Ticket Change Details

Artifact ID: b8f3de1ae570c012f46f9ca63c638925b46a60ebcc698b05a0de94f527f06c08
Ticket: d0518a5645151339f345c259e25b512c2bf3d63f
tls::socket -cipher arg not working as expected when -tls1.3 is true
User & Date: anonymous on 2019-04-18 01:13:29

  1. icomment:
    After reading further, it seems that tls1.3 configuration will require hooks into 
    the SSL_CTX_set_ciphersuites() or SSL_set_ciphersuites() functions to configure 
    TLSv1.3 ciphersuites.  The functions SSL_CTX_get_ciphers() and SSL_get_ciphers() 
    will return the full list of ciphersuites that have been configured for both 
    TLSv1.2 and below and TLSv1.3. 
    The code in tls.c uses SSL_CTX_get_ciphers() and there is no function for the 
    ciphersuites functions.  As a consequence, it is not possible to configure tls1.3 
    for use with this version of tcltls.
  2. login: "anonymous"
  3. mimetype: "text/x-fossil-plain"
  4. priority changed to: "Immediate"
  5. resolution changed to: "Open"