HAProxy known bugs for maintenance branch 1.6 :  38 

This is maintenance branch 1.6 whose latest version is 1.6.15. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 1.6 version other than 1.6.15, you're running with known bugs.

Quick links

Versions available in this branch

This branch contains the following releases :

DateVersionComment
2019-10-251.6.15 ⇐ last
2018-01-021.6.14 
2017-06-181.6.13 
2017-04-041.6.12 
2016-12-251.6.11 
2016-11-201.6.10 
2016-08-301.6.9 
2016-08-141.6.8 
2016-07-131.6.7 
2016-06-261.6.6 
2016-05-101.6.5 
2016-03-141.6.4 
2015-12-271.6.3 
2015-11-031.6.2 
2015-10-201.6.1 
2015-10-131.6.0 

Fixes for known bugs pending in this branch since the last release (1.6.15)

These fixes have already been queued for the next 1.6 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in the latest version of this branch by category :

TotalCRITICALMAJORMEDIUMMINOR
38 0 4 15 19

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2020-09-11BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2020-09-11BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2020-09-11BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2020-09-11BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2020-09-11BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2020-09-11BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2020-09-11BUG/MINOR: http_act: don't check capture id in backend (2)
2020-09-11BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2020-09-11BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
2020-09-11BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
2020-09-11BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
2020-09-11BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
2020-09-11BUG/MEDIUM: shctx: really check the lock's value while waiting
2020-09-11BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
2020-09-11BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
2020-09-11BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
2020-09-11BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
2020-09-11BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
2020-09-11BUG/MAJOR: list: fix invalid element address calculation
2020-09-11BUG/MINOR: sample: fix the json converter's endian-sensitivity
2020-09-11BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
2020-09-11BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
2020-02-11BUG/MINOR: dns: allow 63 char in hostname
2020-02-11BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
2020-02-04BUG/MINOR: http_act: don't check capture id in backend
2020-02-04BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
2020-02-04BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
2020-02-04BUG/MINOR: dns: Make dns_query_id_seed unsigned
2020-02-04BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
2020-02-04BUG/MINOR: stream: don't mistake match rules for store-request rules
2020-02-04BUG/MAJOR: hashes: fix the signedness of the hash inputs
2020-02-04BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
2019-12-11BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
2019-12-11BUG/MAJOR: dns: add minimalist error processing on the Rx path
2019-12-11BUG/MINOR: listener: also clear the error flag on a paused listener
2019-12-11BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
2019-12-11BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
2019-12-11BUG/MINOR: config: Update cookie domain warn to RFC6265

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

DateSubject
2020-10-27BUG/MINOR: cache: Check the return value of http_replace_res_status
2020-10-27BUG/MINOR: log: fix risk of null deref on error path
2020-10-27BUG/MINOR: log: fix memory leak on logsrv parse error
2020-10-27BUG/MEDIUM: ssl: OCSP must work with BoringSSL
2020-10-24BUG/MINOR: extcheck: add missing checks on extchk_setenv()
2020-10-24BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
2020-10-22BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
2020-10-22BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
2020-10-22BUG/MEDIUM: server: support changing the slowstart value from state-file
2020-10-21BUG/MINOR: queue: properly report redistributed connections
2020-10-20BUG/MINOR: listener: close before free in `listener_accept`
2020-10-19BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
2020-10-19BUG/MINOR: disable dynamic OCSP load with BoringSSL
2020-10-17BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
2020-10-16BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
2020-10-16BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
2020-10-16BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
2020-10-16BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
2020-10-16BUG/MEDIUM: proxy: properly stop backends
2020-10-15BUG/MEDIUM: connection: fix srv idle count on conn takeover
2020-10-15BUG/MINOR: connection: fix loop iter on connection takeover
2020-10-14BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
2020-10-13BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
2020-10-13BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
2020-10-13BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
2020-10-09BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
2020-10-09MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
2020-10-09BUG/MEDIUM: listeners: correctly report pause() errors
2020-10-09BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
2020-10-09BUG/MINOR: http: Fix content-length of the default 500 error
2020-10-09BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
2020-10-09BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
2020-10-09CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
2020-10-09BUG/MINOR: makefile: fix a tiny typo in the target list
2020-10-08BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
2020-10-07BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
2020-10-07BUG/MINOR: proxy: inc req counter on new syslog messages.
2020-10-07BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
2020-10-07BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
2020-10-07BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
2020-10-07BUG/MINOR: peers: Inconsistency when dumping peer status codes.
2020-10-05BUG/MINOR: stats: fix validity of the json schema
2020-10-02BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
2020-10-02BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
2020-10-02BUG/MINOR: Fix several leaks of 'log_tag' in init().
2020-09-28BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
2020-09-25BUG/MINOR: listeners: properly close listener FDs
2020-09-25BUG/MEDIUM: listeners: do not pause foreign listeners
2020-09-18BUG/MINOR: config: Fix memory leak on config parse listen
2020-09-18BUG/MINOR: Fix memory leaks cfg_parse_peers
2020-09-18BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
2020-09-18BUG/MEDIUM: h2: report frame bits only for handled types
2020-09-18BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
2020-09-16BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
2020-09-16BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
2020-09-16BUG/MEDIUM: log-forward: always quit on parsing errors
2020-09-16BUG/MINOR: log-forward: fail on unknown keywords
2020-09-16BUG/MINOR: ssl/crt-list: crt-list could end without a \n
2020-09-15BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
2020-09-15BUG/MINOR: server: report correct error message for invalid port on "socks4"
2020-09-14BUG/MINOR: ssl: verifyhost is case sensitive
2020-09-12BUG/MINOR: Fix type passed of sizeof() for calloc()
2020-09-11BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2020-09-11BUG/MINOR: haproxy: Free uri_auth->scope during deinit

Back to the list of branches and versions
Back to the HAProxy page