diff options
author | V3n3RiX <venerix@koprulu.sector> | 2023-06-29 13:40:31 +0100 |
---|---|---|
committer | V3n3RiX <venerix@koprulu.sector> | 2023-06-29 13:40:31 +0100 |
commit | e745e1d281540da525df5eaae0904b62bc27852f (patch) | |
tree | fe71391505cd5188d417ddc468859a54f0c648ae /net-vpn/networkmanager-openvpn | |
parent | 05f2a11918a15ef57166e74d69d6c4737673e75c (diff) |
gentoo auto-resync : 29:06:2023 - 13:40:31
Diffstat (limited to 'net-vpn/networkmanager-openvpn')
3 files changed, 103 insertions, 0 deletions
diff --git a/net-vpn/networkmanager-openvpn/Manifest b/net-vpn/networkmanager-openvpn/Manifest index e9ac685b0297..e377b5bf1fb4 100644 --- a/net-vpn/networkmanager-openvpn/Manifest +++ b/net-vpn/networkmanager-openvpn/Manifest @@ -1,3 +1,5 @@ +AUX networkmanager-openvpn-1.10.2-openvpn-2.6-compat.patch 1982 BLAKE2B 5446a16571eb482d542798476255fbd28209ae32e821eb275e255a5915c59f3c6798ed24e7c0163bed46c5c5f04fd40398ebc5ac072daa497b16f7f6b995eefb SHA512 99838460deb18a82f0ee8b4c4e7b0d88cbff958423cde82c29a89f7c276eeddfc8624c790ec1cee93913c89d5415cafb810fdcf14eea104667c3da93a9e6d5ab DIST NetworkManager-openvpn-1.10.2.tar.xz 701652 BLAKE2B c6cef27e57320dc68c168248981f54d2a8eb0a2b19524e11b2c25da04dc98f2a4e00e07b9b83d92d1654c26685d46d8f152c95462e4d73f853872fa3553735bb SHA512 469aa4eeab169ccabd04b18b425ab2f8ad095e19c80dfca528855e1c66314e3ac129145ce5e62f5ccbb7a01cd7ba7f657571c3f4ec57b15ecb95aeaa765f5c4a +EBUILD networkmanager-openvpn-1.10.2-r1.ebuild 1053 BLAKE2B 912cfd4dcdfdd39b06fbd6ab9230be57301ca51bdb4f9dd46d6561fc48a0692d6e2a598104a126a47c620a9ef5977758276fa176328594b1f8d73c9fcf6b560b SHA512 fdb5a0c0f41301de80150d2e7897e903c68af7f2f998c8c60be456799d6c84783b8568403c7d10d84a6a07fbcc2c20542a7baf09995f9d2f2a755b3f3ec6d5cb EBUILD networkmanager-openvpn-1.10.2.ebuild 993 BLAKE2B 12d6e1c4a985bb5890c50e9e3c958a2e313b12a55ac074484157bc3b6d21029efd1e46b96bfe92ba42e3663c57ffe0adef243de0eadfd1b12f39fc2eebbc9cd0 SHA512 32a2d972794d5f70984d6d279ce3aa4bbca0e6a9797b22dac35e4fa29b41681151cd820423b762fae0af6302ddab4ca9e2d22dd1dd5437b0bf31074790f45358 MISC metadata.xml 363 BLAKE2B 2ff0b1a3948001faad595b1e106a906aee729c0f576a6f7b66f766bcb309f4ef1f12ba3d24af1cf130db8e734d913402f74e9a12adef51bfcd77cdb532ab81ae SHA512 6b05e736c4c25efc495d219779f29c570a1e45ab6f259751c44e28a6c7fc94dae1b8d7ebd21d4297e11f64a591f8e72576e20711f52f3364e9fdbc727cf133e9 diff --git a/net-vpn/networkmanager-openvpn/files/networkmanager-openvpn-1.10.2-openvpn-2.6-compat.patch b/net-vpn/networkmanager-openvpn/files/networkmanager-openvpn-1.10.2-openvpn-2.6-compat.patch new file mode 100644 index 000000000000..2b8774b412e8 --- /dev/null +++ b/net-vpn/networkmanager-openvpn/files/networkmanager-openvpn-1.10.2-openvpn-2.6-compat.patch @@ -0,0 +1,43 @@ +https://bugs.gentoo.org/909361 +https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/commit/a790374f4c2e9e1657cbb8470357d72d4bd87916 + +From a790374f4c2e9e1657cbb8470357d72d4bd87916 Mon Sep 17 00:00:00 2001 +From: Beniamino Galvani <bgalvani@redhat.com> +Date: Mon, 28 Nov 2022 17:31:38 +0100 +Subject: [PATCH] Revert "service: automatically add the "cipher" to the + "data-ciphers"" + +`--data-ciphers` has a default value of `AES-256-GCM:AES-128-GCM`. If +we overwrite it with the value of `--cipher` we are diverging from +openvpn behavior and this can cause authentication problems. + +https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/issues/112 + +This reverts commit 020ab0c4b872fa5415ed1a5e682acb3343c7b9f3. +--- a/src/nm-openvpn-service.c ++++ b/src/nm-openvpn-service.c +@@ -1676,22 +1676,6 @@ nm_openvpn_start_openvpn_binary (NMOpenvpnPlugin *plugin, + + args_add_vpn_data (args, s_vpn, NM_OPENVPN_KEY_DATA_CIPHERS, "--data-ciphers"); + +- if (nm_setting_vpn_get_data_item (s_vpn, NM_OPENVPN_KEY_CIPHER) && +- !nm_setting_vpn_get_data_item (s_vpn, NM_OPENVPN_KEY_DATA_CIPHERS) && +- openvpn_binary_detect_version_cached (openvpn_binary, &openvpn_binary_version) >= +- nmovpn_version_encode (2, 5, 0)) { +- /* Since 2.5, openvpn will warn if "cipher" is set but "data-ciphers" doesn't +- * contain the cipher. It still used to automatically add the cipher. +- * Since 2.6, the cipher is no longer automatically added, which is unlikely +- * what the user wants. +- * +- * We automatically add it, so if the user only sets cipher (e.g. when +- * having an old profile or targeting 2.4) it still works. So ciphers +- * means something slightly different for the plugin, unless you set +- * data-ciphers to anything. */ +- args_add_vpn_data (args, s_vpn, NM_OPENVPN_KEY_CIPHER, "--data-ciphers"); +- } +- + args_add_vpn_data (args, s_vpn, NM_OPENVPN_KEY_TLS_CIPHER, "--tls-cipher"); + + tmp = nm_setting_vpn_get_data_item (s_vpn, NM_OPENVPN_KEY_KEYSIZE); +-- +GitLab diff --git a/net-vpn/networkmanager-openvpn/networkmanager-openvpn-1.10.2-r1.ebuild b/net-vpn/networkmanager-openvpn/networkmanager-openvpn-1.10.2-r1.ebuild new file mode 100644 index 000000000000..d1c4cbfc07ea --- /dev/null +++ b/net-vpn/networkmanager-openvpn/networkmanager-openvpn-1.10.2-r1.ebuild @@ -0,0 +1,58 @@ +# Copyright 1999-2023 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=8 + +GNOME_ORG_MODULE="NetworkManager-${PN##*-}" + +inherit gnome2 + +DESCRIPTION="NetworkManager OpenVPN plugin" +HOMEPAGE="https://gitlab.gnome.org/GNOME/NetworkManager-openvpn" + +LICENSE="GPL-2+" +SLOT="0" +KEYWORDS="~amd64 ~arm ~arm64 ~x86" +IUSE="gtk test" +RESTRICT="!test? ( test )" + +DEPEND=" + >=dev-libs/glib-2.34:2 + >=net-misc/networkmanager-1.7.0 + >=net-vpn/openvpn-2.1 + gtk? ( + >=app-crypt/libsecret-0.18 + + >=net-libs/libnma-1.8.0 + >=x11-libs/gtk+-3.4:3 + + >=gui-libs/gtk-4.0:4 + >=net-libs/libnma-1.8.36 + ) +" + +RDEPEND=" + ${DEPEND} + acct-group/nm-openvpn + acct-user/nm-openvpn +" + +BDEPEND=" + >=sys-devel/gettext-0.19 + virtual/pkgconfig +" + +PATCHES=( + "${FILESDIR}"/${P}-openvpn-2.6-compat.patch +) + +src_configure() { + # --localstatedir=/var needed per bug #536248 + gnome2_src_configure \ + --localstatedir=/var \ + --disable-more-warnings \ + --disable-static \ + --with-dist-version=Gentoo \ + $(use_with gtk gnome) \ + $(use_with gtk gtk4) +} |