HAProxy known bugs for version v2.5.6 (maintenance branch 2.5) :  179 

This version (2.5.6) is a release belonging to maintenance branch 2.5 whose latest version is 2.5.9. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

2022-09-232.5.9 ⇐ last
2022-04-262.5.6 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.5 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

179 0 6 69 104

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2022-11-25BUG/MINOR: mux-h1: Fix handling of 408-Request-Time-Out
2022-11-25BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action
2022-11-25BUG/MINOR: log: fix parse_log_message rfc5424 size check
2022-11-25BUG/MINOR: cfgparse-listen: fix ebpt_next_dup pointer dereference on proxy "from" inheritance
2022-11-25BUG/MINOR: server/idle: at least use atomic stores when updating max_used_conns
2022-11-25BUG/MEDIUM: peers: messages about unkown tables not correctly ignored
2022-11-25BUG/MINOR: ssl: don't initialize the keylog callback when not required
2022-11-25BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists
2022-11-25BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task
2022-11-25BUG/MINOR: pool/cli: use ullong to report total pool usage in bytes
2022-11-25BUG/MEDIUM: ring: fix creation of server in uninitialized ring
2022-11-25BUG/MINOR: mux-h1: Do not send a last null chunk on body-less answers
2022-11-25BUG/MEDIUM: mux-fcgi: Avoid value length overflow when it doesn't fit at once
2022-11-25BUG/MINOR: mux-fcgi: Be sure to send empty STDING record in case of zero-copy
2022-11-25BUG/MINOR: resolvers: Set port before IP address when processing SRV records
2022-11-25BUG/MINOR: resolvers: Don't wait periodic resolution on healthcheck failure
2022-11-25BUG/MINOR: http-htx: Fix error handling during parsing http replies
2022-11-25BUG/MEDIUM: wdt/clock: properly handle early task hangs
2022-11-25BUG/MINOR: ssl: ocsp structure not freed properly in case of error
2022-11-25BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer
2022-11-25BUG/MINOR: log: fixing bug in tcp syslog_io_handler Octet-Counting
2022-11-25BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task
2022-10-25BUG/MAJOR: stick-table: don't process store-response rules for applets
2022-10-25BUG/MINOR: sink: Set default connect/server timeout for implicit ring buffers
2022-10-25BUG/MINOR: sink: Only use backend capability for the sink proxies
2022-10-25BUG/MEDIUM: compression: handle rewrite errors when updating response headers
2022-10-25BUG/MEDIUM: httpclient: check if the httpclient was released in the IO handler
2022-10-25BUG/MEDIUM: httpclient/lua: crash when the lua task timeout before the httpclient
2022-10-25BUG/MINOR: ring: Properly parse connect timeout
2022-10-25BUG/MINOR: log: Preserve message facility when the log target is a ring buffer
2022-10-25BUG/MINOR: server: make sure "show servers state" hides private bits
2022-10-25BUG/MAJOR: stick-tables: do not try to index a server name for applets
2022-10-25BUG/MEDIUM: config: count line arguments without dereferencing the output
2022-10-25BUG/MINOR: config: don't count trailing spaces as empty arg (v2)
2022-10-10BUG/MINOR: backend: only enforce turn-around state when not redispatching
2022-10-10BUG/MINOR: smtpchk: SMTP Service check should gracefully close SMTP transaction
2022-10-10BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error
2022-10-10BUG/MINOR: hlua: hlua_channel_insert_data() behavior conflicts with documentation
2022-10-10BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()
2022-10-10BUG/MEDIUM: lua: handle stick table implicit arguments right.
2022-10-10BUG/MEDIUM: lua: Don't crash in hlua_lua2arg_check on failure
2022-10-10BUG/MINOR: checks: update pgsql regex on auth packet
2022-10-10BUG/MAJOR: conn-idle: fix hash indexing issues on idle conns
2022-10-10BUG/MINOR: hlua: _hlua_http_msg_delete incorrect behavior when offset is used
2022-10-10BUG/MINOR: hlua: fixing hlua_http_msg_insert_data behavior
2022-10-10BUG/MINOR: hlua: fixing hlua_http_msg_del_data behavior
2022-09-28BUG/MEDIUM: resolvers: Remove aborted resolutions from query_ids tree
2022-09-20BUG/MINOR: log: improper behavior when escaping log data
2022-09-20BUG/MEDIUM: captures: free() an error capture out of the proxy lock
2022-09-20BUG/MEDIUM: server: segv when adding server with hostname from CLI
2022-09-20BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.
2022-09-20BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'
2022-09-20BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
2022-09-20BUG/MINOR: signals/poller: ensure wakeup from signals
2022-09-20BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
2022-09-20BUG/MINOR: task: always reset a new tasklet's call date
2022-09-20BUG/MINOR: h1: Support headers case adjustment for TCP proxies
2022-09-15BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
2022-09-15BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools
2022-09-15BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free() v2
2022-09-15BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
2022-08-31BUG/MINOR: ssl: revert two wrong fixes with ckhi_link
2022-08-30BUG/MEDIUM: ssl: Fix a UAF when old ckch instances are released
2022-08-30BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free()
2022-08-30BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)
2022-08-29BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets
2022-08-29BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
2022-08-29BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
2022-08-29BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
2022-08-29BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
2022-08-29BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect
2022-08-29BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
2022-08-29BUG/MAJOR: mworker: fix infinite loop on master with no proxies.
2022-08-29BUG/MINOR: ssl/cli: error when the ca-file is empty
2022-08-29BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized
2022-08-29BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
2022-08-29BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names
2022-08-12BUG/MEDIUM: ring: fix too lax 'size' parser
2022-08-12BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()
2022-08-12BUG/MEDIUM: poller: use fd_delete() to release the poller pipes
2022-08-12BUG/MINOR: sink: fix a race condition between the writer and the reader
2022-08-12BUG/MINOR: ring/cli: fix a race condition between the writer and the reader
2022-08-12BUG/MEDIUM: proxy: Perform a custom copy for default server settings
2022-08-12BUG/MEDIUM: dns: Properly initialize new DNS session
2022-08-12BUG/MINOR: peers: Use right channel flag to consider the peer as connected
2022-08-12BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
2022-08-12BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
2022-08-12BUG/MEDIUM: queue/threads: limit the number of entries dequeued at once
2022-08-12DEBUG: fd: split the fd check
2022-07-25Revert "BUG/MINOR: peers: set the proxy's name to the peers section name"
2022-07-25BUG/MINOR: sockpair: wrong return value for fd_send_uxst()
2022-07-22BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible
2022-07-21BUG/MEDIUM: mworker: proc_self incorrectly set crashes upon reload
2022-07-21BUG/MINOR: mworker/cli: relative pid prefix not validated anymore
2022-07-20BUG/MINOR: tools: fix statistical_prng_range()'s output range
2022-07-20BUG/MEDIUM: tools: avoid calling dlsym() in static builds (try 2)
2022-07-20BUG/MEDIUM: tools: avoid calling dlsym() in static builds
2022-07-08BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send
2022-07-08BUG/MEDIUM: http-ana: Don't wait to have an empty buf to switch in TUNNEL state
2022-07-08BUG/MINOR: mux-h1: Be sure to commit htx changes in the demux buffer
2022-07-08BUG/MEDIUM: http-fetch: Don't fetch the method if there is no stream
2022-07-08BUG/MEDIUM: h1: Improve authority validation for CONNCET request
2022-07-08BUG/MINOR: http-htx: Fix scheme based normalization for URIs wih userinfo
2022-07-08BUG/MINOR: peers: fix possible NULL dereferences at config parsing
2022-07-08BUG/MINOR: http-act: Properly generate 103 responses when several rules are used
2022-07-08BUG/MINOR: http-check: Preserve headers if not redefined by an implicit rule
2022-07-08BUG/MINOR: peers/config: always fill the bind_conf's argument
2022-07-08MINOR: fd: Add BUG_ON checks on fd_insert()
2022-07-08BUG/MEDIUM: ssl/fd: unexpected fd close using async engine
2022-07-08BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch
2022-07-08BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created
2022-07-08BUG/MINOR: ssl: Do not look for key in extra files if already in pem
2022-07-08BUG/MEDIUM: mworker: use default maxconn in wait mode
2022-07-08BUG/MEDIUM: ssl/cli: crash when crt inserted into a crt-list
2022-07-08BUG/MINOR: task: fix thread assignment in tasklet_kill()
2022-07-08BUG/MINOR: tcp-rules: Make action call final on read error and delay expiration
2022-07-08BUG/MINOR: cli/stats: add missing trailing LF after "show info json"
2022-07-08BUG/MINOR: server: do not enable DNS resolution on disabled proxies
2022-07-08BUG/MINOR: cli/stats: add missing trailing LF after JSON outputs
2022-06-08BUG/MINOR: checks: Properly handle email alerts in trace messages
2022-06-08BUG/MINOR: trace: Test server existence for health-checks to get proxy
2022-06-08BUG/MEDIUM: mailers: Set the object type for check attached to an email alert
2022-06-08BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_crlfile I/O handler
2022-06-08BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cafile I/O handler
2022-06-08BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cert I/O handler
2022-06-08BUG/MINOR: ssl_ckch: Init right field when parsing "commit ssl crl-file" cmd
2022-06-08BUG/MINOR: ssl_ckch: Dump cert transaction only once if show command yield
2022-06-08BUG/MINOR: ssl_ckch: Dump CA transaction only once if show command yield
2022-06-08BUG/MINOR: ssl_ckch: Dump CRL transaction only once if show command yield
2022-06-08BUG/MEDIUM: httpclient: Rework CLI I/O handler to handle full buffer cases
2022-06-08BUG/MEDIUM: httpclient: Don't remove HTX header blocks before duplicating them
2022-06-08BUG/MEDIUM: ssl/crt-list: Rework 'add ssl crt-list' to handle full buffer cases
2022-06-07BUG/MEDIUM: ssl_ckch: Rework 'commit ssl ca-file' to handle full buffer cases
2022-06-07BUG/MEDIUM: ssl_ckch: Rework 'commit ssl cert' to handle full buffer cases
2022-06-07BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a CA/CRL entry
2022-06-07BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a cert entry
2022-06-07BUG/MEDIUM: ssl_ckch: Don't delete CA/CRL entry if it is being modified
2022-06-07BUG/MEDIUM: ssl_ckch: Don't delete a cert entry if it is being modified
2022-06-07BUG/MINOR: ssl_ckch: Free error msg if commit changes on a CA/CRL entry fails
2022-06-07BUG/MINOR: ssl_ckch: Free error msg if commit changes on a cert entry fails
2022-06-03BUG/MINOR: peers: detect and warn on init_addr/resolvers/check/agent-check
2022-06-03BUG/MINOR: peers: set the proxy's name to the peers section name
2022-06-03BUG/MEDIUM: sample: Fix adjusting size in word converter
2022-06-03BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section
2022-06-03BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections
2022-06-03BUG/MEDIUM: resolvers: Don't defer resolutions release in deinit function
2022-06-03BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols
2022-06-03BUG/MEDIUM: tools: Fix `inet_ntop` usage in sa2str
2022-06-03BUG/MINOR: peers: fix error reporting of "bind" lines
2022-06-03BUG/MINOR: cfgparse: abort earlier in case of allocation error
2022-06-03BUG/MINOR: check: Reinit the buffer wait list at the end of a check
2022-06-03BUG/MEDIUM: config: Reset outline buffer size on realloc error in readcfgfile()
2022-06-03BUG/MINOR: ssl: Fix crash when no private key is found in pem
2022-05-13BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized
2022-05-13BUG/MINOR: conn_stream: do not confirm a connection from the frontend path
2022-05-13BUG/MEDIUM: lua: fix argument handling in data removal functions
2022-05-13BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).
2022-05-13BUG/MEDIUM: ssl: fix the gcc-12 broken fix :-(
2022-05-13BUG/MINOR: ssl: Fix typos in crl-file related CLI commands
2022-05-13BUG/MINOR: ssl/cli: fix "show ssl cert" not to mix cli+ssl contexts
2022-05-13BUG/MINOR: ssl/cli: fix "show ssl crl-file" not to mix cli+ssl contexts
2022-05-13BUG/MINOR: ssl/cli: fix "show ssl ca-file " not to mix cli+ssl contexts
2022-05-13BUG/MINOR: ssl/cli: fix "show ssl ca-file/crl-file" not to mix cli+ssl contexts
2022-05-13BUG/MEDIUM: ssl/cli: fix yielding in show_cafile_detail
2022-05-13BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init
2022-05-13BUG/MINOR: map/cli: protect the backref list during "show map" errors
2022-05-13BUG/MINOR: proxy/cli: don't enumerate internal proxies on "show backend"
2022-05-13BUG/MEDIUM: cli: make "show cli sockets" really yield
2022-05-13BUG/MEDIUM: resolvers: make "show resolvers" properly yield
2022-05-13BUG/MINOR: startup: usage() when no -cc arguments
2022-05-13BUG/MINOR: tcp/http: release the expr of set-{src,dst}[-port]
2022-05-12BUG/MINOR: mux-h2: mark the stream as open before processing it not after
2022-05-11BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket
2022-05-05BUG/MEDIUM: mux-h1: Be able to handle trailers when C-L header was specified
2022-05-05BUG/MEDIUM: mux-fcgi: Be sure to never set EOM flag on an empty HTX message
2022-04-29BUG/MEDIUM: httpclient: Fix loop consuming HTX blocks from the response channel
2022-04-29BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()
2022-04-27BUG/MINOR: resolvers: Fix memory leak in resolvers_deinit()
2022-04-27BUG/MEDIUM: http-ana: Fix memleak in redirect rules with ignore-empty option

Back to the list of branches and versions
Back to the HAProxy page