Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / d4f9a60ee2648c9552503d7742530e64d28ab027
commitd4f9a60ee2648c9552503d7742530e64d28ab027[log] [tgz]
authorEmmanuel Hocdet <manu@gandi.net>Thu Oct 24 11:32:47 2019 +0200
committerWilliam Lallemand <wlallemand@haproxy.org>Thu Nov 28 11:11:20 2019 +0100
tree6bd416eb9f5102edb4557c8721a8005250850c43
parentcefbbd98116cc97b43711b784638789c5557e7e6 [diff]
MINOR: ssl: deduplicate ca-file

Typically server line like:
'server-template srv 1-1000 *:443 ssl ca-file ca-certificates.crt'
load ca-certificates.crt 1000 times and stay duplicated in memory.
Same case for bind line: ca-file is loaded for each certificate.
Same 'ca-file' can be load one time only and stay deduplicated in
memory.

As a corollary, this will prevent file access for ca-file when
updating a certificate via CLI.
2 files changed
tree: 6bd416eb9f5102edb4557c8721a8005250850c43
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .cirrus.yml
  12. .gitignore
  13. .travis.yml
  14. BRANCHES
  15. CHANGELOG
  16. CONTRIBUTING
  17. INSTALL
  18. LICENSE
  19. MAINTAINERS
  20. Makefile
  21. README
  22. ROADMAP
  23. SUBVERS
  24. VERDATE
  25. VERSION