Hi Emeric, On Tue, Jun 06, 2017 at 03:16:39PM +0200, Emeric Brun wrote: > Here 3 new fixes: > > I noticed a segfault sometime at connection closure (first patch) > > I noticed buffer overflows using the cipher offloading in async: > > The moving or reuse of buffer addresses passed to SSL_read/write in haproxy > is not compliant with the ASYNC API. I had a discussion about that on the > openssl-dev mailing list with Matt Caswell. > > So the second patch disables the async mode for the symmetric stuff. > > The last one to not call directly the conn_fd_handler from the > async_fd_handler.
All applied, thanks Emeric! Willy
