haproxy/haproxy.spec

%define haproxy_user      haproxy
%define haproxy_group     haproxy

%global _hardened_build   1

Name:             haproxy
Version:          2.9.5
Release:          8
Summary:          The Reliable, High Performance TCP/HTTP Load Balancer

License:          GPLv2+
URL:              https://www.haproxy.org/
Source0:          https://www.haproxy.org/download/2.9/src/%{name}-%{version}.tar.gz
Source1:          %{name}.service
Source2:          %{name}.cfg
Source3:          %{name}.logrotate
Source4:          %{name}.sysconfig

Patch1:           backport-BUG-MINOR-server-source-interface-ignored-from-defau.patch
Patch2:           Backport-CVE-2024-45506-BUG-MAJOR-mux-h2-always.patch
Patch3:           CVE-2024-49214.patch
Patch4:           backport-BUG-MEDIUM-stream-Prevent-mux-upgrades-if-client-con.patch
Patch5:           CVE-2024-53008-1.patch
Patch6:           CVE-2024-53008-2.patch
Patch7:           backport-BUG-MEDIUM-queues-Do-not-use-pendconn_grab_from_px.patch
Patch8:           backport-BUG-MEDIUM-queues-Make-sure-we-call-process_srv_queu.patch
Patch9:           backport-BUG-MEDIUM-queue-Make-process_srv_queue-return-the-n.patch

BuildRequires:    gcc lua-devel pcre2-devel openssl-devel systemd-devel systemd libatomic
Requires(pre):    shadow-utils
%{?systemd_requires}

%package_help
%description
HAProxy is a free, very fast and reliable solution offering high availability, load balancing,
and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic
web sites and powers quite a number of the world's most visited ones. 

%prep
%autosetup -n %{name}-%{version} -p1
%build
%if "%toolchain" == "clang"
	%global make_opts CC=clang 
%endif

%make_build %{?make_opts} CPU="generic" TARGET="linux-glibc" USE_OPENSSL=1 USE_PCRE2=1 USE_SLZ=1 \
    USE_LUA=1 USE_CRYPT_H=1 USE_SYSTEMD=1 USE_LINUX_TPROXY=1 USE_GETADDRINFO=1 USE_PROMEX=1 DEFINE=-DMAX_SESS_STKCTR=12 \
    ADDINC="%{build_cflags}" ADDLIB="%{build_ldflags}"

%make_build %{?make_opts} admin/halog/halog ADDINC="%{build_cflags}" ADDLIB="%{build_ldflags}"

pushd admin/iprange
%make_build %{?make_opts} OPTIMIZE="%{build_cflags}" LDFLAGS="%{build_ldflags}"
popd

%install
install -d %{buildroot}%{_sbindir}
install haproxy  %{buildroot}%{_sbindir}
install -d %{buildroot}%{_mandir}/man1
install -m 644 doc/haproxy.1 %{buildroot}%{_mandir}/man1

pushd %{buildroot}
install -p -D -m 0644 %{SOURCE1} .%{_unitdir}/%{name}.service
install -p -D -m 0644 %{SOURCE2} .%{_sysconfdir}/haproxy/%{name}.cfg
install -p -D -m 0644 %{SOURCE3} .%{_sysconfdir}/logrotate.d/%{name}
install -p -D -m 0644 %{SOURCE4} .%{_sysconfdir}/sysconfig/%{name}
install -d -m 0755 .%{_bindir}
install -d -m 0755 .%{_localstatedir}/lib/haproxy
install -d -m 0755 .%{_sysconfdir}/haproxy/conf.d
install -d -m 0755 .%{_datadir}/haproxy
popd

install -p -m 0755 ./admin/halog/halog %{buildroot}%{_bindir}/halog
install -p -m 0755 ./admin/iprange/iprange %{buildroot}%{_bindir}/iprange
install -p -m 0755 ./admin/iprange/ip6range %{buildroot}%{_bindir}/ip6range
install -p -m 0644 ./examples/errorfiles/* %{buildroot}%{_datadir}/haproxy

for httpfile in $(find ./examples/errorfiles/ -type f) 
do
    install -p -m 0644 $httpfile %{buildroot}%{_datadir}/haproxy
done

%{__rm} -rf ./examples/errorfiles/
find ./examples/* -type f ! -name "*.cfg" -exec %{__rm} -f "{}" \;

textfiles=$(find ./ -type f -name '*.txt')
for textfile in ${textfiles}
do
    %{__mv} ${textfile} ${textfile}.old
    iconv --from-code ISO8859-1 --to-code UTF-8 --output ${textfile} ${textfile}.old
    %{__rm} -f ${textfile}.old
done

%pre
getent group %{haproxy_group} >/dev/null || groupadd -r %{haproxy_group}
getent passwd %{haproxy_user} >/dev/null || useradd -r -g %{haproxy_user} -d \
    %{_localstatedir}/lib/haproxy -s /sbin/nologin -c "haproxy" %{haproxy_user}
exit 0

%post
%systemd_post %{name}.service

%preun
%systemd_preun %{name}.service

%postun
%systemd_postun_with_restart %{name}.service

%files
%defattr(-,root,root)
%license LICENSE
%dir %{_sysconfdir}/haproxy
%config(noreplace) %{_sysconfdir}/haproxy/%{name}.cfg
%config(noreplace) %{_sysconfdir}/logrotate.d/%{name}
%config(noreplace) %{_sysconfdir}/sysconfig/%{name}
%{_bindir}/halog
%{_bindir}/iprange
%{_bindir}/ip6range
%{_sbindir}/%{name}
%{_unitdir}/%{name}.service
%dir %{_sysconfdir}/haproxy/conf.d
%dir %{_localstatedir}/lib/haproxy
%dir %{_datadir}/haproxy
%{_datadir}/haproxy/*

%files help
%defattr(-,root,root)
%doc doc/* examples/* CHANGELOG README VERSION
%{_mandir}/man1/*

%changelog
* Mon Mar 17 2025 yanglu <yanglu72@h-partners.com> - 2.9.5-8
- Type:bugfix
- CVE:NA
- SUG:NA
- DESC:queues:Do not use pendconn_grab_from_px
       queues:Make sure we call process_srv_queue when leaving
       queue:Make process_srv_queue return the number of streams

* Tue Dec 10 2024 wangkai <13474090681@163.com> - 2.9.5-7
- Fix CVE-2024-53008

* Thu Nov 21 2024 xinghe <xinghe2@h-partners.com> - 2.9.5-6
- Type:bugfix
- CVE:NA
- SUG:NA
- DESC:stream: Prevent mux upgrades if client connection is no longer ready

* Mon Oct 14 2024 yaoxin <yao_xin001@hoperun.com> - 2.9.5-5
- Fix CVE-2024-49214

* Wed Sep 04 2024 yinyongkang <yinyongkang@kylinos.cn> - 2.9.5-4
- Type:CVE
- CVE:CVE-2024-45506
- SUG:NA
- DESC:fix CVE-2024-45506

* Mon Jun 24 2024 xinghe <xinghe2@h-partners.com> - 2.9.5-3
- Type:bugfix
- CVE:NA
- SUG:NA
- DESC:server: 'source' interface ignored from 'default-server' directive

* Thu Feb 22 2024 luofng <luofeng13@huawei.com> - 2.9.5-2
- Type:enhencement
- CVE:NA
- SUG:NA
- DESC:support for building with clang

* Mon Feb 19 2024 liweigang <izmirvii@gmail.com> - 2.9.5-1
- update to version 2.9.5

* Wed Oct 11 2023 yaoxin <yao_xin001@hoperun.com> - 2.6.15-1
- Upgrade to 2.6.15

* Wed Sep 27 2023 xinghe <xinghe2@h-partners.com> - 2.6.6-6
- Type:bugfix
- CVE:NA
- SUG:restart
- DESC:backport to fix potential coredump:
       errors: handle malloc failure in usermsgs_put
       ssl_sock: add check for ha_meth
       thread: add a check for pthread_creat
       
* Fri Sep 22 2023 leeffo <liweiganga@uniontech.com> - 2.6.6-5
- backport update stream

* Mon Aug 21 2023 wangkai <wang_kai001@hoperun.com> - 2.6.6-4
- Fix CVE-2023-40225

* Thu Apr 20 2023 yaoxin <yao_xin001@hoperun.com> - 2.6.6-3
- Fix CVE-2023-25950

* Sat Feb 25 2023 yaoxin <yaoxin30@h-partners.com> - 2.6.6-2
- Fix CVE-2023-25725 and CVE-2023-0056

* Sat Oct 22 2022 xinghe <xinghe2@h-partners.com> - 2.6.6-1
- Type:enhancement
- ID:NA
- SUG:NA
- DESC:upgrade to 2.6.6

* Wed Mar 23 2022 xihaochen <xihaochen@h-partners.com> - 2.4.8-1
- update haproxy to 2.4.8

* Fri Mar 11 2022 yaoxin <yaoxin30@huawei.com> - 2.2.16-3
- Fix CVE-2022-0711

* Sat Sep 18 2021 yaoxin <yaoxin30@huawei.com> - 2.2.16-2
- Fix CVE-2021-40346

* Mon Aug 30 2021 yaoxin <yaoxin30@huawei.com> - 2.2.16-1
- Upgrade 2.2.16 to fix CVE-2021-39240

* Thu Aug 26 2021 liwu <liwu13@huawei.com> - 2.2.1-2
- fix CVE-2021-39241,CVE-2021-39242

* Thu Jul 1 2021 huanghaitao <huanghaitao8@huawei.com> - 2.2.1-1
- update to 2.2.1

* Tue Sep 15 2020 Ge Wang <wangge20@huawei.com> - 2.0.17-1
- update to 2.0.17 and modify source0 url

* Wed Aug 05 2020 lingsheng <lingsheng@huawei.com> - 2.0.14-2
- Add support for the Lua 5.4

* Wed Jul 22 2020 hanzhijun <hanzhijun1@huawei.com> - 2.0.14-1
- update to 2.0.14

* Thu May 7 2020 cuibaobao <cuibaobao1@huawei.com> - 1.8.14-5
- Type:cves
- ID: CVE-2020-11100
- SUG:restart
- DESC: fix CVE-2020-11100

* Wed Dec 4 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.8.14-4
- Package init
init package 2020-02-14 10:50:02 +08:00			`%define haproxy_user haproxy`
			`%define haproxy_group haproxy`

			`%global _hardened_build 1`

			`Name: haproxy`
update to version 2.9.5 2024-01-03 18:15:00 +08:00			`Version: 2.9.5`
sync some pathes from upstream (cherry picked from commit 25cd8bcf224f2c2a73cfb1473fa680ba11c9d0b5) 2025-03-17 10:42:32 +00:00			`Release: 8`
init package 2020-02-14 10:50:02 +08:00			`Summary: The Reliable, High Performance TCP/HTTP Load Balancer`

			`License: GPLv2+`
update to 2.0.17 and modify source0 url on master branch 2020-09-15 14:32:48 +08:00			`URL: https://www.haproxy.org/`
update to version 2.9.5 2024-01-03 18:15:00 +08:00			`Source0: https://www.haproxy.org/download/2.9/src/%{name}-%{version}.tar.gz`
init package 2020-02-14 10:50:02 +08:00			`Source1: %{name}.service`
			`Source2: %{name}.cfg`
			`Source3: %{name}.logrotate`
			`Source4: %{name}.sysconfig`

backport upstream patches (cherry picked from commit dd6bca601df69630b08394741d61a08a11f9dfdc) 2024-06-24 09:08:10 +00:00			`Patch1: backport-BUG-MINOR-server-source-interface-ignored-from-defau.patch`
fix CVE-2024-45506 2024-09-04 10:58:22 +08:00			`Patch2: Backport-CVE-2024-45506-BUG-MAJOR-mux-h2-always.patch`
Fix CVE-2024-49214 (cherry picked from commit aec3b76ff86c2701b58145801a9a8b946a0e93b7) 2024-10-14 15:39:51 +08:00			`Patch3: CVE-2024-49214.patch`
backport upstream patches 2024-11-21 03:37:53 +00:00			`Patch4: backport-BUG-MEDIUM-stream-Prevent-mux-upgrades-if-client-con.patch`
Fix CVE-2024-53008 2024-12-10 10:27:43 +08:00			`Patch5: CVE-2024-53008-1.patch`
			`Patch6: CVE-2024-53008-2.patch`
sync some pathes from upstream (cherry picked from commit 25cd8bcf224f2c2a73cfb1473fa680ba11c9d0b5) 2025-03-17 10:42:32 +00:00			`Patch7: backport-BUG-MEDIUM-queues-Do-not-use-pendconn_grab_from_px.patch`
			`Patch8: backport-BUG-MEDIUM-queues-Make-sure-we-call-process_srv_queu.patch`
			`Patch9: backport-BUG-MEDIUM-queue-Make-process_srv_queue-return-the-n.patch`
backport update stream 2023-09-22 11:17:59 +08:00
update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`BuildRequires: gcc lua-devel pcre2-devel openssl-devel systemd-devel systemd libatomic`
init package 2020-02-14 10:50:02 +08:00			`Requires(pre): shadow-utils`
update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`%{?systemd_requires}`
init package 2020-02-14 10:50:02 +08:00
			`%package_help`
			`%description`
			`HAProxy is a free, very fast and reliable solution offering high availability, load balancing,`
			`and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic`
			`web sites and powers quite a number of the world's most visited ones.`

			`%prep`
fix CVES 2021-08-27 14:38:04 +08:00			`%autosetup -n %{name}-%{version} -p1`
init package 2020-02-14 10:50:02 +08:00			`%build`
support clang build 2024-03-29 15:04:26 +08:00			`%if "%toolchain" == "clang"`
			`%global make_opts CC=clang`
			`%endif`
init package 2020-02-14 10:50:02 +08:00
support clang build 2024-03-29 15:04:26 +08:00			`%make_build %{?make_opts} CPU="generic" TARGET="linux-glibc" USE_OPENSSL=1 USE_PCRE2=1 USE_SLZ=1 \`
upgrade to 2.6.6 2022-10-22 06:30:31 +00:00			`USE_LUA=1 USE_CRYPT_H=1 USE_SYSTEMD=1 USE_LINUX_TPROXY=1 USE_GETADDRINFO=1 USE_PROMEX=1 DEFINE=-DMAX_SESS_STKCTR=12 \`
update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`ADDINC="%{build_cflags}" ADDLIB="%{build_ldflags}"`
init package 2020-02-14 10:50:02 +08:00
support clang build 2024-03-29 15:04:26 +08:00			`%make_build %{?make_opts} admin/halog/halog ADDINC="%{build_cflags}" ADDLIB="%{build_ldflags}"`
init package 2020-02-14 10:50:02 +08:00
update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`pushd admin/iprange`
support clang build 2024-03-29 15:04:26 +08:00			`%make_build %{?make_opts} OPTIMIZE="%{build_cflags}" LDFLAGS="%{build_ldflags}"`
init package 2020-02-14 10:50:02 +08:00			`popd`

			`%install`
			`install -d %{buildroot}%{_sbindir}`
			`install haproxy %{buildroot}%{_sbindir}`
			`install -d %{buildroot}%{_mandir}/man1`
			`install -m 644 doc/haproxy.1 %{buildroot}%{_mandir}/man1`

			`pushd %{buildroot}`
			`install -p -D -m 0644 %{SOURCE1} .%{_unitdir}/%{name}.service`
			`install -p -D -m 0644 %{SOURCE2} .%{_sysconfdir}/haproxy/%{name}.cfg`
			`install -p -D -m 0644 %{SOURCE3} .%{_sysconfdir}/logrotate.d/%{name}`
			`install -p -D -m 0644 %{SOURCE4} .%{_sysconfdir}/sysconfig/%{name}`
			`install -d -m 0755 .%{_bindir}`
			`install -d -m 0755 .%{_localstatedir}/lib/haproxy`
upgrade to 2.6.6 2022-10-22 06:30:31 +00:00			`install -d -m 0755 .%{_sysconfdir}/haproxy/conf.d`
init package 2020-02-14 10:50:02 +08:00			`install -d -m 0755 .%{_datadir}/haproxy`
			`popd`

update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`install -p -m 0755 ./admin/halog/halog %{buildroot}%{_bindir}/halog`
			`install -p -m 0755 ./admin/iprange/iprange %{buildroot}%{_bindir}/iprange`
			`install -p -m 0755 ./admin/iprange/ip6range %{buildroot}%{_bindir}/ip6range`
init package 2020-02-14 10:50:02 +08:00			`install -p -m 0644 ./examples/errorfiles/* %{buildroot}%{_datadir}/haproxy`

			`for httpfile in $(find ./examples/errorfiles/ -type f)`
			`do`
			`install -p -m 0644 $httpfile %{buildroot}%{_datadir}/haproxy`
			`done`

			`%{__rm} -rf ./examples/errorfiles/`
			`find ./examples/* -type f ! -name "*.cfg" -exec %{__rm} -f "{}" \;`

			`textfiles=$(find ./ -type f -name '*.txt')`
			`for textfile in ${textfiles}`
			`do`
			`%{__mv} ${textfile} ${textfile}.old`
			`iconv --from-code ISO8859-1 --to-code UTF-8 --output ${textfile} ${textfile}.old`
			`%{__rm} -f ${textfile}.old`
			`done`

			`%pre`
			`getent group %{haproxy_group} >/dev/null \|\| groupadd -r %{haproxy_group}`
			`getent passwd %{haproxy_user} >/dev/null \|\| useradd -r -g %{haproxy_user} -d \`
			`%{_localstatedir}/lib/haproxy -s /sbin/nologin -c "haproxy" %{haproxy_user}`
			`exit 0`

			`%post`
			`%systemd_post %{name}.service`

			`%preun`
			`%systemd_preun %{name}.service`

			`%postun`
			`%systemd_postun_with_restart %{name}.service`

			`%files`
			`%defattr(-,root,root)`
			`%license LICENSE`
			`%dir %{_sysconfdir}/haproxy`
			`%config(noreplace) %{_sysconfdir}/haproxy/%{name}.cfg`
			`%config(noreplace) %{_sysconfdir}/logrotate.d/%{name}`
			`%config(noreplace) %{_sysconfdir}/sysconfig/%{name}`
			`%{_bindir}/halog`
			`%{_bindir}/iprange`
update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`%{_bindir}/ip6range`
init package 2020-02-14 10:50:02 +08:00			`%{_sbindir}/%{name}`
			`%{_unitdir}/%{name}.service`
upgrade to 2.6.6 2022-10-22 06:30:31 +00:00			`%dir %{_sysconfdir}/haproxy/conf.d`
init package 2020-02-14 10:50:02 +08:00			`%dir %{_localstatedir}/lib/haproxy`
			`%dir %{_datadir}/haproxy`
			`%{_datadir}/haproxy/*`

			`%files help`
			`%defattr(-,root,root)`
upgrade to 2.6.6 2022-10-22 06:30:31 +00:00			`%doc doc/* examples/* CHANGELOG README VERSION`
init package 2020-02-14 10:50:02 +08:00			`%{_mandir}/man1/*`

			`%changelog`
sync some pathes from upstream (cherry picked from commit 25cd8bcf224f2c2a73cfb1473fa680ba11c9d0b5) 2025-03-17 10:42:32 +00:00			`* Mon Mar 17 2025 yanglu <yanglu72@h-partners.com> - 2.9.5-8`
			`- Type:bugfix`
			`- CVE:NA`
			`- SUG:NA`
			`- DESC:queues:Do not use pendconn_grab_from_px`
			`queues:Make sure we call process_srv_queue when leaving`
			`queue:Make process_srv_queue return the number of streams`

Fix CVE-2024-53008 2024-12-10 10:27:43 +08:00			`* Tue Dec 10 2024 wangkai <13474090681@163.com> - 2.9.5-7`
			`- Fix CVE-2024-53008`

backport upstream patches 2024-11-21 03:37:53 +00:00			`* Thu Nov 21 2024 xinghe <xinghe2@h-partners.com> - 2.9.5-6`
			`- Type:bugfix`
			`- CVE:NA`
			`- SUG:NA`
			`- DESC:stream: Prevent mux upgrades if client connection is no longer ready`

Fix CVE-2024-49214 (cherry picked from commit aec3b76ff86c2701b58145801a9a8b946a0e93b7) 2024-10-14 15:39:51 +08:00			`* Mon Oct 14 2024 yaoxin <yao_xin001@hoperun.com> - 2.9.5-5`
			`- Fix CVE-2024-49214`

fix CVE-2024-45506 2024-09-04 10:58:22 +08:00			`* Wed Sep 04 2024 yinyongkang <yinyongkang@kylinos.cn> - 2.9.5-4`
			`- Type:CVE`
			`- CVE:CVE-2024-45506`
			`- SUG:NA`
			`- DESC:fix CVE-2024-45506`

backport upstream patches (cherry picked from commit dd6bca601df69630b08394741d61a08a11f9dfdc) 2024-06-24 09:08:10 +00:00			`* Mon Jun 24 2024 xinghe <xinghe2@h-partners.com> - 2.9.5-3`
			`- Type:bugfix`
			`- CVE:NA`
			`- SUG:NA`
			`- DESC:server: 'source' interface ignored from 'default-server' directive`

support clang build 2024-03-29 15:04:26 +08:00			`* Thu Feb 22 2024 luofng <luofeng13@huawei.com> - 2.9.5-2`
			`- Type:enhencement`
			`- CVE:NA`
			`- SUG:NA`
			`- DESC:support for building with clang`

update to version 2.9.5 2024-01-03 18:15:00 +08:00			`* Mon Feb 19 2024 liweigang <izmirvii@gmail.com> - 2.9.5-1`
			`- update to version 2.9.5`

Upgrade to 2.6.15 2023-10-11 17:37:34 +08:00			`* Wed Oct 11 2023 yaoxin <yao_xin001@hoperun.com> - 2.6.15-1`
			`- Upgrade to 2.6.15`

backport to fix potential coredump 2023-09-27 11:28:52 +08:00			`* Wed Sep 27 2023 xinghe <xinghe2@h-partners.com> - 2.6.6-6`
			`- Type:bugfix`
			`- CVE:NA`
			`- SUG:restart`
			`- DESC:backport to fix potential coredump:`
			`errors: handle malloc failure in usermsgs_put`
			`ssl_sock: add check for ha_meth`
			`thread: add a check for pthread_creat`

backport update stream 2023-09-22 11:17:59 +08:00			`* Fri Sep 22 2023 leeffo <liweiganga@uniontech.com> - 2.6.6-5`
			`- backport update stream`

Fix CVE-2023-40225 2023-08-21 14:35:21 +08:00			`* Mon Aug 21 2023 wangkai <wang_kai001@hoperun.com> - 2.6.6-4`
			`- Fix CVE-2023-40225`

Fix CVE-2023-25950 2023-04-20 09:08:25 +08:00			`* Thu Apr 20 2023 yaoxin <yao_xin001@hoperun.com> - 2.6.6-3`
			`- Fix CVE-2023-25950`

Fix CVE-2023-25725 and CVE-2023-0056 (cherry picked from commit 032f906bfadadcf4f5f07c9649c28b94f1d46237) 2023-02-25 17:55:15 +08:00			`* Sat Feb 25 2023 yaoxin <yaoxin30@h-partners.com> - 2.6.6-2`
			`- Fix CVE-2023-25725 and CVE-2023-0056`

upgrade to 2.6.6 2022-10-22 06:30:31 +00:00			`* Sat Oct 22 2022 xinghe <xinghe2@h-partners.com> - 2.6.6-1`
			`- Type:enhancement`
			`- ID:NA`
			`- SUG:NA`
			`- DESC:upgrade to 2.6.6`

update haproxy to 2.4.8 2022-03-23 16:06:17 +08:00			`* Wed Mar 23 2022 xihaochen <xihaochen@h-partners.com> - 2.4.8-1`
			`- update haproxy to 2.4.8`

Fix CVE-2022-0711 2022-03-11 11:17:20 +08:00			`* Fri Mar 11 2022 yaoxin <yaoxin30@huawei.com> - 2.2.16-3`
			`- Fix CVE-2022-0711`

			`* Sat Sep 18 2021 yaoxin <yaoxin30@huawei.com> - 2.2.16-2`
fix CVE-2021-40346 2021-09-18 11:52:54 +08:00			`- Fix CVE-2021-40346`

Fix CVE-2022-0711 2022-03-11 11:17:20 +08:00			`* Mon Aug 30 2021 yaoxin <yaoxin30@huawei.com> - 2.2.16-1`
upgrade 2.2.16 to fix CVE-2021-39240 2021-08-30 20:59:40 +08:00			`- Upgrade 2.2.16 to fix CVE-2021-39240`

backport update stream 2023-09-22 11:17:59 +08:00			`* Thu Aug 26 2021 liwu <liwu13@huawei.com> - 2.2.1-2`
fix CVES 2021-08-27 14:38:04 +08:00			`- fix CVE-2021-39241,CVE-2021-39242`

backport update stream 2023-09-22 11:17:59 +08:00			`* Thu Jul 1 2021 huanghaitao <huanghaitao8@huawei.com> - 2.2.1-1`
update to 2.2.1 2021-07-01 11:42:57 +08:00			`- update to 2.2.1`

update to 2.0.17 and modify source0 url on master branch 2020-09-15 14:32:48 +08:00			`* Tue Sep 15 2020 Ge Wang <wangge20@huawei.com> - 2.0.17-1`
			`- update to 2.0.17 and modify source0 url`

Add support for the Lua 5.4 2020-08-05 15:56:16 +08:00			`* Wed Aug 05 2020 lingsheng <lingsheng@huawei.com> - 2.0.14-2`
			`- Add support for the Lua 5.4`

update to 2.0.14 2020-07-22 13:50:48 +08:00			`* Wed Jul 22 2020 hanzhijun <hanzhijun1@huawei.com> - 2.0.14-1`
			`- update to 2.0.14`

fix CVE-2020-11100 2020-05-13 12:50:37 +08:00			`* Thu May 7 2020 cuibaobao <cuibaobao1@huawei.com> - 1.8.14-5`
			`- Type:cves`
			`- ID: CVE-2020-11100`
			`- SUG:restart`
			`- DESC: fix CVE-2020-11100`

init package 2020-02-14 10:50:02 +08:00			`* Wed Dec 4 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.8.14-4`
			`- Package init`