Hi, On Fri, Mar 26, 2021 at 05:05:45PM +0100, Arne Schwabe wrote: > + /* Disable TLS renegotiations. OpenVPN's renegotiation creates new SSL > + * session and does not depend on this feature. And TLS renegotiations > have > + * been problematic in the past */ > + sslopt |= SSL_OP_NO_RENEGOTIATION;
Unfortunately this seems to be not available in OpenSSL 1.0.2, which
is what the OS ships on FreeBSD 11.4 (which is still supported).
../../../openvpn/src/openvpn/ssl_openssl.c:326:15: error: use of undeclared
identifier
'SSL_OP_NO_RENEGOTIATION'
sslopt |= SSL_OP_NO_RENEGOTIATION;
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany [email protected]
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-devel
