Hi, 1.0.0 had this: /* SSL_OP_ALL: various bug workarounds that should be rather harmless. * This used to be 0x000FFFFFL before 0.9.7. */ #define SSL_OP_ALL 0x80000FFFL
1.0.1 now has: #define SSL_OP_NO_TLSv1_1 0x00000400L #define SSL_OP_ALL 0x80000BFFL So that basicly means that applications build with the 1.0.0 headers disable TLS v1.1 support. This causes a problem talking to somethng that support TLS 1.1 but doesn't support TLS 1.2. I suggest we change the value of SSL_OP_NO_TLSv1_1. Kurt ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
