[PATCH 0/2] CI entropy adjust (clang asan fix) and spell fixes

couple of patches 1) spell fixes 2) CI sysctl to make new ubuntu kernels and asan friends again Ilia Shipitsin (2): CLEANUP: assorted typo fixes in the code and comments CI: temporarily adjust kernel entropy to work with ASAN/clang .github/workflows/vtest.yml | 11 +++ src

[PATCH 1/2] CLEANUP: assorted typo fixes in the code and comments

This is 40th iteration of typo fixes --- src/quic_cli.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/quic_cli.c b/src/quic_cli.c index 49501d53d..b4b9329da 100644 --- a/src/quic_cli.c +++ b/src/quic_cli.c @@ -12,7 +12,7 @@ unsigned int qc_epoch = 0; enum quic_dum

[PATCH 2/2] CI: temporarily adjust kernel entropy to work with ASAN/clang

clang runtime (shipped with clang14) is not compatible with recent Ubuntu kernels more details: https://github.com/actions/runner-images/issues/9491 --- .github/workflows/vtest.yml | 11 +++ 1 file changed, 11 insertions(+) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vte

[PATCH 1/2] CI: netbsd: adjust packages after NetBSD-10 released

pcre2 is installed already, installing it from packages lead to conflict. curl is installed as a preparation for VTest --- .github/workflows/netbsd.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/netbsd.yml b/.github/workflows/netbsd.yml index e34fe7621..e

[PATCH 0/2] CI fixes, spelling cleanup

NetBSD image was updated to 10.0, pcre2 is available out of box now Ilia Shipitsin (2): CI: netbsd: adjust packages after NetBSD-10 released CLEANUP: assorted typo fixes in the code and comments .github/workflows/netbsd.yml | 2 +- doc/configuration.txt | 4 ++-- doc

[PATCH 2/2] CLEANUP: assorted typo fixes in the code and comments

This is 42nd iteration of typo fixes --- doc/configuration.txt | 4 ++-- doc/management.txt | 4 ++-- include/haproxy/peers-t.h | 2 +- include/haproxy/stats-file.h | 2 +- include/haproxy/stats-t.h | 2 +- reg-tests/ssl/ocsp_auto_update.vtc | 2

[PATCH 1/1] CI: drop asan.log umbrella completely

asan.log redirection appeared to work poorly, let's cease that practice for good. ML: https://www.mail-archive.com/haproxy@formilux.org/msg44844.html --- .github/workflows/vtest.yml | 9 - 1 file changed, 9 deletions(-) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.y

[PATCH 0/1] CI: drop asan.log umbrella for good

for some reasons it appeared to be a good idea to collect ASAN log separately from VTest error logs, but also it appeared to work poorly in real life (compared to specially prepared synthetic environments). let drop asan.log redirection Ilia Shipitsin (1): CI: drop asan.log umbrella completely

[PATCH 2/2] BUILD: switch to using macros HAVE_PTHREAD_GETCPUCLOCKID

--- include/haproxy/signal-t.h | 5 - src/clock.c| 19 --- src/wdt.c | 6 -- 3 files changed, 16 insertions(+), 14 deletions(-) diff --git a/include/haproxy/signal-t.h b/include/haproxy/signal-t.h index 85d4b3396..4ae856a97 100644 --- a/i

[PATCH 0/2] RFC: introducing HAVE_PTHREAD_GETCPUCLOCKID macro

I think it needs some discussion whether this can be actual improvement or rather caveat itself. while it looks like a good idea, I'm afraid that once "#include " is accidently lost, #ifdef HAVE_PTHREAD_GETCPUCLOCKID will silently switch to opposite without any visible error Il

[PATCH 1/2] BUILD: introduce HAVE_PTHREAD_GETCPUCLOCKID flag

pthread_getcpuclockid() is optional POSIX function present iff _POSIX_THREAD_CPUTIME >= 0 thanks to Miroslav Zagorac: https://docs.oracle.com/cd/E88353_01/html/E37842/unistd-3head.html "If a symbolic constant is defined with the value -1, the option is not supported. Headers, data types, and fun

[PATCH] CI: scripts/build-ssl.sh: loudly fail on unsupported platforms

--- scripts/build-ssl.sh | 4 1 file changed, 4 insertions(+) diff --git a/scripts/build-ssl.sh b/scripts/build-ssl.sh index 608d6beb1..d8cbc97e8 100755 --- a/scripts/build-ssl.sh +++ b/scripts/build-ssl.sh @@ -53,6 +53,10 @@ build_openssl () { 'Linux')

[PATCH 1/3] CI: use "--no-install-recommends" for apt-get

this reduces number of packages installed by 1 --- .github/workflows/coverity.yml | 2 +- .github/workflows/vtest.yml| 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/coverity.yml b/.github/workflows/coverity.yml index 0b3c4af91..18f4a251b 100644 --- a/.g

[PATCH 0/3] CI: preparation for Ubuntu 24.04

GitHub has launched Ubuntu 24.04 runners in beta. While runners are not yet stable, switching to them has shown some inconsistance in pipeline which is better to be resolved before actual upgrade to Ubuntu 24.04 Ilia Shipitsin (3): CI: use "--no-install-recommends" for apt-get CI:

[PATCH 3/3] CI: use USE_PCRE2 instead of USE_PCRE

USE_PCRE2 is recommended, I guess USE_PCRE is left unintentionally --- .github/matrix.py | 8 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/matrix.py b/.github/matrix.py index d3ab890da..a9ab4424e 100755 --- a/.github/matrix.py +++ b/.github/matrix.py @@ -123,8 +12

[PATCH 2/3] CI: switch to lua 5.4

current release is 5.4, let's switch to it --- .github/workflows/coverity.yml | 2 +- .github/workflows/vtest.yml| 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/coverity.yml b/.github/workflows/coverity.yml index 18f4a251b..82776148a 100644 --- a/.githu

[PATCH 1/1] CI: VTest: accelerate package install a bit

let's check and install only package is required --- .github/workflows/vtest.yml | 8 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index f862dc5a7..5208df757 100644 --- a/.github/workflows/vtest.yml +++ b/.github/w

[PATCH 0/1] CI: install apt packages in more intelligent way

let's install only requires packages Ilia Shipitsin (1): CI: VTest: accelerate package install a bit .github/workflows/vtest.yml | 8 1 file changed, 4 insertions(+), 4 deletions(-) -- 2.43.0.windows.1

[PATCH 3/3] CI: enable QuicTLS cache

--- .github/workflows/vtest.yml | 11 +-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index 8b10a1cdc..1c4dcb45b 100644 --- a/.github/workflows/vtest.yml +++ b/.github/workflows/vtest.yml @@ -56,14 +56,21 @@ jobs:

[PATCH 0/3] CI: enable QuicTLS cache

QuicTLS cache is enabled per commit hash (as it has no releases). The latest commit hash is determined during matrix build and used on later stages. Ilia Shipitsin (3): CI: introduce QuicTLS commit helper CI: build-ssl.sh: allow to choose certain QuicTLS commit hash CI: enable QuicTLS

[PATCH 2/3] CI: build-ssl.sh: allow to choose certain QuicTLS commit hash

--- scripts/build-ssl.sh | 6 ++ 1 file changed, 6 insertions(+) diff --git a/scripts/build-ssl.sh b/scripts/build-ssl.sh index f1a6f8a86..15d2c242f 100755 --- a/scripts/build-ssl.sh +++ b/scripts/build-ssl.sh @@ -149,6 +149,12 @@ build_aws_lc () { download_quictls () { if [ ! -d "${BUI

[PATCH 1/3] CI: introduce QuicTLS commit helper

QuicTLS is not changed frequently, thus it makes sense to cache it across builds. We need its "version", let's stick on commit hash --- .github/matrix.py | 57 ++- 1 file changed, 47 insertions(+), 10 deletions(-) diff --git a/.github/matrix.py b/.githu

[PATCH 1/1] CI: speedup apt package install

we are fine to skip some repos like languages and translations. this drops number of repos twice --- .github/workflows/coverity.yml | 2 +- .github/workflows/cross-zoo.yml | 2 +- .github/workflows/vtest.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workfl

[PATCH 0/1] CI: speedup packages install

we can save 1-2 sec by excluding languages and translations repos. Ilia Shipitsin (1): CI: speedup apt package install .github/workflows/coverity.yml | 2 +- .github/workflows/cross-zoo.yml | 2 +- .github/workflows/vtest.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions

[PATCH 0/1] CI: modernize FreeBSD image, libs

freebsd image updated from 13.2 to 14.0 pcre is changed to pcre2 lua is updated from 5.3 to 5.4 Ilia Shipitsin (1): CI: FreeBSD: upgrade image, packages .cirrus.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) -- 2.43.0.windows.1

[PATCH 1/1] CI: FreeBSD: upgrade image, packages

FreeBSD-13.2 was removed from cirrus-ci, let's upgrade to 14.0, also, pcre is EOL, let's switch to pcre2. lua is updated to 5.4 --- .cirrus.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.cirrus.yml b/.cirrus.yml index 4bf3fb672..409372d8a 100644 --- a/.cirrus.yml ++

[PATCH 1/1] CI: add weekly QUIC Interop regression against LibreSSL

currently only quic-go and picoquic clients are enabled with testsuites supposed to be "green". Tests will be run weekly. --- .github/workflows/quic-interop-libressl.yml | 70 + 1 file changed, 70 insertions(+) create mode 100644 .github/workflows/quic-interop-libressl.yml di

[PATCH 0/1] CI: weekly regression testing of QUIC Interop against LinreSSL

LibreSSL/QUIC was not previously covered by any regular testing, let us fix that Ilia Shipitsin (1): CI: add weekly QUIC Interop regression against LibreSSL .github/workflows/quic-interop-libressl.yml | 70 + 1 file changed, 70 insertions(+) create mode 100644 .github

[PATCH] CI: weekly QUIC Interop: try to fix private image

for some reason image built in HAProxy workflow is "private", it is succesfully built, but fails to pull. Let's try explicit docker login for run job as well --- .github/workflows/quic-interop-libressl.yml | 7 +++ 1 file changed, 7 insertions(+) diff --git a/.github/workflows/quic-interop-li

[PATCH] CI: harden NetBSD builds by ERR=1

--- .github/workflows/netbsd.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/netbsd.yml b/.github/workflows/netbsd.yml index 6514725e1..c6b431acc 100644 --- a/.github/workflows/netbsd.yml +++ b/.github/workflows/netbsd.yml @@ -20,4 +20,4 @@ jobs:

[PATCH] CI: add weekly QUIC Interop regression against AWS-LC

currently only quic-go and picoquic clients are enabled. Tests will be run weekly. --- .github/workflows/quic-interop-aws-lc.yml | 77 +++ 1 file changed, 77 insertions(+) create mode 100644 .github/workflows/quic-interop-aws-lc.yml diff --git a/.github/workflows/quic-interop

[PATCH] src/fcgi-app.c: handle strdup failure

found by coccinelle --- src/fcgi-app.c | 5 - 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/fcgi-app.c b/src/fcgi-app.c index b3a9b7c59..d96bb222c 100644 --- a/src/fcgi-app.c +++ b/src/fcgi-app.c @@ -606,6 +606,8 @@ static int proxy_parse_use_fcgi_app(char **args, int secti

[PATCH] CI: keep logs for failed QIUC Interop jobs

it might be useful to investigate logs of failed tests. to keep artifacts small the following actions are taken - only failed logs are kept - logs retention is 6 days --- .github/workflows/quic-interop-aws-lc.yml | 13 + .github/workflows/quic-interop-libressl.yml | 13 +

[PATCH 1/3] CI: QUIC Interop LibreSSL: document chacha20 test status

due to https://github.com/haproxy/haproxy/issues/2569 chacha20 is disabled completely on LibreSSL. let's add a comment to not forget enabling it --- .github/workflows/quic-interop-libressl.yml | 5 + 1 file changed, 5 insertions(+) diff --git a/.github/workflows/quic-interop-libressl.yml b/.

[PATCH 3/3] CI: modernize codespell action, switch to node 16

The following actions uses node12 which is deprecated and will be forced to run on node16: codespell-project/codespell-problem-matcher@v1. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/ --- .github/workflows/cod

[PATCH 2/3] CI: QUIC Interop AWS-LC: enable chrome client

chrome is important browser, let's enable it in AWS-LC weekly tests. the only test supported by chrome is http3 --- .github/workflows/quic-interop-aws-lc.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.github/workflows/quic-interop-aws-lc.yml i

[PATCH 2/3] CI: switch QUIC Interop on AWS-LC to common docker image

previously we used different docker images for different SSL libs, now all of them are merged into one, lets switch to it --- .github/workflows/quic-interop-libressl.yml | 7 ++- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/.github/workflows/quic-interop-libressl.yml b/.githu

[PATCH 1/3] CI: switch QUIC Interop on LibreSSL to common docker image

previously we used different docker images for different SSL libs, now all of them are merged into one, lets switch to it --- .github/workflows/quic-interop-aws-lc.yml | 9 +++-- 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.github/

[PATCH 3/3] CI: enable chacha20 test on LibreSSL QUIC Interop

it was commented on purpose "until LibreSSL-4.0 is released". lets enable it --- .github/workflows/quic-interop-libressl.yml | 7 ++- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/.github/workflows/quic-interop-libressl.yml b/.github/workflows/quic-interop-libressl.yml index 2

[PATCH] CI: LibreSSL QUIC Interop: fix docker context

in the commit https://github.com/haproxy/haproxy/commit/98099287ee37e697d1d2aaf01e19107bd064c3c6 building docker was switched to URL, but I forgotten to change context. this is a followup fix. --- .github/workflows/quic-interop-libressl.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)

[PATCH 3/4] BUG/MINOR: mux_h1: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/mux_h1.c | 5 - 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/mux_h1.c b/src/mux_h1.c index 7eb18133d..0206dcbd0 100644 --- a/src/mux_h1.c +++ b/s

[PATCH 1/4] BUG/MINOR: checks: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/check.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/check.c b/src/check.c index 29a86b7dd..e636148b6 100644 --- a/src/check.c +++ b/src/check.c @@ -1667,6

[PATCH 2/4] BUG/MINOR: listener: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/listener.c | 5 - 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/listener.c b/src/listener.c index 5f3a98b4a..5fb610a88 100644 --- a/src/listener.c

[PATCH 4/4] BUG/MINOR: debug: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/debug.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/debug.c b/src/debug.c index d052f5b63..2c5e35553 100644 --- a/src/debug.c +++ b/src/debug.c @@ -2048,6

[PATCH] CI: limix aws-lc and libressl Quic Interop to "haproxy" only

those CI is not supposed to run in forks (however, if someone wants, he can enable it personally) --- .github/workflows/quic-interop-aws-lc.yml | 2 ++ .github/workflows/quic-interop-libressl.yml | 2 ++ 2 files changed, 4 insertions(+) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/

[PATCH] CI: use "/tmp" as default value for TMPDIR when searching logs

VTest use /tmp already if not defined, let stick the behaviour for searching logs as well --- .github/workflows/aws-lc.yml | 2 +- .github/workflows/fedora-rawhide.yml | 2 +- .github/workflows/vtest.yml | 2 +- .github/workflows/wolfssl.yml| 2 +- 4 files changed, 4 inser

[PATCH 1/3] BUG/MINOR: pool: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/pool.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/pool.c b/src/pool.c index f4a4af100..d653ac3c9 100644 --- a/src/pool.c +++ b/src/pool.c @@ -1373,6 +1373

[PATCH 2/3] BUG/MINOR: cfgparse-tcp: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/cfgparse-tcp.c | 4 1 file changed, 4 insertions(+) diff --git a/src/cfgparse-tcp.c b/src/cfgparse-tcp.c index 2f68daf1c..2c214f3d8 100644 --- a/src/cfgparse-tcp.c

[PATCH 3/3] BUG/MINOR: compression: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/compression.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/compression.c b/src/compression.c index a4464e09b..edf5553c1 100644 --- a/src/compression.c +++ b

[PATCH] BUG/MINOR: 51 degree: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- addons/51degrees/51d.c | 15 ++- 1 file changed, 14 insertions(+), 1 deletion(-) diff --git a/addons/51degrees/51d.c b/addons/51degrees/51d.c index a23b468d6..4

[PATCH] CI: QUIC Interop: clean old docker images

currently temporary docker images are kept forever. let's delete outdated ones --- .github/workflows/quic-interop-aws-lc.yml | 9 + .github/workflows/quic-interop-libressl.yml | 9 + 2 files changed, 18 insertions(+) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.git

[PATCH 3/3] CLEANUP: assorted typo fixes in the code, commits and doc

--- addons/deviceatlas/dummy/dac.h | 2 +- doc/SPOE.txt | 2 +- doc/configuration.txt | 10 +- include/haproxy/pattern.h | 2 +- include/haproxy/ssl_ckch-t.h | 2 +- src/clock.c| 2 +- src/h2.c | 6 +++--- sr

[PATCH 2/9] CI: fedora rawhide: install "awk" as a dependency

for some reason it is not installed by default on rawhide anymore --- .github/workflows/fedora-rawhide.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora-rawhide.yml index 194c471c6..e0bf252aa 100644 --- a/.githu

[PATCH 5/9] CI: cross compile: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/cross-zoo.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cross-zoo.yml b/.github/workflows/cross-zoo.yml index d6e5e0839..

[PATCH 9/9] CI: QUIC Interop on LibreSSL: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/quic-interop-libressl.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/quic-interop-libressl.yml b/.github/workflows/qu

[PATCH 3/9] CI: spellcheck: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/codespell.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 93e9020dc..

[PATCH 7/9] CI: NetBSD: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/netbsd.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/netbsd.yml b/.github/workflows/netbsd.yml index bb1c5cc85..b15a6dc9a

[PATCH 6/9] CI: Illumos: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/illumos.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/illumos.yml b/.github/workflows/illumos.yml index 0d4d5a3de..2bcc9d

[PATCH 1/9] CI: fedora rawhide: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/fedora-rawhide.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora-rawhide.yml i

[PATCH 8/9] CI: QUIC Interop on AWS-LC: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/quic-interop-aws-lc.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.github/workflows/quic-i

[PATCH 4/9] CI: coverity scan: allow "on: workflow_dispatch" in forks

previously that build were limited to "haproxy" github organization only. let's allow manual builds from forks --- .github/workflows/coverity.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/coverity.yml b/.github/workflows/coverity.yml index e52e6de04..bbe

[PATCH] CLEANUP: assorted typo fixes in the code and comments

--- CONTRIBUTING | 2 +- addons/promex/README | 2 +- dev/gdb/ebtree.gdb| 4 ++-- doc/configuration.txt | 18 +- doc/design-thoughts/numa-auto.txt | 4 ++-- doc/lua-api/index.rst | 4 ++-- doc/management

[PATCH 04/10] CI: compliance: limit run on forks only to manual + cleanup

--- .github/workflows/compliance.yml | 15 +-- 1 file changed, 5 insertions(+), 10 deletions(-) diff --git a/.github/workflows/compliance.yml b/.github/workflows/compliance.yml index 29af0a9e8..6f8d1efc6 100644 --- a/.github/workflows/compliance.yml +++ b/.github/workflows/compliance.

[PATCH 07/10] CI: AWS-LC: enable unit tests

Run the new make unit-tests on the CI. --- .github/workflows/aws-lc.yml | 6 +- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/.github/workflows/aws-lc.yml b/.github/workflows/aws-lc.yml index f0d847f6f..b22e823db 100644 --- a/.github/workflows/aws-lc.yml +++ b/.github/workflows/

[PATCH 06/10] CI: AWS-LC(fips): limit run on forks to manual dispatch

--- .github/workflows/aws-lc-fips.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/aws-lc-fips.yml b/.github/workflows/aws-lc-fips.yml index 41da4e437..902b568e7 100644 --- a/.github/workflows/aws-lc-fips.yml +++ b/.github/workflows/aws-lc-fips.yml @@ -11,6 +11,7 @@ permi

[PATCH 01/10] CI: musl: enable unit tests

Run the new make unit-tests on the CI. --- .github/workflows/musl.yml | 6 +- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/.github/workflows/musl.yml b/.github/workflows/musl.yml index a54414fab..b4d91e45a 100644 --- a/.github/workflows/musl.yml +++ b/.github/workflows/musl.yml

[PATCH 08/10] CI: AWS-LC: install "jose" for jks unit tests support

--- .github/workflows/aws-lc.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/aws-lc.yml b/.github/workflows/aws-lc.yml index b22e823db..14a0edb9f 100644 --- a/.github/workflows/aws-lc.yml +++ b/.github/workflows/aws-lc.yml @@ -32,7 +32,7 @@ jobs: -

[PATCH 09/10] CI: AWS-LC(fips): enable unit tests

Run the new make unit-tests on the CI. --- .github/workflows/aws-lc-fips.yml | 8 ++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/.github/workflows/aws-lc-fips.yml b/.github/workflows/aws-lc-fips.yml index 902b568e7..226f4bb08 100644 --- a/.github/workflows/aws-lc-fips.yml

[PATCH 10/10] CI: WolfSSL: enable unit tests

Run the new make unit-tests on the CI. --- .github/workflows/wolfssl.yml | 9 +++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/.github/workflows/wolfssl.yml b/.github/workflows/wolfssl.yml index d040cf017..9a1936473 100644 --- a/.github/workflows/wolfssl.yml +++ b/.github/wo

[PATCH] CI: fedora rawhide: enable unit tests

Run the new make unit-tests on the CI. --- .github/workflows/fedora-rawhide.yml | 6 +- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora-rawhide.yml index e0bf252aa..130f87448 100644 --- a/.github/workflows/fedora-raw

[PATCH 03/10] CI: QuicTLS (weekly): limit run on forks only to manual dispatch

--- .github/workflows/quictls.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/quictls.yml b/.github/workflows/quictls.yml index 9926b0a9e..76b6d3bcd 100644 --- a/.github/workflows/quictls.yml +++ b/.github/workflows/quictls.yml @@ -15,6 +15,7 @@ permissions: jobs: tes

[PATCH 05/10] CI: AWS-LC: limit run on forks only to manual dispatch

--- .github/workflows/aws-lc.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/aws-lc.yml b/.github/workflows/aws-lc.yml index 6b4ad490c..f0d847f6f 100644 --- a/.github/workflows/aws-lc.yml +++ b/.github/workflows/aws-lc.yml @@ -11,6 +11,7 @@ permissions: jobs: test:

[PATCH 02/10] CI: musl: install "jose" for jws tests support

--- .github/workflows/musl.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/musl.yml b/.github/workflows/musl.yml index b4d91e45a..8350063e5 100644 --- a/.github/workflows/musl.yml +++ b/.github/workflows/musl.yml @@ -22,7 +22,7 @@ jobs: echo '/t

[PATCH] BUILD: add possibility to use different QuicTLS variants

initially QuicTLS started as a patchset on top of OpenSSL, currently project has started its own journey as QuicTLS somehow we need both ML: https://www.mail-archive.com/haproxy@formilux.org/msg45574.html GH: https://github.com/quictls/quictls/issues/244 --- scripts/build-ssl.sh | 3 ++- 1 file

[PATCH 2/3] CI: codespell: add "pres" to spellcheck whitelist

spellcheck was triggered by the following: * pres : same as "res" but using the parent stream, if any. "pres" variables are only accessible during response processing of the parent stream. --- .github/workflows/codespell.yml | 2 +- 1 file changed, 1 insertion(+), 1 del

[PATCH 1/3] CI: spell check: allow manual trigger

--- .github/workflows/codespell.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 91e9d8ec7..ac8716c62 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -3,6 +3,7 @@ name: Spelling Che

[PATCH] CLEANUP: assorted typo fixes in the code, commits and doc

Corrected various spelling and phrasing errors to improve clarity and consistency. --- doc/configuration.txt | 24 doc/lua-api/index.rst | 4 ++-- doc/management.txt | 2 +- include/haproxy/stick_table-t.h | 2 +- reg-tests/jwt/jws_veri

[PATCH] BUILD: adjust scripts/build-ssl.sh to modern CMake system of QuicTLS

QuicTLS in master branch has migrated to CMake, let's adopt script to it. Previous OpenSSL+QuicTLS patch is built as usual. --- scripts/build-ssl.sh | 20 +--- 1 file changed, 17 insertions(+), 3 deletions(-) diff --git a/scripts/build-ssl.sh b/scripts/build-ssl.sh index e072f268e

[PATCH] CI: set DEBUG_STRICT=2 for coverity scan

enabling DEBUG_STRICT=2 will enable BUG_ON_HOT() and help coverity in bug detection for the reference: https://github.com/haproxy/haproxy/issues/3008 --- .github/workflows/coverity.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/coverity.yml b/.github/wor

[PATCH] CI: enable QUIC=1 if OpenSSL >= 3.5.0

--- .github/matrix.py | 11 +-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/.github/matrix.py b/.github/matrix.py index efecb338f..996b79248 100755 --- a/.github/matrix.py +++ b/.github/matrix.py @@ -232,8 +232,6 @@ def main(ref_name): for ssl in ssl_versions:

[PATCH] src/acme.c: fix spelling "ressources" ==> "resources"

fixes #3040 "ressources" was used as a variable name, let's use English variant to make spell check happier --- include/haproxy/acme-t.h | 4 ++-- src/acme.c | 38 +++--- 2 files changed, 21 insertions(+), 21 deletions(-) diff --git a/include/haprox