projects / haproxy-3.0.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0594211) | patch
BUG/MEDIUM: ssl: fix verify/ca-file per certificate
authorEmmanuel Hocdet <manu@gandi.net>
Wed, 1 Mar 2017 17:54:56 +0000 (18:54 +0100)
committerWilly Tarreau <w@1wt.eu>
Thu, 2 Mar 2017 17:31:51 +0000 (18:31 +0100)
commit530141f7479704be9d8f6c8f18fc9f71a6da2b3c
tree1cb968431cc5942ef53d0652875606b0b3d5cfddtree | snapshot
parent0594211987351eaf521577b798a3a461b043710ccommit | diff
BUG/MEDIUM: ssl: fix verify/ca-file per certificate

SSL verify and client_CA inherits from the initial ctx (default_ctx).
When a certificate is found, the SSL connection environment must be replaced by
the certificate configuration (via SSL_set_verify and SSL_set_client_CA_list).
src/ssl_sock.c diff | blob | history
haproxy-3.0 public tree. Stable production code.