diff options
| author | mandree <mandree@FreeBSD.org> | 2014-01-28 03:00:07 +0800 |
|---|---|---|
| committer | mandree <mandree@FreeBSD.org> | 2014-01-28 03:00:07 +0800 |
| commit | f38dbddebd56b3f9f0e767cf28126fca8b787b62 (patch) | |
| tree | 0a796180625389b2ab6c0336236dd3f84c665015 /security | |
| parent | f2e3478b4fc7e77c0342268c17e8e1db353c462b (diff) | |
| download | freebsd-ports-gnome-f38dbddebd56b3f9f0e767cf28126fca8b787b62.tar.gz freebsd-ports-gnome-f38dbddebd56b3f9f0e767cf28126fca8b787b62.tar.zst freebsd-ports-gnome-f38dbddebd56b3f9f0e767cf28126fca8b787b62.zip | |
Fix self-tests and their non-fatal auto-skip on RedPorts.
Add patch-tests__t_cltsrv.sh to properly skip self-tests when no
inet/inet6 addresses are available, and to properly use udp6 when only
inet6 is available (for instance, on RedPorts).
Drop patch-src__openvpn__syshead.h, had already been integrated upstream.
PR: ports/185439 (related)
Diffstat (limited to 'security')
| -rw-r--r-- | security/openvpn/files/patch-src__openvpn__syshead.h | 16 | ||||
| -rw-r--r-- | security/openvpn/files/patch-tests__t_cltsrv.sh | 65 |
2 files changed, 65 insertions, 16 deletions
diff --git a/security/openvpn/files/patch-src__openvpn__syshead.h b/security/openvpn/files/patch-src__openvpn__syshead.h deleted file mode 100644 index a30a7c95765f..000000000000 --- a/security/openvpn/files/patch-src__openvpn__syshead.h +++ /dev/null @@ -1,16 +0,0 @@ -Work around "missing" TCP_NODELAY, -obtained from: http://community.openvpn.net/openvpn/ticket/158 - ---- ./src/openvpn/syshead.h.orig 2012-11-22 13:07:51.000000000 +0100 -+++ ./src/openvpn/syshead.h 2013-01-11 21:30:07.000000000 +0100 -@@ -307,6 +307,10 @@ - #include <netinet/ip.h> - #endif - -+#ifdef HAVE_NETINET_TCP_H -+#include <netinet/tcp.h> -+#endif -+ - #ifdef HAVE_NET_IF_TUN_H - #include <net/if_tun.h> - #endif diff --git a/security/openvpn/files/patch-tests__t_cltsrv.sh b/security/openvpn/files/patch-tests__t_cltsrv.sh new file mode 100644 index 000000000000..cfbee969db89 --- /dev/null +++ b/security/openvpn/files/patch-tests__t_cltsrv.sh @@ -0,0 +1,65 @@ +--- ./tests/t_cltsrv.sh.orig 2013-05-31 14:00:07.000000000 +0200 ++++ ./tests/t_cltsrv.sh 2014-01-27 18:51:13.000000000 +0100 +@@ -1,7 +1,7 @@ + #! /bin/sh + # + # t_cltsrv.sh - script to test OpenVPN's crypto loopback +-# Copyright (C) 2005, 2006, 2008 Matthias Andree ++# Copyright (C) 2005 - 2014 Matthias Andree + # + # This program is free software; you can redistribute it and/or + # modify it under the terms of the GNU General Public License +@@ -22,8 +22,9 @@ + srcdir="${srcdir:-.}" + top_srcdir="${top_srcdir:-..}" + top_builddir="${top_builddir:-..}" +-trap "rm -f log.$$ log.$$.signal ; trap 0 ; exit 77" 1 2 15 +-trap "rm -f log.$$ log.$$.signal ; exit 1" 0 3 ++root="${top_srcdir}/sample" ++trap "rm -f ${root}/sample-config-files/loopback-*.test log.$$ log.$$.signal ; trap 0 ; exit 77" 1 2 15 ++trap "a=\$? ; rm -f ${root}/sample-config-files/loopback-*.test log.$$ log.$$.signal ; test \$a = 0 && exit 1 || exit \$a" 0 3 + addopts= + case `uname -s` in + FreeBSD) +@@ -45,18 +46,38 @@ + # make sure that the --down script is executable -- fail (rather than + # skip) test if it isn't. + downscript="../tests/t_cltsrv-down.sh" +-root="${top_srcdir}/sample" + test -x "${root}/${downscript}" || chmod +x "${root}/${downscript}" || { echo >&2 "${root}/${downscript} is not executable, failing." ; exit 1 ; } + echo "The following test will take about two minutes." >&2 + echo "If the addresses are in use, this test will retry up to two times." >&2 + ++set -- $(ifconfig lo0 | grep -E '\<inet' | head -n1) ++add= ++if [ "x$1$2" = "x" ] ; then ++ echo >&2 "### NO ADDRESSES ON LOOPBACK INTERFACE lo0, SKIPPING TEST ###" ++ exit 77 ++fi ++if [ "inet6" = "$1" ] ; then ++ add='proto udp6' ++fi ++for i in server client ; do ++ sed -e "s/localhost/$2/" -e "/^remote/a\\ ++$add" ${root}/sample-config-files/loopback-$i \ ++ >${root}/sample-config-files/loopback-$i.test ++done ++ + # go + success=0 + for i in 1 2 3 ; do + set +e + ( +- "${top_builddir}/src/openvpn/openvpn" --script-security 2 --cd "${root}" ${addopts} --setenv role srv --down "${downscript}" --tls-exit --ping-exit 180 --config "sample-config-files/loopback-server" & +- "${top_builddir}/src/openvpn/openvpn" --script-security 2 --cd "${top_srcdir}/sample" ${addopts} --setenv role clt --down "${downscript}" --tls-exit --ping-exit 180 --config "sample-config-files/loopback-client" ++ "${top_builddir}/src/openvpn/openvpn" --script-security 2 \ ++ --cd "${root}" ${addopts} --setenv role srv \ ++ --down "${downscript}" --tls-exit --ping-exit 180 \ ++ --config "sample-config-files/loopback-server.test" & ++ "${top_builddir}/src/openvpn/openvpn" --script-security 2 \ ++ --cd "${top_srcdir}/sample" ${addopts} --setenv role clt \ ++ --down "${downscript}" --tls-exit --ping-exit 180 \ ++ --config "sample-config-files/loopback-client.test" + ) 3>log.$$.signal >log.$$ 2>&1 + e1=$? + wait $! |