httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Michael A. Peters" <>
Subject Re: [users@httpd] Question about adding new cipher to openssl and then testing through apache httpd
Date Sun, 08 Jan 2017 03:57:30 GMT
I'm not sure you need to do anything in OpenSSL.

When I build Apache against LibreSSL, I have access to ciphers in 
LibreSSL that are (or were) not in OpenSSL.

As long as your new cipher doesn't trigger any blacklists in the mod_ssl 
source it should be picked up and available as long as a client supports 
it too.

On 01/07/2017 07:41 PM, William Bathurst wrote:
> Hello,
> I have created a custom version of Openssl v1.1 where I am testing a new
> cipher algorithm. I now wish to integrate and test in Apache HTTP. Where
> in the source code do I need update in order to get Apache HTTP to
> recognize the new cipher? I can list the new cipher using the "openssl
> ciphers" command:
> /usr/local/ssl/bin/openssl ciphers
> I initially tried compiling 2.4 with the custom OpenSSL and then listing
> the new ciphers in the
> SSLCipherSuite directive but they were not recognized.
> Server version: Apache/2.4.24-dev (Unix)
> Server built:   Jan  8 2017 00:11:07
> OpenSSL 1.1.1-TEST-dev  xx XXX xxxx
> Thanks in advance!

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message