nginx.git/src/event, branch release-1.21.4 nginx SSL: SSL_sendfile() support with kernel TLS. 2021-10-21T15:44:07+00:00 Maxim Dounin mdounin@mdounin.ru 2021-10-21T15:44:07+00:00 1fc61b7b1ff182e86078200a59d3c523419c7b3b Requires OpenSSL 3.0 compiled with "enable-ktls" option. Further, KTLS needs to be enabled in kernel, and in OpenSSL, either via OpenSSL configuration file or with "ssl_conf_command Options KTLS;" in nginx configuration. On FreeBSD, kernel TLS is available starting with FreeBSD 13.0, and can be enabled with "sysctl kern.ipc.tls.enable=1" and "kldload ktls_ocf" to load a software backend, see man ktls(4) for details. On Linux, kernel TLS is available starting with kernel 4.13 (at least 5.2 is recommended), and needs kernel compiled with CONFIG_TLS=y (with CONFIG_TLS=m, which is used at least on Ubuntu 21.04 by default, the tls module needs to be loaded with "modprobe tls"). 
Requires OpenSSL 3.0 compiled with "enable-ktls" option.  Further, KTLS
needs to be enabled in kernel, and in OpenSSL, either via OpenSSL
configuration file or with "ssl_conf_command Options KTLS;" in nginx
configuration.

On FreeBSD, kernel TLS is available starting with FreeBSD 13.0, and
can be enabled with "sysctl kern.ipc.tls.enable=1" and "kldload ktls_ocf"
to load a software backend, see man ktls(4) for details.

On Linux, kernel TLS is available starting with kernel 4.13 (at least 5.2
is recommended), and needs kernel compiled with CONFIG_TLS=y (with
CONFIG_TLS=m, which is used at least on Ubuntu 21.04 by default,
the tls module needs to be loaded with "modprobe tls").
Style: added missing "static" specifiers. 2021-10-21T15:43:13+00:00 Maxim Dounin mdounin@mdounin.ru 2021-10-21T15:43:13+00:00 3ab1b64463cfc1cea5209f159d8fe3797328be51 Mostly found by gcc -Wtraditional, per "non-static declaration of ... follows static declaration [-Wtraditional]" warnings. 
Mostly found by gcc -Wtraditional, per "non-static declaration of ...
follows static declaration [-Wtraditional]" warnings.
Stream: the "ssl_alpn" directive. 2021-10-19T09:19:59+00:00 Vladimir Homutov vl@nginx.com 2021-10-19T09:19:59+00:00 df472eecc043700275ecae2655206163c786f758 The directive sets the server list of supported application protocols and requires one of this protocols to be negotiated if client is using ALPN. 
The directive sets the server list of supported application protocols
and requires one of this protocols to be negotiated if client is using
ALPN.
SSL: added $ssl_alpn_protocol variable. 2021-10-14T08:46:23+00:00 Vladimir Homutov vl@nginx.com 2021-10-14T08:46:23+00:00 a9f4f25b72c39653795dfb4b1f13b55625fb9fbc The variable contains protocol selected by ALPN during handshake and is empty otherwise. 
The variable contains protocol selected by ALPN during handshake and
is empty otherwise.
SSL: removed use of the SSL_OP_MSIE_SSLV2_RSA_PADDING option. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 926e0aa70acd58d2a13451f40fc19aeb5393aa7e It has no effect since OpenSSL 0.9.7h and 0.9.8a. 
It has no effect since OpenSSL 0.9.7h and 0.9.8a.
SSL: removed export ciphers support. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 9e4e7a4e4202b5b61b785998e143c6ae0a39883c Export ciphers are forbidden to negotiate in TLS 1.1 and later protocol modes. They are disabled since OpenSSL 1.0.2g by default unless explicitly configured with "enable-weak-ssl-ciphers", and completely removed in OpenSSL 1.1.0. 
Export ciphers are forbidden to negotiate in TLS 1.1 and later protocol modes.
They are disabled since OpenSSL 1.0.2g by default unless explicitly configured
with "enable-weak-ssl-ciphers", and completely removed in OpenSSL 1.1.0.
SSL: use of the SSL_OP_IGNORE_UNEXPECTED_EOF option. 2021-08-10T20:43:17+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:17+00:00 5155845ce4453a07d60e2ce43946c9181bc311fa A new behaviour was introduced in OpenSSL 1.1.1e, when a peer does not send close_notify before closing the connection. Previously, it was to return SSL_ERROR_SYSCALL with errno 0, known since at least OpenSSL 0.9.7, and is handled gracefully in nginx. Now it returns SSL_ERROR_SSL with a distinct reason SSL_R_UNEXPECTED_EOF_WHILE_READING ("unexpected eof while reading"). This leads to critical errors seen in nginx within various routines such as SSL_do_handshake(), SSL_read(), SSL_shutdown(). The behaviour was restored in OpenSSL 1.1.1f, but presents in OpenSSL 3.0 by default. Use of the SSL_OP_IGNORE_UNEXPECTED_EOF option added in OpenSSL 3.0 allows to set a compatible behaviour to return SSL_ERROR_ZERO_RETURN: https://git.openssl.org/?p=openssl.git;a=commitdiff;h=09b90e0 See for additional details: https://github.com/openssl/openssl/issues/11381 
A new behaviour was introduced in OpenSSL 1.1.1e, when a peer does not send
close_notify before closing the connection.  Previously, it was to return
SSL_ERROR_SYSCALL with errno 0, known since at least OpenSSL 0.9.7, and is
handled gracefully in nginx.  Now it returns SSL_ERROR_SSL with a distinct
reason SSL_R_UNEXPECTED_EOF_WHILE_READING ("unexpected eof while reading").
This leads to critical errors seen in nginx within various routines such as
SSL_do_handshake(), SSL_read(), SSL_shutdown().  The behaviour was restored
in OpenSSL 1.1.1f, but presents in OpenSSL 3.0 by default.

Use of the SSL_OP_IGNORE_UNEXPECTED_EOF option added in OpenSSL 3.0 allows
to set a compatible behaviour to return SSL_ERROR_ZERO_RETURN:
https://git.openssl.org/?p=openssl.git;a=commitdiff;h=09b90e0

See for additional details: https://github.com/openssl/openssl/issues/11381
SSL: silenced warnings when building with OpenSSL 3.0. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 3df7efd34b26328c94149b6828ea22bb73ce00a2 The OPENSSL_SUPPRESS_DEPRECATED macro is used to suppress deprecation warnings. This covers Session Tickets keys, SSL Engine, DH low level API for DHE ciphers. Unlike OPENSSL_API_COMPAT, it works well with OpenSSL built with no-deprecated. In particular, it doesn't unhide various macros in OpenSSL includes, which are meant to be hidden under OPENSSL_NO_DEPRECATED. 
The OPENSSL_SUPPRESS_DEPRECATED macro is used to suppress deprecation warnings.
This covers Session Tickets keys, SSL Engine, DH low level API for DHE ciphers.

Unlike OPENSSL_API_COMPAT, it works well with OpenSSL built with no-deprecated.
In particular, it doesn't unhide various macros in OpenSSL includes, which are
meant to be hidden under OPENSSL_NO_DEPRECATED.
SSL: ERR_peek_error_line_data() compatibility with OpenSSL 3.0. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 9609288e7ce4504188b0c8389bbc2f382eed14f5 ERR_peek_error_line_data() was deprecated in favour of ERR_peek_error_all(). Here we use the ERR_peek_error_data() helper to pass only used arguments. 
ERR_peek_error_line_data() was deprecated in favour of ERR_peek_error_all().
Here we use the ERR_peek_error_data() helper to pass only used arguments.
SSL: using SSL_CTX_set0_tmp_dh_pkey() with OpenSSL 3.0 in dhparam. 2021-08-10T20:43:16+00:00 Sergey Kandaurov pluknet@nginx.com 2021-08-10T20:43:16+00:00 b26858aa3c4055f9f85d09854ece15ad27c792fb Using PEM_read_bio_DHparams() and SSL_CTX_set_tmp_dh() is deprecated as part of deprecating the low level DH functions in favor of EVP_PKEY: https://git.openssl.org/?p=openssl.git;a=commitdiff;h=163f6dc 
Using PEM_read_bio_DHparams() and SSL_CTX_set_tmp_dh() is deprecated
as part of deprecating the low level DH functions in favor of EVP_PKEY:
https://git.openssl.org/?p=openssl.git;a=commitdiff;h=163f6dc