BUG/MEDIUM: cache/stats: Wait to have the request before sending the
response
BUG/MEDIUM: promex: Wait to have the request before sending the response
Damien Claisse (2):
MINOR: server: allow init-state for dynamic servers
DOC: management: add init-state to add server
On Tue, Sep 17, 2024 at 02:54:24PM +, Damien Claisse wrote:
> Commit ce6a621ae allowed init-state to be used for dynamic servers but I
> forgot to update management doc.
Applied, thank you Damien!
Willy
On Wed, Sep 11, 2024 at 10:14:13AM +0200, ??? wrote:
> ??, 11 . 2024 ?. ? 08:44, Alexis Vachette :
>
> > Hi,
> >
> > Just wanted to know if you had a plan to release package for Ubuntu 20.04
> > Focal.
> >
> > Mostly because of OpenSSL 3.0 regression performance.
> >
> > The question
On Tue, Sep 10, 2024 at 02:52:42PM +, Damien Claisse wrote:
> Commit 50322df introduced the init-state keyword, but it didn't enable
> it for dynamic servers. However, this feature is perfectly desirable
> for virtual servers too, where someone would like a server inlived
> through "set server
Hello!
On Fri, Sep 06, 2024 at 11:23:03AM +, PR Bot wrote:
> From d9d994eb1c6615b1f7ce7a0493be669ad8bb4ab0 Mon Sep 17 00:00:00 2001
> From: shakedm
> Date: Fri, 6 Sep 2024 13:38:25 +0300
> Subject: [PATCH] fix a BUG in stream.c where counters will zero because of
> failed updates
>
> The cu
On Wed, Sep 04, 2024 at 06:27:35PM -0400, Aaron Kuehler wrote:
> Allow the user to set the "initial state" of a server.
>
> Context:
>
> Servers are always set in an UP status by default. In
> some cases, further checks are required to determine if the server is
> ready to receive client traffic.
William Lallemand (6):
BUILD: tools: environ is not defined in OS X and BSD
CLEANUP: ssl: cleanup the clienthello capture
MEDIUM: ssl: capture the supported_versions extension from Client Hello
MEDIUM: ssl/sample: add ssl_fc_supported_versions_bin sample fetch
MEDIUM:
Hi Pavlos,
On Wed, Sep 04, 2024 at 10:27:29AM +0200, Pavlos Parissis wrote:
> On Tue, 3 Sept 2024 at 22:26, Aaron Kuehler
> wrote:
> >
> > Allow the user to set the "initial state" of a server.
> >
> > Context:
> >
> > Servers are always set in an UP status by default. In
> > some cases, further
Hi,
On Tue, Sep 03, 2024 at 03:52:43PM +0200, Willy Tarreau wrote:
> HAProxy 3.0.4 was released on 2024/09/03. It added 42 new commits
> after version 3.0.3.
(...)
> Note that at this point this flushes the queue of pending bugs for 3.0,
> which is a good news. There remains one
Hello Aaron,
On Tue, Sep 03, 2024 at 04:24:57PM -0400, Aaron Kuehler wrote:
> Allow the user to set the "initial state" of a server.
Thank you very much for working on this one!
> Context:
>
> Servers are always set in an UP status by default. In
> some cases, further checks are required to det
On Mon, Aug 26, 2024 at 11:40:15PM +0200, Ilya Shipitsin wrote:
> This is 43rd iteration of typo fixes
Merged, thank you Ilya!
Willy
: init: set default for fd_hard_limit via DEFAULT_MAXFD (take #2)
BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
William Lallemand (1):
DOC: configuration: issuers-chain-path not compatible with OCSP
Willy Tarreau (10):
BUILD: listener: silence a build w
On Fri, Aug 30, 2024 at 03:32:54PM +0200, Anthony Doeraene wrote:
> > Otherwise let me know if I can apply it as-is.
>
> Seems good to me ! Thank you again for your reviews.
OK now pushed, thank you!
> > I'm very happy that after so long this topic has been alive, with your,
> > Matt's and Doria
On Mon, Aug 26, 2024 at 11:50:27AM +0200, Aperence wrote:
> diff --git a/src/backend.c b/src/backend.c
> index 6956d9bfe..e4bd465e9 100644
> --- a/src/backend.c
> +++ b/src/backend.c
> @@ -1690,8 +1690,9 @@ int connect_server(struct stream *s)
>
> if (!srv_conn->xprt) {
> /* s
On Mon, Aug 26, 2024 at 11:50:26AM +0200, Aperence wrote:
> Use the protocol configured for a connection when creating the socket,
> instead of always using 0.
>
> This change is needed to allow new protocol to be used when creating
> the sockets, such as MPTCP. Note however that this patch won't
Hi Anthony,
On Mon, Aug 26, 2024 at 12:03:50PM +0200, Anthony Doeraene wrote:
> Hello,
>
> Changelog compared to the previous patch:
>
> - split some code to patches 1-3/4
> - use MPTCP with the backend if set in the backend config thanks to
> patches X/4
> - remove ".receivers" in the new MPTCP
Hi Nicolas,
On Tue, Aug 27, 2024 at 10:18:51PM +0200, Nicolas CARPi wrote:
> Found these two typos while browsing the code :)
(...)
> Found this typo in macro name :)
Thank you, both patches applied.
> BTW, in mqtt.c mqtt_read_varint(), "off" is initialized to 0, but
> initialized again in the
On Sat, Aug 24, 2024 at 07:13:09PM +0200, Willy Tarreau wrote:
> On Sat, Aug 24, 2024 at 07:02:30PM +0200, ??? wrote:
> > the reason of adding ngtcp2 is
> >
> > "let's add and see how it goes".
> >
> > and that is what we agreed
On Sat, Aug 24, 2024 at 07:02:30PM +0200, ??? wrote:
> the reason of adding ngtcp2 is
>
> "let's add and see how it goes".
>
> and that is what we agreed in GH issue :)
That's fine by me, thank you!
Willy
On Sat, Aug 24, 2024 at 06:15:59PM +0200, ??? wrote:
> it is pretty much about it.
> short commit message "CI: QUIC Interop AWS-LC: enable ngtcp2 client"
> describes what is done, GH issue is optional.
But it does not explain why (or what the purpose is). As I often say
it, commit message
Hi Ilya,
On Sat, Aug 24, 2024 at 03:55:45PM +0200, Ilya Shipitsin wrote:
> GH issue: https://github.com/haproxy/haproxy/issues/2688
While it's fine to put references to GH issues to ease tracking, please
always leave a bit of information in the commit message about what the
intent of the patch is
On Fri, Aug 23, 2024 at 05:11:11PM +0200, Matthieu Baerts wrote:
> >>> With that said, from an implementation perspective, it would seem right
> >>> to make sure that most TCP tunables also work with MPTCP.
> >>
> >> That's what we tried to do. All "common" ones are supported, but it is
> >> not al
On Fri, Aug 23, 2024 at 04:50:33PM +0200, Willy Tarreau wrote:
> > @@ -494,6 +498,30 @@ static void sock_inet_prepare()
> > #endif
> > close(fd);
> > }
> > +
> > +#ifdef __linux__
>
> Here I think a short comment is deserved to expl
On Fri, Aug 23, 2024 at 03:34:10PM +0200, Aperence wrote:
> Currently, the TCP_MAXSEG socket option doesn't seem to be supported
> with MPTCP. This results in a warning when trying to set the MSS of
> sockets in proto_tcp:tcp_bind_listener.
>
> This can be resolved by adding two new variables:
> s
Hi Matthieu,
On Fri, Aug 23, 2024 at 04:13:16PM +0200, Matthieu Baerts wrote:
> Hi Willy,
>
> Thank you for your quick reply!
You're welcome!
> > I'll comment on each patch separately,
>
> Thank you, please take your time!
That's what I'm doing but I really want to make sure we won't discover
On Fri, Aug 23, 2024 at 03:34:09PM +0200, Aperence wrote:
(...)
> MPTCP is both supported for the frontend and backend sides.
Great!
> Also added an example of configuration using mptcp along with a backend
> allowing to experiment with it.
Thanks for thinking about testing ;-)
> Note that this
Hello!
On Fri, Aug 23, 2024 at 03:34:08PM +0200, Aperence wrote:
> Multipath TCP (MPTCP), standardized in RFC8684 [1], is a TCP extension
> that enables a TCP connection to use different paths.
>
> Multipath TCP has been used for several use cases. On smartphones, MPTCP
> enables seamless handove
Hi Nathan,
On Tue, Aug 20, 2024 at 04:19:35PM +, Nathan Wehrman wrote:
> Since we just implemented the TCP CLF format I thought it would be a quick
> and easy time to add a couple of new environment variables. It's a
> very small and simple patch but if a person needed this and it wasn't
> av
CLEANUP: mworker/cli: clean up the mode handling
BUG/MINOR: release-estimator: fix relative scheme in CHANGELOG URL
MINOR: release-estimator: add requirements.txt
MINOR: release-estimator: add installation steps in README.md
MINOR: release-estimator: fix the shebang of the
On Tue, Aug 20, 2024 at 03:29:04PM +0200, Nicolas CARPi wrote:
> Hi Willy,
>
> On 20 Aug, Willy Tarreau wrote:
> > Normally it's preferable to make one commit per functional change.
> Noted. Here are three patches then. I've taken care of explaining the
> reasoni
Hi Nicolas,
On Tue, Aug 20, 2024 at 11:08:33AM +0200, Nicolas CARPi wrote:
> From 96f5e7951995be8216ecee81968b0f2c7fe0141a Mon Sep 17 00:00:00 2001
> From: Nicolas CARPi
> Date: Tue, 20 Aug 2024 10:39:17 +0200
> Subject: [PATCH] BUG/MINOR: stats-html: improve markup and fix css in dark
> mode
>
Hi Nathan,
On Tue, Aug 13, 2024 at 06:34:00PM +, Nathan Wehrman wrote:
>
> Hello,
>
> For your consideration I wrote and tested a new a logging format that will
> allow tcp mode proxies to send logs that will adhere to clf (common log
> format).
> This will allow the sending of that data to
Hi Nicolas,
On Wed, Aug 14, 2024 at 11:16:31AM +0200, Nicolas CARPi wrote:
> From f9cff910630851658a9f126caf1009e08dec Mon Sep 17 00:00:00 2001
> From: Nicolas CARPi
> Date: Tue, 13 Aug 2024 22:57:56 +0200
> Subject: [PATCH] DOC: fix incorrect english in lua.txt
>
> This commit fixes some ty
On Tue, Aug 13, 2024 at 09:11:28PM +0200, Ilia Shipitsin wrote:
> due to https://github.com/haproxy/haproxy/issues/2569 chacha20 is
> disabled completely on LibreSSL. let's add a comment to not forget
> enabling it
(...)
series applied, thanks Ilya!
Willy
Hi Max,
On Wed, Aug 14, 2024 at 06:21:39AM +, Moehl, Maximilian wrote:
> Hi Willy,
>
> > > Is there a similar mechanism in HAProxy? So far I can only see the
> > > static option for the initial window size which comes with the mentioned
> > > drawbacks.
> >
> > There is nothing similar. One o
Hi Maximilian,
sorry for the delay, I'm sure I noticed the subject but likely archived
the message before reading it. Thanks to Lukas for pinging again about
it in GH issue #352 which was already about this!
On Tue, Jul 23, 2024 at 08:38:44AM +, Moehl, Maximilian wrote:
> We've received repor
Hi Nathan,
On Tue, Aug 13, 2024 at 05:45:37PM +, Nathan Wehrman wrote:
> The configuration manual currently lists "option tcplog" as valid for use in
> a backend.
> This is not correct. This patch simply fixes that one line.
Thank you, you're right, now merged.
Please check your git setup, I
Hi Alex,
On Mon, Aug 12, 2024 at 11:46:37AM +0200, Aleksandar Lazic wrote:
> > On Thu, Jun 13, 2024 at 03:00:59AM +0200, Aleksandar Lazic wrote:
> > > > The final idea is something like this.
> > > >
> > > > ```
> > > > tcp-request content upstream-proxy-header Host %[req.ssl_sni,lower]
> > > > t
Hi Alex,
I finally found time to have a look into this!
On Thu, Jun 13, 2024 at 03:00:59AM +0200, Aleksandar Lazic wrote:
> > The final idea is something like this.
> >
> > ```
> > tcp-request content upstream-proxy-header Host %[req.ssl_sni,lower]
> > tcp-request content upstream-proxy-header "
Hi Tristan,
I'm back on this topic (I had not forgotten it).
On Sat, Mar 09, 2024 at 07:02:34PM +, Tristan wrote:
>
>
> On 09/03/2024 18:09, Tristan wrote:
> > Hi Willy,
> >
> > On 09/03/2024 16:51, Willy Tarreau wrote:
> > > Hi Tristan,
> &
Hi Tristan,
On Fri, Aug 09, 2024 at 03:51:24PM +, Tristan wrote:
> Hi Willy,
>
> > On 9 Aug 2024, at 16:26, Willy Tarreau wrote:
> > [...]
> > I'd be interested in opinions on some of these options:
> > - deprecate duplicate server names for 3.1, requirin
Hi all,
I'm continuing to find disgusting things in the code that are only here
for historical reasons which, in my opinion, should no longer exist.
For example, we still support duplicate server names if they have an
explicit ID. Example:
# this is rejected
backend b
server s
Hi Matthieu,
On Fri, Aug 09, 2024 at 12:52:04PM +0200, Matthieu Baerts wrote:
> On 09/08/2024 11:32, Willy Tarreau wrote:
> > On Mon, May 06, 2024 at 02:10:02PM +0200, Björn Jacke wrote:
> >> Hi,
> >>
> >> I came up a while ago with a patchset for MPTCP supp
Hi Björn,
I'm coming back to this:
On Mon, May 06, 2024 at 02:10:02PM +0200, Björn Jacke wrote:
> Hi,
>
> I came up a while ago with a patchset for MPTCP support for HAProxy also,
> see https://github.com/haproxy/haproxy/issues/1028
>
> Back then I also discussed some ideas with Willy how to im
Hi Matthieu,
first, sorry for the long delay, but each time it's the same, the list
of pending urgent things drags me away. I'm back on this.
On Mon, Jun 03, 2024 at 05:33:31PM +0200, Matthieu Baerts wrote:
> >>> and I'd really really prefer that we use the extended syntax for
> >>> addresses tha
Hi Ilya,
On Wed, Aug 07, 2024 at 08:30:46PM +0200, ??? wrote:
> > HAProxy 3.1-dev5 was released on 2024/08/07. It added 88 new commits
> > after version 3.1-dev4.
> >
> > There were quite a bunch of fixes this time, spread over various areas
> > (h2, analysers, jwt, quic, 0-rtt, queues, t
s to hp
MEDIUM: quic: add key argument to header protection crypto functions
MEDIUM: quic: implement CHACHA20_POLY1305 for AWS-LC
BUG/MEDIUM: ssl: reactivate 0-RTT for AWS-LC
BUG/MEDIUM: ssl: 0-RTT initialized at the wrong place for AWS-LC
BUILD: ssl: replace USE_OPENSSL_AW
On Tue, Aug 06, 2024 at 09:59:41PM +0200, Nicolas CARPi wrote:
> Hello all,
>
> I wrote a blog post regarding the availability of this file for the
> biggest 5000 websites. Have a look if you're interested:
>
> https://www.deltablot.com/posts/state-of-security-txt/
Thank you Nicolas!
Willy
On Tue, Aug 06, 2024 at 08:35:21AM +0200, ??? wrote:
> I'll provide better script. It is not actual patching, but detection (which
> looks like a patching)
Yes I know, I'm used to that as well. Our other scripts do that, they
provide a patch and that's used to detect in the end. But that'
On Tue, Aug 06, 2024 at 05:16:11AM +0200, Willy Tarreau wrote:
> > diff --git a/src/fcgi-app.c b/src/fcgi-app.c
> > index b3a9b7c59..98077b959 100644
> > --- a/src/fcgi-app.c
> > +++ b/src/fcgi-app.c
> > @@ -606,6 +606,8 @@ static int proxy_parse_use_fcgi_app(char **
On Mon, Aug 05, 2024 at 09:02:46PM +0200, ??? wrote:
> updated patch attached (I preferred that instead of sending with "git
> send-email")
>
> ??, 5 ???. 2024 ?. ? 20:10, ??? :
>
> >
> >
> > ??, 5 ???. 2024 ?. ? 20:09, William Lallemand :
> >
> >> On Mon, Aug 05, 2024 at 08:01:
On Sat, Aug 03, 2024 at 12:23:03PM +, PR Bot wrote:
> Dear list!
>
> Author: Valen1393
> Number of patches: 1
>
> This is an automated relay of the Github pull request:
>Create SECURITY.md
>
> Patch title(s):
>Create SECURITY.md
>
> Link:
>https://github.com/haproxy/haproxy/pu
Hi Nicolas,
[ dropped security@, it's not too much spammed yet, I prefer to limit
exposure ]
On Sun, Aug 04, 2024 at 08:20:33PM +0200, Nicolas CARPi wrote:
> Hello list,
>
> This PR made me think about the new security.txt standard - or at least
> proposed standard: https://securitytxt.org/
>
On Sun, Aug 04, 2024 at 09:39:25PM +0200, Vincent Bernat wrote:
>
> On 2024-07-22 21:59, Willy Tarreau wrote:
>
> > > > HAProxy 3.0.3 was released on 2024/07/11. It added 42 new commits
> > > > after version 3.0.2.
> > >
> > > I am late r
Hello,
On Thu, Aug 01, 2024 at 09:09:18PM +0500, Jenny Rose wrote:
> Hi Team,
> I hope you are well.
>
> I would like to share another vulnerability of your website
>
> Vulnerability 1: Non - secure requests are not automatically upgraded to
> HTTPS | HSTS missing
>
> Description
>
> The appli
Hi Jens,
On Fri, Jul 26, 2024 at 07:51:47PM +0200, Jens Wahnes wrote:
> Hi everyone,
>
> I'm trying to move from Haproxy 2.4 to 2.8 and encountered some trouble with
> 2.8 that did not occur on 2.4.
> Specifically, this seems to concern plain HTTP connections only, i.e.
> non-HTTPS traffic. I hav
On Fri, Jul 26, 2024 at 10:40:46AM +0200, ??? wrote:
> > > next point: 0-RTT
> >
> > Sorry for the stupid questions but as I don't maintain any QUIC based apps
> > I'm
> > curious if this really makes any differences compared to "normal" requests.
> >
> > How often is this really used in t
Hi Alex,
On Wed, Jul 24, 2024 at 10:32:16PM +0200, Aleksandar Lazic wrote:
> >- SPOE: the old applet-based architecture was replaced with the new
> > mux-based one which allows idle connections sharing between threads,
> > as well as queuing, load balancing, stickiness etc per reques
Just testing the new incoming mail gateway. Please ignore.
Willy
27;s keywords in cfg_kw_list
MINOR: cfgparse-global: move no in cfg_kw_list
William Lallemand (5):
MEDIUM: ssl: add extra_chain to ckch_data
MINOR: ssl: change issuers-chain for show_cert_detail()
REGTESTS: ssl: test the issuers-chain-path keyword
DOC: configuration: i
On Wed, Jul 24, 2024 at 03:48:15PM +0200, Christopher Faulet wrote:
> As announced, the SPOE was finally refactored. This new SPOE will be shipped
> with the 3.1-dev4. It is a full rewrite of the engine, based on a dedicated
> SPOP multiplexer. It means a "spop" proxy mode, used for SPOE backends,
Hi Vincent,
On Mon, Jul 22, 2024 at 09:25:45PM +0200, Vincent Bernat wrote:
> On 2024-07-11 16:51, Willy Tarreau wrote:
> > Hi,
> >
> > HAProxy 3.0.3 was released on 2024/07/11. It added 42 new commits
> > after version 3.0.2.
>
> I am late releasing this vers
On Wed, Jul 17, 2024 at 02:06:03PM +0200, Lukas Tribus wrote:
> On Wed, 17 Jul 2024 at 11:25, Willy Tarreau wrote:
> >
> > At this point, do you (or anyone else) still have any objection against
> > backporting the DEFAULT_MAXFD patch so as to preserve the current
> >
r systems and services (RAM, fd, conntrack, monitoring
> > tools etc). Thus I'm not sure which scenario you have in mind that this
> > change could result in such a report as above.
>
> True, I confused memory required for initialization with memory
> allocated when actually use
On Tue, Jul 16, 2024 at 05:47:50PM +, Lukas Tribus wrote:
> Remove reference to the removed CPU= build argument in commit 018443b8a1
> ("BUILD: makefile: get rid of the CPU variable").
Oops, good catch, thank you Lukas! I've marked it for backporting to 3.0
as well. Now merged, thanks,
Willy
On Tue, Jul 16, 2024 at 05:27:10AM +0100, David CARLIER wrote:
> Hi you are right I did not check properly, had a brain fog :) we can forget
> it. Thanks.
OK perfect, thanks :-)
Willy
Hi David!
On Mon, Jul 15, 2024 at 10:29:48PM +0100, David CARLIER wrote:
> Hi here a little patch proposal targeted for macOs.
>
> Cheers.
> From df5741a0d391a7107157d0051ba81ef48d87b8f5 Mon Sep 17 00:00:00 2001
> From: David Carlier
> Date: Mon, 15 Jul 2024 22:20:33 +0100
> Subject: [PATCH] BU
uration: more details about the master-worker mode
BUG/MINOR: jwt: don't try to load files with HMAC algorithm
BUG/MINOR: jwt: fix variable initialisation
Willy Tarreau (4):
DEV: flags/show-fd-to-flags: adapt to recent versions
MINOR: activity: make the memory profiling has
Hi Lukas,
On Thu, Jul 11, 2024 at 12:17:53PM +0200, Lukas Tribus wrote:
> Hi,
>
> I will get back to this for further research and discussion in about a week.
OK! In the mean time I'll revert the pending patches from 3.0 so that
we can issue 3.0.3 without them.
> In the meantime, do we agree th
Hi Lukas,
and first, many thanks for sharing your thoughts and opinions on this.
[ responding to both of your messages at once ]
On Wed, Jul 10, 2024 at 09:30:55PM +0200, Lukas Tribus wrote:
> On Wed, 10 Jul 2024 at 16:39, Willy Tarreau wrote:
> >
> > Another change that
On Wed, Jul 10, 2024 at 06:49:52PM +0200, Aleksandar Lazic wrote:
>
>
> On 2024-07-10 (Mi.) 16:39, Willy Tarreau wrote:
> > Hi,
> >
> > HAProxy 3.1-dev3 was released on 2024/07/10. It added 35 new commits
> > after version 3.1-dev2.
>
> [snipp]
>
>
er-worker mode
BUG/MINOR: jwt: don't try to load files with HMAC algorithm
BUG/MINOR: jwt: fix variable initialisation
MINOR: ssl/sample: ssl_c_san returns a comma separated list of SAN
Willy Tarreau (6):
BUG/MEDIUM: quic: fix possible exit from qc_check_dcid() without unlock
On Tue, Jul 09, 2024 at 03:03:49PM +0200, Ilia Shipitsin wrote:
> for some reason image built in HAProxy workflow is "private", it
> is succesfully built, but fails to pull. Let's try explicit docker login
> for run job as well
Merged, thanks Ilya!
willy
Hi Tim!
On Tue, Jul 09, 2024 at 07:34:57PM +0200, Tim Düsterhus wrote:
> Hi
>
> On 7/8/24 06:38, Willy Tarreau wrote:
> > Well, I must confess that while I understand what you tried to do, it's
> > less clear what is the problem you wanted to address. I think th
o what you're looking for, I'm proposing that we
instead change the use of the unreliable date variable with a call
to now_mono_date_ns() that we can then use as the date source, and
keep the rest of the randoms.
Just let me know what you think.
Thanks!
Willy
>From 8952b22c920
On Thu, Jul 04, 2024 at 04:26:34PM +0200, Ilia Shipitsin wrote:
> currently only quic-go and picoquic clients are enabled with testsuites
> supposed to be "green". Tests will be run weekly.
Now applied, let's give it a try. Thank you Ilya!
Willy
ssl: activate sigalgs feature for AWS-LC
REGTESTS: ssl: activate new SSL reg-tests with AWS-LC
DOC: configuration: fix alphabetical order of bind options
MINOR: sample: date converter takes HTTP date and output an UNIX timestamp
Willy Tarreau (4):
DEV: flags/show-
On Fri, Jun 14, 2024 at 04:12:03PM +0200, Christopher Faulet wrote:
> Hi,
>
> HAProxy 3.1-dev1 was released on 2024/06/14. It added 95 new commits
> after version 3.1-dev0.
>
> Because Willy announced publicly I should managed a -dev1 before his return
> from vacations, I have no choice. So, face
On Thu, May 30, 2024 at 04:12:02PM +0200, William Lallemand wrote:
> On Thu, May 30, 2024 at 03:40:31PM +0200, Ilia Shipitsin wrote:
> > Subject: [PATCH 1/1] CI: VTest: accelerate package install a bit
> > let's check and install only package is required
> > ---
> > .github/workflows/vtest.yml | 8
Hi Ilya,
On Thu, May 30, 2024 at 03:40:31PM +0200, Ilia Shipitsin wrote:
> + ${{ contains(matrix.FLAGS, 'USE_LUA=1') && 'liblua5.4-dev' ||
> '' }} \
> + ${{ contains(matrix.FLAGS, 'USE_PCRE2=1') && 'libpcre2-dev' ||
> '' }} \
> + ${{ contains(matrix.FLAGS, 'US
Hi Matthieu,
finally a bit more available again...
On Fri, Apr 26, 2024 at 06:34:02PM +0200, Matthieu Baerts wrote:
> > I *am* interested in the feature, which has been
> > floating around for a few years already. However I tend to agree with
> > Nicolas that, at least for the principle of least
Hi Dorian,
I'm now done with the release and having more time to read your
work. First, thanks for this update. I understand that you're almost
running out of time on this topic which must be completed before
June so I'm not going to make you waste your time. Some comments
below.
On Thu, May 16,
On Wed, May 29, 2024 at 09:59:13PM +0200, Ilia Shipitsin wrote:
> GitHub has launched Ubuntu 24.04 runners in beta.
> While runners are not yet stable, switching to them
> has shown some inconsistance in pipeline which is better
> to be resolved before actual upgrade to Ubuntu 24.04
>
> Ilia Ship
On Wed, May 29, 2024 at 07:55:32PM +0200, Tim Duesterhus wrote:
> HAProxy 2.2 is the lowest supported version, thus this always matches.
(...)
Both patches applied, thank you Tim!
Willy
Hi Tim,
On Wed, May 29, 2024 at 07:48:10PM +0200, Tim Düsterhus wrote:
> Hi
>
> On 5/29/24 17:07, Willy Tarreau wrote:
> > HAProxy 3.0.0 was released on 2024/05/29.
>
> Congratulations on the successful release!
Thanks!
> I've just opened a PR for the "Offi
ect color on the
docs index). As usual, if (should I say when?) you detect a broken link,
just let me know so I can fix it.
Have fun!
Willy
---
Complete changelog from 3.0-dev13:
Amaury Denoyelle (2):
DOC: streamline http-reuse and connection naming definition
REGTESTS: complete http-reuse
entation
MEDIUM: ssl: don't load file by discovering them in crt-store
DOC: configuration: update the crt-list documentation
DOC: configuration: add the supported crt-store options in crt-list
REGTESTS: scripts: allow to change the vtest timeout
CI: scripts/buil
On Thu, May 23, 2024 at 03:58:45PM +0100, William Manley wrote:
> I can also report that I no longer need to avoid `nbthread 1` in the config
> on the node. Presumably thanks to ceebb09744df367ad84586a341d9336f84f72bce
> "rhttp: fix preconnect on single-thread".
BTW keep in mind that connections
csp: use 'ocsp-update' in crt-store
MINOR: ssl: ckch_conf_clean() utility function for ckch_conf
MEDIUM: ssl: add ocsp-update.disable global option
MEDIUM: ssl/cli: handle crt-store keywords in crt-list over the CLI
MINOR: ssl: ckch_conf_cmp() compare multiple ckch_con
On Sun, May 12, 2024 at 05:08:34PM +0200, Tim Duesterhus wrote:
> When support for UUIDv7 was added in commit
> aab6477b67415c4cc260bba5df359fa2e6f49733
> the specification still was a draft.
>
> It has since been published as RFC 9562.
Excellent timing ;-)
Now merged, thank you Tim!
Willy
MINOR: haproxy: only tid 0 must not sleep if got signal
Willy Tarreau (24):
MINOR: dynbuf: pass a criticality argument to b_alloc()
MINOR: dynbuf: add functions to help queue/requeue buffer_wait fields
MINOR: dynbuf: use the b_queue()/b_requeue() functions everywhere
MEDI
Hello,
On Fri, May 10, 2024 at 12:00:17PM +, Iglesias Paz, Jaime wrote:
> Hey guys, I have a problem with HAProxy and Galera Cluster v4 MySQL (3
> nodes). I boot the HAProxy server and it returns the following error:
>
> may 10 13:48:20 phaproxysql1 haproxy[661]: Proxy stats started.
> may 1
On Wed, May 08, 2024 at 01:19:22PM +, Dorian Craps wrote:
> first of all, thank you for your interest.
>
> I already made a version with an option to enable MPTCP
> -https://github.com/CrapsDorian/haproxy/pull/1
>
> I'm working on a new version with "mptcp@address" as Willy requested.
OK, th
Hi!
On Tue, May 07, 2024 at 02:23:02AM +, PR Bot wrote:
> Author: zhibin.zhu
> Number of patches: 1
>
> This is an automated relay of the Github pull request:
>fix show-sess-to-flags.sh cob fd state
(...)
> From 95be08c6f4f382ec1b0e34765d4c1f09ddcdebb6 Mon Sep 17 00:00:00 2001
> From: "
On Sun, May 05, 2024 at 01:43:33PM +0200, ??? wrote:
> updated patches.
Cool, thanks, now applied.
> I'll address reorg to "compat.h" a bit later, once it is settled in my head
No worries, I've seen your other comment about the need to include
pthread.h, and this alone would be a good r
On Sun, May 05, 2024 at 11:15:24AM +0200, ??? wrote:
> ??, 5 ??? 2024 ?. ? 10:42, Willy Tarreau :
>
> > On Sun, May 05, 2024 at 09:12:41AM +0200, Miroslav Zagorac wrote:
> > > On 05. 05. 2024. 08:32, Willy Tarreau wrote:
> > > > On Sun,
On Sun, May 05, 2024 at 09:12:41AM +0200, Miroslav Zagorac wrote:
> On 05. 05. 2024. 08:32, Willy Tarreau wrote:
> > On Sun, May 05, 2024 at 07:49:55AM +0200, ??? wrote:
> >> ??, 5 ??? 2024 ?. ? 02:05, Miroslav Zagorac :
> >>> I think that this patch is
On Sun, May 05, 2024 at 08:52:08AM +0200, ??? wrote:
> > I'm wondering what the point of defining _POSIX_THREAD_CPUTIME can be
> > then :-/
> >
> > Just guessing, are you sure you're building with -pthread -lrt ? Just in
> > case, please double-check with V=1. Solaris sets USE_RT, but mayb
On Sun, May 05, 2024 at 07:49:55AM +0200, ??? wrote:
> ??, 5 ??? 2024 ?. ? 02:05, Miroslav Zagorac :
>
> > On 04. 05. 2024. 17:36, Ilya Shipitsin wrote:
> > > this function is considered optional for POSIX and not implemented
> > > on Illumos
> > >
> > > Reference:
> > https://www.gnu.org
parsing to ssl_ocsp.c
CLEANUP: ssl: rename new_ckch_store_load_files_path() to
ckch_store_new_load_files_path()
MINOR: ssl: rename ocsp_update.http_proxy into ocsp-update.httpproxy
Willy Tarreau (1):
BUG/MINOR: stconn: don't wake up an applet waiting on buffer allocation
---
1 - 100 of 1199 matches
Mail list logo
