Am 23.11.19 um 03:04 schrieb Selva Nair: > Hi, > > On Fri, Nov 22, 2019 at 9:34 AM Arne Schwabe <a...@rfc2549.org > <mailto:a...@rfc2549.org>> wrote: > > Before OpenSSL 1.1.1 there could be no mismatch between > compiled and actual OpenSSL version. With OpenSSL 1.1.1 we need > runtime detection to detect the actual best TLS version supported. > > Allowing this runtime detection also allows removing some of the > TLS 1.3/OpenSSL 1.1.1 #ifdefs > > Without this patch tls-min-version 1.3 or-highest will actually > downgrade to TLS 1.3 > > > I think that should read "TLS 1.2" not "TLS 1.3"
Yes, you are correct. @David, Gert, can you fix this one on the commit message or do you want a new version for that? Arne
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
