HAProxy known bugs for version v1.8.3 (maintenance branch 1.8) :  509 

This version (1.8.3) is a release belonging to maintenance branch 1.8 whose latest version is 1.8.26. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2020-08-031.8.26 ⇐ last
2020-04-021.8.25 
2020-02-151.8.24 
2019-11-251.8.23 
2019-10-251.8.22 
2019-08-161.8.21 
2019-04-251.8.20 
2019-02-111.8.19 
2019-02-061.8.18 
2019-01-081.8.17 
2018-12-211.8.16 
2018-12-131.8.15 
2018-09-201.8.14 
2018-07-301.8.13 
2018-06-271.8.12 
2018-06-261.8.11 
2018-06-221.8.10 
2018-05-181.8.9 
2018-04-191.8.8 
2018-04-071.8.7 
2018-04-051.8.6 
2018-03-231.8.5 
2018-02-081.8.4 
2017-12-301.8.3 ⇐ yours
2017-12-231.8.2 
2017-12-031.8.1 
2017-11-261.8.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.8 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
509 4 36 221 248

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2020-09-11BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2020-09-11BUG/MINOR: threads: work around a libgcc_s issue with chrooting
2020-09-11BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
2020-09-07BUG/MINOR: startup: haproxy -s cause 100% cpu
2020-09-07BUG/MINOR: reload: do not fail when no socket is sent
2020-08-11BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
2020-08-11BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2020-08-11BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2020-08-11BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2020-08-05BUG/MEDIUM: mux-h2: Don't fail if nothing is parsed for a legacy chunk response
2020-08-03BUG/MINOR: dns: ignore trailing dot
2020-08-03BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
2020-08-03BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
2020-08-03BUG/MEDIUM: checks: Always initialize checks before starting them
2020-08-03BUG/MEDIUM: server/checks: Init server check during config validity check
2020-08-03BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
2020-08-03BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
2020-08-03BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
2020-08-03BUG/MINOR: checks: Remove a warning about http health checks
2020-08-03BUG/MINOR: checks: Compute the right HTTP request length for HTTP health checks
2020-08-03BUG/MINOR: http: make url_decode() optionally convert '+' to SP
2020-07-31BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2020-07-31BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
2020-07-31BUG/MEDIUM: mux-h2: Emit an error if the response chunk formatting is incomplete
2020-07-31BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
2020-07-31BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2020-07-31BUG/MINOR: sample: Free str.area in smp_check_const_meth
2020-07-31BUG/MINOR: sample: Free str.area in smp_check_const_bool
2020-07-31BUG/MINOR: http_act: don't check capture id in backend (2)
2020-07-31BUG/MINOR: proxy: always initialize the trash in show servers state
2020-07-31BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
2020-07-31BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2020-07-31BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
2020-07-31BUG/MINOR: spoe: correction of setting bits for analyzer
2020-07-31BUG/MINOR: systemd: Wait for network to be online
2020-07-31BUG/MINOR: spoe: add missing key length check before checking key names
2020-07-31BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
2020-07-31BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
2020-07-31BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
2020-07-31BUG/MEDIUM: pattern: fix thread safety of pattern matching
2020-07-31BUG/MINOR: mworker: fix a memleak when execvp() failed
2020-07-31BUG/MEDIUM: mworker: fix the reload with an -- option
2020-07-31BUG/MINOR: init: -x can have a parameter starting with a dash
2020-07-31BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
2020-07-31BUG/MINOR: proto-http: Fix detection of NTLM for the legacy HTTP version
2020-07-31BUG/MEDIUM: logs: fix trailing zeros on log message.
2020-07-31BUG/MINOR: logs: prevent double line returns in some events.
2020-07-31BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
2020-07-31BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
2020-07-31BUG/MINOR: peers: fix internal/network key type mapping.
2020-07-31BUG/MINOR: pollers: remove uneeded free in global init
2020-07-31BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
2020-07-31BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
2020-07-31BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
2020-07-31BUG/MINOR: sample: Set the correct type when a binary is converted to a string
2020-07-31BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
2020-07-31BUG/MEDIUM: shctx: really check the lock's value while waiting
2020-07-31BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
2020-07-31BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
2020-07-31BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
2020-07-31BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
2020-07-31BUG/MINOR: checks: chained expect will not properly wait for enough data
2020-07-31BUG/MINOR: checks/server: use_ssl member must be signed
2020-07-31BUG/MINOR: checks: Respect the no-check-ssl option
2020-07-31BUG/MINOR: check: Update server address and port to execute an external check
2020-07-31BUG/MINOR: tools: fix the i386 version of the div64_32 function
2020-07-31BUG/MINOR: ssl: default settings for ssl server options are not used
2020-04-02BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
2020-04-01BUG/MINOR: http-ana: Reset request analysers on error when waiting for response
2020-04-01BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
2020-04-01BUG/MEDIUM: http: unbreak redirects in legacy mode
2020-04-01BUG/MINOR: stats: Fix color of draining servers on stats page
2020-04-01BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
2020-04-01BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
2020-04-01BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
2020-04-01BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
2020-04-01BUG/MINOR: http-rules: Fix a typo in the reject action function
2020-04-01BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
2020-04-01BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
2020-04-01BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
2020-04-01BUG/MAJOR: list: fix invalid element address calculation
2020-04-01BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
2020-04-01BUG/MINOR: sample: fix the json converter's endian-sensitivity
2020-04-01BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
2020-04-01BUG/MEDIUM: shctx: make sure to keep all blocks aligned
2020-04-01BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
2020-02-12BUG/MINOR: tcp: don't try to set defaultmss when value is negative
2020-02-12BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
2020-02-12BUG/MEDIUM: listener: only consider running threads when resuming listeners
2020-02-11BUG/MINOR: dns: allow 63 char in hostname
2020-02-11BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
2020-02-04BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
2020-02-04BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error
2020-01-24BUG/MINOR: dns: allow srv record weight set to 0
2020-01-23BUG/MINOR: http_act: don't check capture id in backend
2020-01-23BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
2020-01-23BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
2020-01-23BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
2020-01-23BUG/MINOR: dns: Make dns_query_id_seed unsigned
2020-01-23BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
2020-01-23BUG/MINOR: stream: don't mistake match rules for store-request rules
2020-01-23BUG/MEDIUM: cli: _getsocks must send the peers sockets
2020-01-23BUG/MAJOR: hashes: fix the signedness of the hash inputs
2020-01-23BUG/MEDIUM: mworker: remain in mworker mode during reload
2020-01-23BUG/MEDIUM: session: do not report a failure when rejecting a session
2019-12-20BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
2019-12-20BUG/MINOR: sample: always check converters' arguments
2019-12-20BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
2019-12-11BUG/MINOR: listener: fix off-by-one in state name check
2019-12-11BUG/MINOR: server: make "agent-addr" work on default-server line
2019-12-11BUG/MINOR: listener: do not immediately resume on transient error
2019-12-11BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
2019-12-11BUG/MINOR: log: fix minor resource leaks on logformat error path
2019-12-11BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
2019-12-10BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
2019-12-10BUG/MAJOR: dns: add minimalist error processing on the Rx path
2019-12-10BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
2019-12-10BUG/MINOR: listener: also clear the error flag on a paused listener
2019-12-10BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
2019-12-10BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
2019-12-05BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
2019-12-05BUG/MEDIUM: listener/thread: fix a race when pausing a listener
2019-11-25BUG/MAJOR: h2: make header field name filtering stronger
2019-11-25BUG/MAJOR: h2: reject header values containing invalid chars
2019-11-25BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
2019-11-15BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
2019-11-07BUG: dns: timeout resolve not applied for valid resolutions
2019-11-07BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
2019-11-06BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
2019-11-06BUG/MINOR: config: Update cookie domain warn to RFC6265
2019-10-28BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
2019-10-23BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
2019-10-23BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
2019-10-22BUG/MINOR: ssl: fix memcpy overlap without consequences.
2019-10-22BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
2019-10-22BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
2019-10-22BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
2019-10-22BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
2019-10-22BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
2019-10-22BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
2019-10-22BUG/MINOR: ssl: abort on sni_keytypes allocation failure
2019-10-22BUG/MINOR: ssl: abort on sni allocation failure
2019-10-22BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
2019-10-22BUG/MINOR: WURFL: fix send_log() function arguments
2019-10-22BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
2019-10-22BUG/MINOR: ssl: free the sni_keytype nodes
2019-10-22BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
2019-10-22BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
2019-10-22BUG/MEDIUM: namespace: fix fd leak in master-worker mode
2019-10-22BUG/MEDIUM: spoe: Use a different engine-id per process
2019-10-22BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
2019-10-22BUG/MEDIUM: namespace: close open namespaces during soft shutdown
2019-10-22BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
2019-10-22BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
2019-10-22BUG/MINOR: filters: Properly set the HTTP status code on analysis error
2019-10-22BUG/MEDIUM: http: also reject messages where "chunked" is missing from transfer-enoding
2019-09-04BUG/MEDIUM: proto-http: Always start the parsing if there is no outgoing data
2019-08-26BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
2019-08-26BUG/MINOR: mworker: disable SIGPROF on re-exec
2019-08-23BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
2019-08-23BUG/MINOR: logs/threads: properly split the log area upon startup
2019-08-23BUG/MEDIUM: checks: make sure the warmup task takes the server lock
2019-08-23BUG/MEDIUM: ssl: Use the early_data API the right way.
2019-08-23BUG/MINOR: haproxy: fix rule->file memory leak
2019-08-16BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
2019-08-08BUG/MINOR: ssl: fix 0-RTT for BoringSSL
2019-08-06BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
2019-08-06BUG/MINOR: mux-h2: always send stream window update before connection's
2019-08-06BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
2019-08-06BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
2019-08-06BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
2019-08-06BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
2019-08-02BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
2019-08-01BUG/MINOR: stream-int: also update analysers timeouts on activity
2019-08-01BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
2019-07-30BUG/MEDIUM: protocols: properly initialize the proto_lock in 1.8
2019-07-30BUG/MINOR: lua: Set right direction and flags on new HTTP objects
2019-07-30BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
2019-07-29BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
2019-07-29BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
2019-07-26BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
2019-07-26BUG/MINOR: proxy: always lock stop_proxy()
2019-07-26BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
2019-07-26BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
2019-07-19BUG/MEDIUM: http/htx: unbreak option http_proxy
2019-07-19BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
2019-07-12BUG/MAJOR: listener: fix thread safety in resume_listener()
2019-07-12BUG/MEDIUM: da: cast the chunk to string.
2019-07-05BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
2019-06-19BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
2019-06-18BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
2019-06-18BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
2019-06-18BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
2019-06-18BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
2019-06-18BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
2019-06-18BUG/MEDIUM: connection: fix multiple handshake polling issues
2019-06-18BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
2019-06-18BUG/MEDIUM: http: fix "http-request reject" when not final
2019-05-27BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
2019-05-27BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
2019-05-24BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
2019-05-24BUG/MEDIUM: dns: make the port numbers unsigned
2019-05-16BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
2019-04-30BUG/MEDIUM: port_range: Make the ring buffer lock-free.
2019-04-30BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
2019-04-30BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
2019-04-29BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
2019-04-29BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
2019-04-29BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
2019-04-24BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
2019-04-24BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
2019-04-24BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
2019-04-24BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
2019-04-24BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
2019-04-24BUG/MEDIUM: maps: only try to parse the default value when it's present
2019-04-24BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
2019-04-24BUG/MEDIUM: listener: make sure the listener never accepts too many conns
2019-04-24BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
2019-04-24BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
2019-04-24BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
2019-04-24BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
2019-04-24BUG/MEDIUM: list: add missing store barriers when updating elements and head
2019-04-24BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
2019-04-24BUG/MEDIUM: list: fix the rollback on addq in the locked liss
2019-04-24BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
2019-04-24BUG/MINOR: threads: fix the process range of thread masks
2019-04-24BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
2019-04-24BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
2019-04-24BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
2019-04-24BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
2019-04-24BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
2019-04-24BUG/MAJOR: checks: segfault during tcpcheck_main
2019-04-24BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
2019-04-24BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
2019-04-24BUG/MAJOR: stats: Fix how huge POST data are read from the channel
2019-03-18BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
2019-03-18BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
2019-03-11BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
2019-03-11BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
2019-03-11BUG/MEDIUM: logs: Only attempt to free startup_logs once.
2019-03-11BUG/MINOR: listener: keep accept rate counters accurate under saturation
2019-03-11BUG/MAJOR: listener: Make sure the listener exist before using it.
2019-02-11BUG/MINOR: config: Reinforce validity check when a process number is parsed
2019-02-10BUG/MAJOR: stream: avoid double free on unique_id
2019-02-10BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
2019-02-10BUG/MEDIUM: server: initialize the idle conns list after parsing the config
2019-02-10BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
2019-02-10BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
2019-02-10BUG/MINOR: spoe: do not assume agent->rt is valid on exit
2019-02-06BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
2019-02-05BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
2019-02-05BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
2019-02-04BUG/MINOR: config: fix bind line thread mask validation
2019-02-04BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
2019-02-04BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
2019-02-04BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
2019-02-04BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
2019-02-04BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
2019-02-04BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
2019-02-04BUG/MINOR: stream: don't close the front connection when facing a backend error
2019-02-04BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
2019-02-04BUG/MINOR: spoe: corrected fragmentation string size
2019-02-04BUG/MINOR: hpack: return a compression error on invalid table size updates
2019-02-04BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
2019-02-04BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
2019-02-04BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
2019-01-28BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
2019-01-28BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
2019-01-28BUG/MINOR: server: don't always trust srv_check_health when loading a server state
2019-01-28BUG/MINOR: stick_table: Prevent conn_cur from underflowing
2019-01-28BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
2019-01-28BUG/MINOR: backend: balance uri specific options were lost across defaults
2019-01-28BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
2019-01-28BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
2019-01-28BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
2019-01-28BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
2019-01-08BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
2019-01-07BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
2019-01-07BUG/MINOR: lua: bad args are returned for Lua actions
2019-01-07BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
2019-01-07BUG/MEDIUM: cli: make "show sess" really thread-safe
2019-01-07BUG/MEDIUM: server: Also copy "check-sni" for server templates.
2019-01-07BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
2019-01-07BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
2018-12-21BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
2018-12-21BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
2018-12-21BUG/MINOR: logs: leave startup-logs global and not per-thread
2018-12-12BUG: dns: Fix off-by-one write in dns_validate_dns_response()
2018-12-12BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
2018-12-12BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
2018-12-12BUG: dns: Prevent out-of-bounds read in dns_read_name()
2018-12-12BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
2018-12-12BUG/MINOR: mux-h2: advertise a larger connection window size
2018-12-12BUG/MINOR: mux-h2: refrain from muxing during the preface
2018-12-12BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
2018-12-12BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
2018-12-12BUG/MINOR: lb-map: fix unprotected update to server's score
2018-12-12BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
2018-12-12BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
2018-12-12BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
2018-11-29BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
2018-11-29BUG/MINOR: config: Copy default error messages when parsing of a backend starts
2018-11-29BUG/MEDIUM: Make sure stksess is properly aligned.
2018-11-29BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
2018-10-29BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
2018-10-29BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
2018-10-29BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
2018-10-29BUG/MINOR: only mark connections private if NTLM is detected
2018-10-29BUG/MINOR: ssl: Wrong usage of shctx_init().
2018-10-29BUG/MINOR: cache: Wrong usage of shctx_init().
2018-10-29BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
2018-10-29BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
2018-10-29BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
2018-10-16BUG/MEDIUM: threads: make sure threads_want_sync is marked volatile
2018-10-16BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
2018-10-16BUG/MEDIUM: stream: don't crash on out-of-memory
2018-10-16BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
2018-10-16BUG/MINOR: checks: queues null-deref
2018-10-16BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
2018-10-08BUG/MEDIUM: buffers: Make sure we don't wrap in buffer_insert_line2/replace2.
2018-10-08BUG/MINOR: backend: check that the mux installed properly
2018-10-08BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
2018-09-20BUG/CRITICAL: hpack: fix improper sign check on the header index value
2018-09-20BUG/MINOR: cli: make sure the "getsock" command is only called on connections
2018-09-20BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
2018-09-19BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
2018-09-19BUG/MINOR: server: Crash when setting FQDN via CLI.
2018-09-19BUG/MAJOR: kqueue: Don't reset the changes number by accident.
2018-09-19BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
2018-09-19BUG/MINOR: http/threads: atomically increment the error snapshot ID
2018-09-19BUG/MINOR: dns: check and link servers' resolvers right after config parsing
2018-09-19BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
2018-09-19BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
2018-09-19BUG/MINOR: stream: use atomic increments for the request counter
2018-09-19BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
2018-09-19BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
2018-09-19BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
2018-09-19BUG/MAJOR: thread: lua: Wrong SSL context initialization.
2018-09-19BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
2018-09-19BUG/MEDIUM: lua: reset lua transaction between http requests
2018-08-24BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
2018-08-24BUG/MINOR: lua: Bad HTTP client request duration.
2018-08-24BUG/MEDIUM: unix: provide a ->drain() function
2018-08-24BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
2018-08-24BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
2018-08-24BUG/MEDIUM: lua: socket timeouts are not applied
2018-08-24BUG/MINOR: map: fix map_regm with backref
2018-08-24BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
2018-08-24BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
2018-08-24BUG/MINOR: ssl: empty connections reported as errors.
2018-08-24BUG/MEDIUM: cli: make "show fd" thread-safe
2018-08-24BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
2018-08-24BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
2018-08-22BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
2018-08-07BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
2018-08-07BUG/MEDIUM: servers: check the queues once enabling a server
2018-07-30BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
2018-07-30BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
2018-07-27BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
2018-07-27BUG/MINOR: config: stick-table is not supported in defaults section
2018-07-27BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
2018-07-27BUG/MEDIUM: threads/sync: use sched_yield when available
2018-07-24BUG/MINOR: servers: Don't make "server" in a frontend fatal.
2018-07-24BUG/MEDIUM: stats: don't ask for more data as long as we're responding
2018-07-24BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
2018-07-20BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
2018-07-20BUG/MINOR: http: Set brackets for the unlikely macro at the right place
2018-07-19BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
2018-07-19BUG/MEDIUM: h2: never leave pending data in the output buffer on close
2018-07-19BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
2018-07-19BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
2018-07-19BUG/MINOR: ssl: properly ref-count the tls_keys entries
2018-06-27BUG/MAJOR: stick_table: Complete incomplete SEGV fix
2018-06-26BUG/BUILD: threads: unbreak build without threads
2018-06-26BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
2018-06-22BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
2018-06-20BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
2018-06-20BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
2018-06-20BUG/MAJOR: ssl: Random crash with cipherlist capture
2018-06-20BUG/MINOR: lua: Segfaults with wrong usage of types.
2018-06-11BUG/MAJOR: map: fix a segfault when using http-request set-map
2018-06-08BUG/MINOR: signals: ha_sigmask macro for multithreading
2018-06-08BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
2018-06-08BUG/MEDIUM: threads: handle signal queue only in thread 0
2018-06-08BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
2018-06-06BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
2018-06-06BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
2018-06-06BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
2018-06-06BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
2018-06-06BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
2018-06-06BUG/MEDIUM: lua/socket: Buffer error, may segfault
2018-06-06BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
2018-06-06BUG/MEDIUM: lua/socket: Notification error
2018-06-06BUG/MAJOR: lua: Dead lock with sockets
2018-06-06BUG/MEDIUM: lua/socket: wrong scheduling for sockets
2018-06-06BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
2018-06-06BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
2018-06-06BUG/MEDIUM: lua/socket: Length required read doesn't work
2018-06-06BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
2018-05-29BUG/MEDIUM: fd: Only check update_mask against all_threads_mask.
2018-05-23BUG/BUILD: fd: fix typo causing a warning when threads are disabled
2018-05-23BUG/BUILD: threads: unbreak build without threads
2018-05-23BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
2018-05-23BUG/MEDIUM: cache: don't cache when an Authorization header is present
2018-05-23BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
2018-05-23BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
2018-05-23BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
2018-05-23BUG/MEDIUM: spoe: Flags are not encoded in network order
2018-05-23BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
2018-05-18BUG/MINOR: spoe: Mistake in error message about SPOE configuration
2018-05-18BUG/MEDIUM: ssl: properly protect SSL cert generation
2018-05-18BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
2018-05-16BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
2018-05-16BUG/MINOR: lua: ensure large proxy IDs can be represented
2018-05-06BUG/MINOR: lua: schedule socket task upon lua connect()
2018-05-06BUG/MEDIUM: task: Don't free a task that is about to be run.
2018-05-06BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
2018-05-06BUG/MINOR: lua: Put tasks to sleep when waiting for data
2018-05-06BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
2018-05-06BUG/MINOR: checks: Fix check->health computation for flapping servers
2018-04-30BUG/MINOR: config: disable http-reuse on TCP proxies
2018-04-27BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
2018-04-26BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
2018-04-26BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
2018-04-26BUG/MINOR: log: t_idle (%Ti) is not set for some requests
2018-04-26BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
2018-04-26BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
2018-04-19BUG/CRITICAL: h2: fix incorrect frame length check
2018-04-19BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
2018-04-19BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
2018-04-19BUG/MINOR: http: Return an error in proxy mode when url2sa fails
2018-04-19BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
2018-04-10BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
2018-04-06BUG/MAJOR: cache: always initialize newly created objects
2018-04-05BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
2018-04-05BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
2018-04-04BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
2018-04-04BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
2018-04-04BUG/MINOR: cache: fix "show cache" output
2018-04-04BUG/MINOR: email-alert: Set the mailer port during alert initialization
2018-04-04BUG/MINOR: checks: check the conn_stream's readiness and not the connection
2018-03-30BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
2018-03-29BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
2018-03-29BUG/MEDIUM: h2/threads: never release the task outside of the task handler
2018-03-29BUG/MAJOR: h2: remove orphaned streams from the send list before closing
2018-03-29BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
2018-03-29BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
2018-03-29BUG/MINOR: lua: the function returns anything
2018-03-23BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
2018-03-22BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
2018-03-22BUG/MEDIUM: h2: properly account for DATA padding in flow control
2018-03-20BUILD/BUG: enable -fno-strict-overflow by default
2018-03-19BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
2018-03-19BUG/MINOR: tcp-check: use the server's service port as a fallback
2018-03-19BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
2018-03-19BUG/MINOR: lua: return bad error messages
2018-03-19BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
2018-03-19BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
2018-03-19BUG/MINOR: seemless reload: Fix crash when an interface is specified.
2018-03-19BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
2018-03-19BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
2018-03-19BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
2018-03-13BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
2018-03-12BUG/MINOR: force-persist and ignore-persist only apply to backends
2018-03-12BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
2018-03-12BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
2018-03-12BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
2018-03-12BUG/MEDIUM: h2: also arm the h2 timeout when sending
2018-03-12BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
2018-03-12BUG/MINOR: session: Fix tcp-request session failure if handshake.
2018-03-12Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
2018-03-12BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
2018-03-12BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
2018-03-12BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
2018-02-26BUG/MINOR: h2: Set the target of dbuf_wait to h2c
2018-02-22MINOR: debug/pools: make DEBUG_UAF also detect underflows
2018-02-22BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
2018-02-20BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
2018-02-20BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
2018-02-20BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
2018-02-20BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
2018-02-20BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
2018-02-20BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
2018-02-19BUG/MINOR: threads: fix missing thread lock labels for 1.8
2018-02-08BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
2018-02-08BUG/MEDIUM: standard: Fix memory leak in str2ip2()
2018-02-08BUG/MINOR: time/threads: ensure the adjusted time is always correct
2018-02-08BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
2018-02-08BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
2018-02-08BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
2018-02-08BUG/MINOR: threads: Update labels array because of changes in lock_label enum
2018-02-08BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
2018-02-08BUG/MINOR: sample: Fix output type of c_ipv62ip
2018-01-25BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
2018-01-25BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
2018-01-25BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
2018-01-25BUG/MINOR: threads: always set an owner to the thread_sync pipe
2018-01-23BUG/MINOR: mworker: only write to pidfile if it exists
2018-01-23BUG/MEDIUM: threads/mworker: fix a race on startup
2018-01-23BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
2018-01-23BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
2018-01-23BUG/MEDIUM: fd: maintain a per-thread update mask
2018-01-23BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
2018-01-23BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
2018-01-21BUG/MINOR: poll: too large size allocation for FD events
2018-01-12BUG/MEDIUM: stream: properly handle client aborts during redispatch
2018-01-09BUG/MEDIUM: mworker: execvp failure depending on argv[0]
2018-01-09BUG/MINOR: lua: Fix return value of Socket.settimeout
2018-01-09BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
2018-01-09BUG/MINOR: lua: Fix default value for pattern in Socket.receive
2018-01-09BUG/MEDIUM: ssl: cache doesn't release shctx blocks
2018-01-04BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames

Back to the list of branches and versions
Back to the HAProxy page