[RFC] event/openssl: Add dynamic record size support for serving ssl trafic
W-Mark Kubacki
wmark+nginx at hurrikane.de
Tue Jun 2 18:14:45 UTC 2015
2015-06-02 3:04 GMT+02:00 SplitIce <mat999 at gmail.com>:
> From memory SSL_CIPHER_is_AES is a BoringSSL addition isnt it? I did a quick
> look over the OpenSSL source and it does not seem like its been added
> either.
>
> I havent had a chance to compile this yet to confirm it, but if correct then
> this is not compatible with OpenSSL and possibly other SSL libraries.
My bad. It's a draft and, as you've found out, can be trivially fixed.
https://github.com/openssl/openssl/blob/c3d734701cd57575856bf9b542446811518dd28c/ssl/ssl_ciph.c#L596-L615
https://boringssl.googlesource.com/boringssl/+/4d4bff89bb8ec345d289412f0f7f135c6e51b1a6%5E!/
--
Mark
More information about the nginx-devel
mailing list