Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 62043c98a631eb6d085cc8114bb621cd253f20ea
commit62043c98a631eb6d085cc8114bb621cd253f20ea[log] [tgz]
authorCyril Bonté <cyril.bonte@free.fr>Sun Jan 25 00:16:08 2015 +0100
committerWilly Tarreau <w@1wt.eu>Sun Jan 25 00:49:16 2015 +0100
tree8a7763ca927c2e2a344c799b79b7d3c66994cbaa
parent8eccbf741c63e8583d6fbedffb9d725f46e49ee6 [diff]
MINOR: ssl: load certificates in alphabetical order

As reported by Raphaël Enrici, certificates loaded from a directory are loaded
in a non predictive order. If no certificate was first loaded from a file, it
can result in different behaviours when haproxy is used in cluster.
We can also imagine other cases which weren't met yet.

Instead of using readdir(), we can use scandir() and sort files alphabetically.
This will ensure a predictive behaviour.

This patch should also be backported to 1.5.
(cherry picked from commit 3180f7b55434f19ba65f262dea450c93c769228b)
2 files changed
tree: 8a7763ca927c2e2a344c799b79b7d3c66994cbaa
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION