IntenseWebs/nginx
3
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2024-12-18 21:23:36 -06:00
Code Issues Packages Projects Releases Wiki Activity
An official read-only mirror of http://hg.nginx.org/nginx/ which is updated hourly. Pull requests on GitHub cannot be accepted and will be automatically closed. The proper way to submit changes to nginx is via the nginx development mailing list, see http://nginx.org/en/docs/contributing_changes.html
6,518 Commits 21 Branches 568 Tags 93 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
ecfab06cb2
Go to file
Maxim Dounin ecfab06cb2 SSL: adjusted session id context with dynamic certificates. 
Dynamic certificates re-introduce problem with incorrect session
reuse (AKA "virtual host confusion", CVE-2014-3616), since there are
no server certificates to generate session id context from.

To prevent this, session id context is now generated from ssl_certificate
directives as specified in the configuration.  This approach prevents
incorrect session reuse in most cases, while still allowing sharing
sessions across multiple machines with ssl_session_ticket_key set as
long as configurations are identical.
2019-02-25 16:42:54 +03:00
auto Configure: added explicit ngx_binext to the linker output argument. 2019-01-30 19:28:27 +03:00
conf MIME: added font/woff2 type (ticket #1243). 2018-06-15 17:29:55 +03:00
contrib Contrib: vim syntax, update core and 3rd party module directives. 2018-12-24 16:30:10 +02:00
docs Year 2019. 2019-01-28 13:23:37 +03:00
misc Win32: properly enabled select on Windows. 2019-01-24 21:51:00 +03:00
src SSL: adjusted session id context with dynamic certificates. 2019-02-25 16:42:54 +03:00
.hgtags release-1.15.8 tag 2018-12-25 17:53:03 +03:00