BUG/MEDIUM: connection: Use the session to get the origin address if needed.

In conn_si_send_proxy(), if we don't have a conn_stream yet, because the mux
won't be created until the SSL handshake is done, retrieve the opposite's
connection from the session. At this point, we know the session associated
with the connection is the one that initiated it, and we can thus just use
the session's origin.

This should be backported to 1.9.
This commit is contained in:
Olivier Houchard 2019-05-29 17:08:03 +02:00 committed by Willy Tarreau
parent 201840abf1
commit 661167d136
1 changed files with 15 additions and 0 deletions

View File

@ -360,6 +360,21 @@ int conn_si_send_proxy(struct connection *conn, unsigned int flag)
ret = make_proxy_line(trash.area, trash.size, ret = make_proxy_line(trash.area, trash.size,
objt_server(conn->target), objt_server(conn->target),
remote_cs ? remote_cs->conn : NULL); remote_cs ? remote_cs->conn : NULL);
/* We may not have a conn_stream yet, if we don't
* know which mux to use, because it will be decided
* during the SSL handshake. In this case, there should
* be a session associated to the connection in
* conn->owner, and we know it is the session that
* initiated that connection, so we can just use
* its origin, which should contain the client
* connection.
*/
} else if (!cs && conn->owner) {
struct session *sess = conn->owner;
ret = make_proxy_line(trash.area, trash.size,
objt_server(conn->target),
objt_conn(sess->origin));
} }
else { else {
/* The target server expects a LOCAL line to be sent first. Retrieving /* The target server expects a LOCAL line to be sent first. Retrieving