On Thu, Jul 24, 2014 at 10:24 PM, David Woodhouse <dwmw2 at infradead.org> wrote: > On Thu, 2014-07-24 at 22:02 +0200, Nikos Mavrogiannopoulos wrote: >> I noticed that openconnect will block at "SSL negotiation with ...", >> when the peer would change its IP (it uses dyndns). From a quick glimpse >> it seems that there is no timeout enforced in the gnutls handshake, and >> that's what the attached patch does. > Thanks. Isn't that a one-time thing that lives in > openconnect_open_https() though, rather than being repeated in > cstp_handshake()? Correct, openconnect_open_https() is more suitable for that.
