Page History

If your deployment depends on an old version of the OpenSSL crypto library, it may be unable to verify the signature on the new metadata aggregate. For instance, versions of OpenSSL prior to 0.9.8 are known to be incompatible with SHA-2 and therefore any platform dependent upon that depends on OpenSSL 0.9.7 (or earlier) will not be able to verify an XML signature that uses a SHA-2 digest algorithm.