From c0ed91910a43020485c89662c0df1cf5fcd3d93a Mon Sep 17 00:00:00 2001 From: =?utf8?q?Fr=C3=A9d=C3=A9ric=20L=C3=A9caille?= Date: Wed, 10 Mar 2021 11:51:38 +0100 Subject: [PATCH] BUG/MINOR: connection: Missing QUIC initialization The QUIC connection struct connection member was not initialized. This may make randomly haproxy handle TLS connections as QUIC ones only when QUIC support is enabled leading to such OpenSSL errors (captured from a reg test output, TLS Client-Hello callback failed): OpenSSL error[0x10000085] OPENSSL_internal: CONNECTION_REJECTED OpenSSL error[0x10000410] OPENSSL_internal: SSLV3_ALERT_HANDSHAKE_FAILURE OpenSSL error[0x1000009a] OPENSSL_internal: HANDSHAKE_FAILURE_ON_CLIENT_HELLO This patch should fix #1168 github issue. --- include/haproxy/connection.h | 1 + 1 file changed, 1 insertion(+) diff --git a/include/haproxy/connection.h b/include/haproxy/connection.h index 46a521e..739d6a6 100644 --- a/include/haproxy/connection.h +++ b/include/haproxy/connection.h @@ -357,6 +357,7 @@ static inline void conn_init(struct connection *conn, void *target) conn->dst = NULL; conn->proxy_authority = IST_NULL; conn->proxy_unique_id = IST_NULL; + conn->qc = NULL; conn->hash_node = NULL; } -- 1.7.10.4