[nginx] SSL: adopted session ticket handling for OpenSSL 1.1.0.
Sergey Kandaurov
pluknet at nginx.com
Mon Aug 22 15:54:36 UTC 2016
details: http://hg.nginx.org/nginx/rev/3eb1a92a2f05
branches:
changeset: 6660:3eb1a92a2f05
user: Sergey Kandaurov <pluknet at nginx.com>
date: Mon Aug 22 18:53:21 2016 +0300
description:
SSL: adopted session ticket handling for OpenSSL 1.1.0.
Return 1 in the SSL_CTX_set_tlsext_ticket_key_cb() callback function
to indicate that a new session ticket is created, as per documentation.
Until 1.1.0, OpenSSL didn't make a distinction between non-negative
return values.
See https://git.openssl.org/?p=openssl.git;a=commitdiff;h=5c753de for details.
diffstat:
src/event/ngx_event_openssl.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diffs (12 lines):
diff -r 3d8be8fb0149 -r 3eb1a92a2f05 src/event/ngx_event_openssl.c
--- a/src/event/ngx_event_openssl.c Thu Aug 18 14:49:48 2016 -0700
+++ b/src/event/ngx_event_openssl.c Mon Aug 22 18:53:21 2016 +0300
@@ -2986,7 +2986,7 @@ ngx_ssl_session_ticket_key_callback(ngx_
ngx_ssl_session_ticket_md(), NULL);
ngx_memcpy(name, key[0].name, 16);
- return 0;
+ return 1;
} else {
/* decrypt session ticket */
More information about the nginx-devel
mailing list