OpenVPN 3 Linux v12 (beta)
The highlights of this release includes:
* Feature: Web-based authentication
For servers allowing web based authentication, OpenVPN 3 Linux
will now pick up this authentication type request and handle
it. If the openvpn2 or openvpn3 user-front-end applications
are able to open a browser window with the given URL, it will
do so. If not, it will present the URL needed for the further
authentication process. In addition, any VPN sessions awaiting
web based authentication is also presented via the
`openvpn3 sessions-list` command together with the authentication
URL.
* Bugfix: OpenVPN 3 Linux configuration manager could crash
If the openvpn3-service-configmgr program was started with the
--state-dir argument pointing at an unreadable or non-existing
directory, it would crash. This has been fixed to provide a
better error message and exit gracefully.
* Bugfix: Properly handle restart of paused sessions
VPN sessions being paused (like via
`openvpn3 session-manage --pause`) would not recover properly if
it was recovered by using the `restart` method instead of `resume`.
When trying to pause the session again, it would not do so as the
session was considered paused already. Resuming a VPN session
via both the `resume` and the `restart` method are considered
appropriate and is now handled correctly.
* Bugfix: openvpn2 running in the foreground could exit with an error
If the openvpn2 front-end was used to start a VPN session and it
was running in the foreground (no use of --daemon), it would present
and error message when closing the session *if* the VPN session
was closed via another channel (such as `openvpn3 session-manage`).
This has been fixed and it will now exit properly if this situation
appears, without any additional error messages.
* Bugfix: openvpn2 would misinterpret --keepalive
The OpenVPN option parser in the Python 3 openvpn module would not
properly parse a few arguments which used multiple arguments - such
as --keepalive. This has been fixed.
* Enhancements: openvpn2 now understands --tls-version-{min,max}
In prior releases, the Python 3 openvpn module did not understand
the --tls-version-min and --tls-version-max options. This has been
resolved and these options are forwarded properly to the
configuration manager.
David Sommerseth (11):
client: Properly reset the paused flag on session restart
python: Improve parsing of options with multiple arguments
python: Extend argument parser with support for --tls-version-min/max
dbus: Add web-auth constant to ClientAttentionGroup
client: Enable web-auth support and URL extraction
python: Add support for handling web-auth in openvpn2
python: Resolve error in openvpn2 on disconnect with pre-closed sessions
common: Implement function for opening up URIs on the host
ovpn3cli: Add support web auth via openvpn3
ovpn3cli: Improve 'sessions-list' for sessions awaiting web auth
configmgr: Abort properly if --state-dir processing fails