diff options
author | Magnus Kroken <mkroken@gmail.com> | 2016-12-10 12:11:33 +0100 |
---|---|---|
committer | Felix Fietkau <nbd@nbd.name> | 2016-12-22 16:42:18 +0100 |
commit | 13592c14541b6dbd9e572b68f30b38fe9788f23f (patch) | |
tree | 990efdd8ced61f7024a837069fe9ec6731944c74 /package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch | |
parent | f67867adb054e16a73c5f644e5bdf77e64eaddcf (diff) | |
download | upstream-13592c14541b6dbd9e572b68f30b38fe9788f23f.tar.gz upstream-13592c14541b6dbd9e572b68f30b38fe9788f23f.tar.bz2 upstream-13592c14541b6dbd9e572b68f30b38fe9788f23f.zip |
openvpn: update to 2.4_rc2
OpenVPN 2.4 builds with mbedTLS 2.x, rename openvpn-polarssl
variant to openvpn-mbedtls.
Some feature highlights:
* Data channel cipher negotiation
* AEAD cipher support for data channel encryption (currently only
* AES-GCM)
* ECDH key exchange for control channel
* LZ4 compression support
See https://github.com/OpenVPN/openvpn/blob/master/Changes.rst
for additional change notes.
Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Diffstat (limited to 'package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch')
-rw-r--r-- | package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch | 33 |
1 files changed, 0 insertions, 33 deletions
diff --git a/package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch b/package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch deleted file mode 100644 index 2155a4c79b..0000000000 --- a/package/network/services/openvpn/patches/101-backport_upstream_polarssl_debug_call.patch +++ /dev/null @@ -1,33 +0,0 @@ -openvpn: fix build without POLARSSL_DEBUG_C - -Backport of upstream master commit -b63f98633dbe2ca92cd43fc6f8597ab283a600bf. - -Signed-off-by: Magnus Kroken <mkroken@gmail.com> - -From b63f98633dbe2ca92cd43fc6f8597ab283a600bf Mon Sep 17 00:00:00 2001 -From: Steffan Karger <steffan@karger.me> -Date: Tue, 14 Jun 2016 22:00:03 +0200 -Subject: [PATCH] mbedtls: don't set debug threshold if compiled without - MBEDTLS_DEBUG_C - -For targets with space constraints, one might want to compile mbed TLS -without MBEDTLS_DEBUG_C defined, to save some tens of kilobytes. Make -sure OpenVPN still compiles if that is the case. - -Signed-off-by: Steffan Karger <steffan@karger.me> -Acked-by: Gert Doering <gert@greenie.muc.de> -Message-Id: <1465934403-22226-1-git-send-email-steffan@karger.me> -URL: http://article.gmane.org/gmane.network.openvpn.devel/11922 -Signed-off-by: Gert Doering <gert@greenie.muc.de> ---- a/src/openvpn/ssl_polarssl.c -+++ b/src/openvpn/ssl_polarssl.c -@@ -747,7 +747,9 @@ void key_state_ssl_init(struct key_state - if (polar_ok(ssl_init(ks_ssl->ctx))) - { - /* Initialise SSL context */ -+ #ifdef POLARSSL_DEBUG_C - debug_set_threshold(3); -+ #endif - ssl_set_dbg (ks_ssl->ctx, my_debug, NULL); - ssl_set_endpoint (ks_ssl->ctx, ssl_ctx->endpoint); |