HAProxy known bugs for maintenance branch 1.7 :  0 

This is maintenance branch 1.7 whose latest version is 1.7.14. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 1.7 version other than 1.7.14, you're running with known bugs.

Quick links

Versions available in this branch

This branch contains the following releases :

DateVersionComment
2021-03-311.7.14 ⇐ last
2021-03-191.7.13 
2019-10-251.7.12 
2018-04-301.7.11 
2018-01-021.7.10 
2017-08-181.7.9 
2017-07-071.7.8 
2017-06-251.7.7 
2017-06-161.7.6 
2017-04-031.7.5 
2017-03-271.7.4 
2017-02-281.7.3 
2017-01-131.7.2 
2016-12-131.7.1 
2016-11-251.7.0 

Fixes for known bugs pending in this branch since the last release (1.7.14)

These fixes have already been queued for the next 1.7 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in the latest version of this branch by category :

TotalCRITICALMAJORMEDIUMMINOR
0 0 0 0 0

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

DateSubject
2021-08-05BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
2021-08-05BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
2021-08-04BUG/MINOR: server: update last_change on maint->ready transitions too
2021-08-04BUG/MINOR: server: remove srv from px list on CLI 'add server' error
2021-08-04BUG/MINOR: server: fix race on error path of 'add server' CLI if track
2021-08-01BUG/MINOR: freq_ctr: use stricter barriers between updates and readings
2021-07-30BUG/MINOR: fd: protect fd state harder against a concurrent takeover
2021-07-30BUG/MINOR: pollers: always program an update for migrated FDs
2021-07-30BUG/MINOR: poll: fix abnormally high skip_fd counter
2021-07-30BUG/MINOR: select: fix excess number of dead/skip reported
2021-07-30BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
2021-07-30BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
2021-07-29BUG/MINOR: connection: Add missing error labels to conn_err_code_str
2021-07-27BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
2021-07-26BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
2021-07-26BUG/MINOR: mux-h2: Obey dontlognull option during the preface
2021-07-26BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
2021-07-26BUG/MINOR: systemd: must check the configuration using -Ws
2021-07-22BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
2021-07-22BUG/MINOR: check: fix the condition to validate a port-less server
2021-07-22BUG/MINOR: stats: Add missing agent stats on servers
2021-07-21BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
2021-07-21BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
2021-07-21BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
2021-07-20BUG/MEDIUM: cfgcond: limit recursion level in the condition expression parser
2021-07-17BUG/MINOR: cfgcond: revisit the condition freeing mechanism to avoid a leak
2021-07-17BUG/MINOR: arg: free all args on make_arg_list()'s error path
2021-07-17BUG/MEDIUM: init: restore behavior of command-line "-m" for memory limitation
2021-07-13BUG/MINOR: ssl: Default-server configuration ignored by server
2021-07-08BUG/MEDIUM: http_ana: fix crash for http_proxy mode during uri rewrite
2021-07-06BUG/MINOR: cli: fix server name output in "show fd"
2021-07-06BUG/MEDIUM: sock: make sure to never miss early connection failures
2021-07-06BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
2021-07-06BUG/MINOR: stick-table: fix several printf sign errors dumping tables
2021-06-29BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
2021-06-28BUG/MINOR: mqtt: Support empty client ID in CONNECT message
2021-06-28BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
2021-06-25BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
2021-06-25BUG/MINOR: checks: return correct error code for srv_parse_agent_check
2021-06-24BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
2021-06-24BUG/MINOR: resolvers: Always attach server on matching record on resolution
2021-06-24BUG/MINOR: queue/debug: use the correct lock labels on the queue lock
2021-06-24BUG: backend: stop looking for queued connections once there's no more
2021-06-22BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
2021-06-18BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
2021-06-18BUG/MINOR: server/cli: Fix locking in function processing "set server" command
2021-06-18BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
2021-06-17BUG/MINOR: backend: do not set sni on connection reuse
2021-06-17BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
2021-06-17BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
2021-06-17BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
2021-06-17BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
2021-06-17BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
2021-06-17BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
2021-06-17BUG/MINOR: stats: make "show stat typed desc" work again
2021-06-16BUG/MINOR: mux-h1: do not skip the error response on bad requests
2021-06-16BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
2021-06-15BUG/MINOR: mworker: fix typo in chroot error message
2021-06-15BUG/MINOR: ssl: use atomic ops to update global shctx stats
2021-06-15BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
2021-06-15BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
2021-06-15BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
2021-06-15BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
2021-06-15BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
2021-06-15BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
2021-06-15BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
2021-06-14BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
2021-06-11BUG/MINOR: server-state: load SRV resolution only if params match the config
2021-06-11BUG/MINOR: resolvers: answser item list was randomly purged or errors
2021-06-11BUG/MINOR: h1-htx: Fix a signess bug with char data type when parsing chunk size
2021-06-11BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
2021-06-11BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
2021-06-11BUG/MEDIUM: errors: include missing obj_type file
2021-06-10BUG/MAJOR: pools: fix possible race with free() in the lockless variant
2021-06-10BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
2021-06-10BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
2021-06-10BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
2021-06-10BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
2021-06-10BUG/MEDIUM: compression: Properly get the next block to iterate on payload
2021-06-10BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
2021-06-10BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
2021-06-10Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
2021-06-09BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
2021-06-08BUG: errors: remove printf positional args for user messages context
2021-06-02BUG/MINOR: vars: Be sure to have a session to get checks variables
2021-06-01BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
2021-05-31BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
2021-05-31BUG/MINOR: http: Missing calloc return value check in make_arg_list
2021-05-31BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
2021-05-31BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
2021-05-31BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
2021-05-31BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
2021-05-31BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
2021-05-31BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
2021-05-31BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
2021-05-31BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
2021-05-31BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
2021-05-31BUG/MINOR: peers: Missing calloc return value check in peers_register_table
2021-05-31BUG/MINOR: server: Missing calloc return value check in srv_parse_source
2021-05-26BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
2021-05-26BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
2021-05-21BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
2021-05-21BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
2021-05-19BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
2021-05-18BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
2021-05-14BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
2021-05-13BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
2021-05-13DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
2021-05-12BUG/MINOR: stats: fix lastchk metric that got accidently lost
2021-05-12BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
2021-05-11BUG/MINOR: http_act: Fix normalizer names in error messages
2021-05-11BUG/MINOR: memprof: properly account for differences for realloc()
2021-05-10BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
2021-05-10BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
2021-05-07BUG/MINOR: server: do not report diag for peer servers with null weight
2021-05-07BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
2021-05-07BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
2021-05-07BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
2021-05-07BUG/MINOR: stream: properly clear the previous error mask on L7 retries
2021-05-07BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
2021-05-06BUG/MINOR: config: .if/.elif should also accept negative integers
2021-05-06BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
2021-05-06BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
2021-05-06BUG/MINOR: stream: Decrement server current session counter on L7 retry
2021-05-06BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
2021-05-06BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
2021-05-05MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
2021-05-04BUG/MINOR: ssl/cli: fix a lock leak when no memory available
2021-05-04BUG/MEDIUM: cli: prevent memory leak on write errors
2021-05-03BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
2021-04-28BUG/MEDIUM: time: fix updating of global_now upon clock drift
2021-04-28BUG/MEDIUM: peers: reset tables stage flags stages on new conns
2021-04-28BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
2021-04-28BUG/MEDIUM: peers: reset commitupdate value in new conns
2021-04-28BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
2021-04-28BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
2021-04-28BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
2021-04-28BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
2021-04-28BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
2021-04-28BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
2021-04-28BUG/MINOR: applet: Notify the other side if data were consumed by an applet
2021-04-28BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
2021-04-27BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
2021-04-27BUG/MEDIUM: cpuset: fix build on MacOS
2021-04-27BUG/MAJOR: fix build on musl with cpu_set_t support
2021-04-27BUG/MINOR: cpuset: move include guard at the very beginning
2021-04-26BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
2021-04-26BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
2021-04-23BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
2021-04-23BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
2021-04-23BUG/MEDIUM: peers: re-work connection to new process during reload.
2021-04-23BUG/MINOR: peers: remove useless table check if initial resync is finished
2021-04-23BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
2021-04-23BUG/MINOR: haproxy: fix compilation on macOS
2021-04-23BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
2021-04-21BUG/MINOR: mworker: don't use oldpids[] anymore for reload
2021-04-21BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
2021-04-21BUG/MEDIUM: config: fix cpu-map notation with both process and threads
2021-04-21BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
2021-04-21BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
2021-04-21BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
2021-04-21BUG/MINOR: server: fix potential null gcc error in delete server
2021-04-21BUG/MEDIUM: server: ensure thread-safety of server runtime creation
2021-04-21BUG/MINOR: logs: free logsrv.conf.file on exit
2021-04-21BUG/MINOR: server: free srv.lb_nodes in free_server
2021-04-20BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
2021-04-19BUILD: pools: fix build with DEBUG_FAIL_ALLOC
2021-04-19BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
2021-04-19BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
2021-04-19BUG/MINOR: logs: Report the true number of retries if there was no connection
2021-04-19BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
2021-04-19BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
2021-04-19BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
2021-04-19BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
2021-04-17BUG/MINOR: checks: Set missing id to the dummy checks frontend
2021-04-17BUG/MEDIUM: threads: Ignore current thread to end its harmless period
2021-04-13BUG/MEDIUM: sample: Fix adjusting size in field converter
2021-04-12BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
2021-04-12BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
2021-04-12BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
2021-04-12BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
2021-04-10BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
2021-04-07BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
2021-04-07BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
2021-04-06BUG/MINOR: tools: fix parsing "us" unit for timers
2021-04-06BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
2021-04-02BUG/MINOR: opentracing: initialization after establishing daemon mode
2021-04-01BUG/MINOR: http-fetch: Fix test on message state to capture the version
2021-04-01BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
2021-04-01BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
2021-04-01BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
2021-04-01BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
2021-03-31BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields

Back to the list of branches and versions
Back to the HAProxy page