Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / b3b53524addbea79f5928b0bd5c58fd201a3e828 / src / ssl_sock.c
  1. d75f57e MINOR: ssl: Export a generic function to parse an alpn string by Christopher Faulet · Mon Apr 20 18:32:29 2020 +0200
  2. 8892e5d BUG/MEDIUM: server/checks: Init server check during config validity check by Christopher Faulet · Thu Mar 26 19:48:20 2020 +0100
  3. f61f33a BUG/MINOR: checks: Respect the no-check-ssl option by Christopher Faulet · Fri Mar 27 18:55:49 2020 +0100
  4. b203ff6 MINOR: config: add a global directive to set default SSL curves by Jerome Magnin · Fri Apr 03 15:28:22 2020 +0200
  5. 2e8d52f BUG/MINOR: ssl: default settings for ssl server options are not used by Jerome Magnin · Wed Apr 22 11:40:18 2020 +0200
  6. c3b7e74 MINOR: ssl: add ssl-skip-self-issued-ca global option by Emmanuel Hocdet · Wed Apr 22 11:06:19 2020 +0200
  7. 916d0b5 MINOR: ssl/cli: restrain certificate path when inserting into a directory by William Lallemand · Tue Apr 21 18:29:12 2020 +0200
  8. b74d564 MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list' by William Lallemand · Tue Apr 21 16:54:19 2020 +0200
  9. 1b2988b MINOR: ssl: don't alloc ssl_conf if no option found by William Lallemand · Fri Apr 10 17:20:45 2020 +0200
  10. 87a0db9 BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing by William Lallemand · Fri Apr 10 17:13:09 2020 +0200
  11. e718dfb MINOR: ssl: crtlist_entry_{new, free} by William Lallemand · Fri Apr 10 11:09:25 2020 +0200
  12. 82b21bb REORG: ssl: move some free/new functions by William Lallemand · Fri Apr 10 10:26:27 2020 +0200
  13. ec2d493 MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist by William Lallemand · Thu Apr 09 13:44:21 2020 +0200
  14. 8a874e4 MINOR: ssl: ckch_store_new() alloc and init a ckch_store by William Lallemand · Thu Apr 09 10:32:53 2020 +0200
  15. d5e9377 BUG/MEDIUM: ssl/cli: trying to access to free'd memory by William Lallemand · Thu Apr 09 17:12:16 2020 +0200
  16. ba1c33f MINOR: ssl: replace ckchs_free() by ckch_store_free() by William Lallemand · Wed Apr 08 17:55:45 2020 +0200
  17. d9d5d1b MINOR: ssl: free instances and SNIs with ckch_inst_free() by William Lallemand · Thu Apr 09 16:31:05 2020 +0200
  18. 9cef2e2 MINOR: ssl: initialize all list in ckch_inst_new() by William Lallemand · Thu Apr 09 16:25:10 2020 +0200
  19. 8621ac5 BUG/MINOR: ssl: memleak of the struct cert_key_and_chain by William Lallemand · Wed Apr 08 17:38:27 2020 +0200
  20. caa1619 CLEANUP: ssl/cli: use the list of filters in the crtlist_entry by William Lallemand · Wed Apr 08 16:29:15 2020 +0200
  21. 02e19a5 CLEANUP: ssl: use the refcount for the SSL_CTX' by William Lallemand · Wed Apr 08 16:11:26 2020 +0200
  22. 24be710 BUG/MINOR: ssl/cli: memory leak in 'set ssl cert' by William Lallemand · Wed Apr 08 15:16:51 2020 +0200
  23. 41ca930 BUG/MINOR: ssl: trailing slashes in directory names wrongly cached by William Lallemand · Wed Apr 08 13:15:18 2020 +0200
  24. 419e634 MINOR: ssl/cli: 'del ssl cert' deletes a certificate by William Lallemand · Wed Apr 08 12:05:39 2020 +0200
  25. 36ccc39 MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list by William Lallemand · Wed Apr 08 10:57:24 2020 +0200
  26. 463b524 BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete by William Lallemand · Wed Apr 08 10:30:44 2020 +0200
  27. 7fd01b3 MINOR: ssl: improve the errors when a crt can't be open by William Lallemand · Tue Apr 07 14:16:32 2020 +0200
  28. c69f02d MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option by William Lallemand · Mon Apr 06 19:07:03 2020 +0200
  29. 0a9b941 MINOR: ssl/cli: 'del ssl crt-list' delete an entry by William Lallemand · Mon Apr 06 17:43:05 2020 +0200
  30. 58a5222 BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list' by William Lallemand · Thu Apr 02 18:11:47 2020 +0200
  31. a690fed BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry by William Lallemand · Thu Apr 02 12:02:54 2020 +0200
  32. 557823f MINOR: ssl: add a comment above the ssl_bind_conf keywords by William Lallemand · Wed Apr 01 17:42:47 2020 +0200
  33. c7c7a6b MINOR: ssl/cli: support filters and options in add ssl crt-list by William Lallemand · Wed Apr 01 17:32:46 2020 +0200
  34. 97b0810 MINOR: ssl: split the line parsing of the crt-list by William Lallemand · Wed Apr 01 10:14:00 2020 +0200
  35. c2e3b72 BUG/MINOR: ssl: entry->ckch_inst not initialized by William Lallemand · Tue Mar 31 14:31:41 2020 +0200
  36. e67c80b MEDIUM: ssl/cli: 'add ssl crt-list' command by William Lallemand · Wed Mar 25 14:42:37 2020 +0100
  37. 90afe90 MINOR: ssl/cli: update pointer to store in 'commit ssl cert' by William Lallemand · Mon Mar 30 19:29:45 2020 +0200
  38. fa8cf0c MINOR: ssl: store a ptr to crtlist in crtlist_entry by William Lallemand · Mon Mar 30 19:59:57 2020 +0200
  39. 23d61c0 MINOR: ssl: add a list of crtlist_entry in ckch_store by William Lallemand · Mon Mar 30 18:27:58 2020 +0200
  40. 09bd5a0 MINOR: ssl: use crtlist_free() upon error in directory loading by William Lallemand · Mon Mar 30 18:19:43 2020 +0200
  41. 4c68bba REORG: ssl: move some functions above crtlist_load_cert_dir() by William Lallemand · Mon Mar 30 18:45:10 2020 +0200
  42. 4939831 BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry by William Lallemand · Mon Mar 30 17:01:33 2020 +0200
  43. ad3c37b REORG: ssl: move SETCERT enum to ssl_sock.h by William Lallemand · Wed Mar 25 20:20:26 2020 +0100
  44. 79d31ec MINOR: ssl: add a list of bind_conf in struct crtlist by William Lallemand · Wed Mar 25 15:10:49 2020 +0100
  45. 1673977 MINOR: ssl: skip self issued CA in cert chain for ssl_ctx by Emmanuel Hocdet · Fri Feb 28 16:00:34 2020 +0100
  46. 4fed93e MINOR: ssl: rework add cert chain to CTX to be libssl independent by Emmanuel Hocdet · Fri Feb 28 16:00:34 2020 +0100
  47. ef87e0a CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain by Emmanuel Hocdet · Mon Mar 23 11:29:11 2020 +0100
  48. f4f14ea BUG/MINOR: ssl: memory leak when find_chain is NULL by Emmanuel Hocdet · Mon Mar 23 10:31:47 2020 +0100
  49. 18eeb8e BUG/MINOR: ssl/cli: fix a potential NULL dereference by William Lallemand · Fri Mar 20 14:42:36 2020 +0100
  50. 67b991d BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert' by William Lallemand · Fri Mar 20 14:10:17 2020 +0100
  51. 3c516fc BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0 by William Lallemand · Fri Mar 20 10:04:34 2020 +0100
  52. 2445f8d BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements by Tim Duesterhus · Thu Mar 19 16:12:10 2020 +0100
  53. 8c12025 BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure by Tim Duesterhus · Thu Mar 19 16:12:09 2020 +0100
  54. 59c16fc MINOR: ssl/cli: show certificate status in 'show ssl cert' by William Lallemand · Thu Mar 19 20:26:02 2020 +0100
  55. ea987ed MINOR: ssl/cli: 'new ssl cert' command by William Lallemand · Thu Mar 19 16:48:33 2020 +0100
  56. a64593c BUG/MINOR: ssl: memleak of struct crtlist_entry by William Lallemand · Tue Mar 17 20:11:41 2020 +0100
  57. 909086e BUG/MINOR: ssl: memory leak in crtlist_parse_file() by William Lallemand · Tue Mar 17 16:53:27 2020 +0100
  58. 2ea1b49 BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist by William Lallemand · Tue Mar 17 15:13:11 2020 +0100
  59. a6ffd5b MINOR: ssl/cli: show/dump ssl crt-list by William Lallemand · Mon Mar 09 13:35:19 2020 +0100
  60. 83918e2 BUG/MINOR: ssl: can't open directories anymore by William Lallemand · Mon Mar 16 17:21:51 2020 +0100
  61. 6be66ec MINOR: ssl: directories are loaded like crt-list by William Lallemand · Fri Mar 06 22:26:32 2020 +0100
  62. 2954c47 MEDIUM: ssl: allow crt-list caching by William Lallemand · Fri Mar 06 21:54:13 2020 +0100
  63. 24bde43 MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs() by William Lallemand · Mon Mar 09 16:48:43 2020 +0100
  64. 06b22a8 REORG: ssl: move ssl_sock_load_cert() by William Lallemand · Mon Mar 16 14:45:55 2020 +0100
  65. 77e3b4a CLEANUP: assorted typo fixes in the code and comments by Ilya Shipitsin · Tue Mar 10 12:06:11 2020 +0500
  66. 2d232c2 CLEANUP: ssl: separate the directory loading in a new function by William Lallemand · Fri Mar 06 22:12:35 2020 +0100
  67. 6763016 BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters by William Lallemand · Mon Mar 09 16:56:39 2020 +0100
  68. d04a2a6 BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters by Willy Tarreau · Thu Mar 05 16:26:12 2020 +0100
  69. cfca142 MINOR: ssl: reach a ckch_store from a sni_ctx by William Lallemand · Thu Mar 05 10:17:47 2020 +0100
  70. 38df1c8 MINOR: ssl/cli: support crt-list filters by William Lallemand · Wed Dec 04 15:39:35 2019 +0100
  71. f4629a5 BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore by Willy Tarreau · Thu Mar 05 07:41:20 2020 +0100
  72. 842e94e MINOR: ssl: add "ca-verify-file" directive by Emmanuel Hocdet · Mon Dec 16 16:39:17 2019 +0100
  73. 8588857 BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null() by William Lallemand · Thu Feb 27 14:48:35 2020 +0100
  74. cf8cf6c MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:" by Emmanuel Hocdet · Tue Feb 18 16:06:14 2020 +0100
  75. 6f507c7 MINOR: ssl: resolve ocsp_issuer later by Emmanuel Hocdet · Tue Feb 18 15:56:39 2020 +0100
  76. b90d2cb MINOR: ssl: resolve issuers chain later by Emmanuel Hocdet · Tue Feb 18 15:27:32 2020 +0100
  77. 75a7aa1 MINOR: ssl: move find certificate chain code to its own function by Emmanuel Hocdet · Tue Feb 18 15:19:24 2020 +0100
  78. e0f3fd5 CLEANUP: ssl: move issuer_chain tree and definition by William Lallemand · Tue Feb 25 14:53:06 2020 +0100
  79. a90e593 MINOR: ssl/cli: reorder 'show ssl cert' output by William Lallemand · Tue Feb 25 14:07:58 2020 +0100
  80. bb7288a MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain by William Lallemand · Tue Feb 25 14:04:33 2020 +0100
  81. 35f4a9d MINOR: ssl/cli: 'show ssl cert' displays the chain by William Lallemand · Tue Feb 25 11:56:32 2020 +0100
  82. 105599c BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions by Willy Tarreau · Tue Feb 25 08:59:23 2020 +0100
  83. ded15b7 BUILD: ssl: only pass unsigned chars to isspace() by Willy Tarreau · Tue Feb 25 07:51:59 2020 +0100
  84. 3f25ae3 BUG/MINOR: ssl: load .key in a directory only after PEM by William Lallemand · Mon Feb 24 16:30:12 2020 +0100
  85. 4c5adbf MINOR: ssl: load the key from a dedicated file by William Lallemand · Mon Feb 24 14:23:22 2020 +0100
  86. e8aa5f2 BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · Wed Feb 19 11:41:13 2020 +0100
  87. 70df7bf MINOR: ssl: add "issuers-chain-path" directive. by Emmanuel Hocdet · Fri Jan 04 11:08:20 2019 +0100
  88. 696f317 BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init by William Lallemand · Fri Feb 07 20:45:24 2020 +0100
  89. 4dd145a BUG/MINOR: ssl: clear the SSL errors on DH loading failure by William Lallemand · Wed Feb 05 11:46:33 2020 +0100
  90. 731248f BUG/MINOR: ssl: we may only ignore the first 64 errors by Willy Tarreau · Tue Feb 04 14:02:02 2020 +0100
  91. 3af48e7 MINOR: ssl: ssl-load-extra-files configure loading of files by William Lallemand · Mon Feb 03 17:15:52 2020 +0100
  92. a25a19f BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 by William Lallemand · Wed Jan 29 00:04:24 2020 +0100
  93. efe5e8e BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. by Olivier Houchard · Fri Jan 24 15:17:38 2020 +0100
  94. 6d53cd6 MINOR: ssl: Remove dead code. by Olivier Houchard · Fri Jan 24 15:13:57 2020 +0100
  95. 3139c1b BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. by Frédéric Lécaille · Fri Jan 24 14:56:18 2020 +0100
  96. 911db9b MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE by Willy Tarreau · Thu Jan 23 16:27:54 2020 +0100
  97. 4450b58 MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE by Willy Tarreau · Thu Jan 23 15:23:13 2020 +0100
  98. 220a26c BUG/MEDIUM: 0rtt: Only consider the SSL handshake. by Olivier Houchard · Thu Jan 23 14:57:36 2020 +0100
  99. c192b0a MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* by Willy Tarreau · Thu Jan 23 09:11:58 2020 +0100
  100. 078156d BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" by Emmanuel Hocdet · Wed Jan 22 17:02:53 2020 +0100