From: Heiko Hund
utf8to16_size() takes the size of the to be converted string. This is
needed to convert MULTI_SZ strings, which contain inline NUL characters,
but can be useful in other cases as well.
Change-Id: I6b4aa3d63c0b684bf95841271c04bc5d9c37793b
Signed-off-by: Heiko Hund
Acked-by: Gert
Attention is currently required from: d12fk, flichtenheld, plaisthos.
cron2 has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/836?usp=email )
Change subject: service: add utf8to16 function that takes a size
...
Attention is currently required from: flichtenheld, plaisthos, stipa.
d12fk has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/824?usp=email )
Change subject: dns: support multiple domains without DHCP
.
Attention is currently required from: d12fk, flichtenheld, plaisthos, stipa.
Hello flichtenheld, plaisthos, stipa,
I'd like you to reexamine a change. Please visit
http://gerrit.openvpn.net/c/openvpn/+/824?usp=email
to look at the new patch set (#4).
The following approvals got outdated an
Attention is currently required from: cron2, flichtenheld, plaisthos.
d12fk has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/836?usp=email )
Change subject: service: add utf8to16 function that takes a size
...
Attention is currently required from: d12fk, plaisthos.
Hello flichtenheld, plaisthos,
I'd like you to reexamine a change. Please visit
http://gerrit.openvpn.net/c/openvpn/+/838?usp=email
to look at the new patch set (#2).
Change subject: dns: apply settings via script on unixoid systems
Attention is currently required from: d12fk, flichtenheld, plaisthos.
Hello cron2, flichtenheld, plaisthos,
I'd like you to reexamine a change. Please visit
http://gerrit.openvpn.net/c/openvpn/+/836?usp=email
to look at the new patch set (#2).
The following approvals got outdated and were
From: Arne Schwabe
This allows for only initialising one of the keys. This is needed
for epoch keys where key rotation of send/recv key can happen at
different time points.
Change-Id: If9e029bdac264dcc05b2d256c4d323315904a92b
Signed-off-by: Arne Schwabe
Acked-by: Gert Doering
---
This change
Attention is currently required from: flichtenheld, plaisthos.
cron2 has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/799?usp=email )
Change subject: Split init_key_ctx_bi into send/recv init
..
Patc
From: Arne Schwabe
Use crypto_epoch.c/h for the new functions since they are
linked to the epoch key usage in OpenVPN.
Change-Id: I3a1c6561f4d9a69e2a441d49dff620b4258a1bcc
Signed-off-by: Arne Schwabe
Acked-by: Gert Doering
---
This change was reviewed on Gerrit and approved by at least one
de
Attention is currently required from: flichtenheld, plaisthos.
cron2 has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/798?usp=email )
Change subject: Implement HKDF expand function based on RFC 8446
..
cron2 has submitted this change. (
http://gerrit.openvpn.net/c/openvpn/+/796?usp=email )
Change subject: Trigger renegotiation of data key if getting close to the AEAD
usage limit
..
Trigger renegotiation of data key if getting
cron2 has uploaded a new patch set (#15) to the change originally created by
plaisthos. ( http://gerrit.openvpn.net/c/openvpn/+/796?usp=email )
The following approvals got outdated and were removed:
Code-Review+1 by syzzer, Code-Review+2 by cron2
Change subject: Trigger renegotiation of data ke
So, I tested this as instructed, setting a ridiculously low limit
(1), and "it does rekey often". There is one interesting aspect
to it
2024-12-21 23:04:19 TLS: soft reset sec=91/3600 bytes=1043562/-1 pkts=6886/0
aead_limit_send=50100/8750 aead_limit_recv=6886/8750
.. with this low limit, w
From: Arne Schwabe
This implements the limitation of AEAD key usage[1] with a confidentiality
margin of 2^-57, the same as TLS 1.3. In this implementation, unlike
TLS 1.3 that counts the number of records, we count the actual number of
packets and plaintext blocks. TLS 1.3 can reasonable assume
Attention is currently required from: MaxF, plaisthos.
cron2 has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/796?usp=email )
Change subject: Trigger renegotiation of data key if getting close to the AEAD
usage limit
...
cron2 has submitted this change. (
http://gerrit.openvpn.net/c/openvpn/+/835?usp=email )
Change subject: dns: clone options via pointer instead of copy
..
dns: clone options via pointer instead of copy
Change-Id: I12b8bb26c0cb7
cron2 has uploaded a new patch set (#2) to the change originally created by
d12fk. ( http://gerrit.openvpn.net/c/openvpn/+/835?usp=email )
The following approvals got outdated and were removed:
Code-Review+2 by flichtenheld
Change subject: dns: clone options via pointer instead of copy
It's not immediately obvious to me why this is a useful change (except
"do not copy structs around if not needed"), but the actual change looks
good and should not change operational behaviour in any way - no memory
handling or anything involved, just "the midlayer" function referencing
structure e
Attention is currently required from: cron2, flichtenheld, plaisthos.
ralf_lici has posted comments on this change. (
http://gerrit.openvpn.net/c/openvpn/+/844?usp=email )
Change subject: Fix float support in P2P topology
..
P
20 matches
Mail list logo
