From: Selva Nair <selva.n...@gmail.com>
As change in auth-token is common on restart and does not
require tun-reopen, exclude it from the "pulled options digest"
calculation. Without this tun is always re-opened on SIGUSR1
if auth-token is in use which breaks persist-tun.
Fixes #200
v2: explcitly filter auth-token and auth-token-user
Signed-off-by: Selva Nair <selva.n...@gmail.com>
---
src/openvpn/push.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/src/openvpn/push.c b/src/openvpn/push.c
index ad2f3c65..e765d2a9 100644
--- a/src/openvpn/push.c
+++ b/src/openvpn/push.c
@@ -989,8 +989,10 @@ push_update_digest(md_ctx_t *ctx, struct buffer *buf,
const struct options *opt)
char line[OPTION_PARM_SIZE];
while (buf_parse(buf, ',', line, sizeof(line)))
{
- /* peer-id might change on restart and this should not trigger
reopening tun */
- if (strprefix(line, "peer-id "))
+ /* peer-id and auth-token might change on restart and this should not
trigger reopening tun */
+ if (strprefix(line, "peer-id ")
+ || strprefix(line, "auth-token ")
+ || strprefix(line, "auth-token-user "))
{
continue;
}
--
2.34.1
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
