MINOR: ssl: do not set ALPN callback with the empty string

author Willy Tarreau <w@1wt.eu>

Wed, 19 Apr 2023 07:05:49 +0000 (09:05 +0200)

committer Willy Tarreau <w@1wt.eu>

Wed, 19 Apr 2023 07:12:43 +0000 (09:12 +0200)
author Willy Tarreau <w@1wt.eu>
Wed, 19 Apr 2023 07:05:49 +0000 (09:05 +0200)
committer Willy Tarreau <w@1wt.eu>
Wed, 19 Apr 2023 07:12:43 +0000 (09:12 +0200)
diff --git a/src/ssl_sock.c b/src/ssl_sock.c

index cb544d4e4ce9b18f0c2ed5354a6df40f8b658e2e..e7f6d41b9b25509e22196287eaf98cdb0d50389e 100644 (file)
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -4717,7 +4717,7 @@ static int ssl_sock_prepare_ctx(struct bind_conf *bind_conf, struct ssl_bind_con
                 ssl_conf_cur = ssl_conf;
         else if (bind_conf->ssl_conf.alpn_str)
                 ssl_conf_cur = &bind_conf->ssl_conf;
-       if (ssl_conf_cur)
+       if (ssl_conf_cur && ssl_conf_cur->alpn_len)
                 SSL_CTX_set_alpn_select_cb(ctx, ssl_sock_advertise_alpn_protos, ssl_conf_cur);
  #endif
  #if defined(SSL_CTX_set1_curves_list)
@@ -5150,7 +5150,7 @@ static int ssl_sock_prepare_srv_ssl_ctx(const struct server *srv, SSL_CTX *ctx)
                 SSL_CTX_set_next_proto_select_cb(ctx, ssl_sock_srv_select_protos, (struct server*)srv);
  #endif
  #ifdef TLSEXT_TYPE_application_layer_protocol_negotiation
-       if (srv->ssl_ctx.alpn_str)
+       if (srv->ssl_ctx.alpn_str && srv->ssl_ctx.alpn_len)
                 SSL_CTX_set_alpn_protos(ctx, (unsigned char *)srv->ssl_ctx.alpn_str, srv->ssl_ctx.alpn_len);
  #endif
author	Willy Tarreau <w@1wt.eu>
	Wed, 19 Apr 2023 07:05:49 +0000 (09:05 +0200)
committer	Willy Tarreau <w@1wt.eu>
	Wed, 19 Apr 2023 07:12:43 +0000 (09:12 +0200)