Weblog

RSS

Patch to use mbed TLS 2.3.0

18 July 2016, 17:46
Apply the following patch to Hiawatha v10.3 to make it compile with mbed TLS v2.3.0. 
--- src/rproxy.h	:21:34. +0200
+++ src/rproxy.h	:29: +0200
@@ -19,6 +19,7 @@
 #include 
 #include 
 #ifdef ENABLE_TLS
+#include "mbedtls/platform.h"
 #include "mbedtls/ssl.h"
 #endif
 #include "ip.h"
--- src/tls.h	:45:44. +0100
+++ src/tls.h	:29: +0200
@@ -18,6 +18,7 @@
 
 #include 
 #include "liblist.h"
+#include "mbedtls/platform.h"
 #include "mbedtls/ssl.h"
 #include "mbedtls/x509.h"
 #include "mbedtls/version.h"
--- src/wigwam.c	:41:04. +0200
+++ src/wigwam.c	:30: +0200
@@ -33,6 +33,7 @@
 #include "filehashes.h"
 #include "mbedtls/md5.h"
 #ifdef ENABLE_TLS
+#include "mbedtls/platform.h"
 #include "mbedtls/ssl.h"
 #include "mbedtls/x509.h"
 #endif

Place this patch in a file called hiawatha-10.3.patch and use the following command from within the Hiawatha source directory to apply the patch:

patch -p0 < hiawatha-10.3.patch

After applying the patch, recompile Hiawatha.

Tags: TLS/SSL
by Hugo Leisink
samiux
19 July 2016, 10:20
To make the patch works, you need to do the following steps :

cd hiawatha-10.3/mbedtls
./upgrade

After that, apply the patch and then re-compile.

hiawatha -v

Hiawatha v10.3, cache, IPv6, Monitor, reverse proxy, TLS v2.3.0, Tomahawk, URL toolkit, XSLT
Copyright (c) by Hugo Leisink <>


Heiko
19 July 2016, 13:25
Works fine. Thank you.
Chris Wadge
22 July 2016, 05:32
If anybody wants to try out the new mbedTLS, there's a patched version of the Debian packages up here:
Peter
11 September 2016, 21:07
I've been using Chris Wadge's beta package on multiple servers since July 24th, and it works perfectly.
Back

All articles

All tags: Years:
Copyright © by Hugo Leisink. All rights reserved.
Built upon the .