Stanislas 04f7178c80 feat: add TLS 1.3 support, replace ecdh-curve with tls-groups (#1421) ...

## Summary

- Add TLS 1.3 support with `--tls-version-min` and `--tls-ciphersuites`
- Replace deprecated `ecdh-curve` with `tls-groups`
- Remove traditional DH support (OpenVPN 2.7 defaults to ECDH)

## New options

| Option | Default |
|--------|---------|
| `--tls-version-min` | `1.2` |
| `--tls-ciphersuites` |
`TLS_AES_256_GCM_SHA384:TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256`
|
| `--tls-groups` | `X25519:prime256v1:secp384r1:secp521r1` |

## Removed

- `--dh-type`, `--dh-bits`, `--dh-curve`
- DH parameter generation

Closes https://github.com/angristan/openvpn-install/issues/1231
Closes https://github.com/angristan/openvpn-install/issues/637
Closes https://github.com/angristan/openvpn-install/issues/1362

2025-12-15 12:13:03 +01:00

..

client-entrypoint.sh

feat: add configurable VPN subnet (#1394)

2025-12-14 10:54:52 +01:00

Dockerfile.client

Refactor Unbound setup and add E2E tests (#1340)

2025-12-11 13:14:56 +01:00

Dockerfile.server

feat: add CLI interface with subcommands (#1398)

2025-12-14 22:08:44 +01:00

server-entrypoint.sh

feat: add TLS 1.3 support, replace ecdh-curve with tls-groups (#1421)

2025-12-15 12:13:03 +01:00

validate-output.sh

Add structured logging system with color-coded output and file logging (#1321)

2025-12-09 15:52:37 +01:00