Hi,
I spent more time debugging the problem.
Here¹s the source snippet from 1.5.2 version of haproxy
(I believe the latest 1.5.14 has the same issue).
This is fixed by commit 8068b03467 (BUG/MINOR: ssl: correctly
initialize ssl ctx for invalid certificates) [1], which is in
Haproxy 1.5.7 and
Thanks. I confirmed that it’s working in 1.5.14.
---
Sang-Min Park Software Engineer
HP Helion Cloud
On 7/28/15, 12:44 AM, Lukas Tribus luky...@hotmail.com wrote:
Hi,
I spent more time debugging the problem.
Here¹s the source snippet from 1.5.2 version of haproxy
(I
I spent more time debugging the problem.
Here¹s the source snippet from 1.5.2 version of haproxy (I believe the
latest 1.5.14 has the same issue).
It seems like when cert has no CN it causes ¹sni_ctx¹ not inserted into
the binding¹s bind_conf. Then when Œssl_sock_prepare_all_ctx¹ is called,
3 matches
Mail list logo