| 4 | |
| 5 | == OpenVPN 2.4.4 == |
| 6 | |
| 7 | {{{ |
| 8 | Antonio Quartulli (23): |
| 9 | crypto: correct typ0 in error message |
| 10 | use M_ERRNO instead of explicitly printing errno |
| 11 | don't print errno twice |
| 12 | ntlm: avoid useless cast |
| 13 | ntlm: unwrap multiple function calls |
| 14 | route: improve error message |
| 15 | management: preserve wait_for_push field when asking for user/pass |
| 16 | tls-crypt: avoid warnings when --disable-crypto is used |
| 17 | ntlm: convert binary buffers to uint8_t * |
| 18 | ntlm: restyle compressed multiple function calls |
| 19 | ntlm: improve code style and readability |
| 20 | OpenSSL: remove unreachable call to SSL_CTX_get0_privatekey() |
| 21 | make function declarations C99 compliant |
| 22 | remove unused functions |
| 23 | use NULL instead of 0 when assigning pointers |
| 24 | add missing static attribute to functions |
| 25 | ntlm: avoid breaking anti-aliasing rules |
| 26 | remove the --disable-multi config switch |
| 27 | rename mroute_extract_addr_ipv4 to mroute_extract_addr_ip |
| 28 | route: avoid definition of unused variables in certain configurations |
| 29 | fix a couple of typ0s in comments and strings |
| 30 | fragment.c: simplify boolean expression |
| 31 | tcp-server: ensure AF family is propagated to child context |
| 32 | |
| 33 | Arne Schwabe (2): |
| 34 | Set tls-cipher restriction before loading certificates |
| 35 | Print ec bit details, refuse management-external-key if key is not RSA |
| 36 | |
| 37 | Conrad Hoffmann (2): |
| 38 | Use provided env vars in up/down script. |
| 39 | Document down-root plugin usage in client.down |
| 40 | |
| 41 | David Sommerseth (12): |
| 42 | doc: The CRL processing is not a deprecated feature |
| 43 | cleanup: Move write_pid() to where it is being used |
| 44 | contrib: Remove keychain-mcd code |
| 45 | cleanup: Move init_random_seed() to where it is being used |
| 46 | sample-plugins: fix ASN1_STRING_to_UTF8 return value checks |
| 47 | Highlight deprecated features |
| 48 | Use consistent version references |
| 49 | docs: Replace all PolarSSL references to mbed TLS |
| 50 | systemd: Ensure systemd shuts down OpenVPN in a proper way |
| 51 | systemd: Enable systemd's auto-restart feature for server profiles |
| 52 | lz4: Move towards a newer LZ4 API |
| 53 | Prepare the release of OpenVPN 2.4.4 |
| 54 | |
| 55 | Emmanuel Deloget (3): |
| 56 | OpenSSL: remove pre-1.1 function from the OpenSSL compat interface |
| 57 | OpenSSL: remove EVP_CIPHER_CTX_new() from the compat layer |
| 58 | OpenSSL: remove EVP_CIPHER_CTX_free() from the compat layer |
| 59 | |
| 60 | Gert van Dijk (1): |
| 61 | Warn that DH config option is only meaningful in a tls-server context |
| 62 | |
| 63 | Ilya Shipitsin (3): |
| 64 | travis-ci: add 3 missing patches from master to release/2.4 |
| 65 | travis-ci: update openssl to 1.0.2l, update mbedtls to 2.5.1 |
| 66 | travis-ci: update pkcs11-helper to 1.22 |
| 67 | |
| 68 | Richard Bonhomme (1): |
| 69 | man: Corrections to doc/openvpn.8 |
| 70 | |
| 71 | Steffan Karger (17): |
| 72 | Fix typo in extract_x509_extension() debug message |
| 73 | Move adjust_power_of_2() to integer.h |
| 74 | Undo cipher push in client options state if cipher is rejected |
| 75 | Remove strerror_ts() |
| 76 | Move openvpn_sleep() to manage.c |
| 77 | fixup: also change missed openvpn_sleep() occurrences |
| 78 | Always use default keysize for NCP'd ciphers |
| 79 | Move create_temp_file() out of #ifdef ENABLE_CRYPTO |
| 80 | Deprecate --keysize |
| 81 | Deprecate --no-replay |
| 82 | Move run_up_down() to init.c |
| 83 | tls-crypt: introduce tls_crypt_kt() |
| 84 | crypto: create function to initialize encrypt and decrypt key |
| 85 | Add coverity static analysis to Travis CI config |
| 86 | tls-crypt: don't leak memory for incorrect tls-crypt messages |
| 87 | travis: reorder matrix to speed up build |
| 88 | Fix bounds check in read_key() |
| 89 | |
| 90 | Szilárd Pfeiffer (1): |
| 91 | OpenSSL: Always set SSL_OP_CIPHER_SERVER_PREFERENCE flag |
| 92 | |
| 93 | Thomas Veerman via Openvpn-devel (1): |
| 94 | Fix socks_proxy_port pointing to invalid data |
| 95 | }}} |