blob: bdc01544428f729f2c99eefb9242d6f9421537bc [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau8185ced2009-03-09 22:45:53 +010042009/03/09 : 1.3.16-rc2
5 - [BUG] stream_sock: write timeout must be updated when forwarding !
6
Willy Tarreauff63b432009-03-09 01:03:42 +010072009/03/09 : 1.3.16-rc1
8 - appsessions: cleanup DEBUG_HASH and initialize request_counter
9 - [MINOR] acl: add new keyword "connslots"
10 - [MINOR] cfgparse: fix off-by 2 in error message size
11 - [BUILD] fix build with gcc 4.3
12 - [BUILD] fix MANDIR default location to match documentation
13 - [TESTS] add a debug patch to help trigger the stats bug
14 - [BUG] Flush buffers also where there are exactly 0 bytes left
15 - [MINOR] Allow to specify a domain for a cookie
16 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
17 - [MEDIUM] Fix memory freeing at exit
18 - [MEDIUM] Fix memory freeing at exit, part 2
19 - [BUG] Fix listen & more of 2 couples <ip>:<port>
20 - [DOC] remove buggy comment for use_backend
21 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
22 - [MEDIUM] add support for URI hash depth and length limits
23 - [MINOR] permit renaming of x-forwarded-for header
24 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
25 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
26 - [MEDIUM] upgrade to ebtree v4.0
27 - [DOC] update the README file with new build options
28 - [MEDIUM] reduce risk of event starvation in ev_sepoll
29 - [MEDIUM] detect streaming buffers and tag them as such
30 - [MEDIUM] add support for conditional HTTP redirection
31 - [BUILD] make install should depend on haproxy not "all"
32 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
33 - [BUG] event pollers must not wait if a task exists in the run queue
34 - [BUG] queue management: wake oldest request in queues
35 - [BUG] log: reported queue position was offed-by-one
36 - [BUG] fix the dequeuing logic to ensure that all requests get served
37 - [DOC] documentation for the "retries" parameter was missing.
38 - [MEDIUM] implement a monotonic internal clock
39 - [MEDIUM] further improve monotonic clock by check forward jumps
40 - [OPTIM] add branch prediction hints in list manipulations
41 - [MAJOR] replace ultree with ebtree in wait-queues
42 - [BUG] we could segfault during exit while freeing uri_auths
43 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
44 - [MINOR] introduce now_ms, the current date in milliseconds
45 - [BUG] disable buffer read timeout when reading stats
46 - [MEDIUM] rework the wait queue mechanism
47 - [BUILD] change declaration of base64tab to fix build with Intel C++
48 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
49 - [MAJOR] use an ebtree instead of a list for the run queue
50 - [MEDIUM] introduce task->nice and boot access to statistics
51 - [OPTIM] task_queue: assume most consecutive timers are equal
52 - [BUILD] silent a warning in unlikely() with gcc 4.x
53 - [MAJOR] convert all expiration timers from timeval to ticks
54 - [BUG] use_backend would not correctly consider "unless"
55 - [TESTS] added test-acl.cfg to test some ACL combinations
56 - [MEDIUM] add support for configuration keyword registration
57 - [MEDIUM] modularize the global "stats" keyword configuration parser
58 - [MINOR] cfgparse: add support for warnings in external functions
59 - [MEDIUM] modularize the "timeout" keyword configuration parser
60 - [MAJOR] implement tcp request content inspection
61 - [MINOR] acl: add a new parsing function: parse_dotted_ver
62 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
63 - [CLEANUP] remove unused include/types/client.h
64 - [CLEANUP] remove many #include <types/xxx> from C files
65 - [CLEANUP] remove dependency on obsolete INTBITS macro
66 - [DOC] document the new "tcp-request" keyword and associated ACLs
67 - [MINOR] acl: add REQ_CONTENT to the list of default acls
68 - [MEDIUM] acl: permit fetch() functions to set the result themselves
69 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
70 - [MINOR] acl: add the "wait_end" acl verb
71 - [MEDIUM] acl: enforce ACL type checking
72 - [MEDIUM] acl: set types on all currently known ACL verbs
73 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
74 - [CLEANUP] remove 65 useless NULL checks before free
75 - [MEDIUM] memory: update pool_free2() to support NULL pointers
76 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
77 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
78 - [MEDIUM] process_srv: don't rely at all on client state
79 - [MEDIUM] process_cli: don't rely at all on server state
80 - [BUG] fix segfault with url_param + check_post
81 - [BUG] server timeout was not considered in some circumstances
82 - [BUG] client timeout incorrectly rearmed while waiting for server
83 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
84 - [MAJOR] get rid of SV_STANALYZE (step 2)
85 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
86 - [MAJOR] completely separate HTTP and TCP states on the request path
87 - [BUG] fix recently introduced loop when client closes early
88 - [MAJOR] get rid of the SV_STHEADERS state
89 - [MAJOR] better separation of response processing and server state
90 - [MAJOR] clearly separate HTTP response processing from TCP server state
91 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
92 - [MINOR] term_trace: add better instrumentations to trace the code
93 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
94 - [BUG] process_response must not enable the read FD
95 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
96 - [BUG] process_response: do not touch srv_state
97 - [BUG] maintain_proxies must not disable backends
98 - [CLEANUP] get rid of BF_SHUT*_PENDING
99 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
100 - [MAJOR] process_session: rely only on buffer flags
101 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
102 - [MEDIUM] centralize buffer timeout checks at the top of process_session
103 - [MINOR] ensure the termination flags are set by process_xxx
104 - [MEDIUM] session: move the analysis bit field to the buffer
105 - [OPTIM] process_cli/process_srv: reduce the number of tests
106 - [BUG] regparm is broken on gcc < 3
107 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
108 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
109 - [BUG] process_cli/process_srv: don't call shutdown when already done
110 - [BUG] process_request: HTTP body analysis must return zero if missing data
111 - [TESTS] test-fsm: 22 regression tests for state machines
112 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
113 - [BUG] fix harmless but wrong fd insertion sequence
114 - [MEDIUM] make it possible for analysers to follow the whole session
115 - [MAJOR] rework of the server FSM
116 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
117 - [MEDIUM] massive cleanup of process_srv()
118 - [MEDIUM] second level of code cleanup for process_srv_data
119 - [MEDIUM] third cleanup and optimization of process_srv_data()
120 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
121 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
122 - [MAJOR] make the client side use stream_sock_process_data()
123 - [MEDIUM] split stream_sock_process_data
124 - [OPTIM] stream_sock_read must check for null-reads more often
125 - [MINOR] only call flow analysers when their read side is connected.
126 - [MEDIUM] reintroduce BF_HIJACK with produce_content
127 - [MINOR] re-arrange buffer flags and rename some of them
128 - [MINOR] do not check for BF_SHUTR when computing write timeout
129 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
130 - [OPTIM] reduce the number of calls to task_wakeup()
131 - [OPTIM] force inlining of large functions with gcc >= 3
132 - [MEDIUM] indicate a reason for a task wakeup
133 - [MINOR] change type of fdtab[]->owner to void*
134 - [MAJOR] make stream sockets aware of the stream interface
135 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
136 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
137 - [MEDIUM] process_session: make use of the new buffer flags
138 - [CLEANUP] process_session: move debug outputs out of the critical loop
139 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
140 - [OPTIM] add compiler hints in tick_is_expired()
141 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
142 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
143 - [MINOR] add an expiration flag to the stream_sock_interface
144 - [MAJOR] migrate the connection logic to stream interface
145 - [MAJOR] add a connection error state to the stream_interface
146 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
147 - [MEDIUM] continue layering cleanups.
148 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
149 - [MEDIUM] remove stream_sock_update_data()
150 - [MINOR] maintain a global session list in order to ease debugging
151 - [BUG] shutw must imply close during a connect
152 - [MEDIUM] process shutw during connection attempt
153 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
154 - [MAJOR] complete layer4/7 separation
155 - [CLEANUP] move the session-related functions to session.c
156 - [MINOR] call session->do_log() for logging
157 - [MINOR] replace the ambiguous client_return function by stream_int_return
158 - [MINOR] replace client_retnclose() with stream_int_retnclose()
159 - [MINOR] replace srv_close_with_err() with http_server_error()
160 - [MEDIUM] make the http server error function a pointer in the session
161 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
162 - [MINOR] stream_sock_data_finish() should not expose fd
163 - [MEDIUM] extract TCP request processing from HTTP
164 - [MEDIUM] extract the HTTP tarpit code from process_request().
165 - [MEDIUM] move the HTTP request body analyser out of process_request().
166 - [MEDIUM] rename process_request to http_process_request
167 - [BUG] fix forgotten server session counter
168 - [MINOR] declare process_session in session.h, not proto_http.h
169 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
170 - [MINOR] add an analyser code for UNIX stats request
171 - [MINOR] pre-set analyser flags on the listener at registration time
172 - [BUG] do not forward close from cons to prod with analysers
173 - [MEDIUM] ensure that sock->shutw() also closes read for init states
174 - [MINOR] add an analyser state in struct session
175 - [MAJOR] make unix sockets work again with stats
176 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
177 - [MINOR] move the listener reference from fd to session
178 - [MEDIUM] reference the current hijack function in the buffer itself
179 - [MINOR] slightly rebalance stats_dump_{raw,http}
180 - [MINOR] add a new back-reference type : struct bref
181 - [MINOR] add back-references to sessions for later use by a dumper.
182 - [MEDIUM] add support for "show sess" in unix stats socket
183 - [BUG] do not release the connection slot during a retry
184 - [BUG] dynamic connection throttling could return a max of zero conns
185 - [BUG] do not try to pause backends during reload
186 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
187 - [BUG] acl-related keywords are not allowed in defaults sections
188 - [BUG] cookie capture is declared in the frontend but checked on the backend
189 - [BUG] critical errors should be reported even in daemon mode
190 - [MINOR] redirect: add support for the "drop-query" option
191 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
192 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
193 - [BUG] do not dequeue requests on a dead server
194 - [BUG] do not dequeue the backend's pending connections on a dead server
195 - [MINOR] stats: indicate if a task is running in "show sess"
196 - [BUG] check timeout must not be changed if timeout.check is not set
197 - [BUG] "option transparent" is for backend, not frontend !
198 - [MINOR] transfer errors were not reported anymore in data phase
199 - [MEDIUM] add a send limit to a buffer
200 - [MEDIUM] don't report buffer timeout when there is I/O activity
201 - [MEDIUM] indicate when we don't care about read timeout
202 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
203 - [MEDIUM] enable inter-stream_interface wakeup calls
204 - [MAJOR] implement autonomous inter-socket forwarding
205 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
206 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
207 - [MEDIUM] i/o: rework ->to_forward and ->send_max
208 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
209 - [OPTIM] buffer: replace rlim by max_len
210 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
211 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
212 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
213 - [MEDIUM] split stream_sock_write() into callback and core functions
214 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
215 - [MINOR] stream_sock: fix a few wrong empty calculations
216 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
217 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
218 - [MEDIUM] splice: add configuration options and set global.maxpipes
219 - [MINOR] introduce structures required to support Linux kernel splicing
220 - [MEDIUM] add definitions for Linux kernel splicing
221 - [MAJOR] complete support for linux 2.6 kernel splicing
222 - [BUG] reserve some pipes for backends with splice enabled
223 - [MEDIUM] splice: add hints to support older buggy kernels
224 - [MEDIUM] introduce pipe pools
225 - [MEDIUM] splice: make use of pipe pools
226 - [STATS] report pipe usage in the statistics
227 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
228 - [BUILD] fix snapshot date extraction with negative timezones
229 - [MEDIUM] move global tuning options to the global structure
230 - [MEDIUM] splice: add the global "nosplice" option
231 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
232 - [BUG] we must not exit if protocol binding only returns a warning
233 - [MINOR] add support for bind interface name
234 - [BUG] inform the user when root is expected but not set
235 - [MEDIUM] add support for source interface binding
236 - [MEDIUM] add support for source interface binding at the server level
237 - [MEDIUM] implement bind-process to limit service presence by process
238 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
239 - [DOC] filled the logging section of the configuration manual
240 - [DOC] document HTTP status codes
241 - [DOC] document a few missing info about errorfile
242 - [BUG] fix random memory corruption using "show sess"
243 - [BUG] fix unix socket processing of interrupted output
244 - [DOC] add diagrams of queuing and future ACL design
245 - [BUILD] proto_http did not build on gcc-2.95
246 - [BUG] the "source" keyword must first clear optional settings
247 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
248 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
249 - [MEDIUM] store a complete dump of request and response errors in proxies
250 - [MEDIUM] implement error dump on unix socket with "show errors"
251 - [DOC] document "show errors"
252 - [MINOR] errors dump must use user-visible date, not internal date.
253 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
254 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
255 - [MEDIUM] measure and report session rate on frontend, backends and servers
256 - [BUG] the "connslots" keyword was matched as "connlots"
257 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
258 - [MEDIUM] implement "rate-limit sessions" for the frontend
259 - [BUG] interface binding: length must include the trailing zero
260 - [BUG] typo in timeout error reporting : report *res and not *err
261 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
262 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
263 - [BUG] switch server-side stream interface to close in case of abort
264 - [CLEANUP] remove last references to term_trace
265 - [OPTIM] freq_ctr: do not rotate the counters when reading
266 - [BUG] disable any analysers for monitoring requests
267 - [BUG] rate-limit in defaults section was ignored
268 - [BUG] task: fix handling of duplicate keys
269 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
270 - [OPTIM] displace tasks in the wait queue only if absolutely needed
271 - [MEDIUM] minor update to the task api: let the scheduler queue itself
272 - [BUG] event_accept() must always wake the task up, even in health mode
273 - [CLEANUP] task: distinguish between clock ticks and timers
274 - [OPTIM] task: reduce the number of calls to task_queue()
275 - [OPTIM] do not re-check req buffer when only response has changed
276 - [CLEANUP] don't enable kernel splicing when socket is closed
277 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
278 - [MINOR] buffers: implement buffer_flush()
279 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
280 - [BUILD] build fixes for Solaris
281 - [BUILD] proto_http did not build on gcc-2.95 (again)
282 - [CONTRIB] halog: fast log parser for haproxy
283 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
284
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +02002852008/04/19 : 1.3.15
286 - [BUILD] Added support for 'make install'
287 - [BUILD] Added 'install-man' make target for installing the man page
288 - [BUILD] Added 'install-bin' make target
289 - [BUILD] Added 'install-doc' make target
290 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
291 - [BUILD] Changed 'install' target to install the binaries first
292 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
293 - [MEDIUM]: Inversion for options
294 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
295 - [BUG]: Restore clearing t->logs.bytes
296 - [MEDIUM]: rework checks handling
297 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
298 - [MEDIUM] Implement "track [<backend>/]<server>"
299 - [MINOR] Implement persistent id for proxies and servers
300 - [BUG] Don't increment server connections too much + fix retries
301 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
302 - [MAJOR] proto_uxst rework -> SNMP support
303 - [BUG] appsession lookup in URL does not work
304 - [BUG] transparent proxy address was ignored in backend
305 - [BUG] hot reconfiguration failed because of a wrong error check
306 - [DOC] big update to the configuration manual
307 - [DOC] large update to the configuration manual
308 - [DOC] document more options
309 - [BUILD] major rework of the GNU Makefile
310 - [STATS] add support for "show info" on the unix socket
311 - [DOC] document options forwardfor to logasap
312 - [MINOR] add support for the "backlog" parameter
313 - [OPTIM] introduce global parameter "tune.maxaccept"
314 - [MEDIUM] introduce "timeout http-request" in frontends
315 - [MINOR] tarpit timeout is also allowed in backends
316 - [BUG] increment server connections for each connect()
317 - [MEDIUM] add a turn-around state of one second after a connection failure
318 - [BUG] fix typo in redispatched connection
319 - [DOC] document options nolinger to ssl-hello-chk
320 - [DOC] added documentation for "option tcplog" to "use_backend"
321 - [BUG] connect_server: server might not exist when sending error report
322 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
323 - [MEDIUM] add non-local bind to connect() on Linux
324 - [MINOR] add transparent proxy support for balabit's Tproxy v4
325 - [BUG] use backend's source and not server's source with tproxy
326 - [BUG] fix overlapping server flags
327 - [MEDIUM] fix server health checks source address selection
328 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
329 - [DOC] added "server", "source" and "stats" keywords
330 - [DOC] all server parameters have been documented
331 - [DOC] document all req* and rsp* keywords.
332 - [DOC] added documentation about HTTP header manipulations
333 - [BUG] log response byte count, not request
334 - [BUILD] code did not build in full debug mode
335 - [BUG] fix truncated responses with sepoll
336 - [MINOR] use s->frt_addr as the server's address in transparent proxy
337 - [MINOR] fix configuration hint about timeouts
338 - [DOC] minor cleanup of the doc and notice to contributors
339 - [MINOR] report correct section type for unknown keywords.
340 - [BUILD] update MacOS Makefile to build on newer versions
341 - [DOC] fix erroneous "useallbackups" option in the doc
342 - [DOC] applied small fixes from early readers
343 - [MINOR] add configuration support for "redir" server keyword
344 - [MEDIUM] completely implement the server redirection method
345 - [TESTS] add a test case for the server redirection mechanism
346 - [DOC] add a configuration entry for "server ... redir <prefix>"
347 - [BUILD] backend.c and checks.c did not build without tproxy !
348 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
349 - [BUILD] backend.c and checks.c did not build without tproxy !
350 - [OPTIM] used unsigned ints for HTTP state and message offsets
351 - [OPTIM] GCC4's builtin_expect() is suboptimal
352 - [BUG] failed conns were sometimes incremented in the frontend!
353 - [BUG] timeout.check was not pre-set to eternity
354 - [TESTS] add test-pollers.cfg to easily report pollers in use
355 - [BUG] do not apply timeout.connect in checks if unset
356 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
357 - [MINOR] silent gcc for a wrong warning
358 - [CLEANUP] update .gitignore to ignore more temporary files
359 - [CLEANUP] report dlmalloc's source path only if explictly specified
360 - [BUG] str2sun could leak a small buffer in case of error during parsing
361 - [BUG] option allbackups was not working anymore in roundrobin mode
362 - [MAJOR] implementation of the "leastconn" load balancing algorithm
363 - [BUILD] ensure that users don't build without setting the target anymore.
364 - [DOC] document the leastconn LB algo
365 - [MEDIUM] fix stats socket limitation to 16 kB
366 - [DOC] fix unescaped space in httpchk example.
367 - [BUG] fix double-decrement of server connections
368 - [TESTS] add a test case for port mapping
369 - [TESTS] add a benchmark for integer hashing
370 - [TESTS] add new methods in ip-hash test file
371 - [MAJOR] implement parameter hashing for POST requests
372
Willy Tarreaue5b77e82007-12-06 01:25:44 +01003732007/12/06 : 1.3.14
374 - New option http_proxy (Alexandre Cassen)
375 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
376 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
377 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
378 - use backends only with use_backend directive (Krzysztof Oledzki)
379 - Handle long lines properly (Krzysztof Oledzki)
380 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
381 - continous statistics (Krzysztof Oledzki)
382 - add support for logging via a UNIX socket (Robert Tsai)
383 - fix error checking in strl2ic/strl2uic()
384 - fix calls to localtime()
385 - provide easier-to-use ultoa_* functions
386 - provide easy-to-use limit_r and LIM2A* macros
387 - add a simple test for the status page
388 - move error codes to common/errors.h
389 - silent warning about LIST_* being redefined on OpenBSD
390 - add socket address length to the protocols
391 - group PR_O_BALANCE_* bits into a checkable value
392 - externalize the "balance" option parser to backend.c
393 - introduce the "url_param" balance method
394 - make default_backend work in TCP mode too
395 - disable warning about localtime_r on Solaris
396 - adjust error messages about conflicting proxies
397 - avoid calling some layer7 functions if not needed
398 - simplify error path in event_accept()
399 - add an options field to the listeners
400 - added a new state to listeners
401 - unbind_listener() must use fd_delete() and not close()
402 - add a generic unbind_listener() primitive
403 - add a generic delete_listener() primitive
404 - add a generic unbind_all_listeners() primitive
405 - create proto_tcp and move initialization of proxy listeners
406 - stats: report numerical process ID, proxy ID and server ID
407 - relative_pid was not initialized
408 - missing header names in raw stats output
409 - fix missing parenthesis in check_response_for_cacheability
410 - small optimization on session_process_counters()
411 - merge ebtree version 3.0
412 - make ebtree headers multiple-include compatible
413 - ebtree: include config.h for REGPRM*
414 - differentiate between generic LB params and map-specific ones
415 - add a weight divisor to the struct proxy
416 - implement the Fast Weighted Round Robin (FWRR) algo
417 - include filltab25.c to experiment on FWRR for dynamic weights
418 - merge test-fwrr.cfg to validate dynamic weights
419 - move the load balancing algorithm to be->lbprm.algo
420 - change server check result to a bit field
421 - implement "http-check disable-on-404" for graceful shutdown
422 - secure the calling conditions of ->set_server_status_{up,down}
423 - report disabled servers as "NOLB" when they are still UP
424 - document the "http-check disable-on-404" option
425 - http-check disable-on-404 is not limited to HTTP mode
426 - add a test file for disable-on-404
427 - use distinct bits per load-balancing algorithm type
428 - implement the slowstart parameter for servers
429 - document the server's slowstart parameter
430 - stats: report the server warm up status in a "throttle" column
431 - fix 2 minor issues on AIX
432 - add the "nbsrv" ACL verb
433 - add the "fail" condition to monitor requests
434 - remove a warning from gcc due to htons() in standard.c
435 - fwrr: ensure that we never overflow in placements
436 - store the build options to report with -vv
437 - fix the status return of the init script (R.I. Pienaar)
438 - stats: real time monitoring script for unix socket (Prizee)
439 - document "nbsrv" and "monitor fail"
440 - restrict the set of allowed characters for identifiers
441 - implement a time parsing function
442 - add support for time units in the configuration
443 - add a bit of documentation about timers
444 - introduce separation between contimeout, and tarpit + queue
445 - introduce the "timeout" keyword
446 - grouped all timeouts in one structure
447 - slowstart is in ms, not seconds
448 - slowstart: ensure we don't start with a null weight
449 - report the number of times each server was selected
450 - fix build on AIX due to recent log changes
451 - fix build on Solaris due to recent log changes
452
Willy Tarreaue855f422007-10-18 22:38:22 +02004532007/10/18 : 1.3.13
454 - replace the code under O'Reilly license (Arnaud Cornet)
455 - add a small man page (Arnaud Cornet)
456 - stats: report haproxy's version by default (Krzysztof Oledzki)
457 - stats: count server retries and redispatches (Krzysztof Oledzki)
458 - core: added easy support for Doug Lea's malloc (dlmalloc)
459 - core: fade out memory usage when stopping proxies
460 - core: moved the sockaddr pointer to the fdtab structure
461 - core: add generic protocol support
462 - core: implement client-side support for PF_UNIX sockets
463 - stats: implement the CSV output
464 - stats: add a link to the CSV export HTML page
465 - stats: implement the statistics output on a unix socket
466 - config: introduce the "stats" keyword in global section
467 - build: centralize version and date into one file for each
468 - tests: added a new hash algorithm
469
4702007/10/18 : 1.3.12.3
471 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
472 - fix double-free during clean exit (Krzysztof Oledzki)
473 - prevent the system from sending an RST when closing health-checks
474 (Krzysztof Oledzki)
475 - do not add a cache-control header when on non-cacheable responses
476 (Krzysztof Oledzki)
477 - spread health checks even more (Krzysztof Oledzki)
478 - stats: scope "." must match the backend and not the frontend
479 - fixed call to chroot() during startup
480 - fix wrong timeout computation in event_accept()
481 - remove condition for exit() under fork() failure
482
4832007/09/20 : 1.3.12.2
484 - fix configuration sanity checks for TCP listeners
485 - set the log socket receive window to zero bytes
486 - pre-initialize timeouts to infinity, not zero
487 - fix the SIGHUP message not to alert on server-less proxies
488 - timeouts and retries could be ignored when switching backend
489 - added a file to check that "retries" works.
490 - O'Reilly has clarified its license
491
4922007/09/05 : 1.3.12.1
493 - spec I/O: fix allocations of spec entries for an FD
494 - ensure we never overflow in chunk_printf()
495 - improve behaviour with large number of servers per proxy
496 - add support for "stats refresh <interval>"
497 - stats page: added links for 'refresh' and 'hide down'
498 - fix backend's weight in the stats page.
499 - the "stats" keyword is not allowed in a pure frontend.
500 - provide a test configuration file for stats and checks
501
Willy Tarreaub21152b2007-06-17 23:41:40 +02005022007/06/17 : 1.3.12
503 - fix segfault at exit when using captures
504 - bug: negation in ACL conds was not cleared between terms
505 - errorfile: use a local file to feed error messages
506 - acl: support '-i' to ignore case when matching
507 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
508 - acl: support maching on 'path' component
509 - acl: implement matching on header values
510 - acl: distinguish between request and response headers
511 - acl: permit to return any header when no name specified
512 - acl: provide default ACLs
513 - added the 'use_backend' keyword for full content-switching
514 - acl: specify the direction during fetches
515 - acl: provide the argument length for fetch functions
516 - acl: provide a reference to the expr to fetch()
517 - improve memory freeing upon exit
518 - str2net() must not change the const char *
519 - shut warnings 'is*' macros from ctype.h on solaris
520
Willy Tarreaua3503e02007-06-03 17:27:07 +02005212007/06/03 : 1.3.11.4
522 - do not re-arm read timeout in SHUTR state !
523 - optimize I/O by detecting system starvation
524 - the epoll FD must not be shared between processes
525 - limit the number of events returned by *poll*
526
Willy Tarreau3c6fc072007-05-14 14:40:25 +02005272007/05/14 : 1.3.11.3
528 - pre-initialize timeouts with tv_eternity during parsing
529
Willy Tarreaufc273c22007-05-14 03:42:47 +02005302007/05/14 : 1.3.11.2
531 - fixed broken health-checks since switch to timeval
532
Willy Tarreau3c5340c2007-05-14 03:18:43 +02005332007/05/14 : 1.3.11.1
534 - fixed ev_kqueue which was forgotten during the switch to timeval
535 - allowed null timeouts for past events in select
536
Willy Tarreau544eb402007-05-14 02:42:33 +02005372007/05/14 : 1.3.11
538 - fixed ev_sepoll again by rewriting the state machine
539 - switched all timeouts to timevals instead of milliseconds
540 - improved memory management using mempools v2.
541 - several minor optimizations
542
Willy Tarreau9ca931f2007-05-10 07:51:17 +02005432007/05/09 : 1.3.10.2
544 - fixed build on OpenBSD (missing types.h)
545
Willy Tarreau13398d32007-05-09 22:58:28 +02005462007/05/09 : 1.3.10.1
547 - fixed sepoll transition matrix (two states were missing)
548
Willy Tarreau61beedf2007-05-09 01:44:58 +02005492007/05/08 : 1.3.10
550 - several fixes in ev_sepoll
551 - fixed some expiration dates on some tasks
552 - fixed a bug in connection establishment detection due to speculative I/O
553 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
554 - implemented URI hashing algorithm (Guillaume Dallaire)
555 - implemented SMTP health checks (Peter van Dijk)
556 - replaced the rbtree with ul2tree from old scheduler project
557 - new framework for generic ACL support
558 - added the 'acl' and 'block' keywords to the config language
559 - added several ACL criteria and matches (IP, port, URI, ...)
560 - cleaned up and better modularization for some time functions
561 - fixed list macros
562 - fixed useless memory allocation in str2net()
563 - store the original destination address in the session
564
Willy Tarreau6e0433f2007-04-16 01:18:12 +02005652007/04/15 : 1.3.9
566 - modularized the polling mechanisms and use function pointers instead
567 of macros at many places
568 - implemented support for FreeBSD's kqueue() polling mechanism
569 - fixed a warning on OpenBSD : MIN/MAX redefined
570 - change socket registration order at startup to accomodate kqueue.
571 - several makefile cleanups to support old shells
572 - fix build with limits.h once for all
573 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
574 - fdtab now holds the results of polling
575 - implemented support for speculative I/O processing with epoll()
576 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
577 - auto-registering of pollers at load time
578
Willy Tarreau42c76592007-04-03 20:30:13 +02005792007/04/03 : 1.3.8.2
580 - rewriting either the status line or request line could crash the
581 process due to a pointer which ought to be reset before parsing.
582 - rewriting the status line in the response did not work, it caused
583 a 502 Bad Gateway due to an erroneous state during parsing
584
Willy Tarreauef6d7612007-04-01 11:06:22 +02005852007/04/01 : 1.3.8.1
586 - fix reqadd when no option httpclose is used.
587 - removed now unused fiprm and beprm from proxies
588 - split logs into two versions : TCP and HTTP
589 - added some docs about http headers storage and acls
590 - added a VIM script for syntax color highlighting (Bruno Michel)
591
Willy Tarreaud661cc02007-03-26 00:24:56 +02005922007/03/25 : 1.3.8
593 - fixed several bugs which might have caused a crash with bad configs
594 - several optimizations in header processing
595 - many progresses towards transaction-based processing
596 - option forwardfor may be used in frontends
597 - completed HTTP response processing
598 - some code refactoring between request and response processing
599 - new HTTP header manipulation functions
600 - optimizations on the recv() patch to reduce CPU usage under very
601 high data rates.
602 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
603 - username/groupname support from Marcus Rueckert
604 - added the "except" keyword to the "forwardfor" option (Bryan German)
605 - support for health-checks on other addresses (Fabrice Dulaunoy)
606 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
607 - do not insert "Connection: close" in HTTP/1.0 messages
608
Willy Tarreau9cabf702007-01-26 23:49:01 +01006092007/01/26 : 1.3.7
610 - fix critical bug introduced with 1.3.6 : an empty request header
611 may lead to a crash due to missing pointer assignment
612 - hdr_idx might be left uninitialized in debug mode
613 - fixed build on FreeBSD due to missing fd_set declaration
614
Willy Tarreaue7a24382007-01-22 08:57:44 +01006152007/01/22 : 1.3.6.1
616 - change in the header chaining broke cookies and authentication
617
Willy Tarreau49e1ee82007-01-22 00:56:46 +01006182007/01/22 : 1.3.6
619 - stats now support the HEAD method too
620 - extracted http request from the session
621 - huge rework of the HTTP parser which is now a 28-state FSM.
622 - linux-style likely/unlikely macros for optimization hints
623 - do not create a server socket when there's no server
624 - imported lots of docs
625
Willy Tarreau5871f8e2007-01-07 02:47:01 +01006262007/01/07 : 1.3.5
627 - stats: swap color sets for active and backup servers
628 - try to guess server check port when unset
629 - added complete support and doc for TCP Splicing
630 - replace the wait-queue linked list with an rbtree.
631 - a few bugfixes and cleanups
632
Willy Tarreau85270da2007-01-02 00:59:39 +01006332007/01/02 : 1.3.4
634 - support for cttproxy on the server side to present the client
635 address to the server.
636 - added support for SO_REUSEPORT on Linux (needs kernel patch)
637 - new RFC2616-compliant HTTP request parser with header indexing
638 - split proxies in frontends, rulesets and backends
639 - implemented the 'req[i]setbe' to select a backend depending
640 on the contents
641 - added the 'default_backend' keyword to select a default BE.
642 - new stats page featuring FEs and BEs + bytes in both dirs
643 - improved log format to indicate the backend and the time in ms.
644 - lots of cleanups
645
Willy Tarreau9c9fea42006-10-16 00:03:35 +02006462006/10/15 : 1.3.3
647 - fix broken redispatch option in case the connection has already
648 been marked "in progress" (ie: nearly always).
649 - support regparm on x86 to speed up some often called functions
650 - removed a few useless calls to gettimeofday() in log functions.
651 - lots of 'const char*' cleanups
652 - turn every FD_* into functions which are faster on recent CPUs
653
Willy Tarreau690f9aa2006-09-03 11:23:06 +02006542006/09/03 : 1.3.2
655 - started the changes towards I/O completion callbacks. stream_sock* have
656 replaced event_*.
657 - added the new "reqtarpit" and "reqitarpit" protection features
658
Willy Tarreau8f2b8552006-07-09 17:11:39 +02006592006/07/09 : 1.3.1 (1.2.15)
660 - now, haproxy warns about missing timeout during startup to try to
661 eliminate all those buggy configurations.
662 - added "Content-Type: text/html" in responses wherever appropriate, as
663 suggested by Cameron Simpson.
664 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
665 test server's health
666 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
667 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
668 at once.
669
Willy Tarreaub9e98b62006-07-03 10:32:46 +02006702006/06/29 : 1.3.0
671 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200672 difference is expected at all.
673 - fixed a bug by which neither stats nor error messages could be returned if
674 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200675
willy tarreau7e6328d2006-05-21 23:26:20 +02006762006/05/21 : 1.2.14
677 - new HTML status report with the 'stats' keyword.
678 - added the 'abortonclose' option to better resist traffic surges
679 - implemented dynamic traffic regulation with the 'minconn' option
680 - show request time on denied requests
681 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
682 - now a proxy instance is allowed to run without servers, which is
683 useful to dedicate one instance to stats
684 - added lots of error counters
685 - a missing parenthesis preventd matching of cacheable cookies
686 - a missing parenthesis in poll_loop() might have caused missed events.
687
Willy TARREAU4404b7e2006-05-14 10:00:09 +02006882006/05/14 : 1.2.13.1
689 - an uninitialized field in the struct session could cause a crash when
690 the session was freed. This has been encountered on Solaris only.
691 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
692 be nice to them by performing a soft stop if pause fails.
693
willy tarreauc3a2e072006-05-13 18:51:38 +02006942006/05/13 : 1.2.13
695 - 'maxconn' server parameter to do per-server session limitation
696 - queueing to support non-blocking session limitation
697 - fixed removal of cookies for cookie-less servers such as backup servers
698 - two separate wait queues for expirable and non-expirable tasks provide
699 better performance with lots of sessions.
700 - some code cleanups and performance improvements
701 - made state dumps a bit more verbose
702 - fixed missing checks for NULL srv in dispatch mode
703 - load balancing on backup servers was not possible in source hash mode.
704 - two session flags shared the same bit, but fortunately they were not
705 compatible.
706
willy tarreauc0d4bbd2006-04-15 21:47:50 +02007072006/04/15 : 1.2.12
708 Very few changes preparing for more important changes to support per-server
709 session limitations and queueing :
710 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
711 - added the 'weight' parameter to the servers, limited to 1..256. It applies
712 to roundrobin and source hash.
713 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
714
willy tarreaue0dd2692006-03-30 16:27:34 +02007152006/03/30 : 1.2.11.1
716 - under some conditions, it might have been possible that when the
717 last dead server became available, it would not have been used
718 till another one would have changed state. Could not be reproduced
719 at all, however seems possible from the code.
720
willy tarreaud2058dc2006-03-25 20:35:41 +01007212006/03/25 : 1.2.11
722 - added the '-db' command-line option to disable backgrounding.
723 - added the -sf/-st command-line arguments which are used to specify
724 a list of pids to send a FINISH or TERMINATE signal upon startup.
725 They will also be asked to release their port if a bind fails.
726 - reworked the startup mechanism to allow the sending of a signal to a list
727 of old pids if a socket cannot be bound, with a retry for a limited amount
728 of time (1 second by default).
729 - added the ability to enforce limits on memory usage.
730 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
731 - re-architectured the server round-robin mechanism to ease integration of
732 other algorithms. It now relies on the number of active and backup servers.
733 - added a counter for the number of active and backup servers, and report
734 these numbers upon SIGHUP or state change.
735
willy tarreaubfad5742006-03-23 14:19:11 +01007362006/03/23 : 1.2.10.1
737 - while fixing the backup server round-robin "feature", a new bug was
738 introduced which could miss some backup servers.
739 - the displayed proxy name was wrong when dumping upon SIGHUP.
740
willy tarreauaaff30e2006-03-19 21:30:41 +01007412006/03/19 : 1.2.10
742 - assert.h is needed when DEBUG is defined.
743 - ENORMOUS long standing bug affecting the epoll polling system :
744 event_data is a union, not a structure !
745 - Make fd management more robust and easier to debug. Also some
746 micro-optimisations.
747 - Limit the number of consecutive accept() in multi-process mode.
748 This produces a more evenly distributed load across the processes and
749 slightly improves performance by reducing bottlenecks.
750 - Make health-checks be more regular, and faster to retry after a timeout.
751 - Fixed some messages to ease parsing of alerts.
752 - provided a patch to enable epoll on RHEL3 kernels.
753 - Separated OpenBSD build from the main Makefile into a new one.
754
willy tarreau50be0172006-03-15 19:41:19 +01007552006/03/15 : 1.2.9
756 - haproxy could not be stopped after being paused, it had to be woken up
757 first. This has been fixed.
758 - the 'ulimit-n' parameter is now optional and by default computed from
759 maxconn + the number of listeners + the number of health-checks.
760 - it is now possible to specify a maximum number of connections at build
761 time with the SYSTEM_MAXCONN define. The value set in the configuration
762 file will then be limited to this value, and only the command-line '-n'
763 option will be able to bypass it. It will prevent against accidental
764 high memory usage on small systems.
765 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
766 versions did not detect a line beginning with a space as the continuation
767 of previous header. It is now correct.
768 - health checks sent to servers configured with identical intervals were
769 sent in perfect synchronisation because the initial time was the same
770 for all. This could induce high load peaks when fragile servers were
771 hosting tens of instances for the same application. Now the load is
772 spread evenly across the smallest interval amongst a listener.
773 - a new 'forceclose' option was added to make the proxy close the outgoing
774 channel to the server once it has sent all its headers and the server
775 starts responding. This helps some servers which don't close upon the
776 'Connection: close' header. It implies 'option httpclose'.
777 - there was a bug in the way the backup servers were handled. They were
778 erroneously load-balanced while the doc said the opposite. Since
779 load-balanced backup servers is one of the features some people have
780 been asking for, the problem was fixed to reflect the documented
781 behaviour and a new option 'allbackups' was introduced to provide the
782 feature to those who need it.
783 - a never ending connect() could lead to a fast select() loop if its
784 timeout times the number of retransmits exceeded the server read or write
785 timeout, because the later was used to compute select()'s timeout while
786 the connection timeout was not reached.
787 - now we initialize the libc's localtime structures very early so that even
788 under OOM conditions, we can still send dated error messages without
789 segfaulting.
790 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
791 descriptors are closed.
792
willy tarreau065f1c02006-01-29 22:10:07 +01007932006/01/29 : 1.2.8
794 - fixed a nasty bug affecting poll/epoll which could return unmodified data
795 from the server to the client, and sometimes lead to memory corruption
796 crashing the process.
797 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
798
7992005/12/18 : 1.2.7.1
800 - the "retries" option was ignored because connect() could not return an
801 error if the connection failed before the timeout.
802 - TCP health-checks could not detect a connection refused in poll/epoll
803 mode.
804
willy tarreaua56eca72005-12-18 01:34:42 +01008052005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +0100806 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
807 least on Solaris, this caused the libc's regex primitives to be used instead
808 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +0100809 - delayed the quiet mode during startup so that most of the startup alerts can
810 be displayed even in quiet mode.
811 - display an alert when a listener has no address, invalid or no port, or when
812 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +0100813 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +0100814
willy tarreaub952e1d2005-12-18 01:31:20 +01008152005/10/09 : 1.2.7rc (1.1.33rc)
816 - second batch of socklen_t changes.
817 - clean-ups from Cameron Simpson.
818 - because tv_remain() does not know about eternity, using no timeout can
819 make select() spin around a null time-out. Bug reported by Cameron Simpson.
820 - client read timeout was not properly set to eternity initialized after an
821 accept() if it was not set in the config. It remained undetected so long
822 because eternity is 0 and newly allocated pages are zeroed by the system.
823 - do not call get_original_dst() when not in transparent mode.
824 - implemented a workaround for a bug in certain epoll() implementations on
825 linux-2.4 kernels (epoll-lt <= 0.21).
826 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
827
willy tarreauc5f73ed2005-12-18 01:26:38 +01008282005/08/07 : 1.2.6
829 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
830
8312005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +0100832 - added the number of active sessions (proxy/process) in the logs
833
8342005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +0100835 - the time-out fix introduced in 1.1.25 caused a corner case where it was
836 possible for a client to keep a connection maintained regardless of the
837 timeout if the server closed the connection during the HEADER phase,
838 while the client ignored the close request while doing nothing in the
839 other direction. This has been fixed now by ensuring that read timeouts
840 are re-armed when switching to any SHUTW state.
841
8422005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
843 - enhanced error reporting in the logs. Now the proxy will precisely detect
844 various error conditions related to the system and/or process limits, and
845 generate LOG_EMERG logs indicating that a resource has been exhausted.
846 - logs will contain two new characters for the error cause : 'R' indicates
847 a resource exhausted, and 'I' indicates an internal error, though this
848 one should never happen.
849 - server connection timeouts can now be reported in the logs (sC), as well
850 as connections refused because of maxconn limitations (PC).
851
8522005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
853 - new global configuration keyword "ulimit-n" may be used to raise the FD
854 limit to usable values.
855 - a warning is now displayed on startup if the FD limit is lower than the
856 configured maximum number of sockets.
857
8582005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
859 - new configuration keyword "monitor-net" makes it possible to be monitored
860 by external devices which connect to the proxy without being logged nor
861 forwarded to any server. Particularly useful on generic TCPv4 relays.
862
willy tarreau5dffb602005-12-18 01:15:23 +01008632005/06/21 : 1.2.5.2
864 - fixed build on PPC where chars are unsigned by default
865
willy tarreau08dedbe2005-12-18 01:13:48 +01008662005/05/02 : 1.2.5.1
867 - dirty hack to fix a bug introduced with epoll : if we close an FD and
868 immediately reassign it to another session through a connect(), the
869 Prev{Read,Write}Events are not updated, which causes trouble detecting
870 changes, thus leading to many timeouts at high loads.
871
willy tarreau64a3cc32005-12-18 01:13:11 +01008722005/04/30 : 1.2.5 (1.1.31)
873 - changed the runtime argument to disable epoll() to '-de'
874 - changed the runtime argument to disable poll() to '-dp'
875 - added global options 'nopoll' and 'noepoll' to do the same at the
876 configuration level.
877 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
878 support epoll().
879 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
880 - conditionned signals redirection to #ifdef DEBUG_MEMORY
881
willy tarreau1c2ad212005-12-18 01:11:29 +01008822005/04/26 : 1.2.5-pre4
883 - made epoll() support a compile-time option : ENABLE_EPOLL
884 - provided a very little libc replacement for a possibly missing epoll()
885 implementation which can be enabled by -DUSE_MY_EPOLL
886 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
887 The equivalent runtime argument becomes '-P'. A few tests show that it
888 performs like select() with many fds, but slightly slower (certainly
889 because of the higher amount of memory involved).
890 - separated the 3 polling methods and the tasks scheduler into 4 distinct
891 functions which makes the code a lot more modular.
892 - moved some event tables to private static declarations inside the poller
893 functions.
894 - the poller functions can now initialize themselves, run, and cleanup.
895 - changed the runtime argument to enable epoll() to '-E'.
896 - removed buggy epoll_ctl() code in the client_retnclose() function. This
897 function was never meant to remove anything.
898 - fixed a typo which caused glibc to yell about a double free on exit.
899 - removed error checking after epoll_ctl(DEL) because we can never know if
900 the fd is still active or already closed.
901 - added a few entries in the makefile
902
willy tarreauad90a0c2005-12-18 01:09:15 +01009032005/04/25 : 1.2.5-pre3
904 - experimental epoll() support (use temporary '-e' argument)
905
9062005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +0100907 - implemented the HTTP 303 code for error redirection. This forces the
908 browser to fetch the given URI with a GET request. The new keyword for
909 this is 'errorloc303', and a new 'errorloc302' keyword has been created
910 to make them easily distinguishable.
911 - added more controls in the parser for valid use of '\x' sequence.
912 - few fixes from Alex & Klaus
913
willy tarreauad90a0c2005-12-18 01:09:15 +01009142005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +0100915 - fixed a few errors in the documentation
916
9172005/02/13
918 - do not pre-initialize unused file-descriptors before select() anymore.
919
willy tarreau12350152005-12-18 01:03:27 +01009202005/01/22 : 1.2.4
921 - merged Alexander Lazic's and Klaus Wagner's work on application
922 cookie-based persistence. Since this is the first merge, this version is
923 not intended for general use and reports are more than welcome. Some
924 documentation is really needed though.
925
willy tarreau0174f312005-12-18 01:02:42 +01009262005/01/22 : 1.2.3 (1.1.30)
927 - add an architecture guide to the documentation
928 - released without any changes
929
9302004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
931 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
932 compatible with Apache. This limit can be configured in the makefile now.
933 Thanks to Eric Fehr for the checks.
934 - added a per-server "source" option which now makes it possible to bind to
935 a different source for each (potentially identical) server.
936 - changed cookie-based server selection slightly to allow several servers to
937 share a same cookie, thus making it possible to associate backup servers to
938 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
939 - added the cookie 'prefix' mode which makes it possible to use persistence
940 with thin clients which support only one cookie. The server name is prefixed
941 before the application cookie, and restore back.
942 - fixed the order of servers within an instance to match documentation. Now
943 the servers are *really* used in the order of their declaration. This is
944 particularly important when multiple backup servers are in use.
945
willy tarreau4302f492005-12-18 01:00:37 +01009462004/10/18 : 1.2.2 (1.1.29)
947 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
948 option was enabled without the 'tcplog' option.
949 - encode_string() would use hdr_encode_map instead of the map argument.
950
9512004/08/10 : (1.1.29-pre2)
952 - the logged request is now encoded with '#XX' for unprintable characters
953 - new keywords 'capture request header' and 'capture response header' enable
954 logging of arbitrary HTTP headers in requests and responses
955 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
956
willy tarreau982249e2005-12-18 00:57:06 +01009572004/06/06 : 1.2.1 (1.1.28)
958 - added the '-V' command line option to verbosely report errors even though
959 the -q or 'quiet' options are specified. This is useful with '-c'.
960 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +0100961
willy tarreau982249e2005-12-18 00:57:06 +01009622004/06/05 :
963 - added the "logasap" option which produces a log without waiting for the data
964 to be transferred from the server to the client.
965 - added the "httpclose" option which removes any "connection:" header and adds
966 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +0100967 - added the 'checkcache' option which blocks cacheable responses containing
968 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +0100969 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
970 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +0100971
9722004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +0100973 - send an EMERG log when no server is available for a given proxy
974 - added the '-c' command line option to syntactically check the
975 configuration file without starting the service.
976
willy tarreau8a86dbf2005-12-18 00:45:59 +01009772003/11/09 : 1.2.0
978 - the same as 1.1.27 + IPv6 support on the client side
979
willy tarreaufe2c5c12005-12-17 14:14:34 +01009802003/10/27 : 1.1.27
981 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
982 bug : the code still assumed that HTTP requests were the same size as the
983 original ones (22 bytes), and failed if they were not.
984 - added support for pidfiles.
985
willy tarreauc58fc692005-12-17 14:13:08 +01009862003/10/22 : 1.1.26
987 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
988 broke almost all compatibility with POST requests, because the proxy
989 stopped to read anything from the client as soon as it got all of its
990 headers.
991
willy tarreauc1cae632005-12-17 14:12:23 +01009922003/10/15 : 1.1.25
993 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
994 generic TCP proxies, or lighter logs for HTTP proxies.
995 - fixed a time-out condition wrongly reported as client time-out in data
996 phase if the client timeout was lower than the connect timeout times the
997 number of retries.
998
willy tarreau197e8ec2005-12-17 14:10:59 +01009992003/09/21 : 1.1.24
1000 - if a client sent a full request then shut its write connection down, then
1001 the request was aborted. This case was detected only when using haproxy
1002 both as health-check client and as a server.
1003 - if 'option httpchk' is used in a 'health' mode server, then responses will
1004 change from 'OK' to 'HTTP/1.0 200 OK'.
1005 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
1006 server response followed by a close could be ignored, and the server seen
1007 as failed.
1008
willy tarreaueedaa9f2005-12-17 14:08:03 +010010092003/09/19 : 1.1.23
1010 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
1011 'default' sections to keep previous parameters, and not initialize logs
1012 correctly.
1013 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
1014 relying on 'dispatch' mode to segfault at the first connection.
1015 - 'option httpchk' now supports method, HTTP version and a few headers.
1016 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
1017 'defaults' section
1018
10192003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +01001020 - 'listen' now supports optionnal address:port-range lists
1021 - 'bind' introduced to add new listen addresses
1022 - fixed a bug which caused a session to be kept established on a server till
1023 it timed out if the client closed during the DATA phase.
1024 - the port part of each server address can now be empty to make the proxy
1025 connect to the server on the same port it was connected to, be an absolute
1026 unsigned number to reflect a single port (as in older versions), or an
1027 explicitly signed number (+N/-N) to indicate that this offset must be
1028 applied to the port the proxy was connected to, when connecting to the
1029 server.
1030 - the 'port' server option allows the user to specify a different
1031 health-check port than the service one. It is mandatory when only relative
1032 ports have been specified and check is required. By default, the checks are
1033 sent to the service port.
1034 - new 'defaults' section which is rather similar to 'listen' except that all
1035 values are only used as default values for future 'listen' sections, until
1036 a new 'defaults' resets them. At the moment, server options, regexes,
1037 cookie names and captures cannot be set in the 'defaults' section.
1038
willy tarreau2f6ba652005-12-17 13:57:42 +010010392003/05/06 : 1.1.21
1040 - changed the debug output format so that it now includes the session unique
1041 ID followed by the instance name at the beginning of each line.
1042 - in debug mode, accept now shows the client's IP and port.
1043 - added one 3 small debugging scripts to search and pretty print debug output
1044 - changed the default health check request to "OPTIONS /" instead of
1045 "OPTIONS *" since not all servers implement the later one.
1046 - "option httpchk" now accepts an optional parameter allowing the user to
1047 specify and URI other than '/' during health-checks.
1048
willy tarreaub1ff9db2005-12-17 13:51:03 +010010492003/04/21 : 1.1.20
1050 - fixed two problems with time-outs, one where a server would be logged as
1051 timed out during transfer that take longer to complete than the fixed
1052 time-out, and one where clients were logged as timed-out during the data
1053 phase because they didn't have anything to send. This sometimes caused
1054 slow client connections to close too early while in fact there was no
1055 problem. The proper fix would be to have a per-fd time-out with
1056 conditions depending on the state of the HTTP FSM.
1057
willy tarreau906b2682005-12-17 13:49:52 +010010582003/04/16 : 1.1.19
1059 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
1060 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
1061 cookie persistence because it uses "cookie:". Two memcmp() have been
1062 replaced with strncasecmp().
1063
willy tarreau036e1ce2005-12-17 13:46:33 +010010642003/04/02 : 1.1.18
1065 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
1066 REGEX=pcre on the make command line.
1067 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
1068 - when explicit source address binding is required, it is now also used for
1069 health-checks.
1070 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
1071 itself.
1072 - factored several strings to reduce binary size by about 2 kB.
1073 - replaced setreuid() and setregid() with more standard setuid() and setgid().
1074 - added 4 status flags to the log line indicating who ended the connection
1075 first, the sessions state, the validity of the cookie, and action taken on
1076 the set-cookie header.
1077
10782002/10/18 : 1.1.17
1079 - add the notion of "backup" servers, which are used only when all other
1080 servers are down.
1081 - make Set-Cookie return "" instead of "(null)" when the server has no
1082 cookie assigned (useful for backup servers).
1083 - "log" now supports an optionnal level name (info, notice, err ...) above
1084 which nothing is sent.
1085 - replaced some strncmp() with memcmp() for better efficiency.
1086 - added "capture cookie" option which logs client and/or server cookies
1087 - cleaned up/down messages and dump servers states upon SIGHUP
1088 - added a redirection feature for errors : "errorloc <errnum> <url>"
1089 - now we won't insist on connecting to a dead server, even with a cookie,
1090 unless option "persist" is specified.
1091 - added HTTP/408 response for client request time-out and HTTP/50[234] for
1092 server reply time-out or errors.
1093
10942002/09/01 : 1.1.16
1095 - implement HTTP health checks when option "httpchk" is specified.
1096
10972002/08/07 : 1.1.15
1098 - replaced setpgid()/setpgrp() with setsid() for better portability, because
1099 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
1100
11012002/07/20 : 1.1.14
1102 - added "postonly" cookie mode
1103
11042002/07/15 : 1.1.13
1105 - tv_diff used inverted parameters which led to negative times !
1106
11072002/07/13 : 1.1.12
1108 - fixed stats monitoring, and optimized some tv_* for most common cases.
1109 - replaced temporary 'newhdr' with 'trash' to reduce stack size
1110 - made HTTP errors more HTML-fiendly.
1111 - renamed strlcpy() to strlcpy2() because of a slightly difference between
1112 their behaviour (return value), to avoid confusion.
1113 - restricted HTTP messages to HTTP proxies only
1114 - added a 502 message when the connection has been refused by the server,
1115 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
1116 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
1117 inserting a cookie, because some caches (apache) don't understand it.
1118 - fixed processing of server headers when client is in SHUTR state
1119
11202002/07/04 :
1121 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
1122 setpgid()
1123
11242002/06/04 : 1.1.11
1125 - fixed multi-cookie handling in client request to allow clean deletion
1126 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +01001127 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +01001128 - added a "nocache" option to "cookie" to specify that we explicitly want
1129 to add a "cache-control" header when we add a cookie.
1130 It is also possible to add an "Expires: <old-date>" to keep compatibility
1131 with old/broken caches.
1132
11332002/05/10 : 1.1.10
1134 - if a cookie is used in insert+indirect mode, it's desirable that the
1135 the servers don't see it. It was not possible to remove it correctly
1136 with regexps, so now it's removed automatically.
1137
11382002/04/19 : 1.1.9
1139 - don't use snprintf()'s return value as an end of message since it may
1140 be larger. This caused bus errors and segfaults in internal libc's
1141 getenv() during localtime() in send_log().
1142 - removed dead insecure send_syslog() function and all references to it.
1143 - fixed warnings on Solaris due to buggy implementation of isXXXX().
1144
11452002/04/18 : 1.1.8
1146 - option "dontlognull"
1147 - fixed "double space" bug in config parser
1148 - fixed an uninitialized server field in case of dispatch
1149 with no existing server which could cause a segfault during
1150 logging.
1151 - the pid logged was always the father's, which was wrong for daemons.
1152 - fixed wrong level "LOG_INFO" for message "proxy started".
1153
11542002/04/13 :
1155 - http logging is now complete :
1156 - ip:port, date, proxy, server
1157 - req_time, conn_time, hdr_time, tot_time
1158 - status, size, request
1159 - source address
1160
11612002/04/12 : 1.1.7
1162 - added option forwardfor
1163 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
1164 - added "log global" in "listen" section.
1165
11662002/04/09 :
1167 - added a new "global" section :
1168 - logs
1169 - debug, quiet, daemon modes
1170 - uid, gid, chroot, nbproc, maxconn
1171
11722002/04/08 : 1.1.6
1173 - regex are now chained and not limited anymore.
1174 - unavailable server now returns HTTP/502.
1175 - increased per-line args limit to 40
1176 - added reqallow/reqdeny to block some request on matches
1177 - added HTTP 400/403 responses
1178
11792002/04/03 : 1.1.5
1180 - connection logging displayed incorrect source address.
1181 - added proxy start/stop and server up/down log events.
1182 - replaced log message short buffers with larger trash.
1183 - enlarged buffer to 8 kB and replace buffer to 4 kB.
1184
11852002/03/25 : 1.1.4
1186 - made rise/fall/interval time configurable
1187
11882002/03/22 : 1.1.3
1189 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
1190 which could lead to loops.
1191
11922002/03/21 : 1.1.2
1193 - fixed a bug in buffer management where we could have a loop
1194 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
1195 => implemented an adjustable buffer limit.
1196 - fixed a bug : expiration of tasks in wait queue timeout is used again,
1197 and running tasks are skipped.
1198 - added some debug lines for accept events.
1199 - send warnings for servers up/down.
1200
12012002/03/12 : 1.1.1
1202 - fixed a bug in total failure handling
1203 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
1204
12052002/03/10 : 1.1.0
1206 - fixed a few timeout bugs
1207 - rearranged the task scheduler subsystem to improve performance,
1208 add new tasks, and make it easier to later port to librt ;
1209 - allow multiple accept() for one select() wake up ;
1210 - implemented internal load balancing with basic health-check ;
1211 - cookie insertion and header add/replace/delete, with better strings
1212 support.
1213
12142002/03/08
1215 - reworked buffer handling to fix a few rewrite bugs, and
1216 improve overall performance.
1217 - implement the "purge" option to delete server cookies in direct mode.
1218
12192002/03/07
1220 - fixed some error cases where the maxfd was not decreased.
1221
12222002/02/26
1223 - now supports transparent proxying, at least on linux 2.4.
1224
12252002/02/12
1226 - soft stop works again (fixed select timeout computation).
1227 - it seems that TCP proxies sometimes cannot timeout.
1228 - added a "quiet" mode.
1229 - enforce file descriptor limitation on socket() and accept().
1230
12312001/12/30 : release of version 1.0.2 : fixed a bug in header processing
12322001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
12332001/12/16 : release of version 1.0.0.
12342001/12/16 : added syslog capability for each accepted connection.
12352001/11/19 : corrected premature end of files and occasional SIGPIPE.
12362001/10/31 : added health-check type servers (mode health) which replies OK then closes.
12372001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
1238 with or without cookies (use keyword http for this).
12392001/09/01 : added client/server header replacing with regexps.
1240 eg:
1241 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
1242 srvexp ^Server:\ .* Server:\ Apache
12432000/11/29 : first fully working release with complete FSMs and timeouts.
12442000/11/28 : major rewrite
12452000/11/26 : first write