Hi,
This is a friendly bot that watches fixes pending for the next haproxy-stable
release! One such e-mail is sent periodically once patches are waiting in the
last maintenance branch, and an ideal release date is computed based on the
severity of these fixes and their merge date. Responses
ср, 22 апр. 2020 г. в 00:06, Tim Düsterhus :
> Ilya,
>
> Am 21.04.20 um 20:49 schrieb Илья Шипицин:
> > I thought of some more high level fuzzing without intercepting code path.
> > for example, we know about range queries
> >
> > Range: bytes=0-1023
> >
> >
> > i.e. bytes=(integer)-(integer)
> >
Ilya,
Am 21.04.20 um 20:49 schrieb Илья Шипицин:
> I thought of some more high level fuzzing without intercepting code path.
> for example, we know about range queries
>
> Range: bytes=0-1023
>
>
> i.e. bytes=(integer)-(integer)
>
>
> what if we send
>
> Range: bytes=1023-0
>
> or
> Range:
вт, 21 апр. 2020 г. в 20:24, Tim Düsterhus :
> Ilya,
>
> Am 21.04.20 um 17:02 schrieb Илья Шипицин:
> >> The two CVEs I mentioned were bugs *I* found using afl-fuzz. The biggest
> >> hurdle back when I attempted fuzzing was not getting an appropriate
> >> workload (I've just created a few basic
Hi Willy,
Thanks for your feedback : I forgot the "option socket-stats" in the frontend.
It's all pretty now :)
--
Ionel GARDAIS
Tech'Advantage CIO - IT Team manager
- Mail original -
De: "Willy Tarreau"
À: "Ionel GARDAIS"
Cc: "William Lallemand" , "haproxy"
Envoyé: Mardi 21 Avril
Ilya,
Am 21.04.20 um 17:02 schrieb Илья Шипицин:
>> The two CVEs I mentioned were bugs *I* found using afl-fuzz. The biggest
>> hurdle back when I attempted fuzzing was not getting an appropriate
>> workload (I've just created a few basic requests using nghttp), but
>> instead getting the
On Tue, Apr 21, 2020 at 04:36:55PM +0200, Tim Düsterhus wrote:
> Olivier,
>
> Am 21.04.20 um 16:34 schrieb Olivier D:
> > ;)
> > Patch updated attached.
> >
>
> Now LGTM.
>
> Reviewed-by: Tim Duesterhus
Thanks guys, now applied.
Olivier, I noticed something strange, your patch was produced
вт, 21 апр. 2020 г. в 19:13, Tim Düsterhus :
> Ilya,
>
> Am 21.04.20 um 15:47 schrieb Илья Шипицин:
> >> The write-up is available now:
> >> https://bugs.chromium.org/p/project-zero/issues/detail?id=2023
> >>
> >> It has a "Methodology-Fuzzing" label, so after CVE-2018-14645 and
> >>
On Tue, Apr 21, 2020 at 12:56:51PM +0200, Tim Düsterhus wrote:
> PS: Personal opinion, but I prefer quotes in replies to be shortened as
> much as possible, while still providing context. I don't want to scroll
> through kilobytes of stuff I've already seen :-)
Rest assured it's a shared opinion,
Hi Tim,
On Tue, Apr 21, 2020 at 03:18:43PM +0200, Tim Düsterhus wrote:
> Willy,
>
> Am 02.04.20 um 15:03 schrieb Willy Tarreau:
> > The main driver for this release is that it contains a fix for a serious
> > vulnerability that was responsibly reported last week by Felix Wilhelm
> > from Google
Hi,
Le mar. 21 avr. 2020 à 12:56, Tim Düsterhus a écrit :
> Olivier,
>
> PS: Personal opinion, but I prefer quotes in replies to be shortened as
> much as possible, while still providing context. I don't want to scroll
> through kilobytes of stuff I've already seen :-)
>
;)
Patch updated
Hi Ionel,
On Tue, Apr 21, 2020 at 10:51:24AM +0200, Ionel GARDAIS wrote:
> thanks William,
>
> My fronted definition is :
> frontend ft-public
> bind ip.v.4.addr:80 name web-v4
> bind [ip:v:6:addr]:80 name web-v6
>
> and I'm still seeing only a Frontend entry in the table
>
>
> I also
Ilya,
Am 21.04.20 um 15:47 schrieb Илья Шипицин:
>> The write-up is available now:
>> https://bugs.chromium.org/p/project-zero/issues/detail?id=2023
>>
>> It has a "Methodology-Fuzzing" label, so after CVE-2018-14645 and
>> CVE-2018-20615 this is the 3rd CVE within H2 found using fuzzing that
>>
another option would be to enlist project at HackerOne and wait while Guido
Vranken will fuzz it :)
he already fuzzed dozens of projects, including openssl, openvpn, ...
https://guidovranken.com/
вт, 21 апр. 2020 г. в 18:21, Tim Düsterhus :
> Willy,
>
> Am 02.04.20 um 15:03 schrieb Willy
вт, 21 апр. 2020 г. в 18:21, Tim Düsterhus :
> Willy,
>
> Am 02.04.20 um 15:03 schrieb Willy Tarreau:
> > The main driver for this release is that it contains a fix for a serious
> > vulnerability that was responsibly reported last week by Felix Wilhelm
> > from Google Project Zero, affecting the
Willy,
Am 02.04.20 um 15:03 schrieb Willy Tarreau:
> The main driver for this release is that it contains a fix for a serious
> vulnerability that was responsibly reported last week by Felix Wilhelm
> from Google Project Zero, affecting the HPACK decoder used for HTTP/2.
> CVE-2020-11100 was
CCing Willy because he probably has the configuration of the demo
website.
On Tue, Apr 21, 2020 at 10:51:24AM +0200, Ionel GARDAIS wrote:
> thanks William,
>
> My fronted definition is :
> frontend ft-public
> bind ip.v.4.addr:80 name web-v4
> bind [ip:v:6:addr]:80 name web-v6
>
> and
Olivier,
Am 21.04.20 um 09:37 schrieb Olivier D:
> Thank you for your valuable feedback. Find attached a new patch will all
> your comments taken into account.
>
I've missed two more little things during my initial review:
1. The Subject of the patch should start with "DOC:" instead of
NFP WORKSHOPS
18 Blake Street, York YO1 8QG
Affordable Training Courses for Charities, Schools & Public Sector
Organisations
This email has been sent to haproxy@formilux.org
CLICK TO UNSUBSCRIBE FROM LIST
Alternatively send a blank e-mail to unsubscr...@nfpmail1902.co.uk quoting
On Fri, Apr 03, 2020 at 10:34:12AM +0200, Emmanuel Hocdet wrote:
>
> > Le 31 mars 2020 à 18:40, William Lallemand a écrit
> > :
> >
> > On Thu, Mar 26, 2020 at 06:29:48PM +0100, William Lallemand wrote:
> >>
> >> After some thinking and discussing with people involved in this part of
> >>
On Sat, Apr 04, 2020 at 01:02:13PM +0500, Илья Шипицин wrote:
> Hello,
>
> small fix attached.
>
> Ilya Shipitcin
> From 2cf4b1a3baab84e420dcbbdf084c8138b2f8bd25 Mon Sep 17 00:00:00 2001
> From: Ilya Shipitsin
> Date: Sat, 4 Apr 2020 12:59:53 +0500
> Subject: [PATCH] CLEANUP: src/log.c: fix
nice, I finished all CI stuff :)
I'll focus in copr / rpm next
вт, 21 апр. 2020 г. в 13:29, William Lallemand :
> On Mon, Apr 20, 2020 at 07:12:41PM +0500, Илья Шипицин wrote:
> > Lukas, Willy ?
> >
> > чт, 16 апр. 2020 г. в 23:16, Илья Шипицин :
> >
> > > Hello,
> > >
> > > I added weekly
On Sat, Apr 18, 2020 at 10:42:46PM +0200, Aleksandar Lazic wrote:
> Hi.
>
> I like the new table on https://www.haproxy.org/ . The color show now much
> easier which version is in which state ;-)
>
> Regards
>
> Aleks
>
Thanks for the feedback Aleks, I find that more readable too!
--
On Mon, Apr 20, 2020 at 07:12:41PM +0500, Илья Шипицин wrote:
> Lukas, Willy ?
>
> чт, 16 апр. 2020 г. в 23:16, Илья Шипицин :
>
> > Hello,
> >
> > I added weekly build for detection incompatibilities against
> > "no-deprecated" openssl.
> >
> > (well, I first thought to add those option to
Wow, Many thanks!I implement these configurations, I will keep you
updated!
Best Regards,Domenico
Il giorno mar, 21/04/2020 alle 10.19 +0200, William Lallemand ha
scritto:
> On Tue, Apr 21, 2020 at 10:07:27AM +0200, Domenico Briganti wrote:
> > Thanks William, yes, the reload of haproxy is a
On Tue, Apr 21, 2020 at 10:07:27AM +0200, Domenico Briganti wrote:
> Thanks William, yes, the reload of haproxy is a feasible way, I hadn't
> noticed.I have just one doubt, since I update the crl every day and I
> have mqtt connections that can stay connected for days, at the end I
> can have
Hello,
On Sun, Apr 19, 2020 at 11:17:41AM +0200, Ionel GARDAIS wrote:
> Hi list,
>
> On [ http://demo.haproxy.org/ | http://demo.haproxy.org ] , what does
> IPv4-Direct, IPv4-cached, IPv6-direct, local, local-https represents in
> regard to http-in ?
>
They are listeners (bind lines) in
Thanks William, yes, the reload of haproxy is a feasible way, I hadn't
noticed.I have just one doubt, since I update the crl every day and I
have mqtt connections that can stay connected for days, at the end I
can have many haproxy process running, one a day, until all old
connection (of that
Hello,
Le lun. 20 avr. 2020 à 20:37, Tim Düsterhus a écrit :
> Olivier,
>
> Am 20.04.20 um 20:03 schrieb Olivier D:
> > I'm using gmail so I add to attach patches and was not able to send them
> > directly. If format is wrong, tell me :)
> >
>
> Format looks good to me. Your commit message
Hello,
On Mon, Apr 20, 2020 at 03:15:57PM +0200, Domenico Briganti wrote:
> Ciao Marco, thanks for your help.
> We've found the problem, we do need also the CRL from ROOT CA on top of
> the file passed to crl-file parameter, thant contein already the
> intermediate crl.
> But now we have
30 matches
Mail list logo