Mercurial > hg > nginx-quic
view src/os/win32/ngx_process.h @ 8717:e06283038ec8 quic
QUIC: clear SSL_OP_ENABLE_MIDDLEBOX_COMPAT on SSL context switch.
The SSL_OP_ENABLE_MIDDLEBOX_COMPAT option is provided by QuicTLS and enabled
by default in the newly created SSL contexts. SSL_set_quic_method() is used
to clear it, which is required for SSL handshake to work on QUIC connections.
Switching context in the ngx_http_ssl_servername() SNI callback overrides SSL
options from the new SSL context. This results in the option set again.
Fix is to explicitly clear it when switching to another SSL context.
Initially reported here (in Russian):
http://mailman.nginx.org/pipermail/nginx-ru/2021-November/063989.html
author | Sergey Kandaurov <pluknet@nginx.com> |
---|---|
date | Tue, 07 Dec 2021 15:49:51 +0300 |
parents | 8b84d60ef13d |
children |
line wrap: on
line source
/* * Copyright (C) Igor Sysoev * Copyright (C) Nginx, Inc. */ #ifndef _NGX_PROCESS_H_INCLUDED_ #define _NGX_PROCESS_H_INCLUDED_ typedef DWORD ngx_pid_t; #define NGX_INVALID_PID 0 #define ngx_getpid GetCurrentProcessId #define ngx_getppid() 0 #define ngx_log_pid ngx_pid #define NGX_PROCESS_SYNC_NAME \ (sizeof("ngx_cache_manager_mutex_") + NGX_INT32_LEN) typedef uint64_t ngx_cpuset_t; typedef struct { HANDLE handle; ngx_pid_t pid; char *name; HANDLE term; HANDLE quit; HANDLE reopen; u_char term_event[NGX_PROCESS_SYNC_NAME]; u_char quit_event[NGX_PROCESS_SYNC_NAME]; u_char reopen_event[NGX_PROCESS_SYNC_NAME]; unsigned just_spawn:1; unsigned exiting:1; } ngx_process_t; typedef struct { char *path; char *name; char *args; char *const *argv; char *const *envp; HANDLE child; } ngx_exec_ctx_t; ngx_pid_t ngx_spawn_process(ngx_cycle_t *cycle, char *name, ngx_int_t respawn); ngx_pid_t ngx_execute(ngx_cycle_t *cycle, ngx_exec_ctx_t *ctx); #define ngx_debug_point() #define ngx_sched_yield() SwitchToThread() #define NGX_MAX_PROCESSES (MAXIMUM_WAIT_OBJECTS - 4) #define NGX_PROCESS_RESPAWN -2 #define NGX_PROCESS_JUST_RESPAWN -3 extern int ngx_argc; extern char **ngx_argv; extern char **ngx_os_argv; extern ngx_int_t ngx_last_process; extern ngx_process_t ngx_processes[NGX_MAX_PROCESSES]; extern ngx_pid_t ngx_pid; extern ngx_pid_t ngx_parent; #endif /* _NGX_PROCESS_H_INCLUDED_ */