]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dbdd063) | patch
MINOR: ssl: Add traces to the switchctx callback
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Fri, 18 Apr 2025 15:26:56 +0000 (17:26 +0200)
committerWilliam Lallemand <wlallemand@haproxy.com>
Wed, 30 Apr 2025 09:11:26 +0000 (11:11 +0200)
commit105c1ca13924423a8623b60df8946960bfe7652b
treebd775c2929aa385e1a7374a40d44f31010be82c8tree
parentdbdd0630e18bb8dd6fc5f80fe14848e36c5f88c6commit | diff
MINOR: ssl: Add traces to the switchctx callback

This callback allows to pick the used certificate on an SSL frontend.
The certificate selection is made according to the information sent by
the client in the clientHello. The traces that were added will allow to
better understand what certificate was chosen and why. It will also warn
us if the chosen certificate was the default one.
The actual certificate parsing happens in ssl_sock_chose_sni_ctx. It's
in this function that we actually get the filename of the certificate
used.
include/haproxy/ssl_trace-t.h diff | blob | blame | history
src/ssl_clienthello.c diff | blob | blame | history
src/ssl_trace.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git