Hi, On 05/06/18 11:29, Antonio Quartulli wrote: > In preparation to having tls-auth/crypt keys per connection > block, it is important to ensure that such material is always > reload upon SIGUSR1, no matter is persist-key was specified or > not. > > This is required because when moving from one remote to the > other the key may change and thus the key context needs to > be refreshed. > > Trac: #720 > Cc: Steffan Karger <stef...@karger.me> > Signed-off-by: Antonio Quartulli <a...@unstable.cc>
as clarified on IRC with Gert, applying this patch alone temporary breaks the persist-key logic and this would not be good when doing bisect. I'll send v3 implementing what is needed to ensure everything still works, even after having applied this patch alone. Cheers, -- Antonio Quartulli
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
