Page MenuHomeSolus

Update openconnect to 8.02
ClosedPublic

Authored by der_eismann on Feb 1 2019, 10:32 AM.
Tags
None
Referenced Files
F11065344: D5231.id.diff
Fri, Aug 11, 4:30 PM
F11065343: D5231.id12744.diff
Fri, Aug 11, 4:30 PM
F11065342: D5231.id12731.diff
Fri, Aug 11, 4:30 PM
F11046636: D5231.diff
Thu, Aug 10, 1:50 PM
F10997654: D5231.id12744.diff
Thu, Jul 27, 11:57 AM
F10988750: D5231.diff
Mon, Jul 24, 12:25 PM
F10932442: D5231.id.diff
Jul 12 2023, 2:06 AM
F10848514: D5231.id12730.diff
Jun 11 2023, 3:32 PM
Subscribers
None

Details

Summary
  • Add support for LZ4 compression
  • Support split-exclude routes for GlobalProtect.
  • Add Cisco-compatible DTLSv1.2 support.
  • Invoke script with reason=attempt-reconnect before doing so.
  • Clear form submissions (which may include passwords) before freeing (CVE-2018-20319).
  • Allow form responses to be provided on command line.
  • Add support for SSL keys stored in TPM2.
  • Fix ESP rekey when replay protection is disabled.
  • Add Google Authenticator TOTP support for Juniper.
  • Add RFC7469 key PIN support for cert hashes.
  • Add protocol method to securely log out the Juniper session.
  • Relax requirements for Juniper hostname packet response to support old gateways.
  • Add API functions to query the supported protocols.
  • Verify ESP sequence numbers and warn even if replay protection is disabled.
  • Add support for PAN GlobalProtect VPN protocol (--protocol=gp).
  • Reorganize listing of command-line options, and include information on supported protocols.
Test Plan

Connected to university VPN via network-manager and CLI.

Diff Detail

Repository
R2233 openconnect
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

der_eismann retitled this revision from Update openconnect to 8.02, fixes T7547 to Update openconnect to 8.02.Feb 1 2019, 11:24 AM
This revision is now accepted and ready to land.Feb 1 2019, 7:21 PM
This revision was automatically updated to reflect the committed changes.