ssl: Limit SSL to only support TLSv1.2 and TLSv1.3HEAD master

This also restructures the SSL code to use the modern OpenSSL equivalent of these functions simplifying internal code to be more readable. Signed-off-by: GitHub <noreply@github.com>
author: Alan Antonuk <alan.antonuk@gmail.com> 2023-05-04 03:16:45 +0000
committer: Alan Antonuk <alan.antonuk@gmail.com> 2023-05-03 20:55:19 -0700
commit: f1e4042ff86403ef68a8177c7ad03772f6f6acd7 (patch)
tree: 01461ab192ff5439c0e104efde64d1b97b757239 /include
parent: d79e40f9f01cd28cb8a469187d9a12723424e499 (diff)
download: rabbitmq-c-f1e4042ff86403ef68a8177c7ad03772f6f6acd7.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/include/rabbitmq-c/ssl_socket.h b/include/rabbitmq-c/ssl_socket.h
index ddedbd2..64930cc 100644
--- a/include/rabbitmq-c/ssl_socket.h
+++ b/include/rabbitmq-c/ssl_socket.h
@@ -189,6 +189,9 @@ typedef enum {
  * connecting to the broker. Set min == max to restrict to just that
  * version.
  *
+ * As of v0.14.0 the defaults are TLS v1.2 and TLS v1.3. TLS v1.1 and lower are
+ * no longer supported.
+ *
  * \param [in,out] self An SSL/TLS socket object.
  * \param [in] min the minimum acceptable TLS version
  * \param [in] max the maxmium acceptable TLS version
author	Alan Antonuk <alan.antonuk@gmail.com>	2023-05-04 03:16:45 +0000
committer	Alan Antonuk <alan.antonuk@gmail.com>	2023-05-03 20:55:19 -0700
commit	f1e4042ff86403ef68a8177c7ad03772f6f6acd7 (patch)
tree	01461ab192ff5439c0e104efde64d1b97b757239 /include
parent	d79e40f9f01cd28cb8a469187d9a12723424e499 (diff)
download	rabbitmq-c-f1e4042ff86403ef68a8177c7ad03772f6f6acd7.tar.gz