Revert "feature: updated the NGINX patches for async SSL session fetching to support OpenSSL 1.1.1."

This reverts commit 9e834398de. Support for OpenSSL 1.1.1 will come with the 1.17.1 series of NGINX patches. Since no other 1.15.8.* releases are planned, we are reverting the state of the 1.15.8 patches to that of the 1.15.8.1 release.
2024-10-13 00:29:41 +00:00 · 2019-07-02 11:55:50 -07:00
parent b04577cd47
commit 08e9e50782
2 changed files with 4 additions and 29 deletions
--- a/patches/nginx-1.15.8-ssl_pending_session.patch
+++ b/patches/nginx-1.15.8-ssl_pending_session.patch
@ -0,0 +1,16 @@
+--- nginx-1.15.8/src/event/ngx_event_openssl.c	2016-07-17 19:20:30.411137606 -0700
+++ nginx-1.15.8-patched/src/event/ngx_event_openssl.c	2016-07-19 16:53:35.539768477 -0700
+@@ -1307,7 +1307,12 @@ ngx_ssl_handshake(ngx_connection_t *c)
+     }
+ 
+ #if OPENSSL_VERSION_NUMBER >= 0x10002000L
+-    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
+#   ifdef SSL_ERROR_PENDING_SESSION
+        || sslerr == SSL_ERROR_PENDING_SESSION
+#   endif
+       )
+    {
+         c->read->handler = ngx_ssl_handshake_handler;
+         c->write->handler = ngx_ssl_handshake_handler;
+