Mercurial > hg > nginx-quic
comparison src/event/ngx_event_openssl.c @ 6660:3eb1a92a2f05
SSL: adopted session ticket handling for OpenSSL 1.1.0.
Return 1 in the SSL_CTX_set_tlsext_ticket_key_cb() callback function
to indicate that a new session ticket is created, as per documentation.
Until 1.1.0, OpenSSL didn't make a distinction between non-negative
return values.
See https://git.openssl.org/?p=openssl.git;a=commitdiff;h=5c753de for details.
author | Sergey Kandaurov <pluknet@nginx.com> |
---|---|
date | Mon, 22 Aug 2016 18:53:21 +0300 |
parents | 3d8be8fb0149 |
children | f28e74f02c88 |
comparison
equal
deleted
inserted
replaced
6659:3d8be8fb0149 | 6660:3eb1a92a2f05 |
---|---|
2984 EVP_EncryptInit_ex(ectx, EVP_aes_128_cbc(), NULL, key[0].aes_key, iv); | 2984 EVP_EncryptInit_ex(ectx, EVP_aes_128_cbc(), NULL, key[0].aes_key, iv); |
2985 HMAC_Init_ex(hctx, key[0].hmac_key, 16, | 2985 HMAC_Init_ex(hctx, key[0].hmac_key, 16, |
2986 ngx_ssl_session_ticket_md(), NULL); | 2986 ngx_ssl_session_ticket_md(), NULL); |
2987 ngx_memcpy(name, key[0].name, 16); | 2987 ngx_memcpy(name, key[0].name, 16); |
2988 | 2988 |
2989 return 0; | 2989 return 1; |
2990 | 2990 |
2991 } else { | 2991 } else { |
2992 /* decrypt session ticket */ | 2992 /* decrypt session ticket */ |
2993 | 2993 |
2994 for (i = 0; i < keys->nelts; i++) { | 2994 for (i = 0; i < keys->nelts; i++) { |