HAProxy known bugs for version v1.7.4 (maintenance branch 1.7)

This version (1.7.4) is a release belonging to maintenance branch 1.7 whose latest version is 1.7.11. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

2018-04-301.7.11 ⇐ last
2017-03-271.7.4 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.7 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

171 0 18 65 88

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2019-03-12BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
2019-03-12BUG/MAJOR: stream: avoid double free on unique_id
2019-02-06BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
2019-02-05BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
2019-02-05BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
2019-02-05BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
2019-02-05BUG/MINOR: stream: don't close the front connection when facing a backend error
2019-02-05BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
2019-02-05BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
2019-02-05BUG/MINOR: server: don't always trust srv_check_health when loading a server state
2019-02-05BUG/MINOR: stick_table: Prevent conn_cur from underflowing
2019-02-05BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
2019-02-05BUG/MINOR: backend: balance uri specific options were lost across defaults
2019-02-05BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
2019-02-05BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
2019-02-05BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
2019-02-05BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
2019-02-05BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
2019-02-05BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
2019-02-05BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
2019-02-05BUG: dns: Prevent out-of-bounds read in dns_read_name()
2019-02-05BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
2019-02-05BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
2019-02-05BUG/MINOR: config: Copy default error messages when parsing of a backend starts
2019-02-05BUG/MEDIUM: buffers: Make sure we don't wrap in buffer_insert_line2/replace2.
2019-02-05BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
2019-02-05BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
2019-02-05BUG/MEDIUM: lua: reset lua transaction between http requests
2019-02-05BUG/MINOR: map: fix map_regm with backref
2018-08-31BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
2018-08-31BUG/MEDIUM: lua: socket timeouts are not applied
2018-08-31BUG/MINOR: lua: Bad HTTP client request duration.
2018-08-31BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
2018-08-31BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
2018-08-31BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
2018-08-31BUG/MAJOR: map: fix a segfault when using http-request set-map
2018-08-31BUG/MINOR: config: stick-table is not supported in defaults section
2018-08-30BUG/MINOR: servers: Don't make "server" in a frontend fatal.
2018-08-30BUG/MEDIUM: stats: don't ask for more data as long as we're responding
2018-08-30BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
2018-08-30BUG/MINOR: lua: Segfaults with wrong usage of types.
2018-08-30BUG/MEDIUM: lua/socket: Buffer error, may segfault
2018-08-30BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
2018-08-30BUG/MEDIUM: lua/socket: Notification error
2018-08-30BUG/MAJOR: lua: Dead lock with sockets
2018-08-30BUG/MEDIUM: lua/socket: wrong scheduling for sockets
2018-08-30BUG/MEDIUM: lua/socket: Length required read doesn't work
2018-08-30BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
2018-08-30BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
2018-05-18BUG/MINOR: spoe: Mistake in error message about SPOE configuration
2018-05-18BUG/MINOR: lua: ensure large proxy IDs can be represented
2018-05-18BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
2018-05-18BUG/MINOR: checks: Fix check->health computation for flapping servers
2018-04-30BUG/MINOR: config: disable http-reuse on TCP proxies
2018-04-27BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
2018-04-27BUILD/BUG: enable -fno-strict-overflow by default
2018-04-27BUG/MINOR: session: Fix tcp-request session failure if handshake.
2018-04-27BUG/MINOR: http: Return an error in proxy mode when url2sa fails
2018-04-27BUG/MINOR: email-alert: Set the mailer port during alert initialization
2018-04-27BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
2018-04-27BUG/MINOR: lua: the function returns anything
2018-04-27BUG/MINOR: tcp-check: use the server's service port as a fallback
2018-04-27BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
2018-04-27BUG/MINOR: lua: return bad error messages
2018-04-27BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
2018-04-26BUG/MINOR: force-persist and ignore-persist only apply to backends
2018-04-26BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
2018-04-26BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
2018-04-26BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
2018-04-26BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
2018-04-26BUG/MEDIUM: standard: Fix memory leak in str2ip2()
2018-04-26BUG/MINOR: sample: Fix output type of c_ipv62ip
2018-04-26BUG/MINOR: poll: too large size allocation for FD events
2018-02-26BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
2018-01-15BUG/MEDIUM: srv-state: always ensure there's a warmup task before manipulating it
2018-01-12BUG/MEDIUM: stream: properly handle client aborts during redispatch
2018-01-12BUG/MINOR: lua: Fix return value of Socket.settimeout
2018-01-12BUG/MINOR: lua: Fix default value for pattern in Socket.receive
2018-01-02BUG/MEDIUM: http: don't automatically forward request close
2018-01-02BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
2018-01-02BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
2018-01-02BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
2018-01-02BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
2018-01-02BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
2017-12-03BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
2017-12-03BUG/MINOR: stream: fix tv_request calculation for applets
2017-12-03BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
2017-12-03BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
2017-12-03BUG/MAJOR: stream: ensure analysers are always called upon close
2017-12-03BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
2017-12-03BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
2017-12-03BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
2017-12-03BUG/MINOR: mailers: Fix a memory leak when email alerts are released
2017-12-03BUG/MINOR: dns: Fix CLI keyword declaration
2017-12-03BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
2017-12-03BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
2017-12-03BUG/MINOR: cli: restore "set ssl tls-key" command
2017-12-03BUG/MINOR: ssl: OCSP_single_get0_status can return -1
2017-12-03BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
2017-12-03BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
2017-12-03BUG/MEDIUM: ssl: fix OCSP expiry calculation
2017-10-16BUG/MAJOR: stream-int: don't re-arm recv if send fails
2017-10-16BUG/MEDIUM: http: Return an error when url_dec sample converter failed
2017-10-16BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
2017-10-16BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
2017-10-16BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
2017-10-16BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
2017-10-16BUG/MEDIUM: tcp/http: set-dst-port action broken
2017-10-16BUG/MINOR: contrib/halog: fixing small memory leak
2017-10-16BUG/MINOR: log: fixing small memory leak in error code path.
2017-10-16BUG/MINOR: compression: Check response headers before http-response rules eval
2017-10-16BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
2017-10-16BUG/MINOR: Lua: The socket may be destroyed when we try to access.
2017-10-16BUG/MEDIUM: http: Close streams for connections closed before a redirect
2017-10-16BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
2017-10-16BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
2017-10-16BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
2017-10-16BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
2017-10-06BUG/MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
2017-08-18BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
2017-07-28BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
2017-07-28BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
2017-07-28BUG/MINOR: lua: Fix Server.get_addr() port values
2017-07-28BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
2017-07-28BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
2017-07-28BUG/MINOR: http: Set the response error state in http_sync_res_state
2017-07-20BUG/MEDIUM: lua: bad memory access
2017-07-20BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
2017-07-20BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
2017-07-20BUG/MINOR: lua: In error case, the safe mode is not removed
2017-07-20BUG/MINOR: peers: peer synchronization issue (with several peers sections).
2017-07-07BUG/MINOR: http: properly handle all 1xx informational responses
2017-07-07BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
2017-07-07BUG/MINOR: http: Don't reset the transaction if there are still data to send
2017-07-07BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
2017-07-05BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
2017-07-03BUG/MAJOR: compression: Be sure to release the compression state in all cases
2017-07-03BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
2017-07-03BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
2017-06-27BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
2017-06-25BUG/MINOR: log: pin the front connection when front ip/ports are logged
2017-06-25BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
2017-06-22BUG/MEDIUM: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
2017-06-21BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
2017-06-21BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
2017-06-16BUG/MEDIUM: unix: never unlink a unix socket from the file system
2017-06-16BUG/MAJOR: server: Segfault after parsing server state file.
2017-06-16BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
2017-06-16BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
2017-06-16BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
2017-06-16BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
2017-06-12BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
2017-06-12BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
2017-06-08BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
2017-06-08BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
2017-06-08BUG/MINOR: checks: don't send proxy protocol with agent checks
2017-06-08BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
2017-04-26BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
2017-04-26BUG/MEDIUM: lua: memory leak
2017-04-26BUG/MINOR: server: missing default server 'resolvers' setting duplication.
2017-04-26BUG/MINOR: server: don't use "proxy" when px is really meant.
2017-04-19BUG/MAJOR: Use -fwrapv.
2017-04-19BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
2017-04-13BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
2017-04-13BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
2017-04-13BUG/MINOR: arg: don't try to add an argument on failed memory allocation
2017-04-13BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
2017-04-13BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
2017-03-31BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
2017-03-31BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
2017-03-31BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
2017-03-31BUG/MEDIUM: peers: fix buffer overflow control in intdecode.

Back to the list of branches and versions
Back to the HAProxy page