Uploaded image for project: 'radsecproxy'
  1. radsecproxy
  2. RADSECPROXY-62

radsecproxy doesn't support TLSv1.1 or TLSv1.2

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • None
    • None
    • None
    • None

    Description

      When initiating SSL context, tlscommon.c has the following code:

      > ctx = SSL_CTX_new(TLSv1_method());
      > ...
      > ctx = SSL_CTX_new(DTLSv1_method());

      This makes OpenSSL negotiate TLSv1 but not TLSv1.1 or TLSv1.2.

      Attachments

        Activity

          People

            linus Linus Nordberg
            linus Linus Nordberg
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: