]> www.infradead.org Git - users/dwmw2/openconnect.git/commit
projects / users / dwmw2 / openconnect.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: e4fbc39) | patch
openssl-dtls: use DTLS 1.2 for PSK-NEGOTIATE
authorNikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
Wed, 21 Feb 2024 21:24:56 +0000 (22:24 +0100)
committerDaniel Lenski <dlenski@gmail.com>
Thu, 22 Feb 2024 20:53:51 +0000 (12:53 -0800)
commit7f81a2bf37fc19b76babbf1355d16fa6483edbfc
tree32b506d0f23001d71fd5d7aa542f444ed82dccd6tree
parente4fbc39852e26ebf1937d571c862c4e2e4d294e5commit | diff
openssl-dtls: use DTLS 1.2 for PSK-NEGOTIATE

Avoid reducing the security level for PSK-NEGOTIATE by
setting DTLS 1.2. This works well because all PSK-NEGOTIATE
ocserv servers are using gnutls that supports DTLS 1.2.

This addresses a previously undetermined issue with DTLS on centos7.

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
.gitlab-ci.yml diff | blob | history
openssl-dtls.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.