Hi,
Our community meetings will alternate between Wed 11:30 CEST and Thu
20:00 CEST.
Next meetings have been scheduled to
- Wed 2nd October 11:30 CEST
- Thu 10th October 20:00 CEST
- Wed 16th October 11:30 CEST
- Thu 24th October 20:00 CEST
- Wed 30th October 11:30 CEST
The place is #openvpn-me
On 17/09/2019 14:10, Arne Schwabe wrote:
> The previous auth-token implementation had a serious problem, especially when
> paired with an unpatched OpenVPN client that keeps trying the auth-token
> (commit e61b401a).
>
> The auth-token-gen implementation forgot the auth-token on reconnect, this
>
On 17/09/2019 14:10, Arne Schwabe wrote:
> From: Arne Schwabe
>
> This allows an external authentication method
> (e.g. management interface) to track the connection and distinguish a
> reconnection from multiple connections.
>
> Addtionally this now also checks to workaround a problem with
> Op
During the review of the auth-token-hmac patches from Arne Schwabe, there
were still a few minor issues left out. To avoid holding back further
inclusion, we decided to add these patches on top of the patches from Arne.
The first patch, --disable-server fix, is only needed when running
./configur
When building with --disable-management, the compiler complains with
implicit declaration of function ‘ssl_clean_auth_token’. This is due to
the ssl_clean_auth_token() function being declared inside an #ifdef
ENABLE_MANAGEMENT fence where it should not be.
Signed-off-by: David Sommerseth
---
sr
A couple of places the documentation was not clear enough or not even
correct. Just improve this to avoid confusion later on.
Signed-off-by: David Sommerseth
---
src/openvpn/auth_token.h | 2 --
src/openvpn/ssl_common.h | 2 +-
2 files changed, 1 insertion(+), 3 deletions(-)
diff --git a/src/o
The final patches of the auth-token hmac support patches had a typo in
the P2MP_SERVER fencing breaking --disable-server builds. It used #if
instead of #ifdef.
While at it, also fix another missing P2MP_SERVER fencing causing the
compiler to complain about an unused variable in push.c
Signed-off