On 09/03/2021 14:28, Gert Doering wrote:
Hi,
On Tue, Mar 09, 2021 at 06:26:08PM +0500, ???????? ?????????????? wrote:
we may keep combo.
both #ifdef EVP_PKEY_TLS1_PRF and comment related to supported openssl
versions (to drop support if we decide)
We could, but we won't.
(I can see the benefits, but I'm not the one maintaining these code
bits - Arne is, and he has stated a clear preference on doing it the
way it is currently done)
+1 ... This is really the right approach.
Either these "wannabe OpenSSL" libraries gets their act together and
really do fully support the OpenSSL API they claim to be compliant to -
and everything will work out just fine. Otherwise they break with
OpenVPN. If they start playing fun games with the version macros
originally defined by OpenSSL, it will break. It's that easy. We won't
spend (waste) time playing their compatibility games. If it breaks,
it's their bug not ours.
--
kind regards,
David Sommerseth
OpenVPN Inc
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
