On Wed, May 25, 2011, Thulasi wrote: > > The answer however has changed: experimental TLS v1.2 code is present in > HEAD > > and the 1.0.1 stable branch. The code hasn't been fully tested yet so some > > bugs may remain. There are some known interop problems with some ECC > > ciphersuites: that is OpenSSL can connect to some servers but not others. > At > > this point it isn't clear if the problem is with the servers or OpenSSL. > > >From ssl/tls1.h of today's snapshot, it looks to me that CipherSuites from > rfc 5288 and 5289(ECC and GCM TLS1.2 CipherSuites) are not added yet. >
Yes the initial TLS v1.2 code doesn't include GCM ciphersuites: they will be supported at some point though. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org