[Pkg-openssl-devel] Bug#871987: Bug#871987: Bug#871987: openvpn
Gedalya
gedalya at gedalya.net
Sat Aug 26 11:12:02 UTC 2017
On 08/26/2017 07:08 PM, Kurt Roeckx wrote:
> On Sat, Aug 26, 2017 at 02:50:37PM +0800, Gedalya wrote:
>> On 08/26/2017 02:58 AM, Kurt Roeckx wrote:
>>
>>> openvpn doesn't seem to make use of the
>>> SSL_CTX_set_min_proto_version() function yet. I've attached a
>>> patch that I didn't even try to compile that I think should do the
>>> right thing.
>>>
>> Thanks for this!
>> It now connects fine with the setting 'tls-version-min 1.0'
>> Everything seems to work fine, including the 5 other tunnels on this box.
> I'm a little confused why you ran into this, it seems that openvpn
> is Debian is still linked to the libssl1.0.2, not libssl1.1. Did
> you build it yourself?
Yes, I did.
OpenVPN and pkcs11-helper build cleanly against libssl1.1 and work fine.
Not sure why new uploads haven't been made already. On my end I just wanted to try.
More information about the Pkg-openssl-devel
mailing list