Hi Martin
On 25.12.2016 14.23, Martin Blumenstingl wrote:
I guess this worked on LEDE with PolarSSL with OpenVPN 2.3:
#define POLARSSL_KEY_EXCHANGE_DHE_RSA_ENABLED
while
//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
can you tell if I ran into some corner case (the affected server was
using OpenVPN 2.3.14, most probably with OpenSSL backend) or if this
is a real problem?
Thanks for the report. In commit
732c24a0cac4293b058c99ff7867fd13a2670eca ("mbedtls: sync with polarssl
config") Felix enabled some mbedTLS config options for legacy OpenVPN
client compatibility, this one should probably have been enabled as
well. It might depend on other options as well, I don't know mbedTLS
well enough to if that is all that's missing. I'm unable to test this at
the moment, but I should be able to do some testing before the end of
the year.
Regards,
Martin
/Magnus
_______________________________________________
Lede-dev mailing list
Lede-dev@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/lede-dev
