]> git.ipfire.org Git - thirdparty/haproxy.git/commitdiff
projects / thirdparty / haproxy.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7f876a1)
BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
authorLukas Tribus <luky-37@hotmail.com>
Thu, 26 Nov 2015 00:48:08 +0000 (01:48 +0100)
committerWilly Tarreau <w@1wt.eu>
Thu, 26 Nov 2015 06:30:22 +0000 (07:30 +0100)
Sander Klein reported an error messages about SSLv3 not
being supported on Debian 8, although he didn't force-sslv3.

Vincent Bernat tracked this down to the LUA initialization, which
actually does force-sslv3.

This patch removes force-sslv3 from the LUA initialization, so
the LUA SSL socket can actually use TLS and doesn't trigger
warnings when SSLv3 is not supported by libssl (such as in
Debian 8).

This should be backported to 1.6.

src/hlua.c patch | blob | blame | history

diff --git a/src/hlua.c b/src/hlua.c
index 5ee233727ec0d18cff1d05ef2d0b8c37b002f4c1..17e9b54e02137c886e1b966d9b4345ab85b55dd8 100644 (file)
--- a/src/hlua.c
+++ b/src/hlua.c
@@ -6475,7 +6475,6 @@ void hlua_init(void)
                "ssl",
                "verify",
                "none",
-               "force-sslv3",
                NULL
        };
 #endif
Mirror of https://github.com/haproxy/haproxy.git