I cannot %[lua.xxx] in server directive

Hi, I'd like to change backend server by referring to the database. e.g. Redis I cannot use server directive with the return of core.register_fetches. A parsing error occurs. Do I cannot %[lua.xxx] in server directive on the specification? Dose anyone have any idea? Following are samples I'm try

[#JFN-625499]: 真实自拍珠海(?州?)?h???堪比A片插的流白浆

cxhe, Ваша заявка была получена и один из наших консультантов работает над ответом на Ваш вопрос. Внизу указаны данные Вашей заявки. Пожалуйста, не стирайте номер заявки в строке темы. Ticket ID: JFN-625499 Тема:真实自拍珠海(?州?)?h???堪比A片插的流白浆 Department: Жалобы, сообщения о с

Re: [PATCH] BUG/MEDIUM: dns: unbreak DNS resolver after header fix

Hello Nenad. With this patch I get "Bus Error" and core dumped. pstack show me: 000a837c dns_get_ip_from_response (ffbfe820, 2b, 13f3f0, 1f, 1534a4, 2) + 134 000484f0 snr_resolution_cb (1540f0, 13ffa8, ffbfe820, 1b7, a0, 1531c8) + 68 000a81a4 dns_resolve_recv (1000, 1001, 3, 13ffa8, ffbfe820,

Re: [PATCH] BUG/MEDIUM: dns: unbreak DNS resolver after header fix

Hi Nenad, On Wed, Jul 13, 2016 at 03:47:39AM +0200, Nenad Merdanovic wrote: > Hello Alexander, > > On 7/12/2016 2:57 PM, Nenad Merdanovic wrote: > > Hello, > > > > On 7/12/2016 1:13 PM, Alexander Lebedev wrote: > >> Hi! On Solaris10/SPARC I see this issue with 1.6.6 and 1.6.3 (before > >> Vincen

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

On Tue, Jul 12, 2016 at 05:25:55PM -0700, Roberto Guimaraes wrote: > It???s a double-free???. we need to NULL local_dh_1024 after the free because > your code has the following destructor (1.5 doesn???t): > > __attribute__((destructor)) > static void __ssl_sock_deinit(void) > { > #ifdef SSL_CTRL_

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

On Tue, Jul 12, 2016 at 02:55:58PM -0700, Roberto Guimaraes wrote: > I will certainly pick Remi???s fix, thanks! > > Did you have any issues with haproxy 1.5 by chance? No, we didn't backport the fix. The older the branch, the more critical the fixes need to be in order to be backported. > This

Re: [PATCH] BUG/MEDIUM: dns: unbreak DNS resolver after header fix

Hello Alexander, On 7/12/2016 2:57 PM, Nenad Merdanovic wrote: > Hello, > > On 7/12/2016 1:13 PM, Alexander Lebedev wrote: >> Hi! On Solaris10/SPARC I see this issue with 1.6.6 and 1.6.3 (before >> Vincent commit). >> Haproxy sends queries with "response" bit. >> Maybe it is again alignment issue

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

It’s a double-free…. we need to NULL local_dh_1024 after the free because your code has the following destructor (1.5 doesn’t): __attribute__((destructor)) static void __ssl_sock_deinit(void) { #ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME lru64_destroy(ssl_ctx_lru_tree); #endif #ifndef OPENSSL_NO

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

I will certainly pick Remi’s fix, thanks! Did you have any issues with haproxy 1.5 by chance? This has been running in prod (multiple boxes) for over a month without a single issue. And your example config doesn’t cause any problems either. * also using openssl 1.0.2h hmm wouldn’t valgrind itse

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

On Tue, Jul 12, 2016 at 02:11:39PM -0700, Roberto Guimaraes wrote: > My apologies and thanks for the heads up! I will revert it on my end as well. > Weird, nginx seems to have the same unconditional DH_free in there. I had no problem with this on my laptop with openssl 1.0.1 and the few tests we m

Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

My apologies and thanks for the heads up! I will revert it on my end as well. Weird, nginx seems to have the same unconditional DH_free in there. roberto > On Jul 12, 2016, at 2:49 AM, Willy Tarreau wrote: > > On Sat, Jul 02, 2016 at 04:47:57PM +0200, Remi Gacogne wrote: >> I've attached what I

Re: Certificate Authentication failing Outlook 2016

Hello Alberto I think you will want something like this. If the client does not have an SSL Cert in their browser they will not be able to connect. http://blog.haproxy.com/2012/10/03/ssl-client-certificate-management-at-application-level/ Regards Andrew Smalley Loadbalancer.org http://www.load

Certificate Authentication failing Outlook 2016

Hello everyone. I want to configure HAProxy to allow connections only from users with a valid certificate, so the connection between the client application and HAProxy is restricted and then the connection between HAProxy and my backend servers is only SSL without certificate authentication. So fa

Re: compression with Transfer-Encoding: chunked

Hi Tim, On Mon, Jul 04, 2016 at 08:35:54AM +, Richert, Tim wrote: > Ohh... just figured that compression works if "option http-server-close" is > NOT set! > > ~

Interprètes et traductions professionnelles de qualité en toutes langues

Si vous ne visualisez pas correctement l’e-mail, cliquez ici Bonjour, Je me permets de vous contacter afin de vous proposer nos services de traduction et d'interprétation professionnelle. Notre agence

Re: [PATCH] BUG/MEDIUM: dns: unbreak DNS resolver after header fix

Hello, On 7/12/2016 1:13 PM, Alexander Lebedev wrote: > Hi! On Solaris10/SPARC I see this issue with 1.6.6 and 1.6.3 (before > Vincent commit). > Haproxy sends queries with "response" bit. > Maybe it is again alignment issue? I don't have time to currently look deep into the code, but AFAIR how t

Re: [PATCH] BUG/MEDIUM: dns: unbreak DNS resolver after header fix

Hi! On Solaris10/SPARC I see this issue with 1.6.6 and 1.6.3 (before Vincent commit). Haproxy sends queries with "response" bit. Maybe it is again alignment issue? Alexander Lebedev 26 мая 2016 г. 3:15 пользователь "Willy Tarreau" написал: > Hi Vincent, > > On Wed, May 25, 2016 at 10:54:14PM +02

Re: Re: [PATCH] BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()

On Sat, Jul 02, 2016 at 04:47:57PM +0200, Remi Gacogne wrote: > I've attached what I think is the right fix, simply checking if > local_dh_2014 is NULL before calling ssl_get_dh_1024(), thus only > generating it at most one time. It's then freed in __ssl_sock_deinit() > so valgrind should be happy.

Re: counters for specific http status code

On 12 Jul 2016 05:43, "Willy Tarreau" wrote: > That could possibly be ssh $host "halog -st < /var/log/haproxy.log" or > anything like this. On behalf of people running busy load balancers / edge proxies / etc, please don't do this ;-) Instead laptop$ halog -st <(ssh -C $balancer "cat /var/log/ha

A friend just gave you $10 to try DigitalOcean

Title: Subject Line (for proofing, doesn't show in actual email)