[PATCH v2] BUILD: SSL: function "ERR_func_error_string" is deprecated in OpenSSL-3.0.0

let us prepare for using OpenSSL-3.0.0 in no deprecation mode --- include/haproxy/openssl-compat.h | 7 +++ src/ssl_sock.c | 2 +- 2 files changed, 8 insertions(+), 1 deletion(-) diff --git a/include/haproxy/openssl-compat.h b/include/haproxy/openssl-compat.h index 17d073d5

[PATCH] CLEANUP: assorted typo fixes in the code and comments

This is 27th iteration of typo fixes --- doc/configuration.txt| 2 +- include/haproxy/h3.h | 2 +- include/haproxy/mux_quic-t.h | 2 +- include/haproxy/mux_quic.h | 2 +- include/haproxy/qpack-t.h

[PATCH 2/2] BUILD: SSL: add QUICTLS to build matrix

--- .github/matrix.py | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/matrix.py b/.github/matrix.py index 568676001..53b5e0f88 100755 --- a/.github/matrix.py +++ b/.github/matrix.py @@ -113,12 +113,13 @@ for CC in ["gcc", "clang"]: "OPENSSL_VERSION=3.0.0",

[PATCH 1/2] BUILD: SSL: add quictls build to scripts/build-ssl.sh

script/build-ssl.sh is used mostly in CI, let us introduce QUIC OpenSSL fork support --- scripts/build-ssl.sh | 23 +++ 1 file changed, 23 insertions(+) diff --git a/scripts/build-ssl.sh b/scripts/build-ssl.sh index e1d89a0eb..d143cec55 100755 --- a/scripts/build-ssl.sh +++ b/

[PATCH 1/1] BUILD: SSL: enable TLS key material logging if built with LibreSSL>=3.5.0

LibreSSL implements TLS key material since 3.5.0, let's enable it --- include/haproxy/openssl-compat.h | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/include/haproxy/openssl-compat.h b/include/haproxy/openssl-compat.h index 7fb153810..ed162031c 100644 --- a/include/haproxy/o

[PATCH 0/1] enabling ssl keylog for LibreSSL 3.5.0

found during QUIC Interop for LibreSSL Ilya Shipitsin (1): BUILD: SSL: enable TLS key material logging if built with LibreSSL>=3.5.0 include/haproxy/openssl-compat.h | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) -- 2.40.1

[PATCH 0/2] improve CI friendliness

thanks to Andrew Hopkins from Amazon, we've learned that CI is already easy to learn, however few things can be improved. let us add naming convention inline comment, also if VTest fails, let is highlight that. Ilya Shipitsin (2): CI: add naming convention documentation CI: explic

[PATCH 2/2] CI: explicitely highlight VTest result section if there's something

it turned out that people miss VTest result section because it is not highlighted, let us fix that --- .github/workflows/vtest.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index 25d3cc72e..6977788a3 100644 --- a/.github/workflow

[PATCH 1/2] CI: add naming convention documentation

branches "haproxy-" stand for stable branches, otherwise development --- .github/matrix.py | 18 +- 1 file changed, 13 insertions(+), 5 deletions(-) diff --git a/.github/matrix.py b/.github/matrix.py index 7f22c43bb..dbf987e93 100755 --- a/.github/matrix.py +++ b/.github/matrix.py

[PATCH 0/2] CI changes

fixed 'Unknown argument "groupinstall" for command "dnf5"' coverity scan CI rewritten without travis-ci wrapper Ilya Shipitsin (2): CI: do not use "groupinstall" for Fedora Rawhide builds CI: get rid of travis-ci wrapper for Coverity scan .

[PATCH 2/2] CI: get rid of travis-ci wrapper for Coverity scan

historically coverity scan was performed by travis-ci script, let us rewrite it in bash --- .github/workflows/coverity.yml | 28 +--- 1 file changed, 17 insertions(+), 11 deletions(-) diff --git a/.github/workflows/coverity.yml b/.github/workflows/coverity.yml index e208c8

[PATCH 1/2] CI: do not use "groupinstall" for Fedora Rawhide builds

Fedora Rawhide migrated to dnf5, which does not support "groupinstall" --- .github/workflows/fedora-rawhide.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora-rawhide.yml index 7e735a36c..bf8ad3d72 100644 --- a

[PATCH 1/1] CI: fedora: fix "dnf" invocation syntax

In 39e205302e8afb68d954e17944fad5f8c1587287 I erroneously used "dnf git" instead of "dnf install" --- .github/workflows/fedora-rawhide.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora-rawhide.yml index bf8ad3d7

[PATCH 0/1] CI: fedora: fix dnf invocation

"dnf git" was used instead of "dnf install" Ilya Shipitsin (1): CI: fedora: fix "dnf" invocation syntax .github/workflows/fedora-rawhide.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) -- 2.35.3.windows.1

[PATCH 2/2] CI: musl: drop shopt in workflow invocation

"shopt" is bash specific, while musl uses bourne shell. /__w/_temp/1b0f5f5d-c71b-4a66-8be3-e1fe51c10993.sh: line 7: shopt: not found --- .github/workflows/musl.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/musl.yml b/.github/workflows/musl.yml index af358981f..930a22e01

[PATCH 1/2] CI: musl: highlight section if there are coredumps

previously, section was collapsed, thus it was harder to find that there's something to look at --- .github/workflows/musl.yml | 5 + 1 file changed, 5 insertions(+) diff --git a/.github/workflows/musl.yml b/.github/workflows/musl.yml index 4017affb9..af358981f 100644 --- a/.github/workflows/

[PATCH 0/2] CI: musl pipeline improvement

it has been figured out that it is hard to find gdb backtraces on musl, because corresponding section is not highlighted. let us fix that Ilya Shipitsin (2): CI: musl: highlight section if there are coredumps CI: musl: drop shopt in workflow invocation .github/workflows/musl.yml | 6

[PATCH 1/1] CI: cirrus-ci: display gdb bt if any

previously, if test process crashes (either BUG_ON or segfault), no coredump were collected and analysed --- .cirrus.yml | 7 ++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.cirrus.yml b/.cirrus.yml index 2993b943a..4bf3fb672 100644 --- a/.cirrus.yml +++ b/.cirrus.yml @@ -6,8

[PATCH 0/1] CI: cirrus-ci: display gdb backtrace if there are any

improve cirrus-ci by displaying gdb backtrace Ilya Shipitsin (1): CI: cirrus-ci: display gdb bt if any .cirrus.yml | 7 ++- 1 file changed, 6 insertions(+), 1 deletion(-) -- 2.35.3.windows.1

[PATCH 2/2] CI: limit codespell checks to main repo, not forks

--- .github/workflows/codespell.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 781aa8332..3d66f2980 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -10,6 +10,7 @@ permissions: jo

[PATCH 1/2] CLEANUP: assorted typo fixes in the code and comments

This is 37th iteration of typo fixes --- INSTALL| 4 ++-- doc/SPOE.txt | 4 ++-- doc/configuration.txt | 10 +- doc/regression-testing.txt | 6 +++--- e

[PATCH 0/2] spelling fixes

yet spelling fixes Ilya Shipitsin (2): CLEANUP: assorted typo fixes in the code and comments CI: limit codespell checks to main repo, not forks .github/workflows/codespell.yml| 1 + INSTALL| 4 ++-- doc/SPOE.txt

[PATCH 1/1] CI: switch aws-lc builds to "latest" semantic

for development branches let's use "latest" and fixed for stable LibreSSL-3.6.0 had some regression, it was fixed in 3.6.1, let us switch back to the latest LibreSSL available --- .github/matrix.py | 8 +++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/.github/matrix.py b/.git

[PATCH 0/1] CI: switch to "latest" semantic for aws-lc builds

let's use fixed version for stable builds and "latest" for development builds Ilya Shipitsin (1): CI: switch aws-lc builds to "latest" semantic .github/matrix.py | 8 +++- 1 file changed, 7 insertions(+), 1 deletion(-) -- 2.42.0

[PATCH 0/1] more spell fixes

more spell fixes Ilya Shipitsin (1): CLEANUP: assorted typo fixes in the code and comments addons/promex/service-prometheus.c | 2 +- dev/patchbot/README| 2 +- doc/configuration.txt | 24 include/haproxy/connection-t.h | 2

[PATCH 1/1] CLEANUP: assorted typo fixes in the code and comments

This is 38th iteration of typo fixes --- addons/promex/service-prometheus.c | 2 +- dev/patchbot/README| 2 +- doc/configuration.txt | 24 include/haproxy/connection-t.h | 2 +- include/haproxy/quic_tx.h | 2 +- include/haproxy

[PATCH 0/1] CI: switch to semantic version compare for openssl=latest

there's minor issue, with current string comparision openssl-3.2.0beta1 wins over openssl-3.2.0, let's switch to semantic comparision Ilya Shipitsin (1): CI: use semantic version compare for determing "latest" OpenSSL .github/matrix.py | 3 ++- 1 file changed, 2 inser

[PATCH 1/1] CI: use semantic version compare for determing "latest" OpenSSL

currently "openssl-3.2.0-beta1" wins over "openssl-3.2.0" due to string comparision. let's switch to semantic version compare --- .github/matrix.py | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/matrix.py b/.github/matrix.py index d5ad6931a..5e01c28bb 100755 --- a/.g

[PATCH 2/3] CI: codespell: add more words to whitelist

"Collet" is "Yann Collet" - a developer of xxhash "bu" is variable name in src/sock_unix.c "htmp" is variable name in src/quic_retransmit.c --- .github/workflows/codespell.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codespell.yml b/.github/workflows/co

[PATCH 0/3] spell check improvements

few words are added to whitelists, few typos fixed Ilya Shipitsin (3): CI: codespell: ignore some words in URLs CI: codespell: add more words to whitelist CLEANUP: fix spelling of "occured" in src/h3.c .github/workflows/codespell.yml | 3 ++- src/h3.c

[PATCH 1/3] CI: codespell: ignore some words in URLs

"trafic,ressources" are found in URIs, due to https://github.com/codespell-project/actions-codespell/issues/55 we cannot use wildcard for exclusion, let start with fixed list --- .github/workflows/codespell.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/codespell.yml b/.

[PATCH 3/3] CLEANUP: fix spelling of "occured" in src/h3.c

--- src/h3.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/h3.c b/src/h3.c index ff91443ca..40e3a8996 100644 --- a/src/h3.c +++ b/src/h3.c @@ -1977,7 +1977,7 @@ static size_t h3_snd_buf(struct qcs *qcs, struct buffer *buf, size_t count) break;

[PATCH 3/3] CI: enable spell chek on git push

--- .github/workflows/codespell.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 385b698a5..f54fe6d8b 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -1,8 +1,7 @@

[PATCH 1/3] CLEANUP: fix spelling of "elemt"

--- include/haproxy/quic_sock-t.h | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/include/haproxy/quic_sock-t.h b/include/haproxy/quic_sock-t.h index 67a574929..0b9c18c12 100644 --- a/include/haproxy/quic_sock-t.h +++ b/include/haproxy/quic_sock-t.h @@ -36,8 +36,8 @@ struct

[PATCH 2/3] CI: extend spell check white list

siz - seen in src/debug.c EXPERIM - seen in src/cli.c --- .github/workflows/codespell.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index de99e4c4d..385b698a5 100644 --- a/.github/workflows/codespell.yml ++

[PATCH 0/3] fix speling remnants, enable spel chek on push

it is very fast check, should not affect developer velocity much Ilya Shipitsin (3): CLEANUP: fix spelling of "elemt" CI: extend spell check white list CI: enable spell chek on git push .github/workflows/codespell.yml | 5 ++--- include/haproxy/quic_sock-t.h | 4 ++-- 2 files

[PATCH 1/2] CI: cleanup: abandon asan matrix.py helper

that helper was useful in days when we beleived that gcc and clang require different flags. those days are gone. --- .github/matrix.py | 15 +-- 1 file changed, 5 insertions(+), 10 deletions(-) diff --git a/.github/matrix.py b/.github/matrix.py index dde5b4414..1ad9534bd 100755 --- a/

[PATCH 2/2] BUILD: SSL: add yet another OpenSSL download fallback

--- scripts/build-ssl.sh | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/scripts/build-ssl.sh b/scripts/build-ssl.sh index 1c17775c3..608d6beb1 100755 --- a/scripts/build-ssl.sh +++ b/scripts/build-ssl.sh @@ -13,7 +13,9 @@ download_openssl () { wget -P download-cache

[PATCH 0/2] CI cleanup and improvement

remove redundant function, improve openssl download helper Ilya Shipitsin (2): CI: cleanup: abandon asan matrix.py helper BUILD: SSL: add yet another OpenSSL download fallback .github/matrix.py| 15 +-- scripts/build-ssl.sh | 4 +++- 2 files changed, 8 insertions(+), 11

[PATCH 0/1] CI: additional ASAN smoke tests

Ilya Shipitsin (1): CI: run more smoke tests on config syntax to check memory related issues .github/workflows/vtest.yml | 4 1 file changed, 4 insertions(+) -- 2.43.2

[PATCH 1/1] CI: run more smoke tests on config syntax to check memory related issues

config syntax check seems add a value on testing code path not covered by VTest, also checks are very fast --- .github/workflows/vtest.yml | 4 1 file changed, 4 insertions(+) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index 7b5254b04..d65741a27 100644 --- a/.gith

[PATCH 0/1] CI: enable monthly netbsd builds

let's try https://github.com/vmactions/netbsd-vm Ilya Shipitsin (1): CI: enable monthly build only test on netbsd-9.3 .github/workflows/netbsd.yml | 22 ++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/netbsd.yml -- 2.43.2

[PATCH 1/1] CI: enable monthly build only test on netbsd-9.3

it is interesting to try https://github.com/vmactions/netbsd-vm actions --- .github/workflows/netbsd.yml | 22 ++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/netbsd.yml diff --git a/.github/workflows/netbsd.yml b/.github/workflows/netbsd.yml new file

[PATCH 1/1] CI: skip scheduled builds on forks

tracking bleeding edge changes with some rare platforms or modern compilers on scheduled basis is not what usually forks do. let's skip by default in forks, if some fork is interested, it might be enabled locally --- .github/workflows/cross-zoo.yml | 1 + .github/workflows/fedora-rawhide.yml

[PATCH 0/1] CI: skip scheduled tasks in forks

some fine tuning on scheduled workflows Ilya Shipitsin (1): CI: skip scheduled builds on forks .github/workflows/cross-zoo.yml | 1 + .github/workflows/fedora-rawhide.yml | 1 + 2 files changed, 2 insertions(+) -- 2.43.2

[PATCH] CLEANUP: assorted typo fixes in the code and comments

This is 39th iteration of typo fixes --- addons/promex/README | 4 ++-- addons/promex/include/promex/promex.h | 4 ++-- doc/DeviceAtlas-device-detection.txt | 2 +- doc/configuration.txt | 2 +- reg-tests/ssl/ocsp_auto_update.vtc| 10 +- src/mux_qu

[PATCH 1/1] CI: vtest: show coredumps if any

if any coredump is found, it is passed to gdb with 'thread apply all bt full' --- .github/workflows/vtest.yml | 26 +- 1 file changed, 25 insertions(+), 1 deletion(-) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index 8c461385f..a704c92dc 100644 -

[PATCH 0/1] CI improvement, display coredumps if any

it is pretty rare case, however displaying "bt" may provide some ideas what went wrong Ilya Shipitsin (1): CI: vtest: show coredumps if any .github/workflows/vtest.yml | 26 +- 1 file changed, 25 insertions(+), 1 deletion(-) -- 2.44.0

[PATCH 0/1] CI: extend Fedora Rawhide to run x86 bit as well

it seems to be the easiest to build "m32" on Fedora comparing to Ubuntu, let's stick on that for a while Ilya Shipitsin (1): CI: extend Fedora Rawhide, add m32 mode .github/workflows/fedora-rawhide.yml | 18 -- 1 file changed, 12 insertions(+), 6 deletions(-) -- 2.44.0

[PATCH 1/1] CI: extend Fedora Rawhide, add m32 mode

hopefully it will allow to catch regressions like this https://github.com/haproxy/haproxy/commit/e41638a --- .github/workflows/fedora-rawhide.yml | 18 -- 1 file changed, 12 insertions(+), 6 deletions(-) diff --git a/.github/workflows/fedora-rawhide.yml b/.github/workflows/fedora

[PATCH 0/1] CI: revert entropy hack

hack introduced in 3a0fc8641b1549b00cd3125107545b6879677801 might be reverted Ilya Shipitsin (1): CI: revert kernel entropy introduced in 3a0fc8641b1549b00cd3125107545b6879677801 .github/workflows/vtest.yml | 11 --- 1 file changed, 11 deletions(-) -- 2.44.0

[PATCH 1/1] CI: revert kernel entropy introduced in 3a0fc8641b1549b00cd3125107545b6879677801

--- .github/workflows/vtest.yml | 11 --- 1 file changed, 11 deletions(-) diff --git a/.github/workflows/vtest.yml b/.github/workflows/vtest.yml index a704c92dc..a426b608d 100644 --- a/.github/workflows/vtest.yml +++ b/.github/workflows/vtest.yml @@ -64,17 +64,6 @@ jobs: run: |

[PATCH 0/2] CI cleanup, spell fixes

the main part is reducing ASAN_OPTIONS scope, it was supposed only to capture output of vtests, accidently it covered "config smoke tests" as well Ilya Shipitsin (2): CI: reduce ASAN log redirection umbrella size CLEANUP: assorted typo fixes in the code and comments .github

[PATCH 1/2] CI: reduce ASAN log redirection umbrella size

previously ASAN_OPTIONS=log_path=asan.log was intended for VTest execution only, it should not affect "haproxy -vv" and hsproxy config smoke testing --- .github/workflows/vtest.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/vtest.yml b/.github/workfl

[PATCH 2/2] CLEANUP: assorted typo fixes in the code and comments

This is 41st iteration of typo fixes --- doc/configuration.txt | 4 ++-- include/haproxy/cli-t.h| 2 +- include/haproxy/session.h | 2 +- include/haproxy/vecpair.h | 2 +- reg-tests/ssl/ocsp_auto_update.vtc | 2 +- src/haproxy.c | 2 +

[PATCH 1/1] CI: modernize macos matrix

let's stick to macos-13 for stable branches and macos-14 for development branches. since macos-14 is available for Apple Silicon, some modifications are required for VTest (should be ported to VTest later) news: https://github.blog/changelog/2024-01-30-github-actions-macos-14-sonoma-is-now-avail

[PATCH 0/1] CI: switch to more recent macos version(s)

let's modernize macos CI build matrix since macos-14 is available Ilya Shipitsin (1): CI: modernize macos matrix .github/matrix.py | 4 ++-- scripts/build-vtest.sh | 9 - 2 files changed, 10 insertions(+), 3 deletions(-) -- 2.44.0

[PATCH 0/3] initial Illumos CI, netbsd CI cleanup

very initial Illumos CI Ilya Shipitsin (3): BUILD: illumos: pthread_getcpuclockid is not available CI: add Illumos scheduled workflow CI: netbsd: limit scheduled workflow to parent repo only .github/workflows/illumos.yml | 24 .github/workflows/netbsd.yml | 1

[PATCH 1/3] BUILD: illumos: pthread_getcpuclockid is not available

this function is considered optional for POSIX and not implemented on Illumos Reference: https://www.gnu.org/software/gnulib/manual/html_node/pthread_005fgetcpuclockid.html According to https://github.com/cpredef/predef/blob/master/OperatingSystems.md Illumos is identified by __illumos__ macro a

[PATCH 3/3] CI: netbsd: limit scheduled workflow to parent repo only

it is not very useful for most of forks. --- .github/workflows/netbsd.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/netbsd.yml b/.github/workflows/netbsd.yml index ea0345954..6514725e1 100644 --- a/.github/workflows/netbsd.yml +++ b/.github/workflows/netbsd.yml @@ -7,6

[PATCH 2/3] CI: add Illumos scheduled workflow

this is very initial implementation. I was not able to install gcc-11, thus I mimic it's define --- .github/workflows/illumos.yml | 24 1 file changed, 24 insertions(+) create mode 100644 .github/workflows/illumos.yml diff --git a/.github/workflows/illumos.yml b/.github/

[PATCH 1/3] DEV: coccinelle: add a test to detect unchecked malloc()

The coccinelle test "unchecked-malloc.cocci" detects various cases of unchecked malloc(). --- dev/coccinelle/unchecked-malloc.cocci | 34 +++ 1 file changed, 34 insertions(+) create mode 100644 dev/coccinelle/unchecked-malloc.cocci diff --git a/dev/coccinelle/unchecked-ma

[PATCH 3/3] CI: QUIC Interop AWS-LC: enable ngtcp2 client

GH issue: https://github.com/haproxy/haproxy/issues/2688 --- .github/workflows/quic-interop-aws-lc.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.github/workflows/quic-interop-aws-lc.yml index 171ec815d..8e3dd9b6c 100644 ---

[PATCH 2/3] DEV: coccinelle: add a test to detect unchecked calloc()

The coccinelle test "unchecked-calloc.cocci" detects various cases of unchecked calloc(). --- dev/coccinelle/unchecked-calloc.cocci | 34 +++ 1 file changed, 34 insertions(+) create mode 100644 dev/coccinelle/unchecked-calloc.cocci diff --git a/dev/coccinelle/unchecked-ca

[PATCH 1/3] CI: fix missing comma introduced in 956839c0f68a7722acc586ecd91ffefad2ccb303

in 956839c0f68a7722acc586ecd91ffefad2ccb303 syntax was broken due to missing comma. it is follow up. --- .github/workflows/quic-interop-aws-lc.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/quic-interop-aws-lc.yml b/.github/workflows/quic-interop-aws-lc.

[PATCH 3/3] CI: QUIC Interop: use different artifact names for uploading logs

artifact names must be unique, otherwise only first failed logs are uploaded, other encounter 409 conflict --- .github/workflows/quic-interop-aws-lc.yml | 2 +- .github/workflows/quic-interop-libressl.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/qu

[PATCH 2/3] CI: QUIC Interop: do not run bandwidth measurement tests

crosstraffic, goodput tests are intended to perform bandwidth measurement, we do not consider GitHub runners for that purpose GH issue: https://github.com/haproxy/haproxy/issues/2688 --- .github/workflows/quic-interop-aws-lc.yml | 10 +++--- .github/workflows/quic-interop-libressl.yml | 8

[PATCH] CLEANUP: assorted typo fixes in the code and comments

This is 43rd iteration of typo fixes --- admin/release-estimator/README.md | 2 +- doc/configuration.txt | 14 +++--- doc/management.txt| 2 +- include/haproxy/channel.h | 2 +- include/haproxy/fcgi-app-t.h | 6 +++--- include/haproxy/mux_spop-t

[PATCH 1/3] CI: prepare Coverity build for Ubuntu 24

PCRE2 is recommended, PCRE was chosen for no reason. GHA Ubuntu 22 images include both libs, but recent Ubuntu 24 does not. Let us prepare for Ubuntu 24 --- .github/workflows/coverity.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/coverity.yml b/.githu

[PATCH 0/3] CI modernize: ubuntu 24.04, macos 15

GitHub released new runners: Ubuntu 24.04 (which recently became "ubuntu-latest" for few days) and macos-15, let's adjust current build configuration with those changes. Ilya Shipitsin (3): CI: prepare Coverity build for Ubuntu 24 CI: bump development builds explicitely to Ub

[PATCH 2/3] CI: bump development builds explicitely to Ubuntu 24.04

Initially we agreed to split builds into "latest" for development branch and fixed 22.04 for stable branches. It got broken when "latest" label migrated from ubuntu-22 to ubuntu-24 ... because of build cache. Cache key is built using runner label, it was not prepared to use the same "latest" cache

[PATCH 3/3] CI: modernize macos builds to macos-15

macos-15 support was announced few months ago: https://github.com/github/roadmap/issues/986 --- .github/matrix.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/matrix.py b/.github/matrix.py index fb467c322..f90bbac4e 100755 --- a/.github/matrix.py +++ b/.github/matri

[PATCH 3/3] BUG/MINOR: resolvers: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/resolvers.c | 12 1 file changed, 12 insertions(+) diff --git a/src/resolvers.c b/src/resolvers.c index f8f0c8edf..bff5c290d 100644 --- a/src/resolvers.c +

[PATCH 2/3] BUG/MINOR: ssl_crtlist: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/ssl_crtlist.c | 4 1 file changed, 4 insertions(+) diff --git a/src/ssl_crtlist.c b/src/ssl_crtlist.c index 71fa0a0b1..7d2b1ed12 100644 --- a/src/ssl_crtlist.c +++

[PATCH 1/3] BUG/MINOR: namespace: handle a possible strdup() failure

This defect was found by the coccinelle script "unchecked-strdup.cocci". It can be backported to all supported branches. --- src/namespace.c | 5 + 1 file changed, 5 insertions(+) diff --git a/src/namespace.c b/src/namespace.c index 9cc85a384..12885cd9f 100644 --- a/src/namespace.c +++ b/src/

[PATCH] CI: enable weekly QuicTLS build

QuicTLS started own fork not dependant on OpenSSL, lets add that to weekly builds ML: https://www.mail-archive.com/haproxy@formilux.org/msg45574.html GH: https://github.com/quictls/quictls/issues/244 --- .github/workflows/quictls.yml | 82 +++ 1 file changed, 82 in

[PATCH] CI: combine AWS-LC and AWS-LC-FIPS by template

let's reduce code duplication by involving workflow templates --- .github/workflows/aws-lc-fips.yml | 95 +--- .github/workflows/aws-lc-template.yml | 103 ++ .github/workflows/aws-lc.yml | 95 +--- 3 files changed, 109