Gitiles
Code Review
Sign In
git01.mediatek.com
/
haproxy
/
8068b03467055e3bd4fa5222a6efad0997e3b1cd
/
src
/
ssl_sock.c
« Previous
7d588ee
BUILD: ssl: OpenSSL 0.9.6 has no renegociation
by Willy Tarreau
· 12 years ago
4f65bff
MINOR: ssl: Add tune.ssl.lifetime statement in global.
by Emeric Brun
· 12 years ago
674b743
BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
by Emeric Brun
· 12 years ago
282a76a
BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
by Emeric Brun
· 12 years ago
8af8dd1
BUG/MEDIUM: ssl: review polling on reneg.
by Emeric Brun
· 12 years ago
3fdb366
MAJOR: connection: replace struct target with a pointer to an enum
by Willy Tarreau
· 12 years ago
19d14ef
MEDIUM: make the trash be a chunk instead of a char *
by Willy Tarreau
· 12 years ago
f2943dc
MAJOR: session: detach the connections from the stream interfaces
by Willy Tarreau
· 12 years ago
c919dc6
CLEANUP: remove trashlen
by Willy Tarreau
· 12 years ago
61694ab
MINOR: ssl: checks the consistency of a private key with the corresponding certificate
by Emeric Brun
· 12 years ago
a7aa309
MINOR: ssl: add 'crt' statement on server.
by Emeric Brun
· 12 years ago
ce5ad80
MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
by Emeric Brun
· 12 years ago
521a011
MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
by Emeric Brun
· 12 years ago
7f56e74
MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
by Emeric Brun
· 12 years ago
8785589
MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
by Emeric Brun
· 12 years ago
a7359fd
MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
by Emeric Brun
· 12 years ago
8d59840
MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
by Willy Tarreau
· 12 years ago
fe68f68
MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
by Emeric Brun
· 12 years ago
589fcad
MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
by Emeric Brun
· 12 years ago
2525b6b
MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
by Emeric Brun
· 12 years ago
566dc55
MINOR: ssl: improve socket behaviour upon handshake abort.
by Willy Tarreau
· 12 years ago
8c866a3
BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
by Willy Tarreau
· 12 years ago
6c9a3d5
MEDIUM: ssl: add support for the "npn" bind keyword
by Willy Tarreau
· 12 years ago
a33c654
MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
by Willy Tarreau
· 12 years ago
ffc3fcd
MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
by Willy Tarreau
· 12 years ago
ef42d92
MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
by Emeric Brun
· 12 years ago
f9c5c47
MINOR: ssl: add statement 'no-tls-tickets' on server side.
by Emeric Brun
· 12 years ago
ecc91fe
MEDIUM: ssl: reject ssl server keywords in default-server statement
by Emeric Brun
· 12 years ago
94324a4
MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
by Emeric Brun
· 12 years ago
92faadf
MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
by Willy Tarreau
· 12 years ago
76d8895
MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
by Emeric Brun
· 12 years ago
2cb7ae5
MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
by Emeric Brun
· 12 years ago
8967549
MINOR: ssl: use bit fields to store ssl options instead of one int each
by Emeric Brun
· 12 years ago
fb510ea
MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
by Emeric Brun
· 12 years ago
9b3009b
MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
by Emeric Brun
· 12 years ago
c8e8d12
MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
by Emeric Brun
· 12 years ago
9fa8973
BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
by Emeric Brun
· 12 years ago
3c4bc6e
MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
by Emeric Brun
· 12 years ago
f7bc57c
REORG: connection: rename the data layer the "transport layer"
by Willy Tarreau
· 12 years ago
8923019
BUG/MINOR: ssl: report the L4 connection as established when possible
by Willy Tarreau
· 12 years ago
051cdab
BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
by Emeric Brun
· 12 years ago
561e574
BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
by Emeric Brun
· 12 years ago
2d0c482
MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
by Emeric Brun
· 12 years ago
c0ff492
MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
by Emeric Brun
· 12 years ago
f282a81
MINOR: ssl: add fetches and ACLs to return verify errors
by Emeric Brun
· 12 years ago
baf8ffb
MINOR: ssl: add fetch and ACL 'ssl_verify_result'
by Emeric Brun
· 12 years ago
81c00f0
MINOR: ssl: add ignore verify errors options
by Emeric Brun
· 12 years ago
e64aef1
MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
by Emeric Brun
· 12 years ago
d94b3fe
MEDIUM: ssl: add client certificate authentication support
by Emeric Brun
· 12 years ago
2b58d04
MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
by Emeric Brun
· 12 years ago
a4bcd9a
MINOR: ssl: try to load Diffie-Hellman parameters from cert file
by Emeric Brun
· 12 years ago
81796be
MINOR: ssl: set the listeners' data layer to ssl during parsing
by Willy Tarreau
· 12 years ago
eb6cead
MINOR: standard: make memprintf() support a NULL destination
by Willy Tarreau
· 12 years ago
4348fad
MAJOR: listeners: use dual-linked lists to chain listeners with frontends
by Willy Tarreau
· 12 years ago
51fb765
MINOR: listener: add a scope field in the bind keyword lists
by Willy Tarreau
· 12 years ago
79eeafa
MEDIUM: move bind SSL parsing to ssl_sock
by Willy Tarreau
· 12 years ago
2a65ff0
MEDIUM: config: replace ssl_conf by bind_conf
by Willy Tarreau
· 12 years ago
d1d5454
REORG: split "protocols" files into protocol and listener
by Willy Tarreau
· 12 years ago
3e394c9
BUG/MAJOR: ssl: missing tests in ACL fetch functions
by Willy Tarreau
· 12 years ago
69845df
DOC: add a special acknowledgement for the stud project
by Willy Tarreau
· 12 years ago
7875d09
MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
by Willy Tarreau
· 12 years ago
fc0421f
MEDIUM: ssl: add support for SNI and wildcard certificates
by Emeric Brun
· 12 years ago
f5ae8f7
MEDIUM: config: centralize handling of SSL config per bind line
by Willy Tarreau
· 12 years ago
403edff
MEDIUM: config: implement maxsslconn in the global section
by Willy Tarreau
· 12 years ago
0573747
BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
by Willy Tarreau
· 12 years ago
e1f38db
MEDIUM: ssl: protect against client-initiated renegociation
by Emeric Brun
· 12 years ago
4659195
MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
by Emeric Brun
· 12 years ago