HAProxy known bugs for version v2.9.0 (maintenance branch 2.9) :  140 

This version (2.9.0) is a release belonging to maintenance branch 2.9 whose latest version is 2.9.7. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2024-04-052.9.7 ⇐ last
2024-02-262.9.6 
2024-02-152.9.5 
2024-01-312.9.4 
2024-01-182.9.3 
2024-01-112.9.2 
2023-12-152.9.1 
2023-12-052.9.0 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.9 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
140 0 10 53 77

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2024-04-08BUG/MINOR: cli: Report an error to user if command or payload is too big
2024-04-08BUG/MAJOR: connection: fix server used_conns with H2 + reuse safe
2024-04-08BUG/MEDIUM: http_ana: ignore NTLM for reuse aggressive/always and no H1
2024-04-08BUG/MAJOR: server: do not delete srv referenced by session
2024-04-08BUG/MEDIUM: ssl: Fix crash when calling "update ssl ocsp-response" when an update is ongoing
2024-04-08BUG/MAJOR: ocsp: Separate refcount per instance and per store
2024-04-08BUG/MEDIUM: quic: fix connection freeze on post handshake
2024-04-08BUG/MEDIUM: server: fix dynamic servers initial settings
2024-04-05BUG/MINOR: init: relax LSTCHK_NETADM checks for non root
2024-04-05BUG/MINOR: proxy: fix logformat expression leak in use_backend rules
2024-04-03BUG/MEDIUM: stick-table: use the update lock when reading tables from peers
2024-04-03BUG/MEDIUM: stconn: Don't forward shutdown to SE if iobuf is not empty
2024-04-03BUG/MINOR: backend: properly handle redispatch 0
2024-04-03BUG/MEDIUM: stick-tables: fix a small remaining race in expiration task
2024-04-03BUG/MINOR: log/balance: detect if user tries to use unsupported algo
2024-03-29BUG/MINOR: server: ignore 'enabled' for dynamic servers
2024-03-29BUG/MINOR: server: fix persistence cookie for dynamic servers
2024-03-29BUG/MINOR: ssl: Detect more 'ocsp-update' incompatibilities
2024-03-29BUG/MINOR: ssl: Wrong ocsp-update "incompatibility" error message
2024-03-26BUG/MINOR: server: 'source' interface ignored from 'default-server' directive
2024-03-26BUG/MEDIUM: mux-fcgi: Properly handle EOM flag on end-of-trailers HTX block
2024-03-26BUG/MINOR: mux-quic: close all QCS before freeing QCC tasklet
2024-03-26BUG/MEDIUM: ssl: Fix crash in ocsp-update log function
2024-03-26BUG/MINOR: session: ensure conn owner is set after insert into session
2024-03-26BUG/MEDIUM: spoe: Return an invalid frame on recv if size is too small
2024-03-26BUG/MINOR: spoe: Be sure to be able to quickly close IDLE applets on soft-stop
2024-03-26BUG/MEDIUM: spoe: Don't rely on stream's expiration to detect processing timeout
2024-03-26BUG/MINOR: listener: Don't schedule frontend without task in listener_release()
2024-03-26BUG/MINOR: listener: Wake proxy's mngmt task up if necessary on session release
2024-03-26BUG/MEDIUM: hlua: streams don't support mixing lua-load with lua-load-per-thread (2nd try)
2024-03-26DEBUG: lua: precisely identify if stream is stuck inside lua or not
2024-03-26BUG/MINOR: hlua: fix missing lock in hlua_filter_delete()
2024-03-26BUG/MINOR: hlua: missing lock in hlua_filter_new()
2024-03-26BUG/MINOR: hlua: segfault when loading the same filter from different contexts
2024-03-26CI: github: add -DDEBUG_LIST to the default builds
2024-03-26BUG/MINOR: ssl: fix possible ctx memory leak in sample_conv_aes_gcm()
2024-03-26BUG/MEDIUM: quic: fix handshake freeze under high traffic
2024-03-26BUG/MINOR: cfgparse: report proper location for log-format-sd errors
2024-03-26BUG/MINOR: ssl/cli: typo in new ssl crl-file CLI description
2024-03-26BUG/MINOR: sink: fix a race condition in the TCP log forwarding code
2024-03-26BUG/MINOR: hlua: don't call ha_alert() in hlua_event_subscribe()
2024-03-26BUG/MAJOR: hlua: improper lock usage with hlua_ctx_resume()
2024-03-26BUG/MEDIUM: hlua: improper lock usage with SET_SAFE_LJMP()
2024-03-26BUG/MINOR: hlua: improper lock usage in hlua_filter_new()
2024-03-26BUG/MINOR: hlua: improper lock usage in hlua_filter_callback()
2024-03-26BUG/MINOR: hlua: fix possible crash in hlua_filter_new() under load
2024-03-26BUG/MINOR: hlua: don't use lua_tostring() from unprotected contexts
2024-03-26BUG/MINOR: hlua: fix unsafe lua_tostring() usage with empty stack
2024-03-26BUG/MINOR: tools: seed the statistical PRNG slightly better
2024-03-26BUG/MINOR: hlua: Fix log level to the right value when set via TXN:set_loglevel
2024-03-26BUG/MINOR: config/quic: Alert about PROXY protocol use on a QUIC listener
2024-03-26BUG/MINOR: mux-h1: Properly report when mux is blocked during a nego
2024-03-26BUG/MINOR: ssl/cli: duplicate cleaning code in cli_parse_del_crtlist
2024-03-26BUG/MINOR: ist: only store NUL byte on succeeded alloc
2024-03-26BUG/MINOR: quic: fix output of show quic
2024-03-26BUG/MEDIUM: cli: Warn if pipelined commands are delimited by a \n
2024-03-26BUG/MAJOR: server: fix stream crash due to deleted server
2024-03-26BUG/MINOR: stats: drop srv refcount on early release
2024-03-26BUG/MINOR: ist: allocate nul byte on istdup
2024-03-26BUG/MEDIUM: quic: fix transient send error with listener socket
2024-03-26BUG/MEDIUM: hlua: Don't loop if a lua socket does not consume received data
2024-03-26BUG/MEDIUM: hlua: Be able to garbage collect uninitialized lua sockets
2024-03-26BUG/MEDIUM: applet: Immediately free appctx on early error
2024-03-26BUG/MINOR: qpack: reject invalid dynamic table capacity
2024-03-26BUG/MINOR: qpack: reject invalid increment count decoding
2024-03-26BUG/MINOR: quic: reject HANDSHAKE_DONE as server
2024-03-26BUG/MINOR: quic: reject unknown frame type
2024-03-12BUG/MINOR: mux-h2: count rejected DATA frames against the connection's flow control
2024-02-26BUG/MAJOR: ssl/ocsp: crash with ocsp when old process exit or using ocsp CLI
2024-02-22BUG/MAJOR: promex: fix crash on deleted server
2024-02-15BUG/MEDIUM: mux-h2: Don't report error on SE for closed H2 streams
2024-02-15BUG/MEDIUM: mux-h2: Don't report error on SE if error is only pending on H2C
2024-02-15BUG/MEDIUM: mux-h2: Only Report H2C error on read error if demux buffer is empty
2024-02-15BUG/MEDIUM: mux-h2: Switch pending error to error if demux buffer is empty
2024-02-14BUG/MAJOR: stconn: Check support for zero-copy forwarding on both sides
2024-02-14BUG/MEDIUM: stconn: Don't check pending shutdown to wake an applet up
2024-02-14BUG/MEDIUM: stconn: Allow expiration update when READ/WRITE event is pending
2024-02-14BUG/MEDIUM: quic: Wrong K CUBIC calculation.
2024-02-14BUG/MEDIUM: ssl: Fix crash when calling "update ssl ocsp-response" when an update is ongoing
2024-02-14BUG/MEDIUM: pool: fix rare risk of deadlock in pool_flush()
2024-02-14BUG/MEDIUM: cli: fix once for all the problem of missing trailing LFs
2024-02-14BUG/MINOR: vars/cli: fix missing LF after "get var" output
2024-02-14BUG/MINOR: ssl: Reenable ocsp auto-update after an "add ssl crt-list"
2024-02-14BUG/MINOR: ssl: Destroy ckch instances before the store during deinit
2024-02-14BUG/MEDIUM: ocsp: Separate refcount per instance and per store
2024-02-14BUG/MINOR: ssl: Clear the ckch instance when deleting a crt-list line
2024-02-14BUG/MINOR: ssl: Duplicate ocsp update mode when dup'ing ckch
2024-02-07MINOR: debug: make BUG_ON() catch build errors even without DEBUG_STRICT
2024-02-07BUG/MINOR: quic: fix possible integer wrap around in cubic window calculation
2024-02-07BUG/MINOR: ssl: Fix error message after ssl_sock_load_ocsp call
2024-02-07BUILD: quic: Variable name typo inside a BUG_ON().
2024-02-07BUG/MINOR: quic: Wrong ack ranges handling when reaching the limit.
2024-02-07BUG/MINOR: diag: run the final diags before quitting when using -c
2024-02-07BUG/MINOR: diag: always show the version before dumping a diag warning
2024-01-31BUG/MEDIUM: h1: always reject the NUL character in header values
2024-01-31BUG/MINOR: h1-htx: properly initialize the err_pos field
2024-01-31BUG/MEDIUM: h1: Don't support LF only to mark the end of a chunk size
2024-01-31BUG/MINOR: h1: Don't support LF only at the end of chunks
2024-01-31BUG/MEDIUM: quic: fix crash on invalid qc_stream_buf_free() BUG_ON
2024-01-31BUG/MEDIUM: qpack: allow 6xx..9xx status codes
2024-01-31BUG/MEDIUM: h3: do not crash on invalid response status code
2024-01-31BUG/MAJOR: ssl_sock: Always clear retry flags in read/write functions
2024-01-31BUG/MEDIUM: quic: remove unsent data from qc_stream_desc buf
2024-01-31BUG/MINOR: quic: newreno QUIC congestion control algorithm no more available
2024-01-31BUG/MEDIUM: cache: Fix crash when deleting secondary entry
2024-01-31BUG/MINOR: hlua: fix uninitialized var in hlua_core_get_var()
2024-01-31BUG/MINOR: jwt: fix jwt_verify crash on 32-bit archs
2024-01-31BUG/MEDIUM: cli: some err/warn msg dumps add LR into CSV output on stat's CLI
2024-01-31BUG/MEDIUM: mux-h2: refine connection vs stream error on headers
2024-01-29BUG/MINOR: h3: fix checking on NULL Tx buffer
2024-01-17BUG/MEDIUM: quic: keylog callback not called (USE_OPENSSL_COMPAT)
2024-01-17BUG/MINOR: mux-h2: also count streams for refused ones
2024-01-17BUG/MINOR: mux-quic: do not prevent non-STREAM sending on flow control
2024-01-11BUG/MINOR: map: list-based matching potential ordering regression
2024-01-05BUG/MEDIUM: spoe: Never create new spoe applet if there is no server up
2024-01-05BUG/MEDIUM: stconn: Set fsb date if zero-copy forwarding is blocked during nego
2024-01-05BUG/MEDIUM: stconn: Forward shutdown on write timeout only if it is forwardable
2024-01-05BUG/MEDIUM: h3: fix incorrect snd_buf return value
2024-01-02BUG/MINOR: h3: disable fast-forward on buffer alloc failure
2024-01-02BUG/MINOR: h3: close connection on sending alloc errors
2024-01-02BUG/MINOR: h3: properly handle alloc failure on finalize
2024-01-02BUG/MINOR: h3: close connection on header list too big
2024-01-02BUG/MINOR: quic: Missing call to TLS message callbacks
2024-01-02BUG/MINOR: quic: Wrong keylog callback setting.
2024-01-02BUG/MINOR: mux-quic: disable fast-fwd if connection on error
2024-01-02BUG/MINOR: mux-quic: always report error to SC on RESET_STREAM emission
2024-01-02BUG/MINOR: server/event_hdl: propagate map port info through inetaddr event
2024-01-02BUG/MEDIUM: stats: unhandled switching rules with TCP frontend
2024-01-02BUG/MAJOR: stconn: Disable zero-copy forwarding if consumer is shut or in error
2024-01-02BUG/MINOR: server: Use the configured address family for the initial resolution
2023-12-19BUG/MINOR: resolvers: default resolvers fails when network not configured
2023-12-14BUG/MEDIUM: mux-quic: report early error on stream
2023-12-14BUG/MEDIUM: mux-h2: Report too large HEADERS frame only when rxbuf is empty
2023-12-14BUG/MEDIUM: mux-h1: Explicitly skip request's C-L header if not set originally
2023-12-14BUG/MEDIUM: mux-h1: Cound data from input buf during zero-copy forwarding
2023-12-14BUG/MEDIUM: stconn: Block zero-copy forwarding if EOS/ERROR on consumer side
2023-12-14BUG/MEDIUM: quic: QUIC CID removed from tree without locking
2023-12-08BUG/MINOR: ext-check: cannot use without preserve-env
2023-12-08BUG/MEDIUM: map/acl: pat_ref_{set,delete}_by_id regressions
2023-12-08BUG/MEDIUM: quic: Possible buffer overflow when building TLS records
2023-12-08BUG/MINOR: mworker/cli: fix set severity-output support
2023-12-07BUG/MINOR: lua: Wrong OCSP CID after modifying an SSL certficate (LUA)
2023-12-07BUG/MINOR: ssl: Wrong OCSP CID after modifying an SSL certficate
2023-12-07BUG/MINOR: ssl: Double free of OCSP Certificate ID

Back to the list of branches and versions
Back to the HAProxy page