Gitiles
Code Review
Sign In
git01.mediatek.com
/
haproxy
/
8d0f893222edac7495c525f82c05a640ff9adba8
/
src
/
ssl_sock.c
8d0f893
MINOR: ssl: copy a ckch from src to dst
by William Lallemand
· 5 years ago
455af50
MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
by William Lallemand
· 5 years ago
44b3532
MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
by William Lallemand
· 5 years ago
849eed6
BUG/MINOR: ssl/cli: fix looking up for a bundle
by William Lallemand
· 5 years ago
96a9c97
MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
by William Lallemand
· 5 years ago
f9568fc
MINOR: ssl: load issuer from file or from buffer
by William Lallemand
· 5 years ago
0dfae6c
MINOR: ssl: load sctl from buf OR from a file
by William Lallemand
· 5 years ago
3b5f360
MINOR: ssl: OCSP functions can load from file or buffer
by William Lallemand
· 5 years ago
0201047
CLEANUP: ssl: fix SNI/CKCH lock labels
by William Lallemand
· 5 years ago
34779c3
CLEANUP: ssl: remove old TODO commentary
by William Lallemand
· 5 years ago
eb46965
BUG/MINOR: ssl: fix memcpy overlap without consequences.
by Emeric Brun
· 5 years ago
e566f3d
BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
by Christopher Faulet
· 5 years ago
a9363eb
BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
by Emeric Brun
· 5 years ago
7a88336
CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
by Emeric Brun
· 5 years ago
a96b582
CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
by Emeric Brun
· 5 years ago
054563d
CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
by Emeric Brun
· 5 years ago
f69ed1d
CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
by Emeric Brun
· 5 years ago
8c5414a
CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
by Willy Tarreau
· 5 years ago
bbc9196
CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
by Willy Tarreau
· 5 years ago
e0f48ae
BUG/MINOR: ssl: can't load ocsp files
by William Lallemand
· 5 years ago
786188f
BUG/MINOR: ssl: fix error messages for OCSP loading
by William Lallemand
· 5 years ago
4a66013
BUG/MINOR: ssl: fix OCSP build with BoringSSL
by William Lallemand
· 5 years ago
104a7a6
BUILD: ssl: wrong #ifdef for SSL engines code
by William Lallemand
· 5 years ago
963b2e7
BUG/MINOR: ssl: fix build without multi-cert bundles
by William Lallemand
· 5 years ago
e15029b
BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
by William Lallemand
· 5 years ago
246c024
MINOR: ssl: load the ocsp in/from the ckch
by William Lallemand
· 5 years ago
a17f411
MINOR: ssl: load the sctl in/from the ckch
by William Lallemand
· 5 years ago
150bfa8
MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
by William Lallemand
· 5 years ago
f11365b
MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
by William Lallemand
· 5 years ago
614ca0d
MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
by William Lallemand
· 5 years ago
0c6d12f
MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
by William Lallemand
· 5 years ago
d919937
MINOR: ssl: ssl_sock_load_ckchn() can properly fail
by William Lallemand
· 5 years ago
1d29c74
MEDIUM: ssl: split ssl_sock_add_cert_sni()
by William Lallemand
· 5 years ago
9117de9
MEDIUM: ssl: introduce the ckch instance structure
by William Lallemand
· 5 years ago
28a8fce
BUG/MINOR: ssl: abort on sni_keytypes allocation failure
by William Lallemand
· 5 years ago
8ed5b96
BUG/MINOR: ssl: free the sni_keytype nodes
by William Lallemand
· 5 years ago
fe49bb3
BUG/MINOR: ssl: abort on sni allocation failure
by William Lallemand
· 5 years ago
4b989f2
MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
by William Lallemand
· 5 years ago
f6adbe9
REORG: ssl: move structures to ssl_sock.h
by William Lallemand
· 5 years ago
e3af8fb
REORG: ssl: rename ckch_node to ckch_store
by William Lallemand
· 5 years ago
eed4bf2
MINOR: ssl: crt-list do ckchn_lookup
by William Lallemand
· 5 years ago
1633e39
BUILD: ssl: fix a warning when built with openssl < 1.0.2
by William Lallemand
· 5 years ago
8200414
BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
by Christopher Faulet
· 5 years ago
5762a0d
BUG/MAJOR: ssl: ssl_sock was not fully initialized.
by Emeric Brun
· 5 years ago
9d00869
CLEANUP: cli: replace all occurrences of manual handling of return messages
by Willy Tarreau
· 5 years ago
c985801
MINOR: ssl: ssl_fc_has_early should work for BoringSSL
by Emmanuel Hocdet
· 5 years ago
f967c31
BUG/MINOR: ssl: fix 0-RTT for BoringSSL
by Emmanuel Hocdet
· 5 years ago
6e5f2ce
BUG/MEDIUM: ssl: open the right path for multi-cert bundle
by William Lallemand
· 5 years ago
1503e05
BUG/MINOR: ssl: fix ressource leaks on error
by Emmanuel Hocdet
· 5 years ago
6dee29d
BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
by William Lallemand
· 5 years ago
a8c7374
BUG/MEDIUM: ssl: does not try to free a DH in a ckch
by William Lallemand
· 5 years ago
c4ecddf
BUG/BUILD: ssl: fix build with openssl < 1.0.2
by William Lallemand
· 5 years ago
a7a0f99
MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
by Emmanuel Hocdet
· 5 years ago
efa4b95
CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
by Emmanuel Hocdet
· 6 years ago
54227d8
MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
by Emmanuel Hocdet
· 5 years ago
03e09f3
MINOR: ssl: check private key consistency in loading
by Emmanuel Hocdet
· 5 years ago
1c65fdd
MINOR: ssl: add extra chain compatibility
by Emmanuel Hocdet
· 6 years ago
9246f8b
MINOR: ssl: use STACK_OF for chain certs
by Emmanuel Hocdet
· 6 years ago
fa89222
MEDIUM: ssl: load DH param in struct cert_key_and_chain
by William Lallemand
· 5 years ago
6af0399
MEDIUM: ssl: lookup and store in a ckch_node tree
by William Lallemand
· 5 years ago
36b8463
MEDIUM: ssl: split the loading of the certificates
by William Lallemand
· 5 years ago
a59191b
MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
by William Lallemand
· 6 years ago
c940207
MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
by William Lallemand
· 6 years ago
085a151
MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
by Willy Tarreau
· 5 years ago
f5bdb64
MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
by Willy Tarreau
· 5 years ago
fc9cfe4
REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
by Christopher Faulet
· 5 years ago
4979916
BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
by Lukas Tribus
· 5 years ago
e488ea8
BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
by Olivier Houchard
· 5 years ago
0ff2865
BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
by Olivier Houchard
· 5 years ago
965e84e
BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
by Olivier Houchard
· 5 years ago
3c39a7d
CLEANUP: connection: rename the wait_event.task field to .tasklet
by Willy Tarreau
· 5 years ago
9faebe3
MEDIUM: tools: improve time format error detection
by Willy Tarreau
· 5 years ago
81284e6
BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
by Olivier Houchard
· 5 years ago
03abf2d
MEDIUM: connections: Remove CONN_FL_SOCK*
by Olivier Houchard
· 5 years ago
2e05548
MINOR: connections: Add a new xprt method, add_xprt().
by Olivier Houchard
· 5 years ago
5149b59
MINOR: connections: Add a new xprt method, remove_xprt.
by Olivier Houchard
· 5 years ago
000694c
MINOR: ssl: Make ssl_sock_handshake() static.
by Olivier Houchard
· 5 years ago
ea8dd94
MEDIUM: ssl: Handle subscribe by itself.
by Olivier Houchard
· 5 years ago
6567466
MINOR: SSL: add client/server random sample fetches
by Patrick Hemmer
· 5 years ago
839af57
CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
by Emmanuel Hocdet
· 6 years ago
692c1d0
MINOR: ssl: Don't forget to call the close method of the underlying xprt.
by Olivier Houchard
· 5 years ago
19afb27
MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
by Olivier Houchard
· 5 years ago
0590f44
BUILD: ssl: fix latest LibreSSL reg-test error
by Ilya Shipitsin
· 5 years ago
e242f3d
BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
by Ilya Shipitsin
· 5 years ago
7e1770b
BUG/MAJOR: ssl: segfault upon an heartbeat request
by William Lallemand
· 6 years ago
295d614
CLEANUP: ssl: move all BIO_* definitions to openssl-compat
by Willy Tarreau
· 6 years ago
11b1671
CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
by Willy Tarreau
· 6 years ago
366a698
CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
by Willy Tarreau
· 6 years ago
8d164dc
CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
by Willy Tarreau
· 6 years ago
9356dac
REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
by Willy Tarreau
· 6 years ago
5599456
REORG: ssl: move openssl-compat from proto to common
by Willy Tarreau
· 6 years ago
df17e0e
BUILD: ssl: fix libressl build again after aes-gcm-enc
by Willy Tarreau
· 6 years ago
86a394e
MINOR: ssl: enable aes_gcm_dec on LibreSSL
by Willy Tarreau
· 6 years ago
5db847a
CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
by Willy Tarreau
· 6 years ago
1d158ab
BUILD: ssl: make libressl use its own version numbers
by Willy Tarreau
· 6 years ago
9a1ab08
CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
by Willy Tarreau
· 6 years ago
4cd2af4
BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
by Olivier Houchard
· 6 years ago
54832b9
BUILD: enable several LibreSSL hacks, including
by Ilya Shipitsin
· 6 years ago
010941f
BUG/MEDIUM: ssl: Use the early_data API the right way.
by Olivier Houchard
· 6 years ago
b51937e
BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
by Olivier Houchard
· 6 years ago
Next »