notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Remember
I remember
2024-11-06 Today brought in a new category: filesystems. Sadly, the website did not process it well. I am working on that. It may take a few days.
2024-11-07 Commit processing is halted. I have a fix for the new category. It is making its way through the system.
UPDATE: the backend is processing the original filesystems commit now. It should take about an hour.
UPDATE: as of 20:30 UTC, the filesystems commit has been processed. Commit processing is now up to date.
Port details
ocserv Server implementing the AnyConnect SSL VPN protocol
1.3.0_1 net on this many watch lists=6 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.3.0_1Version of this port present on the latest quarterly branch.
Maintainer: otis@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2015-08-16 21:48:28
Last Update: 2024-06-18 03:59:09
Commit Hash: 1b4f173
People watching this port, also watch:: nginx, py39-dshell, suricata, passivedns, py311-iocage
Also Listed In: net-vpn security
License: GPLv2+
WWW:
https://ocserv.gitlab.io/www/index.html
Description:
OpenConnect server (ocserv) is an SSL VPN server. Its purpose is to be a secure, small, fast and configurable VPN server. It implements the OpenConnect SSL VPN protocol, and has also (currently experimental) compatibility with clients using the AnyConnect SSL VPN protocol. The OpenConnect protocol provides a dual TCP/UDP VPN channel, and uses the standard IETF security protocols to secure it. Both IPv4 and IPv6 are supported. Ocserv's main features are security through privilege separation and sandboxing, accounting, and resilience due to a combined use of TCP and UDP. Authentication occurs in an isolated security module process, and each user is assigned an unprivileged worker process, and a networking (tun) device. That not only eases the control of the resources of each user or group of users, but also prevents data leak (e.g., heartbleed-style attacks), and privilege escalation due to any bug on the VPN handling (worker) process. A management interface allows for viewing and querying logged-in users.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (16 items)
Collapse this list.
  1. /usr/local/share/licenses/ocserv-1.3.0_1/catalog.mk
  2. /usr/local/share/licenses/ocserv-1.3.0_1/LICENSE
  3. /usr/local/share/licenses/ocserv-1.3.0_1/GPLv2+
  4. bin/occtl
  5. bin/ocpasswd
  6. libexec/ocserv-fw
  7. share/man/man8/occtl.8.gz
  8. share/man/man8/ocpasswd.8.gz
  9. share/man/man8/ocserv.8.gz
  10. @sample etc/ocserv/ocserv.conf.sample
  11. sbin/ocserv
  12. sbin/ocserv-worker
  13. @dir(_ocserv,_ocserv,750) /var/run/ocserv
  14. @owner
  15. @group
  16. @mode
Collapse this list.
Dependency lines:
  • ocserv>0:net/ocserv
To install the port:
cd /usr/ports/net/ocserv/ && make install clean
To add the package, run one of these commands:
  • pkg install net/ocserv
  • pkg install ocserv
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: ocserv
Flavors: there is no flavor information for this port.
distinfo:
TIMESTAMP = 1716360083 SHA256 (ocserv-1.3.0.tar.xz) = 5c562c3ea1032065ef43d6075e5722f94ce6a7a780d6a2b4c6d54c1ce3921965 SIZE (ocserv-1.3.0.tar.xz) = 770596

Packages (timestamps in pop-ups are UTC):
ocserv
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest1.3.0_11.3.0_1-1.3.0_11.3.0_1---
FreeBSD:13:quarterly1.3.0_11.3.0_1-1.3.0_11.3.0_11.2.31.2.31.2.3
FreeBSD:14:latest1.3.0_11.3.0_1-1.3.0_11.3.0_11.1.7-1.1.7
FreeBSD:14:quarterly1.3.0_11.3.0_1-1.3.0_11.3.0_11.2.31.2.31.2.3
FreeBSD:15:latest1.3.0_11.3.0_1n/a1.3.0_1n/a1.2.3_11.2.3_11.2.4
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. bash : shells/bash
  2. gsed : textproc/gsed
  3. ipcalc : net-mgmt/ipcalc
  4. msgfmt : devel/gettext-tools
  5. gperf : devel/gperf
  6. pkgconf>=1.3.0_1 : devel/pkgconf
  7. autoconf>=2.72 : devel/autoconf
  8. automake>=1.16.5 : devel/automake
  9. libtoolize : devel/libtool
Library dependencies:
  1. libev.so : devel/libev
  2. libgnutls.so : security/gnutls
  3. libiconv.so : converters/libiconv
  4. liblz4.so : archivers/liblz4
  5. libnettle.so : security/nettle
  6. liboath.so : security/oath-toolkit
  7. libpcl.so : devel/pcl
  8. libprotobuf-c.so : devel/protobuf-c
  9. libtalloc.so : devel/talloc
  10. libtasn1.so : security/libtasn1
  11. libreadline.so.8 : devel/readline
There are no ports dependent upon this port

Configuration Options:
===> The following configuration options are available for ocserv-1.3.0_1: DOCS=on: Build and/or install documentation EXAMPLES=on: Build and/or install examples GSSAPI=off: GSSAPI Security API support MAXMIND=off: Use Maxmind GeoIP library RADIUS=off: RADIUS protocol support ===> Use 'make config' to modify these settings
Options name:
net_ocserv
USES:
autoreconf cpe gettext-tools gperf libtool localbase ncurses pathfix pkgconfig readline tar:xz
pkg-message:
SECURITY NOTE: ocserv cannot isolate workers processes on FreeBSD, it only supports Linux's seccomp, but not FreeBSD's capsicum.
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. https://www.infradead.org/ocserv/download/
Collapse this list.

Number of commits found: 58

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.3.0_1
18 Jun 2024 03:59:09
commit hash: 1b4f1734a0307ce88329fa3cb9c3de606864b99acommit hash: 1b4f1734a0307ce88329fa3cb9c3de606864b99acommit hash: 1b4f1734a0307ce88329fa3cb9c3de606864b99acommit hash: 1b4f1734a0307ce88329fa3cb9c3de606864b99a files touched by this commit
Po-Chuan Hsieh (sunpoet) search for other commits by this committer
net/radcli: Update to 1.4.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://github.com/radcli/radcli/releases
1.3.0
22 May 2024 16:36:21
commit hash: 5d933f61d07c586eb43e43dad319f54dff187d81commit hash: 5d933f61d07c586eb43e43dad319f54dff187d81commit hash: 5d933f61d07c586eb43e43dad319f54dff187d81commit hash: 5d933f61d07c586eb43e43dad319f54dff187d81 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.3.0

Release notes: https://gitlab.com/openconnect/ocserv/-/releases/1.3.0
1.2.4
07 Feb 2024 13:08:21
commit hash: b749a84a63c1bd38304652d8cdd359a2046de496commit hash: b749a84a63c1bd38304652d8cdd359a2046de496commit hash: b749a84a63c1bd38304652d8cdd359a2046de496commit hash: b749a84a63c1bd38304652d8cdd359a2046de496 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.2.4
1.2.3_1
21 Jan 2024 20:24:08
commit hash: f2c82ce01abdd282669ff9ea5a07c52ac26bb900commit hash: f2c82ce01abdd282669ff9ea5a07c52ac26bb900commit hash: f2c82ce01abdd282669ff9ea5a07c52ac26bb900commit hash: f2c82ce01abdd282669ff9ea5a07c52ac26bb900 files touched by this commit
Muhammad Moinur Rahman (bofh) search for other commits by this committer
net/ocserv: Sanitize MANPREFIX

Approved by:    portmgr (blanket)
1.2.3
27 Dec 2023 20:30:53
commit hash: 7f0a801fe7c33d8ded65e5394daa861730bcf957commit hash: 7f0a801fe7c33d8ded65e5394daa861730bcf957commit hash: 7f0a801fe7c33d8ded65e5394daa861730bcf957commit hash: 7f0a801fe7c33d8ded65e5394daa861730bcf957 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.2.3

Release notes: https://gitlab.com/openconnect/ocserv/-/releases/1.2.3
1.2.2
09 Nov 2023 13:59:35
commit hash: 2c356d6bfcf82d9ac3c110dc80dd8465f4155e08commit hash: 2c356d6bfcf82d9ac3c110dc80dd8465f4155e08commit hash: 2c356d6bfcf82d9ac3c110dc80dd8465f4155e08commit hash: 2c356d6bfcf82d9ac3c110dc80dd8465f4155e08 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Fix build and wrong PLIST

Do not include now-non-existing file in plist.

Reported by:	Trond Endrestøl <Trond.Endrestol@ximalas.info>
PR:		274983
1.2.2
08 Nov 2023 22:32:21
commit hash: e4894bfa1de7e28cfa342f064cc9c48880ab7bc2commit hash: e4894bfa1de7e28cfa342f064cc9c48880ab7bc2commit hash: e4894bfa1de7e28cfa342f064cc9c48880ab7bc2commit hash: e4894bfa1de7e28cfa342f064cc9c48880ab7bc2 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.2.2

Release notes: https://gitlab.com/openconnect/ocserv/-/releases/1.2.2

Reported by:	portscout
1.2.1
24 Aug 2023 11:44:44
commit hash: 1f51b2bcea7b3a4dec61a34b8cccb6883c87608acommit hash: 1f51b2bcea7b3a4dec61a34b8cccb6883c87608acommit hash: 1f51b2bcea7b3a4dec61a34b8cccb6883c87608acommit hash: 1f51b2bcea7b3a4dec61a34b8cccb6883c87608a files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.2.1

Release notes: https://gitlab.com/openconnect/ocserv/-/releases/1.2.1
1.2.0
21 Aug 2023 13:08:57
commit hash: 944e00e9f40f573dc08548e56398332475746a44commit hash: 944e00e9f40f573dc08548e56398332475746a44commit hash: 944e00e9f40f573dc08548e56398332475746a44commit hash: 944e00e9f40f573dc08548e56398332475746a44 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.2.0

- Update to 1.2.0
- Adjust dependencies
- Make DTLS work
- Regen patches

Co-authored-by:	Eugene Mitrofanov <emitrofanov@gmail.com>
1.1.7
13 May 2023 16:49:36
commit hash: 39beea1060026e7f4751713a5719280698ccfb2bcommit hash: 39beea1060026e7f4751713a5719280698ccfb2bcommit hash: 39beea1060026e7f4751713a5719280698ccfb2bcommit hash: 39beea1060026e7f4751713a5719280698ccfb2b files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.1.7

- Update to 1.1.7
- Regen patches
07 Sep 2022 21:58:51
commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)
1.1.6
07 Sep 2022 21:10:59
commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
1.1.6
25 Aug 2022 08:44:01
commit hash: 91e924bb10e0661083665ac258e68886083a7c88commit hash: 91e924bb10e0661083665ac258e68886083a7c88commit hash: 91e924bb10e0661083665ac258e68886083a7c88commit hash: 91e924bb10e0661083665ac258e68886083a7c88 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.1.6

- Update to 1.1.6
- Switch download from ftp to https
1.1.3
05 Jun 2021 14:26:25
commit hash: cd0a1795e02636de8e062b47fb71935299751b49commit hash: cd0a1795e02636de8e062b47fb71935299751b49commit hash: cd0a1795e02636de8e062b47fb71935299751b49commit hash: cd0a1795e02636de8e062b47fb71935299751b49 files touched by this commit
Juraj Lutter (otis) search for other commits by this committer
net/ocserv: Update to 1.1.3
1.1.2_1
31 May 2021 17:43:49
commit hash: 0926031bce42c0b43d56124642b9b36531598b7fcommit hash: 0926031bce42c0b43d56124642b9b36531598b7fcommit hash: 0926031bce42c0b43d56124642b9b36531598b7fcommit hash: 0926031bce42c0b43d56124642b9b36531598b7f files touched by this commit
Don Lewis (truckman) search for other commits by this committer
devel/protobuf-c: Bump PORTREVISION of dependent ports

Bump the PORTREVISION of ports that use protobuf-c and bake in the value
of PROTOBUF_C_VERSION*.
Sponsored by:	Farsight Security, Inc.
1.1.2
06 Apr 2021 14:31:13
commit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937d files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
1.1.2
06 Apr 2021 14:31:07
commit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344eb files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
1.1.2
29 Jan 2021 21:26:11
Revision:563249Original commit files touched by this commit
otis search for other commits by this committer
net/ocserv: Update to 1.1.2

- Update to 1.1.2
- Reformat Makefile according to portclippy/portfmt
- Install sample config with PREFIX-ized values where
  apropriate.
- Take MAINTAINERship

Reviewed by:	osa (mentor)
Approved by:	osa (mentor)
MFH:		2021Q1
Differential Revision:	https://reviews.freebsd.org/D28346
1.1.1_1
21 Nov 2020 09:44:58
Revision:555942Original commit files touched by this commit
sunpoet search for other commits by this committer
Bump PORTREVISION for net/radcli shlib change
1.1.1
11 Oct 2020 08:36:34
Revision:552035Original commit files touched by this commit
pi search for other commits by this committer
net/ocserv: update 1.0.1 -> 1.1.1

- Fixed compatibility with OpenBSD that lacks procfs
- Improved rate-limit-ms and made it dependent on secmod backlog. This makes
  the server more resilient (and prevents connection failures) on multiple
  concurrent connections
- Added namespace support for listen address by introducing the listen-netns
  option
- Disable TLS1.3 when cisco client compatibility is enabled. New anyconnect
  clients seem to supporting TLS1.3 but are unable to handle a
  client with an RSA key
- Enable a race free user disconnection via occtl
- Added the config option of a pre-login-banner
- Ocserv siwtched to using multiple ocserv-sm processes to improve scale,
  with the number of ocserv-sm process dependent on maximum clients
  and number of CPUs. Configuration option sec-mod-scale can be
  used to override the heuristics.
- Fixed issue with group selection on radius servers sending multiple group
  class attribute.

PR:		250225
Submitted by:	Juraj Lutter <juraj@lutter.sk>
Relnotes:	https://gitlab.com/openconnect/ocserv/-/releases/1.1.1
1.0.1_1
05 Oct 2020 17:34:54
Revision:551529Original commit files touched by this commit
rene search for other commits by this committer
Return cpm@'s ports to the pool after safekeeping his commit bit.

With hat:	portmgr-secretary
1.0.1_1
16 May 2020 10:51:33
Revision:535391Original commit files touched by this commit
sunpoet search for other commits by this committer
Bump PORTREVISION for security/nettle shlib change
1.0.1
25 Apr 2020 14:38:21
Revision:532955Original commit files touched by this commit
mandree search for other commits by this committer
net/ocserv: Update to 1.0.1

Changelog:
https://gitlab.com/openconnect/ocserv/-/blob/1.0.1/NEWS#L1

This commit makes the following additional changes from Juraj's
submission:

- fix LIB_DEPENDS to libpc.so:devel/pcl (not devel/libpcl)
- replace LOCALBASE by PREFIX throughout, as these are internal references
- remove the src/config.c patch, it makes no sense to first
  statically patch and then run REINPLACE_CMD for DEFAULT_CFG_FILE
- remove doc/sample.config from another REINPLACE_CMD
- remove @ - it makes no sense to hide running commands
- patch example configuration to avoid isolate-workers = true, which
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.12.4_2
03 Oct 2019 14:46:00
Revision:513668Original commit files touched by this commit
kevans search for other commits by this committer
net/ocserv: fix tun handoff between parent and worker process

ocserv hands off a tun fd to a worker process, but the worker process never
claims the tun with TUNSIFPID. The parent then closes the tunnel and leaves
it in a nasty state.

Bump PORTREVISION, as this is runtime breakage.

PR:		238500
Approved by:	bapt (ports), cpm (maintainer, e-mail)
MFH:		2019Q4 (blanket, runtime fix)
0.12.4_1
14 Aug 2019 03:26:09
Revision:508887Original commit files touched by this commit
meta search for other commits by this committer
Implement new virtual category: net-vpn for VPN related ports

based on discussion at ports@ [1]. As VPN softwares are put in different
physical category net and security. This is a little bit confusing. Let's
give them new virtual category net-vpn.

[1] https://lists.freebsd.org/pipermail/freebsd-ports/2019-April/115915.html

PR:		239395
Submitted by:	myself
Approved by:	portmgr (mat)
Differential Revision:	https://reviews.freebsd.org/D21174
0.12.4_1
12 Aug 2019 10:52:00
Revision:508723Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Fix typos in pkg-descr

PR:		239577
Submitted by:	Mikael Urankar <mikael.urankar@gmail.com>
0.12.4_1
09 Jul 2019 17:13:07
Revision:506289Original commit files touched by this commit
sunpoet search for other commits by this committer
Update security/nettle to 3.5.1

- Bump PORTREVISION of dependent ports for shlib change
- Fix build of devel/pijul [1]

Changes:	https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS
PR:		238991
Exp-run by:	antoine
Thanks to:	tobik [1]
0.12.4
08 Jul 2019 14:36:01
Revision:506230Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Update to 0.12.4

Noteworthy changes in 0.12.4

- Added support for radius access-challenge (multifactor) authentication.
- Fixed race condition when connect-script and disconnect-script are set, which
could potentially cause a crash (#208).
- Perform quicker cleanup of sessions which their user explicitly disconnected
(#210).

MFH:		2019Q3
0.12.3_1
26 Apr 2019 16:14:45
Revision:500117Original commit files touched by this commit
pkubaj search for other commits by this committer
net/ocserv: fix build with base GCC

-Wno-implicit-fallthrough is not supported by GCC 4.2

PR:		237558
Approved by:	tcberner (mentor), cpm (maintainer)
Differential Revision:	https://reviews.freebsd.org/D20075
0.12.3_1
09 Apr 2019 14:04:50
Revision:498476Original commit files touched by this commit
sunpoet search for other commits by this committer
Update devel/readline to 8.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://tiswww.case.edu/php/chet/readline/CHANGES
PR:		236156
Exp-run by:	antoine
0.12.3
13 Mar 2019 22:06:36
Revision:495663Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Update to 0.12.3

- Remove LOCAL MASTER_SITES

Noteworthy changes in 0.12.3

- Fixed crash when no DTLS ciphersuite is negotiated.
- Fixed crash happening arbitrarily depending on handled string sizes (#197).
- Fixed compatibility issue with GnuTLS 3.3.x (#201).
- occtl: print the TLS session information, even if the DTLS channel is not
established.

MFH:		2019Q1
0.12.2
11 Jan 2019 16:20:19
Revision:489983Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: update to 0.12.2

Noteworthy changes in 0.12.2

- Added support for AES256-SHA legacy cipher. This allows the anyconnect clients
to use AES256.
- Added support for the DTLS1.2 protocol hack used by new anyconnect client.

While I'm here pet portlint.

MFH:		2019Q1
0.12.1_1
30 Oct 2018 04:45:20
Revision:483447Original commit files touched by this commit
yuri search for other commits by this committer
net/ocserv: Use devel/libpcl as a dependency

PR:		232771
Approved by:	Carlos J. Puga Medina <cpm@freebsd.org> (maintainer)
0.12.1
14 May 2018 18:23:23
Revision:469943Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: update to 0.12.1

Changelog: https://gitlab.com/ocserv/ocserv/blob/master/NEWS

Tested by:	Jov <amutu@amutu.com>
0.11.11
07 Mar 2018 18:14:18
Revision:463819Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Update to 0.11.11

Changelog:
http://lists.infradead.org/pipermail/openconnect-devel/2018-March/004766.html
0.11.10
08 Jan 2018 18:48:12
Revision:458468Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Update to 0.11.10

- Pet portlint, the port doesn't install any shared libraries, so there is no
point in USE_LDCONFIG

Changelog:
http://lists.infradead.org/pipermail/openconnect-devel/2018-January/004655.html
0.11.9
14 Oct 2017 02:03:05
Revision:452040Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.11.9
- Update WWW in pkg-descr

Noteworthy changes in 0.11.9

- Fixed bug which caused the acceptable of invalid IPv4 address as valid.
- Fixed compatibility with gnutls 3.3.8 by avoiding the use of the 'VERS-ALL'
  priority string which was introduced in 3.3.24.
- Fixed null pointer dereference when parsing locked accounts in plain password
  authentication.
- Add support for RSA-PSS and Ed25519 private keys when used with GnuTLS 3.6.0.
- ocpasswd: when locking an account multiple times, add the '!' character only
once.
  Based on patch by Frank Huang.

Changes:
http://lists.infradead.org/pipermail/openconnect-devel/2017-October/004529.html

MFH:		2017Q4
0.11.8_3
27 Jun 2017 13:46:53
Revision:444463Original commit files touched by this commit
sunpoet search for other commits by this committer
Update devel/readline to 7.0 patch 3

- Bump PORTREVISION for shlib change

Changes:	https://cnswww.cns.cwru.edu/php/chet/readline/CHANGES
		https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00107.html
		https://lists.gnu.org/archive/html/bug-readline/2017-01/msg00002.html
Differential Revision:	https://reviews.freebsd.org/D11172
PR:		219947
Exp-run by:	antoine
0.11.8_2
19 May 2017 12:11:55
Revision:441221Original commit files touched by this commit
cpm search for other commits by this committer
- Make RADIUS auth backend optional
- Bump PORTREVISION

PR:		219393
Submitted by:	Jov <amutu@amutu.com>
0.11.8_1
18 May 2017 22:11:54
Revision:441202Original commit files touched by this commit
cpm search for other commits by this committer
- Add security/oath-toolkit to LIB_DEPENDS
- Sort BUILD_DEPENDS and LIB_DEPENDS
- Enable radius support
- Bump PORTREVISION
0.11.8
05 May 2017 11:26:21
Revision:440147Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: update to 0.11.8

- Update to 0.11.8
- Add my LOCAL to MASTER_SITES

Changes:
http://lists.infradead.org/pipermail/openconnect-devel/2017-May/004293.html
0.11.7_1
05 May 2017 10:08:34
Revision:440146Original commit files touched by this commit
cpm search for other commits by this committer
- Fix ownership and permissions in /var/run/ocserv
- Bump PORTREVISION

PR:		219054
Reported by:	Joy <amutu@amutu.com>
0.11.7
13 Feb 2017 18:38:22
Revision:434013Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: update to 0.11.7

- Update PORTVERSION and distinfo checksum (0.11.7)
- Regenerate some patches to apply cleanly
- Remove MAKE_JOBS_UNSAFE=yes

Changelog:
http://lists.infradead.org/pipermail/openconnect-devel/2017-February/004204.html
0.11.6
22 Nov 2016 18:35:35
Revision:426841Original commit files touched by this commit
cpm search for other commits by this committer
net/ocserv: Update to 0.11.6

- Update PORTVERSION and distinfo checksum (0.11.6)
- Add LICENSE_FILE
- Cosmetic fixes
- Remove STRIP_CMD target since all binaries are installed with --strip (-s)
option by default
- Silence two explicitly called commands

Changelog:
  
http://lists.infradead.org/pipermail/openconnect-devel/2016-November/004066.html

Reviewed by:	amdmi3 (mentor)
Approved by:	amdmi3 (mentor)
Differential Revision:	D8538
0.11.5
07 Oct 2016 22:34:04
Revision:423487Original commit files touched by this commit
cpm search for other commits by this committer
- Update ocserv to 0.11.5 release

Changelog:
 
http://lists.infradead.org/pipermail/openconnect-devel/2016-September/003972.html

Reviewed by:	pi, feld (mentor)
Approved by:	feld (mentor)
Differential Revision:	D8024
0.11.4_1
30 Sep 2016 19:24:30
Revision:423014Original commit files touched by this commit
tijl search for other commits by this committer
Let USES=localbase add -L${LOCALBASE}/lib to LIBS instead of LDFLAGS.
USES=localbase:ldflags can be used to set LDFLAGS.  Normally LDFLAGS
appears too early on the command line causing some ports to link with
their own libraries in LOCALBASE (if installed) instead of WRKSRC.

Also make use of _USES_POST so -L${LOCALBASE}/lib is added as late as
possible after anything a port Makefile might set.  Use _USES_POST
instead of .include in libedit.mk and libarchive.mk so things like
'USES=libedit localbase:ldflags' work correctly.

Fix some issues with LIBS in some ports.

Switch ports that don't support LIBS to localbase:ldflags.

PR:		212987
Exp-run by:	antoine
Approved by:	portmgr (antoine)
0.11.4
09 Aug 2016 02:00:38
Revision:419896Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.11.4

Changelog:
  http://lists.infradead.org/pipermail/openconnect-devel/2016-August/003817.html

Reviewed by:	junovitch (mentor)
Approved by:	junovitch (mentor)
Differential Revision:	D7441
0.11.3
20 Jun 2016 10:04:38
Revision:417147Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.11.3
- Add LIB_DEPENDS for security/nettle
- Switch to USES=localbase framework

ChangeLog:
  http://lists.infradead.org/pipermail/openconnect-devel/2016-June/003720.html

Reviewed by:	amdmi3, junovitch (mentors)
Approved by:	amdmi3, junovitch (mentors)
Differential Revision:	D6890
0.11.2
28 Apr 2016 20:27:15
Revision:414238Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.11.2 release
- Remove unneeded patch (applied upstream)

Changelog: http://www.infradead.org/ocserv/changelog.html

Approved by:	junovitch (mentor)
Differential Revision:	D6122
0.11.1
18 Apr 2016 15:17:09
Revision:413584Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.11.1 release
- Convert LICENSE= "GPLxx# or later" to "GPLxx+"
- Add dependency on libev
- Regenerate patches
- Add MAKE_JOBS_UNSAFE; port attempts to modify man page before generation
  sed: ocpasswd.8: No such file or directory

Changelog:	http://lists.infradead.org/pipermail/openconnect-devel/2016-March/003551.html

Approved by:	junovitch (mentor)
Differential Revision:	D5890
0.10.12_1
01 Apr 2016 14:16:20
Revision:412348Original commit files touched by this commit
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories m, n, o, and p.

With hat:	portmgr
Sponsored by:	Absolight
0.10.12_1
27 Mar 2016 14:58:00
Revision:411990Original commit files touched by this commit
tijl search for other commits by this committer
- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
  supported by libgnutls-dane and gnutls-cli.  Also clarify the option
  description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4.  Some ports used this library
  in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed.  Ports that used these have been
  updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.

net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.

www/hydra: Mark BROKEN.  This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.

PR:		207768
Exp-run by:	antoine
Approved by:	portmgr (antoine)
0.10.12
17 Mar 2016 10:32:06
Revision:411268Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.10.12
- Update MAINTAINER to my @FreeBSD.org address

PR:		207824
Approved by:	junovitch (mentor)
0.10.11
27 Jan 2016 10:31:11
Revision:407350Original commit files touched by this commit
cpm search for other commits by this committer
- Update to 0.10.11

Changes:
  
http://lists.infradead.org/pipermail/openconnect-devel/2016-January/003362.html

PR:		205244
Submitted by:	Carlos J. Puga Medina <cpm@fbsd.es>
Approved by:	junovitch (mentor)
0.10.9
13 Oct 2015 12:13:15
Revision:399187Original commit files touched by this commit
pi search for other commits by this committer
net/ocserv: 0.10.8 -> 0.10.9

Changes: http://www.infradead.org/ocserv/changelog.html

PR:		203739
Submitted by:	Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
0.10.8
07 Oct 2015 01:36:22
Revision:398733Original commit files touched by this commit
amdmi3 search for other commits by this committer
- Switch to options helpers
- Pet portlint

Approved by:	portmgr blanket
0.10.8
06 Sep 2015 20:24:11
Revision:396231Original commit files touched by this commit
pi search for other commits by this committer
net/ocserv: 0.10.7 -> 0.10.8

- Update to 0.10.8 release
- Add libtasn1 dependency
- Fix patches

PR:		202936
Submitted by:	Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
0.10.7
16 Aug 2015 21:48:16
Revision:394422Original commit files touched by this commit
pi search for other commits by this committer
New port: net/ocserv: server implementing the AnyConnect SSL VPN protocol

OpenConnect server (ocserv) is an SSL VPN server. Its purpose is
to be a secure, small, fast and configurable VPN server. It implements
the OpenConnect SSL VPN protocol, and has also (currently experimental)
compatibility with clients using the AnyConnect SSL VPN protocol.
The OpenConnect protocol provides a dual TCP/UDP VPN channel, and
uses the standard IETF security protocols to secure it. Both IPv4
and IPv6 are supported.

Ocserv's main features are security through provilege separation
and sandboxing, accounting, and resilience due to a combined use
of TCP and UDP.  Authentication occurs in an isolated security
module process, and each user is assigned an unprivileged worker
process, and a networking (tun) device. That not only eases the
(Only the first 15 lines of the commit message are shown above View all of this commit message)

Number of commits found: 58