git.kaiwu.me - nginx.git/commit

author	Maxim Dounin <mdounin@mdounin.ru>
	Mon, 5 Dec 2016 19:23:23 +0000 (22:23 +0300)
committer	Maxim Dounin <mdounin@mdounin.ru>
	Mon, 5 Dec 2016 19:23:23 +0000 (22:23 +0300)
commit	2daf78867bb60bee5e5ca517f20339211391635b
tree	6ea9bf0f47e4c26b3ee10738cf741ae7c31666d3	tree \| snapshot
parent	53092ad782c4647c212ff3b23870f7927da9e293	commit \| diff

SSL: $ssl_ciphers (ticket #870).

The variable contains list of ciphers as supported by the client.
Known ciphers are listed by their names, unknown ones are shown
in hex, e.g., ""AES128-SHA:AES256-SHA:0x00ff".

The variable is fully supported only when using OpenSSL 1.0.2 and above.
With older version there is an attempt to provide some information
using SSL_get_shared_ciphers(). It only lists known ciphers though.
Moreover, as OpenSSL uses session data for SSL_get_shared_ciphers(),
and it doesn't store relevant data when serializing a session. As
a result $ssl_ciphers is only available for new sessions (and not
available for reused ones) when using OpenSSL older than 1.0.2.

src/event/ngx_event_openssl.c		diff \| blob \| history
src/event/ngx_event_openssl.h		diff \| blob \| history
src/http/modules/ngx_http_ssl_module.c		diff \| blob \| history
src/stream/ngx_stream_ssl_module.c		diff \| blob \| history