haproxy

mirrors/haproxy

Fork 0

mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-11-29 14:50:59 +01:00

Commit Graph

Select branches

Hide Pull Requests

20250214-quic-on-streams

20250224-ocsp-wolfssl

20250624-diag-empty-var-2

20250724-applets-new-api

20250812-ade-quic-fix-padding

20250929-peers-refactoring

20251019-setenv-listen-fds

20251021-peers-refactoring-2

20251021-peers-refactoring-3

20251029-h2-0rtt-vtc-1

20251030-quic-ssl-reg-tests

20251106-generate-keys

20251114-awslc-vtest

20251118-peers-refactoring-4

20251121-quic_conn_closed-overflow

20251125-gh3194

20251126-ssl-quic-reg-tests

ade-quic-implement-pacing-ms

ade-quic-implement-pacing-ns

master

next

quic-experiment-20241017-pacing-ns

quic-experiment-20241030-pacing-ms

quic-interop

v1.0.0

v1.0.1

v1.0.2

v1.1.0

v1.1.1

v1.1.10

v1.1.11

v1.1.12

v1.1.13

v1.1.14

v1.1.15

v1.1.16

v1.1.17

v1.1.18

v1.1.19

v1.1.2

v1.1.20

v1.1.21

v1.1.22

v1.1.23

v1.1.24

v1.1.25

v1.1.26

v1.1.27

v1.1.3

v1.1.4

v1.1.5

v1.1.6

v1.1.7

v1.1.8

v1.1.9

v1.2.0

v1.2.1

v1.2.1-pre1

v1.2.1-pre2

v1.2.1-pre3

v1.2.10

v1.2.10.1

v1.2.11

v1.2.11.1

v1.2.12

v1.2.13

v1.2.13.1

v1.2.14

v1.2.2

v1.2.3

v1.2.4

v1.2.5

v1.2.5-pre1

v1.2.5-pre2

v1.2.5-pre3

v1.2.5-pre4

v1.2.5.1

v1.2.5.2

v1.2.6

v1.2.6-pre4

v1.2.6-pre5

v1.2.7

v1.2.7.1

v1.2.7rc

v1.2.8

v1.2.9

v1.3.0

v1.3.1

v1.3.10

v1.3.10.1

v1.3.10.2

v1.3.11

v1.3.11.1

v1.3.11.2

v1.3.11.3

v1.3.11.4

v1.3.12

v1.3.12.1

v1.3.12.2

v1.3.12.3

v1.3.12.4

v1.3.13

v1.3.13.1

v1.3.13.2

v1.3.14

v1.3.14.1

v1.3.14.10

v1.3.14.11

v1.3.14.12

v1.3.14.13

v1.3.14.14

v1.3.14.2

v1.3.14.3

v1.3.14.4

v1.3.14.5

v1.3.14.6

v1.3.14.7

v1.3.14.8

v1.3.14.9

v1.3.15

v1.3.15.1

v1.3.15.10

v1.3.15.11

v1.3.15.2

v1.3.15.3

v1.3.15.4

v1.3.15.5

v1.3.15.6

v1.3.15.7

v1.3.15.8

v1.3.15.9

v1.3.16

v1.3.16-rc1

v1.3.16-rc2

v1.3.17

v1.3.18

v1.3.19

v1.3.2

v1.3.20

v1.3.21

v1.3.22

v1.3.23

v1.3.3

v1.3.4

v1.3.5

v1.3.6

v1.3.6.1

v1.3.7

v1.3.8

v1.3.8.1

v1.3.8.2

v1.3.9

v1.4-dev0

v1.4-dev1

v1.4-dev2

v1.4-dev3

v1.4-dev4

v1.4-dev5

v1.4-dev6

v1.4-dev7

v1.4-dev8

v1.4-rc1

v1.4.0

v1.4.1

v1.4.2

v1.4.3

v1.4.4

v1.4.5

v1.4.6

v1.5-dev10

v1.5-dev12

v1.5-dev13

v1.5-dev14

v1.5-dev15

v1.5-dev16

v1.5-dev17

v1.5-dev18

v1.5-dev19

v1.5-dev20

v1.5-dev21

v1.5-dev22

v1.5-dev23

v1.5-dev24

v1.5-dev25

v1.5-dev26

v1.5-dev8

v1.5-dev9

v1.5.0

v1.6-dev0

v1.6-dev1

v1.6-dev2

v1.6-dev3

v1.6-dev4

v1.6-dev5

v1.6-dev6

v1.6-dev7

v1.6.0

v1.7-dev0

v1.7-dev1

v1.7-dev2

v1.7-dev3

v1.7-dev4

v1.7-dev5

v1.7-dev6

v1.7.0

v1.8-dev0

v1.8-dev1

v1.8-dev2

v1.8-dev3

v1.8-rc1

v1.8-rc2

v1.8-rc3

v1.8-rc4

v1.8.0

v1.9-dev0

v1.9-dev1

v1.9-dev10

v1.9-dev11

v1.9-dev2

v1.9-dev3

v1.9-dev4

v1.9-dev5

v1.9-dev6

v1.9-dev7

v1.9-dev8

v1.9-dev9

v1.9.0

v2.0-dev0

v2.0-dev1

v2.0-dev2

v2.0-dev3

v2.0-dev4

v2.0-dev5

v2.0-dev6

v2.0-dev7

v2.0.0

v2.1-dev0

v2.1-dev1

v2.1-dev2

v2.1-dev3

v2.1-dev4

v2.1-dev5

v2.1.0

v2.2-dev0

v2.2-dev1

v2.2-dev10

v2.2-dev11

v2.2-dev12

v2.2-dev2

v2.2-dev3

v2.2-dev4

v2.2-dev5

v2.2-dev6

v2.2-dev7

v2.2-dev8

v2.2-dev9

v2.2.0

v2.3-dev0

v2.3-dev1

v2.3-dev2

v2.3-dev3

v2.3-dev4

v2.3-dev5

v2.3-dev6

v2.3-dev7

v2.3-dev8

v2.3-dev9

v2.3.0

v2.4-dev0

v2.4-dev1

v2.4-dev10

v2.4-dev11

v2.4-dev12

v2.4-dev13

v2.4-dev14

v2.4-dev15

v2.4-dev16

v2.4-dev17

v2.4-dev18

v2.4-dev19

v2.4-dev2

v2.4-dev3

v2.4-dev4

v2.4-dev5

v2.4-dev6

v2.4-dev7

v2.4-dev8

v2.4-dev9

v2.4.0

v2.5-dev0

v2.5-dev1

v2.5-dev10

v2.5-dev11

v2.5-dev12

v2.5-dev13

v2.5-dev14

v2.5-dev15

v2.5-dev2

v2.5-dev3

v2.5-dev4

v2.5-dev5

v2.5-dev6

v2.5-dev7

v2.5-dev8

v2.5-dev9

v2.5.0

v2.6-dev0

v2.6-dev1

v2.6-dev10

v2.6-dev11

v2.6-dev12

v2.6-dev2

v2.6-dev3

v2.6-dev4

v2.6-dev5

v2.6-dev6

v2.6-dev7

v2.6-dev8

v2.6-dev9

v2.6.0

v2.7-dev0

v2.7-dev1

v2.7-dev10

v2.7-dev2

v2.7-dev3

v2.7-dev4

v2.7-dev5

v2.7-dev6

v2.7-dev7

v2.7-dev8

v2.7-dev9

v2.7.0

v2.8-dev0

v2.8-dev1

v2.8-dev10

v2.8-dev11

v2.8-dev12

v2.8-dev13

v2.8-dev2

v2.8-dev3

v2.8-dev4

v2.8-dev5

v2.8-dev6

v2.8-dev7

v2.8-dev8

v2.8-dev9

v2.8.0

v2.9-dev0

v2.9-dev1

v2.9-dev10

v2.9-dev11

v2.9-dev12

v2.9-dev2

v2.9-dev3

v2.9-dev4

v2.9-dev5

v2.9-dev6

v2.9-dev7

v2.9-dev8

v2.9-dev9

v2.9.0

v3.0-dev0

v3.0-dev1

v3.0-dev10

v3.0-dev11

v3.0-dev12

v3.0-dev13

v3.0-dev2

v3.0-dev3

v3.0-dev4

v3.0-dev5

v3.0-dev6

v3.0-dev7

v3.0-dev8

v3.0-dev9

v3.0.0

v3.1-dev0

v3.1-dev1

v3.1-dev10

v3.1-dev11

v3.1-dev12

v3.1-dev13

v3.1-dev14

v3.1-dev2

v3.1-dev3

v3.1-dev4

v3.1-dev5

v3.1-dev6

v3.1-dev7

v3.1-dev8

v3.1-dev9

v3.1.0

v3.2-dev0

v3.2-dev1

v3.2-dev10

v3.2-dev11

v3.2-dev12

v3.2-dev13

v3.2-dev14

v3.2-dev15

v3.2-dev16

v3.2-dev17

v3.2-dev2

v3.2-dev3

v3.2-dev4

v3.2-dev5

v3.2-dev6

v3.2-dev7

v3.2-dev8

v3.2-dev9

v3.2.0

v3.3-dev0

v3.3-dev1

v3.3-dev10

v3.3-dev11

v3.3-dev12

v3.3-dev13

v3.3-dev14

v3.3-dev2

v3.3-dev3

v3.3-dev4

v3.3-dev5

v3.3-dev6

v3.3-dev7

v3.3-dev8

v3.3-dev9

v3.3.0

v3.4-dev0

d7234f8e36 REGTESTS: quic: new_del_ssl_cafile.vtc supported by QUIC 20251126-ssl-quic-reg-tests Frederic Lecaille 2025-11-28 17:37:43 +01:00
d04be01234 REGTESTS: quic: issuers_chain_path.vtc supported by QUIC Frederic Lecaille 2025-11-28 17:06:43 +01:00
57837f09fc REGTESTS: quic: dynamic_server_ssl.vtc supported by QUIC Frederic Lecaille 2025-11-28 16:43:41 +01:00
2b3d13a740 BUG/MINOR: jwt: Missing "case" in switch statement master Remi Tricot-Le Breton 2025-11-28 14:50:36 +01:00
2bcce29458 REGTESTS: quic/ssl: ssl/del_ssl_crt-list.vtc supported by QUIC Frederic Lecaille 2025-11-26 18:03:48 +01:00
0839fb46db REGTESTS: ssl: Move all the SSL certificates, keys, crt-lists inside "certs" directory Frederic Lecaille 2025-11-26 15:21:51 +01:00
fbcba05402 MINOR: quic: Add useful debugging traces in qc_idle_timer_do_rearm() Frederic Lecaille 2025-11-28 11:54:23 +01:00
6c33c6d262 BUG/MINOR: quic-be: handshake errors without connection stream closure Frederic Lecaille 2025-11-28 11:27:54 +01:00
dc13068eb4 BUG/MINOR: quic/ssl: crash in ClientHello callback ssl traces Frederic Lecaille 2025-11-27 11:22:46 +01:00
36133759d3 [RELEASE] Released version 3.4-dev0 v3.4-dev0 Willy Tarreau 2025-11-26 16:12:45 +01:00
e8d6ffb692 MINOR: version: mention that it's development again Willy Tarreau 2025-11-26 16:11:47 +01:00
7832fb21fe [RELEASE] Released version 3.3.0 v3.3.0 Willy Tarreau 2025-11-26 15:55:57 +01:00
d8ba9a2a92 MINOR: version: mention that 3.3 is stable now Willy Tarreau 2025-11-26 15:54:30 +01:00
09dd6bb4cb DOC: update INSTALL with the range of gcc compilers and openssl versions Willy Tarreau 2025-11-26 15:50:43 +01:00
22fd296a04 DEV: patchbot: prepare for new version 3.4-dev Willy Tarreau 2025-11-26 15:35:22 +01:00
e5658c52d0 BUG/MINOR: sock-inet: ignore conntrack for transparent sockets on Linux Willy Tarreau 2025-11-26 10:10:17 +01:00
7d9cc28f92 Revert "BUG/MEDIUM: server/ssl: Unset the SNI for new server connections if none is set" Christopher Faulet 2025-11-26 11:05:14 +01:00
3095fa27ab BUG/MEDIUM: quic: support some ciphersuites and curves related options 20251125-gh3194 Frederic Lecaille 2025-11-25 20:45:27 +01:00
d506c03aa0 BUG/MINOR: acme: fix ha_alert() call Maxime Henrion 2025-11-25 12:37:02 -05:00
de29000e60 BUG/MEDIUM: server/ssl: Unset the SNI for new server connections if none is set Christopher Faulet 2025-11-24 14:41:54 +01:00
a70816da82 BUG/MINOR: h3: handle properly buf alloc failure on response forwarding quic-interop Amaury Denoyelle 2025-11-25 15:46:14 +01:00
ae96defaca BUG/MINOR: h3: do no crash on forwarding multiple chained response Amaury Denoyelle 2025-11-25 15:38:39 +01:00
a363b536a9 BUG/MINOR: server: fix srv_drop() crash on partially init srv Amaury Denoyelle 2025-11-25 15:07:51 +01:00
6c08eb7173 BUG/MINOR: quic: release BE quic_conn on connect failure Amaury Denoyelle 2025-11-25 14:37:50 +01:00
346631700d BUG/MINOR: quic: fix uninit list on show quic handler Amaury Denoyelle 2025-11-25 14:46:37 +01:00
a3f76875f4 MINOR: quic: mark backend conns on show quic Amaury Denoyelle 2025-11-24 14:24:23 +01:00
e56fdf6320 MINOR: quic: dump backend connections on show quic Amaury Denoyelle 2025-11-24 15:00:24 +01:00
3685681373 MINOR: quic: add "clo" filter on show quic Amaury Denoyelle 2025-11-24 14:58:55 +01:00
49e6fca51b MINOR: quic: use separate global quic_conns FE/BE lists Amaury Denoyelle 2025-11-24 10:28:36 +01:00
a5801e542d MINOR: quic: split global CID tree between FE and BE sides Amaury Denoyelle 2025-11-21 17:21:26 +01:00
4b596c1ea8 BUG/MINOR: quic/server: free quic_retry_token on srv drop Amaury Denoyelle 2025-11-24 14:25:14 +01:00
cbfe574d8a BUG/MEDIUM: quic: do not prevent sending if no BE token Amaury Denoyelle 2025-11-24 18:08:58 +01:00
e27216b799 DOC: ssl: Note that 0rtt works fork QUIC with QuicTLS too. Olivier Houchard 2025-11-25 13:17:45 +01:00
f867068dc7 DOC: ssl: Document the restrictions on 0RTT. Olivier Houchard 2025-11-25 11:02:21 +01:00
91eb9b082b BUG/MINOR: freq_ctr: Prevent possible signed overflow in freq_ctr_overshoot_period Jacques Heunis 2025-06-25 13:22:39 +01:00
2829165f61 BUG/MEDIUM: server: do not use default SNI if manually set Amaury Denoyelle 2025-11-24 11:30:19 +01:00
5dbf06e205 MINOR: httpclient: complete the https log William Lallemand 2025-11-22 12:29:33 +01:00
0cae2f0515 BUG/MINOR: acme: warning ‘ctx’ may be used uninitialized William Lallemand 2025-11-21 22:59:47 +01:00
d77d3479ed BUG/MINOR: acme: better challenge_ready processing William Lallemand 2025-11-21 22:47:52 +01:00
8418c001ce [RELEASE] Released version 3.3-dev14 v3.3-dev14 Willy Tarreau 2025-11-21 14:13:44 +01:00
548e7079cd BUG/MINOR: acme: prevent creating map entries with dns-01 William Lallemand 2025-11-21 12:25:42 +01:00
26093121a3 BUG/MINOR: acme: handle multiple auth with the same name William Lallemand 2025-11-21 12:10:21 +01:00
bbd83e3de9 BUG/MINOR: mux-quic: check access on qcs stream-endpoint Amaury Denoyelle 2025-11-21 11:06:38 +01:00
91f479604e BUG/MEDIUM: quic-be: quic_conn_closed buffer overflow Frederic Lecaille 2025-11-21 09:52:41 +01:00
e6064c5616 OPTIM: mux-quic: delay FE sedesc alloc to stream creation Amaury Denoyelle 2025-11-20 18:15:21 +01:00
4fb8908605 BUG/MINOR: mux-quic: fix sedesc leak on BE side Amaury Denoyelle 2025-11-20 18:14:55 +01:00
9f16c64a8c MINOR: h3: adjust sedesc update for known input payload len Amaury Denoyelle 2025-11-20 18:12:39 +01:00
1d00d701b1 BUG/MEDIUM: quic-be: quic_conn_closed buffer overflow 20251121-quic_conn_closed-overflow Frederic Lecaille 2025-11-21 09:52:41 +01:00
0629ce8f4b BUG/MEDIUM: cli: State the cli have no more data to deliver if it yields Christopher Faulet 2025-11-21 09:47:01 +01:00
dfdccbd2af BUG/MEDIUM: applet: Fix conditions to detect spinning loop with the new API Christopher Faulet 2025-11-21 09:41:03 +01:00
4cbff2cad9 MINOR: limits: display the computed maxconn using ha_notice() Willy Tarreau 2025-11-20 18:38:09 +01:00
a50c074b74 DOC: http: document 413 response code Lukas Tribus 2025-11-20 16:12:48 +00:00
05c409f1be BUG/MEDIUM: connection/ssl: also fix the ssl_sock_io_cb() regarding idle list Willy Tarreau 2025-11-20 16:08:29 +01:00
6aa236e964 ADMIN: dump-certs: let dry-run compare certificates William Lallemand 2025-11-20 16:42:41 +01:00
b2664d4450 BUG/MINOR: quic: flag conn with CO_FL_FDLESS on backend side Amaury Denoyelle 2025-11-20 16:32:15 +01:00
cd2962ee64 MINOR: quic: store source address for backend conns Amaury Denoyelle 2025-11-20 16:26:41 +01:00
a14b7790ad DOC: config: Add a note about conflict with ALPN/NPN settings and proto keyword Christopher Faulet 2025-11-20 16:05:01 +01:00
0a7f3954b5 BUG/MEDIUM: config: Use the mux protocol ALPN by default for listeners if forced Christopher Faulet 2025-11-20 15:40:39 +01:00
2ef8b91a00 MINOR: config: Do proto detection for listeners before checks about ALPN Christopher Faulet 2025-11-20 15:36:09 +01:00
8e08a635eb MINOR: muxes: Support an optional ALPN string when defining mux protocols Christopher Faulet 2025-11-20 15:32:46 +01:00
e9d34f991e BUG/MEDIUM: queues: Don't forget to unlock the queue before exiting Olivier Houchard 2025-11-20 13:51:02 +01:00
1b443bdec5 DOC: acme: add details about key pair generation in ACME section William Lallemand 2025-11-20 12:48:22 +01:00
d6e3e5b3a6 DOC: acme: configuring acme needs a crt file William Lallemand 2025-11-20 12:44:54 +01:00
332dcaecba DOC: acme: explain how to dump the certificates William Lallemand 2025-11-20 12:40:38 +01:00
5ff4c066e7 DOC: acme: add details about the DNS-01 support William Lallemand 2025-11-20 12:35:12 +01:00
e0665d4ffe BUG/MINOR: acme: alert when the map doesn't exist at startup William Lallemand 2025-11-20 12:12:33 +01:00
fab7da0fd0 BUG/MEDIUM: quic-be/ssl_sock: TLS callback called without connection Frederic Lecaille 2025-11-20 11:10:56 +01:00
8438ca273f MINOR: limits: explain a bit better what to do when fd limits are exceeded Willy Tarreau 2025-11-19 16:38:29 +01:00
91d4f4f618 MINOR: limits: keep a copy of the rough estimate of needed FDs in global struct Willy Tarreau 2025-11-20 08:29:45 +01:00
2c6720a163 MINOR: quic: uneeded xprt context variable passed as parameter Frederic Lecaille 2025-11-20 08:17:44 +01:00
a88fdf8669 MINOR: quic/flags: add missing QUIC flags for flags dev tool. Frederic Lecaille 2025-11-20 08:10:58 +01:00
40687ebc64 REGTESTS: ssl: also verify that 0-rtt properly advertises early-data:1 Willy Tarreau 2025-11-19 19:03:00 +01:00
2dc4d99cd2 REGTESTS: ssl: add basic 0rtt tests for TLSv1.2, TLSv1.3 and QUIC Willy Tarreau 2025-11-19 11:58:21 +01:00
7ab7c8957f MEDIUM: ssl: Don't restrict usage of early-data with no ALPN next Olivier Houchard 2025-11-19 18:34:07 +01:00
f6373a6ca8 BUILD: Makefile: remove halog from install-admin William Lallemand 2025-11-19 16:23:57 +01:00
d54d78fe9a BUG/MINOR: quic: fix FD usage for quic_conn_closed on backend side Amaury Denoyelle 2025-11-19 11:41:05 +01:00
46c5c232d7 BUG/MINOR: quic: do not decrement jobs for backend conns Amaury Denoyelle 2025-11-19 11:40:40 +01:00
1a22caa6ed MINOR: quic: fix trace on quic_conn_closed release Amaury Denoyelle 2025-11-19 11:40:16 +01:00
e55bcf5746 BUG/MINOR: mux-quic: implement max-reuse server parameter Amaury Denoyelle 2025-11-19 11:39:54 +01:00
c8540f7437 BUG/MINOR: ssl: remove dead code in ssl_sock_from_buf() William Lallemand 2025-11-19 11:00:05 +01:00
1f562687e3 CI: github: make install-bin instead of make install William Lallemand 2025-11-18 20:11:23 +01:00
c3a95ba839 BUILD: Makefile: make install with admin tools William Lallemand 2025-11-18 19:57:14 +01:00
14cb3799df REGTESTS: ssl: split the SSL reuse test into TLS 1.2/1.3 Willy Tarreau 2025-11-18 11:40:52 +01:00
7241907bd3 WIP/MEDIUM: peers: Start resynchro of a stick-table from a random bucket 20251118-peers-refactoring-4 Christopher Faulet 2025-11-18 16:08:18 +01:00
04012ae816 WIP/MEDIUM: stick-tables: Don't get update lock if session is not in the update tree Christopher Faulet 2025-11-18 15:06:51 +01:00
e9162ee569 WIP/MINOR: stick-tables: Remove localupdate identifier from stick-tables to only rely on update Christopher Faulet 2025-11-18 13:44:35 +01:00
6485418925 WIP/MAJOR: stick-tables: Stop to store remote session in the stick-table updates tree Christopher Faulet 2025-11-18 11:57:19 +01:00
2a1e55fe47 WIP/MEDIUM: stick-tables: Inc the session's ref_cnt when it is in the pend_updt list Christopher Faulet 2025-11-18 11:51:58 +01:00
02180d39f1 WIP/MEDIUM: peers: Directly use the stick-table to perform a full resync Christopher Faulet 2025-11-18 11:46:14 +01:00
177816d2b8 BUG/MINOR: acme: P-256 doesn't work with openssl >= 3.0 William Lallemand 2025-11-18 11:34:28 +01:00
9bf01a0d29 BUG/MINOR: mworker: wrong signals during startup William Lallemand 2025-11-18 10:23:13 +01:00
709cde6d08 BUG/MEDIUM: mworker: signals inconsistencies during startup and reload William Lallemand 2025-11-17 18:30:20 +01:00
b38405d156 CLEANUP: startup: move confusing msg variable William Lallemand 2025-11-17 15:54:08 +01:00
37d01eea37 BUG/MEDIUM: quic-be: prevent use of MUX for 0-RTT sessions without secrets Frederic Lecaille 2025-11-17 15:08:39 +01:00
0367227375 MEDIUM: mworker: set the mworker-max-reloads to 50 William Lallemand 2025-11-17 11:15:37 +01:00
c67a614e45 MINOR: quic: remove <ipv4> arg from qc_new_conn() Amaury Denoyelle 2025-11-12 11:36:09 +01:00
133f100467 MINOR: quic: refactor qc_new_conn() prototype Amaury Denoyelle 2025-11-12 11:35:25 +01:00
49edaca513 MINOR: quic: try to clarify quic_conn CIDs fields direction Amaury Denoyelle 2025-11-12 16:58:46 +01:00
035c026220 MINOR: quic: support multiple random CID generation for BE side Amaury Denoyelle 2025-11-07 11:59:24 +01:00
8720130cc7 MINOR: quic: do not use quic_newcid_from_hash64 on BE side Amaury Denoyelle 2025-11-10 14:38:45 +01:00