HAProxy known bugs for maintenance branch 1.4

This is maintenance branch 1.4 whose latest version is 1.4.27. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 1.4 version other than 1.4.27, you're running with known bugs.

Quick links

Versions available in this branch

This branch contains the following releases :

2016-03-141.4.27 ⇐ last

Fixes for known bugs pending in this branch since the last release (1.4.27)

These fixes have already been queued for the next 1.4 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in the latest version of this branch by category :

0 0 0 0 0

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

2018-11-15BUG/MEDIUM: Make sure stksess is properly aligned.
2018-11-13BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
2018-11-12BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
2018-11-12BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
2018-11-11BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
2018-11-08BUG/MEDIUM: cli: crash when trying to access a worker
2018-11-08BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
2018-11-07BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
2018-11-05BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
2018-10-30BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
2018-10-29BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
2018-10-29BUG/MINOR: cli: forward the whole command on master CLI
2018-10-29BUG/MEDIUM: tools: fix direction of my_ffsl()
2018-10-28BUG/MINOR: backend: assign the wait list after the error check
2018-10-28BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
2018-10-28BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
2018-10-27BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
2018-10-27BUG/MINOR: only mark connections private if NTLM is detected
2018-10-26BUG/MINOR: ssl: Wrong usage of shctx_init().
2018-10-26BUG/MINOR: cache: Wrong usage of shctx_init().
2018-10-26BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
2018-10-23BUG/MEDIUM: pools: fix the minimum allocation size
2018-10-23BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
2018-10-21BUG/MEDIUM: stream: Make sure polling is right on retry.
2018-10-21BUG/MEDIUM: connections: Remove subscription if going in idle mode.
2018-10-21BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
2018-10-21BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
2018-10-16BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
2018-10-15BUG/MEDIUM: stream: don't crash on out-of-memory
2018-10-12BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
2018-10-11BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
2018-10-11BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
2018-10-11BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
2018-10-11BUG/MINOR: checks: queues null-deref
2018-10-11BUG/MINOR: h2: null-deref
2018-10-10BUG/MINOR: threads: move declaration of capabilities to config.h
2018-10-10BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
2018-10-08BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
2018-10-03BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
2018-10-03BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
2018-10-03BUG/MINOR: backend: check that the mux installed properly
2018-10-02BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
2018-09-28BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
2018-09-26BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
2018-09-26BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
2018-09-20BUG/MEDIUM: http: Don't parse chunked body if there is no input data
2018-09-20BUG/CRITICAL: hpack: fix improper sign check on the header index value
2018-09-20BUG/MINOR: cli: make sure the "getsock" command is only called on connections
2018-09-20BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
2018-09-19BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
2018-09-19BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
2018-09-13BUG/MINOR: h1: don't consider the status for each header
2018-09-12BUG/MAJOR: h2: reset the parser's state on mux buffer full
2018-09-12BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
2018-09-12BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
2018-09-12BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
2018-09-12BUG/MINOR: h2: report asynchronous end of stream on closed connections
2018-09-12BUG/MINOR: server: Crash when setting FQDN via CLI.
2018-09-11BUG/MAJOR: kqueue: Don't reset the changes number by accident.
2018-09-11BUG/MINOR: mworker: no need to stop peers for each proxy
2018-09-07BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
2018-09-07BUG/MINOR: http/threads: atomically increment the error snapshot ID
2018-09-06BUG/MINOR: dns: check and link servers' resolvers right after config parsing
2018-09-06BUG/MINOR: h1: fix buffer shift after realignment
2018-09-05BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
2018-09-05BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
2018-09-05BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
2018-09-05BUG/MINOR: stream: use atomic increments for the request counter
2018-09-04BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
2018-09-04BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
2018-08-31BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
2018-08-30BUG/MAJOR: thread: lua: Wrong SSL context initialization.
2018-08-28BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
2018-08-28BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
2018-08-25BUG/MEDIUM: lua: reset lua transaction between http requests
2018-08-24BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
2018-08-24BUG/MINOR: lua: Bad HTTP client request duration.
2018-08-24BUG/MEDIUM: unix: provide a ->drain() function
2018-08-22BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
2018-08-22BUG/MEDIUM: connection: don't store recv() result into trash.data
2018-08-22BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
2018-08-22BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
2018-08-22BUG/MEDIUM: http: don't store url_decode() result in the samples's length
2018-08-22BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
2018-08-22BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
2018-08-21BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
2018-08-21BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
2018-08-21BUG/MEDIUM: connection: don't forget to always delete the list's head
2018-08-21BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
2018-08-21BUG/MEDIUM: stream_interface: Call the wake callback after sending.
2018-08-21BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
2018-08-21BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
2018-08-21BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
2018-08-21BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
2018-08-21BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
2018-08-21BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
2018-08-21BUG/MEDIUM: server: update our local state before propagating changes
2018-08-19BUG/MINOR: lua: fix extra 500ms added to socket timeouts
2018-08-18BUG/MEDIUM: lua: socket timeouts are not applied
2018-08-16BUG/MINOR: map: fix map_regm with backref
2018-08-16BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
2018-08-16BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
2018-08-16BUG/MEDIUM: sessions: Don't use t->state.
2018-08-16BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
2018-08-16BUG/MINOR: ssl: empty connections reported as errors.
2018-08-08BUG/MEDIUM: connection/mux: take care of serverless proxies
2018-08-08BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
2018-08-08BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
2018-08-07BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
2018-08-07BUG/MEDIUM: servers: check the queues once enabling a server
2018-08-07BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
2018-08-06BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
2018-08-02BUG/MEDIUM: cli: make "show fd" thread-safe
2018-07-30BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
2018-07-30BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
2018-07-27BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
2018-07-27BUG/MINOR: config: stick-table is not supported in defaults section
2018-07-27BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
2018-07-27BUG/MEDIUM: threads/sync: use sched_yield when available
2018-07-26BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
2018-07-26BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
2018-07-26BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
2018-07-26BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
2018-07-26BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
2018-07-24BUG/MINOR: servers: Don't make "server" in a frontend fatal.
2018-07-24BUG/MEDIUM: stats: don't ask for more data as long as we're responding
2018-07-24BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
2018-07-20BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
2018-07-20BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
2018-07-20BUG/MINOR: build: Fix compilation with debug mode enabled
2018-07-20BUG/MINOR: http: Set brackets for the unlikely macro at the right place
2018-07-19BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
2018-07-19BUG/MEDIUM: h2: never leave pending data in the output buffer on close
2018-07-19BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
2018-07-18BUG/MINOR: ssl: properly ref-count the tls_keys entries
2018-07-01BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
2018-06-26BUG/MAJOR: stick_table: Complete incomplete SEGV fix
2018-06-26BUG/BUILD: threads: unbreak build without threads
2018-06-26BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
2018-06-22BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
2018-06-20BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
2018-06-18BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
2018-06-18BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
2018-06-18BUG/MAJOR: ssl: Random crash with cipherlist capture
2018-06-18BUG/MINOR: lua: Segfaults with wrong usage of types.
2018-06-14BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
2018-06-11BUG/MAJOR: map: fix a segfault when using http-request set-map
2018-06-08BUG/MINOR: signals: ha_sigmask macro for multithreading
2018-06-08BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
2018-06-08BUG/MEDIUM: threads: handle signal queue only in thread 0
2018-06-07BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
2018-06-06BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
2018-06-04BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
2018-06-04BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
2018-06-04BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
2018-06-04BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
2018-06-04BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
2018-05-31BUG/MEDIUM: lua/socket: Buffer error, may segfault
2018-05-31BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
2018-05-31BUG/MEDIUM: lua/socket: Notification error
2018-05-31BUG/MAJOR: lua: Dead lock with sockets
2018-05-31BUG/MEDIUM: lua/socket: wrong scheduling for sockets
2018-05-30BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
2018-05-28BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
2018-05-28BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
2018-05-28BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
2018-05-26BUG/MEDIUM: lua/socket: Length required read doesn't work
2018-05-24BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
2018-05-23BUG/BUILD: threads: unbreak build without threads
2018-05-23BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
2018-05-23BUG/MEDIUM: cache: don't cache when an Authorization header is present
2018-05-18BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
2018-05-18BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
2018-05-18BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
2018-05-18BUG/MEDIUM: spoe: Flags are not encoded in network order
2018-05-18BUG/MINOR: spoe: Mistake in error message about SPOE configuration
2018-05-18BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
2018-05-17BUG/MEDIUM: ssl: properly protect SSL cert generation
2018-05-16BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
2018-05-15BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
2018-05-11BUG/MEDIUM: pollers/kqueue: use incremented position in event list
2018-05-06BUG/MINOR: lua: ensure large proxy IDs can be represented
2018-05-06BUG/MINOR: lua: schedule socket task upon lua connect()
2018-05-06BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
2018-05-04BUG/MEDIUM: task: Don't free a task that is about to be run.
2018-05-04BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
2018-05-03BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
2018-05-02BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
2018-05-02BUG/MINOR: checks: Fix check->health computation for flapping servers
2018-04-28BUG/MINOR: config: disable http-reuse on TCP proxies
2018-04-26BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
2018-04-26BUG/MINOR: spoe: Fix parsing of dontlog-normal option
2018-04-26BUG/MINOR: spoe: Fix counters update when processing is interrupted
2018-04-26BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
2018-04-25BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
2018-04-25BUG/MINOR: log: t_idle (%Ti) is not set for some requests
2018-04-25BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
2018-04-19BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
2018-04-19BUG/CRITICAL: h2: fix incorrect frame length check
2018-04-17BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
2018-04-16BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
2018-04-16BUG/MINOR: http: Return an error in proxy mode when url2sa fails
2018-04-13BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
2018-04-10BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
2018-04-06BUG/MAJOR: cache: always initialize newly created objects
2018-04-05BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
2018-04-05BUG/MINOR: spoe: Register the variable to set when an error occurred
2018-04-05BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
2018-04-05BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
2018-04-04BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
2018-04-04BUG/MINOR: cache: fix "show cache" output
2018-04-04BUG/MINOR: email-alert: Set the mailer port during alert initialization
2018-04-03BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
2018-04-03BUG/MINOR: checks: check the conn_stream's readiness and not the connection
2018-03-30BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
2018-03-30BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
2018-03-29BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
2018-03-29BUG/MEDIUM: h2/threads: never release the task outside of the task handler
2018-03-29BUG/MAJOR: h2: remove orphaned streams from the send list before closing
2018-03-27BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
2018-03-26BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
2018-03-26BUG/MINOR: lua: the function returns anything
2018-03-23BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
2018-03-22BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
2018-03-22BUG/MEDIUM: h2: properly account for DATA padding in flow control
2018-03-20BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
2018-03-20BUILD/BUG: enable -fno-strict-overflow by default
2018-03-19BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
2018-03-19BUG/MINOR: tcp-check: use the server's service port as a fallback
2018-03-19BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
2018-03-19BUG/MINOR: lua: return bad error messages
2018-03-19BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
2018-03-19BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
2018-03-19BUG/MINOR: cli: Ensure all command outputs end with a LF
2018-03-19BUG/MINOR: seemless reload: Fix crash when an interface is specified.
2018-03-19BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
2018-03-19BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
2018-03-16BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
2018-03-12BUG/MINOR: force-persist and ignore-persist only apply to backends
2018-03-12BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
2018-03-12BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
2018-03-12BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
2018-03-08BUG/MEDIUM: h2: also arm the h2 timeout when sending
2018-03-08BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
2018-03-06BUG/MINOR: session: Fix tcp-request session failure if handshake.
2018-03-01Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
2018-02-28BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
2018-02-27BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
2018-02-27BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
2018-02-27BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
2018-02-26BUG/MINOR: h2: Set the target of dbuf_wait to h2c
2018-02-22MINOR: debug/pools: make DEBUG_UAF also detect underflows
2018-02-22BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
2018-02-22BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
2018-02-19BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
2018-02-19BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
2018-02-19BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
2018-02-19BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
2018-02-19BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
2018-02-14BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
2018-02-14BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
2018-02-08BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
2018-02-08BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
2018-02-05BUG/MEDIUM: standard: Fix memory leak in str2ip2()
2018-02-05BUG/MINOR: time/threads: ensure the adjusted time is always correct
2018-02-05BUG/MINOR: fd/threads: properly dereference fdcache as volatile
2018-02-02BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
2018-02-02BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
2018-01-31BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
2018-01-30BUG/MINOR: threads: Update labels array because of changes in lock_label enum
2018-01-29BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
2018-01-25BUG/MINOR: sample: Fix output type of c_ipv62ip
2018-01-25BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
2018-01-25BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
2018-01-25BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
2018-01-25BUG/MINOR: threads: always set an owner to the thread_sync pipe
2018-01-23BUG/MINOR: mworker: only write to pidfile if it exists
2018-01-23BUG/MEDIUM: threads/mworker: fix a race on startup
2018-01-23BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
2018-01-23BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
2018-01-23BUG/MEDIUM: fd: maintain a per-thread update mask
2018-01-23BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
2018-01-22BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
2018-01-17BUG/MINOR: poll: too large size allocation for FD events
2018-01-12BUG/MEDIUM: stream: properly handle client aborts during redispatch
2018-01-09BUG/MEDIUM: mworker: execvp failure depending on argv[0]
2018-01-09BUG/MINOR: lua: Fix return value of Socket.settimeout
2018-01-09BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
2018-01-09BUG/MINOR: lua: Fix default value for pattern in Socket.receive
2018-01-05BUG/MEDIUM: ssl: cache doesn't release shctx blocks
2018-01-04BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
2017-12-30DEBUG: hpack: add more traces to the hpack decoder
2017-12-30DEBUG: hpack: make hpack_dht_dump() expose the output file
2017-12-30BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
2017-12-29BUG/MEDIUM: http: don't automatically forward request close
2017-12-29BUG/MEDIUM: mworker: don't close stdio several time
2017-12-29BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
2017-12-27BUG/MEDIUM: h2: improve handling of frames received on closed streams
2017-12-27BUG/MEDIUM: h2: properly handle and report some stream errors
2017-12-23BUG/MEDIUM: checks: properly set servers to stopping state on 404
2017-12-22BUG/MAJOR: connection: refine the situations where we don't send shutw()
2017-12-22BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
2017-12-22BUG/MEDIUM: cache: respect the request cache-control header
2017-12-22BUG/MEDIUM: cache: replace old object on store
2017-12-22BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
2017-12-22BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
2017-12-22BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
2017-12-22BUG/MINOR: http: do not ignore cache-control: public
2017-12-22BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
2017-12-21BUG/MEDIUM: checks: a server passed in maint state was not forced down.
2017-12-20BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
2017-12-20BUG/MINOR: h2: properly report a stream error on RST_STREAM
2017-12-20BUG/MAJOR: netscaler: address truncated CIP header detection
2017-12-20BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
2017-12-19BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
2017-12-14BUG: MINOR: http: don't check http-request capture id when len is provided
2017-12-14BUG: MAJOR: lb_map: server map calculation broken
2017-12-14BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
2017-12-14BUG/MEDIUM: h2: fix stream limit enforcement
2017-12-14BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
2017-12-14BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
2017-12-14BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
2017-12-14BUG/MEDIUM: h2: support uploading partial DATA frames
2017-12-14BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
2017-12-14BUG/MEDIUM: h2: work around a connection API limitation
2017-12-10BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
2017-12-10BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
2017-12-10BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
2017-12-10BUG/MEDIUM: lua/notification: memory leak
2017-12-08BUG/MEDIUM: threads/vars: Fix deadlock in register_name
2017-12-08BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
2017-12-07BUG/MEDIUM: h2: fix handling of end of stream again
2017-12-06BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
2017-12-06BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
2017-12-06BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
2017-12-06BUG/MEDIUM: mworker: also close peers sockets in the master
2017-12-04BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
2017-12-04BUG/MAJOR: hpack: don't pretend large headers fit in empty table
2017-12-04BUG/MINOR: action: Don't check http capture rules when no id is defined
2017-12-03BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
2017-12-03BUG/MEDIUM: h2: do not accept upper case letters in request header names
2017-12-03BUG/MEDIUM: h2: remove connection-specific headers from request
2017-12-03BUG/MINOR: h2: reject response pseudo-headers from requests
2017-12-03BUG/MINOR: h2: properly check PRIORITY frames
2017-12-03BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
2017-12-03BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
2017-12-03BUG/MEDIUM: h2: enforce the per-connection stream limit
2017-12-03BUG/MINOR: h2: the TE header if present may only contain trailers
2017-12-03BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
2017-12-03BUG/MINOR: h2: ":path" must not be empty
2017-12-03BUG/MINOR: h2: try to abort closed streams as soon as possible
2017-12-03BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
2017-12-03BUG/MAJOR: h2: correctly check the request length when building an H1 request
2017-12-03BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
2017-12-03BUG/MINOR: hpack: reject invalid header index
2017-12-03BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
2017-12-03BUG/MINOR: hpack: fix debugging output of pseudo header names
2017-12-03BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
2017-12-02BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
2017-12-02BUG/MINOR: mworker: detach from tty when in daemon mode
2017-12-02BUG/MINOR: mworker: fix validity check for the pipe FDs
2017-12-01BUG/MAJOR: thread/peers: fix deadlock on peers sync.
2017-11-29BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
2017-11-29BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
2017-11-29BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
2017-11-29BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
2017-11-29BUG/MEDIUM: stream: fix session leak on applet-initiated connections
2017-11-28BUG/MEDIUM: cache: bad computation of the remaining size
2017-11-28BUG/MEDIUM: ssl: don't allocate shctx several time
2017-11-28BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
2017-11-26BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
2017-11-26BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
2017-11-26BUG/MINOR: threads: don't drop "extern" on the lock in include files
2017-11-24CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
2017-11-24BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
2017-11-24BUG/MEDIUM: cache: free ressources in chn_end_analyze
2017-11-24BUG/MEDIUM: stream: always release the stream-interface on abort
2017-11-23BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
2017-11-23BUG/MAJOR: h2: always remove a stream from the send list before freeing it
2017-11-23BUG/MINOR: stream: fix tv_request calculation for applets
2017-11-23BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
2017-11-23BUG/MEDIUM: threads/time: maintain a common time reference between all threads
2017-11-23BUG/MEDIUM: threads/time: fix time drift correction
2017-11-22MINOR: pools: implement DEBUG_UAF to detect use after free
2017-11-22BUG/MINOR: ssl: Always start the handshake if we can't send early data.
2017-11-22BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
2017-11-22BUG/MEDIUM: cache fix cli_kws structure
2017-11-22BUG/MEDIUM: cache: refcount forbids to free the objects
2017-11-22BUG/MEDIUM: cache: use key=0 as a condition for freeing
2017-11-21BUG/MINOR: systemd: ignore daemon mode
2017-11-21BUG/MEDIUM: h2: always reassemble the Cookie request header field
2017-11-21BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
2017-11-20BUG/MEDIUM: cache: free callback to remove from tree
2017-11-20BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
2017-11-20BUG/MAJOR: stream: ensure analysers are always called upon close
2017-11-20BUG/MEDIUM: stream: don't automatically forward connect nor close
2017-11-17BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
2017-11-16BUG/MINOR: Allocate the log buffers before the proxies startup
2017-11-15BUG/MEDIUM: mworker: does not close inherited FD
2017-11-15BUG/MEDIUM: mworker: does not deinit anymore
2017-11-15BUG/MEDIUM: mworker: wait again for signals when execvp fail
2017-11-15BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
2017-11-14BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
2017-11-14BUG/MINOR: threads: tid_bit must be a unsigned long
2017-11-14BUG/MEDIUM: cache: use msg->sov to forward header
2017-11-14BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
2017-11-13BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
2017-11-13BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
2017-11-13BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
2017-11-13BUG/MINOR: spoe: check buffer size before acquiring or releasing it
2017-11-11BUG/MEDIUM: cache: does not cache if no Content-Length
2017-11-10BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
2017-11-10BUG/MEDIUM: threads/cli: fix "show sess" locking on release
2017-11-10BUG/MEDIUM: h2: support orphaned streams
2017-11-10BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
2017-11-10BUG/MEDIUM: h2: split the function to send RST_STREAM
2017-11-09BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
2017-11-09BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
2017-11-09BUG/MEDIUM: h2: reject non-3-digit status codes
2017-11-09BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
2017-11-08BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
2017-11-08BUG/MAJOR: threads/tasks: fix the scheduler again
2017-11-07BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
2017-11-07BUG/MINOR: comp: fix compilation warning compiling without compression.
2017-11-07BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
2017-11-07BUG/MINOR: h2: don't send GOAWAY on failed response
2017-11-07BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
2017-11-07BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
2017-11-07BUG/MEDIUM: h2: don't close the connection is there are data left
2017-11-07BUG/MEDIUM: h2: fix some wrong error codes on connections
2017-11-07BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
2017-11-07BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
2017-11-07BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
2017-11-06BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
2017-11-06BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
2017-11-06BUG/MINOR: dns: Don't try to get the server lock if it's already held.
2017-11-05BUG/MEDIUM: threads: don't try to free build option message on exit
2017-11-05BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
2017-11-05BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
2017-11-05BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
2017-11-05BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
2017-11-05BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
2017-11-05BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
2017-11-05BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
2017-11-05BUG/MINOR: cli: add severity in "set server addr" parser
2017-11-05BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
2017-11-05BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
2017-11-05BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
2017-11-05BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
2017-11-03BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
2017-11-03BUG/MINOR: lua: fix missing lock protection on server.
2017-11-03BUG/MINOR: dns: fix missing lock protection on server.
2017-11-03BUG/MINOR: stdarg.h inclusion
2017-11-02BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
2017-11-02BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
2017-11-02BUG/MEDIUM: cache: don't try to resolve wrong filters
2017-11-02BUG/MINOR: thread: fix a typo in the debug code
2017-11-02BUG/MAJOR: fix deadlock on healthchecks.
2017-11-02BUG/MEDIUM: checks/mux: always enable send-polling after connecting
2017-11-02BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
2017-11-01BUG/MINOR: send-proxy-v2: string size must include ('\0')
2017-11-01BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
2017-10-31BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
2017-10-31BUG/MEDIUM: threads: Initialize the sync-point
2017-10-31BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
2017-10-31BUG/MINOR: dns: Fix SRV records with the new thread code.
2017-10-31BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
2017-10-31BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
2017-10-31BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
2017-10-31BUG/MEDIUM: threads: Run the poll loop on the main thread too
2017-10-31BUG/MINOR: mailers: Fix a memory leak when email alerts are released
2017-10-31BUG/MINOR: dns: Fix CLI keyword declaration
2017-10-31BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
2017-10-31BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
2017-10-27BUG/MINOR: lua: const attribute of a string is overridden
2017-10-27BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
2017-10-25BUG/MINOR: checks: Don't forget to release the connection on error case.
2017-10-25BUG/MINOR: cli: restore "set ssl tls-key" command
2017-10-24BUG/MINOR: ssl: OCSP_single_get0_status can return -1
2017-10-24BUG/MEDIUM: server: Allocate tmptrash before using it.
2017-10-22BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
2017-10-19BUG/MEDIUM: log: check result details truncated.
2017-10-18BUG/MAJOR: lua: scheduled task is freezing.
2017-10-18BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
2017-10-18BUG/MINOR: tools: fix my_htonll() on x86_64
2017-10-17BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
2017-10-16BUG/MEDIUM: ssl: fix OCSP expiry calculation
2017-10-05BUG/MAJOR: stream-int: don't re-arm recv if send fails
2017-10-05BUG/MEDIUM: http: Return an error when url_dec sample converter failed
2017-10-04BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
2017-10-04BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
2017-10-04BUG/MINOR: unix: properly check for octal digits in the "mode" argument
2017-10-04BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
2017-10-04BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
2017-10-04BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
2017-10-04BUG/MEDIUM: tcp/http: set-dst-port action broken
2017-10-03BUG/MINOR: contrib/halog: fixing small memory leak
2017-09-21BUG/MINOR: log: fixing small memory leak in error code path.
2017-09-21BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
2017-09-21BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
2017-09-18BUG/MINOR: contrib/modsecurity: close the va_list ap before return
2017-09-18BUG/MINOR: contrib/mod_defender: close the va_list argp before return
2017-09-15BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
2017-09-15BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
2017-09-15BUG/MINOR: compression: Check response headers before http-response rules eval
2017-09-15BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
2017-09-11BUG/MINOR: Lua: The socket may be destroyed when we try to access.
2017-09-11BUG/MEDIUM: http: Close streams for connections closed before a redirect
2017-09-06Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
2017-09-05BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
2017-09-05BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
2017-09-05BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
2017-08-30BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
2017-08-23BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
2017-08-23BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
2017-08-23BUG/MAJOR: lua: fix the impact of the scheduler changes again
2017-08-22BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
2017-08-22BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
2017-08-22BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
2017-08-22BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
2017-08-17BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
2017-07-28BUG/MEDIUM: ssl: Fix regression about certificates generation
2017-07-28BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
2017-07-28BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
2017-07-28BUG/MINOR: ssl: make use of the name in SNI before verifyhost
2017-07-26BUG/MINOR: ssl: Fix check against SNI during server certificate verification
2017-07-24BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
2017-07-24BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
2017-07-24BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
2017-07-24BUG/MINOR: lua: Fix Server.get_addr() port values
2017-07-20BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
2017-07-19BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
2017-07-19BUG/MINOR: contrib/mod_defender: build fix
2017-07-19BUG/MINOR: contrib/modsecurity: BSD build fix
2017-07-19BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
2017-07-18BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
2017-07-18BUG/MINOR: http: Set the response error state in http_sync_res_state
2017-07-18BUG/MINOR: Lua: variable already initialized
2017-07-18BUG/MEDIUM: lua: bad memory access
2017-07-18BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
2017-07-18BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
2017-07-18BUG/MINOR: lua: In error case, the safe mode is not removed
2017-07-18BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
2017-07-13BUG/MINOR: peers: peer synchronization issue (with several peers sections).
2017-07-07BUG/MINOR: http: properly handle all 1xx informational responses
2017-07-06BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
2017-07-06BUG/MINOR: http: Don't reset the transaction if there are still data to send
2017-07-06BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
2017-07-05BUG/MAJOR: http: fix buffer overflow on loguri buffer.
2017-07-04BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
2017-06-30BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
2017-06-30BUG/MAJOR: compression: Be sure to release the compression state in all cases
2017-06-30BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
2017-06-30BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
2017-06-27BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
2017-06-27BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
2017-06-23BUG/MINOR: log: pin the front connection when front ip/ports are logged
2017-06-21BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
2017-06-21BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
2017-06-20BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
2017-06-20BUG/MEDIUM: fix segfault when no argument to -x option
2017-06-16BUG/MEDIUM: unix: never unlink a unix socket from the file system
2017-06-15BUG/MAJOR: server: Segfault after parsing server state file.
2017-06-15BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
2017-06-14BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
2017-06-14BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
2017-06-14BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
2017-06-14BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
2017-06-11BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
2017-06-09BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
2017-06-08BUG/MEDIUM: misplaced exit and wrong exit code
2017-06-08BUG/MINOR: warning: ‘need_resend’ may be used uninitialized
2017-06-08BUG/MEDIUM: build without openssl broken
2017-06-08BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
2017-06-08BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
2017-06-08BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
2017-06-08BUG/MAJOR: ssl: fix segfault on connection close using async engines.
2017-05-12BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
2017-05-12BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
2017-05-06BUG/MINOR: checks: don't send proxy protocol with agent checks
2017-05-04BUG/MINOR: contrib/mod_security: fix build on FreeBSD
2017-04-28BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
2017-04-27BUG/MINOR: change header-declared function to static inline
2017-04-26BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
2017-04-26BUG/MEDIUM: lua: memory leak
2017-04-21BUG/MINOR: server: missing default server 'resolvers' setting duplication.
2017-04-21BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
2017-04-20BUG/MINOR: server: don't use "proxy" when px is really meant.
2017-04-19BUG/MAJOR: Use -fwrapv.
2017-04-19BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
2017-04-16BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
2017-04-15BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
2017-04-13BUG/MEDIUM: servers: unbreak server weight propagation
2017-04-13BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
2017-04-13BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
2017-04-12BUG/MINOR: arg: don't try to add an argument on failed memory allocation
2017-04-12BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
2017-04-11BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
2017-04-10BUG/MINOR: server : no transparent proxy for DragonflyBSD
2017-03-31BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
2017-03-31BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
2017-03-31BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
2017-03-31BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
2017-03-30BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
2017-03-29BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
2017-03-27BUG/MEDIUM: tcp: don't require privileges to bind to device
2017-03-27BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
2017-03-21BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
2017-03-21BUG/MEDIUM: stream: fix client-fin/server-fin handling
2017-03-21BUG/MAJOR: http: fix typo in http_apply_redirect_rule
2017-03-20BUG: payload: fix payload not retrieving arbitrary lengths
2017-03-19BUG/MEDIUM: connection: ensure to always report the end of handshakes
2017-03-19BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
2017-03-15BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
2017-03-15BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
2017-03-15BUG/MEDIUM: listener: do not try to rebind another process' socket
2017-03-15BUG/MINOR: checks: attempt clean shutw for SSL check
2017-03-14BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
2017-03-13BUG/MINOR: Fix "get map " CLI command
2017-03-13BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
2017-03-10BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
2017-03-09BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
2017-03-09BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
2017-03-08BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
2017-03-07BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
2017-03-06BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
2017-03-02BUG/MEDIUM: ssl: fix verify/ca-file per certificate
2017-02-28BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
2017-02-23BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
2017-02-13BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
2017-02-10BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
2017-02-08BUG/MINOR: http: Return an error when a replace-header rule failed on the response
2017-02-08BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
2017-02-08BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
2017-02-08BUG/MEDIUM: http: prevent redirect from overwriting a buffer
2017-02-03BUG/MAJOR: dns: restart sockets after fork()
2017-01-30BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
2017-01-25BUG/MINOR: unix: fix connect's polling in case no data are scheduled
2017-01-25BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
2017-01-13BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
2017-01-11BUG/MINOR: Reset errno variable before calling strtol(3)
2017-01-11BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
2017-01-11BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
2017-01-11BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:
2017-01-06BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
2017-01-06BUG/MINOR: tools: fix off-by-one in port size check
2017-01-06BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
2017-01-05BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
2017-01-05BUG/MINOR: http: report real parser state in error captures
2017-01-05BUG/MAJOR: channel: Fix the definition order of channel analyzers
2017-01-05BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
2017-01-02BUG/MINOR: option prefer-last-server must be ignored in some case
2016-12-23BUG/MINOR: systemd: potential zombie processes
2016-12-23BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
2016-12-23BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
2016-12-22BUG/MINOR: stats: fix be/sessions/current out in typed stats
2016-12-22BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
2016-12-22BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
2016-12-21BUG/MINOR: lua: memleak when Lua/cli fails
2016-12-21BUG/MINOR: lua: bad return code
2016-12-21BUG/MINOR: lua: memory leak executing tasks
2016-12-21BUG/MINOR: Fix the sending function in Lua's cosocket
2016-12-16BUG/MINOR: lua/cli: bad error message
2016-12-16BUG/MINOR: cli: "show cli sockets" would always report process 64
2016-12-16BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
2016-12-14BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
2016-12-14BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
2016-12-12BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
2016-12-12BUG/MEDIUM: stream: Save unprocessed events for a stream
2016-12-12BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
2016-12-12BUG/MINOR: stats: fix be/sessions/max output in html stats
2016-12-12BUG/MEDIUM: variables: some variable name can hide another ones
2016-12-05BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
2016-12-05BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
2016-12-05BUG/MINOR: cli: allow the backslash to be escaped on the CLI
2016-12-04BUG/MAJOR: stream: fix session abort on resource shortage
2016-11-29BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
2016-11-29BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
2016-11-29BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
2016-11-29BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
2016-11-29BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
2016-11-26BUG/MINOR: stats: make field_str() return an empty string on NULL
2016-11-26BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
2016-11-25BUG/MINOR: freq-ctr: make swrate_add() support larger values
2016-11-25BUG: spoe: Fix parsing of SPOE actions in ACK frames
2016-11-25BUG/MINOR: conf: calloc untested
2016-11-24BUG/MINOR: log-format: uncatched memory allocation functions
2016-11-24BUG/MINOR: cli: wake up the CLI's task after a timeout update
2016-11-24BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
2016-11-24BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
2016-11-19BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
2016-11-18BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
2016-11-18BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
2016-11-18DEBUG: connection: mark the closed FDs with a value that is easier to detect
2016-11-18BUG/MEDIUM: connection: check the control layer before stopping polling
2016-11-17BUG/MINOR: stick-table: handle out-of-memory condition gracefully
2016-11-14BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
2016-11-14BUG/MEDIUM: ssl: Store certificate filename in a variable
2016-11-14BUG/MEDIUM: channel: bad unlikely macro
2016-11-09BUG: vars: Fix 'set-var' converter because of a typo
2016-11-07BUG/MEDIUM: servers: properly propagate the maintenance states during startup
2016-11-07BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
2016-11-07BUG/MEDIUM: srv-state: properly restore the DRAIN state
2016-11-03BUG/MEDIUM: systemd-wrapper: return correct exit codes
2016-10-31BUG/MEDIUM: peers: fix use after free in peer_session_create()
2016-10-31BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
2016-10-25BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
2016-10-25BUG/MINOR: systemd: check return value of calloc()
2016-10-25BUG/MINOR: systemd: always restore signals before execve()
2016-10-25BUG/MINOR: systemd: make the wrapper return a non-null status code on error
2016-10-24BUG/MINOR: ssl: prevent multiple entries for the same certificate
2016-10-24BUG/MINOR: ssl: Check malloc return code
2016-10-21BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
2016-10-21BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
2016-10-21BUG/MINOR: vars: use sess and not s->sess in action_store()
2016-10-01BUG/MEDIUM: dns: don't randomly crash on out-of-memory
2016-10-01BUG/MINOR: stats: report the correct conn_time in backend's html output
2016-09-23BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
2016-09-13BUG/MINOR: displayed PCRE version is running release
2016-09-11BUG/MINOR: Fix OSX compilation errors
2016-08-30BUG/MINOR: payload: fix SSLv2 version parser
2016-08-29BUG/MAJOR: stream: properly mark the server address as unset on connect retry
2016-08-14BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
2016-08-14BUG/MINOR: peers: empty chunks after a resync.
2016-08-10BUG/MINOR: peers: some updates are pushed twice after a resync.
2016-08-09BUG/MEDIUM: stick-table: properly convert binary samples to keys
2016-08-09BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
2016-08-09BUG/MAJOR: server: the "sni" directive could randomly cause trouble
2016-08-09BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
2016-08-08BUG/MAJOR: compression: initialize avail_in/next_in even during flush
2016-08-07BUG/MEDIUM: stream-int: completely detach connection on connect error
2016-08-03BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
2016-07-26BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
2016-07-26BUG/MINOR: peers: don't count track-sc multiple times on errors
2016-07-26BUG/MINOR: peers: Fix peers data decoding issue
2016-07-14BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
2016-07-14BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
2016-07-13BUG/MINOR: Fix endiness issue in DNS header creation code
2016-07-13BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
2016-07-12BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
2016-06-30Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
2016-06-28BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
2016-06-28BUG/MEDIUM: http: unbreak uri/header/url_param hashing
2016-06-24BUG/BUILD: don't automatically run "make" on "make install"
2016-06-24BUG/MINOR: http: fix misleading error message for response captures
2016-06-24BUG/MINOR: ssl: close ssl key file on error
2016-06-22BUG/MINOR: srv-state: fix incorrect output of state file
2016-06-21BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
2016-06-21BUG/MEDIUM: filters: Fix data filtering when data are modified
2016-06-21BUG/MINOR: external-checks: do not unblock undesired signals
2016-06-21BUG/MAJOR: external-checks: use asynchronous signal delivery
2016-06-21BUG/MEDIUM: external-checks: close all FDs right after the fork()
2016-06-21BUG/MINOR: init: ensure that FD limit is raised to the max allowed
2016-06-21BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
2016-06-17BUG/MINOR: fix http-response set-log-level parsing error
2016-06-16BUG/MINOR: http: url32+src should check cli_conn before using it
2016-06-16BUG/MINOR: http: url32+src should use the big endian version of url32
2016-06-14BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
2016-06-12BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
2016-06-08BUG/MEDIUM: http: add-header: buffer overwritten
2016-06-08BUG/MINOR: http: add-header: header name copied twice
2016-06-08BUG/MEDIUM: lua: converters doesn't work
2016-06-07BUG/MEDIUM: sticktables: segfault in some configuration error cases
2016-05-31BUG/MEDIUM: fix risk of segfault with "show tls-keys"
2016-05-27BUG/MEDIUM: stats: show servers state may show an servers from another backend
2016-05-26BUG/MEDIUM: config: fix multiple declaration of section parsers
2016-05-25BUG/MEDIUM: dns: unbreak DNS resolver after header fix
2016-05-25BUG/MEDIUM: stick-tables: fix breakage in table converters
2016-05-25BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
2016-05-19BUG/MINOR: fix listening IP address storage for frontends (cont)
2016-05-19BUG/MAJOR: fix listening IP address storage for frontends
2016-05-19BUG/MEDIUM: init: don't use environment locale
2016-05-09BUG/MEDIUM: dns: fix alignment issue when building DNS queries
2016-05-09BUG/MINOR: dns: fix DNS header definition
2016-05-06BUG/MEDIUM: stats: show backend may show an empty or incomplete result
2016-05-06BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
2016-05-04BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
2016-05-04BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
2016-05-03BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
2016-05-02BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
2016-05-02BUG/MEDIUM: http: fix incorrect reporting of server errors
2016-04-29BUG/MINOR: log: fix a typo that would cause %HP to log
2016-04-29BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
2016-04-29BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
2016-04-25BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
2016-04-21BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
2016-04-21BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
2016-04-21BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
2016-04-15BUG/MINOR: fix maxaccept computation according to the frontend process range
2016-04-14BUG/MINOR: listener: stop unbound listeners on startup
2016-04-14BUG/MEDIUM: fix maxaccept computation on per-process listeners
2016-04-12BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
2016-04-12BUG/MINOR: cfgparse: couple of small memory leaks.
2016-04-12BUG/MINOR: server: risk of over reading the pref_net array.
2016-04-11BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
2016-04-09BUG/MEDIUM: trace.c: rdtsc() is defined in two files
2016-04-06BUG/MEDIUM: ssl: rewind the BIO when reading certificates
2016-04-06BUG/MINOR : allow to log cookie for tarpit and denied request
2016-04-05BUG/MINOR: DNS: resolution structure change
2016-04-05BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
2016-04-05BUG/MINOR: dns: inapropriate way out after a resolution timeout
2016-04-05BUG/MINOR: dumpstats: fix write to global chunk
2016-03-30BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
2016-03-30BUG/MINOR: prevent the dump of uninitialized vars
2016-03-30BUG/MINOR: lua: can't load external libraries
2016-03-29BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
2016-03-29BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
2016-03-25BUG/MEDIUM: peers: fix incorrect age in frequency counters
2016-03-19BUG/MINOR: conf: "listener id" expects integer, but its not checked
2016-03-17BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted

Back to the list of branches and versions
Back to the HAProxy page