On 28/03/17 10:39, Steffan Karger wrote: > Hi, > > On 28-03-17 10:33, Emmanuel Deloget wrote: >> I should be able to push a new version of the remaining patches in the >> foreseeable future (let's say today or tomorrow, because I will be >> unavailable at the end of this week). >> >> I found a solution to overcome the big X509_check_purpose() issue, so >> now I'm able to propose a solution that does not change the behavior of >> OpenVPN. > > That's great! This way, 2.4 does not have to change it's behaviour. > Still, I think it makes sense to deprecate --ns-cert-type, and remove it > in favour or --remote-cert-tls in openvpn 2.5.
Based on the feedback and discussions in Fedora regarding to us removing --tls-remote .... I actually think 2.5 is too early. We need to have a patch very soon complaining loudly in the log files and get in touch with at least NetworkManager guys to ensure they have time to implement a solution when this goes away. So I think 2.6 is more realistic. -- kind regards, David Sommerseth OpenVPN Technologies, Inc
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
