[OpenSIPS-Devel] [OpenSIPS/opensips] 5d6b98: tls_mgm: enforce at least TLSv1 when SSLv2.3 is used

Răzvan Crainea noreply at github.com
Fri Mar 20 13:23:52 EST 2020


  Branch: refs/heads/2.4
  Home:   https://github.com/OpenSIPS/opensips
  Commit: 5d6b98e6452574d2926c7f74aadc7abcea149b79
      https://github.com/OpenSIPS/opensips/commit/5d6b98e6452574d2926c7f74aadc7abcea149b79
  Author: Razvan Crainea <razvan at opensips.org>
  Date:   2020-03-20 (Fri, 20 Mar 2020)

  Changed paths:
    M modules/tls_mgm/tls_mgm.c

  Log Message:
  -----------
  tls_mgm: enforce at least TLSv1 when SSLv2.3 is used

Starting with Debian 10 (buster), the OpenSSL library is compiled with
TLSv1.2 as the minimum TLS version. Therefore, when specifying SSLv2.3,
basically only TLSv1.2 and TLSv1.3 can be used.
This commit sets the minimum version to TLSv1, since SSLv2.3 will soon
be deprecated.

Thanks go to @telematico for reporting this issue
Close #1986





More information about the Devel mailing list