| Tue, 18 Dec 2018 15:15:15 +0300 |
Sergey Kandaurov |
SSL: avoid reading on pending SSL_write_early_data().
|
| Tue, 23 Oct 2018 22:11:48 +0300 |
Maxim Dounin |
SSL: explicitly set maximum version (ticket #1654).
stable-1.14
|
| Tue, 07 Aug 2018 02:15:28 +0300 |
Maxim Dounin |
SSL: enabled TLSv1.3 with BoringSSL.
stable-1.14
|
| Tue, 25 Sep 2018 14:00:04 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable signature algorithm".
stable-1.14
|
| Tue, 25 Sep 2018 13:59:53 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable key share".
stable-1.14
|
| Mon, 16 Jul 2018 17:47:20 +0300 |
Maxim Dounin |
SSL: fixed SSL_clear_options() usage with OpenSSL 1.1.0+.
stable-1.14
|
| Mon, 16 Jul 2018 17:47:18 +0300 |
Maxim Dounin |
SSL: logging levels of "unsupported protocol", "version too low".
stable-1.14
|
| Thu, 05 Jul 2018 20:45:29 +0300 |
Maxim Dounin |
SSL: logging level of "https proxy request" errors.
stable-1.14
|
| Thu, 15 Nov 2018 21:28:02 +0300 |
Maxim Dounin |
Core: ngx_explicit_memzero().
|
| Tue, 23 Oct 2018 22:11:48 +0300 |
Maxim Dounin |
SSL: explicitly set maximum version (ticket #1654).
|
| Tue, 25 Sep 2018 14:07:59 +0300 |
Ruslan Ermilov |
SSL: fixed unlocked access to sess_id->len.
|
| Tue, 25 Sep 2018 14:00:04 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable signature algorithm".
|
| Tue, 25 Sep 2018 13:59:53 +0300 |
Maxim Dounin |
SSL: logging level of "no suitable key share".
|
| Fri, 21 Sep 2018 20:49:12 +0300 |
Sergey Kandaurov |
SSL: support for TLSv1.3 early data with OpenSSL.
|
| Fri, 21 Sep 2018 20:31:32 +0300 |
Maxim Dounin |
SSL: disabled renegotiation checks with SSL_OP_NO_RENEGOTIATION.
|
| Mon, 10 Sep 2018 18:57:39 +0300 |
Maxim Dounin |
SSL: restore handlers after blocking.
|
| Mon, 10 Sep 2018 18:57:19 +0300 |
Maxim Dounin |
SSL: corrected SSL_ERROR_WANT_WRITE / SSL_ERROR_WANT_READ logging.
|
| Tue, 07 Aug 2018 02:16:07 +0300 |
Maxim Dounin |
SSL: support for TLSv1.3 early data with BoringSSL.
|
| Tue, 07 Aug 2018 02:15:28 +0300 |
Maxim Dounin |
SSL: enabled TLSv1.3 with BoringSSL.
|
| Tue, 17 Jul 2018 12:53:23 +0300 |
Sergey Kandaurov |
SSL: save sessions for upstream peers using a callback function.
|
| Mon, 16 Jul 2018 17:47:48 +0300 |
Maxim Dounin |
SSL: use of the SSL_OP_NO_RENEGOTIATION option (ticket #1376).
|
| Mon, 16 Jul 2018 17:47:20 +0300 |
Maxim Dounin |
SSL: fixed SSL_clear_options() usage with OpenSSL 1.1.0+.
|
| Mon, 16 Jul 2018 17:47:18 +0300 |
Maxim Dounin |
SSL: logging levels of "unsupported protocol", "version too low".
|
| Thu, 05 Jul 2018 20:45:29 +0300 |
Maxim Dounin |
SSL: logging level of "https proxy request" errors.
|
| Wed, 06 Jun 2018 13:31:05 +0300 |
Sergey Kandaurov |
SSL: removed extra prototype.
|
| Tue, 22 Aug 2017 17:36:12 +0300 |
Maxim Dounin |
SSL: fixed possible use-after-free in $ssl_server_name.
|
| Tue, 22 Aug 2017 15:18:10 +0300 |
Maxim Dounin |
SSL: the $ssl_client_escaped_cert variable (ticket #857).
|
| Wed, 09 Aug 2017 15:03:27 +0300 |
Sergey Kandaurov |
Fixed calls to ngx_open_file() in certain places.
|
| Wed, 09 Aug 2017 14:59:46 +0300 |
Sergey Kandaurov |
Style.
|
| Tue, 25 Jul 2017 17:21:59 +0300 |
Sergey Kandaurov |
SSL: fixed typo in the error message.
|
| Wed, 03 May 2017 15:15:56 +0300 |
Sergey Kandaurov |
SSL: allowed renegotiation in client mode with OpenSSL < 1.1.0.
|
| Tue, 18 Apr 2017 16:08:46 +0300 |
Sergey Kandaurov |
SSL: compatibility with OpenSSL master branch.
|
| Tue, 18 Apr 2017 16:08:44 +0300 |
Sergey Kandaurov |
SSL: disabled renegotiation detection in client mode.
|
| Tue, 18 Apr 2017 15:12:38 +0300 |
Sergey Kandaurov |
SSL: added support for TLSv1.3 in ssl_protocols directive.
|
| Mon, 06 Feb 2017 18:38:06 +0300 |
Sergey Kandaurov |
SSL: clear error queue after OPENSSL_init_ssl().
|
| Fri, 23 Dec 2016 17:28:20 +0300 |
Maxim Dounin |
SSL: support AES256 encryption of tickets.
|
| Thu, 15 Dec 2016 19:00:23 +0300 |
Maxim Dounin |
SSL: backed out changeset e7cb5deb951d, reimplemented properly.
|
| Tue, 13 Dec 2016 14:19:30 -0800 |
Piotr Sikora |
SSL: fix call to BIO_get_mem_data().
|
| Mon, 05 Dec 2016 22:23:23 +0300 |
Maxim Dounin |
SSL: $ssl_curves (ticket #1088).
|
| Mon, 05 Dec 2016 22:23:23 +0300 |
Maxim Dounin |
SSL: $ssl_ciphers (ticket #870).
|
| Mon, 05 Dec 2016 22:23:23 +0300 |
Maxim Dounin |
SSL: $ssl_client_v_start, $ssl_client_v_end, $ssl_client_v_remain.
|
| Mon, 05 Dec 2016 22:23:22 +0300 |
Maxim Dounin |
SSL: $ssl_client_verify extended with a failure reason.
|
| Mon, 05 Dec 2016 22:23:22 +0300 |
Maxim Dounin |
OCSP stapling: added certificate name to warnings.
|
| Fri, 21 Oct 2016 16:28:39 +0300 |
Dmitry Volyntsev |
SSL: RFC2253 compliant $ssl_client_s_dn and $ssl_client_i_dn.
|
| Tue, 18 Oct 2016 20:46:06 +0300 |
Valentin Bartenev |
SSL: overcame possible buffer over-read in ngx_ssl_error().
|
| Tue, 18 Oct 2016 17:25:38 +0300 |
Maxim Dounin |
SSL: default DH parameters compatible with OpenSSL 1.1.0.
stable-1.10
|
| Mon, 22 Aug 2016 18:53:21 +0300 |
Sergey Kandaurov |
SSL: adopted session ticket handling for OpenSSL 1.1.0.
stable-1.10
|
| Mon, 08 Aug 2016 13:44:49 +0300 |
Sergey Kandaurov |
SSL: guarded SSL_R_NO_CIPHERS_PASSED not present in OpenSSL 1.1.0.
stable-1.10
|
| Tue, 04 Oct 2016 17:26:45 +0300 |
Maxim Dounin |
SSL: use X509_check_host() with LibreSSL.
|
| Tue, 20 Sep 2016 15:07:16 +0300 |
Valentin Bartenev |
Fixed log levels of configuration parsing errors.
|
| Mon, 12 Sep 2016 18:57:42 +0300 |
Sergey Kandaurov |
SSL: improved session ticket callback error handling.
|
| Mon, 12 Sep 2016 18:57:42 +0300 |
Sergey Kandaurov |
SSL: factored out digest and cipher in session ticket callback.
|
| Mon, 22 Aug 2016 18:53:21 +0300 |
Sergey Kandaurov |
SSL: adopted session ticket handling for OpenSSL 1.1.0.
|
| Thu, 18 Aug 2016 14:49:48 -0700 |
Piotr Sikora |
SSL: remove no longer needed workaround for BoringSSL.
|
| Mon, 08 Aug 2016 13:44:49 +0300 |
Sergey Kandaurov |
SSL: guarded SSL_R_NO_CIPHERS_PASSED not present in OpenSSL 1.1.0.
|
| Wed, 15 Jun 2016 21:05:30 +0100 |
Tim Taubert |
SSL: ngx_ssl_ciphers() to set list of ciphers.
|
| Thu, 19 May 2016 14:46:32 +0300 |
Maxim Dounin |
SSL: removed default DH parameters.
|
| Thu, 19 May 2016 14:46:32 +0300 |
Maxim Dounin |
SSL: support for multiple curves (ticket #885).
|
| Thu, 19 May 2016 14:46:32 +0300 |
Maxim Dounin |
SSL: style.
|
| Thu, 19 May 2016 14:46:32 +0300 |
Maxim Dounin |
SSL: error messages style.
|
