Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 909086ea61c985bce9ac4d015e47eeb45586a6de / src / ssl_sock.c
  1. 909086e BUG/MINOR: ssl: memory leak in crtlist_parse_file() by William Lallemand · 4 years, 4 months ago
  2. 2ea1b49 BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist by William Lallemand · 4 years, 4 months ago
  3. a6ffd5b MINOR: ssl/cli: show/dump ssl crt-list by William Lallemand · 4 years, 4 months ago
  4. 83918e2 BUG/MINOR: ssl: can't open directories anymore by William Lallemand · 4 years, 4 months ago
  5. 6be66ec MINOR: ssl: directories are loaded like crt-list by William Lallemand · 4 years, 4 months ago
  6. 2954c47 MEDIUM: ssl: allow crt-list caching by William Lallemand · 4 years, 4 months ago
  7. 24bde43 MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs() by William Lallemand · 4 years, 4 months ago
  8. 06b22a8 REORG: ssl: move ssl_sock_load_cert() by William Lallemand · 4 years, 4 months ago
  9. 77e3b4a CLEANUP: assorted typo fixes in the code and comments by Ilya Shipitsin · 4 years, 4 months ago
  10. 2d232c2 CLEANUP: ssl: separate the directory loading in a new function by William Lallemand · 4 years, 4 months ago
  11. 6763016 BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters by William Lallemand · 4 years, 4 months ago
  12. d04a2a6 BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters by Willy Tarreau · 4 years, 4 months ago
  13. cfca142 MINOR: ssl: reach a ckch_store from a sni_ctx by William Lallemand · 4 years, 4 months ago
  14. 38df1c8 MINOR: ssl/cli: support crt-list filters by William Lallemand · 4 years, 7 months ago
  15. f4629a5 BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore by Willy Tarreau · 4 years, 4 months ago
  16. 842e94e MINOR: ssl: add "ca-verify-file" directive by Emmanuel Hocdet · 4 years, 7 months ago
  17. 8588857 BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null() by William Lallemand · 4 years, 4 months ago
  18. cf8cf6c MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:" by Emmanuel Hocdet · 4 years, 5 months ago
  19. 6f507c7 MINOR: ssl: resolve ocsp_issuer later by Emmanuel Hocdet · 4 years, 5 months ago
  20. b90d2cb MINOR: ssl: resolve issuers chain later by Emmanuel Hocdet · 4 years, 5 months ago
  21. 75a7aa1 MINOR: ssl: move find certificate chain code to its own function by Emmanuel Hocdet · 4 years, 5 months ago
  22. e0f3fd5 CLEANUP: ssl: move issuer_chain tree and definition by William Lallemand · 4 years, 4 months ago
  23. a90e593 MINOR: ssl/cli: reorder 'show ssl cert' output by William Lallemand · 4 years, 4 months ago
  24. bb7288a MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain by William Lallemand · 4 years, 4 months ago
  25. 35f4a9d MINOR: ssl/cli: 'show ssl cert' displays the chain by William Lallemand · 4 years, 4 months ago
  26. 105599c BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions by Willy Tarreau · 4 years, 4 months ago
  27. ded15b7 BUILD: ssl: only pass unsigned chars to isspace() by Willy Tarreau · 4 years, 4 months ago
  28. 3f25ae3 BUG/MINOR: ssl: load .key in a directory only after PEM by William Lallemand · 4 years, 4 months ago
  29. 4c5adbf MINOR: ssl: load the key from a dedicated file by William Lallemand · 4 years, 4 months ago
  30. e8aa5f2 BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 4 years, 5 months ago
  31. 70df7bf MINOR: ssl: add "issuers-chain-path" directive. by Emmanuel Hocdet · 6 years ago
  32. 696f317 BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init by William Lallemand · 4 years, 5 months ago
  33. 4dd145a BUG/MINOR: ssl: clear the SSL errors on DH loading failure by William Lallemand · 4 years, 5 months ago
  34. 731248f BUG/MINOR: ssl: we may only ignore the first 64 errors by Willy Tarreau · 4 years, 5 months ago
  35. 3af48e7 MINOR: ssl: ssl-load-extra-files configure loading of files by William Lallemand · 4 years, 5 months ago
  36. a25a19f BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 by William Lallemand · 4 years, 5 months ago
  37. efe5e8e BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. by Olivier Houchard · 4 years, 5 months ago
  38. 6d53cd6 MINOR: ssl: Remove dead code. by Olivier Houchard · 4 years, 5 months ago
  39. 3139c1b BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. by Frédéric Lécaille · 4 years, 5 months ago
  40. 911db9b MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE by Willy Tarreau · 4 years, 6 months ago
  41. 4450b58 MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE by Willy Tarreau · 4 years, 6 months ago
  42. 220a26c BUG/MEDIUM: 0rtt: Only consider the SSL handshake. by Olivier Houchard · 4 years, 6 months ago
  43. c192b0a MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* by Willy Tarreau · 4 years, 6 months ago
  44. 078156d BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" by Emmanuel Hocdet · 4 years, 6 months ago
  45. dad239d BUG/MINOR: ssl: typo in previous patch by William Lallemand · 4 years, 6 months ago
  46. 5c3c96f BUG/MINOR: ssl: memory leak w/ the ocsp_issuer by William Lallemand · 4 years, 6 months ago
  47. b829dda BUG/MINOR: ssl: increment issuer refcount if in chain by William Lallemand · 4 years, 6 months ago
  48. 75b15f7 BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded by William Lallemand · 4 years, 6 months ago
  49. 477902b MEDIUM: connections: Get ride of the xprt_done callback. by Olivier Houchard · 4 years, 6 months ago
  50. 6b5b44e BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent by Emmanuel Hocdet · 4 years, 7 months ago
  51. e9ff899 BUILD: ssl: more elegant anti-replay feature presence check by Ilya Shipitsin · 4 years, 6 months ago
  52. 224a087 BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak by Emmanuel Hocdet · 4 years, 6 months ago
  53. eb73dc3 BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak by Emmanuel Hocdet · 4 years, 6 months ago
  54. 0667fae BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak by Emmanuel Hocdet · 4 years, 6 months ago
  55. ebf840b MINOR: ssl: accept 'verify' bind option with 'set ssl cert' by Emmanuel Hocdet · 4 years, 6 months ago
  56. 71f8297 MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. by Elliot Otchet · 4 years, 6 months ago
  57. ee1a6fc MINOR: connection: make the last arg of subscribe() a struct wait_event* by Willy Tarreau · 4 years, 6 months ago
  58. 113d52b MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock by Willy Tarreau · 4 years, 6 months ago
  59. 3381bf8 MEDIUM: connection: get rid of CO_FL_CURR_* flags by Willy Tarreau · 4 years, 6 months ago
  60. 9a8ef7f CLEANUP: ssl: remove opendir call in ssl_sock_load_cert by William Dauchy · 4 years, 6 months ago
  61. 7f4f7f1 MINOR: ssl: Remove unused variable "need_out". by Olivier Houchard · 4 years, 6 months ago
  62. a26d1e1 BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility by Lukas Tribus · 4 years, 7 months ago
  63. 54907bb BUG/MEDIUM: ssl: Revamp the way early data are handled. by Olivier Houchard · 4 years, 7 months ago
  64. ba22e90 BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 by William Lallemand · 4 years, 7 months ago
  65. d4f946c MINOR: ssl/cli: 'show ssl cert' give information on the certificates by William Lallemand · 4 years, 7 months ago
  66. 545989f BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. by Olivier Houchard · 4 years, 7 months ago
  67. 3777e3a BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 by Emmanuel Hocdet · 4 years, 8 months ago
  68. 920b035 BUG/MINOR: ssl/cli: don't overwrite the filters variable by William Lallemand · 4 years, 7 months ago
  69. 230662a BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights by William Lallemand · 4 years, 7 months ago
  70. 140b64f BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 by Emmanuel Hocdet · 4 years, 9 months ago
  71. b270e81 MINOR: ssl: deduplicate crl-file by Emmanuel Hocdet · 4 years, 8 months ago
  72. 129d328 MINOR: ssl: compute ca-list from deduplicate ca-file by Emmanuel Hocdet · 4 years, 9 months ago
  73. d4f9a60 MINOR: ssl: deduplicate ca-file by Emmanuel Hocdet · 4 years, 9 months ago
  74. 9312853 CLEANUP: ssl: Clean up error handling by Tim Duesterhus · 4 years, 8 months ago
  75. c8bb153 CLEANUP: ssl: check if a transaction exists once before setting it by William Dauchy · 4 years, 8 months ago
  76. c0e820c BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 4 years, 8 months ago
  77. d14b49c BUG/MINOR: ssl: fix curve setup with LibreSSL by Lukas Tribus · 4 years, 8 months ago
  78. 5f1fa7d MINOR: ssl: fix possible null dereference in error handling by William Dauchy · 4 years, 8 months ago
  79. ed44243 MINOR: ssl/cli: display warning during 'commit ssl cert' by William Lallemand · 4 years, 8 months ago
  80. 8ef0c2a MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit by William Lallemand · 4 years, 8 months ago
  81. 8b45391 MINOR: ssl: ssl_sock_prepare_ctx() return an error code by William Lallemand · 4 years, 8 months ago
  82. 3c8bde8 BUILD/MINOR: ssl: fix compiler warning about useless statement by Eric Salama · 4 years, 8 months ago
  83. 0bc9c8a MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction by William Lallemand · 4 years, 8 months ago
  84. c5fdf0f BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 by Emmanuel Hocdet · 4 years, 8 months ago
  85. c3775d2 BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer by Emmanuel Hocdet · 4 years, 8 months ago
  86. 21724f0 MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' by William Lallemand · 4 years, 8 months ago
  87. 3246d94 BUG/MINOR: ssl/cli: fix an error when a file is not found by William Lallemand · 4 years, 8 months ago
  88. 37031b8 BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension by William Lallemand · 4 years, 8 months ago
  89. 8a7fdf0 BUG/MEDIUM: ssl/cli: don't alloc path when cert not found by William Lallemand · 4 years, 8 months ago
  90. 40f2f1e BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert by Emmanuel Hocdet · 4 years, 8 months ago
  91. eaad5cc MINOR: ssl: BoringSSL ocsp_response does not need issuer by Emmanuel Hocdet · 4 years, 9 months ago
  92. 83cbd3c BUG/MINOR: ssl: double free on error for ckch->{key,cert} by Emmanuel Hocdet · 4 years, 9 months ago
  93. ed17f47 BUG/MINOR: ssl: ckch->chain must be initialized by Emmanuel Hocdet · 4 years, 9 months ago
  94. f6ac4fa BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl by Emmanuel Hocdet · 4 years, 8 months ago
  95. 33cc76f BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() by William Lallemand · 4 years, 8 months ago
  96. beea2a4 CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) by William Lallemand · 4 years, 8 months ago
  97. bc6ca7c MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' by William Lallemand · 4 years, 8 months ago
  98. 0580052 BUILD/MINOR: ssl: shut up a build warning about format truncation by Willy Tarreau · 4 years, 8 months ago
  99. 430413e MINOR: ssl/cli: rework the 'set ssl cert' IO handler by William Lallemand · 4 years, 8 months ago
  100. 1212db4 BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error by William Lallemand · 4 years, 8 months ago