projects / haproxy-2.3.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dd0e89a) | patch
BUG/MEDIUM: ssl: Revamp the way early data are handled.
authorOlivier Houchard <ohouchard@haproxy.com>
Thu, 19 Dec 2019 14:02:39 +0000 (15:02 +0100)
committerOlivier Houchard <cognet@ci0.org>
Thu, 19 Dec 2019 14:22:04 +0000 (15:22 +0100)
commit54907bb848962cc89d18fffb40af32010e4090b0
tree7f8d007b9521c182f509c408b67a8ce3a2284c89tree | snapshot
parentdd0e89a084fc9a9f51eebb10c202d57ec9f8c91ccommit | diff
BUG/MEDIUM: ssl: Revamp the way early data are handled.

Instead of attempting to read the early data only when the upper layer asks
for data, allocate a temporary buffer, stored in the ssl_sock_ctx, and put
all the early data in there. Requiring that the upper layer takes care of it
means that if for some reason the upper layer wants to emit data before it
has totally read the early data, we will be stuck forever.

This should be backported to 2.1 and 2.0.
This may fix github issue #411.
src/ssl_sock.c diff | blob | history
haproxy-2.3 public tree. Stable production code.