nginx.git/src/event/ngx_event_openssl.c, branch release-1.28.2 nginx SSL: fixed "key values mismatch" with object cache inheritance. 2025-12-23T18:40:33+00:00 Sergey Kandaurov pluknet@nginx.com 2025-05-29T13:49:48+00:00 592bda7bb6c202e48da8e4181de936f70edff58e In rare cases, it was possible to get into this error state on reload with improperly updated file timestamps for certificate and key pairs. The fix is to retry on X509_R_KEY_VALUES_MISMATCH, similar to 5d5d9adcc. Additionally, loading SSL certificate is updated to avoid certificates discarded on retry to appear in ssl->certs and in extra chain. 
In rare cases, it was possible to get into this error state on reload
with improperly updated file timestamps for certificate and key pairs.

The fix is to retry on X509_R_KEY_VALUES_MISMATCH, similar to 5d5d9adcc.
Additionally, loading SSL certificate is updated to avoid certificates
discarded on retry to appear in ssl->certs and in extra chain.
SSL: fixed testing OPENSSL_VERSION_NUMBER for OpenSSL 3.0+. 2025-12-23T18:40:33+00:00 Sergey Kandaurov pluknet@nginx.com 2025-07-08T14:07:04+00:00 2787d67e89ea8642f658d895a37ecb9987abd3f8 Prior to OpenSSL 3.0, OPENSSL_VERSION_NUMBER used the following format: MNNFFPPS: major minor fix patch status Where the status nibble (S) has 0+ for development and f for release. The format was changed in OpenSSL 3.0.0, where it is always zero: MNN00PP0: major minor patch 
Prior to OpenSSL 3.0, OPENSSL_VERSION_NUMBER used the following format:

MNNFFPPS: major minor fix patch status

Where the status nibble (S) has 0+ for development and f for release.

The format was changed in OpenSSL 3.0.0, where it is always zero:

MNN00PP0: major minor patch
SSL: SSL_group_to_name() compatibility macro. 2025-12-23T18:40:33+00:00 Sergey Kandaurov pluknet@nginx.com 2025-07-08T13:59:50+00:00 4bd5b1b59a2d03a7fb8521970752a9ae3f1d85fe No functional changes. 
No functional changes.
SSL: fixed build with OPENSSL_NO_DH. 2025-12-23T18:40:33+00:00 Sergey Kandaurov pluknet@nginx.com 2025-04-16T16:58:57+00:00 ed88e47faf6fb3f340e97fdf472ee4a651d79757 






SSL: external groups support in $ssl_curve and $ssl_curves.
2025-04-10T14:51:10+00:00

Sergey Kandaurov
pluknet@nginx.com

2025-04-03T11:29:31+00:00

b6e7eb0f5792d7a52d2675ee3906e502d63c48e3

Starting with OpenSSL 3.0, groups may be added externally with pluggable
KEM providers.  Using SSL_get_negotiated_group(), which makes lookup in a
static table with known groups, doesn't allow to list such groups by names
leaving them in hex.  Adding X25519MLKEM768 to the default group list in
OpenSSL 3.5 made this problem more visible.  SSL_get0_group_name() and,
apparently, SSL_group_to_name() allow to resolve such provider-implemented
groups, which is also "generally preferred" over SSL_get_negotiated_group()
as documented in OpenSSL git commit 93d4f6133f.

This change makes external groups listing by name using SSL_group_to_name()
available since OpenSSL 3.0.  To preserve "prime256v1" naming for the group
0x0017, and to avoid breaking BoringSSL and older OpenSSL versions support,
it is used supplementary for a group that appears to be unknown.

See https://github.com/openssl/openssl/issues/27137 for related discussion.





Starting with OpenSSL 3.0, groups may be added externally with pluggable
KEM providers.  Using SSL_get_negotiated_group(), which makes lookup in a
static table with known groups, doesn't allow to list such groups by names
leaving them in hex.  Adding X25519MLKEM768 to the default group list in
OpenSSL 3.5 made this problem more visible.  SSL_get0_group_name() and,
apparently, SSL_group_to_name() allow to resolve such provider-implemented
groups, which is also "generally preferred" over SSL_get_negotiated_group()
as documented in OpenSSL git commit 93d4f6133f.

This change makes external groups listing by name using SSL_group_to_name()
available since OpenSSL 3.0.  To preserve "prime256v1" naming for the group
0x0017, and to avoid breaking BoringSSL and older OpenSSL versions support,
it is used supplementary for a group that appears to be unknown.

See https://github.com/openssl/openssl/issues/27137 for related discussion.







SSL: using static storage for NGX_SSL_MAX_SESSION_SIZE buffers.
2025-02-26T13:40:03+00:00

Sergey Kandaurov
pluknet@nginx.com

2025-02-21T09:49:41+00:00

3d7304b527d1fb6eb697eb8719f286ba7b8e90de

All such transient buffers are converted to the single storage in BSS.

In preparation to raise the limit.





All such transient buffers are converted to the single storage in BSS.

In preparation to raise the limit.







SSL: style.
2025-02-26T13:40:03+00:00

Sergey Kandaurov
pluknet@nginx.com

2025-02-25T15:40:22+00:00

b11ae4cfc9483006f67d92850dc520abe659d880












SSL: avoid using mismatched certificate/key cached pairs.
2025-01-17T00:37:46+00:00

Sergey Kandaurov
pluknet@nginx.com

2025-01-08T13:50:33+00:00

5d5d9adccfeaff7d5926737ee5dfa43937fe5899

This can happen with certificates and certificate keys specified
with variables due to partial cache update in various scenarios:
- cache expiration with only one element of pair evicted
- on-disk update with non-cacheable encrypted keys
- non-atomic on-disk update

The fix is to retry with fresh data on X509_R_KEY_VALUES_MISMATCH.





This can happen with certificates and certificate keys specified
with variables due to partial cache update in various scenarios:
- cache expiration with only one element of pair evicted
- on-disk update with non-cacheable encrypted keys
- non-atomic on-disk update

The fix is to retry with fresh data on X509_R_KEY_VALUES_MISMATCH.







SSL: caching certificates and certificate keys with variables.
2025-01-17T00:37:46+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-10-29T12:25:11+00:00

0e756d67aa1e42e3b1b360936eb4d6c06bced2c1

A new directive "ssl_certificate_cache max=N [valid=time] [inactive=time]"
enables caching of SSL certificate chain and secret key objects specified
by "ssl_certificate" and "ssl_certificate_key" directives with variables.

Co-authored-by: Aleksei Bavshin <a.bavshin@nginx.com>





A new directive "ssl_certificate_cache max=N [valid=time] [inactive=time]"
enables caching of SSL certificate chain and secret key objects specified
by "ssl_certificate" and "ssl_certificate_key" directives with variables.

Co-authored-by: Aleksei Bavshin <a.bavshin@nginx.com>







Fixed missing double quote.
2024-11-20T11:30:05+00:00

Nathan Mentze
natementze+github@gmail.com

2024-11-20T00:13:52+00:00

cb1857407bec54804191cfc5ac8173df44f0c661