I won't claim to understand what this stuff is doing in the grand scheme
of things (as far as I can see, all it does is "it introduces a timeout
variable all over the place, which then gets sent to the client") but
the changes look safe enough :-)
I have subjected this to client-side and server side torturing - which,
admittedly, does not excercise the mangement interface at all, and does
not have a test for "delayed auth" either. So it's not testing the new
code at all, just "nothing else breaks". And this, I can confirm
(mbedTLS 2.25 client crashes :-) ).
Your patch has been applied to the master branch.
commit 53229047a259b2edb9034802a33fe27636675ff9
Author: Arne Schwabe
Date: Wed Mar 3 13:38:18 2021 +0100
Implement server side of AUTH_PENDING with extending timeout
Signed-off-by: Arne Schwabe <a...@rfc2549.org>
Acked-by: Lev Stipakov <lstipa...@gmail.com>
Message-Id: <20210303123818.16012-1-a...@rfc2549.org>
URL:
https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg21596.html
Signed-off-by: Gert Doering <g...@greenie.muc.de>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
