Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / c22d5dfeb87057e54bb28069a0f79565261802cb / src / ssl_sock.c
  1. c8bb153 CLEANUP: ssl: check if a transaction exists once before setting it by William Dauchy · Sun Nov 24 15:04:20 2019 +0100
  2. c0e820c BUG/MINOR: ssl: Stop passing dynamic strings as format arguments by Tim Duesterhus · Sat Nov 23 23:52:30 2019 +0100
  3. d14b49c BUG/MINOR: ssl: fix curve setup with LibreSSL by Lukas Tribus · Sun Nov 24 18:20:40 2019 +0100
  4. 5f1fa7d MINOR: ssl: fix possible null dereference in error handling by William Dauchy · Sat Nov 23 21:14:33 2019 +0100
  5. ed44243 MINOR: ssl/cli: display warning during 'commit ssl cert' by William Lallemand · Thu Nov 21 16:41:07 2019 +0100
  6. 8ef0c2a MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit by William Lallemand · Thu Nov 21 16:30:34 2019 +0100
  7. 8b45391 MINOR: ssl: ssl_sock_prepare_ctx() return an error code by William Lallemand · Thu Nov 21 15:48:10 2019 +0100
  8. 3c8bde8 BUILD/MINOR: ssl: fix compiler warning about useless statement by Eric Salama · Wed Nov 20 11:33:40 2019 +0100
  9. 0bc9c8a MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction by William Lallemand · Tue Nov 19 15:51:51 2019 +0100
  10. c5fdf0f BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 by Emmanuel Hocdet · Mon Nov 04 15:49:46 2019 +0100
  11. c3775d2 BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer by Emmanuel Hocdet · Mon Nov 04 18:19:32 2019 +0100
  12. 21724f0 MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' by William Lallemand · Mon Nov 04 17:56:13 2019 +0100
  13. 3246d94 BUG/MINOR: ssl/cli: fix an error when a file is not found by William Lallemand · Mon Nov 04 14:02:11 2019 +0100
  14. 37031b8 BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension by William Lallemand · Mon Nov 04 13:38:53 2019 +0100
  15. 8a7fdf0 BUG/MEDIUM: ssl/cli: don't alloc path when cert not found by William Lallemand · Mon Nov 04 10:59:32 2019 +0100
  16. 40f2f1e BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert by Emmanuel Hocdet · Wed Oct 30 17:31:28 2019 +0100
  17. eaad5cc MINOR: ssl: BoringSSL ocsp_response does not need issuer by Emmanuel Hocdet · Fri Oct 25 12:19:00 2019 +0200
  18. 83cbd3c BUG/MINOR: ssl: double free on error for ckch->{key,cert} by Emmanuel Hocdet · Fri Oct 25 11:55:03 2019 +0200
  19. ed17f47 BUG/MINOR: ssl: ckch->chain must be initialized by Emmanuel Hocdet · Thu Oct 24 18:28:33 2019 +0200
  20. f6ac4fa BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl by Emmanuel Hocdet · Wed Oct 30 17:41:27 2019 +0100
  21. 33cc76f BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() by William Lallemand · Thu Oct 31 11:43:45 2019 +0100
  22. beea2a4 CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) by William Lallemand · Wed Oct 30 17:45:33 2019 +0100
  23. bc6ca7c MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' by William Lallemand · Tue Oct 29 23:48:19 2019 +0100
  24. 0580052 BUILD/MINOR: ssl: shut up a build warning about format truncation by Willy Tarreau · Tue Oct 29 10:48:50 2019 +0100
  25. 430413e MINOR: ssl/cli: rework the 'set ssl cert' IO handler by William Lallemand · Mon Oct 28 14:30:47 2019 +0100
  26. 1212db4 BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error by William Lallemand · Mon Oct 28 14:26:56 2019 +0100
  27. f29cdef BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl by William Lallemand · Wed Oct 23 15:00:52 2019 +0200
  28. 541a534 BUG/MINOR: ssl/cli: fix build of SCTL and OCSP by William Lallemand · Wed Oct 23 14:11:54 2019 +0200
  29. 8f840d7 MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler by William Lallemand · Wed Oct 23 10:53:05 2019 +0200
  30. 0c3b7d9 MINOR: ssl/cli: assignate a new ckch_store by William Lallemand · Fri Oct 18 11:27:07 2019 +0200
  31. 8c1cdde MINOR: ssl: new functions duplicate and free a ckch_store by William Lallemand · Fri Oct 18 10:58:14 2019 +0200
  32. 8d0f893 MINOR: ssl: copy a ckch from src to dst by William Lallemand · Thu Oct 17 18:03:58 2019 +0200
  33. 455af50 MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents by William Lallemand · Thu Oct 17 18:04:45 2019 +0200
  34. 44b3532 MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI by William Lallemand · Thu Oct 17 16:28:40 2019 +0200
  35. 849eed6 BUG/MINOR: ssl/cli: fix looking up for a bundle by William Lallemand · Thu Oct 17 16:23:50 2019 +0200
  36. 96a9c97 MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() by William Lallemand · Thu Oct 17 11:56:17 2019 +0200
  37. f9568fc MINOR: ssl: load issuer from file or from buffer by William Lallemand · Wed Oct 16 18:27:58 2019 +0200
  38. 0dfae6c MINOR: ssl: load sctl from buf OR from a file by William Lallemand · Wed Oct 16 18:06:58 2019 +0200
  39. 3b5f360 MINOR: ssl: OCSP functions can load from file or buffer by William Lallemand · Wed Oct 16 18:05:05 2019 +0200
  40. 0201047 CLEANUP: ssl: fix SNI/CKCH lock labels by William Lallemand · Fri Oct 18 11:02:19 2019 +0200
  41. 34779c3 CLEANUP: ssl: remove old TODO commentary by William Lallemand · Tue Oct 15 22:01:54 2019 +0200
  42. eb46965 BUG/MINOR: ssl: fix memcpy overlap without consequences. by Emeric Brun · Tue Oct 08 18:27:37 2019 +0200
  43. e566f3d BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed by Christopher Faulet · Mon Oct 21 09:55:49 2019 +0200
  44. a9363eb BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 by Emeric Brun · Thu Oct 17 14:53:03 2019 +0200
  45. 7a88336 CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn by Emeric Brun · Thu Oct 17 13:27:40 2019 +0200
  46. a96b582 CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn by Emeric Brun · Thu Oct 17 13:25:14 2019 +0200
  47. 054563d CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn by Emeric Brun · Thu Oct 17 13:16:58 2019 +0200
  48. f69ed1d CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. by Emeric Brun · Thu Oct 17 11:56:56 2019 +0200
  49. 8c5414a CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* by Willy Tarreau · Wed Oct 16 17:06:25 2019 +0200
  50. bbc9196 CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes by Willy Tarreau · Wed Oct 16 16:42:19 2019 +0200
  51. e0f48ae BUG/MINOR: ssl: can't load ocsp files by William Lallemand · Tue Oct 15 13:44:57 2019 +0200
  52. 786188f BUG/MINOR: ssl: fix error messages for OCSP loading by William Lallemand · Tue Oct 15 10:05:37 2019 +0200
  53. 4a66013 BUG/MINOR: ssl: fix OCSP build with BoringSSL by William Lallemand · Mon Oct 14 14:51:41 2019 +0200
  54. 104a7a6 BUILD: ssl: wrong #ifdef for SSL engines code by William Lallemand · Mon Oct 14 14:14:59 2019 +0200
  55. 963b2e7 BUG/MINOR: ssl: fix build without multi-cert bundles by William Lallemand · Mon Oct 14 11:38:36 2019 +0200
  56. e15029b BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni() by William Lallemand · Mon Oct 14 10:46:58 2019 +0200
  57. 246c024 MINOR: ssl: load the ocsp in/from the ckch by William Lallemand · Fri Oct 11 08:59:13 2019 +0200
  58. a17f411 MINOR: ssl: load the sctl in/from the ckch by William Lallemand · Thu Oct 10 15:16:44 2019 +0200
  59. 150bfa8 MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI by William Lallemand · Thu Sep 19 17:12:49 2019 +0200
  60. f11365b MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO by William Lallemand · Thu Sep 19 14:25:58 2019 +0200
  61. 614ca0d MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst by William Lallemand · Mon Oct 07 13:52:11 2019 +0200
  62. 0c6d12f MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail by William Lallemand · Fri Oct 04 18:38:51 2019 +0200
  63. d919937 MINOR: ssl: ssl_sock_load_ckchn() can properly fail by William Lallemand · Fri Oct 04 15:37:05 2019 +0200
  64. 1d29c74 MEDIUM: ssl: split ssl_sock_add_cert_sni() by William Lallemand · Fri Oct 04 00:53:29 2019 +0200
  65. 9117de9 MEDIUM: ssl: introduce the ckch instance structure by William Lallemand · Fri Oct 04 00:29:42 2019 +0200
  66. 28a8fce BUG/MINOR: ssl: abort on sni_keytypes allocation failure by William Lallemand · Fri Oct 04 17:36:55 2019 +0200
  67. 8ed5b96 BUG/MINOR: ssl: free the sni_keytype nodes by William Lallemand · Fri Oct 04 17:24:39 2019 +0200
  68. fe49bb3 BUG/MINOR: ssl: abort on sni allocation failure by William Lallemand · Thu Oct 03 23:46:33 2019 +0200
  69. 4b989f2 MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT by William Lallemand · Fri Oct 04 18:36:55 2019 +0200
  70. f6adbe9 REORG: ssl: move structures to ssl_sock.h by William Lallemand · Wed Sep 11 16:33:52 2019 +0200
  71. e3af8fb REORG: ssl: rename ckch_node to ckch_store by William Lallemand · Tue Oct 08 11:36:53 2019 +0200
  72. eed4bf2 MINOR: ssl: crt-list do ckchn_lookup by William Lallemand · Thu Oct 10 11:38:13 2019 +0200
  73. 1633e39 BUILD: ssl: fix a warning when built with openssl < 1.0.2 by William Lallemand · Mon Sep 30 12:58:13 2019 +0200
  74. 8200414 BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context by Christopher Faulet · Tue Sep 10 10:12:03 2019 +0200
  75. 5762a0d BUG/MAJOR: ssl: ssl_sock was not fully initialized. by Emeric Brun · Fri Sep 06 15:36:02 2019 +0200
  76. 9d00869 CLEANUP: cli: replace all occurrences of manual handling of return messages by Willy Tarreau · Fri Aug 09 11:21:01 2019 +0200
  77. c985801 MINOR: ssl: ssl_fc_has_early should work for BoringSSL by Emmanuel Hocdet · Wed Aug 07 14:44:49 2019 +0200
  78. f967c31 BUG/MINOR: ssl: fix 0-RTT for BoringSSL by Emmanuel Hocdet · Mon Aug 05 18:04:16 2019 +0200
  79. 6e5f2ce BUG/MEDIUM: ssl: open the right path for multi-cert bundle by William Lallemand · Thu Aug 01 14:43:20 2019 +0200
  80. 1503e05 BUG/MINOR: ssl: fix ressource leaks on error by Emmanuel Hocdet · Wed Jul 31 18:30:33 2019 +0200
  81. 6dee29d BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle by William Lallemand · Thu Aug 01 10:59:34 2019 +0200
  82. a8c7374 BUG/MEDIUM: ssl: does not try to free a DH in a ckch by William Lallemand · Wed Jul 31 18:31:34 2019 +0200
  83. c4ecddf BUG/BUILD: ssl: fix build with openssl < 1.0.2 by William Lallemand · Wed Jul 31 16:50:08 2019 +0200
  84. a7a0f99 MINOR: ssl: clean ret variable in ssl_sock_load_ckchn by Emmanuel Hocdet · Tue Jul 30 17:17:03 2019 +0200
  85. efa4b95 CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch by Emmanuel Hocdet · Tue Dec 04 17:37:47 2018 +0100
  86. 54227d8 MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH by Emmanuel Hocdet · Tue Jul 30 17:04:01 2019 +0200
  87. 03e09f3 MINOR: ssl: check private key consistency in loading by Emmanuel Hocdet · Tue Jul 30 14:21:25 2019 +0200
  88. 1c65fdd MINOR: ssl: add extra chain compatibility by Emmanuel Hocdet · Mon Dec 03 18:07:44 2018 +0100
  89. 9246f8b MINOR: ssl: use STACK_OF for chain certs by Emmanuel Hocdet · Fri Nov 30 16:00:21 2018 +0100
  90. fa89222 MEDIUM: ssl: load DH param in struct cert_key_and_chain by William Lallemand · Tue Jul 23 16:06:08 2019 +0200
  91. 6af0399 MEDIUM: ssl: lookup and store in a ckch_node tree by William Lallemand · Tue Jul 23 15:00:54 2019 +0200
  92. 36b8463 MEDIUM: ssl: split the loading of the certificates by William Lallemand · Thu Jul 18 19:28:17 2019 +0200
  93. a59191b MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file() by William Lallemand · Wed May 15 16:08:56 2019 +0200
  94. c940207 MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file() by William Lallemand · Wed May 15 15:33:54 2019 +0200
  95. 085a151 MINOR: ssl-sock: use conn->dst instead of &conn->addr.to by Willy Tarreau · Wed Jul 17 14:47:35 2019 +0200
  96. f5bdb64 MINOR: ssl: switch to conn_get_dst() to retrieve the destination address by Willy Tarreau · Wed Jul 17 11:29:32 2019 +0200
  97. fc9cfe4 REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files by Christopher Faulet · Tue Jul 16 14:54:53 2019 +0200
  98. 4979916 BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2 by Lukas Tribus · Mon Jul 08 14:29:15 2019 +0200
  99. e488ea8 BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL. by Olivier Houchard · Fri Jun 28 14:10:33 2019 +0200
  100. 0ff2865 BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx. by Olivier Houchard · Mon Jun 24 18:57:39 2019 +0200