- 75a7aa1 MINOR: ssl: move find certificate chain code to its own function by Emmanuel Hocdet · 4 years, 9 months ago
- e0f3fd5 CLEANUP: ssl: move issuer_chain tree and definition by William Lallemand · 4 years, 9 months ago
- a90e593 MINOR: ssl/cli: reorder 'show ssl cert' output by William Lallemand · 4 years, 9 months ago
- bb7288a MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain by William Lallemand · 4 years, 9 months ago
- 35f4a9d MINOR: ssl/cli: 'show ssl cert' displays the chain by William Lallemand · 4 years, 9 months ago
- 105599c BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions by Willy Tarreau · 4 years, 9 months ago
- ded15b7 BUILD: ssl: only pass unsigned chars to isspace() by Willy Tarreau · 4 years, 9 months ago
- 3f25ae3 BUG/MINOR: ssl: load .key in a directory only after PEM by William Lallemand · 4 years, 9 months ago
- 4c5adbf MINOR: ssl: load the key from a dedicated file by William Lallemand · 4 years, 9 months ago
- e8aa5f2 BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 4 years, 9 months ago
- 70df7bf MINOR: ssl: add "issuers-chain-path" directive. by Emmanuel Hocdet · 6 years ago
- 696f317 BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init by William Lallemand · 4 years, 9 months ago
- 4dd145a BUG/MINOR: ssl: clear the SSL errors on DH loading failure by William Lallemand · 4 years, 9 months ago
- 731248f BUG/MINOR: ssl: we may only ignore the first 64 errors by Willy Tarreau · 4 years, 9 months ago
- 3af48e7 MINOR: ssl: ssl-load-extra-files configure loading of files by William Lallemand · 4 years, 9 months ago
- a25a19f BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 by William Lallemand · 4 years, 9 months ago
- efe5e8e BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. by Olivier Houchard · 4 years, 10 months ago
- 6d53cd6 MINOR: ssl: Remove dead code. by Olivier Houchard · 4 years, 10 months ago
- 3139c1b BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. by Frédéric Lécaille · 4 years, 10 months ago
- 911db9b MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE by Willy Tarreau · 4 years, 10 months ago
- 4450b58 MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE by Willy Tarreau · 4 years, 10 months ago
- 220a26c BUG/MEDIUM: 0rtt: Only consider the SSL handshake. by Olivier Houchard · 4 years, 10 months ago
- c192b0a MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* by Willy Tarreau · 4 years, 10 months ago
- 078156d BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" by Emmanuel Hocdet · 4 years, 10 months ago
- dad239d BUG/MINOR: ssl: typo in previous patch by William Lallemand · 4 years, 10 months ago
- 5c3c96f BUG/MINOR: ssl: memory leak w/ the ocsp_issuer by William Lallemand · 4 years, 10 months ago
- b829dda BUG/MINOR: ssl: increment issuer refcount if in chain by William Lallemand · 4 years, 10 months ago
- 75b15f7 BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded by William Lallemand · 4 years, 10 months ago
- 477902b MEDIUM: connections: Get ride of the xprt_done callback. by Olivier Houchard · 4 years, 10 months ago
- 6b5b44e BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent by Emmanuel Hocdet · 4 years, 11 months ago
- e9ff899 BUILD: ssl: more elegant anti-replay feature presence check by Ilya Shipitsin · 4 years, 10 months ago
- 224a087 BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak by Emmanuel Hocdet · 4 years, 10 months ago
- eb73dc3 BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak by Emmanuel Hocdet · 4 years, 10 months ago
- 0667fae BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak by Emmanuel Hocdet · 4 years, 10 months ago
- ebf840b MINOR: ssl: accept 'verify' bind option with 'set ssl cert' by Emmanuel Hocdet · 4 years, 10 months ago
- 71f8297 MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. by Elliot Otchet · 4 years, 10 months ago
- ee1a6fc MINOR: connection: make the last arg of subscribe() a struct wait_event* by Willy Tarreau · 4 years, 10 months ago
- 113d52b MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock by Willy Tarreau · 4 years, 10 months ago
- 3381bf8 MEDIUM: connection: get rid of CO_FL_CURR_* flags by Willy Tarreau · 4 years, 10 months ago
- 9a8ef7f CLEANUP: ssl: remove opendir call in ssl_sock_load_cert by William Dauchy · 4 years, 10 months ago
- 7f4f7f1 MINOR: ssl: Remove unused variable "need_out". by Olivier Houchard · 4 years, 10 months ago
- a26d1e1 BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility by Lukas Tribus · 4 years, 11 months ago
- 54907bb BUG/MEDIUM: ssl: Revamp the way early data are handled. by Olivier Houchard · 4 years, 11 months ago
- ba22e90 BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 by William Lallemand · 5 years ago
- d4f946c MINOR: ssl/cli: 'show ssl cert' give information on the certificates by William Lallemand · 5 years ago
- 545989f BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. by Olivier Houchard · 5 years ago
- 3777e3a BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 by Emmanuel Hocdet · 5 years ago
- 920b035 BUG/MINOR: ssl/cli: don't overwrite the filters variable by William Lallemand · 5 years ago
- 230662a BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights by William Lallemand · 5 years ago
- 140b64f BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 by Emmanuel Hocdet · 5 years ago
- b270e81 MINOR: ssl: deduplicate crl-file by Emmanuel Hocdet · 5 years ago
- 129d328 MINOR: ssl: compute ca-list from deduplicate ca-file by Emmanuel Hocdet · 5 years ago
- d4f9a60 MINOR: ssl: deduplicate ca-file by Emmanuel Hocdet · 5 years ago
- 9312853 CLEANUP: ssl: Clean up error handling by Tim Duesterhus · 5 years ago
- c8bb153 CLEANUP: ssl: check if a transaction exists once before setting it by William Dauchy · 5 years ago
- c0e820c BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · 5 years ago
- d14b49c BUG/MINOR: ssl: fix curve setup with LibreSSL by Lukas Tribus · 5 years ago
- 5f1fa7d MINOR: ssl: fix possible null dereference in error handling by William Dauchy · 5 years ago
- ed44243 MINOR: ssl/cli: display warning during 'commit ssl cert' by William Lallemand · 5 years ago
- 8ef0c2a MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit by William Lallemand · 5 years ago
- 8b45391 MINOR: ssl: ssl_sock_prepare_ctx() return an error code by William Lallemand · 5 years ago
- 3c8bde8 BUILD/MINOR: ssl: fix compiler warning about useless statement by Eric Salama · 5 years ago
- 0bc9c8a MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction by William Lallemand · 5 years ago
- c5fdf0f BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 by Emmanuel Hocdet · 5 years ago
- c3775d2 BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer by Emmanuel Hocdet · 5 years ago
- 21724f0 MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' by William Lallemand · 5 years ago
- 3246d94 BUG/MINOR: ssl/cli: fix an error when a file is not found by William Lallemand · 5 years ago
- 37031b8 BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension by William Lallemand · 5 years ago
- 8a7fdf0 BUG/MEDIUM: ssl/cli: don't alloc path when cert not found by William Lallemand · 5 years ago
- 40f2f1e BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert by Emmanuel Hocdet · 5 years ago
- eaad5cc MINOR: ssl: BoringSSL ocsp_response does not need issuer by Emmanuel Hocdet · 5 years ago
- 83cbd3c BUG/MINOR: ssl: double free on error for ckch->{key,cert} by Emmanuel Hocdet · 5 years ago
- ed17f47 BUG/MINOR: ssl: ckch->chain must be initialized by Emmanuel Hocdet · 5 years ago
- f6ac4fa BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl by Emmanuel Hocdet · 5 years ago
- 33cc76f BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() by William Lallemand · 5 years ago
- beea2a4 CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) by William Lallemand · 5 years ago
- bc6ca7c MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' by William Lallemand · 5 years ago
- 0580052 BUILD/MINOR: ssl: shut up a build warning about format truncation by Willy Tarreau · 5 years ago
- 430413e MINOR: ssl/cli: rework the 'set ssl cert' IO handler by William Lallemand · 5 years ago
- 1212db4 BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error by William Lallemand · 5 years ago
- f29cdef BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl by William Lallemand · 5 years ago
- 541a534 BUG/MINOR: ssl/cli: fix build of SCTL and OCSP by William Lallemand · 5 years ago
- 8f840d7 MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler by William Lallemand · 5 years ago
- 0c3b7d9 MINOR: ssl/cli: assignate a new ckch_store by William Lallemand · 5 years ago
- 8c1cdde MINOR: ssl: new functions duplicate and free a ckch_store by William Lallemand · 5 years ago
- 8d0f893 MINOR: ssl: copy a ckch from src to dst by William Lallemand · 5 years ago
- 455af50 MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents by William Lallemand · 5 years ago
- 44b3532 MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI by William Lallemand · 5 years ago
- 849eed6 BUG/MINOR: ssl/cli: fix looking up for a bundle by William Lallemand · 5 years ago
- 96a9c97 MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() by William Lallemand · 5 years ago
- f9568fc MINOR: ssl: load issuer from file or from buffer by William Lallemand · 5 years ago
- 0dfae6c MINOR: ssl: load sctl from buf OR from a file by William Lallemand · 5 years ago
- 3b5f360 MINOR: ssl: OCSP functions can load from file or buffer by William Lallemand · 5 years ago
- 0201047 CLEANUP: ssl: fix SNI/CKCH lock labels by William Lallemand · 5 years ago
- 34779c3 CLEANUP: ssl: remove old TODO commentary by William Lallemand · 5 years ago
- eb46965 BUG/MINOR: ssl: fix memcpy overlap without consequences. by Emeric Brun · 5 years ago
- e566f3d BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed by Christopher Faulet · 5 years ago
- a9363eb BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 by Emeric Brun · 5 years ago
- 7a88336 CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn by Emeric Brun · 5 years ago
- a96b582 CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn by Emeric Brun · 5 years ago