[RFC] event/openssl: Add dynamic record size support for serving ssl trafic

W-Mark Kubacki wmark+nginx at hurrikane.de
Tue Jun 2 18:14:45 UTC 2015


2015-06-02 3:04 GMT+02:00 SplitIce <mat999 at gmail.com>:
> From memory SSL_CIPHER_is_AES is a BoringSSL addition isnt it? I did a quick
> look over the OpenSSL source and it does not seem like its been added
> either.
>
> I havent had a chance to compile this yet to confirm it, but if correct then
> this is not compatible with OpenSSL and possibly other SSL libraries.

My bad. It's a draft and, as you've found out, can be trivially fixed.

https://github.com/openssl/openssl/blob/c3d734701cd57575856bf9b542446811518dd28c/ssl/ssl_ciph.c#L596-L615

https://boringssl.googlesource.com/boringssl/+/4d4bff89bb8ec345d289412f0f7f135c6e51b1a6%5E!/

-- 
Mark



More information about the nginx-devel mailing list