Acked-by: Gert Doering <g...@greenie.muc.de>
I have taken Antonio's ACK on v2, and added my own on v3 (since
I NAKed the v2). This is basically the same patch just with a
conditional on SSL_OP_NO_RENEGOTIATION - so for everything Antonio
has tested, we know it works, and in addition it does not break
OpenSSL 1.0.x builds.
Built and cliend-side tested on FreeBSD and Linux with mbedTLS
2.16 and 2.26.0 and OpenSSL 1.0.2 and 1.1.1
Your patch has been applied to the master and release/2.5 branch.
commit 9e702a5d0f1d8ca0443d95ba13fc821deaa81d48 (master)
commit a31c4b73f56e1dddda64ba15b27f0c5b2c6a26d4 (release/2.5)
Author: Arne Schwabe
Date: Thu Apr 1 13:00:03 2021 +0200
Always disable TLS renegotiations
Signed-off-by: Arne Schwabe <a...@rfc2549.org>
Acked-by: Antonio Quartulli <anto...@openvpn.net>
Acked-by: Gert Doering <g...@greenie.muc.de>
Message-Id: <20210401110003.19689-1-a...@rfc2549.org>
URL:
https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg21939.html
Signed-off-by: Gert Doering <g...@greenie.muc.de>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
