Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Hello, Gert Doering, on Tue 09 Feb 2016 10:28:21 +0100, wrote: > Alternatively, using > --learn-address might actually be much easier than --client-connect, as > it will already tell you which networks are "new for this client" - from > the description, I'm fairly sure it handles

Re: [Openvpn-devel] [PATCH 09/10] Add cipher name translation for OpenSSL.

Hi, On Tue, Feb 09, 2016 at 05:46:21PM +0100, Steffan Karger wrote: > gcc 5.2.1: > $ clang -o no-yoda no-yoda.c > no-yoda.c:5:9: warning: using the result of an assignment as a condition > without > parentheses [-Wparentheses] > if (a = NULL) { > ~~^~ I noticed this as well,

Re: [Openvpn-devel] [PATCH 09/10] Add cipher name translation for OpenSSL.

On Tue, Feb 9, 2016 at 4:16 PM, David Sommerseth wrote: > On 08/02/16 17:03, Arne Schwabe wrote: >> Am 07.02.16 um 20:47 schrieb Steffan Karger: >>> This keeps naming consistent. For example, instead of id-aes128-GCM use >>> AES-128-GCM, which is more like

Re: [Openvpn-devel] [PATCH 09/10] Add cipher name translation for OpenSSL.

On 08/02/16 17:03, Arne Schwabe wrote: > > > Am 07.02.16 um 20:47 schrieb Steffan Karger: >> This keeps naming consistent. For example, instead of id-aes128-GCM use >> AES-128-GCM, which is more like AES-128-CBC. >> >> + >> + if (NULL == pair) >> +return cipher_name; >> + > I like the pair

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Gert Doering, on Tue 09 Feb 2016 12:58:26 +0100, wrote: > On Tue, Feb 09, 2016 at 11:58:39AM +0100, Samuel Thibault wrote: > > I have tried putting > > > > iroute-ipv6 2a01:474:5:1100::/56 > > > > in the ccd, but from the learn-address script the environment does not > > contain this route. > >

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Hi, On Tue, Feb 09, 2016 at 11:58:39AM +0100, Samuel Thibault wrote: > I have tried putting > > iroute-ipv6 2a01:474:5:1100::/56 > > in the ccd, but from the learn-address script the environment does not > contain this route. --learn-address cmd Run command cmd to

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Hi, On Tue, Feb 09, 2016 at 11:55:44AM +0100, Jan Just Keijser wrote: > > Could you test and report whether --learn-address does the job for you? > > a 'learn-address' script is an entirely different beast than a > 'client-connect' script: you cannot write out new openvpn directives in > a

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Gert Doering, on Tue 09 Feb 2016 11:46:25 +0100, wrote: > On Tue, Feb 09, 2016 at 11:15:33AM +0100, Samuel Thibault wrote: > > Gert Doering, on Tue 09 Feb 2016 10:28:21 +0100, wrote: > > > On Mon, Feb 08, 2016 at 10:39:29PM +0100, Samuel Thibault wrote: > > > > Is there a reason for not being

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Hi, On 09/02/16 11:46, Gert Doering wrote: On Tue, Feb 09, 2016 at 11:15:33AM +0100, Samuel Thibault wrote: Gert Doering, on Tue 09 Feb 2016 10:28:21 +0100, wrote: On Mon, Feb 08, 2016 at 10:39:29PM +0100, Samuel Thibault wrote: Is there a reason for not being allowed to set route /

Re: [Openvpn-devel] route / route-ipv6 can not be used in ccd

Hi, On Tue, Feb 09, 2016 at 11:15:33AM +0100, Samuel Thibault wrote: > Gert Doering, on Tue 09 Feb 2016 10:28:21 +0100, wrote: > > On Mon, Feb 08, 2016 at 10:39:29PM +0100, Samuel Thibault wrote: > > > Is there a reason for not being allowed to set route / route-ipv6 > > > options in the ccd? > >

[Openvpn-devel] [PATCH applied] Re: Change openvpn_encrypt() to append to work buffer only

Your patch has been applied to the master branch. commit a070f75b7dbb06161b9e2009124ad82277054524 Author: Steffan Karger List-Post: openvpn-devel@lists.sourceforge.net Date: Sun Feb 7 20:47:14 2016 +0100 Change openvpn_encrypt() to append to work buffer only Signed-off-by: Steffan

[Openvpn-devel] [PATCH applied] Re: Move packet_id into crypto_options

Your patch has been applied to the master branch. commit 3ebc31f9591ce11b0673dc20e76022c13bdb2c37 Author: Steffan Karger List-Post: openvpn-devel@lists.sourceforge.net Date: Sun Feb 7 20:47:13 2016 +0100 Move packet_id into crypto_options Signed-off-by: Steffan Karger

[Openvpn-devel] [PATCH applied] Re: Move crypto_options into key_state and stop using context in SSL-mode.

Your patch has been applied to the master branch. commit 2d9c6d20e6e98f852930ea96dae9bd912d34068e Author: Steffan Karger List-Post: openvpn-devel@lists.sourceforge.net Date: Sun Feb 7 20:47:11 2016 +0100 Move crypto_options into key_state and stop using context in SSL-mode.

[Openvpn-devel] [PATCH applied] Re: Allow NULL argument in cipher_ctx_get_cipher_kt()

Your patch has been applied to the master branch. commit 70fbc5be209635739458267abde31b5cd4f770d0 Author: Steffan Karger List-Post: openvpn-devel@lists.sourceforge.net Date: Sun Feb 7 20:47:09 2016 +0100 Allow NULL argument in cipher_ctx_get_cipher_kt() Signed-off-by: Steffan Karger

[Openvpn-devel] [PATCH applied] Re: Remove reuse of key_type during init of data channel auth and tls-auth

Your patch has been applied to the master branch. commit e7d78e407d41d48fbd91a71b2edfedcd2879b778 Author: Steffan Karger List-Post: openvpn-devel@lists.sourceforge.net Date: Sun Feb 7 20:47:10 2016 +0100 Remove reuse of key_type during init of data channel auth and tls-auth