From 13592c14541b6dbd9e572b68f30b38fe9788f23f Mon Sep 17 00:00:00 2001 From: Magnus Kroken Date: Sat, 10 Dec 2016 12:11:33 +0100 Subject: openvpn: update to 2.4_rc2 OpenVPN 2.4 builds with mbedTLS 2.x, rename openvpn-polarssl variant to openvpn-mbedtls. Some feature highlights: * Data channel cipher negotiation * AEAD cipher support for data channel encryption (currently only * AES-GCM) * ECDH key exchange for control channel * LZ4 compression support See https://github.com/OpenVPN/openvpn/blob/master/Changes.rst for additional change notes. Signed-off-by: Magnus Kroken --- package/network/services/openvpn/Config-mbedtls.in | 70 ++++++++++++++++++++++ 1 file changed, 70 insertions(+) create mode 100644 package/network/services/openvpn/Config-mbedtls.in (limited to 'package/network/services/openvpn/Config-mbedtls.in') diff --git a/package/network/services/openvpn/Config-mbedtls.in b/package/network/services/openvpn/Config-mbedtls.in new file mode 100644 index 0000000000..c1c8c7ac10 --- /dev/null +++ b/package/network/services/openvpn/Config-mbedtls.in @@ -0,0 +1,70 @@ +if PACKAGE_openvpn-mbedtls + +config OPENVPN_mbedtls_ENABLE_LZO + bool "Enable LZO compression support" + default y + +config OPENVPN_mbedtls_ENABLE_LZ4 + bool "Enable LZ4 compression support" + default y + +config OPENVPN_mbedtls_ENABLE_X509_ALT_USERNAME + bool "Enable the --x509-username-field feature" + default n + +config OPENVPN_mbedtls_ENABLE_SERVER + bool "Enable server support (otherwise only client mode is support)" + default y + +#config OPENVPN_mbedtls_ENABLE_EUREPHIA +# bool "Enable support for the eurephia plug-in" +# default n + +config OPENVPN_mbedtls_ENABLE_MANAGEMENT + bool "Enable management server support" + default n + +#config OPENVPN_mbedtls_ENABLE_PKCS11 +# bool "Enable pkcs11 support" +# default n + +config OPENVPN_mbedtls_ENABLE_HTTP + bool "Enable HTTP proxy support" + default y + +config OPENVPN_mbedtls_ENABLE_SOCKS + bool "Enable SOCKS proxy support" + default y + +config OPENVPN_mbedtls_ENABLE_FRAGMENT + bool "Enable internal fragmentation support (--fragment)" + default y + +config OPENVPN_mbedtls_ENABLE_MULTIHOME + bool "Enable multi-homed UDP server support (--multihome)" + default y + +config OPENVPN_mbedtls_ENABLE_PORT_SHARE + bool "Enable TCP server port-share support (--port-share)" + default y + +config OPENVPN_mbedtls_ENABLE_DEF_AUTH + bool "Enable deferred authentication" + default y + +config OPENVPN_mbedtls_ENABLE_PF + bool "Enable internal packet filter" + default y + +config OPENVPN_mbedtls_ENABLE_IPROUTE2 + bool "Enable support for iproute2" + default n + +config OPENVPN_mbedtls_ENABLE_SMALL + bool "Enable size optimization" + default y + help + enable smaller executable size (disable OCC, usage + message, and verb 4 parm list) + +endif -- cgit v1.2.3