doc: fix assembler requirement for OpenSSL-1.1.1
Add new requirements of assembler version for AVX-512 support
in OpenSSL-1.1.1.
Gbp-Pq: Topic ssl
Gbp-Pq: Name
5703c7f9a657b361e8ea5f8b6eb1174fe5598a64.patch
tls: workaround handshakedone in renegotiation
`SSL_CB_HANDSHAKE_START` and `SSL_CB_HANDSHAKE_DONE` are called
sending HelloRequest in OpenSSL-1.1.1.
We need to check whether this is in a renegotiation state or not.
Gbp-Pq: Topic ssl
Gbp-Pq: Name
8fad350619e8cccb9f43f4d56f4ca743f5d069c2.patch
tls: make ossl 1.1.1 cipher list throw error
Make OpenSSL 1.1.1 error during cipher list setting if it would have
errored with OpenSSL 1.1.0.
Can be dropped after our OpenSSL fixes this upstream.
See: https://github.com/openssl/openssl/pull/7759
Gbp-Pq: Topic ssl
Gbp-Pq: Name
e5b03b82f72e6915bd24c7ef1481abd1842b84fe.patch
tls: add min/max protocol version options
The existing secureProtocol option only allows setting the allowed
protocol to a specific version, or setting it to "all supported
versions". It also used obscure strings based on OpenSSL C API
functions. Directly setting the min or max is easier to use and explain.
Backport-PR-URL: https://github.com/nodejs/node/pull/24676
PR-URL: https://github.com/nodejs/node/pull/24405
Reviewed-By: Refael Ackermann <refack@gmail.com>
Reviewed-By: Rod Vagg <rod@vagg.org>
Gbp-Pq: Topic ssl
Gbp-Pq: Name
acb73518b7274bacdfc133fd121e91dfd6ba460b.patch
projects / nodejs.git / log