delta/memcached.git - github.com: memcached/memcached.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Release TLS read and write buffers when idle	Tharanga Gamaethige	2022-08-26	1	-0/+3
\| \| \| \| \| \| \|	By default OpenSSL uses static large read/write buffers with TLS connections. For memcached instances with a lot of client connections this can quickly add up to gigabytes of memory. This options allows the buffers to release when the clients are idle.
*	Disable TLS re-negotiation from SSL context	Qu Chen	2022-07-24	1	-4/+11
\| \| \| \|	via SSL_OP_NO_RENEGOTIATION option
*	tls: Add switch to opt-in to kernel TLS on OpenSSL 3.0.0+	Kevin Lin	2022-07-03	1	-0/+10
\|
*	Replace OPENSSL_VERSION_NUMBER check with defined(TLS1_3_VERSION) check for ↵	Kevin Lin	2021-11-23	1	-1/+1
\| \| \| \| \| \| \|	TLS v1.3 compatibility This provides compatibility with other SSL libraries like LibreSSL with different semantics of OPENSSL_VERSION_NUMBER.
*	Configurable minimum supported TLS protocol version	Kevin Lin	2021-09-27	1	-4/+20
\| \| \| \| \| \| \|	`-o ssl_min_version` can be used to configure the server to only accept handshakes from clients with a minimum TLS protocol version. Currently supported options are TLS v1.0, TLS v1.1, TLS v1.2, and TLS v1.3 (OpenSSL 1.1.1+ only).
*	Fix typos in doc/code comments (tem->item, etc)	Tyson Andre	2021-08-05	1	-1/+1
\| \| \| \| \|	Note: Do not fix typos in crc32.c because it's copied from an upstream source
*	adding openssl errors to SSL certificate loading error messages	Tharanga Gamaethige	2020-07-02	1	-25/+58
\|
*	Add: `-o ssl_session_cache`, disabled by default	Kevin Lin	2020-03-27	1	-1/+25
\| \| \| \|	Enables server-side TLS session caching.
*	tls: fix refresh_certs crash when disabled	dormando	2020-03-23	1	-0/+5
\| \| \| \| \|	segfaults server if refresh_certs command is run with TLS compiled in but not enabled.
*	Note that the help string is too long and triggers	David Carlier	2020-01-13	1	-1/+1
\| \| \| \| \| \| \| \|	compilation warning when enabling TLS (at least) but https://github.com/memcached/memcached/pull/496 seemingly will fix it. TLS feature using native API for comparison instead as on some platforms pthread_t is an opaque type.
*	Reload CA cert in refresh routine	Kevin Lin	2019-09-28	1	-17/+12
\| \| \| \| \| \|	This change also reloads the CA certificate, if supplied, in addition to the certificate and private key when the server receives a `refresh_certs` command.
*	Basic implementation of TLS for memcached.1.5.13	Tharanga Gamaethige	2019-04-15	1	-0/+195
	Most of the work done by Tharanga. Some commits squashed in by dormando. Also reviewed by dormando. Tested, working, but experimental implementation of TLS for memcached. Enable with ./configure --enable-tls Requires OpenSSL 1.1.0 or better. See `memcached -h` output for usage.