HAProxy known bugs for version v1.8.23 (maintenance branch 1.8) :  122 

This version (1.8.23) is a release belonging to maintenance branch 1.8 whose latest version is 1.8.26. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

2020-08-031.8.26 ⇐ last
2019-11-251.8.23 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.8 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

122 1 4 38 79

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2020-09-11BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2020-09-11BUG/MINOR: threads: work around a libgcc_s issue with chrooting
2020-09-11BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
2020-09-07BUG/MINOR: startup: haproxy -s cause 100% cpu
2020-09-07BUG/MINOR: reload: do not fail when no socket is sent
2020-08-11BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
2020-08-11BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2020-08-11BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2020-08-11BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2020-08-05BUG/MEDIUM: mux-h2: Don't fail if nothing is parsed for a legacy chunk response
2020-08-03BUG/MINOR: dns: ignore trailing dot
2020-08-03BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
2020-08-03BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
2020-08-03BUG/MEDIUM: checks: Always initialize checks before starting them
2020-08-03BUG/MEDIUM: server/checks: Init server check during config validity check
2020-08-03BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
2020-08-03BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
2020-08-03BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
2020-08-03BUG/MINOR: checks: Remove a warning about http health checks
2020-08-03BUG/MINOR: checks: Compute the right HTTP request length for HTTP health checks
2020-08-03BUG/MINOR: http: make url_decode() optionally convert '+' to SP
2020-07-31BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2020-07-31BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
2020-07-31BUG/MEDIUM: mux-h2: Emit an error if the response chunk formatting is incomplete
2020-07-31BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
2020-07-31BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2020-07-31BUG/MINOR: sample: Free str.area in smp_check_const_meth
2020-07-31BUG/MINOR: sample: Free str.area in smp_check_const_bool
2020-07-31BUG/MINOR: http_act: don't check capture id in backend (2)
2020-07-31BUG/MINOR: proxy: always initialize the trash in show servers state
2020-07-31BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
2020-07-31BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2020-07-31BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
2020-07-31BUG/MINOR: spoe: correction of setting bits for analyzer
2020-07-31BUG/MINOR: systemd: Wait for network to be online
2020-07-31BUG/MINOR: spoe: add missing key length check before checking key names
2020-07-31BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
2020-07-31BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
2020-07-31BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
2020-07-31BUG/MEDIUM: pattern: fix thread safety of pattern matching
2020-07-31BUG/MINOR: mworker: fix a memleak when execvp() failed
2020-07-31BUG/MEDIUM: mworker: fix the reload with an -- option
2020-07-31BUG/MINOR: init: -x can have a parameter starting with a dash
2020-07-31BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
2020-07-31BUG/MINOR: proto-http: Fix detection of NTLM for the legacy HTTP version
2020-07-31BUG/MEDIUM: logs: fix trailing zeros on log message.
2020-07-31BUG/MINOR: logs: prevent double line returns in some events.
2020-07-31BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
2020-07-31BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
2020-07-31BUG/MINOR: peers: fix internal/network key type mapping.
2020-07-31BUG/MINOR: pollers: remove uneeded free in global init
2020-07-31BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
2020-07-31BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
2020-07-31BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
2020-07-31BUG/MINOR: sample: Set the correct type when a binary is converted to a string
2020-07-31BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
2020-07-31BUG/MEDIUM: shctx: really check the lock's value while waiting
2020-07-31BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
2020-07-31BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
2020-07-31BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
2020-07-31BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
2020-07-31BUG/MINOR: checks: chained expect will not properly wait for enough data
2020-07-31BUG/MINOR: checks/server: use_ssl member must be signed
2020-07-31BUG/MINOR: checks: Respect the no-check-ssl option
2020-07-31BUG/MINOR: check: Update server address and port to execute an external check
2020-07-31BUG/MINOR: tools: fix the i386 version of the div64_32 function
2020-07-31BUG/MINOR: ssl: default settings for ssl server options are not used
2020-04-02BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
2020-04-01BUG/MINOR: http-ana: Reset request analysers on error when waiting for response
2020-04-01BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
2020-04-01BUG/MEDIUM: http: unbreak redirects in legacy mode
2020-04-01BUG/MINOR: stats: Fix color of draining servers on stats page
2020-04-01BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
2020-04-01BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
2020-04-01BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
2020-04-01BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
2020-04-01BUG/MINOR: http-rules: Fix a typo in the reject action function
2020-04-01BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
2020-04-01BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
2020-04-01BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
2020-04-01BUG/MAJOR: list: fix invalid element address calculation
2020-04-01BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
2020-04-01BUG/MINOR: sample: fix the json converter's endian-sensitivity
2020-04-01BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
2020-04-01BUG/MEDIUM: shctx: make sure to keep all blocks aligned
2020-04-01BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
2020-02-12BUG/MINOR: tcp: don't try to set defaultmss when value is negative
2020-02-12BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
2020-02-12BUG/MEDIUM: listener: only consider running threads when resuming listeners
2020-02-11BUG/MINOR: dns: allow 63 char in hostname
2020-02-11BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
2020-02-04BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
2020-02-04BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error
2020-01-24BUG/MINOR: dns: allow srv record weight set to 0
2020-01-23BUG/MINOR: http_act: don't check capture id in backend
2020-01-23BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
2020-01-23BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
2020-01-23BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
2020-01-23BUG/MINOR: dns: Make dns_query_id_seed unsigned
2020-01-23BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
2020-01-23BUG/MINOR: stream: don't mistake match rules for store-request rules
2020-01-23BUG/MEDIUM: cli: _getsocks must send the peers sockets
2020-01-23BUG/MAJOR: hashes: fix the signedness of the hash inputs
2020-01-23BUG/MEDIUM: mworker: remain in mworker mode during reload
2020-01-23BUG/MEDIUM: session: do not report a failure when rejecting a session
2019-12-20BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
2019-12-20BUG/MINOR: sample: always check converters' arguments
2019-12-20BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
2019-12-11BUG/MINOR: listener: fix off-by-one in state name check
2019-12-11BUG/MINOR: server: make "agent-addr" work on default-server line
2019-12-11BUG/MINOR: listener: do not immediately resume on transient error
2019-12-11BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
2019-12-11BUG/MINOR: log: fix minor resource leaks on logformat error path
2019-12-11BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
2019-12-10BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
2019-12-10BUG/MAJOR: dns: add minimalist error processing on the Rx path
2019-12-10BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
2019-12-10BUG/MINOR: listener: also clear the error flag on a paused listener
2019-12-10BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
2019-12-10BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
2019-12-05BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
2019-12-05BUG/MEDIUM: listener/thread: fix a race when pausing a listener

Back to the list of branches and versions
Back to the HAProxy page