From patchwork Mon Jul 6 05:32:05 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: tincanteksup X-Patchwork-Id: 1202 X-Patchwork-Delegate: davids@openvpn.net Return-Path: Delivered-To: patchwork@openvpn.net Delivered-To: patchwork@openvpn.net Received: from director9.mail.ord1d.rsapps.net ([172.30.191.6]) by backend30.mail.ord1d.rsapps.net with LMTP id oKQ8H1xEA19ABwAAIUCqbw for ; Mon, 06 Jul 2020 11:33:48 -0400 Received: from proxy9.mail.ord1d.rsapps.net ([172.30.191.6]) by director9.mail.ord1d.rsapps.net with LMTP id uK4QH1xEA1/EfQAAalYnBA ; Mon, 06 Jul 2020 11:33:48 -0400 Received: from smtp10.gate.ord1d ([172.30.191.6]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) by proxy9.mail.ord1d.rsapps.net with LMTP id qKm3HlxEA18oHQAA7h+8OQ ; Mon, 06 Jul 2020 11:33:48 -0400 X-Spam-Threshold: 95 X-Spam-Score: 0 X-Spam-Flag: NO X-Virus-Scanned: OK X-Orig-To: openvpnslackdevel@openvpn.net X-Originating-Ip: [216.105.38.7] Authentication-Results: smtp10.gate.ord1d.rsapps.net; iprev=pass policy.iprev="216.105.38.7"; spf=pass smtp.mailfrom="openvpn-devel-bounces@lists.sourceforge.net" smtp.helo="lists.sourceforge.net"; dkim=fail (signature verification failed) header.d=sourceforge.net; dkim=fail (signature verification failed) header.d=sf.net; dkim=fail (signature verification failed) header.d=gmail.com; dmarc=fail (p=none; dis=none) header.from=gmail.com X-Suspicious-Flag: YES X-Classification-ID: 157f3258-bf9e-11ea-92e0-52540013bccb-1-1 Received: from [216.105.38.7] ([216.105.38.7:60778] helo=lists.sourceforge.net) by smtp10.gate.ord1d.rsapps.net (envelope-from ) (ecelerity 4.2.38.62370 r(:)) with ESMTPS (cipher=DHE-RSA-AES256-GCM-SHA384) id E3/8B-03690-B54430F5; Mon, 06 Jul 2020 11:33:48 -0400 Received: from [127.0.0.1] (helo=sfs-ml-2.v29.lw.sourceforge.com) by sfs-ml-2.v29.lw.sourceforge.com with esmtp (Exim 4.90_1) (envelope-from ) id 1jsT6x-0003rl-Jd; Mon, 06 Jul 2020 15:32:51 +0000 Received: from [172.30.20.202] (helo=mx.sourceforge.net) by sfs-ml-2.v29.lw.sourceforge.com with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jsT6v-0003rb-06 for openvpn-devel@lists.sourceforge.net; Mon, 06 Jul 2020 15:32:49 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sourceforge.net; s=x; h=Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To: MIME-Version:Content-Type:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=LzV5OgBgDk2aROAz0mWbPNQcUswquQHh7Wh/aiath4o=; b=Jy5X/pK2PXpmYi3PfMnnsnU+eR PxHnyVng0zhggbFE1NcNCYM7794HWh1h8tkrcT/obEGDIGCH5cNReUnFehsJBhqtIVf3oosMl74/+ gNjhXUxHqZmt6NQZmraxJ5NbSpmqzgb2AuYMdEmAXlN57kOXSSf7RyzBqcihD+fuzamQ=; DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x ; h=Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To:MIME-Version: Content-Type:Content-Transfer-Encoding:Content-ID:Content-Description: Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID: In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=LzV5OgBgDk2aROAz0mWbPNQcUswquQHh7Wh/aiath4o=; b=i83bFxYUMy1xCPDZr8eUVP9XV1 DYU1GyOGMMGIf3/u/Jj2h4mOin3oOUFRi0URiluNd0aCQVrQZtI4dH3LauzEyP0glbcei/88vu0Zs 6qpPE90Ft7Dkitgj7inMy4PzwoqUd3SjLuYmu0XptQM/T/vebHuqQZdIQGP8FcbqwPH4=; Received: from mail-wm1-f52.google.com ([209.85.128.52]) by sfi-mx-3.v28.lw.sourceforge.com with esmtps (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.92.2) id 1jsT6t-009PBE-AW for openvpn-devel@lists.sourceforge.net; Mon, 06 Jul 2020 15:32:48 +0000 Received: by mail-wm1-f52.google.com with SMTP id l17so39901511wmj.0 for ; Mon, 06 Jul 2020 08:32:47 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id; bh=LzV5OgBgDk2aROAz0mWbPNQcUswquQHh7Wh/aiath4o=; b=NOtjlHrJSe/6pWEWs2EiEWpz0ZA/thSnjwMxVyRB1MXV9wL7/wQ8hh7mPuj1l3kiGU FepeJbtLhdfhhL0NfPP5ncVq0D3R64vUUQ4XE+YcYC6J1te5gXvwNcUEuYU/ZdV93OTE jNkMRsmOvesfIzYU2+Q/neO33vIklSKumTv8YKly2Zgc69lqbXPNpuQGjXgVefBxYLb0 jZI3YrA5JIYDVErf+jN7P4U+SaWJuR6x1rYtrdRjqaqlDLz0fz6hMaj15XfCFrl3MPFm USSYl1vlqRw0W6wG+aDrXiVuTiKz8orbWbWTryDrg9Kuw+NfYfBhDjbvPErxt83xBoqB gXZw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id; bh=LzV5OgBgDk2aROAz0mWbPNQcUswquQHh7Wh/aiath4o=; b=QPPFxjORoQ6mJoDmo1dUc2XaJTSUHtMqRuBMKIgVeOEulpkH+Le0DKN6SPOsuPnNYN EwyGIo2wxP2PQNTHaFZ3sQci4dylvscohF8E/nQrusSK97YH+LmQ54EcNLQEzciAVvgq mBys6QilhvFYgQz0IfVC3eoCbZRyymcdpSFLqobQBAYwaZ/3UQaXBQ31aai0EvPItn6w PTn1kuUchbHzJuWNG+6SouC6mQNfQRQThjvP7p1Ft51+zzEzQHnAiavnNdszWWmS6BaL nf1Xxed6C1j5FylkjoOYah/cfAXzh6aTSF6JAY6Og+cVWoZMpIqrNCWiLMErdGBiLwUi 2pWA== X-Gm-Message-State: AOAM531v4gCFUzp3p5icpIZvj4ijoIs0VImEA+x4uvdwzwRvlRJ90kUG S7RHphvLHyogoDQCTcQfMHdGnjT7 X-Google-Smtp-Source: ABdhPJyo6IQky9W7peZ5OhHF+ox12hbdnt+y9Zl4CGI+8y9jHdqKj8cqcUGGYFEM4YgmEh06Hn0eNg== X-Received: by 2002:a1c:4e08:: with SMTP id g8mr51977108wmh.77.1594049551177; Mon, 06 Jul 2020 08:32:31 -0700 (PDT) Received: from localhost.localdomain (79-71-166-1.dynamic.dsl.as9105.com. [79.71.166.1]) by smtp.gmail.com with ESMTPSA id n14sm25462163wro.81.2020.07.06.08.32.30 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 06 Jul 2020 08:32:30 -0700 (PDT) From: Richard Bonhomme To: openvpn-devel@lists.sourceforge.net Date: Mon, 6 Jul 2020 16:32:05 +0100 Message-Id: <20200706153205.27957-1-tincanteksup@gmail.com> X-Mailer: git-send-email 2.17.1 X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (tincanteksup[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2) [209.85.128.52 listed in wl.mailspike.net] -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [209.85.128.52 listed in list.dnswl.org] -0.1 AWL AWL: Adjusted score from AWL reputation of From: address X-Headers-End: 1jsT6t-009PBE-AW Subject: [Openvpn-devel] [Patch] New man page corrections - tls-options.rst X-BeenThere: openvpn-devel@lists.sourceforge.net X-Mailman-Version: 2.1.21 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox Signed-off-by: Richard Bonhomme --- doc/man-sections/tls-options.rst | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/doc/man-sections/tls-options.rst b/doc/man-sections/tls-options.rst index bb8fc986..21549bdb 100644 --- a/doc/man-sections/tls-options.rst +++ b/doc/man-sections/tls-options.rst @@ -81,7 +81,7 @@ certificates and keys: https://github.com/OpenVPN/easy-rsa ``openssl crl`` and ``X509_LOOKUP_hash_dir()``\(3) for more information. - Similarly to the ``--crl-verify`` option CRLs are not mandatory - + Similar to the ``--crl-verify`` option, CRLs are not mandatory - OpenVPN will log the usual warning in the logs if the relevant CRL is missing, but the connection will be allowed. @@ -491,7 +491,7 @@ certificates and keys: https://github.com/OpenVPN/easy-rsa Exit on TLS negotiation failure. --tls-export-cert directory - Store the certificates the clients uses upon connection to this + Store the certificates the clients use upon connection to this directory. This will be done before ``--tls-verify`` is called. The certificates will use a temporary name and will be deleted when the tls-verify script returns. The file name used for the certificate is