Project

General

Profile

Activity

From 2026-02-07 to 2026-02-13

Today

GS 13:18 Lighttpd Bug #3299: Segfault with massive parallel HEAD request using curl and HTTP/2
To get better debug info, have you tried installing the relevant @*dbgsym*@ packages from https://download.opensuse.org/repositories/home:/stbuehler:/lighttpd-1.4.x/Debian_13/amd64/
Have you been able to reproduce the issue when narro... gstrauss
FL 09:21 Lighttpd Bug #3299 (New): Segfault with massive parallel HEAD request using curl and HTTP/2
I'm getting sometimes segfaults testing data-URLs using HEAD with curl:
@curl -w "%{url}: %{http_code}\n" -X HEAD -s --parallel [more than 2000 urls]@
The URLs result in files on the harddisk, mapped by a lua-script using @mod_mag... flynn

2026-02-11

OT 12:58 Lighttpd Bug #3298: PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
I've created the issue at https://github.com/haproxy/haproxy/issues/3262.
Your suggestion otovalek
GS 11:14 Lighttpd Bug #3298: PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
I agree that @uint8_t verify[4]@ is more portable for standard C, though must be used in conjuction with lighttpd code which uses @memcmp()@ with the struct member @tlv_ssl->verify@.
I'll consider it, even though it differs from the HAP... gstrauss
OT 10:52 Lighttpd Bug #3298: PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
I confirm that the @__attribute__((packed))@ or @__attribute__((__packed__))@ fixes the bug as well, at least on my setup (Debian Trixie on x86_64): otovalek

2026-02-09

GS 04:13 Lighttpd Bug #3298: PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
The HAProxy source code contains in @include/haproxy/connection-t.h:@ gstrauss

2026-02-07

GS 18:11 Lighttpd Bug #3298: PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
Thank you for digging into this.
I have not had the chance to look further this second, but did verify that lighttpd is following the HAProxy PROXY protocol as documented in https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt ... gstrauss
OT 15:15 Lighttpd Bug #3298 (New): PROXY protocol v2: extforward.hap-PROXY-ssl-client-verify option has no effect
Reverse proxies, e.g. HAProxy, may send the PP2_TYPE_SSL structure with the result of verifying the TLS certificate of the remote peer.
This structure is declared in @mod_extforward.c@ as follows: otovalek
 

Also available in: Atom