mirror of
https://github.com/haproxy/haproxy.git
synced 2026-02-23 01:42:05 -05:00
HAProxy - Load balancer
e67c80be7f
The new 'add ssl crt-list' command allows to add a new crt-list entry in a crt-list (or a directory since they are handled the same way). The principle is basicaly the same as the "commit ssl cert" command with the exception that it iterates on every bind_conf that uses the crt-list and generates a ckch instance (ckch_inst) for each of them. The IO handler yield every 10 bind_confs so HAProxy does not get stuck in a too much time consuming generation if it needs to generate too much SSL_CTX'. This command does not handle the SNI filters and the SSL configuration yet. Example: $ echo "new ssl cert foo.net.pem" | socat /tmp/sock1 - New empty certificate store 'foo.net.pem'! $ echo -e -n "set ssl cert foo.net.pem <<\n$(cat foo.net.pem)\n\n" | socat /tmp/sock1 - Transaction created for certificate foo.net.pem! $ echo "commit ssl cert foo.net.pem" | socat /tmp/sock1 - Committing foo.net.pem Success! $ echo "add ssl crt-list one.crt-list foo.net.pem" | socat /tmp/sock1 - Inserting certificate 'foo.net.pem' in crt-list 'one.crt-list'...... Success! $ echo "show ssl crt-list one.crt-list" | socat /tmp/sock1 - # one.crt-list 0x55d17d7be360 kikyo.pem.rsa [ssl-min-ver TLSv1.0 ssl-max-ver TLSv1.3] 0x55d17d82cb10 foo.net.pem |
||
|---|---|---|
| .github | ||
| contrib | ||
| doc | ||
| ebtree | ||
| examples | ||
| include | ||
| reg-tests | ||
| scripts | ||
| src | ||
| tests | ||
| .cirrus.yml | ||
| .gitignore | ||
| .travis.yml | ||
| BRANCHES | ||
| CHANGELOG | ||
| CONTRIBUTING | ||
| INSTALL | ||
| LICENSE | ||
| MAINTAINERS | ||
| Makefile | ||
| README | ||
| ROADMAP | ||
| SUBVERS | ||
| VERDATE | ||
| VERSION | ||
The HAProxy documentation has been split into a number of different files for ease of use. Please refer to the following files depending on what you're looking for : - INSTALL for instructions on how to build and install HAProxy - BRANCHES to understand the project's life cycle and what version to use - LICENSE for the project's license - CONTRIBUTING for the process to follow to submit contributions The more detailed documentation is located into the doc/ directory : - doc/intro.txt for a quick introduction on HAProxy - doc/configuration.txt for the configuration's reference manual - doc/lua.txt for the Lua's reference manual - doc/SPOE.txt for how to use the SPOE engine - doc/network-namespaces.txt for how to use network namespaces under Linux - doc/management.txt for the management guide - doc/regression-testing.txt for how to use the regression testing suite - doc/peers.txt for the peers protocol reference - doc/coding-style.txt for how to adopt HAProxy's coding style - doc/internals for developer-specific documentation (not all up to date)