]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0278bdc) | patch
Shuffle TLS NPN logic to libsecurity
authorAmos Jeffries <squid3@treenet.co.nz>
Wed, 16 Dec 2015 23:10:40 +0000 (12:10 +1300)
committerAmos Jeffries <squid3@treenet.co.nz>
Wed, 16 Dec 2015 23:10:40 +0000 (12:10 +1300)
commitb05d749de416bb93a4010e8c4ba6a8b0c80111fb
treed6279cec4c2104d52c482d08c32516e103c3be9etree | snapshot
parent0278bdcbf06efbd5eb04992f65e6fd2c0058f333commit | diff
Shuffle TLS NPN logic to libsecurity

Also, adds new config option tls-no-npn to fully disable NPN on selected
cache_peer or http(s)_port directives.

ICAPS services set TLS NPN to off by default to prevent NPN wrongly
advertising them as HTTPS connections. The semantic meaning of NPN is to
name the protocol which is being wrapped by TLS, in the case of ICAPS that
is ICAP/1.0 but Squid NPN callback is currently hard-coded to send 'http/1.1'
doc/release-notes/release-4.sgml diff | blob | blame | history
src/adaptation/ServiceConfig.cc diff | blob | blame | history
src/cf.data.pre diff | blob | blame | history
src/security/PeerOptions.cc diff | blob | blame | history
src/security/PeerOptions.h diff | blob | blame | history
src/ssl/support.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git