[OpenSIPS-Devel] [OpenSIPS/opensips] 4ae72c: tls_mgm: enforce at least TLSv1 when SSLv2.3 is used
Răzvan Crainea
noreply at github.com
Fri Mar 20 13:24:26 EST 2020
Branch: refs/heads/3.0
Home: https://github.com/OpenSIPS/opensips
Commit: 4ae72cae617af7653a1fb57c426f8bb65a6a8959
https://github.com/OpenSIPS/opensips/commit/4ae72cae617af7653a1fb57c426f8bb65a6a8959
Author: Razvan Crainea <razvan at opensips.org>
Date: 2020-03-20 (Fri, 20 Mar 2020)
Changed paths:
M modules/tls_mgm/tls_mgm.c
Log Message:
-----------
tls_mgm: enforce at least TLSv1 when SSLv2.3 is used
Starting with Debian 10 (buster), the OpenSSL library is compiled with
TLSv1.2 as the minimum TLS version. Therefore, when specifying SSLv2.3,
basically only TLSv1.2 and TLSv1.3 can be used.
This commit sets the minimum version to TLSv1, since SSLv2.3 will soon
be deprecated.
Thanks go to @telematico for reporting this issue
Close #1986
(cherry picked from commit 5d6b98e6452574d2926c7f74aadc7abcea149b79)
More information about the Devel
mailing list