httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 40132] Expose ECC cipher suites (IETF RFC 4492) in OpenSSL to Apache
Date Tue, 05 May 2009 23:41:22 GMT

Vipul Gupta <> changed:

           What    |Removed                     |Added
  Attachment #18657|0                           |1
        is obsolete|                            |

--- Comment #6 from Vipul Gupta <>  2009-05-05 16:41:19 PST ---
Created an attachment (id=23614)
 --> (
Patch for exposing ECC cipher suites in openssl-1.0.0-beta2 to Apache 2.2.11 

I've cleaned up the patch and successfully used it to enable ECC ciphers in
Apache 2.2.11 using openssl-1.0.0-beta2. In the process, I've also addressed
comment #4 by wrapping ECC-specific functionality in

#if (SSL_LIBRARY_VERSION >= 0x00908000) && !defined(OPENSSL_NO_EC)

This way, if you have a recent version of OpenSSL compiled with OPENSSL_NO_EC,
you can pass the same flag when compiling Apache to leave out ECC support even
after the patch has been committed. 

NOTE: Be sure to apply the patch posted at to httpd-2.2.11 before
applying the ECC patch. Otherwise, you'll see compile-time errors about "STACK
undeclared". I wasted a few hours because of this. The patch for Bug 45521 was
checked into the Apache trunk after 2.2.11 was released.

Let me know if you encounter any issues.


Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message