]> git.kaiwu.me - haproxy.git/commit
projects / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: be4e122) | patch
BUG/MEDIUM: ssl: Don't resume session for check connections
authorOlivier Houchard <ohouchard@haproxy.com>
Tue, 9 Dec 2025 15:25:40 +0000 (16:25 +0100)
committerOlivier Houchard <cognet@ci0.org>
Tue, 9 Dec 2025 15:45:54 +0000 (16:45 +0100)
commit420b42df1c6404956d1858e3c999e8d9288061a8
tree9ab527c962bf30e37bf40507188f28fc9a7d6ef7tree | snapshot
parentbe4e1220c23fd45096e94006beac3b16453470abcommit | diff
BUG/MEDIUM: ssl: Don't resume session for check connections

Don't attempt to use stored sessions when creating new check
connections, as the check SSL parameters might be different from the
server's ones.
This has not been proven to be a problem yet, but it doesn't mean it
can't be, and this should be backported up to 2.8 along with
dcce9369129f6ca9b8eed6b451c0e20c226af2e3 if it is.
src/ssl_sock.c diff | blob | history
haproxy upstream