]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3bda807) | patch
BUG/MINOR: ssl: allow duplicate certificates in ca-file directories
authorWilliam Lallemand <wlallemand@haproxy.org>
Mon, 18 Jul 2022 16:42:52 +0000 (18:42 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Mon, 18 Jul 2022 16:49:27 +0000 (18:49 +0200)
commit4348232231f8ac652c166c5cf49e5024fac40751
treec9768a11752e1964a3c665c5ab0255f6cfc3621dtree | snapshot
parent3bda80789c88e032fc4bd72e5d775841aeb046c4commit | diff
BUG/MINOR: ssl: allow duplicate certificates in ca-file directories

It looks like OpenSSL 1.0.2 returns an error when trying to insert a
certificate whis is already present in a X509_STORE.

This patch simply ignores the X509_R_CERT_ALREADY_IN_HASH_TABLE error if
emitted.

Should fix part of issue #1780.

Must be backported in 2.6.
src/ssl_ckch.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git