I won't claim to understand what this stuff is doing in the grand scheme
of things (as far as I can see, all it does is "it introduces a timeout
variable all over the place, which then gets sent to the client") but
the changes look safe enough :-)
I have subjected this to client-side and server side torturing - which,
admittedly, does not excercise the mangement interface at all, and does
not have a test for "delayed auth" either. So it's not testing the new
code at all, just "nothing else breaks". And this, I can confirm
(mbedTLS 2.25 client crashes :-) ).
Your patch has been applied to the master branch.
commit 53229047a259b2edb9034802a33fe27636675ff9
Author: Arne Schwabe
Date: Wed Mar 3 13:38:18 2021 +0100
Implement server side of AUTH_PENDING with extending timeout
Signed-off-by: Arne Schwabe <[email protected]>
Acked-by: Lev Stipakov <[email protected]>
Message-Id: <[email protected]>
URL:
https://www.mail-archive.com/[email protected]/msg21596.html
Signed-off-by: Gert Doering <[email protected]>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
