An error occurred fetching the project authors.
- 21 Mar, 2019 3 commits
-
-
Łukasz Nowak authored
dict in headers is smallcase, so it was never working in reality.
-
Łukasz Nowak authored
Added assertion which proves that the ATS is serving stale content in case if the backend does not work, according to RFC5861. It is beleived that stale-while-revalidate will work the same way, but it is much harder to test, thus it is not done directly.
-
Łukasz Nowak authored
Adapted configuration and instantiation to ATS 7. Deployment: * traffic_line has been replaced with traffic_ctl * access log, of squid style, is ascii instead of binary, to do so logging.config is generated * ip_allow.config is configured to allow access from any host * RFC 5861 (stale content on error or revalidate) is implemented with core instead with deprecated plugin * trafficserver-autoconf-port renamed to trafficserver-synthetic-port * proxy.config.system.mmap_max removed, as it is not used by the system anymore Tests: * As Via header is not returned to the client, it is dropped from the tests, instead its existence in the backend is checked. * Promise plugin trafficserver-cache-availability.py is re enabled, as it is expected to work immediately.
-
- 13 Mar, 2019 3 commits
-
-
Łukasz Nowak authored
It is better to have automation similar to previous implementation by default.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Use KeDiFa to store keys, and transmit the url to the requester for master and slave partitions. Download keys on the slave partitions level. Use caucase to fetch main caucase CA. kedifa-caucase-url is published in order to have access to it. Note: caucase is prepended with kedifa, as this is that one. Use kedifa-csr tool to generate CSR and use caucase-updater macro. Switch to KeDiFa with SSL Auth and updated goodies. KeDiFa endpoint URLs are randomised. Only one (first) user certificate is going to be automatically accepted. This one shall be operated by the cluster owner, the requester of frontend master partition. Then he will be able to sign certificates for other users and also for services - so each node in the cluster. Special trick from https://security.stackexchange.com/questions/74345/provide-subjectaltname-to-openssl-directly-on-command-line is used for one command generation of extensions in the certificate. Note: We could upgrade to openssl 1.1.1 in order to have it really simplified (see https://security.stackexchange.com/a/183973 ) Improve CSR readability by creating cluster-identification, which is master partition title, and use it as Organization of the CSR. Reserve slots for data exchange in KeDiFa.
-
- 11 Mar, 2019 1 commit
-
-
Łukasz Nowak authored
As the test runs in erp5.util.testnode, which has some ports reserved, and they collide with default ports of caddy-frontend services, select ports for those services, and leave out default for monitor, as test expects.
-
- 07 Mar, 2019 2 commits
-
-
Łukasz Nowak authored
Use safe JSON serialisation/deserialisation, as otherwise unusual slave_references can lead to issues and also character case is not kept. Also care about case of log access user, which was undetected since slave_reference in tests were always lowercase.
-
Łukasz Nowak authored
Hardcoded partition names has been fixed after the shortening.
-
- 04 Mar, 2019 1 commit
-
-
Łukasz Nowak authored
trafficserver-cache-availability.py may pass randomly, as we do not have a way during the test to really fill it.
-
- 01 Mar, 2019 1 commit
-
-
Łukasz Nowak authored
/reviewed-on nexedi/slapos!518
-
- 28 Feb, 2019 2 commits
-
-
Łukasz Nowak authored
-
Alain Takoudjou authored
-
- 26 Feb, 2019 1 commit
-
-
Łukasz Nowak authored
-
- 14 Feb, 2019 1 commit
-
-
Łukasz Nowak authored
-
- 08 Feb, 2019 2 commits
-
-
Łukasz Nowak authored
Extend the backend with Timeout configuration via headers and use it to prove, that request taking more than try_duration is correctly served. Also prove that try_duration and try_interval are correct passed to the slave configuration.
-
Łukasz Nowak authored
Assert itself "check_output" of given command, so provide simple subprocess_output with all possible information from the called command.
-
- 17 Jan, 2019 1 commit
-
-
Łukasz Nowak authored
One of solutions for random 502 errors from caddy is to fully disable HTTP2 protocol ( https://github.com/mholt/caddy/issues/1080 ) We run Caddy with HTTP2 enabled by default, as we can enable/disable it per each slave, but in some environments it might be just better to fully avoid HTTP2 codepaths in Caddy. /reviewed-on nexedi/slapos!495
-
- 16 Jan, 2019 1 commit
-
-
Łukasz Nowak authored
requests set Accept-Encoding header, but in the testr environment we want to have full control over its behaviour, thus not setting any header if not really wanted. As there is not known way to avoid setting the header (skip_accept_encoding is internal to httplib) set dummy Accept-Encoding header, which is enough for our environment.
-
- 10 Jan, 2019 1 commit
-
-
Thomas Gambier authored
-
- 04 Jan, 2019 1 commit
-
-
Łukasz Nowak authored
/reviewed-on nexedi/slapos!489
-
- 02 Jan, 2019 1 commit
-
-
Łukasz Nowak authored
Just asserting Location header is not enough, as http status code value is important for the implementation, so assert for its value. Also fix https-only redirect status code value, which supposed to be FOUND, not default MOVED_PERMANENTLY. /reviewed-on nexedi/slapos!485
-
- 30 Dec, 2018 2 commits
-
-
Łukasz Nowak authored
/reviewed-on nexedi/slapos!487
-
Łukasz Nowak authored
/reviewed-on nexedi/slapos!486
-
- 28 Dec, 2018 2 commits
-
-
Łukasz Nowak authored
It is known problem of Caddy regarding QUIC non functional after sending it SIGUSR1: https://github.com/mholt/caddy/issues/2394
-
Łukasz Nowak authored
/reviewed-on nexedi/slapos!481
-
- 20 Dec, 2018 1 commit
-
-
Łukasz Nowak authored
-
- 18 Dec, 2018 1 commit
-
-
Łukasz Nowak authored
Asserts Caddy issue https://github.com/mholt/caddy/issues/2394
-
- 14 Dec, 2018 1 commit
-
-
Łukasz Nowak authored
This reverts commit 6eec01b7. The test_supervisor_state run on each test case has exactly the same functionality, so just drop not needed additional test.
-
- 13 Dec, 2018 2 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
"software/caddy-frontend: auto-restart services on SR upgrade." begun implementation of automatic restart of services on SR upgrade, but not all services has been caught - 6tunnel was missing. /reviewed-on nexedi/slapos!473
-
- 11 Dec, 2018 1 commit
-
-
Łukasz Nowak authored
-
- 06 Dec, 2018 1 commit
-
-
Łukasz Nowak authored
-
- 05 Dec, 2018 2 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
- 27 Nov, 2018 4 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
It does not require reference, as it works on locally provided parameter_dict
-
- 23 Nov, 2018 1 commit
-
-
Łukasz Nowak authored
-