softethervpn: updated to version 4.22-9634

- bugfix #3629 - readded nossl3 patch Signed-Off-by: Federico Di Marco <fededim@gmail.com>
2016-12-31 04:20:32 +01:00 · 2016-12-31 04:20:32 +01:00 · 45fcd8c37e
commit 45fcd8c37e
parent a876e13fd6
3 changed files with 109 additions and 105 deletions
--- a/net/softethervpn/Makefile
+++ b/net/softethervpn/Makefile
@ -9,21 +9,89 @@
 include $(TOPDIR)/rules.mk
 PKG_NAME:=softethervpn
-PKG_VERSION:=4.21-9613
+PKG_VERSION:=4.22-9634
 PKG_VERREL:=beta
-PKG_VERDATE:=2016.04.24
+PKG_VERDATE:=2016.11.27
 PKG_RELEASE:=1
 PKG_SOURCE:=softether-src-v$(PKG_VERSION)-$(PKG_VERREL).tar.gz
 PKG_SOURCE_URL:=http://www.softether-download.com/files/softether/v$(PKG_VERSION)-$(PKG_VERREL)-$(PKG_VERDATE)-tree/Source_Code/
-PKG_MD5SUM:=928d882d5fc23e00f0a5fa4ebf292ab9
+PKG_MD5SUM:=703d41b34ff49d008ddd329340a5a75e
 PKG_BUILD_DIR:=$(BUILD_DIR)/v$(PKG_VERSION)
 HOST_BUILD_DIR:=$(BUILD_DIR_HOST)/v$(PKG_VERSION)
 PKG_LICENSE:=GPL-2.0
 PKG_LICENSE_FILES:=COPYING
-include $(INCLUDE_DIR)/nls.mk 
+PKG_BUILD_DEPENDS:=softethervpn/host
 HAMCORE_SE2:=$(STAGING_DIR_HOST)/share/softethervpn/hamcore.se2
 include $(INCLUDE_DIR)/nls.mk
 include $(INCLUDE_DIR)/package.mk
 include $(INCLUDE_DIR)/host-build.mk
 # Override CC to add fake libreadline to linker search path
 HOSTCC += -L./src/readline
 # Add defines to turn add_history() and readline() calls into no-ops
 HOSTCC += -D'add_history(x)' -D'readline(x)=\"\"'
 # Execute in host build directory
 HOST_MAKE_FLAGS += -C $(HOST_BUILD_DIR)
 # Select 32 or 64 bit Makefile for host build depending on host architecture
 HOST_MAKE_FLAGS += -f src/makefiles/linux_$(if $(shell uname -m | grep 64),64,32)bit.mak
 # Prevent calling upstream configure
 define Host/Configure
 endef
 define Host/Compile
 	# Prepare fake readline headers and library
 	mkdir -p $(HOST_BUILD_DIR)/src/readline
 	touch $(HOST_BUILD_DIR)/src/readline/readline.h
 	touch $(HOST_BUILD_DIR)/src/readline/history.h
 	ar rcs $(HOST_BUILD_DIR)/src/readline/libreadline.a
 	# Build hamcorebuilder using host compiler and let it generate
 	# the hamcore.se2 archive file
 	CC="$(HOSTCC)" $(MAKE) $(HOST_MAKE_FLAGS) \
 		src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 endef
 define Host/Install
 	$(INSTALL_DIR) $(STAGING_DIR_HOST)/share/softethervpn
 	$(INSTALL_DATA) $(HOST_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2 $(HAMCORE_SE2)
 endef
 # Tune CFLAGS for target
 TARGET_CFLAGS += \
 	$(if $(CONFIG_OPENSSL_WITH_SSL3),,-DSSL_OP_NO_SSLv3) \
 	$(if $(filter mips mipsel,$(ARCH)),-minterlink-mips16)
 # Select 32 or 64 bit Makefile for target build depending on 64bit config symbol
 MAKE_FLAGS += \
 	-f src/makefiles/linux_$(if $(CONFIG_ARCH_64BIT),64,32)bit.mak
 # Map nonstandard CCFLAGS variable to standard TARGET_CFLAGS
 MAKE_VARS += \
 	CCFLAGS="$(TARGET_CFLAGS)"
 define Build/Configure
 	# Fetch prebuilt hamcore.se2 from staging dir
 	$(INSTALL_DIR) $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix
 	$(CP) $(HAMCORE_SE2) $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 	# Portably set hamcore.se2 modtime to one day in the future
 	# to prevent rebuilding it
 	perl -e 'utime(time() + 86400, time() + 86400, $$$$ARGV[0])' \
 		$(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 endef
 define Package/softethervpn
  SECTION:=net
@ -36,10 +104,10 @@ define Package/softethervpn
 endef
 define Package/softethervpn/description
-SoftEther VPN ("SoftEther" means "Software Ethernet") is one of the world's most powerful and easy-to-use multi-protocol VPN software developed as an academic 
+SoftEther VPN ("SoftEther" means "Software Ethernet") is one of the world's most powerful and easy-to-use multi-protocol VPN software developed as an academic
 project from University of Tsukuba, Japan. SoftEther VPN has strong compatibility to today's most popular VPN products among the world. It has the interoperability
-with OpenVPN, L2TP, IPsec, EtherIP, L2TPv3, Cisco VPN Routers and MS-SSTP VPN Clients. SoftEther VPN is the world's only VPN software which supports SSL-VPN, 
+with OpenVPN, L2TP, IPsec, EtherIP, L2TPv3, Cisco VPN Routers and MS-SSTP VPN Clients. SoftEther VPN is the world's only VPN software which supports SSL-VPN,
-OpenVPN, L2TP, EtherIP, L2TPv3 and IPsec as a single VPN software. SoftEther VPN is not only an alternative VPN server to existing VPN products (OpenVPN, 
+OpenVPN, L2TP, EtherIP, L2TPv3 and IPsec as a single VPN software. SoftEther VPN is not only an alternative VPN server to existing VPN products (OpenVPN,
 IPsec and MS-SSTP), but has also original strong SSL-VPN protocol to penetrate any kinds of firewalls. Ultra-optimized SSL-VPN Protocol of SoftEther VPN
 has very fast throughput, low latency and firewall resistance.
 endef
@ -52,54 +120,6 @@ define Package/softethervpn/conffiles
 /usr/libexec/softethervpn/lang.config
 endef
 ifeq ($(CONFIG_OPENSSL_WITH_SSL3),y)
 	SE_FLAGS=-DSSL3_SUPPORT
 endif
 ifeq ($(ARCH),mips)
 	SE_FLAGS+= -minterlink-mips16
 endif
 ifeq ($(ARCH),mipsel)
 	SE_FLAGS+= -minterlink-mips16
 endif
 define Build/Configure
 	if [ -v CONFIG_64BIT ]; then cp $(PKG_BUILD_DIR)/src/makefiles/linux_64bit.mak $(PKG_BUILD_DIR)/Makefile; else cp $(PKG_BUILD_DIR)/src/makefiles/linux_32bit.mak $(PKG_BUILD_DIR)/Makefile; fi;
 endef
 define Build/Compile
 	# Softether compiles first a tool called hamcorebuilder which is essentially an archiver. Then the compilation calls this archiver to pack all 
 	# resource files (*.html, *.config, .txt, readme, languages) it needs to run in an archive file called hamcore.se2. The three executables are then built 
 	# and they will have a runtime dependency on this resource archive. By default OpenWRT build process cross compiles all targets in the makefile
 	# generating therefore an error when the archive is generated since the executable is crosscompiled to run on the router and instead it is run
 	# by the build host. The workaround is to compile the archiver with the host environment, generate the hamcore.se2 archive and cross compile everything
 	# again without regenerating the archive.
 	# we clean the last cross compiled version
 	make -C $(PKG_BUILD_DIR) clean
 	# we compile the hamcorebuilder utility and generate hamcore archive using host environment
 	make -C $(PKG_BUILD_DIR) src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 	# we clean everything, but we save the built hamcore archive and we update its timestamp to avoid rebuilding the archive with cross compiled hamcorebuilder
 	mv $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2 $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2.1
 	make -C $(PKG_BUILD_DIR) clean
 		mv $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2.1 $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 	touch -d "`date -d 1day`" $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix/hamcore.se2
 	ls -la $(PKG_BUILD_DIR)/src/bin/BuiltHamcoreFiles/unix
 	# we cross compile everything from the scratch
 	$(MAKE) \
 		$(TARGET_CONFIGURE_OPTS) \
 		CCFLAGS="$(SE_FLAGS) -I$(STAGING_DIR)/usr/include $(ICONV_CFLAGS)" \
 		LDFLAGS="-L$(STAGING_DIR)/usr/lib $(ICONV_LDFLAGS)" \
 		-C $(PKG_BUILD_DIR)
 endef
 define Package/softethervpn/install
 	$(INSTALL_DIR) $(1)/usr/libexec/softethervpn
 	$(INSTALL_BIN) $(PKG_BUILD_DIR)/bin/vpnserver/vpnserver $(1)/usr/libexec/softethervpn
@ -129,3 +149,4 @@ define Package/softethervpn/install
 endef
 $(eval $(call BuildPackage,softethervpn))
 $(eval $(call HostBuild))
--- a/net/softethervpn/patches/105-nossl3.patch
+++ b/net/softethervpn/patches/105-nossl3.patch
@ -0,0 +1,33 @@
 Index: v4.22-9634/src/Mayaqua/Network.c
 ===================================================================
 --- v4.22-9634.orig/src/Mayaqua/Network.c
 +++ v4.22-9634/src/Mayaqua/Network.c
@@ -13013,20 +13013,28 @@ bool StartSSLEx(SOCK *sock, X *x, K *pri
 		}
 		else
 		{
 +#ifndef	SSL_OP_NO_SSLv3
 			if (client_tls == false)
 			{
 				SSL_CTX_set_ssl_version(ssl_ctx, SSLv3_method());
 			}
 			else
 			{
 +#endif	// SSL_OP_NO_SSLv3
 				SSL_CTX_set_ssl_version(ssl_ctx, SSLv23_client_method());
 +#ifndef	SSL_OP_NO_SSLv3
 			}
 +#endif	// SSL_OP_NO_SSLv3
 		}
 		sock->ssl = SSL_new(ssl_ctx);
 		SSL_set_fd(sock->ssl, (int)sock->socket);
 #ifdef	SSL_CTRL_SET_TLSEXT_HOSTNAME
 +#ifndef	SSL_OP_NO_SSLv3
 		if (sock->ServerMode == false && client_tls)
 +#else
 +		if (sock->ServerMode == false)
 +#endif	// SSL_OP_NO_SSLv3
 		{
 			if (IsEmptyStr(sni_hostname) == false)
 			{
--- a/net/softethervpn/patches/105-nosslv3.patch
+++ b/net/softethervpn/patches/105-nosslv3.patch
@ -1,50 +0,0 @@
 --- a/src/Mayaqua/Network.c
 +++ b/src/Mayaqua/Network.c
@@ -12966,35 +12966,46 @@ bool StartSSLEx(SOCK *sock, X *x, K *pri
 	{
 		if (sock->ServerMode)
 		{
 +#ifdef SSL3_SUPPORT			
 			if (sock->AcceptOnlyTls == false)
 			{
 				SSL_CTX_set_ssl_version(ssl_ctx, SSLv23_method());
 			}
 			else
 			{
 +#endif
 				SSL_CTX_set_ssl_version(ssl_ctx, TLSv1_method());
 +#ifdef SSL3_SUPPORT
 			}
 -
 +#endif
 			Unlock(openssl_lock);
 			AddChainSslCertOnDirectory(ssl_ctx);
 			Lock(openssl_lock);
 		}
 		else
 		{
 +#ifdef SSL3_SUPPORT
 			if (client_tls == false)
 			{
 				SSL_CTX_set_ssl_version(ssl_ctx, SSLv3_method());
 			}
 			else
 			{
 +#endif
 				SSL_CTX_set_ssl_version(ssl_ctx, TLSv1_client_method());
 +#ifdef SSL3_SUPPORT
 			}
 +#endif
 		}
 		sock->ssl = SSL_new(ssl_ctx);
 		SSL_set_fd(sock->ssl, (int)sock->socket);
 #ifdef	SSL_CTRL_SET_TLSEXT_HOSTNAME
 +# ifdef SSL3_SUPPORT
 		if (sock->ServerMode == false && client_tls)
 +# else
 +		if (sock->ServerMode == false)
 +#endif
 		{
 			if (IsEmptyStr(sni_hostname) == false)
 			{