So I installed the new nightly build with OpenSSL 1.1.1 and my browser (which supports TLS 1.3) does not use TLS 1.3 to connect to the IPFire web UI. It uses TLS 1.2 instead. Apache has been built against the same version of OpenSSL so I suppose it is aware of TLS 1.3. I used Firefox 64.0.2.
I will have a look at it.
Apache 2.4.36 is required for this: https://github.com/apache/httpd/blob/2.4.36/CHANGES I should have updated the package, too. Hrmpf. Will do so later on...
Yes, please do that. Please coordinate with Wolfgang, too.
I already read the comment from Peter that he will update the package, just before I wanted to start my "update-cycle". I'm fine with that, if you run into problems please contact me. BTW: I already have a configuration for HTTP/2 running, but I was not at all impressed by the speed (I added other HTTP/2 components for speed checking). This is why I gave this a low priority. Nevertheless, the feature will be ready eventually.
This is on MODIFIED by now: https://git.ipfire.org/?p=ipfire-2.x.git;a=commit;h=57bc05a53de810f2b4dca122f209be4b547f9d5f
Can confirm that this is working now. Tested with FF.
https://blog.ipfire.org/post/ipfire-2-21-core-update-128-is-ready-for-testing
https://blog.ipfire.org/post/ipfire-2-21-core-update-128-released