From 7ffa801cf2a7d0a4e55b84908dede6493c7ae73d Mon Sep 17 00:00:00 2001 From: Vladislav Vaintroub Date: Wed, 21 Jul 2021 21:26:25 +0200 Subject: [PATCH] MDEV-22221 Compile WolfSSL with TLSv1.3 support --- extra/wolfssl/CMakeLists.txt | 4 +++- extra/wolfssl/user_settings.h.in | 10 ++++++++++ 2 files changed, 13 insertions(+), 1 deletion(-) diff --git a/extra/wolfssl/CMakeLists.txt b/extra/wolfssl/CMakeLists.txt index 908e27734b9..d14ef49ea9c 100644 --- a/extra/wolfssl/CMakeLists.txt +++ b/extra/wolfssl/CMakeLists.txt @@ -50,7 +50,9 @@ SET(WOLFSSL_SOURCES ${WOLFSSL_SRCDIR}/tls.c ${WOLFSSL_SRCDIR}/wolfio.c ${WOLFSSL_SRCDIR}/ocsp.c - ${WOLFSSL_SRCDIR}/ssl.c) + ${WOLFSSL_SRCDIR}/ssl.c + ${WOLFSSL_SRCDIR}/tls13.c) + ADD_DEFINITIONS(-DWOLFSSL_LIB -DBUILDING_WOLFSSL) INCLUDE_DIRECTORIES(BEFORE ${CMAKE_CURRENT_SOURCE_DIR}/wolfssl) diff --git a/extra/wolfssl/user_settings.h.in b/extra/wolfssl/user_settings.h.in index 4adb27142d9..9e65c5adf18 100644 --- a/extra/wolfssl/user_settings.h.in +++ b/extra/wolfssl/user_settings.h.in @@ -23,6 +23,16 @@ #define OPENSSL_ALL #define WOLFSSL_ALLOW_TLSV10 #define NO_OLD_TIMEVAL_NAME + +/* TLSv1.3 definitions (all needed to build) */ +#define WOLFSSL_TLS13 +#define HAVE_HKDF +#define HAVE_TLS_EXTENSIONS +#define HAVE_SUPPORTED_CURVES +#define HAVE_FFDHE_2048 +#define WC_RSA_PSS +/* End of TLSv1.3 defines */ + /* FP_MAX_BITS is set high solely to satisfy ssl_8k_key.test WolfSSL will use more stack space with it, with fastmath