[LEDE-DEV] [PATCH RFC 1/2] openvpn: update to 2.4_rc2
Magnus Kroken
mkroken at gmail.com
Sun Dec 25 06:17:43 PST 2016
Hi Martin
On 25.12.2016 14.23, Martin Blumenstingl wrote:
> I guess this worked on LEDE with PolarSSL with OpenVPN 2.3:
> #define POLARSSL_KEY_EXCHANGE_DHE_RSA_ENABLED
> while
> //#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
>
> can you tell if I ran into some corner case (the affected server was
> using OpenVPN 2.3.14, most probably with OpenSSL backend) or if this
> is a real problem?
Thanks for the report. In commit
732c24a0cac4293b058c99ff7867fd13a2670eca ("mbedtls: sync with polarssl
config") Felix enabled some mbedTLS config options for legacy OpenVPN
client compatibility, this one should probably have been enabled as
well. It might depend on other options as well, I don't know mbedTLS
well enough to if that is all that's missing. I'm unable to test this at
the moment, but I should be able to do some testing before the end of
the year.
> Regards,
> Martin
>
/Magnus
More information about the Lede-dev
mailing list