git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Olivier Houchard <ohouchard@haproxy.com>
	Thu, 19 Jun 2025 16:44:22 +0000 (18:44 +0200)
committer	Olivier Houchard <cognet@ci0.org>
	Wed, 20 Aug 2025 16:33:11 +0000 (18:33 +0200)
commit	5c8fa5096671bf61e0a06a92933f42ec4227fe8d
tree	cbab52560a9649b56d29ca24cf7128a03886459b	tree \| snapshot
parent	a903004a1a3169e96fe415bf6cf8bcac621bc14d	commit \| diff

MEDIUM: ssl: Add ktls support for AWS-LC.

Add ktls support for AWS-LC. As it does not know anything
about ktls, it means extracting keys from the ssl lib, and provide them
to the kernel. At which point we can use regular recvmsg()/sendmsg()
calls.
This patch only provides support for TLS 1.2, AWS-LC provides a
different way to extract keys for TLS 1.3.
Note that this may work with BoringSSL too, but it has not been tested.

include/haproxy/openssl-compat.h		diff \| blob \| blame \| history
src/ssl_sock.c		diff \| blob \| blame \| history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom