Re: [Openvpn-devel] [PATCH] Fix man page and OSCP script: tls_serial_{n} is decimal

On 30/03/14 15:46, Gert Doering wrote: Hi, On Sun, Mar 30, 2014 at 12:48:37AM +0100, Steffan Karger wrote: 3 - Change OpenSSL builds to use hax representation I tend toward this one - user visible behaviour shouldn't change (unless unavoidable) depending on SSL library used. So for me this bo

Re: [Openvpn-devel] [PATCH] Fix man page and OSCP script: tls_serial_{n} is decimal

Hi, On Mon, Mar 31, 2014 at 9:42 AM, Jan Just Keijser wrote: > On 30/03/14 15:46, Gert Doering wrote: > >> Hi, >> >> On Sun, Mar 30, 2014 at 12:48:37AM +0100, Steffan Karger wrote: >> >>> 3 - Change OpenSSL builds to use hax representation >>> >> I tend toward this one - user visible behaviour s

Re: [Openvpn-devel] [PATCH] Set SSL_OP_NO_TICKET flag in SSL context for OpenSSL builds, to disable TLS stateless session resumption.

On Sunday 23 March 2014 14:27:43 Steffan Karger wrote: > +AC_EGREP_CPP(have_ssl_op_no_ticket, [ > +#include We just found that this breaks if the openssl headers are in a non-standard place. The test above sets the -I option in CFLAGS, but not in CPPFLAGS. So, maybe we should generally

Re: [Openvpn-devel] [PATCH] Set SSL_OP_NO_TICKET flag in SSL context for OpenSSL builds, to disable TLS stateless session resumption.

Hi, On 31-03-14 16:13, Heiko Hund wrote: > On Sunday 23 March 2014 14:27:43 Steffan Karger wrote: >> +AC_EGREP_CPP(have_ssl_op_no_ticket, [ >> +#include > > We just found that this breaks if the openssl headers are in a non-standard > place. The test above sets the -I option in CFLAGS,