diff options
author | Arne Schwabe | 2021-11-12 14:02:31 +0100 |
---|---|---|
committer | Gert Doering | 2021-11-12 14:14:43 +0100 |
commit | 08081aa0a1536ac9e545f673f546dafa1692b714 (patch) | |
tree | 545013d1d00890d7b1584989812303624f5aefc6 /Changes.rst | |
parent | 96f27a29cd4c95dadc16f3ba22876742f426d1c2 (diff) | |
download | openvpn-08081aa0a1536ac9e545f673f546dafa1692b714.zip openvpn-08081aa0a1536ac9e545f673f546dafa1692b714.tar.gz |
Allow loading of non default providers
This allows OpenVPN to load non-default providers. This is mainly
useful for loading the legacy provider with --providers legacy default
Patch v4: use spaces to seperate providers, unload providers.
Patch v5: General cleanup, rename option to --providers, add
option to usage() and add an entry to Changes.rst
Patch v6: allow --providers also to be used (and be ignored) with mbed TLS
Signed-off-by: Arne Schwabe <arne@rfc2549.org>
Acked-by: Selva Nair <selva.nair@gmail.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Message-Id: <20211112130231.3799480-1-arne@rfc2549.org>
URL: https://www.mail-archive.com/search?l=mid&q=20211112130231.3799480-1-arne@rfc2549.org
Signed-off-by: Gert Doering <gert@greenie.muc.de>
Diffstat (limited to 'Changes.rst')
-rw-r--r-- | Changes.rst | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/Changes.rst b/Changes.rst index 6f04e59..7cceffc 100644 --- a/Changes.rst +++ b/Changes.rst @@ -50,6 +50,13 @@ Compatibility mode (``--compat-mode``) with older peers. The options ``--compat-mode`` allows UIs to provide users with an easy way to still connect to older servers. +OpenSSL 3.0 support + OpenSSL 3.0 has been added. Most of OpenSSL 3.0 changes are not user visible but + improve general compatibility with OpenSSL 3.0. ``--tls-cert-profile insecure`` + has been added to allow selecting the lowest OpenSSL security level (not + recommended, use only if you must). OpenSSL 3.0 no longer supports the Blowfish + (and other deprecated) algorithm by default and the new option ``--providers`` + allows loading the legacy provider to renable these algorithms. Deprecated features ------------------- |