SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for apache-trafficserver-plugin-header_rewrite-devel-9.2.4-proxy.1.6.x86_64.rpm :

* Thu Oct 12 2023 linnaea - Update to 9.2.3
* #9572 - Add logic to make the server.policy and server.properties settings reloadable
* #10149 - Fix the libloader plugin makefile.
* #10170 - cache_range test performance improvement
* #10176 - Strictly follow Content-Length header ABNF rule (#10144)
* #10180 - clang-analyzer fixes for clang14 (#10055)
* #10183 - 9.2.x: Make sure that the thread local time is updated timely (#10163)
* #10188 - Fixes a problem which can decrement milestone metrics unintentionally
* #10247 - Python 3.12: microserver.test.ext wrap_socket update
* #10256 - Python 3.12: add h2 dependencies to autest Pipfile
* #10257 - Python 3.12: Make autest regex strings raw strings
* #10266 - Python 3.12: add charset-nomalizer to tests/Pipfile
* #10285 - Fix slice head request memory issue
* #10286 - Abort a read when the disk is known to be bad
* #10287 - Fix a crash due to bad disks
* #10304 - Preserve unmapped url regardless of need for remapping
* #10324 - Add TSVConnFdGet api
* #10386 - Don\'t set port number as part of hostname
* #10389 - 9.2.x: Proxy Verfier Upgrade to v2.10.1
* #10391 - tls_verify4: Use traffic_manager for config reload
* #10399 - Fix use-after-free issue
* #10480 - Fix the SNI and HOST parsing properly
* #10564 - Add an HTTP/2 related rate limiting
* #10566 - s3_auth: Fix hash calculation
* #10568 - Reallocate a buffer for H2 header block only if needed
* #10571 - APIs to get the h2 error codes and a plugin to use them
* #10573 - Add support for vconn start handler in lua plugin
* Fri Aug 04 2023 Linnaea Lavia - Update to 9.2.2
* #9544 - Docs: format typos in header_rewrite doc
* #9754 - Fix OCSP detection during build (9.2.x)
* #9829 - Add TSHttpTxnNextHopPortGet, add NEXT-HOP to header rewrite
* #9831 - Allow slice plugin to purge requests
* #9840 - Fix crash on config reload with BoringSSL
* #9877 - Do not add content-length for status 204 cache
* #9879 - doc: fix the internal libraries section formatting
* #9886 - Fix deprecated set_class for documentation build
* #9943 - Add yaml libs reference to HTTP proxy test suite.
* #9944 - Fix clang-format for 9.2.x branch
* #9952 - 92x autest updates
* #9959 - 9.2.x: OpenSSL 3.0 tls autest updates (#9947)
* #9971 - Update to autest version 1.10.3
* #9976 - fix: require RSRC_CLIENT_REQUEST_HEADERS in ConditionMethod
* #9989 - Do not set AATTSECLEVEL with boringssl
* #10038 - LSan: Fix leaks of Cache Unit Test
* #10054 - Demote SSL log line to debug and remove key printing
* #10093 - tools/check-unused-dependencies: make exceptions for tools under clang+asan
* #10103 - autest get_port: update to use psutil
* #10105 - Update autest to the latest 1.10.4
* #10107 - Fix ports.py type hint for sets on older Python
* #10124 - Fix DbgCtl reference that got cherry-picked into 9.2.x
* #10125 - Remove duplicate slashes at the beginning of the incoming URL
* #10127 - 9.2.x: Correctly handle encoding for cache hash generation
* #10131 - 9.2.x: Fix a crash triggered by invalid range header- Refreshed patch: apache-trafficserver8-remove-bundled-yamlcpp.patch
* Mon Jul 03 2023 Linnaea Lavia - Update to 9.2.1
* #9184 - TSan: Make Thread::cur_time thread local
* #9238 - Add slice config to strip Range header for HEAD requests
* #9286 - Skip dns_host_down autest from 9.2.x branch
* #9300 - Fixed issue with SDK_API_HttpParentProxySet_Fail regression test
* #9303 - Issue 9274: read-while-writer readers can\'t find fragment inserted
* #9306 - Updated warning message for adding duplicated remap entries
* #9307 - AuTests: update to Proxy Verifier v2.6.0
* #9316 - Update rtd-theme to the latest version
* #9325 - glibc 2.37 requires additional explicit includes
* #9326 - ppc64 stack grows down, so it can be re-enabled as a supported arch
* #9328 - s3_auth: Schedule reloading config event on TASK thread
* #9329 - s3_auth: Fix assertion failure of TSActionCancel
* #9330 - Don\'t send response body on status 204 No Content
* #9333 - Make 204 cacheable again
* #9337 - s3_auth autest: convert from gold file to file contains
* #9339 - Revert PRs 7667 and 7807
* #9387 - Update h2disable tests for new curl output
* #9430 - On arm64 macOS, do not use pagezero linker flag when using luajit
* #9444 - Fix SSLSessionDup for old OpenSSL and BoringSSL
* #9445 - Stabilize autest for traffic_dump
* #9450 - Stabilize autest for tls_check_cert_selection_reload
* #9453 - Fix parameter parser in ssl_hook_test plugin
* #9454 - Stabilize autest tls_hook18
* #9455 - Run autest tls_hooks17 and tls_hooks18 on BoringSSL build
* #9464 - Adds a --enable-lto option (Link Time Optimization)
* #9468 - Fixed documentation issue with xdebug plugin to be a literal block
* #9473 - Use deprecated OpenSSL APIs for MD5 and SHA256 if available (#9469)
* #9480 - Slight performance improvements before calling APIHooks::clear
* #9491 - Adds a new percentage option, cleans up pressure calculations
* #9494 - Properly support multiple instantiation in plugins.config
* #9508 - 9.2.x: http2_flow_control.test.py: Correctly enable debug logs
* #9525 - Fix compile warning on BoringSSL build
* #9534 - (backport) Fixes silent header duplication and early loop termination that occurs upon successful revalidation when duplicate headers are present
* #9544 - Docs: format typos in header_rewrite doc
* #9546 - Fix a build issue with the latest BoringSSL
* #9554 - Make magick plugin buildable with BoringSSL
* #9579 - Enable loading invalid SSL configuration on first load.
* #9626 - Doc: document IP allow filter for remap.
* #9639 - HttpSM: fix no_dns_forward_to_parent for cache stale (92x)
* #9640 - 9.2.x: Fix clang 16 92x warnings
* #9641 - 9.2.x Stabilize 92x emergency and fatal autests
* #9646 - (Backport)Fix debian symbol not found for test_HttpTransact
* #9647 - 9.2.x: Fix an error on SSL config reload (plus some cleanup). (#9334)
* #9653 - 9.2.x: Autest updates for recent versions of curl
* #9660 - Try to do less work in hot function HttpHookState::getNext
* #9671 - Stabilize autest tls_hooks17
* #9691 - Check the calling thread of Ethread::schedule_local
* #9699 - Reload hosting.config on TASK thread
* #9722 - Fix ttmsh log field
* #9764 - parent_select plugin: look in ats config dir for yaml config if path is relative
* #9779 - s3_auth: Fix hash calculation
* #9785 - 9.2.x: Add back push_method_enabled enforcement
* #9788 - Deny the TRACE method by default
* Mon Jan 30 2023 Linnaea Lavia - Update to 9.2.0
* New feature: Log throttling settings
* New feature: Create and manage pre-warmed TLS tunnels
* New feature: SNI value for the TLS connection to the origin can be overridden
* New feature: Remap rule inspector
* Parent Selection Improvements
* New experimental plugin http_stats- Refreshed patches:
* apache-trafficserver8-remove-bundled-yamlcpp.patch
* apache-trafficserver9-ignore-cycle-check-on-tr-conn.patch- New patch: apache-trafficserver9-localhost-is-always-self.patch In build environment \"localhost\" is not necessarily the name returned by getnameinfo(127.0.0.1) This confuses the server into believing that \"localhost\" is not the local host Fixed by hardcoding \"localhost\" into Machine ID.
* Sun Jan 01 2023 Linnaea Lavia - Transparent mode loop detection patch is reverted as the upstream fix is incomplete.- Update to 9.1.4
* #8232 - Updates yaml-cpp to 0.7.0
* #8806 - Modifying array outside bounds
* #8837 - Add compatibility define when building with OpenSSL3
* #8838 - mkdfa.c is not being used and doesn\'t compile with gcc 12.1.1
* #8909 - Move HKDF to OpenSSL 3 interfaces
* #9033 - 9.1.x: Fix a couple compiler warnings
* #9034 - 9.1.x: Update Proxy Verifier to v2.4.1
* #9100 - Validate request-target
* #9135 - 9.1.x: Fix GCC 12 compiler warnings
* #9242 - drain request body on cache noop action
* #9243 - authproxy: Handle WRITE_READY event
* #9248 - [9.1.x] Change Content-Type to text/plain if xdebug modifies response body
* Thu Aug 11 2022 Linnaea Lavia - Replaced transparent mode loop detection patch with upstream fix.
* Wed Aug 10 2022 Michael Ströder - removed obsolete apache-trafficserver-catch-2-13-7.patch- Update to 9.1.3
* #8191 - Fix error connection logging crash
* #8231 - Upgrade Catch.hpp to v2.13.7
* #8362 - remap_stats: convert to using TSHttpTxnPristineUrlGet and TSHttpTxnClientReqGet
* #8439 - Fix Multiplexer POST Body Handling
* #8480 - Update HostDBContinuation timeout handling to clear pending queue.
* #8524 - Set an appropriate callback function for OpenSSL 3
* #8589 - SNIConfig: tunnel_route - Change the way we extract matched subgroups from the servename
* #8608 - Update to Proxy Verifier version v2.3.0
* #8611 - Removes hard dependency on having perl installed to build
* #8683 - Upgrade Catch to v2.13.8
* #8687 - Reuse TSMutex for ts_lua_http_intercept_handler
* #8729 - Address issues with python 3.10
* #8736 - [ink_base64] Fix buffer size computation
* #8753 - Update to proxy-verifier-v2.3.1
* #8764 - Lua plugin memory leak on remap configuration reloads
* #8765 - Fixing the httpbin AuTests by pinning Werkzeug
* #8773 - Pin Jinja2 for doc builds
* #8786 - include for access to C-string operations
* #8814 - 9.1.x: Unit test compiler and library run time fixes
* #8822 - Fixes leak of ssl_ocsp_response_path_only on reload
* #8841 - Fixes leak in SNIAction name globbing (#8827)
* #8842 - Fixes leak of sni config filename on load (#8821)
* #8843 - Fix leaks in ConfigManager::configName (#8269)
* #8868 - Update to Proxy Verifier v2.3.3
* #8899 - Do not modify Transfer-Encoding header on retry
* #8901 - uri_signing plugin: Fix missing payload validation for the iss field.
* #8926 - Allows errors from plugin initialization to bubble up
* #9006 - 9.1.x: Add back validatation that the scheme matches the wire protocol
* #9016 - [9.1.x] Backport HTTP Validations
* Thu Mar 17 2022 Linnaea Lavia - Update to 9.1.2
* Fri Nov 05 2021 Linnaea Lavia - Update to 9.1.1- Specfile updated to support building for EL8- 1 upstream patch:
* apache-trafficserver-textview-ub.patch Running over the end of TextView results in UB in MIME parsing
* Thu Sep 23 2021 Linnaea Lavia - The following hardening directives has been enabled in unit file:
* ProtectSystem: full
* ProtectHome: yes
* PrivateDevices: yes
* PrivateTmp: yes
* ProtectKernelTunables: yes
* ProtectKernelModules: yes
* ProtectControlGroups: yes
* RestrictRealtime: yes
* MemoryDenyWriteExecute: yes- On Leap 15.3 and Tumbleweed, further hardening is enabled:
* DynamicUser: yes
* ProtectHostname: yes
* ProtectClock: yes
* ProtectKernelLogs: yes
* LockPersonality: yes
* RestrictSUIDSGID: yes- Due to hardening, installations using block device(s) for cache storage will fail silently, installations using transparent proxying will no longer start. Configuration update via `traffic_ctl config set` will no longer be persistent. See /etc/systemd/system/apache-trafficserver.service.d/00-relax-hardening.conf- 1 upstream patch:
* apache-trafficserver-catch-2-13-7.patch: Upgrade catch.hpp to v2.13.7, resolves test failures on Factory
* Thu Aug 19 2021 Linnaea Lavia - Specfile update: mark config files noreplace
* Thu Aug 19 2021 Linnaea Lavia - Specfile update:
* header_rewrite plugin split out as it pulls maxmind db libs
* Lua and esi/combo_handler plugin are no longer experimental
* sort plugin file list
* Wed Aug 18 2021 Linnaea Lavia - Update to 9.1.0
* Upstreamed patches removed: apache-trafficserver9-LogUtils2-test-remove-duplicate-BWF.patch apache-trafficserver9-docs-remove-deprecated-sphinx-gettext_lazy.patch
* Patches refreshed: apache-trafficserver9-docs-remove-git.patch apache-trafficserver9-docs-sys-plantuml.patch
* 1 new patch: apache-trafficserver9-docs-split-manpages.patch Split document into man pages
* Renamed package: apache-trafficserver-plugin-WebpTransform - > apache-trafficserver-plugin-webp_transform Plugin WebpTransform has been renamed webp_transform
* New plugins in apache-trafficserver-plugins-experimental: cache_fill, icap, rate_limit- Specfile update:
* Removed stuff related to openSUSE <= 13.2
* Replace %setup + %patch with %autosetup
* Tag %license
* Thu Jul 29 2021 Linnaea Lavia - Factory changed MoonJIT back to LuaJIT, update BuildRequires
* Sun Jul 18 2021 Linnaea Lavia - Update to 9.0.2
* apache-trafficserver8-128bit-cas-ppc64le.patch: removed Merged upstream
* Sun Apr 25 2021 Linnaea Lavia - Update to 9.0.1- Refresh patch \'apache-trafficserver9-ignore-cycle-check-on-tr-conn.patch\'- Swap 128-bit CAS patch with upstream patch
* Sat Mar 27 2021 Linnaea Lavia - Newer versions of OpenJDK seems to throw NPE when no fonts is installed and asked to measure text size, pull in Noto Sans so we can continue to build documentations on Factory.
* Tue Feb 16 2021 Linnaea Lavia - 1 new patch: apache-trafficserver9-ignore-cycle-check-on-tr-conn.patch Workaround for upstream bug on cycle detection and transparent proxying (gh#7525)
* Fri Feb 12 2021 Linnaea Lavia - Update to 9.0.0- 4 new patch: apache-trafficserver9-LogUtils2-test-remove-duplicate-BWF.patch test_LogUtils2 includes BufferWriterFormat in itself, causing global dtor to be run twice on its structures, corrupting memory. apache-trafficserver9-docs-sys-plantuml.patch apache-trafficserver9-docs-remove-git.patch apache-trafficserver9-docs-remove-deprecated-sphinx-gettext_lazy.patch Enables building documentation on Factory- 2 patches dropped, as they\'re addressed upstream: apache-trafficserver8-ignore-cjose-jansson-static-check.patch apache-trafficserver8-aarch-va48.patch- 9 plugins have been promoted from experimental to stable: cache_promote cache_range_requests cachekey certifier multiplexer prefetch remap_purge escalate server_push_preload- 8 new experimental plugins: statichit redo_cache_lookup memory_profile cert_reporting_tool cookie_remap ja3_fingerprint maxmind_acl (requires libmaxminddb) ssl_session_reuse (requires libhiredis)- 7 plugins removed: test_cppapi balancer buffer_upload header_normalize hipes ssl_cert_loader stale_while_revalidate
  
ICM