| Mon, 10 Aug 2020 18:52:09 +0300 |
Maxim Dounin |
SSL: fixed shutdown handling.
|
| Mon, 29 Jun 2020 17:15:51 +0300 |
Maxim Dounin |
SSL: fixed unexpected certificate requests (ticket #2008).
|
| Wed, 03 Jun 2020 19:11:32 +0300 |
Maxim Dounin |
SSL: added verify callback to ngx_ssl_trusted_certificate().
|
| Fri, 22 May 2020 17:30:12 +0300 |
Roman Arutyunyan |
SSL: client certificate validation with OCSP (ticket #1534).
|
| Fri, 27 Dec 2019 19:43:01 +0300 |
Maxim Dounin |
SSL: reworked posted next events again.
|
| Tue, 24 Dec 2019 17:24:59 +0300 |
Maxim Dounin |
SSL: reworked posted next events.
|
| Thu, 17 Oct 2019 16:02:24 +0300 |
Maxim Dounin |
SSL: available bytes handling (ticket #1431).
|
| Thu, 17 Oct 2019 16:02:13 +0300 |
Maxim Dounin |
SSL: improved ngx_ssl_recv_chain() to stop if c->read->ready is 0.
|
| Fri, 16 Aug 2019 18:16:21 +0300 |
Maxim Dounin |
SSL: lowered log level for WSAECONNABORTED errors on Windows.
|
| Mon, 11 Apr 2016 15:46:36 +0300 |
Sergey Kandaurov |
SSL: removed OpenSSL 0.9.7 compatibility.
|
| Tue, 26 Mar 2019 09:33:57 +0300 |
Nikolay Morozov |
SSL: missing free calls in $ssl_client_s_dn and $ssl_client_i_dn.
|
| Sat, 09 Mar 2019 03:03:56 +0300 |
Maxim Dounin |
SSL: support for parsing PEM certificates from memory.
|
| Sat, 09 Mar 2019 02:55:43 +0300 |
Maxim Dounin |
SSL: removed redundant "pkey" variable.
|
| Sun, 03 Mar 2019 16:49:02 +0300 |
Maxim Dounin |
SSL: use of the SSL_OP_NO_CLIENT_RENEGOTIATION option.
|
| Sun, 03 Mar 2019 16:48:06 +0300 |
Maxim Dounin |
SSL: server name callback changed to return fatal errors.
|
| Mon, 25 Feb 2019 16:42:54 +0300 |
Maxim Dounin |
SSL: adjusted session id context with dynamic certificates.
|
| Mon, 25 Feb 2019 16:42:23 +0300 |
Maxim Dounin |
SSL: passwords support for dynamic certificate loading.
|
| Mon, 25 Feb 2019 16:41:44 +0300 |
Maxim Dounin |
SSL: loading of connection-specific certificates.
|
| Mon, 25 Feb 2019 16:41:28 +0300 |
Maxim Dounin |
SSL: reworked ngx_ssl_certificate().
|
| Mon, 25 Feb 2019 16:41:15 +0300 |
Maxim Dounin |
SSL: removed logging of empty "(SSL:)" in ngx_ssl_error().
|
| Thu, 07 Feb 2019 19:39:35 +0300 |
Sergey Kandaurov |
SSL: fixed EVP_DigestFinal_ex() error message.
|
| Thu, 31 Jan 2019 19:36:51 +0300 |
Maxim Dounin |
SSL: separate checks for errors in ngx_ssl_read_password_file().
|
| Thu, 31 Jan 2019 19:28:07 +0300 |
Ruslan Ermilov |
SSL: explicitly zero out session ticket keys.
|
| Tue, 18 Dec 2018 15:15:15 +0300 |
Sergey Kandaurov |
SSL: avoid reading on pending SSL_write_early_data().
|
| Tue, 23 Oct 2018 22:11:48 +0300 |
Maxim Dounin |
SSL: explicitly set maximum version (ticket #1654).
stable-1.14
|
| Tue, 07 Aug 2018 02:15:28 +0300 |
Maxim Dounin |
SSL: enabled TLSv1.3 with BoringSSL.
stable-1.14
|
| Tue, 25 Sep 2018 14:00:04 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable signature algorithm".
stable-1.14
|
| Tue, 25 Sep 2018 13:59:53 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable key share".
stable-1.14
|
| Mon, 16 Jul 2018 17:47:20 +0300 |
Maxim Dounin |
SSL: fixed SSL_clear_options() usage with OpenSSL 1.1.0+.
stable-1.14
|
| Mon, 16 Jul 2018 17:47:18 +0300 |
Maxim Dounin |
SSL: logging levels of "unsupported protocol", "version too low".
stable-1.14
|
| Thu, 05 Jul 2018 20:45:29 +0300 |
Maxim Dounin |
SSL: logging level of "https proxy request" errors.
stable-1.14
|
| Thu, 15 Nov 2018 21:28:02 +0300 |
Maxim Dounin |
Core: ngx_explicit_memzero().
|
| Tue, 23 Oct 2018 22:11:48 +0300 |
Maxim Dounin |
SSL: explicitly set maximum version (ticket #1654).
|
| Tue, 25 Sep 2018 14:07:59 +0300 |
Ruslan Ermilov |
SSL: fixed unlocked access to sess_id->len.
|
| Tue, 25 Sep 2018 14:00:04 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable signature algorithm".
|
| Tue, 25 Sep 2018 13:59:53 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable key share".
|
| Fri, 21 Sep 2018 20:49:12 +0300 |
Sergey Kandaurov |
SSL: support for TLSv1.3 early data with OpenSSL.
|
| Fri, 21 Sep 2018 20:31:32 +0300 |
Maxim Dounin |
SSL: disabled renegotiation checks with SSL_OP_NO_RENEGOTIATION.
|
| Mon, 10 Sep 2018 18:57:39 +0300 |
Maxim Dounin |
SSL: restore handlers after blocking.
|
| Mon, 10 Sep 2018 18:57:19 +0300 |
Maxim Dounin |
SSL: corrected SSL_ERROR_WANT_WRITE / SSL_ERROR_WANT_READ logging.
|
| Tue, 07 Aug 2018 02:16:07 +0300 |
Maxim Dounin |
SSL: support for TLSv1.3 early data with BoringSSL.
|
| Tue, 07 Aug 2018 02:15:28 +0300 |
Maxim Dounin |
SSL: enabled TLSv1.3 with BoringSSL.
|
| Tue, 17 Jul 2018 12:53:23 +0300 |
Sergey Kandaurov |
SSL: save sessions for upstream peers using a callback function.
|
| Mon, 16 Jul 2018 17:47:48 +0300 |
Maxim Dounin |
SSL: use of the SSL_OP_NO_RENEGOTIATION option (ticket #1376).
|
| Mon, 16 Jul 2018 17:47:20 +0300 |
Maxim Dounin |
SSL: fixed SSL_clear_options() usage with OpenSSL 1.1.0+.
|
| Mon, 16 Jul 2018 17:47:18 +0300 |
Maxim Dounin |
SSL: logging levels of "unsupported protocol", "version too low".
|
| Thu, 05 Jul 2018 20:45:29 +0300 |
Maxim Dounin |
SSL: logging level of "https proxy request" errors.
|
| Wed, 06 Jun 2018 13:31:05 +0300 |
Sergey Kandaurov |
SSL: removed extra prototype.
|
| Tue, 22 Aug 2017 17:36:12 +0300 |
Maxim Dounin |
SSL: fixed possible use-after-free in $ssl_server_name.
|
| Tue, 22 Aug 2017 15:18:10 +0300 |
Maxim Dounin |
SSL: the $ssl_client_escaped_cert variable (ticket #857).
|
| Wed, 09 Aug 2017 15:03:27 +0300 |
Sergey Kandaurov |
Fixed calls to ngx_open_file() in certain places.
|
| Wed, 09 Aug 2017 14:59:46 +0300 |
Sergey Kandaurov |
Style.
|
| Tue, 25 Jul 2017 17:21:59 +0300 |
Sergey Kandaurov |
SSL: fixed typo in the error message.
|
| Wed, 03 May 2017 15:15:56 +0300 |
Sergey Kandaurov |
SSL: allowed renegotiation in client mode with OpenSSL < 1.1.0.
|
| Tue, 18 Apr 2017 16:08:46 +0300 |
Sergey Kandaurov |
SSL: compatibility with OpenSSL master branch.
|
| Tue, 18 Apr 2017 16:08:44 +0300 |
Sergey Kandaurov |
SSL: disabled renegotiation detection in client mode.
|
| Tue, 18 Apr 2017 15:12:38 +0300 |
Sergey Kandaurov |
SSL: added support for TLSv1.3 in ssl_protocols directive.
|
| Mon, 06 Feb 2017 18:38:06 +0300 |
Sergey Kandaurov |
SSL: clear error queue after OPENSSL_init_ssl().
|
| Fri, 23 Dec 2016 17:28:20 +0300 |
Maxim Dounin |
SSL: support AES256 encryption of tickets.
|
| Thu, 15 Dec 2016 19:00:23 +0300 |
Maxim Dounin |
SSL: backed out changeset e7cb5deb951d, reimplemented properly.
|
