nginx.git/src/event, branch release-1.21.3 nginx SSL: removed use of the SSL_OP_MSIE_SSLV2_RSA_PADDING option. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 926e0aa70acd58d2a13451f40fc19aeb5393aa7e It has no effect since OpenSSL 0.9.7h and 0.9.8a. 
It has no effect since OpenSSL 0.9.7h and 0.9.8a.
SSL: removed export ciphers support. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 9e4e7a4e4202b5b61b785998e143c6ae0a39883c Export ciphers are forbidden to negotiate in TLS 1.1 and later protocol modes. They are disabled since OpenSSL 1.0.2g by default unless explicitly configured with "enable-weak-ssl-ciphers", and completely removed in OpenSSL 1.1.0. 
Export ciphers are forbidden to negotiate in TLS 1.1 and later protocol modes.
They are disabled since OpenSSL 1.0.2g by default unless explicitly configured
with "enable-weak-ssl-ciphers", and completely removed in OpenSSL 1.1.0.
SSL: use of the SSL_OP_IGNORE_UNEXPECTED_EOF option. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 5155845ce4453a07d60e2ce43946c9181bc311fa A new behaviour was introduced in OpenSSL 1.1.1e, when a peer does not send close_notify before closing the connection. Previously, it was to return SSL_ERROR_SYSCALL with errno 0, known since at least OpenSSL 0.9.7, and is handled gracefully in nginx. Now it returns SSL_ERROR_SSL with a distinct reason SSL_R_UNEXPECTED_EOF_WHILE_READING ("unexpected eof while reading"). This leads to critical errors seen in nginx within various routines such as SSL_do_handshake(), SSL_read(), SSL_shutdown(). The behaviour was restored in OpenSSL 1.1.1f, but presents in OpenSSL 3.0 by default. Use of the SSL_OP_IGNORE_UNEXPECTED_EOF option added in OpenSSL 3.0 allows to set a compatible behaviour to return SSL_ERROR_ZERO_RETURN: https://git.openssl.org/?p=openssl.git;a=commitdiff;h=09b90e0 See for additional details: https://github.com/openssl/openssl/issues/11381 
A new behaviour was introduced in OpenSSL 1.1.1e, when a peer does not send
close_notify before closing the connection.  Previously, it was to return
SSL_ERROR_SYSCALL with errno 0, known since at least OpenSSL 0.9.7, and is
handled gracefully in nginx.  Now it returns SSL_ERROR_SSL with a distinct
reason SSL_R_UNEXPECTED_EOF_WHILE_READING ("unexpected eof while reading").
This leads to critical errors seen in nginx within various routines such as
SSL_do_handshake(), SSL_read(), SSL_shutdown().  The behaviour was restored
in OpenSSL 1.1.1f, but presents in OpenSSL 3.0 by default.

Use of the SSL_OP_IGNORE_UNEXPECTED_EOF option added in OpenSSL 3.0 allows
to set a compatible behaviour to return SSL_ERROR_ZERO_RETURN:
https://git.openssl.org/?p=openssl.git;a=commitdiff;h=09b90e0

See for additional details: https://github.com/openssl/openssl/issues/11381
SSL: silenced warnings when building with OpenSSL 3.0. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 3df7efd34b26328c94149b6828ea22bb73ce00a2 The OPENSSL_SUPPRESS_DEPRECATED macro is used to suppress deprecation warnings. This covers Session Tickets keys, SSL Engine, DH low level API for DHE ciphers. Unlike OPENSSL_API_COMPAT, it works well with OpenSSL built with no-deprecated. In particular, it doesn't unhide various macros in OpenSSL includes, which are meant to be hidden under OPENSSL_NO_DEPRECATED. 
The OPENSSL_SUPPRESS_DEPRECATED macro is used to suppress deprecation warnings.
This covers Session Tickets keys, SSL Engine, DH low level API for DHE ciphers.

Unlike OPENSSL_API_COMPAT, it works well with OpenSSL built with no-deprecated.
In particular, it doesn't unhide various macros in OpenSSL includes, which are
meant to be hidden under OPENSSL_NO_DEPRECATED.
SSL: ERR_peek_error_line_data() compatibility with OpenSSL 3.0. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 9609288e7ce4504188b0c8389bbc2f382eed14f5 ERR_peek_error_line_data() was deprecated in favour of ERR_peek_error_all(). Here we use the ERR_peek_error_data() helper to pass only used arguments. 
ERR_peek_error_line_data() was deprecated in favour of ERR_peek_error_all().
Here we use the ERR_peek_error_data() helper to pass only used arguments.
SSL: using SSL_CTX_set0_tmp_dh_pkey() with OpenSSL 3.0 in dhparam. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 b26858aa3c4055f9f85d09854ece15ad27c792fb Using PEM_read_bio_DHparams() and SSL_CTX_set_tmp_dh() is deprecated as part of deprecating the low level DH functions in favor of EVP_PKEY: https://git.openssl.org/?p=openssl.git;a=commitdiff;h=163f6dc 
Using PEM_read_bio_DHparams() and SSL_CTX_set_tmp_dh() is deprecated
as part of deprecating the low level DH functions in favor of EVP_PKEY:
https://git.openssl.org/?p=openssl.git;a=commitdiff;h=163f6dc
SSL: SSL_get_peer_certificate() is deprecated in OpenSSL 3.0. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 ccc9bbad32962f2c4cdba7942a69f8ca80507bc7 Switch to SSL_get1_peer_certificate() when building with OpenSSL 3.0 and OPENSSL_NO_DEPRECATED defined. 
Switch to SSL_get1_peer_certificate() when building with OpenSSL 3.0
and OPENSSL_NO_DEPRECATED defined.
SSL: RSA data type is deprecated in OpenSSL 3.0. 2021-08-10T20:42:59+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:42:59+00:00 36af236d6e7102f8dfaacc7ea42112bbdeb76def The only consumer is a callback function for SSL_CTX_set_tmp_rsa_callback() deprecated in OpenSSL 1.1.0. Now the function is conditionally compiled too. 
The only consumer is a callback function for SSL_CTX_set_tmp_rsa_callback()
deprecated in OpenSSL 1.1.0.  Now the function is conditionally compiled too.
SSL: SSL_CTX_set_tmp_dh() error handling. 2021-08-04T18:27:51+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-04T18:27:51+00:00 02bd43d05b6f7803597d8453d9848b767dc4a323 For example, it can fail due to weak DH parameters. 
For example, it can fail due to weak DH parameters.
SSL: set events ready flags after handshake. 2021-08-03T17:50:30+00:00 Maxim Dounin mdounin@mdounin.ru 2021-08-03T17:50:30+00:00 15769c3918578dfa601303afa40d7acf9c36e4d9 The c->read->ready and c->write->ready flags might be reset during the handshake, and not set again if the handshake was finished on the other event. At the same time, some data might be read from the socket during the handshake, so missing c->read->ready flag might result in a connection hang, for example, when waiting for an SMTP greeting (which was already received during the handshake). Found by Sergey Kandaurov. 
The c->read->ready and c->write->ready flags might be reset during
the handshake, and not set again if the handshake was finished on
the other event.  At the same time, some data might be read from
the socket during the handshake, so missing c->read->ready flag might
result in a connection hang, for example, when waiting for an SMTP
greeting (which was already received during the handshake).

Found by Sergey Kandaurov.