Page MenuHomePhabricator
Create Task
Maniphest T419825

Test HAProxy 3.2 with AWS-LC libraries
Open, In Progress, MediumPublic
Actions

Description

HAProxy publishes the deb packages for HAProxy and AWS-LC libraries on their performance repository.

We can test the behavior and performances of HAProxy 3.2 (LTS) compiled against AWS-LC on Trixie host(s) like cp2041 and cp2042 (T419753)

Roughly:

Prepare for HAProxy 3.2 + OpenSSL 3.5 testing (from haproxy.debian.net)

  • Create custom component for trixie
  • Manually include haproxy package(s) from haproxy.debian.net
  • Install on single (depooled, testing) host (cp2041)
  • Check for HAProxy configuration

Prepare for HAProxy 3.2 AWS-LC testing (from haproxy performance repo)

  • Create a new component and import haproxy-awslc and libssl-awslc binary packages
    • (eventually these can be installed manually on a test host without needing to add new component to aptrepo)
  • Install on single (depooled, testing) host (cp2042)
  • Check for HAProxy configuration validity (3.0 -> 3.2) and eventual conflicts with OpenSSL libraries for other software

On both hosts:

  • Perform synthetic benchmarks
  • Pool the host to compare against other ones (Trixie with HAProxy 3.0 and OpenSSL 3.5)

Install on production host

Details

Related Changes in Gerrit:
Show related patches Customize query in gerrit

Related Objects
Search...

Event Timeline

Fabfur created this task.Mar 12 2026, 11:01 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 12 2026, 11:01 AM
Fabfur changed the task status from Open to In Progress.Mar 12 2026, 11:02 AM
Fabfur triaged this task as Medium priority.
Ladsgroup awarded a token.Mar 12 2026, 11:10 AM
Ladsgroup subscribed.
Stashbot added a comment.Mar 16 2026, 3:42 PM

Mentioned in SAL (#wikimedia-operations) [2026-03-16T15:42:32Z] <fabfur> reimage cp2041 for HAProxy testing (T419825)

Stashbot added a comment.Mar 16 2026, 4:41 PM

Mentioned in SAL (#wikimedia-operations) [2026-03-16T16:41:35Z] <fabfur> reimage cp2042 for HAProxy testing (T419825)

gerritbot added a comment.Mar 17 2026, 10:43 AM

Change #1254146 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] aptrepo: new haproxy32 component for trixie

https://gerrit.wikimedia.org/r/1254146

gerritbot added a project: Patch-For-Review.Mar 17 2026, 10:43 AM
gerritbot added a comment.Mar 17 2026, 11:58 AM

Change #1254146 merged by Fabfur:

[operations/puppet@production] aptrepo: new haproxy32 component for trixie

https://gerrit.wikimedia.org/r/1254146

Maintenance_bot removed a project: Patch-For-Review.Mar 17 2026, 12:33 PM
Fabfur updated the task description. (Show Details)Mar 17 2026, 1:05 PM
gerritbot added a comment.Mar 17 2026, 1:26 PM

Change #1254195 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] haproxy: test haproxy32 on cp2041

https://gerrit.wikimedia.org/r/1254195

gerritbot added a project: Patch-For-Review.Mar 17 2026, 1:26 PM
gerritbot added a comment.Mar 19 2026, 1:47 PM

Change #1254195 merged by Fabfur:

[operations/puppet@production] haproxy: test haproxy32 on cp2041

https://gerrit.wikimedia.org/r/1254195

gerritbot added a comment.Mar 19 2026, 1:53 PM

Change #1255735 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] haproxy: fix lua lib version with haproxy 3.2

https://gerrit.wikimedia.org/r/1255735

gerritbot added a comment.Mar 19 2026, 1:58 PM

Change #1255735 merged by Fabfur:

[operations/puppet@production] haproxy: fix lua lib version with haproxy 3.2

https://gerrit.wikimedia.org/r/1255735

gerritbot added a comment.Mar 19 2026, 2:22 PM

Change #1255745 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] profile::haproxy: ability to use custom component on Trixie

https://gerrit.wikimedia.org/r/1255745

gerritbot added a comment.Mar 19 2026, 3:43 PM

Change #1255745 merged by Fabfur:

[operations/puppet@production] profile::haproxy: ability to use custom component on Trixie

https://gerrit.wikimedia.org/r/1255745

Maintenance_bot removed a project: Patch-For-Review.Mar 19 2026, 4:32 PM
gerritbot added a comment.Mar 27 2026, 11:52 AM

Change #1262068 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] aptrepo,haproxy: add haproxy-awslc component/package

https://gerrit.wikimedia.org/r/1262068

gerritbot added a project: Patch-For-Review.Mar 27 2026, 11:52 AM
gerritbot added a comment.May 12 2026, 10:50 PM

Change #1262068 abandoned by Fabfur:

[operations/puppet@production] aptrepo,haproxy: add haproxy-awslc component/package

Reason:

abandoned for I60c68cafb2920d796a627808f2d18bbde5e24b6d

https://gerrit.wikimedia.org/r/1262068

gerritbot added a comment.May 12 2026, 10:53 PM

Change #1286521 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] haproxy,aptrepo: start testing haproxy-awslc

https://gerrit.wikimedia.org/r/1286521

gerritbot added a comment.May 12 2026, 11:30 PM

Change #1286526 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] hiera: using haproxy-awslc on cp7001

https://gerrit.wikimedia.org/r/1286526

gerritbot added a comment.May 13 2026, 8:11 AM

Change #1286521 merged by Fabfur:

[operations/puppet@production] haproxy,aptrepo: start testing haproxy-awslc

https://gerrit.wikimedia.org/r/1286521

Fabfur updated the task description. (Show Details)May 13 2026, 8:25 AM
gerritbot added a comment.May 13 2026, 8:36 AM

Change #1286815 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] aptrepo: add haproxy gpg key

https://gerrit.wikimedia.org/r/1286815

gerritbot added a comment.May 13 2026, 9:13 AM

Change #1286815 merged by Fabfur:

[operations/puppet@production] aptrepo: add haproxy gpg key

https://gerrit.wikimedia.org/r/1286815

gerritbot added a comment.May 13 2026, 9:27 AM

Change #1286834 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] aptrepo: missing libssl-awslc package in updates file

https://gerrit.wikimedia.org/r/1286834

gerritbot added a comment.May 13 2026, 10:15 AM

Change #1286834 merged by Fabfur:

[operations/puppet@production] aptrepo: missing libssl-awslc package in updates file

https://gerrit.wikimedia.org/r/1286834

gerritbot added a comment.May 13 2026, 10:45 AM

Change #1286854 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] aptrepo: use package field and not source for haproxy-awslc packages

https://gerrit.wikimedia.org/r/1286854

gerritbot added a comment.May 13 2026, 10:48 AM

Change #1286854 merged by Fabfur:

[operations/puppet@production] aptrepo: use package field and not source for haproxy-awslc packages

https://gerrit.wikimedia.org/r/1286854

Fabfur updated the task description. (Show Details)May 13 2026, 11:00 AM
Stashbot added a comment.May 13 2026, 12:40 PM

Mentioned in SAL (#wikimedia-operations) [2026-05-13T12:40:49Z] <fabfur> depool cp7001 to test haproxy-awslc (https://gerrit.wikimedia.org/r/c/operations/puppet/+/1286526) (T419825)

gerritbot added a comment.May 13 2026, 12:43 PM

Change #1286526 merged by Fabfur:

[operations/puppet@production] hiera: using haproxy-awslc on cp7001

https://gerrit.wikimedia.org/r/1286526

gerritbot added a comment.May 13 2026, 12:59 PM

Change #1286914 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] cache::haproxy: include haproxy32-awslc in checks for haproxy32

https://gerrit.wikimedia.org/r/1286914

gerritbot added a comment.May 13 2026, 1:06 PM

Change #1286914 merged by Fabfur:

[operations/puppet@production] cache::haproxy: include haproxy32-awslc in checks for haproxy32

https://gerrit.wikimedia.org/r/1286914

Maintenance_bot removed a project: Patch-For-Review.May 13 2026, 1:32 PM
Stashbot added a comment.May 13 2026, 1:57 PM

Mentioned in SAL (#wikimedia-operations) [2026-05-13T13:57:58Z] <fabfur> repooling cp7001 to test haproxy-awslc behavior (T419825)

Fabfur updated the task description. (Show Details)May 13 2026, 2:11 PM
gerritbot added a comment.May 13 2026, 3:21 PM

Change #1286963 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] hiera: install haproxy-awslc on cp7009

https://gerrit.wikimedia.org/r/1286963

gerritbot added a project: Patch-For-Review.May 13 2026, 3:21 PM
Stashbot added a comment.May 13 2026, 3:27 PM

Mentioned in SAL (#wikimedia-operations) [2026-05-13T15:27:43Z] <fabfur> depooling cp7009 to install haproxy-awslc (T419825)

gerritbot added a comment.May 13 2026, 3:28 PM

Change #1286963 merged by Fabfur:

[operations/puppet@production] hiera: install haproxy-awslc on cp7009

https://gerrit.wikimedia.org/r/1286963

Maintenance_bot removed a project: Patch-For-Review.May 13 2026, 3:31 PM
Stashbot added a comment.May 13 2026, 3:36 PM

Mentioned in SAL (#wikimedia-operations) [2026-05-13T15:36:26Z] <fabfur> repooling cp7009 to test haproxy-awslc behavior (T419825)

Fabfur updated the task description. (Show Details)May 13 2026, 3:39 PM
gerritbot added a comment.Wed, May 20, 2:59 PM

Change #1289997 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] hiera: using haproxy-awslc on cp2043-cp2044

https://gerrit.wikimedia.org/r/1289997

gerritbot added a project: Patch-For-Review.Wed, May 20, 2:59 PM
gerritbot added a comment.Wed, May 20, 3:04 PM

Change #1289998 had a related patch set uploaded (by Fabfur; author: Fabfur):

[operations/puppet@production] hiera: using haproxy-awslc on cp3074,cp3066

https://gerrit.wikimedia.org/r/1289998

Stashbot added a comment.Tue, May 26, 9:32 AM

Mentioned in SAL (#wikimedia-operations) [2026-05-26T09:32:46Z] <fabfur> depooling cp2043 to install haproxy-awslc (T419825)

gerritbot added a comment.Tue, May 26, 9:34 AM

Change #1289997 merged by Fabfur:

[operations/puppet@production] hiera: using haproxy-awslc on cp2043-cp2044

https://gerrit.wikimedia.org/r/1289997

Stashbot added a comment.Tue, May 26, 9:34 AM

Mentioned in SAL (#wikimedia-operations) [2026-05-26T09:34:44Z] <fabfur> depooling cp2044 to install haproxy-awslc (T419825)

Stashbot added a comment.Tue, May 26, 9:48 AM

Mentioned in SAL (#wikimedia-operations) [2026-05-26T09:48:41Z] <fabfur> repooling cp2043 and cp2044 (haproxy-awslc) (T419825)

Stashbot added a comment.Wed, May 27, 8:50 AM

Mentioned in SAL (#wikimedia-operations) [2026-05-27T08:50:29Z] <fabfur> depooling and installing haproxy-awslc on cp3074 and cp3066 (T419825)

gerritbot added a comment.Wed, May 27, 8:54 AM

Change #1289998 merged by Fabfur:

[operations/puppet@production] hiera: using haproxy-awslc on cp3074,cp3066

https://gerrit.wikimedia.org/r/1289998

Stashbot added a comment.Wed, May 27, 9:02 AM

Mentioned in SAL (#wikimedia-operations) [2026-05-27T09:02:58Z] <fabfur> repooling cp3074 and cp3066 (T419825)

Fabfur updated the task description. (Show Details)Wed, May 27, 9:07 AM
Maintenance_bot removed a project: Patch-For-Review.Wed, May 27, 9:31 AM
Fabfur updated the task description. (Show Details)Fri, Jun 12, 10:02 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits