TLS 1.2支持何时添加到OpenSSL? [英] When was TLS 1.2 support added to OpenSSL?

问题描述

OpenSSL 0.9.8x是否支持TLS1.2?我查看了OpenSSL的变更日志，但未找到有关此内容的任何信息: https://www. openssl.org/news/changelog.html

Does OpenSSL 0.9.8x support TLS1.2? I looked at the changelog for OpenSSL but didn't find any information on this: https://www.openssl.org/news/changelog.html

推荐答案

在官方变更日志中页面，在 1.0.0h和1.0.1之间的更改(2012年3月14日)下，您可以看到初始TLS v1.2支持.

On the official changelog page you provided, under Changes between 1.0.0h and 1.0.1 [14 Mar 2012] you can see Initial TLS v1.2 support.

*)添加TLS v1.2服务器支持以进行客户端身份验证. [史蒂夫·汉森]

*) Add TLS v1.2 server support for client authentication. [Steve Henson]

*)添加TLS v1.2客户端支持以进行客户端身份验证.保留缓存 握手记录的时间更长，因为我们不知道要使用的哈希算法 直到收到证书请求消息为止. [史蒂夫·汉森]

*) Add TLS v1.2 client side support for client authentication. Keep cache of handshake records longer as we don't know the hash algorithm to use until after the certificate request message is received. [Steve Henson]

*)初始TLS v1.2客户端支持.添加默认签名算法 扩展，包括我们支持的所有算法.解析新签名 客户端密钥交换中的格式.放宽对的ECC签名限制 RFC 5246中指示的TLS v1.2. [史蒂夫·汉森]

*) Initial TLS v1.2 client support. Add a default signature algorithms extension including all the algorithms we support. Parse new signature format in client key exchange. Relax some ECC signing restrictions for TLS v1.2 as indicated in RFC5246. [Steve Henson]

*)添加服务器对TLS v1.2签名算法扩展的支持.转变 需要时使用客户端摘要首选项将其更改为新的签名格式. 现在，所有服务器密码套件都应在TLS v1.2中正常工作.没有客户 目前尚不支持，并且不支持客户端证书. [史蒂夫·汉森]

*) Add server support for TLS v1.2 signature algorithms extension. Switch to new signature format when needed using client digest preference. All server ciphersuites should now work correctly in TLS v1.2. No client support yet and no support for client certificates. [Steve Henson]

*)初始TLS v1.2支持.向ssl代码添加新的SHA256摘要，进行切换 使用TLS v1.2及更高版本时，将其转换为SHA256 for PRF.添加基于新的SHA256 密码套件.目前只有RSA密钥交换密码套件可与 TLS v1.2.为TLS v1.2添加新选项，以替换旧的和过时的 带有SSL_OP_NO_TLSv1_2的SSL_OP_PKCS1_CHECK标志. TLSv1.2新方法 和版本检查. [史蒂夫·汉森]

*) Initial TLS v1.2 support. Add new SHA256 digest to ssl code, switch to SHA256 for PRF when using TLS v1.2 and later. Add new SHA256 based ciphersuites. At present only RSA key exchange ciphersuites work with TLS v1.2. Add new option for TLS v1.2 replacing the old and obsolete SSL_OP_PKCS1_CHECK flags with SSL_OP_NO_TLSv1_2. New TLSv1.2 methods and version checking. [Steve Henson]

*)初始TLSv1.1支持.由于TLSv1.1与TLS v1.0非常相似，因此只需要进行一些更改[...]

*) Initial TLSv1.1 support. Since TLSv1.1 is very similar to TLS v1.0 only a few changes are required [...]

TLS 1.2支持来自OpenSSL版本 1.0.1 .

TLS 1.2 support is from OpenSSL version 1.0.1.

OpenSSL 0.9.8x低于1.0.1，因此不支持TLS 1.2

OpenSSL 0.9.8x is lower than 1.0.1 so it does not support TLS 1.2

这篇关于TLS 1.2支持何时添加到OpenSSL?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！