https://issues.apache.org/bugzilla/show_bug.cgi?id=53952
Marcel Šebek <sebe...@post.cz> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #29458|0 |1
is obsolete| |
--- Comment #14 from Marcel Šebek <sebe...@post.cz> ---
Created attachment 30111
--> https://issues.apache.org/bugzilla/attachment.cgi?id=30111&action=edit
Patch for tomcat native adding support for newer TLS versions
Ok, I've tested the patches and found an error in tcnative part. Here is a
fixed patch. The problem was that OpenSSL API is quite counter-intuitive. If
one wants more than one protocol to be supported, SSLv23_server_method() should
be called and unwanted protocols should then be disabled by SSL_OP_NO_*. Other
*_server_methods() always make available just one specific version of SSL/TLS.
To be precise, I've tested tcnative not with Tomcat, but with JBoss and
analogical patch for jboss-web. The reason is that I'm primarily interested in
JBoss and I don't know how to configure Tomcat.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
