diff options
author | Gert Doering <gert@greenie.muc.de> | 2015-05-24 15:02:34 +0200 |
---|---|---|
committer | Gert Doering <gert@greenie.muc.de> | 2015-05-24 20:48:18 +0200 |
commit | 6478c1f359e6b0ea2046d9e2801830753e53c06a (patch) | |
tree | 0c89677203dea1f09956d59b90a563d9c5deadfc /doc | |
parent | f4684ff2b5622a26c7c2e620e789b7dca8cfd778 (diff) | |
download | openvpn-6478c1f359e6b0ea2046d9e2801830753e53c06a.tar.gz openvpn-6478c1f359e6b0ea2046d9e2801830753e53c06a.tar.xz openvpn-6478c1f359e6b0ea2046d9e2801830753e53c06a.zip |
Disallow usage of --server-poll-timeout in --secret key mode.
The internal machinery wants TLS for this to work, so just add this
to the (long) list of options not allowed unless either --tls-client
or --tls-server is active. For added sanity, add an ASSERT() call
to the place where this combination caused a NULL ptr reference, and
document the restriction.
Fix trac #373
Signed-off-by: Gert Doering <gert@greenie.muc.de>
Acked-by: Steffan Karger <steffan.karger@fox-it.com>
Message-Id: <1432472554-24666-1-git-send-email-gert@greenie.muc.de>
URL: http://article.gmane.org/gmane.network.openvpn.devel/9736
Diffstat (limited to 'doc')
-rw-r--r-- | doc/openvpn.8 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/openvpn.8 b/doc/openvpn.8 index b1c2fab..3fff3f2 100644 --- a/doc/openvpn.8 +++ b/doc/openvpn.8 @@ -3783,6 +3783,10 @@ when polling possible remote servers to connect to in a round-robin fashion, spend no more than .B n seconds waiting for a response before trying the next server. +As this only makes sense in client-to-server setups, it cannot +be used in point-to-point setups using +.B \-\-secret +symmetrical key mode. .\"********************************************************* .TP .B \-\-explicit\-exit\-notify [n] |