git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Arne Schwabe <arne@rfc2549.org>
	Fri, 17 Jul 2020 13:47:32 +0000 (15:47 +0200)
committer	Gert Doering <gert@greenie.muc.de>
	Mon, 20 Jul 2020 19:40:11 +0000 (21:40 +0200)
commit	ec7d0e8e0f8cd8f1c5fab58c795a59828eba6ae7
tree	612ee9aa878affc3acb8d36710a4cbe8cfaf60c6	tree
parent	df85950a61879517ae77472eeef526cdd1906662	commit \| diff

Drop support for OpenSSL 1.0.1

OpenSSL 1.0.1 was supported until 2016-12-31. Rhel6/Centos6 still
use this version but considering that RHEL7 and RHEL8 are already
out, these versions can also stay with OpenVPN 2.4.

All the supported Debian based distributions also come with at
least 1.0.2.

We (accidently) unconditionally compiled some key exporter code on
OpenSSL 1.0.2+ without problems. So always compile the whole
key exporter feature for OpenSSL.

This also allows the tls groups commit to be applied without
adding ifdefs to disable that functionality on OpenSSL 1.0.1

Signed-off-by: Arne Schwabe <arne@rfc2549.org>
Acked-by: Steffan Karger <steffan.karger@foxcrypto.com>
Message-Id: <20200717134739.21168-2-arne@rfc2549.org>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg20441.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>

.travis.yml		diff \| blob \| blame \| history
Changes.rst		diff \| blob \| blame \| history
INSTALL		diff \| blob \| blame \| history
configure.ac		diff \| blob \| blame \| history
src/openvpn/crypto.c		diff \| blob \| blame \| history
src/openvpn/openssl_compat.h		diff \| blob \| blame \| history
src/openvpn/options.c		diff \| blob \| blame \| history
src/openvpn/ssl_mbedtls.c		diff \| blob \| blame \| history
src/openvpn/ssl_openssl.c		diff \| blob \| blame \| history