/ Register

Learn about Centmin Mod LEMP Stack today
Become a Member

Beta Branch add NGINX_PRIORITIZECHACHA patch routine support

Discussion in 'Centmin Mod Github Commits' started by eva2000, Sep 26, 2018.

Previous Thread Next Thread
Loading...
  1. Sep 26, 2018 #1
    eva2000

    eva2000 Administrator Staff Member

    58,904
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    12:55 AM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
    add NGINX_PRIORITIZECHACHA patch routine support

    - Add NGINX_PRIORITIZECHACHA='n' variable support disabled by default unless set in persistent config file /etc/centminmod/custom_config.inc as NGINX_PRIORITIZECHACHA='y' and OpenSSL 1.1.1+ and Nginx 1.15.4+ are detected. Current patch doesn't work but the routine is put in place so that when a working patch is is available Nginx - [nginx-announce] nginx-1.15.4

    Continue reading...

    123.09beta01 branch
     
  2. Sep 26, 2018 #2
    buik

    buik “The best traveler is one without a camera.”

    2,044
    527
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,691
    Local Time:
    4:55 PM
    This is a release blocker if you ask me.

    Nginx is not going to support the OpenSSL 1.1.1 feature: SSL_OP_PRIORITIZE_CHACHA as it is classified by the Nginx team as hack.

    Also the Nginx patch from carter.li won't work.
    So you have to look further on the OpenSSL area.

    I could rebuild the SSL_OP_PRIORITIZE_CHACHA OpenSSL 1.1 patch.
    But then there must be enough enthusiasm for it.
     
Previous Thread Next Thread
Loading...

.