From e50afbd4e40a37310aa3b79b50a920164215c903 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20L=C3=A9caille?= Date: Mon, 23 Nov 2020 11:33:12 +0100 Subject: [PATCH] MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl". When parsing "ssl" keyword for TLS bindings, we must not use the same xprt as the one for TLS/TCP connections. So, do not modify the QUIC xprt which will be initialized when parsing QUIC addresses wich "ssl" bindings. --- src/cfgparse-ssl.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/src/cfgparse-ssl.c b/src/cfgparse-ssl.c index 47e059297..3d58cd22d 100644 --- a/src/cfgparse-ssl.c +++ b/src/cfgparse-ssl.c @@ -1040,7 +1040,9 @@ static int bind_parse_alpn(char **args, int cur_arg, struct proxy *px, struct bi /* parse the "ssl" bind keyword */ static int bind_parse_ssl(char **args, int cur_arg, struct proxy *px, struct bind_conf *conf, char **err) { - conf->xprt = &ssl_sock; + /* Do not change the xprt for QUIC. */ + if (conf->xprt != xprt_get(XPRT_QUIC)) + conf->xprt = &ssl_sock; conf->is_ssl = 1; if (global_ssl.listen_default_ciphers && !conf->ssl_conf.ciphers)