ASF Bugzilla – Attachment 36674 Details for
Bug 63594
Added support for TLS1.3 protocol from apache benchmark utility
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
Patch to ab.c that enables TLS1.3 protocol support.
tls13_ab.patch (text/plain), 2.03 KB, created by
abhilash
on 2019-07-23 07:00:11 UTC
(
hide
)
Description:
Patch to ab.c that enables TLS1.3 protocol support.
Filename:
MIME Type:
Creator:
abhilash
Created:
2019-07-23 07:00:11 UTC
Size:
2.03 KB
patch
obsolete
>--- default_ab.c 2019-07-18 10:34:35.686315244 +0530 >+++ ab.c 2019-07-23 12:14:17.445140948 +0530 >@@ -2160,7 +2160,13 @@ > #endif > > #ifdef HAVE_TLSV1_X >+ >+#if OPENSSL_VERSION_NUMBER >= 0x10101000L >+#define TLS1_X_HELP_MSG ", TLS1.1, TLS1.2, TLS1.3" >+#else > #define TLS1_X_HELP_MSG ", TLS1.1, TLS1.2" >+#endif >+ > #else > #define TLS1_X_HELP_MSG "" > #endif >@@ -2287,7 +2293,7 @@ > /* sort out command-line args and call test */ > int main(int argc, const char * const argv[]) > { >- int l; >+ int l, set_ciph; > char tmp[1024]; > apr_status_t status; > apr_getopt_t *opt; >@@ -2576,6 +2582,11 @@ > } else if (strncasecmp(opt_arg, "TLS1.2", 6) == 0) { > max_prot = TLS1_2_VERSION; > min_prot = TLS1_2_VERSION; >+#if OPENSSL_VERSION_NUMBER >= 0x10101000L >+ } else if (strncasecmp(opt_arg, "TLS1.3", 6) == 0) { >+ max_prot = TLS1_3_VERSION; >+ min_prot = TLS1_3_VERSION; >+#endif > } else if (strncasecmp(opt_arg, "TLS1", 4) == 0) { > max_prot = TLS1_VERSION; > min_prot = TLS1_VERSION; >@@ -2653,13 +2664,22 @@ > /* Keep memory usage as low as possible */ > SSL_CTX_set_mode (ssl_ctx, SSL_MODE_RELEASE_BUFFERS); > #endif >+ > if (ssl_cipher != NULL) { >- if (!SSL_CTX_set_cipher_list(ssl_ctx, ssl_cipher)) { >- fprintf(stderr, "error setting cipher list [%s]\n", ssl_cipher); >- ERR_print_errors_fp(stderr); >- exit(1); >- } >+#if OPENSSL_VERSION_NUMBER >= 0x10101000L >+ if ((max_prot == TLS1_3_VERSION) && (min_prot == TLS1_3_VERSION)) >+ set_ciph = SSL_CTX_set_ciphersuites(ssl_ctx, ssl_cipher); >+ else >+#endif >+ set_ciph = SSL_CTX_set_cipher_list(ssl_ctx, ssl_cipher); >+ >+ if (!set_ciph) { >+ fprintf(stderr, "error setting ciphersuite list [%s]\n", ssl_cipher); >+ ERR_print_errors_fp(stderr); >+ exit(1); >+ } > } >+ > if (verbosity >= 3) { > SSL_CTX_set_info_callback(ssl_ctx, ssl_state_cb); > }
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=36674">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 63594
: 36674