projects / haproxy-3.0.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ce9e01c) | patch
BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
authorEmeric Brun <ebrun@haproxy.com>
Tue, 6 Jun 2017 12:35:14 +0000 (12:35 +0000)
committerWilly Tarreau <w@1wt.eu>
Thu, 8 Jun 2017 04:47:34 +0000 (06:47 +0200)
commitb5e42a817b4b687c90ad9db12fe2bcd1652a00fe
tree3dc90f7d95900527e2032efe22db4902f3061693tree | snapshot
parentce9e01c6744262ec2bf88aa71f72bd8042dcad89commit | diff
BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine

The Openssl's ASYNC API does'nt support moving buffers on SSL_read/write
This patch disables the ASYNC mode dynamically when the handshake
is left and re-enables it on reneg.
doc/configuration.txt diff | blob | history
src/ssl_sock.c diff | blob | history
haproxy-3.0 public tree. Stable production code.