~ahasenack/ubuntu/+source/haproxy:disco-haproxy-1.8.19

Branch merges

Propose for merging

Merged into ubuntu/+source/haproxy:debian/sid at revision 9132c04263f1fc396ccd9481e598a444e2f20294

Christian Ehrhardt  (community): Approve on 2019-02-20

Canonical Server: Pending requested 2019-02-20

Diff: 112 lines (+71/-1)

4 files modified

debian/changelog (+17/-0)
debian/control (+2/-1)
debian/tests/control (+4/-0)
debian/tests/proxy-localhost (+48/-0)

api

Superseded for merging into ubuntu/+source/haproxy:ubuntu/devel

Canonical Server: Pending requested 2019-02-20

Diff: 1551 lines (+501/-163) (has conflicts)

35 files modified

CHANGELOG (+52/-0)
README (+1/-1)
VERDATE (+1/-1)
VERSION (+1/-1)
debian/changelog (+36/-0)
debian/control (+2/-1)
debian/tests/proxy-localhost (+4/-0)
doc/configuration.txt (+57/-43)
examples/haproxy.spec (+7/-1)
include/common/h2.h (+33/-0)
include/common/hpack-tbl.h (+1/-0)
include/common/xref.h (+5/-0)
include/proto/session.h (+2/-1)
include/proto/stream.h (+4/-2)
include/proto/stream_interface.h (+6/-0)
include/types/connection.h (+1/-0)
include/types/stream_interface.h (+19/-17)
scripts/announce-release (+2/-0)
src/action.c (+5/-0)
src/backend.c (+10/-8)
src/cache.c (+6/-2)
src/cfgparse.c (+52/-8)
src/checks.c (+4/-3)
src/flt_spoe.c (+42/-25)
src/haproxy.c (+1/-0)
src/hlua.c (+3/-3)
src/hpack-dec.c (+6/-0)
src/mux_h2.c (+48/-18)
src/proto_http.c (+4/-1)
src/sample.c (+7/-0)
src/server.c (+22/-26)
src/ssl_sock.c (+41/-0)
src/stream.c (+5/-1)
src/stream_interface.c (+8/-0)
src/tcp_rules.c (+3/-0)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

9132c04... by Andreas Hasenack on 2019-02-20

update-maintainer

1044ad9... by Andreas Hasenack on 2019-02-20

reconstruct-changelog

ebda99b... by Andreas Hasenack on 2019-02-20

merge-changelogs

e44336d... by Andreas Hasenack on 2019-01-24

    - d/t/control, d/t/proxy-localhost: simple DEP8 test to actually
      generate traffic through haproxy.
      [Updated to use "service" instead of "systemctl" to match what was
      submitted to Debian.]

bd3810b... by Apollon Oikonomopoulos <email address hidden> on 2019-02-12

Import patches-unapplied version 1.8.19-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3b885bfb277d04831405e979d38eac423793855c

New changelog entries:
  * New upstream version 1.8.19
    - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
    - BUG/MEDIUM: server: initialize the idle conns list after parsing the
                  config
    - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
    - BUG/MAJOR: stream: avoid double free on unique_id (Closes: #921981)

3b885bf... by Vincent Bernat on 2019-02-06

Import patches-unapplied version 1.8.18-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a1a84313d54570921ed9a0ecd52c2b23ec5e991e

New changelog entries:
  * New upstream version 1.8.18
    - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache
                 key
    - BUG/MAJOR: config: verify that targets of track-sc and stick rules
                 are present
    - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their
                 callers' processes

a1a8431... by Apollon Oikonomopoulos <email address hidden> on 2019-01-14

Import patches-unapplied version 1.8.17-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 03841ec1abca416beae02d073a361299c32e4418

New changelog entries:
  * New upstream version 1.8.17
    - BUG/MAJOR: stream-int: Update the stream expiration date in
      stream_int_notify()
    - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than
      the max
    - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
    - BUG/MEDIUM: cli: make "show sess" really thread-safe
    - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
  * Drop CVE-2018-20615.patch; merged upstream

03841ec... by Apollon Oikonomopoulos <email address hidden> on 2019-01-03

Import patches-unapplied version 1.8.16-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 987eb4465096f4b26df6c0c7b7ea32e7e6664147

New changelog entries:
  * Fix out-of-bounds read in HTTP2 mux (CVE-2018-20615).
    This would possibly lead to a crash in H2 HEADERS frame decoder when the
    PRIORITY flag is present, due to a missing frame size check.
  * Bump Standards-Version to 4.3.0; no changes needed.

987eb44... by Vincent Bernat on 2018-12-23

Import patches-unapplied version 1.8.16-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 30cfa33d534fba4654046868cfd4c193d9a52078

New changelog entries:
  * New upstream version 1.8.16.
    - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload
      in dns_validate_response()
    - BUG/MEDIUM: dns: overflowed dns name start position causing invalid
      dns error
  * d/rules: do not override CFLAGS, hijack DEBUG_CFLAGS for this instead.

30cfa33... by Apollon Oikonomopoulos <email address hidden> on 2018-12-14

Import patches-unapplied version 1.8.15-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6a4ce6b0331d661a0607ddad1d4af1d46aa9bcc0

New changelog entries:
  [ Vincent Bernat ]
  * d/rules: switch to pcre2. Closes: #911933.
  [ Apollon Oikonomopoulos ]
  * New upstream version 1.8.15
    - BUG: dns: Fix off-by-one write in dns_validate_dns_response() (
    - BUG: dns: Fix out-of-bounds read via signedness error in
      dns_validate_dns_response()
    - BUG: dns: Prevent out-of-bounds read in dns_read_name()
    - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
      (CVE-2018-20102, closes: #916308)
    - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
      (CVE-2018-20103, closes: #916307)
    - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer