]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 20f0527) | patch
SSL: session id context now includes certificate hash.
authorMaxim Dounin <mdounin@mdounin.ru>
Mon, 15 Sep 2014 13:59:47 +0000 (17:59 +0400)
committerMaxim Dounin <mdounin@mdounin.ru>
Mon, 15 Sep 2014 13:59:47 +0000 (17:59 +0400)
commit1c5943c21f4e54a0ffbd6ff4c9fdfe3a0bea8ca9
treea2edd47e8e512f2dda01e20f3d4caff4736a25dftree | snapshot
parent20f0527892a159200dcbfefab50e185271cc5c69commit | diff
SSL: session id context now includes certificate hash.

This prevents inappropriate session reuse in unrelated server{}
blocks, while preserving ability to restore sessions on other servers
when using TLS Session Tickets.

Additionally, session context is now set even if there is no session cache
configured.  This is needed as it's also used for TLS Session Tickets.

Thanks to Antoine Delignat-Lavaud and Piotr Sikora.
src/event/ngx_event_openssl.c diff | blob | history
nginx upstream