From 2c1b55a059fdad9a4e65e59b5a097c06318ad8ec Mon Sep 17 00:00:00 2001
From: Petr Gotthard <petr.gotthard@advantech.cz>
Date: Thu, 23 Feb 2023 18:25:27 +0000
Subject: [PATCH] openvpn: upgrade 2.5.8 -> 2.6.0

New features and improvements in 2.6.0 compared to 2.5.8:
 - Data Channel Offload (DCO) kernel acceleration support for Windows,
   Linux, and FreeBSD.
 - OpenSSL 3 support.
 - Improved handling of tunnel MTU, including support for pushable MTU.
 - Outdated cryptographic algorithms disabled by default, but there are
   options to override if necessary.
 - Reworked TLS handshake, making OpenVPN immune to replay-packet state
   exhaustion attacks.
 - Added --peer-fingerprint mode for a more simplistic certificate setup
   and verification.
 - Added Pre-Logon Access Provider support to OpenVPN GUI for Windows.
 - Improved protocol negotiation, leading to faster connection setup.

Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
---
 .../openvpn/{openvpn_2.5.8.bb => openvpn_2.6.0.bb}          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
 rename meta-networking/recipes-support/openvpn/{openvpn_2.5.8.bb => openvpn_2.6.0.bb} (91%)

diff --git a/meta-networking/recipes-support/openvpn/openvpn_2.5.8.bb b/meta-networking/recipes-support/openvpn/openvpn_2.6.0.bb
similarity index 91%
rename from meta-networking/recipes-support/openvpn/openvpn_2.5.8.bb
rename to meta-networking/recipes-support/openvpn/openvpn_2.6.0.bb
index b2783d9928..c8ab6cb467 100644
--- a/meta-networking/recipes-support/openvpn/openvpn_2.5.8.bb
+++ b/meta-networking/recipes-support/openvpn/openvpn_2.6.0.bb
@@ -2,8 +2,8 @@ SUMMARY = "A full-featured SSL VPN solution via tun device."
 HOMEPAGE = "https://openvpn.net/"
 SECTION = "net"
 LICENSE = "GPL-2.0-only"
-LIC_FILES_CHKSUM = "file://COPYING;md5=b76abd82c14ee01cc34c4ff5e3627b89"
-DEPENDS = "lzo openssl iproute2 ${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
+LIC_FILES_CHKSUM = "file://COPYING;md5=3170e982baae61dbb8de963317d1ac94"
+DEPENDS = "lzo lz4 openssl iproute2 libcap-ng ${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
 
 inherit autotools systemd update-rc.d pkgconfig
 
@@ -14,7 +14,7 @@ SRC_URI = "http://swupdate.openvpn.org/community/releases/${BP}.tar.gz \
 
 UPSTREAM_CHECK_URI = "https://openvpn.net/community-downloads"
 
-SRC_URI[sha256sum] = "a6f315b7231d44527e65901ff646f87d7f07862c87f33531daa109fb48c53db2"
+SRC_URI[sha256sum] = "ebec933263c9850ef6f7ce125e2f22214be60b1cbb8ccff18892643fe083ae8f"
 
 # CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not for openvpn.
 CVE_CHECK_IGNORE += "CVE-2020-7224 CVE-2020-27569"