Opened 9 years ago
Last modified 9 years ago
#47142 new enhancement
vpnc and openconnect support utun
| Reported by: | Mathias.Laurin+macports.org@… | Owned by: | macports-tickets@… |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | haspatch | Cc: | ryandesign (Ryan Carsten Schmidt) |
| Port: | openconnect vpnc |
Description
Since 10.9, OS X requires signed kernel drivers. In 10.9,
loading unsigned kernel drivers would raise a deprecation
warning; in 10.10, they are not loaded anymore. That means that
the macports version of tuntaposx does not work.
Apple provides "user tunnels" utun since OS X 10.6 that are
implemented as sockets instead of character devices, rendering
tuntaposx unnecessary.
https://github.com/breiter/vpnc is a fork of vpnc with utun
support and utun is supported in openconnect since 7.0 (and
we now have 7.5 in the tree).
More info and discussion on the vpnc patch http://www.gossamer-threads.com/lists/vpnc/devel/4103
Attached is a portfile that sets vpnc to the breiter branch and removes the dependency on tuntaposx for vpnc and openconnect.
Attachments (1)
Change History (11)
Changed 9 years ago by Mathias.Laurin+macports.org@…
| Attachment: | vpnc-openconnect-utun_Portfile.diff added |
|---|
comment:1 Changed 9 years ago by mf2k (Frank Schima)
| Keywords: | haspatch added |
|---|---|
| Port: | openconnect vpnc added |
| Type: | defect → enhancement |
| Version: | 2.3.3 |
In the future, please fill in the Port field.
comment:3 follow-ups: 4 6 Changed 9 years ago by mf2k (Frank Schima)
Why does vpnc change to downloading from github? The homepage seems to use the currently specified mastersite.
comment:4 Changed 9 years ago by ryandesign (Ryan Carsten Schmidt)
If the github portgroup is to be used, it should be used correctly: replace the name and version lines with:
github.setup breiter vpnc 0.5.3 vpnc-
But doing this changes nothing about the port's behavior, because the port already specifies its own homepage, master_sites and livecheck. If you want the port to actually download from that github fork, then the port's custom master_sites and livecheck directives should be removed, and the checksums will surely then change as well.
If it is not intended to get the software from there, then there's no need to increase the revision.
comment:6 Changed 9 years ago by Mathias.Laurin+macports.org@…
Replying to mf2k@…:
Why does vpnc change to downloading from github? The homepage seems to use the currently specified mastersite.
VPNC does not support utun out of the box so that the patches from the breiter fork are required. I can understand if you do not trust patches from nonofficial sources, but then, openconnect should be removed from the tree because, without the patches, it requires macport tuntaposx that simply cannot work with recent OS X.
Also, at the moment, I do not have a vpn to test on anymore...
comment:7 Changed 9 years ago by ryandesign (Ryan Carsten Schmidt)
comment:8 Changed 9 years ago by Mathias.Laurin+macports.org@…
The version of openconnect that is currently in the tree dropped the tuntaposx dependency. So I guess the problem is solved. You can close this obsolete bug solved.
comment:9 follow-up: 10 Changed 9 years ago by mf2k (Frank Schima)
Shouldn't the depends_run port:tuntaposx line in vpnc still be removed?
comment:10 Changed 9 years ago by Mathias.Laurin+macports.org@…
Replying to mf2k@…:
Shouldn't the
depends_run port:tuntaposxline in vpnc still be removed?
I overlooked that but yes, switching to the breiter branch should let vpnc work on OS X >= 10.6 without tuntaposx. The official vpnc repository has not been updated since 2008 according to the website. I have no vpn anymore at the moment so I cannot test much, sorry.
remove tuntaposx dep for openconnect and vpnc