]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 646b774) | patch
BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
authorNenad Merdanovic <nmerdan@haproxy.com>
Sun, 14 Apr 2019 14:06:46 +0000 (16:06 +0200)
committerWilly Tarreau <w@1wt.eu>
Mon, 15 Apr 2019 08:09:54 +0000 (10:09 +0200)
commit8ef706502aa2000531d36e4ac56dbdc7c30f718d
treea644aa052c495d7fb2aac9eb235599038d20fe21tree
parent646b7741bc683d6c6b43342369afcbba33d7b6eccommit | diff
BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation

Whenever HAProxy was reloaded with rotated keys, the resumption would be
broken for previous encryption key. The bug was introduced with the addition
of 80 byte keys in 9e7547 (MINOR: ssl: add support of aes256 bits ticket keys
on file and cli.).

This fix needs to be backported to 1.9.
include/types/ssl_sock.h diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git