[calling all patch XPerts !] [PATCH] RSA+DSA+ECC bundles

kyprizel kyprizel at gmail.com
Tue Mar 17 15:06:57 UTC 2015


Hi,
I refactored Robs code so it can be merged with latest nginx.
Multi certificate support works only for OpenSSL >= 1.0.2.
Only certificates with different crypto algorithms (ECC/RSA/DSA) can be
used b/c of OpenSSL limitations, otherwise (RSA+SHA-256 / RSA-SHA-1 for
example) only last specified in the config will be used.
Can you please review it.

Thank you.

On Tue, Oct 7, 2014 at 5:03 PM, shmick at riseup.net <shmick at riseup.net> wrote:

>
>
> Maxim Dounin wrote:
> > Hello!
> >
> > On Tue, Oct 07, 2014 at 11:31:56AM +0400, kyprizel wrote:
> >
> >> Updating patch for the last nginx isn't a problem - we need to hear from
> >> Maxim what was the problem with old patch (it wasn't applied that time -
> >> why should by applied a new one?) to fix it.
> >
> > http://mailman.nginx.org/pipermail/nginx-devel/2013-November/004475.html
>
> ok, so what is the plan for progression & inclusion ?
> do you believe there is enough interest and is the idea supported ?
> you think Rob's patch isn't feasible ?
> is there anybody who can take over and have they ?
>
> _______________________________________________
> nginx mailing list
> nginx at nginx.org
> http://mailman.nginx.org/mailman/listinfo/nginx
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20150317/b3aa7067/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: nginx_multicert0.patch
Type: application/octet-stream
Size: 48228 bytes
Desc: not available
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20150317/b3aa7067/attachment-0001.obj>


More information about the nginx mailing list