]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: be1ccae) | patch
BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
authorRemi Gacogne <rgacogne@aquaray.fr>
Thu, 28 May 2015 14:23:00 +0000 (16:23 +0200)
committerWilly Tarreau <w@1wt.eu>
Thu, 28 May 2015 16:03:27 +0000 (18:03 +0200)
commit4f902b88323927c9d25d391a809e3678ac31df41
tree636a054d6d455b7e6a90c343c5ce0f14397956f2tree
parentbe1ccaea927d17e9019424c074b7aa250a6fe641commit | diff
BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten

HervĂ© Commowick reported that the logic used to avoid complaining about
ssl-default-dh-param not being set when static DH params are present
in the certificate file was clearly wrong when more than one sni_ctx
is used.
This patch stores whether static DH params are being used for each
SSL_CTX individually, and does not overwrite the value of
tune.ssl.default-dh-param.
src/ssl_sock.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git