]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e3e4e00) | patch
MEDIUM: ssl: new sample fetch method to get curve name
authorMariam John <john.mariam.oss@gmail.com>
Mon, 17 Jul 2023 13:22:59 +0000 (08:22 -0500)
committerWilliam Lallemand <wlallemand@haproxy.org>
Mon, 17 Jul 2023 13:45:41 +0000 (15:45 +0200)
commit00b7b49a4668546e10b5b31ca5f43f11ba3c1d8d
treeb31494eb0b254db45983a9d1ad212f2dedde05a6tree | snapshot
parente3e4e00063f359d6113144bddff67d3557a9eedbcommit | diff
MEDIUM: ssl: new sample fetch method to get curve name

Adds a new sample fetch method to get the curve name used in the
key agreement to enable better observability. In OpenSSLv3, the function
`SSL_get_negotiated_group` returns the NID of the curve and from the NID,
we get the curve name by passing the NID to OBJ_nid2sn. This was not
available in v1.1.1. SSL_get_curve_name(), which returns the curve name
directly was merged into OpenSSL master branch last week but will be available
only in its next release.
doc/configuration.txt diff | blob | blame | history
reg-tests/ssl/ssl_curve_name.vtc [new file with mode: 0644] blob
src/ssl_sample.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git