HAProxy known bugs for version v1.7.9 (maintenance branch 1.7) :  236 

This version (1.7.9) is a release belonging to maintenance branch 1.7 whose latest version is 1.7.14. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

2021-03-311.7.14 ⇐ last
2017-08-181.7.9 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.7 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

236 0 16 86 134

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2021-03-31BUG/MINOR: spoe: fix handling of truncated frame
2021-03-31BUG/MINOR: tcp: fix silent-drop workaround for IPv6
2021-03-31BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
2021-03-31BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
2021-03-19BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
2021-03-19BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
2021-03-19BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
2021-03-04BUG/MINOR: connection: Use the client's dst family for adressless servers
2021-03-04BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
2021-03-04BUG/MINOR: http-ana: Only consider dst address to process originalto option
2021-03-04BUG/MINOR: server: Init params before parsing a new server-state line
2021-03-04BUG/MINOR: sample: Always consider zero size string samples as unsafe
2021-03-04BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
2021-03-04BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
2021-03-04BUG/MEDIUM: config: don't pick unset values from last defaults section
2021-03-04BUG/MINOR: server: Fix server-state-file-name directive
2021-03-04BUG/MINOR: xxhash: make sure armv6 uses memcpy()
2021-03-04BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
2021-03-04BUG/MINOR: tools: Reject size format not starting by a digit
2021-03-04BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
2021-03-04BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
2021-03-04BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
2021-03-04BUG/MINOR: filters: Skip disabled proxies during startup only
2021-03-04BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
2021-03-04BUG/MINOR: config: Fix memory leak on config parse listen
2021-03-04BUG/MINOR: ssl: verifyhost is case sensitive
2021-03-04BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
2020-09-11BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2020-09-11BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
2020-09-11BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2020-09-11BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2020-09-11BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2020-09-11BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
2020-08-11BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
2020-08-11BUG/MINOR: http_act: don't check capture id in backend (2)
2020-08-07BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2020-08-07BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2020-08-07BUG/MINOR: http_act: don't check capture id in backend (2)
2020-08-07BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2020-08-07BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
2020-08-07BUG/MINOR: spoe: correction of setting bits for analyzer
2020-08-07BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
2020-08-07BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
2020-08-07BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
2020-08-07BUG/MEDIUM: shctx: really check the lock's value while waiting
2020-08-07BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
2020-08-07BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
2020-08-07BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
2020-08-07BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
2020-04-02BUG/MINOR: http-ana: Reset request analysers on error when waiting for response
2020-04-02BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
2020-04-02BUG/MEDIUM: http: unbreak redirects in legacy mode
2020-04-02BUG/MINOR: stats: Fix color of draining servers on stats page
2020-04-02BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
2020-04-02BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
2020-04-02BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
2020-04-02BUG/MAJOR: list: fix invalid element address calculation
2020-04-02BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
2020-04-02BUG/MINOR: sample: fix the json converter's endian-sensitivity
2020-04-02BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
2020-04-02BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
2020-02-11BUG/MINOR: dns: allow 63 char in hostname
2020-02-11BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
2020-02-04BUG/MINOR: http_act: don't check capture id in backend
2020-02-04BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
2020-02-04BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
2020-02-04BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
2020-02-04BUG/MINOR: dns: Make dns_query_id_seed unsigned
2020-02-04BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
2020-02-04BUG/MINOR: stream: don't mistake match rules for store-request rules
2020-02-04BUG/MAJOR: hashes: fix the signedness of the hash inputs
2020-02-04BUG/MEDIUM: session: do not report a failure when rejecting a session
2020-02-04BUG/MINOR: sample: always check converters' arguments
2020-02-04BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
2019-12-11BUG/MINOR: log: fix minor resource leaks on logformat error path
2019-12-11BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
2019-12-11BUG/MAJOR: dns: add minimalist error processing on the Rx path
2019-12-11BUG/MINOR: listener: also clear the error flag on a paused listener
2019-12-11BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
2019-12-11BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
2019-12-11BUG/MINOR: config: Update cookie domain warn to RFC6265
2019-10-28BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
2019-10-23BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
2019-10-22BUG/MINOR: WURFL: fix send_log() function arguments
2019-10-22BUG/MEDIUM: da: cast the chunk to string.
2019-10-22BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
2019-10-22BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
2019-10-22BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
2019-10-22BUG/MINOR: ssl: abort on sni_keytypes allocation failure
2019-10-22BUG/MINOR: ssl: abort on sni allocation failure
2019-10-22BUG/MINOR: ssl: free the sni_keytype nodes
2019-10-22BUG/MEDIUM: namespace: close open namespaces during soft shutdown
2019-10-22BUG/MINOR: haproxy: fix rule->file memory leak
2019-10-22BUG/MINOR: stream-int: also update analysers timeouts on activity
2019-10-22BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
2019-10-22BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
2019-10-22BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
2019-10-22BUG/MINOR: lua: Set right direction and flags on new HTTP objects
2019-10-22BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
2019-10-22BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
2019-10-22BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
2019-10-22BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
2019-10-22BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
2019-10-22BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
2019-10-22BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
2019-10-22BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
2019-10-22BUG/MEDIUM: maps: only try to parse the default value when it's present
2019-10-22BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
2019-10-22BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
2019-10-22BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
2019-10-22BUG/MAJOR: checks: segfault during tcpcheck_main
2019-10-22BUG/MEDIUM: http: also reject messages where "chunked" is missing from transfer-enoding
2019-10-22BUG/MEDIUM: proto-http: Always start the parsing if there is no outgoing data
2019-10-22BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
2019-10-22BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
2019-10-22BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
2019-10-22BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
2019-10-22BUG/MAJOR: stats: Fix how huge POST data are read from the channel
2019-03-12BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
2019-03-12BUG/MAJOR: stream: avoid double free on unique_id
2019-02-06BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
2019-02-05BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
2019-02-05BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
2019-02-05BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
2019-02-05BUG/MINOR: stream: don't close the front connection when facing a backend error
2019-02-05BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
2019-02-05BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
2019-02-05BUG/MINOR: server: don't always trust srv_check_health when loading a server state
2019-02-05BUG/MINOR: stick_table: Prevent conn_cur from underflowing
2019-02-05BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
2019-02-05BUG/MINOR: backend: balance uri specific options were lost across defaults
2019-02-05BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
2019-02-05BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
2019-02-05BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
2019-02-05BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
2019-02-05BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
2019-02-05BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
2019-02-05BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
2019-02-05BUG: dns: Prevent out-of-bounds read in dns_read_name()
2019-02-05BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
2019-02-05BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
2019-02-05BUG/MINOR: config: Copy default error messages when parsing of a backend starts
2019-02-05BUG/MEDIUM: buffers: Make sure we don't wrap in buffer_insert_line2/replace2.
2019-02-05BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
2019-02-05BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
2019-02-05BUG/MEDIUM: lua: reset lua transaction between http requests
2019-02-05BUG/MINOR: map: fix map_regm with backref
2018-08-31BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
2018-08-31BUG/MEDIUM: lua: socket timeouts are not applied
2018-08-31BUG/MINOR: lua: Bad HTTP client request duration.
2018-08-31BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
2018-08-31BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
2018-08-31BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
2018-08-31BUG/MAJOR: map: fix a segfault when using http-request set-map
2018-08-31BUG/MINOR: config: stick-table is not supported in defaults section
2018-08-30BUG/MINOR: servers: Don't make "server" in a frontend fatal.
2018-08-30BUG/MEDIUM: stats: don't ask for more data as long as we're responding
2018-08-30BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
2018-08-30BUG/MINOR: lua: Segfaults with wrong usage of types.
2018-08-30BUG/MEDIUM: lua/socket: Buffer error, may segfault
2018-08-30BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
2018-08-30BUG/MEDIUM: lua/socket: Notification error
2018-08-30BUG/MAJOR: lua: Dead lock with sockets
2018-08-30BUG/MEDIUM: lua/socket: wrong scheduling for sockets
2018-08-30BUG/MEDIUM: lua/socket: Length required read doesn't work
2018-08-30BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
2018-08-30BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
2018-05-18BUG/MINOR: spoe: Mistake in error message about SPOE configuration
2018-05-18BUG/MINOR: lua: ensure large proxy IDs can be represented
2018-05-18BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
2018-05-18BUG/MINOR: checks: Fix check->health computation for flapping servers
2018-04-30BUG/MINOR: config: disable http-reuse on TCP proxies
2018-04-27BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
2018-04-27BUILD/BUG: enable -fno-strict-overflow by default
2018-04-27BUG/MINOR: session: Fix tcp-request session failure if handshake.
2018-04-27BUG/MINOR: http: Return an error in proxy mode when url2sa fails
2018-04-27BUG/MINOR: email-alert: Set the mailer port during alert initialization
2018-04-27BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
2018-04-27BUG/MINOR: lua: the function returns anything
2018-04-27BUG/MINOR: tcp-check: use the server's service port as a fallback
2018-04-27BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
2018-04-27BUG/MINOR: lua: return bad error messages
2018-04-27BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
2018-04-26BUG/MINOR: force-persist and ignore-persist only apply to backends
2018-04-26BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
2018-04-26BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
2018-04-26BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
2018-04-26BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
2018-04-26BUG/MEDIUM: standard: Fix memory leak in str2ip2()
2018-04-26BUG/MINOR: sample: Fix output type of c_ipv62ip
2018-04-26BUG/MINOR: poll: too large size allocation for FD events
2018-02-26BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
2018-01-15BUG/MEDIUM: srv-state: always ensure there's a warmup task before manipulating it
2018-01-12BUG/MEDIUM: stream: properly handle client aborts during redispatch
2018-01-12BUG/MINOR: lua: Fix return value of Socket.settimeout
2018-01-12BUG/MINOR: lua: Fix default value for pattern in Socket.receive
2018-01-02BUG/MEDIUM: http: don't automatically forward request close
2018-01-02BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
2018-01-02BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
2018-01-02BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
2018-01-02BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
2018-01-02BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
2017-12-03BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
2017-12-03BUG/MINOR: stream: fix tv_request calculation for applets
2017-12-03BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
2017-12-03BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
2017-12-03BUG/MAJOR: stream: ensure analysers are always called upon close
2017-12-03BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
2017-12-03BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
2017-12-03BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
2017-12-03BUG/MINOR: mailers: Fix a memory leak when email alerts are released
2017-12-03BUG/MINOR: dns: Fix CLI keyword declaration
2017-12-03BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
2017-12-03BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
2017-12-03BUG/MINOR: cli: restore "set ssl tls-key" command
2017-12-03BUG/MINOR: ssl: OCSP_single_get0_status can return -1
2017-12-03BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
2017-12-03BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
2017-12-03BUG/MEDIUM: ssl: fix OCSP expiry calculation
2017-10-16BUG/MAJOR: stream-int: don't re-arm recv if send fails
2017-10-16BUG/MEDIUM: http: Return an error when url_dec sample converter failed
2017-10-16BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
2017-10-16BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
2017-10-16BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
2017-10-16BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
2017-10-16BUG/MEDIUM: tcp/http: set-dst-port action broken
2017-10-16BUG/MINOR: contrib/halog: fixing small memory leak
2017-10-16BUG/MINOR: log: fixing small memory leak in error code path.
2017-10-16BUG/MINOR: compression: Check response headers before http-response rules eval
2017-10-16BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
2017-10-16BUG/MINOR: Lua: The socket may be destroyed when we try to access.
2017-10-16BUG/MEDIUM: http: Close streams for connections closed before a redirect
2017-10-16BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
2017-10-16BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
2017-10-16BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
2017-10-16BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
2017-10-06BUG/MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH

Back to the list of branches and versions
Back to the HAProxy page