nginx.git/src/event, branch release-0.7.67 nginx merge r3489, r3493: 2010-06-07T11:55:20+00:00 Igor Sysoev igor@sysoev.ru 2010-06-07T11:55:20+00:00 400683ac9102ee18564bb6eff0037e710fb48d9f *) MSVC8 compatibility with OpenSSL 1.0.0 *) fix building OpenSSL-1.0.0 on 64-bit Linux: make installs the libraries in lib64 directory and build nginx/Windows against OpenSSL-0.9.8n 
*) MSVC8 compatibility with OpenSSL 1.0.0
*) fix building OpenSSL-1.0.0 on 64-bit Linux:
   make installs the libraries in lib64 directory

and build nginx/Windows against OpenSSL-0.9.8n
merge r3473, r3474, r3385, r3386, r3537: 2010-06-07T10:35:08+00:00 Igor Sysoev igor@sysoev.ru 2010-06-07T10:35:08+00:00 e66eb15b7be2534c9405900eb7350b538a146905 signal processing stability: *) use sys_errlist[] in signal handler instead of non Async-Signal-Safe strerror_r() *) do not update time in the timer signal handler, since localtime_r() is not Async-Signal-Safe function *) use previously cached GMT offset value to update time from a signal handler *) change ngx_time_update() interface since there are no notification methods those return time *) introduce ngx_time_sigsafe_update() to update the error log time only *) change ngx_time_update() interface 
signal processing stability:

*) use sys_errlist[] in signal handler instead
   of non Async-Signal-Safe strerror_r()
*) do not update time in the timer signal handler,
   since localtime_r() is not Async-Signal-Safe function
*) use previously cached GMT offset value to update time from a signal handler
*) change ngx_time_update() interface since there are no notification methods
   those return time
*) introduce ngx_time_sigsafe_update() to update the error log time only
*) change ngx_time_update() interface
merge r3456, r3458, r3465: 2010-06-07T10:09:14+00:00 Igor Sysoev igor@sysoev.ru 2010-06-07T10:09:14+00:00 49ab49ec551a103829680fce7f3e19a363c7a590 SSL fixes: *) decrease SSL handshake error level to info *) Set SSL session context for "ssl_session_cache none". This fixes a bug when client certficate is used and nginx closes connection with the message: "SSL_GET_PREV_SESSION:session id context uninitialized". *) add OpenSSL_add_all_algorithms(), this fixes the error "ASN1_item_verify:unknown message digest algorithm" occurred if client certificate is signed using sha256WithRSAEncryption 
SSL fixes:

*) decrease SSL handshake error level to info
*) Set SSL session context for "ssl_session_cache none".
   This fixes a bug when client certficate is used and nginx closes connection
   with the message: "SSL_GET_PREV_SESSION:session id context uninitialized".
*) add OpenSSL_add_all_algorithms(), this fixes the error
   "ASN1_item_verify:unknown message digest algorithm" occurred if
   client certificate is signed using sha256WithRSAEncryption
merge r3283, r3284: 2010-02-01T15:20:43+00:00 Igor Sysoev igor@sysoev.ru 2010-02-01T15:20:43+00:00 30a57a1262b93ef60405285d206388caa6ad8081 fix segfault if $limit_rate was logged fix segfault in SSL if limit_rate is used 
fix segfault if $limit_rate was logged
fix segfault in SSL if limit_rate is used
merge r3155, r3156, r3160, r969, r3191, r3197, r3358: 2010-02-01T14:39:16+00:00 Igor Sysoev igor@sysoev.ru 2010-02-01T14:39:16+00:00 7a03f30dd26452476a4e565faecb3258a4f66ec3 SSL fixes: *) $ssl_session_id *) allow "make clean" for OpenSSL, the bug was introduced in r2874 *) disable SSLv2 and use only strong ciphers by default *) decrease SSL handshake error level to info 
SSL fixes:

*) $ssl_session_id
*) allow "make clean" for OpenSSL, the bug was introduced in r2874
*) disable SSLv2 and use only strong ciphers by default
*) decrease SSL handshake error level to info
r3301 merge: 2009-11-16T15:24:39+00:00 Igor Sysoev igor@sysoev.ru 2009-11-16T15:24:39+00:00 0da83434d705483a7cd8c710396c9238622843a6 disable SSL renegotiation (CVE-2009-3555) 
disable SSL renegotiation (CVE-2009-3555)
merge r3024, r3025, r3028, r3033, r3034, r3035, r3036: 2009-10-26T17:32:17+00:00 Igor Sysoev igor@sysoev.ru 2009-10-26T17:32:17+00:00 efdaec7003e37933e113b009407f2a62df2ec78a allow cross device temporary files atomic copying 
allow cross device temporary files atomic copying
merge r2995, r2996, r2997, r2998, r3003, r3141, r3210, r3211, r3232: 2009-10-26T16:53:34+00:00 Igor Sysoev igor@sysoev.ru 2009-10-26T16:53:34+00:00 99daa8e5d4e83174b9a8c0360d4e52a8a9dac4c5 various SSL fixes and features: *) $ssl_client_verify *) "ssl_verify_client ask" was changed to "ssl_verify_client optional" *) ssl_crl *) delete OpenSSL pre-0.9.7 compatibility: the sources were not actually compatible with OpenSSL 0.9.6 since ssl_session_cache introduction *) fix memory corruption in $ssl_client_cert *) issue SNI warning instead of failure: this is too common case *) use ngx_log_error(), since OpenSSL does not set an error on the failure *) add SNI support in -V output 
various SSL fixes and features:

*) $ssl_client_verify
*) "ssl_verify_client ask" was changed to "ssl_verify_client optional"
*) ssl_crl
*) delete OpenSSL pre-0.9.7 compatibility: the sources were not actually
   compatible with OpenSSL 0.9.6 since ssl_session_cache introduction
*) fix memory corruption in $ssl_client_cert
*) issue SNI warning instead of failure: this is too common case
*) use ngx_log_error(), since OpenSSL does not set an error on the failure
*) add SNI support in -V output
merge r2903, r2911, r2912, r3002: 2009-10-26T15:54:29+00:00 Igor Sysoev igor@sysoev.ru 2009-10-26T15:54:29+00:00 f7f963d7792fdf19ad11888d3a3e7460ea88dfd0 fix various failures handling 
fix various failures handling
merge r2952: 2009-06-22T09:31:33+00:00 Igor Sysoev igor@sysoev.ru 2009-06-22T09:31:33+00:00 942ccf676e35273e06c7ecd3c6934e683aec49dd ignore ngx_atomic_fetch_add() result this fixes building at least by gcc 4.2.1 on Mac OS X 10.6 
ignore ngx_atomic_fetch_add() result
this fixes building at least by gcc 4.2.1 on Mac OS X 10.6