Add support for AWS LC [#74] by izzyleung · Pull Request #77 · DBezemer/rpm-haproxy

izzyleung · 2025-12-27T03:46:42Z

This PR completes #74

Manual verification

Installed the HAProxy RPM built from this PR (along with AWS LC):

$ make NO_SUDO=1 MAINVERSION=3.3 USE_AWSLC=1
...
$ rpm -i rpmbuild/RPMS/aarch64/haproxy-3.3.1-1.amzn2023.aarch64.rpm --nodeps --force
...
$ haproxy -vv
HAProxy version 3.3.1-9c24c11 2025/12/19 - https://haproxy.org/
Status: stable branch - will stop receiving fixes around Q1 2027.
Known bugs: http://www.haproxy.org/bugs/bugs-3.3.1.html
Running on: Linux 6.17.7-300.fc43.aarch64 #1 SMP PREEMPT_DYNAMIC Sun Nov  2 15:33:04 UTC 2025 aarch64
Build options :
  TARGET  = linux-glibc
  CC      = cc
  CFLAGS  = -O2 -g -fwrapv -fvect-cost-model=very-cheap
  OPTIONS = USE_THREAD=1 USE_LINUX_TPROXY=1 USE_OPENSSL_AWSLC=1 USE_ZLIB=1 USE_TFO=1 USE_NS=1 USE_PCRE=1 USE_PCRE_JIT=1
...

A self-signed certificate generated via the following command, ref Let's Encrypt:

$ openssl req -x509 -out /tmp/localhost.crt -keyout /tmp/localhost.crt.key \
  -newkey rsa:2048 -nodes -sha256 \
  -subj '/CN=localhost' -extensions EXT -config <( \
   printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth")
$ openssl x509 -in /tmp/localhost.crt -noout -dates -subject
notBefore=Dec 30 16:17:59 2025 GMT
notAfter=Jan 29 16:17:59 2026 GMT
subject=CN = localhost

Started a dummy HTTP server via python3 -m http.server, taking requests on http://0.0.0.0:8000
The following dummy config file is used:

global
    maxconn         10000
    stats socket    /var/run/haproxy.stat mode 600 level admin
    log             127.0.0.1:514 local2
    chroot          /var/empty
    pidfile         /var/run/haproxy.pid
    user            haproxy
    group           haproxy
    daemon

frontend public
    bind            *:8443 ssl crt /tmp/localhost.crt
    mode            http
    log             global
    option          httplog
    option          dontlognull
    monitor-uri     /monitoruri
    maxconn         8000
    timeout client  30s

    stats uri       /admin/stats
    default_backend static

backend static
    mode            http
    balance         roundrobin
    option prefer-last-server
    retries         2
    option redispatch
    timeout connect 5s
    timeout server  5s
    server          statsrv1 127.0.0.1:8000

Started HAProxy w/o daemon via haproxy -db -f haproxy.cfg
Verified https://localhost:8443 SAN via:

$ curl -k -vvI https://localhost:8443
16:42:15.061392 [0-x] * Uses proxy env variable NO_PROXY == 'local,169.254/16'
16:42:15.061588 [0-0] * Host localhost:8443 was resolved.
16:42:15.061626 [0-0] * IPv6: ::1
16:42:15.061678 [0-0] * IPv4: 127.0.0.1
16:42:15.061714 [0-0] * [HTTPS-CONNECT] added
16:42:15.061732 [0-0] * [HTTPS-CONNECT] connect, init
16:42:15.061820 [0-0] * [HTTPS-CONNECT] connect, check h21
16:42:15.061873 [0-0] *   Trying [::1]:8443...
16:42:15.062029 [0-0] * [HTTPS-CONNECT] connect -> 0, done=0
16:42:15.062067 [0-0] * [HTTPS-CONNECT] adjust_pollset -> 1 socks
16:42:15.062098 [0-0] * [HTTPS-CONNECT] connect, check h21
16:42:15.062123 [0-0] * connect to ::1 port 8443 from ::1 port 36882 failed: Connection refused
16:42:15.062199 [0-0] *   Trying 127.0.0.1:8443...
16:42:15.062680 [0-0] * [HTTPS-CONNECT] connect -> 0, done=0
16:42:15.062719 [0-0] * [HTTPS-CONNECT] adjust_pollset -> 1 socks
16:42:15.062751 [0-0] * [HTTPS-CONNECT] connect, check h21
16:42:15.064401 [0-0] * ALPN: curl offers h2,http/1.1
16:42:15.064556 [0-0] * TLSv1.3 (OUT), TLS handshake, Client hello (1):
16:42:15.064702 [0-0] * [HTTPS-CONNECT] connect -> 0, done=0
16:42:15.064742 [0-0] * [HTTPS-CONNECT] adjust_pollset -> 1 socks
16:42:15.066724 [0-0] * [HTTPS-CONNECT] connect, check h21
16:42:15.066773 [0-0] * TLSv1.3 (IN), TLS handshake, Server hello (2):
16:42:15.067032 [0-0] * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
16:42:15.067062 [0-0] * TLSv1.3 (IN), TLS handshake, Certificate (11):
16:42:15.067319 [0-0] * TLSv1.3 (IN), TLS handshake, CERT verify (15):
16:42:15.067424 [0-0] * TLSv1.3 (IN), TLS handshake, Finished (20):
16:42:15.067632 [0-0] * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
16:42:15.067666 [0-0] * TLSv1.3 (OUT), TLS handshake, Finished (20):
16:42:15.067850 [0-0] * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384 / x25519 / RSASSA-PSS
16:42:15.067968 [0-0] * ALPN: server accepted h2
16:42:15.067986 [0-0] * Server certificate:
16:42:15.068005 [0-0] *  subject: CN=localhost
16:42:15.068038 [0-0] *  start date: Dec 30 16:17:59 2025 GMT
16:42:15.068080 [0-0] *  expire date: Jan 29 16:17:59 2026 GMT
16:42:15.068126 [0-0] *  issuer: CN=localhost
16:42:15.068142 [0-0] *  SSL certificate verify result: self-signed certificate (18), continuing anyway.
16:42:15.068160 [0-0] *   Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
16:42:15.068217 [0-0] * [HTTPS-CONNECT] connect+handshake h21: 6ms, 1st data: 4ms
16:42:15.068248 [0-0] * [HTTP/2] [0] created h2 session
16:42:15.068268 [0-0] * [HTTP/2] [0] -> FRAME[SETTINGS, len=18]
16:42:15.068283 [0-0] * [HTTP/2] [0] -> FRAME[WINDOW_UPDATE, incr=1048510465]
16:42:15.068313 [0-0] * [HTTP/2] cf_connect() -> 0, 1,
16:42:15.068348 [0-0] * [HTTPS-CONNECT] connect -> 0, done=1
16:42:15.068369 [0-0] * Connected to localhost (127.0.0.1) port 8443
16:42:15.068382 [0-0] * using HTTP/2
16:42:15.068457 [0-0] * [HTTP/2] [1] OPENED stream for https://localhost:8443/
16:42:15.068472 [0-0] * [HTTP/2] [1] [:method: HEAD]
16:42:15.068712 [0-0] * [HTTP/2] [1] [:scheme: https]
16:42:15.068727 [0-0] * [HTTP/2] [1] [:authority: localhost:8443]
16:42:15.068741 [0-0] * [HTTP/2] [1] [:path: /]
16:42:15.068754 [0-0] * [HTTP/2] [1] [user-agent: curl/8.11.1]
16:42:15.068817 [0-0] * [HTTP/2] [1] [accept: */*]
16:42:15.068893 [0-0] * [HTTP/2] [1] submit -> 77, 0
16:42:15.069095 [0-0] * [HTTP/2] [1] -> FRAME[HEADERS, len=35, hend=1, eos=1]
16:42:15.069206 [0-0] * [HTTP/2] [0] egress: wrote 108 bytes
16:42:15.069233 [0-0] * [HTTP/2] [1] cf_send(len=77) -> 77, 0, eos=1, h2 windows 65535-65535 (stream-conn), buffers 0-0 (stream-conn)
16:42:15.069246 [0-0] > HEAD / HTTP/2
16:42:15.069246 [0-0] > Host: localhost:8443
16:42:15.069246 [0-0] > User-Agent: curl/8.11.1
16:42:15.069246 [0-0] > Accept: */*
16:42:15.069246 [0-0] >
16:42:15.069325 [0-0] * [HTTP/2] [0] progress ingress: done
16:42:15.069371 [0-0] * [HTTP/2] [1] cf_recv(len=102400) -> -1 81, window=0/65535, connection 1048576000/1048576000
16:42:15.069388 [0-0] * Request completely sent off
16:42:15.069708 [0-0] * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
16:42:15.069874 [0-0] * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
16:42:15.069946 [0-0] * [HTTP/2] [0] ingress: read 36 bytes
16:42:15.069987 [0-0] * [HTTP/2] [0] <- FRAME[SETTINGS, len=18]
16:42:15.070012 [0-0] * [HTTP/2] [0] MAX_CONCURRENT_STREAMS: 100
16:42:15.070057 [0-0] * [HTTP/2] [0] ENABLE_PUSH: TRUE
16:42:15.070096 [0-0] * [HTTP/2] [0] <- FRAME[SETTINGS, ack=1]
16:42:15.070108 [0-0] * [HTTP/2] [0] progress ingress: inbufg=0
16:42:15.070123 [0-0] * [HTTP/2] [0] progress ingress: done
16:42:15.070300 [0-0] * [HTTP/2] [0] -> FRAME[SETTINGS, ack=1]
16:42:15.070424 [0-0] * [HTTP/2] [0] egress: wrote 9 bytes
16:42:15.070451 [0-0] * [HTTP/2] [1] cf_recv(len=102400) -> -1 81, window=0/65536, connection 1048576000/1048576000
16:42:15.075187 [0-0] * [HTTP/2] [0] ingress: read 103 bytes
16:42:15.075225 [0-0] < HTTP/2 200
HTTP/2 200
16:42:15.075243 [0-0] * [HTTP/2] [1] local window update by 10420224
16:42:15.075288 [0-0] * [HTTP/2] [1] status: HTTP/2 200
16:42:15.075333 [0-0] < server: SimpleHTTP/0.6 Python/3.9.25
server: SimpleHTTP/0.6 Python/3.9.25
16:42:15.075347 [0-0] * [HTTP/2] [1] header: server: SimpleHTTP/0.6 Python/3.9.25
16:42:15.075359 [0-0] < date: Tue, 30 Dec 2025 16:42:15 GMT
date: Tue, 30 Dec 2025 16:42:15 GMT
16:42:15.075371 [0-0] * [HTTP/2] [1] header: date: Tue, 30 Dec 2025 16:42:15 GMT
16:42:15.075383 [0-0] < content-type: text/html; charset=utf-8
content-type: text/html; charset=utf-8
16:42:15.075395 [0-0] * [HTTP/2] [1] header: content-type: text/html; charset=utf-8
16:42:15.075430 [0-0] < content-length: 1011
content-length: 1011
16:42:15.075613 [0-0] * [HTTP/2] [1] header: content-length: 1011
16:42:15.075628 [0-0] * [HTTP/2] [1] <- FRAME[HEADERS, len=94, hend=1, eos=1]
16:42:15.075655 [0-0] <

16:42:15.075685 [0-0] * [HTTP/2] [1] DRAIN select_bits=1
16:42:15.075700 [0-0] * [HTTP/2] [1] CLOSED
16:42:15.075711 [0-0] * [HTTP/2] [1] DRAIN select_bits=1
16:42:15.075796 [0-0] * [HTTP/2] [0] progress ingress: inbufg=0
16:42:15.075810 [0-0] * [HTTP/2] [1] DRAIN select_bits=1
16:42:15.075820 [0-0] * [HTTP/2] [0] progress ingress: done
16:42:15.075833 [0-0] * [HTTP/2] [1] returning CLOSE
16:42:15.075858 [0-0] * [HTTP/2] handle_stream_close -> 0, 0
16:42:15.075870 [0-0] * [HTTP/2] [1] cf_recv(len=102400) -> 0 0, window=-1/-1, connection 1048576000/1048576000
16:42:15.075940 [0-0] * Connection #0 to host localhost left intact

Current limitations:

When building AWS LC, it will override openssl if installed, so better build this in a container
Source of AWS LC will be stored under /tmp/download-cache, it's not cleaned up after building RPM, we can add logic to clean them up but if we run things in containers, we don't need to bother
Amazon Linux 2 is not supported: we need to install cmake3 rather than cmake to make things work. I am lazy, and this OS is going out of support soon, so probably won't do this for the sake of keeping it alive
The compiled binary does not have AWS LC statically linked, so when user install the valilla openssl, it makes no sense. Maybe we should add a -awslc suffix to let user know RPM is complied against AWS LC?
With AWS LC built and installed, it does not provide libssl.so info to RPM, when installing built RPM, we will get

bash-5.2# rpm -i rpmbuild/RPMS/x86_64/haproxy-3.3.1-1.amzn2023.x86_64.rpm
error: Failed dependencies:
	libcrypto.so()(64bit) is needed by haproxy-3.3.1-1.amzn2023.x86_64
	libssl.so()(64bit) is needed by haproxy-3.3.1-1.amzn2023.x86_64

But with

bash-5.2# rpm -i rpmbuild/RPMS/x86_64/haproxy-3.3.1-1.amzn2023.x86_64.rpm --nodeps
....
bash-5.2# /usr/sbin/haproxy -vv
HAProxy version 3.3.1-9c24c11 2025/12/19 - https://haproxy.org/
Status: stable branch - will stop receiving fixes around Q1 2027.
Known bugs: http://www.haproxy.org/bugs/bugs-3.3.1.html
Running on: Linux 6.17.7-300.fc43.aarch64 #1 SMP PREEMPT_DYNAMIC Sun Nov  2 15:33:04 UTC 2025 x86_64
Build options :
  TARGET  = linux-glibc
  CC      = cc
  CFLAGS  = -O2 -g -fwrapv -fvect-cost-model=very-cheap
  OPTIONS = USE_THREAD=1 USE_LINUX_TPROXY=1 USE_OPENSSL_AWSLC=1 USE_ZLIB=1 USE_TFO=1 USE_NS=1 USE_PCRE=1 USE_PCRE_JIT=1
  DEBUG   =

Feature list : -51DEGREES +ACCEPT4 +BACKTRACE -CLOSEFROM +CPU_AFFINITY +CRYPT_H -DEVICEATLAS +DL -ECH -ENGINE +EPOLL -EVPORTS +GETADDRINFO -KQUEUE +KTLS -LIBATOMIC +LIBCRYPT +LINUX_CAP +LINUX_SPLICE +LINUX_TPROXY -LUA -MATH -MEMORY_PROFILING +NETFILTER +NS -OBSOLETE_LINKER +OPENSSL +OPENSSL_AWSLC -OPENSSL_WOLFSSL -OT +PCRE -PCRE2 -PCRE2_JIT +PCRE_JIT +POLL +PRCTL -PROCCTL -PROMEX -PTHREAD_EMULATION -QUIC -QUIC_OPENSSL_COMPAT +RT +SHM_OPEN -SLZ +SSL -STATIC_PCRE -STATIC_PCRE2 +TFO +THREAD +THREAD_DUMP +TPROXY -WURFL +ZLIB +ACME

Default settings :
  bufsize = 16384, maxrewrite = 1024, maxpollevents = 200

Built with multi-threading support (MAX_TGROUPS=32, MAX_THREADS=1024, default=12).
Built with SSL library version : OpenSSL 1.1.1 (compatible; AWS-LC 1.66.1)
Running on SSL library version : AWS-LC 1.66.1
SSL library supports TLS extensions : yes
SSL library supports SNI : yes
SSL library FIPS mode : no
SSL library supports : TLSv1.0 TLSv1.1 TLSv1.2 TLSv1.3
Built with network namespace support.
Built with zlib version : 1.2.11
Running on zlib version : 1.2.11
Compression algorithms supported : identity("identity"), deflate("deflate"), raw-deflate("deflate"), gzip("gzip")
Built with transparent proxy support using: IP_TRANSPARENT IPV6_TRANSPARENT IP_FREEBIND
Built with PCRE version : 8.44 2020-02-12
Running on PCRE version : 8.44 2020-02-12
PCRE library supports JIT : yes
Encrypted password support via crypt(3): yes
Built with gcc compiler version 11.5.0 20240719 (Red Hat 11.5.0-5)

Available polling systems :
      epoll : pref=300,  test result OK
       poll : pref=200,  test result OK
     select : pref=150,  test result OK
Total: 3 (3 usable), will use epoll.

Available multiplexer protocols :
(protocols marked as <default> cannot be specified using 'proto' keyword)
         h2 : mode=HTTP  side=FE|BE  mux=H2    flags=HTX|HOL_RISK|NO_UPG
         h1 : mode=HTTP  side=FE|BE  mux=H1    flags=HTX|NO_UPG
  <default> : mode=HTTP  side=FE|BE  mux=H1    flags=HTX
       fcgi : mode=HTTP  side=BE     mux=FCGI  flags=HTX|HOL_RISK|NO_UPG
       spop : mode=SPOP  side=BE     mux=SPOP  flags=HOL_RISK|NO_UPG
  <default> : mode=SPOP  side=BE     mux=SPOP  flags=HOL_RISK|NO_UPG
       none : mode=TCP   side=FE|BE  mux=PASS  flags=NO_UPG
  <default> : mode=TCP   side=FE|BE  mux=PASS  flags=

Available services : none

Available filters :
	[BWLIM] bwlim-in
	[BWLIM] bwlim-out
	[CACHE] cache
	[COMP] compression
	[FCGI] fcgi-app
	[SPOE] spoe
	[TRACE] trace

We can verify HAProxy is working, but I think this is more to do with AWS LC, less to do with the RPM

izzyleung · 2025-12-27T03:53:23Z

Verified working on ARM64 with the following testing build, some outputs were removed for brevity:

$ podman run -it --rm -v $PWD:/root -w /root --name al2023 amazonlinux:2023 bash
bash-5.2# yum install -y make
... 
Installed:
  gc-8.0.4-5.amzn2023.0.2.aarch64       guile22-2.2.7-2.amzn2023.0.3.aarch64       libtool-ltdl-2.4.7-1.amzn2023.0.3.aarch64       make-1:4.3-5.amzn2023.0.2.aarch64

Complete!
bash-5.2# make NO_SUDO=1 MAINVERSION=3.3 USE_AWSLC=1
# Check if the prereqs are there before trying to sudo
rpm -q pcre-devel make gcc rpm-build systemd-devel curl sed zlib-devel cmake wget g++ || \
	 dnf install -y --allowerasing pcre-devel make gcc rpm-build systemd-devel curl sed zlib-devel cmake wget g++
package pcre-devel is not installed
make-4.3-5.amzn2023.0.2.aarch64
package gcc is not installed
package rpm-build is not installed
package systemd-devel is not installed
package curl is not installed
sed-4.8-7.amzn2023.0.2.aarch64
package zlib-devel is not installed
package cmake is not installed
package wget is not installed
package g++ is not installed
...

Installed:
  amazon-rpm-config-228-10.amzn2023.0.1.noarch               annobin-docs-12.69-1.amzn2023.0.1.noarch                annobin-plugin-gcc-12.69-1.amzn2023.0.1.aarch64
  binutils-2.41-50.amzn2023.0.5.aarch64                      bzip2-1.0.8-6.amzn2023.0.2.aarch64                      cmake-3.22.2-1.amzn2023.0.4.aarch64
  cmake-data-3.22.2-1.amzn2023.0.4.noarch                    cmake-filesystem-3.22.2-1.amzn2023.0.4.aarch64          cmake-rpm-macros-3.22.2-1.amzn2023.0.4.noarch
  cpio-2.13-13.amzn2023.0.3.aarch64                          cpp-11.5.0-5.amzn2023.0.5.aarch64                       curl-8.11.1-4.amzn2023.0.3.aarch64
  debugedit-5.0-10.amzn2023.0.1.aarch64                      diffutils-3.8-1.amzn2023.0.2.aarch64                    dwz-0.16-2.amzn2023.0.1.aarch64
  ed-1.14.2-10.amzn2023.0.2.aarch64                          efi-srpm-macros-5-4.amzn2023.0.5.noarch                 elfutils-0.188-3.amzn2023.0.3.aarch64
  elfutils-debuginfod-client-0.188-3.amzn2023.0.3.aarch64    emacs-filesystem-1:28.2-3.amzn2023.0.10.noarch          file-5.39-7.amzn2023.0.4.aarch64
  findutils-1:4.8.0-2.amzn2023.0.2.aarch64                   fonts-srpm-macros-1:2.0.5-12.amzn2023.0.2.noarch        gcc-11.5.0-5.amzn2023.0.5.aarch64
  gcc-c++-11.5.0-5.amzn2023.0.5.aarch64                      gcc-plugin-annobin-11.5.0-5.amzn2023.0.5.aarch64        gdb-minimal-16.3-1.amzn2023.0.1.aarch64
  ghc-srpm-macros-1.5.0-4.amzn2023.0.2.noarch                glibc-devel-2.34-231.amzn2023.0.1.aarch64               glibc-gconv-extra-2.34-231.amzn2023.0.1.aarch64
  gnutls-3.8.3-8.amzn2023.0.1.aarch64                        go-srpm-macros-3.8.0-1.amzn2023.0.1.noarch              gzip-1.12-1.amzn2023.0.1.aarch64
  info-6.7-10.amzn2023.0.2.aarch64                           jansson-2.14-0.amzn2023.aarch64                         jsoncpp-1.9.4-3.amzn2023.0.2.aarch64
  kernel-srpm-macros-1.0-14.amzn2023.0.3.noarch              kernel6.12-headers-1:6.12.58-82.121.amzn2023.aarch64    libmetalink-0.1.3-14.amzn2023.0.2.aarch64
  libmpc-1.2.1-2.amzn2023.0.2.aarch64                        libpkgconf-1.8.0-4.amzn2023.0.2.aarch64                 libstdc++-devel-11.5.0-5.amzn2023.0.5.aarch64
  libuv-1:1.51.0-1.amzn2023.0.1.aarch64                      libxcrypt-devel-4.4.33-7.amzn2023.aarch64               lua-srpm-macros-1-4.amzn2023.0.2.noarch
  nettle-3.10.1-1.amzn2023.0.1.aarch64                       ocaml-srpm-macros-6-6.amzn2023.0.2.noarch               openblas-srpm-macros-2-9.amzn2023.0.2.noarch
  package-notes-srpm-macros-0.4-18.amzn2023.0.5.noarch       patch-2.7.6-14.amzn2023.0.2.aarch64                     pcre-8.44-3.amzn2023.1.0.3.aarch64
  pcre-cpp-8.44-3.amzn2023.1.0.3.aarch64                     pcre-devel-8.44-3.amzn2023.1.0.3.aarch64                pcre-utf16-8.44-3.amzn2023.1.0.3.aarch64
  pcre-utf32-8.44-3.amzn2023.1.0.3.aarch64                   perl-srpm-macros-1-39.amzn2023.0.2.noarch               pkgconf-1.8.0-4.amzn2023.0.2.aarch64
  pkgconf-m4-1.8.0-4.amzn2023.0.2.noarch                     pkgconf-pkg-config-1.8.0-4.amzn2023.0.2.aarch64         python-srpm-macros-3.9-41.amzn2023.0.6.noarch
  rhash-1.4.0-3.amzn2023.0.2.aarch64                         rpm-build-4.16.1.3-29.amzn2023.0.6.aarch64              rust-toolset-srpm-macros-1.91.0-1.amzn2023.0.1.noarch
  systemd-devel-252.23-10.amzn2023.aarch64                   systemd-libs-252.23-10.amzn2023.aarch64                 systemd-rpm-macros-252.23-10.amzn2023.noarch
  tar-2:1.34-1.amzn2023.0.4.aarch64                          unzip-6.0-57.amzn2023.0.2.aarch64                       vim-filesystem-2:9.1.1591-1.amzn2023.0.1.noarch
  wget-1.21.3-1.amzn2023.0.4.aarch64                         xxhash-libs-0.8.0-3.amzn2023.0.2.aarch64                xz-5.2.5-9.amzn2023.0.2.aarch64
  zip-3.0-28.amzn2023.0.2.aarch64                            zlib-devel-1.2.11-33.amzn2023.0.5.aarch64               zstd-1.5.5-1.amzn2023.0.1.aarch64
Removed:
  curl-minimal-8.11.1-4.amzn2023.0.3.aarch64

Complete!
rm -f ./SOURCES/haproxy-*.tar.gz
rm -rf ./SOURCES/lua-*
rm -rf ./rpmbuild
mkdir -p ./rpmbuild/SPECS/ ./rpmbuild/SOURCES/ ./rpmbuild/RPMS/ ./rpmbuild/SRPMS/
curl -o ./SOURCES/haproxy-3.3.1.tar.gz http://www.haproxy.org/download/3.3/src/haproxy-3.3.1.tar.gz
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 5119k  100 5119k    0     0  1898k      0  0:00:02  0:00:02 --:--:-- 1898k
cp -r ./SPECS/* ./rpmbuild/SPECS/ || true
cp -r ./SOURCES/* ./rpmbuild/SOURCES/ || true
rpmbuild -ba SPECS/haproxy.spec \
--define "mainversion 3.3" \
--define "version 3.3.1" \
--define "release 1" \
--define "_cpu 0" \
--define "_extra_cflags 0" \
--define "_topdir %(pwd)/rpmbuild" \
--define "_builddir %{_topdir}/BUILD" \
--define "_buildroot %{_topdir}/BUILDROOT" \
--define "_rpmdir %{_topdir}/RPMS" \
--define "_srcrpmdir %{_topdir}/SRPMS" \
--define "_use_lua 0" \
--define "_use_prometheus 0" \
--define "_use_awslc 1" \
--define "_awslc_version 1.66.1"
setting SOURCE_DATE_EPOCH=1690243200
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.R0pa2y
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd /root/rpmbuild/BUILD
+ rm -rf haproxy-3.3.1
+ /usr/bin/gzip -dc /root/rpmbuild/SOURCES/haproxy-3.3.1.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd haproxy-3.3.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.qRvQK8
+ umask 022
+ cd /root/rpmbuild/BUILD
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection'
+ export CFLAGS
+ CXXFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection'
+ export CXXFLAGS
+ FFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -I/usr/lib64/gfortran/modules'
+ export FFLAGS
+ FCFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -I/usr/lib64/gfortran/modules'
+ export FCFLAGS
+ VALAFLAGS=-g
+ export VALAFLAGS
+ LDFLAGS='-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
+ export LDFLAGS
+ LT_SYS_LIBRARY_PATH=/usr/lib64:
+ export LT_SYS_LIBRARY_PATH
+ CC=gcc
+ export CC
+ CXX=g++
+ export CXX
+ '[' -f /usr/lib/rpm/generate-rpm-note.sh ']'
+ /usr/lib/rpm/generate-rpm-note.sh haproxy 3.3.1-1.amzn2023 aarch64
+ cd haproxy-3.3.1
+ env BUILDSSL_DESTDIR=/usr AWS_LC_VERSION=1.66.1 scripts/build-ssl.sh
+ BUILDSSL_DESTDIR=/usr
+ BUILDSSL_TMPDIR=/tmp/download-cache
+ QUICTLS_URL=https://github.com/quictls/openssl
+ WOLFSSL_DEBUG=0
+ GIT_TYPE=commit
+ mkdir -p /usr
+ mkdir -p /tmp/download-cache
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z x ']'
+ download_aws_lc
+ '[' '!' -f /tmp/download-cache/aws-lc-1.66.1.tar.gz ']'
+ '[' 1.66.1 '!=' 1.66.1 ']'
+ WGETFILE=v1.66.1.tar.gz
+ wget -q -O /tmp/download-cache/aws-lc-1.66.1.tar.gz https://github.com/aws/aws-lc/archive/refs/tags/v1.66.1.tar.gz
+ build_aws_lc
++ cat /usr/.aws_lc-version
cat: /usr/.aws_lc-version: No such file or directory
+ '[' '' '!=' 1.66.1 ']'
+ mkdir -p /tmp/download-cache/aws-lc-1.66.1/
+ tar zxf /tmp/download-cache/aws-lc-1.66.1.tar.gz -C /tmp/download-cache/aws-lc-1.66.1/ --strip-components=1
+ cd /tmp/download-cache/aws-lc-1.66.1/
+ mkdir -p build
+ cd build
+ cmake -version
cmake version 3.22.2

CMake suite maintained and supported by Kitware (kitware.com/cmake).
+ cmake -DCMAKE_BUILD_TYPE=Release -DBUILD_SHARED_LIBS=1 -DDISABLE_GO=1 -DDISABLE_PERL=1 -DCMAKE_BUILD_WITH_INSTALL_RPATH=ON -DCMAKE_INSTALL_RPATH=/usr/lib -DBUILD_TESTING=0 -DCMAKE_INSTALL_PREFIX=/usr ..
-- ENABLE_PRE_SONAME_BUILD: ON
-- PERFORM_SONAME_BUILD: 0
-- The C compiler identification is GNU 11.5.0
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - done
-- Check for working C compiler: /usr/bin/gcc - skipped
-- Detecting C compile features
-- Detecting C compile features - done
-- Entropy source configured: Dynamic (default: CPU Jitter)
-- The CXX compiler identification is GNU 11.5.0
-- Detecting CXX compiler ABI info
-- Detecting CXX compiler ABI info - done
-- Check for working CXX compiler: /usr/bin/g++ - skipped
-- Detecting CXX compile features
-- Detecting CXX compile features - done
-- Go not found. Disabling some code generation and using pre-generated code in generated-src/
-- Perl not found. Disabling some code generation and using pre-generated code in generated-src/
-- Run check_run file_to_test 'memcmp_invalid_stripped_check.c', flag_to_set 'MEMCMP_INVALID_STRIPPED', and compile_flags '-O3 -DNDEBUG'.
-- Setting CMAKE_C_STANDARD=11
-- Performing Test HAVE_C_FLAG__Wno_cast_function_type
-- Performing Test HAVE_C_FLAG__Wno_cast_function_type - Success
-- Compiler supports '-Wno-cast-function-type', adding to CMAKE_C_FLAGS
-- Performing Test HAVE_C_FLAG__Wno_free_nonheap_object
-- Performing Test HAVE_C_FLAG__Wno_free_nonheap_object - Success
-- Compiler supports '-Wno-free-nonheap-object', adding to C_CXX_FLAGS
-- Performing Test HAVE_C_FLAG__Wmissing_braces
-- Performing Test HAVE_C_FLAG__Wmissing_braces - Success
-- Compiler supports '-Wmissing-braces', adding to C_CXX_FLAGS
-- Performing Test HAVE_C_FLAG__Wstring_concatenation
-- Performing Test HAVE_C_FLAG__Wstring_concatenation - Failed
-- Performing Test HAVE_C_FLAG__Wimplicit_fallthrough
-- Performing Test HAVE_C_FLAG__Wimplicit_fallthrough - Success
-- Compiler supports '-Wimplicit-fallthrough', adding to C_CXX_FLAGS
-- linux_random_h.c probe is positive, enabling HAVE_LINUX_RANDOM_H
-- stdalign_check.c probe is positive, enabling AWS_LC_STDALIGN_AVAILABLE
-- builtin_swap_check.c probe is positive, enabling AWS_LC_BUILTIN_SWAP_SUPPORTED
-- Performing Test HAVE_C_FLAG__Wshadow
-- Performing Test HAVE_C_FLAG__Wshadow - Success
-- Compiler supports '-Wshadow', adding to C_CXX_FLAGS
-- The ASM compiler identification is GNU
-- Found assembler: /usr/bin/gcc
Copying platform assembly files from /tmp/download-cache/aws-lc-1.66.1/generated-src/linux-aarch64/crypto/ to /tmp/download-cache/aws-lc-1.66.1/build/crypto
-- neon_sha3_check.c probe is positive, enabling MY_ASSEMBLER_SUPPORTS_NEON_SHA3_EXTENSION
-- Looking for pthread.h
-- Looking for pthread.h - found
-- Performing Test CMAKE_HAVE_LIBC_PTHREAD
-- Performing Test CMAKE_HAVE_LIBC_PTHREAD - Success
-- Found Threads: TRUE
-- Installing: /tmp/download-cache/aws-lc-1.66.1/build/tool-openssl/c_rehash
-- Configuring done
-- Generating done
-- Build files have been written to: /tmp/download-cache/aws-lc-1.66.1/build
++ nproc
+ make -j12
...
[ 99%] Linking CXX executable openssl
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 99%] Built target openssl
[100%] Linking CXX executable bssl
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[100%] Built target bssl
make[2]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
make[1]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
+ make install
make[1]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
make[2]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[  0%] Built target boringssl_prefix_symbols
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target jitterentropy
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[  2%] Built target jitterentropy
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target crypto_objects
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 58%] Built target crypto_objects
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target fipsmodule
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 80%] Built target fipsmodule
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 80%] Built target crypto
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target ssl
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 90%] Built target ssl
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target bssl
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[ 94%] Built target bssl
make[3]: Entering directory '/tmp/download-cache/aws-lc-1.66.1/build'
Consolidate compiler generated dependencies of target openssl
make[3]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
[100%] Built target openssl
make[2]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
Install the project...
-- Install configuration: "Release"
-- Installing: /usr/include/openssl
-- Installing: /usr/include/openssl/aead.h
-- Installing: /usr/include/openssl/aes.h
-- Installing: /usr/include/openssl/arm_arch.h
-- Installing: /usr/include/openssl/asm_base.h
-- Installing: /usr/include/openssl/asn1.h
-- Installing: /usr/include/openssl/asn1_mac.h
-- Installing: /usr/include/openssl/asn1t.h
-- Installing: /usr/include/openssl/base.h
-- Installing: /usr/include/openssl/base64.h
-- Installing: /usr/include/openssl/bio.h
-- Installing: /usr/include/openssl/blake2.h
-- Installing: /usr/include/openssl/blowfish.h
-- Installing: /usr/include/openssl/bn.h
-- Installing: /usr/include/openssl/buf.h
-- Installing: /usr/include/openssl/buffer.h
-- Installing: /usr/include/openssl/bytestring.h
-- Installing: /usr/include/openssl/chacha.h
-- Installing: /usr/include/openssl/cipher.h
-- Installing: /usr/include/openssl/cmac.h
-- Installing: /usr/include/openssl/conf.h
-- Installing: /usr/include/openssl/cpu.h
-- Installing: /usr/include/openssl/crypto.h
-- Installing: /usr/include/openssl/ctrdrbg.h
-- Installing: /usr/include/openssl/curve25519.h
-- Installing: /usr/include/openssl/des.h
-- Installing: /usr/include/openssl/dh.h
-- Installing: /usr/include/openssl/digest.h
-- Installing: /usr/include/openssl/dsa.h
-- Installing: /usr/include/openssl/dtls1.h
-- Installing: /usr/include/openssl/e_os2.h
-- Installing: /usr/include/openssl/ec.h
-- Installing: /usr/include/openssl/ec_key.h
-- Installing: /usr/include/openssl/ecdh.h
-- Installing: /usr/include/openssl/ecdsa.h
-- Installing: /usr/include/openssl/engine.h
-- Installing: /usr/include/openssl/err.h
-- Installing: /usr/include/openssl/evp.h
-- Installing: /usr/include/openssl/evp_errors.h
-- Installing: /usr/include/openssl/ex_data.h
-- Installing: /usr/include/openssl/experimental
-- Installing: /usr/include/openssl/experimental/kem_deterministic_api.h
-- Installing: /usr/include/openssl/hkdf.h
-- Installing: /usr/include/openssl/hmac.h
-- Installing: /usr/include/openssl/hpke.h
-- Installing: /usr/include/openssl/hrss.h
-- Installing: /usr/include/openssl/is_awslc.h
-- Installing: /usr/include/openssl/kdf.h
-- Installing: /usr/include/openssl/lhash.h
-- Installing: /usr/include/openssl/md4.h
-- Installing: /usr/include/openssl/md5.h
-- Installing: /usr/include/openssl/mem.h
-- Installing: /usr/include/openssl/nid.h
-- Installing: /usr/include/openssl/obj.h
-- Installing: /usr/include/openssl/obj_mac.h
-- Installing: /usr/include/openssl/objects.h
-- Installing: /usr/include/openssl/ocsp.h
-- Installing: /usr/include/openssl/opensslconf.h
-- Installing: /usr/include/openssl/opensslv.h
-- Installing: /usr/include/openssl/ossl_typ.h
-- Installing: /usr/include/openssl/pem.h
-- Installing: /usr/include/openssl/pkcs12.h
-- Installing: /usr/include/openssl/pkcs7.h
-- Installing: /usr/include/openssl/pkcs8.h
-- Installing: /usr/include/openssl/poly1305.h
-- Installing: /usr/include/openssl/pool.h
-- Installing: /usr/include/openssl/posix_time.h
-- Installing: /usr/include/openssl/rand.h
-- Installing: /usr/include/openssl/rc4.h
-- Installing: /usr/include/openssl/ripemd.h
-- Installing: /usr/include/openssl/rsa.h
-- Installing: /usr/include/openssl/safestack.h
-- Installing: /usr/include/openssl/service_indicator.h
-- Installing: /usr/include/openssl/sha.h
-- Installing: /usr/include/openssl/siphash.h
-- Installing: /usr/include/openssl/span.h
-- Installing: /usr/include/openssl/sshkdf.h
-- Installing: /usr/include/openssl/ssl.h
-- Installing: /usr/include/openssl/ssl3.h
-- Installing: /usr/include/openssl/stack.h
-- Installing: /usr/include/openssl/target.h
-- Installing: /usr/include/openssl/thread.h
-- Installing: /usr/include/openssl/time.h
-- Installing: /usr/include/openssl/tls1.h
-- Installing: /usr/include/openssl/trust_token.h
-- Installing: /usr/include/openssl/type_check.h
-- Installing: /usr/include/openssl/ui.h
-- Installing: /usr/include/openssl/x509.h
-- Installing: /usr/include/openssl/x509_vfy.h
-- Installing: /usr/include/openssl/x509v3.h
-- Installing: /usr/include/openssl/x509v3_errors.h
-- Up-to-date: /usr/include/openssl
-- Installing: /usr/include/openssl/boringssl_prefix_symbols.h
-- Installing: /usr/include/openssl/boringssl_prefix_symbols_asm.h
-- Installing: /usr/include/openssl/boringssl_prefix_symbols_nasm.inc
-- Up-to-date: /usr/include/openssl/experimental
-- Installing: /usr/lib64/pkgconfig/libcrypto.pc
-- Installing: /usr/lib64/pkgconfig/libssl.pc
-- Installing: /usr/lib64/pkgconfig/openssl.pc
-- Installing: /usr/lib64/libcrypto.so
-- Installing: /usr/lib64/crypto/cmake/crypto-config.cmake
-- Installing: /usr/lib64/crypto/cmake/shared/crypto-targets.cmake
-- Installing: /usr/lib64/crypto/cmake/shared/crypto-targets-release.cmake
-- Installing: /usr/lib64/libssl.so
-- Installing: /usr/lib64/ssl/cmake/ssl-config.cmake
-- Installing: /usr/lib64/ssl/cmake/shared/ssl-targets.cmake
-- Installing: /usr/lib64/ssl/cmake/shared/ssl-targets-release.cmake
-- Installing: /usr/bin/bssl
-- Installing: /usr/bin/openssl
-- Installing: /usr/bin/c_rehash
make[1]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
+ echo 1.66.1
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ regparm_opts=
++ /usr/bin/nproc
+ RPM_BUILD_NCPUS=12
+ systemd_opts=
+ pcre_opts=USE_PCRE=1
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection'
+ USE_TFO=
+ USE_NS=
+ systemd_opts=USE_SYSTEMD=1
+ pcre_opts='USE_PCRE=1 USE_PCRE_JIT=1'
+ USE_TFO=1
+ USE_NS=1
+ CPU=generic
+ OPENSSL_ARGS='USE_OPENSSL_AWSLC=1 SSL_LIB=/usr/lib SSL_INC=/usr/include'
+ /usr/bin/make -j12 -j12 CPU=generic TARGET=linux-glibc USE_SYSTEMD=1 USE_PCRE=1 USE_PCRE_JIT=1 USE_OPENSSL_AWSLC=1 SSL_LIB=/usr/lib SSL_INC=/usr/include USE_ZLIB=1 'ADDINC=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection' USE_LINUX_TPROXY=1 USE_THREAD=1 USE_TFO=1 USE_NS=1 'ADDLIB=-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_SYSTEMD=1
Makefile:360: ignoring unknown build option: USE_AWSLC=1
...
  CC      src/ech.o
  LD      dev/flags/flags
  LD      haproxy
lto-wrapper: warning: using serial compilation of 74 LTRANS jobs
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/halog/halog 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
  CC      admin/halog/halog.o
  CC      admin/halog/fgets2.o
  LD      admin/halog/halog
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/iprange/iprange 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
cc     admin/iprange/iprange.c   -o admin/iprange/iprange
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/iprange/ip6range 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
cc     admin/iprange/ip6range.c   -o admin/iprange/ip6range
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.KpWaGT
+ umask 022
+ cd /root/rpmbuild/BUILD
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64 '!=' / ']'
+ rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
++ dirname /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
+ mkdir -p /root/rpmbuild/BUILDROOT
+ mkdir /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection'
+ export CFLAGS
+ CXXFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection'
+ export CXXFLAGS
+ FFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -I/usr/lib64/gfortran/modules'
+ export FFLAGS
+ FCFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -march=armv8.2-a+crypto -mtune=neoverse-n1 -mbranch-protection=standard -fasynchronous-unwind-tables -fstack-clash-protection -I/usr/lib64/gfortran/modules'
+ export FCFLAGS
+ VALAFLAGS=-g
+ export VALAFLAGS
+ LDFLAGS='-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.aarch64.ld'
+ export LDFLAGS
+ LT_SYS_LIBRARY_PATH=/usr/lib64:
+ export LT_SYS_LIBRARY_PATH
+ CC=gcc
+ export CC
+ CXX=g++
+ export CXX
+ cd haproxy-3.3.1
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64 '!=' / ']'
+ /usr/bin/rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/sbin
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/haproxy
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/haproxy/errors
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/man/man1/
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/logrotate.d
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/rsyslog.d
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/var/log/haproxy
+ /usr/bin/install -p haproxy /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/sbin/
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.cfg /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/haproxy/haproxy.cfg
+ /usr/bin/install -c -m 644 examples/errorfiles/400.http examples/errorfiles/403.http examples/errorfiles/408.http examples/errorfiles/500.http examples/errorfiles/502.http examples/errorfiles/503.http examples/errorfiles/504.http /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/haproxy/errors/
+ /usr/bin/install -c -m 644 doc/haproxy.1 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/man/man1/
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.syslog.amzn2023 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/rsyslog.d/49-haproxy.conf
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.logrotate /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/etc/logrotate.d/haproxy
+ /usr/bin/install -p -m 0755 ./admin/halog/halog /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/halog
+ /usr/bin/install -p -m 0755 ./admin/iprange/iprange /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/iprange
+ /usr/bin/install -p -m 0755 ./admin/iprange/ip6range /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/ip6range
+ /usr/bin/install -p -D -m 0644 /root/rpmbuild/SOURCES/halog.1 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/man/man1/halog.1
+ /usr/bin/install -s haproxy /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/sbin/
+ /usr/bin/install -p -D -m 0644 /root/rpmbuild/SOURCES/haproxy.service /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/lib/systemd/system/haproxy.service
+ /usr/bin/find-debuginfo -j12 --strict-build-id -m -i --build-id-seed 3.3.1-1.amzn2023 --unique-debug-suffix -3.3.1-1.amzn2023.aarch64 --unique-debug-src-base haproxy-3.3.1-1.amzn2023.aarch64 --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 --remove-section .gnu.build.attributes -S debugsourcefiles.list /root/rpmbuild/BUILD/haproxy-3.3.1
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/halog
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/iprange
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/ip6range
Error while writing index for `/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/ip6range': No debugging symbols
Error while writing index for `/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/iprange': No debugging symbols
gdb-add-index: No index was created for /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/ip6range
gdb-add-index: [Was there no debuginfo? Was there already an index?]
gdb-add-index: No index was created for /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/bin/iprange
gdb-add-index: [Was there no debuginfo? Was there already an index?]
dwz: Too few files for multifile optimization
original debug info size: 136kB, size after compression: 128kB
/usr/bin/sepdebugcrcfix: Updated 1 CRC32s, 2 CRC32s did match.
431 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/redhat/brp-ldconfig
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/redhat/brp-strip-lto /usr/bin/strip
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/check-rpaths
+ /usr/lib/rpm/redhat/brp-mangle-shebangs
+ /usr/lib/rpm/brp-python-bytecompile '' 0 1
Processing files: haproxy-3.3.1-1.amzn2023.aarch64
Executing(%doc): /bin/sh -e /var/tmp/rpm-tmp.HHFTbs
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ DOCDIR=/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ export LC_ALL=C
+ LC_ALL=C
+ export DOCDIR
+ /usr/bin/mkdir -p /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr CHANGELOG /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr README.md /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr examples/basic-config-edge.cfg examples/content-sw-sample.cfg examples/games.cfg examples/mptcp.cfg examples/option-http_proxy.cfg examples/quick-test.cfg examples/socks4.cfg examples/traces.cfg examples/transparent_proxy.cfg examples/wurfl-example.cfg /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr doc/configuration.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr doc/intro.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr doc/management.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ cp -pr doc/proxy-protocol.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/doc/haproxy
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.iEaJx1
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ LICENSEDIR=/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/licenses/haproxy
+ export LC_ALL=C
+ LC_ALL=C
+ export LICENSEDIR
+ /usr/bin/mkdir -p /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/licenses/haproxy
+ cp -pr LICENSE /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64/usr/share/licenses/haproxy
+ RPM_EC=0
++ jobs -p
+ exit 0
Provides: config(haproxy) = 3.3.1-1.amzn2023 haproxy = 3.3.1-1.amzn2023 haproxy(aarch-64) = 3.3.1-1.amzn2023
Requires(interp): /bin/sh /bin/sh /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(pre): /bin/sh shadow-utils
Requires(post): /bin/sh systemd
Requires(preun): /bin/sh systemd
Requires(postun): /bin/sh systemd
Requires: ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libc.so.6(GLIBC_2.32)(64bit) libc.so.6(GLIBC_2.33)(64bit) libc.so.6(GLIBC_2.34)(64bit) libcrypt.so.2()(64bit) libcrypt.so.2(XCRYPT_2.0)(64bit) libcrypto.so()(64bit) libpcre.so.1()(64bit) libpcreposix.so.0()(64bit) libssl.so()(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: haproxy-debugsource-3.3.1-1.amzn2023.aarch64
Provides: haproxy-debugsource = 3.3.1-1.amzn2023 haproxy-debugsource(aarch-64) = 3.3.1-1.amzn2023
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: haproxy-debuginfo-3.3.1-1.amzn2023.aarch64
Provides: debuginfo(build-id) = 20c6455fc9ad7f66a6de9b25fd0e0f2be31957ca debuginfo(build-id) = 414ff0d7f31d6dc234ddb4311e2fad576cc795be debuginfo(build-id) = f2eac93a32b11c77ce7b5774448da6c04c6ade99 haproxy-debuginfo = 3.3.1-1.amzn2023 haproxy-debuginfo(aarch-64) = 3.3.1-1.amzn2023
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Recommends: haproxy-debugsource(aarch-64) = 3.3.1-1.amzn2023
Checking for unpackaged file(s): /usr/lib/rpm/check-files /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
Wrote: /root/rpmbuild/SRPMS/haproxy-3.3.1-1.amzn2023.src.rpm
Wrote: /root/rpmbuild/RPMS/aarch64/haproxy-debuginfo-3.3.1-1.amzn2023.aarch64.rpm
Wrote: /root/rpmbuild/RPMS/aarch64/haproxy-debugsource-3.3.1-1.amzn2023.aarch64.rpm
Wrote: /root/rpmbuild/RPMS/aarch64/haproxy-3.3.1-1.amzn2023.aarch64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.3ynnc2
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64 '!=' / ']'
+ /usr/bin/rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.aarch64
+ RPM_EC=0
++ jobs -p
+ exit 0

izzyleung · 2025-12-27T04:13:05Z


 %build
+%if 0%{?_use_awslc}
+env BUILDSSL_DESTDIR=/usr AWS_LC_VERSION=%{_awslc_version} scripts/build-ssl.sh


https://github.com/haproxy/haproxy/blob/54f59e466927b8c1678247d282c8e2956a7bd693/scripts/build-ssl.sh#L150-L167

izzyleung · 2025-12-27T04:13:50Z


-%{__make} -j$RPM_BUILD_NCPUS %{?_smp_mflags} ${USE_LUA} CPU="${CPU}" TARGET="linux-glibc" ${systemd_opts} ${pcre_opts} USE_OPENSSL=1 USE_ZLIB=1 ${regparm_opts} ADDINC="$CFLAGS" USE_LINUX_TPROXY=1 USE_THREAD=1 USE_TFO=${USE_TFO} USE_NS=${USE_NS} ${USE_PROMEX} ADDLIB="%{__global_ldflags}"
+%if 0%{?_use_awslc}
+OPENSSL_ARGS="USE_OPENSSL_AWSLC=1 SSL_LIB=/usr/lib SSL_INC=/usr/include"


https://github.com/haproxy/haproxy/blob/54f59e466927b8c1678247d282c8e2956a7bd693/.github/workflows/aws-lc-template.yml#L41-L42

izzyleung · 2025-12-27T04:14:45Z

 fi
 %endif

+# The file "README" is available < 3.2, while "README.md" is available >= 3.2; if we cannot find either, don't include such file


Changes from #76

izzyleung · 2025-12-27T05:51:24Z

 %files
 %defattr(-,root,root)
-%doc CHANGELOG README examples/*.cfg doc/architecture.txt doc/configuration.txt doc/intro.txt doc/management.txt doc/proxy-protocol.txt
+%doc CHANGELOG README* examples/*.cfg doc/configuration.txt doc/intro.txt doc/management.txt doc/proxy-protocol.txt


Changes from #76

izzyleung · 2025-12-27T06:48:14Z

Verified working on AMD64 with the following testing build, some outputs were removed for brevity:

$ podman run --arch amd64 -it --rm -v $PWD:/root -w /root --name al2023 amazonlinux:2023 bash
bash-5.2# make NO_SUDO=1 MAINVERSION=3.3 USE_AWSLC=1
# Check if the prereqs are there before trying to sudo
rpm -q pcre-devel make gcc rpm-build systemd-devel curl sed zlib-devel cmake wget g++ || \
	 dnf install -y --allowerasing pcre-devel make gcc rpm-build systemd-devel curl sed zlib-devel cmake wget g++
package pcre-devel is not installed
make-4.3-5.amzn2023.0.2.x86_64
package gcc is not installed
package rpm-build is not installed
package systemd-devel is not installed
package curl is not installed
sed-4.8-7.amzn2023.0.2.x86_64
package zlib-devel is not installed
package cmake is not installed
package wget is not installed
package g++ is not installed
...
Complete!
rm -f ./SOURCES/haproxy-*.tar.gz
rm -rf ./SOURCES/lua-*
rm -rf ./rpmbuild
mkdir -p ./rpmbuild/SPECS/ ./rpmbuild/SOURCES/ ./rpmbuild/RPMS/ ./rpmbuild/SRPMS/
curl -o ./SOURCES/haproxy-3.3.1.tar.gz http://www.haproxy.org/download/3.3/src/haproxy-3.3.1.tar.gz
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 5119k  100 5119k    0     0  2368k      0  0:00:02  0:00:02 --:--:-- 2374k
cp -r ./SPECS/* ./rpmbuild/SPECS/ || true
cp -r ./SOURCES/* ./rpmbuild/SOURCES/ || true
rpmbuild -ba SPECS/haproxy.spec \
--define "mainversion 3.3" \
--define "version 3.3.1" \
--define "release 1" \
--define "_cpu 0" \
--define "_extra_cflags 0" \
--define "_topdir %(pwd)/rpmbuild" \
--define "_builddir %{_topdir}/BUILD" \
--define "_buildroot %{_topdir}/BUILDROOT" \
--define "_rpmdir %{_topdir}/RPMS" \
--define "_srcrpmdir %{_topdir}/SRPMS" \
--define "_use_lua 0" \
--define "_use_prometheus 0" \
--define "_use_awslc 1" \
--define "_awslc_version 1.66.1"
setting SOURCE_DATE_EPOCH=1690243200
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.mFHDDz
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd /root/rpmbuild/BUILD
+ rm -rf haproxy-3.3.1
+ /usr/bin/gzip -dc /root/rpmbuild/SOURCES/haproxy-3.3.1.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd haproxy-3.3.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.DIrT5n
+ umask 022
+ cd /root/rpmbuild/BUILD
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection'
+ export CFLAGS
+ CXXFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection'
+ export CXXFLAGS
+ FFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -I/usr/lib64/gfortran/modules'
+ export FFLAGS
+ FCFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -I/usr/lib64/gfortran/modules'
+ export FCFLAGS
+ VALAFLAGS=-g
+ export VALAFLAGS
+ LDFLAGS='-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
+ export LDFLAGS
+ LT_SYS_LIBRARY_PATH=/usr/lib64:
+ export LT_SYS_LIBRARY_PATH
+ CC=gcc
+ export CC
+ CXX=g++
+ export CXX
+ '[' -f /usr/lib/rpm/generate-rpm-note.sh ']'
+ /usr/lib/rpm/generate-rpm-note.sh haproxy 3.3.1-1.amzn2023 x86_64
+ cd haproxy-3.3.1
+ env BUILDSSL_DESTDIR=/usr AWS_LC_VERSION=1.66.1 scripts/build-ssl.sh
+ BUILDSSL_DESTDIR=/usr
+ BUILDSSL_TMPDIR=/tmp/download-cache
+ QUICTLS_URL=https://github.com/quictls/openssl
+ WOLFSSL_DEBUG=0
+ GIT_TYPE=commit
+ mkdir -p /usr
+ mkdir -p /tmp/download-cache
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z x ']'
+ download_aws_lc
+ '[' '!' -f /tmp/download-cache/aws-lc-1.66.1.tar.gz ']'
+ '[' 1.66.1 '!=' 1.66.1 ']'
+ WGETFILE=v1.66.1.tar.gz
+ wget -q -O /tmp/download-cache/aws-lc-1.66.1.tar.gz https://github.com/aws/aws-lc/archive/refs/tags/v1.66.1.tar.gz
+ build_aws_lc
++ cat /usr/.aws_lc-version
cat: /usr/.aws_lc-version: No such file or directory
+ '[' '' '!=' 1.66.1 ']'
+ mkdir -p /tmp/download-cache/aws-lc-1.66.1/
+ tar zxf /tmp/download-cache/aws-lc-1.66.1.tar.gz -C /tmp/download-cache/aws-lc-1.66.1/ --strip-components=1
+ cd /tmp/download-cache/aws-lc-1.66.1/
+ mkdir -p build
+ cd build
+ cmake -version
cmake version 3.22.2

CMake suite maintained and supported by Kitware (kitware.com/cmake).
+ cmake -DCMAKE_BUILD_TYPE=Release -DBUILD_SHARED_LIBS=1 -DDISABLE_GO=1 -DDISABLE_PERL=1 -DCMAKE_BUILD_WITH_INSTALL_RPATH=ON -DCMAKE_INSTALL_RPATH=/usr/lib -DBUILD_TESTING=0 -DCMAKE_INSTALL_PREFIX=/usr ..
-- ENABLE_PRE_SONAME_BUILD: ON
-- PERFORM_SONAME_BUILD: 0
-- The C compiler identification is GNU 11.5.0
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - done
-- Check for working C compiler: /usr/bin/gcc - skipped
-- Detecting C compile features
-- Detecting C compile features - done
-- Entropy source configured: Dynamic (default: CPU Jitter)
-- The CXX compiler identification is GNU 11.5.0
-- Detecting CXX compiler ABI info
-- Detecting CXX compiler ABI info - done
-- Check for working CXX compiler: /usr/bin/g++ - skipped
-- Detecting CXX compile features
-- Detecting CXX compile features - done
-- Go not found. Disabling some code generation and using pre-generated code in generated-src/
-- Perl not found. Disabling some code generation and using pre-generated code in generated-src/
-- Run check_run file_to_test 'memcmp_invalid_stripped_check.c', flag_to_set 'MEMCMP_INVALID_STRIPPED', and compile_flags '-O3 -DNDEBUG'.
-- Setting CMAKE_C_STANDARD=11
-- Performing Test HAVE_C_FLAG__Wno_cast_function_type
-- Performing Test HAVE_C_FLAG__Wno_cast_function_type - Success
-- Compiler supports '-Wno-cast-function-type', adding to CMAKE_C_FLAGS
-- Performing Test HAVE_C_FLAG__Wno_free_nonheap_object
-- Performing Test HAVE_C_FLAG__Wno_free_nonheap_object - Success
-- Compiler supports '-Wno-free-nonheap-object', adding to C_CXX_FLAGS
-- Performing Test HAVE_C_FLAG__Wmissing_braces
-- Performing Test HAVE_C_FLAG__Wmissing_braces - Success
-- Compiler supports '-Wmissing-braces', adding to C_CXX_FLAGS
-- Performing Test HAVE_C_FLAG__Wstring_concatenation
-- Performing Test HAVE_C_FLAG__Wstring_concatenation - Failed
-- Performing Test HAVE_C_FLAG__Wimplicit_fallthrough
-- Performing Test HAVE_C_FLAG__Wimplicit_fallthrough - Success
-- Compiler supports '-Wimplicit-fallthrough', adding to C_CXX_FLAGS
-- linux_random_h.c probe is positive, enabling HAVE_LINUX_RANDOM_H
-- stdalign_check.c probe is positive, enabling AWS_LC_STDALIGN_AVAILABLE
-- builtin_swap_check.c probe is positive, enabling AWS_LC_BUILTIN_SWAP_SUPPORTED
-- Performing Test HAVE_C_FLAG__Wshadow
-- Performing Test HAVE_C_FLAG__Wshadow - Success
-- Compiler supports '-Wshadow', adding to C_CXX_FLAGS
-- The ASM compiler identification is GNU
-- Found assembler: /usr/bin/gcc
Copying platform assembly files from /tmp/download-cache/aws-lc-1.66.1/generated-src/linux-x86_64/crypto/ to /tmp/download-cache/aws-lc-1.66.1/build/crypto
-- Looking for pthread.h
-- Looking for pthread.h - found
-- Performing Test CMAKE_HAVE_LIBC_PTHREAD
-- Performing Test CMAKE_HAVE_LIBC_PTHREAD - Success
-- Found Threads: TRUE
-- Installing: /tmp/download-cache/aws-lc-1.66.1/build/tool-openssl/c_rehash
-- Configuring done
-- Generating done
-- Build files have been written to: /tmp/download-cache/aws-lc-1.66.1/build
++ nproc
+ make -j12
...
[100%] Built target openssl
make[2]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
Install the project...
-- Install configuration: "Release"
-- Installing: /usr/include/openssl
...
-- Installing: /usr/bin/bssl
-- Installing: /usr/bin/openssl
-- Installing: /usr/bin/c_rehash
make[1]: Leaving directory '/tmp/download-cache/aws-lc-1.66.1/build'
+ echo 1.66.1
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ '[' '!' -z ']'
+ regparm_opts=
+ regparm_opts=USE_REGPARM=1
++ /usr/bin/nproc
+ RPM_BUILD_NCPUS=12
+ systemd_opts=
+ pcre_opts=USE_PCRE=1
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection'
+ USE_TFO=
+ USE_NS=
+ systemd_opts=USE_SYSTEMD=1
+ pcre_opts='USE_PCRE=1 USE_PCRE_JIT=1'
+ USE_TFO=1
+ USE_NS=1
+ CPU=generic
+ OPENSSL_ARGS='USE_OPENSSL_AWSLC=1 SSL_LIB=/usr/lib SSL_INC=/usr/include'
+ /usr/bin/make -j12 -j12 CPU=generic TARGET=linux-glibc USE_SYSTEMD=1 USE_PCRE=1 USE_PCRE_JIT=1 USE_OPENSSL_AWSLC=1 SSL_LIB=/usr/lib SSL_INC=/usr/include USE_ZLIB=1 USE_REGPARM=1 'ADDINC=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection' USE_LINUX_TPROXY=1 USE_THREAD=1 USE_TFO=1 USE_NS=1 'ADDLIB=-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_REGPARM=1
Makefile:360: ignoring unknown build option: USE_SYSTEMD=1
Makefile:360: ignoring unknown build option: USE_AWSLC=1
  CC      dev/flags/flags.o
...
  LD      dev/flags/flags
  LD      haproxy
lto-wrapper: warning: using serial compilation of 73 LTRANS jobs
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/halog/halog 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
  CC      admin/halog/halog.o
  CC      admin/halog/fgets2.o
  LD      admin/halog/halog
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/iprange/iprange 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
cc     admin/iprange/iprange.c   -o admin/iprange/iprange
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ /usr/bin/make admin/iprange/ip6range 'OPTIMIZE=-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
make[1]: Entering directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
Makefile:360: ignoring unknown build option: USE_AWSLC=1
cc     admin/iprange/ip6range.c   -o admin/iprange/ip6range
make[1]: Leaving directory '/root/rpmbuild/BUILD/haproxy-3.3.1'
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.I3kStt
+ umask 022
+ cd /root/rpmbuild/BUILD
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64 '!=' / ']'
+ rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
++ dirname /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
+ mkdir -p /root/rpmbuild/BUILDROOT
+ mkdir /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
+ CFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection'
+ export CFLAGS
+ CXXFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection'
+ export CXXFLAGS
+ FFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -I/usr/lib64/gfortran/modules'
+ export FFLAGS
+ FCFLAGS='-O2 -ftree-vectorize -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1  -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection -I/usr/lib64/gfortran/modules'
+ export FCFLAGS
+ VALAFLAGS=-g
+ export VALAFLAGS
+ LDFLAGS='-Wl,-z,relro -Wl,--as-needed  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1      -Wl,--build-id=sha1 -Wl,-dT,/root/rpmbuild/BUILD/haproxy-3.3.1/.package_note-haproxy-3.3.1-1.amzn2023.x86_64.ld'
+ export LDFLAGS
+ LT_SYS_LIBRARY_PATH=/usr/lib64:
+ export LT_SYS_LIBRARY_PATH
+ CC=gcc
+ export CC
+ CXX=g++
+ export CXX
+ cd haproxy-3.3.1
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64 '!=' / ']'
+ /usr/bin/rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/sbin
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/haproxy
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/haproxy/errors
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/man/man1/
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/logrotate.d
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/rsyslog.d
+ /usr/bin/install -d /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/var/log/haproxy
+ /usr/bin/install -p haproxy /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/sbin/
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.cfg /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/haproxy/haproxy.cfg
+ /usr/bin/install -c -m 644 examples/errorfiles/400.http examples/errorfiles/403.http examples/errorfiles/408.http examples/errorfiles/500.http examples/errorfiles/502.http examples/errorfiles/503.http examples/errorfiles/504.http /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/haproxy/errors/
+ /usr/bin/install -c -m 644 doc/haproxy.1 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/man/man1/
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.syslog.amzn2023 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/rsyslog.d/49-haproxy.conf
+ /usr/bin/install -c -m 644 /root/rpmbuild/SOURCES/haproxy.logrotate /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/etc/logrotate.d/haproxy
+ /usr/bin/install -p -m 0755 ./admin/halog/halog /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/halog
+ /usr/bin/install -p -m 0755 ./admin/iprange/iprange /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/iprange
+ /usr/bin/install -p -m 0755 ./admin/iprange/ip6range /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/ip6range
+ /usr/bin/install -p -D -m 0644 /root/rpmbuild/SOURCES/halog.1 /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/man/man1/halog.1
+ /usr/bin/install -s haproxy /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/sbin/
+ /usr/bin/install -p -D -m 0644 /root/rpmbuild/SOURCES/haproxy.service /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/lib/systemd/system/haproxy.service
+ /usr/bin/find-debuginfo -j12 --strict-build-id -m -i --build-id-seed 3.3.1-1.amzn2023 --unique-debug-suffix -3.3.1-1.amzn2023.x86_64 --unique-debug-src-base haproxy-3.3.1-1.amzn2023.x86_64 --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 110000000 --remove-section .gnu.build.attributes -S debugsourcefiles.list /root/rpmbuild/BUILD/haproxy-3.3.1
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/halog
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/ip6range
extracting debug info from /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/iprange
Error while writing index for `/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/ip6range': No debugging symbols
Error while writing index for `/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/iprange': No debugging symbols
gdb-add-index: No index was created for /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/ip6range
gdb-add-index: [Was there no debuginfo? Was there already an index?]
gdb-add-index: No index was created for /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/bin/iprange
gdb-add-index: [Was there no debuginfo? Was there already an index?]
dwz: Too few files for multifile optimization
original debug info size: 128kB, size after compression: 120kB
/usr/bin/sepdebugcrcfix: Updated 1 CRC32s, 2 CRC32s did match.
431 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/redhat/brp-ldconfig
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/redhat/brp-strip-lto /usr/bin/strip
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/check-rpaths
+ /usr/lib/rpm/redhat/brp-mangle-shebangs
+ /usr/lib/rpm/brp-python-bytecompile '' 0 1
Processing files: haproxy-3.3.1-1.amzn2023.x86_64
Executing(%doc): /bin/sh -e /var/tmp/rpm-tmp.2pnHZN
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ DOCDIR=/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ export LC_ALL=C
+ LC_ALL=C
+ export DOCDIR
+ /usr/bin/mkdir -p /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr CHANGELOG /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr README.md /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr examples/basic-config-edge.cfg examples/content-sw-sample.cfg examples/games.cfg examples/mptcp.cfg examples/option-http_proxy.cfg examples/quick-test.cfg examples/socks4.cfg examples/traces.cfg examples/transparent_proxy.cfg examples/wurfl-example.cfg /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr doc/configuration.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr doc/intro.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr doc/management.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ cp -pr doc/proxy-protocol.txt /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/doc/haproxy
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.BTh4kD
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ LICENSEDIR=/root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/licenses/haproxy
+ export LC_ALL=C
+ LC_ALL=C
+ export LICENSEDIR
+ /usr/bin/mkdir -p /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/licenses/haproxy
+ cp -pr LICENSE /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64/usr/share/licenses/haproxy
+ RPM_EC=0
++ jobs -p
+ exit 0
Provides: config(haproxy) = 3.3.1-1.amzn2023 haproxy = 3.3.1-1.amzn2023 haproxy(x86-64) = 3.3.1-1.amzn2023
Requires(interp): /bin/sh /bin/sh /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(pre): /bin/sh shadow-utils
Requires(post): /bin/sh systemd
Requires(preun): /bin/sh systemd
Requires(postun): /bin/sh systemd
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.10)(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.15)(64bit) libc.so.6(GLIBC_2.16)(64bit) libc.so.6(GLIBC_2.17)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.2)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.32)(64bit) libc.so.6(GLIBC_2.33)(64bit) libc.so.6(GLIBC_2.34)(64bit) libc.so.6(GLIBC_2.4)(64bit) libc.so.6(GLIBC_2.5)(64bit) libc.so.6(GLIBC_2.6)(64bit) libcrypt.so.2()(64bit) libcrypt.so.2(XCRYPT_2.0)(64bit) libcrypto.so()(64bit) libpcre.so.1()(64bit) libpcreposix.so.0()(64bit) libssl.so()(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: haproxy-debugsource-3.3.1-1.amzn2023.x86_64
Provides: haproxy-debugsource = 3.3.1-1.amzn2023 haproxy-debugsource(x86-64) = 3.3.1-1.amzn2023
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: haproxy-debuginfo-3.3.1-1.amzn2023.x86_64
Provides: debuginfo(build-id) = 34effca2d0ebd05371c5d40a12690f5d0f85ae84 debuginfo(build-id) = 5e394aca769da02d2ef438afd2a06e7421dc3519 debuginfo(build-id) = ff4d383eb26f5c87c780dc2bf5c2ff044d3f9fc9 haproxy-debuginfo = 3.3.1-1.amzn2023 haproxy-debuginfo(x86-64) = 3.3.1-1.amzn2023
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Recommends: haproxy-debugsource(x86-64) = 3.3.1-1.amzn2023
Checking for unpackaged file(s): /usr/lib/rpm/check-files /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
Wrote: /root/rpmbuild/SRPMS/haproxy-3.3.1-1.amzn2023.src.rpm
Wrote: /root/rpmbuild/RPMS/x86_64/haproxy-debuginfo-3.3.1-1.amzn2023.x86_64.rpm
Wrote: /root/rpmbuild/RPMS/x86_64/haproxy-debugsource-3.3.1-1.amzn2023.x86_64.rpm
Wrote: /root/rpmbuild/RPMS/x86_64/haproxy-3.3.1-1.amzn2023.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.DspU5w
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd haproxy-3.3.1
+ '[' /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64 '!=' / ']'
+ /usr/bin/rm -rf /root/rpmbuild/BUILDROOT/haproxy-3.3.1-1.amzn2023.x86_64
+ RPM_EC=0
++ jobs -p
+ exit 0
bash-5.2# yum install -y rsyslog pcre shadow-utils systemd
Last metadata expiration check: 0:16:29 ago on Sat Dec 27 06:15:26 2025.
...
Installed:
  cracklib-2.9.6-27.amzn2023.0.2.x86_64                      cryptsetup-libs-2.6.1-1.amzn2023.0.1.x86_64          dbus-1:1.12.28-1.amzn2023.0.1.x86_64
  dbus-broker-32-1.amzn2023.0.2.x86_64                       dbus-common-1:1.12.28-1.amzn2023.0.1.noarch          device-mapper-1.02.185-1.amzn2023.0.5.x86_64
  device-mapper-libs-1.02.185-1.amzn2023.0.5.x86_64          kmod-libs-29-2.amzn2023.0.5.x86_64                   libargon2-20171227-9.amzn2023.0.2.x86_64
  libdb-5.3.28-49.amzn2023.0.2.x86_64                        libeconf-0.4.0-1.amzn2023.0.3.x86_64                 libestr-0.1.11-1.amzn2023.0.2.x86_64
  libfastjson-0.99.9-1.amzn2023.0.3.x86_64                   libfdisk-2.37.4-1.amzn2023.0.4.x86_64                libpwquality-1.4.4-6.amzn2023.0.2.x86_64
  libseccomp-2.5.3-1.amzn2023.0.2.x86_64                     libsemanage-3.4-5.amzn2023.0.2.x86_64                libutempter-1.2.1-4.amzn2023.0.2.x86_64
  libxkbcommon-1.6.0-2.amzn2023.0.1.x86_64                   logrotate-3.20.1-2.amzn2023.0.3.x86_64               pam-1.5.1-8.amzn2023.0.7.x86_64
  qrencode-libs-4.1.1-2.amzn2023.0.2.x86_64                  rsyslog-8.2204.0-3.amzn2023.0.4.x86_64               rsyslog-logrotate-8.2204.0-3.amzn2023.0.4.x86_64
  shadow-utils-2:4.9-12.amzn2023.0.4.x86_64                  systemd-252.23-10.amzn2023.x86_64                    systemd-networkd-252.23-10.amzn2023.x86_64
  systemd-pam-252.23-10.amzn2023.x86_64                      systemd-resolved-252.23-10.amzn2023.x86_64           util-linux-2.37.4-1.amzn2023.0.4.x86_64
  util-linux-core-2.37.4-1.amzn2023.0.4.x86_64               xkeyboard-config-2.41-1.amzn2023.0.1.noarch

Complete!
bash-5.2# rpm -i rpmbuild/RPMS/x86_64/haproxy-3.3.1-1.amzn2023.x86_64.rpm --nodeps --force
System has not been booted with systemd as init system (PID 1). Can't operate.
Failed to connect to bus: Host is down
warning: %post(haproxy-3.3.1-1.amzn2023.x86_64) scriptlet failed, exit status 1
bash-5.2# haproxy -vv
HAProxy version 3.3.1-9c24c11 2025/12/19 - https://haproxy.org/
Status: stable branch - will stop receiving fixes around Q1 2027.
Known bugs: http://www.haproxy.org/bugs/bugs-3.3.1.html
Running on: Linux 6.17.7-300.fc43.aarch64 #1 SMP PREEMPT_DYNAMIC Sun Nov  2 15:33:04 UTC 2025 x86_64
Build options :
  TARGET  = linux-glibc
  CC      = cc
  CFLAGS  = -O2 -g -fwrapv -fvect-cost-model=very-cheap
  OPTIONS = USE_THREAD=1 USE_LINUX_TPROXY=1 USE_OPENSSL_AWSLC=1 USE_ZLIB=1 USE_TFO=1 USE_NS=1 USE_PCRE=1 USE_PCRE_JIT=1
  DEBUG   =

Feature list : -51DEGREES +ACCEPT4 +BACKTRACE -CLOSEFROM +CPU_AFFINITY +CRYPT_H -DEVICEATLAS +DL -ECH -ENGINE +EPOLL -EVPORTS +GETADDRINFO -KQUEUE +KTLS -LIBATOMIC +LIBCRYPT +LINUX_CAP +LINUX_SPLICE +LINUX_TPROXY -LUA -MATH -MEMORY_PROFILING +NETFILTER +NS -OBSOLETE_LINKER +OPENSSL +OPENSSL_AWSLC -OPENSSL_WOLFSSL -OT +PCRE -PCRE2 -PCRE2_JIT +PCRE_JIT +POLL +PRCTL -PROCCTL -PROMEX -PTHREAD_EMULATION -QUIC -QUIC_OPENSSL_COMPAT +RT +SHM_OPEN -SLZ +SSL -STATIC_PCRE -STATIC_PCRE2 +TFO +THREAD +THREAD_DUMP +TPROXY -WURFL +ZLIB +ACME

Default settings :
  bufsize = 16384, maxrewrite = 1024, maxpollevents = 200

Built with multi-threading support (MAX_TGROUPS=32, MAX_THREADS=1024, default=12).
Built with SSL library version : OpenSSL 1.1.1 (compatible; AWS-LC 1.66.1)
Running on SSL library version : AWS-LC 1.66.1
SSL library supports TLS extensions : yes
SSL library supports SNI : yes
SSL library FIPS mode : no
SSL library supports : TLSv1.0 TLSv1.1 TLSv1.2 TLSv1.3
Built with network namespace support.
Built with zlib version : 1.2.11
Running on zlib version : 1.2.11
Compression algorithms supported : identity("identity"), deflate("deflate"), raw-deflate("deflate"), gzip("gzip")
Built with transparent proxy support using: IP_TRANSPARENT IPV6_TRANSPARENT IP_FREEBIND
Built with PCRE version : 8.44 2020-02-12
Running on PCRE version : 8.44 2020-02-12
PCRE library supports JIT : yes
Encrypted password support via crypt(3): yes
Built with gcc compiler version 11.5.0 20240719 (Red Hat 11.5.0-5)

Available polling systems :
      epoll : pref=300,  test result OK
       poll : pref=200,  test result OK
     select : pref=150,  test result OK
Total: 3 (3 usable), will use epoll.

Available multiplexer protocols :
(protocols marked as <default> cannot be specified using 'proto' keyword)
         h2 : mode=HTTP  side=FE|BE  mux=H2    flags=HTX|HOL_RISK|NO_UPG
         h1 : mode=HTTP  side=FE|BE  mux=H1    flags=HTX|NO_UPG
  <default> : mode=HTTP  side=FE|BE  mux=H1    flags=HTX
       fcgi : mode=HTTP  side=BE     mux=FCGI  flags=HTX|HOL_RISK|NO_UPG
       spop : mode=SPOP  side=BE     mux=SPOP  flags=HOL_RISK|NO_UPG
  <default> : mode=SPOP  side=BE     mux=SPOP  flags=HOL_RISK|NO_UPG
       none : mode=TCP   side=FE|BE  mux=PASS  flags=NO_UPG
  <default> : mode=TCP   side=FE|BE  mux=PASS  flags=

Available services : none

Available filters :
	[BWLIM] bwlim-in
	[BWLIM] bwlim-out
	[CACHE] cache
	[COMP] compression
	[FCGI] fcgi-app
	[SPOE] spoe
	[TRACE] trace

izzyleung added 3 commits December 26, 2025 11:30

Fix build errors post HAProxy 3.2

37906fb

Define two variables before using them for code simplicity

bca3af9

Add support for AWS LC

148572e

izzyleung commented Dec 27, 2025

View reviewed changes

izzyleung added 2 commits December 26, 2025 21:43

Fix logic to make things compatible pre 3.2

b037e11

Merge branch 'haproxy-3-2-files' into awslc

c4cae72

izzyleung commented Dec 27, 2025

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add support for AWS LC [#74]#77

Add support for AWS LC [#74]#77
izzyleung wants to merge 5 commits into
DBezemer:devfrom
izzyleung:awslc

izzyleung commented Dec 27, 2025 •

edited

Loading

Uh oh!

izzyleung commented Dec 27, 2025 •

edited

Loading

Uh oh!

izzyleung Dec 27, 2025

Uh oh!

izzyleung Dec 27, 2025

Uh oh!

izzyleung Dec 27, 2025

Uh oh!

izzyleung Dec 27, 2025

Uh oh!

izzyleung commented Dec 27, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

izzyleung commented Dec 27, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Manual verification

Current limitations:

Uh oh!

izzyleung commented Dec 27, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

izzyleung Dec 27, 2025

Choose a reason for hiding this comment

Uh oh!

izzyleung Dec 27, 2025

Choose a reason for hiding this comment

Uh oh!

izzyleung Dec 27, 2025

Choose a reason for hiding this comment

Uh oh!

izzyleung Dec 27, 2025

Choose a reason for hiding this comment

Uh oh!

izzyleung commented Dec 27, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

izzyleung commented Dec 27, 2025 •

edited

Loading

izzyleung commented Dec 27, 2025 •

edited

Loading