HAProxy known bugs for version v1.7.3 (maintenance branch 1.7)

This version (1.7.3) is a release belonging to maintenance branch 1.7 whose latest version is 1.7.9. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2017-08-181.7.9 ⇐ last
2017-07-071.7.8 
2017-06-251.7.7 
2017-06-161.7.6 
2017-04-031.7.5 
2017-03-271.7.4 
2017-02-281.7.3 ⇐ yours
2017-01-131.7.2 
2016-12-131.7.1 
2016-11-251.7.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.7 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
106 0 14 40 52

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2017-12-03BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
2017-12-03BUG/MINOR: stream: fix tv_request calculation for applets
2017-12-03BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
2017-12-03BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
2017-12-03BUG/MAJOR: stream: ensure analysers are always called upon close
2017-12-03BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
2017-12-03BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
2017-12-03BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
2017-12-03BUG/MINOR: mailers: Fix a memory leak when email alerts are released
2017-12-03BUG/MINOR: dns: Fix CLI keyword declaration
2017-12-03BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
2017-12-03BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
2017-12-03BUG/MINOR: cli: restore "set ssl tls-key" command
2017-12-03BUG/MINOR: ssl: OCSP_single_get0_status can return -1
2017-12-03BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
2017-12-03BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
2017-12-03BUG/MEDIUM: ssl: fix OCSP expiry calculation
2017-10-16BUG/MAJOR: stream-int: don't re-arm recv if send fails
2017-10-16BUG/MEDIUM: http: Return an error when url_dec sample converter failed
2017-10-16BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
2017-10-16BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
2017-10-16BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
2017-10-16BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
2017-10-16BUG/MEDIUM: tcp/http: set-dst-port action broken
2017-10-16BUG/MINOR: contrib/halog: fixing small memory leak
2017-10-16BUG/MINOR: log: fixing small memory leak in error code path.
2017-10-16BUG/MINOR: compression: Check response headers before http-response rules eval
2017-10-16BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
2017-10-16BUG/MINOR: Lua: The socket may be destroyed when we try to access.
2017-10-16BUG/MEDIUM: http: Close streams for connections closed before a redirect
2017-10-16BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
2017-10-16BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
2017-10-16BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
2017-10-16BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
2017-10-06BUG/MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
2017-08-18BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
2017-07-28BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
2017-07-28BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
2017-07-28BUG/MINOR: lua: Fix Server.get_addr() port values
2017-07-28BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
2017-07-28BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
2017-07-28BUG/MINOR: http: Set the response error state in http_sync_res_state
2017-07-20BUG/MEDIUM: lua: bad memory access
2017-07-20BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
2017-07-20BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
2017-07-20BUG/MINOR: lua: In error case, the safe mode is not removed
2017-07-20BUG/MINOR: peers: peer synchronization issue (with several peers sections).
2017-07-07BUG/MINOR: http: properly handle all 1xx informational responses
2017-07-07BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
2017-07-07BUG/MINOR: http: Don't reset the transaction if there are still data to send
2017-07-07BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
2017-07-05BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
2017-07-03BUG/MAJOR: compression: Be sure to release the compression state in all cases
2017-07-03BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
2017-07-03BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
2017-06-27BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
2017-06-25BUG/MINOR: log: pin the front connection when front ip/ports are logged
2017-06-25BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
2017-06-22BUG/MEDIUM: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
2017-06-21BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
2017-06-21BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
2017-06-16BUG/MEDIUM: unix: never unlink a unix socket from the file system
2017-06-16BUG/MAJOR: server: Segfault after parsing server state file.
2017-06-16BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
2017-06-16BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
2017-06-16BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
2017-06-16BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
2017-06-12BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
2017-06-12BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
2017-06-08BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
2017-06-08BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
2017-06-08BUG/MINOR: checks: don't send proxy protocol with agent checks
2017-06-08BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
2017-04-26BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
2017-04-26BUG/MEDIUM: lua: memory leak
2017-04-26BUG/MINOR: server: missing default server 'resolvers' setting duplication.
2017-04-26BUG/MINOR: server: don't use "proxy" when px is really meant.
2017-04-19BUG/MAJOR: Use -fwrapv.
2017-04-19BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
2017-04-13BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
2017-04-13BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
2017-04-13BUG/MINOR: arg: don't try to add an argument on failed memory allocation
2017-04-13BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
2017-04-13BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
2017-03-31BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
2017-03-31BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
2017-03-31BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
2017-03-31BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
2017-03-27BUG/MEDIUM: tcp: don't require privileges to bind to device
2017-03-27BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
2017-03-27BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
2017-03-27BUG/MEDIUM: stream: fix client-fin/server-fin handling
2017-03-27BUG/MAJOR: http: fix typo in http_apply_redirect_rule
2017-03-27BUG: payload: fix payload not retrieving arbitrary lengths
2017-03-27BUG/MEDIUM: connection: ensure to always report the end of handshakes
2017-03-27BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
2017-03-27BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
2017-03-27BUG/MEDIUM: listener: do not try to rebind another process' socket
2017-03-27BUG/MINOR: checks: attempt clean shutw for SSL check
2017-03-27BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
2017-03-14BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
2017-03-14BUG/MINOR: Fix "get map " CLI command
2017-03-14BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
2017-03-10BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
2017-03-10BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
2017-03-10BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters

Back to the list of branches and versions
Back to the HAProxy page