Details
Description
The OpenSSL SSL_OP_NO_TLSvxxx options are deprecated for use in SSL_CTX_set_options().
As of OpenSSL 1.1 way to specify TLS versions is through a min-version and max-version scheme - this is more code future proof.
You can specify a minimum version and 0 for the maximum meaning the latest version.
Proton's interface to this allows more than can be specified using the min/max API as you can specify each protocol individually.
The proton code is also not future proof in that it "knows" about each TLS protocol individually in the code.
Attachments
Attachments
Issue Links
- is a clone of
-
PROTON-1989 TLS Configuration does not support TLSv1_3 in OpenSSL v1.1.1
- Closed