nginx.git/src/stream, branch release-1.27.2 nginx SSL: optional ssl_client_certificate for ssl_verify_client. 2024-09-20T10:43:00+00:00 Sergey Kandaurov pluknet@nginx.com 2024-09-20T10:08:42+00:00 18afcda938cd2d4712d0d083b57161290a5a2d34 Starting from TLSv1.1 (as seen since draft-ietf-tls-rfc2246-bis-00), the "certificate_authorities" field grammar of the CertificateRequest message was redone to allow no distinguished names. In TLSv1.3, with the restructured CertificateRequest message, this can be similarly done by optionally including the "certificate_authorities" extension. This allows to avoid sending DNs at all. In practice, aside from published TLS specifications, all supported SSL/TLS libraries allow to request client certificates with an empty DN list for any protocol version. For instance, when operating in TLSv1, this results in sending the "certificate_authorities" list as a zero-length vector, which corresponds to the TLSv1.1 specification. Such behaviour goes back to SSLeay. The change relaxes the requirement to specify at least one trusted CA certificate in the ssl_client_certificate directive, which resulted in sending DNs of these certificates (closes #142). Instead, all trusted CA certificates can be specified now using the ssl_trusted_certificate directive if needed. A notable difference that certificates specified in ssl_trusted_certificate are always loaded remains (see 3648ba7db). Co-authored-by: Praveen Chaudhary <praveenc@nvidia.com> 
Starting from TLSv1.1 (as seen since draft-ietf-tls-rfc2246-bis-00),
the "certificate_authorities" field grammar of the CertificateRequest
message was redone to allow no distinguished names.  In TLSv1.3, with
the restructured CertificateRequest message, this can be similarly
done by optionally including the "certificate_authorities" extension.
This allows to avoid sending DNs at all.

In practice, aside from published TLS specifications, all supported
SSL/TLS libraries allow to request client certificates with an empty
DN list for any protocol version.  For instance, when operating in
TLSv1, this results in sending the "certificate_authorities" list as
a zero-length vector, which corresponds to the TLSv1.1 specification.
Such behaviour goes back to SSLeay.

The change relaxes the requirement to specify at least one trusted CA
certificate in the ssl_client_certificate directive, which resulted in
sending DNs of these certificates (closes #142).  Instead, all trusted
CA certificates can be specified now using the ssl_trusted_certificate
directive if needed.  A notable difference that certificates specified
in ssl_trusted_certificate are always loaded remains (see 3648ba7db).

Co-authored-by: Praveen Chaudhary <praveenc@nvidia.com>
Stream: OCSP stapling. 2024-08-22T10:57:46+00:00 Sergey Kandaurov pluknet@nginx.com 2024-08-22T10:57:46+00:00 fb89d50eeb19d42d83144ff76c80d20e80c41aca 






Stream: client certificate validation with OCSP.
2024-08-22T10:57:45+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-08-22T10:57:45+00:00

581cf22673fc63e206693294161ea32e691a432f












Stream ssl_preread: do not reallocate a parsed SNI host.
2024-08-09T15:12:26+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-08-09T15:12:26+00:00

0fa8434957dcecef934a70e9c92d40a0a08988bd

We own this memory from the session pool.





We own this memory from the session pool.







Stream: allow servers with no handler.
2024-06-27T13:29:56+00:00

Roman Arutyunyan
arut@nginx.com

2024-06-27T13:29:56+00:00

788e462c5b81f5f1aee475488e10f01680c530e9

Previously handlers were mandatory.  However they are not always needed.
For example, a server configured with ssl_reject_handshake does not need a
handler.  Such servers required a fake handler to pass the check.  Now handler
absence check is moved to runtime.  If handler is missing, the connection is
closed with 500 code.





Previously handlers were mandatory.  However they are not always needed.
For example, a server configured with ssl_reject_handshake does not need a
handler.  Such servers required a fake handler to pass the check.  Now handler
absence check is moved to runtime.  If handler is missing, the connection is
closed with 500 code.







Stream pass: disabled passing from or to udp.
2024-05-03T16:26:05+00:00

Roman Arutyunyan
arut@nginx.com

2024-05-03T16:26:05+00:00

489e1e61912a808fdaffb4f513426cb285f267a3

Passing from udp was not possible for the most part due to preread buffer
restriction.  Passing to udp could occasionally work, but the connection would
still be bound to the original listen rbtree, which prevented it from being
deleted on connection closure.





Passing from udp was not possible for the most part due to preread buffer
restriction.  Passing to udp could occasionally work, but the connection would
still be bound to the original listen rbtree, which prevented it from being
deleted on connection closure.







Stream pass: limited the number of passes per connection.
2024-04-11T07:37:30+00:00

Roman Arutyunyan
arut@nginx.com

2024-04-11T07:37:30+00:00

bf3e6538b93375e8ac49d3863f74ee7cbe588111

Previously a cycle in pass configuration resulted in stack overflow.





Previously a cycle in pass configuration resulted in stack overflow.







Fixed undefined behaviour with IPv4-mapped IPv6 addresses.
2024-03-18T13:14:30+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-03-18T13:14:30+00:00

3d5a356abb4f06b0f103290bd31a4c146233956b

Previously, it could result when left-shifting signed integer due to implicit
integer promotion, such that the most significant bit appeared on the sign bit.

In practice, though, this results in the same left value as with an explicit
cast, at least on known compilers, such as GCC and Clang.  The reason is that
in_addr_t, which is equivalent to uint32_t and same as "unsigned int" in ILP32
and LP64 data type models, has the same type width as the intermediate after
integer promotion, so there's no side effects such as sign-extension.  This
explains why adding an explicit cast does not change object files in practice.

Found with UndefinedBehaviorSanitizer (shift).

Based on a patch by Piotr Sikora.





Previously, it could result when left-shifting signed integer due to implicit
integer promotion, such that the most significant bit appeared on the sign bit.

In practice, though, this results in the same left value as with an explicit
cast, at least on known compilers, such as GCC and Clang.  The reason is that
in_addr_t, which is equivalent to uint32_t and same as "unsigned int" in ILP32
and LP64 data type models, has the same type width as the intermediate after
integer promotion, so there's no side effects such as sign-extension.  This
explains why adding an explicit cast does not change object files in practice.

Found with UndefinedBehaviorSanitizer (shift).

Based on a patch by Piotr Sikora.







Geo: fixed uninitialized memory access.
2024-03-14T14:37:20+00:00

Piotr Sikora
piotr@aviatrix.com

2024-03-14T14:37:20+00:00

d3d64cacb3ce96477d354fe17d3b5c6e348f933a

While copying ngx_http_variable_value_t structures to geo binary base
in ngx_http_geo_copy_values(), and similarly in the stream module,
uninitialized parts of these structures are copied as well.  These
include the "escape" field and possible holes.  Calculating crc32 of
this data triggers uninitialized memory access.

Found with MemorySanitizer.

Signed-off-by: Piotr Sikora <piotr@aviatrix.com>





While copying ngx_http_variable_value_t structures to geo binary base
in ngx_http_geo_copy_values(), and similarly in the stream module,
uninitialized parts of these structures are copied as well.  These
include the "escape" field and possible holes.  Calculating crc32 of
this data triggers uninitialized memory access.

Found with MemorySanitizer.

Signed-off-by: Piotr Sikora <piotr@aviatrix.com>







Stream: $server_name.
2024-03-22T14:39:50+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-03-22T14:39:50+00:00

5e79d98a59b6d094145200976077aa7ca34a84d0