Skip to content

CLEANUP/MINOR: remove deprecated config options #12

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
pierrecdn wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

CLEANUP/MINOR: remove deprecated config options #12

pierrecdn wants to merge 1 commit into from
+12 −9

Conversation

@pierrecdn
Copy link

@pierrecdn pierrecdn commented Feb 10, 2026

As of HAProxy 3.0+, these options are:

  • either marked deprecated (req_ssl_sni, req_ssl_hello_type) in the config.
  • either it is advised to do differently (no-sslv3, no-tlsv10)

hdurand0710
hdurand0710 reviewed Feb 11, 2026
View reviewed changes
api/definition/gate.v3.haproxy.org_backends.yaml
ServerSwitchingRule Server Switching Rule
HAProxy server switching rule configuration (corresponds to use-server directive)
Example: {"cond":"if","cond_test":"{ req_ssl_sni -i www.example.com }","target_server":"www"}
Copy link
Member

@hdurand0710 hdurand0710 Feb 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file is actually generated from a client-native model and can not be changed here.
I can open a MR in client-native to change this.
We also need to add a CI check to check that this file is not updated manually.

Copy link
Author

@pierrecdn pierrecdn Feb 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, indeed.
So should I remove that one only and let you perform the merge for the rest (and then the bump of client-native)?

Copy link
Author

@pierrecdn pierrecdn Feb 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Did this, also tried to match the check-commit.

@pierrecdn pierrecdn changed the title MINOR: remove deprecated config options CLEANUP/MINOR: remove deprecated config options Feb 11, 2026
@hdurand0710
Copy link
Member

hdurand0710 commented Feb 11, 2026
edited
Loading

@pierrecdn , There is also a CI complain on the commit message:

2026/02/10 16:19:05 aspell.go:189: commit message aspell: [req sslv tlsv]
These come from the names with underscores in the commit message.
The simplest way is to add those 3 req, sslv and tlsv in the file /.aspell.yml at the root.
Thanks!

@pierrecdn
CLEANUP/MINOR: remove deprecated config options
e37c81a 
These options are either marked deprecated (req_ssl_sni, req_ssl_hello_type)
in the config. or it is advised to do differently (no-sslv3, no-tlsv10) as
of HAProxy 3.0+.
@hdurand0710
Copy link
Member

hdurand0710 commented Feb 12, 2026

@pierrecdn ,
Now we have a Bad Credential issue with the check-commit...
We will fix that internally.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hdurand0710 hdurand0710 hdurand0710 left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pierrecdn @hdurand0710