projects / haproxy-3.0.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 07b7c15) | patch
MINOR: ssl: Increment OCSP update replay delay in case of failure
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Tue, 28 Feb 2023 16:46:27 +0000 (17:46 +0100)
committerWilliam Lallemand <wlallemand@haproxy.org>
Thu, 2 Mar 2023 14:37:21 +0000 (15:37 +0100)
commit7e1a62e2b423b7aa698ec4fc9ca7fabbdf75ccd1
treea17b3858a70e343cfdbc1b732af20cebbe87420atree | snapshot
parent07b7c15bcec8d35736d9235b1fda13559057bd90commit | diff
MINOR: ssl: Increment OCSP update replay delay in case of failure

In case of successive OCSP update errors for a given OCSP response, the
retry delay will be multiplied by 2 for every new failure in order to
avoid retrying too often to update responses for which the responder is
unresponsive (for instance). The maximum delay will still be taken into
account so the OCSP update requests will wtill be sent at least every
hour.
src/ssl_ocsp.c diff | blob | history
haproxy-3.0 public tree. Stable production code.