[Openvpn-devel] [PATCH] Check for ENABLE_MANAGEMENT for ENABLE_CLIENT_CR

When building a very minimal OpenVPN for OpenWRT with --disable-management among others, the compilaton fails due to ENABLE_CLIENT_CR being defined, although the management interface, which makes use of it, has been disabled. The attached simple patch checks for ENABLE_MANAGEMENT before definin

Re: [Openvpn-devel] [PATCH] Check for ENABLE_MANAGEMENT for ENABLE_CLIENT_CR

RT too, i just forgot to mention it: https://dev.openwrt.org/browser/packages/net/openvpn-polarssl/patches/400-fix-undefined-print_default.gateway.patch On Mon, 13 Feb 2012 16:07:04 +0100, David Sommerseth wrote: On 13/02/12 14:00, Igor Novgorodov wrote: I'm building latest GIT with: ./c

Re: [Openvpn-devel] [PATCH] Check for ENABLE_MANAGEMENT for ENABLE_CLIENT_CR

I'm building latest GIT with: ./configure \ --disable-debug \ --disable-plugins \ --disable-management \ --disable-socks \ --disable-password-save \ --disable-multi \ --disable-server \ --disable-pkcs11 \ --disable-http \ --disable-port-share \ --disable-def-auth \ --disable-pf \ --disable-lzo \

[Openvpn-devel] [PATCH 01/02] Add support for PolarSSL 1.1.x branch

Continuing to struggle with making OpenVPN as tiny as possible :) The attached patch adds checking for PolarSSL version on crypto_polarssl.c and depending on which version we are using (1.0.x or 1.1.x) chooses a new shiny havege_random() function, or an old ugly while{} loop hack to generate r

[Openvpn-devel] [PATCH 02/02] Remove calls to OpenSSL when building with --disable-ssl

The attached patch removes deprecated(?) calls to OpenSSL functions from crypro.c, which are called when USE_SSL is not defined. I'm not so deep into OpenVPN, so maybe these functions are needed, but i thought that all crypto-lib dependent functions should be moved to the corresponding crypto_

Re: [Openvpn-devel] [PATCH 01/02] Add support for PolarSSL 1.1.x branch

On 28.02.2012 1:37, Fabian Knittel wrote: Hi Igor, 2012/2/27 Igor Novgorodov: The attached patch adds checking for PolarSSL version on crypto_polarssl.c and depending on which version we are using (1.0.x or 1.1.x) chooses a new shiny havege_random() function, or an old ugly while{} loop hack

Re: [Openvpn-devel] [PATCH 02/02] Remove calls to OpenSSL when building with --disable-ssl

? On 28.02.2012 0:10, Alon Bar-Lev wrote: These are needed for 0.9.8 as far as I remember. On Mon, Feb 27, 2012 at 10:06 PM, Igor Novgorodov wrote: The attached patch removes deprecated(?) calls to OpenSSL functions from crypro.c, which are called when USE_SSL is not defined. I'm not so deep

Re: [Openvpn-devel] [PATCH 02/02] Remove calls to OpenSSL when building with --disable-ssl

On 28.02.2012 14:39, David Sommerseth wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 28/02/12 06:54, Igor Novgorodov wrote: Then maybe we should move these calls to crypto_openssl.c into crypto_init_lib() function to make crypto.c library-independent? And why

Re: [Openvpn-devel] [PATCH 02/02] Remove calls to OpenSSL when building with --disable-ssl

On 28.02.2012 15:34, David Sommerseth wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 28/02/12 12:16, Igor Novgorodov wrote: On 28.02.2012 14:39, David Sommerseth wrote: On 28/02/12 06:54, Igor Novgorodov wrote: Then maybe we should move these calls to crypto_openssl.c into

[Openvpn-devel] key exchange using a different physical channel

to create key_method_3_write() and key_method_3_read() where those functions will use my own way to get/set keys. Could be a possible way or am i completely wrong about how to do that? thanks in advance, Igor