git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	William Lallemand <wlallemand@haproxy.org>
	Thu, 30 Dec 2021 13:45:19 +0000 (14:45 +0100)
committer	William Lallemand <wlallemand@haproxy.org>
	Thu, 30 Dec 2021 15:56:52 +0000 (16:56 +0100)
commit	e69563fd8ed1a492ae4547451935908c0802e2c4
tree	f0a47d3463b350a374bef9be97301f4904897a3c	tree \| snapshot
parent	231610ad9ccc2470930f7a728ba710a548677a65	commit \| diff

BUG/MEDIUM: ssl: free the ckch instance linked to a server

This patch unlinks and frees the ckch instance linked to a server during
the free of this server.

This could have locked certificates in a "Used" state when removing
servers dynamically from the CLI. And could provoke a segfault once we
try to dynamically update the certificate after that.

This must be backported as far as 2.4.

src/ssl_sock.c

diff | blob | blame | history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom