[openssl-users] Query regarding upgrading TLS compatibility
Kyle Hamilton
aerowolf at gmail.com
Tue Apr 4 02:16:04 UTC 2017
Awesome, I sit corrected in this case. :)
In any case, though, it's generally best to plan to recompile. (Who says
that TLS 1.4 will be able to be implemented in a binary compatible
manner?) And even with this news, it is certainly a requirement that the
original poster must plan to replace the dynamic library used by his
application on the devices it is deployed on.
-Kyle H
On Mon, Apr 3, 2017 at 6:22 PM, Viktor Dukhovni <openssl-users at dukhovni.org>
wrote:
>
> > On Apr 3, 2017, at 8:42 PM, Kyle Hamilton <aerowolf at gmail.com> wrote:
> >
> >
> > In other words, it is very unlikely that TLS 1.3 can be implemented
> > in a binary-compatible manner. It is best if you plan to recompile
> > your application against the version of the library that implements
> > TLS 1.3.
>
> Unlikely or not, the OpenSSL 1.1.1 release will be binary compatible
> with 1.1.0 and will support TLS 1.3. There will be new features, but
> for most appliations, the software and protocol upgrade is transparent.
>
>
> --
> Viktor.
>
> --
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20170403/c6bcbdc7/attachment.html>
More information about the openssl-users
mailing list