011 at 2:10 PM, David Sommerseth wrote: > > This makes 'comp-lzo' pushable without requiring clients to have

Re: [Openvpn-devel] Builing OpenVPN for Windows

Please ask these stuff on the list. 1. You should use i686-w64-mingw32 for 32bit. 2. NSI build is not supported for cross compile, there openvpn developers prefer to use their own build system in order to produce the installer. 3. As openvpn is not modular, you must compile your self the tap dri

Re: [Openvpn-devel] OpenVPN with PKCS11 support

Just today we discussed this. Look at [1][2] [1] https://www.opensc-project.org/build [2] http://www.opensc-project.org/downloads/users/alonbl/build/ On Thu, Jul 14, 2011 at 12:27 AM, Thomas wrote: > Hi list, > > I'm looking for a newer version of OpenVPN (like 2.2.1) with PKCS11 > support prec

Re: [Openvpn-devel] [PATCH 2/2] don't use struct in6_addr s6_addr32 member anymore

Hello, I think this should be done by autoconf. And hand added into win32 for MSVC. Alon. On Wed, Aug 10, 2011 at 3:55 PM, Heiko Hund wrote: > The s6_addr32 member of struct in6_addr is not available when building > for WIN32. To work around this, a local union is defined that allows > accessing

[Openvpn-devel] pkcs11-helper-1.09 released

Hello, pkcs11-helper-1.09 is available. Fixed issue introduced in 1.08 related to OpenSSL engine signature. ChangeLog 2011-08-16 - Version 1.09 * Do not retry if CKR_BUFFER_TOO_SMALL and none NULL target. * Fixup OpenSSL engine's rsa_priv_enc to use RSA size output buffer.

Re: [Openvpn-devel] [PATCH 1/3] add MinGW WinHTTP compatibility layer

These macros are s ugly! why not do this simply like other examples in OpenVPN code, if I recall correctly in CryptoAPI module. On Wed, Aug 17, 2011 at 4:42 PM, Heiko Hund wrote: > MinGW is missing support for winhttp.dll which will be used for automatic > proxy server detection in Window

Re: [Openvpn-devel] [PATCH 0/3] better --auto-proxy support for Windows

Won't it make it harder to configure openvpn as service? On Wed, Aug 17, 2011 at 4:42 PM, Heiko Hund wrote: > Hi, > > the auto-proxy support for Windows was rather sub-optimal. Since Internet > Explorer 5 proxy settings were configured with the network or VPN connection, > but OpenVPN always quer

Re: [Openvpn-devel] [PATCH 0/3] better --auto-proxy support for Windows

, Aug 17, 2011 at 5:02 PM, Heiko Hund wrote: > On Wednesday 17 August 2011 15:59:10 Alon Bar-Lev wrote: >> Won't it make it harder to configure openvpn as service? > > I don't see how. Please elaborate. > > Heiko > -- > Heiko Hund | Software Engineer | Phone +4

Re: [Openvpn-devel] [PATCH] add --mark option to set SO_MARK sockopt

Maybe should extend the usage of parameter "socket-flags"? On Wed, Aug 31, 2011 at 9:05 PM, Heiko Hund wrote: > Signed-off-by: Heiko Hund > --- >  init.c    |    1 + >  openvpn.8 |    6 ++ >  options.c |   14 ++ >  options.h |    3 +++ >  socket.c  |   13 + >  socket.

Re: [Openvpn-devel] [PATCH] add --mark option to set SO_MARK sockopt

20:27, Alon Bar-Lev wrote: >> Maybe should extend the usage of parameter "socket-flags"? > > I considered that too, but that would require a bigger rewrite of the > - --socket-flags parser.  Currently it only is doing "boolean flags".  And as > - --mark takes a

Re: [Openvpn-devel] [PATCH] UTF-8 X.509 distinguished names

As this is inserted into environment, what happens if locale is not unicode enabled? I think this may break some configurations. On Wed, Nov 23, 2011 at 4:14 PM, Heiko Hund wrote: > The UTF-8 support that came with commit 2627335 does allow international > usernames and passwords. This patch intr

Re: [Openvpn-devel] [PATCH] Windows UTF-8 input/output

OpenVPN output is not always a console. I am not sure this patch is valid. On Wed, Nov 23, 2011 at 4:15 PM, Heiko Hund wrote: > This patch makes openvpn read unicode from the console and convert the input > to UTF-8. And then display UTF-8 output to the console correctly. > > Signed-off-by: Heiko

Re: [Openvpn-devel] [PATCH] Windows UTF-8 input/output

On Wed, Nov 23, 2011 at 5:02 PM, Heiko Hund wrote: > On Wednesday 23 November 2011 14:55:57 Alon Bar-Lev wrote: >> OpenVPN output is not always a console. > > What output are you concerned about? Log file is fine, as much as management > interface. > > Regards > Heiko Pipes when run as service.

Re: [Openvpn-devel] [PATCH] UTF-8 X.509 distinguished names

On Wed, Nov 23, 2011 at 5:14 PM, Heiko Hund wrote: > On Wednesday 23 November 2011 14:53:06 Alon Bar-Lev wrote: >> As this is inserted into environment, what happens if locale is not >> unicode enabled? > > Then the script will receive funny looking strings depending on your

Re: [Openvpn-devel] Topics for today's meeting

Hello, I won't participate in sync meeting don't have the time. Anyway, for windows build. I already provide binaries for OpenVPN using mingw-w64 project, and it works fine! I use mingw-w64 for both win32 and win64 binaries, much better than old mingw project, as mingw-w64 is maintained! You c

Re: [Openvpn-devel] Topics for today's meeting

Correction! cygwin provides mingw-w64 now!!! Also recent autoconf/automake/libtool. So we can also cross compile using mingw. 2011/11/24 Alon Bar-Lev : > Hello, > > I won't participate in sync meeting don't have the time. > Anyway, for windows build. > I already pro

Re: [Openvpn-devel] Topics for today's meeting

I hate CMake, it is way too complex, these guys re-invented the wheel with no decent reuse of any methodology / language that existed before. If we take SCons as another example, it took python and used it to do build... So if you are python developer most probably you know how to SCons. Also, look

Re: [Openvpn-devel] Topics for today's meeting

rk! I will build with dependencies now, it will take some time. 2011/11/24 Alon Bar-Lev : > Correction! > cygwin provides mingw-w64 now!!! > Also recent autoconf/automake/libtool. > So we can also cross compile using mingw. > > 2011/11/24 Alon Bar-Lev : >> Hello, >> >

Re: [Openvpn-devel] [PATCH] UTF-8 X.509 distinguished names

On Thu, Nov 24, 2011 at 1:42 PM, Heiko Hund wrote: > On Wednesday 23 November 2011 17:48:54 Alon Bar-Lev wrote: >> Yes, there are many none unicode environments, and I am not sure what >> this patch will behave in windows environment as it is SCS-2 not >> UTF-8. It is UCS

Re: [Openvpn-devel] Topics for today's meeting

My build script is working as-is with cygwin, compiling native win32 binaries! 2011/11/24 Alon Bar-Lev : > I am *VERY* impressed from cygwin jump, I must admit I have not kept > track on this project for a long time! > But now it is up to date with fully operational native windows tool

Re: [Openvpn-devel] [PATCH v2] Provide an access() wrapper for Windows

Why not: #ifdef WIN32 #define access _access #endif On Fri, Dec 2, 2011 at 2:17 PM, David Sommerseth wrote: > Commit 0f2bc0dd92f43c91e33bba8a66b06b98f281efc1 adds extra file and > directory checks at startup. However, this patch makes use of some > features not directly available in Windows. >

Re: [Openvpn-devel] [PATCH] Windows does not have dirname() - reimplement a portable version

I think the whole code should be more autoconf depended. Autoconf can detect if POSIX version is available and if not, code can provide alternative. No need for the openvpn_ functions and wrappers. On Fri, Dec 2, 2011 at 1:02 PM, David Sommerseth wrote: > > Commit 0f2bc0dd92f43c91e33bba8a66b06b98

Re: [Openvpn-devel] [PATCH] Windows does not have dirname() - reimplement a portable version

On Fri, Dec 2, 2011 at 2:38 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 02/12/11 13:28, Alon Bar-Lev wrote: >> I think the whole code should be more autoconf depended. Autoconf can >> detect if POSIX version is available and

Re: [Openvpn-devel] [PATCH v2] Provide an access() wrapper for Windows

At every file: #ifdef HAVE_CONFIG_H #include #elif defined(_MSC_VER) #include #endif On Fri, Dec 2, 2011 at 2:54 PM, Gisle Vanem wrote: > > "Alon Bar-Lev" wrote: > > > Why not: > > #ifdef WIN32 > > #define access _access > > #endif > > We should w

Re: [Openvpn-devel] [PATCH] Move away from openvpn_basename() over to platform provided basename()

On Thu, Dec 8, 2011 at 1:46 AM, David Sommerseth wrote: > > This kicks out the openvpn_basename() function from misc.[ch] andputs > it into compat.[ch].  This is to provide the same functionality on > platforms not having a native basename() function available. > > In addition this patch adds dirn

Re: [Openvpn-devel] [PATCH] Add a wrapper for access() when compiling via Visual Studio

On Thu, Dec 8, 2011 at 2:13 AM, David Sommerseth wrote: > +/* The POSIX access() function is called via _access() on Windows, > + * defined in io.h > + */ > +#define HAVE_ACCESS 1 > +#define access _access > +#pragma warning(disable : 4996) /* Avoid Visual Studio to complain about > access(), whi

Re: [Openvpn-devel] [PATCH] Add option to disable priority tagged packets (VID=0)

Missing usage, man. On Thu, Dec 8, 2011 at 12:15 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > > Adding Fabian to Cc, he knows more about the VLAN code. > > With this feedback, I'm willing merge in the feat_vlan_tagging branch > into master.  I'm not sure if th

Re: [Openvpn-devel] [PATCH] Move away from openvpn_basename() over to platform provided basename()

On Thu, Dec 8, 2011 at 12:27 PM, David Sommerseth wrote: > Hi Alon, > > I'm not sure I understand the critique too well now.  As this is the > approach I tried to do.  However, I put the basename() and dirname() > implementations in compat.h, calling the combined openvpn_dirbasename() > function.

Re: [Openvpn-devel] [PATCH] Add a wrapper for access() when compiling via Visual Studio

On Thu, Dec 8, 2011 at 12:44 PM, David Sommerseth wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 08/12/11 08:44, Alon Bar-Lev wrote: >> On Thu, Dec 8, 2011 at 2:13 AM, David Sommerseth >> wrote: >>> +/* The POSIX access() function i

Re: [Openvpn-devel] [PATCH] Add a wrapper for access() when compiling via Visual Studio

On Thu, Dec 8, 2011 at 12:51 PM, Alon Bar-Lev wrote: > On Thu, Dec 8, 2011 at 12:44 PM, David Sommerseth > wrote: >> -BEGIN PGP SIGNED MESSAGE- >> Hash: SHA1 >> >> On 08/12/11 08:44, Alon Bar-Lev wrote: >>> On Thu, Dec 8, 2011 at 2:13 AM, David So

Re: [Openvpn-devel] [PATCH] Add a wrapper for access() when compiling via Visual Studio

On Thu, Dec 8, 2011 at 12:57 PM, Alon Bar-Lev wrote: > On Thu, Dec 8, 2011 at 12:51 PM, Alon Bar-Lev wrote: >> On Thu, Dec 8, 2011 at 12:44 PM, David Sommerseth >> wrote: >>> -BEGIN PGP SIGNED MESSAGE- >>> Hash: SHA1 >>> >>> On 08/

Re: [Openvpn-devel] [PATCH] handle Windows unicode paths

On Thu, Dec 8, 2011 at 1:06 PM, Heiko Hund wrote: > On Wednesday 07 December 2011 17:58:51 Heiko Hund wrote: >> This patch makes openvpn read the command line in UCS-2 and convert >> it to UTF-8 internally. Windows stores names in the filesystem in UCS-2. >> When using a paths openvpn converts it

Re: [Openvpn-devel] [PATCH] Enable access() when building in Visual Studio

> This patch also adds a ./configure check for access() as well, > in case this needs to be implemented on other platforms lacking > this feature.  Which is why HAVE_ACCESS is defined in win/config.h.in > > Thanks to Alon Bar-Lev for helping solving this. > > Signed-off-by: David

Re: [Openvpn-devel] [PATCH] Add option to disable priority tagged packets (VID=0)

On Thu, Dec 8, 2011 at 7:02 PM, Fabian Knittel wrote: > Am 08.12.2011 11:27, schrieb Alon Bar-Lev: >> Missing usage, man. > > There are probably not *that* many users, agreed.  It's probably more of > a "large enterprise" feature, as only people with VLAN tagg

Re: [Openvpn-devel] [PATCH v3] Move away from openvpn_basename() over to platform provided basename()

On Thu, Dec 8, 2011 at 5:24 PM, David Sommerseth wrote: > This kicks out the openvpn_basename() function from misc.[ch] and puts > glibc equivalents into compat.[ch].  This is to provide the same > functionality on platforms not having a native basename() function > available. > > In addition this

Re: [Openvpn-devel] [PATCH v3] Move away from openvpn_basename() over to platform provided basename()

On Fri, Dec 9, 2011 at 5:26 PM, David Sommerseth wrote: >> These changes, just to take into account some system somewhere that >> has a basename() implementation that modifies the argument string, are >> ugly, and prone to memleak-errors.  Also, some other "basename(3)" man >> pages talk about bas

Re: [Openvpn-devel] [PATCH] autotools ./configure don't like compat.h

The syshead.h is totally invalid and should be revised long time ago. Most of the tests within the syshead.h should be done using autoconf and inject into config.h. This way, there is a single point of platform specific tests. On Wed, Jan 11, 2012 at 9:17 PM, David Sommerseth wrote: > > -BE

Re: [Openvpn-devel] [PATCH] Signed-off-by: Jan Just Keijser

This is nice! Some questions: 1. Why not enable this automatically if openssl is sufficient version? There is no point in not using this if available. 2. I would have liked to see this in negotiation as well, so server will use EC if supported by the client and fallback if not... This way migrat

Re: [Openvpn-devel] [PATCHv2] handle Windows unicode paths

Hello Heiko, I think this patch is important, however as I wrote before it is very difficult to review when you send it as one chunk. It is much better if you split this into trivial changes (the fopen->openvpn_fopen and such) and then focus on each complex change as in the openssl functions. Th

Re: [Openvpn-devel] [PATCH 2/4] do not use mode_t on Windows

I stopped following all OpenVPN changes. It seems like more changes are entered than should without proper review. Anyway, this is not the correct solution. Correct solution is to have config-msvc.h and have: --- #define mode_t int --- And in autoconf (if mingw does not have this as well): AC_CHE

Re: [Openvpn-devel] [PATCH 4/4] make MSVC link against shell32 as well

On Thu, Feb 16, 2012 at 7:30 PM, Heiko Hund wrote: > Windows API CommandLineToArgvW(), introduced in Windows unicode path > commit 71bbbd76c62630c88441237d72fe5b61f0b45b2a, is defined therein. Usually this should be avoided and get command-line from wmain().

  1   2   3   4   5   6   7   8   9   >