blob: 8057f87c03f52b44d8e1e8d8df7738c23348e91d [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
willy tarreau0174f312005-12-18 01:02:42 +010042005/01/22 : 1.2.3 (1.1.30)
5 - add an architecture guide to the documentation
6 - released without any changes
7
82004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
9 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
10 compatible with Apache. This limit can be configured in the makefile now.
11 Thanks to Eric Fehr for the checks.
12 - added a per-server "source" option which now makes it possible to bind to
13 a different source for each (potentially identical) server.
14 - changed cookie-based server selection slightly to allow several servers to
15 share a same cookie, thus making it possible to associate backup servers to
16 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
17 - added the cookie 'prefix' mode which makes it possible to use persistence
18 with thin clients which support only one cookie. The server name is prefixed
19 before the application cookie, and restore back.
20 - fixed the order of servers within an instance to match documentation. Now
21 the servers are *really* used in the order of their declaration. This is
22 particularly important when multiple backup servers are in use.
23
willy tarreau4302f492005-12-18 01:00:37 +0100242004/10/18 : 1.2.2 (1.1.29)
25 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
26 option was enabled without the 'tcplog' option.
27 - encode_string() would use hdr_encode_map instead of the map argument.
28
292004/08/10 : (1.1.29-pre2)
30 - the logged request is now encoded with '#XX' for unprintable characters
31 - new keywords 'capture request header' and 'capture response header' enable
32 logging of arbitrary HTTP headers in requests and responses
33 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
34
willy tarreau982249e2005-12-18 00:57:06 +0100352004/06/06 : 1.2.1 (1.1.28)
36 - added the '-V' command line option to verbosely report errors even though
37 the -q or 'quiet' options are specified. This is useful with '-c'.
38 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010039
willy tarreau982249e2005-12-18 00:57:06 +0100402004/06/05 :
41 - added the "logasap" option which produces a log without waiting for the data
42 to be transferred from the server to the client.
43 - added the "httpclose" option which removes any "connection:" header and adds
44 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010045 - added the 'checkcache' option which blocks cacheable responses containing
46 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010047 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
48 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010049
502004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010051 - send an EMERG log when no server is available for a given proxy
52 - added the '-c' command line option to syntactically check the
53 configuration file without starting the service.
54
willy tarreau8a86dbf2005-12-18 00:45:59 +0100552003/11/09 : 1.2.0
56 - the same as 1.1.27 + IPv6 support on the client side
57
willy tarreaufe2c5c12005-12-17 14:14:34 +0100582003/10/27 : 1.1.27
59 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
60 bug : the code still assumed that HTTP requests were the same size as the
61 original ones (22 bytes), and failed if they were not.
62 - added support for pidfiles.
63
willy tarreauc58fc692005-12-17 14:13:08 +0100642003/10/22 : 1.1.26
65 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
66 broke almost all compatibility with POST requests, because the proxy
67 stopped to read anything from the client as soon as it got all of its
68 headers.
69
willy tarreauc1cae632005-12-17 14:12:23 +0100702003/10/15 : 1.1.25
71 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
72 generic TCP proxies, or lighter logs for HTTP proxies.
73 - fixed a time-out condition wrongly reported as client time-out in data
74 phase if the client timeout was lower than the connect timeout times the
75 number of retries.
76
willy tarreau197e8ec2005-12-17 14:10:59 +0100772003/09/21 : 1.1.24
78 - if a client sent a full request then shut its write connection down, then
79 the request was aborted. This case was detected only when using haproxy
80 both as health-check client and as a server.
81 - if 'option httpchk' is used in a 'health' mode server, then responses will
82 change from 'OK' to 'HTTP/1.0 200 OK'.
83 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
84 server response followed by a close could be ignored, and the server seen
85 as failed.
86
willy tarreaueedaa9f2005-12-17 14:08:03 +0100872003/09/19 : 1.1.23
88 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
89 'default' sections to keep previous parameters, and not initialize logs
90 correctly.
91 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
92 relying on 'dispatch' mode to segfault at the first connection.
93 - 'option httpchk' now supports method, HTTP version and a few headers.
94 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
95 'defaults' section
96
972003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010098 - 'listen' now supports optionnal address:port-range lists
99 - 'bind' introduced to add new listen addresses
100 - fixed a bug which caused a session to be kept established on a server till
101 it timed out if the client closed during the DATA phase.
102 - the port part of each server address can now be empty to make the proxy
103 connect to the server on the same port it was connected to, be an absolute
104 unsigned number to reflect a single port (as in older versions), or an
105 explicitly signed number (+N/-N) to indicate that this offset must be
106 applied to the port the proxy was connected to, when connecting to the
107 server.
108 - the 'port' server option allows the user to specify a different
109 health-check port than the service one. It is mandatory when only relative
110 ports have been specified and check is required. By default, the checks are
111 sent to the service port.
112 - new 'defaults' section which is rather similar to 'listen' except that all
113 values are only used as default values for future 'listen' sections, until
114 a new 'defaults' resets them. At the moment, server options, regexes,
115 cookie names and captures cannot be set in the 'defaults' section.
116
willy tarreau2f6ba652005-12-17 13:57:42 +01001172003/05/06 : 1.1.21
118 - changed the debug output format so that it now includes the session unique
119 ID followed by the instance name at the beginning of each line.
120 - in debug mode, accept now shows the client's IP and port.
121 - added one 3 small debugging scripts to search and pretty print debug output
122 - changed the default health check request to "OPTIONS /" instead of
123 "OPTIONS *" since not all servers implement the later one.
124 - "option httpchk" now accepts an optional parameter allowing the user to
125 specify and URI other than '/' during health-checks.
126
willy tarreaub1ff9db2005-12-17 13:51:03 +01001272003/04/21 : 1.1.20
128 - fixed two problems with time-outs, one where a server would be logged as
129 timed out during transfer that take longer to complete than the fixed
130 time-out, and one where clients were logged as timed-out during the data
131 phase because they didn't have anything to send. This sometimes caused
132 slow client connections to close too early while in fact there was no
133 problem. The proper fix would be to have a per-fd time-out with
134 conditions depending on the state of the HTTP FSM.
135
willy tarreau906b2682005-12-17 13:49:52 +01001362003/04/16 : 1.1.19
137 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
138 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
139 cookie persistence because it uses "cookie:". Two memcmp() have been
140 replaced with strncasecmp().
141
willy tarreau036e1ce2005-12-17 13:46:33 +01001422003/04/02 : 1.1.18
143 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
144 REGEX=pcre on the make command line.
145 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
146 - when explicit source address binding is required, it is now also used for
147 health-checks.
148 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
149 itself.
150 - factored several strings to reduce binary size by about 2 kB.
151 - replaced setreuid() and setregid() with more standard setuid() and setgid().
152 - added 4 status flags to the log line indicating who ended the connection
153 first, the sessions state, the validity of the cookie, and action taken on
154 the set-cookie header.
155
1562002/10/18 : 1.1.17
157 - add the notion of "backup" servers, which are used only when all other
158 servers are down.
159 - make Set-Cookie return "" instead of "(null)" when the server has no
160 cookie assigned (useful for backup servers).
161 - "log" now supports an optionnal level name (info, notice, err ...) above
162 which nothing is sent.
163 - replaced some strncmp() with memcmp() for better efficiency.
164 - added "capture cookie" option which logs client and/or server cookies
165 - cleaned up/down messages and dump servers states upon SIGHUP
166 - added a redirection feature for errors : "errorloc <errnum> <url>"
167 - now we won't insist on connecting to a dead server, even with a cookie,
168 unless option "persist" is specified.
169 - added HTTP/408 response for client request time-out and HTTP/50[234] for
170 server reply time-out or errors.
171
1722002/09/01 : 1.1.16
173 - implement HTTP health checks when option "httpchk" is specified.
174
1752002/08/07 : 1.1.15
176 - replaced setpgid()/setpgrp() with setsid() for better portability, because
177 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
178
1792002/07/20 : 1.1.14
180 - added "postonly" cookie mode
181
1822002/07/15 : 1.1.13
183 - tv_diff used inverted parameters which led to negative times !
184
1852002/07/13 : 1.1.12
186 - fixed stats monitoring, and optimized some tv_* for most common cases.
187 - replaced temporary 'newhdr' with 'trash' to reduce stack size
188 - made HTTP errors more HTML-fiendly.
189 - renamed strlcpy() to strlcpy2() because of a slightly difference between
190 their behaviour (return value), to avoid confusion.
191 - restricted HTTP messages to HTTP proxies only
192 - added a 502 message when the connection has been refused by the server,
193 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
194 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
195 inserting a cookie, because some caches (apache) don't understand it.
196 - fixed processing of server headers when client is in SHUTR state
197
1982002/07/04 :
199 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
200 setpgid()
201
2022002/06/04 : 1.1.11
203 - fixed multi-cookie handling in client request to allow clean deletion
204 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +0100205 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +0100206 - added a "nocache" option to "cookie" to specify that we explicitly want
207 to add a "cache-control" header when we add a cookie.
208 It is also possible to add an "Expires: <old-date>" to keep compatibility
209 with old/broken caches.
210
2112002/05/10 : 1.1.10
212 - if a cookie is used in insert+indirect mode, it's desirable that the
213 the servers don't see it. It was not possible to remove it correctly
214 with regexps, so now it's removed automatically.
215
2162002/04/19 : 1.1.9
217 - don't use snprintf()'s return value as an end of message since it may
218 be larger. This caused bus errors and segfaults in internal libc's
219 getenv() during localtime() in send_log().
220 - removed dead insecure send_syslog() function and all references to it.
221 - fixed warnings on Solaris due to buggy implementation of isXXXX().
222
2232002/04/18 : 1.1.8
224 - option "dontlognull"
225 - fixed "double space" bug in config parser
226 - fixed an uninitialized server field in case of dispatch
227 with no existing server which could cause a segfault during
228 logging.
229 - the pid logged was always the father's, which was wrong for daemons.
230 - fixed wrong level "LOG_INFO" for message "proxy started".
231
2322002/04/13 :
233 - http logging is now complete :
234 - ip:port, date, proxy, server
235 - req_time, conn_time, hdr_time, tot_time
236 - status, size, request
237 - source address
238
2392002/04/12 : 1.1.7
240 - added option forwardfor
241 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
242 - added "log global" in "listen" section.
243
2442002/04/09 :
245 - added a new "global" section :
246 - logs
247 - debug, quiet, daemon modes
248 - uid, gid, chroot, nbproc, maxconn
249
2502002/04/08 : 1.1.6
251 - regex are now chained and not limited anymore.
252 - unavailable server now returns HTTP/502.
253 - increased per-line args limit to 40
254 - added reqallow/reqdeny to block some request on matches
255 - added HTTP 400/403 responses
256
2572002/04/03 : 1.1.5
258 - connection logging displayed incorrect source address.
259 - added proxy start/stop and server up/down log events.
260 - replaced log message short buffers with larger trash.
261 - enlarged buffer to 8 kB and replace buffer to 4 kB.
262
2632002/03/25 : 1.1.4
264 - made rise/fall/interval time configurable
265
2662002/03/22 : 1.1.3
267 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
268 which could lead to loops.
269
2702002/03/21 : 1.1.2
271 - fixed a bug in buffer management where we could have a loop
272 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
273 => implemented an adjustable buffer limit.
274 - fixed a bug : expiration of tasks in wait queue timeout is used again,
275 and running tasks are skipped.
276 - added some debug lines for accept events.
277 - send warnings for servers up/down.
278
2792002/03/12 : 1.1.1
280 - fixed a bug in total failure handling
281 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
282
2832002/03/10 : 1.1.0
284 - fixed a few timeout bugs
285 - rearranged the task scheduler subsystem to improve performance,
286 add new tasks, and make it easier to later port to librt ;
287 - allow multiple accept() for one select() wake up ;
288 - implemented internal load balancing with basic health-check ;
289 - cookie insertion and header add/replace/delete, with better strings
290 support.
291
2922002/03/08
293 - reworked buffer handling to fix a few rewrite bugs, and
294 improve overall performance.
295 - implement the "purge" option to delete server cookies in direct mode.
296
2972002/03/07
298 - fixed some error cases where the maxfd was not decreased.
299
3002002/02/26
301 - now supports transparent proxying, at least on linux 2.4.
302
3032002/02/12
304 - soft stop works again (fixed select timeout computation).
305 - it seems that TCP proxies sometimes cannot timeout.
306 - added a "quiet" mode.
307 - enforce file descriptor limitation on socket() and accept().
308
3092001/12/30 : release of version 1.0.2 : fixed a bug in header processing
3102001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
3112001/12/16 : release of version 1.0.0.
3122001/12/16 : added syslog capability for each accepted connection.
3132001/11/19 : corrected premature end of files and occasional SIGPIPE.
3142001/10/31 : added health-check type servers (mode health) which replies OK then closes.
3152001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
316 with or without cookies (use keyword http for this).
3172001/09/01 : added client/server header replacing with regexps.
318 eg:
319 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
320 srvexp ^Server:\ .* Server:\ Apache
3212000/11/29 : first fully working release with complete FSMs and timeouts.
3222000/11/28 : major rewrite
3232000/11/26 : first write