Update to openvpn-2.7.0
Changes:
https://github.com/OpenVPN/openvpn/blob/v2.7.0/Changes.rst
One change of particular interest for OpenBSD users:
Multi-socket support for servers
|OpenVPN servers now can listen on multiple sockets at the same time.
|Multiple ``--local`` statements in the configuration can be used to
|configure this. This way the same server can e.g. listen for UDP
|and TCP connections at the same time, or listen on multiple addresses
|and/or ports.
This means one should be able to run a single server listening on both
IPv4 and IPv6. Previously it required IPv4-mapped IPv6 adresses support,
something not provided by the OpenBSD kernel.
The new dns handling script is disabled by default since it interferes
with resolvd(8) which is started by default.
Test reports from landry@ and kn@, similar diff proposed earlier by kn@
Update to sdl3 3.4.0 and enable joystick/gamecontroller. From Matthew
( fiddle () disroot ! org ), tweaks by sthen@, input/testing from
martijn@ and yaydn () protonmail ! com
Reimport security/polarssl as security/mbedtls
mbedtls-3.6.5 is a SECURITY update over mbedtls-2.18.10 from
security/polarssl.
pkg/DESCR (slightly outdated):
PolarSSL is a fully featured and standards compliant SSL library offering
server and client functionality (SSLv3, TLSv1.0, TLSv1.1 and TLSv1.2) with
an intuitive API and readable source code. Dual license (GPLv2+/commercial).
Non-standard extensions include: SSL Session Tickets (RFC 5077), Server
Name Indication (SNI) (RFC 6066), Truncated HMAC (RFC 6066), Max Fragment
Length (RFC 6066), and Secure Renegotiation (RFC 5746).
Symmetric algorithms: AES, Blowfish, 3DES, DES, ARC4, Camellia, XTEA
Modes: ECB, CBC, CFB, CTR, GCM
Hashes: MD2, MD4, MD5, SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, RIPEMD-160
PolarSSL has its own big number library. Its RSA implementation supports both
[8 lines not shown]
www/py-requests-ratelimiter: import new port (version 0.8.0)
This package is a simple wrapper around pyrate-limiter v2 that adds
convenient integration with the requests library.
OK: sthen@
Add more error logging for the ERR_UPD_ATTRLIST case.
Split it into a bad_list case for all those duplicate attr checks and
a bad_ibuf case that is used when the parsing hits a general issue.
OK sthen@