Clean TLS code

2026-06-19 19:33:38 +08:00 · 2026-06-16 12:20:20 +08:00
parent b90587668c
commit 732a77c3a4
13 changed files with 381 additions and 589 deletions
--- a/tools/tlcp_client.c
+++ b/tools/tlcp_client.c
@@ -341,7 +341,7 @@ int tlcp_client_main(int argc, char *argv[])
 			if (--argc < 1) goto bad;
 			certoutfile = *(++argv);
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;
--- a/tools/tlcp_help.h
+++ b/tools/tlcp_help.h
@@ -35,5 +35,5 @@
 "    cat sm2signkey.pem > tlcpkey.pem\n"
 "    cat sm2enckey.pem >> tlcpkey.pem\n"
 "\n"
-"    gmssl tlcp_server -port 4431 -cert tlcpcert.pem -key tlcpkey.pem -pass 1234\n"
-"    gmssl tlcp_client -port 4431 -host 127.0.0.1 -cacert sm2rootcacert.pem\n"
+"    gmssl tlcp_server -port 4431 -cert tlcpcert.pem -key tlcpkey.pem -pass 1234 -cipher_suite TLS_ECC_SM4_CBC_SM3\n"
+"    gmssl tlcp_client -port 4431 -host 127.0.0.1 -cacert sm2rootcacert.pem -cipher_suite TLS_ECC_SM4_CBC_SM3\n"
--- a/tools/tlcp_server.c
+++ b/tools/tlcp_server.c
@@ -203,7 +203,7 @@ int tlcp_server_main(int argc , char **argv)
 			if (--argc < 1) goto bad;
 			cacertfile = *(++argv);
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;
--- a/tools/tls12_client.c
+++ b/tools/tls12_client.c
@@ -324,7 +324,7 @@ int tls12_client_main(int argc, char *argv[])
 			if (--argc < 1) goto bad;
 			infile = *(++argv);
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;
--- a/tools/tls12_server.c
+++ b/tools/tls12_server.c
@@ -260,7 +260,7 @@ int tls12_server_main(int argc , char **argv)
 		} else if (!strcmp(*argv, "-renegotiation_info")) {
 			renegotiation_info = 1;
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;
--- a/tools/tls13_client.c
+++ b/tools/tls13_client.c
@@ -476,7 +476,7 @@ int tls13_client_main(int argc, char *argv[])
 			if (--argc < 1) goto bad;
 			infile = *(++argv);
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;
--- a/tools/tls13_server.c
+++ b/tools/tls13_server.c
@@ -329,7 +329,7 @@ int tls13_server_main(int argc , char **argv)
 		} else if (!strcmp(*argv, "-tls13_change_cipher_spec")) {
 			tls13_change_cipher_spec = 1;
 		} else if (!strcmp(*argv, "-verbose")) {
-			verbose = 1;
+			verbose = 5;
 		} else {
 			fprintf(stderr, "%s: invalid option '%s'\n", prog, *argv);
 			return 1;