[docs] [issue22987] ssl module documentation: incorrect compatibility matrix

Antoine Pitrou report at bugs.python.org
Wed Dec 3 17:13:44 CET 2014


Antoine Pitrou added the comment:

Alex is right. The current doc was valid for older OpenSSL versions, which sent a SSLv2 hello with SSLv23.

Reference from the OpenSSL docs:

"""If the cipher list does not contain any SSLv2 ciphersuites (the default cipher list does not) or extensions are required (for example server name) a client will send out TLSv1 client hello messages including extensions and will indicate that it also understands TLSv1.1, TLSv1.2 and permits a fallback to SSLv3. A server will support SSLv3, TLSv1, TLSv1.1 and TLSv1.2 protocols."""

(https://www.openssl.org/docs/ssl/SSL_CTX_new.html)

----------

_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue22987>
_______________________________________


More information about the docs mailing list