]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6ab08b3) | patch
BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
authorEmmanuel Hocdet <manu@gandi.net>
Thu, 24 Oct 2019 16:33:10 +0000 (18:33 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Fri, 29 Nov 2019 16:02:30 +0000 (17:02 +0100)
commit140b64fb562fb08cecf93ca6bec99822f7d556fb
tree395b98c9f516fb877bb09dfa74e242f30e13ce86tree
parent6ab08b3fd468b62ef08d0b6a71e5e7bf6f88e64bcommit | diff
BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2

Commit 1c65fdd5 "MINOR: ssl: add extra chain compatibility" really implement
SSL_CTX_set0_chain. Since ckch can be used to init more than one ctx with
openssl < 1.0.2 (commit 89f58073 for X509_chain_up_ref compatibility),
SSL_CTX_set1_chain compatibility is required.

This patch must be backported to 2.1.
src/ssl_sock.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git