сб, 31 окт. 2020 г. в 17:53, Willy Tarreau <w...@1wt.eu>: > Hi, > > HAProxy 2.3-dev9 was released on 2020/10/31. It added 27 new commits > after version 2.3-dev8. > > Things have cooled down quite a bit, I really appreciate it. To be > honest, I've really been hesitating between releasing 2.3-final now > or leaving one extra week. Finally, considering that we're not late > and that the last fixed issues were recently reported, I considered > that it was worth waiting one more week to confirm this encouraging > trend. >
freebsd builds are unstable https://github.com/haproxy/haproxy/runs/1341524534 also, couple of reg-tests fail on openssl no-deprecated mode https://github.com/haproxy/haproxy/issues/924 should we address those failures before 2.3 release ? > > The changes since 2.3-dev8 are fairly small. > > The boringSSL saga continued with some OCSP fixes. And support for early > data needed to be adjusted because that one now claims to be openssl 1.1.1 > but lacks some of its features... Hopefully now we got it right! > > While testing the cache compliance with standards, Rémi found a few issues > related to an incomplete parsing of the cache-control header and a few > other > minor issues that he addressed. This will make the cache more accurate in > front of certain applications. The cache also knows how to respond 304 to > conditional requests, which should lower the external bandwidth with > returning browsers. Some new sample fetches were added to check for cached > responses. > > Amaury added some stats on H2 traffic which are quite welcome, I always > felt frustrated by not knowing the H1/H2 ratios without looking at the > logs. > > The rest looks like routine fixes. > > There are still two things I'd like us to have a look at, just in case > we get an opportunity to fix old issues before the release. One of them > is tha Maciej who reported some crashes with SPOE in 2.0 managed to > bisect it and to find that in 2.2 it stopped crashing after a change at > the H2 level which seems totally unrelated at first glance, so it's > possible that we change some sequencing somewhere or that a new bug hid > another one. The second one is that we've got a report of a suspicious > rare crash in 2.2 which happens only when an http-after-response rule is > present. Again, none of them is a 2.3 regression so they will not defer > 2.3 release but the least bugs at release time, the better. > > I'm aware that there's quite a bunch of code floating around that people > will want to put into 2.4. I just don't know if anything's ready yet for > -next or not, but just in case I've rebased it on top of master. > > For those who read me right now, have a nice week-end :-) > > Please find the usual URLs below : > Site index : http://www.haproxy.org/ > Discourse : http://discourse.haproxy.org/ > Slack channel : https://slack.haproxy.org/ > Issue tracker : https://github.com/haproxy/haproxy/issues > Wiki : https://github.com/haproxy/wiki/wiki > Sources : http://www.haproxy.org/download/2.3/src/ > Git repository : http://git.haproxy.org/git/haproxy.git/ > Git Web browsing : http://git.haproxy.org/?p=haproxy.git > Changelog : http://www.haproxy.org/download/2.3/src/CHANGELOG > Cyril's HTML doc : http://cbonte.github.io/haproxy-dconv/ > > Willy > --- > Complete changelog : > Amaury Denoyelle (8): > MINOR: mux-h2: register a stats module > MINOR: mux-h2: add counters instance to h2c > MINOR: mux-h2: add stats for received frame types > MINOR: mux-h2: report detected error on stats > MINOR: mux-h2: count open connections/streams on stats > BUG/MINOR: server: fix srv downtime calcul on starting > BUG/MINOR: server: fix down_time report for stats > BUG/MINOR: lua: initialize sample before using it > > Emmanuel Hocdet (1): > BUG/MEDIUM: ssl: OCSP must work with BoringSSL > > Ilya Shipitsin (2): > BUILD: ssl: more elegant OpenSSL early data support check > CI: github actions: update h2spec to 2.6.0 > > Remi Tricot Le Breton (1): > MINOR: cache: Store the "Last-Modified" date in the cache_entry > > Remi Tricot-Le Breton (6): > MINOR: cache: Process the If-Modified-Since header in conditional > requests > MINOR: cache: Create res.cache_hit and res.cache_name sample fetches > MINOR: cache: Add Expires header value parsing > MINOR: ist: Add a case insensitive istmatch function > BUG/MINOR: cache: Manage multiple values in cache-control header > value > BUG/MINOR: cache: Inverted variables in http_calc_maxage function > > Tim Duesterhus (1): > BUG/MINOR: cache: Check the return value of http_replace_res_status > > William Dauchy (1): > CLEANUP: http_ana: remove unused assignation of `att_beg` > > Willy Tarreau (7): > BUG/MINOR: log: fix memory leak on logsrv parse error > BUG/MINOR: log: fix risk of null deref on error path > MINOR: pattern: make pat_ref_append() return the newly added element > MINOR: pattern: make pat_ref_add() rely on pat_ref_append() > MINOR: pattern: export pat_ref_push() > CLEANUP: pattern: use calloc() rather than malloc for structures > CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments > > --- > >
