haproxytech
diff --git a/‎crs/api/ingress/v1/backend.go
Lines changed: 1 addition & 1 deletion b/‎crs/api/ingress/v1/backend.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/api/ingress/v1/defaults.go
Lines changed: 1 addition & 1 deletion b/‎crs/api/ingress/v1/defaults.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/api/ingress/v1/global.go
Lines changed: 1 addition & 1 deletion b/‎crs/api/ingress/v1/global.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/api/ingress/v1/tcp.go
Lines changed: 1 addition & 1 deletion b/‎crs/api/ingress/v1/tcp.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/definition/ingress.v1.haproxy.org_backends.yaml
Lines changed: 7 additions & 3 deletions b/‎crs/definition/ingress.v1.haproxy.org_backends.yaml
Lines changed: 7 additions & 3 deletions
diff --git a/‎crs/definition/ingress.v1.haproxy.org_defaults.yaml
Lines changed: 1 addition & 1 deletion b/‎crs/definition/ingress.v1.haproxy.org_defaults.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/definition/ingress.v1.haproxy.org_globals.yaml
Lines changed: 1 addition & 1 deletion b/‎crs/definition/ingress.v1.haproxy.org_globals.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎crs/definition/ingress.v1.haproxy.org_tcps.yaml
Lines changed: 7 additions & 3 deletions b/‎crs/definition/ingress.v1.haproxy.org_tcps.yaml
Lines changed: 7 additions & 3 deletions
diff --git a/‎deploy/tests/e2e/client.go
Lines changed: 31 additions & 0 deletions b/‎deploy/tests/e2e/client.go
Lines changed: 31 additions & 0 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/cr_tcp_additional_services_test.go
Lines changed: 4 additions & 4 deletions b/‎deploy/tests/e2e/crd-tcp/cr_tcp_additional_services_test.go
Lines changed: 4 additions & 4 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/cr_tcp_backend_switching_rule_test.go
Lines changed: 5 additions & 5 deletions b/‎deploy/tests/e2e/crd-tcp/cr_tcp_backend_switching_rule_test.go
Lines changed: 5 additions & 5 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/cr_tcp_full_test.go
Lines changed: 6 additions & 6 deletions b/‎deploy/tests/e2e/crd-tcp/cr_tcp_full_test.go
Lines changed: 6 additions & 6 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/cr_tcp_no_ingress_class_test.go
Lines changed: 2 additions & 2 deletions b/‎deploy/tests/e2e/crd-tcp/cr_tcp_no_ingress_class_test.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/cr_tcp_test.go
Lines changed: 4 additions & 4 deletions b/‎deploy/tests/e2e/crd-tcp/cr_tcp_test.go
Lines changed: 4 additions & 4 deletions
diff --git a/‎deploy/tests/e2e/crd-tcp/suite_test.go
Lines changed: 4 additions & 4 deletions b/‎deploy/tests/e2e/crd-tcp/suite_test.go
Lines changed: 4 additions & 4 deletions
diff --git a/‎deploy/tests/e2e/crd/cr_global_test.go
Lines changed: 5 additions & 5 deletions b/‎deploy/tests/e2e/crd/cr_global_test.go
Lines changed: 5 additions & 5 deletions
diff --git a/‎deploy/tests/e2e/crd/suite_test.go
Lines changed: 3 additions & 3 deletions b/‎deploy/tests/e2e/crd/suite_test.go
Lines changed: 3 additions & 3 deletions
diff --git a/‎deploy/tests/e2e/https-runtime/config/backend-crd.yaml
Lines changed: 16 additions & 0 deletions b/‎deploy/tests/e2e/https-runtime/config/backend-crd.yaml
Lines changed: 16 additions & 0 deletions
diff --git a/‎deploy/tests/e2e/https-runtime/config/echo-app-offload-backend-crd.yaml
Lines changed: 93 additions & 0 deletions b/‎deploy/tests/e2e/https-runtime/config/echo-app-offload-backend-crd.yaml
Lines changed: 93 additions & 0 deletions
@@ -22,7 +22,7 @@ import (
 
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.11"
+// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.15-0.20241106115115-75c12953fe1f"
 
 // Backend is a specification for a Backend resource
 type Backend struct {
 
@@ -22,7 +22,7 @@ import (
 
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.11"
+// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.15-0.20241106115115-75c12953fe1f"
 
 // Defaults is a specification for a Defaults resource
 type Defaults struct {
 
@@ -22,7 +22,7 @@ import (
 
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.11"
+// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.15-0.20241106115115-75c12953fe1f"
 // +kubebuilder:validation:XValidation:rule="!has(self.spec.config.default_path)", message="spec.config.default_path is set by ingress controller internally"
 // +kubebuilder:validation:XValidation:rule="!has(self.spec.config.master__dash__worker)", message="spec.config.master-worker is set by ingress controller internally"
 // +kubebuilder:validation:XValidation:rule="!has(self.spec.config.pidfile)", message="spec.config.pidfile is set by ingress controller internally"
 
@@ -23,7 +23,7 @@ import (
 
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.11"
+// +kubebuilder:metadata:annotations="haproxy.org/client-native=v5.1.15-0.20241106115115-75c12953fe1f"
 
 // TCP is a specification for a TCP resource
 type TCP struct {
 
@@ -4,7 +4,7 @@ kind: CustomResourceDefinition
 metadata:
   annotations:
     controller-gen.kubebuilder.io/version: v0.14.0
-    haproxy.org/client-native: v5.1.11
+    haproxy.org/client-native: v5.1.15-0.20241106115115-75c12953fe1f
   name: backends.ingress.v1.haproxy.org
 spec:
   group: ingress.v1.haproxy.org
@@ -2241,8 +2241,8 @@ spec:
                     capture_sample:
                       description: |-
                         capture sample
-                        Pattern: ^[^\s]+$
-                      pattern: ^[^\s]+$
+                        Pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
+                      pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
                       type: string
                     cond:
                       description: |-
@@ -2488,6 +2488,10 @@ spec:
                       maximum: 599
                       minimum: 200
                       type: integer
+                    rst_ttl:
+                      description: rst ttl
+                      format: int64
+                      type: integer
                     sc_expr:
                       description: sc expr
                       type: string
 
@@ -4,7 +4,7 @@ kind: CustomResourceDefinition
 metadata:
   annotations:
     controller-gen.kubebuilder.io/version: v0.14.0
-    haproxy.org/client-native: v5.1.11
+    haproxy.org/client-native: v5.1.15-0.20241106115115-75c12953fe1f
   name: defaults.ingress.v1.haproxy.org
 spec:
   group: ingress.v1.haproxy.org
 
@@ -4,7 +4,7 @@ kind: CustomResourceDefinition
 metadata:
   annotations:
     controller-gen.kubebuilder.io/version: v0.14.0
-    haproxy.org/client-native: v5.1.11
+    haproxy.org/client-native: v5.1.15-0.20241106115115-75c12953fe1f
   name: globals.ingress.v1.haproxy.org
 spec:
   group: ingress.v1.haproxy.org
 
@@ -4,7 +4,7 @@ kind: CustomResourceDefinition
 metadata:
   annotations:
     controller-gen.kubebuilder.io/version: v0.14.0
-    haproxy.org/client-native: v5.1.11
+    haproxy.org/client-native: v5.1.15-0.20241106115115-75c12953fe1f
   name: tcps.ingress.v1.haproxy.org
 spec:
   group: ingress.v1.haproxy.org
@@ -1613,8 +1613,8 @@ spec:
                           capture_sample:
                             description: |-
                               capture sample
-                              Pattern: ^[^\s]+$
-                            pattern: ^[^\s]+$
+                              Pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
+                            pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
                             type: string
                           cond:
                             description: |-
@@ -1692,6 +1692,10 @@ spec:
                           resolve_var:
                             description: resolve var
                             type: string
+                          rst_ttl:
+                            description: rst ttl
+                            format: int64
+                            type: integer
                           sc_idx:
                             description: sc idx
                             type: string
 
@@ -239,3 +239,34 @@ func GetGlobalHAProxyInfo() (info GlobalHAProxyInfo, err error) {
 	}
 	return
 }
+
+type CertInfo struct {
+	Used    bool
+	Subject string
+	Issuer  string
+}
+
+func GetCertSubject(filename string) (certInfo CertInfo, err error) {
+	var result []byte
+	result, err = runtimeCommand("show ssl cert " + filename)
+	if err != nil {
+		return
+	}
+	scanner := bufio.NewScanner(bytes.NewReader(result))
+	for scanner.Scan() {
+		line := scanner.Text()
+		switch {
+		case strings.HasPrefix(line, "Used:"):
+			used, convErr := strconv.ParseBool(strings.Split(line, ": ")[1])
+			if convErr != nil {
+				return
+			}
+			certInfo.Used = used
+		case strings.HasPrefix(line, "Subject:"):
+			certInfo.Subject = strings.Split(line, ": ")[1]
+		case strings.HasPrefix(line, "Issuer:"):
+			certInfo.Issuer = strings.Split(line, ": ")[1]
+		}
+	}
+	return
+}
@@ -20,10 +20,10 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
-	"github.com/haproxytech/config-parser/v5/params"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	"github.com/haproxytech/client-native/v5/config-parser/params"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 	"github.com/stretchr/testify/suite"
 )
 
@@ -21,11 +21,11 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
-	tcp_actions "github.com/haproxytech/config-parser/v5/parsers/tcp/actions"
-	tcptypes "github.com/haproxytech/config-parser/v5/parsers/tcp/types"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	tcp_actions "github.com/haproxytech/client-native/v5/config-parser/parsers/tcp/actions"
+	tcptypes "github.com/haproxytech/client-native/v5/config-parser/parsers/tcp/types"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 	"github.com/stretchr/testify/suite"
 )
 
@@ -20,12 +20,12 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
-	filtertypes "github.com/haproxytech/config-parser/v5/parsers/filters"
-	tcp_actions "github.com/haproxytech/config-parser/v5/parsers/tcp/actions"
-	tcptypes "github.com/haproxytech/config-parser/v5/parsers/tcp/types"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	filtertypes "github.com/haproxytech/client-native/v5/config-parser/parsers/filters"
+	tcp_actions "github.com/haproxytech/client-native/v5/config-parser/parsers/tcp/actions"
+	tcptypes "github.com/haproxytech/client-native/v5/config-parser/parsers/tcp/types"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/stretchr/testify/suite"
 )
 
 
@@ -20,8 +20,8 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 	"github.com/stretchr/testify/suite"
 )
 
@@ -20,10 +20,10 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
-	"github.com/haproxytech/config-parser/v5/params"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	"github.com/haproxytech/client-native/v5/config-parser/params"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 	"github.com/stretchr/testify/suite"
 )
 
@@ -23,10 +23,10 @@ import (
 
 	"github.com/stretchr/testify/suite"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/common"
-	"github.com/haproxytech/config-parser/v5/params"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/common"
+	"github.com/haproxytech/client-native/v5/config-parser/params"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 )
 
 
@@ -21,11 +21,11 @@ import (
 	"strings"
 	"testing"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/common"
-	"github.com/haproxytech/config-parser/v5/options"
-	"github.com/haproxytech/config-parser/v5/params"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/common"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	"github.com/haproxytech/client-native/v5/config-parser/params"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 	"github.com/stretchr/testify/suite"
 )
 
@@ -21,9 +21,9 @@ import (
 
 	"github.com/stretchr/testify/suite"
 
-	parser "github.com/haproxytech/config-parser/v5"
-	"github.com/haproxytech/config-parser/v5/options"
-	"github.com/haproxytech/config-parser/v5/types"
+	parser "github.com/haproxytech/client-native/v5/config-parser"
+	"github.com/haproxytech/client-native/v5/config-parser/options"
+	"github.com/haproxytech/client-native/v5/config-parser/types"
 	"github.com/haproxytech/kubernetes-ingress/deploy/tests/e2e"
 )
 
 
@@ -0,0 +1,16 @@
+apiVersion: ingress.v1.haproxy.org/v1
+kind: Backend
+metadata:
+  name: be-test
+spec:
+  config:
+    name: test-be-simple
+    abortonclose: "enabled"
+    accept_invalid_http_response: "enabled"
+    default_server:
+      check: "enabled"
+  acls:
+  - acl_name: switch_be_0
+    criterion: req_ssl_sni
+    index: 0
+    value: -i backend100.example.com
@@ -0,0 +1,93 @@
+kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: http-echo-offload
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: http-echo-offload
+  template:
+    metadata:
+      labels:
+        app: http-echo-offload
+    spec:
+      containers:
+        - name: http-echo
+          image: "haproxytech/http-echo:latest"
+          imagePullPolicy: Never
+          ports:
+            - name: http
+              containerPort: 8888
+              protocol: TCP
+            - name: https
+              containerPort: 8443
+              protocol: TCP
+---
+kind: Service
+apiVersion: v1
+metadata:
+  name: http-echo-offload
+  annotations:
+    cr-backend: be-test
+spec:
+  ports:
+    - name: http
+      protocol: TCP
+      port: 80
+      targetPort: http
+    - name: https
+      protocol: TCP
+      port: 443
+      targetPort: https
+  selector:
+    app: http-echo-offload
+---
+kind: Ingress
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: http-echo-offload
+  annotations:
+    ingress.class: haproxy
+spec:
+  tls:
+  - hosts:
+      - offload-test.haproxy
+    secretName: haproxy-offload-test
+  - hosts:
+      - offload-test-1.haproxy
+    secretName: haproxy-offload-test-1
+  - hosts:
+      - offload-test-2.haproxy
+    secretName: haproxy-offload-test-2
+  - hosts:
+      - offload-test-3.haproxy
+    secretName: haproxy-offload-test-3
+  - hosts:
+      - offload-test-4.haproxy
+    secretName: haproxy-offload-test-4
+  - hosts:
+      -  default.haproxy
+    secretName: haproxy-default
+  rules:
+    - host: "offload-test.haproxy"
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: http-echo-offload
+                port:
+                  name: http
+    - host: "offload-test-1.haproxy"
+      http:
+        paths:
+          - path: /test1
+            pathType: Prefix
+            backend:
+              service:
+                name: http-echo-offload
+                port:
+                  name: http
+---