openvpn-devel-2.3.8-12.1>t  DH`pYP璸/=„u|,0,DĮX@|3 WJM˟3pRrrVLE/?|qPdFSm.DWg锦Ybg4CQ0,O"B` gP/#.HS9+ 1۪{\+%^.!bl激 *GRmKNE|>cuI!tV jgO'Ō86nu=鹬C d !5Z&CL wYvdfaa104af4b5df3b3bcaba6bd5337c4f7d7c4e17hYP璸/=„nR=(@']r:롘%̒˼ΔscR-njDe`B``J(ioP`>D q~ȁ({$el`˾pbb$v8>Hmvu-C9LX?LHd  1tx  $,0 2 4 8 Y \`ej(58<+9+:Y+FJGJHJIJXJYJ\J]J^KbKcKdKeKfLlLuLvLwL0xL4zL8Copenvpn-devel2.3.812.1OpenVPN plugin headerThis package provides the header file to build external plugins.YPlamb69mnopenSUSE Leap 42.3openSUSESUSE-GPL-2.0-with-openssl-exception and LGPL-2.1http://bugs.opensuse.orgDevelopment/Libraries/C and C++http://openvpn.net/linuxx86_64mnYP8b51e6687f6b6d8b1c67c9a14a0de9a8rootrootopenvpn-2.3.8-12.1.src.rpmopenvpn-developenvpn-devel(x86-64)   openvpnrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)2.3.83.0.4-14.0-14.4.6-14.11.2YI@Y@X@XV&@U@ŬUU'T|X@R&RΏ@R fallout. - Permit pool size of /64.../112 for ifconfig-ipv6-pool - Add MIN() compatibility macro - Fix directly connected routes for "topology subnet" on Solaris. - close more file descriptors on exec - Ignore UTF-8 byte order mark - reintroduce --no-name-remapping option - make --tls-remote compatible with pre 2.3 configs - add new option for X.509 name verification - add man page patch for missing options - Fix parameter listing in non-debug builds at verb 4 - (updated) [PATCH] Warn when using verb levels >=7 without debug - Enable TCP_NODELAY configuration on FreeBSD. - Updated README - Cleaned up and updated INSTALL - PolarSSL-1.2 support - Improve PolarSSL key_state_read_{cipher, plain}text messages - Improve verify_callback messages - Config compatibility patch. Added translate_cipher_name. - Switch to IANA names for TLS ciphers. - Fixed autoconf script to properly detect missing pkcs11 with polarssl. - Use constant time memcmp when comparing HMACs in openvpn_decrypt.- Try to migrate openvpn.service autostart to openvpn@.service instance enablement.- Fixed to enable systemd support in configure - Fixed openvpn-tmpfile.conf to use GID root, there is no openvpn group. - Added openvpn.target file allowing to handle all instances at once. - Fixed to install the service template correctly as openvpn@.service. Use "systemctl enable openvpn@foo.service" to enable instance using /etc/openvpn/foo.conf. - Disabled systemd variant of restart on update rpm macro, adopted other macros to use openvpn.target to e.g. stop all instances on uninstall.- Remove _unitdir definition, it is provided by systemd. - Install service file without x permissionsUpdate to version 2.3.0: * Full IPv6 support * SSL layer modularised, enabling easier implementation for other SSL libraries * PolarSSL support as a drop-in replacement for OpenSSL * New plug-in API providing direct certificate access, improved logging API and easier to extend in the future * Added 'dev_type' environment variable to scripts and plug-ins - which is set to 'TUN' or 'TAP' * New feature: --management-external-key - to provide access to the encryption keys via the management interface * New feature: --x509-track option, more fine grained access to X.509 fields in scripts and plug-ins * New feature: --client-nat support * New feature: --mark which can mark encrypted packets from the tunnel, suitable for more advanced routing and firewalling * New feature: --management-query-proxy - manage proxy settings via the management interface (supercedes --http-proxy-fallback) * New feature: --stale-routes-check, which cleans up the internal routing table * New feature: --x509-username-field, where other X.509v3 fields can be used for the authentication instead of Common Name * Improved client-kill management interface command * Improved UTF-8 support - and added --compat-names to provide backwards compatibility with older scripts/plug-ins * Improved auth-pam with COMMONNAME support, passing the certificate's common name in the PAM conversation * More options can now be used inside blocks * Completely new build system, enabling easier cross-compilation and Windows builds * Much of the code has been better documented * Many documentation updates * Plenty of bug fixes and other code clean-ups - Add systemd native support for OpenSUSE > 12.1 - Adapt patchs to upstream release: * openvpn-2.1-plugin-man.dif > openvpn-2.3-plugin-man.dif * openvpn-2.1.0-man-dot.diff > openvpn-2.3.0-man-dot.diff - Remove obsolete patchs; fixed or merged on upstream release: * 0001-Use-SSL_MODE_RELEASE_BUFFERS-if-available.patch * openvpn-2.1-plugin-build.dif * openvpn-2.1-systemd-passwd.patch - Rebase specfile to upstream changes: * easy-rsa is not provided anymore with main package * remove %clean section * autoreconf -fi is no needed - Update openvpn.keyring file for upstream release asc key- Join openvpn.service systemd cgroup in start when needed, e.g. when starting with further parameters. (bnc#781106)- Verify GPG signature.- fix ciaran's previous license entry. the license has a SUSE prefix- Fixed openvpn init script to not map reopen to reload so the reopen code is without any effect (bnc#781106). - Added requested OPENVPN_AUTOSTART variable allowing to provide an optional list of config names started by default (bnc#692440).- license update: GPL-2.0-with-openssl-exception and LGPL-2.1 openssl has an openssl exception (also, it is GPL-2.0 only)- Fixed SLES build readding Group tags to sub-packages in spec, not require libselinux-devel on SLE-10 and datadir/doc cleanup.- Updated to openvpn-2.2.2: - Warn once, that IPv6 in tun mode is not supported in OpenVPN 2.2 - Pkcs11 support built into the Windows version - Fixed a bug in the Windows TAP-driver- Fix source URLs.- add automake as buildrequire to avoid implicit dependency- Marked /var/run/openvpn as ghost (bnc#710270), man page and other rpmlint warning fixes- BuildRequires libselinux-devel - Use SSL_MODE_RELEASE_BUFFERS to keep memory usage low, sent upstream as https://community.openvpn.net/openvpn/ticket/157- Add openvpn-2.1-systemd-passwd.patch / modify openvpn.init to support systemd password query (bnc#675406)- Updated to openvpn-2.2.1, a new version series providing several new features. This version fixes build issues and provides updated easy-rsa for OpenSSL 1.0.0 (fixes Trac ticket #125), - Adopted spec file, enabled saving password in a file and to specify an alternative username in x509 cert. - Removed X-Interactive from init script again, as systemd isn't able to use it correctly [any more?] (bnc#675406). We will address it later and probably use /bin/systemd-ask-password.- KVPNC is unable to parse openvpn version [bnc#679153]- Added X-Interactive: true LSB tag to the init script.- Updated to openvpn 2.1.4, providing several bug fixes and improvements, such as: * Fix of a problem with special case route targets * Try to ensure, that the tun/tap interface gets closed on non-graceful aborts. * Several AUTH_FAILED reporting fixes causing the connection to fail without any error indication. * Enable exponential backoff in reliability layer retransmits. * Proxy improvements Please review the ChangeLog file for a complete and exact list.- Do not include build date in binaries- Improved netconfig based client up and down sample scripts.- Added netconfig based client up and down scripts to samples.- Updated to openvpn 2.1.1; linux related changes since 2.1_rc20: * Fixed a couple issues in sample plugins auth-pam.c and down-root.c. (1) Fail gracefully rather than segfault if calloc returns NULL. (2) The openvpn_plugin_abort_v1 function can potentially be called with handle == NULL. Add code to detect this case, and if so, avoid dereferencing pointers derived from handle (Thanks to David Sommerseth for finding this bug). * Documented "multihome" option in the man page. * Added a hard failure when peer provides a certificate chain with depth > 16. Previously, a warning was issued. * Added additional session renegotiation hardening. OpenVPN has always required that mid-session renegotiations build up a new SSL/TLS session from scratch. While the client certificate common name is already locked against changes in mid-session TLS renegotiations, we now extend this locking to the auth-user-pass username as well as all certificate content in the full client certificate chain. - Improved openvpn init script adding messages giving a hint about pid write failure and to look into the log messages (bnc#559041). - Added -fno-strict-aliasing to compile flags in the spec file.- Updated to openvpn 2.1 2.1_rc20, fixing problems in route and option handling provided by the from server (bnc#552440). For complete list of changes, see ChangeLog file, here just the IMO most important: * Fixed a bug introduced in 2.1_rc17 (svn r4436) where using the redirect-gateway option by itself, without any extra parameters, would cause the option to be ignored. * Optimized PUSH_REQUEST handshake sequence to shave several seconds off of a typical client connection initiation. * The maximum number of "route" directives (specified in the config file or pulled from a server) can now be configured via the new "max-routes" directive. * Eliminated the limitation on the number of options that can be pushed to clients, including routes. Previously, all pushed options needed to fit within a 1024 byte options string. * Added --server-poll-timeout option : when polling possible remote servers to connect to in a round-robin fashion, spend no more than n seconds waiting for a response before trying the next server. * Added the ability for the server to provide a custom reason string when an AUTH_FAILED message is returned to the client. This string can be set by the server-side managment interface and read by the client-side management interface. * client-kill management interface command, when issued on server, will now send a RESTART message to client. This feature is intended to make UDP clients respond the same as TCP clients in the case where the server issues a RESTART message in order to force the client to reconnect and pull a new options/route list.- Added network-remotefs to init script dependencies (bnc#522279).- Updated to openvpn 2.1 [2.1_rc18] series (fate#305289). - Enabled pkcs11-helper for openSUSE > 10.3 (bnc#487558). - Adopted spec file and patches, improved init script. - Disabled installation of easy-rsa for Windows.lamb69 14984743752.3.8-12.12.3.8-12.1openvpn-plugin.h/usr/include/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -gobs://build.opensuse.org/openSUSE:Leap:42.3/standard/7d2cdf85493178b9cca9510646b4df0e-openvpncpiolzma5x86_64-suse-linuxC source, ASCII textǠEML^؍9H"?p] crv(vX0DԘ6o QSRګ!3Wk1.*M@g$,>cGέ{$ /Hz9!(uj06px4%TI_hdk] =k, \O)?yH@ "xosC Iє)rRMw8h#>hre+z> -}i}?r KS 闐|qt 7^c`BZ_[^@c!˖&Y,H&vk<>%[3sQt[P3 v\W@ ?2m s0:C?sC_5@ BMqɽ{A?-AJ >t*ΦջY#ݡ3u4ϘUdh}P81]`ͦF;¢nנ64 cm4芳O./ i YwRM!ϘB  1bd1Y-uvkQf%ez~GW=C:D~Č XhX*s83^A٠'S\́q|1~֡H?3}ʪ3W7|/k/j6Mgg{yƶ", h!dL:RKx7/m$]ٜS\Zl&dk7BVD!Hn%|:Lބr'eu2yVbXg:p H޻lj'{ׁn#f`Y$%J_#u-u&=2{4A~ A+nf#[X'S6Z/W%S)x3wBYv;cXQFݴܰD$N$U[J]|:W;d 1`Qj̊v[e qhIGrC(>T͵(ޔ?sWo1]햙^:C9 BEc.R$^zwy;:syej<@"j616UaM;+\j9U_(AɕmTFa*KԥpZ*e?EZ)gڵI1曨 ,zUpym7~ ^Nk&fxį")LbPȩX@6nr!1Ey б{ۑ'mmf떅h&qVMDmn8ӆ[&1w|K&5qb7ǖ@(nrVjSG75Buʅ[&1eecxj=1=$\Qp![0zm1tW)˞ל ״ xPP"QUlh Xtt`\֘#)Eos7@JXaȲ_̸!0ܖZp{]TVU[;b֧_DdNV`> MBC "?ì_HHml\=zj_m[ءFx=-`F^ lTrP2 d"ib%7.(d+&6rC]$1e'[~C }]-Ja`bf_~, Vyom2!4Kšlrso)jL9%Q5j>gPl"!܋(Ϣ;nN/@ײ" [>u!+ 4B\b{qjVޜ߷˾)&3,lJg[mQ Ȼw^t3T;f+-p"5=X "ž*Gf˿V5Zb/ƅin=i@ڕ]"Qg?0wZ5 Լ̐[:ZMnohvmG6VG"?`j(mPWOz6[<(N,;njqS5>OVH tFG5{syGMeQyf\sfV~ 1EXHJ}:MW$aZm5URD,n@S~vi`k,A&eLdΨ:aES~ӊ^OJl4@,AZXEy]0,9ih,Vm@j(둹hbun'͗ܔg&QEnh+9r$լYlϢn:|= ߁BDR_iXaOugSm,Ҹzp M ,Kp3|з.c+ٓuj+E 0G}қJg~{{_<c+@Z:RǵKgxš*s0$^n{[ Έ2P~+v?)œk!і<6#d5}C}oy&8K`!]K؉`7GʓkWB5^ b'߫Mq sb^FGbx+ G+5K?th'O7!XuӒ=J}Z@:͓,dp1X~I{\>zx5Fk h6n]n/la؇'<w1TU LӊqGaVO[eP (6]ytְV *P [uZZ bU8Lyra..n ._фp05r~-gL68_GMZڗuSpA{Yc(]l~Ml2Յ40JTc}aX&wRS.x0!+)W1O=؍#+?um0M^"ѥg Vwٜ|Rga]¨;m _pFu #A"86ʅ4Bgʺ(ppXL`#/p\>RE\gP>3WiP0$?t6D~2ne-,l'TF gc9dԍ>&]P˽_*<4F,* ڪ>OOu~v堇|,lք]+9x N(/S8yx"aVE Y4[r_yюpb0UH?Gp8HO""7܁gT0H%TpA0Ѩ+6E=&̜ 'S>D(뜤YS>9Ή35ffYklϙ6ϡ\pFTB"V}ܟ󋞄+$Rm n, ٲW>J_H $>JpA&MELk|9nuYʰA-0&&iXmP-]uMk~k5Ay}_Aa~S$xG2IxN㺰pG޼ -1vz0oFF;ږ#ԛOBRW3wRT?4jj I%KTR+z^,x0p (RA ʲ^t|6d?!bt{8@p{M~Pfr a E.zOjR'nk ưń5$@tֶ}K{4UhpTҕ $jz =4;JKԍ}BOXb H"sMKP96F=c ) ]6z'&,*(r0O(có:inoBL[rzA)@RЖq9DȔN!_bsF)x`(#O7uh\Hzc 289Ձ_t_J