projects / haproxy-2.5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 653a167) | patch
MINOR: ssl: Chain instances in ca-file entries
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Tue, 20 Apr 2021 14:54:21 +0000 (16:54 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Mon, 17 May 2021 08:50:24 +0000 (10:50 +0200)
commitf81c70ceececceb83131c04039c3a67b52aefbd0
tree0540d516f049dd1c0f0ac0c8478854e7f655db5dtree | snapshot
parent653a16769a6837988eae00e4ff9b13b2c1915bf8commit | diff
MINOR: ssl: Chain instances in ca-file entries

In order for crl-file hot update to be possible, we need to add an extra
link between the CA file tree entries that hold Certificate Revocation
Lists and the instances that use them. This way we will be able to
rebuild each instance upon CRL modification.
This mechanism is similar to what was made for the actual CA file update
since both the CA files and the CRL files are stored in the same CA file
tree.
src/ssl_ckch.c diff | blob | history
haproxy-2.5 public tree. Stable production code.