On Thu Mar 29 21:17:31 2012, steve wrote: > A temporary workaround for this is to apply these two patches to OpenSSL > 1.0.1: > > http://cvs.openssl.org/chngview?cn=22286 > http://cvs.openssl.org/chngview?cn=22306 > > And recompile OpenSSL with -DOPENSSL_NO_TLS1_2_CLIENT (e.g. supplied as > a command line option to config or Configure). I'm working on something > better. >
A new experimental workaround has been added to the master branch. See: http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0467ea686244 This is less disruptive as it doesn't disable TLS 1.2 or chop the cipher list. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
