git.ipfire.org Git - thirdparty/haproxy.git/commit

author	Frederic Lecaille <flecaille@haproxy.com>
	Wed, 9 Jul 2025 09:43:02 +0000 (11:43 +0200)
committer	Frederic Lecaille <flecaille@haproxy.com>
	Wed, 9 Jul 2025 14:01:02 +0000 (16:01 +0200)
commit	45ac235baada2463421cfbb09b524f3846cb6410
tree	a0a8d622b302996e2ee3c620d91a8df0a9408073	tree \| snapshot
parent	c01eb1040ecffb4bdda84be1c8522dc370e0f202	commit \| diff

BUG/MEDIUM: quic: Crash after QUIC server callbacks restoration (OpenSSL 3.5)

Revert this patch which is no more useful since OpenSSL 3.5.1 to remove the
QUIC server callback restoration after SSL context switch:

MINOR: quic: OpenSSL 3.5 internal QUIC custom extension for transport parameters reset

It was required for 3.5.0. That said, there was no CI for OpenSSL 3.5 at the date
of this commit. The CI recently revealed that the QUIC server side could crash
during QUIC reg tests just after having restored the callbacks as implemented by
the commit above.

Also revert this commit which is no more useful because it arrived with the commit
above:

BUG/MEDIUM: quic: SSL/TCP handshake failures with OpenSSL 3.

Must be backported to 3.2.

include/haproxy/quic_ssl.h		diff \| blob \| blame \| history
src/quic_ssl.c		diff \| blob \| blame \| history
src/ssl_clienthello.c		diff \| blob \| blame \| history
src/ssl_gencert.c		diff \| blob \| blame \| history