On 2024-07-24 (Mi.) 18:50, Willy Tarreau wrote:
Hi,
HAProxy 3.1-dev4 was released on 2024/07/24. It added 113 new commits
after version 3.1-dev3.
Some nice goodies came in this version:
[snipp]
- SPOE: the old applet-based architecture was replaced with the new
mux-based one which allows idle connections sharing between threads,
as well as queuing, load balancing, stickiness etc per request instead
of per-connection and adds a lot of flexibility to the engine. We'd
appreciate it a lot if SPOE users would take some time to verify that
it works at least as well for them as before (and hopefully even
better). Some good ideas may spark. Please check Christopher's
response to the SPOE thread for more info.
Cool. Thank you that you handle this topic, even I don't use it for now :-)
- ocsp: some processing was refined to better handle a corner case where
the issuer chain is not in the same PEM file, though it also slightly
changes how this is handled on the CLI.
[snipp]
Does this announcement have any impact to HAProxy?
"Intent to End OCSP Service"
https://letsencrypt.org/2024/07/23/replacing-ocsp-with-crls.html
https://news.ycombinator.com/item?id=41046956
I know there is https://docs.haproxy.org/3.0/configuration.html#5.1-crl-file but
maybe it's worth to add a blog post about that topic and what impact this change
have to HAProxy.
Regards
Alex
