mirror of
https://git.haproxy.org/git/haproxy.git/
synced 2025-08-10 09:07:02 +02:00
6519cec2ed
We had to parse the sigAlg extension by hand in order to properly select the certificate used by the SSL frontends. These traces allow to dump the allowed sigAlg list sent by the client in its clientHello.
40 lines
1.3 KiB
C
40 lines
1.3 KiB
C
/*
|
|
* include/haproxy/ssl_trace-t.h
|
|
* Definitions for SSL traces internal types, constants and flags.
|
|
*
|
|
* Copyright (C) 2025
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License
|
|
* as published by the Free Software Foundation; either version
|
|
* 2 of the License, or (at your option) any later version.
|
|
*
|
|
*/
|
|
|
|
#ifndef _HAPROXY_SSL_TRACE_T_H
|
|
#define _HAPROXY_SSL_TRACE_T_H
|
|
|
|
#include <haproxy/trace-t.h>
|
|
|
|
extern struct trace_source trace_ssl;
|
|
|
|
#define SSL_EV_CONN_NEW (1ULL << 0)
|
|
#define SSL_EV_CONN_CLOSE (1ULL << 1)
|
|
#define SSL_EV_CONN_END (1ULL << 2)
|
|
#define SSL_EV_CONN_ERR (1ULL << 3)
|
|
#define SSL_EV_CONN_SEND (1ULL << 4)
|
|
#define SSL_EV_CONN_SEND_EARLY (1ULL << 5)
|
|
#define SSL_EV_CONN_RECV (1ULL << 6)
|
|
#define SSL_EV_CONN_RECV_EARLY (1ULL << 7)
|
|
#define SSL_EV_CONN_IO_CB (1ULL << 8)
|
|
#define SSL_EV_CONN_HNDSHK (1ULL << 9)
|
|
#define SSL_EV_CONN_VFY_CB (1ULL << 10)
|
|
#define SSL_EV_CONN_STAPLING (1ULL << 11)
|
|
#define SSL_EV_CONN_SWITCHCTX_CB (1ULL << 12)
|
|
#define SSL_EV_CONN_CHOOSE_SNI_CTX (1ULL << 13)
|
|
#define SSL_EV_CONN_SIGALG_EXT (1ULL << 14)
|
|
|
|
#define TRACE_SOURCE &trace_ssl
|
|
|
|
#endif /* _HAPROXY_SSL_TRACE_T_H */
|