From 3f072330e9c7a97ace6274cce0024d1972f32133 Mon Sep 17 00:00:00 2001 From: Daniel McCarney Date: Sat, 21 Mar 2026 09:16:24 -0400 Subject: [PATCH] rustls-ffi 0.15 -> 0.15.1 Additionally, log the client hello supported key exchange groups if provided. --- .github/workflows/linux.yml | 2 +- src/tls_core.c | 7 +++++++ 2 files changed, 8 insertions(+), 1 deletion(-) diff --git a/.github/workflows/linux.yml b/.github/workflows/linux.yml index 4c223ab..f3e2db7 100644 --- a/.github/workflows/linux.yml +++ b/.github/workflows/linux.yml @@ -54,7 +54,7 @@ jobs: # aws-lc-sys v0.21.1 is not building due to compiler warnings - aws-lc-rs rustls-version: - - v0.15.0 + - v0.15.1 - main build: - name: mod_tls diff --git a/src/tls_core.c b/src/tls_core.c index f2e7b5c..3485350 100644 --- a/src/tls_core.c +++ b/src/tls_core.c @@ -522,6 +522,13 @@ static const rustls_certified_key *extract_client_hello_values( "client supports signature scheme: %x", (int)n); } } + if (APLOGctrace4(c) && hello->named_groups.len > 0) { + for (i = 0; i < hello->named_groups.len; ++i) { + n = hello->named_groups.data[i]; + ap_log_cerror(APLOG_MARK, APLOG_TRACE4, 0, c, + "client supports key exchange group: %x", (int)n); + } + } if ((len = rustls_slice_slice_bytes_len(hello->alpn)) > 0) { apr_array_header_t *alpn = apr_array_make(c->pool, 5, sizeof(const char*)); const char *protocol;