Support and Certifications

Visit the following web pages for the latest support and certification information.

Changes for 8.0.2 GA

  • Driver Enhancements
    • The default version of the OpenSSL library has been upgraded to 3.5.6. As part of this upgrade, earlier version of the OpenSSL 3.0 library continues to be supported to provide the best protection for your data. The upgrade is available in the following OpenSSL library files:
      • Windows: ivopenssl.dll and ddopenssl.dll
      • Unix: ivopenssl.so and ddopenssl.so
    • The driver is now compiled with a Visual Studio 2022 compiler for the Windows platforms. As a result, you must have Microsoft Visual C/C++ runtime version 14.40.33810 or higher on your machine to run the driver.
    • The driver has been enhanced to support the TLSv1.3 cryptographic protocol for TLS encryption. You can configure the cryptographic protocols used by the driver with the Crypto Protocol Version (CryptoProtocolVersion) option. See TLS/SSL encryption and Crypto Protocol Version for details.
    • The driver has been enhanced to wait a specified number of seconds to execute an OpenEdge process when encountering a locked resource. You can configure the length of the wait using the new Lock Wait Timeout (LockWaitTimeout) connection option. See Lock Wait Timeout for details.
    • The default version of the OpenSSL library has been upgraded to 3.0. As part of this upgrade, earlier versions of the OpenSSL library are no longer supported to provide the best protection for your data. The upgrade is available in the following OpenSSL library files: xxopenssl30.dll (for Windows) and xxopenssl30.so [.sl] (for UNIX/Linux).

      The OpenSSL 3.0 library uses a set of shared libraries called providers to implement different types of cryptographic algorithms. The driver supports the following OpenSSL 3.0 providers: FIPS and default. See TLS/SSL server authentication for details.

    • The driver has been enhanced to support the Windows certificate store for TLS/SSL server authentication. See TLS/SSL server authentication for details.
    • A Password Encryption Tool, called ddencpwd, is now included with the product package. It encrypts passwords for secure handling in connection strings and odbc.ini files. At connection, the driver decrypts these passwords and passes them to the data source as required. See Password Encryption Tool (UNIX/Linux only) for details.
    • The driver has been enhanced to support TLS/SSL server authentication for the applications deployed in a server-less environment. The driver stores the TLS/SSL certificates in memory and lets applications use TLS/SSL server authentication without storing the truststore file on the disk. To use this enhancement, specify the content of the certificate in the updated Trust Store (Truststore) connection option or the new SQL_COPT_INMEMORY_TRUSTSTORECERT pre-connection attribute. See Using SQL_COPT_INMEMORY_TRUSTSTORECERT for details.
    • The driver has been enhanced to include timestamp in the internal packet logs by default. If you want to disable the timestamp logging in packet logs, set PacketLoggingOptions=1. The internal packet logging is not enabled by default. To enable it, set EnablePacketLogging=1.
  • Changed Behavior
    • The TLSv1.1 and TLSv1.0 cryptographic protocols are now disabled by default and have been removed as selectable options for the Crypto Protocol Version (CryptoProtocolVersion) option on the Setup dialog. These protocols are no longer considered secure and, therefore, are no longer recommended for use. However, the driver still supports them for legacy servers that do not support the TLSv1.3 or TLS1.2 protocols. See Crypto Protocol Version for details.
    • The Allowed OpenSSL Versions (AllowedOpenSSLVersions) connection option has been deprecated.