I have not actually tested this on a FIPS- or otherwise-impaired system,
just test compiled ("no stray characters") and looked at the new error
message, which is indeed more informative.
Your patch has been applied to the master and release/2.6 branch
(I claim it falls under "documentation improve
cron2 has submitted this change. (
http://gerrit.openvpn.net/c/openvpn/+/456?usp=email )
Change subject: Extend the error message when TLS 1.0 PRF fails
..
Extend the error message when TLS 1.0 PRF fails
This error will probabl
cron2 has uploaded a new patch set (#9) to the change originally created by
plaisthos. ( http://gerrit.openvpn.net/c/openvpn/+/456?usp=email )
The following approvals got outdated and were removed:
Code-Review+2 by flichtenheld
Change subject: Extend the error message when TLS 1.0 PRF fails
...
Unfortunately I haven't received a response to my query for a full
name to put into the logs, so "yatta" will have to do.
Thanks to Arne for the detailed insights on what is happening here, and
why this is the correct fix (refactoring for "master" welcome :-) ).
I have not tested this "for real"
Acked-by: Gert Doering
Documentation improvements are always welcome :-) - and the new explanation
matches my (cursory) examination of the code.
Your patch has been applied to the master and release/2.6 branch (docs).
commit 139607286ce5d618ece8b17923ce12f418695f4c (master)
commit cbcecdb38a617
