]> git.kaiwu.me - haproxy.git/commit
projects / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 282a76a) | patch
BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
authorEmeric Brun <ebrun@exceliance.fr>
Thu, 8 Nov 2012 18:21:55 +0000 (19:21 +0100)
committerWilly Tarreau <w@1wt.eu>
Mon, 12 Nov 2012 10:46:08 +0000 (11:46 +0100)
commit674b743067c652cbea6d3e45912b9c37e7ccb3e5
treeed0c9feb7ad88004eb44be521ecea803d962213btree | snapshot
parent282a76acc17b1c23c5204addc2f7d5019cded704commit | diff
BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.

SSL_do_handshake is not appropriate for reneg, it's only appropriate at the
beginning of a connection. OpenSSL correctly handles renegs using the data
functions, so we use SSL_peek() here to make its state machine progress if
SSL_renegotiate_pending() says a reneg is pending.
src/ssl_sock.c diff | blob | history
haproxy upstream