Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / c5fdf0f3dcf91435c943742eaf338167e761dede
commitc5fdf0f3dcf91435c943742eaf338167e761dede[log] [tgz]
authorEmmanuel Hocdet <manu@gandi.net>Mon Nov 04 15:49:46 2019 +0100
committerWilliam Lallemand <wlallemand@haproxy.org>Mon Nov 18 14:58:27 2019 +0100
treef586a00d43c32ab7acb75b6c4fa6059211e75bbe
parentc3775d28f9be97696e4ded94bf647c0d34cf9f54 [diff]
BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1

Certificate selection in client_hello_cb (openssl >= 1.1.1) correctly
handles crt-list neg filter. Certificate selection for openssl < 1.1.1
has not been touched for a while: crt-list neg filter is not the same
than his counterpart and is wrong. Fix it to mimic the same behavior
has is counterpart.

It should be backported as far as 1.6.
1 file changed
tree: f586a00d43c32ab7acb75b6c4fa6059211e75bbe
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .cirrus.yml
  12. .gitignore
  13. .travis.yml
  14. BRANCHES
  15. CHANGELOG
  16. CONTRIBUTING
  17. INSTALL
  18. LICENSE
  19. MAINTAINERS
  20. Makefile
  21. README
  22. ROADMAP
  23. SUBVERS
  24. VERDATE
  25. VERSION