Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / ec9c5c5358a1d0c4f34f45406fc2d0e14ca8b754
commitec9c5c5358a1d0c4f34f45406fc2d0e14ca8b754[log] [tgz]
authorFrederic Lecaille <flecaille@haproxy.com>Tue Jan 16 10:17:27 2024 +0100
committerChristopher Faulet <cfaulet@haproxy.com>Wed Jan 17 14:31:55 2024 +0100
tree3ef55bd62e8216f717fc40687e5a3f80667bced2
parent54310dcde1b8a8ef0fd0b84b3c201dedd42e8f20 [diff]
BUG/MEDIUM: quic: keylog callback not called (USE_OPENSSL_COMPAT)

This bug impacts only the QUIC OpenSSL compatibility module (USE_QUIC_OPENSSL_COMPAT)
and it was introduced by this commit:

    BUG/MINOR: quic: Wrong keylog callback setting.

quic_tls_compat_keylog_callback() callback was no more set when the SSL keylog was
enabled by tune.ssl.keylog setting. This is the callback which sets the TLS secrets
into haproxy.

Set it again when the SSL keylog is not enabled by configuration.

Thank you to @Greg57070 for having reported this issue in GH #2412.

Must be backported as far as 2.8.

(cherry picked from commit 0eaf42a2a47f2ee73045e48274ed98e00aa44dba)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit 2e16bafec4adf26300346f6fc58a02845c9c2139)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
1 file changed
tree: 3ef55bd62e8216f717fc40687e5a3f80667bced2
  1. .github/
  2. addons/
  3. admin/
  4. dev/
  5. doc/
  6. examples/
  7. include/
  8. reg-tests/
  9. scripts/
  10. src/
  11. tests/
  12. .cirrus.yml
  13. .gitattributes
  14. .gitignore
  15. .mailmap
  16. .travis.yml
  17. BRANCHES
  18. BSDmakefile
  19. CHANGELOG
  20. CONTRIBUTING
  21. INSTALL
  22. LICENSE
  23. MAINTAINERS
  24. Makefile
  25. README
  26. SUBVERS
  27. VERDATE
  28. VERSION