Hi, On 01/04/2021 14:37, Arne Schwabe wrote: > This option has been deprecated in OpenVPN 2.4 and the ciphers that allow > using this option fall all into the SWEET32 category of ciphers with > 64 bit block size. > > Patch V2: Remove superflous check in OpenSSL codepath to check keysize
Thanks for removing the extra check. > > Signed-off-by: Arne Schwabe <a...@rfc2549.org> Compile tested on Linux against: * OpenSSL 1.1.1 * OpenSSL 1.0.1 * OpenSSL 1.0.2 * mbedTLS 2.26.0 * mbedTLS 2.20.0 * mbedTLS 2.10.0 Windows+OpenSSL-1.1.1 compiled too (mingw). Basic connection tests (master vs master and master vs 2.5) performed with OpenSSL 1.1.1 and mbedTLS 2.26.0 on Linux. Acked-by: Antonio Quartulli <anto...@openvpn.net> -- Antonio Quartulli _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
