Created attachment 216439 [details]
Port Diff File

Updating port to latest 2020 week 28 snapshot.  Summary snapshot (2020-W16 to 2020-W28) below (full log in attachments):

6168f53d Allow changing fallback cipher from ccd files/client-connect
e539c95d Cleanup: Remove special case code for old poor man's NCP.
07560d9e Generate data channel keys after connect options have been parsed
4f378ddb Move protocol option negotiation from push_prepare to new function
ca514800 Code cleanup: remove superflous variable
a6571181 Removed unused definition
5e78bf66 Extract process_incoming_push_reply from process_incoming_push_msg
5608041c Make key_state->authenticated more state machine like
2b09c140 Deprecate ncp-disable and add improved ncp to Changes.rst
96ae327a Make openvpn --version exit with exit code 0
05ffefcc Simplify multi_connection_established.
008ec688 Remove --writepid file on program exit.
a5e6f2d2 merge key_state->authenticated and key_state->auth_deferred
efe01d52 Unified success messages for setting mtu
5b313a35 tap.c: fix adapter renaming
ec33bae3 t_client.sh: correctly report all failed instances in summary
c252dcc0 Remove did_open_context, defined and connection_established_flag
182a2fdd Remove push_reply_deferred variable
8a168a9a Fix 'engine' unit test on FreeBSD (specifically 'not GNU make')
712f2629 multi.c: use mi->cc_config instead of config variable
9f0a7dcc Remove parameter config from multi_client_connect_mda
93439307 Log a note if someone wants to set a MTU below 1280 on IPv6
3ef858b3 Linux: do not change --txqueuelen OS default if not configured.
19d3c602 Add --bind-dev option.
d299367c Add c1ff8f247f91c88a2df5502eeedf42857f9a6831 (engine, pool, SSO) to .git-blame-ignore-revs
c1ff8f24 Reformat files using uncrustify
c67e93b2 Make compression asymmetric by default and add warnings
2569902c msvc: fix various level2 warnings
013498dd engine-key tests: make check_engine_keys.sh work with --enable-small
21e3e9fc Fix make distcheck for new engine key unit test
542c69c3 Add unit tests for engine keys
933b4ab8 Convert plugin/auth-pam.c from stderr logging to plugin_log().
3bc12aef Add unit test for cipher name translations
02a03320 Depreciation warning for --topology net30 on servers with IPv4 pools.
ff063b6f Change timestamps in file-based logging to ISO 8601 time format.
06498f21 Implement forwarding client CR_RESPONSE messages to management
1114b985 Implement sending AUTH_PENDING challenges to clients
adb9bb91 Implement sending response to challenge via CR_RESPONSE
1f76bbb5 Implement support for signalling IV_SSO to server
7bdba531 Implement parsing and sending INFO and INFO_PRE control messages
58bb8f3e Make cipher_kt_get also accept OpenVPN config cipher name
ff531767 Make cipher_kt_name always return normalised cipher name
0213f80e Set the correct mtu on windows based systems
e0b49cb9 Add .git-blame-ignore-revs with reformat commits
9002885b multi: skip IPv4 logic in multi_select_virtual_addr() if no pool is configured
28e39585 pool: remove useless 'options.h' include
e7c0cd99 Simplify pool size handling, fix possible array overrun on pool reading.
1379e527 ipv6-pool: get rid of size constraint
070319c1 options: enable IPv4 redirection logic only if really required
25266ebb crypto_openssl: add include for openssl/conf.h
826d8953 route: warn on IPv4 routes installation when no IPv4 is configured
6a8cd033 pool: add support for ifconfig-pool-persist with IPv6 only
a4071b20 crypto_openssl: add initialization to pick up local configuration
8155f8aa openssl: add engine method for loading the key
7d65aad8 allow usage of --server-ipv6 even when no --server is specified
45211315 pool: allow to configure an IPv6-only ifconfig-pool
984bd1e1 Switch assertion failure to returning false
81d66a1f pool: prevent IPv6 pools to be larger than 2^16 addresses
cc76e177 Refuse server mode on Android
14a57be4 Do not write extra 0 byte for --gen-key with auth-token/tls-crypt-v2
6001784a Change client side of t_lpback.sh configs to use inline material.
93ba6ccd Persist management-query-remote and proxy prompts
a8850401 Fix session id and initial timestamp not being preserved
b0c94aff Document reneweal mechanic of auth-token in manual
42fe3e81 Fix session id in env missing first byte
27ad978f get rid of INLINE_FILE_TAG constant
d7e26a34 tls-crypt-v2: fix testing of inline key
416162c5 options: fix inlining auth-gen-token-secret file
7ae8dbb7 options: Restore --tls-crypt-v2 inline file capability
e8e410fd options: Fix failing inline tls-auth/crypt with persist-key
042429d3 build: Remove --disable-server from ./configure
cb2e9218 convert *_inline attributes to bool
4dddca52 Use crypto library functions for const time memcmp when possible
3cb9b156 t_net.sh: assign MAC address directly during interface creation
da1574ef Uncrustify the tests/unit_tests/ part of our tree.
a17e7353 Add tls-crypt-v2 test writing metadata
75aa88af Fix tls_ctx_client/server_new leaving error on OpenSSL error stack
c40679fb remove bogus file check on --genkey argument
9cf7b492 Another round of uncrustify code cleanup.
cbde07f4 Minor style change to improve code style
c577facf Refactor counting number of element in a : delimited list into function
d8225e98 t_net.sh: use dummy interface instead of tun
db3d737b sitnl: fix ignoring EEXIST when sending a netlink command
b9ff3988 sitnl: fix TUN/TAP confusion in error messages
74fadcf4 sitnl: fix failure reporting by keeping error negative