Pascal Knecht (client and server) for their work on this.
Because the use of TLS 1.3 with these EAP methods is not yet standardized (two
Internet-Drafts are being worked on), the default maximum version is currently
- set to TLS 1.2, which is now also the default minimum version.
+ set to TLS 1.2, which is now also the default minimum version. However the TNC
+ test scenarios using PT-TLS transport already use TLS 1.3.
- Other improvements for libtls also affect older TLS versions. For instance, we
added support for ECDH with Curve25519/448 (DH groups may also be configured
# initialize & set some vars
# ============================
-AC_INIT([strongSwan],[5.9.2rc1])
+AC_INIT([strongSwan],[5.9.2rc2])
AM_INIT_AUTOMAKE(m4_esyscmd([
echo tar-ustar
echo subdir-objects
: ${KERNELPATCH=ha-5.0-abicompat.patch.bz2}
# strongSwan version used in tests
-: ${SWANVERSION=5.9.2rc1}
+: ${SWANVERSION=5.9.2rc2}
# Build directory where the guest kernel and images will be built
: ${BUILDDIR=$TESTDIR/build}