Just following up on this I notice that support for v1.1 and v1.2 were added in:
Changes between 1.0.0h and 1.0.1 [14 Mar 2012] We upgraded to 1.0.0o for our server recently and in our SSLv3 disabling testing, we discovered that the linux build appears to support 1.1 and 1.2 (using the openssl s_client command line interface) but the Windows version doesn't; since they're both built from the same source, is there any explanation for this that I'm not catching - does the change line above imply that some support for 1.1 and 1.2 was included in some later versions of 1.0.0? -----Original Message----- From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Matt Caswell Sent: October-20-14 4:08 PM To: openssl-users@openssl.org Subject: Re: TLSv1.1 and TLSv1.2 On 20/10/14 23:59, Nou Dadoun wrote: > This should be a short question (for a change), am I correct in assuming that > the earliest version of openssl which provided support for TLSv1.1 and > TLSv1.2 is openssl 1.0.1? > > i.e. there's no support for those in 0.9.8 (soon to be deprecated) or 1.0.0? > > One of our products uses 0.9.8 for the FIPS certification and I'm now seeing > that it doesn't seem to support 1.1 or 1.2. > Correct. You can check the change log here: https://www.openssl.org/news/changelog.html See the entries for TLS1.1 and TLS1.2 support under the section titled "Changes between 1.0.0h and 1.0.1 [14 Mar 2012]". Matt ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
