Nginx/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2024-11-21 16:28:40 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
The official NGINX Open Source repository.
7,091 Commits 21 Branches 567 Tags 79 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
4d61d59ae9
Go to file
Maxim Dounin 4d61d59ae9 SSL: workaround for session timeout handling with TLSv1.3. 
OpenSSL with TLSv1.3 updates the session creation time on session
resumption and keeps the session timeout unmodified, making it possible
to maintain the session forever, bypassing client certificate expiration
and revocation.  To make sure session timeouts are actually used, we
now update the session creation time and reduce the session timeout
accordingly.

BoringSSL with TLSv1.3 ignores configured session timeouts and uses a
hardcoded timeout instead, 7 days.  So we update session timeout to
the configured value as soon as a session is created.
2022-10-12 20:14:57 +03:00
auto Win32: disabled threads support in OpenSSL builds. 2022-09-07 00:47:31 +03:00
conf
contrib Contrib: vim syntax, update core and 3rd party module directives. 2022-06-18 15:54:40 +03:00
docs nginx-1.23.1-RELEASE 2022-07-19 17:05:27 +03:00
misc Updated OpenSSL used for win32 builds. 2022-07-19 17:03:30 +03:00
src SSL: workaround for session timeout handling with TLSv1.3. 2022-10-12 20:14:57 +03:00
.hgtags release-1.23.1 tag 2022-07-19 17:05:27 +03:00