Frédéric Lécaille

`ssl-default-bind-ciphersuites TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256` is useless because the list of ciphers is made of the default tls1.3 ciphersuites.

Same backtraces, wich a crash during some handshake + retransmissions with no frame to send due to the anti-amplification limit. Will try to reproduce it

Certainly a side effect of my last bug fix.

I recognize that this one is tricky.

Sorry for this late reply, but I have tried to reproduce it without success, except patching haproxy. This is always problematic. That said I have found a case where we...

@Tristan971 any news about this issue please?

Yes. The BUG_ON() is there to prevent haproxy from sending non ack-eliciting packets when haproxy is supposed to send ack-eliciting packets (when probing).

@Tristan971 sorry for this late reply. Was busy elsewhere. Please revert the second patch which is wrong and keep the first one (with the BUG_ON()) and let's see if it...

I have never mentioned one thing. This bug is triggered by a ha_panic(). So, haproxy would be consuming to much CPU time resource sending packets (perhaps entering a dead loop...

Ok. This one gave me a headache. :disappointed: I am working on a fix. I have to test/validate that this does not break anything outside of the retransmission code path.