HAProxy known bugs for maintenance branch 1.2

This is maintenance branch 1.2 whose latest version is 1.2.18. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 1.2 version other than 1.2.18, you're running with known bugs.

Quick links

full changelog for 1.2 : here
browse history for 1.2 : here

Versions available in this branch

This branch contains the following releases :

Date Version Comment

Fixes for known bugs pending in this branch since the last release (1.2.18)

These fixes have already been queued for the next 1.2 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in the latest version of this branch by category :

Total CRITICAL MAJOR MEDIUM MINOR

1 0 0 0 1

Total	CRITICAL	MAJOR	MEDIUM	MINOR
1	0	0	0	1

Click on the subjects below to get the full description of the bug :

Merge date Subject - Severity (minor, medium, major, critical)

2008-11-11 [BUG] ensure we don't close listener fds twice on errors

Merge date	Subject - Severity (minor, medium, major, critical)
2008-11-11	[BUG] ensure we don't close listener fds twice on errors

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

Date	Subject
2017-06-09	BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
2017-06-08	BUG/MEDIUM: misplaced exit and wrong exit code
2017-06-08	BUG/MINOR: warning: ‘need_resend’ may be used uninitialized
2017-06-08	BUG/MEDIUM: build without openssl broken
2017-06-08	BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
2017-06-08	BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
2017-06-08	BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
2017-06-08	BUG/MAJOR: ssl: fix segfault on connection close using async engines.
2017-05-12	BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
2017-05-12	BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
2017-05-06	BUG/MINOR: checks: don't send proxy protocol with agent checks
2017-05-04	BUG/MINOR: contrib/mod_security: fix build on FreeBSD
2017-04-28	BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
2017-04-27	BUG/MINOR: change header-declared function to static inline
2017-04-26	BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
2017-04-26	BUG/MEDIUM: lua: memory leak
2017-04-21	BUG/MINOR: server: missing default server 'resolvers' setting duplication.
2017-04-21	BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
2017-04-20	BUG/MINOR: server: don't use "proxy" when px is really meant.
2017-04-19	BUG/MAJOR: Use -fwrapv.
2017-04-19	BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
2017-04-16	BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
2017-04-15	BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
2017-04-13	BUG/MEDIUM: servers: unbreak server weight propagation
2017-04-13	BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
2017-04-13	BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
2017-04-12	BUG/MINOR: arg: don't try to add an argument on failed memory allocation
2017-04-12	BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
2017-04-11	BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
2017-04-10	BUG/MINOR: server : no transparent proxy for DragonflyBSD
2017-03-31	BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
2017-03-31	BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
2017-03-31	BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
2017-03-31	BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
2017-03-30	BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
2017-03-29	BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
2017-03-27	BUG/MEDIUM: tcp: don't require privileges to bind to device
2017-03-27	BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
2017-03-21	BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
2017-03-21	BUG/MEDIUM: stream: fix client-fin/server-fin handling
2017-03-21	BUG/MAJOR: http: fix typo in http_apply_redirect_rule
2017-03-20	BUG: payload: fix payload not retrieving arbitrary lengths
2017-03-19	BUG/MEDIUM: connection: ensure to always report the end of handshakes
2017-03-19	BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
2017-03-15	BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
2017-03-15	BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
2017-03-15	BUG/MEDIUM: listener: do not try to rebind another process' socket
2017-03-15	BUG/MINOR: checks: attempt clean shutw for SSL check
2017-03-14	BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
2017-03-13	BUG/MINOR: Fix "get map " CLI command
2017-03-13	BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
2017-03-10	BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
2017-03-09	BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
2017-03-09	BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
2017-03-08	BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
2017-03-07	BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
2017-03-06	BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
2017-03-02	BUG/MEDIUM: ssl: fix verify/ca-file per certificate
2017-02-28	BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
2017-02-23	BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
2017-02-13	BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
2017-02-10	BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
2017-02-08	BUG/MINOR: http: Return an error when a replace-header rule failed on the response
2017-02-08	BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
2017-02-08	BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
2017-02-08	BUG/MEDIUM: http: prevent redirect from overwriting a buffer
2017-02-03	BUG/MAJOR: dns: restart sockets after fork()
2017-01-30	BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
2017-01-25	BUG/MINOR: unix: fix connect's polling in case no data are scheduled
2017-01-25	BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
2017-01-13	BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
2017-01-11	BUG/MINOR: Reset errno variable before calling strtol(3)
2017-01-11	BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
2017-01-11	BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
2017-01-11	BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
2017-01-06	BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
2017-01-06	BUG/MINOR: tools: fix off-by-one in port size check
2017-01-06	BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
2017-01-05	BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
2017-01-05	BUG/MINOR: http: report real parser state in error captures
2017-01-05	BUG/MAJOR: channel: Fix the definition order of channel analyzers
2017-01-05	BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
2017-01-02	BUG/MINOR: option prefer-last-server must be ignored in some case
2016-12-23	BUG/MINOR: systemd: potential zombie processes
2016-12-23	BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
2016-12-23	BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
2016-12-22	BUG/MINOR: stats: fix be/sessions/current out in typed stats
2016-12-22	BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
2016-12-22	BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
2016-12-21	BUG/MINOR: lua: memleak when Lua/cli fails
2016-12-21	BUG/MINOR: lua: bad return code
2016-12-21	BUG/MINOR: lua: memory leak executing tasks
2016-12-21	BUG/MINOR: Fix the sending function in Lua's cosocket
2016-12-16	BUG/MINOR: lua/cli: bad error message
2016-12-16	BUG/MINOR: cli: "show cli sockets" would always report process 64
2016-12-16	BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
2016-12-14	BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
2016-12-14	BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
2016-12-12	BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
2016-12-12	BUG/MEDIUM: stream: Save unprocessed events for a stream
2016-12-12	BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
2016-12-12	BUG/MINOR: stats: fix be/sessions/max output in html stats
2016-12-12	BUG/MEDIUM: variables: some variable name can hide another ones
2016-12-05	BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
2016-12-05	BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
2016-12-05	BUG/MINOR: cli: allow the backslash to be escaped on the CLI
2016-12-04	BUG/MAJOR: stream: fix session abort on resource shortage
2016-11-29	BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
2016-11-29	BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
2016-11-29	BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
2016-11-29	BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
2016-11-29	BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
2016-11-26	BUG/MINOR: stats: make field_str() return an empty string on NULL
2016-11-26	BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
2016-11-25	BUG/MINOR: freq-ctr: make swrate_add() support larger values
2016-11-25	BUG: spoe: Fix parsing of SPOE actions in ACK frames
2016-11-25	BUG/MINOR: conf: calloc untested
2016-11-24	BUG/MINOR: log-format: uncatched memory allocation functions
2016-11-24	BUG/MINOR: cli: wake up the CLI's task after a timeout update
2016-11-24	BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
2016-11-24	BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
2016-11-19	BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
2016-11-18	BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
2016-11-18	BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
2016-11-18	DEBUG: connection: mark the closed FDs with a value that is easier to detect
2016-11-18	BUG/MEDIUM: connection: check the control layer before stopping polling
2016-11-17	BUG/MINOR: stick-table: handle out-of-memory condition gracefully
2016-11-14	BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
2016-11-14	BUG/MEDIUM: ssl: Store certificate filename in a variable
2016-11-14	BUG/MEDIUM: channel: bad unlikely macro
2016-11-09	BUG: vars: Fix 'set-var' converter because of a typo
2016-11-07	BUG/MEDIUM: servers: properly propagate the maintenance states during startup
2016-11-07	BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
2016-11-07	BUG/MEDIUM: srv-state: properly restore the DRAIN state
2016-11-03	BUG/MEDIUM: systemd-wrapper: return correct exit codes
2016-10-31	BUG/MEDIUM: peers: fix use after free in peer_session_create()
2016-10-31	BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
2016-10-25	BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
2016-10-25	BUG/MINOR: systemd: check return value of calloc()
2016-10-25	BUG/MINOR: systemd: always restore signals before execve()
2016-10-25	BUG/MINOR: systemd: make the wrapper return a non-null status code on error
2016-10-24	BUG/MINOR: ssl: prevent multiple entries for the same certificate
2016-10-24	BUG/MINOR: ssl: Check malloc return code
2016-10-21	BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
2016-10-21	BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
2016-10-21	BUG/MINOR: vars: use sess and not s->sess in action_store()
2016-10-01	BUG/MEDIUM: dns: don't randomly crash on out-of-memory
2016-10-01	BUG/MINOR: stats: report the correct conn_time in backend's html output
2016-09-23	BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
2016-09-13	BUG/MINOR: displayed PCRE version is running release
2016-09-11	BUG/MINOR: Fix OSX compilation errors
2016-08-30	BUG/MINOR: payload: fix SSLv2 version parser
2016-08-29	BUG/MAJOR: stream: properly mark the server address as unset on connect retry
2016-08-14	BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
2016-08-14	BUG/MINOR: peers: empty chunks after a resync.
2016-08-10	BUG/MINOR: peers: some updates are pushed twice after a resync.
2016-08-09	BUG/MEDIUM: stick-table: properly convert binary samples to keys
2016-08-09	BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
2016-08-09	BUG/MAJOR: server: the "sni" directive could randomly cause trouble
2016-08-09	BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
2016-08-08	BUG/MAJOR: compression: initialize avail_in/next_in even during flush
2016-08-07	BUG/MEDIUM: stream-int: completely detach connection on connect error
2016-08-03	BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
2016-07-26	BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
2016-07-26	BUG/MINOR: peers: don't count track-sc multiple times on errors
2016-07-26	BUG/MINOR: peers: Fix peers data decoding issue
2016-07-14	BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
2016-07-14	BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
2016-07-13	BUG/MINOR: Fix endiness issue in DNS header creation code
2016-07-13	BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
2016-07-12	BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
2016-06-30	Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
2016-06-28	BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
2016-06-28	BUG/MEDIUM: http: unbreak uri/header/url_param hashing
2016-06-24	BUG/BUILD: don't automatically run "make" on "make install"
2016-06-24	BUG/MINOR: http: fix misleading error message for response captures
2016-06-24	BUG/MINOR: ssl: close ssl key file on error
2016-06-22	BUG/MINOR: srv-state: fix incorrect output of state file
2016-06-21	BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
2016-06-21	BUG/MEDIUM: filters: Fix data filtering when data are modified
2016-06-21	BUG/MINOR: external-checks: do not unblock undesired signals
2016-06-21	BUG/MAJOR: external-checks: use asynchronous signal delivery
2016-06-21	BUG/MEDIUM: external-checks: close all FDs right after the fork()
2016-06-21	BUG/MINOR: init: ensure that FD limit is raised to the max allowed
2016-06-21	BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
2016-06-17	BUG/MINOR: fix http-response set-log-level parsing error
2016-06-16	BUG/MINOR: http: url32+src should check cli_conn before using it
2016-06-16	BUG/MINOR: http: url32+src should use the big endian version of url32
2016-06-14	BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
2016-06-12	BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
2016-06-08	BUG/MEDIUM: http: add-header: buffer overwritten
2016-06-08	BUG/MINOR: http: add-header: header name copied twice
2016-06-08	BUG/MEDIUM: lua: converters doesn't work
2016-06-07	BUG/MEDIUM: sticktables: segfault in some configuration error cases
2016-05-31	BUG/MEDIUM: fix risk of segfault with "show tls-keys"
2016-05-27	BUG/MEDIUM: stats: show servers state may show an servers from another backend
2016-05-26	BUG/MEDIUM: config: fix multiple declaration of section parsers
2016-05-25	BUG/MEDIUM: dns: unbreak DNS resolver after header fix
2016-05-25	BUG/MEDIUM: stick-tables: fix breakage in table converters
2016-05-25	BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
2016-05-19	BUG/MINOR: fix listening IP address storage for frontends (cont)
2016-05-19	BUG/MAJOR: fix listening IP address storage for frontends
2016-05-19	BUG/MEDIUM: init: don't use environment locale
2016-05-09	BUG/MEDIUM: dns: fix alignment issue when building DNS queries
2016-05-09	BUG/MINOR: dns: fix DNS header definition
2016-05-06	BUG/MEDIUM: stats: show backend may show an empty or incomplete result
2016-05-06	BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
2016-05-04	BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
2016-05-04	BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
2016-05-03	BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
2016-05-02	BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
2016-05-02	BUG/MEDIUM: http: fix incorrect reporting of server errors
2016-04-29	BUG/MINOR: log: fix a typo that would cause %HP to log
2016-04-29	BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
2016-04-29	BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
2016-04-25	BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
2016-04-21	BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
2016-04-21	BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
2016-04-21	BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
2016-04-15	BUG/MINOR: fix maxaccept computation according to the frontend process range
2016-04-14	BUG/MINOR: listener: stop unbound listeners on startup
2016-04-14	BUG/MEDIUM: fix maxaccept computation on per-process listeners
2016-04-12	BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
2016-04-12	BUG/MINOR: cfgparse: couple of small memory leaks.
2016-04-12	BUG/MINOR: server: risk of over reading the pref_net array.
2016-04-11	BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
2016-04-09	BUG/MEDIUM: trace.c: rdtsc() is defined in two files
2016-04-06	BUG/MEDIUM: ssl: rewind the BIO when reading certificates
2016-04-06	BUG/MINOR : allow to log cookie for tarpit and denied request
2016-04-05	BUG/MINOR: DNS: resolution structure change
2016-04-05	BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
2016-04-05	BUG/MINOR: dns: inapropriate way out after a resolution timeout
2016-04-05	BUG/MINOR: dumpstats: fix write to global chunk
2016-03-30	BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
2016-03-30	BUG/MINOR: prevent the dump of uninitialized vars
2016-03-30	BUG/MINOR: lua: can't load external libraries
2016-03-29	BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
2016-03-29	BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
2016-03-25	BUG/MEDIUM: peers: fix incorrect age in frequency counters
2016-03-19	BUG/MINOR: conf: "listener id" expects integer, but its not checked
2016-03-17	BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
2016-03-13	BUG/MINOR: log: GMT offset not updated when entering/leaving DST
2016-03-13	BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
2016-03-13	BUG/MINOR: standard: Avoid free of non-allocated pointer
2016-03-10	BUG/MINOR: ssl: fix usage of the various sample fetch functions
2016-03-10	BUG/MAJOR: vars: always retrieve the stream and session from the sample
2016-03-10	BUG/MAJOR: samples: check smp->strm before using it
2016-03-08	BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
2016-03-07	BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
2016-02-27	BUG/MINOR: systemd: propagate the correct signal to haproxy
2016-02-27	BUG/MINOR: systemd: report the correct signal in debug message output
2016-02-27	BUG/MINOR: systemd: ensure we don't miss signals
2016-02-25	BUG/MEDIUM: chunks: always reject negative-length chunks
2016-02-24	BUG/MINOR: server: fix the format of the warning on address change
2016-02-24	BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
2016-02-23	BUG/MINOR: lua: Useless copy
2016-02-23	BUG/MINOR: server: some prototypes are renamed
2016-02-20	BUG/MAJOR: lua: applets can't sleep.
2016-02-19	BUG/MAJOR: lua: segfault using Concat object
2016-02-12	BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
2016-02-12	BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
2016-02-11	BUG/MINOR: lua: unsafe initialization
2016-02-09	BUG/MINOR: stats: fix missing comma in stats on agent drain
2016-02-09	BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
2016-02-03	BUG/MEDIUM: http-reuse: do not share private connections across backends
2016-02-03	BUG/MAJOR: http-reuse: fix risk of orphaned connections
2016-02-03	BUG: stream_interface: Reuse connection even if the output channel is empty
2016-01-27	BUG/CLEANUP: CLI: report the proper field states in "show sess"
2016-01-25	BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
2016-01-25	BUG/MINOR: stream: don't force retries if the server is DOWN
2016-01-25	BUG/MEDIUM: buffers: do not round up buffer size during allocation
2016-01-25	BUG/MEDIUM: channel: fix miscalculation of available buffer space.
2016-01-22	BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
2016-01-21	BUG/MEDIUM: config: Adding validation to stick-table expire value.
2016-01-21	BUG/MEDIUM: servers state: server port is used uninitialized
2016-01-21	BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
2016-01-21	BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
2016-01-18	BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
2016-01-13	BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
2016-01-13	BUG/MINOR: 51d: Releases workset back to pool.
2016-01-13	BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
2016-01-13	BUG/MINOR: 51d: Ensures a unique domain for each configuration
2016-01-04	BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
2015-12-28	BUG/MINOR: http: Be sure to process all the data received from a server
2015-12-27	BUG/MINOR: http: fix several off-by-one errors in the url_param parser
2015-12-22	BUG/MINOR: stream: bad return code
2015-12-20	BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
2015-12-20	BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
2015-12-20	BUG/MINOR: lua: Lua applets must not use http_txn
2015-12-20	BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
2015-12-16	BUG/MEDIUM: peers: old stick table updates could be repushed.
2015-12-16	BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
2015-12-14	BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
2015-12-07	BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
2015-12-04	BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
2015-12-04	BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
2015-12-04	BUG/MINOR: checks: typo in an email-alert error message
2015-12-04	BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
2015-12-04	BUG/MEDIUM: checks: email-alert not working when declared in defaults
2015-12-03	BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
2015-11-26	BUG/MEDIUM: sample: urlp can't match an empty value
2015-11-26	BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
2015-11-26	BUG/MEDIUM: stream: fix half-closed timeout handling
2015-11-26	BUG/MEDIUM: http: don't enable auto-close on the response side
2015-11-26	BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
2015-11-18	BUG/MEDIUM: http: switch the request channel to no-delay once done.
2015-11-13	BUG: http: do not abort keep-alive connections on server timeout
2015-11-06	BUG/MEDIUM: lua: clean output buffer
2015-11-05	BUG/MINOR: acl: don't use record layer in req_ssl_ver
2015-11-05	BUG/MINOR: server: check return value of fgets() in apply_server_state()
2015-11-04	BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
2015-11-03	BUG/MEDIUM: lua: sample fetches based on response doesn't work
2015-11-03	BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
2015-11-02	BUG/MAJOR: http: don't requeue an idle connection that is already queued
2015-11-02	BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
2015-11-01	BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
2015-10-30	BUG/MINOR: dns: unable to parse CNAMEs response
2015-10-30	BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
2015-10-29	BUG/MEDIUM: config: count memory limits on 64 bits, not 32
2015-10-28	DEBUG/MEDIUM: memory: add optional control pool memory operations
2015-10-28	DEBUG/MEDIUM: memory: optionally protect free data in pools
2015-10-28	DEBUG/MINOR: memory: add a build option to disable memory pools sharing
2015-10-20	BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
2015-10-20	BUG/MEDIUM: namespaces: don't fail if no namespace is used
2015-10-15	BUG/MINOR: dns: parsing error of some DNS response
2015-10-13	BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
2015-10-13	BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
2015-10-13	BUG/MEDIUM: lua: direction test failed
2015-10-12	BUG/MINOR: Handle interactive mode in cli handler
2015-10-10	BUG/MEDIUM: logs: fix time zone offset format in RFC5424
2015-10-09	BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
2015-10-09	BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
2015-10-07	BUG/MEDIUM: lua: force server-close mode on Lua services
2015-10-02	BUG: config: external-check command validation is checking for incorrect arguments.
2015-10-02	BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
2015-10-02	BUG/MEDIUM: logs: segfault writing to log from Lua
2015-09-29	BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
2015-09-29	BUG/MINOR: tcp: make silent-drop always force a TCP reset
2015-09-28	BUG/MEDIUM: tcp: fix inverted condition to call custom actions
2015-09-28	BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
2015-09-28	BUG/MEDIUM: proxy: ignore stopped peers
2015-09-28	BUG/MEDIUM: main: Freeing a bunch of static pointers
2015-09-28	BUG/MINOR: config: check that tune.bufsize is always positive
2015-09-28	BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
2015-09-27	BUG/MEDIUM: lua: socket destroy before reading pending data
2015-09-27	BUG/MEDIUM: lua: wakeup task on bad conditions
2015-09-27	BUG/MEDIUM: lua: forces a garbage collection
2015-09-26	BUG/MEDIUM: lua: properly set the target on the connection
2015-09-26	BUG/MEDIUM: lua: better fix for the protocol check
2015-09-26	BUG/MEDIUM: lua: longjmp function must be unregistered
2015-09-26	DEBUG: add p_malloc() to return a poisonned memory area
2015-09-26	BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
2015-09-25	BUG/MEDIUM: stream-int: avoid double-call to applet->release
2015-09-25	BUG/MEDIUM: cli: properly handle closed output
2015-09-25	BUG/MINOR: stats: do not call cli_release_handler 3 times
2015-09-25	BUG/MEDIUM: applet: fix reporting of broken write situation
2015-09-25	BUG/MAJOR: applet: use a separate run queue to maintain list integrity
2015-09-24	BUG/MEDIUM: acl: always accept match "found"
2015-09-24	BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
2015-09-23	BUG/MEDIUM: stream: do not dereference strm_li(stream)
2015-09-23	BUG/MEDIUM: proxy: do not dereference strm_li(stream)
2015-09-23	BUG/MEDIUM: http: do not dereference strm_li(stream)
2015-09-23	BUG/MAJOR: cli: do not dereference strm_li()->proto->name
2015-09-22	BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
2015-09-22	BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
2015-09-22	BUG/MEDIUM: peers: some table updates are randomly not pushed.
2015-09-22	BUG: dns: can't connect UDP socket on FreeBSD
2015-09-21	BUG/MINOR: args: add name for ARGT_VAR
2015-09-21	BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
2015-09-21	BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
2015-09-18	BUG/MAJOR: can't enable a server through the stat socket
2015-09-17	BUG/MINOR: lua: breaks the log message if his size exceed one buffer
2015-09-17	BUG/MAJOR: lua: potential unexpected aborts()
2015-09-10	BUG/MINOR: DNS request retry counter used for retry only
2015-09-09	BUG/MINOR: lua: last log character truncated.
2015-09-08	BUG/MEDIUM: dns: use the correct server hostname when resolving
2015-09-08	BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
2015-09-08	BUG/MAJOR: dns: dns client resolution infinite loop
2015-09-08	BUG/MEDIUM: dns: DNS resolution doesn't start
2015-09-07	BUG/MAJOR: http: don't call http_send_name_header() after an error
2015-09-06	BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
2015-09-03	BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
2015-09-02	BUG/MAJOR: http: don't manipulate the server connection if it's killed
2015-08-28	BUG/MEDIUM: dns: wrong first time DNS resolution
2015-08-28	BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
2015-08-28	BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
2015-08-28	BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
2015-08-27	BUG/MINOR: lua: in some case a sample may remain undefined
2015-08-25	BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
2015-08-25	BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
2015-08-21	BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
2015-08-21	BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
2015-08-20	BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
2015-08-19	BUG/MEDIUM: lua: bad error processing
2015-08-18	BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
2015-08-18	BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
2015-08-17	BUG/MEDIUM: vars: segfault during the configuration parsing
2015-08-16	BUG/MEDIUM: stream: The stream doen't inherit SC from the session
2015-08-11	BUG/MINOR: proto_tcp: custom action continue is ignored
2015-08-10	BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
2015-08-09	BUG/MEDIUM: lua: Lua tasks fail to start.
2015-08-08	BUG/MEDIUM: DNS resolution response parsing broken
2015-07-22	BUG/MEDIUM: mailer: DATA part must be terminated with .
2015-07-22	BUG/MAJOR: dns: fix the length of the string to be copied
2015-07-20	BUG/MINOR: http/sample: gmtime/localtime can fail
2015-07-20	BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
2015-07-18	BUG/MINOR: dns: wrong time unit for some DNS default parameters
2015-07-10	BUG/MINOR: lua: type error in the arguments wrapper
2015-07-09	BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
2015-07-07	BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
2015-07-04	BUG/MAJOR: tcp: tcp rulesets were still broken
2015-07-03	BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
2015-07-02	BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
2015-06-23	BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
2015-06-17	BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
2015-06-17	BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
2015-06-17	BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
2015-06-17	BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
2015-06-17	BUG/MINOR: vars/compil: fix some warnings
2015-06-16	BUG/MAJOR: sample: regression on sample cast to stick table types.
2015-06-13	BUG/MINOR: sample: wrong conversion of signed values
2015-06-13	BUG/MEDIUM: compat: fix segfault on FreeBSD
2015-06-11	BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
2015-06-09	BUG/MINOR: debug: display (null) in place of "meth"
2015-06-02	BUG/MINOR: da: fix log-level comparison to emove annoying warning
2015-05-29	BUG/MEDIUM: http: fix body processing for the stats applet
2015-05-28	BUG/MEDIUM: cfgparse: segfault when userlist is misused
2015-05-28	BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
2015-05-28	BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
2015-05-25	BUG/MEDIUM: http: fix the url_param fetch
2015-05-20	BUG/MEDIUM: peers: apply a random reconnection timeout
2015-05-13	BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
2015-05-13	BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
2015-05-13	BUG/MAJOR: checks: always check for end of list before proceeding
2015-05-13	BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
2015-05-12	BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
2015-05-12	BUG/MAJOR: check: fix breakage of inverted tcp-check rules
2015-05-12	BUG/MINOR: check: fix tcpcheck error message
2015-05-11	BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
2015-05-08	BUG/MEDIUM: http: fix the http-request capture parser
2015-05-04	BUG/MEDIUM: config: properly compute the default number of processes for a proxy
2015-05-04	BUG/MEDIUM: stats: properly initialize the scope before dumping stats
2015-05-02	BUG/MAJOR: http: prevent risk of reading past end with balance url_param
2015-05-01	BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
2015-05-01	BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
2015-05-01	BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
2015-05-01	BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
2015-05-01	BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
2015-05-01	BUG/MEDIUM: http: remove content-length from chunked messages
2015-04-29	BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
2015-04-27	BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
2015-04-27	BUG/MEDIUM: peers: fix applet scheduling
2015-04-27	BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
2015-04-24	BUG/MAJOR: tcp: only call registered actions when they're registered
2015-04-21	BUG/MEDIUM: http: properly retrieve the front connection
2015-04-21	BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
2015-04-20	BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
2015-04-20	BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
2015-04-14	BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
2015-04-11	BUG/MINOR: ssl: Display correct filename in error message
2015-04-06	BUG/MAJOR: lua: use correct object size when initializing a new converter
2015-04-03	BUG/MAJOR: http: null-terminate the http actions keywords list
2015-04-01	BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
2015-03-28	BUG/MINOR: compression: consider the expansion factor in init
2015-03-18	BUG/MINOR: lua: Fix SSL initialisation
2015-03-17	BUG/MEDIUM: http: the function "(req\|res)-replace-value" doesn't respect the HTTP syntax
2015-03-16	BUG/MAJOR: http: don't read past buffer's end in http_replace_value
2015-03-14	BUG/MEDIUM: lua: undetected infinite loop
2015-03-14	BUG/MEDIUM: http: the action set-{method\|path\|query\|uri} doesn't run.
2015-03-13	BUG/MEDIUM: peers: correctly configure the client timeout
2015-03-13	BUG/MINOR: lua: set current proxy as default value if it is possible
2015-03-13	BUG/MINOR: lua: error in detection of mandatory arguments
2015-03-13	BUG/MINOR: utf8: remove compilator warning
2015-03-13	BUG/MEDIUM: lua: bad argument number in analyser and in error message
2015-03-10	Revert "BUG/MEDIUM: lua: can't handle the response bytes"
2015-03-10	BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
2015-03-10	BUG/MINOR: lua: report the correct function name in an error message
2015-03-10	BUG/MEDIUM: buffer: one byte miss in buffer free space check
2015-03-10	BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
2015-03-09	BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
2015-03-09	BUG/MEDIUM: lua: cannot connect socket
2015-03-09	BUG/MEDIUM: lua: sockets don't have buffer to write data
2015-03-09	BUG/MINOR: log: segfault if there are no proxy reference
2015-03-09	BUG/MINOR: lua: check buffers before initializing socket
2015-03-09	BUG/MEDIUM: lua: segfault with buffer_replace2
2015-03-09	BUG/MEDIUM: lua: can't handle the response bytes
2015-03-09	BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
2015-03-09	BUG/MEDIUM: lua: many errors when we try to send data with the channel API
2015-03-09	BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
2015-03-09	BUG/MEDIUM: lua: fix infinite loop about channel
2015-03-09	BUG/MEDIUM: lua: reset flags before resuming execution
2015-03-09	BUG/MINOR: lua: set buffer if it is nnot avalaible.
2015-03-05	BUG/MEDIUM: lua: the execution timeout is ignored in yield case
2015-03-05	BUG/MEDIUM: task: fix recently introduced scheduler skew
2015-03-04	BUG/MAJOR: lua: send function fails and return bad bytes
2015-03-02	BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
2015-02-26	BUG/MEDIUM: Do not consider an agent check as failed on L7 error
2015-02-23	BUG/MINOR: don't start haproxy on reload
2015-02-20	BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
2015-02-14	BUG/MAJOR: peers: initialize s->buffer_wait when creating the session

Back to the list of branches and versions
Back to the HAProxy page