https://issues.apache.org/bugzilla/show_bug.cgi?id=53952
Marcel Šebek <sebe...@post.cz> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #29458|0 |1 is obsolete| | --- Comment #14 from Marcel Šebek <sebe...@post.cz> --- Created attachment 30111 --> https://issues.apache.org/bugzilla/attachment.cgi?id=30111&action=edit Patch for tomcat native adding support for newer TLS versions Ok, I've tested the patches and found an error in tcnative part. Here is a fixed patch. The problem was that OpenSSL API is quite counter-intuitive. If one wants more than one protocol to be supported, SSLv23_server_method() should be called and unwanted protocols should then be disabled by SSL_OP_NO_*. Other *_server_methods() always make available just one specific version of SSL/TLS. To be precise, I've tested tcnative not with Tomcat, but with JBoss and analogical patch for jboss-web. The reason is that I'm primarily interested in JBoss and I don't know how to configure Tomcat. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org