1. 35f4a9d MINOR: ssl/cli: 'show ssl cert' displays the chain by William Lallemand · 4 years, 9 months ago
  2. 105599c BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions by Willy Tarreau · 4 years, 9 months ago
  3. ded15b7 BUILD: ssl: only pass unsigned chars to isspace() by Willy Tarreau · 4 years, 9 months ago
  4. 3f25ae3 BUG/MINOR: ssl: load .key in a directory only after PEM by William Lallemand · 4 years, 9 months ago
  5. 4c5adbf MINOR: ssl: load the key from a dedicated file by William Lallemand · 4 years, 9 months ago
  6. e8aa5f2 BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 4 years, 9 months ago
  7. 70df7bf MINOR: ssl: add "issuers-chain-path" directive. by Emmanuel Hocdet · 6 years ago
  8. 696f317 BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init by William Lallemand · 4 years, 10 months ago
  9. 4dd145a BUG/MINOR: ssl: clear the SSL errors on DH loading failure by William Lallemand · 4 years, 10 months ago
  10. 731248f BUG/MINOR: ssl: we may only ignore the first 64 errors by Willy Tarreau · 4 years, 10 months ago
  11. 3af48e7 MINOR: ssl: ssl-load-extra-files configure loading of files by William Lallemand · 4 years, 10 months ago
  12. a25a19f BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 by William Lallemand · 4 years, 10 months ago
  13. efe5e8e BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. by Olivier Houchard · 4 years, 10 months ago
  14. 6d53cd6 MINOR: ssl: Remove dead code. by Olivier Houchard · 4 years, 10 months ago
  15. 3139c1b BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. by Frédéric Lécaille · 4 years, 10 months ago
  16. 911db9b MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE by Willy Tarreau · 4 years, 10 months ago
  17. 4450b58 MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE by Willy Tarreau · 4 years, 10 months ago
  18. 220a26c BUG/MEDIUM: 0rtt: Only consider the SSL handshake. by Olivier Houchard · 4 years, 10 months ago
  19. c192b0a MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* by Willy Tarreau · 4 years, 10 months ago
  20. 078156d BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" by Emmanuel Hocdet · 4 years, 10 months ago
  21. dad239d BUG/MINOR: ssl: typo in previous patch by William Lallemand · 4 years, 10 months ago
  22. 5c3c96f BUG/MINOR: ssl: memory leak w/ the ocsp_issuer by William Lallemand · 4 years, 10 months ago
  23. b829dda BUG/MINOR: ssl: increment issuer refcount if in chain by William Lallemand · 4 years, 10 months ago
  24. 75b15f7 BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded by William Lallemand · 4 years, 10 months ago
  25. 477902b MEDIUM: connections: Get ride of the xprt_done callback. by Olivier Houchard · 4 years, 10 months ago
  26. 6b5b44e BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent by Emmanuel Hocdet · 5 years ago
  27. e9ff899 BUILD: ssl: more elegant anti-replay feature presence check by Ilya Shipitsin · 4 years, 10 months ago
  28. 224a087 BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak by Emmanuel Hocdet · 4 years, 10 months ago
  29. eb73dc3 BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak by Emmanuel Hocdet · 4 years, 10 months ago
  30. 0667fae BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak by Emmanuel Hocdet · 4 years, 10 months ago
  31. ebf840b MINOR: ssl: accept 'verify' bind option with 'set ssl cert' by Emmanuel Hocdet · 4 years, 10 months ago
  32. 71f8297 MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. by Elliot Otchet · 4 years, 10 months ago
  33. ee1a6fc MINOR: connection: make the last arg of subscribe() a struct wait_event* by Willy Tarreau · 4 years, 10 months ago
  34. 113d52b MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock by Willy Tarreau · 4 years, 10 months ago
  35. 3381bf8 MEDIUM: connection: get rid of CO_FL_CURR_* flags by Willy Tarreau · 4 years, 10 months ago
  36. 9a8ef7f CLEANUP: ssl: remove opendir call in ssl_sock_load_cert by William Dauchy · 4 years, 10 months ago
  37. 7f4f7f1 MINOR: ssl: Remove unused variable "need_out". by Olivier Houchard · 4 years, 11 months ago
  38. a26d1e1 BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility by Lukas Tribus · 5 years ago
  39. 54907bb BUG/MEDIUM: ssl: Revamp the way early data are handled. by Olivier Houchard · 5 years ago
  40. ba22e90 BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 by William Lallemand · 5 years ago
  41. d4f946c MINOR: ssl/cli: 'show ssl cert' give information on the certificates by William Lallemand · 5 years ago
  42. 545989f BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. by Olivier Houchard · 5 years ago
  43. 3777e3a BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 by Emmanuel Hocdet · 5 years ago
  44. 920b035 BUG/MINOR: ssl/cli: don't overwrite the filters variable by William Lallemand · 5 years ago
  45. 230662a BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights by William Lallemand · 5 years ago
  46. 140b64f BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 by Emmanuel Hocdet · 5 years ago
  47. b270e81 MINOR: ssl: deduplicate crl-file by Emmanuel Hocdet · 5 years ago
  48. 129d328 MINOR: ssl: compute ca-list from deduplicate ca-file by Emmanuel Hocdet · 5 years ago
  49. d4f9a60 MINOR: ssl: deduplicate ca-file by Emmanuel Hocdet · 5 years ago
  50. 9312853 CLEANUP: ssl: Clean up error handling by Tim Duesterhus · 5 years ago
  51. c8bb153 CLEANUP: ssl: check if a transaction exists once before setting it by William Dauchy · 5 years ago
  52. c0e820c BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 5 years ago
  53. d14b49c BUG/MINOR: ssl: fix curve setup with LibreSSL by Lukas Tribus · 5 years ago
  54. 5f1fa7d MINOR: ssl: fix possible null dereference in error handling by William Dauchy · 5 years ago
  55. ed44243 MINOR: ssl/cli: display warning during 'commit ssl cert' by William Lallemand · 5 years ago
  56. 8ef0c2a MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit by William Lallemand · 5 years ago
  57. 8b45391 MINOR: ssl: ssl_sock_prepare_ctx() return an error code by William Lallemand · 5 years ago
  58. 3c8bde8 BUILD/MINOR: ssl: fix compiler warning about useless statement by Eric Salama · 5 years ago
  59. 0bc9c8a MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction by William Lallemand · 5 years ago
  60. c5fdf0f BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 by Emmanuel Hocdet · 5 years ago
  61. c3775d2 BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer by Emmanuel Hocdet · 5 years ago
  62. 21724f0 MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' by William Lallemand · 5 years ago
  63. 3246d94 BUG/MINOR: ssl/cli: fix an error when a file is not found by William Lallemand · 5 years ago
  64. 37031b8 BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension by William Lallemand · 5 years ago
  65. 8a7fdf0 BUG/MEDIUM: ssl/cli: don't alloc path when cert not found by William Lallemand · 5 years ago
  66. 40f2f1e BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert by Emmanuel Hocdet · 5 years ago
  67. eaad5cc MINOR: ssl: BoringSSL ocsp_response does not need issuer by Emmanuel Hocdet · 5 years ago
  68. 83cbd3c BUG/MINOR: ssl: double free on error for ckch->{key,cert} by Emmanuel Hocdet · 5 years ago
  69. ed17f47 BUG/MINOR: ssl: ckch->chain must be initialized by Emmanuel Hocdet · 5 years ago
  70. f6ac4fa BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl by Emmanuel Hocdet · 5 years ago
  71. 33cc76f BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() by William Lallemand · 5 years ago
  72. beea2a4 CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) by William Lallemand · 5 years ago
  73. bc6ca7c MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' by William Lallemand · 5 years ago
  74. 0580052 BUILD/MINOR: ssl: shut up a build warning about format truncation by Willy Tarreau · 5 years ago
  75. 430413e MINOR: ssl/cli: rework the 'set ssl cert' IO handler by William Lallemand · 5 years ago
  76. 1212db4 BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error by William Lallemand · 5 years ago
  77. f29cdef BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl by William Lallemand · 5 years ago
  78. 541a534 BUG/MINOR: ssl/cli: fix build of SCTL and OCSP by William Lallemand · 5 years ago
  79. 8f840d7 MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler by William Lallemand · 5 years ago
  80. 0c3b7d9 MINOR: ssl/cli: assignate a new ckch_store by William Lallemand · 5 years ago
  81. 8c1cdde MINOR: ssl: new functions duplicate and free a ckch_store by William Lallemand · 5 years ago
  82. 8d0f893 MINOR: ssl: copy a ckch from src to dst by William Lallemand · 5 years ago
  83. 455af50 MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents by William Lallemand · 5 years ago
  84. 44b3532 MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI by William Lallemand · 5 years ago
  85. 849eed6 BUG/MINOR: ssl/cli: fix looking up for a bundle by William Lallemand · 5 years ago
  86. 96a9c97 MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() by William Lallemand · 5 years ago
  87. f9568fc MINOR: ssl: load issuer from file or from buffer by William Lallemand · 5 years ago
  88. 0dfae6c MINOR: ssl: load sctl from buf OR from a file by William Lallemand · 5 years ago
  89. 3b5f360 MINOR: ssl: OCSP functions can load from file or buffer by William Lallemand · 5 years ago
  90. 0201047 CLEANUP: ssl: fix SNI/CKCH lock labels by William Lallemand · 5 years ago
  91. 34779c3 CLEANUP: ssl: remove old TODO commentary by William Lallemand · 5 years ago
  92. eb46965 BUG/MINOR: ssl: fix memcpy overlap without consequences. by Emeric Brun · 5 years ago
  93. e566f3d BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed by Christopher Faulet · 5 years ago
  94. a9363eb BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 by Emeric Brun · 5 years ago
  95. 7a88336 CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn by Emeric Brun · 5 years ago
  96. a96b582 CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn by Emeric Brun · 5 years ago
  97. 054563d CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn by Emeric Brun · 5 years ago
  98. f69ed1d CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. by Emeric Brun · 5 years ago
  99. 8c5414a CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* by Willy Tarreau · 5 years ago
  100. bbc9196 CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes by Willy Tarreau · 5 years ago