mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2024-11-30 18:29:08 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
The official NGINX Open Source repository.
6,518 Commits 21 Branches 568 Tags 86 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
ecfab06cb2
Go to file
Maxim Dounin ecfab06cb2 SSL: adjusted session id context with dynamic certificates. 
Dynamic certificates re-introduce problem with incorrect session
reuse (AKA "virtual host confusion", CVE-2014-3616), since there are
no server certificates to generate session id context from.

To prevent this, session id context is now generated from ssl_certificate
directives as specified in the configuration.  This approach prevents
incorrect session reuse in most cases, while still allowing sharing
sessions across multiple machines with ssl_session_ticket_key set as
long as configurations are identical.
2019-02-25 16:42:54 +03:00
auto Configure: added explicit ngx_binext to the linker output argument. 2019-01-30 19:28:27 +03:00
conf MIME: added font/woff2 type (ticket #1243). 2018-06-15 17:29:55 +03:00
contrib Contrib: vim syntax, update core and 3rd party module directives. 2018-12-24 16:30:10 +02:00
docs Year 2019. 2019-01-28 13:23:37 +03:00
misc Win32: properly enabled select on Windows. 2019-01-24 21:51:00 +03:00
src SSL: adjusted session id context with dynamic certificates. 2019-02-25 16:42:54 +03:00
.hgtags release-1.15.8 tag 2018-12-25 17:53:03 +03:00