mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-11-24 20:31:00 +01:00
Code Issues Projects Releases Wiki Activity
haproxy/src
History
Frédéric Lécaille 8417beb7da BUG/MAJOR: quic: Possible crash when processing 1-RTT during 0-RTT session 
This bug was revealed by some C1 interop tests (heavy hanshake packet
corruption) when receiving 1-RTT packets with a key phase update.
This lead the packet to be decrypted with the next key phase secrets.
But this latter is initialized only after the handshake is complete.

In fact, 1-RTT must never be processed before the handshake is complete.
Relying on the "qc->mux_state == QC_MUX_NULL" condition to check the
handshake is complete is wrong during 0-RTT sessions when the mux
is initialized before the handshake is complete.

Must be backported to 2.7 and 2.6.
2023-02-03 17:55:55 +01:00
..
acl.c
BUILD: acl: use __fallthrough in parse_acl_expr()
2022-11-14 11:14:02 +01:00
action.c
BUG/MINOR: rules: Fix check_capture() function to use the right rule arguments
2022-04-25 15:28:21 +02:00
activity.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
applet.c
MEDIUM: channel: Use CF_WRITE_EVENT instead of CF_WRITE_PARTIAL
2023-01-09 18:41:08 +01:00
arg.c
CLEANUP: arg: remove extra check in make_arg_list arg escaping
2022-11-22 16:27:52 +01:00
auth.c
MINOR: auth: silence null dereference warning in check_user()
2022-11-24 15:24:02 +01:00
backend.c
MEDIUM: channel: Use CF_READ_EVENT instead of CF_READ_PARTIAL
2023-01-09 18:41:08 +01:00
base64.c
…
cache.c
REORG: channel: Rename CF_READ_NULL to CF_READ_EVENT
2023-01-09 18:41:08 +01:00
calltrace.c
BUILD: calltrace: fix wrong include when building with TRACE=1
2022-04-19 08:23:30 +02:00
cbuf.c
CLEANUP: pool/tree-wide: remove suffix "_pool" from certain pool names
2022-06-23 11:49:09 +02:00
cfgcond.c
…
cfgdiag.c
…
cfgparse-global.c
MINOR: quic: Add "no-quic" global option
2023-01-17 16:35:20 +01:00
cfgparse-listen.c
MEDIUM: proxy/http_ext: implement dynamic http_ext
2023-01-27 15:18:59 +01:00
cfgparse-quic.c
MINOR: quic: add config for retransmit limit
2023-02-03 11:56:46 +01:00
cfgparse-ssl.c
MINOR: cfgparse-ssl: avoid a possible crash on OOM in ssl_bind_parse_npn()
2023-01-02 09:51:35 +01:00
cfgparse-tcp.c
CLEANUP: tree-wide: remove 25 occurrences of unneeded fcntl.h
2022-04-26 10:59:48 +02:00
cfgparse-unix.c
CLEANUP: tree-wide: remove 25 occurrences of unneeded fcntl.h
2022-04-26 10:59:48 +02:00
cfgparse.c
MINOR: cfgparse/http_ext: move post-parsing http_ext steps to http_ext
2023-01-27 15:18:59 +01:00
channel.c
MEDIUM: channel: Use CF_READ_EVENT instead of CF_READ_PARTIAL
2023-01-09 18:41:08 +01:00
check.c
MINOR: check: use atomic for s->consecutive_errors
2022-12-07 17:04:08 +01:00
chunk.c
MINOR: chunk: inline alloc_trash_chunk()
2022-08-17 10:45:22 +02:00
cli.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
clock.c
BUG/MEDIUM: wdt/clock: properly handle early task hangs
2022-11-14 19:14:53 +01:00
compression.c
CLEANUP: compression: move the default setting of maxzlibmem to defaults
2022-04-25 19:42:43 +02:00
connection.c
MINOR: connection: add a BUG_ON() to detect destroying connection in idle list
2023-01-25 15:30:49 +01:00
cpuset.c
MEDIUM: cpu-map: replace the process number with the thread group number
2022-07-15 19:43:10 +02:00
debug.c
BUG/MEDIUM: debug/thread: make the debug handler not wait for !rdv_requests
2023-01-19 19:22:17 +01:00
dgram.c
…
dict.c
…
dns.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
dynbuf.c
…
eb32sctree.c
…
eb32tree.c
…
eb64tree.c
…
ebimtree.c
…
ebistree.c
…
ebmbtree.c
…
ebpttree.c
…
ebsttree.c
…
ebtree.c
…
errors.c
CLEANUP: assorted typo fixes in the code and comments
2022-10-30 17:17:56 +01:00
ev_epoll.c
MINOR: pollers: only update the local date during busy polling
2022-09-21 09:06:28 +02:00
ev_evports.c
MINOR: pollers: only update the local date during busy polling
2022-09-21 09:06:28 +02:00
ev_kqueue.c
MINOR: pollers: only update the local date during busy polling
2022-09-21 09:06:28 +02:00
ev_poll.c
BUG/MINOR: signals/poller: ensure wakeup from signals
2022-09-09 11:15:22 +02:00
ev_select.c
MEDIUM: fd/poller: turn update_mask to group-local IDs
2022-07-15 20:16:30 +02:00
event_hdl.c
MINOR: server/event_hdl: add support for SERVER_UP and SERVER_DOWN events
2022-12-06 10:22:07 +01:00
extcheck.c
MINOR: checks: use the lighter PRNG for spread checks
2022-10-12 21:49:30 +02:00
fcgi-app.c
BUG/MINOR: fcgi-app: prevent 'use-fcgi-app' in default section
2023-01-27 15:18:59 +01:00
fcgi.c
BUG/MAJOR: fcgi: Fix uninitialized reserved bytes
2022-12-09 12:23:14 +01:00
fd.c
BUG/MINOR: thread: always reload threads_enabled in loops
2023-01-19 19:22:17 +01:00
filters.c
CLEANUP: tree-wide: Remove any ref to stream-interfaces
2022-04-13 15:10:16 +02:00
fix.c
…
flt_bwlim.c
BUG/MINOR: bwlim: Fix parameters check for set-bandwidth-limit actions
2023-01-19 16:15:12 +01:00
flt_http_comp.c
BUILD: compression: use __fallthrough in comp_http_payload()
2022-11-14 11:14:02 +01:00
flt_spoe.c
REORG: channel: Rename CF_READ_NULL to CF_READ_EVENT
2023-01-09 18:41:08 +01:00
flt_trace.c
…
freq_ctr.c
BUG/MEDIUM: freq-ctr: Don't compute overshoot value for empty counters
2022-12-14 10:44:17 +01:00
frontend.c
REORG: rename cs_utils.h to sc_strm.h
2022-05-27 19:33:35 +02:00
h1_htx.c
MINOR: htx: Add an HTX value for the extra field is payload length is unknown
2023-01-13 11:51:11 +01:00
h1.c
BUG/MINOR: h1: Replace authority validation to conform RFC3986
2022-11-22 17:49:10 +01:00
h2.c
MINOR: http: extract content-length parsing from H2
2022-12-14 11:34:18 +01:00
h3_stats.c
MINOR: h3: Add a statistics module for h3
2022-05-30 09:59:26 +02:00
h3.c
BUG/MINOR: h3: fix crash due to h3 traces
2023-01-31 16:09:47 +01:00
haproxy.c
MINOR: quic: add config for retransmit limit
2023-02-03 11:56:46 +01:00
hash.c
BUILD: hash: use __fallthrough in hash_djb2()
2022-11-14 11:14:02 +01:00
hlua_fcn.c
MEDIUM: stick-table: switch the table lock to rwlock
2022-10-12 14:19:05 +02:00
hlua.c
MINOR: htx: Add an HTX value for the extra field is payload length is unknown
2023-01-13 11:51:11 +01:00
hpack-dec.c
BUILD: hpack: include global.h for the trash that is needed in debug mode
2023-01-20 00:02:37 +01:00
hpack-enc.c
…
hpack-huff.c
BUG/MEDIUM: hpack: fix incorrect huffman decoding of some control chars
2023-01-26 11:36:39 +01:00
hpack-tbl.c
BUILD/DEBUG: hpack-tbl: fix format string in standalone debug code
2022-04-12 08:30:08 +02:00
hq_interop.c
MINOR: mux-quic: refactor snd_buf
2022-09-20 15:35:29 +02:00
http_acl.c
…
http_act.c
BUG/MINOR: http: Memory leak of http redirect rules' format string
2023-01-06 16:42:24 +01:00
http_ana.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
http_client.c
BUG/MINOR: httpclient/log: free of invalid ptr with httpclient_log_format
2022-12-22 15:39:31 +01:00
http_conv.c
BUG/MEDIUM: http-conv: Fix url_enc() to not crush const samples
2022-04-08 10:12:59 +02:00
http_ext.c
BUG/MINOR: http_ext/7239: ipv6 dumping relies on out of scope variables
2023-01-30 15:14:08 +01:00
http_fetch.c
MINOR: htx: Add an HTX value for the extra field is payload length is unknown
2023-01-13 11:51:11 +01:00
http_htx.c
MINOR: http_htx: add http_prepend_header() to prepend value to header
2023-01-27 15:18:59 +01:00
http_rules.c
BUILD: http: remove the two unused constructors in rules and ana
2022-04-25 19:26:26 +02:00
http.c
MINOR: http: extract content-length parsing from H2
2022-12-14 11:34:18 +01:00
htx.c
OPTIM: htx: inline the most common memcpy(8)
2023-02-03 13:39:18 +01:00
init.c
MINOR: init: add the pre-check callback
2022-04-22 15:45:47 +02:00
jwt.c
BUG/MINOR: jwt: Wrong return value checked
2023-01-20 10:27:37 +01:00
lb_chash.c
…
lb_fas.c
…
lb_fwlc.c
…
lb_fwrr.c
…
lb_map.c
…
listener.c
BUG/MINOR: thread: always reload threads_enabled in loops
2023-01-19 19:22:17 +01:00
log.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
lru.c
BUILD/DEBUG: lru: fix printf format in debug code
2022-04-12 08:19:33 +02:00
mailers.c
BUG/MEDIUM: mailers: Set the object type for check attached to an email alert
2022-06-08 15:28:38 +02:00
map.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
mjson.c
…
mqtt.c
MEDIUM: mqtt: support mqtt_is_valid and mqtt_field_value converters for MQTTv3.1
2022-03-22 09:25:52 +01:00
mux_fcgi.c
BUG/MINOR: mux-fcgi: Correctly set pathinfo
2023-01-18 07:53:05 +01:00
mux_h1.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
mux_h2.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
mux_pt.c
MEDIUM: mux-pt: Don't always set a final error on SE on the sending path
2022-11-17 14:33:15 +01:00
mux_quic.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
mworker-prog.c
BUILD: mworker: include tools.h for platforms without unsetenv()
2022-01-28 19:04:02 +01:00
mworker.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
namespace.c
…
ncbuf.c
CLEANUP: ncbuf: use standard BUG_ON with DEBUG_STRICT
2022-11-29 15:15:27 +01:00
pattern.c
BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
2022-08-01 11:59:46 +02:00
payload.c
CLEANUP: check: rename all occurrences of stconn "cs" to "sc"
2022-05-27 19:33:35 +02:00
peers.c
BUG/MEDIUM: peers: make "show peers" more careful about partial initialization
2023-01-12 17:09:34 +01:00
pipe.c
…
pool.c
BUG/MINOR: pool/stats: Use ullong to report total pool usage in bytes in stats
2022-12-22 13:46:21 +01:00
proto_quic.c
BUG/MINOR: quic: do not allocate more rxbufs than necessary
2022-12-21 09:27:26 +01:00
proto_sockpair.c
MINOR: sockpair: move send_fd_uxst() error message in caller
2022-07-25 16:11:11 +02:00
proto_tcp.c
BUG/MINOR: listeners: fix suspend/resume of inherited FDs
2023-01-16 14:00:50 +01:00
proto_udp.c
BUG/MINOR: listeners: fix suspend/resume of inherited FDs
2023-01-16 14:00:50 +01:00
proto_uxdg.c
MINOR: protocol: replace ctrl_type with xprt_type and clarify it
2022-05-20 18:39:43 +02:00
proto_uxst.c
MINOR: protocol: replace ctrl_type with xprt_type and clarify it
2022-05-20 18:39:43 +02:00
protocol.c
MINOR: quic: Add "no-quic" global option
2023-01-17 16:35:20 +01:00
proxy.c
MEDIUM: proxy/http_ext: implement dynamic http_ext
2023-01-27 15:18:59 +01:00
qmux_http.c
BUG/MEDIUM: mux-quic: properly trim HTX buffer on snd_buf reset
2022-09-20 15:35:33 +02:00
qmux_trace.c
BUILD: quic: Fix build for m68k cross-compilation
2022-10-18 12:04:10 +02:00
qpack-dec.c
MINOR: qpack: report error on enc/dec stream close
2022-08-17 11:04:53 +02:00
qpack-enc.c
BUG/MINOR: qpack: support bigger prefix-integer encoding
2022-05-30 14:30:05 +02:00
qpack-tbl.c
CLEANUP: qpack: properly use the QPACK macros not HPACK ones in debug code
2022-11-24 15:38:26 +01:00
queue.c
BUG/MEDIUM: queue/threads: limit the number of entries dequeued at once
2022-07-30 10:00:59 +02:00
quic_cc_cubic.c
BUG/MEDIUM: quic: Floating point exception in cubic_root()
2022-08-03 14:27:20 +02:00
quic_cc_newreno.c
CLEANUP: quic: create a dedicated quic_conn module
2022-10-03 16:25:17 +02:00
quic_cc.c
CLEANUP: quic: fix headers
2022-10-03 16:25:17 +02:00
quic_conn.c
BUG/MAJOR: quic: Possible crash when processing 1-RTT during 0-RTT session
2023-02-03 17:55:55 +01:00
quic_frame.c
MINOR: quic: refactor frame deallocation
2023-02-03 11:55:41 +01:00
quic_loss.c
BUG/MINOR: quic: Too big PTO during handshakes
2023-02-03 17:55:55 +01:00
quic_sock.c
MEDIUM: quic-sock: fix udp source address for send on listener socket
2023-01-20 17:06:04 +01:00
quic_stats.c
MINOR: quic: detect connection migration
2022-12-02 14:45:43 +01:00
quic_stream.c
MINOR: quic: New quic_cstream object implementation
2022-10-13 10:12:03 +02:00
quic_tls.c
MINOR: quic: Replace v2 draft definitions by those of the final 2 version
2023-01-17 16:35:20 +01:00
quic_tp.c
MINOR: quic: Disable the active connection migrations
2023-01-17 16:35:20 +01:00
raw_sock.c
OPTIM: global: move byte counts out of global and per-thread
2023-01-12 16:37:45 +01:00
regex.c
BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
2022-09-01 19:34:46 +02:00
resolvers.c
BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action
2023-01-11 10:31:42 +01:00
ring.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
sample.c
MINOR: sample: add ARGC_OPT
2023-01-27 15:18:59 +01:00
server_state.c
BUILD: server-state: avoid using not-so-portable isblank()
2022-01-28 19:04:02 +01:00
server.c
BUG/MINOR: checks: restore legacy on-error fastinter behavior
2022-12-07 17:03:55 +01:00
session.c
MEDIUM: stick-table: set the track-sc limit at boottime via tune.stick-counters
2023-01-06 18:08:49 +01:00
sha1.c
…
shctx.c
…
signal.c
BUG/MINOR: signals/poller: ensure wakeup from signals
2022-09-09 11:15:22 +02:00
sink.c
BUG/MINOR: sink: free the forwarding task on exit
2023-01-26 15:49:32 +01:00
slz.c
IMPORT: slz: declare len to fix debug build when optimal match is enabled
2022-11-14 11:14:02 +01:00
sock_inet.c
BUG/MEDIUM: listener: duplicate inherited FDs if needed
2023-01-11 11:27:20 +01:00
sock_unix.c
BUG/MEDIUM: listener: duplicate inherited FDs if needed
2023-01-11 11:27:20 +01:00
sock.c
MINOR: sockpair: move send_fd_uxst() error message in caller
2022-07-25 16:11:11 +02:00
ssl_ckch.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
ssl_crtlist.c
MINOR: ssl: Treat ocsp-update inconsistencies as fatal errors
2023-01-12 13:13:45 +01:00
ssl_ocsp.c
MINOR: ssl: Remove debug fprintf in 'update ssl ocsp-response' cli command
2023-01-25 11:51:39 +01:00
ssl_sample.c
BUG/MINOR: ssl: don't initialize the keylog callback when not required
2022-11-18 15:24:23 +01:00
ssl_sock.c
BUG/MEDIUM: ssl: wrong eviction from the session cache tree
2023-01-31 14:34:40 +01:00
ssl_utils.c
MINOR: ssl: Move OCSP code to a dedicated source file
2022-12-21 11:21:07 +01:00
stats.c
MINOR: stats: add by HTTP version cumulated number of sessions and requests
2023-02-03 17:55:49 +01:00
stconn.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
stick_table.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
stream.c
MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
2023-01-09 18:41:08 +01:00
task.c
BUILD: sched: fix build with DEBUG_THREAD with the previous commit
2022-11-22 10:24:07 +01:00
tcp_act.c
MEDIUM: tcp-act: add parameter rst-ttl to silent-drop
2022-11-19 04:53:47 +01:00
tcp_rules.c
MINOR: channel: Stop to test CF_READ_ERROR flag if CF_SHUTR is enough
2023-01-09 18:41:08 +01:00
tcp_sample.c
MINOR: Revert part of clarifying samples support per os commit
2022-09-03 06:11:08 +02:00
tcpcheck.c
BUILD: tcpcheck: use __fallthrough in check_proxy_tcpcheck()
2022-11-14 11:14:02 +01:00
thread.c
BUG/MEDIUM: thread: consider secondary threads as idle+harmless during boot
2023-02-02 08:21:15 +01:00
time.c
…
tools.c
MINOR: listener: also support "quic+" as an address prefix
2023-01-16 14:00:51 +01:00
trace.c
MINOR: trace: add a trace_no_cb() dummy callback for when to use no callback
2023-01-26 15:49:43 +01:00
uri_auth.c
…
uri_normalizer.c
…
vars.c
BUILD: vars: use __fallthrough in var_accounting_{diff,add}()
2022-11-14 11:14:02 +01:00
version.c
…
wdt.c
MINOR: wdt: do not rely on threads_to_dump anymore
2022-07-01 19:26:35 +02:00
xprt_handshake.c
CLEANUP: pool/tree-wide: remove suffix "_pool" from certain pool names
2022-06-23 11:49:09 +02:00
xprt_quic.c
BUG/MINOR: quic: fix subscribe operation
2022-10-26 18:18:26 +02:00