Re: [Openvpn-devel] [PATCH applied] Re: Add --tls-cert-profile option for mbedtls builds

On Sun, Nov 19 2017, Jeremie Courreges-Anglas wrote: > On Sun, Nov 19 2017, Gert Doering wrote: >> Hi, >> >> On Sun, Nov 19, 2017 at 09:37:56PM +0100, Gert Doering wrote: >>> .. of course this conflicts with o->renegotiate_seconds_min... >>> >>> Nevertheless, thanks for the patch :-) - it makes

Re: [Openvpn-devel] [PATCH applied] Re: Add --tls-cert-profile option for mbedtls builds

On Sun, Nov 19 2017, Gert Doering wrote: > Hi, > > On Sun, Nov 19, 2017 at 09:37:56PM +0100, Gert Doering wrote: >> .. of course this conflicts with o->renegotiate_seconds_min... >> >> Nevertheless, thanks for the patch :-) - it makes my FreeBSD 10.3 >> (mbedTLS 2.6) buildslave now happy again (

Re: [Openvpn-devel] [PATCH applied] Re: Add --tls-cert-profile option for mbedtls builds

Hi, On Sun, Nov 19, 2017 at 09:37:56PM +0100, Gert Doering wrote: > .. of course this conflicts with o->renegotiate_seconds_min... > > Nevertheless, thanks for the patch :-) - it makes my FreeBSD 10.3 > (mbedTLS 2.6) buildslave now happy again (on the default settings - with > --tls-cert-profile

Re: [Openvpn-devel] [PATCH 1/2] plugin: Export base64 encode and decode functions

Hi David, On Fri, May 5, 2017 at 5:46 PM, David Sommerseth wrote: > This patch builds on the "Export secure_memzero() to plug-ins" patch and > adds export of openvpn_base64_encode() and openvpn_base64_decode() > > This also ships with a very simple plug-in which demonstrates how to use > the new

[Openvpn-devel] [PATCH applied] Re: Add generated openvpn.doxyfile to .gitignore

Your patch has been applied to the master branch. So many ACKs for such a simple change :-) commit 4da4b9386695fe535b1f3095b87fc58cfcb62695 Author: Gert van Dijk Date: Sat Nov 11 18:14:06 2017 +0100 Add generated openvpn.doxyfile to .gitignore Signed-off-by: Gert van Dijk Acke

[Openvpn-devel] [PATCH applied] Re: Add --tls-cert-profile option for mbedtls builds

.. of course this conflicts with o->renegotiate_seconds_min... Nevertheless, thanks for the patch :-) - it makes my FreeBSD 10.3 (mbedTLS 2.6) buildslave now happy again (on the default settings - with --tls-cert-profile preferred, it refuses the old-hash cert, as it should). Also tested with op

[Openvpn-devel] [PATCH applied] Re: Add per session pseudo-random jitter to --reneg-sec intervals

ACK. The change makes sense, the actual functionality is what the discussion converged to, and the code looks sane (no long long, but it isn't printing a time_t either :-) ). Your patch has been applied to the master branch. commit dd99646347bc5461fa83b0e62114550504bb128f Author: Simon Matter D