git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Emmanuel Hocdet <manu@gandi.net>
	Mon, 16 Dec 2019 15:39:17 +0000 (16:39 +0100)
committer	William Lallemand <wlallemand@haproxy.org>
	Wed, 4 Mar 2020 10:53:11 +0000 (11:53 +0100)
commit	842e94ee06c2c1e57078d91c28371248cf471386
tree	e3d5f5cc03f5ea70005e737b5573553772f788af	tree \| snapshot
parent	0214b45a61cd7cfd59d729b23f497a687192cde6	commit \| diff

MINOR: ssl: add "ca-verify-file" directive

It's only available for bind line. "ca-verify-file" allows to separate
CA certificates from "ca-file". CA names sent in server hello message is
only compute from "ca-file". Typically, "ca-file" must be defined with
intermediate certificates and "ca-verify-file" with certificates to
ending the chain, like root CA.

Fix issue #404.

doc/configuration.txt		diff \| blob \| blame \| history
include/types/listener.h		diff \| blob \| blame \| history
src/ssl_sock.c		diff \| blob \| blame \| history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom