Hi Willy, Yes, please send me the script.
Thanks! -- Georges-Etienne > Le 2015-02-06 à 01:55, Willy Tarreau <w...@1wt.eu> a écrit : > > Hi Georges-Etienne, > >> On Thu, Feb 05, 2015 at 09:10:25PM -0500, Georges-Etienne Legendre wrote: >> Hi Willy, >> >> I'm not sure how to document this leak. I don't know exactly how is >> implemented the firewall SSL health check... Would the Wireshark trace be >> enough to report the issue? > > Yes I think it will definitely help, given that the exchange is very short, > it basically is an SSL hello. It is important to report the strace output > as well and to mention that haproxy is running in a chroot. > > If that helps you, I can send you the script I wrote from your capture. > You could try it to confirm it does the same effect as the firewall's > checks. Once confirmed, it will be much easier to build a bug report > given that you'll simply have to attach the script as a reproducer. > > Best regards, > Willy >