Hi, > Ok, made some kind of patch, testing it now: > https://github.com/kyprizel/nginx_ssl_ticket_keys > > Not sure about server behaviour in case of invalid key file - should it be > emergency or alert only.
I've just pushed code that's been sitting in my tree for the last few months: http://mailman.nginx.org/pipermail/nginx-devel/2013-September/004290.html It's rather thoroughly tested, but it handles key rollover in different fashion than your code (multiple files with a single session key each vs single file with multiple session keys). Hopefully, it will be helpful. Best regards, Piotr Sikora _______________________________________________ nginx-devel mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx-devel
