Mercurial > hg > nginx
comparison src/event/ngx_event_openssl.c @ 6660:3eb1a92a2f05
SSL: adopted session ticket handling for OpenSSL 1.1.0.
Return 1 in the SSL_CTX_set_tlsext_ticket_key_cb() callback function
to indicate that a new session ticket is created, as per documentation.
Until 1.1.0, OpenSSL didn't make a distinction between non-negative
return values.
See https://git.openssl.org/?p=openssl.git;a=commitdiff;h=5c753de for details.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Mon, 22 Aug 2016 18:53:21 +0300 |
| parents | 3d8be8fb0149 |
| children | f28e74f02c88 |
comparison
equal
deleted
inserted
replaced
| 6659:3d8be8fb0149 | 6660:3eb1a92a2f05 |
|---|---|
| 2984 EVP_EncryptInit_ex(ectx, EVP_aes_128_cbc(), NULL, key[0].aes_key, iv); | 2984 EVP_EncryptInit_ex(ectx, EVP_aes_128_cbc(), NULL, key[0].aes_key, iv); |
| 2985 HMAC_Init_ex(hctx, key[0].hmac_key, 16, | 2985 HMAC_Init_ex(hctx, key[0].hmac_key, 16, |
| 2986 ngx_ssl_session_ticket_md(), NULL); | 2986 ngx_ssl_session_ticket_md(), NULL); |
| 2987 ngx_memcpy(name, key[0].name, 16); | 2987 ngx_memcpy(name, key[0].name, 16); |
| 2988 | 2988 |
| 2989 return 0; | 2989 return 1; |
| 2990 | 2990 |
| 2991 } else { | 2991 } else { |
| 2992 /* decrypt session ticket */ | 2992 /* decrypt session ticket */ |
| 2993 | 2993 |
| 2994 for (i = 0; i < keys->nelts; i++) { | 2994 for (i = 0; i < keys->nelts; i++) { |