HAProxy known bugs for version v2.0.25 (maintenance branch 2.0) :  209 

This version (2.0.25) is a release belonging to maintenance branch 2.0 whose latest version is 2.0.34. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2023-12-192.0.34 ⇐ last
2023-08-192.0.33 
2023-06-122.0.32 
2023-02-142.0.31 
2022-12-092.0.30 
2022-05-132.0.29 
2022-03-142.0.28 
2022-01-262.0.27 
2021-12-032.0.26 
2021-09-072.0.25 ⇐ yours
2021-08-172.0.24 
2021-07-162.0.23 
2021-04-122.0.22 
2021-03-182.0.21 
2021-01-082.0.20 
2020-11-062.0.19 
2020-09-302.0.18 
2020-07-312.0.17 
2020-07-172.0.16 
2020-06-122.0.15 
2020-04-022.0.14 
2020-02-132.0.13 
2019-12-212.0.12 
2019-12-112.0.11 
2019-11-252.0.10 
2019-11-152.0.9 
2019-10-232.0.8 
2019-09-272.0.7 
2019-09-132.0.6 
2019-08-162.0.5 
2019-08-062.0.4 
2019-07-232.0.3 
2019-07-162.0.2 
2019-06-262.0.1 
2019-06-162.0.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.0 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
209 1 13 87 108

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2023-12-15BUG/MINOR: startup: set GTUNE_SOCKET_TRANSFER correctly
2023-12-15BUG/MINOR: sample: Make the `word` converter compatible with `-m found`
2023-12-15BUG/MINOR: stick-table/cli: Check for invalid ipv4 key
2023-12-15BUG/MINOR: cfgparse/stktable: fix error message on stktable_init() failure
2023-12-15BUG/MINOR: stktable: missing free in parse_stick_table()
2023-12-15BUG/MEDIUM: ssl: segfault when cipher is NULL
2023-12-15BUG/MINOR: ssl: suboptimal certificate selection with TLSv1.3 and dual ECDSA/RSA
2023-12-15BUG/MINOR: mux-h2: commit the current stream ID even on reject
2023-12-15BUG/MEDIUM: peers: Be sure to always refresh recconnect timer in sync task
2023-12-15BUG/MEDIUM: mux-h2: Don't report an error on shutr if a shutw is pending
2023-12-15BUG/MEDIUM: actions: always apply a longest match on prefix lookup
2023-12-15BUG/MINOR: hlua_fcn: potentially unsafe stktable_data_ptr usage
2023-12-15BUG/MINOR: hlua: fix invalid use of lua_pop on error paths
2023-12-15BUG/MINOR: freq_ctr: fix possible negative rate with the scaled API
2023-12-15BUG/MEDIUM: hlua: don't pass stale nargs argument to lua_resume()
2023-08-16BUG/MINOR: http: skip leading zeroes in content-length values
2023-08-16BUG/MINOR: h2: reject more chars from the :path pseudo header
2023-08-16BUG/MINOR: h1: do not accept '#' as part of the URI component
2023-08-16BUG/MAJOR: http: reject any empty content-length header value
2023-08-16BUG/MAJOR: http-ana: Get a fresh trash buffer for each header value replacement
2023-08-16BUG/MINOR: chunk: fix chunk_appendf() to not write a zero if buffer is full
2023-08-16BUG/MINOR: http: Return the right reason for 302
2023-08-16BUG/MINOR: sample: Fix wrong overflow detection in add/sub conveters
2023-08-16BUG/MEDIUM: mworker: increase maxsock with each new worker
2023-08-16BUG/MINOR: namespace: missing free in netns_sig_stop()
2023-08-16BUG/MINOR: server: inherit from netns in srv_settings_cpy()
2023-08-16BUG/MINOR: proxy: add missing interface bind free in free_proxy
2023-08-16BUG/MINOR: cfgparse-tcp: leak when re-declaring interface from bind line
2023-06-06BUG/MINOR: spoe: Only skip sending new frame after a receive attempt
2023-05-26BUG/MINOR: server: don't use date when restoring last_change from state file
2023-05-26BUG/MINOR: server: don't miss server stats update on server state transitions
2023-05-26BUG/MINOR: server: don't miss proxy stats update on server state transitions
2023-05-26BUG/MINOR: server: incorrect report for tracking servers leaving drain
2023-05-26BUG/MEDIUM: spoe: Don't start new applet if there are enough idle ones
2023-05-26BUG/MINOR: debug: do not emit empty lines in thread dumps
2023-05-26BUG/MEDIUM: filters: Don't deinit filters for disabled proxies during startup
2023-05-26BUG/MINOR: proxy: missing free in free_proxy for redirect rules
2023-05-26BUG/MINOR: log: fix memory error handling in parse_logsrv()
2023-05-26BUG/MINOR: hlua: unsafe hlua_lua2smp() usage
2023-05-26BUG/MINOR: tcp-rules: Don't shortened the inspect-delay when EOI is set
2023-05-26BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
2023-05-22BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error
2023-05-22BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send
2023-05-17BUG/MINOR: checks: postpone the startup of health checks by the boot time
2023-04-24BUG/MINOR: mux-h2: make sure to produce a log on invalid requests
2023-04-24BUG/MEDIUM: Update read expiration date on synchronous send
2023-04-24BUG/MEDIUM: mux-h1: Wakeup H1C on shutw if there is no I/O subscription
2023-04-24BUG/MEDIUM: mux-h2: erase h2c->wait_event.tasklet on error path
2023-04-24BUG/MEDIUM: spoe: Don't set the default traget for the SPOE agent frontend
2023-04-24BUG/MINOR: mux-h2: make sure the h2c task exists before refreshing it
2023-04-24BUG/MINOR: ssl: Use 'date' instead of 'now' in ocsp stapling callback
2023-04-24BUG/MINOR: mworker: prevent incorrect values in uptime
2023-04-24BUG/MEDIUM: mworker: don't register mworker_accept_wrapper() when master FD is wrong
2023-02-14BUG/CRITICAL: http: properly reject empty http header field names
2023-02-13BUG/MEDIUM: cache: use the correct time reference when comparing dates
2023-02-13BUG/MEDIUM: stick-table: do not leave entries in end of window during purge
2023-02-13BUG/MEDIUM: ssl: wrong eviction from the session cache tree
2023-02-13BUG/MINOR: http-ana: make set-status also update txn->status
2023-02-13BUG/MINOR: http-fetch: Don't block HTTP sample fetch eval in HTTP_MSG_ERROR state
2023-02-13BUG/MINOR: promex: Don't forget to consume the request on error
2023-02-13BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action
2023-01-20BUG/MAJOR: buf: Fix copy of wrapping output data when a buffer is realigned
2023-01-20BUG/MINOR: pool/stats: Use ullong to report total pool usage in bytes in stats
2023-01-20BUG/MEDIUM: mux-h2: Refuse interim responses with end-stream flag set
2023-01-20BUG/MEDIUM: resolvers: Use tick_first() to update the resolvers task timeout
2023-01-20BUG/MEDIUM: mworker: fix segv in early failure of mworker mode with peers
2023-01-20BUG/MINOR: ssl: Fix potential overflow
2023-01-20BUG/MEDIUM: ssl: Verify error codes can exceed 63
2022-11-28BUG/MEDIUM: peers: messages about unkown tables not correctly ignored
2022-11-28BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists
2022-11-28BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task
2022-11-25BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task
2022-10-25BUG/MAJOR: stick-table: don't process store-response rules for applets
2022-10-25BUG/MAJOR: stick-tables: do not try to index a server name for applets
2022-10-25BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()
2022-10-25BUG/MEDIUM: lua: handle stick table implicit arguments right.
2022-09-20BUG/MINOR: log: improper behavior when escaping log data
2022-09-20BUG/MEDIUM: captures: free() an error capture out of the proxy lock
2022-09-20BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
2022-09-20BUG/MINOR: signals/poller: ensure wakeup from signals
2022-09-20BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
2022-09-20BUG/MINOR: h1: Support headers case adjustment for TCP proxies
2022-08-30BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
2022-08-30BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
2022-08-30BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
2022-08-30BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
2022-08-30BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
2022-08-30BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
2022-08-30BUG/MEDIUM: proxy: Perform a custom copy for default server settings
2022-08-30BUG/MINOR: peers: Use right channel flag to consider the peer as connected
2022-08-30BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
2022-08-25BUG/MINOR: ssl: free the fields in srv->ssl_ctx
2022-07-27BUG/MINOR: sockpair: wrong return value for fd_send_uxst()
2022-07-27BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible
2022-07-27BUG/MINOR: peers: fix possible NULL dereferences at config parsing
2022-07-27BUG/MINOR: peers/config: always fill the bind_conf's argument
2022-07-27BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch
2022-07-27BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created
2022-07-27BUG/MINOR: server: do not enable DNS resolution on disabled proxies
2022-06-13BUG/MINOR: conn_stream: do not confirm a connection from the frontend path
2022-06-07BUG/MEDIUM: sample: Fix adjusting size in word converter
2022-06-07BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section
2022-06-07BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections
2022-06-07BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols
2022-06-07BUG/MINOR: peers: fix error reporting of "bind" lines
2022-05-13BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
2022-05-13BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized
2022-05-13BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).
2022-05-13BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init
2022-05-13BUG/MINOR: map/cli: protect the backref list during "show map" errors
2022-05-13BUG/MEDIUM: cli: make "show cli sockets" really yield
2022-05-13BUG/MINOR: mux-h2: mark the stream as open before processing it not after
2022-05-13BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()
2022-05-13BUG/MINOR: cache: Disable cache if applet creation fails
2022-05-13BUG/MEDIUM: compression: Don't forget to update htx_sl and http_msg flags
2022-05-13BUG/MEDIUM: mux-h1: Don't request more room on partial trailers
2022-05-13BUG/MINOR: mux-h2: use timeout http-request as a fallback for http-keep-alive
2022-05-13BUG/MINOR: mux-h2: do not use timeout http-keep-alive on backend side
2022-05-13BUG/MINOR: cache: do not display expired entries in "show cache"
2022-05-13BUG/MINOR: mux-h2: do not send GOAWAY if SETTINGS were not sent
2022-05-13BUG/MEDIUM: http-act: Don't replace URI if path is not found or invalid
2022-05-13BUG/MAJOR: mux_pt: always report the connection error to the conn_stream
2022-05-13BUG/MEDIUM: mux-h2: make use of http-request and keep-alive timeouts
2022-05-13BUG/MEDIUM: stream-int: do not rely on the connection error once established
2022-05-13BUG/MINOR: tools: url2sa reads too far when no port nor path
2022-05-13BUG/MEDIUM: mux-h1: only turn CO_FL_ERROR to CS_FL_ERROR with empty ibuf
2022-05-11BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket
2022-04-11Revert "BUG/MAJOR: mux-pt: Always destroy the backend connection on detach"
2022-03-25BUG/MINOR: tools: fix url2sa return value with IPv4
2022-03-14BUG/MINOR: stream: make the call_rate only count the no-progress calls
2022-03-14BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
2022-03-14BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
2022-03-14DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
2022-03-14BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
2022-03-14BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
2022-03-14BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
2022-03-14BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
2022-03-14BUG/MINOR: cli: shows correct mode in "show sess"
2022-03-01BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
2022-03-01BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
2022-03-01BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
2022-03-01BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
2022-03-01BUG/MINOR: tools: url2sa reads ipv4 too far
2022-03-01BUG/MINOR: mailers: negotiate SMTP, not ESMTP
2022-03-01BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
2022-03-01BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
2022-03-01BUG/MEDIUM: mworker: close unused transferred FDs on load failure
2022-03-01BUG/MAJOR: spoe: properly detach all agents when releasing the applet
2022-03-01BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
2022-03-01BUG/MINOR: mworker: does not erase the pidfile upon reload
2022-03-01BUG/MEDIUM: mworker: don't lose the stats socket on failed reload
2022-03-01BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
2022-03-01BUG/MEDIUM: mcli: do not try to parse empty buffers
2022-03-01BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
2022-01-26BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
2022-01-26BUG/MEDIUM: cli: Never wait for more data on client shutdown
2022-01-19BUG/MEDIUM: mworker: don't use _getsocks in wait mode
2022-01-19BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
2022-01-19BUG/MINOR: cli: fix _getsocks with musl libc
2022-01-19BUG/MINOR: http: fix recent regression on authorization in legacy mode
2022-01-13Revert "BUG/MEDIUM: resolvers: always check a valid item in query_list"
2021-12-24BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
2021-12-24BUG/MINOR: backend: do not set sni on connection reuse
2021-12-24BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
2021-12-24BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
2021-12-09CI: Fix DEBUG_STRICT definition for Coverity
2021-11-30BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
2021-11-26BUG/MINOR: shctx: do not look for available blocks when the first one is enough
2021-11-26BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
2021-11-26BUG/MEDIUM: mux-h2: always process a pending shut read
2021-11-26BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
2021-11-26BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
2021-11-26BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
2021-11-26BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
2021-11-26BUG/MINOR: mworker: doesn't launch the program postparser
2021-11-26BUG/MEDIUM: conn-stream: Don't reset CS flags on close
2021-11-26BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
2021-11-26BUG/MEDIUM: mux-h1: Fix H1C_F_ST_SILENT_SHUT value
2021-11-22BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
2021-11-22BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
2021-11-22BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
2021-11-22BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
2021-11-22BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
2021-11-22BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
2021-11-22BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
2021-11-22BUG/MEDIUM: resolvers: always check a valid item in query_list
2021-11-22BUG/MEDIUM: resolvers: use correct storage for the target address
2021-11-22BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
2021-11-22BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
2021-11-22BUG/MEDIUM: resolver: make sure to always use the correct hostname length
2021-11-22BUG/MEDIUM: sample: properly verify that variables cast to sample
2021-11-22BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
2021-11-22BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
2021-11-22BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
2021-11-22BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
2021-11-22BUG/MINOR: filters: Set right FLT_END analyser depending on channel
2021-11-22BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
2021-11-22BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
2021-11-22BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
2021-11-22BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
2021-11-22BUG/MAJOR: lua: use task_wakeup() to properly run a task once
2021-11-22BUG/MEDIUM: lua: fix wakeup condition from sleep()
2021-11-22BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
2021-11-22BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
2021-11-22BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
2021-11-22BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
2021-11-22BUG/MINOR: server: allow 'enable health' only if check configured
2021-11-22BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
2021-09-20BUG/MINOR: stats: fix the POST requests processing in legacy mode
2021-09-20BUG/MEDIUM: http: check for a channel pending data before waiting
2021-09-20BUG/MINOR: cli/payload: do not search for args inside payload
2021-09-20BUG/MINOR: compat: make sure __WORDSIZE is always defined
2021-09-20BUG/MINOR: systemd: ExecStartPre must use -Ws

Back to the list of branches and versions
Back to the HAProxy page