Am 03.12.20 um 16:49 schrieb Steffan Karger: > This allows tls-crypt-v2 servers to drop privileges after reading the > keys. Without it, the server would try to read the key file for each > connecting client. (And clients for each reconnect.) > > As with the previous patch, the pre-loading was developed in parallel > with tls-crypt-v2, and the tls-crypt-v2 patches were never amended to > implement the pre-loading. > > Also as with the previous patch, it would be nicer if servers would not > reload the tls-crypt-v2 server key for each connecting client. But let's > first fix the issue, and see if we can improve later.
Agreed. One thing at a time. Acked-By: Arne Schwabe <a...@rfc2549.org> _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
