A User's Perspective:
We've been doing just this since ovpn began allowing inline certs. Works great!
Recommend.
Marvin
Sent from my iPhone
> On Jan 15, 2017, at 9:53 AM, David Sommerseth
> wrote:
>
>> On 15/01/17 14:52, Pavel Raiskup wrote:
>>> On Sunday, January 15, 2017 11:08:38 AM CET D
On 15/01/17 14:52, Pavel Raiskup wrote:
> On Sunday, January 15, 2017 11:08:38 AM CET David Sommerseth wrote:
>> On 15/01/17 07:17, Pavel Raiskup wrote:
>>> Adding a new --with-ca-bundle configure option. It's argument is
>>> used as default CA file when no --ca option is specified at
>>> runtime.
Carrying around the INLINE_TAG is not really efficient,
because it requires a strcmp() to be performed every
time we want to understand if the data is stored inline
or not.
Convert all the *_inline attributes to bool to make the
logic easier and checks more efficient.
Signed-off-by: Antonio Quart
Carrying around the INLINE_TAG is not really efficient,
because it requires a strcmp() to be performed every
time we want to understand if the data is stored inline
or not.
Convert all the *_inline attributes to bool to make the
logic easier and checks more efficient.
Signed-off-by: Antonio Quart
On Sunday, January 15, 2017 11:08:38 AM CET David Sommerseth wrote:
> On 15/01/17 07:17, Pavel Raiskup wrote:
> > Adding a new --with-ca-bundle configure option. It's argument is
> > used as default CA file when no --ca option is specified at
> > runtime.
> >
> > This option is primarily designed
On Sun, Jan 15, 2017 at 10:36:24AM +0100, Steffan Karger wrote:
> > diff --git a/src/openvpn/crypto.c b/src/openvpn/crypto.c
> > index 944f4c5..9a7745f 100644
> > --- a/src/openvpn/crypto.c
> > +++ b/src/openvpn/crypto.c
> > @@ -36,6 +36,7 @@
> > #include "crypto.h"
> > #include "error.h"
> > #i
On 15/01/17 07:17, Pavel Raiskup wrote:
> Adding a new --with-ca-bundle configure option. It's argument is
> used as default CA file when no --ca option is specified at
> runtime.
>
> This option is primarily designed for systems where users are
> allowed to manage trusted authorities for whole s
Hi,
Thanks, I like each version better. Even though it adds more lines than
it removes, quite some of it is because of correcting wrapping and
adding useful comments. I think it really improves the readability of
the code. Some (hopefully final) minor comments still though:
On 14-01-17 17:30,
On 15-01-17 10:12, Gert Doering wrote:
> On Sun, Jan 15, 2017 at 09:52:46AM +0100, Steffan Karger wrote:
>> On 15-01-17 07:17, Pavel Raiskup wrote:
> [..]
>>> This option is primarily designed for systems where users are
>>> allowed to manage trusted authorities for whole system (in one
>>> consol
Hi,
On Sun, Jan 15, 2017 at 09:52:46AM +0100, Steffan Karger wrote:
> On 15-01-17 07:17, Pavel Raiskup wrote:
[..]
> > This option is primarily designed for systems where users are
> > allowed to manage trusted authorities for whole system (in one
> > consolidated file; usually implemented in 'ca-
Hi,
On 15-01-17 07:17, Pavel Raiskup wrote:
> Adding a new --with-ca-bundle configure option. It's argument is
> used as default CA file when no --ca option is specified at
> runtime.
>
> This option is primarily designed for systems where users are
> allowed to manage trusted authorities for wh
11 matches
Mail list logo
