upstream/haproxy
1
0
Fork 0
mirror of https://github.com/haproxy/haproxy.git synced 2026-04-22 23:02:34 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 12
24510 commits 20 branches 413 tags 231 MiB
Commit graph

235 commits

Author SHA1 Message Date
Ilia Shipitsin
7fc52032e3 CI: harden NetBSD builds by ERR=1 
Add ERR=1 build option to the NetBSD build from github.
 2024-08-05 08:49:19 +02:00
Ilia Shipitsin
15d47eda37 CI: add weekly QUIC Interop regression against AWS-LC 
currently only quic-go and picoquic clients are enabled.
Tests will be run weekly.
 2024-08-05 08:46:49 +02:00
Ilia Shipitsin
89bdd8b62a CI: weekly QUIC Interop: try to fix private image 
for some reason image built in HAProxy workflow is "private", it
is succesfully built, but fails to pull. Let's try explicit docker login
for run job as well
 2024-07-10 09:43:02 +02:00
Ilia Shipitsin
f8a30b69d2 CI: add weekly QUIC Interop regression against LibreSSL 
currently only quic-go and picoquic clients are enabled with testsuites
supposed to be "green". Tests will be run weekly.
 2024-07-05 15:11:21 +02:00
William Lallemand
5e361c7767 CI: github: do the AWS-LC weekly build with ERR=1 
The weekly CI that tries new version of AWS-LC was not building with
ERR=1, which let us think that everything was good but there was in fact
new warning that we missed.

Add ERR=1 to the build so the CI will failed for any new warning.
 2024-06-14 12:18:32 +02:00
William Lallemand
11e13175d4 CI: github: upgrade aws-lc to 1.29.0 
Upgrade aws-lc to 1.29.0 on the push CI.
 2024-06-14 11:37:11 +02:00
William Lallemand
935b3bd1b7 Revert "CI: github: upgrade aws-lc to 1.29.0" 
This reverts commit 6e986e7493.
 2024-06-13 17:14:58 +02:00
William Lallemand
6e986e7493 CI: github: upgrade aws-lc to 1.29.0 
Upgrade aws-lc to 1.29.0 on the push CI.
 2024-06-13 17:11:04 +02:00
Ilia Shipitsin
ab23d7eb69 CI: speedup apt package install 
we are fine to skip some repos like languages and translations.
this drops number of repos twice
 2024-06-03 11:59:07 +02:00
Ilia Shipitsin
f3e6dfdc92 CI: VTest: accelerate package install a bit 
let's check and install only package is required
 2024-05-30 17:04:08 +02:00
Ilia Shipitsin
09db70d021 CI: use USE_PCRE2 instead of USE_PCRE 
USE_PCRE2 is recommended, I guess USE_PCRE is left unintentionally
 2024-05-29 22:37:26 +02:00
Ilia Shipitsin
11c088e203 CI: switch to lua 5.4 
current release is 5.4, let's switch to it
 2024-05-29 22:37:26 +02:00
Ilia Shipitsin
01c213a4bb CI: use "--no-install-recommends" for apt-get 
this reduces number of packages installed by 1
 2024-05-29 22:37:26 +02:00
William Lallemand
40cd5cc0e2 CI: github: upgrade the WolfSSL job to 5.7.0 
WolfSSL 5.70 was released in March 2024,  let's upgrade our CI job to
this version.
 2024-05-28 19:26:52 +02:00
Ilia Shipitsin
cbe78c0281 CI: drop asan.log umbrella completely 
asan.log redirection appeared to work poorly, let's cease that practice
for good.

ML: https://www.mail-archive.com/haproxy@formilux.org/msg44844.html
 2024-05-13 11:36:36 +02:00
Ilia Shipitsin
05ecba0813 CI: netbsd: limit scheduled workflow to parent repo only 
it is not very useful for most of forks.
 2024-05-06 08:26:14 +02:00
Ilia Shipitsin
fab5a23731 CI: add Illumos scheduled workflow 
this is very initial build only implementation.
 2024-05-06 08:26:05 +02:00
Ilia Shipitsin
48ae9fe8a4 CI: netbsd: adjust packages after NetBSD-10 released 
pcre2 is installed already, installing it from packages lead to
conflict. curl is installed as a preparation for VTest
 2024-05-03 09:01:36 +02:00
William Lallemand
378d500caf REGTESTS: use -dI for insecure fork by default in the regtest scripts 
Let's remove the CI HAPROXY_ARGS setting and set -dI for anything run
with the run-regtests.sh.
 2024-04-22 16:15:57 +02:00
Ilya Shipitsin
76f56a39be CI: modernize macos matrix 
let's stick to macos-13 for stable branches and macos-14 for development branches.
since macos-14 is available for Apple Silicon, some modifications are required
for VTest (should be ported to VTest later)

news: https://github.blog/changelog/2024-01-30-github-actions-macos-14-sonoma-is-now-available/
 2024-04-19 17:37:24 +02:00
Ilya Shipitsin
2bb9e3bd06 CI: reduce ASAN log redirection umbrella size 
previously ASAN_OPTIONS=log_path=asan.log was intended for VTest
execution only, it should not affect "haproxy -vv" and hsproxy
config smoke testing
 2024-04-17 11:14:44 +02:00
Ilya Shipitsin
b5dd8b466e CI: revert kernel addr randomization introduced in 3a0fc864 
It has been resolved on image generation side:
https://github.com/actions/runner-images/issues/9491

It is no harm to keep it on our side as well, but we can drop it.
 2024-04-13 14:43:36 +02:00
Willy Tarreau
ac73a23454 BUILD: makefile: also drop DEBUG_CFLAGS 
This one is often used as a gateway to inject regular CFLAGS, even though
not designed for this. It's now ignored, but any attempt at setting it
reports a warning suggesting to use CFLAGS or ARCH_FLAGS instead.
 2024-04-11 17:33:28 +02:00
Willy Tarreau
88c151f9ca BUILD: makefile: drop the ARCH variable and better document ARCH_FLAGS 
ARCH_FLAGS was always present and is documented as being fed to both
CC and LD during the build. This is meant for options that need to be
consistent between the two stages such as -pg, -flto, -fsanitize=address,
-m64, -g etc. Its doc was lacking a bit of clarity though, and it was
not enumerated in the makefile's variables list.

ARCH however was only documented as affecting ARCH_FLAGS, and was just
never used as the only two really usable and supported ARCH_FLAGS options
were -m32 and -m64. In addition it was even written in the makefile that
it was CPU that was affecting the ARCH_FLAGS. Let's just drop ARCH and
improve the documentation on ARCH_FLAGS. Again, if ARCH is set, a warning
is emitted explaining how to proceed.

ARCH_FLAGS is now preset to -g so that we finally have a correct place
to deal with such debugging options that need to be passed to both
stages. The fedora and musl CI workflows were updated to also use it
instead of sticking to duplicate DEBUG_CFLAGS+LDFLAGS.

It's also worth noting that BUILD_ARCH was being passed to the build
process and never used anywhere in the code, so its removal will not
be noticed.
 2024-04-11 17:33:28 +02:00
Willy Tarreau
8194499bec BUILD: makefile: move -O2 from CPU_CFLAGS to OPT_CFLAGS 
CPU_CFLAGS is meant to set the CPU-specific options (-mcpu, -march etc).
The fact that it also includes the optimization level is annoying because
one cannot be set without replacing the other. Let's move the optimization
level to a new independent OPT_CFLAGS that is added early to the list, so
that other CFLAGS (including CPU_CFLAGS) can continue to override it if
necessary.
 2024-04-11 17:25:45 +02:00
Willy Tarreau
6b6a6ad431 CI: update the build options to get rid of unneeded DEBUG options 
Now that DEBUG_STRICT and DEBUG_MEMORY_POOLS are the default, we can
drop them from the build options.
 2024-04-11 17:25:45 +02:00
Ilya Shipitsin
ba1a0559e4 CI: extend Fedora Rawhide, add m32 mode 
hopefully it will allow to catch regressions like this
https://github.com/haproxy/haproxy/commit/e41638a
 2024-04-04 08:59:34 +02:00
Ilya Shipitsin
9dd9289cec CI: vtest: show coredumps if any 
if any coredump	is found, it is	passed to gdb with
'thread apply all bt full'
 2024-04-02 07:29:08 +02:00
Ilia Shipitsin
3a0fc8641b CI: temporarily adjust kernel entropy to work with ASAN/clang 
clang runtime (shipped with clang14) is not compatible with recent
Ubuntu kernels

more details: https://github.com/actions/runner-images/issues/9491
 2024-03-18 19:54:33 +01:00
William Lallemand
9c2e900a9b CI: github: add -dI to haproxy arguments 
-dI is useful when running with ASAN, allow to fork addr2line
 2024-03-13 11:23:14 +01:00
William Lallemand
bb25ee7b26 CI: github: add -DDEBUG_LIST to the default builds 
Add the -DDEBUG_LIST flag which allow to check if a list element was
removed twice.
 2024-03-13 09:01:11 +01:00
Ilya Shipitsin
e3af7f832c CI: skip scheduled builds on forks 
tracking bleeding edge changes with some rare platforms or modern
compilers on scheduled basis is not what usually forks do. let's
skip by default in forks, if some fork is interested, it might be
enabled locally
 2024-03-05 11:50:34 +01:00
Ilya Shipitsin
6142a3fad7 CI: enable monthly build only test on netbsd-9.3 
it is interesting to try https://github.com/vmactions/netbsd-vm actions
 2024-03-05 11:50:34 +01:00
Ilya Shipitsin
6b54a7b65e CI: run more smoke tests on config syntax to check memory related issues 
config syntax check seems add a value on testing code path not
covered by VTest, also checks are very fast
 2024-03-05 11:50:34 +01:00
Tim Duesterhus
4559470728 CI: Update to actions/cache@v4 
No functional change, but this upgrade is required, due to the v3 runtime being
deprecated:

> Node.js 16 actions are deprecated. Please update the following actions to use
> Node.js 20: actions/cache@v3. For more information see:
> https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
 2024-02-10 05:12:20 +01:00
Ilya Shipitsin
7b881003b1 CI: github: abandon asan matrix.py helper 
that helper was useful in days when we beleived that gcc and clang
require different flags. those days are gone.
 2024-02-07 11:05:28 +01:00
Willy Tarreau
98291440b8 Revert "CI: enable spell check on git push" 
This reverts commit 413aa6e2e9.

It reports failures that neither the patch's author nor the committer
are able to check for before pushing, causing an excess of failure
reports that can hardly be acted upon. We need to find a better
solution, let's revert it for now.
 2024-01-26 19:58:14 +01:00
Ilya Shipitsin
413aa6e2e9 CI: enable spell check on git push 2024-01-26 17:30:03 +01:00
Ilya Shipitsin
4bdfd2ebc9 CI: extend spell check white list 
siz - seen in src/debug.c
EXPERIM - seen in src/cli.c
 2024-01-26 17:29:27 +01:00
William Lallemand
8a7c0360f3 CI: github: update wolfSSL to 5.6.6 
Update wolfSSL to 5.6.6
 2024-01-12 17:48:22 +01:00
Ilya Shipitsin
07dc373163 CI: codespell: add more words to whitelist 
"Collet" is "Yann Collet" - a developer of xxhash
"bu" is variable name in src/sock_unix.c
"htmp" is variable name in src/quic_retransmit.c
 2024-01-12 08:34:53 +01:00
Ilya Shipitsin
128490f183 CI: codespell: ignore some words in URLs 
"trafic,ressources" are found in URIs, due to
https://github.com/codespell-project/actions-codespell/issues/55 we cannot use
wildcard for exclusion, let start with fixed list
 2024-01-12 08:34:53 +01:00
Ilya Shipitsin
e6d0b87f7f CI: use semantic version compare for determing "latest" OpenSSL 
currently "openssl-3.2.0-beta1" wins over "openssl-3.2.0" due to
string comparision. let's switch to semantic version compare
 2024-01-02 10:23:40 +01:00
William Lallemand
1a19e4e7af CI: github: switch to wolfssl git-c4b77ad for new PR 
The "dynamic-certs-n-ciphers" PR was just merged, lets build the wolfssl
git instead of the 5.6.4 version, so we could test the feature.
 2023-12-08 12:08:22 +01:00
Ilya Shipitsin
63957b7c87 CI: limit codespell checks to main repo, not forks 2023-11-23 16:23:14 +01:00
William Lallemand
20726b43aa CI: github: update wolfSSL to 5.6.4 
Update wolfSSL to the 5.6.4 released version.
 2023-11-03 18:50:45 +01:00
William Lallemand
cc743b698f CI: github: add awslc 1.16.0 to the push CI 
Add a awslc 1.16.0 to the push CI. Since this is a fixed version it
shouldn't cause problems.
 2023-10-11 11:38:27 +02:00
William Lallemand
5fa7bf207e CI: github: update wolfssl to git revision d83f2fa 
WolfSSL 5.6.3 does not pass all the haproxy reg-tests since some fixes
are still unreleased in the master branch.

Build wolfSSL with a recent git revision to have passing reg-tests.
 2023-10-11 11:25:00 +02:00
William Lallemand
160615e574 CI: github: add a wolfssl entry to the CI 
Add a build with wolfssl 5.6.3 to the github CI.
 2023-10-11 11:24:40 +02:00
William Lallemand
aaa326b571 CI: github: add USE_QUIC=1 to aws-lc build 
Feature are limited but aws-lc can now build with USE_QUIC=1.
 2023-10-04 17:03:34 +02:00
Ilya Shipitsin
d89734bcc5 CI: musl: drop shopt in workflow invocation 
"shopt" is bash specific, while musl uses bourne shell.

/__w/_temp/1b0f5f5d-c71b-4a66-8be3-e1fe51c10993.sh: line 7: shopt: not found
 2023-09-08 19:05:04 +02:00
Ilya Shipitsin
8382d71808 CI: musl: highlight section if there are coredumps 
previously, section was collapsed, thus it was harder to find that
there's something to look at
 2023-09-08 19:05:04 +02:00
Tim Duesterhus
5c923f1869 CI: Update to actions/checkout@v4 
No functional change, but we should keep this current.

see 5f4ddb54b0
 2023-09-06 17:46:02 +02:00
Andrew Hopkins
06d36913bd CI: github: Add a weekly CI run building with AWS-LC 
Use determine_latest_aws_lc() from matrix.py to always test with
the latest release of AWS-LC. Run the common "default,bug,devel"
tests.
 2023-09-06 13:41:36 +02:00
Andrew Hopkins
b2a7840a28 CI: Update matrix.py so all code is contained in functions. 
Refactor matrix.py so all the logic is contained inside either
helper functions or a new main function. Run the new main function
by default. This lets other GitHub actions use functions in the
python code without generating the whole matrix.
 2023-09-06 13:41:36 +02:00
Andrew Hopkins
4f77690366 CI: add support to matrix.py to determine the latest AWS-LC release 
Refactor the existing OpenSSL tag parsing logic to share some of GitHub
tag logic. OpenSSL and AWS-LC don't follow the same naming convention so
each library has it's own sorting logic.
 2023-09-06 13:41:36 +02:00
Ilya Shipitsin
28e94c6192 CI: fedora: fix "dnf" invocation syntax 
In 39e205302e I erroneously used
"dnf git" instead of "dnf install"
 2023-08-25 09:31:09 +02:00
Ilya Shipitsin
54cafa908d CI: get rid of travis-ci wrapper for Coverity scan 
historically coverity scan was performed by travis-ci script, let us
rewrite it in bash
 2023-08-10 08:01:17 +02:00
Ilya Shipitsin
39e205302e CI: do not use "groupinstall" for Fedora Rawhide builds 
Fedora Rawhide migrated to dnf5, which does not support "groupinstall"
 2023-08-10 08:01:17 +02:00
Ilya Shipitsin
f7dcceccc9 CI: explicitely highlight VTest result section if there's something 
it turned out that people miss VTest result section because it is not highlighted,
let us fix that
 2023-07-17 15:56:53 +02:00
Ilya Shipitsin
ddedefcaaa CI: add naming convention documentation 
branches "haproxy-" stand for stable branches, otherwise development
 2023-07-17 15:56:52 +02:00
Ilya Shipitsin
8a46f98615 CI: drop Fedora m32 pipeline in favour of cross matrix 
Fedora m32 monthly was introduced before cross matrix. Actually,
many of cross builds are 32 bit, no need to keep dedicated Fedora
definition
 2023-05-17 14:57:10 +02:00
Ilya Shipitsin
5414d82ce5 CI: enable monthly Fedora Rawhide clang builds 
that was temporarily disabled due to
https://github.com/haproxy/haproxy/issues/1868

we are unblocked, let us enable clang in matrix
 2023-05-13 17:42:32 +02:00
Ilya Shipitsin
ed79a27a91 CI: more granular failure on generating build matrix 
when some api endpoints used for determine latest OpenSSL, LibreSSL
are unavailable, fail only those builds, not entire matrix
 2023-05-08 14:05:44 +02:00
Ilia Shipitsin
156c4b3439 CI: switch to Fastly CDN to download LibreSSL 
OpenBSD ftp is down, let us switch to mirror
 2023-04-26 18:41:03 +02:00
Ilya Shipitsin
edfa7c99e9 CI: extend spellchecker whitelist, add "clen" as well 
"clen" is all around the code, since codespell cannot distingush
variables names, let us ignore it
 2023-04-23 09:44:53 +02:00
Ilya Shipitsin
ea5a5e6feb CI: enable monthly test on Fedora Rawhide 
Fedora Rawhide is shipped with the most recent compilers, not yet released with
more conservative distro. It is good to catch compile errors on those compilers.
 2023-04-14 10:05:32 +02:00
Ilya Shipitsin
86a40f5de9 CI: bump "actions/checkout" to v3 for cross zoo matrix 
actions/checkout@v2 is deprecated, accidently it was not updated in our
build definition
 2023-04-14 10:05:09 +02:00
Ilya Shipitsin
d481ed3fa0 CI: exclude doc/{design-thoughts,internals} from spell check 
as those directories do contain many documents written in French,
codespell is catching a lot of false positives scanning them.
 2023-04-01 18:34:10 +02:00
Ilya Shipitsin
7e6e0388d6 CI: run smoke tests on config syntax to check memory related issues 
config syntax check seems add a value on testing code path not
covered by VTest, also checks are very fast
 2023-04-01 18:30:52 +02:00
Tim Duesterhus
081091187e CI: Reformat matrix.py using black 
The initial version of matrix.py was formatted using `black` [1], but with all
the later changes, the formatting diverged quite a bit. This patch reformats
the script using black, fixing the indentation of some statements and
shortening overlong lines.

[1] https://github.com/psf/black
 2023-01-03 16:28:34 +01:00
Tim Duesterhus
e327e41430 CI: Explicitly check environment variable against None in matrix.py 
For consistency with `GITHUB_OUTPUT` at the bottom.
 2023-01-03 16:28:34 +01:00
Tim Duesterhus
96e03e1a89 CI: Unify the GITHUB_TOKEN name across matrix.py and vtest.yml 
This makes naming a little clearer in matrix.py, because the name matches the
name of the actual secret.
 2023-01-03 16:28:34 +01:00
Tim Duesterhus
fd7931e7f3 CI: Use proper if blocks instead of conditional expressions in matrix.py 
For complex expressions, such as the ones modified, the condition expression is
much less readable, especially with the actual condition in the middle of the
"then" and "else" part.
 2023-01-03 16:28:34 +01:00
Tim Duesterhus
fcc21be922 CI: Add in-memory cache for the latest OpenSSL/LibreSSL 
These functions were previously called once per compiler. Add the `lru_cache`
decorator to only perform one HTTP request each.
 2023-01-03 16:28:34 +01:00
Tim Duesterhus
3c9b6f6394 CI: Improve headline in matrix.py 
Since 4a04cd35ae (CI: github: split ssl lib
selection based on git branch) the branch, instead of the workflow type is
passed. The headline should reflect that.
 2023-01-03 16:28:34 +01:00
William Lallemand
61839b098d CI: github: use the GITHUB_TOKEN instead of a manually generated token 
Github allows to use a auto generated GITHUB_TOKEN so we don't need to
handle the token in the secret configuration.

https://docs.github.com/en/actions/security-guides/automatic-token-authentication#about-the-github_token-secret
 2022-12-23 15:19:25 +01:00
Ilya Shipitsin
6fbc35f473 CI: github: enable github api authentication for OpenSSL tags read 
github api throttles requests with no auth, thus we can enable
GITHUB_API_TOKEN env variable. if not set, current behaviour is kept
 2022-12-22 17:36:32 +01:00
Ilya Shipitsin
f5994fc692 CI: github: split matrix for development and stable branches 
ML ref: https://www.mail-archive.com/haproxy@formilux.org/msg42934.html

we agreed to use "latest" images for development branches and fixed
images for stable branches

Can be backported to 2.6.
 2022-12-14 15:29:42 +01:00
Ilya Shipitsin
6dedeb70da CI: github: remove redundant ASAN loop 
it was there because we only ran ASAN for clang, now no need to separate loop

Can be backported to 2.6.
 2022-12-14 15:29:20 +01:00
William Lallemand
2cb1493748 CI: github: set ulimit -n to a greater value 
Set ulimit -n to 65536 to limit less the maxconn computation.

Could be backported at least to 2.5.
 2022-12-14 00:31:19 +01:00
Ilya Shipitsin
4a04cd35ae CI: github: split ssl lib selection based on git branch 
when *SSL_VERSION="latest" behaviour was introduced, it seems to be fine
for development branches, but too intrusive for stable branches.

let us limit "latest" semantic only for development builds, if branch name
contains "haproxy-" it is supposed to be stable branch, no latest openssl
should be taken

[wla: must be backported as far as 2.6]
Signed-off-by: William Lallemand <wlallemand@haproxy.org>
 2022-12-12 16:20:48 +01:00
William Lallemand
393e4e4dd1 CI: github: reintroduce openssl 1.1.1 
OpenSSL 1.1.1 is not tested anymore since github updated "ubuntu-latest"
to 22.04, let's reintroduce this version.
 2022-12-12 08:52:03 +01:00
Willy Tarreau
a051816c03 CI: emit the compiler's version in the build reports 
Some occasional builds fail only on a specific platform and being able
to figure the exact compiler version used there is crucial. It's not
easy to guess from the rest of the output, so let's add it before the
platform-specific defines, which suit the same needs.
 2022-11-14 11:14:02 +01:00
Ilya Shipitsin
6397c7c55f CI: enable QUIC for LibreSSL builds 
since LibreSSL-3.6.x supports QUIC, let us enable it
 2022-11-07 07:49:11 +01:00
Ilya Shipitsin
70b2c72687 CI: switch to the "latest" LibreSSL 
LibreSSL-3.6.0 had some regression, it was fixed in 3.6.1, let us
switch back to the latest LibreSSL available
 2022-11-07 07:49:07 +01:00
Ilya Shipitsin
5526f922af CI: add monthly gcc cross compile jobs 
Build only gcc cross compile jobs are added with monthly run to catch
rare errors, mostly 32bit <--> 64bit
 2022-10-30 17:17:43 +01:00
William Lallemand
6435801d09 CI: github: dump the backtrace of coredumps in the alpine container 
This patch allows to show the backtrace of a coredump produced in the
alpine/musl jobs.

It activates some option required by the containers to allow the
production of coredump, set a shared directory so the kernel could dump
the coredump within the container. Some debug packages were also added.
 2022-10-21 09:21:33 +02:00
Tim Duesterhus
b87ecbb179 CI: Replace the deprecated ::set-output command by writing to $GITHUB_OUTPUT in workflow definition 
See "CI: Replace the deprecated `::set-output` command by writing to
$GITHUB_OUTPUT in matrix.py" for the reasoning behind this commit.
 2022-10-14 19:50:34 +02:00
Tim Duesterhus
8a03bf4052 CI: Replace the deprecated ::set-output command by writing to $GITHUB_OUTPUT in matrix.py 
As announced in

https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

the `::set-output` command is deprecated, because processes during the workflow
execution might output untrusted information that might include the
`::set-output` command, thus allowing these untrusted information to hijack the
build.

The replacement is writing to the file indicated by the `$GITHUB_OUTPUT`
environment variable.
 2022-10-14 19:50:34 +02:00
Ilya Shipitsin
b65fd66666 CI: SSL: temporarily stick to LibreSSL=3.5.3 
recently released 3.6.0 introduced some regression which must be
resolved first, let us use 3.5.3 notation instead of "latest"
 2022-10-13 08:53:27 +02:00
Ilya Shipitsin
14711bdc9a CI: SSL: use proper version generating when "latest" semantic is used 
both "OPENSSL_VERSION=latest" and "LIBRESSL_VERSION=latest" processing
introduced errors when build-ssl.sh script was invoked. that error
in turn led to skipping custom openssl build and haproxy was linked against
stock openssl, i.e. openssl-1.1.1
 2022-10-13 08:53:11 +02:00
Ilya Shipitsin
4c785f0a1f CI: enable weekly "m32" builds on x86_64 
this is build only workflow, catches potential "size_t" mismatches
--
v2 job name added, various markup changes
 2022-08-06 17:10:16 +02:00
Ilya Shipitsin
cfba1f93af CI: re-enable gcc asan builds 
for some unclear reasons asan builds were limited to clang only. let us
enable them for gcc as well
 2022-07-04 17:28:58 +02:00
Ilya Shipitsin
7b893c2c6b CI: determine actual OpenSSL version dynamically 
this change introduce "OPENSSL_VERSION=latest" semantic, which scans
https://api.github.com/repos/openssl/openssl/tags and detects latest release.
 2022-05-20 23:26:48 +02:00
Ilya Shipitsin
94cd779a4f CI: determine actual LibreSSL version dynamically 
this change introduce "LIBRESSL_VERSION=latest" semantic, which scans
http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/ and detects latest release.

LIBRESSL_VERSION=2.9.2 is removed from the matrix.
 2022-05-14 17:30:15 +02:00
Ilya Shipitsin
0a802114e0 CI: dynamically determine actual version of h2spec 
previously we used hardcoded h2spec version. let us switch to
the latest available
 2022-05-08 11:01:58 +02:00
Ilya Shipitsin
c89dec3dc8 CI: github actions: update LibreSSL to 3.5.2 
LibreSSL-3.5.2 was released on Apr 23nd 2022, let us switch to it
 2022-04-30 14:12:51 +02:00
William Lallemand
c24ac4339c CI: github actions: disable -Wno-deprecated 
The deprecrated code is now disabled by default, so we can build with
quictls and openssl 3.0 without this option.
 2022-04-11 19:05:03 +02:00
Tim Duesterhus
538d8fe8b7 CI: Update to actions/cache@v3 
No functional changes for our use case, but we should keep this current.
 2022-04-11 07:13:24 +02:00