update reference.json

ryepup · github-actions[bot] · commit 71392c49d9a2 · 2025-11-07T14:09:11.000Z
diff --git a/reference-lib/package-lock.json b/reference-lib/package-lock.json
diff --git a/reference-lib/package.json b/reference-lib/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@nginx/reference-lib",
-  "version": "1.1.20",
+  "version": "1.1.21",
   "description": "",
   "main": "dist/index.js",
   "type": "module",
diff --git a/reference-lib/src/reference.json b/reference-lib/src/reference.json
@@ -9452,8 +9452,8 @@
             "<p><code>on</code> | <code>off</code></p>\n"
           ],
           "isBlock": false,
-          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",
-          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"
+          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
+          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"
         },
         {
           "name": "ssl_certificate_key",
@@ -9571,8 +9571,8 @@
             "<p><code>on</code> | <code>off</code></p>\n"
           ],
           "isBlock": false,
-          "description_md": "Enables or disables TLS 1.3\n[early data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3).\n> Requests sent within early data are subject to\n> [replay attacks](https://datatracker.ietf.org/doc/html/rfc8470).\n> To protect against such attacks at the application layer,\n> the [$ssl_early_data](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data) variable\n> should be used.\n\n\n```\nproxy_set_header Early-Data $ssl_early_data;\n```\n\n> The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n> [BoringSSL](https://boringssl.googlesource.com/boringssl/).",
-          "description_html": "<p>Enables or disables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8446#section-2.3\" target=\"_blank\">early data</a>.</p>\n\n<blockquote>\n<p>Requests sent within early data are subject to\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8470\" target=\"_blank\">replay attacks</a>.\nTo protect against such attacks at the application layer,\nthe <a href=\"https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data\" target=\"_blank\">$ssl_early_data</a> variable\nshould be used.</p>\n</blockquote>\n\n<pre><code>proxy_set_header Early-Data $ssl_early_data;\n</code></pre>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n<a href=\"https://boringssl.googlesource.com/boringssl/\" target=\"_blank\">BoringSSL</a>.</p>\n</blockquote>\n"
+          "description_md": "Enables or disables TLS 1.3\n[early data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3).\n> The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n> [BoringSSL](https://boringssl.googlesource.com/boringssl/).\n\n> Requests sent within early data are subject to\n> [replay attacks](https://datatracker.ietf.org/doc/html/rfc8470).\n> To protect against such attacks at the application layer,\n> the [$ssl_early_data](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data) variable\n> should be used.\n\n```\nproxy_set_header Early-Data $ssl_early_data;\n```\n\n> OpenSSL built-in replay protection is disabled,\n> because it interferes with session resumption.\n> It can be turned back if deemed necessary.\n\n```\nssl_conf_command Options AntiReplay;\n```",
+          "description_html": "<p>Enables or disables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8446#section-2.3\" target=\"_blank\">early data</a>.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n<a href=\"https://boringssl.googlesource.com/boringssl/\" target=\"_blank\">BoringSSL</a>.</p>\n\n<p>Requests sent within early data are subject to\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8470\" target=\"_blank\">replay attacks</a>.\nTo protect against such attacks at the application layer,\nthe <a href=\"https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data\" target=\"_blank\">$ssl_early_data</a> variable\nshould be used.</p>\n</blockquote>\n\n<pre><code>proxy_set_header Early-Data $ssl_early_data;\n</code></pre>\n\n<blockquote>\n<p>OpenSSL built-in replay protection is disabled,\nbecause it interferes with session resumption.\nIt can be turned back if deemed necessary.</p>\n</blockquote>\n\n<pre><code>ssl_conf_command Options AntiReplay;\n</code></pre>\n"
         },
         {
           "name": "ssl_ecdh_curve",
@@ -9978,8 +9978,8 @@
         },
         {
           "name": "$ssl_client_sigalg",
-          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).",
-          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n"
+          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",
+          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
         },
         {
           "name": "$ssl_client_v_end",
@@ -10038,8 +10038,8 @@
         },
         {
           "name": "$ssl_sigalg",
-          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).",
-          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n"
+          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",
+          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
         }
       ]
     },
@@ -13074,8 +13074,8 @@
             "<p><code>on</code> | <code>off</code></p>\n"
           ],
           "isBlock": false,
-          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",
-          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"
+          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
+          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"
         },
         {
           "name": "ssl_certificate_key",
@@ -16255,8 +16255,8 @@
             "<p><code>on</code> | <code>off</code></p>\n"
           ],
           "isBlock": false,
-          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",
-          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"
+          "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
+          "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"
         },
         {
           "name": "ssl_certificate_key",
@@ -16766,8 +16766,8 @@
         },
         {
           "name": "$ssl_client_sigalg",
-          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).",
-          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n"
+          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",
+          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
         },
         {
           "name": "$ssl_client_v_end",
@@ -16821,8 +16821,8 @@
         },
         {
           "name": "$ssl_sigalg",
-          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).",
-          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n"
+          "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",
+          "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
         }
       ]
     },
@@ -17481,5 +17481,5 @@
       ]
     }
   ],
-  "version": "https://github.com/nginx/nginx.org/commit/ea784af4d7792b9117e29e257c2a325cc8265fe5"
+  "version": "https://github.com/nginx/nginx.org/commit/4ff366a9d4834c8e3a5c349318625236d39090c1"
 }

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "@nginx/reference-lib",`
`3`		`- "version": "1.1.20",`
	`3`	`+ "version": "1.1.21",`
`4`	`4`	`"description": "",`
`5`	`5`	`"main": "dist/index.js",`
`6`	`6`	`"type": "module",`
Original file line number	Diff line number	Diff line change
`@@ -9452,8 +9452,8 @@`
`9452`	`9452`	`"<p><code>on</code> \| <code>off</code></p>\n"`
`9453`	`9453`	`],`
`9454`	`9454`	`"isBlock": false,`
`9455`		`- "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",`
`9456`		`- "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"`
	`9455`	+ "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
	`9456`	`+ "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"`
`9457`	`9457`	`},`
`9458`	`9458`	`{`
`9459`	`9459`	`"name": "ssl_certificate_key",`
`@@ -9571,8 +9571,8 @@`
`9571`	`9571`	`"<p><code>on</code> \| <code>off</code></p>\n"`
`9572`	`9572`	`],`
`9573`	`9573`	`"isBlock": false,`
`9574`		- "description_md": "Enables or disables TLS 1.3\n[early data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3).\n> Requests sent within early data are subject to\n> [replay attacks](https://datatracker.ietf.org/doc/html/rfc8470).\n> To protect against such attacks at the application layer,\n> the [$ssl_early_data](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data) variable\n> should be used.\n\n\n```\nproxy_set_header Early-Data $ssl_early_data;\n```\n\n> The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n> [BoringSSL](https://boringssl.googlesource.com/boringssl/).",
`9575`		- "description_html": "<p>Enables or disables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8446#section-2.3\" target=\"_blank\">early data</a>.</p>\n\n<blockquote>\n<p>Requests sent within early data are subject to\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8470\" target=\"_blank\">replay attacks</a>.\nTo protect against such attacks at the application layer,\nthe <a href=\"https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data\" target=\"_blank\">$ssl_early_data</a> variable\nshould be used.</p>\n</blockquote>\n\n<pre><code>proxy_set_header Early-Data $ssl_early_data;\n</code></pre>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n<a href=\"https://boringssl.googlesource.com/boringssl/\" target=\"_blank\">BoringSSL</a>.</p>\n</blockquote>\n"
	`9574`	+ "description_md": "Enables or disables TLS 1.3\n[early data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3).\n> The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n> [BoringSSL](https://boringssl.googlesource.com/boringssl/).\n\n> Requests sent within early data are subject to\n> [replay attacks](https://datatracker.ietf.org/doc/html/rfc8470).\n> To protect against such attacks at the application layer,\n> the [$ssl_early_data](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data) variable\n> should be used.\n\n```\nproxy_set_header Early-Data $ssl_early_data;\n```\n\n> OpenSSL built-in replay protection is disabled,\n> because it interferes with session resumption.\n> It can be turned back if deemed necessary.\n\n```\nssl_conf_command Options AntiReplay;\n```",
	`9575`	+ "description_html": "<p>Enables or disables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8446#section-2.3\" target=\"_blank\">early data</a>.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 1.1.1 or higher (1.15.4) and\n<a href=\"https://boringssl.googlesource.com/boringssl/\" target=\"_blank\">BoringSSL</a>.</p>\n\n<p>Requests sent within early data are subject to\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8470\" target=\"_blank\">replay attacks</a>.\nTo protect against such attacks at the application layer,\nthe <a href=\"https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_early_data\" target=\"_blank\">$ssl_early_data</a> variable\nshould be used.</p>\n</blockquote>\n\n<pre><code>proxy_set_header Early-Data $ssl_early_data;\n</code></pre>\n\n<blockquote>\n<p>OpenSSL built-in replay protection is disabled,\nbecause it interferes with session resumption.\nIt can be turned back if deemed necessary.</p>\n</blockquote>\n\n<pre><code>ssl_conf_command Options AntiReplay;\n</code></pre>\n"
`9576`	`9576`	`},`
`9577`	`9577`	`{`
`9578`	`9578`	`"name": "ssl_ecdh_curve",`
`@@ -9978,8 +9978,8 @@`
`9978`	`9978`	`},`
`9979`	`9979`	`{`
`9980`	`9980`	`"name": "$ssl_client_sigalg",`
`9981`		`- "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).",`
`9982`		`- "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n"`
	`9981`	`+ "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",`
	`9982`	+ "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
`9983`	`9983`	`},`
`9984`	`9984`	`{`
`9985`	`9985`	`"name": "$ssl_client_v_end",`
`@@ -10038,8 +10038,8 @@`
`10038`	`10038`	`},`
`10039`	`10039`	`{`
`10040`	`10040`	`"name": "$ssl_sigalg",`
`10041`		`- "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).",`
`10042`		`- "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n"`
	`10041`	`+ "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",`
	`10042`	+ "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
`10043`	`10043`	`}`
`10044`	`10044`	`]`
`10045`	`10045`	`},`
`@@ -13074,8 +13074,8 @@`
`13074`	`13074`	`"<p><code>on</code> \| <code>off</code></p>\n"`
`13075`	`13075`	`],`
`13076`	`13076`	`"isBlock": false,`
`13077`		`- "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",`
`13078`		`- "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"`
	`13077`	+ "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
	`13078`	`+ "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"`
`13079`	`13079`	`},`
`13080`	`13080`	`{`
`13081`	`13081`	`"name": "ssl_certificate_key",`
`@@ -16255,8 +16255,8 @@`
`16255`	`16255`	`"<p><code>on</code> \| <code>off</code></p>\n"`
`16256`	`16256`	`],`
`16257`	`16257`	`"isBlock": false,`
`16258`		`- "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.",`
`16259`		`- "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n</blockquote>\n"`
	`16258`	+ "description_md": "Enables TLS 1.3\n[compression](https://datatracker.ietf.org/doc/html/rfc8879)\nof server certificates.\n> The directive is supported when using OpenSSL 3.2 or higher;\n> the list of supported compression algorithms is provided by the library.\n\n> The directive is supported when using BoringSSL;\n> the list of supported compression algorithms includes\n> `zlib` (1.29.3).",
	`16259`	`+ "description_html": "<p>Enables TLS 1.3\n<a href=\"https://datatracker.ietf.org/doc/html/rfc8879\" target=\"_blank\">compression</a>\nof server certificates.</p>\n\n<blockquote>\n<p>The directive is supported when using OpenSSL 3.2 or higher;\nthe list of supported compression algorithms is provided by the library.</p>\n\n<p>The directive is supported when using BoringSSL;\nthe list of supported compression algorithms includes\n<code>zlib</code> (1.29.3).</p>\n</blockquote>\n"`
`16260`	`16260`	`},`
`16261`	`16261`	`{`
`16262`	`16262`	`"name": "ssl_certificate_key",`
`@@ -16766,8 +16766,8 @@`
`16766`	`16766`	`},`
`16767`	`16767`	`{`
`16768`	`16768`	`"name": "$ssl_client_sigalg",`
`16769`		`- "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).",`
`16770`		`- "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n"`
	`16769`	`+ "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the client certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",`
	`16770`	+ "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the client certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
`16771`	`16771`	`},`
`16772`	`16772`	`{`
`16773`	`16773`	`"name": "$ssl_client_v_end",`
`@@ -16821,8 +16821,8 @@`
`16821`	`16821`	`},`
`16822`	`16822`	`{`
`16823`	`16823`	`"name": "$ssl_sigalg",`
`16824`		`- "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).",`
`16825`		`- "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n"`
	`16824`	`+ "description_md": "returns the\n[signature algorithm](https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16)\nfor the server certificate for an established SSL connection (1.29.3).\n> The variable is supported only when using OpenSSL version 3.5 or higher.\n> With older versions, the variable value will be an empty string.\n\n> The variable is available only for new sessions.",`
	`16825`	+ "description_html": "<p>returns the\n<a href=\"https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16\" target=\"_blank\">signature algorithm</a>\nfor the server certificate for an established SSL connection (1.29.3).</p>\n\n<blockquote>\n<p>The variable is supported only when using OpenSSL version 3.5 or higher.\nWith older versions, the variable value will be an empty string.</p>\n\n<p>The variable is available only for new sessions.</p>\n</blockquote>\n"
`16826`	`16826`	`}`
`16827`	`16827`	`]`
`16828`	`16828`	`},`
`@@ -17481,5 +17481,5 @@`
`17481`	`17481`	`]`
`17482`	`17482`	`}`
`17483`	`17483`	`],`
`17484`		`- "version": "https://github.com/nginx/nginx.org/commit/ea784af4d7792b9117e29e257c2a325cc8265fe5"`
	`17484`	`+ "version": "https://github.com/nginx/nginx.org/commit/4ff366a9d4834c8e3a5c349318625236d39090c1"`
`17485`	`17485`	`}`