]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 370a8ce) | patch
MINOR: ssl: Add "renegotiate" server option
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Thu, 12 Jun 2025 13:08:28 +0000 (15:08 +0200)
committerWilliam Lallemand <wlallemand@haproxy.com>
Wed, 25 Jun 2025 13:23:48 +0000 (15:23 +0200)
commit34fc73ba81f2819d9eacc8fb2676c84079691d9b
treeebc5a5eb64f361be93f9bf7c92b8a8a4cacbdcc0tree
parent370a8cea4a2680cf27d5be61163bada27d541347commit | diff
MINOR: ssl: Add "renegotiate" server option

This "renegotiate" option can be set on SSL backends to allow secure
renegotiation. It is mostly useful with SSL libraries that disable
secure regotiation by default (such as AWS-LC).
The "no-renegotiate" one can be used the other way around, to disable
secure renegotation that could be allowed by default.
Those two options can be set via "ssl-default-server-options" as well.
doc/configuration.txt diff | blob | blame | history
include/haproxy/server-t.h diff | blob | blame | history
include/haproxy/ssl_sock-t.h diff | blob | blame | history
src/cfgparse-ssl.c diff | blob | blame | history
src/server.c diff | blob | blame | history
src/ssl_sock.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git