projects / haproxy-2.3.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: efcf138) | patch
MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
authorWilliam Lallemand <wlallemand@haproxy.org>
Fri, 4 Dec 2020 14:45:02 +0000 (15:45 +0100)
committerChristopher Faulet <cfaulet@haproxy.com>
Mon, 14 Dec 2020 08:29:17 +0000 (09:29 +0100)
commit00b831edd661923bae6d71d093e8de05e0422996
tree2bff66281a9e456d8049dc60a19eea33fe1dedd6tree | snapshot
parentefcf138b057d7a0d66526172764e6a9e4a3c5901commit | diff
MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1

Since HAProxy 2.3, OpenSSL 1.1.1 is a requirement for using a
multi-certificate bundle in the configuration. This patch emits a fatal
error when HAProxy tries to load a bundle with an older version of
HAProxy.

This problem was encountered by an user in issue #990.

This must be backported in 2.3.

(cherry picked from commit b7fdfdfd92b9fdc6a3f742643760d6415fdc6f6b)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
src/ssl_crtlist.c diff | blob | history
src/ssl_sock.c diff | blob | history
haproxy-2.3 public tree. Stable production code.