OpenResty® Scalable Web Platform by Extending NGINX with Lua

Nginx patches by OpenResty for SSL features

Thibault Charbonnier , 05 Jun 2019 (created 03 Jun 2019)

If you are not using an official OpenResty release, then you need to apply our NGINX core patches to support yielding operations in lua module's ssl_session_fetch_by_lua* and ssl_certificate_by_lua* directives. OpenResty releases after 1.11.2.1 already include these patches. If you are building your own Nginx with OpenResty's lua modules, then you will have to apply the patches yourself:

Additionally, note that if you are using OpenSSL versions older than 1.1.1 such as 1.1.0 or 1.0.2, then you must also apply our OpenSSL patches. Our openresty-openssl pre-built packages already include these patches.

Nginx 1.15.x series

For Nginx 1.15.x cores, apply this patch and this patch.

Nginx 1.13.x versions

For Nginx 1.13.x cores, apply this patch and this patch.

Nginx 1.11.x versions

For Nginx 1.11.x cores, apply this patch and this patch.