HAProxy known bugs for maintenance branch 2.7 : 0

This is maintenance branch 2.7 whose latest version is 2.7.12. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 2.7 version other than 2.7.12, you're running with known bugs.

Quick links

full changelog for 2.7 : here
browse history for 2.7 : here

Versions available in this branch

This branch contains the following releases :

Date Version Comment

2024-04-05 2.7.12 ⇐ last

2023-12-07 2.7.11

2023-08-09 2.7.10

2023-06-07 2.7.9

2023-05-02 2.7.8

2023-04-27 2.7.7

2023-03-28 2.7.6

2023-03-17 2.7.5

2023-03-10 2.7.4

2023-02-14 2.7.3

2023-01-20 2.7.2

2022-12-19 2.7.1

2022-12-01 2.7.0

Date	Version	Comment
2024-04-05	2.7.12	⇐ last
2023-12-07	2.7.11
2023-08-09	2.7.10
2023-06-07	2.7.9
2023-05-02	2.7.8
2023-04-27	2.7.7
2023-03-28	2.7.6
2023-03-17	2.7.5
2023-03-10	2.7.4
2023-02-14	2.7.3
2023-01-20	2.7.2
2022-12-19	2.7.1
2022-12-01	2.7.0

Fixes for known bugs pending in this branch since the last release (2.7.12)

These fixes have already been queued for the next 2.7 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in the latest version of this branch by category :

Total CRITICAL MAJOR MEDIUM MINOR

0 0 0 0 0

Total	CRITICAL	MAJOR	MEDIUM	MINOR
0	0	0	0	0

Click on the subjects below to get the full description of the bug :

Merge date Subject - Severity (minor, medium, major, critical)

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

Date Subject

2025-04-22 BUG/MEDIUM: mux-spop: Respect the negociated max-frame-size value to send frames

2025-04-18 BUG/MINOR: proxy: always detach a proxy from the names tree on free()

2025-04-18 BUG/MINOR: quic: do not crash on CRYPTO ncbuf alloc failure

2025-04-17 BUG/MINOR: debug: detect and prevent re-entrance in ha_thread_dump_fill()

2025-04-17 BUG/MINOR: wdt/debug: avoid signal re-entrance between debugger and watchdog

2025-04-17 BUG/MINOR debug: fix !USE_THREAD_DUMP in ha_thread_dump_fill()

2025-04-17 BUG/MINOR: threads: set threads_idle and threads_harmless even with no threads

2025-04-17 BUG/MINOR: mux-h2: do not apply timer on idle backend connection

2025-04-17 BUG/MINOR: rhttp: ensure GOAWAY can be emitted after reversal

2025-04-17 BUG/MINOR: rhttp: fix reconnect if timeout connect unset

2025-04-17 BUG/MINOR: mux-h2: prevent past scheduling with idle connections

2025-04-17 BUG/MEDIUM: hlua: fix hlua_applet_{http,tcp}_fct() yield regression (lost data)

2025-04-16 BUG/MINOR: h3: reject request URI with invalid characters

2025-04-16 BUG/MINOR: h3: reject invalid :path in request

2025-04-16 BUG/MINOR: h3: filter upgrade connection header

2025-04-16 BUG/MEDIUM: h3: trim whitespaces in header value prior to QPACK encoding

2025-04-16 BUG/MEDIUM: h3: trim whitespaces when parsing headers value

2025-04-16 BUG/MINOR: acme/cli: fix certificate name in error message

2025-04-16 BUG/MINOR: acme: fix the exponential backoff of retries

2025-04-16 BUG/MINOR: acme: key not restored upon error in acme_res_certificate() V2

2025-04-16 Revert "BUG/MINOR: acme: key not restored upon error in acme_res_certificate()"

2025-04-15 BUG/MEDIUM: http-ana: Report 502 from req analyzer only during rsp forwarding

2025-04-15 BUG/MINOR: http-ana: Properly detect client abort when forwarding the response

2025-04-15 BUILD: incompatible pointer type suspected with -DDEBUG_UNIT

2025-04-15 BUG/MINOR: acme: fix possible NULL deref

2025-04-14 DEBUG: counters: add the ability to enable/disable updating the COUNT_IF counters

2025-04-14 DEBUG: counters: make COUNT_IF() only appear at DEBUG_COUNTERS>=1

2025-04-14 DEBUG: rename DEBUG_GLITCHES to DEBUG_COUNTERS and enable it by default

2025-04-14 DEBUG: init: report invalid characters in debug description strings

2025-04-14 BUG/MINOR: debug: remove the trailing \n from BUG_ON() statements

2025-04-14 BUG/MINOR: thread: protect thread_cpus_enabled_at_boot with USE_THREAD

2025-04-14 BUG/MINOR: acme: key not restored upon error in acme_res_certificate()

2025-04-12 BUG/MINOR: cpu-topo: check the correct variable for NULL after malloc()

2025-04-12 BUG/MINOR: acme: ckch_conf_acme_init() when no filename

2025-04-10 BUG/MINOR: hlua: fix invalid errmsg use in hlua_init()

2025-04-09 BUG/MINOR: backend: do not use the source port when hashing clientip

2025-04-07 BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refs

2025-04-07 BUG/MINOR: log: fix CBOR encoding with LOG_VARTEXT_START() + lf_encode_chunk()

2025-04-03 BUG/MINOR: hlua_fcn: fix potential UAF with Queue:pop_wait()

2025-04-03 BUG/MINOR: server: ensure check-reuse-pool is copied from default-server

2025-04-03 BUG/MEDIUM: peers: prevent learning expiration too far in futur from unsync node

2025-04-03 BUG/MINOR: peers: fix expire learned from a peer not converted from ms to ticks

2025-04-03 BUG/MEDIUM: stream: Fix a possible freeze during a forced shut on a stream

2025-04-02 BUG/MEDIUM: backend: fix reuse with set-dst/set-dst-port

2025-04-02 BUG/MINOR: backend: do not overwrite srv dst address on reuse

2025-04-02 BUG/MINOR: rhttp: fix incorrect dst/dst_port values

2025-04-02 BUG/MEDIUM: leastconn: Don't try to reposition if the server is down

2025-04-02 BUG/MINOR: ssl/ckch: leak in error path

2025-04-01 BUG/MINOR: config: silence .notice/.warning/.alert in discovery mode

2025-03-27 BUG/MINOR: log: fix gcc warn about truncating NUL terminator while init char arrays

2025-03-20 BUG/MINOR: mux-quic: remove extra BUG_ON() in _qcc_send_stream()

2025-03-20 BUG/MEDIUM: mux-quic: fix crash on RS/SS emission if already close local

2025-03-20 BUG/MINOR: mux-h2: Reset streams with NO_ERROR code if full response was already sent

2025-03-19 BUG/MEDIUM: hlua/cli: fix cli applet UAF in hlua_applet_wakeup()

2025-03-18 BUG/MINOR: limits: compute_ideal_maxconn: don't cap remain if fd_hard_limit=0

2025-03-18 BUG/MINOR: hlua: fix optional timeout argument index for AppletTCP:receive()

2025-03-18 BUG/MINOR: log: prevent saddr NULL deref in syslog_io_handler()

2025-03-13 BUG/MINOR: stats: fix capabilities and hide settings for some generic metrics

2025-03-12 BUG/MEDIUM: thread: use pthread_self() not ha_pthread[tid] in set_affinity

2025-03-07 BUG/MINOR: cfgparse-tcp: relax namespace bind check

2025-03-07 BUG/MINOR: stream: fix age calculation in "show sess" output

2025-03-07 BUG/MINOR: server: dont return immediately from parse_server() when skipping checks

2025-03-06 BUG/MINOR: cfgparse/peers: properly handle ignored local peer case

2025-03-06 BUG/MINOR: cfgparse/peers: fix inconsistent check for missing peer server

2025-03-06 BUG/MEIDUM: startup: return to initial cwd only after check_config_validity()

2025-03-05 BUG/MINOR: log: set proper smp size for balance log-hash

2025-03-04 DEBUG: init: Add a macro to register unit tests

2025-03-03 DEBUG: init: add a way to register functions for unit tests

2025-03-03 BUG/MINOR: server: check for either proxy-protocol v1 or v2 to send hedaer

2025-02-28 BUG/MINOR: hq-interop: fix leak in case of rcv_buf early return

2025-02-28 BUG/MEDIUM: mux-fcgi: Try to fully fill demux buffer on receive if not empty

2025-02-27 BUG/MINOR: h3: do not report transfer as aborted on preemptive response

2025-02-27 BUG/MINOR: server: fix the "server-template" prefix memory leak

2025-02-27 BUG/MEDIUM: server: properly initialize PROXY v2 TLVs

2025-02-24 BUG/MEDIUM: stream: don't use localtime in dumps from a signal handler

2025-02-24 BUG/MINOR: h2: always trim leading and trailing LWS in header values

2025-02-21 BUG/MEDIUM: stream: use non-blocking freq_ctr calls from the stream dumper

2025-02-21 BUG/MEDIUM: stream: never allocate connection addresses from signal handler

2025-02-21 BUG/MINOR: mux-h1: always make sure h1s->sd exists in h1_dump_h1s_info()

2025-02-21 BUG/MINOR: stream: do not call co_data() from __strm_dump_to_buffer()

2025-02-21 BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers

2025-02-21 BUG/MINOR: log: fix outgoing abns address family

2025-02-21 BUG/MEDIUM: uxst: fix outgoing abns address family in connect()

2025-02-20 BUG/MINOR: cfgparse: fix NULL ptr dereference in cfg_parse_peers

2025-02-20 BUG/MEDIUM: spoe/mux-spop: Introduce an NOOP action to deal with empty ACK

2025-02-20 BUG/MEDIUM: applet: Don't handle EOI/EOS/ERROR is applet is waiting for room

2025-02-18 BUG/MINOR: mux-h2: Properly handle full or truncated HTX messages on shut

2025-02-18 BUG/MINOR: mux-quic: prevent crash after MUX init failure

2025-02-18 BUG/MINOR: quic: prevent crash on conn access after MUX init failure

2025-02-17 BUG/MINOR: fcgi: Don't set the status to 302 if it is already set

2025-02-17 BUG/MEDIUM: filters: Handle filters registered on data with no payload callback

2025-02-17 BUG/MINOR: cli: Wait for the last ACK when FDs are xferred from the old worker

2025-02-17 BUG/MEDIUM: cli: Be sure to drop all input data in END state

2025-02-17 BUG/MINOR: startup: hap_register_feature() fix for partial feature name

2025-02-17 BUG/MINOR: startup: leave at first post_section_parser which fails

2025-02-12 BUG/MINOR: ssl/cli: "show ssl crt-list" lacks sigals

2025-02-12 BUG/MINOR: ssl/cli: "show ssl crt-list" lacks client-sigals

2025-02-12 BUG/MEDIUM: fd: mark FD transferred to another process as FD_CLONED

2025-02-12 BUG/MINOR: mworker: post_section_parser for the last section in discovery

2025-02-12 BUG/MINOR: mworker: section ignored in discovery after a post_section_parser

2025-02-12 BUG/MINOR: quic: fix CRYPTO payload size calcul for encoding

2025-02-12 BUG/MINOR: quic: reserve length field for long header encoding

2025-02-10 DEBUG: thread: reduce the struct lock_stat to store only 30 buckets

2025-02-10 DEBUG: thread: make lock_stat per operation instead of for all operations

2025-02-10 DEBUG: thread: don't keep the redundant _locked counter

2025-02-10 DEBUG: thread: report the wait time buckets for lock classes

2025-02-10 DEBUG: thread: make lock time computation more consistent

2025-02-10 DEBUG: thread: report the spin lock counters as seek locks

2025-02-10 BUG/MEDIUM: debug: close a possible race between thread dump and panic()

2025-02-07 BUG/MEDIUM: ssl: chosing correct certificate using RSA-PSS with TLSv1.3

2025-02-07 BUG/MINOR: debug: make sure the "debug dev sched" tasks don't block stopping

2025-02-07 BUG/MINOR: debug: make "debug dev sched" accept a negative TID

2025-02-06 BUG/MINOR: stats-json: Define JSON_INT_MAX as a signed integer

2025-02-06 BUG/MINOR: flt-trace: Support only one name option

2025-02-06 BUG/MINOR: auth: Fix a leak on error path when parsing user's groups

2025-02-06 BUG/MINOR: config/userlist: Support one 'users' option for 'group' directive

2025-02-06 BUG/MINOR: cli: Fix a possible infinite loop in _getsocks()

2025-02-06 BUG/MINOR: cli: Fix memory leak on error for _getsocks command

2025-02-06 BUG/MINOR: cli: Don't set SE flags from the cli applet

2025-02-06 BUG/MEDIUM: mux-fcgi: Propagate flags to SE in fcgi_strm_wake_one_stream

2025-02-06 BUG/MEDIUM: flt-spoe: Properly handle end of stream from the SPOE applet

2025-02-06 BUG/MEDIUM: applet: Don't pretend to have more data to handle EOI/EOS/ERROR

2025-02-06 BUG/MEDIUM: flt-spoe: Set/test applet flags instead of SE flags from I/O handler

2025-02-06 BUG/MINOR: tevt/mux-h2: Set truncated receive/eos events at SE level on error

2025-02-03 BUG/MINOR: http-check: Don't pretend a C-L heeader is set before adding it

2025-02-03 BUG/MINOR: tcp-rules: Don't forward close during tcp-response content rules eval

2025-02-03 DEBUG: mux-h1: Remove some debug counters

2025-02-03 DEBUG: http-ana: Remove debug counters from HTTP analyzers

2025-02-03 BUG/MINOR: tevt/http-ana: Remove badly placed event reports

2025-02-03 BUG/MEDIUM: mux-fcgi: Properly handle read0 on partial records

2025-01-31 BUG/MEDIUM: htx: wrong count computation in htx_xfer_blks()

2025-01-31 BUG/MINOR: mux-h1: Only report a SE error on demux error

2025-01-30 DEBUG: epoll: store and compare the FD's generation count with reported event

2025-01-30 DEBUG: fd: add a counter of takeovers of an FD since it was last opened

2025-01-29 BUG/MEDIUM: chunk: make sure to flush the trash pool before resizing

2025-01-28 BUG/MINOR: stream: Properly handle "on-marked-up shutdown-backup-sessions"

2025-01-24 BUG/MINOR: ssl: put ssl_sock_load_ca under SSL_NO_GENERATE_CERTIFICATES

2025-01-23 BUG/MINOR: quic: do not increase congestion window if app limited

2025-01-23 BUG/MEDIUM: mux-h1: Properly close H1C if an error is reported before sending data

2025-01-21 MINOR: quic: Add a BUG_ON() on quic_tx_packet refcount

2025-01-21 BUG/MINOR: quic: ensure a detached coalesced packet can't access its neighbours

2025-01-20 BUG/MINOR: init: set HAPROXY_STARTUP_VERSION from the variable, not the macro

2025-01-20 BUG/MAJOR: log/sink: possible sink collision in sink_new_from_srv()

2025-01-20 BUG/MAJOR: quic: reject too large CRYPTO frames

2025-01-14 BUG/MEDIUM: promex: Use right context pointers to dump backends extra-counters

2025-01-14 BUG/MEDIUM: stktable: fix missing lock on some table converters

2025-01-10 BUG/MINOR: quic: reject NEW_TOKEN frames from clients

2025-01-09 BUG/MEDIUM: queues: Adjust the proxy counters when appropriate

2025-01-09 BUG/MINOR: stktable: fix big-endian compatiblity in smp_to_stkey()

2025-01-08 BUG/MEDIUM: h1-htx: Properly handle bodyless messages

2025-01-07 BUG/MAJOR: ssl/ocsp: fix NULL conn object dereferencing to access QUIC TLS counters

2025-01-06 BUG/MEDIUM: promex/resolvers: Don't dump metrics if no nameserver is defined

2025-01-03 BUG/MINOR: mux-quic: handle closure of uni-stream

2025-01-03 BUG/MINOR: mux-quic: fix wakeup on qcc_set_error()

2025-01-03 BUG/MINOR: log: Allow to use if/unless conditionnals for do-log action

2025-01-02 BUG/MINOR: cfgparse-tcp: handle a possible strdup() failure

2025-01-02 BUG/MINOR: pool: handle a possible strdup() failure

2025-01-02 BUG/MINOR: compression: handle a possible strdup() failure

2025-01-02 BUG/MEDIUM: mux-quic: do not attach on already closed stream

2025-01-02 BUG/MAJOR: mux-quic: properly fix BUG_ON on empty STREAM emission

2025-01-02 Revert "BUG/MAJOR: mux-quic: fix BUG_ON on empty STREAM emission"

2025-01-02 BUG/MEDIUM: mux-h2: Count copied data when looping on RX bufs in h2_rcv_buf()

2024-12-31 BUG/MAJOR: mux-quic: fix BUG_ON on empty STREAM emission

2024-12-31 BUG/MINOR: stktable: invalid use of stkctr_set_entry() with mixed table types

2024-12-25 BUG/MINOR: debug: handle a possible strdup() failure

2024-12-25 BUG/MINOR: mux_h1: handle a possible strdup() failure

2024-12-25 BUG/MINOR: listener: handle a possible strdup() failure

2024-12-25 BUG/MINOR: checks: handle a possible strdup() failure

2024-12-24 BUG/MEDIUM: queues: Stricly respect maxconn for outgoing connections

2024-12-23 BUG/MINOR: stats: fix segfault caused by uninitialized value in "show schema json"

2024-12-23 BUG/MEDIUM: queue: Make process_srv_queue return the number of streams

2024-12-19 BUG/MINOR: h2/rhttp: fix HTTP2 conn counters on reverse

2024-12-19 BUG/MEDIUM: mux-quic: prevent BUG_ON() by refreshing frms on MAX_DATA

2024-12-18 BUG/MEDIUM: mux-quic: do not mix qcc_io_send() return codes with pacing

2024-12-17 MINOR: bug: make BUG_ON() fall back to ASSUME

2024-12-17 BUG/MEDIUM: queues: Do not use pendconn_grab_from_px().

2024-12-17 BUG/MEDIUM: queues: Make sure we call process_srv_queue() when leaving

2024-12-16 BUG/MEDIUM: stconn: Only consider I/O timers to update stream's expiration date

2024-12-16 BUG/MINOR: ssl/cli: 'show ssl ca-file' escape the first '*' of a filename

2024-12-16 BUG/MINOR: ssl/cli: 'show ssl crl-file' escape the first '*' of a filename

2024-12-16 BUG/MINOR: ssl/cli: 'show ssl cert' escape the first '*' of a filename

2024-12-13 BUG/MINOR: quic: missing Startup accelerating probing bw states

2024-12-13 BUG/MINOR: cli: cli_snd_buf: preserve \r\n for payload lines

2024-12-13 BUG/MINOR: quic: too permissive exit condition for high loss detection in Startup (BBR)

2024-12-13 BUG/MINOR: quic: fix the wrong tracked recovery start time value

2024-12-13 BUG/MINOR: quic: reduce packet losses at least during ProbeBW_CRUISE (BBR)

2024-12-13 BUG/MINOR: quic: underflow issue for bbr_inflight_hi_from_lost_packet()

2024-12-13 BUG/MINOR: quic: remove max_bw filter from delivery rate sampling

2024-12-13 BUG/MINOR: quic: wrong bbr_target_inflight() implementation

2024-12-13 BUG/MINOR: quic: fix BBB max bandwidth oscillation issue.

2024-12-13 BUG/MINOR: quic: wrong logical statement in in_recovery_period() (BBR)

2024-12-12 MINOR: build: define DEBUG_STRESS

2024-12-11 BUG/MINOR: hlua_fcn: restore server pairs iterator pointer consistency

2024-12-11 BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks

2024-12-11 BUG/MINOR: http-fetch: Ignore empty argument string for query()

2024-12-10 BUG/MEDIUM: stats/server: use watcher to track server during stats dump

2024-12-10 BUG/MINOR: stats: decrement srv refcount on stats-file release

2024-12-10 BUG/MINOR: resolvers: handle a possible strdup() failure

2024-12-10 BUG/MINOR: ssl_crtlist: handle a possible strdup() failure

2024-12-10 BUG/MINOR: namespace: handle a possible strdup() failure

2024-12-09 BUG/MINOR: mworker: detach from tty when received READY from worker

2024-12-09 BUG/MEDIUM: mworker: report status, if daemonized master fails

2024-12-09 BUG/MEDIUM: startup: report status if daemonized process fails

2024-12-09 BUG/MEDIUM: startup: don't daemonize if started with -c

2024-12-06 BUG/MINOR: mux-h2: fix expression when detecting excess of CONTINUATION frames

2024-12-06 BUG/MINOR: debug: COUNT_IF() should return true/false

2024-12-06 BUG/MINOR: startup: fix error path for master, if can't open pidfile

2024-12-06 BUG/MINOR: mworker: fix -D -W -sf/-st modes

2024-12-06 BUG/MINOR: mworker: don't save program PIDs in oldpids

2024-12-05 BUG/MINOR: config: Fix parsing of accept-invalid-http-{request,response}

2024-12-05 BUG/MEDIUM: mux-h2: make sure not to touch dummy streams when sending WU

2024-12-05 BUG/MINOR: quic: remove startup alert if GSO unsupported

2024-12-05 BUG/MINOR: quic: remove startup alert if conn socket-owner unsupported

2024-12-05 BUG/MEDIUM: mux-quic: remove pacing status when everything is sent

2024-12-04 BUG/MINOR: init: do not call fork_poller() for non-forked processes

2024-12-04 BUG/MEDIUM: init: make sure only daemonized processes change their session

2024-12-04 BUG/MINOR: quic: fix bbr_inflight() calls with wrong gain value

2024-12-02 BUG/MINOR: startup: fix pidfile creation

2024-12-02 BUG/MINOR: startup: close pidfd and free global.pidfile in handle_pidfile()

2024-12-02 BUG/MINOR: signal: register default handler for SIGINT in signal_init()

2024-12-02 BUG/MINOR: listener: fix potential null pointer dereference in listener_release()

2024-11-29 BUG/MINOR: h1-htx: Use default reason if not set when formatting the response

2024-11-29 BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry

2024-11-29 BUG/MEDIUM: quic: prevent stream freeze on pacing

2024-11-29 BUG/MEDIUM: event_hdl: fix uninitialized value in async mode when no data is provided

2024-11-29 BUG/MINOR: hlua_fcn: fix Patref:set() force parameter

2024-11-28 BUG/MINOR: improve BBR throughput on very fast links

2024-11-28 BUG/MINOR: log: fix lf_text() behavior with empty string

2024-11-27 BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set

2024-11-26 BUG/MEDIUM: quic: prevent EMSGSIZE with GSO for larger bufsize

2024-11-25 BUG/MEDIUM: http-ana: Don't release too early the L7 buffer

2024-11-25 BUG/MAJOR: quic: fix wrong packet building due to already acked frames

2024-11-25 BUG/MEDIUM: quic: fix sending performance due to qc_prep_pkts() return

2024-11-25 BUG/MINOR: mux-quic: fix show quic report of QCS prepared bytes

2024-11-22 BUG/MINOR: quic: Avoid BUG_ON() on ->on_pkt_lost() BBR callback call

2024-11-22 BUG/MAJOR: mux-h1: Properly handle wrapping on obuf when dumping the first-line

2024-11-21 BUG/MEDIUM: pools/memprofile: always clean stale pool info on pool_destroy()

2024-11-21 BUG/MINOR: activity/memprofile: reinitialize the free calls on DSO summary

2024-11-21 BUG/MEDIUM: wdt: fix the stuck detection for warnings

2024-11-21 BUG/MEDIUM: debug: don't set the STUCK flag from debug_handler()

2024-11-21 BUG/MINOR: startup: init_early: remove obsolete comment

2024-11-21 BUG/MINOR: config: allow to check HAPROXY_LOCALPEER in config

2024-11-21 BUG/MINOR: startup: fix UAF when set the default for log_tag

2024-11-21 BUG/MINOR: quic: Missing application limitations tracking for BBR

2024-11-21 BUG/MINOR: cfgparse-quic: fix warning for cc-aglo with 0 burst

2024-11-21 BUG/MINOR: cfgparse-quic: fix bbr initialization

2024-11-20 BUG/MEDIUM: h3: Increase max number of headers when sending headers

2024-11-20 BUG/MEDIUM: h3: Properly limit the number of headers received

2024-11-20 BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding

2024-11-20 BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames

2024-11-20 BUG/MINOR: cfgparse-quic: fix renaming of max-window-size

2024-11-20 BUG/MINOR: http-ana: Adjust the server status before the L7 retries

2024-11-19 BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only

2024-11-19 BUG/MINOR: mworker-prog: don't warn about deprecated section with expose-deprecated-directives

2024-11-15 MINOR: chunk: add a BUG_ON upon the next init_trash_buffer()

2024-11-15 BUG/MEDIUM: clock: make sure now_ms cannot be TICK_ETERNITY

2024-11-15 BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration

2024-11-15 BUG/MINOR: mux_quic: make sure to always apply offsets to now_ms in expiration

2024-11-15 BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration

2024-11-15 BUG/MINOR: debug: do not set task expiration to TICK_ETERNITY

2024-11-15 BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration

2024-11-15 BUG/MINOR: Don't report early srv aborts on request forwarding in DONE state

2024-11-15 BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID

2024-11-14 BUG/MINOR: deinit: release uri_auth admin rules

2024-11-13 BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list

2024-11-13 BUG/MEDIUM: stconn: Don't forward shut for SC in connecting state

2024-11-13 BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI

2024-11-13 BUG/MINOR: startup: set HAPROXY_CFGFILES in read_cfg

2024-11-08 BUG/MEDIUM: quic: prevent crash due to CRYPTO parsing error

2024-11-08 BUG/MEDIUM: mux-h2: try to wait for the peer to read the GOAWAY

2024-11-07 BUG/MINOR: guid/server: ensure thread-safety on GUID insert/delete

2024-11-06 DEBUG: wdt: set the default blocked task delay to 100 ms

2024-11-06 DEBUG: wdt: add a stats counter "BlockedTrafficWarnings" in show info

2024-11-06 DEBUG: wdt: make the blocked traffic warning delay configurable

2024-11-06 DEBUG: cli: make it possible for "debug dev loop" to trigger warnings

2024-11-06 DEBUG: wdt: better detect apparently locked up threads and warn about them

2024-11-06 BUG/MEDIUM: quic: do not consider ACK on released stream as error

2024-11-06 BUG/MINOR: mworker: do 'program' postparser checks in read_cfg_in_discovery_mode

2024-11-06 BUG/MINOR: quic: repeat packet parsing to deal with fragmented CRYPTO

2024-11-05 BUG/MINOR: quic: fix malformed probing packet building

2024-11-05 DEBUG: cli: support closing "hard" using close() in addition to fd_delete()

2024-11-05 BUG/MEDIUM: promex: Fix dump of extra counters

2024-10-31 BUG/MINOR: http-ana: Report internal error if an action yields on a final eval

2024-10-31 BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections

2024-10-31 DEBUG: mux-h1: Add H1C expiration dates in trace messages

2024-10-30 BUG/MINOR: startup: don't dump polling info for master in verbose mode

2024-10-30 BUG/MINOR: startup: dump keywords only in worker if started with -W -dKAll

2024-10-30 BUG/MINOR: startup: dump libs only in worker if started with -W -dL

2024-10-30 BUG/MINOR: startup: don't fork worker if started with -c -W

2024-10-29 BUG/MINOR: errors: print_message: don't allocate startup logs ring

2024-10-29 BUG/MINOR: errors: startup_logs_free: set global startup_logs ptr to NULL

2024-10-29 BUG/MINOR: mworker: mworker_reexec: unset MODE_STARTING before free startup logs ring

2024-10-29 BUG/MINOR: ssl/cli: 'set ssl cert' does not check the transaction name correctly

2024-10-29 BUG/MINOR: trace: stop rewriting argv with -dt

2024-10-26 BUG/MINOR: mworker/cli: fix mworker_cli_global_proxy_new_listener

2024-10-26 BUG/MEIDUM: mworker: fix fd leak from master to worker

2024-10-24 BUG/MINOR: stconn: Don't disable 0-copy FF if EOS was reported on consumer side

2024-10-24 BUG/MINOR: http-ana: Fix wrong client abort reports during responses forwarding

2024-10-24 BUG/MEDIUM: stconn: Report blocked send if sends are blocked by an error

2024-10-24 BUG/MEDIUM: server: fix race on servers_list during server deletion

2024-10-24 BUG/MINOR: server: fix dynamic server leak with check on failed init

2024-10-24 BUG/MINOR: mworker: show worker warnings in startup logs

2024-10-24 BUG/MINOR: mworker/cli: show master startup logs in recovery mode

2024-10-24 BUG/MINOR: mux-h1: Fix conditions on pipe in some COUNT_IF()

2024-10-24 DEBUG: mux-h1: Add debug counters to track errors with in/out pending data

2024-10-23 BUG/MEDIUM: connection/http-reuse: fix address collision on unhandled address families

2024-10-22 DEBUG: mux-h1: Add debug counters to track some errors

2024-10-22 DEBUG: stream: Add debug counters to track some client/server aborts

2024-10-22 BUG/MINOR: stconn: Pretend the SE have more data to deliver on abortonclose

2024-10-22 BUG/MEDIUM: mux-h2: Remove H2S from send list if data are sent via 0-copy FF

2024-10-22 BUG/MEDIUM: stats-html: Never dump more data than expected during 0-copy FF

2024-10-21 MEDIUM: debug: add match counters for BUG_ON/WARN_ON/CHECK_IF

2024-10-21 CLEANUP: debug: make the BUG_ON() macros check the condition in the outer one

2024-10-21 BUG/MINOR: mux-quic: do not close STREAM with empty FIN if no data sent

2024-10-21 BUG/MINOR: mworker: fix mworker-max-reloads parser

2024-10-18 BUG/MINOR: sample: free err2 in smp_resolve_args for type ARGT_REG

2024-10-17 CLEANUP: http_ext: remove useless BUG_ON() in http_handle_xot_header()

2024-10-17 BUG/MEDIUM: quic: avoid freezing 0RTT connections

2024-10-17 BUG/MINOR: quic: avoid leaking post handshake frames

2024-10-17 BUG/MAJOR: filters/htx: Add a flag to state the payload is altered by a filter

2024-10-17 BUG/MEDIUM: stconn: Check FF data of SC to perform a shutdown in sc_notify()

2024-10-17 BUG/MINOR: http-ana: Don't report a server abort if response payload is invalid

2024-10-17 BUG/MEDIUM: stconn: Wait iobuf is empty to shut SE down during a check send

2024-10-17 BUG/MINOR: resolvers/mworker: missing default resolvers in mworker mode

2024-10-17 BUG/MEDIUM: mworker/httpclient: initialization skipped by accident in mworker mode

2024-10-17 BUG/MINOR: httpclient: return NULL when no proxy available during httpclient_new()

2024-10-16 BUG/MINOR: mworker: fix memory leak due to master-worker fork

2024-10-16 DEBUG: mux-h2/flags: add H2_CF_DEM_RXBUF & H2_SF_EXPECT_RXDATA for the decoder

2024-10-16 BUG/MEDIUM: queue: make sure never to queue when there's no more served conns

2024-10-16 BUG/MEDIUM: server: server stuck in maintenance after FQDN change

2024-10-16 BUG/MEDIUM: quic: support wait-for-handshake

2024-10-16 BUG/MINOR: stream: unblock stream on wait-for-handshake completion

2024-10-12 BUG/MINOR: mux-h2/traces: present the correct buffer for trailers errors traces

2024-10-10 BUG/MEDIUM: mux-quic: ensure timeout server is active for short requests

2024-10-09 BUG/MEDIUM: quic: properly decount out-of-order ACK on stream release

2024-10-09 BUG/MINOR: quic: fix discarding of already stored out-of-order ACK

2024-10-08 BUG/MEDIUM: hlua: properly handle sample func errors in hlua_run_sample_{fetch,conv}()

2024-10-08 BUG/MEDIUM: hlua: make hlua_ctx_renew() safe

2024-10-04 BUG/MINOR: stats: Fix the name for the total number of streams created

2024-10-04 BUG/MAJOR: mux-quic: do not crash on empty STREAM frame emission

2024-10-02 BUG/MINOR: quic: fix trace on releasing STREAM frame after ack

2024-10-02 BUG/MINOR: mux-quic: fix crash on qcc_init() early return

2024-10-02 BUG/MINOR: http-ana: Disable fast-fwd for unfinished req waiting for upgrade

2024-10-02 BUG/MINOR: mux-h1: Fix condition to set EOI on SE during zero-copy forwarding

2024-10-01 BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server

2024-10-01 BUG/MINOR: cfgparse-global: fix allowed args number for setenv

2024-09-30 BUG/MINOR: mcli: Pretend the mux have more data to deliver between two commands

2024-09-27 BUG/MINOR: queue: make sure that maintenance redispatches server queue

2024-09-27 BUG/MINOR: server: make sure the HMAINT state is part of MAINT

2024-09-27 BUG/MEDIUM: stream: make stream_shutdown() async-safe

2024-09-27 Revert "BUG/MINOR: server: shut down streams under thread isolation"

2024-09-25 BUG/MEDIUM: cli: Deadlock when setting frontend maxconn

2024-09-24 BUG/MEDIUM: cli: Be sure to catch immediate client abort

2024-09-21 BUG/MINOR: proxy: also make the cli and resolvers use the global name

2024-09-21 BUG/MINOR: server: shut down streams under thread isolation

2024-09-20 BUG/MINOR: cfgparse: detect another uncaught case of duplicate defaults

2024-09-18 BUG/MINOR: mux-quic: report glitches to session

2024-09-17 BUG/MINOR: cfgparse: detect incorrect overlap of same backend names

2024-09-17 BUG/MINOR: cfgparse-listen: fix option httpslog override warning message

2024-09-17 BUG/MINOR: fix missing "'option httpslog' overrides previous 'option tcplog clf'..." detection

2024-09-17 BUG/MINOR: fix missing "log-format overrides previous 'option tcplog clf'..." detection

2024-09-16 BUG/MEDIUM: promex: Wait to have the request before sending the response

2024-09-16 BUG/MEDIUM: cache/stats: Wait to have the request before sending the response

2024-09-16 BUG/MEDIUM: sc_strm/applet: Wake applet after a successfull synchronous send

2024-09-16 BUG/MINOR: peers: local entries updates may not be advertised after resync

2024-09-13 BUG/MEDIUM: queue: implement a flag to check for the dequeuing

2024-09-12 BUG/MINOR: clock: validate that now_offset still applies to the current date

2024-09-12 BUG/MINOR: clock: make time jump corrections a bit more accurate

2024-09-12 BUG/MINOR: polling: fix time reporting when using busy polling

2024-09-10 BUG/MINOR: pattern: do not leave a leading comma on "set" error messages

2024-09-09 BUG/MINOR: h1-htx: Don't flag response as bodyless when a tunnel is established

2024-09-09 BUG/MAJOR: mux-h1: Wake SC to perform 0-copy forwarding in CLOSING state

2024-09-09 BUG/MEDIUM: pattern: prevent UAF on reused pattern expr

2024-09-09 BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}

2024-09-09 BUG/MINOR: pattern: prevent const sample from being tampered in pat_match_beg()

2024-09-08 BUG/MEDIUM: clock: detect and cover jumps during execution

2024-09-06 BUG/MEDIUM: mux-h1/mux-h2: Reject upgrades with payload on H2 side only

2024-09-04 BUG/MEDIUM: clock: also update the date offset on time jumps

2024-09-03 BUG/MEDIUM: mux-pt: Fix condition to perform a shutdown for writes in mux_pt_shut()

2024-09-03 BUG/MINOR: Crash on O-RTT RX packet after dropping Initial pktns

2024-09-03 BUG/MINOR: mux-spop: always clear MUX_MFULL and DEM_MROOM when clearing the mbuf

2024-09-03 BUG/MAJOR: mux-h2: always clear MUX_MFULL and DEM_MROOM when clearing the mbuf

2024-09-03 BUG/MEDIUM: mux-h1: Properly handle empty message when an error is triggered

2024-09-03 BUG/MINOR: quic: unexploited retransmission cases for Initial pktns.

2024-09-02 BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli

2024-09-02 BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown

2024-09-02 BUG/MINOR: quic: Crash from trace dumping SSL eary data status (AWS-LC)

2024-08-30 BUG/MEDIUM: quic: always validate sender address on 0-RTT

2024-08-30 BUG/MINOR: quic: Missing incrementation in NEW_TOKEN frame builder

2024-08-30 BUG/MINIR: proxy: Match on 429 status when trying to perform a L7 retry

2024-08-28 BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready

2024-08-28 BUG/MEDIUM: mux-h2: Set ES flag when necessary on 0-copy data forwarding

2024-08-23 BUG/MINOR: haproxy: free init_env in deinit only if allocated

2024-08-20 BUG/MINOR: cfgparse-global: remove tune.fast-forward from common_kw_list

2024-08-20 BUG/MINOR: cfgparse-global: remove redundant goto

2024-08-20 BUG/MINOR: cfgparse-global: clean common_kw_list

2024-08-20 BUG/MINOR: cfgparse-global: fix err msg in mworker keyword parser

2024-08-20 BUG/MINOR: stats: add lang attribute to html tag

2024-08-20 BUG/MINOR: stats: fix color of input elements in dark mode

2024-08-13 BUG/MINOR: release-estimator: fix relative scheme in CHANGELOG URL

2024-08-13 BUG/MINOR: pattern: pat_ref_set: return 0 if err was found

2024-08-13 BUG/MINOR: pattern: pat_ref_set: fix UAF reported by coverity

2024-08-11 BUG/MINOR: tools: make fgets_from_mem() stop at the end of the input

2024-08-09 BUG/MINOR: h3: properly reject too long header responses

2024-08-09 BUG/MINOR: cfgparse: parse_cfg: fix null ptr dereference reported by coverity

2024-08-09 BUG/MINOR: proto_uxst: delete fd from fdtab if listen() fails

2024-08-09 BUG/MINOR: mux-quic: do not send too big MAX_STREAMS ID

2024-08-08 BUG/MEDIUM: mworker/cli: fix pipelined modes on master CLI

2024-08-08 BUG/MINOR: proto_tcp: keep error msg if listen() fails

2024-08-08 BUG/MINOR: proto_tcp: delete fd from fdtab if listen() fails

2024-08-07 BUG/MINOR: quic: prevent freeze after early QCS closure

2024-08-07 BUG/MINOR: quic/trace: make quic_conn_enc_level_init() emit NEW not CLOSE

2024-08-07 BUG/MINOR: trace/quic: make "qconn" selectable as a lockon criterion

2024-08-07 BUG/MINOR: trace: automatically start in waiting mode with "start "

2024-08-07 BUG/MEDIUM: trace: fix null deref in lockon mechanism since TRACE_ENABLED()

2024-08-07 BUG/MINOR: trace/quic: permit to lock on frontend/connect/session etc

2024-08-07 BUG/MINOR: trace/quic: enable conn/session pointer recovery from quic_conn

2024-08-07 BUG/MEDIUM: quic: handle retransmit for standalone FIN STREAM

2024-08-06 BUG/MEDIUM: server/addr: fix tune.events.max-events-at-once event miss and leak

2024-08-06 BUG/MINOR: fcgi-app: handle a possible strdup() failure

2024-08-05 BUG/MINOR: quic: Too short datagram during packet building failures (aws-lc only)

2024-08-02 BUG/MINOR: quic: Too shord datagram during O-RTT handshakes (aws-lc only)

2024-08-02 BUG/MEDIUM: peer: Notify the applet won't consume data when it waits for sync

2024-08-02 BUG/MEDIUM: mux-h2: Propagate term flags to SE on error in h2s_wake_one_stream

2024-08-02 BUG/MEDIUM: h2: Only report early HTX EOM for tunneled streams

2024-08-02 BUG/MEDIUM: http-ana: Report error on write error waiting for the response

2024-08-01 BUG/MINOR: h2: reject extended connect for h2c protocol

2024-08-01 BUG/MINOR: h1: do not forward h2c upgrade header token

2024-08-01 BUG/MIONR: quic: fix fc_lost

2024-08-01 BUG/MINOR: quic: fix fc_rtt/srtt values

2024-07-31 BUG/MEDIUM: quic: prevent conn freeze on 0RTT undeciphered content

2024-07-30 BUG/MEDIUM: ssl: 0-RTT initialized at the wrong place for AWS-LC

2024-07-30 BUG/MEDIUM: ssl: reactivate 0-RTT for AWS-LC

2024-07-30 BUG/MINOR: stconn: bs.id and fs.id had their dependencies incorrect

2024-07-30 BUG/MEDIUM: mux-pt/mux-h1: Release the pipe on connection error on sending path

2024-07-30 BUG/MEDIUM: stconn: Report error on SC on send if a previous SE error was set

2024-07-29 BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()

2024-07-26 BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature

2024-07-26 BUG/MEDIUM: quic: fix invalid conn reject with CONNECTION_REFUSED

2024-07-24 BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)

2024-07-24 BUG/MEDIUM: sink: properly init applet under sft lock

2024-07-19 BUG/MINOR: quic: Non optimal first datagram.

2024-07-18 BUG/MINOR: cli: Atomically inc the global request counter between CLI commands

2024-07-18 BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution

2024-07-18 BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter

2024-07-18 BUG/MEDIUM: startup: fix zero-warning mode

2024-07-17 BUG/MAJOR: mux-h2: force a hard error upon short read with pending error

2024-07-17 BUG/MEDIUM: ssl_sock: fix deadlock in ssl_sock_load_ocsp() on error path

2024-07-16 BUG/MEDIUM: debug/cli: fix "show threads" crashing with low thread counts

2024-07-16 BUG/MINOR: do not close uninit FD in quic_test_socketops()

2024-07-12 BUG/MINOR: session: Eval L4/L5 rules defined in the default section

2024-07-11 BUG/MINOR: limits: fix license type in limits.h

2024-07-11 BUG/MEDIUM: bwlim: Be sure to never set the analyze expiration date in past

2024-07-10 BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread

2024-07-10 BUG/MEDIUM: h1: Reject empty Transfer-encoding header

2024-07-10 BUG/MINOR: h1: Reject empty coding name as last transfer-encoding value

2024-07-10 BUG/MINOR: h1: Fail to parse empty transfer coding names

2024-07-08 BUG/MINOR: jwt: fix variable initialisation

2024-07-08 BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn

2024-07-05 BUG/MEDIUM: peers: Fix crash when syncing learn state of a peer without appctx

2024-07-04 BUG/MEDIUM: quic: prevent crash on accept queue full

2024-07-03 MINOR: quic: add 2 BUG_ON() on datagram dispatch

2024-07-03 BUG/MINOR: jwt: don't try to load files with HMAC algorithm

2024-07-03 BUG/MEDIUM: server: fix race on server_atomic_sync()

2024-07-02 BUG/MEDIUM: hlua/cli: Fix lua CLI commands to work with applet's buffers

2024-07-01 BUG/MINOR: promex: Remove Help prefix repeated twice for each metric

2024-07-01 BUG/MEDIUM: quic: fix possible exit from qc_check_dcid() without unlocking

2024-07-01 BUG/MINOR: quic: Wrong datagram building when probing.

2024-06-28 BUG/MINOR: quic: fix race-condition on trace for CID retrieval

2024-06-28 BUG/MINOR: quic: fix race condition in qc_check_dcid()

2024-06-28 BUG/MEDIUM: quic: fix race-condition in quic_get_cid_tid()

2024-06-28 BUG/MEDIUM: h3: ensure the ":scheme" pseudo header is totally valid

2024-06-28 BUG/MEDIUM: h3: ensure the ":method" pseudo header is totally valid

2024-06-28 BUG/MEDIUM: server/dns: prevent DOWN/UP flap upon resolution timeout or error

2024-06-27 BUG/MINOR: server: fix first server template name lookup UAF

2024-06-26 BUG/MEDIUM: stick-table: Decrement the ref count inside lock to kill a session

2024-06-26 BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()

2024-06-24 BUG/MINOR: quic: fix BUG_ON() on Tx pkt alloc failure

2024-06-24 BUG/MINOR: h3: fix BUG_ON() crash on control stream alloc failure

2024-06-24 BUG/MINOR: mux-quic: fix crash on qcs SD alloc failure

2024-06-24 BUG/MINOR: h3: fix crash on STOP_SENDING receive after GOAWAY emission

2024-06-19 BUG/MAJOR: quic: do not loop on emission on closing/draining state

2024-06-19 BUG/MAJOR: quic: fix padding with short packets

2024-06-17 BUG/MINOR: proxy: fix email-alert leak on deinit() (2nd try)

2024-06-17 BUG/MEDIUM: proxy: fix email-alert invalid free

2024-06-17 BUG/MEDIUM: ssl: AWS-LC + TLSv1.3 won't do ECDSA in RSA+ECDSA configuration

2024-06-14 DEBUG: hlua: distinguish burst timeout errors from exec timeout errors

2024-06-14 BUG/MINOR: log: fix broken '+bin' logformat node option

2024-06-12 BUG/MINOR: quic: fix padding of INITIAL packets

2024-06-12 BUG/MAJOR: mux-h1: Prevent any UAF on H1 connection after draining a request

2024-06-12 BUG/MINOR: promex: Skip resolvers metrics when there is no resolver section

2024-06-11 BUG/MEDIUM: log: fix lf_expr_postcheck() behavior with default section

2024-06-11 BUG/MEDIUM: proxy: fix UAF with {tcp,http}checks logformat expressions

2024-06-11 BUG/MINOR: proxy: fix header_unique_id leak on deinit()

2024-06-11 BUG/MINOR: proxy: fix source interface and usesrc leaks on deinit()

2024-06-11 BUG/MINOR: proxy: fix dyncookie_key leak on deinit()

2024-06-11 BUG/MINOR: proxy: fix check_{command,path} leak on deinit()

2024-06-11 BUG/MINOR: proxy: fix email-alert leak on deinit()

2024-06-11 BUG/MINOR: proxy: fix log_tag leak on deinit()

2024-06-11 BUG/MINOR: proxy: fix server_id_hdr_name leak on deinit()

2024-06-10 BUG/MINOR: mux-h1: Use the right variable to set NEGO_FF_FL_EXACT_SIZE flag

2024-06-10 BUG/MAJOR: mux-h1: Properly copy chunked input data during zero-copy nego

2024-06-10 BUG/MEDIUM: stconn/mux-h1: Fix suspect change causing timeouts

2024-06-10 BUG/MINOR: quic: ensure Tx buf is always purged

2024-06-10 BUG/MINOR: quic: fix computed length of emitted STREAM frames

2024-06-07 BUG/MEDIUM: ssl: bad auth selection with TLS1.2 and WolfSSL

2024-06-05 BUG/MEDIUM: ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration

2024-06-05 BUG/MEDIUM: mux-quic: Don't unblock zero-copy fwding if blocked during nego

2024-06-04 BUG/MINOR: hlua: fix leak in hlua_ckch_set() error path

2024-06-04 BUG/MINOR: hlua: prevent LJMP in hlua_traceback()

2024-06-04 BUG/MINOR: hlua: fix unsafe hlua_pusherror() usage

2024-06-04 BUG/MINOR: hlua: don't use lua_pushfstring() when we don't expect LJMP

2024-06-04 BUG/MINOR: quic: prevent crash on qc_kill_conn()

2024-06-04 BUG/MEDIUM: mux-quic: Unblock zero-copy forwarding if the txbuf can be released

2024-06-04 BUG/MEDIUM: h1-htx: Don't state interim responses are bodyless

2024-06-03 BUG/MINOR: hlua: use CertCache.set() from various hlua contexts

2024-05-31 BUG/MINOR: tools: fix possible null-deref in env_expand() on out-of-memory

2024-05-31 BUG/MINOR: tcpcheck: report correct error in tcp-check rule parser

2024-05-31 BUG/MINOR: cfgparse: remove the correct option on httpcheck send-state warning

2024-05-28 BUG/MINOR: activity: fix Delta_calls and Delta_bytes count

2024-05-28 BUG/MINOR: ssl/ocsp: init callback func ptr as NULL

2024-05-24 BUG/MINOR: server: Don't reset resolver options on a new default-server line

2024-05-24 BUG/MINOR: http-htx: Support default path during scheme based normalization

2024-05-24 BUG/MEDIUM: server/dns: preserve server's port upon resolution timeout or error

2024-05-24 BUG/MINOR: rhttp: initialize session origin after preconnect reversal

2024-05-24 BUG/MINOR: quic: adjust restriction for stateless reset emission

2024-05-24 DEBUG: pollers/fd: add thread id suffix to per-thread memory areas name hints

2024-05-24 DEBUG: tools: add vma_set_name_id() helper

2024-05-24 BUG/MEDIUM: stick-tables: make sure never to create two same remote entries

2024-05-24 BUG/MEDIUM: stick-tables: Fix race with peers when killing a sticky session

2024-05-24 BUG/MEDIUM: stick-tables: Fix race with peers when trashing oldest entries

2024-05-23 BUG/MEDIUM: mux-quic: Create sedesc in same time of the QUIC stream

2024-05-22 BUG/MEDIUM: quic_tls: prevent LibreSSL < 4.0 from negotiating CHACHA20_POLY1305

2024-05-22 BUG/MAJOR: quic: Crash with TLS_AES_128_CCM_SHA256 (libressl only)

2024-05-22 BUG/MINOR: sock: fix sock_create_server_socket

2024-05-22 BUG/MINOR: rhttp: fix task_wakeup state

2024-05-22 BUG/MINOR: rhttp: prevent listener suspend

2024-05-22 BUG/MEDIUM: rhttp: fix preconnect on single-thread

2024-05-22 BUG/MINOR: server: free PROXY v2 TLVs on srv drop

2024-05-22 BUG/MINOR: connection: parse PROXY TLV for LOCAL mode

2024-05-22 BUG/MINOR: http-ana: Don't crush stream termination condition on internal error

2024-05-21 BUG/MEDIUM: proto: fix fd leak in _connect_server

2024-05-21 DEBUG: fd: add name hint for large memory areas

2024-05-21 DEBUG: errors: add name hint for startup-logs memory area

2024-05-21 DEBUG: pollers: add name hint for large memory areas used by pollers

2024-05-21 DEBUG: sink: add name hint for memory area used by memory-backed sinks

2024-05-21 DEBUG: shctx: name shared memory using vma_set_name()

2024-05-21 DEBUG: tools: add vma_set_name() helper

2024-05-21 BUG/MINOR: ring: free ring's allocated area not ring's usable area when using maps

2024-05-17 BUG/MINOR: stats: Don't state the 303 redirect response is chunked

2024-05-17 BUG/MEDIUM: fd: prevent memory waste in fdtab array

2024-05-15 BUG/MAJOR: h1: Be stricter on request target validation during message parsing

2024-05-15 BUG/MEDIUM: h1: Reject CONNECT request if the target has a scheme

2024-05-15 BUG/MINOR: h1: Check authority for non-CONNECT methods only if a scheme is found

2024-05-15 BUG/MEDIUM: muxes: enforce buf_wait check in takeover()

2024-05-15 BUG/MINOR: ssl_sock: fix xprt_set_used() to properly clear the TASK_F_USR1 bit

2024-05-15 BUG/MEDIUM: stick-tables: properly mark stktable_data as packed

2024-05-15 BUG/MEDIUM: htx: mark htx_sl as packed since it may be realigned

2024-05-15 BUG/MINOR: qpack: fix error code reported on QPACK decoding failure

2024-05-15 BUG/MINOR: mux-quic: fix error code on shutdown for non HTTP/3

2024-05-15 BUG/MEDIUM: server: clear purgeable conns before server deletion

2024-05-14 BUG/MINOR: log: smp_rgs array issues with inherited global log directives

2024-05-13 BUG/MINOR: log: fix leak in add_sample_to_logformat_list() error path

2024-05-10 BUG/MEDIUM: mux-quic: fix crash on STOP_SENDING received without SD

2024-05-07 BUG/MEDIUM: log/ring: broken syslog octet counting

2024-05-06 BUG/MINOR: cfgparse: use curproxy global var from config post validation

2024-05-06 BUG/MINOR: acl: support built-in ACLs with acl() sample

2024-05-06 BUG/MINOR: haproxy: only tid 0 must not sleep if got signal

2024-05-03 BUG/MINOR: log: prevent double spaces emission in sess_build_logline()

2024-04-30 BUG/MINOR: stconn: don't wake up an applet waiting on buffer allocation

2024-04-30 BUG/MEDIUM: log: don't ignore disabled node's options

2024-04-30 BUG/MINOR: log: fix global lf_expr node options behavior (2nd try)

2024-04-30 BUG/MINOR: log/encode: fix potential NULL-dereference in LOGCHAR()

2024-04-30 BUG/MINOR: log/encode: consider global options for key encoding

2024-04-29 BUG/MINOR: log: fix global lf_expr node options behavior

2024-04-29 BUG/MINOR: stats: replace objt_* by __objt_* macros

2024-04-29 BUG/MEDIUM: cache: Vary not working properly on anything other than accept-encoding

2024-04-26 BUG/MINOR: mworker: reintroduce way to disable seamless reload with -x /dev/null

2024-04-25 BUG/MINOR: peers: Don't wait for a remote resync if there no remote peer

2024-04-25 BUG/MEDIUM: peers: Use atomic operations on peers flags when necessary

2024-04-25 BUG/MEDIUM: peers: Wait for sync task ack when a resynchro is finished

2024-04-25 BUG/MEDIUM: peers: Reprocess peer state after all session shutdowns

2024-04-25 BUG/MEDIUM: peers: Automatically start to learn on local peer

2024-04-24 BUG/MINOR: h1: fix detection of upper bytes in the URI

2024-04-23 BUG/MEDIUM: applet: Let's applets decide if they have more data to deliver

2024-04-22 BUG/MINOR: stats: fix stot metric for listeners

2024-04-22 BUG/MINOR: backend: use cum_sess counters instead of cum_conn

2024-04-19 BUG/MEDIUM: peers: Fix state transitions of a peer

2024-04-19 BUG/MEDIUM: peers: Don't set PEERS_F_RESYNC_PROCESS flag on a peer

2024-04-19 BUG/MINOR: fd: my_closefrom() on Linux could skip contiguous series of sockets

2024-04-19 BUG/MINOR: sock: handle a weird condition with connect()

2024-04-19 BUG/MINOR: stconn: Fix sc_mux_strm() return value

2024-04-18 BUG/MEDIUM: peers: fix localpeer regression with 'bind+server' config style

2024-04-18 BUG/MEDIUM: peers: Fix exit condition when max-updates-at-once is reached

2024-04-18 BUG/MEDIUM: spoe: Always retry when an applet fails to send a frame

2024-04-18 BUG/MEDIUM: applet: Fix applet API to put input data in a buffer

2024-04-17 BUG/MINOR: ssl: fix crt-store load parsing

2024-04-17 BUG/MINOR: ssl: check on forbidden character on wrong value

2024-04-17 BUG/MEDIUM: evports: do not clear returned events list on signal

2024-04-16 BUG/MEDIUM: stconn: Don't forward channel data if input data must be filtered

2024-04-16 BUG/MAJOR: peers: Update peers section state from a thread-safe manner

2024-04-16 BUG/MINOR: peers: Report a resync was explicitly requested from a thread-safe manner

2024-04-16 BUG/MEDIUM: grpc: Fix several unaligned 32/64 bits accesses

2024-04-15 BUG/MAJOR: ring: use the correct size to reallocate startup_logs

2024-04-13 BUG/MINOR: lru: fix the standalone test case for invalid revision

2024-04-12 DEBUG: pools: report the data around the offending area in case of mismatch

2024-04-12 DEBUG: pool: improve decoding of corrupted pools

2024-04-12 BUG/MAJOR: stick-tables: fix race with peers in entry expiration

2024-04-12 BUG/MEDIUM: peers/trace: fix crash when listing event types

2024-04-12 BUG/MEDIUM: stick-tables: fix the task's next expiration date

2024-04-12 BUG/MEDIUM: cache/stats: Handle inbuf allocation failure in the I/O handler

2024-04-11 BUG/MINOR: server: fix slowstart behavior

2024-04-11 BUILD: makefile: also drop DEBUG_CFLAGS

2024-04-11 CI: update the build options to get rid of unneeded DEBUG options

2024-04-11 BUILD: pools: make DEBUG_MEMORY_POOLS=1 the default option

2024-04-11 BUILD: debug: make DEBUG_STRICT=1 the default

2024-04-11 BUG/MINOR: debug: make sure DEBUG_STRICT=0 does work as documented

2024-04-11 BUG/MINOR: guid: fix crash on invalid guid name

2024-04-10 BUG/MINOR: http-ana: Fix TX_L7_RETRY and TX_D_L7_RETRY values

2024-04-10 BUG/MEDIUM: http-ana: Deliver 502 on keep-alive for fressh server connection

2024-04-09 BUG/MINOR: log: invalid snprintf() usage in sess_build_logline()

2024-04-09 BUG/MINOR: tools/log: invalid encode_{chunk,string} usage

2024-04-09 BUG/MINOR: log: fix lf_text_len() truncate inconsistency

2024-04-09 BUG/MINOR: listener: always assign distinct IDs to shards

2024-04-08 BUG/MINOR: cli: Don't warn about a too big command for incomplete commands

2024-04-06 BUG/MEDIUM: quic: don't blindly rely on unaligned accesses

2024-04-05 BUG/MINOR: init: relax LSTCHK_NETADM checks for non root

Date	Subject
2025-04-22	BUG/MEDIUM: mux-spop: Respect the negociated max-frame-size value to send frames
2025-04-18	BUG/MINOR: proxy: always detach a proxy from the names tree on free()
2025-04-18	BUG/MINOR: quic: do not crash on CRYPTO ncbuf alloc failure
2025-04-17	BUG/MINOR: debug: detect and prevent re-entrance in ha_thread_dump_fill()
2025-04-17	BUG/MINOR: wdt/debug: avoid signal re-entrance between debugger and watchdog
2025-04-17	BUG/MINOR debug: fix !USE_THREAD_DUMP in ha_thread_dump_fill()
2025-04-17	BUG/MINOR: threads: set threads_idle and threads_harmless even with no threads
2025-04-17	BUG/MINOR: mux-h2: do not apply timer on idle backend connection
2025-04-17	BUG/MINOR: rhttp: ensure GOAWAY can be emitted after reversal
2025-04-17	BUG/MINOR: rhttp: fix reconnect if timeout connect unset
2025-04-17	BUG/MINOR: mux-h2: prevent past scheduling with idle connections
2025-04-17	BUG/MEDIUM: hlua: fix hlua_applet_{http,tcp}_fct() yield regression (lost data)
2025-04-16	BUG/MINOR: h3: reject request URI with invalid characters
2025-04-16	BUG/MINOR: h3: reject invalid :path in request
2025-04-16	BUG/MINOR: h3: filter upgrade connection header
2025-04-16	BUG/MEDIUM: h3: trim whitespaces in header value prior to QPACK encoding
2025-04-16	BUG/MEDIUM: h3: trim whitespaces when parsing headers value
2025-04-16	BUG/MINOR: acme/cli: fix certificate name in error message
2025-04-16	BUG/MINOR: acme: fix the exponential backoff of retries
2025-04-16	BUG/MINOR: acme: key not restored upon error in acme_res_certificate() V2
2025-04-16	Revert "BUG/MINOR: acme: key not restored upon error in acme_res_certificate()"
2025-04-15	BUG/MEDIUM: http-ana: Report 502 from req analyzer only during rsp forwarding
2025-04-15	BUG/MINOR: http-ana: Properly detect client abort when forwarding the response
2025-04-15	BUILD: incompatible pointer type suspected with -DDEBUG_UNIT
2025-04-15	BUG/MINOR: acme: fix possible NULL deref
2025-04-14	DEBUG: counters: add the ability to enable/disable updating the COUNT_IF counters
2025-04-14	DEBUG: counters: make COUNT_IF() only appear at DEBUG_COUNTERS>=1
2025-04-14	DEBUG: rename DEBUG_GLITCHES to DEBUG_COUNTERS and enable it by default
2025-04-14	DEBUG: init: report invalid characters in debug description strings
2025-04-14	BUG/MINOR: debug: remove the trailing \n from BUG_ON() statements
2025-04-14	BUG/MINOR: thread: protect thread_cpus_enabled_at_boot with USE_THREAD
2025-04-14	BUG/MINOR: acme: key not restored upon error in acme_res_certificate()
2025-04-12	BUG/MINOR: cpu-topo: check the correct variable for NULL after malloc()
2025-04-12	BUG/MINOR: acme: ckch_conf_acme_init() when no filename
2025-04-10	BUG/MINOR: hlua: fix invalid errmsg use in hlua_init()
2025-04-09	BUG/MINOR: backend: do not use the source port when hashing clientip
2025-04-07	BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refs
2025-04-07	BUG/MINOR: log: fix CBOR encoding with LOG_VARTEXT_START() + lf_encode_chunk()
2025-04-03	BUG/MINOR: hlua_fcn: fix potential UAF with Queue:pop_wait()
2025-04-03	BUG/MINOR: server: ensure check-reuse-pool is copied from default-server
2025-04-03	BUG/MEDIUM: peers: prevent learning expiration too far in futur from unsync node
2025-04-03	BUG/MINOR: peers: fix expire learned from a peer not converted from ms to ticks
2025-04-03	BUG/MEDIUM: stream: Fix a possible freeze during a forced shut on a stream
2025-04-02	BUG/MEDIUM: backend: fix reuse with set-dst/set-dst-port
2025-04-02	BUG/MINOR: backend: do not overwrite srv dst address on reuse
2025-04-02	BUG/MINOR: rhttp: fix incorrect dst/dst_port values
2025-04-02	BUG/MEDIUM: leastconn: Don't try to reposition if the server is down
2025-04-02	BUG/MINOR: ssl/ckch: leak in error path
2025-04-01	BUG/MINOR: config: silence .notice/.warning/.alert in discovery mode
2025-03-27	BUG/MINOR: log: fix gcc warn about truncating NUL terminator while init char arrays
2025-03-20	BUG/MINOR: mux-quic: remove extra BUG_ON() in _qcc_send_stream()
2025-03-20	BUG/MEDIUM: mux-quic: fix crash on RS/SS emission if already close local
2025-03-20	BUG/MINOR: mux-h2: Reset streams with NO_ERROR code if full response was already sent
2025-03-19	BUG/MEDIUM: hlua/cli: fix cli applet UAF in hlua_applet_wakeup()
2025-03-18	BUG/MINOR: limits: compute_ideal_maxconn: don't cap remain if fd_hard_limit=0
2025-03-18	BUG/MINOR: hlua: fix optional timeout argument index for AppletTCP:receive()
2025-03-18	BUG/MINOR: log: prevent saddr NULL deref in syslog_io_handler()
2025-03-13	BUG/MINOR: stats: fix capabilities and hide settings for some generic metrics
2025-03-12	BUG/MEDIUM: thread: use pthread_self() not ha_pthread[tid] in set_affinity
2025-03-07	BUG/MINOR: cfgparse-tcp: relax namespace bind check
2025-03-07	BUG/MINOR: stream: fix age calculation in "show sess" output
2025-03-07	BUG/MINOR: server: dont return immediately from parse_server() when skipping checks
2025-03-06	BUG/MINOR: cfgparse/peers: properly handle ignored local peer case
2025-03-06	BUG/MINOR: cfgparse/peers: fix inconsistent check for missing peer server
2025-03-06	BUG/MEIDUM: startup: return to initial cwd only after check_config_validity()
2025-03-05	BUG/MINOR: log: set proper smp size for balance log-hash
2025-03-04	DEBUG: init: Add a macro to register unit tests
2025-03-03	DEBUG: init: add a way to register functions for unit tests
2025-03-03	BUG/MINOR: server: check for either proxy-protocol v1 or v2 to send hedaer
2025-02-28	BUG/MINOR: hq-interop: fix leak in case of rcv_buf early return
2025-02-28	BUG/MEDIUM: mux-fcgi: Try to fully fill demux buffer on receive if not empty
2025-02-27	BUG/MINOR: h3: do not report transfer as aborted on preemptive response
2025-02-27	BUG/MINOR: server: fix the "server-template" prefix memory leak
2025-02-27	BUG/MEDIUM: server: properly initialize PROXY v2 TLVs
2025-02-24	BUG/MEDIUM: stream: don't use localtime in dumps from a signal handler
2025-02-24	BUG/MINOR: h2: always trim leading and trailing LWS in header values
2025-02-21	BUG/MEDIUM: stream: use non-blocking freq_ctr calls from the stream dumper
2025-02-21	BUG/MEDIUM: stream: never allocate connection addresses from signal handler
2025-02-21	BUG/MINOR: mux-h1: always make sure h1s->sd exists in h1_dump_h1s_info()
2025-02-21	BUG/MINOR: stream: do not call co_data() from __strm_dump_to_buffer()
2025-02-21	BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers
2025-02-21	BUG/MINOR: log: fix outgoing abns address family
2025-02-21	BUG/MEDIUM: uxst: fix outgoing abns address family in connect()
2025-02-20	BUG/MINOR: cfgparse: fix NULL ptr dereference in cfg_parse_peers
2025-02-20	BUG/MEDIUM: spoe/mux-spop: Introduce an NOOP action to deal with empty ACK
2025-02-20	BUG/MEDIUM: applet: Don't handle EOI/EOS/ERROR is applet is waiting for room
2025-02-18	BUG/MINOR: mux-h2: Properly handle full or truncated HTX messages on shut
2025-02-18	BUG/MINOR: mux-quic: prevent crash after MUX init failure
2025-02-18	BUG/MINOR: quic: prevent crash on conn access after MUX init failure
2025-02-17	BUG/MINOR: fcgi: Don't set the status to 302 if it is already set
2025-02-17	BUG/MEDIUM: filters: Handle filters registered on data with no payload callback
2025-02-17	BUG/MINOR: cli: Wait for the last ACK when FDs are xferred from the old worker
2025-02-17	BUG/MEDIUM: cli: Be sure to drop all input data in END state
2025-02-17	BUG/MINOR: startup: hap_register_feature() fix for partial feature name
2025-02-17	BUG/MINOR: startup: leave at first post_section_parser which fails
2025-02-12	BUG/MINOR: ssl/cli: "show ssl crt-list" lacks sigals
2025-02-12	BUG/MINOR: ssl/cli: "show ssl crt-list" lacks client-sigals
2025-02-12	BUG/MEDIUM: fd: mark FD transferred to another process as FD_CLONED
2025-02-12	BUG/MINOR: mworker: post_section_parser for the last section in discovery
2025-02-12	BUG/MINOR: mworker: section ignored in discovery after a post_section_parser
2025-02-12	BUG/MINOR: quic: fix CRYPTO payload size calcul for encoding
2025-02-12	BUG/MINOR: quic: reserve length field for long header encoding
2025-02-10	DEBUG: thread: reduce the struct lock_stat to store only 30 buckets
2025-02-10	DEBUG: thread: make lock_stat per operation instead of for all operations
2025-02-10	DEBUG: thread: don't keep the redundant _locked counter
2025-02-10	DEBUG: thread: report the wait time buckets for lock classes
2025-02-10	DEBUG: thread: make lock time computation more consistent
2025-02-10	DEBUG: thread: report the spin lock counters as seek locks
2025-02-10	BUG/MEDIUM: debug: close a possible race between thread dump and panic()
2025-02-07	BUG/MEDIUM: ssl: chosing correct certificate using RSA-PSS with TLSv1.3
2025-02-07	BUG/MINOR: debug: make sure the "debug dev sched" tasks don't block stopping
2025-02-07	BUG/MINOR: debug: make "debug dev sched" accept a negative TID
2025-02-06	BUG/MINOR: stats-json: Define JSON_INT_MAX as a signed integer
2025-02-06	BUG/MINOR: flt-trace: Support only one name option
2025-02-06	BUG/MINOR: auth: Fix a leak on error path when parsing user's groups
2025-02-06	BUG/MINOR: config/userlist: Support one 'users' option for 'group' directive
2025-02-06	BUG/MINOR: cli: Fix a possible infinite loop in _getsocks()
2025-02-06	BUG/MINOR: cli: Fix memory leak on error for _getsocks command
2025-02-06	BUG/MINOR: cli: Don't set SE flags from the cli applet
2025-02-06	BUG/MEDIUM: mux-fcgi: Propagate flags to SE in fcgi_strm_wake_one_stream
2025-02-06	BUG/MEDIUM: flt-spoe: Properly handle end of stream from the SPOE applet
2025-02-06	BUG/MEDIUM: applet: Don't pretend to have more data to handle EOI/EOS/ERROR
2025-02-06	BUG/MEDIUM: flt-spoe: Set/test applet flags instead of SE flags from I/O handler
2025-02-06	BUG/MINOR: tevt/mux-h2: Set truncated receive/eos events at SE level on error
2025-02-03	BUG/MINOR: http-check: Don't pretend a C-L heeader is set before adding it
2025-02-03	BUG/MINOR: tcp-rules: Don't forward close during tcp-response content rules eval
2025-02-03	DEBUG: mux-h1: Remove some debug counters
2025-02-03	DEBUG: http-ana: Remove debug counters from HTTP analyzers
2025-02-03	BUG/MINOR: tevt/http-ana: Remove badly placed event reports
2025-02-03	BUG/MEDIUM: mux-fcgi: Properly handle read0 on partial records
2025-01-31	BUG/MEDIUM: htx: wrong count computation in htx_xfer_blks()
2025-01-31	BUG/MINOR: mux-h1: Only report a SE error on demux error
2025-01-30	DEBUG: epoll: store and compare the FD's generation count with reported event
2025-01-30	DEBUG: fd: add a counter of takeovers of an FD since it was last opened
2025-01-29	BUG/MEDIUM: chunk: make sure to flush the trash pool before resizing
2025-01-28	BUG/MINOR: stream: Properly handle "on-marked-up shutdown-backup-sessions"
2025-01-24	BUG/MINOR: ssl: put ssl_sock_load_ca under SSL_NO_GENERATE_CERTIFICATES
2025-01-23	BUG/MINOR: quic: do not increase congestion window if app limited
2025-01-23	BUG/MEDIUM: mux-h1: Properly close H1C if an error is reported before sending data
2025-01-21	MINOR: quic: Add a BUG_ON() on quic_tx_packet refcount
2025-01-21	BUG/MINOR: quic: ensure a detached coalesced packet can't access its neighbours
2025-01-20	BUG/MINOR: init: set HAPROXY_STARTUP_VERSION from the variable, not the macro
2025-01-20	BUG/MAJOR: log/sink: possible sink collision in sink_new_from_srv()
2025-01-20	BUG/MAJOR: quic: reject too large CRYPTO frames
2025-01-14	BUG/MEDIUM: promex: Use right context pointers to dump backends extra-counters
2025-01-14	BUG/MEDIUM: stktable: fix missing lock on some table converters
2025-01-10	BUG/MINOR: quic: reject NEW_TOKEN frames from clients
2025-01-09	BUG/MEDIUM: queues: Adjust the proxy counters when appropriate
2025-01-09	BUG/MINOR: stktable: fix big-endian compatiblity in smp_to_stkey()
2025-01-08	BUG/MEDIUM: h1-htx: Properly handle bodyless messages
2025-01-07	BUG/MAJOR: ssl/ocsp: fix NULL conn object dereferencing to access QUIC TLS counters
2025-01-06	BUG/MEDIUM: promex/resolvers: Don't dump metrics if no nameserver is defined
2025-01-03	BUG/MINOR: mux-quic: handle closure of uni-stream
2025-01-03	BUG/MINOR: mux-quic: fix wakeup on qcc_set_error()
2025-01-03	BUG/MINOR: log: Allow to use if/unless conditionnals for do-log action
2025-01-02	BUG/MINOR: cfgparse-tcp: handle a possible strdup() failure
2025-01-02	BUG/MINOR: pool: handle a possible strdup() failure
2025-01-02	BUG/MINOR: compression: handle a possible strdup() failure
2025-01-02	BUG/MEDIUM: mux-quic: do not attach on already closed stream
2025-01-02	BUG/MAJOR: mux-quic: properly fix BUG_ON on empty STREAM emission
2025-01-02	Revert "BUG/MAJOR: mux-quic: fix BUG_ON on empty STREAM emission"
2025-01-02	BUG/MEDIUM: mux-h2: Count copied data when looping on RX bufs in h2_rcv_buf()
2024-12-31	BUG/MAJOR: mux-quic: fix BUG_ON on empty STREAM emission
2024-12-31	BUG/MINOR: stktable: invalid use of stkctr_set_entry() with mixed table types
2024-12-25	BUG/MINOR: debug: handle a possible strdup() failure
2024-12-25	BUG/MINOR: mux_h1: handle a possible strdup() failure
2024-12-25	BUG/MINOR: listener: handle a possible strdup() failure
2024-12-25	BUG/MINOR: checks: handle a possible strdup() failure
2024-12-24	BUG/MEDIUM: queues: Stricly respect maxconn for outgoing connections
2024-12-23	BUG/MINOR: stats: fix segfault caused by uninitialized value in "show schema json"
2024-12-23	BUG/MEDIUM: queue: Make process_srv_queue return the number of streams
2024-12-19	BUG/MINOR: h2/rhttp: fix HTTP2 conn counters on reverse
2024-12-19	BUG/MEDIUM: mux-quic: prevent BUG_ON() by refreshing frms on MAX_DATA
2024-12-18	BUG/MEDIUM: mux-quic: do not mix qcc_io_send() return codes with pacing
2024-12-17	MINOR: bug: make BUG_ON() fall back to ASSUME
2024-12-17	BUG/MEDIUM: queues: Do not use pendconn_grab_from_px().
2024-12-17	BUG/MEDIUM: queues: Make sure we call process_srv_queue() when leaving
2024-12-16	BUG/MEDIUM: stconn: Only consider I/O timers to update stream's expiration date
2024-12-16	BUG/MINOR: ssl/cli: 'show ssl ca-file' escape the first '*' of a filename
2024-12-16	BUG/MINOR: ssl/cli: 'show ssl crl-file' escape the first '*' of a filename
2024-12-16	BUG/MINOR: ssl/cli: 'show ssl cert' escape the first '*' of a filename
2024-12-13	BUG/MINOR: quic: missing Startup accelerating probing bw states
2024-12-13	BUG/MINOR: cli: cli_snd_buf: preserve \r\n for payload lines
2024-12-13	BUG/MINOR: quic: too permissive exit condition for high loss detection in Startup (BBR)
2024-12-13	BUG/MINOR: quic: fix the wrong tracked recovery start time value
2024-12-13	BUG/MINOR: quic: reduce packet losses at least during ProbeBW_CRUISE (BBR)
2024-12-13	BUG/MINOR: quic: underflow issue for bbr_inflight_hi_from_lost_packet()
2024-12-13	BUG/MINOR: quic: remove max_bw filter from delivery rate sampling
2024-12-13	BUG/MINOR: quic: wrong bbr_target_inflight() implementation
2024-12-13	BUG/MINOR: quic: fix BBB max bandwidth oscillation issue.
2024-12-13	BUG/MINOR: quic: wrong logical statement in in_recovery_period() (BBR)
2024-12-12	MINOR: build: define DEBUG_STRESS
2024-12-11	BUG/MINOR: hlua_fcn: restore server pairs iterator pointer consistency
2024-12-11	BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks
2024-12-11	BUG/MINOR: http-fetch: Ignore empty argument string for query()
2024-12-10	BUG/MEDIUM: stats/server: use watcher to track server during stats dump
2024-12-10	BUG/MINOR: stats: decrement srv refcount on stats-file release
2024-12-10	BUG/MINOR: resolvers: handle a possible strdup() failure
2024-12-10	BUG/MINOR: ssl_crtlist: handle a possible strdup() failure
2024-12-10	BUG/MINOR: namespace: handle a possible strdup() failure
2024-12-09	BUG/MINOR: mworker: detach from tty when received READY from worker
2024-12-09	BUG/MEDIUM: mworker: report status, if daemonized master fails
2024-12-09	BUG/MEDIUM: startup: report status if daemonized process fails
2024-12-09	BUG/MEDIUM: startup: don't daemonize if started with -c
2024-12-06	BUG/MINOR: mux-h2: fix expression when detecting excess of CONTINUATION frames
2024-12-06	BUG/MINOR: debug: COUNT_IF() should return true/false
2024-12-06	BUG/MINOR: startup: fix error path for master, if can't open pidfile
2024-12-06	BUG/MINOR: mworker: fix -D -W -sf/-st modes
2024-12-06	BUG/MINOR: mworker: don't save program PIDs in oldpids
2024-12-05	BUG/MINOR: config: Fix parsing of accept-invalid-http-{request,response}
2024-12-05	BUG/MEDIUM: mux-h2: make sure not to touch dummy streams when sending WU
2024-12-05	BUG/MINOR: quic: remove startup alert if GSO unsupported
2024-12-05	BUG/MINOR: quic: remove startup alert if conn socket-owner unsupported
2024-12-05	BUG/MEDIUM: mux-quic: remove pacing status when everything is sent
2024-12-04	BUG/MINOR: init: do not call fork_poller() for non-forked processes
2024-12-04	BUG/MEDIUM: init: make sure only daemonized processes change their session
2024-12-04	BUG/MINOR: quic: fix bbr_inflight() calls with wrong gain value
2024-12-02	BUG/MINOR: startup: fix pidfile creation
2024-12-02	BUG/MINOR: startup: close pidfd and free global.pidfile in handle_pidfile()
2024-12-02	BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2024-12-02	BUG/MINOR: listener: fix potential null pointer dereference in listener_release()
2024-11-29	BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2024-11-29	BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2024-11-29	BUG/MEDIUM: quic: prevent stream freeze on pacing
2024-11-29	BUG/MEDIUM: event_hdl: fix uninitialized value in async mode when no data is provided
2024-11-29	BUG/MINOR: hlua_fcn: fix Patref:set() force parameter
2024-11-28	BUG/MINOR: improve BBR throughput on very fast links
2024-11-28	BUG/MINOR: log: fix lf_text() behavior with empty string
2024-11-27	BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set
2024-11-26	BUG/MEDIUM: quic: prevent EMSGSIZE with GSO for larger bufsize
2024-11-25	BUG/MEDIUM: http-ana: Don't release too early the L7 buffer
2024-11-25	BUG/MAJOR: quic: fix wrong packet building due to already acked frames
2024-11-25	BUG/MEDIUM: quic: fix sending performance due to qc_prep_pkts() return
2024-11-25	BUG/MINOR: mux-quic: fix show quic report of QCS prepared bytes
2024-11-22	BUG/MINOR: quic: Avoid BUG_ON() on ->on_pkt_lost() BBR callback call
2024-11-22	BUG/MAJOR: mux-h1: Properly handle wrapping on obuf when dumping the first-line
2024-11-21	BUG/MEDIUM: pools/memprofile: always clean stale pool info on pool_destroy()
2024-11-21	BUG/MINOR: activity/memprofile: reinitialize the free calls on DSO summary
2024-11-21	BUG/MEDIUM: wdt: fix the stuck detection for warnings
2024-11-21	BUG/MEDIUM: debug: don't set the STUCK flag from debug_handler()
2024-11-21	BUG/MINOR: startup: init_early: remove obsolete comment
2024-11-21	BUG/MINOR: config: allow to check HAPROXY_LOCALPEER in config
2024-11-21	BUG/MINOR: startup: fix UAF when set the default for log_tag
2024-11-21	BUG/MINOR: quic: Missing application limitations tracking for BBR
2024-11-21	BUG/MINOR: cfgparse-quic: fix warning for cc-aglo with 0 burst
2024-11-21	BUG/MINOR: cfgparse-quic: fix bbr initialization
2024-11-20	BUG/MEDIUM: h3: Increase max number of headers when sending headers
2024-11-20	BUG/MEDIUM: h3: Properly limit the number of headers received
2024-11-20	BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2024-11-20	BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2024-11-20	BUG/MINOR: cfgparse-quic: fix renaming of max-window-size
2024-11-20	BUG/MINOR: http-ana: Adjust the server status before the L7 retries
2024-11-19	BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2024-11-19	BUG/MINOR: mworker-prog: don't warn about deprecated section with expose-deprecated-directives
2024-11-15	MINOR: chunk: add a BUG_ON upon the next init_trash_buffer()
2024-11-15	BUG/MEDIUM: clock: make sure now_ms cannot be TICK_ETERNITY
2024-11-15	BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2024-11-15	BUG/MINOR: mux_quic: make sure to always apply offsets to now_ms in expiration
2024-11-15	BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration
2024-11-15	BUG/MINOR: debug: do not set task expiration to TICK_ETERNITY
2024-11-15	BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2024-11-15	BUG/MINOR: Don't report early srv aborts on request forwarding in DONE state
2024-11-15	BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2024-11-14	BUG/MINOR: deinit: release uri_auth admin rules
2024-11-13	BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list
2024-11-13	BUG/MEDIUM: stconn: Don't forward shut for SC in connecting state
2024-11-13	BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI
2024-11-13	BUG/MINOR: startup: set HAPROXY_CFGFILES in read_cfg
2024-11-08	BUG/MEDIUM: quic: prevent crash due to CRYPTO parsing error
2024-11-08	BUG/MEDIUM: mux-h2: try to wait for the peer to read the GOAWAY
2024-11-07	BUG/MINOR: guid/server: ensure thread-safety on GUID insert/delete
2024-11-06	DEBUG: wdt: set the default blocked task delay to 100 ms
2024-11-06	DEBUG: wdt: add a stats counter "BlockedTrafficWarnings" in show info
2024-11-06	DEBUG: wdt: make the blocked traffic warning delay configurable
2024-11-06	DEBUG: cli: make it possible for "debug dev loop" to trigger warnings
2024-11-06	DEBUG: wdt: better detect apparently locked up threads and warn about them
2024-11-06	BUG/MEDIUM: quic: do not consider ACK on released stream as error
2024-11-06	BUG/MINOR: mworker: do 'program' postparser checks in read_cfg_in_discovery_mode
2024-11-06	BUG/MINOR: quic: repeat packet parsing to deal with fragmented CRYPTO
2024-11-05	BUG/MINOR: quic: fix malformed probing packet building
2024-11-05	DEBUG: cli: support closing "hard" using close() in addition to fd_delete()
2024-11-05	BUG/MEDIUM: promex: Fix dump of extra counters
2024-10-31	BUG/MINOR: http-ana: Report internal error if an action yields on a final eval
2024-10-31	BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections
2024-10-31	DEBUG: mux-h1: Add H1C expiration dates in trace messages
2024-10-30	BUG/MINOR: startup: don't dump polling info for master in verbose mode
2024-10-30	BUG/MINOR: startup: dump keywords only in worker if started with -W -dKAll
2024-10-30	BUG/MINOR: startup: dump libs only in worker if started with -W -dL
2024-10-30	BUG/MINOR: startup: don't fork worker if started with -c -W
2024-10-29	BUG/MINOR: errors: print_message: don't allocate startup logs ring
2024-10-29	BUG/MINOR: errors: startup_logs_free: set global startup_logs ptr to NULL
2024-10-29	BUG/MINOR: mworker: mworker_reexec: unset MODE_STARTING before free startup logs ring
2024-10-29	BUG/MINOR: ssl/cli: 'set ssl cert' does not check the transaction name correctly
2024-10-29	BUG/MINOR: trace: stop rewriting argv with -dt
2024-10-26	BUG/MINOR: mworker/cli: fix mworker_cli_global_proxy_new_listener
2024-10-26	BUG/MEIDUM: mworker: fix fd leak from master to worker
2024-10-24	BUG/MINOR: stconn: Don't disable 0-copy FF if EOS was reported on consumer side
2024-10-24	BUG/MINOR: http-ana: Fix wrong client abort reports during responses forwarding
2024-10-24	BUG/MEDIUM: stconn: Report blocked send if sends are blocked by an error
2024-10-24	BUG/MEDIUM: server: fix race on servers_list during server deletion
2024-10-24	BUG/MINOR: server: fix dynamic server leak with check on failed init
2024-10-24	BUG/MINOR: mworker: show worker warnings in startup logs
2024-10-24	BUG/MINOR: mworker/cli: show master startup logs in recovery mode
2024-10-24	BUG/MINOR: mux-h1: Fix conditions on pipe in some COUNT_IF()
2024-10-24	DEBUG: mux-h1: Add debug counters to track errors with in/out pending data
2024-10-23	BUG/MEDIUM: connection/http-reuse: fix address collision on unhandled address families
2024-10-22	DEBUG: mux-h1: Add debug counters to track some errors
2024-10-22	DEBUG: stream: Add debug counters to track some client/server aborts
2024-10-22	BUG/MINOR: stconn: Pretend the SE have more data to deliver on abortonclose
2024-10-22	BUG/MEDIUM: mux-h2: Remove H2S from send list if data are sent via 0-copy FF
2024-10-22	BUG/MEDIUM: stats-html: Never dump more data than expected during 0-copy FF
2024-10-21	MEDIUM: debug: add match counters for BUG_ON/WARN_ON/CHECK_IF
2024-10-21	CLEANUP: debug: make the BUG_ON() macros check the condition in the outer one
2024-10-21	BUG/MINOR: mux-quic: do not close STREAM with empty FIN if no data sent
2024-10-21	BUG/MINOR: mworker: fix mworker-max-reloads parser
2024-10-18	BUG/MINOR: sample: free err2 in smp_resolve_args for type ARGT_REG
2024-10-17	CLEANUP: http_ext: remove useless BUG_ON() in http_handle_xot_header()
2024-10-17	BUG/MEDIUM: quic: avoid freezing 0RTT connections
2024-10-17	BUG/MINOR: quic: avoid leaking post handshake frames
2024-10-17	BUG/MAJOR: filters/htx: Add a flag to state the payload is altered by a filter
2024-10-17	BUG/MEDIUM: stconn: Check FF data of SC to perform a shutdown in sc_notify()
2024-10-17	BUG/MINOR: http-ana: Don't report a server abort if response payload is invalid
2024-10-17	BUG/MEDIUM: stconn: Wait iobuf is empty to shut SE down during a check send
2024-10-17	BUG/MINOR: resolvers/mworker: missing default resolvers in mworker mode
2024-10-17	BUG/MEDIUM: mworker/httpclient: initialization skipped by accident in mworker mode
2024-10-17	BUG/MINOR: httpclient: return NULL when no proxy available during httpclient_new()
2024-10-16	BUG/MINOR: mworker: fix memory leak due to master-worker fork
2024-10-16	DEBUG: mux-h2/flags: add H2_CF_DEM_RXBUF & H2_SF_EXPECT_RXDATA for the decoder
2024-10-16	BUG/MEDIUM: queue: make sure never to queue when there's no more served conns
2024-10-16	BUG/MEDIUM: server: server stuck in maintenance after FQDN change
2024-10-16	BUG/MEDIUM: quic: support wait-for-handshake
2024-10-16	BUG/MINOR: stream: unblock stream on wait-for-handshake completion
2024-10-12	BUG/MINOR: mux-h2/traces: present the correct buffer for trailers errors traces
2024-10-10	BUG/MEDIUM: mux-quic: ensure timeout server is active for short requests
2024-10-09	BUG/MEDIUM: quic: properly decount out-of-order ACK on stream release
2024-10-09	BUG/MINOR: quic: fix discarding of already stored out-of-order ACK
2024-10-08	BUG/MEDIUM: hlua: properly handle sample func errors in hlua_run_sample_{fetch,conv}()
2024-10-08	BUG/MEDIUM: hlua: make hlua_ctx_renew() safe
2024-10-04	BUG/MINOR: stats: Fix the name for the total number of streams created
2024-10-04	BUG/MAJOR: mux-quic: do not crash on empty STREAM frame emission
2024-10-02	BUG/MINOR: quic: fix trace on releasing STREAM frame after ack
2024-10-02	BUG/MINOR: mux-quic: fix crash on qcc_init() early return
2024-10-02	BUG/MINOR: http-ana: Disable fast-fwd for unfinished req waiting for upgrade
2024-10-02	BUG/MINOR: mux-h1: Fix condition to set EOI on SE during zero-copy forwarding
2024-10-01	BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server
2024-10-01	BUG/MINOR: cfgparse-global: fix allowed args number for setenv
2024-09-30	BUG/MINOR: mcli: Pretend the mux have more data to deliver between two commands
2024-09-27	BUG/MINOR: queue: make sure that maintenance redispatches server queue
2024-09-27	BUG/MINOR: server: make sure the HMAINT state is part of MAINT
2024-09-27	BUG/MEDIUM: stream: make stream_shutdown() async-safe
2024-09-27	Revert "BUG/MINOR: server: shut down streams under thread isolation"
2024-09-25	BUG/MEDIUM: cli: Deadlock when setting frontend maxconn
2024-09-24	BUG/MEDIUM: cli: Be sure to catch immediate client abort
2024-09-21	BUG/MINOR: proxy: also make the cli and resolvers use the global name
2024-09-21	BUG/MINOR: server: shut down streams under thread isolation
2024-09-20	BUG/MINOR: cfgparse: detect another uncaught case of duplicate defaults
2024-09-18	BUG/MINOR: mux-quic: report glitches to session
2024-09-17	BUG/MINOR: cfgparse: detect incorrect overlap of same backend names
2024-09-17	BUG/MINOR: cfgparse-listen: fix option httpslog override warning message
2024-09-17	BUG/MINOR: fix missing "'option httpslog' overrides previous 'option tcplog clf'..." detection
2024-09-17	BUG/MINOR: fix missing "log-format overrides previous 'option tcplog clf'..." detection
2024-09-16	BUG/MEDIUM: promex: Wait to have the request before sending the response
2024-09-16	BUG/MEDIUM: cache/stats: Wait to have the request before sending the response
2024-09-16	BUG/MEDIUM: sc_strm/applet: Wake applet after a successfull synchronous send
2024-09-16	BUG/MINOR: peers: local entries updates may not be advertised after resync
2024-09-13	BUG/MEDIUM: queue: implement a flag to check for the dequeuing
2024-09-12	BUG/MINOR: clock: validate that now_offset still applies to the current date
2024-09-12	BUG/MINOR: clock: make time jump corrections a bit more accurate
2024-09-12	BUG/MINOR: polling: fix time reporting when using busy polling
2024-09-10	BUG/MINOR: pattern: do not leave a leading comma on "set" error messages
2024-09-09	BUG/MINOR: h1-htx: Don't flag response as bodyless when a tunnel is established
2024-09-09	BUG/MAJOR: mux-h1: Wake SC to perform 0-copy forwarding in CLOSING state
2024-09-09	BUG/MEDIUM: pattern: prevent UAF on reused pattern expr
2024-09-09	BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}
2024-09-09	BUG/MINOR: pattern: prevent const sample from being tampered in pat_match_beg()
2024-09-08	BUG/MEDIUM: clock: detect and cover jumps during execution
2024-09-06	BUG/MEDIUM: mux-h1/mux-h2: Reject upgrades with payload on H2 side only
2024-09-04	BUG/MEDIUM: clock: also update the date offset on time jumps
2024-09-03	BUG/MEDIUM: mux-pt: Fix condition to perform a shutdown for writes in mux_pt_shut()
2024-09-03	BUG/MINOR: Crash on O-RTT RX packet after dropping Initial pktns
2024-09-03	BUG/MINOR: mux-spop: always clear MUX_MFULL and DEM_MROOM when clearing the mbuf
2024-09-03	BUG/MAJOR: mux-h2: always clear MUX_MFULL and DEM_MROOM when clearing the mbuf
2024-09-03	BUG/MEDIUM: mux-h1: Properly handle empty message when an error is triggered
2024-09-03	BUG/MINOR: quic: unexploited retransmission cases for Initial pktns.
2024-09-02	BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli
2024-09-02	BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown
2024-09-02	BUG/MINOR: quic: Crash from trace dumping SSL eary data status (AWS-LC)
2024-08-30	BUG/MEDIUM: quic: always validate sender address on 0-RTT
2024-08-30	BUG/MINOR: quic: Missing incrementation in NEW_TOKEN frame builder
2024-08-30	BUG/MINIR: proxy: Match on 429 status when trying to perform a L7 retry
2024-08-28	BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready
2024-08-28	BUG/MEDIUM: mux-h2: Set ES flag when necessary on 0-copy data forwarding
2024-08-23	BUG/MINOR: haproxy: free init_env in deinit only if allocated
2024-08-20	BUG/MINOR: cfgparse-global: remove tune.fast-forward from common_kw_list
2024-08-20	BUG/MINOR: cfgparse-global: remove redundant goto
2024-08-20	BUG/MINOR: cfgparse-global: clean common_kw_list
2024-08-20	BUG/MINOR: cfgparse-global: fix err msg in mworker keyword parser
2024-08-20	BUG/MINOR: stats: add lang attribute to html tag
2024-08-20	BUG/MINOR: stats: fix color of input elements in dark mode
2024-08-13	BUG/MINOR: release-estimator: fix relative scheme in CHANGELOG URL
2024-08-13	BUG/MINOR: pattern: pat_ref_set: return 0 if err was found
2024-08-13	BUG/MINOR: pattern: pat_ref_set: fix UAF reported by coverity
2024-08-11	BUG/MINOR: tools: make fgets_from_mem() stop at the end of the input
2024-08-09	BUG/MINOR: h3: properly reject too long header responses
2024-08-09	BUG/MINOR: cfgparse: parse_cfg: fix null ptr dereference reported by coverity
2024-08-09	BUG/MINOR: proto_uxst: delete fd from fdtab if listen() fails
2024-08-09	BUG/MINOR: mux-quic: do not send too big MAX_STREAMS ID
2024-08-08	BUG/MEDIUM: mworker/cli: fix pipelined modes on master CLI
2024-08-08	BUG/MINOR: proto_tcp: keep error msg if listen() fails
2024-08-08	BUG/MINOR: proto_tcp: delete fd from fdtab if listen() fails
2024-08-07	BUG/MINOR: quic: prevent freeze after early QCS closure
2024-08-07	BUG/MINOR: quic/trace: make quic_conn_enc_level_init() emit NEW not CLOSE
2024-08-07	BUG/MINOR: trace/quic: make "qconn" selectable as a lockon criterion
2024-08-07	BUG/MINOR: trace: automatically start in waiting mode with "start "
2024-08-07	BUG/MEDIUM: trace: fix null deref in lockon mechanism since TRACE_ENABLED()
2024-08-07	BUG/MINOR: trace/quic: permit to lock on frontend/connect/session etc
2024-08-07	BUG/MINOR: trace/quic: enable conn/session pointer recovery from quic_conn
2024-08-07	BUG/MEDIUM: quic: handle retransmit for standalone FIN STREAM
2024-08-06	BUG/MEDIUM: server/addr: fix tune.events.max-events-at-once event miss and leak
2024-08-06	BUG/MINOR: fcgi-app: handle a possible strdup() failure
2024-08-05	BUG/MINOR: quic: Too short datagram during packet building failures (aws-lc only)
2024-08-02	BUG/MINOR: quic: Too shord datagram during O-RTT handshakes (aws-lc only)
2024-08-02	BUG/MEDIUM: peer: Notify the applet won't consume data when it waits for sync
2024-08-02	BUG/MEDIUM: mux-h2: Propagate term flags to SE on error in h2s_wake_one_stream
2024-08-02	BUG/MEDIUM: h2: Only report early HTX EOM for tunneled streams
2024-08-02	BUG/MEDIUM: http-ana: Report error on write error waiting for the response
2024-08-01	BUG/MINOR: h2: reject extended connect for h2c protocol
2024-08-01	BUG/MINOR: h1: do not forward h2c upgrade header token
2024-08-01	BUG/MIONR: quic: fix fc_lost
2024-08-01	BUG/MINOR: quic: fix fc_rtt/srtt values
2024-07-31	BUG/MEDIUM: quic: prevent conn freeze on 0RTT undeciphered content
2024-07-30	BUG/MEDIUM: ssl: 0-RTT initialized at the wrong place for AWS-LC
2024-07-30	BUG/MEDIUM: ssl: reactivate 0-RTT for AWS-LC
2024-07-30	BUG/MINOR: stconn: bs.id and fs.id had their dependencies incorrect
2024-07-30	BUG/MEDIUM: mux-pt/mux-h1: Release the pipe on connection error on sending path
2024-07-30	BUG/MEDIUM: stconn: Report error on SC on send if a previous SE error was set
2024-07-29	BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()
2024-07-26	BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature
2024-07-26	BUG/MEDIUM: quic: fix invalid conn reject with CONNECTION_REFUSED
2024-07-24	BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)
2024-07-24	BUG/MEDIUM: sink: properly init applet under sft lock
2024-07-19	BUG/MINOR: quic: Non optimal first datagram.
2024-07-18	BUG/MINOR: cli: Atomically inc the global request counter between CLI commands
2024-07-18	BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution
2024-07-18	BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter
2024-07-18	BUG/MEDIUM: startup: fix zero-warning mode
2024-07-17	BUG/MAJOR: mux-h2: force a hard error upon short read with pending error
2024-07-17	BUG/MEDIUM: ssl_sock: fix deadlock in ssl_sock_load_ocsp() on error path
2024-07-16	BUG/MEDIUM: debug/cli: fix "show threads" crashing with low thread counts
2024-07-16	BUG/MINOR: do not close uninit FD in quic_test_socketops()
2024-07-12	BUG/MINOR: session: Eval L4/L5 rules defined in the default section
2024-07-11	BUG/MINOR: limits: fix license type in limits.h
2024-07-11	BUG/MEDIUM: bwlim: Be sure to never set the analyze expiration date in past
2024-07-10	BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread
2024-07-10	BUG/MEDIUM: h1: Reject empty Transfer-encoding header
2024-07-10	BUG/MINOR: h1: Reject empty coding name as last transfer-encoding value
2024-07-10	BUG/MINOR: h1: Fail to parse empty transfer coding names
2024-07-08	BUG/MINOR: jwt: fix variable initialisation
2024-07-08	BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
2024-07-05	BUG/MEDIUM: peers: Fix crash when syncing learn state of a peer without appctx
2024-07-04	BUG/MEDIUM: quic: prevent crash on accept queue full
2024-07-03	MINOR: quic: add 2 BUG_ON() on datagram dispatch
2024-07-03	BUG/MINOR: jwt: don't try to load files with HMAC algorithm
2024-07-03	BUG/MEDIUM: server: fix race on server_atomic_sync()
2024-07-02	BUG/MEDIUM: hlua/cli: Fix lua CLI commands to work with applet's buffers
2024-07-01	BUG/MINOR: promex: Remove Help prefix repeated twice for each metric
2024-07-01	BUG/MEDIUM: quic: fix possible exit from qc_check_dcid() without unlocking
2024-07-01	BUG/MINOR: quic: Wrong datagram building when probing.
2024-06-28	BUG/MINOR: quic: fix race-condition on trace for CID retrieval
2024-06-28	BUG/MINOR: quic: fix race condition in qc_check_dcid()
2024-06-28	BUG/MEDIUM: quic: fix race-condition in quic_get_cid_tid()
2024-06-28	BUG/MEDIUM: h3: ensure the ":scheme" pseudo header is totally valid
2024-06-28	BUG/MEDIUM: h3: ensure the ":method" pseudo header is totally valid
2024-06-28	BUG/MEDIUM: server/dns: prevent DOWN/UP flap upon resolution timeout or error
2024-06-27	BUG/MINOR: server: fix first server template name lookup UAF
2024-06-26	BUG/MEDIUM: stick-table: Decrement the ref count inside lock to kill a session
2024-06-26	BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()
2024-06-24	BUG/MINOR: quic: fix BUG_ON() on Tx pkt alloc failure
2024-06-24	BUG/MINOR: h3: fix BUG_ON() crash on control stream alloc failure
2024-06-24	BUG/MINOR: mux-quic: fix crash on qcs SD alloc failure
2024-06-24	BUG/MINOR: h3: fix crash on STOP_SENDING receive after GOAWAY emission
2024-06-19	BUG/MAJOR: quic: do not loop on emission on closing/draining state
2024-06-19	BUG/MAJOR: quic: fix padding with short packets
2024-06-17	BUG/MINOR: proxy: fix email-alert leak on deinit() (2nd try)
2024-06-17	BUG/MEDIUM: proxy: fix email-alert invalid free
2024-06-17	BUG/MEDIUM: ssl: AWS-LC + TLSv1.3 won't do ECDSA in RSA+ECDSA configuration
2024-06-14	DEBUG: hlua: distinguish burst timeout errors from exec timeout errors
2024-06-14	BUG/MINOR: log: fix broken '+bin' logformat node option
2024-06-12	BUG/MINOR: quic: fix padding of INITIAL packets
2024-06-12	BUG/MAJOR: mux-h1: Prevent any UAF on H1 connection after draining a request
2024-06-12	BUG/MINOR: promex: Skip resolvers metrics when there is no resolver section
2024-06-11	BUG/MEDIUM: log: fix lf_expr_postcheck() behavior with default section
2024-06-11	BUG/MEDIUM: proxy: fix UAF with {tcp,http}checks logformat expressions
2024-06-11	BUG/MINOR: proxy: fix header_unique_id leak on deinit()
2024-06-11	BUG/MINOR: proxy: fix source interface and usesrc leaks on deinit()
2024-06-11	BUG/MINOR: proxy: fix dyncookie_key leak on deinit()
2024-06-11	BUG/MINOR: proxy: fix check_{command,path} leak on deinit()
2024-06-11	BUG/MINOR: proxy: fix email-alert leak on deinit()
2024-06-11	BUG/MINOR: proxy: fix log_tag leak on deinit()
2024-06-11	BUG/MINOR: proxy: fix server_id_hdr_name leak on deinit()

Back to the list of branches and versions
Back to the HAProxy page