blob: 62a7d0b0201eef78e5b33e6355e00382c79d66e1 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreaue5b77e82007-12-06 01:25:44 +010042007/12/06 : 1.3.14
5 - New option http_proxy (Alexandre Cassen)
6 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
7 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
8 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
9 - use backends only with use_backend directive (Krzysztof Oledzki)
10 - Handle long lines properly (Krzysztof Oledzki)
11 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
12 - continous statistics (Krzysztof Oledzki)
13 - add support for logging via a UNIX socket (Robert Tsai)
14 - fix error checking in strl2ic/strl2uic()
15 - fix calls to localtime()
16 - provide easier-to-use ultoa_* functions
17 - provide easy-to-use limit_r and LIM2A* macros
18 - add a simple test for the status page
19 - move error codes to common/errors.h
20 - silent warning about LIST_* being redefined on OpenBSD
21 - add socket address length to the protocols
22 - group PR_O_BALANCE_* bits into a checkable value
23 - externalize the "balance" option parser to backend.c
24 - introduce the "url_param" balance method
25 - make default_backend work in TCP mode too
26 - disable warning about localtime_r on Solaris
27 - adjust error messages about conflicting proxies
28 - avoid calling some layer7 functions if not needed
29 - simplify error path in event_accept()
30 - add an options field to the listeners
31 - added a new state to listeners
32 - unbind_listener() must use fd_delete() and not close()
33 - add a generic unbind_listener() primitive
34 - add a generic delete_listener() primitive
35 - add a generic unbind_all_listeners() primitive
36 - create proto_tcp and move initialization of proxy listeners
37 - stats: report numerical process ID, proxy ID and server ID
38 - relative_pid was not initialized
39 - missing header names in raw stats output
40 - fix missing parenthesis in check_response_for_cacheability
41 - small optimization on session_process_counters()
42 - merge ebtree version 3.0
43 - make ebtree headers multiple-include compatible
44 - ebtree: include config.h for REGPRM*
45 - differentiate between generic LB params and map-specific ones
46 - add a weight divisor to the struct proxy
47 - implement the Fast Weighted Round Robin (FWRR) algo
48 - include filltab25.c to experiment on FWRR for dynamic weights
49 - merge test-fwrr.cfg to validate dynamic weights
50 - move the load balancing algorithm to be->lbprm.algo
51 - change server check result to a bit field
52 - implement "http-check disable-on-404" for graceful shutdown
53 - secure the calling conditions of ->set_server_status_{up,down}
54 - report disabled servers as "NOLB" when they are still UP
55 - document the "http-check disable-on-404" option
56 - http-check disable-on-404 is not limited to HTTP mode
57 - add a test file for disable-on-404
58 - use distinct bits per load-balancing algorithm type
59 - implement the slowstart parameter for servers
60 - document the server's slowstart parameter
61 - stats: report the server warm up status in a "throttle" column
62 - fix 2 minor issues on AIX
63 - add the "nbsrv" ACL verb
64 - add the "fail" condition to monitor requests
65 - remove a warning from gcc due to htons() in standard.c
66 - fwrr: ensure that we never overflow in placements
67 - store the build options to report with -vv
68 - fix the status return of the init script (R.I. Pienaar)
69 - stats: real time monitoring script for unix socket (Prizee)
70 - document "nbsrv" and "monitor fail"
71 - restrict the set of allowed characters for identifiers
72 - implement a time parsing function
73 - add support for time units in the configuration
74 - add a bit of documentation about timers
75 - introduce separation between contimeout, and tarpit + queue
76 - introduce the "timeout" keyword
77 - grouped all timeouts in one structure
78 - slowstart is in ms, not seconds
79 - slowstart: ensure we don't start with a null weight
80 - report the number of times each server was selected
81 - fix build on AIX due to recent log changes
82 - fix build on Solaris due to recent log changes
83
Willy Tarreaue855f422007-10-18 22:38:22 +0200842007/10/18 : 1.3.13
85 - replace the code under O'Reilly license (Arnaud Cornet)
86 - add a small man page (Arnaud Cornet)
87 - stats: report haproxy's version by default (Krzysztof Oledzki)
88 - stats: count server retries and redispatches (Krzysztof Oledzki)
89 - core: added easy support for Doug Lea's malloc (dlmalloc)
90 - core: fade out memory usage when stopping proxies
91 - core: moved the sockaddr pointer to the fdtab structure
92 - core: add generic protocol support
93 - core: implement client-side support for PF_UNIX sockets
94 - stats: implement the CSV output
95 - stats: add a link to the CSV export HTML page
96 - stats: implement the statistics output on a unix socket
97 - config: introduce the "stats" keyword in global section
98 - build: centralize version and date into one file for each
99 - tests: added a new hash algorithm
100
1012007/10/18 : 1.3.12.3
102 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
103 - fix double-free during clean exit (Krzysztof Oledzki)
104 - prevent the system from sending an RST when closing health-checks
105 (Krzysztof Oledzki)
106 - do not add a cache-control header when on non-cacheable responses
107 (Krzysztof Oledzki)
108 - spread health checks even more (Krzysztof Oledzki)
109 - stats: scope "." must match the backend and not the frontend
110 - fixed call to chroot() during startup
111 - fix wrong timeout computation in event_accept()
112 - remove condition for exit() under fork() failure
113
1142007/09/20 : 1.3.12.2
115 - fix configuration sanity checks for TCP listeners
116 - set the log socket receive window to zero bytes
117 - pre-initialize timeouts to infinity, not zero
118 - fix the SIGHUP message not to alert on server-less proxies
119 - timeouts and retries could be ignored when switching backend
120 - added a file to check that "retries" works.
121 - O'Reilly has clarified its license
122
1232007/09/05 : 1.3.12.1
124 - spec I/O: fix allocations of spec entries for an FD
125 - ensure we never overflow in chunk_printf()
126 - improve behaviour with large number of servers per proxy
127 - add support for "stats refresh <interval>"
128 - stats page: added links for 'refresh' and 'hide down'
129 - fix backend's weight in the stats page.
130 - the "stats" keyword is not allowed in a pure frontend.
131 - provide a test configuration file for stats and checks
132
Willy Tarreaub21152b2007-06-17 23:41:40 +02001332007/06/17 : 1.3.12
134 - fix segfault at exit when using captures
135 - bug: negation in ACL conds was not cleared between terms
136 - errorfile: use a local file to feed error messages
137 - acl: support '-i' to ignore case when matching
138 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
139 - acl: support maching on 'path' component
140 - acl: implement matching on header values
141 - acl: distinguish between request and response headers
142 - acl: permit to return any header when no name specified
143 - acl: provide default ACLs
144 - added the 'use_backend' keyword for full content-switching
145 - acl: specify the direction during fetches
146 - acl: provide the argument length for fetch functions
147 - acl: provide a reference to the expr to fetch()
148 - improve memory freeing upon exit
149 - str2net() must not change the const char *
150 - shut warnings 'is*' macros from ctype.h on solaris
151
Willy Tarreaua3503e02007-06-03 17:27:07 +02001522007/06/03 : 1.3.11.4
153 - do not re-arm read timeout in SHUTR state !
154 - optimize I/O by detecting system starvation
155 - the epoll FD must not be shared between processes
156 - limit the number of events returned by *poll*
157
Willy Tarreau3c6fc072007-05-14 14:40:25 +02001582007/05/14 : 1.3.11.3
159 - pre-initialize timeouts with tv_eternity during parsing
160
Willy Tarreaufc273c22007-05-14 03:42:47 +02001612007/05/14 : 1.3.11.2
162 - fixed broken health-checks since switch to timeval
163
Willy Tarreau3c5340c2007-05-14 03:18:43 +02001642007/05/14 : 1.3.11.1
165 - fixed ev_kqueue which was forgotten during the switch to timeval
166 - allowed null timeouts for past events in select
167
Willy Tarreau544eb402007-05-14 02:42:33 +02001682007/05/14 : 1.3.11
169 - fixed ev_sepoll again by rewriting the state machine
170 - switched all timeouts to timevals instead of milliseconds
171 - improved memory management using mempools v2.
172 - several minor optimizations
173
Willy Tarreau9ca931f2007-05-10 07:51:17 +02001742007/05/09 : 1.3.10.2
175 - fixed build on OpenBSD (missing types.h)
176
Willy Tarreau13398d32007-05-09 22:58:28 +02001772007/05/09 : 1.3.10.1
178 - fixed sepoll transition matrix (two states were missing)
179
Willy Tarreau61beedf2007-05-09 01:44:58 +02001802007/05/08 : 1.3.10
181 - several fixes in ev_sepoll
182 - fixed some expiration dates on some tasks
183 - fixed a bug in connection establishment detection due to speculative I/O
184 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
185 - implemented URI hashing algorithm (Guillaume Dallaire)
186 - implemented SMTP health checks (Peter van Dijk)
187 - replaced the rbtree with ul2tree from old scheduler project
188 - new framework for generic ACL support
189 - added the 'acl' and 'block' keywords to the config language
190 - added several ACL criteria and matches (IP, port, URI, ...)
191 - cleaned up and better modularization for some time functions
192 - fixed list macros
193 - fixed useless memory allocation in str2net()
194 - store the original destination address in the session
195
Willy Tarreau6e0433f2007-04-16 01:18:12 +02001962007/04/15 : 1.3.9
197 - modularized the polling mechanisms and use function pointers instead
198 of macros at many places
199 - implemented support for FreeBSD's kqueue() polling mechanism
200 - fixed a warning on OpenBSD : MIN/MAX redefined
201 - change socket registration order at startup to accomodate kqueue.
202 - several makefile cleanups to support old shells
203 - fix build with limits.h once for all
204 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
205 - fdtab now holds the results of polling
206 - implemented support for speculative I/O processing with epoll()
207 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
208 - auto-registering of pollers at load time
209
Willy Tarreau42c76592007-04-03 20:30:13 +02002102007/04/03 : 1.3.8.2
211 - rewriting either the status line or request line could crash the
212 process due to a pointer which ought to be reset before parsing.
213 - rewriting the status line in the response did not work, it caused
214 a 502 Bad Gateway due to an erroneous state during parsing
215
Willy Tarreauef6d7612007-04-01 11:06:22 +02002162007/04/01 : 1.3.8.1
217 - fix reqadd when no option httpclose is used.
218 - removed now unused fiprm and beprm from proxies
219 - split logs into two versions : TCP and HTTP
220 - added some docs about http headers storage and acls
221 - added a VIM script for syntax color highlighting (Bruno Michel)
222
Willy Tarreaud661cc02007-03-26 00:24:56 +02002232007/03/25 : 1.3.8
224 - fixed several bugs which might have caused a crash with bad configs
225 - several optimizations in header processing
226 - many progresses towards transaction-based processing
227 - option forwardfor may be used in frontends
228 - completed HTTP response processing
229 - some code refactoring between request and response processing
230 - new HTTP header manipulation functions
231 - optimizations on the recv() patch to reduce CPU usage under very
232 high data rates.
233 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
234 - username/groupname support from Marcus Rueckert
235 - added the "except" keyword to the "forwardfor" option (Bryan German)
236 - support for health-checks on other addresses (Fabrice Dulaunoy)
237 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
238 - do not insert "Connection: close" in HTTP/1.0 messages
239
Willy Tarreau9cabf702007-01-26 23:49:01 +01002402007/01/26 : 1.3.7
241 - fix critical bug introduced with 1.3.6 : an empty request header
242 may lead to a crash due to missing pointer assignment
243 - hdr_idx might be left uninitialized in debug mode
244 - fixed build on FreeBSD due to missing fd_set declaration
245
Willy Tarreaue7a24382007-01-22 08:57:44 +01002462007/01/22 : 1.3.6.1
247 - change in the header chaining broke cookies and authentication
248
Willy Tarreau49e1ee82007-01-22 00:56:46 +01002492007/01/22 : 1.3.6
250 - stats now support the HEAD method too
251 - extracted http request from the session
252 - huge rework of the HTTP parser which is now a 28-state FSM.
253 - linux-style likely/unlikely macros for optimization hints
254 - do not create a server socket when there's no server
255 - imported lots of docs
256
Willy Tarreau5871f8e2007-01-07 02:47:01 +01002572007/01/07 : 1.3.5
258 - stats: swap color sets for active and backup servers
259 - try to guess server check port when unset
260 - added complete support and doc for TCP Splicing
261 - replace the wait-queue linked list with an rbtree.
262 - a few bugfixes and cleanups
263
Willy Tarreau85270da2007-01-02 00:59:39 +01002642007/01/02 : 1.3.4
265 - support for cttproxy on the server side to present the client
266 address to the server.
267 - added support for SO_REUSEPORT on Linux (needs kernel patch)
268 - new RFC2616-compliant HTTP request parser with header indexing
269 - split proxies in frontends, rulesets and backends
270 - implemented the 'req[i]setbe' to select a backend depending
271 on the contents
272 - added the 'default_backend' keyword to select a default BE.
273 - new stats page featuring FEs and BEs + bytes in both dirs
274 - improved log format to indicate the backend and the time in ms.
275 - lots of cleanups
276
Willy Tarreau9c9fea42006-10-16 00:03:35 +02002772006/10/15 : 1.3.3
278 - fix broken redispatch option in case the connection has already
279 been marked "in progress" (ie: nearly always).
280 - support regparm on x86 to speed up some often called functions
281 - removed a few useless calls to gettimeofday() in log functions.
282 - lots of 'const char*' cleanups
283 - turn every FD_* into functions which are faster on recent CPUs
284
Willy Tarreau690f9aa2006-09-03 11:23:06 +02002852006/09/03 : 1.3.2
286 - started the changes towards I/O completion callbacks. stream_sock* have
287 replaced event_*.
288 - added the new "reqtarpit" and "reqitarpit" protection features
289
Willy Tarreau8f2b8552006-07-09 17:11:39 +02002902006/07/09 : 1.3.1 (1.2.15)
291 - now, haproxy warns about missing timeout during startup to try to
292 eliminate all those buggy configurations.
293 - added "Content-Type: text/html" in responses wherever appropriate, as
294 suggested by Cameron Simpson.
295 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
296 test server's health
297 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
298 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
299 at once.
300
Willy Tarreaub9e98b62006-07-03 10:32:46 +02003012006/06/29 : 1.3.0
302 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200303 difference is expected at all.
304 - fixed a bug by which neither stats nor error messages could be returned if
305 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200306
willy tarreau7e6328d2006-05-21 23:26:20 +02003072006/05/21 : 1.2.14
308 - new HTML status report with the 'stats' keyword.
309 - added the 'abortonclose' option to better resist traffic surges
310 - implemented dynamic traffic regulation with the 'minconn' option
311 - show request time on denied requests
312 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
313 - now a proxy instance is allowed to run without servers, which is
314 useful to dedicate one instance to stats
315 - added lots of error counters
316 - a missing parenthesis preventd matching of cacheable cookies
317 - a missing parenthesis in poll_loop() might have caused missed events.
318
Willy TARREAU4404b7e2006-05-14 10:00:09 +02003192006/05/14 : 1.2.13.1
320 - an uninitialized field in the struct session could cause a crash when
321 the session was freed. This has been encountered on Solaris only.
322 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
323 be nice to them by performing a soft stop if pause fails.
324
willy tarreauc3a2e072006-05-13 18:51:38 +02003252006/05/13 : 1.2.13
326 - 'maxconn' server parameter to do per-server session limitation
327 - queueing to support non-blocking session limitation
328 - fixed removal of cookies for cookie-less servers such as backup servers
329 - two separate wait queues for expirable and non-expirable tasks provide
330 better performance with lots of sessions.
331 - some code cleanups and performance improvements
332 - made state dumps a bit more verbose
333 - fixed missing checks for NULL srv in dispatch mode
334 - load balancing on backup servers was not possible in source hash mode.
335 - two session flags shared the same bit, but fortunately they were not
336 compatible.
337
willy tarreauc0d4bbd2006-04-15 21:47:50 +02003382006/04/15 : 1.2.12
339 Very few changes preparing for more important changes to support per-server
340 session limitations and queueing :
341 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
342 - added the 'weight' parameter to the servers, limited to 1..256. It applies
343 to roundrobin and source hash.
344 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
345
willy tarreaue0dd2692006-03-30 16:27:34 +02003462006/03/30 : 1.2.11.1
347 - under some conditions, it might have been possible that when the
348 last dead server became available, it would not have been used
349 till another one would have changed state. Could not be reproduced
350 at all, however seems possible from the code.
351
willy tarreaud2058dc2006-03-25 20:35:41 +01003522006/03/25 : 1.2.11
353 - added the '-db' command-line option to disable backgrounding.
354 - added the -sf/-st command-line arguments which are used to specify
355 a list of pids to send a FINISH or TERMINATE signal upon startup.
356 They will also be asked to release their port if a bind fails.
357 - reworked the startup mechanism to allow the sending of a signal to a list
358 of old pids if a socket cannot be bound, with a retry for a limited amount
359 of time (1 second by default).
360 - added the ability to enforce limits on memory usage.
361 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
362 - re-architectured the server round-robin mechanism to ease integration of
363 other algorithms. It now relies on the number of active and backup servers.
364 - added a counter for the number of active and backup servers, and report
365 these numbers upon SIGHUP or state change.
366
willy tarreaubfad5742006-03-23 14:19:11 +01003672006/03/23 : 1.2.10.1
368 - while fixing the backup server round-robin "feature", a new bug was
369 introduced which could miss some backup servers.
370 - the displayed proxy name was wrong when dumping upon SIGHUP.
371
willy tarreauaaff30e2006-03-19 21:30:41 +01003722006/03/19 : 1.2.10
373 - assert.h is needed when DEBUG is defined.
374 - ENORMOUS long standing bug affecting the epoll polling system :
375 event_data is a union, not a structure !
376 - Make fd management more robust and easier to debug. Also some
377 micro-optimisations.
378 - Limit the number of consecutive accept() in multi-process mode.
379 This produces a more evenly distributed load across the processes and
380 slightly improves performance by reducing bottlenecks.
381 - Make health-checks be more regular, and faster to retry after a timeout.
382 - Fixed some messages to ease parsing of alerts.
383 - provided a patch to enable epoll on RHEL3 kernels.
384 - Separated OpenBSD build from the main Makefile into a new one.
385
willy tarreau50be0172006-03-15 19:41:19 +01003862006/03/15 : 1.2.9
387 - haproxy could not be stopped after being paused, it had to be woken up
388 first. This has been fixed.
389 - the 'ulimit-n' parameter is now optional and by default computed from
390 maxconn + the number of listeners + the number of health-checks.
391 - it is now possible to specify a maximum number of connections at build
392 time with the SYSTEM_MAXCONN define. The value set in the configuration
393 file will then be limited to this value, and only the command-line '-n'
394 option will be able to bypass it. It will prevent against accidental
395 high memory usage on small systems.
396 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
397 versions did not detect a line beginning with a space as the continuation
398 of previous header. It is now correct.
399 - health checks sent to servers configured with identical intervals were
400 sent in perfect synchronisation because the initial time was the same
401 for all. This could induce high load peaks when fragile servers were
402 hosting tens of instances for the same application. Now the load is
403 spread evenly across the smallest interval amongst a listener.
404 - a new 'forceclose' option was added to make the proxy close the outgoing
405 channel to the server once it has sent all its headers and the server
406 starts responding. This helps some servers which don't close upon the
407 'Connection: close' header. It implies 'option httpclose'.
408 - there was a bug in the way the backup servers were handled. They were
409 erroneously load-balanced while the doc said the opposite. Since
410 load-balanced backup servers is one of the features some people have
411 been asking for, the problem was fixed to reflect the documented
412 behaviour and a new option 'allbackups' was introduced to provide the
413 feature to those who need it.
414 - a never ending connect() could lead to a fast select() loop if its
415 timeout times the number of retransmits exceeded the server read or write
416 timeout, because the later was used to compute select()'s timeout while
417 the connection timeout was not reached.
418 - now we initialize the libc's localtime structures very early so that even
419 under OOM conditions, we can still send dated error messages without
420 segfaulting.
421 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
422 descriptors are closed.
423
willy tarreau065f1c02006-01-29 22:10:07 +01004242006/01/29 : 1.2.8
425 - fixed a nasty bug affecting poll/epoll which could return unmodified data
426 from the server to the client, and sometimes lead to memory corruption
427 crashing the process.
428 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
429
4302005/12/18 : 1.2.7.1
431 - the "retries" option was ignored because connect() could not return an
432 error if the connection failed before the timeout.
433 - TCP health-checks could not detect a connection refused in poll/epoll
434 mode.
435
willy tarreaua56eca72005-12-18 01:34:42 +01004362005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +0100437 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
438 least on Solaris, this caused the libc's regex primitives to be used instead
439 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +0100440 - delayed the quiet mode during startup so that most of the startup alerts can
441 be displayed even in quiet mode.
442 - display an alert when a listener has no address, invalid or no port, or when
443 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +0100444 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +0100445
willy tarreaub952e1d2005-12-18 01:31:20 +01004462005/10/09 : 1.2.7rc (1.1.33rc)
447 - second batch of socklen_t changes.
448 - clean-ups from Cameron Simpson.
449 - because tv_remain() does not know about eternity, using no timeout can
450 make select() spin around a null time-out. Bug reported by Cameron Simpson.
451 - client read timeout was not properly set to eternity initialized after an
452 accept() if it was not set in the config. It remained undetected so long
453 because eternity is 0 and newly allocated pages are zeroed by the system.
454 - do not call get_original_dst() when not in transparent mode.
455 - implemented a workaround for a bug in certain epoll() implementations on
456 linux-2.4 kernels (epoll-lt <= 0.21).
457 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
458
willy tarreauc5f73ed2005-12-18 01:26:38 +01004592005/08/07 : 1.2.6
460 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
461
4622005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +0100463 - added the number of active sessions (proxy/process) in the logs
464
4652005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +0100466 - the time-out fix introduced in 1.1.25 caused a corner case where it was
467 possible for a client to keep a connection maintained regardless of the
468 timeout if the server closed the connection during the HEADER phase,
469 while the client ignored the close request while doing nothing in the
470 other direction. This has been fixed now by ensuring that read timeouts
471 are re-armed when switching to any SHUTW state.
472
4732005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
474 - enhanced error reporting in the logs. Now the proxy will precisely detect
475 various error conditions related to the system and/or process limits, and
476 generate LOG_EMERG logs indicating that a resource has been exhausted.
477 - logs will contain two new characters for the error cause : 'R' indicates
478 a resource exhausted, and 'I' indicates an internal error, though this
479 one should never happen.
480 - server connection timeouts can now be reported in the logs (sC), as well
481 as connections refused because of maxconn limitations (PC).
482
4832005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
484 - new global configuration keyword "ulimit-n" may be used to raise the FD
485 limit to usable values.
486 - a warning is now displayed on startup if the FD limit is lower than the
487 configured maximum number of sockets.
488
4892005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
490 - new configuration keyword "monitor-net" makes it possible to be monitored
491 by external devices which connect to the proxy without being logged nor
492 forwarded to any server. Particularly useful on generic TCPv4 relays.
493
willy tarreau5dffb602005-12-18 01:15:23 +01004942005/06/21 : 1.2.5.2
495 - fixed build on PPC where chars are unsigned by default
496
willy tarreau08dedbe2005-12-18 01:13:48 +01004972005/05/02 : 1.2.5.1
498 - dirty hack to fix a bug introduced with epoll : if we close an FD and
499 immediately reassign it to another session through a connect(), the
500 Prev{Read,Write}Events are not updated, which causes trouble detecting
501 changes, thus leading to many timeouts at high loads.
502
willy tarreau64a3cc32005-12-18 01:13:11 +01005032005/04/30 : 1.2.5 (1.1.31)
504 - changed the runtime argument to disable epoll() to '-de'
505 - changed the runtime argument to disable poll() to '-dp'
506 - added global options 'nopoll' and 'noepoll' to do the same at the
507 configuration level.
508 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
509 support epoll().
510 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
511 - conditionned signals redirection to #ifdef DEBUG_MEMORY
512
willy tarreau1c2ad212005-12-18 01:11:29 +01005132005/04/26 : 1.2.5-pre4
514 - made epoll() support a compile-time option : ENABLE_EPOLL
515 - provided a very little libc replacement for a possibly missing epoll()
516 implementation which can be enabled by -DUSE_MY_EPOLL
517 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
518 The equivalent runtime argument becomes '-P'. A few tests show that it
519 performs like select() with many fds, but slightly slower (certainly
520 because of the higher amount of memory involved).
521 - separated the 3 polling methods and the tasks scheduler into 4 distinct
522 functions which makes the code a lot more modular.
523 - moved some event tables to private static declarations inside the poller
524 functions.
525 - the poller functions can now initialize themselves, run, and cleanup.
526 - changed the runtime argument to enable epoll() to '-E'.
527 - removed buggy epoll_ctl() code in the client_retnclose() function. This
528 function was never meant to remove anything.
529 - fixed a typo which caused glibc to yell about a double free on exit.
530 - removed error checking after epoll_ctl(DEL) because we can never know if
531 the fd is still active or already closed.
532 - added a few entries in the makefile
533
willy tarreauad90a0c2005-12-18 01:09:15 +01005342005/04/25 : 1.2.5-pre3
535 - experimental epoll() support (use temporary '-e' argument)
536
5372005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +0100538 - implemented the HTTP 303 code for error redirection. This forces the
539 browser to fetch the given URI with a GET request. The new keyword for
540 this is 'errorloc303', and a new 'errorloc302' keyword has been created
541 to make them easily distinguishable.
542 - added more controls in the parser for valid use of '\x' sequence.
543 - few fixes from Alex & Klaus
544
willy tarreauad90a0c2005-12-18 01:09:15 +01005452005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +0100546 - fixed a few errors in the documentation
547
5482005/02/13
549 - do not pre-initialize unused file-descriptors before select() anymore.
550
willy tarreau12350152005-12-18 01:03:27 +01005512005/01/22 : 1.2.4
552 - merged Alexander Lazic's and Klaus Wagner's work on application
553 cookie-based persistence. Since this is the first merge, this version is
554 not intended for general use and reports are more than welcome. Some
555 documentation is really needed though.
556
willy tarreau0174f312005-12-18 01:02:42 +01005572005/01/22 : 1.2.3 (1.1.30)
558 - add an architecture guide to the documentation
559 - released without any changes
560
5612004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
562 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
563 compatible with Apache. This limit can be configured in the makefile now.
564 Thanks to Eric Fehr for the checks.
565 - added a per-server "source" option which now makes it possible to bind to
566 a different source for each (potentially identical) server.
567 - changed cookie-based server selection slightly to allow several servers to
568 share a same cookie, thus making it possible to associate backup servers to
569 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
570 - added the cookie 'prefix' mode which makes it possible to use persistence
571 with thin clients which support only one cookie. The server name is prefixed
572 before the application cookie, and restore back.
573 - fixed the order of servers within an instance to match documentation. Now
574 the servers are *really* used in the order of their declaration. This is
575 particularly important when multiple backup servers are in use.
576
willy tarreau4302f492005-12-18 01:00:37 +01005772004/10/18 : 1.2.2 (1.1.29)
578 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
579 option was enabled without the 'tcplog' option.
580 - encode_string() would use hdr_encode_map instead of the map argument.
581
5822004/08/10 : (1.1.29-pre2)
583 - the logged request is now encoded with '#XX' for unprintable characters
584 - new keywords 'capture request header' and 'capture response header' enable
585 logging of arbitrary HTTP headers in requests and responses
586 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
587
willy tarreau982249e2005-12-18 00:57:06 +01005882004/06/06 : 1.2.1 (1.1.28)
589 - added the '-V' command line option to verbosely report errors even though
590 the -q or 'quiet' options are specified. This is useful with '-c'.
591 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +0100592
willy tarreau982249e2005-12-18 00:57:06 +01005932004/06/05 :
594 - added the "logasap" option which produces a log without waiting for the data
595 to be transferred from the server to the client.
596 - added the "httpclose" option which removes any "connection:" header and adds
597 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +0100598 - added the 'checkcache' option which blocks cacheable responses containing
599 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +0100600 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
601 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +0100602
6032004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +0100604 - send an EMERG log when no server is available for a given proxy
605 - added the '-c' command line option to syntactically check the
606 configuration file without starting the service.
607
willy tarreau8a86dbf2005-12-18 00:45:59 +01006082003/11/09 : 1.2.0
609 - the same as 1.1.27 + IPv6 support on the client side
610
willy tarreaufe2c5c12005-12-17 14:14:34 +01006112003/10/27 : 1.1.27
612 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
613 bug : the code still assumed that HTTP requests were the same size as the
614 original ones (22 bytes), and failed if they were not.
615 - added support for pidfiles.
616
willy tarreauc58fc692005-12-17 14:13:08 +01006172003/10/22 : 1.1.26
618 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
619 broke almost all compatibility with POST requests, because the proxy
620 stopped to read anything from the client as soon as it got all of its
621 headers.
622
willy tarreauc1cae632005-12-17 14:12:23 +01006232003/10/15 : 1.1.25
624 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
625 generic TCP proxies, or lighter logs for HTTP proxies.
626 - fixed a time-out condition wrongly reported as client time-out in data
627 phase if the client timeout was lower than the connect timeout times the
628 number of retries.
629
willy tarreau197e8ec2005-12-17 14:10:59 +01006302003/09/21 : 1.1.24
631 - if a client sent a full request then shut its write connection down, then
632 the request was aborted. This case was detected only when using haproxy
633 both as health-check client and as a server.
634 - if 'option httpchk' is used in a 'health' mode server, then responses will
635 change from 'OK' to 'HTTP/1.0 200 OK'.
636 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
637 server response followed by a close could be ignored, and the server seen
638 as failed.
639
willy tarreaueedaa9f2005-12-17 14:08:03 +01006402003/09/19 : 1.1.23
641 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
642 'default' sections to keep previous parameters, and not initialize logs
643 correctly.
644 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
645 relying on 'dispatch' mode to segfault at the first connection.
646 - 'option httpchk' now supports method, HTTP version and a few headers.
647 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
648 'defaults' section
649
6502003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +0100651 - 'listen' now supports optionnal address:port-range lists
652 - 'bind' introduced to add new listen addresses
653 - fixed a bug which caused a session to be kept established on a server till
654 it timed out if the client closed during the DATA phase.
655 - the port part of each server address can now be empty to make the proxy
656 connect to the server on the same port it was connected to, be an absolute
657 unsigned number to reflect a single port (as in older versions), or an
658 explicitly signed number (+N/-N) to indicate that this offset must be
659 applied to the port the proxy was connected to, when connecting to the
660 server.
661 - the 'port' server option allows the user to specify a different
662 health-check port than the service one. It is mandatory when only relative
663 ports have been specified and check is required. By default, the checks are
664 sent to the service port.
665 - new 'defaults' section which is rather similar to 'listen' except that all
666 values are only used as default values for future 'listen' sections, until
667 a new 'defaults' resets them. At the moment, server options, regexes,
668 cookie names and captures cannot be set in the 'defaults' section.
669
willy tarreau2f6ba652005-12-17 13:57:42 +01006702003/05/06 : 1.1.21
671 - changed the debug output format so that it now includes the session unique
672 ID followed by the instance name at the beginning of each line.
673 - in debug mode, accept now shows the client's IP and port.
674 - added one 3 small debugging scripts to search and pretty print debug output
675 - changed the default health check request to "OPTIONS /" instead of
676 "OPTIONS *" since not all servers implement the later one.
677 - "option httpchk" now accepts an optional parameter allowing the user to
678 specify and URI other than '/' during health-checks.
679
willy tarreaub1ff9db2005-12-17 13:51:03 +01006802003/04/21 : 1.1.20
681 - fixed two problems with time-outs, one where a server would be logged as
682 timed out during transfer that take longer to complete than the fixed
683 time-out, and one where clients were logged as timed-out during the data
684 phase because they didn't have anything to send. This sometimes caused
685 slow client connections to close too early while in fact there was no
686 problem. The proper fix would be to have a per-fd time-out with
687 conditions depending on the state of the HTTP FSM.
688
willy tarreau906b2682005-12-17 13:49:52 +01006892003/04/16 : 1.1.19
690 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
691 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
692 cookie persistence because it uses "cookie:". Two memcmp() have been
693 replaced with strncasecmp().
694
willy tarreau036e1ce2005-12-17 13:46:33 +01006952003/04/02 : 1.1.18
696 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
697 REGEX=pcre on the make command line.
698 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
699 - when explicit source address binding is required, it is now also used for
700 health-checks.
701 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
702 itself.
703 - factored several strings to reduce binary size by about 2 kB.
704 - replaced setreuid() and setregid() with more standard setuid() and setgid().
705 - added 4 status flags to the log line indicating who ended the connection
706 first, the sessions state, the validity of the cookie, and action taken on
707 the set-cookie header.
708
7092002/10/18 : 1.1.17
710 - add the notion of "backup" servers, which are used only when all other
711 servers are down.
712 - make Set-Cookie return "" instead of "(null)" when the server has no
713 cookie assigned (useful for backup servers).
714 - "log" now supports an optionnal level name (info, notice, err ...) above
715 which nothing is sent.
716 - replaced some strncmp() with memcmp() for better efficiency.
717 - added "capture cookie" option which logs client and/or server cookies
718 - cleaned up/down messages and dump servers states upon SIGHUP
719 - added a redirection feature for errors : "errorloc <errnum> <url>"
720 - now we won't insist on connecting to a dead server, even with a cookie,
721 unless option "persist" is specified.
722 - added HTTP/408 response for client request time-out and HTTP/50[234] for
723 server reply time-out or errors.
724
7252002/09/01 : 1.1.16
726 - implement HTTP health checks when option "httpchk" is specified.
727
7282002/08/07 : 1.1.15
729 - replaced setpgid()/setpgrp() with setsid() for better portability, because
730 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
731
7322002/07/20 : 1.1.14
733 - added "postonly" cookie mode
734
7352002/07/15 : 1.1.13
736 - tv_diff used inverted parameters which led to negative times !
737
7382002/07/13 : 1.1.12
739 - fixed stats monitoring, and optimized some tv_* for most common cases.
740 - replaced temporary 'newhdr' with 'trash' to reduce stack size
741 - made HTTP errors more HTML-fiendly.
742 - renamed strlcpy() to strlcpy2() because of a slightly difference between
743 their behaviour (return value), to avoid confusion.
744 - restricted HTTP messages to HTTP proxies only
745 - added a 502 message when the connection has been refused by the server,
746 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
747 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
748 inserting a cookie, because some caches (apache) don't understand it.
749 - fixed processing of server headers when client is in SHUTR state
750
7512002/07/04 :
752 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
753 setpgid()
754
7552002/06/04 : 1.1.11
756 - fixed multi-cookie handling in client request to allow clean deletion
757 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +0100758 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +0100759 - added a "nocache" option to "cookie" to specify that we explicitly want
760 to add a "cache-control" header when we add a cookie.
761 It is also possible to add an "Expires: <old-date>" to keep compatibility
762 with old/broken caches.
763
7642002/05/10 : 1.1.10
765 - if a cookie is used in insert+indirect mode, it's desirable that the
766 the servers don't see it. It was not possible to remove it correctly
767 with regexps, so now it's removed automatically.
768
7692002/04/19 : 1.1.9
770 - don't use snprintf()'s return value as an end of message since it may
771 be larger. This caused bus errors and segfaults in internal libc's
772 getenv() during localtime() in send_log().
773 - removed dead insecure send_syslog() function and all references to it.
774 - fixed warnings on Solaris due to buggy implementation of isXXXX().
775
7762002/04/18 : 1.1.8
777 - option "dontlognull"
778 - fixed "double space" bug in config parser
779 - fixed an uninitialized server field in case of dispatch
780 with no existing server which could cause a segfault during
781 logging.
782 - the pid logged was always the father's, which was wrong for daemons.
783 - fixed wrong level "LOG_INFO" for message "proxy started".
784
7852002/04/13 :
786 - http logging is now complete :
787 - ip:port, date, proxy, server
788 - req_time, conn_time, hdr_time, tot_time
789 - status, size, request
790 - source address
791
7922002/04/12 : 1.1.7
793 - added option forwardfor
794 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
795 - added "log global" in "listen" section.
796
7972002/04/09 :
798 - added a new "global" section :
799 - logs
800 - debug, quiet, daemon modes
801 - uid, gid, chroot, nbproc, maxconn
802
8032002/04/08 : 1.1.6
804 - regex are now chained and not limited anymore.
805 - unavailable server now returns HTTP/502.
806 - increased per-line args limit to 40
807 - added reqallow/reqdeny to block some request on matches
808 - added HTTP 400/403 responses
809
8102002/04/03 : 1.1.5
811 - connection logging displayed incorrect source address.
812 - added proxy start/stop and server up/down log events.
813 - replaced log message short buffers with larger trash.
814 - enlarged buffer to 8 kB and replace buffer to 4 kB.
815
8162002/03/25 : 1.1.4
817 - made rise/fall/interval time configurable
818
8192002/03/22 : 1.1.3
820 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
821 which could lead to loops.
822
8232002/03/21 : 1.1.2
824 - fixed a bug in buffer management where we could have a loop
825 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
826 => implemented an adjustable buffer limit.
827 - fixed a bug : expiration of tasks in wait queue timeout is used again,
828 and running tasks are skipped.
829 - added some debug lines for accept events.
830 - send warnings for servers up/down.
831
8322002/03/12 : 1.1.1
833 - fixed a bug in total failure handling
834 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
835
8362002/03/10 : 1.1.0
837 - fixed a few timeout bugs
838 - rearranged the task scheduler subsystem to improve performance,
839 add new tasks, and make it easier to later port to librt ;
840 - allow multiple accept() for one select() wake up ;
841 - implemented internal load balancing with basic health-check ;
842 - cookie insertion and header add/replace/delete, with better strings
843 support.
844
8452002/03/08
846 - reworked buffer handling to fix a few rewrite bugs, and
847 improve overall performance.
848 - implement the "purge" option to delete server cookies in direct mode.
849
8502002/03/07
851 - fixed some error cases where the maxfd was not decreased.
852
8532002/02/26
854 - now supports transparent proxying, at least on linux 2.4.
855
8562002/02/12
857 - soft stop works again (fixed select timeout computation).
858 - it seems that TCP proxies sometimes cannot timeout.
859 - added a "quiet" mode.
860 - enforce file descriptor limitation on socket() and accept().
861
8622001/12/30 : release of version 1.0.2 : fixed a bug in header processing
8632001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
8642001/12/16 : release of version 1.0.0.
8652001/12/16 : added syslog capability for each accepted connection.
8662001/11/19 : corrected premature end of files and occasional SIGPIPE.
8672001/10/31 : added health-check type servers (mode health) which replies OK then closes.
8682001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
869 with or without cookies (use keyword http for this).
8702001/09/01 : added client/server header replacing with regexps.
871 eg:
872 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
873 srvexp ^Server:\ .* Server:\ Apache
8742000/11/29 : first fully working release with complete FSMs and timeouts.
8752000/11/28 : major rewrite
8762000/11/26 : first write