According to Issue #342 here is a proposal to add a nossl variant to
that builts haproxy without ssl
Add pending patch from upstream
- [PATCH 14/14] MEDIUM: systemd-wrapper: support multiple executable
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 01/13] DOC: clearly state that the "show sess" output format
- [PATCH 02/13] MINOR: stats: fix minor typo fix in
- [PATCH 03/13] MEDIUM: Improve signal handling in systemd wrapper.
- [PATCH 04/13] MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
- [PATCH 05/13] DOC: indicate in the doc that track-sc* can wait if
- [PATCH 06/13] MEDIUM: http: enable header manipulation for 101
- [PATCH 07/13] BUG/MEDIUM: config: propagate frontend to backend
- [PATCH 08/13] MEDIUM: config: properly propagate process binding
- [PATCH 09/13] MEDIUM: config: make the frontends automatically bind
- [PATCH 10/13] MEDIUM: config: compute the exact bind-process before
- [PATCH 11/13] MEDIUM: config: only warn if stats are attached to
- [PATCH 12/13] MEDIUM: config: report it when tcp-request rules are
- [PATCH 13/13] MINOR: config: detect the case where a tcp-request
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- BUG: config: error in http-response replace-header number of arguments
- BUG/MINOR: Fix search for -p argument in systemd wrapper.
- BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
- BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
- MEDIUM: connection: add new bit in Proxy Protocol V2
- BUG/MINOR: server: move the directive #endif to the end of file
- BUG/MEDIUM: http: tarpit timeout is reset
- BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
- BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
- BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
- BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
- BUG/MEDIUM: acl: correctly compute the output type when a converter is used
- CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
- BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 5/6] BUG/MEDIUM: http: tarpit timeout is reset
- [PATCH 6/6] MEDIUM: connection: add new bit in Proxy Protocol V2
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- upgrade to 1.5.3
- [PATCH 1/3] BUG/MINOR: server: move the directive #endif to the end
- [PATCH 2/3] BUG/MINOR: Fix search for -p argument in systemd wrapper.
- [PATCH 3/3] BUG/MAJOR: tcp: fix a possible busy spinning loop in
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
[PATCH 4/5] BUG/MINOR: http: base32+src should use the big endian
[PATCH 5/5] BUG/MEDIUM: connection: fix memory corruption when
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 22/25] DOC: minor fix on {sc,src}_kbytes_{in,out}
- [PATCH 23/25] DOC: fix alphabetical sort of converters
- [PATCH 24/25] BUG/MAJOR: http: correctly rewind the request body
- [PATCH 25/25] DOC: remove references to CPU=native in the README
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
this patch series mainly fixes a lot of reported issues in conjuction with
abstract socktet handling, improved the docs about the stats
- [PATCH 13/21] BUILD: http: fix isdigit & isspace warnings on Solaris
- [PATCH 14/21] BUG/MINOR: listener: set the listener's fd to -1 after
- [PATCH 15/21] BUG/MEDIUM: unix: failed abstract socket binding is
- [PATCH 16/21] MEDIUM: listener: implement a per-protocol pause()
- [PATCH 17/21] MEDIUM: listener: support rebinding during resume()
- [PATCH 18/21] BUG/MEDIUM: unix: completely unbind abstract sockets
- [PATCH 19/21] DOC: explicitly mention the limits of abstract
- [PATCH 20/21] DOC: expand the docs for the provided stats.
- [PATCH 21/21] BUG/MEDIUM: backend: Update hash to use unsigned int
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 10/12] MINOR: stats: fix minor typo in HTML page
- [PATCH 11/12] BUG/MEDIUM: unix: do not unlink() abstract namespace
- [PATCH 12/12] DOC: provide an example of how to use ssl_c_sha1
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 7/9] BUILD: remove TODO from the spec file and add READM
- [PATCH 8/9] MINOR: log: make MAX_SYSLOG_LEN overridable at build time
- [PATCH 9/9] MEDIUM: log: support a user-configurable max log line
length
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- BUG/MINOR: ssl: Fix external function in order not to return a pointer
on an internal trash buffer
- BUG/MINOR: counters: do not untrack counters before logging
- BUG/MAJOR: sample: correctly reinitialize sample fetch context before
calling sample_process()
- MINOR: stick-table: make stktable_fetch_key() indicate why it failed
- BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
Bugs from 1.5.0 can cause file descriptor leak, results in the
impossibility to accept new connections after some time.
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- includes support for SSL Termination, Compression Offloading, OCSP
Stapling support and much more
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>