Attention is currently required from: plaisthos, selvanair. Bluca has posted comments on this change by Bluca. ( http://gerrit.openvpn.net/c/openvpn/+/1622?usp=email )
Change subject: Add new helpers to handle key exchange (S_SENT_KEY/S_START) with large passwords ...................................................................... Patch Set 1: (2 comments) Patchset: PS1: > > With the last combination, a large password can be used successfully. […] Sure, but that's 2 years old and included in LTS distros, eg. Ubuntu 24.04 and Debian 13: https://repology.org/project/openvpn/versions It seems very unlikely that older, pre-existing deployments would suddenly start changing existing configuration and attempting to use longer passwords. PS1: > I think this is a very hacky approach to solve this problem. […] Sorry, I don't really follow. This is not a TLS framing issue - the TLS layer (openssl, etc) does its own framing independently of this. This is only an issue in the intermediate, local buffer that is used between openvpn and the TLS library. So why would this need a protocol update? The on-the-wire format doesn't change. -- To view, visit http://gerrit.openvpn.net/c/openvpn/+/1622?usp=email To unsubscribe, or for help writing mail filters, visit http://gerrit.openvpn.net/settings?usp=email Gerrit-MessageType: comment Gerrit-Project: openvpn Gerrit-Branch: master Gerrit-Change-Id: I055c64ca8b23066e70eea7d7deddfb14f5354c5f Gerrit-Change-Number: 1622 Gerrit-PatchSet: 1 Gerrit-Owner: Bluca <[email protected]> Gerrit-Reviewer: plaisthos <[email protected]> Gerrit-Reviewer: selvanair <[email protected]> Gerrit-CC: openvpn-devel <[email protected]> Gerrit-Attention: plaisthos <[email protected]> Gerrit-Attention: selvanair <[email protected]> Gerrit-Comment-Date: Tue, 07 Apr 2026 10:26:12 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Comment-In-Reply-To: plaisthos <[email protected]>
_______________________________________________ Openvpn-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-devel
