You must also read the module security policy and follow the specific build and installation instructions included in it.įor an overview of some of the key concepts in OpenSSL 3.2 see the OpenSSL Guide. Information about how to configure and use the FIPS provider in your applications is available on the FIPS module man page. For example you can build OpenSSL 3.2 and use the OpenSSL 3.0.8 FIPS provider with it. Other OpenSSL Releases MAY use the validated FIPS provider, but MUST NOT build and use their own FIPS provider. Please follow the Security Policy instructions to download, build and install a validated OpenSSL FIPS provider. The following OpenSSL version(s) are FIPS validated: OpenSSL Versionįor a list of CVEs and their impact on validated FIPS providers, visit the CVEs and FIPS page. Extended support for 1.1.1 and 1.0.2 to gain access to security fixes for those versions is available. Users of these older versions are encouraged to upgrade to 3.2 or 3.0 as soon as possible. All older versions (including 1.1.1, 1.1.0, 1.0.2, 1.0.0 and 0.9.8) are now out of support and should not be used. Also available is the 3.1 series supported until 14th March 2025, and the 3.0 series which is a Long Term Support (LTS) version and is supported until 7th September 2026. Note: The latest stable version is the 3.2 series supported until 23rd November 2025. A list of mirror sites can be found here. (For an explanation of the numbering, see our release strategy.) All releases can be found at /source/old. The table below lists the latest releases for every branch. Please familiarize yourself with the license. Bugs and pull patches (issues and pull requests) should be filed on the GitHub repo. The master sources are maintained in our git repository, which is accessible over the network and cloned on GitHub, at.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |