RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-01-05 19:52:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation

Browse Source 
Whenever HAProxy was reloaded with rotated keys, the resumption would be
broken for previous encryption key. The bug was introduced with the addition
of 80 byte keys in 9e7547 (MINOR: ssl: add support of aes256 bits ticket keys
on file and cli.).

This fix needs to be backported to 1.9.
This commit is contained in:
Nenad Merdanovic 2019-04-14 16:06:46 +02:00 committed by Willy Tarreau
parent 646b7741bc
commit 8ef706502a
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
include/types/ssl_sock.h
View File

@ -63,7 +63,7 @@ struct tls_sess_key_256 {
union tls_sess_key{
unsigned char name[16];
struct tls_sess_key_256 key_128;
struct tls_sess_key_128 key_128;
struct tls_sess_key_256 key_256;
} __attribute__((packed));