Before writing these patches against git, I wrote them as patches to rpm packages on my system and I performed several tests. When both packages had the patch included, the TLS version in use was 1.2. When only one of them had the patch included, the TLS version falled back to 1.0 (same as status quo). I did also tests using s_client: openssl s_client -CAfile /path/to/ca.pem -connect hostname:port -VERSION and the server rightfully accepted TLS 1.0 - TLS 1.2. Without the patch, only TLS 1.0 was accepted. David -- David Jaša, RHCE SPICE QE based in Brno GPG Key: 22C33E24 Fingerprint: 513A 060B D1B4 2A72 7F0D 0278 B125 CD00 22C3 3E24
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Spice-devel mailing list Spice-devel@xxxxxxxxxxxxxxxxxxxxx http://lists.freedesktop.org/mailman/listinfo/spice-devel