HAProxy known bugs for maintenance branch 1.7

This is maintenance branch 1.7 whose latest version is 1.7.11. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 1.7 version other than 1.7.11, you're running with known bugs.

Quick links

Versions available in this branch

This branch contains the following releases :

DateVersionComment
2018-04-301.7.11 ⇐ last
2018-01-021.7.10 
2017-08-181.7.9 
2017-07-071.7.8 
2017-06-251.7.7 
2017-06-161.7.6 
2017-04-031.7.5 
2017-03-271.7.4 
2017-02-281.7.3 
2017-01-131.7.2 
2016-12-131.7.1 
2016-11-251.7.0 

Fixes for known bugs pending in this branch since the last release (1.7.11)

These fixes have already been queued for the next 1.7 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in the latest version of this branch by category :

TotalCRITICALMAJORMEDIUMMINOR
24 0 2 12 10

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2018-08-31BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
2018-08-31BUG/MEDIUM: lua: socket timeouts are not applied
2018-08-31BUG/MINOR: lua: Bad HTTP client request duration.
2018-08-31BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
2018-08-31BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
2018-08-31BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
2018-08-31BUG/MAJOR: map: fix a segfault when using http-request set-map
2018-08-31BUG/MINOR: config: stick-table is not supported in defaults section
2018-08-30BUG/MINOR: servers: Don't make "server" in a frontend fatal.
2018-08-30BUG/MEDIUM: stats: don't ask for more data as long as we're responding
2018-08-30BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
2018-08-30BUG/MINOR: lua: Segfaults with wrong usage of types.
2018-08-30BUG/MEDIUM: lua/socket: Buffer error, may segfault
2018-08-30BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
2018-08-30BUG/MEDIUM: lua/socket: Notification error
2018-08-30BUG/MAJOR: lua: Dead lock with sockets
2018-08-30BUG/MEDIUM: lua/socket: wrong scheduling for sockets
2018-08-30BUG/MEDIUM: lua/socket: Length required read doesn't work
2018-08-30BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
2018-08-30BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
2018-05-18BUG/MINOR: spoe: Mistake in error message about SPOE configuration
2018-05-18BUG/MINOR: lua: ensure large proxy IDs can be represented
2018-05-18BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
2018-05-18BUG/MINOR: checks: Fix check->health computation for flapping servers

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

DateSubject
2018-10-15BUG/MEDIUM: stream: don't crash on out-of-memory
2018-10-12BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
2018-10-11BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
2018-10-11BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
2018-10-11BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
2018-10-11BUG/MINOR: checks: queues null-deref
2018-10-11BUG/MINOR: h2: null-deref
2018-10-10BUG/MINOR: threads: move declaration of capabilities to config.h
2018-10-10BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
2018-10-08BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
2018-10-03BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
2018-10-03BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
2018-10-03BUG/MINOR: backend: check that the mux installed properly
2018-10-02BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
2018-09-28BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
2018-09-26BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
2018-09-26BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
2018-09-20BUG/MEDIUM: http: Don't parse chunked body if there is no input data
2018-09-20BUG/CRITICAL: hpack: fix improper sign check on the header index value
2018-09-20BUG/MINOR: cli: make sure the "getsock" command is only called on connections
2018-09-20BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
2018-09-19BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
2018-09-19BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
2018-09-13BUG/MINOR: h1: don't consider the status for each header
2018-09-12BUG/MAJOR: h2: reset the parser's state on mux buffer full
2018-09-12BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
2018-09-12BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
2018-09-12BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
2018-09-12BUG/MINOR: h2: report asynchronous end of stream on closed connections
2018-09-12BUG/MINOR: server: Crash when setting FQDN via CLI.
2018-09-11BUG/MAJOR: kqueue: Don't reset the changes number by accident.
2018-09-11BUG/MINOR: mworker: no need to stop peers for each proxy
2018-09-07BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
2018-09-07BUG/MINOR: http/threads: atomically increment the error snapshot ID
2018-09-06BUG/MINOR: dns: check and link servers' resolvers right after config parsing
2018-09-06BUG/MINOR: h1: fix buffer shift after realignment
2018-09-05BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
2018-09-05BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
2018-09-05BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
2018-09-05BUG/MINOR: stream: use atomic increments for the request counter
2018-09-04BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
2018-09-04BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
2018-08-31BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.

Back to the list of branches and versions
Back to the HAProxy page